Merge pull request 'fix(vault-fetch): tolerate 'already logged in' at bw config server' (#68) from fix/vault-fetch-bw-config-when-logged-in into main

Reviewed-on: #68

live/operator-session/clawdie-vault-fetch

@@ -105,10 +105,17 @@ cleanup() {
 }
 trap cleanup EXIT INT TERM
 
-bw config server "$SERVER" >/dev/null 2>&1 || {
+# Set the server. When already logged in, `bw config` refuses with
-    log "could not set bw server to $SERVER"
+# "Logout required before server config update" — tolerate that, since the
-    exit 1
+# server is already set to the right value (we read it from VAULT_SERVER).
-}
+# Mirror the login tolerance: capture stderr and only fail on a real error.
+if ! bw config server "$SERVER" >"$WORK/config.out" 2>"$WORK/config.err"; then
+    if ! grep -qi 'logout required\|already configured\|already set' "$WORK/config.err" "$WORK/config.out" 2>/dev/null; then
+        log "could not set bw server to $SERVER:"
+        sed 's/^/  /' "$WORK/config.err" >&2
+        exit 1
+    fi
+fi
 
 # login --apikey reads BW_CLIENTID/BW_CLIENTSECRET from env. Tolerate the
 # "already logged in" case so repeat runs don't fail.