Stats
Actions
Tags
Help us improve
Share bugs, ideas, or general feedback.
From stripe-mpp
Manages Stripe Shared Payment Token (SPT) lifecycle in MPP: creation, usage via PaymentIntents, deactivation, webhook events, and reconciliation for fiat/card payments.
npx claudepluginhub orcaqubits/agentic-commerce-skills-plugins --plugin stripe-mppHow this skill is triggered — by the user, by Claude, or both
Slash command
/stripe-mpp:mpp-spt-lifecycleThis skill is limited to the following tools:
The summary Claude sees in its skill listing — used to decide when to auto-load this skill
**Fetch live docs**:
Configures Stripe as MPP payment method for card/wallet payments via Shared Payment Tokens, integrating MPP HTTP 402 challenges with Stripe PaymentIntents.
Implements ACP delegated payment flow with Stripe SharedPaymentTokens for secure token provisioning, lifecycle management, and checkout completion in agentic commerce.
Implements Stripe payment processing for checkout sessions, subscriptions, webhooks, refunds, and PCI-compliant flows in web/mobile apps. Covers SCA, customer management, and Stripe Connect.
Share bugs, ideas, or general feedback.
Fetch live docs:
https://docs.stripe.com/agentic-commerce/concepts/shared-payment-tokens for the canonical SPT documentationsite:docs.stripe.com shared_payment granted_token API for SPT API endpointsstripe shared payment token webhook events for SPT event schemashttps://docs.stripe.com/payments/machine/mpp for SPT usage within MPP contextShared Payment Tokens are one-time payment tokens scoped to a specific merchant and exact amount. They are the mechanism by which card/fiat payments work within the MPP protocol. The agent never handles raw card data — SPTs abstract away PCI-sensitive information.
1. Agent → Stripe: Create SPT (scoped to merchant + amount + expiry)
2. Stripe → Agent: Returns spt_... token
3. Agent → Server: Sends SPT as payment credential in 402 flow
4. Server → Stripe: Creates PaymentIntent with SPT
5. Stripe → Server: Payment confirmed
6. Stripe → Agent: Webhook: shared_payment.issued_token.used
7. Stripe → Server: Webhook: shared_payment.granted_token.used
POST /v1/test_helpers/shared_payment/granted_tokens
Parameters:
payment_method: pm_card_visa
usage_limits[currency]: usd
usage_limits[max_amount]: 1000 # $10.00 in cents
usage_limits[expires_at]: <unix_ts> # Expiration timestamp
seller_details[network_id]: <seller_id> # Merchant's network ID
seller_details[external_id]: <ext_id> # Optional external reference
POST /v1/payment_intents
Parameters:
amount: 500 # $5.00 in cents
currency: usd
shared_payment_granted_token: spt_...
confirm: true
When confirmed, Stripe clones the original PaymentMethod and processes the charge.
GET /v1/shared_payment/granted_tokens/{id}
Returns limited payment method details (card brand, last four digits) and usage restrictions.
| Event | Recipient | Trigger | Key Fields |
|---|---|---|---|
shared_payment.granted_token.used | Seller (Server) | SPT successfully consumed | token_id, amount, currency |
shared_payment.granted_token.deactivated | Seller (Server) | SPT revoked or expired | token_id, reason |
shared_payment.issued_token.used | Agent | Seller consumed the SPT | token_id, amount |
shared_payment.issued_token.deactivated | Agent | SPT no longer valid | token_id, reason |
app.post('/webhooks/stripe', async (c) => {
const sig = c.req.header('stripe-signature');
const event = stripe.webhooks.constructEvent(
await c.req.text(),
sig,
process.env.STRIPE_WEBHOOK_SECRET
);
switch (event.type) {
case 'shared_payment.granted_token.used':
// SPT was successfully consumed — update records
break;
case 'shared_payment.granted_token.deactivated':
// SPT expired or was revoked — clean up
break;
}
});
| Constraint | Purpose |
|---|---|
max_amount | Transaction cannot exceed this (minor units) |
currency | Token only works in specified currency |
expires_at | Token invalid after this timestamp |
network_id | Only specified merchant can use it |
external_id | Additional merchant scoping |
SPTs can be deactivated for:
expires_at passedmax_amount to the exact payment amount — never higherstripe.webhooks.constructEvent()Fetch the latest Stripe SPT API documentation for exact endpoint paths, webhook event schemas, and error codes before implementing.