From d5f3f3a3a01120e5cd2345ae6441982ea43e8fce Mon Sep 17 00:00:00 2001
From: Vishal Nayak <vishalnayak@users.noreply.github.com>
Date: Wed, 18 Oct 2017 13:23:05 -0400
Subject: [PATCH] set entity id on the token (#3468)

---
 vault/core.go             | 2 ++
 vault/request_handling.go | 1 +
 2 files changed, 3 insertions(+)

diff --git a/vault/core.go b/vault/core.go
index d6072249ed..8a29f1aae1 100644
--- a/vault/core.go
+++ b/vault/core.go
@@ -1171,6 +1171,7 @@ func (c *Core) sealInitCommon(req *logical.Request) (retErr error) {
 		Policies:    te.Policies,
 		Metadata:    te.Meta,
 		DisplayName: te.DisplayName,
+		EntityID:    te.EntityID,
 	}
 
 	if err := c.auditBroker.LogRequest(auth, req, c.auditedHeaders, nil); err != nil {
@@ -1277,6 +1278,7 @@ func (c *Core) StepDown(req *logical.Request) (retErr error) {
 		Policies:    te.Policies,
 		Metadata:    te.Meta,
 		DisplayName: te.DisplayName,
+		EntityID:    te.EntityID,
 	}
 
 	if err := c.auditBroker.LogRequest(auth, req, c.auditedHeaders, nil); err != nil {
diff --git a/vault/request_handling.go b/vault/request_handling.go
index 0297242219..3c9d1a4892 100644
--- a/vault/request_handling.go
+++ b/vault/request_handling.go
@@ -461,6 +461,7 @@ func (c *Core) handleLoginRequest(req *logical.Request) (*logical.Response, *log
 			CreationTime: time.Now().Unix(),
 			TTL:          auth.TTL,
 			NumUses:      auth.NumUses,
+			EntityID:     auth.EntityID,
 		}
 
 		te.Policies = policyutil.SanitizePolicies(te.Policies, true)