Disbursing rewards

vivraan · January 21, 2022, 12:24pm

I wish to know if the function given below correctly transfers rewards from the contract caller to the required account or not. Is there anything to consider before calling this function from some source?

I’m assuming that I need to approve an amount that the contract can spend from. Can this be done once at the time of contract deployment? If so, how can I ensure that every address with the DISBURSER_ROLE gets approved, i.e. during role assignment?

Code to reproduce

function disburseReward(address to, uint256 rewardWei)
    external
    onlyRole(DISBURSER_ROLE)
    returns (bool)
{
    if (msg.sender.balance < gasleft()) revert("native balance < gas");
    if (token.balanceOf(msg.sender) < rewardWei)
        revert("token balance < reward");

    if (!token.transferFrom(msg.sender, to, rewardWei))
        revert("Token transfer failed.");
    emit RewardClaimed(msg.sender, to, rewardWei);

    return true;
}

Environment

Hardhat 2.8.3

cryptokid · January 21, 2022, 5:43pm

if you transfer native currency, I think that you don’t need to approve anything, only for ERC20 tokens or NFTs you would need to use approve

vivraan · January 22, 2022, 4:16am

I do need to transfer ERC20 tokens.

cryptokid · January 22, 2022, 10:29am

in that case, somehow the smart contract that makes that transfer has to be approved to do that transfer

vivraan · January 23, 2022, 6:39am

I’m using this definition now:

/**
    @dev Disburses `reward` to `claimant`.

    Emits {Approval} events in case {disburserApproveAmount} changes.
    Emits {RewardClaimed}.
    */
function disburseReward(address claimant, uint256 reward)
    external
    onlyRole(DISBURSER_ROLE)
    whenNotPaused
    returns (bool)
{
    address disburser = msg.sender;
    // checks
    require(
        disburser.balance >= gasleft(),
        "RewardClaim: native bal < gas"
    );
    require(
        token.balanceOf(disburser) >= reward,
        "RewardClaim: token bal < reward"
    );

    // interactions
    address tokenAddress = address(token);
    uint256 currentAllowance = token.allowance(disburser, tokenAddress);
    // Will always be true for a first-time disburser
    if (currentAllowance < reward) {
        if (
            !token.increaseAllowance(
                disburser,
                disburserApproveAmount - currentAllowance
            )
        ) {
            revert("RewardClaim: approval failed.");
        }
    }

    if (!token.transferFrom(disburser, claimant, reward))
        revert("RewardClaim: claim failed.");

    emit RewardClaimed(disburser, claimant, reward);

    return true;
}

Public repo: https://gitlab.com/Vivraan/UltraContracts

vivraan · January 24, 2022, 7:24am

I want to make it clear that I’m planning to use the disburseReward method implemented here through Moralis Cloud Code, is that possible?

cryptokid · January 24, 2022, 7:43am

you want to call a contract function from cloud code?

vivraan · January 24, 2022, 7:56am

Yes, specifically disburseReward.

cryptokid · January 24, 2022, 8:02am

and what would be the problem with that?

vivraan · January 24, 2022, 8:19am

I was reading up earlier on the docs that Moralis’ Cloud implementation can’t sign messages or something, will that not be a problem?

cryptokid · January 24, 2022, 8:27am

that is not a problem, you will have to write the code that signs and sends the transaction to a node

vivraan · January 24, 2022, 8:40am

I see, any guides for doing that which I can refer to?

cryptokid · January 24, 2022, 8:41am

you can search on forum, on google, we don’t have a function in Moralis SDK that does that, and it is not recommended to do that as you will have to save the private key

vivraan · January 24, 2022, 2:59pm

Yes, that was the restriction I read about. I’ll have to consider how this is done I suppose.

I’m quite new to this: does this mean the service must use a wallet address and its private key to sign the messages?