Module (nplex=0x0)::registry

NPLEX Registry - Manages approval and validation of NPL package hashes

This contract provides the validation layer for the NPLEX platform. Only NPLEX admin can register and revoke package hashes. LTC1 contracts must validate against this registry before creation.

• Struct REGISTRY
• Struct NotarizationClaim
• Struct NPLEXAdminCap
• Struct ExecutorKey
• Struct NPLEXRegistry
• Struct NotarizationInfo
• Struct NotarizedTransfer
• Struct NotarizedSaleToggle
• Struct ApprovedIdentity
• Constants
• Function init
• Function register_notarization
  • Arguments
  • Aborts
• Function update_authorized_creator
• Function revoke_notarization
• Function unrevoke_notarization
• Function add_executor
• Function remove_executor
• Function bind_executor
• Function authorize_transfer
• Function authorize_sales_toggle
• Function approve_identity
• Function revoke_identity
• Function claim_notarization
  • Arguments
  • Returns
  • Aborts
• Function consume_transfer_ticket
• Function consume_sales_toggle_ticket
• Function verify_identity
• Function get_identity_role
• Function role_institution
• Function role_investor
• Function role_admin
• Function is_valid_notarization
• Function is_notarization_used
• Function is_notarization_revoked
• Function get_notarization_info
• Function notarization_document_hash
• Function notarization_contract_id
• Function notarization_is_revoked
• Function notarization_auditor
• Function notarization_approved_timestamp
• Function notarization_authorized_creator

use (iota_identity=0x0)::controller;
use (iota_identity=0x0)::permissions;
use (iota_notarization=0x0)::method;
use (iota_notarization=0x0)::notarization;
use (iota_notarization=0x0)::timelock;
use (nplex=0x0)::events;
use iota::address;
use iota::borrow;
use iota::clock;
use iota::display;
use iota::dynamic_field;
use iota::event;
use iota::hex;
use iota::object;
use iota::package;
use iota::table;
use iota::transfer;
use iota::tx_context;
use iota::types;
use iota::vec_map;
use std::address;
use std::ascii;
use std::bcs;
use std::option;
use std::string;
use std::type_name;
use std::vector;

Struct REGISTRY

One-Time Witness for the module. Has drop ability.

public struct REGISTRY has drop

Fields

Struct NotarizationClaim

Hot potato struct to ensure hash usage flow

public struct NotarizationClaim

Fields

notarization_id: iota::object::ID

document_hash: u256

Struct NPLEXAdminCap

Admin capability - only NPLEX holds this This is a “hot potato” pattern - whoever owns this can admin the registry

public struct NPLEXAdminCap has key, store

Fields

id: iota::object::UID

Struct ExecutorKey

Key for Authorized Executors (Dynamic Field)

public struct ExecutorKey<phantom T> has copy, drop, store

Fields

Struct NPLEXRegistry

Central registry of approved NPL package notarizations Shared object - anyone can read, only admin can mutate

public struct NPLEXRegistry has key

Fields

id: iota::object::UID

approved_notarizations: iota::table::Table<iota::object::ID, (nplex=0x0)::registry::NotarizationInfo>

Maps Notarization ID -> package information

authorized_transfers: iota::table::Table<iota::object::ID, (nplex=0x0)::registry::NotarizedTransfer>

Maps Bond ID -> Notarized transfer authorization

authorized_sales_toggles: iota::table::Table<iota::object::ID, (nplex=0x0)::registry::NotarizedSaleToggle>

Maps LTC1Package ID -> Notarized sales toggle authorization

approved_identities: iota::table::Table<iota::object::ID, (nplex=0x0)::registry::ApprovedIdentity>

Maps Identity object ID -> ApprovedIdentity (DID whitelist)

Struct NotarizationInfo

Information about an approved notarization (has store, copy, drop properties)

public struct NotarizationInfo has copy, drop, store

Fields

document_hash: u256

The document hash associated with this notarization (u256)

approved_timestamp: u64

When this hash was approved (u64)

auditor: address

Address that approved this hash (NPLEX auditor)

is_revoked: bool

Whether this hash has been revoked (bool)

contract_id: std::option::Option<iota::object::ID>

ID of LTC1 contract created with this notarization (None if not yet used)

authorized_creator: address

Only this address is authorized to create a contract with this notarization This is potentially useless if the notarization we use is not transferable Ideally the user creates it and it cannot be transfered, I am leaving this like this for now

Struct NotarizedTransfer

Notarized transfer authorization — ties a bond transfer to a specific notarization (has store, copy, drop properties)

public struct NotarizedTransfer has copy, drop, store

Fields

notarization_id: iota::object::ID

The notarization backing this transfer authorization: ID

new_owner: address

The authorized recipient of the bond: address

new_owner_identity: iota::object::ID

The DID Identity of the new owner explicitly approved by NPLEX Admin: ID

Struct NotarizedSaleToggle

Notarized sales toggle authorization — ties a sales state change to a specific notarization (has store, copy, drop properties)

public struct NotarizedSaleToggle has copy, drop, store

Fields

notarization_id: iota::object::ID

The notarization backing this sales toggle authorization: ID

target_state: bool

The target sales state (true = open, false = closed): bool

Struct ApprovedIdentity

Information about an approved DID identity The link between a user’s address and their DID Identity is proven at runtime via DelegationToken, never stored statically. The vc_data field holds the raw bytes of the W3C Verifiable Credential (typically JWT) that justified this approval — an immutable audit trail.

public struct ApprovedIdentity has copy, drop, store

Fields

role: u8

Bitmask role: 1 = Institution, 2 = Investor, 4 = Admin (combinable)

vc_data: vector<u8>

Pseudonymize has to happen by saving Identity information offchain reason being that people have the right to be deleted and forgotten which cannot happen on an immutable blockchain. in this data we should write something like { "Did_ID": "0x1234...abcd", "Issuer": "NPLEX", "Role": "Institution", "ApprovedAt": 1708900000 } Moreover when we have a NPLEX DID we should setup a RevocationBitmap2022 and use this in conjunction with the IOTA SDK to create credentials. This is optional put 0x0 if not used and use it only in the future if needed. (non-empty, VC audit trail)

Constants

Notarization is not registered in the registry or has been revoked

const E_NOTARIZATION_NOT_APPROVED: u64 = 1;

Notarization has already been used to create an LTC1 contract

const E_NOTARIZATION_ALREADY_USED: u64 = 2;

Notarization has been revoked by NPLEX

const E_NOTARIZATION_REVOKED: u64 = 3;

Executor module is not authorized to bind hashes

const E_UNAUTHORIZED_EXECUTOR: u64 = 4;

Bond transfer not authorized by NPLEX

const E_TRANSFER_NOT_AUTHORIZED: u64 = 5;

Creator is not authorized for this hash

const E_UNAUTHORIZED_CREATOR: u64 = 6;

Sales toggle not authorized by NPLEX

const E_SALES_TOGGLE_NOT_AUTHORIZED: u64 = 7;

Notarization not revoked

const E_NOTARIZATION_NOT_REVOKED: u64 = 8;

Notarization already revoked

const E_NOTARIZATION_ALREADY_REVOKED: u64 = 9;

Identity not approved in whitelist

const E_IDENTITY_NOT_APPROVED: u64 = 10;

Identity does not have required role

const E_IDENTITY_WRONG_ROLE: u64 = 11;

Invalid role value

const E_INVALID_ROLE: u64 = 12;

Authorized creator already set to this value

const E_AUTHORIZED_CREATOR_ALREADY_SET: u64 = 13;

Institution role (originators, servicers)

const ROLE_INSTITUTION: u8 = 1;

Investor role

const ROLE_INVESTOR: u8 = 2;

Admin role (NPLEX platform admin)

const ROLE_ADMIN: u8 = 4;

const DISPLAY_KEY_NAME: vector<u8> = vector[110, 97, 109, 101];

const DISPLAY_KEY_DESCRIPTION: vector<u8> = vector[100, 101, 115, 99, 114, 105, 112, 116, 105, 111, 110];

const DISPLAY_KEY_IMAGE_URL: vector<u8> = vector[105, 109, 97, 103, 101, 95, 117, 114, 108];

const DISPLAY_KEY_PROJECT_URL: vector<u8> = vector[112, 114, 111, 106, 101, 99, 116, 95, 117, 114, 108];

const ADMIN_DISPLAY_NAME: vector<u8> = vector[78, 80, 76, 69, 88, 32, 65, 100, 109, 105, 110, 105, 115, 116, 114, 97, 116, 111, 114, 32, 67, 97, 112, 97, 98, 105, 108, 105, 116, 121];

const ADMIN_DISPLAY_DESCRIPTION: vector<u8> = vector[71, 114, 97, 110, 116, 115, 32, 97, 100, 109, 105, 110, 105, 115, 116, 114, 97, 116, 105, 118, 101, 32, 99, 111, 110, 116, 114, 111, 108, 32, 111, 118, 101, 114, 32, 116, 104, 101, 32, 78, 80, 76, 69, 88, 32, 82, 101, 103, 105, 115, 116, 114, 121, 46];

const ADMIN_DISPLAY_IMAGE_URL: vector<u8> = vector[104, 116, 116, 112, 115, 58, 47, 47, 97, 112, 105, 46, 110, 112, 108, 101, 120, 46, 101, 117, 47, 105, 99, 111, 110, 115, 47, 97, 100, 109, 105, 110, 95, 99, 114, 111, 119, 110, 46, 112, 110, 103];

const ADMIN_DISPLAY_PROJECT_URL: vector<u8> = vector[104, 116, 116, 112, 115, 58, 47, 47, 110, 112, 108, 101, 120, 46, 101, 117];

Function init

Module initializer - called once when contract is published Creates the registry and gives admin capability to publisher

fun init(otw: (nplex=0x0)::registry::REGISTRY, ctx: &mut iota::tx_context::TxContext)

Implementation

fun init(otw: REGISTRY, ctx: &mut TxContext) {
    // 1. Claim Publisher
    let publisher = package::claim(otw, ctx);
    // Create Display for Admin Cap
    display_utils::setup_display! <NPLEXAdminCap> (
        &publisher,
        vector[
            std::string::utf8(DISPLAY_KEY_NAME),
            std::string::utf8(DISPLAY_KEY_DESCRIPTION),
            std::string::utf8(DISPLAY_KEY_IMAGE_URL),
            std::string::utf8(DISPLAY_KEY_PROJECT_URL),
        ],
        vector[
            std::string::utf8(ADMIN_DISPLAY_NAME),
            std::string::utf8(ADMIN_DISPLAY_DESCRIPTION),
            std::string::utf8(ADMIN_DISPLAY_IMAGE_URL),
            std::string::utf8(ADMIN_DISPLAY_PROJECT_URL),
        ],
        ctx
    );
    // 3. Create admin capability and send to deployer
    let admin_cap = NPLEXAdminCap {
        id: object::new(ctx),
    };
    transfer::transfer(admin_cap, tx_context::sender(ctx));
    // 4. Create shared registry
    let registry = NPLEXRegistry {
        id: object::new(ctx),
        approved_notarizations: table::new(ctx),
        authorized_transfers: table::new(ctx),
        authorized_sales_toggles: table::new(ctx),
        approved_identities: table::new(ctx),
    };
    transfer::share_object(registry);
    // 5. Cleanup
    transfer::public_transfer(publisher, tx_context::sender(ctx));
}

Function register_notarization

Register a new approved notarization in the registry

These are the documents which are used only for create_contract. Notarizations for other approvals are managed in other tables, not in approved_notarizations.

Note: We pass notarization_id and document_hash instead of the Notarization object because the locked Notarization object cannot be traded. The user must create it via SDK, have it audited off-chain, and then pass it to the create_contract function.

Arguments

• registry - The NPLEX Registry shared object.
• _admin_cap - The NPLEX Administrator Capability (authorization).
• notarization_id - The ID of the Notarization object created via SDK.
• document_hash - The u256 SHA256/Keccak hash of the off-chain PDF asset document.
• authorized_creator - The address allowed to consume this hash to create an LTC1.
• clock - The system clock for auditing timestamp.
• ctx - Transaction context.

Aborts

• E_NOTARIZATION_ALREADY_USED - If the notarization_id is already registered.

public entry fun register_notarization(registry: &mut (nplex=0x0)::registry::NPLEXRegistry, _admin_cap: &(nplex=0x0)::registry::NPLEXAdminCap, notarization_id: iota::object::ID, document_hash: u256, authorized_creator: address, clock: &iota::clock::Clock, ctx: &mut iota::tx_context::TxContext)

Implementation

public entry fun register_notarization(
    registry: &mut NPLEXRegistry,
    _admin_cap: &NPLEXAdminCap,
    notarization_id: ID,
    document_hash: u256,
    authorized_creator: address,
    clock: &Clock,
    ctx: &mut TxContext
) {
    assert!(!table::contains(&registry.approved_notarizations, notarization_id), E_NOTARIZATION_ALREADY_USED);
    let notarization_info = NotarizationInfo {
        document_hash,
        approved_timestamp: clock::timestamp_ms(clock),
        auditor: tx_context::sender(ctx),
        is_revoked: false,
        contract_id: option::none(),
        authorized_creator,
    };
    table::add(&mut registry.approved_notarizations, notarization_id, notarization_info);
    events::emit_notarization_registered(
        notarization_id,
        document_hash,
        authorized_creator,
        tx_context::sender(ctx),
        clock::timestamp_ms(clock),
    );
}

Function update_authorized_creator

Update the authorized creator for a registered notarization

public entry fun update_authorized_creator(registry: &mut (nplex=0x0)::registry::NPLEXRegistry, _admin_cap: &(nplex=0x0)::registry::NPLEXAdminCap, notarization_id: iota::object::ID, new_creator: address, backing_notarization: &(iota_notarization=0x0)::notarization::Notarization<u256>)

Implementation

public entry fun update_authorized_creator(
    registry: &mut NPLEXRegistry,
    _admin_cap: &NPLEXAdminCap,
    notarization_id: ID,
    new_creator: address,
    backing_notarization: &Notarization<u256>,
) {
    let backing_notarization_id = object::id(backing_notarization);
    assert!(table::contains(&registry.approved_notarizations, notarization_id), E_NOTARIZATION_NOT_APPROVED);
    let hash_info = table::borrow_mut(&mut registry.approved_notarizations, notarization_id);
    assert!(option::is_none(&hash_info.contract_id), E_NOTARIZATION_ALREADY_USED);
    assert!(hash_info.authorized_creator != new_creator, E_AUTHORIZED_CREATOR_ALREADY_SET);
    hash_info.authorized_creator = new_creator;
    events::emit_authorized_creator_updated(notarization_id, new_creator, backing_notarization_id);
}

Function revoke_notarization

Revoke a previously approved notarization

public entry fun revoke_notarization(registry: &mut (nplex=0x0)::registry::NPLEXRegistry, _admin_cap: &(nplex=0x0)::registry::NPLEXAdminCap, notarization_id: iota::object::ID, backing_notarization: &(iota_notarization=0x0)::notarization::Notarization<u256>)

Implementation

public entry fun revoke_notarization(
    registry: &mut NPLEXRegistry,
    _admin_cap: &NPLEXAdminCap,
    notarization_id: ID,
    backing_notarization: &Notarization<u256>,
) {
    let backing_notarization_id = object::id(backing_notarization);
    assert!(table::contains(&registry.approved_notarizations, notarization_id), E_NOTARIZATION_NOT_APPROVED);
    let hash_info = table::borrow_mut(&mut registry.approved_notarizations, notarization_id);
    assert!(!hash_info.is_revoked, E_NOTARIZATION_ALREADY_REVOKED);
    hash_info.is_revoked = true;
    events::emit_notarization_revoked(notarization_id, backing_notarization_id);
}

Function unrevoke_notarization

Un-revoke a notarization

public entry fun unrevoke_notarization(registry: &mut (nplex=0x0)::registry::NPLEXRegistry, _admin_cap: &(nplex=0x0)::registry::NPLEXAdminCap, notarization_id: iota::object::ID, backing_notarization: &(iota_notarization=0x0)::notarization::Notarization<u256>)

Implementation

public entry fun unrevoke_notarization(
    registry: &mut NPLEXRegistry,
    _admin_cap: &NPLEXAdminCap,
    notarization_id: ID,
    backing_notarization: &Notarization<u256>,
) {
    let backing_notarization_id = object::id(backing_notarization);
    assert!(table::contains(&registry.approved_notarizations, notarization_id), E_NOTARIZATION_NOT_APPROVED);
    let hash_info = table::borrow_mut(&mut registry.approved_notarizations, notarization_id);
    assert!(hash_info.is_revoked, E_NOTARIZATION_NOT_REVOKED);
    hash_info.is_revoked = false;
    events::emit_notarization_unrevoked(notarization_id, backing_notarization_id);
}

Function add_executor

Add an allowed executor module Invariant: only callable by NPLEX admin

public entry fun add_executor<T>(registry: &mut (nplex=0x0)::registry::NPLEXRegistry, _admin_cap: &(nplex=0x0)::registry::NPLEXAdminCap)

Implementation

public entry fun add_executor<T>(
    registry: &mut NPLEXRegistry,
    _admin_cap: &NPLEXAdminCap,
) {
    if (!df::exists_(&registry.id, ExecutorKey<T> {})) {
        df::add(&mut registry.id, ExecutorKey<T> {}, true);
        events::emit_executor_added(std::type_name::get<T>().into_string());
    };
}

Function remove_executor

Remove an allowed executor module Invariant: only callable by NPLEX admin

public entry fun remove_executor<T>(registry: &mut (nplex=0x0)::registry::NPLEXRegistry, _admin_cap: &(nplex=0x0)::registry::NPLEXAdminCap)

Implementation

public entry fun remove_executor<T>(
    registry: &mut NPLEXRegistry,
    _admin_cap: &NPLEXAdminCap,
) {
    if (df::exists_(&registry.id, ExecutorKey<T> {})) {
        let _: bool = df::remove(&mut registry.id, ExecutorKey<T> {});
        events::emit_executor_removed(std::type_name::get<T>().into_string());
    };
}

Function bind_executor

Finalize hash usage by binding it to an LTC1 contract ID

public fun bind_executor<T: drop>(registry: &mut (nplex=0x0)::registry::NPLEXRegistry, claim: (nplex=0x0)::registry::NotarizationClaim, new_contract_id: iota::object::ID, _witness: T)

Implementation

public fun bind_executor<T: drop>(
    registry: &mut NPLEXRegistry,
    claim: NotarizationClaim,
    new_contract_id: ID,
    _witness: T
) {
    // Verify witness type is allowed
    assert!(df::exists_(&registry.id, ExecutorKey<T> {}), E_UNAUTHORIZED_EXECUTOR);
    let NotarizationClaim { notarization_id, document_hash: _ } = claim;
    let notarization_info = table::borrow_mut(&mut registry.approved_notarizations, notarization_id);
    // Double check
    assert!(std::option::is_none(&notarization_info.contract_id), E_NOTARIZATION_ALREADY_USED);
    // Mark as used
    std::option::fill(&mut notarization_info.contract_id, new_contract_id);
}

Function authorize_transfer

Authorize an Ownership Transfer for a specific contract If there is already an authorized transfer, it will be revoked. Invariant: only callable by NPLEX admin

public entry fun authorize_transfer(registry: &mut (nplex=0x0)::registry::NPLEXRegistry, _admin_cap: &(nplex=0x0)::registry::NPLEXAdminCap, contract_id: iota::object::ID, new_owner: address, identity_id: iota::object::ID, notarization_id: iota::object::ID)

Implementation

public entry fun authorize_transfer(
    registry: &mut NPLEXRegistry,
    _admin_cap: &NPLEXAdminCap,
    contract_id: ID,
    new_owner: address,
    identity_id: ID, // The Identity that `new_owner` represents
    notarization_id: ID
) {
    // 1. Verify Identity exists
    assert!(table::contains(&registry.approved_identities, identity_id), E_IDENTITY_NOT_APPROVED);
    let identity = table::borrow(&registry.approved_identities, identity_id);
    // 2. Verify Role (Must be Institution to own a package)
    assert!(identity.role & ROLE_INSTITUTION != 0, E_IDENTITY_WRONG_ROLE);
    if (table::contains(&registry.authorized_transfers, contract_id)) {
        table::remove(&mut registry.authorized_transfers, contract_id);
        events::emit_transfer_revoked(contract_id, notarization_id);
    };
    table::add(&mut registry.authorized_transfers, contract_id, NotarizedTransfer {
        notarization_id,
        new_owner,
        new_owner_identity: identity_id,
    });
    events::emit_transfer_authorized(contract_id, new_owner, notarization_id);
}

Function authorize_sales_toggle

Authorize a Sales Toggle for a specific contract If there is already an authorized sales toggle, it will be revoked. Invariant: only callable by NPLEX admin new_state: true = open sales, false = close sales

public entry fun authorize_sales_toggle(registry: &mut (nplex=0x0)::registry::NPLEXRegistry, _admin_cap: &(nplex=0x0)::registry::NPLEXAdminCap, contract_id: iota::object::ID, new_state: bool, notarization_id: iota::object::ID)

Implementation

public entry fun authorize_sales_toggle(
    registry: &mut NPLEXRegistry,
    _admin_cap: &NPLEXAdminCap,
    contract_id: ID,
    new_state: bool,
    notarization_id: ID
) {
    if (table::contains(&registry.authorized_sales_toggles, contract_id)) {
        table::remove(&mut registry.authorized_sales_toggles, contract_id);
        events::emit_sales_toggle_revoked(contract_id, notarization_id);
    };
    table::add(&mut registry.authorized_sales_toggles, contract_id, NotarizedSaleToggle {
        notarization_id,
        target_state: new_state,
    });
    events::emit_sales_toggle_authorized(contract_id, new_state, notarization_id);
}

Function approve_identity

Whitelist a DID Identity for a specific role (Admin Only) role: 1 = Institution, 2 = Investor, 4 = Admin (bitmask, combinable up to 7) vc_data: Mandatory raw bytes of the W3C Verifiable Credential (JWT/hash) that justified this approval. Stored permanently as an on-chain audit trail.

public entry fun approve_identity(registry: &mut (nplex=0x0)::registry::NPLEXRegistry, _admin_cap: &(nplex=0x0)::registry::NPLEXAdminCap, identity_id: iota::object::ID, role: u8, vc_data: vector<u8>, backing_notarization: &(iota_notarization=0x0)::notarization::Notarization<u256>)

Implementation

public entry fun approve_identity(
    registry: &mut NPLEXRegistry,
    _admin_cap: &NPLEXAdminCap,
    identity_id: ID,
    role: u8,
    vc_data: vector<u8>,
    backing_notarization: &Notarization<u256>,
) {
    let backing_notarization_id = object::id(backing_notarization);
    assert!(role >= 1 && role <= 7, E_INVALID_ROLE);
    assert!(!std::vector::is_empty(&vc_data), E_INVALID_ROLE); // VC data must not be empty
    if (table::contains(&registry.approved_identities, identity_id)) {
        // Update existing identity — replace role and VC data
        let info = table::borrow_mut(&mut registry.approved_identities, identity_id);
        let old_role = info.role;
        info.role = role;
        info.vc_data = vc_data;
        events::emit_identity_role_updated(identity_id, old_role, role, backing_notarization_id);
    } else {
        table::add(&mut registry.approved_identities, identity_id, ApprovedIdentity { role, vc_data });
        events::emit_identity_approved(identity_id, role, backing_notarization_id);
    };
}

Function revoke_identity

Remove a DID Identity from the whitelist (Admin Only)

public entry fun revoke_identity(registry: &mut (nplex=0x0)::registry::NPLEXRegistry, _admin_cap: &(nplex=0x0)::registry::NPLEXAdminCap, identity_id: iota::object::ID, backing_notarization: &(iota_notarization=0x0)::notarization::Notarization<u256>)

Implementation

public entry fun revoke_identity(
    registry: &mut NPLEXRegistry,
    _admin_cap: &NPLEXAdminCap,
    identity_id: ID,
    backing_notarization: &Notarization<u256>,
) {
    let backing_notarization_id = object::id(backing_notarization);
    assert!(table::contains(&registry.approved_identities, identity_id), E_IDENTITY_NOT_APPROVED);
    table::remove(&mut registry.approved_identities, identity_id);
    events::emit_identity_revoked(identity_id, backing_notarization_id);
}

Function claim_notarization

Claim a notarization to start the package creation flow

Consumes an approved notarization and returns a “Hot Potato” NotarizationClaim that must be immediately bound to a new contract via bind_executor.

Arguments

• registry - The NPLEX Registry shared object.
• notarization_id - The ID of the notarization being claimed.
• document_hash - The hash of the document, must match the registered one.
• ctx - Transaction context.

Returns

• NotarizationClaim - A Hot Potato struct containing the hash and ID.

Aborts

• E_NOTARIZATION_NOT_APPROVED - If not found or document_hash mismatches.
• E_NOTARIZATION_REVOKED - If it was revoked by NPLEX Admin.
• E_NOTARIZATION_ALREADY_USED - If it was already bound to a contract.
• E_UNAUTHORIZED_CREATOR - If the caller is not the authorized_creator.

public fun claim_notarization(registry: &mut (nplex=0x0)::registry::NPLEXRegistry, notarization_id: iota::object::ID, document_hash: u256, ctx: &mut iota::tx_context::TxContext): (nplex=0x0)::registry::NotarizationClaim

Implementation

public fun claim_notarization(
    registry: &mut NPLEXRegistry,
    notarization_id: ID,
    document_hash: u256,
    ctx: &mut TxContext
): NotarizationClaim {
    // Verify notarization is approved
    assert!(table::contains(&registry.approved_notarizations, notarization_id), E_NOTARIZATION_NOT_APPROVED);
    let notarization_info = table::borrow(&registry.approved_notarizations, notarization_id);
    // Verify document hash matches the approved one mathematically
    assert!(notarization_info.document_hash == document_hash, E_NOTARIZATION_NOT_APPROVED);
    // Verify not revoked
    assert!(!notarization_info.is_revoked, E_NOTARIZATION_REVOKED);
    // Verify not already used
    assert!(option::is_none(&notarization_info.contract_id), E_NOTARIZATION_ALREADY_USED);
    // Verify authorized creator
    assert!(tx_context::sender(ctx) == notarization_info.authorized_creator, E_UNAUTHORIZED_CREATOR);
    NotarizationClaim { notarization_id, document_hash: notarization_info.document_hash }
}

Function consume_transfer_ticket

Consume a transfer ticket to allow Bond transfer Validates that the Caller (via Witness) is authorized, the Transfer is approved by NPLEX,

public fun consume_transfer_ticket<T: drop>(registry: &mut (nplex=0x0)::registry::NPLEXRegistry, bond_id: iota::object::ID, new_owner: address, new_owner_identity: iota::object::ID, _witness: T)

Implementation

public fun consume_transfer_ticket<T: drop>(
    registry: &mut NPLEXRegistry,
    bond_id: ID,
    new_owner: address,
    new_owner_identity: ID,
    _witness: T
) {
    // 1. Verify Witness (Caller) is an allowed executor
    assert!(df::exists_(&registry.id, ExecutorKey<T> {}), E_UNAUTHORIZED_EXECUTOR);
    // 2. Verify Transfer is Authorized
    assert!(table::contains(&registry.authorized_transfers, bond_id), E_TRANSFER_NOT_AUTHORIZED);
    // 3. Verify Recipient and Identity matches
    let authorization = *table::borrow(&registry.authorized_transfers, bond_id);
    assert!(authorization.new_owner == new_owner, E_TRANSFER_NOT_AUTHORIZED);
    assert!(authorization.new_owner_identity == new_owner_identity, E_TRANSFER_NOT_AUTHORIZED);
    // 4. Consume Ticket
    table::remove(&mut registry.authorized_transfers, bond_id);
    events::emit_transfer_consumed(bond_id, new_owner);
}

Function consume_sales_toggle_ticket

Consume a sales toggle ticket Validates that the Caller (via Witness) is authorized, the toggle is approved by NPLEX, Returns the target sales state (true = open, false = closed)

public fun consume_sales_toggle_ticket<T: drop>(registry: &mut (nplex=0x0)::registry::NPLEXRegistry, contract_id: iota::object::ID, _witness: T): bool

Implementation

public fun consume_sales_toggle_ticket<T: drop>(
    registry: &mut NPLEXRegistry,
    contract_id: ID,
    _witness: T
): bool {
    // 1. Verify Witness (Caller) is an allowed executor
    assert!(df::exists_(&registry.id, ExecutorKey<T> {}), E_UNAUTHORIZED_EXECUTOR);
    // 2. Verify Toggle is Authorized
    assert!(table::contains(&registry.authorized_sales_toggles, contract_id), E_SALES_TOGGLE_NOT_AUTHORIZED);
    // 3. Consume Ticket and return target state
    let target_state = table::remove(&mut registry.authorized_sales_toggles, contract_id).target_state;
    events::emit_sales_toggle_consumed(contract_id, target_state);
    target_state
}

Function verify_identity

Verify that a DelegationToken’s Identity is whitelisted with the required role required_role: ROLE_INSTITUTION (1), ROLE_INVESTOR (2), or ROLE_ADMIN (4)

public fun verify_identity(registry: &(nplex=0x0)::registry::NPLEXRegistry, token: &(iota_identity=0x0)::controller::DelegationToken, required_role: u8)

Implementation

public fun verify_identity(
    registry: &NPLEXRegistry,
    token: &DelegationToken,
    required_role: u8,
) {
    let identity_id = iota_identity::controller::delegation_token_controller_of(token);
    assert!(table::contains(&registry.approved_identities, identity_id), E_IDENTITY_NOT_APPROVED);
    let info = table::borrow(&registry.approved_identities, identity_id);
    // Bitmask check: role must contain required_role bits
    assert!(info.role & required_role != 0, E_IDENTITY_WRONG_ROLE);
}

Function get_identity_role

Get the role of a given DID Identity (returns 0 if not approved/not found) Signature: get_identity_role(&NPLEXRegistry, ID) -> u8

public fun get_identity_role(registry: &(nplex=0x0)::registry::NPLEXRegistry, identity_id: iota::object::ID): u8

Implementation

public fun get_identity_role(
    registry: &NPLEXRegistry,
    identity_id: ID
): u8 {
    if (table::contains(&registry.approved_identities, identity_id)) {
        table::borrow(&registry.approved_identities, identity_id).role
    } else {
        0
    }
}

Function role_institution

Accessor for ROLE_INSTITUTION constant

public fun role_institution(): u8

Implementation

public fun role_institution(): u8 { ROLE_INSTITUTION }

Function role_investor

Accessor for ROLE_INVESTOR constant

public fun role_investor(): u8

Implementation

public fun role_investor(): u8 { ROLE_INVESTOR }

Function role_admin

Accessor for ROLE_ADMIN constant

public fun role_admin(): u8

Implementation

public fun role_admin(): u8 { ROLE_ADMIN }

Function is_valid_notarization

Check if a notarization is approved and not revoked

public fun is_valid_notarization(registry: &(nplex=0x0)::registry::NPLEXRegistry, notarization_id: iota::object::ID): bool

Implementation

public fun is_valid_notarization(
    registry: &NPLEXRegistry,
    notarization_id: ID
): bool {
    if (!table::contains(&registry.approved_notarizations, notarization_id)) {
        return false
    };
    let hash_info = table::borrow(&registry.approved_notarizations, notarization_id);
    !hash_info.is_revoked
}

Function is_notarization_used

Check if a notarization has already been used

public fun is_notarization_used(registry: &(nplex=0x0)::registry::NPLEXRegistry, notarization_id: iota::object::ID): bool

Implementation

public fun is_notarization_used(
    registry: &NPLEXRegistry,
    notarization_id: ID
): bool {
    if (!table::contains(&registry.approved_notarizations, notarization_id)) {
        return false
    };
    let notarization_info = table::borrow(&registry.approved_notarizations, notarization_id);
    option::is_some(&notarization_info.contract_id)
}

Function is_notarization_revoked

Check if a notarization is revoked

public fun is_notarization_revoked(registry: &(nplex=0x0)::registry::NPLEXRegistry, notarization_id: iota::object::ID): bool

Implementation

public fun is_notarization_revoked(
    registry: &NPLEXRegistry,
    notarization_id: ID
): bool {
    if (!table::contains(&registry.approved_notarizations, notarization_id)) {
        return false
    };
    let notarization_info = table::borrow(&registry.approved_notarizations, notarization_id);
    notarization_info.is_revoked
}

Function get_notarization_info

Get notarization info (for UI/debugging)

public fun get_notarization_info(registry: &(nplex=0x0)::registry::NPLEXRegistry, notarization_id: iota::object::ID): (nplex=0x0)::registry::NotarizationInfo

Implementation

public fun get_notarization_info(
    registry: &NPLEXRegistry,
    notarization_id: ID
): NotarizationInfo {
    *table::borrow(&registry.approved_notarizations, notarization_id)
}

Function notarization_document_hash

Accessor for NotarizationInfo.document_hash

public fun notarization_document_hash(info: &(nplex=0x0)::registry::NotarizationInfo): u256

Implementation

public fun notarization_document_hash(info: &NotarizationInfo): u256 {
    info.document_hash
}

Function notarization_contract_id

Accessor for NotarizationInfo.contract_id

public fun notarization_contract_id(info: &(nplex=0x0)::registry::NotarizationInfo): std::option::Option<iota::object::ID>

Implementation

public fun notarization_contract_id(info: &NotarizationInfo): Option<ID> {
    info.contract_id
}

Function notarization_is_revoked

Accessor for NotarizationInfo.is_revoked

public fun notarization_is_revoked(info: &(nplex=0x0)::registry::NotarizationInfo): bool

Implementation

public fun notarization_is_revoked(info: &NotarizationInfo): bool {
    info.is_revoked
}

Function notarization_auditor

Accessor for NotarizationInfo.auditor

public fun notarization_auditor(info: &(nplex=0x0)::registry::NotarizationInfo): address

Implementation

public fun notarization_auditor(info: &NotarizationInfo): address {
    info.auditor
}

Function notarization_approved_timestamp

Accessor for NotarizationInfo.approved_timestamp

public fun notarization_approved_timestamp(info: &(nplex=0x0)::registry::NotarizationInfo): u64

Implementation

public fun notarization_approved_timestamp(info: &NotarizationInfo): u64 {
    info.approved_timestamp
}

Function notarization_authorized_creator

Accessor for NotarizationInfo.authorized_creator

public fun notarization_authorized_creator(info: &(nplex=0x0)::registry::NotarizationInfo): address

Implementation

public fun notarization_authorized_creator(info: &NotarizationInfo): address {
    info.authorized_creator
}