Use this file to discover all available pages before exploring further.
Once a Payment Plan is purchased, User(s) can query all the AI Agents linked to that plan.To ensure AI agents only authorize valid requests (users with credits), we provide a simple API (via the Payments Libraries) that makes validation simple and secure.
When a user wants to query an AI Agent, they need to send a request with the access token received when purchasing the Payment Plan. This token is used to validate that the user has access to the AI Agent and that they have enough credits.
TypeScript
Python
// After purchasing a Payment Plan, let's generate the X402 access tokenconst { accessToken } = await payments.x402.getX402AccessToken(planId, agentId)//// OUTPUT: accessToken is a JWT string containing X402 v2 payment credentials// Now we can use this access token to send requests to the AI agentconst agentHTTPOptions = { method: 'POST', headers: { Accept: 'application/json', 'Content-Type': 'application/json', 'payment-signature': accessToken, }}// Example request to the AI agentconst response = await fetch(new URL('https://my.agent.io/prompt'), agentHTTPOptions)if (response.ok) { const data = await response.json() console.log('AI agent response:', data)} else { console.error('Error accessing AI agent:', response.status, await response.text())}
import requests# Get X402 access token for the given plan and agenttoken_response = payments.x402.get_x402_access_token(plan_id, agent_id)access_token = token_response['accessToken']# OUTPUT: access_token is a JWT string containing X402 v2 payment credentials# Now we can use this access token to send requests to the AI agentheaders = { "Accept": "application/json", "Content-Type": "application/json", "payment-signature": access_token,}response = requests.post("https://my.agent.io/prompt", headers=headers)if response.status_code == 200: data = response.json() print('AI agent response:', data)else: print('Error accessing AI agent:', response.status_code, response.text)
AI Agents: Authorizing Only Valid Requests from Users
All the authorization can be done by calling the requests.startProcessingRequest method. This method will receive the access token sent by the user and will validate:
The user is a subscriber of any payment plans linked to the AI agent.
The requested endpoint and that the HTTP method is permitted (as included as part of the AI agent registration).
The user has sufficient credits to pay for the request (in the case of a credits-based Payment Plan) or the payment plan hasn’t expired (in the case of a time-based subscription).
In the example below, we will start a simple HTTP server that will first validate the request using the startProcessingRequest method. If the request is valid, it will return a 200 OK response; otherwise, it will return a 402 Payment Required response.
TypeScript
Python
import http from 'http'const agentHost = 'https://example.com' // The AI agent is running on this hostconst server = http.createServer(async (req, res) => { const x402Token = req.headers['payment-signature'] as string const requestedUrl = `${agentHost}${req.url}` const httpVerb = req.method console.log('Received request:', { endpoint: requestedUrl, httpVerb, x402Token }) try { const isValidReq = await payments.requests.startProcessingRequest( agentId, x402Token, requestedUrl, httpVerb!, ) console.log('isValidReq', isValidReq) if (isValidReq.balance.isSubscriber) { res.writeHead(200, { 'Content-Type': 'application/json' }) res.end(JSON.stringify({ message: 'Hello from the agent!' })) return } } catch (error) { console.log('Unauthorized access attempt:', x402Token) console.log('Error details:', error) } res.writeHead(402, { 'Content-Type': 'application/json' }) res.end(JSON.stringify({ error: 'Payment Required' }))})server.listen(8889, () => { console.log('AI agent server running on port 8889')})
from http.server import HTTPServer, BaseHTTPRequestHandlerimport jsonfrom payments_py.x402.helpers import build_payment_requiredagent_host = "https://example.com" # The AI agent is running on this hostclass AgentRequestHandler(BaseHTTPRequestHandler): def do_POST(self): self._handle_request() def do_GET(self): self._handle_request() def _handle_request(self): x402_token = self.headers.get("payment-signature", "") requested_url = f"{agent_host}{self.path}" http_verb = self.command print("Received request:", {"endpoint": requested_url, "httpVerb": http_verb, "x402Token": x402_token}) try: # Build payment requirements payment_required = build_payment_required( plan_id=plan_id, endpoint=requested_url, agent_id=agent_id, http_verb=http_verb ) # Verify permissions with x402 access token verification = payments.facilitator.verify_permissions( payment_required=payment_required, x402_access_token=x402_token, max_amount="1" ) print("Verification result:", verification) if verification.get("is_valid"): self.send_response(200) self.send_header("Content-Type", "application/json") self.end_headers() self.wfile.write(json.dumps({"message": "Hello from the agent!"}).encode()) return except Exception as error: print("Unauthorized access attempt:", x402_token) print("Error details:", error) self.send_response(402) self.send_header("Content-Type", "application/json") self.end_headers() self.wfile.write(json.dumps({"error": "Payment Required"}).encode())# To start the server:server = HTTPServer(("localhost", 8889), AgentRequestHandler)print("AI agent server running on port 8889")server.serve_forever()
As you can see, the Payments libraries are framework-agnostic, so you can integrate them with any web framework in TypeScript/JavaScript (Express, Next.js, etc.) or Python (FastAPI, Flask, etc.).
