Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

fix: sync space names from proofs #1193

Merged
merged 4 commits into from
Nov 29, 2023
Merged

fix: sync space names from proofs #1193

Changes from all commits
Commits
Show all changes
4 commits
Select commit Hold shift + click to select a range
e863cdd
fix: sync space names from proofs
olizilla Nov 28, 2023
b030057
fix: await addSpace
olizilla Nov 29, 2023
cc78a75
Merge remote-tracking branch 'origin/main' into sync-space-names
olizilla Nov 29, 2023
877148e
chore: prettier i guess
olizilla Nov 29, 2023
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
58 changes: 43 additions & 15 deletions packages/access-client/src/agent.js
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -7,7 +7,14 @@ import { attest } from '@web3-storage/capabilities/ucan'
import * as Access from './access.js'
import * as Space from './space.js'

import { invoke, delegate, DID, Delegation, Schema } from '@ucanto/core'
import {
invoke,
delegate,
DID,
Delegation,
Schema,
isDelegation,
} from '@ucanto/core'
import { isExpired, isTooEarly, canDelegateCapability } from './delegations.js'
import { AgentData, getSessionProofs } from './agent-data.js'
import { UCAN } from '@web3-storage/capabilities'
Expand Down Expand Up @@ -621,24 +628,45 @@ export async function addSpacesFromDelegations(agent, delegations) {
})
}

for (const delegation of delegations) {
// We only consider delegations to this agent as those are only spaces that
// this agent will be able to interact with.
if (delegation.audience.did() === agent.did()) {
// TODO: we need a more robust way to determine which spaces a user has access to
// it may or may not involve look at delegations
const allows = ucanto.Delegation.allows(delegation)

for (const [did, value] of Object.entries(allows)) {
// If we discovered a delegation to any DID, we add it to the spaces list.
if (did.startsWith('did:key') && Object.keys(value).length > 0) {
await data.addSpace(/** @type {API.DID} */ (did), {
name: '',
})
// spaces we find along the way.
const spaces = new Map()
// only consider ucans with this agent as the audience
const ours = delegations.filter((x) => x.audience.did() === agent.did())
// space names are stored as facts in proofs in the special `ucan:*` delegation from email to agent.
const ucanStars = ours.filter(
(x) => x.capabilities[0].can === '*' && x.capabilities[0].with === 'ucan:*'
)
for (const delegation of ucanStars) {
for (const proof of delegation.proofs) {
if (
!isDelegation(proof) ||
!proof.capabilities[0].with.startsWith('did:key')
) {
continue
}
const space = Space.fromDelegation(proof)
spaces.set(space.did(), space.meta)
}
}

// Find any other spaces the user may have access to
for (const delegation of ours) {
// TODO: we need a more robust way to determine which spaces a user has access to
// it may or may not involve look at delegations
const allows = ucanto.Delegation.allows(delegation)
for (const [resource, value] of Object.entries(allows)) {
// If we discovered a delegation to any DID, we add it to the spaces list.
if (resource.startsWith('did:key') && Object.keys(value).length > 0) {
if (!spaces.has(resource)) {
spaces.set(resource, {})
}
}
}
}

for (const [did, meta] of spaces) {
await data.addSpace(did, meta)
}
}

/**
Expand Down
Loading