@dcl/content-validator
v2.3.2-20220721194900.commit-1b2e08eTypeScript
Catalyst content validations
0/weekUpdated todayApache-2.0Unpacked: 209.4 KB
Published by Decentraland Contributors
npm install @dcl/content-validator
@dcl/content-validator
Decentraland entity deployment validation library for Catalyst servers. Contains all validations to ensure only valid and authorized content is deployed to the Decentraland content network.
Table of Contents
- @dcl/content-validator
- Table of Contents
- Features
- Installation
- Design Guidelines
- Validation Types
- Size Limits (ADR-51)
- Usage
- Basic Usage
- Access Validation Strategies
- On-Chain Validation
- Subgraph Validation
- Getting Started
- Development
- Debugging Tests
- Adding New Entity Types
- Project Structure
- External Dependencies
- Versioning and Publishing
- AI Agent Context
Features
- Entity Structure Validation - Validates JSON structure, required fields, and content references for all Decentraland entity types
- Access Permission Checking - Verifies deployer ownership via blockchain (on-chain) or The Graph (subgraph)
- IPFS Content Integrity - Ensures content file hashes are valid IPFS CIDs and files exist
- Size Enforcement - Enforces max size limits per entity type following ADR-51 specifications
- Metadata Schema Validation - Validates metadata against @dcl/schemas definitions
- Signature Authentication - Verifies AuthChain signatures for entity authenticity
- Multi-Entity Support - Validates scenes, profiles, wearables, emotes, stores, and outfits
- Dual Access Strategies - Supports both on-chain and subgraph-based ownership verification
- Legacy Compatibility - Maintains backwards compatibility with legacy content migrations
Installation
``bash`
npm i @dcl/content-validator
Design Guidelines
- Validate as early as possible to prevent invalid content from being stored
- Provide clear, actionable error messages for deployment failures
- Support both on-chain and subgraph-based access verification
- Maintain backwards compatibility with legacy content migrations
- Ensure all validation functions are stateless where possible
Implementation decisions:
- The library exports a createValidator factory function as the main entry point{ ok: boolean, errors?: string[] }
- Validation functions return responses
- Access checking supports two strategies: on-chain (direct blockchain) and subgraph (The Graph)
- Size limits are defined per entity type following ADR-51
Validation Types
The validator performs the following checks on entity deployments:
| Validation | Description |
|------------|-------------|
| Entity Structure | Validates JSON structure, required fields, and content references |
| IPFS Hashing | Ensures content file hashes are valid IPFS CIDs |
| Metadata Schema | Validates metadata against @dcl/schemas definitions |
| Signature | Verifies AuthChain signatures for entity authenticity |
| Size | Enforces max size limits per entity type (see below) |
| Access | Verifies deployer owns the entity pointers (LAND, NFTs, names) |
| Content | Ensures all referenced content files exist and are accessible |
| Entity-Specific | Additional validations per type (wearables, emotes, profiles, scenes, outfits) |
$3
| Entity Type | Max Size | Notes |
|-------------|----------|-------|
| Scene | 15 MB | Per parcel |
| Profile | 2 MB | |
| Wearable | 3 MB | |
| Wearable (Skin) | 9 MB | Special category |
| Emote | 3 MB | |
| Store | 1 MB | |
| Outfits | 1 MB | |
Usage
$3
`typescript
import { createValidator, ContentValidatorComponents, DeploymentToValidate } from '@dcl/content-validator'
// Create validator with required components
const validator = createValidator({
logs: logsComponent,
externalCalls: {
isContentStoredAlready: async (hashes) => { / ... / },
fetchContentFileSize: async (hash) => { / ... / },
validateSignature: async (entityId, auditInfo, timestamp) => { / ... / },
ownerAddress: (auditInfo) => { / ... / },
isAddressOwnedByDecentraland: (address) => { / ... / },
calculateFilesHashes: async (files) => { / ... / }
},
accessValidateFn: accessValidator // on-chain or subgraph-based
})
// Validate a deployment
const deployment: DeploymentToValidate = {
entity: { / entity data / },
files: new Map([/ content files /]),
auditInfo: { authChain: [/ auth chain /] }
}
const result = await validator(deployment)
if (!result.ok) {
console.error('Validation failed:', result.errors)
}
`
$3
The library supports two access validation strategies:
#### On-Chain Validation
Direct blockchain queries for ownership verification:
`typescript
import { createOnChainAccessCheckValidateFns, createOnChainClient } from '@dcl/content-validator'
const validateFns = createOnChainAccessCheckValidateFns({
logs,
externalCalls,
client: createOnChainClient({ logs, L1, L2 }),
L1: { checker, collections, thirdParty, blockSearch },
L2: { checker, collections, thirdParty, blockSearch }
})
`
#### Subgraph Validation
Uses The Graph for ownership queries (more efficient for bulk queries):
`typescript
import { createSubgraphAccessCheckValidateFns, createTheGraphClient } from '@dcl/content-validator'
const validateFns = createSubgraphAccessCheckValidateFns({
logs,
externalCalls,
theGraphClient: createTheGraphClient({ logs, subGraphs }),
subGraphs,
tokenAddresses: { land: '0x...', estate: '0x...' }
})
`
Getting Started
$3
Install dependencies and run tests:
`bash`
yarn
yarn build
yarn test
$3
If you are using VS Code, install the recommended extensions and debug tests using the Jest extension which adds UI support.
Adding New Entity Types
Before adding any validation for new entities:
1. Create entity schema on @dcl/schemas
2. Add entity type and schema on catalyst-commons
3. Add access checker in access/index.ts and implement entity-specific validation
4. Add size limit in ADR51.ts
5. Verify URN resolution - if required, add a new resolver in @dcl/urn-resolver
Project Structure
`
src/
├── index.ts # Main entry point, createValidator factory
├── types.ts # Core types (DeploymentToValidate, ValidationResponse, etc.)
├── utils.ts # Utility functions
└── validations/
├── index.ts # Validation function aggregator
├── access/ # Access permission validators
│ ├── common/ # Shared access validation logic
│ ├── on-chain/ # Direct blockchain access checking
│ └── subgraph/ # The Graph-based access checking
├── items/ # Item-specific validations
│ ├── emotes.ts
│ └── wearables.ts
├── ADR45.ts # ADR-45 validation rules
├── ADR51.ts # Size limits per entity type
├── content.ts # Content file validation
├── entity-structure.ts # Entity JSON structure validation
├── ipfs-hashing.ts # IPFS hash validation
├── metadata-schema.ts # Metadata schema validation
├── outfits.ts # Outfits-specific validation
├── profile.ts # Profile-specific validation
├── scene.ts # Scene-specific validation
├── signature.ts # AuthChain signature validation
├── size.ts # Entity size validation
└── timestamps.ts # Important timestamp constants
External Dependencies
| Dependency | Purpose |
|------------|---------|
| @dcl/schemas | Entity type definitions and validation schemas |@dcl/urn-resolver
| | URN parsing and validation for items |@dcl/block-indexer
| | Blockchain block search for timestamp-based queries |@dcl/hashing
| | IPFS content hashing |@well-known-components/thegraph-component
| | The Graph subgraph queries |
Versioning and Publishing
Versions are handled manually using GitHub releases and semver.
Main branch is automatically published to the @next` dist tag to test integrations before final releases happen.
AI Agent Context
For detailed AI Agent context including service purpose, key capabilities, technology stack, and validation details, see docs/ai-agent-context.md.