Policy Evaluate Function

The evaluate function provides final validation with full blockchain access in the Lit Action environment. This is where your Policy makes the definitive allow/deny decision.

Function Parameters

The evaluate function receives two parameters:

params

object

required

Object containing the ability and user parameters

Show properties

abilityParams

object

Parameters matching your abilityParamsSchema definition

userParams

object

Parameters matching your userParamsSchema definition

policyContext

object

required

Context object provided by the SDK with helpers and metadata

Show properties

abilityIpfsCid

string

The IPFS CID of the Vincent Ability that is being executed

appId

number

The ID of the Vincent App the Vincent Ability is being executed for

appVersion

number

The version of the Vincent App the Vincent Ability is being executed for

delegation

object

Information about the execution delegation

Show properties

delegateeAddress

string

The Ethereum address of the Vincent Ability executor

delegatorPkpInfo

object

User’s Vincent Wallet information

Show properties

tokenId

string

The token ID of the Vincent App User’s Vincent Wallet

ethAddress

string

The Ethereum address of the App User’s Vincent Wallet

publicKey

string

The public key of the App User’s Vincent Wallet

allow

function

Helper method for returning an allow result from your policy’s evaluate function

deny

function

Helper method for returning a deny result from your policy’s evaluate function

Response Schemas

Allow Response

evalAllowResultSchema

ZodSchema

required

A Zod schema that defines the structure of successful evaluation results. Include details about why the evaluation passed, such as current state and validation context.

Deny Response

evalDenyResultSchema

ZodSchema

required

A Zod schema that defines the structure of failed evaluation results. Include details about why the evaluation failed, such as exceeded limits or validation errors.

Allow Schema
Deny Schema

import { createVincentPolicy } from '@lit-protocol/vincent-ability-sdk';
import { z } from 'zod';

const vincentPolicy = createVincentPolicy({
  // ... other policy definitions

  evalAllowResultSchema: z.object({
    maxDailySpendingLimit: z.number(),
    currentDailySpending: z.number(),
    allowedTokens: z.array(z.string()),
  }),
});

import { createVincentPolicy } from '@lit-protocol/vincent-ability-sdk';
import { z } from 'zod';

const vincentPolicy = createVincentPolicy({
  // ... other policy definitions

  evalDenyResultSchema: z.object({
    reason: z.string(),
    maxDailySpendingLimit: z.number(),
    currentDailySpending: z.number(),
    allowedTokens: z.array(z.string()),
  }),
});

If any unhandled error occurs during evaluation, the Vincent Ability SDK automatically returns a deny result with the error message.

Example Implementation

import { createVincentPolicy } from '@lit-protocol/vincent-ability-sdk';
import { z } from 'zod';

const vincentPolicy = createVincentPolicy({
  // ... other policy definitions

  evalAllowResultSchema: z.object({
    maxDailySpendingLimit: z.number(),
    currentDailySpending: z.number(),
    allowedTokens: z.array(z.string()),
  }),

  evalDenyResultSchema: z.object({
    reason: z.string(),
    maxDailySpendingLimit: z.number(),
    currentDailySpending: z.number(),
    allowedTokens: z.array(z.string()),
  }),

  evaluate: async ({ abilityParams, userParams }, policyContext) => {
    const { amount, tokenAddress } = abilityParams;
    const { dailySpendingLimit, allowedTokens } = userParams;

    const isTokenAllowed = allowedTokens.includes(tokenAddress);
    const { isSpendingLimitExceeded, currentDailySpending } = await checkSpendingLimit(
      tokenAddress,
      amount,
      dailySpendingLimit,
    );

    if (!isTokenAllowed) {
      return policyContext.deny({
        reason: 'Token not allowed',
        maxDailySpendingLimit: dailySpendingLimit,
        currentDailySpending,
        allowedTokens: allowedTokens,
      });
    }

    if (isSpendingLimitExceeded) {
      return policyContext.deny({
        reason: 'Spending limit exceeded',
        maxDailySpendingLimit: dailySpendingLimit,
        currentDailySpending,
        allowedTokens: allowedTokens,
      });
    }

    return policyContext.allow({
      maxDailySpendingLimit: dailySpendingLimit,
      currentDailySpending,
      allowedTokens: allowedTokens,
    });
  },
});

Best Practices

Use Fresh Data - Query current state rather than relying on cached values
Consistent with Precheck - Apply the same validation logic as your precheck function
Handle Errors Gracefully - Provide clear error messages for debugging
Return Context - Include current state information in allow/deny responses

Policy Evaluate Function

Function Parameters

Response Schemas

Allow Response

Deny Response

Example Implementation

Best Practices

Next Steps

Commit Function

Publishing Policies

Documentation Index

​Function Parameters

​Response Schemas

​Allow Response

​Deny Response

​Example Implementation

​Best Practices

​Next Steps

Commit Function

Publishing Policies

Function Parameters

Response Schemas

Allow Response

Deny Response

Example Implementation

Best Practices

Next Steps