- What is Civic Pass?
- Can the Civic transfer hook be used without Civic Pass?
- What is a transfer hook?
- How can I create my own permissioned token?
- Advanced: Using Permissioned Tokens in DeFi
- Build and Run the Transfer Hook Demo
- Troubleshooting
The Civic Pass Transfer Hook is a Solana Token Extension that enables token issuers to enforce constraints on token holders through Civic Pass.
Example constraints include:
- Accredited Investor checks
- Proof of age
- Proof of residency
- Proof of personhood
This repository contains:
- The transfer hook program
- A demo web app
- A client library
Civic Pass is a tokenized identity verification system that enables users to prove aspects of their identity to smart contracts (programs) and off-chain entities. It is built on the open-source Gateway Protocol.
The Civic transfer hook is built purely on the Gateway Protocol. and can be used without any third-party services.
In this document, we refer to "Pass" as a token issued via the Gateway Protocol, and "Civic Pass" as the specific implementation of the Gateway Protocol by Civic, incorporating services, APIs and UI components designed to simplify the integration of identity verification into applications.
Transfer Hooks are a feature of Solana Token Extensions that allow token issuers to enforce constraints on token holders. When a token transfer is attempted, the transfer hook program is called to check if the transfer is allowed.
The Civic Transfer Hook is a transfer hook program that checks if the recipient of a token transfer has a valid pass.
To create a permissioned token:
# Install the Solana CLI tools (restart your shell after this)
sh -c "$(curl -sSfL https://release.solana.com/v1.18.4/install)"
# Install the SPL Token CLI
cargo install spl-token-cli
# Create a new token, providing the Civic transfer hook program ID
spl-token --program-id TokenzQdBNbLqP5VEhdkAS6EPFLC1PHnBqCXEpPxuEb \
create-token --transfer-hook cto22FHACEgis1zXbY4QJo5Rj6soAQguh1686nZJfNYFor more details, see the Solana documentation.
The Pass Type (AKA Gatekeeper Network) represents the type of identity verification that the token issuer wants to enforce. Only the mint authority can set the pass type.
cargo run set <MINT> <PASS_TYPE>where
MINTis the token mint address from step 1, andPASS_TYPEis the pass type key
Tip
If you are using Civic Pass, you can obtain the pass type through Civic. For more details on Civic Pass, see the Civic documentation.
If you are using the Gateway Protocol directly without Civic, enter your Gatekeeper Network here as the pass type
If using Civic Pass, the token recipient can obtain a pass through civic.me, or or you can issue the pass through the Civic API.
If not using Civic pass, but using the Gateway Protocol directly, you can use the gateway CLI to issue the pass.
# Install the CLI
yarn global add @identity.com/solana-gatekeeper-cli # alternatively, use npm install -g or bun install --global
# Issue a pass
gateway issue <RECIPIENT> -n <PASS_TYPE>Due to a constraint in the current Token Extension program, for a pass to be visible to the transfer hook, it must be issued to the recipient's token account.
Therefore, once recipients are in possession of a general pass, they are ready to be issued a token pass, which is a dedicated pass that enables them for that specific token.
If using Civic Pass, contact civic.com for more details on how to issue a token pass.
If not using Civic Pass, but using the Gateway Protocol directly, you can again use the CLI:
# Identify the recipient's associated token address using the SPL Token CLI
spl-token address --token <MINT> --owner <RECIPIENT> --verbose
# Issue a token pass to that address
gateway issue <ASSOCIATED_TOKEN_ADDRESS> -n <PASS_TYPE>Tip
The token pass and base pass can use the same pass type. If using a different pass type, ensure that the token pass is issued to the pass type registered against the token mint in step 2.
The recipient is now enabled to receive your new token. You can use the SPL Token CLI to mint and transfer tokens.
# Mint some tokens
spl-token mint <MINT> <AMOUNT>
# Transfer tokens to the recipient
spl-token transfer <MINT> <AMOUNT> <RECIPIENT>Permissioned tokens can be used in DeFi applications, such as AMMs and lending protocols, to ensure that only users who have passed certain identity checks can participate.
An example is a Real World Asset (RWA) market, where only accredited investors can participate.
As with standard transfers, all users of the DeFi platform must have a pass for the token they are interacting with.
If using Civic, this can be made simpler by using the Civic UI integration.
If not using Civic, but using the Gateway Protocol directly, we recommend you use the Solana Gateway TS library in your backend to issue passes to users.
A benefit of the transfer hook protocol is that it is transparent to the DeFi protocol. This hook can be used with existing DeFi protocols (that support Solana Token Extensions) without modification of the protocol itself.
However, in order to enable transfers into a given market, pool or order-book, the token account PDA must have a pass for the token, so that the transfer hook permits the transfer.
Openbook is an open-source order-book DEX for Solana. To enable a permissioned token for Openbook:
- Create a market for the permissioned token and a quote currency (e.g. USDC)
- Obtain the Market Vault address for the permissioned token
- Issue a token pass to the Market Vault address (see above)
Orca is a Solana Automated Market Maker (AMM). To enable a permissioned token for Orca:
- Create a liquidity pool for the permissioned token and a quote currency (e.g. USDC)
- Determine the Token Vault for the permissioned token
- Issue a token pass to the Token Vault address (see above)
The next steps will lead you through setting up the demo UI and running it against a local Solana test validator.
- Solana v1.18+
- Rust v1.73+
- Node v18 & yarn v1.22+
- Anchor CLI v0.28.0+
To install Solana:
sh -c "$(curl -sSfL https://release.solana.com/v1.18.2/install)"To install Anchor:
cargo install --git https://github.com/coral-xyz/anchor avm --locked --force
avm install latest
avm use latestyarn
yarn build:program
yarn start-local-validatorIn another shell:
yarn setup-local
yarn start-demoGo to http://localhost:3000
- Connect a wallet
- Get a pass on devnet
- Click airdrop to receive a token (see the explorer link to show the transaction including the transfer hook CPI)
- Switch your wallet to a localhost RPC (Backpack supports this). Note for simplicity you can do this after step 2 if needed.
- Copy some random wallet address (generate a new one with
solana-keygen new --no-outfile --no-bip39-passphrase) - Paste the address into the transfer input and click "Transfer" - should receive an alert saying the user has no pass
- Run the following command to get a valid recipient address:
solana address -k .permissioned-token/valid-recipient.json - Paste the above address into the transfer input and click "Transfer" - open the explorer to show that the recipient's pass was checked.
Note: Pasting your own address in step 8 will not work, as self-transfers are short-circuited in the program and do not go through the transfer hook.
platform-tools` 1.16: `cargo build-sbf` error: failed to run custom build command for `blake3 v1.4.0
Do this: https://solana.stackexchange.com/a/6989
brew install gcc@12
sudo echo 'export CPATH="/Library/Developer/CommandLineTools/SDKs/MacOSX.sdk/usr/include"' >> ~/.zshrcthen open a new shell
[PageNotFoundError]: Cannot find module for page: /_document
Do this:
rm -r packages/demo/node_modules/.next/
and then rerun yarn build