package abac import ( "encoding/base64" "encoding/json" "fmt" "github.com/hyperledger/fabric-contract-api-go/contractapi" ) // SmartContract provides functions for managing an Asset type SmartContract struct { contractapi.Contract } // Asset describes basic details of what makes up a simple asset type Asset struct { ID string `json:"ID"` Color string `json:"color"` Size int `json:"size"` Owner string `json:"owner"` AppraisedValue int `json:"appraisedValue"` } // CreateAsset issues a new asset to the world state with given details. func (s *SmartContract) CreateAsset(ctx contractapi.TransactionContextInterface, id string, color string, size int, appraisedValue int) error { // Demonstrate the use of Attribute-Based Access Control (ABAC) by checking // to see if the caller has the "abac.creator" attribute with a value of true; // if not, return an error. // err := ctx.GetClientIdentity().AssertAttributeValue("abac.creator", "true") if err != nil { return fmt.Errorf("submitting client not authorized to create asset, does not have abac.creator role") } exists, err := s.AssetExists(ctx, id) if err != nil { return err } if exists { return fmt.Errorf("the asset %s already exists", id) } // Get ID of submitting client identity clientID, err := s.GetSubmittingClientIdentity(ctx) if err != nil { return err } asset := Asset{ ID: id, Color: color, Size: size, Owner: clientID, AppraisedValue: appraisedValue, } assetJSON, err := json.Marshal(asset) if err != nil { return err } return ctx.GetStub().PutState(id, assetJSON) } // UpdateAsset updates an existing asset in the world state with provided parameters. func (s *SmartContract) UpdateAsset(ctx contractapi.TransactionContextInterface, id string, newColor string, newSize int, newValue int) error { asset, err := s.ReadAsset(ctx, id) if err != nil { return err } clientID, err := s.GetSubmittingClientIdentity(ctx) if err != nil { return err } if clientID != asset.Owner { return fmt.Errorf("submitting client not authorized to update asset, does not own asset") } asset.Color = newColor asset.Size = newSize asset.AppraisedValue = newValue assetJSON, err := json.Marshal(asset) if err != nil { return err } return ctx.GetStub().PutState(id, assetJSON) } // DeleteAsset deletes a given asset from the world state. func (s *SmartContract) DeleteAsset(ctx contractapi.TransactionContextInterface, id string) error { asset, err := s.ReadAsset(ctx, id) if err != nil { return err } clientID, err := s.GetSubmittingClientIdentity(ctx) if err != nil { return err } if clientID != asset.Owner { return fmt.Errorf("submitting client not authorized to update asset, does not own asset") } return ctx.GetStub().DelState(id) } // TransferAsset updates the owner field of asset with given id in world state. func (s *SmartContract) TransferAsset(ctx contractapi.TransactionContextInterface, id string, newOwner string) error { asset, err := s.ReadAsset(ctx, id) if err != nil { return err } clientID, err := s.GetSubmittingClientIdentity(ctx) if err != nil { return err } if clientID != asset.Owner { return fmt.Errorf("submitting client not authorized to update asset, does not own asset") } asset.Owner = newOwner assetJSON, err := json.Marshal(asset) if err != nil { return err } return ctx.GetStub().PutState(id, assetJSON) } // ReadAsset returns the asset stored in the world state with given id. func (s *SmartContract) ReadAsset(ctx contractapi.TransactionContextInterface, id string) (*Asset, error) { assetJSON, err := ctx.GetStub().GetState(id) if err != nil { return nil, fmt.Errorf("failed to read from world state: %v", err) } if assetJSON == nil { return nil, fmt.Errorf("the asset %s does not exist", id) } var asset Asset err = json.Unmarshal(assetJSON, &asset) if err != nil { return nil, err } return &asset, nil } // GetAllAssets returns all assets found in world state func (s *SmartContract) GetAllAssets(ctx contractapi.TransactionContextInterface) ([]*Asset, error) { // range query with empty string for startKey and endKey does an // open-ended query of all assets in the chaincode namespace. resultsIterator, err := ctx.GetStub().GetStateByRange("", "") if err != nil { return nil, err } defer resultsIterator.Close() var assets []*Asset for resultsIterator.HasNext() { queryResponse, err := resultsIterator.Next() if err != nil { return nil, err } var asset Asset err = json.Unmarshal(queryResponse.Value, &asset) if err != nil { return nil, err } assets = append(assets, &asset) } return assets, nil } // AssetExists returns true when asset with given ID exists in world state func (s *SmartContract) AssetExists(ctx contractapi.TransactionContextInterface, id string) (bool, error) { assetJSON, err := ctx.GetStub().GetState(id) if err != nil { return false, fmt.Errorf("failed to read from world state: %v", err) } return assetJSON != nil, nil } // GetSubmittingClientIdentity returns the name and issuer of the identity that // invokes the smart contract. This function base64 decodes the identity string // before returning the value to the client or smart contract. func (s *SmartContract) GetSubmittingClientIdentity(ctx contractapi.TransactionContextInterface) (string, error) { b64ID, err := ctx.GetClientIdentity().GetID() if err != nil { return "", fmt.Errorf("Failed to read clientID: %v", err) } decodeID, err := base64.StdEncoding.DecodeString(b64ID) if err != nil { return "", fmt.Errorf("failed to base64 decode clientID: %v", err) } return string(decodeID), nil }