Live on Devnet·View Program →

Permissions that live
on the chain.

Trustless, CPI-callable Role-Based Access Control for Solana. Replace database tables and JWT middleware with on-chain accounts any program can verify.

GitHub
Features

Built for Solana programs.

The full RBAC model as on-chain accounts — composable, verifiable, and unstoppable.

CPI-Callable

Any Solana program can call check_permission via CPI to gate its instructions. One shared IAM layer across your entire protocol.

Fine-Grained Permissions

Create atomic primitives like transfer,mint, or admin:config and compose them into roles.

Immutable Audit Trail

Every grant, revoke, and configuration change is a signed transaction on the ledger. No silent modifications.

Integration

Three steps to get started.

1

Initialize

Deploy a root authority PDA to establish your organization's access hierarchy on-chain.

2

Configure

Create roles and permissions as individual PDAs, then bind permissions to roles.

3

Enforce

Assign roles to wallets and verify access via CPI from any program.

Ready to guard your program?

Connect your wallet to deploy a root authority and start managing permissions on Solana devnet.