From 404acf6b7f8c91d87ec808632ccee6e6691b2a1d Mon Sep 17 00:00:00 2001
From: Jared Allard <jaredallard@users.noreply.github.com>
Date: Thu, 6 Mar 2025 21:41:19 -0800
Subject: [PATCH] fix logic and log statement

---
 cmd/klefkictl/klefkictl_requests.go | 2 +-
 internal/server/server.go           | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/cmd/klefkictl/klefkictl_requests.go b/cmd/klefkictl/klefkictl_requests.go
index 3ebcc46..0e15474 100644
--- a/cmd/klefkictl/klefkictl_requests.go
+++ b/cmd/klefkictl/klefkictl_requests.go
@@ -96,7 +96,7 @@ func newGetKeyCommand() *cobra.Command {
 				return fmt.Errorf("failed to create private key for decryption: %w", err)
 			}
 
-			fmt.Printf("Sending GetKeyRequest: machine_id=%s\n", machineID)
+			fmt.Printf("Sending GetKey request: machine_id=%s\n", machineID)
 
 			kc, kcclose, err := client.Dial(hostname)
 			if err != nil {
diff --git a/internal/server/server.go b/internal/server/server.go
index 1defdfc..59e1b26 100644
--- a/internal/server/server.go
+++ b/internal/server/server.go
@@ -117,7 +117,7 @@ func (s *Server) GetKey(ctx context.Context, req *pbgrpcv1.GetKeyRequest) (*pbgr
 		return nil, fmt.Errorf("failed to parsed signed at %q: %w", req.GetSignedAt(), err)
 	}
 	ts = ts.UTC() // Always operate with UTC time.
-	if time.Since(ts) < 5*time.Minute {
+	if time.Since(ts) > 5*time.Minute {
 		return nil, fmt.Errorf("signature has expired")
 	}