[SERVER-85992] Ensure OpMsgRequest::fromDBAndBody call sites build requests with ValidatedTenancyScope Created: 30/Jan/24 Updated: 05/Feb/24 |
|
| Status: | In Progress |
| Project: | Core Server |
| Component/s: | None |
| Affects Version/s: | None |
| Fix Version/s: | None |
| Type: | Task | Priority: | Major - P3 |
| Reporter: | Sophia Tan | Assignee: | Joseph Prince |
| Resolution: | Unresolved | Votes: | 0 |
| Labels: | ntdi_code_quality, ntdi_must_have | ||
| Remaining Estimate: | Not Specified | ||
| Time Spent: | Not Specified | ||
| Original Estimate: | Not Specified | ||
| Issue Links: |
|
||||||||
| Assigned Teams: |
Service Arch
|
||||||||
| Sprint: | Service Arch 2024-02-19 | ||||||||
| Participants: | |||||||||
| Story Points: | 3 | ||||||||
| Description |
|
Today, OpMsgRequest::fromDBAndBody build request without ValidatedTenancyScope. It totally depends on the "$tenant" field and "expectPrefix" field in the input `body` to indicate the tenant information and tenant protocol. In this task, we should figure out a way to ensure its call sites build requests with ValiatedTenancyScope. So that, we only support tenant information and tenant protocol with security token in ValidatedTenancyScope. |