AccessManagedBase

AccessManagedBase

AccessManagedBase

_This contract module makes available a {restricted} modifier. Functions decorated with this modifier will be permissioned according to an "authority": a contract like {AccessManager} that follows the {IAuthority} interface, implementing a policy that allows certain callers to access certain functions.

IMPORTANT: The restricted modifier should never be used on internal functions, judiciously used in public functions, and ideally only used in external functions. See {restricted}._

AuthorityUpdated

event AuthorityUpdated(address authority)

AccessManagedUnauthorized

error AccessManagedUnauthorized(address caller)

AccessManagedRequiredDelay

error AccessManagedRequiredDelay(address caller, uint32 delay)

AccessManagedInvalidAuthority

error AccessManagedInvalidAuthority(address authority)

AccessManagedStorage

struct AccessManagedStorage {
  address _authority;
  bool _consumingSchedule;
}

restricted

modifier restricted()

_Restricts access to a function as defined by the connected Authority for this contract and the caller and selector of the function that entered the contract.

[IMPORTANT]

In general, this modifier should only be used on external functions. It is okay to use it on public functions that are used as external entry points and are not called internally. Unless you know what you're doing, it should never be used on internal functions. Failure to follow these rules can have critical security implications! This is because the permissions are determined by the function that entered the contract, i.e. the function at the bottom of the call stack, and not the function where the modifier is visible in the source code.

[WARNING]

Avoid adding this modifier to the https://docs.soliditylang.org/en/v0.8.20/contracts.html#receive-ether-function[receive()] function or the https://docs.soliditylang.org/en/v0.8.20/contracts.html#fallback-function[fallback()]. These functions are the only execution paths where a function selector cannot be unambiguosly determined from the calldata since the selector defaults to 0x00000000 in the receive() function and similarly in the fallback() function if no calldata is provided. (See {_checkCanCall}).

The receive() function will always panic whereas the fallback() may panic depending on the calldata length. ====_

_authority

function _authority() internal view virtual returns (address)

_setAuthority

function _setAuthority(address newAuthority) internal virtual

Transfers control to a new authority. Internal function with no access restriction. Allows bypassing the permissions set by the current authority.

_checkCanCall

function _checkCanCall(address caller, bytes data) internal virtual

Reverts if the caller is not allowed to call the function identified by a selector. Panics if the calldata is less than 4 bytes long.