feat/policiesForRecords

[MaxBlaushild]

Implements policy constrained record appending and persistent record based policies.

Users now have the option to check against policies when appending data. These policies are stored, and again checked when user grants access for file to new users.

Also allows users to add and remove policies for their records.

[codecov-io]

Codecov Report

Merging #108 into master will decrease coverage by 1.84%.
The diff coverage is 87.75%.

@@            Coverage Diff             @@
##           master     #108      +/-   ##
==========================================
- Coverage    96.6%   94.75%   -1.85%     
==========================================
  Files           8        9       +1     
  Lines         206      248      +42     
  Branches       48       57       +9     
==========================================
+ Hits          199      235      +36     
- Misses          7       13       +6

Impacted Files	Coverage Δ
contracts/mock/PolicyMock.sol	100% <ø> (ø)
contracts/LinniaPermissions.sol	98.03% <100%> (-0.18%)	⬇️
contracts/LinniaHub.sol	95.45% <100%> (+1.33%)	⬆️
contracts/LinniaPolicies.sol	80% <80%> (ø)
contracts/LinniaRecords.sol	97.11% <90.9%> (-1.67%)	⬇️

---

Continue to review full report at Codecov.

Legend - Click here to learn more
Δ = absolute <relative> (impact), ø = not affected, ? = missing data
Powered by Codecov. Last update 9f2b1a5...ad50229. Read the comment docs.

[godfreyhobbs]

It would be good to check for the new event logs.

[MaxBlaushild]

The new event logs aren't available in the returned transaction logs. I test for them in the method that emits them though

[godfreyhobbs]

remove /* interface */

[godfreyhobbs]

I don't think this makes sense to have the policies in a different contract. If we update the new policy contract we will remove all of the records policies. This seems to be a security hole.

I think this all needs to be in the same contract until we have a way of migrating data when contracts are updated.

[godfreyhobbs]

consider naming PolicyMock

[godfreyhobbs]

consider adding the following to the 3_records_test.js and 5_records-token_test.js

  beforeEach('set up a LinniaPolicies contract', async () => {
    policiesInstance = await LinniaPolicies.new(hub.address);
    await hub.setPoliciesContract(policiesInstance.address);
  });
```

[godfreyhobbs]

I think this should be internal

[godfreyhobbs]

I think this should be internal

[MaxBlaushild]

Agreed. I'll change

[godfreyhobbs]

I think this should be internal

[MaxBlaushild]

People may want to reveal to people which policies their records and permissions can/will conform with from a UI. Keeping public also allows people to surface better error messages from the UI

[godfreyhobbs]

why not inline this method. Seems easier to be calling policiesAreValid directly rather than using this wrapper and spending gas.

[godfreyhobbs]

consider rewording:
an address of a contract that conforms to the policy interface to add

[godfreyhobbs]

I am not sure why this check is needed. Can you explain?

[godfreyhobbs]

A few things:

1. It would be good to revert if the policy has already been added.
2. Also would be good to check for address(0)
3. It would be good to check that this address conforms to the interface (not sure how todo this)

[godfreyhobbs]

consider reverting if nothing is deleted.

[godfreyhobbs]

consider saving policies[dataHash].length to local var. This may be doing the lookup for every loop.

[godfreyhobbs]

I would only return true if something was actually deleted.

[godfreyhobbs]

use the swap method here it will use much less gas.

[godfreyhobbs]

move return true here.

[godfreyhobbs]

Should this come after the policy check? Please add a comment on why this is first.

[godfreyhobbs]

comment suggest adding is after this but it is before.