paynode-sdk-python 1.4.0__tar.gz → 2.0.0__tar.gz

{paynode_sdk_python-1.4.0 → paynode_sdk_python-2.0.0}/PKG-INFO

@@ -1,6 +1,6 @@
 Metadata-Version: 2.4
 Name: paynode-sdk-python
-Version: 1.4.0
+Version: 2.0.0
 Summary: PayNode Protocol Python SDK for AI Agents
 Author-email: PayNodeLabs <contact@paynode.dev>
 License: MIT
@@ -23,7 +23,7 @@ Dynamic: license-file
 [![Official Documentation](https://img.shields.io/badge/Docs-docs.paynode.dev-00ff88?style=for-the-badge&logo=readthedocs)](https://docs.paynode.dev)
 [![PyPI Version](https://img.shields.io/pypi/v/paynode-sdk-python.svg?style=for-the-badge)](https://pypi.org/project/paynode-sdk-python/)
 
-The official Python SDK for the **PayNode Protocol**. PayNode allows autonomous AI Agents to seamlessly pay for APIs and computational resources using USDC on Base L2, utilizing the standardized HTTP 402 protocol.
+The official Python SDK for the **PayNode Protocol (v3.1)**. PayNode allows autonomous AI Agents to seamlessly pay for APIs and computational resources using USDC on Base L2, utilizing the standardized HTTP 402 protocol with support for both on-chain receipts and off-chain signatures (EIP-3009).
 
 ## 📖 Read the Docs
 
@@ -54,6 +54,17 @@ response = agent.request_gate("https://api.merchant.com/premium-data", method="P
 print(response.json())
 ```
 
+### Key Features (v2.0)
+- **EIP-3009 Support**: Sign payments off-chain using `TransferWithAuthorization`, allowing for gasless or relayer-mediated settlement.
+- **X402 V2 Protocol**: JSON-based handshake for more structured and machine-readable payment instructions.
+- **Dual Flow**: Automatic fallback to V1 (on-chain receipts) for legacy merchant support.
+- **FastAPI Middleware**: Easy-to-use middleware for merchants to protect their API routes.
+
+## 🗺️ Roadmap
+- **TRON Support**: USDT (TRC-20) payment integration.
+- **Solana Support**: SPL USDC/USDT payment integration.
+- **Cross-chain**: Universal settlement via bridges.
+
 ## 🚀 Run the Demo
 
 The SDK includes a complete Merchant/Agent demo in the `examples/` directory.

{paynode_sdk_python-1.4.0 → paynode_sdk_python-2.0.0}/README.md

@@ -3,7 +3,7 @@
 [![Official Documentation](https://img.shields.io/badge/Docs-docs.paynode.dev-00ff88?style=for-the-badge&logo=readthedocs)](https://docs.paynode.dev)
 [![PyPI Version](https://img.shields.io/pypi/v/paynode-sdk-python.svg?style=for-the-badge)](https://pypi.org/project/paynode-sdk-python/)
 
-The official Python SDK for the **PayNode Protocol**. PayNode allows autonomous AI Agents to seamlessly pay for APIs and computational resources using USDC on Base L2, utilizing the standardized HTTP 402 protocol.
+The official Python SDK for the **PayNode Protocol (v3.1)**. PayNode allows autonomous AI Agents to seamlessly pay for APIs and computational resources using USDC on Base L2, utilizing the standardized HTTP 402 protocol with support for both on-chain receipts and off-chain signatures (EIP-3009).
 
 ## 📖 Read the Docs
 
@@ -34,6 +34,17 @@ response = agent.request_gate("https://api.merchant.com/premium-data", method="P
 print(response.json())
 ```
 
+### Key Features (v2.0)
+- **EIP-3009 Support**: Sign payments off-chain using `TransferWithAuthorization`, allowing for gasless or relayer-mediated settlement.
+- **X402 V2 Protocol**: JSON-based handshake for more structured and machine-readable payment instructions.
+- **Dual Flow**: Automatic fallback to V1 (on-chain receipts) for legacy merchant support.
+- **FastAPI Middleware**: Easy-to-use middleware for merchants to protect their API routes.
+
+## 🗺️ Roadmap
+- **TRON Support**: USDT (TRC-20) payment integration.
+- **Solana Support**: SPL USDC/USDT payment integration.
+- **Cross-chain**: Universal settlement via bridges.
+
 ## 🚀 Run the Demo
 
 The SDK includes a complete Merchant/Agent demo in the `examples/` directory.

{paynode_sdk_python-1.4.0 → paynode_sdk_python-2.0.0}/paynode_sdk/__init__.py

@@ -8,7 +8,7 @@ warnings.filterwarnings("ignore", category=DeprecationWarning, module="websocket
 from .middleware import PayNodeMiddleware, x402_gate
 from .verifier import PayNodeVerifier
 from .errors import ErrorCode, PayNodeException
-from .idempotency import IdempotencyStore, MemoryIdempotencyStore
+from .idempotency import IdempotencyStore, MemoryIdempotencyStore, RedisIdempotencyStore
 from .webhook import PayNodeWebhookNotifier, PaymentEvent
 from .client import PayNodeAgentClient
 from .constants import (
@@ -22,7 +22,7 @@ from .constants import (
 
 __all__ = [
     "PayNodeMiddleware", "x402_gate", "PayNodeVerifier", "ErrorCode", "PayNodeException",
-    "IdempotencyStore", "MemoryIdempotencyStore",
+    "IdempotencyStore", "MemoryIdempotencyStore", "RedisIdempotencyStore",
     "PayNodeWebhookNotifier", "PaymentEvent",
     "PayNodeAgentClient",
     "PAYNODE_ROUTER_ADDRESS", "PAYNODE_ROUTER_ADDRESS_SANDBOX",

paynode_sdk_python-2.0.0/paynode_sdk/client.py

@@ -0,0 +1,314 @@
+import time
+import logging
+import threading
+from concurrent.futures import ThreadPoolExecutor, as_completed
+import requests
+from urllib.parse import urlparse
+from eth_account.messages import encode_typed_data
+from web3 import Web3
+from requests.adapters import HTTPAdapter
+from urllib3.util.retry import Retry
+from .constants import PAYNODE_ROUTER_ADDRESS, BASE_USDC_ADDRESS, BASE_USDC_DECIMALS, BASE_RPC_URLS, ACCEPTED_TOKENS, MIN_PAYMENT_AMOUNT
+from .errors import PayNodeException, ErrorCode
+
+logger = logging.getLogger("paynode_sdk.client")
+
+class PayNodeAgentClient:
+    """
+    The main PayNode Client for AI Agents (v3.1).
+    Automatically handles the x402 'Payment Required' handshake.
+    Supports RPC redundancy, EIP-2612 Permit, and EIP-3009 Authorization.
+    """
+    def __init__(self, private_key: str, rpc_urls: list | str = BASE_RPC_URLS):
+        self.rpc_urls = rpc_urls if isinstance(rpc_urls, list) else [rpc_urls]
+        self.w3 = self._init_w3()
+        
+        # Initialize account and discard private key string
+        self.account = self.w3.eth.account.from_key(private_key)
+        self.nonce_lock = threading.Lock()
+        
+        # Setup session
+        self.session = requests.Session()
+        retry_strategy = Retry(
+            total=3,
+            status_forcelist=[429, 500, 502, 503, 504],
+            allowed_methods=["HEAD", "GET", "POST", "PUT", "DELETE", "OPTIONS", "TRACE"]
+        )
+        adapter = HTTPAdapter(max_retries=retry_strategy)
+        self.session.mount("https://", adapter)
+        self.session.mount("http://", adapter)
+
+    def _init_w3(self):
+        """Finds a working RPC from the list concurrently (Faster initialization)."""
+        
+        def _check_rpc(rpc_url):
+            try:
+                temp_w3 = Web3(Web3.HTTPProvider(rpc_url, request_kwargs={'timeout': 3}))
+                if temp_w3.is_connected():
+                    return temp_w3
+                return None
+            except Exception:
+                return None
+
+        with ThreadPoolExecutor(max_workers=min(len(self.rpc_urls), 5)) as executor:
+            future_to_url = {executor.submit(_check_rpc, url): url for url in self.rpc_urls}
+            # Return the first one that succeeds
+            for future in as_completed(future_to_url):
+                w3_instance = future.result()
+                if w3_instance:
+                    logger.debug(f"⚡ [PayNode-PY] Connected to RPC: {future_to_url[future]}")
+                    return w3_instance
+                    
+        raise PayNodeException(ErrorCode.rpc_error, message="All provided RPC nodes are unreachable.")
+
+    def request_gate(self, url: str, method: str = "GET", **kwargs):
+        """The high-level autonomous method handling 402 loop."""
+        return self._request_with_402_retry(method.upper(), url, **kwargs)
+
+    def get(self, url, **kwargs):
+        return self.request_gate(url, "GET", **kwargs)
+
+    def post(self, url, **kwargs):
+        return self.request_gate(url, "POST", **kwargs)
+
+    def _request_with_402_retry(self, method, url, max_retries=3, **kwargs):
+        response = None
+        for _ in range(max_retries):
+            response = self.session.request(method, url, **kwargs)
+            if response.status_code == 402:
+                logger.info("💡 [PayNode-PY] 402 Detected. Analyzing protocol version...")
+                
+                # Check for x402 v2 (JSON body or X-402-Required header)
+                content_type = response.headers.get('Content-Type', '')
+                b64_required = response.headers.get('X-402-Required')
+                order_id = response.headers.get('X-402-Order-Id')
+                
+                body = None
+                if 'application/json' in content_type:
+                    try:
+                        body = response.json()
+                    except Exception as e:
+                        logger.debug(f"⚠️ [PayNode-PY] Failed to parse 402 JSON body: {e}")
+                
+                if not body and b64_required:
+                    try:
+                        import base64
+                        import json
+                        body = json.loads(base64.b64decode(b64_required).decode())
+                    except Exception as e:
+                        logger.warning(f"❌ [PayNode-PY] Failed to decode X-402-Required header: {e}")
+
+                if body and body.get('x402Version') == 2:
+                    logger.info("🚀 [PayNode-PY] x402 v2 detected. Handling autonomous payment...")
+                    if order_id: body['orderId'] = order_id
+                    kwargs = self._handle_x402_v2(body, **kwargs)
+                    continue
+
+                raise PayNodeException(ErrorCode.internal_error, message="Unsupported or malformed 402 response")
+            return response
+        return response
+
+    def _handle_x402_v2(self, requirements, **kwargs):
+        chain_id = self.w3.eth.chain_id
+        caip2_chain_id = f"eip155:{chain_id}"
+
+        # Select suitable requirement
+        requirement = next((req for req in requirements.get('accepts', []) 
+                         if req.get('network') == caip2_chain_id), None)
+
+        if not requirement:
+            raise PayNodeException(ErrorCode.internal_error, message=f"No compatible payment requirement found for network {caip2_chain_id}")
+
+        logger.info(f"💡 [PayNode-PY] Payment request (v2): {requirement['amount']} atomic units of {requirement['asset']} to {requirement['payTo']}")
+        
+        # Dust limit check
+        if int(requirement['amount']) < MIN_PAYMENT_AMOUNT:
+            raise PayNodeException(ErrorCode.amount_too_low, message=f"Payment amount {requirement['amount']} is below the minimum dust limit of {MIN_PAYMENT_AMOUNT}")
+
+        order_id = requirement.get('orderId') or requirements.get('orderId') or urlparse(kwargs.get('url', '')).path
+        
+        payload_data = {}
+        ptype = requirement.get('type', 'onchain')
+
+        if ptype == 'eip3009':
+            valid_after = int(time.time()) - 60
+            valid_before = int(time.time()) + requirement.get('maxTimeoutSeconds', 3600)
+            import os
+            nonce = "0x" + os.urandom(32).hex()
+
+            try:
+                payload_data = self.sign_transfer_with_authorization(
+                    requirement['asset'],
+                    requirement['payTo'],
+                    int(requirement['amount']),
+                    valid_after,
+                    valid_before,
+                    nonce,
+                    requirement.get('extra', {})
+                )
+            except Exception as e:
+                raise PayNodeException(ErrorCode.transaction_failed, message="Failed to sign payment authorization", details=e)
+        else:
+            # type: 'onchain'
+            router_addr = requirement.get('router')
+            if not router_addr:
+                raise PayNodeException(ErrorCode.internal_error, message="On-chain payment required but no router address provided.")
+
+            logger.info(f"⚡ [PayNode-PY] Executing on-chain payment to {requirement['payTo']}...")
+            amount = int(requirement['amount'])
+            asset = requirement['asset']
+            allowance = self._get_allowance(asset, router_addr)
+
+            if allowance >= amount:
+                tx_hash = self.pay(router_addr, asset, requirement['payTo'], amount, order_id)
+            else:
+                tx_hash = self.pay_with_permit(router_addr, asset, requirement['payTo'], amount, order_id)
+            
+            payload_data = {"txHash": tx_hash}
+
+        # Unified Payload for v3.1
+        payment_payload = {
+            "version": "3.1",
+            "type": ptype,
+            "orderId": order_id,
+            "payload": payload_data
+        }
+
+        logger.info(f"✅ [PayNode-PY] {ptype} payment prepared. Retrying request...")
+        
+        import json
+        import base64
+        b64_payload = base64.b64encode(json.dumps(payment_payload).encode()).decode()
+
+        retry_headers = kwargs.get('headers', {}).copy()
+        retry_headers.update({
+            'Content-Type': 'application/json',
+            'X-402-Payload': b64_payload,
+            'X-402-Order-Id': order_id
+        })
+        kwargs['headers'] = retry_headers
+        return kwargs
+
+    def sign_transfer_with_authorization(self, token_addr, to, amount, valid_after, valid_before, nonce, extra=None):
+        extra = extra or {}
+        token_addr = Web3.to_checksum_address(token_addr)
+        to = Web3.to_checksum_address(to)
+        
+        domain = {
+            "name": extra.get("name", "USD Coin"),
+            "version": extra.get("version", "2"),
+            "chainId": self.w3.eth.chain_id,
+            "verifyingContract": token_addr,
+        }
+        
+        types = {
+            "EIP712Domain": [
+                {"name": "name", "type": "string"},
+                {"name": "version", "type": "string"},
+                {"name": "chainId", "type": "uint256"},
+                {"name": "verifyingContract", "type": "address"},
+            ],
+            "TransferWithAuthorization": [
+                {"name": "from", "type": "address"},
+                {"name": "to", "type": "address"},
+                {"name": "value", "type": "uint256"},
+                {"name": "validAfter", "type": "uint256"},
+                {"name": "validBefore", "type": "uint256"},
+                {"name": "nonce", "type": "bytes32"},
+            ],
+        }
+        
+        message = {
+            "from": self.account.address,
+            "to": to,
+            "value": int(amount),
+            "validAfter": int(valid_after),
+            "validBefore": int(valid_before),
+            "nonce": Web3.to_bytes(hexstr=nonce),
+        }
+        
+        structured_data = {
+            "types": types,
+            "domain": domain,
+            "primaryType": "TransferWithAuthorization",
+            "message": message,
+        }
+        
+        signed = self.account.sign_typed_data(full_message=structured_data)
+        
+        return {
+            "signature": signed.signature.hex(),
+            "authorization": {
+                "from": self.account.address,
+                "to": to,
+                "value": str(amount),
+                "validAfter": str(valid_after),
+                "validBefore": str(valid_before),
+                "nonce": nonce
+            }
+        }
+
+    def _get_allowance(self, token_addr, spender_addr):
+        abi = [{"constant": True, "inputs": [{"name": "o", "type": "address"}, {"name": "s", "type": "address"}], "name": "allowance", "outputs": [{"name": "", "type": "uint256"}], "type": "function"}]
+        token = self.w3.eth.contract(address=Web3.to_checksum_address(token_addr), abi=abi)
+        return token.functions.allowance(self.account.address, Web3.to_checksum_address(spender_addr)).call()
+
+    def sign_permit(self, token_addr, spender_addr, amount, deadline=None):
+        if deadline is None:
+            deadline = int(time.time()) + 3600
+        
+        token_addr = Web3.to_checksum_address(token_addr)
+        spender_addr = Web3.to_checksum_address(spender_addr)
+        
+        abi = [
+            {"inputs": [{"name": "o", "type": "address"}], "name": "nonces", "outputs": [{"name": "", "type": "uint256"}], "stateMutability": "view", "type": "function"},
+            {"inputs": [], "name": "name", "outputs": [{"name": "", "type": "string"}], "stateMutability": "view", "type": "function"}
+        ]
+        token = self.w3.eth.contract(address=token_addr, abi=abi)
+        nonce = token.functions.nonces(self.account.address).call()
+        name = token.functions.name().call()
+        chain_id = self.w3.eth.chain_id
+
+        domain = {"name": name, "version": "1", "chainId": chain_id, "verifyingContract": token_addr}
+        message = {"owner": self.account.address, "spender": spender_addr, "value": amount, "nonce": nonce, "deadline": deadline}
+        types = {
+            "EIP712Domain": [
+                {"name": "name", "type": "string"}, {"name": "version", "type": "string"},
+                {"name": "chainId", "type": "uint256"}, {"name": "verifyingContract", "type": "address"},
+            ],
+            "Permit": [
+                {"name": "owner", "type": "address"}, {"name": "spender", "type": "address"},
+                {"name": "value", "type": "uint256"}, {"name": "nonce", "type": "uint256"},
+                {"name": "deadline", "type": "uint256"},
+            ],
+        }
+        structured_data = {"types": types, "domain": domain, "primaryType": "Permit", "message": message}
+        signed = self.account.sign_typed_data(full_message=structured_data)
+        return {"v": signed.v, "r": Web3.to_bytes(signed.r).rjust(32, b'\0'), "s": Web3.to_bytes(signed.s).rjust(32, b'\0'), "deadline": deadline}
+
+    def pay_with_permit(self, router_addr, token_addr, merchant_addr, amount, order_id):
+        sig = self.sign_permit(token_addr, router_addr, amount)
+        router_abi = [{"inputs": [{"name": "payer", "type": "address"}, {"name": "token", "type": "address"}, {"name": "merchant", "type": "address"}, {"name": "amount", "type": "uint256"}, {"name": "orderId", "type": "bytes32"}, {"name": "deadline", "type": "uint256"}, {"name": "v", "type": "uint8"}, {"name": "r", "type": "bytes32"}, {"name": "s", "type": "bytes32"}], "name": "payWithPermit", "outputs": [], "stateMutability": "nonpayable", "type": "function"}]
+        router = self.w3.eth.contract(address=Web3.to_checksum_address(router_addr), abi=router_abi)
+        order_id_bytes = self.w3.keccak(text=order_id)
+        current_gas_price = int(self.w3.eth.gas_price * 1.2)
+        with self.nonce_lock:
+            nonce = self.w3.eth.get_transaction_count(self.account.address, 'pending')
+            tx = router.functions.payWithPermit(self.account.address, Web3.to_checksum_address(token_addr), Web3.to_checksum_address(merchant_addr), amount, order_id_bytes, sig["deadline"], sig["v"], sig["r"], sig["s"]).build_transaction({'from': self.account.address, 'nonce': nonce, 'gas': 300000, 'gasPrice': current_gas_price})
+            signed_tx = self.account.sign_transaction(tx)
+            tx_h = self.w3.eth.send_raw_transaction(signed_tx.raw_transaction)
+        self.w3.eth.wait_for_transaction_receipt(tx_h, timeout=60)
+        return self.w3.to_hex(tx_h)
+
+    def pay(self, router_addr, token_addr, merchant_addr, amount, order_id):
+        router_abi = [{"inputs": [{"name": "token", "type": "address"}, {"name": "merchant", "type": "address"}, {"name": "amount", "type": "uint256"}, {"name": "orderId", "type": "bytes32"}], "name": "pay", "outputs": [], "stateMutability": "nonpayable", "type": "function"}]
+        router = self.w3.eth.contract(address=Web3.to_checksum_address(router_addr), abi=router_abi)
+        order_id_bytes = self.w3.keccak(text=order_id)
+        current_gas_price = int(self.w3.eth.gas_price * 1.2)
+        with self.nonce_lock:
+            nonce = self.w3.eth.get_transaction_count(self.account.address, 'pending')
+            tx = router.functions.pay(Web3.to_checksum_address(token_addr), Web3.to_checksum_address(merchant_addr), amount, order_id_bytes).build_transaction({'from': self.account.address, 'nonce': nonce, 'gas': 200000, 'gasPrice': current_gas_price})
+            signed_tx = self.account.sign_transaction(tx)
+            tx_h = self.w3.eth.send_raw_transaction(signed_tx.raw_transaction)
+        self.w3.eth.wait_for_transaction_receipt(tx_h, timeout=60)
+        return self.w3.to_hex(tx_h)

paynode_sdk_python-2.0.0/paynode_sdk/idempotency.py

@@ -0,0 +1,67 @@
+import time
+from abc import ABC, abstractmethod
+from typing import Dict, Optional
+
+class IdempotencyStore(ABC):
+    @abstractmethod
+    async def check_and_set(self, tx_hash: str, ttl_seconds: int) -> bool:
+        """
+        Returns True if hash was newly set, False if already exists and not expired.
+        """
+        pass
+
+    @abstractmethod
+    async def delete(self, tx_hash: str) -> None:
+        """
+        Deletes a transaction hash from the store.
+        Used for rolling back a lock if subsequent verification fails.
+        """
+        pass
+
+class MemoryIdempotencyStore(IdempotencyStore):
+    def __init__(self):
+        self.cache: Dict[str, float] = {}
+
+    async def check_and_set(self, tx_hash: str, ttl_seconds: int) -> bool:
+        now = time.time()
+        expiry = self.cache.get(tx_hash)
+
+        if expiry and expiry > now:
+            return False
+
+        self.cache[tx_hash] = now + ttl_seconds
+        self._cleanup()
+        return True
+
+    async def delete(self, tx_hash: str) -> None:
+        self.cache.pop(tx_hash, None)
+
+    def _cleanup(self):
+        now = time.time()
+        # Simple cleanup logic: remove expired entries
+        expired_keys = [k for k, v in self.cache.items() if v <= now]
+        for k in expired_keys:
+            del self.cache[k]
+
+
+class RedisIdempotencyStore(IdempotencyStore):
+    """
+    Production-ready implementation using Redis.
+    Uses `SET txHash 1 NX EX ttlSeconds` for atomic check-and-set.
+
+    Requires: pip install redis
+    Usage:
+        import redis
+        store = RedisIdempotencyStore(redis.Redis(host='localhost', port=6379))
+    """
+    def __init__(self, redis_client, prefix: str = "paynode:tx:"):
+        self.redis = redis_client
+        self.prefix = prefix
+
+    async def check_and_set(self, tx_hash: str, ttl_seconds: int) -> bool:
+        key = f"{self.prefix}{tx_hash}"
+        return bool(self.redis.set(key, 1, ex=ttl_seconds, nx=True))
+
+    async def delete(self, tx_hash: str) -> None:
+        key = f"{self.prefix}{tx_hash}"
+        self.redis.delete(key)

paynode_sdk_python-2.0.0/paynode_sdk/middleware.py

@@ -0,0 +1,150 @@
+import time
+import base64
+import json
+import logging
+from typing import Optional, Callable, Any
+from fastapi import Request, Response
+from fastapi.responses import JSONResponse
+from .verifier import PayNodeVerifier
+from .errors import ErrorCode
+from .idempotency import IdempotencyStore
+from .constants import (
+    BASE_RPC_URLS, 
+    PAYNODE_ROUTER_ADDRESS, 
+    BASE_USDC_ADDRESS, 
+    BASE_USDC_DECIMALS
+)
+
+from starlette.middleware.base import BaseHTTPMiddleware
+
+logger = logging.getLogger("paynode_sdk.middleware")
+
+class PayNodeMiddleware(BaseHTTPMiddleware):
+    def __init__(
+        self,
+        app: Any,
+        merchant_address: str,
+        price: str,
+        contract_address: str = PAYNODE_ROUTER_ADDRESS,
+        chain_id: int = 8453,
+        currency: str = "USDC",
+        token_address: str = BASE_USDC_ADDRESS,
+        decimals: int = BASE_USDC_DECIMALS,
+        rpc_urls: list | str = BASE_RPC_URLS,
+        store: Optional[IdempotencyStore] = None,
+        generate_order_id: Optional[Callable[[Request], str]] = None,
+        **kwargs
+    ):
+        super().__init__(app)
+        # The Verifier holds the state of the idempotency store
+        self.verifier = PayNodeVerifier(rpc_urls=rpc_urls, contract_address=contract_address, chain_id=chain_id, store=store)
+        self.merchant_address = merchant_address
+        self.contract_address = contract_address
+        self.currency = currency
+        self.token_address = token_address
+        self.price = price
+        self.decimals = decimals
+        self.chain_id = chain_id
+        self.generate_order_id = generate_order_id or (lambda r: f"agent_py_{int(time.time() * 1000)}")
+
+        self.amount_int = int(float(price) * (10 ** decimals))
+        self.description = kwargs.get('description', "Protected Resource")
+        self.max_timeout_seconds = kwargs.get('max_timeout_seconds', 3600)
+
+    async def dispatch(self, request: Request, call_next):
+        v2_payload_header = request.headers.get('x-402-payload')
+        order_id = request.headers.get('x-402-order-id')
+
+        if not order_id:
+            order_id = self.generate_order_id(request)
+
+        # Handle x402 v2 Unified Payload
+        unified_payload = None
+        if v2_payload_header:
+            try:
+                unified_payload = json.loads(base64.b64decode(v2_payload_header.encode()).decode())
+            except Exception as e:
+                logger.error(f"❌ [PayNode-Middleware] Failed to decode X-402-Payload header: {e}")
+
+        if unified_payload:
+            try:
+                result = await self.verifier.verify(
+                    unified_payload,
+                    {
+                        "merchantAddress": self.merchant_address,
+                        "tokenAddress": self.token_address,
+                        "amount": str(self.amount_int),
+                        "orderId": order_id
+                    },
+                    unified_payload.get("payload", {}).get("extra", {}) if unified_payload.get("type") == "eip3009" else {}
+                )
+                if result.get("isValid"):
+                    request.state.paynode = {"unified_payload": unified_payload, "order_id": order_id}
+                    return await call_next(request)
+                else:
+                    err = result.get("error")
+                    return JSONResponse(
+                        status_code=403,
+                        content={
+                            "error": "Forbidden",
+                            "code": err.code if hasattr(err, 'code') else ErrorCode.invalid_receipt,
+                            "message": str(err)
+                        }
+                    )
+            except Exception as e:
+                logger.error(f"⚠️ [PayNode-Middleware] Failed to process x402 v2 payload: {e}")
+
+        # No valid payment found, return 402 with X-402-Required
+        v2_response = {
+            "x402Version": 2,
+            "error": "Payment Required by PayNode",
+            "resource": {
+                "url": str(request.url),
+                "description": self.description,
+                "mimeType": request.headers.get("accept", "application/json")
+            },
+            "accepts": [
+                {
+                    "scheme": "exact",
+                    "type": "eip3009",
+                    "network": f"eip155:{self.chain_id}",
+                    "amount": str(self.amount_int),
+                    "asset": self.token_address,
+                    "payTo": self.merchant_address,
+                    "maxTimeoutSeconds": self.max_timeout_seconds,
+                    "extra": {
+                        "name": self.currency,
+                        "version": "2"
+                    }
+                },
+                {
+                    "scheme": "exact",
+                    "type": "onchain",
+                    "network": f"eip155:{self.chain_id}",
+                    "amount": str(self.amount_int),
+                    "asset": self.token_address,
+                    "payTo": self.merchant_address,
+                    "maxTimeoutSeconds": self.max_timeout_seconds,
+                    "router": self.contract_address
+                }
+            ]
+        }
+
+        b64_required = base64.b64encode(json.dumps(v2_response).encode()).decode()
+
+        headers = {
+            'X-402-Required': b64_required,
+            'X-402-Order-Id': order_id,
+        }
+        return JSONResponse(status_code=402, headers=headers, content=v2_response)
+
+def x402_gate(
+    merchant_address: str, 
+    price: str,
+    **kwargs
+) -> Any:
+    """
+    Semantic helper to mirror JS x402Gate. 
+    Usage: app.add_middleware(x402_gate, merchant_address=..., price=...)
+    """
+    return lambda app: PayNodeMiddleware(app, merchant_address=merchant_address, price=price, **kwargs)