Fix error message.

This commit is contained in:
Mariano Cano 2022-01-07 11:09:32 -08:00
parent 01a76445ea
commit 0920224816

View file

@ -326,12 +326,12 @@ func (p *Nebula) authorizeToken(token string, audiences []string) (*nebula.Nebul
return nil, nil, errs.UnauthorizedErr(err, errs.WithMessage("failed to parse nebula certificate: nebula header is not valid")) return nil, nil, errs.UnauthorizedErr(err, errs.WithMessage("failed to parse nebula certificate: nebula header is not valid"))
} }
// Validate nebula certificate against CA // Validate nebula certificate against CAs
if valid, err := c.Verify(now(), p.caPool); !valid { if valid, err := c.Verify(now(), p.caPool); !valid {
if err != nil { if err != nil {
return nil, nil, errs.UnauthorizedErr(err, errs.WithMessage("token is not valid: failed to unmarshal certificate")) return nil, nil, errs.UnauthorizedErr(err, errs.WithMessage("token is not valid: failed to verify certificate against configured CA"))
} }
return nil, nil, errs.Unauthorized("token is not valid: failed to unmarshal certificate") return nil, nil, errs.Unauthorized("token is not valid: failed to verify certificate against configured CA")
} }
var pub interface{} var pub interface{}