Update x402 default payment validity window (#8317)

0xFirekeeper · web-flow · commit abf0bbaf359c · 2025-10-27T09:56:05.000-07:00
diff --git a/.changeset/good-ducks-eat.md b/.changeset/good-ducks-eat.md
@@ -0,0 +1,5 @@
+---
+"thirdweb": patch
+---
+
+updates default x402 transfer with authorization timeout
diff --git a/packages/thirdweb/src/x402/common.ts b/packages/thirdweb/src/x402/common.ts
@@ -107,7 +107,7 @@ export async function decodePaymentRequest(
     description: description ?? "",
     mimeType: mimeType ?? "application/json",
     payTo: getAddress(facilitator.address), // always pay to the facilitator address first
-    maxTimeoutSeconds: maxTimeoutSeconds ?? 300,
+    maxTimeoutSeconds: maxTimeoutSeconds ?? 86400,
     asset: getAddress(asset.address),
     outputSchema: {
       input: {
diff --git a/packages/thirdweb/src/x402/sign.ts b/packages/thirdweb/src/x402/sign.ts
@@ -32,7 +32,7 @@ function preparePaymentHeader(
   nonce: Hex,
 ): UnsignedPaymentPayload {
   const validAfter = BigInt(
-    Math.floor(Date.now() / 1000) - 600, // 10 minutes before
+    Math.floor(Date.now() / 1000) - 86400, // 24h before in case weird block timestamp behavior
   ).toString();
   const validBefore = BigInt(
     Math.floor(Date.now() / 1000 + paymentRequirements.maxTimeoutSeconds),

-Original file line number
+Diff line change
@@ @@ -0,0 +1,5 @@ @@
 +---
 +"thirdweb": patch
 +---
++
 +updates default x402 transfer with authorization timeout