grant_installation

[tsachiherman]

What ?

This PR adds support for registering a new installation.

Design considerations

The xps-gateway is the executable endpoint, that manages the rpc endpoint. It will setup an rpc server that would listen for incoming requests and perform input validation. Valid requests would be forwarded to the inbox / messaging / registry crates for method-specific implementation.

Requirements

This PR followed the design details in #22; discussion in #13 and xmtp/libxmtp#274

[insipx]

should have an integration test in the style of revoke_installation

[codecov]

Codecov Report

Attention: 2 lines in your changes are missing coverage. Please review.

Comparison is base (1439a2e) 77.32% compared to head (fff0803) 82.01%.
Report is 1 commits behind head on main.

Files	Patch %	Lines
registry/src/lib.rs	94.59%	2 Missing ⚠️

Additional details and impacted files

@@            Coverage Diff             @@
##             main      #50      +/-   ##
==========================================
+ Coverage   77.32%   82.01%   +4.69%     
==========================================
  Files          10       10              
  Lines         172      228      +56     
==========================================
+ Hits          133      187      +54     
- Misses         39       41       +2     

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

[jac18281828]

Remember that this string will always be created, even if this log is suppressed. This may be slightly too verbose logging.

[tsachiherman]

I'm perfectly fine eliminating that. it was used during my debugging, but I don't feel strongly here.

[tsachiherman]

@jac18281828 question - I've calculated a validity to be one year in the future.
The issue is that it needs to be exactly the same validity for the signer and the sender.
so, taking current_block + 1 year might change. two options:

1. add the validity to the grant_installation rpc arguments.
2. set the validity so that it won't change between signing and sending. for example - trim it to a 1000's round a year from n ow. i.e. validity = (block_number + 1 year ) & 0xfffffff000

[insipx]

so far, we've been doing this strategy with .await?.await? which first sends the transaction, gets back a PendingTransaction, and then waits for it to be included + a specified amount of confirmations (default of 1). I like what you did below, though, but unsure what the better path would be:

Do we make the gateway wait until tx is confirmed or do we just return the tx_hash and have libxmtp/client wait?

We can instead just return the txHash from the RPC, and not wait on transaction inclusion, leaving tx confirmations up to the client. We do give up some control if something goes wrong.

Not a super important detail, but maybe worth a quick discussion WDYT @tsachiherman @jac18281828 @37ng

[tsachiherman]

I think that it's a very important observation, as this is a blocking operation that consumes servers memory for the entire duration of the operation.
Another point is that regardless if we make it "non-blocking" or not, we need to be able to detect a fail cases so that we can log these.

[insipx]

That's true, IMO I think we should hand off control of the transaction to the client and just return txHash. A PendingTransaction can be easily rebuilt from libxmtp side by just providing the hash and a provider, so if anything fails they could re-submit the transaction

We could also provide an endpoint to do this for them, i.e subscribeTransaction or something along those lines

[jac18281828]

We should avoid waiting whenever possible in the service. We haven't spent much time optimizing the number of threads, etc., these threads will be precious.

[insipx]

made an issue for this: #52

the return of revoke_installation will have to change as well

[insipx]

Made into an issue, #51

[insipx]

Suggested change

// TODO: Parse or resolve the actual DID

[insipx]

Looks good! I'm willing to approve after an integration test is added

[jac18281828]

@jac18281828 question - I've calculated a validity to be one year in the future. The issue is that it needs to be exactly the same validity for the signer and the sender. so, taking current_block + 1 year might change. two options:

1. add the validity to the grant_installation rpc arguments.
2. set the validity so that it won't change between signing and sending. for example - trim it to a 1000's round a year from n ow. i.e. validity = (block_number + 1 year ) & 0xfffffff000

The validity period should be sent to the contract (how long). The contract computes the validity internally according to the EVM block timestamp and reports back the validity that it came up with. That validity should then be used in the future for all operations. The validity required for the signature will be the duration validity (one year) not the actual timestamp.

We may want to standardize on two options to begin with: does not expire, or one year

[tsachiherman]

Looks good! I'm willing to approve after an integration test is added

see test_grant_installation()

[insipx]

We could do this in the style of the attribute, i.e an enum like

enum Validity {
    OneYear
    Forever
}

[jac18281828]

We could do this in the style of the attribute, i.e an enum like

enum Validity {
    OneYear
    Forever
}

Yeah, my bad, I should have looked it up before I wrote my message but a validity is always required. We may want to choose either OneYear or FiveYear.

[tsachiherman]

I'll merge it and keep working on the extended unit tests & validity.