dfinity
diff --git a/‎backend/mo/canisters/ic_vetkeys_encrypted_maps_canister/mops.toml‎
Lines changed: 0 additions & 1 deletion b/‎backend/mo/canisters/ic_vetkeys_encrypted_maps_canister/mops.toml‎
Lines changed: 0 additions & 1 deletion
diff --git a/‎backend/mo/canisters/ic_vetkeys_encrypted_maps_canister/src/Main.mo‎
Lines changed: 27 additions & 19 deletions b/‎backend/mo/canisters/ic_vetkeys_encrypted_maps_canister/src/Main.mo‎
Lines changed: 27 additions & 19 deletions
diff --git a/‎backend/mo/canisters/ic_vetkeys_manager_canister/src/Main.mo‎
Lines changed: 14 additions & 9 deletions b/‎backend/mo/canisters/ic_vetkeys_manager_canister/src/Main.mo‎
Lines changed: 14 additions & 9 deletions
@@ -10,4 +10,3 @@ license = "Apache-2.0"
 
 [dependencies]
 base = "0.14.6"
-ic-vetkeys = "0.3.0"
@@ -1,13 +1,17 @@
-import IcVetkeys "mo:ic-vetkeys";
-import Types "mo:ic-vetkeys/Types";
+import IcVetkeys "../../../ic_vetkeys/src";
+import Types "../../../ic_vetkeys/src/Types";
 import Principal "mo:base/Principal";
 import Text "mo:base/Text";
 import Blob "mo:base/Blob";
 import Result "mo:base/Result";
 import Array "mo:base/Array";
 
-actor class (keyName : Text) {
-    var encryptedMaps = IcVetkeys.EncryptedMaps.EncryptedMaps<Types.AccessRights>({ curve = #bls12_381_g2; name = keyName }, "encrypted maps dapp", Types.accessRightsOperations());
+persistent actor class (keyName : Text) {
+    let encryptedMapsState = IcVetkeys.EncryptedMaps.newEncryptedMapsState<Types.AccessRights>(
+        { curve = #bls12_381_g2; name = keyName },
+        "encrypted maps dapp",
+    );
+
     /// In this canister, we use the `ByteBuf` type to represent blobs. The reason is that we want to be consistent with the Rust canister implementation.
     /// Unfortunately, the `Blob` type cannot be serialized/deserialized in the current Rust implementation efficiently without nesting it in another type.
     public type ByteBuf = { inner : Blob };
@@ -25,9 +29,13 @@ actor class (keyName : Text) {
         #Err : Err;
     };
 
+    func getEncryptedMaps() : IcVetkeys.EncryptedMaps.EncryptedMaps<Types.AccessRights> {
+        IcVetkeys.EncryptedMaps.EncryptedMaps<Types.AccessRights>(encryptedMapsState, Types.accessRightsOperations());
+    };
+
     public query (msg) func get_accessible_shared_map_names() : async [(Principal, ByteBuf)] {
         Array.map<(Principal, Blob), (Principal, ByteBuf)>(
-            encryptedMaps.getAccessibleSharedMapNames(msg.caller),
+            getEncryptedMaps().getAccessibleSharedMapNames(msg.caller),
 
             func((principal, blob) : (Principal, Blob)) {
                 (principal, { inner = blob });
@@ -39,14 +47,14 @@ actor class (keyName : Text) {
         map_owner : Principal,
         map_name : ByteBuf,
     ) : async Result<[(Principal, Types.AccessRights)], Text> {
-        convertResult(encryptedMaps.getSharedUserAccessForMap(msg.caller, (map_owner, map_name.inner)));
+        convertResult(getEncryptedMaps().getSharedUserAccessForMap(msg.caller, (map_owner, map_name.inner)));
     };
 
     public query (msg) func get_encrypted_values_for_map(
         map_owner : Principal,
         map_name : ByteBuf,
     ) : async Result<[(ByteBuf, ByteBuf)], Text> {
-        let result = encryptedMaps.getEncryptedValuesForMap(msg.caller, (map_owner, map_name.inner));
+        let result = getEncryptedMaps().getEncryptedValuesForMap(msg.caller, (map_owner, map_name.inner));
         switch (result) {
             case (#err(e)) { #Err(e) };
             case (#ok(values)) {
@@ -64,7 +72,7 @@ actor class (keyName : Text) {
 
     public query (msg) func get_all_accessible_encrypted_values() : async [((Principal, ByteBuf), [(ByteBuf, ByteBuf)])] {
         Array.map<((Principal, Blob), [(Blob, Blob)]), ((Principal, ByteBuf), [(ByteBuf, ByteBuf)])>(
-            encryptedMaps.getAllAccessibleEncryptedValues(msg.caller),
+            getEncryptedMaps().getAllAccessibleEncryptedValues(msg.caller),
             func(((owner, map_name), values) : ((Principal, Blob), [(Blob, Blob)])) {
                 (
                     (owner, { inner = map_name }),
@@ -81,7 +89,7 @@ actor class (keyName : Text) {
 
     public query (msg) func get_all_accessible_encrypted_maps() : async [EncryptedMapData] {
         Array.map<IcVetkeys.EncryptedMaps.EncryptedMapData<Types.AccessRights>, EncryptedMapData>(
-            encryptedMaps.getAllAccessibleEncryptedMaps(msg.caller),
+            getEncryptedMaps().getAllAccessibleEncryptedMaps(msg.caller),
             func(map : IcVetkeys.EncryptedMaps.EncryptedMapData<Types.AccessRights>) : EncryptedMapData {
                 {
                     map_owner = map.map_owner;
@@ -103,7 +111,7 @@ actor class (keyName : Text) {
         map_name : ByteBuf,
         map_key : ByteBuf,
     ) : async Result<?ByteBuf, Text> {
-        let result = encryptedMaps.getEncryptedValue(msg.caller, (map_owner, map_name.inner), map_key.inner);
+        let result = getEncryptedMaps().getEncryptedValue(msg.caller, (map_owner, map_name.inner), map_key.inner);
         switch (result) {
             case (#err(e)) { #Err(e) };
             case (#ok(null)) { #Ok(null) };
@@ -115,7 +123,7 @@ actor class (keyName : Text) {
         map_owner : Principal,
         map_name : ByteBuf,
     ) : async Result<[ByteBuf], Text> {
-        let result = encryptedMaps.removeMapValues(msg.caller, (map_owner, map_name.inner));
+        let result = getEncryptedMaps().removeMapValues(msg.caller, (map_owner, map_name.inner));
         switch (result) {
             case (#err(e)) { #Err(e) };
             case (#ok(values)) {
@@ -133,7 +141,7 @@ actor class (keyName : Text) {
 
     public query (msg) func get_owned_non_empty_map_names() : async [ByteBuf] {
         Array.map<Blob, ByteBuf>(
-            encryptedMaps.getOwnedNonEmptyMapNames(msg.caller),
+            getEncryptedMaps().getOwnedNonEmptyMapNames(msg.caller),
             func(blob : Blob) : ByteBuf {
                 { inner = blob };
             },
@@ -146,7 +154,7 @@ actor class (keyName : Text) {
         map_key : ByteBuf,
         value : ByteBuf,
     ) : async Result<?ByteBuf, Text> {
-        let result = encryptedMaps.insertEncryptedValue(msg.caller, (map_owner, map_name.inner), map_key.inner, value.inner);
+        let result = getEncryptedMaps().insertEncryptedValue(msg.caller, (map_owner, map_name.inner), map_key.inner, value.inner);
         switch (result) {
             case (#err(e)) { #Err(e) };
             case (#ok(null)) { #Ok(null) };
@@ -159,7 +167,7 @@ actor class (keyName : Text) {
         map_name : ByteBuf,
         map_key : ByteBuf,
     ) : async Result<?ByteBuf, Text> {
-        let result = encryptedMaps.removeEncryptedValue(msg.caller, (map_owner, map_name.inner), map_key.inner);
+        let result = getEncryptedMaps().removeEncryptedValue(msg.caller, (map_owner, map_name.inner), map_key.inner);
         switch (result) {
             case (#err(e)) { #Err(e) };
             case (#ok(null)) { #Ok(null) };
@@ -168,7 +176,7 @@ actor class (keyName : Text) {
     };
 
     public shared func get_vetkey_verification_key() : async ByteBuf {
-        let inner = await encryptedMaps.getVetkeyVerificationKey();
+        let inner = await getEncryptedMaps().getVetkeyVerificationKey();
         { inner };
     };
 
@@ -177,7 +185,7 @@ actor class (keyName : Text) {
         map_name : ByteBuf,
         transport_key : ByteBuf,
     ) : async Result<ByteBuf, Text> {
-        let result = await encryptedMaps.getEncryptedVetkey(msg.caller, (map_owner, map_name.inner), transport_key.inner);
+        let result = await getEncryptedMaps().getEncryptedVetkey(msg.caller, (map_owner, map_name.inner), transport_key.inner);
         switch (result) {
             case (#err(e)) { #Err(e) };
             case (#ok(vetkey)) { #Ok({ inner = vetkey }) };
@@ -189,7 +197,7 @@ actor class (keyName : Text) {
         map_name : ByteBuf,
         user : Principal,
     ) : async Result<?Types.AccessRights, Text> {
-        convertResult(encryptedMaps.getUserRights(msg.caller, (map_owner, map_name.inner), user));
+        convertResult(getEncryptedMaps().getUserRights(msg.caller, (map_owner, map_name.inner), user));
     };
 
     public shared (msg) func set_user_rights(
@@ -198,15 +206,15 @@ actor class (keyName : Text) {
         user : Principal,
         access_rights : Types.AccessRights,
     ) : async Result<?Types.AccessRights, Text> {
-        convertResult(encryptedMaps.setUserRights(msg.caller, (map_owner, map_name.inner), user, access_rights));
+        convertResult(getEncryptedMaps().setUserRights(msg.caller, (map_owner, map_name.inner), user, access_rights));
     };
 
     public shared (msg) func remove_user(
         map_owner : Principal,
         map_name : ByteBuf,
         user : Principal,
     ) : async Result<?Types.AccessRights, Text> {
-        convertResult(encryptedMaps.removeUser(msg.caller, (map_owner, map_name.inner), user));
+        convertResult(getEncryptedMaps().removeUser(msg.caller, (map_owner, map_name.inner), user));
     };
 
     /// Convert to the result type compatible with Rust's `Result`
 
@@ -6,8 +6,13 @@ import Blob "mo:base/Blob";
 import Result "mo:base/Result";
 import Array "mo:base/Array";
 
-actor class (keyName : Text) {
-    var keyManager = IcVetkeys.KeyManager.KeyManager<Types.AccessRights>({ curve = #bls12_381_g2; name = keyName }, "key manager", Types.accessRightsOperations());
+persistent actor class (keyName : Text) {
+    let keyManagerState = IcVetkeys.KeyManager.newKeyManagerState<Types.AccessRights>({ curve = #bls12_381_g2; name = keyName }, "key manager");
+
+    func getKeyManager() : IcVetkeys.KeyManager.KeyManager<Types.AccessRights> {
+        IcVetkeys.KeyManager.KeyManager<Types.AccessRights>(keyManagerState, Types.accessRightsOperations());
+    };
+
     /// In this canister, we use the `ByteBuf` type to represent blobs. The reason is that we want to be consistent with the Rust canister implementation.
     /// Unfortunately, the `Blob` type cannot be serialized/deserialized in the current Rust implementation efficiently without nesting it in another type.
     public type ByteBuf = { inner : Blob };
@@ -20,7 +25,7 @@ actor class (keyName : Text) {
 
     public query (msg) func get_accessible_shared_key_ids() : async [(Principal, ByteBuf)] {
         Array.map<(Principal, Blob), (Principal, ByteBuf)>(
-            keyManager.getAccessibleSharedKeyIds(msg.caller),
+            getKeyManager().getAccessibleSharedKeyIds(msg.caller),
             func((principal, blob) : (Principal, Blob)) {
                 (principal, { inner = blob });
             },
@@ -31,11 +36,11 @@ actor class (keyName : Text) {
         key_owner : Principal,
         key_name : ByteBuf,
     ) : async Result<[(Principal, Types.AccessRights)], Text> {
-        convertResult(keyManager.getSharedUserAccessForKey(msg.caller, (key_owner, key_name.inner)));
+        convertResult(getKeyManager().getSharedUserAccessForKey(msg.caller, (key_owner, key_name.inner)));
     };
 
     public shared func get_vetkey_verification_key() : async ByteBuf {
-        let inner = await keyManager.getVetkeyVerificationKey();
+        let inner = await getKeyManager().getVetkeyVerificationKey();
         { inner };
     };
 
@@ -44,7 +49,7 @@ actor class (keyName : Text) {
         key_name : ByteBuf,
         transport_key : ByteBuf,
     ) : async Result<ByteBuf, Text> {
-        let vetkeyBytebuf = await keyManager.getEncryptedVetkey(msg.caller, (key_owner, key_name.inner), transport_key.inner);
+        let vetkeyBytebuf = await getKeyManager().getEncryptedVetkey(msg.caller, (key_owner, key_name.inner), transport_key.inner);
         switch (vetkeyBytebuf) {
             case (#err(e)) { #Err(e) };
             case (#ok(inner)) { #Ok({ inner }) };
@@ -56,7 +61,7 @@ actor class (keyName : Text) {
         key_name : ByteBuf,
         user : Principal,
     ) : async Result<?Types.AccessRights, Text> {
-        convertResult(keyManager.getUserRights(msg.caller, (key_owner, key_name.inner), user));
+        convertResult(getKeyManager().getUserRights(msg.caller, (key_owner, key_name.inner), user));
     };
 
     public shared (msg) func set_user_rights(
@@ -65,15 +70,15 @@ actor class (keyName : Text) {
         user : Principal,
         access_rights : Types.AccessRights,
     ) : async Result<?Types.AccessRights, Text> {
-        convertResult(keyManager.setUserRights(msg.caller, (key_owner, key_name.inner), user, access_rights));
+        convertResult(getKeyManager().setUserRights(msg.caller, (key_owner, key_name.inner), user, access_rights));
     };
 
     public shared (msg) func remove_user(
         key_owner : Principal,
         key_name : ByteBuf,
         user : Principal,
     ) : async Result<?Types.AccessRights, Text> {
-        convertResult(keyManager.removeUserRights(msg.caller, (key_owner, key_name.inner), user));
+        convertResult(getKeyManager().removeUserRights(msg.caller, (key_owner, key_name.inner), user));
     };
 
     /// Convert to the result type compatible with Rust's `Result`
Original file line number	Diff line number	Diff line change
`@@ -10,4 +10,3 @@ license = "Apache-2.0"`
`10`	`10`
`11`	`11`	`[dependencies]`
`12`	`12`	`base = "0.14.6"`
`13`		`-ic-vetkeys = "0.3.0"`