projectToken is empty or missing cause repeating calls to Exponea cloud endpoint - Android SDK only

exponea / exponea-android-sdk

MIT License

17 stars 16 forks source link

projectToken is empty or missing cause repeating calls to Exponea cloud endpoint - Android SDK only #50

Closed TomasJursa closed 2 years ago

TomasJursa commented 2 years ago

Dears,

maybe that could be an issue to solve, when accessing Exponea cloud using Exponea Android SDK with empty projectToken. The implementation SDK will call multiple times the Exponea api endpoint while the first response code is 404. While the android app using this SDK is widely deployed and used it could cause an situation simillar to DDoS attack. My suggestion is to return an application exception while projectToken is empty instead call the endpoint several times.

Thank you, Tomas

adam1929 commented 2 years ago

@TomasJursa Thanks for your findings. Yes, we add validations for Android SDK to check a valid project token

xcibik00 commented 1 year ago

Hi @TomasJursa , added in 3.8.0 Android SDK version