thirdweb-dev
diff --git a/‎assets/signature-drop-diag.png‎
541 KB b/‎assets/signature-drop-diag.png‎
541 KB
diff --git a/‎contracts/signature-drop/signatureDrop.md‎
Lines changed: 203 additions & 0 deletions b/‎contracts/signature-drop/signatureDrop.md‎
Lines changed: 203 additions & 0 deletions
@@ -0,0 +1,203 @@
+# SignatureDrop design document.
+
+This is a live document that explains what the [thirdweb](https://thirdweb.com/) `SignatureDrop` smart contract is, how it works and can be used, and why it is designed the way it is.
+
+The document is written for technical and non-technical readers. To ask further questions about thirdweb’s `SignatureDrop` contract, please join the [thirdweb discord](https://discord.gg/thirdweb) or create a github issue.
+
+---
+
+## Background
+
+The thirdweb [`Drop`](https://portal.thirdweb.com/contracts/design/Drop) contracts are distribution mechanisms for tokens. 
+
+The `Drop` contracts are meant to be used when the goal of the contract creator is for an audience to come in and claim tokens within certain restrictions e.g. — ‘only addresses in an allowlist can mint tokens’, or ‘minters must pay **x** amount of price in **y** currency to mint’, etc.
+
+The `Drop` contracts let the contract creator establish phases (periods of time), where each phase can specify multiple such restrictions on the minting of tokens during that period of time. We refer to such a phase as a ‘claim condition’.
+
+`SignatureDrop` adds on to the functionality by allowing the audience to claim tokens using a mint-request pre-signed by the contract creator.
+
+### How the `SignatureDrop` product *should* work
+
+![signature-drop-diag.png](/assets/signature-drop-diag.png)
+
+### Core parts of the `SignatureDrop` product
+
+- An authorized account should be able to batch upload NFT metadata, and set whether the base URI is encrypted or not.
+- An authorized account should be able to authorize an external party to claim tokens on their contract using a signed mint-request.
+- An account with the admin role should be able to set claim conditions
+- Allowlisted accounts should be able to claim tokens within a particular claim condition when active.
+
+### Why we’re building `SignatureDrop`
+
+We built our `Drop` contracts for the following [reason](https://portal.thirdweb.com/contracts/design/Drop#why-were-building-drop). The limitation of our `Drop` contracts is that all wallets in an audience attempting to claim tokens are subject to the same restrictions in the single, active claim phase at any moment.
+
+In the `SignatureDrop` contract, a wallet can now claim tokens [via a signature](https://portal.thirdweb.com/contracts/design/SignatureMint#background) from an authorized wallet, from the same pool of lazy minted tokens which can be claimed via the `Drop` mechanism. This means a contract owner can now set custom restrictions for a wallet to claim tokens, that may be different from the active claim phase at the time.
+
+## Technical Details
+
+`SignatureDrop`  is an ERC721 contract. 
+
+A contract admin can lazy mint tokens, and establish phases for an audience to come claim those tokens under the restrictions of the active phase at the time. On a per wallet basis, a contract admin can let a wallet claim those tokens under restrictions different than the active claim phase, via signature minting.
+
+### Batch upload of NFTs metadata: LazyMint
+
+The contract creator or an address with MINTER_ROLE mints *n* NFTs, by providing base URI for the tokens or an encrypted URI.
+```solidity
+function lazyMint(
+	uint256 _amount,
+  string calldata _baseURIForTokens,
+  bytes calldata _encryptedBaseURI
+) external onlyRole(MINTER_ROLE) returns (uint256 batchId)
+```
+| Parameters | Type | Description |
+| --- | --- | --- |
+| _amount | uint256 | Amount of tokens to lazy-mint. |
+| _baseURIForTokens | string | The metadata URI for the batch of tokens. |
+| _encryptedBaseURI | bytes | Encrypted URI for the batch of tokens. |
+
+### Delayed reveal
+
+An account with MINTER_ROLE can reveal the URI for a batch of ‘delayed-reveal’ NFTs. The URI can be revealed by calling the following function:
+```solidity
+function reveal(uint256 _index, bytes calldata _key)
+	external
+  onlyRole(MINTER_ROLE)
+  returns (string memory revealedURI)
+```
+| Parameters | Type | Description |
+| --- | --- | --- |
+| _index | uint256 | Index of the batch for which URI is to be revealed. |
+| _key | bytes | Key for decrypting the URI. |
+
+### Claiming tokens via signature
+
+An account with MINTER_ROLE signs the mint request for a user. The mint request is then submitted for claiming the tokens. The mint request is specified in the following format:
+```solidity
+struct MintRequest {
+	address to;
+	address royaltyRecipient;
+	uint256 royaltyBps;
+	address primarySaleRecipient;
+	string uri;
+	uint256 quantity;
+	uint256 pricePerToken;
+	address currency;
+	uint128 validityStartTimestamp;
+	uint128 validityEndTimestamp;
+	bytes32 uid;
+}
+```
+| Parameters | Type | Description |
+| --- | --- | --- |
+| to | address | The recipient of the tokens to mint. |
+| royaltyRecipient | address | The recipient of the minted token's secondary sales royalties. |
+| royaltyBps | uint256 | The percentage of the minted token's secondary sales to take as royalties. |
+| primarySaleRecipient | address | The recipient of the minted token's primary sales proceeds. |
+| uri | string | The metadata URI of the token to mint. |
+| quantity | uint256 | The quantity of tokens to mint. |
+| pricePerToken | uint256 | The price to pay per quantity of tokens minted. |
+| currency | address | The currency in which to pay the price per token minted. |
+| validityStartTimestamp | uint128 | The unix timestamp after which the payload is valid. |
+| validityEndTimestamp | uint128 | The unix timestamp at which the payload expires. |
+| uid | bytes32 | A unique identifier for the payload. |
+
+The authorized external party can mint the tokens by submitting mint-request and contract owner’s signature to the following function:
+```solidity
+function mintWithSignature(
+	ISignatureMintERC721.MintRequest calldata _req, 
+	bytes calldata _signature
+) external payable
+```
+| Parameters | Type | Description |
+| --- | --- | --- |
+| _req | ISignatureMintERC721.MintRequest | Mint request in the format specified above. |
+| _signature | bytes | Contact owner’s signature for the mint request. |
+
+### Setting claim conditions and regular claiming of tokens
+
+A contract admin (i.e. a holder of `DEFAULT_ADMIN_ROLE`) can set a series of claim conditions, ordered by their respective `startTimestamp`. A claim condition defines criteria under which accounts can mint tokens. Claim conditions can be overwritten, or added to, by the contract admin. At any moment, there is only one active claim condition.
+
+A claim condition is specified in the following format:
+```solidity
+struct ClaimCondition {
+  uint256 startTimestamp;
+  uint256 maxClaimableSupply;
+  uint256 supplyClaimed;
+  uint256 quantityLimitPerTransaction;
+  uint256 waitTimeInSecondsBetweenClaims;
+  bytes32 merkleRoot;
+  uint256 pricePerToken;
+  address currency;
+}
+```
+| Parameters | Type | Description |
+| --- | --- | --- |
+| startTimestamp | uint256 | The unix timestamp after which the claim condition applies. The same claim condition applies until the startTimestamp of the next claim condition. |
+| maxClaimableSupply | uint256 | The maximum total number of tokens that can be claimed under the claim condition. |
+| supplyClaimed | uint256 | At any given point, the number of tokens that have been claimed under the claim condition. |
+| quantityLimitPerTransaction | uint256 | The maximum number of tokens that can be claimed in a single transaction. |
+| waitTimeInSecondsBetweenClaims | uint256 | The least number of seconds an account must wait after claiming tokens, to be able to claim tokens again.. |
+| merkleRoot | bytes32 | The allowlist of addresses that can claim tokens under the claim condition. |
+| pricePerToken | uint256 | The price required to pay per token claimed. |
+| currency | address | The currency in which the pricePerToken must be paid. |
+
+The set of all claim conditions is stored in the following format:
+```solidity
+struct ClaimConditionList {
+  uint256 currentStartId;
+  uint256 count;
+  mapping(uint256 => ClaimCondition) conditions;
+  mapping(uint256 => mapping(address => uint256)) lastClaimTimestamp;
+  mapping(uint256 => BitMapsUpgradeable.BitMap) usedAllowlistSpot;
+}
+```
+| Parameters | Type | Description |
+| --- | --- | --- |
+| currentStartId | uint256 | The uid for the first claim condition amongst the current set of claim conditions. The uid for each next claim condition is one more than the previous claim condition's uid. |
+| count | uint256 | The total number of phases / claim conditions in the list of claim conditions. |
+| conditions | mapping(uint256 => ClaimCondition) | The claim conditions at a given uid. Claim conditions are ordered in an ascending order by their startTimestamp. |
+| lastClaimTimestamp | mapping(uint256 => mapping(address => uint256)) | Map from an account and uid for a claim condition, to the last timestamp at which the account claimed tokens under that claim condition. |
+| usedAllowlistSpot | mapping(uint256 => BitMapsUpgradeable.BitMap) | Map from a claim condition uid to whether an address in an allowlist has already claimed tokens i.e. used their place in the allowlist. |
+
+An account can claim the tokens by calling the following function:
+```solidity
+function claim(
+  address _receiver,
+  uint256 _quantity,
+  address _currency,
+  uint256 _pricePerToken,
+  AllowlistProof calldata _allowlistProof,
+  bytes memory _data
+) public payable;
+```
+| Parameters | Type | Description |
+| --- | --- | --- |
+| _receiver | address | Mint request in the format specified above. |
+| _quantity | uint256 | Contact owner’s signature for the mint request. |
+| _currency | address | The currency in which the price must be paid. |
+| _pricePerToken | uint256 | The price required to pay per token claimed. |
+| _allowlistProof | AllowlistProof | The proof of the claimer's inclusion in the merkle root allowlist of the claim conditions that apply. |
+| _data | bytes | Arbitrary bytes data that can be leveraged in the implementation of this interface. |
+
+## Permissions
+
+| Role name | Type (Switch / !Switch) | Purpose |
+| -- | -- | -- |
+| TRANSFER_ROLE | Switch | Only token transfers to or from role holders are allowed. |
+| MINTER_ROLE | !Switch | Only MINTER_ROLE holders can sign off on MintRequests and lazy mint tokens. |
+
+What does **Type (Switch / !Switch)** mean?
+- **Switch:** If `address(0)` has `ROLE`, then the `ROLE` restrictions don't apply.
+- **!Switch:** `ROLE` restrictions always apply.
+
+## Relevant EIPs
+
+| EIP | Link | Relation to SignatureDrop |
+| --- | --- | --- |
+| 721 | https://eips.ethereum.org/EIPS/eip-721 | `SignatureDrop` is an ERC721 contract. |
+| 2981 | https://eips.ethereum.org/EIPS/eip-2981 | `SignatureDrop` implements ERC 2981 for distributing royalties for sales of the wrapped NFTs. |
+| 2771 | https://eips.ethereum.org/EIPS/eip-2771 | `SignatureDrop` implements ERC 2771 to support meta-transactions (aka “gasless” transactions). |
+
+## Authors
+- [kumaryash90](https://github.com/kumaryash90)
+- [thirdweb team](https://github.com/thirdweb-dev)