Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Add ERC: Metadata Management for NFTs #293

Open
wants to merge 9 commits into
base: master
Choose a base branch
from
Open

Add ERC: Metadata Management for NFTs #293

Changes from all commits
Commits
Show all changes
9 commits
Select commit Hold shift + click to select a range
38fb168
ERC: Metadata Management for NFTs
Kureev Mar 3, 2024
33286bc
Update ERC number
Kureev Mar 4, 2024
75b8156
Updated ERC to comply with erc-xxxx naming convention and added discu…
Kureev Mar 4, 2024
e97f640
ERC-7646: Address EIP validator comments
Kureev Mar 4, 2024
e973e9b
ERC-7646: Use links for ERC references
Kureev Mar 4, 2024
776a4ec
ERC-7646: Avoid referencing the ERC itself
Kureev Mar 4, 2024
c24ea89
ERC-7646: Update references to point to ercs.ethereum.com website
Kureev Mar 4, 2024
cedc391
Revert "ERC-7646: Update references to point to ercs.ethereum.com web…
Kureev Mar 4, 2024
c11f783
DB-7646: EIP instead of ERC for relative references?
Kureev Mar 4, 2024
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Jump to
Jump to file
Failed to load files.
Diff view
Diff view
141 changes: 141 additions & 0 deletions ERCS/erc-7646.md
View file
Open in desktop
@@ -0,0 +1,141 @@
---
eip: 7646
title: Metadata Management for NFTs
description: This ERC allows NFT owners and authorized addresses to update their token metadata.
author: Alexey Kureev (@Kureev) <a.g.kureev@gmail.com>
discussions-to: https://ethereum-magicians.org/t/erc-7646-metadata-management-for-nfts/19027
status: Draft
type: Standards Track
category: ERC
created: 2024-03-03
requires: 721, 1155
---

## Abstract

The MetadataManager contract provides a mapping for storing metadata of NFTs. It also provides a mechanism for authorizing other addresses to update the metadata of a token. This contract can be used in conjunction with any NFT contract that implements the [ERC-721](./eip-721.md) or [ERC-1155](./eip-1155.md) standard.

## Motivation

Currently, the metadata of an NFT is immutable once it has been minted. This is problematic for use cases where the metadata of an NFT needs to be updated afterwards. For example, an NFT representing a digital artwork might need to have its metadata updated to reflect changes in the artwork's ownership or provenance.

## Specification

The MetadataManager contract provides the following functions:

- `updateMetadata(address tokenAddress, uint256 tokenId, string memory newURI)`: Updates the metadata of a token. The sender must be the owner of the token or authorized to update the metadata.
- `getMetadata(address tokenAddress, uint256 tokenId)`: Returns the metadata of a token. If the metadata is not stored, it will try to fetch it from the NFT contract.
- `authorize(address tokenAddress, uint256 tokenId, address authorizedAddress)`: Authorizes an address to update the metadata of a token. Only the owner of the token can call this function.
- `revokeAuthorization(address tokenAddress, uint256 tokenId, address authorizedAddress)`: Revokes the authorization of an address to update the metadata of a token. Only the owner of the token can call this function.

The key words "MUST", "MUST NOT", "REQUIRED", "SHALL", "SHALL NOT", "SHOULD", "SHOULD NOT", "RECOMMENDED", "NOT RECOMMENDED", "MAY", and "OPTIONAL" in this document are to be interpreted as described in RFC 2119 and RFC 8174.

## Rationale

The rationale behind this proposal is to provide a decentralized method for the management of NFT metadata, allowing updates post-mint, as well as the ability for the owner to assign metadata editing permissions.

## Backwards Compatibility

This proposal is fully backwards compatible with existing NFT standards. It can be used in conjunction with any NFT contract that implements the [ERC-721](./eip-721.md) or [ERC-1155](./eip-1155.md) standard.

## Test Cases

TBD

## Reference Implementation

```solidity
// SPDX-License-Identifier: CC0-1.0

pragma solidity ^0.8.0;

interface INFT {
function ownerOf(uint256 tokenId) external view returns (address owner);
function tokenURI(uint256 tokenId) external view returns (string memory);
}

contract MetadataManager {
// tokenAddress => tokenId => URI of the metadata
mapping(address => mapping(uint256 => string)) public tokenMetadata;

// tokenAddress => tokenId => authorizedAddress => bool
mapping(address => mapping(uint256 => mapping(address => bool))) public isAuthorized;

// Emits when the metadata of a token is updated.
event MetadataUpdated(address indexed tokenAddress, uint256 indexed tokenId, string newUri);

// Emits when an address is authorized to update the metadata of a token.
event AuthorizationGranted(address indexed tokenAddress, uint256 indexed tokenId, address indexed authorizedAddress);

// Emits when an address is revoked from updating the metadata of a token.
event AuthorizationRevoked(address indexed tokenAddress, uint256 indexed tokenId, address indexed authorizedAddress);

// Throws if the sender is not the owner of the token.
modifier onlyTokenOwner(address tokenAddress, uint256 tokenId) {
INFT nftContract = INFT(tokenAddress);
if (msg.sender != nftContract.ownerOf(tokenId)) {
revert NotOwner();
}
_;
}

/**
* Updates the metadata of a token.
* The sender must be the owner of the token or authorized to update the metadata.
* Emits a {MetadataUpdated} event.
*/
function updateMetadata(address tokenAddress, uint256 tokenId, string memory newURI) public {
INFT nftContract = INFT(tokenAddress);

if (msg.sender != nftContract.ownerOf(tokenId) || !isAuthorized[tokenAddress][tokenId][msg.sender]) {
revert NotAuthorized();
}

tokenMetadata[tokenAddress][tokenId] = newURI;
emit MetadataUpdated(tokenAddress, tokenId, newURI);
}

/**
* Returns the metadata of a token.
* If the metadata is not stored, it will try to fetch it from the NFT contract.
* If the NFT contract does not have a tokenURI function, it will revert.
*/
function getMetadata(address tokenAddress, uint256 tokenId) public view returns (string memory) {
string memory metadata = tokenMetadata[tokenAddress][tokenId];

if (bytes(metadata).length == 0) {
try INFT(tokenAddress).tokenURI(tokenId) returns (string memory uri) {
return uri;
} catch {
revert NoMetadata();
}
} else {
return metadata;
}
}

// Authorizes an address to update the metadata of a token.
function authorize(address tokenAddress, uint256 tokenId, address authorizedAddress) public onlyTokenOwner(tokenAddress, tokenId) {
isAuthorized[tokenAddress][tokenId][authorizedAddress] = true;
emit AuthorizationGranted(tokenAddress, tokenId, authorizedAddress);
}

// Revokes the authorization of an address to update the metadata of a token.
function revokeAuthorization(address tokenAddress, uint256 tokenId, address authorizedAddress) public onlyTokenOwner(tokenAddress, tokenId) {
isAuthorized[tokenAddress][tokenId][authorizedAddress] = false;
emit AuthorizationRevoked(tokenAddress, tokenId, authorizedAddress);
}

error NotAuthorized();
error NotOwner();
error NoMetadata();
}
```

## Security Considerations

The MetadataManager contract relies on the ownerOf function of the NFT contract to determine the owner of a token. If the NFT contract does not implement this function correctly, it could lead to security issues.

## Copyright

Copyright and related rights waived via [CC0](../LICENSE.md).