Stats
Actions
Tags
Help us improve
Share bugs, ideas, or general feedback.
From ap2-agentic-payments
Implements AP2 Payment Mandate VDC to signal AI involvement and user authorization in payments. Guides schema fetch, construction for merchant processors in auth flows, tokenization.
npx claudepluginhub orcaqubits/agentic-commerce-skills-plugins --plugin ap2-agentic-paymentsHow this skill is triggered — by the user, by Claude, or both
Slash command
/ap2-agentic-payments:ap2-payment-mandateThis skill is limited to the following tools:
The summary Claude sees in its skill listing — used to decide when to auto-load this skill
**Fetch live docs**:
Implements AP2 Cart Mandate to create, sign, and verify carts binding merchant offers to user authorization for human-present checkouts.
Implements UCP AP2 Mandates for autonomous agent payments using SD-JWT credentials, JWS merchant signatures, and Agent Payments Protocol in 7-step flow with security lock.
Implements ACP delegated payment flow with Stripe SharedPaymentTokens for secure token provisioning, lifecycle management, and checkout completion in agentic commerce.
Share bugs, ideas, or general feedback.
Fetch live docs:
https://ap2-protocol.org/specification/ for the Payment Mandate schemasite:github.com google-agentic-commerce AP2 payment mandate for type definitionssite:github.com google-agentic-commerce AP2 src/ap2/types payment for Python typeshttps://ap2-protocol.org/topics/core-concepts/ for Payment Mandate conceptual detailsThe Payment Mandate is a separate VDC specifically for the payment ecosystem — shared with payment networks (Visa, Mastercard) and issuers (banks). Unlike the Cart/Intent Mandates that focus on purchase authorization, the Payment Mandate provides visibility into the agentic nature of the transaction.
The Payment Mandate serves three functions:
The Merchant Payment Processor (MPP) constructs the Payment Mandate from the transaction information after the user has authorized the purchase. The Shopping Agent does not create the Payment Mandate — it is assembled on the MPP side from the payment context.
{
"payment_mandate_contents": {
"payment_mandate_id": "pm_unique_id",
"payment_details_id": "order_id",
"payment_details_total": {
"amount": {
"currency": "USD",
"value": "29.99"
},
"refund_period": 30
},
"payment_response": {
"request_id": "order_id",
"method_name": "CARD",
"details": {
"token": "dpan_token_xyz"
},
"shipping_address": null
},
"merchant_agent": "MerchantAgentName",
"timestamp": "2025-09-01T12:00:00Z"
},
"user_authorization": "eyJhbGc..."
}
1. User authorizes purchase on trusted device surface
2. Shopping Agent sends Cart Mandate + user attestation to Merchant
3. Merchant submits payment to Merchant Payment Processor (MPP)
4. MPP constructs the Payment Mandate from the transaction context
5. MPP requests payment credentials from Credentials Provider (CP)
6. CP verifies and performs tokenization (if needed)
7. CP returns credentials to MPP
8. Network/Issuer evaluates the mandate for risk assessment
9. Payment authorized (or challenged)
The Payment Mandate includes a tokenized payment method (DPAN — Digitized Primary Account Number):
All three work together: the Cart/Intent Mandate proves the purchase is authorized; the Payment Mandate proves the payment is authorized and provides network visibility.
The refund_period field in the mandate specifies the refund window (in days). This is important for:
Fetch the specification for exact Payment Mandate fields, token formats, and network integration requirements before implementing.