state: remove support for updating legacy ACL tokens

2021-10-05 12:13:04 -04:00 · 2021-10-05 12:13:04 -04:00 · 732b841dd7
parent 76b007dacd
commit 732b841dd7
2 changed files with 1 additions and 17 deletions
--- a/agent/consul/state/acl.go
+++ b/agent/consul/state/acl.go
@ -498,11 +498,7 @@ func aclTokenSetTxn(tx WriteTxn, idx uint64, token *structs.ACLToken, opts ACLTo
 	}

 	if opts.Legacy && original != nil {
-		if original.UsesNonLegacyFields() {
-			return fmt.Errorf("failed inserting acl token: cannot use legacy endpoint to modify a non-legacy token")
-		}
-
-		token.AccessorID = original.AccessorID
+		return fmt.Errorf("legacy tokens can not be modified")
 	}

 	if err := aclTokenUpsertValidateEnterprise(tx, token, original); err != nil {
--- a/agent/structs/acl.go
+++ b/agent/structs/acl.go
@ -412,18 +412,6 @@ func (t *ACLToken) HasExpirationTime() bool {
 	return t.ExpirationTime != nil && !t.ExpirationTime.IsZero()
 }

-// TODO(ACL-Legacy-Compat): remove
-func (t *ACLToken) UsesNonLegacyFields() bool {
-	return len(t.Policies) > 0 ||
-		len(t.ServiceIdentities) > 0 ||
-		len(t.NodeIdentities) > 0 ||
-		len(t.Roles) > 0 ||
-		t.Type == "" ||
-		t.HasExpirationTime() ||
-		t.ExpirationTTL != 0 ||
-		t.AuthMethod != ""
-}
-
 func (t *ACLToken) EnterpriseMetadata() *EnterpriseMeta {
 	return &t.EnterpriseMeta
 }