-
Notifications
You must be signed in to change notification settings - Fork 123
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Repos::ConjurCA doesn't raise a proper error when required secrets are empty #1315
Comments
@liavyona @orenbm: My knowledge about authn k8s troubleshooting is essentially non-existent. Could you please provide a more user focused description of the value that change provides? And please include an entry in the CHANGELOG. I'm assuming this is user facing, as an error class is changed and @InbalZilberman added it to the rolling release notes. Finally, I noticed that no tests were added/updated, which was a little surprising. Does this change need more coverage? Thanks! |
Hi @alexkalish
This is unsafe (might cause NoMethodError) due to:
|
@liavyona can you please add an entry under
|
Issue description
The class
Repos::ConjurCA
retrieves its required secrets by creating a Resource object and calling itslast_secret
method.This is not good for supportability as in case the variable has no value we get a "NoMethodError: undefined method 'value' for nil:NilClass" error which doesn't tell the story.
In
FetchRequiredSecrets
we first verify that the variable exists and that it has a value before retrieving it. We should use this class inRepos::ConjurCA
so we have this capability out of the box.Steps to reproduce the issue
conjur/authn-k8s/<service-id>/ca/cert
What's the expected result?
What's the actual result?
The text was updated successfully, but these errors were encountered: