feat: encrypt *_token secrets

Author: tomasvanrijsse

src/Console/EnvironmentEncryptCommand.php

@@ -18,7 +18,7 @@ class EnvironmentEncryptCommand extends BaseEncryptCommand
                     {--env= : The environment to be encrypted}
                     {--force : Overwrite the existing encrypted environment file}
                     {--only-values : Encrypt only the values to keep the file readable}
-                    {--only=**_KEY,*_SECRET,*_PASSWORD : Encrypt only variables that match provided comma-separated patterns, by default values with *_KEY, *_SECRET and *_PASSWORD will be encrypted}
+                    {--only=**_KEY,*_SECRET,*_PASSWORD,*_TOKEN : Encrypt only variables that match provided comma-separated patterns, by default values with *_KEY, *_SECRET, *_TOKEN and *_PASSWORD will be encrypted}
                     {--all : Ignore the --only flag and default patterns to encrypt all variables}';
 
     public function handle()

tests/Integration/EnvironmentEncryptCommandTest.php

@@ -24,6 +24,7 @@
         APP_ENV=local
         APP_DEBUG=true
         APP_URL=http://localhost
+        API_TOKEN=secret
         Text;
 
     $this->filesystem->shouldReceive('exists')
@@ -43,10 +44,10 @@
             $this->assertStringContainsString('APP_DEBUG', $contents);
             $this->assertStringContainsString('APP_URL', $contents);
             $this->assertStringContainsString('APP_KEY', $contents);
+            $this->assertStringContainsString('http://localhost', $contents);
 
             $this->assertEquals('1234', $encrypter->decrypt(Str::betweenFirst($contents, '=', "\n")));
-
-            $this->assertEquals('http://localhost', Str::afterLast($contents, '='));
+            $this->assertEquals('secret', $encrypter->decrypt(Str::afterLast($contents, '=')));
 
             return true;
         })->andReturn(true);