Implement Batch Update Expert Profiles

[Josue19-08]

🧠 SkillSphere Pull Request 🌐

Mark with an x all the checkboxes that apply (like [x])

• Closes Batch Update Expert Profiles #45
• Added tests (if necessary)
• Ran cargo test (All tests passed)
• Evidence attached (Screenshots, Logs, or Transaction Hashes)
• Commented the code

---

📌 Type of Change

• 📚 Documentation (updates to README, docs, or comments)
• 🐛 Bug fix (non-breaking change which fixes an issue)
• ✨ Enhancement (non-breaking change which adds functionality)
• 💥 Breaking change (fix or feature that would cause existing functionality to change)
• 🏗️ Refactor (code improvement/cleanup without logical changes)

---

📝 Changes Description

This PR implements batch profile updates for the identity-registry-contract, allowing administrators to sync metadata URIs for multiple experts in a single transaction, significantly reducing gas costs during data migrations.

Changes:

• Added batch_update_profiles(env, updates: Vec<(Address, String, u32)>) function in contract.rs
• Requires admin authentication for security
• Supports updating expert address, data URI, and status (represented as u32: 0=Unverified, 1=Verified, 2=Banned)
• Enforces batch size limit of 20 updates to prevent DoS attacks
• Validates URI length (max 64 characters) for each update
• Exposed the function in public API (lib.rs)
• Added comprehensive tests:
  • Main test with 5 profile updates
  • Max vector size validation test
  • URI length validation test

Impact: Administrators can now efficiently bulk-modify expert records without causing network congestion, making data migrations and bulk updates much more cost-effective.

---

📸 Evidence

All tests pass including the new batch update tests:

running 23 tests
test test::test_ban_before_contract_initialized ... ok
test test::test_add_expert_unauthorized - should panic ... ok
test test::test_batch_update_profiles_max_vec - should panic ... ok
test test::test_ban_unverified_expert ... ok
test test::test_batch_verification_no_admin - should panic ... ok
test test::test_batch_verification_max_vec - should panic ... ok
test test::test_ban_expert_unauthorized - should panic ... ok
test test::test_ban_expert ... ok
test test::test_add_expert ... ok
test test::test_batch_update_profiles_uri_too_long ... ok
test test::test_data_uri_persisted_on_verify ... ok
test test::test_complete_expert_lifecycle ... ok
test test::test_initialization ... ok
test test::test_expert_directory_no_duplicates_on_reverify ... ok
test test::test_expert_status_changed_event ... ok
test test::test_getters ... ok
test test::test_ban_expert_workflow ... ok
test test::test_update_profile_rejections ... ok
test test::test_batch_verification_check_status ... ok
test test::test_update_profile_updates_uri_and_emits_event ... ok
test test::test_expert_directory_enumeration ... ok
test test::test_expert_directory_via_batch_add ... ok
test test::test_batch_update_profiles ... ok

test result: ok. 23 passed; 0 failed; 0 ignored; 0 measured; 0 filtered out

---

🌌 Comments

The implementation includes several safety features:

• Admin-only access with proper authentication
• Batch size limit (max 20) prevents network DoS
• URI length validation ensures data consistency
• Status conversion from u32 with invalid value handling
• Comprehensive error handling for edge cases

The function signature uses u32 for status to match Soroban's serialization format (#[repr(u32)]), making it easier for clients to interact with the contract.

---

Thank you for contributing to SkillSphere! 🌍

We are glad you have chosen to help us democratize access to knowledge on the Stellar network. Your contribution brings us one step closer to a trustless, peer-to-peer consulting economy. Let's build the future together! 🚀

Summary by CodeRabbit

• New Features
  • Added bulk update capability for expert profiles, letting administrators apply up to 20 profile updates in a single operation with validation of profile URIs and status values.
• Tests
  • Added unit tests covering successful batch updates, enforcement of the 20-entry limit, and rejection of overly long URIs.

[coderabbitai]

📝 Walkthrough

Walkthrough

Adds an admin-only batch_update_profiles contract API that accepts up to 20 (address, uri, status_u32) updates, validates URI length and status mapping (0/1/2 → Unverified/Verified/Banned), and writes each expert record via storage; errors abort the batch.

Changes

Cohort / File(s)	Summary
Core Implementation contracts/identity-registry-contract/src/contract.rs	Adds pub fn batch_update_profiles(env: &Env, updates: Vec<(Address, String, u32)>) -> Result<(), RegistryError>: admin authorization, max batch size check (20), per-entry URI length check (<=64) producing RegistryError::UriTooLong, status u32 → ExpertStatus mapping (0/1/2) with RegistryError::NotVerified on invalid values, and calls storage::set_expert_record for each update.
Contract Export contracts/identity-registry-contract/src/lib.rs	Exposes batch_update_profiles as a public contract method on IdentityRegistryContract that forwards to the core implementation.
Tests contracts/identity-registry-contract/src/test.rs	Adds three tests: happy path updating 5 experts; max-vector boundary test (over-limit vector causing contract error/panic); URI-too-long negative test asserting RegistryError::UriTooLong.

Sequence Diagram(s)

sequenceDiagram
  participant Admin as Admin (caller)
  participant Contract as IdentityRegistryContract
  participant Storage as storage::set_expert_record

  Admin->>Contract: batch_update_profiles(updates)
  Contract->>Contract: check admin auth
  alt not admin
    Contract-->>Admin: Err(Unauthorized)
  else admin
    Contract->>Contract: verify updates.len() <= 20
    alt too large
      Contract-->>Admin: Err(ExpertVecMax)
    else ok
      loop for each update
        Contract->>Contract: validate uri length (<=64)
        alt uri too long
          Contract-->>Admin: Err(UriTooLong) and abort
        else valid uri
          Contract->>Contract: map status_u32 -> ExpertStatus
          alt invalid status
            Contract-->>Admin: Err(NotVerified) and abort
          else valid status
            Contract->>Storage: set_expert_record(address, uri, status)
            Storage-->>Contract: Ok
          end
        end
      end
      Contract-->>Admin: Ok(())
    end
  end

Loading

Estimated code review effort

🎯 3 (Moderate) | ⏱️ ~20 minutes

Possibly related PRs

• Implement "Expert Metadata" (Profile Data)  #21: Adds data_uri, UriTooLong / NotVerified errors and storage::set_expert_record used by this batch update.
• [Feat]:: Implemented "Ban Expert" Logic #10: Introduces other admin-restricted batch operations touching the same contract and storage helpers.
• Implement Batch Verification #8: Implements a batch admin operation with the same ExpertVecMax limit and related testing patterns.

Suggested reviewers

• Bosun-Josh121

Poem

🐰 I hopped through records, one by one,

Twenty at most — a batch well done.
URIs trimmed to fit my rhyme,
Statuses set, in single time.
Admin carrot, contracts run. 🥕

🚥 Pre-merge checks | ✅ 5

✅ Passed checks (5 passed)

Check name	Status	Explanation
Title check	✅ Passed	The title accurately and concisely describes the main change: implementing a batch update feature for expert profiles.
Description check	✅ Passed	The PR description is comprehensive, follows the template structure, includes all required sections with detailed changes, evidence (test results), and comments addressing safety features.
Linked Issues check	✅ Passed	The PR successfully implements all coding requirements from issue #45: batch_update_profiles function in contract.rs with admin auth, public API exposure in lib.rs, comprehensive tests with 5 profile updates, and DoS prevention via batch size limits and URI validation.
Out of Scope Changes check	✅ Passed	All changes are directly aligned with the requirements in issue #45; no out-of-scope modifications detected in contract.rs, lib.rs, or test.rs files.
Docstring Coverage	✅ Passed	Docstring coverage is 100.00% which is sufficient. The required threshold is 80.00%.

_{✏️ Tip: You can configure your own custom pre-merge checks in the settings.}

✨ Finishing Touches

🧪 Generate unit tests (beta)

• Create PR with unit tests

---

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

• X
• Mastodon
• Reddit
• LinkedIn

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

[coderabbitai]

Actionable comments posted: 2

🤖 Prompt for all review comments with AI agents

Verify each finding against the current code and only fix it if needed.

Inline comments:
In `@contracts/identity-registry-contract/src/contract.rs`:
- Around line 184-189: The match that maps status_u32 to ExpertStatus currently
returns RegistryError::NotVerified on the wildcard arm, conflating malformed
input with a domain state; change the wildcard branch to return a new, dedicated
error variant (e.g., RegistryError::InvalidStatus or
RegistryError::MalformedStatus) instead of NotVerified, add that variant to the
RegistryError enum (with any required Display/From impls), and update any call
sites/tests that expect the old error so callers can distinguish client-side bad
input from an actual "not verified" domain result; the change should be applied
where status_u32 is converted to status (the match producing status) and in the
RegistryError type definition and conversions.
- Around line 175-193: The batch loop currently calls storage::set_expert_record
which only overwrites storage and skips directory indexing and event emission;
update the loop to reuse the same single-record mutation path that maintains the
directory index and emits the status_change/profile_updated events (the same
logic used by the single-record flow) instead of calling
storage::set_expert_record directly, so get_total_experts/get_expert_by_index
and event-driven consumers remain consistent — alternatively, if batch must be
limited to URI-only edits, explicitly validate and restrict this endpoint to URI
changes and document that it will not modify index or emit events.

---

ℹ️ Review info

⚙️ Run configuration

Configuration used: defaults

Review profile: CHILL

Plan: Pro

Run ID: e9935f85-bea8-4ab5-b81a-d1fd15f6d4a5

📥 Commits

Reviewing files that changed from the base of the PR and between 01a3a5c and 90520a1.

📒 Files selected for processing (3)

• contracts/identity-registry-contract/src/contract.rs
• contracts/identity-registry-contract/src/lib.rs
• contracts/identity-registry-contract/src/test.rs

[coderabbitai]

⚠️ Potential issue | 🟠 Major

Don't bypass the registry side effects in the batch path.

On Line 192, this loop only calls storage::set_expert_record, and that helper just overwrites the stored record (contracts/identity-registry-contract/src/storage.rs:46-64). If one of these updates promotes an address to Verified, the expert is never added to the directory index, and none of the status_change / profile_updated events used by the single-record flows are emitted. That leaves get_total_experts / get_expert_by_index and any event-driven sync consumer out of step with the state written by this entrypoint. Please preserve the same indexing/event behavior here, or explicitly restrict this API to URI-only edits.

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In `@contracts/identity-registry-contract/src/contract.rs` around lines 175 - 193,
The batch loop currently calls storage::set_expert_record which only overwrites
storage and skips directory indexing and event emission; update the loop to
reuse the same single-record mutation path that maintains the directory index
and emits the status_change/profile_updated events (the same logic used by the
single-record flow) instead of calling storage::set_expert_record directly, so
get_total_experts/get_expert_by_index and event-driven consumers remain
consistent — alternatively, if batch must be limited to URI-only edits,
explicitly validate and restrict this endpoint to URI changes and document that
it will not modify index or emit events.

[coderabbitai]

⚠️ Potential issue | 🟡 Minor

Return a dedicated error for malformed status values.

Line 188 maps an out-of-range status_u32 to RegistryError::NotVerified, which is indistinguishable from a real domain error. Callers cannot tell “bad request” from “expert is not verified,” so retries and client-side validation become ambiguous. A separate InvalidStatus-style error would make this API much safer to consume.

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In `@contracts/identity-registry-contract/src/contract.rs` around lines 184 - 189,
The match that maps status_u32 to ExpertStatus currently returns
RegistryError::NotVerified on the wildcard arm, conflating malformed input with
a domain state; change the wildcard branch to return a new, dedicated error
variant (e.g., RegistryError::InvalidStatus or RegistryError::MalformedStatus)
instead of NotVerified, add that variant to the RegistryError enum (with any
required Display/From impls), and update any call sites/tests that expect the
old error so callers can distinguish client-side bad input from an actual "not
verified" domain result; the change should be applied where status_u32 is
converted to status (the match producing status) and in the RegistryError type
definition and conversions.

[Bosun-Josh121]

@Josue19-08 pls resolve the conflicts

[coderabbitai]

♻️ Duplicate comments (2)

contracts/identity-registry-contract/src/contract.rs (2)

183-189: ⚠️ Potential issue | 🟡 Minor

Return a dedicated error for invalid status values.

Line 188 maps out-of-range status_u32 to RegistryError::NotVerified, which is indistinguishable from a domain error. Callers cannot differentiate "bad request" from "expert is not verified." A dedicated InvalidStatus error variant would improve API clarity.

,

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In `@contracts/identity-registry-contract/src/contract.rs` around lines 183 - 189,
The match converting status_u32 into ExpertStatus currently maps out-of-range
values to RegistryError::NotVerified, conflating an invalid input with a domain
state; add a new RegistryError variant (e.g., InvalidStatus) and update the
conversion branch to return Err(RegistryError::InvalidStatus) for the _ case
instead of NotVerified, adjusting any places that construct or pattern-match
RegistryError accordingly so callers can distinguish bad input from an
unverified expert when using status_u32, ExpertStatus, and RegistryError.

---

175-193: ⚠️ Potential issue | 🟠 Major

Directory indexing and event emission are still missing.

This loop only calls storage::set_expert_record, bypassing the index management and events used by other flows (batch_add_experts, verify_expert, ban_expert). If this batch promotes an address to Verified, the expert won't appear in get_total_experts/get_expert_by_index, and event-driven consumers will be out of sync.

Either reuse the same logic path that maintains index/events, or explicitly restrict this API to URI-only edits and document the limitation.

,

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In `@contracts/identity-registry-contract/src/contract.rs` around lines 175 - 193,
The loop currently calls storage::set_expert_record directly and therefore skips
index updates and event emission used by batch_add_experts / verify_expert /
ban_expert, so update the logic in the loop inside contract.rs to either (A)
reuse the existing flows that maintain indices and emit events by delegating to
the same helper functions (e.g., call the verification/ban/add helper used by
verify_expert, ban_expert, batch_add_experts when status transitions occur) so
that get_total_experts/get_expert_by_index stay consistent, or (B) explicitly
forbid status changes in this API (only allow URI edits) by checking that
status_u32 matches the existing stored status and returning an error if it would
change, and document that limitation; ensure you reference
storage::set_expert_record only for pure URI updates and invoke the same
event-emitting/index-managing functions when promoting/demoting an expert.

🧹 Nitpick comments (3)

contracts/identity-registry-contract/src/contract.rs (1)

161-166: Docstring understates the function's capability.

The docstring says "update multiple expert metadata URIs" but the function also changes status without any transition validation. Unlike verify_expert and ban_expert which guard against no-op transitions (AlreadyVerified, AlreadyBanned), this function silently allows any status change—including reverting a banned expert to verified.

Consider either:

1. Adding transition guards for consistency with single-record flows, or
2. Updating the docstring to clarify this is an admin override that bypasses normal guards.

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In `@contracts/identity-registry-contract/src/contract.rs` around lines 161 - 166,
The docstring for batch_update_profiles is misleading and the function currently
allows arbitrary status changes (including reverting banned experts) without
transition checks; either add the same no-op guards used by verify_expert and
ban_expert (check and return RegistryError::AlreadyVerified or
RegistryError::AlreadyBanned when appropriate before applying updates) or
explicitly change the docstring to state this is an admin override that bypasses
normal transition guards; update references to the function name
batch_update_profiles and error variants AlreadyVerified/AlreadyBanned (and
RegistryError) so reviewers can verify the guard logic or the clarified
docstring.

contracts/identity-registry-contract/src/test.rs (2)

705-705: Missing test coverage for invalid status values.

There's no test verifying behavior when status_u32 is outside the valid range (0, 1, 2). Adding a test like test_batch_update_profiles_invalid_status would ensure the error path (currently returning NotVerified) is exercised.

🧪 Suggested test

#[test]
fn test_batch_update_profiles_invalid_status() {
    let env = Env::default();
    env.mock_all_auths();

    let contract_id = env.register(IdentityRegistryContract, ());
    let client = IdentityRegistryContractClient::new(&env, &contract_id);

    let admin = Address::generate(&env);
    client.init(&admin);

    let expert = Address::generate(&env);
    let uri = String::from_str(&env, "ipfs://test");

    // status_u32 = 99 is invalid
    let updates = vec![&env, (expert.clone(), uri, 99u32)];

    let result = client.try_batch_update_profiles(&updates);
    // Currently returns NotVerified; ideally would be InvalidStatus
    assert!(result.is_err());
}

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In `@contracts/identity-registry-contract/src/test.rs` at line 705, Add a unit
test named test_batch_update_profiles_invalid_status that calls
IdentityRegistryContractClient::try_batch_update_profiles with an update
containing an out-of-range status_u32 (e.g., 99) and asserts it returns an Err;
locate the client helper IdentityRegistryContractClient and the contract method
try_batch_update_profiles to construct the call, use Env::default(),
env.mock_all_auths(), register the contract, init the admin, create an expert
Address and uri, build updates as vec![&env, (expert.clone(), uri, 99u32)] and
assert result.is_err() to exercise the invalid-status error path (currently
returning NotVerified).

---

622-629: Test only covers URI updates, not actual status transitions.

All updates use status_u32 = 1 on already-Verified experts, so this test doesn't exercise status changes. Consider adding a test case that changes an expert from Verified to Banned (or vice versa) to validate the status mapping works and to surface any index/event consistency issues.

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In `@contracts/identity-registry-contract/src/test.rs` around lines 622 - 629, The
test currently builds `updates` with only `status_u32 = 1` for experts (see the
`updates` vec) so it never exercises status transitions; modify the test in
test.rs to include at least one entry that flips an expert's status (e.g.,
change `expert3` or `expert4` from `1` to the numeric value for `Banned` and
another from `Banned` back to `Verified`) and assert post-update state, index
consistency, and emitted events; locate the `updates` vec and add entries with
the alternate status_u32 values, then extend assertions that check the expert's
status mapping, storage index updates, and any emitted events/indices for those
specific experts (refer to `updates`, `expert1`..`expert5`, and `status_u32`).

🤖 Prompt for all review comments with AI agents

Verify each finding against the current code and only fix it if needed.

Duplicate comments:
In `@contracts/identity-registry-contract/src/contract.rs`:
- Around line 183-189: The match converting status_u32 into ExpertStatus
currently maps out-of-range values to RegistryError::NotVerified, conflating an
invalid input with a domain state; add a new RegistryError variant (e.g.,
InvalidStatus) and update the conversion branch to return
Err(RegistryError::InvalidStatus) for the _ case instead of NotVerified,
adjusting any places that construct or pattern-match RegistryError accordingly
so callers can distinguish bad input from an unverified expert when using
status_u32, ExpertStatus, and RegistryError.
- Around line 175-193: The loop currently calls storage::set_expert_record
directly and therefore skips index updates and event emission used by
batch_add_experts / verify_expert / ban_expert, so update the logic in the loop
inside contract.rs to either (A) reuse the existing flows that maintain indices
and emit events by delegating to the same helper functions (e.g., call the
verification/ban/add helper used by verify_expert, ban_expert, batch_add_experts
when status transitions occur) so that get_total_experts/get_expert_by_index
stay consistent, or (B) explicitly forbid status changes in this API (only allow
URI edits) by checking that status_u32 matches the existing stored status and
returning an error if it would change, and document that limitation; ensure you
reference storage::set_expert_record only for pure URI updates and invoke the
same event-emitting/index-managing functions when promoting/demoting an expert.

---

Nitpick comments:
In `@contracts/identity-registry-contract/src/contract.rs`:
- Around line 161-166: The docstring for batch_update_profiles is misleading and
the function currently allows arbitrary status changes (including reverting
banned experts) without transition checks; either add the same no-op guards used
by verify_expert and ban_expert (check and return RegistryError::AlreadyVerified
or RegistryError::AlreadyBanned when appropriate before applying updates) or
explicitly change the docstring to state this is an admin override that bypasses
normal transition guards; update references to the function name
batch_update_profiles and error variants AlreadyVerified/AlreadyBanned (and
RegistryError) so reviewers can verify the guard logic or the clarified
docstring.

In `@contracts/identity-registry-contract/src/test.rs`:
- Line 705: Add a unit test named test_batch_update_profiles_invalid_status that
calls IdentityRegistryContractClient::try_batch_update_profiles with an update
containing an out-of-range status_u32 (e.g., 99) and asserts it returns an Err;
locate the client helper IdentityRegistryContractClient and the contract method
try_batch_update_profiles to construct the call, use Env::default(),
env.mock_all_auths(), register the contract, init the admin, create an expert
Address and uri, build updates as vec![&env, (expert.clone(), uri, 99u32)] and
assert result.is_err() to exercise the invalid-status error path (currently
returning NotVerified).
- Around line 622-629: The test currently builds `updates` with only `status_u32
= 1` for experts (see the `updates` vec) so it never exercises status
transitions; modify the test in test.rs to include at least one entry that flips
an expert's status (e.g., change `expert3` or `expert4` from `1` to the numeric
value for `Banned` and another from `Banned` back to `Verified`) and assert
post-update state, index consistency, and emitted events; locate the `updates`
vec and add entries with the alternate status_u32 values, then extend assertions
that check the expert's status mapping, storage index updates, and any emitted
events/indices for those specific experts (refer to `updates`,
`expert1`..`expert5`, and `status_u32`).

---

ℹ️ Review info

⚙️ Run configuration

Configuration used: defaults

Review profile: CHILL

Plan: Pro

Run ID: 66b0d6c9-dec6-4768-8950-4fe709cf0999

📥 Commits

Reviewing files that changed from the base of the PR and between 90520a1 and 47eeca3.

📒 Files selected for processing (3)

• contracts/identity-registry-contract/src/contract.rs
• contracts/identity-registry-contract/src/lib.rs
• contracts/identity-registry-contract/src/test.rs

🚧 Files skipped from review as they are similar to previous changes (1)

• contracts/identity-registry-contract/src/lib.rs

[Josue19-08]

@Josue19-08 pls resolve the conflicts

Done @Bosun-Josh121