Creating Endpoints

Endpoints are the core of x402 Studio. They turn your APIs into paid services that accept crypto payments automatically.

Endpoint Types

Pay-Per-Request

Charge a fixed price for each API call. Best for:

High-value API responses
Compute-intensive operations
Premium data access

Credit-Based

Sell credit packs upfront. Best for:

High-volume APIs
Subscription-like access
Lighter per-call pricing

Creating a New Endpoint

Step 1: Navigate to Endpoints

Go to Dashboard → Endpoints and click New Endpoint.

Step 2: Basic Information

Field	Description
Name	A descriptive name for your endpoint
Description	What this endpoint does (shown to users)
Origin URL	Your actual API endpoint URL

Step 3: Set Your Payout Address

Enter the wallet address where you want to receive payments:

0x742d35Cc6634C0532925a3b844Bc9e7595f2bD87

⚠️ Double-check this address. Payments are irreversible once sent.

Origin Protection (API Key Security)

Important: When you create an endpoint, x402 Studio generates an Origin Protection Key (API Key). This key is used by the x402 Gateway to authenticate requests to your origin server.

Without proper API key validation, your endpoint will not accept payments. The gateway performs a health check before allowing payments, and if your origin returns a 401/403 error, the payment button will be disabled.

How It Works

When you create an endpoint, an API key is generated and shown once
Add this key to your server's environment variables (e.g., X402_API_KEY)
Your server must validate incoming requests using this key
The x402 Gateway sends the key in the X-API-Key header

Server-Side Validation Examples

Express Middlewarejavascript

// Node.js / Express
app.use((req, res, next) => {
  const apiKey = req.headers['x-api-key'];
  if (apiKey !== process.env.X402_API_KEY) {
    return res.status(401).json({ error: 'Unauthorized' });
  }
  next();
});

Flask Middlewarepython

# Python / Flask
from flask import request, jsonify

@app.before_request
def check_api_key():
    api_key = request.headers.get('X-API-Key')
    if api_key != os.environ.get('X402_API_KEY'):
        return jsonify({'error': 'Unauthorized'}), 401

Public Endpoints:If you don't want to require API key validation (e.g., your API is already public), you can disable the "Require API Key" toggle when creating the endpoint. However, this means anyone who discovers your origin URL can access it without payment.

Health Check (Service Availability)

Before showing the payment button, x402 Studio runs a health check against your origin URL to make sure your service is actually reachable. If the check fails, the payment page shows "Service Unavailable" and disables the pay button — protecting customers from paying for a down service.

How the Health Check Works

We send a HEAD request to your origin URL (with your API key in headers if configured)
If HEAD fails or returns 400+, we retry with a GET request
Responses of 2xx, 3xx, or 402 mean your service is up
Responses of 401/403 (auth error), 404 (not found), or 5xx (server error) mark the service as unavailable
No response within 10 seconds is treated as a timeout

Make sure your origin handles HEAD requests. Many frameworks (Express, Flask, FastAPI) handle HEAD automatically for any route that supports GET. If your server doesn't, either add explicit HEAD support or ensure the GET fallback returns 200.

Troubleshooting "Service Unavailable"

401/403 error: Your API key is missing or incorrect. Re-check the key in your server's environment variables and make sure it matches what's in the dashboard.
404 error: Your origin URL doesn't have a route at the root path. Make sure GET / returns something (even a simple 200 OK).
Timeout: Your server took longer than 10 seconds to respond. Check if it's running and reachable from the public internet.
CORS or network error: The health check runs server-side, so CORS isn't the issue. Make sure your server isn't behind a firewall blocking external requests.

Payment Page Inputs (API Schema)

You can define custom input forms that appear on your endpoint's payment page. This lets customers provide data (like a prompt, email, or configuration) when they pay for your API.

Auto-Detect from OpenAPI

If your origin server has an OpenAPI or Swagger spec, x402 Studio will automatically detect it when you enter your origin URL. Detected routes are pre-populated in the form builder.

Manual Builder

Click Add Route to add an API route (GET, POST, PUT, etc.)
Give it a Service Name — this is what customers see
Add Input Fields — each field becomes a form input on the payment page
Set labels, placeholders, and whether the field is required
Use the Preview toggle to see exactly what customers will see

Surface	What's Shown
Payment page	Interactive form with your defined inputs
Marketplace listing	API documentation with routes and parameters
402 challenge response	Machine-readable api_schema field for agents
Agentic endpoints API	Returned in GET/list responses

The schema is optional. Endpoints without a schema work exactly the same — the proxy forwards everything as-is. The schema just helps consumers understand what to send.

Testing Your Endpoint

After creation, test that everything works:

Terminalbash

# Get the 402 challenge
curl https://api.x402layer.cc/api/public/endpoints/your-slug

# Expected: 402 Payment Required with payment details

Managing Endpoints

From the Dashboard, you can:

Edit – Update pricing, origin URL, or settings
Pause – Temporarily disable the endpoint
Delete – Permanently remove the endpoint
View Analytics – See payment history and usage stats

🤖 AI Integration Helper

Don't know how to use your API key?After creating an endpoint, you'll see a purple card with a "Copy AI Integration Prompt" button.

Click it to copy a pre-written prompt, then paste it into any AI assistant:

Cursor – Paste in chat to generate integration code
ChatGPT / Claude – Get step-by-step integration help
GitHub Copilot – Use as context for code suggestions

💡 This is the easiest way to integrate x402 payments into your project with zero coding knowledge!