Skip to content

DianaRicee/Decentralized-Reputation-System

BranchesTags

Repository files navigation

Decentralized Reputation System

A blockchain-based reputation system built on Ethereum using Solidity and Foundry, enabling users to rate each other in a trustless, transparent manner.

Overview

This decentralized reputation system allows users to build and maintain reputation scores through peer-to-peer ratings. The system implements anti-gaming mechanisms, dispute resolution, and weighted scoring to ensure fair and reliable reputation tracking.

Key Features

  • Peer-to-Peer Rating: Users can rate each other on a configurable scale
  • Weighted Reputation: Ratings from higher-reputation users carry more weight
  • Anti-Gaming Protection: Cooldown periods, Sybil resistance, and rating limits
  • Dispute Resolution: Built-in mechanism for challenging unfair ratings
  • Reputation Decay: Time-based reputation decay to keep scores current
  • Profile Management: User profiles with metadata and rating history
  • Access Control: Role-based permissions for system administration

Architecture

Smart Contracts

src/
β”œβ”€β”€ core/
β”‚   β”œβ”€β”€ ReputationRegistry.sol     # Main reputation storage and calculation
β”‚   β”œβ”€β”€ RatingSystem.sol           # Rating submission and validation
β”‚   └── UserProfile.sol            # User profile management
β”œβ”€β”€ governance/
β”‚   β”œβ”€β”€ AccessControl.sol          # Role-based permissions
β”‚   └── DisputeResolution.sol      # Rating dispute handling
β”œβ”€β”€ token/
β”‚   └── ReputationToken.sol        # Optional tokenized reputation
└── interfaces/
    β”œβ”€β”€ IReputationRegistry.sol
    β”œβ”€β”€ IRatingSystem.sol
    β”œβ”€β”€ IUserProfile.sol
    └── IDisputeResolution.sol

Contract Interactions

  1. User Registration: Users register through UserProfile.sol
  2. Rating Submission: Ratings submitted via RatingSystem.sol
  3. Reputation Update: RatingSystem.sol calls ReputationRegistry.sol to update scores
  4. Dispute Process: Unfair ratings can be disputed through DisputeResolution.sol

Getting Started

Prerequisites

Installation

  1. Clone the repository:
git clone <repository-url>
cd build
  1. Install Foundry dependencies:
forge install
  1. Install additional dependencies:
forge install OpenZeppelin/openzeppelin-contracts
forge install foundry-rs/forge-std

Configuration

Create a .env file in the root directory:

# RPC URLs
ETHEREUM_RPC_URL=https://eth-mainnet.g.alchemy.com/v2/your-key
GOERLI_RPC_URL=https://eth-goerli.g.alchemy.com/v2/your-key
SEPOLIA_RPC_URL=https://eth-sepolia.g.alchemy.com/v2/your-key

# Private keys (for deployment)
PRIVATE_KEY=your-private-key

# Etherscan API (for verification)
ETHERSCAN_API_KEY=your-etherscan-api-key

# System Configuration
INITIAL_REPUTATION_SCORE=100
RATING_SCALE_MAX=5
RATING_COOLDOWN_PERIOD=86400  # 24 hours in seconds
REPUTATION_DECAY_RATE=1       # 1% per month

Usage

Compilation

forge build

Testing

Run all tests:

forge test

Run tests with gas reporting:

forge test --gas-report

Run specific test file:

forge test --match-path test/ReputationRegistry.t.sol

Deployment

Deploy to local network:

anvil  # Start local node
forge script script/Deploy.s.sol --rpc-url http://localhost:8545 --private-key $PRIVATE_KEY --broadcast

Deploy to testnet:

forge script script/Deploy.s.sol --rpc-url $SEPOLIA_RPC_URL --private-key $PRIVATE_KEY --broadcast --verify

Contract Verification

forge verify-contract <CONTRACT_ADDRESS> src/core/ReputationRegistry.sol:ReputationRegistry --etherscan-api-key $ETHERSCAN_API_KEY --chain sepolia

Smart Contract Details

ReputationRegistry.sol

The core contract managing reputation scores and calculations.

Key Functions:

  • getReputationScore(address user): Get current reputation score
  • updateReputation(address user, uint256 newRating, address rater): Update reputation (internal)
  • calculateWeightedScore(address user): Calculate weighted reputation score
  • applyDecay(address user): Apply time-based reputation decay

Events:

  • ReputationUpdated(address indexed user, uint256 newScore, uint256 timestamp)
  • ReputationDecayed(address indexed user, uint256 oldScore, uint256 newScore)

UserProfile.sol

Manages user profiles and metadata.

Key Functions:

  • registerUser(string memory username, string memory metadata): Register new user
  • updateProfile(string memory metadata): Update user profile
  • getUserProfile(address user): Get user profile information
  • isRegistered(address user): Check if user is registered

DisputeResolution.sol

Handles disputes over ratings.

Key Functions:

  • submitDispute(address rater, address ratee, string memory reason): Submit dispute
  • voteOnDispute(uint256 disputeId, bool support): Vote on dispute
  • resolveDispute(uint256 disputeId): Resolve dispute
  • getDispute(uint256 disputeId): Get dispute details

Testing Strategy

Unit Tests

Located in test/ directory:

  • ReputationRegistry.t.sol: Core reputation logic tests
  • RatingSystem.t.sol: Rating submission and validation tests
  • UserProfile.t.sol: Profile management tests
  • DisputeResolution.t.sol: Dispute mechanism tests
  • Integration.t.sol: Cross-contract integration tests

Test Categories

  1. Functionality Tests: Verify core features work as expected
  2. Security Tests: Test access controls and attack vectors
  3. Gas Optimization Tests: Ensure efficient gas usage
  4. Edge Case Tests: Handle boundary conditions and errors
  5. Integration Tests: Test contract interactions

Running Specific Test Categories

# Security tests
forge test --match-test testSecurity

# Gas optimization tests
forge test --gas-report --match-test testGas

# Integration tests
forge test --match-path test/Integration.t.sol

Security Considerations

Anti-Gaming Mechanisms

  1. Cooldown Periods: Prevent spam ratings
  2. Rating Limits: Limit number of ratings per user per time period
  3. Weighted Scoring: Higher reputation users have more influence
  4. Sybil Resistance: Minimum reputation threshold for meaningful ratings

Access Control

  • Admin Role: Contract deployment and emergency functions
  • Moderator Role: Dispute resolution and content moderation
  • User Role: Standard user functions

Known Risks

  1. Sybil Attacks: Mitigated through reputation weighting and minimum thresholds
  2. Collusion: Monitoring and dispute mechanisms help detect coordinated attacks
  3. Rating Manipulation: Cooldowns and limits reduce manipulation potential
  4. Front-running: Consider commit-reveal schemes for sensitive operations

Gas Optimization

Strategies Implemented

  1. Packed Structs: Optimize storage layout
  2. Batch Operations: Process multiple ratings in single transaction
  3. Event Indexing: Use indexed parameters efficiently
  4. Storage vs Memory: Optimize variable declarations

Gas Usage Estimates

Function Estimated Gas
Register User ~50,000
Submit Rating ~80,000
Update Reputation ~45,000
Submit Dispute ~120,000

Frontend Integration

Recommended Stack

  • Framework: Next.js with TypeScript
  • Web3 Library: Wagmi + Viem
  • Wallet Connection: RainbowKit or ConnectKit
  • State Management: Zustand or React Context

Contract Integration Example

import { useContractWrite, useContractRead } from 'wagmi'
import { ReputationRegistryABI } from './abis/ReputationRegistry'

// Read reputation score
const { data: reputationScore } = useContractRead({
  address: REPUTATION_REGISTRY_ADDRESS,
  abi: ReputationRegistryABI,
  functionName: 'getReputationScore',
  args: [userAddress],
})

// Submit rating
const { write: submitRating } = useContractWrite({
  address: RATING_SYSTEM_ADDRESS,
  abi: RatingSystemABI,
  functionName: 'submitRating',
})

Deployment Addresses

Testnet Deployments

Sepolia

  • ReputationRegistry: 0x...
  • RatingSystem: 0x...
  • UserProfile: 0x...
  • DisputeResolution: 0x...

Goerli

  • ReputationRegistry: 0x...
  • RatingSystem: 0x...
  • UserProfile: 0x...
  • DisputeResolution: 0x...

Mainnet Deployments

Coming soon...

API Reference

Events

All contracts emit events for off-chain tracking and frontend updates. See individual contract documentation for complete event specifications.

Error Codes

Common error codes across contracts:

  • UnauthorizedAccess(): Caller lacks required permissions
  • InvalidRating(): Rating value out of bounds
  • CooldownPeriodActive(): Must wait before rating again
  • UserNotRegistered(): User must register before participating
  • DisputeNotFound(): Referenced dispute doesn't exist

Contributing

Development Workflow

  1. Fork the repository
  2. Create a feature branch
  3. Write tests for new functionality
  4. Implement the feature
  5. Run full test suite
  6. Submit pull request

Code Style

  • Follow Solidity style guide
  • Use NatSpec documentation
  • Include comprehensive tests
  • Optimize for gas efficiency

Commit Convention

Use conventional commits:

  • feat: New features
  • fix: Bug fixes
  • docs: Documentation changes
  • test: Test additions/modifications
  • refactor: Code refactoring

License

MIT License - see LICENSE file for details.

Support

For questions and support:

  • Open an issue on GitHub
  • Join our Discord community
  • Check the documentation wiki

Roadmap

Phase 1 (Current)

  • βœ… Core reputation system
  • βœ… Basic rating functionality
  • βœ… User profiles
  • πŸ”„ Dispute resolution

Phase 2

  • 🎯 Advanced anti-gaming mechanisms
  • 🎯 Reputation token integration
  • 🎯 Frontend application
  • 🎯 Mobile app support

Phase 3

  • 🎯 Cross-chain reputation
  • 🎯 Integration APIs
  • 🎯 Governance features
  • 🎯 Analytics dashboard

Built with ❀️ using Foundry and Solidity

About

decentralized-reputation-system-teal.vercel.app

Resources

Readme

License

MIT license
Activity

Stars

1 star

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages