Merge "s3token: Raise error on negative secret_cache_duration config"

2020-01-31 19:03:56 +00:00 · 2020-01-31 19:03:56 +00:00 · 43b43ca94a
commit 43b43ca94a
parent 3fc8cdefd4 46bde0c0b2
1 changed files with 3 additions and 1 deletions
--- a/swift/common/middleware/s3api/s3token.py
+++ b/swift/common/middleware/s3api/s3token.py
@ -179,7 +179,9 @@ class S3Token(object):
            self._verify = None

        self._secret_cache_duration = int(conf.get('secret_cache_duration', 0))
-        if self._secret_cache_duration > 0:
+        if self._secret_cache_duration < 0:
+            raise ValueError('secret_cache_duration must be non-negative')
+        if self._secret_cache_duration:
            try:
                auth_plugin = keystone_loading.get_plugin_loader(
                    conf.get('auth_type', 'password'))