diff options
author | andreer <andreer@verizonmedia.com> | 2019-08-27 09:49:03 +0200 |
---|---|---|
committer | andreer <andreer@verizonmedia.com> | 2019-08-27 10:02:39 +0200 |
commit | 67135e7405b1576ab06f79e9f9f4856281fbc1be (patch) | |
tree | 8e1280d5eda10c161ce8201049dabcea6b405510 | |
parent | 811f423dc5a3b204bd6e5180ca0f3c4ce35f6a47 (diff) |
disable cert when feature flag is off, even if already provisioned
-rw-r--r-- | controller-server/src/main/java/com/yahoo/vespa/hosted/controller/ApplicationController.java | 11 |
1 files changed, 6 insertions, 5 deletions
diff --git a/controller-server/src/main/java/com/yahoo/vespa/hosted/controller/ApplicationController.java b/controller-server/src/main/java/com/yahoo/vespa/hosted/controller/ApplicationController.java index 6695077d4a9..b88712da131 100644 --- a/controller-server/src/main/java/com/yahoo/vespa/hosted/controller/ApplicationController.java +++ b/controller-server/src/main/java/com/yahoo/vespa/hosted/controller/ApplicationController.java @@ -545,16 +545,17 @@ public class ApplicationController { } private Optional<ApplicationCertificate> getApplicationCertificate(Application application) { + boolean provisionCertificate = provisionApplicationCertificate.with(FetchVector.Dimension.APPLICATION_ID, + application.id().serializedForm()).value(); + if (!provisionCertificate) { + return Optional.empty(); + } + // Re-use certificate if already provisioned Optional<ApplicationCertificate> applicationCertificate = curator.readApplicationCertificate(application.id()); if(applicationCertificate.isPresent()) return applicationCertificate; - boolean provisionCertificate = provisionApplicationCertificate.with(FetchVector.Dimension.APPLICATION_ID, - application.id().serializedForm()).value(); - if (!provisionCertificate) { - return Optional.empty(); - } ApplicationCertificate newCertificate = applicationCertificateProvider.requestCaSignedCertificate(application.id()); curator.writeApplicationCertificate(application.id(), newCertificate); |