Hospitality Commerce API
Concepts

How do receipts work?

High-value mutations return HMAC-signed receipts. Agents keep them as proof of transactions.

When are receipts issued?

EventReceipt kind
Booking confirmedbooking_confirmed
Booking cancelledbooking_cancelled
Refund issuedrefund_issued

Receipt structure

{
  "receipt": {
    "kind": "booking_confirmed",
    "subject": "b_123",
    "issued_at": "2026-05-01T12:00:00Z",
    "issuer": "commerce-api",
    "signature": "hmac-sha256:a1b2c3d4..."
  }
}

Verifying receipts

POST /v1/receipts/verify
Content-Type: application/json

{ "kind": "booking_confirmed", "subject": "b_123", "issued_at": "...", "issuer": "commerce-api", "signature": "..." }

Returns 200 OK if valid. Agents with the shared key can also verify locally using the canonical form.

How does delegation work?

Agents act on behalf of travelers using short-lived JWTs. The platform records both "which agent acted" and "on whose behalf."

How do I book a room?

Step-by-step guide through the canonical booking flow — search, quote, hold, confirm — with error recovery at each step.

On this page

When are receipts issued?Receipt structureVerifying receipts