npm - @agent-score/commerce - Versions diffs - 2.2.0 → 2.3.0 - Mend

@agent-score/commerce 2.2.0 → 2.3.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (46) hide show

package/README.md +2 -2
package/dist/challenge/index.d.mts +3 -3
package/dist/challenge/index.d.ts +3 -3
package/dist/challenge/index.js.map +1 -1
package/dist/challenge/index.mjs.map +1 -1
package/dist/{checkout-CKQE2QpJ.d.mts → checkout-Ceo1_rVJ.d.mts} +2 -2
package/dist/{checkout-CfgxgPZL.d.ts → checkout-ChyOi7aU.d.ts} +2 -2
package/dist/core.js +1 -1
package/dist/core.mjs +1 -1
package/dist/{default_rails-C5gKZJMI.d.ts → default_rails-DtR_E9N9.d.ts} +1 -1
package/dist/{default_rails-XFCuRddA.d.mts → default_rails-K25PtWrL.d.mts} +1 -1
package/dist/discovery/index.d.mts +4 -4
package/dist/discovery/index.d.ts +4 -4
package/dist/identity/express.js +1 -1
package/dist/identity/express.mjs +1 -1
package/dist/identity/fastify.js +1 -1
package/dist/identity/fastify.mjs +1 -1
package/dist/identity/hono.js +1 -1
package/dist/identity/hono.mjs +1 -1
package/dist/identity/nextjs.js +1 -1
package/dist/identity/nextjs.mjs +1 -1
package/dist/identity/web.js +1 -1
package/dist/identity/web.mjs +1 -1
package/dist/index.d.mts +7 -7
package/dist/index.d.ts +7 -7
package/dist/index.js +3 -1
package/dist/index.js.map +1 -1
package/dist/index.mjs +3 -1
package/dist/index.mjs.map +1 -1
package/dist/payment/index.d.mts +3 -3
package/dist/payment/index.d.ts +3 -3
package/dist/payment/index.js +2 -0
package/dist/payment/index.js.map +1 -1
package/dist/payment/index.mjs +2 -0
package/dist/payment/index.mjs.map +1 -1
package/dist/{pricing-uFGRNoGl.d.ts → pricing-B3-aKxSz.d.ts} +1 -1
package/dist/{pricing-dSI3ePmE.d.mts → pricing-BReyZiqN.d.mts} +1 -1
package/dist/{rail_spec-D6qzh3J0.d.mts → rail_spec-B1239jPp.d.mts} +25 -0
package/dist/{rail_spec-D6qzh3J0.d.ts → rail_spec-B1239jPp.d.ts} +25 -0
package/dist/stripe-multichain/index.d.mts +61 -11
package/dist/stripe-multichain/index.d.ts +61 -11
package/dist/stripe-multichain/index.js +82 -42
package/dist/stripe-multichain/index.js.map +1 -1
package/dist/stripe-multichain/index.mjs +81 -42
package/dist/stripe-multichain/index.mjs.map +1 -1
package/package.json +5 -5

package/dist/stripe-multichain/index.mjs CHANGED Viewed

@@ -19702,50 +19702,76 @@ async function createMultichainPaymentIntent({
 }
 // src/stripe-multichain/pay_to_address.ts
+var DEFAULT_NETWORKS = ["tempo", "base", "solana"];
 async function createPayToAddressFromStripePI(opts) {
+  const fromCredential = await tryResolveFromCredential(opts);
+  if (fromCredential !== null) return fromCredential;
+  const { preferred } = await mintAndCache(opts);
+  return preferred;
+}
+async function mintMultichainRecipients(opts) {
+  const fromCredential = await tryResolveFromCredential(opts);
+  if (fromCredential !== null) {
+    const piId = opts.piCache.getPaymentIntentId(fromCredential);
+    const networkMap = piId ? readNetworkMapFromCache(opts.piCache, piId) : {};
+    const merged2 = { ...networkMap, ...opts.staticRecipients ?? {} };
+    return {
+      recipients: merged2,
+      ...piId !== void 0 && { paymentIntentId: piId },
+      reusedFromCredential: true
+    };
+  }
+  const { merged, paymentIntentId } = await mintAndCache(opts);
+  return { recipients: merged, paymentIntentId, reusedFromCredential: false };
+}
+async function tryResolveFromCredential(opts) {
   const authHeader = opts.request.headers.get("authorization");
-  if (authHeader) {
-    const { Credential } = await Promise.resolve().then(() => (init_dist2(), dist_exports));
-    if (Credential.extractPaymentScheme(authHeader)) {
-      let credential;
-      try {
-        credential = Credential.fromRequest(opts.request);
-      } catch {
-        throw new CheckoutValidationError({
-          code: "invalid_credential",
-          message: "The Authorization: Payment header is not a valid MPP credential.",
-          action: "retry_without_credential",
-          status: 401
-        });
-      }
-      const method = credential.challenge.method;
-      if (method === "tempo" || method === "solana") {
-        const toAddress = credential.challenge.request.recipient;
-        if (typeof toAddress !== "string" || !toAddress) {
-          throw new CheckoutValidationError({
-            code: "invalid_credential",
-            message: "The MPP credential is missing its recipient field.",
-            action: "retry_without_credential",
-            status: 401
-          });
-        }
-        if (!await opts.piCache.hasAddress(toAddress)) {
-          throw new CheckoutValidationError({
-            code: "invalid_credential",
-            message: "The signed-against payTo recipient is not in this merchant's cache (unknown or expired). Retry without the Authorization: Payment header to receive a fresh 402 challenge.",
-            action: "retry_without_credential",
-            status: 401
-          });
-        }
-        return toAddress;
-      }
-    }
+  if (!authHeader) return null;
+  const { Credential } = await Promise.resolve().then(() => (init_dist2(), dist_exports));
+  if (!Credential.extractPaymentScheme(authHeader)) return null;
+  let credential;
+  try {
+    credential = Credential.fromRequest(opts.request);
+  } catch {
+    throw new CheckoutValidationError({
+      code: "invalid_credential",
+      message: "The Authorization: Payment header is not a valid MPP credential.",
+      action: "retry_without_credential",
+      status: 401
+    });
+  }
+  const method = credential.challenge.method;
+  if (method !== "tempo" && method !== "solana") return null;
+  const toAddress = credential.challenge.request.recipient;
+  if (typeof toAddress !== "string" || !toAddress) {
+    throw new CheckoutValidationError({
+      code: "invalid_credential",
+      message: "The MPP credential is missing its recipient field.",
+      action: "retry_without_credential",
+      status: 401
+    });
+  }
+  const staticForMethod = opts.staticRecipients?.[method];
+  if (staticForMethod && staticForMethod === toAddress) return toAddress;
+  if (!await opts.piCache.hasAddress(toAddress)) {
+    throw new CheckoutValidationError({
+      code: "invalid_credential",
+      message: "The signed-against payTo recipient is not in this merchant's cache (unknown or expired). Retry without the Authorization: Payment header to receive a fresh 402 challenge.",
+      action: "retry_without_credential",
+      status: 401
+    });
   }
+  return toAddress;
+}
+async function mintAndCache(opts) {
+  const staticRecipients = opts.staticRecipients ?? {};
+  const requestedNetworks = opts.networks ?? [...DEFAULT_NETWORKS];
+  const stripeNetworks = requestedNetworks.filter((n) => !(n in staticRecipients));
   const idempotencyKey = opts.orderId ? `pi-${opts.orderId}-${opts.amountCents}` : void 0;
   const { paymentIntentId, depositAddresses } = await createMultichainPaymentIntent({
     stripe: opts.stripe,
     amount: opts.amountCents,
-    networks: opts.networks ?? ["tempo", "base", "solana"],
+    networks: stripeNetworks,
     ...opts.metadata ? { metadata: opts.metadata } : {},
     ...idempotencyKey ? { idempotencyKey } : {}
   });
@@ -19753,10 +19779,14 @@ async function createPayToAddressFromStripePI(opts) {
     await opts.piCache.cacheAddress(address2);
     opts.piCache.cachePaymentIntent(address2, paymentIntentId);
   }
-  opts.piCache.cacheNetworkAddresses(paymentIntentId, depositAddresses);
-  const preferred = opts.preferredNetwork ?? "tempo";
-  const payTo = depositAddresses[preferred] ?? depositAddresses.base ?? depositAddresses.tempo;
-  if (!payTo) {
+  for (const address2 of Object.values(staticRecipients)) {
+    await opts.piCache.cacheAddress(address2);
+  }
+  const merged = { ...depositAddresses, ...staticRecipients };
+  opts.piCache.cacheNetworkAddresses(paymentIntentId, merged);
+  const preferredKey = opts.preferredNetwork ?? "tempo";
+  const preferred = merged[preferredKey] ?? merged.base ?? merged.tempo;
+  if (!preferred) {
     throw new CheckoutValidationError({
       code: "payment_provider_unavailable",
       message: "Stripe returned deposit addresses but none matched the requested network (tempo / base / solana). The account may have only a subset of multichain networks enabled.",
@@ -19764,7 +19794,15 @@ async function createPayToAddressFromStripePI(opts) {
       status: 503
     });
   }
-  return payTo;
+  return { preferred, merged, paymentIntentId };
+}
+function readNetworkMapFromCache(piCache, paymentIntentId) {
+  const entries = [];
+  for (const n of DEFAULT_NETWORKS) {
+    const addr = piCache.getNetworkDepositAddress(paymentIntentId, n);
+    if (addr) entries.push([n, addr]);
+  }
+  return Object.fromEntries(entries);
 }
 // src/stripe-multichain/simulate_deposit.ts
@@ -19988,6 +20026,7 @@ export {
   createMultichainPaymentIntent,
   createPayToAddressFromStripePI,
   createPiCache,
+  mintMultichainRecipients,
   networkForOutcome,
   simulateCryptoDeposit,
   simulateDepositForOutcome,