aboutsummaryrefslogtreecommitdiffstats
path: root/jdisc-security-filters
diff options
context:
space:
mode:
authorBjørn Christian Seime <bjorncs@yahooinc.com>2023-07-17 13:53:32 +0200
committerBjørn Christian Seime <bjorncs@yahooinc.com>2023-07-17 13:53:32 +0200
commitb44d7430c2c5b792102fcdd15e0e9a41c54a1bce (patch)
tree0015c3170e6c63a9274febaf87c2ab66e84d0eb4 /jdisc-security-filters
parentdab95e8297ce1ddedcd64b57606ad03bfa36dce7 (diff)
Don't ignore expired tokens while processing config
Diffstat (limited to 'jdisc-security-filters')
-rw-r--r--jdisc-security-filters/src/main/java/com/yahoo/jdisc/http/filter/security/cloud/CloudDataPlaneFilter.java7
1 files changed, 1 insertions, 6 deletions
diff --git a/jdisc-security-filters/src/main/java/com/yahoo/jdisc/http/filter/security/cloud/CloudDataPlaneFilter.java b/jdisc-security-filters/src/main/java/com/yahoo/jdisc/http/filter/security/cloud/CloudDataPlaneFilter.java
index 554c1d924a2..2dc80fc9d2b 100644
--- a/jdisc-security-filters/src/main/java/com/yahoo/jdisc/http/filter/security/cloud/CloudDataPlaneFilter.java
+++ b/jdisc-security-filters/src/main/java/com/yahoo/jdisc/http/filter/security/cloud/CloudDataPlaneFilter.java
@@ -119,12 +119,7 @@ public class CloudDataPlaneFilter extends JsonSecurityRequestFilterBase {
var tokenVersion = TokenVersion.of(
token.id(), token.fingerprints().get(version), token.checkAccessHashes().get(version),
token.expirations().get(version));
- var expiration = tokenVersion.expiration().orElse(null);
- if (expiration != null && now.isAfter(expiration))
- log.fine(() -> "Ignoring expired version %s of token '%s' (expiration=%s)".formatted(
- tokenVersion.fingerprint(), tokenVersion.id(), expiration));
- else
- tokens.put(tokenVersion.accessHash(), tokenVersion);
+ tokens.put(tokenVersion.accessHash(), tokenVersion);
}
}
// Add reverse proxy certificate as required certificate for client definition