search

DP-3T / dp3t-sdk-backend

The backend implementation for DP3T
Mozilla Public License 2.0
199 stars 87 forks source link

Shuffle keys for /v1/gaen/getExposed endpoint #277

Closed ineiti closed 4 years ago

ineiti commented 4 years ago

Up to now for the /v1/gaen/getExposed endpoint, the order of the keys returned to the clients has been the same as the order of submitting the keys. This reveals some information that might be used to detect if somebody submitted a valid key or not.

Even if it's already fixed in /v2/gaen/exposed endpoint, this PR also shuffles the keys for the /v1 endpoint.

Closes #274

sonarcloud[bot] commented 4 years ago

SonarCloud Quality Gate failed.

Bug A 0 Bugs
Vulnerability A 0 Vulnerabilities (and Security Hotspot 0 Security Hotspots to review)
Code Smell A 0 Code Smells

16.7% 16.7% Coverage
0.0% 0.0% Duplication

ineiti commented 4 years ago

The failing code analysis seems to be on code I didn't touch...