Solana Policies

Solana policy examples for controlling transaction signing, sending, and message signing.

User Authentication
API Key Authentication

Operations: signEndUserSolTransaction, sendEndUserSolTransaction, signEndUserSolMessage

Address allowlist

{
  "scope": "project",
  "description": "Allow end-user SOL transfers only to trusted addresses",
  "rules": [
    {
      "action": "accept",
      "operation": "signEndUserSolTransaction",
      "criteria": [
        {
          "type": "solAddress",
          "addresses": ["9WzDXwBbmkg8ZTbNMqUxvQRAyrZzDsGYdLVL9zYtAWWM", "HpabPRRCFbBKSuJr5PdkVvQc85FyxyTWkFM2obBRSvHT"],
          "operator": "in"
        }
      ]
    }
  ]
}

SOL value limit

{
  "scope": "project",
  "description": "Limit end-user SOL transfers to 2 SOL",
  "rules": [
    {
      "action": "accept",
      "operation": "signEndUserSolTransaction",
      "criteria": [
        { "type": "solValue", "solValue": "2000000000", "operator": "<=" }
      ]
    }
  ]
}

SPL token mint restriction

{
  "scope": "project",
  "description": "Allow only USDC and USDT transfers",
  "rules": [
    {
      "action": "accept",
      "operation": "signEndUserSolTransaction",
      "criteria": [
        {
          "type": "mintAddress",
          "addresses": ["EPjFWdd5AufqSSqeM2qN1xzybapC8G4wEGGkZwyTDt1v", "Es9vMFrzaCERmJfrF4H2FYD4KCoNkY11McCe8BenwNYB"],
          "operator": "in"
        }
      ]
    }
  ]
}

Network restriction

{
  "scope": "project",
  "description": "Restrict end-user Solana sends to mainnet only",
  "rules": [
    {
      "action": "accept",
      "operation": "sendEndUserSolTransaction",
      "criteria": [
        { "type": "solNetwork", "networks": ["solana"], "operator": "in" }
      ]
    }
  ]
}

Program allowlist

{
  "scope": "project",
  "description": "Allow interactions with System and Token programs only",
  "rules": [
    {
      "action": "accept",
      "operation": "signEndUserSolTransaction",
      "criteria": [
        {
          "type": "programId",
          "programIds": ["11111111111111111111111111111111", "TokenkegQfeZyiNwAJbNbGKPFXCWuBvf9Ss623VQ5DA"],
          "operator": "in"
        }
      ]
    }
  ]
}

Message signing restriction

{
  "scope": "project",
  "description": "Only allow signing messages with app prefix",
  "rules": [
    {
      "action": "accept",
      "operation": "signEndUserSolMessage",
      "criteria": [{ "type": "solMessage", "match": "^MyApp:.*" }]
    }
  ]
}

Operations: signSolTransaction, sendSolTransaction, signSolMessage

Address allowlist

{
  "description": "Allow SOL transfers only to safe addresses",
  "scope": "account",
  "rules": [
    {
      "action": "accept",
      "operation": "signSolTransaction",
      "criteria": [
        {
          "type": "solAddress",
          "addresses": ["11111111111111111111111111111112", "9WzDXwBbmkg8ZTbNMqUxvQRAyrZzDsGYdLVL9zYtAWWM"],
          "operator": "in"
        }
      ]
    }
  ]
}

SOL value limit

{
  "description": "Block SOL transfers exceeding 1 SOL",
  "scope": "project",
  "rules": [
    {
      "action": "accept",
      "operation": "signSolTransaction",
      "criteria": [
        { "type": "solValue", "solValue": "1000000000", "operator": "<=" }
      ]
    }
  ]
}

SPL token mint restriction

{
  "description": "Allow only USDC transfers",
  "scope": "project",
  "rules": [
    {
      "action": "accept",
      "operation": "signSolTransaction",
      "criteria": [
        {
          "type": "mintAddress",
          "addresses": ["EPjFWdd5AufqSSqeM2qN1xzybapC8G4wEGGkZwyTDt1v"],
          "operator": "in"
        }
      ]
    }
  ]
}

Network restriction

{
  "description": "Restrict sends to mainnet only",
  "scope": "project",
  "rules": [
    {
      "action": "accept",
      "operation": "sendSolTransaction",
      "criteria": [
        { "type": "solNetwork", "networks": ["solana"], "operator": "in" }
      ]
    }
  ]
}

Message signing restriction

{
  "description": "Only allow signing messages with app prefix",
  "scope": "project",
  "rules": [
    {
      "action": "accept",
      "operation": "signSolMessage",
      "criteria": [{ "type": "solMessage", "match": "^MyApp:.*" }]
    }
  ]
}

Token decimals reference

SOL: 9 decimals (1 SOL = 1,000,000,000 lamports)
USDC: 6 decimals (1 USDC = 1,000,000 base units)
USDT: 6 decimals (1 USDT = 1,000,000 base units)

Common addresses

Token	Mint address
USDC	`EPjFWdd5AufqSSqeM2qN1xzybapC8G4wEGGkZwyTDt1v`
USDT	`Es9vMFrzaCERmJfrF4H2FYD4KCoNkY11McCe8BenwNYB`
Wrapped SOL	`So11111111111111111111111111111111111111112`
System Program	`11111111111111111111111111111111`
Token Program	`TokenkegQfeZyiNwAJbNbGKPFXCWuBvf9Ss623VQ5DA`

GET STARTED

PAYMENTS

TRADING

WALLETS

ONCHAIN TOOLS

WEBHOOKS

CONSUMER APIS

BUSINESS APIS

INSTITUTIONAL APIS

Address allowlist

SOL value limit

SPL token mint restriction

Network restriction

Program allowlist

Message signing restriction

Address allowlist

SOL value limit

SPL token mint restriction

Network restriction

Message signing restriction

Token decimals reference

Common addresses

GET STARTED

PAYMENTS

TRADING

WALLETS

ONCHAIN TOOLS

WEBHOOKS

CONSUMER APIS

BUSINESS APIS

INSTITUTIONAL APIS

​Address allowlist

​SOL value limit

​SPL token mint restriction

​Network restriction

​Program allowlist

​Message signing restriction

​Address allowlist

​SOL value limit

​SPL token mint restriction

​Network restriction

​Message signing restriction

​Token decimals reference

​Common addresses

Address allowlist

SOL value limit

SPL token mint restriction

Network restriction

Program allowlist

Message signing restriction

Address allowlist

SOL value limit

SPL token mint restriction

Network restriction

Message signing restriction

Token decimals reference

Common addresses