@hathbanger/tap-core 1.0.0

package/dist/payment.js

@@ -0,0 +1,89 @@
+import { webcrypto } from "node:crypto";
+import { signPayload } from "./sign.js";
+import { base64url } from "./keys.js";
+import { generateNonce, nowSeconds } from "./nonce.js";
+/**
+ * Builds a PaymentContainerObject for checkout requests.
+ *
+ * In production this would contain an encrypted Visa payment token.
+ * In demo mode it contains a mock token with realistic structure.
+ */
+export async function buildPaymentContainer(keyPair, nonce, payload, cardMetadata) {
+    const unsigned = {
+        nonce,
+        payload,
+        cardMetadata,
+        kid: keyPair.keyId,
+        alg: "ed25519",
+    };
+    const signature = await signPayload(keyPair, unsigned);
+    return { ...unsigned, signature };
+}
+/**
+ * Creates a mock payment token for demo purposes.
+ * Simulates the encrypted token Visa would issue in production.
+ */
+export async function createMockPaymentToken(lastFour, cardholderName, billingAddress, shippingAddress, email) {
+    const raw = JSON.stringify({
+        pan_hash: await hashPan(lastFour),
+        cardholder: cardholderName,
+        billing: billingAddress,
+        shipping: shippingAddress,
+        contact: email,
+        issued_at: Date.now(),
+    });
+    const encoded = new TextEncoder().encode(raw);
+    const token = base64url(encoded.buffer);
+    return {
+        payload: {
+            token,
+            cardholderName,
+            billingAddress,
+            shippingAddress,
+            email,
+        },
+        cardMetadata: {
+            lastFour,
+            paymentAccountReference: generatePar(),
+            brand: "Visa",
+        },
+    };
+}
+export function buildTapPaymentRequest(keyPair, amount, currency, description) {
+    return {
+        payeeKeyId: keyPair.keyId,
+        amount,
+        currency,
+        description,
+        nonce: generateNonce(),
+        expiresAt: nowSeconds() + 300,
+    };
+}
+export async function buildAgentPayeeObject(keyPair, paymentRequest) {
+    const payerKeyId = keyPair.keyId;
+    const timestamp = new Date().toISOString();
+    const nonce = generateNonce();
+    const unsigned = {
+        paymentRequest,
+        payerKeyId,
+        timestamp,
+        nonce,
+        kid: payerKeyId,
+        alg: "ed25519",
+    };
+    const signature = await signPayload(keyPair, unsigned);
+    return { ...unsigned, signature };
+}
+async function hashPan(lastFour) {
+    const encoded = new TextEncoder().encode(`DEMO-CARD-${lastFour}`);
+    const hash = await webcrypto.subtle.digest("SHA-256", encoded);
+    return Buffer.from(hash).toString("hex");
+}
+function generatePar() {
+    const bytes = webcrypto.getRandomValues(new Uint8Array(16));
+    return Array.from(bytes)
+        .map((b) => b.toString(16).padStart(2, "0"))
+        .join("")
+        .toUpperCase();
+}
+//# sourceMappingURL=payment.js.map

package/dist/payment.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"payment.js","sourceRoot":"","sources":["../src/payment.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,SAAS,EAAE,MAAM,aAAa,CAAA;AACvC,OAAO,EAAE,WAAW,EAAE,MAAM,WAAW,CAAA;AACvC,OAAO,EAAE,SAAS,EAAE,MAAM,WAAW,CAAA;AACrC,OAAO,EAAE,aAAa,EAAE,UAAU,EAAE,MAAM,YAAY,CAAA;AAWtD;;;;;GAKG;AACH,MAAM,CAAC,KAAK,UAAU,qBAAqB,CACzC,OAAmB,EACnB,KAAa,EACb,OAAgC,EAChC,YAA0B;IAE1B,MAAM,QAAQ,GAA8C;QAC1D,KAAK;QACL,OAAO;QACP,YAAY;QACZ,GAAG,EAAE,OAAO,CAAC,KAAK;QAClB,GAAG,EAAE,SAAS;KACf,CAAA;IAED,MAAM,SAAS,GAAG,MAAM,WAAW,CAAC,OAAO,EAAE,QAAmC,CAAC,CAAA;IAEjF,OAAO,EAAE,GAAG,QAAQ,EAAE,SAAS,EAAE,CAAA;AACnC,CAAC;AAED;;;GAGG;AACH,MAAM,CAAC,KAAK,UAAU,sBAAsB,CAC1C,QAAgB,EAChB,cAAsB,EACtB,cAAuB,EACvB,eAAwB,EACxB,KAAa;IAEb,MAAM,GAAG,GAAG,IAAI,CAAC,SAAS,CAAC;QACzB,QAAQ,EAAE,MAAM,OAAO,CAAC,QAAQ,CAAC;QACjC,UAAU,EAAE,cAAc;QAC1B,OAAO,EAAE,cAAc;QACvB,QAAQ,EAAE,eAAe;QACzB,OAAO,EAAE,KAAK;QACd,SAAS,EAAE,IAAI,CAAC,GAAG,EAAE;KACtB,CAAC,CAAA;IAEF,MAAM,OAAO,GAAG,IAAI,WAAW,EAAE,CAAC,MAAM,CAAC,GAAG,CAAC,CAAA;IAC7C,MAAM,KAAK,GAAG,SAAS,CAAC,OAAO,CAAC,MAAM,CAAC,CAAA;IAEvC,OAAO;QACL,OAAO,EAAE;YACP,KAAK;YACL,cAAc;YACd,cAAc;YACd,eAAe;YACf,KAAK;SACN;QACD,YAAY,EAAE;YACZ,QAAQ;YACR,uBAAuB,EAAE,WAAW,EAAE;YACtC,KAAK,EAAE,MAAM;SACd;KACF,CAAA;AACH,CAAC;AAED,MAAM,UAAU,sBAAsB,CACpC,OAAmB,EACnB,MAAc,EACd,QAAgB,EAChB,WAAmB;IAEnB,OAAO;QACL,UAAU,EAAE,OAAO,CAAC,KAAK;QACzB,MAAM;QACN,QAAQ;QACR,WAAW;QACX,KAAK,EAAE,aAAa,EAAE;QACtB,SAAS,EAAE,UAAU,EAAE,GAAG,GAAG;KAC9B,CAAA;AACH,CAAC;AAED,MAAM,CAAC,KAAK,UAAU,qBAAqB,CACzC,OAAmB,EACnB,cAAiC;IAEjC,MAAM,UAAU,GAAG,OAAO,CAAC,KAAK,CAAA;IAChC,MAAM,SAAS,GAAG,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE,CAAA;IAC1C,MAAM,KAAK,GAAG,aAAa,EAAE,CAAA;IAE7B,MAAM,QAAQ,GAAwC;QACpD,cAAc;QACd,UAAU;QACV,SAAS;QACT,KAAK;QACL,GAAG,EAAE,UAAU;QACf,GAAG,EAAE,SAAS;KACf,CAAA;IAED,MAAM,SAAS,GAAG,MAAM,WAAW,CAAC,OAAO,EAAE,QAAmC,CAAC,CAAA;IACjF,OAAO,EAAE,GAAG,QAAQ,EAAE,SAAS,EAAE,CAAA;AACnC,CAAC;AAED,KAAK,UAAU,OAAO,CAAC,QAAgB;IACrC,MAAM,OAAO,GAAG,IAAI,WAAW,EAAE,CAAC,MAAM,CAAC,aAAa,QAAQ,EAAE,CAAC,CAAA;IACjE,MAAM,IAAI,GAAG,MAAM,SAAS,CAAC,MAAM,CAAC,MAAM,CAAC,SAAS,EAAE,OAAO,CAAC,CAAA;IAC9D,OAAO,MAAM,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC,QAAQ,CAAC,KAAK,CAAC,CAAA;AAC1C,CAAC;AAED,SAAS,WAAW;IAClB,MAAM,KAAK,GAAG,SAAS,CAAC,eAAe,CAAC,IAAI,UAAU,CAAC,EAAE,CAAC,CAAC,CAAA;IAC3D,OAAO,KAAK,CAAC,IAAI,CAAC,KAAK,CAAC;SACrB,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,QAAQ,CAAC,EAAE,CAAC,CAAC,QAAQ,CAAC,CAAC,EAAE,GAAG,CAAC,CAAC;SAC3C,IAAI,CAAC,EAAE,CAAC;SACR,WAAW,EAAE,CAAA;AAClB,CAAC"}

package/dist/sign.d.ts

@@ -0,0 +1,35 @@
+import type { SignatureInputParams, SignatureTag, TapKeyPair, TapSignedHeaders } from "./types.js";
+/**
+ * RFC 9421 — Signature Base construction.
+ *
+ * Accepts an ordered list of [componentName, componentValue] tuples covering
+ * any mix of derived components (@method, @authority, @path, @target-uri, etc.)
+ * and HTTP header fields (content-type, content-digest, authorization, etc.).
+ *
+ * Each line is "<component-name>": <value>, joined by \n.
+ * The final line is always @signature-params with the serialized Inner List.
+ */
+export declare function buildSignatureBase(components: Array<[string, string]>, params: SignatureInputParams): string;
+/**
+ * Serializes an ordered component name list + SignatureInputParams into the
+ * RFC 9421 Inner List format.
+ * e.g. ("@method" "@authority" "@path");created=1735689600;expires=1735693200;...
+ */
+export declare function buildSignatureInputParams(componentNames: string[], params: SignatureInputParams): string;
+/**
+ * Signs an HTTP request using Ed25519 (RFC 9421).
+ *
+ * Pass an ordered list of [componentName, componentValue] tuples to control
+ * exactly which components are covered. Common derived components: @method,
+ * @authority, @path, @target-uri, @scheme. HTTP fields: content-type,
+ * content-digest, authorization, etc.
+ *
+ * Returns the Signature-Input and Signature header values ready to attach.
+ */
+export declare function signRequest(keyPair: TapKeyPair, components: Array<[string, string]>, tag: SignatureTag): Promise<TapSignedHeaders>;
+/**
+ * Signs an arbitrary payload (for Consumer Recognition Object and Payment Container).
+ * Uses the same key as the request signature, tied via nonce.
+ */
+export declare function signPayload(keyPair: TapKeyPair, payload: Record<string, unknown>): Promise<string>;
+//# sourceMappingURL=sign.d.ts.map

package/dist/sign.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"sign.d.ts","sourceRoot":"","sources":["../src/sign.ts"],"names":[],"mappings":"AAGA,OAAO,KAAK,EAAE,oBAAoB,EAAE,YAAY,EAAE,UAAU,EAAE,gBAAgB,EAAE,MAAM,YAAY,CAAA;AAIlG;;;;;;;;;GASG;AACH,wBAAgB,kBAAkB,CAChC,UAAU,EAAE,KAAK,CAAC,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC,EACnC,MAAM,EAAE,oBAAoB,GAC3B,MAAM,CAUR;AAED;;;;GAIG;AACH,wBAAgB,yBAAyB,CAAC,cAAc,EAAE,MAAM,EAAE,EAAE,MAAM,EAAE,oBAAoB,GAAG,MAAM,CAYxG;AAED;;;;;;;;;GASG;AACH,wBAAsB,WAAW,CAC/B,OAAO,EAAE,UAAU,EACnB,UAAU,EAAE,KAAK,CAAC,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC,EACnC,GAAG,EAAE,YAAY,GAChB,OAAO,CAAC,gBAAgB,CAAC,CAwB3B;AAED;;;GAGG;AACH,wBAAsB,WAAW,CAC/B,OAAO,EAAE,UAAU,EACnB,OAAO,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,GAC/B,OAAO,CAAC,MAAM,CAAC,CAKjB"}

package/dist/sign.js

@@ -0,0 +1,83 @@
+import { webcrypto } from "node:crypto";
+import { base64url } from "./keys.js";
+import { generateNonce, makeTimestamps } from "./nonce.js";
+const subtle = webcrypto.subtle;
+/**
+ * RFC 9421 — Signature Base construction.
+ *
+ * Accepts an ordered list of [componentName, componentValue] tuples covering
+ * any mix of derived components (@method, @authority, @path, @target-uri, etc.)
+ * and HTTP header fields (content-type, content-digest, authorization, etc.).
+ *
+ * Each line is "<component-name>": <value>, joined by \n.
+ * The final line is always @signature-params with the serialized Inner List.
+ */
+export function buildSignatureBase(components, params) {
+    const componentNames = components.map(([name]) => name);
+    const paramsString = buildSignatureInputParams(componentNames, params);
+    const lines = [
+        ...components.map(([name, value]) => `"${name}": ${value}`),
+        `"@signature-params": ${paramsString}`,
+    ];
+    return lines.join("\n");
+}
+/**
+ * Serializes an ordered component name list + SignatureInputParams into the
+ * RFC 9421 Inner List format.
+ * e.g. ("@method" "@authority" "@path");created=1735689600;expires=1735693200;...
+ */
+export function buildSignatureInputParams(componentNames, params) {
+    const components = `(${componentNames.map((n) => `"${n}"`).join(" ")})`;
+    const attrs = [
+        `created=${params.created}`,
+        `expires=${params.expires}`,
+        `nonce="${params.nonce}"`,
+        `keyid="${params.keyId}"`,
+        `alg="${params.alg}"`,
+        `tag="${params.tag}"`,
+    ].join(";");
+    return `${components};${attrs}`;
+}
+/**
+ * Signs an HTTP request using Ed25519 (RFC 9421).
+ *
+ * Pass an ordered list of [componentName, componentValue] tuples to control
+ * exactly which components are covered. Common derived components: @method,
+ * @authority, @path, @target-uri, @scheme. HTTP fields: content-type,
+ * content-digest, authorization, etc.
+ *
+ * Returns the Signature-Input and Signature header values ready to attach.
+ */
+export async function signRequest(keyPair, components, tag) {
+    const { created, expires } = makeTimestamps();
+    const nonce = generateNonce();
+    const params = {
+        tag,
+        keyId: keyPair.keyId,
+        alg: "ed25519",
+        created,
+        expires,
+        nonce,
+    };
+    const componentNames = components.map(([name]) => name);
+    const paramsString = buildSignatureInputParams(componentNames, params);
+    const signatureBase = buildSignatureBase(components, params);
+    const encoded = new TextEncoder().encode(signatureBase);
+    const signatureBuffer = await subtle.sign("Ed25519", keyPair.privateKey, encoded);
+    const signatureB64 = base64url(signatureBuffer);
+    return {
+        "signature-input": `sig1=${paramsString}`,
+        signature: `sig1=:${signatureB64}:`,
+    };
+}
+/**
+ * Signs an arbitrary payload (for Consumer Recognition Object and Payment Container).
+ * Uses the same key as the request signature, tied via nonce.
+ */
+export async function signPayload(keyPair, payload) {
+    const canonical = JSON.stringify(payload, Object.keys(payload).sort());
+    const encoded = new TextEncoder().encode(canonical);
+    const signatureBuffer = await subtle.sign("Ed25519", keyPair.privateKey, encoded);
+    return base64url(signatureBuffer);
+}
+//# sourceMappingURL=sign.js.map

package/dist/sign.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"sign.js","sourceRoot":"","sources":["../src/sign.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,SAAS,EAAE,MAAM,aAAa,CAAA;AACvC,OAAO,EAAE,SAAS,EAAE,MAAM,WAAW,CAAA;AACrC,OAAO,EAAE,aAAa,EAAE,cAAc,EAAE,MAAM,YAAY,CAAA;AAG1D,MAAM,MAAM,GAAG,SAAS,CAAC,MAAM,CAAA;AAE/B;;;;;;;;;GASG;AACH,MAAM,UAAU,kBAAkB,CAChC,UAAmC,EACnC,MAA4B;IAE5B,MAAM,cAAc,GAAG,UAAU,CAAC,GAAG,CAAC,CAAC,CAAC,IAAI,CAAC,EAAE,EAAE,CAAC,IAAI,CAAC,CAAA;IACvD,MAAM,YAAY,GAAG,yBAAyB,CAAC,cAAc,EAAE,MAAM,CAAC,CAAA;IAEtE,MAAM,KAAK,GAAG;QACZ,GAAG,UAAU,CAAC,GAAG,CAAC,CAAC,CAAC,IAAI,EAAE,KAAK,CAAC,EAAE,EAAE,CAAC,IAAI,IAAI,MAAM,KAAK,EAAE,CAAC;QAC3D,wBAAwB,YAAY,EAAE;KACvC,CAAA;IAED,OAAO,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,CAAA;AACzB,CAAC;AAED;;;;GAIG;AACH,MAAM,UAAU,yBAAyB,CAAC,cAAwB,EAAE,MAA4B;IAC9F,MAAM,UAAU,GAAG,IAAI,cAAc,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,GAAG,CAAC,GAAG,CAAA;IACvE,MAAM,KAAK,GAAG;QACZ,WAAW,MAAM,CAAC,OAAO,EAAE;QAC3B,WAAW,MAAM,CAAC,OAAO,EAAE;QAC3B,UAAU,MAAM,CAAC,KAAK,GAAG;QACzB,UAAU,MAAM,CAAC,KAAK,GAAG;QACzB,QAAQ,MAAM,CAAC,GAAG,GAAG;QACrB,QAAQ,MAAM,CAAC,GAAG,GAAG;KACtB,CAAC,IAAI,CAAC,GAAG,CAAC,CAAA;IAEX,OAAO,GAAG,UAAU,IAAI,KAAK,EAAE,CAAA;AACjC,CAAC;AAED;;;;;;;;;GASG;AACH,MAAM,CAAC,KAAK,UAAU,WAAW,CAC/B,OAAmB,EACnB,UAAmC,EACnC,GAAiB;IAEjB,MAAM,EAAE,OAAO,EAAE,OAAO,EAAE,GAAG,cAAc,EAAE,CAAA;IAC7C,MAAM,KAAK,GAAG,aAAa,EAAE,CAAA;IAE7B,MAAM,MAAM,GAAyB;QACnC,GAAG;QACH,KAAK,EAAE,OAAO,CAAC,KAAK;QACpB,GAAG,EAAE,SAAS;QACd,OAAO;QACP,OAAO;QACP,KAAK;KACN,CAAA;IAED,MAAM,cAAc,GAAG,UAAU,CAAC,GAAG,CAAC,CAAC,CAAC,IAAI,CAAC,EAAE,EAAE,CAAC,IAAI,CAAC,CAAA;IACvD,MAAM,YAAY,GAAG,yBAAyB,CAAC,cAAc,EAAE,MAAM,CAAC,CAAA;IACtE,MAAM,aAAa,GAAG,kBAAkB,CAAC,UAAU,EAAE,MAAM,CAAC,CAAA;IAC5D,MAAM,OAAO,GAAG,IAAI,WAAW,EAAE,CAAC,MAAM,CAAC,aAAa,CAAC,CAAA;IACvD,MAAM,eAAe,GAAG,MAAM,MAAM,CAAC,IAAI,CAAC,SAAS,EAAE,OAAO,CAAC,UAAU,EAAE,OAAO,CAAC,CAAA;IACjF,MAAM,YAAY,GAAG,SAAS,CAAC,eAAe,CAAC,CAAA;IAE/C,OAAO;QACL,iBAAiB,EAAE,QAAQ,YAAY,EAAE;QACzC,SAAS,EAAE,SAAS,YAAY,GAAG;KACpC,CAAA;AACH,CAAC;AAED;;;GAGG;AACH,MAAM,CAAC,KAAK,UAAU,WAAW,CAC/B,OAAmB,EACnB,OAAgC;IAEhC,MAAM,SAAS,GAAG,IAAI,CAAC,SAAS,CAAC,OAAO,EAAE,MAAM,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC,IAAI,EAAE,CAAC,CAAA;IACtE,MAAM,OAAO,GAAG,IAAI,WAAW,EAAE,CAAC,MAAM,CAAC,SAAS,CAAC,CAAA;IACnD,MAAM,eAAe,GAAG,MAAM,MAAM,CAAC,IAAI,CAAC,SAAS,EAAE,OAAO,CAAC,UAAU,EAAE,OAAO,CAAC,CAAA;IACjF,OAAO,SAAS,CAAC,eAAe,CAAC,CAAA;AACnC,CAAC"}

package/dist/tokens.d.ts

@@ -0,0 +1,22 @@
+import type { IdTokenClaims, TapJwk, TapKeyPair } from "./types.js";
+/**
+ * Creates a Visa-style ID Token (JWT) for the Consumer Recognition Object.
+ * In prod this would be issued by Visa; in dev/demo the agent issues its own.
+ */
+export declare function createIdToken(keyPair: TapKeyPair, claims: Partial<IdTokenClaims> & {
+    sub: string;
+    aud: string;
+}): Promise<string>;
+/**
+ * Verifies an ID Token using the agent's public key (dev mode).
+ * In prod, uses Visa's published JWKS.
+ */
+export declare function verifyIdToken(token: string, publicJwk: TapJwk, audience: string): Promise<IdTokenClaims>;
+/**
+ * Hashes a PII value (email/phone) for inclusion in Consumer Recognition Object.
+ * Uses SHA-256 so the merchant can match against their own hashed records.
+ */
+export declare function hashPii(value: string): Promise<string>;
+export declare function maskEmail(email: string): string;
+export declare function maskPhone(phone: string): string;
+//# sourceMappingURL=tokens.d.ts.map

package/dist/tokens.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"tokens.d.ts","sourceRoot":"","sources":["../src/tokens.ts"],"names":[],"mappings":"AAEA,OAAO,KAAK,EAAE,aAAa,EAAE,MAAM,EAAE,UAAU,EAAE,MAAM,YAAY,CAAA;AAKnE;;;GAGG;AACH,wBAAsB,aAAa,CACjC,OAAO,EAAE,UAAU,EACnB,MAAM,EAAE,OAAO,CAAC,aAAa,CAAC,GAAG;IAAE,GAAG,EAAE,MAAM,CAAC;IAAC,GAAG,EAAE,MAAM,CAAA;CAAE,GAC5D,OAAO,CAAC,MAAM,CAAC,CAkBjB;AAED;;;GAGG;AACH,wBAAsB,aAAa,CACjC,KAAK,EAAE,MAAM,EACb,SAAS,EAAE,MAAM,EACjB,QAAQ,EAAE,MAAM,GACf,OAAO,CAAC,aAAa,CAAC,CAIxB;AAED;;;GAGG;AACH,wBAAsB,OAAO,CAAC,KAAK,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC,CAK5D;AAED,wBAAgB,SAAS,CAAC,KAAK,EAAE,MAAM,GAAG,MAAM,CAI/C;AAED,wBAAgB,SAAS,CAAC,KAAK,EAAE,MAAM,GAAG,MAAM,CAG/C"}

package/dist/tokens.js

@@ -0,0 +1,55 @@
+import { SignJWT, jwtVerify, importJWK } from "jose";
+const ISSUER = "tap-stack-dev";
+const TOKEN_TTL_SECONDS = 300;
+/**
+ * Creates a Visa-style ID Token (JWT) for the Consumer Recognition Object.
+ * In prod this would be issued by Visa; in dev/demo the agent issues its own.
+ */
+export async function createIdToken(keyPair, claims) {
+    const now = Math.floor(Date.now() / 1000);
+    return new SignJWT({
+        phone_number: claims.phone_number,
+        email: claims.email,
+        phone_number_verified: claims.phone_number_verified ?? false,
+        email_verified: claims.email_verified ?? false,
+        phone_number_mask: claims.phone_number_mask,
+        email_mask: claims.email_mask,
+    })
+        .setProtectedHeader({ alg: "EdDSA", kid: keyPair.keyId })
+        .setIssuer(claims.iss ?? ISSUER)
+        .setSubject(claims.sub)
+        .setAudience(claims.aud)
+        .setIssuedAt(now)
+        .setExpirationTime(now + TOKEN_TTL_SECONDS)
+        .sign(keyPair.privateKey);
+}
+/**
+ * Verifies an ID Token using the agent's public key (dev mode).
+ * In prod, uses Visa's published JWKS.
+ */
+export async function verifyIdToken(token, publicJwk, audience) {
+    const key = await importJWK(publicJwk, "EdDSA");
+    const { payload } = await jwtVerify(token, key, { audience });
+    return payload;
+}
+/**
+ * Hashes a PII value (email/phone) for inclusion in Consumer Recognition Object.
+ * Uses SHA-256 so the merchant can match against their own hashed records.
+ */
+export async function hashPii(value) {
+    const { webcrypto } = await import("node:crypto");
+    const encoded = new TextEncoder().encode(value.toLowerCase().trim());
+    const hash = await webcrypto.subtle.digest("SHA-256", encoded);
+    return Buffer.from(hash).toString("hex");
+}
+export function maskEmail(email) {
+    const [local, domain] = email.split("@");
+    if (!local || !domain)
+        return "***@***";
+    return `${local[0]}***@${domain}`;
+}
+export function maskPhone(phone) {
+    const digits = phone.replace(/\D/g, "");
+    return `***-***-${digits.slice(-4)}`;
+}
+//# sourceMappingURL=tokens.js.map

package/dist/tokens.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"tokens.js","sourceRoot":"","sources":["../src/tokens.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,OAAO,EAAE,SAAS,EAAE,SAAS,EAAE,MAAM,MAAM,CAAA;AAIpD,MAAM,MAAM,GAAG,eAAe,CAAA;AAC9B,MAAM,iBAAiB,GAAG,GAAG,CAAA;AAE7B;;;GAGG;AACH,MAAM,CAAC,KAAK,UAAU,aAAa,CACjC,OAAmB,EACnB,MAA6D;IAE7D,MAAM,GAAG,GAAG,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,GAAG,EAAE,GAAG,IAAI,CAAC,CAAA;IAEzC,OAAO,IAAI,OAAO,CAAC;QACjB,YAAY,EAAE,MAAM,CAAC,YAAY;QACjC,KAAK,EAAE,MAAM,CAAC,KAAK;QACnB,qBAAqB,EAAE,MAAM,CAAC,qBAAqB,IAAI,KAAK;QAC5D,cAAc,EAAE,MAAM,CAAC,cAAc,IAAI,KAAK;QAC9C,iBAAiB,EAAE,MAAM,CAAC,iBAAiB;QAC3C,UAAU,EAAE,MAAM,CAAC,UAAU;KAC9B,CAAC;SACC,kBAAkB,CAAC,EAAE,GAAG,EAAE,OAAO,EAAE,GAAG,EAAE,OAAO,CAAC,KAAK,EAAE,CAAC;SACxD,SAAS,CAAC,MAAM,CAAC,GAAG,IAAI,MAAM,CAAC;SAC/B,UAAU,CAAC,MAAM,CAAC,GAAG,CAAC;SACtB,WAAW,CAAC,MAAM,CAAC,GAAG,CAAC;SACvB,WAAW,CAAC,GAAG,CAAC;SAChB,iBAAiB,CAAC,GAAG,GAAG,iBAAiB,CAAC;SAC1C,IAAI,CAAC,OAAO,CAAC,UAAU,CAAC,CAAA;AAC7B,CAAC;AAED;;;GAGG;AACH,MAAM,CAAC,KAAK,UAAU,aAAa,CACjC,KAAa,EACb,SAAiB,EACjB,QAAgB;IAEhB,MAAM,GAAG,GAAG,MAAM,SAAS,CAAC,SAAgB,EAAE,OAAO,CAAC,CAAA;IACtD,MAAM,EAAE,OAAO,EAAE,GAAG,MAAM,SAAS,CAAC,KAAK,EAAE,GAAG,EAAE,EAAE,QAAQ,EAAE,CAAC,CAAA;IAC7D,OAAO,OAAmC,CAAA;AAC5C,CAAC;AAED;;;GAGG;AACH,MAAM,CAAC,KAAK,UAAU,OAAO,CAAC,KAAa;IACzC,MAAM,EAAE,SAAS,EAAE,GAAG,MAAM,MAAM,CAAC,aAAa,CAAC,CAAA;IACjD,MAAM,OAAO,GAAG,IAAI,WAAW,EAAE,CAAC,MAAM,CAAC,KAAK,CAAC,WAAW,EAAE,CAAC,IAAI,EAAE,CAAC,CAAA;IACpE,MAAM,IAAI,GAAG,MAAM,SAAS,CAAC,MAAM,CAAC,MAAM,CAAC,SAAS,EAAE,OAAO,CAAC,CAAA;IAC9D,OAAO,MAAM,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC,QAAQ,CAAC,KAAK,CAAC,CAAA;AAC1C,CAAC;AAED,MAAM,UAAU,SAAS,CAAC,KAAa;IACrC,MAAM,CAAC,KAAK,EAAE,MAAM,CAAC,GAAG,KAAK,CAAC,KAAK,CAAC,GAAG,CAAC,CAAA;IACxC,IAAI,CAAC,KAAK,IAAI,CAAC,MAAM;QAAE,OAAO,SAAS,CAAA;IACvC,OAAO,GAAG,KAAK,CAAC,CAAC,CAAC,OAAO,MAAM,EAAE,CAAA;AACnC,CAAC;AAED,MAAM,UAAU,SAAS,CAAC,KAAa;IACrC,MAAM,MAAM,GAAG,KAAK,CAAC,OAAO,CAAC,KAAK,EAAE,EAAE,CAAC,CAAA;IACvC,OAAO,WAAW,MAAM,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,EAAE,CAAA;AACtC,CAAC"}

package/dist/types.d.ts

@@ -0,0 +1,119 @@
+export interface TapJwk {
+    kty: string;
+    crv?: string;
+    x?: string;
+    d?: string;
+    n?: string;
+    e?: string;
+    kid?: string;
+    use?: string;
+    alg?: string;
+    key_ops?: string[];
+}
+export type SignatureTag = "agent-browser-auth" | "agent-payer-auth" | "agent-payee-auth";
+export type SignatureAlgorithm = "ed25519" | "rsa-pss-sha512";
+export interface TapKeyPair {
+    keyId: string;
+    privateKey: CryptoKey;
+    publicKey: CryptoKey;
+    jwk: TapJwk;
+}
+export interface SignatureInputParams {
+    tag: SignatureTag;
+    keyId: string;
+    alg: SignatureAlgorithm;
+    created: number;
+    expires: number;
+    nonce: string;
+}
+export interface TapSignedHeaders {
+    "signature-input": string;
+    signature: string;
+}
+export interface ConsumerRecognitionObject {
+    nonce: string;
+    idToken: string;
+    contextualData: ContextualData;
+    kid: string;
+    alg: SignatureAlgorithm;
+    signature: string;
+}
+export interface ContextualData {
+    deviceId?: string;
+    ipAddress?: string;
+    countryCode?: string;
+}
+export interface PaymentContainerObject {
+    nonce: string;
+    payload: EncryptedPaymentPayload;
+    cardMetadata: CardMetadata;
+    kid: string;
+    alg: SignatureAlgorithm;
+    signature: string;
+}
+export interface EncryptedPaymentPayload {
+    token: string;
+    cardholderName: string;
+    billingAddress: Address;
+    shippingAddress: Address;
+    email: string;
+}
+export interface CardMetadata {
+    lastFour: string;
+    paymentAccountReference: string;
+    brand: string;
+}
+export interface Address {
+    line1: string;
+    line2?: string;
+    city: string;
+    state: string;
+    postalCode: string;
+    country: string;
+}
+export interface IdTokenClaims {
+    iss: string;
+    sub: string;
+    aud: string | string[];
+    exp: number;
+    iat: number;
+    phone_number?: string;
+    email?: string;
+    phone_number_verified?: boolean;
+    email_verified?: boolean;
+    phone_number_mask?: string;
+    email_mask?: string;
+}
+export interface VerificationResult {
+    valid: boolean;
+    agentKeyId?: string;
+    tag?: SignatureTag;
+    consumerId?: string;
+    failureReason?: string;
+}
+export interface JwksResponse {
+    keys: TapJwk[];
+}
+export interface TapPaymentRequest {
+    payeeKeyId: string;
+    amount: number;
+    currency: string;
+    description: string;
+    nonce: string;
+    expiresAt: number;
+}
+export interface AgentPayeeObject {
+    paymentRequest: TapPaymentRequest;
+    payerKeyId: string;
+    timestamp: string;
+    nonce: string;
+    kid: string;
+    alg: "ed25519";
+    signature: string;
+}
+export interface PaymentVerificationResult {
+    valid: boolean;
+    payerKeyId?: string;
+    failureReason?: string;
+}
+//# sourceMappingURL=types.d.ts.map

package/dist/types.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"types.d.ts","sourceRoot":"","sources":["../src/types.ts"],"names":[],"mappings":"AAAA,MAAM,WAAW,MAAM;IACrB,GAAG,EAAE,MAAM,CAAA;IACX,GAAG,CAAC,EAAE,MAAM,CAAA;IACZ,CAAC,CAAC,EAAE,MAAM,CAAA;IACV,CAAC,CAAC,EAAE,MAAM,CAAA;IACV,CAAC,CAAC,EAAE,MAAM,CAAA;IACV,CAAC,CAAC,EAAE,MAAM,CAAA;IACV,GAAG,CAAC,EAAE,MAAM,CAAA;IACZ,GAAG,CAAC,EAAE,MAAM,CAAA;IACZ,GAAG,CAAC,EAAE,MAAM,CAAA;IACZ,OAAO,CAAC,EAAE,MAAM,EAAE,CAAA;CACnB;AAED,MAAM,MAAM,YAAY,GAAG,oBAAoB,GAAG,kBAAkB,GAAG,kBAAkB,CAAA;AACzF,MAAM,MAAM,kBAAkB,GAAG,SAAS,GAAG,gBAAgB,CAAA;AAE7D,MAAM,WAAW,UAAU;IACzB,KAAK,EAAE,MAAM,CAAA;IACb,UAAU,EAAE,SAAS,CAAA;IACrB,SAAS,EAAE,SAAS,CAAA;IACpB,GAAG,EAAE,MAAM,CAAA;CACZ;AAED,MAAM,WAAW,oBAAoB;IACnC,GAAG,EAAE,YAAY,CAAA;IACjB,KAAK,EAAE,MAAM,CAAA;IACb,GAAG,EAAE,kBAAkB,CAAA;IACvB,OAAO,EAAE,MAAM,CAAA;IACf,OAAO,EAAE,MAAM,CAAA;IACf,KAAK,EAAE,MAAM,CAAA;CACd;AAED,MAAM,WAAW,gBAAgB;IAC/B,iBAAiB,EAAE,MAAM,CAAA;IACzB,SAAS,EAAE,MAAM,CAAA;CAClB;AAED,MAAM,WAAW,yBAAyB;IACxC,KAAK,EAAE,MAAM,CAAA;IACb,OAAO,EAAE,MAAM,CAAA;IACf,cAAc,EAAE,cAAc,CAAA;IAC9B,GAAG,EAAE,MAAM,CAAA;IACX,GAAG,EAAE,kBAAkB,CAAA;IACvB,SAAS,EAAE,MAAM,CAAA;CAClB;AAED,MAAM,WAAW,cAAc;IAC7B,QAAQ,CAAC,EAAE,MAAM,CAAA;IACjB,SAAS,CAAC,EAAE,MAAM,CAAA;IAClB,WAAW,CAAC,EAAE,MAAM,CAAA;CACrB;AAED,MAAM,WAAW,sBAAsB;IACrC,KAAK,EAAE,MAAM,CAAA;IACb,OAAO,EAAE,uBAAuB,CAAA;IAChC,YAAY,EAAE,YAAY,CAAA;IAC1B,GAAG,EAAE,MAAM,CAAA;IACX,GAAG,EAAE,kBAAkB,CAAA;IACvB,SAAS,EAAE,MAAM,CAAA;CAClB;AAED,MAAM,WAAW,uBAAuB;IACtC,KAAK,EAAE,MAAM,CAAA;IACb,cAAc,EAAE,MAAM,CAAA;IACtB,cAAc,EAAE,OAAO,CAAA;IACvB,eAAe,EAAE,OAAO,CAAA;IACxB,KAAK,EAAE,MAAM,CAAA;CACd;AAED,MAAM,WAAW,YAAY;IAC3B,QAAQ,EAAE,MAAM,CAAA;IAChB,uBAAuB,EAAE,MAAM,CAAA;IAC/B,KAAK,EAAE,MAAM,CAAA;CACd;AAED,MAAM,WAAW,OAAO;IACtB,KAAK,EAAE,MAAM,CAAA;IACb,KAAK,CAAC,EAAE,MAAM,CAAA;IACd,IAAI,EAAE,MAAM,CAAA;IACZ,KAAK,EAAE,MAAM,CAAA;IACb,UAAU,EAAE,MAAM,CAAA;IAClB,OAAO,EAAE,MAAM,CAAA;CAChB;AAED,MAAM,WAAW,aAAa;IAC5B,GAAG,EAAE,MAAM,CAAA;IACX,GAAG,EAAE,MAAM,CAAA;IACX,GAAG,EAAE,MAAM,GAAG,MAAM,EAAE,CAAA;IACtB,GAAG,EAAE,MAAM,CAAA;IACX,GAAG,EAAE,MAAM,CAAA;IACX,YAAY,CAAC,EAAE,MAAM,CAAA;IACrB,KAAK,CAAC,EAAE,MAAM,CAAA;IACd,qBAAqB,CAAC,EAAE,OAAO,CAAA;IAC/B,cAAc,CAAC,EAAE,OAAO,CAAA;IACxB,iBAAiB,CAAC,EAAE,MAAM,CAAA;IAC1B,UAAU,CAAC,EAAE,MAAM,CAAA;CACpB;AAED,MAAM,WAAW,kBAAkB;IACjC,KAAK,EAAE,OAAO,CAAA;IACd,UAAU,CAAC,EAAE,MAAM,CAAA;IACnB,GAAG,CAAC,EAAE,YAAY,CAAA;IAClB,UAAU,CAAC,EAAE,MAAM,CAAA;IACnB,aAAa,CAAC,EAAE,MAAM,CAAA;CACvB;AAED,MAAM,WAAW,YAAY;IAC3B,IAAI,EAAE,MAAM,EAAE,CAAA;CACf;AAED,MAAM,WAAW,iBAAiB;IAChC,UAAU,EAAE,MAAM,CAAA;IAClB,MAAM,EAAE,MAAM,CAAA;IACd,QAAQ,EAAE,MAAM,CAAA;IAChB,WAAW,EAAE,MAAM,CAAA;IACnB,KAAK,EAAE,MAAM,CAAA;IACb,SAAS,EAAE,MAAM,CAAA;CAClB;AAED,MAAM,WAAW,gBAAgB;IAC/B,cAAc,EAAE,iBAAiB,CAAA;IACjC,UAAU,EAAE,MAAM,CAAA;IAClB,SAAS,EAAE,MAAM,CAAA;IACjB,KAAK,EAAE,MAAM,CAAA;IACb,GAAG,EAAE,MAAM,CAAA;IACX,GAAG,EAAE,SAAS,CAAA;IACd,SAAS,EAAE,MAAM,CAAA;CAClB;AAED,MAAM,WAAW,yBAAyB;IACxC,KAAK,EAAE,OAAO,CAAA;IACd,UAAU,CAAC,EAAE,MAAM,CAAA;IACnB,aAAa,CAAC,EAAE,MAAM,CAAA;CACvB"}

package/dist/types.js

@@ -0,0 +1,2 @@
+export {};
+//# sourceMappingURL=types.js.map

package/dist/types.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"types.js","sourceRoot":"","sources":["../src/types.ts"],"names":[],"mappings":""}

package/dist/verify.d.ts

@@ -0,0 +1,54 @@
+import type { AgentPayeeObject, ConsumerRecognitionObject, PaymentContainerObject, PaymentVerificationResult, SignatureInputParams, TapJwk, VerificationResult } from "./types.js";
+export interface ParsedSignatureInput {
+    params: SignatureInputParams;
+    components: string[];
+    raw: string;
+}
+/**
+ * Parses a Signature-Input header value into structured params + covered component list.
+ * Expected format: sig1=("@method" "@authority" "@path");created=...;expires=...;nonce=...;keyid=...;alg=...;tag=...
+ */
+export declare function parseSignatureInput(header: string): ParsedSignatureInput;
+/**
+ * Extracts the raw base64url signature value from the Signature header.
+ * Expected format: sig1=:[base64url]:
+ */
+export declare function parseSignatureHeader(header: string): string;
+/**
+ * Core TAP agent recognition signature verification (RFC 9421).
+ *
+ * Pass a map of all available component values from the incoming request
+ * (e.g. { '@method': 'POST', '@authority': 'api.example.com', '@path': '/v1/pay' }).
+ * The verifier reads the covered component list from the Signature-Input header
+ * and reconstructs the signature base using only those components in order.
+ *
+ * Steps per spec:
+ * 1. Parse Signature-Input and extract covered component list
+ * 2. Validate timestamps (created < now < expires, gap ≤ 8min)
+ * 3. Confirm tag is valid
+ * 4. Fetch public key by keyid
+ * 5. Reconstruct signature base from parsed component list + provided values
+ * 6. Verify Ed25519 signature
+ */
+export declare function verifyAgentSignature(componentValues: Record<string, string>, signatureInputHeader: string, signatureHeader: string, fetchPublicKey: (keyId: string) => Promise<TapJwk | null>): Promise<VerificationResult>;
+/**
+ * Verifies an AgentPayeeObject — the proposed TAP primitive for A2A payments.
+ *
+ * Steps:
+ * 1. Confirm payment request is not expired
+ * 2. Fetch the payer's public key by kid
+ * 3. Reconstruct canonical payload (sans signature)
+ * 4. Verify Ed25519 signature
+ */
+export declare function verifyAgentPayeeObject(payment: AgentPayeeObject, fetchPublicKey: (keyId: string) => Promise<TapJwk | null>): Promise<PaymentVerificationResult>;
+/**
+ * Verifies the Consumer Recognition Object signature.
+ * The nonce must match the agent signature nonce.
+ */
+export declare function verifyConsumerRecognition(obj: ConsumerRecognitionObject, expectedNonce: string, fetchPublicKey: (keyId: string) => Promise<TapJwk | null>): Promise<VerificationResult>;
+/**
+ * Verifies the Payment Container Object signature.
+ * The nonce must match the agent signature nonce if present.
+ */
+export declare function verifyPaymentContainer(obj: PaymentContainerObject, expectedNonce: string, fetchPublicKey: (keyId: string) => Promise<TapJwk | null>): Promise<VerificationResult>;
+//# sourceMappingURL=verify.d.ts.map

package/dist/verify.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"verify.d.ts","sourceRoot":"","sources":["../src/verify.ts"],"names":[],"mappings":"AAIA,OAAO,KAAK,EACV,gBAAgB,EAChB,yBAAyB,EACzB,sBAAsB,EACtB,yBAAyB,EACzB,oBAAoB,EAEpB,MAAM,EACN,kBAAkB,EACnB,MAAM,YAAY,CAAA;AAInB,MAAM,WAAW,oBAAoB;IACnC,MAAM,EAAE,oBAAoB,CAAA;IAC5B,UAAU,EAAE,MAAM,EAAE,CAAA;IACpB,GAAG,EAAE,MAAM,CAAA;CACZ;AAED;;;GAGG;AACH,wBAAgB,mBAAmB,CAAC,MAAM,EAAE,MAAM,GAAG,oBAAoB,CA6BxE;AAED;;;GAGG;AACH,wBAAgB,oBAAoB,CAAC,MAAM,EAAE,MAAM,GAAG,MAAM,CAI3D;AAED;;;;;;;;;;;;;;;GAeG;AACH,wBAAsB,oBAAoB,CACxC,eAAe,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,EACvC,oBAAoB,EAAE,MAAM,EAC5B,eAAe,EAAE,MAAM,EACvB,cAAc,EAAE,CAAC,KAAK,EAAE,MAAM,KAAK,OAAO,CAAC,MAAM,GAAG,IAAI,CAAC,GACxD,OAAO,CAAC,kBAAkB,CAAC,CA6D7B;AAED;;;;;;;;GAQG;AACH,wBAAsB,sBAAsB,CAC1C,OAAO,EAAE,gBAAgB,EACzB,cAAc,EAAE,CAAC,KAAK,EAAE,MAAM,KAAK,OAAO,CAAC,MAAM,GAAG,IAAI,CAAC,GACxD,OAAO,CAAC,yBAAyB,CAAC,CA8BpC;AAED;;;GAGG;AACH,wBAAsB,yBAAyB,CAC7C,GAAG,EAAE,yBAAyB,EAC9B,aAAa,EAAE,MAAM,EACrB,cAAc,EAAE,CAAC,KAAK,EAAE,MAAM,KAAK,OAAO,CAAC,MAAM,GAAG,IAAI,CAAC,GACxD,OAAO,CAAC,kBAAkB,CAAC,CAmB7B;AAED;;;GAGG;AACH,wBAAsB,sBAAsB,CAC1C,GAAG,EAAE,sBAAsB,EAC3B,aAAa,EAAE,MAAM,EACrB,cAAc,EAAE,CAAC,KAAK,EAAE,MAAM,KAAK,OAAO,CAAC,MAAM,GAAG,IAAI,CAAC,GACxD,OAAO,CAAC,kBAAkB,CAAC,CAmB7B"}