Gatefare is an x402 payment proxy for HTTP APIs. Publishers register an endpoint and set a per-request price in USDC. Consumers (typically AI agents) pay per call via the x402 protocol. Settlement is non-custodial: 90% to the publisher and 10% platform fee, routed through an immutable 0xSplits contract on Base.

Do I need an API key to use Gatefare?

No. Consumers pay per request with a signed USDC transfer in an X-Payment header — no API keys, no OAuth, no subscription. Publishers use a Personal Access Token (PAT) only for management endpoints like registering or editing their APIs.

How does Gatefare stay non-custodial?

Every registered API gets a deterministic 0xSplits address. The split contract is deployed with ownerAddress: 0x0 — nobody (us, Coinbase, or the publisher) can change recipients after deployment. distribute() is permissionless, so publishers can withdraw directly on-chain even if Gatefare is offline.

Which chains and assets does Gatefare support?

Base mainnet (chain id 8453) for production, Base Sepolia (chain id 84532) for testing. All payments settle in USDC.

What is the platform fee?

10% per paid request, enforced on-chain by the immutable 0xSplits contract. 90% goes directly to the publisher's wallet. Registration is free.

Does Gatefare screen for sanctions?

Yes. Payer wallets are screened against OFAC, EU, and UN consolidated sanctions lists and against Chainalysis risk indicators on every paid request. Payments from screened wallets are rejected before reaching the upstream API.

How fast is integration?

For consumers: one HTTP round-trip. The first call to a proxy URL returns HTTP 402 with the price; x402-aware clients (Coinbase AgentKit, the reference SDK) sign a USDC transfer automatically and retry. For publishers with a Base wallet already set up: under a minute — paste your upstream URL, set a price, receive the proxy URL.

Can I manage my APIs programmatically?

Yes. A Personal Access Token with the write:catalog scope lets you register and edit APIs via REST. write:sensitive is needed for deletion and for calling distribute(). Full scope table and endpoint reference are in the Docs page.

Developer docs

Integrate in one minute.

Gatefare is an x402 payment proxy for APIs. AI agents pay USDC per request; publishers get 90% split on-chain. Two tracks — one if you're an agent (buying), one if you're a developer (selling or integrating). Complete endpoint reference at the bottom.

0 · Before you start

Four facts everyone hits on their first call. Read once, then copy any snippet below without guessing.

Base URL: https://gatefare.io. All paths in this doc are relative to it. Self-hosted deployments swap the origin — the paths and shapes are identical.
CSRF header (required): Every non-GET request must carry X-Gatefare-Request: 1 (any non-empty value works). Without it the server replies 403 · CSRF_HEADER_REQUIRED. This is a simple anti-CSRF gate: browsers can't forge custom headers cross-origin. All curl / fetch / httpx examples on this page already include it.
Auth header: Pass a JWT or a PAT in Authorization: Bearer <token>. PATs are recommended for scripts (prefix gfpat_, never expire by default). Details in step II / III.
Rate limits: 120/min per IP on catalog reads · 60/min per IP on the payment proxy · 20/15min per IP on auth endpoints. Responses on the 429 path carry standard RateLimit-* headers so clients can back off automatically.
Network: Production is Base mainnet (eip155:8453). Test environment is Base Sepolia (eip155:84532) — free USDC from Circle faucet. Testnet APIs are hidden from the public catalog by default; pass ?includeTestnet=1 to see them.
Errors: Every error response is JSON: { "error": "message", "code": "MACHINE_CODE" }. Stable machine codes at the bottom of this page — switch on them, not the message string.

What you need: a wallet on Base (chain ID 8453) with some USDC for paying APIs. Any EVM-compatible wallet works — viem, ethers, Coinbase AgentKit, MetaMask, private-key-only bots.

Sign in with your wallet (SIWE)

Gatefare uses EIP-4361 Sign-In With Ethereum. Your agent signs one message; that signature doubles as Terms acceptance and authentication. No email, no password.

python

# pip install requests eth-account
import requests
from eth_account import Account
from eth_account.messages import encode_defunct

WALLET_KEY = "0xYOUR_PRIVATE_KEY"   # Your Base wallet
BASE_URL = "https://gatefare.io"
H = {"Content-Type": "application/json", "X-Gatefare-Request": "1"}

account = Account.from_key(WALLET_KEY)
# 1. Ask for a nonce.
r = requests.post(f"{BASE_URL}/api/auth/siwe/nonce", headers=H, json={
    "wallet":  account.address,
    "chainId": 8453,  # Base mainnet
})
r.raise_for_status()
chal = r.json()
print(f"ToS version you're accepting by signing: {chal['tosVersion']}")

# 2. Sign the exact message (includes ToS acceptance).
msg = encode_defunct(text=chal["message"])
signed = Account.sign_message(msg, private_key=WALLET_KEY)

# 3. Verify → receive JWT + user.
r = requests.post(f"{BASE_URL}/api/auth/siwe/verify", headers=H, json={
    "wallet":    account.address,
    "signature": signed.signature.hex(),
})
r.raise_for_status()
session = r.json()
print(f"Logged in as user {session['user']['id']}, JWT: {session['token'][:20]}…")

Mint a long-lived access token (PAT)

The JWT from step 1 expires in 7 days. For long-running agents, exchange it immediately for a personal access token (gfpat_…). Store it securely — if it leaks, revoke from the dashboard.

bash

curl -X POST https://gatefare.io/api/auth/pat \
  -H "Authorization: Bearer $JWT" \
  -H "Content-Type: application/json" \
  -H "X-Gatefare-Request: 1" \
  -d '{"label":"agent-prod","scopes":["read"],"expiresInDays":365}'
# → { "token": "gfpat_abc123…", "summary": { "id": 1, "label": "agent-prod", ... } }
#
# Save the "token" string in a secret manager. You can't retrieve it again.
# Use it exactly like a JWT:
curl https://gatefare.io/api/auth/me \
  -H "Authorization: Bearer gfpat_abc123…"

Tokens carry the gfpat_ prefix so scanners like gitleaks flag leaks in public repos instantly. Choose scopes carefully — see the PAT scopes table.

Discover APIs in the marketplace

Browse every public API with a single HTTP GET. Filter by category, price, or full-text search. No auth required for catalog reads.

bash

# Browse by category + price
curl "https://gatefare.io/api/catalog?category=ai-ml&price_max=0.05&sort=popular"

# Full-text search
curl "https://gatefare.io/api/catalog?q=weather&sort=popular"

# Autocomplete suggestions (up to 8)
curl "https://gatefare.io/api/catalog/search/suggest?q=weath"

# Trending this week (system-curated collection)
curl "https://gatefare.io/api/catalog/collections/system:trending"

# Category list with API counts
curl "https://gatefare.io/api/catalog/categories"

See the public marketplace and llms.txt (LLM-friendly site map) for structured discovery.

Pay per request with x402

Call the proxy URL. First call returns 402 Payment Required with the full x402 v2 payload. Second call, with an X-Payment header (base64-encoded signed USDC transfer), returns the upstream response. x402 clients handle this handshake automatically.

python

# pip install x402-client requests
from x402.client import PaymentClient

client = PaymentClient(wallet_private_key="0xYOUR_KEY", chain_id=8453)
response = client.get("https://gatefare.io/p/alice/weather")
# First call returns 402; client auto-signs USDC transfer + retries.
# Returns the upstream response body.
print(response.json())

The proxy caps every payment at 1.1× the posted price server-side; larger X-Payment amounts are rejected. This protects agents from a malicious publisher raising the price between discovery and sign.

Budget limits — don't overspend

Every x402-aware client should also enforce its own budget:

Per-call cap: reject any API whose price exceeds your max.
Per-task budget: sum costs across all calls, abort when you hit the limit.
Balance check: read your wallet USDC balance before each call if you're on a tight budget.
Retry with ceiling: if you see 402 after a successful signing round, the price probably changed — refresh the quote, don't silently re-sign.

Coinbase AgentKit works out of the box

AgentKit ships with an x402 helper. Point it at https://gatefare.io/p/…, supply the signer, done.

PAT scopes

Token scopes.

Scopes are monotonic — each one implies everything weaker. Pick the narrowest one your use case needs; you can always mint a second token if you need more.

Scope	Implies	What it unlocks
read	—	Catalog reads, /my/* listing, balance / revenue views.
write:catalog	read	Register APIs, edit non-sensitive fields (name, description, categories, tags, price).
write:sensitive	read, write:catalog	Delete APIs, trigger distribute(), edit owner wallet / URL.
write:wallet	—	Rotate your session wallet. Non-delegatable (a child PAT can't carry this).
admin:pat	—	Mint + revoke additional PATs. Non-delegatable.
full	everything above	God-mode. Use only for ephemeral local testing.

Errors

Stable error codes.

All error responses are JSON with a human error string and a stable machine code. Switch on code; the string may be tuned for clarity.

Status	Code	What it means · how to fix
403	CSRF_HEADER_REQUIRED	Missing `X-Gatefare-Request`. Add the header to every non-GET request.
401	UNAUTHENTICATED	No valid JWT/PAT. Check `Authorization: Bearer …`.
403	INSUFFICIENT_SCOPE	Your PAT lacks the scope the endpoint needs. Mint a new PAT with a stronger scope.
400	HANDLE_REQUIRED	Your account has no publisher handle. PATCH `/api/auth/me` with `{ handle: "..." }`.
400	WALLET_SIGNATURE_REQUIRED	`ownerWallet` differs from your linked wallet. Call `/api/wallet-challenge` → sign → resubmit.
400	WALLET_SIGNATURE_INVALID	Signature didn't recover to `ownerWallet`. Check EIP-191 personal_sign, not typed-data.
400	TARGET_URL_HAS_QUERY	`targetUrl` contains `?` or `#`. Move auth into the `headers` field instead.
402	PAYMENT_REQUIRED	Expected. Parse the `accepts` array, sign an EIP-3009 USDC transfer, retry with `X-Payment`.
409	SLUG_TAKEN	Another publisher already owns this `urlName` under your handle. Pick a new one.
429	RATE_LIMITED	You hit the per-IP ceiling. Back off per the `RateLimit-Reset` header.

Reference

Complete endpoint reference.

Every route exposed by the platform. Scopes marked apply to PATs; JWT sessions satisfy any scope.

Public

No auth required. Rate-limited per IP.

Method	Path	Scope	Summary
GET	/api/info	—	Platform info — version, network, public stats.
GET	/api/networks	—	Supported networks (Base mainnet, Base Sepolia).
GET	/api/landing	—	Landing-page payload (featured, latest, categories).
GET	/api/catalog	—	Browse APIs. Filters: category, price_max, q, sort.
GET	/api/catalog/:slug	—	Single API detail by slug.
GET	/api/catalog/:handle/:urlName	—	Single API by handle+urlName (canonical form).
GET	/api/catalog/search/suggest	—	Autocomplete suggestions — up to 8.
GET	/api/catalog/categories	—	Category list with API counts.
GET	/api/catalog/collections	—	Public collections (published only).
GET	/api/catalog/collections/:slug	—	Collection detail.
GET	/api/publishers/:handle	—	Public publisher profile.

Auth

Email+password or SIWE. All mutations require the CSRF header.

Method	Path	Scope	Summary
POST	/api/auth/register	—	Create account. Requires acceptTerms: true.
POST	/api/auth/login	—	Email+password login → JWT.
POST	/api/auth/logout	—	Clear session cookie.
POST	/api/auth/siwe/nonce	—	Request a SIWE challenge for a wallet.
POST	/api/auth/siwe/verify	—	Submit signed SIWE message → JWT.
GET	/api/auth/me	read	Current user profile.
PATCH	/api/auth/me	read	Update profile. Set handle here.
POST	/api/auth/verify-email	read	Trigger / verify email verification.
POST	/api/auth/forgot-password	—	Email a password-reset link.
POST	/api/auth/reset-password	—	Submit new password with reset token.
POST	/api/auth/2fa/setup	read	Start TOTP 2FA enrolment.
POST	/api/auth/2fa/enable	read	Finish TOTP 2FA enrolment.
POST	/api/auth/2fa/disable	read (fresh)	Disable TOTP 2FA (requires recent auth).
GET	/api/auth/me/audit	read	Your own audit log (logins, PAT mints, etc.).
GET	/api/auth/me/export	read	JSON data export (GDPR / portability).
POST	/api/auth/me/delete	read (fresh)	Account deletion.

Personal Access Tokens

Long-lived bearer tokens for scripts and CI.

Method	Path	Scope	Summary
POST	/api/auth/pat	—	Create a PAT. Body: { label, scopes[], expiresInDays }.
GET	/api/auth/pat	read	List your PAT metadata (token strings never returned again).
DELETE	/api/auth/pat/:id	read	Revoke a PAT immediately.

Publisher

Method	Path	Scope	Summary
POST	/api/wallet-challenge	read	Request an EIP-191 message to prove wallet ownership.
POST	/api/register	write:catalog	Register a new API. Returns proxyUrl + splitAddress.
GET	/api/my	read	List your APIs.
GET	/api/my/:slug	read	Single API — your ownership view.
PATCH	/api/my/:slug	write:catalog*	Update API. Sensitive fields bump the requirement to write:sensitive.
DELETE	/api/my/:slug	write:sensitive	Soft-delete (30-day undelete window).
GET	/api/my/:slug/balance	read	On-platform accumulated balance.
GET	/api/my/:slug/split-balance	read	USDC currently sitting in the split contract.
GET	/api/my/:slug/revenue-series	read	30-day revenue series for charting.
GET	/api/my/:slug/requests	read	Paginated paid-request log.
POST	/api/my/:slug/withdraw	write:sensitive	Alias for distribute(), for legacy clients.
POST	/api/my/:slug/distribute	write:sensitive	Call distribute() on the split contract on-chain.
GET	/api/notifications	read	Your notifications feed.
GET	/api/notifications/unread-count	read	Badge counter for the nav bell.

Payment proxy

The consumer side of x402. No Gatefare auth; pay via USDC signature.

Method	Path	Scope	Summary
ANY	/p/:handle/:urlName	—	Canonical proxy URL. First call: 402 + x402 payload. Second: upstream.
ANY	/p/:slug	—	Legacy form. Redirects to the canonical /:handle/:urlName.

Trust & safety

Abuse reports and public transparency data.

Method	Path	Scope	Summary
POST	/api/abuse/report	—	Submit abuse or DMCA notice. Rate-limited 5/hour per IP.
GET	/api/abuse/transparency	—	Public transparency stats — report volumes, enforcement counts.