Worked examples

RESP=$(curl -sS -X POST "https://api.nukez.xyz/v1/storage/request" \
  -H "Content-Type: application/json" \
  -d '{"units":1,"provider":"gcs"}')
echo "$RESP" | jq .

# Select the payment leg explicitly. Default is native SOL; set PAY_ASSET=USDC,
# USDT, or WETH for Solana SPL legs, or set PAY_NETWORK=eip155:143 for Monad.
PAY_NETWORK=${PAY_NETWORK:-solana:5eykt4UsFv8P8NJdTREpY1vzqKqZKvdp}
PAY_ASSET=${PAY_ASSET:-SOL}

PAY=$(echo "$RESP" | jq -c --arg n "$PAY_NETWORK" --arg a "$PAY_ASSET" \
  '.accepts[] | select(.network==$n and .extra.name==$a)')
[ -n "$PAY" ] && [ "$PAY" != "null" ] || { echo "payment option not found"; exit 1; }

# Carry every payment variable from the SELECTED leg.
PAY_REQ_ID=$(echo "$PAY" | jq -r '.extra.pay_req_id')
PAY_NETWORK=$(echo "$PAY" | jq -r '.network')
PAY_ASSET=$(echo "$PAY" | jq -r '.extra.name')
PAY_TO=$(echo      "$PAY" | jq -r '.payTo')
PAY_AMOUNT=$(echo  "$PAY" | jq -r '.extra.human_amount')   # CLI display amount
PAY_AMOUNT_RAW=$(echo "$PAY" | jq -r '.amount')            # smallest unit
PAY_ASSET_ID=$(echo "$PAY" | jq -r '.asset')               # native or token mint/contract
PAY_DECIMALS=$(echo "$PAY" | jq -r '.extra.decimals')
QUOTE_EXP=$(echo "$PAY" | jq -r '.extra.quote_expires_at')

{
  "x402Version": 2,
  "accepts": [
    {
      "scheme": "exact",
      "network": "solana:5eykt4UsFv8P8NJdTREpY1vzqKqZKvdp",
      "amount":  "236855000",                                /* lamports */
      "asset":   "So11111111111111111111111111111111111111112",
      "payTo":   "HqrTLaNk89dHPVR5zyMPtEiRnQfabmqc8B9yR3KVbyVp",
      "extra": {
        "name": "SOL",
        "decimals": 9,
        "human_amount": "0.236855",
        "pay_req_id": "7ad9b27a9458",
        "quote_expires_at": 1777642163
      }
    }
    /* + Solana USDC, USDT, WETH and Monad USDC, USDT0, MON, WETH legs */
  ]
}

solana transfer "$PAY_TO" "$PAY_AMOUNT" \
  --url 'https://mainnet.helius-rpc.com/?api-key=<YOUR_RPC_KEY>' \
  --keypair '/path/to/svm_key.json' \
  --allow-unfunded-recipient

# Copy the printed Signature: <...> into TX_SIG
export TX_SIG=<paste signature>

spl-token transfer "$PAY_ASSET_ID" "$PAY_AMOUNT" "$PAY_TO" \
  --url 'https://mainnet.helius-rpc.com/?api-key=<YOUR_RPC_KEY>' \
  --owner '/path/to/svm_key.json'

export TX_SIG=<paste signature>

CONFIRM=$(curl -sS -X POST "https://api.nukez.xyz/v1/storage/confirm" \
  -H "Content-Type: application/json" \
  -H "X402-TX: $TX_SIG" \
  -d "$(jq -cn --arg pid "$PAY_REQ_ID" --arg net "$PAY_NETWORK" --arg ast "$PAY_ASSET" \
        '{pay_req_id:$pid, pay_network:$net, pay_asset:$ast}')")

echo "$CONFIRM" | jq .
export RECEIPT_ID=$(echo "$CONFIRM" | jq -r '.receipt_id')

{
  "ok": true,
  "receipt_id": "a107ea1ad3de433d",
  "receipt": {
    "id": "a107ea1ad3de433d",
    "owner_id":     "BhBeSkwKyqysZstzkqdf4qAcYfS9r27wEMmouvSVfp1U",
    "payer_pubkey": "BhBeSkwKyqysZstzkqdf4qAcYfS9r27wEMmouvSVfp1U",
    "pay_to_address": "HqrTLaNk89dHPVR5zyMPtEiRnQfabmqc8B9yR3KVbyVp",
    "network":   "solana:5eykt4UsFv8P8NJdTREpY1vzqKqZKvdp",
    "pay_asset": "SOL",
    "paid_amount": "0.236687",
    "paid_raw":    236687000,
    "tx_hash":     "F7CpDLBkaFQoGW5NgGAjLYTks25VPJXnXDViDQVnXWQkp2gnTehx6xD51jdu6D5hSR14nXh3XEyKsaSzNGDMxKt",
    "receipt_hash": "b9c3cd9935918e03e1222f5ce362594b18eab7652fda5c21255cc9489bc65303"
  }
}

BODY="{\"receipt_id\":\"$RECEIPT_ID\",\"tags\":[]}"
PROV=$(signed_call POST /v1/storage/signed_provision '["locker:provision"]' "$BODY")

echo "$PROV" | jq .
export LOCKER_ID=$(echo "$PROV" | jq -r '.space.locker_id')

{
  "ok": true,
  "space": {
    "type":        "locker_manifest_v2",
    "locker_id":   "locker_527830025389",
    "receipt_id":  "a107ea1ad3de433d",
    "provider":    "gcs",
    "bucket":      "nukez",
    "path_prefix": "lockers/locker_527830025389/",
    "encryption":  { "mode": "client_side", "alg": "AES-256-GCM" }
  }
}

BODY='{"filename":"Anza.pdf","content_type":"application/pdf","ttl_min":30}'
CREATE=$(signed_call POST "/v1/lockers/$LOCKER_ID/files" '["locker:write"]' "$BODY")

ANZA_UPLOAD_URL=$(echo   "$CREATE" | jq -r '.upload_url')
ANZA_DOWNLOAD_URL=$(echo "$CREATE" | jq -r '.download_url')
ANZA_CONFIRM_URL=$(echo  "$CREATE" | jq -r '.confirm_url')

{
  "locker_id":    "locker_527830025389",
  "filename":     "Anza.pdf",
  "content_type": "application/pdf",
  "upload_url":   "https://api.nukez.xyz/f/AhNsb2NrZXJfNTI3...",
  "download_url": "https://api.nukez.xyz/f/AhNsb2NrZXJfNTI3...",
  "confirm_url":  "https://api.nukez.xyz/v1/files/confirm?receipt_id=a107ea1ad3de433d&filename=Anza.pdf",
  "urls_expire_in_sec": 1800
}

curl -sS -o /dev/null -w "PUT_HTTP=%{http_code}\n" \
  -L --request PUT \
  -H "Content-Type: application/pdf" \
  --data-binary '@/path/to/Anza.pdf' \
  "$ANZA_UPLOAD_URL"

curl -sS -X POST "$ANZA_CONFIRM_URL" | jq .

# 1. Preflight: capture the GCS redirect target.
MOV_GCS=$(curl -sS -o /dev/null -w '%{redirect_url}' \
  -X PUT -H "Content-Type: video/quicktime" "$MOV_UPLOAD_URL")

# 2. PUT the body to GCS directly.
curl -sS -o /dev/null -w "PUT_HTTP=%{http_code}\n" \
  -X PUT -H "Content-Type: video/quicktime" \
  --data-binary '@/path/to/locker_test.mov' "$MOV_GCS"

# 3. Confirm so the gateway records size_bytes + content_hash.
curl -sS -X POST "$MOV_CONFIRM_URL" | jq .

{
  "locker_id":     "locker_527830025389",
  "filename":      "Anza.pdf",
  "content_hash":  "sha256:9d6500e596f267986b1ab73522a27a5424cd8615b4a65166c486d8933d004237",
  "size_bytes":    5395694,
  "expected_hash": null,
  "hash_verified": false
}

signed_call GET "/v1/lockers/$LOCKER_ID/files" '["locker:list"]' | jq .

{
  "locker_id": "locker_527830025389",
  "files": [
    { "filename": "smoke.txt",                "size_bytes": 37,        "content_hash": "sha256:052446cb..." },
    { "filename": "Anza.pdf",                 "size_bytes": 5395694,   "content_hash": "sha256:9d6500e5..." },
    { "filename": "locker_test.mov",          "size_bytes": 147587634, "content_hash": "sha256:e2fd37c0..." },
    { "filename": "NewConstruction.kml",      "size_bytes": 33719838,  "content_hash": "sha256:6afdfdd5..." },
    { "filename": "switchboard_oracles.json", "size_bytes": 465258,    "content_hash": "sha256:b3ee6c87..." }
  ],
  "file_count":  5,
  "path_prefix": "lockers/locker_527830025389/"
}

curl -sS -X POST "https://api.nukez.xyz/v1/storage/attest?receipt_id=$RECEIPT_ID" \
  | jq '{status: .attestation_status, slot: .switchboard_slot, tx: .switchboard_tx, push_ok: .push_result.ok}'

{
  "status":  "complete",
  "slot":    416914165,
  "tx":      "qL2HsTPfDgFXMDWd2kZZztDjSwmRUs7CoVhDm9uK945UQNqThRczVPtaDQbqt1mLDMY4gtegHyEX7e82da3vKTQ",
  "push_ok": true
}

PROOF_JSON=/tmp/nukez_merkle_proof_anza.json
curl -sS "https://api.nukez.xyz/v1/storage/merkle-proof?receipt_id=$RECEIPT_ID&filename=Anza.pdf" \
  | tee "$PROOF_JSON" \
  | jq .

python3 - "$PROOF_JSON" <<'PY'
import hashlib, json, sys
H = lambda s: hashlib.sha256(s.encode()).hexdigest()
doc = json.load(open(sys.argv[1]))
cur = doc["leaf_hash"].removeprefix("sha256:")
for step in doc["proof"]:
    sib = step["hash"].removeprefix("sha256:")
    cur = H(cur + sib) if step["position"] == "right" else H(sib + cur)
assert cur == doc["merkle_root"].removeprefix("sha256:"), (cur, doc["merkle_root"])
print(f"verified {doc['filename']} -> {doc['merkle_root']}")
PY

curl -sS "https://api.nukez.xyz/v1/storage/verification-bundle?receipt_id=$RECEIPT_ID" \
  | jq .

{
  "receipt_id": "a107ea1ad3de433d",
  "locker_id":  "locker_527830025389",
  "payment_proof": {
    "tx_signature": "F7CpDLBkaFQoGW5NgGAjLYTks25VPJXnXDViDQVnXWQkp2gnTehx6xD51jdu6D5hSR14nXh3XEyKsaSzNGDMxKt",
    "payer":        "BhBeSkwKyqysZstzkqdf4qAcYfS9r27wEMmouvSVfp1U",
    "explorer_url": "https://explorer.solana.com/tx/F7CpDLBk..."
  },
  "content_proof": {
    "merkle_root": "sha256:22dfae7c2efbb3b4b3306132e18df92b80383cb816255da7d9beb9dafbc4e8ec",
    "att_code":    "90c884e6",
    "file_count":  5,
    "total_bytes": 187168461,
    "files":       [ /* per-file size + content_hash */ ]
  },
  "on_chain_anchor": {
    "type":        "switchboard_v2",
    "tx":          "qL2HsTPfDgFXMDWd2kZZztDjSwmRUs7CoVhDm9uK945UQNqThRczVPtaDQbqt1mLDMY4gtegHyEX7e82da3vKTQ",
    "slot":        416914165,
    "feed_pubkey": "7wevRnKMrSCYEAdWEuaZn6K9MuNJBSUXLdkXZfxJ5VmY"
  },
  "verify_yourself": {
    "steps": [
      "1. Download each file from its download_url (or /v1/r/{rid}/f/{fn})",
      "2. SHA256 the raw bytes — must match content_hash",
      "3. Build the merkle tree per merkle_algorithm",
      "4. Computed root must match content_proof.merkle_root",
      "5. Look up on_chain_anchor.tx on Solana Explorer; SPL Memo carries the same merkle_root"
    ]
  },
  "verify_page_url": "https://nukez.xyz/verify/a107ea1ad3de433d"
}