audit_trails/core/

builder.rs

// Copyright 2020-2026 IOTA Stiftung
// SPDX-License-Identifier: Apache-2.0

//! Builder for trail-creation transactions.

use std::collections::HashSet;

use iota_interaction::types::base_types::IotaAddress;
use product_common::transaction::transaction_builder::TransactionBuilder;

use super::types::{Data, ImmutableMetadata, InitialRecord, LockingConfig};
use crate::core::create::CreateTrail;
use crate::error::Error;

/// Builder for creating an audit trail.
///
/// The builder collects the full create-time configuration before it is normalized into the Move `create`
/// call. Any tag list configured here becomes the trail-owned registry that later role-tag and record-tag
/// checks refer to.
///
/// Creation has three additional on-chain effects worth noting:
///
/// - The trail object is published as a *shared* object.
/// - A reserved `Admin` role is seeded with the permissions returned by
///   [`PermissionSet::admin_permissions`](super::types::PermissionSet::admin_permissions), and an *initial-admin*
///   capability is minted and transferred to the configured admin address.
/// - When [`Self::with_initial_record`] is set, that record is stored as sequence number `0`. Its tag (if any) must
///   already appear in the configured record tags; otherwise the on-chain create call aborts with
///   `ERecordTagNotDefined`.
/// - An `AuditTrailCreated` event is emitted.
#[derive(Debug, Clone, Default)]
pub struct AuditTrailBuilder {
    /// Initial admin address that should receive the initial admin capability.
    pub admin: Option<IotaAddress>,
    /// Optional initial record created together with the trail.
    pub initial_record: Option<InitialRecord>,
    /// Locking rules to apply at creation time.
    pub locking_config: LockingConfig,
    /// Immutable metadata stored once at creation time.
    pub trail_metadata: Option<ImmutableMetadata>,
    /// Mutable metadata stored on the trail object.
    pub updatable_metadata: Option<String>,
    /// Canonical list of record tags owned by the trail.
    pub record_tags: HashSet<String>,
}

impl AuditTrailBuilder {
    /// Sets the full initial record input used during trail creation.
    ///
    /// When present, the initial record is created as sequence number `0`.
    pub fn with_initial_record(mut self, initial_record: InitialRecord) -> Self {
        self.initial_record = Some(initial_record);
        self
    }

    /// Convenience helper for constructing the initial record inline.
    pub fn with_initial_record_parts(
        mut self,
        data: impl Into<Data>,
        metadata: Option<String>,
        tag: Option<String>,
    ) -> Self {
        self.initial_record = Some(InitialRecord::new(data, metadata, tag));
        self
    }

    /// Sets the locking configuration for the trail.
    ///
    /// This replaces the entire create-time locking configuration.
    pub fn with_locking_config(mut self, config: LockingConfig) -> Self {
        self.locking_config = config;
        self
    }

    /// Sets immutable metadata for the trail.
    ///
    /// Immutable metadata is stored once during creation and cannot be updated later.
    pub fn with_trail_metadata(mut self, metadata: ImmutableMetadata) -> Self {
        self.trail_metadata = Some(metadata);
        self
    }

    /// Sets immutable metadata by parts.
    pub fn with_trail_metadata_parts(mut self, name: impl Into<String>, description: Option<String>) -> Self {
        self.trail_metadata = Some(ImmutableMetadata {
            name: name.into(),
            description,
        });
        self
    }

    /// Sets updatable metadata for the trail.
    ///
    /// This seeds the mutable metadata field that later `update_metadata` calls can replace or clear.
    pub fn with_updatable_metadata(mut self, metadata: impl Into<String>) -> Self {
        self.updatable_metadata = Some(metadata.into());
        self
    }

    /// Sets the canonical list of tags that may be used on records in this trail.
    ///
    /// The list is deduplicated into the trail-owned tag registry during creation.
    pub fn with_record_tags<I, S>(mut self, tags: I) -> Self
    where
        I: IntoIterator<Item = S>,
        S: Into<String>,
    {
        self.record_tags = tags.into_iter().map(Into::into).collect();
        self
    }

    /// Sets the admin address that receives the initial-admin capability.
    pub fn with_admin(mut self, admin: IotaAddress) -> Self {
        self.admin = Some(admin);
        self
    }

    /// Finalizes the builder and creates the trail-creation transaction builder.
    ///
    /// Validates the configured [`LockingConfig`] before returning the transaction. Currently this rejects:
    /// - [`LockingWindow::CountBased`](super::types::LockingWindow::CountBased) with `count == 0` (mirrors the Move
    ///   `ECountWindowMustBePositive` abort).
    /// - [`TimeLock::UntilDestroyed`](super::types::TimeLock::UntilDestroyed) used as `delete_trail_lock` (mirrors the
    ///   Move `EUntilDestroyedNotSupportedForDeleteTrail` abort). `write_lock` may still be `UntilDestroyed`.
    ///
    /// # Errors
    ///
    /// Returns [`Error::InvalidArgument`] when the locking configuration is invalid.
    pub fn finish(self) -> Result<TransactionBuilder<CreateTrail>, Error> {
        self.locking_config.validate()?;
        Ok(TransactionBuilder::new(CreateTrail::new(self)))
    }
}