[HDDS-9529] Fix authentication check for Vault S3 secret store - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Improvement
Status: Resolved
Priority: Major
Resolution: Implemented
Affects Version/s: 1.4.0
Fix Version/s: 1.4.0
Component/s: None
Labels:
- pull-request-available
- s3

Description

Currently in VaultS3SecretStore we check that auth token is valid before each operation, for example

checkAuth();
vault.logical().write(secretPath + '/' + kerberosId,
        Collections.singletonMap(kerberosId, secret.getAwsSecret()));

So, its possible that authentication token is valid on check action but not valid on operation (expiration occurred between operations).

Attachments

Issue Links

fixes

HDDS-9250 Test failure in VaultS3SecretStoreTest#testAuthFail

Resolved

links to

GitHub Pull Request #5486

Activity

People

Assignee:: Mikhail Pochatkin

Reporter:: Mikhail Pochatkin

Votes:: 0 Vote for this issue

Watchers:: 1 Start watching this issue

Dates

Created:: 25/Oct/23 07:43

Updated:: 26/Oct/23 13:15

Resolved:: 26/Oct/23 13:15