commit/03f73f6be1d1638108b3e389f531d7f70bd0cb20/DepositAuthorized_8cpp_source.html

#include <xrpld/rpc/Context.h>

#include <xrpld/rpc/detail/RPCHelpers.h>


#include <xrpl/ledger/CredentialHelpers.h>

#include <xrpl/ledger/ReadView.h>

#include <xrpl/protocol/ErrorCodes.h>

#include <xrpl/protocol/Indexes.h>

#include <xrpl/protocol/RPCErr.h>

#include <xrpl/protocol/jss.h>


namespace ripple {


// {

//   source_account : <ident>

//   destination_account : <ident>

//   ledger_hash : <ledger>

//   ledger_index : <ledger_index>

//   credentials : [<credentialID>,...]

// }


Json::Value


doDepositAuthorized(RPC::JsonContext& context)

{

    Json::Value const& params = context.params;


    // Validate source_account.

    if (!params.isMember(jss::source_account))

        return RPC::missing_field_error(jss::source_account);

    if (!params[jss::source_account].isString())

        return RPC::make_error(

            rpcINVALID_PARAMS,

            RPC::expected_field_message(jss::source_account, "a string"));


    auto srcID = parseBase58<AccountID>(params[jss::source_account].asString());

    if (!srcID)

        return rpcError(rpcACT_MALFORMED);

    auto const srcAcct{std::move(srcID.value())};


    // Validate destination_account.

    if (!params.isMember(jss::destination_account))

        return RPC::missing_field_error(jss::destination_account);

    if (!params[jss::destination_account].isString())

        return RPC::make_error(

            rpcINVALID_PARAMS,

            RPC::expected_field_message(jss::destination_account, "a string"));


    auto dstID =

        parseBase58<AccountID>(params[jss::destination_account].asString());

    if (!dstID)

        return rpcError(rpcACT_MALFORMED);

    auto const dstAcct{std::move(dstID.value())};


    // Validate ledger.

    std::shared_ptr<ReadView const> ledger;

    Json::Value result = RPC::lookupLedger(ledger, context);


    if (!ledger)

        return result;


    // If source account is not in the ledger it can't be authorized.

    if (!ledger->exists(keylet::account(srcAcct)))

    {

        RPC::inject_error(rpcSRC_ACT_NOT_FOUND, result);

        return result;

    }


    // If destination account is not in the ledger you can't deposit to it, eh?

    auto const sleDest = ledger->read(keylet::account(dstAcct));

    if (!sleDest)

    {

        RPC::inject_error(rpcDST_ACT_NOT_FOUND, result);

        return result;

    }


    bool const reqAuth =

        (sleDest->getFlags() & lsfDepositAuth) && (srcAcct != dstAcct);

    bool const credentialsPresent = params.isMember(jss::credentials);


    std::set<std::pair<AccountID, Slice>> sorted;

    std::vector<std::shared_ptr<SLE const>> lifeExtender;

    if (credentialsPresent)

    {

        auto const& creds(params[jss::credentials]);

        if (!creds.isArray() || !creds)

        {

            return RPC::make_error(

                rpcINVALID_PARAMS,

                RPC::expected_field_message(

                    jss::credentials,

                    "is non-empty array of CredentialID(hash256)"));

        }

        else if (creds.size() > maxCredentialsArraySize)

        {

            return RPC::make_error(

                rpcINVALID_PARAMS,

                RPC::expected_field_message(

                    jss::credentials, "array too long"));

        }


        lifeExtender.reserve(creds.size());

        for (auto const& jo : creds)

        {

            if (!jo.isString())

            {

                return RPC::make_error(

                    rpcINVALID_PARAMS,

                    RPC::expected_field_message(

                        jss::credentials, "an array of CredentialID(hash256)"));

            }


            uint256 credH;

            auto const credS = jo.asString();

            if (!credH.parseHex(credS))

            {

                return RPC::make_error(

                    rpcINVALID_PARAMS,

                    RPC::expected_field_message(

                        jss::credentials, "an array of CredentialID(hash256)"));

            }


            std::shared_ptr<SLE const> sleCred =

                ledger->read(keylet::credential(credH));

            if (!sleCred)

            {

                RPC::inject_error(

                    rpcBAD_CREDENTIALS, "credentials don't exist", result);

                return result;

            }


            if (!(sleCred->getFlags() & lsfAccepted))

            {

                RPC::inject_error(

                    rpcBAD_CREDENTIALS, "credentials aren't accepted", result);

                return result;

            }


            if (credentials::checkExpired(

                    sleCred, ledger->info().parentCloseTime))

            {

                RPC::inject_error(

                    rpcBAD_CREDENTIALS, "credentials are expired", result);

                return result;

            }


            if ((*sleCred)[sfSubject] != srcAcct)

            {

                RPC::inject_error(

                    rpcBAD_CREDENTIALS,

                    "credentials doesn't belong to the root account",

                    result);

                return result;

            }


            auto [it, ins] = sorted.emplace(

                (*sleCred)[sfIssuer], (*sleCred)[sfCredentialType]);

            if (!ins)

            {

                RPC::inject_error(

                    rpcBAD_CREDENTIALS, "duplicates in credentials", result);

                return result;

            }

            lifeExtender.push_back(std::move(sleCred));

        }

    }


    // If the two accounts are the same OR if that flag is

    // not set, then the deposit should be fine.

    bool depositAuthorized = true;

    if (reqAuth)

        depositAuthorized =

            ledger->exists(keylet::depositPreauth(dstAcct, srcAcct)) ||

            (credentialsPresent &&

             ledger->exists(keylet::depositPreauth(dstAcct, sorted)));


    result[jss::source_account] = params[jss::source_account].asString();

    result[jss::destination_account] =

        params[jss::destination_account].asString();

    if (credentialsPresent)

        result[jss::credentials] = params[jss::credentials];


    result[jss::deposit_authorized] = depositAuthorized;

    return result;

}


}  // namespace ripple

Json::Value
Represents a JSON value.
Definition json_value.h:131

Json::Value::asString
std::string asString() const
Returns the unquoted string value.
Definition json_value.cpp:471

Json::Value::isMember
bool isMember(char const *key) const
Return true if the object has a member named key.
Definition json_value.cpp:1030

ripple::base_uint< 256 >

ripple::base_uint::parseHex
constexpr bool parseHex(std::string_view sv)
Parse a hex string into a base_uint.
Definition base_uint.h:484

std::set::emplace
T emplace(T... args)

ripple::RPC::make_error
Json::Value make_error(error_code_i code)
Returns a new json object that reflects the error code.
Definition ErrorCodes.cpp:172

ripple::RPC::inject_error
void inject_error(error_code_i code, JsonValue &json)
Add or update the json update to reflect the error code.
Definition ErrorCodes.h:214

ripple::RPC::expected_field_message
std::string expected_field_message(std::string const &name, std::string const &type)
Definition ErrorCodes.h:318

ripple::RPC::lookupLedger
Status lookupLedger(std::shared_ptr< ReadView const > &ledger, JsonContext &context, Json::Value &result)
Look up a ledger from a request and fill a Json::Result with the data representing a ledger.
Definition RPCHelpers.cpp:606

ripple::RPC::missing_field_error
Json::Value missing_field_error(std::string const &name)
Definition ErrorCodes.h:264

ripple::credentials::checkExpired
bool checkExpired(std::shared_ptr< SLE const > const &sleCredential, NetClock::time_point const &closed)
Definition CredentialHelpers.cpp:12

ripple::keylet::credential
Keylet credential(AccountID const &subject, AccountID const &issuer, Slice const &credType) noexcept
Definition Indexes.cpp:534

ripple::keylet::account
Keylet account(AccountID const &id) noexcept
AccountID root.
Definition Indexes.cpp:165

ripple::keylet::depositPreauth
Keylet depositPreauth(AccountID const &owner, AccountID const &preauthorized) noexcept
A DepositPreauth.
Definition Indexes.cpp:323

ripple
Use hash_* containers for keys that do not need a cryptographically secure hashing algorithm.
Definition algorithm.h:6

ripple::rpcSRC_ACT_NOT_FOUND
@ rpcSRC_ACT_NOT_FOUND
Definition ErrorCodes.h:103

ripple::rpcACT_MALFORMED
@ rpcACT_MALFORMED
Definition ErrorCodes.h:71

ripple::rpcBAD_CREDENTIALS
@ rpcBAD_CREDENTIALS
Definition ErrorCodes.h:133

ripple::rpcINVALID_PARAMS
@ rpcINVALID_PARAMS
Definition ErrorCodes.h:65

ripple::rpcDST_ACT_NOT_FOUND
@ rpcDST_ACT_NOT_FOUND
Definition ErrorCodes.h:86

ripple::lsfDepositAuth
@ lsfDepositAuth
Definition LedgerFormats.h:117

ripple::lsfAccepted
@ lsfAccepted
Definition LedgerFormats.h:185

ripple::rpcError
Json::Value rpcError(int iError)
Definition RPCErr.cpp:12

ripple::doDepositAuthorized
Json::Value doDepositAuthorized(RPC::JsonContext &context)
Definition DepositAuthorized.cpp:22

ripple::maxCredentialsArraySize
std::size_t constexpr maxCredentialsArraySize
The maximum number of credentials can be passed in array.
Definition Protocol.h:90

std::vector::push_back
T push_back(T... args)

std::vector::reserve
T reserve(T... args)

std::set

std::shared_ptr

ripple::RPC::JsonContext
Definition Context.h:34

ripple::RPC::JsonContext::params
Json::Value params
Definition Context.h:44

std::vector