@develit-services/bank 0.7.8 → 0.7.10

package/dist/shared/{bank.PB07ttj3.mjs → bank.993UA65l.mjs}

@@ -2,8 +2,8 @@ import { bankAccount, base } from '@develit-io/backend-sdk';
 import { relations } from 'drizzle-orm/relations';
 import { sqliteTable, text, integer, unique, real } from 'drizzle-orm/sqlite-core';
 import 'date-fns';
-import { COUNTRY_CODES_2, BANK_CODES } from '@develit-io/general-codes';
 import 'jose';
+import { COUNTRY_CODES_2, BANK_CODES } from '@develit-io/general-codes';
 import 'drizzle-orm';
 import 'node:crypto';
 import { createInsertSchema, createUpdateSchema, createSelectSchema } from 'drizzle-zod';
@@ -41,7 +41,8 @@ const CONNECTOR_KEYS = [
   "DBU",
   "CSAS",
   "AIRBANK",
-  "KB"
+  "KB",
+  "CSOB"
 ];
 const CREDENTIALS_TYPES = [
   "AUTH_TOKEN",

package/dist/shared/{bank.AEdMloQz.cjs → bank.Bs7mkXbR.cjs}

@@ -2,12 +2,12 @@
 
 const backendSdk = require('@develit-io/backend-sdk');
 const drizzleOrm = require('drizzle-orm');
-const database_schema = require('./bank.Bz8-M6O4.cjs');
+require('./bank.IVhZ_RlH.cjs');
 require('date-fns');
-require('@develit-io/general-codes');
 require('jose');
-require('./bank.DgGri2Wr.cjs');
+require('@develit-io/general-codes');
 const node_crypto = require('node:crypto');
+const database_schema = require('./bank.Cp0yvOdq.cjs');
 
 const createPaymentCommand = (db, { payment }) => {
   return {
@@ -101,14 +101,23 @@ function checksum(input) {
   return node_crypto.createHash("sha256").update(json).digest("hex");
 }
 
+const createCredentialsResolver = async (db, env) => {
+  const encryptionKey = await importAesKey(
+    (await env.SECRETS_STORE.get({
+      secretName: "BANK_SERVICE_ENCRYPTION_KEY"
+    })).data?.secretValue || ""
+  );
+  return (accountId) => getCredentialsByAccountId(db, encryptionKey, { accountId });
+};
+
 const tables = database_schema.schema;
 
 exports.checksum = checksum;
+exports.createCredentialsResolver = createCredentialsResolver;
 exports.createPaymentCommand = createPaymentCommand;
 exports.encrypt = encrypt;
 exports.getAccountByIdQuery = getAccountByIdQuery;
 exports.getBatchByIdQuery = getBatchByIdQuery;
-exports.getCredentialsByAccountId = getCredentialsByAccountId;
 exports.importAesKey = importAesKey;
 exports.tables = tables;
 exports.upsertBatchCommand = upsertBatchCommand;

package/dist/shared/{bank.BVRO97AQ.mjs → bank.CGIeLo8U.mjs}

@@ -1,11 +1,11 @@
 import { uuidv4 } from '@develit-io/backend-sdk';
 import { eq } from 'drizzle-orm';
-import { s as schema } from './bank.I0pR4Me2.mjs';
+import './bank.993UA65l.mjs';
 import 'date-fns';
-import '@develit-io/general-codes';
 import 'jose';
-import './bank.PB07ttj3.mjs';
+import '@develit-io/general-codes';
 import { createHash } from 'node:crypto';
+import { s as schema } from './bank.fIGTiPnp.mjs';
 
 const createPaymentCommand = (db, { payment }) => {
   return {
@@ -99,6 +99,15 @@ function checksum(input) {
   return createHash("sha256").update(json).digest("hex");
 }
 
+const createCredentialsResolver = async (db, env) => {
+  const encryptionKey = await importAesKey(
+    (await env.SECRETS_STORE.get({
+      secretName: "BANK_SERVICE_ENCRYPTION_KEY"
+    })).data?.secretValue || ""
+  );
+  return (accountId) => getCredentialsByAccountId(db, encryptionKey, { accountId });
+};
+
 const tables = schema;
 
-export { getAccountByIdQuery as a, getCredentialsByAccountId as b, checksum as c, createPaymentCommand as d, encrypt as e, getBatchByIdQuery as g, importAesKey as i, tables as t, upsertBatchCommand as u };
+export { getAccountByIdQuery as a, createCredentialsResolver as b, checksum as c, createPaymentCommand as d, encrypt as e, getBatchByIdQuery as g, importAesKey as i, tables as t, upsertBatchCommand as u };

package/dist/shared/{bank.kYaMR0UG.cjs → bank.Ce-NBBw1.cjs}

@@ -3,11 +3,69 @@
 const backendSdk = require('@develit-io/backend-sdk');
 const dateFns = require('date-fns');
 const generalCodes = require('@develit-io/general-codes');
-require('./bank.DgGri2Wr.cjs');
+require('./bank.IVhZ_RlH.cjs');
 require('drizzle-orm');
 const jose = require('jose');
 require('node:crypto');
 
+function toIncomingPayment(input) {
+  return {
+    id: backendSdk.uuidv4(),
+    correlationId: input.correlationId,
+    refId: input.refId,
+    amount: input.amount,
+    direction: "OUTGOING",
+    paymentType: input.paymentType,
+    currency: input.currency,
+    status: "CREATED",
+    statusReason: null,
+    batchId: null,
+    initiatedAt: null,
+    // Will be set in preparePayment when sent to bank
+    processedAt: null,
+    vs: input.vs || null,
+    ss: input.ss || null,
+    ks: input.ks || null,
+    message: input.message || null,
+    creditor: input.creditor,
+    creditorIban: input.creditor.iban || null,
+    debtor: input.debtor,
+    debtorIban: input.debtor.iban || null,
+    sendAsSinglePayment: input.sendAsSinglePayment,
+    chargeBearer: input.chargeBearer,
+    instructionPriority: input.instructionPriority
+  };
+}
+function assignAccount(payment, account) {
+  return {
+    ...payment,
+    accountId: account.id,
+    connectorKey: account.connectorKey
+  };
+}
+function toBatchedPayment(payment) {
+  return payment;
+}
+function toPreparedPayment(payment, bankRefId, initiatedAt) {
+  return {
+    ...payment,
+    status: "PREPARED",
+    bankRefId,
+    initiatedAt: initiatedAt ?? /* @__PURE__ */ new Date()
+  };
+}
+function toCompletedPayment(payment, status, bankRefId, processedAt) {
+  return {
+    ...payment,
+    bankRefId,
+    status,
+    processedAt: processedAt ?? /* @__PURE__ */ new Date()
+  };
+}
+function batchTransform(payments, transformer) {
+  return payments.map(transformer);
+}
+
 class IBankConnector {
   // ── Deprecated methods (backward compatibility) ────────────────────
   /**
@@ -96,64 +154,6 @@ class IBankConnector {
   }
 }
 
-function toIncomingPayment(input) {
-  return {
-    id: backendSdk.uuidv4(),
-    correlationId: input.correlationId,
-    refId: input.refId,
-    amount: input.amount,
-    direction: "OUTGOING",
-    paymentType: input.paymentType,
-    currency: input.currency,
-    status: "CREATED",
-    statusReason: null,
-    batchId: null,
-    initiatedAt: null,
-    // Will be set in preparePayment when sent to bank
-    processedAt: null,
-    vs: input.vs || null,
-    ss: input.ss || null,
-    ks: input.ks || null,
-    message: input.message || null,
-    creditor: input.creditor,
-    creditorIban: input.creditor.iban || null,
-    debtor: input.debtor,
-    debtorIban: input.debtor.iban || null,
-    sendAsSinglePayment: input.sendAsSinglePayment,
-    chargeBearer: input.chargeBearer,
-    instructionPriority: input.instructionPriority
-  };
-}
-function assignAccount(payment, account) {
-  return {
-    ...payment,
-    accountId: account.id,
-    connectorKey: account.connectorKey
-  };
-}
-function toBatchedPayment(payment) {
-  return payment;
-}
-function toPreparedPayment(payment, bankRefId, initiatedAt) {
-  return {
-    ...payment,
-    status: "PREPARED",
-    bankRefId,
-    initiatedAt: initiatedAt ?? /* @__PURE__ */ new Date()
-  };
-}
-function toCompletedPayment(payment, status, bankRefId, processedAt) {
-  return {
-    ...payment,
-    bankRefId,
-    status,
-    processedAt: processedAt ?? /* @__PURE__ */ new Date()
-  };
-}
-function batchTransform(payments, transformer) {
-  return payments.map(transformer);
-}
-
 async function signFinbricksJws({
   privateKeyPem,
   merchantId,
@@ -388,7 +388,8 @@ class FinbricksConnector extends IBankConnector {
     MERCHANT_ID,
     PRIVATE_KEY_PEM,
     REDIRECT_URI,
-    connectedAccounts
+    connectedAccounts,
+    resolveCredentials
   }) {
     super();
     this.connectorKey = "FINBRICKS";
@@ -401,6 +402,26 @@ class FinbricksConnector extends IBankConnector {
       REDIRECT_URI
     );
     this.connectedAccounts = connectedAccounts;
+    this.resolveCredentials = resolveCredentials;
+  }
+  async getClientId(accountId) {
+    if (!this.resolveCredentials) {
+      throw backendSdk.createInternalError(null, {
+        message: "Credentials resolver not provided"
+      });
+    }
+    const credentials = await this.resolveCredentials(accountId);
+    if (!credentials) {
+      throw backendSdk.createInternalError(null, {
+        message: `No credentials found for account: ${accountId}`
+      });
+    }
+    if (credentials.expiresAt < /* @__PURE__ */ new Date()) {
+      throw backendSdk.createInternalError(null, {
+        message: `Credentials have expired for account: ${accountId}`
+      });
+    }
+    return credentials.value;
   }
   async getAuthUri({ ott }) {
     const clientId = backendSdk.uuidv4();
@@ -460,8 +481,7 @@ class FinbricksConnector extends IBankConnector {
         connectorKey: this.PROVIDER,
         currency: acc.currency,
         iban: acc.identification.iban,
-        id: acc.id,
-        token: clientId
+        id: acc.id
       }))
     );
     return {
@@ -556,6 +576,7 @@ class FinbricksConnector extends IBankConnector {
       throw backendSdk.createInternalError(null, {
         message: `Batch for unauthorized client with iban: ${payments[0].debtor.iban}`
       });
+    const clientId = await this.getClientId(authorizedClient.id);
     const [response, error] = await backendSdk.useResult(
       this.finbricks.request({
         endpoint: FINBRICKS_ENDPOINTS.TRANSACTION_BATCH_INIT,
@@ -564,7 +585,7 @@ class FinbricksConnector extends IBankConnector {
           batchPaymentIdentification: {
             merchantId: this.finbricks.MERCHANT_ID,
             debtorAccountIban: payments[0].debtor.iban,
-            clientId: authorizedClient.token,
+            clientId,
             callbackUrl: `${this.finbricks.REDIRECT_URI}?type=batch&batchId=${batchId}`,
             merchantBatchId: batchId
           },
@@ -601,6 +622,10 @@ class FinbricksConnector extends IBankConnector {
     throw new Error("Finbricks: Foreign batch not implemented");
   }
   async initiateForeignPayment(payment) {
+    const debtorAccount = this.connectedAccounts.find(
+      (acc) => acc.iban === payment.debtorIban
+    );
+    const clientId = await this.getClientId(debtorAccount.id);
     const bankRefId = backendSdk.uuidv4();
     const [response, error] = await backendSdk.useResult(
       this.finbricks.request({
@@ -609,9 +634,7 @@ class FinbricksConnector extends IBankConnector {
         body: {
           merchantIdentification: {
             merchantId: this.finbricks.MERCHANT_ID,
-            clientId: this.connectedAccounts.find(
-              (acc) => acc.iban === payment.debtorIban
-            ).token
+            clientId
           },
           paymentIdentification: {
             merchantTransactionId: bankRefId
@@ -662,6 +685,10 @@ class FinbricksConnector extends IBankConnector {
     };
   }
   async initiateSEPAPayment(payment) {
+    const debtorAccount = this.connectedAccounts.find(
+      (acc) => acc.iban === payment.debtorIban
+    );
+    const clientId = await this.getClientId(debtorAccount.id);
     const bankRefId = backendSdk.uuidv4();
     const [response, error] = await backendSdk.useResult(
       this.finbricks.request({
@@ -670,9 +697,7 @@ class FinbricksConnector extends IBankConnector {
         body: {
           merchantIdentification: {
             merchantId: this.finbricks.MERCHANT_ID,
-            clientId: this.connectedAccounts.find(
-              (acc) => acc.iban === payment.debtorIban
-            ).token
+            clientId
           },
           paymentIdentification: {
             merchantTransactionId: bankRefId
@@ -751,6 +776,10 @@ class FinbricksConnector extends IBankConnector {
     account,
     filter
   }) {
+    const connectedAccount = this.connectedAccounts.find(
+      (acc) => acc.iban === account.iban
+    );
+    const clientId = await this.getClientId(connectedAccount.id);
     let cursor = null;
     const allPayments = [];
     const dateFormat = "yyyy-MM-dd";
@@ -763,9 +792,7 @@ class FinbricksConnector extends IBankConnector {
           endpoint: FINBRICKS_ENDPOINTS.ACCOUNT_TRANSACTIONS,
           query: {
             merchantId: this.finbricks.MERCHANT_ID,
-            clientId: this.connectedAccounts.find(
-              (acc) => acc.iban === account.iban
-            ).token,
+            clientId,
             paymentProvider: this.PROVIDER,
             bankAccountId: account.bankRefId,
             dateFrom,
@@ -846,6 +873,15 @@ class FinbricksConnector extends IBankConnector {
   }
 }
 
+class CsobConnector extends FinbricksConnector {
+  constructor(config) {
+    super("CSOB", config);
+  }
+  supportsBatch(paymentType) {
+    return paymentType === "DOMESTIC";
+  }
+}
+
 class AirBankConnector extends FinbricksConnector {
   constructor(config) {
     super("AIRBANK", config);
@@ -922,7 +958,8 @@ const getPaymentDirection = (payment, iban) => {
 const initiateConnector = async ({
   bank,
   env,
-  connectedAccounts
+  connectedAccounts,
+  resolveCredentials
 }) => {
   switch (bank) {
     case "ERSTE":
@@ -940,7 +977,8 @@ const initiateConnector = async ({
         AUTH_URI: env.ERSTE_AUTH_URI,
         PAYMENTS_URI: env.ERSTE_PAYMENTS_URI,
         ACCOUNTS_URI: env.ERSTE_ACCOUNTS_URI,
-        connectedAccounts
+        connectedAccounts,
+        resolveCredentials
       });
     case "CREDITAS":
       return new CreditasConnector({
@@ -950,7 +988,8 @@ const initiateConnector = async ({
           secretName: "BANK_SERVICE_FINBRICKS_PRIVATE_KEY_PEM"
         })).data?.secretValue || "",
         REDIRECT_URI: env.REDIRECT_URI,
-        connectedAccounts
+        connectedAccounts,
+        resolveCredentials
       });
     case "MOCK_COBS":
       return new MockCobsConnector({
@@ -960,7 +999,8 @@ const initiateConnector = async ({
           secretName: "BANK_SERVICE_FINBRICKS_PRIVATE_KEY_PEM"
         })).data?.secretValue || "",
         REDIRECT_URI: env.REDIRECT_URI,
-        connectedAccounts
+        connectedAccounts,
+        resolveCredentials
       });
     case "FIO":
       return new FioConnector({
@@ -970,7 +1010,8 @@ const initiateConnector = async ({
           secretName: "BANK_SERVICE_FINBRICKS_PRIVATE_KEY_PEM"
         })).data?.secretValue || "",
         REDIRECT_URI: env.REDIRECT_URI,
-        connectedAccounts
+        connectedAccounts,
+        resolveCredentials
       });
     case "MONETA":
       return new MonetaConnector({
@@ -980,7 +1021,8 @@ const initiateConnector = async ({
           secretName: "BANK_SERVICE_FINBRICKS_PRIVATE_KEY_PEM"
         })).data?.secretValue || "",
         REDIRECT_URI: env.REDIRECT_URI,
-        connectedAccounts
+        connectedAccounts,
+        resolveCredentials
       });
     case "AIRBANK":
       return new AirBankConnector({
@@ -990,7 +1032,8 @@ const initiateConnector = async ({
           secretName: "BANK_SERVICE_FINBRICKS_PRIVATE_KEY_PEM"
         })).data?.secretValue || "",
         REDIRECT_URI: env.REDIRECT_URI,
-        connectedAccounts
+        connectedAccounts,
+        resolveCredentials
       });
     case "CSAS":
       return new CSASConnector({
@@ -1000,7 +1043,8 @@ const initiateConnector = async ({
           secretName: "BANK_SERVICE_FINBRICKS_PRIVATE_KEY_PEM"
         })).data?.secretValue || "",
         REDIRECT_URI: env.REDIRECT_URI,
-        connectedAccounts
+        connectedAccounts,
+        resolveCredentials
       });
     case "KB":
       return new KBConnector({
@@ -1010,7 +1054,19 @@ const initiateConnector = async ({
           secretName: "BANK_SERVICE_FINBRICKS_PRIVATE_KEY_PEM"
         })).data?.secretValue || "",
         REDIRECT_URI: env.REDIRECT_URI,
-        connectedAccounts
+        connectedAccounts,
+        resolveCredentials
+      });
+    case "CSOB":
+      return new CsobConnector({
+        BASE_URI: env.FINBRICKS_BASE_URI,
+        MERCHANT_ID: env.FINBRICKS_MERCHANT_ID,
+        PRIVATE_KEY_PEM: (await env.SECRETS_STORE.get({
+          secretName: "BANK_SERVICE_FINBRICKS_PRIVATE_KEY_PEM"
+        })).data?.secretValue || "",
+        REDIRECT_URI: env.REDIRECT_URI,
+        connectedAccounts,
+        resolveCredentials
       });
     case "DBU":
       return new DbuConnector({
@@ -1297,17 +1353,7 @@ class DbuConnector extends IBankConnector {
       bankRefId: idAccount,
       currency: "CZK"
     };
-    const credentials = [
-      {
-        accountId: id,
-        connectorKey: "DBU",
-        type: "API_KEY",
-        value: "dbu-tunnel-auth",
-        expiresAt: new Date(Date.now() + 10 * 365 * 24 * 60 * 60 * 1e3)
-        // 10 years
-      }
-    ];
-    return { credentials, accounts: [account] };
+    return { credentials: [], accounts: [account] };
   }
   async listAccounts() {
     return [];
@@ -1532,6 +1578,7 @@ class ErsteConnector extends IBankConnector {
     this.PAYMENTS_URI = config.PAYMENTS_URI;
     this.ACCOUNTS_URI = config.ACCOUNTS_URI;
     this.connectedAccounts = config.connectedAccounts;
+    this.resolveCredentials = config.resolveCredentials;
   }
   initiateDomesticPayment(_payment) {
     throw new Error("Method not implemented.");
@@ -1928,6 +1975,7 @@ class MockConnector extends IBankConnector {
   }
 }
 
+exports.CsobConnector = CsobConnector;
 exports.DbuConnector = DbuConnector;
 exports.ErsteConnector = ErsteConnector;
 exports.FINBRICKS_ENDPOINTS = FINBRICKS_ENDPOINTS;