Skip to main content

Overview

This guide walks you through registering your organization in the Grantex Trust Registry, verifying your DID, earning compliance badges, and embedding a trust badge on your website.
The entire process typically takes under 10 minutes for DNS TXT verification.

Prerequisites

  • A Grantex account with an API key
  • A domain you control (for DID and verification)
  • Access to your domain’s DNS settings (for DNS TXT method)

Step 1: Choose Your DID

Your organization’s Decentralized Identifier (DID) is the primary key in the Trust Registry. We recommend did:web for most organizations: 
did:web:your-domain.com
The did:web method ties your DID to your domain, making verification straightforward. If you already have a DID from another method (e.g., did:key, did:ion), you can use that instead.
Your DID cannot be changed after registration. Choose carefully.

Step 2: Register via Portal

The easiest way to register is through the portal wizard:
  1. Navigate to Trust Registry in the sidebar
  2. Click Register Your Organization
  3. Enter your DID, organization name, description, and website
  4. Provide security contact email (required) and DPO email (optional)
  5. Select your verification method
  6. Review and submit

Step 2 (Alternative): Register via API

curl -X POST https://api.grantex.dev/v1/registry/orgs \
  -H "Authorization: Bearer $GRANTEX_KEY" \
  -H "Content-Type: application/json" \
  -d '{
    "did": "did:web:your-domain.com",
    "name": "Your Organization",
    "description": "Brief description of your organization",
    "website": "https://your-domain.com",
    "contact": {
      "security": "security@your-domain.com",
      "dpo": "dpo@your-domain.com"
    },
    "requestVerification": true,
    "verificationMethod": "dns-txt"
  }'
The response includes your verification token: 
{
  "did": "did:web:your-domain.com",
  "name": "Your Organization",
  "verificationLevel": "pending",
  "verificationToken": "grantex-verify-abc123def456",
  "badges": [],
  "stats": { "totalAgents": 0, "weeklyActiveGrants": 0, "averageRating": 0 }
}

Step 3: Verify Domain Ownership

Add a TXT record to your DNS:
FieldValue
Name/Host_grantex.your-domain.com
TypeTXT
Valuegrantex-verify-abc123def456
TTL300 (or default)
After adding the record, trigger verification: 
curl -X POST https://api.grantex.dev/v1/registry/orgs/did:web:your-domain.com/verify-dns \
  -H "Authorization: Bearer $GRANTEX_KEY"
DNS propagation typically takes 1-5 minutes. If verification fails, wait a few minutes and try again.

Option B: .well-known Endpoint

Create a JSON file at https://your-domain.com/.well-known/grantex-verification: 
{
  "did": "did:web:your-domain.com",
  "token": "grantex-verify-abc123def456"
}
Ensure the endpoint:
  • Returns Content-Type: application/json
  • Is accessible over HTTPS
  • Returns a 200 status code

Option C: SOC 2 Attestation

Upload your SOC 2 Type II report through the portal. The Grantex compliance team reviews submissions within 2 business days. This method earns both DID verification and the SOC 2 compliance badge.

Option D: Manual Review

Submit a manual review request through the portal or API. Include any supporting documentation. Typical turnaround is 3-5 business days.

Step 4: Earn Compliance Badges

After verification, you can apply for compliance badges:

SOC 2 Type II

Upload your SOC 2 Type II audit report. Our team verifies the report’s validity and scope.

GDPR

Requirements:
  • DPO email provided during registration
  • Data processing agreement available
  • Privacy policy URL accessible

DPDP (India)

Requirements:
  • Compliance documentation for India’s Digital Personal Data Protection Act
  • Consent management practices documented
  • Data localization compliance (if applicable)

ISO 27001

Upload your ISO 27001 certification. We verify the issuing body and certification scope.

Step 5: Embed Trust Badge

Add the trust badge to your website or documentation: 
<!-- Minimal -->
<grantex-trust-badge did="did:web:your-domain.com" />

<!-- With options -->
<grantex-trust-badge
  did="did:web:your-domain.com"
  theme="dark"
  size="lg"
  show-agents="true"
/>

<!-- Load the web component -->
<script src="https://cdn.grantex.dev/trust-badge.js"></script>
The badge automatically reflects your current verification status, compliance badges, and agent count.

Step 6: Register Agents

Once your organization is verified, agents you register via the standard Grantex API are automatically linked to your organization in the Trust Registry. 
import { Grantex } from '@grantex/sdk';

const gx = new Grantex({ apiKey: process.env.GRANTEX_KEY });

// This agent will appear in your org's registry profile
const agent = await gx.agents.create({
  name: 'Data Analyst Agent',
  description: 'Automated data analysis and reporting',
  scopes: ['data:read', 'reports:write'],
});

SDK Reference

TypeScript

import { Grantex } from '@grantex/sdk';

const gx = new Grantex({ apiKey: process.env.GRANTEX_KEY });

// Search (public, no auth required)
const results = await gx.registry.search({ q: 'acme', verified: true });

// Get organization detail
const org = await gx.registry.get('did:web:acme.com');

// Register
await gx.registry.register({
  did: 'did:web:your-domain.com',
  name: 'Your Org',
  contact: { security: 'security@your-domain.com' },
  verificationMethod: 'dns-txt',
});

// Verify DNS
await gx.registry.verifyDns('did:web:your-domain.com');

Python

from grantex import Grantex

gx = Grantex(api_key="your-key")

# Search (public)
results = gx.registry.search(q="acme", verified=True)

# Get organization detail
org = gx.registry.get("did:web:acme.com")

# Register
gx.registry.register(
    did="did:web:your-domain.com",
    name="Your Org",
    contact={"security": "security@your-domain.com"},
    verification_method="dns-txt",
)

# Verify DNS
gx.registry.verify_dns("did:web:your-domain.com")

Troubleshooting

DNS verification fails

  • Verify the TXT record is set on _grantex.your-domain.com (note the underscore prefix)
  • Check that the value exactly matches the token (no extra spaces or quotes)
  • Wait 5-10 minutes for DNS propagation
  • Use dig TXT _grantex.your-domain.com to confirm the record is live

.well-known endpoint not found

  • Ensure the file is served at the exact path: /.well-known/grantex-verification
  • Check that your server returns Content-Type: application/json
  • Verify the endpoint is accessible over HTTPS (not HTTP)
  • Test with curl https://your-domain.com/.well-known/grantex-verification

Badge application pending

  • SOC 2 and manual review take 2-5 business days
  • GDPR and DPDP badges require a DPO email to be set
  • Check the portal for status updates

Next Steps