From 3a40761cf721ec025af21cf084343b20497b827c Mon Sep 17 00:00:00 2001 From: Mitchell Williams Date: Tue, 26 Mar 2024 10:11:48 -0600 Subject: [PATCH] fix: drop setting min_available_version --- .../facility/security/vault/VaultEncryptionService.java | 5 ++--- .../security/vault/VaultEncryptionServiceTest.groovy | 2 -- 2 files changed, 2 insertions(+), 5 deletions(-) diff --git a/encryption-service-vault/src/main/java/com/mx/path/service/facility/security/vault/VaultEncryptionService.java b/encryption-service-vault/src/main/java/com/mx/path/service/facility/security/vault/VaultEncryptionService.java index 036773b..a144f6a 100644 --- a/encryption-service-vault/src/main/java/com/mx/path/service/facility/security/vault/VaultEncryptionService.java +++ b/encryption-service-vault/src/main/java/com/mx/path/service/facility/security/vault/VaultEncryptionService.java @@ -190,7 +190,7 @@ final VaultTransitKey loadKey() { } /** - * Set the minimum decryption key, minimum encryption key and minimum available version + * Set the minimum decryption key and minimum encryption key * *

Does not raise exception on failure. * @@ -200,8 +200,7 @@ final void setMinVersion(int minVersion) { try { VaultResponse response = logicalWriteWithReauthentication("transit/keys/" + configuration.getKeyName() + "/config", ImmutableMap.of( "min_decryption_version", minVersion, - "min_encryption_version", minVersion, - "min_available_version", minVersion)); + "min_encryption_version", minVersion)); validateVaultOperationResponse(response, "Unable to update vault key"); } catch (RuntimeException e) { LOGGER.warn("Unable to update vault key", e); diff --git a/encryption-service-vault/src/test/groovy/com/mx/path/service/facility/security/vault/VaultEncryptionServiceTest.groovy b/encryption-service-vault/src/test/groovy/com/mx/path/service/facility/security/vault/VaultEncryptionServiceTest.groovy index 9ff1905..36e41b4 100644 --- a/encryption-service-vault/src/test/groovy/com/mx/path/service/facility/security/vault/VaultEncryptionServiceTest.groovy +++ b/encryption-service-vault/src/test/groovy/com/mx/path/service/facility/security/vault/VaultEncryptionServiceTest.groovy @@ -458,7 +458,6 @@ class VaultEncryptionServiceTest extends Specification { subject.rotateKeys() verify(logicalDriver).write("transit/keys/" + config.getKeyName() + "/rotate", null) verify(logicalDriver).write("transit/keys/" + config.getKeyName() + "/config", ImmutableMap.of( - "min_available_version", 3, "min_decryption_version", 3, "min_encryption_version", 3)) @@ -506,7 +505,6 @@ class VaultEncryptionServiceTest extends Specification { subject.setMinVersion(12) verify(logicalDriver).write("transit/keys/" + config.getKeyName() + "/config", ImmutableMap.of( - "min_available_version", 12, "min_decryption_version", 12, "min_encryption_version", 12))