Authorization models
Privy supports two authorization models depending on whether an agent controls its own wallet or acts on behalf of a user. Agent-owned wallets are wallets your agent provisions and controls. The agent holds the credential needed to trigger signing and can transact independently without prompting a user. This model suits fully autonomous agents that manage their own funds and operate outside any user session. Delegated signing lets an agent transact on behalf of a user’s existing wallet. Users grant the agent an authorization key with a defined scope via policies. the agent signs transactions within that scope, and the user can revoke access at any time. This model suits agents that act as a user’s financial representative while the user retains ultimate custody.Policies
Privy’s policy engine allow you to enforce guardrails on how agents spend funds.Policies can restrict which tokens and chains an agent can transact on, cap transfer values per transaction or over a time window, allowlist recipient addresses and smart contracts, and more.Agent payments
Privy supports both MPP and x402. These are HTTP-native payment protocols that let agents pay for APIs, data feeds, and digital content autonomously without a manual checkout flow. Privy’s x402 and MPP clients intercept the 402 HTTP responses, sign payment authorizations with an agent’s wallet, and retry the request automatically. This makes autonomous API monetization a drop-in behavior rather than a separate payment integration. Both protocols work with Privy server wallets and are supported across React (viauseX402Fetch) and Node.js (via createX402Client), with per-request maxValue caps to prevent runaway spending.
Tooling and framework integrations
The Privy Agent CLI lets agents spin up, fund, and transact with wallets directly from the command line — a natural fit since agents already execute shell commands. The CLI uses a device authorization flow so a human approves wallet access in a browser once; subsequent transactions use short-lived ephemeral signing keys without ever exposing the private key to the agent process. Sessions last up to 30 days with automatic token rotation. Privy’s wallet infrastructure is framework-agnostic and integrates with LangChain, Vercel AI SDK, OpenAI Agents SDK, AWS Bedrock AgentCore, and custom agent runtimes. For MCP-based agents, Privy wallets can be connected to MCP servers to expose signing as a tool call. Agents provisioned through AWS AgentCore can delegate wallet access to AgentCore’s payment runtime while retaining user-controlled custody through Privy.Get started
Get started with agent wallets
Provision wallets for autonomous agents
Authorization keys
Grant agents scoped signing access to user wallets
Set up policies
Define spending limits and behavioral guardrails
Agent CLI
Spin up and fund agent wallets from the command line

