Fix auth ticket enterprise

0chain · Jan 6, 2025 · d2b4c26 · d2b4c26
1 parent f69d989
commit d2b4c26
Showing 1 changed file with 18 additions and 11 deletions.
diff --git a/code/go/0chain.net/blobbercore/handler/auth_ticket.go b/code/go/0chain.net/blobbercore/handler/auth_ticket.go
@@ -2,8 +2,10 @@ package handler
 
 import (
 	"context"
+	"fmt"
 	"github.com/0chain/blobber/code/go/0chain.net/core/node"
 	"github.com/0chain/common/core/common"
+	"github.com/0chain/gosdk/core/encryption"
 	"net/http"
 )
 
@@ -19,28 +21,33 @@ type AuthTicketResponse struct {
 //
 // parameters:
 //
-//   +name: Zbox-Signature
-//    in: header
-//    type: string
-//    description: Digital signature to verify that the sender is 0box service.
-//   +name: client_id
-//    type: string
-//    in: query
-//    description: Client ID is used as a payload to the token generated. The token represents a signed version of this string by the blobber's private key.
+//	+name: Zbox-Signature
+//	 in: header
+//	 type: string
+//	 description: Digital signature to verify that the sender is 0box service.
+//	+name: client_id
+//	 type: string
+//	 in: query
+//	 description: Client ID is used as a payload to the token generated. The token represents a signed version of this string by the blobber's private key.
 //
 // responses:
-//    200: AuthTicketResponse
+//
+//	200: AuthTicketResponse
 func GenerateAuthTicket(ctx context.Context, r *http.Request) (interface{}, error) {
+
 	clientID := r.URL.Query().Get("client_id")
 	if clientID == "" {
 		return nil, common.NewError("missing_client_id", "client_id is required")
 	}
 
-	signature, err := node.Self.Sign(clientID)
+	round := r.URL.Query().Get("round")
+
+	payload := encryption.Hash(fmt.Sprintf("%s_%s", clientID, round))
+
+	signature, err := node.Self.Sign(payload)
 	if err != nil {
 		return nil, common.NewError("signature_failed", "signature failed")
 	}
-
 	return &AuthTicketResponse{
 		AuthTicket: signature,
 	}, nil