luxolus
/
deb.open-vault
2
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
deb.open-vault/vault/token_store_util_common.go

70 lines
2.1 KiB
Go
Raw Permalink Blame History

// Copyright (c) HashiCorp, Inc.
// SPDX-License-Identifier: MPL-2.0
package vault
import (
"context"
"encoding/json"
"fmt"
"github.com/hashicorp/vault/sdk/logical"
)
const sscGenCounterPath string = "core/sscGenCounter/"
type SSCTokenGenerationCounter struct {
Counter int
}
func (ts *TokenStore) GetSSCTokensGenerationCounter() int {
return ts.sscTokensGenerationCounter.Counter
}
func (ts *TokenStore) loadSSCTokensGenerationCounter(ctx context.Context) error {
sscTokensGenerationCounterStorageVal, err := ts.core.barrier.Get(ctx, sscGenCounterPath)
if err != nil {
return fmt.Errorf("unable to retrieve SSCTokenGenerationCounter from storage: err %w", err)
}
if sscTokensGenerationCounterStorageVal == nil {
ts.logger.Trace("no token generation counter found in storage")
ts.sscTokensGenerationCounter = SSCTokenGenerationCounter{Counter: 0}
return nil
}
var sscTokensGenerationCounter SSCTokenGenerationCounter
err = json.Unmarshal(sscTokensGenerationCounterStorageVal.Value, &sscTokensGenerationCounter)
if err != nil {
return fmt.Errorf("malformed token generation counter found in storage: err %w", err)
}
ts.logger.Debug("loaded ssct generation counter", "generation", sscTokensGenerationCounter.Counter)
ts.sscTokensGenerationCounter = sscTokensGenerationCounter
return nil
}
func (ts *TokenStore) UpdateSSCTokensGenerationCounter(ctx context.Context) error {
if err := ts.loadSSCTokensGenerationCounter(ctx); err != nil {
return err
}
ts.sscTokensGenerationCounter.Counter += 1
if ts.sscTokensGenerationCounter.Counter <= 0 {
// Don't store the 0 value
ts.logger.Warn("attempt to store non-positive token generation counter was ignored",
"sscTokensGenerationCounter", ts.sscTokensGenerationCounter.Counter)
}
marshalledCtr, err := json.Marshal(ts.sscTokensGenerationCounter)
if err != nil {
return err
}
err = ts.core.barrier.Put(ctx, &logical.StorageEntry{
Key: sscGenCounterPath,
Value: marshalledCtr,
})
if err != nil {
return err
}
ts.logger.Debug("updated ssct generation counter", "generation", ts.sscTokensGenerationCounter.Counter)
return nil
}
Reference in New Issue View Git Blame Copy Permalink