Ludovit Scholtz

> https://medium.com/coinmonks/smart-contract-security-tx-origin-authorization-attack-vectors-027730ae601d even in this document they say there are legit use cases to use it.. for example if we want to block the thieves from using our smart contract.....

> The only sane access control is allow-based, not deny-based. Biatec identity solution allows the allow-based access control according to verification class, and also deny based.. the information is stored...

> OnBehalfOf I do not trust anybody that would fill this information correctly. I dont want to create indexer of smart contracts who i should trust I dont want to...

@gmalouf @jannotti It would be very kind from you at least to show how to implement this in reasonable manner.

for me no auth does not work as well.. { "address": "", "auth": { "method": "noauth", "noauth": true }, "baseURL": "", "database": "/db/database.db", "log": "stdout", "noauth": true, "port": 8080, "root":...

in the [dotnet-algorand-sdk](https://github.com/scholtz/dotnet-algorand-sdk) is used Newtonsoft lib which is using internally json, and does not allow parsing or creating json props without the proper json validation

there are also issues with other properties like `prev` .. from msgpack its returned as byte array, but from json its returned as blk-base32 encoded value .. the decoding can...

is there some formal definition of what can be returned in which encoding from algod? for example https://raw.githubusercontent.com/algorand/go-algorand/088f89dd02487a06497a79518c549aae8a3134ee/daemon/algod/api/algod.oas2.json does not have the model data for Block.. it just covers it...

dotnet algo sdk has option to allow get the block using msgpack which does not work because of the issue in the first message, or using the json.. default is...

@jannotti When i do the inner app calls, i usually set the fee to 0 as i do not want the smart contract balance to be affected by the fees....