Open lonegunmanb opened 4 years ago
I've built plugin from source and debug on localhost, now the plugin doesn't complain about not finding inline_policies, but missing remote_policies, and I've found problem. In path_secrets.go line 159:
// These just need to be detached, but we're not going to delete them because they're
// supposed to be longstanding.
remotePolicies, err := getRemotePolicies(req.Secret.InternalData, "remote_policies")
if err != nil {
// This shouldn't be part of the multierror because if it returns empty remote policies,
// then we won't go through the remotePolicies loop and we'll think we're successful
// when we actually didn't delete the remotePolicies we need to.
return nil, err
}
Lease created has no remote_policies as we can see from read alicloud/role/policy-based. We can just skip detaching remote policies. I've submitted a pull request: #50
Hello there,
I followed docs and wrote the policy-based like doc, and create a lease:
When I revoked lease, the access key has been deleted successfully, but policies and user remained. Vault server showed error log:
Which point to code line 141 in path_secrects.go:
Have I done something wrong? Thanks.