PAYMENT.md

Payment Integration (X402)

Bindu supports the X402 payment protocol, enabling you to monetize your AI agents by requiring cryptocurrency payments before executing specific methods. This allows you to build paid AI services with native blockchain payment integration.

How It Works

sequenceDiagram
    participant User
    participant Agent
    participant Blockchain
    participant Wallet

    Note over User,Agent: 1. Start Payment Session
    User->>Agent: POST /api/start-payment-session
    Agent->>Agent: Create session (15 min expiry)
    Agent-->>User: {session_id, browser_url}

    Note over User,Wallet: 2. Complete Payment in Browser
    User->>Agent: Open browser_url
    Agent-->>User: Show paywall UI
    User->>Wallet: Connect wallet (MetaMask/Coinbase)
    Wallet-->>User: Wallet connected
    User->>Wallet: Approve transaction
    Wallet->>Blockchain: Submit USDC transfer
    Blockchain-->>Wallet: Transaction confirmed
    Wallet->>Agent: Send X-PAYMENT header<br/>(signed transaction)
    Agent->>Agent: Store payment in session

    Note over User,Agent: 3. Verify Payment
    User->>Agent: GET /api/payment-status/{session_id}
    Agent->>Agent: Check session status
    Agent-->>User: {status: completed, payment_token}

    Note over User,Agent: 4. Use Protected Method
    User->>Agent: POST / (JSON-RPC)<br/>X-Payment-Token: {token}
    Agent->>Agent: Validate payment token
    Agent->>Blockchain: Verify transaction on-chain<br/>(balance, signature)
    Blockchain-->>Agent: Valid
    Agent->>Agent: Execute protected method
    Agent-->>User: Response

Loading

Configuration

Add the execution_cost configuration to your agent config to enable payment gating.

Single payment option (existing behavior)

config = {
    "author": "your.email@example.com",
    "name": "paid_agent",
    "description": "An agent that requires payment",
    "deployment": {"url": "http://localhost:3773", "expose": True},
    "execution_cost": {
        "amount": "$0.0001",           # Amount in USD (will be converted to USDC)
        "token": "USDC",                # Token type (USDC supported)
        "network": "base-sepolia",      # Network (base-sepolia for testing, base for production)
        "pay_to_address": "0x265<your-wallet-address>",  # Your wallet address
        "protected_methods": [
            "message/send"              # Methods that require payment
        ]
    }
}

Multiple payment options (new behavior)

You can now provide multiple payment options. The agent will advertise all options to the client, and any one of them can satisfy the requirement. For example:

config = {
    "author": "your.email@example.com",
    "name": "paid_agent",
    "description": "An agent that requires payment",
    "deployment": {"url": "http://localhost:3773", "expose": True},
    "execution_cost": [
        {
            "amount": "0.1",              # 0.1 USDC on Base
            "token": "USDC",
            "network": "base",
            "pay_to_address": "0xYourWalletAddressHere",
        },
        {
            "amount": "0.0001",           # 0.0001 ETH on Ethereum mainnet
            "token": "ETH",
            "network": "ethereum",
            "pay_to_address": "0xYourWalletAddressHere",
        },
    ],
}

In this configuration, callers can pay either 0.1 USDC on Base or 0.0001 ETH on Ethereum to access the protected methods.

Setup for Testing

1. Create a Crypto Wallet

Choose one of these wallet options:

MetaMask (Recommended):

1. Install the MetaMask browser extension
2. Create a new wallet or import an existing one
3. Copy your wallet address (starts with 0x...)

Coinbase Wallet:

1. Install the Coinbase Wallet extension
2. Set up your wallet
3. Copy your wallet address

2. Get Test USDC

For testing on Base Sepolia testnet:

1. Get Base Sepolia ETH (for gas fees):

   • Visit Chainlink Faucet
   • Connect your wallet
   • Request test ETH

2. Get Base Sepolia USDC:

   • The payment system will guide you through obtaining test USDC
   • Alternatively, use a Base Sepolia faucet that provides USDC

3. Update Agent Configuration

Add your wallet address to the agent config:

"pay_to_address": "0xYourWalletAddressHere"  # Replace with your actual address

Payment Flow

Step 1: Start a Payment Session

When a user tries to access a protected method, they must first initiate a payment session:

curl --location --request POST 'http://localhost:3773/api/start-payment-session' \
--header 'Content-Type: application/json' \
--header 'Authorization: Bearer <your-access-token>'

Response:

{
    "session_id": "<session-id>",
    "browser_url": "http://localhost:3773/payment-capture?session_id=<session-id>",
    "expires_at": "<expires-at>",
    "status": "pending"
}

Step 2: Complete Payment in Browser

1. Open the browser_url in your web browser
2. Connect your wallet (MetaMask or Coinbase Wallet)
3. Review the payment details:
   • Amount in USDC
   • Recipient address
   • Network (Base Sepolia)
4. Approve and sign the transaction
5. Wait for blockchain confirmation

Step 3: Verify Payment Status

After completing the payment, check the session status:

curl --location 'http://localhost:3773/api/payment-status/<session_id>' \
--header 'Authorization: Bearer <your-access-token>'

Successful Payment Response:

{
    "session_id": "<session-id>",
    "status": "completed",
    "payment_token": "eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9..."
}

Response Fields:

• session_id: The payment session identifier
• status: Payment status (completed means payment verified)
• payment_token: JWT token to include in subsequent API calls

Step 4: Use the Agent with Payment Token

Include the payment_token in your agent requests:

curl --location 'http://localhost:3773/' \
--header 'Content-Type: application/json' \
--header 'Authorization: Bearer <your-access-token>' \
--header 'X-Payment-Token: <payment-token>' \
--data '{
    "jsonrpc": "2.0",
    "method": "message/send",
    "params": {
        "message": {
            "role": "user",
            "content": "Hello, paid agent!"
        }
    },
    "id": 1
}'

Example Implementation

See the complete example at:

examples/beginner/echo_agent_behind_paywall.py

UI Integration

From the UI, you can obtain the access token and use it to initiate payment sessions.

Important Payment Behavior:

• Each new task requires payment when the agent is behind a paywall
• If a task returns input_required status, no payment is needed for that interaction
• Once a task completes successfully, a new payment is required for the next task, even within the same conversation/context
• Payment tokens are task-specific and cannot be reused across multiple completed tasks

Security Considerations

• Wallet Security: Never share your private keys or seed phrases
• Test Networks: Always test on Base Sepolia before deploying to mainnet
• Payment Verification: Payments are verified on-chain via blockchain signatures
• Session Expiration: Payment sessions expire after 60 seconds by default
• Token Storage: Payment tokens are JWTs with expiration times

Production Deployment

When ready for production:

1. Switch to Base Mainnet:

   "network": "base"  # Change from "base-sepolia"

2. Use Real USDC: Ensure users have actual USDC on Base mainnet

3. Update Wallet Address: Use your production wallet address

4. Monitor Payments: Track incoming payments to your wallet address

5. Set Appropriate Pricing: Adjust amount based on your service value

Tips

• Start Small: Use low amounts for testing (e.g., $0.0001)
• Clear Communication: Inform users about payment requirements upfront
• Handle Failures: Implement proper error handling for failed payments
• Session Management: Clean up expired payment sessions regularly
• User Experience: Provide clear instructions in your UI for payment flow

Related Documentation

• X402 Protocol Specification
• Base Sepolia Testnet
• Bindu Authentication - Required for payment endpoints