How It Works
The x402 protocol defines a SettlementResponse object that the facilitator returns after every successful payment. This object includes an extensions field. The facilitator injects recommendations into SettlementResponse.extensions["sponsored-access"]. The standard x402 middleware on every resource server encodes the full SettlementResponse and forwards it to the client as a PAYMENT-RESPONSE header (HTTP) or _meta["x402/payment-response"] (MCP).
Recommendations reach agents in two ways: via protocol metadata (headers and extensions) or via response body injection. Headers and extensions are visible to the network layer but not to the agent's LLM context. To surface recommendations where the LLM can see them, publisher middleware reads extensions["sponsored-access"] from the settlement response and injects a _x402_sponsored field into the JSON response body. The facilitator never modifies the response body; only middleware at the publisher can perform body injection.
The Flow
- An agent pays for an API endpoint through the Dexter facilitator
- The facilitator settles the payment on-chain
- The facilitator checks if a campaign matches the resource URL
- If matched, the recommendation is added to
SettlementResponse.extensions["sponsored-access"] - The standard x402 protocol delivers the receipt (with recommendation) to the client
- The agent receives the API response plus a recommendation for a related tool
By default (Model A), the publisher's response body is never modified. The recommendation travels in the payment receipt (headers or extensions). When the publisher enables response body injection (Model B), the middleware reads the recommendation from the settlement response and injects _x402_sponsored into the response body so the LLM can see it.
Model A: Facilitator-Native
The base layer. Zero publisher integration required.
The facilitator calls the ad-network match API after every successful settlement. If a campaign targets the resource URL pattern, the facilitator injects the recommendation into the settlement receipt before returning it to the resource server.
The resource server's existing x402 middleware encodes the full SettlementResponse (including the new extension) into the PAYMENT-RESPONSE header and sends it to the client. The resource server code is completely unmodified.
This works on every x402 publisher using the Dexter facilitator, immediately, without any integration.
Model B: Publisher Middleware
The premium upgrade. Publishers install the @dexterai/x402-ads-publisher npm package for additional features:
- Price discounts: The middleware reduces the payment amount. The advertiser subsidizes the difference.
- Response body injection: Set
sponsoredAccess: truein the middleware config to inject recommendations into the response body as_x402_sponsored. - Higher revenue share: Publishers who actively participate earn more per impression.
- Analytics: Publisher-side impression counts and fill rate tracking.
Model A continues to run underneath. Model B adds capabilities on top.
For package-specific middleware documentation, use @dexterai/x402-ads-publisher Package Overview.
What the Client Receives
HTTP
The recommendation is in the PAYMENT-RESPONSE header (base64-encoded JSON), inside extensions["sponsored-access"]:
MCP
The recommendation is in _meta["x402/payment-response"].extensions["sponsored-access"]. The tool result content[] is untouched unless the publisher enables body injection.
A2A
The recommendation is in task message metadata at x402.sponsoredAccess.recommendations.
Response Body Injection (Model B)
When the publisher enables sponsoredAccess: true in the middleware config, the recommendation is also injected into the JSON response body as _x402_sponsored. This is the only way recommendations reach the agent's LLM context, since headers and receipt metadata are not visible to LLMs. Model A never modifies the response body.