diff options
| author | Ola Aunronning <olaa@yahooinc.com> | 2023-04-28 20:05:45 +0200 |
|---|---|---|
| committer | Ola Aunronning <olaa@yahooinc.com> | 2023-04-28 20:05:45 +0200 |
| commit | 29aa86cf895d92cd85262292458cf05683f9ff84 (patch) | |
| tree | 5844eeadca616026a928753b3873e19ad8e06481 | |
| parent | b31758efe711888d724e9f8ca6c3d79aa0779fdf (diff) | |
Only maintain role certificate for tenant service identity
| -rw-r--r-- | node-admin/src/main/java/com/yahoo/vespa/hosted/node/admin/maintenance/identity/AthenzCredentialsMaintainer.java | 4 |
1 files changed, 3 insertions, 1 deletions
diff --git a/node-admin/src/main/java/com/yahoo/vespa/hosted/node/admin/maintenance/identity/AthenzCredentialsMaintainer.java b/node-admin/src/main/java/com/yahoo/vespa/hosted/node/admin/maintenance/identity/AthenzCredentialsMaintainer.java index 1c16340641d..57a6ceb68aa 100644 --- a/node-admin/src/main/java/com/yahoo/vespa/hosted/node/admin/maintenance/identity/AthenzCredentialsMaintainer.java +++ b/node-admin/src/main/java/com/yahoo/vespa/hosted/node/admin/maintenance/identity/AthenzCredentialsMaintainer.java @@ -171,7 +171,9 @@ public class AthenzCredentialsMaintainer implements CredentialsMaintainer { } } - modified |= maintainRoleCertificates(context, siaDirectory, privateKeyFile, certificateFile, athenzIdentity, doc.identityDocument()); + if (identityType == TENANT) { + modified |= maintainRoleCertificates(context, siaDirectory, privateKeyFile, certificateFile, athenzIdentity, doc.identityDocument()); + } return modified; } catch (IOException e) { throw new UncheckedIOException(e); |