Skip to main content

Overview

Phantom Connect is a suite of tools that lets developers onboard users instantly with embedded wallets powered by Phantom. Users sign in with Google or Apple (with more identity providers coming in the future), and your app receives a secure, ready-to-use wallet without requiring extensions, mobile apps, or private-key management. When users authenticate with social login, Phantom creates an embedded wallet inside a secure environment on the user’s device. This wallet is authorized to transact with your app and is protected by spending-limit controls, domain binding, and real-time risk evaluation. Your app never handles private keys and never becomes a custodian.

Embedded wallets

Embedded wallets are wallets built directly into your application. No browser extensions, mobile apps, or external wallet software required. Users authenticate with familiar methods like Google or Apple, and your app instantly has access to a fully functional wallet. Embedded wallets remove the friction of traditional wallet onboarding while maintaining the security and self-custody guarantees users expect.

Spending limits

Embedded wallets have a default spending limit of $1,000 USD per app per day. This limit applies to the total value of transactions a user can sign through your app within a 24-hour period. The limit resets daily and helps protect users from unauthorized or excessive spending.

Authentication methods

Phantom Connect currently supports one direct authentication method: social login. Users authenticate with Google or Apple, and Phantom Connect creates or retrieves an embedded wallet for your app. Extension and injected wallets are also supported. These connections use the user’s existing self-custodial wallet and its own signing system.

Social login

When a user selects Sign in with Google or Sign in with Apple, Phantom Connect creates or retrieves an embedded wallet tied to that identity. Flow summary:
  1. Users authenticate with Google or Apple.
  2. Users enter their 4-digit PIN.
  3. Users approve any required permissions or spending limits.
  4. Your app receives the connected embedded wallet.
How embedded wallets work for different user types:
  • New social-login users: Phantom creates a brand-new embedded wallet.
  • Existing social-login (seedless) users: Phantom securely converts the existing seedless wallet into an embedded wallet. After that, the same wallet is usable in both Phantom and your app.

Extension and injected wallets

When users connect with the Phantom extension or any other injected wallet:
  • Phantom Connect doesn’t create an embedded wallet.
  • Users transact and approve actions directly inside their extension.
  • The extension signs using whatever key-management system that wallet uses.
  • Your app receives the connected account through the same Phantom Connect SDK interface.
This gives your app a unified integration path while preserving the user’s wallet choice.

Account selection behavior

Social login

Users can choose from any Phantom accounts tied to their Google or Apple identity, from the account picker.

Extension and injected wallets

Users can choose from any Phantom account tied to their recovery phrase.

Disconnecting an app

Users can disconnect your app at any time from Phantom:
  1. Open Phantom (extension or mobile app).
  2. Go to Settings → Connected Apps.
  3. Select your app.
  4. Choose Revoke permissions or Disconnect.
After disconnecting, your app can no longer access the wallet.

Session duration

A Phantom Connect session remains active for seven days from the last login. After it expires, users must sign in again with Google or Apple.

FAQ

Phantom Connect lets your users sign in with Google, Apple, or the Phantom extension and instantly receive a secure embedded wallet your app can use for signing. No wallet installation required. If users already use the Phantom extension, they can connect with that too.
There’s no cost to use Phantom Connect. Phantom provides authentication, embedded wallets, and signing infrastructure at no charge to developers.
Phantom Connect creates a wallet that only the user can authorize. Private keys never pass through your app or backend and never appear in plaintext. Every action is authenticated by the user and evaluated against built-in protections like spending limits and app-level permissions. Your integration stays fully non-custodial.
Phantom Connect supports two ways for users to sign in:
  • Social login: Users sign in with Google or Apple. Your app receives a secure embedded wallet that’s ready to use immediately.
  • Extension and injected wallets: Users connect with the Phantom extension or any other injected wallet. All approvals happen in the existing wallet, and no embedded wallet is created.
Your app can support one or both methods depending on your needs.
No. Private keys are never exposed to your app, your backend, or your infrastructure. Phantom Connect handles secure signing behind the scenes, and your app simply requests signatures through the SDK.
Integration is lightweight:
  1. Create an account in Phantom Portal.
  2. Create an app.
  3. Verify your domain.
  4. Configure allowed origins and redirect URLs.
  5. Add your app information.
  6. Get your App ID and integrate.
  7. Trigger the connect flow and start using the wallet returned by the SDK.

Resources

For implementation details and platform-specific examples, see the Phantom Connect SDKs: