diff options
author | Andreas Eriksen <andreer@yahooinc.com> | 2022-06-07 21:03:38 +0200 |
---|---|---|
committer | Andreas Eriksen <andreer@yahooinc.com> | 2022-06-07 21:03:38 +0200 |
commit | 42c493c88ebd4e18b154cdde3a141f47cb3e2f92 (patch) | |
tree | 5b919e93db2ae8e0a4cc761b7ced8ce080d15e99 | |
parent | f55c43a5cbf3b0713553410c6e0fa97fa25c187e (diff) |
log details on certificate retrieval failure
-rw-r--r-- | configserver/src/main/java/com/yahoo/vespa/config/server/tenant/EndpointCertificateRetriever.java | 5 |
1 files changed, 5 insertions, 0 deletions
diff --git a/configserver/src/main/java/com/yahoo/vespa/config/server/tenant/EndpointCertificateRetriever.java b/configserver/src/main/java/com/yahoo/vespa/config/server/tenant/EndpointCertificateRetriever.java index 74c193cbf58..26c998476d0 100644 --- a/configserver/src/main/java/com/yahoo/vespa/config/server/tenant/EndpointCertificateRetriever.java +++ b/configserver/src/main/java/com/yahoo/vespa/config/server/tenant/EndpointCertificateRetriever.java @@ -4,6 +4,7 @@ package com.yahoo.vespa.config.server.tenant; import com.yahoo.config.model.api.EndpointCertificateMetadata; import com.yahoo.config.model.api.EndpointCertificateSecrets; import com.yahoo.container.jdisc.secretstore.SecretStore; +import com.yahoo.log.LogLevel; import com.yahoo.security.KeyUtils; import com.yahoo.security.X509CertificateUtils; @@ -11,6 +12,7 @@ import java.security.PrivateKey; import java.security.PublicKey; import java.security.cert.X509Certificate; import java.util.Optional; +import java.util.logging.Logger; /** * Used to retrieve actual endpoint certificate/key from secret store. @@ -25,6 +27,8 @@ public class EndpointCertificateRetriever { this.secretStore = secretStore; } + private static final Logger log = Logger.getLogger(EndpointCertificateRetriever.class.getName()); + public Optional<EndpointCertificateSecrets> readEndpointCertificateSecrets(EndpointCertificateMetadata metadata) { return Optional.of(readFromSecretStore(metadata)); } @@ -38,6 +42,7 @@ public class EndpointCertificateRetriever { return new EndpointCertificateSecrets(cert, key); } catch (RuntimeException e) { + log.log(LogLevel.WARNING, "Exception thrown during certificate retrieval", e); // Assume not ready yet return EndpointCertificateSecrets.MISSING; } |