From d16b0beee39ea71e5941df376217a6719ae71898 Mon Sep 17 00:00:00 2001 From: vinay-gopalan <86625824+vinay-gopalan@users.noreply.github.com> Date: Thu, 27 Mar 2025 14:32:49 -0700 Subject: [PATCH] Forward Performance Standby requests when configuring root credentials for AWS, LDAP and DB engines (#30039) --- builtin/credential/aws/path_config_client.go | 4 ++++ builtin/credential/ldap/path_config.go | 2 ++ builtin/logical/aws/path_config_root.go | 4 ++++ .../logical/database/path_config_connection.go | 4 ++++ changelog/30039.txt | 15 +++++++++++++++ 5 files changed, 29 insertions(+) create mode 100644 changelog/30039.txt diff --git a/builtin/credential/aws/path_config_client.go b/builtin/credential/aws/path_config_client.go index 9884678a8d..6fc18d5018 100644 --- a/builtin/credential/aws/path_config_client.go +++ b/builtin/credential/aws/path_config_client.go @@ -107,6 +107,8 @@ func (b *backend) pathConfigClient() *framework.Path { OperationVerb: "configure", OperationSuffix: "client", }, + ForwardPerformanceSecondary: true, + ForwardPerformanceStandby: true, }, logical.UpdateOperation: &framework.PathOperation{ Callback: b.pathConfigClientCreateUpdate, @@ -114,6 +116,8 @@ func (b *backend) pathConfigClient() *framework.Path { OperationVerb: "configure", OperationSuffix: "client", }, + ForwardPerformanceSecondary: true, + ForwardPerformanceStandby: true, }, logical.DeleteOperation: &framework.PathOperation{ Callback: b.pathConfigClientDelete, diff --git a/builtin/credential/ldap/path_config.go b/builtin/credential/ldap/path_config.go index d2f2553f55..f666b4b1f7 100644 --- a/builtin/credential/ldap/path_config.go +++ b/builtin/credential/ldap/path_config.go @@ -44,6 +44,8 @@ func pathConfig(b *backend) *framework.Path { DisplayAttrs: &framework.DisplayAttributes{ OperationVerb: "configure-auth", }, + ForwardPerformanceSecondary: true, + ForwardPerformanceStandby: true, }, }, diff --git a/builtin/logical/aws/path_config_root.go b/builtin/logical/aws/path_config_root.go index b2d32ba3ef..ecfb19aae8 100644 --- a/builtin/logical/aws/path_config_root.go +++ b/builtin/logical/aws/path_config_root.go @@ -96,6 +96,8 @@ func pathConfigRoot(b *backend) *framework.Path { OperationVerb: "configure", OperationSuffix: "root-iam-credentials", }, + ForwardPerformanceSecondary: true, + ForwardPerformanceStandby: true, }, logical.CreateOperation: &framework.PathOperation{ Callback: b.pathConfigRootWrite, @@ -103,6 +105,8 @@ func pathConfigRoot(b *backend) *framework.Path { OperationVerb: "configure", OperationSuffix: "root-iam-credentials", }, + ForwardPerformanceSecondary: true, + ForwardPerformanceStandby: true, }, }, diff --git a/builtin/logical/database/path_config_connection.go b/builtin/logical/database/path_config_connection.go index 32994c8216..d06f2a9efe 100644 --- a/builtin/logical/database/path_config_connection.go +++ b/builtin/logical/database/path_config_connection.go @@ -288,6 +288,8 @@ func pathConfigurePluginConnection(b *databaseBackend) *framework.Path { OperationVerb: "configure", OperationSuffix: "connection", }, + ForwardPerformanceSecondary: true, + ForwardPerformanceStandby: true, }, logical.UpdateOperation: &framework.PathOperation{ Callback: b.connectionWriteHandler(), @@ -295,6 +297,8 @@ func pathConfigurePluginConnection(b *databaseBackend) *framework.Path { OperationVerb: "configure", OperationSuffix: "connection", }, + ForwardPerformanceSecondary: true, + ForwardPerformanceStandby: true, }, logical.ReadOperation: &framework.PathOperation{ Callback: b.connectionReadHandler(), diff --git a/changelog/30039.txt b/changelog/30039.txt new file mode 100644 index 0000000000..1dfc7a2b3a --- /dev/null +++ b/changelog/30039.txt @@ -0,0 +1,15 @@ +```release-note:bug +secrets/aws: fix a panic when a performance standby node attempts to write/update config. +``` + +```release-note:bug +auth/aws: fix a panic when a performance standby node attempts to write/update config. +``` + +```release-note:bug +auth/ldap: fix a panic when a performance standby node attempts to write/update config. +``` + +```release-note:bug +secrets/db: fix a panic when a performance standby node attempts to write/update config. +```