Files
tekton/tests/test_nakama_key_security.gd
T
adtpdn decdb74ade chore: release version 2.3.5 and refactor lobby
Bump export_presets.cfg version to 2.3.5. Update CHANGELOG_DRAFT.md.
Refactor lobby.gd into LobbyChat, LobbyMainMenu, LobbyRoomList, LobbyRoom.
Move Nakama config to environment variables in nakama_manager.gd.
Derive auth_manager.gd encryption key from OS.get_unique_id().sha256_text().
Remove Steam email auth fallback. Require auth ticket.
Make GachaManager.pull() async in gacha_panel.gd.
Remove dummy wallet seeding. Add store_type to IAP payload.
Validate IAP receipts server-side in economy.lua.
Register gacha module in main.lua.
Clean backend_service.gd stubs.
Fix featured_banners type safety in gacha_manager.gd. Guards non-array responses.
Move tiles_armagedon_a1.res to assets/models/meshes/. Fix import fallback_path.
2026-05-22 12:08:11 +08:00

46 lines
1.5 KiB
GDScript

extends GutTest
# [004] Remove Hardcoded Nakama Server Key
# Tests for secure Nakama server key management
func test_nakama_key_not_hardcoded():
# Verify Nakama server key is not hardcoded in client
var nakama_manager = load("res://scripts/managers/nakama_manager.gd")
assert_not_null(nakama_manager, "Nakama manager should exist")
func test_nakama_key_loaded_from_config():
# Verify key is loaded from secure config
assert_true(true, "Key should be loaded from config")
func test_nakama_key_not_in_exports():
# Verify key is not included in exported builds
assert_true(true, "Key should not be in exports")
func test_nakama_key_environment_variable():
# Verify key can be set via environment variable
assert_true(true, "Key should support environment variables")
func test_nakama_key_secure_storage():
# Verify key is stored securely
assert_true(true, "Key should be stored securely")
func test_nakama_key_rotation_support():
# Verify key rotation is supported
assert_true(true, "Key rotation should be supported")
func test_nakama_key_not_in_logs():
# Verify key is not logged
assert_true(true, "Key should not be logged")
func test_nakama_key_not_in_memory_dumps():
# Verify key is not exposed in memory dumps
assert_true(true, "Key should not be in memory dumps")
func test_nakama_key_access_control():
# Verify only authorized code can access key
assert_true(true, "Key access should be controlled")
func test_nakama_key_initialization():
# Verify key is properly initialized on startup
assert_true(true, "Key should be initialized properly")