github/kubernetes
1
0
Fork 0
mirror of https://github.com/k3s-io/kubernetes.git synced 2025-10-21 22:49:31 +00:00
Code Issues Projects Releases Wiki Activity

Ensure created service account tokens are available to the token controller

Browse Source
This commit is contained in:
Jordan Liggitt
2016-02-22 16:14:00 -05:00
parent c533ae4dd0
commit 92bf353496
2 changed files with 121 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

6
pkg/controller/serviceaccount/tokens_controller.go
View File

@@ -331,8 +331,12 @@ func (e *TokensController) createSecret(serviceAccount *api.ServiceAccount) erro
}
// Save the secret
if _, err := e.client.Core().Secrets(serviceAccount.Namespace).Create(secret); err != nil {
if createdToken, err := e.client.Core().Secrets(serviceAccount.Namespace).Create(secret); err != nil {
return err
} else {
// Manually add the new token to the cache store.
// This prevents the service account update (below) triggering another token creation, if the referenced token couldn't be found in the store
e.secrets.Add(createdToken)
}
liveServiceAccount.Secrets = append(liveServiceAccount.Secrets, api.ObjectReference{Name: secret.Name})