mirror
/
openzeppelin-contracts
mirror of https://github.com/OpenZeppelin/openzeppelin-contracts
2
1
Fork 1
Code Issues Releases Wiki Activity
mirror of openzeppelin-contracts
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
3121 Commits
56 Branches
139 Tags
72 MiB
Tag: Branch: Tree: 7f028d6959
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '7f028d6959'
${ noResults }
openzeppelin-contracts/test/access/AccessControl.behavior.js

502 lines
20 KiB
Raw Normal View History Unescape

Remove enumerable from AccessControl and add AccessControlEnumerable extension (#2512) Co-authored-by: Francisco Giordano <frangio.1@gmail.com>
4 years ago
const { expectEvent, expectRevert } = require('@openzeppelin/test-helpers');
Add AccessControlDefaultAdminRules (#4009) Co-authored-by: Hadrien Croubois <hadrien.croubois@gmail.com> Co-authored-by: Francisco <fg@frang.io>
2 years ago
const { ZERO_ADDRESS } = require('@openzeppelin/test-helpers/src/constants');
Remove enumerable from AccessControl and add AccessControlEnumerable extension (#2512) Co-authored-by: Francisco Giordano <frangio.1@gmail.com>
4 years ago
const { expect } = require('chai');
Add AccessControlDefaultAdminRules (#4009) Co-authored-by: Hadrien Croubois <hadrien.croubois@gmail.com> Co-authored-by: Francisco <fg@frang.io>
2 years ago
const { time } = require('@nomicfoundation/hardhat-network-helpers');
Remove enumerable from AccessControl and add AccessControlEnumerable extension (#2512) Co-authored-by: Francisco Giordano <frangio.1@gmail.com>
4 years ago
Add ERC165 interface detection to AccessControl (#2562) Co-authored-by: Hadrien Croubois <hadrien.croubois@gmail.com>
4 years ago
const { shouldSupportInterfaces } = require('../utils/introspection/SupportsInterface.behavior');
Remove enumerable from AccessControl and add AccessControlEnumerable extension (#2512) Co-authored-by: Francisco Giordano <frangio.1@gmail.com>
4 years ago
const DEFAULT_ADMIN_ROLE = '0x0000000000000000000000000000000000000000000000000000000000000000';
const ROLE = web3.utils.soliditySha3('ROLE');
const OTHER_ROLE = web3.utils.soliditySha3('OTHER_ROLE');
Use Prettier for JS files (#3913) Co-authored-by: Hadrien Croubois <hadrien.croubois@gmail.com>
2 years ago
function shouldBehaveLikeAccessControl(errorPrefix, admin, authorized, other, otherAdmin) {
Add ERC165 interface detection to AccessControl (#2562) Co-authored-by: Hadrien Croubois <hadrien.croubois@gmail.com>
4 years ago
shouldSupportInterfaces(['AccessControl']);
Remove enumerable from AccessControl and add AccessControlEnumerable extension (#2512) Co-authored-by: Francisco Giordano <frangio.1@gmail.com>
4 years ago
describe('default admin', function () {
it('deployer has default admin role', async function () {
expect(await this.accessControl.hasRole(DEFAULT_ADMIN_ROLE, admin)).to.equal(true);
});
Use Prettier for JS files (#3913) Co-authored-by: Hadrien Croubois <hadrien.croubois@gmail.com>
2 years ago
it("other roles's admin is the default admin role", async function () {
Remove enumerable from AccessControl and add AccessControlEnumerable extension (#2512) Co-authored-by: Francisco Giordano <frangio.1@gmail.com>
4 years ago
expect(await this.accessControl.getRoleAdmin(ROLE)).to.equal(DEFAULT_ADMIN_ROLE);
});
Use Prettier for JS files (#3913) Co-authored-by: Hadrien Croubois <hadrien.croubois@gmail.com>
2 years ago
it("default admin role's admin is itself", async function () {
Remove enumerable from AccessControl and add AccessControlEnumerable extension (#2512) Co-authored-by: Francisco Giordano <frangio.1@gmail.com>
4 years ago
expect(await this.accessControl.getRoleAdmin(DEFAULT_ADMIN_ROLE)).to.equal(DEFAULT_ADMIN_ROLE);
});
});
describe('granting', function () {
Add modifier & internal function with standard revert message in AccessControl (#2609) Co-authored-by: Francisco Giordano <frangio.1@gmail.com>
4 years ago
beforeEach(async function () {
await this.accessControl.grantRole(ROLE, authorized, { from: admin });
Remove enumerable from AccessControl and add AccessControlEnumerable extension (#2512) Co-authored-by: Francisco Giordano <frangio.1@gmail.com>
4 years ago
});
it('non-admin cannot grant role to other accounts', async function () {
await expectRevert(
this.accessControl.grantRole(ROLE, authorized, { from: other }),
Add modifier & internal function with standard revert message in AccessControl (#2609) Co-authored-by: Francisco Giordano <frangio.1@gmail.com>
4 years ago
`${errorPrefix}: account ${other.toLowerCase()} is missing role ${DEFAULT_ADMIN_ROLE}`,
Remove enumerable from AccessControl and add AccessControlEnumerable extension (#2512) Co-authored-by: Francisco Giordano <frangio.1@gmail.com>
4 years ago
);
});
it('accounts can be granted a role multiple times', async function () {
await this.accessControl.grantRole(ROLE, authorized, { from: admin });
const receipt = await this.accessControl.grantRole(ROLE, authorized, { from: admin });
expectEvent.notEmitted(receipt, 'RoleGranted');
});
});
describe('revoking', function () {
it('roles that are not had can be revoked', async function () {
expect(await this.accessControl.hasRole(ROLE, authorized)).to.equal(false);
const receipt = await this.accessControl.revokeRole(ROLE, authorized, { from: admin });
expectEvent.notEmitted(receipt, 'RoleRevoked');
});
context('with granted role', function () {
beforeEach(async function () {
await this.accessControl.grantRole(ROLE, authorized, { from: admin });
});
it('admin can revoke role', async function () {
const receipt = await this.accessControl.revokeRole(ROLE, authorized, { from: admin });
expectEvent(receipt, 'RoleRevoked', { account: authorized, role: ROLE, sender: admin });
expect(await this.accessControl.hasRole(ROLE, authorized)).to.equal(false);
});
it('non-admin cannot revoke role', async function () {
await expectRevert(
this.accessControl.revokeRole(ROLE, authorized, { from: other }),
Add modifier & internal function with standard revert message in AccessControl (#2609) Co-authored-by: Francisco Giordano <frangio.1@gmail.com>
4 years ago
`${errorPrefix}: account ${other.toLowerCase()} is missing role ${DEFAULT_ADMIN_ROLE}`,
Remove enumerable from AccessControl and add AccessControlEnumerable extension (#2512) Co-authored-by: Francisco Giordano <frangio.1@gmail.com>
4 years ago
);
});
it('a role can be revoked multiple times', async function () {
await this.accessControl.revokeRole(ROLE, authorized, { from: admin });
const receipt = await this.accessControl.revokeRole(ROLE, authorized, { from: admin });
expectEvent.notEmitted(receipt, 'RoleRevoked');
});
});
});
describe('renouncing', function () {
it('roles that are not had can be renounced', async function () {
const receipt = await this.accessControl.renounceRole(ROLE, authorized, { from: authorized });
expectEvent.notEmitted(receipt, 'RoleRevoked');
});
context('with granted role', function () {
beforeEach(async function () {
await this.accessControl.grantRole(ROLE, authorized, { from: admin });
});
it('bearer can renounce role', async function () {
const receipt = await this.accessControl.renounceRole(ROLE, authorized, { from: authorized });
expectEvent(receipt, 'RoleRevoked', { account: authorized, role: ROLE, sender: authorized });
expect(await this.accessControl.hasRole(ROLE, authorized)).to.equal(false);
});
it('only the sender can renounce their roles', async function () {
await expectRevert(
this.accessControl.renounceRole(ROLE, authorized, { from: admin }),
`${errorPrefix}: can only renounce roles for self`,
);
});
it('a role can be renounced multiple times', async function () {
await this.accessControl.renounceRole(ROLE, authorized, { from: authorized });
const receipt = await this.accessControl.renounceRole(ROLE, authorized, { from: authorized });
expectEvent.notEmitted(receipt, 'RoleRevoked');
});
});
});
describe('setting role admin', function () {
beforeEach(async function () {
Use hardhat-exposed to reduce the need for mocks (#3666) Co-authored-by: Francisco <fg@frang.io>
2 years ago
const receipt = await this.accessControl.$_setRoleAdmin(ROLE, OTHER_ROLE);
Remove enumerable from AccessControl and add AccessControlEnumerable extension (#2512) Co-authored-by: Francisco Giordano <frangio.1@gmail.com>
4 years ago
expectEvent(receipt, 'RoleAdminChanged', {
role: ROLE,
previousAdminRole: DEFAULT_ADMIN_ROLE,
newAdminRole: OTHER_ROLE,
});
await this.accessControl.grantRole(OTHER_ROLE, otherAdmin, { from: admin });
});
Use Prettier for JS files (#3913) Co-authored-by: Hadrien Croubois <hadrien.croubois@gmail.com>
2 years ago
it("a role's admin role can be changed", async function () {
Remove enumerable from AccessControl and add AccessControlEnumerable extension (#2512) Co-authored-by: Francisco Giordano <frangio.1@gmail.com>
4 years ago
expect(await this.accessControl.getRoleAdmin(ROLE)).to.equal(OTHER_ROLE);
});
it('the new admin can grant roles', async function () {
const receipt = await this.accessControl.grantRole(ROLE, authorized, { from: otherAdmin });
expectEvent(receipt, 'RoleGranted', { account: authorized, role: ROLE, sender: otherAdmin });
});
it('the new admin can revoke roles', async function () {
await this.accessControl.grantRole(ROLE, authorized, { from: otherAdmin });
const receipt = await this.accessControl.revokeRole(ROLE, authorized, { from: otherAdmin });
expectEvent(receipt, 'RoleRevoked', { account: authorized, role: ROLE, sender: otherAdmin });
});
Use Prettier for JS files (#3913) Co-authored-by: Hadrien Croubois <hadrien.croubois@gmail.com>
2 years ago
it("a role's previous admins no longer grant roles", async function () {
Remove enumerable from AccessControl and add AccessControlEnumerable extension (#2512) Co-authored-by: Francisco Giordano <frangio.1@gmail.com>
4 years ago
await expectRevert(
this.accessControl.grantRole(ROLE, authorized, { from: admin }),
Add modifier & internal function with standard revert message in AccessControl (#2609) Co-authored-by: Francisco Giordano <frangio.1@gmail.com>
4 years ago
`${errorPrefix}: account ${admin.toLowerCase()} is missing role ${OTHER_ROLE}`,
Remove enumerable from AccessControl and add AccessControlEnumerable extension (#2512) Co-authored-by: Francisco Giordano <frangio.1@gmail.com>
4 years ago
);
});
Use Prettier for JS files (#3913) Co-authored-by: Hadrien Croubois <hadrien.croubois@gmail.com>
2 years ago
it("a role's previous admins no longer revoke roles", async function () {
Remove enumerable from AccessControl and add AccessControlEnumerable extension (#2512) Co-authored-by: Francisco Giordano <frangio.1@gmail.com>
4 years ago
await expectRevert(
this.accessControl.revokeRole(ROLE, authorized, { from: admin }),
Add modifier & internal function with standard revert message in AccessControl (#2609) Co-authored-by: Francisco Giordano <frangio.1@gmail.com>
4 years ago
`${errorPrefix}: account ${admin.toLowerCase()} is missing role ${OTHER_ROLE}`,
);
});
});
describe('onlyRole modifier', function () {
beforeEach(async function () {
await this.accessControl.grantRole(ROLE, authorized, { from: admin });
});
it('do not revert if sender has role', async function () {
Use hardhat-exposed to reduce the need for mocks (#3666) Co-authored-by: Francisco <fg@frang.io>
2 years ago
await this.accessControl.methods['$_checkRole(bytes32)'](ROLE, { from: authorized });
Add modifier & internal function with standard revert message in AccessControl (#2609) Co-authored-by: Francisco Giordano <frangio.1@gmail.com>
4 years ago
});
Use Prettier for JS files (#3913) Co-authored-by: Hadrien Croubois <hadrien.croubois@gmail.com>
2 years ago
it("revert if sender doesn't have role #1", async function () {
Add modifier & internal function with standard revert message in AccessControl (#2609) Co-authored-by: Francisco Giordano <frangio.1@gmail.com>
4 years ago
await expectRevert(
Use hardhat-exposed to reduce the need for mocks (#3666) Co-authored-by: Francisco <fg@frang.io>
2 years ago
this.accessControl.methods['$_checkRole(bytes32)'](ROLE, { from: other }),
Add modifier & internal function with standard revert message in AccessControl (#2609) Co-authored-by: Francisco Giordano <frangio.1@gmail.com>
4 years ago
`${errorPrefix}: account ${other.toLowerCase()} is missing role ${ROLE}`,
);
});
Use Prettier for JS files (#3913) Co-authored-by: Hadrien Croubois <hadrien.croubois@gmail.com>
2 years ago
it("revert if sender doesn't have role #2", async function () {
Add modifier & internal function with standard revert message in AccessControl (#2609) Co-authored-by: Francisco Giordano <frangio.1@gmail.com>
4 years ago
await expectRevert(
Use hardhat-exposed to reduce the need for mocks (#3666) Co-authored-by: Francisco <fg@frang.io>
2 years ago
this.accessControl.methods['$_checkRole(bytes32)'](OTHER_ROLE, { from: authorized }),
Add modifier & internal function with standard revert message in AccessControl (#2609) Co-authored-by: Francisco Giordano <frangio.1@gmail.com>
4 years ago
`${errorPrefix}: account ${authorized.toLowerCase()} is missing role ${OTHER_ROLE}`,
Remove enumerable from AccessControl and add AccessControlEnumerable extension (#2512) Co-authored-by: Francisco Giordano <frangio.1@gmail.com>
4 years ago
);
});
});
}
Use Prettier for JS files (#3913) Co-authored-by: Hadrien Croubois <hadrien.croubois@gmail.com>
2 years ago
function shouldBehaveLikeAccessControlEnumerable(errorPrefix, admin, authorized, other, otherAdmin, otherAuthorized) {
Add ERC165 interface detection to AccessControl (#2562) Co-authored-by: Hadrien Croubois <hadrien.croubois@gmail.com>
4 years ago
shouldSupportInterfaces(['AccessControlEnumerable']);
Remove enumerable from AccessControl and add AccessControlEnumerable extension (#2512) Co-authored-by: Francisco Giordano <frangio.1@gmail.com>
4 years ago
describe('enumerating', function () {
it('role bearers can be enumerated', async function () {
await this.accessControl.grantRole(ROLE, authorized, { from: admin });
await this.accessControl.grantRole(ROLE, other, { from: admin });
await this.accessControl.grantRole(ROLE, otherAuthorized, { from: admin });
await this.accessControl.revokeRole(ROLE, other, { from: admin });
const memberCount = await this.accessControl.getRoleMemberCount(ROLE);
expect(memberCount).to.bignumber.equal('2');
const bearers = [];
for (let i = 0; i < memberCount; ++i) {
bearers.push(await this.accessControl.getRoleMember(ROLE, i));
}
expect(bearers).to.have.members([authorized, otherAuthorized]);
});
Fix AccessControlEnumerable not tracking renounceRole (#2572) * Fix AccessControlEnumerable not tracking renounceRole * Updated changelog
4 years ago
it('role enumeration should be in sync after renounceRole call', async function () {
expect(await this.accessControl.getRoleMemberCount(ROLE)).to.bignumber.equal('0');
await this.accessControl.grantRole(ROLE, admin, { from: admin });
expect(await this.accessControl.getRoleMemberCount(ROLE)).to.bignumber.equal('1');
await this.accessControl.renounceRole(ROLE, admin, { from: admin });
expect(await this.accessControl.getRoleMemberCount(ROLE)).to.bignumber.equal('0');
});
Remove enumerable from AccessControl and add AccessControlEnumerable extension (#2512) Co-authored-by: Francisco Giordano <frangio.1@gmail.com>
4 years ago
});
}
Add AccessControlDefaultAdminRules (#4009) Co-authored-by: Hadrien Croubois <hadrien.croubois@gmail.com> Co-authored-by: Francisco <fg@frang.io>
2 years ago
function shouldBehaveLikeAccessControlDefaultAdminRules(errorPrefix, delay, defaultAdmin, newDefaultAdmin, other) {
shouldSupportInterfaces(['AccessControlDefaultAdminRules']);
it('has a default disabled delayed until', async function () {
expect(await this.accessControl.defaultAdminTransferDelayedUntil()).to.be.bignumber.equal(web3.utils.toBN(0));
});
it('has a default pending default admin', async function () {
expect(await this.accessControl.pendingDefaultAdmin()).to.equal(ZERO_ADDRESS);
});
it('has a default current owner set to the initial default admin', async function () {
const owner = await this.accessControl.owner();
expect(owner).to.equal(defaultAdmin);
expect(await this.accessControl.hasRole(DEFAULT_ADMIN_ROLE, owner)).to.be.true;
});
it('should revert if granting default admin role', async function () {
await expectRevert(
this.accessControl.grantRole(DEFAULT_ADMIN_ROLE, defaultAdmin, { from: defaultAdmin }),
`${errorPrefix}: can't directly grant default admin role`,
);
});
it('should revert if revoking default admin role', async function () {
await expectRevert(
this.accessControl.revokeRole(DEFAULT_ADMIN_ROLE, defaultAdmin, { from: defaultAdmin }),
`${errorPrefix}: can't directly revoke default admin role`,
);
});
it("should revert if defaultAdmin's admin is changed", async function () {
await expectRevert(
this.accessControl.$_setRoleAdmin(DEFAULT_ADMIN_ROLE, defaultAdmin),
`${errorPrefix}: can't violate default admin rules`,
);
});
it('should not grant the default admin role twice', async function () {
await expectRevert(
this.accessControl.$_grantRole(DEFAULT_ADMIN_ROLE, defaultAdmin),
`${errorPrefix}: default admin already granted`,
);
});
describe('begins transfer of default admin', function () {
let receipt;
let defaultAdminTransferDelayedUntil;
beforeEach('begins admin transfer', async function () {
receipt = await this.accessControl.beginDefaultAdminTransfer(newDefaultAdmin, { from: defaultAdmin });
defaultAdminTransferDelayedUntil = web3.utils.toBN(await time.latest()).add(delay);
});
it('should set pending default admin and delayed until', async function () {
expect(await this.accessControl.pendingDefaultAdmin()).to.equal(newDefaultAdmin);
expect(await this.accessControl.defaultAdminTransferDelayedUntil()).to.be.bignumber.equal(
defaultAdminTransferDelayedUntil,
);
expectEvent(receipt, 'DefaultAdminRoleChangeStarted', {
newDefaultAdmin,
defaultAdminTransferDelayedUntil,
});
});
it('should be able to begin a transfer again before delay pass', async function () {
// Time passes just before delay
await time.setNextBlockTimestamp(defaultAdminTransferDelayedUntil.subn(1));
// defaultAdmin changes its mind and begin again to another address
await this.accessControl.beginDefaultAdminTransfer(other, { from: defaultAdmin });
const newDelayedUntil = web3.utils.toBN(await time.latest()).add(delay);
expect(await this.accessControl.pendingDefaultAdmin()).to.equal(other);
expect(await this.accessControl.defaultAdminTransferDelayedUntil()).to.be.bignumber.equal(newDelayedUntil);
});
it('should be able to begin a transfer again after delay pass if not accepted', async function () {
// Time passes after delay without acceptance
await time.setNextBlockTimestamp(defaultAdminTransferDelayedUntil.addn(1));
// defaultAdmin changes its mind and begin again to another address
await this.accessControl.beginDefaultAdminTransfer(other, { from: defaultAdmin });
const newDelayedUntil = web3.utils.toBN(await time.latest()).add(delay);
expect(await this.accessControl.pendingDefaultAdmin()).to.equal(other);
expect(await this.accessControl.defaultAdminTransferDelayedUntil()).to.be.bignumber.equal(newDelayedUntil);
});
it('should revert if it is called by non-admin accounts', async function () {
await expectRevert(
this.accessControl.beginDefaultAdminTransfer(newDefaultAdmin, { from: other }),
`${errorPrefix}: account ${other.toLowerCase()} is missing role ${DEFAULT_ADMIN_ROLE}`,
);
});
});
describe('accepts transfer admin', function () {
let delayPassed;
beforeEach(async function () {
await this.accessControl.beginDefaultAdminTransfer(newDefaultAdmin, { from: defaultAdmin });
delayPassed = web3.utils
.toBN(await time.latest())
.add(delay)
.addn(1);
});
describe('caller is pending default admin and delay has passed', function () {
let from;
beforeEach(async function () {
await time.setNextBlockTimestamp(delayPassed);
from = newDefaultAdmin;
});
it('accepts a transfer and changes default admin', async function () {
const receipt = await this.accessControl.acceptDefaultAdminTransfer({ from });
// Storage changes
expect(await this.accessControl.hasRole(DEFAULT_ADMIN_ROLE, defaultAdmin)).to.be.false;
expect(await this.accessControl.hasRole(DEFAULT_ADMIN_ROLE, newDefaultAdmin)).to.be.true;
expect(await this.accessControl.owner()).to.equal(newDefaultAdmin);
// Emit events
expectEvent(receipt, 'RoleRevoked', {
role: DEFAULT_ADMIN_ROLE,
account: defaultAdmin,
});
expectEvent(receipt, 'RoleGranted', {
role: DEFAULT_ADMIN_ROLE,
account: newDefaultAdmin,
});
// Resets pending default admin and delayed until
expect(await this.accessControl.defaultAdminTransferDelayedUntil()).to.be.bignumber.equal(web3.utils.toBN(0));
expect(await this.accessControl.pendingDefaultAdmin()).to.equal(ZERO_ADDRESS);
});
});
it('should revert if caller is not pending default admin', async function () {
await time.setNextBlockTimestamp(delayPassed);
await expectRevert(
this.accessControl.acceptDefaultAdminTransfer({ from: other }),
`${errorPrefix}: pending admin must accept`,
);
});
describe('delayedUntil not passed', function () {
let delayNotPassed;
beforeEach(function () {
delayNotPassed = delayPassed.subn(1);
});
it('should revert if block.timestamp is equal to delayed until', async function () {
await time.setNextBlockTimestamp(delayNotPassed);
await expectRevert(
this.accessControl.acceptDefaultAdminTransfer({ from: newDefaultAdmin }),
`${errorPrefix}: transfer delay not passed`,
);
});
it('should revert if block.timestamp is less than delayed until', async function () {
await expectRevert(
this.accessControl.acceptDefaultAdminTransfer({ from: newDefaultAdmin }),
`${errorPrefix}: transfer delay not passed`,
);
});
});
});
describe('cancel transfer default admin', function () {
let delayPassed;
beforeEach(async function () {
await this.accessControl.beginDefaultAdminTransfer(newDefaultAdmin, { from: defaultAdmin });
delayPassed = web3.utils
.toBN(await time.latest())
.add(delay)
.addn(1);
});
it('resets pending default admin and delayed until', async function () {
await this.accessControl.cancelDefaultAdminTransfer({ from: defaultAdmin });
expect(await this.accessControl.defaultAdminTransferDelayedUntil()).to.be.bignumber.equal(web3.utils.toBN(0));
expect(await this.accessControl.pendingDefaultAdmin()).to.equal(ZERO_ADDRESS);
// Advance until passed delay
await time.setNextBlockTimestamp(delayPassed);
// Previous pending default admin should not be able to accept after cancellation.
await expectRevert(
this.accessControl.acceptDefaultAdminTransfer({ from: newDefaultAdmin }),
`${errorPrefix}: pending admin must accept`,
);
});
it('cancels even after delay has passed', async function () {
await this.accessControl.cancelDefaultAdminTransfer({ from: defaultAdmin });
await time.setNextBlockTimestamp(delayPassed);
expect(await this.accessControl.defaultAdminTransferDelayedUntil()).to.be.bignumber.equal(web3.utils.toBN(0));
expect(await this.accessControl.pendingDefaultAdmin()).to.equal(ZERO_ADDRESS);
});
it('reverts if called by non default admin accounts', async function () {
await expectRevert(
this.accessControl.cancelDefaultAdminTransfer({ from: other }),
`${errorPrefix}: account ${other.toLowerCase()} is missing role ${DEFAULT_ADMIN_ROLE}`,
);
});
});
describe('renouncing admin', function () {
let delayPassed;
let from = defaultAdmin;
beforeEach(async function () {
await this.accessControl.beginDefaultAdminTransfer(ZERO_ADDRESS, { from });
delayPassed = web3.utils
.toBN(await time.latest())
.add(delay)
.addn(1);
});
it('it renounces role', async function () {
await time.setNextBlockTimestamp(delayPassed);
const receipt = await this.accessControl.renounceRole(DEFAULT_ADMIN_ROLE, from, { from });
expect(await this.accessControl.hasRole(DEFAULT_ADMIN_ROLE, defaultAdmin)).to.be.false;
expect(await this.accessControl.hasRole(ZERO_ADDRESS, defaultAdmin)).to.be.false;
expectEvent(receipt, 'RoleRevoked', {
role: DEFAULT_ADMIN_ROLE,
account: from,
});
expect(await this.accessControl.owner()).to.equal(ZERO_ADDRESS);
});
it('allows to recover access using the internal _grantRole', async function () {
await time.setNextBlockTimestamp(delayPassed);
await this.accessControl.renounceRole(DEFAULT_ADMIN_ROLE, from, { from });
const grantRoleReceipt = await this.accessControl.$_grantRole(DEFAULT_ADMIN_ROLE, other);
expectEvent(grantRoleReceipt, 'RoleGranted', {
role: DEFAULT_ADMIN_ROLE,
account: other,
});
});
it('reverts if caller is not default admin', async function () {
await time.setNextBlockTimestamp(delayPassed);
await expectRevert(
this.accessControl.renounceRole(DEFAULT_ADMIN_ROLE, other, { from }),
`${errorPrefix}: can only renounce roles for self`,
);
});
describe('delayed until not passed', function () {
let delayNotPassed;
beforeEach(function () {
delayNotPassed = delayPassed.subn(1);
});
it('reverts if block.timestamp is equal to delayed until', async function () {
await time.setNextBlockTimestamp(delayNotPassed);
await expectRevert(
this.accessControl.renounceRole(DEFAULT_ADMIN_ROLE, defaultAdmin, { from }),
`${errorPrefix}: only can renounce in two delayed steps`,
);
});
it('reverts if block.timestamp is less than delayed until', async function () {
await time.setNextBlockTimestamp(delayNotPassed.subn(1));
await expectRevert(
this.accessControl.renounceRole(DEFAULT_ADMIN_ROLE, defaultAdmin, { from }),
`${errorPrefix}: only can renounce in two delayed steps`,
);
});
});
});
}
Remove enumerable from AccessControl and add AccessControlEnumerable extension (#2512) Co-authored-by: Francisco Giordano <frangio.1@gmail.com>
4 years ago
module.exports = {
Use hardhat-exposed to reduce the need for mocks (#3666) Co-authored-by: Francisco <fg@frang.io>
2 years ago
DEFAULT_ADMIN_ROLE,
Remove enumerable from AccessControl and add AccessControlEnumerable extension (#2512) Co-authored-by: Francisco Giordano <frangio.1@gmail.com>
4 years ago
shouldBehaveLikeAccessControl,
shouldBehaveLikeAccessControlEnumerable,
Add AccessControlDefaultAdminRules (#4009) Co-authored-by: Hadrien Croubois <hadrien.croubois@gmail.com> Co-authored-by: Francisco <fg@frang.io>
2 years ago
shouldBehaveLikeAccessControlDefaultAdminRules,
Remove enumerable from AccessControl and add AccessControlEnumerable extension (#2512) Co-authored-by: Francisco Giordano <frangio.1@gmail.com>
4 years ago
};