OpenPermit Docs
Concepts

Mandates

Mandates define the payment authority an agent may use.

A mandate is the authorization root for machine payments. It defines who approved the authority, which agent may spend, which resources are allowed, which payment methods and chains are permitted, and which limits apply.

Common policy fields include:

  • agent: the agent identity and environment.
  • paymentMethods: supported methods such as x402, mpp, or evmStablecoin.
  • paymentPath: offchain or onchain.
  • allowedSellers and allowedResources: seller/resource constraints.
  • maxPerPayment, windowBudget, and totalBudget: spend controls.
  • expiresAt: hard expiration.
  • metadataPolicy: redaction rules for prompts, messages, context, and sensitive headers.

Mandates can also reference portable authorization evidence. Future OpenPermit APIs should use optional authorizationEvidence[] entries for VI/AP2 mandates, Web Bot Auth verification, provider-issued agent credentials, seller commitments, and voucher proofs. These artifacts strengthen audit and dispute readiness without replacing the canonical OpenPermit mandate policy.

The SDK exposes mandate helpers from @openpermit/sdk/primitives for deterministic IDs and summaries.

import { getMandateId, summarizeMandate } from '@openpermit/sdk/primitives';

const mandateId = getMandateId(policy);
const summary = summarizeMandate(mandate);

Mandates fail closed. If a mandate is expired, revoked, over budget, wrong chain, wrong method, or outside seller/resource policy, OpenPermit should deny payment authorization.

See Authorization Evidence for how external proof artifacts should attach to mandates and receipts.

Concepts

The core OpenPermit objects and flows behind machine payment authorization.

Authorization Evidence

Portable proof that an agent was authorized to act.