56 releases (6 stable)
2.0.0 | Mar 26, 2024 |
---|---|
1.1.2 | Nov 23, 2023 |
1.1.0 | Jun 20, 2023 |
1.0.1 | Dec 19, 2022 |
0.1.0 | Jul 7, 2020 |
#1 in #fungible
26,671 downloads per month
Used in 330 crates
(216 directly)
33KB
465 lines
CW20 Spec: Fungible Tokens
CW20 is a specification for fungible tokens based on CosmWasm. The name and design is loosely based on Ethereum's ERC20 standard, but many changes have been made. The types in here can be imported by contracts that wish to implement this spec, or by contracts that call to any standard cw20 contract.
The specification is split into multiple sections, a contract may only implement some of this functionality, but must implement the base.
Base
This handles balances and transfers. Note that all amounts are handled as Uint128
(128 bit integers with JSON string
representation). Handling decimals is left to the UI and not interpreted
Messages
Transfer{recipient, amount}
- Moves amount
tokens from the info.sender
account to the recipient
account. This is
designed to send to an address controlled by a private key and does not trigger any actions on the recipient if it is
a contract.
Attributes emitted:
Key | Value |
---|---|
"action" | "transfer" |
"from" | sender |
"to" | recipient |
"amount" | amount |
Send{contract, amount, msg}
- Moves amount
tokens from the info.sender
account to the contract
account.
contract
must be an address of a contract that implements the Receiver
interface. The msg
will be passed to the
recipient contract, along with the amount.
Attributes emitted:
Key | Value |
---|---|
"action" | "send" |
"from" | sender |
"to" | recipient |
"amount" | amount |
Burn{amount}
- Remove amount
tokens from the balance of info.sender
and reduce total_supply
by the same amount.
Attributes emitted:
Key | Value |
---|---|
"action" | "burn" |
"from" | sender |
"amount" | amount |
Queries
Balance{address}
- Returns the balance of the given address. Returns "0" if the address is unknown to the contract.
Return type is BalanceResponse{balance}
.
TokenInfo{}
- Returns the token info of the contract. Return type is
TokenInfoResponse{name, symbol, decimal, total_supply}
.
Receiver
The counter-part to Send
is Receive
, which must be implemented by any contract that wishes to manage CW20 tokens.
This is generally not implemented by any CW20 contract.
Receive{sender, amount, msg}
- This is designed to handle Send
messages. The address of the contract is stored in
info.sender
so it cannot be faked. The contract should ensure the sender matches the token contract it expects to
handle, and not allow arbitrary addresses.
The sender
is the original account requesting to move the tokens and msg
is a Binary
data that can be decoded into
a contract-specific message. This can be empty if we have only one default action, or it may be a ReceiveMsg
variant
to clarify the intention. For example, if I send to a uniswap contract, I can specify which token I want to swap against
using this field.
Allowances
A contract may allow actors to delegate some of their balance to other accounts. This is not as essential as with ERC20
as we use Send
/Receive
to send tokens to a contract, not Approve
/TransferFrom
. But it is still a nice use-case,
and you can see how the Cosmos SDK wants to add payment allowances to native tokens. This is mainly designed to provide
access to other public-key-based accounts.
There was an issue with race conditions in the original ERC20 approval spec. If you had an approval of 50 and I then want to reduce it to 20, I submit a Tx to set the allowance to 20. If you see that and immediately submit a tx using the entire 50, you then get access to the other 20. Not only did you quickly spend the 50 before I could reduce it, you get another 20 for free.
The solution discussed in the Ethereum community was an IncreaseAllowance
and DecreaseAllowance
operator (instead of
Approve
). To originally set an approval, use IncreaseAllowance
, which works fine with no previous allowance.
DecreaseAllowance
is meant to be robust, that is if you decrease by more than the current allowance (eg. the user
spent some in the middle), it will just round down to 0 and not make any underflow error.
Messages
IncreaseAllowance{spender, amount, expires}
- Set or increase the allowance such that spender
may access up to
amount + current_allowance
tokens from the info.sender
account. This may optionally come with an Expiration
time,
which if set limits when the approval can be used (by time or height).
Attributes emitted:
Key | Value |
---|---|
"action" | "increase_allowance" |
"owner" | sender |
"spender" | spender |
"amount" | amount |
DecreaseAllowance{spender, amount, expires}
- Decrease or clear the allowance such that spender
may access up to
current_allowance - amount
tokens from the info.sender
account. This may optionally come with an Expiration
time,
which if set limits when the approval can be used (by time or height). If amount >= current_allowance
, this will clear
the allowance (delete it).
Attributes emitted:
Key | Value |
---|---|
"action" | "decrease_allowance" |
"owner" | sender |
"spender" | spender |
"amount" | amount |
TransferFrom{owner, recipient, amount}
- This makes use of an allowance and if there was a valid, un-expired
pre-approval for the info.sender
, then we move amount
tokens from owner
to recipient
and deduct it from the
available allowance.
Attributes emitted:
Key | Value |
---|---|
"action" | "transfer_from" |
"from" | account transferred from |
"to" | recipient |
"by" | message sender |
"amount" | amount |
SendFrom{owner, contract, amount, msg}
- SendFrom
is to Send
, what TransferFrom
is to Transfer
. This allows a
pre-approved account to not just transfer the tokens, but to send them to another contract to trigger a given action.
Note SendFrom
will set the Receive{sender}
to be the info.sender
(the account that triggered the transfer)
rather than the owner
account (the account the money is coming from). This is an open question whether we should
switch this?
Attributes emitted:
Key | Value |
---|---|
"action" | "send_from" |
"from" | account sent from |
"to" | recipient |
"by" | message sender |
"amount" | amount |
BurnFrom{owner, amount}
- This works like TransferFrom
, but burns the tokens instead of transfering them. This will
reduce the owner's balance, total_supply
and the caller's allowance.
Attributes emitted:
Key | Value |
---|---|
"action" | "burn_from" |
"from" | account burnt from |
"by" | message sender |
"amount" | amount |
Queries
Allowance{owner, spender}
- This returns the available allowance that spender
can access from the owner
's account,
along with the expiration info. Return type is AllowanceResponse{balance, expiration}
.
Mintable
This allows another contract to mint new tokens, possibly with a cap. There is only one minter specified here, if you want more complex access management, please use a multisig or other contract as the minter address and handle updating the ACL there.
Messages
Mint{recipient, amount}
- If the info.sender
is the allowed minter, this will create amount
new tokens (updating
total supply) and add them to the balance of recipient
, as long as it does not exceed the cap.
Attributes emitted:
Key | Value |
---|---|
"action" | "mint" |
"to" | recipient |
"amount" | amount |
UpdateMinter { new_minter: Option<String> }
- Callable only by the current minter. If new_minter
is Some(address)
the minter is set to the specified address, otherwise the minter is removed and no future minters may be set.
Attributes emitted:
Key | Value |
---|---|
"action" | "update_minter" |
"new_minter" | minter address or "None" if removed |
Queries
Minter{}
- Returns who and how much can be minted. Return type is MinterResponse {minter, cap}
. Cap may be unset.
If the cap is set, it defines the maximum total_supply
that may ever exist. If initial supply is 1000 and cap is
Some(2000)
, you can only mint 1000 more tokens. However, if someone then burns 500 tokens, the minter can mint those
500 again. This allows for dynamic token supply within a set of parameters, especially when the minter is a smart
contract.
Enumerable
This should be enabled with all blockchains that have iterator support. It allows us to get lists of results with pagination.
Queries
AllAllowances{owner, start_after, limit}
- Returns the list of all non-expired allowances by the given owner.
start_after
and limit
provide pagination.
AllAccounts{start_after, limit}
- Returns the list of all accounts that have been created on the contract (just the
addresses). start_after
and limit
provide pagination.
Marketing
This allows us to attach more metadata on the token to help with displaying the token in wallets. When you see a token's website, then see it in a wallet, you know what it is. However, if you see it in a wallet or a DEX trading pair, there is no clear way to find out any more info about it.
This extension allows us to attach more "Marketing" metadata, which has no effect on the on-chain functionality of the
token, but is very useful in providing a better client-side experience. Note, that we add a new role marketing
, which
can update such info, but not affect on-chain logic.
Messages
UploadLogo{url | embedded}
- If the info.sender
is the allowed marketing account, this will either set a new URL
reference where the logo is served, or allow them to upload a small (less than 5KB) SVG or PNG logo onto the blockchain
to be served.
Attributes emitted:
Key | Value |
---|---|
"action" | "upload_logo" |
UpdateMarketing{project, description, marketing}
- If the info.sender
is the allowed marketing account, this will
update some marketing-related metadata on the contract.
Attributes emitted:
Key | Value |
---|---|
"action" | "update_marketing" |
Queries
MarketingInfo{}
- Returns marketing-related metadata. Return type is
MarketingInfoResponse {project, description, logo, marketing}
.
DownloadLogo{}
- If the token's logo was previously uploaded to the blockchain (see UploadLogo
message), then it
returns the raw data to be displayed in a browser. Return type is DownloadLogoResponse{ mime_type, data }
.
Dependencies
~3.5–7MB
~144K SLoC