What the flow looks like
- The user expresses an intent in your app (e.g. “find and buy a pair of running shoes under $150 by Friday”).
- Your app creates an Intelligent Purchase Authorisation (IPA) that encodes the intent and the agent’s task.
- The user approves the IPA and signs a with the
sr:us:pint:spend:executescope, authorising the agent to transact up to a capped amount and for a bounded window. - The agent uses its own P-256 agent signer to qualify candidates, assemble a purchase, and sign the final execution.
- The merchant verifies the PINT JWT (and, for spend, the underlying EIP-712 signature) at checkout and proceeds.
Which Sumvin primitives back it
- IPAs coordinate the agent task lifecycle — creation, preflight, execute, completion. See the IPA guide and IPA lifecycle.
- Scopes — in particular
sr:us:pint:spend:execute— describe what an agent is authorised to do. See the scopes reference. - Agent signers are per-user P-256 keys held for the agent to sign transactions. See agent signers.
- Enhanced verification at checkout requires the merchant to verify both the JWT and the EIP-712 PINT signature. See verification tiers.
Where to start
| Concern | Where to go | When |
|---|---|---|
| Orchestration | IPA guide | Running an agent-driven action end-to-end |
| Capability envelope | Scopes reference | Scoping what the agent is allowed to do |
| Cryptographic identity | Agent signers | When the agent signs on the user’s behalf |
| Merchant boundary | Verification tiers | Standard vs Enhanced at checkout |
Related
- Agentic Commerce overview
- Perpetual Search quickstart
- Verify an enhanced PINT
- Payment request links — agent-fulfillable payment primitive
- Global x402 acceptance — persistent, SRI-resolvable payment target for agent-to-agent settlement