@foldset/cloudflare 0.0.1 → 0.0.3

package/dist/payment/paywall.js

@@ -0,0 +1,99 @@
+export function generateHtml(paymentRequired, config) {
+    const resource = paymentRequired.resource;
+    const description = resource?.description ?? "This resource requires payment";
+    const url = resource?.url ?? config?.currentUrl ?? "";
+    const accepts = paymentRequired.accepts ?? [];
+    // Group payment options by blockchain network (e.g., Base Mainnet, Solana Mainnet)
+    const optionsByNetwork = new Map();
+    for (const accept of accepts) {
+        const existing = optionsByNetwork.get(accept.network) ?? [];
+        existing.push(accept);
+        optionsByNetwork.set(accept.network, existing);
+    }
+    const paymentOptionsHtml = Array.from(optionsByNetwork.entries()).map(([_network, networkOptions]) => {
+        // Chain display name (e.g., "Base Mainnet", "Solana Mainnet")
+        const chainDisplayName = networkOptions[0].extra?.["chainDisplayName"] ?? "Unknown Network";
+        const chainCaip2Id = networkOptions[0].network;
+        // Recipient wallet address (where payments are sent)
+        const recipientAddresses = Array.from(new Set(networkOptions.map((opt) => opt.payTo)));
+        const recipientAddress = recipientAddresses[0] ?? "";
+        // Build list of accepted tokens for this network
+        const acceptedTokensHtml = networkOptions.map((accept) => {
+            // Token display name (e.g., "USD Coin", "USDC")
+            const tokenDisplayName = accept.extra?.["assetDisplayName"] ?? "Unknown Token";
+            // Token contract address (e.g., "0x833589fCD6eDb6E08f4c7C32D4f71b54bdA02913" for USDC on Base)
+            const tokenContractAddress = accept.asset;
+            // Amount in token's smallest unit (e.g., for USDC with 6 decimals: 1000000 = $1.00)
+            const rawTokenAmount = accept.amount;
+            const rawPrice = accept.extra?.["price"] ?? "Unknown Price";
+            return `
+        <tr>
+          <td>${tokenDisplayName}</td>
+          <td>${rawTokenAmount}</td>
+          <td>${rawPrice}</td>
+          <td><code>${tokenContractAddress}</code></td>
+        </tr>`;
+        }).join("");
+        return `
+    <section>
+      <h3>${chainDisplayName} (${chainCaip2Id})</h3>
+
+      <p><strong>Send payment to:</strong> <code>${recipientAddress}</code></p>
+
+      <table border="1" cellpadding="8" cellspacing="0">
+        <thead>
+          <tr>
+            <th>Token</th>
+            <th>Amount (on-chain units)</th>
+            <th>Price (USD)</th>
+            <th>Contract Address</th>
+          </tr>
+        </thead>
+        <tbody>${acceptedTokensHtml}
+        </tbody>
+      </table>
+    </section>`;
+    }).join("\n");
+    return `<!DOCTYPE html>
+<html>
+<head>
+  <title>HTTP 402 - Payment Required</title>
+  <style>
+    body { font-family: system-ui, sans-serif; max-width: 800px; margin: 40px auto; padding: 0 20px; }
+    code { background: #f0f0f0; padding: 2px 6px; border-radius: 3px; font-size: 0.9em; }
+    table { border-collapse: collapse; margin: 10px 0; }
+    th { background: #f5f5f5; text-align: left; }
+    section { margin: 20px 0; padding: 15px; border: 1px solid #ddd; border-radius: 5px; }
+    h3 { margin-top: 0; }
+    .notice { background: #f7f7f7; border: 1px solid #e2e2e2; border-radius: 6px; padding: 10px 12px; margin: 16px 0; color: #555; font-size: 0.92em; }
+    .notice strong { display: block; margin-bottom: 4px; font-weight: 600; }
+    .notice p { margin: 0; }
+    footer { margin-top: 30px; padding-top: 15px; border-top: 1px solid #eee; font-size: 0.9em; color: #666; }
+  </style>
+</head>
+<body>
+  <h1>HTTP 402 - Payment Required</h1>
+
+  <p>This content requires a payment via the <a href="https://github.com/coinbase/x402">x402 protocol</a>.</p>
+
+  <h2>Protected Resource</h2>
+  <ul>
+    <li><strong>URL:</strong> <code>${url}</code></li>
+    <li><strong>Description:</strong> ${description}</li>
+  </ul>
+
+  <h2>Accepted Payment Options</h2>
+  <p>Pay using any of the following blockchain networks and tokens:</p>
+  ${paymentOptionsHtml}
+
+  <div class="notice">
+    <strong>Important for payment libraries</strong>
+    <p>An HTTP 200 response was returned to encourage agents to view this page. Please treat it as you would a 402 error. All required x402 headers are present. Some unmodified x402 libraries require a 402 response to initiate payment; instead of checking only the response code, check for the presence of the x402 headers.</p>
+  </div>
+
+  <footer>
+    <p><strong>Powered by:</strong> <a href="https://www.foldset.com">Foldset</a></p>
+  </footer>
+</body>
+</html>`;
+}

package/dist/payment/routes.d.ts

@@ -0,0 +1,5 @@
+import type { RoutesConfig } from "@x402/core/http";
+import type { Restriction } from "../restrictions";
+import type { PaymentMethod } from "../payment-methods";
+export declare function buildRoutesConfig(restrictions: Restriction[], paymentMethods: PaymentMethod[]): RoutesConfig;
+//# sourceMappingURL=routes.d.ts.map

package/dist/payment/routes.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"routes.d.ts","sourceRoot":"","sources":["../../src/payment/routes.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,YAAY,EAAE,MAAM,iBAAiB,CAAC;AAGpD,OAAO,KAAK,EAAE,WAAW,EAAE,MAAM,iBAAiB,CAAC;AACnD,OAAO,KAAK,EAAE,aAAa,EAAE,MAAM,oBAAoB,CAAC;AAOxD,wBAAgB,iBAAiB,CAC/B,YAAY,EAAE,WAAW,EAAE,EAC3B,cAAc,EAAE,aAAa,EAAE,GAC9B,YAAY,CA4Bd"}

package/dist/payment/routes.js

@@ -0,0 +1,31 @@
+function priceToAmount(priceUsd, decimals) {
+    const amount = priceUsd * Math.pow(10, decimals);
+    return Math.round(amount).toString();
+}
+export function buildRoutesConfig(restrictions, paymentMethods) {
+    const routesConfig = {};
+    for (const restriction of restrictions) {
+        routesConfig[restriction.path] = {
+            accepts: paymentMethods.map((paymentMethod) => ({
+                scheme: restriction.scheme,
+                price: {
+                    amount: priceToAmount(restriction.price, paymentMethod.decimals),
+                    asset: paymentMethod.contract_address,
+                    // eip712 required extra
+                    extra: {
+                        ...paymentMethod.extra,
+                        decimals: paymentMethod.decimals,
+                        chainDisplayName: paymentMethod.chain_display_name,
+                        assetDisplayName: paymentMethod.asset_display_name,
+                        price: restriction.price,
+                    },
+                },
+                network: paymentMethod.caip2_id,
+                payTo: paymentMethod.circle_wallet_address,
+            })),
+            description: restriction.description,
+            mimeType: "application/json",
+        };
+    }
+    return routesConfig;
+}

package/dist/payment/settlement.d.ts

@@ -0,0 +1,8 @@
+import type { PaymentPayload, PaymentRequirements } from "@x402/core/types";
+import type { x402HTTPResourceServer } from "@x402/hono";
+import type { Context } from "hono";
+import type { Env } from "../types";
+export declare function handleSettlement(c: Context<{
+    Bindings: Env;
+}>, httpServer: x402HTTPResourceServer, paymentPayload: PaymentPayload, paymentRequirements: PaymentRequirements, res: Response): Promise<Response>;
+//# sourceMappingURL=settlement.d.ts.map

package/dist/payment/settlement.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"settlement.d.ts","sourceRoot":"","sources":["../../src/payment/settlement.ts"],"names":[],"mappings":"AACA,OAAO,KAAK,EAAE,cAAc,EAAE,mBAAmB,EAAE,MAAM,kBAAkB,CAAC;AAC5E,OAAO,KAAK,EAAE,sBAAsB,EAAE,MAAM,YAAY,CAAC;AACzD,OAAO,KAAK,EAAE,OAAO,EAAE,MAAM,MAAM,CAAC;AAEpC,OAAO,KAAK,EAAE,GAAG,EAAE,MAAM,UAAU,CAAC;AAEpC,wBAAsB,gBAAgB,CACpC,CAAC,EAAE,OAAO,CAAC;IAAE,QAAQ,EAAE,GAAG,CAAA;CAAE,CAAC,EAC7B,UAAU,EAAE,sBAAsB,EAClC,cAAc,EAAE,cAAc,EAC9B,mBAAmB,EAAE,mBAAmB,EACxC,GAAG,EAAE,QAAQ,GACZ,OAAO,CAAC,QAAQ,CAAC,CAmCnB"}

package/dist/payment/settlement.js

@@ -0,0 +1,27 @@
+import * as Sentry from "@sentry/cloudflare";
+export async function handleSettlement(c, httpServer, paymentPayload, paymentRequirements, res) {
+    if (res.status >= 400) {
+        return res;
+    }
+    try {
+        const settleResult = await httpServer.processSettlement(paymentPayload, paymentRequirements);
+        if (!settleResult.success) {
+            Sentry.captureException(new Error(`Settlement failed: ${settleResult.errorReason}`));
+            return c.json({
+                error: "Settlement failed",
+                details: settleResult.errorReason,
+            }, 402);
+        }
+        Object.entries(settleResult.headers).forEach(([key, value]) => {
+            res.headers.set(key, value);
+        });
+        return res;
+    }
+    catch (error) {
+        Sentry.captureException(error);
+        return c.json({
+            error: "Settlement failed",
+            details: error instanceof Error ? error.message : "Unknown error",
+        }, 402);
+    }
+}

package/dist/payment/setup.d.ts

@@ -0,0 +1,7 @@
+import type { Context } from "hono";
+import { x402HTTPResourceServer } from "@x402/hono";
+import type { Env } from "../types";
+export declare function getHttpServer(c: Context<{
+    Bindings: Env;
+}>): Promise<x402HTTPResourceServer | null>;
+//# sourceMappingURL=setup.d.ts.map

package/dist/payment/setup.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"setup.d.ts","sourceRoot":"","sources":["../../src/payment/setup.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,OAAO,EAAE,MAAM,MAAM,CAAC;AACpC,OAAO,EAEL,sBAAsB,EACvB,MAAM,YAAY,CAAC;AAMpB,OAAO,KAAK,EAAE,GAAG,EAAE,MAAM,UAAU,CAAC;AA+DpC,wBAAsB,aAAa,CACjC,CAAC,EAAE,OAAO,CAAC;IAAE,QAAQ,EAAE,GAAG,CAAA;CAAE,CAAC,GAC5B,OAAO,CAAC,sBAAsB,GAAG,IAAI,CAAC,CA0CxC"}

package/dist/payment/setup.js

@@ -0,0 +1,85 @@
+import { x402ResourceServer, x402HTTPResourceServer, } from "@x402/hono";
+import { registerExactEvmScheme } from "@x402/evm/exact/server";
+import { registerExactSvmScheme } from "@x402/svm/exact/server";
+import { getRestrictions } from "../restrictions";
+import { getPaymentMethods } from "../payment-methods";
+import { buildRoutesConfig } from "./routes";
+import { getFacilitator } from "../facilitators";
+import { generateHtml } from "./paywall";
+const paywallProvider = {
+    generateHtml
+};
+let cachedHttpServer = null;
+let cachedRestrictions = null;
+let cachedPaymentMethods = null;
+/**
+ * Custom createHTTPResponse implementation for Foldset
+ * Monkey-patched onto x402HTTPResourceServer instances
+ */
+function createFoldsetHTTPResponse(paymentRequired, isWebBrowser, paywallConfig, customHtml, unpaidResponse) {
+    // @ts-expect-error - accessing private method
+    const html = this.generatePaywallHTML(paymentRequired, paywallConfig, customHtml);
+    // Always generate and provide
+    // if (isWebBrowser) {
+    //   // @ts-expect-error - accessing private method
+    //   const html = this.generatePaywallHTML(paymentRequired, paywallConfig, customHtml);
+    //   return {
+    //     status: 402,
+    //     headers: { "Content-Type": "text/html" },
+    //     body: html,
+    //     isHtml: true,
+    //   };
+    // }
+    // @ts-expect-error - accessing private method
+    const response = this.createHTTPPaymentRequiredResponse(paymentRequired);
+    // We don't provide a callback
+    // Use callback result if provided, otherwise default to JSON with empty object
+    // const contentType = unpaidResponse ? unpaidResponse.contentType : "application/json";
+    // const body = unpaidResponse ? unpaidResponse.body : {};
+    // Status should be 402 but we return 200 so AI crawlers view the payment instructions
+    return {
+        status: 200,
+        headers: {
+            "Content-Type": "text/html",
+            ...response.headers,
+        },
+        body: html,
+        isHtml: true,
+    };
+}
+// Maybe this function is never needed and can just updated cachedHttpServer on changes to upstream configs
+// ie consider changing to a chained pattern
+export async function getHttpServer(c) {
+    const restrictions = await getRestrictions(c);
+    const paymentMethods = await getPaymentMethods(c);
+    if (restrictions === null || paymentMethods === null) {
+        return null;
+    }
+    if (cachedHttpServer &&
+        restrictions === cachedRestrictions &&
+        paymentMethods === cachedPaymentMethods) {
+        return cachedHttpServer;
+    }
+    const facilitator = await getFacilitator(c);
+    if (facilitator === null) {
+        return null;
+    }
+    // This could be pulled out
+    const server = new x402ResourceServer(facilitator);
+    registerExactEvmScheme(server);
+    registerExactSvmScheme(server);
+    const routesConfig = buildRoutesConfig(restrictions, paymentMethods);
+    const httpServer = new x402HTTPResourceServer(server, routesConfig);
+    // Monkey-patch createHTTPResponse with our custom implementation
+    // @ts-expect-error - overriding private method
+    httpServer.createHTTPResponse = createFoldsetHTTPResponse;
+    // TODO rfradkin: This is probably the slowest part of the cold start. Figure out how to speed this up.
+    // Also this is slow on every request where its updated.
+    // Consider looking into creating a serverless facilitator so don't have to request outside the serverless environment
+    await httpServer.initialize();
+    httpServer.registerPaywallProvider(paywallProvider);
+    cachedHttpServer = httpServer;
+    cachedRestrictions = restrictions;
+    cachedPaymentMethods = paymentMethods;
+    return httpServer;
+}

package/dist/payment-methods/index.d.ts

@@ -0,0 +1,18 @@
+import type { Context } from "hono";
+import type { Env } from "../types";
+export interface PaymentMethod {
+    caip2_id: string;
+    decimals: number;
+    contract_address: string;
+    circle_wallet_address: string;
+    extra?: Record<string, string>;
+    chain_display_name: string;
+    asset_display_name: string;
+}
+export declare function getPaymentMethods(c: Context<{
+    Bindings: Env;
+}>): Promise<PaymentMethod[] | null>;
+export declare function storePaymentMethods(c: Context<{
+    Bindings: Env;
+}>, paymentMethods: PaymentMethod[]): Promise<void>;
+//# sourceMappingURL=index.d.ts.map

package/dist/payment-methods/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/payment-methods/index.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,OAAO,EAAE,MAAM,MAAM,CAAC;AACpC,OAAO,KAAK,EAAE,GAAG,EAAE,MAAM,UAAU,CAAC;AAEpC,MAAM,WAAW,aAAa;IAC5B,QAAQ,EAAE,MAAM,CAAC;IACjB,QAAQ,EAAE,MAAM,CAAC;IACjB,gBAAgB,EAAE,MAAM,CAAC;IACzB,qBAAqB,EAAE,MAAM,CAAC;IAC9B,KAAK,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;IAC/B,kBAAkB,EAAE,MAAM,CAAC;IAC3B,kBAAkB,EAAE,MAAM,CAAC;CAC5B;AAOD,wBAAsB,iBAAiB,CACrC,CAAC,EAAE,OAAO,CAAC;IAAE,QAAQ,EAAE,GAAG,CAAA;CAAE,CAAC,GAC5B,OAAO,CAAC,aAAa,EAAE,GAAG,IAAI,CAAC,CAUjC;AAED,wBAAsB,mBAAmB,CACvC,CAAC,EAAE,OAAO,CAAC;IAAE,QAAQ,EAAE,GAAG,CAAA;CAAE,CAAC,EAC7B,cAAc,EAAE,aAAa,EAAE,GAC9B,OAAO,CAAC,IAAI,CAAC,CAIf"}

package/dist/payment-methods/index.js

@@ -0,0 +1,18 @@
+const CACHE_TTL_MS = 30_000;
+let cachedPaymentMethods = null;
+let cacheTimestamp = 0;
+export async function getPaymentMethods(c) {
+    const now = Date.now();
+    if (cachedPaymentMethods !== null && now - cacheTimestamp < CACHE_TTL_MS) {
+        return cachedPaymentMethods;
+    }
+    const response = await c.env.FOLDSET_CONFIG.get("payment-methods");
+    cachedPaymentMethods = response ? JSON.parse(response) : null;
+    cacheTimestamp = now;
+    return cachedPaymentMethods;
+}
+export async function storePaymentMethods(c, paymentMethods) {
+    await c.env.FOLDSET_CONFIG.put("payment-methods", JSON.stringify(paymentMethods), {
+        expirationTtl: 60 * 60 * 3 + 60 * 30, // 3 hours + 30 minutes
+    });
+}

package/dist/restrictions/index.d.ts

@@ -0,0 +1,16 @@
+import type { Context } from "hono";
+import type { Env } from "../types";
+export interface Restriction {
+    host: string;
+    path: string;
+    description: string;
+    price: number;
+    scheme: string;
+}
+export declare function getRestrictions(c: Context<{
+    Bindings: Env;
+}>): Promise<Restriction[] | null>;
+export declare function storeRestrictions(c: Context<{
+    Bindings: Env;
+}>, restrictions: Restriction[]): Promise<void>;
+//# sourceMappingURL=index.d.ts.map

package/dist/restrictions/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/restrictions/index.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,OAAO,EAAE,MAAM,MAAM,CAAC;AACpC,OAAO,KAAK,EAAE,GAAG,EAAE,MAAM,UAAU,CAAC;AAEpC,MAAM,WAAW,WAAW;IAC1B,IAAI,EAAE,MAAM,CAAC;IACb,IAAI,EAAE,MAAM,CAAC;IACb,WAAW,EAAE,MAAM,CAAC;IACpB,KAAK,EAAE,MAAM,CAAC;IACd,MAAM,EAAE,MAAM,CAAC;CAChB;AAOD,wBAAsB,eAAe,CACnC,CAAC,EAAE,OAAO,CAAC;IAAE,QAAQ,EAAE,GAAG,CAAA;CAAE,CAAC,GAC5B,OAAO,CAAC,WAAW,EAAE,GAAG,IAAI,CAAC,CAU/B;AAED,wBAAsB,iBAAiB,CACrC,CAAC,EAAE,OAAO,CAAC;IAAE,QAAQ,EAAE,GAAG,CAAA;CAAE,CAAC,EAC7B,YAAY,EAAE,WAAW,EAAE,GAC1B,OAAO,CAAC,IAAI,CAAC,CAIf"}

package/dist/restrictions/index.js

@@ -0,0 +1,18 @@
+const CACHE_TTL_MS = 30_000;
+let cachedRestrictions = null;
+let cacheTimestamp = 0;
+export async function getRestrictions(c) {
+    const now = Date.now();
+    if (cachedRestrictions !== null && now - cacheTimestamp < CACHE_TTL_MS) {
+        return cachedRestrictions;
+    }
+    const response = await c.env.FOLDSET_CONFIG.get("restrictions");
+    cachedRestrictions = response ? JSON.parse(response) : null;
+    cacheTimestamp = now;
+    return cachedRestrictions;
+}
+export async function storeRestrictions(c, restrictions) {
+    await c.env.FOLDSET_CONFIG.put("restrictions", JSON.stringify(restrictions), {
+        expirationTtl: 60 * 60 * 3 + 60 * 30, // 3 hours + 30 minutes
+    });
+}

package/dist/telemetry/logging.d.ts

@@ -0,0 +1,18 @@
+import type { Context } from "hono";
+import type { Env } from "../types";
+export type EventPayload = {
+    method: string;
+    status_code: number;
+    user_agent: string | null;
+    referer?: string | null;
+    href: string;
+    hostname: string;
+    pathname: string;
+    search: string;
+    ip_address?: string | null;
+    payment_response?: string;
+};
+export declare function logVisitEvent(c: Context<{
+    Bindings: Env;
+}>, response: Response): void;
+//# sourceMappingURL=logging.d.ts.map

package/dist/telemetry/logging.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"logging.d.ts","sourceRoot":"","sources":["../../src/telemetry/logging.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,OAAO,EAAE,MAAM,MAAM,CAAC;AAIpC,OAAO,KAAK,EAAE,GAAG,EAAE,MAAM,UAAU,CAAC;AAIpC,MAAM,MAAM,YAAY,GAAG;IACzB,MAAM,EAAE,MAAM,CAAC;IACf,WAAW,EAAE,MAAM,CAAC;IACpB,UAAU,EAAE,MAAM,GAAG,IAAI,CAAC;IAC1B,OAAO,CAAC,EAAE,MAAM,GAAG,IAAI,CAAC;IACxB,IAAI,EAAE,MAAM,CAAC;IACb,QAAQ,EAAE,MAAM,CAAC;IACjB,QAAQ,EAAE,MAAM,CAAC;IACjB,MAAM,EAAE,MAAM,CAAC;IACf,UAAU,CAAC,EAAE,MAAM,GAAG,IAAI,CAAC;IAC3B,gBAAgB,CAAC,EAAE,MAAM,CAAC;CAC3B,CAAC;AAEF,wBAAgB,aAAa,CAAC,CAAC,EAAE,OAAO,CAAC;IAAE,QAAQ,EAAE,GAAG,CAAA;CAAE,CAAC,EAAE,QAAQ,EAAE,QAAQ,QA8C9E"}

package/dist/telemetry/logging.js

@@ -0,0 +1,47 @@
+import * as Sentry from "@sentry/cloudflare";
+import { API_BASE_URL } from "../config";
+const PAYMENT_RESPONSE_HEADER = "PAYMENT-RESPONSE";
+export function logVisitEvent(c, response) {
+    const url = new URL(c.req.url);
+    const ipAddressHeader = c.req.header("cf-connecting-ip") || c.req.header("x-forwarded-for");
+    const ipAddress = ipAddressHeader?.split(",")[0]?.trim() || null;
+    const paymentResponse = response.headers.get(PAYMENT_RESPONSE_HEADER) || undefined;
+    const payload = {
+        method: c.req.method,
+        status_code: response.status,
+        user_agent: c.req.header("user-agent") || null,
+        referer: c.req.header("referer") || null,
+        href: url.href,
+        hostname: url.hostname,
+        pathname: url.pathname,
+        search: url.search,
+        ip_address: ipAddress,
+        ...(paymentResponse ? { payment_response: paymentResponse } : {}),
+    };
+    const requestPromise = fetch(`${API_BASE_URL}/events`, {
+        method: "POST",
+        headers: {
+            Authorization: `Bearer ${c.env.FOLDSET_API_KEY}`,
+            "Content-Type": "application/json",
+            Accept: "application/json",
+        },
+        body: JSON.stringify(payload),
+    }).catch((error) => {
+        Sentry.captureException(error, {
+            extra: {
+                method: "POST",
+                url: `${API_BASE_URL}/events`,
+                headers: {
+                    Authorization: `Bearer ${c.env.FOLDSET_API_KEY}`,
+                    "Content-Type": "application/json",
+                    Accept: "application/json",
+                },
+                body: JSON.stringify(payload),
+            },
+            tags: {
+                endpoint: "/events",
+            },
+        });
+    });
+    c.executionCtx.waitUntil(requestPromise);
+}

package/dist/telemetry/sentry.d.ts

@@ -0,0 +1,8 @@
+import type { ExecutionContext } from "@cloudflare/workers-types";
+type SentryWrapperArgs = {
+    request: Request;
+    context: ExecutionContext;
+};
+export declare const wrappedPaymentHandler: (wrapperArgs: SentryWrapperArgs, handler: () => Promise<Response>) => Promise<Response>;
+export {};
+//# sourceMappingURL=sentry.d.ts.map

package/dist/telemetry/sentry.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"sentry.d.ts","sourceRoot":"","sources":["../../src/telemetry/sentry.ts"],"names":[],"mappings":"AACA,OAAO,KAAK,EAAE,gBAAgB,EAAE,MAAM,2BAA2B,CAAC;AAIlE,KAAK,iBAAiB,GAAG;IACvB,OAAO,EAAE,OAAO,CAAC;IACjB,OAAO,EAAE,gBAAgB,CAAC;CAC3B,CAAC;AAuBF,eAAO,MAAM,qBAAqB,gBAnBX,iBAAiB,WAAW,MAAM,OAAO,CAAC,QAAQ,CAAC,sBAmBE,CAAC"}

package/dist/telemetry/sentry.js

@@ -0,0 +1,19 @@
+import * as Sentry from "@sentry/cloudflare";
+const SENTRY_DSN = "https://f68380669974dab9bbcf5aec9414bcb8@o4510648631296000.ingest.us.sentry.io/4510718170038272";
+// TODO rfradkin: Add webhook support for updating this
+function createWrappedPaymentHandler(dsn) {
+    return (wrapperArgs, handler) => {
+        if (!dsn) {
+            return handler();
+        }
+        return Sentry.wrapRequestHandler({
+            options: {
+                dsn,
+                sendDefaultPii: true,
+            },
+            request: wrapperArgs.request,
+            context: wrapperArgs.context,
+        }, handler);
+    };
+}
+export const wrappedPaymentHandler = createWrappedPaymentHandler(SENTRY_DSN);

package/dist/types.d.ts

@@ -1,10 +1,6 @@
-export type Price = number;
-export type Pathname = string;
-export type Restriction = {
-    price: Price;
-    pathname: Pathname;
-};
-export type Restrictions = Record<Pathname, Price>;
-export type AddressResponse = {
-    address: string;
+import type { KVNamespace } from "@cloudflare/workers-types";
+export type Env = {
+    FOLDSET_API_KEY: string;
+    FOLDSET_CONFIG: KVNamespace;
 };
+//# sourceMappingURL=types.d.ts.map

package/dist/types.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"types.d.ts","sourceRoot":"","sources":["../src/types.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,WAAW,EAAE,MAAM,2BAA2B,CAAC;AAE7D,MAAM,MAAM,GAAG,GAAG;IAChB,eAAe,EAAE,MAAM,CAAC;IACxB,cAAc,EAAE,WAAW,CAAC;CAC7B,CAAC"}

package/dist/webhooks/index.d.ts

@@ -0,0 +1,23 @@
+import type { Context } from "hono";
+import type { Env } from "../types";
+import { type Restriction } from "../restrictions";
+import { type PaymentMethod } from "../payment-methods";
+import { type AiCrawler } from "../ai-crawlers";
+import { type FacilitatorConfig } from "../facilitators";
+export type FoldsetWebhook = {
+    event_type: "restrictions";
+    event_object: Restriction[];
+} | {
+    event_type: "payment-methods";
+    event_object: PaymentMethod[];
+} | {
+    event_type: "ai-crawlers";
+    event_object: AiCrawler[];
+} | {
+    event_type: "facilitator";
+    event_object: FacilitatorConfig;
+};
+export declare function handleWebhook(c: Context<{
+    Bindings: Env;
+}>): Promise<Response>;
+//# sourceMappingURL=index.d.ts.map

package/dist/webhooks/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/webhooks/index.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,OAAO,EAAE,MAAM,MAAM,CAAC;AAEpC,OAAO,KAAK,EAAE,GAAG,EAAE,MAAM,UAAU,CAAC;AACpC,OAAO,EAAE,KAAK,WAAW,EAAqB,MAAM,iBAAiB,CAAC;AACtE,OAAO,EAAE,KAAK,aAAa,EAAuB,MAAM,oBAAoB,CAAC;AAC7E,OAAO,EAAE,KAAK,SAAS,EAAmB,MAAM,gBAAgB,CAAC;AACjE,OAAO,EAAE,KAAK,iBAAiB,EAAoB,MAAM,iBAAiB,CAAC;AAE3E,MAAM,MAAM,cAAc,GACtB;IAAE,UAAU,EAAE,cAAc,CAAC;IAAC,YAAY,EAAE,WAAW,EAAE,CAAA;CAAE,GAC3D;IAAE,UAAU,EAAE,iBAAiB,CAAC;IAAC,YAAY,EAAE,aAAa,EAAE,CAAA;CAAE,GAChE;IAAE,UAAU,EAAE,aAAa,CAAC;IAAC,YAAY,EAAE,SAAS,EAAE,CAAA;CAAE,GACxD;IAAE,UAAU,EAAE,aAAa,CAAC;IAAC,YAAY,EAAE,iBAAiB,CAAA;CAAE,CAAC;AAgCnE,wBAAsB,aAAa,CAAC,CAAC,EAAE,OAAO,CAAC;IAAE,QAAQ,EAAE,GAAG,CAAA;CAAE,CAAC,GAAG,OAAO,CAAC,QAAQ,CAAC,CA0BpF"}

package/dist/webhooks/index.js

@@ -0,0 +1,50 @@
+import { storeRestrictions } from "../restrictions";
+import { storePaymentMethods } from "../payment-methods";
+import { storeAiCrawlers } from "../ai-crawlers";
+import { storeFacilitator } from "../facilitators";
+async function verifySignature(body, signature, apiKey) {
+    const encoder = new TextEncoder();
+    const keyHashBuffer = await crypto.subtle.digest("SHA-256", encoder.encode(apiKey));
+    const hashedKeyHex = Array.from(new Uint8Array(keyHashBuffer))
+        .map((b) => b.toString(16).padStart(2, "0"))
+        .join("");
+    const hmacKey = await crypto.subtle.importKey("raw", encoder.encode(hashedKeyHex), { name: "HMAC", hash: "SHA-256" }, false, ["sign"]);
+    const expectedSig = await crypto.subtle.sign("HMAC", hmacKey, encoder.encode(body));
+    const expectedHex = Array.from(new Uint8Array(expectedSig))
+        .map((b) => b.toString(16).padStart(2, "0"))
+        .join("");
+    // Timing-safe comparison
+    if (signature.length !== expectedHex.length)
+        return false;
+    let result = 0;
+    for (let i = 0; i < signature.length; i++) {
+        result |= signature.charCodeAt(i) ^ expectedHex.charCodeAt(i);
+    }
+    return result === 0;
+}
+export async function handleWebhook(c) {
+    const signature = c.req.header("X-Foldset-Signature");
+    if (!signature) {
+        return new Response("Missing signature", { status: 401 });
+    }
+    const body = await c.req.text();
+    const isValid = await verifySignature(body, signature, c.env.FOLDSET_API_KEY);
+    if (!isValid) {
+        return new Response("Invalid signature", { status: 401 });
+    }
+    const webhook = JSON.parse(body);
+    // Fails the entire webhook if the put fails. Not standard but think it makes sense for now
+    if (webhook.event_type === "restrictions") {
+        await storeRestrictions(c, webhook.event_object);
+    }
+    else if (webhook.event_type === "payment-methods") {
+        await storePaymentMethods(c, webhook.event_object);
+    }
+    else if (webhook.event_type === "ai-crawlers") {
+        await storeAiCrawlers(c, webhook.event_object);
+    }
+    else if (webhook.event_type === "facilitator") {
+        await storeFacilitator(c, webhook.event_object);
+    }
+    return new Response("Ok", { status: 200 });
+}

package/package.json

@@ -1,34 +1,37 @@
 {
   "name": "@foldset/cloudflare",
-  "version": "0.0.1",
-  "description": "SDK for creating Foldset-enabled Cloudflare Workers",
-  "type": "module",
+  "version": "0.0.3",
+  "private": false,
   "main": "./dist/index.js",
   "types": "./dist/index.d.ts",
   "exports": {
     ".": {
       "types": "./dist/index.d.ts",
-      "import": "./dist/index.js"
+      "default": "./dist/index.js"
+    },
+    "./hono": {
+      "types": "./dist/hono.d.ts",
+      "default": "./dist/hono.js"
     }
   },
   "files": [
     "dist"
   ],
-  "keywords": [
-    "foldset",
-    "cloudflare",
-    "workers",
-    "x402"
-  ],
-  "license": "MIT",
+  "scripts": {
+    "typegen": "wrangler types --path types/worker-configuration.d.ts",
+    "build": "tsc -p tsconfig.json --noEmit false --outDir dist --rootDir src"
+  },
   "dependencies": {
-    "@x402/core": "^2.1.0",
-    "@x402/evm": "^2.1.0",
-    "@x402/hono": "^2.1.0",
-    "hono": "^4.11.3",
-    "p-memoize": "^8.0.0"
+    "@cloudflare/workers-types": "^4.20260117.0",
+    "@sentry/cloudflare": "^10.34.0",
+    "@x402/core": "^2.2.0",
+    "@x402/evm": "^2.2.0",
+    "@x402/hono": "^2.2.0",
+    "@x402/svm": "^2.2.0",
+    "hono": "^4.11.4"
   },
-  "scripts": {
-    "build": "tsc"
+  "devDependencies": {
+    "typescript": "^5.9.3",
+    "wrangler": "^4.59.1"
   }
 }

package/README.md

@@ -1 +0,0 @@
-# Typescript library for foldset?