Implement RequesterAuthorizerWithErc721 authorizers

[dcroote]

Closes #1632 by adding two new authorizers (same chain and cross chain). In each, RequesterAuthorizerWithErc721 corresponds to the address of the authorizer contract we deploy (from here, incorporated completely herein along with other necessary contracts from airnode-protocol-v1), and erc721s is an array of NFTs that serve as tokens to authorize requesters.

        "requesterAuthorizersWithErc721": [
          {
            "erc721s": ["0x00bDB2315678afecb367f032d93F642f64180a00"],
            "RequesterAuthorizerWithErc721": "0x999DB2315678afecb367f032d93F642f64180aa9"
          }
        ],
        "crossChainRequesterAuthorizersWithErc721": [
          {
            "erc721s": ["0x3FbDB2315678afecb367f032d93F642f64180aa6"],
            "chainType": "evm",
            "chainId": "4",
            "contracts": {
              "RequesterAuthorizerWithErc721": "0x6bbbb2315678afecb367f032d93F642f64180aa4"
            },
            "chainProvider": {
              "url": "http://127.0.0.2"
            }
          }
        ]

@bbenligiray I'm still struggling a bit on the e2e test, see the second commit

[Siegrift]

I've made the e2e test work (hacky way) in 950f5ec

The proper implementation requires a small refactor.

[bbenligiray]

👍 for the config format

[dcroote]

@Siegrift thanks for such a huge help, I really appreciate it.

I've made the e2e test work

Unfortunately due to a legacy subtlety in authorizer.requesterEndpointAuthorizers empty array behavior, your request was being authorized by this authorizer instead of the new requesterAuthorizersWithErc721 authorizer. See my last commit (in which I added a check for all authorizers being empty). I also changed dependencies, see my first commit after yours.

For isAuthorized() within this new authorizer, it appears an NFT (token) has to be deposited... Still working through understanding that

[Siegrift]

For isAuthorized() within this new authorizer, it appears an NFT (token) has to be deposited... Still working through understanding that

Yeah, sorry. I mainly focused on how to make the deployments (NFT and the respective authorizer) work. I thought that was the challenging part. Anyway, I think know how to make it work with token deposit. I'll try to fix the test today.

[Siegrift]

@dcroote Take a look at b3db6aa

[Siegrift]

It would also be nice debug level info which requester authorized the given call.

[dcroote]

We previously had no logging when a request was authorized, so even this is an upgrade 😅. I looked into adding the originating authorizer to the log, but that is not trivial to do based on how authorization fetching currently occurs. I think it's doable, but outside the scope of this PR. Happy to open a separate issue though.

[Siegrift]

Yeah, I feel you. We can open an issue.

[dcroote]

#1679

[Siegrift]

I wonder if we want to copy the contents to the Airnode repo or use it as a dependency. Dependency soundsw better to me.

[dcroote]

Burak suggested copy the contents:https://api3workspace.slack.com/archives/C0436H2BJKE/p1677057747622019?thread_ts=1676612819.041809&cid=C0436H2BJKE

[bbenligiray]

I can temporarily publish https://github.com/api3dao/nft-authorizer separately if you want, but to me these feel like equivalent solutions

[dcroote]

I was convinced by the argument that these will eventually be in this repo anyway.

[Siegrift]

Yeah, if it's going to be moved I am ok with it. An issue in the Airnode repo would be nice though.

[bbenligiray]

#1675

[Siegrift]

👍 LGTM