Add configurable idempotency keys for paid requests to prevent accidental double-charging

[eater-dimmer]

Overview

Clients integrating with x402-protected endpoints may retry requests due to network issues, timeouts, or user actions (e.g., page refresh). Without first-class idempotency support, retries can result in multiple accepted payments for what is logically a single action.

Problem Description

Today, developers must build their own idempotency layer to ensure that retried requests do not incur additional charges. This is error-prone and leads to inconsistent behavior across integrations. A standardized idempotency mechanism would make paid APIs safer and easier to consume.

Expected Behavior

• Clients can include an idempotency key with a paid request.
• Replays with the same idempotency key return the original result without re-charging.
• Idempotency behavior is well-defined and documented.

Steps to Reproduce

1. Send a paid request to an x402-protected endpoint.
2. Retry the same request due to a client-side timeout.
3. Observe that the payment may be processed again without safeguards.

Example code

```ts
fetch("/api/paid-action", {
  headers: {
    "X-402-Payment": "<signed-payment>",
    "Idempotency-Key": "order-123",
  },
});

Proposed Solution

• Add support for an optional Idempotency-Key header in x402 middleware.
• Store the mapping of idempotency key → payment result for a configurable TTL.
• On repeated requests with the same key, return the cached result without re-processing payment.
• Document idempotency guarantees and limitations.

[0xsnackbaker]

I agree with adding Idempotency-Key as an optional header to the spec. This would standardize resource server behavior and prevent clients from having to build custom deduplication logic.

The other alternative could be implementing as extension but http header solution feels more natural.

[mkmkkkkk]

Strong proposal. A few implementation considerations worth discussing:

Deterministic vs. client-supplied keys
Client-supplied Idempotency-Key headers work for server-to-server flows, but for autonomous agents the key should ideally be derivable from the payment itself. ERC-3009 already gives us a unique bytes32 nonce per authorization — combining it with the resource URL creates a natural idempotency key without requiring clients to generate one:

function deriveIdempotencyKey(payload: PaymentPayload): string {
  const { nonce } = payload.payload.authorization;
  const resource = payload.resource;
  return keccak256(
    encodePacked(['bytes32', 'string'], [nonce, resource])
  );
}

This means even a naive retry (resending the same X-Payment header) is automatically idempotent, with zero client-side changes.

TTL considerations
The cache TTL should be at least validBefore - now() from the ERC-3009 authorization — there's no point expiring the idempotency record while the underlying authorization is still valid. After validBefore, both the auth and the cache entry can be safely pruned.

Interaction with #803 (replay prevention)
Idempotency and replay prevention are two sides of the same coin. If the facilitator maintains a nonce registry (as proposed in #803), the idempotency cache becomes a natural extension — same storage, different semantics. A consumed nonce rejects replays; a pending/successful nonce returns the cached result. Worth designing these together rather than as separate mechanisms.

Happy to discuss further — we've been working through these exact trade-offs in PaySentry's control module for deduplicating settlements across multi-agent orchestration scenarios.