Revert "Revert "Revert "Revert "Jonmv/reapply upgrade athenz""""

author: Jon Marius Venstad <jonmv@users.noreply.github.com> 2021-04-13 16:42:41 +0200
committer: GitHub <noreply@github.com> 2021-04-13 16:42:41 +0200
commit: ee3bc15f6c8610d633adb4d0d453301794b254de (patch)
tree: 47bdf6e86ee975e970de69e505d0185c73c146f2 /vespa-athenz/src/main/java
parent: 80ae4ab691dde21bb156285fafa7910baa4a42bd (diff)
1 files changed, 11 insertions, 1 deletions
diff --git a/vespa-athenz/src/main/java/com/yahoo/vespa/athenz/aws/AwsCredentials.java b/vespa-athenz/src/main/java/com/yahoo/vespa/athenz/aws/AwsCredentials.java
index 30ff63fb108..b5473929184 100644
--- a/vespa-athenz/src/main/java/com/yahoo/vespa/athenz/aws/AwsCredentials.java
+++ b/vespa-athenz/src/main/java/com/yahoo/vespa/athenz/aws/AwsCredentials.java
@@ -25,12 +25,18 @@ public class AwsCredentials {
     private final AthenzDomain athenzDomain;
     private final AwsRole awsRole;
     private final ZtsClient ztsClient;
+    private final String externalId;
     private volatile AwsTemporaryCredentials credentials;
 
     public AwsCredentials(ZtsClient ztsClient, AthenzDomain athenzDomain, AwsRole awsRole) {
+        this(ztsClient, athenzDomain, awsRole, null);
+    }
+
+    public AwsCredentials(ZtsClient ztsClient, AthenzDomain athenzDomain, AwsRole awsRole, String externalId) {
         this.ztsClient = ztsClient;
         this.athenzDomain = athenzDomain;
         this.awsRole = awsRole;
+        this.externalId = externalId;
         this.credentials = get();
     }
 
@@ -42,12 +48,16 @@ public class AwsCredentials {
         this(new DefaultZtsClient.Builder(ztsUrl).withSslContext(sslContext).build(), athenzDomain, awsRole);
     }
 
+    public AwsCredentials(URI ztsUrl, SSLContext sslContext, AthenzDomain athenzDomain, AwsRole awsRole, String externalId) {
+        this(new DefaultZtsClient.Builder(ztsUrl).withSslContext(sslContext).build(), athenzDomain, awsRole, externalId);
+    }
+
     /**
      * Requests temporary credentials from ZTS or return cached credentials
      */
     public AwsTemporaryCredentials get() {
         if(shouldRefresh(credentials)) {
-            this.credentials = ztsClient.getAwsTemporaryCredentials(athenzDomain, awsRole);
+            this.credentials = ztsClient.getAwsTemporaryCredentials(athenzDomain, awsRole, externalId);
         }
         return credentials;
     }
author	Jon Marius Venstad <jonmv@users.noreply.github.com>	2021-04-13 16:42:41 +0200
committer	GitHub <noreply@github.com>	2021-04-13 16:42:41 +0200
commit	ee3bc15f6c8610d633adb4d0d453301794b254de (patch)
tree	47bdf6e86ee975e970de69e505d0185c73c146f2 /vespa-athenz/src/main/java
parent	80ae4ab691dde21bb156285fafa7910baa4a42bd (diff)