Closed zoxpx closed 6 months ago
Note, @adityadani , @CharudathGopal -- looks like the AWS secrets integration test
is failing (creds pulled out?)
Woops.. forgot to include UT with the original commit (fixed w/ follow-up f9fde71)
Ok.. I can't failing AWS Secrets Manager integration test
with modifying my tests -- looks like this test has been failing for 7 months.
I'll proceed w/ the squash-commit.
VAULT_COOLDOWN_PERIOD:disabled
What this PR does / why we need it:
Turns out it is easy to overwhelm Hasicorp's Vault, and accidentally cause DDOS-attack
As a fix, we're adding
REST cooldown
for 5 minutes, to all Vault REST client callsPUT<key>
++RENEW<token>
both responded w/ "permission denied")Which issue(s) this PR fixes (optional) Closes # PWX-36873
Special notes for your reviewer: