Trickkkkkkk/Bancor-Fiat-On-Ramp

Submission for Bancor's "Fiat On-Ramp For Liquidity Pools" Hackathon Challenge

Bancor Fiat On Ramp

• Live site (uses real funds on the mainnet)
• Video demo

This tool enables an easy Fiat on/off ramp for entering/exiting Bancor liquidity pools. Features:

• The user does not need to have a wallet setup
• Gas Station Network (GSN) support so the user does not need Ether for gas
• Supports deposits from users in 43 US states and nearly 30 countries. (Details about supported regions can be found here and here)

Workflow

This section will describe the workflow from a user's perspective. Italics are used to indicate architecture details, current limitations, and suggested improvements.

Initial Setup

This process occurs the first time a user uses this website:

1. Connect wallet
   1. If a user has a wallet, they should click "Connect Wallet to Get Started". This supports MetaMask, WalletConnect, Fortmatic, Torus, and more.
   2. If a user does not have a wallet, they should click "Connect Account". This will enable them to login with a Google, Facebook, Reddit, Discord, or Twitch account via Torus
2. Prompt user to finish setting up their account, where they will be asked for their signature and a proxy contract will then be deployed for them.
   1. After the user logs in, we check Factory.getContract(userAddress) to see if the user has an existing proxy contract.
   2. Since this is their first visit, they won't, so we call Factory.createContract(target) where target is the address of a deployed and initialized version of ProvideLiquidity.sol. This deploys a minimal proxy for the user that delegates all calls to the deployed and initialized version of ProvideLiquidity.sol.
   3. This call to createContract(target) is done by the user via a provider configured using OpenZeppelin's GSN Provider. This is what enables GSN support
   4. Potential upgrade: Use CREATE2 to generate a deterministic proxy address and provide a better UX

Enter Liquidity Pool

This process occurs whenever a user wants to enter into a liquidity pool:

1. Connect wallet
2. Enter deposit amount and click Deposit
3. User will be redirected to Wyre's hosted widget
   1. Wyre documentation can be found here and here
   2. This supports international and US domestic deposits via debit card and Apple Pay, with the proper widget flow automatically detected based on your IP address. However, Wyre currently does not support ACH for countries outside the US, so withdrawing back to fiat will only be supported for the US as of now. Wyre's push-to-debit feature may add international withdrawal support soon.
   3. Apple Pay requires the user be on a supported device with Safari
   4. Wyre widget will be auto-populated with (1) ETH as the currency to purchase, (2) the user's proxy contract address as the recipient address, (3) their selected deposit amount, and (4) a redirect URL which simply redirects them back to this website with a query parameter to indicate we are waiting for their purchase to complete
4. User completes purchase in the Wyre widget and is redirected back to the website
   1. Suggested improvement: Use Wyre's failureRedirectUrl to handle failed payments
5. Frontend watches for Ether to be received by their proxy contract
   1. Wyre does not provide us with a transaction hash on redirect, likely because this is a multi-step process (involving KYC checks, risk checks, and sending the transaction). Instead, we just check the proxy contract each block until it has a non-zero ETH balance.
6. Upon receipt, frontend prompts user to click "Enter Pool" to complete their deposit into the liquidity pool
   1. The selected liquidity pool is currently not used, and the ETH-BNT pool is used by default. We also assume the user wants all ETH held by the proxy contract to be deposited, since that is the only use of it
7. User signs the transaction which is relayed via the GSN
   1. Relaying is done using the same GSN provider mentioned above
   2. The specific function the user calls is Factory.enterPool(). Why do we call this on the factory contract instead of their proxy? The reason is because the GSN requires to you to fund the RelayHub for each contract you want to pay gas for. Those funds are then used to pay gas. It would be inefficient and inconvenient to fund RelayHub for another contract every time a new proxy contract is deployed. Instead, we enable users to interact with their proxy through the Factory contract, and the factory contract will look up the caller's proxy address. It's worth nothing that if a user does have ETH for gas, they can choose to interact with their proxy directly
   3. Fix: Fix the enterPool function in ProvideLiquidity.sol to maximize the amount of ETH and BNT are exchanged for ETHBNT pool tokens.
8. Once the transaction is complete, the user has successfully entered the liquidity pool and pool tokens are held by their proxy contract.
   1. Pool tokens are not sent back to the user because then there would be no way for a user to exit the liquidity pool unless they had ETH for gas. Only Dai and Chai enable approval by signature via their permit() function, but all other ERC20s require the user to have ETH to directly call the approve() function themselves

Leaving Liquidity Pool

1. If user has pool tokens that can be redeemed, a component will be shown to exit the pool and redeem the pool tokens for the underlying tokens
   1. This is done by calling Factory.exitPool(amount), where amount is the number of pool tokens to redeem. Again, we make this call using the GSN provider
2. Once transaction is complete, the underlying tokens are held by the proxy contract.
   1. *The withdrawTokens(tokenAddress) and withdrawEther() functions of the proxy contract can be used to withdraw funds held by the proxy contract to an arbitrary address

NOTE: The most recent versions of ProvideLiquidity.sol ProvideLiquidityFactory.sol in this repository are not the same versions as the ones deployed on the mainnet. The differences are as follows:

• ProvideLiquidityFactory.sol: The one on the mainnet is missing the withdrawTokens() and withdrawEther() functions. This means that for the currently deployed version, the only way to withdraw Ether and tokens from the proxy contract is to have Ether and call it directly.
• ProvideLiquidity.sol: The one on the mainnet is missing the _recipient inputs in the withdrawTokens() and withdrawEther() functions. This means that for the currently deployed version, the only way to withdraw to a bank account is to transfer tokens to your wallet and manually withdraw them via an exchange.

Development Setup

Create a file at the project root called .env with the following contents:

export INFURA_ID=yourInfuraId
export DAI_ADDRESS=0x6262998Ced04146fA42253a5C0AF90CA02dfd2A3
export BNT_ADDRESS=0xF977814e90dA44bFA03b6295A0616a897441aceC
export MNEMONIC="your mnemonic"

Here, DAI_ADDRESS is simply an account with a lot of Dai used to acquire Dai, and BNT_ADDRESS is the same but for BNT. These addresses are used for testing.

Next, create app/.env with the following contents:

export BLOCKNATIVE_API_KEY=yourBlocknativeApiKey
export INFURA_ID=yourInfuraId
export PORTIS_API_KEY=yourPortisApiKey
export FORTMATIC_API_KEY=yourFortmaticApiKey
export SQUARELINK_API_KEY=yourSquarelinkApiKey
export WYRE_ENV=dev
export WYRE_ACCOUNT_ID=yourWyreAccountId

Here, WYRE_ACCOUNT_ID associates accounts created inside the widget with you, though it does not give you access to the account details. WYRE_ENV is used to determine whether to load the development or production version of the Wyre widget. BLOCKNATIVE_API_KEY is used to connect wallets, and the remaining API keys are needed to enable connection to that wallet type.

Now install dependencies with:

yarn install
cd app
yarn install

Run App

cd app
yarn run dev

Run Tests

From the project root run"

# Start ganache-cli
yarn run ganache

# Then in a new terminal window run
yarn run test

Deployment

1. Compile the contracts with npx oz compile
2. Make sure your MNEMONIC is set in .env and if necessary configure the derivation path used in truffle-config.js.
3. Run source .env
4. Run npx oz accounts to confirm the right address would be used for deployment
5. Run npx oz deploy and follow the prompts to deploy ProvideLiquidity.sol
6. Run npx oz send-tx to call the initializeContract(address _user) function and pass in the deployer's address as the _user. Since this is just a logic template, it doesn't matter much who the user is
7. View the contract on Etherscan and confirm that it was successfully initialized by checking the value of the user variable. You can do this in the Read as Proxy tab. If it was not initialized, make sure to do so manually.
8. Run npx oz deploy and follow the prompts to deploy ProvideLiquidityFactory.sol.
9. Now that the contract is deployed, we must fund it with Ether to pay for user's transaction costs. We can do this by visiting https://gsn.openzeppelin.com/, selecting the Dapp Tool option from the menu bar, entering the address of the ProvideLiquidityFactory contract, the adding Ether.

Done! There will now be a file called .openzeppelin/<network>.json which contains deployment info for the contracts. Be sure not to delete that file. This file should be committed to the repository.

For ProvideLiquidity.sol, the initializeContract() function is used in place of the constructor in order to call it when deployed as a proxy. Because the proxies simply delegatecall to the logic address, as opposed to a traditional deployment, the constructor would not be called.

More information on deploying and upgrading contracts with the OpenZeppelin CLI can be found at:

• OpenZeppelin Documentation
• Command Line Interface (CLI)
• Guide: Full start-to-finish OpenZeppelin workflow for CLI deployment and upgrades

Off-Ramp Setup

For users to off-ramp into their bank accounts, they will need to link to Wyre. This will require Bancor to complete their partnership onboarding which starts by completing this form.

Afterwards, the documentation for integrating the ACH widget starts here. Once a bank account is linked, a liquidation address can be generated for that payment method using this API endpoint. So the withdrawal process for a user would be as follows:

1. User completes KYC/AML onboarding process with Wyre to link bank account
2. Bancor uses the linked endpoint to generate a liquidation address for that bank account
3. Populate the address field of the "Exit the Pool" box with this liquidation address
4. When "Exit Pool" is clicked, the pool token will be swapped for the underlying tokens, which all then be swapped for ETH. This ETH will then be transferred to the user's liquidation address, where Wyre will automatically convert it to fiat and send it to their bank account.

An alternative approach is to use Wyre's Instant Payouts to Debit Card, which is not yet publicly available.