feat: use 2 bits callbacks for verification occurred (0b10) and verification success (0b01)

Author: PierreJeanjacquot

dapp/src/checkEmailPreviousValidation.js

@@ -1,6 +1,8 @@
 const { request, gql } = require('graphql-request');
 
-// TODO: the method could return true if valid, false if invalid, null if no prior validation or unable to check
+/**
+ * returns true if valid, false if invalid, undefined if no prior validation or unable to check
+ */
 async function checkEmailPreviousValidation({
   datasetAddress,
   dappAddresses,
@@ -29,23 +31,38 @@ async function checkEmailPreviousValidation({
   try {
     const data = await request(pocoSubgraphUrl, query, variables);
     const tasks = data?.tasks || [];
-
-    return tasks.some((task) => {
-      const callback = task.resultsCallback?.toLowerCase();
-      return (
-        callback &&
-        callback.startsWith('0x') &&
-        callback.endsWith(
-          '0000000000000000000000000000000000000000000000000000000000000001'
-        )
-      );
-    });
+    if (
+      tasks.some((task) => {
+        const callback = task.resultsCallback?.toLowerCase();
+        return (
+          callback ===
+            '0x0000000000000000000000000000000000000000000000000000000000000001' || // 0b01 legacy format valid
+          callback ===
+            '0x0000000000000000000000000000000000000000000000000000000000000003' // 0b11 checked valid
+        );
+      })
+    ) {
+      return true;
+    }
+    if (
+      tasks.some((task) => {
+        const callback = task.resultsCallback?.toLowerCase();
+        return (
+          callback ===
+          '0x0000000000000000000000000000000000000000000000000000000000000002' // 0b10 checked invalid
+        );
+      })
+    ) {
+      return false;
+    }
+    // no prior validation found
+    return undefined;
   } catch (error) {
     console.error(
       'GraphQL error:',
       error.response?.errors || error.message || error
     );
-    return false;
+    return undefined;
   }
 }
 

dapp/src/executeTask.js

@@ -49,35 +49,27 @@ async function processProtectedData({
     validateProtectedData(protectedData);
 
     // Step 1: Check if email was already validated
-    const isEmailValid = await checkEmailPreviousValidation({
+    result.isEmailValid = await checkEmailPreviousValidation({
       datasetAddress: protectedData.email,
       dappAddresses: appDeveloperSecret.WEB3MAIL_WHITELISTED_APPS,
       pocoSubgraphUrl: appDeveloperSecret.POCO_SUBGRAPH_URL,
     });
 
     // Step 2: If not, try Mailgun
-    if (!isEmailValid) {
+    if (result.isEmailValid === undefined) {
       console.log('No prior verification found. Trying Mailgun...');
-      const mailgunResult = await validateEmailAddress({
+      result.isEmailValid = await validateEmailAddress({
         emailAddress: protectedData.email,
         mailgunApiKey: appDeveloperSecret.MAILGUN_APIKEY,
       });
-
-      if (mailgunResult === true) {
-        result.isEmailValid = true;
-      } else if (mailgunResult === false) {
-        result.isEmailValid = false;
-        throw Error('The protected email address seems to be invalid.');
-      } else {
-        console.warn(
-          'Mailgun verification failed or was unreachable. Proceeding without check.'
-        );
-      }
     } else {
-      result.isEmailValid = true;
       console.log('Email already verified, skipping Mailgun check.');
     }
 
+    if (result.isEmailValid === false) {
+      throw Error('The protected email address seems to be invalid.');
+    }
+
     // Step 3: Decrypt email content
     const encryptedEmailContent = await downloadEncryptedContent(
       requesterSecret.emailContentMultiAddr
@@ -184,10 +176,17 @@ async function start() {
         });
 
       // Add callback data for single processing if useCallback is enabled
-      if (requesterSecret.useCallback && isEmailValid !== undefined) {
+      if (requesterSecret.useCallback) {
         const bool32Bytes = Buffer.alloc(32);
-        if (isEmailValid) {
-          bool32Bytes[31] = 1; // set last byte to 1 for true
+        // Encode 2 bits:
+        // - Bit 1: Email validation was performed (1 = yes, 0 = no)
+        // - Bit 0: Email is valid (1 = yes, 0 = no)
+        if (isEmailValid === true) {
+          // eslint-disable-next-line no-bitwise
+          bool32Bytes[31] |= 0b11;
+        } else if (isEmailValid === false) {
+          // eslint-disable-next-line no-bitwise
+          bool32Bytes[31] |= 0b10;
         }
         callbackData = `0x${bool32Bytes.toString('hex')}`;
       }

dapp/tests/e2e/app.test.js

@@ -561,88 +561,114 @@ describe('sendEmail', () => {
         });
       });
 
-      it('should send an email successfully', async () => {
-        // protected data setup
-        process.env.IEXEC_DATASET_FILENAME = 'data.zip';
+      describe('with valid email protectedData', () => {
+        it('should send an email successfully', async () => {
+          // protected data setup
+          process.env.IEXEC_DATASET_FILENAME = 'data.zip';
 
-        await expect(start()).resolves.toBeUndefined();
+          await expect(start()).resolves.toBeUndefined();
 
-        const { result, computed, files } = await readOutputs(
-          process.env.IEXEC_OUT
-        );
-        expect(result).toStrictEqual({
-          success: true,
-          protectedData: process.env.IEXEC_DATASET_FILENAME,
-        });
-        expect(computed).toStrictEqual({
-          'deterministic-output-path': `${process.env.IEXEC_OUT}/result.json`,
+          const { result, computed, files } = await readOutputs(
+            process.env.IEXEC_OUT
+          );
+          expect(result).toStrictEqual({
+            success: true,
+            protectedData: process.env.IEXEC_DATASET_FILENAME,
+          });
+          expect(computed).toStrictEqual({
+            'deterministic-output-path': `${process.env.IEXEC_OUT}/result.json`,
+          });
+          expect(files.length).toBe(2);
         });
-        expect(files.length).toBe(2);
-      });
 
-      it('should send an email successfully and set the callback when requested', async () => {
-        // protected data setup
-        process.env.IEXEC_DATASET_FILENAME = 'data.zip';
-        process.env.IEXEC_REQUESTER_SECRET_1 = JSON.stringify({
-          ...JSON.parse(process.env.IEXEC_REQUESTER_SECRET_1),
-          useCallback: true,
-        });
+        it('should send an email successfully and set the valid email callback when requested', async () => {
+          // protected data setup
+          process.env.IEXEC_DATASET_FILENAME = 'data.zip';
+          process.env.IEXEC_REQUESTER_SECRET_1 = JSON.stringify({
+            ...JSON.parse(process.env.IEXEC_REQUESTER_SECRET_1),
+            useCallback: true,
+          });
 
-        await expect(start()).resolves.toBeUndefined();
+          await expect(start()).resolves.toBeUndefined();
 
-        const { result, computed, files } = await readOutputs(
-          process.env.IEXEC_OUT
-        );
-        expect(result).toStrictEqual({
-          success: true,
-          protectedData: process.env.IEXEC_DATASET_FILENAME,
-        });
-        expect(computed).toStrictEqual({
-          'deterministic-output-path': `${process.env.IEXEC_OUT}/result.json`,
-          'callback-data':
-            '0x0000000000000000000000000000000000000000000000000000000000000001',
+          const { result, computed, files } = await readOutputs(
+            process.env.IEXEC_OUT
+          );
+          expect(result).toStrictEqual({
+            success: true,
+            protectedData: process.env.IEXEC_DATASET_FILENAME,
+          });
+          expect(computed).toStrictEqual({
+            'deterministic-output-path': `${process.env.IEXEC_OUT}/result.json`,
+            'callback-data':
+              '0x0000000000000000000000000000000000000000000000000000000000000003',
+          });
+          expect(files.length).toBe(2);
         });
-        expect(files.length).toBe(2);
       });
 
-      it('should output an error if email address does not exist', async () => {
-        // protected data setup
-        process.env.IEXEC_DATASET_FILENAME = 'dataEmailUserDoesNotExist.zip';
+      describe('with invalid email protectedData', () => {
+        it('should output an error if email address does not exist', async () => {
+          // protected data setup
+          process.env.IEXEC_DATASET_FILENAME = 'dataEmailUserDoesNotExist.zip';
 
-        await expect(start()).resolves.toBeUndefined();
+          await expect(start()).resolves.toBeUndefined();
 
-        const { result, computed, files } = await readOutputs(
-          process.env.IEXEC_OUT
-        );
-        expect(result).toStrictEqual({
-          success: false,
-          protectedData: process.env.IEXEC_DATASET_FILENAME,
-          error: 'The protected email address seems to be invalid.',
-        });
-        expect(computed).toStrictEqual({
-          'deterministic-output-path': `${process.env.IEXEC_OUT}/result.json`,
+          const { result, computed, files } = await readOutputs(
+            process.env.IEXEC_OUT
+          );
+          expect(result).toStrictEqual({
+            success: false,
+            protectedData: process.env.IEXEC_DATASET_FILENAME,
+            error: 'The protected email address seems to be invalid.',
+          });
+          expect(computed).toStrictEqual({
+            'deterministic-output-path': `${process.env.IEXEC_OUT}/result.json`,
+          });
+          expect(files.length).toBe(2);
         });
-        expect(files.length).toBe(2);
-      });
 
-      it('should output an error if email address is disposable', async () => {
-        // protected data setup
-        process.env.IEXEC_DATASET_FILENAME = 'dataDisposableEmail.zip';
+        it('should output an error if email address is disposable', async () => {
+          // protected data setup
+          process.env.IEXEC_DATASET_FILENAME = 'dataDisposableEmail.zip';
 
-        await expect(start()).resolves.toBeUndefined();
+          await expect(start()).resolves.toBeUndefined();
 
-        const { result, computed, files } = await readOutputs(
-          process.env.IEXEC_OUT
-        );
-        expect(result).toStrictEqual({
-          success: false,
-          protectedData: process.env.IEXEC_DATASET_FILENAME,
-          error: 'The protected email address seems to be invalid.',
+          const { result, computed, files } = await readOutputs(
+            process.env.IEXEC_OUT
+          );
+          expect(result).toStrictEqual({
+            success: false,
+            protectedData: process.env.IEXEC_DATASET_FILENAME,
+            error: 'The protected email address seems to be invalid.',
+          });
+          expect(computed).toStrictEqual({
+            'deterministic-output-path': `${process.env.IEXEC_OUT}/result.json`,
+          });
+          expect(files.length).toBe(2);
         });
-        expect(computed).toStrictEqual({
-          'deterministic-output-path': `${process.env.IEXEC_OUT}/result.json`,
+
+        it('should set the invalid email callback when requested', async () => {
+          // protected data setup
+          process.env.IEXEC_DATASET_FILENAME = 'dataEmailUserDoesNotExist.zip';
+
+          await expect(start()).resolves.toBeUndefined();
+
+          const { result, computed, files } = await readOutputs(
+            process.env.IEXEC_OUT
+          );
+          expect(result).toStrictEqual({
+            success: false,
+            protectedData: process.env.IEXEC_DATASET_FILENAME,
+            error: 'The protected email address seems to be invalid.',
+          });
+          expect(computed).toStrictEqual({
+            'deterministic-output-path': `${process.env.IEXEC_OUT}/result.json`,
+            'callback-data':
+              '0x0000000000000000000000000000000000000000000000000000000000000002',
+          });
+          expect(files.length).toBe(2);
         });
-        expect(files.length).toBe(2);
       });
     });
   }

dapp/tests/unit/checkEmailPreviousValidation.test.js

@@ -16,7 +16,7 @@ describe('checkEmailPreviousValidation', () => {
     jest.clearAllMocks();
   });
 
-  it('returns true if a valid email verification callback exists', async () => {
+  it('returns true if a valid email verification callback exists (1 bit format)', async () => {
     request.mockResolvedValue({
       tasks: [
         {
@@ -33,8 +33,32 @@ describe('checkEmailPreviousValidation', () => {
     expect(result).toBe(true);
   });
 
-  it('returns false if no tasks are returned', async () => {
-    request.mockResolvedValue({ tasks: [] });
+  it('returns true if a valid email verification callback exists (2 bits format)', async () => {
+    request.mockResolvedValue({
+      tasks: [
+        {
+          resultsCallback:
+            '0x0000000000000000000000000000000000000000000000000000000000000003',
+        },
+      ],
+    });
+
+    const result = await checkEmailPreviousValidation({
+      datasetAddress,
+      dappAddresses,
+    });
+    expect(result).toBe(true);
+  });
+
+  it('returns false if a invalid email verification callback exists (2 bits format)', async () => {
+    request.mockResolvedValue({
+      tasks: [
+        {
+          resultsCallback:
+            '0x0000000000000000000000000000000000000000000000000000000000000002',
+        },
+      ],
+    });
 
     const result = await checkEmailPreviousValidation({
       datasetAddress,
@@ -43,7 +67,17 @@ describe('checkEmailPreviousValidation', () => {
     expect(result).toBe(false);
   });
 
-  it('returns false if none of the callbacks indicate a valid verification', async () => {
+  it('returns undefined if no tasks are returned', async () => {
+    request.mockResolvedValue({ tasks: [] });
+
+    const result = await checkEmailPreviousValidation({
+      datasetAddress,
+      dappAddresses,
+    });
+    expect(result).toBe(undefined);
+  });
+
+  it('returns undefined if none of the callbacks indicate a valid or invalid verification', async () => {
     request.mockResolvedValue({
       tasks: [
         {
@@ -61,16 +95,16 @@ describe('checkEmailPreviousValidation', () => {
       datasetAddress,
       dappAddresses,
     });
-    expect(result).toBe(false);
+    expect(result).toBe(undefined);
   });
 
-  it('returns false if GraphQL query fails', async () => {
+  it('returns undefined if GraphQL query fails', async () => {
     request.mockRejectedValue(new Error('GraphQL request failed'));
 
     const result = await checkEmailPreviousValidation({
       datasetAddress,
       dappAddresses,
     });
-    expect(result).toBe(false);
+    expect(result).toBe(undefined);
   });
 });