Locker Contract participant MPC as MPC Service
(off-chain) participant Other as Destination Chain note over User, Bridge: NEAR Blockchain User->>Bridge:1. Submits transfer
token request Bridge->>Bridge: 2. Locks tokens Bridge->>MPC: 3. Request signature MPC->>MPC: 3. Signs message MPC-->>Bridge: 4. Return signed msg Bridge->>Other: 5. Broadcast signed msg to destination chain Other->>Other: 4. Mint/release tokens ``` To get started building with Omni Bridge, see: * [Bridge SDK JS](https://github.com/near-one/bridge-sdk-js) Omni Bridge implementation in JavaScript * [Bridge SDK Rust](https://github.com/near-one/bridge-sdk-rs) Omni Bridge implementation in Rust # Implementation Details Source: https://docs.near.org/chain-abstraction/omnibridge/implementation Explore Omni Bridge's technical architecture The Omni Bridge is a sophisticated cross-chain bridge infrastructure that enables secure and efficient token transfers between NEAR Protocol and various other blockchain networks. This document provides a detailed technical overview of the bridge's architecture, covering its core components, security model, and operational mechanisms. By leveraging a combination of Multi-Party Computation (MPC), chain-specific light clients, and a permissionless relayer network, the bridge achieves a robust balance of security, decentralization, and user experience. For reference code implementations, see: * [Bridge SDK JS](https://github.com/near-one/bridge-sdk-js) Omni Bridge implementation in JavaScript * [Bridge SDK Rust](https://github.com/near-one/bridge-sdk-rs) Omni Bridge implementation in Rust *** ## The Bridge Token Factory Pattern At the core of Omni Bridge is the Bridge Token Factory contract on NEAR that serves as both a token factory and custodian. This unified contract handles both native tokens from the source chain and bridged tokens created by the factory itself. This design simplifies maintenance and reduces complexity compared to having separate contracts. The contract has several key responsibilities: ### For bridged tokens (tokens originally from other chains): * Deploys new token contracts when bridging tokens for the first time * Mints tokens when receiving valid transfer messages * Burns tokens when initiating transfers back to the origin chain ### For native NEAR tokens: * Acts as a custodian by locking tokens during transfers * Releases tokens when receiving valid transfer messages * Manages token operations through the NEP-141 standard ### Transfer Lifecycle A transfer's lifecycle includes several states, shown below for a NEAR to Ethereum transfer of native NEAR tokens: ```mermaid theme={"theme":{"light":"github-light","dark":"github-dark"}} stateDiagram-v2 [*] --> Initiated: User calls transfer Initiated --> Locked: Tokens locked in bridge Locked --> Signed: MPC signature generated Signed --> Completed: Tokens released on Ethereum Completed --> [*] ``` *** ## Message Signing and Verification For most chains, the bridge uses a payload-based message signing system (with Bitcoin being a notable exception requiring full transaction signing). ### Message Types The bridge supports several types of signed messages: * **Transfer Messages** * Initiation messages * Finalization messages * **Token Messages** * Deployment messages * Metadata update messages ### Payload Structure Messages are encoded using Borsh serialization and contain: | Component | Description | | -------------- | ----------------------------------- | | Message Type | Identifier for the message category | | Chain Info | Chain IDs and relevant addresses | | Operation Data | Amounts, recipients, fees, etc. | ### Signature Process 1. NEAR contract creates and stores the message payload 2. MPC network observers detect valid payloads 3. Nodes jointly sign the payload 4. Signature is verified on destination chains
#### Examples ```bash theme={"theme":{"light":"github-light","dark":"github-dark"}} # Query user's FTs curl https://api.fastnear.com/v1/account/root.near/ft # Query user's NFTs curl https://api.fastnear.com/v1/account/root.near/nft # Query all user's assets curl https://api.fastnear.com/v1/account/root.near/full ``` *** ## NearBlocks API [NearBlocks API](https://api.nearblocks.io/api-docs/) provides an endpoint to query actions that happened on a NEAR account, possible use cases include: * Query an account balance * Query all function calls to specific contract * Get total NEAR supply and circulating supply * Query the number of total transactions on NEAR
#### Examples ```bash theme={"theme":{"light":"github-light","dark":"github-dark"}} # All the transactions where somebody called `create_drop` on Keypom curl -X GET "https://api.nearblocks.io/v1/account/v2.keypom.near/txns?method=create_drop" # All the times that `gagdiez.near` called `create_drop` on Keypom curl -X GET "https://api.nearblocks.io/v1/account/v2.keypom.near/txns?method=create_drop&from=gagdiez.near" ``` *** ## Pikespeak API The [Pikespeak API](https://doc.pikespeak.ai/) allows you to fetch blockchain events and aggregated analytics on wallets, validators, delegators, money transfers, dApps activity, and more. Use case includes: * Querying account balances * Querying the most active wallets * Querying historic account events *To access the Pikespeak API you'll need to [register and create an account](https://pikespeak.ai/plans). Once you're registered, under the [`My Account`](https://pikespeak.ai/myaccount) page you can get your API key*
#### Examples ```sh theme={"theme":{"light":"github-light","dark":"github-dark"}} # Check the account balance for `root.near`: curl -X GET https://api.pikespeak.ai/account/balance/root.near -H "accept: application/json" -H "x-api-key: YOUR-PIKESPEAK-API-KEY" # Most active wallets NEAR senders curl -X GET https://api.pikespeak.ai/hot-wallets/near -H "accept: application/json" -H "x-api-key: YOUR-PIKESPEAK-API-KEY" # Get historic account events for `keypom.near` curl -X GET https://api.pikespeak.ai/event-historic/keypom.near -H "accept: application/json" -H "x-api-key: YOUR-PIKESPEAK-API-KEY" ``` *** ## The Graph [The Graph](https://thegraph.com/docs/en/cookbook/near/) gives developers tools to process blockchain events and make the resulting data easily available via a GraphQL API, known individually as a subgraph. [Graph Node](https://github.com/graphprotocol/graph-node) is now able to process NEAR events, which means that NEAR developers can now build subgraphs to index their smart contracts. *** ## SubQuery [SubQuery](https://academy.subquery.network/quickstart/quickstart_chains/near.html): A fast, flexible, and reliable open-source data indexer that provides you with custom APIs for your web3 project across NEAR and many other chains # Data Services Source: https://docs.near.org/data-infrastructure/data-services Indexers are constantly listening for transactions and storing them so they can be easily queried. Data Services are constantly listening to the blockchain, processing the transactions and storing them in a database that can be easily queried. You can use them to access blockchain data efficiently: * [Neardata](https://neardata.xyz): a direct, drop-in replacement for NEAR Lake providing a stream of blocks for your custom indexer. * [BigQuery](./big-query): Blockchain data indexing in NEAR Public Lakehouse is for anyone wanting to understand blockchain data. * [Indexer.xyz Multichain Indexer](https://indexer.xyz/): Indexer.xyz is an application layer that you can build your NFT or DeFi applications entirely on top of. In addition to raw transaction indexing, Indexer.xyz provides you with a standardized GraphQL API layer to easily tap into transactions across contracts and chains. * [The Graph](https://thegraph.com/docs/en/cookbook/near/): development tools to process blockchain events and make the resulting data easily available via a GraphQL API, known individually as a subgraph. [Graph Node](https://github.com/graphprotocol/graph-node) is able to process NEAR events, which means that NEAR developers can build subgraphs to index their smart contracts. * [GetBlock](https://getblock.io/explorers/near/blocks/): developer tools offering a simple and reliable API access for historical data streams and other services for NEAR. * [Community APIs](./data-api): build precise & reliable dApps with our community's APIs. * [Covalent](https://www.covalenthq.com/docs/networks/aurora/): for [Aurora EVM](https://aurora.dev/) indexing, Covalent provides a unified API bringing visibility to billions of Web3 data points. * [NEAR Indexer Framework](https://github.com/near/nearcore/tree/master/chain/indexer): a micro-framework providing you with a "live" stream of blocks. Useful to handle on-chain real-time `events`. * [SubQuery](https://academy.subquery.network/quickstart/quickstart_chains/near.html): is an end to end multi-blockchain indexing solution that provides NEAR developers with fast, flexible, universal, open source and decentralized APIs for web3 projects. The [NEAR starter project](https://github.com/subquery/near-subql-starter/tree/main/Near/near-starter) provides a template for developers to get up and running within minutes. * [GoldSky](https://docs.goldsky.com/chains/near): a hosted data platform that supports NEAR mainnet via **Mirror** (real-time data replication into your own infrastructure) and **Turbo** (high-performance streaming pipelines with sub-second latency). No infrastructure to manage — connect your data destination and start streaming on-chain data immediately. * NEAR Lake Framework (**deprecated**): a companion library to NEAR Lake. It allows you to build your own indexer that watches a stream of blocks **from a NEAR Lake data source**.
(but only mainnet and testnet networks) | | Decentralized | **Yes** | No
(Aurora dumps the blocks to AWS S3) | | Reaction time (end-to-end) | minimum 3.8s (estimated average 5-7s) | [minimum 3.9s (estimated average 6-8s)](./near-lake-framework#latency) | | Reaction time (framework overhead only) | 0.1s | 0.2-2.2s | | Estimated cost of infrastructure | [\$500+/mo](https://near-nodes.io/rpc/hardware-rpc) | [**\$20/mo**](./near-lake-framework#cost) | | Ease of maintenance | Advanced
(need to follow every nearcore upgrade, and sync state) | **Easy**
(deploy once and forget) | | How long will it take to start? | days (on mainnet/testnet) | **seconds** | | Ease of local development | Advanced
(localnet is a good option, but testing on testnet/mainnet is too heavy) | **Easy**
(see [tutorials](./tutorials/near-lake-state-changes-indexer)) | | Programming languages that a custom indexer can be implemented with | Rust only | **Any**
(currently, helper packages are released in [Python](http://pypi.org/project/near-lake-framework), [JavaScript](https://www.npmjs.com/package/near-lake-framework), and [Rust](https://crates.io/crates/near-lake-framework)) | *** # Tutorial: Creating an Indexer Source: https://docs.near.org/data-infrastructure/tutorials/near-indexer This tutorial will guide you through building an indexer using the NEAR Indexer Framework. The indexer will listen for FunctionCalls on a specific contract and log the details of each call. In this tutorial, we will build an indexer using the NEAR Indexer Framework. The indexer will listen realtime blocks data from NEAR blockchain. To get our indexer up and running we will need two steps: 1. To [initialize](#initialization) the indexer 2. To [start it](#starting-the-indexer) The full source code for the indexer example is available in the [GitHub repository](https://github.com/near/nearcore/tree/master/tools/indexer/example).
`~/.near` | Tells the node where too look for necessary files:
`config.json`
,
`genesis.json`
,
`node_key.json`
, and
`data`
folder | | `init` | | | Tells the node to generate config files in `--home-dir` | | | `--chain-id` | Required
\_ `localnet`
\_ `testnet`
\* `mainnet` | Defines the chain to generate config files for | | | `--download-config` | Optional | If provided tells the node to download `config.json` from the public URL. You can download them manually
- [testnet config.json](https://s3-us-west-1.amazonaws.com/build.nearprotocol.com/nearcore-deploy/testnet/rpc/config.json)
- [mainnet config.json](https://s3-us-west-1.amazonaws.com/build.nearprotocol.com/nearcore-deploy/mainnet/rpc/config.json) | | | `--download-genesis` | Optional | If provided tells the node to download `genesis.json` from the public URL. You can download them manually
- [testnet genesis.json](https://s3-us-west-1.amazonaws.com/build.nearprotocol.com/nearcore-deploy/testnet/genesis.json)
- [mainnet genesis.json](https://s3-us-west-1.amazonaws.com/build.nearprotocol.com/nearcore-deploy/mainnet/genesis.json) | | | TODO:
Other `neard` keys | | | | `run` | | | Runs the node | | | `--bucket` | Required | AWS S3 Bucket name | | | `--region` | Required | AWS S3 Bucket region | | | `--fallback-region` | Default eu-central-1 | AWS S3 Fallback region | | | `--endpoint` | Optional | AWS S3 compatible API endpoint | | | `--stream-while-syncing` | Optional | If provided Indexer streams blocks while they appear on the node instead of waiting the node to be fully synced | | | `--concurrency` | Default 1 | Defines the concurrency for the process of saving block data to AWS S3 | | | `sync-from-latest` | One of the `sync-` subcommands is required | Tells the node to start indexing from the latest block in the network | | | `sync-from-interruption` | One of the `sync-` subcommands is required | Tells the node to start indexing from the block the node was interrupted on (if it is a first start it will fallback to `sync-from-latest`) | | | `sync-from-block --height N` | One of the
`sync-`
subcommands is required | Tells the node to start indexing from the specified block height `N` (**Ensure** you node data has the block you want to start from) | ```bash theme={"theme":{"light":"github-light","dark":"github-dark"}} $ ./target/release/near-lake --home ~/.near/testnet run --stream-while-syncing --concurrency 50 sync-from-latest ``` After the network is synced, you should see logs of every block height currently received by NEAR Lake. *** ## Syncing Whenever you run NEAR Lake for any network except localnet you'll need to sync with the network. This is required because it's a natural behavior of `nearcore` node and NEAR Lake is a wrapper for the regular `nearcore` node. In order to work and index the data your node must be synced with the network. While snapshot-based syncing was previously the recommended default, we now recommend [Epoch Sync](https://near-nodes.io/intro/node-epoch-sync) —a faster, more lightweight method that allows a node to catch up from genesis without downloading a large state snapshot. *** ## Running NEAR Lake as an archival node It's not necessary but in order to index everything in the network it is better to do it from the genesis. `nearcore` node is running in non-archival mode by default. That means that the node keeps data only for [5 last epochs](/protocol/network/epoch). In order to index data from the genesis you need to turn the node in archival mode. To do it you need to update `config.json` located in `--home-dir` (by default it is `~/.near`). Find next keys in the config and update them as following: ```json theme={"theme":{"light":"github-light","dark":"github-dark"}} { ... "archive": true, "tracked_shards": [0], ... } ``` The syncing process in archival mode can take a lot of time, so it's better to download a backup provided by NEAR and put it in your `data` folder. After that your node will download only the data after the backup was cut and it takes reasonable amount time. All the backups can be downloaded from the public [S3 bucket](https://docs.fastnear.com/docs/snapshots/mainnet#archival-mainnet-snapshot) provided by FastNEAR. See [this link](https://near-nodes.io/archival/run-archival-node-with-nearup) for reference *** ## Custom S3 storage In case you want to run you own `near-lake` instance and store data in some S3 compatible storage ([Minio](https://min.io/) or [Localstack](https://localstack.cloud/) as example) You can override default S3 API endpoint by using `--endpoint` option * run `minio` ```bash theme={"theme":{"light":"github-light","dark":"github-dark"}} $ mkdir -p /data/near-lake-custom && minio server /data ``` * run `near-lake` ```bash theme={"theme":{"light":"github-light","dark":"github-dark"}} $ ./target/release/near-lake --home ~/.near/testnet run --endpoint http://127.0.0.1:9000 --bucket near-lake-custom sync-from-latest ``` ### Data structure The data structure we use is the following: ```text theme={"theme":{"light":"github-light","dark":"github-dark"}}
## [BigQuery: Public Dataset](./big-query) A large dataset with on-chain data publicly available on Google Cloud Platform. Obtain near real-time blockchain data using simple SQL queries. **All the data, zero setup**. * Instant insights: Historic on-chain data queried at scale. No need to run your own infrastructure. * Cost-effective: Eliminate the need to store and process bulk NEAR Protocol data. Query as little or as much data as you like. * As easy as SQL: No prior experience with blockchain technology is required. Just bring a general knowledge of SQL to unlock insights.
## [NEAR Lake](./near-lake-framework)
NEAR Developer Docs
It has never been easier to build smart contracts, decentralized applications, and native cross-chain applications.
Deploy your first contract in minutes
Write smart contracts in Rust, JavaScript, TypeScript or Python. Scaffold a working project with a single command, then build, test, and deploy.
Start the quickstart →Connect your frontend to NEAR
Use near-api-js and the Wallet Selector to authenticate users and call smart contracts from any frontend framework.
Sign transactions on any chain
Use Chain Signatures to derive threshold keys and sign transactions on any blockchain — all from a single NEAR account, no bridge or wrapped assets required.
Get started →### Using Global Contract You can deploy a new DAO using our global contract - a pre-deployed [a Sputnik DAO contract](https://github.com/near-daos/sputnik-dao-contract/tree/main/sputnikdao2) that you can reuse. [Global contracts](../smart-contracts/global-contracts) are deployed once and can be reused by any account without incurring high storage costs.
### Voting policy Currently, DAOs support two different types of [voting policies](https://github.com/near-daos/sputnik-dao-contract#voting-policy): `TokenWeight`, and `RoleWeight`. When the vote policy is `TokenWeight`, the council votes using [tokens](./ft/ft). The weigh of a vote is the proportion of tokens used for voting over the token's total supply. When the vote policy is `RoleWeight(role)`, the vote weigh is computed as "one over the total number of people with the role".
```bash theme={"theme":{"light":"github-light","dark":"github-dark"}} [ 'ref-finance.sputnik-dao.near' 'gaming-dao.sputnik-dao.near', ... ] ```
```bash theme={"theme":{"light":"github-light","dark":"github-dark"}} [ { id: 9262, proposer: 'pasternag.near', description: 'NEAR, a top non-EVM blockchain, has gone live on Router’s Testnet Mandara. With Router Nitro, our flagship dApp, users in the NEAR ecosystem can now transfer test tokens to and from NEAR onto other supported chains. $$$$https://twitter.com/routerprotocol/status/1727732303491961232', kind: { Transfer: { token_id: '', receiver_id: 'pasternag.near', amount: '500000000000000000000000', msg: null } }, status: 'Approved', vote_counts: { council: [ 1, 0, 0 ] }, votes: { 'brzk-93444.near': 'Approve' }, submission_time: '1700828277659425683' }, { id: 9263, proposer: 'fittedn.near', description: 'How to deploy BOS component$$$$https://twitter.com/BitkubAcademy/status/1728003163318563025?t=PiN6pwS380T1N4JuQXSONA&s=19', kind: { Transfer: { token_id: '', receiver_id: 'fittedn.near', amount: '500000000000000000000000', msg: null } }, status: 'InProgress', vote_counts: { 'Whitelisted Members': [ 1, 0, 0 ] }, votes: { 'trendheo.near': 'Approve' }, submission_time: '1700832601849419123' } ] ```
```json theme={"theme":{"light":"github-light","dark":"github-dark"}} { "token_contract_id": "token.v2.ref-finance.near", "price": "0.08153090" } ```
```json theme={"theme":{"light":"github-light","dark":"github-dark"}} { "token.v2.ref-finance.near": "0", "wrap.near": "0" } ```
```bash theme={"theme":{"light":"github-light","dark":"github-dark"}} { 'token.v2.ref-finance.near': '0', 'wrap.near': "0" } ```
```bash theme={"theme":{"light":"github-light","dark":"github-dark"}} { 'token.v2.ref-finance.near': '0', 'wrap.near': "0" } ```
```js theme={"theme":{"light":"github-light","dark":"github-dark"}} [ { pool_kind: 'SIMPLE_POOL', token_account_ids: ['token.skyward.near', 'wrap.near'], amounts: ['51865812079751349630100', '6254162663147994789053210138'], total_fee: 30, shares_total_supply: '1305338644973934698612124055', amp: 0, }, { pool_kind: 'SIMPLE_POOL', token_account_ids: [ 'c02aaa39b223fe8d0a0e5c4f27ead9083c756cc2.factory.bridge.near', 'wrap.near', ], amounts: ['783621938569399817', '1100232280852443291118200599'], total_fee: 30, shares_total_supply: '33923015415693335344747628', amp: 0, }, ]; ```
```bash theme={"theme":{"light":"github-light","dark":"github-dark"}} [ { pool_kind: 'SIMPLE_POOL', token_account_ids: [ 'token.skyward.near', 'wrap.near' ], amounts: [ '51865812079751349630100', '6254162663147994789053210138' ], total_fee: 30, shares_total_supply: '1305338644973934698612124055', amp: 0 }, { pool_kind: 'SIMPLE_POOL', token_account_ids: [ 'c02aaa39b223fe8d0a0e5c4f27ead9083c756cc2.factory.bridge.near', 'wrap.near' ], amounts: [ '783621938569399817', '1100232280852443291118200599' ], total_fee: 30, shares_total_supply: '33923015415693335344747628', amp: 0 } ] ```
```bash theme={"theme":{"light":"github-light","dark":"github-dark"}} [ { pool_kind: 'SIMPLE_POOL', token_account_ids: [ 'token.skyward.near', 'wrap.near' ], amounts: [ '51865812079751349630100', '6254162663147994789053210138' ], total_fee: 30, shares_total_supply: '1305338644973934698612124055', amp: 0 }, { pool_kind: 'SIMPLE_POOL', token_account_ids: [ 'c02aaa39b223fe8d0a0e5c4f27ead9083c756cc2.factory.bridge.near', 'wrap.near' ], amounts: [ '783621938569399817', '1100232280852443291118200599' ], total_fee: 30, shares_total_supply: '33923015415693335344747628', amp: 0 } ] ```
```bash theme={"theme":{"light":"github-light","dark":"github-dark"}} '5019606679394603179450' ```
```bash theme={"theme":{"light":"github-light","dark":"github-dark"}} '5019606679394603179450' ```
```json theme={"theme":{"light":"github-light","dark":"github-dark"}} { "spec": "ft-1.0.0", "name": "Ref Finance Token", "symbol": "REF", "icon": "data:image/svg+xml,%3Csvg xmlns='http://www.w3.org/2000/svg' viewBox='16 24 248 248' style='background: %23000'%3E%3Cpath d='M164,164v52h52Zm-45-45,20.4,20.4,20.6-20.6V81H119Zm0,18.39V216h41V137.19l-20.6,20.6ZM166.5,81H164v33.81l26.16-26.17A40.29,40.29,0,0,0,166.5,81ZM72,153.19V216h43V133.4l-11.6-11.61Zm0-18.38,31.4-31.4L115,115V81H72ZM207,121.5h0a40.29,40.29,0,0,0-7.64-23.66L164,133.19V162h2.5A40.5,40.5,0,0,0,207,121.5Z' fill='%23fff'/%3E%3Cpath d='M189 72l27 27V72h-27z' fill='%2300c08b'/%3E%3C/svg%3E%0A", "reference": null, "reference_hash": null, "decimals": 18 } ```
```bash theme={"theme":{"light":"github-light","dark":"github-dark"}} { spec: "ft-1.0.0", name: "Ref Finance Token", symbol: "REF", icon: "data:image/svg+xml,%3Csvg xmlns='http://www.w3.org/2000/svg' viewBox='16 24 248 248' style='background: %23000'%3E%3Cpath d='M164,164v52h52Zm-45-45,20.4,20.4,20.6-20.6V81H119Zm0,18.39V216h41V137.19l-20.6,20.6ZM166.5,81H164v33.81l26.16-26.17A40.29,40.29,0,0,0,166.5,81ZM72,153.19V216h43V133.4l-11.6-11.61Zm0-18.38,31.4-31.4L115,115V81H72ZM207,121.5h0a40.29,40.29,0,0,0-7.64-23.66L164,133.19V162h2.5A40.5,40.5,0,0,0,207,121.5Z' fill='%23fff'/%3E%3Cpath d='M189 72l27 27V72h-27z' fill='%2300c08b'/%3E%3C/svg%3E%0A", reference: null, reference_hash: null, decimals: 18 } ```
```json theme={"theme":{"light":"github-light","dark":"github-dark"}} "3479615037675962643842" ```
```bash theme={"theme":{"light":"github-light","dark":"github-dark"}} '376224322825327177426' ```
```json theme={"theme":{"light":"github-light","dark":"github-dark"}} "100000000000000000" ```
```bash theme={"theme":{"light":"github-light","dark":"github-dark"}} '100000000000000000' ```
#### `ft_balance_of` (*read-only*) Returns the balance of a given account ```ts theme={"theme":{"light":"github-light","dark":"github-dark"}} ft_balance_of(account_id: string): string ```
#### `ft_transfer` Transfers `amount` of tokens from the account calling the function to a `receiver_id`, optionally the function can include a `memo` field to provide additional information to the contract > *Requirement: The caller must attach [exactly 1 yoctoNEAR](../../smart-contracts/security/one_yocto) to the call* ```ts theme={"theme":{"light":"github-light","dark":"github-dark"}} ft_transfer(receiver_id: string, amount: string, memo: string?): void ```
#### `ft_transfer_call` The function transfers `amount` of tokens to the `receiver_id` **and calls the method `ft_on_transfer(sender_id, amount, msg)`** on `receiver_id`. Optionally the function can include a `memo` for the FT contract, and a `msg` field to which will be sent to the receiver contract. > 📖 This function is useful to transfer tokens to a contract and trigger some action on the receiver side in a single transaction, thus acting as **attaching fungible tokens to a function call**. > *Requirement: The caller must attach [exactly 1 yoctoNEAR](../../smart-contracts/security/one_yocto) to the call* ```ts theme={"theme":{"light":"github-light","dark":"github-dark"}} ft_transfer_call(receiver_id: string, amount: string, memo: string?, msg: string): void ```
#### `ft_resolve_transfer` This method is used as a [callback](../../smart-contracts/anatomy/crosscontract#callback-function) to resolve the `ft_transfer_call` transaction, handling refunds if necessary. ```js theme={"theme":{"light":"github-light","dark":"github-dark"}} ft_resolve_transfer(sender_id: string, receiver_id: string, amount: string): string ``` *** ## NEP-145 (Storage Management) On NEAR, accounts need to pay for the storage they use on the network. As more users hold tokens on a fungible token contract, more information needs to be stored, and thus the contract needs to reserve more storage. [NEP-145](https://github.com/near/NEPs/blob/master/neps/nep-0145.md) is a standard that defines a common interface for registering users, allowing FT contracts to **charge users for the storage they use**.
Generate a new key on [Lantstool](https://app.lantstool.dev/)
#### `get_key_information` (*read-only*) Returns information about a specific linkdrop key, including the amount of NEAR tokens assigned to it, the receiver ID, and whether the key has been claimed ```ts theme={"theme":{"light":"github-light","dark":"github-dark"}} interface NFTData { contract_id: string; token_id: string; } interface FTData { contract_id: string; amount: string; } get_key_information(key: string): { required_gas: string, yoctonear: string, nft_list: NFTData[], ft_list: FTData[] }; ```
#### `claim` Allows a user to claim the assets associated with a specific key. The function transfers the NEAR tokens, NFTs, and FTs assigned to the provided `account_id`, which MUST exist prior to calling this method. > ⚠️ Users need to call this method signing the transaction with the **linkdrop key they received**. ```ts theme={"theme":{"light":"github-light","dark":"github-dark"}} claim(account_id: string): boolean; ```
#### `create_account_and_claim` Allows a user to **create a new account** and **claim the assets** associated with a specific key. The function creates the new account with the provided `new_account_id` and transfers the NEAR tokens, NFTs, and FTs assigned to it. > ⚠️ Users need to call this method signing the transaction with the **linkdrop key they received**. ```ts theme={"theme":{"light":"github-light","dark":"github-dark"}} create_account_and_claim(new_account_id: string, new_public_key: string): Promise
### Minting Collections Many times people want to create multiple 100 copies of an NFT (this is called a collection). In such cases, what you actually need to do is to mint 100 different NFTs with the same metadata (but different `token-id`).
### Royalties You might have noticed that one of the parameters is a structure called royalties. Royalties enable you to create a list of users that should get paid when the token is sell in a marketplace. For example, if `anna` has `5%` of royalties, each time the NFT is sell, `anna` should get a 5% of the selling price. *** ## Querying NFT data You can query the NFT's information and metadata by calling the `nft_token`.
### How Does it Work? Assume you want to attach an NFT (🎫) to a call on the receiver contract. The workflow is as follows: 1. You call `nft_transfer_call` in the NFT-contract passing: the receiver, a message, and the token-id of 🎫. 2. The NFT contract transfers the NFT 🎫 to the receiver. 3. The NFT contract calls **`receiver.nft_on_transfer(sender, token-owner, token-id, msg)`**. 4. The NFT contract handles errors in the `nft_resolve_transfer` callback. 5. The NFT contract returns `true` if it succeeded. #### The nft\_on\_transfer method From the workflow above it follows that the receiver we want to call needs to implement the `nft_on_transfer` method. When executed, such method will know: * Who is sending the NFT, since it is a parameter * Who is the current owner, since it is a parameter * Which NFT was transferred, since it is a parameter. * If there are any parameters encoded as a message The `nft_on_transfer` **must return true** if the NFT has to be **returned to the sender**. *** ## Approving Users You can authorize other users to transfer an NFT you own. This is useful, for example, to enable listing your NFT in a marketplace. In such scenario, you **trust** that the marketplace will only transfer the NFT upon receiving a certain amount of money in exchange.
#### `nft_transfer` Transfers the `token_id` from the caller to the `receiver_id`, optionally the function can include a `memo` field to provide additional information to the contract The caller must be the **either** the current owner of the token or an **account** that has been **approved to transfer** the token on behalf of the owner, such as a marketplace contract. The approval mechanism is defined in the [NEP-178 standard](https://github.com/near/NEPs/blob/master/neps/nep-0178.md). > *Requirement: The caller must attach [exactly 1 yoctoNEAR](../../smart-contracts/security/one_yocto) to the call* ```ts theme={"theme":{"light":"github-light","dark":"github-dark"}} nft_transfer(receiver_id: string, token_id: string, approval_id?: number, memo: string?): void ```
#### `nft_transfer_call` The function transfers the `token_id` to the `receiver_id` **and calls the method `nft_on_transfer(sender_id, previous_owner_id, token_id, msg)`** on `receiver_id`. Optionally the function can include a `memo` for the NFT contract, and a `msg` field to which will be sent to the receiver contract. > 📖 This function is useful to transfer NFTs to a contract and trigger some action on the receiver side in a single transaction, thus acting as **attaching NFTs to a function call** ```ts theme={"theme":{"light":"github-light","dark":"github-dark"}} nft_transfer_call(receiver_id: string, token_id: string, approval_id?: number, memo?: string, msg: string): Promise {} ```
#### `nft_resolve_transfer` This method is used as a [callback](../../smart-contracts/anatomy/crosscontract#callback-function) to resolve the `nft_transfer_call` transaction, handling refunds if necessary. It must return `true` if the token was successfully transferred to `receiver_id`, or `false` if the token was returned to `owner_id`. ```js theme={"theme":{"light":"github-light","dark":"github-dark"}} nft_resolve_transfer(owner_id: string, receiver_id: string, token_id: string, approved_account_ids?: Record
#### `nft_approve` Grants approval to `account_id` to transfer the `token_id` on behalf of the token owner. Optionally, the function can include a `msg` field to provide additional information to the contract. > *Requirement: The caller must attach a deposit of at least `1 yoctoNEAR` plus the storage cost for adding the new approval* ```ts theme={"theme":{"light":"github-light","dark":"github-dark"}} nft_approve(token_id: string, account_id: string, msg?: string): void ```
#### `nft_revoke` Revokes approval for `account_id` to transfer the `token_id` on behalf of the token owner. > *Requirement: The caller must attach [exactly 1 yoctoNEAR](../../smart-contracts/security/one_yocto) to the call* ```ts theme={"theme":{"light":"github-light","dark":"github-dark"}} nft_revoke(token_id: string, account_id: string): void ```
#### `nft_revoke_all` Revokes all approvals for the `token_id`. > *Requirement: The caller must attach [exactly 1 yoctoNEAR](../../smart-contracts/security/one_yocto) to the call* ```ts theme={"theme":{"light":"github-light","dark":"github-dark"}} nft_revoke_all(token_id: string): void ``` # OutLayer Source: https://docs.near.org/primitives/off-chain-compute/outlayer OutLayer is a verifiable off-chain compute platform for NEAR. Run Rust/WASM code inside Intel TDX enclaves with built-in VRF, secrets, MPC vaults, and payment keys. [OutLayer](https://outlayer.fastnear.com) is a verifiable off-chain compute platform for NEAR, built by [FastNEAR](https://fastnear.com). Smart contracts delegate work to **Intel TDX** enclaves that return results with a cryptographic attestation proving the exact code ran on the exact inputs. * **Website:** [outlayer.fastnear.com](https://outlayer.fastnear.com) * **Source:** [github.com/fastnear/near-outlayer](https://github.com/fastnear/near-outlayer) *** ## How it works 1. You write code in **Rust** and compile it to **WebAssembly** (WASI Preview 1 or 2). 2. The binary is hosted on GitHub. OutLayer clones, compiles, and caches it. 3. A NEAR contract calls OutLayer using NEAR's `yield`/`resume` flow — or any client can call the HTTPS API directly. 4. The worker runs the WASM inside a **TDX enclave** and returns the result with a TEE attestation (code hash, input hash, output, signed by the hardware). *** ## Features | Feature | Description | | ------------------------------- | ---------------------------------------------------------------------- | | **WASI runtime** | Run any Rust code compiled to `wasm32-wasi`. | | **TEE attestation** | Cryptographic proof of code + input + output, signed by Intel TDX. | | **VRF** | Verifiable randomness with Ed25519 signatures. | | **Secrets** | Encrypted API keys and credentials, decrypted only inside the enclave. | | **Confidential Key Derivation** | Keys that exist only inside your TEE code and persist across upgrades. | | **MPC Vaults** | Multi-party computation for shared key custody. | | **Payment Keys** | USDC-based metering for monetized HTTPS endpoints. | | **Persistent storage** | Encrypted storage between executions. | *** ## Example use cases The [examples gallery](https://outlayer.fastnear.com/docs/examples) ships 14+ production-ready demos. A few highlights: * **Price & weather oracles** — fetch off-chain data with a proof of source. * **Coin-flip / lottery** — VRF-based randomness for fair on-chain games. * **AI calls** — invoke OpenAI/GPT from a contract with verifiable output. * **Cross-chain reads** — query Ethereum state without a bridge. * **Private DAO voting** — tally votes inside the enclave; only the result is published. * **NEAR Intents swaps** — execute Intent flows from off-chain logic. * **Encrypted email & CAPTCHA** — end-to-end use cases requiring secrets.
### [Multiple Keys](/protocol/accounts-contracts/access-keys) NEAR accounts can have multiple [keys](/protocol/accounts-contracts/access-keys), each with their own set of permissions: * You can easily swap keys if one gets compromised * You can use keys as authorization tokens for third-party applications
### [Smart Contracts](/smart-contracts/what-is) NEAR accounts can optionally hold an application - known as a [smart contract](/smart-contracts/what-is) - which can be written in Javascript or Rust. *** ## Comparison With Ethereum If you're familiar with development on Ethereum, it's worth making a quick note about how accounts are different. The table below summarizes some key differences: | | Ethereum Account | NEAR Account | | --------------- | ------------------------ | -------------------------------------------------------------------------------------- | | Account ID | Public Key (`0x123...`) | - Native named accounts (`alice.near`)
- Implicit accounts (`0x123...`) | | Secret Key | Private Key (`0x456...`) | Multiple key-pairs with permissions:
- `FullAccess` key
- `FunctionCall` key | | Smart Contracts | Synchronous execution | Asynchronous execution | | Gas Fees | In the order of dollars | In the order of tenths of a cent | | Block Time | \~12 seconds | \~600 milliseconds | # NEAR Data Flow Source: https://docs.near.org/protocol/data-flow/near-data-flow Learn how data flows in NEAR Protocol, including transactions, receipts, shards, and cross-shard communication. NEAR Protocol blockchain data flow might be a bit tricky at a glance. But it is pretty straightforward and follows well-defined rules. In this article, we are going to have a closer look at how the data flows in NEAR Protocol blockchain.
#### Creating `.testnet` / `.near` Accounts Accounts can only create immediate sub-accounts of themselves. If your contract wants to create a `.mainnet` or `.testnet` account, then it needs to [call](#function-call) the `create_account` method of `near` or `testnet` root contracts.
Validate early
Validate inputs, context, and state as early as possible before taking any actions. The earlier you panic, the more [gas](/protocol/gas) you save for the caller. ```go theme={"theme":{"light":"github-light","dark":"github-dark"}} // @contract:mutating func (c *Contract) SetFee(newFee uint64) error { caller, err := env.GetPredecessorAccountID() if err != nil { return err } // Validate permissions early if caller != c.OwnerId { env.PanicStr("Only the owner can set the fee") } // Validate input early if newFee > 10000 { env.PanicStr("Fee cannot exceed 10000 basis points") } // Only proceed after all checks pass c.Fee = newFee return nil } ``` ***Use logging
Use `env.LogString` for debug information and to notify users of important events. Log messages are stored on-chain and visible in transaction receipts. ```go theme={"theme":{"light":"github-light","dark":"github-dark"}} // @contract:mutating func (c *Contract) Transfer(to string, amount string) error { caller, _ := env.GetPredecessorAccountID() // Log the transfer for indexers and frontends // Avoid "fmt" in TinyGo — use string concatenation instead env.LogString("Transferring " + amount + " yoctoNEAR from " + caller + " to " + to) transferAmount, err := types.U128FromString(amount) if err != nil { return err } promise.CreateBatch(to).Transfer(transferAmount) return nil } ``` ***Return Promises
When making cross-contract calls, use `.Value()` to return the promise result to the caller. This lets the caller (e.g. near-cli or near-api-js) wait for the full result and see failures in the transaction chain. ```go theme={"theme":{"light":"github-light","dark":"github-dark"}} // @contract:payable min_deposit=0.00001NEAR func (c *Contract) WithdrawAndNotify(receiverId string) { gas := uint64(10 * types.ONE_TERA_GAS) // Return the promise chain — the caller will see the final result promise.NewCrossContract(receiverId). Gas(gas). Call("on_deposit_received", map[string]string{}). Value() } ``` ***Use SDK collections for large data
For data sets that grow over time, use SDK collections instead of native Go slices or maps. Native collections are fully loaded into memory on every call, which costs more gas as they grow. ```go theme={"theme":{"light":"github-light","dark":"github-dark"}} import "github.com/vlmoon99/near-sdk-go/collections" // Good: SDK collections load entries lazily // @contract:state type TokenContract struct { Balances *collections.LookupMap[string, string] `json:"balances"` Owners *collections.UnorderedSet[string] `json:"owners"` } // @contract:init func (c *TokenContract) Init() { c.Balances = collections.NewLookupMap[string, string]("b") c.Owners = collections.NewUnorderedSet[string]("o") } ```Follow security patterns
Apply security best practices to protect your contract from common vulnerabilities. ```go theme={"theme":{"light":"github-light","dark":"github-dark"}} // @contract:payable min_deposit=0.01NEAR // @contract:mutating func (c *Contract) Deposit() error { caller, err := env.GetPredecessorAccountID() if err != nil { return err } deposit, err := env.GetAttachedDeposit() if err != nil { return err } // Re-entrancy protection: update state BEFORE any external calls current, _ := c.Balances.Get(caller) currentAmount, _ := types.U128FromString(current) newAmount, _ := currentAmount.Add(deposit) c.Balances.Insert(caller, newAmount.String()) // Only after state is updated, perform external calls if needed env.LogString("Deposit recorded for " + caller) return nil } // Access control: only the contract itself can call this callback // @contract:view // @contract:promise_callback func (c *Contract) OnExternalCallDone(result promise.PromiseResult) { currentAccount, _ := env.GetCurrentAccountId() caller, _ := env.GetPredecessorAccountID() if caller != currentAccount { env.PanicStr("Callbacks can only be called by the contract itself") } if !result.Success { env.LogString("External call failed — rolling back state changes") // manually revert any state changes made before the cross-contract call } } ```### Vector Implements a [vector/array](https://en.wikipedia.org/wiki/Array_data_structure) which persists in the contract's storage. Please refer to the Rust and JS SDK's for a full reference on their interfaces.
### LookupMap Implements a [map/dictionary](https://en.wikipedia.org/wiki/Associative_array) which persists in the contract's storage. Please refer to the Rust and JS SDK's for a full reference on their interfaces.
### UnorderedMap / IterableMap Implements a [map/dictionary](https://en.wikipedia.org/wiki/Associative_array) which persists in the contract's storage. Please refer to the Rust and JS SDK's for a full reference on their interfaces.
### LookupSet Implements a [set](https://en.wikipedia.org/wiki/Set_\(abstract_data_type\)) which persists in the contract's storage. Please refer to the Rust and JS SDK's for a full reference on their interfaces.
### UnorderedSet / IterableSet Implements a [set](https://en.wikipedia.org/wiki/Set_\(abstract_data_type\)) which persists in the contract's storage. Please refer to the Rust and JS SDK's for a full reference on their interfaces.
### Tree An ordered equivalent of Map. The underlying implementation is based on an [AVL](https://en.wikipedia.org/wiki/AVL_tree). You should use this structure when you need to: have a consistent order, or access the min/max keys.
### [JSON](https://www.json.org/json-en.html): Objects to Strings #### Features * Self-describing format * Easy interoperability with JavaScript * Multiple implementations readily available * But... it is not efficient both in computational times and resulting size #### Example ```js theme={"theme":{"light":"github-light","dark":"github-dark"}} Example{ number: i32 = 2; arr: Vector
### [Borsh](https://borsh.io/): Objects to Bytes #### Features * Compact, binary format built to be efficiently (de)serialized * Strict and canonical binary representation * Less overhead: it does not need to store attributes names * But... it is necessary to know the schema to (de)serialize the data #### Example ```js theme={"theme":{"light":"github-light","dark":"github-dark"}} Example{ number: i32 = 2; arr: Vector
### Deserialization Error When somebody invokes a smart contract method, the first step for the contract is to deserialize its own state. In the example used above, the contract will start by reading the `STATE` key and try to deserialize its value into an object `Contract{string: String, vector: Vector
### View methods View methods are those that perform **read-only** operations. Calling these methods is free, and do not require to specify which account is being used to make the call: ```bash theme={"theme":{"light":"github-light","dark":"github-dark"}} near view
### Change methods Change methods are those that perform both read and write operations. For these methods we do need to specify the account being used to make the call, since that account will expend GAS in the call. ```bash theme={"theme":{"light":"github-light","dark":"github-dark"}} near call
### The Migration Method If you have no option but to migrate the state, then you need to implement a method that: 1. Reads the current state of the contract 2. Applies different functions to transform it into the new state 3. Returns the new state
### Example: Guest Book Migration Imagine you have a Guest Book where you store messages, and the users can pay for such messages to be "premium". You keep track of the messages and payments using the following state:
### Reentrancy Attack Example: deposit\_and\_stake **Vulnerable Implementation (WRONG)**: 1. User sends money to your contract 2. Contract immediately adds money to user's balance 3. Contract attempts to stake money in validator 4. If staking fails, callback removes balance. **Attack Vector**: * Attacker calls `deposit_and_stake` with 10 NEAR * Contract adds 10 NEAR to attacker's balance (step 2) * Contract makes cross-contract call to validator (step 3) * **Before callback executes**, attacker calls `withdraw` method * Attacker withdraws 10 NEAR * If staking fails, callback removes balance, but attacker already withdrew * **Result**: Attacker receives money twice, contract loses funds. **Secure Implementation (CORRECT)**: 1. User sends money to your contract 2. **Do NOT add to balance yet** - store in temporary state 3. Contract attempts to stake money in validator 4. In callback: **only if staking succeeded**, then add money to user's balance 5. If staking failed, return money to user. **Key Principle**: Delay state changes until the callback confirms the external operation succeeded. Never update balances or critical state before the cross-contract call completes. *** ## Best Practices Summary 1. **Use `#[private]` decorator** for all callback methods in Rust 2. **Refund user funds** in callbacks if external calls fail 3. **Allocate sufficient GAS** for callback operations, especially refunds 4. **Delay state updates** until callback confirms success 5. **Never update balances** before cross-contract call completion 6. **Validate all inputs** in callback methods 7. **Check external call results** before committing state changes. # ✅ Checklist Source: https://docs.near.org/smart-contracts/security/checklist Best practices for security and common safeguards. Once you finished developing your smart contract please go through the following list in order to ensure everything is safe for the end user.
### 4. All Collections Have Unique IDs **Requirement**: Every collection (Vector, Map, TreeMap, etc.) must have a unique identifier to prevent collisions and data corruption. **Why it matters**: * Prevents data from different collections mixing * Avoids state corruption * Ensures data integrity. **How to verify**: ```rust theme={"theme":{"light":"github-light","dark":"github-dark"}} // ✅ CORRECT - Unique collection IDs const USERS: StorageKey = StorageKey::new(b"users"); const ORDERS: StorageKey = StorageKey::new(b"orders"); // ❌ WRONG - Same ID for different collections const DATA1: StorageKey = StorageKey::new(b"data"); const DATA2: StorageKey = StorageKey::new(b"data"); // Collision! ```
### 5. Check for Underflow and Overflow **Requirement**: Enable overflow checks in Rust to prevent integer underflow and overflow vulnerabilities. **Why it matters**: * Prevents arithmetic errors that can be exploited * Avoids unexpected behavior from integer wrapping * Critical for financial calculations. **How to verify**: Add to `Cargo.toml`: ```toml theme={"theme":{"light":"github-light","dark":"github-dark"}} [profile.release] overflow-checks = true ``` **Alternative**: Use checked arithmetic methods: ```rust theme={"theme":{"light":"github-light","dark":"github-dark"}} // ✅ CORRECT - Checked arithmetic let result = a.checked_add(b).expect("Overflow"); // ❌ WRONG - Unchecked arithmetic let result = a + b; // Can overflow silently ``` *** ## Actions: Money Transfers and Fund Management ### 6. Leave Enough Balance for Storage Costs **Requirement**: When sending money from your contract, always leave sufficient balance to cover ongoing storage costs. **Why it matters**: * Prevents contract from becoming unusable * Ensures contract can continue operating * Avoids storage-related transaction failures. **How to verify**: ```rust theme={"theme":{"light":"github-light","dark":"github-dark"}} // ✅ CORRECT - Reserve storage balance let storage_cost = self.calculate_storage_cost(); let available = env::account_balance() - storage_cost; assert!(amount <= available, "Insufficient balance after storage reserve"); Promise::new(receiver_id).transfer(amount); // ❌ WRONG - Send all balance Promise::new(receiver_id).transfer(env::account_balance()); // Leaves nothing! ```
### 7. Deduct User Funds Before Sending **Requirement**: If you're tracking user funds in your contract state, **always deduct them from the state before sending money back to the user**. **Why it matters**: * Prevents reentrancy attacks * Ensures state consistency * Follows checks-effects-interactions pattern. **How to verify**: ```rust theme={"theme":{"light":"github-light","dark":"github-dark"}} // ✅ CORRECT - Deduct first, then send let user_balance = self.get_balance(&user_id); self.set_balance(&user_id, 0); // Deduct first Promise::new(user_id).transfer(user_balance); // Then send // ❌ WRONG - Send first, then deduct (vulnerable to reentrancy) Promise::new(user_id).transfer(user_balance); self.set_balance(&user_id, 0); // Too late! ``` *** ## Callbacks: Cross-Contract Call Security ### 8. All Private Callbacks Are Marked as `private` **Requirement**: Every callback method that should only be callable by your contract must use the `#[private]` decorator. **Why it matters**: Prevents external actors from calling your callbacks directly and bypassing security checks. ```rust theme={"theme":{"light":"github-light","dark":"github-dark"}} // ✅ CORRECT - Callback method can be called only by contract itself #[private] pub fn callback_after_stake(&mut self, #[callback_result] result: Result<(), PromiseError>) { match result { Ok(_) => { self.balances .insert(self.pending_user.clone(), self.pending_amount); } Err(_) => { // Rollback state on failure } } } // ❌ WRONG - Callback without #[private] - can be called directly pub fn callback_after_stake(&mut self, #[callback_result] result: Result<(), PromiseError>) { // Attacker can call this and manipulate state! match result { Ok(_) => { self.balances .insert(self.pending_user.clone(), self.pending_amount); } Err(_) => { // Attacker can trigger this to rollback legitimate operations } } } ```
### 9. All Cross-Contract Calls Have Callbacks **Requirement**: Every cross-contract call must have a corresponding callback to handle the response. **Why it matters**: * Allows error handling * Enables state rollback on failure * Ensures proper completion of async operations.
### 10. Callbacks Check for Errors and Roll Back State **Requirement**: All callbacks must check if the external call succeeded or failed, and roll back any state changes if the call failed. **Why it matters**: * Prevents inconsistent state * Ensures atomicity of operations * Protects against partial failures. **How to verify**: ```rust theme={"theme":{"light":"github-light","dark":"github-dark"}} #[private] pub fn callback(&mut self, result: Result<(), String>) { match result { Ok(_) => { // External call succeeded, commit state self.commit_state(); } Err(_) => { // External call failed, rollback state self.rollback_state(); } } } ```
### 11. Callbacks Return Money to Predecessor If Necessary **Requirement**: If user funds were involved in a failed cross-contract call, the callback must return the money to the original user (predecessor). **Why it matters**: * Prevents user fund loss * Ensures proper refund handling * Maintains user trust.
### 12. Callbacks Are Free of `panic!` **Requirement**: Callback methods should never use `panic!` or cause panics. Use proper error handling instead. **Why it matters**: * Panics can leave contract in inconsistent state * Prevents proper error recovery * May cause user fund loss. **How to verify**: Search codebase for `panic!` in callback methods and replace with proper error handling.
### 13. Callbacks Have Sufficient GAS **Requirement**: All callbacks must be allocated enough GAS to execute completely, including any refunds or state updates. **Why it matters**: * Prevents partial execution * Ensures refunds can complete * Avoids stuck transactions. **How to verify**: Calculate GAS needs for callback operations and ensure sufficient allocation.
### 14. Contract Not Left in Exploitable State Between Call and Callback **Requirement**: Between a cross-contract call and its callback, the contract must not be in a state that can be exploited by other transactions. **Why it matters**: * Prevents reentrancy attacks * Ensures state consistency * Protects against race conditions. **How to verify**: Review state changes - ensure critical updates happen in callbacks, not before external calls. *** ## Additional Security Considerations Beyond this checklist, also consider: * **Input validation** - Validate all user inputs * **Access control** - Verify caller permissions * **Economic security** - Ensure economic incentives are correct * **Testing** - Comprehensive test coverage * **Code review** - External security review * **Monitoring** - Post-deployment monitoring # Front Running Source: https://docs.near.org/smart-contracts/security/frontrunning Learn about frontrunning attacks in NEAR smart contracts and how to prevent them with proper transaction ordering and MEV protection techniques. Frontrunning is a type of attack where validators (or other actors) see pending transactions before they execute and submit their own transactions to profit from the information. In NEAR Protocol, validators have access to the transaction pool, enabling them to frontrun user transactions. In the NEAR network: * **Validators have access to the transaction pool** - they can see all pending transactions * **Transactions are visible before execution** - validators can analyze them * **Validators control transaction ordering** - they decide which transactions to include and in what order * **Validators can insert their own transactions** - they can submit transactions before user transactions. *** ## The Attack Mechanism ### Basic Frontrunning Process 1. **User submits transaction** - e.g., solving a puzzle for a reward 2. **Validator sees transaction** - transaction is in the pool, visible to validator 3. **Validator analyzes** - validator identifies profitable opportunity 4. **Validator submits own transaction** - validator creates transaction with winning answer 5. **Validator includes their transaction first** - validator orders transactions to execute their own first 6. **Validator claims reward** - validator's transaction executes first and claims the prize 7. **User's transaction fails or gets nothing** - user's transaction executes but reward is already claimed. **Result**: Validator profits from information they shouldn't have access to, user loses. *** ## Example: Puzzle-Solving Game ### Vulnerable Game Design Imagine you create a game where: * Users submit solutions to puzzles * First correct solution wins a prize * Solutions are submitted as transactions * Contract pays reward to first solver
### The Attack **Scenario**: 1. User solves puzzle and submits transaction with correct answer 2. Validator sees the transaction in the pool 3. Validator extracts the correct answer from user's transaction 4. Validator creates their own transaction with the same answer 5. Validator includes their transaction before user's transaction 6. Validator's transaction executes first and claims the prize 7. User's transaction executes but finds prize already claimed. ```rust theme={"theme":{"light":"github-light","dark":"github-dark"}} // ❌ VULNERABILITY: First-come-first-served - validator can frontrun // Validator sees user's solution in transaction pool and submits it first pub fn solve_puzzle(&mut self, puzzle_id: String, solution: String) { // Validator can see this transaction in pool and extract solution let correct_answer = self.get_puzzle_answer(&puzzle_id); if solution == correct_answer { // First solver gets reward - validator can frontrun! if !self.solved_puzzles.contains_key(&puzzle_id) { let solver = env::signer_account_id(); self.solved_puzzles.insert(puzzle_id, solver.clone()); let reward = NearToken::from_near(1); let previous_solver_reward = self.rewards.get(&solver).unwrap_or(&NearToken::ZERO); let solver_reward = previous_solver_reward.saturating_add(reward); self.rewards.insert(solver, solver_reward); } } } ``` **Result**: Validator steals the reward that should have gone to the user. *** ## Types of Frontrunning Attacks ### 1. Simple Frontrunning * Validator sees profitable transaction * Validator submits identical or similar transaction * Validator's transaction executes first * Validator profits, user loses. ### 2. Sandwich Attacks * Validator sees large trade transaction * Validator places transaction before (frontrun) and after (backrun) * Validator profits from price impact * User gets worse price due to validator's transactions. ### 3. Priority Gas Auctions * Multiple actors compete to frontrun * They bid higher gas fees for priority * Highest bidder gets frontrun position * Creates expensive competition. *** ## Real-World Impact Frontrunning attacks are particularly dangerous for: * **Reward mechanisms** - Games, competitions, bounties * **DEX trades** - Token swaps where price impact matters * **NFT minting** - First-come-first-served mints * **Auction systems** - Time-based or first-bid auctions * **Oracle updates** - Transactions that depend on external data *** ## Prevention Strategies ### 1. Commit-Reveal Schemes **How it works**: 1. Users commit to their answer (hash of answer + secret) 2. After commit period, users reveal their answer and secret 3. Contract verifies hash matches revealed answer 4. Winner determined after all reveals. **Benefits**: * Validators cannot see the actual answer in the commit phase * Only after reveal can they see answers, but it's too late * Prevents frontrunning of answers.
### 2. Time-Delayed Execution **How it works**: * Users submit transactions * Transactions are queued but not executed immediately * Execution happens after a delay (e.g., next block) * Validators cannot predict final state **Benefits**: * Reduces validator's information advantage * Makes frontrunning more difficult * Still vulnerable but harder to exploit
### 3. Private Transaction Pools **How it works**: * Use private transaction submission * Transactions not visible in public pool * Only executed when included in block **Limitations**: * Requires infrastructure support * May not be available on all networks * Adds complexity
### 4. Randomized Execution **How it works**: * Randomize which transactions execute * Don't use first-come-first-served * Use lottery or random selection **Benefits**: * Reduces advantage of frontrunning * Makes attacks less predictable * Fairer distribution
### 5. Economic Disincentives **How it works**: * Require deposits for participation * Slash deposits for malicious behavior * Make frontrunning unprofitable *** ## Best Practices 1. **Never use first-come-first-served** for valuable rewards 2. **Use commit-reveal schemes** for games and competitions 3. **Add time delays** to reduce information advantage 4. **Randomize selection** when possible 5. **Require deposits** to discourage malicious behavior 6. **Test with frontrunning scenarios** before deployment 7. **Document frontrunning risks** for users. ## Additional Resources For more information on frontrunning and MEV (Maximal Extractable Value), see: * Paradigm's "Ethereum is a Dark Forest" blog post: [https://www.paradigm.xyz/2020/08/ethereum-is-a-dark-forest](https://www.paradigm.xyz/2020/08/ethereum-is-a-dark-forest) * This explains the broader concept of frontrunning in blockchain systems. # Introduction Source: https://docs.near.org/smart-contracts/security/introduction Learn about smart contract security best practices on NEAR, including common vulnerabilities, attack vectors, and how to build secure decentralized applications. Here you will find information on how to keep your smart contract and decentralized applications secure.
### The Risk For most operations, this is convenient and secure. However, for **valuable asset transfers** (NFTs, Fungible Tokens, large amounts of NEAR), this creates a security risk: * **Website has the key** - can initiate transfers without user confirmation * **No user awareness** - user might not know a transfer is happening * **Malicious websites** - compromised or malicious sites could drain assets * **User can't verify** - no way to ensure the user actually authorized the transfer. **Critical Scenarios**: * Transferring NFTs * Transferring Fungible Tokens (FTs) * Large NEAR transfers * Any operation involving valuable assets *** ## Solution: Require 1 YoctoNEAR ### How It Works Require users to attach **1 yoctoNEAR** (1 yⓃ) to sensitive operations: ```rust theme={"theme":{"light":"github-light","dark":"github-dark"}} pub fn transfer_nft(&mut self, token_id: String, receiver_id: AccountId) { // Require 1 yoctoNEAR to ensure user authorization require!( env::attached_deposit() == NearToken::from_yoctonear(1), "Requires attached deposit of exactly 1 yoctoNEAR" ) // Proceed with transfer } ```
### Why This Works 1. **Function Call keys cannot attach NEAR** - they can only call methods without deposits 2. **Only Full Access keys can attach NEAR** - these are stored in the user's wallet 3. **Wallet requires user confirmation** - when NEAR is attached, wallet prompts user 4. **User must approve** - transaction cannot proceed without explicit user approval. **Result**: If a transaction includes 1 yoctoNEAR, you can trust it was explicitly authorized by the user through their wallet. *** ## Implementation Example ### NFT Transfer with Verification ```rust theme={"theme":{"light":"github-light","dark":"github-dark"}} pub fn transfer_nft(&mut self, token_id: String, receiver_id: AccountId) { // Verify user authorization // Require 1 yoctoNEAR to ensure user authorization require!( env::attached_deposit() == NearToken::from_yoctonear(1), "Requires attached deposit of exactly 1 yoctoNEAR" ) // Verify caller owns the NFT let owner = self.get_token_owner(&token_id); assert_eq!(env::predecessor_account_id(), owner, "Not the owner"); // Perform transfer self.transfer_token(token_id, receiver_id); } ```
### Fungible Token Transfer ```rust theme={"theme":{"light":"github-light","dark":"github-dark"}} pub fn transfer_ft(&mut self, amount: U128, receiver_id: AccountId) { // Require 1 yoctoNEAR to ensure user authorization require!( env::attached_deposit() == NearToken::from_yoctonear(1), "Requires attached deposit of exactly 1 yoctoNEAR" ) // Transfer tokens self.internal_transfer(env::predecessor_account_id(), receiver_id, amount.0); } ``` *** ## When to Use This Pattern ### Use 1 YoctoNEAR Requirement For: * ✅ NFT transfers * ✅ Fungible Token transfers * ✅ Large NEAR transfers * ✅ Account ownership changes * ✅ Permission modifications * ✅ Any operation involving valuable assets ### Not Necessary For: * ❌ Read-only operations (view methods) * ❌ Low-value operations * ❌ Operations that don't transfer assets * ❌ Public data queries ## Best Practices 1. **Always require 1 yoctoNEAR** for asset transfers 2. **Document the requirement** - tell users why it's needed 3. **Return the yoctoNEAR** if you don't need it (optional, but user-friendly) 4. **Use consistent pattern** - apply to all sensitive operations 5. **Test with Function Call keys** - ensure they fail without deposit ## Alternative: Return the YoctoNEAR You can return the 1 yoctoNEAR to the user after verification: ```rust theme={"theme":{"light":"github-light","dark":"github-dark"}} pub fn transfer_nft(&mut self, token_id: String, receiver_id: AccountId) { assert!(env::attached_deposit() >= 1, "Verification required"); // Perform transfer self.transfer_token(token_id, receiver_id); // Return the yoctoNEAR (optional) Promise::new(env::predecessor_account_id()).transfer(1); } ``` # Random Numbers Source: https://docs.near.org/smart-contracts/security/random Learn about secure random number generation in NEAR smart contracts and how to avoid predictable randomness vulnerabilities. Generating secure random numbers in blockchain environments is challenging because blockchains are deterministic. NEAR Protocol provides a `random seed` mechanism, but understanding its properties and limitations is crucial for building secure applications that rely on randomness. *** ## How NEAR Random Seed Works NEAR provides a `random seed` that enables smart contracts to create random numbers and strings. This seed has unique properties: ### Deterministic and Verifiable The random seed is **deterministic and verifiable**: * It comes from the validator that produced the block * The validator signs the previous block-hash with their private key * The signature becomes the random seed for the current block * Anyone can verify the seed, but only the validator knows it in advance. *** ## Security Properties The way the random seed is created provides two important security properties: ### 1. Only Validator Can Predict * **Only the validator mining the transaction can predict** which random number will be generated * **No one else can predict it** because nobody knows the validator's private key (except the validator) * This provides some security, but creates a centralization risk. ### 2. Validator Cannot Interfere * The validator **cannot interfere** with the random number being created * They must sign the previous block-hash, over which they (with high probability) had no control * The previous block was likely produced by a different validator. **Important**: While validators cannot directly manipulate the seed, they can still exploit it through other means. *** ## Attack Type 1: Gaming the Input ### The Vulnerability If your contract asks users to provide an input and rewards them if it matches the random seed, validators can exploit this: **Example**: * Contract asks user to choose a number between 1-100 * If user's number matches the random seed, they win a prize * Validator knows the random seed before the block is mined * Validator creates a transaction with the winning number * Validator includes their transaction in the block * Validator wins the prize ```rust theme={"theme":{"light":"github-light","dark":"github-dark"}} // ❌ VULNERABILITY: Gaming the input - validator can predict and win // User provides input and random seed is generated in same block pub fn guess_number(&mut self, guess: u8) { let account_id = env::signer_account_id(); // Store user's guess self.bets.insert(account_id.clone(), guess.to_string()); // Generate random number in SAME block - validator knows it! let random_seed = env::random_seed(); let random_number = (random_seed[0] % 100) as u8; // Validator can see user's guess and create winning transaction if guess == random_number { let reward = NearToken::from_near(1); let previous_user_reward = self.rewards.get(&account_id).unwrap_or(&NearToken::ZERO); let user_reward = previous_user_reward.saturating_add(reward); self.rewards.insert(account_id, user_reward); } } ``` ### Why This Works Since the validator knows which `random seed` will be generated in their block, they can: 1. Calculate the winning input 2. Create a transaction with that input 3. Include their transaction in the block 4. Win every time **Result**: Validators can guarantee wins in single-block games. *** ## Attack Type 2: Refusing to Mine the Block ### The Two-Stage Solution One way to fix "gaming the input" is to use a two-stage process: 1. **Bet Stage**: User sends their input/choice (e.g., "heads" or "tails") 2. **Resolve Stage**: Contract generates random number and determines winner (in a later block) This prevents validators from gaming the input because: * User's choice is locked in the first block * Random seed is generated in a different (later) block * Validator cannot know the random seed when user makes their choice ### The Remaining Vulnerability However, validators can still exploit this through selective block mining: **Attack Process**: 1. Validator creates a "bet" transaction with their account 2. Validator chooses either input (doesn't matter which) 3. When it's the validator's turn to validate: * They check what random seed will be generated * If their bet would win, they include the "resolve" transaction in the block * If their bet would lose, they skip the "resolve" transaction 4. Other validators might mine it, but validator increases their win rate **Result**: Validator improves their probability of winning, though doesn't guarantee it. *** ## Coin Flip Example: Probability Manipulation ### Fair Coin Flip (Without Attack) In a fair coin-flip game: * You choose "heads" or "tails" in the bet stage * Random seed determines outcome in resolve stage * **Probability of winning: 50%** (1/2) ### With Refusing to Mine Attack If you're a validator and can refuse to mine losing blocks: **Scenarios**: * You bet "heads" * If random seed = "heads": You mine the block and win ✅ * If random seed = "tails": You skip the block (other validator might mine it) * If other validator mines: You lose ❌ * If no one mines: Transaction delayed, you try again later **Mathematical Analysis**: If you always bet "heads" and can choose to flip again when "tails" comes out: **Possible outcomes** (H = heads, T = tails): * H H: Win ✅ * T H: Win ✅ (retry after T) * H T: Win ✅ (retry after H) * T T: Lose ❌ (retry after T, then T again) **Result**: You win in 3 out of 4 scenarios = **75% win rate** (3/4) **Improvement**: From 50% to 75% = **25% increase in win probability** **Note**: These odds dilute in games with more possible outcomes (e.g., dice with 6 sides). *** ## Best Practices for Randomness ### 1. Use Multi-Block Randomness * Separate bet and resolve into different blocks * Prevents input gaming attacks * Still vulnerable to selective mining, but reduces risk. ### 2. Use Commit-Reveal Schemes * Users commit to their choice (hash of choice + secret) * Later reveal the choice and secret * Random seed generated after reveal * Prevents both input gaming and selective mining. ### 3. Use External Oracles * Use trusted external randomness sources * Chainlink VRF or similar services * More secure but requires external dependencies. ### 4. Accept Validator Advantage * For non-critical randomness, accept that validators have slight advantage * Use for games where small advantage is acceptable * Not suitable for high-stakes applications. ### 5. Use Multiple Validators * Distribute randomness across multiple validators * Reduces single validator control * More decentralized approach. # Reentrancy Attacks Source: https://docs.near.org/smart-contracts/security/reentrancy Learn about reentrancy attacks in NEAR smart contracts and how to prevent them with proper security measures and coding practices. Reentrancy attacks are one of the most common and dangerous security vulnerabilities in smart contracts. In NEAR Protocol, the asynchronous nature of cross-contract calls creates a window of opportunity for attackers to exploit state inconsistencies. Between a cross-contract call and its callback, **any public method of your contract can be executed** by anyone. This fundamental property of NEAR's asynchronous execution model means that: * **Any method** could be executed between a method execution and its callback * **The same method** could be executed multiple times before the callback completes * **State changes** made before the callback can be exploited by malicious actors **Critical Rule**: Always ensure your contract state remains consistent and secure after each method finishes executing, even if a callback is pending. *** ## Fundamental Assumptions When designing secure smart contracts, you must assume: 1. **Any method can execute** between your method and its callback 2. **The same method can be re-entered** multiple times before the callback executes 3. **Attackers will exploit** any state inconsistencies they can find 4. **State changes are visible** immediately after a method completes, even before callbacks. *** ## Reentrancy Attack Example: deposit\_and\_stake ### Vulnerable Implementation (WRONG) Consider a `deposit_and_stake` function with the following flawed logic: 1. User sends money to the contract 2. Contract **immediately adds money to user's balance** (state change) 3. Contract makes cross-contract call to stake money in validator 4. If staking fails, callback removes the balance. **Attack Scenario**: * Attacker calls `deposit_and_stake` with 10 NEAR * Contract adds 10 NEAR to attacker's balance (step 2 completes) * Contract initiates cross-contract call to validator (step 3) * **Before callback executes**, attacker calls `withdraw()` method * Attacker successfully withdraws 10 NEAR (balance was already updated) * If staking fails, callback removes balance, but attacker already withdrew * **Result**: Attacker receives 10 NEAR, contract loses funds. ```rust theme={"theme":{"light":"github-light","dark":"github-dark"}} // ❌ VULNERABILITY: Reentrancy attack - state updated before external call pub fn deposit_and_stake(&mut self) { let amount = env::attached_deposit(); let account_id = env::signer_account_id(); // VULNERABILITY: Updates balance BEFORE external call completes let balance = self .balances .get(&account_id) .unwrap_or(&NearToken::ZERO) .saturating_add(amount); self.balances.insert(account_id.clone(), balance); let _ = Promise::new("validator.near".parse().unwrap()) .function_call( "deposit_and_stake".to_string(), NO_ARGS, amount, Gas::from_tgas(10), ) .then( Self::ext(env::current_account_id()) .with_static_gas(XCC_GAS) .callback_after_stake(), ); } ``` **Why This Happens**: The state change (adding to balance) happens before the external call completes. The attacker exploits the time window between the state update and the callback.
### Secure Implementation (CORRECT) The solution is to delay state changes until the callback confirms success: 1. User sends money to the contract 2. **Do NOT add to balance yet** - store in temporary/pending state 3. Contract makes cross-contract call to stake money in validator 4. **In callback**: Only if staking succeeded, then add money to user's balance 5. If staking failed, return money to user (no balance update needed). **Key Principle**: Never update critical state (like balances) before external operations complete. Always wait for callback confirmation before committing state changes. *** ## Prevention Strategies ### 1. Delay State Updates * Never update balances or critical state before cross-contract calls * Store pending operations in temporary state * Only commit state changes in callbacks after confirming success. ### 2. Use Checks-Effects-Interactions Pattern * **Checks**: Validate all inputs and preconditions * **Effects**: Update state (but only after external calls complete) * **Interactions**: Make external calls last. ### 3. Implement Reentrancy Guards * Use flags to prevent re-entry during critical operations * Mark methods as "in progress" during execution * Clear flags only after all operations complete. ### 4. Validate in Callbacks * Always check the result of external calls in callbacks * Rollback any state changes if external operations failed * Never assume external calls will succeed. *** ## Best Practices 1. **Assume reentrancy is possible** - design your contract defensively 2. **Minimize state changes** before external calls 3. **Validate everything** in callbacks before committing state 4. **Test with attack scenarios** - simulate reentrancy attempts 5. **Review callback logic** carefully - this is where vulnerabilities hide 6. **Keep state consistent** at all times, even during async operations # Storage Cost Attacks Source: https://docs.near.org/smart-contracts/security/storage Learn about storage security best practices in NEAR smart contracts, including storage costs, state management, and preventing storage-related vulnerabilities. In NEAR Protocol, smart contracts pay for the storage they use. This storage cost model creates a potential attack vector where malicious actors can drain contract funds by forcing the contract to pay for excessive storage costs. *** ## How Storage Costs Work in NEAR NEAR uses a [storage staking model](../../protocol/storage/storage-staking) where: * **Contracts pay for storage** - The more data stored, the more NEAR balance required * **Storage is locked** - Balance is locked to cover storage costs, not spent * **Storage can be released** - Deleting data releases the locked balance back to the contract **Critical Rule**: If your contract doesn't require users to cover their own storage costs, attackers can drain your contract's balance by creating many small storage entries. *** ## Attack Scenario: Guest Book Example ### Setup 1. You deploy a guest book smart contract to `example.near` 2. Users can add messages to the guest book 3. Users pay only a small gas fee to store their message 4. **Your contract pays the storage cost** for each message.
### The Attack **Problem**: If storing a message costs the user very little (just gas) but costs your contract significantly more (storage rent), this creates an economic imbalance that attackers can exploit. **Attack Vector**: * Attacker creates a script that sends thousands of small messages * Each message costs the attacker minimal gas fees * Each message forces your contract to lock NEAR for storage * After many messages, your contract's balance is locked * Contract can no longer function due to insufficient balance. **Result**: Your contract becomes unusable, and you may need to fund it continuously or delete data to free balance.
### Example Flow 1. Contract `example.near` starts with 10 NEAR balance 2. Each message requires 0.001 NEAR locked for storage 3. Attacker sends 10,000 messages 4. Contract must lock 10 NEAR (10,000 × 0.001) 5. Contract balance is fully locked 6. Contract cannot accept new messages or perform other operations. *** ## Solution: Require Users to Cover Storage ### Implementation Require users to attach sufficient NEAR to cover the storage cost of their data: ```rust theme={"theme":{"light":"github-light","dark":"github-dark"}} pub fn add_message(&mut self, message: String) { let storage_cost = self.calculate_storage_cost(&message); assert!(env::attached_deposit() >= storage_cost, "Insufficient deposit for storage"); // Store the message // Storage cost is covered by attached deposit } ``` **Key Points**: * Calculate the storage cost for the data being stored * Require users to attach at least that amount as deposit * The attached deposit covers the storage cost automatically * Users who want to store data must pay for it.
### Benefits 1. **Prevents storage drain attacks** - Attackers must pay for their own storage 2. **Economic sustainability** - Contract doesn't need continuous funding 3. **Fair cost distribution** - Users pay for what they use 4. **Prevents abuse** - Makes spam attacks expensive. *** ## Releasing Locked Storage Balance **Important**: Storage balance is **locked**, not spent. You can release it by deleting data: * When you delete stored data, the locked balance is returned to the contract * This allows you to free up balance if needed * Useful for maintenance or if you need to recover locked funds. **Example**: * Contract has 50 NEAR locked for storage * You delete old/unused data * 50 NEAR is unlocked and available in contract balance. *** ## Best Practices 1. **Always require users to cover storage costs** for data they store 2. **Calculate storage costs accurately** - ensure attached deposit covers the cost 3. **Document storage requirements** - tell users how much to attach 4. **Monitor contract balance** - ensure sufficient funds for operations 5. **Implement data expiration** - allow deletion of old data to free balance 6. **Test with attack scenarios** - simulate many small storage operations. *** ## Common Attack Patterns ### 1. Small Deposit Attack * Attacker sends many tiny deposits * Each requires storage (user records, transaction history) * Contract balance drains from storage costs. ### 2. Data Spam Attack * Attacker stores excessive amounts of data * Contract must lock balance for all storage * Contract becomes unusable. ### 3. Collection Growth Attack * Attacker adds many items to collections (maps, vectors) * Each item requires storage * Contract balance depletes. *** ## Prevention Checklist * [ ] Users must attach deposit to cover their storage costs * [ ] Storage cost calculation is accurate * [ ] Contract monitors and maintains sufficient balance * [ ] Old data can be deleted to free balance * [ ] Storage requirements are documented for users * [ ] Attack scenarios have been tested. # Sybil Attacks Source: https://docs.near.org/smart-contracts/security/sybil Learn about sybil attacks in NEAR smart contracts and how to prevent them with proper identity verification and anti-gaming mechanisms. A Sybil attack occurs when a single individual or entity creates multiple accounts to gain disproportionate influence in a system. In NEAR Protocol, account creation is relatively inexpensive and straightforward, making Sybil attacks a significant concern for applications that rely on per-account voting, governance, or resource allocation. NEAR Protocol allows anyone to create multiple accounts easily: * **Low cost** - Account creation is inexpensive * **No identity verification** - No KYC or identity checks required * **Unlimited accounts** - No restrictions on number of accounts per person * **Full functionality** - Each account has full capabilities. *** ## Attack Scenario: DAO Voting ### Vulnerable Voting System Imagine you create a [DAO](../../primitives/dao) (Decentralized Autonomous Organization) with the following design: * **Open voting** - Anyone in the community can vote * **One vote per account** - Each NEAR account gets one vote * **Simple majority** - Decisions made by majority vote * **No identity verification** - No checks to ensure one person = one account.
### The Attack **Scenario**: 1. DAO proposal requires community vote 2. Malicious actor wants proposal to pass (or fail) 3. Attacker creates 100 NEAR accounts 4. Attacker votes with all 100 accounts in favor of their preferred outcome 5. Attacker's 100 votes outweigh legitimate community votes 6. Attacker controls the outcome. ```rust theme={"theme":{"light":"github-light","dark":"github-dark"}} // ❌ VULNERABILITY: One-account-one-vote - attacker can create multiple accounts pub fn vote(&mut self, vote: bool) { let voter = env::signer_account_id(); // No checks for multiple accounts from same person // Attacker can create 100 accounts and vote 100 times if !self.votes.contains_key(&voter) { self.votes.insert(voter, vote); if vote { self.yes_votes += 1; } else { self.no_votes += 1; } } } ``` **Result**: A single person controls the governance decision through multiple accounts, defeating the purpose of decentralized governance. *** ## Real-World Impact Sybil attacks are particularly dangerous for: ### 1. DAO Governance * **Voting manipulation** - Single person controls multiple votes * **Proposal outcomes** - Attackers can force proposals to pass/fail * **Treasury control** - Attackers can influence fund allocation * **Protocol changes** - Attackers can push harmful protocol updates. ### 2. Airdrops and Token Distribution * **Unfair allocation** - Attackers claim multiple airdrops * **Resource drain** - Legitimate users get less * **Economic manipulation** - Attackers accumulate disproportionate tokens. ### 3. Reputation Systems * **Fake reviews** - Multiple accounts create fake positive/negative reviews * **Rating manipulation** - Attackers boost or damage reputation scores * **Trust systems** - Attackers game trust mechanisms. ### 4. Resource Allocation * **Fair distribution** - Attackers claim multiple shares * **Quota systems** - Attackers bypass per-account limits * **Reward programs** - Attackers claim multiple rewards. *** ## Prevention Strategies ### 1. Proof of Humanity / Identity Verification **How it works**: * Require users to prove they are unique humans * Use services that provide identity verification * Verify identity before allowing participation. **Benefits**: * Strong protection against Sybil attacks * Ensures one person = one vote/account. **Limitations**: * Requires external services * May reduce accessibility * Privacy concerns.
### 2. Token-Weighted Voting **How it works**: * Votes weighted by token holdings * More tokens = more voting power * Still vulnerable but requires economic stake. **Benefits**: * Attackers must acquire tokens (costly) * Aligns incentives with economic stake * Reduces casual Sybil attacks. **Limitations**: * Wealthy actors still have more influence * Doesn't prevent wealthy Sybil attacks * May not be suitable for all use cases.
### 3. Reputation-Based Systems **How it works**: * Build reputation over time * Require minimum reputation to vote * Reputation earned through legitimate activity. **Benefits**: * Makes Sybil attacks time-consuming * Requires sustained legitimate activity * Reduces impact of new fake accounts. **Limitations**: * Doesn't prevent long-term Sybil attacks * May exclude legitimate new users * Complex to implement.
### 4. Economic Barriers **How it works**: * Require deposits or fees to participate * Make account creation expensive * Slash deposits for malicious behavior. **Benefits**: * Increases cost of Sybil attacks * Deters casual attackers * Economic disincentive. **Limitations**: * May exclude legitimate users * Wealthy attackers can still afford it * Doesn't solve the fundamental problem.
### 5. Time-Locked Participation **How it works**: * Require accounts to exist for minimum time * Delay voting rights for new accounts * Prevent immediate Sybil attacks. **Benefits**: * Simple to implement * Reduces impact of mass account creation * Gives time to detect patterns. **Limitations**: * Doesn't prevent long-term attacks * May delay legitimate participation * Attackers can plan ahead.
### 6. Activity-Based Requirements **How it works**: * Require minimum activity before voting * Must interact with protocol multiple times * Prove engagement before participation. **Benefits**: * Makes Sybil attacks more expensive * Requires sustained effort * Filters out casual fake accounts. **Limitations**: * Doesn't prevent determined attackers * May be gamed with automated activity * Complex to define "legitimate activity". *** ## Best Practices 1. **Never use simple one-account-one-vote** for important decisions 2. **Combine multiple strategies** - Use layered defenses 3. **Monitor for patterns** - Detect unusual account creation 4. **Require economic stake** - Make attacks costly 5. **Use identity verification** for critical governance 6. **Implement reputation systems** for long-term protection 7. **Document Sybil risks** - Inform users of limitations. *** ## DAO-Specific Recommendations For DAO governance systems: * **Use token-weighted voting** with minimum thresholds * **Require identity verification** for major decisions * **Implement reputation systems** for ongoing participation * **Monitor voting patterns** for suspicious activity * **Use multi-sig or time delays** for critical proposals * **Combine on-chain and off-chain** governance mechanisms. # Integration Tests Source: https://docs.near.org/smart-contracts/testing/integration-test Learn how to write and run integration tests for NEAR smart contracts using Sandbox testing and realistic blockchain environments. Integration tests enable you to deploy a contract in the NEAR `testnet` or a local `sandbox` and create test users to interact with it. This way, you can thoroughly test your contract in a realistic environment. Moreover, when using the local `sandbox` you gain complete control of the network: 1. Create test `Accounts` and manipulate their `State` and `Balance`. 2. Simulate errors on callbacks. 3. Control the time-flow and fast-forward into the future (Rust ready, TS coming soon). In NEAR, integration tests are implemented using a framework called **Sandbox**. Sandbox comes in two flavors: [🦀 Rust](https://github.com/near/near-sandbox-rs) and [🌐 Typescript](https://github.com/near/workspaces-js). For **Go contracts**, unit tests are run with the `near-go` CLI: ```bash theme={"theme":{"light":"github-light","dark":"github-dark"}} near-go test project ``` This runs unit tests using the `MockSystem` environment to simulate the NEAR blockchain locally — no sandbox required. For full integration tests that deploy to a sandbox, Go contracts use the Rust `workspaces-rs` framework. See the [Go Integration Testing](#go-integration-testing) section below.
### Dev Account
### Snippet II: Testing Donations In most cases we will want to test complex methods involving multiple users and money transfers. A perfect example for this is our [Donation Example](https://github.com/near-examples/donation-examples), which enables users to `donate` money to a beneficiary. Lets see its integration tests
We can then use the **`useNearWallet` hook** within any component to access all NEAR-related functionality, such as login/logout, view and call functions, and sign transactions: ```jsx theme={"theme":{"light":"github-light","dark":"github-dark"}} import { useNearWallet } from 'near-connect-hooks'; export default function App() { // Login / Logout functionality const { loading, signIn, signOut, signedAccountId } = useNearWallet(); // To interact with the contract const { viewFunction, callFunction, signAndSendTransactions } = useNearWallet(); } ``` *** ## Smart Contract All repositories include the same smart contract implemented in different languages, including **Rust**, **Javascript**, and sometimes **Python**. The contracts are implemented following the latest versions of each SDK, and include sandbox tests showcasing how to properly test smart contracts in a realistic environment. ### Testing Each contract includes sandbox tests that simulate real user interactions. For example, in the `Guest Book` example, the tests cover scenarios like having multiple accounts signing the guest book, including premium messages.
### Build and Deploy the Factory You can automatically compile and deploy the contract in the NEAR testnet by running: ```bash theme={"theme":{"light":"github-light","dark":"github-dark"}} cargo near deploy ```
### Deploy the Stored Contract Into a Sub-Account Method `deploy` will create a sub-account of the factory and deploy contract on it using stored global contract id. It also asserts that the attached deposit is at least the minimum required deposit stored in the factory.
### Update the Stored Contract `update_global_contract_id` enables to change the global contract id that the factory stores. The method is interesting because it has no declared parameters, and yet it takes an input: the new contract to store as a stream of bytes. To use it, we need to pass the contract id we want to store. It can be in form of account id or global contract hash. What is the difference between them you can read in [Global Contracts](/smart-contracts/global-contracts#solution) section. ```bash theme={"theme":{"light":"github-light","dark":"github-dark"}} near contract call-function as-transaction
### Automatically Creating Accounts NEAR accounts can only create sub-accounts of itself, therefore, the `factory` can only create and deploy contracts on its own sub-accounts. This means that the factory: 1. **Can** create `sub.factory.testnet` and deploy a contract on it. 2. **Cannot** create sub-accounts of the `predecessor`. 3. **Can** create new accounts (e.g. `account.testnet`), but **cannot** deploy contracts on them. It is important to remember that, while `factory.testnet` can create `sub.factory.testnet`, it has no control over it after its creation.
### The Deploy Method During the creation of a sub-account we add signers public key to the new sub-account as a full access key. It means that the predecessor will be able to control the new sub-account after its creation. Also, in the tutorial, we attach deposit to the `deploy` call which goes straight to the new sub-account. When we deploy a new contract using global contracts, we need to initialize it after deployment. That tokens will cover the storage after the deployed contract is initialized. # Global Contracts Source: https://docs.near.org/smart-contracts/tutorials/factories/global-contracts Learn how to deploy a Global contract and use it from another account. If you've ever deployed the same contract code to multiple accounts, you’ve likely noticed that each deployment requires you to pay the full storage cost again. Imagine that you want to deploy the same 500 KB contract to three accounts: each deployment pays 5 NEAR for the storage — a total of 15 NEAR is locked just to hold identical code. [Global Contracts](/smart-contracts/global-contracts) eliminates this redundancy by allowing the same contract code to be shared across multiple accounts, so storage cost is paid only once. In this tutorial you'll learn how to deploy and use a [global contract by Account ID](#global-contract-by-account-id) or [by Hash](#global-contract-by-hash), depending on your needs.
### Context Provider [Next.js](https://nextjs.org/) uses a template system, where each page is a React component. Our main logic is defined at `./src/pages/_app.js`, which: 1. Creates a `NearProvider` that wraps the entire application to provide NEAR functionality 2. Renders the navigation menu and the page's content
### Navigation Bar The navigation bar implements a button to allow users to `login` and `logout` with their NEAR wallet. The main logic comes from the `useNearWallet` hook, which exposes all wallet related functionality.
### Function Call Hooks Just like the [navigation bar](#navigation-bar), we use the `useNearWallet` hook to get functions that allow us to call methods on the contract: * `viewFunction` is used to call functions that are read-only * `callFunction` is used to call functions that modify the state of the contract