Skip to main content
Once a Payment Plan is purchased, user(s) can query all the AI Agents linked to that plan. For identifying the user as a valid subscriber, they need to send HTTP requests to the AI Agent and include a valid Access Token. This is sent using the payment-signature HTTP header (per the x402 protocol).
Nevermined Proxy instances are standard HTTP Proxies in charge of authorizing users trying to access AI Agents or Services.
Once a user is a subscriber, sending a request is quite simple.

Get the AI Agent or Service Access Token

The access token is minted against a delegation — a one-time authorization that lets the facilitator spend on the subscriber’s behalf, up to a limit. Create the delegation once with createDelegation / create_delegation, then reference it by delegationId whenever you mint a token. 
// Create a delegation once — it authorizes spend up to a limit, reusable across tokens.
const { delegationId } = await payments.delegation.createDelegation({
  provider: 'erc4337',       // 'stripe' | 'braintree' | 'visa' for fiat plans
  spendingLimitCents: 10000, // $100 budget
  durationSecs: 604800,      // 7 days
  currency: 'usdc',          // 'usd' for fiat plans
})

const { accessToken } = await payments.x402.getX402AccessToken(planId, agentId, {
  scheme: 'nvm:erc4337',       // 'nvm:card-delegation' for fiat plans
  delegationConfig: { delegationId },
})
// OUTPUT: accessToken is a JWT string containing X402 v2 payment credentials
Is this a fiat plan or a crypto plan? It determines the provider/currency above and whether you must pass a scheme. The direct getX402AccessToken call defaults to crypto (nvm:erc4337) — for card plans pass scheme: 'nvm:card-delegation'. See Order Plans for how to detect a plan’s type before you pay.

Sending a query to the AI Agent

Once you have a valid X402 access token, you can query the AI Agent by making a standard HTTP request with the token in the payment-signature header. This request must be sent directly to the Agent endpoint (the Agent API description is in the Agent Metadata).
Because Nevermined authorizes standard HTTP requests, they can be used to protect any kind of AI Agent or Service exposing an HTTP API.

Using cURL

export AGENT_ACCESS_TOKEN="eJyNj0sKgDAURP9lJQ..."

curl -k -X POST \
  -H "Content-Type: application/json" \
  -H "payment-signature: $AGENT_ACCESS_TOKEN" \
  -d '{"query": "hey there"}' \
  https://my.agent.io/prompt

Using Programming Languages

const agentHTTPOptions = {
  method: 'POST',
  headers: {
    Accept: 'application/json',
    'Content-Type': 'application/json',
    'payment-signature': accessToken,
  },
  body: JSON.stringify({
    query: "What's the weather like today?",
    parameters: {
      location: "New York"
    }
  })
}

const response = await fetch(new URL('https://my.agent.io/prompt'), agentHTTPOptions)
const result = await response.json()
console.log('Agent response:', result)

Complete Query Flow Example

Here’s a complete example showing the full flow from getting access tokens to querying an agent: 
async function queryAIAgent(planId: string, agentId: string, delegationId: string, query: string) {
  try {
    // Step 1: Mint an X402 access token against a delegation you created once
    const { accessToken } = await payments.x402.getX402AccessToken(planId, agentId, {
      scheme: 'nvm:erc4337',       // 'nvm:card-delegation' for fiat plans
      delegationConfig: { delegationId },
    })

    if (!accessToken) {
      throw new Error('No access token received - check if plan is valid and has balance')
    }

    // Step 2: Get agent details
    const agent = await payments.agents.getAgent(agentId)
    const endpoint = agent.endpoints[0] // Use first endpoint

    // Extract URL from endpoint object (endpoints have HTTP method as key)
    const method = Object.keys(endpoint)[0] // e.g., 'POST'
    const url = endpoint[method] // The actual URL

    // Step 3: Make the request
    const response = await fetch(url, {
      method: method,
      headers: {
        'Content-Type': 'application/json',
        'payment-signature': accessToken
      },
      body: JSON.stringify({ query })
    })

    if (response.status === 402) {
      throw new Error('Payment required - insufficient credits or plan expired')
    }

    if (!response.ok) {
      throw new Error(`Agent request failed: ${response.status} ${response.statusText}`)
    }

    const result = await response.json()

    // Step 4: Check remaining balance (optional)
    const balance = await payments.plans.getPlanBalance(planId)
    console.log(`Remaining credits: ${balance.balance}`)

    return result

  } catch (error) {
    console.error('Query failed:', error.message)
    throw error
  }
}

// Usage — create the delegation once, then reuse its id across queries
const { delegationId } = await payments.delegation.createDelegation({
  provider: 'erc4337', spendingLimitCents: 10000, durationSecs: 604800, currency: 'usdc',
})
const result = await queryAIAgent(planId, agentId, delegationId, "Explain quantum computing")
console.log('AI Response:', result)

Handling Different Response Types

AI agents can return various types of responses. Here’s how to handle them: 
async function handleAgentResponse(response: Response) {
  const contentType = response.headers.get('content-type')
  
  if (contentType?.includes('application/json')) {
    // JSON response (most common)
    return await response.json()
  } else if (contentType?.includes('text/')) {
    // Text response
    return await response.text()
  } else if (contentType?.includes('image/')) {
    // Image response
    const blob = await response.blob()
    return URL.createObjectURL(blob)
  } else {
    // Binary or other response
    return await response.arrayBuffer()
  }
}

Error Handling and Status Codes

Request was successful and credits were deducted from the user’s balance
Invalid or missing access token. User needs to get a new token
User doesn’t have sufficient credits or their plan has expired
User has access but the specific endpoint is not allowed for their plan
Too many requests. User should wait before trying again
Agent internal error. This doesn’t consume credits

Best Practices

Token Management

  • Cache access tokens (they’re valid for a limited time)
  • Refresh tokens when they expire
  • Never expose tokens in client-side logs

Error Handling

  • Always check response status codes
  • Implement retry logic for network failures
  • Handle 402 responses by prompting for plan renewal

Performance

  • Reuse access tokens across multiple requests
  • Implement request timeouts
  • Use appropriate HTTP methods (GET, POST)

Monitoring

  • Track credit usage patterns
  • Monitor response times and error rates
  • Set up alerts for low credit balances

Advanced Usage Patterns

Batch Requests

For efficiency, you can send multiple queries in a single request: 
const batchQuery = {
  requests: [
    { id: '1', query: 'What is AI?' },
    { id: '2', query: 'Explain machine learning' },
    { id: '3', query: 'Define neural networks' }
  ]
}

const response = await fetch(agentEndpoint, {
  method: 'POST',
  headers: {
    'Content-Type': 'application/json',
    'payment-signature': accessToken
  },
  body: JSON.stringify(batchQuery)
})

Streaming Responses

For long-running AI operations, you might want to handle streaming responses: 
const response = await fetch(agentEndpoint, {
  method: 'POST',
  headers: {
    'Content-Type': 'application/json',
    'payment-signature': accessToken,
    'Accept': 'text/event-stream'
  },
  body: JSON.stringify({ query, stream: true })
})

const reader = response.body?.getReader()
if (reader) {
  while (true) {
    const { done, value } = await reader.read()
    if (done) break
    
    const chunk = new TextDecoder().decode(value)
    console.log('Streaming chunk:', chunk)
  }
}

Next Steps

Now that you know how to query AI agents, learn how to:

Build AI Agents

Learn how to create AI agents that accept paid requests

Handle Requests

Learn how to process requests and manage responses