Skip to content
This repository has been archived by the owner on Jan 8, 2024. It is now read-only.

Backport of Vault Config Sourcer Fixes into release/0.10.x #4041

Conversation

hc-github-team-waypoint
Copy link
Collaborator

Backport

This PR is auto-generated from #3988 to be assessed for backporting due to the inclusion of the label backport/0.10.x.

WARNING automatic cherry-pick of commits failed. Commits will require human attention.

The below text is copied from the body of the original PR.


Fixes #2333.

This PR fixes a bug where an application deployed with the Vault config sourcer plugin using a dynamic secrets engine in Vault was inaccessible. waypoint exec would hang forever, the address provided by the URL service would be inaccessible, as well as any other way to access the application outside of the URL service.

A subsequent bug which is also fixed in this PR is that dynamic secrets were previously being overwritten as an empty map when the secret was renewed. This is the normal behavior of the Vault lease API, as that API does not return the data of a secret whose lease is renewed. However, now, if a lease is successfully renewed, the Vault config sourcer plugin will still retain the data from when the secret was originally read.

Little bonus in this PR - the CEB binary will now include the git commit in its version, whereas previously only the last major version was logged as the version - this is the Makefile change.

@hc-github-team-waypoint hc-github-team-waypoint requested a review from a team October 12, 2022 18:05
@hc-github-team-waypoint hc-github-team-waypoint force-pushed the backport/b-vault-config-sourcer-dynamic-secrets/surely-set-weasel branch from d4a90e0 to 16e3f62 Compare October 12, 2022 18:05
@paladin-devops paladin-devops merged commit acdd2b6 into release/0.10.x Oct 12, 2022
@paladin-devops paladin-devops deleted the backport/b-vault-config-sourcer-dynamic-secrets/surely-set-weasel branch October 12, 2022 19:31
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Labels
Projects
None yet
Development

Successfully merging this pull request may close these issues.

2 participants