-
Notifications
You must be signed in to change notification settings - Fork 9
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Make pfiDid
required property in TbdexHttpServer
#166
Conversation
🦋 Changeset detectedLatest commit: 1d13ed2 The changes in this PR will be included in the next version bump. This PR includes changesets to release 3 packages
Not sure what this means? Click here to learn what changesets are. Click here if you're a maintainer who wants to add another changeset to this PR |
TBDocs Report 🛑 Errors: 0 @tbdex/protocol
@tbdex/http-client
@tbdex/http-server
TBDocs Report Updated at 2024-02-08T22:51:48Z |
Codecov Report
Additional details and impacted files@@ Coverage Diff @@
## main #166 +/- ##
==========================================
- Coverage 85.55% 85.50% -0.05%
==========================================
Files 35 35
Lines 2803 2795 -8
Branches 234 237 +3
==========================================
- Hits 2398 2390 -8
Misses 405 405
|
cc: @angiejones |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
thank you for saving future us hours of debugging
just FYI - falling back to |
@kirahsapong Making sure I understand. As of 1d13ed2, this PR does not change any behavior or address #161? |
@diehuxx it does. it makes sure the pfiDid is a required property if options are passed in. That is, if you instantiate with an opts containing exchangesApi or offeringsApi (both are optional) or even neither, you must pass pfiDid. This is required for verifying a request token where one of the steps of making sure you're the intended audience for the token at all. If you're instantiating with the default (fake) apis instead, it falls back to the pfiDid being used throughout those fake apis. in either case, it ensures you cannot instantiate with a custom api but not your custom pfiDid. both or neither! |
closes #161