Non-transferable NFT Standard #359
Conversation
neps/nep-0359.md
Outdated
|
|
||
| The first is setting a standard for an 'authenticated account recovery' process. If such a process, like that described above, were standardised it would give users confidence that their NTNFTs would not be lost if they need to migrate to a new account. It would also enable frontend software to assist users in the account recovery process when they know the contract supports it. | ||
|
|
||
| Other future NEPs might focus on more specific metadata which the NTNFT would provide, for specific use-cases. An example could be for when the NTNFT is used for KYC purposes that the metadata should specifically include fields such as `expiry date`, `validity` and `KYC_level`. |
There was a problem hiding this comment.
The current standards actually account for that. There is e.g. an expires_at field, and specifically for domain-specific data (e.g. KYC), the extra field exists.
The existing issued_at and expired_at would also remove your need for a validity field, e.g. with a user authenticating himself every x months by depositing a yocto, and getting a valid new NTNFT, or the current being extended. I digress however, these details should be left to the implementer. Long story short: No need to extend the metadata.
There was a problem hiding this comment.
The new validity status was required for use cases where the smart contract owner might need to remove/update a status regardless of the expired_at date.
Example 1: when a KYC provider issues a soulbound NFT as proof, the verified user faces certain charges, and regulators request to limit their ability to access financial services. The issuer would need to inform the relying services about this status change abruptly.
Example 2: a DAO issued the soulbound NFT as a proof of membership; however, when implementing, they wanted the users to owe their proofs of "temporary" membership. However, the user might no longer be actively participating in the DAO. While expired_at could be used, it would give continuous work to the DAO operators, while with validity, the DAO can turn on/off the membership.
There was a problem hiding this comment.
One thing that confuses me is the KYC_level. Know Your Customer level sounds funny. In general I have found that KYC has morphed to mean identity verification so it's certainly not a misuse here, just find it strange.
There was a problem hiding this comment.
I agree with @willemneal that we shouldn't use terms like KYC. That's such a bizarre term / jargon that probably never should have been invented and certainly doesn't fit here.
There was a problem hiding this comment.
I think there's probably already an understanding that people will customize the metadata for their own uses without explicitly mentioning examples here in this standard. In an effort to keep this as simple as possible it might be better if we simply remove line 163 altogether then.
There was a problem hiding this comment.
I agree with @JasperTimm ^
There was a problem hiding this comment.
Removed the line regarding addn metadata in the latest commit
| As each of these attestations would be unique, it also makes sense to build upon the existing infrastructure already built for NFTs by basing this new standard on [NEP-171](./nep-0171.md). This would mean existing software, such as wallets, have 'backwards compatibility' with these tokens, allowing it to display simple details such as title, symbol and images. | ||
|
|
||
| In addition, having the non-transferable nature standardised would mean that in the future, software could give users a hint in the UI that these tokens are account bound and disabling any transfer functionality. | ||
|
|
There was a problem hiding this comment.
Non transferrable NFTs are a really bad idea, it's just a spam engine, what if I want to just transfer it to another wallet that I own myself? Can't you just track transfer counts from when you issue a certificate, then dapps can check and identify in their own way? Really ruins the magic of what an NFT is, a fluid moving asset.
All of a sudden we are going to have some NFTs that can transfer and some can't, I can see the confusion cluster-f for platforms now.
If the transfer function is disabled or doesn't meet basic "owner can transfer" mechanics, it should be labeled a noncompliant spam contract.
Forcing platforms to do a UI implementation on a transfer button everywhere and explain why it's disabled increases complexity 100x. Standards need to keep it simple.
You can also just implement a whitelist contract and you are accomplishing the same thing, sort of misses the point of an NFT.
There was a problem hiding this comment.
Non transferrable NFTs are a really bad idea, it's just a spam engine, what if I want to just transfer it to another wallet that I own myself?
This is covered pretty extensively already in the standard under dealing with 'new accounts'. Having an nft_transfer function that only works in specific cases (e.g. where the contract owner must also approve) would be more confusing I feel. Implementers are free to implement something like this in a new function though. As we said, we're only suggesting ways for this case to be handled.
Can't you just track transfer counts from when you issue a certificate, then dapps can check and identify in their own way? Really ruins the magic of what an NFT is, a fluid moving asset.
Putting the onus on dapps to check transfer counts and using it to trigger some further validity check certainly feels like more complexity than simply looking for whether a token implements a certain standard in my opinion.
All of a sudden we are going to have some NFTs that can transfer and some can't, I can see the confusion cluster-f for platforms now.
If the transfer function is disabled or doesn't meet basic "owner can transfer" mechanics, it should be labeled a noncompliant spam contract.
Forcing platforms to do a UI implementation on a transfer button everywhere and explain why it's disabled increases complexity 100x. Standards need to keep it simple.
I think @blackghost1987 already responded to this quite well: "if a platform doesn't want to enable/disable the transfer button, they simply won't implement the support for the new NTNFT standard, while keep supporting NEP-171 tokens, so nobody is forcing anyone"
We're not forcing anyone to implement anything. Platforms implementing UIs will implement what their user base demands. If there's broad adoption of this standard, it would make sense to support it better. If not, they won't.
You can also just implement a whitelist contract and you are accomplishing the same thing, sort of misses the point of an NFT.
I get the impression the core of these criticisms stems from what we're currently 'used to' using NFTs for, being transferable by nature. But we also have use cases for something that is quite similar, it's just that it shouldn't be transferable by default. To make it as easy as possible on UI developers, we're trying to use all the existing work they've done interfacing with NFT metadata to make these tokens displayable for users without much effort.
There was a problem hiding this comment.
Apologies for being mildly rude before, we at the Mintbase team helped build the NEP-171 and this process was extremely time consuming, energy draining and feared getting sucked into the dark hole again.
The "core of these criticisms" stems from being an NFT platform builder in the trenches since 2018 and seeing the fads come and go, knowing that this just adds unnecessary complexity. The basic definition of an NFT: "can be transferred by the owner".
If you want to call it an SBT or anything else that has nothing to do with NFT, I'm good with that, the confusion will be folks getting an NFT certificate (no one will call it an NTNFT) and yelling at the wallets + platforms why can they not transfer it.
I love Vitalik, but the guy largely ignored NFTs until just about a year ago. Where do we stop? Remember when everyone hyped fractional ownership NFTs and then just like that, everyone forgot about it. It's the same here. Can't we just nail single, basic ownership NFTs first past the PFP hype. We still have not sorted interoperability, the main reason why Paras and Mintbase are not mixed perfectly yet. Logs need more work on the standards.
Overall even if we call it SBT or anything, I still think it will die / lose interest either from lack of support by platforms and wallets or people finding other better ways by diving into provenance or nailing decentralized identity.
Maybe a NTNFT is better done once identity gets sorted better down the road, where we don't call it non-transferrable, but only DID identity-webbed transfers are g2g, but right now it's just nice trend marketing.
There was a problem hiding this comment.
Thanks for the response Nate, I can appreciate you've been working in the NFT space for a long time and seen fads come and go. For what it's worth - it certainly feels like there's a need for something LIKE non-transferable NFTs, I'm pretty sure this one is not a fad.
And I think I can agree that what we create now is probably quite different to what decentralized identity will look like in the future. But we try to solve the problems we see today.
There was a problem hiding this comment.
I want to say that I absolutely agree with @nategeier here. I think it's totally fine for Michael Jordan to sell his high school diploma, and for me to purchase it. But I'm not going to go to MJ's high school reunion and get in, because it's very easy to verify that I'm not actually Michael Jordan. It was minted to MJ and he can do whatever he likes with it. Not to mention, perhaps there's a vast security breach like what happened with solar winds and Microsoft, and someone may no longer trust the private key that was in plain text on their computer. Maybe they just decide they want to move accounts. Or maybe they change their gender identity and no longer want to be tied to a previous account, and should be able to move it at will.
There are companies like The Graph, SubQuery, and NEAR Lake that are making indexing a cinch. It seems like we're pretending like it's hard to figure out whether a person was minted and NFT, but I don't think that's the case at all, and I think I would have to hear a reason why that's such a problem.
There was a problem hiding this comment.
Lastly know that if this goes through, there is no reason we should not also have a new NEP to remove the transfer function for fungible tokens too. Example:
If I send 100 FT to Tom, he passed the first year of college.
125, he passed 1.25 years of college.
This could be his certificate.
All the arguments here will assume FT is fair game.
|
I don't really see the need to have this as a separate standard. Usually, standards are put into place to provide a canonical way of doing a common task. This is to prevent different implementations and to encourage interoperability. In this case, I don't really see any utility in standardizing a non transferrable token. There aren't really any changes to metadata, enumeration methods etc... This proposition, from my eyes, seems as if it's only stripping parts of the existing core NFT standard. If someone wants to make a non-transferrable token, they simply need to remove all the aspects in the NFT standard that pertain to transferring NFTs. I'm not sure having a dedicated standard for non-transferrable tokens is necessary as the implementation is almost trivial. |
Yeah, @BenKurrek is right, this is only stripping parts of the existing core NFT standard. Can this be done with NEP-171? Yeah sure. Does that makes this new standard unnecessary? Not at all. It's like saying we shouldn't produce spoons anymore because we already invented sporks... 😄 The transferability is not a core functionality of an NFT, or at least it shouldn't be. There are valid use-cases for NFTs that doesn't need / want transfer. So you should see this from a different standpoint: Why does NEP-171 forces people to implement transfer if they don't want it? From this standpoint it looks like this standard should have been the original NFT standard, exactly because it's so trivial, and the transfer function should have been an extension for it. It's worth noting that Enumeration and Metadata doesn't do anything with transfer, so transfers (and approvals) are really a totally unrelated part of NEP-171. This is not how it happened originally, because of historical reasons of course. The most well-known use-cases for NFTs were about transfers, so nobody thought about making it optional. I don't think it's realistic to go back now and strip the transfer functions from NEP-171 and put them in a new optional extension... That's why we are proposing a new standard, without touching the well-known and well-supported functionality of NEP-171. Today if somebody wants to implement a non-transferable NFT, they have two choices: either use NEP-171 but not really conform to it, or don't use any standards at all. Both solutions have many bad consequences. That's the problem we are trying to solve with this PR. |
|
Lots of use-cases are a better fit for non-transferable NFTs than transferable ones. Certifications and reputation are two obvious use-cases. Some in-game items would be, too. I know that @ryancwalsh from the NEAR Education team has been working on certifications for students who complete the NEAR Certified Developer program, and could use this standard. The current NFT Metadata standard includes a |
Good point - you've changed my mind :P |
|
I really like this point from @blackghost1987 . I think @encody felt similarly when disabling the transferability of the NFT standard for our certificates project. |
neps/nep-0359.md
Outdated
|
|
||
| For each of these methods, it would presumably be necessary for the service which created the smart contract to make efforts (off-chain) to identify the user. Once they're satisfied the user has identified themselves they could use any of the following methods to invalidate the old NTNFT and, if required, mint a new token (presumably with the same metadata) to the new account. | ||
|
|
||
| - The service would burn the NTNFT in the user's old account using: `function burn_token(token_id: string): null {}`. Giving the user access to this function may also be considered - in cases where they still have access to their account users could pre-emptively call this to prevent anyone using their NTNFTs to impersonate them. |
There was a problem hiding this comment.
There isn't a standard for burning tokens - should we enforce the name of the function here? I think it would be fine to simply say the token should be burnt and an event should be emitted.
| - The service would burn the NTNFT in the user's old account using: `function burn_token(token_id: string): null {}`. Giving the user access to this function may also be considered - in cases where they still have access to their account users could pre-emptively call this to prevent anyone using their NTNFTs to impersonate them. | |
| - The service would burn the NTNFT in the user's old account and an `NftBurnLog` should be emitted. Giving the user access to this functionality may also be considered - in cases where they still have access to their account users could pre-emptively do this to prevent anyone using their NTNFTs to impersonate them. |
There was a problem hiding this comment.
Thanks @BenKurrek !
You're right - there's no point in dictating the function signature for a burn here. We had actually discussed the idea of adding a standardised burn function to another NEP I believe. As the events standard is the only mention of burn I think the suggested change works well.
Thanks for the other suggestions as well, I'm happy with them but I'll give @nembal and @blackghost1987 a chance to give them a 👍🏽 before accepting them.
Totally understand the desire to create a standard around access control like use cases so clients can coalesce around them, but what is the motivation for altering current NFT standards for that purpose? Without the ability transfer a credential, how is that record any better kept as an NFT vs contract state hashed by account? Clients (and NFT standard!) will need to come a long way before the presentation use case is realized. We could well discover that those clients need to behave different between things like event ticketing and allowing the cops to validate my license when I get pulled over.
I didn't write the spec, but I assume the current standpoint would be that the spec requires transfer because portability is an intrinsic attribute of a token.
As you point out here there not really a good way around having contracts / oracles in the validation process so again, why not delegate this to contract state for specific use cases vs using NFTs? |
The desire was due to the intrinsic differentiation from transferable NFTs. The two are different in nature and better kept separate. With the introduction (removal) of non-transferability, the community will have a clear playing field to introduce extension building on the core standard. [Burn, Revoke, ZK proofs, nad other offchain data linking methods] without the need to mix in transferability.
It is easier to work with for developers, plus it has the personalized ability of a JPG that offers a considerable gain when it comes to adoption and recognition. (think of it as a customized proof symbol)
Sure thing. But event tickets are sometimes issued without locking them to a person, but sometimes they are issued to a single individual removing the option for a secondary market. Having tooling that enables the base case for these distinctive uses is |
|
Add burn for owner please. https://twitter.com/mattdlockyer/status/1531622257482600448?t=lgHV9Gek5WqEqsTEJaUBDQ&s=09 |
Some small grammar / clarification changes from suggestions Co-authored-by: Benjamin Kurrek <[email protected]>
Remove addn metadata line and add AKAs for SBTs etc
We've certainly mentioned it as something that could be added by implementers. In all likelihood I'm sure most people will add it. In an effort to keep this standard as open as possible though, I'm not sure it makes sense to mandate it as part of the standard. Maybe someone wants to track both positive AND negative attestations/feedback to someone's account, in which case you don't want the user burning them off at their discretion. |
|
@JasperTimm So maybe @mattlockyer 's suggestion makes more sense for wallet teams to consider. Instead of just listening to all events about when NFTs were created or transferred, they could also be overridden by the person whose account ID the NFT mentions? So would the person's choice to "hide" a certain NFT then be stored on-chain too? And maybe there would be an option to preemptively block an NFTs from appearing in my wallet unless I allowlist them? I'm having trouble thinking through which specific problems we (someone) could solve and whether there could be standards for wallets that we'd hope all wallets would follow. |
I think you've described my thoughts on this pretty well already @ryancwalsh - it should be something for wallet teams to consider. Adding burn by owner to help with spam implies that's how we want to deal with it - forcing each user to delete each one. IF it becomes a problem, I think a better approach is going to be for wallet teams to use registries to hide/allow an entire contract. We're just trying to keep this standard as modular as possible. I get the feeling there's a desire for a standardised burn function and we planned on adding such a proposal in the future. I just think it doesn't make sense to add it here. |
| /****************/ | ||
|
|
||
| // Returns the token information associated with the given `token_id` or `null` if there is no such token. | ||
| function nft_token(token_id: string): Token|null {} |
There was a problem hiding this comment.
There is a reason why Vitalik chose a whole new name: SBT, so I don't think any of these function names should keep NFT alone. Maybe change to ntnft_token or sbt_token this goes for the others.
People use these function calls for their indexers and it might confuse. I know we are filtering out by NEP version, but extra padding is good.
I am not against the concept, i really just dont think taking the transfer fucntion out solves the certificate delimenta
There was a problem hiding this comment.
I understand where you’re coming from Nate but our philosophy from the start has been to keep things as similar as possible to the existing NFT standard to make life easier for implementers. As you mentioned, the NEP number alone should be enough to filter them out.
|
I see a lot of heated discussions and I feel that I agree with all the arguments presented so far. The only contradictory part here is the proposed solution, so I would like to take a step back and sum up all the discussions, but before that, let's get on the same page in the terminology. NFT (non-fungible token) is a token that is unique. That is all. ERC-721 has the following abstract:
Being inspired by Eth ecosystem, NEAR went with NEP-171 by closely following ERC-721 and thus inheriting all the potential problems (see the "we considered" part). I think what we all agree here is that we want standards to be modular and compatible!
All of these do not require non-transferability of NFT. NFT owner is not necessarily the nominated person, e.g. I can hold and transfer a certificate of a friend of mine, but the certificate itself states that it was issued for my friend and transferring this certificate does not make me or a receiver of this NFT any smarter. NFT in all these cases could be something that literally says "proof of that Vlad F (frol.near) passed NEAR certification program", and if I want to, I can transfer this NFT to another account and then root.near will own an NFT that still confirms that "Vlad F (frol.near) passed NEAR certification program". Thus, it sounds like maybe we want to further standardize the This brings us to the comments communicated above and in the previous NFT discussions - modularity! I see that in addition to potentially standardizing "nominated person" there are ideas around standardizing Having this fine control with supported features, we can make NEP-171 to be just a representation of a fixed set of features, and we will never need to spend so much time talking about an extension (in this case it is not even that, we talk about extracting a subset) of the existing standard. What will it take for me to approve this NEP?I would like to propose using this question in every NEP review in order to keep the discussion constructive and make sure there is a clear set of expectations that will inform the community about specific concerns and get NEP finally adopted when the major concerns are resolved. I follow "approve contract standards by default unless they bring risk to the ecosystem" policy, the unresolved items below really block me from confidently vote for approval as I feel tooling out there might get confused with the mixed signals.
Ideally, however, I would love to see an alternative approach of exposing a list of supported features / standards, so we can extend NFTs in the future without breaking changes and adopt them faster. |
|
The point I was trying to make earlier on this thread is that without transferability, a significant portion of the literal English definition of a "token" goes away when you consider the use case of "only entity A can only ever possess this credential".
In this scenario, wouldn't the token contract be paying for storage only to reference an owner for which there is no true meaning or use case? Our diplomas are printed and framed to hang in our offices and not issued as a pocket sized item we can redeem for a drink at the bar, though the drink token in some cases could be more valuable IMO 😂 Why not lean into a NEAR flavored W3C Verifiable Credentials spec for VC use cases? I agree on all the modularity and extensibility vibes into a standard, maybe eventually NFTs are a transferable subset of the bigger VC ideas being discussed here (zk, wallet, presentation etc)? a la @nembal comment to my OP IMO the idea of a non-transferable NFT is hard to get behind because the heuristics don't register for me, so far as to say "SBT" or "NTNFT" are both misnomers. That said, change my mind? Last thought I promise: Vote YES to standardized mint and burn, this would be super helpful in redemption use cases we are currently working on right now. |
|
Thank you for your comment, @frol. Discussing and making decisions on NEPs is crucial for helping the protocol evolve. Given the complexity of the protocol and the large number of participants across the ecosystem, the NEP process introduces Working Groups as a way to operationalize the review of NEPs that builds community support. I propose that we use this first NEP as the first one to help bootstrap the Contracts Standards work group. @abacabadabacaba, @evgenykuzyakov, @mfornet – Could you please fully read this NEP and comment in the thread with any feedback/concerns, and specifically if you approve this NEP? If not, please specify why and what it would take for you to approve it. I can schedule the first working group meeting after your review. Thank you! |
I think this is a perfect time to invent a new word. Nothing related to souls, tokens, transferability, etc. And not a compound word. Just a brand new word that we define. Googling it will then be super easy too. |
|
Thanks, @JasperTimm, for writing the NEP, and all of you for the insightful discussion. As I see it, there is room for this standard in the ecosystem. Nothing prevents developers from making custom (non-compliant) NEP-171 implementing exactly this (non-transferable nft tokens). The main point of this NEP is to provide a standard mechanism that allows external tools (either on-chain or off-chain) to understand what this contract is about. Just the existence of this standard increases the complexity for all tools that interact with NFTs (NEP-171), given that it tries to be compatible with NEP-171 (when it makes sense). In this regard, there should be an explicit intention to make life as easy as possible for current and future tools that use NFTs. Interface DetectionI feel that something is missing that helps dapps interacting with it understand that this is about Non-transferable NFTs. Currently, it relies on Events or, optionally, on Token Metadata. IMO neither of those entirely solves the problem in question. They depend on the existence of some token (or transaction) to figure out which standard is implemented. This problem should probably be resolved as part of a different standard that supports Otherwise, a custom method could be provided with global metadata of the contract. Something like: This is not blocking on my end from approving this NEP. I guess that most tools use on-chain events to detect the tokens in the first place. Having this built-in mechanism would allow on-chain contracts to decide whether they want to support the contract or not. Burn methodOn the idea of making life as easy as possible for other tools, there should be a mechanism that tells if this token can be burnt or not. Some tools like wallets might provide an option to filter out all non-transferable non-burnable tokens. See previous |
|
Hi everyone! We are hosting the first Contract Standards Working Group meeting next week to discuss this NEP! Please register below. Meeting Info What are Working Groups? |
|
Hi all, Some really helpful discussions so far, thanks for all the responses, I've tried following all of them. I'm sure this will all be discussed in the upcoming working group, but as a prelude I hoped to respond to a couple of points I thought were important. @frol mentioned them already:
I think @mfornet's response already matches my view - I feel like adding a standard for interface detection would be a good way to handle this, but I hope not having it would not prevent this standard from being approved. Maybe a follow up question should be: how are tools currently detecting whether an account has an NFT? I looked up NEAR wallet's implementation for this: https://github.com/near/near-wallet/blob/master/packages/frontend/docs/NonFungibleTokenDiscovery.md NOTE: I'm not trying to criticize here, merely point out that NFT discovery is not an easy or solved problem and that this new standard is not somehow 'breaking' this. To quote the relevant part then:
I presume the first point was inspired by I'm not sure why an Which brings us nicely to the second point, which has been mentioned by a few people:
So I looked up the implementation for the most common NEAR indexer. From what I understand, NEAR lake (https://github.com/near/near-lake-indexer) will eventually replace the existing NEAR indexer for NEAR Explorer. But using the existing indexer for now, it looks like Events are explicitly separated by the Am I missing something here? |
|
@JasperTimm Good point on general problem of interface detection.
The Wallet doc was not accurate, so I submitted near/near-wallet#2886 PR. TL;DR: Wallet takes into account MINT events as well.
Unfortunately, lack of interface detection led us into this state where Wallet historically needed to identify NFT standards probabilistically (since there was no Events standard at that time, and thus there was no reasonable way to index NFT contracts). After NFT contract is found with this probabilistic model, Wallet attempts to use Merging this standard without interface detection will pose a lot more complications on the tooling and make it even more probabilistic and thus users interactions may fail "unexpectedly". Thus, I see is as a risk to the ecosystem making it more fragile than it is necessary.
This is also implicit identification, though it is much better than trying to rely on I lean towards the following decision (I ask other work group members only read this after they submit their considerations)I would really love to see the interface discoverability NEP where among other things one could specify that the contract does not support transfers. I hate to say it, but having all the risks I mentioned above, I lean towards rejecting this proposal. One good thing I want to say is that with @ori-near and work groups dedicated to NEPs, we can now iterate quicker, and I can see that new NEP could go through the process faster then ever. |
|
Thank you to everyone who attended the first Contract Standards working group meeting today! The working group members reviewed the NEP and reached the following consensus: Status: Rejected Meeting Recording: |
|
@JasperTimm I would like to take another chance to thank you for the contribution and exploring the space together! As we discussed previously in the comments, and during the working group meeting, it would be great to define the a NEP for the NFT interfaces discovery (transfer, mint, burn). I am happy to join the discussion early on, just cc me on the forum. |
ori-near
added
S-approved
|
Hey everyone, I want to bring to your attention that @robert-zaremba championed a new NEP for SBT here #393. Please, take a look! |
This is a proposal for a new NEP regarding a Non-transferable NFT Standard.
Based on discussions in this thread: https://gov.near.org/t/non-transferable-nft-standard/18227