qntx · gitctrlx · Mar 17, 2026 · Mar 16, 2026 · Mar 16, 2026 · gitctrlx
diff --git a/src/x402_openai/_transport.py b/src/x402_openai/_transport.py
@@ -23,15 +23,24 @@
 def _clone_request_with_headers(
     original: httpx.Request,
     extra_headers: dict[str, str],
+    *,
+    content: bytes | None = None,
 ) -> httpx.Request:
-    """Clone *original* and merge *extra_headers* into the copy."""
+    """Clone *original* and merge *extra_headers* into the copy.
+
+    Parameters
+    ----------
+    content:
+        Optional explicit body bytes to use for the cloned request.
+        When omitted, ``original.content`` is used.
+    """
     headers = dict(original.headers)
     headers.update(extra_headers)
     return httpx.Request(
         method=original.method,
         url=original.url,
         headers=headers,
-        content=original.content,
+        content=original.content if content is None else content,
         extensions=dict(original.extensions),
     )
 
@@ -78,7 +87,14 @@ def handle_request(self, request: httpx.Request) -> httpx.Response:
             logger.exception("x402: payment signing failed")
             return response
 
-        retry = _clone_request_with_headers(request, payment_headers)
+        try:
+            body = request.content
+        except httpx.RequestNotRead:
+            # Some transports/proxies can short-circuit with 402 before consuming
+            # the request body. Ensure we materialize it so the retry is replayable.
+            body = request.read()
+
+        retry = _clone_request_with_headers(request, payment_headers, content=body)
         return self._inner.handle_request(retry)
-        return self._inner.handle_request(retry)
+        retry = _clone_request_with_headers(request, payment_headers, content=body)
+        response.close()
+        return self._inner.handle_request(retry)
-        return self._inner.handle_request(retry)
+        retry = _clone_request_with_headers(request, payment_headers, content=body)
+        response.close()
+        return self._inner.handle_request(retry)
 
     def close(self) -> None:
@@ -128,7 +144,14 @@ async def handle_async_request(self, request: httpx.Request) -> httpx.Response:
             logger.exception("x402: payment signing failed")
             return response
 
-        retry = _clone_request_with_headers(request, payment_headers)
+        try:
+            body = request.content
+        except httpx.RequestNotRead:
+            # Some transports/proxies can short-circuit with 402 before consuming
+            # the request body. Ensure we materialize it so the retry is replayable.
+            body = await request.aread()
+
+        retry = _clone_request_with_headers(request, payment_headers, content=body)
         return await self._inner.handle_async_request(retry)
-        return await self._inner.handle_async_request(retry)
+        retry = _clone_request_with_headers(request, payment_headers, content=body)
+        await response.aclose()
+        return await self._inner.handle_async_request(retry)
-        return await self._inner.handle_async_request(retry)
+        retry = _clone_request_with_headers(request, payment_headers, content=body)
+        await response.aclose()
+        return await self._inner.handle_async_request(retry)
 
     async def aclose(self) -> None:

diff --git a/tests/test_transport.py b/tests/test_transport.py
@@ -1,8 +1,18 @@
 from __future__ import annotations
 
+from typing import TYPE_CHECKING
+
 import httpx
+import pytest
+
+if TYPE_CHECKING:
+    from collections.abc import AsyncIterator, Iterator
 
-from x402_openai._transport import _clone_request_with_headers
+from x402_openai._transport import (
+    AsyncX402Transport,
+    X402Transport,
+    _clone_request_with_headers,
+)
 
 
 def test_clone_request_merges_headers() -> None:
@@ -37,3 +47,96 @@ def test_clone_request_preserves_extensions() -> None:
     cloned = _clone_request_with_headers(original, {"x-payment": "signed"})
 
     assert cloned.extensions == original.extensions
+
+
+class _FakeX402ClientSync:
+    def handle_402_response(
+        self,
+        headers: dict[str, str],
+        body: bytes,
+    ) -> tuple[dict[str, str], dict[str, str]]:
+        assert headers["x-402"] == "required"
+        assert body == b"challenge"
+        return {"x-payment": "signed"}, {}
+
+
+class _ShortCircuit402Transport(httpx.BaseTransport):
+    def __init__(self) -> None:
+        self.calls = 0
+        self.retry_body = b""
+        self.retry_headers: dict[str, str] = {}
+
+    def handle_request(self, request: httpx.Request) -> httpx.Response:
+        self.calls += 1
+        if self.calls == 1:
+            # Intentionally do not consume request body.
+            return httpx.Response(402, headers={"x-402": "required"}, content=b"challenge")
+
+        self.retry_body = request.read()
+        self.retry_headers = dict(request.headers)
+        return httpx.Response(200, content=b"ok")
+
+
+def _iter_json() -> Iterator[bytes]:
+    yield b'{"prompt":'
+    yield b'"hi"}'
+
+
+def test_sync_transport_retries_even_if_402_response_short_circuits_body() -> None:
+    inner = _ShortCircuit402Transport()
+    transport = X402Transport(_FakeX402ClientSync(), inner=inner)
+
+    request = httpx.Request("POST", "https://example.com/v1/chat", content=_iter_json())
+    response = transport.handle_request(request)
+
+    assert response.status_code == 200
+    assert inner.calls == 2
+    assert inner.retry_headers["x-payment"] == "signed"
+    assert inner.retry_body == b'{"prompt":"hi"}'
+
+
+class _FakeX402ClientAsync:
+    async def handle_402_response(
+        self,
+        headers: dict[str, str],
+        body: bytes,
+    ) -> tuple[dict[str, str], dict[str, str]]:
+        assert headers["x-402"] == "required"
+        assert body == b"challenge"
+        return {"x-payment": "signed"}, {}
+
+
+class _ShortCircuit402AsyncTransport(httpx.AsyncBaseTransport):
+    def __init__(self) -> None:
+        self.calls = 0
+        self.retry_body = b""
+        self.retry_headers: dict[str, str] = {}
+
+    async def handle_async_request(self, request: httpx.Request) -> httpx.Response:
+        self.calls += 1
+        if self.calls == 1:
+            # Intentionally do not consume request body.
+            return httpx.Response(402, headers={"x-402": "required"}, content=b"challenge")
+
+        self.retry_body = await request.aread()
+        self.retry_headers = dict(request.headers)
+        return httpx.Response(200, content=b"ok")
+
+
+async def _aiter_json() -> AsyncIterator[bytes]:
+    yield b'{"prompt":'
+    yield b'"hi"}'
+
+
+@pytest.mark.anyio
+async def test_async_transport_retries_even_if_402_response_short_circuits_body() -> None:
+    inner = _ShortCircuit402AsyncTransport()
+    transport = AsyncX402Transport(_FakeX402ClientAsync(), inner=inner)
+
+    request = httpx.Request("POST", "https://example.com/v1/chat", content=_aiter_json())
+    response = await transport.handle_async_request(request)
+
+    assert response.status_code == 200
+    assert inner.calls == 2
+    assert inner.retry_headers["x-payment"] == "signed"
+    assert inner.retry_body == b'{"prompt":"hi"}'