@hanix.io/business 0.1.0

package/LICENSE

@@ -0,0 +1,21 @@
+MIT License
+
+Copyright (c) 2026 Hanix
+
+Permission is hereby granted, free of charge, to any person obtaining a copy
+of this software and associated documentation files (the "Software"), to deal
+in the Software without restriction, including without limitation the rights
+to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
+copies of the Software, and to permit persons to whom the Software is
+furnished to do so, subject to the following conditions:
+
+The above copyright notice and this permission notice shall be included in all
+copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
+SOFTWARE.

package/README.md

@@ -0,0 +1,135 @@
+# @hanix.io/business
+
+SDK oficial de Node.js para la **Hanix Business API**: crear y consultar órdenes de pago con autenticación HMAC-SHA256.
+
+## Instalación
+
+```bash
+npm install @hanix.io/business
+```
+
+```bash
+pnpm add @hanix.io/business
+```
+
+## Requisitos
+
+- Node.js 22.12 o superior
+- **merchantId**: UUID del comercio (cabecera `business-merchant-id`)
+- **apiKey**: secreto HMAC del comercio (no se envía en la red; solo firma las solicitudes). Obtén ambos en el panel Hanix o en `GET /merchants/me` con tu sesión merchant.
+
+El SDK apunta por defecto a `https://api.hanix.io/api/v1`.
+
+## Inicio rápido
+
+```typescript
+import { HanixBusinessClient } from '@hanix.io/business';
+
+const client = new HanixBusinessClient({
+  merchantId: process.env.HANIX_MERCHANT_ID!,
+  apiKey: process.env.HANIX_API_KEY!,
+});
+
+const order = await client.createPaymentOrder({
+  merchant_reference: 'pedido-1001',
+  amount_in_cents: 15000,
+  currency_id: 'xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx',
+  country_id: 'yyyyyyyy-yyyy-yyyy-yyyy-yyyyyyyyyyyy',
+  description: 'Suscripción mensual',
+  customer_email: 'cliente@ejemplo.com',
+});
+
+console.log(order.payment_url);
+```
+
+## API del cliente
+
+### `new HanixBusinessClient(options)`
+
+| Opción | Obligatorio | Descripción |
+|--------|-------------|-------------|
+| `merchantId` | Sí | UUID del comercio |
+| `apiKey` | Sí | Clave API (secreto HMAC) |
+| `timeoutMs` | No | Tiempo máximo por solicitud (default: 30000) |
+| `fetch` | No | Implementación de `fetch` (tests o entornos custom) |
+| `userAgent` | No | Cabecera `User-Agent` (default: `@hanix.io/business`) |
+
+### `createPaymentOrder(input)`
+
+Crea una orden de pago (`POST /business/payment-orders`).
+
+Campos obligatorios: `merchant_reference`, `amount_in_cents`, `currency_id`, `country_id`.
+
+Opcionales: `description`, `customer_email`, `success_url`, `cancel_url`, `expires_at`, `metadata`.
+
+Devuelve una `PaymentOrder` con `payment_url`, `public_token`, `status`, etc.
+
+### `listPaymentOrders(params?)`
+
+Lista órdenes del comercio (`GET /business/payment-orders`).
+
+Filtros opcionales: `status`, `merchant_reference`, `currency_id`, `country_id`, `created_from`, `created_to`, `expires_from`, `expires_to`, `page`, `limit`, `sort` (`created_at_asc` \| `created_at_desc`).
+
+### `getPaymentOrder(paymentOrderId)`
+
+Obtiene una orden por id (`GET /business/payment-orders/:id`).
+
+### `listPaymentOrderAttempts(paymentOrderId, params?)`
+
+Lista intentos de pago de una orden (`GET /business/payment-orders/:id/attempts`).
+
+Filtros opcionales: `status` (`initiated`, `processing`, `succeeded`, `failed`, `expired`, `abandoned`), `page`, `limit`, `sort`.
+
+## Autenticación
+
+Cada solicitud lleva estas cabeceras (generadas por el SDK):
+
+| Cabecera | Descripción |
+|----------|-------------|
+| `business-merchant-id` | UUID del comercio |
+| `business-timestamp` | Unix en segundos |
+| `business-signature` | `HMAC-SHA256(apiKey, timestamp + rawBody)` en hexadecimal |
+
+En `GET`, el cuerpo firmado es la cadena vacía. En `POST`, el cuerpo JSON se serializa con claves ordenadas para que la firma coincida con los bytes enviados.
+
+## Errores
+
+```typescript
+import {
+  HanixBusinessError,
+  HanixBusinessNetworkError,
+  HanixBusinessConfigError,
+} from '@hanix.io/business';
+
+try {
+  await client.getPaymentOrder('...');
+} catch (error) {
+  if (error instanceof HanixBusinessError) {
+    // 4xx / 5xx de la API (error.status, error.message, error.body)
+  } else if (error instanceof HanixBusinessNetworkError) {
+    // Timeout o fallo de red (error.cause)
+  } else if (error instanceof HanixBusinessConfigError) {
+    // merchantId o apiKey inválidos al crear el cliente
+  }
+}
+```
+
+| Clase | Cuándo |
+|-------|--------|
+| `HanixBusinessError` | Respuesta HTTP no exitosa de Hanix |
+| `HanixBusinessNetworkError` | Timeout, red o `fetch` no disponible |
+| `HanixBusinessConfigError` | Opciones inválidas del cliente |
+
+## Buenas prácticas
+
+- Guarda `apiKey` en variables de entorno o un gestor de secretos; no la subas al repositorio.
+- La `apiKey` nunca viaja en cabeceras ni en el cuerpo; solo se usa para firmar.
+- Usa `merchant_reference` único por orden para evitar conflictos (409).
+
+## Utilidades exportadas
+
+Para integraciones avanzadas o pruebas manuales:
+
+- `HANIX_BUSINESS_API_BASE_URL` — URL base de la API
+- `stableStringify`, `signBusinessPayload`, `buildBusinessAuthHeaders`, `verifyBusinessPayload`
+- Constantes de cabeceras: `BUSINESS_MERCHANT_ID_HEADER`, `BUSINESS_TIMESTAMP_HEADER`, `BUSINESS_SIGNATURE_HEADER`

package/dist/auth/hmac.d.ts

@@ -0,0 +1,15 @@
+export declare const BUSINESS_MERCHANT_ID_HEADER = "business-merchant-id";
+export declare const BUSINESS_TIMESTAMP_HEADER = "business-timestamp";
+export declare const BUSINESS_SIGNATURE_HEADER = "business-signature";
+export declare function assertValidMerchantId(merchantId: string): void;
+export declare function assertValidApiKey(apiKey: string): void;
+export declare function signBusinessPayload(apiKey: string, timestamp: string, rawBody: string): string;
+/** Solo para pruebas o verificación local; el servidor valida la firma. */
+export declare function verifyBusinessPayload(apiKey: string, timestamp: string, rawBody: string, signature: string): boolean;
+export declare function buildBusinessAuthHeaders(input: {
+    merchantId: string;
+    apiKey: string;
+    rawBody: string;
+    timestamp?: number;
+}): Record<string, string>;
+//# sourceMappingURL=hmac.d.ts.map

package/dist/auth/hmac.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"hmac.d.ts","sourceRoot":"","sources":["../../src/auth/hmac.ts"],"names":[],"mappings":"AAEA,eAAO,MAAM,2BAA2B,yBAAyB,CAAC;AAClE,eAAO,MAAM,yBAAyB,uBAAuB,CAAC;AAC9D,eAAO,MAAM,yBAAyB,uBAAuB,CAAC;AAK9D,wBAAgB,qBAAqB,CAAC,UAAU,EAAE,MAAM,GAAG,IAAI,CAI9D;AAED,wBAAgB,iBAAiB,CAAC,MAAM,EAAE,MAAM,GAAG,IAAI,CAItD;AAED,wBAAgB,mBAAmB,CACjC,MAAM,EAAE,MAAM,EACd,SAAS,EAAE,MAAM,EACjB,OAAO,EAAE,MAAM,GACd,MAAM,CAGR;AAED,2EAA2E;AAC3E,wBAAgB,qBAAqB,CACnC,MAAM,EAAE,MAAM,EACd,SAAS,EAAE,MAAM,EACjB,OAAO,EAAE,MAAM,EACf,SAAS,EAAE,MAAM,GAChB,OAAO,CAQT;AAED,wBAAgB,wBAAwB,CAAC,KAAK,EAAE;IAC9C,UAAU,EAAE,MAAM,CAAC;IACnB,MAAM,EAAE,MAAM,CAAC;IACf,OAAO,EAAE,MAAM,CAAC;IAChB,SAAS,CAAC,EAAE,MAAM,CAAC;CACpB,GAAG,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAkBzB"}

package/dist/auth/hmac.js

@@ -0,0 +1,41 @@
+import { createHmac, timingSafeEqual } from 'node:crypto';
+export const BUSINESS_MERCHANT_ID_HEADER = 'business-merchant-id';
+export const BUSINESS_TIMESTAMP_HEADER = 'business-timestamp';
+export const BUSINESS_SIGNATURE_HEADER = 'business-signature';
+const MERCHANT_ID_RE = /^[0-9a-f]{8}-[0-9a-f]{4}-[1-5][0-9a-f]{3}-[89ab][0-9a-f]{3}-[0-9a-f]{12}$/i;
+export function assertValidMerchantId(merchantId) {
+    if (!MERCHANT_ID_RE.test(merchantId)) {
+        throw new Error('merchantId debe ser un UUID válido');
+    }
+}
+export function assertValidApiKey(apiKey) {
+    if (typeof apiKey !== 'string' || apiKey.trim().length < 16) {
+        throw new Error('apiKey inválida');
+    }
+}
+export function signBusinessPayload(apiKey, timestamp, rawBody) {
+    const payload = `${timestamp}${rawBody}`;
+    return createHmac('sha256', apiKey).update(payload, 'utf8').digest('hex');
+}
+/** Solo para pruebas o verificación local; el servidor valida la firma. */
+export function verifyBusinessPayload(apiKey, timestamp, rawBody, signature) {
+    const expected = signBusinessPayload(apiKey, timestamp, rawBody);
+    const a = Buffer.from(expected, 'hex');
+    const b = Buffer.from(signature.trim(), 'hex');
+    if (a.length !== b.length) {
+        return false;
+    }
+    return timingSafeEqual(a, b);
+}
+export function buildBusinessAuthHeaders(input) {
+    assertValidMerchantId(input.merchantId);
+    assertValidApiKey(input.apiKey);
+    const timestamp = String(input.timestamp ?? Math.floor(Date.now() / 1000));
+    const signature = signBusinessPayload(input.apiKey, timestamp, input.rawBody);
+    return {
+        [BUSINESS_MERCHANT_ID_HEADER]: input.merchantId,
+        [BUSINESS_TIMESTAMP_HEADER]: timestamp,
+        [BUSINESS_SIGNATURE_HEADER]: signature,
+    };
+}
+//# sourceMappingURL=hmac.js.map

package/dist/auth/hmac.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"hmac.js","sourceRoot":"","sources":["../../src/auth/hmac.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,UAAU,EAAE,eAAe,EAAE,MAAM,aAAa,CAAC;AAE1D,MAAM,CAAC,MAAM,2BAA2B,GAAG,sBAAsB,CAAC;AAClE,MAAM,CAAC,MAAM,yBAAyB,GAAG,oBAAoB,CAAC;AAC9D,MAAM,CAAC,MAAM,yBAAyB,GAAG,oBAAoB,CAAC;AAE9D,MAAM,cAAc,GAClB,4EAA4E,CAAC;AAE/E,MAAM,UAAU,qBAAqB,CAAC,UAAkB;IACtD,IAAI,CAAC,cAAc,CAAC,IAAI,CAAC,UAAU,CAAC,EAAE,CAAC;QACrC,MAAM,IAAI,KAAK,CAAC,oCAAoC,CAAC,CAAC;IACxD,CAAC;AACH,CAAC;AAED,MAAM,UAAU,iBAAiB,CAAC,MAAc;IAC9C,IAAI,OAAO,MAAM,KAAK,QAAQ,IAAI,MAAM,CAAC,IAAI,EAAE,CAAC,MAAM,GAAG,EAAE,EAAE,CAAC;QAC5D,MAAM,IAAI,KAAK,CAAC,iBAAiB,CAAC,CAAC;IACrC,CAAC;AACH,CAAC;AAED,MAAM,UAAU,mBAAmB,CACjC,MAAc,EACd,SAAiB,EACjB,OAAe;IAEf,MAAM,OAAO,GAAG,GAAG,SAAS,GAAG,OAAO,EAAE,CAAC;IACzC,OAAO,UAAU,CAAC,QAAQ,EAAE,MAAM,CAAC,CAAC,MAAM,CAAC,OAAO,EAAE,MAAM,CAAC,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC;AAC5E,CAAC;AAED,2EAA2E;AAC3E,MAAM,UAAU,qBAAqB,CACnC,MAAc,EACd,SAAiB,EACjB,OAAe,EACf,SAAiB;IAEjB,MAAM,QAAQ,GAAG,mBAAmB,CAAC,MAAM,EAAE,SAAS,EAAE,OAAO,CAAC,CAAC;IACjE,MAAM,CAAC,GAAG,MAAM,CAAC,IAAI,CAAC,QAAQ,EAAE,KAAK,CAAC,CAAC;IACvC,MAAM,CAAC,GAAG,MAAM,CAAC,IAAI,CAAC,SAAS,CAAC,IAAI,EAAE,EAAE,KAAK,CAAC,CAAC;IAC/C,IAAI,CAAC,CAAC,MAAM,KAAK,CAAC,CAAC,MAAM,EAAE,CAAC;QAC1B,OAAO,KAAK,CAAC;IACf,CAAC;IACD,OAAO,eAAe,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC;AAC/B,CAAC;AAED,MAAM,UAAU,wBAAwB,CAAC,KAKxC;IACC,qBAAqB,CAAC,KAAK,CAAC,UAAU,CAAC,CAAC;IACxC,iBAAiB,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC;IAEhC,MAAM,SAAS,GAAG,MAAM,CACtB,KAAK,CAAC,SAAS,IAAI,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,GAAG,EAAE,GAAG,IAAI,CAAC,CACjD,CAAC;IACF,MAAM,SAAS,GAAG,mBAAmB,CACnC,KAAK,CAAC,MAAM,EACZ,SAAS,EACT,KAAK,CAAC,OAAO,CACd,CAAC;IAEF,OAAO;QACL,CAAC,2BAA2B,CAAC,EAAE,KAAK,CAAC,UAAU;QAC/C,CAAC,yBAAyB,CAAC,EAAE,SAAS;QACtC,CAAC,yBAAyB,CAAC,EAAE,SAAS;KACvC,CAAC;AACJ,CAAC"}

package/dist/client.d.ts

@@ -0,0 +1,38 @@
+import type { Paginated, PaymentAttempt, PaymentOrder } from './types/payment-order.js';
+import type { CreatePaymentOrderInput, ListPaymentOrderAttemptsParams, ListPaymentOrdersParams } from './types/requests.js';
+/** URL base de la Hanix Business API (mismo valor que `merchants_business_api_url`). */
+export declare const HANIX_BUSINESS_API_BASE_URL: "https://api.hanix.io/api/v1";
+export type HanixBusinessClientOptions = {
+    /** UUID del comercio (cabecera business-merchant-id). */
+    merchantId: string;
+    /**
+     * Clave API del comercio (secreto HMAC). No se envía en la solicitud;
+     * solo se usa para firmar. Obtenerla en el panel Hanix / GET merchants/me.
+     */
+    apiKey: string;
+    /** Tiempo máximo por solicitud en ms (default 30000). */
+    timeoutMs?: number;
+    /** Implementación de fetch (útil en tests o entornos sin fetch global). */
+    fetch?: typeof fetch;
+    /** User-Agent personalizado. */
+    userAgent?: string;
+};
+export declare class HanixBusinessClient {
+    private readonly baseUrl;
+    private readonly merchantId;
+    private readonly apiKey;
+    private readonly timeoutMs;
+    private readonly fetchImpl;
+    private readonly userAgent;
+    constructor(options: HanixBusinessClientOptions);
+    /** Crea una orden de pago. */
+    createPaymentOrder(input: CreatePaymentOrderInput): Promise<PaymentOrder>;
+    /** Lista órdenes de pago del comercio autenticado. */
+    listPaymentOrders(params?: ListPaymentOrdersParams): Promise<Paginated<PaymentOrder>>;
+    /** Obtiene una orden de pago por id. */
+    getPaymentOrder(paymentOrderId: string): Promise<PaymentOrder>;
+    /** Lista intentos de pago de una orden. */
+    listPaymentOrderAttempts(paymentOrderId: string, params?: ListPaymentOrderAttemptsParams): Promise<Paginated<PaymentAttempt>>;
+    private request;
+}
+//# sourceMappingURL=client.d.ts.map

package/dist/client.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"client.d.ts","sourceRoot":"","sources":["../src/client.ts"],"names":[],"mappings":"AAMA,OAAO,KAAK,EACV,SAAS,EACT,cAAc,EACd,YAAY,EACb,MAAM,0BAA0B,CAAC;AAClC,OAAO,KAAK,EACV,uBAAuB,EACvB,8BAA8B,EAC9B,uBAAuB,EACxB,MAAM,qBAAqB,CAAC;AAI7B,wFAAwF;AACxF,eAAO,MAAM,2BAA2B,EACtC,6BAAsC,CAAC;AAEzC,MAAM,MAAM,0BAA0B,GAAG;IACvC,yDAAyD;IACzD,UAAU,EAAE,MAAM,CAAC;IACnB;;;OAGG;IACH,MAAM,EAAE,MAAM,CAAC;IACf,yDAAyD;IACzD,SAAS,CAAC,EAAE,MAAM,CAAC;IACnB,2EAA2E;IAC3E,KAAK,CAAC,EAAE,OAAO,KAAK,CAAC;IACrB,gCAAgC;IAChC,SAAS,CAAC,EAAE,MAAM,CAAC;CACpB,CAAC;AAEF,qBAAa,mBAAmB;IAC9B,OAAO,CAAC,QAAQ,CAAC,OAAO,CAAS;IACjC,OAAO,CAAC,QAAQ,CAAC,UAAU,CAAS;IACpC,OAAO,CAAC,QAAQ,CAAC,MAAM,CAAS;IAChC,OAAO,CAAC,QAAQ,CAAC,SAAS,CAAqB;IAC/C,OAAO,CAAC,QAAQ,CAAC,SAAS,CAA2B;IACrD,OAAO,CAAC,QAAQ,CAAC,SAAS,CAAqB;gBAEnC,OAAO,EAAE,0BAA0B;IAY/C,8BAA8B;IAC9B,kBAAkB,CAChB,KAAK,EAAE,uBAAuB,GAC7B,OAAO,CAAC,YAAY,CAAC;IAOxB,sDAAsD;IACtD,iBAAiB,CACf,MAAM,GAAE,uBAA4B,GACnC,OAAO,CAAC,SAAS,CAAC,YAAY,CAAC,CAAC;IAQnC,wCAAwC;IACxC,eAAe,CAAC,cAAc,EAAE,MAAM,GAAG,OAAO,CAAC,YAAY,CAAC;IAO9D,2CAA2C;IAC3C,wBAAwB,CACtB,cAAc,EAAE,MAAM,EACtB,MAAM,GAAE,8BAAmC,GAC1C,OAAO,CAAC,SAAS,CAAC,cAAc,CAAC,CAAC;IAQrC,OAAO,CAAC,OAAO;CAgChB"}

package/dist/client.js

@@ -0,0 +1,69 @@
+import { assertValidApiKey, assertValidMerchantId, } from './auth/hmac.js';
+import { signedRequest } from './http/request.js';
+import { stableStringify } from './json/stable-stringify.js';
+const PAYMENT_ORDERS_PATH = '/business/payment-orders';
+/** URL base de la Hanix Business API (mismo valor que `merchants_business_api_url`). */
+export const HANIX_BUSINESS_API_BASE_URL = 'https://api.hanix.io/api/v1';
+export class HanixBusinessClient {
+    baseUrl;
+    merchantId;
+    apiKey;
+    timeoutMs;
+    fetchImpl;
+    userAgent;
+    constructor(options) {
+        this.baseUrl = HANIX_BUSINESS_API_BASE_URL;
+        this.merchantId = options.merchantId.trim();
+        this.apiKey = options.apiKey;
+        this.timeoutMs = options.timeoutMs;
+        this.fetchImpl = options.fetch;
+        this.userAgent = options.userAgent;
+        assertValidMerchantId(this.merchantId);
+        assertValidApiKey(this.apiKey);
+    }
+    /** Crea una orden de pago. */
+    createPaymentOrder(input) {
+        const rawBody = stableStringify(input);
+        return this.request('POST', PAYMENT_ORDERS_PATH, {
+            body: rawBody,
+        });
+    }
+    /** Lista órdenes de pago del comercio autenticado. */
+    listPaymentOrders(params = {}) {
+        return this.request('GET', PAYMENT_ORDERS_PATH, { query: params });
+    }
+    /** Obtiene una orden de pago por id. */
+    getPaymentOrder(paymentOrderId) {
+        return this.request('GET', `${PAYMENT_ORDERS_PATH}/${encodeURIComponent(paymentOrderId)}`);
+    }
+    /** Lista intentos de pago de una orden. */
+    listPaymentOrderAttempts(paymentOrderId, params = {}) {
+        return this.request('GET', `${PAYMENT_ORDERS_PATH}/${encodeURIComponent(paymentOrderId)}/attempts`, { query: params });
+    }
+    request(method, path, extra) {
+        const requestOptions = {
+            baseUrl: this.baseUrl,
+            merchantId: this.merchantId,
+            apiKey: this.apiKey,
+            method,
+            path,
+        };
+        if (extra?.body !== undefined) {
+            requestOptions.body = extra.body;
+        }
+        if (extra?.query !== undefined) {
+            requestOptions.query = extra.query;
+        }
+        if (this.timeoutMs !== undefined) {
+            requestOptions.timeoutMs = this.timeoutMs;
+        }
+        if (this.fetchImpl !== undefined) {
+            requestOptions.fetchImpl = this.fetchImpl;
+        }
+        if (this.userAgent !== undefined) {
+            requestOptions.userAgent = this.userAgent;
+        }
+        return signedRequest(requestOptions);
+    }
+}
+//# sourceMappingURL=client.js.map

package/dist/client.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"client.js","sourceRoot":"","sources":["../src/client.ts"],"names":[],"mappings":"AAAA,OAAO,EACL,iBAAiB,EACjB,qBAAqB,GACtB,MAAM,gBAAgB,CAAC;AACxB,OAAO,EAAE,aAAa,EAAE,MAAM,mBAAmB,CAAC;AAClD,OAAO,EAAE,eAAe,EAAE,MAAM,4BAA4B,CAAC;AAY7D,MAAM,mBAAmB,GAAG,0BAA0B,CAAC;AAEvD,wFAAwF;AACxF,MAAM,CAAC,MAAM,2BAA2B,GACtC,6BAAsC,CAAC;AAkBzC,MAAM,OAAO,mBAAmB;IACb,OAAO,CAAS;IAChB,UAAU,CAAS;IACnB,MAAM,CAAS;IACf,SAAS,CAAqB;IAC9B,SAAS,CAA2B;IACpC,SAAS,CAAqB;IAE/C,YAAY,OAAmC;QAC7C,IAAI,CAAC,OAAO,GAAG,2BAA2B,CAAC;QAC3C,IAAI,CAAC,UAAU,GAAG,OAAO,CAAC,UAAU,CAAC,IAAI,EAAE,CAAC;QAC5C,IAAI,CAAC,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC;QAC7B,IAAI,CAAC,SAAS,GAAG,OAAO,CAAC,SAAS,CAAC;QACnC,IAAI,CAAC,SAAS,GAAG,OAAO,CAAC,KAAK,CAAC;QAC/B,IAAI,CAAC,SAAS,GAAG,OAAO,CAAC,SAAS,CAAC;QAEnC,qBAAqB,CAAC,IAAI,CAAC,UAAU,CAAC,CAAC;QACvC,iBAAiB,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;IACjC,CAAC;IAED,8BAA8B;IAC9B,kBAAkB,CAChB,KAA8B;QAE9B,MAAM,OAAO,GAAG,eAAe,CAAC,KAAK,CAAC,CAAC;QACvC,OAAO,IAAI,CAAC,OAAO,CAAe,MAAM,EAAE,mBAAmB,EAAE;YAC7D,IAAI,EAAE,OAAO;SACd,CAAC,CAAC;IACL,CAAC;IAED,sDAAsD;IACtD,iBAAiB,CACf,SAAkC,EAAE;QAEpC,OAAO,IAAI,CAAC,OAAO,CACjB,KAAK,EACL,mBAAmB,EACnB,EAAE,KAAK,EAAE,MAAqD,EAAE,CACjE,CAAC;IACJ,CAAC;IAED,wCAAwC;IACxC,eAAe,CAAC,cAAsB;QACpC,OAAO,IAAI,CAAC,OAAO,CACjB,KAAK,EACL,GAAG,mBAAmB,IAAI,kBAAkB,CAAC,cAAc,CAAC,EAAE,CAC/D,CAAC;IACJ,CAAC;IAED,2CAA2C;IAC3C,wBAAwB,CACtB,cAAsB,EACtB,SAAyC,EAAE;QAE3C,OAAO,IAAI,CAAC,OAAO,CACjB,KAAK,EACL,GAAG,mBAAmB,IAAI,kBAAkB,CAAC,cAAc,CAAC,WAAW,EACvE,EAAE,KAAK,EAAE,MAAqD,EAAE,CACjE,CAAC;IACJ,CAAC;IAEO,OAAO,CACb,MAAsB,EACtB,IAAY,EACZ,KAGC;QAED,MAAM,cAAc,GAA2C;YAC7D,OAAO,EAAE,IAAI,CAAC,OAAO;YACrB,UAAU,EAAE,IAAI,CAAC,UAAU;YAC3B,MAAM,EAAE,IAAI,CAAC,MAAM;YACnB,MAAM;YACN,IAAI;SACL,CAAC;QACF,IAAI,KAAK,EAAE,IAAI,KAAK,SAAS,EAAE,CAAC;YAC9B,cAAc,CAAC,IAAI,GAAG,KAAK,CAAC,IAAI,CAAC;QACnC,CAAC;QACD,IAAI,KAAK,EAAE,KAAK,KAAK,SAAS,EAAE,CAAC;YAC/B,cAAc,CAAC,KAAK,GAAG,KAAK,CAAC,KAAK,CAAC;QACrC,CAAC;QACD,IAAI,IAAI,CAAC,SAAS,KAAK,SAAS,EAAE,CAAC;YACjC,cAAc,CAAC,SAAS,GAAG,IAAI,CAAC,SAAS,CAAC;QAC5C,CAAC;QACD,IAAI,IAAI,CAAC,SAAS,KAAK,SAAS,EAAE,CAAC;YACjC,cAAc,CAAC,SAAS,GAAG,IAAI,CAAC,SAAS,CAAC;QAC5C,CAAC;QACD,IAAI,IAAI,CAAC,SAAS,KAAK,SAAS,EAAE,CAAC;YACjC,cAAc,CAAC,SAAS,GAAG,IAAI,CAAC,SAAS,CAAC;QAC5C,CAAC;QACD,OAAO,aAAa,CAAI,cAAc,CAAC,CAAC;IAC1C,CAAC;CACF"}

package/dist/errors.d.ts

@@ -0,0 +1,17 @@
+export type HanixBusinessApiErrorBody = {
+    message?: string;
+    statusCode?: number;
+};
+export declare class HanixBusinessError extends Error {
+    readonly status: number;
+    readonly body: HanixBusinessApiErrorBody | undefined;
+    constructor(message: string, status: number, body?: HanixBusinessApiErrorBody);
+}
+export declare class HanixBusinessConfigError extends Error {
+    constructor(message: string);
+}
+export declare class HanixBusinessNetworkError extends Error {
+    readonly cause: unknown;
+    constructor(message: string, cause: unknown);
+}
+//# sourceMappingURL=errors.d.ts.map

package/dist/errors.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"errors.d.ts","sourceRoot":"","sources":["../src/errors.ts"],"names":[],"mappings":"AAAA,MAAM,MAAM,yBAAyB,GAAG;IACtC,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,UAAU,CAAC,EAAE,MAAM,CAAC;CACrB,CAAC;AAEF,qBAAa,kBAAmB,SAAQ,KAAK;IAC3C,QAAQ,CAAC,MAAM,EAAE,MAAM,CAAC;IACxB,QAAQ,CAAC,IAAI,EAAE,yBAAyB,GAAG,SAAS,CAAC;gBAGnD,OAAO,EAAE,MAAM,EACf,MAAM,EAAE,MAAM,EACd,IAAI,CAAC,EAAE,yBAAyB;CAOnC;AAED,qBAAa,wBAAyB,SAAQ,KAAK;gBACrC,OAAO,EAAE,MAAM;CAI5B;AAED,qBAAa,yBAA0B,SAAQ,KAAK;IAClD,QAAQ,CAAC,KAAK,EAAE,OAAO,CAAC;gBAEZ,OAAO,EAAE,MAAM,EAAE,KAAK,EAAE,OAAO;CAK5C"}

package/dist/errors.js

@@ -0,0 +1,25 @@
+export class HanixBusinessError extends Error {
+    status;
+    body;
+    constructor(message, status, body) {
+        super(message);
+        this.name = 'HanixBusinessError';
+        this.status = status;
+        this.body = body;
+    }
+}
+export class HanixBusinessConfigError extends Error {
+    constructor(message) {
+        super(message);
+        this.name = 'HanixBusinessConfigError';
+    }
+}
+export class HanixBusinessNetworkError extends Error {
+    cause;
+    constructor(message, cause) {
+        super(message);
+        this.name = 'HanixBusinessNetworkError';
+        this.cause = cause;
+    }
+}
+//# sourceMappingURL=errors.js.map

package/dist/errors.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"errors.js","sourceRoot":"","sources":["../src/errors.ts"],"names":[],"mappings":"AAKA,MAAM,OAAO,kBAAmB,SAAQ,KAAK;IAClC,MAAM,CAAS;IACf,IAAI,CAAwC;IAErD,YACE,OAAe,EACf,MAAc,EACd,IAAgC;QAEhC,KAAK,CAAC,OAAO,CAAC,CAAC;QACf,IAAI,CAAC,IAAI,GAAG,oBAAoB,CAAC;QACjC,IAAI,CAAC,MAAM,GAAG,MAAM,CAAC;QACrB,IAAI,CAAC,IAAI,GAAG,IAAI,CAAC;IACnB,CAAC;CACF;AAED,MAAM,OAAO,wBAAyB,SAAQ,KAAK;IACjD,YAAY,OAAe;QACzB,KAAK,CAAC,OAAO,CAAC,CAAC;QACf,IAAI,CAAC,IAAI,GAAG,0BAA0B,CAAC;IACzC,CAAC;CACF;AAED,MAAM,OAAO,yBAA0B,SAAQ,KAAK;IACzC,KAAK,CAAU;IAExB,YAAY,OAAe,EAAE,KAAc;QACzC,KAAK,CAAC,OAAO,CAAC,CAAC;QACf,IAAI,CAAC,IAAI,GAAG,2BAA2B,CAAC;QACxC,IAAI,CAAC,KAAK,GAAG,KAAK,CAAC;IACrB,CAAC;CACF"}

package/dist/http/request.d.ts

@@ -0,0 +1,14 @@
+export type SignedRequestOptions = {
+    baseUrl: string;
+    merchantId: string;
+    apiKey: string;
+    method: 'GET' | 'POST';
+    path: string;
+    query?: Record<string, string | number | undefined>;
+    body?: string;
+    timeoutMs?: number;
+    fetchImpl?: typeof fetch;
+    userAgent?: string;
+};
+export declare function signedRequest<T>(options: SignedRequestOptions): Promise<T>;
+//# sourceMappingURL=request.d.ts.map

package/dist/http/request.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"request.d.ts","sourceRoot":"","sources":["../../src/http/request.ts"],"names":[],"mappings":"AAUA,MAAM,MAAM,oBAAoB,GAAG;IACjC,OAAO,EAAE,MAAM,CAAC;IAChB,UAAU,EAAE,MAAM,CAAC;IACnB,MAAM,EAAE,MAAM,CAAC;IACf,MAAM,EAAE,KAAK,GAAG,MAAM,CAAC;IACvB,IAAI,EAAE,MAAM,CAAC;IACb,KAAK,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,GAAG,MAAM,GAAG,SAAS,CAAC,CAAC;IACpD,IAAI,CAAC,EAAE,MAAM,CAAC;IACd,SAAS,CAAC,EAAE,MAAM,CAAC;IACnB,SAAS,CAAC,EAAE,OAAO,KAAK,CAAC;IACzB,SAAS,CAAC,EAAE,MAAM,CAAC;CACpB,CAAC;AAEF,wBAAsB,aAAa,CAAC,CAAC,EAAE,OAAO,EAAE,oBAAoB,GAAG,OAAO,CAAC,CAAC,CAAC,CAuEhF"}

package/dist/http/request.js

@@ -0,0 +1,87 @@
+import { buildBusinessAuthHeaders } from '../auth/hmac.js';
+import { HanixBusinessError, HanixBusinessNetworkError, } from '../errors.js';
+const DEFAULT_TIMEOUT_MS = 30_000;
+const DEFAULT_USER_AGENT = '@hanix.io/business';
+export async function signedRequest(options) {
+    const fetchFn = options.fetchImpl ?? globalThis.fetch;
+    if (typeof fetchFn !== 'function') {
+        throw new Error('fetch no está disponible; pase fetchImpl en Node < 18');
+    }
+    const rawBody = options.body ?? '';
+    const url = buildUrl(options.baseUrl, options.path, options.query);
+    const authHeaders = buildBusinessAuthHeaders({
+        merchantId: options.merchantId,
+        apiKey: options.apiKey,
+        rawBody,
+    });
+    const headers = {
+        Accept: 'application/json',
+        'User-Agent': options.userAgent ?? DEFAULT_USER_AGENT,
+        ...authHeaders,
+    };
+    if (rawBody.length > 0) {
+        headers['Content-Type'] = 'application/json';
+    }
+    const controller = new AbortController();
+    const timeoutMs = options.timeoutMs ?? DEFAULT_TIMEOUT_MS;
+    const timer = setTimeout(() => controller.abort(), timeoutMs);
+    try {
+        const init = {
+            method: options.method,
+            headers,
+            signal: controller.signal,
+        };
+        if (rawBody.length > 0) {
+            init.body = rawBody;
+        }
+        const response = await fetchFn(url, init);
+        const text = await response.text();
+        const parsed = parseJson(text);
+        if (!response.ok) {
+            const body = parsed && typeof parsed === 'object'
+                ? parsed
+                : undefined;
+            const message = body?.message ??
+                `Hanix Business API respondió ${response.status}`;
+            throw new HanixBusinessError(message, response.status, body);
+        }
+        return parsed;
+    }
+    catch (error) {
+        if (error instanceof HanixBusinessError) {
+            throw error;
+        }
+        if (error instanceof Error && error.name === 'AbortError') {
+            throw new HanixBusinessNetworkError(`La solicitud excedió el tiempo de espera (${timeoutMs} ms)`, error);
+        }
+        throw new HanixBusinessNetworkError('Error de red al contactar Hanix Business API', error);
+    }
+    finally {
+        clearTimeout(timer);
+    }
+}
+function buildUrl(baseUrl, path, query) {
+    const base = baseUrl.replace(/\/+$/, '');
+    const normalizedPath = path.startsWith('/') ? path : `/${path}`;
+    const url = new URL(`${base}${normalizedPath}`);
+    if (query) {
+        for (const [key, value] of Object.entries(query)) {
+            if (value !== undefined && value !== '') {
+                url.searchParams.set(key, String(value));
+            }
+        }
+    }
+    return url.toString();
+}
+function parseJson(text) {
+    if (!text.trim()) {
+        return null;
+    }
+    try {
+        return JSON.parse(text);
+    }
+    catch {
+        return text;
+    }
+}
+//# sourceMappingURL=request.js.map

package/dist/http/request.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"request.js","sourceRoot":"","sources":["../../src/http/request.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,wBAAwB,EAAE,MAAM,iBAAiB,CAAC;AAC3D,OAAO,EACL,kBAAkB,EAClB,yBAAyB,GAE1B,MAAM,cAAc,CAAC;AAEtB,MAAM,kBAAkB,GAAG,MAAM,CAAC;AAClC,MAAM,kBAAkB,GAAG,oBAAoB,CAAC;AAehD,MAAM,CAAC,KAAK,UAAU,aAAa,CAAI,OAA6B;IAClE,MAAM,OAAO,GAAG,OAAO,CAAC,SAAS,IAAI,UAAU,CAAC,KAAK,CAAC;IACtD,IAAI,OAAO,OAAO,KAAK,UAAU,EAAE,CAAC;QAClC,MAAM,IAAI,KAAK,CAAC,uDAAuD,CAAC,CAAC;IAC3E,CAAC;IAED,MAAM,OAAO,GAAG,OAAO,CAAC,IAAI,IAAI,EAAE,CAAC;IACnC,MAAM,GAAG,GAAG,QAAQ,CAAC,OAAO,CAAC,OAAO,EAAE,OAAO,CAAC,IAAI,EAAE,OAAO,CAAC,KAAK,CAAC,CAAC;IACnE,MAAM,WAAW,GAAG,wBAAwB,CAAC;QAC3C,UAAU,EAAE,OAAO,CAAC,UAAU;QAC9B,MAAM,EAAE,OAAO,CAAC,MAAM;QACtB,OAAO;KACR,CAAC,CAAC;IAEH,MAAM,OAAO,GAA2B;QACtC,MAAM,EAAE,kBAAkB;QAC1B,YAAY,EAAE,OAAO,CAAC,SAAS,IAAI,kBAAkB;QACrD,GAAG,WAAW;KACf,CAAC;IAEF,IAAI,OAAO,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;QACvB,OAAO,CAAC,cAAc,CAAC,GAAG,kBAAkB,CAAC;IAC/C,CAAC;IAED,MAAM,UAAU,GAAG,IAAI,eAAe,EAAE,CAAC;IACzC,MAAM,SAAS,GAAG,OAAO,CAAC,SAAS,IAAI,kBAAkB,CAAC;IAC1D,MAAM,KAAK,GAAG,UAAU,CAAC,GAAG,EAAE,CAAC,UAAU,CAAC,KAAK,EAAE,EAAE,SAAS,CAAC,CAAC;IAE9D,IAAI,CAAC;QACH,MAAM,IAAI,GAAgB;YACxB,MAAM,EAAE,OAAO,CAAC,MAAM;YACtB,OAAO;YACP,MAAM,EAAE,UAAU,CAAC,MAAM;SAC1B,CAAC;QACF,IAAI,OAAO,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;YACvB,IAAI,CAAC,IAAI,GAAG,OAAO,CAAC;QACtB,CAAC;QACD,MAAM,QAAQ,GAAG,MAAM,OAAO,CAAC,GAAG,EAAE,IAAI,CAAC,CAAC;QAE1C,MAAM,IAAI,GAAG,MAAM,QAAQ,CAAC,IAAI,EAAE,CAAC;QACnC,MAAM,MAAM,GAAG,SAAS,CAAC,IAAI,CAAC,CAAC;QAE/B,IAAI,CAAC,QAAQ,CAAC,EAAE,EAAE,CAAC;YACjB,MAAM,IAAI,GACR,MAAM,IAAI,OAAO,MAAM,KAAK,QAAQ;gBAClC,CAAC,CAAE,MAAoC;gBACvC,CAAC,CAAC,SAAS,CAAC;YAChB,MAAM,OAAO,GACX,IAAI,EAAE,OAAO;gBACb,gCAAgC,QAAQ,CAAC,MAAM,EAAE,CAAC;YACpD,MAAM,IAAI,kBAAkB,CAAC,OAAO,EAAE,QAAQ,CAAC,MAAM,EAAE,IAAI,CAAC,CAAC;QAC/D,CAAC;QAED,OAAO,MAAW,CAAC;IACrB,CAAC;IAAC,OAAO,KAAK,EAAE,CAAC;QACf,IAAI,KAAK,YAAY,kBAAkB,EAAE,CAAC;YACxC,MAAM,KAAK,CAAC;QACd,CAAC;QACD,IAAI,KAAK,YAAY,KAAK,IAAI,KAAK,CAAC,IAAI,KAAK,YAAY,EAAE,CAAC;YAC1D,MAAM,IAAI,yBAAyB,CACjC,6CAA6C,SAAS,MAAM,EAC5D,KAAK,CACN,CAAC;QACJ,CAAC;QACD,MAAM,IAAI,yBAAyB,CACjC,8CAA8C,EAC9C,KAAK,CACN,CAAC;IACJ,CAAC;YAAS,CAAC;QACT,YAAY,CAAC,KAAK,CAAC,CAAC;IACtB,CAAC;AACH,CAAC;AAED,SAAS,QAAQ,CACf,OAAe,EACf,IAAY,EACZ,KAAmD;IAEnD,MAAM,IAAI,GAAG,OAAO,CAAC,OAAO,CAAC,MAAM,EAAE,EAAE,CAAC,CAAC;IACzC,MAAM,cAAc,GAAG,IAAI,CAAC,UAAU,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,IAAI,IAAI,EAAE,CAAC;IAChE,MAAM,GAAG,GAAG,IAAI,GAAG,CAAC,GAAG,IAAI,GAAG,cAAc,EAAE,CAAC,CAAC;IAEhD,IAAI,KAAK,EAAE,CAAC;QACV,KAAK,MAAM,CAAC,GAAG,EAAE,KAAK,CAAC,IAAI,MAAM,CAAC,OAAO,CAAC,KAAK,CAAC,EAAE,CAAC;YACjD,IAAI,KAAK,KAAK,SAAS,IAAI,KAAK,KAAK,EAAE,EAAE,CAAC;gBACxC,GAAG,CAAC,YAAY,CAAC,GAAG,CAAC,GAAG,EAAE,MAAM,CAAC,KAAK,CAAC,CAAC,CAAC;YAC3C,CAAC;QACH,CAAC;IACH,CAAC;IAED,OAAO,GAAG,CAAC,QAAQ,EAAE,CAAC;AACxB,CAAC;AAED,SAAS,SAAS,CAAC,IAAY;IAC7B,IAAI,CAAC,IAAI,CAAC,IAAI,EAAE,EAAE,CAAC;QACjB,OAAO,IAAI,CAAC;IACd,CAAC;IACD,IAAI,CAAC;QACH,OAAO,IAAI,CAAC,KAAK,CAAC,IAAI,CAAY,CAAC;IACrC,CAAC;IAAC,MAAM,CAAC;QACP,OAAO,IAAI,CAAC;IACd,CAAC;AACH,CAAC"}

package/dist/index.d.ts

@@ -0,0 +1,7 @@
+export { HanixBusinessClient, HANIX_BUSINESS_API_BASE_URL, type HanixBusinessClientOptions, } from './client.js';
+export { BUSINESS_MERCHANT_ID_HEADER, BUSINESS_SIGNATURE_HEADER, BUSINESS_TIMESTAMP_HEADER, buildBusinessAuthHeaders, signBusinessPayload, verifyBusinessPayload, } from './auth/hmac.js';
+export { stableStringify } from './json/stable-stringify.js';
+export { HanixBusinessConfigError, HanixBusinessError, HanixBusinessNetworkError, type HanixBusinessApiErrorBody, } from './errors.js';
+export type { CreatePaymentOrderInput, ListPaymentOrderAttemptsParams, ListPaymentOrdersParams, } from './types/requests.js';
+export type { Paginated, PaymentAttempt, PaymentAttemptStatus, PaymentOrder, PaymentOrderStatus, } from './types/payment-order.js';
+//# sourceMappingURL=index.d.ts.map

package/dist/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AAAA,OAAO,EACL,mBAAmB,EACnB,2BAA2B,EAC3B,KAAK,0BAA0B,GAChC,MAAM,aAAa,CAAC;AACrB,OAAO,EACL,2BAA2B,EAC3B,yBAAyB,EACzB,yBAAyB,EACzB,wBAAwB,EACxB,mBAAmB,EACnB,qBAAqB,GACtB,MAAM,gBAAgB,CAAC;AACxB,OAAO,EAAE,eAAe,EAAE,MAAM,4BAA4B,CAAC;AAC7D,OAAO,EACL,wBAAwB,EACxB,kBAAkB,EAClB,yBAAyB,EACzB,KAAK,yBAAyB,GAC/B,MAAM,aAAa,CAAC;AACrB,YAAY,EACV,uBAAuB,EACvB,8BAA8B,EAC9B,uBAAuB,GACxB,MAAM,qBAAqB,CAAC;AAC7B,YAAY,EACV,SAAS,EACT,cAAc,EACd,oBAAoB,EACpB,YAAY,EACZ,kBAAkB,GACnB,MAAM,0BAA0B,CAAC"}

package/dist/index.js

@@ -0,0 +1,5 @@
+export { HanixBusinessClient, HANIX_BUSINESS_API_BASE_URL, } from './client.js';
+export { BUSINESS_MERCHANT_ID_HEADER, BUSINESS_SIGNATURE_HEADER, BUSINESS_TIMESTAMP_HEADER, buildBusinessAuthHeaders, signBusinessPayload, verifyBusinessPayload, } from './auth/hmac.js';
+export { stableStringify } from './json/stable-stringify.js';
+export { HanixBusinessConfigError, HanixBusinessError, HanixBusinessNetworkError, } from './errors.js';
+//# sourceMappingURL=index.js.map

package/dist/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AAAA,OAAO,EACL,mBAAmB,EACnB,2BAA2B,GAE5B,MAAM,aAAa,CAAC;AACrB,OAAO,EACL,2BAA2B,EAC3B,yBAAyB,EACzB,yBAAyB,EACzB,wBAAwB,EACxB,mBAAmB,EACnB,qBAAqB,GACtB,MAAM,gBAAgB,CAAC;AACxB,OAAO,EAAE,eAAe,EAAE,MAAM,4BAA4B,CAAC;AAC7D,OAAO,EACL,wBAAwB,EACxB,kBAAkB,EAClB,yBAAyB,GAE1B,MAAM,aAAa,CAAC"}

package/dist/json/stable-stringify.d.ts

@@ -0,0 +1,6 @@
+/**
+ * Serializa JSON con claves ordenadas de forma estable para que la firma HMAC
+ * coincida con el cuerpo enviado en la solicitud.
+ */
+export declare function stableStringify(value: unknown): string;
+//# sourceMappingURL=stable-stringify.d.ts.map

package/dist/json/stable-stringify.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"stable-stringify.d.ts","sourceRoot":"","sources":["../../src/json/stable-stringify.ts"],"names":[],"mappings":"AAAA;;;GAGG;AACH,wBAAgB,eAAe,CAAC,KAAK,EAAE,OAAO,GAAG,MAAM,CAEtD"}

package/dist/json/stable-stringify.js

@@ -0,0 +1,22 @@
+/**
+ * Serializa JSON con claves ordenadas de forma estable para que la firma HMAC
+ * coincida con el cuerpo enviado en la solicitud.
+ */
+export function stableStringify(value) {
+    return JSON.stringify(sortValue(value));
+}
+function sortValue(value) {
+    if (value === null || typeof value !== 'object') {
+        return value;
+    }
+    if (Array.isArray(value)) {
+        return value.map(sortValue);
+    }
+    const record = value;
+    const sorted = {};
+    for (const key of Object.keys(record).sort()) {
+        sorted[key] = sortValue(record[key]);
+    }
+    return sorted;
+}
+//# sourceMappingURL=stable-stringify.js.map

package/dist/json/stable-stringify.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"stable-stringify.js","sourceRoot":"","sources":["../../src/json/stable-stringify.ts"],"names":[],"mappings":"AAAA;;;GAGG;AACH,MAAM,UAAU,eAAe,CAAC,KAAc;IAC5C,OAAO,IAAI,CAAC,SAAS,CAAC,SAAS,CAAC,KAAK,CAAC,CAAC,CAAC;AAC1C,CAAC;AAED,SAAS,SAAS,CAAC,KAAc;IAC/B,IAAI,KAAK,KAAK,IAAI,IAAI,OAAO,KAAK,KAAK,QAAQ,EAAE,CAAC;QAChD,OAAO,KAAK,CAAC;IACf,CAAC;IACD,IAAI,KAAK,CAAC,OAAO,CAAC,KAAK,CAAC,EAAE,CAAC;QACzB,OAAO,KAAK,CAAC,GAAG,CAAC,SAAS,CAAC,CAAC;IAC9B,CAAC;IACD,MAAM,MAAM,GAAG,KAAgC,CAAC;IAChD,MAAM,MAAM,GAA4B,EAAE,CAAC;IAC3C,KAAK,MAAM,GAAG,IAAI,MAAM,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC,IAAI,EAAE,EAAE,CAAC;QAC7C,MAAM,CAAC,GAAG,CAAC,GAAG,SAAS,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,CAAC;IACvC,CAAC;IACD,OAAO,MAAM,CAAC;AAChB,CAAC"}

package/dist/types/payment-order.d.ts

@@ -0,0 +1,50 @@
+export type PaymentOrderStatus = 'pending' | 'processing' | 'paid' | 'expired' | 'cancelled';
+export type PaymentAttemptStatus = 'initiated' | 'processing' | 'succeeded' | 'failed' | 'expired' | 'abandoned';
+export type PaymentOrder = {
+    id: string;
+    merchant_id: string;
+    merchant_reference: string;
+    public_token: string;
+    status: PaymentOrderStatus;
+    amount_in_cents: string;
+    currency_id: string;
+    country_id: string;
+    description: string | null;
+    customer_email: string | null;
+    success_url: string | null;
+    cancel_url: string | null;
+    expires_at: string | null;
+    paid_attempt_id: string | null;
+    paid_at: string | null;
+    cancelled_at: string | null;
+    metadata: Record<string, unknown> | null;
+    payment_url: string;
+    created_at: string;
+    updated_at: string;
+};
+export type PaymentAttempt = {
+    id: string;
+    payment_order_id: string;
+    merchant_psp_method_id: string;
+    status: PaymentAttemptStatus;
+    amount_in_cents: string;
+    psp_reference: string;
+    psp_transaction_id: string | null;
+    psp_status: string | null;
+    failure_code: string | null;
+    failure_message: string | null;
+    initiated_at: string;
+    completed_at: string | null;
+    created_at: string;
+    updated_at: string;
+};
+export type Paginated<T> = {
+    items: T[];
+    pagination: {
+        page: number;
+        limit: number;
+        total: number;
+        total_pages: number;
+    };
+};
+//# sourceMappingURL=payment-order.d.ts.map

package/dist/types/payment-order.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"payment-order.d.ts","sourceRoot":"","sources":["../../src/types/payment-order.ts"],"names":[],"mappings":"AAAA,MAAM,MAAM,kBAAkB,GAC1B,SAAS,GACT,YAAY,GACZ,MAAM,GACN,SAAS,GACT,WAAW,CAAC;AAEhB,MAAM,MAAM,oBAAoB,GAC5B,WAAW,GACX,YAAY,GACZ,WAAW,GACX,QAAQ,GACR,SAAS,GACT,WAAW,CAAC;AAEhB,MAAM,MAAM,YAAY,GAAG;IACzB,EAAE,EAAE,MAAM,CAAC;IACX,WAAW,EAAE,MAAM,CAAC;IACpB,kBAAkB,EAAE,MAAM,CAAC;IAC3B,YAAY,EAAE,MAAM,CAAC;IACrB,MAAM,EAAE,kBAAkB,CAAC;IAC3B,eAAe,EAAE,MAAM,CAAC;IACxB,WAAW,EAAE,MAAM,CAAC;IACpB,UAAU,EAAE,MAAM,CAAC;IACnB,WAAW,EAAE,MAAM,GAAG,IAAI,CAAC;IAC3B,cAAc,EAAE,MAAM,GAAG,IAAI,CAAC;IAC9B,WAAW,EAAE,MAAM,GAAG,IAAI,CAAC;IAC3B,UAAU,EAAE,MAAM,GAAG,IAAI,CAAC;IAC1B,UAAU,EAAE,MAAM,GAAG,IAAI,CAAC;IAC1B,eAAe,EAAE,MAAM,GAAG,IAAI,CAAC;IAC/B,OAAO,EAAE,MAAM,GAAG,IAAI,CAAC;IACvB,YAAY,EAAE,MAAM,GAAG,IAAI,CAAC;IAC5B,QAAQ,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,GAAG,IAAI,CAAC;IACzC,WAAW,EAAE,MAAM,CAAC;IACpB,UAAU,EAAE,MAAM,CAAC;IACnB,UAAU,EAAE,MAAM,CAAC;CACpB,CAAC;AAEF,MAAM,MAAM,cAAc,GAAG;IAC3B,EAAE,EAAE,MAAM,CAAC;IACX,gBAAgB,EAAE,MAAM,CAAC;IACzB,sBAAsB,EAAE,MAAM,CAAC;IAC/B,MAAM,EAAE,oBAAoB,CAAC;IAC7B,eAAe,EAAE,MAAM,CAAC;IACxB,aAAa,EAAE,MAAM,CAAC;IACtB,kBAAkB,EAAE,MAAM,GAAG,IAAI,CAAC;IAClC,UAAU,EAAE,MAAM,GAAG,IAAI,CAAC;IAC1B,YAAY,EAAE,MAAM,GAAG,IAAI,CAAC;IAC5B,eAAe,EAAE,MAAM,GAAG,IAAI,CAAC;IAC/B,YAAY,EAAE,MAAM,CAAC;IACrB,YAAY,EAAE,MAAM,GAAG,IAAI,CAAC;IAC5B,UAAU,EAAE,MAAM,CAAC;IACnB,UAAU,EAAE,MAAM,CAAC;CACpB,CAAC;AAEF,MAAM,MAAM,SAAS,CAAC,CAAC,IAAI;IACzB,KAAK,EAAE,CAAC,EAAE,CAAC;IACX,UAAU,EAAE;QACV,IAAI,EAAE,MAAM,CAAC;QACb,KAAK,EAAE,MAAM,CAAC;QACd,KAAK,EAAE,MAAM,CAAC;QACd,WAAW,EAAE,MAAM,CAAC;KACrB,CAAC;CACH,CAAC"}

package/dist/types/payment-order.js

@@ -0,0 +1,2 @@
+export {};
+//# sourceMappingURL=payment-order.js.map

package/dist/types/payment-order.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"payment-order.js","sourceRoot":"","sources":["../../src/types/payment-order.ts"],"names":[],"mappings":""}

package/dist/types/requests.d.ts

@@ -0,0 +1,33 @@
+import type { PaymentAttemptStatus, PaymentOrderStatus } from './payment-order.js';
+export type CreatePaymentOrderInput = {
+    merchant_reference: string;
+    amount_in_cents: number;
+    currency_id: string;
+    country_id: string;
+    description?: string;
+    customer_email?: string;
+    success_url?: string;
+    cancel_url?: string;
+    expires_at?: string;
+    metadata?: Record<string, unknown>;
+};
+export type ListPaymentOrdersParams = {
+    status?: PaymentOrderStatus;
+    merchant_reference?: string;
+    currency_id?: string;
+    country_id?: string;
+    created_from?: string;
+    created_to?: string;
+    expires_from?: string;
+    expires_to?: string;
+    page?: number;
+    limit?: number;
+    sort?: 'created_at_asc' | 'created_at_desc';
+};
+export type ListPaymentOrderAttemptsParams = {
+    status?: PaymentAttemptStatus;
+    page?: number;
+    limit?: number;
+    sort?: 'created_at_asc' | 'created_at_desc';
+};
+//# sourceMappingURL=requests.d.ts.map

package/dist/types/requests.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"requests.d.ts","sourceRoot":"","sources":["../../src/types/requests.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EACV,oBAAoB,EACpB,kBAAkB,EACnB,MAAM,oBAAoB,CAAC;AAE5B,MAAM,MAAM,uBAAuB,GAAG;IACpC,kBAAkB,EAAE,MAAM,CAAC;IAC3B,eAAe,EAAE,MAAM,CAAC;IACxB,WAAW,EAAE,MAAM,CAAC;IACpB,UAAU,EAAE,MAAM,CAAC;IACnB,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,cAAc,CAAC,EAAE,MAAM,CAAC;IACxB,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB,QAAQ,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;CACpC,CAAC;AAEF,MAAM,MAAM,uBAAuB,GAAG;IACpC,MAAM,CAAC,EAAE,kBAAkB,CAAC;IAC5B,kBAAkB,CAAC,EAAE,MAAM,CAAC;IAC5B,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB,YAAY,CAAC,EAAE,MAAM,CAAC;IACtB,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB,YAAY,CAAC,EAAE,MAAM,CAAC;IACtB,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB,IAAI,CAAC,EAAE,MAAM,CAAC;IACd,KAAK,CAAC,EAAE,MAAM,CAAC;IACf,IAAI,CAAC,EAAE,gBAAgB,GAAG,iBAAiB,CAAC;CAC7C,CAAC;AAEF,MAAM,MAAM,8BAA8B,GAAG;IAC3C,MAAM,CAAC,EAAE,oBAAoB,CAAC;IAC9B,IAAI,CAAC,EAAE,MAAM,CAAC;IACd,KAAK,CAAC,EAAE,MAAM,CAAC;IACf,IAAI,CAAC,EAAE,gBAAgB,GAAG,iBAAiB,CAAC;CAC7C,CAAC"}

package/dist/types/requests.js

@@ -0,0 +1,2 @@
+export {};
+//# sourceMappingURL=requests.js.map

package/dist/types/requests.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"requests.js","sourceRoot":"","sources":["../../src/types/requests.ts"],"names":[],"mappings":""}

package/package.json

@@ -0,0 +1,51 @@
+{
+  "name": "@hanix.io/business",
+  "publishConfig": {
+    "access": "public"
+  },
+  "version": "0.1.0",
+  "description": "SDK oficial de Node.js para la Hanix Business API (órdenes de pago con autenticación HMAC)",
+  "license": "MIT",
+  "type": "module",
+  "packageManager": "pnpm@11.1.2",
+  "engines": {
+    "node": ">=22.12.0"
+  },
+  "main": "./dist/index.js",
+  "types": "./dist/index.d.ts",
+  "exports": {
+    ".": {
+      "types": "./dist/index.d.ts",
+      "import": "./dist/index.js",
+      "default": "./dist/index.js"
+    }
+  },
+  "files": [
+    "dist",
+    "README.md",
+    "LICENSE"
+  ],
+  "scripts": {
+    "build": "tsc -p tsconfig.build.json",
+    "test": "tsc -p tsconfig.test.json && node --test .test-dist/tests/*.test.js",
+    "typecheck": "tsc -p tsconfig.json --noEmit",
+    "verify": "pnpm run typecheck && pnpm test && pnpm run build && pnpm audit --audit-level=moderate",
+    "prepublishOnly": "pnpm run verify"
+  },
+  "keywords": [
+    "hanix",
+    "payments",
+    "business-api",
+    "hmac",
+    "sdk"
+  ],
+  "repository": {
+    "type": "git",
+    "url": "https://github.com/hanix/hanix.git",
+    "directory": "sdks/hanix-business"
+  },
+  "devDependencies": {
+    "@types/node": "^22.15.21",
+    "typescript": "^5.8.3"
+  }
+}