In the process of designing the smart contract, I tried to prioritize:
- Security.
- Upgradeability / extensible.
- Configurable.
- Multiple platform owners.
Based on those items, the taken decisions were oriented to:
- Minimize the security risks, adding a mechanimics to stop the platform. So any user, or company owner can take advantage if issues or bugs are found.
- Allow to update any smart contracts in the platform to fix issues/bugs or add new features/functionalities.
- Configure the platform as needs.
- To have administrative roles to update the platform configuration.
In order to support those feautes (apart from the business logic of Zalarify), Zalarify uses/implements:
- A delegate call (Proxy) to invoke the smart contract that contains the main business logic.
- See more details about delegate call:
- An Eternal Storage pattern which contains all the configuration the platform needs. It makes the platform flexible, configurable, and accessible from any smart contract in Zalarify.
- See more details about the Eternal Storage pattern:
- The platform has a design in which any smart contract can be easily updated, in case we or any user found a bug or issue.
- Internally the platform validates that only authorized contracts can invoke the platform smart contracts.
- A Vault smart contract in case users send Ether / Tokens to the platform. The Base smart contract implements a fallback function which transfer the Ether or Token to the Vault. Then, the Vault allows to transfer/withdraw the Ether/Token to a specific address. It functionality can be accessed by a platform owner or admin.
If you have any comment, feedback, or question, just contact me at guillesalazar@gmail.com.