You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Currently we purge one-time-codes as soon as the KeyClaimRequest is processed, which means that if the KeyClaimResponse is lost, the user will need to ask their HCP for a new code.
In order to mitigate this, we should consider purging the OTC only as the first upload is being recorded, so that KeyClaimRequest can be idempotent if the same keypair and OTC is received again as a duplicate request before the first upload.
Currently we purge one-time-codes as soon as the
KeyClaimRequestis processed, which means that if theKeyClaimResponseis lost, the user will need to ask their HCP for a new code.In order to mitigate this, we should consider purging the OTC only as the first upload is being recorded, so that
KeyClaimRequestcan be idempotent if the same keypair and OTC is received again as a duplicate request before the first upload.(thanks @dylanahsmith for pointing this out)
The text was updated successfully, but these errors were encountered: