Currently, the Open Payments AS spec allows to specify a receiver field as part of the outgoing payment limits for grant creation, which specifies for which incoming payment outgoing payments can be created under.
Even though this field is spec'ed out in Open Payments, we do not enforce it in Rafiki (receiver field is ignored).
Todos
[ ] If an outgoing payment is trying to be created under a grant that has a different receiver (incoming payment) than the one the outgoing payment is paying into, we should fail
Context
Currently, the Open Payments AS spec allows to specify a
receiverfield as part of the outgoing payment limits for grant creation, which specifies for which incoming payment outgoing payments can be created under. Even though this field is spec'ed out in Open Payments, we do not enforce it in Rafiki (receiverfield is ignored).Todos
receiver(incoming payment) than the one the outgoing payment is paying into, we should fail