config: use getters for certificates (#2001)

* config: use getters for certificates

* update log message
This commit is contained in:
Caleb Doxsey 2021-03-23 08:02:50 -06:00 committed by GitHub
parent 36eeff296a
commit 853d2dd478
No known key found for this signature in database
GPG key ID: 4AEE18F83AFDEB23
8 changed files with 101 additions and 51 deletions

View file

@ -228,21 +228,20 @@ func (a *Authorize) getEvaluatorRequestFromCheckRequest(
func (a *Authorize) getDownstreamClientCA(policy *config.Policy) (string, error) {
options := a.currentOptions.Load()
switch {
case policy != nil && policy.TLSDownstreamClientCA != "":
if policy != nil && policy.TLSDownstreamClientCA != "" {
bs, err := base64.StdEncoding.DecodeString(policy.TLSDownstreamClientCA)
if err != nil {
return "", err
}
return string(bs), nil
case options.ClientCA != "":
bs, err := base64.StdEncoding.DecodeString(options.ClientCA)
if err != nil {
return "", err
}
return string(bs), nil
}
return "", nil
ca, err := options.GetClientCA()
if err != nil {
return "", err
}
return string(ca), nil
}
func (a *Authorize) getMatchingPolicy(requestURL url.URL) *config.Policy {