1 files changed, 261 insertions, 0 deletions

diff --git a/src/exchange/taler-exchange-httpd_management_global_fees.c b/src/exchange/taler-exchange-httpd_management_global_fees.c
new file mode 100644
index 000000000..8203ddefb
--- /dev/null
+++ b/src/exchange/taler-exchange-httpd_management_global_fees.c
@@ -0,0 +1,261 @@
+/*
+  This file is part of TALER
+  Copyright (C) 2020, 2021, 2022 Taler Systems SA
+
+  TALER is free software; you can redistribute it and/or modify it under the
+  terms of the GNU Affero General Public License as published by the Free Software
+  Foundation; either version 3, or (at your option) any later version.
+
+  TALER is distributed in the hope that it will be useful, but WITHOUT ANY
+  WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR
+  A PARTICULAR PURPOSE.  See the GNU Affero General Public License for more details.
+
+  You should have received a copy of the GNU Affero General Public License along with
+  TALER; see the file COPYING.  If not, see <http://www.gnu.org/licenses/>
+*/
+/**
+ * @file taler-exchange-httpd_management_global_fees.c
+ * @brief Handle request to add global fee details
+ * @author Christian Grothoff
+ */
+#include "platform.h"
+#include <gnunet/gnunet_util_lib.h>
+#include <gnunet/gnunet_json_lib.h>
+#include <jansson.h>
+#include <microhttpd.h>
+#include <pthread.h>
+#include "taler_json_lib.h"
+#include "taler_mhd_lib.h"
+#include "taler_signatures.h"
+#include "taler-exchange-httpd_keys.h"
+#include "taler-exchange-httpd_management.h"
+#include "taler-exchange-httpd_responses.h"
+
+
+/**
+ * Closure for the #add_fee transaction.
+ */
+struct AddFeeContext
+{
+  /**
+   * Fee's signature affirming the #TALER_SIGNATURE_MASTER_GLOBAL_FEES operation.
+   */
+  struct TALER_MasterSignatureP master_sig;
+
+  /**
+   * Starting period.
+   */
+  struct GNUNET_TIME_Timestamp start_time;
+
+  /**
+   * End of period.
+   */
+  struct GNUNET_TIME_Timestamp end_time;
+
+  /**
+   * Global fee amounts.
+   */
+  struct TALER_GlobalFeeSet fees;
+
+  /**
+   * When does an unmerged purse expire?
+   */
+  struct GNUNET_TIME_Relative purse_timeout;
+
+  /**
+   * When does an account without KYC expire?
+   */
+  struct GNUNET_TIME_Relative kyc_timeout;
+
+  /**
+   * When does an account history expire?
+   */
+  struct GNUNET_TIME_Relative history_expiration;
+
+  /**
+   * Number of free purses per account.
+   */
+  uint32_t purse_account_limit;
+
+};
+
+
+/**
+ * Function implementing database transaction to add a fee.  Runs the
+ * transaction logic; IF it returns a non-error code, the transaction logic
+ * MUST NOT queue a MHD response.  IF it returns an hard error, the
+ * transaction logic MUST queue a MHD response and set @a mhd_ret.  IF it
+ * returns the soft error code, the function MAY be called again to retry and
+ * MUST not queue a MHD response.
+ *
+ * @param cls closure with a `struct AddFeeContext`
+ * @param connection MHD request which triggered the transaction
+ * @param[out] mhd_ret set to MHD response status for @a connection,
+ *             if transaction failed (!)
+ * @return transaction status
+ */
+static enum GNUNET_DB_QueryStatus
+add_fee (void *cls,
+         struct MHD_Connection *connection,
+         MHD_RESULT *mhd_ret)
+{
+  struct AddFeeContext *afc = cls;
+  enum GNUNET_DB_QueryStatus qs;
+  struct TALER_GlobalFeeSet fees;
+  struct GNUNET_TIME_Relative purse_timeout;
+  struct GNUNET_TIME_Relative history_expiration;
+  uint32_t purse_account_limit;
+
+  qs = TEH_plugin->lookup_global_fee_by_time (
+    TEH_plugin->cls,
+    afc->start_time,
+    afc->end_time,
+    &fees,
+    &purse_timeout,
+    &history_expiration,
+    &purse_account_limit);
+  if (qs < 0)
+  {
+    if (GNUNET_DB_STATUS_SOFT_ERROR == qs)
+      return qs;
+    GNUNET_break (0);
+    *mhd_ret = TALER_MHD_reply_with_error (connection,
+                                           MHD_HTTP_INTERNAL_SERVER_ERROR,
+                                           TALER_EC_GENERIC_DB_FETCH_FAILED,
+                                           "lookup global fee");
+    return qs;
+  }
+  if (GNUNET_DB_STATUS_SUCCESS_NO_RESULTS != qs)
+  {
+    if ( (GNUNET_OK ==
+          TALER_amount_is_valid (&fees.history)) &&
+         (0 ==
+          TALER_global_fee_set_cmp (&fees,
+                                    &afc->fees)) )
+    {
+      /* this will trigger the 'success' response */
+      return GNUNET_DB_STATUS_SUCCESS_NO_RESULTS;
+    }
+    else
+    {
+      *mhd_ret = TALER_MHD_reply_with_error (
+        connection,
+        MHD_HTTP_CONFLICT,
+        TALER_EC_EXCHANGE_MANAGEMENT_GLOBAL_FEE_MISMATCH,
+        NULL);
+    }
+    return GNUNET_DB_STATUS_HARD_ERROR;
+  }
+
+  qs = TEH_plugin->insert_global_fee (
+    TEH_plugin->cls,
+    afc->start_time,
+    afc->end_time,
+    &afc->fees,
+    afc->purse_timeout,
+    afc->history_expiration,
+    afc->purse_account_limit,
+    &afc->master_sig);
+  if (qs < 0)
+  {
+    if (GNUNET_DB_STATUS_SOFT_ERROR == qs)
+      return qs;
+    GNUNET_break (0);
+    *mhd_ret = TALER_MHD_reply_with_error (connection,
+                                           MHD_HTTP_INTERNAL_SERVER_ERROR,
+                                           TALER_EC_GENERIC_DB_STORE_FAILED,
+                                           "insert fee");
+    return qs;
+  }
+  return qs;
+}
+
+
+MHD_RESULT
+TEH_handler_management_post_global_fees (
+  struct MHD_Connection *connection,
+  const json_t *root)
+{
+  struct AddFeeContext afc;
+  struct GNUNET_JSON_Specification spec[] = {
+    GNUNET_JSON_spec_fixed_auto ("master_sig",
+                                 &afc.master_sig),
+    GNUNET_JSON_spec_timestamp ("fee_start",
+                                &afc.start_time),
+    GNUNET_JSON_spec_timestamp ("fee_end",
+                                &afc.end_time),
+    TALER_JSON_spec_amount ("history_fee",
+                            TEH_currency,
+                            &afc.fees.history),
+    TALER_JSON_spec_amount ("account_fee",
+                            TEH_currency,
+                            &afc.fees.account),
+    TALER_JSON_spec_amount ("purse_fee",
+                            TEH_currency,
+                            &afc.fees.purse),
+    GNUNET_JSON_spec_relative_time ("purse_timeout",
+                                    &afc.purse_timeout),
+    GNUNET_JSON_spec_relative_time ("history_expiration",
+                                    &afc.history_expiration),
+    GNUNET_JSON_spec_uint32 ("purse_account_limit",
+                             &afc.purse_account_limit),
+    GNUNET_JSON_spec_end ()
+  };
+
+  {
+    enum GNUNET_GenericReturnValue res;
+
+    res = TALER_MHD_parse_json_data (connection,
+                                     root,
+                                     spec);
+    if (GNUNET_SYSERR == res)
+      return MHD_NO; /* hard failure */
+    if (GNUNET_NO == res)
+      return MHD_YES; /* failure */
+  }
+
+  TEH_METRICS_num_verifications[TEH_MT_SIGNATURE_EDDSA]++;
+  if (GNUNET_OK !=
+      TALER_exchange_offline_global_fee_verify (
+        afc.start_time,
+        afc.end_time,
+        &afc.fees,
+        afc.purse_timeout,
+        afc.history_expiration,
+        afc.purse_account_limit,
+        &TEH_master_public_key,
+        &afc.master_sig))
+  {
+    /* signature invalid */
+    GNUNET_break_op (0);
+    return TALER_MHD_reply_with_error (
+      connection,
+      MHD_HTTP_FORBIDDEN,
+      TALER_EC_EXCHANGE_MANAGEMENT_GLOBAL_FEE_SIGNATURE_INVALID,
+      NULL);
+  }
+
+  {
+    enum GNUNET_GenericReturnValue res;
+    MHD_RESULT ret;
+
+    res = TEH_DB_run_transaction (connection,
+                                  "add global fee",
+                                  TEH_MT_REQUEST_OTHER,
+                                  &ret,
+                                  &add_fee,
+                                  &afc);
+    if (GNUNET_SYSERR == res)
+      return ret;
+  }
+  TEH_keys_update_states ();
+  return TALER_MHD_reply_static (
+    connection,
+    MHD_HTTP_NO_CONTENT,
+    NULL,
+    NULL,
+    0);
+}
+
+
+/* end of taler-exchange-httpd_management_global_fees.c */