Notify user when their token will soon expire#81
Merged
Conversation
To help avoid unexpected expiration of tokens, the user is provided with a warning when they use a renewable token and it is due to expire in less than 7 days. * Updated `scripts/dev-vault.sh` to create a policy and test user for `secret/ssh_ms` for testing renewal messages, plus helper functions for testing renewal thresholds * Added `vault.RenewThreshold` to allow build-time override of the threshold used when checking tokens * Added `vault.requiresRenewal` to check if a token needs to be renewed in the next 7 days * Updated `vault.Authenticate` to emit a warning when the token needs to be renewed * Added `SSH_MS_RENEW_THRESHOLD` to `Makefile` for build-time override of the renew threshold * Updated `README`
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
1 participant
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
To help avoid unexpected expiration of tokens, the user is provided
with a warning when they use a renewable token and it is due to
expire in less than 7 days.
scripts/dev-vault.shto create a policy and test userfor
secret/ssh_msfor testing renewal messages, plus helperfunctions for testing renewal thresholds
vault.RenewThresholdto allow build-time override of thethreshold used when checking tokens
vault.requiresRenewalto check if a token needs to berenewed in the next 7 days (default)
vault.Authenticateto emit a warning when the tokenneeds to be renewed
SSH_MS_RENEW_THRESHOLDtoMakefilefor build-timeoverride of the renew threshold
READMEResolves #77