Skip to content

Commit 95580fb

Browse files
authored
set the token explicitly and attempt to verify it (#84) (#85)
1 parent b48ee18 commit 95580fb

File tree

1 file changed

+9
-1
lines changed

1 file changed

+9
-1
lines changed

secret/vault/vault.go

Lines changed: 9 additions & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -102,10 +102,18 @@ func (v *VaultSecrets) Renew(ctx context.Context) error {
102102
renew := time.NewTicker(v.renewal)
103103
defer renew.Stop()
104104
for range renew.C {
105-
_, err := v.client.Auth().Token().RenewSelf(0)
105+
token, err := v.client.Auth().Token().RenewSelf(0)
106106
if err != nil {
107107
return errors.Wrap(err, "failed to renew vault token")
108108
}
109+
if _, err = v.client.Auth().Token().LookupSelf(); err != nil {
110+
return errors.Wrap(err, "failed to connect to vault server")
111+
}
112+
v.client.SetToken(token.Auth.ClientToken)
113+
zap.L().Debug("renewed fault token",
114+
zap.String("lease_id", token.LeaseID),
115+
zap.Int("lease_duration", token.LeaseDuration),
116+
zap.Bool("renewable", token.Renewable))
109117
}
110118
return nil
111119
}

0 commit comments

Comments
 (0)