Skip to content

Confirm that withdrawal requester owns its recipient identity before registering it #1836#1843

Open
adecaro wants to merge 1 commit into
mainfrom
receivewithdrawalrequestview-fix
Open

Confirm that withdrawal requester owns its recipient identity before registering it #1836#1843
adecaro wants to merge 1 commit into
mainfrom
receivewithdrawalrequestview-fix

Conversation

@adecaro

@adecaro adecaro commented Jul 2, 2026

Copy link
Copy Markdown
Contributor

No description provided.

Signed-off-by: Angelo De Caro <adc@zurich.ibm.com>
@adecaro adecaro force-pushed the receivewithdrawalrequestview-fix branch from 7547394 to 9af154a Compare July 2, 2026 06:04
Comment thread docs/services/ttx.md
```mermaid
sequenceDiagram
autonumber
participant Initiator

Copy link
Copy Markdown
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

When I view this file I see the following error (see picture)

Image

if err != nil {
return nil, errors.Wrapf(err, "failed to build attestation message")
}
sig, err := signRecipientAttestation(context.Context(), w, message, recipientData.Identity, true)

Copy link
Copy Markdown
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

When freshPath is true and we have a remote wallet then this will fail always with error.

func signRecipientAttestation(ctx context.Context, w *token.OwnerWallet, message []byte, identity view.Identity, freshPath bool) ([]byte, error) {
if w.Remote() {
if freshPath {
return nil, errors.Errorf("remote wallet [%s] cannot attest fresh recipient identity locally", w.ID())
}

	return nil, nil
}

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Projects

None yet

Development

Successfully merging this pull request may close these issues.

Confirm that withdrawal requester owns its recipient identity before registering it

2 participants