tokenserver/appengine/frontend/main.go - Issue 2413683004: token-server: Delegation config import, validation and evaluation.

Keyboard Shortcuts

	File
u :	up to issue
j / k :	jump to file after / before current file
J / K :	jump to next file with a comment after / before current file
	Side-by-side diff
i :	toggle intra-line diffs
e :	expand all comments
c :	collapse all comments
s :	toggle showing all comments
n / p :	next / previous diff chunk or comment
N / P :	next / previous comment
<Up> / <Down> :	next / previous line

	Issue
u :	up to list of issues
j / k :	jump to patch after / before current patch
o / <Enter> :	open current patch in side-by-side view
i :	open current patch in unified diff view

	Issue List
j / k :	jump to issue after / before current issue
o / <Enter> :	open current issue

Unified Diff: tokenserver/appengine/frontend/main.go

Issue 2413683004: token-server: Delegation config import, validation and evaluation. (Closed)

Patch Set: also check validity_duration Created 4 years, 2 months ago

Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.

Jump to:

View side-by-side diff with in-line comments

Download patch

« no previous file with comments | « tokenserver/appengine/delegation/validation_test.go ('k') | tokenserver/appengine/services/admin/adminsrv/service.go » ('j') | no next file with comments »
Expand Comments ('e') | Collapse Comments ('c') | Hide Comments ('s')

Index: tokenserver/appengine/frontend/main.go

diff --git a/tokenserver/appengine/frontend/main.go b/tokenserver/appengine/frontend/main.go

index d36ed3b7884a4c292d86bf1ed78eb0f2136e36c2..a557c5c33bf240576f493222509bddc0b07e3fdd 100644

--- a/tokenserver/appengine/frontend/main.go

+++ b/tokenserver/appengine/frontend/main.go

@@ -129,10 +129,33 @@ func readConfigCron(c *router.Context) {

c.Writer.WriteHeader(http.StatusOK)

return

}

- if _, err := adminServerWithoutAuth.ImportCAConfigs(c.Context, nil); err != nil {

- panic(err) // let panic catcher deal with it

- }

- c.Writer.WriteHeader(http.StatusOK)

+ wg := sync.WaitGroup{}

+ var errs [2]error

+ wg.Add(1)

+ go func() {

+ defer wg.Done()

+ _, errs[0] = adminServerWithoutAuth.ImportCAConfigs(c.Context, nil)

+ if errs[0] != nil {

+ logging.Errorf(c.Context, "ImportCAConfigs failed - %s", errs[0])

+ }

+ }()

+ wg.Add(1)

+ go func() {

+ defer wg.Done()

+ _, errs[1] = adminServerWithoutAuth.ImportDelegationConfigs(c.Context, nil)

+ if errs[1] != nil {

+ logging.Errorf(c.Context, "ImportDelegationConfigs failed - %s", errs[1])

+ }

+ }()

+ wg.Wait()

+ // Retry cron job only on transient errors. On fatal errors let it rerun one

+ // minute later, as usual, to avoid spamming logs with errors.

+ c.Writer.WriteHeader(statusFromErrs(errs[:]))

}

// fetchCRLCron is handler for /internal/cron/fetch-crl GAE cron task.

@@ -161,12 +184,15 @@ func fetchCRLCron(c *router.Context) {

// Retry cron job only on transient errors. On fatal errors let it rerun one

// minute later, as usual, to avoid spamming logs with errors.

- status := http.StatusOK

- for _, err = range errs {

+ c.Writer.WriteHeader(statusFromErrs(errs))

+// statusFromErrs returns 500 if any of gRPC errors is codes.Internal.

+func statusFromErrs(errs []error) int {

+ for _, err := range errs {

if grpc.Code(err) == codes.Internal {

- status = http.StatusInternalServerError

- break

+ return http.StatusInternalServerError

}

- c.Writer.WriteHeader(status)

+ return http.StatusOK

}

« no previous file with comments | « tokenserver/appengine/delegation/validation_test.go ('k') | tokenserver/appengine/services/admin/adminsrv/service.go » ('j') | no next file with comments »