Building a Soulbound Credential on Solana with Token-2022

How combining Non-Transferable and Permanent Delegate extensions changed my understanding of digital ownership on Solana.

Imagine earning a high rank in an online game.

You can use it. You can benefit from it. Other players can see it. But you cannot transfer that rank to someone else.

If you break the game's rules, the game company can revoke it. And if the game gets acquired by another company, authority over that rank can be handed over to a new administrator.

That was the closest mental model I found for understanding one of the most interesting things I built this week on Solana: a credential token using Token-2022 extensions.

What are Token Extensions?

One thing I've learned during this phase of the challenge is that Token-2022 is not just about creating tokens.

It allows you to define behaviors directly at the token level through extensions.

Instead of relying on application logic to enforce rules, the token program itself can enforce them.

For this experiment, I combined two extensions:

• Non-Transferable — prevents ownership from being transferred to another wallet.
• Permanent Delegate — gives a designated authority the ability to manage the token even after it has been issued. Individually, those are useful.

Together, they create something that behaves less like a currency and more like a credential.

The Transfer That Was Supposed to Fail

After creating the token, I tried transferring it.

spl-token transfer Gn5PZzwDENvpQESaFwgVqzCUFba5sSka59iLtjFTYNvz 1 $THIRD_PARTY \
  --owner ~/recipient-wallet.json \
  --fee-payer ~/.config/solana/id.json \
  --program-id TokenzQdBNbLqP5VEhdkAS6EPFLC1PHnBqCXEpPxuEb \
  --fund-recipient --allow-unfunded-recipient

The result:

Recipient: ErYcpQYcpdoaaiufrB3MqQE2QaVEhoACZGcssppszPpY

Recipient Token Account:
8CvyoKt11UbkWYRVXey6UKK2gqQcvVvbh9Lv3crzo8C3

Funding ATA:
8Cvyokt11UbkWYRVXey6UKK2qqQcvVvbh9LV3crz0803

Status:
❌ Transaction failed during simulation

Error:
Transfer is disabled for this mint (Token-2022 restriction)

What I liked about this failure is that it wasn't unexpected.
The token holder owned the token account. Normally, that would be enough. But because the token was created with the Non-Transferable extension, the transfer was rejected by the token program itself.

There was no application checking permissions, no backend deciding whether the action was allowed.

The restriction lived inside the asset. That was the moment the idea really clicked for me.

The Part That Surprised Me

The failed transfer wasn't the surprising part, the Permanent Delegate extension was.

While experimenting, I discovered that the delegate authority itself could be reassigned. I tried delegating the authority to another account

spl-token authorize \
  Gn5PZzwDENvpQESaFwgVqzCUFba5sSka59iLtjFTYNvz \
  permanent-delegate 12ntWdec88nfRq5uaaxkEBy4EtdQjXuD8ywWzxDjCEM2  --program-id TokenzQdBNbLqP5VEhdkAS6EPFLC1PHnBqCXEpPxuEb

Conceptually, that means the authority responsible for managing a credential can change over time.

For example:

• A company issues employee credentials.
• The company gets acquired.
• Authority over those credentials is transferred to a new administrator.

The credentials remain valid, the people holding them do not change but the entity responsible for managing them can.

That felt much more flexible than I initially expected.

The Part That Confused Me

I'll be honest: part of me kept thinking this felt surprisingly centralized.

• A credential holder cannot transfer the token.
• A delegate can revoke it.
• Authority can even be reassigned.

At first glance, that seems to clash with the idea of decentralization. What helped me reconcile that is realizing that not every asset is trying to solve the same problem.

Money, governance tokens, certificates, memberships, and identity credentials all have different requirements.

In some cases, transferability is the feature. In others, transferability defeats the entire purpose.

A certification would lose its meaning if anyone could sell it.

What Clicked

Earlier in the week, I experimented with other Token-2022 extensions, including:

• transfer fees
• interest-bearing rates
• metadata

What finally made sense was seeing multiple extensions work together inside a single asset.

The token wasn't just representing value anymore, it was representing rules, permissions, and relationships.

That's a very different way of thinking about assets.

Instead of asking:

What does this token represent?

I started asking:

What behaviors does this token enforce?

Final Thoughts

Before this week, I mostly thought of tokens as things that hold value and move between wallets.

Building a credential token challenged that assumption.

The combination of Non-Transferable and Permanent Delegate extensions showed me that tokens can represent much more than currency. They can represent memberships, achievements, certifications, and other forms of ownership where movement is not the goal.

If you want to explore these concepts further, I recommend reading the official Token-2022 Extensions documentation and experimenting with a few combinations yourself.

The most interesting part isn't any single extension.

It's seeing what happens when you start combining them.