Add cleanup flag to delete deactivated key if specified #6
Conversation
|
Note that the key that is used to delete the key was deactivated just above the deletion. It is probably fine as I think it takes a couple of seconds for the key deletion to propagate. But should probably be tested a bunch of times to see that it works reliably. |
|
@stefansundin apparently if I re-read newly created Will try to add the check + retry before doing this and see if it helps and how much time does it take for the new key to be available. |
|
I think what you have is probably ok, just wanted to make sure it was tested thoroughly. You could also just delete the old key and skip disabling it when |
ymatsiuk
force-pushed
the
master
branch
2 times, most recently
from
fb76e65
to
dadb849
Compare
|
@stefansundin I polished a bit previous solution according to what we discussed in this PR. |
| @@ -24,7 +24,10 @@ Usage of aws-rotate-key: | |||
| The profile to use. (default "default") | |||
| -version | |||
| Print version number (1.0.3) | |||
| -y Automatic "yes" to prompts. | |||
| -y | |||
There was a problem hiding this comment.
My only comment is that this text is the output from aws-rotate-key -help, which now will say:
-d Delete old key without deactivation.
-profile string
The profile to use. (default "default")
-version
Print version number (1.0.3)
-y Automatic "yes" to prompts.
It is not obvious that the text is from there. And I don't think we need to keep it exactly the same.
|
@ymatsiuk your changes were released with https://github.com/Fullscreen/aws-rotate-key/releases/tag/v1.0.4 |
As requested in #4