AccessManagedBase
AccessManagedBase
AccessManagedBase
_This contract module makes available a {restricted} modifier. Functions decorated with this modifier will be permissioned according to an "authority": a contract like {AccessManager} that follows the {IAuthority} interface, implementing a policy that allows certain callers to access certain functions.
IMPORTANT: The restricted modifier should never be used on internal functions, judiciously used in public functions, and ideally only used in external functions. See {restricted}._
AuthorityUpdated
event AuthorityUpdated(address authority)AccessManagedUnauthorized
error AccessManagedUnauthorized(address caller)AccessManagedRequiredDelay
error AccessManagedRequiredDelay(address caller, uint32 delay)AccessManagedInvalidAuthority
error AccessManagedInvalidAuthority(address authority)AccessManagedStorage
struct AccessManagedStorage {
address _authority;
bool _consumingSchedule;
}restricted
modifier restricted()_Restricts access to a function as defined by the connected Authority for this contract and the caller and selector of the function that entered the contract.
[IMPORTANT]
In general, this modifier should only be used on external functions. It is okay to use it on public functions that are used as external entry points and are not called internally. Unless you know what you're doing, it should never be used on internal functions. Failure to follow these rules can have critical security implications! This is because the permissions are determined by the function that entered the contract, i.e. the function at the bottom of the call stack, and not the function where the modifier is visible in the source code.
external functions. It is okay to use it on public functions that are used as external entry points and are not called internally. Unless you know what you're doing, it should never be used on internal functions. Failure to follow these rules can have critical security implications! This is because the permissions are determined by the function that entered the contract, i.e. the function at the bottom of the call stack, and not the function where the modifier is visible in the source code.[WARNING]
Avoid adding this modifier to the https://docs.soliditylang.org/en/v0.8.20/contracts.html#receive-ether-function[receive()] function or the https://docs.soliditylang.org/en/v0.8.20/contracts.html#fallback-function[fallback()]. These functions are the only execution paths where a function selector cannot be unambiguosly determined from the calldata since the selector defaults to 0x00000000 in the receive() function and similarly in the fallback() function if no calldata is provided. (See {_checkCanCall}).
The receive() function will always panic whereas the fallback() may panic depending on the calldata length. ====_
_authority
function _authority() internal view virtual returns (address)_setAuthority
function _setAuthority(address newAuthority) internal virtualTransfers control to a new authority. Internal function with no access restriction. Allows bypassing the permissions set by the current authority.
_checkCanCall
function _checkCanCall(address caller, bytes data) internal virtualReverts if the caller is not allowed to call the function identified by a selector. Panics if the calldata is less than 4 bytes long.
Was this helpful?