@dexterai/x402 3.12.1 → 3.14.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (15) hide show
  1. package/dist/client/index.cjs +1 -1
  2. package/dist/client/index.d.cts +1 -1
  3. package/dist/client/index.d.ts +1 -1
  4. package/dist/client/index.js +1 -1
  5. package/dist/tab/adapters/solana/index.d.cts +1 -1
  6. package/dist/tab/adapters/solana/index.d.ts +1 -1
  7. package/dist/tab/index.cjs +3 -3
  8. package/dist/tab/index.d.cts +2 -2
  9. package/dist/tab/index.d.ts +2 -2
  10. package/dist/tab/index.js +4 -4
  11. package/dist/tab/seller/index.cjs +3 -3
  12. package/dist/tab/seller/index.js +4 -4
  13. package/dist/{types-D1HhKTg7.d.cts → types-DEnVPFxF.d.cts} +7 -0
  14. package/dist/{types-D1HhKTg7.d.ts → types-DEnVPFxF.d.ts} +7 -0
  15. package/package.json +1 -1
package/dist/client/index.cjs CHANGED
@@ -1 +1 @@
1
- "use strict";var Vt=Object.create;var qe=Object.defineProperty;var Ft=Object.getOwnPropertyDescriptor;var qt=Object.getOwnPropertyNames;var Ht=Object.getPrototypeOf,jt=Object.prototype.hasOwnProperty;var gt=(n,e)=>()=>(n&&(e=n(n=0)),e);var yt=(n,e)=>{for(var t in e)qe(n,t,{get:e[t],enumerable:!0})},ht=(n,e,t,r)=>{if(e&&typeof e=="object"||typeof e=="function")for(let o of qt(e))!jt.call(n,o)&&o!==t&&qe(n,o,{get:()=>e[o],enumerable:!(r=Ft(e,o))||r.enumerable});return n};var Z=(n,e,t)=>(t=n!=null?Vt(Ht(n)):{},ht(e||!n||!n.__esModule?qe(t,"default",{value:n,enumerable:!0}):t,n)),Xt=n=>ht(qe({},"__esModule",{value:!0}),n);function gn(n){if(n.length>=255)throw new TypeError("Alphabet too long");let e=new Uint8Array(256);for(let s=0;s<e.length;s++)e[s]=255;for(let s=0;s<n.length;s++){let p=n.charAt(s),f=p.charCodeAt(0);if(e[f]!==255)throw new TypeError(p+" is ambiguous");e[f]=s}let t=n.length,r=n.charAt(0),o=Math.log(t)/Math.log(256),a=Math.log(256)/Math.log(t);function i(s){if(s instanceof Uint8Array||(ArrayBuffer.isView(s)?s=new Uint8Array(s.buffer,s.byteOffset,s.byteLength):Array.isArray(s)&&(s=Uint8Array.from(s))),!(s instanceof Uint8Array))throw new TypeError("Expected Uint8Array");if(s.length===0)return"";let p=0,f=0,g=0,w=s.length;for(;g!==w&&s[g]===0;)g++,p++;let u=(w-g)*a+1>>>0,A=new Uint8Array(u);for(;g!==w;){let y=s[g],S=0;for(let P=u-1;(y!==0||S<f)&&P!==-1;P--,S++)y+=256*A[P]>>>0,A[P]=y%t>>>0,y=y/t>>>0;if(y!==0)throw new Error("Non-zero carry");f=S,g++}let m=u-f;for(;m!==u&&A[m]===0;)m++;let h=r.repeat(p);for(;m<u;++m)h+=n.charAt(A[m]);return h}function c(s){if(typeof s!="string")throw new TypeError("Expected String");if(s.length===0)return new Uint8Array;let p=0,f=0,g=0;for(;s[p]===r;)f++,p++;let w=(s.length-p)*o+1>>>0,u=new Uint8Array(w);for(;p<s.length;){let y=s.charCodeAt(p);if(y>255)return;let S=e[y];if(S===255)return;let P=0;for(let O=w-1;(S!==0||P<g)&&O!==-1;O--,P++)S+=t*u[O]>>>0,u[O]=S%256>>>0,S=S/256>>>0;if(S!==0)throw new Error("Non-zero carry");g=P,p++}let A=w-g;for(;A!==w&&u[A]===0;)A++;let m=new Uint8Array(f+(w-A)),h=f;for(;A!==w;)m[h++]=u[A++];return m}function l(s){let p=c(s);if(p)return p;throw new Error("Non-base"+t+" character")}return{encode:i,decodeUnsafe:c,decode:l}}var Nt,kt=gt(()=>{"use strict";Nt=gn});var Ot={};yt(Ot,{default:()=>hn});var yn,hn,Ut=gt(()=>{"use strict";kt();yn="123456789ABCDEFGHJKLMNPQRSTUVWXYZabcdefghijkmnopqrstuvwxyz",hn=Nt(yn)});var Sn={};yt(Sn,{BASE_MAINNET:()=>j,DEXTER_FACILITATOR_URL:()=>ut,KEYPAIR_SYMBOL:()=>ue,SOLANA_MAINNET:()=>H,USDC_MINT:()=>De,X402Error:()=>C,buildV1PaymentHeader:()=>Le,capabilitySearch:()=>ft.capabilitySearch,createBudgetAccount:()=>Lt,createEvmAdapter:()=>te,createEvmKeypairWallet:()=>at,createKeypairWallet:()=>ot,createSolanaAdapter:()=>L,createX402Client:()=>Ee,detectStrategy:()=>mt,fireImpressionBeacon:()=>Wt,getPaymentReceipt:()=>Ze,getSponsoredAccessInfo:()=>st,getSponsoredRecommendations:()=>Kt,isEvmKeypairWallet:()=>$t,isKeypairWallet:()=>Bt,payAndFetch:()=>dt,toNetworkRef:()=>ae,toSiwxSigner:()=>Ve,wrapFetch:()=>it});module.exports=Xt(Sn);var At=[{caip2:"eip155:8453",bare:"base",family:"evm"},{caip2:"eip155:1",bare:"ethereum",family:"evm"},{caip2:"eip155:137",bare:"polygon",family:"evm"},{caip2:"eip155:42161",bare:"arbitrum",family:"evm"},{caip2:"eip155:10",bare:"optimism",family:"evm"},{caip2:"eip155:43114",bare:"avalanche",family:"evm"},{caip2:"eip155:56",bare:"bsc",family:"evm"},{caip2:"solana:5eykt4UsFv8P8NJdTREpY1vzqKqZKvdp",bare:"solana",family:"svm"}],Jt=new Map(At.map(n=>[n.caip2.toLowerCase(),n])),zt=new Map(At.map(n=>[n.bare.toLowerCase(),n]));function ae(n){if(!n)return null;let e=n.toLowerCase(),t=Jt.get(e)||zt.get(e);return t?{caip2:t.caip2,bare:t.bare,family:t.family}:null}var Pe="solana:5eykt4UsFv8P8NJdTREpY1vzqKqZKvdp",He="solana:EtWTRABZaYq6iMfeYKouRu166VU2xqa1",je="solana:4uhcVJyU9pJkvQyS88uRDiswHXSCkY3z",H=Pe,Re=He,ve=je,se="eip155:8453",fe="eip155:84532",ge="eip155:42161",ye="eip155:137",he="eip155:10",Ae="eip155:43114",Se="eip155:56",we="eip155:1187947933",be="eip155:324705682",xe="eip155:1",j=se,Xe=fe,Ce=ge,_e=ye,Ie=he,Ne=Ae,ke=Se,Oe=we,Ue=be,Be=xe,De="EPjFWdd5AufqSSqeM2qN1xzybapC8G4wEGGkZwyTDt1v",St="4zMMC9srt5Ri5X14GAgXhaHii3GnPAEERYPJgZJDncDU",wt="0x833589fCD6eDb6E08f4c7C32D4f71b54bdA02913",lt="0x55d398326f99059fF775485246999027B3197955",Je="0x8AC76a51cc950d9822D68b83fE1Ad97B32Cd580d",ze={[Se]:Je,[se]:wt,[fe]:"0x036CbD53842c5426634e7929541eC2318f3dCF7e",[ge]:"0xaf88d065e77c8cC2239327C5EDb3A432268e5831",[ye]:"0x3c499c542cEF5E3811e1192ce70d8cC03d5c3359",[he]:"0x0b2C639c533813f4Aa9D7837CAf62653d097Ff85",[Ae]:"0xB97EF9Ef8734C71904D8002F8b6Bc66Dd9c48a6E",[we]:"0x85889c8c714505E0c94b30fcfcF64fE3Ac8FCb20",[be]:"0x2e08028E3C4c2356572E096d8EF835cD5C6030bD",[xe]:"0xA0b86991c6218b36c1d19D4a2e9Eb0cE3606eB48"},Ye={[lt]:{symbol:"USDT",decimals:18},[Je]:{symbol:"USDC",decimals:18}};var ee="0x000000000022D473030F116dDEE9F6B43aC78BA3",Me="0x402085c248EeA27D92E8b30b2C58ed07f9E20001",$e={[Se]:56,[se]:8453,[fe]:84532,[ge]:42161,[ye]:137,[he]:10,[Ae]:43114,[we]:1187947933,[be]:324705682,[xe]:1},ie={[Pe]:"https://api.dexter.cash/api/solana/rpc",[He]:"https://api.devnet.solana.com",[je]:"https://api.testnet.solana.com"},D={[Se]:"https://api.dexter.cash/api/evm/bsc/rpc",[se]:"https://api.dexter.cash/api/base/rpc",[fe]:"https://sepolia.base.org",[ge]:"https://api.dexter.cash/api/evm/arbitrum/rpc",[ye]:"https://api.dexter.cash/api/evm/polygon/rpc",[he]:"https://api.dexter.cash/api/evm/optimism/rpc",[Ae]:"https://api.dexter.cash/api/evm/avalanche/rpc",[we]:"https://skale-base.skalenodes.com/v1/base",[be]:"https://base-sepolia-testnet.skalenodes.com/v1/jubilant-horrible-ancha",[xe]:"https://eth.llamarpc.com"},ut="https://x402.dexter.cash";var C=class n extends Error{code;details;constructor(e,t,r){super(t),this.name="X402Error",this.code=e,this.details=r,Object.setPrototypeOf(this,n.prototype)}};var k=require("@solana/web3.js"),U=require("@solana/spl-token");var Yt=12e3,Gt=1;function ce(n){if(!n||typeof n!="object")return!1;let e=n;return"publicKey"in e&&"signTransaction"in e&&typeof e.signTransaction=="function"}var Ge=class{name="Solana";networks=[H,Re,ve];config;log;constructor(e={}){this.config=e,this.log=e.verbose?console.log.bind(console,"[x402:solana]"):()=>{}}canHandle(e){return!!(this.networks.includes(e)||e==="solana"||e==="solana-devnet"||e==="solana-testnet"||e.startsWith("solana:"))}getDefaultRpcUrl(e){return this.config.rpcUrls?.[e]?this.config.rpcUrls[e]:ie[e]?ie[e]:e==="solana"?ie[H]:e==="solana-devnet"?ie[Re]:e==="solana-testnet"?ie[ve]:ie[H]}getAddress(e){return ce(e)?e.publicKey?.toBase58()??null:null}isConnected(e){return ce(e)?e.publicKey!==null:!1}async getBalance(e,t,r){if(!ce(t)||!t.publicKey)return 0;let o=r||this.getDefaultRpcUrl(e.network),a=new k.Connection(o,"confirmed"),i=new k.PublicKey(t.publicKey.toBase58()),c=new k.PublicKey(e.asset);try{let s=(await a.getAccountInfo(c,"confirmed"))?.owner.toBase58()===U.TOKEN_2022_PROGRAM_ID.toBase58()?U.TOKEN_2022_PROGRAM_ID:U.TOKEN_PROGRAM_ID,p=await(0,U.getAssociatedTokenAddress)(c,i,!1,s),f=await(0,U.getAccount)(a,p,void 0,s),g=e.extra?.decimals??6;return Number(f.amount)/Math.pow(10,g)}catch(l){if(l&&typeof l=="object"&&"name"in l&&(l.name==="TokenAccountNotFoundError"||l.name==="TokenInvalidAccountOwnerError"))return 0;throw l}}async buildTransaction(e,t,r){if(!ce(t))throw new Error("Invalid Solana wallet");if(!t.publicKey)throw new Error("Wallet not connected");let o=r||this.getDefaultRpcUrl(e.network),a=new k.Connection(o,"confirmed"),i=new k.PublicKey(t.publicKey.toBase58()),{payTo:c,asset:l,extra:s}=e,p=e.amount??e.maxAmountRequired;if(!p)throw new Error("Missing amount in payment requirements");if(!s?.feePayer)throw new Error("Missing feePayer in payment requirements");let f=new k.PublicKey(s.feePayer),g=new k.PublicKey(l),w=new k.PublicKey(c);this.log("Building transaction:",{from:i.toBase58(),to:c,amount:p,asset:l,feePayer:s.feePayer});let u=[];u.push(k.ComputeBudgetProgram.setComputeUnitLimit({units:Yt})),u.push(k.ComputeBudgetProgram.setComputeUnitPrice({microLamports:Gt}));let A=await a.getAccountInfo(g,"confirmed");if(!A)throw new Error(`Token mint ${l} not found`);let m=A.owner.toBase58()===U.TOKEN_2022_PROGRAM_ID.toBase58()?U.TOKEN_2022_PROGRAM_ID:U.TOKEN_PROGRAM_ID,h=await(0,U.getMint)(a,g,void 0,m);typeof s?.decimals=="number"&&h.decimals!==s.decimals&&this.log(`Decimals mismatch: requirements say ${s.decimals}, mint says ${h.decimals}`);let y=await(0,U.getAssociatedTokenAddress)(g,i,!1,m),S=await(0,U.getAssociatedTokenAddress)(g,w,!0,m);if(!await a.getAccountInfo(y,"confirmed"))throw new Error(`No token account found for ${l}. Please ensure you have USDC in your wallet.`);if(!await a.getAccountInfo(S,"confirmed"))throw new Error(`Seller token account not found. The seller (${c}) must have a USDC account.`);let J=BigInt(p);u.push((0,U.createTransferCheckedInstruction)(y,g,S,i,J,h.decimals,[],m));let{blockhash:F}=await a.getLatestBlockhash("confirmed"),ne=new k.TransactionMessage({payerKey:f,recentBlockhash:F,instructions:u}).compileToV0Message(),$=new k.VersionedTransaction(ne),b=await t.signTransaction($);return this.log("Transaction signed successfully"),{serialized:Buffer.from(b.serialize()).toString("base64"),settlementProbe:{kind:"solana",sourceAta:y.toBase58(),destinationAta:S.toBase58(),asset:l,amount:p,blockhash:F}}}async confirmSettlement(e,t){if(e.kind!=="solana")throw new Error(`SolanaAdapter.confirmSettlement cannot handle probe kind "${e.kind}"`);let r=new k.Connection(t,"confirmed"),o=new k.PublicKey(e.destinationAta),a=await r.getSignaturesForAddress(o,{limit:25});if(a.length===0)return{settled:!1};let i=BigInt(e.amount);for(let c of a){if(c.err)continue;let l=await r.getTransaction(c.signature,{commitment:"confirmed",maxSupportedTransactionVersion:0});if(!l?.meta)continue;let s=l.transaction.message.getAccountKeys().keySegments().flat(),p=l.meta.preTokenBalances??[],f=l.meta.postTokenBalances??[];for(let g of f){if(g.mint!==e.asset)continue;let w=s[g.accountIndex];if(!w||!w.equals(o))continue;let u=p.find(h=>h.accountIndex===g.accountIndex),A=BigInt(u?.uiTokenAmount.amount??"0");if(BigInt(g.uiTokenAmount.amount??"0")-A===i)return{settled:!0,txSignature:c.signature}}}return{settled:!1}}};function L(n){return new Ge(n)}var Qt={PermitWitnessTransferFrom:[{name:"permitted",type:"TokenPermissions"},{name:"spender",type:"address"},{name:"nonce",type:"uint256"},{name:"deadline",type:"uint256"},{name:"witness",type:"Witness"}],TokenPermissions:[{name:"token",type:"address"},{name:"amount",type:"uint256"}],Witness:[{name:"to",type:"address"},{name:"validAfter",type:"uint256"}]},bt=BigInt("0xffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff");function le(n){if(!n||typeof n!="object")return!1;let e=n;return"address"in e&&typeof e.address=="string"&&e.address.startsWith("0x")}var Qe=class{name="EVM";networks=[ke,j,Xe,Be,Ce,_e,Ie,Ne,Oe,Ue];config;log;constructor(e={}){this.config=e,this.log=e.verbose?console.log.bind(console,"[x402:evm]"):()=>{}}canHandle(e){return!!(this.networks.includes(e)||e==="base"||e==="bsc"||e==="ethereum"||e==="arbitrum"||e==="polygon"||e==="optimism"||e==="avalanche"||e==="skale-base"||e==="skale-base-sepolia"||e.startsWith("eip155:"))}getDefaultRpcUrl(e){return this.config.rpcUrls?.[e]?this.config.rpcUrls[e]:D[e]?D[e]:e==="base"?D[j]:e==="bsc"?D[ke]:e==="ethereum"?D[Be]:e==="arbitrum"?D[Ce]:e==="polygon"?D[_e]:e==="optimism"?D[Ie]:e==="avalanche"?D[Ne]:e==="skale-base"?D[Oe]:e==="skale-base-sepolia"?D[Ue]:D[j]}getAddress(e){return le(e)?e.address:null}isConnected(e){return le(e)?!!e.address:!1}getChainId(e){if($e[e])return $e[e];if(e.startsWith("eip155:")){let t=e.split(":")[1];return parseInt(t,10)}return e==="base"?8453:e==="bsc"?56:e==="ethereum"?1:e==="arbitrum"?42161:8453}async getBalance(e,t,r){if(!le(t)||!t.address)return 0;let o=r||this.getDefaultRpcUrl(e.network);try{let a=this.encodeBalanceOf(t.address),i=await fetch(o,{method:"POST",headers:{"Content-Type":"application/json"},body:JSON.stringify({jsonrpc:"2.0",id:1,method:"eth_call",params:[{to:e.asset,data:a},"latest"]})});if(!i.ok)throw new Error(`RPC request failed: ${i.status}`);let c=await i.json();if(c.error)throw new Error(`RPC error: ${JSON.stringify(c.error)}`);if(!c.result||c.result==="0x")return 0;let l=BigInt(c.result),s=e.extra?.decimals??6;return Number(l)/Math.pow(10,s)}catch(a){throw a}}encodeBalanceOf(e){let t="0x70a08231",r=e.slice(2).toLowerCase().padStart(64,"0");return t+r}async confirmSettlement(e,t){if(e.kind==="eip3009"){let r="0xe94a0102",o=e.from.slice(2).toLowerCase().padStart(64,"0"),a=e.nonce.slice(2).toLowerCase().padStart(64,"0"),i=r+o+a,c=await this.ethCall(t,e.asset,i);return{settled:BigInt(c)!==0n}}if(e.kind==="permit2"){let r="0x4fe02b44",o=BigInt(e.nonce),a=o>>8n,i=o&0xffn,c=e.from.slice(2).toLowerCase().padStart(64,"0"),l=a.toString(16).padStart(64,"0"),s=r+c+l,p=await this.ethCall(t,ee,s);return{settled:(BigInt(p)>>i&1n)===1n}}throw new Error(`EvmAdapter.confirmSettlement cannot handle probe kind "${e.kind}"`)}async ethCall(e,t,r){let o=await fetch(e,{method:"POST",headers:{"Content-Type":"application/json"},body:JSON.stringify({jsonrpc:"2.0",id:1,method:"eth_call",params:[{to:t,data:r},"latest"]})});if(!o.ok)throw new Error(`RPC request failed: ${o.status}`);let a=await o.json();if(a.error)throw new Error(`RPC error: ${JSON.stringify(a.error)}`);if(!a.result||a.result==="0x")throw new Error("RPC returned an empty result");return a.result}async buildTransaction(e,t,r){if(!le(t))throw new Error("Invalid EVM wallet");if(!t.address)throw new Error("Wallet not connected");if(e.scheme==="exact-approval")return this.buildApprovalTransaction(e,t,r);if(e.extra?.assetTransferMethod==="permit2")return this.buildPermit2Transaction(e,t,r);let{payTo:o,asset:a,extra:i}=e,c=e.amount??e.maxAmountRequired;if(!c)throw new Error("Missing amount in payment requirements");this.log("Building EVM transaction:",{from:t.address,to:o,amount:c,asset:a,network:e.network});let l=this.getChainId(e.network),s={name:i?.name??"USD Coin",version:i?.version??"2",chainId:BigInt(l),verifyingContract:a},p={TransferWithAuthorization:[{name:"from",type:"address"},{name:"to",type:"address"},{name:"value",type:"uint256"},{name:"validAfter",type:"uint256"},{name:"validBefore",type:"uint256"},{name:"nonce",type:"bytes32"}]},f=new Uint8Array(32);(globalThis.crypto??(await import("crypto")).webcrypto).getRandomValues(f);let g="0x"+[...f].map(y=>y.toString(16).padStart(2,"0")).join(""),w=Math.floor(Date.now()/1e3),u={from:t.address,to:o,value:c,validAfter:String(w-600),validBefore:String(w+(e.maxTimeoutSeconds||60)),nonce:g},A={from:t.address,to:o,value:BigInt(c),validAfter:BigInt(w-600),validBefore:BigInt(w+(e.maxTimeoutSeconds||60)),nonce:g};if(!t.signTypedData)throw new Error("Wallet does not support signTypedData (EIP-712)");let m=await t.signTypedData({domain:s,types:p,primaryType:"TransferWithAuthorization",message:A});return this.log("EIP-712 signature obtained"),{serialized:JSON.stringify({authorization:u,signature:m}),signature:m,settlementProbe:{kind:"eip3009",from:t.address,nonce:g,asset:a,chainId:l}}}async buildApprovalTransaction(e,t,r){let{payTo:o,asset:a,extra:i}=e,c=e.amount??e.maxAmountRequired;if(!c)throw new Error("Missing amount in payment requirements");let l=i?.facilitatorContract;if(!l)throw new Error("exact-approval scheme requires extra.facilitatorContract from the facilitator. The /supported endpoint should provide this.");if(!t.signTypedData)throw new Error("Wallet does not support signTypedData (EIP-712)");this.log("Building approval-based transaction:",{from:t.address,to:o,amount:c,asset:a,network:e.network,facilitatorContract:l});let s=r||this.getDefaultRpcUrl(e.network),p=i?.fee??"0",f=BigInt(c)+BigInt(p),g=await this.readAllowance(s,a,t.address,l);if(g<f){if(!t.sendTransaction)throw new Error("BSC payments require a wallet that supports sendTransaction for the one-time token approval. Use createEvmKeypairWallet() or a browser wallet with transaction support.");let $=this.calculateApprovalAmount(c,p,i?.approvalStrategy);this.log(`Approving ${$} for ${l} (current allowance: ${g})`);let b=await t.sendTransaction({to:a,data:this.encodeApprove(l,$),value:0n});this.log(`Approval tx sent: ${b}`),await this.waitForReceipt(s,b),this.log("Approval confirmed")}else this.log("Sufficient allowance, skipping approval");let w=new Uint8Array(16);(globalThis.crypto??(await import("crypto")).webcrypto).getRandomValues(w);let u=[...w].reduce(($,b)=>$*256n+BigInt(b),0n).toString(),A=new Uint8Array(32);(globalThis.crypto??(await import("crypto")).webcrypto).getRandomValues(A);let m="0x"+[...A].map($=>$.toString(16).padStart(2,"0")).join(""),y=Math.floor(Date.now()/1e3)+(e.maxTimeoutSeconds||300),S=i?.eip712Domain,P=S?{name:S.name,version:S.version,chainId:BigInt(S.chainId),verifyingContract:S.verifyingContract}:{name:"DexterBSCFacilitator",version:"1",chainId:BigInt(this.getChainId(e.network)),verifyingContract:l},O=i?.eip712Types??{Payment:[{name:"from",type:"address"},{name:"to",type:"address"},{name:"token",type:"address"},{name:"amount",type:"uint256"},{name:"fee",type:"uint256"},{name:"nonce",type:"uint256"},{name:"deadline",type:"uint256"},{name:"paymentId",type:"bytes32"}]},J={from:t.address,to:o,token:a,amount:BigInt(c),fee:BigInt(p),nonce:BigInt(u),deadline:BigInt(y),paymentId:m},F=await t.signTypedData({domain:P,types:O,primaryType:"Payment",message:J});this.log("EIP-712 Payment signature obtained");let ne={from:t.address,to:o,token:a,amount:c,fee:p,nonce:u,deadline:y,paymentId:m,signature:F};return{serialized:JSON.stringify(ne),signature:F}}async buildPermit2Transaction(e,t,r){let{payTo:o,asset:a}=e,i=e.amount??e.maxAmountRequired;if(!i)throw new Error("Missing amount in payment requirements");if(!t.signTypedData)throw new Error("Wallet does not support signTypedData (EIP-712)");this.log("Building Permit2 transaction:",{from:t.address,to:o,amount:i,asset:a,network:e.network});let c=r||this.getDefaultRpcUrl(e.network),l=await this.readAllowance(c,a,t.address,ee),s;if(l<BigInt(i)){let P=this.encodeApprove(ee,bt);if(t.signTransaction){this.log(`Signing Permit2 approval for relay (current allowance: ${l})`);let O=this.getChainId(e.network),J=await this.readGasPrice(c),F=await this.readNonce(c,t.address),ne=await t.signTransaction({to:a,data:P,chainId:O,gas:50000n,gasPrice:J,nonce:F});s={erc20ApprovalGasSponsoring:{info:{from:t.address,asset:a,spender:ee,amount:bt.toString(),signedTransaction:ne,version:"1"}}},this.log("Permit2 approval signed for facilitator relay")}else if(t.sendTransaction){this.log(`Approving Permit2 directly (current allowance: ${l})`);let O=await t.sendTransaction({to:a,data:P,value:0n});this.log(`Permit2 approval tx sent: ${O}`),await this.waitForReceipt(c,O),this.log("Permit2 approval confirmed")}else throw new Error("Permit2 payments require a wallet that supports signTransaction or sendTransaction for the one-time Permit2 approval. Use createEvmKeypairWallet() or a browser wallet with transaction support.")}else this.log("Sufficient Permit2 allowance, skipping approval");let p=new Uint8Array(32);(globalThis.crypto??(await import("crypto")).webcrypto).getRandomValues(p);let f=[...p].reduce((P,O)=>P*256n+BigInt(O),0n),g=Math.floor(Date.now()/1e3),w=g-600,u=g+(e.maxTimeoutSeconds||300),A=this.getChainId(e.network),m={name:"Permit2",chainId:BigInt(A),verifyingContract:ee},h={permitted:{token:a,amount:BigInt(i)},spender:Me,nonce:f,deadline:BigInt(u),witness:{to:o,validAfter:BigInt(w)}},y=await t.signTypedData({domain:m,types:Qt,primaryType:"PermitWitnessTransferFrom",message:h});this.log("Permit2 PermitWitnessTransferFrom signature obtained");let S={signature:y,permit2Authorization:{from:t.address,permitted:{token:a,amount:i},spender:Me,nonce:f.toString(),deadline:String(u),witness:{to:o,validAfter:String(w)}}};return{serialized:JSON.stringify(S),signature:y,extensions:s,settlementProbe:{kind:"permit2",from:t.address,nonce:f.toString(),chainId:A}}}async readAllowance(e,t,r,o){let a="0xdd62ed3e",i=r.slice(2).toLowerCase().padStart(64,"0"),c=o.slice(2).toLowerCase().padStart(64,"0"),l=a+i+c;try{let p=await(await fetch(e,{method:"POST",headers:{"Content-Type":"application/json"},body:JSON.stringify({jsonrpc:"2.0",id:1,method:"eth_call",params:[{to:t,data:l},"latest"]})})).json();return p.error||!p.result||p.result==="0x"?0n:BigInt(p.result)}catch{return 0n}}encodeApprove(e,t){let r="0x095ea7b3",o=e.slice(2).toLowerCase().padStart(64,"0"),a=t.toString(16).padStart(64,"0");return r+o+a}async waitForReceipt(e,t,r=3e4){let o=Date.now();for(;Date.now()-o<r;){try{let i=await(await fetch(e,{method:"POST",headers:{"Content-Type":"application/json"},body:JSON.stringify({jsonrpc:"2.0",id:1,method:"eth_getTransactionReceipt",params:[t]})})).json();if(i.result){if(i.result.status==="0x0")throw new Error(`Approval transaction reverted: ${t}`);return}}catch(a){if(a instanceof Error&&a.message.includes("reverted"))throw a}await new Promise(a=>setTimeout(a,2e3))}throw new Error(`Approval transaction receipt timeout after ${r}ms: ${t}`)}async readGasPrice(e){try{let r=await(await fetch(e,{method:"POST",headers:{"Content-Type":"application/json"},body:JSON.stringify({jsonrpc:"2.0",id:1,method:"eth_gasPrice",params:[]})})).json();return r.result?BigInt(r.result):50000000n}catch{return 50000000n}}async readNonce(e,t){try{let o=await(await fetch(e,{method:"POST",headers:{"Content-Type":"application/json"},body:JSON.stringify({jsonrpc:"2.0",id:1,method:"eth_getTransactionCount",params:[t,"latest"]})})).json();return o.result?parseInt(o.result,16):0}catch{return 0}}calculateApprovalAmount(e,t,r){let o=BigInt(e)+BigInt(t);if(!r||r.mode==="exact")return o;let a=BigInt(r.defaultMultiple??10),i=o*a;if(r.maxCapUsd){let c=this.inferDecimals(e),l=BigInt(Math.floor(r.maxCapUsd*Math.pow(10,c)));if(i>l)return l}if(r.exactAboveUsd){let c=this.inferDecimals(e),l=BigInt(Math.floor(r.exactAboveUsd*Math.pow(10,c)));if(BigInt(e)>l)return o}return i}inferDecimals(e){return e.length>12?18:6}};function te(n){return new Qe(n)}function pt(n){if(n===De||n===St)return!0;let e=n.toLowerCase();for(let t of Object.values(ze))if(t.toLowerCase()===e)return!0;for(let t of Object.keys(Ye))if(t.toLowerCase()===e)return!0;return!1}function Zt(n){return{[Pe]:"Solana",[He]:"Solana Devnet",[je]:"Solana Testnet",solana:"Solana","solana-devnet":"Solana Devnet","solana-testnet":"Solana Testnet",[se]:"Base",[fe]:"Base Sepolia",[xe]:"Ethereum",[ge]:"Arbitrum",[ye]:"Polygon",[he]:"Optimism",[Ae]:"Avalanche",[Se]:"BSC",[we]:"SKALE Base",[be]:"SKALE Base Sepolia",base:"Base","base-sepolia":"Base Sepolia",ethereum:"Ethereum",arbitrum:"Arbitrum",polygon:"Polygon",optimism:"Optimism",avalanche:"Avalanche",bsc:"BSC","skale-base":"SKALE Base","skale-base-sepolia":"SKALE Base Sepolia"}[n]||n}function xt(n,e){let t=Zt(n);return t===n?e:t}async function en(n,e){if(typeof n=="string")return[n,e];if(n instanceof URL)return[n.href,e];let t=n,r=new Headers(t.headers);e?.headers&&new Headers(e.headers).forEach((i,c)=>r.set(c,i));let o={method:e?.method??t.method,headers:r,signal:e?.signal??t.signal,redirect:e?.redirect??t.redirect,credentials:e?.credentials??t.credentials},a=(o.method??"GET").toUpperCase();return e&&"body"in e?o.body=e.body:a!=="GET"&&a!=="HEAD"&&t.body&&(o.body=await t.arrayBuffer()),[t.url,o]}var Et=new WeakMap;function Ze(n){return Et.get(n)}function Ee(n){let{adapters:e=[L({verbose:n.verbose}),te({verbose:n.verbose})],wallets:t,wallet:r,preferredNetwork:o,rpcUrls:a={},maxAmountAtomic:i,fetch:c=globalThis.fetch,verbose:l=!1,accessPass:s,onPaymentRequired:p,onPaymentDispatched:f,maxRetries:g=0,retryDelayMs:w=500}=n,u=l?console.log.bind(console,"[x402]"):()=>{};async function A(b,T){let R;for(let x=0;x<=g;x++)try{let v=await c(b,T);if(v.status>=502&&v.status<=504&&x<g){u(`Retry ${x+1}/${g}: server returned ${v.status}`),await new Promise(_=>setTimeout(_,w*Math.pow(2,x)));continue}return v}catch(v){R=v,x<g&&(u(`Retry ${x+1}/${g}: ${v instanceof Error?v.message:"network error"}`),await new Promise(_=>setTimeout(_,w*Math.pow(2,x))))}throw R}let m=new Map;function h(b){try{let T=new URL(b).host,R=m.get(T);if(R&&R.expiresAt>Date.now()/1e3+10)return R.jwt;R&&m.delete(T)}catch{}return null}function y(b,T){try{let R=new URL(b).host,x=T.split(".");if(x.length===3){let v=JSON.parse(atob(x[1].replace(/-/g,"+").replace(/_/g,"/"))),_=Math.floor(Date.now()/1e3),I=_+86400,K=Math.min(typeof v.exp=="number"?v.exp:_,I);m.set(R,{jwt:T,expiresAt:K}),u("Access pass cached for",R,"| expires:",new Date(K*1e3).toISOString())}}catch{u("Failed to cache access pass")}}let S=t||{};r&&!S.solana&&ce(r)&&(S.solana=r),r&&!S.evm&&le(r)&&(S.evm=r);function P(b){let T=[];for(let R of b){let x=R.scheme??"exact";if(x!=="exact"&&x!=="exact-approval")continue;let v=e.find(I=>I.canHandle(R.network));if(!v)continue;let _;v.name==="Solana"?_=S.solana:v.name==="EVM"&&(_=S.evm),_&&v.isConnected(_)&&T.push({accept:R,adapter:v,wallet:_})}if(T.length===0)return null;if(o){let R=T.find(x=>x.accept.network===o);if(R)return R}return T[0]}function O(b,T){return xt(b,T)}function J(b,T){return a[b]||T.getDefaultRpcUrl(b)}async function F(b,T,R,x,v){let _="";if(s?.preferTier&&x.tiers){let d=x.tiers.find(E=>E.id===s.preferTier);if(d){if(s.maxSpend&&parseFloat(d.price)>parseFloat(s.maxSpend))throw new C("access_pass_exceeds_max_spend",`Access pass tier "${d.id}" costs $${d.price}, exceeds max spend $${s.maxSpend}`);_=`tier=${d.id}`}}else if(s?.preferDuration&&x.ratePerHour)_=`duration=${s.preferDuration}`;else if(x.tiers&&x.tiers.length>0){let d=x.tiers[0];if(s?.maxSpend&&parseFloat(d.price)>parseFloat(s.maxSpend))throw new C("access_pass_exceeds_max_spend",`Cheapest access pass costs $${d.price}, exceeds max spend $${s?.maxSpend}`);_=`tier=${d.id}`}let I=_?v.includes("?")?`${v}&${_}`:`${v}?${_}`:v;u("Purchasing access pass:",_||"default tier");let K=R.headers.get("PAYMENT-REQUIRED");if(!K)return null;let M;try{M=JSON.parse(atob(K))}catch{return null}let B=P(M.accepts);if(!B)return null;let{accept:N,adapter:q,wallet:pe}=B;if(q.name==="Solana"&&!N.extra?.feePayer)return null;let z=N.extra?.decimals??(pt(N.asset)?6:void 0);if(typeof z!="number")return null;let Te=N.amount??N.maxAmountRequired;if(!Te)return null;let Y=J(N.network,q);try{let d=await q.getBalance(N,pe,Y),E=Number(Te)/Math.pow(10,z);if(d<E){let ct=O(N.network,q.name);throw new C("insufficient_balance",`Insufficient balance for access pass on ${ct}. Have $${d.toFixed(4)}, need $${E.toFixed(4)}`)}}catch(d){if(d instanceof C)throw d}let G=await q.buildTransaction(N,pe,Y),me;q.name==="EVM"?me=JSON.parse(G.serialized):me={transaction:G.serialized};let re=typeof b=="string"?b:b instanceof URL?b.href:b.url,de=M.resource;if(typeof M.resource=="string")try{let d=new URL(M.resource,re);["http:","https:"].includes(d.protocol)&&(de=d.toString())}catch{}else if(M.resource&&typeof M.resource=="object"&&"url"in M.resource){let d=M.resource;try{let E=new URL(d.url,re);["http:","https:"].includes(E.protocol)&&(de={...d,url:E.toString()})}catch{}}let Fe={x402Version:N.x402Version??2,resource:de,accepted:N,payload:me};G.extensions&&(Fe.extensions=G.extensions);let Q=btoa(JSON.stringify(Fe)),oe=await c(I,{...T,method:"POST",headers:{...T?.headers||{},"Content-Type":"application/json","PAYMENT-SIGNATURE":Q}});if(!oe.ok)return u("Pass purchase failed:",oe.status),null;let W=oe.headers.get("ACCESS-PASS");return W&&(y(v,W),u("Access pass purchased and cached")),oe}async function ne(b,T){let R=b;if(u("Making request:",R),s){let d=h(R);if(d){u("Using cached access pass");let E=await c(b,{...T,headers:{...T?.headers||{},Authorization:`Bearer ${d}`}});if(E.status!==401&&E.status!==402)return E;u("Cached pass rejected (status",E.status,"), purchasing new pass");try{m.delete(new URL(R).host)}catch{}}}let x=await A(b,T);if(x.status!==402)return x;u("Received 402 Payment Required");let v=x.headers.get("X-ACCESS-PASS-TIERS");if(s&&v){u("Server offers access passes, purchasing...");try{let d=JSON.parse(atob(v)),E=await F(b,T,x,d,R);if(E)return E}catch(d){u("Access pass purchase failed, falling back to per-request payment:",d)}}let _=x.headers.get("PAYMENT-REQUIRED");if(!_)throw new C("missing_payment_required_header","Server returned 402 but no PAYMENT-REQUIRED header");let I;try{let d=atob(_);I=JSON.parse(d)}catch{throw new C("invalid_payment_required","Failed to decode PAYMENT-REQUIRED header")}u("Payment requirements:",I);let K=x.headers.get("X-Quote-Hash");K&&u("Quote hash received:",K);let M=P(I.accepts);if(!M){let d=I.accepts.map(E=>E.network).join(", ");throw new C("no_matching_payment_option",`No connected wallet for any available network: ${d}`)}let{accept:B,adapter:N,wallet:q}=M;if(u(`Using ${N.name} for ${B.network}`),N.name==="Solana"&&!B.extra?.feePayer)throw new C("missing_fee_payer","Solana payment option missing feePayer in extra");let pe=B.extra?.decimals??(pt(B.asset)?6:void 0);if(typeof pe!="number")throw new C("missing_decimals","Payment option missing decimals - provide in extra or use a known stablecoin");let z=B.amount??B.maxAmountRequired;if(!z)throw new C("missing_amount","Payment option missing amount");if(i&&BigInt(z)>BigInt(i))throw new C("amount_exceeds_max",`Payment amount ${z} exceeds maximum ${i}`);let Te=J(B.network,N);u("Checking balance...");try{let d=await N.getBalance(B,q,Te),E=Number(z)/Math.pow(10,pe);if(d<E){let ct=O(B.network,N.name);throw new C("insufficient_balance",`Insufficient balance on ${ct}. Have $${d.toFixed(4)}, need $${E.toFixed(4)}`)}u(`Balance OK: $${d.toFixed(4)} >= $${E.toFixed(4)}`)}catch(d){if(d instanceof C)throw d;u("Balance check failed (RPC error), proceeding with transaction attempt")}if(p&&!await p(B))throw new C("payment_rejected","Payment rejected by onPaymentRequired callback");u("Building transaction...");let Y=await N.buildTransaction(B,q,Te);u("Transaction signed");let G;N.name==="EVM"?G=JSON.parse(Y.serialized):G={transaction:Y.serialized};let me=b,re=I.resource;if(typeof I.resource=="string")try{let d=new URL(I.resource,me).toString();d!==I.resource&&u("Resolved relative resource URL:",I.resource,"\u2192",d),re=d}catch{re=I.resource}else if(I.resource&&typeof I.resource=="object"&&"url"in I.resource){let d=I.resource;try{let E=new URL(d.url,me).toString();E!==d.url&&(u("Resolved relative resource URL:",d.url,"\u2192",E),re={...d,url:E})}catch{}}let de={x402Version:B.x402Version??2,resource:re,accepted:B,payload:G};Y.extensions&&(de.extensions=Y.extensions);let Fe=btoa(JSON.stringify(de));if(f)try{f(B,Y.settlementProbe)}catch{}u("Retrying request with payment...");let Q=await A(b,{...T,headers:{...T?.headers||{},"PAYMENT-SIGNATURE":Fe,...K?{"X-Quote-Hash":K}:{}}});if(u("Retry response status:",Q.status),Q.status===402){let d="unknown";try{let E=await Q.clone().json();d=String(E.error||E.message||JSON.stringify(E)),u("Rejection reason:",d)}catch{}throw new C("payment_rejected",`Payment was rejected by the server: ${d}`)}let oe=Q.headers.get("PAYMENT-RESPONSE"),W;if(oe)try{W=JSON.parse(atob(oe))}catch{}return W??={},W.amountAtomic=z,W.assetDecimals=pe,Et.set(Q,W),W.extensions&&u("Settlement extensions:",Object.keys(W.extensions).join(", ")),Q}async function $(b,T){let[R,x]=await en(b,T);return ne(R,x)}return{fetch:$}}var rn=require("@solana/web3.js"),et=require("@noble/hashes/utils");var tn=Z(require("tweetnacl"),1);var Ke=require("@dexterai/vault/messages");var nn=require("@noble/hashes/sha256");function Tt(n){return Buffer.from(JSON.stringify({payload:n.payload,sessionPublicKey:(0,et.bytesToHex)(n.sessionPublicKey),sessionRegistration:(0,et.bytesToHex)(n.sessionRegistration),sessionSignature:(0,et.bytesToHex)(n.sessionSignature)}),"utf8").toString("base64")}function X(n){if(n instanceof Error){if(n.message&&n.message.length>0)return n.message;if(n.name&&n.name.length>0)return n.name}let e=String(n);return e.length>0?e:"unknown error"}async function We(n){let e="";try{e=(await n.clone().text()).slice(0,600)}catch{}let t=e.toLowerCase(),r=t.includes("settle")||t.includes("facilitator"),o=e;try{let a=JSON.parse(e),i=[a.error,a.detail,a.message].filter(c=>typeof c=="string"&&c.length>0);i.length>0&&(o=i.join(" \u2014 "))}catch{}return o||(o=`HTTP ${n.status}`),{reason:r?"settlement_failed":"merchant_rejected",detail:`merchant HTTP ${n.status}: ${o}`}}var tt="Payment authorization was sent, but the merchant did not respond within the timeout. ",nt=" Do not retry without checking \u2014 inspect the funding wallet for a transfer to the merchant before attempting payment again.";async function rt(n,e,t){if(!n)return{confirmed:!1,detail:tt+"This payment scheme has no on-chain confirmation check, so the SDK cannot verify whether it settled."+nt};try{if(n.kind==="solana"){let i=L(),c=t??i.getDefaultRpcUrl(e.caip2);if(!i.confirmSettlement)return Rt();let l=await i.confirmSettlement(n,c);return l.settled?{confirmed:!0,txSignature:l.txSignature}:Pt()}let r=te(),o=r.getDefaultRpcUrl(e.caip2);if(!r.confirmSettlement)return Rt();let a=await r.confirmSettlement(n,o);return a.settled?{confirmed:!0,txSignature:a.txSignature}:Pt()}catch(r){return{confirmed:!1,detail:tt+`On-chain confirmation could not be completed (${X(r)}).`+nt}}}function Pt(){return{confirmed:!1,detail:tt+"On-chain confirmation found no matching settlement yet \u2014 the payment may still be pending, or may not have settled."+nt}}function Rt(){return{confirmed:!1,detail:tt+"The chain adapter does not support on-chain confirmation."+nt}}var on=new Set(["exact","exact-approval"]);async function an(n,e,t,r){let o;try{o=await r.signNextVoucher(t.amount)}catch{return null}let a=new Headers(e.headers??void 0);a.set("X-Tab-Voucher",Tt(o));let i={method:e.method??"GET",headers:a};e.signal&&(i.signal=e.signal),typeof e.body=="string"&&(i.body=e.body);let c;try{c=await fetch(n,i)}catch(l){return{ok:!1,reason:"error",detail:l?.message??String(l)}}return c.status===402?(r.rollbackVoucher?.call(r,o),null):c.ok?{ok:!0,paid:!0,response:c,amountPaid:t.amount,network:t.network}:{ok:!1,...await We(c)}}function vt(n){let e=n.replace(/-/g,"+").replace(/_/g,"/"),t=e+"=".repeat((4-(e.length%4||4))%4);return JSON.parse(Buffer.from(t,"base64").toString("utf8"))}function sn(n){let e=[];for(let t of n){if(!t||typeof t!="object")continue;let r=t,o=ae(String(r.network??""));o&&e.push({scheme:String(r.scheme??"exact"),network:o,amount:String(r.amount??r.maxAmountRequired??"0"),asset:String(r.asset??""),payTo:String(r.payTo??""),maxTimeoutSeconds:typeof r.maxTimeoutSeconds=="number"?r.maxTimeoutSeconds:void 0,extra:r.extra&&typeof r.extra=="object"?r.extra:void 0})}return e}var Ct={version:2,async parseChallenge(n){let e=n.headers.get("payment-required");if(!e)return null;let t;try{t=vt(e)}catch{return null}let r=Array.isArray(t.accepts)?t.accepts:[];return r.length===0?null:{x402Version:2,options:sn(r),resourceUrl:t.resource&&typeof t.resource=="object"?String(t.resource.url??""):void 0}},async pay(n,e,t,r,o){if(o.tab){let h=t.options.find(y=>y.scheme==="tab"&&y.network.family==="svm"&&y.payTo===o.tab.counterparty);if(h){let y=await an(n,e,h,o.tab);if(y)return y}}let a=t.options.filter(h=>on.has(h.scheme));if(a.length===0)return{ok:!1,reason:"no_payment_options",detail:`no generically payable scheme offered (got: ${t.options.map(h=>h.scheme).join(", ")})`};let i=a.find(h=>h.network.family==="evm"?!!r.evm:h.network.family==="svm"?!!r.solana:!1);if(!i)return{ok:!1,reason:"unsupported_network"};let c=o.timeoutMs??15e3,l=o.responseTimeoutMs??12e4,s=new AbortController,p=setTimeout(()=>s.abort(),c),f=!1,g,w=(h,y)=>{f=!0,g=y,clearTimeout(p),p=setTimeout(()=>s.abort(),l)},u=Ee({wallets:r,preferredNetwork:i.network.caip2,maxAmountAtomic:o.maxAmountAtomic,fetch:globalThis.fetch,onPaymentDispatched:w}),A=e.signal?AbortSignal.any([e.signal,s.signal]):s.signal,m={method:e.method??"GET",headers:e.headers,signal:A};typeof e.body=="string"&&(m.body=e.body);try{let h=await u.fetch(n,m);if(clearTimeout(p),!h.ok)return{ok:!1,...await We(h)};let y,S=h.headers.get("PAYMENT-RESPONSE");if(S)try{let P=vt(S);P&&typeof P.transaction=="string"&&(y=P.transaction)}catch{}return{ok:!0,paid:!0,response:h,amountPaid:i.amount,network:i.network,txSignature:y}}catch(h){clearTimeout(p);let y=h;if(y?.name==="AbortError"){if(!f)return{ok:!1,reason:"timeout"};let S=await rt(g,i.network,o.solanaRpcUrl);return S.confirmed?{ok:!0,paid:!0,response:void 0,amountPaid:i.amount,network:i.network,txSignature:S.txSignature}:{ok:!1,reason:"payment_unconfirmed",detail:S.detail}}return{ok:!1,reason:"error",detail:y?.message??String(h)}}}};var _t=require("viem");var cn={TransferWithAuthorization:[{name:"from",type:"address"},{name:"to",type:"address"},{name:"value",type:"uint256"},{name:"validAfter",type:"uint256"},{name:"validBefore",type:"uint256"},{name:"nonce",type:"bytes32"}]};async function ln(){let n=globalThis.crypto??(await import("crypto")).webcrypto,e=new Uint8Array(32);return n.getRandomValues(e),"0x"+Array.from(e,t=>t.toString(16).padStart(2,"0")).join("")}async function un(n,e,t){if(typeof n.signTypedData!="function")throw new Error("EVM wallet does not support signTypedData");let r=Math.floor(Date.now()/1e3),o=String(r-600),a=String(r+(e.maxTimeoutSeconds??60)),i={from:n.address,to:e.payTo,value:e.amount,validAfter:o,validBefore:a,nonce:await ln()},c=$e[e.network.caip2];if(c===void 0)throw new Error(`unknown chain id for network ${e.network.caip2}`);let l=e.extra,s=await n.signTypedData({domain:{name:l.name,version:l.version,chainId:c,verifyingContract:(0,_t.getAddress)(e.asset)},types:cn,primaryType:"TransferWithAuthorization",message:i});return{payment:{x402Version:1,scheme:e.scheme,network:t,payload:{signature:s,authorization:i}},settlementProbe:{kind:"eip3009",from:i.from,nonce:i.nonce,asset:e.asset,chainId:c}}}async function Le(n,e,t){try{let r;for(let o of n.options){let a=o.network.family==="evm"&&!!e.evm||o.network.family==="svm"&&!!e.solana;if(o.scheme!=="exact"){a&&(r=o.scheme);continue}if(o.network.family==="evm"&&e.evm){let i=await e.evm;return await pn(o,i,t)}if(o.network.family==="svm"&&e.solana){let i=await e.solana;return await mn(o,i,t)}}return r!==void 0?{ok:!1,reason:"merchant_rejected",detail:`v1 supports only the 'exact' scheme, got '${r}'`}:{ok:!1,reason:"unsupported_network"}}catch(r){return{ok:!1,reason:"error",detail:X(r)}}}async function pn(n,e,t){if(t.maxAmountAtomic!==void 0&&BigInt(n.amount)>BigInt(t.maxAmountAtomic))return{ok:!1,reason:"budget_exceeded"};let r=n.extra??{},o=r.name,a=r.version;if(typeof o!="string"||o.length===0||typeof a!="string"||a.length===0)return{ok:!1,reason:"merchant_rejected",detail:"v1 challenge missing exact-scheme EIP-712 domain (extra.name / extra.version)"};let i=n.network.bare,{payment:c,settlementProbe:l}=await un(e,n,i);return{ok:!0,headerValue:Buffer.from(JSON.stringify(c),"utf8").toString("base64"),option:n,settlementProbe:l}}async function mn(n,e,t){if(t.maxAmountAtomic!==void 0&&BigInt(n.amount)>BigInt(t.maxAmountAtomic))return{ok:!1,reason:"budget_exceeded"};if(n.scheme!=="exact")return{ok:!1,reason:"merchant_rejected",detail:`v1 SVM supports only the 'exact' scheme, got '${n.scheme}'`};let r=n.extra??{};if(typeof r.feePayer!="string"||r.feePayer.length===0)return{ok:!1,reason:"merchant_rejected",detail:"v1 SVM challenge missing extra.feePayer (required as the transaction fee payer)"};let o=n.network.bare,a={x402Version:1,scheme:n.scheme,network:o,asset:n.asset,payTo:n.payTo,amount:n.amount,maxAmountRequired:n.amount,maxTimeoutSeconds:n.maxTimeoutSeconds??60,extra:r},c=await L().buildTransaction(a,e,t.solanaRpcUrl),l={x402Version:1,scheme:n.scheme,network:o,payload:{transaction:c.serialized}};return{ok:!0,headerValue:Buffer.from(JSON.stringify(l),"utf8").toString("base64"),option:n,settlementProbe:c.settlementProbe}}function dn(n){let e=[];for(let t of n){if(!t||typeof t!="object")continue;let r=t,o=ae(String(r.network??""));o&&e.push({scheme:String(r.scheme??"exact"),network:o,amount:String(r.maxAmountRequired??r.amount??"0"),asset:String(r.asset??""),payTo:String(r.payTo??""),maxTimeoutSeconds:typeof r.maxTimeoutSeconds=="number"?r.maxTimeoutSeconds:void 0,extra:r.extra&&typeof r.extra=="object"?r.extra:void 0})}return e}var It={version:1,async parseChallenge(n){if(n.headers.get("payment-required"))return null;let e;try{e=await n.clone().json()}catch{return null}let t=Array.isArray(e.accepts)?e.accepts:[];if(t.length===0)return null;let r=dn(t);return r.length===0?null:{x402Version:1,options:r}},async pay(n,e,t,r,o){let a,i=new AbortController,c=!1,l,s;try{let p=o.timeoutMs??15e3;a=setTimeout(()=>i.abort(),p);let f=await Le(t,r,o);if(!f.ok)return{ok:!1,reason:f.reason,detail:f.detail};let g=f.headerValue,w=f.option;s=w,l=f.settlementProbe;let u=new Headers(e.headers??void 0);u.set("X-PAYMENT",g);let A=e.signal!=null?AbortSignal.any([e.signal,i.signal]):i.signal,m={method:e.method,headers:u,signal:A};typeof e.body=="string"&&(m.body=e.body),c=!0,clearTimeout(a);let h=o.responseTimeoutMs??12e4;a=setTimeout(()=>i.abort(),h);let y=await fetch(n,m);return y.ok?{ok:!0,paid:!0,response:y,amountPaid:w.amount,network:w.network,txSignature:fn(y)}:{ok:!1,...await We(y)}}catch(p){if(p instanceof Error&&p.name==="AbortError"){if(!c)return{ok:!1,reason:"timeout"};let f=await rt(l,s.network,o.solanaRpcUrl);return f.confirmed?{ok:!0,paid:!0,response:void 0,amountPaid:s.amount,network:s.network,txSignature:f.txSignature}:{ok:!1,reason:"payment_unconfirmed",detail:f.detail}}return{ok:!1,reason:"error",detail:X(p)}}finally{a!==void 0&&clearTimeout(a)}}};function fn(n){let e=n.headers.get("x-payment-response")??n.headers.get("X-PAYMENT-RESPONSE");if(e)try{let t=JSON.parse(Buffer.from(e,"base64").toString("utf8")),r=t.transaction??t.txHash??t.transactionHash;return typeof r=="string"?r:void 0}catch{return}}var Dt=Z(require("tweetnacl"),1);var V=require("@solana/web3.js"),ue=Symbol.for("x402:keypair");async function ot(n){let e;if(typeof n=="string"){let t;try{let r=await Promise.resolve().then(()=>(Ut(),Ot)),o=r.decode??r.default?.decode;if(!o)throw new Error("decode not found");t=o}catch{throw new Error('The "bs58" package is required for base58 private keys. Install it with: npm install bs58')}try{let r=t(n);e=V.Keypair.fromSecretKey(r)}catch{try{let o=JSON.parse(n);if(Array.isArray(o))e=V.Keypair.fromSecretKey(Uint8Array.from(o));else throw new Error("Invalid private key format")}catch{throw new Error("Invalid private key. Expected base58 string or JSON array of bytes.")}}}else if(Array.isArray(n))e=V.Keypair.fromSecretKey(Uint8Array.from(n));else if(n instanceof Uint8Array)e=V.Keypair.fromSecretKey(n);else throw new Error("Invalid private key type. Expected string, number[], or Uint8Array.");return{publicKey:{toBase58:()=>e.publicKey.toBase58()},signTransaction:async t=>{if(t instanceof V.VersionedTransaction)return t.sign([e]),t;if(t instanceof V.Transaction)return t.sign(e),t;throw new Error("Unknown transaction type")},[ue]:e}}function Bt(n){if(!n||typeof n!="object")return!1;let e=n;return ue in e&&e[ue]instanceof V.Keypair&&"publicKey"in e&&"signTransaction"in e}function Ve(n){let e=n.evm;if(e&&typeof e.signMessage=="function"&&typeof e.address=="string")return{address:e.address,signMessage:e.signMessage};let t=n.solana;if(t){let r=t[ue];if(r&&r.secretKey&&r.publicKey)return{publicKey:r.publicKey,signMessage:async o=>Dt.sign.detached(o,r.secretKey)}}return null}var Mt=[Ct,It];async function mt(n){for(let e of Mt)if(await e.parseChallenge(n.clone()))return e;return null}async function An(n){let e=Ve(n);if(!e)return fetch;try{return(await import("@x402/extensions/sign-in-with-x")).wrapFetchWithSIWx(fetch,e)}catch(t){return console.warn(`[x402] SIW-X unavailable \u2014 @x402/extensions failed to load; SIW-X merchants will not authenticate. ${X(t)}`),fetch}}async function dt(n,e,t,r){if(e.body!==void 0&&e.body!==null&&typeof e.body!="string")return{ok:!1,reason:"error",detail:"payAndFetch requires a string body; non-string bodies (Buffer, FormData, URLSearchParams, ReadableStream) cannot be safely re-sent on the paid retry"};let o;try{o=await(await An(t))(n,{...e})}catch(a){return{ok:!1,reason:"error",detail:X(a)}}if(o.status!==402)return{ok:!0,paid:!1,response:o};for(let a of Mt){let i=await a.parseChallenge(o.clone());if(i)return a.pay(n,e,i,t,r)}return{ok:!1,reason:"no_payment_options"}}async function at(n){let e;try{e=(await import("viem/accounts")).privateKeyToAccount}catch{throw new Error("EVM wallet support requires viem as a peer dependency. Install with: npm install viem")}let t=n.startsWith("0x")?n:`0x${n}`,r=e(t);return{address:r.address,signTypedData:o=>r.signTypedData(o),signTransaction:o=>r.signTransaction({to:o.to,data:o.data,chainId:o.chainId,gas:o.gas,gasPrice:o.gasPrice,nonce:o.nonce,type:"legacy"}),signMessage:o=>r.signMessage({message:o.message})}}function $t(n){if(!n||typeof n!="object")return!1;let e=n;return"address"in e&&typeof e.address=="string"&&e.address.startsWith("0x")&&"signTypedData"in e&&typeof e.signTypedData=="function"}function st(n){let e=Ze(n);if(e?.extensions?.["sponsored-access"])return e.extensions["sponsored-access"]}function Kt(n){let e=st(n);if(e?.recommendations?.length)return e.recommendations}async function Wt(n){let t=st(n)?.tracking?.impressionBeacon;if(!t)return!1;try{await fetch(t,{method:"GET"})}catch{}return!0}function it(n,e){let{walletPrivateKey:t,evmPrivateKey:r,preferredNetwork:o,rpcUrls:a,maxAmountAtomic:i,verbose:c,accessPass:l,onPaymentRequired:s}=e;if(!t&&!r)throw new Error("At least one wallet private key is required (walletPrivateKey or evmPrivateKey)");let p={},f=[];t&&f.push(ot(t).then(m=>{p.solana=m}).catch(m=>{console.warn(`[x402] Solana wallet init failed: ${m.message}`)})),r&&f.push(at(r).then(m=>{p.evm=m}).catch(m=>{console.warn(`[x402] EVM wallet init failed: ${m.message}`)}));let g=f.length>0?Promise.all(f):null,u=Ee({wallets:p,preferredNetwork:o,rpcUrls:a,maxAmountAtomic:i,fetch:n,verbose:c,accessPass:l,onPaymentRequired:s}),A=u.fetch.bind(u);return g?(async(m,h)=>(await g,A(m,h))):A}function Lt(n){let{budget:e,allowedDomains:t,onPaymentRequired:r,...o}=n,a=parseFloat(e.total),i=e.perRequest?parseFloat(e.perRequest):1/0,c=e.perHour?parseFloat(e.perHour):1/0;if(isNaN(a)||a<=0)throw new Error("budget.total must be a positive number");let l=[],s=0;function p(){return l.reduce((u,A)=>u+A.amount,0)}function f(){let u=Date.now()-36e5;return l.filter(A=>A.timestamp>=u).reduce((A,m)=>A+m.amount,0)}let g=it(fetch,{...o,onPaymentRequired:async u=>{let A=u.extra?.decimals??6,m=Number(u.amount)/Math.pow(10,A);if(m>i)throw new C("amount_exceeds_max",`$${m.toFixed(4)} exceeds per-request limit of $${i.toFixed(2)}`);let h=p();if(h+m>a)throw new C("amount_exceeds_max",`Budget exceeded. Spent $${h.toFixed(2)} of $${a.toFixed(2)}, payment: $${m.toFixed(4)}`);let y=f();if(y+m>c)throw new C("amount_exceeds_max",`Hourly limit ($${c.toFixed(2)}) exceeded. Spent $${y.toFixed(2)} this hour`);return s=m,r?r(u):!0}});return{fetch:(async(u,A)=>{let m=typeof u=="string"?u:u instanceof URL?u.href:u.url,h="unknown";try{h=new URL(m).hostname}catch{}if(t&&!t.some(S=>h===S||h.endsWith(`.${S}`)))throw new C("payment_rejected",`Domain "${h}" not in allowed domains`);s=0;let y=await g(u,A);if(s>0){let S="unknown",P=y.headers.get("PAYMENT-RESPONSE");if(P)try{S=JSON.parse(atob(P)).network||S}catch{}l.push({amount:s,domain:h,network:S,timestamp:Date.now()}),s=0}return y}),get spent(){return`$${p().toFixed(2)}`},get remaining(){return`$${(a-p()).toFixed(2)}`},get payments(){return l.length},get spentAmount(){return p()},get remainingAmount(){return a-p()},get ledger(){return l},get hourlySpend(){return f()},reset(){l=[]}}}var ft=require("@dexterai/x402-core");0&&(module.exports={BASE_MAINNET,DEXTER_FACILITATOR_URL,KEYPAIR_SYMBOL,SOLANA_MAINNET,USDC_MINT,X402Error,buildV1PaymentHeader,capabilitySearch,createBudgetAccount,createEvmAdapter,createEvmKeypairWallet,createKeypairWallet,createSolanaAdapter,createX402Client,detectStrategy,fireImpressionBeacon,getPaymentReceipt,getSponsoredAccessInfo,getSponsoredRecommendations,isEvmKeypairWallet,isKeypairWallet,payAndFetch,toNetworkRef,toSiwxSigner,wrapFetch});
1
+ "use strict";var Vt=Object.create;var qe=Object.defineProperty;var Ft=Object.getOwnPropertyDescriptor;var qt=Object.getOwnPropertyNames;var Ht=Object.getPrototypeOf,jt=Object.prototype.hasOwnProperty;var gt=(n,e)=>()=>(n&&(e=n(n=0)),e);var yt=(n,e)=>{for(var t in e)qe(n,t,{get:e[t],enumerable:!0})},ht=(n,e,t,r)=>{if(e&&typeof e=="object"||typeof e=="function")for(let o of qt(e))!jt.call(n,o)&&o!==t&&qe(n,o,{get:()=>e[o],enumerable:!(r=Ft(e,o))||r.enumerable});return n};var Z=(n,e,t)=>(t=n!=null?Vt(Ht(n)):{},ht(e||!n||!n.__esModule?qe(t,"default",{value:n,enumerable:!0}):t,n)),Jt=n=>ht(qe({},"__esModule",{value:!0}),n);function gn(n){if(n.length>=255)throw new TypeError("Alphabet too long");let e=new Uint8Array(256);for(let s=0;s<e.length;s++)e[s]=255;for(let s=0;s<n.length;s++){let p=n.charAt(s),f=p.charCodeAt(0);if(e[f]!==255)throw new TypeError(p+" is ambiguous");e[f]=s}let t=n.length,r=n.charAt(0),o=Math.log(t)/Math.log(256),a=Math.log(256)/Math.log(t);function i(s){if(s instanceof Uint8Array||(ArrayBuffer.isView(s)?s=new Uint8Array(s.buffer,s.byteOffset,s.byteLength):Array.isArray(s)&&(s=Uint8Array.from(s))),!(s instanceof Uint8Array))throw new TypeError("Expected Uint8Array");if(s.length===0)return"";let p=0,f=0,g=0,w=s.length;for(;g!==w&&s[g]===0;)g++,p++;let u=(w-g)*a+1>>>0,A=new Uint8Array(u);for(;g!==w;){let y=s[g],S=0;for(let P=u-1;(y!==0||S<f)&&P!==-1;P--,S++)y+=256*A[P]>>>0,A[P]=y%t>>>0,y=y/t>>>0;if(y!==0)throw new Error("Non-zero carry");f=S,g++}let m=u-f;for(;m!==u&&A[m]===0;)m++;let h=r.repeat(p);for(;m<u;++m)h+=n.charAt(A[m]);return h}function c(s){if(typeof s!="string")throw new TypeError("Expected String");if(s.length===0)return new Uint8Array;let p=0,f=0,g=0;for(;s[p]===r;)f++,p++;let w=(s.length-p)*o+1>>>0,u=new Uint8Array(w);for(;p<s.length;){let y=s.charCodeAt(p);if(y>255)return;let S=e[y];if(S===255)return;let P=0;for(let O=w-1;(S!==0||P<g)&&O!==-1;O--,P++)S+=t*u[O]>>>0,u[O]=S%256>>>0,S=S/256>>>0;if(S!==0)throw new Error("Non-zero carry");g=P,p++}let A=w-g;for(;A!==w&&u[A]===0;)A++;let m=new Uint8Array(f+(w-A)),h=f;for(;A!==w;)m[h++]=u[A++];return m}function l(s){let p=c(s);if(p)return p;throw new Error("Non-base"+t+" character")}return{encode:i,decodeUnsafe:c,decode:l}}var Nt,kt=gt(()=>{"use strict";Nt=gn});var Ot={};yt(Ot,{default:()=>hn});var yn,hn,Ut=gt(()=>{"use strict";kt();yn="123456789ABCDEFGHJKLMNPQRSTUVWXYZabcdefghijkmnopqrstuvwxyz",hn=Nt(yn)});var Sn={};yt(Sn,{BASE_MAINNET:()=>j,DEXTER_FACILITATOR_URL:()=>ut,KEYPAIR_SYMBOL:()=>ue,SOLANA_MAINNET:()=>H,USDC_MINT:()=>De,X402Error:()=>C,buildV1PaymentHeader:()=>Le,capabilitySearch:()=>ft.capabilitySearch,createBudgetAccount:()=>Lt,createEvmAdapter:()=>te,createEvmKeypairWallet:()=>at,createKeypairWallet:()=>ot,createSolanaAdapter:()=>L,createX402Client:()=>Ee,detectStrategy:()=>mt,fireImpressionBeacon:()=>Wt,getPaymentReceipt:()=>Ze,getSponsoredAccessInfo:()=>st,getSponsoredRecommendations:()=>Kt,isEvmKeypairWallet:()=>$t,isKeypairWallet:()=>Bt,payAndFetch:()=>dt,toNetworkRef:()=>ae,toSiwxSigner:()=>Ve,wrapFetch:()=>it});module.exports=Jt(Sn);var At=[{caip2:"eip155:8453",bare:"base",family:"evm"},{caip2:"eip155:1",bare:"ethereum",family:"evm"},{caip2:"eip155:137",bare:"polygon",family:"evm"},{caip2:"eip155:42161",bare:"arbitrum",family:"evm"},{caip2:"eip155:10",bare:"optimism",family:"evm"},{caip2:"eip155:43114",bare:"avalanche",family:"evm"},{caip2:"eip155:56",bare:"bsc",family:"evm"},{caip2:"solana:5eykt4UsFv8P8NJdTREpY1vzqKqZKvdp",bare:"solana",family:"svm"}],Xt=new Map(At.map(n=>[n.caip2.toLowerCase(),n])),zt=new Map(At.map(n=>[n.bare.toLowerCase(),n]));function ae(n){if(!n)return null;let e=n.toLowerCase(),t=Xt.get(e)||zt.get(e);return t?{caip2:t.caip2,bare:t.bare,family:t.family}:null}var Pe="solana:5eykt4UsFv8P8NJdTREpY1vzqKqZKvdp",He="solana:EtWTRABZaYq6iMfeYKouRu166VU2xqa1",je="solana:4uhcVJyU9pJkvQyS88uRDiswHXSCkY3z",H=Pe,Re=He,ve=je,se="eip155:8453",fe="eip155:84532",ge="eip155:42161",ye="eip155:137",he="eip155:10",Ae="eip155:43114",Se="eip155:56",we="eip155:1187947933",be="eip155:324705682",xe="eip155:1",j=se,Je=fe,Ce=ge,_e=ye,Ie=he,Ne=Ae,ke=Se,Oe=we,Ue=be,Be=xe,De="EPjFWdd5AufqSSqeM2qN1xzybapC8G4wEGGkZwyTDt1v",St="4zMMC9srt5Ri5X14GAgXhaHii3GnPAEERYPJgZJDncDU",wt="0x833589fCD6eDb6E08f4c7C32D4f71b54bdA02913",lt="0x55d398326f99059fF775485246999027B3197955",Xe="0x8AC76a51cc950d9822D68b83fE1Ad97B32Cd580d",ze={[Se]:Xe,[se]:wt,[fe]:"0x036CbD53842c5426634e7929541eC2318f3dCF7e",[ge]:"0xaf88d065e77c8cC2239327C5EDb3A432268e5831",[ye]:"0x3c499c542cEF5E3811e1192ce70d8cC03d5c3359",[he]:"0x0b2C639c533813f4Aa9D7837CAf62653d097Ff85",[Ae]:"0xB97EF9Ef8734C71904D8002F8b6Bc66Dd9c48a6E",[we]:"0x85889c8c714505E0c94b30fcfcF64fE3Ac8FCb20",[be]:"0x2e08028E3C4c2356572E096d8EF835cD5C6030bD",[xe]:"0xA0b86991c6218b36c1d19D4a2e9Eb0cE3606eB48"},Ye={[lt]:{symbol:"USDT",decimals:18},[Xe]:{symbol:"USDC",decimals:18}};var ee="0x000000000022D473030F116dDEE9F6B43aC78BA3",Me="0x402085c248EeA27D92E8b30b2C58ed07f9E20001",$e={[Se]:56,[se]:8453,[fe]:84532,[ge]:42161,[ye]:137,[he]:10,[Ae]:43114,[we]:1187947933,[be]:324705682,[xe]:1},ie={[Pe]:"https://api.dexter.cash/api/solana/rpc",[He]:"https://api.devnet.solana.com",[je]:"https://api.testnet.solana.com"},D={[Se]:"https://api.dexter.cash/api/evm/bsc/rpc",[se]:"https://api.dexter.cash/api/base/rpc",[fe]:"https://sepolia.base.org",[ge]:"https://api.dexter.cash/api/evm/arbitrum/rpc",[ye]:"https://api.dexter.cash/api/evm/polygon/rpc",[he]:"https://api.dexter.cash/api/evm/optimism/rpc",[Ae]:"https://api.dexter.cash/api/evm/avalanche/rpc",[we]:"https://skale-base.skalenodes.com/v1/base",[be]:"https://base-sepolia-testnet.skalenodes.com/v1/jubilant-horrible-ancha",[xe]:"https://eth.llamarpc.com"},ut="https://x402.dexter.cash";var C=class n extends Error{code;details;constructor(e,t,r){super(t),this.name="X402Error",this.code=e,this.details=r,Object.setPrototypeOf(this,n.prototype)}};var k=require("@solana/web3.js"),U=require("@solana/spl-token");var Yt=12e3,Gt=1;function ce(n){if(!n||typeof n!="object")return!1;let e=n;return"publicKey"in e&&"signTransaction"in e&&typeof e.signTransaction=="function"}var Ge=class{name="Solana";networks=[H,Re,ve];config;log;constructor(e={}){this.config=e,this.log=e.verbose?console.log.bind(console,"[x402:solana]"):()=>{}}canHandle(e){return!!(this.networks.includes(e)||e==="solana"||e==="solana-devnet"||e==="solana-testnet"||e.startsWith("solana:"))}getDefaultRpcUrl(e){return this.config.rpcUrls?.[e]?this.config.rpcUrls[e]:ie[e]?ie[e]:e==="solana"?ie[H]:e==="solana-devnet"?ie[Re]:e==="solana-testnet"?ie[ve]:ie[H]}getAddress(e){return ce(e)?e.publicKey?.toBase58()??null:null}isConnected(e){return ce(e)?e.publicKey!==null:!1}async getBalance(e,t,r){if(!ce(t)||!t.publicKey)return 0;let o=r||this.getDefaultRpcUrl(e.network),a=new k.Connection(o,"confirmed"),i=new k.PublicKey(t.publicKey.toBase58()),c=new k.PublicKey(e.asset);try{let s=(await a.getAccountInfo(c,"confirmed"))?.owner.toBase58()===U.TOKEN_2022_PROGRAM_ID.toBase58()?U.TOKEN_2022_PROGRAM_ID:U.TOKEN_PROGRAM_ID,p=await(0,U.getAssociatedTokenAddress)(c,i,!1,s),f=await(0,U.getAccount)(a,p,void 0,s),g=e.extra?.decimals??6;return Number(f.amount)/Math.pow(10,g)}catch(l){if(l&&typeof l=="object"&&"name"in l&&(l.name==="TokenAccountNotFoundError"||l.name==="TokenInvalidAccountOwnerError"))return 0;throw l}}async buildTransaction(e,t,r){if(!ce(t))throw new Error("Invalid Solana wallet");if(!t.publicKey)throw new Error("Wallet not connected");let o=r||this.getDefaultRpcUrl(e.network),a=new k.Connection(o,"confirmed"),i=new k.PublicKey(t.publicKey.toBase58()),{payTo:c,asset:l,extra:s}=e,p=e.amount??e.maxAmountRequired;if(!p)throw new Error("Missing amount in payment requirements");if(!s?.feePayer)throw new Error("Missing feePayer in payment requirements");let f=new k.PublicKey(s.feePayer),g=new k.PublicKey(l),w=new k.PublicKey(c);this.log("Building transaction:",{from:i.toBase58(),to:c,amount:p,asset:l,feePayer:s.feePayer});let u=[];u.push(k.ComputeBudgetProgram.setComputeUnitLimit({units:Yt})),u.push(k.ComputeBudgetProgram.setComputeUnitPrice({microLamports:Gt}));let A=await a.getAccountInfo(g,"confirmed");if(!A)throw new Error(`Token mint ${l} not found`);let m=A.owner.toBase58()===U.TOKEN_2022_PROGRAM_ID.toBase58()?U.TOKEN_2022_PROGRAM_ID:U.TOKEN_PROGRAM_ID,h=await(0,U.getMint)(a,g,void 0,m);typeof s?.decimals=="number"&&h.decimals!==s.decimals&&this.log(`Decimals mismatch: requirements say ${s.decimals}, mint says ${h.decimals}`);let y=await(0,U.getAssociatedTokenAddress)(g,i,!1,m),S=await(0,U.getAssociatedTokenAddress)(g,w,!0,m);if(!await a.getAccountInfo(y,"confirmed"))throw new Error(`No token account found for ${l}. Please ensure you have USDC in your wallet.`);if(!await a.getAccountInfo(S,"confirmed"))throw new Error(`Seller token account not found. The seller (${c}) must have a USDC account.`);let X=BigInt(p);u.push((0,U.createTransferCheckedInstruction)(y,g,S,i,X,h.decimals,[],m));let{blockhash:F}=await a.getLatestBlockhash("confirmed"),ne=new k.TransactionMessage({payerKey:f,recentBlockhash:F,instructions:u}).compileToV0Message(),$=new k.VersionedTransaction(ne),b=await t.signTransaction($);return this.log("Transaction signed successfully"),{serialized:Buffer.from(b.serialize()).toString("base64"),settlementProbe:{kind:"solana",sourceAta:y.toBase58(),destinationAta:S.toBase58(),asset:l,amount:p,blockhash:F}}}async confirmSettlement(e,t){if(e.kind!=="solana")throw new Error(`SolanaAdapter.confirmSettlement cannot handle probe kind "${e.kind}"`);let r=new k.Connection(t,"confirmed"),o=new k.PublicKey(e.destinationAta),a=await r.getSignaturesForAddress(o,{limit:25});if(a.length===0)return{settled:!1};let i=BigInt(e.amount);for(let c of a){if(c.err)continue;let l=await r.getTransaction(c.signature,{commitment:"confirmed",maxSupportedTransactionVersion:0});if(!l?.meta)continue;let s=l.transaction.message.getAccountKeys().keySegments().flat(),p=l.meta.preTokenBalances??[],f=l.meta.postTokenBalances??[];for(let g of f){if(g.mint!==e.asset)continue;let w=s[g.accountIndex];if(!w||!w.equals(o))continue;let u=p.find(h=>h.accountIndex===g.accountIndex),A=BigInt(u?.uiTokenAmount.amount??"0");if(BigInt(g.uiTokenAmount.amount??"0")-A===i)return{settled:!0,txSignature:c.signature}}}return{settled:!1}}};function L(n){return new Ge(n)}var Qt={PermitWitnessTransferFrom:[{name:"permitted",type:"TokenPermissions"},{name:"spender",type:"address"},{name:"nonce",type:"uint256"},{name:"deadline",type:"uint256"},{name:"witness",type:"Witness"}],TokenPermissions:[{name:"token",type:"address"},{name:"amount",type:"uint256"}],Witness:[{name:"to",type:"address"},{name:"validAfter",type:"uint256"}]},bt=BigInt("0xffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff");function le(n){if(!n||typeof n!="object")return!1;let e=n;return"address"in e&&typeof e.address=="string"&&e.address.startsWith("0x")}var Qe=class{name="EVM";networks=[ke,j,Je,Be,Ce,_e,Ie,Ne,Oe,Ue];config;log;constructor(e={}){this.config=e,this.log=e.verbose?console.log.bind(console,"[x402:evm]"):()=>{}}canHandle(e){return!!(this.networks.includes(e)||e==="base"||e==="bsc"||e==="ethereum"||e==="arbitrum"||e==="polygon"||e==="optimism"||e==="avalanche"||e==="skale-base"||e==="skale-base-sepolia"||e.startsWith("eip155:"))}getDefaultRpcUrl(e){return this.config.rpcUrls?.[e]?this.config.rpcUrls[e]:D[e]?D[e]:e==="base"?D[j]:e==="bsc"?D[ke]:e==="ethereum"?D[Be]:e==="arbitrum"?D[Ce]:e==="polygon"?D[_e]:e==="optimism"?D[Ie]:e==="avalanche"?D[Ne]:e==="skale-base"?D[Oe]:e==="skale-base-sepolia"?D[Ue]:D[j]}getAddress(e){return le(e)?e.address:null}isConnected(e){return le(e)?!!e.address:!1}getChainId(e){if($e[e])return $e[e];if(e.startsWith("eip155:")){let t=e.split(":")[1];return parseInt(t,10)}return e==="base"?8453:e==="bsc"?56:e==="ethereum"?1:e==="arbitrum"?42161:8453}async getBalance(e,t,r){if(!le(t)||!t.address)return 0;let o=r||this.getDefaultRpcUrl(e.network);try{let a=this.encodeBalanceOf(t.address),i=await fetch(o,{method:"POST",headers:{"Content-Type":"application/json"},body:JSON.stringify({jsonrpc:"2.0",id:1,method:"eth_call",params:[{to:e.asset,data:a},"latest"]})});if(!i.ok)throw new Error(`RPC request failed: ${i.status}`);let c=await i.json();if(c.error)throw new Error(`RPC error: ${JSON.stringify(c.error)}`);if(!c.result||c.result==="0x")return 0;let l=BigInt(c.result),s=e.extra?.decimals??6;return Number(l)/Math.pow(10,s)}catch(a){throw a}}encodeBalanceOf(e){let t="0x70a08231",r=e.slice(2).toLowerCase().padStart(64,"0");return t+r}async confirmSettlement(e,t){if(e.kind==="eip3009"){let r="0xe94a0102",o=e.from.slice(2).toLowerCase().padStart(64,"0"),a=e.nonce.slice(2).toLowerCase().padStart(64,"0"),i=r+o+a,c=await this.ethCall(t,e.asset,i);return{settled:BigInt(c)!==0n}}if(e.kind==="permit2"){let r="0x4fe02b44",o=BigInt(e.nonce),a=o>>8n,i=o&0xffn,c=e.from.slice(2).toLowerCase().padStart(64,"0"),l=a.toString(16).padStart(64,"0"),s=r+c+l,p=await this.ethCall(t,ee,s);return{settled:(BigInt(p)>>i&1n)===1n}}throw new Error(`EvmAdapter.confirmSettlement cannot handle probe kind "${e.kind}"`)}async ethCall(e,t,r){let o=await fetch(e,{method:"POST",headers:{"Content-Type":"application/json"},body:JSON.stringify({jsonrpc:"2.0",id:1,method:"eth_call",params:[{to:t,data:r},"latest"]})});if(!o.ok)throw new Error(`RPC request failed: ${o.status}`);let a=await o.json();if(a.error)throw new Error(`RPC error: ${JSON.stringify(a.error)}`);if(!a.result||a.result==="0x")throw new Error("RPC returned an empty result");return a.result}async buildTransaction(e,t,r){if(!le(t))throw new Error("Invalid EVM wallet");if(!t.address)throw new Error("Wallet not connected");if(e.scheme==="exact-approval")return this.buildApprovalTransaction(e,t,r);if(e.extra?.assetTransferMethod==="permit2")return this.buildPermit2Transaction(e,t,r);let{payTo:o,asset:a,extra:i}=e,c=e.amount??e.maxAmountRequired;if(!c)throw new Error("Missing amount in payment requirements");this.log("Building EVM transaction:",{from:t.address,to:o,amount:c,asset:a,network:e.network});let l=this.getChainId(e.network),s={name:i?.name??"USD Coin",version:i?.version??"2",chainId:BigInt(l),verifyingContract:a},p={TransferWithAuthorization:[{name:"from",type:"address"},{name:"to",type:"address"},{name:"value",type:"uint256"},{name:"validAfter",type:"uint256"},{name:"validBefore",type:"uint256"},{name:"nonce",type:"bytes32"}]},f=new Uint8Array(32);(globalThis.crypto??(await import("crypto")).webcrypto).getRandomValues(f);let g="0x"+[...f].map(y=>y.toString(16).padStart(2,"0")).join(""),w=Math.floor(Date.now()/1e3),u={from:t.address,to:o,value:c,validAfter:String(w-600),validBefore:String(w+(e.maxTimeoutSeconds||60)),nonce:g},A={from:t.address,to:o,value:BigInt(c),validAfter:BigInt(w-600),validBefore:BigInt(w+(e.maxTimeoutSeconds||60)),nonce:g};if(!t.signTypedData)throw new Error("Wallet does not support signTypedData (EIP-712)");let m=await t.signTypedData({domain:s,types:p,primaryType:"TransferWithAuthorization",message:A});return this.log("EIP-712 signature obtained"),{serialized:JSON.stringify({authorization:u,signature:m}),signature:m,settlementProbe:{kind:"eip3009",from:t.address,nonce:g,asset:a,chainId:l}}}async buildApprovalTransaction(e,t,r){let{payTo:o,asset:a,extra:i}=e,c=e.amount??e.maxAmountRequired;if(!c)throw new Error("Missing amount in payment requirements");let l=i?.facilitatorContract;if(!l)throw new Error("exact-approval scheme requires extra.facilitatorContract from the facilitator. The /supported endpoint should provide this.");if(!t.signTypedData)throw new Error("Wallet does not support signTypedData (EIP-712)");this.log("Building approval-based transaction:",{from:t.address,to:o,amount:c,asset:a,network:e.network,facilitatorContract:l});let s=r||this.getDefaultRpcUrl(e.network),p=i?.fee??"0",f=BigInt(c)+BigInt(p),g=await this.readAllowance(s,a,t.address,l);if(g<f){if(!t.sendTransaction)throw new Error("BSC payments require a wallet that supports sendTransaction for the one-time token approval. Use createEvmKeypairWallet() or a browser wallet with transaction support.");let $=this.calculateApprovalAmount(c,p,i?.approvalStrategy);this.log(`Approving ${$} for ${l} (current allowance: ${g})`);let b=await t.sendTransaction({to:a,data:this.encodeApprove(l,$),value:0n});this.log(`Approval tx sent: ${b}`),await this.waitForReceipt(s,b),this.log("Approval confirmed")}else this.log("Sufficient allowance, skipping approval");let w=new Uint8Array(16);(globalThis.crypto??(await import("crypto")).webcrypto).getRandomValues(w);let u=[...w].reduce(($,b)=>$*256n+BigInt(b),0n).toString(),A=new Uint8Array(32);(globalThis.crypto??(await import("crypto")).webcrypto).getRandomValues(A);let m="0x"+[...A].map($=>$.toString(16).padStart(2,"0")).join(""),y=Math.floor(Date.now()/1e3)+(e.maxTimeoutSeconds||300),S=i?.eip712Domain,P=S?{name:S.name,version:S.version,chainId:BigInt(S.chainId),verifyingContract:S.verifyingContract}:{name:"DexterBSCFacilitator",version:"1",chainId:BigInt(this.getChainId(e.network)),verifyingContract:l},O=i?.eip712Types??{Payment:[{name:"from",type:"address"},{name:"to",type:"address"},{name:"token",type:"address"},{name:"amount",type:"uint256"},{name:"fee",type:"uint256"},{name:"nonce",type:"uint256"},{name:"deadline",type:"uint256"},{name:"paymentId",type:"bytes32"}]},X={from:t.address,to:o,token:a,amount:BigInt(c),fee:BigInt(p),nonce:BigInt(u),deadline:BigInt(y),paymentId:m},F=await t.signTypedData({domain:P,types:O,primaryType:"Payment",message:X});this.log("EIP-712 Payment signature obtained");let ne={from:t.address,to:o,token:a,amount:c,fee:p,nonce:u,deadline:y,paymentId:m,signature:F};return{serialized:JSON.stringify(ne),signature:F}}async buildPermit2Transaction(e,t,r){let{payTo:o,asset:a}=e,i=e.amount??e.maxAmountRequired;if(!i)throw new Error("Missing amount in payment requirements");if(!t.signTypedData)throw new Error("Wallet does not support signTypedData (EIP-712)");this.log("Building Permit2 transaction:",{from:t.address,to:o,amount:i,asset:a,network:e.network});let c=r||this.getDefaultRpcUrl(e.network),l=await this.readAllowance(c,a,t.address,ee),s;if(l<BigInt(i)){let P=this.encodeApprove(ee,bt);if(t.signTransaction){this.log(`Signing Permit2 approval for relay (current allowance: ${l})`);let O=this.getChainId(e.network),X=await this.readGasPrice(c),F=await this.readNonce(c,t.address),ne=await t.signTransaction({to:a,data:P,chainId:O,gas:50000n,gasPrice:X,nonce:F});s={erc20ApprovalGasSponsoring:{info:{from:t.address,asset:a,spender:ee,amount:bt.toString(),signedTransaction:ne,version:"1"}}},this.log("Permit2 approval signed for facilitator relay")}else if(t.sendTransaction){this.log(`Approving Permit2 directly (current allowance: ${l})`);let O=await t.sendTransaction({to:a,data:P,value:0n});this.log(`Permit2 approval tx sent: ${O}`),await this.waitForReceipt(c,O),this.log("Permit2 approval confirmed")}else throw new Error("Permit2 payments require a wallet that supports signTransaction or sendTransaction for the one-time Permit2 approval. Use createEvmKeypairWallet() or a browser wallet with transaction support.")}else this.log("Sufficient Permit2 allowance, skipping approval");let p=new Uint8Array(32);(globalThis.crypto??(await import("crypto")).webcrypto).getRandomValues(p);let f=[...p].reduce((P,O)=>P*256n+BigInt(O),0n),g=Math.floor(Date.now()/1e3),w=g-600,u=g+(e.maxTimeoutSeconds||300),A=this.getChainId(e.network),m={name:"Permit2",chainId:BigInt(A),verifyingContract:ee},h={permitted:{token:a,amount:BigInt(i)},spender:Me,nonce:f,deadline:BigInt(u),witness:{to:o,validAfter:BigInt(w)}},y=await t.signTypedData({domain:m,types:Qt,primaryType:"PermitWitnessTransferFrom",message:h});this.log("Permit2 PermitWitnessTransferFrom signature obtained");let S={signature:y,permit2Authorization:{from:t.address,permitted:{token:a,amount:i},spender:Me,nonce:f.toString(),deadline:String(u),witness:{to:o,validAfter:String(w)}}};return{serialized:JSON.stringify(S),signature:y,extensions:s,settlementProbe:{kind:"permit2",from:t.address,nonce:f.toString(),chainId:A}}}async readAllowance(e,t,r,o){let a="0xdd62ed3e",i=r.slice(2).toLowerCase().padStart(64,"0"),c=o.slice(2).toLowerCase().padStart(64,"0"),l=a+i+c;try{let p=await(await fetch(e,{method:"POST",headers:{"Content-Type":"application/json"},body:JSON.stringify({jsonrpc:"2.0",id:1,method:"eth_call",params:[{to:t,data:l},"latest"]})})).json();return p.error||!p.result||p.result==="0x"?0n:BigInt(p.result)}catch{return 0n}}encodeApprove(e,t){let r="0x095ea7b3",o=e.slice(2).toLowerCase().padStart(64,"0"),a=t.toString(16).padStart(64,"0");return r+o+a}async waitForReceipt(e,t,r=3e4){let o=Date.now();for(;Date.now()-o<r;){try{let i=await(await fetch(e,{method:"POST",headers:{"Content-Type":"application/json"},body:JSON.stringify({jsonrpc:"2.0",id:1,method:"eth_getTransactionReceipt",params:[t]})})).json();if(i.result){if(i.result.status==="0x0")throw new Error(`Approval transaction reverted: ${t}`);return}}catch(a){if(a instanceof Error&&a.message.includes("reverted"))throw a}await new Promise(a=>setTimeout(a,2e3))}throw new Error(`Approval transaction receipt timeout after ${r}ms: ${t}`)}async readGasPrice(e){try{let r=await(await fetch(e,{method:"POST",headers:{"Content-Type":"application/json"},body:JSON.stringify({jsonrpc:"2.0",id:1,method:"eth_gasPrice",params:[]})})).json();return r.result?BigInt(r.result):50000000n}catch{return 50000000n}}async readNonce(e,t){try{let o=await(await fetch(e,{method:"POST",headers:{"Content-Type":"application/json"},body:JSON.stringify({jsonrpc:"2.0",id:1,method:"eth_getTransactionCount",params:[t,"latest"]})})).json();return o.result?parseInt(o.result,16):0}catch{return 0}}calculateApprovalAmount(e,t,r){let o=BigInt(e)+BigInt(t);if(!r||r.mode==="exact")return o;let a=BigInt(r.defaultMultiple??10),i=o*a;if(r.maxCapUsd){let c=this.inferDecimals(e),l=BigInt(Math.floor(r.maxCapUsd*Math.pow(10,c)));if(i>l)return l}if(r.exactAboveUsd){let c=this.inferDecimals(e),l=BigInt(Math.floor(r.exactAboveUsd*Math.pow(10,c)));if(BigInt(e)>l)return o}return i}inferDecimals(e){return e.length>12?18:6}};function te(n){return new Qe(n)}function pt(n){if(n===De||n===St)return!0;let e=n.toLowerCase();for(let t of Object.values(ze))if(t.toLowerCase()===e)return!0;for(let t of Object.keys(Ye))if(t.toLowerCase()===e)return!0;return!1}function Zt(n){return{[Pe]:"Solana",[He]:"Solana Devnet",[je]:"Solana Testnet",solana:"Solana","solana-devnet":"Solana Devnet","solana-testnet":"Solana Testnet",[se]:"Base",[fe]:"Base Sepolia",[xe]:"Ethereum",[ge]:"Arbitrum",[ye]:"Polygon",[he]:"Optimism",[Ae]:"Avalanche",[Se]:"BSC",[we]:"SKALE Base",[be]:"SKALE Base Sepolia",base:"Base","base-sepolia":"Base Sepolia",ethereum:"Ethereum",arbitrum:"Arbitrum",polygon:"Polygon",optimism:"Optimism",avalanche:"Avalanche",bsc:"BSC","skale-base":"SKALE Base","skale-base-sepolia":"SKALE Base Sepolia"}[n]||n}function xt(n,e){let t=Zt(n);return t===n?e:t}async function en(n,e){if(typeof n=="string")return[n,e];if(n instanceof URL)return[n.href,e];let t=n,r=new Headers(t.headers);e?.headers&&new Headers(e.headers).forEach((i,c)=>r.set(c,i));let o={method:e?.method??t.method,headers:r,signal:e?.signal??t.signal,redirect:e?.redirect??t.redirect,credentials:e?.credentials??t.credentials},a=(o.method??"GET").toUpperCase();return e&&"body"in e?o.body=e.body:a!=="GET"&&a!=="HEAD"&&t.body&&(o.body=await t.arrayBuffer()),[t.url,o]}var Et=new WeakMap;function Ze(n){return Et.get(n)}function Ee(n){let{adapters:e=[L({verbose:n.verbose}),te({verbose:n.verbose})],wallets:t,wallet:r,preferredNetwork:o,rpcUrls:a={},maxAmountAtomic:i,fetch:c=globalThis.fetch,verbose:l=!1,accessPass:s,onPaymentRequired:p,onPaymentDispatched:f,maxRetries:g=0,retryDelayMs:w=500}=n,u=l?console.log.bind(console,"[x402]"):()=>{};async function A(b,T){let R;for(let x=0;x<=g;x++)try{let v=await c(b,T);if(v.status>=502&&v.status<=504&&x<g){u(`Retry ${x+1}/${g}: server returned ${v.status}`),await new Promise(_=>setTimeout(_,w*Math.pow(2,x)));continue}return v}catch(v){R=v,x<g&&(u(`Retry ${x+1}/${g}: ${v instanceof Error?v.message:"network error"}`),await new Promise(_=>setTimeout(_,w*Math.pow(2,x))))}throw R}let m=new Map;function h(b){try{let T=new URL(b).host,R=m.get(T);if(R&&R.expiresAt>Date.now()/1e3+10)return R.jwt;R&&m.delete(T)}catch{}return null}function y(b,T){try{let R=new URL(b).host,x=T.split(".");if(x.length===3){let v=JSON.parse(atob(x[1].replace(/-/g,"+").replace(/_/g,"/"))),_=Math.floor(Date.now()/1e3),I=_+86400,K=Math.min(typeof v.exp=="number"?v.exp:_,I);m.set(R,{jwt:T,expiresAt:K}),u("Access pass cached for",R,"| expires:",new Date(K*1e3).toISOString())}}catch{u("Failed to cache access pass")}}let S=t||{};r&&!S.solana&&ce(r)&&(S.solana=r),r&&!S.evm&&le(r)&&(S.evm=r);function P(b){let T=[];for(let R of b){let x=R.scheme??"exact";if(x!=="exact"&&x!=="exact-approval")continue;let v=e.find(I=>I.canHandle(R.network));if(!v)continue;let _;v.name==="Solana"?_=S.solana:v.name==="EVM"&&(_=S.evm),_&&v.isConnected(_)&&T.push({accept:R,adapter:v,wallet:_})}if(T.length===0)return null;if(o){let R=T.find(x=>x.accept.network===o);if(R)return R}return T[0]}function O(b,T){return xt(b,T)}function X(b,T){return a[b]||T.getDefaultRpcUrl(b)}async function F(b,T,R,x,v){let _="";if(s?.preferTier&&x.tiers){let d=x.tiers.find(E=>E.id===s.preferTier);if(d){if(s.maxSpend&&parseFloat(d.price)>parseFloat(s.maxSpend))throw new C("access_pass_exceeds_max_spend",`Access pass tier "${d.id}" costs $${d.price}, exceeds max spend $${s.maxSpend}`);_=`tier=${d.id}`}}else if(s?.preferDuration&&x.ratePerHour)_=`duration=${s.preferDuration}`;else if(x.tiers&&x.tiers.length>0){let d=x.tiers[0];if(s?.maxSpend&&parseFloat(d.price)>parseFloat(s.maxSpend))throw new C("access_pass_exceeds_max_spend",`Cheapest access pass costs $${d.price}, exceeds max spend $${s?.maxSpend}`);_=`tier=${d.id}`}let I=_?v.includes("?")?`${v}&${_}`:`${v}?${_}`:v;u("Purchasing access pass:",_||"default tier");let K=R.headers.get("PAYMENT-REQUIRED");if(!K)return null;let M;try{M=JSON.parse(atob(K))}catch{return null}let B=P(M.accepts);if(!B)return null;let{accept:N,adapter:q,wallet:pe}=B;if(q.name==="Solana"&&!N.extra?.feePayer)return null;let z=N.extra?.decimals??(pt(N.asset)?6:void 0);if(typeof z!="number")return null;let Te=N.amount??N.maxAmountRequired;if(!Te)return null;let Y=X(N.network,q);try{let d=await q.getBalance(N,pe,Y),E=Number(Te)/Math.pow(10,z);if(d<E){let ct=O(N.network,q.name);throw new C("insufficient_balance",`Insufficient balance for access pass on ${ct}. Have $${d.toFixed(4)}, need $${E.toFixed(4)}`)}}catch(d){if(d instanceof C)throw d}let G=await q.buildTransaction(N,pe,Y),me;q.name==="EVM"?me=JSON.parse(G.serialized):me={transaction:G.serialized};let re=typeof b=="string"?b:b instanceof URL?b.href:b.url,de=M.resource;if(typeof M.resource=="string")try{let d=new URL(M.resource,re);["http:","https:"].includes(d.protocol)&&(de=d.toString())}catch{}else if(M.resource&&typeof M.resource=="object"&&"url"in M.resource){let d=M.resource;try{let E=new URL(d.url,re);["http:","https:"].includes(E.protocol)&&(de={...d,url:E.toString()})}catch{}}let Fe={x402Version:N.x402Version??2,resource:de,accepted:N,payload:me};G.extensions&&(Fe.extensions=G.extensions);let Q=btoa(JSON.stringify(Fe)),oe=await c(I,{...T,method:"POST",headers:{...T?.headers||{},"Content-Type":"application/json","PAYMENT-SIGNATURE":Q}});if(!oe.ok)return u("Pass purchase failed:",oe.status),null;let W=oe.headers.get("ACCESS-PASS");return W&&(y(v,W),u("Access pass purchased and cached")),oe}async function ne(b,T){let R=b;if(u("Making request:",R),s){let d=h(R);if(d){u("Using cached access pass");let E=await c(b,{...T,headers:{...T?.headers||{},Authorization:`Bearer ${d}`}});if(E.status!==401&&E.status!==402)return E;u("Cached pass rejected (status",E.status,"), purchasing new pass");try{m.delete(new URL(R).host)}catch{}}}let x=await A(b,T);if(x.status!==402)return x;u("Received 402 Payment Required");let v=x.headers.get("X-ACCESS-PASS-TIERS");if(s&&v){u("Server offers access passes, purchasing...");try{let d=JSON.parse(atob(v)),E=await F(b,T,x,d,R);if(E)return E}catch(d){u("Access pass purchase failed, falling back to per-request payment:",d)}}let _=x.headers.get("PAYMENT-REQUIRED");if(!_)throw new C("missing_payment_required_header","Server returned 402 but no PAYMENT-REQUIRED header");let I;try{let d=atob(_);I=JSON.parse(d)}catch{throw new C("invalid_payment_required","Failed to decode PAYMENT-REQUIRED header")}u("Payment requirements:",I);let K=x.headers.get("X-Quote-Hash");K&&u("Quote hash received:",K);let M=P(I.accepts);if(!M){let d=I.accepts.map(E=>E.network).join(", ");throw new C("no_matching_payment_option",`No connected wallet for any available network: ${d}`)}let{accept:B,adapter:N,wallet:q}=M;if(u(`Using ${N.name} for ${B.network}`),N.name==="Solana"&&!B.extra?.feePayer)throw new C("missing_fee_payer","Solana payment option missing feePayer in extra");let pe=B.extra?.decimals??(pt(B.asset)?6:void 0);if(typeof pe!="number")throw new C("missing_decimals","Payment option missing decimals - provide in extra or use a known stablecoin");let z=B.amount??B.maxAmountRequired;if(!z)throw new C("missing_amount","Payment option missing amount");if(i&&BigInt(z)>BigInt(i))throw new C("amount_exceeds_max",`Payment amount ${z} exceeds maximum ${i}`);let Te=X(B.network,N);u("Checking balance...");try{let d=await N.getBalance(B,q,Te),E=Number(z)/Math.pow(10,pe);if(d<E){let ct=O(B.network,N.name);throw new C("insufficient_balance",`Insufficient balance on ${ct}. Have $${d.toFixed(4)}, need $${E.toFixed(4)}`)}u(`Balance OK: $${d.toFixed(4)} >= $${E.toFixed(4)}`)}catch(d){if(d instanceof C)throw d;u("Balance check failed (RPC error), proceeding with transaction attempt")}if(p&&!await p(B))throw new C("payment_rejected","Payment rejected by onPaymentRequired callback");u("Building transaction...");let Y=await N.buildTransaction(B,q,Te);u("Transaction signed");let G;N.name==="EVM"?G=JSON.parse(Y.serialized):G={transaction:Y.serialized};let me=b,re=I.resource;if(typeof I.resource=="string")try{let d=new URL(I.resource,me).toString();d!==I.resource&&u("Resolved relative resource URL:",I.resource,"\u2192",d),re=d}catch{re=I.resource}else if(I.resource&&typeof I.resource=="object"&&"url"in I.resource){let d=I.resource;try{let E=new URL(d.url,me).toString();E!==d.url&&(u("Resolved relative resource URL:",d.url,"\u2192",E),re={...d,url:E})}catch{}}let de={x402Version:B.x402Version??2,resource:re,accepted:B,payload:G};Y.extensions&&(de.extensions=Y.extensions);let Fe=btoa(JSON.stringify(de));if(f)try{f(B,Y.settlementProbe)}catch{}u("Retrying request with payment...");let Q=await A(b,{...T,headers:{...T?.headers||{},"PAYMENT-SIGNATURE":Fe,...K?{"X-Quote-Hash":K}:{}}});if(u("Retry response status:",Q.status),Q.status===402){let d="unknown";try{let E=await Q.clone().json();d=String(E.error||E.message||JSON.stringify(E)),u("Rejection reason:",d)}catch{}throw new C("payment_rejected",`Payment was rejected by the server: ${d}`)}let oe=Q.headers.get("PAYMENT-RESPONSE"),W;if(oe)try{W=JSON.parse(atob(oe))}catch{}return W??={},W.amountAtomic=z,W.assetDecimals=pe,Et.set(Q,W),W.extensions&&u("Settlement extensions:",Object.keys(W.extensions).join(", ")),Q}async function $(b,T){let[R,x]=await en(b,T);return ne(R,x)}return{fetch:$}}var rn=require("@solana/web3.js"),et=require("@noble/hashes/utils");var tn=Z(require("tweetnacl"),1);var Ke=require("@dexterai/vault/messages");var nn=require("@noble/hashes/sha256");function Tt(n){return Buffer.from(JSON.stringify({payload:n.payload,sessionPublicKey:(0,et.bytesToHex)(n.sessionPublicKey),sessionRegistration:(0,et.bytesToHex)(n.sessionRegistration),sessionSignature:(0,et.bytesToHex)(n.sessionSignature)}),"utf8").toString("base64")}function J(n){if(n instanceof Error){if(n.message&&n.message.length>0)return n.message;if(n.name&&n.name.length>0)return n.name}let e=String(n);return e.length>0?e:"unknown error"}async function We(n){let e="";try{e=(await n.clone().text()).slice(0,600)}catch{}let t=e.toLowerCase(),r=t.includes("settle")||t.includes("facilitator"),o=e;try{let a=JSON.parse(e),i=[a.error,a.detail,a.message].filter(c=>typeof c=="string"&&c.length>0);i.length>0&&(o=i.join(" \u2014 "))}catch{}return o||(o=`HTTP ${n.status}`),{reason:r?"settlement_failed":"merchant_rejected",detail:`merchant HTTP ${n.status}: ${o}`}}var tt="Payment authorization was sent, but the merchant did not respond within the timeout. ",nt=" Do not retry without checking \u2014 inspect the funding wallet for a transfer to the merchant before attempting payment again.";async function rt(n,e,t){if(!n)return{confirmed:!1,detail:tt+"This payment scheme has no on-chain confirmation check, so the SDK cannot verify whether it settled."+nt};try{if(n.kind==="solana"){let i=L(),c=t??i.getDefaultRpcUrl(e.caip2);if(!i.confirmSettlement)return Rt();let l=await i.confirmSettlement(n,c);return l.settled?{confirmed:!0,txSignature:l.txSignature}:Pt()}let r=te(),o=r.getDefaultRpcUrl(e.caip2);if(!r.confirmSettlement)return Rt();let a=await r.confirmSettlement(n,o);return a.settled?{confirmed:!0,txSignature:a.txSignature}:Pt()}catch(r){return{confirmed:!1,detail:tt+`On-chain confirmation could not be completed (${J(r)}).`+nt}}}function Pt(){return{confirmed:!1,detail:tt+"On-chain confirmation found no matching settlement yet \u2014 the payment may still be pending, or may not have settled."+nt}}function Rt(){return{confirmed:!1,detail:tt+"The chain adapter does not support on-chain confirmation."+nt}}var on=new Set(["exact","exact-approval"]);async function an(n,e,t,r){let o;try{o=await r.signNextVoucher(t.amount)}catch{return null}let a=new Headers(e.headers??void 0);a.set("X-Tab-Voucher",Tt(o));let i={method:e.method??"GET",headers:a};e.signal&&(i.signal=e.signal),typeof e.body=="string"&&(i.body=e.body);let c;try{c=await fetch(n,i)}catch(l){return{ok:!1,reason:"error",detail:l?.message??String(l)}}return c.status===402?(r.rollbackVoucher?.call(r,o),null):c.ok?{ok:!0,paid:!0,response:c,amountPaid:t.amount,network:t.network}:{ok:!1,...await We(c)}}function vt(n){let e=n.replace(/-/g,"+").replace(/_/g,"/"),t=e+"=".repeat((4-(e.length%4||4))%4);return JSON.parse(Buffer.from(t,"base64").toString("utf8"))}function sn(n){let e=[];for(let t of n){if(!t||typeof t!="object")continue;let r=t,o=ae(String(r.network??""));o&&e.push({scheme:String(r.scheme??"exact"),network:o,amount:String(r.amount??r.maxAmountRequired??"0"),asset:String(r.asset??""),payTo:String(r.payTo??""),maxTimeoutSeconds:typeof r.maxTimeoutSeconds=="number"?r.maxTimeoutSeconds:void 0,extra:r.extra&&typeof r.extra=="object"?r.extra:void 0})}return e}var Ct={version:2,async parseChallenge(n){let e=n.headers.get("payment-required");if(!e)return null;let t;try{t=vt(e)}catch{return null}let r=Array.isArray(t.accepts)?t.accepts:[];return r.length===0?null:{x402Version:2,options:sn(r),resourceUrl:t.resource&&typeof t.resource=="object"?String(t.resource.url??""):void 0}},async pay(n,e,t,r,o){if(o.tab){let h=t.options.find(y=>y.scheme==="tab"&&y.network.family==="svm"&&y.payTo===o.tab.counterparty);if(h){let y=await an(n,e,h,o.tab);if(y)return y}}let a=t.options.filter(h=>on.has(h.scheme));if(a.length===0)return{ok:!1,reason:"no_payment_options",detail:`no generically payable scheme offered (got: ${t.options.map(h=>h.scheme).join(", ")})`};let i=a.find(h=>h.network.family==="evm"?!!r.evm:h.network.family==="svm"?!!r.solana:!1);if(!i)return{ok:!1,reason:"unsupported_network"};let c=o.timeoutMs??15e3,l=o.responseTimeoutMs??12e4,s=new AbortController,p=setTimeout(()=>s.abort(),c),f=!1,g,w=(h,y)=>{f=!0,g=y,clearTimeout(p),p=setTimeout(()=>s.abort(),l)},u=Ee({wallets:r,preferredNetwork:i.network.caip2,maxAmountAtomic:o.maxAmountAtomic,fetch:globalThis.fetch,onPaymentDispatched:w}),A=e.signal?AbortSignal.any([e.signal,s.signal]):s.signal,m={method:e.method??"GET",headers:e.headers,signal:A};typeof e.body=="string"&&(m.body=e.body);try{let h=await u.fetch(n,m);if(clearTimeout(p),!h.ok)return{ok:!1,...await We(h)};let y,S=h.headers.get("PAYMENT-RESPONSE");if(S)try{let P=vt(S);P&&typeof P.transaction=="string"&&(y=P.transaction)}catch{}return{ok:!0,paid:!0,response:h,amountPaid:i.amount,network:i.network,txSignature:y}}catch(h){clearTimeout(p);let y=h;if(y?.name==="AbortError"){if(!f)return{ok:!1,reason:"timeout"};let S=await rt(g,i.network,o.solanaRpcUrl);return S.confirmed?{ok:!0,paid:!0,response:void 0,amountPaid:i.amount,network:i.network,txSignature:S.txSignature}:{ok:!1,reason:"payment_unconfirmed",detail:S.detail}}return{ok:!1,reason:"error",detail:y?.message??String(h)}}}};var _t=require("viem");var cn={TransferWithAuthorization:[{name:"from",type:"address"},{name:"to",type:"address"},{name:"value",type:"uint256"},{name:"validAfter",type:"uint256"},{name:"validBefore",type:"uint256"},{name:"nonce",type:"bytes32"}]};async function ln(){let n=globalThis.crypto??(await import("crypto")).webcrypto,e=new Uint8Array(32);return n.getRandomValues(e),"0x"+Array.from(e,t=>t.toString(16).padStart(2,"0")).join("")}async function un(n,e,t){if(typeof n.signTypedData!="function")throw new Error("EVM wallet does not support signTypedData");let r=Math.floor(Date.now()/1e3),o=String(r-600),a=String(r+(e.maxTimeoutSeconds??60)),i={from:n.address,to:e.payTo,value:e.amount,validAfter:o,validBefore:a,nonce:await ln()},c=$e[e.network.caip2];if(c===void 0)throw new Error(`unknown chain id for network ${e.network.caip2}`);let l=e.extra,s=await n.signTypedData({domain:{name:l.name,version:l.version,chainId:c,verifyingContract:(0,_t.getAddress)(e.asset)},types:cn,primaryType:"TransferWithAuthorization",message:i});return{payment:{x402Version:1,scheme:e.scheme,network:t,payload:{signature:s,authorization:i}},settlementProbe:{kind:"eip3009",from:i.from,nonce:i.nonce,asset:e.asset,chainId:c}}}async function Le(n,e,t){try{let r;for(let o of n.options){let a=o.network.family==="evm"&&!!e.evm||o.network.family==="svm"&&!!e.solana;if(o.scheme!=="exact"){a&&(r=o.scheme);continue}if(o.network.family==="evm"&&e.evm){let i=await e.evm;return await pn(o,i,t)}if(o.network.family==="svm"&&e.solana){let i=await e.solana;return await mn(o,i,t)}}return r!==void 0?{ok:!1,reason:"merchant_rejected",detail:`v1 supports only the 'exact' scheme, got '${r}'`}:{ok:!1,reason:"unsupported_network"}}catch(r){return{ok:!1,reason:"error",detail:J(r)}}}async function pn(n,e,t){if(t.maxAmountAtomic!==void 0&&BigInt(n.amount)>BigInt(t.maxAmountAtomic))return{ok:!1,reason:"budget_exceeded"};let r=n.extra??{},o=r.name,a=r.version;if(typeof o!="string"||o.length===0||typeof a!="string"||a.length===0)return{ok:!1,reason:"merchant_rejected",detail:"v1 challenge missing exact-scheme EIP-712 domain (extra.name / extra.version)"};let i=n.network.bare,{payment:c,settlementProbe:l}=await un(e,n,i);return{ok:!0,headerValue:Buffer.from(JSON.stringify(c),"utf8").toString("base64"),option:n,settlementProbe:l}}async function mn(n,e,t){if(t.maxAmountAtomic!==void 0&&BigInt(n.amount)>BigInt(t.maxAmountAtomic))return{ok:!1,reason:"budget_exceeded"};if(n.scheme!=="exact")return{ok:!1,reason:"merchant_rejected",detail:`v1 SVM supports only the 'exact' scheme, got '${n.scheme}'`};let r=n.extra??{};if(typeof r.feePayer!="string"||r.feePayer.length===0)return{ok:!1,reason:"merchant_rejected",detail:"v1 SVM challenge missing extra.feePayer (required as the transaction fee payer)"};let o=n.network.bare,a={x402Version:1,scheme:n.scheme,network:o,asset:n.asset,payTo:n.payTo,amount:n.amount,maxAmountRequired:n.amount,maxTimeoutSeconds:n.maxTimeoutSeconds??60,extra:r},c=await L().buildTransaction(a,e,t.solanaRpcUrl),l={x402Version:1,scheme:n.scheme,network:o,payload:{transaction:c.serialized}};return{ok:!0,headerValue:Buffer.from(JSON.stringify(l),"utf8").toString("base64"),option:n,settlementProbe:c.settlementProbe}}function dn(n){let e=[];for(let t of n){if(!t||typeof t!="object")continue;let r=t,o=ae(String(r.network??""));o&&e.push({scheme:String(r.scheme??"exact"),network:o,amount:String(r.maxAmountRequired??r.amount??"0"),asset:String(r.asset??""),payTo:String(r.payTo??""),maxTimeoutSeconds:typeof r.maxTimeoutSeconds=="number"?r.maxTimeoutSeconds:void 0,extra:r.extra&&typeof r.extra=="object"?r.extra:void 0})}return e}var It={version:1,async parseChallenge(n){if(n.headers.get("payment-required"))return null;let e;try{e=await n.clone().json()}catch{return null}let t=Array.isArray(e.accepts)?e.accepts:[];if(t.length===0)return null;let r=dn(t);return r.length===0?null:{x402Version:1,options:r}},async pay(n,e,t,r,o){let a,i=new AbortController,c=!1,l,s;try{let p=o.timeoutMs??15e3;a=setTimeout(()=>i.abort(),p);let f=await Le(t,r,o);if(!f.ok)return{ok:!1,reason:f.reason,detail:f.detail};let g=f.headerValue,w=f.option;s=w,l=f.settlementProbe;let u=new Headers(e.headers??void 0);u.set("X-PAYMENT",g);let A=e.signal!=null?AbortSignal.any([e.signal,i.signal]):i.signal,m={method:e.method,headers:u,signal:A};typeof e.body=="string"&&(m.body=e.body),c=!0,clearTimeout(a);let h=o.responseTimeoutMs??12e4;a=setTimeout(()=>i.abort(),h);let y=await fetch(n,m);return y.ok?{ok:!0,paid:!0,response:y,amountPaid:w.amount,network:w.network,txSignature:fn(y)}:{ok:!1,...await We(y)}}catch(p){if(p instanceof Error&&p.name==="AbortError"){if(!c)return{ok:!1,reason:"timeout"};let f=await rt(l,s.network,o.solanaRpcUrl);return f.confirmed?{ok:!0,paid:!0,response:void 0,amountPaid:s.amount,network:s.network,txSignature:f.txSignature}:{ok:!1,reason:"payment_unconfirmed",detail:f.detail}}return{ok:!1,reason:"error",detail:J(p)}}finally{a!==void 0&&clearTimeout(a)}}};function fn(n){let e=n.headers.get("x-payment-response")??n.headers.get("X-PAYMENT-RESPONSE");if(e)try{let t=JSON.parse(Buffer.from(e,"base64").toString("utf8")),r=t.transaction??t.txHash??t.transactionHash;return typeof r=="string"?r:void 0}catch{return}}var Dt=Z(require("tweetnacl"),1);var V=require("@solana/web3.js"),ue=Symbol.for("x402:keypair");async function ot(n){let e;if(typeof n=="string"){let t;try{let r=await Promise.resolve().then(()=>(Ut(),Ot)),o=r.decode??r.default?.decode;if(!o)throw new Error("decode not found");t=o}catch{throw new Error('The "bs58" package is required for base58 private keys. Install it with: npm install bs58')}try{let r=t(n);e=V.Keypair.fromSecretKey(r)}catch{try{let o=JSON.parse(n);if(Array.isArray(o))e=V.Keypair.fromSecretKey(Uint8Array.from(o));else throw new Error("Invalid private key format")}catch{throw new Error("Invalid private key. Expected base58 string or JSON array of bytes.")}}}else if(Array.isArray(n))e=V.Keypair.fromSecretKey(Uint8Array.from(n));else if(n instanceof Uint8Array)e=V.Keypair.fromSecretKey(n);else throw new Error("Invalid private key type. Expected string, number[], or Uint8Array.");return{publicKey:{toBase58:()=>e.publicKey.toBase58()},signTransaction:async t=>{if(t instanceof V.VersionedTransaction)return t.sign([e]),t;if(t instanceof V.Transaction)return t.sign(e),t;throw new Error("Unknown transaction type")},[ue]:e}}function Bt(n){if(!n||typeof n!="object")return!1;let e=n;return ue in e&&e[ue]instanceof V.Keypair&&"publicKey"in e&&"signTransaction"in e}function Ve(n){let e=n.evm;if(e&&typeof e.signMessage=="function"&&typeof e.address=="string")return{address:e.address,signMessage:e.signMessage};let t=n.solana;if(t){let r=t[ue];if(r&&r.secretKey&&r.publicKey)return{publicKey:r.publicKey,signMessage:async o=>Dt.sign.detached(o,r.secretKey)}}return null}var Mt=[Ct,It];async function mt(n){for(let e of Mt)if(await e.parseChallenge(n.clone()))return e;return null}async function An(n){let e=Ve(n);if(!e)return fetch;try{return(await import("@x402/extensions/sign-in-with-x")).wrapFetchWithSIWx(fetch,e)}catch(t){return console.warn(`[x402] SIW-X unavailable \u2014 @x402/extensions failed to load; SIW-X merchants will not authenticate. ${J(t)}`),fetch}}async function dt(n,e,t,r){if(e.body!==void 0&&e.body!==null&&typeof e.body!="string")return{ok:!1,reason:"error",detail:"payAndFetch requires a string body; non-string bodies (Buffer, FormData, URLSearchParams, ReadableStream) cannot be safely re-sent on the paid retry"};let o;try{o=await(await An(t))(n,{...e})}catch(a){return{ok:!1,reason:"error",detail:J(a)}}if(o.status!==402)return{ok:!0,paid:!1,response:o};for(let a of Mt){let i=await a.parseChallenge(o.clone());if(i)return a.pay(n,e,i,t,r)}return{ok:!1,reason:"no_payment_options"}}async function at(n){let e;try{e=(await import("viem/accounts")).privateKeyToAccount}catch{throw new Error("EVM wallet support requires viem as a peer dependency. Install with: npm install viem")}let t=n.startsWith("0x")?n:`0x${n}`,r=e(t);return{address:r.address,signTypedData:o=>r.signTypedData(o),signTransaction:o=>r.signTransaction({to:o.to,data:o.data,chainId:o.chainId,gas:o.gas,gasPrice:o.gasPrice,nonce:o.nonce,type:"legacy"}),signMessage:o=>r.signMessage({message:o.message})}}function $t(n){if(!n||typeof n!="object")return!1;let e=n;return"address"in e&&typeof e.address=="string"&&e.address.startsWith("0x")&&"signTypedData"in e&&typeof e.signTypedData=="function"}function st(n){let e=Ze(n);if(e?.extensions?.["sponsored-access"])return e.extensions["sponsored-access"]}function Kt(n){let e=st(n);if(e?.recommendations?.length)return e.recommendations}async function Wt(n){let t=st(n)?.tracking?.impressionBeacon;if(!t)return!1;try{await fetch(t,{method:"GET"})}catch{}return!0}function it(n,e){let{walletPrivateKey:t,evmPrivateKey:r,preferredNetwork:o,rpcUrls:a,maxAmountAtomic:i,verbose:c,accessPass:l,onPaymentRequired:s}=e;if(!t&&!r)throw new Error("At least one wallet private key is required (walletPrivateKey or evmPrivateKey)");let p={},f=[];t&&f.push(ot(t).then(m=>{p.solana=m}).catch(m=>{console.warn(`[x402] Solana wallet init failed: ${m.message}`)})),r&&f.push(at(r).then(m=>{p.evm=m}).catch(m=>{console.warn(`[x402] EVM wallet init failed: ${m.message}`)}));let g=f.length>0?Promise.all(f):null,u=Ee({wallets:p,preferredNetwork:o,rpcUrls:a,maxAmountAtomic:i,fetch:n,verbose:c,accessPass:l,onPaymentRequired:s}),A=u.fetch.bind(u);return g?(async(m,h)=>(await g,A(m,h))):A}function Lt(n){let{budget:e,allowedDomains:t,onPaymentRequired:r,...o}=n,a=parseFloat(e.total),i=e.perRequest?parseFloat(e.perRequest):1/0,c=e.perHour?parseFloat(e.perHour):1/0;if(isNaN(a)||a<=0)throw new Error("budget.total must be a positive number");let l=[],s=0;function p(){return l.reduce((u,A)=>u+A.amount,0)}function f(){let u=Date.now()-36e5;return l.filter(A=>A.timestamp>=u).reduce((A,m)=>A+m.amount,0)}let g=it(fetch,{...o,onPaymentRequired:async u=>{let A=u.extra?.decimals??6,m=Number(u.amount)/Math.pow(10,A);if(m>i)throw new C("amount_exceeds_max",`$${m.toFixed(4)} exceeds per-request limit of $${i.toFixed(2)}`);let h=p();if(h+m>a)throw new C("amount_exceeds_max",`Budget exceeded. Spent $${h.toFixed(2)} of $${a.toFixed(2)}, payment: $${m.toFixed(4)}`);let y=f();if(y+m>c)throw new C("amount_exceeds_max",`Hourly limit ($${c.toFixed(2)}) exceeded. Spent $${y.toFixed(2)} this hour`);return s=m,r?r(u):!0}});return{fetch:(async(u,A)=>{let m=typeof u=="string"?u:u instanceof URL?u.href:u.url,h="unknown";try{h=new URL(m).hostname}catch{}if(t&&!t.some(S=>h===S||h.endsWith(`.${S}`)))throw new C("payment_rejected",`Domain "${h}" not in allowed domains`);s=0;let y=await g(u,A);if(s>0){let S="unknown",P=y.headers.get("PAYMENT-RESPONSE");if(P)try{S=JSON.parse(atob(P)).network||S}catch{}l.push({amount:s,domain:h,network:S,timestamp:Date.now()}),s=0}return y}),get spent(){return`$${p().toFixed(2)}`},get remaining(){return`$${(a-p()).toFixed(2)}`},get payments(){return l.length},get spentAmount(){return p()},get remainingAmount(){return a-p()},get ledger(){return l},get hourlySpend(){return f()},reset(){l=[]}}}var ft=require("@dexterai/x402-core");0&&(module.exports={BASE_MAINNET,DEXTER_FACILITATOR_URL,KEYPAIR_SYMBOL,SOLANA_MAINNET,USDC_MINT,X402Error,buildV1PaymentHeader,capabilitySearch,createBudgetAccount,createEvmAdapter,createEvmKeypairWallet,createKeypairWallet,createSolanaAdapter,createX402Client,detectStrategy,fireImpressionBeacon,getPaymentReceipt,getSponsoredAccessInfo,getSponsoredRecommendations,isEvmKeypairWallet,isKeypairWallet,payAndFetch,toNetworkRef,toSiwxSigner,wrapFetch});
package/dist/client/index.d.cts CHANGED
@@ -1,6 +1,6 @@
1
1
  import { W as WalletSet, S as SettlementProbe, a as SolanaWallet, E as EvmWallet, A as AccessPassClientConfig, P as PaymentAccept } from '../types-xQu1U4xk.cjs';
2
2
  export { e as AccessPassInfo, d as AccessPassTier, C as ChainAdapter, X as X402Error, b as createEvmAdapter, c as createSolanaAdapter } from '../types-xQu1U4xk.cjs';
3
- import { T as Tab } from '../types-D1HhKTg7.cjs';
3
+ import { T as Tab } from '../types-DEnVPFxF.cjs';
4
4
  import { SIWxSigner } from '@x402/extensions/sign-in-with-x';
5
5
  import { Keypair } from '@solana/web3.js';
6
6
  export { P as PaymentReceipt, d as X402Client, X as X402ClientConfig, c as createX402Client, f as fireImpressionBeacon, b as getPaymentReceipt, a as getSponsoredAccessInfo, g as getSponsoredRecommendations } from '../x402-client-DmRbvqoc.cjs';
package/dist/client/index.d.ts CHANGED
@@ -1,6 +1,6 @@
1
1
  import { W as WalletSet, S as SettlementProbe, a as SolanaWallet, E as EvmWallet, A as AccessPassClientConfig, P as PaymentAccept } from '../types-xQu1U4xk.js';
2
2
  export { e as AccessPassInfo, d as AccessPassTier, C as ChainAdapter, X as X402Error, b as createEvmAdapter, c as createSolanaAdapter } from '../types-xQu1U4xk.js';
3
- import { T as Tab } from '../types-D1HhKTg7.js';
3
+ import { T as Tab } from '../types-DEnVPFxF.js';
4
4
  import { SIWxSigner } from '@x402/extensions/sign-in-with-x';
5
5
  import { Keypair } from '@solana/web3.js';
6
6
  export { P as PaymentReceipt, d as X402Client, X as X402ClientConfig, c as createX402Client, f as fireImpressionBeacon, b as getPaymentReceipt, a as getSponsoredAccessInfo, g as getSponsoredRecommendations } from '../x402-client-Ug0vrj74.js';
package/dist/client/index.js CHANGED
@@ -1 +1 @@
1
- var Ut=Object.defineProperty;var ut=(n,e)=>()=>(n&&(e=n(n=0)),e);var Bt=(n,e)=>{for(var t in e)Ut(n,t,{get:e[t],enumerable:!0})};function sn(n){if(n.length>=255)throw new TypeError("Alphabet too long");let e=new Uint8Array(256);for(let s=0;s<e.length;s++)e[s]=255;for(let s=0;s<n.length;s++){let p=n.charAt(s),f=p.charCodeAt(0);if(e[f]!==255)throw new TypeError(p+" is ambiguous");e[f]=s}let t=n.length,r=n.charAt(0),o=Math.log(t)/Math.log(256),a=Math.log(256)/Math.log(t);function i(s){if(s instanceof Uint8Array||(ArrayBuffer.isView(s)?s=new Uint8Array(s.buffer,s.byteOffset,s.byteLength):Array.isArray(s)&&(s=Uint8Array.from(s))),!(s instanceof Uint8Array))throw new TypeError("Expected Uint8Array");if(s.length===0)return"";let p=0,f=0,g=0,w=s.length;for(;g!==w&&s[g]===0;)g++,p++;let u=(w-g)*a+1>>>0,A=new Uint8Array(u);for(;g!==w;){let y=s[g],S=0;for(let P=u-1;(y!==0||S<f)&&P!==-1;P--,S++)y+=256*A[P]>>>0,A[P]=y%t>>>0,y=y/t>>>0;if(y!==0)throw new Error("Non-zero carry");f=S,g++}let m=u-f;for(;m!==u&&A[m]===0;)m++;let h=r.repeat(p);for(;m<u;++m)h+=n.charAt(A[m]);return h}function c(s){if(typeof s!="string")throw new TypeError("Expected String");if(s.length===0)return new Uint8Array;let p=0,f=0,g=0;for(;s[p]===r;)f++,p++;let w=(s.length-p)*o+1>>>0,u=new Uint8Array(w);for(;p<s.length;){let y=s.charCodeAt(p);if(y>255)return;let S=e[y];if(S===255)return;let P=0;for(let k=w-1;(S!==0||P<g)&&k!==-1;k--,P++)S+=t*u[k]>>>0,u[k]=S%256>>>0,S=S/256>>>0;if(S!==0)throw new Error("Non-zero carry");g=P,p++}let A=w-g;for(;A!==w&&u[A]===0;)A++;let m=new Uint8Array(f+(w-A)),h=f;for(;A!==w;)m[h++]=u[A++];return m}function l(s){let p=c(s);if(p)return p;throw new Error("Non-base"+t+" character")}return{encode:i,decodeUnsafe:c,decode:l}}var Rt,vt=ut(()=>{"use strict";Rt=sn});var Ct={};Bt(Ct,{default:()=>ln});var cn,ln,_t=ut(()=>{"use strict";vt();cn="123456789ABCDEFGHJKLMNPQRSTUVWXYZabcdefghijkmnopqrstuvwxyz",ln=Rt(cn)});var pt=[{caip2:"eip155:8453",bare:"base",family:"evm"},{caip2:"eip155:1",bare:"ethereum",family:"evm"},{caip2:"eip155:137",bare:"polygon",family:"evm"},{caip2:"eip155:42161",bare:"arbitrum",family:"evm"},{caip2:"eip155:10",bare:"optimism",family:"evm"},{caip2:"eip155:43114",bare:"avalanche",family:"evm"},{caip2:"eip155:56",bare:"bsc",family:"evm"},{caip2:"solana:5eykt4UsFv8P8NJdTREpY1vzqKqZKvdp",bare:"solana",family:"svm"}],Dt=new Map(pt.map(n=>[n.caip2.toLowerCase(),n])),Mt=new Map(pt.map(n=>[n.bare.toLowerCase(),n]));function le(n){if(!n)return null;let e=n.toLowerCase(),t=Dt.get(e)||Mt.get(e);return t?{caip2:t.caip2,bare:t.bare,family:t.family}:null}var be="solana:5eykt4UsFv8P8NJdTREpY1vzqKqZKvdp",$e="solana:EtWTRABZaYq6iMfeYKouRu166VU2xqa1",Ke="solana:4uhcVJyU9pJkvQyS88uRDiswHXSCkY3z",J=be,xe=$e,Ee=Ke,ee="eip155:8453",ue="eip155:84532",pe="eip155:42161",me="eip155:137",de="eip155:10",fe="eip155:43114",ge="eip155:56",ye="eip155:1187947933",he="eip155:324705682",Ae="eip155:1",z=ee,We=ue,Te=pe,Pe=me,Re=de,ve=fe,Ce=ge,_e=ye,Ie=he,Ne=Ae,Le="EPjFWdd5AufqSSqeM2qN1xzybapC8G4wEGGkZwyTDt1v",mt="4zMMC9srt5Ri5X14GAgXhaHii3GnPAEERYPJgZJDncDU",dt="0x833589fCD6eDb6E08f4c7C32D4f71b54bdA02913",et="0x55d398326f99059fF775485246999027B3197955",Ve="0x8AC76a51cc950d9822D68b83fE1Ad97B32Cd580d",Fe={[ge]:Ve,[ee]:dt,[ue]:"0x036CbD53842c5426634e7929541eC2318f3dCF7e",[pe]:"0xaf88d065e77c8cC2239327C5EDb3A432268e5831",[me]:"0x3c499c542cEF5E3811e1192ce70d8cC03d5c3359",[de]:"0x0b2C639c533813f4Aa9D7837CAf62653d097Ff85",[fe]:"0xB97EF9Ef8734C71904D8002F8b6Bc66Dd9c48a6E",[ye]:"0x85889c8c714505E0c94b30fcfcF64fE3Ac8FCb20",[he]:"0x2e08028E3C4c2356572E096d8EF835cD5C6030bD",[Ae]:"0xA0b86991c6218b36c1d19D4a2e9Eb0cE3606eB48"},qe={[et]:{symbol:"USDT",decimals:18},[Ve]:{symbol:"USDC",decimals:18}};var Y="0x000000000022D473030F116dDEE9F6B43aC78BA3",ke="0x402085c248EeA27D92E8b30b2C58ed07f9E20001",Oe={[ge]:56,[ee]:8453,[ue]:84532,[pe]:42161,[me]:137,[de]:10,[fe]:43114,[ye]:1187947933,[he]:324705682,[Ae]:1},te={[be]:"https://api.dexter.cash/api/solana/rpc",[$e]:"https://api.devnet.solana.com",[Ke]:"https://api.testnet.solana.com"},U={[ge]:"https://api.dexter.cash/api/evm/bsc/rpc",[ee]:"https://api.dexter.cash/api/base/rpc",[ue]:"https://sepolia.base.org",[pe]:"https://api.dexter.cash/api/evm/arbitrum/rpc",[me]:"https://api.dexter.cash/api/evm/polygon/rpc",[de]:"https://api.dexter.cash/api/evm/optimism/rpc",[fe]:"https://api.dexter.cash/api/evm/avalanche/rpc",[ye]:"https://skale-base.skalenodes.com/v1/base",[he]:"https://base-sepolia-testnet.skalenodes.com/v1/jubilant-horrible-ancha",[Ae]:"https://eth.llamarpc.com"},ft="https://x402.dexter.cash";var C=class n extends Error{code;details;constructor(e,t,r){super(t),this.name="X402Error",this.code=e,this.details=r,Object.setPrototypeOf(this,n.prototype)}};import{PublicKey as ne,Connection as tt,TransactionMessage as $t,VersionedTransaction as Kt,ComputeBudgetProgram as gt}from"@solana/web3.js";import{getAssociatedTokenAddress as nt,getAccount as Wt,createTransferCheckedInstruction as Lt,getMint as Vt,TOKEN_PROGRAM_ID as yt,TOKEN_2022_PROGRAM_ID as He}from"@solana/spl-token";var Ft=12e3,qt=1;function re(n){if(!n||typeof n!="object")return!1;let e=n;return"publicKey"in e&&"signTransaction"in e&&typeof e.signTransaction=="function"}var je=class{name="Solana";networks=[J,xe,Ee];config;log;constructor(e={}){this.config=e,this.log=e.verbose?console.log.bind(console,"[x402:solana]"):()=>{}}canHandle(e){return!!(this.networks.includes(e)||e==="solana"||e==="solana-devnet"||e==="solana-testnet"||e.startsWith("solana:"))}getDefaultRpcUrl(e){return this.config.rpcUrls?.[e]?this.config.rpcUrls[e]:te[e]?te[e]:e==="solana"?te[J]:e==="solana-devnet"?te[xe]:e==="solana-testnet"?te[Ee]:te[J]}getAddress(e){return re(e)?e.publicKey?.toBase58()??null:null}isConnected(e){return re(e)?e.publicKey!==null:!1}async getBalance(e,t,r){if(!re(t)||!t.publicKey)return 0;let o=r||this.getDefaultRpcUrl(e.network),a=new tt(o,"confirmed"),i=new ne(t.publicKey.toBase58()),c=new ne(e.asset);try{let s=(await a.getAccountInfo(c,"confirmed"))?.owner.toBase58()===He.toBase58()?He:yt,p=await nt(c,i,!1,s),f=await Wt(a,p,void 0,s),g=e.extra?.decimals??6;return Number(f.amount)/Math.pow(10,g)}catch(l){if(l&&typeof l=="object"&&"name"in l&&(l.name==="TokenAccountNotFoundError"||l.name==="TokenInvalidAccountOwnerError"))return 0;throw l}}async buildTransaction(e,t,r){if(!re(t))throw new Error("Invalid Solana wallet");if(!t.publicKey)throw new Error("Wallet not connected");let o=r||this.getDefaultRpcUrl(e.network),a=new tt(o,"confirmed"),i=new ne(t.publicKey.toBase58()),{payTo:c,asset:l,extra:s}=e,p=e.amount??e.maxAmountRequired;if(!p)throw new Error("Missing amount in payment requirements");if(!s?.feePayer)throw new Error("Missing feePayer in payment requirements");let f=new ne(s.feePayer),g=new ne(l),w=new ne(c);this.log("Building transaction:",{from:i.toBase58(),to:c,amount:p,asset:l,feePayer:s.feePayer});let u=[];u.push(gt.setComputeUnitLimit({units:Ft})),u.push(gt.setComputeUnitPrice({microLamports:qt}));let A=await a.getAccountInfo(g,"confirmed");if(!A)throw new Error(`Token mint ${l} not found`);let m=A.owner.toBase58()===He.toBase58()?He:yt,h=await Vt(a,g,void 0,m);typeof s?.decimals=="number"&&h.decimals!==s.decimals&&this.log(`Decimals mismatch: requirements say ${s.decimals}, mint says ${h.decimals}`);let y=await nt(g,i,!1,m),S=await nt(g,w,!0,m);if(!await a.getAccountInfo(y,"confirmed"))throw new Error(`No token account found for ${l}. Please ensure you have USDC in your wallet.`);if(!await a.getAccountInfo(S,"confirmed"))throw new Error(`Seller token account not found. The seller (${c}) must have a USDC account.`);let F=BigInt(p);u.push(Lt(y,g,S,i,F,h.decimals,[],m));let{blockhash:K}=await a.getLatestBlockhash("confirmed"),G=new $t({payerKey:f,recentBlockhash:K,instructions:u}).compileToV0Message(),D=new Kt(G),b=await t.signTransaction(D);return this.log("Transaction signed successfully"),{serialized:Buffer.from(b.serialize()).toString("base64"),settlementProbe:{kind:"solana",sourceAta:y.toBase58(),destinationAta:S.toBase58(),asset:l,amount:p,blockhash:K}}}async confirmSettlement(e,t){if(e.kind!=="solana")throw new Error(`SolanaAdapter.confirmSettlement cannot handle probe kind "${e.kind}"`);let r=new tt(t,"confirmed"),o=new ne(e.destinationAta),a=await r.getSignaturesForAddress(o,{limit:25});if(a.length===0)return{settled:!1};let i=BigInt(e.amount);for(let c of a){if(c.err)continue;let l=await r.getTransaction(c.signature,{commitment:"confirmed",maxSupportedTransactionVersion:0});if(!l?.meta)continue;let s=l.transaction.message.getAccountKeys().keySegments().flat(),p=l.meta.preTokenBalances??[],f=l.meta.postTokenBalances??[];for(let g of f){if(g.mint!==e.asset)continue;let w=s[g.accountIndex];if(!w||!w.equals(o))continue;let u=p.find(h=>h.accountIndex===g.accountIndex),A=BigInt(u?.uiTokenAmount.amount??"0");if(BigInt(g.uiTokenAmount.amount??"0")-A===i)return{settled:!0,txSignature:c.signature}}}return{settled:!1}}};function L(n){return new je(n)}var Ht={PermitWitnessTransferFrom:[{name:"permitted",type:"TokenPermissions"},{name:"spender",type:"address"},{name:"nonce",type:"uint256"},{name:"deadline",type:"uint256"},{name:"witness",type:"Witness"}],TokenPermissions:[{name:"token",type:"address"},{name:"amount",type:"uint256"}],Witness:[{name:"to",type:"address"},{name:"validAfter",type:"uint256"}]},ht=BigInt("0xffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff");function oe(n){if(!n||typeof n!="object")return!1;let e=n;return"address"in e&&typeof e.address=="string"&&e.address.startsWith("0x")}var Xe=class{name="EVM";networks=[Ce,z,We,Ne,Te,Pe,Re,ve,_e,Ie];config;log;constructor(e={}){this.config=e,this.log=e.verbose?console.log.bind(console,"[x402:evm]"):()=>{}}canHandle(e){return!!(this.networks.includes(e)||e==="base"||e==="bsc"||e==="ethereum"||e==="arbitrum"||e==="polygon"||e==="optimism"||e==="avalanche"||e==="skale-base"||e==="skale-base-sepolia"||e.startsWith("eip155:"))}getDefaultRpcUrl(e){return this.config.rpcUrls?.[e]?this.config.rpcUrls[e]:U[e]?U[e]:e==="base"?U[z]:e==="bsc"?U[Ce]:e==="ethereum"?U[Ne]:e==="arbitrum"?U[Te]:e==="polygon"?U[Pe]:e==="optimism"?U[Re]:e==="avalanche"?U[ve]:e==="skale-base"?U[_e]:e==="skale-base-sepolia"?U[Ie]:U[z]}getAddress(e){return oe(e)?e.address:null}isConnected(e){return oe(e)?!!e.address:!1}getChainId(e){if(Oe[e])return Oe[e];if(e.startsWith("eip155:")){let t=e.split(":")[1];return parseInt(t,10)}return e==="base"?8453:e==="bsc"?56:e==="ethereum"?1:e==="arbitrum"?42161:8453}async getBalance(e,t,r){if(!oe(t)||!t.address)return 0;let o=r||this.getDefaultRpcUrl(e.network);try{let a=this.encodeBalanceOf(t.address),i=await fetch(o,{method:"POST",headers:{"Content-Type":"application/json"},body:JSON.stringify({jsonrpc:"2.0",id:1,method:"eth_call",params:[{to:e.asset,data:a},"latest"]})});if(!i.ok)throw new Error(`RPC request failed: ${i.status}`);let c=await i.json();if(c.error)throw new Error(`RPC error: ${JSON.stringify(c.error)}`);if(!c.result||c.result==="0x")return 0;let l=BigInt(c.result),s=e.extra?.decimals??6;return Number(l)/Math.pow(10,s)}catch(a){throw a}}encodeBalanceOf(e){let t="0x70a08231",r=e.slice(2).toLowerCase().padStart(64,"0");return t+r}async confirmSettlement(e,t){if(e.kind==="eip3009"){let r="0xe94a0102",o=e.from.slice(2).toLowerCase().padStart(64,"0"),a=e.nonce.slice(2).toLowerCase().padStart(64,"0"),i=r+o+a,c=await this.ethCall(t,e.asset,i);return{settled:BigInt(c)!==0n}}if(e.kind==="permit2"){let r="0x4fe02b44",o=BigInt(e.nonce),a=o>>8n,i=o&0xffn,c=e.from.slice(2).toLowerCase().padStart(64,"0"),l=a.toString(16).padStart(64,"0"),s=r+c+l,p=await this.ethCall(t,Y,s);return{settled:(BigInt(p)>>i&1n)===1n}}throw new Error(`EvmAdapter.confirmSettlement cannot handle probe kind "${e.kind}"`)}async ethCall(e,t,r){let o=await fetch(e,{method:"POST",headers:{"Content-Type":"application/json"},body:JSON.stringify({jsonrpc:"2.0",id:1,method:"eth_call",params:[{to:t,data:r},"latest"]})});if(!o.ok)throw new Error(`RPC request failed: ${o.status}`);let a=await o.json();if(a.error)throw new Error(`RPC error: ${JSON.stringify(a.error)}`);if(!a.result||a.result==="0x")throw new Error("RPC returned an empty result");return a.result}async buildTransaction(e,t,r){if(!oe(t))throw new Error("Invalid EVM wallet");if(!t.address)throw new Error("Wallet not connected");if(e.scheme==="exact-approval")return this.buildApprovalTransaction(e,t,r);if(e.extra?.assetTransferMethod==="permit2")return this.buildPermit2Transaction(e,t,r);let{payTo:o,asset:a,extra:i}=e,c=e.amount??e.maxAmountRequired;if(!c)throw new Error("Missing amount in payment requirements");this.log("Building EVM transaction:",{from:t.address,to:o,amount:c,asset:a,network:e.network});let l=this.getChainId(e.network),s={name:i?.name??"USD Coin",version:i?.version??"2",chainId:BigInt(l),verifyingContract:a},p={TransferWithAuthorization:[{name:"from",type:"address"},{name:"to",type:"address"},{name:"value",type:"uint256"},{name:"validAfter",type:"uint256"},{name:"validBefore",type:"uint256"},{name:"nonce",type:"bytes32"}]},f=new Uint8Array(32);(globalThis.crypto??(await import("crypto")).webcrypto).getRandomValues(f);let g="0x"+[...f].map(y=>y.toString(16).padStart(2,"0")).join(""),w=Math.floor(Date.now()/1e3),u={from:t.address,to:o,value:c,validAfter:String(w-600),validBefore:String(w+(e.maxTimeoutSeconds||60)),nonce:g},A={from:t.address,to:o,value:BigInt(c),validAfter:BigInt(w-600),validBefore:BigInt(w+(e.maxTimeoutSeconds||60)),nonce:g};if(!t.signTypedData)throw new Error("Wallet does not support signTypedData (EIP-712)");let m=await t.signTypedData({domain:s,types:p,primaryType:"TransferWithAuthorization",message:A});return this.log("EIP-712 signature obtained"),{serialized:JSON.stringify({authorization:u,signature:m}),signature:m,settlementProbe:{kind:"eip3009",from:t.address,nonce:g,asset:a,chainId:l}}}async buildApprovalTransaction(e,t,r){let{payTo:o,asset:a,extra:i}=e,c=e.amount??e.maxAmountRequired;if(!c)throw new Error("Missing amount in payment requirements");let l=i?.facilitatorContract;if(!l)throw new Error("exact-approval scheme requires extra.facilitatorContract from the facilitator. The /supported endpoint should provide this.");if(!t.signTypedData)throw new Error("Wallet does not support signTypedData (EIP-712)");this.log("Building approval-based transaction:",{from:t.address,to:o,amount:c,asset:a,network:e.network,facilitatorContract:l});let s=r||this.getDefaultRpcUrl(e.network),p=i?.fee??"0",f=BigInt(c)+BigInt(p),g=await this.readAllowance(s,a,t.address,l);if(g<f){if(!t.sendTransaction)throw new Error("BSC payments require a wallet that supports sendTransaction for the one-time token approval. Use createEvmKeypairWallet() or a browser wallet with transaction support.");let D=this.calculateApprovalAmount(c,p,i?.approvalStrategy);this.log(`Approving ${D} for ${l} (current allowance: ${g})`);let b=await t.sendTransaction({to:a,data:this.encodeApprove(l,D),value:0n});this.log(`Approval tx sent: ${b}`),await this.waitForReceipt(s,b),this.log("Approval confirmed")}else this.log("Sufficient allowance, skipping approval");let w=new Uint8Array(16);(globalThis.crypto??(await import("crypto")).webcrypto).getRandomValues(w);let u=[...w].reduce((D,b)=>D*256n+BigInt(b),0n).toString(),A=new Uint8Array(32);(globalThis.crypto??(await import("crypto")).webcrypto).getRandomValues(A);let m="0x"+[...A].map(D=>D.toString(16).padStart(2,"0")).join(""),y=Math.floor(Date.now()/1e3)+(e.maxTimeoutSeconds||300),S=i?.eip712Domain,P=S?{name:S.name,version:S.version,chainId:BigInt(S.chainId),verifyingContract:S.verifyingContract}:{name:"DexterBSCFacilitator",version:"1",chainId:BigInt(this.getChainId(e.network)),verifyingContract:l},k=i?.eip712Types??{Payment:[{name:"from",type:"address"},{name:"to",type:"address"},{name:"token",type:"address"},{name:"amount",type:"uint256"},{name:"fee",type:"uint256"},{name:"nonce",type:"uint256"},{name:"deadline",type:"uint256"},{name:"paymentId",type:"bytes32"}]},F={from:t.address,to:o,token:a,amount:BigInt(c),fee:BigInt(p),nonce:BigInt(u),deadline:BigInt(y),paymentId:m},K=await t.signTypedData({domain:P,types:k,primaryType:"Payment",message:F});this.log("EIP-712 Payment signature obtained");let G={from:t.address,to:o,token:a,amount:c,fee:p,nonce:u,deadline:y,paymentId:m,signature:K};return{serialized:JSON.stringify(G),signature:K}}async buildPermit2Transaction(e,t,r){let{payTo:o,asset:a}=e,i=e.amount??e.maxAmountRequired;if(!i)throw new Error("Missing amount in payment requirements");if(!t.signTypedData)throw new Error("Wallet does not support signTypedData (EIP-712)");this.log("Building Permit2 transaction:",{from:t.address,to:o,amount:i,asset:a,network:e.network});let c=r||this.getDefaultRpcUrl(e.network),l=await this.readAllowance(c,a,t.address,Y),s;if(l<BigInt(i)){let P=this.encodeApprove(Y,ht);if(t.signTransaction){this.log(`Signing Permit2 approval for relay (current allowance: ${l})`);let k=this.getChainId(e.network),F=await this.readGasPrice(c),K=await this.readNonce(c,t.address),G=await t.signTransaction({to:a,data:P,chainId:k,gas:50000n,gasPrice:F,nonce:K});s={erc20ApprovalGasSponsoring:{info:{from:t.address,asset:a,spender:Y,amount:ht.toString(),signedTransaction:G,version:"1"}}},this.log("Permit2 approval signed for facilitator relay")}else if(t.sendTransaction){this.log(`Approving Permit2 directly (current allowance: ${l})`);let k=await t.sendTransaction({to:a,data:P,value:0n});this.log(`Permit2 approval tx sent: ${k}`),await this.waitForReceipt(c,k),this.log("Permit2 approval confirmed")}else throw new Error("Permit2 payments require a wallet that supports signTransaction or sendTransaction for the one-time Permit2 approval. Use createEvmKeypairWallet() or a browser wallet with transaction support.")}else this.log("Sufficient Permit2 allowance, skipping approval");let p=new Uint8Array(32);(globalThis.crypto??(await import("crypto")).webcrypto).getRandomValues(p);let f=[...p].reduce((P,k)=>P*256n+BigInt(k),0n),g=Math.floor(Date.now()/1e3),w=g-600,u=g+(e.maxTimeoutSeconds||300),A=this.getChainId(e.network),m={name:"Permit2",chainId:BigInt(A),verifyingContract:Y},h={permitted:{token:a,amount:BigInt(i)},spender:ke,nonce:f,deadline:BigInt(u),witness:{to:o,validAfter:BigInt(w)}},y=await t.signTypedData({domain:m,types:Ht,primaryType:"PermitWitnessTransferFrom",message:h});this.log("Permit2 PermitWitnessTransferFrom signature obtained");let S={signature:y,permit2Authorization:{from:t.address,permitted:{token:a,amount:i},spender:ke,nonce:f.toString(),deadline:String(u),witness:{to:o,validAfter:String(w)}}};return{serialized:JSON.stringify(S),signature:y,extensions:s,settlementProbe:{kind:"permit2",from:t.address,nonce:f.toString(),chainId:A}}}async readAllowance(e,t,r,o){let a="0xdd62ed3e",i=r.slice(2).toLowerCase().padStart(64,"0"),c=o.slice(2).toLowerCase().padStart(64,"0"),l=a+i+c;try{let p=await(await fetch(e,{method:"POST",headers:{"Content-Type":"application/json"},body:JSON.stringify({jsonrpc:"2.0",id:1,method:"eth_call",params:[{to:t,data:l},"latest"]})})).json();return p.error||!p.result||p.result==="0x"?0n:BigInt(p.result)}catch{return 0n}}encodeApprove(e,t){let r="0x095ea7b3",o=e.slice(2).toLowerCase().padStart(64,"0"),a=t.toString(16).padStart(64,"0");return r+o+a}async waitForReceipt(e,t,r=3e4){let o=Date.now();for(;Date.now()-o<r;){try{let i=await(await fetch(e,{method:"POST",headers:{"Content-Type":"application/json"},body:JSON.stringify({jsonrpc:"2.0",id:1,method:"eth_getTransactionReceipt",params:[t]})})).json();if(i.result){if(i.result.status==="0x0")throw new Error(`Approval transaction reverted: ${t}`);return}}catch(a){if(a instanceof Error&&a.message.includes("reverted"))throw a}await new Promise(a=>setTimeout(a,2e3))}throw new Error(`Approval transaction receipt timeout after ${r}ms: ${t}`)}async readGasPrice(e){try{let r=await(await fetch(e,{method:"POST",headers:{"Content-Type":"application/json"},body:JSON.stringify({jsonrpc:"2.0",id:1,method:"eth_gasPrice",params:[]})})).json();return r.result?BigInt(r.result):50000000n}catch{return 50000000n}}async readNonce(e,t){try{let o=await(await fetch(e,{method:"POST",headers:{"Content-Type":"application/json"},body:JSON.stringify({jsonrpc:"2.0",id:1,method:"eth_getTransactionCount",params:[t,"latest"]})})).json();return o.result?parseInt(o.result,16):0}catch{return 0}}calculateApprovalAmount(e,t,r){let o=BigInt(e)+BigInt(t);if(!r||r.mode==="exact")return o;let a=BigInt(r.defaultMultiple??10),i=o*a;if(r.maxCapUsd){let c=this.inferDecimals(e),l=BigInt(Math.floor(r.maxCapUsd*Math.pow(10,c)));if(i>l)return l}if(r.exactAboveUsd){let c=this.inferDecimals(e),l=BigInt(Math.floor(r.exactAboveUsd*Math.pow(10,c)));if(BigInt(e)>l)return o}return i}inferDecimals(e){return e.length>12?18:6}};function ae(n){return new Xe(n)}function rt(n){if(n===Le||n===mt)return!0;let e=n.toLowerCase();for(let t of Object.values(Fe))if(t.toLowerCase()===e)return!0;for(let t of Object.keys(qe))if(t.toLowerCase()===e)return!0;return!1}function jt(n){return{[be]:"Solana",[$e]:"Solana Devnet",[Ke]:"Solana Testnet",solana:"Solana","solana-devnet":"Solana Devnet","solana-testnet":"Solana Testnet",[ee]:"Base",[ue]:"Base Sepolia",[Ae]:"Ethereum",[pe]:"Arbitrum",[me]:"Polygon",[de]:"Optimism",[fe]:"Avalanche",[ge]:"BSC",[ye]:"SKALE Base",[he]:"SKALE Base Sepolia",base:"Base","base-sepolia":"Base Sepolia",ethereum:"Ethereum",arbitrum:"Arbitrum",polygon:"Polygon",optimism:"Optimism",avalanche:"Avalanche",bsc:"BSC","skale-base":"SKALE Base","skale-base-sepolia":"SKALE Base Sepolia"}[n]||n}function At(n,e){let t=jt(n);return t===n?e:t}async function Xt(n,e){if(typeof n=="string")return[n,e];if(n instanceof URL)return[n.href,e];let t=n,r=new Headers(t.headers);e?.headers&&new Headers(e.headers).forEach((i,c)=>r.set(c,i));let o={method:e?.method??t.method,headers:r,signal:e?.signal??t.signal,redirect:e?.redirect??t.redirect,credentials:e?.credentials??t.credentials},a=(o.method??"GET").toUpperCase();return e&&"body"in e?o.body=e.body:a!=="GET"&&a!=="HEAD"&&t.body&&(o.body=await t.arrayBuffer()),[t.url,o]}var St=new WeakMap;function ot(n){return St.get(n)}function Ue(n){let{adapters:e=[L({verbose:n.verbose}),ae({verbose:n.verbose})],wallets:t,wallet:r,preferredNetwork:o,rpcUrls:a={},maxAmountAtomic:i,fetch:c=globalThis.fetch,verbose:l=!1,accessPass:s,onPaymentRequired:p,onPaymentDispatched:f,maxRetries:g=0,retryDelayMs:w=500}=n,u=l?console.log.bind(console,"[x402]"):()=>{};async function A(b,T){let R;for(let x=0;x<=g;x++)try{let v=await c(b,T);if(v.status>=502&&v.status<=504&&x<g){u(`Retry ${x+1}/${g}: server returned ${v.status}`),await new Promise(_=>setTimeout(_,w*Math.pow(2,x)));continue}return v}catch(v){R=v,x<g&&(u(`Retry ${x+1}/${g}: ${v instanceof Error?v.message:"network error"}`),await new Promise(_=>setTimeout(_,w*Math.pow(2,x))))}throw R}let m=new Map;function h(b){try{let T=new URL(b).host,R=m.get(T);if(R&&R.expiresAt>Date.now()/1e3+10)return R.jwt;R&&m.delete(T)}catch{}return null}function y(b,T){try{let R=new URL(b).host,x=T.split(".");if(x.length===3){let v=JSON.parse(atob(x[1].replace(/-/g,"+").replace(/_/g,"/"))),_=Math.floor(Date.now()/1e3),I=_+86400,M=Math.min(typeof v.exp=="number"?v.exp:_,I);m.set(R,{jwt:T,expiresAt:M}),u("Access pass cached for",R,"| expires:",new Date(M*1e3).toISOString())}}catch{u("Failed to cache access pass")}}let S=t||{};r&&!S.solana&&re(r)&&(S.solana=r),r&&!S.evm&&oe(r)&&(S.evm=r);function P(b){let T=[];for(let R of b){let x=R.scheme??"exact";if(x!=="exact"&&x!=="exact-approval")continue;let v=e.find(I=>I.canHandle(R.network));if(!v)continue;let _;v.name==="Solana"?_=S.solana:v.name==="EVM"&&(_=S.evm),_&&v.isConnected(_)&&T.push({accept:R,adapter:v,wallet:_})}if(T.length===0)return null;if(o){let R=T.find(x=>x.accept.network===o);if(R)return R}return T[0]}function k(b,T){return At(b,T)}function F(b,T){return a[b]||T.getDefaultRpcUrl(b)}async function K(b,T,R,x,v){let _="";if(s?.preferTier&&x.tiers){let d=x.tiers.find(E=>E.id===s.preferTier);if(d){if(s.maxSpend&&parseFloat(d.price)>parseFloat(s.maxSpend))throw new C("access_pass_exceeds_max_spend",`Access pass tier "${d.id}" costs $${d.price}, exceeds max spend $${s.maxSpend}`);_=`tier=${d.id}`}}else if(s?.preferDuration&&x.ratePerHour)_=`duration=${s.preferDuration}`;else if(x.tiers&&x.tiers.length>0){let d=x.tiers[0];if(s?.maxSpend&&parseFloat(d.price)>parseFloat(s.maxSpend))throw new C("access_pass_exceeds_max_spend",`Cheapest access pass costs $${d.price}, exceeds max spend $${s?.maxSpend}`);_=`tier=${d.id}`}let I=_?v.includes("?")?`${v}&${_}`:`${v}?${_}`:v;u("Purchasing access pass:",_||"default tier");let M=R.headers.get("PAYMENT-REQUIRED");if(!M)return null;let B;try{B=JSON.parse(atob(M))}catch{return null}let O=P(B.accepts);if(!O)return null;let{accept:N,adapter:W,wallet:se}=O;if(W.name==="Solana"&&!N.extra?.feePayer)return null;let q=N.extra?.decimals??(rt(N.asset)?6:void 0);if(typeof q!="number")return null;let we=N.amount??N.maxAmountRequired;if(!we)return null;let H=F(N.network,W);try{let d=await W.getBalance(N,se,H),E=Number(we)/Math.pow(10,q);if(d<E){let Ze=k(N.network,W.name);throw new C("insufficient_balance",`Insufficient balance for access pass on ${Ze}. Have $${d.toFixed(4)}, need $${E.toFixed(4)}`)}}catch(d){if(d instanceof C)throw d}let j=await W.buildTransaction(N,se,H),ie;W.name==="EVM"?ie=JSON.parse(j.serialized):ie={transaction:j.serialized};let Q=typeof b=="string"?b:b instanceof URL?b.href:b.url,ce=B.resource;if(typeof B.resource=="string")try{let d=new URL(B.resource,Q);["http:","https:"].includes(d.protocol)&&(ce=d.toString())}catch{}else if(B.resource&&typeof B.resource=="object"&&"url"in B.resource){let d=B.resource;try{let E=new URL(d.url,Q);["http:","https:"].includes(E.protocol)&&(ce={...d,url:E.toString()})}catch{}}let Me={x402Version:N.x402Version??2,resource:ce,accepted:N,payload:ie};j.extensions&&(Me.extensions=j.extensions);let X=btoa(JSON.stringify(Me)),Z=await c(I,{...T,method:"POST",headers:{...T?.headers||{},"Content-Type":"application/json","PAYMENT-SIGNATURE":X}});if(!Z.ok)return u("Pass purchase failed:",Z.status),null;let $=Z.headers.get("ACCESS-PASS");return $&&(y(v,$),u("Access pass purchased and cached")),Z}async function G(b,T){let R=b;if(u("Making request:",R),s){let d=h(R);if(d){u("Using cached access pass");let E=await c(b,{...T,headers:{...T?.headers||{},Authorization:`Bearer ${d}`}});if(E.status!==401&&E.status!==402)return E;u("Cached pass rejected (status",E.status,"), purchasing new pass");try{m.delete(new URL(R).host)}catch{}}}let x=await A(b,T);if(x.status!==402)return x;u("Received 402 Payment Required");let v=x.headers.get("X-ACCESS-PASS-TIERS");if(s&&v){u("Server offers access passes, purchasing...");try{let d=JSON.parse(atob(v)),E=await K(b,T,x,d,R);if(E)return E}catch(d){u("Access pass purchase failed, falling back to per-request payment:",d)}}let _=x.headers.get("PAYMENT-REQUIRED");if(!_)throw new C("missing_payment_required_header","Server returned 402 but no PAYMENT-REQUIRED header");let I;try{let d=atob(_);I=JSON.parse(d)}catch{throw new C("invalid_payment_required","Failed to decode PAYMENT-REQUIRED header")}u("Payment requirements:",I);let M=x.headers.get("X-Quote-Hash");M&&u("Quote hash received:",M);let B=P(I.accepts);if(!B){let d=I.accepts.map(E=>E.network).join(", ");throw new C("no_matching_payment_option",`No connected wallet for any available network: ${d}`)}let{accept:O,adapter:N,wallet:W}=B;if(u(`Using ${N.name} for ${O.network}`),N.name==="Solana"&&!O.extra?.feePayer)throw new C("missing_fee_payer","Solana payment option missing feePayer in extra");let se=O.extra?.decimals??(rt(O.asset)?6:void 0);if(typeof se!="number")throw new C("missing_decimals","Payment option missing decimals - provide in extra or use a known stablecoin");let q=O.amount??O.maxAmountRequired;if(!q)throw new C("missing_amount","Payment option missing amount");if(i&&BigInt(q)>BigInt(i))throw new C("amount_exceeds_max",`Payment amount ${q} exceeds maximum ${i}`);let we=F(O.network,N);u("Checking balance...");try{let d=await N.getBalance(O,W,we),E=Number(q)/Math.pow(10,se);if(d<E){let Ze=k(O.network,N.name);throw new C("insufficient_balance",`Insufficient balance on ${Ze}. Have $${d.toFixed(4)}, need $${E.toFixed(4)}`)}u(`Balance OK: $${d.toFixed(4)} >= $${E.toFixed(4)}`)}catch(d){if(d instanceof C)throw d;u("Balance check failed (RPC error), proceeding with transaction attempt")}if(p&&!await p(O))throw new C("payment_rejected","Payment rejected by onPaymentRequired callback");u("Building transaction...");let H=await N.buildTransaction(O,W,we);u("Transaction signed");let j;N.name==="EVM"?j=JSON.parse(H.serialized):j={transaction:H.serialized};let ie=b,Q=I.resource;if(typeof I.resource=="string")try{let d=new URL(I.resource,ie).toString();d!==I.resource&&u("Resolved relative resource URL:",I.resource,"\u2192",d),Q=d}catch{Q=I.resource}else if(I.resource&&typeof I.resource=="object"&&"url"in I.resource){let d=I.resource;try{let E=new URL(d.url,ie).toString();E!==d.url&&(u("Resolved relative resource URL:",d.url,"\u2192",E),Q={...d,url:E})}catch{}}let ce={x402Version:O.x402Version??2,resource:Q,accepted:O,payload:j};H.extensions&&(ce.extensions=H.extensions);let Me=btoa(JSON.stringify(ce));if(f)try{f(O,H.settlementProbe)}catch{}u("Retrying request with payment...");let X=await A(b,{...T,headers:{...T?.headers||{},"PAYMENT-SIGNATURE":Me,...M?{"X-Quote-Hash":M}:{}}});if(u("Retry response status:",X.status),X.status===402){let d="unknown";try{let E=await X.clone().json();d=String(E.error||E.message||JSON.stringify(E)),u("Rejection reason:",d)}catch{}throw new C("payment_rejected",`Payment was rejected by the server: ${d}`)}let Z=X.headers.get("PAYMENT-RESPONSE"),$;if(Z)try{$=JSON.parse(atob(Z))}catch{}return $??={},$.amountAtomic=q,$.assetDecimals=se,St.set(X,$),$.extensions&&u("Settlement extensions:",Object.keys($.extensions).join(", ")),X}async function D(b,T){let[R,x]=await Xt(b,T);return G(R,x)}return{fetch:D}}import{PublicKey as cr}from"@solana/web3.js";import{bytesToHex as at}from"@noble/hashes/utils";import Qn from"tweetnacl";import{sessionRegisterMessage as Jn,sessionRevokeMessage as zn,voucherPayloadMessage as Jt,buildVoucherMessage as Yn}from"@dexterai/vault/messages";import{sha256 as tr}from"@noble/hashes/sha256";function wt(n){return Buffer.from(JSON.stringify({payload:n.payload,sessionPublicKey:at(n.sessionPublicKey),sessionRegistration:at(n.sessionRegistration),sessionSignature:at(n.sessionSignature)}),"utf8").toString("base64")}function V(n){if(n instanceof Error){if(n.message&&n.message.length>0)return n.message;if(n.name&&n.name.length>0)return n.name}let e=String(n);return e.length>0?e:"unknown error"}async function Be(n){let e="";try{e=(await n.clone().text()).slice(0,600)}catch{}let t=e.toLowerCase(),r=t.includes("settle")||t.includes("facilitator"),o=e;try{let a=JSON.parse(e),i=[a.error,a.detail,a.message].filter(c=>typeof c=="string"&&c.length>0);i.length>0&&(o=i.join(" \u2014 "))}catch{}return o||(o=`HTTP ${n.status}`),{reason:r?"settlement_failed":"merchant_rejected",detail:`merchant HTTP ${n.status}: ${o}`}}var Je="Payment authorization was sent, but the merchant did not respond within the timeout. ",ze=" Do not retry without checking \u2014 inspect the funding wallet for a transfer to the merchant before attempting payment again.";async function Ye(n,e,t){if(!n)return{confirmed:!1,detail:Je+"This payment scheme has no on-chain confirmation check, so the SDK cannot verify whether it settled."+ze};try{if(n.kind==="solana"){let i=L(),c=t??i.getDefaultRpcUrl(e.caip2);if(!i.confirmSettlement)return xt();let l=await i.confirmSettlement(n,c);return l.settled?{confirmed:!0,txSignature:l.txSignature}:bt()}let r=ae(),o=r.getDefaultRpcUrl(e.caip2);if(!r.confirmSettlement)return xt();let a=await r.confirmSettlement(n,o);return a.settled?{confirmed:!0,txSignature:a.txSignature}:bt()}catch(r){return{confirmed:!1,detail:Je+`On-chain confirmation could not be completed (${V(r)}).`+ze}}}function bt(){return{confirmed:!1,detail:Je+"On-chain confirmation found no matching settlement yet \u2014 the payment may still be pending, or may not have settled."+ze}}function xt(){return{confirmed:!1,detail:Je+"The chain adapter does not support on-chain confirmation."+ze}}var zt=new Set(["exact","exact-approval"]);async function Yt(n,e,t,r){let o;try{o=await r.signNextVoucher(t.amount)}catch{return null}let a=new Headers(e.headers??void 0);a.set("X-Tab-Voucher",wt(o));let i={method:e.method??"GET",headers:a};e.signal&&(i.signal=e.signal),typeof e.body=="string"&&(i.body=e.body);let c;try{c=await fetch(n,i)}catch(l){return{ok:!1,reason:"error",detail:l?.message??String(l)}}return c.status===402?(r.rollbackVoucher?.call(r,o),null):c.ok?{ok:!0,paid:!0,response:c,amountPaid:t.amount,network:t.network}:{ok:!1,...await Be(c)}}function Et(n){let e=n.replace(/-/g,"+").replace(/_/g,"/"),t=e+"=".repeat((4-(e.length%4||4))%4);return JSON.parse(Buffer.from(t,"base64").toString("utf8"))}function Gt(n){let e=[];for(let t of n){if(!t||typeof t!="object")continue;let r=t,o=le(String(r.network??""));o&&e.push({scheme:String(r.scheme??"exact"),network:o,amount:String(r.amount??r.maxAmountRequired??"0"),asset:String(r.asset??""),payTo:String(r.payTo??""),maxTimeoutSeconds:typeof r.maxTimeoutSeconds=="number"?r.maxTimeoutSeconds:void 0,extra:r.extra&&typeof r.extra=="object"?r.extra:void 0})}return e}var Tt={version:2,async parseChallenge(n){let e=n.headers.get("payment-required");if(!e)return null;let t;try{t=Et(e)}catch{return null}let r=Array.isArray(t.accepts)?t.accepts:[];return r.length===0?null:{x402Version:2,options:Gt(r),resourceUrl:t.resource&&typeof t.resource=="object"?String(t.resource.url??""):void 0}},async pay(n,e,t,r,o){if(o.tab){let h=t.options.find(y=>y.scheme==="tab"&&y.network.family==="svm"&&y.payTo===o.tab.counterparty);if(h){let y=await Yt(n,e,h,o.tab);if(y)return y}}let a=t.options.filter(h=>zt.has(h.scheme));if(a.length===0)return{ok:!1,reason:"no_payment_options",detail:`no generically payable scheme offered (got: ${t.options.map(h=>h.scheme).join(", ")})`};let i=a.find(h=>h.network.family==="evm"?!!r.evm:h.network.family==="svm"?!!r.solana:!1);if(!i)return{ok:!1,reason:"unsupported_network"};let c=o.timeoutMs??15e3,l=o.responseTimeoutMs??12e4,s=new AbortController,p=setTimeout(()=>s.abort(),c),f=!1,g,w=(h,y)=>{f=!0,g=y,clearTimeout(p),p=setTimeout(()=>s.abort(),l)},u=Ue({wallets:r,preferredNetwork:i.network.caip2,maxAmountAtomic:o.maxAmountAtomic,fetch:globalThis.fetch,onPaymentDispatched:w}),A=e.signal?AbortSignal.any([e.signal,s.signal]):s.signal,m={method:e.method??"GET",headers:e.headers,signal:A};typeof e.body=="string"&&(m.body=e.body);try{let h=await u.fetch(n,m);if(clearTimeout(p),!h.ok)return{ok:!1,...await Be(h)};let y,S=h.headers.get("PAYMENT-RESPONSE");if(S)try{let P=Et(S);P&&typeof P.transaction=="string"&&(y=P.transaction)}catch{}return{ok:!0,paid:!0,response:h,amountPaid:i.amount,network:i.network,txSignature:y}}catch(h){clearTimeout(p);let y=h;if(y?.name==="AbortError"){if(!f)return{ok:!1,reason:"timeout"};let S=await Ye(g,i.network,o.solanaRpcUrl);return S.confirmed?{ok:!0,paid:!0,response:void 0,amountPaid:i.amount,network:i.network,txSignature:S.txSignature}:{ok:!1,reason:"payment_unconfirmed",detail:S.detail}}return{ok:!1,reason:"error",detail:y?.message??String(h)}}}};import{getAddress as Qt}from"viem";var Zt={TransferWithAuthorization:[{name:"from",type:"address"},{name:"to",type:"address"},{name:"value",type:"uint256"},{name:"validAfter",type:"uint256"},{name:"validBefore",type:"uint256"},{name:"nonce",type:"bytes32"}]};async function en(){let n=globalThis.crypto??(await import("crypto")).webcrypto,e=new Uint8Array(32);return n.getRandomValues(e),"0x"+Array.from(e,t=>t.toString(16).padStart(2,"0")).join("")}async function tn(n,e,t){if(typeof n.signTypedData!="function")throw new Error("EVM wallet does not support signTypedData");let r=Math.floor(Date.now()/1e3),o=String(r-600),a=String(r+(e.maxTimeoutSeconds??60)),i={from:n.address,to:e.payTo,value:e.amount,validAfter:o,validBefore:a,nonce:await en()},c=Oe[e.network.caip2];if(c===void 0)throw new Error(`unknown chain id for network ${e.network.caip2}`);let l=e.extra,s=await n.signTypedData({domain:{name:l.name,version:l.version,chainId:c,verifyingContract:Qt(e.asset)},types:Zt,primaryType:"TransferWithAuthorization",message:i});return{payment:{x402Version:1,scheme:e.scheme,network:t,payload:{signature:s,authorization:i}},settlementProbe:{kind:"eip3009",from:i.from,nonce:i.nonce,asset:e.asset,chainId:c}}}async function Ge(n,e,t){try{let r;for(let o of n.options){let a=o.network.family==="evm"&&!!e.evm||o.network.family==="svm"&&!!e.solana;if(o.scheme!=="exact"){a&&(r=o.scheme);continue}if(o.network.family==="evm"&&e.evm){let i=await e.evm;return await nn(o,i,t)}if(o.network.family==="svm"&&e.solana){let i=await e.solana;return await rn(o,i,t)}}return r!==void 0?{ok:!1,reason:"merchant_rejected",detail:`v1 supports only the 'exact' scheme, got '${r}'`}:{ok:!1,reason:"unsupported_network"}}catch(r){return{ok:!1,reason:"error",detail:V(r)}}}async function nn(n,e,t){if(t.maxAmountAtomic!==void 0&&BigInt(n.amount)>BigInt(t.maxAmountAtomic))return{ok:!1,reason:"budget_exceeded"};let r=n.extra??{},o=r.name,a=r.version;if(typeof o!="string"||o.length===0||typeof a!="string"||a.length===0)return{ok:!1,reason:"merchant_rejected",detail:"v1 challenge missing exact-scheme EIP-712 domain (extra.name / extra.version)"};let i=n.network.bare,{payment:c,settlementProbe:l}=await tn(e,n,i);return{ok:!0,headerValue:Buffer.from(JSON.stringify(c),"utf8").toString("base64"),option:n,settlementProbe:l}}async function rn(n,e,t){if(t.maxAmountAtomic!==void 0&&BigInt(n.amount)>BigInt(t.maxAmountAtomic))return{ok:!1,reason:"budget_exceeded"};if(n.scheme!=="exact")return{ok:!1,reason:"merchant_rejected",detail:`v1 SVM supports only the 'exact' scheme, got '${n.scheme}'`};let r=n.extra??{};if(typeof r.feePayer!="string"||r.feePayer.length===0)return{ok:!1,reason:"merchant_rejected",detail:"v1 SVM challenge missing extra.feePayer (required as the transaction fee payer)"};let o=n.network.bare,a={x402Version:1,scheme:n.scheme,network:o,asset:n.asset,payTo:n.payTo,amount:n.amount,maxAmountRequired:n.amount,maxTimeoutSeconds:n.maxTimeoutSeconds??60,extra:r},c=await L().buildTransaction(a,e,t.solanaRpcUrl),l={x402Version:1,scheme:n.scheme,network:o,payload:{transaction:c.serialized}};return{ok:!0,headerValue:Buffer.from(JSON.stringify(l),"utf8").toString("base64"),option:n,settlementProbe:c.settlementProbe}}function on(n){let e=[];for(let t of n){if(!t||typeof t!="object")continue;let r=t,o=le(String(r.network??""));o&&e.push({scheme:String(r.scheme??"exact"),network:o,amount:String(r.maxAmountRequired??r.amount??"0"),asset:String(r.asset??""),payTo:String(r.payTo??""),maxTimeoutSeconds:typeof r.maxTimeoutSeconds=="number"?r.maxTimeoutSeconds:void 0,extra:r.extra&&typeof r.extra=="object"?r.extra:void 0})}return e}var Pt={version:1,async parseChallenge(n){if(n.headers.get("payment-required"))return null;let e;try{e=await n.clone().json()}catch{return null}let t=Array.isArray(e.accepts)?e.accepts:[];if(t.length===0)return null;let r=on(t);return r.length===0?null:{x402Version:1,options:r}},async pay(n,e,t,r,o){let a,i=new AbortController,c=!1,l,s;try{let p=o.timeoutMs??15e3;a=setTimeout(()=>i.abort(),p);let f=await Ge(t,r,o);if(!f.ok)return{ok:!1,reason:f.reason,detail:f.detail};let g=f.headerValue,w=f.option;s=w,l=f.settlementProbe;let u=new Headers(e.headers??void 0);u.set("X-PAYMENT",g);let A=e.signal!=null?AbortSignal.any([e.signal,i.signal]):i.signal,m={method:e.method,headers:u,signal:A};typeof e.body=="string"&&(m.body=e.body),c=!0,clearTimeout(a);let h=o.responseTimeoutMs??12e4;a=setTimeout(()=>i.abort(),h);let y=await fetch(n,m);return y.ok?{ok:!0,paid:!0,response:y,amountPaid:w.amount,network:w.network,txSignature:an(y)}:{ok:!1,...await Be(y)}}catch(p){if(p instanceof Error&&p.name==="AbortError"){if(!c)return{ok:!1,reason:"timeout"};let f=await Ye(l,s.network,o.solanaRpcUrl);return f.confirmed?{ok:!0,paid:!0,response:void 0,amountPaid:s.amount,network:s.network,txSignature:f.txSignature}:{ok:!1,reason:"payment_unconfirmed",detail:f.detail}}return{ok:!1,reason:"error",detail:V(p)}}finally{a!==void 0&&clearTimeout(a)}}};function an(n){let e=n.headers.get("x-payment-response")??n.headers.get("X-PAYMENT-RESPONSE");if(e)try{let t=JSON.parse(Buffer.from(e,"base64").toString("utf8")),r=t.transaction??t.txHash??t.transactionHash;return typeof r=="string"?r:void 0}catch{return}}import*as It from"tweetnacl";import{Keypair as De,VersionedTransaction as un,Transaction as pn}from"@solana/web3.js";var Se=Symbol.for("x402:keypair");async function st(n){let e;if(typeof n=="string"){let t;try{let r=await Promise.resolve().then(()=>(_t(),Ct)),o=r.decode??r.default?.decode;if(!o)throw new Error("decode not found");t=o}catch{throw new Error('The "bs58" package is required for base58 private keys. Install it with: npm install bs58')}try{let r=t(n);e=De.fromSecretKey(r)}catch{try{let o=JSON.parse(n);if(Array.isArray(o))e=De.fromSecretKey(Uint8Array.from(o));else throw new Error("Invalid private key format")}catch{throw new Error("Invalid private key. Expected base58 string or JSON array of bytes.")}}}else if(Array.isArray(n))e=De.fromSecretKey(Uint8Array.from(n));else if(n instanceof Uint8Array)e=De.fromSecretKey(n);else throw new Error("Invalid private key type. Expected string, number[], or Uint8Array.");return{publicKey:{toBase58:()=>e.publicKey.toBase58()},signTransaction:async t=>{if(t instanceof un)return t.sign([e]),t;if(t instanceof pn)return t.sign(e),t;throw new Error("Unknown transaction type")},[Se]:e}}function mn(n){if(!n||typeof n!="object")return!1;let e=n;return Se in e&&e[Se]instanceof De&&"publicKey"in e&&"signTransaction"in e}function Qe(n){let e=n.evm;if(e&&typeof e.signMessage=="function"&&typeof e.address=="string")return{address:e.address,signMessage:e.signMessage};let t=n.solana;if(t){let r=t[Se];if(r&&r.secretKey&&r.publicKey)return{publicKey:r.publicKey,signMessage:async o=>It.sign.detached(o,r.secretKey)}}return null}var Nt=[Tt,Pt];async function kt(n){for(let e of Nt)if(await e.parseChallenge(n.clone()))return e;return null}async function dn(n){let e=Qe(n);if(!e)return fetch;try{return(await import("@x402/extensions/sign-in-with-x")).wrapFetchWithSIWx(fetch,e)}catch(t){return console.warn(`[x402] SIW-X unavailable \u2014 @x402/extensions failed to load; SIW-X merchants will not authenticate. ${V(t)}`),fetch}}async function Ot(n,e,t,r){if(e.body!==void 0&&e.body!==null&&typeof e.body!="string")return{ok:!1,reason:"error",detail:"payAndFetch requires a string body; non-string bodies (Buffer, FormData, URLSearchParams, ReadableStream) cannot be safely re-sent on the paid retry"};let o;try{o=await(await dn(t))(n,{...e})}catch(a){return{ok:!1,reason:"error",detail:V(a)}}if(o.status!==402)return{ok:!0,paid:!1,response:o};for(let a of Nt){let i=await a.parseChallenge(o.clone());if(i)return a.pay(n,e,i,t,r)}return{ok:!1,reason:"no_payment_options"}}async function it(n){let e;try{e=(await import("viem/accounts")).privateKeyToAccount}catch{throw new Error("EVM wallet support requires viem as a peer dependency. Install with: npm install viem")}let t=n.startsWith("0x")?n:`0x${n}`,r=e(t);return{address:r.address,signTypedData:o=>r.signTypedData(o),signTransaction:o=>r.signTransaction({to:o.to,data:o.data,chainId:o.chainId,gas:o.gas,gasPrice:o.gasPrice,nonce:o.nonce,type:"legacy"}),signMessage:o=>r.signMessage({message:o.message})}}function fn(n){if(!n||typeof n!="object")return!1;let e=n;return"address"in e&&typeof e.address=="string"&&e.address.startsWith("0x")&&"signTypedData"in e&&typeof e.signTypedData=="function"}function ct(n){let e=ot(n);if(e?.extensions?.["sponsored-access"])return e.extensions["sponsored-access"]}function gn(n){let e=ct(n);if(e?.recommendations?.length)return e.recommendations}async function yn(n){let t=ct(n)?.tracking?.impressionBeacon;if(!t)return!1;try{await fetch(t,{method:"GET"})}catch{}return!0}function lt(n,e){let{walletPrivateKey:t,evmPrivateKey:r,preferredNetwork:o,rpcUrls:a,maxAmountAtomic:i,verbose:c,accessPass:l,onPaymentRequired:s}=e;if(!t&&!r)throw new Error("At least one wallet private key is required (walletPrivateKey or evmPrivateKey)");let p={},f=[];t&&f.push(st(t).then(m=>{p.solana=m}).catch(m=>{console.warn(`[x402] Solana wallet init failed: ${m.message}`)})),r&&f.push(it(r).then(m=>{p.evm=m}).catch(m=>{console.warn(`[x402] EVM wallet init failed: ${m.message}`)}));let g=f.length>0?Promise.all(f):null,u=Ue({wallets:p,preferredNetwork:o,rpcUrls:a,maxAmountAtomic:i,fetch:n,verbose:c,accessPass:l,onPaymentRequired:s}),A=u.fetch.bind(u);return g?(async(m,h)=>(await g,A(m,h))):A}function hn(n){let{budget:e,allowedDomains:t,onPaymentRequired:r,...o}=n,a=parseFloat(e.total),i=e.perRequest?parseFloat(e.perRequest):1/0,c=e.perHour?parseFloat(e.perHour):1/0;if(isNaN(a)||a<=0)throw new Error("budget.total must be a positive number");let l=[],s=0;function p(){return l.reduce((u,A)=>u+A.amount,0)}function f(){let u=Date.now()-36e5;return l.filter(A=>A.timestamp>=u).reduce((A,m)=>A+m.amount,0)}let g=lt(fetch,{...o,onPaymentRequired:async u=>{let A=u.extra?.decimals??6,m=Number(u.amount)/Math.pow(10,A);if(m>i)throw new C("amount_exceeds_max",`$${m.toFixed(4)} exceeds per-request limit of $${i.toFixed(2)}`);let h=p();if(h+m>a)throw new C("amount_exceeds_max",`Budget exceeded. Spent $${h.toFixed(2)} of $${a.toFixed(2)}, payment: $${m.toFixed(4)}`);let y=f();if(y+m>c)throw new C("amount_exceeds_max",`Hourly limit ($${c.toFixed(2)}) exceeded. Spent $${y.toFixed(2)} this hour`);return s=m,r?r(u):!0}});return{fetch:(async(u,A)=>{let m=typeof u=="string"?u:u instanceof URL?u.href:u.url,h="unknown";try{h=new URL(m).hostname}catch{}if(t&&!t.some(S=>h===S||h.endsWith(`.${S}`)))throw new C("payment_rejected",`Domain "${h}" not in allowed domains`);s=0;let y=await g(u,A);if(s>0){let S="unknown",P=y.headers.get("PAYMENT-RESPONSE");if(P)try{S=JSON.parse(atob(P)).network||S}catch{}l.push({amount:s,domain:h,network:S,timestamp:Date.now()}),s=0}return y}),get spent(){return`$${p().toFixed(2)}`},get remaining(){return`$${(a-p()).toFixed(2)}`},get payments(){return l.length},get spentAmount(){return p()},get remainingAmount(){return a-p()},get ledger(){return l},get hourlySpend(){return f()},reset(){l=[]}}}import{capabilitySearch as An}from"@dexterai/x402-core";export{z as BASE_MAINNET,ft as DEXTER_FACILITATOR_URL,Se as KEYPAIR_SYMBOL,J as SOLANA_MAINNET,Le as USDC_MINT,C as X402Error,Ge as buildV1PaymentHeader,An as capabilitySearch,hn as createBudgetAccount,ae as createEvmAdapter,it as createEvmKeypairWallet,st as createKeypairWallet,L as createSolanaAdapter,Ue as createX402Client,kt as detectStrategy,yn as fireImpressionBeacon,ot as getPaymentReceipt,ct as getSponsoredAccessInfo,gn as getSponsoredRecommendations,fn as isEvmKeypairWallet,mn as isKeypairWallet,Ot as payAndFetch,le as toNetworkRef,Qe as toSiwxSigner,lt as wrapFetch};
1
+ var Ut=Object.defineProperty;var ut=(n,e)=>()=>(n&&(e=n(n=0)),e);var Bt=(n,e)=>{for(var t in e)Ut(n,t,{get:e[t],enumerable:!0})};function sn(n){if(n.length>=255)throw new TypeError("Alphabet too long");let e=new Uint8Array(256);for(let s=0;s<e.length;s++)e[s]=255;for(let s=0;s<n.length;s++){let p=n.charAt(s),f=p.charCodeAt(0);if(e[f]!==255)throw new TypeError(p+" is ambiguous");e[f]=s}let t=n.length,r=n.charAt(0),o=Math.log(t)/Math.log(256),a=Math.log(256)/Math.log(t);function i(s){if(s instanceof Uint8Array||(ArrayBuffer.isView(s)?s=new Uint8Array(s.buffer,s.byteOffset,s.byteLength):Array.isArray(s)&&(s=Uint8Array.from(s))),!(s instanceof Uint8Array))throw new TypeError("Expected Uint8Array");if(s.length===0)return"";let p=0,f=0,g=0,w=s.length;for(;g!==w&&s[g]===0;)g++,p++;let u=(w-g)*a+1>>>0,A=new Uint8Array(u);for(;g!==w;){let y=s[g],S=0;for(let P=u-1;(y!==0||S<f)&&P!==-1;P--,S++)y+=256*A[P]>>>0,A[P]=y%t>>>0,y=y/t>>>0;if(y!==0)throw new Error("Non-zero carry");f=S,g++}let m=u-f;for(;m!==u&&A[m]===0;)m++;let h=r.repeat(p);for(;m<u;++m)h+=n.charAt(A[m]);return h}function c(s){if(typeof s!="string")throw new TypeError("Expected String");if(s.length===0)return new Uint8Array;let p=0,f=0,g=0;for(;s[p]===r;)f++,p++;let w=(s.length-p)*o+1>>>0,u=new Uint8Array(w);for(;p<s.length;){let y=s.charCodeAt(p);if(y>255)return;let S=e[y];if(S===255)return;let P=0;for(let k=w-1;(S!==0||P<g)&&k!==-1;k--,P++)S+=t*u[k]>>>0,u[k]=S%256>>>0,S=S/256>>>0;if(S!==0)throw new Error("Non-zero carry");g=P,p++}let A=w-g;for(;A!==w&&u[A]===0;)A++;let m=new Uint8Array(f+(w-A)),h=f;for(;A!==w;)m[h++]=u[A++];return m}function l(s){let p=c(s);if(p)return p;throw new Error("Non-base"+t+" character")}return{encode:i,decodeUnsafe:c,decode:l}}var Rt,vt=ut(()=>{"use strict";Rt=sn});var Ct={};Bt(Ct,{default:()=>ln});var cn,ln,_t=ut(()=>{"use strict";vt();cn="123456789ABCDEFGHJKLMNPQRSTUVWXYZabcdefghijkmnopqrstuvwxyz",ln=Rt(cn)});var pt=[{caip2:"eip155:8453",bare:"base",family:"evm"},{caip2:"eip155:1",bare:"ethereum",family:"evm"},{caip2:"eip155:137",bare:"polygon",family:"evm"},{caip2:"eip155:42161",bare:"arbitrum",family:"evm"},{caip2:"eip155:10",bare:"optimism",family:"evm"},{caip2:"eip155:43114",bare:"avalanche",family:"evm"},{caip2:"eip155:56",bare:"bsc",family:"evm"},{caip2:"solana:5eykt4UsFv8P8NJdTREpY1vzqKqZKvdp",bare:"solana",family:"svm"}],Dt=new Map(pt.map(n=>[n.caip2.toLowerCase(),n])),Mt=new Map(pt.map(n=>[n.bare.toLowerCase(),n]));function le(n){if(!n)return null;let e=n.toLowerCase(),t=Dt.get(e)||Mt.get(e);return t?{caip2:t.caip2,bare:t.bare,family:t.family}:null}var be="solana:5eykt4UsFv8P8NJdTREpY1vzqKqZKvdp",$e="solana:EtWTRABZaYq6iMfeYKouRu166VU2xqa1",Ke="solana:4uhcVJyU9pJkvQyS88uRDiswHXSCkY3z",X=be,xe=$e,Ee=Ke,ee="eip155:8453",ue="eip155:84532",pe="eip155:42161",me="eip155:137",de="eip155:10",fe="eip155:43114",ge="eip155:56",ye="eip155:1187947933",he="eip155:324705682",Ae="eip155:1",z=ee,We=ue,Te=pe,Pe=me,Re=de,ve=fe,Ce=ge,_e=ye,Ie=he,Ne=Ae,Le="EPjFWdd5AufqSSqeM2qN1xzybapC8G4wEGGkZwyTDt1v",mt="4zMMC9srt5Ri5X14GAgXhaHii3GnPAEERYPJgZJDncDU",dt="0x833589fCD6eDb6E08f4c7C32D4f71b54bdA02913",et="0x55d398326f99059fF775485246999027B3197955",Ve="0x8AC76a51cc950d9822D68b83fE1Ad97B32Cd580d",Fe={[ge]:Ve,[ee]:dt,[ue]:"0x036CbD53842c5426634e7929541eC2318f3dCF7e",[pe]:"0xaf88d065e77c8cC2239327C5EDb3A432268e5831",[me]:"0x3c499c542cEF5E3811e1192ce70d8cC03d5c3359",[de]:"0x0b2C639c533813f4Aa9D7837CAf62653d097Ff85",[fe]:"0xB97EF9Ef8734C71904D8002F8b6Bc66Dd9c48a6E",[ye]:"0x85889c8c714505E0c94b30fcfcF64fE3Ac8FCb20",[he]:"0x2e08028E3C4c2356572E096d8EF835cD5C6030bD",[Ae]:"0xA0b86991c6218b36c1d19D4a2e9Eb0cE3606eB48"},qe={[et]:{symbol:"USDT",decimals:18},[Ve]:{symbol:"USDC",decimals:18}};var Y="0x000000000022D473030F116dDEE9F6B43aC78BA3",ke="0x402085c248EeA27D92E8b30b2C58ed07f9E20001",Oe={[ge]:56,[ee]:8453,[ue]:84532,[pe]:42161,[me]:137,[de]:10,[fe]:43114,[ye]:1187947933,[he]:324705682,[Ae]:1},te={[be]:"https://api.dexter.cash/api/solana/rpc",[$e]:"https://api.devnet.solana.com",[Ke]:"https://api.testnet.solana.com"},U={[ge]:"https://api.dexter.cash/api/evm/bsc/rpc",[ee]:"https://api.dexter.cash/api/base/rpc",[ue]:"https://sepolia.base.org",[pe]:"https://api.dexter.cash/api/evm/arbitrum/rpc",[me]:"https://api.dexter.cash/api/evm/polygon/rpc",[de]:"https://api.dexter.cash/api/evm/optimism/rpc",[fe]:"https://api.dexter.cash/api/evm/avalanche/rpc",[ye]:"https://skale-base.skalenodes.com/v1/base",[he]:"https://base-sepolia-testnet.skalenodes.com/v1/jubilant-horrible-ancha",[Ae]:"https://eth.llamarpc.com"},ft="https://x402.dexter.cash";var C=class n extends Error{code;details;constructor(e,t,r){super(t),this.name="X402Error",this.code=e,this.details=r,Object.setPrototypeOf(this,n.prototype)}};import{PublicKey as ne,Connection as tt,TransactionMessage as $t,VersionedTransaction as Kt,ComputeBudgetProgram as gt}from"@solana/web3.js";import{getAssociatedTokenAddress as nt,getAccount as Wt,createTransferCheckedInstruction as Lt,getMint as Vt,TOKEN_PROGRAM_ID as yt,TOKEN_2022_PROGRAM_ID as He}from"@solana/spl-token";var Ft=12e3,qt=1;function re(n){if(!n||typeof n!="object")return!1;let e=n;return"publicKey"in e&&"signTransaction"in e&&typeof e.signTransaction=="function"}var je=class{name="Solana";networks=[X,xe,Ee];config;log;constructor(e={}){this.config=e,this.log=e.verbose?console.log.bind(console,"[x402:solana]"):()=>{}}canHandle(e){return!!(this.networks.includes(e)||e==="solana"||e==="solana-devnet"||e==="solana-testnet"||e.startsWith("solana:"))}getDefaultRpcUrl(e){return this.config.rpcUrls?.[e]?this.config.rpcUrls[e]:te[e]?te[e]:e==="solana"?te[X]:e==="solana-devnet"?te[xe]:e==="solana-testnet"?te[Ee]:te[X]}getAddress(e){return re(e)?e.publicKey?.toBase58()??null:null}isConnected(e){return re(e)?e.publicKey!==null:!1}async getBalance(e,t,r){if(!re(t)||!t.publicKey)return 0;let o=r||this.getDefaultRpcUrl(e.network),a=new tt(o,"confirmed"),i=new ne(t.publicKey.toBase58()),c=new ne(e.asset);try{let s=(await a.getAccountInfo(c,"confirmed"))?.owner.toBase58()===He.toBase58()?He:yt,p=await nt(c,i,!1,s),f=await Wt(a,p,void 0,s),g=e.extra?.decimals??6;return Number(f.amount)/Math.pow(10,g)}catch(l){if(l&&typeof l=="object"&&"name"in l&&(l.name==="TokenAccountNotFoundError"||l.name==="TokenInvalidAccountOwnerError"))return 0;throw l}}async buildTransaction(e,t,r){if(!re(t))throw new Error("Invalid Solana wallet");if(!t.publicKey)throw new Error("Wallet not connected");let o=r||this.getDefaultRpcUrl(e.network),a=new tt(o,"confirmed"),i=new ne(t.publicKey.toBase58()),{payTo:c,asset:l,extra:s}=e,p=e.amount??e.maxAmountRequired;if(!p)throw new Error("Missing amount in payment requirements");if(!s?.feePayer)throw new Error("Missing feePayer in payment requirements");let f=new ne(s.feePayer),g=new ne(l),w=new ne(c);this.log("Building transaction:",{from:i.toBase58(),to:c,amount:p,asset:l,feePayer:s.feePayer});let u=[];u.push(gt.setComputeUnitLimit({units:Ft})),u.push(gt.setComputeUnitPrice({microLamports:qt}));let A=await a.getAccountInfo(g,"confirmed");if(!A)throw new Error(`Token mint ${l} not found`);let m=A.owner.toBase58()===He.toBase58()?He:yt,h=await Vt(a,g,void 0,m);typeof s?.decimals=="number"&&h.decimals!==s.decimals&&this.log(`Decimals mismatch: requirements say ${s.decimals}, mint says ${h.decimals}`);let y=await nt(g,i,!1,m),S=await nt(g,w,!0,m);if(!await a.getAccountInfo(y,"confirmed"))throw new Error(`No token account found for ${l}. Please ensure you have USDC in your wallet.`);if(!await a.getAccountInfo(S,"confirmed"))throw new Error(`Seller token account not found. The seller (${c}) must have a USDC account.`);let F=BigInt(p);u.push(Lt(y,g,S,i,F,h.decimals,[],m));let{blockhash:K}=await a.getLatestBlockhash("confirmed"),G=new $t({payerKey:f,recentBlockhash:K,instructions:u}).compileToV0Message(),D=new Kt(G),b=await t.signTransaction(D);return this.log("Transaction signed successfully"),{serialized:Buffer.from(b.serialize()).toString("base64"),settlementProbe:{kind:"solana",sourceAta:y.toBase58(),destinationAta:S.toBase58(),asset:l,amount:p,blockhash:K}}}async confirmSettlement(e,t){if(e.kind!=="solana")throw new Error(`SolanaAdapter.confirmSettlement cannot handle probe kind "${e.kind}"`);let r=new tt(t,"confirmed"),o=new ne(e.destinationAta),a=await r.getSignaturesForAddress(o,{limit:25});if(a.length===0)return{settled:!1};let i=BigInt(e.amount);for(let c of a){if(c.err)continue;let l=await r.getTransaction(c.signature,{commitment:"confirmed",maxSupportedTransactionVersion:0});if(!l?.meta)continue;let s=l.transaction.message.getAccountKeys().keySegments().flat(),p=l.meta.preTokenBalances??[],f=l.meta.postTokenBalances??[];for(let g of f){if(g.mint!==e.asset)continue;let w=s[g.accountIndex];if(!w||!w.equals(o))continue;let u=p.find(h=>h.accountIndex===g.accountIndex),A=BigInt(u?.uiTokenAmount.amount??"0");if(BigInt(g.uiTokenAmount.amount??"0")-A===i)return{settled:!0,txSignature:c.signature}}}return{settled:!1}}};function L(n){return new je(n)}var Ht={PermitWitnessTransferFrom:[{name:"permitted",type:"TokenPermissions"},{name:"spender",type:"address"},{name:"nonce",type:"uint256"},{name:"deadline",type:"uint256"},{name:"witness",type:"Witness"}],TokenPermissions:[{name:"token",type:"address"},{name:"amount",type:"uint256"}],Witness:[{name:"to",type:"address"},{name:"validAfter",type:"uint256"}]},ht=BigInt("0xffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff");function oe(n){if(!n||typeof n!="object")return!1;let e=n;return"address"in e&&typeof e.address=="string"&&e.address.startsWith("0x")}var Je=class{name="EVM";networks=[Ce,z,We,Ne,Te,Pe,Re,ve,_e,Ie];config;log;constructor(e={}){this.config=e,this.log=e.verbose?console.log.bind(console,"[x402:evm]"):()=>{}}canHandle(e){return!!(this.networks.includes(e)||e==="base"||e==="bsc"||e==="ethereum"||e==="arbitrum"||e==="polygon"||e==="optimism"||e==="avalanche"||e==="skale-base"||e==="skale-base-sepolia"||e.startsWith("eip155:"))}getDefaultRpcUrl(e){return this.config.rpcUrls?.[e]?this.config.rpcUrls[e]:U[e]?U[e]:e==="base"?U[z]:e==="bsc"?U[Ce]:e==="ethereum"?U[Ne]:e==="arbitrum"?U[Te]:e==="polygon"?U[Pe]:e==="optimism"?U[Re]:e==="avalanche"?U[ve]:e==="skale-base"?U[_e]:e==="skale-base-sepolia"?U[Ie]:U[z]}getAddress(e){return oe(e)?e.address:null}isConnected(e){return oe(e)?!!e.address:!1}getChainId(e){if(Oe[e])return Oe[e];if(e.startsWith("eip155:")){let t=e.split(":")[1];return parseInt(t,10)}return e==="base"?8453:e==="bsc"?56:e==="ethereum"?1:e==="arbitrum"?42161:8453}async getBalance(e,t,r){if(!oe(t)||!t.address)return 0;let o=r||this.getDefaultRpcUrl(e.network);try{let a=this.encodeBalanceOf(t.address),i=await fetch(o,{method:"POST",headers:{"Content-Type":"application/json"},body:JSON.stringify({jsonrpc:"2.0",id:1,method:"eth_call",params:[{to:e.asset,data:a},"latest"]})});if(!i.ok)throw new Error(`RPC request failed: ${i.status}`);let c=await i.json();if(c.error)throw new Error(`RPC error: ${JSON.stringify(c.error)}`);if(!c.result||c.result==="0x")return 0;let l=BigInt(c.result),s=e.extra?.decimals??6;return Number(l)/Math.pow(10,s)}catch(a){throw a}}encodeBalanceOf(e){let t="0x70a08231",r=e.slice(2).toLowerCase().padStart(64,"0");return t+r}async confirmSettlement(e,t){if(e.kind==="eip3009"){let r="0xe94a0102",o=e.from.slice(2).toLowerCase().padStart(64,"0"),a=e.nonce.slice(2).toLowerCase().padStart(64,"0"),i=r+o+a,c=await this.ethCall(t,e.asset,i);return{settled:BigInt(c)!==0n}}if(e.kind==="permit2"){let r="0x4fe02b44",o=BigInt(e.nonce),a=o>>8n,i=o&0xffn,c=e.from.slice(2).toLowerCase().padStart(64,"0"),l=a.toString(16).padStart(64,"0"),s=r+c+l,p=await this.ethCall(t,Y,s);return{settled:(BigInt(p)>>i&1n)===1n}}throw new Error(`EvmAdapter.confirmSettlement cannot handle probe kind "${e.kind}"`)}async ethCall(e,t,r){let o=await fetch(e,{method:"POST",headers:{"Content-Type":"application/json"},body:JSON.stringify({jsonrpc:"2.0",id:1,method:"eth_call",params:[{to:t,data:r},"latest"]})});if(!o.ok)throw new Error(`RPC request failed: ${o.status}`);let a=await o.json();if(a.error)throw new Error(`RPC error: ${JSON.stringify(a.error)}`);if(!a.result||a.result==="0x")throw new Error("RPC returned an empty result");return a.result}async buildTransaction(e,t,r){if(!oe(t))throw new Error("Invalid EVM wallet");if(!t.address)throw new Error("Wallet not connected");if(e.scheme==="exact-approval")return this.buildApprovalTransaction(e,t,r);if(e.extra?.assetTransferMethod==="permit2")return this.buildPermit2Transaction(e,t,r);let{payTo:o,asset:a,extra:i}=e,c=e.amount??e.maxAmountRequired;if(!c)throw new Error("Missing amount in payment requirements");this.log("Building EVM transaction:",{from:t.address,to:o,amount:c,asset:a,network:e.network});let l=this.getChainId(e.network),s={name:i?.name??"USD Coin",version:i?.version??"2",chainId:BigInt(l),verifyingContract:a},p={TransferWithAuthorization:[{name:"from",type:"address"},{name:"to",type:"address"},{name:"value",type:"uint256"},{name:"validAfter",type:"uint256"},{name:"validBefore",type:"uint256"},{name:"nonce",type:"bytes32"}]},f=new Uint8Array(32);(globalThis.crypto??(await import("crypto")).webcrypto).getRandomValues(f);let g="0x"+[...f].map(y=>y.toString(16).padStart(2,"0")).join(""),w=Math.floor(Date.now()/1e3),u={from:t.address,to:o,value:c,validAfter:String(w-600),validBefore:String(w+(e.maxTimeoutSeconds||60)),nonce:g},A={from:t.address,to:o,value:BigInt(c),validAfter:BigInt(w-600),validBefore:BigInt(w+(e.maxTimeoutSeconds||60)),nonce:g};if(!t.signTypedData)throw new Error("Wallet does not support signTypedData (EIP-712)");let m=await t.signTypedData({domain:s,types:p,primaryType:"TransferWithAuthorization",message:A});return this.log("EIP-712 signature obtained"),{serialized:JSON.stringify({authorization:u,signature:m}),signature:m,settlementProbe:{kind:"eip3009",from:t.address,nonce:g,asset:a,chainId:l}}}async buildApprovalTransaction(e,t,r){let{payTo:o,asset:a,extra:i}=e,c=e.amount??e.maxAmountRequired;if(!c)throw new Error("Missing amount in payment requirements");let l=i?.facilitatorContract;if(!l)throw new Error("exact-approval scheme requires extra.facilitatorContract from the facilitator. The /supported endpoint should provide this.");if(!t.signTypedData)throw new Error("Wallet does not support signTypedData (EIP-712)");this.log("Building approval-based transaction:",{from:t.address,to:o,amount:c,asset:a,network:e.network,facilitatorContract:l});let s=r||this.getDefaultRpcUrl(e.network),p=i?.fee??"0",f=BigInt(c)+BigInt(p),g=await this.readAllowance(s,a,t.address,l);if(g<f){if(!t.sendTransaction)throw new Error("BSC payments require a wallet that supports sendTransaction for the one-time token approval. Use createEvmKeypairWallet() or a browser wallet with transaction support.");let D=this.calculateApprovalAmount(c,p,i?.approvalStrategy);this.log(`Approving ${D} for ${l} (current allowance: ${g})`);let b=await t.sendTransaction({to:a,data:this.encodeApprove(l,D),value:0n});this.log(`Approval tx sent: ${b}`),await this.waitForReceipt(s,b),this.log("Approval confirmed")}else this.log("Sufficient allowance, skipping approval");let w=new Uint8Array(16);(globalThis.crypto??(await import("crypto")).webcrypto).getRandomValues(w);let u=[...w].reduce((D,b)=>D*256n+BigInt(b),0n).toString(),A=new Uint8Array(32);(globalThis.crypto??(await import("crypto")).webcrypto).getRandomValues(A);let m="0x"+[...A].map(D=>D.toString(16).padStart(2,"0")).join(""),y=Math.floor(Date.now()/1e3)+(e.maxTimeoutSeconds||300),S=i?.eip712Domain,P=S?{name:S.name,version:S.version,chainId:BigInt(S.chainId),verifyingContract:S.verifyingContract}:{name:"DexterBSCFacilitator",version:"1",chainId:BigInt(this.getChainId(e.network)),verifyingContract:l},k=i?.eip712Types??{Payment:[{name:"from",type:"address"},{name:"to",type:"address"},{name:"token",type:"address"},{name:"amount",type:"uint256"},{name:"fee",type:"uint256"},{name:"nonce",type:"uint256"},{name:"deadline",type:"uint256"},{name:"paymentId",type:"bytes32"}]},F={from:t.address,to:o,token:a,amount:BigInt(c),fee:BigInt(p),nonce:BigInt(u),deadline:BigInt(y),paymentId:m},K=await t.signTypedData({domain:P,types:k,primaryType:"Payment",message:F});this.log("EIP-712 Payment signature obtained");let G={from:t.address,to:o,token:a,amount:c,fee:p,nonce:u,deadline:y,paymentId:m,signature:K};return{serialized:JSON.stringify(G),signature:K}}async buildPermit2Transaction(e,t,r){let{payTo:o,asset:a}=e,i=e.amount??e.maxAmountRequired;if(!i)throw new Error("Missing amount in payment requirements");if(!t.signTypedData)throw new Error("Wallet does not support signTypedData (EIP-712)");this.log("Building Permit2 transaction:",{from:t.address,to:o,amount:i,asset:a,network:e.network});let c=r||this.getDefaultRpcUrl(e.network),l=await this.readAllowance(c,a,t.address,Y),s;if(l<BigInt(i)){let P=this.encodeApprove(Y,ht);if(t.signTransaction){this.log(`Signing Permit2 approval for relay (current allowance: ${l})`);let k=this.getChainId(e.network),F=await this.readGasPrice(c),K=await this.readNonce(c,t.address),G=await t.signTransaction({to:a,data:P,chainId:k,gas:50000n,gasPrice:F,nonce:K});s={erc20ApprovalGasSponsoring:{info:{from:t.address,asset:a,spender:Y,amount:ht.toString(),signedTransaction:G,version:"1"}}},this.log("Permit2 approval signed for facilitator relay")}else if(t.sendTransaction){this.log(`Approving Permit2 directly (current allowance: ${l})`);let k=await t.sendTransaction({to:a,data:P,value:0n});this.log(`Permit2 approval tx sent: ${k}`),await this.waitForReceipt(c,k),this.log("Permit2 approval confirmed")}else throw new Error("Permit2 payments require a wallet that supports signTransaction or sendTransaction for the one-time Permit2 approval. Use createEvmKeypairWallet() or a browser wallet with transaction support.")}else this.log("Sufficient Permit2 allowance, skipping approval");let p=new Uint8Array(32);(globalThis.crypto??(await import("crypto")).webcrypto).getRandomValues(p);let f=[...p].reduce((P,k)=>P*256n+BigInt(k),0n),g=Math.floor(Date.now()/1e3),w=g-600,u=g+(e.maxTimeoutSeconds||300),A=this.getChainId(e.network),m={name:"Permit2",chainId:BigInt(A),verifyingContract:Y},h={permitted:{token:a,amount:BigInt(i)},spender:ke,nonce:f,deadline:BigInt(u),witness:{to:o,validAfter:BigInt(w)}},y=await t.signTypedData({domain:m,types:Ht,primaryType:"PermitWitnessTransferFrom",message:h});this.log("Permit2 PermitWitnessTransferFrom signature obtained");let S={signature:y,permit2Authorization:{from:t.address,permitted:{token:a,amount:i},spender:ke,nonce:f.toString(),deadline:String(u),witness:{to:o,validAfter:String(w)}}};return{serialized:JSON.stringify(S),signature:y,extensions:s,settlementProbe:{kind:"permit2",from:t.address,nonce:f.toString(),chainId:A}}}async readAllowance(e,t,r,o){let a="0xdd62ed3e",i=r.slice(2).toLowerCase().padStart(64,"0"),c=o.slice(2).toLowerCase().padStart(64,"0"),l=a+i+c;try{let p=await(await fetch(e,{method:"POST",headers:{"Content-Type":"application/json"},body:JSON.stringify({jsonrpc:"2.0",id:1,method:"eth_call",params:[{to:t,data:l},"latest"]})})).json();return p.error||!p.result||p.result==="0x"?0n:BigInt(p.result)}catch{return 0n}}encodeApprove(e,t){let r="0x095ea7b3",o=e.slice(2).toLowerCase().padStart(64,"0"),a=t.toString(16).padStart(64,"0");return r+o+a}async waitForReceipt(e,t,r=3e4){let o=Date.now();for(;Date.now()-o<r;){try{let i=await(await fetch(e,{method:"POST",headers:{"Content-Type":"application/json"},body:JSON.stringify({jsonrpc:"2.0",id:1,method:"eth_getTransactionReceipt",params:[t]})})).json();if(i.result){if(i.result.status==="0x0")throw new Error(`Approval transaction reverted: ${t}`);return}}catch(a){if(a instanceof Error&&a.message.includes("reverted"))throw a}await new Promise(a=>setTimeout(a,2e3))}throw new Error(`Approval transaction receipt timeout after ${r}ms: ${t}`)}async readGasPrice(e){try{let r=await(await fetch(e,{method:"POST",headers:{"Content-Type":"application/json"},body:JSON.stringify({jsonrpc:"2.0",id:1,method:"eth_gasPrice",params:[]})})).json();return r.result?BigInt(r.result):50000000n}catch{return 50000000n}}async readNonce(e,t){try{let o=await(await fetch(e,{method:"POST",headers:{"Content-Type":"application/json"},body:JSON.stringify({jsonrpc:"2.0",id:1,method:"eth_getTransactionCount",params:[t,"latest"]})})).json();return o.result?parseInt(o.result,16):0}catch{return 0}}calculateApprovalAmount(e,t,r){let o=BigInt(e)+BigInt(t);if(!r||r.mode==="exact")return o;let a=BigInt(r.defaultMultiple??10),i=o*a;if(r.maxCapUsd){let c=this.inferDecimals(e),l=BigInt(Math.floor(r.maxCapUsd*Math.pow(10,c)));if(i>l)return l}if(r.exactAboveUsd){let c=this.inferDecimals(e),l=BigInt(Math.floor(r.exactAboveUsd*Math.pow(10,c)));if(BigInt(e)>l)return o}return i}inferDecimals(e){return e.length>12?18:6}};function ae(n){return new Je(n)}function rt(n){if(n===Le||n===mt)return!0;let e=n.toLowerCase();for(let t of Object.values(Fe))if(t.toLowerCase()===e)return!0;for(let t of Object.keys(qe))if(t.toLowerCase()===e)return!0;return!1}function jt(n){return{[be]:"Solana",[$e]:"Solana Devnet",[Ke]:"Solana Testnet",solana:"Solana","solana-devnet":"Solana Devnet","solana-testnet":"Solana Testnet",[ee]:"Base",[ue]:"Base Sepolia",[Ae]:"Ethereum",[pe]:"Arbitrum",[me]:"Polygon",[de]:"Optimism",[fe]:"Avalanche",[ge]:"BSC",[ye]:"SKALE Base",[he]:"SKALE Base Sepolia",base:"Base","base-sepolia":"Base Sepolia",ethereum:"Ethereum",arbitrum:"Arbitrum",polygon:"Polygon",optimism:"Optimism",avalanche:"Avalanche",bsc:"BSC","skale-base":"SKALE Base","skale-base-sepolia":"SKALE Base Sepolia"}[n]||n}function At(n,e){let t=jt(n);return t===n?e:t}async function Jt(n,e){if(typeof n=="string")return[n,e];if(n instanceof URL)return[n.href,e];let t=n,r=new Headers(t.headers);e?.headers&&new Headers(e.headers).forEach((i,c)=>r.set(c,i));let o={method:e?.method??t.method,headers:r,signal:e?.signal??t.signal,redirect:e?.redirect??t.redirect,credentials:e?.credentials??t.credentials},a=(o.method??"GET").toUpperCase();return e&&"body"in e?o.body=e.body:a!=="GET"&&a!=="HEAD"&&t.body&&(o.body=await t.arrayBuffer()),[t.url,o]}var St=new WeakMap;function ot(n){return St.get(n)}function Ue(n){let{adapters:e=[L({verbose:n.verbose}),ae({verbose:n.verbose})],wallets:t,wallet:r,preferredNetwork:o,rpcUrls:a={},maxAmountAtomic:i,fetch:c=globalThis.fetch,verbose:l=!1,accessPass:s,onPaymentRequired:p,onPaymentDispatched:f,maxRetries:g=0,retryDelayMs:w=500}=n,u=l?console.log.bind(console,"[x402]"):()=>{};async function A(b,T){let R;for(let x=0;x<=g;x++)try{let v=await c(b,T);if(v.status>=502&&v.status<=504&&x<g){u(`Retry ${x+1}/${g}: server returned ${v.status}`),await new Promise(_=>setTimeout(_,w*Math.pow(2,x)));continue}return v}catch(v){R=v,x<g&&(u(`Retry ${x+1}/${g}: ${v instanceof Error?v.message:"network error"}`),await new Promise(_=>setTimeout(_,w*Math.pow(2,x))))}throw R}let m=new Map;function h(b){try{let T=new URL(b).host,R=m.get(T);if(R&&R.expiresAt>Date.now()/1e3+10)return R.jwt;R&&m.delete(T)}catch{}return null}function y(b,T){try{let R=new URL(b).host,x=T.split(".");if(x.length===3){let v=JSON.parse(atob(x[1].replace(/-/g,"+").replace(/_/g,"/"))),_=Math.floor(Date.now()/1e3),I=_+86400,M=Math.min(typeof v.exp=="number"?v.exp:_,I);m.set(R,{jwt:T,expiresAt:M}),u("Access pass cached for",R,"| expires:",new Date(M*1e3).toISOString())}}catch{u("Failed to cache access pass")}}let S=t||{};r&&!S.solana&&re(r)&&(S.solana=r),r&&!S.evm&&oe(r)&&(S.evm=r);function P(b){let T=[];for(let R of b){let x=R.scheme??"exact";if(x!=="exact"&&x!=="exact-approval")continue;let v=e.find(I=>I.canHandle(R.network));if(!v)continue;let _;v.name==="Solana"?_=S.solana:v.name==="EVM"&&(_=S.evm),_&&v.isConnected(_)&&T.push({accept:R,adapter:v,wallet:_})}if(T.length===0)return null;if(o){let R=T.find(x=>x.accept.network===o);if(R)return R}return T[0]}function k(b,T){return At(b,T)}function F(b,T){return a[b]||T.getDefaultRpcUrl(b)}async function K(b,T,R,x,v){let _="";if(s?.preferTier&&x.tiers){let d=x.tiers.find(E=>E.id===s.preferTier);if(d){if(s.maxSpend&&parseFloat(d.price)>parseFloat(s.maxSpend))throw new C("access_pass_exceeds_max_spend",`Access pass tier "${d.id}" costs $${d.price}, exceeds max spend $${s.maxSpend}`);_=`tier=${d.id}`}}else if(s?.preferDuration&&x.ratePerHour)_=`duration=${s.preferDuration}`;else if(x.tiers&&x.tiers.length>0){let d=x.tiers[0];if(s?.maxSpend&&parseFloat(d.price)>parseFloat(s.maxSpend))throw new C("access_pass_exceeds_max_spend",`Cheapest access pass costs $${d.price}, exceeds max spend $${s?.maxSpend}`);_=`tier=${d.id}`}let I=_?v.includes("?")?`${v}&${_}`:`${v}?${_}`:v;u("Purchasing access pass:",_||"default tier");let M=R.headers.get("PAYMENT-REQUIRED");if(!M)return null;let B;try{B=JSON.parse(atob(M))}catch{return null}let O=P(B.accepts);if(!O)return null;let{accept:N,adapter:W,wallet:se}=O;if(W.name==="Solana"&&!N.extra?.feePayer)return null;let q=N.extra?.decimals??(rt(N.asset)?6:void 0);if(typeof q!="number")return null;let we=N.amount??N.maxAmountRequired;if(!we)return null;let H=F(N.network,W);try{let d=await W.getBalance(N,se,H),E=Number(we)/Math.pow(10,q);if(d<E){let Ze=k(N.network,W.name);throw new C("insufficient_balance",`Insufficient balance for access pass on ${Ze}. Have $${d.toFixed(4)}, need $${E.toFixed(4)}`)}}catch(d){if(d instanceof C)throw d}let j=await W.buildTransaction(N,se,H),ie;W.name==="EVM"?ie=JSON.parse(j.serialized):ie={transaction:j.serialized};let Q=typeof b=="string"?b:b instanceof URL?b.href:b.url,ce=B.resource;if(typeof B.resource=="string")try{let d=new URL(B.resource,Q);["http:","https:"].includes(d.protocol)&&(ce=d.toString())}catch{}else if(B.resource&&typeof B.resource=="object"&&"url"in B.resource){let d=B.resource;try{let E=new URL(d.url,Q);["http:","https:"].includes(E.protocol)&&(ce={...d,url:E.toString()})}catch{}}let Me={x402Version:N.x402Version??2,resource:ce,accepted:N,payload:ie};j.extensions&&(Me.extensions=j.extensions);let J=btoa(JSON.stringify(Me)),Z=await c(I,{...T,method:"POST",headers:{...T?.headers||{},"Content-Type":"application/json","PAYMENT-SIGNATURE":J}});if(!Z.ok)return u("Pass purchase failed:",Z.status),null;let $=Z.headers.get("ACCESS-PASS");return $&&(y(v,$),u("Access pass purchased and cached")),Z}async function G(b,T){let R=b;if(u("Making request:",R),s){let d=h(R);if(d){u("Using cached access pass");let E=await c(b,{...T,headers:{...T?.headers||{},Authorization:`Bearer ${d}`}});if(E.status!==401&&E.status!==402)return E;u("Cached pass rejected (status",E.status,"), purchasing new pass");try{m.delete(new URL(R).host)}catch{}}}let x=await A(b,T);if(x.status!==402)return x;u("Received 402 Payment Required");let v=x.headers.get("X-ACCESS-PASS-TIERS");if(s&&v){u("Server offers access passes, purchasing...");try{let d=JSON.parse(atob(v)),E=await K(b,T,x,d,R);if(E)return E}catch(d){u("Access pass purchase failed, falling back to per-request payment:",d)}}let _=x.headers.get("PAYMENT-REQUIRED");if(!_)throw new C("missing_payment_required_header","Server returned 402 but no PAYMENT-REQUIRED header");let I;try{let d=atob(_);I=JSON.parse(d)}catch{throw new C("invalid_payment_required","Failed to decode PAYMENT-REQUIRED header")}u("Payment requirements:",I);let M=x.headers.get("X-Quote-Hash");M&&u("Quote hash received:",M);let B=P(I.accepts);if(!B){let d=I.accepts.map(E=>E.network).join(", ");throw new C("no_matching_payment_option",`No connected wallet for any available network: ${d}`)}let{accept:O,adapter:N,wallet:W}=B;if(u(`Using ${N.name} for ${O.network}`),N.name==="Solana"&&!O.extra?.feePayer)throw new C("missing_fee_payer","Solana payment option missing feePayer in extra");let se=O.extra?.decimals??(rt(O.asset)?6:void 0);if(typeof se!="number")throw new C("missing_decimals","Payment option missing decimals - provide in extra or use a known stablecoin");let q=O.amount??O.maxAmountRequired;if(!q)throw new C("missing_amount","Payment option missing amount");if(i&&BigInt(q)>BigInt(i))throw new C("amount_exceeds_max",`Payment amount ${q} exceeds maximum ${i}`);let we=F(O.network,N);u("Checking balance...");try{let d=await N.getBalance(O,W,we),E=Number(q)/Math.pow(10,se);if(d<E){let Ze=k(O.network,N.name);throw new C("insufficient_balance",`Insufficient balance on ${Ze}. Have $${d.toFixed(4)}, need $${E.toFixed(4)}`)}u(`Balance OK: $${d.toFixed(4)} >= $${E.toFixed(4)}`)}catch(d){if(d instanceof C)throw d;u("Balance check failed (RPC error), proceeding with transaction attempt")}if(p&&!await p(O))throw new C("payment_rejected","Payment rejected by onPaymentRequired callback");u("Building transaction...");let H=await N.buildTransaction(O,W,we);u("Transaction signed");let j;N.name==="EVM"?j=JSON.parse(H.serialized):j={transaction:H.serialized};let ie=b,Q=I.resource;if(typeof I.resource=="string")try{let d=new URL(I.resource,ie).toString();d!==I.resource&&u("Resolved relative resource URL:",I.resource,"\u2192",d),Q=d}catch{Q=I.resource}else if(I.resource&&typeof I.resource=="object"&&"url"in I.resource){let d=I.resource;try{let E=new URL(d.url,ie).toString();E!==d.url&&(u("Resolved relative resource URL:",d.url,"\u2192",E),Q={...d,url:E})}catch{}}let ce={x402Version:O.x402Version??2,resource:Q,accepted:O,payload:j};H.extensions&&(ce.extensions=H.extensions);let Me=btoa(JSON.stringify(ce));if(f)try{f(O,H.settlementProbe)}catch{}u("Retrying request with payment...");let J=await A(b,{...T,headers:{...T?.headers||{},"PAYMENT-SIGNATURE":Me,...M?{"X-Quote-Hash":M}:{}}});if(u("Retry response status:",J.status),J.status===402){let d="unknown";try{let E=await J.clone().json();d=String(E.error||E.message||JSON.stringify(E)),u("Rejection reason:",d)}catch{}throw new C("payment_rejected",`Payment was rejected by the server: ${d}`)}let Z=J.headers.get("PAYMENT-RESPONSE"),$;if(Z)try{$=JSON.parse(atob(Z))}catch{}return $??={},$.amountAtomic=q,$.assetDecimals=se,St.set(J,$),$.extensions&&u("Settlement extensions:",Object.keys($.extensions).join(", ")),J}async function D(b,T){let[R,x]=await Jt(b,T);return G(R,x)}return{fetch:D}}import{PublicKey as cr}from"@solana/web3.js";import{bytesToHex as at}from"@noble/hashes/utils";import Qn from"tweetnacl";import{sessionRegisterMessage as Xn,sessionRevokeMessage as zn,voucherPayloadMessage as Xt,buildVoucherMessage as Yn}from"@dexterai/vault/messages";import{sha256 as tr}from"@noble/hashes/sha256";function wt(n){return Buffer.from(JSON.stringify({payload:n.payload,sessionPublicKey:at(n.sessionPublicKey),sessionRegistration:at(n.sessionRegistration),sessionSignature:at(n.sessionSignature)}),"utf8").toString("base64")}function V(n){if(n instanceof Error){if(n.message&&n.message.length>0)return n.message;if(n.name&&n.name.length>0)return n.name}let e=String(n);return e.length>0?e:"unknown error"}async function Be(n){let e="";try{e=(await n.clone().text()).slice(0,600)}catch{}let t=e.toLowerCase(),r=t.includes("settle")||t.includes("facilitator"),o=e;try{let a=JSON.parse(e),i=[a.error,a.detail,a.message].filter(c=>typeof c=="string"&&c.length>0);i.length>0&&(o=i.join(" \u2014 "))}catch{}return o||(o=`HTTP ${n.status}`),{reason:r?"settlement_failed":"merchant_rejected",detail:`merchant HTTP ${n.status}: ${o}`}}var Xe="Payment authorization was sent, but the merchant did not respond within the timeout. ",ze=" Do not retry without checking \u2014 inspect the funding wallet for a transfer to the merchant before attempting payment again.";async function Ye(n,e,t){if(!n)return{confirmed:!1,detail:Xe+"This payment scheme has no on-chain confirmation check, so the SDK cannot verify whether it settled."+ze};try{if(n.kind==="solana"){let i=L(),c=t??i.getDefaultRpcUrl(e.caip2);if(!i.confirmSettlement)return xt();let l=await i.confirmSettlement(n,c);return l.settled?{confirmed:!0,txSignature:l.txSignature}:bt()}let r=ae(),o=r.getDefaultRpcUrl(e.caip2);if(!r.confirmSettlement)return xt();let a=await r.confirmSettlement(n,o);return a.settled?{confirmed:!0,txSignature:a.txSignature}:bt()}catch(r){return{confirmed:!1,detail:Xe+`On-chain confirmation could not be completed (${V(r)}).`+ze}}}function bt(){return{confirmed:!1,detail:Xe+"On-chain confirmation found no matching settlement yet \u2014 the payment may still be pending, or may not have settled."+ze}}function xt(){return{confirmed:!1,detail:Xe+"The chain adapter does not support on-chain confirmation."+ze}}var zt=new Set(["exact","exact-approval"]);async function Yt(n,e,t,r){let o;try{o=await r.signNextVoucher(t.amount)}catch{return null}let a=new Headers(e.headers??void 0);a.set("X-Tab-Voucher",wt(o));let i={method:e.method??"GET",headers:a};e.signal&&(i.signal=e.signal),typeof e.body=="string"&&(i.body=e.body);let c;try{c=await fetch(n,i)}catch(l){return{ok:!1,reason:"error",detail:l?.message??String(l)}}return c.status===402?(r.rollbackVoucher?.call(r,o),null):c.ok?{ok:!0,paid:!0,response:c,amountPaid:t.amount,network:t.network}:{ok:!1,...await Be(c)}}function Et(n){let e=n.replace(/-/g,"+").replace(/_/g,"/"),t=e+"=".repeat((4-(e.length%4||4))%4);return JSON.parse(Buffer.from(t,"base64").toString("utf8"))}function Gt(n){let e=[];for(let t of n){if(!t||typeof t!="object")continue;let r=t,o=le(String(r.network??""));o&&e.push({scheme:String(r.scheme??"exact"),network:o,amount:String(r.amount??r.maxAmountRequired??"0"),asset:String(r.asset??""),payTo:String(r.payTo??""),maxTimeoutSeconds:typeof r.maxTimeoutSeconds=="number"?r.maxTimeoutSeconds:void 0,extra:r.extra&&typeof r.extra=="object"?r.extra:void 0})}return e}var Tt={version:2,async parseChallenge(n){let e=n.headers.get("payment-required");if(!e)return null;let t;try{t=Et(e)}catch{return null}let r=Array.isArray(t.accepts)?t.accepts:[];return r.length===0?null:{x402Version:2,options:Gt(r),resourceUrl:t.resource&&typeof t.resource=="object"?String(t.resource.url??""):void 0}},async pay(n,e,t,r,o){if(o.tab){let h=t.options.find(y=>y.scheme==="tab"&&y.network.family==="svm"&&y.payTo===o.tab.counterparty);if(h){let y=await Yt(n,e,h,o.tab);if(y)return y}}let a=t.options.filter(h=>zt.has(h.scheme));if(a.length===0)return{ok:!1,reason:"no_payment_options",detail:`no generically payable scheme offered (got: ${t.options.map(h=>h.scheme).join(", ")})`};let i=a.find(h=>h.network.family==="evm"?!!r.evm:h.network.family==="svm"?!!r.solana:!1);if(!i)return{ok:!1,reason:"unsupported_network"};let c=o.timeoutMs??15e3,l=o.responseTimeoutMs??12e4,s=new AbortController,p=setTimeout(()=>s.abort(),c),f=!1,g,w=(h,y)=>{f=!0,g=y,clearTimeout(p),p=setTimeout(()=>s.abort(),l)},u=Ue({wallets:r,preferredNetwork:i.network.caip2,maxAmountAtomic:o.maxAmountAtomic,fetch:globalThis.fetch,onPaymentDispatched:w}),A=e.signal?AbortSignal.any([e.signal,s.signal]):s.signal,m={method:e.method??"GET",headers:e.headers,signal:A};typeof e.body=="string"&&(m.body=e.body);try{let h=await u.fetch(n,m);if(clearTimeout(p),!h.ok)return{ok:!1,...await Be(h)};let y,S=h.headers.get("PAYMENT-RESPONSE");if(S)try{let P=Et(S);P&&typeof P.transaction=="string"&&(y=P.transaction)}catch{}return{ok:!0,paid:!0,response:h,amountPaid:i.amount,network:i.network,txSignature:y}}catch(h){clearTimeout(p);let y=h;if(y?.name==="AbortError"){if(!f)return{ok:!1,reason:"timeout"};let S=await Ye(g,i.network,o.solanaRpcUrl);return S.confirmed?{ok:!0,paid:!0,response:void 0,amountPaid:i.amount,network:i.network,txSignature:S.txSignature}:{ok:!1,reason:"payment_unconfirmed",detail:S.detail}}return{ok:!1,reason:"error",detail:y?.message??String(h)}}}};import{getAddress as Qt}from"viem";var Zt={TransferWithAuthorization:[{name:"from",type:"address"},{name:"to",type:"address"},{name:"value",type:"uint256"},{name:"validAfter",type:"uint256"},{name:"validBefore",type:"uint256"},{name:"nonce",type:"bytes32"}]};async function en(){let n=globalThis.crypto??(await import("crypto")).webcrypto,e=new Uint8Array(32);return n.getRandomValues(e),"0x"+Array.from(e,t=>t.toString(16).padStart(2,"0")).join("")}async function tn(n,e,t){if(typeof n.signTypedData!="function")throw new Error("EVM wallet does not support signTypedData");let r=Math.floor(Date.now()/1e3),o=String(r-600),a=String(r+(e.maxTimeoutSeconds??60)),i={from:n.address,to:e.payTo,value:e.amount,validAfter:o,validBefore:a,nonce:await en()},c=Oe[e.network.caip2];if(c===void 0)throw new Error(`unknown chain id for network ${e.network.caip2}`);let l=e.extra,s=await n.signTypedData({domain:{name:l.name,version:l.version,chainId:c,verifyingContract:Qt(e.asset)},types:Zt,primaryType:"TransferWithAuthorization",message:i});return{payment:{x402Version:1,scheme:e.scheme,network:t,payload:{signature:s,authorization:i}},settlementProbe:{kind:"eip3009",from:i.from,nonce:i.nonce,asset:e.asset,chainId:c}}}async function Ge(n,e,t){try{let r;for(let o of n.options){let a=o.network.family==="evm"&&!!e.evm||o.network.family==="svm"&&!!e.solana;if(o.scheme!=="exact"){a&&(r=o.scheme);continue}if(o.network.family==="evm"&&e.evm){let i=await e.evm;return await nn(o,i,t)}if(o.network.family==="svm"&&e.solana){let i=await e.solana;return await rn(o,i,t)}}return r!==void 0?{ok:!1,reason:"merchant_rejected",detail:`v1 supports only the 'exact' scheme, got '${r}'`}:{ok:!1,reason:"unsupported_network"}}catch(r){return{ok:!1,reason:"error",detail:V(r)}}}async function nn(n,e,t){if(t.maxAmountAtomic!==void 0&&BigInt(n.amount)>BigInt(t.maxAmountAtomic))return{ok:!1,reason:"budget_exceeded"};let r=n.extra??{},o=r.name,a=r.version;if(typeof o!="string"||o.length===0||typeof a!="string"||a.length===0)return{ok:!1,reason:"merchant_rejected",detail:"v1 challenge missing exact-scheme EIP-712 domain (extra.name / extra.version)"};let i=n.network.bare,{payment:c,settlementProbe:l}=await tn(e,n,i);return{ok:!0,headerValue:Buffer.from(JSON.stringify(c),"utf8").toString("base64"),option:n,settlementProbe:l}}async function rn(n,e,t){if(t.maxAmountAtomic!==void 0&&BigInt(n.amount)>BigInt(t.maxAmountAtomic))return{ok:!1,reason:"budget_exceeded"};if(n.scheme!=="exact")return{ok:!1,reason:"merchant_rejected",detail:`v1 SVM supports only the 'exact' scheme, got '${n.scheme}'`};let r=n.extra??{};if(typeof r.feePayer!="string"||r.feePayer.length===0)return{ok:!1,reason:"merchant_rejected",detail:"v1 SVM challenge missing extra.feePayer (required as the transaction fee payer)"};let o=n.network.bare,a={x402Version:1,scheme:n.scheme,network:o,asset:n.asset,payTo:n.payTo,amount:n.amount,maxAmountRequired:n.amount,maxTimeoutSeconds:n.maxTimeoutSeconds??60,extra:r},c=await L().buildTransaction(a,e,t.solanaRpcUrl),l={x402Version:1,scheme:n.scheme,network:o,payload:{transaction:c.serialized}};return{ok:!0,headerValue:Buffer.from(JSON.stringify(l),"utf8").toString("base64"),option:n,settlementProbe:c.settlementProbe}}function on(n){let e=[];for(let t of n){if(!t||typeof t!="object")continue;let r=t,o=le(String(r.network??""));o&&e.push({scheme:String(r.scheme??"exact"),network:o,amount:String(r.maxAmountRequired??r.amount??"0"),asset:String(r.asset??""),payTo:String(r.payTo??""),maxTimeoutSeconds:typeof r.maxTimeoutSeconds=="number"?r.maxTimeoutSeconds:void 0,extra:r.extra&&typeof r.extra=="object"?r.extra:void 0})}return e}var Pt={version:1,async parseChallenge(n){if(n.headers.get("payment-required"))return null;let e;try{e=await n.clone().json()}catch{return null}let t=Array.isArray(e.accepts)?e.accepts:[];if(t.length===0)return null;let r=on(t);return r.length===0?null:{x402Version:1,options:r}},async pay(n,e,t,r,o){let a,i=new AbortController,c=!1,l,s;try{let p=o.timeoutMs??15e3;a=setTimeout(()=>i.abort(),p);let f=await Ge(t,r,o);if(!f.ok)return{ok:!1,reason:f.reason,detail:f.detail};let g=f.headerValue,w=f.option;s=w,l=f.settlementProbe;let u=new Headers(e.headers??void 0);u.set("X-PAYMENT",g);let A=e.signal!=null?AbortSignal.any([e.signal,i.signal]):i.signal,m={method:e.method,headers:u,signal:A};typeof e.body=="string"&&(m.body=e.body),c=!0,clearTimeout(a);let h=o.responseTimeoutMs??12e4;a=setTimeout(()=>i.abort(),h);let y=await fetch(n,m);return y.ok?{ok:!0,paid:!0,response:y,amountPaid:w.amount,network:w.network,txSignature:an(y)}:{ok:!1,...await Be(y)}}catch(p){if(p instanceof Error&&p.name==="AbortError"){if(!c)return{ok:!1,reason:"timeout"};let f=await Ye(l,s.network,o.solanaRpcUrl);return f.confirmed?{ok:!0,paid:!0,response:void 0,amountPaid:s.amount,network:s.network,txSignature:f.txSignature}:{ok:!1,reason:"payment_unconfirmed",detail:f.detail}}return{ok:!1,reason:"error",detail:V(p)}}finally{a!==void 0&&clearTimeout(a)}}};function an(n){let e=n.headers.get("x-payment-response")??n.headers.get("X-PAYMENT-RESPONSE");if(e)try{let t=JSON.parse(Buffer.from(e,"base64").toString("utf8")),r=t.transaction??t.txHash??t.transactionHash;return typeof r=="string"?r:void 0}catch{return}}import*as It from"tweetnacl";import{Keypair as De,VersionedTransaction as un,Transaction as pn}from"@solana/web3.js";var Se=Symbol.for("x402:keypair");async function st(n){let e;if(typeof n=="string"){let t;try{let r=await Promise.resolve().then(()=>(_t(),Ct)),o=r.decode??r.default?.decode;if(!o)throw new Error("decode not found");t=o}catch{throw new Error('The "bs58" package is required for base58 private keys. Install it with: npm install bs58')}try{let r=t(n);e=De.fromSecretKey(r)}catch{try{let o=JSON.parse(n);if(Array.isArray(o))e=De.fromSecretKey(Uint8Array.from(o));else throw new Error("Invalid private key format")}catch{throw new Error("Invalid private key. Expected base58 string or JSON array of bytes.")}}}else if(Array.isArray(n))e=De.fromSecretKey(Uint8Array.from(n));else if(n instanceof Uint8Array)e=De.fromSecretKey(n);else throw new Error("Invalid private key type. Expected string, number[], or Uint8Array.");return{publicKey:{toBase58:()=>e.publicKey.toBase58()},signTransaction:async t=>{if(t instanceof un)return t.sign([e]),t;if(t instanceof pn)return t.sign(e),t;throw new Error("Unknown transaction type")},[Se]:e}}function mn(n){if(!n||typeof n!="object")return!1;let e=n;return Se in e&&e[Se]instanceof De&&"publicKey"in e&&"signTransaction"in e}function Qe(n){let e=n.evm;if(e&&typeof e.signMessage=="function"&&typeof e.address=="string")return{address:e.address,signMessage:e.signMessage};let t=n.solana;if(t){let r=t[Se];if(r&&r.secretKey&&r.publicKey)return{publicKey:r.publicKey,signMessage:async o=>It.sign.detached(o,r.secretKey)}}return null}var Nt=[Tt,Pt];async function kt(n){for(let e of Nt)if(await e.parseChallenge(n.clone()))return e;return null}async function dn(n){let e=Qe(n);if(!e)return fetch;try{return(await import("@x402/extensions/sign-in-with-x")).wrapFetchWithSIWx(fetch,e)}catch(t){return console.warn(`[x402] SIW-X unavailable \u2014 @x402/extensions failed to load; SIW-X merchants will not authenticate. ${V(t)}`),fetch}}async function Ot(n,e,t,r){if(e.body!==void 0&&e.body!==null&&typeof e.body!="string")return{ok:!1,reason:"error",detail:"payAndFetch requires a string body; non-string bodies (Buffer, FormData, URLSearchParams, ReadableStream) cannot be safely re-sent on the paid retry"};let o;try{o=await(await dn(t))(n,{...e})}catch(a){return{ok:!1,reason:"error",detail:V(a)}}if(o.status!==402)return{ok:!0,paid:!1,response:o};for(let a of Nt){let i=await a.parseChallenge(o.clone());if(i)return a.pay(n,e,i,t,r)}return{ok:!1,reason:"no_payment_options"}}async function it(n){let e;try{e=(await import("viem/accounts")).privateKeyToAccount}catch{throw new Error("EVM wallet support requires viem as a peer dependency. Install with: npm install viem")}let t=n.startsWith("0x")?n:`0x${n}`,r=e(t);return{address:r.address,signTypedData:o=>r.signTypedData(o),signTransaction:o=>r.signTransaction({to:o.to,data:o.data,chainId:o.chainId,gas:o.gas,gasPrice:o.gasPrice,nonce:o.nonce,type:"legacy"}),signMessage:o=>r.signMessage({message:o.message})}}function fn(n){if(!n||typeof n!="object")return!1;let e=n;return"address"in e&&typeof e.address=="string"&&e.address.startsWith("0x")&&"signTypedData"in e&&typeof e.signTypedData=="function"}function ct(n){let e=ot(n);if(e?.extensions?.["sponsored-access"])return e.extensions["sponsored-access"]}function gn(n){let e=ct(n);if(e?.recommendations?.length)return e.recommendations}async function yn(n){let t=ct(n)?.tracking?.impressionBeacon;if(!t)return!1;try{await fetch(t,{method:"GET"})}catch{}return!0}function lt(n,e){let{walletPrivateKey:t,evmPrivateKey:r,preferredNetwork:o,rpcUrls:a,maxAmountAtomic:i,verbose:c,accessPass:l,onPaymentRequired:s}=e;if(!t&&!r)throw new Error("At least one wallet private key is required (walletPrivateKey or evmPrivateKey)");let p={},f=[];t&&f.push(st(t).then(m=>{p.solana=m}).catch(m=>{console.warn(`[x402] Solana wallet init failed: ${m.message}`)})),r&&f.push(it(r).then(m=>{p.evm=m}).catch(m=>{console.warn(`[x402] EVM wallet init failed: ${m.message}`)}));let g=f.length>0?Promise.all(f):null,u=Ue({wallets:p,preferredNetwork:o,rpcUrls:a,maxAmountAtomic:i,fetch:n,verbose:c,accessPass:l,onPaymentRequired:s}),A=u.fetch.bind(u);return g?(async(m,h)=>(await g,A(m,h))):A}function hn(n){let{budget:e,allowedDomains:t,onPaymentRequired:r,...o}=n,a=parseFloat(e.total),i=e.perRequest?parseFloat(e.perRequest):1/0,c=e.perHour?parseFloat(e.perHour):1/0;if(isNaN(a)||a<=0)throw new Error("budget.total must be a positive number");let l=[],s=0;function p(){return l.reduce((u,A)=>u+A.amount,0)}function f(){let u=Date.now()-36e5;return l.filter(A=>A.timestamp>=u).reduce((A,m)=>A+m.amount,0)}let g=lt(fetch,{...o,onPaymentRequired:async u=>{let A=u.extra?.decimals??6,m=Number(u.amount)/Math.pow(10,A);if(m>i)throw new C("amount_exceeds_max",`$${m.toFixed(4)} exceeds per-request limit of $${i.toFixed(2)}`);let h=p();if(h+m>a)throw new C("amount_exceeds_max",`Budget exceeded. Spent $${h.toFixed(2)} of $${a.toFixed(2)}, payment: $${m.toFixed(4)}`);let y=f();if(y+m>c)throw new C("amount_exceeds_max",`Hourly limit ($${c.toFixed(2)}) exceeded. Spent $${y.toFixed(2)} this hour`);return s=m,r?r(u):!0}});return{fetch:(async(u,A)=>{let m=typeof u=="string"?u:u instanceof URL?u.href:u.url,h="unknown";try{h=new URL(m).hostname}catch{}if(t&&!t.some(S=>h===S||h.endsWith(`.${S}`)))throw new C("payment_rejected",`Domain "${h}" not in allowed domains`);s=0;let y=await g(u,A);if(s>0){let S="unknown",P=y.headers.get("PAYMENT-RESPONSE");if(P)try{S=JSON.parse(atob(P)).network||S}catch{}l.push({amount:s,domain:h,network:S,timestamp:Date.now()}),s=0}return y}),get spent(){return`$${p().toFixed(2)}`},get remaining(){return`$${(a-p()).toFixed(2)}`},get payments(){return l.length},get spentAmount(){return p()},get remainingAmount(){return a-p()},get ledger(){return l},get hourlySpend(){return f()},reset(){l=[]}}}import{capabilitySearch as An}from"@dexterai/x402-core";export{z as BASE_MAINNET,ft as DEXTER_FACILITATOR_URL,Se as KEYPAIR_SYMBOL,X as SOLANA_MAINNET,Le as USDC_MINT,C as X402Error,Ge as buildV1PaymentHeader,An as capabilitySearch,hn as createBudgetAccount,ae as createEvmAdapter,it as createEvmKeypairWallet,st as createKeypairWallet,L as createSolanaAdapter,Ue as createX402Client,kt as detectStrategy,yn as fireImpressionBeacon,ot as getPaymentReceipt,ct as getSponsoredAccessInfo,gn as getSponsoredRecommendations,fn as isEvmKeypairWallet,mn as isKeypairWallet,Ot as payAndFetch,le as toNetworkRef,Qe as toSiwxSigner,lt as wrapFetch};
package/dist/tab/adapters/solana/index.d.cts CHANGED
@@ -1,6 +1,6 @@
1
1
  import * as _solana_web3_js from '@solana/web3.js';
2
2
  import { PublicKey, Connection, Signer, ConfirmOptions } from '@solana/web3.js';
3
- import { V as VaultAdapter } from '../../../types-D1HhKTg7.cjs';
3
+ import { V as VaultAdapter } from '../../../types-DEnVPFxF.cjs';
4
4
  import '@dexterai/vault/types';
5
5
 
6
6
  /**
package/dist/tab/adapters/solana/index.d.ts CHANGED
@@ -1,6 +1,6 @@
1
1
  import * as _solana_web3_js from '@solana/web3.js';
2
2
  import { PublicKey, Connection, Signer, ConfirmOptions } from '@solana/web3.js';
3
- import { V as VaultAdapter } from '../../../types-D1HhKTg7.js';
3
+ import { V as VaultAdapter } from '../../../types-DEnVPFxF.js';
4
4
  import '@dexterai/vault/types';
5
5
 
6
6
  /**
package/dist/tab/index.cjs CHANGED
@@ -1,6 +1,6 @@
1
- "use strict";var E=Object.create;var S=Object.defineProperty;var N=Object.getOwnPropertyDescriptor;var $=Object.getOwnPropertyNames;var O=Object.getPrototypeOf,_=Object.prototype.hasOwnProperty;var H=(e,t)=>{for(var n in t)S(e,n,{get:t[n],enumerable:!0})},I=(e,t,n,r)=>{if(t&&typeof t=="object"||typeof t=="function")for(let o of $(t))!_.call(e,o)&&o!==n&&S(e,o,{get:()=>t[o],enumerable:!(r=N(t,o))||r.enumerable});return e};var M=(e,t,n)=>(n=e!=null?E(O(e)):{},I(t||!e||!e.__esModule?S(n,"default",{value:e,enumerable:!0}):n,e)),B=e=>I(S({},"__esModule",{value:!0}),e);var z={};H(z,{DEFAULT_FACILITATOR_URL:()=>v,DEXTER_VAULT_PROGRAM_ID:()=>c.DEXTER_VAULT_PROGRAM_ID,INSTRUCTIONS_SYSVAR_ID:()=>c.INSTRUCTIONS_SYSVAR_ID,SECP256R1_PROGRAM_ID:()=>c.SECP256R1_PROGRAM_ID,SessionScopeExceededError:()=>p,TabClosedError:()=>u,UnsupportedNetworkError:()=>d,atomicToHuman:()=>b,buildRegisterSessionKeyInstruction:()=>h.buildRegisterSessionKeyInstruction,buildRevokeSessionKeyInstruction:()=>h.buildRevokeSessionKeyInstruction,buildSecp256r1VerifyInstruction:()=>T.buildSecp256r1VerifyInstruction,buildVoucherMessage:()=>a.buildVoucherMessage,humanToAtomic:()=>y,openTab:()=>C,resumeTab:()=>k,sessionRegisterMessage:()=>a.sessionRegisterMessage,sessionRevokeMessage:()=>a.sessionRevokeMessage,voucherPayloadMessage:()=>a.voucherPayloadMessage,voucherToHeader:()=>x});module.exports=B(z);var d=class extends Error{constructor(n){super(`Network ${n} is not yet supported by @dexterai/x402/tab`);this.network=n;this.name="UnsupportedNetworkError"}},p=class extends Error{constructor(n,r){super(`Session scope exceeded: ${n}${r?` (${r})`:""}`);this.reason=n;this.name="SessionScopeExceededError"}},u=class extends Error{constructor(n){super(`Tab ${n} is already closed`);this.channelId=n;this.name="TabClosedError"}};var f=require("@solana/web3.js"),l=require("@noble/hashes/utils");var D=M(require("tweetnacl"),1);var a=require("@dexterai/vault/messages");var R=require("@noble/hashes/sha256");function U(e){let t=new Uint8Array(8);new DataView(t.buffer).setBigUint64(0,e.nonce,!0);let n=new TextEncoder().encode(e.sellerUrl),r=R.sha256.create();return r.update(e.vaultPda.toBytes()),r.update(n),r.update(t),r.digest()}var q=3600,v="https://x402.dexter.cash",V=6;function y(e,t=V){if(!/^\d+(\.\d+)?$/.test(e))throw new Error(`amount must be a non-negative decimal string, got "${e}"`);let[n,r=""]=e.split(".");if(r.length>t)throw new Error(`amount "${e}" has more than ${t} decimals`);let o=r.padEnd(t,"0"),s=`${n}${o}`.replace(/^0+(?=\d)/,"");return s===""?"0":s}function b(e,t=V){if(!/^\d+$/.test(e))throw new Error(`atomic must be a non-negative integer string, got "${e}"`);let n=e.padStart(t+1,"0"),r=n.slice(0,-t).replace(/^0+(?=\d)/,"")||"0",o=n.slice(-t).replace(/0+$/,"");return o?`${r}.${o}`:r}var w=class{channelId;network;counterparty;internals;cumulativeAtomic=0n;sequenceNumber=0;closed=!1;lastSignedVoucher=null;previousSignedVoucher=null;constructor(t){this.internals=t,this.channelId=t.channelIdHex,this.network=t.network,this.counterparty=t.counterparty}get state(){let t=this.internals.totalCapAtomic-this.cumulativeAtomic,n=Math.floor(Date.now()/1e3);return{isOpen:!this.closed,spent:b(this.cumulativeAtomic.toString()),remaining:b(t.toString()),expiresInSec:Math.max(0,this.internals.expiresAtUnix-n)}}async signNextVoucher(t){if(this.closed)throw new u(this.channelId);let n=BigInt(t);if(n<=0n)throw new Error(`voucher increment must be > 0, got ${t}`);if(n>this.internals.perUnitCapAtomic)throw new p("cap_exceeded",`single voucher increment ${n} exceeds perUnitCap ${this.internals.perUnitCapAtomic}`);let r=this.cumulativeAtomic+n;if(r>this.internals.totalCapAtomic)throw new p("cap_exceeded",`cumulative ${r} would exceed totalCap ${this.internals.totalCapAtomic}`);let o=this.sequenceNumber+1,s={channelId:this.channelId,cumulativeAmount:r.toString(),sequenceNumber:o},i=await this.internals.vault.signWithSession(this.internals.session,s);return this.previousSignedVoucher=this.lastSignedVoucher,this.lastSignedVoucher=i,this.sequenceNumber=o,this.cumulativeAtomic=r,i}rollbackVoucher(t){let n=this.lastSignedVoucher;if(!n||n.payload.sequenceNumber!==t.payload.sequenceNumber||n.payload.cumulativeAmount!==t.payload.cumulativeAmount)return!1;let r=this.previousSignedVoucher;if(r)this.sequenceNumber=r.payload.sequenceNumber,this.cumulativeAtomic=BigInt(r.payload.cumulativeAmount),this.lastSignedVoucher=r;else if(n.payload.sequenceNumber===1)this.sequenceNumber=0,this.cumulativeAtomic=0n,this.lastSignedVoucher=null;else return!1;return this.previousSignedVoucher=null,!0}async stream(t,n){if(this.closed)throw new u(this.channelId);let r=await this.signNextVoucher(this.internals.perUnitCapAtomic.toString()),o=new Headers(n?.headers);o.set("X-Tab-Voucher",x(r)),o.set("Accept","text/event-stream");let s=await fetch(t,{...n,headers:o});if(!s.ok){let i=await s.text().catch(()=>"");throw new Error(`tab.stream HTTP ${s.status}: ${i.slice(0,500)}`)}if(!s.body)throw new Error("tab.stream response has no body");return J(s.body)}async close(){if(this.closed)throw new u(this.channelId);let t="";return this.lastSignedVoucher&&this.cumulativeAtomic>0n&&(t=await L(this.internals.facilitatorUrl,this.lastSignedVoucher,this.internals.network)),await this.internals.vault.signCloseTab(this.internals.session,this.channelId,this.cumulativeAtomic.toString()),this.closed=!0,this.internals.session.privateKey.fill(0),{settledAmount:b(this.cumulativeAtomic.toString()),settleTx:t}}};function x(e){return Buffer.from(JSON.stringify({payload:e.payload,sessionPublicKey:(0,l.bytesToHex)(e.sessionPublicKey),sessionRegistration:(0,l.bytesToHex)(e.sessionRegistration),sessionSignature:(0,l.bytesToHex)(e.sessionSignature)}),"utf8").toString("base64")}async function L(e,t,n){let r=`${e.replace(/\/$/,"")}/tab/settle`,o={channelId:t.payload.channelId,cumulativeAmount:t.payload.cumulativeAmount,sequenceNumber:t.payload.sequenceNumber,sessionPublicKey:(0,l.bytesToHex)(t.sessionPublicKey),sessionSignature:(0,l.bytesToHex)(t.sessionSignature),sessionRegistration:(0,l.bytesToHex)(t.sessionRegistration),network:n},s=await fetch(r,{method:"POST",headers:{"content-type":"application/json"},body:JSON.stringify(o)}),i=await s.text();if(!s.ok)throw new Error(`tab settle ${s.status}: ${i.slice(0,500)}`);let m;try{m=JSON.parse(i)}catch{throw new Error(`tab settle returned non-JSON: ${i.slice(0,200)}`)}if(!m.settleTx)throw new Error(`tab settle returned no settleTx: ${i.slice(0,200)}`);return m.settleTx}async function C(e){if(e.network!==e.vault.network)throw new d(`options.network (${e.network}) doesn't match vault.network (${e.vault.network})`);if(e.network!=="solana:mainnet")throw new d(e.network);let t=BigInt(Math.floor(Math.random()*4294967295)),n=new f.PublicKey(e.vault.vaultPda),r=U({vaultPda:n,sellerUrl:e.seller,nonce:BigInt(t)}),o=(0,l.bytesToHex)(r),s=BigInt(y(e.perUnitCap)),i=BigInt(y(e.totalCap));if(s<=0n)throw new Error("perUnitCap must be > 0");if(i<s)throw new Error("totalCap must be >= perUnitCap");if(e.revolvingCapacity!==void 0&&BigInt(y(e.revolvingCapacity))<=0n)throw new Error("revolvingCapacity must be > 0");let m=e.sessionDuration??q,g=Math.floor(Date.now()/1e3)+m,A=F(e.seller),P={channelId:o,maxAmountAtomic:i.toString(),revolvingCapacityAtomic:e.revolvingCapacity?y(e.revolvingCapacity):i.toString(),expiresAtUnix:g,allowedCounterparty:A},K=await e.vault.authorizeSession(P);return new w({vault:e.vault,network:e.network,seller:e.seller,counterparty:A,session:K,channelIdHex:o,channelIdBytes:r,perUnitCapAtomic:s,totalCapAtomic:i,expiresAtUnix:g,facilitatorUrl:e.facilitatorUrl??v})}async function k(e){throw new Error("resumeTab is Phase 3 work. Session keys are memory-only by design; recovery requires reading active_session on chain and re-authorizing. Tracked in dexter-vault roadmap.")}function F(e){if(/^[1-9A-HJ-NP-Za-km-z]{32,44}$/.test(e))try{return new f.PublicKey(e),e}catch{}throw new Error(`seller must be a base58 Solana pubkey for Phase 2 (got "${e}"). URL-based counterparty resolution lands in Phase 3 (seller middleware).`)}async function*J(e){let t=e.getReader(),n=new TextDecoder,r="";try{for(;;){let{done:o,value:s}=await t.read();if(o)break;r+=n.decode(s,{stream:!0});let i;for(;(i=r.indexOf(`
1
+ "use strict";var K=Object.create;var S=Object.defineProperty;var N=Object.getOwnPropertyDescriptor;var $=Object.getOwnPropertyNames;var _=Object.getPrototypeOf,O=Object.prototype.hasOwnProperty;var H=(e,t)=>{for(var n in t)S(e,n,{get:t[n],enumerable:!0})},I=(e,t,n,r)=>{if(t&&typeof t=="object"||typeof t=="function")for(let o of $(t))!O.call(e,o)&&o!==n&&S(e,o,{get:()=>t[o],enumerable:!(r=N(t,o))||r.enumerable});return e};var M=(e,t,n)=>(n=e!=null?K(_(e)):{},I(t||!e||!e.__esModule?S(n,"default",{value:e,enumerable:!0}):n,e)),B=e=>I(S({},"__esModule",{value:!0}),e);var z={};H(z,{DEFAULT_FACILITATOR_URL:()=>f,DEXTER_VAULT_PROGRAM_ID:()=>l.DEXTER_VAULT_PROGRAM_ID,INSTRUCTIONS_SYSVAR_ID:()=>l.INSTRUCTIONS_SYSVAR_ID,SECP256R1_PROGRAM_ID:()=>l.SECP256R1_PROGRAM_ID,SessionScopeExceededError:()=>g,TabClosedError:()=>m,UnsupportedNetworkError:()=>p,atomicToHuman:()=>b,buildRegisterSessionKeyInstruction:()=>h.buildRegisterSessionKeyInstruction,buildRevokeSessionKeyInstruction:()=>h.buildRevokeSessionKeyInstruction,buildSecp256r1VerifyInstruction:()=>T.buildSecp256r1VerifyInstruction,buildVoucherMessage:()=>u.buildVoucherMessage,humanToAtomic:()=>y,openTab:()=>V,resumeTab:()=>C,sessionRegisterMessage:()=>u.sessionRegisterMessage,sessionRevokeMessage:()=>u.sessionRevokeMessage,voucherPayloadMessage:()=>u.voucherPayloadMessage,voucherToHeader:()=>x});module.exports=B(z);var p=class extends Error{constructor(n){super(`Network ${n} is not yet supported by @dexterai/x402/tab`);this.network=n;this.name="UnsupportedNetworkError"}},g=class extends Error{constructor(n,r){super(`Session scope exceeded: ${n}${r?` (${r})`:""}`);this.reason=n;this.name="SessionScopeExceededError"}},m=class extends Error{constructor(n){super(`Tab ${n} is already closed`);this.channelId=n;this.name="TabClosedError"}};var v=require("@solana/web3.js"),d=require("@noble/hashes/utils");var D=M(require("tweetnacl"),1);var u=require("@dexterai/vault/messages");var R=require("@noble/hashes/sha256");function k(e){let t=new Uint8Array(8);new DataView(t.buffer).setBigUint64(0,e.nonce,!0);let n=new TextEncoder().encode(e.sellerUrl),r=R.sha256.create();return r.update(e.vaultPda.toBytes()),r.update(n),r.update(t),r.digest()}var q=3600,f="https://x402.dexter.cash",U=6;function y(e,t=U){if(!/^\d+(\.\d+)?$/.test(e))throw new Error(`amount must be a non-negative decimal string, got "${e}"`);let[n,r=""]=e.split(".");if(r.length>t)throw new Error(`amount "${e}" has more than ${t} decimals`);let o=r.padEnd(t,"0"),i=`${n}${o}`.replace(/^0+(?=\d)/,"");return i===""?"0":i}function b(e,t=U){if(!/^\d+$/.test(e))throw new Error(`atomic must be a non-negative integer string, got "${e}"`);let n=e.padStart(t+1,"0"),r=n.slice(0,-t).replace(/^0+(?=\d)/,"")||"0",o=n.slice(-t).replace(/0+$/,"");return o?`${r}.${o}`:r}var w=class{channelId;network;counterparty;internals;cumulativeAtomic=0n;sequenceNumber=0;closed=!1;lastSignedVoucher=null;previousSignedVoucher=null;constructor(t){this.internals=t,this.channelId=t.channelIdHex,this.network=t.network,this.counterparty=t.counterparty}get state(){let t=this.internals.totalCapAtomic-this.cumulativeAtomic,n=Math.floor(Date.now()/1e3);return{isOpen:!this.closed,spent:b(this.cumulativeAtomic.toString()),remaining:b(t.toString()),expiresInSec:Math.max(0,this.internals.expiresAtUnix-n)}}async signNextVoucher(t){if(this.closed)throw new m(this.channelId);let n=BigInt(t);if(n<=0n)throw new Error(`voucher increment must be > 0, got ${t}`);if(n>this.internals.perUnitCapAtomic)throw new g("cap_exceeded",`single voucher increment ${n} exceeds perUnitCap ${this.internals.perUnitCapAtomic}`);let r=this.cumulativeAtomic+n;if(r>this.internals.totalCapAtomic)throw new g("cap_exceeded",`cumulative ${r} would exceed totalCap ${this.internals.totalCapAtomic}`);let o=this.sequenceNumber+1,i={channelId:this.channelId,cumulativeAmount:r.toString(),sequenceNumber:o},s=await this.internals.vault.signWithSession(this.internals.session,i);return this.previousSignedVoucher=this.lastSignedVoucher,this.lastSignedVoucher=s,this.sequenceNumber=o,this.cumulativeAtomic=r,s}rollbackVoucher(t){let n=this.lastSignedVoucher;if(!n||n.payload.sequenceNumber!==t.payload.sequenceNumber||n.payload.cumulativeAmount!==t.payload.cumulativeAmount)return!1;let r=this.previousSignedVoucher;if(r)this.sequenceNumber=r.payload.sequenceNumber,this.cumulativeAtomic=BigInt(r.payload.cumulativeAmount),this.lastSignedVoucher=r;else if(n.payload.sequenceNumber===1)this.sequenceNumber=0,this.cumulativeAtomic=0n,this.lastSignedVoucher=null;else return!1;return this.previousSignedVoucher=null,!0}async stream(t,n){if(this.closed)throw new m(this.channelId);let r=await this.signNextVoucher(this.internals.perUnitCapAtomic.toString()),o=new Headers(n?.headers);o.set("X-Tab-Voucher",x(r)),o.set("Accept","text/event-stream");let i=await fetch(t,{...n,headers:o});if(!i.ok){let s=await i.text().catch(()=>"");throw new Error(`tab.stream HTTP ${i.status}: ${s.slice(0,500)}`)}if(!i.body)throw new Error("tab.stream response has no body");return F(i.body)}async close(){if(this.closed)throw new m(this.channelId);let t={settleTx:""};return this.lastSignedVoucher&&this.cumulativeAtomic>0n&&(t=await L(this.internals.facilitatorUrl,this.lastSignedVoucher,this.internals.network)),await this.internals.vault.signCloseTab(this.internals.session,this.channelId,this.cumulativeAtomic.toString()),this.closed=!0,this.internals.session.privateKey.fill(0),{settledAmount:b(this.cumulativeAtomic.toString()),...t}}};function x(e){return Buffer.from(JSON.stringify({payload:e.payload,sessionPublicKey:(0,d.bytesToHex)(e.sessionPublicKey),sessionRegistration:(0,d.bytesToHex)(e.sessionRegistration),sessionSignature:(0,d.bytesToHex)(e.sessionSignature)}),"utf8").toString("base64")}async function L(e,t,n){let r=`${e.replace(/\/$/,"")}/tab/settle`,o={channelId:t.payload.channelId,cumulativeAmount:t.payload.cumulativeAmount,sequenceNumber:t.payload.sequenceNumber,sessionPublicKey:(0,d.bytesToHex)(t.sessionPublicKey),sessionSignature:(0,d.bytesToHex)(t.sessionSignature),sessionRegistration:(0,d.bytesToHex)(t.sessionRegistration),network:n},i=await fetch(r,{method:"POST",headers:{"content-type":"application/json"},body:JSON.stringify(o)}),s=await i.text();if(!i.ok)throw new Error(`tab settle ${i.status}: ${s.slice(0,500)}`);let a;try{a=JSON.parse(s)}catch{throw new Error(`tab settle returned non-JSON: ${s.slice(0,200)}`)}if(!a.settleTx)throw new Error(`tab settle returned no settleTx: ${s.slice(0,200)}`);let c={settleTx:a.settleTx};return typeof a.grossAmount=="string"&&(c.grossAmount=a.grossAmount),typeof a.feeAmount=="string"&&(c.feeAmount=a.feeAmount),typeof a.netAmount=="string"&&(c.netAmount=a.netAmount),c}async function J(e,t,n,r,o){let i=`${e.replace(/\/$/,"")}/tab/open`,s=await fetch(i,{method:"POST",headers:{"content-type":"application/json"},body:JSON.stringify({buyer_swig_address:t,seller:o,max_amount_atomic:n.toString(),network:r})}),a=await s.json().catch(()=>({}));if(!s.ok||!a.success||!a.armed)throw new Error(`tab_open_unprotected: ${a.error??`http_${s.status}`}`);return{armed:!0,signature:a.signature??""}}async function V(e){if(e.network!==e.vault.network)throw new p(`options.network (${e.network}) doesn't match vault.network (${e.vault.network})`);if(e.network!=="solana:mainnet")throw new p(e.network);let t=BigInt(Math.floor(Math.random()*4294967295)),n=new v.PublicKey(e.vault.vaultPda),r=k({vaultPda:n,sellerUrl:e.seller,nonce:BigInt(t)}),o=(0,d.bytesToHex)(r),i=BigInt(y(e.perUnitCap)),s=BigInt(y(e.totalCap));if(i<=0n)throw new Error("perUnitCap must be > 0");if(s<i)throw new Error("totalCap must be >= perUnitCap");if(e.revolvingCapacity!==void 0&&BigInt(y(e.revolvingCapacity))<=0n)throw new Error("revolvingCapacity must be > 0");let a=e.sessionDuration??q,c=Math.floor(Date.now()/1e3)+a,A=j(e.seller),P={channelId:o,maxAmountAtomic:s.toString(),revolvingCapacityAtomic:e.revolvingCapacity?y(e.revolvingCapacity):s.toString(),expiresAtUnix:c,allowedCounterparty:A},E=await e.vault.authorizeSession(P);return await J(e.facilitatorUrl??f,e.vault.swigAddress,s,e.network,A),new w({vault:e.vault,network:e.network,seller:e.seller,counterparty:A,session:E,channelIdHex:o,channelIdBytes:r,perUnitCapAtomic:i,totalCapAtomic:s,expiresAtUnix:c,facilitatorUrl:e.facilitatorUrl??f})}async function C(e){throw new Error("resumeTab is Phase 3 work. Session keys are memory-only by design; recovery requires reading active_session on chain and re-authorizing. Tracked in dexter-vault roadmap.")}function j(e){if(/^[1-9A-HJ-NP-Za-km-z]{32,44}$/.test(e))try{return new v.PublicKey(e),e}catch{}throw new Error(`seller must be a base58 Solana pubkey for Phase 2 (got "${e}"). URL-based counterparty resolution lands in Phase 3 (seller middleware).`)}async function*F(e){let t=e.getReader(),n=new TextDecoder,r="";try{for(;;){let{done:o,value:i}=await t.read();if(o)break;r+=n.decode(i,{stream:!0});let s;for(;(s=r.indexOf(`
2
2
 
3
- `))!==-1;){let m=r.slice(0,i);r=r.slice(i+2);let g=W(m);if(g.eventName==="end")return;if(g.data!==null){let A=g.data.replace(/\\n/g,`
3
+ `))!==-1;){let a=r.slice(0,s);r=r.slice(s+2);let c=W(a);if(c.eventName==="end")return;if(c.data!==null){let A=c.data.replace(/\\n/g,`
4
4
  `);yield new TextEncoder().encode(A)}}}}finally{t.releaseLock()}}function W(e){let t=null,n=[];for(let r of e.split(`
5
5
  `))r.startsWith("event:")?t=r.slice(6).trim():r.startsWith("data:")&&n.push(r.slice(5).trimStart());return{eventName:t,data:n.length?n.join(`
6
- `):null}}var h=require("@dexterai/vault/instructions"),T=require("@dexterai/vault/precompile"),c=require("@dexterai/vault/constants");0&&(module.exports={DEFAULT_FACILITATOR_URL,DEXTER_VAULT_PROGRAM_ID,INSTRUCTIONS_SYSVAR_ID,SECP256R1_PROGRAM_ID,SessionScopeExceededError,TabClosedError,UnsupportedNetworkError,atomicToHuman,buildRegisterSessionKeyInstruction,buildRevokeSessionKeyInstruction,buildSecp256r1VerifyInstruction,buildVoucherMessage,humanToAtomic,openTab,resumeTab,sessionRegisterMessage,sessionRevokeMessage,voucherPayloadMessage,voucherToHeader});
6
+ `):null}}var h=require("@dexterai/vault/instructions"),T=require("@dexterai/vault/precompile"),l=require("@dexterai/vault/constants");0&&(module.exports={DEFAULT_FACILITATOR_URL,DEXTER_VAULT_PROGRAM_ID,INSTRUCTIONS_SYSVAR_ID,SECP256R1_PROGRAM_ID,SessionScopeExceededError,TabClosedError,UnsupportedNetworkError,atomicToHuman,buildRegisterSessionKeyInstruction,buildRevokeSessionKeyInstruction,buildSecp256r1VerifyInstruction,buildVoucherMessage,humanToAtomic,openTab,resumeTab,sessionRegisterMessage,sessionRevokeMessage,voucherPayloadMessage,voucherToHeader});
package/dist/tab/index.d.cts CHANGED
@@ -1,5 +1,5 @@
1
- import { O as OpenTabOptions, T as Tab, R as ResumeTabOptions } from '../types-D1HhKTg7.cjs';
2
- export { S as SessionScopeExceededError, b as TabCloseResult, c as TabClosedError, a as TabState, U as UnsupportedNetworkError, V as VaultAdapter } from '../types-D1HhKTg7.cjs';
1
+ import { O as OpenTabOptions, T as Tab, R as ResumeTabOptions } from '../types-DEnVPFxF.cjs';
2
+ export { S as SessionScopeExceededError, b as TabCloseResult, c as TabClosedError, a as TabState, U as UnsupportedNetworkError, V as VaultAdapter } from '../types-DEnVPFxF.cjs';
3
3
  import { HumanAmount, AtomicAmount, SignedVoucher } from '@dexterai/vault/types';
4
4
  export { AtomicAmount, HumanAmount, SessionKey, SessionScope, SignedVoucher, TabNetworkId, VoucherPayload } from '@dexterai/vault/types';
5
5
  export { SessionRegisterMessageArgs, SessionRevokeMessageArgs, VoucherPayloadBytes, buildVoucherMessage, sessionRegisterMessage, sessionRevokeMessage, voucherPayloadMessage } from '@dexterai/vault/messages';
package/dist/tab/index.d.ts CHANGED
@@ -1,5 +1,5 @@
1
- import { O as OpenTabOptions, T as Tab, R as ResumeTabOptions } from '../types-D1HhKTg7.js';
2
- export { S as SessionScopeExceededError, b as TabCloseResult, c as TabClosedError, a as TabState, U as UnsupportedNetworkError, V as VaultAdapter } from '../types-D1HhKTg7.js';
1
+ import { O as OpenTabOptions, T as Tab, R as ResumeTabOptions } from '../types-DEnVPFxF.js';
2
+ export { S as SessionScopeExceededError, b as TabCloseResult, c as TabClosedError, a as TabState, U as UnsupportedNetworkError, V as VaultAdapter } from '../types-DEnVPFxF.js';
3
3
  import { HumanAmount, AtomicAmount, SignedVoucher } from '@dexterai/vault/types';
4
4
  export { AtomicAmount, HumanAmount, SessionKey, SessionScope, SignedVoucher, TabNetworkId, VoucherPayload } from '@dexterai/vault/types';
5
5
  export { SessionRegisterMessageArgs, SessionRevokeMessageArgs, VoucherPayloadBytes, buildVoucherMessage, sessionRegisterMessage, sessionRevokeMessage, voucherPayloadMessage } from '@dexterai/vault/messages';
package/dist/tab/index.js CHANGED
@@ -1,6 +1,6 @@
1
- var m=class extends Error{constructor(r){super(`Network ${r} is not yet supported by @dexterai/x402/tab`);this.network=r;this.name="UnsupportedNetworkError"}},d=class extends Error{constructor(r,n){super(`Session scope exceeded: ${r}${n?` (${n})`:""}`);this.reason=r;this.name="SessionScopeExceededError"}},c=class extends Error{constructor(r){super(`Tab ${r} is already closed`);this.channelId=r;this.name="TabClosedError"}};import{PublicKey as S}from"@solana/web3.js";import{bytesToHex as u}from"@noble/hashes/utils";import z from"tweetnacl";import{sessionRegisterMessage as I,sessionRevokeMessage as R,voucherPayloadMessage as b,buildVoucherMessage as U}from"@dexterai/vault/messages";import{sha256 as V}from"@noble/hashes/sha256";function A(e){let t=new Uint8Array(8);new DataView(t.buffer).setBigUint64(0,e.nonce,!0);let r=new TextEncoder().encode(e.sellerUrl),n=V.create();return n.update(e.vaultPda.toBytes()),n.update(r),n.update(t),n.digest()}var C=3600,w="https://x402.dexter.cash",f=6;function p(e,t=f){if(!/^\d+(\.\d+)?$/.test(e))throw new Error(`amount must be a non-negative decimal string, got "${e}"`);let[r,n=""]=e.split(".");if(n.length>t)throw new Error(`amount "${e}" has more than ${t} decimals`);let s=n.padEnd(t,"0"),o=`${r}${s}`.replace(/^0+(?=\d)/,"");return o===""?"0":o}function g(e,t=f){if(!/^\d+$/.test(e))throw new Error(`atomic must be a non-negative integer string, got "${e}"`);let r=e.padStart(t+1,"0"),n=r.slice(0,-t).replace(/^0+(?=\d)/,"")||"0",s=r.slice(-t).replace(/0+$/,"");return s?`${n}.${s}`:n}var y=class{channelId;network;counterparty;internals;cumulativeAtomic=0n;sequenceNumber=0;closed=!1;lastSignedVoucher=null;previousSignedVoucher=null;constructor(t){this.internals=t,this.channelId=t.channelIdHex,this.network=t.network,this.counterparty=t.counterparty}get state(){let t=this.internals.totalCapAtomic-this.cumulativeAtomic,r=Math.floor(Date.now()/1e3);return{isOpen:!this.closed,spent:g(this.cumulativeAtomic.toString()),remaining:g(t.toString()),expiresInSec:Math.max(0,this.internals.expiresAtUnix-r)}}async signNextVoucher(t){if(this.closed)throw new c(this.channelId);let r=BigInt(t);if(r<=0n)throw new Error(`voucher increment must be > 0, got ${t}`);if(r>this.internals.perUnitCapAtomic)throw new d("cap_exceeded",`single voucher increment ${r} exceeds perUnitCap ${this.internals.perUnitCapAtomic}`);let n=this.cumulativeAtomic+r;if(n>this.internals.totalCapAtomic)throw new d("cap_exceeded",`cumulative ${n} would exceed totalCap ${this.internals.totalCapAtomic}`);let s=this.sequenceNumber+1,o={channelId:this.channelId,cumulativeAmount:n.toString(),sequenceNumber:s},i=await this.internals.vault.signWithSession(this.internals.session,o);return this.previousSignedVoucher=this.lastSignedVoucher,this.lastSignedVoucher=i,this.sequenceNumber=s,this.cumulativeAtomic=n,i}rollbackVoucher(t){let r=this.lastSignedVoucher;if(!r||r.payload.sequenceNumber!==t.payload.sequenceNumber||r.payload.cumulativeAmount!==t.payload.cumulativeAmount)return!1;let n=this.previousSignedVoucher;if(n)this.sequenceNumber=n.payload.sequenceNumber,this.cumulativeAtomic=BigInt(n.payload.cumulativeAmount),this.lastSignedVoucher=n;else if(r.payload.sequenceNumber===1)this.sequenceNumber=0,this.cumulativeAtomic=0n,this.lastSignedVoucher=null;else return!1;return this.previousSignedVoucher=null,!0}async stream(t,r){if(this.closed)throw new c(this.channelId);let n=await this.signNextVoucher(this.internals.perUnitCapAtomic.toString()),s=new Headers(r?.headers);s.set("X-Tab-Voucher",v(n)),s.set("Accept","text/event-stream");let o=await fetch(t,{...r,headers:s});if(!o.ok){let i=await o.text().catch(()=>"");throw new Error(`tab.stream HTTP ${o.status}: ${i.slice(0,500)}`)}if(!o.body)throw new Error("tab.stream response has no body");return N(o.body)}async close(){if(this.closed)throw new c(this.channelId);let t="";return this.lastSignedVoucher&&this.cumulativeAtomic>0n&&(t=await k(this.internals.facilitatorUrl,this.lastSignedVoucher,this.internals.network)),await this.internals.vault.signCloseTab(this.internals.session,this.channelId,this.cumulativeAtomic.toString()),this.closed=!0,this.internals.session.privateKey.fill(0),{settledAmount:g(this.cumulativeAtomic.toString()),settleTx:t}}};function v(e){return Buffer.from(JSON.stringify({payload:e.payload,sessionPublicKey:u(e.sessionPublicKey),sessionRegistration:u(e.sessionRegistration),sessionSignature:u(e.sessionSignature)}),"utf8").toString("base64")}async function k(e,t,r){let n=`${e.replace(/\/$/,"")}/tab/settle`,s={channelId:t.payload.channelId,cumulativeAmount:t.payload.cumulativeAmount,sequenceNumber:t.payload.sequenceNumber,sessionPublicKey:u(t.sessionPublicKey),sessionSignature:u(t.sessionSignature),sessionRegistration:u(t.sessionRegistration),network:r},o=await fetch(n,{method:"POST",headers:{"content-type":"application/json"},body:JSON.stringify(s)}),i=await o.text();if(!o.ok)throw new Error(`tab settle ${o.status}: ${i.slice(0,500)}`);let a;try{a=JSON.parse(i)}catch{throw new Error(`tab settle returned non-JSON: ${i.slice(0,200)}`)}if(!a.settleTx)throw new Error(`tab settle returned no settleTx: ${i.slice(0,200)}`);return a.settleTx}async function P(e){if(e.network!==e.vault.network)throw new m(`options.network (${e.network}) doesn't match vault.network (${e.vault.network})`);if(e.network!=="solana:mainnet")throw new m(e.network);let t=BigInt(Math.floor(Math.random()*4294967295)),r=new S(e.vault.vaultPda),n=A({vaultPda:r,sellerUrl:e.seller,nonce:BigInt(t)}),s=u(n),o=BigInt(p(e.perUnitCap)),i=BigInt(p(e.totalCap));if(o<=0n)throw new Error("perUnitCap must be > 0");if(i<o)throw new Error("totalCap must be >= perUnitCap");if(e.revolvingCapacity!==void 0&&BigInt(p(e.revolvingCapacity))<=0n)throw new Error("revolvingCapacity must be > 0");let a=e.sessionDuration??C,l=Math.floor(Date.now()/1e3)+a,h=E(e.seller),x={channelId:s,maxAmountAtomic:i.toString(),revolvingCapacityAtomic:e.revolvingCapacity?p(e.revolvingCapacity):i.toString(),expiresAtUnix:l,allowedCounterparty:h},T=await e.vault.authorizeSession(x);return new y({vault:e.vault,network:e.network,seller:e.seller,counterparty:h,session:T,channelIdHex:s,channelIdBytes:n,perUnitCapAtomic:o,totalCapAtomic:i,expiresAtUnix:l,facilitatorUrl:e.facilitatorUrl??w})}async function K(e){throw new Error("resumeTab is Phase 3 work. Session keys are memory-only by design; recovery requires reading active_session on chain and re-authorizing. Tracked in dexter-vault roadmap.")}function E(e){if(/^[1-9A-HJ-NP-Za-km-z]{32,44}$/.test(e))try{return new S(e),e}catch{}throw new Error(`seller must be a base58 Solana pubkey for Phase 2 (got "${e}"). URL-based counterparty resolution lands in Phase 3 (seller middleware).`)}async function*N(e){let t=e.getReader(),r=new TextDecoder,n="";try{for(;;){let{done:s,value:o}=await t.read();if(s)break;n+=r.decode(o,{stream:!0});let i;for(;(i=n.indexOf(`
1
+ var m=class extends Error{constructor(r){super(`Network ${r} is not yet supported by @dexterai/x402/tab`);this.network=r;this.name="UnsupportedNetworkError"}},d=class extends Error{constructor(r,n){super(`Session scope exceeded: ${r}${n?` (${n})`:""}`);this.reason=r;this.name="SessionScopeExceededError"}},c=class extends Error{constructor(r){super(`Tab ${r} is already closed`);this.channelId=r;this.name="TabClosedError"}};import{PublicKey as f}from"@solana/web3.js";import{bytesToHex as l}from"@noble/hashes/utils";import z from"tweetnacl";import{sessionRegisterMessage as I,sessionRevokeMessage as R,voucherPayloadMessage as b,buildVoucherMessage as k}from"@dexterai/vault/messages";import{sha256 as U}from"@noble/hashes/sha256";function S(e){let t=new Uint8Array(8);new DataView(t.buffer).setBigUint64(0,e.nonce,!0);let r=new TextEncoder().encode(e.sellerUrl),n=U.create();return n.update(e.vaultPda.toBytes()),n.update(r),n.update(t),n.digest()}var V=3600,y="https://x402.dexter.cash",w=6;function g(e,t=w){if(!/^\d+(\.\d+)?$/.test(e))throw new Error(`amount must be a non-negative decimal string, got "${e}"`);let[r,n=""]=e.split(".");if(n.length>t)throw new Error(`amount "${e}" has more than ${t} decimals`);let i=n.padEnd(t,"0"),s=`${r}${i}`.replace(/^0+(?=\d)/,"");return s===""?"0":s}function h(e,t=w){if(!/^\d+$/.test(e))throw new Error(`atomic must be a non-negative integer string, got "${e}"`);let r=e.padStart(t+1,"0"),n=r.slice(0,-t).replace(/^0+(?=\d)/,"")||"0",i=r.slice(-t).replace(/0+$/,"");return i?`${n}.${i}`:n}var A=class{channelId;network;counterparty;internals;cumulativeAtomic=0n;sequenceNumber=0;closed=!1;lastSignedVoucher=null;previousSignedVoucher=null;constructor(t){this.internals=t,this.channelId=t.channelIdHex,this.network=t.network,this.counterparty=t.counterparty}get state(){let t=this.internals.totalCapAtomic-this.cumulativeAtomic,r=Math.floor(Date.now()/1e3);return{isOpen:!this.closed,spent:h(this.cumulativeAtomic.toString()),remaining:h(t.toString()),expiresInSec:Math.max(0,this.internals.expiresAtUnix-r)}}async signNextVoucher(t){if(this.closed)throw new c(this.channelId);let r=BigInt(t);if(r<=0n)throw new Error(`voucher increment must be > 0, got ${t}`);if(r>this.internals.perUnitCapAtomic)throw new d("cap_exceeded",`single voucher increment ${r} exceeds perUnitCap ${this.internals.perUnitCapAtomic}`);let n=this.cumulativeAtomic+r;if(n>this.internals.totalCapAtomic)throw new d("cap_exceeded",`cumulative ${n} would exceed totalCap ${this.internals.totalCapAtomic}`);let i=this.sequenceNumber+1,s={channelId:this.channelId,cumulativeAmount:n.toString(),sequenceNumber:i},o=await this.internals.vault.signWithSession(this.internals.session,s);return this.previousSignedVoucher=this.lastSignedVoucher,this.lastSignedVoucher=o,this.sequenceNumber=i,this.cumulativeAtomic=n,o}rollbackVoucher(t){let r=this.lastSignedVoucher;if(!r||r.payload.sequenceNumber!==t.payload.sequenceNumber||r.payload.cumulativeAmount!==t.payload.cumulativeAmount)return!1;let n=this.previousSignedVoucher;if(n)this.sequenceNumber=n.payload.sequenceNumber,this.cumulativeAtomic=BigInt(n.payload.cumulativeAmount),this.lastSignedVoucher=n;else if(r.payload.sequenceNumber===1)this.sequenceNumber=0,this.cumulativeAtomic=0n,this.lastSignedVoucher=null;else return!1;return this.previousSignedVoucher=null,!0}async stream(t,r){if(this.closed)throw new c(this.channelId);let n=await this.signNextVoucher(this.internals.perUnitCapAtomic.toString()),i=new Headers(r?.headers);i.set("X-Tab-Voucher",v(n)),i.set("Accept","text/event-stream");let s=await fetch(t,{...r,headers:i});if(!s.ok){let o=await s.text().catch(()=>"");throw new Error(`tab.stream HTTP ${s.status}: ${o.slice(0,500)}`)}if(!s.body)throw new Error("tab.stream response has no body");return $(s.body)}async close(){if(this.closed)throw new c(this.channelId);let t={settleTx:""};return this.lastSignedVoucher&&this.cumulativeAtomic>0n&&(t=await C(this.internals.facilitatorUrl,this.lastSignedVoucher,this.internals.network)),await this.internals.vault.signCloseTab(this.internals.session,this.channelId,this.cumulativeAtomic.toString()),this.closed=!0,this.internals.session.privateKey.fill(0),{settledAmount:h(this.cumulativeAtomic.toString()),...t}}};function v(e){return Buffer.from(JSON.stringify({payload:e.payload,sessionPublicKey:l(e.sessionPublicKey),sessionRegistration:l(e.sessionRegistration),sessionSignature:l(e.sessionSignature)}),"utf8").toString("base64")}async function C(e,t,r){let n=`${e.replace(/\/$/,"")}/tab/settle`,i={channelId:t.payload.channelId,cumulativeAmount:t.payload.cumulativeAmount,sequenceNumber:t.payload.sequenceNumber,sessionPublicKey:l(t.sessionPublicKey),sessionSignature:l(t.sessionSignature),sessionRegistration:l(t.sessionRegistration),network:r},s=await fetch(n,{method:"POST",headers:{"content-type":"application/json"},body:JSON.stringify(i)}),o=await s.text();if(!s.ok)throw new Error(`tab settle ${s.status}: ${o.slice(0,500)}`);let a;try{a=JSON.parse(o)}catch{throw new Error(`tab settle returned non-JSON: ${o.slice(0,200)}`)}if(!a.settleTx)throw new Error(`tab settle returned no settleTx: ${o.slice(0,200)}`);let u={settleTx:a.settleTx};return typeof a.grossAmount=="string"&&(u.grossAmount=a.grossAmount),typeof a.feeAmount=="string"&&(u.feeAmount=a.feeAmount),typeof a.netAmount=="string"&&(u.netAmount=a.netAmount),u}async function P(e,t,r,n,i){let s=`${e.replace(/\/$/,"")}/tab/open`,o=await fetch(s,{method:"POST",headers:{"content-type":"application/json"},body:JSON.stringify({buyer_swig_address:t,seller:i,max_amount_atomic:r.toString(),network:n})}),a=await o.json().catch(()=>({}));if(!o.ok||!a.success||!a.armed)throw new Error(`tab_open_unprotected: ${a.error??`http_${o.status}`}`);return{armed:!0,signature:a.signature??""}}async function E(e){if(e.network!==e.vault.network)throw new m(`options.network (${e.network}) doesn't match vault.network (${e.vault.network})`);if(e.network!=="solana:mainnet")throw new m(e.network);let t=BigInt(Math.floor(Math.random()*4294967295)),r=new f(e.vault.vaultPda),n=S({vaultPda:r,sellerUrl:e.seller,nonce:BigInt(t)}),i=l(n),s=BigInt(g(e.perUnitCap)),o=BigInt(g(e.totalCap));if(s<=0n)throw new Error("perUnitCap must be > 0");if(o<s)throw new Error("totalCap must be >= perUnitCap");if(e.revolvingCapacity!==void 0&&BigInt(g(e.revolvingCapacity))<=0n)throw new Error("revolvingCapacity must be > 0");let a=e.sessionDuration??V,u=Math.floor(Date.now()/1e3)+a,p=N(e.seller),x={channelId:i,maxAmountAtomic:o.toString(),revolvingCapacityAtomic:e.revolvingCapacity?g(e.revolvingCapacity):o.toString(),expiresAtUnix:u,allowedCounterparty:p},T=await e.vault.authorizeSession(x);return await P(e.facilitatorUrl??y,e.vault.swigAddress,o,e.network,p),new A({vault:e.vault,network:e.network,seller:e.seller,counterparty:p,session:T,channelIdHex:i,channelIdBytes:n,perUnitCapAtomic:s,totalCapAtomic:o,expiresAtUnix:u,facilitatorUrl:e.facilitatorUrl??y})}async function K(e){throw new Error("resumeTab is Phase 3 work. Session keys are memory-only by design; recovery requires reading active_session on chain and re-authorizing. Tracked in dexter-vault roadmap.")}function N(e){if(/^[1-9A-HJ-NP-Za-km-z]{32,44}$/.test(e))try{return new f(e),e}catch{}throw new Error(`seller must be a base58 Solana pubkey for Phase 2 (got "${e}"). URL-based counterparty resolution lands in Phase 3 (seller middleware).`)}async function*$(e){let t=e.getReader(),r=new TextDecoder,n="";try{for(;;){let{done:i,value:s}=await t.read();if(i)break;n+=r.decode(s,{stream:!0});let o;for(;(o=n.indexOf(`
2
2
 
3
- `))!==-1;){let a=n.slice(0,i);n=n.slice(i+2);let l=$(a);if(l.eventName==="end")return;if(l.data!==null){let h=l.data.replace(/\\n/g,`
4
- `);yield new TextEncoder().encode(h)}}}}finally{t.releaseLock()}}function $(e){let t=null,r=[];for(let n of e.split(`
3
+ `))!==-1;){let a=n.slice(0,o);n=n.slice(o+2);let u=_(a);if(u.eventName==="end")return;if(u.data!==null){let p=u.data.replace(/\\n/g,`
4
+ `);yield new TextEncoder().encode(p)}}}}finally{t.releaseLock()}}function _(e){let t=null,r=[];for(let n of e.split(`
5
5
  `))n.startsWith("event:")?t=n.slice(6).trim():n.startsWith("data:")&&r.push(n.slice(5).trimStart());return{eventName:t,data:r.length?r.join(`
6
- `):null}}import{buildRegisterSessionKeyInstruction as O,buildRevokeSessionKeyInstruction as _,deriveSwigWalletAddress as oe}from"@dexterai/vault/instructions";import{buildSecp256r1VerifyInstruction as H}from"@dexterai/vault/precompile";import{DEXTER_VAULT_PROGRAM_ID as M,SECP256R1_PROGRAM_ID as B,INSTRUCTIONS_SYSVAR_ID as D}from"@dexterai/vault/constants";export{w as DEFAULT_FACILITATOR_URL,M as DEXTER_VAULT_PROGRAM_ID,D as INSTRUCTIONS_SYSVAR_ID,B as SECP256R1_PROGRAM_ID,d as SessionScopeExceededError,c as TabClosedError,m as UnsupportedNetworkError,g as atomicToHuman,O as buildRegisterSessionKeyInstruction,_ as buildRevokeSessionKeyInstruction,H as buildSecp256r1VerifyInstruction,U as buildVoucherMessage,p as humanToAtomic,P as openTab,K as resumeTab,I as sessionRegisterMessage,R as sessionRevokeMessage,b as voucherPayloadMessage,v as voucherToHeader};
6
+ `):null}}import{buildRegisterSessionKeyInstruction as O,buildRevokeSessionKeyInstruction as H,deriveSwigWalletAddress as se}from"@dexterai/vault/instructions";import{buildSecp256r1VerifyInstruction as M}from"@dexterai/vault/precompile";import{DEXTER_VAULT_PROGRAM_ID as B,SECP256R1_PROGRAM_ID as D,INSTRUCTIONS_SYSVAR_ID as q}from"@dexterai/vault/constants";export{y as DEFAULT_FACILITATOR_URL,B as DEXTER_VAULT_PROGRAM_ID,q as INSTRUCTIONS_SYSVAR_ID,D as SECP256R1_PROGRAM_ID,d as SessionScopeExceededError,c as TabClosedError,m as UnsupportedNetworkError,h as atomicToHuman,O as buildRegisterSessionKeyInstruction,H as buildRevokeSessionKeyInstruction,M as buildSecp256r1VerifyInstruction,k as buildVoucherMessage,g as humanToAtomic,E as openTab,K as resumeTab,I as sessionRegisterMessage,R as sessionRevokeMessage,b as voucherPayloadMessage,v as voucherToHeader};
package/dist/tab/seller/index.cjs CHANGED
@@ -1,6 +1,6 @@
1
- "use strict";var te=Object.create;var P=Object.defineProperty;var ne=Object.getOwnPropertyDescriptor;var re=Object.getOwnPropertyNames;var oe=Object.getPrototypeOf,ie=Object.prototype.hasOwnProperty;var se=(e,t)=>{for(var n in t)P(e,n,{get:t[n],enumerable:!0})},L=(e,t,n,r)=>{if(t&&typeof t=="object"||typeof t=="function")for(let o of re(t))!ie.call(e,o)&&o!==n&&P(e,o,{get:()=>t[o],enumerable:!(r=ne(t,o))||r.enumerable});return e};var F=(e,t,n)=>(n=e!=null?te(oe(e)):{},L(t||!e||!e.__esModule?P(n,"default",{value:e,enumerable:!0}):n,e)),ae=e=>L(P({},"__esModule",{value:!0}),e);var Se={};se(Se,{FileVoucherStore:()=>U,InMemoryVoucherStore:()=>v,InvalidRegistrationError:()=>d,InvalidVoucherError:()=>m,InvalidVoucherSignatureError:()=>h,OnChainVerificationError:()=>y,ScopeViolationError:()=>u,TAB_VOUCHER_HEADER:()=>E,enforceScope:()=>C,openSse:()=>Q,parseRegistration:()=>I,readVaultState:()=>N,requireTab:()=>Z,tabMiddleware:()=>Y,verifyRegistrationOnChain:()=>V,verifyVoucherSignature:()=>k});module.exports=ae(Se);var m=class extends Error{constructor(n,r){super(`Invalid voucher: ${n}${r?` (${r})`:""}`);this.reason=n;this.name="InvalidVoucherError"}};var X=require("@solana/web3.js");var G=F(require("tweetnacl"),1),ue=require("@noble/hashes/sha256"),le=require("@noble/curves/p256"),T=require("@solana/web3.js");var w=require("@dexterai/vault/messages");var K=require("@dexterai/vault/instructions"),ce=require("@dexterai/vault/precompile"),b=require("@dexterai/vault/constants");var O="OTS_SESSION_REGISTER_V2",d=class extends Error{constructor(n,r){super(`Invalid registration: ${n}${r?` (${r})`:""}`);this.reason=n;this.name="InvalidRegistrationError"}};function I(e){if(e.length!==188)throw new d("wrong_length",`expected 188, got ${e.length}`);let t=new TextDecoder().decode(e.slice(0,O.length));if(t!==O)throw new d("wrong_domain",`got "${t}"`);for(let a=O.length;a<32;a++)if(e[a]!==0)throw new d("wrong_domain",`non-NUL padding at byte ${a}`);let n=new DataView(e.buffer,e.byteOffset,e.byteLength),r=new T.PublicKey(e.slice(32,64)),o=new T.PublicKey(e.slice(64,96)),l=e.slice(96,128),p=n.getBigUint64(128,!0),f=n.getBigInt64(136,!0),i=new T.PublicKey(e.slice(144,176)),c=n.getUint32(176,!0),g=n.getBigUint64(180,!0);if(!r.equals(b.DEXTER_VAULT_PROGRAM_ID))throw new d("wrong_program",`${r.toBase58()} is not ${b.DEXTER_VAULT_PROGRAM_ID.toBase58()}`);if(p===0n)throw new d("cap_zero");let s=BigInt(Math.floor(Date.now()/1e3));if(f<=s)throw new d("expiry_in_past",`expires_at=${f}, now=${s}`);return{programId:r,vaultPda:o,sessionPubkey:new Uint8Array(l),maxAmount:p,expiresAt:f,allowedCounterparty:i,nonce:c,maxRevolvingCapacity:g}}var j=10,y=class extends Error{constructor(n,r){super(`On-chain verification failed: ${n}${r?` (${r})`:""}`);this.reason=n;this.name="OnChainVerificationError"}};async function N(e,t){let n=await e.getAccountInfo(t,"finalized");if(!n)throw new y("vault_not_found",t.toBase58());if(!n.owner.equals(b.DEXTER_VAULT_PROGRAM_ID))throw new y("wrong_program",`owner ${n.owner.toBase58()} is not the vault program`);let r=n.data,o=new Uint8Array(r.slice(j,j+33)),c=84+(r[83]===1?48:0)+32+32;if(r[c]!==1)return{passkeyPubkey:o,activeSessionPubkey:null};let s=c+1,a=new Uint8Array(r.slice(s,s+32));return{passkeyPubkey:o,activeSessionPubkey:a}}async function V(e,t){let n=await N(e,t.vaultPda);if(n.activeSessionPubkey===null)throw new y("session_not_active","vault has no active_session \u2014 was it revoked?");if(!me(n.activeSessionPubkey,t.sessionPubkey))throw new y("session_pubkey_mismatch",`on-chain ${J(n.activeSessionPubkey)} != registration ${J(t.sessionPubkey)}`);return{passkeyPubkey:n.passkeyPubkey}}var h=class extends Error{constructor(t){super(`Invalid voucher signature${t?`: ${t}`:""}`),this.name="InvalidVoucherSignatureError"}};function k(e,t){if(t.length!==32)throw new h(`channelIdBytes must be 32 bytes, got ${t.length}`);if(e.sessionPublicKey.length!==32)throw new h(`sessionPublicKey must be 32 bytes, got ${e.sessionPublicKey.length}`);if(e.sessionSignature.length!==64)throw new h(`sessionSignature must be 64 bytes, got ${e.sessionSignature.length}`);let n=(0,w.voucherPayloadMessage)({channelId:t,cumulativeAmount:BigInt(e.payload.cumulativeAmount),sequenceNumber:e.payload.sequenceNumber});if(!G.default.sign.detached.verify(n,e.sessionSignature,e.sessionPublicKey))throw new h("ed25519 verify rejected")}var u=class extends Error{constructor(n,r){super(`Scope violation: ${n}${r?` (${r})`:""}`);this.reason=n;this.name="ScopeViolationError"}};function C(e){let t=BigInt(e.voucher.payload.cumulativeAmount);if(t>e.registration.maxAmount)throw new u("cumulative_exceeds_cap",`${t} > ${e.registration.maxAmount}`);let n=BigInt(Math.floor(Date.now()/1e3));if(n>=e.registration.expiresAt)throw new u("session_expired",`now=${n} >= expiresAt=${e.registration.expiresAt}`);if(!e.registration.allowedCounterparty.equals(e.expectedCounterparty))throw new u("wrong_counterparty",`${e.registration.allowedCounterparty.toBase58()} != ${e.expectedCounterparty.toBase58()}`);if(e.previousCumulativeAtomic!==void 0){let r=BigInt(e.previousCumulativeAtomic);if(t<=r)throw new u("non_monotonic",`cumulative=${t} not > previous=${r}`)}}function me(e,t){if(e.length!==t.length)return!1;for(let n=0;n<e.length;n++)if(e[n]!==t[n])return!1;return!0}function J(e){let t="";for(let n of e)t+=n.toString(16).padStart(2,"0");return t}var S=require("fs"),_=require("path");function de(e){return{payload:e.payload,sessionPublicKey:H(e.sessionPublicKey),sessionRegistration:H(e.sessionRegistration),sessionSignature:H(e.sessionSignature)}}function pe(e){return{payload:e.payload,sessionPublicKey:B(e.sessionPublicKey),sessionRegistration:B(e.sessionRegistration),sessionSignature:B(e.sessionSignature)}}function H(e){let t="";for(let n of e)t+=n.toString(16).padStart(2,"0");return t}function B(e){if(e.length%2!==0)throw new Error(`hex length must be even, got ${e.length}`);let t=new Uint8Array(e.length/2);for(let n=0;n<t.length;n++)t[n]=parseInt(e.substr(n*2,2),16);return t}var v=class{map=new Map;async get(t){return this.map.get(t)??null}async set(t,n){this.map.set(t,n)}async delete(t){this.map.delete(t)}},U=class{constructor(t){this.dir=t}pathFor(t){if(!/^[a-z0-9_-]+$/i.test(t))throw new Error(`unsafe channelId for filesystem: ${t}`);return(0,_.join)(this.dir,`${t}.json`)}async get(t){try{let n=await S.promises.readFile(this.pathFor(t),"utf8");return pe(JSON.parse(n))}catch(n){if(n?.code==="ENOENT")return null;throw n}}async set(t,n){let r=this.pathFor(t);await S.promises.mkdir((0,_.dirname)(r),{recursive:!0});let o=`${r}.tmp`;await S.promises.writeFile(o,JSON.stringify(de(n))),await S.promises.rename(o,r)}async delete(t){try{await S.promises.unlink(this.pathFor(t))}catch(n){if(n?.code!=="ENOENT")throw n}}};var ye=require("@solana/web3.js"),fe=require("@noble/hashes/utils");var ge=F(require("tweetnacl"),1);var he=require("@noble/hashes/sha256");var W=6;function A(e,t=W){if(!/^\d+(\.\d+)?$/.test(e))throw new Error(`amount must be a non-negative decimal string, got "${e}"`);let[n,r=""]=e.split(".");if(r.length>t)throw new Error(`amount "${e}" has more than ${t} decimals`);let o=r.padEnd(t,"0"),l=`${n}${o}`.replace(/^0+(?=\d)/,"");return l===""?"0":l}function x(e,t=W){if(!/^\d+$/.test(e))throw new Error(`atomic must be a non-negative integer string, got "${e}"`);let n=e.padStart(t+1,"0"),r=n.slice(0,-t).replace(/^0+(?=\d)/,"")||"0",o=n.slice(-t).replace(/0+$/,"");return o?`${r}.${o}`:r}var E="x-tab-voucher",M=class{map=new Map;get(t){return this.map.get(t)}set(t,n){this.map.set(t,n)}update(t,n){let r=this.map.get(t);r&&(r.lastCumulativeAtomic=n)}delete(t){this.map.delete(t)}},q=class{constructor(t,n,r,o){this.chargeImpl=o;this.channelId=t,this.network=n,this.cumulativeAtomic=r}channelId;network;sessionPublicKey=null;cumulativeAtomic;cumulative(){return x(this.cumulativeAtomic.toString())}bumpCumulative(t){this.cumulativeAtomic=t}setSessionPublicKey(t){this.sessionPublicKey=t}async charge(t){return this.chargeImpl(t)}};function we(e){if(typeof e!="string"||e.length===0)throw new m("signature_invalid",`missing ${E} header`);let t;try{t=Buffer.from(e,"base64").toString("utf8")}catch{throw new m("signature_invalid","malformed base64")}let n;try{n=JSON.parse(t)}catch{throw new m("signature_invalid","malformed JSON")}if(!n||typeof n!="object"||!n.payload||!n.sessionPublicKey)throw new m("signature_invalid","missing required fields");return{payload:n.payload,sessionPublicKey:$(n.sessionPublicKey),sessionRegistration:$(n.sessionRegistration),sessionSignature:$(n.sessionSignature)}}function $(e){if(typeof e!="string"||e.length%2!==0)throw new m("signature_invalid",`bad hex: ${typeof e}`);let t=new Uint8Array(e.length/2);for(let n=0;n<t.length;n++)t[n]=parseInt(e.substr(n*2,2),16);return t}function be(e){if(!/^[0-9a-f]{64}$/i.test(e))throw new m("signature_invalid",`channelId must be 64-char hex, got "${e}"`);return $(e)}function Y(e){let t=e.store??new v,n=new M,r=typeof e.sellerPubkey=="string"?new X.PublicKey(e.sellerPubkey):e.sellerPubkey,o=e.maxPerVoucherAtomic?BigInt(e.maxPerVoucherAtomic):BigInt(A(e.perUnit))*100n;return async(l,p,f)=>{try{let i=we(l.headers[E]),c=i.payload.channelId,g=be(c),s=n.get(c);if(!s){let R=I(i.sessionRegistration);await V(e.connection,R),s={registration:R,lastCumulativeAtomic:"0"},n.set(c,s)}k(i,g),C({registration:s.registration,voucher:i,expectedCounterparty:r,previousCumulativeAtomic:s.lastCumulativeAtomic});let a=BigInt(i.payload.cumulativeAmount),ee=BigInt(s.lastCumulativeAtomic),D=a-ee;if(D>o)throw new u("cumulative_exceeds_cap",`single voucher increment ${D} exceeds maxPerVoucherAtomic ${o}`);await t.set(c,i),n.update(c,i.payload.cumulativeAmount);let z=new q(c,e.network,a,async R=>{throw new Error("SellerTab.charge() is not driven by the route handler; the buyer presents a fresh voucher per chunk. Use openSse(res, tab) for the metered-stream pattern.")});z.setSessionPublicKey(i.sessionPublicKey),l.tab=z,f()}catch(i){if(i instanceof m||i instanceof d||i instanceof y||i instanceof h||i instanceof u){p.status(402).json({error:"invalid_voucher",reason:i.reason??"unknown",detail:i.message});return}f(i)}}}function Z(e){if(!e.tab)throw new Error("req.tab is missing \u2014 did tabMiddleware run on this route?");return e.tab}function Q(e,t){if(!t.tab)throw new Error("openSse requires options.tab");e.headersSent||(e.setHeader("Content-Type","text/event-stream"),e.setHeader("Cache-Control","no-cache"),e.setHeader("Connection","keep-alive"),typeof e.flushHeaders=="function"&&e.flushHeaders());let n=t.tab,r=BigInt(A(n.cumulative())),o=t.perUnit?BigInt(A(t.perUnit)):null,l=0n,p=!1;function f(g=1){if(p)return Promise.reject(new Error("meter ended"));if(o===null)return Promise.reject(new Error("charge() needs options.perUnit"));let s=o*BigInt(g),a=l+s;return a>r?Promise.reject(new u("cumulative_exceeds_cap",`chunk would push request total to ${x(a.toString())} beyond voucher-authorized budget ${x(r.toString())}`)):(l=a,Promise.resolve())}function i(g){if(p)throw new Error("meter ended");let a=(typeof g=="string"?g:Buffer.from(g).toString("utf8")).replace(/\n/g,"\\n");e.write(`data: ${a}
1
+ "use strict";var te=Object.create;var P=Object.defineProperty;var ne=Object.getOwnPropertyDescriptor;var re=Object.getOwnPropertyNames;var oe=Object.getPrototypeOf,ie=Object.prototype.hasOwnProperty;var se=(e,t)=>{for(var n in t)P(e,n,{get:t[n],enumerable:!0})},L=(e,t,n,r)=>{if(t&&typeof t=="object"||typeof t=="function")for(let o of re(t))!ie.call(e,o)&&o!==n&&P(e,o,{get:()=>t[o],enumerable:!(r=ne(t,o))||r.enumerable});return e};var j=(e,t,n)=>(n=e!=null?te(oe(e)):{},L(t||!e||!e.__esModule?P(n,"default",{value:e,enumerable:!0}):n,e)),ae=e=>L(P({},"__esModule",{value:!0}),e);var Se={};se(Se,{FileVoucherStore:()=>C,InMemoryVoucherStore:()=>A,InvalidRegistrationError:()=>d,InvalidVoucherError:()=>m,InvalidVoucherSignatureError:()=>h,OnChainVerificationError:()=>y,ScopeViolationError:()=>c,TAB_VOUCHER_HEADER:()=>R,enforceScope:()=>_,openSse:()=>Q,parseRegistration:()=>I,readVaultState:()=>N,requireTab:()=>Z,tabMiddleware:()=>Y,verifyRegistrationOnChain:()=>V,verifyVoucherSignature:()=>k});module.exports=ae(Se);var m=class extends Error{constructor(n,r){super(`Invalid voucher: ${n}${r?` (${r})`:""}`);this.reason=n;this.name="InvalidVoucherError"}};var X=require("@solana/web3.js");var G=j(require("tweetnacl"),1),ce=require("@noble/hashes/sha256"),le=require("@noble/curves/p256"),T=require("@solana/web3.js");var w=require("@dexterai/vault/messages");var K=require("@dexterai/vault/instructions"),ue=require("@dexterai/vault/precompile"),b=require("@dexterai/vault/constants");var O="OTS_SESSION_REGISTER_V2",d=class extends Error{constructor(n,r){super(`Invalid registration: ${n}${r?` (${r})`:""}`);this.reason=n;this.name="InvalidRegistrationError"}};function I(e){if(e.length!==188)throw new d("wrong_length",`expected 188, got ${e.length}`);let t=new TextDecoder().decode(e.slice(0,O.length));if(t!==O)throw new d("wrong_domain",`got "${t}"`);for(let a=O.length;a<32;a++)if(e[a]!==0)throw new d("wrong_domain",`non-NUL padding at byte ${a}`);let n=new DataView(e.buffer,e.byteOffset,e.byteLength),r=new T.PublicKey(e.slice(32,64)),o=new T.PublicKey(e.slice(64,96)),l=e.slice(96,128),p=n.getBigUint64(128,!0),f=n.getBigInt64(136,!0),i=new T.PublicKey(e.slice(144,176)),u=n.getUint32(176,!0),g=n.getBigUint64(180,!0);if(!r.equals(b.DEXTER_VAULT_PROGRAM_ID))throw new d("wrong_program",`${r.toBase58()} is not ${b.DEXTER_VAULT_PROGRAM_ID.toBase58()}`);if(p===0n)throw new d("cap_zero");let s=BigInt(Math.floor(Date.now()/1e3));if(f<=s)throw new d("expiry_in_past",`expires_at=${f}, now=${s}`);return{programId:r,vaultPda:o,sessionPubkey:new Uint8Array(l),maxAmount:p,expiresAt:f,allowedCounterparty:i,nonce:u,maxRevolvingCapacity:g}}var F=10,y=class extends Error{constructor(n,r){super(`On-chain verification failed: ${n}${r?` (${r})`:""}`);this.reason=n;this.name="OnChainVerificationError"}};async function N(e,t){let n=await e.getAccountInfo(t,"finalized");if(!n)throw new y("vault_not_found",t.toBase58());if(!n.owner.equals(b.DEXTER_VAULT_PROGRAM_ID))throw new y("wrong_program",`owner ${n.owner.toBase58()} is not the vault program`);let r=n.data,o=new Uint8Array(r.slice(F,F+33)),u=84+(r[83]===1?48:0)+32+32;if(r[u]!==1)return{passkeyPubkey:o,activeSessionPubkey:null};let s=u+1,a=new Uint8Array(r.slice(s,s+32));return{passkeyPubkey:o,activeSessionPubkey:a}}async function V(e,t){let n=await N(e,t.vaultPda);if(n.activeSessionPubkey===null)throw new y("session_not_active","vault has no active_session \u2014 was it revoked?");if(!me(n.activeSessionPubkey,t.sessionPubkey))throw new y("session_pubkey_mismatch",`on-chain ${J(n.activeSessionPubkey)} != registration ${J(t.sessionPubkey)}`);return{passkeyPubkey:n.passkeyPubkey}}var h=class extends Error{constructor(t){super(`Invalid voucher signature${t?`: ${t}`:""}`),this.name="InvalidVoucherSignatureError"}};function k(e,t){if(t.length!==32)throw new h(`channelIdBytes must be 32 bytes, got ${t.length}`);if(e.sessionPublicKey.length!==32)throw new h(`sessionPublicKey must be 32 bytes, got ${e.sessionPublicKey.length}`);if(e.sessionSignature.length!==64)throw new h(`sessionSignature must be 64 bytes, got ${e.sessionSignature.length}`);let n=(0,w.voucherPayloadMessage)({channelId:t,cumulativeAmount:BigInt(e.payload.cumulativeAmount),sequenceNumber:e.payload.sequenceNumber});if(!G.default.sign.detached.verify(n,e.sessionSignature,e.sessionPublicKey))throw new h("ed25519 verify rejected")}var c=class extends Error{constructor(n,r){super(`Scope violation: ${n}${r?` (${r})`:""}`);this.reason=n;this.name="ScopeViolationError"}};function _(e){let t=BigInt(e.voucher.payload.cumulativeAmount);if(t>e.registration.maxAmount)throw new c("cumulative_exceeds_cap",`${t} > ${e.registration.maxAmount}`);let n=BigInt(Math.floor(Date.now()/1e3));if(n>=e.registration.expiresAt)throw new c("session_expired",`now=${n} >= expiresAt=${e.registration.expiresAt}`);if(!e.registration.allowedCounterparty.equals(e.expectedCounterparty))throw new c("wrong_counterparty",`${e.registration.allowedCounterparty.toBase58()} != ${e.expectedCounterparty.toBase58()}`);if(e.previousCumulativeAtomic!==void 0){let r=BigInt(e.previousCumulativeAtomic);if(t<=r)throw new c("non_monotonic",`cumulative=${t} not > previous=${r}`)}}function me(e,t){if(e.length!==t.length)return!1;for(let n=0;n<e.length;n++)if(e[n]!==t[n])return!1;return!0}function J(e){let t="";for(let n of e)t+=n.toString(16).padStart(2,"0");return t}var S=require("fs"),U=require("path");function de(e){return{payload:e.payload,sessionPublicKey:H(e.sessionPublicKey),sessionRegistration:H(e.sessionRegistration),sessionSignature:H(e.sessionSignature)}}function pe(e){return{payload:e.payload,sessionPublicKey:B(e.sessionPublicKey),sessionRegistration:B(e.sessionRegistration),sessionSignature:B(e.sessionSignature)}}function H(e){let t="";for(let n of e)t+=n.toString(16).padStart(2,"0");return t}function B(e){if(e.length%2!==0)throw new Error(`hex length must be even, got ${e.length}`);let t=new Uint8Array(e.length/2);for(let n=0;n<t.length;n++)t[n]=parseInt(e.substr(n*2,2),16);return t}var A=class{map=new Map;async get(t){return this.map.get(t)??null}async set(t,n){this.map.set(t,n)}async delete(t){this.map.delete(t)}},C=class{constructor(t){this.dir=t}pathFor(t){if(!/^[a-z0-9_-]+$/i.test(t))throw new Error(`unsafe channelId for filesystem: ${t}`);return(0,U.join)(this.dir,`${t}.json`)}async get(t){try{let n=await S.promises.readFile(this.pathFor(t),"utf8");return pe(JSON.parse(n))}catch(n){if(n?.code==="ENOENT")return null;throw n}}async set(t,n){let r=this.pathFor(t);await S.promises.mkdir((0,U.dirname)(r),{recursive:!0});let o=`${r}.tmp`;await S.promises.writeFile(o,JSON.stringify(de(n))),await S.promises.rename(o,r)}async delete(t){try{await S.promises.unlink(this.pathFor(t))}catch(n){if(n?.code!=="ENOENT")throw n}}};var ye=require("@solana/web3.js"),fe=require("@noble/hashes/utils");var ge=j(require("tweetnacl"),1);var he=require("@noble/hashes/sha256");var W=6;function v(e,t=W){if(!/^\d+(\.\d+)?$/.test(e))throw new Error(`amount must be a non-negative decimal string, got "${e}"`);let[n,r=""]=e.split(".");if(r.length>t)throw new Error(`amount "${e}" has more than ${t} decimals`);let o=r.padEnd(t,"0"),l=`${n}${o}`.replace(/^0+(?=\d)/,"");return l===""?"0":l}function x(e,t=W){if(!/^\d+$/.test(e))throw new Error(`atomic must be a non-negative integer string, got "${e}"`);let n=e.padStart(t+1,"0"),r=n.slice(0,-t).replace(/^0+(?=\d)/,"")||"0",o=n.slice(-t).replace(/0+$/,"");return o?`${r}.${o}`:r}var R="x-tab-voucher",M=class{map=new Map;get(t){return this.map.get(t)}set(t,n){this.map.set(t,n)}update(t,n){let r=this.map.get(t);r&&(r.lastCumulativeAtomic=n)}delete(t){this.map.delete(t)}},q=class{constructor(t,n,r,o){this.chargeImpl=o;this.channelId=t,this.network=n,this.cumulativeAtomic=r}channelId;network;sessionPublicKey=null;cumulativeAtomic;cumulative(){return x(this.cumulativeAtomic.toString())}bumpCumulative(t){this.cumulativeAtomic=t}setSessionPublicKey(t){this.sessionPublicKey=t}async charge(t){return this.chargeImpl(t)}};function we(e){if(typeof e!="string"||e.length===0)throw new m("signature_invalid",`missing ${R} header`);let t;try{t=Buffer.from(e,"base64").toString("utf8")}catch{throw new m("signature_invalid","malformed base64")}let n;try{n=JSON.parse(t)}catch{throw new m("signature_invalid","malformed JSON")}if(!n||typeof n!="object"||!n.payload||!n.sessionPublicKey)throw new m("signature_invalid","missing required fields");return{payload:n.payload,sessionPublicKey:$(n.sessionPublicKey),sessionRegistration:$(n.sessionRegistration),sessionSignature:$(n.sessionSignature)}}function $(e){if(typeof e!="string"||e.length%2!==0)throw new m("signature_invalid",`bad hex: ${typeof e}`);let t=new Uint8Array(e.length/2);for(let n=0;n<t.length;n++)t[n]=parseInt(e.substr(n*2,2),16);return t}function be(e){if(!/^[0-9a-f]{64}$/i.test(e))throw new m("signature_invalid",`channelId must be 64-char hex, got "${e}"`);return $(e)}function Y(e){let t=e.store??new A,n=new M,r=typeof e.sellerPubkey=="string"?new X.PublicKey(e.sellerPubkey):e.sellerPubkey,o=e.maxPerVoucherAtomic?BigInt(e.maxPerVoucherAtomic):BigInt(v(e.perUnit))*100n;return async(l,p,f)=>{try{let i=we(l.headers[R]),u=i.payload.channelId,g=be(u),s=n.get(u);if(!s){let E=I(i.sessionRegistration);await V(e.connection,E),s={registration:E,lastCumulativeAtomic:"0"},n.set(u,s)}k(i,g),_({registration:s.registration,voucher:i,expectedCounterparty:r,previousCumulativeAtomic:s.lastCumulativeAtomic});let a=BigInt(i.payload.cumulativeAmount),ee=BigInt(s.lastCumulativeAtomic),D=a-ee;if(D>o)throw new c("cumulative_exceeds_cap",`single voucher increment ${D} exceeds maxPerVoucherAtomic ${o}`);await t.set(u,i),n.update(u,i.payload.cumulativeAmount);let z=new q(u,e.network,a,async E=>{throw new Error("SellerTab.charge() is not driven by the route handler; the buyer presents a fresh voucher per chunk. Use openSse(res, tab) for the metered-stream pattern.")});z.setSessionPublicKey(i.sessionPublicKey),l.tab=z,f()}catch(i){if(i instanceof m||i instanceof d||i instanceof y||i instanceof h||i instanceof c){p.status(402).json({error:"invalid_voucher",reason:i.reason??"unknown",detail:i.message});return}f(i)}}}function Z(e){if(!e.tab)throw new Error("req.tab is missing \u2014 did tabMiddleware run on this route?");return e.tab}function Q(e,t){if(!t.tab)throw new Error("openSse requires options.tab");e.headersSent||(e.setHeader("Content-Type","text/event-stream"),e.setHeader("Cache-Control","no-cache"),e.setHeader("Connection","keep-alive"),typeof e.flushHeaders=="function"&&e.flushHeaders());let n=t.tab,r=BigInt(v(n.cumulative())),o=t.perUnit?BigInt(v(t.perUnit)):null,l=0n,p=!1;function f(g=1){if(p)return Promise.reject(new Error("meter ended"));if(o===null)return Promise.reject(new Error("charge() needs options.perUnit"));let s=o*BigInt(g),a=l+s;return a>r?Promise.reject(new c("cumulative_exceeds_cap",`chunk would push request total to ${x(a.toString())} beyond voucher-authorized budget ${x(r.toString())}`)):(l=a,Promise.resolve())}function i(g){if(p)throw new Error("meter ended");let a=(typeof g=="string"?g:Buffer.from(g).toString("utf8")).replace(/\n/g,"\\n");e.write(`data: ${a}
2
2
 
3
- `)}function c(){p||(p=!0,e.write(`event: end
3
+ `)}function u(){p||(p=!0,e.write(`event: end
4
4
  data: {"chargedAtomic":"${l}"}
5
5
 
6
- `),e.end())}return{charge:f,send:i,end:c}}0&&(module.exports={FileVoucherStore,InMemoryVoucherStore,InvalidRegistrationError,InvalidVoucherError,InvalidVoucherSignatureError,OnChainVerificationError,ScopeViolationError,TAB_VOUCHER_HEADER,enforceScope,openSse,parseRegistration,readVaultState,requireTab,tabMiddleware,verifyRegistrationOnChain,verifyVoucherSignature});
6
+ `),e.end())}return{charge:f,send:i,end:u}}0&&(module.exports={FileVoucherStore,InMemoryVoucherStore,InvalidRegistrationError,InvalidVoucherError,InvalidVoucherSignatureError,OnChainVerificationError,ScopeViolationError,TAB_VOUCHER_HEADER,enforceScope,openSse,parseRegistration,readVaultState,requireTab,tabMiddleware,verifyRegistrationOnChain,verifyVoucherSignature});
package/dist/tab/seller/index.js CHANGED
@@ -1,6 +1,6 @@
1
- var m=class extends Error{constructor(n,r){super(`Invalid voucher: ${n}${r?` (${r})`:""}`);this.reason=n;this.name="InvalidVoucherError"}};import{PublicKey as Y}from"@solana/web3.js";import F from"tweetnacl";import{sha256 as ve}from"@noble/hashes/sha256";import{p256 as xe}from"@noble/curves/p256";import{PublicKey as I}from"@solana/web3.js";import{sessionRegisterMessage as se,sessionRevokeMessage as ae,voucherPayloadMessage as T,buildVoucherMessage as ce}from"@dexterai/vault/messages";import{buildRegisterSessionKeyInstruction as me,buildRevokeSessionKeyInstruction as de,deriveSwigWalletAddress as pe}from"@dexterai/vault/instructions";import{buildSecp256r1VerifyInstruction as he}from"@dexterai/vault/precompile";import{DEXTER_VAULT_PROGRAM_ID as A,SECP256R1_PROGRAM_ID as fe,INSTRUCTIONS_SYSVAR_ID as we}from"@dexterai/vault/constants";var V="OTS_SESSION_REGISTER_V2",d=class extends Error{constructor(n,r){super(`Invalid registration: ${n}${r?` (${r})`:""}`);this.reason=n;this.name="InvalidRegistrationError"}};function k(e){if(e.length!==188)throw new d("wrong_length",`expected 188, got ${e.length}`);let t=new TextDecoder().decode(e.slice(0,V.length));if(t!==V)throw new d("wrong_domain",`got "${t}"`);for(let a=V.length;a<32;a++)if(e[a]!==0)throw new d("wrong_domain",`non-NUL padding at byte ${a}`);let n=new DataView(e.buffer,e.byteOffset,e.byteLength),r=new I(e.slice(32,64)),i=new I(e.slice(64,96)),u=e.slice(96,128),p=n.getBigUint64(128,!0),h=n.getBigInt64(136,!0),o=new I(e.slice(144,176)),c=n.getUint32(176,!0),g=n.getBigUint64(180,!0);if(!r.equals(A))throw new d("wrong_program",`${r.toBase58()} is not ${A.toBase58()}`);if(p===0n)throw new d("cap_zero");let s=BigInt(Math.floor(Date.now()/1e3));if(h<=s)throw new d("expiry_in_past",`expires_at=${h}, now=${s}`);return{programId:r,vaultPda:i,sessionPubkey:new Uint8Array(u),maxAmount:p,expiresAt:h,allowedCounterparty:o,nonce:c,maxRevolvingCapacity:g}}var M=10,f=class extends Error{constructor(n,r){super(`On-chain verification failed: ${n}${r?` (${r})`:""}`);this.reason=n;this.name="OnChainVerificationError"}};async function D(e,t){let n=await e.getAccountInfo(t,"finalized");if(!n)throw new f("vault_not_found",t.toBase58());if(!n.owner.equals(A))throw new f("wrong_program",`owner ${n.owner.toBase58()} is not the vault program`);let r=n.data,i=new Uint8Array(r.slice(M,M+33)),c=84+(r[83]===1?48:0)+32+32;if(r[c]!==1)return{passkeyPubkey:i,activeSessionPubkey:null};let s=c+1,a=new Uint8Array(r.slice(s,s+32));return{passkeyPubkey:i,activeSessionPubkey:a}}async function C(e,t){let n=await D(e,t.vaultPda);if(n.activeSessionPubkey===null)throw new f("session_not_active","vault has no active_session \u2014 was it revoked?");if(!j(n.activeSessionPubkey,t.sessionPubkey))throw new f("session_pubkey_mismatch",`on-chain ${q(n.activeSessionPubkey)} != registration ${q(t.sessionPubkey)}`);return{passkeyPubkey:n.passkeyPubkey}}var y=class extends Error{constructor(t){super(`Invalid voucher signature${t?`: ${t}`:""}`),this.name="InvalidVoucherSignatureError"}};function U(e,t){if(t.length!==32)throw new y(`channelIdBytes must be 32 bytes, got ${t.length}`);if(e.sessionPublicKey.length!==32)throw new y(`sessionPublicKey must be 32 bytes, got ${e.sessionPublicKey.length}`);if(e.sessionSignature.length!==64)throw new y(`sessionSignature must be 64 bytes, got ${e.sessionSignature.length}`);let n=T({channelId:t,cumulativeAmount:BigInt(e.payload.cumulativeAmount),sequenceNumber:e.payload.sequenceNumber});if(!F.sign.detached.verify(n,e.sessionSignature,e.sessionPublicKey))throw new y("ed25519 verify rejected")}var l=class extends Error{constructor(n,r){super(`Scope violation: ${n}${r?` (${r})`:""}`);this.reason=n;this.name="ScopeViolationError"}};function _(e){let t=BigInt(e.voucher.payload.cumulativeAmount);if(t>e.registration.maxAmount)throw new l("cumulative_exceeds_cap",`${t} > ${e.registration.maxAmount}`);let n=BigInt(Math.floor(Date.now()/1e3));if(n>=e.registration.expiresAt)throw new l("session_expired",`now=${n} >= expiresAt=${e.registration.expiresAt}`);if(!e.registration.allowedCounterparty.equals(e.expectedCounterparty))throw new l("wrong_counterparty",`${e.registration.allowedCounterparty.toBase58()} != ${e.expectedCounterparty.toBase58()}`);if(e.previousCumulativeAtomic!==void 0){let r=BigInt(e.previousCumulativeAtomic);if(t<=r)throw new l("non_monotonic",`cumulative=${t} not > previous=${r}`)}}function j(e,t){if(e.length!==t.length)return!1;for(let n=0;n<e.length;n++)if(e[n]!==t[n])return!1;return!0}function q(e){let t="";for(let n of e)t+=n.toString(16).padStart(2,"0");return t}import{promises as w}from"fs";import{join as J,dirname as G}from"path";function W(e){return{payload:e.payload,sessionPublicKey:$(e.sessionPublicKey),sessionRegistration:$(e.sessionRegistration),sessionSignature:$(e.sessionSignature)}}function X(e){return{payload:e.payload,sessionPublicKey:E(e.sessionPublicKey),sessionRegistration:E(e.sessionRegistration),sessionSignature:E(e.sessionSignature)}}function $(e){let t="";for(let n of e)t+=n.toString(16).padStart(2,"0");return t}function E(e){if(e.length%2!==0)throw new Error(`hex length must be even, got ${e.length}`);let t=new Uint8Array(e.length/2);for(let n=0;n<t.length;n++)t[n]=parseInt(e.substr(n*2,2),16);return t}var b=class{map=new Map;async get(t){return this.map.get(t)??null}async set(t,n){this.map.set(t,n)}async delete(t){this.map.delete(t)}},R=class{constructor(t){this.dir=t}pathFor(t){if(!/^[a-z0-9_-]+$/i.test(t))throw new Error(`unsafe channelId for filesystem: ${t}`);return J(this.dir,`${t}.json`)}async get(t){try{let n=await w.readFile(this.pathFor(t),"utf8");return X(JSON.parse(n))}catch(n){if(n?.code==="ENOENT")return null;throw n}}async set(t,n){let r=this.pathFor(t);await w.mkdir(G(r),{recursive:!0});let i=`${r}.tmp`;await w.writeFile(i,JSON.stringify(W(n))),await w.rename(i,r)}async delete(t){try{await w.unlink(this.pathFor(t))}catch(n){if(n?.code!=="ENOENT")throw n}}};import{PublicKey as Le}from"@solana/web3.js";import{bytesToHex as je}from"@noble/hashes/utils";import Re from"tweetnacl";import{sha256 as Ne}from"@noble/hashes/sha256";var z=6;function S(e,t=z){if(!/^\d+(\.\d+)?$/.test(e))throw new Error(`amount must be a non-negative decimal string, got "${e}"`);let[n,r=""]=e.split(".");if(r.length>t)throw new Error(`amount "${e}" has more than ${t} decimals`);let i=r.padEnd(t,"0"),u=`${n}${i}`.replace(/^0+(?=\d)/,"");return u===""?"0":u}function v(e,t=z){if(!/^\d+$/.test(e))throw new Error(`atomic must be a non-negative integer string, got "${e}"`);let n=e.padStart(t+1,"0"),r=n.slice(0,-t).replace(/^0+(?=\d)/,"")||"0",i=n.slice(-t).replace(/0+$/,"");return i?`${r}.${i}`:r}var N="x-tab-voucher",K=class{map=new Map;get(t){return this.map.get(t)}set(t,n){this.map.set(t,n)}update(t,n){let r=this.map.get(t);r&&(r.lastCumulativeAtomic=n)}delete(t){this.map.delete(t)}},O=class{constructor(t,n,r,i){this.chargeImpl=i;this.channelId=t,this.network=n,this.cumulativeAtomic=r}channelId;network;sessionPublicKey=null;cumulativeAtomic;cumulative(){return v(this.cumulativeAtomic.toString())}bumpCumulative(t){this.cumulativeAtomic=t}setSessionPublicKey(t){this.sessionPublicKey=t}async charge(t){return this.chargeImpl(t)}};function Z(e){if(typeof e!="string"||e.length===0)throw new m("signature_invalid",`missing ${N} header`);let t;try{t=Buffer.from(e,"base64").toString("utf8")}catch{throw new m("signature_invalid","malformed base64")}let n;try{n=JSON.parse(t)}catch{throw new m("signature_invalid","malformed JSON")}if(!n||typeof n!="object"||!n.payload||!n.sessionPublicKey)throw new m("signature_invalid","missing required fields");return{payload:n.payload,sessionPublicKey:x(n.sessionPublicKey),sessionRegistration:x(n.sessionRegistration),sessionSignature:x(n.sessionSignature)}}function x(e){if(typeof e!="string"||e.length%2!==0)throw new m("signature_invalid",`bad hex: ${typeof e}`);let t=new Uint8Array(e.length/2);for(let n=0;n<t.length;n++)t[n]=parseInt(e.substr(n*2,2),16);return t}function Q(e){if(!/^[0-9a-f]{64}$/i.test(e))throw new m("signature_invalid",`channelId must be 64-char hex, got "${e}"`);return x(e)}function ee(e){let t=e.store??new b,n=new K,r=typeof e.sellerPubkey=="string"?new Y(e.sellerPubkey):e.sellerPubkey,i=e.maxPerVoucherAtomic?BigInt(e.maxPerVoucherAtomic):BigInt(S(e.perUnit))*100n;return async(u,p,h)=>{try{let o=Z(u.headers[N]),c=o.payload.channelId,g=Q(c),s=n.get(c);if(!s){let P=k(o.sessionRegistration);await C(e.connection,P),s={registration:P,lastCumulativeAtomic:"0"},n.set(c,s)}U(o,g),_({registration:s.registration,voucher:o,expectedCounterparty:r,previousCumulativeAtomic:s.lastCumulativeAtomic});let a=BigInt(o.payload.cumulativeAmount),L=BigInt(s.lastCumulativeAtomic),H=a-L;if(H>i)throw new l("cumulative_exceeds_cap",`single voucher increment ${H} exceeds maxPerVoucherAtomic ${i}`);await t.set(c,o),n.update(c,o.payload.cumulativeAmount);let B=new O(c,e.network,a,async P=>{throw new Error("SellerTab.charge() is not driven by the route handler; the buyer presents a fresh voucher per chunk. Use openSse(res, tab) for the metered-stream pattern.")});B.setSessionPublicKey(o.sessionPublicKey),u.tab=B,h()}catch(o){if(o instanceof m||o instanceof d||o instanceof f||o instanceof y||o instanceof l){p.status(402).json({error:"invalid_voucher",reason:o.reason??"unknown",detail:o.message});return}h(o)}}}function te(e){if(!e.tab)throw new Error("req.tab is missing \u2014 did tabMiddleware run on this route?");return e.tab}function ne(e,t){if(!t.tab)throw new Error("openSse requires options.tab");e.headersSent||(e.setHeader("Content-Type","text/event-stream"),e.setHeader("Cache-Control","no-cache"),e.setHeader("Connection","keep-alive"),typeof e.flushHeaders=="function"&&e.flushHeaders());let n=t.tab,r=BigInt(S(n.cumulative())),i=t.perUnit?BigInt(S(t.perUnit)):null,u=0n,p=!1;function h(g=1){if(p)return Promise.reject(new Error("meter ended"));if(i===null)return Promise.reject(new Error("charge() needs options.perUnit"));let s=i*BigInt(g),a=u+s;return a>r?Promise.reject(new l("cumulative_exceeds_cap",`chunk would push request total to ${v(a.toString())} beyond voucher-authorized budget ${v(r.toString())}`)):(u=a,Promise.resolve())}function o(g){if(p)throw new Error("meter ended");let a=(typeof g=="string"?g:Buffer.from(g).toString("utf8")).replace(/\n/g,"\\n");e.write(`data: ${a}
1
+ var m=class extends Error{constructor(n,r){super(`Invalid voucher: ${n}${r?` (${r})`:""}`);this.reason=n;this.name="InvalidVoucherError"}};import{PublicKey as Y}from"@solana/web3.js";import j from"tweetnacl";import{sha256 as Ae}from"@noble/hashes/sha256";import{p256 as xe}from"@noble/curves/p256";import{PublicKey as I}from"@solana/web3.js";import{sessionRegisterMessage as se,sessionRevokeMessage as ae,voucherPayloadMessage as T,buildVoucherMessage as ue}from"@dexterai/vault/messages";import{buildRegisterSessionKeyInstruction as me,buildRevokeSessionKeyInstruction as de,deriveSwigWalletAddress as pe}from"@dexterai/vault/instructions";import{buildSecp256r1VerifyInstruction as he}from"@dexterai/vault/precompile";import{DEXTER_VAULT_PROGRAM_ID as v,SECP256R1_PROGRAM_ID as fe,INSTRUCTIONS_SYSVAR_ID as we}from"@dexterai/vault/constants";var V="OTS_SESSION_REGISTER_V2",d=class extends Error{constructor(n,r){super(`Invalid registration: ${n}${r?` (${r})`:""}`);this.reason=n;this.name="InvalidRegistrationError"}};function k(e){if(e.length!==188)throw new d("wrong_length",`expected 188, got ${e.length}`);let t=new TextDecoder().decode(e.slice(0,V.length));if(t!==V)throw new d("wrong_domain",`got "${t}"`);for(let a=V.length;a<32;a++)if(e[a]!==0)throw new d("wrong_domain",`non-NUL padding at byte ${a}`);let n=new DataView(e.buffer,e.byteOffset,e.byteLength),r=new I(e.slice(32,64)),i=new I(e.slice(64,96)),c=e.slice(96,128),p=n.getBigUint64(128,!0),h=n.getBigInt64(136,!0),o=new I(e.slice(144,176)),u=n.getUint32(176,!0),g=n.getBigUint64(180,!0);if(!r.equals(v))throw new d("wrong_program",`${r.toBase58()} is not ${v.toBase58()}`);if(p===0n)throw new d("cap_zero");let s=BigInt(Math.floor(Date.now()/1e3));if(h<=s)throw new d("expiry_in_past",`expires_at=${h}, now=${s}`);return{programId:r,vaultPda:i,sessionPubkey:new Uint8Array(c),maxAmount:p,expiresAt:h,allowedCounterparty:o,nonce:u,maxRevolvingCapacity:g}}var M=10,f=class extends Error{constructor(n,r){super(`On-chain verification failed: ${n}${r?` (${r})`:""}`);this.reason=n;this.name="OnChainVerificationError"}};async function D(e,t){let n=await e.getAccountInfo(t,"finalized");if(!n)throw new f("vault_not_found",t.toBase58());if(!n.owner.equals(v))throw new f("wrong_program",`owner ${n.owner.toBase58()} is not the vault program`);let r=n.data,i=new Uint8Array(r.slice(M,M+33)),u=84+(r[83]===1?48:0)+32+32;if(r[u]!==1)return{passkeyPubkey:i,activeSessionPubkey:null};let s=u+1,a=new Uint8Array(r.slice(s,s+32));return{passkeyPubkey:i,activeSessionPubkey:a}}async function _(e,t){let n=await D(e,t.vaultPda);if(n.activeSessionPubkey===null)throw new f("session_not_active","vault has no active_session \u2014 was it revoked?");if(!F(n.activeSessionPubkey,t.sessionPubkey))throw new f("session_pubkey_mismatch",`on-chain ${q(n.activeSessionPubkey)} != registration ${q(t.sessionPubkey)}`);return{passkeyPubkey:n.passkeyPubkey}}var y=class extends Error{constructor(t){super(`Invalid voucher signature${t?`: ${t}`:""}`),this.name="InvalidVoucherSignatureError"}};function C(e,t){if(t.length!==32)throw new y(`channelIdBytes must be 32 bytes, got ${t.length}`);if(e.sessionPublicKey.length!==32)throw new y(`sessionPublicKey must be 32 bytes, got ${e.sessionPublicKey.length}`);if(e.sessionSignature.length!==64)throw new y(`sessionSignature must be 64 bytes, got ${e.sessionSignature.length}`);let n=T({channelId:t,cumulativeAmount:BigInt(e.payload.cumulativeAmount),sequenceNumber:e.payload.sequenceNumber});if(!j.sign.detached.verify(n,e.sessionSignature,e.sessionPublicKey))throw new y("ed25519 verify rejected")}var l=class extends Error{constructor(n,r){super(`Scope violation: ${n}${r?` (${r})`:""}`);this.reason=n;this.name="ScopeViolationError"}};function U(e){let t=BigInt(e.voucher.payload.cumulativeAmount);if(t>e.registration.maxAmount)throw new l("cumulative_exceeds_cap",`${t} > ${e.registration.maxAmount}`);let n=BigInt(Math.floor(Date.now()/1e3));if(n>=e.registration.expiresAt)throw new l("session_expired",`now=${n} >= expiresAt=${e.registration.expiresAt}`);if(!e.registration.allowedCounterparty.equals(e.expectedCounterparty))throw new l("wrong_counterparty",`${e.registration.allowedCounterparty.toBase58()} != ${e.expectedCounterparty.toBase58()}`);if(e.previousCumulativeAtomic!==void 0){let r=BigInt(e.previousCumulativeAtomic);if(t<=r)throw new l("non_monotonic",`cumulative=${t} not > previous=${r}`)}}function F(e,t){if(e.length!==t.length)return!1;for(let n=0;n<e.length;n++)if(e[n]!==t[n])return!1;return!0}function q(e){let t="";for(let n of e)t+=n.toString(16).padStart(2,"0");return t}import{promises as w}from"fs";import{join as J,dirname as G}from"path";function W(e){return{payload:e.payload,sessionPublicKey:$(e.sessionPublicKey),sessionRegistration:$(e.sessionRegistration),sessionSignature:$(e.sessionSignature)}}function X(e){return{payload:e.payload,sessionPublicKey:R(e.sessionPublicKey),sessionRegistration:R(e.sessionRegistration),sessionSignature:R(e.sessionSignature)}}function $(e){let t="";for(let n of e)t+=n.toString(16).padStart(2,"0");return t}function R(e){if(e.length%2!==0)throw new Error(`hex length must be even, got ${e.length}`);let t=new Uint8Array(e.length/2);for(let n=0;n<t.length;n++)t[n]=parseInt(e.substr(n*2,2),16);return t}var b=class{map=new Map;async get(t){return this.map.get(t)??null}async set(t,n){this.map.set(t,n)}async delete(t){this.map.delete(t)}},E=class{constructor(t){this.dir=t}pathFor(t){if(!/^[a-z0-9_-]+$/i.test(t))throw new Error(`unsafe channelId for filesystem: ${t}`);return J(this.dir,`${t}.json`)}async get(t){try{let n=await w.readFile(this.pathFor(t),"utf8");return X(JSON.parse(n))}catch(n){if(n?.code==="ENOENT")return null;throw n}}async set(t,n){let r=this.pathFor(t);await w.mkdir(G(r),{recursive:!0});let i=`${r}.tmp`;await w.writeFile(i,JSON.stringify(W(n))),await w.rename(i,r)}async delete(t){try{await w.unlink(this.pathFor(t))}catch(n){if(n?.code!=="ENOENT")throw n}}};import{PublicKey as Le}from"@solana/web3.js";import{bytesToHex as Fe}from"@noble/hashes/utils";import Ee from"tweetnacl";import{sha256 as Ne}from"@noble/hashes/sha256";var z=6;function S(e,t=z){if(!/^\d+(\.\d+)?$/.test(e))throw new Error(`amount must be a non-negative decimal string, got "${e}"`);let[n,r=""]=e.split(".");if(r.length>t)throw new Error(`amount "${e}" has more than ${t} decimals`);let i=r.padEnd(t,"0"),c=`${n}${i}`.replace(/^0+(?=\d)/,"");return c===""?"0":c}function A(e,t=z){if(!/^\d+$/.test(e))throw new Error(`atomic must be a non-negative integer string, got "${e}"`);let n=e.padStart(t+1,"0"),r=n.slice(0,-t).replace(/^0+(?=\d)/,"")||"0",i=n.slice(-t).replace(/0+$/,"");return i?`${r}.${i}`:r}var N="x-tab-voucher",K=class{map=new Map;get(t){return this.map.get(t)}set(t,n){this.map.set(t,n)}update(t,n){let r=this.map.get(t);r&&(r.lastCumulativeAtomic=n)}delete(t){this.map.delete(t)}},O=class{constructor(t,n,r,i){this.chargeImpl=i;this.channelId=t,this.network=n,this.cumulativeAtomic=r}channelId;network;sessionPublicKey=null;cumulativeAtomic;cumulative(){return A(this.cumulativeAtomic.toString())}bumpCumulative(t){this.cumulativeAtomic=t}setSessionPublicKey(t){this.sessionPublicKey=t}async charge(t){return this.chargeImpl(t)}};function Z(e){if(typeof e!="string"||e.length===0)throw new m("signature_invalid",`missing ${N} header`);let t;try{t=Buffer.from(e,"base64").toString("utf8")}catch{throw new m("signature_invalid","malformed base64")}let n;try{n=JSON.parse(t)}catch{throw new m("signature_invalid","malformed JSON")}if(!n||typeof n!="object"||!n.payload||!n.sessionPublicKey)throw new m("signature_invalid","missing required fields");return{payload:n.payload,sessionPublicKey:x(n.sessionPublicKey),sessionRegistration:x(n.sessionRegistration),sessionSignature:x(n.sessionSignature)}}function x(e){if(typeof e!="string"||e.length%2!==0)throw new m("signature_invalid",`bad hex: ${typeof e}`);let t=new Uint8Array(e.length/2);for(let n=0;n<t.length;n++)t[n]=parseInt(e.substr(n*2,2),16);return t}function Q(e){if(!/^[0-9a-f]{64}$/i.test(e))throw new m("signature_invalid",`channelId must be 64-char hex, got "${e}"`);return x(e)}function ee(e){let t=e.store??new b,n=new K,r=typeof e.sellerPubkey=="string"?new Y(e.sellerPubkey):e.sellerPubkey,i=e.maxPerVoucherAtomic?BigInt(e.maxPerVoucherAtomic):BigInt(S(e.perUnit))*100n;return async(c,p,h)=>{try{let o=Z(c.headers[N]),u=o.payload.channelId,g=Q(u),s=n.get(u);if(!s){let P=k(o.sessionRegistration);await _(e.connection,P),s={registration:P,lastCumulativeAtomic:"0"},n.set(u,s)}C(o,g),U({registration:s.registration,voucher:o,expectedCounterparty:r,previousCumulativeAtomic:s.lastCumulativeAtomic});let a=BigInt(o.payload.cumulativeAmount),L=BigInt(s.lastCumulativeAtomic),H=a-L;if(H>i)throw new l("cumulative_exceeds_cap",`single voucher increment ${H} exceeds maxPerVoucherAtomic ${i}`);await t.set(u,o),n.update(u,o.payload.cumulativeAmount);let B=new O(u,e.network,a,async P=>{throw new Error("SellerTab.charge() is not driven by the route handler; the buyer presents a fresh voucher per chunk. Use openSse(res, tab) for the metered-stream pattern.")});B.setSessionPublicKey(o.sessionPublicKey),c.tab=B,h()}catch(o){if(o instanceof m||o instanceof d||o instanceof f||o instanceof y||o instanceof l){p.status(402).json({error:"invalid_voucher",reason:o.reason??"unknown",detail:o.message});return}h(o)}}}function te(e){if(!e.tab)throw new Error("req.tab is missing \u2014 did tabMiddleware run on this route?");return e.tab}function ne(e,t){if(!t.tab)throw new Error("openSse requires options.tab");e.headersSent||(e.setHeader("Content-Type","text/event-stream"),e.setHeader("Cache-Control","no-cache"),e.setHeader("Connection","keep-alive"),typeof e.flushHeaders=="function"&&e.flushHeaders());let n=t.tab,r=BigInt(S(n.cumulative())),i=t.perUnit?BigInt(S(t.perUnit)):null,c=0n,p=!1;function h(g=1){if(p)return Promise.reject(new Error("meter ended"));if(i===null)return Promise.reject(new Error("charge() needs options.perUnit"));let s=i*BigInt(g),a=c+s;return a>r?Promise.reject(new l("cumulative_exceeds_cap",`chunk would push request total to ${A(a.toString())} beyond voucher-authorized budget ${A(r.toString())}`)):(c=a,Promise.resolve())}function o(g){if(p)throw new Error("meter ended");let a=(typeof g=="string"?g:Buffer.from(g).toString("utf8")).replace(/\n/g,"\\n");e.write(`data: ${a}
2
2
 
3
- `)}function c(){p||(p=!0,e.write(`event: end
4
- data: {"chargedAtomic":"${u}"}
3
+ `)}function u(){p||(p=!0,e.write(`event: end
4
+ data: {"chargedAtomic":"${c}"}
5
5
 
6
- `),e.end())}return{charge:h,send:o,end:c}}export{R as FileVoucherStore,b as InMemoryVoucherStore,d as InvalidRegistrationError,m as InvalidVoucherError,y as InvalidVoucherSignatureError,f as OnChainVerificationError,l as ScopeViolationError,N as TAB_VOUCHER_HEADER,_ as enforceScope,ne as openSse,k as parseRegistration,D as readVaultState,te as requireTab,ee as tabMiddleware,C as verifyRegistrationOnChain,U as verifyVoucherSignature};
6
+ `),e.end())}return{charge:h,send:o,end:u}}export{E as FileVoucherStore,b as InMemoryVoucherStore,d as InvalidRegistrationError,m as InvalidVoucherError,y as InvalidVoucherSignatureError,f as OnChainVerificationError,l as ScopeViolationError,N as TAB_VOUCHER_HEADER,U as enforceScope,ne as openSse,k as parseRegistration,D as readVaultState,te as requireTab,ee as tabMiddleware,_ as verifyRegistrationOnChain,C as verifyVoucherSignature};
package/dist/{types-D1HhKTg7.d.cts → types-DEnVPFxF.d.cts} RENAMED
@@ -115,6 +115,13 @@ interface TabCloseResult {
115
115
  settledAmount: HumanAmount;
116
116
  /** Facilitator's on-chain settlement signature. */
117
117
  settleTx: string;
118
+ /** Atomic amount moved by the final settle, before any facilitator fee.
119
+ * Absent when the facilitator predates fee support. */
120
+ grossAmount?: string;
121
+ /** Atomic facilitator fee deducted from the final settle. */
122
+ feeAmount?: string;
123
+ /** Atomic amount the seller actually received from the final settle. */
124
+ netAmount?: string;
118
125
  }
119
126
  /**
120
127
  * Options for `openTab` — the buyer's session-opening call.
package/dist/{types-D1HhKTg7.d.ts → types-DEnVPFxF.d.ts} RENAMED
@@ -115,6 +115,13 @@ interface TabCloseResult {
115
115
  settledAmount: HumanAmount;
116
116
  /** Facilitator's on-chain settlement signature. */
117
117
  settleTx: string;
118
+ /** Atomic amount moved by the final settle, before any facilitator fee.
119
+ * Absent when the facilitator predates fee support. */
120
+ grossAmount?: string;
121
+ /** Atomic facilitator fee deducted from the final settle. */
122
+ feeAmount?: string;
123
+ /** Atomic amount the seller actually received from the final settle. */
124
+ netAmount?: string;
118
125
  }
119
126
  /**
120
127
  * Options for `openTab` — the buyer's session-opening call.
package/package.json CHANGED
@@ -1,6 +1,6 @@
1
1
  {
2
2
  "name": "@dexterai/x402",
3
- "version": "3.12.1",
3
+ "version": "3.14.0",
4
4
  "description": "Full-stack x402 SDK - add paid API monetization to any endpoint. Express middleware, React hooks, Access Pass, dynamic pricing. Solana, Base, Polygon, Arbitrum, Optimism, Avalanche, SKALE.",
5
5
  "author": "Dexter",
6
6
  "license": "MIT",