narval-xyz · Ptroger · May 2, 2024 · May 1, 2024 · May 2, 2024 · May 2, 2024
diff --git a/apps/policy-engine/src/engine/http/rest/controller/evaluation.controller.ts b/apps/policy-engine/src/engine/http/rest/controller/evaluation.controller.ts
@@ -1,8 +1,10 @@
+import { SerializedEvaluationResponse } from '@narval/policy-engine-shared'
 import { Body, Controller, HttpCode, HttpStatus, Post, UseGuards } from '@nestjs/common'
 import { ClientId } from '../../../../shared/decorator/client-id.decorator'
 import { ClientSecretGuard } from '../../../../shared/guard/client-secret.guard'
 import { EvaluationService } from '../../../core/service/evaluation.service'
 import { EvaluationRequestDto } from '../dto/evaluation-request.dto'
+import { SerializedEvaluationResponseDto } from '../dto/serialized-evaluation-response.dto'
 
 @Controller('/evaluations')
 @UseGuards(ClientSecretGuard)
@@ -11,7 +13,12 @@ export class EvaluationController {
 
   @Post()
   @HttpCode(HttpStatus.OK)
-  async evaluate(@ClientId() clientId: string, @Body() body: EvaluationRequestDto) {
-    return this.evaluationService.evaluate(clientId, body)
+  async evaluate(
+    @ClientId() clientId: string,
+    @Body() body: EvaluationRequestDto
+  ): Promise<SerializedEvaluationResponseDto> {
+    return this.evaluationService.evaluate(clientId, body).then((response) => {
+      return SerializedEvaluationResponse.parse(response)
+    })
 const withGlobalPipes = (app: INestApplication): INestApplication => { 
   app.useGlobalPipes(new ValidationPipe({ transform: true })) 
   return app 
 } 
 const withGlobalPipes = (app: INestApplication): INestApplication => { 
   app.useGlobalPipes(new ValidationPipe({ transform: true })) 
  
   return app 
 } 
   }
 }
diff --git a/apps/policy-engine/src/engine/http/rest/dto/serialized-evaluation-response.dto.ts b/apps/policy-engine/src/engine/http/rest/dto/serialized-evaluation-response.dto.ts
@@ -0,0 +1,4 @@
+import { SerializedEvaluationResponse } from '@narval/policy-engine-shared'
+import { createZodDto } from 'nestjs-zod'
+
+export class SerializedEvaluationResponseDto extends createZodDto(SerializedEvaluationResponse) {}
diff --git a/apps/policy-engine/src/open-policy-agent/core/type/open-policy-agent.type.ts b/apps/policy-engine/src/open-policy-agent/core/type/open-policy-agent.type.ts
@@ -5,7 +5,7 @@ import {
   Address,
   CredentialEntity,
   Feed,
-  TransactionRequest,
+  SerializedTransactionRequest,
   UserRole
 } from '@narval/policy-engine-shared'
 import { Intent } from '@narval/transaction-request-intent'
@@ -20,7 +20,7 @@ export type OpenPolicyAgentInstance = PromiseType<ReturnType<typeof loadPolicy>>
 export type Input = {
   action: Action
   intent?: Intent
-  transactionRequest?: TransactionRequest
+  transactionRequest?: SerializedTransactionRequest
   principal: CredentialEntity
   resource?: { uid: string }
   approvals?: CredentialEntity[]

diff --git a/apps/policy-engine/src/open-policy-agent/core/util/evaluation.util.ts b/apps/policy-engine/src/open-policy-agent/core/util/evaluation.util.ts
@@ -5,6 +5,7 @@ import {
   EvaluationRequest,
   Feed,
   Request,
+  SerializedTransactionRequest,
   SignMessageAction,
   SignRawAction,
   SignTransactionAction,
@@ -37,7 +38,7 @@ const toSignTransaction: Mapping<SignTransactionAction> = (request, principal, a
       principal,
       approvals,
       intent: result.intent,
-      transactionRequest: request.transactionRequest,
+      transactionRequest: SerializedTransactionRequest.parse(request.transactionRequest),
       resource: { uid: request.resourceId },
       feeds
     }

@@ -42,6 +42,13 @@ export const TransactionRequest = z.object({
 })
 export type TransactionRequest = z.infer<typeof TransactionRequest>
 
+export const SerializedTransactionRequest = TransactionRequest.extend({
+  gas: z.coerce.string().optional(),
+  maxFeePerGas: z.coerce.string().optional(),
+  maxPriorityFeePerGas: z.coerce.string().optional()
+})
+export type SerializedTransactionRequest = z.infer<typeof SerializedTransactionRequest>
+
 export const Eip712Domain = z.object({
   name: z.string().optional(),
   version: z.string().optional(),
@@ -76,6 +83,11 @@ export const SignTransactionAction = BaseAction.merge(
 )
 export type SignTransactionAction = z.infer<typeof SignTransactionAction>
 
+export const SerializedTransactionAction = SignTransactionAction.extend({
+  transactionRequest: SerializedTransactionRequest
+})
+export type SerializedTransactionAction = z.infer<typeof SerializedTransactionAction>
+
 // Matching viem's SignableMessage options
 // See https://viem.sh/docs/actions/wallet/signMessage#message
 export const SignableMessage = z.union([

@@ -1,6 +1,12 @@
 import { ZodTypeAny, z } from 'zod'
 import { AccountId } from '../util/caip.util'
-import { SignMessageAction, SignRawAction, SignTransactionAction, SignTypedDataAction } from './action.type'
+import {
+  SerializedTransactionAction,
+  SignMessageAction,
+  SignRawAction,
+  SignTransactionAction,
+  SignTypedDataAction
+} from './action.type'
 
 export enum Decision {
   PERMIT = 'Permit',
@@ -92,6 +98,14 @@ export const Request = z.discriminatedUnion('action', [
 ])
 export type Request = z.infer<typeof Request>
 
+export const SerializedRequest = z.discriminatedUnion('action', [
+  SerializedTransactionAction,
+  SignMessageAction,
+  SignTypedDataAction,
+  SignRawAction
+])
+export type SerializedRequest = z.infer<typeof SerializedRequest>
+
 export const Feed = <Data extends ZodTypeAny>(dataSchema: Data) =>
   z.object({
     source: z.string(),
@@ -137,6 +151,11 @@ export const EvaluationRequest = z
   .describe('The action being authorized')
 export type EvaluationRequest = z.infer<typeof EvaluationRequest>
 
+export const SerializedEvaluationRequest = EvaluationRequest.extend({
+  request: SerializedRequest
+})
+export type SerializedEvaluationRequest = z.infer<typeof SerializedEvaluationRequest>
+
 export const ApprovalRequirement = z.object({
   approvalCount: z.number().min(0),
   approvalEntityType: z.nativeEnum(EntityType).describe('The number of requried approvals'),
@@ -145,22 +164,30 @@ export const ApprovalRequirement = z.object({
 })
 export type ApprovalRequirement = z.infer<typeof ApprovalRequirement>
 
-export type AccessToken = {
-  value: string // JWT
-  // could include a key-proof
-}
+export const AccessToken = z.object({
+  value: JwtString
+})
+export type AccessToken = z.infer<typeof AccessToken>
+
+export const EvaluationResponse = z.object({
+  decision: z.nativeEnum(Decision),
+  request: Request.optional(),
+  approvals: z
+    .object({
+      required: z.array(ApprovalRequirement).optional(),
+      missing: z.array(ApprovalRequirement).optional(),
+      satisfied: z.array(ApprovalRequirement).optional()
+    })
+    .optional(),
+  accessToken: AccessToken.optional(),
+  transactionRequestIntent: z.unknown().optional()
+})
+export type EvaluationResponse = z.infer<typeof EvaluationResponse>
 
-export type EvaluationResponse = {
-  decision: Decision
-  request?: Request
-  approvals?: {
-    required: ApprovalRequirement[]
-    missing: ApprovalRequirement[]
-    satisfied: ApprovalRequirement[]
-  }
-  accessToken?: AccessToken
-  transactionRequestIntent?: unknown
-}
+export const SerializedEvaluationResponse = EvaluationResponse.extend({
+  request: SerializedRequest.optional()
+})
+export type SerializedEvaluationResponse = z.infer<typeof SerializedEvaluationResponse>
 
 export type Hex = `0x${string}`