krd/vault-redux
1
0
Fork 0
Code

backport of commit 9b1120b0830060b3656977b4ce0d357fda2e5036 (#23917)

Browse Source 
Co-authored-by: davidadeleon <56207066+davidadeleon@users.noreply.github.com>
This commit is contained in:
hc-github-team-secure-vault-core 2023-10-31 10:49:28 -04:00 committed by GitHub
parent 76d238646b
commit 82047e61d0
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
2 changed files with 4 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

3
changelog/23894.txt Normal file
View File

@ -0,0 +1,3 @@
```release-note:bug
core: Skip unnecessary deriving of policies during Login MFA Check.
```

2
vault/request_handling.go
View File

@ -1659,7 +1659,7 @@ func (c *Core) handleLoginRequest(ctx context.Context, req *logical.Request) (re
source := c.router.MatchingMount(ctx, req.Path)
// Login MFA
entity, _, err := c.fetchEntityAndDerivedPolicies(ctx, ns, auth.EntityID, false)
entity, _, err := c.fetchEntityAndDerivedPolicies(ctx, ns, auth.EntityID, true)
if err != nil {
return nil, nil, ErrInternalError
}