Skip to content

Add mount type to request earlier#9389

Merged
sgmiller merged 2 commits into
masterfrom
mount-type-on-perm-fail
Jul 6, 2020
Merged

Add mount type to request earlier#9389
sgmiller merged 2 commits into
masterfrom
mount-type-on-perm-fail

Conversation

@sgmiller
Copy link
Copy Markdown
Collaborator

@sgmiller sgmiller commented Jul 2, 2020

In the case of requests with no vault token, routing never happens, where
MountType is typically populated on request. We have it from the
MatchingMountEntry check earlier in request handling, so this populates it
earlier, ensuring "mount_type" is on all audit entries.

@sgmiller sgmiller requested a review from alexanderbez July 2, 2020 19:43
alexanderbez
alexanderbez reviewed Jul 6, 2020
View reviewed changes
Comment thread vault/request_handling.go
@@ -582,6 +582,8 @@ func (c *Core) handleRequest(ctx context.Context, req *logical.Request) (retResp
var nonHMACReqDataKeys []string
entry := c.router.MatchingMountEntry(ctx, req.Path)
if entry != nil {
Copy link
Copy Markdown
Contributor

@alexanderbez alexanderbez Jul 6, 2020

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

nit: I think formatting is off here.

alexanderbez
alexanderbez approved these changes Jul 6, 2020
View reviewed changes
Copy link
Copy Markdown
Contributor

@alexanderbez alexanderbez left a comment
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM (just format). Should this be backported to 1.4.x?

@sgmiller sgmiller merged commit 2179d19 into master Jul 6, 2020
@sgmiller sgmiller deleted the mount-type-on-perm-fail branch July 6, 2020 16:17
@sgmiller
Copy link
Copy Markdown
Collaborator Author

sgmiller commented Jul 6, 2020

LGTM (just format). Should this be backported to 1.4.x?

No, the field was introduced in 1.5 in the first place.

sgmiller added a commit that referenced this pull request Jul 6, 2020
@sgmiller
Add mount type to request earlier, so it is populated on audit entrie…
8a79be1 
…s even if the request fails authorization (#9389)
@sgmiller sgmiller mentioned this pull request Jul 6, 2020
Merged
sgmiller added a commit that referenced this pull request Jul 7, 2020
@sgmiller
Add mount type to request earlier, so it is populated on audit entrie…
ed4d846 
…s even if the request fails authorization (#9389) (#9407)
andaley pushed a commit that referenced this pull request Jul 17, 2020
@sgmiller @andaley
Add mount type to request earlier, so it is populated on audit entrie…
ff5918d 
…s even if the request fails authorization (#9389)
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

1 more reviewer

@alexanderbez alexanderbez alexanderbez approved these changes

Reviewers whose approvals may not affect merge requirements

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@sgmiller @alexanderbez