Collection Invariants
Collection invariants are immutable rules that are set upon collection creation and cannot be broken or modified afterward. These invariants enforce fundamental constraints on how the collection operates, ensuring consistency and preventing certain types of restrictions.
Overview
Invariants are collection-level properties that are set during genesis (collection creation) and remain fixed for the lifetime of the collection. Unlike permissions or other configurable settings, invariants cannot be updated or removed once established.
Proto Definition
message CollectionInvariants {
// If true, all ownership times must be full ranges [{ start: 1, end: GoMaxUInt64 }].
// This prevents time-based restrictions on token ownership.
bool noCustomOwnershipTimes = 1;
// Maximum supply per token ID. If set, no balance can exceed this amount.
// This prevents any single token ID from having more than the specified supply.
string maxSupplyPerId = 2 [(gogoproto.customtype) = "Uint", (gogoproto.nullable) = false];
// The IBC backed (sdk.coin) path for the collection. Only one path is allowed.
CosmosCoinBackedPath cosmosCoinBackedPath = 3;
// If true, disallows any collection approvals that have overridesFromOutgoingApprovals
// or overridesToIncomingApprovals set to true.
// This prevents forceful post-mint transfers that bypass user-level approvals.
bool noForcefulPostMintTransfers = 4;
// If true, disallows pool creation with this collection's assets.
// When true, any attempt to create a pool with badges assets from this collection will fail.
bool disablePoolCreation = 5;
}Available Invariants
noCustomOwnershipTimes
When enabled, this invariant enforces that all ownership times throughout the collection must represent full ranges from the beginning of time (1) to the maximum possible time (18446744073709551615).
What it affects:
Collection Approvals: All collection-level approvals must have ownership times that are full ranges
User Approvals: All user-level approvals (incoming/outgoing) must have ownership times that are full ranges
Transfer Balances: All transfer operations must involve balances with full ownership time ranges
Validation Logic:
The invariant checks that ownership times are exactly:
[{ "start": "1", "end": "18446744073709551615" }]Any other ownership time configuration will cause validation to fail.
Use Cases:
Preventing Time-Based Restrictions: Ensures tokens cannot have time-limited ownership periods
Simplifying Ownership Model: Eliminates complexity around time-based approval restrictions
Compliance Requirements: Some applications may require permanent, unrestricted ownership
Example:
// β
Valid - Full ownership time range
{
"ownershipTimes": [
{
"start": "1",
"end": "18446744073709551615"
}
]
}
// β Invalid - Restricted time range
{
"ownershipTimes": [
{
"start": "1000",
"end": "2000"
}
]
}
// β Invalid - Multiple ranges
{
"ownershipTimes": [
{
"start": "1",
"end": "1000"
},
{
"start": "2000",
"end": "3000"
}
]
}maxSupplyPerId
When set to a non-zero value, this invariant enforces that no balance amount can exceed the specified maximum supply per token ID. This prevents supply inflation and ensures that the total supply of any individual token ID remains within the defined limits.
What it affects:
Total Address Balances: When setting balances for the "Total" address (which represents the total supply across all users), no individual balance amount can exceed the maximum
Supply Control: Prevents any single token ID from having more than the specified supply amount
Collection Integrity: Ensures the collection maintains its intended supply constraints
Validation Logic:
The invariant checks that when setting "Total" address balances, all balance amounts must be less than or equal to the specified maxSupplyPerId:
if balance.Amount.GT(collection.Invariants.MaxSupplyPerId) {
return error("maxSupplyPerId invariant violation")
}Use Cases:
Supply Caps: Enforce maximum supply limits for individual token IDs
Anti-Inflation: Prevent supply manipulation through balance operations
Compliance: Meet regulatory requirements for maximum token supply
Economic Control: Maintain scarcity and value of specific token IDs
Example:
// β
Valid - Balance amount within limit
{
"invariants": {
"maxSupplyPerId": "1000"
},
"balances": [
{
"amount": "500",
"tokenIds": [{ "start": "1", "end": "1" }]
}
]
}
// β Invalid - Balance amount exceeds limit
{
"invariants": {
"maxSupplyPerId": "1000"
},
"balances": [
{
"amount": "1500", // Exceeds maxSupplyPerId of 1000
"tokenIds": [{ "start": "1", "end": "1" }]
}
]
}
// β
Valid - Non-Total address not affected
{
"invariants": {
"maxSupplyPerId": "1000"
},
"balances": [
{
"amount": "2000", // Allowed for non-Total addresses
"tokenIds": [{ "start": "1", "end": "1" }]
}
]
}Important Notes:
Only affects "Total" address: The invariant only applies when setting balances for the "Total" address
Zero value ignored: If
maxSupplyPerIdis set to 0, the invariant is not enforcedImmutable: Once set during collection creation, this value cannot be changed
Per-token ID basis: The limit applies to each individual token ID, not the total collection supply
cosmosCoinBackedPath
The IBC backed (sdk.coin) path for the collection. This invariant allows only one IBC backed path per collection, ensuring a single source of truth for the collection's IBC-backed minting.
For more details, see IBC Backed Paths.
noForcefulPostMintTransfers
When enabled, this invariant prevents collection-level approvals from using override flags that would bypass user-level approvals for post-mint transfers.
What it affects:
Collection Approvals: Disallows
overridesFromOutgoingApprovalsandoverridesToIncomingApprovalsflags in collection approvalsUser Control: Ensures user-level approvals cannot be bypassed by collection-level settings
Transfer Security: Prevents forceful transfers that ignore user consent
disablePoolCreation
When enabled, this invariant prevents the creation of liquidity pools using assets from this collection in our gamm module.
Setting Invariants
Invariants can only be set during collection creation via MsgCreateCollection or MsgUniversalUpdateCollection (when creating a new collection with CollectionId = 0).
message MsgCreateCollection {
// ... other fields ...
CollectionInvariants invariants = 18;
}Validation Points
The invariants are validated at several points:
noCustomOwnershipTimes
Collection Creation: When creating a new collection
Collection Updates: When updating collection approvals
Transfer Execution: When processing token transfers
Approval Updates: When updating user or collection approvals
maxSupplyPerId
Balance Storage: When setting user balances in the store (specifically for "Total" address)
Supply Validation: Before any balance amount is stored that would exceed the maximum
cosmosCoinBackedPath
Collection Creation: When creating a new collection with an IBC backed path
Path Validation: Ensures only one path exists and is properly configured
noForcefulPostMintTransfers
Collection Approval Updates: When setting or updating collection approvals
Transfer Execution: When processing transfers that would use override flags
disablePoolCreation
Pool Creation: When attempting to create a liquidity pool with collection assets
Error Messages
When invariants are violated, you'll receive error messages like:
noCustomOwnershipTimes
noCustomOwnershipTimes invariant is enabled: ownership times must be full range [{ start: 1, end: 18446744073709551615 }]maxSupplyPerId
maxSupplyPerId invariant violation: balance amount 1500 exceeds maximum supply per ID 1000noForcefulPostMintTransfers
noForcefulPostMintTransfers invariant violation: collection approval cannot use override flagsdisablePoolCreation
disablePoolCreation invariant violation: pool creation with this collection's assets is not allowedRelated Concepts
Last updated