Skip to content

Prometheus-X-association/3videnz-RevealableConsensualSBT

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

13 Commits

artifacts/contracts

artifacts/contracts

 
 

contracts

contracts

 
 

public

public

 
 

test

test

 
 

.gitignore

.gitignore

 
 

.prettierrc

.prettierrc

 
 

.solhint.json

.solhint.json

 
 

.solhintignore

.solhintignore

 
 

LICENSE.md

LICENSE.md

 
 

README.md

README.md

 
 

hardhat.config.js

hardhat.config.js

 
 

package-lock.json

package-lock.json

 
 

package.json

package.json

 
 

slither.config.json

slither.config.json

 
 

Repository files navigation

Evidenz Revealable Consensual SBT

Overview

Evidenz Revealable Consensual SBT is a smart contract system for managing Prometheus-X verified identities. It provides a mechanism for issuing and managing soulbound tokens (SBTs) with the ability to reveal public keys associated with tokens after they have been claimed. This system ensures authenticity and privacy for the token holders while allowing for selective disclosure of their public keys.

Features

  • Issue soulbound tokens (SBTs) with the hashed public keys to be revealed and pin codes to be claimed.
  • Reveal public keys associated with tokens after they have been claimed.
  • Support for ERC721 token standards with additional functionalities for revealable and burnable tokens.

Requirements

To run the EvidenzRevealableConsensualSBT contract and associated development tools, ensure the following versions are installed:

  • Node.js: Version 20.9.0 or later.
  • npm: Version 10.1.0 or later.
  • Slither: Latest version.

These requirements ensure compatibility and stability with the development environment. Node.js and npm are essential for managing dependencies and executing scripts, while Slither is a static analysis tool used for detecting security vulnerabilities and potential issues in smart contracts.

NPM scripts

Compile the smart contracts:

npx hardhat compile

Run tests:

npx hardhat test

Check code style and security:

npm run check

Deployment

The contract can be deployed to the desired network using Remix IDE or Hardhat network configurations.

Compile the contracts using Solidity version 0.8.18 and with the following optimizations:

settings: {
  optimizer: { enabled: true, runs: 200 }
}

When deploying the EvidenzRevealableConsensualSBT contract, you need to provide the following constructor parameters:

  • name: This parameter represents the name of the token collection. It is a string that identifies the tokens being managed by the contract.
  • symbol: This parameter represents the symbol of the token collection. It is a short string that represents the tokens being managed by the contract, typically in uppercase letters.
  • burnAuth: This parameter specifies the burn authorization for the tokens. It determines who has the authority to burn or destroy the tokens. The possible values for this parameter are:
    • IssuerOnly: Only the issuer of the token can burn it.
    • OwnerOnly: Only the owner of the token can burn it.
    • Both: Both the issuer and the owner of the token can burn it.
    • Neither: Nobody can burn the token.

When deploying the contract, you should provide appropriate values for these parameters based on your specific requirements and use case. For example:

// Deploying EvidenzRevealableConsensualSBT contract with constructor parameters
const name = "MyToken";
const symbol = "MTK";
const burnAuth = "IssuerOnly"; // or "OwnerOnly", "Both", "Neither"

await deployer.deploy(EvidenzRevealableConsensualSBT, name, symbol, burnAuth);

Configuration

To ensure proper operation, instances of EvidenzRevealableConsensualSBT require configuration with the following parameters:

  • Template: Set the template contract address using the setTemplate function.
  • Default Image: Define the default image for unrevealed tokens using the setDefaultImage function.
  • Issuer Information: Provide issuer details, such as name and URL, using the setIssuer function.

setTemplate

/**
 * @dev Sets the template for creating new tokens.
 * @param template_ The template struct containing token metadata.
 */
function setTemplate(Template calldata template_) external onlyOwner

This function enables the contract owner to establish the template for generating new tokens.

The template_ parameter is a struct representing the template for creating new tokens, comprising the following fields:

  • id: Unique identifier for the template.
  • value: Value associated with the template.
  • metadata: Additional metadata for the template.
  • reader: An Environment.Endpoint struct for reading token data.
  • toolbox: An Environment.Endpoint struct for accessing the token's revealed image.
struct Template {
    string id;
    string value;
    string metadata;
    Environment.Endpoint reader;
    Environment.Endpoint toolbox;
}

Both reader and toolbox are structures representing an Endpoint for interaction with external resources, encompassing the following fields:

  • url: URL of the endpoint.
  • params: Additional parameters to append to the URL.
struct Endpoint {
    string url;
    string params;
}

The resulting URL is generated by the contract as Endpoint.url/token_publicKey?Endpoint.params.

setIssuer

/**
 * @dev Sets the issuer information.
 * @param issuer_ The struct containing the issuer's name and URL.
 */
function setIssuer(Issuer calldata issuer_) external onlyOwner

This function enables the contract owner to set the issuer's information.

The issuer_ parameter is a structure encapsulating information about the entity issuing the tokens, including the name and URL:

  • name: Represents the name of the issuer entity.
  • url: Signifies the Uniform Resource Locator (URL) pointing to the issuer's website or relevant information.
struct Issuer {
    string name;  
    string url;   
}

setDefaultImage

/**
 * @dev Sets the default image for unrevealed tokens.
 * @param defaultImage_ The URL of the default image.
 */
function setDefaultImage(string calldata defaultImage_) external onlyOwner

This function allows the contract owner to define the default image for unrevealed tokens.

The defaultImage_ parameter is a string representing the URL of the default image to be associated with unrevealed tokens.

By calling this function, the contract owner can specify a default image to be displayed for tokens that have not yet been revealed by their owners.

Usage

mint

/**
 * @dev Mints tokens with provided data, hashed public key, and hashed pin code.
 * @param toMint Array containing data, hashed public key, and hashed pin code for each token to be minted.
 */
function mint(ToMint[] calldata toMint) external onlyOwner

This function mints tokens with provided data, hashed public key, and hashed pin code.

The toMint parameter is an array of structs containing data, hashed public key, and hashed pin code for each token to be minted.

claim

/**
 * @dev Claims ownership of a token and issues it to a specified address after validating the pin code and signature.
 * @param to Address to claim the token for.
 * @param tokenId ID of the token to claim.
 * @param pinCode Pin code used for verification.
 * @param signature Signature for validation.
 */
function claim(
    address to,
    uint256 tokenId,
    string calldata pinCode,
    bytes calldata signature
) public onlyOwner

This function claims ownership of a token and issues it to a specified address after validating the pin code and signature.

  • to: Address to claim the token for.
  • tokenId: ID of the token to claim.
  • pinCode: Pin code used for verification.
  • signature: Signature for validation.

claimAndReveal

/**
 * @dev Claims ownership of a token, issues it to a specified address, and reveals the token's public key.
 * @param to Address to claim the token for.
 * @param tokenId ID of the token to claim.
 * @param pinCode Pin code used for verification.
 * @param publicKey Public key to reveal.
 * @param signature Signature for validation.
 */
function claimAndReveal(
    address to,
    uint256 tokenId,
    string calldata pinCode,
    string calldata publicKey,
    bytes calldata signature
) external onlyOwner

This function claims ownership of a token, issues it to a specified address, and reveals the token's public key.

  • to: Address to claim the token for.
  • tokenId: ID of the token to claim.
  • pinCode: Pin code used for verification.
  • publicKey: Public key to reveal.
  • signature: Signature for validation.

burn

/**
 * @dev Destroys the token with the specified ID.
 * @param tokenId ID of the token to burn.
 */
function burn(uint256 tokenId) external

This function destroys the token with the specified ID.

  • tokenId: ID of the token to burn.

tokenURI

/**
 * @dev Returns the URI of the token metadata.
 * @param tokenId ID of the token.
 * @return uri URI of the token metadata.
 */
function tokenURI(uint256 tokenId) public view override

This function returns the URI of the token metadata.

  • tokenId: ID of the token.
  • uri: URI of the token metadata.

tokanData

/**
 * @dev Returns the data associated with the token.
 * @param tokenId ID of the token.
 * @return data Data associated with the token.
 */
function tokanData(uint256 tokenId) external view returns (string memory data)

This function returns the data associated with the token.

  • tokenId: ID of the token.
  • data: Data associated with the token.

getHashedPublicKey

/**
 * @dev Returns the hashed public key of a token.
 * @param tokenId ID of the token.
 * @return hashedPublicKey Hashed public key of the token.
 */
function getHashedPublicKey(uint256 tokenId) external view returns (bytes32 hashedPublicKey)

This function returns the hashed public key of a token.

  • tokenId: ID of the token.
  • hashedPublicKey: Hashed public key of the token.

getHashedPinCode

/**
 * @dev Returns the hashed pin code of a token.
 * @param tokenId ID of the token.
 * @return hashedPinCode Hashed pin code of the token.
 */
function getHashedPinCode(uint256 tokenId) external view returns (bytes32 hashedPinCode)

This function returns the hashed pin code of a token.

  • tokenId: ID of the token.
  • hashedPinCode: Hashed pin code of the token.

name

/**
 * @dev Returns the name of the token collection.
 * @return name Name of the token collection.
 */
function name() external view returns (string memory)

This function returns the name of the token collection.

  • name: Name of the token collection.

getTemplate

/**
 * @dev Returns the template struct of the token.
 * @param tokenId ID of the token.
 * @return template Template struct of the token.
 */
function getTemplate(uint256 tokenId) external view returns (Template memory template)

This function returns the template struct of the token.

  • tokenId: ID of the token.
  • template: Template struct of the token.

getIssuer

/**
 * @dev Returns the issuer struct of the token.
 * @param tokenId ID of the token.
 * @return issuer Issuer struct of the token.
 */
function getIssuer(uint256 tokenId) external view returns (Issuer memory issuer)

This function returns the issuer struct of the token.

  • tokenId: ID of the token.
  • issuer: Issuer struct of the token.

getDefaultImage

/**
 * @dev Returns the default image URL.
 * @return defaultImage Default image URL.
 */
function getDefaultImage() external view returns (string memory defaultImage)

This function returns the default image URL.

  • defaultImage: Default image URL.

supportsInterface

/**
 * @dev Checks if a contract implements a given interface.
 * @param interfaceId Interface identifier.
 * @return supportsInterface True if the contract supports the interface, false otherwise.
 */
function supportsInterface(bytes4 interfaceId) public view virtual override returns (bool supportsInterface)

This function checks if a contract implements a given interface.

  • interfaceId: Interface identifier.
  • supportsInterface: True if the contract supports the interface, false otherwise.
  • IOnChainAssests interface id is 0x07d4e947
  • IERC5484 interface id is 0x0489b56f
  • IRenamable interface id is 0xc47f0027
  • IRevealable interface id is 0x92a9a241

Web Interface

The public/index.html file contains a basic HTML web interface for integration of the credentials & descriptions directory. The application allows users to interact with a specific type of non-fungible tokens (NFTs) called "revealable consensual SBTs". Users can input the contract address and the chain RPC URL to retrieve information about the SBT collection deployed at that address.

To use the provided web interface, open the public/index.html file in a web browser. This interface allows you to input the contract address of the collection and the chain RPC URL and view the issued tokens along with their details.

Script Dependencies

Ethers.js: A JavaScript library for interacting with Ethereum and Ethereum-like blockchains. The public/ethers-5.7.2.min.js file contains the minified version of Ethers.js used in the web interface.

Contracts Details

The system comprises the following contracts:

  • EvidenzRevealableConsensualSBT.sol: Main contract implementing the SBT issuance, claiming, revealing, and management functionalities.
  • ERC5484.sol: Implements the ERC5484 standard for consensual soulbound tokens.
  • ERC5484Burnable.sol: Extends ERC5484 to provide burnable token functionalities.
  • ERC721Base64URI.sol: Extends ERC721 to provide base64-encoded token URI functionalities.
  • ERC721Renamable.sol: Extends ERC721 to provide token renaming functionalities.
  • IRevealable.sol: Interface defining the revealable functionalities.
  • Premint.sol: Contract defining premint functionalities for SBT issuance.
  • Revealable.sol: Contract implementing revealable functionalities for SBTs.
  • Other utility and interface contracts: Asserts.sol, Environment.sol.

ABI

The ABI (Application Binary Interface) for all contracts is accessible under the directory artifacts/contracts/<contract-path>/<contract>.sol.

Each contract's ABI is stored in a separate JSON file named <contract>.json. This ABI file provides a standardized interface description that specifies how to interact with the smart contract, including the available functions, their parameters, and return types. It serves as a crucial component for integrating smart contracts into decentralized applications (DApps) or other development environments.

Configuration and extension to other use cases

Overview of the "Template" field in the EvidenzRevealableConsensualSBT Smart Contract

The EvidenzRevealableConsensualSBT smart contract has a "Template" field, accessible via the set/get methods documented above, which describes the specific characteristics of the type of credential deployed. It includes:

  • The type of credential (e.g., verifiedIdentity)
  • The encoding type of the data field (e.g., 3videnZ - when data is encrypted using the 3videnZ protocol, plain - when data is unencrypted)
  • Information on the expected data structure in the data field These parameters can be extended and modified to support other types of credentials or encoding protocols.

Specific configuration for identity management

The EvidenzRevealableConsensualSBT smart contract has been documented, developed, and deployed for the management of verified identities. The template field is configured as follows:

  • Type: verifiedIdentity
  • Data encoding: 3videnZ
  • Expected fields:
{
    "catalog_name": "^catalog_name¤",
    "catalog_url": "^catalog_url¤",,
    "company_name": "^company_name¤",
    "px_credential": "^px_credential¤",
    "additional_info": "^additional_info¤"
}

An instance of the Catalog_administration contract allowing the issuance of Identity Credentials has been deployed on the Avalanche-Fuji testnet.

Extending the configuration to other authorizations (e.g., ecosystem_owner, ecosystem_data_user)

The EvidenzRevealableConsensualSBT smart contract can be extended to address the issue of managing specific permissions. Just as an instance of the EvidenzRevealableConsensualSBT smart contract offers a solution for managing verified identities within Prometheus-X, other instances can be deployed and configured to manage specific permissions within catalogs, such as those described in the specifications as "ecosystem_owner" and "ecosystem_data_user". For example, a user holding an "ecosystem_owner" type credential with specific attributes could access and contribute to private workspaces, while a user with an "ecosystem_data_user" credential having the same specific attributes would have read-only access to the same workspace. To support this type of credential in the 3videnz-siwed-react library:

  • Add the new “XXX” type smart contracts to be supported in identityRegistries to define the credentials accepted by the library
  • Add a FetchXXX method allowing the verification of the ownership of an SBT of this type
  • Include in the login method, the specific data related to the XXX type credential if possessed

It should be noted that such an implementation could present unnecessary complexity; therefore, it's important to justify the necessity of this implementation by a use case as relevant as that of cross-catalog identity management.

About

No description, website, or topics provided.

Resources

Readme

License

MIT license
Activity
Custom properties

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Contributors 2

  •  
  •  

Languages