// SPDX-License-Identifier: MITpragmasolidity ^0.8.0;import"./IAccessControl.sol";
import"../utils/Context.sol";
import"../utils/Strings.sol";
import"../utils/introspection/ERC165.sol";
/**
* @dev Contract module that allows children to implement role-based access
* control mechanisms. This is a lightweight version that doesn't allow enumerating role
* members except through off-chain means by accessing the contract event logs. Some
* applications may benefit from on-chain enumerability, for those cases see
* {AccessControlEnumerable}.
*
* Roles are referred to by their `bytes32` identifier. These should be exposed
* in the external API and be unique. The best way to achieve this is by
* using `public constant` hash digests:
*
* ```
* bytes32 public constant MY_ROLE = keccak256("MY_ROLE");
* ```
*
* Roles can be used to represent a set of permissions. To restrict access to a
* function call, use {hasRole}:
*
* ```
* function foo() public {
* require(hasRole(MY_ROLE, msg.sender));
* ...
* }
* ```
*
* Roles can be granted and revoked dynamically via the {grantRole} and
* {revokeRole} functions. Each role has an associated admin role, and only
* accounts that have a role's admin role can call {grantRole} and {revokeRole}.
*
* By default, the admin role for all roles is `DEFAULT_ADMIN_ROLE`, which means
* that only accounts with this role will be able to grant or revoke other
* roles. More complex role relationships can be created by using
* {_setRoleAdmin}.
*
* WARNING: The `DEFAULT_ADMIN_ROLE` is also its own admin: it has permission to
* grant and revoke this role. Extra precautions should be taken to secure
* accounts that have been granted it.
*/abstractcontractAccessControlisContext, IAccessControl, ERC165{
structRoleData {
mapping(address=>bool) members;
bytes32 adminRole;
}
mapping(bytes32=> RoleData) private _roles;
bytes32publicconstant DEFAULT_ADMIN_ROLE =0x00;
/**
* @dev Modifier that checks that an account has a specific role. Reverts
* with a standardized message including the required role.
*
* The format of the revert reason is given by the following regular expression:
*
* /^AccessControl: account (0x[0-9a-f]{40}) is missing role (0x[0-9a-f]{64})$/
*
* _Available since v4.1._
*/modifieronlyRole(bytes32 role) {
_checkRole(role, _msgSender());
_;
}
/**
* @dev See {IERC165-supportsInterface}.
*/functionsupportsInterface(bytes4 interfaceId) publicviewvirtualoverridereturns (bool) {
return interfaceId ==type(IAccessControl).interfaceId||super.supportsInterface(interfaceId);
}
/**
* @dev Returns `true` if `account` has been granted `role`.
*/functionhasRole(bytes32 role, address account) publicviewoverridereturns (bool) {
return _roles[role].members[account];
}
/**
* @dev Revert with a standard message if `account` is missing `role`.
*
* The format of the revert reason is given by the following regular expression:
*
* /^AccessControl: account (0x[0-9a-f]{40}) is missing role (0x[0-9a-f]{64})$/
*/function_checkRole(bytes32 role, address account) internalview{
if (!hasRole(role, account)) {
revert(
string(
abi.encodePacked(
"AccessControl: account ",
Strings.toHexString(uint160(account), 20),
" is missing role ",
Strings.toHexString(uint256(role), 32)
)
)
);
}
}
/**
* @dev Returns the admin role that controls `role`. See {grantRole} and
* {revokeRole}.
*
* To change a role's admin, use {_setRoleAdmin}.
*/functiongetRoleAdmin(bytes32 role) publicviewoverridereturns (bytes32) {
return _roles[role].adminRole;
}
/**
* @dev Grants `role` to `account`.
*
* If `account` had not been already granted `role`, emits a {RoleGranted}
* event.
*
* Requirements:
*
* - the caller must have ``role``'s admin role.
*/functiongrantRole(bytes32 role, address account) publicvirtualoverrideonlyRole(getRoleAdmin(role)) {
_grantRole(role, account);
}
/**
* @dev Revokes `role` from `account`.
*
* If `account` had been granted `role`, emits a {RoleRevoked} event.
*
* Requirements:
*
* - the caller must have ``role``'s admin role.
*/functionrevokeRole(bytes32 role, address account) publicvirtualoverrideonlyRole(getRoleAdmin(role)) {
_revokeRole(role, account);
}
/**
* @dev Revokes `role` from the calling account.
*
* Roles are often managed via {grantRole} and {revokeRole}: this function's
* purpose is to provide a mechanism for accounts to lose their privileges
* if they are compromised (such as when a trusted device is misplaced).
*
* If the calling account had been granted `role`, emits a {RoleRevoked}
* event.
*
* Requirements:
*
* - the caller must be `account`.
*/functionrenounceRole(bytes32 role, address account) publicvirtualoverride{
require(account == _msgSender(), "AccessControl: can only renounce roles for self");
_revokeRole(role, account);
}
/**
* @dev Grants `role` to `account`.
*
* If `account` had not been already granted `role`, emits a {RoleGranted}
* event. Note that unlike {grantRole}, this function doesn't perform any
* checks on the calling account.
*
* [WARNING]
* ====
* This function should only be called from the constructor when setting
* up the initial roles for the system.
*
* Using this function in any other way is effectively circumventing the admin
* system imposed by {AccessControl}.
* ====
*/function_setupRole(bytes32 role, address account) internalvirtual{
_grantRole(role, account);
}
/**
* @dev Sets `adminRole` as ``role``'s admin role.
*
* Emits a {RoleAdminChanged} event.
*/function_setRoleAdmin(bytes32 role, bytes32 adminRole) internalvirtual{
bytes32 previousAdminRole = getRoleAdmin(role);
_roles[role].adminRole = adminRole;
emit RoleAdminChanged(role, previousAdminRole, adminRole);
}
function_grantRole(bytes32 role, address account) private{
if (!hasRole(role, account)) {
_roles[role].members[account] =true;
emit RoleGranted(role, account, _msgSender());
}
}
function_revokeRole(bytes32 role, address account) private{
if (hasRole(role, account)) {
_roles[role].members[account] =false;
emit RoleRevoked(role, account, _msgSender());
}
}
}
Contract Source Code
File 3 of 27: Address.sol
// SPDX-License-Identifier: MITpragmasolidity ^0.8.0;/**
* @dev Collection of functions related to the address type
*/libraryAddress{
/**
* @dev Returns true if `account` is a contract.
*
* [IMPORTANT]
* ====
* It is unsafe to assume that an address for which this function returns
* false is an externally-owned account (EOA) and not a contract.
*
* Among others, `isContract` will return false for the following
* types of addresses:
*
* - an externally-owned account
* - a contract in construction
* - an address where a contract will be created
* - an address where a contract lived, but was destroyed
* ====
*/functionisContract(address account) internalviewreturns (bool) {
// This method relies on extcodesize, which returns 0 for contracts in// construction, since the code is only stored at the end of the// constructor execution.uint256 size;
assembly {
size :=extcodesize(account)
}
return size >0;
}
/**
* @dev Replacement for Solidity's `transfer`: sends `amount` wei to
* `recipient`, forwarding all available gas and reverting on errors.
*
* https://eips.ethereum.org/EIPS/eip-1884[EIP1884] increases the gas cost
* of certain opcodes, possibly making contracts go over the 2300 gas limit
* imposed by `transfer`, making them unable to receive funds via
* `transfer`. {sendValue} removes this limitation.
*
* https://diligence.consensys.net/posts/2019/09/stop-using-soliditys-transfer-now/[Learn more].
*
* IMPORTANT: because control is transferred to `recipient`, care must be
* taken to not create reentrancy vulnerabilities. Consider using
* {ReentrancyGuard} or the
* https://solidity.readthedocs.io/en/v0.5.11/security-considerations.html#use-the-checks-effects-interactions-pattern[checks-effects-interactions pattern].
*/functionsendValue(addresspayable recipient, uint256 amount) internal{
require(address(this).balance>= amount, "Address: insufficient balance");
(bool success, ) = recipient.call{value: amount}("");
require(success, "Address: unable to send value, recipient may have reverted");
}
/**
* @dev Performs a Solidity function call using a low level `call`. A
* plain `call` is an unsafe replacement for a function call: use this
* function instead.
*
* If `target` reverts with a revert reason, it is bubbled up by this
* function (like regular Solidity function calls).
*
* Returns the raw returned data. To convert to the expected return value,
* use https://solidity.readthedocs.io/en/latest/units-and-global-variables.html?highlight=abi.decode#abi-encoding-and-decoding-functions[`abi.decode`].
*
* Requirements:
*
* - `target` must be a contract.
* - calling `target` with `data` must not revert.
*
* _Available since v3.1._
*/functionfunctionCall(address target, bytesmemory data) internalreturns (bytesmemory) {
return functionCall(target, data, "Address: low-level call failed");
}
/**
* @dev Same as {xref-Address-functionCall-address-bytes-}[`functionCall`], but with
* `errorMessage` as a fallback revert reason when `target` reverts.
*
* _Available since v3.1._
*/functionfunctionCall(address target,
bytesmemory data,
stringmemory errorMessage
) internalreturns (bytesmemory) {
return functionCallWithValue(target, data, 0, errorMessage);
}
/**
* @dev Same as {xref-Address-functionCall-address-bytes-}[`functionCall`],
* but also transferring `value` wei to `target`.
*
* Requirements:
*
* - the calling contract must have an ETH balance of at least `value`.
* - the called Solidity function must be `payable`.
*
* _Available since v3.1._
*/functionfunctionCallWithValue(address target,
bytesmemory data,
uint256 value
) internalreturns (bytesmemory) {
return functionCallWithValue(target, data, value, "Address: low-level call with value failed");
}
/**
* @dev Same as {xref-Address-functionCallWithValue-address-bytes-uint256-}[`functionCallWithValue`], but
* with `errorMessage` as a fallback revert reason when `target` reverts.
*
* _Available since v3.1._
*/functionfunctionCallWithValue(address target,
bytesmemory data,
uint256 value,
stringmemory errorMessage
) internalreturns (bytesmemory) {
require(address(this).balance>= value, "Address: insufficient balance for call");
require(isContract(target), "Address: call to non-contract");
(bool success, bytesmemory returndata) = target.call{value: value}(data);
return verifyCallResult(success, returndata, errorMessage);
}
/**
* @dev Same as {xref-Address-functionCall-address-bytes-}[`functionCall`],
* but performing a static call.
*
* _Available since v3.3._
*/functionfunctionStaticCall(address target, bytesmemory data) internalviewreturns (bytesmemory) {
return functionStaticCall(target, data, "Address: low-level static call failed");
}
/**
* @dev Same as {xref-Address-functionCall-address-bytes-string-}[`functionCall`],
* but performing a static call.
*
* _Available since v3.3._
*/functionfunctionStaticCall(address target,
bytesmemory data,
stringmemory errorMessage
) internalviewreturns (bytesmemory) {
require(isContract(target), "Address: static call to non-contract");
(bool success, bytesmemory returndata) = target.staticcall(data);
return verifyCallResult(success, returndata, errorMessage);
}
/**
* @dev Same as {xref-Address-functionCall-address-bytes-}[`functionCall`],
* but performing a delegate call.
*
* _Available since v3.4._
*/functionfunctionDelegateCall(address target, bytesmemory data) internalreturns (bytesmemory) {
return functionDelegateCall(target, data, "Address: low-level delegate call failed");
}
/**
* @dev Same as {xref-Address-functionCall-address-bytes-string-}[`functionCall`],
* but performing a delegate call.
*
* _Available since v3.4._
*/functionfunctionDelegateCall(address target,
bytesmemory data,
stringmemory errorMessage
) internalreturns (bytesmemory) {
require(isContract(target), "Address: delegate call to non-contract");
(bool success, bytesmemory returndata) = target.delegatecall(data);
return verifyCallResult(success, returndata, errorMessage);
}
/**
* @dev Tool to verifies that a low level call was successful, and revert if it wasn't, either by bubbling the
* revert reason using the provided one.
*
* _Available since v4.3._
*/functionverifyCallResult(bool success,
bytesmemory returndata,
stringmemory errorMessage
) internalpurereturns (bytesmemory) {
if (success) {
return returndata;
} else {
// Look for revert reason and bubble it up if presentif (returndata.length>0) {
// The easiest way to bubble the revert reason is using memory via assemblyassembly {
let returndata_size :=mload(returndata)
revert(add(32, returndata), returndata_size)
}
} else {
revert(errorMessage);
}
}
}
}
Contract Source Code
File 4 of 27: Context.sol
// SPDX-License-Identifier: MITpragmasolidity ^0.8.0;/**
* @dev Provides information about the current execution context, including the
* sender of the transaction and its data. While these are generally available
* via msg.sender and msg.data, they should not be accessed in such a direct
* manner, since when dealing with meta-transactions the account sending and
* paying for execution may not be the actual sender (as far as an application
* is concerned).
*
* This contract is only required for intermediate, library-like contracts.
*/abstractcontractContext{
function_msgSender() internalviewvirtualreturns (address) {
returnmsg.sender;
}
function_msgData() internalviewvirtualreturns (bytescalldata) {
returnmsg.data;
}
}
Contract Source Code
File 5 of 27: ERC165.sol
// SPDX-License-Identifier: MITpragmasolidity ^0.8.0;import"./IERC165.sol";
/**
* @dev Implementation of the {IERC165} interface.
*
* Contracts that want to implement ERC165 should inherit from this contract and override {supportsInterface} to check
* for the additional interface id that will be supported. For example:
*
* ```solidity
* function supportsInterface(bytes4 interfaceId) public view virtual override returns (bool) {
* return interfaceId == type(MyInterface).interfaceId || super.supportsInterface(interfaceId);
* }
* ```
*
* Alternatively, {ERC165Storage} provides an easier to use but more expensive implementation.
*/abstractcontractERC165isIERC165{
/**
* @dev See {IERC165-supportsInterface}.
*/functionsupportsInterface(bytes4 interfaceId) publicviewvirtualoverridereturns (bool) {
return interfaceId ==type(IERC165).interfaceId;
}
}
Contract Source Code
File 6 of 27: ERC20.sol
// SPDX-License-Identifier: MITpragmasolidity ^0.8.0;import"./IERC20.sol";
import"./extensions/IERC20Metadata.sol";
import"../../utils/Context.sol";
/**
* @dev Implementation of the {IERC20} interface.
*
* This implementation is agnostic to the way tokens are created. This means
* that a supply mechanism has to be added in a derived contract using {_mint}.
* For a generic mechanism see {ERC20PresetMinterPauser}.
*
* TIP: For a detailed writeup see our guide
* https://forum.zeppelin.solutions/t/how-to-implement-erc20-supply-mechanisms/226[How
* to implement supply mechanisms].
*
* We have followed general OpenZeppelin Contracts guidelines: functions revert
* instead returning `false` on failure. This behavior is nonetheless
* conventional and does not conflict with the expectations of ERC20
* applications.
*
* Additionally, an {Approval} event is emitted on calls to {transferFrom}.
* This allows applications to reconstruct the allowance for all accounts just
* by listening to said events. Other implementations of the EIP may not emit
* these events, as it isn't required by the specification.
*
* Finally, the non-standard {decreaseAllowance} and {increaseAllowance}
* functions have been added to mitigate the well-known issues around setting
* allowances. See {IERC20-approve}.
*/contractERC20isContext, IERC20, IERC20Metadata{
mapping(address=>uint256) private _balances;
mapping(address=>mapping(address=>uint256)) private _allowances;
uint256private _totalSupply;
stringprivate _name;
stringprivate _symbol;
/**
* @dev Sets the values for {name} and {symbol}.
*
* The default value of {decimals} is 18. To select a different value for
* {decimals} you should overload it.
*
* All two of these values are immutable: they can only be set once during
* construction.
*/constructor(stringmemory name_, stringmemory symbol_) {
_name = name_;
_symbol = symbol_;
}
/**
* @dev Returns the name of the token.
*/functionname() publicviewvirtualoverridereturns (stringmemory) {
return _name;
}
/**
* @dev Returns the symbol of the token, usually a shorter version of the
* name.
*/functionsymbol() publicviewvirtualoverridereturns (stringmemory) {
return _symbol;
}
/**
* @dev Returns the number of decimals used to get its user representation.
* For example, if `decimals` equals `2`, a balance of `505` tokens should
* be displayed to a user as `5.05` (`505 / 10 ** 2`).
*
* Tokens usually opt for a value of 18, imitating the relationship between
* Ether and Wei. This is the value {ERC20} uses, unless this function is
* overridden;
*
* NOTE: This information is only used for _display_ purposes: it in
* no way affects any of the arithmetic of the contract, including
* {IERC20-balanceOf} and {IERC20-transfer}.
*/functiondecimals() publicviewvirtualoverridereturns (uint8) {
return18;
}
/**
* @dev See {IERC20-totalSupply}.
*/functiontotalSupply() publicviewvirtualoverridereturns (uint256) {
return _totalSupply;
}
/**
* @dev See {IERC20-balanceOf}.
*/functionbalanceOf(address account) publicviewvirtualoverridereturns (uint256) {
return _balances[account];
}
/**
* @dev See {IERC20-transfer}.
*
* Requirements:
*
* - `recipient` cannot be the zero address.
* - the caller must have a balance of at least `amount`.
*/functiontransfer(address recipient, uint256 amount) publicvirtualoverridereturns (bool) {
_transfer(_msgSender(), recipient, amount);
returntrue;
}
/**
* @dev See {IERC20-allowance}.
*/functionallowance(address owner, address spender) publicviewvirtualoverridereturns (uint256) {
return _allowances[owner][spender];
}
/**
* @dev See {IERC20-approve}.
*
* Requirements:
*
* - `spender` cannot be the zero address.
*/functionapprove(address spender, uint256 amount) publicvirtualoverridereturns (bool) {
_approve(_msgSender(), spender, amount);
returntrue;
}
/**
* @dev See {IERC20-transferFrom}.
*
* Emits an {Approval} event indicating the updated allowance. This is not
* required by the EIP. See the note at the beginning of {ERC20}.
*
* Requirements:
*
* - `sender` and `recipient` cannot be the zero address.
* - `sender` must have a balance of at least `amount`.
* - the caller must have allowance for ``sender``'s tokens of at least
* `amount`.
*/functiontransferFrom(address sender,
address recipient,
uint256 amount
) publicvirtualoverridereturns (bool) {
_transfer(sender, recipient, amount);
uint256 currentAllowance = _allowances[sender][_msgSender()];
require(currentAllowance >= amount, "ERC20: transfer amount exceeds allowance");
unchecked {
_approve(sender, _msgSender(), currentAllowance - amount);
}
returntrue;
}
/**
* @dev Atomically increases the allowance granted to `spender` by the caller.
*
* This is an alternative to {approve} that can be used as a mitigation for
* problems described in {IERC20-approve}.
*
* Emits an {Approval} event indicating the updated allowance.
*
* Requirements:
*
* - `spender` cannot be the zero address.
*/functionincreaseAllowance(address spender, uint256 addedValue) publicvirtualreturns (bool) {
_approve(_msgSender(), spender, _allowances[_msgSender()][spender] + addedValue);
returntrue;
}
/**
* @dev Atomically decreases the allowance granted to `spender` by the caller.
*
* This is an alternative to {approve} that can be used as a mitigation for
* problems described in {IERC20-approve}.
*
* Emits an {Approval} event indicating the updated allowance.
*
* Requirements:
*
* - `spender` cannot be the zero address.
* - `spender` must have allowance for the caller of at least
* `subtractedValue`.
*/functiondecreaseAllowance(address spender, uint256 subtractedValue) publicvirtualreturns (bool) {
uint256 currentAllowance = _allowances[_msgSender()][spender];
require(currentAllowance >= subtractedValue, "ERC20: decreased allowance below zero");
unchecked {
_approve(_msgSender(), spender, currentAllowance - subtractedValue);
}
returntrue;
}
/**
* @dev Moves `amount` of tokens from `sender` to `recipient`.
*
* This internal function is equivalent to {transfer}, and can be used to
* e.g. implement automatic token fees, slashing mechanisms, etc.
*
* Emits a {Transfer} event.
*
* Requirements:
*
* - `sender` cannot be the zero address.
* - `recipient` cannot be the zero address.
* - `sender` must have a balance of at least `amount`.
*/function_transfer(address sender,
address recipient,
uint256 amount
) internalvirtual{
require(sender !=address(0), "ERC20: transfer from the zero address");
require(recipient !=address(0), "ERC20: transfer to the zero address");
_beforeTokenTransfer(sender, recipient, amount);
uint256 senderBalance = _balances[sender];
require(senderBalance >= amount, "ERC20: transfer amount exceeds balance");
unchecked {
_balances[sender] = senderBalance - amount;
}
_balances[recipient] += amount;
emit Transfer(sender, recipient, amount);
_afterTokenTransfer(sender, recipient, amount);
}
/** @dev Creates `amount` tokens and assigns them to `account`, increasing
* the total supply.
*
* Emits a {Transfer} event with `from` set to the zero address.
*
* Requirements:
*
* - `account` cannot be the zero address.
*/function_mint(address account, uint256 amount) internalvirtual{
require(account !=address(0), "ERC20: mint to the zero address");
_beforeTokenTransfer(address(0), account, amount);
_totalSupply += amount;
_balances[account] += amount;
emit Transfer(address(0), account, amount);
_afterTokenTransfer(address(0), account, amount);
}
/**
* @dev Destroys `amount` tokens from `account`, reducing the
* total supply.
*
* Emits a {Transfer} event with `to` set to the zero address.
*
* Requirements:
*
* - `account` cannot be the zero address.
* - `account` must have at least `amount` tokens.
*/function_burn(address account, uint256 amount) internalvirtual{
require(account !=address(0), "ERC20: burn from the zero address");
_beforeTokenTransfer(account, address(0), amount);
uint256 accountBalance = _balances[account];
require(accountBalance >= amount, "ERC20: burn amount exceeds balance");
unchecked {
_balances[account] = accountBalance - amount;
}
_totalSupply -= amount;
emit Transfer(account, address(0), amount);
_afterTokenTransfer(account, address(0), amount);
}
/**
* @dev Sets `amount` as the allowance of `spender` over the `owner` s tokens.
*
* This internal function is equivalent to `approve`, and can be used to
* e.g. set automatic allowances for certain subsystems, etc.
*
* Emits an {Approval} event.
*
* Requirements:
*
* - `owner` cannot be the zero address.
* - `spender` cannot be the zero address.
*/function_approve(address owner,
address spender,
uint256 amount
) internalvirtual{
require(owner !=address(0), "ERC20: approve from the zero address");
require(spender !=address(0), "ERC20: approve to the zero address");
_allowances[owner][spender] = amount;
emit Approval(owner, spender, amount);
}
/**
* @dev Hook that is called before any transfer of tokens. This includes
* minting and burning.
*
* Calling conditions:
*
* - when `from` and `to` are both non-zero, `amount` of ``from``'s tokens
* will be transferred to `to`.
* - when `from` is zero, `amount` tokens will be minted for `to`.
* - when `to` is zero, `amount` of ``from``'s tokens will be burned.
* - `from` and `to` are never both zero.
*
* To learn more about hooks, head to xref:ROOT:extending-contracts.adoc#using-hooks[Using Hooks].
*/function_beforeTokenTransfer(addressfrom,
address to,
uint256 amount
) internalvirtual{}
/**
* @dev Hook that is called after any transfer of tokens. This includes
* minting and burning.
*
* Calling conditions:
*
* - when `from` and `to` are both non-zero, `amount` of ``from``'s tokens
* has been transferred to `to`.
* - when `from` is zero, `amount` tokens have been minted for `to`.
* - when `to` is zero, `amount` of ``from``'s tokens have been burned.
* - `from` and `to` are never both zero.
*
* To learn more about hooks, head to xref:ROOT:extending-contracts.adoc#using-hooks[Using Hooks].
*/function_afterTokenTransfer(addressfrom,
address to,
uint256 amount
) internalvirtual{}
}
Contract Source Code
File 7 of 27: ERC20Burnable.sol
// SPDX-License-Identifier: MITpragmasolidity ^0.8.0;import"../ERC20.sol";
import"../../../utils/Context.sol";
/**
* @dev Extension of {ERC20} that allows token holders to destroy both their own
* tokens and those that they have an allowance for, in a way that can be
* recognized off-chain (via event analysis).
*/abstractcontractERC20BurnableisContext, ERC20{
/**
* @dev Destroys `amount` tokens from the caller.
*
* See {ERC20-_burn}.
*/functionburn(uint256 amount) publicvirtual{
_burn(_msgSender(), amount);
}
/**
* @dev Destroys `amount` tokens from `account`, deducting from the caller's
* allowance.
*
* See {ERC20-_burn} and {ERC20-allowance}.
*
* Requirements:
*
* - the caller must have allowance for ``accounts``'s tokens of at least
* `amount`.
*/functionburnFrom(address account, uint256 amount) publicvirtual{
uint256 currentAllowance = allowance(account, _msgSender());
require(currentAllowance >= amount, "ERC20: burn amount exceeds allowance");
unchecked {
_approve(account, _msgSender(), currentAllowance - amount);
}
_burn(account, amount);
}
}
Contract Source Code
File 8 of 27: ExitQueue.sol
pragmasolidity ^0.8.4;// SPDX-License-Identifier: GPL-3.0-or-laterimport"@openzeppelin/contracts/token/ERC20/IERC20.sol";
import"@openzeppelin/contracts/token/ERC20/utils/SafeERC20.sol";
import"@openzeppelin/contracts/access/Ownable.sol";
// import "hardhat/console.sol";/**
* How all exit of TEMPLE rewards are managed.
*/contractExitQueueisOwnable{
structUser {
// Total currently in queueuint256 Amount;
// First epoch for which the user is in the unstake queueuint256 FirstExitEpoch;
// Last epoch for which the user has a pending unstakeuint256 LastExitEpoch;
// All epochs where the user has an exit allocationmapping(uint256=>uint256) Exits;
}
// total queued to be exited in a given epochmapping(uint256=>uint256) public totalPerEpoch;
// The first unwithdrawn epoch for the usermapping(address=> User) public userData;
IERC20 public TEMPLE; // TEMPLE// Limit of how much temple can exit per epochuint256public maxPerEpoch;
// Limit of how much temple can exit per address per epochuint256public maxPerAddress;
// epoch size, in blocksuint256public epochSize;
// the block we use to work out what epoch we are inuint256public firstBlock;
// The next free block on which a user can commence their unstakeuint256public nextUnallocatedEpoch;
eventJoinQueue(address exiter, uint256 amount);
eventWithdrawal(address exiter, uint256 amount);
constructor(address _TEMPLE,
uint256 _maxPerEpoch,
uint256 _maxPerAddress,
uint256 _epochSize) {
TEMPLE = IERC20(_TEMPLE);
maxPerEpoch = _maxPerEpoch;
maxPerAddress = _maxPerAddress;
epochSize = _epochSize;
firstBlock =block.number;
nextUnallocatedEpoch =0;
}
functionsetMaxPerEpoch(uint256 _maxPerEpoch) externalonlyOwner{
maxPerEpoch = _maxPerEpoch;
}
functionsetMaxPerAddress(uint256 _maxPerAddress) externalonlyOwner{
maxPerAddress = _maxPerAddress;
}
functionsetEpochSize(uint256 _epochSize) externalonlyOwner{
epochSize = _epochSize;
}
functionsetStartingBlock(uint256 _firstBlock) externalonlyOwner{
require(_firstBlock < firstBlock, "Can only move start block back, not forward");
firstBlock = _firstBlock;
}
functioncurrentEpoch() publicviewreturns (uint256) {
return (block.number- firstBlock) / epochSize;
}
functioncurrentEpochAllocation(address _exiter, uint256 _epoch) externalviewreturns (uint256) {
return userData[_exiter].Exits[_epoch];
}
functionjoin(address _exiter, uint256 _amount) external{
require(_amount >0, "Amount must be > 0");
if (nextUnallocatedEpoch < currentEpoch()) {
nextUnallocatedEpoch = currentEpoch();
}
User storage user = userData[_exiter];
uint256 unallocatedAmount = _amount;
uint256 _nextUnallocatedEpoch = nextUnallocatedEpoch;
uint256 nextAvailableEpochForUser = _nextUnallocatedEpoch;
if (user.LastExitEpoch > nextAvailableEpochForUser) {
nextAvailableEpochForUser = user.LastExitEpoch;
}
while (unallocatedAmount >0) {
// work out allocation for the next available epochuint256 allocationForEpoch = unallocatedAmount;
if (user.Exits[nextAvailableEpochForUser] + allocationForEpoch > maxPerAddress) {
allocationForEpoch = maxPerAddress - user.Exits[nextAvailableEpochForUser];
}
if (totalPerEpoch[nextAvailableEpochForUser] + allocationForEpoch > maxPerEpoch) {
allocationForEpoch = maxPerEpoch - totalPerEpoch[nextAvailableEpochForUser];
}
// Bookkeepingif (allocationForEpoch >0) {
if (user.Amount ==0) {
user.FirstExitEpoch = nextAvailableEpochForUser;
}
user.Amount += allocationForEpoch;
user.Exits[nextAvailableEpochForUser] += allocationForEpoch;
totalPerEpoch[nextAvailableEpochForUser] += allocationForEpoch;
user.LastExitEpoch = nextAvailableEpochForUser;
if (totalPerEpoch[nextAvailableEpochForUser] >= maxPerEpoch) {
_nextUnallocatedEpoch = nextAvailableEpochForUser;
}
unallocatedAmount -= allocationForEpoch;
}
nextAvailableEpochForUser +=1;
}
// update outside of main loop, so we spend gas once
nextUnallocatedEpoch = _nextUnallocatedEpoch;
SafeERC20.safeTransferFrom(TEMPLE, msg.sender, address(this), _amount);
emit JoinQueue(_exiter, _amount);
}
/**
* Withdraw processed allowance from a specific epoch
*/functionwithdraw(uint256 epoch) external{
require(epoch < currentEpoch(), "Can only withdraw from past epochs");
User storage user = userData[msg.sender];
uint256 amount = user.Exits[epoch];
delete user.Exits[epoch];
totalPerEpoch[epoch] -= amount; // TODO: WHen this goes to 0, is it the same as the data being removed?
user.Amount -= amount;
// Once all allocations on queue have been claimed, reset user stateif (user.Amount ==0) {
// NOTE: triggers ExitQueue.withdraw(uint256) (contracts/ExitQueue.sol #150-167) deletes ExitQueue.User (contracts/ExitQueue.sol#15-27) which contains a mapping// This is okay as if Amount is 0, we'd expect user.Exits to be empty as well// TODO: Confirm this via testsdelete userData[msg.sender];
}
SafeERC20.safeTransfer(TEMPLE, msg.sender, amount);
emit Withdrawal(msg.sender, amount);
}
}
Contract Source Code
File 9 of 27: IAccessControl.sol
// SPDX-License-Identifier: MITpragmasolidity ^0.8.0;/**
* @dev External interface of AccessControl declared to support ERC165 detection.
*/interfaceIAccessControl{
/**
* @dev Emitted when `newAdminRole` is set as ``role``'s admin role, replacing `previousAdminRole`
*
* `DEFAULT_ADMIN_ROLE` is the starting admin for all roles, despite
* {RoleAdminChanged} not being emitted signaling this.
*
* _Available since v3.1._
*/eventRoleAdminChanged(bytes32indexed role, bytes32indexed previousAdminRole, bytes32indexed newAdminRole);
/**
* @dev Emitted when `account` is granted `role`.
*
* `sender` is the account that originated the contract call, an admin role
* bearer except when using {AccessControl-_setupRole}.
*/eventRoleGranted(bytes32indexed role, addressindexed account, addressindexed sender);
/**
* @dev Emitted when `account` is revoked `role`.
*
* `sender` is the account that originated the contract call:
* - if using `revokeRole`, it is the admin role bearer
* - if using `renounceRole`, it is the role bearer (i.e. `account`)
*/eventRoleRevoked(bytes32indexed role, addressindexed account, addressindexed sender);
/**
* @dev Returns `true` if `account` has been granted `role`.
*/functionhasRole(bytes32 role, address account) externalviewreturns (bool);
/**
* @dev Returns the admin role that controls `role`. See {grantRole} and
* {revokeRole}.
*
* To change a role's admin, use {AccessControl-_setRoleAdmin}.
*/functiongetRoleAdmin(bytes32 role) externalviewreturns (bytes32);
/**
* @dev Grants `role` to `account`.
*
* If `account` had not been already granted `role`, emits a {RoleGranted}
* event.
*
* Requirements:
*
* - the caller must have ``role``'s admin role.
*/functiongrantRole(bytes32 role, address account) external;
/**
* @dev Revokes `role` from `account`.
*
* If `account` had been granted `role`, emits a {RoleRevoked} event.
*
* Requirements:
*
* - the caller must have ``role``'s admin role.
*/functionrevokeRole(bytes32 role, address account) external;
/**
* @dev Revokes `role` from the calling account.
*
* Roles are often managed via {grantRole} and {revokeRole}: this function's
* purpose is to provide a mechanism for accounts to lose their privileges
* if they are compromised (such as when a trusted device is misplaced).
*
* If the calling account had been granted `role`, emits a {RoleRevoked}
* event.
*
* Requirements:
*
* - the caller must be `account`.
*/functionrenounceRole(bytes32 role, address account) external;
}
Contract Source Code
File 10 of 27: IERC165.sol
// SPDX-License-Identifier: MITpragmasolidity ^0.8.0;/**
* @dev Interface of the ERC165 standard, as defined in the
* https://eips.ethereum.org/EIPS/eip-165[EIP].
*
* Implementers can declare support of contract interfaces, which can then be
* queried by others ({ERC165Checker}).
*
* For an implementation, see {ERC165}.
*/interfaceIERC165{
/**
* @dev Returns true if this contract implements the interface defined by
* `interfaceId`. See the corresponding
* https://eips.ethereum.org/EIPS/eip-165#how-interfaces-are-identified[EIP section]
* to learn more about how these ids are created.
*
* This function call must use less than 30 000 gas.
*/functionsupportsInterface(bytes4 interfaceId) externalviewreturns (bool);
}
Contract Source Code
File 11 of 27: IERC20.sol
// SPDX-License-Identifier: MITpragmasolidity ^0.8.0;/**
* @dev Interface of the ERC20 standard as defined in the EIP.
*/interfaceIERC20{
/**
* @dev Returns the amount of tokens in existence.
*/functiontotalSupply() externalviewreturns (uint256);
/**
* @dev Returns the amount of tokens owned by `account`.
*/functionbalanceOf(address account) externalviewreturns (uint256);
/**
* @dev Moves `amount` tokens from the caller's account to `recipient`.
*
* Returns a boolean value indicating whether the operation succeeded.
*
* Emits a {Transfer} event.
*/functiontransfer(address recipient, uint256 amount) externalreturns (bool);
/**
* @dev Returns the remaining number of tokens that `spender` will be
* allowed to spend on behalf of `owner` through {transferFrom}. This is
* zero by default.
*
* This value changes when {approve} or {transferFrom} are called.
*/functionallowance(address owner, address spender) externalviewreturns (uint256);
/**
* @dev Sets `amount` as the allowance of `spender` over the caller's tokens.
*
* Returns a boolean value indicating whether the operation succeeded.
*
* IMPORTANT: Beware that changing an allowance with this method brings the risk
* that someone may use both the old and the new allowance by unfortunate
* transaction ordering. One possible solution to mitigate this race
* condition is to first reduce the spender's allowance to 0 and set the
* desired value afterwards:
* https://github.com/ethereum/EIPs/issues/20#issuecomment-263524729
*
* Emits an {Approval} event.
*/functionapprove(address spender, uint256 amount) externalreturns (bool);
/**
* @dev Moves `amount` tokens from `sender` to `recipient` using the
* allowance mechanism. `amount` is then deducted from the caller's
* allowance.
*
* Returns a boolean value indicating whether the operation succeeded.
*
* Emits a {Transfer} event.
*/functiontransferFrom(address sender,
address recipient,
uint256 amount
) externalreturns (bool);
/**
* @dev Emitted when `value` tokens are moved from one account (`from`) to
* another (`to`).
*
* Note that `value` may be zero.
*/eventTransfer(addressindexedfrom, addressindexed to, uint256 value);
/**
* @dev Emitted when the allowance of a `spender` for an `owner` is set by
* a call to {approve}. `value` is the new allowance.
*/eventApproval(addressindexed owner, addressindexed spender, uint256 value);
}
Contract Source Code
File 12 of 27: IERC20Metadata.sol
// SPDX-License-Identifier: MITpragmasolidity ^0.8.0;import"../IERC20.sol";
/**
* @dev Interface for the optional metadata functions from the ERC20 standard.
*
* _Available since v4.1._
*/interfaceIERC20MetadataisIERC20{
/**
* @dev Returns the name of the token.
*/functionname() externalviewreturns (stringmemory);
/**
* @dev Returns the symbol of the token.
*/functionsymbol() externalviewreturns (stringmemory);
/**
* @dev Returns the decimals places of the token.
*/functiondecimals() externalviewreturns (uint8);
}
Contract Source Code
File 13 of 27: ITreasuryAllocation.sol
pragmasolidity ^0.8.4;// SPDX-License-Identifier: GPL-3.0-or-later/**
* Contract which has treasury allocated from Stablec
*
* Reports back it's mark to market (so DAO can rebalance IV accordingly, from time to time)
*/interfaceITreasuryAllocation{
/**
* mark to market of treasury investment, denominated in Treasury Stablec
*/functionreval() externalviewreturns (uint256);
}
Contract Source Code
File 14 of 27: LockedOGTemple.sol
pragmasolidity ^0.8.4;// SPDX-License-Identifier: GPL-3.0-or-laterimport"@openzeppelin/contracts/token/ERC20/utils/SafeERC20.sol";
import"./OGTemple.sol";
/**
* Bookkeeping for OGTemple that's locked
*/contractLockedOGTemple{
structLockedEntry {
// How many tokens are lockeduint256 BalanceOGTemple;
// WHen can the user unlock these tokensuint256 LockedUntilTimestamp;
}
// All temple locked for any given usermapping(address=> LockedEntry[]) public locked;
OGTemple public OG_TEMPLE; // The token being staked, for which TEMPLE rewards are generatedeventOGTempleLocked(address _staker, uint256 _amount, uint256 _lockedUntil);
eventOGTempleWithdraw(address _staker, uint256 _amount);
constructor(OGTemple _OG_TEMPLE) {
OG_TEMPLE = _OG_TEMPLE;
}
functionnumLocks(address _staker) externalviewreturns(uint256) {
return locked[_staker].length;
}
/** lock up OG */functionlockFor(address _staker, uint256 _amountOGTemple, uint256 _lockedUntilTimestamp) public{
LockedEntry memory lockEntry = LockedEntry({BalanceOGTemple: _amountOGTemple, LockedUntilTimestamp: _lockedUntilTimestamp});
locked[_staker].push(lockEntry);
SafeERC20.safeTransferFrom(OG_TEMPLE, msg.sender, address(this), _amountOGTemple);
emit OGTempleLocked(_staker, _amountOGTemple, _lockedUntilTimestamp);
}
functionlock(uint256 _amountOGTemple, uint256 _lockedUntilTimestamp) external{
lockFor(msg.sender, _amountOGTemple, _lockedUntilTimestamp);
}
/** Withdraw a specific locked entry */functionwithdrawFor(address _staker, uint256 _idx) public{
LockedEntry[] storage lockedEntries = locked[_staker];
require(_idx < lockedEntries.length, "No lock entry at the specified index");
require(lockedEntries[_idx].LockedUntilTimestamp <block.timestamp, "Specified entry is still locked");
LockedEntry memory entry = lockedEntries[_idx];
lockedEntries[_idx] = lockedEntries[lockedEntries.length-1];
lockedEntries.pop();
SafeERC20.safeTransfer(OG_TEMPLE, _staker, entry.BalanceOGTemple);
emit OGTempleWithdraw(_staker, entry.BalanceOGTemple);
}
functionwithdraw(uint256 _idx) external{
withdrawFor(msg.sender, _idx);
}
}
Contract Source Code
File 15 of 27: MintAllowance.sol
pragmasolidity ^0.8.4;// SPDX-License-Identifier: GPL-3.0-or-laterimport"@openzeppelin/contracts/token/ERC20/IERC20.sol";
import"@openzeppelin/contracts/token/ERC20/utils/SafeERC20.sol";
import"@openzeppelin/contracts/access/Ownable.sol";
import"@openzeppelin/contracts/token/ERC20/extensions/ERC20Burnable.sol";
import"./TempleERC20Token.sol";
/**
* Newly minted temple allocated to various temple strategies
*
* Any temple held by this contract is assumed to be unused,
* and hence doesn't effect the intrinsinc value calculation.
*
* It's only considered in circulation once a pool pulls
* it's allowance.
*/contractMintAllowanceisOwnable{
// Temple contract address
TempleERC20Token TEMPLE;
constructor(TempleERC20Token _TEMPLE) {
TEMPLE = _TEMPLE;
}
/**
* Increase mint allowance for the given pool
*
* Atomically pulls amount from treasury before increasing allownance
* as an extra check and balance
*/functionincreaseMintAllowance(address _pool, uint256 _amount) externalonlyOwner{
SafeERC20.safeTransferFrom(TEMPLE, msg.sender, address(this), _amount);
SafeERC20.safeIncreaseAllowance(TEMPLE, _pool, _amount);
}
/**
* Burn any unused mint allowance for a given pool
*/functionburnUnusedMintAllowance(address _pool) externalonlyOwner{
uint256 unusedMintAllowance = TEMPLE.allowance(address(this), _pool);
SafeERC20.safeDecreaseAllowance(TEMPLE, _pool, unusedMintAllowance);
TEMPLE.burn(unusedMintAllowance);
}
}
Contract Source Code
File 16 of 27: OGTemple.sol
pragmasolidity ^0.8.4;// SPDX-License-Identifier: GPL-3.0-or-laterimport"@openzeppelin/contracts/token/ERC20/ERC20.sol";
import"@openzeppelin/contracts/token/ERC20/IERC20.sol";
import"@openzeppelin/contracts/token/ERC20/extensions/ERC20Burnable.sol";
import"@openzeppelin/contracts/security/Pausable.sol";
import"@openzeppelin/contracts/access/Ownable.sol";
import"@openzeppelin/contracts/access/AccessControl.sol";
/**
* Created and owned by the staking contract.
*
* It mints and burns OGTemple as users stake/unstake
*/contractOGTempleisERC20, ERC20Burnable, Ownable{
constructor() ERC20("OGTemple", "OG_TEMPLE") {}
functionmint(address to, uint256 amount) externalonlyOwner{
_mint(to, amount);
}
}
Contract Source Code
File 17 of 27: OpeningCeremony.sol
pragmasolidity ^0.8.4;// SPDX-License-Identifier: GPL-3.0-or-laterimport"@openzeppelin/contracts/token/ERC20/IERC20.sol";
import"@openzeppelin/contracts/token/ERC20/utils/SafeERC20.sol";
import"@openzeppelin/contracts/access/Ownable.sol";
import"@openzeppelin/contracts/access/AccessControl.sol";
import"./TempleERC20Token.sol";
import"./SandalwoodToken.sol";
import"./TempleTreasury.sol";
import"./TreasuryManagementProxy.sol";
import"./TempleStaking.sol";
import"./PresaleAllocation.sol";
import"./LockedOGTemple.sol";
/**
* Mint and Stake for those who have quested in the Opening Ceremony
*/contractOpeningCeremonyisOwnable, Pausable, AccessControl{
bytes32publicconstant CAN_ADD_VERIFIED_USER =keccak256("CAN_ADD_VERIFIED_USER");
uint256constant SECONDS_IN_DAY =24*60*60;
IERC20 public stablecToken; // contract address for stable coin used in treasury
TempleERC20Token public templeToken; // temple ERC20 contract
TempleTreasury public treasury; // temple treasury
TreasuryManagementProxy public treasuryManagement; // temple treasury
TempleStaking public staking; // Staking contract
LockedOGTemple public lockedOGTemple; // contract where OG Temple is lockeduint256public unlockDelaySeconds = SECONDS_IN_DAY *7*6; // How long after after buying can templars unlockuint256public mintMultiple =6; // presale mint multipleuint256public harvestThresholdStablec; // At what mint level do stakers trigger a harvestuint256public inviteThresholdStablec; // How much does a verified user have to spend before they can invite othersuint256public maxInvitesPerVerifiedUser; // How many guests can each verified user invite// how much to multiple a verified users day 1 mint limit to work out// their total at a given point in time. So for a user who quests // on day 1 => 3 day limit will be DAY_ONE_LIMIT * 4 / 1// on day 2 => 3 day limit will be DAY_ONE_LIMIT * 4 / 2uint256public globalDoublingIndex =1;
uint256public lastUpdatedTimestamp; // when was the limitFactor last updatedstructLimit {
uint256 guestMax;
uint256 verifiedMax;
uint256 verifiedDayOne;
}
Limit public limitStablec = Limit({guestMax: 10000*1e18, verifiedMax: 480000*1e18, verifiedDayOne: 30000*1e18});
Limit public limitTemple = Limit({guestMax: 10000*1e18, verifiedMax: 480000*1e18, verifiedDayOne: 30000*1e18});
structFactor {
uint256 numerator;
uint256 denominator;
}
Factor public verifiedBonusFactor; // Factor applied to verified user, to boost APY
Factor public guestBonusFactor; // Factor applied to temple guests, to boost APYstructUser {
bool isVerified;
bool isGuest;
uint8 numInvited;
uint256 doublingIndexAtVerification;
uint256 totalSacrificedStablec;
uint256 totalSacrificedTemple;
}
mapping(address=> User) public users;
eventMintComplete(address minter, uint256 acceptedStablec, uint256 mintedTemple, uint256 bonusTemple, uint256 mintedOGTemple);
eventStakeComplete(address staker, uint256 acceptedTemple, uint256 bonusTemple, uint256 mintedOGTemple);
eventVerifiedUserAdded(address user);
constructor(
IERC20 _stablecToken,
TempleERC20Token _templeToken,
TempleStaking _staking,
LockedOGTemple _lockedOGTemple,
TempleTreasury _treasury,
TreasuryManagementProxy _treasuryManagement,
uint256 _harvestThresholdStablec,
uint256 _inviteThresholdStablec,
uint256 _maxInvitesPerVerifiedUser,
Factor memory _verifiedBonusFactor,
Factor memory _guestBonusFactor
) {
stablecToken = _stablecToken;
templeToken = _templeToken;
staking = _staking;
lockedOGTemple = _lockedOGTemple;
treasury = _treasury;
treasuryManagement = _treasuryManagement;
harvestThresholdStablec = _harvestThresholdStablec;
inviteThresholdStablec = _inviteThresholdStablec;
maxInvitesPerVerifiedUser = _maxInvitesPerVerifiedUser;
verifiedBonusFactor = _verifiedBonusFactor;
guestBonusFactor = _guestBonusFactor;
lastUpdatedTimestamp =block.timestamp;
_setupRole(DEFAULT_ADMIN_ROLE, owner());
}
functionsetUnlockDelay(uint256 _unlockDelaySeconds) externalonlyOwner{
unlockDelaySeconds = _unlockDelaySeconds;
}
functionsetMintMultiple(uint256 _mintMultiple) externalonlyOwner{
mintMultiple = _mintMultiple;
}
functionsetHarvestThreshold(uint256 _harvestThresholdStablec) externalonlyOwner{
harvestThresholdStablec = _harvestThresholdStablec;
}
functionsetInviteThreshold(uint256 _inviteThresholdStablec) externalonlyOwner{
inviteThresholdStablec = _inviteThresholdStablec;
}
functionsetMaxInvitesPerVerifiedUser(uint256 _maxInvitesPerVerifiedUser) externalonlyOwner{
maxInvitesPerVerifiedUser = _maxInvitesPerVerifiedUser;
}
functionsetVerifiedBonusFactor(uint256 _numerator, uint256 _denominator) externalonlyOwner{
verifiedBonusFactor.numerator = _numerator;
verifiedBonusFactor.denominator = _denominator;
}
functionsetGuestBonusFactor(uint256 _numerator, uint256 _denominator) externalonlyOwner{
guestBonusFactor.numerator = _numerator;
guestBonusFactor.denominator = _denominator;
}
functionsetLimitStablec(uint256 guestMax, uint256 verifiedMax, uint256 verifiedDayOne) externalonlyOwner{
limitStablec.guestMax = guestMax;
limitStablec.verifiedMax = verifiedMax;
limitStablec.verifiedDayOne = verifiedDayOne;
}
functionsetLimitTemple(uint256 guestMax, uint256 verifiedMax) externalonlyOwner{
limitTemple.guestMax = guestMax;
limitTemple.verifiedMax = verifiedMax;
// unused limitTemple.verifiedDayOne
}
functionaddVerifier(address account) externalonlyOwner{
grantRole(CAN_ADD_VERIFIED_USER, account);
}
functionremoveVerifier(address account) externalonlyOwner{
revokeRole(CAN_ADD_VERIFIED_USER, account);
}
functionaddVerifiedUser(address userAddress) external{
require(hasRole(CAN_ADD_VERIFIED_USER, msg.sender), "Caller cannot add verified user");
require(!users[userAddress].isVerified, "Address already verified");
users[userAddress].isVerified =true;
users[userAddress].doublingIndexAtVerification = globalDoublingIndex;
emit VerifiedUserAdded(userAddress);
}
functionaddGuestUser(address userAddress) external{
require(users[msg.sender].isVerified, "only verified users can invite guests");
require(users[msg.sender].totalSacrificedStablec >= inviteThresholdStablec,
"Need to sacrifice more frax before you can invite others");
require(users[msg.sender].numInvited < maxInvitesPerVerifiedUser,
"Exceed maximum number of invites");
users[userAddress].isGuest =true;
users[msg.sender].numInvited +=1;
}
/** mint temple and immediately stake, on behalf of a staker, with a bonus + lockin period */functionmintAndStakeFor(address _staker, uint256 _amountPaidStablec) publicwhenNotPaused{
User storage userInfo = users[_staker];
// update max limit. This happens before checks, to ensure maxSacrificable// is correctly calculated.if ((block.timestamp- lastUpdatedTimestamp) > SECONDS_IN_DAY) {
globalDoublingIndex *=2;
lastUpdatedTimestamp += SECONDS_IN_DAY;
}
Factor storage bonusFactor;
if (userInfo.isVerified) {
require(
userInfo.totalSacrificedStablec + _amountPaidStablec <= maxSacrificableStablec(userInfo.doublingIndexAtVerification),
"Exceeded max mint limit");
bonusFactor = verifiedBonusFactor;
} elseif (userInfo.isGuest) {
require(userInfo.totalSacrificedStablec + _amountPaidStablec <= limitStablec.guestMax, "Exceeded max mint limit");
bonusFactor = guestBonusFactor;
} else {
revert("Only verified templars and their guests can partake in the opening ceremony");
}
(uint256 _stablec, uint256 _temple) = treasury.intrinsicValueRatio();
uint256 _boughtTemple = _amountPaidStablec * _temple / _stablec / mintMultiple;
// Calculate extra temple required to account for bonus APYuint256 _bonusTemple = _boughtTemple * bonusFactor.numerator / bonusFactor.denominator;
uint256 _totalTemple = _boughtTemple + _bonusTemple;
userInfo.totalSacrificedStablec += _amountPaidStablec;
// pull stablec from staker and immediately transfer back to treasury
SafeERC20.safeTransferFrom(stablecToken, msg.sender, address(treasury), _amountPaidStablec);
// mint temple
templeToken.mint(address(this), _totalTemple);
// Stake both minted and bonus temple. Locking up any OGTemple
SafeERC20.safeIncreaseAllowance(templeToken, address(staking), _totalTemple);
uint256 _amountOgTemple = staking.stake(_totalTemple);
SafeERC20.safeIncreaseAllowance(staking.OG_TEMPLE(), address(lockedOGTemple), _amountOgTemple);
lockedOGTemple.lockFor(_staker, _amountOgTemple, block.timestamp+ unlockDelaySeconds);
// Finally, run harvest if amount sacrificed is 10k or greaterif (_amountPaidStablec >= harvestThresholdStablec) {
treasuryManagement.harvest();
}
emit MintComplete(_staker, _amountPaidStablec, _boughtTemple, _bonusTemple, _amountOgTemple);
}
/** mint temple and immediately stake, with a bonus + lockin period */functionmintAndStake(uint256 _amountPaidStablec) externalwhenNotPaused{
mintAndStakeFor(msg.sender, _amountPaidStablec);
}
/** Stake temple, consuming sandalwood to get bonus APY **/functionstakeFor(address _staker, uint256 _amountTemple) publicwhenNotPaused{
User storage userInfo = users[_staker];
Factor storage bonusFactor;
if (userInfo.isVerified) {
require(userInfo.totalSacrificedTemple + _amountTemple <= limitTemple.verifiedMax, "exceeded max limit");
bonusFactor = verifiedBonusFactor;
} elseif (userInfo.isGuest) {
require(userInfo.totalSacrificedTemple + _amountTemple <= limitTemple.guestMax, "exceeded max limit");
bonusFactor = guestBonusFactor;
} else {
revert("Only verified templars and their guests can partake in the opening ceremony");
}
// Calculate extra temple required to account for bonus APYuint256 _bonusTemple = _amountTemple * bonusFactor.numerator / bonusFactor.denominator;
uint256 _totalTemple = _amountTemple + _bonusTemple;
userInfo.totalSacrificedTemple += _amountTemple;
// pull temple from caller (to be staked)
SafeERC20.safeTransferFrom(templeToken, msg.sender, address(this), _amountTemple);
// mint bonus APY temple
templeToken.mint(address(this), _bonusTemple);
// Stake both minted and bonus temple. Locking up any OGTemple
SafeERC20.safeIncreaseAllowance(templeToken, address(staking), _totalTemple);
uint256 _amountOgTemple = staking.stake(_totalTemple);
SafeERC20.safeIncreaseAllowance(staking.OG_TEMPLE(), address(lockedOGTemple), _amountOgTemple);
lockedOGTemple.lockFor(_staker, _amountOgTemple, block.timestamp+ unlockDelaySeconds);
emit StakeComplete(_staker, _amountTemple, _bonusTemple, _amountOgTemple);
}
/** Stake temple, consuming sandalwood to get bonus APY **/functionstake(uint256 _amountTemple) externalwhenNotPaused{
stakeFor(msg.sender, _amountTemple);
}
/**
* Pause contract. Either emergency or at the end of presale
*/functionpause() externalonlyOwner{
_pause();
}
/**
* Revert pause
*/functionunpause() externalonlyOwner{
_unpause();
}
functionmaxSacrificableStablec(uint256 doublingIndexAtVerification) publicviewreturns(uint256 maxLimit) {
maxLimit = limitStablec.verifiedDayOne * globalDoublingIndex / doublingIndexAtVerification;
if (maxLimit > limitStablec.verifiedMax) {
maxLimit = limitStablec.verifiedMax;
}
}
}
Contract Source Code
File 18 of 27: Ownable.sol
// SPDX-License-Identifier: MITpragmasolidity ^0.8.0;import"../utils/Context.sol";
/**
* @dev Contract module which provides a basic access control mechanism, where
* there is an account (an owner) that can be granted exclusive access to
* specific functions.
*
* By default, the owner account will be the one that deploys the contract. This
* can later be changed with {transferOwnership}.
*
* This module is used through inheritance. It will make available the modifier
* `onlyOwner`, which can be applied to your functions to restrict their use to
* the owner.
*/abstractcontractOwnableisContext{
addressprivate _owner;
eventOwnershipTransferred(addressindexed previousOwner, addressindexed newOwner);
/**
* @dev Initializes the contract setting the deployer as the initial owner.
*/constructor() {
_setOwner(_msgSender());
}
/**
* @dev Returns the address of the current owner.
*/functionowner() publicviewvirtualreturns (address) {
return _owner;
}
/**
* @dev Throws if called by any account other than the owner.
*/modifieronlyOwner() {
require(owner() == _msgSender(), "Ownable: caller is not the owner");
_;
}
/**
* @dev Leaves the contract without owner. It will not be possible to call
* `onlyOwner` functions anymore. Can only be called by the current owner.
*
* NOTE: Renouncing ownership will leave the contract without an owner,
* thereby removing any functionality that is only available to the owner.
*/functionrenounceOwnership() publicvirtualonlyOwner{
_setOwner(address(0));
}
/**
* @dev Transfers ownership of the contract to a new account (`newOwner`).
* Can only be called by the current owner.
*/functiontransferOwnership(address newOwner) publicvirtualonlyOwner{
require(newOwner !=address(0), "Ownable: new owner is the zero address");
_setOwner(newOwner);
}
function_setOwner(address newOwner) private{
address oldOwner = _owner;
_owner = newOwner;
emit OwnershipTransferred(oldOwner, newOwner);
}
}
Contract Source Code
File 19 of 27: Pausable.sol
// SPDX-License-Identifier: MITpragmasolidity ^0.8.0;import"../utils/Context.sol";
/**
* @dev Contract module which allows children to implement an emergency stop
* mechanism that can be triggered by an authorized account.
*
* This module is used through inheritance. It will make available the
* modifiers `whenNotPaused` and `whenPaused`, which can be applied to
* the functions of your contract. Note that they will not be pausable by
* simply including this module, only once the modifiers are put in place.
*/abstractcontractPausableisContext{
/**
* @dev Emitted when the pause is triggered by `account`.
*/eventPaused(address account);
/**
* @dev Emitted when the pause is lifted by `account`.
*/eventUnpaused(address account);
boolprivate _paused;
/**
* @dev Initializes the contract in unpaused state.
*/constructor() {
_paused =false;
}
/**
* @dev Returns true if the contract is paused, and false otherwise.
*/functionpaused() publicviewvirtualreturns (bool) {
return _paused;
}
/**
* @dev Modifier to make a function callable only when the contract is not paused.
*
* Requirements:
*
* - The contract must not be paused.
*/modifierwhenNotPaused() {
require(!paused(), "Pausable: paused");
_;
}
/**
* @dev Modifier to make a function callable only when the contract is paused.
*
* Requirements:
*
* - The contract must be paused.
*/modifierwhenPaused() {
require(paused(), "Pausable: not paused");
_;
}
/**
* @dev Triggers stopped state.
*
* Requirements:
*
* - The contract must not be paused.
*/function_pause() internalvirtualwhenNotPaused{
_paused =true;
emit Paused(_msgSender());
}
/**
* @dev Returns to normal state.
*
* Requirements:
*
* - The contract must be paused.
*/function_unpause() internalvirtualwhenPaused{
_paused =false;
emit Unpaused(_msgSender());
}
}
Contract Source Code
File 20 of 27: PresaleAllocation.sol
pragmasolidity ^0.8.4;// SPDX-License-Identifier: GPL-3.0-or-laterimport"@openzeppelin/contracts/token/ERC20/IERC20.sol";
import"@openzeppelin/contracts/token/ERC20/utils/SafeERC20.sol";
import"@openzeppelin/contracts/access/Ownable.sol";
import"./TempleERC20Token.sol";
import"./TempleTreasury.sol";
import"./TempleStaking.sol";
/**
* Who has what allocation in the presale period
*/contractPresaleAllocationisOwnable{
structAllocation {
uint256 amount;
uint256 epoch;
}
// maximum stablec each address can buy templemapping(address=> Allocation) public allocationOf;
functionsetAllocation(address staker, uint256 amount, uint256 epoch) externalonlyOwner{
allocationOf[staker].epoch = epoch;
allocationOf[staker].amount = amount;
}
}
Contract Source Code
File 21 of 27: SafeERC20.sol
// SPDX-License-Identifier: MITpragmasolidity ^0.8.0;import"../IERC20.sol";
import"../../../utils/Address.sol";
/**
* @title SafeERC20
* @dev Wrappers around ERC20 operations that throw on failure (when the token
* contract returns false). Tokens that return no value (and instead revert or
* throw on failure) are also supported, non-reverting calls are assumed to be
* successful.
* To use this library you can add a `using SafeERC20 for IERC20;` statement to your contract,
* which allows you to call the safe operations as `token.safeTransfer(...)`, etc.
*/librarySafeERC20{
usingAddressforaddress;
functionsafeTransfer(
IERC20 token,
address to,
uint256 value
) internal{
_callOptionalReturn(token, abi.encodeWithSelector(token.transfer.selector, to, value));
}
functionsafeTransferFrom(
IERC20 token,
addressfrom,
address to,
uint256 value
) internal{
_callOptionalReturn(token, abi.encodeWithSelector(token.transferFrom.selector, from, to, value));
}
/**
* @dev Deprecated. This function has issues similar to the ones found in
* {IERC20-approve}, and its usage is discouraged.
*
* Whenever possible, use {safeIncreaseAllowance} and
* {safeDecreaseAllowance} instead.
*/functionsafeApprove(
IERC20 token,
address spender,
uint256 value
) internal{
// safeApprove should only be called when setting an initial allowance,// or when resetting it to zero. To increase and decrease it, use// 'safeIncreaseAllowance' and 'safeDecreaseAllowance'require(
(value ==0) || (token.allowance(address(this), spender) ==0),
"SafeERC20: approve from non-zero to non-zero allowance"
);
_callOptionalReturn(token, abi.encodeWithSelector(token.approve.selector, spender, value));
}
functionsafeIncreaseAllowance(
IERC20 token,
address spender,
uint256 value
) internal{
uint256 newAllowance = token.allowance(address(this), spender) + value;
_callOptionalReturn(token, abi.encodeWithSelector(token.approve.selector, spender, newAllowance));
}
functionsafeDecreaseAllowance(
IERC20 token,
address spender,
uint256 value
) internal{
unchecked {
uint256 oldAllowance = token.allowance(address(this), spender);
require(oldAllowance >= value, "SafeERC20: decreased allowance below zero");
uint256 newAllowance = oldAllowance - value;
_callOptionalReturn(token, abi.encodeWithSelector(token.approve.selector, spender, newAllowance));
}
}
/**
* @dev Imitates a Solidity high-level call (i.e. a regular function call to a contract), relaxing the requirement
* on the return value: the return value is optional (but if data is returned, it must not be false).
* @param token The token targeted by the call.
* @param data The call data (encoded using abi.encode or one of its variants).
*/function_callOptionalReturn(IERC20 token, bytesmemory data) private{
// We need to perform a low level call here, to bypass Solidity's return data size checking mechanism, since// we're implementing it ourselves. We use {Address.functionCall} to perform this call, which verifies that// the target address contains contract code and also asserts for success in the low-level call.bytesmemory returndata =address(token).functionCall(data, "SafeERC20: low-level call failed");
if (returndata.length>0) {
// Return data is optionalrequire(abi.decode(returndata, (bool)), "SafeERC20: ERC20 operation did not succeed");
}
}
}
Contract Source Code
File 22 of 27: SandalwoodToken.sol
pragmasolidity ^0.8.4;// SPDX-License-Identifier: GPL-3.0-or-laterimport"@openzeppelin/contracts/token/ERC20/ERC20.sol";
import"@openzeppelin/contracts/token/ERC20/IERC20.sol";
import"@openzeppelin/contracts/token/ERC20/extensions/ERC20Burnable.sol";
import"@openzeppelin/contracts/security/Pausable.sol";
import"@openzeppelin/contracts/access/Ownable.sol";
import"@openzeppelin/contracts/access/AccessControl.sol";
/**
* Sandalwood rewarded as part of the Opening Ceremony quests
*/contractSandalwoodTokenisERC20, ERC20Burnable{
constructor() ERC20("Sandalwood", "Sandalwood") {
_mint(_msgSender(), 1e12*1e18);
}
}
Contract Source Code
File 23 of 27: Strings.sol
// SPDX-License-Identifier: MITpragmasolidity ^0.8.0;/**
* @dev String operations.
*/libraryStrings{
bytes16privateconstant _HEX_SYMBOLS ="0123456789abcdef";
/**
* @dev Converts a `uint256` to its ASCII `string` decimal representation.
*/functiontoString(uint256 value) internalpurereturns (stringmemory) {
// Inspired by OraclizeAPI's implementation - MIT licence// https://github.com/oraclize/ethereum-api/blob/b42146b063c7d6ee1358846c198246239e9360e8/oraclizeAPI_0.4.25.solif (value ==0) {
return"0";
}
uint256 temp = value;
uint256 digits;
while (temp !=0) {
digits++;
temp /=10;
}
bytesmemory buffer =newbytes(digits);
while (value !=0) {
digits -=1;
buffer[digits] =bytes1(uint8(48+uint256(value %10)));
value /=10;
}
returnstring(buffer);
}
/**
* @dev Converts a `uint256` to its ASCII `string` hexadecimal representation.
*/functiontoHexString(uint256 value) internalpurereturns (stringmemory) {
if (value ==0) {
return"0x00";
}
uint256 temp = value;
uint256 length =0;
while (temp !=0) {
length++;
temp >>=8;
}
return toHexString(value, length);
}
/**
* @dev Converts a `uint256` to its ASCII `string` hexadecimal representation with fixed length.
*/functiontoHexString(uint256 value, uint256 length) internalpurereturns (stringmemory) {
bytesmemory buffer =newbytes(2* length +2);
buffer[0] ="0";
buffer[1] ="x";
for (uint256 i =2* length +1; i >1; --i) {
buffer[i] = _HEX_SYMBOLS[value &0xf];
value >>=4;
}
require(value ==0, "Strings: hex length insufficient");
returnstring(buffer);
}
}
pragmasolidity ^0.8.4;// SPDX-License-Identifier: GPL-3.0-or-laterimport"@openzeppelin/contracts/token/ERC20/utils/SafeERC20.sol";
import"@openzeppelin/contracts/access/Ownable.sol";
import"./ABDKMath64x64.sol";
import"./TempleERC20Token.sol";
import"./OGTemple.sol";
import"./ExitQueue.sol";
// import "hardhat/console.sol";/**
* Mechancics of how a user can stake temple.
*/contractTempleStakingisOwnable{
usingABDKMath64x64forint128;
TempleERC20Token immutablepublic TEMPLE; // The token being staked, for which TEMPLE rewards are generated
OGTemple immutablepublic OG_TEMPLE; // Token used to redeem staked TEMPLE
ExitQueue public EXIT_QUEUE; // unstake exit queue// epoch percentage yield, as an ABDKMath64x64int128public epy;
// epoch size, in secondsuint256public epochSizeSeconds;
// The starting timestamp. from where staking startsuint256public startTimestamp;
// epy compounded over every epoch since the contract creation up // until lastUpdatedEpoch. Represented as an ABDKMath64x64int128public accumulationFactor;
// the epoch up to which we have calculated accumulationFactor.uint256public lastUpdatedEpoch;
eventStakeCompleted(address _staker, uint256 _amount, uint256 _lockedUntil);
eventAccumulationFactorUpdated(uint256 _epochsProcessed, uint256 _currentEpoch, uint256 _accumulationFactor);
eventUnstakeCompleted(address _staker, uint256 _amount);
constructor(
TempleERC20Token _TEMPLE,
ExitQueue _EXIT_QUEUE,
uint256 _epochSizeSeconds,
uint256 _startTimestamp) {
require(_startTimestamp <block.timestamp, "Start timestamp must be in the past");
require(_startTimestamp > (block.timestamp- (24*2*60*60)), "Start timestamp can't be more than 2 days in the past");
TEMPLE = _TEMPLE;
EXIT_QUEUE = _EXIT_QUEUE;
// Each version of the staking contract needs it's own instance of OGTemple users can use to// claim back rewards
OG_TEMPLE =new OGTemple();
epochSizeSeconds = _epochSizeSeconds;
startTimestamp = _startTimestamp;
epy = ABDKMath64x64.fromUInt(1);
accumulationFactor = ABDKMath64x64.fromUInt(1);
}
/** Sets epoch percentage yield */functionsetExitQueue(ExitQueue _EXIT_QUEUE) externalonlyOwner{
EXIT_QUEUE = _EXIT_QUEUE;
}
/** Sets epoch percentage yield */functionsetEpy(uint256 _numerator, uint256 _denominator) externalonlyOwner{
_updateAccumulationFactor();
epy = ABDKMath64x64.fromUInt(1).add(ABDKMath64x64.divu(_numerator, _denominator));
}
/** Get EPY as uint, scaled up the given factor (for reporting) */functiongetEpy(uint256 _scale) externalviewreturns (uint256) {
return epy.sub(ABDKMath64x64.fromUInt(1)).mul(ABDKMath64x64.fromUInt(_scale)).toUInt();
}
functioncurrentEpoch() publicviewreturns (uint256) {
return (block.timestamp- startTimestamp) / epochSizeSeconds;
}
/** Return current accumulation factor, scaled up to account for fractional component */functiongetAccumulationFactor(uint256 _scale) externalviewreturns(uint256) {
return _accumulationFactorAt(currentEpoch()).mul(ABDKMath64x64.fromUInt(_scale)).toUInt();
}
/** Calculate the updated accumulation factor, based on the current epoch */function_accumulationFactorAt(uint256 epoch) privateviewreturns(int128) {
uint256 _nUnupdatedEpochs = epoch - lastUpdatedEpoch;
return accumulationFactor.mul(epy.pow(_nUnupdatedEpochs));
}
/** Balance in TEMPLE for a given amount of OG_TEMPLE */functionbalance(uint256 amountOgTemple) publicviewreturns(uint256) {
return _overflowSafeMul1e18(
ABDKMath64x64.divu(amountOgTemple, 1e18).mul(_accumulationFactorAt(currentEpoch()))
);
}
/** updates rewards in pool */function_updateAccumulationFactor() internal{
uint256 _currentEpoch = currentEpoch();
// still in previous epoch, no action. // NOTE: should be a pre-condition that _currentEpoch >= lastUpdatedEpoch// It's possible to end up in this state if we shorten epoch size.// As such, it's not baked as a preconditionif (_currentEpoch <= lastUpdatedEpoch) {
return;
}
accumulationFactor = _accumulationFactorAt(_currentEpoch);
lastUpdatedEpoch = _currentEpoch;
uint256 _nUnupdatedEpochs = _currentEpoch - lastUpdatedEpoch;
emit AccumulationFactorUpdated(_nUnupdatedEpochs, _currentEpoch, accumulationFactor.mul(10000).toUInt());
}
/** Stake on behalf of a given address. Used by other contracts (like Presale) */functionstakeFor(address _staker, uint256 _amountTemple) publicreturns(uint256 amountOgTemple) {
require(_amountTemple >0, "Cannot stake 0 tokens");
_updateAccumulationFactor();
// net past value/genesis value/OG Value for the temple you are putting in.
amountOgTemple = _overflowSafeMul1e18(ABDKMath64x64.divu(_amountTemple, 1e18).div(accumulationFactor));
SafeERC20.safeTransferFrom(TEMPLE, msg.sender, address(this), _amountTemple);
OG_TEMPLE.mint(_staker, amountOgTemple);
emit StakeCompleted(_staker, _amountTemple, 0);
return amountOgTemple;
}
/** Stake temple */functionstake(uint256 _amountTemple) externalreturns(uint256 amountOgTemple) {
return stakeFor(msg.sender, _amountTemple);
}
/** Unstake temple */functionunstake(uint256 _amountOgTemple) external{
require(OG_TEMPLE.allowance(msg.sender, address(this)) >= _amountOgTemple, 'Insufficient OGTemple allowance. Cannot unstake');
_updateAccumulationFactor();
uint256 unstakeBalanceTemple = balance(_amountOgTemple);
OG_TEMPLE.burnFrom(msg.sender, _amountOgTemple);
SafeERC20.safeIncreaseAllowance(TEMPLE, address(EXIT_QUEUE), unstakeBalanceTemple);
EXIT_QUEUE.join(msg.sender, unstakeBalanceTemple);
emit UnstakeCompleted(msg.sender, _amountOgTemple);
}
function_overflowSafeMul1e18(int128 amountFixedPoint) internalpurereturns (uint256) {
uint256 integralDigits = amountFixedPoint.toUInt();
uint256 fractionalDigits = amountFixedPoint.sub(ABDKMath64x64.fromUInt(integralDigits)).mul(ABDKMath64x64.fromUInt(1e18)).toUInt();
return (integralDigits *1e18) + fractionalDigits;
}
}
Contract Source Code
File 26 of 27: TempleTreasury.sol
pragmasolidity ^0.8.4;// SPDX-License-Identifier: GPL-3.0-or-laterimport"@openzeppelin/contracts/token/ERC20/IERC20.sol";
import"@openzeppelin/contracts/security/Pausable.sol";
import"@openzeppelin/contracts/access/Ownable.sol";
import"@openzeppelin/contracts/token/ERC20/utils/SafeERC20.sol";
import"./TempleERC20Token.sol";
import"./ITreasuryAllocation.sol";
import"./MintAllowance.sol";
import"@openzeppelin/contracts/token/ERC20/utils/SafeERC20.sol";
// import "hardhat/console.sol";contractTempleTreasuryisOwnable{
// Underlying TEMPLE token
TempleERC20Token private TEMPLE;
// underlying stable token we are holding and valuing treasury with
IERC20 private STABLEC;
// Minted temple allocated to various investment contracts
MintAllowance public MINT_ALLOWANCE;
// Ratio of treasury value in stablec to open supply of temple.structIntrinsicValueRatio {
uint256 stablec;
uint256 temple;
}
IntrinsicValueRatio public intrinsicValueRatio;
// Temple rewards harvested, and (yet) to be allocated to a pooluint256public harvestedRewardsTemple;
// Has treasury been seeded with STABLEC yet (essentially, has seedMint been called)// this will bootstrap IVboolpublic seeded =false;
// all active pools. A pool is anything// that gets allocated some portion of harvestaddress[] public pools;
mapping(address=>uint96) public poolHarvestShare;
uint96public totalHarvestShares;
// Current treasury STABLEC allocationsmapping(ITreasuryAllocation =>uint256) public treasuryAllocationsStablec;
uint256public totalAllocationStablec;
eventRewardsHarvested(uint256 _amount);
eventHarvestDistributed(address _contract, uint256 _amount);
constructor(TempleERC20Token _TEMPLE, IERC20 _STABLEC) {
TEMPLE = _TEMPLE;
STABLEC = _STABLEC;
MINT_ALLOWANCE =new MintAllowance(_TEMPLE);
}
functionnumPools() externalviewreturns (uint256) {
return pools.length;
}
/**
* Seed treasury with STABLEC and Temple to bootstrap
*/functionseedMint(uint256 amountStablec, uint256 amountTemple) externalonlyOwner{
require(!seeded, "Owner has already seeded treasury");
seeded =true;
// can this go in the constructor?
intrinsicValueRatio.stablec = amountStablec;
intrinsicValueRatio.temple = amountTemple;
SafeERC20.safeTransferFrom(STABLEC, msg.sender, address(this), amountStablec);
TEMPLE.mint(msg.sender, amountTemple);
}
/**
* Harvest rewards.
*
* For auditing, we harvest and allocate in two steps
*/functionharvest(uint256 distributionPercent) externalonlyOwner{
require(distributionPercent <=100, "Scaling factor interpreted as a %, needs to be between 0 (no harvest) and 100 (max harvest)");
uint256 reserveStablec = STABLEC.balanceOf(address(this)) + totalAllocationStablec;
// // Burn any excess temple, that is Any temple over and beyond harvestedRewardsTemple.// // NOTE: If we don't do this, IV could drop...if (TEMPLE.balanceOf(address(this)) > harvestedRewardsTemple) {
// NOTE: there isn't a Reentrancy issue as we control the TEMPLE ERC20 contract, and configure// treasury with an address on contract creation
TEMPLE.burn(TEMPLE.balanceOf(address(this)) - harvestedRewardsTemple);
}
uint256 totalSupplyTemple = TEMPLE.totalSupply() - TEMPLE.balanceOf(address(MINT_ALLOWANCE));
uint256 impliedSupplyAtCurrentIVTemple = reserveStablec * intrinsicValueRatio.temple / intrinsicValueRatio.stablec;
require(impliedSupplyAtCurrentIVTemple >= totalSupplyTemple, "Cannot run harvest when IV drops");
uint256 newHarvestTemple = (impliedSupplyAtCurrentIVTemple - totalSupplyTemple) * distributionPercent /100;
harvestedRewardsTemple += newHarvestTemple;
intrinsicValueRatio.stablec = reserveStablec;
intrinsicValueRatio.temple = totalSupplyTemple + newHarvestTemple;
TEMPLE.mint(address(this), newHarvestTemple);
emit RewardsHarvested(newHarvestTemple);
}
/**
* ResetIV
*
* Not expected to be used in day to day operations, as opposed to harvest which
* will be called ~ once per epoch.
*
* Only to be called if we have to post a treasury loss, and restart IV growth from
* a new baseline.
*/functionresetIV() externalonlyOwner{
uint256 reserveStablec = STABLEC.balanceOf(address(this)) + totalAllocationStablec;
uint256 totalSupplyTemple = TEMPLE.totalSupply() - TEMPLE.balanceOf(address(MINT_ALLOWANCE));
intrinsicValueRatio.stablec = reserveStablec;
intrinsicValueRatio.temple = totalSupplyTemple;
}
/**
* Allocate rewards to each pool.
*/functiondistributeHarvest() externalonlyOwner{
// transfer rewards as per defined allocationuint256 totalAllocated =0;
for (uint256 i =0; i < pools.length; i++) {
uint256 allocatedRewards = harvestedRewardsTemple * poolHarvestShare[pools[i]] / totalHarvestShares;
// integer rounding may cause the last allocation to exceed harvested// rewards. Handle gracefullyif ((totalAllocated + allocatedRewards) > harvestedRewardsTemple) {
allocatedRewards = harvestedRewardsTemple - totalAllocated;
}
totalAllocated += allocatedRewards;
SafeERC20.safeTransfer(TEMPLE, pools[i], allocatedRewards);
emit HarvestDistributed(pools[i], allocatedRewards);
}
harvestedRewardsTemple -= totalAllocated;
}
/**
* Mint and Allocate treasury TEMPLE.
*/functionmintAndAllocateTemple(address _contract, uint256 amountTemple) externalonlyOwner{
require(amountTemple >0, "TEMPLE to mint and allocate must be > 0");
// Mint and Allocate TEMPLE via MINT_ALLOWANCE helper
TEMPLE.mint(address(this), amountTemple);
SafeERC20.safeIncreaseAllowance(TEMPLE, address(MINT_ALLOWANCE), amountTemple);
MINT_ALLOWANCE.increaseMintAllowance(_contract, amountTemple);
}
/**
* Burn minted temple associated with a specific contract
*/functionunallocateAndBurnUnusedMintedTemple(address _contract) externalonlyOwner{
MINT_ALLOWANCE.burnUnusedMintAllowance(_contract);
}
/**
* Allocate treasury STABLEC.
*/functionallocateTreasuryStablec(ITreasuryAllocation _contract, uint256 amountStablec) externalonlyOwner{
require(amountStablec >0, "STABLEC to allocate must be > 0");
treasuryAllocationsStablec[_contract] += amountStablec;
totalAllocationStablec += amountStablec;
SafeERC20.safeTransfer(STABLEC, address(_contract), amountStablec);
}
/**
* Update treasury with latest mark to market for a given treasury allocation
*/functionupdateMarkToMarket(ITreasuryAllocation _contract) externalonlyOwner{
uint256 oldReval = treasuryAllocationsStablec[_contract];
uint256 newReval = _contract.reval();
totalAllocationStablec = totalAllocationStablec + newReval - oldReval;
treasuryAllocationsStablec[_contract] = newReval;
}
/**
* Withdraw from a contract.
*
* Expects that pre-withdrawal reval() includes the unwithdrawn allowance, and post withdrawal reval()
* drops by exactly this amount.
*/functionwithdraw(ITreasuryAllocation _contract) externalonlyOwner{
uint256 preWithdrawlReval = _contract.reval();
uint256 pendingWithdrawal = STABLEC.allowance(address(_contract), address(this));
// NOTE: Reentrancy considered and it's safe STABLEC is a well known unchanging contract
SafeERC20.safeTransferFrom(STABLEC, address(_contract), address(this), pendingWithdrawal);
uint256 postWithdrawlReval = _contract.reval();
totalAllocationStablec = totalAllocationStablec - pendingWithdrawal;
treasuryAllocationsStablec[_contract] -= pendingWithdrawal;
require(postWithdrawlReval + pendingWithdrawal == preWithdrawlReval);
}
/**
* Withdraw from a contract which has some treasury allocation
*
* Ejects a contract out of treasury, pulling in any allowance of STABLEC
* We only expect to use this if (for whatever reason). The booking in
* The given TreasuryAllocation results in withdraw not working.
*
* Precondition, contract given has allocated all of it's Stablec assets
* to be transfered into treasury as an allowance.
*
* This will only ever reduce treasury IV.
*/functionejectTreasuryAllocation(ITreasuryAllocation _contract) externalonlyOwner{
uint256 pendingWithdrawal = STABLEC.allowance(address(_contract), address(this));
totalAllocationStablec -= treasuryAllocationsStablec[_contract];
treasuryAllocationsStablec[_contract] =0;
SafeERC20.safeTransferFrom(STABLEC, address(_contract), address(this), pendingWithdrawal);
}
/**
* Add or update a pool, and transfer in treasury assets
*/functionupsertPool(address _contract, uint96 _poolHarvestShare) externalonlyOwner{
require(_poolHarvestShare >0, "Harvest share must be > 0");
totalHarvestShares = totalHarvestShares + _poolHarvestShare - poolHarvestShare[_contract];
// first time, add contract to array as wellif (poolHarvestShare[_contract] ==0) {
pools.push(_contract);
}
poolHarvestShare[_contract] = _poolHarvestShare;
}
/**
* Remove a given investment pool.
*/functionremovePool(uint256 idx, address _contract) externalonlyOwner{
require(idx < pools.length, "No pool at the specified index");
require(pools[idx] == _contract, "Pool at index and passed in address don't match");
pools[idx] = pools[pools.length-1];
pools.pop();
totalHarvestShares -= poolHarvestShare[_contract];
delete poolHarvestShare[_contract];
}
}
Contract Source Code
File 27 of 27: TreasuryManagementProxy.sol
pragmasolidity ^0.8.4;// SPDX-License-Identifier: GPL-3.0-or-laterimport"./TempleTreasury.sol";
import"@openzeppelin/contracts/access/AccessControl.sol";
/**
* Proxy all treasury management methods
*
* Intention is to be deployed as the new treasury owner, a workaround required
* to make harvest publically callable.
*/contractTreasuryManagementProxy{
TempleTreasury public treasury;
boolpublic harvestEnabled =true;
address owner;
uint256public harvestDistributionPercentage =80;
constructor(address _owner, address _treasury) {
owner = _owner;
treasury = TempleTreasury(_treasury);
}
modifieronlyOwner() {
require(owner ==msg.sender, "caller is not the owner");
_;
}
functionharvest() external{
if (harvestEnabled) {
treasury.harvest(harvestDistributionPercentage);
}
}
functionsetHarvestDistributionPercentage(uint256 _harvestDistributionPercentage) externalonlyOwner{
harvestDistributionPercentage = _harvestDistributionPercentage;
}
functiontoggleHarvest() externalonlyOwner{
harvestEnabled =!harvestEnabled;
}
functionresetIV() externalonlyOwner{
treasury.resetIV();
}
functiondistributeHarvest() externalonlyOwner{
treasury.distributeHarvest();
}
functionmintAndAllocateTemple(address _contract, uint256 amountTemple) externalonlyOwner{
treasury.mintAndAllocateTemple(_contract, amountTemple);
}
functionunallocateAndBurnUnusedMintedTemple(address _contract) externalonlyOwner{
treasury.unallocateAndBurnUnusedMintedTemple(_contract);
}
functionallocateTreasuryStablec(ITreasuryAllocation _contract, uint256 amountStablec) externalonlyOwner{
treasury.allocateTreasuryStablec(_contract, amountStablec);
}
functionupdateMarkToMarket(ITreasuryAllocation _contract) externalonlyOwner{
treasury.updateMarkToMarket(_contract);
}
functionwithdraw(ITreasuryAllocation _contract) externalonlyOwner{
treasury.withdraw(_contract);
}
functionejectTreasuryAllocation(ITreasuryAllocation _contract) externalonlyOwner{
treasury.ejectTreasuryAllocation(_contract);
}
functionupsertPool(address _contract, uint96 _poolHarvestShare) externalonlyOwner{
treasury.upsertPool(_contract, _poolHarvestShare);
}
functionremovePool(uint256 idx, address _contract) externalonlyOwner{
treasury.removePool(idx, _contract);
}
// If we want to transfer ownership way from proxyfunctiontransferOwnership(address newOwner) externalonlyOwner{
treasury.transferOwnership(newOwner);
}
}
