Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

feat: Response handler submessages and Role management improvements #9

Closed
wants to merge 15 commits into from
Closed

feat: Response handler submessages and Role management improvements #9

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
15 commits
Select commit Hold shift + click to select a range
5b8fa45
Submessages for response handler
MissingNO57 Nov 14, 2024
af41c54
Contract self calls
MissingNO57 Nov 18, 2024
562dc2e
Merge remote-tracking branch 'origin/main' into feat/response_submsg
MissingNO57 Dec 3, 2024
3883c8d
Linting fix
MissingNO57 Dec 3, 2024
c5fecc9
Extended roles interface
MissingNO57 Dec 4, 2024
0e49873
Improved role management
MissingNO57 Feb 2, 2025
fa249c3
Error handling update
MissingNO57 Feb 3, 2025
5083652
fix
MissingNO57 Feb 3, 2025
96f21e8
feat: Get all addresses with role
MissingNO57 Feb 3, 2025
d350775
Role queries
MissingNO57 Feb 3, 2025
e97c681
Exec functions
MissingNO57 Feb 3, 2025
4a7697c
Removed superadmin from ensure role and roles
MissingNO57 Feb 3, 2025
9c3e1fc
Access control changes
MissingNO57 Feb 3, 2025
88db9f5
grant, revoke renaming
MissingNO57 Feb 4, 2025
31120a2
Renounce role
MissingNO57 Feb 4, 2025
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
33 changes: 33 additions & 0 deletions Cargo.lock
View file
Open in desktop

Some generated files are not rendered by default. Learn more about how customized files appear on GitHub.

4 changes: 3 additions & 1 deletion Cargo.toml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -15,4 +15,6 @@ ripemd = "0.1.3"
serde = { version = "1.0.145", default-features = false, features = ["derive"] }
tiny-keccak = { version = "2.0.2", features = ["keccak"] }
hex = "0.4.3"
base64 = "0.21.7"
base64 = "0.21.7"
strum = "0.26"
strum_macros = "0.26.4"
98 changes: 98 additions & 0 deletions src/access_control/contract.rs
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,98 @@
use crate::access_control::AccessControl;
use cosmwasm_schema::cw_serde;
use cosmwasm_std::{Addr, Deps, DepsMut, Env, MessageInfo, Response, StdResult};
use strum::IntoEnumIterator;

#[cw_serde]
pub struct QueryAllAddressesWithRoleResponse {
pub addresses: Vec<Addr>,
}

#[cw_serde]
pub struct QueryRolesResponse<T> {
pub roles: Vec<T>,
}

pub fn query_all_addresses_with_role<T: AsRef<str>>(
deps: Deps,
role: T,
) -> StdResult<QueryAllAddressesWithRoleResponse> {
let addresses_with_role: StdResult<Vec<Addr>> =
AccessControl::get_all_addresses_with_role(deps.storage, &role).collect();

Ok(QueryAllAddressesWithRoleResponse {
addresses: addresses_with_role?,
})
}

pub fn query_roles<T: IntoEnumIterator + AsRef<str>>(
deps: Deps,
addr: Addr,
) -> StdResult<QueryRolesResponse<T>> {
let roles = T::iter() // Automatically iterate over all roles
.filter(|role| AccessControl::has_role(deps.storage, role, &addr))
.collect();

Ok(QueryRolesResponse { roles })
}

pub fn execute_grant_role_by_admin_role<T: AsRef<str>>(
deps: DepsMut,
env: Env,
info: MessageInfo,
role: T,
addr: Addr,
required_sender_role: T,
) -> StdResult<Response> {
AccessControl::ensure_has_role_or_superadmin(
&deps.as_ref(),
&env,
&required_sender_role,
&info.sender,
)?;
AccessControl::storage_set_role(deps.storage, &role, &addr)?;

Ok(Response::new()
.add_attribute("action", "grant_role")
.add_attribute("sender", info.sender)
.add_attribute("role", role.as_ref())
.add_attribute("addr", addr.to_string()))
}

pub fn execute_revoke_role_by_admin_role<T: AsRef<str>>(
deps: DepsMut,
env: Env,
info: MessageInfo,
role: T,
addr: Addr,
required_sender_role: T,
) -> StdResult<Response> {
AccessControl::ensure_has_role_or_superadmin(
&deps.as_ref(),
&env,
&required_sender_role,
&info.sender,
)?;
AccessControl::storage_remove_role(deps.storage, &role, &addr)?;

Ok(Response::new()
.add_attribute("action", "revoke_role")
.add_attribute("sender", info.sender)
.add_attribute("role", role.as_ref())
.add_attribute("addr", addr.to_string()))
}

pub fn execute_renounce_role<T: AsRef<str>>(
deps: DepsMut,
_env: Env,
info: MessageInfo,
role: T,
) -> StdResult<Response> {
AccessControl::ensure_has_role(&deps.as_ref(), &role, &info.sender)?;
AccessControl::storage_remove_role(deps.storage, &role, &info.sender)?;

Ok(Response::new()
.add_attribute("action", "renounce_role")
.add_attribute("sender", info.sender)
.add_attribute("role", role.as_ref()))
}
20 changes: 20 additions & 0 deletions src/access_control/error.rs
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,20 @@
use cosmwasm_std::{Addr, StdError};

pub fn no_role_error<T: AsRef<str>>(address: &Addr, role: &T) -> StdError {
StdError::generic_err(format!(
"Address {} does not have role {}",
address,
role.as_ref()
))
}
pub fn insufficient_permissions_error() -> StdError {
StdError::generic_err("Insufficient permissions")
}

pub fn role_already_exist_error<T: AsRef<str>>(role: &T) -> StdError {
StdError::generic_err(format!("Role {} already exist", role.as_ref()))
}

pub fn sender_is_not_role_admin_error<T: AsRef<str>>(role: &T) -> StdError {
StdError::generic_err(format!("Sender is not admin of role {}", role.as_ref()))
}
3 changes: 3 additions & 0 deletions src/access_control/mod.rs
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -1,3 +1,6 @@
mod contract;
pub mod error;
mod role;

pub use contract::*;
pub use role::AccessControl;
Loading