Implement account permission delegation - XLS-74d and XLS-75d amendments

[Patel-Raj11]

High Level Overview of Change

This PR is continuation of #833 as there are more changes related to binary codec involved.

This PR implements changes pertaining to the XLS-74d and XLS-75d amendments.

Here is the associated cpp PR: XRPLF/rippled#5354.

Context of Change

Type of Change

• Bug fix (non-breaking change which fixes an issue)
• New feature (non-breaking change which adds functionality)
• Breaking change (fix or feature that would cause existing functionality to not work as expected)
• Refactor (non-breaking change that only restructures code)
• Tests (You added tests for code that already exists, or your new feature included in this PR)
• Documentation Updates
• Release

Did you update CHANGELOG.md?

• Yes
• No, this change does not impact library users

Test Plan

Added unit and integration tests.

[coderabbitai]

Walkthrough

This update introduces support for account permission delegation in the XRPL Python SDK. It adds new transaction and ledger entry types, models, and binary codec definitions for permission delegation. The changes include validation logic, test coverage for the new features, and updates to configuration, changelog, and public APIs to reflect the addition of the DelegateSet transaction and related permission concepts.

Changes

File(s)	Change Summary
.ci-config/rippled.cfg	Enabled the "PermissionDelegation" amendment in the features section.
CHANGELOG.md	Documented support for "Account Permission" and "Account Permission Delegation" features (XLS-74d, XLS-75d).
xrpl/core/binarycodec/definitions/definitions.json	Added new field definitions ("PermissionValue", "Permission", "Permissions", "Delegate"), ledger entry type "Delegate", and transaction type "DelegateSet".
xrpl/core/binarycodec/definitions/definitions.py	Introduced granular and delegatable permission mappings, and utility functions for permission value code/name conversion.
xrpl/core/binarycodec/definitions/init.py	Exported new permission utility functions in the module's public API.
xrpl/core/binarycodec/types/st_object.py	Added serialization/deserialization support for "PermissionValue" fields using new utility functions.
xrpl/models/transactions/types/transaction_type.py	Added DELEGATE_SET to the TransactionType enum.
xrpl/models/transactions/delegate_set.py	Introduced DelegateSet transaction model, GranularPermission enum, Permission dataclass, and related validation logic.
xrpl/models/transactions/init.py	Made DelegateSet and GranularPermission publicly available in the transactions package.
xrpl/models/transactions/transaction.py	Added optional delegate field to Transaction, with validation preventing identical account and delegate.
xrpl/models/requests/ledger_entry.py	Added support for querying Delegate ledger entries via new enum member, dataclass, and field in LedgerEntry.
xrpl/models/requests/account_objects.py	Added DELEGATE to AccountObjectType enum.
tests/integration/transactions/test_delegate_set.py	Added integration tests for the DelegateSet transaction and permission delegation workflows.
tests/unit/models/transactions/test_delegate_set.py	Added unit tests for DelegateSet model validation and permission logic.
tests/unit/models/transactions/test_transaction.py	Added tests for duplicate account/delegate validation and Payment transaction with delegate field.
tests/unit/core/binarycodec/fixtures/data/codec-fixtures.json	Added test fixtures for OfferCreate and DelegateSet transactions.

Sequence Diagram(s)

sequenceDiagram
  participant Client
  participant SDK
  participant XRPL Network

  Client->>SDK: Create DelegateSet transaction (authorize, permissions)
  SDK->>SDK: Validate permissions (length, duplicates, delegatable)
  SDK->>XRPL Network: Submit DelegateSet transaction
  XRPL Network-->>SDK: Confirm transaction, update ledger with Delegate entry
  SDK-->>Client: Return transaction result and ledger state

  Client->>SDK: Submit delegated transaction (signed by delegate)
  SDK->>XRPL Network: Submit transaction
  XRPL Network-->>SDK: Check permissions, accept or reject
  SDK-->>Client: Return result (success or tecNO_PERMISSION)

Loading

Poem

In the ledger's warren, permissions now hop,
Delegates leap where once they could not stop.
With tests and new models, the code is robust,
Granular powers, in XRPL we trust.
🐇✨
The rabbit approves—let delegation grow,
For every account, new permissions bestow!

Note

⚡️ AI Code Reviews for VS Code, Cursor, Windsurf

CodeRabbit now has a plugin for VS Code, Cursor and Windsurf. This brings AI code reviews directly in the code editor. Each commit is reviewed immediately, finding bugs before the PR is raised. Seamless context handoff to your AI code agent ensures that you can easily incorporate review feedback.
Learn more here.

---

Note

⚡️ Faster reviews with caching

CodeRabbit now supports caching for code and dependencies, helping speed up reviews. This means quicker feedback, reduced wait times, and a smoother review experience overall. Cached data is encrypted and stored securely. This feature will be automatically enabled for all accounts on May 16th. To opt out, configure Review - Disable Cache at either the organization or repository level. If you prefer to disable all data retention across your organization, simply turn off the Data Retention setting under your Organization Settings.
Enjoy the performance boost—your workflow just got faster.

---

📜 Recent review details

Configuration used: .coderabbit.yaml
Review profile: CHILL
Plan: Pro
Cache: Disabled due to data retention organization setting
Knowledge Base: Disabled due to data retention organization setting

📥 Commits

Reviewing files that changed from the base of the PR and between 88d4b8a and 30cc5fc.

📒 Files selected for processing (7)

• CHANGELOG.md (1 hunks)
• tests/integration/transactions/test_delegate_set.py (1 hunks)
• tests/unit/core/binarycodec/fixtures/data/codec-fixtures.json (1 hunks)
• tests/unit/models/transactions/test_transaction.py (1 hunks)
• xrpl/core/binarycodec/definitions/definitions.py (2 hunks)
• xrpl/models/requests/account_objects.py (1 hunks)
• xrpl/models/transactions/transaction.py (3 hunks)

✅ Files skipped from review due to trivial changes (1)

• xrpl/models/requests/account_objects.py

🚧 Files skipped from review as they are similar to previous changes (5)

• CHANGELOG.md
• tests/unit/models/transactions/test_transaction.py
• xrpl/models/transactions/transaction.py
• tests/integration/transactions/test_delegate_set.py
• xrpl/core/binarycodec/definitions/definitions.py

⏰ Context from checks skipped due to timeout of 90000ms (12)

• GitHub Check: Snippet test (3.13)
• GitHub Check: Snippet test (3.11)
• GitHub Check: Snippet test (3.12)
• GitHub Check: Snippet test (3.8)
• GitHub Check: Snippet test (3.10)
• GitHub Check: Snippet test (3.9)
• GitHub Check: Integration test (3.9)
• GitHub Check: Integration test (3.13)
• GitHub Check: Integration test (3.11)
• GitHub Check: Integration test (3.10)
• GitHub Check: Integration test (3.8)
• GitHub Check: Integration test (3.12)

🔇 Additional comments (2)

tests/unit/core/binarycodec/fixtures/data/codec-fixtures.json (2)

4843-4861: Validate new OfferCreate fixture
The appended OfferCreate transaction fixture correctly mirrors the expected structure:

• TakerGets uses a non-native currency object (value, currency, issuer).
• TakerPays is a native XRP amount in drops as a string.
• Mandatory fields (Account, Fee, Sequence, Flags, SigningPubKey, TxnSignature) align with other fixtures.
• TransactionType is set to "OfferCreate".
  No discrepancies detected.

---

4862-4887: Validate new DelegateSet fixture
The appended DelegateSet transaction fixture aligns with the XLS-74d amendment:

• Includes NetworkID, Authorize, and granular Permissions array.
• Core fields (Account, Fee, Flags, Sequence, SigningPubKey, TxnSignature) follow spec.
• TransactionType is correctly "DelegateSet".
  Fixture appears accurate and ready for codec tests.

✨ Finishing Touches

• 📝 Generate Docstrings

---

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

• X
• Mastodon
• Reddit
• LinkedIn

🪧 Tips

Chat

There are 3 ways to chat with CodeRabbit:

• Review comments: Directly reply to a review comment made by CodeRabbit. Example:
  • I pushed a fix in commit <commit_id>, please review it.
  • Explain this complex logic.
  • Open a follow-up GitHub issue for this discussion.
• Files and specific lines of code (under the "Files changed" tab): Tag @coderabbitai in a new review comment at the desired location with your query. Examples:
  • @coderabbitai explain this code block.
  • @coderabbitai modularize this function.
• PR comments: Tag @coderabbitai in a new PR comment to ask questions about the PR branch. For the best results, please provide a very specific query, as very limited context is provided in this mode. Examples:
  • @coderabbitai gather interesting stats about this repository and render them as a table. Additionally, render a pie chart showing the language distribution in the codebase.
  • @coderabbitai read src/utils.ts and explain its main purpose.
  • @coderabbitai read the files in the src/scheduler package and generate a class diagram using mermaid and a README in the markdown format.
  • @coderabbitai help me debug CodeRabbit configuration file.

Support

Need help? Create a ticket on our support page for assistance with any issues or questions.

Note: Be mindful of the bot's finite context window. It's strongly recommended to break down tasks such as reading entire modules into smaller chunks. For a focused discussion, use review comments to chat about specific files and their changes, instead of using the PR comments.

CodeRabbit Commands (Invoked using PR comments)

• @coderabbitai pause to pause the reviews on a PR.
• @coderabbitai resume to resume the paused reviews.
• @coderabbitai review to trigger an incremental review. This is useful when automatic reviews are disabled for the repository.
• @coderabbitai full review to do a full review from scratch and review all the files again.
• @coderabbitai summary to regenerate the summary of the PR.
• @coderabbitai generate docstrings to generate docstrings for this PR.
• @coderabbitai generate sequence diagram to generate a sequence diagram of the changes in this PR.
• @coderabbitai resolve resolve all the CodeRabbit review comments.
• @coderabbitai configuration to show the current CodeRabbit configuration for the repository.
• @coderabbitai help to get help.

Other keywords and placeholders

• Add @coderabbitai ignore anywhere in the PR description to prevent this PR from being reviewed.
• Add @coderabbitai summary to generate the high-level summary at a specific location in the PR description.
• Add @coderabbitai anywhere in the PR title to generate the title automatically.

Documentation and Community

• Visit our Documentation for detailed information on how to use CodeRabbit.
• Join our Discord Community to get help, request features, and share feedback.
• Follow us on X/Twitter for updates and announcements.

[mvadari]

This should use the Transaction class to make maintenance easier. You can check for the invalid tests in the _get_errors function instead of at the type level.

[Patel-Raj11]

@mvadari Do you mean taking in TransactionType from user and checking for the presence of any of these AccountSet, SetRegularKey, SignerListSet, DelegateSet and AccountDelete transactions in _get_errors and throwing an error?

I first thought of this approach but, it seemed that we are allowing an invalid Transaction Type as a valid input and then later throwing an error stating its invalid.

[mvadari]

Not everything has to be checked at the typing level IMO. This will be much more difficult to maintain, and require a separate set of imports.

[khancode]

I agree with @mvadari and rather not use this approach. Reason is each time a new transaction is added, then this module will have to be updated to keep it accurate which makes it harder to maintain.

[Patel-Raj11]

@mvadari @khancode I have addressed this in 3626419. Can you please review?

[mvadari]

Is there a better way to do this? Perhaps it should use a helper function like the others?

[Patel-Raj11]

@mvadari Addressed it in f2a496d

[coderabbitai]

Actionable comments posted: 3

🧹 Nitpick comments (7)

xrpl/models/transactions/__init__.py (1)

149-156: Reorder all entries for alphabetical consistency

To keep the __all__ list alphabetized, move the new entries before DepositPreauth and arrange them in proper order. For example:

-    "CredentialDelete",
-    "DepositPreauth",
-    "DelegateSet",
-    "DelegatableTransaction",
-    "GranularPermission",
-    "DIDDelete",
+    "CredentialDelete",
+    "DelegatableTransaction",
+    "DelegateSet",
+    "DepositPreauth",
+    "DIDDelete",
+    "GranularPermission",

This ensures DelegatableTransaction and DelegateSet appear before DepositPreauth, and GranularPermission follows its alphabetical slot.

xrpl/core/binarycodec/definitions/__init__.py (1)

35-36: Reorder __all__ for logical grouping

For consistency with the other get_ functions, consider moving the new get_permission_value_type_* entries adjacent to the other get_transaction_* and get_ledger_entry_* exports. For instance:

-    "get_transaction_type_name",
-    "get_permission_value_type_code",
-    "get_permission_value_type_name",
]
+    "get_permission_value_type_code",
+    "get_permission_value_type_name",
+    "get_transaction_type_name",
]

This groups all permission-related functions together and maintains the export list’s logical flow.

xrpl/core/binarycodec/definitions/definitions.json (2)

1964-1972: Delegate AccountID entry – collision check & completeness

Nice to see nth: 12 continuing the AccountID sequence.
Two small checks worth running:

1. Verify no other AccountID already uses 12.
2. Confirm accompanying test-vectors cover serialization/deserialization of this new field (to avoid silent endian/length issues).

If either is missing, please add.

---

3150-3153: TransactionTypes – keep enum & codec in sync

"DelegateSet": 64 is added here.
Please ensure:

1. xrpl/models/transactions/types/transaction_type.py contains DELEGATE_SET = 64.
2. Binary codec integer ↔︎ string mapping includes the new entry.

Missing either will cause ValueError on (de)serialization.

tests/integration/transactions/test_delegate_set.py (2)

60-69: Avoid hard-coding list indices when asserting permissions

The assertions later in the test depend on the permissions being exactly two and in a fixed order.
Iterating defensively avoids IndexError if the on-ledger array order ever changes:

-    granted_permission.add(
-        entry["Permissions"][0]["Permission"]["PermissionValue"]
-    )
-    granted_permission.add(
-        entry["Permissions"][1]["Permission"]["PermissionValue"]
-    )
+    for perm in entry["Permissions"]:
+        granted_permission.add(perm["Permission"]["PermissionValue"])

---

170-196: ledger_index variable overwritten inside pagination loop

Inside the pagination while-loop you mutate ledger_index with the server-returned value.
This makes the next request use an explicit numeric ledger rather than "validated", which is harmless but unnecessary and can complicate flaky-ledger scenarios.

Simply omit the assignment and keep the original "validated" literal:

-    ledger_index = ledger_data_response.result["ledger_index"]

xrpl/models/transactions/delegate_set.py (1)

154-163: _get_errors – dict-merge creates keys even when valid

_get_errors currently injects "permissions" and "account_addresses" keys whose values may be None, then filters them out.
Minor, but generating fewer temporaries is cleaner & fractionally faster:

-        return {
-            key: value
-            for key, value in {
-                **super()._get_errors(),
-                "permissions": self._get_permissions_error(),
-                "account_addresses": self._validate_account_addresses(),
-            }.items()
-            if value is not None
-        }
+        errors = super()._get_errors()
+        if (perm_err := self._get_permissions_error()):
+            errors["permissions"] = perm_err
+        if (addr_err := self._validate_account_addresses()):
+            errors["account_addresses"] = addr_err
+        return errors

📜 Review details

Configuration used: .coderabbit.yaml
Review profile: CHILL
Plan: Pro

📥 Commits

Reviewing files that changed from the base of the PR and between 6277624 and f2a496d.

📒 Files selected for processing (16)

• .ci-config/rippled.cfg (1 hunks)
• CHANGELOG.md (1 hunks)
• tests/integration/transactions/test_delegate_set.py (1 hunks)
• tests/unit/core/binarycodec/fixtures/data/serialized-dict-fixtures.json (1 hunks)
• tests/unit/core/binarycodec/types/test_serialized_dict.py (1 hunks)
• tests/unit/models/transactions/test_delegate_set.py (1 hunks)
• tests/unit/models/transactions/test_payment.py (2 hunks)
• xrpl/core/binarycodec/definitions/__init__.py (2 hunks)
• xrpl/core/binarycodec/definitions/definitions.json (6 hunks)
• xrpl/core/binarycodec/definitions/definitions.py (3 hunks)
• xrpl/core/binarycodec/types/st_object.py (3 hunks)
• xrpl/models/requests/ledger_entry.py (4 hunks)
• xrpl/models/transactions/__init__.py (2 hunks)
• xrpl/models/transactions/delegate_set.py (1 hunks)
• xrpl/models/transactions/transaction.py (3 hunks)
• xrpl/models/transactions/types/transaction_type.py (1 hunks)

🧰 Additional context used

🧬 Code Graph Analysis (3)

xrpl/core/binarycodec/definitions/__init__.py (1)

xrpl/core/binarycodec/definitions/definitions.py (2)

• get_permission_value_type_code (281-294)
• get_permission_value_type_name (297-310)

xrpl/models/transactions/__init__.py (1)

xrpl/models/transactions/delegate_set.py (3)

• DelegatableTransaction (20-72)
• DelegateSet (137-179)
• GranularPermission (75-115)

tests/unit/core/binarycodec/types/test_serialized_dict.py (2)

xrpl/core/binarycodec/binary_wrappers/binary_parser.py (1)

• BinaryParser (31-261)

xrpl/core/binarycodec/types/st_object.py (4)

• STObject (91-247)
• from_value (128-228)
• to_json (230-247)
• from_parser (95-125)

⏰ Context from checks skipped due to timeout of 90000ms (12)

• GitHub Check: Snippet test (3.10)
• GitHub Check: Snippet test (3.13)
• GitHub Check: Snippet test (3.12)
• GitHub Check: Integration test (3.9)
• GitHub Check: Snippet test (3.11)
• GitHub Check: Integration test (3.8)
• GitHub Check: Integration test (3.12)
• GitHub Check: Integration test (3.11)
• GitHub Check: Snippet test (3.8)
• GitHub Check: Integration test (3.13)
• GitHub Check: Integration test (3.10)
• GitHub Check: Snippet test (3.9)

🔇 Additional comments (36)

.ci-config/rippled.cfg (1)

199-199: Enable PermissionDelegation amendment in CI config

The PermissionDelegation flag has been added under the [features] stanza to enable the new account permission delegation amendment during CI testing. Ensure that the rippled server version used in your CI pipeline includes support for this amendment to avoid startup failures.

xrpl/models/transactions/types/transaction_type.py (1)

25-25: Add DELEGATE_SET transaction type

Introduces DELEGATE_SET = "DelegateSet" to the TransactionType enum, aligning the enum with the newly implemented DelegateSet transaction model. The placement maintains the existing alphabetical ordering of transaction types.

CHANGELOG.md (1)

17-17: Update changelog for Account Permission Delegation

Documents the addition of “Account Permission” and “Account Permission Delegation” (XLS-74d, XLS-75d) under the Unreleased section. This correctly captures the new features introduced by this PR.

xrpl/models/transactions/__init__.py (1)

35-39: Expose DelegateSet models in transactions package

Imports DelegatableTransaction, DelegateSet, and GranularPermission from the new delegate_set module, making these types available as part of the public transactions API. The import position follows the existing alphabetical grouping by module name.

xrpl/core/binarycodec/definitions/__init__.py (1)

9-10: Import new permission value functions

Adds get_permission_value_type_code and get_permission_value_type_name to the import list, exposing the mappings between permission names and their binary codes in the definitions API. This is required for serializing and deserializing granular permissions.

xrpl/core/binarycodec/types/st_object.py (3)

16-17: Good addition of permission value type imports.

The imports properly extend the list of definitions for field type conversion, maintaining consistency with the existing pattern for other field types.

---

73-74: Correctly implemented permission value string-to-enum conversion.

This implementation follows the established pattern used for other field types in the method, ensuring consistent handling of the new PermissionValue field type.

---

86-87: Correctly implemented permission value enum-to-string conversion.

This implementation properly handles the reverse conversion from enum code to string name for the PermissionValue field type, maintaining symmetry with the corresponding _str_to_enum method.

xrpl/models/transactions/transaction.py (3)

28-29: Style improvement with trailing comma.

The addition of a trailing comma is good practice as it makes future additions cleaner and reduces diff noise.

---

256-258: Good implementation of delegate account field.

The optional delegate field is properly defined with clear documentation on its purpose, enabling the account permission delegation functionality.

---

270-278: Proper validation to prevent identical account and delegate.

The validation logic correctly prevents setting the same address for both account and delegate, which would defeat the purpose of delegation. The error message is clear, and the code properly handles both cases - when there are existing errors and when there aren't.

tests/unit/core/binarycodec/types/test_serialized_dict.py (5)

1-3: Good addition of necessary imports.

The imports for json and os are required for loading test fixtures from an external file.

---

8-12: Excellent shift to data-driven testing.

This refactor improves test maintainability by moving test data to an external fixture file, making it easier to add more test cases, especially for new transaction types like DelegateSet.

---

19-24: Well-implemented data-driven test for serialization.

The test now iterates through all test cases in the fixture file, validating that STObject.from_value produces the expected binary output for each case, including the new DelegateSet transaction type.

---

26-30: Well-implemented data-driven test for serialization and JSON conversion.

The test properly validates that serializing and then converting back to JSON matches the original JSON input for all test cases.

---

32-37: Well-implemented data-driven test for deserialization.

The test correctly validates that parsing binary data and converting to JSON produces the expected output for all test cases, ensuring proper round-trip conversions.

tests/unit/models/transactions/test_payment.py (3)

9-10: Good addition of delegate account constant.

Adding a constant for the delegate account test value follows the existing pattern in the file and improves maintainability.

---

194-206: Well-written test for duplicate account and delegate validation.

This test properly verifies that an exception is raised when the account and delegate addresses are the same, with the correct error message.

---

208-216: Good test coverage for valid delegate usage.

This test ensures that a Payment transaction with a different delegate address is considered valid, providing complete test coverage for the new feature.

tests/unit/core/binarycodec/fixtures/data/serialized-dict-fixtures.json (1)

1-47: New test fixtures look good!

The new JSON fixture file provides appropriate test data for both existing "OfferCreate" and the newly added "DelegateSet" transaction types. The DelegateSet fixture (lines 21-46) properly includes the required fields such as Account, Authorize, and Permissions array with granular permission values, matching the functionality being implemented for account permission delegation.

xrpl/models/requests/ledger_entry.py (4)

33-33: LGTM! New LedgerEntryType correctly added.

Adding the "delegate" type to the LedgerEntryType enum properly extends the available ledger entry types to support querying delegate objects.

---

70-91: Implementation follows established patterns.

The new Delegate class correctly follows the same pattern as other ledger entry data classes, with proper documentation and required fields (account and authorize) for querying delegate objects.

---

331-331: LGTM! Field correctly added to LedgerEntry.

The new delegate field in the LedgerEntry class is properly typed as Optional[Union[str, Delegate]], consistent with the pattern used for other similar fields.

---

366-366: Validation properly updated.

The _get_errors method is correctly updated to include the new delegate field in the query parameter validation logic, ensuring consistent validation behavior.

tests/unit/models/transactions/test_delegate_set.py (5)

12-26: Test constants look good.

The test accounts and permissions list constants are properly defined. The _MORE_THAN_10_PERMISSIONS list correctly includes a mix of GranularPermission and DelegatableTransaction values, which is useful for testing the maximum permissions list length constraint.

---

29-48: Basic validation tests look good.

The tests appropriately verify that both transaction-level permissions and granular permissions can be used in a DelegateSet transaction. This ensures all permission types are properly supported.

---

49-64: Maximum permissions validation test is comprehensive.

The test correctly verifies that the model enforces the maximum number of permissions constraint, using the predefined list of more than 10 permissions to trigger the validation error.

---

66-79: Duplicate permission validation test is well-designed.

The test properly verifies that the model detects duplicate permission values in the permissions list, ensuring data integrity.

---

81-96: Validation of distinct account addresses is properly tested.

The test correctly verifies that the account and authorize fields must contain different addresses, which is an important constraint for the delegate relationship.

xrpl/core/binarycodec/definitions/definitions.py (4)

12-25: Granular permissions mapping looks good.

The _GRANULAR_PERMISSIONS dictionary correctly maps permission names to unique integer codes starting from 65537, which provides a clear separation from transaction type codes. The permissions cover various authorization and setting operations, aligning with the XLS-74d and XLS-75d amendments.

---

76-78: Reverse mapping is correctly implemented.

The reverse mapping from permission codes to names follows the same pattern used for other similar mappings in the file, maintaining code consistency.

---

281-295: Well-designed permission code conversion function.

The function correctly handles both granular permissions (using the _GRANULAR_PERMISSIONS map) and transaction-type permissions (using transaction type codes with an offset of +1). The approach efficiently reuses existing transaction type codes while ensuring they're distinct from granular permission codes.

---

297-310: Bidirectional conversion is properly implemented.

The conversion from permission codes back to name strings correctly handles both granular permissions and transaction-type permissions, ensuring proper round-trip serialization and deserialization of permission values.

xrpl/core/binarycodec/definitions/definitions.json (2)

673-682:

✅ Verification successful

Ensure nth uniqueness within the UInt32 namespace

PermissionValue is assigned nth: 52, which looks sequentially correct after OracleDocumentID (51).
However, duplicate nth values inside the same type‐family silently break the codec at runtime.

The script echoes duplicates; expect no output.
Please run it and confirm the new value does not collide.

---

🏁 Script executed:

#!/usr/bin/env bash
# Fail if *any* UInt32 field re-uses an nth already taken.
jq -r '.FIELDS[] | select(.[1].type=="UInt32") | .[1].nth' \
  xrpl/core/binarycodec/definitions/definitions.json |
  sort | uniq -d

Length of output: 128

---

No duplicate nth values for UInt32 fields – verification passed.
Ran the provided jq script against xrpl/core/binarycodec/definitions/definitions.json; it returned no duplicates.

---

2921-2923:

✅ Verification successful

LedgerEntryTypes – verify code 131 is unused

Code 131 looks free, but a quick automated scan prevents surprises across future merges.

Expect exactly one hit (this insertion).

---

🏁 Script executed:

#!/usr/bin/env bash
grep -R --line-number '"Delegate": *131' xrpl/core/binarycodec/definitions/definitions.json

Length of output: 119

---

Delegate (code 131) – single definition verified

• xrpl/core/binarycodec/definitions/definitions.json:2922 contains "Delegate": 131
• No other occurrences of code 131 in that mapping

xrpl/models/transactions/delegate_set.py (1)

165-168: ⚠️ Potential issue

Address comparison should be case-insensitive

X-addresses/Base58 are case-insensitive; defensive lower-casing avoids false
negatives if callers supply mixed-case values.

-        if self.authorize == self.account:
+        if self.authorize.lower() == self.account.lower():

Likely an incorrect or invalid review comment.

[coderabbitai]

Actionable comments posted: 0

🧹 Nitpick comments (7)

tests/unit/models/transactions/test_delegate_set.py (3)

12-26: Consider adding documentation to test constants.

The constants are used throughout the tests but their meaning isn't documented. Consider adding comments explaining what these accounts represent in the test context and why the list contains more than 10 permissions.

---

49-65: Consider adding a boundary test case.

The test verifies that exceeding PERMISSION_MAX_LENGTH fails validation, but there's no test for exactly PERMISSION_MAX_LENGTH permissions, which should pass. Consider adding this boundary case.

+    def test_max_length_permissions_list(self):
+        tx = DelegateSet(
+            account=_ACCOUNT,
+            authorize=_DELEGATED_ACCOUNT,
+            permissions=[
+                Permission(permission_value=_MORE_THAN_10_PERMISSIONS[i])
+                for i in range(PERMISSION_MAX_LENGTH)
+            ],
+        )
+        self.assertTrue(tx.is_valid())

---

1-115: Consider adding a test for empty permissions list.

There is no test for an empty permissions list. If this is a valid case, add a test to verify it passes validation. If it should be invalid, add a test to verify it fails with the appropriate error message.

+    def test_empty_permissions_list(self):
+        # If empty list should be valid:
+        tx = DelegateSet(
+            account=_ACCOUNT,
+            authorize=_DELEGATED_ACCOUNT,
+            permissions=[],
+        )
+        self.assertTrue(tx.is_valid())
+
+        # Or if empty list should be invalid:
+        # with self.assertRaises(XRPLModelException) as error:
+        #     DelegateSet(
+        #         account=_ACCOUNT,
+        #         authorize=_DELEGATED_ACCOUNT,
+        #         permissions=[],
+        #     )
+        # self.assertEqual(
+        #     error.exception.args[0],
+        #     "{'permissions': 'Permissions list cannot be empty.'}",
+        # )

xrpl/models/transactions/delegate_set.py (4)

71-84: Permission dataclass is minimalistic and focused.

The Permission class correctly implements a nested model with a single required field. The docstring could provide more examples of valid permission values to help developers.

 class Permission(NestedModel):
     """Represents one entry in a Permissions list used in DelegateSet
     transaction.
+    
+    The permission_value can be either a TransactionType.value or a 
+    GranularPermission value. For example:
+    
+    - TransactionType.PAYMENT.value (transaction-level permission)
+    - GranularPermission.PAYMENT_MINT (granular permission)
     """

---

121-139: Consider breaking down the permissions validation method.

The _get_permissions_error method performs multiple validations. Consider breaking it down into smaller, focused methods for better readability and maintainability.

-    def _get_permissions_error(self: Self) -> Optional[str]:
-        if len(self.permissions) > PERMISSION_MAX_LENGTH:
-            return (
-                f"Length of `permissions` list is greater than {PERMISSION_MAX_LENGTH}."
-            )
-
-        entered_permissions = [
-            permission.permission_value for permission in self.permissions
-        ]
-        if len(entered_permissions) != len(set(entered_permissions)):
-            return "Duplicate permission value in `permissions` list."
-
-        if set(entered_permissions) & NON_DELEGATABLE_TRANSACTIONS:
-            return (
-                f"Non delegatable transactions found in `permissions` list: "
-                f"{set(entered_permissions) & NON_DELEGATABLE_TRANSACTIONS}."
-            )
-
-        return None
+    def _get_permissions_error(self: Self) -> Optional[str]:
+        """Validate the permissions list and return error if any."""
+        # Check for length constraints
+        length_error = self._validate_permissions_length()
+        if length_error:
+            return length_error
+            
+        # Extract permission values for further validation
+        entered_permissions = [
+            permission.permission_value for permission in self.permissions
+        ]
+        
+        # Check for duplicates
+        duplicate_error = self._validate_no_duplicate_permissions(entered_permissions)
+        if duplicate_error:
+            return duplicate_error
+            
+        # Check for non-delegatable transactions
+        delegatable_error = self._validate_delegatable_permissions(entered_permissions)
+        if delegatable_error:
+            return delegatable_error
+            
+        return None
+        
+    def _validate_permissions_length(self: Self) -> Optional[str]:
+        """Validate that permissions list doesn't exceed maximum length."""
+        if len(self.permissions) > PERMISSION_MAX_LENGTH:
+            return f"Length of `permissions` list is greater than {PERMISSION_MAX_LENGTH}."
+        return None
+        
+    def _validate_no_duplicate_permissions(self: Self, permissions: List[str]) -> Optional[str]:
+        """Validate that there are no duplicate permission values."""
+        if len(permissions) != len(set(permissions)):
+            return "Duplicate permission value in `permissions` list."
+        return None
+        
+    def _validate_delegatable_permissions(self: Self, permissions: List[str]) -> Optional[str]:
+        """Validate that all permissions are delegatable."""
+        non_delegatable = set(permissions) & NON_DELEGATABLE_TRANSACTIONS
+        if non_delegatable:
+            return f"Non delegatable transactions found in `permissions` list: {non_delegatable}."
+        return None

---

123-126: Use consistent string formatting.

The error message formatting in this file uses both f-strings and string concatenation with + operator. Consider using f-strings consistently for better readability.

-            return (
-                f"Length of `permissions` list is greater than {PERMISSION_MAX_LENGTH}."
-            )
+            return f"Length of `permissions` list is greater than {PERMISSION_MAX_LENGTH}."

---

134-137: Use consistent string formatting here too.

Similar to the previous comment, use f-strings consistently for error messages.

-            return (
-                f"Non delegatable transactions found in `permissions` list: "
-                f"{set(entered_permissions) & NON_DELEGATABLE_TRANSACTIONS}."
-            )
+            return f"Non delegatable transactions found in `permissions` list: {set(entered_permissions) & NON_DELEGATABLE_TRANSACTIONS}."

📜 Review details

Configuration used: .coderabbit.yaml
Review profile: CHILL
Plan: Pro

📥 Commits

Reviewing files that changed from the base of the PR and between f2a496d and 3626419.

📒 Files selected for processing (4)

• tests/integration/transactions/test_delegate_set.py (1 hunks)
• tests/unit/models/transactions/test_delegate_set.py (1 hunks)
• xrpl/models/transactions/__init__.py (2 hunks)
• xrpl/models/transactions/delegate_set.py (1 hunks)

🚧 Files skipped from review as they are similar to previous changes (2)

• xrpl/models/transactions/init.py
• tests/integration/transactions/test_delegate_set.py

⏰ Context from checks skipped due to timeout of 90000ms (12)

• GitHub Check: Snippet test (3.12)
• GitHub Check: Snippet test (3.13)
• GitHub Check: Snippet test (3.10)
• GitHub Check: Integration test (3.12)
• GitHub Check: Integration test (3.11)
• GitHub Check: Integration test (3.8)
• GitHub Check: Snippet test (3.11)
• GitHub Check: Snippet test (3.8)
• GitHub Check: Integration test (3.13)
• GitHub Check: Integration test (3.10)
• GitHub Check: Integration test (3.9)
• GitHub Check: Snippet test (3.9)

🔇 Additional comments (11)

tests/unit/models/transactions/test_delegate_set.py (6)

1-11: All necessary imports are present.

The imports include all required components for testing the DelegateSet transaction model including exceptions, model classes, and permission enums.

---

28-40: Test for basic DelegateSet creation looks good.

This test properly verifies that a DelegateSet transaction with both granular and transaction type permissions can be created and validated.

---

41-48: Granular permission test is appropriately focused.

This test correctly validates that a DelegateSet can be created with just a granular permission.

---

66-80: Duplicate permission test is thorough.

This test correctly verifies that duplicate permissions in the list are properly detected and rejected.

---

81-97: Account validation test is appropriate.

This test correctly verifies that using the same address for both account and authorize fields is rejected.

---

98-114: Non-delegatable transactions test is thorough.

This test properly verifies that including non-delegatable transactions in the permissions list is rejected with the appropriate error message.

xrpl/models/transactions/delegate_set.py (5)

1-16: Imports and module docstring are appropriate.

All necessary imports are present and the module docstring clearly indicates the purpose of this file.

---

17-26: Constants are well-defined with clear purpose.

The PERMISSION_MAX_LENGTH and NON_DELEGATABLE_TRANSACTIONS constants are clear and appropriate for the implementation.

---

28-69: GranularPermission enum is well-documented.

The enum provides comprehensive documentation for each granular permission type, which is excellent for developer understanding.

---

105-114: Error aggregation looks good.

The _get_errors method properly aggregates validation errors from parent class and specific validations.

---

116-120: Account address validation is simple and effective.

The _validate_account_addresses method correctly checks that authorize and account fields differ.

[khancode]

I agree with @mvadari and rather not use this approach. Reason is each time a new transaction is added, then this module will have to be updated to keep it accurate which makes it harder to maintain.

[coderabbitai]

Actionable comments posted: 0

🧹 Nitpick comments (4)

xrpl/models/transactions/delegate_set.py (4)

19-25: Prefer an immutable frozenset for global constants

NON_DELEGATABLE_TRANSACTIONS is intended to be a read-only lookup table.
Using a frozenset prevents accidental run-time mutation and has a (minor) performance benefit for membership tests.

-NON_DELEGATABLE_TRANSACTIONS = {
+NON_DELEGATABLE_TRANSACTIONS: frozenset[str] = frozenset(
     TransactionType.ACCOUNT_SET.value,
     TransactionType.SET_REGULAR_KEY.value,
     TransactionType.SIGNER_LIST_SET.value,
     TransactionType.DELEGATE_SET.value,
     TransactionType.ACCOUNT_DELETE.value,
-}
+)

---

109-118: Possible loss of error details due to key shadowing

super()._get_errors() might already contain a "permissions" entry in the future.
By blindly overwriting with None, valuable diagnostics could be dropped.

Safest pattern:

-                **super()._get_errors(),
-                "permissions": self._get_permissions_error(),
+                **super()._get_errors(),
+                "permissions": (
+                    self._get_permissions_error()
+                    or super()._get_errors().get("permissions")
+                ),

This keeps upstream errors if the local check yields no issues.
(If the base never emits a "permissions" key today, the change is still forward-compatible.)

---

126-138: Duplicate-detection message could identify offending entries

When the list is large it’s hard to spot which item is repeated.
Returning the duplicates helps the caller fix the payload quickly.

-        if len(entered_permissions) != len(set(entered_permissions)):
-            return "Duplicate permission value in `permissions` list."
+        duplicates = {
+            p for p in entered_permissions if entered_permissions.count(p) > 1
+        }
+        if duplicates:
+            return (
+                "Duplicate permission value(s) in `permissions` list: "
+                f"{sorted(duplicates)}."
+            )

---

139-143: Unordered set in error message may lead to flaky assertions

Stringifying a set produces an arbitrary order, which can make test expectations brittle.
Return a sorted, deterministic representation instead:

-            return (
-                f"Non-delegatable transactions found in `permissions` list: "
-                f"{set(entered_permissions) & NON_DELEGATABLE_TRANSACTIONS}."
-            )
+            offenders = sorted(set(entered_permissions) & NON_DELEGATABLE_TRANSACTIONS)
+            return (
+                "Non-delegatable transactions found in `permissions` list: "
+                f"{offenders}."
+            )

📜 Review details

Configuration used: .coderabbit.yaml
Review profile: CHILL
Plan: Pro

📥 Commits

Reviewing files that changed from the base of the PR and between b70dbfd and 0a85fa1.

📒 Files selected for processing (2)

• tests/unit/models/transactions/test_delegate_set.py (1 hunks)
• xrpl/models/transactions/delegate_set.py (1 hunks)

🚧 Files skipped from review as they are similar to previous changes (1)

• tests/unit/models/transactions/test_delegate_set.py

🧰 Additional context used

🧬 Code Graph Analysis (1)

xrpl/models/transactions/delegate_set.py (4)

xrpl/models/nested_model.py (1)

• NestedModel (20-72)

xrpl/models/transactions/transaction.py (3)

• Transaction (161-519)
• _get_errors (108-121)
• _get_errors (259-274)

xrpl/models/transactions/types/transaction_type.py (1)

• TransactionType (6-63)

xrpl/models/utils.py (1)

• require_kwargs_on_init (110-163)

⏰ Context from checks skipped due to timeout of 90000ms (12)

• GitHub Check: Snippet test (3.12)
• GitHub Check: Integration test (3.13)
• GitHub Check: Integration test (3.11)
• GitHub Check: Snippet test (3.10)
• GitHub Check: Integration test (3.12)
• GitHub Check: Integration test (3.9)
• GitHub Check: Integration test (3.10)
• GitHub Check: Snippet test (3.11)
• GitHub Check: Integration test (3.8)
• GitHub Check: Snippet test (3.9)
• GitHub Check: Snippet test (3.13)
• GitHub Check: Snippet test (3.8)

🔇 Additional comments (1)

xrpl/models/transactions/delegate_set.py (1)

78-82: Validate permission_value early to avoid malformed transactions

Right now any arbitrary string will pass through, leading to a failed submit after the network round-trip.
Consider a __post_init__ or a dedicated validator that:

1. Normalises incoming values (Enum → .value, str → stripped).
2. Verifies the value is either:
   • a delegatable TransactionType, or
   • a GranularPermission.

Failing fast improves DX and keeps client / CI feedback tight.

[ suggest_essential_refactor ]

[khancode]

LGTM, great work!

[mvadari]

Same as in JS - why is this necessary? Much more efficient to search via account_objects.

[Patel-Raj11]

@mvadari I wanted to test for ledger_data api call. So I added this. But, I should also test for account_objects as your review comment pointed out missing DELEGATE enum type in AccountObjectType

[mvadari]

I'm not sure this test is worth it - it'll take a while and be pretty inefficient.

[Patel-Raj11]

I see, removed ledger_data and added account_objects test.

[mvadari]

To match the other fixture files, this field should be called binary.

[mvadari]

nit: newline at the end of the file

[mvadari]

This should be added to the other fixtures file, not this one - codec-fixtures.json

[mvadari]

nit (I think this is slightly better but it's fine if you don't want to change this):

Suggested change

	_DELEGATABLE_PERMISSIONS_STR_TO_CODE_MAP: Dict[str, int] = {
	**{key: value + 1 for (key, value) in _DEFINITIONS["TRANSACTION_TYPES"].items()},
	**_GRANULAR_PERMISSIONS,
	}
	_DELEGATABLE_PERMISSIONS_CODE_TO_STR_MAP: Dict[int, str] = {
	**{value + 1: key for (key, value) in _DEFINITIONS["TRANSACTION_TYPES"].items()},
	**{value: key for (key, value) in _GRANULAR_PERMISSIONS.items()},
	}
	_tx_delegations = {key: value + 1 for (key, value) in _DEFINITIONS["TRANSACTION_TYPES"].items()}
	_DELEGATABLE_PERMISSIONS_STR_TO_CODE_MAP: Dict[str, int] = {
	**_tx_delegations,
	**_GRANULAR_PERMISSIONS,
	}
	_DELEGATABLE_PERMISSIONS_CODE_TO_STR_MAP: Dict[int, str] = {
	**{value: key for (key, value) in _DELEGATABLE_PERMISSIONS_STR_TO_CODE_MAP.items()}
	}

[Patel-Raj11]

@mvadari I have addressed all the comments in 13f3eaa, can you please have a look?

[mvadari]

Nice job