Should respond error when accessed via domain name different from the one configured in Unit Certificate

personium / personium-core

Core module of Personium

https://personium.io

Apache License 2.0

88 stars 16 forks source link

Should respond error when accessed via domain name different from the one configured in Unit Certificate #535

Closed shimono closed 3 years ago

shimono commented 4 years ago

Overview

Core should respond with 400 error when accessed via domain name different from the one configured in Unit Certificate.

Why this feature

This is necessary to avoid such cases where a unit operator fails to configure the unit certificate without knowing about it and face Token Dsig error when exchanging TransCell Access Tokens.

With this feature unit owner can immediately know if the unit is misconfigured.

shimono commented 4 years ago

Implementation should be applied probably on FacadeResource ?