alexvanin/certificates
1
0
Fork 0
forked from TrueCloudLab/certificates
Code Pull requests Activity

Make sure to define the KeyID from the token if available.

Browse source
This commit is contained in:
Mariano Cano 2019-12-10 16:34:01 -08:00 committed by max furman
parent 9c3349e90c
commit 08eac1b00d
1 changed files with 3 additions and 2 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

5
authority/provisioner/jwk.go
View file

@ -209,8 +209,9 @@ func (p *JWK) AuthorizeSSHSign(ctx context.Context, token string) ([]SignOption,
if !opts.ValidBefore.IsZero() { if !opts.ValidBefore.IsZero() {
signOptions = append(signOptions, sshCertificateValidBeforeModifier(opts.ValidBefore.RelativeTime(t).Unix())) signOptions = append(signOptions, sshCertificateValidBeforeModifier(opts.ValidBefore.RelativeTime(t).Unix()))
} }
// Make sure to define the the KeyID if opts.KeyID != "" {
if opts.KeyID == "" { signOptions = append(signOptions, sshCertificateKeyIDModifier(opts.KeyID))
} else {
signOptions = append(signOptions, sshCertificateKeyIDModifier(claims.Subject)) signOptions = append(signOptions, sshCertificateKeyIDModifier(claims.Subject))
} }