Skip to content

Token id generation #166

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
dev-fatima-24 merged 2 commits into from
Apr 27, 2026
Merged

Token id generation #166

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
2 commits
Select commit Hold shift + click to select a range
88d5f5e
feat:implement deterministic token_id generation
nikkybel Apr 26, 2026
090cfb9
Merge branch 'main' into token_id-generation
dev-fatima-24 Apr 27, 2026
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
115 changes: 70 additions & 45 deletions contracts/src/lib.rs
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -1,5 +1,8 @@
#![no_std]

#[cfg(test)]
extern crate std;

mod storage;
mod events;
mod mint;
Expand All @@ -10,22 +13,22 @@ use storage::{DataKey, IssuerRecord, VaccinationRecord};

/// Contract errors.
///
/// | Code | Name | Description |
/// |------|------------------|--------------------------------------------------|
/// | 1 | AlreadyInitialized | Contract has already been initialized |
/// | 2 | NotInitialized | Contract has not been initialized |
/// | 3 | Unauthorized | Caller is not an authorized issuer |
/// | 4 | ProposalExpired | Admin transfer proposal has expired |
/// | 5 | NoPendingTransfer | No pending admin transfer exists |
/// | Code | Name | Description |
/// |------|------------------------------|--------------------------------------------------|
/// | 1 | AlreadyInitialized | Contract has already been initialized |
/// | 2 | NotInitialized | Contract has not been initialized |
/// | 3 | Unauthorized | Caller is not an authorized issuer |
/// | 4 | ProposalExpired | Admin transfer proposal has expired |
/// | 5 | NoPendingTransfer | No pending admin transfer exists |
/// | 6 | DuplicateRecord | Identical vaccination record already exists |
/// | 7 | RecordNotFound | Vaccination record does not exist |
/// | 8 | AlreadyRevoked | Vaccination record is already revoked |
/// | 8 | AlreadyRevoked | Vaccination record is already revoked |
/// | 9 | InvalidInput | Input failed validation at the contract boundary |
/// | 10 | InvalidInputVaccineName | vaccine_name exceeds maximum length |
/// | 11 | InvalidInputDateAdministered | date_administered exceeds maximum length |
/// | 12 | InvalidInputIssuerName | issuer name exceeds maximum length |
/// | 13 | InvalidInputLicense | issuer license exceeds maximum length |
/// | 14 | InvalidInputCountry | issuer country exceeds maximum length |
/// | 10 | InvalidInputVaccineName | vaccine_name exceeds maximum length |
/// | 11 | InvalidInputDateAdministered | date_administered exceeds maximum length |
/// | 12 | InvalidInputIssuerName | issuer name exceeds maximum length |
/// | 13 | InvalidInputLicense | issuer license exceeds maximum length |
/// | 14 | InvalidInputCountry | issuer country exceeds maximum length |
#[contracterror]
#[derive(Copy, Clone, Debug, Eq, PartialEq)]
pub enum ContractError {
Expand All @@ -48,7 +51,7 @@ pub enum ContractError {

const MAX_STRING_LENGTH: u32 = 100;

fn validate_input_length(field: &String, field_name: &str) -> Result<(), ContractError> {
pub(crate) fn validate_input_length(field: &String, field_name: &str) -> Result<(), ContractError> {
if field.len() > MAX_STRING_LENGTH {
return Err(match field_name {
"vaccine_name" => ContractError::InvalidInputVaccineName,
Expand All @@ -67,7 +70,7 @@ pub struct VacciChainContract;

#[contractimpl]
impl VacciChainContract {
/// Initialize contract with an admin address
/// Initialize contract with an admin address.
pub fn initialize(env: Env, admin: Address) -> Result<(), ContractError> {
if env.storage().persistent().has(&DataKey::Initialized) {
return Err(ContractError::AlreadyInitialized);
Expand All @@ -78,15 +81,19 @@ impl VacciChainContract {
Ok(())
}

/// Admin: authorize a new issuer with metadata
/// Admin: authorize a new issuer with metadata.
pub fn add_issuer(
env: Env,
issuer: Address,
name: String,
license: String,
country: String,
) -> Result<(), ContractError> {
let admin: Address = env.storage().persistent().get(&DataKey::Admin).expect("not initialized");
let admin: Address = env
.storage()
.persistent()
.get(&DataKey::Admin)
.ok_or(ContractError::NotInitialized)?;
admin.require_auth();
validate_input_length(&name, "name")?;
validate_input_length(&license, "license")?;
Expand Down Expand Up @@ -121,16 +128,20 @@ impl VacciChainContract {
Ok(())
}

/// Public: get issuer metadata
/// Public: get issuer metadata.
pub fn get_issuer(env: Env, address: Address) -> Option<IssuerRecord> {
env.storage()
.persistent()
.get(&DataKey::IssuerMeta(hash_address(&env, &address)))
}

/// Admin: revoke an issuer
pub fn revoke_issuer(env: Env, issuer: Address) {
let admin: Address = env.storage().persistent().get(&DataKey::Admin).expect("not initialized");
/// Admin: revoke an issuer.
pub fn revoke_issuer(env: Env, issuer: Address) -> Result<(), ContractError> {
let admin: Address = env
.storage()
.persistent()
.get(&DataKey::Admin)
.ok_or(ContractError::NotInitialized)?;
admin.require_auth();

if let Some(mut record) = env
Expand All @@ -143,9 +154,11 @@ impl VacciChainContract {
.persistent()
.set(&DataKey::IssuerMeta(hash_address(&env, &issuer)), &record);
}
Ok(())
}

/// Issuer: mint a soulbound vaccination NFT
/// Issuer: mint a soulbound vaccination NFT.
/// Returns the deterministic token_id (u64).
pub fn mint_vaccination(
env: Env,
patient: Address,
Expand All @@ -157,7 +170,7 @@ impl VacciChainContract {
}

/// Original issuer or admin: revoke a vaccination record.
/// The record is marked revoked: true but never deleted (audit trail preserved).
/// The record is marked revoked but never deleted (audit trail preserved).
pub fn revoke_vaccination(env: Env, token_id: u64, revoker: Address) -> Result<(), ContractError> {
revoker.require_auth();

Expand All @@ -171,7 +184,6 @@ impl VacciChainContract {
return Err(ContractError::AlreadyRevoked);
}

// Only the original issuer or the current admin may revoke
let admin: Address = env
.storage()
.persistent()
Expand All @@ -184,11 +196,8 @@ impl VacciChainContract {

record.revoked = true;
env.storage().persistent().set(&DataKey::Token(token_id), &record);
// Also set a dedicated revocation flag for fast lookup
env.storage().persistent().set(&DataKey::Revoked(token_id), &true);

events::emit_revoked(&env, token_id, &revoker);

Ok(())
}

Expand All @@ -197,17 +206,17 @@ impl VacciChainContract {
Err(ContractError::SoulboundToken)
}

/// Public: verify vaccination status for a wallet
/// Public: verify vaccination status for a wallet.
pub fn verify_vaccination(env: Env, wallet: Address) -> (bool, Vec<VaccinationRecord>) {
verify::verify_vaccination(&env, wallet)
}

/// Public: batch verify vaccination status for multiple wallets (max 100)
/// Public: batch verify vaccination status for multiple wallets (max 100).
pub fn batch_verify(env: Env, wallets: Vec<Address>) -> Vec<(Address, bool, Vec<VaccinationRecord>)> {
verify::batch_verify(&env, wallets)
}

/// Check if an address is an authorized issuer
/// Check if an address is an authorized issuer.
pub fn is_issuer(env: Env, address: Address) -> bool {
env.storage()
.persistent()
Expand Down Expand Up @@ -253,7 +262,10 @@ impl VacciChainContract {

/// Admin: propose a new admin (two-step transfer). Proposal expires after 24 hours.
pub fn propose_admin(env: Env, new_admin: Address) -> Result<(), ContractError> {
let admin: Address = env.storage().persistent().get(&DataKey::Admin)
let admin: Address = env
.storage()
.persistent()
.get(&DataKey::Admin)
.ok_or(ContractError::NotInitialized)?;
admin.require_auth();
let expires_at = env.ledger().timestamp() + 86400;
Expand All @@ -265,9 +277,15 @@ impl VacciChainContract {

/// Proposed admin: accept the admin role.
pub fn accept_admin(env: Env) -> Result<(), ContractError> {
let pending: Address = env.storage().persistent().get(&DataKey::PendingAdmin)
let pending: Address = env
.storage()
.persistent()
.get(&DataKey::PendingAdmin)
.ok_or(ContractError::NoPendingTransfer)?;
let expires_at: u64 = env.storage().persistent().get(&DataKey::AdminTransferExpiry)
let expires_at: u64 = env
.storage()
.persistent()
.get(&DataKey::AdminTransferExpiry)
.ok_or(ContractError::NoPendingTransfer)?;
if env.ledger().timestamp() > expires_at {
return Err(ContractError::ProposalExpired);
Expand All @@ -282,7 +300,10 @@ impl VacciChainContract {

/// Admin: upgrade the contract WASM.
pub fn upgrade(env: Env, new_wasm_hash: BytesN<32>) -> Result<(), ContractError> {
let admin: Address = env.storage().persistent().get(&DataKey::Admin)
let admin: Address = env
.storage()
.persistent()
.get(&DataKey::Admin)
.ok_or(ContractError::NotInitialized)?;
admin.require_auth();
env.deployer().update_current_contract_wasm(new_wasm_hash.clone());
Expand Down Expand Up @@ -342,16 +363,20 @@ mod tests {
&String::from_str(&env, "General Hospital"),
&String::from_str(&env, "LIC-12345"),
&String::from_str(&env, "USA"),
).unwrap();
);

let token_id = client.mint_vaccination(
&patient,
&String::from_str(&env, "COVID-19"),
&String::from_str(&env, "2024-01-15"),
&issuer,
).unwrap();
let vaccine = String::from_str(&env, "COVID-19");
let date = String::from_str(&env, "2024-01-15");
let seq = env.ledger().sequence();

let token_id = client.mint_vaccination(&patient, &vaccine, &date, &issuer);

assert_eq!(token_id, 1);
// token_id must be a non-zero u64 (hash-derived)
assert_ne!(token_id, 0);

// token_id must match the deterministic scheme
let expected = compute_token_id(&env, &patient, &vaccine, &date, &issuer, seq);
assert_eq!(token_id, expected);

let (vaccinated, records) = client.verify_vaccination(&patient);
assert!(vaccinated);
Expand Down Expand Up @@ -387,14 +412,14 @@ mod tests {
&String::from_str(&env, "General Hospital"),
&String::from_str(&env, "LIC-12345"),
&String::from_str(&env, "USA"),
).unwrap();
);

client.mint_vaccination(
&patient,
&String::from_str(&env, "COVID-19"),
&String::from_str(&env, "2024-01-15"),
&issuer,
).unwrap();
);

let result = client.try_mint_vaccination(
&patient,
Expand Down Expand Up @@ -436,7 +461,7 @@ mod tests {
&String::from_str(&env, "General Hospital"),
&String::from_str(&env, "LIC-12345"),
&String::from_str(&env, "USA"),
).unwrap();
);

let token_id = client.mint_vaccination(
&patient,
Expand Down
20 changes: 19 additions & 1 deletion contracts/src/mint.rs
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -28,7 +28,25 @@ pub fn mint_vaccination(
return Err(ContractError::Unauthorized);
}

// Duplicate detection: (patient, vaccine_name, date_administered) must be unique
// Compute deterministic token_id:
// SHA-256(patient_xdr || vaccine_name || date_administered || issuer_xdr || ledger_sequence)
// truncated to first 8 bytes as big-endian u64.
let ledger_sequence = env.ledger().sequence();
let token_id = compute_token_id(
env,
&patient,
&vaccine_name,
&date_administered,
&issuer,
ledger_sequence,
);

// Duplicate detection: token_id collision means identical record already exists
if env.storage().persistent().has(&DataKey::Token(token_id)) {
return Err(ContractError::DuplicateRecord);
}

// Also check patient's existing tokens for same (vaccine_name, date_administered)
let tokens: Vec<u64> = env
.storage()
.persistent()
Expand Down
64 changes: 62 additions & 2 deletions contracts/src/storage.rs
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -1,9 +1,70 @@
use soroban_sdk::{contracttype, Address, String, BytesN, Env, xdr::ToXdr};
use soroban_sdk::{contracttype, Address, Bytes, String, BytesN, Env, xdr::ToXdr};

pub fn hash_address(env: &Env, address: &Address) -> BytesN<32> {
env.crypto().sha256(&address.to_xdr(env)).into()
}

/// Compute a deterministic token_id as the first 8 bytes (big-endian u64) of:
/// SHA-256(patient_xdr || vaccine_name_bytes || date_bytes || issuer_xdr || ledger_sequence_be)
///
/// Inputs:
/// - patient: XDR-encoded patient Address
/// - vaccine_name: raw UTF-8 bytes of the vaccine name
/// - date_administered: raw UTF-8 bytes of the date string
/// - issuer: XDR-encoded issuer Address
/// - ledger_sequence: current ledger sequence number (u32, big-endian 4 bytes)
pub fn compute_token_id(
env: &Env,
patient: &Address,
vaccine_name: &String,
date_administered: &String,
issuer: &Address,
ledger_sequence: u32,
) -> u64 {
let mut preimage = Bytes::new(env);

// patient address (XDR-encoded)
preimage.append(&patient.to_xdr(env));

// vaccine_name (XDR-encoded soroban String)
preimage.append(&vaccine_name.clone().to_xdr(env));

// date_administered (XDR-encoded soroban String)
preimage.append(&date_administered.clone().to_xdr(env));

// issuer address (XDR-encoded)
preimage.append(&issuer.to_xdr(env));

// ledger_sequence as big-endian 4 bytes
let seq_bytes = [
((ledger_sequence >> 24) & 0xff) as u8,
((ledger_sequence >> 16) & 0xff) as u8,
((ledger_sequence >> 8) & 0xff) as u8,
(ledger_sequence & 0xff) as u8,
];
let mut seq_buf = Bytes::new(env);
for b in seq_bytes {
seq_buf.push_back(b);
}
preimage.append(&seq_buf);

let digest: BytesN<32> = env.crypto().sha256(&preimage).into();

// Take first 8 bytes as big-endian u64
let b0 = digest.get(0).unwrap() as u64;
let b1 = digest.get(1).unwrap() as u64;
let b2 = digest.get(2).unwrap() as u64;
let b3 = digest.get(3).unwrap() as u64;
let b4 = digest.get(4).unwrap() as u64;
let b5 = digest.get(5).unwrap() as u64;
let b6 = digest.get(6).unwrap() as u64;
let b7 = digest.get(7).unwrap() as u64;

(b0 << 56) | (b1 << 48) | (b2 << 40) | (b3 << 32)
| (b4 << 24) | (b5 << 16) | (b6 << 8) | b7
}


#[contracttype]
#[derive(Clone)]
pub struct VaccinationRecord {
Expand Down Expand Up @@ -35,6 +96,5 @@ pub enum DataKey {
Issuer(Address),
PatientTokens(Address),
Token(u64),
NextTokenId,
Revoked(u64),
}
Loading
Loading