@web42/w42 0.1.17 → 0.1.19

package/README.md

@@ -47,6 +47,7 @@ web42 send http://localhost:3001 "Hello"
 | `--new` | Start a new conversation (clears saved context) |
 | `--context <id>` | Use a specific context ID |
 | `--task-id <id>` | Reply to a specific task (e.g. one in `input-required` state) |
+| `--pay <token>` | Attach AP2 payment token as PaymentMandate data part |
 
 ---
 
@@ -92,6 +93,108 @@ web42 register https://my-agent.example.com --visibility private --tags "nlp,sum
 
 ---
 
+### `web42 pay`
+
+AP2 payment commands — wallet management, payment intents, checkout, and human signing.
+
+#### `web42 pay wallet`
+
+View your wallet balance.
+
+```bash
+web42 pay wallet
+```
+
+#### `web42 pay wallet topup <amount>`
+
+Add funds to your wallet. Amount is in dollars.
+
+```bash
+web42 pay wallet topup 50.00
+```
+
+#### `web42 pay intent propose`
+
+Generate an intent creation URL for the user to authorize in the browser.
+
+```bash
+web42 pay intent propose --nick starbucks-daily --agents @x~starbucks --max-amount 5.00 --prompt-playback "Spend up to $5/day at Starbucks" --recurring daily
+```
+
+| Option | Description |
+|---|---|
+| `--nick <nick>` | Short identifier for the intent (required) |
+| `--agents <slugs>` | Comma-separated merchant agent slugs (required) |
+| `--max-amount <dollars>` | Max amount per transaction (required) |
+| `--prompt-playback <text>` | Human-readable description (required) |
+| `--currency <code>` | Currency code (default: `USD`) |
+| `--recurring <type>` | `once`, `daily`, `weekly`, or `monthly` (default: `once`) |
+| `--budget <dollars>` | Lifetime budget |
+| `--expires <date>` | Expiry date (ISO 8601) |
+
+#### `web42 pay intent get --nick <nick>`
+
+Fetch an intent by nick. Caches locally if active.
+
+#### `web42 pay intent list`
+
+List all your payment intents.
+
+#### `web42 pay intent revoke --nick <nick>`
+
+Revoke an active intent.
+
+#### `web42 pay checkout`
+
+Execute a payment against a matching intent (no human approval needed).
+
+```bash
+web42 pay checkout --cart '<json>' --agent @x~starbucks --intent starbucks-daily
+```
+
+| Option | Description |
+|---|---|
+| `--cart <json>` | CartMandate JSON (required) |
+| `--agent <slug>` | Merchant agent slug (required) |
+| `--intent <nick>` | Intent nick to use (required) |
+
+#### `web42 pay sign create`
+
+Create a payment session for human approval (when no matching intent exists).
+
+```bash
+web42 pay sign create --cart '<json>' --agent @x~bookstore
+```
+
+| Option | Description |
+|---|---|
+| `--cart <json>` | CartMandate JSON (required) |
+| `--agent <slug>` | Merchant agent slug (required) |
+
+Returns `{ code, signing_url }`. Present the URL to the user.
+
+#### `web42 pay sign get <code>`
+
+Check the status of a payment session.
+
+```bash
+web42 pay sign get a1b2c3d4e5f6g7h8
+```
+
+---
+
+### `web42 telemetry`
+
+Control usage telemetry.
+
+```bash
+web42 telemetry         # Show current state
+web42 telemetry on      # Enable
+web42 telemetry off     # Disable
+```
+
+---
+
 ## Environment variables
 
 ```bash

package/dist/commands/pay.js

@@ -3,6 +3,7 @@ import { Command } from "commander";
 import ora from "ora";
 import { apiGet, apiPost } from "../utils/api.js";
 import { requireAuth, setConfigValue, } from "../utils/config.js";
+import { getTx, listTxs, updateTx } from "../utils/tx-store.js";
 // ─── Wallet ───────────────────────────────────────────────
 const walletCommand = new Command("wallet")
     .description("View or top up your wallet balance")
@@ -112,31 +113,68 @@ intentCommand
         process.exit(1);
     }
 });
+intentCommand
+    .command("propose")
+    .description("Generate an intent creation URL for the user to authorize in the browser")
+    .requiredOption("--nick <nick>", "Short identifier for the intent")
+    .requiredOption("--agents <slugs>", "Comma-separated merchant agent slugs (e.g. @x~starbucks)")
+    .requiredOption("--max-amount <dollars>", "Max amount per transaction in dollars")
+    .requiredOption("--prompt-playback <text>", "Human-readable description of the intent")
+    .option("--currency <code>", "Currency code", "USD")
+    .option("--recurring <type>", "Recurring type: once, daily, weekly, monthly", "once")
+    .option("--budget <dollars>", "Lifetime budget in dollars")
+    .option("--expires <date>", "Expiry date (ISO 8601)")
+    .action(async (opts) => {
+    const cfg = requireAuth();
+    const username = cfg.username;
+    if (!username) {
+        console.error(chalk.red("No username found. Please log in again."));
+        process.exit(1);
+    }
+    const baseUrl = cfg.apiUrl ?? "https://web42-network.vercel.app";
+    const params = new URLSearchParams({
+        nick: opts.nick,
+        agents: opts.agents,
+        max_amount: opts.maxAmount,
+        currency: opts.currency,
+        recurring: opts.recurring,
+        prompt_playback: opts.promptPlayback,
+    });
+    if (opts.budget)
+        params.set("budget", opts.budget);
+    if (opts.expires)
+        params.set("expires_at", opts.expires);
+    const url = `${baseUrl}/@${username}/intents/create?${params.toString()}`;
+    console.log(JSON.stringify({ url }, null, 2));
+});
 // ─── Checkout ─────────────────────────────────────────────
 const checkoutCommand = new Command("checkout")
     .description("Execute a payment against a matching intent (no human needed)")
-    .requiredOption("--cart <json>", "CartMandate JSON")
-    .requiredOption("--agent <slug>", "Merchant agent slug")
+    .requiredOption("--tx <id>", "Transaction ID from tx-store")
     .requiredOption("--intent <nick>", "Intent nick to use")
     .action(async (opts) => {
     requireAuth();
-    let cart;
-    try {
-        cart = JSON.parse(opts.cart);
-    }
-    catch {
-        console.error(chalk.red("Invalid cart JSON"));
+    const tx = getTx(opts.tx);
+    if (!tx) {
+        console.error(chalk.red(`Transaction ${opts.tx} not found. Run: w42 pay list`));
         process.exit(1);
     }
     const spinner = ora("Processing checkout...").start();
     try {
         const res = await apiPost("/api/pay/checkout", {
-            cart,
-            agent_slug: opts.agent,
+            cart: tx.cartMandate,
+            agent_slug: tx.agentSlug,
             intent_nick: opts.intent,
         });
         spinner.stop();
-        console.log(JSON.stringify(res, null, 2));
+        // Store the payment mandate on the tx
+        if (res.payment_mandate) {
+            updateTx(opts.tx, {
+                paymentMandate: res.payment_mandate,
+                status: "approved",
+            });
+        }
+        console.log(JSON.stringify({ tx: opts.tx, ...res }, null, 2));
     }
     catch (err) {
         spinner.fail("Checkout failed");
@@ -148,25 +186,20 @@ const checkoutCommand = new Command("checkout")
 const signCommand = new Command("sign").description("Create a payment session for human approval");
 signCommand
     .command("create")
-    .description("Create a new payment session")
-    .requiredOption("--cart <json>", "CartMandate JSON")
-    .requiredOption("--agent <slug>", "Merchant agent slug")
+    .description("Create a new payment session for human approval")
+    .requiredOption("--tx <id>", "Transaction ID from tx-store")
     .action(async (opts) => {
     requireAuth();
-    let cart;
-    try {
-        cart = JSON.parse(opts.cart);
-    }
-    catch {
-        console.error(chalk.red("Invalid cart JSON"));
+    const tx = getTx(opts.tx);
+    if (!tx) {
+        console.error(chalk.red(`Transaction ${opts.tx} not found. Run: w42 pay list`));
         process.exit(1);
     }
-    // Extract total from cart
+    // Extract total from stored cart
     let totalCents = 0;
     let currency = "usd";
     try {
-        const c = cart;
-        const contents = c.contents;
+        const contents = tx.cartMandate.contents;
         const pr = contents?.payment_request;
         const details = pr?.details;
         const total = details?.total;
@@ -174,19 +207,24 @@ signCommand
         currency = total.amount.currency.toLowerCase();
     }
     catch {
-        console.error(chalk.red("Could not extract total from cart"));
+        console.error(chalk.red("Could not extract total from stored cart"));
         process.exit(1);
     }
     const spinner = ora("Creating payment session...").start();
     try {
         const res = await apiPost("/api/pay/session", {
-            agent_slug: opts.agent,
-            cart,
+            agent_slug: tx.agentSlug,
+            cart: tx.cartMandate,
             total_cents: totalCents,
             currency,
         });
         spinner.stop();
-        console.log(JSON.stringify(res, null, 2));
+        updateTx(opts.tx, {
+            sessionCode: res.code,
+            signingUrl: res.signing_url,
+            status: "session_created",
+        });
+        console.log(JSON.stringify({ tx: opts.tx, signing_url: res.signing_url }, null, 2));
     }
     catch (err) {
         spinner.fail("Failed to create session");
@@ -195,37 +233,63 @@ signCommand
     }
 });
 signCommand
-    .command("poll")
-    .description("Poll a payment session until completed or expired")
-    .argument("<code>", "Session code")
-    .action(async (code) => {
+    .command("get")
+    .description("Check the status of a payment session")
+    .argument("<tx_id>", "Transaction ID")
+    .action(async (txId) => {
     requireAuth();
-    const maxAttempts = 30;
-    const intervalMs = 2000;
-    const spinner = ora("Waiting for approval...").start();
-    for (let i = 0; i < maxAttempts; i++) {
-        try {
-            const res = await apiGet(`/api/pay/session/${encodeURIComponent(code)}`);
-            if (res.status === "completed") {
-                spinner.stop();
-                console.log(JSON.stringify(res, null, 2));
-                return;
-            }
-            if (res.status === "expired") {
-                spinner.fail("Session expired");
-                process.exit(1);
-            }
-            // Still pending — wait and retry
-            await new Promise((resolve) => setTimeout(resolve, intervalMs));
-        }
-        catch (err) {
-            spinner.fail("Failed to poll session");
-            console.error(chalk.red(String(err)));
-            process.exit(1);
+    const tx = getTx(txId);
+    if (!tx) {
+        console.error(chalk.red(`Transaction ${txId} not found. Run: w42 pay list`));
+        process.exit(1);
+    }
+    if (!tx.sessionCode) {
+        console.error(chalk.red(`No session created yet. Run: w42 pay sign create --tx ${txId}`));
+        process.exit(1);
+    }
+    const spinner = ora("Fetching session...").start();
+    try {
+        const res = await apiGet(`/api/pay/session/${encodeURIComponent(tx.sessionCode)}`);
+        spinner.stop();
+        // If session is completed, store the payment mandate
+        if (res.status === "completed" && res.payment_token) {
+            updateTx(txId, {
+                paymentMandate: res.payment_mandate ?? {
+                    payment_mandate_contents: {},
+                    user_authorization: res.payment_token,
+                },
+                status: "approved",
+            });
         }
+        console.log(JSON.stringify({ tx: txId, ...res }, null, 2));
+    }
+    catch (err) {
+        spinner.fail("Failed to fetch session");
+        console.error(chalk.red(String(err)));
+        process.exit(1);
+    }
+});
+// ─── List (transactions) ──────────────────────────────────
+const listCommand = new Command("list")
+    .description("List local payment transactions")
+    .option("--status <status>", "Filter by status (cart_received, session_created, approved, sent)")
+    .action((opts) => {
+    const txs = listTxs(opts.status);
+    if (txs.length === 0) {
+        console.log(chalk.dim("No transactions found."));
+        return;
+    }
+    for (const tx of txs) {
+        const cart = tx.cartMandate;
+        const contents = cart?.contents;
+        const pr = contents?.payment_request;
+        const details = pr?.details;
+        const total = details?.total;
+        const amount = total?.amount
+            ? `${total.amount.currency} ${total.amount.value?.toFixed(2)}`
+            : "?";
+        console.log(`${chalk.cyan(tx.id)}  ${chalk.dim(tx.status.padEnd(16))}  ${amount}  ${chalk.dim(tx.agentSlug)}`);
     }
-    spinner.fail("Session still pending. Run again to continue polling.");
-    process.exit(1);
 });
 // ─── Root pay command ─────────────────────────────────────
 export const payCommand = new Command("pay")
@@ -233,4 +297,5 @@ export const payCommand = new Command("pay")
     .addCommand(walletCommand)
     .addCommand(intentCommand)
     .addCommand(checkoutCommand)
-    .addCommand(signCommand);
+    .addCommand(signCommand)
+    .addCommand(listCommand);

package/dist/commands/send.js

@@ -3,12 +3,14 @@ import chalk from "chalk";
 import { Command } from "commander";
 import ora from "ora";
 import { v4 as uuidv4 } from "uuid";
+import { isCartMandatePart, parseCartMandate } from "@web42/auth";
 import { apiPost } from "../utils/api.js";
 import { getConfig, getConfigValue, isTelemetryEnabled, requireAuth, setConfigValue } from "../utils/config.js";
+import { getTx, saveTx, updateTx } from "../utils/tx-store.js";
 function isUrl(s) {
     return s.startsWith("http://") || s.startsWith("https://");
 }
-function printPart(part) {
+function printPart(part, agentSlug) {
     if (part.kind === "text") {
         if (part.text)
             process.stdout.write(part.text);
@@ -25,6 +27,24 @@ function printPart(part) {
         }
     }
     else if (part.kind === "data") {
+        // Detect AP2 CartMandate parts and auto-store them
+        if (isCartMandatePart(part)) {
+            const cart = parseCartMandate(part);
+            if (cart) {
+                const total = cart.contents.payment_request.details.total;
+                const txId = saveTx({
+                    cartMandate: cart,
+                    agentSlug: agentSlug ?? "unknown",
+                });
+                console.log(chalk.cyan(`\n[CartMandate] ${txId}`));
+                for (const item of cart.contents.payment_request.details.displayItems) {
+                    console.log(`  ${item.label}: ${item.amount.currency} ${item.amount.value.toFixed(2)}`);
+                }
+                console.log(chalk.bold(`  Total: ${total.amount.currency} ${total.amount.value.toFixed(2)}`));
+                console.log(chalk.dim(`\nTo pay: w42 pay sign create --tx ${txId}`));
+                return;
+            }
+        }
         process.stdout.write("\n" + JSON.stringify(part.data, null, 2) + "\n");
     }
 }
@@ -83,7 +103,7 @@ export const sendCommand = new Command("send")
     .option("--new", "Start a new conversation (clears saved context)")
     .option("--context <id>", "Use a specific context ID")
     .option("--task-id <id>", "Reply to a specific task (e.g. one in input-required state)")
-    .option("--pay <token>", "Attach a payment token as an ap2.mandates.PaymentMandate data part")
+    .option("--pay <tx_id>", "Attach PaymentMandate from a transaction (use tx ID from w42 pay list)")
     .action(async (rawAgent, userMessage, opts) => {
     // Normalize slug: @user/name → @user~name (DB format)
     const agent = rawAgent.includes("/") && !isUrl(rawAgent)
@@ -193,40 +213,39 @@ export const sendCommand = new Command("send")
     const startTime = Date.now();
     let firstTokenMs;
     try {
+        // Build payment part from tx-store if --pay is provided
+        const paymentParts = [];
+        if (opts.pay) {
+            const tx = getTx(opts.pay);
+            if (!tx) {
+                console.error(chalk.red(`Transaction ${opts.pay} not found. Run: w42 pay list`));
+                process.exit(1);
+            }
+            if (tx.status === "cart_received") {
+                console.error(chalk.red(`Session not created yet. Run: w42 pay sign create --tx ${opts.pay}`));
+                process.exit(1);
+            }
+            if (tx.status === "session_created") {
+                console.error(chalk.red(`Payment not yet approved. Run: w42 pay sign get ${opts.pay}`));
+                process.exit(1);
+            }
+            if (!tx.paymentMandate) {
+                console.error(chalk.red(`No payment mandate found on transaction ${opts.pay}`));
+                process.exit(1);
+            }
+            paymentParts.push({
+                kind: "data",
+                data: { "ap2.mandates.PaymentMandate": tx.paymentMandate },
+            });
+            updateTx(opts.pay, { status: "sent" });
+        }
         const stream = client.sendMessageStream({
             message: {
                 messageId: uuidv4(),
                 role: "user",
                 parts: [
                     { kind: "text", text: userMessage },
-                    ...(opts.pay
-                        ? [
-                            {
-                                kind: "data",
-                                data: {
-                                    "ap2.mandates.PaymentMandate": {
-                                        payment_mandate_contents: {
-                                            payment_mandate_id: "",
-                                            payment_details_id: "",
-                                            payment_details_total: {
-                                                label: "Total",
-                                                amount: { currency: "USD", value: 0 },
-                                                refund_period: 3,
-                                            },
-                                            payment_response: {
-                                                request_id: "",
-                                                method_name: "WEB42_WALLET",
-                                                details: {},
-                                            },
-                                            merchant_agent: agent,
-                                            timestamp: new Date().toISOString(),
-                                        },
-                                        user_authorization: opts.pay,
-                                    },
-                                },
-                            },
-                        ]
-                        : []),
+                    ...paymentParts,
                 ],
                 kind: "message",
                 contextId,
@@ -238,7 +257,7 @@ export const sendCommand = new Command("send")
                 if (firstTokenMs === undefined)
                     firstTokenMs = Date.now() - startTime;
                 for (const part of event.parts)
-                    printPart(part);
+                    printPart(part, agentKey);
             }
             else if (event.kind === "artifact-update") {
                 if (firstTokenMs === undefined)
@@ -248,12 +267,12 @@ export const sendCommand = new Command("send")
                 if (!event.append)
                     process.stdout.write("\n");
                 for (const part of event.artifact.parts ?? [])
-                    printPart(part);
+                    printPart(part, agentKey);
             }
             else if (event.kind === "status-update") {
                 if (event.status?.message) {
                     for (const part of event.status.message.parts ?? [])
-                        printPart(part);
+                        printPart(part, agentKey);
                 }
                 handleTaskState(event.status?.state, event.taskId);
             }
@@ -265,11 +284,11 @@ export const sendCommand = new Command("send")
                 for (const artifact of event.artifacts ?? []) {
                     process.stdout.write("\n");
                     for (const part of artifact.parts ?? [])
-                        printPart(part);
+                        printPart(part, agentKey);
                 }
                 if (event.status?.message) {
                     for (const part of event.status.message.parts ?? [])
-                        printPart(part);
+                        printPart(part, agentKey);
                 }
                 handleTaskState(event.status?.state, event.id);
             }

package/dist/utils/tx-store.d.ts

@@ -0,0 +1,25 @@
+/**
+ * Local transaction store for AP2 payment flows.
+ *
+ * Tracks the lifecycle of a payment transaction:
+ *   cart_received → session_created → approved → sent
+ *
+ * Stored in ~/.config/w42-transactions/config.json via `conf`.
+ */
+export interface StoredTransaction {
+    id: string;
+    cartMandate: Record<string, unknown>;
+    agentSlug: string;
+    sessionCode?: string;
+    signingUrl?: string;
+    paymentMandate?: Record<string, unknown>;
+    status: "cart_received" | "session_created" | "approved" | "sent";
+    createdAt: string;
+}
+export declare function saveTx(opts: {
+    cartMandate: Record<string, unknown>;
+    agentSlug: string;
+}): string;
+export declare function getTx(id: string): StoredTransaction | null;
+export declare function updateTx(id: string, updates: Partial<Omit<StoredTransaction, "id">>): void;
+export declare function listTxs(status?: string): StoredTransaction[];

package/dist/utils/tx-store.js

@@ -0,0 +1,52 @@
+/**
+ * Local transaction store for AP2 payment flows.
+ *
+ * Tracks the lifecycle of a payment transaction:
+ *   cart_received → session_created → approved → sent
+ *
+ * Stored in ~/.config/w42-transactions/config.json via `conf`.
+ */
+import Conf from "conf";
+import crypto from "crypto";
+// ─── Store ───────────────────────────────────────────────
+const store = new Conf({
+    projectName: "w42-transactions",
+    defaults: { transactions: {} },
+});
+function generateId() {
+    return `tx_${crypto.randomBytes(4).toString("hex")}`;
+}
+// ─── Public API ──────────────────────────────────────────
+export function saveTx(opts) {
+    const id = generateId();
+    const tx = {
+        id,
+        cartMandate: opts.cartMandate,
+        agentSlug: opts.agentSlug,
+        status: "cart_received",
+        createdAt: new Date().toISOString(),
+    };
+    const all = store.get("transactions");
+    all[id] = tx;
+    store.set("transactions", all);
+    return id;
+}
+export function getTx(id) {
+    const all = store.get("transactions");
+    return all[id] ?? null;
+}
+export function updateTx(id, updates) {
+    const all = store.get("transactions");
+    const tx = all[id];
+    if (!tx)
+        return;
+    Object.assign(tx, updates);
+    all[id] = tx;
+    store.set("transactions", all);
+}
+export function listTxs(status) {
+    const all = Object.values(store.get("transactions"));
+    if (!status)
+        return all;
+    return all.filter((tx) => tx.status === status);
+}

package/dist/version.d.ts

@@ -1 +1 @@
-export declare const CLI_VERSION = "0.1.17";
+export declare const CLI_VERSION = "0.1.19";

package/dist/version.js

@@ -1 +1 @@
-export const CLI_VERSION = "0.1.17";
+export const CLI_VERSION = "0.1.19";

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@web42/w42",
-  "version": "0.1.17",
+  "version": "0.1.19",
   "description": "CLI for the Web42 Agent Network — discover, register, and communicate with A2A agents",
   "type": "module",
   "bin": {