From 238a9059b6981a9de353476e9f69381af9abe4c7 Mon Sep 17 00:00:00 2001
From: Emerald <emerald@wanderers.ai>
Date: Fri, 10 Jan 2025 05:41:57 +0000
Subject: [PATCH] feat: use AccessControl

---
 src/WanderStaking.sol | 21 ++++++++++++++-------
 1 file changed, 14 insertions(+), 7 deletions(-)

diff --git a/src/WanderStaking.sol b/src/WanderStaking.sol
index 759a9a6..1c2457b 100644
--- a/src/WanderStaking.sol
+++ b/src/WanderStaking.sol
@@ -5,12 +5,15 @@ import {SafeERC20, IERC20} from "@openzeppelin/contracts/token/ERC20/utils/SafeE
 
 import {PausableUpgradeable} from "@openzeppelin/contracts-upgradeable/utils/PausableUpgradeable.sol";
 import {Initializable} from "@openzeppelin/contracts-upgradeable/proxy/utils/Initializable.sol";
-import {OwnableUpgradeable} from "@openzeppelin/contracts-upgradeable/access/OwnableUpgradeable.sol";
+import {AccessControlUpgradeable} from "@openzeppelin/contracts-upgradeable/access/AccessControlUpgradeable.sol";
 import {UUPSUpgradeable} from "@openzeppelin/contracts-upgradeable/proxy/utils/UUPSUpgradeable.sol";
 
-contract WanderStaking is Initializable, PausableUpgradeable, OwnableUpgradeable, UUPSUpgradeable {
+contract WanderStaking is Initializable, PausableUpgradeable, AccessControlUpgradeable, UUPSUpgradeable {
     using SafeERC20 for IERC20;
 
+    bytes32 public constant PAUSER_ROLE = keccak256("PAUSER_ROLE");
+    bytes32 public constant UPGRADER_ROLE = keccak256("UPGRADER_ROLE");
+
     event Stake(address indexed user, uint256 amount);
     event Unstake(address indexed user, uint256 amount);
     event SpendFromStake(address indexed user, address indexed to, uint256 amount);
@@ -27,23 +30,27 @@ contract WanderStaking is Initializable, PausableUpgradeable, OwnableUpgradeable
         _disableInitializers();
     }
 
-    function initialize(address initialOwner, IERC20 _token) public initializer {
+    function initialize(address admin, IERC20 _token) public initializer {
         __Pausable_init();
-        __Ownable_init(initialOwner);
+        __AccessControl_init();
         __UUPSUpgradeable_init();
 
+        _grantRole(DEFAULT_ADMIN_ROLE, admin);
+        _grantRole(PAUSER_ROLE, admin);
+        _grantRole(UPGRADER_ROLE, admin);
+
         token = _token;
     }
 
-    function pause() public onlyOwner {
+    function pause() public onlyRole(PAUSER_ROLE) {
         _pause();
     }
 
-    function unpause() public onlyOwner {
+    function unpause() public onlyRole(PAUSER_ROLE) {
         _unpause();
     }
 
-    function _authorizeUpgrade(address newImplementation) internal override onlyOwner {}
+    function _authorizeUpgrade(address newImplementation) internal override onlyRole(UPGRADER_ROLE) {}
 
     function stake(uint256 amount) external whenNotPaused {
         if (amount == 0) {