Access Control
Delegated Accounts
Access Control
Delegated Accounts
Delegated accounts start with no permissions and must be explicitly granted access. Permissions are granular, allowing vault owners to build precise guardrails by adding specific capabilities to each delegate. This approach enhances security by ensuring that delegates can only perform intended actions within the defined boundaries, reducing the risk of unauthorized operations and mistakes.
Permissions
The table belows lists the available permissions that can be granted to a delegated account.
| Permission Enum | Description |
|---|---|
| DriftInitialize | Initialize and add a Drift user |
| DriftUpdateUser | Update a drift user |
| DriftDeleteUser | Delete a drift user |
| DriftDeposit | Deposit assets to Drift |
| DriftWithdraw | Withdraw assets from Drift |
| DriftPlaceOrders | Place orders |
| DriftCancelOrders | Cancel orders |
| DriftPerpMarket | Trade on perp markets |
| DriftSpotMarket | Trade on spot markets |
| Stake | Stake to LSTs |
| Unstake | Unstake from LSTs |
| LiquidUnstake | Liquid unstake from LSTs |
| JupiterSwapAny | Swap any assets on Jupiter (high-risk) |
| JupiterSwapLst | Swap LSTs on Jupiter |
| JupiterSwapAllowlisted | Swap allowlisted assets on Jupiter (recommended) |
| WSolWrap | Wrap SOL to wSOL |
| WSolUnwrap | Unwrap wSOL to SOL |
| StakeJup | Stake JUP |
| UnstakeJup | Unstake JUP |
| VoteOnProposal | Vote on Jupiter DAO proposals |