@heraldprotocol/mpp 0.0.1

package/dist/esm/server.js

@@ -0,0 +1,260 @@
+import {
+  chainId,
+  decimals,
+  erc3009Abi,
+  erc3009Tokens,
+  resolveCurrency,
+  rpcUrl
+} from "./chunk-XBFBAAXJ.js";
+import {
+  charge
+} from "./chunk-CRRGQQSN.js";
+
+// src/server/Charge.ts
+import { Method, Store } from "mppx";
+import {
+  encodeFunctionData,
+  erc20Abi,
+  isAddressEqual,
+  keccak256,
+  parseEventLogs
+} from "viem";
+import { parseAccount } from "viem/accounts";
+import {
+  getTransactionReceipt,
+  sendTransaction,
+  sendTransactionSync
+} from "viem/actions";
+function charge2(parameters = {}) {
+  const {
+    amount,
+    currency = resolveCurrency(parameters),
+    decimals: decimals2 = decimals,
+    description,
+    externalId,
+    recipient,
+    waitForConfirmation = true
+  } = parameters;
+  const store = parameters.store ?? Store.memory();
+  if (currency.toLowerCase() in erc3009Tokens && !parameters.account) {
+    throw new Error(
+      "ERC-3009 requires an `account` parameter so the server can sign and broadcast the transferWithAuthorization transaction."
+    );
+  }
+  const serverAccount = parameters.account ? typeof parameters.account === "string" ? parseAccount(parameters.account) : parameters.account : void 0;
+  const resolveClient = async (chainId2) => {
+    if (parameters.getClient) return parameters.getClient({ chainId: chainId2 });
+    const id = chainId2 ?? chainId.mainnet;
+    const url = rpcUrl[id];
+    if (!url) throw new Error(`No RPC URL configured for chainId ${id}.`);
+    const { createClient, http } = await import("viem");
+    return createClient({ chain: { id }, transport: http(url) });
+  };
+  return Method.toServer(charge, {
+    defaults: {
+      amount,
+      currency,
+      decimals: decimals2,
+      description,
+      externalId,
+      recipient
+    },
+    async request({ request }) {
+      const chainId2 = await (async () => {
+        if (request.chainId) return request.chainId;
+        if (parameters.testnet) return chainId.testnet;
+        return (await resolveClient(void 0)).chain?.id;
+      })();
+      const client = await (async () => {
+        try {
+          return await resolveClient(chainId2);
+        } catch {
+          throw new Error(`No client configured with chainId ${chainId2}.`);
+        }
+      })();
+      if (client.chain?.id !== chainId2)
+        throw new Error(`Client not configured with chainId ${chainId2}.`);
+      return { ...request, chainId: chainId2 };
+    },
+    async verify({ credential, request }) {
+      const { challenge } = credential;
+      const { chainId: chainId2 } = request;
+      const client = await resolveClient(chainId2);
+      const { request: challengeRequest } = challenge;
+      const challengeAmount = challengeRequest.amount;
+      const challengeCurrency = challengeRequest.currency;
+      const challengeRecipient = challengeRequest.recipient;
+      const expires = challenge.expires;
+      if (expires && new Date(expires) < /* @__PURE__ */ new Date()) {
+        throw new Error(`Payment expired at ${expires}.`);
+      }
+      const payload = credential.payload;
+      switch (payload.type) {
+        case "hash": {
+          const hash = payload.hash;
+          await assertHashUnused(store, hash);
+          const sender = extractDidAddress(credential.source);
+          if (!sender)
+            throw new Error(
+              "Hash credential is missing a valid `source` DID \u2014 cannot verify sender."
+            );
+          const receipt = await getTransactionReceipt(client, { hash });
+          const transferLogs = parseEventLogs({
+            abi: erc20Abi,
+            eventName: "Transfer",
+            logs: receipt.logs
+          });
+          const match = transferLogs.find(
+            (log) => isAddressEqual(log.address, challengeCurrency) && isAddressEqual(log.args.from, sender) && isAddressEqual(log.args.to, challengeRecipient) && log.args.value.toString() === challengeAmount
+          );
+          if (!match)
+            throw new MismatchError(
+              "Payment verification failed: no matching ERC-20 transfer found.",
+              {
+                sender,
+                amount: challengeAmount,
+                currency: challengeCurrency,
+                recipient: challengeRecipient
+              }
+            );
+          await markHashUsed(store, hash);
+          return toReceipt(receipt);
+        }
+        case "authorization": {
+          if (!serverAccount) {
+            throw new Error(
+              "Received ERC-3009 authorization credential but no server `account` is configured. Set `account` in charge parameters to broadcast transferWithAuthorization."
+            );
+          }
+          const { from, to, value, validAfter, validBefore, nonce, signature } = payload;
+          const r = `0x${signature.slice(2, 66)}`;
+          const s = `0x${signature.slice(66, 130)}`;
+          const v = parseInt(signature.slice(130, 132), 16);
+          if (!isAddressEqual(to, challengeRecipient))
+            throw new MismatchError(
+              "Authorization recipient does not match challenge.",
+              { expected: challengeRecipient, actual: to }
+            );
+          if (value !== challengeAmount)
+            throw new MismatchError(
+              "Authorization amount does not match challenge.",
+              { expected: challengeAmount, actual: value }
+            );
+          const validBeforeTs = Number(validBefore);
+          if (validBeforeTs > 0 && validBeforeTs < Math.floor(Date.now() / 1e3)) {
+            throw new Error(
+              `ERC-3009 authorization expired (validBefore: ${validBefore}).`
+            );
+          }
+          const hash = keccak256(signature);
+          await assertHashUnused(store, hash);
+          await markHashUsed(store, hash);
+          if (waitForConfirmation) {
+            const receipt = await sendTransactionSync(client, {
+              account: serverAccount,
+              chain: client.chain,
+              to: challengeCurrency,
+              data: encodeFunctionData({
+                abi: erc3009Abi,
+                functionName: "transferWithAuthorization",
+                args: [
+                  from,
+                  to,
+                  BigInt(value),
+                  BigInt(validAfter),
+                  BigInt(validBefore),
+                  nonce,
+                  v,
+                  r,
+                  s
+                ]
+              })
+            });
+            return toReceipt(receipt);
+          }
+          const txHash = await sendTransaction(client, {
+            account: serverAccount,
+            chain: client.chain,
+            to: challengeCurrency,
+            data: encodeFunctionData({
+              abi: erc3009Abi,
+              functionName: "transferWithAuthorization",
+              args: [
+                from,
+                to,
+                BigInt(value),
+                BigInt(validAfter),
+                BigInt(validBefore),
+                nonce,
+                v,
+                r,
+                s
+              ]
+            })
+          });
+          return {
+            method: "zerog",
+            status: "success",
+            timestamp: (/* @__PURE__ */ new Date()).toISOString(),
+            reference: txHash
+          };
+        }
+        default:
+          throw new Error(
+            `Unsupported credential type "${payload.type}".`
+          );
+      }
+    }
+  });
+}
+function getHashStoreKey(hash) {
+  return `mppx:charge:${hash.toLowerCase()}`;
+}
+async function assertHashUnused(store, hash) {
+  const seen = await store.get(getHashStoreKey(hash));
+  if (seen !== null) throw new Error("Transaction hash has already been used.");
+}
+async function markHashUsed(store, hash) {
+  await store.put(getHashStoreKey(hash), Date.now());
+}
+function toReceipt(receipt) {
+  const { status, transactionHash } = receipt;
+  if (status !== "success") {
+    throw new Error(`Transaction reverted: ${transactionHash}`);
+  }
+  return {
+    method: "zerog",
+    status: "success",
+    timestamp: (/* @__PURE__ */ new Date()).toISOString(),
+    reference: transactionHash
+  };
+}
+function extractDidAddress(source) {
+  if (!source) return void 0;
+  const match = /^did:pkh:eip155:\d+:(0x[0-9a-fA-F]{40})$/.exec(source);
+  return match ? match[1] : void 0;
+}
+var MismatchError = class extends Error {
+  constructor(reason, details) {
+    super(
+      [
+        reason,
+        ...Object.entries(details).map(([k, v]) => `  - ${k}: ${v}`)
+      ].join("\n")
+    );
+    this.name = "MismatchError";
+  }
+};
+
+// src/server/Methods.ts
+function zerog(parameters) {
+  return [zerog.charge(parameters)];
+}
+((zerog2) => {
+  zerog2.charge = charge2;
+})(zerog || (zerog = {}));
+export {
+  charge2 as charge,
+  zerog
+};
+//# sourceMappingURL=server.js.map

package/dist/esm/server.js.map

@@ -0,0 +1 @@
+{"version":3,"sources":["../../src/server/Charge.ts","../../src/server/Methods.ts"],"sourcesContent":["import type { Account, Address, Chain, Client, TransactionReceipt } from \"viem\";\nimport { Method, Store } from \"mppx\";\nimport {\n  encodeFunctionData,\n  erc20Abi,\n  isAddressEqual,\n  keccak256,\n  parseEventLogs,\n} from \"viem\";\nimport { parseAccount } from \"viem/accounts\";\nimport {\n  getTransactionReceipt,\n  sendTransaction,\n  sendTransactionSync,\n} from \"viem/actions\";\n\nimport type { MaybePromise } from \"../types.js\";\nimport * as defaults from \"../defaults.js\";\nimport * as Methods from \"../Methods.js\";\n\n/**\n * Creates a 0G charge method intent for usage on the server.\n *\n * @example\n * ```ts\n * import { zerog } from \"@heraldprotocol/mpp/server\";\n *\n * const charge = zerog.charge({\n *   recipient: \"0x...\",\n *   currency: \"0x...\",\n *   account: privateKeyToAccount(\"0x...\"),\n * });\n * ```\n */\nexport function charge(parameters: charge.Parameters = {}): Method.AnyServer {\n  const {\n    amount,\n    currency = defaults.resolveCurrency(parameters),\n    decimals = defaults.decimals,\n    description,\n    externalId,\n    recipient,\n    waitForConfirmation = true,\n  } = parameters;\n  const store = (parameters.store ??\n    Store.memory()) as Store.Store<charge.StoreItemMap>;\n\n  if (currency.toLowerCase() in defaults.erc3009Tokens && !parameters.account) {\n    throw new Error(\n      \"ERC-3009 requires an `account` parameter so the server can sign and broadcast \" +\n        \"the transferWithAuthorization transaction.\"\n    );\n  }\n\n  const serverAccount = parameters.account\n    ? typeof parameters.account === \"string\"\n      ? parseAccount(parameters.account)\n      : parameters.account\n    : undefined;\n\n  const resolveClient = async (\n    chainId?: number | undefined\n  ): Promise<Client> => {\n    if (parameters.getClient) return parameters.getClient({ chainId });\n    const id = chainId ?? defaults.chainId.mainnet;\n    const url = defaults.rpcUrl[id];\n    if (!url) throw new Error(`No RPC URL configured for chainId ${id}.`);\n    const { createClient, http } = await import(\"viem\");\n    return createClient({ chain: { id } as Chain, transport: http(url) });\n  };\n\n  return Method.toServer(Methods.charge, {\n    defaults: {\n      amount,\n      currency,\n      decimals,\n      description,\n      externalId,\n      recipient,\n    } as never,\n\n    async request({ request }) {\n      const chainId = await (async () => {\n        if (request.chainId) return request.chainId;\n        if (parameters.testnet) return defaults.chainId.testnet;\n        return (await resolveClient(undefined)).chain?.id;\n      })();\n\n      const client = await (async () => {\n        try {\n          return await resolveClient(chainId);\n        } catch {\n          throw new Error(`No client configured with chainId ${chainId}.`);\n        }\n      })();\n      if (client.chain?.id !== chainId)\n        throw new Error(`Client not configured with chainId ${chainId}.`);\n\n      return { ...request, chainId };\n    },\n\n    async verify({ credential, request }) {\n      const { challenge } = credential;\n      const { chainId } = request;\n\n      const client = await resolveClient(chainId);\n\n      const { request: challengeRequest } = challenge;\n      const challengeAmount = challengeRequest.amount as string;\n      const challengeCurrency = challengeRequest.currency as Address;\n      const challengeRecipient = challengeRequest.recipient as Address;\n      const expires = challenge.expires;\n\n      if (expires && new Date(expires) < new Date()) {\n        throw new Error(`Payment expired at ${expires}.`);\n      }\n\n      const payload = credential.payload;\n\n      switch (payload.type) {\n        case \"hash\": {\n          const hash = payload.hash as `0x${string}`;\n          await assertHashUnused(store, hash);\n\n          const sender = extractDidAddress(credential.source);\n          if (!sender)\n            throw new Error(\n              \"Hash credential is missing a valid `source` DID — cannot verify sender.\"\n            );\n\n          const receipt = await getTransactionReceipt(client, { hash });\n\n          const transferLogs = parseEventLogs({\n            abi: erc20Abi,\n            eventName: \"Transfer\",\n            logs: receipt.logs,\n          });\n\n          const match = transferLogs.find(\n            (log) =>\n              isAddressEqual(log.address, challengeCurrency) &&\n              isAddressEqual(log.args.from, sender) &&\n              isAddressEqual(log.args.to, challengeRecipient) &&\n              log.args.value.toString() === challengeAmount\n          );\n\n          if (!match)\n            throw new MismatchError(\n              \"Payment verification failed: no matching ERC-20 transfer found.\",\n              {\n                sender,\n                amount: challengeAmount,\n                currency: challengeCurrency,\n                recipient: challengeRecipient,\n              }\n            );\n\n          await markHashUsed(store, hash);\n\n          return toReceipt(receipt);\n        }\n\n        case \"authorization\": {\n          if (!serverAccount) {\n            throw new Error(\n              \"Received ERC-3009 authorization credential but no server `account` is configured. \" +\n                \"Set `account` in charge parameters to broadcast transferWithAuthorization.\"\n            );\n          }\n\n          const { from, to, value, validAfter, validBefore, nonce, signature } =\n            payload as {\n              from: string;\n              to: string;\n              value: string;\n              validAfter: string;\n              validBefore: string;\n              nonce: string;\n              signature: string;\n            };\n\n          // Split signature into v, r, s for the contract call\n          const r = `0x${signature.slice(2, 66)}` as `0x${string}`;\n          const s = `0x${signature.slice(66, 130)}` as `0x${string}`;\n          const v = parseInt(signature.slice(130, 132), 16);\n\n          // Validate authorization parameters match the challenge\n          if (!isAddressEqual(to as Address, challengeRecipient))\n            throw new MismatchError(\n              \"Authorization recipient does not match challenge.\",\n              { expected: challengeRecipient, actual: to }\n            );\n\n          if (value !== challengeAmount)\n            throw new MismatchError(\n              \"Authorization amount does not match challenge.\",\n              { expected: challengeAmount, actual: value }\n            );\n\n          // Check expiry from the authorization itself\n          const validBeforeTs = Number(validBefore);\n          if (\n            validBeforeTs > 0 &&\n            validBeforeTs < Math.floor(Date.now() / 1000)\n          ) {\n            throw new Error(\n              `ERC-3009 authorization expired (validBefore: ${validBefore}).`\n            );\n          }\n\n          const hash = keccak256(signature as `0x${string}`);\n          await assertHashUnused(store, hash);\n          await markHashUsed(store, hash);\n\n          if (waitForConfirmation) {\n            const receipt = await sendTransactionSync(client, {\n              account: serverAccount,\n              chain: client.chain,\n              to: challengeCurrency,\n              data: encodeFunctionData({\n                abi: defaults.erc3009Abi,\n                functionName: \"transferWithAuthorization\",\n                args: [\n                  from as Address,\n                  to as Address,\n                  BigInt(value),\n                  BigInt(validAfter),\n                  BigInt(validBefore),\n                  nonce as `0x${string}`,\n                  v,\n                  r as `0x${string}`,\n                  s as `0x${string}`,\n                ],\n              }),\n            } as never);\n\n            return toReceipt(receipt);\n          }\n\n          const txHash = await sendTransaction(client, {\n            account: serverAccount,\n            chain: client.chain,\n            to: challengeCurrency,\n            data: encodeFunctionData({\n              abi: defaults.erc3009Abi,\n              functionName: \"transferWithAuthorization\",\n              args: [\n                from as Address,\n                to as Address,\n                BigInt(value),\n                BigInt(validAfter),\n                BigInt(validBefore),\n                nonce as `0x${string}`,\n                v,\n                r as `0x${string}`,\n                s as `0x${string}`,\n              ],\n            }),\n          } as never);\n\n          return {\n            method: \"zerog\" as const,\n            status: \"success\" as const,\n            timestamp: new Date().toISOString(),\n            reference: txHash,\n          };\n        }\n\n        default:\n          throw new Error(\n            `Unsupported credential type \"${(payload as { type: string }).type}\".`\n          );\n      }\n    },\n  });\n}\n\nexport declare namespace charge {\n  type StoreItemMap = {\n    [key: `mppx:charge:${string}`]: number;\n  };\n\n  type Parameters = {\n    /** Default payment amount (human-readable, e.g. \"1.50\"). */\n    amount?: string | undefined;\n    /** ERC-20 token contract address. */\n    currency?: string | undefined;\n    /** Token decimals. @default 6 */\n    decimals?: number | undefined;\n    /** Human-readable description. */\n    description?: string | undefined;\n    /** External identifier to echo back in receipt. */\n    externalId?: string | undefined;\n    /** Recipient address for payments. */\n    recipient?: string | undefined;\n    /** Testnet mode. */\n    testnet?: boolean | undefined;\n    /**\n     * Whether to wait for the charge transaction to confirm on-chain.\n     * @default true\n     */\n    waitForConfirmation?: boolean | undefined;\n    /** Function that returns a viem Client for the given chain ID. */\n    getClient?:\n      | ((parameters: { chainId?: number | undefined }) => MaybePromise<Client>)\n      | undefined;\n    /**\n     * Server account used to broadcast `transferWithAuthorization` transactions.\n     * Required when accepting `authorization` payloads. The server pays gas\n     * from this account.\n     */\n    account?: Account | Address | undefined;\n    /**\n     * Store for transaction hash replay protection.\n     *\n     * Use a shared store in multi-instance deployments so consumed hashes are\n     * visible across all server instances.\n     */\n    store?: Store.Store | undefined;\n  };\n}\n\n/** @internal */\nfunction getHashStoreKey(hash: `0x${string}`): `mppx:charge:${string}` {\n  return `mppx:charge:${hash.toLowerCase()}`;\n}\n\n/** @internal */\nasync function assertHashUnused(\n  store: Store.Store<charge.StoreItemMap>,\n  hash: `0x${string}`\n): Promise<void> {\n  const seen = await store.get(getHashStoreKey(hash));\n  if (seen !== null) throw new Error(\"Transaction hash has already been used.\");\n}\n\n/** @internal */\nasync function markHashUsed(\n  store: Store.Store<charge.StoreItemMap>,\n  hash: `0x${string}`\n): Promise<void> {\n  await store.put(getHashStoreKey(hash), Date.now());\n}\n\n/** @internal */\nfunction toReceipt(receipt: TransactionReceipt) {\n  const { status, transactionHash } = receipt;\n  if (status !== \"success\") {\n    throw new Error(`Transaction reverted: ${transactionHash}`);\n  }\n  return {\n    method: \"zerog\" as const,\n    status: \"success\" as const,\n    timestamp: new Date().toISOString(),\n    reference: transactionHash,\n  };\n}\n\n/**\n * Extracts an Ethereum address from a `did:pkh:eip155:<chainId>:<address>` DID.\n * Returns `undefined` if the source is missing or malformed.\n * @internal\n */\nfunction extractDidAddress(source: string | undefined): Address | undefined {\n  if (!source) return undefined;\n  const match = /^did:pkh:eip155:\\d+:(0x[0-9a-fA-F]{40})$/.exec(source);\n  return match ? (match[1] as Address) : undefined;\n}\n\n/** @internal */\nclass MismatchError extends Error {\n  override readonly name = \"MismatchError\";\n\n  constructor(reason: string, details: Record<string, string>) {\n    super(\n      [\n        reason,\n        ...Object.entries(details).map(([k, v]) => `  - ${k}: ${v}`),\n      ].join(\"\\n\")\n    );\n  }\n}\n","import type { Method } from \"mppx\";\n\nimport { charge as charge_ } from \"./Charge.js\";\n\n/**\n * Creates a 0G `charge` server method.\n *\n * @example\n * ```ts\n * import { Mppx } from \"mppx/server\";\n * import { zerog } from \"@heraldprotocol/mpp/server\";\n *\n * const mppx = Mppx.create({\n *   methods: [zerog({ recipient: \"0x...\", currency: \"0x...\" })],\n * });\n * ```\n */\nexport function zerog(\n  parameters?: zerog.Parameters\n): readonly [Method.AnyServer] {\n  return [zerog.charge(parameters)] as const;\n}\n\nexport namespace zerog {\n  export type Parameters = charge_.Parameters;\n\n  /** Creates a 0G `charge` method for one-time ERC-20 token transfers. */\n  export const charge = charge_;\n}\n"],"mappings":";;;;;;;;;;;;;AACA,SAAS,QAAQ,aAAa;AAC9B;AAAA,EACE;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,OACK;AACP,SAAS,oBAAoB;AAC7B;AAAA,EACE;AAAA,EACA;AAAA,EACA;AAAA,OACK;AAoBA,SAASA,QAAO,aAAgC,CAAC,GAAqB;AAC3E,QAAM;AAAA,IACJ;AAAA,IACA,WAAoB,gBAAgB,UAAU;AAAA,IAC9C,UAAAC,YAAoB;AAAA,IACpB;AAAA,IACA;AAAA,IACA;AAAA,IACA,sBAAsB;AAAA,EACxB,IAAI;AACJ,QAAM,QAAS,WAAW,SACxB,MAAM,OAAO;AAEf,MAAI,SAAS,YAAY,KAAc,iBAAiB,CAAC,WAAW,SAAS;AAC3E,UAAM,IAAI;AAAA,MACR;AAAA,IAEF;AAAA,EACF;AAEA,QAAM,gBAAgB,WAAW,UAC7B,OAAO,WAAW,YAAY,WAC5B,aAAa,WAAW,OAAO,IAC/B,WAAW,UACb;AAEJ,QAAM,gBAAgB,OACpBC,aACoB;AACpB,QAAI,WAAW,UAAW,QAAO,WAAW,UAAU,EAAE,SAAAA,SAAQ,CAAC;AACjE,UAAM,KAAKA,YAAoB,QAAQ;AACvC,UAAM,MAAe,OAAO,EAAE;AAC9B,QAAI,CAAC,IAAK,OAAM,IAAI,MAAM,qCAAqC,EAAE,GAAG;AACpE,UAAM,EAAE,cAAc,KAAK,IAAI,MAAM,OAAO,MAAM;AAClD,WAAO,aAAa,EAAE,OAAO,EAAE,GAAG,GAAY,WAAW,KAAK,GAAG,EAAE,CAAC;AAAA,EACtE;AAEA,SAAO,OAAO,SAAiB,QAAQ;AAAA,IACrC,UAAU;AAAA,MACR;AAAA,MACA;AAAA,MACA,UAAAD;AAAA,MACA;AAAA,MACA;AAAA,MACA;AAAA,IACF;AAAA,IAEA,MAAM,QAAQ,EAAE,QAAQ,GAAG;AACzB,YAAMC,WAAU,OAAO,YAAY;AACjC,YAAI,QAAQ,QAAS,QAAO,QAAQ;AACpC,YAAI,WAAW,QAAS,QAAgB,QAAQ;AAChD,gBAAQ,MAAM,cAAc,MAAS,GAAG,OAAO;AAAA,MACjD,GAAG;AAEH,YAAM,SAAS,OAAO,YAAY;AAChC,YAAI;AACF,iBAAO,MAAM,cAAcA,QAAO;AAAA,QACpC,QAAQ;AACN,gBAAM,IAAI,MAAM,qCAAqCA,QAAO,GAAG;AAAA,QACjE;AAAA,MACF,GAAG;AACH,UAAI,OAAO,OAAO,OAAOA;AACvB,cAAM,IAAI,MAAM,sCAAsCA,QAAO,GAAG;AAElE,aAAO,EAAE,GAAG,SAAS,SAAAA,SAAQ;AAAA,IAC/B;AAAA,IAEA,MAAM,OAAO,EAAE,YAAY,QAAQ,GAAG;AACpC,YAAM,EAAE,UAAU,IAAI;AACtB,YAAM,EAAE,SAAAA,SAAQ,IAAI;AAEpB,YAAM,SAAS,MAAM,cAAcA,QAAO;AAE1C,YAAM,EAAE,SAAS,iBAAiB,IAAI;AACtC,YAAM,kBAAkB,iBAAiB;AACzC,YAAM,oBAAoB,iBAAiB;AAC3C,YAAM,qBAAqB,iBAAiB;AAC5C,YAAM,UAAU,UAAU;AAE1B,UAAI,WAAW,IAAI,KAAK,OAAO,IAAI,oBAAI,KAAK,GAAG;AAC7C,cAAM,IAAI,MAAM,sBAAsB,OAAO,GAAG;AAAA,MAClD;AAEA,YAAM,UAAU,WAAW;AAE3B,cAAQ,QAAQ,MAAM;AAAA,QACpB,KAAK,QAAQ;AACX,gBAAM,OAAO,QAAQ;AACrB,gBAAM,iBAAiB,OAAO,IAAI;AAElC,gBAAM,SAAS,kBAAkB,WAAW,MAAM;AAClD,cAAI,CAAC;AACH,kBAAM,IAAI;AAAA,cACR;AAAA,YACF;AAEF,gBAAM,UAAU,MAAM,sBAAsB,QAAQ,EAAE,KAAK,CAAC;AAE5D,gBAAM,eAAe,eAAe;AAAA,YAClC,KAAK;AAAA,YACL,WAAW;AAAA,YACX,MAAM,QAAQ;AAAA,UAChB,CAAC;AAED,gBAAM,QAAQ,aAAa;AAAA,YACzB,CAAC,QACC,eAAe,IAAI,SAAS,iBAAiB,KAC7C,eAAe,IAAI,KAAK,MAAM,MAAM,KACpC,eAAe,IAAI,KAAK,IAAI,kBAAkB,KAC9C,IAAI,KAAK,MAAM,SAAS,MAAM;AAAA,UAClC;AAEA,cAAI,CAAC;AACH,kBAAM,IAAI;AAAA,cACR;AAAA,cACA;AAAA,gBACE;AAAA,gBACA,QAAQ;AAAA,gBACR,UAAU;AAAA,gBACV,WAAW;AAAA,cACb;AAAA,YACF;AAEF,gBAAM,aAAa,OAAO,IAAI;AAE9B,iBAAO,UAAU,OAAO;AAAA,QAC1B;AAAA,QAEA,KAAK,iBAAiB;AACpB,cAAI,CAAC,eAAe;AAClB,kBAAM,IAAI;AAAA,cACR;AAAA,YAEF;AAAA,UACF;AAEA,gBAAM,EAAE,MAAM,IAAI,OAAO,YAAY,aAAa,OAAO,UAAU,IACjE;AAWF,gBAAM,IAAI,KAAK,UAAU,MAAM,GAAG,EAAE,CAAC;AACrC,gBAAM,IAAI,KAAK,UAAU,MAAM,IAAI,GAAG,CAAC;AACvC,gBAAM,IAAI,SAAS,UAAU,MAAM,KAAK,GAAG,GAAG,EAAE;AAGhD,cAAI,CAAC,eAAe,IAAe,kBAAkB;AACnD,kBAAM,IAAI;AAAA,cACR;AAAA,cACA,EAAE,UAAU,oBAAoB,QAAQ,GAAG;AAAA,YAC7C;AAEF,cAAI,UAAU;AACZ,kBAAM,IAAI;AAAA,cACR;AAAA,cACA,EAAE,UAAU,iBAAiB,QAAQ,MAAM;AAAA,YAC7C;AAGF,gBAAM,gBAAgB,OAAO,WAAW;AACxC,cACE,gBAAgB,KAChB,gBAAgB,KAAK,MAAM,KAAK,IAAI,IAAI,GAAI,GAC5C;AACA,kBAAM,IAAI;AAAA,cACR,gDAAgD,WAAW;AAAA,YAC7D;AAAA,UACF;AAEA,gBAAM,OAAO,UAAU,SAA0B;AACjD,gBAAM,iBAAiB,OAAO,IAAI;AAClC,gBAAM,aAAa,OAAO,IAAI;AAE9B,cAAI,qBAAqB;AACvB,kBAAM,UAAU,MAAM,oBAAoB,QAAQ;AAAA,cAChD,SAAS;AAAA,cACT,OAAO,OAAO;AAAA,cACd,IAAI;AAAA,cACJ,MAAM,mBAAmB;AAAA,gBACvB,KAAc;AAAA,gBACd,cAAc;AAAA,gBACd,MAAM;AAAA,kBACJ;AAAA,kBACA;AAAA,kBACA,OAAO,KAAK;AAAA,kBACZ,OAAO,UAAU;AAAA,kBACjB,OAAO,WAAW;AAAA,kBAClB;AAAA,kBACA;AAAA,kBACA;AAAA,kBACA;AAAA,gBACF;AAAA,cACF,CAAC;AAAA,YACH,CAAU;AAEV,mBAAO,UAAU,OAAO;AAAA,UAC1B;AAEA,gBAAM,SAAS,MAAM,gBAAgB,QAAQ;AAAA,YAC3C,SAAS;AAAA,YACT,OAAO,OAAO;AAAA,YACd,IAAI;AAAA,YACJ,MAAM,mBAAmB;AAAA,cACvB,KAAc;AAAA,cACd,cAAc;AAAA,cACd,MAAM;AAAA,gBACJ;AAAA,gBACA;AAAA,gBACA,OAAO,KAAK;AAAA,gBACZ,OAAO,UAAU;AAAA,gBACjB,OAAO,WAAW;AAAA,gBAClB;AAAA,gBACA;AAAA,gBACA;AAAA,gBACA;AAAA,cACF;AAAA,YACF,CAAC;AAAA,UACH,CAAU;AAEV,iBAAO;AAAA,YACL,QAAQ;AAAA,YACR,QAAQ;AAAA,YACR,YAAW,oBAAI,KAAK,GAAE,YAAY;AAAA,YAClC,WAAW;AAAA,UACb;AAAA,QACF;AAAA,QAEA;AACE,gBAAM,IAAI;AAAA,YACR,gCAAiC,QAA6B,IAAI;AAAA,UACpE;AAAA,MACJ;AAAA,IACF;AAAA,EACF,CAAC;AACH;AAgDA,SAAS,gBAAgB,MAA8C;AACrE,SAAO,eAAe,KAAK,YAAY,CAAC;AAC1C;AAGA,eAAe,iBACb,OACA,MACe;AACf,QAAM,OAAO,MAAM,MAAM,IAAI,gBAAgB,IAAI,CAAC;AAClD,MAAI,SAAS,KAAM,OAAM,IAAI,MAAM,yCAAyC;AAC9E;AAGA,eAAe,aACb,OACA,MACe;AACf,QAAM,MAAM,IAAI,gBAAgB,IAAI,GAAG,KAAK,IAAI,CAAC;AACnD;AAGA,SAAS,UAAU,SAA6B;AAC9C,QAAM,EAAE,QAAQ,gBAAgB,IAAI;AACpC,MAAI,WAAW,WAAW;AACxB,UAAM,IAAI,MAAM,yBAAyB,eAAe,EAAE;AAAA,EAC5D;AACA,SAAO;AAAA,IACL,QAAQ;AAAA,IACR,QAAQ;AAAA,IACR,YAAW,oBAAI,KAAK,GAAE,YAAY;AAAA,IAClC,WAAW;AAAA,EACb;AACF;AAOA,SAAS,kBAAkB,QAAiD;AAC1E,MAAI,CAAC,OAAQ,QAAO;AACpB,QAAM,QAAQ,2CAA2C,KAAK,MAAM;AACpE,SAAO,QAAS,MAAM,CAAC,IAAgB;AACzC;AAGA,IAAM,gBAAN,cAA4B,MAAM;AAAA,EAGhC,YAAY,QAAgB,SAAiC;AAC3D;AAAA,MACE;AAAA,QACE;AAAA,QACA,GAAG,OAAO,QAAQ,OAAO,EAAE,IAAI,CAAC,CAAC,GAAG,CAAC,MAAM,OAAO,CAAC,KAAK,CAAC,EAAE;AAAA,MAC7D,EAAE,KAAK,IAAI;AAAA,IACb;AARF,SAAkB,OAAO;AAAA,EASzB;AACF;;;AC5WO,SAAS,MACd,YAC6B;AAC7B,SAAO,CAAC,MAAM,OAAO,UAAU,CAAC;AAClC;AAAA,CAEO,CAAUC,WAAV;AAIE,EAAMA,OAAA,SAASC;AAAA,GAJP;","names":["charge","decimals","chainId","zerog","charge"]}

package/dist/esm/types-CKXzdGiJ.d.ts

@@ -0,0 +1,3 @@
+type MaybePromise<T> = T | Promise<T>;
+
+export type { MaybePromise as M };

package/package.json

@@ -0,0 +1,61 @@
+{
+  "$schema": "https://json.schemastore.org/package.json",
+  "name": "@heraldprotocol/mpp",
+  "version": "0.0.1",
+  "description": "0G Chain payment method for the Machine Payments Protocol",
+  "repository": {
+    "type": "git",
+    "url": "git+https://github.com/heraldprotocol/protocol.git",
+    "directory": "packages/sdk/js/mpp"
+  },
+  "publishConfig": {
+    "access": "public"
+  },
+  "type": "module",
+  "exports": {
+    ".": {
+      "types": "./dist/esm/index.d.ts",
+      "default": "./dist/esm/index.js"
+    },
+    "./client": {
+      "types": "./dist/esm/client/index.d.ts",
+      "default": "./dist/esm/client/index.js"
+    },
+    "./server": {
+      "types": "./dist/esm/server/index.d.ts",
+      "default": "./dist/esm/server/index.js"
+    }
+  },
+  "main": "./dist/esm/index.js",
+  "types": "./dist/esm/index.d.ts",
+  "sideEffects": false,
+  "files": [
+    "dist",
+    "src/**/*.ts",
+    "!**/*.test.ts"
+  ],
+  "scripts": {
+    "build": "tsup",
+    "typecheck": "tsc --noEmit"
+  },
+  "dependencies": {
+    "zod": "catalog:"
+  },
+  "peerDependencies": {
+    "typescript": "catalog:",
+    "viem": ">=2.48.0",
+    "mppx": ">=0.4.8"
+  },
+  "peerDependenciesMeta": {
+    "typescript": {
+      "optional": true
+    }
+  },
+  "devDependencies": {
+    "@biomejs/biome": "catalog:",
+    "@tsconfig/node22": "catalog:",
+    "@types/node": "catalog:",
+    "tsup": "8.5.1",
+    "typescript": "catalog:"
+  }
+}

package/src/Methods.ts

@@ -0,0 +1,43 @@
+import { Method, z } from "mppx";
+import { parseUnits } from "viem";
+
+/**
+ * 0G charge intent for one-time ERC-20 token transfers.
+ */
+export const charge = Method.from({
+  name: "zerog",
+  intent: "charge",
+  schema: {
+    credential: {
+      payload: z.discriminatedUnion("type", [
+        z.object({ hash: z.hash(), type: z.literal("hash") }),
+        z.object({
+          type: z.literal("authorization"),
+          from: z.string(),
+          to: z.string(),
+          value: z.string(),
+          validAfter: z.string(),
+          validBefore: z.string(),
+          nonce: z.string(),
+          signature: z.string(),
+        }),
+      ]),
+    },
+    request: z.pipe(
+      z.object({
+        amount: z.amount(),
+        chainId: z.optional(z.number()),
+        currency: z.string(),
+        decimals: z.number(),
+        description: z.optional(z.string()),
+        externalId: z.optional(z.string()),
+        recipient: z.optional(z.string()),
+      }),
+      z.transform(({ amount, chainId, decimals, ...rest }) => ({
+        ...rest,
+        amount: parseUnits(amount, decimals).toString(),
+        ...(chainId !== undefined ? { methodDetails: { chainId } } : {}),
+      }))
+    ),
+  },
+});

package/src/client/Charge.ts

@@ -0,0 +1,195 @@
+import type { Account, Address, Chain, Client } from "viem";
+import { Credential, Method, z } from "mppx";
+import { encodeFunctionData, erc20Abi } from "viem";
+import { parseAccount } from "viem/accounts";
+import { sendTransactionSync, signTypedData } from "viem/actions";
+
+import type { MaybePromise } from "../types.js";
+import * as defaults from "../defaults.js";
+import * as Methods from "../Methods.js";
+
+/**
+ * Creates a 0G charge method intent for usage on the client.
+ *
+ * @example
+ * ```ts
+ * import { zerog } from "@heraldprotocol/mpp/client";
+ * import { privateKeyToAccount } from "viem/accounts";
+ *
+ * const charge = zerog.charge({
+ *   account: privateKeyToAccount("0x..."),
+ * });
+ * ```
+ */
+export function charge(parameters: charge.Parameters = {}) {
+  const resolveAccount = (
+    client: Client,
+    override?: Account | Address | undefined
+  ): Account => {
+    const raw = override ?? parameters.account;
+    if (raw) return typeof raw === "string" ? parseAccount(raw) : raw;
+    if (client.account) return client.account;
+    throw new Error(
+      "No `account` provided. Pass `account` to parameters or context."
+    );
+  };
+
+  const resolveClient = async (
+    chainId?: number | undefined
+  ): Promise<Client> => {
+    if (parameters.getClient) return parameters.getClient({ chainId });
+    const id = chainId ?? defaults.chainId.mainnet;
+    const url = defaults.rpcUrl[id];
+    if (!url) throw new Error(`No RPC URL configured for chainId ${id}.`);
+    const { createClient, http } = await import("viem");
+    return createClient({ chain: { id } as Chain, transport: http(url) });
+  };
+
+  return Method.toClient(Methods.charge, {
+    context: z.object({
+      account: z.optional(z.custom<Account | Address>()),
+      mode: z.optional(z.enum(["push", "pull"])),
+    }),
+
+    async createCredential({ challenge, context }) {
+      const chainId = challenge.request.methodDetails?.chainId as
+        | number
+        | undefined;
+      const client = await resolveClient(chainId);
+      const account = resolveAccount(client, context?.account);
+
+      const mode =
+        context?.mode ??
+        parameters.mode ??
+        (account.type === "json-rpc" ? "push" : "pull");
+
+      const { request } = challenge;
+      const amount = BigInt(request.amount);
+      const currency = request.currency as Address;
+      const recipient = request.recipient as Address;
+
+      if (mode === "pull") {
+        const tokenMeta = defaults.erc3009Tokens[currency.toLowerCase()];
+        if (!tokenMeta) {
+          throw new Error(
+            `Token ${currency} does not support ERC-3009 (TransferWithAuthorization). ` +
+              `Cannot use pull mode.`
+          );
+        }
+
+        const resolvedChainId = chainId ?? client.chain?.id;
+        if (!resolvedChainId)
+          throw new Error("Could not determine chainId for EIP-712 domain.");
+
+        const { name: tokenName, version: tokenVersion } = tokenMeta;
+
+        const validAfter = 0n;
+        const validBefore = challenge.expires
+          ? BigInt(Math.floor(new Date(challenge.expires).getTime() / 1000))
+          : BigInt(Math.floor(Date.now() / 1000) + 3600); // 1 hour default
+        const nonce = randomNonce();
+
+        const signature = await signTypedData(client, {
+          account,
+          domain: {
+            name: tokenName,
+            version: tokenVersion,
+            chainId: resolvedChainId,
+            verifyingContract: currency,
+          },
+          types: {
+            TransferWithAuthorization: [
+              { name: "from", type: "address" },
+              { name: "to", type: "address" },
+              { name: "value", type: "uint256" },
+              { name: "validAfter", type: "uint256" },
+              { name: "validBefore", type: "uint256" },
+              { name: "nonce", type: "bytes32" },
+            ],
+          },
+          primaryType: "TransferWithAuthorization",
+          message: {
+            from: account.address,
+            to: recipient,
+            value: amount,
+            validAfter,
+            validBefore,
+            nonce,
+          },
+        });
+
+        return Credential.serialize({
+          challenge,
+          payload: {
+            type: "authorization" as const,
+            from: account.address,
+            to: recipient,
+            value: amount.toString(),
+            validAfter: validAfter.toString(),
+            validBefore: validBefore.toString(),
+            nonce,
+            signature,
+          },
+          source: `did:pkh:eip155:${resolvedChainId}:${account.address}`,
+        });
+      }
+
+      if (mode === "push") {
+        const receipt = await sendTransactionSync(client, {
+          account,
+          chain: client.chain,
+          to: currency,
+          data: encodeFunctionData({
+            abi: erc20Abi,
+            functionName: "transfer",
+            args: [recipient, amount],
+          }),
+        });
+        const hash = receipt.transactionHash;
+        return Credential.serialize({
+          challenge,
+          payload: { hash, type: "hash" },
+          source: `did:pkh:eip155:${chainId ?? client.chain?.id}:${account.address}`,
+        });
+      }
+
+      throw new Error(`Unsupported mode: ${mode}`);
+    },
+  });
+}
+
+export declare namespace charge {
+  type Parameters = {
+    /** Account to use for signing. */
+    account?: Account | Address | undefined;
+    /** Function that returns a viem Client for the given chain ID. */
+    getClient?:
+      | ((parameters: { chainId?: number | undefined }) => MaybePromise<Client>)
+      | undefined;
+    /**
+     * Controls how the charge transaction is submitted.
+     *
+     * - `'push'`: Client broadcasts the transaction and sends the tx hash.
+     * - `'pull'`: Client signs an ERC-3009 TransferWithAuthorization
+     *   message. Server calls `transferWithAuthorization` and pays gas.
+     *
+     * @default `'push'` for JSON-RPC accounts, `'pull'` for local accounts.
+     */
+    mode?: "push" | "pull" | undefined;
+  };
+}
+
+/** Generates a random 32-byte hex nonce. */
+function randomNonce(): `0x${string}` {
+  const bytes = new Uint8Array(32);
+  if (typeof crypto !== "undefined") {
+    crypto.getRandomValues(bytes);
+  } else if (typeof globalThis !== "undefined" && "crypto" in globalThis) {
+    (globalThis as unknown as { crypto: Crypto }).crypto.getRandomValues(bytes);
+  } else {
+    for (let i = 0; i < bytes.length; i++) {
+      bytes[i] = Math.floor(Math.random() * 256);
+    }
+  }
+  return `0x${[...bytes].map((b) => b.toString(16).padStart(2, "0")).join("")}`;
+}

package/src/client/Methods.ts

@@ -0,0 +1,29 @@
+import type { Method } from "mppx";
+
+import { charge as charge_ } from "./Charge.js";
+
+/**
+ * Creates a 0G `charge` client method.
+ *
+ * @example
+ * ```ts
+ * import { Mppx } from "mppx/client";
+ * import { zerog } from "@heraldprotocol/mpp/client";
+ *
+ * const mppx = Mppx.create({
+ *   methods: [zerog({ account })],
+ * });
+ * ```
+ */
+export function zerog(
+  parameters: zerog.Parameters = {}
+): readonly [Method.AnyClient] {
+  return [charge_(parameters)] as const;
+}
+
+export namespace zerog {
+  export type Parameters = charge_.Parameters;
+
+  /** Creates a 0G `charge` client method for one-time ERC-20 token transfers. */
+  export const charge = charge_;
+}

package/src/client/index.ts

@@ -0,0 +1,2 @@
+export { charge } from "./Charge.js";
+export { zerog } from "./Methods.js";