@@ -43,13 +43,21 @@ protected Auth getVaultAuth(@NonNull Vault vault) {
4343 }
4444
4545 /**
46- * Retrieves a new token with specific policies if a list of requested policies is provided.
46+ * Should be implemented by classes that support creating child tokens.
47+ * @return true if child tokens can be used, false otherwise
48+ */
49+ protected boolean supportsChildTokens () {
50+ return false ;
51+ }
52+
53+ /**
54+ * Retrieves a new child token with specific policies if a list of requested policies is provided.
4755 * @param vault the vault instance
4856 * @param policies the policies list
4957 * @return the new token or null if no policies are defined
5058 */
51- protected String getTokenWithPolicies (Vault vault , List <String > policies ) {
52- if (policies == null || policies .isEmpty ()) {
59+ protected String getChildToken (Vault vault , List <String > policies ) {
60+ if (! supportsChildTokens () || policies == null || policies .isEmpty ()) {
5361 return null ;
5462 }
5563 Auth auth = getVaultAuth (vault );
@@ -90,7 +98,7 @@ public Vault authorizeWithVault(VaultConfig config, List<String> policies) {
9098 config .token (tokenCache .get (cacheKey ));
9199
92100 // After current token is configured, try to retrieve a new child token with limited policies
93- String childToken = getTokenWithPolicies (vault , policies );
101+ String childToken = getChildToken (vault , policies );
94102 if (childToken != null ) {
95103 // A new token was generated, put it in the cache and configure vault
96104 tokenCache .put (cacheKey , childToken );
0 commit comments