1. Onchain Integration

Smart Contracts

Select client contract

Choose between BasicPredicateClient or the default PredicateClient based on your policy needs

Inherit and implement

Your contract will inherit the selected client contract and implement the protected functions

Deploy your contract

Include the PredicateRegistry address and PolicyID in your deployment

Mental model

Predicated functions on your contract require an Attestation, produced by the Predicate API.
The contract, via PredicateClient or BasicPredicateClient, verifies the attestation onchain before executing business logic.
If the attestation is valid and unexpired, execution proceeds; otherwise the transaction reverts.

Both PredicateClient and BasicPredicateClient contracts leverage ERC-7201 namespaced storage for upgrade safety and are audited.

Installation

npm i @predicate/contracts

Examples

BasicPredicateClient
PredicateClient

Recommended for simpler who-based policies. Some examples include AML/KYC, allowlist/denylist, and geo-restrictions.

Vault Example

// SPDX-License-Identifier: BUSL-1.1
pragma solidity 0.8.28;

import {Ownable} from "@openzeppelin/contracts/access/Ownable.sol";
import {BasicPredicateClient} from "@predicate/contracts/src/mixins/BasicPredicateClient.sol";
import {Attestation} from "@predicate/contracts/src/interfaces/IPredicateRegistry.sol";

contract Vault is BasicPredicateClient, Ownable {
    mapping(address => uint256) public balances;

    event Deposit(address indexed user, uint256 amount);

    constructor(
        address _owner,
        address _registry,
        string memory _policyID
    ) Ownable(_owner) {
        _initPredicateClient(_registry, _policyID);
    }

    function deposit(
        Attestation calldata _attestation
    ) external payable {
        // Basic authorization
        require(_authorizeTransaction(_attestation, msg.sender), "Unauthorized");

        balances[msg.sender] += msg.value;
        emit Deposit(msg.sender, msg.value);
    }

    // Admin functions
    function setPolicyID(string memory _policyID) external onlyOwner {
        _setPolicyID(_policyID);
    }

    function setRegistry(address _registry) external onlyOwner {
        _setRegistry(_registry);
    }
}

Recommended if your team intends to set policies which validate specifc function calls, parameters, or have value-based limits.

Vault Example

// SPDX-License-Identifier: BUSL-1.1
pragma solidity 0.8.28;

import {Ownable} from "@openzeppelin/contracts/access/Ownable.sol";
import {PredicateClient} from "@predicate/contracts/src/mixins/PredicateClient.sol";
import {Attestation} from "@predicate/contracts/src/interfaces/IPredicateRegistry.sol";

contract Vault is PredicateClient, Ownable {
    mapping(address => uint256) public balances;

    event Deposit(address indexed user, uint256 amount);

    constructor(
        address _owner,
        address _registry,
        string memory _policyID
    ) Ownable(_owner) {
        _initPredicateClient(_registry, _policyID);
    }

    function deposit(
        uint256 _amount,
        Attestation calldata _attestation
    ) external payable {
        // Encode the internal function being protected
        bytes memory encodedSigAndArgs = abi.encodeWithSignature(
            "_deposit(uint256)", 
            _amount
        );
        
        require(
            _authorizeTransaction(_attestation, encodedSigAndArgs, msg.sender, msg.value),
            "Vault: unauthorized transaction"
        );
        
        _deposit(_amount);
    }

    function _deposit(uint256 _amount) internal {
        require(msg.value == _amount, "Vault: incorrect ETH amount");
        balances[msg.sender] += _amount;
        emit Deposit(msg.sender, _amount);
    }

    // Admin functions
    function setPolicyID(string memory _policyID) external onlyOwner {
        _setPolicyID(_policyID);
    }

    function setRegistry(address _registry) external onlyOwner {
        _setRegistry(_registry);
    }
}

Deployment

After implementing the Predicate Client, you’ll need to set the Registry address and PolicyID.

_registry: The Predicate Registry address. See Supported Chains.
_policyID: The policy identifier generated from the predicate dashboard - you’ll get this in the next step.

Next Step: Dashboard Setup to configure your organization and policies.

Solana Program Integration

Predicate provides an Anchor-based program for Solana that handles attestation validation onchain.

Installation

git clone https://github.com/PredicateLabs/sol-contracts
cd sol-contracts
anchor build

Integration Overview

The Solana implementation uses Program Derived Addresses (PDAs) for:

Policy Accounts: Policies are associated with program addresses
Attestor Accounts: Registered attestors who can sign attestations
Used UUID Accounts: Replay protection via PDA existence checks

Example Usage

// Call predicated instruction with attestation
invoke(
    &validate_attestation(
        registry_pda,
        attestor_account,
        policy_account,
        target_program,
        msg_value,
        encoded_instruction_data,
        attestor_key,
        attestation,
    ),
    &[/* accounts */],
)?;

// If validation succeeds, execute business logic

The Solana implementation is in active development and has not yet been audited. Use with caution in production environments.

Essentials

Compliance For

Identity Solution

1. Onchain Integration

Smart Contracts

Mental model

Installation

Examples

Deployment

Solana Program Integration

Installation

Integration Overview

Example Usage

Resources

Essentials

Compliance For

Identity Solution

​Smart Contracts

​Mental model

​Installation

​Examples

​Deployment

​Solana Program Integration

​Installation

​Integration Overview

​Example Usage

​Resources

Smart Contracts

Mental model

Installation

Examples

Deployment

Solana Program Integration

Installation

Integration Overview

Example Usage

Resources