Merge pull request 'Encrypt PIN in temporary value' (#12 ) from encrypt-pin into master

Reviewed-on: #12
Merge branch 'master' into encrypt-pin
2025-01-20 13:00:37 +01:00 · 2025-01-20 12:59:57 +01:00 · 2025-01-20 14:46:12 +03:00 · 2025-01-20 14:44:53 +03:00 · 2025-01-20 12:16:05 +03:00 · 2025-01-17 10:02:04 +01:00
3 changed files with 529 additions and 520 deletions
--- a/handlers/application/menuhandler.go
+++ b/handlers/application/menuhandler.go
--- a/handlers/application/menuhandler_test.go
+++ b/handlers/application/menuhandler_test.go
@ -1223,13 +1223,20 @@ func TestVerifyCreatePin(t *testing.T) {
 		},
 	}

+	// Hash the correct PIN
+	hashedPIN, err := pin.HashPIN("1234")
+	if err != nil {
+		logg.ErrorCtxf(ctx, "failed to hash temporaryPin", "error", err)
+		t.Fatal(err)
+	}
+
+	err = store.WriteEntry(ctx, sessionId, storedb.DATA_TEMPORARY_VALUE, []byte(hashedPIN))
+	if err != nil {
+		t.Fatal(err)
+	}
+
 	for _, tt := range tests {
 		t.Run(tt.name, func(t *testing.T) {
-			err = store.WriteEntry(ctx, sessionId, storedb.DATA_TEMPORARY_VALUE, []byte("1234"))
-			if err != nil {
-				t.Fatal(err)
-			}
-
 			// Call the method under test
 			res, err := h.VerifyCreatePin(ctx, "verify_create_pin", []byte(tt.input))

@ -1908,13 +1915,13 @@ func TestConfirmPin(t *testing.T) {
 	tests := []struct {
 		name           string
 		input          []byte
-		temporarypin   []byte
+		temporarypin   string
 		expectedResult resource.Result
 	}{
 		{
 			name:         "Test with correct pin confirmation",
 			input:        []byte("1234"),
-			temporarypin: []byte("1234"),
+			temporarypin: "1234",
 			expectedResult: resource.Result{
 				FlagReset: []uint32{flag_pin_mismatch},
 			},
@ -1922,14 +1929,21 @@ func TestConfirmPin(t *testing.T) {
 	}
 	for _, tt := range tests {
 		t.Run(tt.name, func(t *testing.T) {
+			// Hash the PIN
+			hashedPIN, err := pin.HashPIN(tt.temporarypin)
+			if err != nil {
+				logg.ErrorCtxf(ctx, "failed to hash temporaryPin", "error", err)
+				t.Fatal(err)
+			}
+
 			// Set up the expected behavior of the mock
-			err := store.WriteEntry(ctx, sessionId, storedb.DATA_TEMPORARY_VALUE, []byte(tt.temporarypin))
+			err = store.WriteEntry(ctx, sessionId, storedb.DATA_TEMPORARY_VALUE, []byte(hashedPIN))
 			if err != nil {
 				t.Fatal(err)
 			}

 			//Call the function under test
-			res, _ := h.ConfirmPinChange(ctx, "confirm_pin_change", tt.temporarypin)
+			res, _ := h.ConfirmPinChange(ctx, "confirm_pin_change", tt.input)

 			//Assert that the result set to content is what was expected
 			assert.Equal(t, res, tt.expectedResult, "Result should contain flags set according to user input")
--- a/services/registration/send.vis
+++ b/services/registration/send.vis
@ -3,7 +3,7 @@ RELOAD transaction_reset
 CATCH no_voucher flag_no_active_voucher 1
 MOUT back 0
 HALT
-LOAD validate_recipient 20
+LOAD validate_recipient 50
 RELOAD validate_recipient
 CATCH invalid_recipient flag_invalid_recipient 1
 CATCH invite_recipient flag_invalid_recipient_with_invite 1
Author	SHA1	Message	Date
lash	9c05e0b4a2	Merge pull request 'Encrypt PIN in temporary value' (#12 ) from encrypt-pin into master Reviewed-on: #12	2025-01-20 13:00:37 +01:00
lash	57fb1d0ef3	Merge branch 'master' into encrypt-pin	2025-01-20 12:59:57 +01:00
alfred-mk	2dcec2e9fb	update tests to match changes in menuhandler	2025-01-20 14:46:12 +03:00
alfred-mk	286a72f12e	hash the PIN in temporary value and arrange functions	2025-01-20 14:44:53 +03:00
Carlosokumu	4e584cea92	increase size limit to allow fqdn for the alias	2025-01-20 12:16:05 +03:00
lash	71ff251d51	Merge pull request 'lash/admin-tool' (#8 ) from lash/admin-tool into master Reviewed-on: #8	2025-01-17 10:02:04 +01:00