k-space/dex
Archived
10
0
Fork 0
Code Issues Pull Requests Packages Projects Activity

server/rotation.go: avoid displaying the "keys already rotated" error

Browse Source
This commit is contained in:
rithu john 2017-04-11 10:48:08 -07:00
parent c3cafc8f39
commit dd1e901dd9
1 changed files with 4 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
server/rotation.go
View File

@ -5,7 +5,6 @@ import (
"crypto/rand" "crypto/rand"
"crypto/rsa" "crypto/rsa"
"encoding/hex" "encoding/hex"
"errors"
"fmt" "fmt"
"io" "io"
"time" "time"
@ -125,8 +124,11 @@ func (k keyRotater) rotate() error {
var nextRotation time.Time var nextRotation time.Time
err = k.Storage.UpdateKeys(func(keys storage.Keys) (storage.Keys, error) { err = k.Storage.UpdateKeys(func(keys storage.Keys) (storage.Keys, error) {
tNow := k.now() tNow := k.now()
// if you are running multiple instances of dex, another instance
// could have already rotated the keys.
if tNow.Before(keys.NextRotation) { if tNow.Before(keys.NextRotation) {
return storage.Keys{}, errors.New("keys already rotated") return storage.Keys{}, nil
} }
expired := func(key storage.VerificationKey) bool { expired := func(key storage.VerificationKey) bool {