synapsecns · trajan0x · May 9, 2024 · May 3, 2024 · May 4, 2024 · May 4, 2024
@@ -16,6 +16,7 @@
 	"github.com/ethereum/go-ethereum/common"
 	"github.com/ethereum/go-ethereum/crypto"
 	"github.com/gin-gonic/gin"
+	"github.com/jellydator/ttlcache/v3"
 	"github.com/synapsecns/sanguine/core/metrics"
 	baseServer "github.com/synapsecns/sanguine/core/server"
 	omniClient "github.com/synapsecns/sanguine/services/omnirpc/client"
@@ -35,6 +36,7 @@
 	omnirpcClient       omniClient.RPCClient
 	handler             metrics.Handler
 	fastBridgeContracts map[uint32]*fastbridge.FastBridge
+	roleCache           map[uint32]*ttlcache.Cache[string, bool]
 }
 
 // NewAPI holds the configuration, database connection, gin engine, RPC client, metrics handler, and fast bridge contracts.
@@ -62,6 +64,7 @@
 	docs.SwaggerInfo.Title = "RFQ Quoter API"
 
 	bridges := make(map[uint32]*fastbridge.FastBridge)
+	roles := make(map[uint32]*ttlcache.Cache[string, bool])
 	for chainID, bridge := range cfg.Bridges {
 		chainClient, err := omniRPCClient.GetChainClient(ctx, int(chainID))
 		if err != nil {
@@ -71,6 +74,18 @@
 		if err != nil {
 			return nil, fmt.Errorf("could not create bridge contract: %w", err)
 		}
+
+		// create the roles cache
+		roles[chainID] = ttlcache.New[string, bool](
+			ttlcache.WithTTL[string, bool](cacheInterval),
+		)
+		roleCache := roles[chainID]
+
+		roleCache.Start()
+		go func() {
+			<-ctx.Done()
+			roleCache.Stop()
+		}()
 	}
 
 	return &QuoterAPIServer{
@@ -79,12 +94,14 @@
 		omnirpcClient:       omniRPCClient,
 		handler:             handler,
 		fastBridgeContracts: bridges,
+		roleCache:           roles,
 	}, nil
 }
 
 // QuoteRoute is the API endpoint for handling quote related requests.
 const (
-	QuoteRoute = "/quotes"
+	QuoteRoute    = "/quotes"
+	cacheInterval = time.Minute
 )
 
 var logger = log.Logger("rfq-api")
@@ -145,15 +162,23 @@
 			return
 		}
 
-		has, err := bridge.HasRole(ops, relayerRole, addressRecovered)
-		if err != nil {
-			c.JSON(http.StatusBadRequest, gin.H{"msg": "unable to check relayer role on-chain"})
-			c.Abort()
-			return
-		} else if !has {
-			c.JSON(http.StatusBadRequest, gin.H{"msg": "q.Relayer not an on-chain relayer"})
-			c.Abort()
-			return
+		hasRole := r.roleCache[uint32(req.DestChainID)].Get(addressRecovered.Hex())
+
+		if hasRole == nil || hasRole.IsExpired() {
+			has, err := bridge.HasRole(ops, relayerRole, addressRecovered)
+			if err == nil {
+				r.roleCache[uint32(req.DestChainID)].Set(addressRecovered.Hex(), has, cacheInterval)
+			}
+
+			if err != nil {
+				c.JSON(http.StatusBadRequest, gin.H{"msg": "unable to check relayer role on-chain"})
+				c.Abort()
+				return
+			} else if !has {
+				c.JSON(http.StatusBadRequest, gin.H{"msg": "q.Relayer not an on-chain relayer"})
+				c.Abort()
+				return
+			}
-		hasRole := r.roleCache[uint32(req.DestChainID)].Get(addressRecovered.Hex())
-
-		if hasRole == nil || hasRole.IsExpired() {
-			has, err := bridge.HasRole(ops, relayerRole, addressRecovered)
-			if err == nil {
-				r.roleCache[uint32(req.DestChainID)].Set(addressRecovered.Hex(), has, cacheInterval)
-			}
-
-			if err != nil {
-				c.JSON(http.StatusBadRequest, gin.H{"msg": "unable to check relayer role on-chain"})
-				c.Abort()
-				return
-			} else if !has {
-				c.JSON(http.StatusBadRequest, gin.H{"msg": "q.Relayer not an on-chain relayer"})
-				c.Abort()
-				return
-			}
+		// Simplified role checking logic
+		addressHex := addressRecovered.Hex()
+		hasRole, found := r.roleCache[uint32(req.DestChainID)].Get(addressHex)
+		if !found || hasRole.IsExpired() {
+			has, err := bridge.HasRole(ops, relayerRole, addressRecovered)
+			if err != nil {
+				c.JSON(http.StatusBadRequest, gin.H{"msg": "unable to check relayer role on-chain: " + err.Error()})
+				c.Abort()
+				return
+			}
+			r.roleCache[uint32(req.DestChainID)].Set(addressHex, has, cacheInterval)
+			if !has {
+				c.JSON(http.StatusBadRequest, gin.H{"msg": "Relayer not authorized on-chain"})
+				c.Abort()
+				return
+			}
+		}
-		hasRole := r.roleCache[uint32(req.DestChainID)].Get(addressRecovered.Hex())
-
-		if hasRole == nil || hasRole.IsExpired() {
-			has, err := bridge.HasRole(ops, relayerRole, addressRecovered)
-			if err == nil {
-				r.roleCache[uint32(req.DestChainID)].Set(addressRecovered.Hex(), has, cacheInterval)
-			}
-
-			if err != nil {
-				c.JSON(http.StatusBadRequest, gin.H{"msg": "unable to check relayer role on-chain"})
-				c.Abort()
-				return
-			} else if !has {
-				c.JSON(http.StatusBadRequest, gin.H{"msg": "q.Relayer not an on-chain relayer"})
-				c.Abort()
-				return
-			}
+		// Simplified role checking logic
+		addressHex := addressRecovered.Hex()
+		hasRole, found := r.roleCache[uint32(req.DestChainID)].Get(addressHex)
+		if !found || hasRole.IsExpired() {
+			has, err := bridge.HasRole(ops, relayerRole, addressRecovered)
+			if err != nil {
+				c.JSON(http.StatusBadRequest, gin.H{"msg": "unable to check relayer role on-chain: " + err.Error()})
+				c.Abort()
+				return
+			}
+			r.roleCache[uint32(req.DestChainID)].Set(addressHex, has, cacheInterval)
+			if !has {
+				c.JSON(http.StatusBadRequest, gin.H{"msg": "Relayer not authorized on-chain"})
+				c.Abort()
+				return
+			}
+		}
 		}
 
 		// Log and pass to the next middleware if authentication succeeds