Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

RabbitMQ - bad admin password still returns creds which are invalid #8794

Open
CHR-LeeOlsen opened this issue Apr 21, 2020 · 3 comments
Open

RabbitMQ - bad admin password still returns creds which are invalid #8794

CHR-LeeOlsen opened this issue Apr 21, 2020 · 3 comments
Labels
secret/rabbitmq

Comments

@CHR-LeeOlsen
Copy link

Describe the bug
We were migrating to a new RabbitMQ cluster and the infrastructure team used a new password for the admin user that the Vault Policy was configured to use. Instead of Vault throwing an error, it was returning creds that were invalid since it was unable to create the user.

To Reproduce
Change the password of the admin user that Vault is using in RabbitMQ to something different without updating the Vault Policy config.

Expected behavior
Vault should throw an error.

Environment:

  • Vault Server Version: 1.3.1
@CHR-LeeOlsen
Copy link
Author

Maybe that was fixed here? #8619

@calvn
Copy link
Member

calvn commented Apr 23, 2020

It seems that it might be fixed by that PR. @tyrannosaurus-becks would you be able to confirm on this?

@tyrannosaurus-becks
Copy link
Contributor

It definitely could have been solved by that PR. Before, it had been swallowing non-200 responses, and now it fails loudly as it should. @CHR-LeeOlsen would you be willing to test with Vault 1.4.1 or later to see if the problem persists?

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
secret/rabbitmq
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
3 participants
@tyrannosaurus-becks @calvn @CHR-LeeOlsen