Payment information can be shared in many formats and over diverse communication channels. Each has its advantages and limitations. These formats seen together allow for broad flexibility in initiating payments, both on lightning and on-chain. Some of them are still maturing and have varying support across applications.
Test your apps for compatibility
If you need to test whether your application supports a payment request type, you can try scanning the examples shown on this page. If your application does not support a particular format, it should show the user a friendly error message.
A Uniform Resource Identifier (URI) is a web technology that uses unique prefixes to identify anything. This can be real-world objects, websites, information, etc.
Bitcoin uses URIs to help apps identify payment requests. The technical details of this scheme are detailed in BIP 21.
BIP 21 uses a bitcoin: URI scheme to identify and help applications manage bitcoin payment requests. Applications should support this if they want to be interoperable with other bitcoin products. Some other URI schemes used for bitcoin payment requests include lightning and LNURL schemes such as lnurlp. Note that a URI scheme can be presented as lowercase or uppercase.
BIP 21 is extensible and allows for the addition of other useful meta data that give more context to a payment request. This includes things like an amount, labels, messages, and other useful data. It also allows more than one type of payment request format to be included in a payment request.
A common pattern using URIs for inter-app payments is detailed in the wallet selector page.
An invoice is the basis of payment requests on lightning. Most other lightning payment request formats build on top of invoices. How they work on a technical level is defined in BOLT 11.
Invoices are single-use payment requests which have built-in expiries, set to 60 minutes by default. Invoice expiration times can be configured for different use cases such as Hold invoices. These have long expiration times that allow a receiver to accept the payment at a later time.
Invoices can also contain other pieces of meta data useful for users, like a description detailing what the invoice is for. A name can be included in the description via NameDesc, which lets the sender know who they are paying.
Requesters’ node public keys are included in their generated invoices, so invoices should not be shared publicly to preserve privacy.
Lightning invoices are not addresses
It could be tempting to refer to a lightning invoice as a “lightning address.” Doing so could be confused with the lightning address protocol described below. Therefore, avoid calling an invoice an address. “Payment request” is a better synonym for “invoice.”
Invoice protocols are static payment requests that generate and share invoices. These payment requests do not actually contain invoices. Instead, the payer scans or imports the request data. It contains all the information they need to fetch a new invoice from the recipient.
The various types of invoice protocols offer flexibility and unique use cases not possible with single-use, standard invoices.
Offers are an experimental invoice protocol developed by Core Lightning. How they work on a technical level is defined in BOLT 12. Offers are still a draft specification and are currently not widely supported.
Offers can contain a wider range of meta data compared to standard invoices. This includes fiat currencies, requester names, payment limits (minimum and maximum), and recurrences (how often can a new request be generated). Some examples are outlined here.
Offers can also generate pull payments, say for refunds, and have the ability to create subscriptions. A subscription has the offer generate and share invoices with a subscriber as they need them.
Unlike other invoice protocols, offers use native communication to share invoices. This means the invoices are shared within lightning and not out of band over private communication channels, or through a web server (like LNURL), making it more private, censorship resistant, and convenient.
Offers do not need as much information as a standard invoice for a payment to be made. This has usability improvements, such as smaller, easier-to-scan QR codes.
Another feature that is a work in progress with offers is blinded paths. These will enable a user to not reveal the public information about their lightning node, improving privacy.
LNURL is an invoice protocol that leverages HTTP servers to dynamically generate various types of requests. This comes with privacy and censorship resistance trade-offs, as users are relying on a third-party server to act honestly.
LNURL uses a web server, which allows it to have much richer data attached to its requests. An example is the ability to add an image, say of your merchant store, to a payment or request.
LNRURL is broken up into several sub-protocols, which have different use cases. Three of these sub-protocols are focused on making or requesting payments (pay, lightning address, and withdraw). LNURL-auth and channel are also available for authenticating a user and opening payment channels.
Lightning addresses build on top of LNURL-Pay and give users a more human-readable payment address. They use the very familiar email format (user@bitcoin.design) to request payments.
LNURL-withdraw allows a user to pull a payment from another user. These are useful when offering refunds or if the request is needed to be generated by the sender for some reason.
A users node ID can be used as a payment request format when a sender is paying via Keysend or an Atomic multi-path (AMP) payment request.
Node IDs can act as static payment end points. This means the user does not have to generate a request each time they want to receive a payment.
Requesting a payment with your node ID can leak your public information, which is bad for privacy. Keysend payments are also unable to provide proof of payment, like an invoice payment, which could be problematic in some situations.
AMP invoice build on top of Keysends and makes use of atomic multi-path payments. Multi-path payments make it harder to correlate payments, which has privacy benefits as its harder for third parties to know who paid who. They also increase the likelihood of larger payments succeeding.
Unlike Keysends, AMP allows for generation of static invoices. This can be useful for creating static payment requests that can be used for donation or subscription type services.
Like Keysends, AMP invoices can not provide proof of payments, so they may not be viable in some situations, such as paying a merchant. Simplified multipath payments (SMPs) can resolve this issue, though at the expense of payments being easier to correlate, reducing privacy benefits.
AMP invoices do not allow senders to attach a description for the receiver to their payment. This makes it difficult for receivers to know who paid them, and what it was for.
An address is the standard format used for on-chain payment requests. There are many address types that offer different functionality and improvements, such as lower fees or more complex multi-sig setups. We go into detail about these on our address page.
Below are the primary address types available to test if your application supports them.
A payment code is a static payment request type that can receive multiple payments. The technical details of how these work is defined in BIP 47.
Payment codes have been popularised in wallets such as Samourai and Sparrow.
A downside to payment codes is that they require an additional on-chain transaction each time two users want to connect and use them. Silent payments are a new experimental proposal that prevents the need for this additional on-chain transaction at the cost of extra bandwidth for receivers.
Some wallets use what is called a PayNym to abstract payment codes into more human readable payment request formats. However, this is not standardized, directories are not open-source, and currently Samourai is the only operator running a directory.
A unified payment request combines one or more of the formats listed above. This makes it easier to request a payment when you are unsure what formats the sender supports.
Unified payment requests use the BIP 21 bitcoin: URI to add multiple payment request formats to a single payment request. The more formats added, the larger the request becomes which can be an issue for lower end devices that can’t scan complex QR codes.
You can learn more about unified payment requests here.
Next, we will learn about the different private key schemes used to secure your bitcoin.