feat(distr): add distribution authorization

proto/cosmos/distribution/v1beta1/authz.proto

@@ -0,0 +1,18 @@
+syntax = "proto3";
+package cosmos.distribution.v1beta1;
+
+import "cosmos_proto/cosmos.proto";
+
+option go_package = "github.com/cosmos/cosmos-sdk/x/distribution/types";
+
+// DistributionAuthorization defines a grant that can be given to an address to allow them to
+// execute distribution messages on behalf of the granter.
+message DistributionAuthorization {
+  option (cosmos_proto.implements_interface) = "Authorization";
+
+  // message_type represents the type of the message that is authorized by this DistributionAuthorization.
+  string message_type = 1;
+  // allowed_list specifies list of addresses that are allowed to execute the distribution messages.
+  repeated string allowed_list = 2 [(cosmos_proto.scalar) = "cosmos.AddressString"];
+}
+

x/distribution/keeper/grpc_query_test.go

@@ -3,6 +3,7 @@ package keeper_test
 import (
 	gocontext "context"
 	"fmt"
+	"github.com/cosmos/cosmos-sdk/x/distribution/keeper"
 	"testing"
 
 	"github.com/stretchr/testify/suite"
@@ -34,7 +35,8 @@ func (suite *KeeperTestSuite) SetupTest() {
 	ctx := app.BaseApp.NewContext(false, tmproto.Header{})
 
 	queryHelper := baseapp.NewQueryServerTestHelper(ctx, app.InterfaceRegistry())
-	types.RegisterQueryServer(queryHelper, app.DistrKeeper)
+	querySrv := keeper.NewQuerier(app.DistrKeeper)
+	types.RegisterQueryServer(queryHelper, querySrv)
 	queryClient := types.NewQueryClient(queryHelper)
 
 	suite.app = app
@@ -350,7 +352,8 @@ func (suite *KeeperTestSuite) TestGRPCDelegationRewards() {
 	ctx = ctx.WithBlockHeight(ctx.BlockHeight() + 1)
 
 	queryHelper := baseapp.NewQueryServerTestHelper(ctx, app.InterfaceRegistry())
-	types.RegisterQueryServer(queryHelper, app.DistrKeeper)
+	querySrv := keeper.NewQuerier(app.DistrKeeper)
+	types.RegisterQueryServer(queryHelper, querySrv)
 	queryClient := types.NewQueryClient(queryHelper)
 
 	val := app.StakingKeeper.Validator(ctx, valAddrs[0])

x/distribution/types/authz.go

@@ -0,0 +1,65 @@
+package types
+
+import (
+	sdk "github.com/cosmos/cosmos-sdk/types"
+	sdkerrors "github.com/cosmos/cosmos-sdk/types/errors"
+	"github.com/cosmos/cosmos-sdk/x/authz"
+	"golang.org/x/exp/slices"
+)
+
+var _ authz.Authorization = &DistributionAuthorization{}
+
+// NewDistributionAuthorization creates a new DistributionAuthorization.
+func NewDistributionAuthorization(msgType string, allowed []string) *DistributionAuthorization {
+	return &DistributionAuthorization{
+		MessageType: msgType,
+		AllowedList: allowed,
+	}
+}
+
+// MsgTypeURL implements Authorization.MsgTypeURL.
+func (m *DistributionAuthorization) MsgTypeURL() string {
+	return m.MessageType
+}
+
+// Accept implements Authorization.Accept. It checks, that the
+// withdrawer for MsgSetWithdrawAddress,
+// validator for MsgWithdrawValidatorCommission,
+// the delegator address for MsgWithdrawDelegatorReward
+// is in the allowed list. If these conditions are met, the AcceptResponse is returned.
+func (m *DistributionAuthorization) Accept(ctx sdk.Context, msg sdk.Msg) (authz.AcceptResponse, error) {
+	switch msg := msg.(type) {
+	case *MsgSetWithdrawAddress:
+		if !slices.Contains(m.AllowedList, msg.WithdrawAddress) {
+			return authz.AcceptResponse{}, sdkerrors.ErrUnauthorized.Wrap("address is not in the allowed list")
+		}
+	case *MsgWithdrawValidatorCommission:
+		if !slices.Contains(m.AllowedList, msg.ValidatorAddress) {
+			return authz.AcceptResponse{}, sdkerrors.ErrUnauthorized.Wrap("address is not in the allowed list")
+		}
+	case *MsgWithdrawDelegatorReward:
+		if !slices.Contains(m.AllowedList, msg.DelegatorAddress) {
+			return authz.AcceptResponse{}, sdkerrors.ErrUnauthorized.Wrap("address is not in the allowed list")
+		}
+	default:
+		return authz.AcceptResponse{}, sdkerrors.ErrInvalidRequest.Wrap("unknown msg type")
+	}
+
+	return authz.AcceptResponse{
+		Accept: true,
+		Delete: false,
+		Updated: &DistributionAuthorization{
+			AllowedList: m.AllowedList,
+			MessageType: m.MessageType,
+		},
+	}, nil
+}
+
+// ValidateBasic performs a stateless validation of the fields.
+func (m *DistributionAuthorization) ValidateBasic() error {
+	if len(m.AllowedList) == 0 {
+		return sdkerrors.ErrInvalidRequest.Wrap("allowed list cannot be empty")
+	}
+
+	return nil
+}