-
Notifications
You must be signed in to change notification settings - Fork 295
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
feat(PXE): Querying contract private information from an app #2806
Comments
Thinking more about this, I believe that going through functions in the contract is nicer than reading private storage directly, since it lets the contract developer control what info is revealed to an app. In my mind, when a dapp wants to read your private state from a contract, it'd ask your wallet, and the wallet would ask you if you grant permission to the dapp. If we grant permission for calling view functions but not reading storage directly, a smart contract dev can for instance show the total balance of a user in a token contract, but not reveal to the dapp what is the note composition (which a not-privacy-friendly dapp frontend could use for tracking the user activity). |
To confirm, there are two tasks here:
|
Likely useful to have the storage layout from #5079. |
What's the best approach for querying private infromation from a contract? There are two main approaches: using
getPrivateStorageAt
vs calling an unconstrained function.Calling an unconstrained function seems like the best option, since it allows the contract dev to encapsulate logic to manipulate the notes before returning them. It also gets the storage layout and note deserialization logic from the contract, without having to reimplement all these in the app client code.
However, unconstrained functions are inherently slower than reading storage directly. And
get_notes
returns a maximum of 10 elements at a time, which makes sense when having to create a proof, but we could extend that limit when working unconstrained, so devs don't need to build pagination in on every getter.We could make storage definitions declarative, so they can be exported in the ABI, and have a standard way for serialising notes, so given their struct definition we can have the client code automatically deserialize them. This way, just with the ABI, an app could grab any set of notes on any storage slot.
Alternatively, we should make it easier to write getters that handle pagination, and allow constrained functions to be used as getters as well to remove code duplication (see #2665).
Raised by @0xShaito from Wonderland in Discord
The text was updated successfully, but these errors were encountered: