Fix misleading Authorization: <redacted> (#864)

This is currently always set, but we should only set it if there are actually credentials being redacted, so that we can tell if the header was set or not.
google · Dec 8, 2020 · 6cb5945 · 6cb5945
1 parent bac0862
commit 6cb5945
Showing 1 changed file with 1 addition and 1 deletion.
diff --git a/pkg/v1/remote/transport/logger.go b/pkg/v1/remote/transport/logger.go
@@ -47,7 +47,7 @@ func (t *logTransport) RoundTrip(in *http.Request) (out *http.Response, err erro
 
 	// Save these headers so we can redact Authorization.
 	savedHeaders := in.Header.Clone()
-	if in.Header != nil {
+	if in.Header != nil && in.Header.Get("authorization") != "" {
 		in.Header.Set("authorization", "<redacted>")
 	}