Skip to content

feat: Attach metadata when submitting a revocation to the permission provider snap #7503

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
V00D00-child wants to merge 13 commits into
base: main
Choose a base branch
from
Open

feat: Attach metadata when submitting a revocation to the permission provider snap #7503

V00D00-child wants to merge 13 commits into from
+116 −3

Conversation

@V00D00-child
Copy link
Member

@V00D00-child V00D00-child commented Dec 15, 2025
edited by cursor bot
Loading

Explanation

This PR extends the GatorPermissionsController to allow attaching metadata when submitting a revocation to the permission provider snap. Metadata includes:

  • The transaction hash
  • The block timestamp

References

Requires(gator snap): feat: Store metadata when revoking a permission
Required by(MM client): chore: Bump @metamask/gator-permissions-controller to 0.9.0

Checklist

  • I've updated the test suite for new or updated code as appropriate
  • I've updated documentation (JSDoc, Markdown, etc.) for new or updated code as appropriate
  • I've communicated my changes to consumers by updating changelogs for packages I've changed
  • I've introduced breaking changes in this PR and have prepared draft pull requests for clients and consumer packages to resolve them

Note

Introduces metadata attachment for permission revocations and updates API accordingly.

  • BREAKING: RevocationParams now requires revocationMetadata; controller parses transactionConfirmed to include txHash and forwards it to permissionsProvider_submitRevocation
  • Verifies post-revocation refresh by calling permissionsProvider_getGrantedPermissions
  • Updates tests to pass revocationMetadata and validate new behavior; exports RevocationMetadata; changelog updated

Written by Cursor Bugbot for commit 6b0625d. This will update automatically on new commits. Configure here.

@V00D00-child V00D00-child mentioned this pull request Dec 15, 2025
Open
6 tasks
@V00D00-child V00D00-child changed the title [DRAFT] Attach metadata when submitting a revocation to the permission provider snap feat: Attach metadata when submitting a revocation to the permission provider snap Dec 17, 2025
@V00D00-child V00D00-child marked this pull request as ready for review December 17, 2025 22:26
@V00D00-child V00D00-child requested review from a team as code owners December 17, 2025 22:26
jeffsmale90
jeffsmale90 reviewed Dec 19, 2025
View reviewed changes
Copy link
Contributor

@jeffsmale90 jeffsmale90 left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Should we also add revocationMetadata to StoredGatorPermission (and as per my comments on the related PR, perhaps remove the isRevoked flag?

This would probably require some changes to how we load the permission from storage also, but IMO worthwhile,

cursor[bot]
cursor bot reviewed Dec 19, 2025
View reviewed changes
mj-kiwi
mj-kiwi reviewed Jan 5, 2026
View reviewed changes
@V00D00-child V00D00-child mentioned this pull request Jan 7, 2026
Draft
7 tasks
jeffsmale90
jeffsmale90 reviewed Jan 9, 2026
View reviewed changes
Copy link
Contributor

@jeffsmale90 jeffsmale90 left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Looks good to me!

One nit that I'm not especially concerned about, but might be a nice tidy up.

I am keen to understand the behaviour regarding failed transactions - we definitely don't want to be marking a permission as revoked if the transaction has failed.

packages/gator-permissions-controller/src/GatorPermissionsController.ts
// Handle confirmed transaction - submit revocation
handlers.confirmed = (transactionMeta) => {
if (transactionMeta.id === txId) {
controllerLog('Transaction confirmed, submitting revocation', {
Copy link
Contributor

@jeffsmale90 jeffsmale90 Jan 9, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

not strictly related to this PR - but do we need to check transactionMeta.status here?

When a transaction is confirmed, do we explicitly guard against failed transactions?

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@cursor cursor[bot] cursor[bot] left review comments

@mj-kiwi mj-kiwi Awaiting requested review from mj-kiwi

@jeffsmale90 jeffsmale90 Awaiting requested review from jeffsmale90

At least 1 approving review is required to merge this pull request.

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

4 participants

@V00D00-child @mj-kiwi @jeffsmale90