feat: add RPC methods described in (revised) EIP-7715 (#396)

jeffsmale90 · web-flow · commit a10c7fbf285f · 2025-09-04T08:36:06.000+12:00
Adds methods `wallet_requestExecutionPermissions` and `wallet_revokeExecutionPermission`, as defined in this revision of the EIP-7715 specification ethereum/ERCs#1098. This supports Readable Permissions project, and is related to the following PRs: - MetaMask/smart-accounts-kit#60 - MetaMask/metamask-extension#35193 Note: workflows are failing due to existing problems, fixed by #397
diff --git a/src/index.ts b/src/index.ts
@@ -21,6 +21,16 @@ export type {
   SendCallsParams,
   SendCallsResult,
 } from './methods/wallet-send-calls';
+export type {
+  RequestExecutionPermissionsRequestParams,
+  RequestExecutionPermissionsResult,
+  ProcessRequestExecutionPermissionsHook,
+} from './methods/wallet-request-execution-permissions';
+export type {
+  ProcessRevokeExecutionPermissionHook,
+  RevokeExecutionPermissionRequestParams,
+  RevokeExecutionPermissionResult,
+} from './methods/wallet-revoke-execution-permission';
 export * from './providerAsMiddleware';
 export * from './retryOnEmpty';
 export * from './wallet';
diff --git a/src/methods/wallet-request-execution-permissions.test.ts b/src/methods/wallet-request-execution-permissions.test.ts
@@ -0,0 +1,172 @@
+import type {
+  Json,
+  JsonRpcRequest,
+  PendingJsonRpcResponse,
+} from '@metamask/utils';
+import { klona } from 'klona';
+
+import type {
+  ProcessRequestExecutionPermissionsHook,
+  RequestExecutionPermissionsRequestParams,
+  RequestExecutionPermissionsResult,
+} from './wallet-request-execution-permissions';
+import { walletRequestExecutionPermissions } from './wallet-request-execution-permissions';
+
+const ADDRESS_MOCK = '0x123abc123abc123abc123abc123abc123abc123a';
+const CHAIN_ID_MOCK = '0x1';
+const CONTEXT_MOCK = '0x123abc';
+
+const REQUEST_MOCK = {
+  params: [
+    {
+      chainId: CHAIN_ID_MOCK,
+      address: ADDRESS_MOCK,
+      signer: {
+        type: 'account',
+        data: {
+          address: ADDRESS_MOCK,
+        },
+      },
+      permission: {
+        type: 'test-permission',
+        isAdjustmentAllowed: true,
+        data: { key: 'value' },
+      },
+      rules: [
+        {
+          type: 'test-rule',
+          isAdjustmentAllowed: false,
+          data: { ruleKey: 'ruleValue' },
+        },
+      ],
+    },
+  ],
+} as unknown as JsonRpcRequest;
+
+const RESULT_MOCK: RequestExecutionPermissionsResult = [
+  {
+    chainId: CHAIN_ID_MOCK,
+    address: ADDRESS_MOCK,
+    signer: {
+      type: 'account',
+      data: { address: ADDRESS_MOCK },
+    },
+    permission: {
+      type: 'test-permission',
+      isAdjustmentAllowed: true,
+      data: { key: 'value' },
+    },
+    rules: [
+      {
+        type: 'test-rule',
+        isAdjustmentAllowed: false,
+        data: { ruleKey: 'ruleValue' },
+      },
+    ],
+    context: CONTEXT_MOCK,
+  },
+];
+
+describe('wallet_requestExecutionPermissions', () => {
+  let request: JsonRpcRequest;
+  let params: RequestExecutionPermissionsRequestParams;
+  let response: PendingJsonRpcResponse<Json>;
+  let processRequestExecutionPermissionsMock: jest.MockedFunction<ProcessRequestExecutionPermissionsHook>;
+
+  async function callMethod() {
+    return walletRequestExecutionPermissions(request, response, {
+      processRequestExecutionPermissions:
+        processRequestExecutionPermissionsMock,
+    });
+  }
+
+  beforeEach(() => {
+    jest.resetAllMocks();
+
+    request = klona(REQUEST_MOCK);
+    params = request.params as RequestExecutionPermissionsRequestParams;
+    response = {} as PendingJsonRpcResponse<Json>;
+
+    processRequestExecutionPermissionsMock = jest.fn();
+    processRequestExecutionPermissionsMock.mockResolvedValue(RESULT_MOCK);
+  });
+
+  it('calls hook', async () => {
+    await callMethod();
+    expect(processRequestExecutionPermissionsMock).toHaveBeenCalledWith(
+      params,
+      request,
+    );
+  });
+
+  it('returns result from hook', async () => {
+    await callMethod();
+    expect(response.result).toStrictEqual(RESULT_MOCK);
+  });
+
+  it('supports null rules', async () => {
+    params[0].rules = null as never;
+
+    await callMethod();
+
+    expect(processRequestExecutionPermissionsMock).toHaveBeenCalledWith(
+      params,
+      request,
+    );
+  });
+
+  it('supports optional address', async () => {
+    params[0].address = undefined as never;
+
+    await callMethod();
+
+    expect(processRequestExecutionPermissionsMock).toHaveBeenCalledWith(
+      params,
+      request,
+    );
+  });
+
+  it('throws if no hook', async () => {
+    await expect(
+      walletRequestExecutionPermissions(request, response, {}),
+    ).rejects.toThrow(
+      `wallet_requestExecutionPermissions - no middleware configured`,
+    );
+  });
+
+  it('throws if no params', async () => {
+    request.params = undefined;
+
+    await expect(callMethod()).rejects.toThrow('Invalid params');
+  });
+
+  it('throws if missing properties', async () => {
+    params[0].chainId = undefined as never;
+    params[0].signer = undefined as never;
+    params[0].permission = undefined as never;
+
+    await expect(callMethod()).rejects.toThrow('Invalid params');
+  });
+
+  it('throws if wrong types', async () => {
+    params[0].chainId = 123 as never;
+    params[0].address = 123 as never;
+    params[0].permission = '123' as never;
+    params[0].signer = {
+      // Make signer an object but invalid to ensure object-type error messages are stable
+      type: 123 as never,
+      data: '123' as never,
+    } as never;
+    params[0].rules = [{} as never];
+
+    await expect(callMethod()).rejects.toThrow('Invalid params');
+  });
+
+  it('throws if not hex', async () => {
+    params[0].chainId = '123' as never;
+    params[0].address = '123' as never;
+    params[0].signer.data.address = '123' as never;
+
+    await expect(callMethod()).rejects.toThrow('Invalid params');
+  });
+});
diff --git a/src/methods/wallet-request-execution-permissions.ts b/src/methods/wallet-request-execution-permissions.ts
@@ -0,0 +1,89 @@
+import { rpcErrors } from '@metamask/rpc-errors';
+import type { Infer } from '@metamask/superstruct';
+import {
+  array,
+  boolean,
+  literal,
+  object,
+  optional,
+  record,
+  string,
+  union,
+  unknown,
+} from '@metamask/superstruct';
+import {
+  HexChecksumAddressStruct,
+  type Hex,
+  type Json,
+  type JsonRpcRequest,
+  type PendingJsonRpcResponse,
+  StrictHexStruct,
+} from '@metamask/utils';
+
+import { validateParams } from '../utils/validation';
+
+const PermissionStruct = object({
+  type: string(),
+  isAdjustmentAllowed: boolean(),
+  data: record(string(), unknown()),
+});
+
+const RuleStruct = object({
+  type: string(),
+  isAdjustmentAllowed: boolean(),
+  data: record(string(), unknown()),
+});
+
+const AccountSignerStruct = object({
+  type: literal('account'),
+  data: object({
+    address: HexChecksumAddressStruct,
+  }),
+});
+
+const PermissionRequestStruct = object({
+  chainId: StrictHexStruct,
+  address: optional(HexChecksumAddressStruct),
+  signer: AccountSignerStruct,
+  permission: PermissionStruct,
+  rules: optional(union([array(RuleStruct), literal(null)])),
+});
+
+export const RequestExecutionPermissionsStruct = array(PermissionRequestStruct);
+
+// RequestExecutionPermissions API types
+export type RequestExecutionPermissionsRequestParams = Infer<
+  typeof RequestExecutionPermissionsStruct
+>;
+
+export type RequestExecutionPermissionsResult = Json &
+  (Infer<typeof PermissionRequestStruct> & {
+    context: Hex;
+  })[];
+
+export type ProcessRequestExecutionPermissionsHook = (
+  request: RequestExecutionPermissionsRequestParams,
+  req: JsonRpcRequest,
+) => Promise<RequestExecutionPermissionsResult>;
+
+export async function walletRequestExecutionPermissions(
+  req: JsonRpcRequest,
+  res: PendingJsonRpcResponse<Json>,
+  {
+    processRequestExecutionPermissions,
+  }: {
+    processRequestExecutionPermissions?: ProcessRequestExecutionPermissionsHook;
+  },
+): Promise<void> {
+  if (!processRequestExecutionPermissions) {
+    throw rpcErrors.methodNotSupported(
+      'wallet_requestExecutionPermissions - no middleware configured',
+    );
+  }
+
+  const { params } = req;
+
+  validateParams(params, RequestExecutionPermissionsStruct);
+
+  res.result = await processRequestExecutionPermissions(params, req);
+}
diff --git a/src/methods/wallet-revoke-execution-permission.test.ts b/src/methods/wallet-revoke-execution-permission.test.ts
@@ -0,0 +1,89 @@
+import type {
+  Json,
+  JsonRpcRequest,
+  PendingJsonRpcResponse,
+} from '@metamask/utils';
+import { klona } from 'klona';
+
+import type {
+  ProcessRevokeExecutionPermissionHook,
+  RevokeExecutionPermissionRequestParams,
+} from './wallet-revoke-execution-permission';
+import { walletRevokeExecutionPermission } from './wallet-revoke-execution-permission';
+
+const HEX_MOCK = '0x123abc';
+
+const REQUEST_MOCK = {
+  params: {
+    permissionContext: HEX_MOCK,
+  },
+} as unknown as JsonRpcRequest<RevokeExecutionPermissionRequestParams>;
+
+describe('wallet_revokeExecutionPermission', () => {
+  let request: JsonRpcRequest<RevokeExecutionPermissionRequestParams>;
+  let params: RevokeExecutionPermissionRequestParams;
+  let response: PendingJsonRpcResponse<Json>;
+  let processRevokeExecutionPermissionMock: jest.MockedFunction<ProcessRevokeExecutionPermissionHook>;
+
+  async function callMethod() {
+    return walletRevokeExecutionPermission(request, response, {
+      processRevokeExecutionPermission: processRevokeExecutionPermissionMock,
+    });
+  }
+
+  beforeEach(() => {
+    jest.resetAllMocks();
+
+    request = klona(REQUEST_MOCK);
+    params = request.params as RevokeExecutionPermissionRequestParams;
+    response = {} as PendingJsonRpcResponse<Json>;
+
+    processRevokeExecutionPermissionMock = jest.fn();
+    processRevokeExecutionPermissionMock.mockResolvedValue({});
+  });
+
+  it('calls hook', async () => {
+    await callMethod();
+    expect(processRevokeExecutionPermissionMock).toHaveBeenCalledWith(
+      params,
+      request,
+    );
+  });
+
+  it('returns result from hook', async () => {
+    await callMethod();
+    expect(response.result).toStrictEqual({});
+  });
+
+  it('throws if no hook', async () => {
+    await expect(
+      walletRevokeExecutionPermission(request, response, {}),
+    ).rejects.toThrow(
+      'wallet_revokeExecutionPermission - no middleware configured',
+    );
+  });
+
+  it('throws if no params', async () => {
+    (request as JsonRpcRequest).params = undefined;
+
+    await expect(callMethod()).rejects.toThrow('Invalid params');
+  });
+
+  it('throws if missing properties', async () => {
+    (request as JsonRpcRequest).params = {} as never;
+
+    await expect(callMethod()).rejects.toThrow('Invalid params');
+  });
+
+  it('throws if wrong types', async () => {
+    params.permissionContext = 123 as never;
+
+    await expect(callMethod()).rejects.toThrow('Invalid params');
+  });
+
+  it('throws if not hex', async () => {
+    params.permissionContext = '123' as never;
+
+    await expect(callMethod()).rejects.toThrow('Invalid params');
+  });
+});
diff --git a/src/methods/wallet-revoke-execution-permission.ts b/src/methods/wallet-revoke-execution-permission.ts
diff --git a/src/wallet.ts b/src/wallet.ts
