@etherisc/gif-next 0.0.2-fe88ad7-208 → 0.0.2-ff8087d-237
Sign up to get free protection for your applications and to get access to all the features.
- package/README.md +8 -13
- package/artifacts/contracts/components/Component.sol/Component.dbg.json +4 -0
- package/artifacts/contracts/components/Component.sol/Component.json +873 -0
- package/artifacts/contracts/components/Distribution.sol/Distribution.dbg.json +1 -1
- package/artifacts/contracts/components/Distribution.sol/Distribution.json +903 -202
- package/artifacts/contracts/components/IComponent.sol/IComponent.dbg.json +4 -0
- package/artifacts/contracts/components/{BaseComponent.sol/BaseComponent.json → IComponent.sol/IComponent.json} +237 -83
- package/artifacts/contracts/components/IDistributionComponent.sol/IDistributionComponent.dbg.json +1 -1
- package/artifacts/contracts/components/IDistributionComponent.sol/IDistributionComponent.json +879 -31
- package/artifacts/contracts/components/IPoolComponent.sol/IPoolComponent.dbg.json +1 -1
- package/artifacts/contracts/components/IPoolComponent.sol/IPoolComponent.json +879 -59
- package/artifacts/contracts/components/IProductComponent.sol/IProductComponent.dbg.json +1 -1
- package/artifacts/contracts/components/IProductComponent.sol/IProductComponent.json +720 -16
- package/artifacts/contracts/components/Pool.sol/Pool.dbg.json +1 -1
- package/artifacts/contracts/components/Pool.sol/Pool.json +760 -195
- package/artifacts/contracts/components/Product.sol/Product.dbg.json +1 -1
- package/artifacts/contracts/components/Product.sol/Product.json +564 -141
- package/artifacts/contracts/instance/AccessManagerUpgradeableInitializeable.sol/AccessManagerUpgradeableInitializeable.dbg.json +1 -1
- package/artifacts/contracts/instance/AccessManagerUpgradeableInitializeable.sol/AccessManagerUpgradeableInitializeable.json +15 -15
- package/artifacts/contracts/instance/BundleManager.sol/BundleManager.dbg.json +1 -1
- package/artifacts/contracts/instance/BundleManager.sol/BundleManager.json +69 -79
- package/artifacts/contracts/instance/Cloneable.sol/Cloneable.dbg.json +1 -1
- package/artifacts/contracts/instance/Cloneable.sol/Cloneable.json +5 -0
- package/artifacts/contracts/instance/IInstance.sol/IInstance.dbg.json +1 -1
- package/artifacts/contracts/instance/IInstance.sol/IInstance.json +1474 -483
- package/artifacts/contracts/instance/IInstanceService.sol/IInstanceService.dbg.json +1 -1
- package/artifacts/contracts/instance/IInstanceService.sol/IInstanceService.json +248 -218
- package/artifacts/contracts/instance/Instance.sol/Instance.dbg.json +1 -1
- package/artifacts/contracts/instance/Instance.sol/Instance.json +1152 -794
- package/artifacts/contracts/instance/InstanceAccessManager.sol/InstanceAccessManager.dbg.json +1 -1
- package/artifacts/contracts/instance/InstanceAccessManager.sol/InstanceAccessManager.json +462 -179
- package/artifacts/contracts/instance/InstanceReader.sol/InstanceReader.dbg.json +1 -1
- package/artifacts/contracts/instance/InstanceReader.sol/InstanceReader.json +414 -267
- package/artifacts/contracts/instance/InstanceService.sol/InstanceService.dbg.json +1 -1
- package/artifacts/contracts/instance/InstanceService.sol/InstanceService.json +482 -346
- package/artifacts/contracts/instance/InstanceServiceManager.sol/InstanceServiceManager.dbg.json +1 -1
- package/artifacts/contracts/instance/InstanceServiceManager.sol/InstanceServiceManager.json +355 -91
- package/artifacts/contracts/instance/ObjectManager.sol/ObjectManager.dbg.json +1 -1
- package/artifacts/contracts/instance/ObjectManager.sol/ObjectManager.json +11 -40
- package/artifacts/contracts/instance/base/ComponentService.sol/ComponentService.dbg.json +4 -0
- package/artifacts/contracts/instance/base/{ComponentServiceBase.sol/ComponentServiceBase.json → ComponentService.sol/ComponentService.json} +263 -164
- package/artifacts/contracts/instance/base/IKeyValueStore.sol/IKeyValueStore.dbg.json +1 -1
- package/artifacts/contracts/instance/base/ILifecycle.sol/ILifecycle.dbg.json +1 -1
- package/artifacts/contracts/instance/base/KeyValueStore.sol/KeyValueStore.dbg.json +1 -1
- package/artifacts/contracts/instance/base/KeyValueStore.sol/KeyValueStore.json +40 -10
- package/artifacts/contracts/instance/base/Lifecycle.sol/Lifecycle.dbg.json +1 -1
- package/artifacts/contracts/instance/base/Lifecycle.sol/Lifecycle.json +36 -11
- package/artifacts/contracts/instance/module/IAccess.sol/IAccess.dbg.json +1 -1
- package/artifacts/contracts/instance/module/IAccess.sol/IAccess.json +58 -75
- package/artifacts/contracts/instance/module/IBundle.sol/IBundle.dbg.json +1 -1
- package/artifacts/contracts/instance/module/IComponents.sol/IComponents.dbg.json +4 -0
- package/artifacts/contracts/instance/module/IComponents.sol/IComponents.json +10 -0
- package/artifacts/contracts/instance/module/IDistribution.sol/IDistribution.dbg.json +1 -1
- package/artifacts/contracts/instance/module/IPolicy.sol/IPolicy.dbg.json +1 -1
- package/artifacts/contracts/instance/module/IRisk.sol/IRisk.dbg.json +1 -1
- package/artifacts/contracts/instance/module/ISetup.sol/ISetup.dbg.json +1 -1
- package/artifacts/contracts/instance/module/ITreasury.sol/ITreasury.dbg.json +1 -1
- package/artifacts/contracts/instance/service/ApplicationService.sol/ApplicationService.dbg.json +4 -0
- package/artifacts/contracts/instance/service/ApplicationService.sol/ApplicationService.json +1124 -0
- package/artifacts/contracts/instance/service/ApplicationServiceManager.sol/ApplicationServiceManager.dbg.json +4 -0
- package/artifacts/contracts/instance/service/ApplicationServiceManager.sol/ApplicationServiceManager.json +688 -0
- package/artifacts/contracts/instance/service/BundleService.sol/BundleService.dbg.json +1 -1
- package/artifacts/contracts/instance/service/BundleService.sol/BundleService.json +641 -303
- package/artifacts/contracts/instance/service/BundleServiceManager.sol/BundleServiceManager.dbg.json +1 -1
- package/artifacts/contracts/instance/service/BundleServiceManager.sol/BundleServiceManager.json +343 -79
- package/artifacts/contracts/instance/service/ClaimService.sol/ClaimService.dbg.json +4 -0
- package/artifacts/contracts/instance/service/ClaimService.sol/ClaimService.json +1384 -0
- package/artifacts/contracts/instance/service/ClaimServiceManager.sol/ClaimServiceManager.dbg.json +4 -0
- package/artifacts/contracts/instance/service/ClaimServiceManager.sol/ClaimServiceManager.json +752 -0
- package/artifacts/contracts/instance/service/DistributionService.sol/DistributionService.dbg.json +1 -1
- package/artifacts/contracts/instance/service/DistributionService.sol/DistributionService.json +1434 -280
- package/artifacts/contracts/instance/service/DistributionServiceManager.sol/DistributionServiceManager.dbg.json +1 -1
- package/artifacts/contracts/instance/service/DistributionServiceManager.sol/DistributionServiceManager.json +469 -73
- package/artifacts/contracts/instance/service/IApplicationService.sol/IApplicationService.dbg.json +4 -0
- package/artifacts/contracts/instance/service/{IComponentOwnerService.sol/IComponentOwnerService.json → IApplicationService.sol/IApplicationService.json} +342 -189
- package/artifacts/contracts/instance/service/IBundleService.sol/IBundleService.dbg.json +1 -1
- package/artifacts/contracts/instance/service/IBundleService.sol/IBundleService.json +310 -249
- package/artifacts/contracts/instance/service/IClaimService.sol/IClaimService.dbg.json +4 -0
- package/artifacts/contracts/instance/service/IClaimService.sol/IClaimService.json +743 -0
- package/artifacts/contracts/instance/service/IDistributionService.sol/IDistributionService.dbg.json +1 -1
- package/artifacts/contracts/instance/service/IDistributionService.sol/IDistributionService.json +757 -144
- package/artifacts/contracts/instance/service/IPolicyService.sol/IPolicyService.dbg.json +1 -1
- package/artifacts/contracts/instance/service/IPolicyService.sol/IPolicyService.json +262 -275
- package/artifacts/contracts/instance/service/IPoolService.sol/IPoolService.dbg.json +1 -1
- package/artifacts/contracts/instance/service/IPoolService.sol/IPoolService.json +703 -125
- package/artifacts/contracts/instance/service/IProductService.sol/IProductService.dbg.json +1 -1
- package/artifacts/contracts/instance/service/IProductService.sol/IProductService.json +71 -165
- package/artifacts/contracts/instance/service/PolicyService.sol/PolicyService.dbg.json +1 -1
- package/artifacts/contracts/instance/service/PolicyService.sol/PolicyService.json +632 -344
- package/artifacts/contracts/instance/service/PolicyServiceManager.sol/PolicyServiceManager.dbg.json +1 -1
- package/artifacts/contracts/instance/service/PolicyServiceManager.sol/PolicyServiceManager.json +367 -91
- package/artifacts/contracts/instance/service/PoolService.sol/PoolService.dbg.json +1 -1
- package/artifacts/contracts/instance/service/PoolService.sol/PoolService.json +1119 -224
- package/artifacts/contracts/instance/service/PoolServiceManager.sol/PoolServiceManager.dbg.json +1 -1
- package/artifacts/contracts/instance/service/PoolServiceManager.sol/PoolServiceManager.json +361 -73
- package/artifacts/contracts/instance/service/ProductService.sol/ProductService.dbg.json +1 -1
- package/artifacts/contracts/instance/service/ProductService.sol/ProductService.json +297 -210
- package/artifacts/contracts/instance/service/ProductServiceManager.sol/ProductServiceManager.dbg.json +1 -1
- package/artifacts/contracts/instance/service/ProductServiceManager.sol/ProductServiceManager.json +298 -78
- package/artifacts/contracts/registry/ChainNft.sol/ChainNft.dbg.json +1 -1
- package/artifacts/contracts/registry/ChainNft.sol/ChainNft.json +15 -2
- package/artifacts/contracts/registry/IRegistry.sol/IRegistry.dbg.json +1 -1
- package/artifacts/contracts/registry/IRegistry.sol/IRegistry.json +117 -5
- package/artifacts/contracts/registry/IRegistryService.sol/IRegistryService.dbg.json +1 -1
- package/artifacts/contracts/registry/IRegistryService.sol/IRegistryService.json +99 -217
- package/artifacts/contracts/registry/ITransferInterceptor.sol/ITransferInterceptor.dbg.json +1 -1
- package/artifacts/contracts/registry/ITransferInterceptor.sol/ITransferInterceptor.json +18 -0
- package/artifacts/contracts/registry/Registry.sol/Registry.dbg.json +1 -1
- package/artifacts/contracts/registry/Registry.sol/Registry.json +131 -27
- package/artifacts/contracts/registry/RegistryAccessManager.sol/RegistryAccessManager.dbg.json +1 -1
- package/artifacts/contracts/registry/RegistryAccessManager.sol/RegistryAccessManager.json +18 -18
- package/artifacts/contracts/registry/RegistryService.sol/RegistryService.dbg.json +1 -1
- package/artifacts/contracts/registry/RegistryService.sol/RegistryService.json +205 -250
- package/artifacts/contracts/registry/RegistryServiceManager.sol/RegistryServiceManager.dbg.json +1 -1
- package/artifacts/contracts/registry/RegistryServiceManager.sol/RegistryServiceManager.json +287 -81
- package/artifacts/contracts/registry/ReleaseManager.sol/ReleaseManager.dbg.json +1 -1
- package/artifacts/contracts/registry/ReleaseManager.sol/ReleaseManager.json +81 -68
- package/artifacts/contracts/registry/TokenRegistry.sol/TokenRegistry.dbg.json +1 -1
- package/artifacts/contracts/registry/TokenRegistry.sol/TokenRegistry.json +138 -50
- package/artifacts/contracts/shared/ContractDeployerLib.sol/ContractDeployerLib.dbg.json +1 -1
- package/artifacts/contracts/shared/ERC165.sol/ERC165.dbg.json +1 -1
- package/artifacts/contracts/shared/ERC165.sol/ERC165.json +41 -3
- package/artifacts/contracts/shared/INftOwnable.sol/INftOwnable.dbg.json +1 -1
- package/artifacts/contracts/shared/INftOwnable.sol/INftOwnable.json +27 -29
- package/artifacts/contracts/shared/IPolicyHolder.sol/IPolicyHolder.dbg.json +4 -0
- package/artifacts/contracts/shared/IPolicyHolder.sol/IPolicyHolder.json +189 -0
- package/artifacts/contracts/shared/IRegisterable.sol/IRegisterable.dbg.json +1 -1
- package/artifacts/contracts/shared/IRegisterable.sol/IRegisterable.json +8 -34
- package/artifacts/contracts/shared/IRegistryLinked.sol/IRegistryLinked.dbg.json +4 -0
- package/artifacts/contracts/{experiment/inheritance/IA.sol/ISharedA.json → shared/IRegistryLinked.sol/IRegistryLinked.json} +15 -17
- package/artifacts/contracts/shared/IService.sol/IService.dbg.json +1 -1
- package/artifacts/contracts/shared/IService.sol/IService.json +71 -165
- package/artifacts/contracts/shared/IVersionable.sol/IVersionable.dbg.json +1 -1
- package/artifacts/contracts/shared/IVersionable.sol/IVersionable.json +2 -152
- package/artifacts/contracts/shared/NftOwnable.sol/NftOwnable.dbg.json +1 -1
- package/artifacts/contracts/shared/NftOwnable.sol/NftOwnable.json +107 -27
- package/artifacts/contracts/shared/PolicyHolder.sol/PolicyHolder.dbg.json +4 -0
- package/artifacts/contracts/shared/PolicyHolder.sol/PolicyHolder.json +302 -0
- package/artifacts/contracts/shared/ProxyManager.sol/ProxyManager.dbg.json +1 -1
- package/artifacts/contracts/shared/ProxyManager.sol/ProxyManager.json +283 -63
- package/artifacts/contracts/shared/Registerable.sol/Registerable.dbg.json +1 -1
- package/artifacts/contracts/shared/Registerable.sol/Registerable.json +116 -51
- package/artifacts/contracts/shared/RegistryLinked.sol/RegistryLinked.dbg.json +4 -0
- package/artifacts/contracts/shared/RegistryLinked.sol/RegistryLinked.json +71 -0
- package/artifacts/contracts/shared/Service.sol/Service.dbg.json +1 -1
- package/artifacts/contracts/shared/Service.sol/Service.json +173 -153
- package/artifacts/contracts/shared/TokenHandler.sol/TokenHandler.dbg.json +1 -1
- package/artifacts/contracts/shared/TokenHandler.sol/TokenHandler.json +24 -6
- package/artifacts/contracts/shared/UpgradableProxyWithAdmin.sol/UpgradableProxyWithAdmin.dbg.json +1 -1
- package/artifacts/contracts/shared/UpgradableProxyWithAdmin.sol/UpgradableProxyWithAdmin.json +2 -2
- package/artifacts/contracts/shared/Versionable.sol/Versionable.dbg.json +1 -1
- package/artifacts/contracts/shared/Versionable.sol/Versionable.json +2 -152
- package/artifacts/contracts/test/TestFee.sol/TestFee.dbg.json +1 -1
- package/artifacts/contracts/test/TestFee.sol/TestFee.json +2 -2
- package/artifacts/contracts/test/TestRegisterable.sol/TestRegisterable.dbg.json +1 -1
- package/artifacts/contracts/test/TestRegisterable.sol/TestRegisterable.json +116 -51
- package/artifacts/contracts/test/TestRoleId.sol/TestRoleId.dbg.json +1 -1
- package/artifacts/contracts/test/TestRoleId.sol/TestRoleId.json +6 -6
- package/artifacts/contracts/test/TestService.sol/TestService.dbg.json +1 -1
- package/artifacts/contracts/test/TestService.sol/TestService.json +191 -203
- package/artifacts/contracts/test/TestToken.sol/TestUsdc.dbg.json +1 -1
- package/artifacts/contracts/test/TestVersion.sol/TestVersion.dbg.json +1 -1
- package/artifacts/contracts/test/TestVersion.sol/TestVersion.json +2 -2
- package/artifacts/contracts/test/TestVersionable.sol/TestVersionable.dbg.json +1 -1
- package/artifacts/contracts/test/TestVersionable.sol/TestVersionable.json +8 -190
- package/artifacts/contracts/test/Usdc.sol/USDC.dbg.json +1 -1
- package/artifacts/contracts/types/AddressSet.sol/LibAddressSet.dbg.json +1 -1
- package/artifacts/contracts/types/Amount.sol/AmountLib.dbg.json +4 -0
- package/artifacts/contracts/types/Amount.sol/AmountLib.json +281 -0
- package/artifacts/contracts/types/Blocknumber.sol/BlocknumberLib.dbg.json +1 -1
- package/artifacts/contracts/types/Blocknumber.sol/BlocknumberLib.json +2 -2
- package/artifacts/contracts/types/ChainId.sol/ChainIdLib.dbg.json +1 -1
- package/artifacts/contracts/types/ClaimId.sol/ClaimIdLib.dbg.json +4 -0
- package/artifacts/contracts/types/ClaimId.sol/ClaimIdLib.json +179 -0
- package/artifacts/contracts/types/DistributorType.sol/DistributorTypeLib.dbg.json +1 -1
- package/artifacts/contracts/types/DistributorType.sol/DistributorTypeLib.json +2 -2
- package/artifacts/contracts/types/Fee.sol/FeeLib.dbg.json +1 -1
- package/artifacts/contracts/types/Fee.sol/FeeLib.json +74 -19
- package/artifacts/contracts/types/Key32.sol/Key32Lib.dbg.json +1 -1
- package/artifacts/contracts/types/Key32.sol/Key32Lib.json +2 -2
- package/artifacts/contracts/types/NftId.sol/NftIdLib.dbg.json +1 -1
- package/artifacts/contracts/types/NftId.sol/NftIdLib.json +17 -4
- package/artifacts/contracts/types/NftIdSet.sol/LibNftIdSet.dbg.json +1 -1
- package/artifacts/contracts/types/NftIdSet.sol/LibNftIdSet.json +2 -2
- package/artifacts/contracts/types/NumberId.sol/NumberIdLib.dbg.json +1 -1
- package/artifacts/contracts/types/ObjectType.sol/ObjectTypeLib.dbg.json +1 -1
- package/artifacts/contracts/types/ObjectType.sol/ObjectTypeLib.json +2 -2
- package/artifacts/contracts/types/PayoutId.sol/PayoutIdLib.dbg.json +4 -0
- package/artifacts/contracts/types/PayoutId.sol/PayoutIdLib.json +209 -0
- package/artifacts/contracts/types/Referral.sol/ReferralLib.dbg.json +1 -1
- package/artifacts/contracts/types/Referral.sol/ReferralLib.json +23 -4
- package/artifacts/contracts/types/RiskId.sol/RiskIdLib.dbg.json +1 -1
- package/artifacts/contracts/types/RiskId.sol/RiskIdLib.json +2 -2
- package/artifacts/contracts/types/RoleId.sol/RoleIdLib.dbg.json +1 -1
- package/artifacts/contracts/types/RoleId.sol/RoleIdLib.json +2 -2
- package/artifacts/contracts/types/Seconds.sol/SecondsLib.dbg.json +4 -0
- package/artifacts/contracts/types/Seconds.sol/SecondsLib.json +124 -0
- package/artifacts/contracts/types/StateId.sol/StateIdLib.dbg.json +1 -1
- package/artifacts/contracts/types/StateId.sol/StateIdLib.json +2 -2
- package/artifacts/contracts/types/Timestamp.sol/TimestampLib.dbg.json +1 -1
- package/artifacts/contracts/types/Timestamp.sol/TimestampLib.json +38 -7
- package/artifacts/contracts/types/UFixed.sol/MathLib.dbg.json +1 -1
- package/artifacts/contracts/types/UFixed.sol/MathLib.json +2 -2
- package/artifacts/contracts/types/UFixed.sol/UFixedLib.dbg.json +1 -1
- package/artifacts/contracts/types/UFixed.sol/UFixedLib.json +2 -2
- package/artifacts/contracts/types/Version.sol/VersionLib.dbg.json +1 -1
- package/artifacts/contracts/types/Version.sol/VersionLib.json +2 -2
- package/artifacts/contracts/types/Version.sol/VersionPartLib.dbg.json +1 -1
- package/artifacts/contracts/types/Version.sol/VersionPartLib.json +2 -2
- package/contracts/components/Component.sol +272 -0
- package/contracts/components/Distribution.sol +204 -82
- package/contracts/components/IComponent.sol +90 -0
- package/contracts/components/IDistributionComponent.sol +44 -17
- package/contracts/components/IPoolComponent.sol +90 -42
- package/contracts/components/IProductComponent.sol +15 -9
- package/contracts/components/Pool.sol +217 -186
- package/contracts/components/Product.sol +246 -166
- package/contracts/instance/AccessManagerUpgradeableInitializeable.sol +2 -12
- package/contracts/instance/BundleManager.sol +17 -20
- package/contracts/instance/Cloneable.sol +7 -2
- package/contracts/instance/IInstance.sol +67 -25
- package/contracts/instance/IInstanceService.sol +34 -11
- package/contracts/instance/Instance.sol +158 -116
- package/contracts/instance/InstanceAccessManager.sol +389 -165
- package/contracts/instance/InstanceReader.sol +87 -36
- package/contracts/instance/InstanceService.sol +295 -161
- package/contracts/instance/InstanceServiceManager.sol +1 -1
- package/contracts/instance/ObjectManager.sol +10 -29
- package/contracts/instance/base/ComponentService.sol +130 -0
- package/contracts/instance/base/KeyValueStore.sol +13 -36
- package/contracts/instance/base/Lifecycle.sol +26 -6
- package/contracts/instance/module/IAccess.sol +22 -16
- package/contracts/instance/module/IBundle.sol +8 -5
- package/contracts/instance/module/IComponents.sol +41 -0
- package/contracts/instance/module/IDistribution.sol +3 -0
- package/contracts/instance/module/IPolicy.sol +43 -11
- package/contracts/instance/module/ISetup.sol +7 -20
- package/contracts/instance/service/ApplicationService.sol +356 -0
- package/contracts/instance/service/ApplicationServiceManager.sol +35 -0
- package/contracts/instance/service/BundleService.sol +244 -119
- package/contracts/instance/service/BundleServiceManager.sol +1 -1
- package/contracts/instance/service/ClaimService.sol +443 -0
- package/contracts/instance/service/ClaimServiceManager.sol +35 -0
- package/contracts/instance/service/DistributionService.sol +360 -41
- package/contracts/instance/service/DistributionServiceManager.sol +1 -1
- package/contracts/instance/service/IApplicationService.sol +79 -0
- package/contracts/instance/service/IBundleService.sol +93 -20
- package/contracts/instance/service/IClaimService.sol +90 -0
- package/contracts/instance/service/IDistributionService.sol +89 -0
- package/contracts/instance/service/IPolicyService.sol +44 -51
- package/contracts/instance/service/IPoolService.sol +97 -3
- package/contracts/instance/service/PolicyService.sol +233 -364
- package/contracts/instance/service/PolicyServiceManager.sol +2 -2
- package/contracts/instance/service/PoolService.sol +319 -40
- package/contracts/instance/service/PoolServiceManager.sol +1 -1
- package/contracts/instance/service/ProductService.sol +90 -50
- package/contracts/instance/service/ProductServiceManager.sol +2 -2
- package/contracts/registry/ChainNft.sol +8 -0
- package/contracts/registry/IRegistry.sol +18 -8
- package/contracts/registry/IRegistryService.sol +21 -13
- package/contracts/registry/ITransferInterceptor.sol +1 -0
- package/contracts/registry/Registry.sol +142 -71
- package/contracts/registry/RegistryAccessManager.sol +31 -25
- package/contracts/registry/RegistryService.sol +93 -134
- package/contracts/registry/RegistryServiceManager.sol +13 -13
- package/contracts/registry/ReleaseManager.sol +103 -127
- package/contracts/registry/TokenRegistry.sol +19 -13
- package/contracts/shared/ERC165.sol +14 -12
- package/contracts/shared/INftOwnable.sol +11 -10
- package/contracts/shared/IPolicyHolder.sol +40 -0
- package/contracts/shared/IRegisterable.sol +4 -6
- package/contracts/shared/IRegistryLinked.sol +11 -0
- package/contracts/shared/IService.sol +6 -4
- package/contracts/shared/IVersionable.sol +4 -47
- package/contracts/shared/NftOwnable.sol +64 -80
- package/contracts/shared/PolicyHolder.sol +94 -0
- package/contracts/shared/ProxyManager.sol +100 -25
- package/contracts/shared/Registerable.sol +24 -39
- package/contracts/shared/RegistryLinked.sol +43 -0
- package/contracts/shared/Service.sol +36 -22
- package/contracts/shared/TokenHandler.sol +14 -6
- package/contracts/shared/Versionable.sol +4 -92
- package/contracts/test/TestRegisterable.sol +1 -1
- package/contracts/test/TestService.sol +1 -1
- package/contracts/types/Amount.sol +109 -0
- package/contracts/types/Blocknumber.sol +1 -0
- package/contracts/types/ClaimId.sol +75 -0
- package/contracts/types/DistributorType.sol +2 -2
- package/contracts/types/Fee.sol +17 -8
- package/contracts/types/NftId.sol +8 -0
- package/contracts/types/ObjectType.sol +11 -6
- package/contracts/types/PayoutId.sol +82 -0
- package/contracts/types/Referral.sol +4 -0
- package/contracts/types/RoleId.sol +18 -11
- package/contracts/types/Seconds.sol +54 -0
- package/contracts/types/StateId.sol +7 -2
- package/contracts/types/Timestamp.sol +18 -13
- package/contracts/types/UFixed.sol +1 -0
- package/contracts/types/Version.sol +1 -0
- package/package.json +3 -3
- package/artifacts/contracts/components/BaseComponent.sol/BaseComponent.dbg.json +0 -4
- package/artifacts/contracts/components/IBaseComponent.sol/IBaseComponent.dbg.json +0 -4
- package/artifacts/contracts/components/IBaseComponent.sol/IBaseComponent.json +0 -397
- package/artifacts/contracts/experiment/cloning/Cloner.sol/Cloner.dbg.json +0 -4
- package/artifacts/contracts/experiment/cloning/Cloner.sol/Cloner.json +0 -66
- package/artifacts/contracts/experiment/cloning/Cloner.sol/Mock1.dbg.json +0 -4
- package/artifacts/contracts/experiment/cloning/Cloner.sol/Mock1.json +0 -24
- package/artifacts/contracts/experiment/cloning/Cloner.sol/Mock2.dbg.json +0 -4
- package/artifacts/contracts/experiment/cloning/Cloner.sol/Mock2.json +0 -42
- package/artifacts/contracts/experiment/errors/Require.sol/Require.dbg.json +0 -4
- package/artifacts/contracts/experiment/errors/Require.sol/Require.json +0 -105
- package/artifacts/contracts/experiment/errors/Revert.sol/Revert.dbg.json +0 -4
- package/artifacts/contracts/experiment/errors/Revert.sol/Revert.json +0 -105
- package/artifacts/contracts/experiment/inheritance/A.sol/A.dbg.json +0 -4
- package/artifacts/contracts/experiment/inheritance/A.sol/A.json +0 -128
- package/artifacts/contracts/experiment/inheritance/A.sol/AShared.dbg.json +0 -4
- package/artifacts/contracts/experiment/inheritance/A.sol/AShared.json +0 -42
- package/artifacts/contracts/experiment/inheritance/B.sol/B.dbg.json +0 -4
- package/artifacts/contracts/experiment/inheritance/B.sol/B.json +0 -76
- package/artifacts/contracts/experiment/inheritance/C.sol/C.dbg.json +0 -4
- package/artifacts/contracts/experiment/inheritance/C.sol/C.json +0 -89
- package/artifacts/contracts/experiment/inheritance/IA.sol/IA.dbg.json +0 -4
- package/artifacts/contracts/experiment/inheritance/IA.sol/IA.json +0 -128
- package/artifacts/contracts/experiment/inheritance/IA.sol/ISharedA.dbg.json +0 -4
- package/artifacts/contracts/experiment/inheritance/IB.sol/IB.dbg.json +0 -4
- package/artifacts/contracts/experiment/inheritance/IB.sol/IB.json +0 -50
- package/artifacts/contracts/experiment/inheritance/IC.sol/IC.dbg.json +0 -4
- package/artifacts/contracts/experiment/inheritance/IC.sol/IC.json +0 -63
- package/artifacts/contracts/experiment/statemachine/Dummy.sol/LifeCycleModule.dbg.json +0 -4
- package/artifacts/contracts/experiment/statemachine/Dummy.sol/LifeCycleModule.json +0 -59
- package/artifacts/contracts/experiment/statemachine/ISM.sol/ISM.dbg.json +0 -4
- package/artifacts/contracts/experiment/statemachine/ISM.sol/ISM.json +0 -124
- package/artifacts/contracts/experiment/statemachine/ISM.sol/ISMEE.dbg.json +0 -4
- package/artifacts/contracts/experiment/statemachine/ISM.sol/ISMEE.json +0 -74
- package/artifacts/contracts/experiment/statemachine/SM.sol/SM.dbg.json +0 -4
- package/artifacts/contracts/experiment/statemachine/SM.sol/SM.json +0 -124
- package/artifacts/contracts/experiment/statemachine/SimpleStateMachine.sol/SimpleStateMachine.dbg.json +0 -4
- package/artifacts/contracts/experiment/statemachine/SimpleStateMachine.sol/SimpleStateMachine.json +0 -207
- package/artifacts/contracts/experiment/types/TypeA.sol/TypeALib.dbg.json +0 -4
- package/artifacts/contracts/experiment/types/TypeA.sol/TypeALib.json +0 -10
- package/artifacts/contracts/experiment/types/TypeB.sol/TypeBLib.dbg.json +0 -4
- package/artifacts/contracts/experiment/types/TypeB.sol/TypeBLib.json +0 -10
- package/artifacts/contracts/instance/IInstanceBase.sol/IInstanceBase.dbg.json +0 -4
- package/artifacts/contracts/instance/IInstanceBase.sol/IInstanceBase.json +0 -448
- package/artifacts/contracts/instance/InstanceBase.sol/InstanceBase.dbg.json +0 -4
- package/artifacts/contracts/instance/InstanceBase.sol/InstanceBase.json +0 -763
- package/artifacts/contracts/instance/base/ComponentServiceBase.sol/ComponentServiceBase.dbg.json +0 -4
- package/artifacts/contracts/instance/base/IInstanceBase.sol/IInstanceBase.dbg.json +0 -4
- package/artifacts/contracts/instance/base/IInstanceBase.sol/IInstanceBase.json +0 -113
- package/artifacts/contracts/instance/service/ComponentOwnerService.sol/ComponentOwnerService.dbg.json +0 -4
- package/artifacts/contracts/instance/service/ComponentOwnerService.sol/ComponentOwnerService.json +0 -814
- package/artifacts/contracts/instance/service/IComponentOwnerService.sol/IComponentOwnerService.dbg.json +0 -4
- package/artifacts/contracts/shared/RegisterableUpgradable.sol/RegisterableUpgradable.dbg.json +0 -4
- package/artifacts/contracts/shared/RegisterableUpgradable.sol/RegisterableUpgradable.json +0 -442
- package/contracts/components/BaseComponent.sol +0 -159
- package/contracts/components/IBaseComponent.sol +0 -34
- package/contracts/experiment/cloning/Cloner.sol +0 -47
- package/contracts/experiment/errors/Require.sol +0 -38
- package/contracts/experiment/errors/Revert.sol +0 -44
- package/contracts/experiment/inheritance/A.sol +0 -53
- package/contracts/experiment/inheritance/B.sol +0 -28
- package/contracts/experiment/inheritance/C.sol +0 -34
- package/contracts/experiment/inheritance/IA.sol +0 -13
- package/contracts/experiment/inheritance/IB.sol +0 -10
- package/contracts/experiment/inheritance/IC.sol +0 -12
- package/contracts/experiment/statemachine/Dummy.sol +0 -27
- package/contracts/experiment/statemachine/ISM.sol +0 -25
- package/contracts/experiment/statemachine/SM.sol +0 -57
- package/contracts/experiment/statemachine/SimpleStateMachine.sol +0 -31
- package/contracts/experiment/types/TypeA.sol +0 -47
- package/contracts/experiment/types/TypeB.sol +0 -29
- package/contracts/instance/IInstanceBase.sol +0 -26
- package/contracts/instance/InstanceBase.sol +0 -41
- package/contracts/instance/base/ComponentServiceBase.sol +0 -82
- package/contracts/instance/base/IInstanceBase.sol +0 -23
- package/contracts/instance/service/ComponentOwnerService.sol +0 -315
- package/contracts/instance/service/IComponentOwnerService.sol +0 -20
- package/contracts/shared/RegisterableUpgradable.sol +0 -16
@@ -1,296 +1,520 @@
|
|
1
1
|
// SPDX-License-Identifier: Apache-2.0
|
2
2
|
pragma solidity ^0.8.20;
|
3
3
|
|
4
|
+
import {AccessManagedUpgradeable} from "@openzeppelin/contracts-upgradeable/access/manager/AccessManagedUpgradeable.sol";
|
4
5
|
import {EnumerableSet} from "@openzeppelin/contracts/utils/structs/EnumerableSet.sol";
|
5
6
|
import {ShortString, ShortStrings} from "@openzeppelin/contracts/utils/ShortStrings.sol";
|
6
|
-
import {AccessManagedUpgradeable} from "@openzeppelin/contracts-upgradeable/access/manager/AccessManagedUpgradeable.sol";
|
7
7
|
|
8
|
-
import {
|
9
|
-
import {RoleId, RoleIdLib } from "../types/RoleId.sol";
|
8
|
+
import {RoleId, RoleIdLib, ADMIN_ROLE, PUBLIC_ROLE, INSTANCE_SERVICE_ROLE, INSTANCE_OWNER_ROLE, INSTANCE_ROLE} from "../types/RoleId.sol";
|
10
9
|
import {TimestampLib} from "../types/Timestamp.sol";
|
10
|
+
import {NftId} from "../types/NftId.sol";
|
11
|
+
|
12
|
+
import {AccessManagerUpgradeableInitializeable} from "./AccessManagerUpgradeableInitializeable.sol";
|
13
|
+
|
14
|
+
import {IRegistry} from "../registry/IRegistry.sol";
|
15
|
+
|
16
|
+
import {IInstance} from "./IInstance.sol";
|
11
17
|
import {IAccess} from "./module/IAccess.sol";
|
12
18
|
|
13
19
|
contract InstanceAccessManager is
|
14
20
|
AccessManagedUpgradeable
|
15
21
|
{
|
22
|
+
event LogRoleCreation(RoleId roleId, ShortString name, IAccess.Type rtype);
|
23
|
+
event LogTargetCreation(address target, ShortString name, IAccess.Type ttype, bool isLocked);
|
24
|
+
|
16
25
|
using RoleIdLib for RoleId;
|
17
26
|
|
18
27
|
string public constant ADMIN_ROLE_NAME = "AdminRole";
|
19
28
|
string public constant PUBLIC_ROLE_NAME = "PublicRole";
|
29
|
+
string public constant INSTANCE_ROLE_NAME = "InstanceRole";
|
30
|
+
string public constant INSTANCE_OWNER_ROLE_NAME = "InstanceOwnerRole";
|
20
31
|
|
21
|
-
uint64 public constant CUSTOM_ROLE_ID_MIN = 10000;
|
32
|
+
uint64 public constant CUSTOM_ROLE_ID_MIN = 10000; // MUST be even
|
22
33
|
uint32 public constant EXECUTION_DELAY = 0;
|
23
34
|
|
24
35
|
// role specific state
|
25
|
-
mapping(RoleId roleId => IAccess.RoleInfo info) internal
|
36
|
+
mapping(RoleId roleId => IAccess.RoleInfo info) internal _roleInfo;
|
26
37
|
mapping(RoleId roleId => EnumerableSet.AddressSet roleMembers) internal _roleMembers;
|
27
|
-
mapping(ShortString name => RoleId roleId) internal
|
28
|
-
RoleId [] internal
|
38
|
+
mapping(ShortString name => RoleId roleId) internal _roleIdForName;
|
39
|
+
RoleId [] internal _roleIds;
|
40
|
+
uint64 _idNext;
|
29
41
|
|
30
42
|
// target specific state
|
31
|
-
mapping(address target => IAccess.TargetInfo info) internal
|
32
|
-
mapping(ShortString name => address target) internal
|
43
|
+
mapping(address target => IAccess.TargetInfo info) internal _targetInfo;
|
44
|
+
mapping(ShortString name => address target) internal _targetAddressForName;
|
33
45
|
address [] internal _targets;
|
34
46
|
|
35
47
|
AccessManagerUpgradeableInitializeable internal _accessManager;
|
48
|
+
IRegistry internal _registry;
|
49
|
+
|
50
|
+
modifier restrictedToRoleAdmin(RoleId roleId) {
|
51
|
+
RoleId admin = getRoleAdmin(roleId);
|
52
|
+
(bool inRole, uint32 executionDelay) = _accessManager.hasRole(admin.toInt(), _msgSender());
|
53
|
+
assert(executionDelay == 0); // to be sure no delayed execution functionality is used
|
54
|
+
if (!inRole) {
|
55
|
+
revert IAccess.ErrorIAccessCallerIsNotRoleAdmin(_msgSender(), roleId);
|
56
|
+
}
|
57
|
+
_;
|
58
|
+
}
|
36
59
|
|
37
|
-
|
60
|
+
// instance owner is granted upon instance nft minting in callback function
|
61
|
+
function initialize(address instanceAddress) external initializer
|
38
62
|
{
|
39
|
-
|
40
|
-
|
41
|
-
|
42
|
-
|
43
|
-
|
63
|
+
IInstance instance = IInstance(instanceAddress);
|
64
|
+
IRegistry registry = instance.getRegistry();
|
65
|
+
address authority = instance.authority();
|
66
|
+
|
67
|
+
__AccessManaged_init(authority);
|
44
68
|
|
45
|
-
|
69
|
+
_accessManager = AccessManagerUpgradeableInitializeable(authority);
|
70
|
+
_registry = registry;
|
71
|
+
_idNext = CUSTOM_ROLE_ID_MIN;
|
46
72
|
|
47
|
-
_createRole(
|
48
|
-
_createRole(
|
73
|
+
_createRole(ADMIN_ROLE(), ADMIN_ROLE_NAME, IAccess.Type.Core);
|
74
|
+
_createRole(PUBLIC_ROLE(), PUBLIC_ROLE_NAME, IAccess.Type.Core);
|
75
|
+
_createRole(INSTANCE_ROLE(), INSTANCE_ROLE_NAME, IAccess.Type.Core);
|
76
|
+
_createRole(INSTANCE_OWNER_ROLE(), INSTANCE_OWNER_ROLE_NAME, IAccess.Type.Gif);
|
77
|
+
|
78
|
+
// assume `this` is already a member of ADMIN_ROLE
|
79
|
+
EnumerableSet.add(_roleMembers[ADMIN_ROLE()], address(this));
|
80
|
+
|
81
|
+
grantRole(INSTANCE_ROLE(), instanceAddress);
|
82
|
+
setRoleAdmin(INSTANCE_OWNER_ROLE(), INSTANCE_ROLE());
|
49
83
|
}
|
50
84
|
|
51
85
|
//--- Role ------------------------------------------------------//
|
52
|
-
|
53
|
-
|
86
|
+
// ADMIN_ROLE
|
87
|
+
// assume all core roles are know at deployment time
|
88
|
+
// assume core roles are set and granted only during instance cloning
|
89
|
+
// assume core roles are never revoked -> core roles admin is never active after intialization
|
90
|
+
function createCoreRole(RoleId roleId, string memory name)
|
91
|
+
external
|
92
|
+
restricted()
|
93
|
+
{
|
94
|
+
_createRole(roleId, name, IAccess.Type.Core);
|
54
95
|
}
|
55
|
-
|
56
|
-
|
57
|
-
|
96
|
+
// ADMIN_ROLE
|
97
|
+
// assume gif roles can be revoked
|
98
|
+
// assume admin is INSTANCE_OWNER_ROLE or INSTANCE_ROLE
|
99
|
+
function createGifRole(RoleId roleId, string memory name, RoleId admin)
|
100
|
+
external
|
101
|
+
restricted()
|
102
|
+
{
|
103
|
+
_createRole(roleId, name, IAccess.Type.Gif);
|
104
|
+
setRoleAdmin(roleId, admin);
|
58
105
|
}
|
59
106
|
|
60
|
-
|
61
|
-
|
62
|
-
|
63
|
-
|
107
|
+
// INSTANCE_OWNER_ROLE
|
108
|
+
function createRole(string memory roleName, string memory adminName)
|
109
|
+
external
|
110
|
+
restricted()
|
111
|
+
returns(RoleId roleId, RoleId admin)
|
112
|
+
{
|
113
|
+
(roleId, admin) = _getNextCustomRoleId();
|
64
114
|
|
65
|
-
|
66
|
-
|
67
|
-
}
|
115
|
+
_createRole(roleId, roleName, IAccess.Type.Custom);
|
116
|
+
_createRole(admin, adminName, IAccess.Type.Custom);
|
68
117
|
|
69
|
-
|
70
|
-
|
118
|
+
// TODO works without this -> why?
|
119
|
+
setRoleAdmin(roleId, admin);
|
120
|
+
setRoleAdmin(admin, INSTANCE_OWNER_ROLE());
|
71
121
|
}
|
72
122
|
|
73
|
-
|
123
|
+
// ADMIN_ROLE
|
124
|
+
// assume used by instance service only during instance cloning
|
125
|
+
// assume used only by this.createRole(), this.createGifRole() afterwards
|
126
|
+
function setRoleAdmin(RoleId roleId, RoleId admin)
|
127
|
+
public
|
128
|
+
restricted()
|
129
|
+
{
|
74
130
|
if (!roleExists(roleId)) {
|
75
|
-
revert IAccess.
|
131
|
+
revert IAccess.ErrorIAccessRoleIdDoesNotExist(roleId);
|
76
132
|
}
|
77
133
|
|
78
|
-
if
|
79
|
-
revert IAccess.
|
134
|
+
if(_roleInfo[roleId].rtype == IAccess.Type.Core) {
|
135
|
+
revert IAccess.ErrorIAccessRoleTypeInvalid(roleId, IAccess.Type.Core);
|
80
136
|
}
|
81
137
|
|
82
|
-
if (!
|
83
|
-
|
84
|
-
|
85
|
-
return true;
|
86
|
-
}
|
138
|
+
if (!roleExists(admin)) {
|
139
|
+
revert IAccess.ErrorIAccessRoleIdDoesNotExist(admin);
|
140
|
+
}
|
87
141
|
|
88
|
-
|
142
|
+
_roleInfo[roleId].admin = admin;
|
89
143
|
}
|
90
144
|
|
91
|
-
function
|
145
|
+
function grantRole(RoleId roleId, address member)
|
146
|
+
public
|
147
|
+
restrictedToRoleAdmin(roleId)
|
148
|
+
returns (bool granted)
|
149
|
+
{
|
92
150
|
if (!roleExists(roleId)) {
|
93
|
-
revert IAccess.
|
94
|
-
}
|
95
|
-
|
96
|
-
if (EnumerableSet.contains(_roleMembers[roleId], member)) {
|
97
|
-
_accessManager.revokeRole(roleId.toInt(), member);
|
98
|
-
EnumerableSet.remove(_roleMembers[roleId], member);
|
99
|
-
return true;
|
151
|
+
revert IAccess.ErrorIAccessRoleIdDoesNotExist(roleId);
|
100
152
|
}
|
101
153
|
|
102
|
-
|
154
|
+
granted = EnumerableSet.add(_roleMembers[roleId], member);
|
155
|
+
if(granted) {
|
156
|
+
_accessManager.grantRole(roleId.toInt(), member, EXECUTION_DELAY);
|
157
|
+
}
|
103
158
|
}
|
104
159
|
|
105
|
-
|
106
|
-
|
107
|
-
|
108
|
-
|
160
|
+
function revokeRole(RoleId roleId, address member)
|
161
|
+
external
|
162
|
+
restrictedToRoleAdmin(roleId)
|
163
|
+
returns (bool)
|
164
|
+
{
|
165
|
+
return _revokeRole(roleId, member);
|
166
|
+
}
|
109
167
|
|
168
|
+
// INSTANCE_OWNER_ROLE
|
169
|
+
// IMPORTANT: unbounded function, revoke all or revert
|
170
|
+
// Instance owner role decides what to do in case of custom role admin bening revoked, e.g.:
|
171
|
+
// 1) revoke custom role from ALL members
|
172
|
+
// 2) revoke custom role admin from ALL members
|
173
|
+
// 3) 1) + 2)
|
174
|
+
// 4) revoke only 1 member of custom role admin
|
175
|
+
function revokeRoleAllMembers(RoleId roleId)
|
176
|
+
external
|
177
|
+
restrictedToRoleAdmin(roleId)
|
178
|
+
returns (bool revoked)
|
179
|
+
{
|
110
180
|
if (!roleExists(roleId)) {
|
111
|
-
revert IAccess.
|
181
|
+
revert IAccess.ErrorIAccessRoleIdDoesNotExist(roleId);
|
112
182
|
}
|
113
183
|
|
114
|
-
|
115
|
-
|
116
|
-
|
184
|
+
uint memberCount = EnumerableSet.length(_roleMembers[roleId]);
|
185
|
+
for(uint memberIdx = 0; memberIdx < memberCount; memberIdx++)
|
186
|
+
{
|
187
|
+
address member = EnumerableSet.at(_roleMembers[roleId], memberIdx);
|
117
188
|
EnumerableSet.remove(_roleMembers[roleId], member);
|
118
|
-
|
189
|
+
_accessManager.revokeRole(roleId.toInt(), member);
|
190
|
+
}
|
191
|
+
}
|
192
|
+
|
193
|
+
/// @dev not restricted function by intention
|
194
|
+
/// the restriction to role members is already enforced by the call to the access manager
|
195
|
+
function renounceRole(RoleId roleId)
|
196
|
+
external
|
197
|
+
returns (bool)
|
198
|
+
{
|
199
|
+
IAccess.Type rtype = _roleInfo[roleId].rtype;
|
200
|
+
if(rtype == IAccess.Type.Core || rtype == IAccess.Type.Gif) {
|
201
|
+
revert IAccess.ErrorIAccessRoleTypeInvalid(roleId, rtype);
|
119
202
|
}
|
120
203
|
|
121
|
-
|
204
|
+
address member = msg.sender;
|
205
|
+
// cannot use accessManger.renounce as it directly checks against msg.sender
|
206
|
+
return _revokeRole(roleId, member);
|
122
207
|
}
|
123
208
|
|
124
|
-
function
|
125
|
-
return
|
209
|
+
function roleExists(RoleId roleId) public view returns (bool exists) {
|
210
|
+
return _roleInfo[roleId].createdAt.gtz();
|
211
|
+
}
|
212
|
+
// TODO returns ADMIN_ROLE id for non existent roleId
|
213
|
+
function getRoleAdmin(RoleId roleId) public view returns(RoleId admin) {
|
214
|
+
return _roleInfo[roleId].admin;
|
215
|
+
}
|
216
|
+
|
217
|
+
function getRoleInfo(RoleId roleId) external view returns (IAccess.RoleInfo memory info) {
|
218
|
+
return _roleInfo[roleId];
|
219
|
+
}
|
220
|
+
|
221
|
+
function roleMembers(RoleId roleId) public view returns (uint256 numberOfMembers) {
|
222
|
+
return EnumerableSet.length(_roleMembers[roleId]);
|
126
223
|
}
|
127
224
|
|
128
225
|
function getRoleId(uint256 idx) external view returns (RoleId roleId) {
|
129
|
-
return
|
226
|
+
return _roleIds[idx];
|
130
227
|
}
|
131
228
|
|
229
|
+
// TODO now: for non existent name returns ADMIN_ROLE id
|
132
230
|
function getRoleIdForName(string memory name) external view returns (RoleId roleId) {
|
133
|
-
return
|
231
|
+
return _roleIdForName[ShortStrings.toShortString(name)];
|
134
232
|
}
|
135
233
|
|
136
|
-
function
|
137
|
-
return
|
234
|
+
function roleMember(RoleId roleId, uint256 idx) external view returns (address member) {
|
235
|
+
return EnumerableSet.at(_roleMembers[roleId], idx);
|
138
236
|
}
|
139
237
|
|
140
238
|
function hasRole(RoleId roleId, address account) external view returns (bool accountHasRole) {
|
141
239
|
(accountHasRole, ) = _accessManager.hasRole(roleId.toInt(), account);
|
142
240
|
}
|
143
241
|
|
144
|
-
function
|
145
|
-
return
|
146
|
-
}
|
147
|
-
|
148
|
-
function getRoleMember(RoleId roleId, uint256 idx) external view returns (address roleMember) {
|
149
|
-
return EnumerableSet.at(_roleMembers[roleId], idx);
|
242
|
+
function roles() external view returns (uint256 numberOfRoles) {
|
243
|
+
return _roleIds.length;
|
150
244
|
}
|
151
245
|
|
152
246
|
//--- Target ------------------------------------------------------//
|
153
|
-
|
154
|
-
|
247
|
+
// ADMIN_ROLE
|
248
|
+
// assume some core targets are registred (instance) while others are not (instance accesss manager, instance reader, bundle manager)
|
249
|
+
function createCoreTarget(address target, string memory name) external restricted() {
|
250
|
+
_createTarget(target, name, IAccess.Type.Core);
|
155
251
|
}
|
252
|
+
// INSTANCE_SERVICE_ROLE
|
253
|
+
// assume gif target is registered and belongs to the same instance as instance access manager
|
254
|
+
function createGifTarget(address target, string memory name) external restricted()
|
255
|
+
{
|
256
|
+
if(!_registry.isRegistered(target)) {
|
257
|
+
revert IAccess.ErrorIAccessTargetNotRegistered(target);
|
258
|
+
}
|
156
259
|
|
157
|
-
|
158
|
-
|
260
|
+
_createTarget(target, name, IAccess.Type.Gif);
|
261
|
+
}
|
262
|
+
// INSTANCE_OWNER_ROLE
|
263
|
+
// assume custom target.authority() is constant -> target MUST not be used with different instance access manager
|
264
|
+
// assume custom target can not be registered as component -> each service which is doing component registration MUST register a gif target
|
265
|
+
// assume custom target can not be registered as instance or service -> why?
|
266
|
+
// TODO check target associated with instance owner or instance or instance components or components helpers
|
267
|
+
function createTarget(address target, string memory name) external restricted()
|
268
|
+
{
|
269
|
+
_createTarget(target, name, IAccess.Type.Custom);
|
159
270
|
}
|
160
271
|
|
161
|
-
|
162
|
-
|
163
|
-
|
164
|
-
|
165
|
-
|
272
|
+
// INSTANCE_SERVICE_ROLE
|
273
|
+
// IMPORTANT: instance access manager MUST be of Core type -> otherwise will be locked forever
|
274
|
+
function setTargetLocked(address target, bool locked)
|
275
|
+
external
|
276
|
+
restricted()
|
277
|
+
{
|
278
|
+
IAccess.Type targetType = _targetInfo[target].ttype;
|
279
|
+
if(target == address(0) || targetType == IAccess.Type.NotInitialized) {
|
280
|
+
revert IAccess.ErrorIAccessTargetDoesNotExist(target);
|
281
|
+
}
|
282
|
+
|
283
|
+
if(targetType == IAccess.Type.Core) {
|
284
|
+
revert IAccess.ErrorIAccessTargetTypeInvalid(target, targetType);
|
166
285
|
}
|
167
286
|
|
168
|
-
|
287
|
+
// TODO isLocked is redundant but makes getTargetInfo() faster
|
288
|
+
_targetInfo[target].isLocked = locked;
|
169
289
|
_accessManager.setTargetClosed(target, locked);
|
170
290
|
}
|
171
291
|
|
172
|
-
|
173
|
-
|
292
|
+
// allowed combinations of roles and targets:
|
293
|
+
//1) set core role for core target
|
294
|
+
//2) set gif role for gif target
|
295
|
+
//3) set custom role for gif target
|
296
|
+
//4) set custom role for custom target
|
297
|
+
|
298
|
+
// ADMIN_ROLE if used only during initialization, works with:
|
299
|
+
// any roles for any targets
|
300
|
+
// INSTANCE_SERVICE_ROLE if used not only during initilization, works with:
|
301
|
+
// core roles for core targets
|
302
|
+
// gif roles for gif targets
|
303
|
+
function setCoreTargetFunctionRole(
|
304
|
+
string memory targetName,
|
305
|
+
bytes4[] calldata selectors,
|
306
|
+
RoleId roleId
|
307
|
+
)
|
308
|
+
public
|
309
|
+
virtual
|
310
|
+
restricted()
|
311
|
+
{
|
312
|
+
ShortString nameShort = ShortStrings.toShortString(targetName);
|
313
|
+
address target = _targetAddressForName[nameShort];
|
314
|
+
|
315
|
+
// not custom target
|
316
|
+
if(_targetInfo[target].ttype == IAccess.Type.Custom) {
|
317
|
+
revert IAccess.ErrorIAccessTargetTypeInvalid(target, IAccess.Type.Custom);
|
318
|
+
}
|
319
|
+
|
320
|
+
// not custom role
|
321
|
+
if(_roleInfo[roleId].rtype == IAccess.Type.Custom) {
|
322
|
+
revert IAccess.ErrorIAccessRoleTypeInvalid(roleId, IAccess.Type.Custom);
|
323
|
+
}
|
324
|
+
|
325
|
+
_setTargetFunctionRole(target, nameShort, selectors, roleId);
|
174
326
|
}
|
175
327
|
|
176
|
-
|
328
|
+
// INSTANCE_OWNER_ROLE
|
329
|
+
// gif role for gif target
|
330
|
+
// gif role for custom target
|
331
|
+
// custom role for gif target
|
332
|
+
// custom role for custom target
|
333
|
+
// TODO instance owner can mess with gif target (component) -> e.g. set custom role for function intendent to work with gif role
|
334
|
+
function setTargetFunctionRole(
|
335
|
+
string memory targetName,
|
336
|
+
bytes4[] calldata selectors,
|
337
|
+
RoleId roleId
|
338
|
+
)
|
339
|
+
public
|
340
|
+
virtual
|
341
|
+
restricted()
|
342
|
+
{
|
343
|
+
ShortString nameShort = ShortStrings.toShortString(targetName);
|
344
|
+
address target = _targetAddressForName[nameShort];
|
177
345
|
|
178
|
-
|
179
|
-
if
|
180
|
-
|
346
|
+
// not core target
|
347
|
+
if(_targetInfo[target].ttype == IAccess.Type.Core) {
|
348
|
+
revert IAccess.ErrorIAccessTargetTypeInvalid(target, IAccess.Type.Core);
|
181
349
|
}
|
182
350
|
|
183
|
-
|
184
|
-
|
185
|
-
|
186
|
-
|
187
|
-
|
188
|
-
|
351
|
+
// not core role
|
352
|
+
if(_roleInfo[roleId].rtype == IAccess.Type.Core) {
|
353
|
+
revert IAccess.ErrorIAccessRoleTypeInvalid(roleId, IAccess.Type.Core);
|
354
|
+
}
|
355
|
+
|
356
|
+
_setTargetFunctionRole(target, nameShort, selectors, roleId);
|
357
|
+
}
|
358
|
+
|
359
|
+
function getTargetAddress(string memory targetName) public view returns(address targetAddress) {
|
360
|
+
ShortString nameShort = ShortStrings.toShortString(targetName);
|
361
|
+
return _targetAddressForName[nameShort];
|
362
|
+
}
|
363
|
+
|
364
|
+
function isTargetLocked(address target) public view returns (bool locked) {
|
365
|
+
return _accessManager.isTargetClosed(target);
|
366
|
+
}
|
367
|
+
|
368
|
+
function targetExists(address target) public view returns (bool exists) {
|
369
|
+
return _targetInfo[target].createdAt.gtz();
|
370
|
+
}
|
189
371
|
|
190
|
-
|
191
|
-
|
192
|
-
_roles.push(roleId);
|
372
|
+
function getTargetInfo(address target) public view returns (IAccess.TargetInfo memory) {
|
373
|
+
return _targetInfo[target];
|
193
374
|
}
|
194
375
|
|
195
|
-
|
196
|
-
|
197
|
-
string memory name,
|
198
|
-
bool isCustom
|
199
|
-
)
|
376
|
+
//--- Role internal view/pure functions --------------------------------------//
|
377
|
+
function _createRole(RoleId roleId, string memory roleName, IAccess.Type rtype)
|
200
378
|
internal
|
201
|
-
view
|
202
|
-
returns (IAccess.RoleInfo memory existingRole)
|
203
379
|
{
|
204
|
-
|
205
|
-
|
206
|
-
|
207
|
-
|
380
|
+
ShortString name = ShortStrings.toShortString(roleName);
|
381
|
+
_validateRole(roleId, name, rtype);
|
382
|
+
|
383
|
+
if(roleExists(roleId)) {
|
384
|
+
revert IAccess.ErrorIAccessRoleIdExists(roleId);
|
208
385
|
}
|
209
386
|
|
210
|
-
|
211
|
-
|
387
|
+
if (_roleIdForName[name].gtz()) {
|
388
|
+
revert IAccess.ErrorIAccessRoleNameExists(roleId, _roleIdForName[name], name);
|
389
|
+
}
|
212
390
|
|
213
|
-
|
214
|
-
|
391
|
+
_roleInfo[roleId] = IAccess.RoleInfo(
|
392
|
+
name,
|
393
|
+
rtype,
|
394
|
+
ADMIN_ROLE(),
|
395
|
+
TimestampLib.blockTimestamp(),
|
396
|
+
TimestampLib.blockTimestamp()
|
397
|
+
);
|
398
|
+
_roleIdForName[name] = roleId;
|
399
|
+
_roleIds.push(roleId);
|
400
|
+
|
401
|
+
emit LogRoleCreation(roleId, name, rtype);
|
402
|
+
}
|
403
|
+
|
404
|
+
function _validateRole(RoleId roleId, ShortString name, IAccess.Type rtype)
|
405
|
+
internal
|
406
|
+
view
|
407
|
+
{
|
408
|
+
uint roleIdInt = roleId.toInt();
|
409
|
+
if(rtype == IAccess.Type.Custom && roleIdInt < CUSTOM_ROLE_ID_MIN) {
|
410
|
+
revert IAccess.ErrorIAccessRoleIdTooSmall(roleId);
|
215
411
|
}
|
216
412
|
|
217
|
-
if
|
218
|
-
|
219
|
-
|
220
|
-
|
413
|
+
if(
|
414
|
+
rtype != IAccess.Type.Custom &&
|
415
|
+
roleIdInt >= CUSTOM_ROLE_ID_MIN &&
|
416
|
+
roleIdInt != PUBLIC_ROLE().toInt())
|
417
|
+
{
|
418
|
+
revert IAccess.ErrorIAccessRoleIdTooBig(roleId);
|
221
419
|
}
|
222
420
|
|
223
421
|
// role name checks
|
224
|
-
|
225
|
-
if (ShortStrings.byteLength(nameShort) == 0) {
|
422
|
+
if (ShortStrings.byteLength(name) == 0) {
|
226
423
|
revert IAccess.ErrorIAccessRoleNameEmpty(roleId);
|
227
424
|
}
|
425
|
+
}
|
228
426
|
|
229
|
-
|
230
|
-
|
427
|
+
function _revokeRole(RoleId roleId, address member)
|
428
|
+
internal
|
429
|
+
returns(bool revoked)
|
430
|
+
{
|
431
|
+
if (!roleExists(roleId)) {
|
432
|
+
revert IAccess.ErrorIAccessRoleIdDoesNotExist(roleId);
|
231
433
|
}
|
232
|
-
}
|
233
434
|
|
234
|
-
|
235
|
-
if
|
236
|
-
|
435
|
+
revoked = EnumerableSet.remove(_roleMembers[roleId], member);
|
436
|
+
if(revoked) {
|
437
|
+
_accessManager.revokeRole(roleId.toInt(), member);
|
237
438
|
}
|
439
|
+
}
|
440
|
+
|
441
|
+
function _getNextCustomRoleId()
|
442
|
+
internal
|
443
|
+
returns(RoleId roleId, RoleId admin)
|
444
|
+
{
|
445
|
+
uint64 roleIdInt = _idNext;
|
446
|
+
uint64 adminInt = roleIdInt + 1;
|
447
|
+
|
448
|
+
_idNext = roleIdInt + 2;
|
238
449
|
|
239
|
-
|
240
|
-
|
450
|
+
roleId = RoleIdLib.toRoleId(roleIdInt);
|
451
|
+
admin = RoleIdLib.toRoleId(adminInt);
|
452
|
+
}
|
453
|
+
|
454
|
+
//--- Target internal view/pure functions --------------------------------------//
|
455
|
+
function _createTarget(address target, string memory targetName, IAccess.Type ttype)
|
456
|
+
internal
|
457
|
+
{
|
458
|
+
ShortString name = ShortStrings.toShortString(targetName);
|
459
|
+
_validateTarget(target, name, ttype);
|
460
|
+
|
461
|
+
if (_targetInfo[target].createdAt.gtz()) {
|
462
|
+
revert IAccess.ErrorIAccessTargetExists(target, _targetInfo[target].name);
|
241
463
|
}
|
242
|
-
|
243
|
-
|
464
|
+
|
465
|
+
if (_targetAddressForName[name] != address(0)) {
|
466
|
+
revert IAccess.ErrorIAccessTargetNameExists(
|
467
|
+
target,
|
468
|
+
_targetAddressForName[name],
|
469
|
+
name);
|
244
470
|
}
|
245
471
|
|
246
|
-
|
247
|
-
|
248
|
-
|
249
|
-
|
472
|
+
bool isLocked = _accessManager.isTargetClosed(target);// sync with state in access manager
|
473
|
+
_targetInfo[target] = IAccess.TargetInfo(
|
474
|
+
name,
|
475
|
+
ttype,
|
476
|
+
isLocked,
|
250
477
|
TimestampLib.blockTimestamp(),
|
251
|
-
TimestampLib.blockTimestamp()
|
252
|
-
|
253
|
-
|
254
|
-
_targetForName[info.name] = target;
|
478
|
+
TimestampLib.blockTimestamp()
|
479
|
+
);
|
480
|
+
_targetAddressForName[name] = target;
|
255
481
|
_targets.push(target);
|
256
|
-
}
|
257
482
|
|
258
|
-
|
259
|
-
// TODO: implement
|
483
|
+
emit LogTargetCreation(target, name, ttype, isLocked);
|
260
484
|
}
|
261
485
|
|
262
|
-
function
|
263
|
-
|
264
|
-
|
265
|
-
|
266
|
-
|
267
|
-
|
486
|
+
function _validateTarget(address target, ShortString name, IAccess.Type ttype)
|
487
|
+
internal
|
488
|
+
view
|
489
|
+
{
|
490
|
+
address targetAuthority = AccessManagedUpgradeable(target).authority();
|
491
|
+
if(targetAuthority != authority()) {
|
492
|
+
revert IAccess.ErrorIAccessTargetAuthorityInvalid(target, targetAuthority);
|
493
|
+
}
|
494
|
+
|
495
|
+
if (ShortStrings.byteLength(name) == 0) {
|
496
|
+
revert IAccess.ErrorIAccessTargetNameEmpty(target);
|
497
|
+
}
|
268
498
|
}
|
269
499
|
|
270
|
-
function
|
271
|
-
|
500
|
+
function _setTargetFunctionRole(
|
501
|
+
address target,
|
502
|
+
ShortString name,
|
272
503
|
bytes4[] calldata selectors,
|
273
504
|
RoleId roleId
|
274
|
-
)
|
275
|
-
|
276
|
-
|
277
|
-
_accessManager.setTargetFunctionRole(target, selectors, roleIdInt);
|
278
|
-
}
|
279
|
-
|
280
|
-
function getAccessManager() public restricted() returns (AccessManagerUpgradeableInitializeable) {
|
281
|
-
return _accessManager;
|
282
|
-
}
|
283
|
-
|
284
|
-
function setTargetClosed(string memory targetName, bool closed) public restricted() {
|
285
|
-
address target = _targetForName[ShortStrings.toShortString(targetName)];
|
505
|
+
)
|
506
|
+
internal
|
507
|
+
{
|
286
508
|
if (target == address(0)) {
|
287
|
-
revert IAccess.
|
509
|
+
revert IAccess.ErrorIAccessTargetDoesNotExist(target);
|
288
510
|
}
|
289
|
-
_accessManager.setTargetClosed(target, closed);
|
290
|
-
}
|
291
511
|
|
292
|
-
|
293
|
-
|
512
|
+
if (!roleExists(roleId)) {
|
513
|
+
revert IAccess.ErrorIAccessRoleIdDoesNotExist(roleId);
|
514
|
+
}
|
515
|
+
|
516
|
+
uint64 roleIdInt = RoleId.unwrap(roleId);
|
517
|
+
_accessManager.setTargetFunctionRole(target, selectors, roleIdInt);
|
294
518
|
}
|
295
519
|
|
296
520
|
function canCall(
|