# pox.me

> Canonical domain: https://pox.me

## Overview

- Account authentication and bearer-token issuance via auth.pox.me.
- Identity, credential, canonical communications, legacy form, file, and billing APIs via api.pox.me.
- Authenticated remote MCP tools for identity and communications operations via mcp.pox.me.
- Safe asset delivery for user-uploaded media via assets.pox.me.
- Agent discovery via Link headers, llms.txt, API catalog, agent card, agent skills, and a public read-only MCP endpoint.
- Agentic commerce discovery via ACP, UCP, x402 auth-only discovery, and a separate commerce MCP endpoint.
- HTTP message signature verification bootstrap via the Web Bot Auth directory.

## Public entry points

- Homepage: https://pox.me/ — Public overview of pox.me and the platform value proposition.
- Features: https://pox.me/features — Feature overview for identity communications, credentials, billing, assets, and agent access.
- Pricing: https://pox.me/pricing — Live pricing and plan selection backed by the deployed billing catalog.
- Use Cases: https://pox.me/use-cases — Examples of how agents, operators, and platforms use pox.me.
- Protocol: https://pox.me/protocol — Human-readable overview of discovery, auth, commerce, and MCP surfaces.
- Docs: https://pox.me/docs — Primary human-readable documentation entry point.
- Help: https://pox.me/help — Troubleshooting and onboarding guidance.
- Contact: https://pox.me/contact — Public contact paths and rollout guidance.
- Sign Up: https://pox.me/sign-up — Account registration entry point.
- Sign In: https://pox.me/sign-in — Account sign-in entry point.
- OIDC Issuer: https://auth.pox.me/oidc — Canonical OAuth 2.0 and OIDC issuer used by the platform.
- REST API: https://api.pox.me — Primary REST API origin for authenticated platform operations.
- Public Discovery MCP: https://pox.me/mcp — Read-only public discovery MCP endpoint for orientation tasks.
- A2A Agent Interface: https://pox.me/a2a — Public HTTP+JSON Agent-to-Agent interface for pox.me discovery and onboarding orientation.
- Identity MCP: https://mcp.pox.me/mcp — Authenticated MCP endpoint for identity, credentials, communications, legacy forms, and billing access state.
- Commerce MCP: https://api.pox.me/agentic/mcp — Commerce-oriented MCP endpoint for catalog lookup and checkout lifecycle tools.
- x402 Discovery: https://pox.me/api — x402 auth-only discovery endpoint using Sign-In-With-X proofs.
- x402 Discovery v1: https://pox.me/api/v1 — Compatibility x402 auth-only discovery endpoint.
- Asset CDN: https://assets.pox.me — Safe asset delivery origin backed by R2 through a hardened worker.

## Agent guidance

- Start with /.well-known/api-catalog, /.well-known/agent-card.json, and llms.txt for public discovery.
- Use OAuth and OIDC discovery before attempting authenticated flows.
- Treat assets.pox.me as a dedicated safe file-delivery origin rather than direct object storage.
- Use https://pox.me/mcp for read-only orientation tasks and https://mcp.pox.me/mcp for authenticated identity tooling.
- Commerce-aware agents should start with /.well-known/ucp, /.well-known/acp.json, and https://api.pox.me/agentic/mcp.
- Wallet-based agents can use /api or /api/v1 with x402 Sign-In-With-X for auth-only discovery.