mpcp-protocol
diff --git a/‎examples/fleet-trip/README.md‎
Lines changed: 71 additions & 0 deletions b/‎examples/fleet-trip/README.md‎
Lines changed: 71 additions & 0 deletions
diff --git a/‎examples/fleet-trip/bundle-stop1-toll.json‎
Lines changed: 141 additions & 0 deletions b/‎examples/fleet-trip/bundle-stop1-toll.json‎
Lines changed: 141 additions & 0 deletions
diff --git a/‎examples/fleet-trip/bundle-stop2-charging-TAMPERED.json‎
Lines changed: 141 additions & 0 deletions b/‎examples/fleet-trip/bundle-stop2-charging-TAMPERED.json‎
Lines changed: 141 additions & 0 deletions
@@ -0,0 +1,71 @@
+# Fleet Trip Demo
+
+Demonstrates a robotaxi (EV-001) completing a full commercial trip with three autonomous service payments, cumulative budget enforcement, and a post-trip fleet audit.
+
+## What It Shows
+
+| Concept | Description |
+|---------|-------------|
+| Multi-payment session | Same PolicyGrant and SBA used across 3 payments |
+| Cumulative budget enforcement | Vehicle wallet tracks spend; 4th payment refused |
+| Signed PolicyGrant | Fleet operator signs grant; verifier enforces signature |
+| Destination allowlist | Only pre-approved service types accepted |
+| Stateless audit | Each bundle verifies independently after the trip |
+| Tamper detection | Modified settlement amount detected at audit time |
+
+## Trip Scenario
+
+**Vehicle:** EV-001 (robotaxi, fleet-robotaxi-west)
+**Session budget:** $40.00 XRPL / RLUSD
+**Allowed destinations:** toll booth, EV charging, parking garage
+
+| Stop | Service | Amount | Cumulative |
+|------|---------|--------|------------|
+| 1 | Toll Booth (I-280 N) | $6.00 | $6.00 |
+| 2 | EV Charging (ChargePoint SF-04) | $18.00 | $24.00 |
+| 3 | Parking Garage (Market St) | $12.00 | $36.00 |
+| 4 | Charging again | $8.00 | **REJECTED** ($44 > $40 budget) |
+
+## Run
+
+```bash
+npm run build
+npm run example:fleet-trip
+```
+
+## Generated Files
+
+| File | Description |
+|------|-------------|
+| `bundle-stop1-toll.json` | Settlement bundle — toll payment |
+| `bundle-stop2-charging.json` | Settlement bundle — EV charging payment |
+| `bundle-stop3-parking.json` | Settlement bundle — parking payment |
+| `bundle-stop2-charging-TAMPERED.json` | Modified bundle (tamper detection demo) |
+
+Each bundle is self-contained and can be verified independently:
+
+```bash
+npx mpcp verify examples/fleet-trip/bundle-stop1-toll.json --explain
+npx mpcp verify examples/fleet-trip/bundle-stop3-parking.json --explain
+npx mpcp verify examples/fleet-trip/bundle-stop2-charging-TAMPERED.json --explain
+# Last one fails: SignedPaymentAuthorization.valid payment_auth_mismatch
+```
+
+## How Cumulative Budget Enforcement Works
+
+The vehicle wallet acts as the **session authority** — it tracks cumulative spending and refuses to sign a new SPA when the running total would exceed `maxAmountMinor`.
+
+```
+Before Stop 1:  cumulativeSpent = $0     →  $0 + $6  = $6   ≤ $40  ✓
+Before Stop 2:  cumulativeSpent = $6     →  $6 + $18 = $24  ≤ $40  ✓
+Before Stop 3:  cumulativeSpent = $24    →  $24 + $12 = $36 ≤ $40  ✓
+Before Stop 4:  cumulativeSpent = $36    →  $36 + $8 = $44  > $40  ✗ REJECTED
+```
+
+The verifier is stateless — it checks each bundle independently. Cumulative enforcement lives in the wallet, which must persist this counter in trusted local storage.
+
+## See Also
+
+- [Machine Wallet Guardrails](../../docs/implementation/machine-wallet-guardrails.md)
+- [SignedBudgetAuthorization — Cumulative Enforcement](https://mpcp-protocol.github.io/mpcp-spec/protocol/SignedBudgetAuthorization/#cumulative-enforcement)
+- [Offline Payment Demo](../parking/demo-offline.mjs) — same concept, no connectivity
@@ -0,0 +1,141 @@
+{
+  "settlement": {
+    "amount": "6000000",
+    "rail": "xrpl",
+    "asset": {
+      "kind": "IOU",
+      "currency": "RLUSD",
+      "issuer": "rIssuer"
+    },
+    "destination": "rTollBooth",
+    "nowISO": "2026-03-14T09:12:00Z"
+  },
+  "settlementIntent": {
+    "version": "1.0",
+    "rail": "xrpl",
+    "amount": "6000000",
+    "createdAt": "2026-03-14T09:12:00Z",
+    "destination": "rTollBooth",
+    "asset": {
+      "kind": "IOU",
+      "currency": "RLUSD",
+      "issuer": "rIssuer"
+    }
+  },
+  "spa": {
+    "authorization": {
+      "version": "1.0",
+      "decisionId": "dec-toll-001",
+      "sessionId": "trip-20260314-EV001",
+      "policyHash": "a1b2c3d4e5f6",
+      "budgetId": "d26d4e94-dac4-4af6-81ad-7fd4080a2779",
+      "quoteId": "q-toll-001",
+      "rail": "xrpl",
+      "asset": {
+        "kind": "IOU",
+        "currency": "RLUSD",
+        "issuer": "rIssuer"
+      },
+      "amount": "6000000",
+      "destination": "rTollBooth",
+      "intentHash": "cdf6b71ed131b1cdda74962727d06430644d2b4fb030cc72b6a19cc2e87c5003",
+      "expiresAt": "2030-12-31T23:59:59Z",
+      "nonce": "4009f172-7591-4d45-8d8d-fc109fca72a6"
+    },
+    "issuerKeyId": "fleet-spa-signing-key-1",
+    "signature": "HnMSCzbrLZ0VI+GisKzwjvDdfsXcmOcha5XLXsz8lJxd5JFuB8iHP0+QvFcYbBPeGGLmPUlhVKzu8O865c8EBQ=="
+  },
+  "sba": {
+    "authorization": {
+      "version": "1.0",
+      "budgetId": "d26d4e94-dac4-4af6-81ad-7fd4080a2779",
+      "grantId": "84fff5d0-8656-4b2d-ab82-15fa36427c38",
+      "sessionId": "trip-20260314-EV001",
+      "vehicleId": "EV-001",
+      "policyHash": "a1b2c3d4e5f6",
+      "currency": "USD",
+      "minorUnit": 2,
+      "budgetScope": "SESSION",
+      "maxAmountMinor": "4000",
+      "allowedRails": [
+        "xrpl"
+      ],
+      "allowedAssets": [
+        {
+          "kind": "IOU",
+          "currency": "RLUSD",
+          "issuer": "rIssuer"
+        }
+      ],
+      "destinationAllowlist": [
+        "rTollBooth",
+        "rChargingStation",
+        "rParkingGarage"
+      ],
+      "expiresAt": "2030-12-31T23:59:59Z"
+    },
+    "issuerKeyId": "fleet-sba-signing-key-1",
+    "signature": "U3MIfbuyy2CE7PmQB7AAsJLV3+DpBcOEokXBnrcU7m5Ud9UhEPObEtxSy6yGPY3TTspdtLqJOJEz2i7lio88Dg=="
+  },
+  "policyGrant": {
+    "grantId": "84fff5d0-8656-4b2d-ab82-15fa36427c38",
+    "policyHash": "a1b2c3d4e5f6",
+    "expiresAt": "2030-12-31T23:59:59Z",
+    "allowedRails": [
+      "xrpl"
+    ],
+    "allowedAssets": [
+      {
+        "kind": "IOU",
+        "currency": "RLUSD",
+        "issuer": "rIssuer"
+      }
+    ],
+    "issuer": "did:web:fleet.robotaxi-west.example.com",
+    "issuerKeyId": "fleet-policy-grant-key-1",
+    "signature": "LoWlfxnzxWBaG0WmFhyBnITlujxETOE7f7OsM4KQ7IDYNyERnau8dG14vFt0DcrRthBTbFL+VMQPSMulV/VgCw=="
+  },
+  "paymentPolicyDecision": {
+    "decisionId": "dec-toll-001",
+    "policyHash": "a1b2c3d4e5f6",
+    "action": "ALLOW",
+    "reasons": [
+      "Within budget",
+      "Destination authorized"
+    ],
+    "expiresAtISO": "2030-12-31T23:59:59Z",
+    "rail": "xrpl",
+    "asset": {
+      "kind": "IOU",
+      "currency": "RLUSD",
+      "issuer": "rIssuer"
+    },
+    "priceFiat": {
+      "amountMinor": "600",
+      "currency": "USD"
+    },
+    "chosen": {
+      "rail": "xrpl",
+      "quoteId": "q-toll-001"
+    },
+    "settlementQuotes": [
+      {
+        "quoteId": "q-toll-001",
+        "rail": "xrpl",
+        "amount": {
+          "amount": "6000000",
+          "decimals": 6
+        },
+        "destination": "rTollBooth",
+        "expiresAt": "2030-12-31T23:59:59Z",
+        "asset": {
+          "kind": "IOU",
+          "currency": "RLUSD",
+          "issuer": "rIssuer"
+        }
+      }
+    ]
+  },
+  "sbaPublicKeyPem": "-----BEGIN PUBLIC KEY-----\nMCowBQYDK2VwAyEAr7H9fidwL/o6BxBbWDp864CFpXpW4xehPl3LY3zMAw8=\n-----END PUBLIC KEY-----\n",
+  "spaPublicKeyPem": "-----BEGIN PUBLIC KEY-----\nMCowBQYDK2VwAyEApNN61UHHMjipJXLvQ+gzZsGjjMznj3lGzwtJmhWitiw=\n-----END PUBLIC KEY-----\n"
+}
@@ -0,0 +1,141 @@
+{
+  "settlement": {
+    "amount": "19500000",
+    "rail": "xrpl",
+    "asset": {
+      "kind": "IOU",
+      "currency": "RLUSD",
+      "issuer": "rIssuer"
+    },
+    "destination": "rChargingStation",
+    "nowISO": "2026-03-14T10:45:00Z"
+  },
+  "settlementIntent": {
+    "version": "1.0",
+    "rail": "xrpl",
+    "amount": "18000000",
+    "createdAt": "2026-03-14T10:45:00Z",
+    "destination": "rChargingStation",
+    "asset": {
+      "kind": "IOU",
+      "currency": "RLUSD",
+      "issuer": "rIssuer"
+    }
+  },
+  "spa": {
+    "authorization": {
+      "version": "1.0",
+      "decisionId": "dec-charge-001",
+      "sessionId": "trip-20260314-EV001",
+      "policyHash": "a1b2c3d4e5f6",
+      "budgetId": "d26d4e94-dac4-4af6-81ad-7fd4080a2779",
+      "quoteId": "q-charge-001",
+      "rail": "xrpl",
+      "asset": {
+        "kind": "IOU",
+        "currency": "RLUSD",
+        "issuer": "rIssuer"
+      },
+      "amount": "18000000",
+      "destination": "rChargingStation",
+      "intentHash": "c5b3fef249390716d89e732c4c38bdc07c424e85ecb0a2b69af1f9c5fc280ea1",
+      "expiresAt": "2030-12-31T23:59:59Z",
+      "nonce": "7284de37-62eb-4823-957d-a0c23fd73eeb"
+    },
+    "issuerKeyId": "fleet-spa-signing-key-1",
+    "signature": "kAM7xStR3Zh8/8twk5B0OlMXo7r8AnEqzYAMgooDhTHIMwN0WtI4bob2axT3T4r8fpwelPA88fbSxVykd0TuDA=="
+  },
+  "sba": {
+    "authorization": {
+      "version": "1.0",
+      "budgetId": "d26d4e94-dac4-4af6-81ad-7fd4080a2779",
+      "grantId": "84fff5d0-8656-4b2d-ab82-15fa36427c38",
+      "sessionId": "trip-20260314-EV001",
+      "vehicleId": "EV-001",
+      "policyHash": "a1b2c3d4e5f6",
+      "currency": "USD",
+      "minorUnit": 2,
+      "budgetScope": "SESSION",
+      "maxAmountMinor": "4000",
+      "allowedRails": [
+        "xrpl"
+      ],
+      "allowedAssets": [
+        {
+          "kind": "IOU",
+          "currency": "RLUSD",
+          "issuer": "rIssuer"
+        }
+      ],
+      "destinationAllowlist": [
+        "rTollBooth",
+        "rChargingStation",
+        "rParkingGarage"
+      ],
+      "expiresAt": "2030-12-31T23:59:59Z"
+    },
+    "issuerKeyId": "fleet-sba-signing-key-1",
+    "signature": "U3MIfbuyy2CE7PmQB7AAsJLV3+DpBcOEokXBnrcU7m5Ud9UhEPObEtxSy6yGPY3TTspdtLqJOJEz2i7lio88Dg=="
+  },
+  "policyGrant": {
+    "grantId": "84fff5d0-8656-4b2d-ab82-15fa36427c38",
+    "policyHash": "a1b2c3d4e5f6",
+    "expiresAt": "2030-12-31T23:59:59Z",
+    "allowedRails": [
+      "xrpl"
+    ],
+    "allowedAssets": [
+      {
+        "kind": "IOU",
+        "currency": "RLUSD",
+        "issuer": "rIssuer"
+      }
+    ],
+    "issuer": "did:web:fleet.robotaxi-west.example.com",
+    "issuerKeyId": "fleet-policy-grant-key-1",
+    "signature": "LoWlfxnzxWBaG0WmFhyBnITlujxETOE7f7OsM4KQ7IDYNyERnau8dG14vFt0DcrRthBTbFL+VMQPSMulV/VgCw=="
+  },
+  "paymentPolicyDecision": {
+    "decisionId": "dec-charge-001",
+    "policyHash": "a1b2c3d4e5f6",
+    "action": "ALLOW",
+    "reasons": [
+      "Within budget",
+      "Destination authorized"
+    ],
+    "expiresAtISO": "2030-12-31T23:59:59Z",
+    "rail": "xrpl",
+    "asset": {
+      "kind": "IOU",
+      "currency": "RLUSD",
+      "issuer": "rIssuer"
+    },
+    "priceFiat": {
+      "amountMinor": "1800",
+      "currency": "USD"
+    },
+    "chosen": {
+      "rail": "xrpl",
+      "quoteId": "q-charge-001"
+    },
+    "settlementQuotes": [
+      {
+        "quoteId": "q-charge-001",
+        "rail": "xrpl",
+        "amount": {
+          "amount": "18000000",
+          "decimals": 6
+        },
+        "destination": "rChargingStation",
+        "expiresAt": "2030-12-31T23:59:59Z",
+        "asset": {
+          "kind": "IOU",
+          "currency": "RLUSD",
+          "issuer": "rIssuer"
+        }
+      }
+    ]
+  },
+  "sbaPublicKeyPem": "-----BEGIN PUBLIC KEY-----\nMCowBQYDK2VwAyEAr7H9fidwL/o6BxBbWDp864CFpXpW4xehPl3LY3zMAw8=\n-----END PUBLIC KEY-----\n",
+  "spaPublicKeyPem": "-----BEGIN PUBLIC KEY-----\nMCowBQYDK2VwAyEApNN61UHHMjipJXLvQ+gzZsGjjMznj3lGzwtJmhWitiw=\n-----END PUBLIC KEY-----\n"
+}