Skip to main content

Roles and Permissions

The protocol uses capability-based access control (RBAC), enforced through CapabilityFacet and LibCapability.

  • Super admin launches currencies, sets core risk/limit parameters, manages critical protocol configuration, and appoints global admins.

  • Global admin holds permissions across all circles, covering operational parameters such as spread, merchant fee percentages, and merchant/payment-channel actions.

  • Circle admin grants and revokes circle-scoped capabilities within its own circle (super admins may also do so), gating actions such as settling disputes for orders in that circle.

  • Merchants and users drive the order lifecycle, staking and registration flows, and dispute initiation according to contract rules.