EGP Blockchain Transactions System
    EGP Blockchain Transactions System
    • Overview
    • Our JavaScript/TypeSctipt SDK
    • users
      • Register a new user
        POST
      • Get user profile
        GET
      • Get user profile
        GET
      • Update user profile
        PUT
      • Delete user account
        DELETE
    • auth
      • Change password
        POST
      • Login
        POST
      • Logout
        POST
      • Refresh token
        POST
    • organizations
      • List organizations
        GET
      • Create a new organization
        POST
      • List organization balance wallets
        GET
      • Deploy a new OrganizationBalancesWalletUpgradeable contract
        POST
      • Update an organization balance wallet
        PATCH
      • Get an organization by ID
        GET
      • Update an organization
        PUT
      • Delete an organization
        DELETE
      • List organization members
        GET
      • Add a member to an organization
        POST
      • Remove a member from an organization
        DELETE
      • List all organizations in the system
        GET
    • API keys
      • List user's API keys
        GET
      • Generate a new API key with Vault storage
        POST
      • Get API key details
        GET
      • Revoke an API key
        DELETE
      • Update API key
        PATCH
    • wallets
      • List wallets
      • Create wallet
      • Get wallet details
      • Update wallet
      • Delete wallet
      • Get wallet balance
      • Sign wallet transaction
      • Get wallet statistics
      • Get wallet transactions
      • Get Solana Wallet History
    • transactions send
      • Commit and Send Approved Transaction
    • transactions approvals
      • List pending approvals
      • Approve transaction
      • Reject transaction
      • Request approval
      • List transaction approvals
      • Get approval
    • transactions create
      • Create transaction
      • Estimate transaction fee
      • Get transaction
      • Confirm transaction
    • transactions information
      • List transactions
      • Get transaction by hash
      • Get transaction status
      • Track external transaction
      • Get wallet transactions
      • Get transaction
      • Confirm transaction
    • contract deployment
      • List Contract Deployments
      • Deploy Contract
      • Get Deployment Status
    • contract interactions
      • Get Contract Function
      • Call Contract Function (Read)
      • Get Function Documentation
      • Update Function Documentation
      • Execute Contract Function
      • Submit Documentation Feedback
      • Get Contract ABI
      • Import Contract ABI
      • Call Contract Function By Name (Read)
      • Execute Contract Function By Name (Write)
      • List Contract Functions
      • List Interactions by Contract Address
      • Search Contracts and Functions
      • Generate Search Report
      • Get Interaction by Transaction Hash
      • Get Contract Interaction by ID
    • external contracts
      • Call External Contract Function
    • permissions
      • Assign role to organization user
      • Get organization user roles
      • Revoke role from organization user
      • List all permissions
      • List permissions by resource type
      • Assign permission to resource
      • Revoke permission from resource
      • List all roles
      • Create a new role
      • Get a role by ID
      • Update a role
      • Delete a role
      • Set transaction limit
      • Get transaction limits by role
      • Assign permission to user
      • Get user permissions
      • Revoke permission from user
      • Assign role to user
      • Get user roles
      • Revoke role from user

    Overview

    EGP Enterprise-Grade Transaction Service#

    A comprehensive, secure, and flexible blockchain transaction management platform designed for enterprise environments where security, compliance, and operational control are critical.

    Overview#

    This is Enabled Games Platform Transaction Service. It provides organizations with a robust infrastructure for managing blockchain transactions with enterprise-grade security, governance, and compliance features. The platform delivers a complete solution for businesses that need to integrate blockchain capabilities while maintaining the strictest security standards and operational controls.

    Key Features#

    Comprehensive Transaction Management#

    Complete Transaction Lifecycle Management: From creation to confirmation, every step of a transaction is tracked, recorded, and controllable.
    Multi-Blockchain Support: Compatible with multiple blockchain networks including Polygon, Ethereum, and other EVM-compatible chains.
    Advanced Fee Management: Intelligent fee estimation and management to optimize transaction costs while ensuring timely execution.
    Transaction Tracking: Real-time monitoring of transaction status, confirmations, and blockchain inclusion.
    Transaction Approval Workflow: Secure approval flow for high-value transactions with detailed audit trail and flexible approval rules.

    Streamlined Smart Contract Lifecycle Management#

    Simplify complex blockchain operations with our integrated smart contract management suite. Go from code to multi-chain deployment and interaction with unprecedented ease and control, all within a secure, enterprise-grade environment.
    Effortless Multi-Chain Deployment: Deploy your verified smart contracts across supported blockchain networks (like Polygon, Ethereum, and other EVM chains) through a simplified interface or API call. Our platform handles the underlying complexities, turning a traditionally intricate process into a manageable workflow. Track deployment status in real-time (GET /contracts/deployments/{deploymentId}).
    Centralized ABI Management: Easily import (POST /contracts/abi), store, and retrieve (GET /contracts/abi/{abiId}) your contract Application Binary Interfaces (ABIs). This central repository ensures consistency and simplifies integration across your applications.
    Automatic Function Discovery & Interaction: Once an ABI is imported, the platform automatically lists (GET /contracts/abi/{abiId}/functions) and catalogs its functions. Interact directly with your contracts by executing state-changing functions (POST /contracts/execute) or calling read-only view functions (POST /contracts/call) using user-friendly function names (POST /contracts/call-by-name, POST /contracts/execute-by-name) – no need to manually encode calls.
    Simplified Contract Calls: Abstract away the complexities of blockchain interaction. Execute contract functions using familiar names and parameters, letting the platform handle the ABI encoding, transaction signing (using securely vaulted keys), gas estimation, and network submission.
    Deployment & Interaction Tracking: Monitor the status of contract deployments and maintain a clear history of all interactions performed through the platform, enhancing visibility and auditability.
    Integrated Security & Permissions: Contract interactions are governed by the same robust Role-Based Access Control and wallet permissions applied throughout the platform, ensuring only authorized users and systems can manage or interact with your smart contracts.

    Enterprise-Grade Security#

    Hierarchical Security Model: Multi-layered security approach with separation of concerns between users, wallets, and transactions.
    Secure Key Management: Keys are stored in a secure vault system with HSM (Hardware Security Module) integration, ensuring private keys never leave the secure environment.
    Role-Based Access Control: Granular permission system that allows organizations to define exactly who can view, create, and execute transactions.
    Resource-Level Permissions: Security controls can be applied at the individual resource level (specific wallets, transactions, etc.).
    Multi-Factor Authentication: Additional security layer for sensitive operations including transaction approvals and key management.
    Audit Logging: Comprehensive logging of all system activities for security monitoring and compliance reporting.
    EGPs' SecureEnv Capability-Based Environment Protection: Advanced environment variable and sensitive data protection system implementing the principle of least privilege:
    Memory-Only Sensitive Data: Environment variables containing secrets are decrypted only in memory and never persisted to disk.
    Capability-Based Access Control: Components can only access the specific environment variables they require to function, preventing unauthorized access.
    Encryption at Rest: Configuration is stored encrypted at rest using AES-GCM with build-time injected keys.
    Automatic Memory Sanitization: Sensitive data is deliberately wiped from memory when no longer needed, reducing window of vulnerability.
    Access Auditing: Comprehensive logging of all environment variable access attempts, including unauthorized access for security analytics.
    Zero Plaintext Secrets: Complete elimination of plaintext secrets in container images, source code, and filesystem.
    Runtime Isolation: Thread-safe access patterns and mutex protection prevent race conditions and parallel access vulnerabilities.

    Advanced Environment & Secret Protection (SecureEnv)#

    Traditional environment variable management exposes critical secrets (API keys, database credentials, private key passphrases) in configuration files and process memory, creating significant vulnerabilities that are unacceptable in high-security financial systems. Our platform incorporates SecureEnv, a unique, built-in security layer designed to eliminate these risks:
    Zero Plaintext Secrets on Disk or in Process: SecureEnv ensures that sensitive configuration values are never stored unencrypted on disk (e.g., in .env files or container layers) and are not easily visible in the running application's process environment list. This drastically reduces the attack surface for credential theft.
    Runtime Memory-Only Decryption: Secrets loaded from a build-time encrypted configuration file are decrypted exclusively in memory only when needed by an authorized component. The decryption key itself is injected at build time and is not stored alongside the application.
    Capability-Based Access Control: Internal system components operate under the Principle of Least Privilege. Each component is explicitly granted access only to the specific secrets it requires to function. Unauthorized components cannot access unrelated secrets, preventing lateral movement even if one part of the system is compromised.
    Automatic Memory Sanitization: Sensitive data like decrypted keys and credentials are automatically wiped from application memory as soon as they are no longer actively needed, minimizing the time window for potential memory-scraping attacks or exposure in core dumps.
    Enhanced Auditability: All attempts to access sensitive configuration data, whether successful or denied, are comprehensively logged, providing a critical audit trail for security monitoring, compliance, and forensic analysis in the event of an incident.
    Why this is Critical for Financial Systems: SecureEnv directly addresses common pathways for attackers to steal credentials or keys that could lead to unauthorized access, data breaches, or fraudulent transactions. By eliminating plaintext secrets and enforcing strict access controls at the configuration level, it provides a foundational layer of security essential for platforms handling financial operations and sensitive customer data.

    Organizational Controls#

    Multi-Tenant Architecture: Support for multiple organizations with complete isolation between their resources, users, and data.
    Organization-Level Policies: Define policies at the organization level that apply consistently across all users and integrations.
    Team Management: Create teams within organizations with different roles and responsibilities.
    Hierarchical Approval Workflows: Implement multi-level approval requirements for transactions based on amount, destination, or other parameters.

    Governance and Compliance#

    Customizable Rule Engine: Implement sophisticated business rules that automatically enforce corporate policies, spending limits, and compliance requirements.
    Time-Based Spending Limits: Set daily, monthly, or custom time-window spending limits by blockchain, currency, or wallet.
    Approval Workflows: Require approvals for transactions based on configurable criteria such as amount thresholds or destination addresses.
    Business Hour Restrictions: Limit transaction execution to specific time windows to enhance security and operational control.
    Regulatory Compliance Support: Built-in features to help maintain compliance with various regulatory requirements.
    Transaction Approval Status: Dedicated awaiting_approval transaction status with complete approval lifecycle management.

    User and Account Separation#

    Identity Management: Robust user authentication and authorization system with support for SSO integration.
    Separation of Duties: Clear separation between user identity management, permission assignment, and transaction execution.
    Role Inheritance: Users inherit permissions from their organizational roles, simplifying access management.
    API Keys with Scoped Permissions: Create API keys with specific, limited permissions for service-to-service integrations.

    Wallet Infrastructure#

    Secure Wallet Creation: Create and manage blockchain wallets within a secure infrastructure.
    Wallet Metadata: Add custom metadata to wallets for better organization and tracking.
    Wallet Balances: Real-time tracking of wallet balances across multiple blockchains.
    Transaction History: Complete history of all transactions associated with each wallet.
    Signing Capability: Securely sign blockchain transactions and messages without exposing private keys.

    Advanced Rule Engine#

    Lifecycle-Based Rules: Apply different rules at various stages of the transaction lifecycle:
    Pre-validation: Validate transaction parameters before creation
    Approval: Determine if a transaction requires approval
    Execution: Apply rules immediately before blockchain submission
    Post-execution: Trigger actions after transaction completion
    Condition-Based Actions: Define specific conditions and resulting actions:
    Amount thresholds: Require approvals for high-value transactions
    New recipient verification: Additional verification for new destination addresses
    Time-window restrictions: Limit transaction execution to certain hours
    Cumulative spending checks: Enforce spending limits across time periods

    Integration Capabilities#

    RESTful API: Complete API coverage for all system functionality.
    Webhook Notifications: Real-time notifications for important events like transaction status changes.
    Scheduled Reporting: Automated reporting capabilities for transaction activity and compliance.
    External System Integration: Connect with identity providers, notification systems, and enterprise applications.

    System Workflow Overview#

    This flowchart illustrates the secure workflow within the EGP Blockchain Transactions System:
    +----------------------------+
| User via UI /              |
| Application via SDK/API    |------------+
+----------------------------+            |
                                          v
                             +------------------------+
                             | EGP Transaction API    |
                             +------------+-------------+
                                          |
                                          v
                             +----------------------------+         +--------------------+
                             | 1. Authentication & AuthZ  |--Denied->| Audit Log:         |
                             | (Checks User, Org, Role,   |         | Access Denied      |
                             | Permissions)               |         +---------^----------+
                             +------------+---------------+                   | Denied
                                          | Authorized                         |
                                          v                                    |
                             +----------------------------+                    |
                             | 2. Service Layer           |----------------+   |
                             | (Acts within Org/Role      |                |   |
                             | Context)                   |                v   |
                             +-------------+--------------+  +-----------------+ |
                                           |                 | Permission Check| |
                                           |                 | (Can use Wallet?)+-+
                                           |                 +--------+--------+
                                           |                          | Allowed
                                           |                          v
                                           |                 +-----------------+
                                           |                 | 3. Secure Vault |
                                           |                 | (HSM-backed Key |
                                           |                 | Mgmt)           |
                                           |                 +--------+--------+
                                           |                          | Fetches Key Securely
                                           |                          v
                                           |                 +-----------------+
                                           +---------------->| 4. Internal     |
                                                             |   Signer        |
                                                             | (Keys NEVER     |
                                                             |   Exposed)      |
                                                             +--------+--------+
                                                                      | Signed Tx
                                                                      v
          +-------------------+                 +----------------------------+
          | 6. Audit Logging  |<----------------| 5. Blockchain Service      |
          | (Org, User, Action|                 | (Multi-Chain Support)      |
          | Recorded)         |                 +-------------+---------+----+
          +-------------------+                               |         |
                                                              | Submits | Sends Response
                                                              v         v
                                   +--------------------------+   +----------------+
                                   | Blockchain Network       |   | Client Receives|
                                   | (e.g., Polygon, Ethereum)|   | (Tx Hash, Status)|
                                   +--------------------------+   +----------------+
    1.
    Client Request: Users or integrated applications interact via the secure API.
    2.
    Authentication & Authorization: Every request is rigorously verified against user identity, their Organization membership, assigned Role(s), and specific Permissions. This ensures users only operate within their designated organizational context and possess the necessary rights for the requested action. Unauthorized requests are blocked and logged.
    3.
    Service Layer Execution: Authorized requests proceed to the relevant service (Contracts, Wallets, Transactions), which operates strictly within the user's organizational and role context. Further permission checks occur here (e.g., verifying access to a specific wallet before signing).
    4.
    Secure Vault Interaction: If signing is required, the system interacts with the secure Vault based on validated permissions. Private keys are used internally without ever being exposed outside the secure environment (HSM-backed).
    5.
    Internal Signing: Transactions are signed securely within the platform using the authorized keys.
    6.
    Multi-Chain Blockchain Service: The signed transaction is processed by the appropriate blockchain service for network submission.
    7.
    Comprehensive Auditing: All significant actions, including authentication results, permission checks, vault access, signing operations, and transaction submissions, are recorded in an immutable audit log, tagged with user and organizational context for clear security monitoring and compliance.
    8.
    Blockchain Submission & Response: The transaction is submitted to the target blockchain network, and a relevant response (like a transaction hash) is returned to the client.
    This flow demonstrates how security (AuthN/AuthZ, Vault, Auditing) is integrated at every critical step, providing enterprises with the control and visibility needed for managing blockchain operations.
    Modified at 2025-04-12 12:13:46
    Next
    Our JavaScript/TypeSctipt SDK
    Built with