thirdweb-dev
diff --git a/‎contracts/dynamic-contracts/extension/ContractMetadata.sol‎
Lines changed: 67 additions & 0 deletions b/‎contracts/dynamic-contracts/extension/ContractMetadata.sol‎
Lines changed: 67 additions & 0 deletions
diff --git a/‎contracts/dynamic-contracts/extension/Initializable.sol‎
Lines changed: 108 additions & 0 deletions b/‎contracts/dynamic-contracts/extension/Initializable.sol‎
Lines changed: 108 additions & 0 deletions
diff --git a/‎contracts/dynamic-contracts/extension/Permissions.sol‎
Lines changed: 198 additions & 0 deletions b/‎contracts/dynamic-contracts/extension/Permissions.sol‎
Lines changed: 198 additions & 0 deletions
@@ -0,0 +1,67 @@
+// SPDX-License-Identifier: Apache-2.0
+pragma solidity ^0.8.0;
+
+/// @author thirdweb
+
+import "../../extension/interface/IContractMetadata.sol";
+
+/**
+ *  @author  thirdweb.com
+ *
+ *  @title   Contract Metadata
+ *  @notice  Thirdweb's `ContractMetadata` is a contract extension for any base contracts. It lets you set a metadata URI
+ *           for you contract.
+ *           Additionally, `ContractMetadata` is necessary for NFT contracts that want royalties to get distributed on OpenSea.
+ */
+
+library ContractMetadataStorage {
+    bytes32 public constant CONTRACT_METADATA_STORAGE_POSITION = keccak256("contract.metadata.storage");
+
+    struct Data {
+        /// @notice Returns the contract metadata URI.
+        string contractURI;
+    }
+
+    function contractMetadataStorage() internal pure returns (Data storage contractMetadataData) {
+        bytes32 position = CONTRACT_METADATA_STORAGE_POSITION;
+        assembly {
+            contractMetadataData.slot := position
+        }
+    }
+}
+
+abstract contract ContractMetadata is IContractMetadata {
+    /**
+     *  @notice         Lets a contract admin set the URI for contract-level metadata.
+     *  @dev            Caller should be authorized to setup contractURI, e.g. contract admin.
+     *                  See {_canSetContractURI}.
+     *                  Emits {ContractURIUpdated Event}.
+     *
+     *  @param _uri     keccak256 hash of the role. e.g. keccak256("TRANSFER_ROLE")
+     */
+    function setContractURI(string memory _uri) external override {
+        if (!_canSetContractURI()) {
+            revert("Not authorized");
+        }
+
+        _setupContractURI(_uri);
+    }
+
+    /// @dev Lets a contract admin set the URI for contract-level metadata.
+    function _setupContractURI(string memory _uri) internal {
+        ContractMetadataStorage.Data storage data = ContractMetadataStorage.contractMetadataStorage();
+        string memory prevURI = data.contractURI;
+        data.contractURI = _uri;
+
+        emit ContractURIUpdated(prevURI, _uri);
+    }
+
+    /// @notice Returns the contract metadata URI.
+    function contractURI() public view virtual override returns (string memory) {
+        ContractMetadataStorage.Data storage data = ContractMetadataStorage.contractMetadataStorage();
+        return data.contractURI;
+    }
+
+    /// @dev Returns whether contract metadata can be set in the given execution context.
+    function _canSetContractURI() internal view virtual returns (bool);
+}
@@ -0,0 +1,108 @@
+// SPDX-License-Identifier: Apache 2.0
+pragma solidity ^0.8.0;
+
+import "../../lib/TWAddress.sol";
+
+library InitStorage {
+    /// @dev The location of the storage of the entrypoint contract's data.
+    bytes32 constant INIT_STORAGE_POSITION = keccak256("init.storage");
+
+    /// @dev Layout of the entrypoint contract's storage.
+    struct Data {
+        uint8 initialized;
+        bool initializing;
+    }
+
+    /// @dev Returns the entrypoint contract's data at the relevant storage location.
+    function initStorage() internal pure returns (Data storage initData) {
+        bytes32 position = INIT_STORAGE_POSITION;
+        assembly {
+            initData.slot := position
+        }
+    }
+}
+
+abstract contract Initializable {
+    /**
+     * @dev Triggered when the contract has been initialized or reinitialized.
+     */
+    event Initialized(uint8 version);
+
+    /**
+     * @dev A modifier that defines a protected initializer function that can be invoked at most once. In its scope,
+     * `onlyInitializing` functions can be used to initialize parent contracts. Equivalent to `reinitializer(1)`.
+     */
+    modifier initializer() {
+        InitStorage.Data storage data = InitStorage.initStorage();
+        uint8 _initialized = data.initialized;
+        bool _initializing = data.initializing;
+
+        bool isTopLevelCall = !_initializing;
+        require(
+            (isTopLevelCall && _initialized < 1) || (!TWAddress.isContract(address(this)) && _initialized == 1),
+            "Initializable: contract is already initialized"
+        );
+        data.initialized = 1;
+        if (isTopLevelCall) {
+            data.initializing = true;
+        }
+        _;
+        if (isTopLevelCall) {
+            data.initializing = false;
+            emit Initialized(1);
+        }
+    }
+
+    /**
+     * @dev A modifier that defines a protected reinitializer function that can be invoked at most once, and only if the
+     * contract hasn't been initialized to a greater version before. In its scope, `onlyInitializing` functions can be
+     * used to initialize parent contracts.
+     *
+     * `initializer` is equivalent to `reinitializer(1)`, so a reinitializer may be used after the original
+     * initialization step. This is essential to configure modules that are added through upgrades and that require
+     * initialization.
+     *
+     * Note that versions can jump in increments greater than 1; this implies that if multiple reinitializers coexist in
+     * a contract, executing them in the right order is up to the developer or operator.
+     */
+    modifier reinitializer(uint8 version) {
+        InitStorage.Data storage data = InitStorage.initStorage();
+        uint8 _initialized = data.initialized;
+        bool _initializing = data.initializing;
+
+        require(!_initializing && _initialized < version, "Initializable: contract is already initialized");
+        data.initialized = version;
+        data.initializing = true;
+        _;
+        data.initializing = false;
+        emit Initialized(version);
+    }
+
+    /**
+     * @dev Modifier to protect an initialization function so that it can only be invoked by functions with the
+     * {initializer} and {reinitializer} modifiers, directly or indirectly.
+     */
+    modifier onlyInitializing() {
+        InitStorage.Data storage data = InitStorage.initStorage();
+        require(data.initializing, "Initializable: contract is not initializing");
+        _;
+    }
+
+    /**
+     * @dev Locks the contract, preventing any future reinitialization. This cannot be part of an initializer call.
+     * Calling this in the constructor of a contract will prevent that contract from being initialized or reinitialized
+     * to any version. It is recommended to use this to lock implementation contracts that are designed to be called
+     * through proxies.
+     */
+    function _disableInitializers() internal virtual {
+        InitStorage.Data storage data = InitStorage.initStorage();
+        uint8 _initialized = data.initialized;
+        bool _initializing = data.initializing;
+
+        require(!_initializing, "Initializable: contract is initializing");
+        if (_initialized < type(uint8).max) {
+            data.initialized = type(uint8).max;
+            emit Initialized(type(uint8).max);
+        }
+    }
+}
@@ -0,0 +1,198 @@
+// SPDX-License-Identifier: Apache-2.0
+pragma solidity ^0.8.0;
+
+/// @author thirdweb
+
+import "../../extension/interface/IPermissions.sol";
+import "../../lib/TWStrings.sol";
+
+/**
+ *  @title   Permissions
+ *  @dev     This contracts provides extending-contracts with role-based access control mechanisms
+ */
+
+library PermissionsStorage {
+    bytes32 public constant PERMISSIONS_STORAGE_POSITION = keccak256("permissions.storage");
+
+    struct Data {
+        /// @dev Map from keccak256 hash of a role => a map from address => whether address has role.
+        mapping(bytes32 => mapping(address => bool)) _hasRole;
+        /// @dev Map from keccak256 hash of a role to role admin. See {getRoleAdmin}.
+        mapping(bytes32 => bytes32) _getRoleAdmin;
+    }
+
+    function permissionsStorage() internal pure returns (Data storage permissionsData) {
+        bytes32 position = PERMISSIONS_STORAGE_POSITION;
+        assembly {
+            permissionsData.slot := position
+        }
+    }
+}
+
+contract Permissions is IPermissions {
+    /// @dev Default admin role for all roles. Only accounts with this role can grant/revoke other roles.
+    bytes32 public constant DEFAULT_ADMIN_ROLE = 0x00;
+
+    /// @dev Modifier that checks if an account has the specified role; reverts otherwise.
+    modifier onlyRole(bytes32 role) {
+        _checkRole(role, _msgSender());
+        _;
+    }
+
+    /**
+     *  @notice         Checks whether an account has a particular role.
+     *  @dev            Returns `true` if `account` has been granted `role`.
+     *
+     *  @param role     keccak256 hash of the role. e.g. keccak256("TRANSFER_ROLE")
+     *  @param account  Address of the account for which the role is being checked.
+     */
+    function hasRole(bytes32 role, address account) public view override returns (bool) {
+        PermissionsStorage.Data storage data = PermissionsStorage.permissionsStorage();
+        return data._hasRole[role][account];
+    }
+
+    /**
+     *  @notice         Checks whether an account has a particular role;
+     *                  role restrictions can be swtiched on and off.
+     *
+     *  @dev            Returns `true` if `account` has been granted `role`.
+     *                  Role restrictions can be swtiched on and off:
+     *                      - If address(0) has ROLE, then the ROLE restrictions
+     *                        don't apply.
+     *                      - If address(0) does not have ROLE, then the ROLE
+     *                        restrictions will apply.
+     *
+     *  @param role     keccak256 hash of the role. e.g. keccak256("TRANSFER_ROLE")
+     *  @param account  Address of the account for which the role is being checked.
+     */
+    function hasRoleWithSwitch(bytes32 role, address account) public view returns (bool) {
+        PermissionsStorage.Data storage data = PermissionsStorage.permissionsStorage();
+        if (!data._hasRole[role][address(0)]) {
+            return data._hasRole[role][account];
+        }
+
+        return true;
+    }
+
+    /**
+     *  @notice         Returns the admin role that controls the specified role.
+     *  @dev            See {grantRole} and {revokeRole}.
+     *                  To change a role's admin, use {_setRoleAdmin}.
+     *
+     *  @param role     keccak256 hash of the role. e.g. keccak256("TRANSFER_ROLE")
+     */
+    function getRoleAdmin(bytes32 role) external view override returns (bytes32) {
+        PermissionsStorage.Data storage data = PermissionsStorage.permissionsStorage();
+        return data._getRoleAdmin[role];
+    }
+
+    /**
+     *  @notice         Grants a role to an account, if not previously granted.
+     *  @dev            Caller must have admin role for the `role`.
+     *                  Emits {RoleGranted Event}.
+     *
+     *  @param role     keccak256 hash of the role. e.g. keccak256("TRANSFER_ROLE")
+     *  @param account  Address of the account to which the role is being granted.
+     */
+    function grantRole(bytes32 role, address account) public virtual override {
+        PermissionsStorage.Data storage data = PermissionsStorage.permissionsStorage();
+        _checkRole(data._getRoleAdmin[role], _msgSender());
+        if (data._hasRole[role][account]) {
+            revert("Can only grant to non holders");
+        }
+        _setupRole(role, account);
+    }
+
+    /**
+     *  @notice         Revokes role from an account.
+     *  @dev            Caller must have admin role for the `role`.
+     *                  Emits {RoleRevoked Event}.
+     *
+     *  @param role     keccak256 hash of the role. e.g. keccak256("TRANSFER_ROLE")
+     *  @param account  Address of the account from which the role is being revoked.
+     */
+    function revokeRole(bytes32 role, address account) public virtual override {
+        PermissionsStorage.Data storage data = PermissionsStorage.permissionsStorage();
+        _checkRole(data._getRoleAdmin[role], _msgSender());
+        _revokeRole(role, account);
+    }
+
+    /**
+     *  @notice         Revokes role from the account.
+     *  @dev            Caller must have the `role`, with caller being the same as `account`.
+     *                  Emits {RoleRevoked Event}.
+     *
+     *  @param role     keccak256 hash of the role. e.g. keccak256("TRANSFER_ROLE")
+     *  @param account  Address of the account from which the role is being revoked.
+     */
+    function renounceRole(bytes32 role, address account) public virtual override {
+        if (_msgSender() != account) {
+            revert("Can only renounce for self");
+        }
+        _revokeRole(role, account);
+    }
+
+    /// @dev Sets `adminRole` as `role`'s admin role.
+    function _setRoleAdmin(bytes32 role, bytes32 adminRole) internal virtual {
+        PermissionsStorage.Data storage data = PermissionsStorage.permissionsStorage();
+        bytes32 previousAdminRole = data._getRoleAdmin[role];
+        data._getRoleAdmin[role] = adminRole;
+        emit RoleAdminChanged(role, previousAdminRole, adminRole);
+    }
+
+    /// @dev Sets up `role` for `account`
+    function _setupRole(bytes32 role, address account) internal virtual {
+        PermissionsStorage.Data storage data = PermissionsStorage.permissionsStorage();
+        data._hasRole[role][account] = true;
+        emit RoleGranted(role, account, _msgSender());
+    }
+
+    /// @dev Revokes `role` from `account`
+    function _revokeRole(bytes32 role, address account) internal virtual {
+        PermissionsStorage.Data storage data = PermissionsStorage.permissionsStorage();
+        _checkRole(role, account);
+        delete data._hasRole[role][account];
+        emit RoleRevoked(role, account, _msgSender());
+    }
+
+    /// @dev Checks `role` for `account`. Reverts with a message including the required role.
+    function _checkRole(bytes32 role, address account) internal view virtual {
+        PermissionsStorage.Data storage data = PermissionsStorage.permissionsStorage();
+        if (!data._hasRole[role][account]) {
+            revert(
+                string(
+                    abi.encodePacked(
+                        "Permissions: account ",
+                        TWStrings.toHexString(uint160(account), 20),
+                        " is missing role ",
+                        TWStrings.toHexString(uint256(role), 32)
+                    )
+                )
+            );
+        }
+    }
+
+    /// @dev Checks `role` for `account`. Reverts with a message including the required role.
+    function _checkRoleWithSwitch(bytes32 role, address account) internal view virtual {
+        if (!hasRoleWithSwitch(role, account)) {
+            revert(
+                string(
+                    abi.encodePacked(
+                        "Permissions: account ",
+                        TWStrings.toHexString(uint160(account), 20),
+                        " is missing role ",
+                        TWStrings.toHexString(uint256(role), 32)
+                    )
+                )
+            );
+        }
+    }
+
+    function _msgSender() internal view virtual returns (address sender) {
+        return msg.sender;
+    }
+
+    function _msgData() internal view virtual returns (bytes calldata) {
+        return msg.data;
+    }
+}