pointnetwork · RealPointillistic · Jan 12, 2023
diff --git a/contracts/Subscription.sol b/contracts/Subscription.sol
@@ -0,0 +1,286 @@
+// SPDX-License-Identifier: MIT
+pragma solidity ^0.8.0;
+
+/*
+  Super Simple Token Subscriptions - https://tokensubscription.com
+
+  //// Breakin’ Through @ University of Wyoming ////
+
+  Austin Thomas Griffith - https://austingriffith.com
+
+  Building on previous works:
+    https://github.com/austintgriffith/token-subscription
+    https://gist.github.com/androolloyd/0a62ef48887be00a5eff5c17f2be849a
+    https://media.consensys.net/subscription-services-on-the-blockchain-erc-948-6ef64b083a36
+    https://medium.com/gitcoin/technical-deep-dive-architecture-choices-for-subscriptions-on-the-blockchain-erc948-5fae89cabc7a
+    https://github.com/ethereum/EIPs/pull/1337
+    https://github.com/ethereum/EIPs/blob/master/EIPS/eip-1077.md
+    https://github.com/gnosis/safe-contracts
+
+  Earlier Meta Transaction Demo:
+    https://github.com/austintgriffith/bouncer-proxy
+
+  Huge thanks, as always, to OpenZeppelin for the rad contracts:
+ */
+
+import "@openzeppelin/contracts/utils/cryptography/ECDSA.sol";
+import "@openzeppelin/contracts/utils/math/SafeMath.sol";
+import "@openzeppelin/contracts/token/ERC20/ERC20.sol";
+import "@openzeppelin/contracts-upgradeable/proxy/utils/Initializable.sol";
+import "@openzeppelin/contracts-upgradeable/proxy/utils/UUPSUpgradeable.sol";
+import "@openzeppelin/contracts-upgradeable/access/OwnableUpgradeable.sol";
+
+
+contract Subscription is
+    Initializable,
+    UUPSUpgradeable,
+    OwnableUpgradeable
+{
+    using ECDSA for bytes32;
+    using SafeMath for uint256;
+
+    //who deploys the contract
+    address public author;
+
+    // the publisher may optionally deploy requirements for the subscription
+    // so only meta transactions that match the requirements can be relayed
+    address public requiredToAddress;
+    address public requiredTokenAddress;
+    uint256 public requiredTokenAmount;
+    uint256 public requiredPeriodSeconds;
+    uint256 public requiredGasPrice;
+
+    // constructor(
+    //     address _toAddress,
+    //     address _tokenAddress,
+    //     uint256 _tokenAmount,
+    //     uint256 _periodSeconds,
+    //     uint256 _gasPrice
+    // ) {
+    //     requiredToAddress=_toAddress;
+    //     requiredTokenAddress=_tokenAddress;
+    //     requiredTokenAmount=_tokenAmount;
+    //     requiredPeriodSeconds=_periodSeconds;
+    //     requiredGasPrice=_gasPrice;
+    //     author=msg.sender;
+    // }
+
+    event ExecuteSubscription(
+        address indexed from, //the subscriber
+        address indexed to, //the publisher
+        address tokenAddress, //the token address paid to the publisher
+        uint256 tokenAmount, //the token amount paid to the publisher
+        uint256 periodSeconds, //the period in seconds between payments
+        uint256 gasPrice //the amount of tokens to pay relayer (0 for free)
+    );
+
+    // similar to a nonce that avoids replay attacks this allows a single execution
+    // every x seconds for a given subscription
+    // subscriptionHash  => next valid block number
+    mapping(bytes32 => uint256) public nextValidTimestamp;
+
+    /// Initializer method, called once by the proxy when it is deployed.
+    /// Setup and initialize constant values for the contract.
+    function initialize() public initializer onlyProxy {
+        __Ownable_init();
+        __UUPSUpgradeable_init();
+    }
+
+    /// Function that is called to authorize upgrade of the proxy, if don't revert is authorized.
+    /// Only the owner of the contract can authorize the upgrade of the proxy.
+    function _authorizeUpgrade(address) internal override onlyOwner {}
+
+    // this is used by external smart contracts to verify on-chain that a
+    // particular subscription is "paid" and "active"
+    // there must be a small grace period added to allow the publisher
+    // or desktop miner to execute
+    function isSubscriptionActive(
+        bytes32 subscriptionHash,
+        uint256 gracePeriodSeconds
+    )
+        external
+        view
+        returns (bool)
+    {
+        return (block.timestamp <=
+                nextValidTimestamp[subscriptionHash].add(gracePeriodSeconds)
+        );
+    }
+
+    // given the subscription details, generate a hash and try to kind of follow
+    // the eip-191 standard and eip-1077 standard from my dude @avsa
+    function getSubscriptionHash(
+        address from, //the subscriber
+        address to, //the publisher
+        address tokenAddress, //the token address paid to the publisher
+        uint256 tokenAmount, //the token amount paid to the publisher
+        uint256 periodSeconds, //the period in seconds between payments
+        uint256 gasPrice //the amount of tokens or eth to pay relayer (0 for free)
+    )
+        public
+        view
+        returns (bytes32)
+    {
+        return keccak256(
+            abi.encodePacked(
+                bytes1(uint8(0x19)),
+                bytes1(uint8(0)),
+                address(this),
+                from,
+                to,
+                tokenAddress,
+                tokenAmount,
+                periodSeconds,
+                gasPrice
+        ));
+    }
+
+    //ecrecover the signer from hash and the signature
+    function getSubscriptionSigner(
+        bytes32 subscriptionHash, //hash of subscription
+        bytes memory signature //proof the subscriber signed the meta trasaction
+    )
+        public
+        pure
+        returns (address)
+    {
+        return subscriptionHash.toEthSignedMessageHash().recover(signature);
+    }
+
+    //check if a subscription is signed correctly and the timestamp is ready for
+    // the next execution to happen
+    function isSubscriptionReady(
+        address from, //the subscriber
+        address to, //the publisher
+        address tokenAddress, //the token address paid to the publisher
+        uint256 tokenAmount, //the token amount paid to the publisher
+        uint256 periodSeconds, //the period in seconds between payments
+        uint256 gasPrice, //the amount of the token to incentivize the relay network
+        bytes memory signature //proof the subscriber signed the meta trasaction
+    )
+        public
+        view
+        returns (bool)
+    {
+        bytes32 subscriptionHash = getSubscriptionHash(
+            from, to, tokenAddress, tokenAmount, periodSeconds, gasPrice
+        );
+        address signer = getSubscriptionSigner(subscriptionHash, signature);
+        uint256 allowance = ERC20(tokenAddress).allowance(from, address(this));
+        uint256 balance = ERC20(tokenAddress).balanceOf(from);
+        return (
+            signer == from &&
+            from != to &&
+            block.timestamp >= nextValidTimestamp[subscriptionHash] &&
+            allowance >= tokenAmount.add(gasPrice) &&
+            balance >= tokenAmount.add(gasPrice)
+        );
+    }
+
+    // you don't really need this if you are using the approve/transferFrom method
+    // because you control the flow of tokens by approving this contract address,
+    // but to make the contract an extensible example for later user I'll add this
+    function cancelSubscription(
+        address from, //the subscriber
+        address to, //the publisher
+        address tokenAddress, //the token address paid to the publisher
+        uint256 tokenAmount, //the token amount paid to the publisher
+        uint256 periodSeconds, //the period in seconds between payments
+        uint256 gasPrice, //the amount of tokens or eth to pay relayer (0 for free)
+        bytes memory signature //proof the subscriber signed the meta trasaction
+    )
+        public
+        returns (bool success)
+    {
+        bytes32 subscriptionHash = getSubscriptionHash(
+            from, to, tokenAddress, tokenAmount, periodSeconds, gasPrice
+        );
+        address signer = subscriptionHash.toEthSignedMessageHash().recover(signature);
+
+        //the signature must be valid
+        require(signer == from, "Invalid Signature for subscription cancellation");
+
+        //nextValidTimestamp should be a timestamp that will never
+        //be reached during the brief window human existence
+        nextValidTimestamp[subscriptionHash] = type(uint256).max;
+
+        return true;
+    }
+
+    // execute the transferFrom to pay the publisher from the subscriber
+    // the subscriber has full control by approving this contract an allowance
+    function executeSubscription(
+        address from, //the subscriber
+        address to, //the publisher
+        address tokenAddress, //the token address paid to the publisher
+        uint256 tokenAmount, //the token amount paid to the publisher
+        uint256 periodSeconds, //the period in seconds between payments
+        uint256 gasPrice, //the amount of tokens or eth to pay relayer (0 for free)
+        bytes memory signature //proof the subscriber signed the meta trasaction
+    )
+        public
+        returns (bool success)
+    {
+        // make sure the subscription is valid and ready
+        // pulled this out so I have the hash, should be exact code as "isSubscriptionReady"
+        bytes32 subscriptionHash = getSubscriptionHash(
+            from, to, tokenAddress, tokenAmount, periodSeconds, gasPrice
+        );
+        address signer = getSubscriptionSigner(subscriptionHash, signature);
+
+        //the signature must be valid
+        require(signer == from, "Invalid Signature");
+        //timestamp must be equal to or past the next period
+        require(
+            block.timestamp >= nextValidTimestamp[subscriptionHash],
+            "Subscription is not ready"
+        );
+
+        // if there are requirements from the deployer, let's make sure
+        // those are met exactly
+        require( requiredToAddress == address(0) || to == requiredToAddress );
+        require( requiredTokenAddress == address(0) || tokenAddress == requiredTokenAddress );
+        require( requiredTokenAmount == 0 || tokenAmount == requiredTokenAmount );
+        require( requiredPeriodSeconds == 0 || periodSeconds == requiredPeriodSeconds );
+        require( requiredGasPrice == 0 || gasPrice == requiredGasPrice );
+
+        //increment the timestamp by the period so it wont be valid until then
+        nextValidTimestamp[subscriptionHash] = block.timestamp.add(periodSeconds);
+
+        // now, let make the transfer from the subscriber to the publisher
+        uint256 startingBalance = ERC20(tokenAddress).balanceOf(to);
+        require(
+          ERC20(tokenAddress).transferFrom(from,to,tokenAmount),
+          "Transfer Failed"
+        );
+        require(
+          (startingBalance+tokenAmount) == ERC20(tokenAddress).balanceOf(to),
+          "Crappy ERC20 is a bad kitty."
+        );
+
+        emit ExecuteSubscription(
+            from, to, tokenAddress, tokenAmount, periodSeconds, gasPrice
+        );
+
+        // it is possible for the subscription execution to be run by a third party
+        // incentivized in the terms of the subscription with a gasPrice of the tokens
+        //  - pay that out now...
+        if (gasPrice > 0) {
+            //the relayer is incentivized by a little of the same token from
+            // the subscriber ... as far as the subscriber knows, they are
+            // just sending X tokens to the publisher, but the publisher can
+            // choose to send Y of those X to a relayer to run their transactions
+            // the publisher will receive X - Y tokens
+            // this must all be setup in the constructor
+            // if not, the subscriber chooses all the params including what goes
+            // to the publisher and what goes to the relayer
+
+            require(
+                ERC20(tokenAddress).transferFrom(from, msg.sender, gasPrice),
+                "Failed to pay gas as from account"
+            );
+        }
+
+        return true;
+    }
+}