0xPolygonID · martinsaporiti · Sep 20, 2024 · Sep 20, 2024
diff --git a/api/api.yaml b/api/api.yaml
@@ -987,6 +987,8 @@ paths:
                 type: object
         '400':
           $ref: '#/components/responses/400'
+        '410':
+          $ref: '#/components/responses/410'
         '404':
           $ref: '#/components/responses/404'
         '500':
@@ -2416,6 +2418,12 @@ components:
         application/json:
           schema:
             $ref: '#/components/schemas/GenericErrorMessage'
+    '410':
+      description: 'Gone'
+      content:
+        application/json:
+          schema:
+            $ref: '#/components/schemas/GenericErrorMessage'
     '422':
       description: 'Unprocessable Content'
       content:

diff --git a/internal/api/api.gen.go b/internal/api/api.gen.go
diff --git a/internal/api/qrcode.go b/internal/api/qrcode.go
@@ -29,6 +29,10 @@ func (s *Server) GetQrFromStore(ctx context.Context, request GetQrFromStoreReque
 		}
 
 		link, err := s.linkService.GetByID(ctx, *issuerDID, *request.Params.Id, s.cfg.ServerUrl)
+		if err := s.linkService.Validate(ctx, link); err != nil {
+			log.Error(ctx, "validating link", "err", err, "link id", *request.Params.Id)
+			return GetQrFromStore410JSONResponse{N410JSONResponse{err.Error()}}, nil
+		}
 
 		if link.AuthorizationRequestMessage == nil {
 			log.Error(ctx, "qr store. Finding qr", "err", err, "id", *request.Params.Id)

diff --git a/internal/core/ports/link_service.go b/internal/core/ports/link_service.go
@@ -62,4 +62,5 @@ type LinkService interface {
 	CreateQRCode(ctx context.Context, issuerDID w3c.DID, linkID uuid.UUID, serverURL string) (*CreateQRCodeResponse, error)
 	IssueOrFetchClaim(ctx context.Context, issuerDID w3c.DID, userDID w3c.DID, linkID uuid.UUID, hostURL string) (*protocol.CredentialsOfferMessage, error)
 	ProcessCallBack(ctx context.Context, issuerDID w3c.DID, message string, linkID uuid.UUID, hostURL string) (*protocol.CredentialsOfferMessage, error)
+	Validate(ctx context.Context, link *domain.Link) error
 }
diff --git a/internal/core/services/link.go b/internal/core/services/link.go
@@ -187,7 +187,7 @@ func (ls *Link) CreateQRCode(ctx context.Context, issuerDID w3c.DID, linkID uuid
 		return nil, err
 	}
 
-	err = ls.validate(ctx, link)
+	err = ls.Validate(ctx, link)
 	if err != nil {
 		return nil, err
 	}
@@ -248,8 +248,8 @@ func (ls *Link) IssueOrFetchClaim(ctx context.Context, issuerDID w3c.DID, userDI
 		return nil, err
 	}
 
-	if err := ls.validate(ctx, link); err != nil {
-		log.Error(ctx, "cannot validate the link", "err", err)
+	if err := ls.Validate(ctx, link); err != nil {
+		log.Error(ctx, "cannot Validate the link", "err", err)
 		return nil, err
 	}
 
@@ -373,7 +373,9 @@ func (ls *Link) ProcessCallBack(ctx context.Context, issuerID w3c.DID, message s
 	return offer, nil
 }
 
-func (ls *Link) validate(ctx context.Context, link *domain.Link) error {
+// Validate - validate the link
+// It checks if the link is active, not expired and has not exceeded the maximum number of claims
+func (ls *Link) Validate(ctx context.Context, link *domain.Link) error {
 	if link.ValidUntil != nil && time.Now().UTC().After(*link.ValidUntil) {
 		log.Debug(ctx, "cannot issue a credential for an expired link")
 		return ErrLinkAlreadyExpired