Skip to content
This repository has been archived by the owner on Apr 17, 2019. It is now read-only.

Make CreateAccount cmd validation stronger #1966

Merged
merged 3 commits into from
Dec 28, 2018
Merged

Make CreateAccount cmd validation stronger #1966

merged 3 commits into from
Dec 28, 2018

Conversation

igor-egorov
Copy link
Contributor

Signed-off-by: Igor Egorov [email protected]

Description of the Change

Validation of CreateAccount command will respect a set of permissions of transaction creator.
It would not be possible to create an account in a domain which default role contain some permissions that are missing in transaction creator's permissions set.

In short: transaction creator should have all the permissions of default role of a domain where new account will be created.

Benefits

Permissions escalation is not possible via creating accounts in more priveleged domains.

Possible Drawbacks

None ?

Usage Examples or Tests

create_account_test

Igor Egorov added 2 commits December 18, 2018 15:48
Add a test for privelege elevation via CreateAccount cmd
9d6bdbc 
Signed-off-by: Igor Egorov <[email protected]>
CreateAccount command now respects a set of perms of tx creator
c1b22ba 
It should not be possible to create an account in a domain which
default role has some permissions that does not have a creator of
a transaction.

Signed-off-by: Igor Egorov <[email protected]>
@igor-egorov igor-egorov added needs-review pr awaits review from maintainers bug bug/defect that was reproduced by maintainers security labels Dec 18, 2018
kamilsa
kamilsa approved these changes Dec 20, 2018
View reviewed changes
Copy link
Contributor

@kamilsa kamilsa left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM, take a look at the comment and fix if you want

test/integration/acceptance/create_account_test.cpp Outdated Show resolved Hide resolved
@igor-egorov igor-egorov added this to the rc2 milestone Dec 27, 2018
@l4l l4l added needs-correction pr/rfc is not completed and might be updated and removed needs-review pr awaits review from maintainers labels Dec 27, 2018
Fix review comments
7b45fbe 
Signed-off-by: Igor Egorov <[email protected]>
@igor-egorov igor-egorov merged commit 2dd468e into dev Dec 28, 2018
@igor-egorov igor-egorov deleted the fix/create-account branch December 28, 2018 09:26
@kamilsa kamilsa mentioned this pull request Dec 28, 2018
Merged
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Reviewers

@Akvinikym Akvinikym Akvinikym approved these changes

@kamilsa kamilsa kamilsa approved these changes

Assignees
No one assigned
Labels
bug bug/defect that was reproduced by maintainers needs-correction pr/rfc is not completed and might be updated security
Projects
None yet
Milestone
rc2
Development

Successfully merging this pull request may close these issues.
4 participants
@igor-egorov @kamilsa @Akvinikym @l4l