venafi: ResetCertificate wasn't working

Signed-off-by: Maël Valais <mael@vls.dev>
2023-10-06 16:24:15 +02:00 · 2023-10-06 16:24:15 +02:00 · d1d92b6398
commit d1d92b6398
parent d8035e668a
1 changed files with 6 additions and 3 deletions
--- a/pkg/issuer/venafi/client/request.go
+++ b/pkg/issuer/venafi/client/request.go
@ -66,9 +66,12 @@ func (v *Venafi) RequestCertificate(csrPEM []byte, duration time.Duration, custo
 	//
 	// Note that resetting won't affect the existing certificate if one was
 	// already issued.
-	tppConnector, isTPP := v.vcertClient.(*tpp.Connector)
-	if isTPP {
-		err := tppConnector.ResetCertificate(vreq, false)
+	if v.tppClient != nil {
+		// We can't use the instrumented v.vcertClient because its concrete
+		// value is `instrumentedConnector`, which doesn't give access to the
+		// *tpp.Connector it wraps. Also, `instrumentedConnector` doesn't
+		// support `ResetCertificate`.
+		err := v.tppClient.ResetCertificate(vreq, false)
 		notFoundErr := &tpp.ErrCertNotFound{}
 		if err != nil && !errors.As(err, &notFoundErr) {
 			return "", err