By clicking “Accept”, you agree to the storing of cookies on your device to enhance site navigation, analyze site usage, and assist in our marketing efforts. View our Privacy Policy for more information.
AcceptDecline
Preferences
Cookie preferences
Wander Knowledge Base
Getting started
How do I access my wallet if I forget my password?
What is a JSON keyfile?
What is the Permaweb?
Security Best Practices for your Wander wallet
What is Wander?
What is Arweave?
Browser Extension
Browser Extension - Onboarding: Add an existing wallet by QR Code
Browser Extension - Onboarding: Add an existing wallet by Seedphrase
Browser Extension - Onboarding: Add an existing wallet by Seedphrase
Browser Extension - How to add the new AO Token to enable transfers
Browser Extension - How to update to the latest version
Browser Extension - How to receive Arweave and AO assets
Browser Extension - How to transfer Arweave and AO assets
Browser Extension - How to enable or disable notifications
Browser Extension - Dashboard: How to Manage Assets
Browser Extensions - Settings: How to create or import additional wallets
Browser Extension - How to buy AR tokens with a fiat currency
Browser Extension - Permission system Overview
Mobile App
Mobile App - Onboarding: Add an existing wallet by Keyfile
Mobile App - How to add the new AO Token to enable transfers
Mobile App - Settings: How to create or import additional wallets
Mobile App - Dashboard: How to Manage Assets
Mobile App - How to enable / disable notifications
Mobile App - Settings Overview
Mobile App - How to send assets
Mobile App - How to buy AR tokens with a fiat currency
Mobile App - Permission System Overview
Mobile App - How to receive Arweave or AO Assets
Mobile App - Dashboard Guide
Mobile App - Onboarding: Add an existing wallet by Seedphrase
Mobile App - Onboarding: Add an existing wallet by QR Code
Mobile App - Onboarding: Creating a new account
Knowledge base
/
Mobile App - Permission System Overview

Mobile App - Permission System Overview

Last updated
February 4, 2025

Why do applications permissions need from your Wander wallet?

When a user connects to an Arweave or AO application, Wander needs constant communication with connected apps in the background so the user can interact with the application. This has to be a seamless process that is not necessary visible to the user, but the user still needs to be aware what apps can do with their Wander wallet.

What are permissions?

  • Permissions allows users to grant certain privileges to applications, while denying any that they deem unsecure or dangerous.
  • Every time an application wants to connect to the user’s wallet, it first needs to request permissions for all the API functions the application plans to use.
  • Applications can request permissions dynamically: this means that they can ask for more permissions when necessary, even after requesting initial permissions at the time of connection to the app.
  • The Wander team advises applications to ask for the minimal amount of necessary permissions.
  • Various applications require various permissions to work based on the functionality they provide (like having access to the users wallet address)

Wander permission system settings

For users, when they connect to an application for the first time, the user will be prompted to select which permissions to grant the application (see the screenshot above)

The options are:

  • Always ask - Any time the application asks the user's wallet to sign any transaction or message, regardless if it will cause money or assets to be spent from the user's wallet, the user will be shown a pop up to review and sign the transaction or message
  • Ask when spending - Any time the application asks the user's wallet to sign a transaction or message that will only spend money or assets from the user's wallet, the user will be shown a pop up to review and sign the transaction or message
  • Auto confirm - Any time the application asks the user's wallet to sign any transaction or message, even if it will cause money or assets to be spent from the user's wallet, the user's wallet will auto-sign the transaction or message.  There will be no pop up for the user to review and confirm before the transaction or message is signed
  • Set custom permissions - The user can review all the permissions being requested by the application and customize which permissions the user wants to grant and which ones they don't

Remember, the user can always remove permissions granted to an application by clicking on the Settings drop down on the Wander dashboard, selecting Connected apps, selecting the application the user wants to revoke the permissions, and finally, clicking Remove app button

Download Wander to get started

Download for mobile
Download extension