ACLManager

The Access Control List Manager (ACLManager) is the main registry of system roles and permissions.

The Aave Protocol implements an access control list to segregate powers and/or benefits that can be allocated to different entities on the protocol. The ACL_MANAGER contract is managed by the PoolAddressesProvider contract.

ACLManager keeps track of the individual roles and its holders, and allows a Role Admin to manage roles. Role Admin is itself a role that is managed by the DEFAULT_ADMIN_ROLE.

The DEFAULT_ADMIN_ROLE is held by the ACL_ADMIN, and should be initialized in the PoolAddressesProvider beforehand.

The source code is available on GitHub.

Below we outline the responsibilities/powers of the roles and the specific methods that are only accessible to the holders of these roles.

The FLASH_BORROWER and BRIDGE roles have few direct responsibilities and can primarily access specific features of the protocol, while ADMIN roles have the power and responsibility to handle risk or configuration parameters.

Holders of this role will have the premium on flash loans waived (this does not include the simple flash loan).

Pool:

Holders can leverage the Portals feature.

Pool:

Holders of this role can:

AaveOracle:

PoolConfigurator:

Holders of this role can:

PoolConfigurator:

PriceOracleSentinel:

Holders of this role manage the role admins in the ACLManager. The DEFAULT_ADMIN_ROLE is held by the ACL_ADMIN, and should be initialized in the PoolAddressesProvider beforehand.

ACLManager:

Holders of this role can pause and unpause the pool or an individual reserve.

PoolConfigurator:

Holders of this role can update token implementations, drop, (un)pause and (de)activate reserves, update premiums along with everything the ASSET_LISTING_ADMIN and RISK_ADMIN can do.

All deployers have resigned their POOL_ADMIN roles. All instances of the POOL_ADMIN role, across all V3 networks, are now governed by the [Guardians multisig] or by the Governance Bridge executors.

All methods accessible to ASSET_LISTING_ADMIN.

All methods accessible to RISK_ADMIN.

AToken:

Pool:

IncentivizedERC20:

PoolConfigurator:

PriceOracleSentinel:

function setRoleAdmin(bytes32 role, bytes32 adminRole) external override onlyRole(DEFAULT_ADMIN_ROLE)

Sets the role as admin of a specific role. By default, the adminRole for all roles is DEFAULT_ADMIN_ROLE.

function addPoolAdmin(address admin) external override

Adds a new admin as Pool Admin. The address is added to the list of members with the POOL_ADMIN role. Holders of this role can update token implementations, drop, (un)pause and (de)activate reserves, update premiums and do everything the ASSET_LISTING_ADMIN and RISK_ADMIN can do.

function removePoolAdmin(address admin) external override

Removes an admin as Pool Admin. The given address is removed from the list of members with the POOL_ADMIN role.

function addEmergencyAdmin(address admin) external override

Adds a new admin as an Emergency Admin. The address is added to the list of members with the EMERGENCY_ADMIN role. Holders of this role can pause and unpause the pool or an individual reserve.

function removeEmergencyAdmin(address admin) external override

Removes an admin as Emergency Admin. The given address is removed from the list of members with the EMERGENCY_ADMIN role.

function addRiskAdmin(address admin) external override

Adds a new admin as a Risk Admin. The address is added to the list of members with the RISK_ADMIN role. Holders of this role can update grace period of Oracle Sentinels, reserve params, unbacked mint cap, liquidation fee and eMode categories.

function removeRiskAdmin(address admin) external override

Removes an admin as Risk Admin. The given address is removed from the list of members with the RISK_ADMIN role.

function addFlashBorrower(address borrower) external override

Adds a new borrower address as Flash Borrower. The address is added to the list of members with the FLASH_BORROWER role. Holders of this role do not pay premium for flash loan (does not apply to flashLoanSimple).

function removeFlashBorrower(address borrower) external override

Removes an admin as Flash Borrower. The given borrower address is removed from the list of members with the FLASH_BORROWER role.

function addBridge(address bridge) external override

Adds a new address as BRIDGE. The contract address is added to the list of bridges. Holders of this role can leverage the Portals feature to seamlessly move supplied assets across Aave V3 markets on different networks.

function removeBridge(address bridge) external override

Removes an address as BRIDGE. The given contract address is removed from the list of bridges.

function addAssetListingAdmin(address admin) external override

Adds a new admin as Asset Listing Admin. The address is added to the list of members with the ASSET_LISTING_ADMIN role. Holder of this role can update oracles and add new assets to the Aave market.

function removeAssetListingAdmin(address admin) external override

Removes an admin as Asset Listing Admin. The given address is removed from the list of members with the ASSET_LISTING_ADMIN role.

function isPoolAdmin(address admin) external view override returns (bool)

Returns true if the address has the POOL_ADMIN role, false otherwise.

function isEmergencyAdmin(address admin) external view override returns (bool)

Returns true if the address has the EMERGENCY_ADMIN role, false otherwise.

function isRiskAdmin(address admin) external view override returns (bool)

Returns true if the address has the RISK_ADMIN role, false otherwise.

function isFlashBorrower(address borrower) external view override returns (bool)

Returns true if the address has the FLASH_BORROWER role, false otherwise.

function isBridge(address bridge) external view override returns (bool)

Returns true if the address has BRIDGE role, false otherwise.

function isAssetListingAdmin(address admin) external view override returns (bool)

Returns true if the address has the ASSET_LISTING_ADMIN role, false otherwise.