Struct odra_modules::access::AccessControl

source · 
pub struct AccessControl { /* private fields */ }
Expand description

This contract module enables the implementation of role-based access control mechanisms for children modules.

Roles are identified by their 32-bytes identifier, which should be unique and exposed in the external API.

Roles can be used to represent a set of permissions, and the hasRole function is used to restrict access to a function call.

Roles can be granted and revoked dynamically using the grant_role() and revoke_role() functions, respectively. Each role has an associated admin role, and only accounts that have the role’s admin role can call grant_role and revoke_role.

By default, the admin role for all roles is DEFAULT_ADMIN_ROLE, which means that only accounts with this role can grant or revoke other roles.

More complex role relationships can be established using the set_admin_role() function.

Implementations§

source§

impl AccessControl

source

pub fn has_role(&self, role: &Role, address: &Address) -> bool

Returns true if account has been granted role.

source

pub fn get_role_admin(&self, role: &Role) -> Role

Returns the admin role that controls role.

The admin role may be changed using set_admin_role().

source

pub fn grant_role(&mut self, role: &Role, address: &Address)

Grants role to address.

If the role has been already granted - nothing happens, otherwise RoleGranted event is emitted.

The caller must have role’s admin role.

source

pub fn revoke_role(&mut self, role: &Role, address: &Address)

Grants role to address.

If the role has been already revoked - nothing happens, otherwise RoleRevoked event is emitted.

The caller must have role’s admin role.

source

pub fn renounce_role(&mut self, role: &Role, address: &Address)

The function is used to remove a role from the account that initiated the call.

One common way of managing roles is by using grant_role() and revoke_role(). The purpose of revokeRole is to provide a mechanism for revoking privileges from an account in case it gets compromised.

If the account had previously been granted the role, the function will trigger a RoleRevoked event.

Note that only address is authorized to call this function.

source§

impl AccessControl

source

pub fn check_role(&self, role: &Role, address: &Address)

Ensures address has role. If not, reverts with Error::MissingRole.

source

pub fn set_admin_role(&mut self, role: &Role, admin_role: &Role)

Sets admin_role as role’s admin role.

Emits a RoleAdminChanged event.

source

pub fn unchecked_grant_role(&mut self, role: &Role, address: &Address)

Grants role to address.

Internal function without access restriction. This function should be used to setup the initial access control.

May emit a RoleGranted event.

source

pub fn unchecked_revoke_role(&mut self, role: &Role, address: &Address)

Revokes role from address.

Internal function without access restriction. This function should be used to setup the initial access control.

May emit a RoleRevoked event.

Trait Implementations§

source§

impl HasEntrypoints for AccessControl

source§

fn entrypoints() -> Vec<Entrypoint>

Returns the list of contract’s entrypoints.
source§

impl HasEvents for AccessControl

source§

fn events() -> Vec<Event>

Returns a list of Events used by the contract.
source§

fn event_schemas() -> BTreeMap<String, Schema>

Returns a map of event schemas used by the contract.
source§

impl HasIdent for AccessControl

source§

fn ident() -> String

Returns the contract’s ident.
source§

impl Module for AccessControl

source§

fn new(env: Rc<ContractEnv>) -> Self

Creates a new instance of the module with the given contract environment.
source§

fn env(&self) -> Rc<ContractEnv>

Returns the contract environment associated with the module.
source§

impl SchemaCustomTypes for AccessControl

source§

fn schema_types() -> Vec<Option<CustomType>>

Returns a vector of optional CustomTypes.
source§

impl SchemaEntrypoints for AccessControl

source§

fn schema_entrypoints() -> Vec<Entrypoint>

Returns a vector of Entrypoints.
source§

impl SchemaErrors for AccessControl

source§

fn schema_errors() -> Vec<UserError>

Returns a vector of UserErrors.
source§

impl SchemaEvents for AccessControl

source§

fn schema_events() -> Vec<Event>

Returns a vector of Events.
source§

fn custom_types() -> Vec<Option<CustomType>>

Returns a vector of CustomTypes. Read more

Auto Trait Implementations§

Blanket Implementations§

source§

impl<T> Any for T
where T: 'static + ?Sized,

source§

fn type_id(&self) -> TypeId

Gets the TypeId of self. Read more
source§

impl<T> Borrow<T> for T
where T: ?Sized,

source§

fn borrow(&self) -> &T

Immutably borrows from an owned value. Read more
source§

impl<T> BorrowMut<T> for T
where T: ?Sized,

source§

fn borrow_mut(&mut self) -> &mut T

Mutably borrows from an owned value. Read more
source§

impl<T> From<T> for T

source§

fn from(t: T) -> T

Returns the argument unchanged.

source§

impl<T, U> Into<U> for T
where U: From<T>,

source§

fn into(self) -> U

Calls U::from(self).

That is, this conversion is whatever the implementation of From<T> for U chooses to do.

source§

impl<T> Revertible for T
where T: Module,

source§

fn revert<E>(&self, error: E) -> !
where E: Into<OdraError>,

Reverts the contract execution with the given error.
source§

impl<T> Same for T

§

type Output = T

Should always be Self
source§

impl<T, U> TryFrom<U> for T
where U: Into<T>,

§

type Error = Infallible

The type returned in the event of a conversion error.
source§

fn try_from(value: U) -> Result<T, <T as TryFrom<U>>::Error>

Performs the conversion.
source§

impl<T, U> TryInto<U> for T
where U: TryFrom<T>,

§

type Error = <U as TryFrom<T>>::Error

The type returned in the event of a conversion error.
source§

fn try_into(self) -> Result<U, <U as TryFrom<T>>::Error>

Performs the conversion.