npm - @agentcash/router - Versions diffs - 0.2.0 → 0.2.2 - Mend

@agentcash/router 0.2.0 → 0.2.2

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (5) hide show

package/dist/index.cjs CHANGED Viewed

@@ -41,8 +41,9 @@ async function createX402Server(config) {
   const { bazaarResourceServerExtension } = await import("@x402/extensions/bazaar");
   const { siwxResourceServerExtension } = await import("@x402/extensions/sign-in-with-x");
   const { facilitator: defaultFacilitator } = await import("@coinbase/x402");
-  const facilitatorUrl = config.facilitatorUrl ?? defaultFacilitator;
-  const client = new HTTPFacilitatorClient(facilitatorUrl);
+  const raw = config.facilitatorUrl ?? defaultFacilitator;
+  const facilitatorConfig = typeof raw === "string" ? { url: raw } : raw;
+  const client = new HTTPFacilitatorClient(facilitatorConfig);
   const server = new x402ResourceServer(client);
   registerExactEvmScheme(server);
   server.registerExtension(bazaarResourceServerExtension);
@@ -53,7 +54,7 @@ async function createX402Server(config) {
 async function retryInit(server, maxAttempts = 3, backoff = [1e3, 2e3, 4e3]) {
   for (let attempt = 0; attempt < maxAttempts; attempt++) {
     try {
-      await server.init();
+      await server.initialize();
       return;
     } catch (err) {
       const is429 = err instanceof Error && (err.message.includes("429") || err.message.includes("rate limit"));
@@ -83,9 +84,15 @@ module.exports = __toCommonJS(index_exports);
 // src/registry.ts
 var RouteRegistry = class {
   routes = /* @__PURE__ */ new Map();
+  // Silently overwrites on duplicate key. Next.js module loading order is
+  // non-deterministic during build — discovery stubs and real handlers may
+  // register the same route key in either order. Last writer wins.
+  // Prior art: ElysiaJS uses the same pattern (silent overwrite in router.history).
   register(entry) {
-    if (this.routes.has(entry.key)) {
-      throw new Error(`route '${entry.key}': already registered (duplicate route key)`);
+    if (this.routes.has(entry.key) && typeof process !== "undefined" && process.env?.["NODE_ENV"] !== "production") {
+      console.warn(
+        `[agentcash/router] route '${entry.key}' registered twice \u2014 overwriting (this is expected for discovery stubs during next build)`
+      );
     }
     this.routes.set(entry.key, entry);
   }
@@ -301,10 +308,10 @@ async function buildX402Challenge(server, routeEntry, request, price, payeeAddre
     method: routeEntry.method,
     description: routeEntry.description
   };
-  const requirements = server.buildPaymentRequirementsFromOptions(options, {
+  const requirements = await server.buildPaymentRequirementsFromOptions([options], {
     request
   });
-  const paymentRequired = server.createPaymentRequiredResponse(
+  const paymentRequired = await server.createPaymentRequiredResponse(
     requirements,
     resource,
     null,
@@ -324,7 +331,7 @@ async function verifyX402Payment(server, request, routeEntry, price, payeeAddres
     price,
     payTo: payeeAddress
   };
-  const requirements = server.buildPaymentRequirementsFromOptions(options, {
+  const requirements = await server.buildPaymentRequirementsFromOptions([options], {
     request
   });
   const matching = server.findMatchingRequirements(requirements, payload);
@@ -368,12 +375,12 @@ async function ensureMpay() {
 }
 async function buildMPPChallenge(routeEntry, request, mppConfig, price) {
   await ensureMpay();
-  const intent = {
+  const methodIntent = tempo.charge({
     amount: price,
     currency: mppConfig.currency,
     recipient: mppConfig.recipient ?? ""
-  };
-  const challenge = Challenge.fromIntent(intent, {
+  });
+  const challenge = Challenge.fromIntent(methodIntent, {
     secretKey: mppConfig.secretKey,
     realm: new URL(request.url).origin,
     request
@@ -384,7 +391,7 @@ async function verifyMPPCredential(request, _routeEntry, mppConfig, price) {
   await ensureMpay();
   const credential = Credential.fromRequest(request);
   if (!credential) return null;
-  const isValid = Challenge.verify(credential, { secretKey: mppConfig.secretKey });
+  const isValid = Challenge.verify(credential.challenge, { secretKey: mppConfig.secretKey });
   if (!isValid) {
     return { valid: false, payer: null };
   }
@@ -408,7 +415,7 @@ async function buildMPPReceipt(reference) {
     method: "tempo",
     status: "success",
     reference,
-    timestamp: Date.now()
+    timestamp: (/* @__PURE__ */ new Date()).toISOString()
   });
   return Receipt.serialize(receipt);
 }
@@ -571,7 +578,12 @@ function createRequestHandler(routeEntry, handler, deps) {
         try {
           const { encodePaymentRequiredHeader } = await import("@x402/core/http");
           encoded = encodePaymentRequiredHeader(paymentRequired);
-        } catch {
+        } catch (err) {
+          firePluginHook(deps.plugin, "onAlert", pluginCtx, {
+            level: "warn",
+            message: `SIWX challenge header encoding failed: ${err instanceof Error ? err.message : String(err)}`,
+            route: routeEntry.key
+          });
         }
         const response = new import_server2.NextResponse(JSON.stringify(paymentRequired), {
           status: 402,
@@ -774,7 +786,12 @@ async function build402(request, routeEntry, deps, meta, pluginCtx) {
         extensions
       );
       response.headers.set("PAYMENT-REQUIRED", encoded);
-    } catch {
+    } catch (err) {
+      firePluginHook(deps.plugin, "onAlert", pluginCtx, {
+        level: "critical",
+        message: `x402 challenge build failed: ${err instanceof Error ? err.message : String(err)}`,
+        route: routeEntry.key
+      });
     }
   }
   if (routeEntry.protocols.includes("mpp") && deps.mppConfig) {
@@ -783,7 +800,12 @@ async function build402(request, routeEntry, deps, meta, pluginCtx) {
         "WWW-Authenticate",
         await buildMPPChallenge(routeEntry, request, deps.mppConfig, challengePrice)
       );
-    } catch {
+    } catch (err) {
+      firePluginHook(deps.plugin, "onAlert", pluginCtx, {
+        level: "critical",
+        message: `MPP challenge build failed: ${err instanceof Error ? err.message : String(err)}`,
+        route: routeEntry.key
+      });
     }
   }
   firePluginResponse(deps, pluginCtx, meta, response);
@@ -1158,7 +1180,11 @@ function createRouter(config) {
   const baseUrl = typeof globalThis.process !== "undefined" ? process.env.NEXT_PUBLIC_BASE_URL ?? "http://localhost:3000" : "http://localhost:3000";
   if (config.plugin?.init) {
     try {
-      config.plugin.init({ origin: baseUrl });
+      const result = config.plugin.init({ origin: baseUrl });
+      if (result && typeof result.catch === "function") {
+        result.catch(() => {
+        });
+      }
     } catch {
     }
   }

package/dist/index.d.cts CHANGED Viewed

@@ -82,6 +82,28 @@ interface AlertEvent {
     meta?: Record<string, unknown>;
 }
 type AlertFn = (level: AlertLevel, message: string, meta?: Record<string, unknown>) => void;
+interface X402Server {
+    initialize(): Promise<void>;
+    buildPaymentRequirementsFromOptions(options: Array<{
+        scheme: string;
+        network: string;
+        price: string;
+        payTo: string;
+    }>, context: {
+        request: Request;
+    }): Promise<unknown[]>;
+    createPaymentRequiredResponse(requirements: unknown[], resource: {
+        url: string;
+        method: string;
+        description?: string;
+    }, error: string | null, extensions?: Record<string, unknown>): Promise<unknown>;
+    findMatchingRequirements(requirements: unknown[], payload: unknown): unknown;
+    verifyPayment(payload: unknown, requirements: unknown): Promise<{
+        isValid: boolean;
+        payer?: string;
+    }>;
+    settlePayment(payload: unknown, requirements: unknown): Promise<unknown>;
+}
 type ProtocolType = 'x402' | 'mpp';
 type AuthMode = 'paid' | 'siwx' | 'apiKey' | 'unprotected';
 interface TierConfig {
@@ -192,7 +214,7 @@ interface OpenAPIOptions {
 }
 interface OrchestrateDeps {
-    x402Server: Record<string, Function> | null;
+    x402Server: X402Server | null;
     initPromise: Promise<void>;
     x402InitError?: string;
     plugin?: RouterPlugin;
@@ -272,4 +294,4 @@ interface ServiceRouter {
 }
 declare function createRouter(config: RouterConfig): ServiceRouter;
-export { type AlertEvent, type AlertFn, type AlertLevel, type AuthMode, type ErrorEvent, type HandlerContext, HttpError, MemoryNonceStore, type MonitorEntry, type NonceStore, type OveragePolicy, type PaidOptions, type PaymentEvent, type PluginContext, type PricingConfig, type ProtocolType, type ProviderConfig, type ProviderQuotaEvent, type QuotaInfo, type QuotaLevel, type RequestMeta, type ResponseMeta, RouteBuilder, type RouteEntry, RouteRegistry, type RouterConfig, type RouterPlugin, type ServiceRouter, type SettlementEvent, type TierConfig, consolePlugin, createRouter };
+export { type AlertEvent, type AlertFn, type AlertLevel, type AuthMode, type ErrorEvent, type HandlerContext, HttpError, MemoryNonceStore, type MonitorEntry, type NonceStore, type OveragePolicy, type PaidOptions, type PaymentEvent, type PluginContext, type PricingConfig, type ProtocolType, type ProviderConfig, type ProviderQuotaEvent, type QuotaInfo, type QuotaLevel, type RequestMeta, type ResponseMeta, RouteBuilder, type RouteEntry, RouteRegistry, type RouterConfig, type RouterPlugin, type ServiceRouter, type SettlementEvent, type TierConfig, type X402Server, consolePlugin, createRouter };

package/dist/index.d.ts CHANGED Viewed

@@ -82,6 +82,28 @@ interface AlertEvent {
     meta?: Record<string, unknown>;
 }
 type AlertFn = (level: AlertLevel, message: string, meta?: Record<string, unknown>) => void;
+interface X402Server {
+    initialize(): Promise<void>;
+    buildPaymentRequirementsFromOptions(options: Array<{
+        scheme: string;
+        network: string;
+        price: string;
+        payTo: string;
+    }>, context: {
+        request: Request;
+    }): Promise<unknown[]>;
+    createPaymentRequiredResponse(requirements: unknown[], resource: {
+        url: string;
+        method: string;
+        description?: string;
+    }, error: string | null, extensions?: Record<string, unknown>): Promise<unknown>;
+    findMatchingRequirements(requirements: unknown[], payload: unknown): unknown;
+    verifyPayment(payload: unknown, requirements: unknown): Promise<{
+        isValid: boolean;
+        payer?: string;
+    }>;
+    settlePayment(payload: unknown, requirements: unknown): Promise<unknown>;
+}
 type ProtocolType = 'x402' | 'mpp';
 type AuthMode = 'paid' | 'siwx' | 'apiKey' | 'unprotected';
 interface TierConfig {
@@ -192,7 +214,7 @@ interface OpenAPIOptions {
 }
 interface OrchestrateDeps {
-    x402Server: Record<string, Function> | null;
+    x402Server: X402Server | null;
     initPromise: Promise<void>;
     x402InitError?: string;
     plugin?: RouterPlugin;
@@ -272,4 +294,4 @@ interface ServiceRouter {
 }
 declare function createRouter(config: RouterConfig): ServiceRouter;
-export { type AlertEvent, type AlertFn, type AlertLevel, type AuthMode, type ErrorEvent, type HandlerContext, HttpError, MemoryNonceStore, type MonitorEntry, type NonceStore, type OveragePolicy, type PaidOptions, type PaymentEvent, type PluginContext, type PricingConfig, type ProtocolType, type ProviderConfig, type ProviderQuotaEvent, type QuotaInfo, type QuotaLevel, type RequestMeta, type ResponseMeta, RouteBuilder, type RouteEntry, RouteRegistry, type RouterConfig, type RouterPlugin, type ServiceRouter, type SettlementEvent, type TierConfig, consolePlugin, createRouter };
+export { type AlertEvent, type AlertFn, type AlertLevel, type AuthMode, type ErrorEvent, type HandlerContext, HttpError, MemoryNonceStore, type MonitorEntry, type NonceStore, type OveragePolicy, type PaidOptions, type PaymentEvent, type PluginContext, type PricingConfig, type ProtocolType, type ProviderConfig, type ProviderQuotaEvent, type QuotaInfo, type QuotaLevel, type RequestMeta, type ResponseMeta, RouteBuilder, type RouteEntry, RouteRegistry, type RouterConfig, type RouterPlugin, type ServiceRouter, type SettlementEvent, type TierConfig, type X402Server, consolePlugin, createRouter };

package/dist/index.js CHANGED Viewed

@@ -19,8 +19,9 @@ async function createX402Server(config) {
   const { bazaarResourceServerExtension } = await import("@x402/extensions/bazaar");
   const { siwxResourceServerExtension } = await import("@x402/extensions/sign-in-with-x");
   const { facilitator: defaultFacilitator } = await import("@coinbase/x402");
-  const facilitatorUrl = config.facilitatorUrl ?? defaultFacilitator;
-  const client = new HTTPFacilitatorClient(facilitatorUrl);
+  const raw = config.facilitatorUrl ?? defaultFacilitator;
+  const facilitatorConfig = typeof raw === "string" ? { url: raw } : raw;
+  const client = new HTTPFacilitatorClient(facilitatorConfig);
   const server = new x402ResourceServer(client);
   registerExactEvmScheme(server);
   server.registerExtension(bazaarResourceServerExtension);
@@ -31,7 +32,7 @@ async function createX402Server(config) {
 async function retryInit(server, maxAttempts = 3, backoff = [1e3, 2e3, 4e3]) {
   for (let attempt = 0; attempt < maxAttempts; attempt++) {
     try {
-      await server.init();
+      await server.initialize();
       return;
     } catch (err) {
       const is429 = err instanceof Error && (err.message.includes("429") || err.message.includes("rate limit"));
@@ -49,9 +50,15 @@ var init_server = __esm({
 // src/registry.ts
 var RouteRegistry = class {
   routes = /* @__PURE__ */ new Map();
+  // Silently overwrites on duplicate key. Next.js module loading order is
+  // non-deterministic during build — discovery stubs and real handlers may
+  // register the same route key in either order. Last writer wins.
+  // Prior art: ElysiaJS uses the same pattern (silent overwrite in router.history).
   register(entry) {
-    if (this.routes.has(entry.key)) {
-      throw new Error(`route '${entry.key}': already registered (duplicate route key)`);
+    if (this.routes.has(entry.key) && typeof process !== "undefined" && process.env?.["NODE_ENV"] !== "production") {
+      console.warn(
+        `[agentcash/router] route '${entry.key}' registered twice \u2014 overwriting (this is expected for discovery stubs during next build)`
+      );
     }
     this.routes.set(entry.key, entry);
   }
@@ -267,10 +274,10 @@ async function buildX402Challenge(server, routeEntry, request, price, payeeAddre
     method: routeEntry.method,
     description: routeEntry.description
   };
-  const requirements = server.buildPaymentRequirementsFromOptions(options, {
+  const requirements = await server.buildPaymentRequirementsFromOptions([options], {
     request
   });
-  const paymentRequired = server.createPaymentRequiredResponse(
+  const paymentRequired = await server.createPaymentRequiredResponse(
     requirements,
     resource,
     null,
@@ -290,7 +297,7 @@ async function verifyX402Payment(server, request, routeEntry, price, payeeAddres
     price,
     payTo: payeeAddress
   };
-  const requirements = server.buildPaymentRequirementsFromOptions(options, {
+  const requirements = await server.buildPaymentRequirementsFromOptions([options], {
     request
   });
   const matching = server.findMatchingRequirements(requirements, payload);
@@ -334,12 +341,12 @@ async function ensureMpay() {
 }
 async function buildMPPChallenge(routeEntry, request, mppConfig, price) {
   await ensureMpay();
-  const intent = {
+  const methodIntent = tempo.charge({
     amount: price,
     currency: mppConfig.currency,
     recipient: mppConfig.recipient ?? ""
-  };
-  const challenge = Challenge.fromIntent(intent, {
+  });
+  const challenge = Challenge.fromIntent(methodIntent, {
     secretKey: mppConfig.secretKey,
     realm: new URL(request.url).origin,
     request
@@ -350,7 +357,7 @@ async function verifyMPPCredential(request, _routeEntry, mppConfig, price) {
   await ensureMpay();
   const credential = Credential.fromRequest(request);
   if (!credential) return null;
-  const isValid = Challenge.verify(credential, { secretKey: mppConfig.secretKey });
+  const isValid = Challenge.verify(credential.challenge, { secretKey: mppConfig.secretKey });
   if (!isValid) {
     return { valid: false, payer: null };
   }
@@ -374,7 +381,7 @@ async function buildMPPReceipt(reference) {
     method: "tempo",
     status: "success",
     reference,
-    timestamp: Date.now()
+    timestamp: (/* @__PURE__ */ new Date()).toISOString()
   });
   return Receipt.serialize(receipt);
 }
@@ -537,7 +544,12 @@ function createRequestHandler(routeEntry, handler, deps) {
         try {
           const { encodePaymentRequiredHeader } = await import("@x402/core/http");
           encoded = encodePaymentRequiredHeader(paymentRequired);
-        } catch {
+        } catch (err) {
+          firePluginHook(deps.plugin, "onAlert", pluginCtx, {
+            level: "warn",
+            message: `SIWX challenge header encoding failed: ${err instanceof Error ? err.message : String(err)}`,
+            route: routeEntry.key
+          });
         }
         const response = new NextResponse2(JSON.stringify(paymentRequired), {
           status: 402,
@@ -740,7 +752,12 @@ async function build402(request, routeEntry, deps, meta, pluginCtx) {
         extensions
       );
       response.headers.set("PAYMENT-REQUIRED", encoded);
-    } catch {
+    } catch (err) {
+      firePluginHook(deps.plugin, "onAlert", pluginCtx, {
+        level: "critical",
+        message: `x402 challenge build failed: ${err instanceof Error ? err.message : String(err)}`,
+        route: routeEntry.key
+      });
     }
   }
   if (routeEntry.protocols.includes("mpp") && deps.mppConfig) {
@@ -749,7 +766,12 @@ async function build402(request, routeEntry, deps, meta, pluginCtx) {
         "WWW-Authenticate",
         await buildMPPChallenge(routeEntry, request, deps.mppConfig, challengePrice)
       );
-    } catch {
+    } catch (err) {
+      firePluginHook(deps.plugin, "onAlert", pluginCtx, {
+        level: "critical",
+        message: `MPP challenge build failed: ${err instanceof Error ? err.message : String(err)}`,
+        route: routeEntry.key
+      });
     }
   }
   firePluginResponse(deps, pluginCtx, meta, response);
@@ -1124,7 +1146,11 @@ function createRouter(config) {
   const baseUrl = typeof globalThis.process !== "undefined" ? process.env.NEXT_PUBLIC_BASE_URL ?? "http://localhost:3000" : "http://localhost:3000";
   if (config.plugin?.init) {
     try {
-      config.plugin.init({ origin: baseUrl });
+      const result = config.plugin.init({ origin: baseUrl });
+      if (result && typeof result.catch === "function") {
+        result.catch(() => {
+        });
+      }
     } catch {
     }
   }

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "@agentcash/router",
-  "version": "0.2.0",
+  "version": "0.2.2",
   "description": "Unified route builder for Next.js App Router APIs with x402, MPP, SIWX, and API key auth",
   "type": "module",
   "exports": {
@@ -70,6 +70,6 @@
   "license": "MIT",
   "repository": {
     "type": "git",
-    "url": "https://github.com/merit-systems/agentcash-router"
+    "url": "git+https://github.com/merit-systems/agentcash-router.git"
   }
 }