@peerbit/trusted-network 1.0.16 → 2.0.0

package/README.md

@@ -34,7 +34,7 @@ class StringStore extends Program
 
     async setup() 
     {
-        await store.setup({ encoding: ... , canAppend: ..., canRead: ...})
+        await store.setup({ encoding: ... , canPerform: ..., index: {... canRead ...}})
         await trustedNetwork.setup()
     }
 }
@@ -52,7 +52,7 @@ await program.network.add(peer2.identity.publicKey)
 
 // peer2 also has to "join" the network, in practice this means that peer2 adds a record telling that its Peer ID trusts its libp2p Id
 const programPeer2 = await peer2.open(programPeer1.address, {... options ...})
-await peer2.join(programPeer2) // This might fail with "AccessError" if you do this too quickly after "open", because it has not yet recieved the full trust graph from peer1 yet
+await peer2.join(programPeer2) // This might fail with "AccessError" if you do this too quickly after "open", because it has not yet received the full trust graph from peer1 yet
 ```
 
 See [this test(s)](./src/__tests__/network.test.ts) for working examples

package/lib/esm/controller.d.ts

@@ -1,12 +1,12 @@
-import { Documents, Operation, Role } from "@peerbit/document";
-import { AppendOptions, Entry } from "@peerbit/log";
+import { Documents, Operation, PutOperation, Role, CanRead, TransactionContext } from "@peerbit/document";
+import { AppendOptions } from "@peerbit/log";
 import { PublicSignKey } from "@peerbit/crypto";
+import { DeleteOperation } from "@peerbit/document";
 import { IdentityRelation } from "./identity-graph.js";
 import { Program } from "@peerbit/program";
-import { CanRead } from "@peerbit/rpc";
 import { PeerId } from "@libp2p/interface-peer-id";
 type IdentityGraphArgs = {
-    canRead?: CanRead;
+    canRead?: CanRead<IdentityRelation>;
     role?: Role;
 };
 export declare class IdentityGraph extends Program<IdentityGraphArgs> {
@@ -15,7 +15,7 @@ export declare class IdentityGraph extends Program<IdentityGraphArgs> {
         id?: Uint8Array;
         relationGraph?: Documents<IdentityRelation>;
     });
-    canAppend(entry: Entry<Operation<IdentityRelation>>): Promise<boolean>;
+    canPerform(operation: PutOperation<IdentityRelation> | DeleteOperation, context: TransactionContext<IdentityRelation>): Promise<boolean>;
     open(options?: IdentityGraphArgs): Promise<void>;
     addRelation(to: PublicSignKey | PeerId, options?: AppendOptions<Operation<IdentityRelation>>): Promise<void>;
 }
@@ -33,8 +33,8 @@ export declare class TrustedNetwork extends Program<TrustedNetworkArgs> {
         rootTrust: PublicSignKey | PeerId;
     });
     open(options?: TrustedNetworkArgs): Promise<void>;
-    canAppend(entry: Entry<Operation<IdentityRelation>>): Promise<boolean>;
-    canRead(_key?: PublicSignKey): Promise<boolean>;
+    canPerform(operation: PutOperation<IdentityRelation> | DeleteOperation, context: TransactionContext<IdentityRelation>): Promise<boolean>;
+    canRead(relation: any, publicKey?: PublicSignKey): Promise<boolean>;
     add(trustee: PublicSignKey | PeerId): Promise<IdentityRelation | undefined>;
     hasRelation(trustee: PublicSignKey | PeerId, truster?: PublicSignKey | PeerId): Promise<boolean>;
     getRelation(trustee: PublicSignKey | PeerId, truster?: PublicSignKey | PeerId): Promise<IdentityRelation | undefined>;

package/lib/esm/controller.js

@@ -7,11 +7,11 @@ var __decorate = (this && this.__decorate) || function (decorators, target, key,
 var __metadata = (this && this.__metadata) || function (k, v) {
     if (typeof Reflect === "object" && typeof Reflect.metadata === "function") return Reflect.metadata(k, v);
 };
-import { deserialize, field, serialize, variant } from "@dao-xyz/borsh";
+import { field, serialize, variant } from "@dao-xyz/borsh";
 import { SearchRequest, Documents, PutOperation, Replicator, } from "@peerbit/document";
 import { PublicSignKey, getPublicKeyFromPeerId } from "@peerbit/crypto";
 import { DeleteOperation } from "@peerbit/document";
-import { IdentityRelation, createIdentityGraphStore, getPathGenerator, hasPath, getFromByTo, getToByFrom, getRelation, AbstractRelation, } from "./identity-graph.js";
+import { IdentityRelation, createIdentityGraphStore, getPathGenerator, hasPath, getFromByTo, getToByFrom, getRelation, } from "./identity-graph.js";
 import { Program } from "@peerbit/program";
 import { sha256Base64Sync } from "@peerbit/crypto";
 const coercePublicKey = (publicKey) => {
@@ -19,19 +19,17 @@ const coercePublicKey = (publicKey) => {
         ? publicKey
         : getPublicKeyFromPeerId(publicKey);
 };
-const canAppendByRelation = async (entry, isTrusted) => {
+const canPerformByRelation = async (operation, context, isTrusted) => {
     // verify the payload
-    const operation = await entry.getPayloadValue();
     if (operation instanceof PutOperation ||
         operation instanceof DeleteOperation) {
         /*  const relation: Relation = operation.value || deserialize(operation.data, Relation); */
-        const keys = await entry.getPublicKeys();
+        const keys = await context.entry.getPublicKeys();
         const checkKey = async (key) => {
             if (operation instanceof PutOperation) {
-                // TODO, this clause is only applicable when we modify the identityGraph, but it does not make sense that the canAppend method does not know what the payload will
-                // be, upon deserialization. There should be known in the `canAppend` method whether we are appending to the identityGraph.
-                const relation = operation._value || deserialize(operation.data, AbstractRelation);
-                operation._value = relation;
+                // TODO, this clause is only applicable when we modify the identityGraph, but it does not make sense that the canPerform method does not know what the payload will
+                // be, upon deserialization. There should be known in the `canPerform` method whether we are appending to the identityGraph.
+                const relation = operation.value;
                 if (relation instanceof IdentityRelation) {
                     if (!relation.from.equals(key)) {
                         return false;
@@ -68,15 +66,16 @@ export let IdentityGraph = class IdentityGraph extends Program {
                 props.relationGraph || createIdentityGraphStore(props?.id);
         }
     }
-    async canAppend(entry) {
-        return canAppendByRelation(entry);
+    async canPerform(operation, context) {
+        return canPerformByRelation(operation, context);
     }
     async open(options) {
         await this.relationGraph.open({
             type: IdentityRelation,
-            canAppend: this.canAppend.bind(this),
-            canRead: options?.canRead,
+            canPerform: this.canPerform.bind(this),
+            role: options?.role,
             index: {
+                canRead: options?.canRead,
                 fields: (obj, _entry) => {
                     return {
                         from: obj.from.hashcode(),
@@ -84,8 +83,7 @@ export let IdentityGraph = class IdentityGraph extends Program {
                     };
                 },
             },
-            role: options?.role,
-        }); // self referencing access controller
+        });
     }
     async addRelation(to, options) {
         /*  trustee = PublicKey.from(trustee); */
@@ -114,10 +112,10 @@ export let TrustedNetwork = class TrustedNetwork extends Program {
     async open(options) {
         await this.trustGraph.open({
             type: IdentityRelation,
-            canAppend: this.canAppend.bind(this),
-            canRead: this.canRead.bind(this),
+            canPerform: this.canPerform.bind(this),
             role: options?.role,
             index: {
+                canRead: this.canRead.bind(this),
                 fields: (obj, _entry) => {
                     return {
                         from: obj.from.hashcode(),
@@ -127,10 +125,10 @@ export let TrustedNetwork = class TrustedNetwork extends Program {
             },
         }); // self referencing access controller
     }
-    async canAppend(entry) {
-        return canAppendByRelation(entry, (key) => this.isTrusted(key));
+    async canPerform(operation, context) {
+        return canPerformByRelation(operation, context, (key) => this.isTrusted(key));
     }
-    async canRead(_key) {
+    async canRead(relation, publicKey) {
         return true; // TODO should we have read access control?
     }
     async add(trustee) {

package/lib/esm/controller.js.map

@@ -1 +1 @@
-{"version":3,"file":"controller.js","sourceRoot":"","sources":["../../src/controller.ts"],"names":[],"mappings":";;;;;;;;;AAAA,OAAO,EAAE,WAAW,EAAE,KAAK,EAAE,SAAS,EAAE,OAAO,EAAO,MAAM,gBAAgB,CAAC;AAC7E,OAAO,EACN,aAAa,EACb,SAAS,EAET,YAAY,EACZ,UAAU,GAEV,MAAM,mBAAmB,CAAC;AAE3B,OAAO,EAAE,aAAa,EAAE,sBAAsB,EAAE,MAAM,iBAAiB,CAAC;AACxE,OAAO,EAAE,eAAe,EAAE,MAAM,mBAAmB,CAAC;AACpD,OAAO,EACN,gBAAgB,EAChB,wBAAwB,EACxB,gBAAgB,EAChB,OAAO,EACP,WAAW,EACX,WAAW,EACX,WAAW,EACX,gBAAgB,GAChB,MAAM,qBAAqB,CAAC;AAC7B,OAAO,EAAE,OAAO,EAAE,MAAM,kBAAkB,CAAC;AAE3C,OAAO,EAAE,gBAAgB,EAAE,MAAM,iBAAiB,CAAC;AAGnD,MAAM,eAAe,GAAG,CAAC,SAAiC,EAAE,EAAE;IAC7D,OAAO,SAAS,YAAY,aAAa;QACxC,CAAC,CAAC,SAAS;QACX,CAAC,CAAC,sBAAsB,CAAC,SAAS,CAAC,CAAC;AACtC,CAAC,CAAC;AACF,MAAM,mBAAmB,GAAG,KAAK,EAChC,KAAyC,EACzC,SAAoD,EACjC,EAAE;IACrB,qBAAqB;IACrB,MAAM,SAAS,GAAG,MAAM,KAAK,CAAC,eAAe,EAAE,CAAC;IAChD,IACC,SAAS,YAAY,YAAY;QACjC,SAAS,YAAY,eAAe,EACnC;QACD,2FAA2F;QAE3F,MAAM,IAAI,GAAG,MAAM,KAAK,CAAC,aAAa,EAAE,CAAC;QACzC,MAAM,QAAQ,GAAG,KAAK,EAAE,GAAkB,EAAoB,EAAE;YAC/D,IAAI,SAAS,YAAY,YAAY,EAAE;gBACtC,kKAAkK;gBAClK,2HAA2H;gBAE3H,MAAM,QAAQ,GACb,SAAS,CAAC,MAAM,IAAI,WAAW,CAAC,SAAS,CAAC,IAAI,EAAE,gBAAgB,CAAC,CAAC;gBACnE,SAAS,CAAC,MAAM,GAAG,QAAQ,CAAC;gBAE5B,IAAI,QAAQ,YAAY,gBAAgB,EAAE;oBACzC,IAAI,CAAC,QAAQ,CAAC,IAAI,CAAC,MAAM,CAAC,GAAG,CAAC,EAAE;wBAC/B,OAAO,KAAK,CAAC;qBACb;iBACD;gBAED,sCAAsC;aACtC;YACD,IAAI,SAAS,EAAE;gBACd,MAAM,OAAO,GAAG,MAAM,SAAS,CAAC,GAAG,CAAC,CAAC;gBACrC,OAAO,OAAO,CAAC;aACf;iBAAM;gBACN,OAAO,IAAI,CAAC;aACZ;QACF,CAAC,CAAC;QACF,KAAK,MAAM,GAAG,IAAI,IAAI,EAAE;YACvB,MAAM,MAAM,GAAG,MAAM,QAAQ,CAAC,GAAG,CAAC,CAAC;YACnC,IAAI,MAAM,EAAE;gBACX,OAAO,IAAI,CAAC;aACZ;SACD;QACD,OAAO,KAAK,CAAC;KACb;SAAM;QACN,OAAO,KAAK,CAAC;KACb;AACF,CAAC,CAAC;AAIK,WAAM,aAAa,GAAnB,MAAM,aAAc,SAAQ,OAA0B;IAE5D,aAAa,CAA8B;IAE3C,YAAY,KAGX;QACA,KAAK,EAAE,CAAC;QACR,IAAI,KAAK,EAAE;YACV,IAAI,CAAC,aAAa;gBACjB,KAAK,CAAC,aAAa,IAAI,wBAAwB,CAAC,KAAK,EAAE,EAAE,CAAC,CAAC;SAC5D;IACF,CAAC;IAED,KAAK,CAAC,SAAS,CAAC,KAAyC;QACxD,OAAO,mBAAmB,CAAC,KAAK,CAAC,CAAC;IACnC,CAAC;IAED,KAAK,CAAC,IAAI,CAAC,OAA2B;QACrC,MAAM,IAAI,CAAC,aAAa,CAAC,IAAI,CAAC;YAC7B,IAAI,EAAE,gBAAgB;YACtB,SAAS,EAAE,IAAI,CAAC,SAAS,CAAC,IAAI,CAAC,IAAI,CAAC;YACpC,OAAO,EAAE,OAAO,EAAE,OAAO;YACzB,KAAK,EAAE;gBACN,MAAM,EAAE,CAAC,GAAG,EAAE,MAAM,EAAE,EAAE;oBACvB,OAAO;wBACN,IAAI,EAAE,GAAG,CAAC,IAAI,CAAC,QAAQ,EAAE;wBACzB,EAAE,EAAE,GAAG,CAAC,EAAE,CAAC,QAAQ,EAAE;qBACrB,CAAC;gBACH,CAAC;aACD;YACD,IAAI,EAAE,OAAO,EAAE,IAAI;SACnB,CAAC,CAAC,CAAC,qCAAqC;IAC1C,CAAC;IAED,KAAK,CAAC,WAAW,CAChB,EAA0B,EAC1B,OAAoD;QAEpD,yCAAyC;QACzC,MAAM,IAAI,CAAC,aAAa,CAAC,GAAG,CAC3B,IAAI,gBAAgB,CAAC;YACpB,EAAE,EAAE,eAAe,CAAC,EAAE,CAAC;YACvB,IAAI,EAAE,OAAO,EAAE,QAAQ,EAAE,SAAS,IAAI,IAAI,CAAC,IAAI,CAAC,QAAQ,CAAC,SAAS;SAClE,CAAC,EACF,OAAO,CACP,CAAC;IACH,CAAC;CACD,CAAA;AA/CA;IADC,KAAK,CAAC,EAAE,IAAI,EAAE,SAAS,EAAE,CAAC;8BACZ,SAAS;oDAAmB;AAF/B,aAAa;IADzB,OAAO,CAAC,WAAW,CAAC;;GACR,aAAa,CAiDzB;AAQM,WAAM,cAAc,GAApB,MAAM,cAAe,SAAQ,OAA2B;IAE9D,SAAS,CAAgB;IAGzB,UAAU,CAA8B;IAExC,YAAY,KAA6D;QACxE,KAAK,EAAE,CAAC;QACR,IAAI,CAAC,UAAU,GAAG,wBAAwB,CAAC,KAAK,CAAC,EAAE,CAAC,CAAC;QACrD,IAAI,CAAC,SAAS,GAAG,eAAe,CAAC,KAAK,CAAC,SAAS,CAAC,CAAC;IACnD,CAAC;IAED,KAAK,CAAC,IAAI,CAAC,OAA4B;QACtC,MAAM,IAAI,CAAC,UAAU,CAAC,IAAI,CAAC;YAC1B,IAAI,EAAE,gBAAgB;YACtB,SAAS,EAAE,IAAI,CAAC,SAAS,CAAC,IAAI,CAAC,IAAI,CAAC;YACpC,OAAO,EAAE,IAAI,CAAC,OAAO,CAAC,IAAI,CAAC,IAAI,CAAC;YAChC,IAAI,EAAE,OAAO,EAAE,IAAI;YACnB,KAAK,EAAE;gBACN,MAAM,EAAE,CAAC,GAAG,EAAE,MAAM,EAAE,EAAE;oBACvB,OAAO;wBACN,IAAI,EAAE,GAAG,CAAC,IAAI,CAAC,QAAQ,EAAE;wBACzB,EAAE,EAAE,GAAG,CAAC,EAAE,CAAC,QAAQ,EAAE;qBACrB,CAAC;gBACH,CAAC;aACD;SACD,CAAC,CAAC,CAAC,qCAAqC;IAC1C,CAAC;IAED,KAAK,CAAC,SAAS,CAAC,KAAyC;QACxD,OAAO,mBAAmB,CAAC,KAAK,EAAE,CAAC,GAAG,EAAE,EAAE,CAAC,IAAI,CAAC,SAAS,CAAC,GAAG,CAAC,CAAC,CAAC;IACjE,CAAC;IAED,KAAK,CAAC,OAAO,CAAC,IAAoB;QACjC,OAAO,IAAI,CAAC,CAAC,2CAA2C;IACzD,CAAC;IAED,KAAK,CAAC,GAAG,CACR,OAA+B;QAE/B,MAAM,GAAG,GACR,OAAO,YAAY,aAAa;YAC/B,CAAC,CAAC,OAAO;YACT,CAAC,CAAC,sBAAsB,CAAC,OAAO,CAAC,CAAC;QAEpC,MAAM,gBAAgB,GAAG,MAAM,IAAI,CAAC,WAAW,CAC9C,GAAG,EACH,IAAI,CAAC,IAAI,CAAC,QAAQ,CAAC,SAAS,CAC5B,CAAC;QACF,IAAI,CAAC,gBAAgB,EAAE;YACtB,MAAM,QAAQ,GAAG,IAAI,gBAAgB,CAAC;gBACrC,EAAE,EAAE,GAAG;gBACP,IAAI,EAAE,IAAI,CAAC,IAAI,CAAC,QAAQ,CAAC,SAAS;aAClC,CAAC,CAAC;YACH,MAAM,IAAI,CAAC,UAAU,CAAC,GAAG,CAAC,QAAQ,CAAC,CAAC;YACpC,OAAO,QAAQ,CAAC;SAChB;QACD,OAAO,gBAAgB,CAAC;IACzB,CAAC;IAED,KAAK,CAAC,WAAW,CAChB,OAA+B,EAC/B,UAAkC,IAAI,CAAC,SAAS;QAEhD,OAAO,CAAC,CAAC,CAAC,MAAM,IAAI,CAAC,WAAW,CAAC,OAAO,EAAE,OAAO,CAAC,CAAC,CAAC;IACrD,CAAC;IACD,WAAW,CACV,OAA+B,EAC/B,UAAkC,IAAI,CAAC,SAAS;QAEhD,OAAO,WAAW,CACjB,eAAe,CAAC,OAAO,CAAC,EACxB,eAAe,CAAC,OAAO,CAAC,EACxB,IAAI,CAAC,UAAU,CACf,CAAC;IACH,CAAC;IAED;;;;;;;;;OASG;IACH,KAAK,CAAC,SAAS,CACd,OAAsB,EACtB,UAAyB,IAAI,CAAC,SAAS;QAEvC,IAAI,OAAO,CAAC,MAAM,CAAC,IAAI,CAAC,SAAS,CAAC,EAAE;YACnC,OAAO,IAAI,CAAC;SACZ;QACD,IAAI,IAAI,CAAC,UAAU,CAAC,GAAG,CAAC,IAAI,YAAY,UAAU,EAAE;YACnD,OAAO,IAAI,CAAC,eAAe,CAAC,OAAO,EAAE,OAAO,CAAC,CAAC;SAC9C;aAAM;YACN,IAAI,CAAC,UAAU,CAAC,KAAK,CAAC,MAAM,CAAC,IAAI,aAAa,CAAC,EAAE,KAAK,EAAE,EAAE,EAAE,CAAC,EAAE;gBAC9D,MAAM,EAAE,EAAE,IAAI,EAAE,IAAI,EAAE;aACtB,CAAC,CAAC;YACH,OAAO,IAAI,CAAC,eAAe,CAAC,OAAO,EAAE,OAAO,CAAC,CAAC;SAC9C;IACF,CAAC;IAED,KAAK,CAAC,eAAe,CACpB,OAAsB,EACtB,UAAyB,IAAI,CAAC,SAAS;QAEvC,MAAM,SAAS,GAAG,MAAM,OAAO,CAC9B,OAAO,EACP,OAAO,EACP,IAAI,CAAC,UAAU,EACf,WAAW,CACX,CAAC;QACF,OAAO,CAAC,CAAC,SAAS,CAAC;IACpB,CAAC;IAED,KAAK,CAAC,UAAU;QACf,MAAM,OAAO,GAAG,IAAI,CAAC,SAAS,CAAC;QAC/B,MAAM,YAAY,GAAoB,CAAC,OAAO,CAAC,CAAC;QAChD,MAAM,SAAS,GAAG,gBAAgB,CAAC,OAAO,EAAE,IAAI,CAAC,UAAU,EAAE,WAAW,CAAC,CAAC;QAC1E,IAAI,KAAK,EAAE,MAAM,IAAI,IAAI,SAAS,EAAE;YACnC,YAAY,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;SAC3B;QACD,OAAO,YAAY,CAAC;IACrB,CAAC;IAED,QAAQ;QACP,OAAO,gBAAgB,CAAC,SAAS,CAAC,IAAI,CAAC,CAAC,CAAC;IAC1C,CAAC;CACD,CAAA;AAjIA;IADC,KAAK,CAAC,EAAE,IAAI,EAAE,aAAa,EAAE,CAAC;8BACpB,aAAa;iDAAC;AAGzB;IADC,KAAK,CAAC,EAAE,IAAI,EAAE,SAAS,EAAE,CAAC;8BACf,SAAS;kDAAmB;AAL5B,cAAc;IAD1B,OAAO,CAAC,iBAAiB,CAAC;;GACd,cAAc,CAmI1B"}
+{"version":3,"file":"controller.js","sourceRoot":"","sources":["../../src/controller.ts"],"names":[],"mappings":";;;;;;;;;AAAA,OAAO,EAAe,KAAK,EAAE,SAAS,EAAE,OAAO,EAAO,MAAM,gBAAgB,CAAC;AAC7E,OAAO,EACN,aAAa,EACb,SAAS,EAET,YAAY,EACZ,UAAU,GAIV,MAAM,mBAAmB,CAAC;AAE3B,OAAO,EAAE,aAAa,EAAE,sBAAsB,EAAE,MAAM,iBAAiB,CAAC;AACxE,OAAO,EAAE,eAAe,EAAE,MAAM,mBAAmB,CAAC;AACpD,OAAO,EACN,gBAAgB,EAChB,wBAAwB,EACxB,gBAAgB,EAChB,OAAO,EACP,WAAW,EACX,WAAW,EACX,WAAW,GAEX,MAAM,qBAAqB,CAAC;AAC7B,OAAO,EAAE,OAAO,EAAE,MAAM,kBAAkB,CAAC;AAC3C,OAAO,EAAE,gBAAgB,EAAE,MAAM,iBAAiB,CAAC;AAGnD,MAAM,eAAe,GAAG,CAAC,SAAiC,EAAE,EAAE;IAC7D,OAAO,SAAS,YAAY,aAAa;QACxC,CAAC,CAAC,SAAS;QACX,CAAC,CAAC,sBAAsB,CAAC,SAAS,CAAC,CAAC;AACtC,CAAC,CAAC;AACF,MAAM,oBAAoB,GAAG,KAAK,EACjC,SAA2D,EAC3D,OAA6C,EAC7C,SAAoD,EACjC,EAAE;IACrB,qBAAqB;IACrB,IACC,SAAS,YAAY,YAAY;QACjC,SAAS,YAAY,eAAe,EACnC;QACD,2FAA2F;QAE3F,MAAM,IAAI,GAAG,MAAM,OAAO,CAAC,KAAK,CAAC,aAAa,EAAE,CAAC;QACjD,MAAM,QAAQ,GAAG,KAAK,EAAE,GAAkB,EAAoB,EAAE;YAC/D,IAAI,SAAS,YAAY,YAAY,EAAE;gBACtC,mKAAmK;gBACnK,4HAA4H;gBAE5H,MAAM,QAAQ,GAAG,SAAS,CAAC,KAAK,CAAC;gBACjC,IAAI,QAAQ,YAAY,gBAAgB,EAAE;oBACzC,IAAI,CAAC,QAAQ,CAAC,IAAI,CAAC,MAAM,CAAC,GAAG,CAAC,EAAE;wBAC/B,OAAO,KAAK,CAAC;qBACb;iBACD;gBAED,sCAAsC;aACtC;YACD,IAAI,SAAS,EAAE;gBACd,MAAM,OAAO,GAAG,MAAM,SAAS,CAAC,GAAG,CAAC,CAAC;gBACrC,OAAO,OAAO,CAAC;aACf;iBAAM;gBACN,OAAO,IAAI,CAAC;aACZ;QACF,CAAC,CAAC;QACF,KAAK,MAAM,GAAG,IAAI,IAAI,EAAE;YACvB,MAAM,MAAM,GAAG,MAAM,QAAQ,CAAC,GAAG,CAAC,CAAC;YACnC,IAAI,MAAM,EAAE;gBACX,OAAO,IAAI,CAAC;aACZ;SACD;QACD,OAAO,KAAK,CAAC;KACb;SAAM;QACN,OAAO,KAAK,CAAC;KACb;AACF,CAAC,CAAC;AAKK,WAAM,aAAa,GAAnB,MAAM,aAAc,SAAQ,OAA0B;IAE5D,aAAa,CAA8B;IAE3C,YAAY,KAGX;QACA,KAAK,EAAE,CAAC;QACR,IAAI,KAAK,EAAE;YACV,IAAI,CAAC,aAAa;gBACjB,KAAK,CAAC,aAAa,IAAI,wBAAwB,CAAC,KAAK,EAAE,EAAE,CAAC,CAAC;SAC5D;IACF,CAAC;IAED,KAAK,CAAC,UAAU,CACf,SAA2D,EAC3D,OAA6C;QAE7C,OAAO,oBAAoB,CAAC,SAAS,EAAE,OAAO,CAAC,CAAC;IACjD,CAAC;IAED,KAAK,CAAC,IAAI,CAAC,OAA2B;QACrC,MAAM,IAAI,CAAC,aAAa,CAAC,IAAI,CAAC;YAC7B,IAAI,EAAE,gBAAgB;YACtB,UAAU,EAAE,IAAI,CAAC,UAAU,CAAC,IAAI,CAAC,IAAI,CAAC;YACtC,IAAI,EAAE,OAAO,EAAE,IAAI;YACnB,KAAK,EAAE;gBACN,OAAO,EAAE,OAAO,EAAE,OAAO;gBACzB,MAAM,EAAE,CAAC,GAAG,EAAE,MAAM,EAAE,EAAE;oBACvB,OAAO;wBACN,IAAI,EAAE,GAAG,CAAC,IAAI,CAAC,QAAQ,EAAE;wBACzB,EAAE,EAAE,GAAG,CAAC,EAAE,CAAC,QAAQ,EAAE;qBACrB,CAAC;gBACH,CAAC;aACD;SACD,CAAC,CAAC;IACJ,CAAC;IAED,KAAK,CAAC,WAAW,CAChB,EAA0B,EAC1B,OAAoD;QAEpD,yCAAyC;QACzC,MAAM,IAAI,CAAC,aAAa,CAAC,GAAG,CAC3B,IAAI,gBAAgB,CAAC;YACpB,EAAE,EAAE,eAAe,CAAC,EAAE,CAAC;YACvB,IAAI,EAAE,OAAO,EAAE,QAAQ,EAAE,SAAS,IAAI,IAAI,CAAC,IAAI,CAAC,QAAQ,CAAC,SAAS;SAClE,CAAC,EACF,OAAO,CACP,CAAC;IACH,CAAC;CACD,CAAA;AAlDA;IADC,KAAK,CAAC,EAAE,IAAI,EAAE,SAAS,EAAE,CAAC;8BACZ,SAAS;oDAAmB;AAF/B,aAAa;IADzB,OAAO,CAAC,WAAW,CAAC;;GACR,aAAa,CAoDzB;AASM,WAAM,cAAc,GAApB,MAAM,cAAe,SAAQ,OAA2B;IAE9D,SAAS,CAAgB;IAGzB,UAAU,CAA8B;IAExC,YAAY,KAA6D;QACxE,KAAK,EAAE,CAAC;QACR,IAAI,CAAC,UAAU,GAAG,wBAAwB,CAAC,KAAK,CAAC,EAAE,CAAC,CAAC;QACrD,IAAI,CAAC,SAAS,GAAG,eAAe,CAAC,KAAK,CAAC,SAAS,CAAC,CAAC;IACnD,CAAC;IAED,KAAK,CAAC,IAAI,CAAC,OAA4B;QACtC,MAAM,IAAI,CAAC,UAAU,CAAC,IAAI,CAAC;YAC1B,IAAI,EAAE,gBAAgB;YACtB,UAAU,EAAE,IAAI,CAAC,UAAU,CAAC,IAAI,CAAC,IAAI,CAAC;YACtC,IAAI,EAAE,OAAO,EAAE,IAAI;YACnB,KAAK,EAAE;gBACN,OAAO,EAAE,IAAI,CAAC,OAAO,CAAC,IAAI,CAAC,IAAI,CAAC;gBAChC,MAAM,EAAE,CAAC,GAAG,EAAE,MAAM,EAAE,EAAE;oBACvB,OAAO;wBACN,IAAI,EAAE,GAAG,CAAC,IAAI,CAAC,QAAQ,EAAE;wBACzB,EAAE,EAAE,GAAG,CAAC,EAAE,CAAC,QAAQ,EAAE;qBACrB,CAAC;gBACH,CAAC;aACD;SACD,CAAC,CAAC,CAAC,qCAAqC;IAC1C,CAAC;IAED,KAAK,CAAC,UAAU,CACf,SAA2D,EAC3D,OAA6C;QAE7C,OAAO,oBAAoB,CAAC,SAAS,EAAE,OAAO,EAAE,CAAC,GAAG,EAAE,EAAE,CACvD,IAAI,CAAC,SAAS,CAAC,GAAG,CAAC,CACnB,CAAC;IACH,CAAC;IAED,KAAK,CAAC,OAAO,CAAC,QAAa,EAAE,SAAyB;QACrD,OAAO,IAAI,CAAC,CAAC,2CAA2C;IACzD,CAAC;IAED,KAAK,CAAC,GAAG,CACR,OAA+B;QAE/B,MAAM,GAAG,GACR,OAAO,YAAY,aAAa;YAC/B,CAAC,CAAC,OAAO;YACT,CAAC,CAAC,sBAAsB,CAAC,OAAO,CAAC,CAAC;QAEpC,MAAM,gBAAgB,GAAG,MAAM,IAAI,CAAC,WAAW,CAC9C,GAAG,EACH,IAAI,CAAC,IAAI,CAAC,QAAQ,CAAC,SAAS,CAC5B,CAAC;QACF,IAAI,CAAC,gBAAgB,EAAE;YACtB,MAAM,QAAQ,GAAG,IAAI,gBAAgB,CAAC;gBACrC,EAAE,EAAE,GAAG;gBACP,IAAI,EAAE,IAAI,CAAC,IAAI,CAAC,QAAQ,CAAC,SAAS;aAClC,CAAC,CAAC;YACH,MAAM,IAAI,CAAC,UAAU,CAAC,GAAG,CAAC,QAAQ,CAAC,CAAC;YACpC,OAAO,QAAQ,CAAC;SAChB;QACD,OAAO,gBAAgB,CAAC;IACzB,CAAC;IAED,KAAK,CAAC,WAAW,CAChB,OAA+B,EAC/B,UAAkC,IAAI,CAAC,SAAS;QAEhD,OAAO,CAAC,CAAC,CAAC,MAAM,IAAI,CAAC,WAAW,CAAC,OAAO,EAAE,OAAO,CAAC,CAAC,CAAC;IACrD,CAAC;IACD,WAAW,CACV,OAA+B,EAC/B,UAAkC,IAAI,CAAC,SAAS;QAEhD,OAAO,WAAW,CACjB,eAAe,CAAC,OAAO,CAAC,EACxB,eAAe,CAAC,OAAO,CAAC,EACxB,IAAI,CAAC,UAAU,CACf,CAAC;IACH,CAAC;IAED;;;;;;;;;OASG;IACH,KAAK,CAAC,SAAS,CACd,OAAsB,EACtB,UAAyB,IAAI,CAAC,SAAS;QAEvC,IAAI,OAAO,CAAC,MAAM,CAAC,IAAI,CAAC,SAAS,CAAC,EAAE;YACnC,OAAO,IAAI,CAAC;SACZ;QACD,IAAI,IAAI,CAAC,UAAU,CAAC,GAAG,CAAC,IAAI,YAAY,UAAU,EAAE;YACnD,OAAO,IAAI,CAAC,eAAe,CAAC,OAAO,EAAE,OAAO,CAAC,CAAC;SAC9C;aAAM;YACN,IAAI,CAAC,UAAU,CAAC,KAAK,CAAC,MAAM,CAAC,IAAI,aAAa,CAAC,EAAE,KAAK,EAAE,EAAE,EAAE,CAAC,EAAE;gBAC9D,MAAM,EAAE,EAAE,IAAI,EAAE,IAAI,EAAE;aACtB,CAAC,CAAC;YACH,OAAO,IAAI,CAAC,eAAe,CAAC,OAAO,EAAE,OAAO,CAAC,CAAC;SAC9C;IACF,CAAC;IAED,KAAK,CAAC,eAAe,CACpB,OAAsB,EACtB,UAAyB,IAAI,CAAC,SAAS;QAEvC,MAAM,SAAS,GAAG,MAAM,OAAO,CAC9B,OAAO,EACP,OAAO,EACP,IAAI,CAAC,UAAU,EACf,WAAW,CACX,CAAC;QACF,OAAO,CAAC,CAAC,SAAS,CAAC;IACpB,CAAC;IAED,KAAK,CAAC,UAAU;QACf,MAAM,OAAO,GAAG,IAAI,CAAC,SAAS,CAAC;QAC/B,MAAM,YAAY,GAAoB,CAAC,OAAO,CAAC,CAAC;QAChD,MAAM,SAAS,GAAG,gBAAgB,CAAC,OAAO,EAAE,IAAI,CAAC,UAAU,EAAE,WAAW,CAAC,CAAC;QAC1E,IAAI,KAAK,EAAE,MAAM,IAAI,IAAI,SAAS,EAAE;YACnC,YAAY,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;SAC3B;QACD,OAAO,YAAY,CAAC;IACrB,CAAC;IAED,QAAQ;QACP,OAAO,gBAAgB,CAAC,SAAS,CAAC,IAAI,CAAC,CAAC,CAAC;IAC1C,CAAC;CACD,CAAA;AAtIA;IADC,KAAK,CAAC,EAAE,IAAI,EAAE,aAAa,EAAE,CAAC;8BACpB,aAAa;iDAAC;AAGzB;IADC,KAAK,CAAC,EAAE,IAAI,EAAE,SAAS,EAAE,CAAC;8BACf,SAAS;kDAAmB;AAL5B,cAAc;IAD1B,OAAO,CAAC,iBAAiB,CAAC;;GACd,cAAc,CAwI1B"}

package/package.json

@@ -1,6 +1,6 @@
 {
 	"name": "@peerbit/trusted-network",
-	"version": "1.0.16",
+	"version": "2.0.0",
 	"description": "Access controller that operates on a DB",
 	"type": "module",
 	"sideEffects": false,
@@ -31,13 +31,13 @@
 	"license": "MIT",
 	"dependencies": {
 		"@dao-xyz/borsh": "^5.1.5",
-		"@peerbit/crypto": "1.0.4",
-		"@peerbit/document": "2.0.0"
+		"@peerbit/crypto": "1.0.5",
+		"@peerbit/document": "3.0.0"
 	},
 	"devDependencies": {
 		"@ethersproject/wallet": "^5.7.0",
-		"@peerbit/test-utils": "^1.0.14",
+		"@peerbit/test-utils": "^1.0.16",
 		"@peerbit/time": "1.0.2"
 	},
-	"gitHead": "32f61ad9f3d5906e13d46f2a80f61c1826a3e817"
+	"gitHead": "464e807d679e24b897b7811ac99d6f85fbd756f9"
 }

package/src/controller.ts

@@ -6,6 +6,8 @@ import {
 	PutOperation,
 	Replicator,
 	Role,
+	CanRead,
+	TransactionContext,
 } from "@peerbit/document";
 import { AppendOptions, Entry } from "@peerbit/log";
 import { PublicSignKey, getPublicKeyFromPeerId } from "@peerbit/crypto";
@@ -21,7 +23,6 @@ import {
 	AbstractRelation,
 } from "./identity-graph.js";
 import { Program } from "@peerbit/program";
-import { CanRead } from "@peerbit/rpc";
 import { sha256Base64Sync } from "@peerbit/crypto";
 import { PeerId } from "@libp2p/interface-peer-id";
 
@@ -30,28 +31,25 @@ const coercePublicKey = (publicKey: PublicSignKey | PeerId) => {
 		? publicKey
 		: getPublicKeyFromPeerId(publicKey);
 };
-const canAppendByRelation = async (
-	entry: Entry<Operation<IdentityRelation>>,
+const canPerformByRelation = async (
+	operation: PutOperation<IdentityRelation> | DeleteOperation,
+	context: TransactionContext<IdentityRelation>,
 	isTrusted?: (key: PublicSignKey) => Promise<boolean>
 ): Promise<boolean> => {
 	// verify the payload
-	const operation = await entry.getPayloadValue();
 	if (
 		operation instanceof PutOperation ||
 		operation instanceof DeleteOperation
 	) {
 		/*  const relation: Relation = operation.value || deserialize(operation.data, Relation); */
 
-		const keys = await entry.getPublicKeys();
+		const keys = await context.entry.getPublicKeys();
 		const checkKey = async (key: PublicSignKey): Promise<boolean> => {
 			if (operation instanceof PutOperation) {
-				// TODO, this clause is only applicable when we modify the identityGraph, but it does not make sense that the canAppend method does not know what the payload will
-				// be, upon deserialization. There should be known in the `canAppend` method whether we are appending to the identityGraph.
-
-				const relation: AbstractRelation =
-					operation._value || deserialize(operation.data, AbstractRelation);
-				operation._value = relation;
+				// TODO, this clause is only applicable when we modify the identityGraph, but it does not make sense that the canPerform method does not know what the payload will
+				// be, upon deserialization. There should be known in the `canPerform` method whether we are appending to the identityGraph.
 
+				const relation = operation.value;
 				if (relation instanceof IdentityRelation) {
 					if (!relation.from.equals(key)) {
 						return false;
@@ -79,7 +77,8 @@ const canAppendByRelation = async (
 	}
 };
 
-type IdentityGraphArgs = { canRead?: CanRead; role?: Role };
+type IdentityGraphArgs = { canRead?: CanRead<IdentityRelation>; role?: Role };
+
 @variant("relations")
 export class IdentityGraph extends Program<IdentityGraphArgs> {
 	@field({ type: Documents })
@@ -96,16 +95,20 @@ export class IdentityGraph extends Program<IdentityGraphArgs> {
 		}
 	}
 
-	async canAppend(entry: Entry<Operation<IdentityRelation>>): Promise<boolean> {
-		return canAppendByRelation(entry);
+	async canPerform(
+		operation: PutOperation<IdentityRelation> | DeleteOperation,
+		context: TransactionContext<IdentityRelation>
+	): Promise<boolean> {
+		return canPerformByRelation(operation, context);
 	}
 
 	async open(options?: IdentityGraphArgs) {
 		await this.relationGraph.open({
 			type: IdentityRelation,
-			canAppend: this.canAppend.bind(this),
-			canRead: options?.canRead,
+			canPerform: this.canPerform.bind(this),
+			role: options?.role,
 			index: {
+				canRead: options?.canRead,
 				fields: (obj, _entry) => {
 					return {
 						from: obj.from.hashcode(),
@@ -113,8 +116,7 @@ export class IdentityGraph extends Program<IdentityGraphArgs> {
 					};
 				},
 			},
-			role: options?.role,
-		}); // self referencing access controller
+		});
 	}
 
 	async addRelation(
@@ -137,6 +139,7 @@ export class IdentityGraph extends Program<IdentityGraphArgs> {
  */
 
 type TrustedNetworkArgs = { role?: Role };
+
 @variant("trusted_network")
 export class TrustedNetwork extends Program<TrustedNetworkArgs> {
 	@field({ type: PublicSignKey })
@@ -154,10 +157,10 @@ export class TrustedNetwork extends Program<TrustedNetworkArgs> {
 	async open(options?: TrustedNetworkArgs) {
 		await this.trustGraph.open({
 			type: IdentityRelation,
-			canAppend: this.canAppend.bind(this),
-			canRead: this.canRead.bind(this),
+			canPerform: this.canPerform.bind(this),
 			role: options?.role,
 			index: {
+				canRead: this.canRead.bind(this),
 				fields: (obj, _entry) => {
 					return {
 						from: obj.from.hashcode(),
@@ -168,11 +171,16 @@ export class TrustedNetwork extends Program<TrustedNetworkArgs> {
 		}); // self referencing access controller
 	}
 
-	async canAppend(entry: Entry<Operation<IdentityRelation>>): Promise<boolean> {
-		return canAppendByRelation(entry, (key) => this.isTrusted(key));
+	async canPerform(
+		operation: PutOperation<IdentityRelation> | DeleteOperation,
+		context: TransactionContext<IdentityRelation>
+	): Promise<boolean> {
+		return canPerformByRelation(operation, context, (key) =>
+			this.isTrusted(key)
+		);
 	}
 
-	async canRead(_key?: PublicSignKey): Promise<boolean> {
+	async canRead(relation: any, publicKey?: PublicSignKey): Promise<boolean> {
 		return true; // TODO should we have read access control?
 	}