'use strict'; require('../common'); const assert = require('assert'); const http = require('http'); const url = require('url'); function check(request) { // the correct authorization header is be passed assert.strictEqual(request.headers.authorization, 'NoAuthForYOU'); } var server = http.createServer(function(request, response) { // run the check function check.call(this, request, response); response.writeHead(200, {}); response.end('ok'); server.close(); }); server.listen(0, function() { var testURL = url.parse(`http://asdf:qwer@localhost:${this.address().port}`); // the test here is if you set a specific authorization header in the // request we should not override that with basic auth testURL.headers = { Authorization: 'NoAuthForYOU' }; // make the request http.request(testURL).end(); });