-
Notifications
You must be signed in to change notification settings - Fork 824
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Fix uaa start. Prevent exception if encryption section missing #2767
Conversation
The encryption service is not usable if no passphrase set, but that service is not in use at all - currently.
We have created an issue in Pivotal Tracker to manage this: https://www.pivotaltracker.com/story/show/187182262 The labels on this github issue will be updated when the story is started. |
The encryption service is not usable if no passphrase set, but that service is not in use at all - currently.
Summary of OSS sync: this was for MFA feature (which is already removed); hence these fields are currently unused. But this PR keeps them in case there is future usage. |
@peterhaochen47 @Tallicia can you please take this PR in review. For us it means less Ops but for UAA there is no risk to break something, because these classes are not in use - but they need a secret key currently |
@@ -44,4 +46,9 @@ public void decrypt_shouldNotDecryptWithInvalidPassphrase() throws EncryptionSer | |||
assertThat(ciphertext, is(notNullValue())); | |||
new EncryptionService("invalid-password").decrypt(ciphertext); | |||
} | |||
|
|||
@Test | |||
public void initShouldWorkWithEmptyKey() { |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Good to see the test!
} | ||
|
||
@Test | ||
public void shouldNotThrowErrorIfNoActiveKeyLabelIsProvided() { |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
good test
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
This looks good.
The encryption service is not usable if no passphrase set, but that service is not in use at all - currently.