Access Control

Returns the address of the current owner.

Transfers ownership of the contract to a new account (new_owner). Can only be called by the current owner.

Emits an OwnershipTransferred event.

Leaves the contract without owner. It will not be possible to call assert_only_owner functions anymore. Can only be called by the current owner.

Returns the address of the current owner.

Returns the address of the pending owner.

Transfers ownership of the contract to the pending owner. Can only be called by the pending owner. Resets pending owner to zero address.

Emits an OwnershipTransferred event.

Starts the two step ownership transfer process, by setting the pending owner. Setting new_owner to the zero address is allowed, this can be used to cancel an initiated ownership transfer.

Can only be called by the current owner.

Emits an OwnershipTransferStarted event.

Leaves the contract without owner. It will not be possible to call assert_only_owner functions anymore. Can only be called by the current owner.

See transfer_ownership.

See renounce_ownership.

See pending_owner.

See accept_ownership.

See transfer_ownership.

See renounce_ownership.

Initializes the contract and sets owner as the initial owner.

Requirements:

Emits an OwnershipTransferred event.

Panics if called by any account other than the owner.

Transfers ownership of the contract to a new account (new_owner). Internal function without access restriction.

Emits an OwnershipTransferred event.

Sets a new pending owner in a two step transfer.

Internal function without access restriction.

Emits an OwnershipTransferStarted event.

Emitted when the pending owner is updated.

Emitted when the ownership is transferred.

Returns whether account can act as role.

Returns the admin role that controls role. See grant_role and revoke_role.

To change a role’s admin, use set_role_admin.

Grants role to account.

If account had not been already granted role, emits a RoleGranted event.

Requirements:

Revokes role from account.

If account had been granted role, emits a RoleRevoked event.

Requirements:

Revokes role from the calling account.

Roles are often managed via grant_role and revoke_role. This function’s purpose is to provide a mechanism for accounts to lose their privileges if they are compromised (such as when a trusted device is misplaced).

If the calling account had been granted role, emits a RoleRevoked event.

Requirements:

Emitted when new_admin_role is set as role's admin role, replacing previous_admin_role

DEFAULT_ADMIN_ROLE is the starting admin for all roles, despite RoleAdminChanged not being emitted signaling this.

Emitted when account is granted role.

sender is the account that originated the contract call, an account with the admin role or the deployer address if _grant_role is called from the constructor.

Emitted when account is revoked role.

sender is the account that originated the contract call:

Returns the account’s status for the given role. The possible statuses are:

Attempts to grant role to account with the specified activation delay.

Requirements:

May emit a RoleGrantedWithDelay event.

Emitted when account is granted role with a delay.

sender is the account that originated the contract call, an account with the admin role or the deployer address if _grant_role_with_delay is called from the constructor.

Returns whether account can act as role.

Returns the admin role that controls role. See grant_role and revoke_role.

To change a role’s admin, use set_role_admin.

Returns the account’s status for the given role.

The possible statuses are:

Grants role to account.

If account had not been already granted role, emits a RoleGranted event.

Requirements:

May emit a RoleGranted event.

Attempts to grant role to account with the specified activation delay.

Requirements:

May emit a RoleGrantedWithDelay event.

Revokes role from account.

If account had been granted role, emits a RoleRevoked event.

Requirements:

May emit a RoleRevoked event.

Revokes role from the calling account.

Roles are often managed via grant_role and revoke_role. This function’s purpose is to provide a mechanism for accounts to lose their privileges if they are compromised (such as when a trusted device is misplaced).

If the calling account had been revoked role, emits a RoleRevoked event.

Requirements:

May emit a RoleRevoked event.

See ISRC5::supports_interface.

See has_role.

See get_role_admin.

See grant_role.

See revoke_role.

See renounce_role.

Initializes the contract by registering the IAccessControl interface ID.

Validates that the caller can act as the given role. Otherwise it panics.

Returns whether the account can act as the given role.

The account can act as the role if it is active and the effective_from time is before or equal to the current time.

Returns the account’s status for the given role.

The possible statuses are:

Returns whether the account has the given role granted.

Sets admin_role as role's admin role.

Internal function without access restriction.

Emits a RoleAdminChanged event.

Attempts to grant role to account. The function does nothing if role is already effective for account. If role has been granted to account, but is not yet active due to a time delay, the delay is removed and role becomes effective immediately.

Internal function without access restriction.

May emit a RoleGranted event.

Attempts to grant role to account with the specified activation delay.

The role will become effective after the given delay has passed. If the role is already active (Effective) for the account, the function will panic. If the role has been granted but is not yet active (being in the Delayed state), the existing delay will be overwritten with the new delay.

Internal function without access restriction.

Requirements:

May emit a RoleGrantedWithDelay event.

Revokes role from account.

Internal function without access restriction.

May emit a RoleRevoked event.

See IAccessControl::RoleAdminChanged.

See IAccessControl::RoleGranted.

See IAccessControlWithDelay::RoleGrantedWithDelay.

See IAccessControl::RoleRevoked.

Returns the address of the current DEFAULT_ADMIN_ROLE holder.

Returns a tuple of a new_admin and an accept_schedule.

After the accept_schedule passes, the new_admin will be able to accept the default_admin role by calling accept_default_admin_transfer, completing the role transfer.

A zero value only in accept_schedule indicates no pending admin transfer.

Returns the delay required to schedule the acceptance of a default_admin transfer started.

This delay will be added to the current timestamp when calling begin_default_admin_transfer to set the acceptance schedule.

See change_default_admin_delay.

Returns a tuple of new_delay and an effect_schedule.

After the effect_schedule passes, the new_delay will get into effect immediately for every new default_admin transfer started with begin_default_admin_transfer.

A zero value only in effect_schedule indicates no pending delay change.

Starts a default_admin transfer by setting a pending_default_admin scheduled for acceptance after the current timestamp plus a default_admin_delay.

Requirements:

Emits a DefaultAdminTransferScheduled event.

Cancels a default_admin transfer previously started with begin_default_admin_transfer.

A pending_default_admin not yet accepted can also be cancelled with this function.

Requirements:

May emit a DefaultAdminTransferCanceled event.

Completes a default_admin transfer previously started with begin_default_admin_transfer.

After calling the function:

Requirements:

Initiates a default_admin_delay update by setting a pending_default_admin_delay scheduled to take effect after the current timestamp plus a default_admin_delay.

This function guarantees that any call to begin_default_admin_transfer done between the timestamp this method is called and the pending_default_admin_delay effect schedule will use the current default_admin_delay set before calling.

The pending_default_admin_delay's effect schedule is defined in a way that waiting until the schedule and then calling begin_default_admin_transfer with the new delay will take at least the same as another default_admin complete transfer (including acceptance).

The schedule is designed for two scenarios:

A pending_default_admin_delay that never got into effect will be canceled in favor of a new scheduled change.

Requirements:

Emits a DefaultAdminDelayChangeScheduled event and may emit a DefaultAdminDelayChangeCanceled event.

Cancels a scheduled default_admin_delay change.

Requirements:

May emit a DefaultAdminDelayChangeCanceled event.

Maximum time in seconds for an increase to default_admin_delay (that is scheduled using change_default_admin_delay) to take effect. Defaults to 5 days.

When the default_admin_delay is scheduled to be increased, it goes into effect after the new delay has passed with the purpose of giving enough time for reverting any accidental change (i.e. using milliseconds instead of seconds) that may lock the contract. However, to avoid excessive schedules, the wait is capped by this function and it can be overridden for a custom default_admin_delay increase scheduling.

Emitted when a default_admin transfer is started.

Sets new_admin as the next address to become the default_admin by calling accept_default_admin_transfer only after accept_schedule passes.

Emitted when a pending_default_admin is reset if it was never accepted, regardless of its schedule.

Emitted when a default_admin_delay change is started.

Sets new_delay as the next delay to be applied between default admins transfers after effect_schedule has passed.

Returns the address of the current DEFAULT_ADMIN_ROLE holder.

Returns a tuple of a new_admin and an accept_schedule.

After the accept_schedule passes, the new_admin will be able to accept the default_admin role by calling accept_default_admin_transfer, completing the role transfer.

A zero value only in accept_schedule indicates no pending admin transfer.

Returns the delay required to schedule the acceptance of a default_admin transfer started.

This delay will be added to the current timestamp when calling begin_default_admin_transfer to set the acceptance schedule.

See change_default_admin_delay.

Returns a tuple of new_delay and an effect_schedule.

After the effect_schedule passes, the new_delay will get into effect immediately for every new default_admin transfer started with begin_default_admin_transfer.

A zero value only in effect_schedule indicates no pending delay change.

Starts a default_admin transfer by setting a pending_default_admin scheduled for acceptance after the current timestamp plus a default_admin_delay.

Requirements:

Emits a DefaultAdminTransferScheduled event.

Cancels a default_admin transfer previously started with begin_default_admin_transfer.

A pending_default_admin not yet accepted can also be cancelled with this function.

Requirements:

May emit a DefaultAdminTransferCanceled event.

Completes a default_admin transfer previously started with begin_default_admin_transfer.

After calling the function:

Requirements:

Initiates a default_admin_delay update by setting a pending_default_admin_delay scheduled for getting into effect after the current timestamp plus a default_admin_delay.

This function guarantees that any call to begin_default_admin_transfer done between the timestamp this method is called and the pending_default_admin_delay effect schedule will use the current default_admin_delay set before calling.

The pending_default_admin_delay's effect schedule is defined in a way that waiting until the schedule and then calling begin_default_admin_transfer with the new delay will take at least the same as another default_admin complete transfer (including acceptance).

The schedule is designed for two scenarios:

A pending_default_admin_delay that never got into effect will be canceled in favor of a new scheduled change.

Requirements:

Emits a DefaultAdminDelayChangeScheduled event and may emit a DefaultAdminDelayChangeCanceled event.

Cancels a scheduled default_admin_delay change.

Requirements:

May emit a DefaultAdminDelayChangeCanceled event.

Maximum time in seconds for an increase to default_admin_delay (that is scheduled using change_default_admin_delay) to take effect. Defaults to 5 days.

When the default_admin_delay is scheduled to be increased, it goes into effect after the new delay has passed with the purpose of giving enough time for reverting any accidental change (i.e. using milliseconds instead of seconds) that may lock the contract. However, to avoid excessive schedules, the wait is capped by this function and it can be overridden for a custom default_admin_delay increase scheduling.

Returns whether account can act as role.

Returns the admin role that controls role. See grant_role and revoke_role.

To change a role’s admin, use set_role_admin.

Returns the account’s status for the given role.

The possible statuses are:

Grants role to account.

If account had not been already granted role, emits a RoleGranted event.

Requirements:

May emit a RoleGranted event.

Attempts to grant role to account with the specified activation delay.

Requirements:

May emit a RoleGrantedWithDelay event.

Revokes role from account.

If account had been granted role, emits a RoleRevoked event.

Requirements:

May emit a RoleRevoked event.

Revokes role from the calling account.

Roles are often managed via grant_role and revoke_role. This function’s purpose is to provide a mechanism for accounts to lose their privileges if they are compromised (such as when a trusted device is misplaced).

If the calling account had been revoked role, emits a RoleRevoked event.

Requirements:

May emit a RoleRevoked event.

See ISRC5::supports_interface.

See has_role.

See get_role_admin.

See grant_role.

See revoke_role.

See renounce_role.

Initializes the contract by registering the IAccessControl interface ID and setting the initial delay and default admin.

Requirements:

Validates that the caller can act as the given role. Otherwise it panics.

Returns whether the account can act as the given role.

The account can act as the role if it is active and the effective_from time is before or equal to the current time.

Returns the account’s status for the given role.

The possible statuses are:

Returns whether the account has the given role granted.

Sets admin_role as `role’s admin role.

Internal function without access restriction.

Requirements:

Emits a RoleAdminChanged event.

Attempts to grant role to account. The function does nothing if role is already effective for account. If role has been granted to account, but is not yet active due to a time delay, the delay is removed and role becomes effective immediately.

Internal function without access restriction.

For DEFAULT_ADMIN_ROLE, it only allows granting if there isn’t already a default_admin or if the role has been previously renounced.

May emit a RoleGranted event.

Attempts to grant role to account with the specified activation delay.

The role will become effective after the given delay has passed. If the role is already active (Effective) for the account, the function will panic. If the role has been granted but is not yet active (being in the Delayed state), the existing delay will be overwritten with the new delay.

Internal function without access restriction.

Requirements:

May emit a RoleGrantedWithDelay event.

Attempts to revoke role from account. The function does nothing if role is not effective for account. If role has been revoked from account, but is still active due to a time delay, the delay is removed and role becomes inactive immediately.

Internal function without access restriction.

May emit a RoleRevoked event.

Setter of the tuple for pending admin and its schedule.

May emit a {DefaultAdminTransferCanceled} event.

Setter of the tuple for pending delay and its schedule.

May emit a {DefaultAdminDelayChangeCanceled} event.

Returns the amount of seconds to wait after the new_delay will become the new default_admin_delay.

The value returned guarantees that if the delay is reduced, it will go into effect after a wait that honors the previously set delay.

See default_admin_delay_increase_wait.

Emitted when new_admin_role is set as role’s admin role, replacing `previous_admin_role

DEFAULT_ADMIN_ROLE is the starting admin for all roles, despite RoleAdminChanged not being emitted signaling this.

Emitted when account is granted role.

sender is the account that originated the contract call, an account with the admin role or the deployer address if _grant_role is called from the constructor.

Emitted when role is revoked for account.

sender is the account that originated the contract call:

Emitted when account is granted role with a delay.

sender is the account that originated the contract call, an account with the admin role or the deployer address if _grant_role_with_delay is called from the constructor.

Emitted when a default_admin transfer is started.

Sets new_admin as the next address to become the default_admin by calling accept_default_admin_transfer only after accept_schedule passes.

Emitted when a pending_default_admin is reset if it was never accepted, regardless of its schedule.

Emitted when a default_admin_delay change is started.

Sets new_delay as the next delay to be applied between default admins transfers after effect_schedule has passed.