11 KiB
NIP-69
Nostr Offer STRings
rfc
optional
This NIP proposes a format for static payment codes in Nostr as a successor to LNURL-Pay, enabling users to initiate Lightning Network payments by scanning or clicking a string.
Motivation
Reliance on LNURL has led to centralization via custodial solutions due to the legacy baggage of IP4-NAT/Domain/SSL requirements. Nostr's use-cases are already centered around Lightning, whether as a wallet connector, zap receipts, or its overlapping network effects, rendering Nostr as a de facto "3rd layer" for Lightning and a natural successor to LNURL.
When layered over kind 21000, NWC, or other potential Lightning RPCs, this specification enables a seamless user experience similar to legacy LNURL-Pay, without the domain and SSL requirements. Additionally, the signed nature of Nostr communications minimizes the trust requirements inherent in LNURL when a receiving node must outsource the serving of web requests.
Specification
Static Payment Code Format
The static payment code is a bech32 (per NIP-19) encoded string prefixed with noffer
. The encoded string will include the following TLV (Type-Length-Value) items:
0
: The 32 bytes of the receiving service's public key, encoded in hex.1
: The relay URL where the receiving service subscribes to payment requests.2
: The offer identifying string.3
: A flag indicating the pricing type:0
: Fixed price (Price stated in 4 will not change)1
: Variable price (Price must be calculated and will be reflected in the invoice)2
: Spontaneous payment (Payer specifies the amount in request payload)
4
: The price in sats (optional for display purposes).
If neither the price nor the pricing type flag is present, the sender may assume it is a spontaneous payment offer.
Example static payment code structure:
noffer1...
0: <receiver_public_key_in_hex>
1: <relay_url>
2: <offer_id_string>
3: <pricing_type_flag> (optional, 0 for fixed, 1 for variable, 2 for spontaneous)
4: <price_in_sats> (optional)
Integration with other NIPs
NIP-01 User Metadata
Example user metadata content with nip69
field:
{
"pubkey": "hex_pub",
"kind": 0,
"content": "{\"name\": \"bob\", \"nip05\": \"bob@example.com\", \"nip69\": \"noffer1...\"}"
// ...
}
NIP-05 "Lightning Addresses"
To support trust-minimized Lightning Addresses, services can add a nip69
field in the NIP-05 content to contain an offer for spontaneous payments. This field will provide the offer on name-based lookups.
Example NIP-05 Service Response with Offers
{
"names": {
"bob": "hex_pub"
},
"nip69": {
"bob": "noffer1..."
}
}
NIP-57 Zaps
Instead of using the LNURL-pay callback, the "zap" flow can be initiated as content payload to an Offer:
- The client creates a kind 9734 zap request event as specified in NIP-57.
- Instead of sending this to an LNURL-pay endpoint, the client sends it as the
zap
part of the encrypted content in a NIP-69 payment request. - The receiver processes the NIP-69 payment request, decrypts the content, extracts the kind 9734 event, and uses it to generate the invoice.
- The receiver responds with the invoice as specified in NIP-69.
- Once paid, the receiver generates and publishes the kind 9735 zap receipt as specified in NIP-57.
Example NIP-57 zap request:
{
"id": "<event_id>",
"pubkey": "<sender_pubkey>",
"created_at": 1234567890,
"kind": 21001,
"tags": [
["p", "<receiver_pubkey>"]
],
"content": "<NIP-44 encrypted {\"offer\":\"<zap1234>\",\"zap\":<kind 9734 zap request event>}>",
"sig": "<signature>"
}
There is no inherent requirement on the service to acknowledge zap requests, since spontaneous payments are default behavior. However, both Clients and Service implementations SHOULD consider offer identifiers, where startsWith("zap")
, indication that the service will honor zap requests for that offer. A service should not error if no zap request was included by the sender on a zap indicated offer, the service should treat it as any other spontaneous payment.
General Process Flow
- Payer Scans or Clicks the Static Payment Code
- Payer's Wallet Decodes the Payment Code
- Payer's Wallet Sends a Nostr Event to the Specified Relay
- Addressed to the receiver's public key, containing the offer identifying string.
- Event Type: Ephemeral Kind 21001 | NIP-44 Encrypted
- Conditional: Include the amount in sats the sender wishes to pay if the payment type is spontaneous.
- Optional: Include additional payer data.
- Receiver Responds with Lightning Invoice
- Generates a Lightning invoice and responds with a Nostr event containing the invoice details.
- Event Type: Ephemeral Kind 21001 | NIP-44 Encrypted
- Content:
{"bolt11":"<BOLT11_invoice_string>"}
- Optional: Include additional purchase data.
- Payer Pays the Invoice
- Completes the payment by settling the Lightning invoice.
- Optional: Receiver Emits Payment Receipt
- This step is out of scope for this NIP, but potential receipt considerations include:
- Nostr Event as Receipt: Emitting a public Nostr event as a "zap" receipt for verifiable record-keeping.
- Lightning Pre-Image: The Lightning pre-image is proof of payment.
- External / WebHook: The receiver may finalize the flow out-of-band.
- This step is out of scope for this NIP, but potential receipt considerations include:
Nostr Events
This NIP specifies the use of event kind 21001
with the following structure:
content
: NIP-44 encrypted payment details.tags
:p
: Receiver's public key (hex).e
: Used in response to the requesting event.
Example request event:
{
"id": "<event_id>",
"pubkey": "<sender_pubkey>",
"created_at": 1234567890,
"kind": 21001,
"tags": [
["p", "<receiver_pubkey>"]
],
"content": "<NIP-44 encrypted offer identifier and conditional payer data>",
"sig": "<signature>"
}
The content
field, after NIP-44 decryption, should contain stringified JSON with the following structure:
{
"offer": "<offer_string>",
"amount": "<conditional_amount_in_sats>",
"payer_data": "<optional_payer_data>"
}
Example response event with bolt11
invoice:
{
"id": "<response_event_id>",
"pubkey": "<receiver_pubkey>",
"created_at": 1234567891,
"kind": 21001,
"tags": [
["p", "<sender_pubkey>"],
["e", "<event_id>"] // original payment request event ID
],
"content": "<NIP-44 encrypted {\"bolt11\":\"<BOLT11_invoice_string>\"}>",
"sig": "<signature>"
}
Client Behavior
Mandatory
Clients implementing this NIP must:
- Decode and validate the structure of the
noffer
bech32-encoded static payment code. - Use NIP-44 encryption for all communication between payer and receiver.
- Generate and send kind 21001 events as specified in this NIP.
- Parse the
content
field of received events by decrypting and JSON-parsing the stringified content. - Handle potential errors gracefully, providing clear feedback to users.
- Respect the relay URL specified in the static payment code for sending payment request events.
Optional
Clients implementing this NIP may:
- Support both this protocol and LNURL for backward compatibility during the transition period.
- Implement additional features such as multi-recipient payments or integration with other Lightning-related NIPs.
- Ex: If an offer lists multiple recipient keys, a client might "for each" over them to pay multiple recipients.
- Use Addressable Events to nest offers in marketplace products etc where the offer variables might change more frequently than the product or service associated with it.
- Attempt Payments by Name: Wallets might first attempt the combination of NIP-05 and NIP-69 before falling back to LNURL on name-based lookups.
- Prefix and parse
noffer
strings with existinglightning:
link handlers, just as they would invoices or legacy LNURL strings.
Prohibited
Clients implementing this NIP MUST NOT:
- Send unencrypted sensitive information in event content or tags.
- Ignore or modify any fields from the encoded static payment code.
Service Behavior
Optional
Services implementing this NIP may:
- Use an account identifier as a default offer string for spontaneous payments without explicit user setup.
- NIP-05 Integration: Add a
nip69
field in the NIP-05 content to provide the offer on name-based lookups for trust-minimized Lightning Addresses.
Error Handling
To ensure consistent error handling across implementations, this NIP defines the following error responses, similar to other NIPs:
- Invalid Offer: When the offer ID is invalid or no longer available.
- Temporary Failure: When the receiver is temporarily unable to process the request.
- Expired Offer: When the offer has expired and is no longer valid.
- Unsupported Feature: When the receiver doesn't support a feature requested by the payer.
- Invalid Amount: When the amount specified is too big or too small, providing the acceptable range.
Error codes:
- 1: Invalid Offer
- 2: Temporary Failure
- 3: Expired Offer
- 4: Unsupported Feature
- 5: Invalid Amount
Clients MUST handle these error responses gracefully and display appropriate messages to users.
Error Response Payloads
Error responses should be sent as kind 21001 events with the following structure in the encrypted content:
{
"error": "<error_message>",
"code": "<error_code>"
// Additional fields optionally included depending on the error type
}
Expected Payloads
- Expired Offer
- Code: 3
- Payload:
{
"error": "Expired Offer",
"code": 3,
"latest": "<noffer1..>"
}
- Invalid Amount
- Code: 5
- Payload:
{
"error": "Invalid Amount",
"code": 5,
"range": { //sats
"min": 10,
"max": 10000000
}
}
Transition from LNURL
LNURL services wishing to signal the upgrade should add nip69: <noffer>
to the inital GET response described in LUD-06. Clients seeing this new value on a LNURL server should automatically upgrade the payment flow that was instantiated by the user for that address.
Future Considerations
Future versions of this NIP may consider standardizing additional features such as:
- Multi-recipient payments with weighting.
- Integration with other Lightning-related NIPs.
- Extended metadata for more complex payment scenarios.
- Best practices for use with Addressable Events.