Skip to content

Latest commit

 

History

History
294 lines (224 loc) · 10.6 KB

AGENTS.md

File metadata and controls

294 lines (224 loc) · 10.6 KB

Agent Guide

This guide is for AI agent developers who want to use RequestTap Router to access pay-per-request APIs.

Overview

RequestTap Router is an x402 API gateway. You register upstream APIs with prices, and agents pay USDC per request to call them. The gateway handles payment verification, access control, and receipts — your agent just needs a wallet.

How it works:

  1. Agent calls a gateway endpoint
  2. Gateway responds with HTTP 402 Payment Required and a price
  3. Agent's SDK automatically pays the USDC amount via x402
  4. Gateway verifies payment and proxies the request to the upstream API
  5. Agent receives the API response + a structured receipt

Getting Started

Install the SDK

npm install @requesttap/sdk @requesttap/shared

Prerequisites

You need Coinbase Developer Platform (CDP) credentials to create wallets and make payments:

  1. Go to portal.cdp.coinbase.com and create a project
  2. Create an API key with Server Wallet > Accounts enabled and Ed25519 algorithm
  3. Generate a Wallet Secret from the Server Wallet dashboard (select your project → Wallet Secret → Generate). Save it immediately — it is shown only once.
  4. Set all three credentials in your environment:
CDP_API_KEY_ID=<your key id>
CDP_API_KEY_SECRET=<your key secret>
CDP_WALLET_SECRET=<base64-encoded PKCS8 EC P-256 key from step 3>

Discover Routes

Check what APIs are available on a gateway:

# OpenAPI spec
curl http://localhost:4402/docs

# Health check
curl http://localhost:4402/health

Make Your First Request

import { RequestTapClient } from "@requesttap/sdk";

const client = new RequestTapClient({
  gatewayBaseUrl: "http://localhost:4402",
});

// Initialize CDP wallet (reads CDP_* env vars automatically)
await client.init();

console.log("Wallet:", client.getWalletAddress());

// Make a paid API call
const { status, data, receipt } = await client.request("GET", "/api/v1/quote");

console.log("Status:", status);
console.log("Data:", data);
console.log("Outcome:", receipt?.outcome);   // SUCCESS, DENIED, or ERROR
console.log("Cost:", receipt?.price_usdc, "USDC");

Payment Flow

The SDK handles the x402 payment flow automatically:

Agent SDK                    Gateway                     Upstream API
    │                           │                            │
    ├── GET /api/v1/quote ─────>│                            │
    │                           │                            │
    │<── 402 Payment Required ──│                            │
    │    (price: 0.01 USDC)     │                            │
    │                           │                            │
    ├── GET /api/v1/quote ─────>│                            │
    │    + x-payment header     │── proxy ──────────────────>│
    │                           │<── response ───────────────│
    │<── 200 OK + receipt ──────│                            │

The init() method sets up a CDP wallet and wraps fetch so that 402 responses are automatically paid and retried. You don't need to handle payments manually.

AP2 Mandates

Mandates let agent owners set spending limits and access controls. A mandate is a signed JSON object that the agent attaches to requests.

Mandate Fields

Field Description
mandate_id Unique identifier
owner_pubkey Ethereum address of the mandate signer
expires_at ISO 8601 expiration timestamp
max_spend_usdc_per_day Daily spending cap in USDC
allowlisted_tool_ids Array of tool IDs the agent can access
require_user_confirm_for_price_over Optional — require confirmation above this price
signature EIP-191 signature over the mandate fields

Using a Mandate

import { RequestTapClient } from "@requesttap/sdk";
import type { Mandate } from "@requesttap/shared";

const mandate: Mandate = {
  mandate_id: "my-mandate-001",
  owner_pubkey: "0xYourEthereumAddress",
  expires_at: new Date(Date.now() + 86400000).toISOString(), // 24h
  max_spend_usdc_per_day: "1.00",
  allowlisted_tool_ids: ["quote", "search"],
  signature: "0x...", // EIP-191 signature
};

const client = new RequestTapClient({
  gatewayBaseUrl: "http://localhost:4402",
  mandate,
});

await client.init();

// This succeeds — "quote" is in the allowlist
const res1 = await client.request("GET", "/api/v1/quote");

// This is denied — "analysis" is not in the allowlist
const res2 = await client.request("POST", "/api/v1/analysis");
console.log(res2.receipt?.reason_code); // ENDPOINT_NOT_ALLOWLISTED

What the Gateway Checks

  • Expiry — rejects if expires_at is in the past
  • Signature — verifies EIP-191 personal signature against owner_pubkey
  • Spend cap — tracks daily spend per mandate_id, rejects if over max_spend_usdc_per_day
  • Allowlist — rejects if the route's tool_id is not in allowlisted_tool_ids

AP2 IntentMandates

IntentMandates are a newer mandate type from Google's Agent Payments Protocol (AP2 v0.1). They use lifetime budgets and merchant domain matching instead of daily spend caps and tool allowlists.

IntentMandate Fields

Field Description
type Always "IntentMandate"
contents.natural_language_description Human-readable description of intent
contents.budget.amount Lifetime spending limit (USD, treated as USDC)
contents.budget.currency Currency code (e.g. "USD")
contents.merchants Array of allowed gateway domains
contents.intent_expiry ISO 8601 expiration timestamp
contents.requires_refundability Whether refunds are required
contents.constraints Optional key-value constraints
user_signature EIP-191 signature over keccak256 of sorted contents
timestamp ISO 8601 timestamp of mandate creation
signer_address Ethereum address for signature verification

Using an IntentMandate

import { RequestTapClient } from "@requesttap/sdk";
import type { IntentMandate } from "@requesttap/shared";
import { keccak256, toHex } from "viem";
import { privateKeyToAccount } from "viem/accounts";

const account = privateKeyToAccount("0x...");

const contents = {
  natural_language_description: "Allow API calls up to $1",
  budget: { amount: 1.0, currency: "USD" },
  merchants: ["api.example.com"],
  intent_expiry: new Date(Date.now() + 86400000).toISOString(),
  requires_refundability: false,
};

// Sign: keccak256 of deterministically sorted contents JSON
function sortedStringify(obj: unknown): string {
  if (obj === null || typeof obj !== "object") return JSON.stringify(obj);
  if (Array.isArray(obj)) return "[" + obj.map(sortedStringify).join(",") + "]";
  const keys = Object.keys(obj).sort();
  return "{" + keys.map(k => JSON.stringify(k) + ":" + sortedStringify((obj as any)[k])).join(",") + "}";
}

const hash = keccak256(toHex(sortedStringify(contents)));
const signature = await account.signMessage({ message: { raw: hash } });

const mandate: IntentMandate = {
  type: "IntentMandate",
  contents,
  user_signature: signature,
  timestamp: new Date().toISOString(),
  signer_address: account.address,
};

const client = new RequestTapClient({
  gatewayBaseUrl: "http://api.example.com:4402",
  mandate,
});

What the Gateway Checks (IntentMandate)

  1. Signature — EIP-191 verification of user_signature against signer_address
  2. Expiry — rejects if intent_expiry is in the past
  3. Merchant — rejects if gateway domain is not in merchants (case-insensitive)
  4. Budget — tracks lifetime spend, rejects if cumulative spend exceeds budget.amount

SDK Reference

RequestTapClient

Constructor

new RequestTapClient({
  gatewayBaseUrl: string,   // Gateway URL (e.g. "http://localhost:4402")
  mandate?: Mandate,        // Optional AP2 mandate
})

Methods

Method Returns Description
init(cdpConfig?) Promise<void> Initialize CDP wallet and x402 payment. Reads CDP_* env vars by default.
getWalletAddress() string | null Returns the wallet address after init.
request(method, path, options?) Promise<{ status, data, receipt? }> Make a paid API request.
getReceipts() Receipt[] Get all receipts from this session.
getTotalSpent() number Sum of USDC spent on successful requests.
dumpReceipts() string JSON string of all receipts.

Request Options

{
  headers?: Record<string, string>,  // Additional headers
  body?: unknown,                     // JSON body (for POST/PUT/PATCH)
  idempotencyKey?: string,           // Custom idempotency key (auto-generated if omitted)
}

Receipts

Every request returns a structured receipt. Key fields:

Field Description
outcome SUCCESS, DENIED, ERROR, or REFUNDED
reason_code Why the request was denied/errored (see below)
price_usdc Amount charged
tool_id Which API tool was called
payment_tx_hash On-chain transaction hash (if paid)
mandate_verdict APPROVED, DENIED, or SKIPPED
latency_ms Upstream response time

Reason Codes

Code Meaning
OK Request succeeded
MANDATE_BUDGET_EXCEEDED Daily spend cap reached
ENDPOINT_NOT_ALLOWLISTED Tool not in mandate allowlist
MANDATE_EXPIRED Mandate has expired
RATE_LIMITED Too many requests (100/min per IP)
REPLAY_DETECTED Duplicate idempotency key
INVALID_SIGNATURE Mandate signature verification failed
INVALID_PAYMENT x402 payment verification failed
ROUTE_NOT_FOUND No matching route
AGENT_BLOCKED Agent address is blacklisted
SSRF_BLOCKED Route target is a private IP
X402_UPSTREAM_BLOCKED Upstream already speaks x402
MANDATE_CONFIRM_REQUIRED Price exceeds mandate confirmation threshold
INTENT_BUDGET_EXCEEDED IntentMandate lifetime budget exceeded
MERCHANT_NOT_MATCHED Gateway domain not in IntentMandate merchants list

Example

See examples/agent-demo/ for a complete working example that:

  1. Creates a mandate with a spend cap and tool allowlist
  2. Initializes a CDP wallet
  3. Makes a successful request (tool in allowlist)
  4. Makes a denied request (tool not in allowlist)
  5. Prints a spend summary and saves receipts to file