@develit-services/bank 0.3.43 → 0.3.45

package/dist/shared/bank.ChffLgyT.cjs

@@ -1,401 +0,0 @@
-'use strict';
-
-const database_schema = require('./bank.CLF9wee9.cjs');
-const backendSdk = require('@develit-io/backend-sdk');
-const cloudflare_workers = require('cloudflare:workers');
-const cloudflare_workflows = require('cloudflare:workflows');
-const d1 = require('drizzle-orm/d1');
-const drizzleOrm = require('drizzle-orm');
-require('jose');
-require('@develit-io/general-codes');
-const node_crypto = require('node:crypto');
-const mockCobs_connector = require('./bank.DfE0M5H3.cjs');
-
-const createPaymentCommand = (db, { payment }) => {
-  return {
-    command: db.insert(database_schema.tables.payment).values({
-      ...payment,
-      creditorIban: payment.creditor.iban,
-      debtorIban: payment.debtor.iban
-    }).returning()
-  };
-};
-
-const upsertBatchCommand = (db, { batch }) => {
-  const id = batch.id || backendSdk.uuidv4();
-  const command = db.insert(database_schema.tables.batch).values({
-    ...batch,
-    id
-  }).onConflictDoUpdate({
-    target: database_schema.tables.batch.id,
-    set: {
-      ...batch
-    }
-  }).returning();
-  return {
-    id,
-    command
-  };
-};
-
-const getAccountByIdQuery = async (db, { accountId }) => {
-  return await db.select().from(database_schema.tables.account).where(drizzleOrm.eq(database_schema.tables.account.id, accountId)).get();
-};
-
-const getBatchByIdQuery = async (db, { batchId }) => {
-  return await db.select().from(database_schema.tables.batch).where(drizzleOrm.eq(database_schema.tables.batch.id, batchId)).get();
-};
-
-const getCredentialsByAccountId = async (db, encryptionKey, { accountId }) => {
-  const cred = await db.select().from(database_schema.tables.accountCredentials).where(drizzleOrm.eq(database_schema.tables.accountCredentials.accountId, accountId)).get();
-  return cred ? {
-    ...cred,
-    value: await decrypt(cred.value, encryptionKey)
-  } : void 0;
-};
-
-class CreditasConnector extends database_schema.FinbricksConnector {
-  constructor(config) {
-    super("CREDITAS", config);
-  }
-}
-
-class FioConnector extends database_schema.FinbricksConnector {
-  constructor(config) {
-    super("FIO", config);
-  }
-}
-
-class MonetaConnector extends database_schema.FinbricksConnector {
-  constructor(config) {
-    super("MONETA", config);
-  }
-}
-
-const initiateConnector = ({
-  bank,
-  env,
-  connectedAccounts
-}) => {
-  switch (bank) {
-    case "ERSTE":
-      return new database_schema.ErsteConnector({
-        API_KEY: env.ERSTE_API_KEY,
-        CLIENT_ID: env.ERSTE_CLIENT_ID,
-        CLIENT_SECRET: env.ERSTE_CLIENT_SECRET,
-        REDIRECT_URI: env.REDIRECT_URI,
-        AUTH_URI: env.ERSTE_AUTH_URI,
-        PAYMENTS_URI: env.ERSTE_PAYMENTS_URI,
-        ACCOUNTS_URI: env.ERSTE_ACCOUNTS_URI,
-        connectedAccounts
-      });
-    case "CREDITAS":
-      return new CreditasConnector({
-        BASE_URI: env.FINBRICKS_BASE_URI,
-        MERCHANT_ID: env.FINBRICKS_MERCHANT_ID,
-        PRIVATE_KEY_PEM: env.FINBRICKS_PRIVATE_KEY_PEM,
-        REDIRECT_URI: env.REDIRECT_URI,
-        connectedAccounts
-      });
-    case "MOCK_COBS":
-      return new mockCobs_connector.MockCobsConnector({
-        BASE_URI: env.FINBRICKS_BASE_URI,
-        MERCHANT_ID: env.FINBRICKS_MERCHANT_ID,
-        PRIVATE_KEY_PEM: env.FINBRICKS_PRIVATE_KEY_PEM,
-        REDIRECT_URI: env.REDIRECT_URI,
-        connectedAccounts
-      });
-    case "FIO":
-      return new FioConnector({
-        BASE_URI: env.FINBRICKS_BASE_URI,
-        MERCHANT_ID: env.FINBRICKS_MERCHANT_ID,
-        PRIVATE_KEY_PEM: env.FINBRICKS_PRIVATE_KEY_PEM,
-        REDIRECT_URI: env.REDIRECT_URI,
-        connectedAccounts
-      });
-    case "MONETA":
-      return new MonetaConnector({
-        BASE_URI: env.FINBRICKS_BASE_URI,
-        MERCHANT_ID: env.FINBRICKS_MERCHANT_ID,
-        PRIVATE_KEY_PEM: env.FINBRICKS_PRIVATE_KEY_PEM,
-        REDIRECT_URI: env.REDIRECT_URI,
-        connectedAccounts
-      });
-    default:
-      return new database_schema.MockConnector();
-  }
-};
-
-async function importAesKey(base64Key) {
-  const raw = Uint8Array.from(atob(base64Key), (c) => c.charCodeAt(0));
-  return await crypto.subtle.importKey("raw", raw, { name: "AES-GCM" }, false, [
-    "encrypt",
-    "decrypt"
-  ]);
-}
-async function encrypt(value, key) {
-  const encoder = new TextEncoder();
-  const iv = crypto.getRandomValues(new Uint8Array(12));
-  const ciphertext = await crypto.subtle.encrypt(
-    { name: "AES-GCM", iv },
-    key,
-    encoder.encode(value)
-  );
-  const combined = new Uint8Array(iv.length + ciphertext.byteLength);
-  combined.set(iv, 0);
-  combined.set(new Uint8Array(ciphertext), iv.length);
-  return btoa(String.fromCharCode(...combined));
-}
-async function decrypt(base64, key) {
-  const raw = Uint8Array.from(atob(base64), (c) => c.charCodeAt(0));
-  const iv = raw.slice(0, 12);
-  const ciphertext = raw.slice(12);
-  const decrypted = await crypto.subtle.decrypt(
-    { name: "AES-GCM", iv },
-    key,
-    ciphertext
-  );
-  return new TextDecoder().decode(decrypted);
-}
-function canonicalize(value) {
-  if (value === null || typeof value !== "object") return value;
-  if (Array.isArray(value)) {
-    return value.map(canonicalize);
-  }
-  const obj = value;
-  const sorted = Object.keys(obj).sort().reduce((acc, key) => {
-    acc[key] = canonicalize(obj[key]);
-    return acc;
-  }, {});
-  return sorted;
-}
-function checksum(input) {
-  const canonical = canonicalize(input);
-  const json = JSON.stringify(canonical);
-  return node_crypto.createHash("sha256").update(json).digest("hex");
-}
-
-const PROCESS_BATCH_WORKFLOW_EVENTS = {
-  batchAuthorized: "batch-authorized"
-};
-function pushToQueue(queue, message) {
-  if (!Array.isArray(message)) return queue.send(message, { contentType: "v8" });
-  return queue.sendBatch(
-    message.map((m) => ({
-      body: m,
-      contentType: "v8"
-    }))
-  );
-}
-class BankProcessBatch extends cloudflare_workers.WorkflowEntrypoint {
-  async run(event, step) {
-    const { batchId } = event.payload;
-    const db = d1.drizzle(this.env.BANK_D1, { schema: database_schema.tables });
-    const batch = await step.do("load batch", async () => {
-      const batch2 = await getBatchByIdQuery(db, { batchId });
-      if (!batch2) {
-        throw new cloudflare_workflows.NonRetryableError(`Batch not found`);
-      }
-      if (batch2.status === "SIGNED")
-        throw new cloudflare_workflows.NonRetryableError(`Batch already signed`);
-      return batch2;
-    });
-    await step.do("lock batch", async () => {
-      const paymentsChecksum = checksum(batch.payments);
-      if (batch.paymentsChecksum && batch.paymentsChecksum !== paymentsChecksum)
-        throw new cloudflare_workflows.NonRetryableError(
-          `Batch payments have been modified externally, manual review needed`
-        );
-      if (batch.status === "FAILED")
-        throw new cloudflare_workflows.NonRetryableError(
-          `Batch is in FAILED status and cannot be processed, manual review needed`
-        );
-      if (batch.status === "OPEN" || batch.status === "FULL") {
-        const updatedBatch = await upsertBatchCommand(db, {
-          batch: {
-            ...batch,
-            status: "PROCESSING",
-            paymentsChecksum
-          }
-        }).command.execute().then(backendSdk.first);
-        return { status: updatedBatch.status };
-      }
-      return { status: batch.status };
-    });
-    const preparedPayments = await step.do(
-      "prepare payments",
-      {
-        retries: { limit: 5, delay: 2e3, backoff: "constant" },
-        timeout: "30 seconds"
-      },
-      async () => {
-        const account = await getAccountByIdQuery(db, {
-          accountId: batch.accountId
-        });
-        if (!account) {
-          throw new cloudflare_workflows.NonRetryableError(`Account not found: ${batch.accountId}`);
-        }
-        const encryptionKey = await importAesKey(this.env.ENCRYPTION_KEY);
-        const credentials = await getCredentialsByAccountId(db, encryptionKey, {
-          accountId: account.id
-        });
-        if (!credentials) {
-          throw new cloudflare_workflows.NonRetryableError(
-            `No credentials found for account: ${account.id}`
-          );
-        }
-        if (credentials.expiresAt < /* @__PURE__ */ new Date()) {
-          throw new cloudflare_workflows.NonRetryableError(
-            `Credentials have expired for account: ${account.id}`
-          );
-        }
-        const connector = initiateConnector({
-          env: this.env,
-          bank: account.connectorKey,
-          connectedAccounts: [
-            {
-              ...account,
-              iban: account.iban,
-              token: credentials.value
-            }
-          ]
-        });
-        const preparedPayments2 = [];
-        for (const payment of batch.payments) {
-          const prepared = await connector.preparePayment(payment);
-          if (prepared) {
-            preparedPayments2.push(prepared);
-          }
-        }
-        return preparedPayments2;
-      }
-    );
-    const batchResult = await step.do(
-      "initiate batch from payments",
-      {
-        retries: { limit: 5, delay: 2e3, backoff: "constant" },
-        timeout: "30 seconds"
-      },
-      async () => {
-        if (batch.batchPaymentInitiatedAt) {
-          return {
-            authorizationUrls: batch.authorizationUrls,
-            initializedPayments: preparedPayments.map((p) => ({
-              ...p,
-              status: "INITIALIZED"
-            })),
-            metadata: batch.metadata
-          };
-        }
-        const account = await getAccountByIdQuery(db, {
-          accountId: batch.accountId
-        });
-        if (!account) {
-          throw new cloudflare_workflows.NonRetryableError(`Account not found: ${batch.accountId}`);
-        }
-        const encryptionKey = await importAesKey(this.env.ENCRYPTION_KEY);
-        const credentials = await getCredentialsByAccountId(db, encryptionKey, {
-          accountId: account.id
-        });
-        if (!credentials) {
-          throw new cloudflare_workflows.NonRetryableError(
-            `No credentials found for account: ${account.id}`
-          );
-        }
-        if (credentials.expiresAt < /* @__PURE__ */ new Date()) {
-          throw new cloudflare_workflows.NonRetryableError(
-            `Credentials have expired for account: ${account.id}`
-          );
-        }
-        const connector = initiateConnector({
-          env: this.env,
-          bank: account.connectorKey,
-          connectedAccounts: [
-            {
-              ...account,
-              iban: account.iban,
-              token: credentials.value
-            }
-          ]
-        });
-        const result = await connector.initiateBatchFromPayments({
-          payments: preparedPayments
-        });
-        const {
-          authorizationUrls,
-          payments: initializedPayments,
-          metadata
-        } = result;
-        if (!authorizationUrls || authorizationUrls.length === 0) {
-          throw new Error("Failed to retrieve authorization URLs");
-        }
-        return {
-          authorizationUrls,
-          initializedPayments,
-          metadata
-        };
-      }
-    );
-    await step.do("update batch and payments to initialized", async () => {
-      const upsertBatch = upsertBatchCommand(db, {
-        batch: {
-          ...batch,
-          authorizationUrls: batchResult.authorizationUrls,
-          metadata: batchResult.metadata,
-          status: "READY_TO_SIGN",
-          batchPaymentInitiatedAt: /* @__PURE__ */ new Date()
-        }
-      }).command;
-      await upsertBatch.execute();
-      return {
-        status: "READY_TO_SIGN",
-        paymentsInitialized: batchResult.initializedPayments.length
-      };
-    });
-    await step.do("send authorization email", async () => {
-      await pushToQueue(this.env.NOTIFICATIONS_QUEUE, {
-        type: "email",
-        payload: {
-          email: {
-            to: [this.env.BANK_AUTH_RECIPIENT],
-            subject: "Payment Authorization",
-            text: Array.isArray(batchResult.authorizationUrls) ? batchResult.authorizationUrls[0] || "No Authorization URL" : batchResult.authorizationUrls || "No Authorization URL"
-          }
-        },
-        metadata: {
-          initiator: {
-            service: "bank"
-          }
-        }
-      });
-      return { emailSent: true };
-    });
-    const authorizationEvent = await step.waitForEvent(
-      "wait for batch authorization",
-      {
-        type: "batch-authorized",
-        timeout: "3 days"
-      }
-    );
-    await step.do("handle authorization result", async () => {
-      const authPayload = authorizationEvent.payload;
-      const updatedBatch = await upsertBatchCommand(db, {
-        batch: {
-          ...batch,
-          status: authPayload.authorized ? "SIGNED" : "SIGNATURE_FAILED"
-        }
-      }).command.execute().then(backendSdk.first);
-      return { updatedBatch };
-    });
-  }
-}
-
-exports.BankProcessBatch = BankProcessBatch;
-exports.PROCESS_BATCH_WORKFLOW_EVENTS = PROCESS_BATCH_WORKFLOW_EVENTS;
-exports.createPaymentCommand = createPaymentCommand;
-exports.encrypt = encrypt;
-exports.getAccountByIdQuery = getAccountByIdQuery;
-exports.getCredentialsByAccountId = getCredentialsByAccountId;
-exports.importAesKey = importAesKey;
-exports.initiateConnector = initiateConnector;
-exports.upsertBatchCommand = upsertBatchCommand;

package/dist/shared/bank.DfE0M5H3.cjs

@@ -1,11 +0,0 @@
-'use strict';
-
-const database_schema = require('./bank.CLF9wee9.cjs');
-
-class MockCobsConnector extends database_schema.FinbricksConnector {
-  constructor(config) {
-    super("MOCK_COBS", config);
-  }
-}
-
-exports.MockCobsConnector = MockCobsConnector;