There should be an assertion to check that the bridge signer is the caller.
Additional context
I'm not sure whether the bridge signer should be a separate address besides the origin account used in deploying the module. What do you think @0xmovses @0xPrimata ?
Describe the bug
refund_bridge_transfer
has no access control.Expected behavior
Additional context