@usherlabs/cex-broker 0.2.8 → 0.2.9

package/dist/commands/cli.js

@@ -313683,7 +313683,13 @@ function loadPolicy(policyPath) {
     const withdrawRuleEntrySchema = import_joi.default.object({
       exchange: import_joi.default.string().required(),
       network: import_joi.default.string().required(),
-      whitelist: import_joi.default.array().items(import_joi.default.string()).required()
+      whitelist: import_joi.default.array().items(import_joi.default.string()).required(),
+      coins: import_joi.default.array().items(import_joi.default.string()).optional()
+    });
+    const depositRuleEntrySchema = import_joi.default.object({
+      exchange: import_joi.default.string().required(),
+      network: import_joi.default.string().required(),
+      coins: import_joi.default.array().items(import_joi.default.string()).optional()
     });
     const orderRuleSchema = import_joi.default.object({
       markets: import_joi.default.array().items(import_joi.default.string()).required(),
@@ -313698,7 +313704,9 @@ function loadPolicy(policyPath) {
       withdraw: import_joi.default.object({
         rule: import_joi.default.array().items(withdrawRuleEntrySchema).min(1).required()
       }).required(),
-      deposit: import_joi.default.object().pattern(import_joi.default.string(), import_joi.default.valid(null)).required(),
+      deposit: import_joi.default.object({
+        rule: import_joi.default.array().items(depositRuleEntrySchema).optional()
+      }).required(),
       order: import_joi.default.object({
         rule: orderRuleSchema.required()
       }).required()
@@ -313722,9 +313730,25 @@ function normalizePolicyConfig(policy) {
         ...rule,
         exchange: rule.exchange.trim().toUpperCase(),
         network: rule.network.trim().toUpperCase(),
-        whitelist: rule.whitelist.map((address) => address.trim().toLowerCase())
+        whitelist: rule.whitelist.map((address) => address.trim().toLowerCase()),
+        ...rule.coins && {
+          coins: rule.coins.map((c) => c.trim().toUpperCase())
+        }
       }))
     },
+    deposit: {
+      ...policy.deposit,
+      ...policy.deposit.rule && {
+        rule: policy.deposit.rule.map((rule) => ({
+          ...rule,
+          exchange: rule.exchange.trim().toUpperCase(),
+          network: rule.network.trim().toUpperCase(),
+          ...rule.coins && {
+            coins: rule.coins.map((c) => c.trim().toUpperCase())
+          }
+        }))
+      }
+    },
     order: {
       ...policy.order,
       rule: {
@@ -313751,7 +313775,24 @@ function getWithdrawRulePriority(rule, exchange, network) {
   }
   return 1;
 }
-function validateWithdraw(policy, exchange, network, recipientAddress, _amount, _ticker) {
+function getDepositRulePriority(rule, exchange, network) {
+  const exchangeMatch = rule.exchange === exchange || rule.exchange === "*";
+  const networkMatch = rule.network === network || rule.network === "*";
+  if (!exchangeMatch || !networkMatch) {
+    return 0;
+  }
+  if (rule.exchange === exchange && rule.network === network) {
+    return 4;
+  }
+  if (rule.exchange === exchange && rule.network === "*") {
+    return 3;
+  }
+  if (rule.exchange === "*" && rule.network === network) {
+    return 2;
+  }
+  return 1;
+}
+function validateWithdraw(policy, exchange, network, recipientAddress, _amount, ticker) {
   const normalizedPolicy = normalizePolicyConfig(policy);
   const exchangeNorm = exchange.trim().toUpperCase();
   const networkNorm = network.trim().toUpperCase();
@@ -313773,6 +313814,16 @@ function validateWithdraw(policy, exchange, network, recipientAddress, _amount,
       error: `Address ${recipientAddress} is not whitelisted for withdrawals`
     };
   }
+  const coins = withdrawRule.coins;
+  if (coins && coins.length > 0 && !coins.includes("*")) {
+    const tickerNorm = ticker.trim().toUpperCase();
+    if (!coins.includes(tickerNorm)) {
+      return {
+        valid: false,
+        error: `Token ${tickerNorm} is not allowed for withdrawals on ${exchangeNorm}:${networkNorm}. Allowed: [${coins.join(", ")}]`
+      };
+    }
+  }
   return { valid: true };
 }
 function normalizeAccountSelector(selector2, metadata, defaultSelector) {
@@ -313970,6 +314021,35 @@ async function resolveOrderExecution(policy, broker, cex3, fromToken, toToken, a
     matchedPatterns
   };
 }
+function validateDeposit(policy, exchange, network, ticker) {
+  const normalizedPolicy = normalizePolicyConfig(policy);
+  if (!normalizedPolicy.deposit.rule || normalizedPolicy.deposit.rule.length === 0) {
+    return { valid: true };
+  }
+  const exchangeNorm = exchange.trim().toUpperCase();
+  const networkNorm = network.trim().toUpperCase();
+  const tickerNorm = ticker.trim().toUpperCase();
+  const matchingRules = normalizedPolicy.deposit.rule.map((rule) => ({
+    rule,
+    priority: getDepositRulePriority(rule, exchangeNorm, networkNorm)
+  })).filter((r) => r.priority > 0).sort((a, b2) => b2.priority - a.priority);
+  const depositRule = matchingRules[0]?.rule;
+  if (!depositRule) {
+    return {
+      valid: false,
+      error: `Deposits not allowed for ${exchangeNorm}:${networkNorm}`
+    };
+  }
+  if (depositRule.coins && depositRule.coins.length > 0 && !depositRule.coins.includes("*")) {
+    if (!depositRule.coins.includes(tickerNorm)) {
+      return {
+        valid: false,
+        error: `Token ${tickerNorm} not allowed for deposit on ${exchangeNorm}:${networkNorm}. Allowed: [${depositRule.coins.join(", ")}]`
+      };
+    }
+  }
+  return { valid: true };
+}
 
 // src/helpers/otel.ts
 var import_api_logs2 = __toESM(require_src7(), 1);
@@ -328405,6 +328485,13 @@ function getServer(policy, brokers, whitelistIps, useVerity, verityProverUrl, ot
               }, null);
             }
             const fetchDepositAddresses = parsedPayload.data;
+            const depositValidation = validateDeposit(policy, cex3, fetchDepositAddresses.chain, symbol2);
+            if (!depositValidation.valid) {
+              return wrappedCallback({
+                code: grpc.status.PERMISSION_DENIED,
+                message: depositValidation.error
+              }, null);
+            }
             try {
               const depositAddresses = broker.has.fetchDepositAddress === true ? [
                 await broker.fetchDepositAddress(symbol2, {

package/dist/helpers/index.d.ts

@@ -43,7 +43,7 @@ export declare function selectBrokerAccount(brokers: BrokerPoolEntry | undefined
  */
 export declare function loadPolicy(policyPath: string): PolicyConfig;
 export declare function normalizePolicyConfig(policy: PolicyConfig): PolicyConfig;
-export declare function validateWithdraw(policy: PolicyConfig, exchange: string, network: string, recipientAddress: string, _amount: number, _ticker: string): {
+export declare function validateWithdraw(policy: PolicyConfig, exchange: string, network: string, recipientAddress: string, _amount: number, ticker: string): {
     valid: boolean;
     error?: string;
 };
@@ -78,10 +78,7 @@ type OrderExecutionResolution = {
     matchedPatterns?: string[];
 };
 export declare function resolveOrderExecution(policy: PolicyConfig, broker: Exchange, cex: string, fromToken: string, toToken: string, amount: number, price: number): Promise<OrderExecutionResolution>;
-/**
- * Validates deposit request (currently empty but can be extended)
- */
-export declare function validateDeposit(_policy: PolicyConfig, _chain: string, _amount: number): {
+export declare function validateDeposit(policy: PolicyConfig, exchange: string, network: string, ticker: string): {
     valid: boolean;
     error?: string;
 };

package/dist/index.js

@@ -272936,7 +272936,13 @@ function loadPolicy(policyPath) {
     const withdrawRuleEntrySchema = import_joi.default.object({
       exchange: import_joi.default.string().required(),
       network: import_joi.default.string().required(),
-      whitelist: import_joi.default.array().items(import_joi.default.string()).required()
+      whitelist: import_joi.default.array().items(import_joi.default.string()).required(),
+      coins: import_joi.default.array().items(import_joi.default.string()).optional()
+    });
+    const depositRuleEntrySchema = import_joi.default.object({
+      exchange: import_joi.default.string().required(),
+      network: import_joi.default.string().required(),
+      coins: import_joi.default.array().items(import_joi.default.string()).optional()
     });
     const orderRuleSchema = import_joi.default.object({
       markets: import_joi.default.array().items(import_joi.default.string()).required(),
@@ -272951,7 +272957,9 @@ function loadPolicy(policyPath) {
       withdraw: import_joi.default.object({
         rule: import_joi.default.array().items(withdrawRuleEntrySchema).min(1).required()
       }).required(),
-      deposit: import_joi.default.object().pattern(import_joi.default.string(), import_joi.default.valid(null)).required(),
+      deposit: import_joi.default.object({
+        rule: import_joi.default.array().items(depositRuleEntrySchema).optional()
+      }).required(),
       order: import_joi.default.object({
         rule: orderRuleSchema.required()
       }).required()
@@ -272975,9 +272983,25 @@ function normalizePolicyConfig(policy) {
         ...rule,
         exchange: rule.exchange.trim().toUpperCase(),
         network: rule.network.trim().toUpperCase(),
-        whitelist: rule.whitelist.map((address) => address.trim().toLowerCase())
+        whitelist: rule.whitelist.map((address) => address.trim().toLowerCase()),
+        ...rule.coins && {
+          coins: rule.coins.map((c) => c.trim().toUpperCase())
+        }
       }))
     },
+    deposit: {
+      ...policy.deposit,
+      ...policy.deposit.rule && {
+        rule: policy.deposit.rule.map((rule) => ({
+          ...rule,
+          exchange: rule.exchange.trim().toUpperCase(),
+          network: rule.network.trim().toUpperCase(),
+          ...rule.coins && {
+            coins: rule.coins.map((c) => c.trim().toUpperCase())
+          }
+        }))
+      }
+    },
     order: {
       ...policy.order,
       rule: {
@@ -273004,7 +273028,24 @@ function getWithdrawRulePriority(rule, exchange, network) {
   }
   return 1;
 }
-function validateWithdraw(policy, exchange, network, recipientAddress, _amount, _ticker) {
+function getDepositRulePriority(rule, exchange, network) {
+  const exchangeMatch = rule.exchange === exchange || rule.exchange === "*";
+  const networkMatch = rule.network === network || rule.network === "*";
+  if (!exchangeMatch || !networkMatch) {
+    return 0;
+  }
+  if (rule.exchange === exchange && rule.network === network) {
+    return 4;
+  }
+  if (rule.exchange === exchange && rule.network === "*") {
+    return 3;
+  }
+  if (rule.exchange === "*" && rule.network === network) {
+    return 2;
+  }
+  return 1;
+}
+function validateWithdraw(policy, exchange, network, recipientAddress, _amount, ticker) {
   const normalizedPolicy = normalizePolicyConfig(policy);
   const exchangeNorm = exchange.trim().toUpperCase();
   const networkNorm = network.trim().toUpperCase();
@@ -273026,6 +273067,16 @@ function validateWithdraw(policy, exchange, network, recipientAddress, _amount,
       error: `Address ${recipientAddress} is not whitelisted for withdrawals`
     };
   }
+  const coins = withdrawRule.coins;
+  if (coins && coins.length > 0 && !coins.includes("*")) {
+    const tickerNorm = ticker.trim().toUpperCase();
+    if (!coins.includes(tickerNorm)) {
+      return {
+        valid: false,
+        error: `Token ${tickerNorm} is not allowed for withdrawals on ${exchangeNorm}:${networkNorm}. Allowed: [${coins.join(", ")}]`
+      };
+    }
+  }
   return { valid: true };
 }
 function normalizeAccountSelector(selector2, metadata, defaultSelector) {
@@ -273223,6 +273274,35 @@ async function resolveOrderExecution(policy, broker, cex3, fromToken, toToken, a
     matchedPatterns
   };
 }
+function validateDeposit(policy, exchange, network, ticker) {
+  const normalizedPolicy = normalizePolicyConfig(policy);
+  if (!normalizedPolicy.deposit.rule || normalizedPolicy.deposit.rule.length === 0) {
+    return { valid: true };
+  }
+  const exchangeNorm = exchange.trim().toUpperCase();
+  const networkNorm = network.trim().toUpperCase();
+  const tickerNorm = ticker.trim().toUpperCase();
+  const matchingRules = normalizedPolicy.deposit.rule.map((rule) => ({
+    rule,
+    priority: getDepositRulePriority(rule, exchangeNorm, networkNorm)
+  })).filter((r) => r.priority > 0).sort((a, b2) => b2.priority - a.priority);
+  const depositRule = matchingRules[0]?.rule;
+  if (!depositRule) {
+    return {
+      valid: false,
+      error: `Deposits not allowed for ${exchangeNorm}:${networkNorm}`
+    };
+  }
+  if (depositRule.coins && depositRule.coins.length > 0 && !depositRule.coins.includes("*")) {
+    if (!depositRule.coins.includes(tickerNorm)) {
+      return {
+        valid: false,
+        error: `Token ${tickerNorm} not allowed for deposit on ${exchangeNorm}:${networkNorm}. Allowed: [${depositRule.coins.join(", ")}]`
+      };
+    }
+  }
+  return { valid: true };
+}
 
 // node_modules/@opentelemetry/api-logs/build/esm/types/LogRecord.js
 var SeverityNumber2;
@@ -291358,6 +291438,13 @@ function getServer(policy, brokers, whitelistIps, useVerity, verityProverUrl, ot
               }, null);
             }
             const fetchDepositAddresses = parsedPayload.data;
+            const depositValidation = validateDeposit(policy, cex3, fetchDepositAddresses.chain, symbol2);
+            if (!depositValidation.valid) {
+              return wrappedCallback({
+                code: grpc.status.PERMISSION_DENIED,
+                message: depositValidation.error
+              }, null);
+            }
             try {
               const depositAddresses = broker.has.fetchDepositAddress === true ? [
                 await broker.fetchDepositAddress(symbol2, {
@@ -292185,4 +292272,4 @@ export {
   CEXBroker as default
 };
 
-//# debugId=317BFF4A1E45296164756E2164756E21
+//# debugId=D692BFF7F06F00CD64756E2164756E21