Merge branch 'release/v1.0.0-rc.2'

Author: TRiLeZ

contracts/access/Roles.sol

@@ -0,0 +1,8 @@
+// SPDX-License-Identifier: MIT
+pragma solidity >=0.5.0 <0.9.0;
+
+library Roles {
+    bytes32 public constant ADMIN = keccak256("ADMIN_ROLE");
+
+    bytes32 public constant ORACLE_UPDATER = keccak256("ORACLE_UPDATER_ROLE");
+}

contracts/accumulators/proto/curve/ManagedCurveLiquidityAccumulator.sol

@@ -0,0 +1,58 @@
+//SPDX-License-Identifier: MIT
+pragma solidity =0.8.11;
+
+import "@pythia-oracle/pythia-core/contracts/accumulators/proto/curve/CurveLiquidityAccumulator.sol";
+
+import "@openzeppelin-v4/contracts/access/AccessControl.sol";
+
+import "../../../access/Roles.sol";
+
+contract ManagedCurveLiquidityAccumulator is AccessControl, CurveLiquidityAccumulator {
+    constructor(
+        address curvePool_,
+        uint8 nCoins_,
+        address quoteToken_,
+        uint256 updateTheshold_,
+        uint256 minUpdateDelay_,
+        uint256 maxUpdateDelay_
+    ) CurveLiquidityAccumulator(curvePool_, nCoins_, quoteToken_, updateTheshold_, minUpdateDelay_, maxUpdateDelay_) {
+        initializeRoles();
+    }
+
+    /**
+     * @notice Modifier to make a function callable only by a certain role. In
+     * addition to checking the sender's role, `address(0)` 's role is also
+     * considered. Granting a role to `address(0)` is equivalent to enabling
+     * this role for everyone.
+     */
+
+    modifier onlyRoleOrOpenRole(bytes32 role) {
+        if (!hasRole(role, address(0))) {
+            require(hasRole(role, msg.sender), "ManagedCurveLiquidityAccumulator: MISSING_ROLE");
+        }
+        _;
+    }
+
+    function supportsInterface(bytes4 interfaceId)
+        public
+        view
+        virtual
+        override(AccessControl, LiquidityAccumulator)
+        returns (bool)
+    {
+        return interfaceId == type(IAccessControl).interfaceId || LiquidityAccumulator.supportsInterface(interfaceId);
+    }
+
+    function initializeRoles() internal virtual {
+        // Setup admin role, setting msg.sender as admin
+        _setupRole(Roles.ADMIN, msg.sender);
+        _setRoleAdmin(Roles.ADMIN, Roles.ADMIN);
+
+        // Set admin of ORACLE_UPDATER as ADMIN
+        _setRoleAdmin(Roles.ORACLE_UPDATER, Roles.ADMIN);
+    }
+
+    function _update(address token) internal virtual override onlyRoleOrOpenRole(Roles.ORACLE_UPDATER) returns (bool) {
+        return super._update(token);
+    }
+}

contracts/accumulators/proto/curve/ManagedCurvePriceAccumulator.sol

@@ -0,0 +1,58 @@
+//SPDX-License-Identifier: MIT
+pragma solidity =0.8.11;
+
+import "@pythia-oracle/pythia-core/contracts/accumulators/proto/curve/CurvePriceAccumulator.sol";
+
+import "@openzeppelin-v4/contracts/access/AccessControl.sol";
+
+import "../../../access/Roles.sol";
+
+contract ManagedCurvePriceAccumulator is AccessControl, CurvePriceAccumulator {
+    constructor(
+        address curvePool_,
+        int8 nCoins_,
+        address quoteToken_,
+        uint256 updateTheshold_,
+        uint256 minUpdateDelay_,
+        uint256 maxUpdateDelay_
+    ) CurvePriceAccumulator(curvePool_, nCoins_, quoteToken_, updateTheshold_, minUpdateDelay_, maxUpdateDelay_) {
+        initializeRoles();
+    }
+
+    /**
+     * @notice Modifier to make a function callable only by a certain role. In
+     * addition to checking the sender's role, `address(0)` 's role is also
+     * considered. Granting a role to `address(0)` is equivalent to enabling
+     * this role for everyone.
+     */
+
+    modifier onlyRoleOrOpenRole(bytes32 role) {
+        if (!hasRole(role, address(0))) {
+            require(hasRole(role, msg.sender), "ManagedCurvePriceAccumulator: MISSING_ROLE");
+        }
+        _;
+    }
+
+    function supportsInterface(bytes4 interfaceId)
+        public
+        view
+        virtual
+        override(AccessControl, PriceAccumulator)
+        returns (bool)
+    {
+        return interfaceId == type(IAccessControl).interfaceId || PriceAccumulator.supportsInterface(interfaceId);
+    }
+
+    function initializeRoles() internal virtual {
+        // Setup admin role, setting msg.sender as admin
+        _setupRole(Roles.ADMIN, msg.sender);
+        _setRoleAdmin(Roles.ADMIN, Roles.ADMIN);
+
+        // Set admin of ORACLE_UPDATER as ADMIN
+        _setRoleAdmin(Roles.ORACLE_UPDATER, Roles.ADMIN);
+    }
+
+    function _update(address token) internal virtual override onlyRoleOrOpenRole(Roles.ORACLE_UPDATER) returns (bool) {
+        return super._update(token);
+    }
+}

contracts/accumulators/proto/uniswap/ManagedUniswapV2LiquidityAccumulator.sol

@@ -0,0 +1,67 @@
+//SPDX-License-Identifier: MIT
+pragma solidity =0.8.11;
+
+import "@pythia-oracle/pythia-core/contracts/accumulators/proto/uniswap/UniswapV2LiquidityAccumulator.sol";
+
+import "@openzeppelin-v4/contracts/access/AccessControl.sol";
+
+import "../../../access/Roles.sol";
+
+contract ManagedUniswapV2LiquidityAccumulator is AccessControl, UniswapV2LiquidityAccumulator {
+    constructor(
+        address uniswapFactory_,
+        bytes32 initCodeHash_,
+        address quoteToken_,
+        uint256 updateTheshold_,
+        uint256 minUpdateDelay_,
+        uint256 maxUpdateDelay_
+    )
+        UniswapV2LiquidityAccumulator(
+            uniswapFactory_,
+            initCodeHash_,
+            quoteToken_,
+            updateTheshold_,
+            minUpdateDelay_,
+            maxUpdateDelay_
+        )
+    {
+        initializeRoles();
+    }
+
+    /**
+     * @notice Modifier to make a function callable only by a certain role. In
+     * addition to checking the sender's role, `address(0)` 's role is also
+     * considered. Granting a role to `address(0)` is equivalent to enabling
+     * this role for everyone.
+     */
+
+    modifier onlyRoleOrOpenRole(bytes32 role) {
+        if (!hasRole(role, address(0))) {
+            require(hasRole(role, msg.sender), "ManagedUniswapV2LiquidityAccumulator: MISSING_ROLE");
+        }
+        _;
+    }
+
+    function supportsInterface(bytes4 interfaceId)
+        public
+        view
+        virtual
+        override(AccessControl, LiquidityAccumulator)
+        returns (bool)
+    {
+        return interfaceId == type(IAccessControl).interfaceId || LiquidityAccumulator.supportsInterface(interfaceId);
+    }
+
+    function initializeRoles() internal virtual {
+        // Setup admin role, setting msg.sender as admin
+        _setupRole(Roles.ADMIN, msg.sender);
+        _setRoleAdmin(Roles.ADMIN, Roles.ADMIN);
+
+        // Set admin of ORACLE_UPDATER as ADMIN
+        _setRoleAdmin(Roles.ORACLE_UPDATER, Roles.ADMIN);
+    }
+
+    function _update(address token) internal virtual override onlyRoleOrOpenRole(Roles.ORACLE_UPDATER) returns (bool) {
+        return super._update(token);
+    }
+}

contracts/accumulators/proto/uniswap/ManagedUniswapV3LiquidityAccumulator.sol

@@ -0,0 +1,69 @@
+//SPDX-License-Identifier: MIT
+pragma solidity =0.8.11;
+
+import "@pythia-oracle/pythia-core/contracts/accumulators/proto/uniswap/UniswapV3LiquidityAccumulator.sol";
+
+import "@openzeppelin-v4/contracts/access/AccessControl.sol";
+
+import "../../../access/Roles.sol";
+
+contract ManagedUniswapV3LiquidityAccumulator is AccessControl, UniswapV3LiquidityAccumulator {
+    constructor(
+        address uniswapFactory_,
+        bytes32 initCodeHash_,
+        uint24[] memory poolFees_,
+        address quoteToken_,
+        uint256 updateTheshold_,
+        uint256 minUpdateDelay_,
+        uint256 maxUpdateDelay_
+    )
+        UniswapV3LiquidityAccumulator(
+            uniswapFactory_,
+            initCodeHash_,
+            poolFees_,
+            quoteToken_,
+            updateTheshold_,
+            minUpdateDelay_,
+            maxUpdateDelay_
+        )
+    {
+        initializeRoles();
+    }
+
+    /**
+     * @notice Modifier to make a function callable only by a certain role. In
+     * addition to checking the sender's role, `address(0)` 's role is also
+     * considered. Granting a role to `address(0)` is equivalent to enabling
+     * this role for everyone.
+     */
+
+    modifier onlyRoleOrOpenRole(bytes32 role) {
+        if (!hasRole(role, address(0))) {
+            require(hasRole(role, msg.sender), "ManagedUniswapV3LiquidityAccumulator: MISSING_ROLE");
+        }
+        _;
+    }
+
+    function supportsInterface(bytes4 interfaceId)
+        public
+        view
+        virtual
+        override(AccessControl, LiquidityAccumulator)
+        returns (bool)
+    {
+        return interfaceId == type(IAccessControl).interfaceId || LiquidityAccumulator.supportsInterface(interfaceId);
+    }
+
+    function initializeRoles() internal virtual {
+        // Setup admin role, setting msg.sender as admin
+        _setupRole(Roles.ADMIN, msg.sender);
+        _setRoleAdmin(Roles.ADMIN, Roles.ADMIN);
+
+        // Set admin of ORACLE_UPDATER as ADMIN
+        _setRoleAdmin(Roles.ORACLE_UPDATER, Roles.ADMIN);
+    }
+
+    function _update(address token) internal virtual override onlyRoleOrOpenRole(Roles.ORACLE_UPDATER) returns (bool) {
+        return super._update(token);
+    }
+}

contracts/oracles/ManagedPeriodicAccumulationOracle.sol

@@ -3,17 +3,56 @@ pragma solidity =0.8.11;
 
 import "@pythia-oracle/pythia-core/contracts/oracles/PeriodicAccumulationOracle.sol";
 
-import "@openzeppelin-v4/contracts/access/Ownable.sol";
+import "@openzeppelin-v4/contracts/access/AccessControl.sol";
 
-contract ManagedPeriodicAccumulationOracle is Ownable, PeriodicAccumulationOracle {
+import "../access/Roles.sol";
+
+contract ManagedPeriodicAccumulationOracle is AccessControl, PeriodicAccumulationOracle {
     constructor(
         address liquidityAccumulator_,
         address priceAccumulator_,
         address quoteToken_,
         uint256 period_
-    ) PeriodicAccumulationOracle(liquidityAccumulator_, priceAccumulator_, quoteToken_, period_) {}
+    ) PeriodicAccumulationOracle(liquidityAccumulator_, priceAccumulator_, quoteToken_, period_) {
+        initializeRoles();
+    }
+
+    /**
+     * @notice Modifier to make a function callable only by a certain role. In
+     * addition to checking the sender's role, `address(0)` 's role is also
+     * considered. Granting a role to `address(0)` is equivalent to enabling
+     * this role for everyone.
+     */
+
+    modifier onlyRoleOrOpenRole(bytes32 role) {
+        if (!hasRole(role, address(0))) {
+            require(hasRole(role, msg.sender), "ManagedPeriodicAccumulationOracle: MISSING_ROLE");
+        }
+        _;
+    }
+
+    function supportsInterface(bytes4 interfaceId)
+        public
+        view
+        virtual
+        override(AccessControl, PeriodicAccumulationOracle)
+        returns (bool)
+    {
+        return
+            interfaceId == type(IAccessControl).interfaceId ||
+            PeriodicAccumulationOracle.supportsInterface(interfaceId);
+    }
+
+    function initializeRoles() internal virtual {
+        // Setup admin role, setting msg.sender as admin
+        _setupRole(Roles.ADMIN, msg.sender);
+        _setRoleAdmin(Roles.ADMIN, Roles.ADMIN);
+
+        // Set admin of ORACLE_UPDATER as ADMIN
+        _setRoleAdmin(Roles.ORACLE_UPDATER, Roles.ADMIN);
+    }
 
-    function _update(address token) internal virtual override onlyOwner returns (bool) {
+    function _update(address token) internal virtual override onlyRoleOrOpenRole(Roles.ORACLE_UPDATER) returns (bool) {
         return super._update(token);
     }
 }

contracts/oracles/proto/uniswap/ManagedUniswapV2Oracle.sol

@@ -3,18 +3,55 @@ pragma solidity =0.8.11;
 
 import "@pythia-oracle/pythia-core/contracts/oracles/proto/uniswap/UniswapV2Oracle.sol";
 
-import "@openzeppelin-v4/contracts/access/Ownable.sol";
+import "@openzeppelin-v4/contracts/access/AccessControl.sol";
 
-contract ManagedUniswapV2Oracle is Ownable, UniswapV2Oracle {
+import "../../../access/Roles.sol";
+
+contract ManagedUniswapV2Oracle is AccessControl, UniswapV2Oracle {
     constructor(
         address liquidityAccumulator_,
         address uniswapFactory_,
         bytes32 initCodeHash_,
         address quoteToken_,
         uint256 period_
-    ) UniswapV2Oracle(liquidityAccumulator_, uniswapFactory_, initCodeHash_, quoteToken_, period_) {}
+    ) UniswapV2Oracle(liquidityAccumulator_, uniswapFactory_, initCodeHash_, quoteToken_, period_) {
+        initializeRoles();
+    }
+
+    /**
+     * @notice Modifier to make a function callable only by a certain role. In
+     * addition to checking the sender's role, `address(0)` 's role is also
+     * considered. Granting a role to `address(0)` is equivalent to enabling
+     * this role for everyone.
+     */
+
+    modifier onlyRoleOrOpenRole(bytes32 role) {
+        if (!hasRole(role, address(0))) {
+            require(hasRole(role, msg.sender), "ManagedUniswapV2Oracle: MISSING_ROLE");
+        }
+        _;
+    }
+
+    function supportsInterface(bytes4 interfaceId)
+        public
+        view
+        virtual
+        override(AccessControl, UniswapV2Oracle)
+        returns (bool)
+    {
+        return interfaceId == type(IAccessControl).interfaceId || UniswapV2Oracle.supportsInterface(interfaceId);
+    }
+
+    function initializeRoles() internal virtual {
+        // Setup admin role, setting msg.sender as admin
+        _setupRole(Roles.ADMIN, msg.sender);
+        _setRoleAdmin(Roles.ADMIN, Roles.ADMIN);
+
+        // Set admin of ORACLE_UPDATER as ADMIN
+        _setRoleAdmin(Roles.ORACLE_UPDATER, Roles.ADMIN);
+    }
 
-    function _update(address token) internal virtual override onlyOwner returns (bool) {
+    function _update(address token) internal virtual override onlyRoleOrOpenRole(Roles.ORACLE_UPDATER) returns (bool) {
         return super._update(token);
     }
 }