From 99a2dca7c904e3811ba9edcb3ed73de011bf151a Mon Sep 17 00:00:00 2001
From: David Kocher <dkocher@iterate.ch>
Date: Tue, 8 Aug 2023 11:26:23 +0200
Subject: [PATCH] Fix #14970.

---
 s3/src/main/java/ch/cyberduck/core/s3/S3Session.java         | 2 +-
 .../cyberduck/core/s3/S3TokenExpiredResponseInterceptor.java | 5 +++--
 2 files changed, 4 insertions(+), 3 deletions(-)

diff --git a/s3/src/main/java/ch/cyberduck/core/s3/S3Session.java b/s3/src/main/java/ch/cyberduck/core/s3/S3Session.java
index 1ec1872d178..f275ae0675f 100644
--- a/s3/src/main/java/ch/cyberduck/core/s3/S3Session.java
+++ b/s3/src/main/java/ch/cyberduck/core/s3/S3Session.java
@@ -205,7 +205,7 @@ public void login(final Proxy proxy, final LoginCallback prompt, final CancelCal
             if(isAwsHostname(host.getHostname())) {
                 // Try auto-configure
                 credentials = new AWSProfileSTSCredentialsConfigurator(
-                        new ThreadLocalHostnameDelegatingTrustManager(trust, host.getHostname()), key, prompt).configure(host);
+                        new ThreadLocalHostnameDelegatingTrustManager(trust, host.getHostname()), key, prompt).reload().configure(host);
             }
             else {
                 credentials = host.getCredentials();
diff --git a/s3/src/main/java/ch/cyberduck/core/s3/S3TokenExpiredResponseInterceptor.java b/s3/src/main/java/ch/cyberduck/core/s3/S3TokenExpiredResponseInterceptor.java
index 2a9197e4550..3d41072fefe 100644
--- a/s3/src/main/java/ch/cyberduck/core/s3/S3TokenExpiredResponseInterceptor.java
+++ b/s3/src/main/java/ch/cyberduck/core/s3/S3TokenExpiredResponseInterceptor.java
@@ -15,6 +15,7 @@
  * GNU General Public License for more details.
  */
 
+import ch.cyberduck.core.CredentialsConfigurator;
 import ch.cyberduck.core.Host;
 import ch.cyberduck.core.LoginCallback;
 import ch.cyberduck.core.exception.ExpiredTokenException;
@@ -40,11 +41,11 @@ public class S3TokenExpiredResponseInterceptor extends DisabledServiceUnavailabl
     private static final int MAX_RETRIES = 1;
 
     private final Host host;
-    private final AWSProfileSTSCredentialsConfigurator configurator;
+    private final CredentialsConfigurator configurator;
 
     public S3TokenExpiredResponseInterceptor(final S3Session session, final X509TrustManager trust, final X509KeyManager key, final LoginCallback prompt) {
         this.host = session.getHost();
-        this.configurator = new AWSProfileSTSCredentialsConfigurator(trust, key, prompt);
+        this.configurator = new AWSProfileSTSCredentialsConfigurator(trust, key, prompt).reload();
     }
 
     @Override