Decoupled projects: Contract changes #1912
Conversation
ghost
requested review from
ottodevs,
Quazia and
PeterMPhillips
and removed request for
a team
topocount
force-pushed
the
decoupled-projects
branch
5 times, most recently
from
14dd761
to
55d1768
Compare
|
Specification suggests that there should be a fuction to edit project as well as add/remove. Editing will involve only replacing ipfs hash saved in Probably a new right and event to emit need to be added as well - what do you think, @topocount ? Alternatively if it's too complicated for current timeline, maybe we leave it for now and not allow editing projects at all? |
topocount
force-pushed
the
decoupled-projects
branch
from
98c1d54
to
8ecd8c9
Compare
- add decentralized project entries - add and update issues directly without bounties - enable multi-fulfillment bounties BREAKING CHANGE: Projects contract updates
- `fulfillBounty` radspec message now shows up in external tx panel - remove extraneous logging from deploy script - remove unneeded functions from Bounties interface
topocount
force-pushed
the
decoupled-projects
branch
from
8ecd8c9
to
b48653b
Compare
Projects: improve querying behavior
There was a problem hiding this comment.
Changed base branch to merge, to properly see the exact changes going on here
Most of the contract and tests look fine for me, and they are passing. I am a bit concerned about opening potential security vectors, as we are not auditing this new code on this review.
Just some minor details to comment about:
It would be preferable to properly document each function that was added or changed
I would just take advantage of this work to keep the contract clean and audit-ready by properly documenting this new code.
I would also bet to improve the tests suite and make it more readable/ less error prone by making use of constants and avoiding magic numbers and text everywhere.
| @@ -319,12 +297,16 @@ contract Projects is AragonApp, DepositableStorage { | |||
| /** | |||
| * @notice Get an entry from the registry. | |||
| * @param _repoId The id of the repo in the projects registry | |||
| * @return index the repo registry index | |||
| * @return index the repo registry index, number of open bounties, decoupled bool, repo metadata | |||
There was a problem hiding this comment.
It is preferable to document @return params into separate lines each one
| @@ -357,20 +339,25 @@ contract Projects is AragonApp, DepositableStorage { | |||
| // Repository functions | |||
| /////////////////////// | |||
| /** | |||
| * @notice Add repository | |||
| * @notice Add new Project: `_projectData`. | |||
| * @param _repoId The id of the repo in the projects registry | |||
There was a problem hiding this comment.
We should document the rest of params as well
| string _data | ||
| ) external | ||
| { | ||
| revert(); |
There was a problem hiding this comment.
If we just want to display the radspec, why revert? Also this should be a pure function
There was a problem hiding this comment.
Revert will cause non 0 exit status and that maybe non gracefully handled by the frontend
There was a problem hiding this comment.
This function should never execute. It's just a workaround for getting the radspec showing up in the frontend. BY forcing it to revert, it effectively doesn't exist and is an invalid call on the contract
| repos[_repoId].repoData = _repoData; | ||
| if (!isRepoAdded(_repoId)) { | ||
| repoIndex[repoIndexLength] = _repoId; | ||
| repos[_repoId].index = repoIndexLength++; |
There was a problem hiding this comment.
Are we accounting on a potential overflow here?
| ) internal | ||
| { | ||
| // ensure the transvalue passed equals transaction value | ||
| //checkTransValueEqualsMessageValue(msg.value, _bountySizes,_tokenBounties); |
There was a problem hiding this comment.
Is this comment relevant anymore or just dead code? We should remove to avoid confusion
| event ContributionsRefunded(uint _bountyId, address _issuer, uint [] _contributionIds); | ||
| event BountyDrained(uint _bountyId, address _issuer, uint [] _amounts); | ||
| event ActionPerformed(uint _bountyId, address _fulfiller, string _data); | ||
| event BountyFulfilled(uint _bountyId, uint _fulfillmentId, address [] _fulfillers, string _data, address _submitter); |
There was a problem hiding this comment.
Some spacing between array brackets and types seem wrong with inconsistently 1 or 2 spaces, maybe we should try to be consistent about it, I vote for no spacing between type and brackets
| event BountyFulfilled(uint _bountyId, uint _fulfillmentId, address [] _fulfillers, string _data, address _submitter); | |
| event BountyFulfilled(uint _bountyId, uint _fulfillmentId, address[] _fulfillers, string _data, address _submitter); |
Some for the rest of lines on this block
| @@ -1,4 +1,4 @@ | |||
| /* global artifacts, assert, before, beforeEach, contract, context, expect, it, web3 */ | |||
| /* global artifacts, assert, before, beforeEach, contract, context, expect, it, web3, xit */ | |||
There was a problem hiding this comment.
xit should actually not need to be defined here, as tests should only be skipped during deployment
| 1, | ||
| 1, | ||
| true, | ||
| 'QmbUSy8HCn8J4TMDRRdxCbK2uCCtkQyZtY6XYv3y7kLgDl', |
There was a problem hiding this comment.
I would move most of these arbitrary magic values to constante to have a more manageable/less error prone test suite, but that's only a personal preference
| new web3.BigNumber(56), | ||
| new web3.BigNumber(15), | ||
| new web3.BigNumber(0), | ||
| '0xffffffffffffffffffffffffffffffffffffffff', |
There was a problem hiding this comment.
We should use ANY_ADDR (line 16) constant in places like here, otherwise, we define it at all?
| context('decoupled project', () => { | ||
| let repoId | ||
| beforeEach(async () => { | ||
| await app.setRepo('1', true, 'abc') |
There was a problem hiding this comment.
We should use real repo ids as in other test cases to avoid false negatives when repoId length does not find in the contract field
There was a problem hiding this comment.
Projects will be using integers for decoupled repoIds going forward. They'll still get hashed by the frontend before passing them in, but that's really just a messier magic number in the context of tests
We're working out of the https://github.com/AutarkLabs/open-enterprise/tree/decentralized-project-integration banch, and this branch has already been merged in there. I'll make your requested changes in there and redirect https://github.com/AutarkLabs/open-enterprise/tree/issue-querying to that branch as well. |
|
This branch has been merged into PR #1941. The review above has been addressed there |
Addresses #1875 and #1897
This PR adds functions to the projects contract for:
This PR also contains
isContractshould be sufficientNote