Always include UUID in UD certificate (#300)

service/src/main/java/org/whispersystems/textsecuregcm/auth/CertificateGenerator.java

@@ -33,25 +33,18 @@ public class CertificateGenerator {
     this.serverCertificate = ServerCertificate.parseFrom(serverCertificate);
   }
 
-  public byte[] createFor(Account account, Device device, boolean includeE164, boolean includeUuid) throws IOException, InvalidKeyException {
+  public byte[] createFor(Account account, Device device, boolean includeE164) throws IOException, InvalidKeyException {
     SenderCertificate.Certificate.Builder builder = SenderCertificate.Certificate.newBuilder()
                                                                                  .setSenderDevice(Math.toIntExact(device.getId()))
                                                                                  .setExpires(System.currentTimeMillis() + TimeUnit.DAYS.toMillis(expiresDays))
                                                                                  .setIdentityKey(ByteString.copyFrom(Base64.decode(account.getIdentityKey())))
-                                                                                 .setSigner(serverCertificate);
-
-    if (!includeE164 && !includeUuid) {
-      throw new IllegalArgumentException("Certificates must include one of a sender phone number or UUID");
-    }
+                                                                                 .setSigner(serverCertificate)
+                                                                                 .setSenderUuid(account.getUuid().toString());
 
     if (includeE164) {
       builder.setSender(account.getNumber());
     }
 
-    if (includeUuid) {
-      builder.setSenderUuid(account.getUuid().toString());
-    }
-
     byte[] certificate = builder.build().toByteArray();
     byte[] signature   = Curve.calculateSignature(privateKey, certificate);
 

service/src/main/java/org/whispersystems/textsecuregcm/controllers/CertificateController.java

@@ -6,6 +6,7 @@
 package org.whispersystems.textsecuregcm.controllers;
 
 import com.codahale.metrics.annotation.Timed;
+import io.dropwizard.auth.Auth;
 import org.signal.zkgroup.auth.ServerZkAuthOperations;
 import org.slf4j.Logger;
 import org.slf4j.LoggerFactory;
@@ -29,8 +30,6 @@ import java.util.LinkedList;
 import java.util.List;
 import java.util.Optional;
 
-import io.dropwizard.auth.Auth;
-
 @SuppressWarnings("OptionalUsedAsFieldOrParameterType")
 @Path("/v1/certificate")
 public class CertificateController {
@@ -52,24 +51,17 @@ public class CertificateController {
   @Produces(MediaType.APPLICATION_JSON)
   @Path("/delivery")
   public DeliveryCertificate getDeliveryCertificate(@Auth Account account,
-                                                    @QueryParam("includeE164") Optional<Boolean> includeE164,
-                                                    @QueryParam("includeUuid") Optional<Boolean> includeUuid)
+                                                    @QueryParam("includeE164") Optional<Boolean> includeE164)
       throws IOException, InvalidKeyException
   {
-    if (!account.getAuthenticatedDevice().isPresent()) throw new AssertionError();
-
+    if (account.getAuthenticatedDevice().isEmpty()) {
+      throw new AssertionError();
+    }
     if (Util.isEmpty(account.getIdentityKey())) {
       throw new WebApplicationException(Response.Status.BAD_REQUEST);
     }
 
-    final boolean effectiveIncludeE164 = includeE164.orElse(true);
-    final boolean effectiveIncludeUuid = includeUuid.orElse(false);
-
-    if (!effectiveIncludeE164 && !effectiveIncludeUuid) {
-      throw new WebApplicationException(Response.Status.BAD_REQUEST);
-    }
-
-    return new DeliveryCertificate(certificateGenerator.createFor(account, account.getAuthenticatedDevice().get(), effectiveIncludeE164, effectiveIncludeUuid));
+    return new DeliveryCertificate(certificateGenerator.createFor(account, account.getAuthenticatedDevice().get(), includeE164.orElse(true)));
   }
 
   @Timed