commit/d09dbe4d6144115d1b25dfd26203513451217521/DepositAuthorized_8cpp_source.html

#include <xrpld/rpc/Context.h>

#include <xrpld/rpc/detail/RPCLedgerHelpers.h>


#include <xrpl/ledger/CredentialHelpers.h>

#include <xrpl/ledger/ReadView.h>

#include <xrpl/protocol/ErrorCodes.h>

#include <xrpl/protocol/Indexes.h>

#include <xrpl/protocol/RPCErr.h>

#include <xrpl/protocol/jss.h>


namespace xrpl {


// {

//   source_account : <ident>

//   destination_account : <ident>

//   ledger_hash : <ledger>

//   ledger_index : <ledger_index>

//   credentials : [<credentialID>,...]

// }


Json::Value


doDepositAuthorized(RPC::JsonContext& context)

{

    Json::Value const& params = context.params;


    // Validate source_account.

    if (!params.isMember(jss::source_account))

        return RPC::missing_field_error(jss::source_account);

    if (!params[jss::source_account].isString())

        return RPC::make_error(rpcINVALID_PARAMS, RPC::expected_field_message(jss::source_account, "a string"));


    auto srcID = parseBase58<AccountID>(params[jss::source_account].asString());

    if (!srcID)

        return rpcError(rpcACT_MALFORMED);

    auto const srcAcct{std::move(srcID.value())};


    // Validate destination_account.

    if (!params.isMember(jss::destination_account))

        return RPC::missing_field_error(jss::destination_account);

    if (!params[jss::destination_account].isString())

        return RPC::make_error(rpcINVALID_PARAMS, RPC::expected_field_message(jss::destination_account, "a string"));


    auto dstID = parseBase58<AccountID>(params[jss::destination_account].asString());

    if (!dstID)

        return rpcError(rpcACT_MALFORMED);

    auto const dstAcct{std::move(dstID.value())};


    // Validate ledger.

    std::shared_ptr<ReadView const> ledger;

    Json::Value result = RPC::lookupLedger(ledger, context);


    if (!ledger)

        return result;


    // If source account is not in the ledger it can't be authorized.

    if (!ledger->exists(keylet::account(srcAcct)))

    {

        RPC::inject_error(rpcSRC_ACT_NOT_FOUND, result);

        return result;

    }


    // If destination account is not in the ledger you can't deposit to it, eh?

    auto const sleDest = ledger->read(keylet::account(dstAcct));

    if (!sleDest)

    {

        RPC::inject_error(rpcDST_ACT_NOT_FOUND, result);

        return result;

    }


    bool const reqAuth = (sleDest->getFlags() & lsfDepositAuth) && (srcAcct != dstAcct);

    bool const credentialsPresent = params.isMember(jss::credentials);


    std::set<std::pair<AccountID, Slice>> sorted;

    std::vector<std::shared_ptr<SLE const>> lifeExtender;

    if (credentialsPresent)

    {

        auto const& creds(params[jss::credentials]);

        if (!creds.isArray() || !creds)

        {

            return RPC::make_error(

                rpcINVALID_PARAMS,

                RPC::expected_field_message(jss::credentials, "is non-empty array of CredentialID(hash256)"));

        }

        else if (creds.size() > maxCredentialsArraySize)

        {

            return RPC::make_error(rpcINVALID_PARAMS, RPC::expected_field_message(jss::credentials, "array too long"));

        }


        lifeExtender.reserve(creds.size());

        for (auto const& jo : creds)

        {

            if (!jo.isString())

            {

                return RPC::make_error(

                    rpcINVALID_PARAMS,

                    RPC::expected_field_message(jss::credentials, "an array of CredentialID(hash256)"));

            }


            uint256 credH;

            auto const credS = jo.asString();

            if (!credH.parseHex(credS))

            {

                return RPC::make_error(

                    rpcINVALID_PARAMS,

                    RPC::expected_field_message(jss::credentials, "an array of CredentialID(hash256)"));

            }


            std::shared_ptr<SLE const> sleCred = ledger->read(keylet::credential(credH));

            if (!sleCred)

            {

                RPC::inject_error(rpcBAD_CREDENTIALS, "credentials don't exist", result);

                return result;

            }


            if (!(sleCred->getFlags() & lsfAccepted))

            {

                RPC::inject_error(rpcBAD_CREDENTIALS, "credentials aren't accepted", result);

                return result;

            }


            if (credentials::checkExpired(sleCred, ledger->header().parentCloseTime))

            {

                RPC::inject_error(rpcBAD_CREDENTIALS, "credentials are expired", result);

                return result;

            }


            if ((*sleCred)[sfSubject] != srcAcct)

            {

                RPC::inject_error(rpcBAD_CREDENTIALS, "credentials doesn't belong to the root account", result);

                return result;

            }


            auto [it, ins] = sorted.emplace((*sleCred)[sfIssuer], (*sleCred)[sfCredentialType]);

            if (!ins)

            {

                RPC::inject_error(rpcBAD_CREDENTIALS, "duplicates in credentials", result);

                return result;

            }

            lifeExtender.push_back(std::move(sleCred));

        }

    }


    // If the two accounts are the same OR if that flag is

    // not set, then the deposit should be fine.

    bool depositAuthorized = true;

    if (reqAuth)

        depositAuthorized = ledger->exists(keylet::depositPreauth(dstAcct, srcAcct)) ||

            (credentialsPresent && ledger->exists(keylet::depositPreauth(dstAcct, sorted)));


    result[jss::source_account] = params[jss::source_account].asString();

    result[jss::destination_account] = params[jss::destination_account].asString();

    if (credentialsPresent)

        result[jss::credentials] = params[jss::credentials];


    result[jss::deposit_authorized] = depositAuthorized;

    return result;

}


}  // namespace xrpl

Json::Value
Represents a JSON value.
Definition json_value.h:130

Json::Value::asString
std::string asString() const
Returns the unquoted string value.
Definition json_value.cpp:457

Json::Value::isMember
bool isMember(char const *key) const
Return true if the object has a member named key.
Definition json_value.cpp:978

xrpl::base_uint< 256 >

xrpl::base_uint::parseHex
constexpr bool parseHex(std::string_view sv)
Parse a hex string into a base_uint.
Definition base_uint.h:471

std::set::emplace
T emplace(T... args)

xrpl::RPC::expected_field_message
std::string expected_field_message(std::string const &name, std::string const &type)
Definition ErrorCodes.h:280

xrpl::RPC::missing_field_error
Json::Value missing_field_error(std::string const &name)
Definition ErrorCodes.h:226

xrpl::RPC::inject_error
void inject_error(error_code_i code, Json::Value &json)
Add or update the json update to reflect the error code.
Definition ErrorCodes.cpp:164

xrpl::RPC::lookupLedger
Status lookupLedger(std::shared_ptr< ReadView const > &ledger, JsonContext const &context, Json::Value &result)
Looks up a ledger from a request and fills a Json::Value with ledger data.
Definition RPCLedgerHelpers.cpp:314

xrpl::RPC::make_error
Json::Value make_error(error_code_i code)
Returns a new json object that reflects the error code.
Definition ErrorCodes.cpp:190

xrpl::credentials::checkExpired
bool checkExpired(std::shared_ptr< SLE const > const &sleCredential, NetClock::time_point const &closed)
Definition CredentialHelpers.cpp:12

xrpl::keylet::depositPreauth
Keylet depositPreauth(AccountID const &owner, AccountID const &preauthorized) noexcept
A DepositPreauth.
Definition Indexes.cpp:299

xrpl::keylet::account
Keylet account(AccountID const &id) noexcept
AccountID root.
Definition Indexes.cpp:160

xrpl::keylet::credential
Keylet credential(AccountID const &subject, AccountID const &issuer, Slice const &credType) noexcept
Definition Indexes.cpp:486

xrpl
Use hash_* containers for keys that do not need a cryptographically secure hashing algorithm.
Definition algorithm.h:5

xrpl::doDepositAuthorized
Json::Value doDepositAuthorized(RPC::JsonContext &context)
Definition DepositAuthorized.cpp:22

xrpl::maxCredentialsArraySize
std::size_t constexpr maxCredentialsArraySize
The maximum number of credentials can be passed in array.
Definition Protocol.h:223

xrpl::rpcError
Json::Value rpcError(error_code_i iError)
Definition RPCErr.cpp:12

xrpl::lsfDepositAuth
@ lsfDepositAuth
Definition LedgerFormats.h:116

xrpl::lsfAccepted
@ lsfAccepted
Definition LedgerFormats.h:184

xrpl::rpcBAD_CREDENTIALS
@ rpcBAD_CREDENTIALS
Definition ErrorCodes.h:132

xrpl::rpcSRC_ACT_NOT_FOUND
@ rpcSRC_ACT_NOT_FOUND
Definition ErrorCodes.h:102

xrpl::rpcDST_ACT_NOT_FOUND
@ rpcDST_ACT_NOT_FOUND
Definition ErrorCodes.h:85

xrpl::rpcINVALID_PARAMS
@ rpcINVALID_PARAMS
Definition ErrorCodes.h:64

xrpl::rpcACT_MALFORMED
@ rpcACT_MALFORMED
Definition ErrorCodes.h:70

std::vector::push_back
T push_back(T... args)

std::vector::reserve
T reserve(T... args)

std::set

std::shared_ptr

xrpl::RPC::JsonContext
Definition Context.h:33

xrpl::RPC::JsonContext::params
Json::Value params
Definition Context.h:43

std::vector