rippled/DepositAuthorized_8cpp_source.html

#include <xrpld/rpc/Context.h>

#include <xrpld/rpc/detail/RPCLedgerHelpers.h>


#include <xrpl/basics/Slice.h>

#include <xrpl/basics/base_uint.h>

#include <xrpl/core/ServiceRegistry.h>

#include <xrpl/json/json_value.h>

#include <xrpl/ledger/ReadView.h>

#include <xrpl/ledger/helpers/CredentialHelpers.h>

#include <xrpl/protocol/AccountID.h>

#include <xrpl/protocol/ErrorCodes.h>

#include <xrpl/protocol/Indexes.h>

#include <xrpl/protocol/LedgerFormats.h>

#include <xrpl/protocol/Protocol.h>

#include <xrpl/protocol/RPCErr.h>

#include <xrpl/protocol/SField.h>

#include <xrpl/protocol/jss.h>


#include <memory>

#include <set>

#include <utility>

#include <vector>


namespace xrpl {


// {

//   source_account : <ident>

//   destination_account : <ident>

//   ledger_hash : <ledger>

//   ledger_index : <ledger_index>

//   credentials : [<credentialID>,...]

// }


json::Value


doDepositAuthorized(RPC::JsonContext& context)

{

    json::Value const& params = context.params;


    // Validate source_account.

    if (!params.isMember(jss::source_account))

        return RPC::missingFieldError(jss::source_account);

    if (!params[jss::source_account].isString())

    {

        return RPC::makeError(

            RpcInvalidParams, RPC::expectedFieldMessage(jss::source_account, "a string"));

    }


    auto srcID = parseBase58<AccountID>(params[jss::source_account].asString());

    if (!srcID)

        return rpcError(RpcActMalformed);

    auto const srcAcct{srcID.value()};


    // Validate destination_account.

    if (!params.isMember(jss::destination_account))

        return RPC::missingFieldError(jss::destination_account);

    if (!params[jss::destination_account].isString())

    {

        return RPC::makeError(

            RpcInvalidParams, RPC::expectedFieldMessage(jss::destination_account, "a string"));

    }


    auto dstID = parseBase58<AccountID>(params[jss::destination_account].asString());

    if (!dstID)

        return rpcError(RpcActMalformed);

    auto const dstAcct{dstID.value()};


    // Validate ledger.

    std::shared_ptr<ReadView const> ledger;

    json::Value result = RPC::lookupLedger(ledger, context);


    if (!ledger)

        return result;


    // If source account is not in the ledger it can't be authorized.

    if (!ledger->exists(keylet::account(srcAcct)))

    {

        RPC::injectError(RpcSrcActNotFound, result);

        return result;

    }


    // If destination account is not in the ledger you can't deposit to it, eh?

    auto const sleDest = ledger->read(keylet::account(dstAcct));

    if (!sleDest)

    {

        RPC::injectError(RpcDstActNotFound, result);

        return result;

    }


    bool const reqAuth = sleDest->isFlag(lsfDepositAuth) && (srcAcct != dstAcct);

    bool const credentialsPresent = params.isMember(jss::credentials);


    std::set<std::pair<AccountID, Slice>> sorted;

    std::vector<SLE::const_pointer> lifeExtender;

    if (credentialsPresent)

    {

        auto const& creds(params[jss::credentials]);

        if (!creds.isArray() || !creds)

        {

            return RPC::makeError(

                RpcInvalidParams,

                RPC::expectedFieldMessage(

                    jss::credentials, "is non-empty array of CredentialID(hash256)"));

        }

        if (creds.size() > kMaxCredentialsArraySize)

        {

            return RPC::makeError(

                RpcInvalidParams, RPC::expectedFieldMessage(jss::credentials, "array too long"));

        }


        lifeExtender.reserve(creds.size());

        for (auto const& jo : creds)

        {

            if (!jo.isString())

            {

                return RPC::makeError(

                    RpcInvalidParams,

                    RPC::expectedFieldMessage(

                        jss::credentials, "an array of CredentialID(hash256)"));

            }


            uint256 credH;

            auto const credS = jo.asString();

            if (!credH.parseHex(credS))

            {

                return RPC::makeError(

                    RpcInvalidParams,

                    RPC::expectedFieldMessage(

                        jss::credentials, "an array of CredentialID(hash256)"));

            }


            SLE::const_pointer sleCred = ledger->read(keylet::credential(credH));

            if (!sleCred)

            {

                RPC::injectError(RpcBadCredentials, "credentials don't exist", result);

                return result;

            }


            if (!sleCred->isFlag(lsfAccepted))

            {

                RPC::injectError(RpcBadCredentials, "credentials aren't accepted", result);

                return result;

            }


            if (credentials::checkExpired(*sleCred, ledger->header().parentCloseTime))

            {

                RPC::injectError(RpcBadCredentials, "credentials are expired", result);

                return result;

            }


            if ((*sleCred)[sfSubject] != srcAcct)

            {

                RPC::injectError(

                    RpcBadCredentials, "credentials doesn't belong to the root account", result);

                return result;

            }


            auto [it, ins] = sorted.emplace((*sleCred)[sfIssuer], (*sleCred)[sfCredentialType]);

            if (!ins)

            {

                RPC::injectError(RpcBadCredentials, "duplicates in credentials", result);

                return result;

            }

            lifeExtender.push_back(std::move(sleCred));

        }

    }


    // If the two accounts are the same OR if that flag is

    // not set, then the deposit should be fine.

    bool depositAuthorized = true;

    if (reqAuth)

    {

        depositAuthorized = ledger->exists(keylet::depositPreauth(dstAcct, srcAcct)) ||

            (credentialsPresent && ledger->exists(keylet::depositPreauth(dstAcct, sorted)));

    }


    result[jss::source_account] = params[jss::source_account].asString();

    result[jss::destination_account] = params[jss::destination_account].asString();

    if (credentialsPresent)

        result[jss::credentials] = params[jss::credentials];


    result[jss::deposit_authorized] = depositAuthorized;

    return result;

}


}  // namespace xrpl

json::Value
Represents a JSON value.
Definition json_value.h:130

json::Value::asString
std::string asString() const
Returns the unquoted string value.
Definition json_value.cpp:483

json::Value::isMember
bool isMember(char const *key) const
Return true if the object has a member named key.
Definition json_value.cpp:1036

xrpl::BaseUInt::parseHex
constexpr bool parseHex(std::string_view sv)
Parse a hex string into a base_uint.
Definition base_uint.h:507

xrpl::STLedgerEntry::const_pointer
std::shared_ptr< STLedgerEntry const  > const_pointer
Definition STLedgerEntry.h:21

std::set::emplace
T emplace(T... args)

memory

xrpl::RPC::lookupLedger
Status lookupLedger(std::shared_ptr< ReadView const > &ledger, JsonContext const &context, json::Value &result)
Looks up a ledger from a request and fills a json::Value with ledger data.
Definition RPCLedgerHelpers.cpp:350

xrpl::RPC::makeError
json::Value makeError(ErrorCodeI code)
Returns a new json object that reflects the error code.
Definition ErrorCodes.cpp:191

xrpl::RPC::injectError
void injectError(ErrorCodeI code, json::Value &json)
Add or update the json update to reflect the error code.
Definition ErrorCodes.cpp:165

xrpl::RPC::expectedFieldMessage
std::string expectedFieldMessage(std::string const &name, std::string const &type)
Definition ErrorCodes.h:285

xrpl::RPC::missingFieldError
json::Value missingFieldError(std::string const &name)
Definition ErrorCodes.h:231

xrpl::credentials::checkExpired
bool checkExpired(SLE const &sleCredential, NetClock::time_point const &closed)
Definition CredentialHelpers.cpp:37

xrpl::keylet::depositPreauth
Keylet depositPreauth(AccountID const &owner, AccountID const &preauthorized) noexcept
A DepositPreauth.
Definition Indexes.cpp:328

xrpl::keylet::account
Keylet account(AccountID const &id) noexcept
AccountID root.
Definition Indexes.cpp:186

xrpl::keylet::credential
Keylet credential(AccountID const &subject, AccountID const &issuer, Slice const &credType) noexcept
Definition Indexes.cpp:545

xrpl
Use hash_* containers for keys that do not need a cryptographically secure hashing algorithm.
Definition algorithm.h:5

xrpl::RpcDstActNotFound
@ RpcDstActNotFound
Definition ErrorCodes.h:87

xrpl::RpcBadCredentials
@ RpcBadCredentials
Definition ErrorCodes.h:134

xrpl::RpcActMalformed
@ RpcActMalformed
Definition ErrorCodes.h:72

xrpl::RpcInvalidParams
@ RpcInvalidParams
Definition ErrorCodes.h:66

xrpl::RpcSrcActNotFound
@ RpcSrcActNotFound
Definition ErrorCodes.h:104

xrpl::parseBase58
std::optional< AccountID > parseBase58(std::string const &s)
Parse AccountID from checked, base58 string.
Definition AccountID.cpp:103

xrpl::rpcError
json::Value rpcError(ErrorCodeI iError)
Definition RPCErr.cpp:13

xrpl::kMaxCredentialsArraySize
constexpr std::size_t kMaxCredentialsArraySize
The maximum number of credentials can be passed in array.
Definition Protocol.h:228

xrpl::doDepositAuthorized
json::Value doDepositAuthorized(RPC::JsonContext &)
Definition DepositAuthorized.cpp:35

xrpl::uint256
BaseUInt< 256 > uint256
Definition base_uint.h:562

std::vector::push_back
T push_back(T... args)

std::vector::reserve
T reserve(T... args)

set

std::shared_ptr

xrpl::RPC::JsonContext
Definition Context.h:33

xrpl::RPC::JsonContext::params
json::Value params
Definition Context.h:43

utility

vector