xmtp · cameronvoell · May 28, 2024 · May 22, 2024 · May 22, 2024 · May 23, 2024
@@ -20,6 +20,7 @@ use xmtp_mls::groups::group_metadata::ConversationType;
 use xmtp_mls::groups::group_metadata::GroupMetadata;
 use xmtp_mls::groups::group_permissions::GroupMutablePermissions;
 use xmtp_mls::groups::PreconfiguredPolicies;
+use xmtp_mls::groups::UpdateAdminListType;
 use xmtp_mls::identity::IdentityStrategy;
 use xmtp_mls::retry::Retry;
 use xmtp_mls::{
@@ -287,15 +288,15 @@ pub struct FfiConversations {
 
 #[derive(uniffi::Enum)]
 pub enum GroupPermissions {
-    EveryoneIsAdmin,
-    GroupCreatorIsAdmin,
+    AllMembers,
+    AdminOnly,
 }
 
 impl From<PreconfiguredPolicies> for GroupPermissions {
     fn from(policy: PreconfiguredPolicies) -> Self {
         match policy {
-            PreconfiguredPolicies::AllMembers => GroupPermissions::EveryoneIsAdmin,
-            PreconfiguredPolicies::AdminsOnly => GroupPermissions::GroupCreatorIsAdmin,
+            PreconfiguredPolicies::AllMembers => GroupPermissions::AllMembers,
+            PreconfiguredPolicies::AdminsOnly => GroupPermissions::AdminOnly,
         }
     }
 }
@@ -313,10 +314,10 @@ impl FfiConversations {
         );
 
         let group_permissions = match permissions {
-            Some(GroupPermissions::EveryoneIsAdmin) => {
+            Some(GroupPermissions::AllMembers) => {
                 Some(xmtp_mls::groups::PreconfiguredPolicies::AllMembers)
             }
-            Some(GroupPermissions::GroupCreatorIsAdmin) => {
+            Some(GroupPermissions::AdminOnly) => {
                 Some(xmtp_mls::groups::PreconfiguredPolicies::AdminsOnly)
             }
             _ => None,
@@ -609,7 +610,7 @@ impl FfiGroup {
         );
 
         group
-            .update_group_name(group_name, &self.inner_client)
+            .update_group_name(&self.inner_client, group_name)
             .await?;
 
         Ok(())
@@ -627,6 +628,97 @@ impl FfiGroup {
         Ok(group_name)
     }
 
+    pub fn admin_list(&self) -> Result<Vec<String>, GenericError> {
+        let group = MlsGroup::new(
+            self.inner_client.context().clone(),
+            self.group_id.clone(),
+            self.created_at_ns,
+        );
+
+        let admin_list = group.admin_list()?;
+
+        Ok(admin_list)
+    }
+
+    pub fn super_admin_list(&self) -> Result<Vec<String>, GenericError> {
+        let group = MlsGroup::new(
+            self.inner_client.context().clone(),
+            self.group_id.clone(),
+            self.created_at_ns,
+        );
+
+        let super_admin_list = group.super_admin_list()?;
+
+        Ok(super_admin_list)
+    }
+
+    pub fn is_admin(&self, account_address: &String) -> Result<bool, GenericError> {
+        let admin_list = self.admin_list()?;
+        Ok(admin_list.contains(account_address))
+    }
+
+    pub fn is_super_admin(&self, account_address: &String) -> Result<bool, GenericError> {
+        let super_admin_list = self.super_admin_list()?;
+        Ok(super_admin_list.contains(account_address))
+    }
+
+    pub async fn add_admin(&self, inbox_id: String) -> Result<(), GenericError> {
+        let group = MlsGroup::new(
+            self.inner_client.context().clone(),
+            self.group_id.clone(),
+            self.created_at_ns,
+        );
+        group.update_admin_list(&self.inner_client,  UpdateAdminListType::Add, inbox_id).await?;
+
+        Ok(())
+    }
+
+    pub async fn remove_admin(&self, inbox_id: String) -> Result<(), GenericError> {
+        let group = MlsGroup::new(
+            self.inner_client.context().clone(),
+            self.group_id.clone(),
+            self.created_at_ns,
+        );
+        group.update_admin_list(&self.inner_client,  UpdateAdminListType::Remove, inbox_id).await?;
+
+        Ok(())
+    }
+
+    pub async fn add_super_admin(&self, inbox_id: String) -> Result<(), GenericError> {
+        let group = MlsGroup::new(
+            self.inner_client.context().clone(),
+            self.group_id.clone(),
+            self.created_at_ns,
+        );
+        group.update_admin_list(&self.inner_client,  UpdateAdminListType::AddSuper, inbox_id).await?;
+
+        Ok(())
+    }
+
+    pub async fn remove_super_admin(&self, inbox_id: String) -> Result<(), GenericError> {
+        let group = MlsGroup::new(
+            self.inner_client.context().clone(),
+            self.group_id.clone(),
+            self.created_at_ns,
+        );
+        group.update_admin_list(&self.inner_client,  UpdateAdminListType::RemoveSuper, inbox_id).await?;
+
+        Ok(())
+    }
+
+    pub fn group_permissions(&self) -> Result<Arc<FfiGroupPermissions>, GenericError> {
+        let group = MlsGroup::new(
+            self.inner_client.context().clone(),
+            self.group_id.clone(),
+            self.created_at_ns,
+        );
+
+        let permissions = group.permissions()?;
+        Ok(Arc::new(FfiGroupPermissions {
+            inner: Arc::new(permissions),
+        }))
+    }
+
     pub async fn stream(
         &self,
         message_callback: Box<dyn FfiMessageCallback>,

@@ -356,7 +356,7 @@ impl MetadataPolicy for MetadataAnyCondition {
 pub trait PermissionsPolicy: std::fmt::Debug {
     // Verify relevant metadata is actually changed before evaluating against the MetadataPolicy
     // See evaluate_metadata_policy
-    fn evaluate(&self, actor: &CommitParticipant, change: &PermissionsChange) -> bool;
+    fn evaluate(&self, actor: &CommitParticipant) -> bool;
     fn to_proto(&self) -> Result<PermissionsPolicyProto, PolicyError>;
 }
 
@@ -368,12 +368,13 @@ pub enum PermissionsBasePolicies {
 }
 
 impl PermissionsPolicy for &PermissionsBasePolicies {
-    fn evaluate(&self, _actor: &CommitParticipant, _change: &PermissionsChange) -> bool {
-        // TODO PERMISSIONS: Update this for permission policy updates
+    fn evaluate(&self, actor: &CommitParticipant) -> bool {
         match self {
             PermissionsBasePolicies::Deny => false,
-            PermissionsBasePolicies::AllowIfActorAdminOrSuperAdmin => true,
-            PermissionsBasePolicies::AllowIfActorSuperAdmin => true,
+            PermissionsBasePolicies::AllowIfActorAdminOrSuperAdmin => {
+                actor.is_admin || actor.is_super_admin
+            }
+            PermissionsBasePolicies::AllowIfActorSuperAdmin => actor.is_super_admin,
         }
     }
 
@@ -426,27 +427,6 @@ impl PermissionsPolicies {
     }
 }
 
-// Information for Metadata Update used for validation
-#[derive(Clone, Debug)]
-pub struct PermissionsChange {
-    #[allow(dead_code)]
-    pub(crate) old_value: GroupMutablePermissions,
-    #[allow(dead_code)]
-    pub(crate) new_value: GroupMutablePermissions,
-}
-
-impl PermissionsChange {
-    #[cfg(test)]
-    #[allow(dead_code)]
-    fn empty_for_testing() -> Self {
-        todo!();
-        // Self {
-        //     old_value: GroupMutablePermissions::new_default("empty".to_string()),
-        //     new_value: GroupMutablePermissions::new_default("empty".to_string()),
-        // }
-    }
-}
-
 impl TryFrom<PermissionsPolicyProto> for PermissionsPolicies {
     type Error = PolicyError;
 
@@ -489,11 +469,11 @@ impl TryFrom<PermissionsPolicyProto> for PermissionsPolicies {
 }
 
 impl PermissionsPolicy for PermissionsPolicies {
-    fn evaluate(&self, actor: &CommitParticipant, change: &PermissionsChange) -> bool {
+    fn evaluate(&self, actor: &CommitParticipant) -> bool {
         match self {
-            PermissionsPolicies::Standard(policy) => policy.evaluate(actor, change),
-            PermissionsPolicies::AndCondition(policy) => policy.evaluate(actor, change),
-            PermissionsPolicies::AnyCondition(policy) => policy.evaluate(actor, change),
+            PermissionsPolicies::Standard(policy) => policy.evaluate(actor),
+            PermissionsPolicies::AndCondition(policy) => policy.evaluate(actor),
+            PermissionsPolicies::AnyCondition(policy) => policy.evaluate(actor),
         }
     }
 
@@ -519,10 +499,8 @@ impl PermissionsAndCondition {
 }
 
 impl PermissionsPolicy for PermissionsAndCondition {
-    fn evaluate(&self, actor: &CommitParticipant, change: &PermissionsChange) -> bool {
-        self.policies
-            .iter()
-            .all(|policy| policy.evaluate(actor, change))
+    fn evaluate(&self, actor: &CommitParticipant) -> bool {
+        self.policies.iter().all(|policy| policy.evaluate(actor))
     }
 
     fn to_proto(&self) -> Result<PermissionsPolicyProto, PolicyError> {
@@ -554,10 +532,8 @@ impl PermissionsAnyCondition {
 }
 
 impl PermissionsPolicy for PermissionsAnyCondition {
-    fn evaluate(&self, actor: &CommitParticipant, change: &PermissionsChange) -> bool {
-        self.policies
-            .iter()
-            .any(|policy| policy.evaluate(actor, change))
+    fn evaluate(&self, actor: &CommitParticipant) -> bool {
+        self.policies.iter().any(|policy| policy.evaluate(actor))
     }
 
     fn to_proto(&self) -> Result<PermissionsPolicyProto, PolicyError> {
@@ -828,19 +804,58 @@ impl PolicySet {
     }
 
     pub fn evaluate_commit(&self, commit: &ValidatedCommit) -> bool {
-        self.evaluate_policy(
+        // Verify add member policy was not violated
+        let added_inboxes_valid = self.evaluate_policy(
             commit.added_inboxes.iter(),
             &self.add_member_policy,
             &commit.actor,
-        ) && self.evaluate_policy(
+        );
+
+        // Verify remove member policy was not violated
+        // Super admin can not be removed from a group
+        let removed_inboxes_valid = self.evaluate_policy(
             commit.removed_inboxes.iter(),
             &self.remove_member_policy,
             &commit.actor,
-        ) && self.evaluate_metadata_policy(
+        ) && !commit
+            .removed_inboxes
+            .iter()
+            .any(|inbox| inbox.is_super_admin);
+
+        // Verify that update metadata policy was not violated
+        let metadata_changes_valid = self.evaluate_metadata_policy(
             commit.metadata_changes.metadata_field_changes.iter(),
             &self.update_metadata_policy,
             &commit.actor,
-        )
+        );
+
+        // Verify that add admin policy was not violated
+        let added_admins_valid = commit.metadata_changes.admins_added.is_empty()
+            || self.add_admin_policy.evaluate(&commit.actor);
+
+        // Verify that remove admin policy was not violated
+        let removed_admins_valid = commit.metadata_changes.admins_removed.is_empty()
+            || self.remove_admin_policy.evaluate(&commit.actor);
+
+        // Verify that super admin add policy was not violated
+        let super_admin_add_valid =
+            commit.metadata_changes.super_admins_added.is_empty() || commit.actor.is_super_admin;
+
+        // Verify that super admin remove policy was not violated
+        // You can never remove the last super admin
+        let super_admin_remove_valid = commit.metadata_changes.super_admins_removed.is_empty()
+            || (commit.actor.is_super_admin && commit.metadata_changes.num_super_admins > 1);
+
+        // TODO Validate permissions updates are valid
+        // once we add the user actions for updating permissions
+
+        added_inboxes_valid
+            && removed_inboxes_valid
+            && metadata_changes_valid
+            && added_admins_valid
+            && removed_admins_valid
+            && super_admin_add_valid
+            && super_admin_remove_valid
     }
 
     fn evaluate_policy<'a, I, P>(
@@ -1109,8 +1124,6 @@ mod tests {
         }
     }
 
-    // TODO CVOELL: add metadata specific test here
-
     #[test]
     fn test_allow_all() {
         let permissions = PolicySet::new(
@@ -1155,7 +1168,11 @@ mod tests {
             PermissionsPolicies::allow_if_actor_super_admin(),
         );
 
+        // Can not remove the creator if they are the only super admin
         let commit_with_creator = build_validated_commit(Some(true), Some(true), None, true);
+        assert!(!permissions.evaluate_commit(&commit_with_creator));
+
+        let commit_with_creator = build_validated_commit(Some(true), Some(false), None, true);
         assert!(permissions.evaluate_commit(&commit_with_creator));
 
         let commit_without_creator = build_validated_commit(Some(true), Some(true), None, false);