Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Validate expiration timestamp for creating activation #1793

Open
zcgandcomp opened this issue Nov 25, 2024 · 4 comments
Open

Validate expiration timestamp for creating activation #1793

zcgandcomp opened this issue Nov 25, 2024 · 4 comments
Assignees
@romanstrobl @kopovan
Labels
pentest

Comments

@zcgandcomp
Copy link
Member

When creating or initiating an activation, we can, via API, specify the expiration. The expiration is not validated and can be set to past.
@romanstrobl romanstrobl self-assigned this Nov 29, 2024
@romanstrobl
Copy link
Member

I will fix it as part of #1775

@zcgandcomp
Copy link
Member Author

Will be tested after the #1775

@romanstrobl
Copy link
Member

See also: wultra/powerauth-tests#568

@romanstrobl
Copy link
Member

@kopovan Ready to test.

Testing considerations:

When initiating or creating an activation using InitActivationRequest or CreateActivationRequest, the parameter timestampActivationExpire is validated to have a timestamp which is in the future.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@romanstrobl romanstrobl

@kopovan kopovan

Labels
pentest
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
3 participants
@zcgandcomp @romanstrobl @kopovan