Permissions

The Roles Modifier is a fundamental component of our framework to enforce permissions policies. By utilizing the Roles Modifier, asset managers can execute transactions as defined by their assigned roles, ensuring compliance with permissions policies.

What are permissions?

Each permissions policy includes a set of allowlisted contract addresses, functions and constraints. During transaction execution, the contract validates all inputs, ensuring that the transaction proceeds only if all conditions stipulated by the relevant permissions policy are met.

How we do it

Defining permissions requires an intricate and intimate understanding of the underlying protocols, contract architecture, and security implications. That is why we developed the DeFi Kit, a toolkit that aids in this endeavour by streamlining the creation of custom permissions. These permissions have been crafted to ensure the owner's custody of the assets cannot be jeopardised, even by a malicious asset manager, while maximising the scope of actions allowed within these custody constraints.

Permissions Policy Manager UI

Through the Permissions Policy Manager UI built jointly with the Guild team, asset owners can construct and deploy their own permissions policies, while asset managers can propose new policies for owner approval and deployment. This collaborative approach ensures that permissions are tailored to meet the specific requirements and security needs of each asset management scenario, while maintaining a secure and efficient operational environment.