Broken authorization

Question

Broken authorization

Closed this issue 8 years ago · 3 comments

This commit: #9 breaks authorization for me.
I get Emarsys::Unauthorized: HTTP-Code: 401, Emarsys-Code: 1 - Unauthorized Time frame is invalid

Does it work for anyone? What's the point?

Answer 1 · 2016-09-27T11:00:09.000Z

@spajic, this PR fixed a security issue in the library, namely nonce reuse. See the official documentation for more details on this. As for the timeframe issue, you are receiving this error because the Date you use to calculate the signature is not within 5 minutes of the actual time.

Emarsys servers return the Date in their response headers, so you can use that to check time your signature is compared against.

Free to contact your Emarsys representative as they will surely be able to help!

Answer 2 · 2016-09-28T08:07:38.000Z

@felin-arch Thank you! I'll check it out.

Answer 3 · 2017-02-02T11:27:02.000Z

Fixed as of PR #19