GitBross Home Explore Help
Register Sign In
sol_Bo8des9o
/
openzeppelin-contracts
1
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Tree: 6383299d71
Branches Tags
openzeppelin-co...
/
test
/
access
/
manager
/
AccessManager.behavior.js

AccessManager.behavior.js 7.5 KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212 
  1. const { mine } = require('@nomicfoundation/hardhat-network-helpers');
    2. 

  2. const { expectRevertCustomError } = require('../../helpers/customError');
    3. 

  3. const {
    4. 

  4.   LIKE_COMMON_IS_EXECUTING,
    5. 

  5.   LIKE_COMMON_GET_ACCESS,
    6. 

  6.   LIKE_COMMON_SCHEDULABLE,
    7. 

  7.   testAsSchedulableOperation,
    8. 

  8.   testAsRestrictedOperation,
    9. 

  9.   testAsDelayedOperation,
    10. 

  10.   testAsCanCall,
    11. 

  11.   testAsHasRole,
    12. 

  12. } = require('./AccessManager.predicate');
    13. 

  13. 

  14. // ============ ADMIN OPERATION ============
    15. 

  15. 

  16. /**
    17. 

  17.  * @requires this.{manager,roles,calldata,role}
    18. 

  18.  */
    19. 

  19. function shouldBehaveLikeDelayedAdminOperation() {
    20. 

  20.   const getAccessPath = LIKE_COMMON_GET_ACCESS;
    21. 

  21.   getAccessPath.requiredRoleIsGranted.roleGrantingIsDelayed.callerHasAnExecutionDelay.afterGrantDelay = function () {
    22. 

  22.     beforeEach('consume previously set grant delay', async function () {
    23. 

  23.       // Consume previously set delay
    24. 

  24.       await mine();
    25. 

  25.     });
    26. 

  26.     testAsDelayedOperation();
    27. 

  27.   };
    28. 

  28.   getAccessPath.requiredRoleIsGranted.roleGrantingIsNotDelayed.callerHasAnExecutionDelay = function () {
    29. 

  29.     beforeEach('set execution delay', async function () {
    30. 

  30.       this.scheduleIn = this.executionDelay; // For testAsDelayedOperation
    31. 

  31.     });
    32. 

  32.     testAsSchedulableOperation(LIKE_COMMON_SCHEDULABLE);
    33. 

  33.   };
    34. 

  34. 

  35.   beforeEach('set target as manager', function () {
    36. 

  36.     this.target = this.manager;
    37. 

  37.   });
    38. 

  38. 

  39.   testAsRestrictedOperation({
    40. 

  40.     callerIsTheManager: LIKE_COMMON_IS_EXECUTING,
    41. 

  41.     callerIsNotTheManager() {
    42. 

  42.       testAsHasRole({
    43. 

  43.         publicRoleIsRequired() {
    44. 

  44.           it('reverts as AccessManagerUnauthorizedAccount', async function () {
    45. 

  45.             await expectRevertCustomError(
    46. 

  46.               web3.eth.sendTransaction({ to: this.target.address, data: this.calldata, from: this.caller }),
    47. 

  47.               'AccessManagerUnauthorizedAccount',
    48. 

  48.               [
    49. 

  49.                 this.caller,
    50. 

  50.                 this.roles.ADMIN.id, // Although PUBLIC is required, target function role doesn't apply to admin ops
    51. 

  51.               ],
    52. 

  52.             );
    53. 

  53.           });
    54. 

  54.         },
    55. 

  55.         specificRoleIsRequired: getAccessPath,
    56. 

  56.       });
    57. 

  57.     },
    58. 

  58.   });
    59. 

  59. }
    60. 

  60. 

  61. /**
    62. 

  62.  * @requires this.{manager,roles,calldata,role}
    63. 

  63.  */
    64. 

  64. function shouldBehaveLikeNotDelayedAdminOperation() {
    65. 

  65.   const getAccessPath = LIKE_COMMON_GET_ACCESS;
    66. 

  66.   getAccessPath.requiredRoleIsGranted.roleGrantingIsDelayed.callerHasAnExecutionDelay.afterGrantDelay = function () {
    67. 

  67.     beforeEach('set execution delay', async function () {
    68. 

  68.       await mine();
    69. 

  69.       this.scheduleIn = this.executionDelay; // For testAsSchedulableOperation
    70. 

  70.     });
    71. 

  71.     testAsSchedulableOperation(LIKE_COMMON_SCHEDULABLE);
    72. 

  72.   };
    73. 

  73.   getAccessPath.requiredRoleIsGranted.roleGrantingIsNotDelayed.callerHasAnExecutionDelay = function () {
    74. 

  74.     beforeEach('set execution delay', async function () {
    75. 

  75.       this.scheduleIn = this.executionDelay; // For testAsSchedulableOperation
    76. 

  76.     });
    77. 

  77.     testAsSchedulableOperation(LIKE_COMMON_SCHEDULABLE);
    78. 

  78.   };
    79. 

  79. 

  80.   beforeEach('set target as manager', function () {
    81. 

  81.     this.target = this.manager;
    82. 

  82.   });
    83. 

  83. 

  84.   testAsRestrictedOperation({
    85. 

  85.     callerIsTheManager: LIKE_COMMON_IS_EXECUTING,
    86. 

  86.     callerIsNotTheManager() {
    87. 

  87.       testAsHasRole({
    88. 

  88.         publicRoleIsRequired() {
    89. 

  89.           it('reverts as AccessManagerUnauthorizedAccount', async function () {
    90. 

  90.             await expectRevertCustomError(
    91. 

  91.               web3.eth.sendTransaction({ to: this.target.address, data: this.calldata, from: this.caller }),
    92. 

  92.               'AccessManagerUnauthorizedAccount',
    93. 

  93.               [this.caller, this.roles.ADMIN.id], // Although PUBLIC_ROLE is required, admin ops are not subject to target function roles
    94. 

  94.             );
    95. 

  95.           });
    96. 

  96.         },
    97. 

  97.         specificRoleIsRequired: getAccessPath,
    98. 

  98.       });
    99. 

  99.     },
    100. 

  100.   });
    101. 

  101. }
    102. 

  102. 

  103. /**
    104. 

  104.  * @requires this.{manager,roles,calldata,role}
    105. 

  105.  */
    106. 

  106. function shouldBehaveLikeRoleAdminOperation(roleAdmin) {
    107. 

  107.   const getAccessPath = LIKE_COMMON_GET_ACCESS;
    108. 

  108.   getAccessPath.requiredRoleIsGranted.roleGrantingIsDelayed.callerHasAnExecutionDelay.afterGrantDelay = function () {
    109. 

  109.     beforeEach('set operation delay', async function () {
    110. 

  110.       await mine();
    111. 

  111.       this.scheduleIn = this.executionDelay; // For testAsSchedulableOperation
    112. 

  112.     });
    113. 

  113.     testAsSchedulableOperation(LIKE_COMMON_SCHEDULABLE);
    114. 

  114.   };
    115. 

  115.   getAccessPath.requiredRoleIsGranted.roleGrantingIsNotDelayed.callerHasAnExecutionDelay = function () {
    116. 

  116.     beforeEach('set execution delay', async function () {
    117. 

  117.       this.scheduleIn = this.executionDelay; // For testAsSchedulableOperation
    118. 

  118.     });
    119. 

  119.     testAsSchedulableOperation(LIKE_COMMON_SCHEDULABLE);
    120. 

  120.   };
    121. 

  121. 

  122.   beforeEach('set target as manager', function () {
    123. 

  123.     this.target = this.manager;
    124. 

  124.   });
    125. 

  125. 

  126.   testAsRestrictedOperation({
    127. 

  127.     callerIsTheManager: LIKE_COMMON_IS_EXECUTING,
    128. 

  128.     callerIsNotTheManager() {
    129. 

  129.       testAsHasRole({
    130. 

  130.         publicRoleIsRequired() {
    131. 

  131.           it('reverts as AccessManagerUnauthorizedAccount', async function () {
    132. 

  132.             await expectRevertCustomError(
    133. 

  133.               web3.eth.sendTransaction({ to: this.target.address, data: this.calldata, from: this.caller }),
    134. 

  134.               'AccessManagerUnauthorizedAccount',
    135. 

  135.               [this.caller, roleAdmin], // Role admin ops require the role's admin
    136. 

  136.             );
    137. 

  137.           });
    138. 

  138.         },
    139. 

  139.         specificRoleIsRequired: getAccessPath,
    140. 

  140.       });
    141. 

  141.     },
    142. 

  142.   });
    143. 

  143. }
    144. 

  144. 

  145. // ============ RESTRICTED OPERATION ============
    146. 

  146. 

  147. /**
    148. 

  148.  * @requires this.{manager,roles,calldata,role}
    149. 

  149.  */
    150. 

  150. function shouldBehaveLikeAManagedRestrictedOperation() {
    151. 

  151.   function revertUnauthorized() {
    152. 

  152.     it('reverts as AccessManagedUnauthorized', async function () {
    153. 

  153.       await expectRevertCustomError(
    154. 

  154.         web3.eth.sendTransaction({ to: this.target.address, data: this.calldata, from: this.caller }),
    155. 

  155.         'AccessManagedUnauthorized',
    156. 

  156.         [this.caller],
    157. 

  157.       );
    158. 

  158.     });
    159. 

  159.   }
    160. 

  160. 

  161.   const getAccessPath = LIKE_COMMON_GET_ACCESS;
    162. 

  162. 

  163.   getAccessPath.requiredRoleIsGranted.roleGrantingIsDelayed.callerHasAnExecutionDelay.beforeGrantDelay =
    164. 

  164.     revertUnauthorized;
    165. 

  165.   getAccessPath.requiredRoleIsGranted.roleGrantingIsDelayed.callerHasNoExecutionDelay.beforeGrantDelay =
    166. 

  166.     revertUnauthorized;
    167. 

  167.   getAccessPath.requiredRoleIsNotGranted = revertUnauthorized;
    168. 

  168. 

  169.   getAccessPath.requiredRoleIsGranted.roleGrantingIsDelayed.callerHasAnExecutionDelay.afterGrantDelay = function () {
    170. 

  170.     beforeEach('consume previously set grant delay', async function () {
    171. 

  171.       // Consume previously set delay
    172. 

  172.       await mine();
    173. 

  173.       this.scheduleIn = this.executionDelay; // For testAsSchedulableOperation
    174. 

  174.     });
    175. 

  175.     testAsSchedulableOperation(LIKE_COMMON_SCHEDULABLE);
    176. 

  176.   };
    177. 

  177.   getAccessPath.requiredRoleIsGranted.roleGrantingIsNotDelayed.callerHasAnExecutionDelay = function () {
    178. 

  178.     beforeEach('consume previously set grant delay', async function () {
    179. 

  179.       this.scheduleIn = this.executionDelay; // For testAsSchedulableOperation
    180. 

  180.     });
    181. 

  181.     testAsSchedulableOperation(LIKE_COMMON_SCHEDULABLE);
    182. 

  182.   };
    183. 

  183. 

  184.   const isExecutingPath = LIKE_COMMON_IS_EXECUTING;
    185. 

  185.   isExecutingPath.notExecuting = revertUnauthorized;
    186. 

  186. 

  187.   testAsCanCall({
    188. 

  188.     closed: revertUnauthorized,
    189. 

  189.     open: {
    190. 

  190.       callerIsTheManager: isExecutingPath,
    191. 

  191.       callerIsNotTheManager: {
    192. 

  192.         publicRoleIsRequired() {
    193. 

  193.           it('succeeds called directly', async function () {
    194. 

  194.             await web3.eth.sendTransaction({ to: this.target.address, data: this.calldata, from: this.caller });
    195. 

  195.           });
    196. 

  196. 

  197.           it('succeeds via execute', async function () {
    198. 

  198.             await this.manager.execute(this.target.address, this.calldata, { from: this.caller });
    199. 

  199.           });
    200. 

  200.         },
    201. 

  201.         specificRoleIsRequired: getAccessPath,
    202. 

  202.       },
    203. 

  203.     },
    204. 

  204.   });
    205. 

  205. }
    206. 

  206. 

  207. module.exports = {
    208. 

  208.   shouldBehaveLikeDelayedAdminOperation,
    209. 

  209.   shouldBehaveLikeNotDelayedAdminOperation,
    210. 

  210.   shouldBehaveLikeRoleAdminOperation,
    211. 

  211.   shouldBehaveLikeAManagedRestrictedOperation,
    212. 

  212. };
    213.