Skip to main content

L2 Contract Setup

As we mentioned in the overview, the Uniswap L2 contract will receive funds from the user and then burn funds on L2 to withdraw. To do this it calls TokenBridge.exit_to_l1_public() which burns funds on the Uniswap contract. The bridge needs approval from the Uniswap contract to burn its funds.

In this step, we will set up the storage struct for our Uniswap contract and define the functions to approve and validate burn actions.

Our main contract will live inside uniswap/src/ In, paste this initial setup code:

mod interfaces;
mod util;

// Demonstrates how to use portal contracts to swap on L1 Uniswap with funds on L2
// Has two separate flows for private and public respectively
// Uses the token bridge contract, which tells which input token we need to talk to and handles the exit funds to L1
contract Uniswap {
use dep::aztec::prelude::{FunctionSelector, AztecAddress, EthAddress, Map, PublicMutable};
use dep::aztec::oracle::context::get_portal_address;
use dep::aztec::context::gas::GasOpts;

use dep::authwit::auth::{
IS_VALID_SELECTOR, assert_current_call_valid_authwit_public, compute_call_authwit_hash,

use crate::interfaces::{Token, TokenBridge};
use crate::util::{compute_swap_private_content_hash, compute_swap_public_content_hash};

struct Storage {
// like with account contracts, stores the approval message on a slot and tracks if they are active
approved_action: Map<Field, PublicMutable<bool>>,
// tracks the nonce used to create the approval message for burning funds
// gets incremented each time after use to prevent replay attacks
nonce_for_burn_approval: PublicMutable<Field>,
Source code: noir-projects/noir-contracts/contracts/uniswap_contract/src/

What’s happening here?

Because Uniswap has to approve the bridge to withdraw funds, it has to handle the approvals. So it stores a map of all the actions that are approved. The approval message is hashed to a field and stored in the contract’s storage in the approved_action map.

To ensure there are no collisions (i.e. when the contract wants to approve the bridge of the exact same amount, the message hash would be the same), we also keep a nonce that gets incremented each time after use in a message.

Building the approval flow

Next, paste this function:

// Since the token bridge burns funds on behalf of this contract, this contract has to tell the token contract if the signature is valid
// implementation is similar to how account contracts validate public approvals.
// if valid, it returns the IS_VALID selector which is expected by token contract
fn spend_public_authwit(inner_hash: Field) -> Field {
let message_hash = compute_outer_authwit_hash(
let value =;
if (value) {
context.push_new_nullifier(message_hash, 0);
} else {
Source code: noir-projects/noir-contracts/contracts/uniswap_contract/src/

In this function, the token contract calls the Uniswap contract to check if Uniswap has indeed done the approval. The token contract expects a spend_private_authwit() function to exit for private approvals and spend_public_authwit() for public approvals. If the action is indeed approved, it expects that the contract will emit a nullifier and return the function selector for IS_VALID()  in both cases. The library exposes this constant for ease of use.

This is similar to the Authwit flow.

However we don't have a function that actually creates the approved message and stores the action. This method should be responsible for creating the approval and then calling the token bridge to withdraw the funds to L1:

// This helper method approves the bridge to burn this contract's funds and exits the input asset to L1
// Assumes contract already has funds.
// Assume `token` relates to `token_bridge` (ie token_bridge.token == token)
// Note that private can't read public return values so created an internal public that handles everything
// this method is used for both private and public swaps.
fn _approve_bridge_and_exit_input_asset_to_L1(token: AztecAddress, token_bridge: AztecAddress, amount: Field) {
// approve bridge to burn this contract's funds (required when exiting on L1, as it burns funds on L2):
let nonce_for_burn_approval =;
let selector = FunctionSelector::from_signature("burn_public((Field),Field,Field)");
let message_hash = compute_call_authwit_hash(
[context.this_address().to_field(), amount, nonce_for_burn_approval]

// increment nonce_for_burn_approval so it won't be used again
storage.nonce_for_burn_approval.write(nonce_for_burn_approval + 1);

// Exit to L1 Uniswap Portal !
&mut context,
Source code: noir-projects/noir-contracts/contracts/uniswap_contract/src/

Notice how the nonce also gets incremented.

In the next step we’ll go through a public swapping flow.