Invalidate sealed token on new token

If a new token grant occurs, do not retain stale token sealed, as it can be misleading.
2024-11-22 01:22:00 +00:00 · 2021-05-05 09:17:42 -04:00 · 2021-05-05 09:17:42 -04:00 · 8543129fb9
commit 8543129fb9
parent 257edff3a7
1 changed files with 1 additions and 1 deletions
--- a/confluent_server/confluent/credserver.py
+++ b/confluent_server/confluent/credserver.py
@ -88,7 +88,7 @@ class CredServer(object):
                client.close()
                return
            echotoken = util.stringify(client.recv(tlv[1]))
-            cfgupdate = {nodename: {'crypted.selfapikey': {'hashvalue': echotoken}, 'deployment.apiarmed': ''}}
+            cfgupdate = {nodename: {'crypted.selfapikey': {'hashvalue': echotoken}, 'deployment.sealedapikey': '', 'deployment.apiarmed': ''}}
            if apiarmed == 'continuous':
                del cfgupdate[nodename]['deployment.apiarmed']
            self.cfm.set_node_attributes(cfgupdate)