Require non-null proofs in "confirm username hash" requests

2026-04-21 02:08:03 +01:00 · 2024-02-26 10:30:52 -05:00
parent 6fd0cba06a
commit d018efe2a5
2 changed files with 27 additions and 0 deletions
--- a/service/src/main/java/org/whispersystems/textsecuregcm/entities/ConfirmUsernameHashRequest.java
+++ b/service/src/main/java/org/whispersystems/textsecuregcm/entities/ConfirmUsernameHashRequest.java
@@ -7,6 +7,7 @@ package org.whispersystems.textsecuregcm.entities;

 import javax.annotation.Nullable;
 import javax.validation.Valid;
+import javax.validation.constraints.NotNull;
 import javax.validation.constraints.Size;

 import com.fasterxml.jackson.databind.annotation.JsonDeserialize;
@@ -25,6 +26,7 @@ public record ConfirmUsernameHashRequest(

    @JsonSerialize(using = ByteArrayBase64UrlAdapter.Serializing.class)
    @JsonDeserialize(using = ByteArrayBase64UrlAdapter.Deserializing.class)
+    @NotNull
    byte[] zkProof,

    @Schema(type = "string", description = "The url-safe base64-encoded encrypted username to be stored for username links")