Video: Cross Chain Rebase Token - Access Control

Support

## Securing Your RebaseToken: Implementing Access Control in Solidity Welcome to this lesson on implementing robust access control mechanisms within your Solidity smart contracts. Proper access control is fundamental to the security and manageability of any smart contract, ensuring that only authorized addresses can execute sensitive functions. We'll be focusing on the `RebaseToken` contract and leveraging OpenZeppelin's battle-tested libraries: `Ownable` for simple, single-owner control, and `AccessControl` for more granular, role-based permissions. ## Understanding `Ownable`: Simple Ownership Control The `Ownable` contract from OpenZeppelin provides a straightforward way to assign ownership of your smart contract to a single address. This "owner" typically has exclusive rights to perform critical administrative functions. **Key Concepts:** * **Owner:** A designated address, usually the contract deployer (set via `msg.sender` in the constructor), that possesses special privileges. * **`onlyOwner` Modifier:** A function modifier provided by `Ownable`. When applied to a function, it ensures that only the `owner` address can successfully execute that function. Any other caller will cause the transaction to revert. * **Centralization:** `Ownable` introduces a degree of centralization. The owner holds significant power, and the extent of this power depends on which functions are protected by `onlyOwner`. It's crucial for auditors and users to understand what actions the owner can perform. **Implementation Steps for `Ownable`:** 1. **Import:** Begin by importing the `Ownable` contract into your `RebaseToken.sol` file: ```solidity import { Ownable } from "@openzeppelin/contracts/access/Ownable.sol"; ``` 2. **Inheritance:** Modify your contract definition to inherit from `Ownable`, in addition to `ERC20`: ```solidity contract RebaseToken is ERC20, Ownable { // ... contract code ... } ``` 3. **Constructor Modification:** In the `RebaseToken` constructor, you need to call the `Ownable` constructor. By passing `msg.sender` to `Ownable(msg.sender)`, you designate the address deploying the contract as its initial owner. ```solidity constructor() ERC20("Rebase Token", "RBT") Ownable(msg.sender) { // ... other constructor logic ... } ``` If you were to pass a specific address, that address would become the owner instead of the deployer. 4. **Applying the `onlyOwner` Modifier:** To restrict a function, such as `setInterestRate`, so that only the owner can call it, add the `onlyOwner` modifier to its definition: ```solidity function setInterestRate(uint256 _newInterestRate) external onlyOwner { interestRate = _newInterestRate; // ... other logic ... } ``` The `onlyOwner` modifier should be placed after the visibility keyword (`external` or `public`). Inside `Ownable.sol`, you'll find logic that sets an internal `_owner` variable and the `onlyOwner` modifier which checks if `_msgSender()` (a context utility from OpenZeppelin) matches this stored `_owner`. It also provides functions like `transferOwnership` and `renounceOwnership`. ## Implementing Granular Permissions with `AccessControl` While `Ownable` is useful, sometimes you need a more flexible system where different addresses can have different sets of permissions. This is where OpenZeppelin's `AccessControl` contract shines, allowing for role-based access control (RBAC). **Key Concepts:** * **Roles:** Permissions are grouped into roles. Each role is represented by a `bytes32` identifier. Conventionally, these identifiers are generated by hashing a descriptive string (e.g., `keccak256("MINTER_ROLE")`). * **`hasRole` / `onlyRole` Modifier:** `hasRole` is a function to check if an account possesses a specific role. `onlyRole` is a modifier that restricts function execution to accounts that have been granted the specified role. * **`grantRole` / `_grantRole`:** Functions to assign a role to an account. `grantRole` is typically a permissioned function itself (i.e., only an account with an admin role can grant other roles). `_grantRole` is an internal version often used within the contract. * **`DEFAULT_ADMIN_ROLE`:** `AccessControl` includes a `DEFAULT_ADMIN_ROLE`. Accounts with this role can typically manage other roles (e.g., grant or revoke them). **Implementation Steps for `AccessControl` (for Mint/Burn functionality):** 1. **Import:** Import the `AccessControl` contract: ```solidity import { AccessControl } from "@openzeppelin/contracts/access/AccessControl.sol"; ``` 2. **Inheritance:** Add `AccessControl` to your contract's inheritance list: ```solidity contract RebaseToken is ERC20, Ownable, AccessControl { // ... contract code ... } ``` 3. **Defining a Role:** Declare a `bytes32` public constant for your desired role. For our rebase token, we'll create a `MINT_AND_BURN_ROLE`: ```solidity bytes32 public constant MINT_AND_BURN_ROLE = keccak256("MINT_AND_BURN_ROLE"); ``` 4. **Granting the Role:** You need a mechanism to grant this role. A common pattern is to allow the contract `owner` (from `Ownable`) to grant specific roles. We'll create a function for this: ```solidity function grantMintAndBurnRole(address _account) external onlyOwner { _grantRole(MINT_AND_BURN_ROLE, _account); } ``` This function uses `_grantRole`, an internal function from `AccessControl`, to assign the `MINT_AND_BURN_ROLE` to the specified `_account`. Only the `owner` can call this function. *Design Note on Granting Roles:* Why not grant this role in the constructor? In many scenarios, the address needing this role (e.g., a Vault contract) might not exist at the time of `RebaseToken` deployment, or there might be circular dependencies if both contracts need each other's addresses in their constructors. Deploying the token, then the vault, and then calling `grantMintAndBurnRole` with the vault's address is a common and cleaner pattern. 5. **Applying the `onlyRole` Modifier:** Now, restrict the `mint` and `burn` functions using the `onlyRole` modifier, passing the `MINT_AND_BURN_ROLE` identifier: ```solidity function mint(address _to, uint256 _amount) external onlyRole(MINT_AND_BURN_ROLE) { _mint(_to, _amount); } function burn(address _from, uint256 _amount) external onlyRole(MINT_AND_BURN_ROLE) { _burn(_from, _amount); } ``` Like `onlyOwner`, `onlyRole` should be placed after the visibility keyword. `AccessControl.sol` internally manages roles using a mapping of role `bytes32` to a `RoleData` struct, which itself maps member addresses to a boolean and stores the admin role for that specific role. The `onlyRole` modifier uses `_checkRole`, which verifies `hasRole(role, _msgSender())`. The `grantRole` function typically requires the caller to have the admin role for the role being granted (often the `DEFAULT_ADMIN_ROLE`). In our setup, we've bypassed this by allowing the `Ownable` owner to directly call `_grantRole`. ## Security Considerations and Design Rationale * **Centralization Risk with `Ownable` and Role Granting:** In our current implementation, the `owner` (established by `Ownable`) has the power to call `grantMintAndBurnRole`. This means the owner can grant the powerful `MINT_AND_BURN_ROLE` to any address, including their own. This gives the owner significant control over the token supply, which could be a point of centralization and potential misuse. * **Mitigation:** This level of control must be clearly documented. Users and auditors interacting with this contract need to understand the trust assumptions placed on the owner. * **Circular Dependency Avoidance:** As mentioned, granting roles *after* deployment (rather than in the constructor) helps avoid deployment complexities, especially when integrating with other contracts like a Vault that might need the token's address during its own deployment. * **Cross-Chain Considerations:** This design also facilitates scenarios where certain functionalities (like minting/burning via a vault) might only exist on a "source" chain, justifying the separation of deployment and role assignment. ## Key Takeaways and Best Practices * **`msg.sender` in Constructor:** The address deploying the contract (`msg.sender` in the constructor) automatically becomes the owner when using `Ownable(msg.sender)`, unless a different address is explicitly provided. * **Understand `Ownable`'s Power:** While simple, `Ownable` concentrates power. Always document what the owner can do. * **Role Generation:** `AccessControl` roles are `bytes32` values. Use `keccak256` on human-readable strings (e.g., `keccak256("MINTER_ROLE")`) for clarity and to avoid collisions. * **Modifier Placement:** Access control modifiers like `onlyOwner` and `onlyRole` should be placed after the function's visibility keyword (`public`, `external`). * **Layered Control:** `Ownable` and `AccessControl` can be used together effectively. The `owner` can manage the more granular permissions defined by `AccessControl`. ## Next Steps With these access control mechanisms in place, the next logical step is to thoroughly test them. We will focus on writing a comprehensive test suite for the `RebaseToken` contract to ensure that `onlyOwner` and `onlyRole` restrictions function as expected, and that role granting behaves correctly before we move on to integrating cross-chain functionalities. Testing deployment scripts involving cross-chain setups will be deferred until those components are developed.

Access Control

An implementer's guide to Securing Your RebaseToken: Implementing Access Control in Solidity - Learn to fortify your `RebaseToken` by integrating OpenZeppelin's `Ownable` for simple owner control and `AccessControl` for fine-grained, role-based permissions. You'll implement `onlyOwner` and `onlyRole` modifiers, define custom roles, and manage their assignment for critical functions.

Course Overview

About the course

What you'll learn

Advanced smart contract development

How to develop a stablecoin

How to develop a DeFi protocol

How to develop a DAO

Advanced smart contracts testing

Fuzz testing

Manual verification

Course Description

Who is this course for?

Engineers
Smart Contract Security researchers

Potential Careers

Web3 Developer Relations

$85,000 - $125,000 (avg. salary)

Web3 developer

$60,000 - $150,000 (avg. salary)

Smart Contract Engineer

$100,000 - $150,000 (avg. salary)

Smart Contract Auditor

$100,000 - $200,000 (avg. salary)

Security researcher

$49,999 - $120,000 (avg. salary)

Meet your instructors

Patrick Collins

Founder at Cyfrin

Web3 engineer, educator, and Cyfrin co-founder. Patrick's smart contract development and security courses have helped hundreds of thousands of engineers kickstarting their careers into web3.

Ciara Nightingale

Developer relations at Cyfrin

Guest lecturers:

Juliette Chevalier

Lead Developer relations at Aragon

Vasiliy Gualoto

Developer relations at ThirdWeb

Nader Dabit

Director of developer relations at EigenLayer

Ally Haire

Developer relations at Protocol Labs

Harrison

Founder at GasliteGG

Vitto Rivabella

CPO at Cyfrin

Last updated on May 20, 2025

Thanks for checking us out

Start learning for free

Start for free

Solidity Developer

Advanced Foundry

Section 1: Develop an ERC20 Crypto Currency

Duration: 36min

Section 2: Develop an NFTs Collection

Duration: 3h 06min

Section 3: Develop a DeFi Protocol

Duration: 5h 02min

Section 4: Cross Chain Rebase Token

Duration: 6h 02min

1. Introduction

A comprehensive masterclass to Building Cross-Chain Rebase Tokens with Foundry and Chainlink CCIP - Learn to design, implement, and deploy interest-accruing rebase tokens across chains using Foundry and Chainlink CCIP. Covers burn-and-mint logic, advanced fork testing with local CCIP simulation, and automated deployment scripts. Duration: 3min

2. What Is-a-rebase-token

An essential guide to Demystifying Rebase Tokens and Elastic Supply - Grasp how rebase tokens use an elastic supply to algorithmically alter your balance, demystifying unexpected changes in your crypto holdings. You'll explore their core mechanics, types, contrast with standard tokens, and see how Aave's aTokens work, including a peek into their smart contract logic. Duration: 2min

3. Rebase Token-code-structure

A strategic guide to Blueprinting Your Single-Chain Rebase Token - Initialize your Foundry project and establish a clean development environment for your smart contracts. Then, architect the core functionalities of a single-chain rebase token, defining its dynamic balance system and a unique, decreasing global interest rate model to incentivize early users. Duration: 9min

4. Writing The-rebase-token-contract

A conceptual guide to Writing Your First Rebase Token in Solidity - Discover how to build an ERC20-based Rebase Token in Solidity, allowing user balances to automatically grow via accrued interest. This lesson details setting up global and user-specific interest rates, overriding `balanceOf` for dynamic balance reflection, and minting new tokens as interest. Duration: 33min

5. Mintinterest And-burn-functions

A comprehensive deep-dive to Solidity Rebase Tokens: Managing Dynamic Balances and Interest - Explore how to implement `_mintAccruedInterest` to ensure accurate reflection of accrued interest in user balances before any token operations. You'll learn to build `mint` and `burn` functions for rebase tokens, incorporating `type(uint256).max` for full balance interactions and adhering to Solidity best practices. Duration: 9min

6. Finish Rebase-token-contract

An in-depth lesson to Completing Your Rebase Token Smart Contract - Finalize your custom RebaseToken by overriding OpenZeppelin ERC20 functions like `balanceOf` and `transfer` for accurate interest accrual. Explore the `totalSupply` trade-off, add new utility functions, and identify the next vital step: implementing robust access control. Duration: 16min

7. Access Control

8. Quiz 10 Quiz

Questions: 9

9. Vault And-natspec

A practical guide to Building a Secure Rebase Vault with Effective Solidity Practices - Learn to construct a `Vault` contract managing ETH deposits and `RebaseToken` minting/burning, with secure interactions via Solidity interfaces and the CEI pattern. This lesson also covers vital Solidity practices: correct NatSpec comments, the `receive()` ETH function, and indexed event parameters for efficient tracking. Duration: 14min

10. Rebase Token-tests-part-1

A practical walkthrough to Foundry Test Environment Setup for Rebase Tokens - Configure your Foundry test environment to test `RebaseToken` and `Vault` contracts, focusing on the `setup` function for deployments, type casting, and role assignments using `vm.prank`. You'll also begin writing a fuzz test for linear interest, utilizing `bound` for inputs and `vm.deal` for user balances. Duration: 11min

11. Rebase Token-test-part-2

A strategic guide to Bulletproofing Rebase Tokens with Advanced Foundry Fuzzing - Explore advanced Foundry fuzz testing techniques to ensure rebase token robustness, covering input optimization with `bound`, rigorous testing of interest accrual, and validation of redeem/transfer logic. Learn to effectively debug common pitfalls like truncation and overflows, and enhance security through comprehensive access control tests and `forge coverage`. Duration: 43min

12. Vulnerabilities And-cross-chain-intro

A critical review to Rebase Token Vulnerabilities and Cross-Chain Token Primer with CCIP - Dissect design flaws in `RebaseToken.sol` such as interest rate manipulation and unintended compounding. Gain an overview of cross-chain token bridging and the Chainlink Cross-Chain Interoperability Protocol (CCIP). Duration: 6min

13. Bridging

An insightful journey into Understanding Blockchain Bridges: Connecting Isolated Networks - Discover how blockchain bridges serve as vital connectors between disparate networks, learn essential bridging terminology, and understand their necessity in Web3. You'll explore the mechanics behind asset transfers like lock-and-mint, differentiate between native/third-party and centralized/decentralized bridges, and grasp key security practices. Duration: 8min

14. Quiz 11 Quiz

Questions: 7

15. CCIP

A practical guide to Unlocking Cross-Chain Communication with Chainlink CCIP - Learn to bridge blockchains using Chainlink CCIP, mastering its architecture for secure data and token transfers. You'll explore its multi-layered security, including the Risk Management Network, and send your first cross-chain message. Duration: 12min

16. The CCT Standard

An implementer's guide to Chainlink's CCT Standard & Foundry for Cross-Chain Tokens - Master Chainlink's Cross-Chain Token (CCT) Standard, enabling permissionless, developer-owned token pools with enhanced security and programmable transfers. This guide details deploying a Burn & Mint token on testnets using Foundry, from configuration to transfer. Duration: 13min

17. Circle CCTP

An essential guide to Bridging Blockchains with Circle's CCTP - Understand how Circle's Cross-Chain Transfer Protocol (CCTP) enables seamless native USDC movement between networks using its burn-and-mint process, eliminating wrapped token vulnerabilities. You'll explore its architecture, standard vs. fast transfers, and a step-by-step Ethers.js implementation. Duration: 12min

18. Quiz 12 Quiz

Questions: 8

19. Pool Contract

An in-depth walkthrough to Enabling Cross-Chain Rebase Tokens with Chainlink CCIP: A Custom Token Pool Guide - Learn to create a custom Chainlink CCIP token pool in Foundry for rebase tokens, enabling "Burn & Mint" cross-chain functionality. This guide details implementing `lockOrBurn` and `releaseOrMint` to preserve user-specific interest rates. Duration: 31min

20. Finish Pool Contract

A practical debugging walkthrough to Debugging and Finalizing Your RebaseTokenPool Contract - Resolve common Solidity compilation errors in your `RebaseTokenPool` contract and tests using `forge build`. You'll learn to fix incorrect import paths, update function argument calls, and correct the misuse of `abi.decode` for a successful compilation. Duration: 1min

21. Chainlink Local-and-fork-tests

A developer's guide to Mastering Local CCIP Testing with Foundry and Chainlink Local - Set up Foundry to manage multiple local blockchain forks like Sepolia and Arbitrum Sepolia using RPC aliases and cheatcodes such as `vm.createSelectFork` and `vm.makePersistent`. You'll then bridge these forks by deploying Chainlink Local's `CCIPLocalSimulatorFork`, enabling seamless local testing of CCIP message relay. Duration: 11min

22. Deploy Token-test

A practical primer to Deploying Your First Cross-Chain Tokens with Chainlink CCIP in Foundry - Configure your Foundry test environment to simulate Sepolia and Arbitrum Sepolia, deploying `RebaseToken` on both and a `Vault` on the source chain for Chainlink CCIP. Learn to use `vm.createFork`, `vm.selectFork`, and `vm.startPrank` for these initial cross-chain contract deployments. Duration: 4min

23. CCIP Setup-test

An indispensable primer to Setting Up Your CCIP Test Environment in Foundry - Establish your Chainlink CCIP testing grounds in Foundry by deploying key contracts like RebaseToken and TokenPools on forked Sepolia and Arbitrum Sepolia networks. This guide covers troubleshooting type errors, using `CCIPLocalSimulatorFork` to get network specifics, and configuring token permissions and pool links. Duration: 11min

24. Configure Pool-test

An essential setup guide to Activating Cross-Chain CCIP Token Transfers via Pool Configuration - Learn the critical `applyChainUpdates` process to configure Chainlink CCIP Token Pools, enabling them for cross-chain burn & mint operations. This guide shows how to implement this in Foundry, managing local/remote chain settings and `ChainUpdate` structs. Duration: 10min

25. Bridge Function-test

A comprehensive walkthrough to Building a Reusable `bridgeTokens` Test for Chainlink CCIP in Foundry - Discover how to implement a flexible `bridgeTokens` test function in Foundry for validating cross-chain token movements with Chainlink CCIP. This lesson covers `EVM2AnyMessage` creation, fee handling via `CCIPLocalSimulatorFork`, and end-to-end transfer verification. Duration: 21min

26. Quiz 26 Quiz

Questions: 5

27. First Cross-chain-test

An in-depth guide to Testing Cross-Chain Rebase Token Bridging - Master the complexities of testing cross-chain rebase token bridging between Sepolia and Arbitrum Sepolia forks using Foundry and the Chainlink CCIP Local Simulator. You'll handle intricate setup, implement `bridgeTokens`, manage CCIP fees, and simulate message routing. Duration: 11min

28. Vault Deployment-script

A practical guide to Crafting Your Foundry Deployment Script for the Vault Contract - Learn to write a `VaultDeployer.s.sol` script using Foundry, covering essential imports, the `run()` function, and deployment with `vm.startBroadcast`. This lesson shows how to deploy a `Vault` contract, grant it token mint/burn roles, and return the deployed contract instance. Duration: 4min

29. Token And-pool-deployer

A streamlined deployment guide to Automating Token and Pool Deployment for Chainlink CCIP with Foundry - Learn to craft a `Deployer.s.sol` Foundry script for deploying a custom `RebaseToken` and its `RebaseTokenPool`. You'll also automate the essential Chainlink CCIP configurations to enable Burn & Mint token transfers in a local development environment. Duration: 9min

30. Pool Config-script

An essential tutorial to Crafting the `ConfigurePool.s.sol` Script for CCIP Token Pool Configuration - Master building a Foundry script (`ConfigurePool.s.sol`) to configure deployed `TokenPool` contracts for CCIP operations. You'll learn to use `applyChainUpdates`, prepare `ChainUpdate` structs with rate limiters, and ABI-encode addresses for robust cross-chain setup. Duration: 8min

31. Bridging Script

A comprehensive walkthrough to Crafting a Foundry Script for CCIP Token Bridging - Learn to create the `BridgeTokens.s.sol` script for sending ERC20 tokens cross-chain via Chainlink CCIP without data payloads. This guide details constructing the `EVM2AnyMessage`, handling fees, approving tokens, and executing `ccipSend`. Duration: 13min

32. Build Scripts

An in-depth walkthrough to Mastering Cross-Chain Foundry Deployments and `via_ir` Test Stability - Prepare your smart contracts for cross-chain deployment across testnets like Sepolia and zkSync, focusing on successful compilation and secure RPC setup. Dive into resolving the `via_ir` and `vm.warp()` testing conflict in Foundry to ensure your CI pipelines run smoothly with robust tests. Duration: 4min

33. Run Scripts-on-testnet

A step-by-step deployment guide to Deploying Your Cross-Chain Application to Testnets - Deploy contracts to Ethereum Sepolia & ZKsync Sepolia testnets, covering testnet LINK acquisition and using bash scripts (`forge create`/`cast send`) for ZKsync due to Foundry script limitations. Configure your environment with `.env` and Foundry keystore, troubleshoot deployments, and verify cross-chain CCIP transactions. Duration: 15min

34. Cross Chain-message-sucess

A detailed breakdown to Mastering Cross-Chain Token Transfers: A CCIP Case Study with Rebase Tokens (RBT) - Get a detailed breakdown of verifying a Rebase Token (RBT) cross-chain transfer via Chainlink CCIP from Ethereum Sepolia to ZKsync Sepolia. Master using the CCIP Explorer to interpret transaction details and confirm token receipt in Metamask on the ZKsync Sepolia network. Duration: 3min

35. Outro

An architectural review of Mastering Cross-Chain Rebase Tokens: A Comprehensive Recap - Revisit the complete architecture of a cross-chain rebase token, including `RebaseToken` mechanics, `Vault` interactions, and CCIP integration. Discover how Foundry scripts automate deployment and testing, culminating in a live cross-chain transaction. Duration: 3min

36. Quiz 13 Quiz