fix: control error invalid encryption part and fix readme

openfort-xyz · Sep 5, 2024 · a3457f8 · a3457f8
1 parent ef60e7b
commit a3457f8
Show file tree

Hide file tree

Showing 6 changed files with 19 additions and 2 deletions.
diff --git a/CHANGELOG.md b/CHANGELOG.md
@@ -5,6 +5,11 @@ All notable changes to this project will be documented in this file.
 The format is based on [Keep a Changelog](https://keepachangelog.com/en/1.1.0/),
 and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0.html).
 
+## [v0.1.19]
+### Fixed
+- Control error invalid encryption part
+- Fix docs register share endpoint
+
 ## [v0.1.18]
 ### Fixed
 - Invalid API authentication message

diff --git a/README.md b/README.md
@@ -97,7 +97,7 @@ Users are automatically associated with a project based on the provided API key.
 
 #### **1.1 Register Share**
 
-- **Endpoint:** `POST /shares/register`
+- **Endpoint:** `POST /shares`
 - **Request:**
   - **Type:** `RegisterShareRequest`
     - Mandatory header `Authorization` with access token and `X-API-Key` with project's api key

diff --git a/internal/adapters/encryption/sss_reconstruction_strategy/strategy.go b/internal/adapters/encryption/sss_reconstruction_strategy/strategy.go
@@ -2,7 +2,6 @@ package sssrec
 
 import (
 	"encoding/base64"
-
 	sss "go.openfort.xyz/shamir-secret-sharing-go"
 	"go.openfort.xyz/shield/internal/core/domain/errors"
 	"go.openfort.xyz/shield/internal/core/ports/strategies"
@@ -66,6 +65,10 @@ func (s *SSSReconstructionStrategy) Reconstruct(storedPart string, projectPart s
 		rawProjectPart = append([]byte{2}, rawProjectPart...)
 	}
 
+	if len(rawProjectPart) < 33 {
+		return "", errors.ErrInvalidEncryptionPart
+	}
+
 	combined, err := sss.Combine([][]byte{rawStoredPart, rawProjectPart})
 	if err != nil {
 		return "", err

diff --git a/internal/applications/projectapp/errors.go b/internal/applications/projectapp/errors.go
@@ -54,5 +54,9 @@ func fromDomainError(err error) error {
 	if errors.Is(err, domainErrors.ErrInvalidEncryptionSession) {
 		return ErrInvalidEncryptionSession
 	}
+
+	if errors.Is(err, domainErrors.ErrInvalidEncryptionPart) {
+		return ErrInvalidEncryptionPart
+	}
 	return ErrInternal
 }
diff --git a/internal/applications/shareapp/errors.go b/internal/applications/shareapp/errors.go
@@ -32,6 +32,10 @@ func fromDomainError(err error) error {
 		return ErrEncryptionPartRequired
 	}
 
+	if errors.Is(err, domainErrors.ErrInvalidEncryptionPart) {
+		return ErrInvalidEncryptionPart
+	}
+
 	if errors.Is(err, domainErrors.ErrEncryptionPartNotFound) {
 		return ErrEncryptionNotConfigured
 	}

diff --git a/internal/core/domain/errors/project.go b/internal/core/domain/errors/project.go
@@ -7,6 +7,7 @@ var (
 	ErrEncryptionPartNotFound          = errors.New("encryption part not found")
 	ErrEncryptionPartAlreadyExists     = errors.New("encryption part already exists")
 	ErrEncryptionPartRequired          = errors.New("encryption part is required")
+	ErrInvalidEncryptionPart           = errors.New("invalid encryption part")
 	ErrInvalidEncryptionSession        = errors.New("invalid encryption session")
 	ErrInvalidEncryptionKeyBuilderType = errors.New("invalid encryption key builder type")
 	ErrReconstructedKeyMismatch        = errors.New("reconstructed key mismatch")