Skip to content

Commit de5766b

Browse files
dkocherdkocher
committed
When "Role Configurable" is set in profile allow prompt for ARN.
1 parent 0283ae5 commit de5766b

File tree

3 files changed

+7
-22
lines changed

3 files changed

+7
-22
lines changed

s3/src/main/java/ch/cyberduck/core/sts/STSAssumeRoleRequestInterceptor.java

Lines changed: 3 additions & 8 deletions
Original file line numberDiff line numberDiff line change
@@ -26,7 +26,6 @@
2626
import ch.cyberduck.core.ssl.X509KeyManager;
2727
import ch.cyberduck.core.ssl.X509TrustManager;
2828

29-
import org.apache.commons.lang3.StringUtils;
3029
import org.apache.http.HttpRequestInterceptor;
3130
import org.apache.logging.log4j.LogManager;
3231
import org.apache.logging.log4j.Logger;
@@ -53,13 +52,9 @@ public TemporaryAccessTokens refresh(final Credentials credentials) throws Backg
5352
try {
5453
final String arn = new ProxyPreferencesReader(host, credentials).getProperty(Profile.STS_ROLE_ARN_PROPERTY_KEY, "s3.assumerole.rolearn");
5554
log.debug("Use ARN {}", arn);
56-
if(StringUtils.isNotBlank(arn)) {
57-
log.debug("Retrieve temporary credentials with {}", credentials);
58-
// AssumeRoleRequest
59-
return tokens = this.assumeRole(credentials, arn);
60-
}
61-
log.warn("Skip requesting tokens from token service for {}", credentials);
62-
return TemporaryAccessTokens.EMPTY;
55+
log.debug("Retrieve temporary credentials with {}", credentials);
56+
// AssumeRoleRequest
57+
return tokens = this.assumeRole(credentials, arn);
6358
}
6459
finally {
6560
lock.unlock();

s3/src/main/java/ch/cyberduck/core/sts/STSAssumeRoleWithWebIdentityRequestInterceptor.java

Lines changed: 1 addition & 6 deletions
Original file line numberDiff line numberDiff line change
@@ -27,7 +27,6 @@
2727
import ch.cyberduck.core.ssl.X509KeyManager;
2828
import ch.cyberduck.core.ssl.X509TrustManager;
2929

30-
import org.apache.commons.lang3.StringUtils;
3130
import org.apache.http.HttpRequestInterceptor;
3231
import org.apache.logging.log4j.LogManager;
3332
import org.apache.logging.log4j.Logger;
@@ -62,11 +61,7 @@ public TemporaryAccessTokens refresh(final Credentials credentials) throws Backg
6261
try {
6362
final String arn = new ProxyPreferencesReader(host, credentials).getProperty(Profile.STS_ROLE_ARN_PROPERTY_KEY, "s3.assumerole.rolearn");
6463
log.debug("Use ARN {}", arn);
65-
if(StringUtils.isNotBlank(arn)) {
66-
return tokens = this.assumeRoleWithWebIdentity(oauth.refresh(credentials.getOauth()), arn);
67-
}
68-
log.warn("Skip requesting tokens from token service for {}", credentials);
69-
return TemporaryAccessTokens.EMPTY;
64+
return tokens = this.assumeRoleWithWebIdentity(oauth.refresh(credentials.getOauth()), arn);
7065
}
7166
finally {
7267
lock.unlock();

s3/src/main/java/ch/cyberduck/core/sts/STSGetSessionTokenRequestInterceptor.java

Lines changed: 3 additions & 8 deletions
Original file line numberDiff line numberDiff line change
@@ -26,7 +26,6 @@
2626
import ch.cyberduck.core.ssl.X509KeyManager;
2727
import ch.cyberduck.core.ssl.X509TrustManager;
2828

29-
import org.apache.commons.lang3.StringUtils;
3029
import org.apache.http.HttpRequestInterceptor;
3130
import org.apache.logging.log4j.LogManager;
3231
import org.apache.logging.log4j.Logger;
@@ -54,13 +53,9 @@ public TemporaryAccessTokens refresh(final Credentials credentials) throws Backg
5453
try {
5554
final String arn = new ProxyPreferencesReader(host, credentials).getProperty(Profile.STS_MFA_ARN_PROPERTY_KEY);
5655
log.debug("Use ARN {}", arn);
57-
if(StringUtils.isNotBlank(arn)) {
58-
log.debug("Retrieve temporary credentials with {}", credentials);
59-
// GetSessionToken
60-
return tokens = this.getSessionToken(credentials, arn);
61-
}
62-
log.warn("Skip requesting tokens from token service for {}", credentials);
63-
return TemporaryAccessTokens.EMPTY;
56+
log.debug("Retrieve temporary credentials with {}", credentials);
57+
// GetSessionToken
58+
return tokens = this.getSessionToken(credentials, arn);
6459
}
6560
finally {
6661
lock.unlock();

0 commit comments

Comments
 (0)