forked from TrueCloudLab/certificates
Merge pull request #1177 from smallstep/fix-cli-738
Return an appropriate error when requests fail
This commit is contained in:
commit
adad7ef970
2 changed files with 67 additions and 58 deletions
|
@ -144,7 +144,7 @@ func (c *AdminClient) GetAdmin(id string) (*linkedca.Admin, error) {
|
||||||
retry:
|
retry:
|
||||||
resp, err := c.client.Get(u.String())
|
resp, err := c.client.Get(u.String())
|
||||||
if err != nil {
|
if err != nil {
|
||||||
return nil, errors.Wrapf(err, "client GET %s failed", u)
|
return nil, clientError(err)
|
||||||
}
|
}
|
||||||
if resp.StatusCode >= 400 {
|
if resp.StatusCode >= 400 {
|
||||||
if !retried && c.retryOnError(resp) {
|
if !retried && c.retryOnError(resp) {
|
||||||
|
@ -227,7 +227,7 @@ func (c *AdminClient) GetAdminsPaginate(opts ...AdminOption) (*adminAPI.GetAdmin
|
||||||
retry:
|
retry:
|
||||||
resp, err := c.client.Do(req)
|
resp, err := c.client.Do(req)
|
||||||
if err != nil {
|
if err != nil {
|
||||||
return nil, errors.Wrapf(err, "client GET %s failed", u)
|
return nil, clientError(err)
|
||||||
}
|
}
|
||||||
if resp.StatusCode >= 400 {
|
if resp.StatusCode >= 400 {
|
||||||
if !retried && c.retryOnError(resp) {
|
if !retried && c.retryOnError(resp) {
|
||||||
|
@ -282,7 +282,7 @@ func (c *AdminClient) CreateAdmin(createAdminRequest *adminAPI.CreateAdminReques
|
||||||
retry:
|
retry:
|
||||||
resp, err := c.client.Do(req)
|
resp, err := c.client.Do(req)
|
||||||
if err != nil {
|
if err != nil {
|
||||||
return nil, errors.Wrapf(err, "client POST %s failed", u)
|
return nil, clientError(err)
|
||||||
}
|
}
|
||||||
if resp.StatusCode >= 400 {
|
if resp.StatusCode >= 400 {
|
||||||
if !retried && c.retryOnError(resp) {
|
if !retried && c.retryOnError(resp) {
|
||||||
|
@ -314,7 +314,7 @@ func (c *AdminClient) RemoveAdmin(id string) error {
|
||||||
retry:
|
retry:
|
||||||
resp, err := c.client.Do(req)
|
resp, err := c.client.Do(req)
|
||||||
if err != nil {
|
if err != nil {
|
||||||
return errors.Wrapf(err, "client DELETE %s failed", u)
|
return clientError(err)
|
||||||
}
|
}
|
||||||
if resp.StatusCode >= 400 {
|
if resp.StatusCode >= 400 {
|
||||||
if !retried && c.retryOnError(resp) {
|
if !retried && c.retryOnError(resp) {
|
||||||
|
@ -340,13 +340,13 @@ func (c *AdminClient) UpdateAdmin(id string, uar *adminAPI.UpdateAdminRequest) (
|
||||||
}
|
}
|
||||||
req, err := http.NewRequest("PATCH", u.String(), bytes.NewReader(body))
|
req, err := http.NewRequest("PATCH", u.String(), bytes.NewReader(body))
|
||||||
if err != nil {
|
if err != nil {
|
||||||
return nil, errors.Wrapf(err, "create PUT %s request failed", u)
|
return nil, errors.Wrapf(err, "create PATCH %s request failed", u)
|
||||||
}
|
}
|
||||||
req.Header.Add("Authorization", tok)
|
req.Header.Add("Authorization", tok)
|
||||||
retry:
|
retry:
|
||||||
resp, err := c.client.Do(req)
|
resp, err := c.client.Do(req)
|
||||||
if err != nil {
|
if err != nil {
|
||||||
return nil, errors.Wrapf(err, "client PUT %s failed", u)
|
return nil, clientError(err)
|
||||||
}
|
}
|
||||||
if resp.StatusCode >= 400 {
|
if resp.StatusCode >= 400 {
|
||||||
if !retried && c.retryOnError(resp) {
|
if !retried && c.retryOnError(resp) {
|
||||||
|
@ -387,13 +387,13 @@ func (c *AdminClient) GetProvisioner(opts ...ProvisionerOption) (*linkedca.Provi
|
||||||
}
|
}
|
||||||
req, err := http.NewRequest("GET", u.String(), http.NoBody)
|
req, err := http.NewRequest("GET", u.String(), http.NoBody)
|
||||||
if err != nil {
|
if err != nil {
|
||||||
return nil, errors.Wrapf(err, "create PUT %s request failed", u)
|
return nil, errors.Wrapf(err, "create GET %s request failed", u)
|
||||||
}
|
}
|
||||||
req.Header.Add("Authorization", tok)
|
req.Header.Add("Authorization", tok)
|
||||||
retry:
|
retry:
|
||||||
resp, err := c.client.Do(req)
|
resp, err := c.client.Do(req)
|
||||||
if err != nil {
|
if err != nil {
|
||||||
return nil, errors.Wrapf(err, "client GET %s failed", u)
|
return nil, clientError(err)
|
||||||
}
|
}
|
||||||
if resp.StatusCode >= 400 {
|
if resp.StatusCode >= 400 {
|
||||||
if !retried && c.retryOnError(resp) {
|
if !retried && c.retryOnError(resp) {
|
||||||
|
@ -426,13 +426,13 @@ func (c *AdminClient) GetProvisionersPaginate(opts ...ProvisionerOption) (*admin
|
||||||
}
|
}
|
||||||
req, err := http.NewRequest("GET", u.String(), http.NoBody)
|
req, err := http.NewRequest("GET", u.String(), http.NoBody)
|
||||||
if err != nil {
|
if err != nil {
|
||||||
return nil, errors.Wrapf(err, "create PUT %s request failed", u)
|
return nil, errors.Wrapf(err, "create GET %s request failed", u)
|
||||||
}
|
}
|
||||||
req.Header.Add("Authorization", tok)
|
req.Header.Add("Authorization", tok)
|
||||||
retry:
|
retry:
|
||||||
resp, err := c.client.Do(req)
|
resp, err := c.client.Do(req)
|
||||||
if err != nil {
|
if err != nil {
|
||||||
return nil, errors.Wrapf(err, "client GET %s failed", u)
|
return nil, clientError(err)
|
||||||
}
|
}
|
||||||
if resp.StatusCode >= 400 {
|
if resp.StatusCode >= 400 {
|
||||||
if !retried && c.retryOnError(resp) {
|
if !retried && c.retryOnError(resp) {
|
||||||
|
@ -502,7 +502,7 @@ func (c *AdminClient) RemoveProvisioner(opts ...ProvisionerOption) error {
|
||||||
retry:
|
retry:
|
||||||
resp, err := c.client.Do(req)
|
resp, err := c.client.Do(req)
|
||||||
if err != nil {
|
if err != nil {
|
||||||
return errors.Wrapf(err, "client DELETE %s failed", u)
|
return clientError(err)
|
||||||
}
|
}
|
||||||
if resp.StatusCode >= 400 {
|
if resp.StatusCode >= 400 {
|
||||||
if !retried && c.retryOnError(resp) {
|
if !retried && c.retryOnError(resp) {
|
||||||
|
@ -534,7 +534,7 @@ func (c *AdminClient) CreateProvisioner(prov *linkedca.Provisioner) (*linkedca.P
|
||||||
retry:
|
retry:
|
||||||
resp, err := c.client.Do(req)
|
resp, err := c.client.Do(req)
|
||||||
if err != nil {
|
if err != nil {
|
||||||
return nil, errors.Wrapf(err, "client POST %s failed", u)
|
return nil, clientError(err)
|
||||||
}
|
}
|
||||||
if resp.StatusCode >= 400 {
|
if resp.StatusCode >= 400 {
|
||||||
if !retried && c.retryOnError(resp) {
|
if !retried && c.retryOnError(resp) {
|
||||||
|
@ -570,7 +570,7 @@ func (c *AdminClient) UpdateProvisioner(name string, prov *linkedca.Provisioner)
|
||||||
retry:
|
retry:
|
||||||
resp, err := c.client.Do(req)
|
resp, err := c.client.Do(req)
|
||||||
if err != nil {
|
if err != nil {
|
||||||
return errors.Wrapf(err, "client PUT %s failed", u)
|
return clientError(err)
|
||||||
}
|
}
|
||||||
if resp.StatusCode >= 400 {
|
if resp.StatusCode >= 400 {
|
||||||
if !retried && c.retryOnError(resp) {
|
if !retried && c.retryOnError(resp) {
|
||||||
|
@ -609,7 +609,7 @@ func (c *AdminClient) GetExternalAccountKeysPaginate(provisionerName, reference
|
||||||
retry:
|
retry:
|
||||||
resp, err := c.client.Do(req)
|
resp, err := c.client.Do(req)
|
||||||
if err != nil {
|
if err != nil {
|
||||||
return nil, errors.Wrapf(err, "client GET %s failed", u)
|
return nil, clientError(err)
|
||||||
}
|
}
|
||||||
if resp.StatusCode >= 400 {
|
if resp.StatusCode >= 400 {
|
||||||
if !retried && c.retryOnError(resp) {
|
if !retried && c.retryOnError(resp) {
|
||||||
|
@ -645,7 +645,7 @@ func (c *AdminClient) CreateExternalAccountKey(provisionerName string, eakReques
|
||||||
retry:
|
retry:
|
||||||
resp, err := c.client.Do(req)
|
resp, err := c.client.Do(req)
|
||||||
if err != nil {
|
if err != nil {
|
||||||
return nil, errors.Wrapf(err, "client POST %s failed", u)
|
return nil, clientError(err)
|
||||||
}
|
}
|
||||||
if resp.StatusCode >= 400 {
|
if resp.StatusCode >= 400 {
|
||||||
if !retried && c.retryOnError(resp) {
|
if !retried && c.retryOnError(resp) {
|
||||||
|
@ -677,7 +677,7 @@ func (c *AdminClient) RemoveExternalAccountKey(provisionerName, keyID string) er
|
||||||
retry:
|
retry:
|
||||||
resp, err := c.client.Do(req)
|
resp, err := c.client.Do(req)
|
||||||
if err != nil {
|
if err != nil {
|
||||||
return errors.Wrapf(err, "client DELETE %s failed", u)
|
return clientError(err)
|
||||||
}
|
}
|
||||||
if resp.StatusCode >= 400 {
|
if resp.StatusCode >= 400 {
|
||||||
if !retried && c.retryOnError(resp) {
|
if !retried && c.retryOnError(resp) {
|
||||||
|
@ -704,7 +704,7 @@ func (c *AdminClient) GetAuthorityPolicy() (*linkedca.Policy, error) {
|
||||||
retry:
|
retry:
|
||||||
resp, err := c.client.Do(req)
|
resp, err := c.client.Do(req)
|
||||||
if err != nil {
|
if err != nil {
|
||||||
return nil, fmt.Errorf("client GET %s failed: %w", u, err)
|
return nil, clientError(err)
|
||||||
}
|
}
|
||||||
if resp.StatusCode >= 400 {
|
if resp.StatusCode >= 400 {
|
||||||
if !retried && c.retryOnError(resp) {
|
if !retried && c.retryOnError(resp) {
|
||||||
|
@ -739,7 +739,7 @@ func (c *AdminClient) CreateAuthorityPolicy(p *linkedca.Policy) (*linkedca.Polic
|
||||||
retry:
|
retry:
|
||||||
resp, err := c.client.Do(req)
|
resp, err := c.client.Do(req)
|
||||||
if err != nil {
|
if err != nil {
|
||||||
return nil, fmt.Errorf("client POST %s failed: %w", u, err)
|
return nil, clientError(err)
|
||||||
}
|
}
|
||||||
if resp.StatusCode >= 400 {
|
if resp.StatusCode >= 400 {
|
||||||
if !retried && c.retryOnError(resp) {
|
if !retried && c.retryOnError(resp) {
|
||||||
|
@ -774,7 +774,7 @@ func (c *AdminClient) UpdateAuthorityPolicy(p *linkedca.Policy) (*linkedca.Polic
|
||||||
retry:
|
retry:
|
||||||
resp, err := c.client.Do(req)
|
resp, err := c.client.Do(req)
|
||||||
if err != nil {
|
if err != nil {
|
||||||
return nil, fmt.Errorf("client PUT %s failed: %w", u, err)
|
return nil, clientError(err)
|
||||||
}
|
}
|
||||||
if resp.StatusCode >= 400 {
|
if resp.StatusCode >= 400 {
|
||||||
if !retried && c.retryOnError(resp) {
|
if !retried && c.retryOnError(resp) {
|
||||||
|
@ -805,7 +805,7 @@ func (c *AdminClient) RemoveAuthorityPolicy() error {
|
||||||
retry:
|
retry:
|
||||||
resp, err := c.client.Do(req)
|
resp, err := c.client.Do(req)
|
||||||
if err != nil {
|
if err != nil {
|
||||||
return fmt.Errorf("client DELETE %s failed: %w", u, err)
|
return clientError(err)
|
||||||
}
|
}
|
||||||
if resp.StatusCode >= 400 {
|
if resp.StatusCode >= 400 {
|
||||||
if !retried && c.retryOnError(resp) {
|
if !retried && c.retryOnError(resp) {
|
||||||
|
@ -832,7 +832,7 @@ func (c *AdminClient) GetProvisionerPolicy(provisionerName string) (*linkedca.Po
|
||||||
retry:
|
retry:
|
||||||
resp, err := c.client.Do(req)
|
resp, err := c.client.Do(req)
|
||||||
if err != nil {
|
if err != nil {
|
||||||
return nil, fmt.Errorf("client GET %s failed: %w", u, err)
|
return nil, clientError(err)
|
||||||
}
|
}
|
||||||
if resp.StatusCode >= 400 {
|
if resp.StatusCode >= 400 {
|
||||||
if !retried && c.retryOnError(resp) {
|
if !retried && c.retryOnError(resp) {
|
||||||
|
@ -867,7 +867,7 @@ func (c *AdminClient) CreateProvisionerPolicy(provisionerName string, p *linkedc
|
||||||
retry:
|
retry:
|
||||||
resp, err := c.client.Do(req)
|
resp, err := c.client.Do(req)
|
||||||
if err != nil {
|
if err != nil {
|
||||||
return nil, fmt.Errorf("client POST %s failed: %w", u, err)
|
return nil, clientError(err)
|
||||||
}
|
}
|
||||||
if resp.StatusCode >= 400 {
|
if resp.StatusCode >= 400 {
|
||||||
if !retried && c.retryOnError(resp) {
|
if !retried && c.retryOnError(resp) {
|
||||||
|
@ -902,7 +902,7 @@ func (c *AdminClient) UpdateProvisionerPolicy(provisionerName string, p *linkedc
|
||||||
retry:
|
retry:
|
||||||
resp, err := c.client.Do(req)
|
resp, err := c.client.Do(req)
|
||||||
if err != nil {
|
if err != nil {
|
||||||
return nil, fmt.Errorf("client PUT %s failed: %w", u, err)
|
return nil, clientError(err)
|
||||||
}
|
}
|
||||||
if resp.StatusCode >= 400 {
|
if resp.StatusCode >= 400 {
|
||||||
if !retried && c.retryOnError(resp) {
|
if !retried && c.retryOnError(resp) {
|
||||||
|
@ -933,7 +933,7 @@ func (c *AdminClient) RemoveProvisionerPolicy(provisionerName string) error {
|
||||||
retry:
|
retry:
|
||||||
resp, err := c.client.Do(req)
|
resp, err := c.client.Do(req)
|
||||||
if err != nil {
|
if err != nil {
|
||||||
return fmt.Errorf("client DELETE %s failed: %w", u, err)
|
return clientError(err)
|
||||||
}
|
}
|
||||||
if resp.StatusCode >= 400 {
|
if resp.StatusCode >= 400 {
|
||||||
if !retried && c.retryOnError(resp) {
|
if !retried && c.retryOnError(resp) {
|
||||||
|
@ -967,7 +967,7 @@ func (c *AdminClient) GetACMEPolicy(provisionerName, reference, keyID string) (*
|
||||||
retry:
|
retry:
|
||||||
resp, err := c.client.Do(req)
|
resp, err := c.client.Do(req)
|
||||||
if err != nil {
|
if err != nil {
|
||||||
return nil, fmt.Errorf("client GET %s failed: %w", u, err)
|
return nil, clientError(err)
|
||||||
}
|
}
|
||||||
if resp.StatusCode >= 400 {
|
if resp.StatusCode >= 400 {
|
||||||
if !retried && c.retryOnError(resp) {
|
if !retried && c.retryOnError(resp) {
|
||||||
|
@ -1009,7 +1009,7 @@ func (c *AdminClient) CreateACMEPolicy(provisionerName, reference, keyID string,
|
||||||
retry:
|
retry:
|
||||||
resp, err := c.client.Do(req)
|
resp, err := c.client.Do(req)
|
||||||
if err != nil {
|
if err != nil {
|
||||||
return nil, fmt.Errorf("client POST %s failed: %w", u, err)
|
return nil, clientError(err)
|
||||||
}
|
}
|
||||||
if resp.StatusCode >= 400 {
|
if resp.StatusCode >= 400 {
|
||||||
if !retried && c.retryOnError(resp) {
|
if !retried && c.retryOnError(resp) {
|
||||||
|
@ -1051,7 +1051,7 @@ func (c *AdminClient) UpdateACMEPolicy(provisionerName, reference, keyID string,
|
||||||
retry:
|
retry:
|
||||||
resp, err := c.client.Do(req)
|
resp, err := c.client.Do(req)
|
||||||
if err != nil {
|
if err != nil {
|
||||||
return nil, fmt.Errorf("client PUT %s failed: %w", u, err)
|
return nil, clientError(err)
|
||||||
}
|
}
|
||||||
if resp.StatusCode >= 400 {
|
if resp.StatusCode >= 400 {
|
||||||
if !retried && c.retryOnError(resp) {
|
if !retried && c.retryOnError(resp) {
|
||||||
|
@ -1089,7 +1089,7 @@ func (c *AdminClient) RemoveACMEPolicy(provisionerName, reference, keyID string)
|
||||||
retry:
|
retry:
|
||||||
resp, err := c.client.Do(req)
|
resp, err := c.client.Do(req)
|
||||||
if err != nil {
|
if err != nil {
|
||||||
return fmt.Errorf("client DELETE %s failed: %w", u, err)
|
return clientError(err)
|
||||||
}
|
}
|
||||||
if resp.StatusCode >= 400 {
|
if resp.StatusCode >= 400 {
|
||||||
if !retried && c.retryOnError(resp) {
|
if !retried && c.retryOnError(resp) {
|
||||||
|
@ -1120,7 +1120,7 @@ retry:
|
||||||
req.Header.Add("Authorization", tok)
|
req.Header.Add("Authorization", tok)
|
||||||
resp, err := c.client.Do(req)
|
resp, err := c.client.Do(req)
|
||||||
if err != nil {
|
if err != nil {
|
||||||
return nil, fmt.Errorf("client POST %s failed: %w", u, err)
|
return nil, clientError(err)
|
||||||
}
|
}
|
||||||
if resp.StatusCode >= 400 {
|
if resp.StatusCode >= 400 {
|
||||||
if !retried && c.retryOnError(resp) {
|
if !retried && c.retryOnError(resp) {
|
||||||
|
@ -1155,7 +1155,7 @@ retry:
|
||||||
req.Header.Add("Authorization", tok)
|
req.Header.Add("Authorization", tok)
|
||||||
resp, err := c.client.Do(req)
|
resp, err := c.client.Do(req)
|
||||||
if err != nil {
|
if err != nil {
|
||||||
return nil, fmt.Errorf("client PUT %s failed: %w", u, err)
|
return nil, clientError(err)
|
||||||
}
|
}
|
||||||
if resp.StatusCode >= 400 {
|
if resp.StatusCode >= 400 {
|
||||||
if !retried && c.retryOnError(resp) {
|
if !retried && c.retryOnError(resp) {
|
||||||
|
@ -1186,7 +1186,7 @@ retry:
|
||||||
req.Header.Add("Authorization", tok)
|
req.Header.Add("Authorization", tok)
|
||||||
resp, err := c.client.Do(req)
|
resp, err := c.client.Do(req)
|
||||||
if err != nil {
|
if err != nil {
|
||||||
return fmt.Errorf("client DELETE %s failed: %w", u, err)
|
return clientError(err)
|
||||||
}
|
}
|
||||||
if resp.StatusCode >= 400 {
|
if resp.StatusCode >= 400 {
|
||||||
if !retried && c.retryOnError(resp) {
|
if !retried && c.retryOnError(resp) {
|
||||||
|
|
63
ca/client.go
63
ca/client.go
|
@ -13,6 +13,7 @@ import (
|
||||||
"encoding/hex"
|
"encoding/hex"
|
||||||
"encoding/json"
|
"encoding/json"
|
||||||
"encoding/pem"
|
"encoding/pem"
|
||||||
|
"fmt"
|
||||||
"io"
|
"io"
|
||||||
"net/http"
|
"net/http"
|
||||||
"net/url"
|
"net/url"
|
||||||
|
@ -76,7 +77,7 @@ func (c *uaClient) SetTransport(tr http.RoundTripper) {
|
||||||
func (c *uaClient) Get(u string) (*http.Response, error) {
|
func (c *uaClient) Get(u string) (*http.Response, error) {
|
||||||
req, err := http.NewRequest("GET", u, http.NoBody)
|
req, err := http.NewRequest("GET", u, http.NoBody)
|
||||||
if err != nil {
|
if err != nil {
|
||||||
return nil, errors.Wrapf(err, "new request GET %s failed", u)
|
return nil, errors.Wrapf(err, "create GET %s request failed", u)
|
||||||
}
|
}
|
||||||
req.Header.Set("User-Agent", UserAgent)
|
req.Header.Set("User-Agent", UserAgent)
|
||||||
return c.Client.Do(req)
|
return c.Client.Do(req)
|
||||||
|
@ -85,7 +86,7 @@ func (c *uaClient) Get(u string) (*http.Response, error) {
|
||||||
func (c *uaClient) Post(u, contentType string, body io.Reader) (*http.Response, error) {
|
func (c *uaClient) Post(u, contentType string, body io.Reader) (*http.Response, error) {
|
||||||
req, err := http.NewRequest("POST", u, body)
|
req, err := http.NewRequest("POST", u, body)
|
||||||
if err != nil {
|
if err != nil {
|
||||||
return nil, err
|
return nil, errors.Wrapf(err, "create POST %s request failed", u)
|
||||||
}
|
}
|
||||||
req.Header.Set("Content-Type", contentType)
|
req.Header.Set("Content-Type", contentType)
|
||||||
req.Header.Set("User-Agent", UserAgent)
|
req.Header.Set("User-Agent", UserAgent)
|
||||||
|
@ -588,7 +589,7 @@ func (c *Client) Version() (*api.VersionResponse, error) {
|
||||||
retry:
|
retry:
|
||||||
resp, err := c.client.Get(u.String())
|
resp, err := c.client.Get(u.String())
|
||||||
if err != nil {
|
if err != nil {
|
||||||
return nil, errs.Wrapf(http.StatusInternalServerError, err, "client.Version; client GET %s failed", u)
|
return nil, clientError(err)
|
||||||
}
|
}
|
||||||
if resp.StatusCode >= 400 {
|
if resp.StatusCode >= 400 {
|
||||||
if !retried && c.retryOnError(resp) {
|
if !retried && c.retryOnError(resp) {
|
||||||
|
@ -612,7 +613,7 @@ func (c *Client) Health() (*api.HealthResponse, error) {
|
||||||
retry:
|
retry:
|
||||||
resp, err := c.client.Get(u.String())
|
resp, err := c.client.Get(u.String())
|
||||||
if err != nil {
|
if err != nil {
|
||||||
return nil, errs.Wrapf(http.StatusInternalServerError, err, "client.Health; client GET %s failed", u)
|
return nil, clientError(err)
|
||||||
}
|
}
|
||||||
if resp.StatusCode >= 400 {
|
if resp.StatusCode >= 400 {
|
||||||
if !retried && c.retryOnError(resp) {
|
if !retried && c.retryOnError(resp) {
|
||||||
|
@ -639,7 +640,7 @@ func (c *Client) Root(sha256Sum string) (*api.RootResponse, error) {
|
||||||
retry:
|
retry:
|
||||||
resp, err := newInsecureClient().Get(u.String())
|
resp, err := newInsecureClient().Get(u.String())
|
||||||
if err != nil {
|
if err != nil {
|
||||||
return nil, errs.Wrapf(http.StatusInternalServerError, err, "client.Root; client GET %s failed", u)
|
return nil, clientError(err)
|
||||||
}
|
}
|
||||||
if resp.StatusCode >= 400 {
|
if resp.StatusCode >= 400 {
|
||||||
if !retried && c.retryOnError(resp) {
|
if !retried && c.retryOnError(resp) {
|
||||||
|
@ -672,7 +673,7 @@ func (c *Client) Sign(req *api.SignRequest) (*api.SignResponse, error) {
|
||||||
retry:
|
retry:
|
||||||
resp, err := c.client.Post(u.String(), "application/json", bytes.NewReader(body))
|
resp, err := c.client.Post(u.String(), "application/json", bytes.NewReader(body))
|
||||||
if err != nil {
|
if err != nil {
|
||||||
return nil, errs.Wrapf(http.StatusInternalServerError, err, "client.Sign; client POST %s failed", u)
|
return nil, clientError(err)
|
||||||
}
|
}
|
||||||
if resp.StatusCode >= 400 {
|
if resp.StatusCode >= 400 {
|
||||||
if !retried && c.retryOnError(resp) {
|
if !retried && c.retryOnError(resp) {
|
||||||
|
@ -700,7 +701,7 @@ func (c *Client) Renew(tr http.RoundTripper) (*api.SignResponse, error) {
|
||||||
retry:
|
retry:
|
||||||
resp, err := client.Post(u.String(), "application/json", http.NoBody)
|
resp, err := client.Post(u.String(), "application/json", http.NoBody)
|
||||||
if err != nil {
|
if err != nil {
|
||||||
return nil, errs.Wrapf(http.StatusInternalServerError, err, "client.Renew; client POST %s failed", u)
|
return nil, clientError(err)
|
||||||
}
|
}
|
||||||
if resp.StatusCode >= 400 {
|
if resp.StatusCode >= 400 {
|
||||||
if !retried && c.retryOnError(resp) {
|
if !retried && c.retryOnError(resp) {
|
||||||
|
@ -724,13 +725,13 @@ func (c *Client) RenewWithToken(token string) (*api.SignResponse, error) {
|
||||||
u := c.endpoint.ResolveReference(&url.URL{Path: "/renew"})
|
u := c.endpoint.ResolveReference(&url.URL{Path: "/renew"})
|
||||||
req, err := http.NewRequest("POST", u.String(), http.NoBody)
|
req, err := http.NewRequest("POST", u.String(), http.NoBody)
|
||||||
if err != nil {
|
if err != nil {
|
||||||
return nil, errs.Wrapf(http.StatusInternalServerError, err, "client.RenewWithToken; error creating request")
|
return nil, errors.Wrapf(err, "create POST %s request failed", u)
|
||||||
}
|
}
|
||||||
req.Header.Add("Authorization", "Bearer "+token)
|
req.Header.Add("Authorization", "Bearer "+token)
|
||||||
retry:
|
retry:
|
||||||
resp, err := c.client.Do(req)
|
resp, err := c.client.Do(req)
|
||||||
if err != nil {
|
if err != nil {
|
||||||
return nil, errs.Wrapf(http.StatusInternalServerError, err, "client.RenewWithToken; client POST %s failed", u)
|
return nil, clientError(err)
|
||||||
}
|
}
|
||||||
if resp.StatusCode >= 400 {
|
if resp.StatusCode >= 400 {
|
||||||
if !retried && c.retryOnError(resp) {
|
if !retried && c.retryOnError(resp) {
|
||||||
|
@ -760,7 +761,7 @@ func (c *Client) Rekey(req *api.RekeyRequest, tr http.RoundTripper) (*api.SignRe
|
||||||
retry:
|
retry:
|
||||||
resp, err := client.Post(u.String(), "application/json", bytes.NewReader(body))
|
resp, err := client.Post(u.String(), "application/json", bytes.NewReader(body))
|
||||||
if err != nil {
|
if err != nil {
|
||||||
return nil, errs.Wrapf(http.StatusInternalServerError, err, "client.Rekey; client POST %s failed", u)
|
return nil, clientError(err)
|
||||||
}
|
}
|
||||||
if resp.StatusCode >= 400 {
|
if resp.StatusCode >= 400 {
|
||||||
if !retried && c.retryOnError(resp) {
|
if !retried && c.retryOnError(resp) {
|
||||||
|
@ -795,7 +796,7 @@ retry:
|
||||||
u := c.endpoint.ResolveReference(&url.URL{Path: "/revoke"})
|
u := c.endpoint.ResolveReference(&url.URL{Path: "/revoke"})
|
||||||
resp, err := client.Post(u.String(), "application/json", bytes.NewReader(body))
|
resp, err := client.Post(u.String(), "application/json", bytes.NewReader(body))
|
||||||
if err != nil {
|
if err != nil {
|
||||||
return nil, errors.Wrapf(err, "client POST %s failed", u)
|
return nil, clientError(err)
|
||||||
}
|
}
|
||||||
if resp.StatusCode >= 400 {
|
if resp.StatusCode >= 400 {
|
||||||
if !retried && c.retryOnError(resp) {
|
if !retried && c.retryOnError(resp) {
|
||||||
|
@ -829,7 +830,7 @@ func (c *Client) Provisioners(opts ...ProvisionerOption) (*api.ProvisionersRespo
|
||||||
retry:
|
retry:
|
||||||
resp, err := c.client.Get(u.String())
|
resp, err := c.client.Get(u.String())
|
||||||
if err != nil {
|
if err != nil {
|
||||||
return nil, errors.Wrapf(err, "client GET %s failed", u)
|
return nil, clientError(err)
|
||||||
}
|
}
|
||||||
if resp.StatusCode >= 400 {
|
if resp.StatusCode >= 400 {
|
||||||
if !retried && c.retryOnError(resp) {
|
if !retried && c.retryOnError(resp) {
|
||||||
|
@ -854,7 +855,7 @@ func (c *Client) ProvisionerKey(kid string) (*api.ProvisionerKeyResponse, error)
|
||||||
retry:
|
retry:
|
||||||
resp, err := c.client.Get(u.String())
|
resp, err := c.client.Get(u.String())
|
||||||
if err != nil {
|
if err != nil {
|
||||||
return nil, errors.Wrapf(err, "client GET %s failed", u)
|
return nil, clientError(err)
|
||||||
}
|
}
|
||||||
if resp.StatusCode >= 400 {
|
if resp.StatusCode >= 400 {
|
||||||
if !retried && c.retryOnError(resp) {
|
if !retried && c.retryOnError(resp) {
|
||||||
|
@ -878,7 +879,7 @@ func (c *Client) Roots() (*api.RootsResponse, error) {
|
||||||
retry:
|
retry:
|
||||||
resp, err := c.client.Get(u.String())
|
resp, err := c.client.Get(u.String())
|
||||||
if err != nil {
|
if err != nil {
|
||||||
return nil, errors.Wrapf(err, "client GET %s failed", u)
|
return nil, clientError(err)
|
||||||
}
|
}
|
||||||
if resp.StatusCode >= 400 {
|
if resp.StatusCode >= 400 {
|
||||||
if !retried && c.retryOnError(resp) {
|
if !retried && c.retryOnError(resp) {
|
||||||
|
@ -902,7 +903,7 @@ func (c *Client) Federation() (*api.FederationResponse, error) {
|
||||||
retry:
|
retry:
|
||||||
resp, err := c.client.Get(u.String())
|
resp, err := c.client.Get(u.String())
|
||||||
if err != nil {
|
if err != nil {
|
||||||
return nil, errors.Wrapf(err, "client GET %s failed", u)
|
return nil, clientError(err)
|
||||||
}
|
}
|
||||||
if resp.StatusCode >= 400 {
|
if resp.StatusCode >= 400 {
|
||||||
if !retried && c.retryOnError(resp) {
|
if !retried && c.retryOnError(resp) {
|
||||||
|
@ -930,7 +931,7 @@ func (c *Client) SSHSign(req *api.SSHSignRequest) (*api.SSHSignResponse, error)
|
||||||
retry:
|
retry:
|
||||||
resp, err := c.client.Post(u.String(), "application/json", bytes.NewReader(body))
|
resp, err := c.client.Post(u.String(), "application/json", bytes.NewReader(body))
|
||||||
if err != nil {
|
if err != nil {
|
||||||
return nil, errors.Wrapf(err, "client POST %s failed", u)
|
return nil, clientError(err)
|
||||||
}
|
}
|
||||||
if resp.StatusCode >= 400 {
|
if resp.StatusCode >= 400 {
|
||||||
if !retried && c.retryOnError(resp) {
|
if !retried && c.retryOnError(resp) {
|
||||||
|
@ -958,7 +959,7 @@ func (c *Client) SSHRenew(req *api.SSHRenewRequest) (*api.SSHRenewResponse, erro
|
||||||
retry:
|
retry:
|
||||||
resp, err := c.client.Post(u.String(), "application/json", bytes.NewReader(body))
|
resp, err := c.client.Post(u.String(), "application/json", bytes.NewReader(body))
|
||||||
if err != nil {
|
if err != nil {
|
||||||
return nil, errors.Wrapf(err, "client POST %s failed", u)
|
return nil, clientError(err)
|
||||||
}
|
}
|
||||||
if resp.StatusCode >= 400 {
|
if resp.StatusCode >= 400 {
|
||||||
if !retried && c.retryOnError(resp) {
|
if !retried && c.retryOnError(resp) {
|
||||||
|
@ -986,7 +987,7 @@ func (c *Client) SSHRekey(req *api.SSHRekeyRequest) (*api.SSHRekeyResponse, erro
|
||||||
retry:
|
retry:
|
||||||
resp, err := c.client.Post(u.String(), "application/json", bytes.NewReader(body))
|
resp, err := c.client.Post(u.String(), "application/json", bytes.NewReader(body))
|
||||||
if err != nil {
|
if err != nil {
|
||||||
return nil, errors.Wrapf(err, "client POST %s failed", u)
|
return nil, clientError(err)
|
||||||
}
|
}
|
||||||
if resp.StatusCode >= 400 {
|
if resp.StatusCode >= 400 {
|
||||||
if !retried && c.retryOnError(resp) {
|
if !retried && c.retryOnError(resp) {
|
||||||
|
@ -1014,7 +1015,7 @@ func (c *Client) SSHRevoke(req *api.SSHRevokeRequest) (*api.SSHRevokeResponse, e
|
||||||
retry:
|
retry:
|
||||||
resp, err := c.client.Post(u.String(), "application/json", bytes.NewReader(body))
|
resp, err := c.client.Post(u.String(), "application/json", bytes.NewReader(body))
|
||||||
if err != nil {
|
if err != nil {
|
||||||
return nil, errors.Wrapf(err, "client POST %s failed", u)
|
return nil, clientError(err)
|
||||||
}
|
}
|
||||||
if resp.StatusCode >= 400 {
|
if resp.StatusCode >= 400 {
|
||||||
if !retried && c.retryOnError(resp) {
|
if !retried && c.retryOnError(resp) {
|
||||||
|
@ -1038,7 +1039,7 @@ func (c *Client) SSHRoots() (*api.SSHRootsResponse, error) {
|
||||||
retry:
|
retry:
|
||||||
resp, err := c.client.Get(u.String())
|
resp, err := c.client.Get(u.String())
|
||||||
if err != nil {
|
if err != nil {
|
||||||
return nil, errors.Wrapf(err, "client GET %s failed", u)
|
return nil, clientError(err)
|
||||||
}
|
}
|
||||||
if resp.StatusCode >= 400 {
|
if resp.StatusCode >= 400 {
|
||||||
if !retried && c.retryOnError(resp) {
|
if !retried && c.retryOnError(resp) {
|
||||||
|
@ -1062,7 +1063,7 @@ func (c *Client) SSHFederation() (*api.SSHRootsResponse, error) {
|
||||||
retry:
|
retry:
|
||||||
resp, err := c.client.Get(u.String())
|
resp, err := c.client.Get(u.String())
|
||||||
if err != nil {
|
if err != nil {
|
||||||
return nil, errors.Wrapf(err, "client GET %s failed", u)
|
return nil, clientError(err)
|
||||||
}
|
}
|
||||||
if resp.StatusCode >= 400 {
|
if resp.StatusCode >= 400 {
|
||||||
if !retried && c.retryOnError(resp) {
|
if !retried && c.retryOnError(resp) {
|
||||||
|
@ -1090,7 +1091,7 @@ func (c *Client) SSHConfig(req *api.SSHConfigRequest) (*api.SSHConfigResponse, e
|
||||||
retry:
|
retry:
|
||||||
resp, err := c.client.Post(u.String(), "application/json", bytes.NewReader(body))
|
resp, err := c.client.Post(u.String(), "application/json", bytes.NewReader(body))
|
||||||
if err != nil {
|
if err != nil {
|
||||||
return nil, errors.Wrapf(err, "client POST %s failed", u)
|
return nil, clientError(err)
|
||||||
}
|
}
|
||||||
if resp.StatusCode >= 400 {
|
if resp.StatusCode >= 400 {
|
||||||
if !retried && c.retryOnError(resp) {
|
if !retried && c.retryOnError(resp) {
|
||||||
|
@ -1123,8 +1124,7 @@ func (c *Client) SSHCheckHost(principal, token string) (*api.SSHCheckPrincipalRe
|
||||||
retry:
|
retry:
|
||||||
resp, err := c.client.Post(u.String(), "application/json", bytes.NewReader(body))
|
resp, err := c.client.Post(u.String(), "application/json", bytes.NewReader(body))
|
||||||
if err != nil {
|
if err != nil {
|
||||||
return nil, errs.Wrapf(http.StatusInternalServerError, err, "client POST %s failed",
|
return nil, clientError(err)
|
||||||
[]interface{}{u, errs.WithMessage("Failed to perform POST request to %s", u)}...)
|
|
||||||
}
|
}
|
||||||
if resp.StatusCode >= 400 {
|
if resp.StatusCode >= 400 {
|
||||||
if !retried && c.retryOnError(resp) {
|
if !retried && c.retryOnError(resp) {
|
||||||
|
@ -1148,7 +1148,7 @@ func (c *Client) SSHGetHosts() (*api.SSHGetHostsResponse, error) {
|
||||||
retry:
|
retry:
|
||||||
resp, err := c.client.Get(u.String())
|
resp, err := c.client.Get(u.String())
|
||||||
if err != nil {
|
if err != nil {
|
||||||
return nil, errors.Wrapf(err, "client GET %s failed", u)
|
return nil, clientError(err)
|
||||||
}
|
}
|
||||||
if resp.StatusCode >= 400 {
|
if resp.StatusCode >= 400 {
|
||||||
if !retried && c.retryOnError(resp) {
|
if !retried && c.retryOnError(resp) {
|
||||||
|
@ -1175,7 +1175,7 @@ func (c *Client) SSHBastion(req *api.SSHBastionRequest) (*api.SSHBastionResponse
|
||||||
retry:
|
retry:
|
||||||
resp, err := c.client.Post(u.String(), "application/json", bytes.NewReader(body))
|
resp, err := c.client.Post(u.String(), "application/json", bytes.NewReader(body))
|
||||||
if err != nil {
|
if err != nil {
|
||||||
return nil, errors.Wrapf(err, "client.SSHBastion; client POST %s failed", u)
|
return nil, clientError(err)
|
||||||
}
|
}
|
||||||
if resp.StatusCode >= 400 {
|
if resp.StatusCode >= 400 {
|
||||||
if !retried && c.retryOnError(resp) {
|
if !retried && c.retryOnError(resp) {
|
||||||
|
@ -1198,7 +1198,7 @@ func (c *Client) RootFingerprint() (string, error) {
|
||||||
u := c.endpoint.ResolveReference(&url.URL{Path: "/health"})
|
u := c.endpoint.ResolveReference(&url.URL{Path: "/health"})
|
||||||
resp, err := c.client.Get(u.String())
|
resp, err := c.client.Get(u.String())
|
||||||
if err != nil {
|
if err != nil {
|
||||||
return "", errors.Wrapf(err, "client GET %s failed", u)
|
return "", clientError(err)
|
||||||
}
|
}
|
||||||
defer resp.Body.Close()
|
defer resp.Body.Close()
|
||||||
if resp.TLS == nil || len(resp.TLS.VerifiedChains) == 0 {
|
if resp.TLS == nil || len(resp.TLS.VerifiedChains) == 0 {
|
||||||
|
@ -1353,3 +1353,12 @@ func readError(r io.ReadCloser) error {
|
||||||
}
|
}
|
||||||
return apiErr
|
return apiErr
|
||||||
}
|
}
|
||||||
|
|
||||||
|
func clientError(err error) error {
|
||||||
|
var uerr *url.Error
|
||||||
|
if errors.As(err, &uerr) {
|
||||||
|
return fmt.Errorf("client %s %s failed: %w",
|
||||||
|
strings.ToUpper(uerr.Op), uerr.URL, uerr.Err)
|
||||||
|
}
|
||||||
|
return fmt.Errorf("client request failed: %w", err)
|
||||||
|
}
|
||||||
|
|
Loading…
Reference in a new issue