@emg110 review on "Royalty Fees on Algorand gist" by @rssalessio

royalty-fees-on-algorand.md

Royalty Fees on Algorand

This is a short tutorial that explains how to implement Royalty Fees for Algorand NFTs using Teal v5 and new features like Inner Transactions.

It's assumed that readers have sufficient programming knowledge, general familiarity with blockchain technology and Algorand terminology. Smart contracts are written in PyTeal, and examples in Typescript.

To get codes used during this tutorial, please refer to GitHub repository!

Requirements

1. Have a running Algorand node, or use the sandbox
   • You can use the script scripts/start_network.sh to start a private network with all the wallets/variables already initialized.
   • To use the script type source scripts/start_network.sh from the root folder.
2. Having PyTeal installed (requires python 3)
3. [Optional] If you want to run the example script in src/examples.ts you need to install Node-js
   • After installing Node you need to install the following libraries: algosdk, typescript, and ts-node.

Background

1. Introduction

Royalty Fees play a huge role in the future of NFT sales on Blockchains, since they enable the possibility of guaranteeing fees on second sales of an NFT for original authors.

Unfortunately, Royalty Fees are either not yet fully supported or completely unavailable on many blockchains. For example, in Ethereum it is not possible to enforce Royalty fees on second sales and as of consequences, marketplaces in Ethereum have to implement an internal (off-chain and therefore mostly centralized) solution to provide Royalty Fees, which can be easily cheated if the users avoid selling on that specific marketplace.

Algorand on the other hand has provided many features that make it a very good candidate blockchain to implement Royalty Fees. These features are:

1. Possibility to freeze an asset, and block the transfer of an asset
2. Possibility to send transactions and move assets using smart contracts (Teal 5)
3. Even for migrated or bridged NFTs, the logic to control sales and after-sales steps and behavior can still be governed by smart contracts on Algorand.

An earlier epic project on Algorand, Algorealm, shows an innovative first implementation of Royalty Fees on Algorand by using a clawback address and Teal v2. However, the smart contract implemented in Algorealm (which is the union of a Stateful App and a Smart signature) can only approve or reject the transfer of an asset, without automatic calculation of royalty fee, or automatic transfer of an asset within the contract (because of limitations of TEAL V2). In their proposal, they make use of a smart contract that allows the transfer of an asset only upon payment of a pre-specified royalty fee. Because of these limitations, their implementation was more of static nature, application-specific, and therefore hard to scale.

Now, by exploiting the capabilities of Teal v5, It is possible to do much more and implement through a single stateful smart contract Application that automatically handles the payment of royalty fees, and the transfer of assets using Inner Transactcions.

2. Method to collect royalty fees

1. The seller sets an asset up for sale on the App (the stateful smart contract).
2. The buyer pays the amount specified by the seller to the App.
3. The buyer receives the payment.
4. The asset is transferred from the seller to the buyer.
5. The app pays the seller the total amount minus the royalty fees (If applicable by being second sales). The full total amount would be paid to the seller if that's the first sale.
6. Royalty fees are collected in the App. The owner of the royalty fees (the Creator of the asset) can redeem the royalty fees whenever desired.

The method is also described in the following UML diagram

Steps

3. Creating the contract (approval program)

The smart contract consists of an approval program and a clearance program. The latter simply approves all requests, therefore let's just focus on the former.

For simplicity, it's assumed that the contract is deployed directly by the creator of the asset, the one that will collect all royalty fees.

Let's start by defining a list of constants that will be used in smart contract app development.

from pyteal import *
import sys

class Constants:
    """
        Constant strings used in the smart contracts
    """
    Creator           = Bytes("Creator")         # Identified the account of the Asset creator, stored globally
    AssetId           = Bytes("AssetId")         # ID of the asset, stored globally
    amountPayment     = Bytes("amountPayment")   # Amount to be paid, stored locally on the seller's account
    amountASA         = Bytes("amountASA")       # Amount of asset sold, stored locally on the seller's account
    approveTransfer   = Bytes("approveTransfer") # Approval variable, stored on the seller's and buyer's accounts
    setupSale         = Bytes("setupSale")       # Method call
    buyASA            = Bytes("buyASA")          # Method call
    executeTransfer   = Bytes("executeTransfer") # Method call
    royaltyFee        = Bytes("royaltyFee")      # Royalty fee in thousands
    claimFees         = Bytes("claimFees")       # Method call
    collectedFees     = Bytes("collectedFees")   # Amount of collected fees, stored globally
    refund            = Bytes("refund")          # Method call

After having defined the list of constants, let's write the stateful smart contract with pyteal using python approval_program() function.

# Check the transaction type and execute the corresponding code
#   1. If application_id() is 0 then the program has just been created, therefore initializing it
#   2. If on_completion() is 0 then execute the onCall code
return If(Txn.application_id() == Int(0)).Then(initialize)                  \
        .ElseIf(Txn.on_completion() == OnComplete.CloseOut).Then(Approve()) \
        .ElseIf(Txn.on_completion() == OnComplete.OptIn).Then(Approve())    \
        .ElseIf(Txn.on_completion() == Int(0)).Then(onCall)                 \
        .Else(Reject())

Let's start by checking if the App has just been initialized. If so then call the sequence contained in the variable initialize. On CloseOut or OptIn the code simply approves the transaction. Otherwise, if it is a NoOp transaction, then the code executes the block in onCall.

The initialize sequence is defined as follows

# [Step 1] Sequence used to initialize the smart contract. Should be called only at creation
royaltyFeeArg = Btoi(Txn.application_args[2])
initialize = Seq([
    Assert(Txn.type_enum() == TxnType.ApplicationCall),             # Check if it's an application call
    Assert(Txn.application_args.length() == Int(3)),                # Needs 3 arguments, Creator, AssetId and Royalty Fee
    Assert(royaltyFeeArg >= Int(0) and royaltyFeeArg <= Int(1000)), # verify that the Royalty fee is in [0, 1000]
    App.globalPut(Constants.Creator, Txn.application_args[0]),      # Save the initial creator
    App.globalPut(Constants.AssetId, Btoi(Txn.application_args[1])),# Save the asset ID
    App.globalPut(Constants.royaltyFee, royaltyFeeArg),             # Save the royalty fee
    Approve()
])

In the initialize sequence 3 arguments are expected: (1) the wallet's address of the creator, (2) the asset ID, and the (3) royalty fee in thousands. All these variables are stored in the global state of the contract (2 integers and 1 Byte slice).

On the other hand, going back to the previous piece of code, the onCall method is an If statement that checks which action the user wants to perform:

# onCall Sequence
# Checks that the first transaction is an Application call, and then checks
# the first argument of the call. The first argument must be a valid value between
# "setupSale", "buyASA", "executeTransfer", "refund" and "claimFees"
onCall = If(Gtxn[0].type_enum() != TxnType.ApplicationCall).Then(Reject())                        \
         .ElseIf(Gtxn[0].application_args[0] == Constants.setupSale).Then(setupSale)              \
         .ElseIf(Gtxn[0].application_args[0] == Constants.buyASA).Then(buyASA)                    \
         .ElseIf(Gtxn[0].application_args[0] == Constants.executeTransfer).Then(executeTransfer)  \
         .ElseIf(Gtxn[0].application_args[0] == Constants.refund).Then(refund)                    \
         .ElseIf(Gtxn[0].application_args[0] == Constants.claimFees).Then(claimFees)              \
         .Else(Reject())

First, let's check that the user called the smart contract correctly. Then code checks the first argument of application_args (we use the first argument to discriminate between the various operations). As seen in the code there is a list of ElseIf statements that are used to distinguish between the various values. The accepted values are setupSale, buyASA, executeTransfer, refund, claimFees.

1. setupSale Can be called by any user, and it is used to set up a new sale.
2. buyASA Any user that wants to buy the asset needs to call this method first.
3. executeTransfer After paying, the buyer can finalize by transfering the asset to his/her wallet. Alternatively, the user can get the money back by calling the refund method
4. refund This method can be used by the buyer to get the money back
5. claimFees This method can only be called by the creator of the asset to collect royalty fees

Note rejection of all other undefined requests.

Before going through these 5 methods, first, let's define some useful subroutines that will be used later on.

3.1 Setup sale method

Let's begin by looking at the setupSale method. In this case, the user (the seller) has to provide the sale price and the total amount of asset.

# [Step 2] Sequence that sets up the sale of an ASA
# There should be 3 arguments: 
#   1. The first argument is the command to execute, in this case "setupSale"
#   2. The second one is the payment amount
#   3. The third one is the amount of ASA transferred
# Let's first verify that the seller has enough ASA to sell, and then store the arguments locally
priceArg = Btoi(Txn.application_args[1])
amountOfASAArg = Btoi(Txn.application_args[2])
setupSale = Seq([
    Assert(Txn.application_args.length() == Int(3)),                                      # Check that there are 3 arguments
    Assert(Global.group_size() == Int(1)),                                                # Verify that it is only 1 transaction
    Assert(priceArg != Int(0)),                                                           # Check that the price is different than 0
    Assert(amountOfASAArg != Int(0)),                                                     # Check that the amount of ASA to transfer is different than 0                
    Assert(                                                                               # Verify that the seller has enough ASA to sell
        getAccountASABalance(Txn.sender(), App.globalGet(Constants.AssetId))
            >=  amountOfASAArg),
    Assert(priceArg > serviceCost),                                                       # Check that the price is greater than the service cost
    App.localPut(Txn.sender(), Constants.amountPayment, priceArg),                        # Save the price
    App.localPut(Txn.sender(), Constants.amountASA, amountOfASAArg),                      # Save the amount of ASA to transfer
    App.localPut(Txn.sender(), Constants.approveTransfer, Int(0)),                        # Reject transfer until payment is done
    Approve()
])

The code above starts by doing some standard checks. Note that the following code is used to check whether the seller owns the asset set up for sale.

Assert(getAccountASABalance(Txn.sender(), App.globalGet(Constants.AssetId)) >=  amountOfASAArg),

The getAccountASABalance is a subRoutine that can be used to retrieve the amount of asset held by a certain wallet. This subroutine will be revisited later in section 3.6. The code ends by checking that the sale price is greater than the service cost (which is 2000 micro algos in this case), and store it in the local account of the seller these variables. The approveTransfer variable's value is also stored in local state , and set it to 0.

3.2 BuyASA method

The next subroutine is the buyASA method. Calling this method requires 2 transactions:

1. The first one is a NoOp application call with 3 arguments: the "buyASA" argument, the asset id, and the amount of ASA to buy
2. The second transaction is a payment (that pays the full price). The receiver is the contract itself.

The code starts by loading some useful variables (the seller address, the amount to be paid, etc...) and does some standard checks. Code makes sure that the seller has not approved another buyer, and that the seller holds enough ASA.

If all conditions are satisfied, then code approves the transfer from both the seller's and buyer's perspectives. At this point, the buyer only needs to finalize the transaction to transfer the asset.

# [Step 3] Sequence that approves the payment for the ASA
# This step requires 2 transactions.
# The first transaction is a NoOp App call transaction. There should be 3 arguments: 
#   1. The first argument is the command to execute, in this case, "buyASA"
#   2. The second argument is the asset id
#   3. The third argument is the amount of ASA to buy
# Moreover, in the first transaction the seller's address is also passed.
# The second transaction is a payment (the receiver is the app).

# Save some useful variables
seller = Gtxn[0].accounts[1]                                                              # Save seller's address
amountToBePaid = App.localGet(seller, Constants.amountPayment)                            # Amount to be paid
amountAssetToBeTransfered = App.localGet(seller, Constants.amountASA)                     # Amount of ASA
approval = App.localGet(seller, Constants.approveTransfer)                                # Variable that checks if the transfer has alraedy been approved
buyer = Gtxn[0].sender()
buyASA = Seq([
    Assert(Gtxn[0].application_args.length() == Int(3)),                                  # Check that there are 3 arguments
    Assert(Global.group_size() == Int(2)),                                                # Check that there are 2 transactions
    Assert(Gtxn[1].type_enum() == TxnType.Payment),                                       # Check that the second transaction is a payment
    Assert(App.globalGet(Constants.AssetId) == Btoi(Gtxn[0].application_args[1])),        # Check that the assetId is correct
    Assert(approval == Int(0)),                                                           # Check that the transfer has not been issued yet
    Assert(amountToBePaid == Gtxn[1].amount()),                                           # Check that the amount to be paid is correct
    Assert(amountAssetToBeTransfered == Btoi(Gtxn[0].application_args[2])),               # Check that there amount of ASA to sell is correct
    Assert(Global.current_application_address() == Gtxn[1].receiver()),                   # Check that the receiver of the payment is the App
    Assert(                                                                               # Verify that the seller has enough ASA to sell
        getAccountASABalance(seller, App.globalGet(Constants.AssetId))              
            >=  amountAssetToBeTransfered),
    App.localPut(seller, Constants.approveTransfer, Int(1)),                              # Approve the transfer from seller' side
    App.localPut(buyer, Constants.approveTransfer, Int(1)),                               # Approve the transfer from buyer' side
    Approve()
])

3.3 ExecuteTransfer method

Finally, we have the sequence that finalizes the transfer. At this step, the buyer is still able to get the funds back and cancel the transfer. If the buyer calls executeTransfer, then the transfer is finalized. The asset is moved from the seller to the buyer, and the seller receives the payment minus the royalty fees.

We use the subroutine computeRoyaltyFee to compute the royalty fee given the total paid amount minus the service cost.

Apart from the usual checks, we also make sure that both the seller and the buyer already approved the transaction. We then transfer the asset, and send the payment to the seller using the subroutines transferAsset and sendPayment. Finally, we conclude by collecting the royalty fees for the creator and by deleting all the local variables.

# [Step 4] Sequence that transfers the ASA, pays the seller, and sends royalty fees to the creator
# This step requires 1 transaction.
# The transaction is a NoOp App call transaction so there should be only one argument.
#   1. The first argument is the command to execute, in this case, "executeTransfer"
# Code also accounts for the service cost to pay the inner transaction fees.
royaltyFee = App.globalGet(Constants.royaltyFee)
collectedFees = App.globalGet(Constants.collectedFees)
feesToBePaid = computeRoyaltyFee(amountToBePaid - serviceCost, royaltyFee)
executeTransfer = Seq([
    Assert(Gtxn[0].application_args.length() == Int(1)),                            # Check that there is only 1 argument
    Assert(Global.group_size() == Int(1)),                                          # Check that is only 1 transaction
    Assert(App.localGet(seller, Constants.approveTransfer) == Int(1)),              # Check that approval is set to 1 from seller' side
    Assert(App.localGet(buyer, Constants.approveTransfer) == Int(1)),               # Check approval from buyer' side
    Assert(                                                                         # Verify that the seller has enough ASA to sell
        getAccountASABalance(seller, App.globalGet(Constants.AssetId))              
            >=  amountAssetToBeTransfered),
    Assert(amountToBePaid - serviceCost > feesToBePaid),
    transferAsset(seller,                                                           # Transfer asset
                  Gtxn[0].sender(),
                  App.globalGet(Constants.AssetId), amountAssetToBeTransfered),
    sendPayment(seller, amountToBePaid - serviceCost - feesToBePaid),               # Pay seller
    App.globalPut(Constants.collectedFees, collectedFees + feesToBePaid),           # Collect fees, perhaps check for overflow?
    App.localDel(seller, Constants.amountPayment),                                  # Delete local variables
    App.localDel(seller, Constants.amountASA),
    App.localDel(seller, Constants.approveTransfer),
    App.localDel(buyer, Constants.approveTransfer),
    Approve()
])

3.4 Refund Method

In case the buyer has already paid, but has not finalized the transaction using the executeTransfer sequence, it is still possible to claim back the funds by calling refund. This sequence of code checks that the payment was done, and sends back to the buyer the total payment amount minus the transaction fee.

We end by cleaning the local variables.

# Refund sequence
# The buyer can get a refund if the payment has already been done but the NFT has not been transferred yet
refund = Seq([
    Assert(Global.group_size() == Int(1)),                                           # Verify that it is only 1 transaction
    Assert(Txn.application_args.length() == Int(1)),                                 # Check that there is only 1 argument
    Assert(App.localGet(seller, Constants.approveTransfer) == Int(1)),               # Asset that the payment has already been done
    Assert(App.localGet(buyer, Constants.approveTransfer) == Int(1)),
    Assert(amountToBePaid > Int(1000)),                                              # Verify that the amount is greater than the transaction fee
    sendPayment(buyer, amountToBePaid - Int(1000)),                                  # Refund buyer
    App.localPut(seller, Constants.approveTransfer, Int(0)),                         # Reset local variables
    App.localDel(buyer, Constants.approveTransfer),
    Approve()
])

3.5 claimFees Method

Finally, we also create the claimFees method that can be called by the creator of the asset. This simply sends a payment to the creator with the collected amount of fees.

# Claim Fees sequence
    # This sequence can be called only by the creator.  It is used to claim all the royalty fees
    # It may fail if the contract does not have enough funds to pay for the inner transaction fees (the creator should take
    # care of funding the contract in this case)
    claimFees = Seq([
        Assert(Global.group_size() == Int(1)),                                                 # Verify that it is only 1 transaction
        Assert(Txn.application_args.length() == Int(3)),                                       # Check that there is only 1 argument
        Assert(Txn.sender() == App.globalGet(Constants.Creator)),                              # Verify that the sender is the creator
        Assert(App.globalGet(Constants.collectedFees) > Int(0)),                               # Check that there are enough fees to collect
        sendPayment(App.globalGet(Constants.Creator), App.globalGet(Constants.collectedFees)), # Pay creator
        App.globalPut(Constants.collectedFees, Int(0)),                                        # Reset collected fees
        Approve()
    ])

3.6 Subroutines

In this section, let's explain four used subroutines that appear in the code:

1. sendPayment(receiver: Addr, amount: Int) -> Expr: this subroutine sends a payment to a specific wallet
2. transferAsset(sender: Addr, receiver: Addr, assetId: Int, amount: Int) -> Expr: this subroutine transfers an asset from a wallet to another (the app must be set as clawback address for the asset)
3. getAccountASABalance(account: Addr, assetId: Int) -> TealType.uint64: this subroutine is used to find the amount of asset held by a certain wallet
4. computeRoyaltyFee(amount: Int, royaltyFee: Int) -> TealType.uint64: this subroutine computes the royalty fees given a certain price

3.6.1 SendPayment

The SendPayment subroutine can be used to pay a wallet by submitting an inner transaction. Check also the description of the subroutine in the code.

@Subroutine(TealType.none)
def sendPayment(receiver: Addr, amount: Int) -> Expr:
    """
    This subroutine can be used to send payments from the smart
    contract to other accounts using inner transactions

    :param Addr receiver : The receiver of the payment
    :param Int amount    : Amount to send in microalgos
    """
    return Seq([
        InnerTxnBuilder.Begin(),
        InnerTxnBuilder.SetFields({
            TxnField.type_enum: TxnType.Payment,
            TxnField.amount: amount,
            TxnField.receiver: receiver,
            TxnField.fee: Int(1000)
        }),
        InnerTxnBuilder.Submit(),
    ])

3.6.2 TransferAsset

The TransferAsset subroutine can be used to transfer the asset being sold from one account to another using an inner transaction (note that the contract must be the clawback address for that asset).

@Subroutine(TealType.none)
def transferAsset(sender: Addr, receiver: Addr, assetId: Int, amount: Int) -> Expr:
    """
    This subroutine can be used to transfer an asset
    from an account to another. 
    
    This subroutine can also be used to opt-in an asset if the ``amount`` is 0 and ``sender`` is equal to ``receiver``.

    :param Addr sender   : Asset sender
    :param Addr receiver : Asset receiver
    :param Int assetId   : ID of the asset. Note that the id must also be passed in the ``foreignAssets``
                           field in the outer transaction (otherwise you will get a reference error)
    :param Int amount    : The amount of the asset to be transferred. A zero amount transferred to self allocates
                           that asset in the account's Asset map.
    """
    return Seq([
        InnerTxnBuilder.Begin(),
        InnerTxnBuilder.SetFields({
            TxnField.type_enum: TxnType.AssetTransfer,
            TxnField.asset_amount: amount,
            TxnField.asset_receiver: receiver,
            TxnField.asset_sender: sender,
            TxnField.xfer_asset: assetId,
            TxnField.fee: Int(1000)
        }),
        InnerTxnBuilder.Submit(),
    ])

3.6.3 getAccountASABalance

The getAccountASABalance can be used to get the balance of a specific asset for a specific wallet. It uses the AssetHolding.balance method to retrieve the balance.

@Subroutine(TealType.uint64)
def getAccountASABalance(account: Addr, assetId: Int) -> TealType.uint64:
    """
    This subroutine returns the amount of ASA held by a certain
    account. Note that the asset id must also be passed in the ``foreignAssets``
    field in the outer transaction (otherwise you will get a reference error)

    :param Addr account  : The account to verify
    :param Int assetId   : ASA Id
    :return              : Amount of ASA held by the account
                           Returns 0 if the account does not have
                           any ASA of type ``assetId``.
    :rtype               : Int            
    """
    AssetAccountBalance = AssetHolding.balance(account, assetId)
    return Seq([
        AssetAccountBalance,
        If(AssetAccountBalance.hasValue() == Int(1)) \
        .Then(AssetAccountBalance.value())           \
        .Else(Int(0))
    ])

3.6.4 computeRoyaltyFee

Last, but not least, there's the computeRoyaltyFee subroutine. This subroutine computes the fee for a specific payment amount and a given royalty fee (in thousands). For example, suppose one wants to set a royalty fee of 3.5%. In thousands is 35 (0.035 * 1000).

Given an amount x its needed to compute x * 35 / 1000 to compute the royalty fee. Since there may be a remaining amount, it's also necessary to consider (x * 35) % 1000. The remainder will be used to round up the fee (if it is greater than 500 then its rounded up, otherwise rounded down).

Read also the description of the subrotuine for more information.

@Subroutine(TealType.uint64)
def computeRoyaltyFee(amount: Int, royaltyFee: Int) -> TealType.uint64:
    """
    This subroutine computes the fee given a specific ``amount`` and the
    predefined ``royaltyFee``.
    The ``royaltyFee`` variable must be expressed in thousands.

    Note that its assumed that amount * royaltyFee will not overflow.
    In case it does, it will trigger an error and the transaction will
    fail.

    :param Int amount       : The amount paid
    :param Int royaltyFee   : The royalty fee (in thousands)
    :return                 : Fee to be paid in microAlgos
    :rtype                  : Int            
    """
    # If Mul() overflows the transaction will fail
    remainder = Mod(Mul(amount, royaltyFee), Int(1000))
    division = Div(Mul(amount, royaltyFee), Int(1000))

    # Computes the royalty fee. If the fee is equal to 0, or the amount is very small
    # the fee will be 0.
    # If the royalty fee is larger or equal to 1000 then the original amount is returned.
    # If the remainder of royaltyFee * amount / 1000 is larger than 500 it'll be rounded up and the
    # 1 + royaltyFee * amount / 1000 is returned.
    # Otherwise just royaltyFee * amount / 1000 is returned .
    
    return If(Or(royaltyFee == Int(0), division == Int(0))).Then(Int(0))   \
           .ElseIf(royaltyFee >= Int(1000)).Then(amount)                   \
           .ElseIf(remainder > Int(500)).Then(division + Int(1))           \
           .Else(division)

3.7 Possible improvements and missing checks

Several possible improvements can be made.

1. First, note that the code is not production-ready since it misses some checks that are needed to guarantee safety.

2. Secondly, the buyer may potentially pay for the asset, but never transfer it. This would freeze the total paid amount inside the contract. To solve this issue the following can be done:

   1. Impose that the executionTransfer must happen in a finite number of rounds
   2. Let the seller reset the payment if the transfer has not happened after that finite number of rounds.

   Alternatively, the asset can be transfered immediately (after the payment) to the buyer, without the need of confirming the transfer.

3. The royalty fees can also be sent immediately to the creator when the asset is transferred (by using another innerTransaction).

4. Setting up an Example scenario

An example scenario can be simulated where owner sells the asset two times. Here 3 wallets are needed:

1. wallet1 creator of the asset, and deployer of the smart contract (this is not strictly required!)
2. wallet2 First buyer
3. wallet3 Second buyer

It proceeds as:

1. Start by creating the Asset using wallet1
2. Deploy the smart contract using wallet1
3. wallet1 puts the NFT up for sale and wallet2 buys it
4. wallet2 puts the NFT up for sale and wallet3 buys it
5. Finally, the fees are redeemed using wallet1

Its assumed that there exist the variables $WALLET1_ADDR, $WALLET2_ADDR and $WALLET3_ADDR. Each one of these variables contains the corresponding wallet's address (note that if you source the script file in scripts/start_network.sh it will automatically set up all the variables for you).

4.1 Creating the asset

lets start by creating the asset (note that the asset is initially frozen).

The asset id is also stored in $ASSET_ID and make wallet2 and wallet3 opt-in the asset.

# Create the asset
goal asset create --creator $WALLET1_ADDR --name "SpecialNFT" --unitname "SNFT" --total 1 --decimals 0 --defaultfrozen

# Save the Asset ID
export ASSET_ID="$(goal asset info --creator $WALLET1_ADDR --unitname "SNFT"  | awk '{print $3}' | head -1)"

# Asset Opt in
goal asset send --amount 0 --to $WALLET2_ADDR --from $WALLET2_ADDR --assetid $ASSET_ID
goal asset send --amount 0 --to $WALLET3_ADDR --from $WALLET3_ADDR --assetid $ASSET_ID

4.2 Creating the App and setting the clawback address

Now lets deploy the smart contract using wallet1, and make all the wallets opt-in the app.

# Royalty fee 3.5%, in thousands
ROYALTY_FEE=35

# compile PyTeal into TEAL
python3 src/smart_contract.py src/approval.teal src/clear.teal

# create app
GLOBAL_BYTES_SLICES=1
GLOBAL_INTS=3
LOCAL_BYTES_SLICES=0
LOCAL_INTS=3

export APP_ID=$(
  goal app create --creator "$WALLET1_ADDR" \
    --approval-prog src/approval.teal \
    --clear-prog src/clear.teal \
    --global-byteslices "$GLOBAL_BYTES_SLICES" \
    --global-ints "$GLOBAL_INTS" \
    --local-byteslices "$LOCAL_BYTES_SLICES" \
    --local-ints "$LOCAL_INTS" \
    --app-arg addr:$WALLET1_ADDR \
    --app-arg int:$ASSET_ID \
    --app-arg int:$ROYALTY_FEE |
    grep Created |
    awk '{ print $6 }'
)


# Export App Address
export APP_ADDRESS=$(goal app info  --app-id "$APP_ID" | awk '{print $3}' | head -2 | tail -1)

# Fund App
goal clerk send -a 200000 -f $WALLET1_ADDR -t $APP_ADDRESS -N

# Setting clawback
goal asset config --assetid $ASSET_ID --manager $WALLET1_ADDR --new-clawback $APP_ADDRESS --new-freezer $APP_ADDRESS --new-manager ""

# App opt in
goal app optin --app-id $APP_ID --from $WALLET1_ADDR
goal app optin --app-id $APP_ID --from $WALLET2_ADDR
goal app optin --app-id $APP_ID --from $WALLET3_ADDR

4.3 Simulate sale from wallet1 to wallet2

Here the sale from wallet1 to wallet2 is simulated.

Lets first fix a price and amount, and call the setupSale method using wallet1. 3 arguments are passed: (1) setupSale, (2) the price, (3) the amount. Moreover, the asset id must be specified using the --foreign-asset command.

NFT_AMOUNT=1
NFT_PRICE=1000000
goal app call --app-id $APP_ID --from $WALLET1_ADDR --app-arg str:setupSale --app-arg int:$NFT_PRICE --app-arg int:$NFT_AMOUNT --foreign-asset $ASSET_ID

Now lets pay the contract using wallet2 by make a group transaction:

1. The first transaction calls the buyASA method in the contract. There are 3 arguments: (1) setupSale, (2) the asset idi, (3) the amount. Moreover, the asset id need to be specified using the --foreign-asset flag and the seller's account using the --app-account flag.
2. The second transaction is a payment. The total amount is paid directly the contract.

# App call transaction
goal app call --app-id $APP_ID --from $WALLET2_ADDR --app-arg str:buyASA --app-arg int:$ASSET_ID --app-arg int:$NFT_AMOUNT --foreign-asset $ASSET_ID --app-account $WALLET1_ADDR --out txnAppCall.tx

# Payment transaction
goal clerk send --amount $NFT_PRICE --to $APP_ADDRESS --from $WALLET2_ADDR --out txnPayment.tx

# Make a group transaction
cat txnAppCall.tx txnPayment.tx > buyCombinedTxns.tx
goal clerk group -i buyCombinedTxns.tx -o buyGroupedTxns.tx
goal clerk sign -i buyGroupedTxns.tx -o signoutbuy.tx
goal clerk rawsend -f signoutbuy.tx

Now wallet2 has paid the smart contract. It can still get a refund by calling the refund method, or finalize the transaction by calling the executeTransfer method.

wallet2 can finalize the transaction by executing the following command

goal app call --app-id $APP_ID --from $WALLET2_ADDR --app-arg str:executeTransfer --app-account $WALLET1_ADDR --foreign-asset $ASSET_ID

Now it can be verified that wallet2 owns the asset

goal account info -a $WALLET2_ADDR

Whereas the global state of the app can be verified to check the collected fees

goal app read --global --app-id $APP_ID

And collected fees would be as

 "collectedFees": {
    "tt": 2,
    "ui": 34930
  },

which is the correct amount, since the price is 1000000, the service cost is 2000 and the royalty fee is 3.5%, therefore (1000000-2000) * 0.035=34930. (Note that the service cost is 2000 because the smart contract has to do 2 transactions).

Alternatively, wallet2 can get a refund by executing the following command (the seller's address needs to be specified using the -app-account flag).

goal app call --app-id $APP_ID --from $WALLET2_ADDR --app-arg str:refund --app-account $WALLET1_ADDR

4.4 Simulate sale from wallet2 to wallet3

Now lets simulate the sale from wallet2 to wallet3.

Again, the setupSale method is called using wallet2. 3 arguments must be passed: (1) setupSale, (2) the price, (3) the amount. Moreover, its also requierd to specify the asset id using the --foreign-asset command.

Same parameters are used as before for simplicity.

goal app call --app-id $APP_ID --from $WALLET2_ADDR --app-arg str:setupSale --app-arg int:$NFT_PRICE --app-arg int:$NFT_AMOUNT --foreign-asset $ASSET_ID

Now lets pay the contract using wallet3 by means of a group transaction:

1. The first transaction calls the buyASA method in the contract. There are 3 arguments: (1) setupSale, (2) the asset idi, (3) the amount. Moreover, its also required to specify the asset id using the --foreign-asset flag and the seller's account using the --app-account flag.
2. The second transaction is payment of total amount, directly to the contract.

# App call transaction
goal app call --app-id $APP_ID --from $WALLET3_ADDR --app-arg str:buyASA --app-arg int:$ASSET_ID --app-arg int:$NFT_AMOUNT --foreign-asset $ASSET_ID --app-account $WALLET2_ADDR --out txnAppCall.tx

# Payment transaction
goal clerk send --amount $NFT_PRICE --to $APP_ADDRESS --from $WALLET3_ADDR --out txnPayment.tx

# Make a group transaction
cat txnAppCall.tx txnPayment.tx > buyCombinedTxns.tx
goal clerk group -i buyCombinedTxns.tx -o buyGroupedTxns.tx
goal clerk sign -i buyGroupedTxns.tx -o signoutbuy.tx
goal clerk rawsend -f signoutbuy.tx

Now wallet3 has paid the smart contract. It can still get a refund by calling the refund method, or finalize the transaction by calling the executeTransfer method.

wallet3 can finalize the transaction by executing the following command

goal app call --app-id $APP_ID --from $WALLET3_ADDR --app-arg str:executeTransfer --app-account $WALLET2_ADDR --foreign-asset $ASSET_ID

Now code verifies that wallet3 owns the asset using the command goal account info -a $WALLET3_ADDR

It's also verified that the global state of the app to check the amount of collected fees using the commandgoal app read --global --app-id $APP_ID

And collected fees would be as

 "collectedFees": {
    "tt": 2,
    "ui": 69860
  },

which is the correct amount. The creator (wallet1) can reclaim the fees using

goal app call --app-id $APP_ID --from $WALLET1_ADDR --app-arg str:claimFees

5. Running the example script

You can also run the example scenario by executing the script in src/example.ts. To run the script:

1. Create the network: source scripts/start_network.sh
2. Create the asset and deploy the app source scripts/config.sh
3. Run the example script ts-node src/example.ts

6. Conclusions

In this guide, it is shown how to guarantee royalty fees using PyTeal (for Teal v5). Thanks to Inner Transactions functionality, it's now possible to streamline transactions more efficiently using smart contracts on Algorand. In the future, it is expected for royalty fees to be standardized, and perhaps have a corresponding ARC.

Thanks for reading!

Hi @rssalessio, here are answers to your questions:

Note: when an article goes to the developer portal it needs to be ready to use by Algorand devs when it comes to functionality therefore it should not be too opinionated or use assumptions far from real-world use cases. Especially when the article claims to address and enhance previous epic efforts on the subject (e.g. Algorealm)

As we are connected on Discord for details, I just write the general list items to answer your questions briefly for the record here and to express what do I mean exactly:

Q1- The fundamental flaws are:
A- Since royalties are only applicable for NFTs and for those according to Algorand documentations the total is always 1 and decimal 0 (at least for standard approaches), in the smart contract, it is advised to check for these exact figures instead of just checking the balance of specific asset ID on seller account to be more than the amount being requested to transfer during sale setup.
B- Why there are royalty fees calculated and paid on "4.3 Simulate sales from wallet1 to wallet2"?!! Given that wallet 1 is the creator why creator is being paid royalty fees on the first sale? I think it was meant for "4.4 Simulate sales from wallet2 to wallet3" as the proper description of royalty fee calculation is absent there (where it must be).
C- Your own mentioned item 2 "Possible improvements and checks" on 3.7 which needs to be addressed and implemented correctly.

New question: What happens if in the time window that buyer is deciding to finalize the transfer, another buyer comes and intends to buy as well and send funds? Where is this checked and controlled in your code?

Recommendations (not flaws but strongly advised):
A: it is recommended to mend item 3 of 3.7 as there is no need to hold the funds
B: it is recommended, not to consider the fees as constant and get them from the network to account for congested times, demanding higher fees.

Q2- The assumption of "amount * royaltyFee will not overflow" and similar items need proper checking and correct implementation in case that overflows (using MulW...)

Q3- Simply address/answer the issues and then notify me to review them again and I will happily do that.

Hi @emg110 ! I updated the article

Q1.A) In response to your first point, I agree that I need to check the decimals.
I added a check in the initialization of the smart contract, step 1.
I also check that the amount is exactly 1.

Q1.B) Addressed

Q1.C) Done. I added that the seller can execute the transfer if enough rounds have passed (check waitingTime variable).
As a side note, I added more checks that try to address point 1 in 3.7.

new question) This is checked in step 3, the sequence that approves a payment.
If the approval variable is 1, then it stops the payment process, because it means that the seller is already selling to someone.

Q2) Added several overflow checks (I followed the guidelines from https://wiki.sei.cmu.edu/confluence/pages/viewpage.action?pageId=87152052)

Regarding the recommendations:
A: i did not change this part since it is a trivial change, and does not substantially change the point of the tutorial
B: Addressed