salt-extensions · lkubb · Oct 2, 2024 · Sep 4, 2024 · Sep 14, 2024 · lkubb
diff --git a/changelog/85.fixed.md b/changelog/85.fixed.md
@@ -0,0 +1 @@
+Change unseal query to be always unauthenticated.
diff --git a/src/saltext/vault/runners/vault.py b/src/saltext/vault/runners/vault.py
@@ -548,7 +548,9 @@ def unseal():
         salt-run vault.unseal
     """
     for key in __opts__["vault"]["keys"]:
-        ret = vault.query("POST", "sys/unseal", __opts__, __context__, payload={"key": key})
+        ret = vault.query(
+            "POST", "sys/unseal", __opts__, __context__, is_unauthd=True, payload={"key": key}
+        )
         if ret["sealed"] is False:
             return True
     return False
Original file line number	Diff line number	Diff line change
		@@ -0,0 +1 @@
		Change unseal query to be always unauthenticated.