👋 Hey there! Welcome to the ZenZ Docs. Got issue? Report here

Capability Management

Tools for issuing and managing on-chain permissions (Capabilities) and delegations

`grant_capability`

Description: Issues and anchors a new capability on-chain for a specific subject and resource.

Input Schema:
id (string): Unique capability UUID.
issuer (string): The identity granting the permission.
subject (string): The recipient identity.
resource (string): The resource URI (e.g., storage://user/docs/*).
actions (array[string]): List of allowed actions (e.g., read, write).
constraints (object): Optional object containing expiresAt and custom (JSON bytes).

`revoke_capability`

Description: Revokes the capability from the subject by issuer

Input Schema:
id (string): Unique capability UUID.
issuer (string): The identity granting the permission.
subject (string): The recipient identity.
resource (string): The resource URI (e.g., storage://user/docs/*).

`get_capability`

Description: Fetch capability details

Input Schema:
id (string): Unique capability UUID.
issuer (string): The identity granting the permission.
subject (string): The recipient identity.
resource (string): The resource URI (e.g., storage://user/docs/*).

`delegate_capability`

Description: Delegates capability to others

Input Schema:
id (string): Unique capability UUID.
issuer (string): The identity granting the permission.
subject (string): The recipient identity.
resource (string): The resource URI (e.g., storage://user/docs/*).

Last updated on: May 5, 2026

User Methods App Methods