@atxp/server 0.2.22 → 0.4.0

package/dist/node/getRawBody.js

@@ -0,0 +1,35 @@
+// Helper function to parse size strings like "4mb" to bytes
+function parseSize(size) {
+    const match = size.match(/^(\d+(?:\.\d+)?)\s*([kmgt]?b?)$/i);
+    if (!match) {
+        throw new Error(`Invalid size format: ${size}`);
+    }
+    const value = parseFloat(match[1]);
+    const unit = (match[2] || 'b').toLowerCase();
+    const multipliers = {
+        'b': 1,
+        'kb': 1024,
+        'mb': 1024 * 1024,
+        'gb': 1024 * 1024 * 1024,
+        'tb': 1024 * 1024 * 1024 * 1024,
+    };
+    return Math.floor(value * (multipliers[unit] || 1));
+}
+async function getRawBody(req, encoding, maxSize) {
+    // Use native Node.js approach to read request body
+    const chunks = [];
+    let totalSize = 0;
+    const maxSizeBytes = parseSize(maxSize);
+    for await (const chunk of req) {
+        totalSize += chunk.length;
+        if (totalSize > maxSizeBytes) {
+            throw new Error(`Request body too large. Maximum size is ${maxSize}`);
+        }
+        chunks.push(chunk);
+    }
+    const body = Buffer.concat(chunks);
+    return body.toString(encoding);
+}
+
+export { getRawBody };
+//# sourceMappingURL=getRawBody.js.map

package/dist/node/getRawBody.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"getRawBody.js","sources":["../../src/node/getRawBody.ts"],"sourcesContent":[null],"names":[],"mappings":"AAEA;AACA,SAAS,SAAS,CAAC,IAAY,EAAA;IAC7B,MAAM,KAAK,GAAG,IAAI,CAAC,KAAK,CAAC,kCAAkC,CAAC;IAC5D,IAAI,CAAC,KAAK,EAAE;AACV,QAAA,MAAM,IAAI,KAAK,CAAC,wBAAwB,IAAI,CAAA,CAAE,CAAC;IACjD;IAEA,MAAM,KAAK,GAAG,UAAU,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC;AAClC,IAAA,MAAM,IAAI,GAAG,CAAC,KAAK,CAAC,CAAC,CAAC,IAAI,GAAG,EAAE,WAAW,EAAE;AAE5C,IAAA,MAAM,WAAW,GAA2B;AAC1C,QAAA,GAAG,EAAE,CAAC;AACN,QAAA,IAAI,EAAE,IAAI;QACV,IAAI,EAAE,IAAI,GAAG,IAAI;AACjB,QAAA,IAAI,EAAE,IAAI,GAAG,IAAI,GAAG,IAAI;AACxB,QAAA,IAAI,EAAE,IAAI,GAAG,IAAI,GAAG,IAAI,GAAG,IAAI;KAChC;AAED,IAAA,OAAO,IAAI,CAAC,KAAK,CAAC,KAAK,IAAI,WAAW,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC,CAAC;AACrD;AAEO,eAAe,UAAU,CAAC,GAAoB,EAAE,QAAgB,EAAE,OAAe,EAAA;;IAEtF,MAAM,MAAM,GAAa,EAAE;IAC3B,IAAI,SAAS,GAAG,CAAC;AACjB,IAAA,MAAM,YAAY,GAAG,SAAS,CAAC,OAAO,CAAC;AAEvC,IAAA,WAAW,MAAM,KAAK,IAAI,GAAG,EAAE;AAC7B,QAAA,SAAS,IAAI,KAAK,CAAC,MAAM;AACzB,QAAA,IAAI,SAAS,GAAG,YAAY,EAAE;AAC5B,YAAA,MAAM,IAAI,KAAK,CAAC,2CAA2C,OAAO,CAAA,CAAE,CAAC;QACvE;AACA,QAAA,MAAM,CAAC,IAAI,CAAC,KAAK,CAAC;IACpB;IAEA,MAAM,IAAI,GAAG,MAAM,CAAC,MAAM,CAAC,MAAM,CAAC;AAClC,IAAA,OAAO,IAAI,CAAC,QAAQ,CAAC,QAA0B,CAAC;AAClD;;;;"}

package/dist/node/http.js

@@ -0,0 +1,49 @@
+import * as contentType from 'content-type';
+import { isJSONRPCRequest } from '@modelcontextprotocol/sdk/types.js';
+import { parseMcpMessages } from '@atxp/common';
+import { parseMcpRequestsCore } from '../core/mcp.js';
+import { getRawBody } from './getRawBody.js';
+
+// Useful reference for dealing with low-level http requests:
+// https://github.com/modelcontextprotocol/typescript-sdk/blob/c6ac083b1b37b222b5bfba5563822daa5d03372e/src/server/streamableHttp.ts#L375
+// Using the same value as MCP SDK
+const MAXIMUM_MESSAGE_SIZE = "4mb";
+/**
+ * Node.js HTTP implementation of MCP request parsing
+ * Handles Node.js IncomingMessage parsing and delegates to core logic
+ */
+async function parseMcpRequests(config, requestUrl, req, parsedBody) {
+    parsedBody = parsedBody ?? await parseBody(req, config.logger);
+    // Use the shared core logic for basic validation and filtering
+    const basicMessages = parseMcpRequestsCore(config, requestUrl, req.method || '', parsedBody);
+    // Only proceed with MCP processing if the basic validation passed
+    if (basicMessages.length === 0) {
+        return [];
+    }
+    // Apply additional MCP-specific processing (parseMcpMessages handles SSE and other formats)
+    const messages = await parseMcpMessages(parsedBody, config.logger);
+    const requests = messages.filter(msg => isJSONRPCRequest(msg));
+    if (requests.length !== messages.length) {
+        config.logger.debug(`Dropped ${messages.length - requests.length} MCP messages that were not MCP requests`);
+    }
+    return requests;
+}
+async function parseBody(req, logger) {
+    try {
+        const ct = req.headers["content-type"];
+        let encoding = "utf-8";
+        if (ct) {
+            const parsedCt = contentType.parse(ct);
+            encoding = parsedCt.parameters.charset ?? "utf-8";
+        }
+        const body = await getRawBody(req, encoding, MAXIMUM_MESSAGE_SIZE);
+        return JSON.parse(body);
+    }
+    catch (error) {
+        logger.error(error.message);
+        return undefined;
+    }
+}
+
+export { parseBody, parseMcpRequests };
+//# sourceMappingURL=http.js.map

package/dist/node/http.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"http.js","sources":["../../src/node/http.ts"],"sourcesContent":[null],"names":[],"mappings":";;;;;;AAOA;AACA;AAEA;AACA,MAAM,oBAAoB,GAAG,KAAK;AAElC;;;AAGG;AACI,eAAe,gBAAgB,CAAC,MAAkB,EAAE,UAAe,EAAE,GAAoB,EAAE,UAAoB,EAAA;AACpH,IAAA,UAAU,GAAG,UAAU,IAAI,MAAM,SAAS,CAAC,GAAG,EAAE,MAAM,CAAC,MAAM,CAAC;;AAG9D,IAAA,MAAM,aAAa,GAAG,oBAAoB,CAAC,MAAM,EAAE,UAAU,EAAE,GAAG,CAAC,MAAM,IAAI,EAAE,EAAE,UAAU,CAAC;;AAG5F,IAAA,IAAI,aAAa,CAAC,MAAM,KAAK,CAAC,EAAE;AAC9B,QAAA,OAAO,EAAE;IACX;;IAGA,MAAM,QAAQ,GAAG,MAAM,gBAAgB,CAAC,UAAU,EAAE,MAAM,CAAC,MAAM,CAAC;AAElE,IAAA,MAAM,QAAQ,GAAG,QAAQ,CAAC,MAAM,CAAC,GAAG,IAAI,gBAAgB,CAAC,GAAG,CAAC,CAAC;IAC9D,IAAI,QAAQ,CAAC,MAAM,KAAK,QAAQ,CAAC,MAAM,EAAE;AACvC,QAAA,MAAM,CAAC,MAAM,CAAC,KAAK,CAAC,CAAA,QAAA,EAAW,QAAQ,CAAC,MAAM,GAAG,QAAQ,CAAC,MAAM,CAAA,wCAAA,CAA0C,CAAC;IAC7G;AAEA,IAAA,OAAO,QAAQ;AACjB;AAEO,eAAe,SAAS,CAAC,GAAoB,EAAE,MAAc,EAAA;AAClE,IAAA,IAAI;QACF,MAAM,EAAE,GAAG,GAAG,CAAC,OAAO,CAAC,cAAc,CAAC;QAEtC,IAAI,QAAQ,GAAG,OAAO;QACtB,IAAI,EAAE,EAAE;YACN,MAAM,QAAQ,GAAG,WAAW,CAAC,KAAK,CAAC,EAAE,CAAC;YACtC,QAAQ,GAAG,QAAQ,CAAC,UAAU,CAAC,OAAO,IAAI,OAAO;QACnD;QACA,MAAM,IAAI,GAAG,MAAM,UAAU,CAAC,GAAG,EAAE,QAAQ,EAAE,oBAAoB,CAAC;AAClE,QAAA,OAAO,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC;IACzB;IAAE,OAAO,KAAK,EAAE;AACd,QAAA,MAAM,CAAC,KAAK,CAAE,KAAe,CAAC,OAAO,CAAC;AACtC,QAAA,OAAO,SAAS;IAClB;AACF;;;;"}

package/dist/node/oauth.js

@@ -0,0 +1,41 @@
+import { createOAuthChallengeResponseCore } from '../core/oauth.js';
+
+/**
+ * Node.js HTTP implementation of OAuth challenge sending
+ * Uses Node.js ServerResponse and delegates to core logic
+ */
+function sendOAuthChallenge(res, tokenCheck) {
+    // Use the shared core logic to get response data
+    const responseData = createOAuthChallengeResponseCore(tokenCheck);
+    if (!responseData) {
+        return false;
+    }
+    // Apply the response data to Node.js ServerResponse
+    Object.entries(responseData.headers).forEach(([key, value]) => {
+        res.setHeader(key, value);
+    });
+    res.writeHead(responseData.status);
+    res.end(responseData.body);
+    return true;
+}
+function sendProtectedResourceMetadata(res, metadata) {
+    if (!metadata) {
+        return false;
+    }
+    res.setHeader('Content-Type', 'application/json');
+    res.writeHead(200);
+    res.end(JSON.stringify(metadata));
+    return true;
+}
+function sendOAuthMetadata(res, metadata) {
+    if (!metadata) {
+        return false;
+    }
+    res.setHeader('Content-Type', 'application/json');
+    res.writeHead(200);
+    res.end(JSON.stringify(metadata));
+    return true;
+}
+
+export { sendOAuthChallenge, sendOAuthMetadata, sendProtectedResourceMetadata };
+//# sourceMappingURL=oauth.js.map

package/dist/node/oauth.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"oauth.js","sources":["../../src/node/oauth.ts"],"sourcesContent":[null],"names":[],"mappings":";;AAKA;;;AAGG;AACG,SAAU,kBAAkB,CAAC,GAAmB,EAAE,UAAsB,EAAA;;AAE5E,IAAA,MAAM,YAAY,GAAG,gCAAgC,CAAC,UAAU,CAAC;IAEjE,IAAI,CAAC,YAAY,EAAE;AACjB,QAAA,OAAO,KAAK;IACd;;AAGA,IAAA,MAAM,CAAC,OAAO,CAAC,YAAY,CAAC,OAAO,CAAC,CAAC,OAAO,CAAC,CAAC,CAAC,GAAG,EAAE,KAAK,CAAC,KAAI;AAC5D,QAAA,GAAG,CAAC,SAAS,CAAC,GAAG,EAAE,KAAK,CAAC;AAC3B,IAAA,CAAC,CAAC;AACF,IAAA,GAAG,CAAC,SAAS,CAAC,YAAY,CAAC,MAAM,CAAC;AAClC,IAAA,GAAG,CAAC,GAAG,CAAC,YAAY,CAAC,IAAI,CAAC;AAE1B,IAAA,OAAO,IAAI;AACb;AAEM,SAAU,6BAA6B,CAAC,GAAmB,EAAE,QAA0C,EAAA;IAC3G,IAAI,CAAC,QAAQ,EAAE;AACb,QAAA,OAAO,KAAK;IACd;AACA,IAAA,GAAG,CAAC,SAAS,CAAC,cAAc,EAAE,kBAAkB,CAAC;AACjD,IAAA,GAAG,CAAC,SAAS,CAAC,GAAG,CAAC;IAClB,GAAG,CAAC,GAAG,CAAC,IAAI,CAAC,SAAS,CAAC,QAAQ,CAAC,CAAC;AACjC,IAAA,OAAO,IAAI;AACb;AAEM,SAAU,iBAAiB,CAAC,GAAmB,EAAE,QAA0C,EAAA;IAC/F,IAAI,CAAC,QAAQ,EAAE;AACb,QAAA,OAAO,KAAK;IACd;AACA,IAAA,GAAG,CAAC,SAAS,CAAC,cAAc,EAAE,kBAAkB,CAAC;AACjD,IAAA,GAAG,CAAC,SAAS,CAAC,GAAG,CAAC;IAClB,GAAG,CAAC,GAAG,CAAC,IAAI,CAAC,SAAS,CAAC,QAAQ,CAAC,CAAC;AACjC,IAAA,OAAO,IAAI;AACb;;;;"}

package/dist/node/token.js

@@ -0,0 +1,15 @@
+import { checkTokenCore } from '../core/token.js';
+
+/**
+ * Node.js HTTP implementation of token checking
+ * Extracts data from Node.js IncomingMessage and delegates to core logic
+ */
+async function checkToken(config, resourceURL, req) {
+    // Extract the authorization header from Node.js request
+    const authorizationHeader = req.headers.authorization || null;
+    // Use the shared core logic
+    return checkTokenCore(config, resourceURL, authorizationHeader);
+}
+
+export { checkToken };
+//# sourceMappingURL=token.js.map

package/dist/node/token.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"token.js","sources":["../../src/node/token.ts"],"sourcesContent":[null],"names":[],"mappings":";;AAIA;;;AAGG;AACI,eAAe,UAAU,CAAC,MAAkB,EAAE,WAAgB,EAAE,GAAoB,EAAA;;IAEzF,MAAM,mBAAmB,GAAG,GAAG,CAAC,OAAO,CAAC,aAAa,IAAI,IAAI;;IAG7D,OAAO,cAAc,CAAC,MAAM,EAAE,WAAW,EAAE,mBAAmB,CAAC;AACjE;;;;"}

package/dist/oAuthMetadata.js

@@ -1,14 +1,6 @@
-import { getPath } from "./getResource.js";
-export function sendOAuthMetadata(res, metadata) {
-    if (!metadata) {
-        return false;
-    }
-    res.setHeader('Content-Type', 'application/json');
-    res.writeHead(200);
-    res.end(JSON.stringify(metadata));
-    return true;
-}
-export async function getOAuthMetadata(config, requestUrl) {
+import { getPath } from './getResource.js';
+
+async function getOAuthMetadata(config, requestUrl) {
     if (isOAuthMetadataRequest(config, requestUrl)) {
         try {
             const authServer = await config.oAuthClient.authorizationServerFromUrl(new URL(config.server));
@@ -38,4 +30,6 @@ function isOAuthMetadataRequest(config, requestUrl) {
     const path = getPath(requestUrl).replace(/\/$/, '');
     return path === '/.well-known/oauth-authorization-server';
 }
-//# sourceMappingURL=oAuthMetadata.js.map
+
+export { getOAuthMetadata };
+//# sourceMappingURL=oAuthMetadata.js.map

package/dist/oAuthMetadata.js.map

@@ -1 +1 @@
-{"version":3,"file":"oAuthMetadata.js","sourceRoot":"","sources":["../src/oAuthMetadata.ts"],"names":[],"mappings":"AAGA,OAAO,EAAE,OAAO,EAAE,MAAM,kBAAkB,CAAC;AAE3C,MAAM,UAAU,iBAAiB,CAAC,GAAmB,EAAE,QAA0C;IAC/F,IAAI,CAAC,QAAQ,EAAE,CAAC;QACd,OAAO,KAAK,CAAC;IACf,CAAC;IACD,GAAG,CAAC,SAAS,CAAC,cAAc,EAAE,kBAAkB,CAAC,CAAC;IAClD,GAAG,CAAC,SAAS,CAAC,GAAG,CAAC,CAAC;IACnB,GAAG,CAAC,GAAG,CAAC,IAAI,CAAC,SAAS,CAAC,QAAQ,CAAC,CAAC,CAAC;IAClC,OAAO,IAAI,CAAC;AACd,CAAC;AAED,MAAM,CAAC,KAAK,UAAU,gBAAgB,CAAC,MAAkB,EAAE,UAAe;IACxE,IAAI,sBAAsB,CAAC,MAAM,EAAE,UAAU,CAAC,EAAE,CAAC;QAC/C,IAAI,CAAC;YACH,MAAM,UAAU,GAAG,MAAM,MAAM,CAAC,WAAW,CAAC,0BAA0B,CAAC,IAAI,GAAG,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC,CAAC;YAE/F,OAAO;gBACL,MAAM,EAAE,MAAM,CAAC,MAAM;gBACrB,sBAAsB,EAAE,UAAU,CAAC,sBAAsB;gBACzD,wBAAwB,EAAE,UAAU,CAAC,wBAAwB;gBAC7D,qBAAqB,EAAE,UAAU,CAAC,qBAAqB;gBACvD,cAAc,EAAE,UAAU,CAAC,cAAc;gBACzC,qCAAqC,EAAE,UAAU,CAAC,qCAAqC;gBACvF,qBAAqB,EAAE,UAAU,CAAC,qBAAqB;gBACvD,mBAAmB,EAAE,UAAU,CAAC,mBAAmB;gBACnD,sBAAsB,EAAE,UAAU,CAAC,sBAAsB;gBACzD,6CAA6C,EAAE,UAAU,CAAC,6CAA6C;gBACvG,gCAAgC,EAAE,UAAU,CAAC,gCAAgC;gBAC7E,gBAAgB,EAAE,UAAU,CAAC,gBAAgB;aAC9C,CAAC;QACJ,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,MAAM,CAAC,MAAM,CAAC,KAAK,CAAC,0DAA0D,MAAM,CAAC,MAAM,KAAK,KAAK,EAAE,CAAC,CAAC;YACzG,MAAM,KAAK,CAAC;QACd,CAAC;IACH,CAAC;IACD,OAAO,IAAI,CAAC;AACd,CAAC;AAED,SAAS,sBAAsB,CAAC,MAAkB,EAAE,UAAe;IACjE,MAAM,IAAI,GAAG,OAAO,CAAC,UAAU,CAAC,CAAC,OAAO,CAAC,KAAK,EAAE,EAAE,CAAC,CAAC;IACpD,OAAO,IAAI,KAAK,yCAAyC,CAAC;AAC5D,CAAC"}
+{"version":3,"file":"oAuthMetadata.js","sources":["../src/oAuthMetadata.ts"],"sourcesContent":[null],"names":[],"mappings":";;AAIO,eAAe,gBAAgB,CAAC,MAAkB,EAAE,UAAe,EAAA;AACxE,IAAA,IAAI,sBAAsB,CAAC,MAAM,EAAE,UAAU,CAAC,EAAE;AAC9C,QAAA,IAAI;AACF,YAAA,MAAM,UAAU,GAAG,MAAM,MAAM,CAAC,WAAW,CAAC,0BAA0B,CAAC,IAAI,GAAG,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC;YAE9F,OAAO;gBACL,MAAM,EAAE,MAAM,CAAC,MAAM;gBACrB,sBAAsB,EAAE,UAAU,CAAC,sBAAsB;gBACzD,wBAAwB,EAAE,UAAU,CAAC,wBAAwB;gBAC7D,qBAAqB,EAAE,UAAU,CAAC,qBAAqB;gBACvD,cAAc,EAAE,UAAU,CAAC,cAAc;gBACzC,qCAAqC,EAAE,UAAU,CAAC,qCAAqC;gBACvF,qBAAqB,EAAE,UAAU,CAAC,qBAAqB;gBACvD,mBAAmB,EAAE,UAAU,CAAC,mBAAmB;gBACnD,sBAAsB,EAAE,UAAU,CAAC,sBAAsB;gBACzD,6CAA6C,EAAE,UAAU,CAAC,6CAA6C;gBACvG,gCAAgC,EAAE,UAAU,CAAC,gCAAgC;gBAC7E,gBAAgB,EAAE,UAAU,CAAC;aAC9B;QACH;QAAE,OAAO,KAAK,EAAE;AACd,YAAA,MAAM,CAAC,MAAM,CAAC,KAAK,CAAC,CAAA,uDAAA,EAA0D,MAAM,CAAC,MAAM,CAAA,EAAA,EAAK,KAAK,CAAA,CAAE,CAAC;AACxG,YAAA,MAAM,KAAK;QACb;IACF;AACA,IAAA,OAAO,IAAI;AACb;AAEA,SAAS,sBAAsB,CAAC,MAAkB,EAAE,UAAe,EAAA;AACjE,IAAA,MAAM,IAAI,GAAG,OAAO,CAAC,UAAU,CAAC,CAAC,OAAO,CAAC,KAAK,EAAE,EAAE,CAAC;IACnD,OAAO,IAAI,KAAK,yCAAyC;AAC3D;;;;"}

package/dist/paymentServer.js

@@ -3,25 +3,17 @@
  *
  * This class handles payment operations with the ATXP authorization server.
  *
- * **Required Environment Variable:**
- * - `ATXP_AUTH_CLIENT_TOKEN`: Authentication token for the ATXP authorization server.
- *   This token is used to authenticate API calls to the ATXP server for payment operations.
- *   Must be set when using this class, otherwise an error will be thrown.
- *
  * @example
  * ```typescript
- * // Ensure ATXP_AUTH_CLIENT_TOKEN is set in your environment
  * const paymentServer = new ATXPPaymentServer(
  *   'https://auth.atxp.ai',
- *   oAuthDb,
  *   logger
  * );
  * ```
  */
-export class ATXPPaymentServer {
-    constructor(server, authCredentials, logger, fetchFn = fetch) {
+class ATXPPaymentServer {
+    constructor(server, logger, fetchFn = fetch) {
         this.server = server;
-        this.authCredentials = authCredentials;
         this.logger = logger;
         this.fetchFn = fetchFn;
         this.charge = async ({ source, destination, network, currency, amount }) => {
@@ -57,18 +49,13 @@ export class ATXPPaymentServer {
         /**
          * Makes authenticated requests to the ATXP authorization server
          *
-         * This method automatically includes the `ATXP_AUTH_CLIENT_TOKEN` from environment variables
-         * in the Authorization header for all requests.
-         *
          * @param method - HTTP method ('GET' or 'POST')
          * @param path - API endpoint path
          * @param body - Request body (for POST requests)
          * @returns Promise<Response> - The HTTP response from the server
-         * @throws {Error} When `ATXP_AUTH_CLIENT_TOKEN` environment variable is not set
          *
          * @example
          * ```typescript
-         * // Ensure ATXP_AUTH_CLIENT_TOKEN is set in your environment
          * const response = await paymentServer.makeRequest('POST', '/charge', {
          *   source: 'user123',
          *   destination: 'merchant456',
@@ -81,16 +68,14 @@ export class ATXPPaymentServer {
             const response = await this.fetchFn(url, {
                 method,
                 headers: {
-                    'Authorization': `Bearer ${this.authCredentials}`,
                     'Content-Type': 'application/json'
                 },
                 body: JSON.stringify(body)
             });
             return response;
         };
-        if (!authCredentials || authCredentials.trim() === '') {
-            throw new Error('Auth credentials are required');
-        }
     }
 }
-//# sourceMappingURL=paymentServer.js.map
+
+export { ATXPPaymentServer };
+//# sourceMappingURL=paymentServer.js.map

package/dist/paymentServer.js.map

@@ -1 +1 @@
-{"version":3,"file":"paymentServer.js","sourceRoot":"","sources":["../src/paymentServer.ts"],"names":[],"mappings":"AAIA;;;;;;;;;;;;;;;;;;;GAmBG;AACH,MAAM,OAAO,iBAAiB;IAC5B,YACmB,MAA8B,EAC9B,eAAuB,EACvB,MAAc,EACd,UAAqB,KAAK;QAH1B,WAAM,GAAN,MAAM,CAAwB;QAC9B,oBAAe,GAAf,eAAe,CAAQ;QACvB,WAAM,GAAN,MAAM,CAAQ;QACd,YAAO,GAAP,OAAO,CAAmB;QAM7C,WAAM,GAAG,KAAK,EAAC,EAAC,MAAM,EAAE,WAAW,EAAE,OAAO,EAAE,QAAQ,EAAE,MAAM,EACkC,EAA2B,EAAE;YAC3H,MAAM,IAAI,GAAG,EAAC,MAAM,EAAE,WAAW,EAAE,OAAO,EAAE,QAAQ,EAAE,MAAM,EAAC,CAAC;YAC9D,MAAM,cAAc,GAAG,MAAM,IAAI,CAAC,WAAW,CAAC,MAAM,EAAE,SAAS,EAAE,IAAI,CAAC,CAAC;YACvE,MAAM,IAAI,GAAG,MAAM,cAAc,CAAC,IAAI,EAA+B,CAAC;YACtE,IAAI,cAAc,CAAC,MAAM,KAAK,GAAG,EAAE,CAAC;gBAClC,OAAO,EAAC,OAAO,EAAE,IAAI,EAAE,eAAe,EAAE,IAAI,EAAC,CAAC;YAChD,CAAC;iBAAM,IAAI,cAAc,CAAC,MAAM,KAAK,GAAG,EAAE,CAAC;gBACzC,OAAO,EAAC,OAAO,EAAE,KAAK,EAAE,eAAe,EAAE,IAAI,EAAC,CAAC;YACjD,CAAC;iBAAM,CAAC;gBACN,MAAM,GAAG,GAAG,0BAA0B,cAAc,CAAC,MAAM,4CAA4C,CAAC;gBACxG,IAAI,CAAC,MAAM,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;gBACtB,IAAI,CAAC,MAAM,CAAC,KAAK,CAAC,kBAAkB,IAAI,CAAC,SAAS,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;gBAC5D,MAAM,IAAI,KAAK,CAAC,GAAG,CAAC,CAAC;YACvB,CAAC;QACH,CAAC,CAAA;QAED,yBAAoB,GAAG,KAAK,EAAC,MAAc,EAAmB,EAAE;YAC9D,MAAM,QAAQ,GAAG,MAAM,IAAI,CAAC,WAAW,CAAC,MAAM,EAAE,kBAAkB,EAAE,MAAM,CAAC,CAAC;YAC5E,MAAM,IAAI,GAAG,MAAM,QAAQ,CAAC,IAAI,EAAmB,CAAC;YACpD,IAAI,QAAQ,CAAC,MAAM,KAAK,GAAG,EAAE,CAAC;gBAC5B,IAAI,CAAC,MAAM,CAAC,IAAI,CAAC,+DAA+D,QAAQ,CAAC,MAAM,EAAE,CAAC,CAAC;gBACnG,IAAI,CAAC,MAAM,CAAC,KAAK,CAAC,kBAAkB,IAAI,CAAC,SAAS,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;gBAC5D,MAAM,IAAI,KAAK,CAAC,+DAA+D,QAAQ,CAAC,MAAM,EAAE,CAAC,CAAC;YACpG,CAAC;YACD,IAAG,CAAC,IAAI,CAAC,EAAE,EAAE,CAAC;gBACZ,MAAM,IAAI,KAAK,CAAC,sDAAsD,CAAC,CAAC;YAC1E,CAAC;YACD,OAAO,IAAI,CAAC,EAAE,CAAC;QACjB,CAAC,CAAA;QAED;;;;;;;;;;;;;;;;;;;;;WAqBG;QACO,gBAAW,GAAG,KAAK,EAAC,MAAsB,EAAE,IAAY,EAAE,IAAa,EAAqB,EAAE;YACtG,MAAM,GAAG,GAAG,IAAI,GAAG,CAAC,IAAI,EAAE,IAAI,CAAC,MAAM,CAAC,CAAC;YACvC,MAAM,QAAQ,GAAG,MAAM,IAAI,CAAC,OAAO,CAAC,GAAG,EAAE;gBACvC,MAAM;gBACN,OAAO,EAAE;oBACP,eAAe,EAAE,UAAU,IAAI,CAAC,eAAe,EAAE;oBACjD,cAAc,EAAE,kBAAkB;iBACnC;gBACD,IAAI,EAAE,IAAI,CAAC,SAAS,CAAC,IAAI,CAAC;aAC3B,CAAC,CAAC;YACH,OAAO,QAAQ,CAAC;QAClB,CAAC,CAAA;QArEC,IAAI,CAAC,eAAe,IAAI,eAAe,CAAC,IAAI,EAAE,KAAK,EAAE,EAAE,CAAC;YACtD,MAAM,IAAI,KAAK,CAAC,+BAA+B,CAAC,CAAC;QACnD,CAAC;IACH,CAAC;CAmEF"}
+{"version":3,"file":"paymentServer.js","sources":["../src/paymentServer.ts"],"sourcesContent":[null],"names":[],"mappings":"AAIA;;;;;;;;;;;;AAYG;MACU,iBAAiB,CAAA;AAC5B,IAAA,WAAA,CACmB,MAA8B,EAC9B,MAAc,EACd,UAAqB,KAAK,EAAA;QAF1B,IAAA,CAAA,MAAM,GAAN,MAAM;QACN,IAAA,CAAA,MAAM,GAAN,MAAM;QACN,IAAA,CAAA,OAAO,GAAP,OAAO;AAG1B,QAAA,IAAA,CAAA,MAAM,GAAG,OAAM,EAAC,MAAM,EAAE,WAAW,EAAE,OAAO,EAAE,QAAQ,EAAE,MAAM,EACkC,KAA6B;AAC3H,YAAA,MAAM,IAAI,GAAG,EAAC,MAAM,EAAE,WAAW,EAAE,OAAO,EAAE,QAAQ,EAAE,MAAM,EAAC;AAC7D,YAAA,MAAM,cAAc,GAAG,MAAM,IAAI,CAAC,WAAW,CAAC,MAAM,EAAE,SAAS,EAAE,IAAI,CAAC;AACtE,YAAA,MAAM,IAAI,GAAG,MAAM,cAAc,CAAC,IAAI,EAA+B;AACrE,YAAA,IAAI,cAAc,CAAC,MAAM,KAAK,GAAG,EAAE;gBACjC,OAAO,EAAC,OAAO,EAAE,IAAI,EAAE,eAAe,EAAE,IAAI,EAAC;YAC/C;AAAO,iBAAA,IAAI,cAAc,CAAC,MAAM,KAAK,GAAG,EAAE;gBACxC,OAAO,EAAC,OAAO,EAAE,KAAK,EAAE,eAAe,EAAE,IAAI,EAAC;YAChD;iBAAO;AACL,gBAAA,MAAM,GAAG,GAAG,CAAA,uBAAA,EAA0B,cAAc,CAAC,MAAM,4CAA4C;AACvG,gBAAA,IAAI,CAAC,MAAM,CAAC,IAAI,CAAC,GAAG,CAAC;AACrB,gBAAA,IAAI,CAAC,MAAM,CAAC,KAAK,CAAC,CAAA,eAAA,EAAkB,IAAI,CAAC,SAAS,CAAC,IAAI,CAAC,CAAA,CAAE,CAAC;AAC3D,gBAAA,MAAM,IAAI,KAAK,CAAC,GAAG,CAAC;YACtB;AACF,QAAA,CAAC;AAED,QAAA,IAAA,CAAA,oBAAoB,GAAG,OAAM,MAAc,KAAqB;AAC9D,YAAA,MAAM,QAAQ,GAAG,MAAM,IAAI,CAAC,WAAW,CAAC,MAAM,EAAE,kBAAkB,EAAE,MAAM,CAAC;AAC3E,YAAA,MAAM,IAAI,GAAG,MAAM,QAAQ,CAAC,IAAI,EAAmB;AACnD,YAAA,IAAI,QAAQ,CAAC,MAAM,KAAK,GAAG,EAAE;gBAC3B,IAAI,CAAC,MAAM,CAAC,IAAI,CAAC,CAAA,4DAAA,EAA+D,QAAQ,CAAC,MAAM,CAAA,CAAE,CAAC;AAClG,gBAAA,IAAI,CAAC,MAAM,CAAC,KAAK,CAAC,CAAA,eAAA,EAAkB,IAAI,CAAC,SAAS,CAAC,IAAI,CAAC,CAAA,CAAE,CAAC;gBAC3D,MAAM,IAAI,KAAK,CAAC,CAAA,4DAAA,EAA+D,QAAQ,CAAC,MAAM,CAAA,CAAE,CAAC;YACnG;AACA,YAAA,IAAG,CAAC,IAAI,CAAC,EAAE,EAAE;AACX,gBAAA,MAAM,IAAI,KAAK,CAAC,CAAA,oDAAA,CAAsD,CAAC;YACzE;YACA,OAAO,IAAI,CAAC,EAAE;AAChB,QAAA,CAAC;AAED;;;;;;;;;;;;;;;;AAgBG;QACO,IAAA,CAAA,WAAW,GAAG,OAAM,MAAsB,EAAE,IAAY,EAAE,IAAa,KAAuB;YACtG,MAAM,GAAG,GAAG,IAAI,GAAG,CAAC,IAAI,EAAE,IAAI,CAAC,MAAM,CAAC;YACtC,MAAM,QAAQ,GAAG,MAAM,IAAI,CAAC,OAAO,CAAC,GAAG,EAAE;gBACvC,MAAM;AACN,gBAAA,OAAO,EAAE;AACP,oBAAA,cAAc,EAAE;AACjB,iBAAA;AACD,gBAAA,IAAI,EAAE,IAAI,CAAC,SAAS,CAAC,IAAI;AAC1B,aAAA,CAAC;AACF,YAAA,OAAO,QAAQ;AACjB,QAAA,CAAC;IA5DD;AA6DD;;;;"}

package/dist/protectedResourceMetadata.js

@@ -1,16 +1,8 @@
-import { getPath, getResource } from "./getResource.js";
-export function sendProtectedResourceMetadata(res, metadata) {
-    if (!metadata) {
-        return false;
-    }
-    res.setHeader('Content-Type', 'application/json');
-    res.writeHead(200);
-    res.end(JSON.stringify(metadata));
-    return true;
-}
-export function getProtectedResourceMetadata(config, requestUrl) {
-    if (isProtectedResourceMetadataRequest(config, requestUrl)) {
-        const resource = getResource(config, requestUrl);
+import { getResource, getPath } from './getResource.js';
+
+function getProtectedResourceMetadata(config, requestUrl, headers) {
+    if (isProtectedResourceMetadataRequest(config, requestUrl, headers)) {
+        const resource = getResource(config, requestUrl, headers);
         return {
             resource,
             resource_name: config.payeeName || resource.toString(),
@@ -21,12 +13,12 @@ export function getProtectedResourceMetadata(config, requestUrl) {
     }
     return null;
 }
-function isProtectedResourceMetadataRequest(config, requestUrl) {
+function isProtectedResourceMetadataRequest(config, requestUrl, headers) {
     const path = getPath(requestUrl);
     if (!path.startsWith('/.well-known/oauth-protected-resource')) {
         return false;
     }
-    const resource = getResource(config, requestUrl);
+    const resource = getResource(config, requestUrl, headers);
     const resourcePath = getPath(resource);
     const mountPath = config.mountPath.replace(/\/$/, '');
     if (resourcePath === mountPath) {
@@ -37,4 +29,6 @@ function isProtectedResourceMetadataRequest(config, requestUrl) {
     }
     return false;
 }
-//# sourceMappingURL=protectedResourceMetadata.js.map
+
+export { getProtectedResourceMetadata };
+//# sourceMappingURL=protectedResourceMetadata.js.map

package/dist/protectedResourceMetadata.js.map

@@ -1 +1 @@
-{"version":3,"file":"protectedResourceMetadata.js","sourceRoot":"","sources":["../src/protectedResourceMetadata.ts"],"names":[],"mappings":"AAEA,OAAO,EAAE,OAAO,EAAE,WAAW,EAAE,MAAM,kBAAkB,CAAC;AAExD,MAAM,UAAU,6BAA6B,CAAC,GAAmB,EAAE,QAA0C;IAC3G,IAAI,CAAC,QAAQ,EAAE,CAAC;QACd,OAAO,KAAK,CAAC;IACf,CAAC;IACD,GAAG,CAAC,SAAS,CAAC,cAAc,EAAE,kBAAkB,CAAC,CAAC;IAClD,GAAG,CAAC,SAAS,CAAC,GAAG,CAAC,CAAC;IACnB,GAAG,CAAC,GAAG,CAAC,IAAI,CAAC,SAAS,CAAC,QAAQ,CAAC,CAAC,CAAC;IAClC,OAAO,IAAI,CAAC;AACd,CAAC;AAED,MAAM,UAAU,4BAA4B,CAAC,MAAkB,EAAE,UAAe;IAC9E,IAAI,kCAAkC,CAAC,MAAM,EAAE,UAAU,CAAC,EAAE,CAAC;QAC3D,MAAM,QAAQ,GAAG,WAAW,CAAC,MAAM,EAAE,UAAU,CAAC,CAAC;QACjD,OAAO;YACL,QAAQ;YACR,aAAa,EAAE,MAAM,CAAC,SAAS,IAAI,QAAQ,CAAC,QAAQ,EAAE;YACtD,qBAAqB,EAAE,CAAC,MAAM,CAAC,MAAM,CAAC;YACtC,wBAAwB,EAAE,CAAC,QAAQ,CAAC;YACpC,gBAAgB,EAAE,CAAC,MAAM,EAAE,OAAO,CAAC;SACpC,CAAC;IACJ,CAAC;IACD,OAAO,IAAI,CAAC;AACd,CAAC;AAED,SAAS,kCAAkC,CAAC,MAAkB,EAAE,UAAe;IAC7E,MAAM,IAAI,GAAG,OAAO,CAAC,UAAU,CAAC,CAAC;IACjC,IAAI,CAAC,IAAI,CAAC,UAAU,CAAC,uCAAuC,CAAC,EAAE,CAAC;QAC9D,OAAO,KAAK,CAAC;IACf,CAAC;IACD,MAAM,QAAQ,GAAG,WAAW,CAAC,MAAM,EAAE,UAAU,CAAC,CAAC;IACjD,MAAM,YAAY,GAAG,OAAO,CAAC,QAAQ,CAAC,CAAC;IACvC,MAAM,SAAS,GAAG,MAAM,CAAC,SAAS,CAAC,OAAO,CAAC,KAAK,EAAE,EAAE,CAAC,CAAC;IACtD,IAAI,YAAY,KAAK,SAAS,EAAE,CAAC;QAC/B,OAAO,IAAI,CAAC;IACd,CAAC;IACD,IAAI,YAAY,KAAK,GAAG,SAAS,UAAU,EAAE,CAAC;QAC5C,OAAO,IAAI,CAAC;IACd,CAAC;IACD,OAAO,KAAK,CAAC;AACf,CAAC"}
+{"version":3,"file":"protectedResourceMetadata.js","sources":["../src/protectedResourceMetadata.ts"],"sourcesContent":[null],"names":[],"mappings":";;SAGgB,4BAA4B,CAAC,MAAkB,EAAE,UAAe,EAAE,OAAuD,EAAA;IACvI,IAAI,kCAAkC,CAAC,MAAM,EAAE,UAAU,EAAE,OAAO,CAAC,EAAE;QACnE,MAAM,QAAQ,GAAG,WAAW,CAAC,MAAM,EAAE,UAAU,EAAE,OAAO,CAAC;QACzD,OAAO;YACL,QAAQ;YACR,aAAa,EAAE,MAAM,CAAC,SAAS,IAAI,QAAQ,CAAC,QAAQ,EAAE;AACtD,YAAA,qBAAqB,EAAE,CAAC,MAAM,CAAC,MAAM,CAAC;YACtC,wBAAwB,EAAE,CAAC,QAAQ,CAAC;AACpC,YAAA,gBAAgB,EAAE,CAAC,MAAM,EAAE,OAAO,CAAC;SACpC;IACH;AACA,IAAA,OAAO,IAAI;AACb;AAEA,SAAS,kCAAkC,CAAC,MAAkB,EAAE,UAAe,EAAE,OAAuD,EAAA;AACtI,IAAA,MAAM,IAAI,GAAG,OAAO,CAAC,UAAU,CAAC;IAChC,IAAI,CAAC,IAAI,CAAC,UAAU,CAAC,uCAAuC,CAAC,EAAE;AAC7D,QAAA,OAAO,KAAK;IACd;IACA,MAAM,QAAQ,GAAG,WAAW,CAAC,MAAM,EAAE,UAAU,EAAE,OAAO,CAAC;AACzD,IAAA,MAAM,YAAY,GAAG,OAAO,CAAC,QAAQ,CAAC;AACtC,IAAA,MAAM,SAAS,GAAG,MAAM,CAAC,SAAS,CAAC,OAAO,CAAC,KAAK,EAAE,EAAE,CAAC;AACrD,IAAA,IAAI,YAAY,KAAK,SAAS,EAAE;AAC9B,QAAA,OAAO,IAAI;IACb;AACA,IAAA,IAAI,YAAY,KAAK,CAAA,EAAG,SAAS,CAAA,QAAA,CAAU,EAAE;AAC3C,QAAA,OAAO,IAAI;IACb;AACA,IAAA,OAAO,KAAK;AACd;;;;"}

package/dist/requirePayment.js

@@ -1,6 +1,7 @@
-import { paymentRequiredError } from "@atxp/common";
-import { getATXPConfig, atxpAccountId } from "./atxpContext.js";
-export async function requirePayment(paymentConfig) {
+import { paymentRequiredError } from '@atxp/common';
+import { getATXPConfig, atxpAccountId } from './atxpContext.js';
+
+async function requirePayment(paymentConfig) {
     const config = getATXPConfig();
     if (!config) {
         throw new Error('No config found');
@@ -33,4 +34,6 @@ export async function requirePayment(paymentConfig) {
     config.logger.info(`Created payment request ${paymentId}`);
     throw paymentRequiredError(config.server, paymentId, charge.amount);
 }
-//# sourceMappingURL=requirePayment.js.map
+
+export { requirePayment };
+//# sourceMappingURL=requirePayment.js.map

package/dist/requirePayment.js.map

@@ -1 +1 @@
-{"version":3,"file":"requirePayment.js","sourceRoot":"","sources":["../src/requirePayment.ts"],"names":[],"mappings":"AAAA,OAAO,EAAwB,oBAAoB,EAAE,MAAM,cAAc,CAAC;AAC1E,OAAO,EAAE,aAAa,EAAE,aAAa,EAAE,MAAM,kBAAkB,CAAC;AAEhE,MAAM,CAAC,KAAK,UAAU,cAAc,CAAC,aAAmC;IACtE,MAAM,MAAM,GAAG,aAAa,EAAE,CAAC;IAC/B,IAAI,CAAC,MAAM,EAAE,CAAC;QACZ,MAAM,IAAI,KAAK,CAAC,iBAAiB,CAAC,CAAC;IACrC,CAAC;IACD,MAAM,IAAI,GAAG,aAAa,EAAE,CAAC;IAC7B,IAAI,CAAC,IAAI,EAAE,CAAC;QACV,MAAM,CAAC,MAAM,CAAC,KAAK,CAAC,eAAe,CAAC,CAAC;QACrC,MAAM,IAAI,KAAK,CAAC,eAAe,CAAC,CAAC;IACnC,CAAC;IAED,MAAM,MAAM,GAAG;QACb,MAAM,EAAE,aAAa,CAAC,KAAK;QAC3B,QAAQ,EAAE,MAAM,CAAC,QAAQ;QACzB,OAAO,EAAE,MAAM,CAAC,OAAO;QACvB,WAAW,EAAE,MAAM,CAAC,WAAW;QAC/B,MAAM,EAAE,IAAI;QACZ,SAAS,EAAE,MAAM,CAAC,SAAS;KAC5B,CAAC;IAEF,MAAM,CAAC,MAAM,CAAC,KAAK,CAAC,mBAAmB,MAAM,CAAC,MAAM,iBAAiB,MAAM,CAAC,WAAW,YAAY,MAAM,CAAC,MAAM,EAAE,CAAC,CAAC;IACpH,MAAM,cAAc,GAAG,MAAM,MAAM,CAAC,aAAa,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC;IACjE,IAAI,cAAc,CAAC,OAAO,EAAE,CAAC;QAC3B,MAAM,CAAC,MAAM,CAAC,IAAI,CAAC,WAAW,MAAM,CAAC,MAAM,eAAe,MAAM,CAAC,MAAM,EAAE,CAAC,CAAC;QAC3E,OAAO;IACT,CAAC;IAED,MAAM,iBAAiB,GAAG,MAAM,aAAa,CAAC,oBAAoB,EAAE,EAAE,CAAC;IACvE,IAAI,iBAAiB,EAAE,CAAC;QACtB,MAAM,CAAC,MAAM,CAAC,IAAI,CAAC,6BAA6B,iBAAiB,EAAE,CAAC,CAAC;QACrE,MAAM,oBAAoB,CAAC,MAAM,CAAC,MAAM,EAAE,iBAAiB,EAAE,MAAM,CAAC,MAAM,CAAC,CAAA;IAC7E,CAAC;IAED,MAAM,SAAS,GAAG,MAAM,MAAM,CAAC,aAAa,CAAC,oBAAoB,CAAC,MAAM,CAAC,CAAC;IAC1E,MAAM,CAAC,MAAM,CAAC,IAAI,CAAC,2BAA2B,SAAS,EAAE,CAAC,CAAC;IAC3D,MAAM,oBAAoB,CAAC,MAAM,CAAC,MAAM,EAAE,SAAS,EAAE,MAAM,CAAC,MAAM,CAAC,CAAC;AACtE,CAAC"}
+{"version":3,"file":"requirePayment.js","sources":["../src/requirePayment.ts"],"sourcesContent":[null],"names":[],"mappings":";;;AAGO,eAAe,cAAc,CAAC,aAAmC,EAAA;AACtE,IAAA,MAAM,MAAM,GAAG,aAAa,EAAE;IAC9B,IAAI,CAAC,MAAM,EAAE;AACX,QAAA,MAAM,IAAI,KAAK,CAAC,iBAAiB,CAAC;IACpC;AACA,IAAA,MAAM,IAAI,GAAG,aAAa,EAAE;IAC5B,IAAI,CAAC,IAAI,EAAE;AACT,QAAA,MAAM,CAAC,MAAM,CAAC,KAAK,CAAC,eAAe,CAAC;AACpC,QAAA,MAAM,IAAI,KAAK,CAAC,eAAe,CAAC;IAClC;AAEA,IAAA,MAAM,MAAM,GAAG;QACb,MAAM,EAAE,aAAa,CAAC,KAAK;QAC3B,QAAQ,EAAE,MAAM,CAAC,QAAQ;QACzB,OAAO,EAAE,MAAM,CAAC,OAAO;QACvB,WAAW,EAAE,MAAM,CAAC,WAAW;AAC/B,QAAA,MAAM,EAAE,IAAI;QACZ,SAAS,EAAE,MAAM,CAAC,SAAS;KAC5B;AAED,IAAA,MAAM,CAAC,MAAM,CAAC,KAAK,CAAC,CAAA,gBAAA,EAAmB,MAAM,CAAC,MAAM,iBAAiB,MAAM,CAAC,WAAW,CAAA,SAAA,EAAY,MAAM,CAAC,MAAM,CAAA,CAAE,CAAC;IACnH,MAAM,cAAc,GAAG,MAAM,MAAM,CAAC,aAAa,CAAC,MAAM,CAAC,MAAM,CAAC;AAChE,IAAA,IAAI,cAAc,CAAC,OAAO,EAAE;AAC1B,QAAA,MAAM,CAAC,MAAM,CAAC,IAAI,CAAC,CAAA,QAAA,EAAW,MAAM,CAAC,MAAM,eAAe,MAAM,CAAC,MAAM,CAAA,CAAE,CAAC;QAC1E;IACF;IAEA,MAAM,iBAAiB,GAAG,MAAM,aAAa,CAAC,oBAAoB,IAAI;IACtE,IAAI,iBAAiB,EAAE;QACrB,MAAM,CAAC,MAAM,CAAC,IAAI,CAAC,CAAA,0BAAA,EAA6B,iBAAiB,CAAA,CAAE,CAAC;AACpE,QAAA,MAAM,oBAAoB,CAAC,MAAM,CAAC,MAAM,EAAE,iBAAiB,EAAE,MAAM,CAAC,MAAM,CAAC;IAC7E;IAEA,MAAM,SAAS,GAAG,MAAM,MAAM,CAAC,aAAa,CAAC,oBAAoB,CAAC,MAAM,CAAC;IACzE,MAAM,CAAC,MAAM,CAAC,IAAI,CAAC,CAAA,wBAAA,EAA2B,SAAS,CAAA,CAAE,CAAC;AAC1D,IAAA,MAAM,oBAAoB,CAAC,MAAM,CAAC,MAAM,EAAE,SAAS,EAAE,MAAM,CAAC,MAAM,CAAC;AACrE;;;;"}

package/dist/serverConfig.js

@@ -0,0 +1,37 @@
+import { DEFAULT_AUTHORIZATION_SERVER, MemoryOAuthDb, OAuthResourceClient, ConsoleLogger } from '@atxp/common';
+import { ATXPPaymentServer } from './paymentServer.js';
+
+const DEFAULT_CONFIG = {
+    mountPath: '/',
+    currency: 'USDC',
+    network: 'base',
+    server: DEFAULT_AUTHORIZATION_SERVER,
+    payeeName: 'An ATXP Server',
+    allowHttp: false, // May be overridden in buildServerConfig by process.env.NODE_ENV
+    resource: null, // Set dynamically from the request URL
+};
+function buildServerConfig(args) {
+    if (!args.destination) {
+        throw new Error('destination is required');
+    }
+    // Read environment variables at runtime, not module load time
+    const envDefaults = {
+        ...DEFAULT_CONFIG,
+        atxpAuthClientToken: process.env.ATXP_AUTH_CLIENT_TOKEN,
+        allowHttp: process.env.NODE_ENV === 'development',
+    };
+    const withDefaults = { ...envDefaults, ...args };
+    const oAuthDb = withDefaults.oAuthDb ?? new MemoryOAuthDb();
+    const oAuthClient = withDefaults.oAuthClient ?? new OAuthResourceClient({
+        db: oAuthDb,
+        allowInsecureRequests: withDefaults.allowHttp,
+        clientName: withDefaults.payeeName,
+    });
+    const logger = withDefaults.logger ?? new ConsoleLogger();
+    const paymentServer = withDefaults.paymentServer ?? new ATXPPaymentServer(withDefaults.server, logger);
+    const built = { oAuthDb, oAuthClient, paymentServer, logger };
+    return Object.freeze({ ...withDefaults, ...built });
+}
+
+export { DEFAULT_CONFIG, buildServerConfig };
+//# sourceMappingURL=serverConfig.js.map

package/dist/serverConfig.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"serverConfig.js","sources":["../src/serverConfig.ts"],"sourcesContent":[null],"names":[],"mappings":";;;AAUO,MAAM,cAAc,GAAkE;AAC3F,IAAA,SAAS,EAAE,GAAG;AACd,IAAA,QAAQ,EAAE,MAAe;AACzB,IAAA,OAAO,EAAE,MAAe;AACxB,IAAA,MAAM,EAAE,4BAA4B;AACpC,IAAA,SAAS,EAAE,gBAAgB;IAC3B,SAAS,EAAE,KAAK;IAChB,QAAQ,EAAE,IAAI;;AAGV,SAAU,iBAAiB,CAAC,IAAc,EAAA;AAC9C,IAAA,IAAG,CAAC,IAAI,CAAC,WAAW,EAAE;AACpB,QAAA,MAAM,IAAI,KAAK,CAAC,yBAAyB,CAAC;IAC5C;;AAGA,IAAA,MAAM,WAAW,GAAG;AAClB,QAAA,GAAG,cAAc;AACjB,QAAA,mBAAmB,EAAE,OAAO,CAAC,GAAG,CAAC,sBAAsB;AACvD,QAAA,SAAS,EAAE,OAAO,CAAC,GAAG,CAAC,QAAQ,KAAK,aAAa;KAClD;IACD,MAAM,YAAY,GAAG,EAAE,GAAG,WAAW,EAAE,GAAG,IAAI,EAAE;IAChD,MAAM,OAAO,GAAG,YAAY,CAAC,OAAO,IAAI,IAAI,aAAa,EAAE;IAC3D,MAAM,WAAW,GAAG,YAAY,CAAC,WAAW,IAAI,IAAI,mBAAmB,CAAC;AACtE,QAAA,EAAE,EAAE,OAAO;QACX,qBAAqB,EAAE,YAAY,CAAC,SAAS;QAC7C,UAAU,EAAE,YAAY,CAAC,SAAS;AACnC,KAAA,CAAC;IACF,MAAM,MAAM,GAAG,YAAY,CAAC,MAAM,IAAI,IAAI,aAAa,EAAE;AACzD,IAAA,MAAM,aAAa,GAAG,YAAY,CAAC,aAAa,IAAI,IAAI,iBAAiB,CAAC,YAAY,CAAC,MAAM,EAAE,MAAM,CAAC;IAEtG,MAAM,KAAK,GAAG,EAAE,OAAO,EAAE,WAAW,EAAE,aAAa,EAAE,MAAM,EAAC;AAC5D,IAAA,OAAO,MAAM,CAAC,MAAM,CAAC,EAAE,GAAG,YAAY,EAAE,GAAG,KAAK,EAAE,CAAC;AACrD;;;;"}

package/dist/serverTestHelpers.d.ts

@@ -1,55 +1,104 @@
+import * as vitest from 'vitest';
 import { IncomingHttpHeaders, IncomingMessage, ServerResponse } from 'http';
 import { JSONRPCRequest } from '@modelcontextprotocol/sdk/types.js';
-import { OAuthResourceClient, TokenData, Logger, Currency, Network } from '@atxp/common';
-import { Charge, ATXPConfig, TokenCheck, TokenProblem, McpMethod, McpName, PaymentServer } from './types.js';
+import { PaymentRequestData, Currency, Network, AuthorizationServerUrl, UrlString, Logger, OAuthDb, OAuthResourceClient, TokenData } from '@atxp/common';
 import * as oauth from 'oauth4webapi';
-export declare const DESTINATION = "testDestination";
-export declare const SOURCE = "testSource";
-export declare function charge({ amount, currency, network, destination, source }?: {
+
+type McpMethod = 'notifications/cancelled' | 'initialize' | 'ping' | 'notifications/progress' | 'resources/list' | 'resources/templates/list' | 'resources/read' | 'notifications/resources/list_changed' | 'resources/subscribe' | 'resources/unsubscribe' | 'notifications/resources/updated' | 'prompts/list' | 'prompts/get' | 'notifications/prompts/list_changed' | 'tools/list' | 'tools/call' | 'notifications/tools/list_changed' | 'logging/setLevel' | 'notifications/message' | 'sampling/createMessage' | 'elicitation/create' | 'completion/complete' | 'roots/list' | 'notifications/roots/list_changed';
+type McpName = string;
+type Charge = Omit<PaymentRequestData, 'resource' | 'resourceName' | 'iss'>;
+type ChargeResponse = {
+    success: boolean;
+    requiredPayment: PaymentRequestData | null;
+};
+type PaymentServer = {
+    charge: (args: Charge) => Promise<ChargeResponse>;
+    createPaymentRequest: (args: Charge) => Promise<string>;
+};
+type ATXPConfig = {
+    destination: string;
+    mountPath: string;
+    currency: Currency;
+    network: Network;
+    server: AuthorizationServerUrl;
+    payeeName: string;
+    resource: UrlString | null;
+    allowHttp: boolean;
+    logger: Logger;
+    oAuthDb: OAuthDb;
+    oAuthClient: OAuthResourceClient;
+    paymentServer: PaymentServer;
+};
+declare enum TokenProblem {
+    NO_TOKEN = "NO-TOKEN",
+    NON_BEARER_AUTH_HEADER = "NON-BEARER-AUTH-HEADER",
+    INVALID_TOKEN = "INVALID-TOKEN",
+    INVALID_AUDIENCE = "INVALID-AUDIENCE",
+    NON_SUFFICIENT_FUNDS = "NON-SUFFICIENT-FUNDS",
+    INTROSPECT_ERROR = "INTROSPECT-ERROR"
+}
+type TokenCheckPass = {
+    passes: true;
+    token: string;
+    data: TokenData;
+};
+type TokenCheckFail = {
+    passes: false;
+    problem: TokenProblem;
+    token: string | null;
+    data: TokenData | null;
+    resourceMetadataUrl: string | null;
+};
+type TokenCheck = TokenCheckPass | TokenCheckFail;
+
+declare const DESTINATION = "testDestination";
+declare const SOURCE = "testSource";
+declare function charge({ amount, currency, network, destination, source }?: {
     amount?: BigNumber;
     currency?: Currency;
     network?: Network;
     destination?: string;
     source?: string;
 }): Charge;
-export declare const oneCentCharge: Charge;
-export declare const zeroCharge: Charge;
-export declare function logger(): Logger;
-export declare function config(args?: Partial<ATXPConfig>): ATXPConfig;
-export declare function paymentServer({ charge, createPaymentRequest }?: {
-    charge?: import("vitest").Mock<(...args: any[]) => any> | undefined;
-    createPaymentRequest?: import("vitest").Mock<(...args: any[]) => any> | undefined;
+declare const oneCentCharge: Charge;
+declare const zeroCharge: Charge;
+declare function logger(): Logger;
+declare function config(args?: Partial<ATXPConfig>): ATXPConfig;
+declare function paymentServer({ charge, createPaymentRequest }?: {
+    charge?: vitest.Mock<(...args: any[]) => any> | undefined;
+    createPaymentRequest?: vitest.Mock<(...args: any[]) => any> | undefined;
 }): PaymentServer;
-export declare function mcpRequest({ method, params, id }?: {
+declare function mcpRequest({ method, params, id }?: {
     method?: McpMethod;
     params?: any;
     id?: string;
 }): JSONRPCRequest;
-export declare function mcpToolRequest({ toolName, args, }?: {
+declare function mcpToolRequest({ toolName, args, }?: {
     toolName?: McpName;
     args?: any;
 }): JSONRPCRequest;
-export declare function incomingMessage({ body, method, url, headers }?: {
+declare function incomingMessage({ body, method, url, headers }?: {
     body?: any;
     method?: 'POST' | 'GET' | 'PUT' | 'DELETE' | 'PATCH' | 'OPTIONS';
     url?: string;
     headers?: IncomingHttpHeaders;
 }): IncomingMessage;
-export declare function incomingToolMessage({ authHeader, url, }?: {
+declare function incomingToolMessage({ authHeader, url, }?: {
     authHeader?: string;
     url?: string;
 }): IncomingMessage;
-export declare function oAuthClient({ introspectResult, authorizationServer }?: {
+declare function oAuthClient({ introspectResult, authorizationServer }?: {
     introspectResult?: TokenData;
     authorizationServer?: oauth.AuthorizationServer;
 }): OAuthResourceClient;
-export declare function tokenData({ active, sub, scope, aud }?: Partial<TokenData>): TokenData;
-export declare function tokenCheck({ data, token, passes, problem, resourceMetadataUrl }?: {
+declare function tokenData({ active, sub, scope, aud }?: Partial<TokenData>): TokenData;
+declare function tokenCheck({ data, token, passes, problem, resourceMetadataUrl }?: {
     data?: TokenData;
     token?: string | null;
     passes?: boolean;
     problem?: TokenProblem;
     resourceMetadataUrl?: string;
 }): TokenCheck;
-export declare function serverResponse(): ServerResponse;
-//# sourceMappingURL=serverTestHelpers.d.ts.map
+declare function serverResponse(): ServerResponse;
+
+export { DESTINATION, SOURCE, charge, config, incomingMessage, incomingToolMessage, logger, mcpRequest, mcpToolRequest, oAuthClient, oneCentCharge, paymentServer, serverResponse, tokenCheck, tokenData, zeroCharge };