Withdraw Instruction #15
Conversation
There was a problem hiding this comment.
Thank you for changing my account validation helpers to assert_msgs. General flow and logic of the instructions is on the right track. Nice one-liner for check_writable, rust 🤟 🦀
Some feedback:
- looks like you have a merge conflict still in
.gitignore - see Withdraw Instruction #15, i added a note about adding the payer subscription token account (need to check if the person withdrawing from deposit vault is the rightful owner of the subscription - i do a similar check in renew if you wanna see an example) - then also once you do this don't forget to update
instruction.rsto reflect new account - to address your note - you should be just fine letting the token program deal with verifying sufficient amount
- signer/owner of the deposit vault is actually the subscription metadata account - so in your instruction definition as well as the third account passed into the
invoke_signedsecond parameter, the account will be yourctx.subscription_metadata_ai- means you'll also have to change the seeds to match that- when you actually look at the seeds, one of the seeds will be
count, which atm you'll have to make the client pass in as an instruction parameter like i do in renew - i'm going to make a PR in like an hour or so where thiscountis stored in the subscription metadata so you can write your code as if thatcountparam is stored in the subscription metadata
- when you actually look at the seeds, one of the seeds will be
Great work so far and mad respect for taking the initiative to do some programming over break! As always, questions are welcome - just dm on discord
There was a problem hiding this comment.
I know we talked yesterday but wanted to give more formal feedback:
- The deposit vault is an associated token account (it's own PDA owned by the token program) of the subscription metadata PDA account, this means the token program requires a signature from this account in order to "authorize" a transfer. You already know to provide a signature for a PDA, you provide the seeds of that PDA to
invoke_signed. The seeds for the subscription metadata PDA should be as follows
let subscription_seeds = &[
b"subscription_metadata",
payee.as_ref(),
&amount.to_le_bytes(),
&duration.to_le_bytes(),
&count.to_le_bytes(),
&[subscription_bump],
];
Other than that, from what we talked about over discord it seems like you've got everything for account validation (mainly validating signer/writable privileges, PDAs, checking token accounts' data if they're initialized (can use check_ata_initialized)), and then it's really just checking if the person withdrawing owns a token from the mint specified in the sub metadata.
|
payer token account ( beautiful verification of the PDAs and token account owners second assert is checking wrong mint, deposit vault is just whatever token the subscription is being paid in, i.e. This is checking if the user owns a token of the subscription mint, i.e. that they own the subscription, just to clarify. Everything else is perfect. |
There was a problem hiding this comment.
Made a couple swaps/reformatting things and renamed some things for clarity. Should be all good now.
Gonna wait until withdraw test script is done to merge this branch into master to ensure it's functioning properly - you (or whoever makes withdraw test script) can create a branch off of this one, merge that one into this branch, then merge this branch into main.
Closes #6