zolfa
/
tendermint
1
0
Fork 0
Code Issues 0 Pull Requests 0 Projects 0 Releases 221 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
714 Commits
183 Branches
291 MiB
Tree: 58ffc639fd
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '58ffc639fd'
${ noResults }
tendermint/permission/types/permissions.go

175 lines
4.2 KiB
Raw Normal View History

permission/types pkg, Base and Roles
10 years ago
bond perm and tests
10 years ago
permission/types pkg, Base and Roles
10 years ago
bond perm and tests
10 years ago
nametx perm
10 years ago
permission/types pkg, Base and Roles
10 years ago
nametx perm
10 years ago
permission/types pkg, Base and Roles
10 years ago
nametx perm
10 years ago
permission/types pkg, Base and Roles
10 years ago
cleanups, fix AllSet
10 years ago
permission/types pkg, Base and Roles
10 years ago
cleanups, fix AllSet
10 years ago
permission/types pkg, Base and Roles
10 years ago
little fixes
10 years ago
permission/types pkg, Base and Roles
10 years ago
little fixes
10 years ago
permission/types pkg, Base and Roles
10 years ago
fire events on snative and allow from CallTx
10 years ago
permission/types pkg, Base and Roles
10 years ago
left pad role names :(
10 years ago
permission/types pkg, Base and Roles
10 years ago
left pad role names :(
10 years ago
permission/types pkg, Base and Roles
10 years ago
left pad role names :(
10 years ago
permission/types pkg, Base and Roles
10 years ago
fire events on snative and allow from CallTx
10 years ago
permission/types pkg, Base and Roles
10 years ago
 
  1. package types
  2. 

  3. import (
  4. 	"fmt"
  5. 	. "github.com/tendermint/tendermint/common"
  6. )
  7. 

  8. //------------------------------------------------------------------------------------------------

  9. 

  10. var (
  11. 	GlobalPermissionsAddress    = Zero256[:20]
  12. 	GlobalPermissionsAddress256 = Zero256
  13. 	DougAddress                 = append([]byte{0, 0, 0, 0, 0, 0, 0, 0, 0, 0}, []byte("THISISDOUG")...)
  14. 	DougAddress256              = LeftPadWord256(DougAddress)
  15. )
  16. 

  17. // A particular permission

  18. type PermFlag uint64
  19. 

  20. // Base permission references are like unix (the index is already bit shifted)

  21. const (
  22. 	Root           PermFlag = 1 << iota // 1

  23. 	Send                                // 2

  24. 	Call                                // 4

  25. 	CreateContract                      // 8

  26. 	CreateAccount                       // 16

  27. 	Bond                                // 32

  28. 	Name                                // 64

  29. 

  30. 	DefaultBBPB = Send | Call | CreateContract | CreateAccount | Bond | Name
  31. 

  32. 	NumBasePermissions uint     = 7
  33. 	TopBasePermission  PermFlag = 1 << (NumBasePermissions - 1)
  34. 	AllSet             PermFlag = (1 << 63) - 1 + (1 << 63)
  35. )
  36. 

  37. //---------------------------------------------------------------------------------------------

  38. 

  39. // Base chain permissions struct

  40. type BasePermissions struct {
  41. 	// bit array with "has"/"doesn't have" for each permission

  42. 	Perms PermFlag
  43. 

  44. 	// bit array with "set"/"not set" for each permission (not-set should fall back to global)

  45. 	SetBit PermFlag
  46. }
  47. 

  48. func NewBasePermissions() *BasePermissions {
  49. 	return &BasePermissions{0, 0}
  50. }
  51. 

  52. // Get a permission value. ty should be a power of 2.

  53. // ErrValueNotSet is returned if the permission's set bit is off,

  54. // and should be caught by caller so the global permission can be fetched

  55. func (p *BasePermissions) Get(ty PermFlag) (bool, error) {
  56. 	if ty == 0 {
  57. 		return false, ErrInvalidPermission(ty)
  58. 	}
  59. 	if p.SetBit&ty == 0 {
  60. 		return false, ErrValueNotSet(ty)
  61. 	}
  62. 	return p.Perms&ty > 0, nil
  63. }
  64. 

  65. // Set a permission bit. Will set the permission's set bit to true.

  66. func (p *BasePermissions) Set(ty PermFlag, value bool) error {
  67. 	if ty == 0 {
  68. 		return ErrInvalidPermission(ty)
  69. 	}
  70. 	p.SetBit |= ty
  71. 	if value {
  72. 		p.Perms |= ty
  73. 	} else {
  74. 		p.Perms &= ^ty
  75. 	}
  76. 	return nil
  77. }
  78. 

  79. // Set the permission's set bit to false

  80. func (p *BasePermissions) Unset(ty PermFlag) error {
  81. 	if ty == 0 {
  82. 		return ErrInvalidPermission(ty)
  83. 	}
  84. 	p.SetBit &= ^ty
  85. 	return nil
  86. }
  87. 

  88. func (p *BasePermissions) Copy() *BasePermissions {
  89. 	if p == nil {
  90. 		return nil
  91. 	}
  92. 	return &BasePermissions{
  93. 		Perms:  p.Perms,
  94. 		SetBit: p.SetBit,
  95. 	}
  96. }
  97. 

  98. func (p *BasePermissions) String() string {
  99. 	return fmt.Sprintf("Base: %b; Set: %b", p.Perms, p.SetBit)
  100. }
  101. 

  102. //---------------------------------------------------------------------------------------------

  103. 

  104. type AccountPermissions struct {
  105. 	Base  *BasePermissions
  106. 	Roles []string
  107. }
  108. 

  109. func NewAccountPermissions() *AccountPermissions {
  110. 	return &AccountPermissions{
  111. 		Base:  NewBasePermissions(),
  112. 		Roles: []string{},
  113. 	}
  114. }
  115. 

  116. // Returns true if the role is found

  117. func (aP *AccountPermissions) HasRole(role string) bool {
  118. 	role = string(LeftPadBytes([]byte(role), 32))
  119. 	for _, r := range aP.Roles {
  120. 		if r == role {
  121. 			return true
  122. 		}
  123. 	}
  124. 	return false
  125. }
  126. 

  127. // Returns true if the role is added, and false if it already exists

  128. func (aP *AccountPermissions) AddRole(role string) bool {
  129. 	role = string(LeftPadBytes([]byte(role), 32))
  130. 	for _, r := range aP.Roles {
  131. 		if r == role {
  132. 			return false
  133. 		}
  134. 	}
  135. 	aP.Roles = append(aP.Roles, role)
  136. 	return true
  137. }
  138. 

  139. // Returns true if the role is removed, and false if it is not found

  140. func (aP *AccountPermissions) RmRole(role string) bool {
  141. 	role = string(LeftPadBytes([]byte(role), 32))
  142. 	for i, r := range aP.Roles {
  143. 		if r == role {
  144. 			post := []string{}
  145. 			if len(aP.Roles) > i+1 {
  146. 				post = aP.Roles[i+1:]
  147. 			}
  148. 			aP.Roles = append(aP.Roles[:i], post...)
  149. 			return true
  150. 		}
  151. 	}
  152. 	return false
  153. }
  154. 

  155. func (aP *AccountPermissions) Copy() *AccountPermissions {
  156. 	if aP == nil {
  157. 		return nil
  158. 	}
  159. 	r := make([]string, len(aP.Roles))
  160. 	copy(r, aP.Roles)
  161. 	return &AccountPermissions{
  162. 		Base:  aP.Base.Copy(),
  163. 		Roles: r,
  164. 	}
  165. }
  166. 

  167. func NewDefaultAccountPermissions() *AccountPermissions {
  168. 	return &AccountPermissions{
  169. 		Base: &BasePermissions{
  170. 			Perms:  DefaultBBPB,
  171. 			SetBit: AllSet,
  172. 		},
  173. 		Roles: []string{},
  174. 	}
  175. }