0xpassport

Access, identity, and payments for AI agents.

A score-backed identity token that gets agents past bot detection, into accounts, and through checkout. Three token types. One standard. Works everywhere.

Check API statusIntegration guide

Token types

Three tokens. One protocol.

X-Agent Financial-Passport

Identity / Access

Gets agents past bot detection, creates accounts, authenticates logins. Contains ACS score, compliance status, and identity level.

Use caseWebsite access, account creation, login
TTL24 hours
GateACS >= 500
X-Agent Financial-Pay

Payment

Authorizes a payment from the agent's wallet. Seller charges post-delivery via Agent Financial API. SAMUEL screens every transaction.

Use caseCheckout, micropayments, subscriptions
TTL5 minutes
GateFunded wallet
X-Agent Financial-Token

Identity + Payment

Combined access and checkout in one token. The "Buy for Me" credential. Agent accesses site and pays in a single request.

Use caseGuest checkout, one-shot purchases
TTL5 minutes
GateACS >= 500 + funded

Live walkthrough

Agent buys a trust report.

An agent uses 0xpassport to authenticate with Agent Financial MCP, pays for a premium trust report, and gets a compliance receipt back.

1Agent requests passport token

POST /api/v1/passport/issue — ACS checked (742, good), compliance clear. JWT signed.

2Token issued (JWT)

Passport contains ACS score 742, tier "good", compliance "clear". TTL 24h.

3Agent calls MCP: get_trust_report

Presents passport token in X-Agent Financial-Passport header. MCP server verifies via JWKS.

4Agent Financial charges token ($0.10)

POST /api/v1/passport/charge — SAMUEL screens both parties. BARUCH receipt generated.

5Agent receives trust report + receipt

Full 7-factor breakdown, compliance history, network trust position. BARUCH compliance receipt attached.

Buy for me

Agent shops Gopuff for a human.

A human says “buy me headphones.” The agent gets a passport-pay token, accesses Gopuff, completes checkout, and the human gets delivery in 15 minutes.

HumanHuman: "Buy me noise-canceling headphones, under $300"

Human sets a purchase mandate via the Agent Financial app. Agent receives: category=electronics, max=$300, merchant=gopuff.com.

AgentAgent requests passport-pay token

POST /api/v1/passport/issue — ACS 742 (good), wallet $12,480 funded, mandate attached. JWT signed with identity + payment claims.

Agent FinancialAgent Financial issues passport-pay token

ACS check passed (742 >= 500). Wallet funded. SAMUEL pre-screens Gopuff (clear). Buyr pre-authorizes $300. Token signed.

AgentAgent accesses Gopuff with token

HTTP request to gopuff.com with X-Agent Financial-Token header. Bot detection verifies Agent Financial JWT via JWKS. Agent gets through.

AgentAgent browses and selects product

Agent searches "noise-canceling headphones", filters by price < $300, selects Bose QuietComfort 45 at $279.00. Within mandate.

GopuffAgent completes checkout

Agent submits order at Gopuff checkout. Gopuff extracts pay claim from token. Product added to delivery queue.

Agent FinancialGopuff charges the token

POST api.agentfinancial.ai/api/v1/passport/charge — SAMUEL screens buyer + seller. LEVI settles $279 USDC. BARUCH receipt generated.

HumanHuman gets headphones in 15 minutes

Delivery complete. Agent's ACS updated (+1 compliant transaction). Score trajectory: improving. Human mandate fulfilled.

Token format

Standard JWT. Score inside.

passport-pay JWT payload

{
  "iss": "agentfinancial.ai",
  "sub": "0x7a3F...c8E2",
  "aud": "gopuff-checkout",
  "type": "passport-pay",

  "passport": {
    "acs_score": 742,
    "acs_tier": "good",
    "compliance": "clear",
    "identity_level": "business",
    "chains_active": 12,
    "attestation_uid": "0xabc...123"
  },

  "pay": {
    "amount_atomic": "279000000",
    "currency": "USDC",
    "chain": "base",
    "mandate": "headphones under $300"
  }
}

What each claim means

passport.acs_score300-850 credit score. Higher = more trustworthy. Sellers set minimums.
passport.acs_tierpoor / fair / good / excellent / exceptional. Quick filter for access.
passport.complianceclear / held / blocked. Real-time OFAC screening status.
passport.attestation_uidOn-chain EAS attestation on Base. Trustlessly verifiable.
pay.amount_atomicCommitted payment in atomic USDC (1 USDC = 1,000,000).
pay.mandateHuman-readable purchase intent. Audit trail for delegated purchases.

Integration

Verify tokens. Charge post-delivery.

import jwt from 'jsonwebtoken';
import jwksClient from 'jwks-rsa';

const client = jwksClient({
  jwksUri: 'https://agentfinancial.ai/api/v1/passport/jwks.json'
});

// Verify any 0xpassport token
const decoded = await jwt.verify(token, getKey, {
  issuer: 'agentfinancial.ai',
  algorithms: ['RS256']
});

// Check ACS minimum for your service
if (decoded.passport.acs_score < 600) {
  throw new Error('Score too low');
}

// Charge the token (post-delivery)
await fetch('https://api.agentfinancial.ai/api/v1/passport/charge', {
  method: 'POST',
  headers: { 'Content-Type': 'application/json' },
  body: JSON.stringify({
    jti: decoded.jti,
    amount_atomic: '279000000',
    seller_address: '0xYourAddress'
  })
});
GET /api/v1/passport/jwks.json

Public keys for verification

POST /api/v1/passport/issue

Request a token

POST /api/v1/passport/charge

Charge post-delivery

Why 0xpassport

Score-backed, not just verified.

Identity signal
Binary (verified / not)
300-850 credit score + tier
Access gating
All verified agents equal
Sellers set ACS minimum
Improvement path
None
Score improves with transactions
On-chain proof
None
EAS attestation on Base
Payment rails
Wallet balance
USDC + fiat card rails
Compliance
Identity only
Real-time OFAC on every charge

Give your agents access.

Issue passport tokens backed by real credit scores. JWKS verification. Free tier: 100 tokens/month.

Try the APIRead the docs