@ksefnik/http 0.0.1

package/LICENSE

@@ -0,0 +1,21 @@
+MIT License
+
+Copyright (c) 2026 CodeFormers-it
+
+Permission is hereby granted, free of charge, to any person obtaining a copy
+of this software and associated documentation files (the "Software"), to deal
+in the Software without restriction, including without limitation the rights
+to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
+copies of the Software, and to permit persons to whom the Software is
+furnished to do so, subject to the following conditions:
+
+The above copyright notice and this permission notice shall be included in all
+copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
+SOFTWARE.

package/README.md

@@ -0,0 +1,141 @@
+# @ksefnik/http
+
+Production HTTP client for **KSeF 2.0** (Krajowy System e-Faktur, Polish national e-invoicing system, live from 2026-02-01).
+
+Implements the `KsefClient` interface from `@ksefnik/core` against the real `api.ksef.mf.gov.pl` endpoints. Plug it into the `Ksefnik` facade via `createHttpAdapter(...)` and you get end-to-end invoice retrieval, reconciliation, and MCP-mediated automation with zero additional code in consumers.
+
+> **Research source of truth**: [CIRFMF/ksef-docs](https://github.com/CIRFMF/ksef-docs) — see [NOTES.md](./NOTES.md) for a summary of the auth flow, endpoint map, and rate limits used by this package.
+
+## Install
+
+```bash
+pnpm add @ksefnik/http @ksefnik/core @ksefnik/shared
+```
+
+## Usage
+
+```ts
+import { createKsefnik } from '@ksefnik/core'
+import { createHttpAdapter } from '@ksefnik/http'
+import { readFileSync } from 'node:fs'
+
+const adapter = createHttpAdapter({
+  nip: '7010002137',
+  token: process.env.KSEF_TOKEN!,
+  environment: 'production',
+  publicKeyPem: readFileSync('./ksef-public-key.pem', 'utf8'),
+})
+
+const ksef = createKsefnik({
+  config: { nip: '7010002137', environment: 'production', token: process.env.KSEF_TOKEN! },
+  adapter,
+})
+
+await adapter.initSession?.()
+const invoices = await ksef.invoices.fetch({ from: '2026-03-01', to: '2026-03-31' })
+await adapter.closeSession?.()
+```
+
+## Environments
+
+| Environment | Base URL |
+|---|---|
+| `production` | `https://api.ksef.mf.gov.pl/v2` |
+| `demo`       | `https://api-demo.ksef.mf.gov.pl/v2` |
+| `test`       | `https://api-test.ksef.mf.gov.pl/v2` |
+
+## Authentication flow (KSeF 2.0)
+
+1. `POST /auth/challenge` — server returns `{ challenge, timestamp }`.
+2. Client encrypts `"{ksefToken}|{timestamp}"` with RSA-OAEP SHA-256 using the MF public key.
+3. `POST /auth/ksef-token` — server returns `{ authenticationToken, referenceNumber }` (temporary JWT).
+4. `POST /auth/token/redeem` (`Authorization: Bearer <authenticationToken>`) — returns `{ accessToken, refreshToken }`.
+5. All subsequent calls use `Authorization: Bearer <accessToken>`.
+6. Before expiry the client transparently calls `POST /auth/token/refresh` with the refresh token.
+
+Crypto: **RSA-OAEP SHA-256 only**, implemented via `node:crypto` `webcrypto.subtle`. Zero external dependencies.
+
+## Error handling
+
+```ts
+import { KsefApiError, KsefAuthError, KsefRateLimitError } from '@ksefnik/http'
+
+try {
+  await ksef.invoices.fetch(...)
+} catch (error) {
+  if (error instanceof KsefAuthError) {
+    // 401/403 — refresh token expired, re-issue KSeF token in the portal
+  } else if (error instanceof KsefRateLimitError) {
+    // 429 — honour error.retryAfter (seconds) and retry
+  } else if (error instanceof KsefApiError) {
+    // 4xx/5xx with error.statusCode and error.detailCode
+  }
+}
+```
+
+The underlying `withRetry` from `@ksefnik/core` automatically retries `KsefRateLimitError` and `5xx` responses with exponential backoff.
+
+## Rate limits
+
+Per [limity-api.md](https://github.com/CIRFMF/ksef-docs/blob/main/limity/limity-api.md):
+
+| Endpoint | req/s | req/min | req/h |
+|---|---|---|---|
+| `POST /invoices/query/metadata` | 8 | 16 | 20 |
+| `GET /invoices/ksef/{ref}` | 8 | 16 | 64 |
+| Default | 10 | 30 | 120 |
+
+`fetchInvoices` uses `mapWithConcurrency(5)` by default to stay well within the bursting envelope.
+
+## Not implemented in MVP
+
+- `sendInvoice` — stub throws "not implemented".
+- `getUpo` — stub throws "not implemented".
+- Async export flow (`POST /invoices/exports` + polling) — v2.
+
+## Smoke test
+
+```bash
+KSEF_TEST_NIP=... \
+KSEF_TEST_TOKEN=... \
+KSEF_TEST_PUBLIC_KEY_PATH=./ksef-test-pub.pem \
+pnpm --filter @ksefnik/http smoke
+```
+
+The smoke script talks to `api-test.ksef.mf.gov.pl` for manual end-to-end verification. It is **not** run in CI.
+
+## Type generation from OpenAPI
+
+Types for every KSeF 2.0 request/response in `src/session.ts`, `src/invoices.ts`, and `src/public-key.ts` are **generated** from the live production contract via [openapi-typescript](https://github.com/openapi-ts/openapi-typescript). The hand-written runtime (HTTP layer, retry, error mapping, session orchestration) is kept, but the shapes themselves are single-source-of-truth from MF.
+
+```bash
+pnpm --filter @ksefnik/http generate
+```
+
+This fetches `https://api.ksef.mf.gov.pl/docs/v2/openapi.json` and writes `src/generated/ksef-api.ts` (≈10k lines, 253 schemas, 59 paths). The generated file is committed to git so the package builds without network access, but should be refreshed whenever MF publishes a spec change.
+
+### Workflow for contract changes
+
+1. `pnpm --filter @ksefnik/http generate` — pulls the latest contract
+2. `pnpm --filter @ksefnik/http build` — TypeScript flags any breaking changes at compile time (missing fields, renamed enums, nullability changes, etc.)
+3. Fix the callsites in `session.ts`/`invoices.ts`/`public-key.ts` until the build is green
+4. `pnpm --filter @ksefnik/http test` — unit + integration tests must stay green
+5. `KSEF_ENV=production pnpm --filter @ksefnik/http smoke` — live verification against the real API
+
+### What is generated vs hand-written
+
+| Layer | Source |
+|---|---|
+| Request/response shapes (challenge, ksef-token, redeem, refresh, auth status, query metadata, public-key certs) | **generated** — `src/generated/ksef-api.ts` re-exported via `src/generated/index.ts` |
+| Runtime HTTP client (`src/http.ts`) | hand-written — fetch, AbortSignal timeout, User-Agent, response parsing |
+| Error mapping to `KsefAuthError`/`KsefRateLimitError`/`KsefApiError` | hand-written — `src/errors.ts` + `src/http.ts` |
+| Retry with `Retry-After` honoring | hand-written — `src/retry.ts` |
+| Auth flow orchestration (challenge → ksef-token → polling → redeem → refresh) | hand-written — `src/session.ts` |
+| Pagination + `isTruncated` guard + concurrency | hand-written — `src/invoices.ts` |
+| `KsefHttpClient` facade implementing `@ksefnik/core` `KsefClient` interface | hand-written — `src/client.ts` |
+
+The generated file adds ~600KB to source control but adds **zero runtime cost** (pure `.d.ts`-style type exports — TSC erases them at build time).
+
+## License
+
+MIT. Part of the [ksefnik](../../README.md) monorepo.

package/dist/adapter.d.ts

@@ -0,0 +1,16 @@
+import type { KsefAdapter } from '@ksefnik/shared';
+import { type KsefHttpClientOptions } from './client.js';
+import type { KsefEnvironment } from './endpoints.js';
+export interface CreateHttpAdapterOpts {
+    nip: string;
+    token: string;
+    environment: KsefEnvironment;
+    /**
+     * Optional pinned MF RSA public key (PEM/SPKI). When omitted, the client
+     * fetches it from `GET /security/public-key-certificates` on first session.
+     */
+    publicKeyPem?: string;
+    client?: Partial<Omit<KsefHttpClientOptions, 'environment' | 'publicKeyPem'>>;
+}
+export declare function createHttpAdapter(opts: CreateHttpAdapterOpts): KsefAdapter;
+//# sourceMappingURL=adapter.d.ts.map

package/dist/adapter.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"adapter.d.ts","sourceRoot":"","sources":["../src/adapter.ts"],"names":[],"mappings":"AACA,OAAO,KAAK,EAAE,WAAW,EAAE,MAAM,iBAAiB,CAAA;AAElD,OAAO,EAAkB,KAAK,qBAAqB,EAAE,MAAM,aAAa,CAAA;AACxE,OAAO,KAAK,EAAE,eAAe,EAAE,MAAM,gBAAgB,CAAA;AAErD,MAAM,WAAW,qBAAqB;IACpC,GAAG,EAAE,MAAM,CAAA;IACX,KAAK,EAAE,MAAM,CAAA;IACb,WAAW,EAAE,eAAe,CAAA;IAC5B;;;OAGG;IACH,YAAY,CAAC,EAAE,MAAM,CAAA;IACrB,MAAM,CAAC,EAAE,OAAO,CAAC,IAAI,CAAC,qBAAqB,EAAE,aAAa,GAAG,cAAc,CAAC,CAAC,CAAA;CAC9E;AAED,wBAAgB,iBAAiB,CAAC,IAAI,EAAE,qBAAqB,GAAG,WAAW,CAc1E"}

package/dist/adapter.js

@@ -0,0 +1,19 @@
+import { KsefAdapterImpl } from '@ksefnik/core';
+import { KsefHttpClient } from './client.js';
+export function createHttpAdapter(opts) {
+    if (!opts.nip)
+        throw new Error('createHttpAdapter: nip is required');
+    if (!opts.token)
+        throw new Error('createHttpAdapter: token is required');
+    const client = new KsefHttpClient({
+        environment: opts.environment,
+        publicKeyPem: opts.publicKeyPem,
+        ...opts.client,
+    });
+    return new KsefAdapterImpl(client, {
+        nip: opts.nip,
+        environment: opts.environment,
+        token: opts.token,
+    });
+}
+//# sourceMappingURL=adapter.js.map

package/dist/adapter.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"adapter.js","sourceRoot":"","sources":["../src/adapter.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,eAAe,EAAE,MAAM,eAAe,CAAA;AAG/C,OAAO,EAAE,cAAc,EAA8B,MAAM,aAAa,CAAA;AAexE,MAAM,UAAU,iBAAiB,CAAC,IAA2B;IAC3D,IAAI,CAAC,IAAI,CAAC,GAAG;QAAE,MAAM,IAAI,KAAK,CAAC,oCAAoC,CAAC,CAAA;IACpE,IAAI,CAAC,IAAI,CAAC,KAAK;QAAE,MAAM,IAAI,KAAK,CAAC,sCAAsC,CAAC,CAAA;IAExE,MAAM,MAAM,GAAG,IAAI,cAAc,CAAC;QAChC,WAAW,EAAE,IAAI,CAAC,WAAW;QAC7B,YAAY,EAAE,IAAI,CAAC,YAAY;QAC/B,GAAG,IAAI,CAAC,MAAM;KACf,CAAC,CAAA;IACF,OAAO,IAAI,eAAe,CAAC,MAAM,EAAE;QACjC,GAAG,EAAE,IAAI,CAAC,GAAG;QACb,WAAW,EAAE,IAAI,CAAC,WAAW;QAC7B,KAAK,EAAE,IAAI,CAAC,KAAK;KAClB,CAAC,CAAA;AACJ,CAAC"}

package/dist/client.d.ts

@@ -0,0 +1,48 @@
+import { type HttpRetryOptions } from './retry.js';
+import type { KsefClient, KsefClientConfig, KsefSessionState, KsefRawInvoice } from '@ksefnik/core';
+import { type KsefEnvironment } from './endpoints.js';
+export interface KsefHttpClientOptions {
+    environment: KsefEnvironment;
+    /**
+     * MF RSA public key in PEM/SPKI format used for `/auth/ksef-token` encryption.
+     * If omitted, the client auto-fetches it from `GET /security/public-key-certificates`
+     * on first `initSession()` call and caches it for the lifetime of the client.
+     */
+    publicKeyPem?: string;
+    baseUrl?: string;
+    fetchImpl?: typeof fetch;
+    userAgent?: string;
+    timeoutMs?: number;
+    retry?: HttpRetryOptions;
+}
+export declare class KsefHttpClient implements KsefClient {
+    private readonly opts;
+    private readonly http;
+    private readonly retryOpts;
+    private cachedPublicKeyPem;
+    constructor(opts: KsefHttpClientOptions);
+    private resolvePublicKey;
+    initSession(config: KsefClientConfig): Promise<KsefSessionState>;
+    terminateSession(token: string): Promise<void>;
+    fetchInvoices(params: {
+        token: string;
+        dateFrom: string;
+        dateTo: string;
+        subjectNip?: string;
+        subjectType?: 'Subject1' | 'Subject2' | 'Subject3';
+        pageSize?: number;
+        pageOffset?: number;
+    }): Promise<{
+        invoices: KsefRawInvoice[];
+        total: number;
+    }>;
+    sendInvoice(): Promise<{
+        ksefReferenceNumber: string;
+        timestamp: string;
+    }>;
+    getUpo(): Promise<{
+        xml: string;
+        status: 'confirmed' | 'pending' | 'rejected';
+    }>;
+}
+//# sourceMappingURL=client.d.ts.map

package/dist/client.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"client.d.ts","sourceRoot":"","sources":["../src/client.ts"],"names":[],"mappings":"AAAA,OAAO,EAAiB,KAAK,gBAAgB,EAAE,MAAM,YAAY,CAAA;AACjE,OAAO,KAAK,EACV,UAAU,EACV,gBAAgB,EAChB,gBAAgB,EAChB,cAAc,EACf,MAAM,eAAe,CAAA;AAEtB,OAAO,EAAa,KAAK,eAAe,EAAE,MAAM,gBAAgB,CAAA;AAYhE,MAAM,WAAW,qBAAqB;IACpC,WAAW,EAAE,eAAe,CAAA;IAC5B;;;;OAIG;IACH,YAAY,CAAC,EAAE,MAAM,CAAA;IACrB,OAAO,CAAC,EAAE,MAAM,CAAA;IAChB,SAAS,CAAC,EAAE,OAAO,KAAK,CAAA;IACxB,SAAS,CAAC,EAAE,MAAM,CAAA;IAClB,SAAS,CAAC,EAAE,MAAM,CAAA;IAClB,KAAK,CAAC,EAAE,gBAAgB,CAAA;CACzB;AAkCD,qBAAa,cAAe,YAAW,UAAU;IAKnC,OAAO,CAAC,QAAQ,CAAC,IAAI;IAJjC,OAAO,CAAC,QAAQ,CAAC,IAAI,CAAY;IACjC,OAAO,CAAC,QAAQ,CAAC,SAAS,CAAkB;IAC5C,OAAO,CAAC,kBAAkB,CAAoB;gBAEjB,IAAI,EAAE,qBAAqB;YAY1C,gBAAgB;IAOxB,WAAW,CAAC,MAAM,EAAE,gBAAgB,GAAG,OAAO,CAAC,gBAAgB,CAAC;IAwBhE,gBAAgB,CAAC,KAAK,EAAE,MAAM,GAAG,OAAO,CAAC,IAAI,CAAC;IAM9C,aAAa,CAAC,MAAM,EAAE;QAC1B,KAAK,EAAE,MAAM,CAAA;QACb,QAAQ,EAAE,MAAM,CAAA;QAChB,MAAM,EAAE,MAAM,CAAA;QACd,UAAU,CAAC,EAAE,MAAM,CAAA;QACnB,WAAW,CAAC,EAAE,UAAU,GAAG,UAAU,GAAG,UAAU,CAAA;QAClD,QAAQ,CAAC,EAAE,MAAM,CAAA;QACjB,UAAU,CAAC,EAAE,MAAM,CAAA;KACpB,GAAG,OAAO,CAAC;QAAE,QAAQ,EAAE,cAAc,EAAE,CAAC;QAAC,KAAK,EAAE,MAAM,CAAA;KAAE,CAAC;IA4BpD,WAAW,IAAI,OAAO,CAAC;QAAE,mBAAmB,EAAE,MAAM,CAAC;QAAC,SAAS,EAAE,MAAM,CAAA;KAAE,CAAC;IAM1E,MAAM,IAAI,OAAO,CAAC;QAAE,GAAG,EAAE,MAAM,CAAC;QAAC,MAAM,EAAE,WAAW,GAAG,SAAS,GAAG,UAAU,CAAA;KAAE,CAAC;CAGvF"}

package/dist/client.js

@@ -0,0 +1,107 @@
+import { withHttpRetry } from './retry.js';
+import { ENDPOINTS } from './endpoints.js';
+import { HttpClient } from './http.js';
+import { initKsefSession, refreshAccessToken, revokeCurrentSession, shouldRefresh, } from './session.js';
+import { fetchInvoices as fetchInvoicesHttp } from './invoices.js';
+import { fetchKsefTokenEncryptionKey } from './public-key.js';
+/**
+ * Delimiter between fields of the encoded session token. JWTs (access and
+ * refresh tokens returned by KSeF 2.0) are base64url-encoded and cannot
+ * contain `||`, so this round-trips safely through `KsefClient.fetchInvoices`.
+ */
+const SESSION_TOKEN_SEPARATOR = '||';
+function encodeSessionToken(session) {
+    return [
+        'v1',
+        session.accessToken,
+        session.refreshToken,
+        session.accessExpiresAt.toISOString(),
+        session.referenceNumber,
+    ].join(SESSION_TOKEN_SEPARATOR);
+}
+function decodeSessionToken(token) {
+    const parts = token.split(SESSION_TOKEN_SEPARATOR);
+    if (parts.length !== 5 || parts[0] !== 'v1')
+        return null;
+    const [, accessToken, refreshToken, expiresAtIso, referenceNumber] = parts;
+    const accessExpiresAt = new Date(expiresAtIso);
+    if (Number.isNaN(accessExpiresAt.getTime()))
+        return null;
+    return { accessToken, refreshToken, accessExpiresAt, referenceNumber };
+}
+export class KsefHttpClient {
+    opts;
+    http;
+    retryOpts;
+    cachedPublicKeyPem;
+    constructor(opts) {
+        this.opts = opts;
+        const baseUrl = opts.baseUrl ?? ENDPOINTS[opts.environment];
+        this.http = new HttpClient({
+            baseUrl,
+            fetchImpl: opts.fetchImpl,
+            userAgent: opts.userAgent,
+            defaultTimeoutMs: opts.timeoutMs,
+        });
+        this.retryOpts = opts.retry ?? {};
+        this.cachedPublicKeyPem = opts.publicKeyPem;
+    }
+    async resolvePublicKey() {
+        if (this.cachedPublicKeyPem)
+            return this.cachedPublicKeyPem;
+        const pem = await fetchKsefTokenEncryptionKey(this.http);
+        this.cachedPublicKeyPem = pem;
+        return pem;
+    }
+    async initSession(config) {
+        if (!config.token) {
+            throw new Error('KsefHttpClient.initSession: config.token (KSeF token) is required');
+        }
+        const publicKeyPem = await this.resolvePublicKey();
+        const session = await withHttpRetry(() => initKsefSession(this.http, {
+            nip: config.nip,
+            ksefToken: config.token,
+            publicKeyPem,
+        }), this.retryOpts);
+        return {
+            token: encodeSessionToken(session),
+            nip: config.nip,
+            environment: config.environment,
+            expiresAt: session.accessExpiresAt,
+            referenceNumber: session.referenceNumber,
+        };
+    }
+    async terminateSession(token) {
+        const session = decodeSessionToken(token);
+        if (!session)
+            return;
+        await revokeCurrentSession(this.http, session);
+    }
+    async fetchInvoices(params) {
+        let session = decodeSessionToken(params.token);
+        if (!session) {
+            throw new Error('KsefHttpClient.fetchInvoices: invalid session token — expected the opaque ' +
+                'string returned by initSession() (format `v1||access||refresh||validUntil||ref`), ' +
+                'not a raw KSeF or JWT token');
+        }
+        if (shouldRefresh(session)) {
+            session = await withHttpRetry(() => refreshAccessToken(this.http, session), this.retryOpts);
+        }
+        const result = await withHttpRetry(() => fetchInvoicesHttp(this.http, {
+            accessToken: session.accessToken,
+            dateFrom: params.dateFrom,
+            dateTo: params.dateTo,
+            pageSize: params.pageSize,
+            pageOffset: params.pageOffset,
+            subjectType: params.subjectType ?? 'Subject2',
+        }), this.retryOpts);
+        return result;
+    }
+    async sendInvoice() {
+        throw new Error('KsefHttpClient.sendInvoice: not implemented in HTTP client MVP — see http_plan.md §H05.5');
+    }
+    async getUpo() {
+        throw new Error('KsefHttpClient.getUpo: not implemented in HTTP client MVP');
+    }
+}
+//# sourceMappingURL=client.js.map

package/dist/client.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"client.js","sourceRoot":"","sources":["../src/client.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,aAAa,EAAyB,MAAM,YAAY,CAAA;AAQjE,OAAO,EAAE,SAAS,EAAwB,MAAM,gBAAgB,CAAA;AAChE,OAAO,EAAE,UAAU,EAAE,MAAM,WAAW,CAAA;AACtC,OAAO,EACL,eAAe,EACf,kBAAkB,EAClB,oBAAoB,EACpB,aAAa,GAEd,MAAM,cAAc,CAAA;AACrB,OAAO,EAAE,aAAa,IAAI,iBAAiB,EAAE,MAAM,eAAe,CAAA;AAClE,OAAO,EAAE,2BAA2B,EAAE,MAAM,iBAAiB,CAAA;AAiB7D;;;;GAIG;AACH,MAAM,uBAAuB,GAAG,IAAI,CAAA;AAEpC,SAAS,kBAAkB,CAAC,OAAsB;IAChD,OAAO;QACL,IAAI;QACJ,OAAO,CAAC,WAAW;QACnB,OAAO,CAAC,YAAY;QACpB,OAAO,CAAC,eAAe,CAAC,WAAW,EAAE;QACrC,OAAO,CAAC,eAAe;KACxB,CAAC,IAAI,CAAC,uBAAuB,CAAC,CAAA;AACjC,CAAC;AAED,SAAS,kBAAkB,CAAC,KAAa;IACvC,MAAM,KAAK,GAAG,KAAK,CAAC,KAAK,CAAC,uBAAuB,CAAC,CAAA;IAClD,IAAI,KAAK,CAAC,MAAM,KAAK,CAAC,IAAI,KAAK,CAAC,CAAC,CAAC,KAAK,IAAI;QAAE,OAAO,IAAI,CAAA;IACxD,MAAM,CAAC,EAAE,WAAW,EAAE,YAAY,EAAE,YAAY,EAAE,eAAe,CAAC,GAAG,KAMpE,CAAA;IACD,MAAM,eAAe,GAAG,IAAI,IAAI,CAAC,YAAY,CAAC,CAAA;IAC9C,IAAI,MAAM,CAAC,KAAK,CAAC,eAAe,CAAC,OAAO,EAAE,CAAC;QAAE,OAAO,IAAI,CAAA;IACxD,OAAO,EAAE,WAAW,EAAE,YAAY,EAAE,eAAe,EAAE,eAAe,EAAE,CAAA;AACxE,CAAC;AAED,MAAM,OAAO,cAAc;IAKI;IAJZ,IAAI,CAAY;IAChB,SAAS,CAAkB;IACpC,kBAAkB,CAAoB;IAE9C,YAA6B,IAA2B;QAA3B,SAAI,GAAJ,IAAI,CAAuB;QACtD,MAAM,OAAO,GAAG,IAAI,CAAC,OAAO,IAAI,SAAS,CAAC,IAAI,CAAC,WAAW,CAAC,CAAA;QAC3D,IAAI,CAAC,IAAI,GAAG,IAAI,UAAU,CAAC;YACzB,OAAO;YACP,SAAS,EAAE,IAAI,CAAC,SAAS;YACzB,SAAS,EAAE,IAAI,CAAC,SAAS;YACzB,gBAAgB,EAAE,IAAI,CAAC,SAAS;SACjC,CAAC,CAAA;QACF,IAAI,CAAC,SAAS,GAAG,IAAI,CAAC,KAAK,IAAI,EAAE,CAAA;QACjC,IAAI,CAAC,kBAAkB,GAAG,IAAI,CAAC,YAAY,CAAA;IAC7C,CAAC;IAEO,KAAK,CAAC,gBAAgB;QAC5B,IAAI,IAAI,CAAC,kBAAkB;YAAE,OAAO,IAAI,CAAC,kBAAkB,CAAA;QAC3D,MAAM,GAAG,GAAG,MAAM,2BAA2B,CAAC,IAAI,CAAC,IAAI,CAAC,CAAA;QACxD,IAAI,CAAC,kBAAkB,GAAG,GAAG,CAAA;QAC7B,OAAO,GAAG,CAAA;IACZ,CAAC;IAED,KAAK,CAAC,WAAW,CAAC,MAAwB;QACxC,IAAI,CAAC,MAAM,CAAC,KAAK,EAAE,CAAC;YAClB,MAAM,IAAI,KAAK,CAAC,mEAAmE,CAAC,CAAA;QACtF,CAAC;QACD,MAAM,YAAY,GAAG,MAAM,IAAI,CAAC,gBAAgB,EAAE,CAAA;QAClD,MAAM,OAAO,GAAG,MAAM,aAAa,CACjC,GAAG,EAAE,CACH,eAAe,CAAC,IAAI,CAAC,IAAI,EAAE;YACzB,GAAG,EAAE,MAAM,CAAC,GAAG;YACf,SAAS,EAAE,MAAM,CAAC,KAAK;YACvB,YAAY;SACb,CAAC,EACJ,IAAI,CAAC,SAAS,CACf,CAAA;QAED,OAAO;YACL,KAAK,EAAE,kBAAkB,CAAC,OAAO,CAAC;YAClC,GAAG,EAAE,MAAM,CAAC,GAAG;YACf,WAAW,EAAE,MAAM,CAAC,WAAW;YAC/B,SAAS,EAAE,OAAO,CAAC,eAAe;YAClC,eAAe,EAAE,OAAO,CAAC,eAAe;SACzC,CAAA;IACH,CAAC;IAED,KAAK,CAAC,gBAAgB,CAAC,KAAa;QAClC,MAAM,OAAO,GAAG,kBAAkB,CAAC,KAAK,CAAC,CAAA;QACzC,IAAI,CAAC,OAAO;YAAE,OAAM;QACpB,MAAM,oBAAoB,CAAC,IAAI,CAAC,IAAI,EAAE,OAAO,CAAC,CAAA;IAChD,CAAC;IAED,KAAK,CAAC,aAAa,CAAC,MAQnB;QACC,IAAI,OAAO,GAAG,kBAAkB,CAAC,MAAM,CAAC,KAAK,CAAC,CAAA;QAC9C,IAAI,CAAC,OAAO,EAAE,CAAC;YACb,MAAM,IAAI,KAAK,CACb,4EAA4E;gBAC1E,oFAAoF;gBACpF,6BAA6B,CAChC,CAAA;QACH,CAAC;QACD,IAAI,aAAa,CAAC,OAAO,CAAC,EAAE,CAAC;YAC3B,OAAO,GAAG,MAAM,aAAa,CAAC,GAAG,EAAE,CAAC,kBAAkB,CAAC,IAAI,CAAC,IAAI,EAAE,OAAwB,CAAC,EAAE,IAAI,CAAC,SAAS,CAAC,CAAA;QAC9G,CAAC;QAED,MAAM,MAAM,GAAG,MAAM,aAAa,CAChC,GAAG,EAAE,CACH,iBAAiB,CAAC,IAAI,CAAC,IAAI,EAAE;YAC3B,WAAW,EAAG,OAAyB,CAAC,WAAW;YACnD,QAAQ,EAAE,MAAM,CAAC,QAAQ;YACzB,MAAM,EAAE,MAAM,CAAC,MAAM;YACrB,QAAQ,EAAE,MAAM,CAAC,QAAQ;YACzB,UAAU,EAAE,MAAM,CAAC,UAAU;YAC7B,WAAW,EAAE,MAAM,CAAC,WAAW,IAAI,UAAU;SAC9C,CAAC,EACJ,IAAI,CAAC,SAAS,CACf,CAAA;QACD,OAAO,MAAM,CAAA;IACf,CAAC;IAED,KAAK,CAAC,WAAW;QACf,MAAM,IAAI,KAAK,CACb,0FAA0F,CAC3F,CAAA;IACH,CAAC;IAED,KAAK,CAAC,MAAM;QACV,MAAM,IAAI,KAAK,CAAC,2DAA2D,CAAC,CAAA;IAC9E,CAAC;CACF"}

package/dist/crypto.d.ts

@@ -0,0 +1,22 @@
+/**
+ * Encrypts a payload with RSA-OAEP SHA-256 using the MF public key.
+ *
+ * Accepts either:
+ *  - a `-----BEGIN PUBLIC KEY-----` PEM (SubjectPublicKeyInfo), or
+ *  - a `-----BEGIN CERTIFICATE-----` PEM (X.509 certificate, as returned by
+ *    KSeF 2.0 `GET /security/public-key-certificates`).
+ *
+ * `node:crypto.createPublicKey` transparently handles both.
+ */
+export declare function rsaOaepEncrypt(plaintext: string | Uint8Array, publicKeyPemOrCert: string): string;
+/**
+ * Builds the KSeF 2.0 encryptedToken payload for `POST /auth/ksef-token`.
+ *
+ * Format: RSA-OAEP(SHA-256) over the UTF-8 bytes of `"{ksefToken}|{timestampMs}"`,
+ * base64-encoded. `timestampMs` MUST be the integer from `timestampMs` field
+ * of the `/auth/challenge` response (Unix epoch milliseconds), passed as a
+ * decimal string. Using the sibling `timestamp` ISO string is rejected by
+ * the server (verified against `api.ksef.mf.gov.pl/v2` 2026-04-11).
+ */
+export declare function buildEncryptedToken(ksefToken: string, timestampMs: string, publicKeyPemOrCert: string): string;
+//# sourceMappingURL=crypto.d.ts.map

package/dist/crypto.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"crypto.d.ts","sourceRoot":"","sources":["../src/crypto.ts"],"names":[],"mappings":"AAEA;;;;;;;;;GASG;AACH,wBAAgB,cAAc,CAC5B,SAAS,EAAE,MAAM,GAAG,UAAU,EAC9B,kBAAkB,EAAE,MAAM,GACzB,MAAM,CAQR;AAED;;;;;;;;GAQG;AACH,wBAAgB,mBAAmB,CACjC,SAAS,EAAE,MAAM,EACjB,WAAW,EAAE,MAAM,EACnB,kBAAkB,EAAE,MAAM,GACzB,MAAM,CAER"}

package/dist/crypto.js

@@ -0,0 +1,30 @@
+import { constants, createPublicKey, publicEncrypt } from 'node:crypto';
+/**
+ * Encrypts a payload with RSA-OAEP SHA-256 using the MF public key.
+ *
+ * Accepts either:
+ *  - a `-----BEGIN PUBLIC KEY-----` PEM (SubjectPublicKeyInfo), or
+ *  - a `-----BEGIN CERTIFICATE-----` PEM (X.509 certificate, as returned by
+ *    KSeF 2.0 `GET /security/public-key-certificates`).
+ *
+ * `node:crypto.createPublicKey` transparently handles both.
+ */
+export function rsaOaepEncrypt(plaintext, publicKeyPemOrCert) {
+    const key = createPublicKey(publicKeyPemOrCert);
+    const data = typeof plaintext === 'string' ? Buffer.from(plaintext, 'utf8') : Buffer.from(plaintext);
+    const encrypted = publicEncrypt({ key, padding: constants.RSA_PKCS1_OAEP_PADDING, oaepHash: 'sha256' }, data);
+    return encrypted.toString('base64');
+}
+/**
+ * Builds the KSeF 2.0 encryptedToken payload for `POST /auth/ksef-token`.
+ *
+ * Format: RSA-OAEP(SHA-256) over the UTF-8 bytes of `"{ksefToken}|{timestampMs}"`,
+ * base64-encoded. `timestampMs` MUST be the integer from `timestampMs` field
+ * of the `/auth/challenge` response (Unix epoch milliseconds), passed as a
+ * decimal string. Using the sibling `timestamp` ISO string is rejected by
+ * the server (verified against `api.ksef.mf.gov.pl/v2` 2026-04-11).
+ */
+export function buildEncryptedToken(ksefToken, timestampMs, publicKeyPemOrCert) {
+    return rsaOaepEncrypt(`${ksefToken}|${timestampMs}`, publicKeyPemOrCert);
+}
+//# sourceMappingURL=crypto.js.map

package/dist/crypto.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"crypto.js","sourceRoot":"","sources":["../src/crypto.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,SAAS,EAAE,eAAe,EAAE,aAAa,EAAE,MAAM,aAAa,CAAA;AAEvE;;;;;;;;;GASG;AACH,MAAM,UAAU,cAAc,CAC5B,SAA8B,EAC9B,kBAA0B;IAE1B,MAAM,GAAG,GAAG,eAAe,CAAC,kBAAkB,CAAC,CAAA;IAC/C,MAAM,IAAI,GAAG,OAAO,SAAS,KAAK,QAAQ,CAAC,CAAC,CAAC,MAAM,CAAC,IAAI,CAAC,SAAS,EAAE,MAAM,CAAC,CAAC,CAAC,CAAC,MAAM,CAAC,IAAI,CAAC,SAAS,CAAC,CAAA;IACpG,MAAM,SAAS,GAAG,aAAa,CAC7B,EAAE,GAAG,EAAE,OAAO,EAAE,SAAS,CAAC,sBAAsB,EAAE,QAAQ,EAAE,QAAQ,EAAE,EACtE,IAAI,CACL,CAAA;IACD,OAAO,SAAS,CAAC,QAAQ,CAAC,QAAQ,CAAC,CAAA;AACrC,CAAC;AAED;;;;;;;;GAQG;AACH,MAAM,UAAU,mBAAmB,CACjC,SAAiB,EACjB,WAAmB,EACnB,kBAA0B;IAE1B,OAAO,cAAc,CAAC,GAAG,SAAS,IAAI,WAAW,EAAE,EAAE,kBAAkB,CAAC,CAAA;AAC1E,CAAC"}

package/dist/endpoints.d.ts

@@ -0,0 +1,20 @@
+export declare const ENDPOINTS: {
+    readonly production: "https://api.ksef.mf.gov.pl/v2";
+    readonly demo: "https://api-demo.ksef.mf.gov.pl/v2";
+    readonly test: "https://api-test.ksef.mf.gov.pl/v2";
+};
+export type KsefEnvironment = keyof typeof ENDPOINTS;
+export declare const PATHS: {
+    readonly authChallenge: "/auth/challenge";
+    readonly authKsefToken: "/auth/ksef-token";
+    readonly authStatus: (referenceNumber: string) => string;
+    readonly authRedeem: "/auth/token/redeem";
+    readonly authRefresh: "/auth/token/refresh";
+    readonly sessionsList: "/auth/sessions";
+    readonly sessionRevokeCurrent: "/auth/sessions/current";
+    readonly sessionRevokeByRef: (referenceNumber: string) => string;
+    readonly queryMetadata: "/invoices/query/metadata";
+    readonly invoiceByKsefNumber: (ksefNumber: string) => string;
+    readonly publicKeyCertificates: "/security/public-key-certificates";
+};
+//# sourceMappingURL=endpoints.d.ts.map

package/dist/endpoints.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"endpoints.d.ts","sourceRoot":"","sources":["../src/endpoints.ts"],"names":[],"mappings":"AAAA,eAAO,MAAM,SAAS;;;;CAIZ,CAAA;AAEV,MAAM,MAAM,eAAe,GAAG,MAAM,OAAO,SAAS,CAAA;AAapD,eAAO,MAAM,KAAK;;;2CAGc,MAAM,KAAG,MAAM;;;;;mDAMP,MAAM,KAAG,MAAM;;+CAGnB,MAAM,KAAG,MAAM;;CAGzC,CAAA"}

package/dist/endpoints.js

@@ -0,0 +1,26 @@
+export const ENDPOINTS = {
+    production: 'https://api.ksef.mf.gov.pl/v2',
+    demo: 'https://api-demo.ksef.mf.gov.pl/v2',
+    test: 'https://api-test.ksef.mf.gov.pl/v2',
+};
+const SAFE_REF_RE = /^[A-Za-z0-9_-]{1,128}$/;
+function assertSafeReference(value, field) {
+    if (!SAFE_REF_RE.test(value)) {
+        throw new Error(`Invalid ${field}: must match ${SAFE_REF_RE.toString()} (got: ${JSON.stringify(value)})`);
+    }
+    return value;
+}
+export const PATHS = {
+    authChallenge: '/auth/challenge',
+    authKsefToken: '/auth/ksef-token',
+    authStatus: (referenceNumber) => `/auth/${assertSafeReference(referenceNumber, 'referenceNumber')}`,
+    authRedeem: '/auth/token/redeem',
+    authRefresh: '/auth/token/refresh',
+    sessionsList: '/auth/sessions',
+    sessionRevokeCurrent: '/auth/sessions/current',
+    sessionRevokeByRef: (referenceNumber) => `/auth/sessions/${assertSafeReference(referenceNumber, 'referenceNumber')}`,
+    queryMetadata: '/invoices/query/metadata',
+    invoiceByKsefNumber: (ksefNumber) => `/invoices/ksef/${assertSafeReference(ksefNumber, 'ksefNumber')}`,
+    publicKeyCertificates: '/security/public-key-certificates',
+};
+//# sourceMappingURL=endpoints.js.map

package/dist/endpoints.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"endpoints.js","sourceRoot":"","sources":["../src/endpoints.ts"],"names":[],"mappings":"AAAA,MAAM,CAAC,MAAM,SAAS,GAAG;IACvB,UAAU,EAAE,+BAA+B;IAC3C,IAAI,EAAE,oCAAoC;IAC1C,IAAI,EAAE,oCAAoC;CAClC,CAAA;AAIV,MAAM,WAAW,GAAG,wBAAwB,CAAA;AAE5C,SAAS,mBAAmB,CAAC,KAAa,EAAE,KAAa;IACvD,IAAI,CAAC,WAAW,CAAC,IAAI,CAAC,KAAK,CAAC,EAAE,CAAC;QAC7B,MAAM,IAAI,KAAK,CACb,WAAW,KAAK,gBAAgB,WAAW,CAAC,QAAQ,EAAE,UAAU,IAAI,CAAC,SAAS,CAAC,KAAK,CAAC,GAAG,CACzF,CAAA;IACH,CAAC;IACD,OAAO,KAAK,CAAA;AACd,CAAC;AAED,MAAM,CAAC,MAAM,KAAK,GAAG;IACnB,aAAa,EAAE,iBAAiB;IAChC,aAAa,EAAE,kBAAkB;IACjC,UAAU,EAAE,CAAC,eAAuB,EAAU,EAAE,CAC9C,SAAS,mBAAmB,CAAC,eAAe,EAAE,iBAAiB,CAAC,EAAE;IACpE,UAAU,EAAE,oBAAoB;IAChC,WAAW,EAAE,qBAAqB;IAClC,YAAY,EAAE,gBAAgB;IAC9B,oBAAoB,EAAE,wBAAwB;IAC9C,kBAAkB,EAAE,CAAC,eAAuB,EAAU,EAAE,CACtD,kBAAkB,mBAAmB,CAAC,eAAe,EAAE,iBAAiB,CAAC,EAAE;IAC7E,aAAa,EAAE,0BAA0B;IACzC,mBAAmB,EAAE,CAAC,UAAkB,EAAU,EAAE,CAClD,kBAAkB,mBAAmB,CAAC,UAAU,EAAE,YAAY,CAAC,EAAE;IACnE,qBAAqB,EAAE,mCAAmC;CAClD,CAAA"}

package/dist/errors.d.ts

@@ -0,0 +1,14 @@
+import { KsefApiError as SharedKsefApiError } from '@ksefnik/shared';
+export declare class KsefApiError extends SharedKsefApiError {
+    readonly requestId?: string | undefined;
+    readonly detailCode?: string | undefined;
+    constructor(message: string, statusCode?: number, requestId?: string | undefined, detailCode?: string | undefined, context?: Record<string, unknown>);
+}
+export declare class KsefAuthError extends KsefApiError {
+    constructor(message: string, statusCode: number, requestId?: string, detailCode?: string, context?: Record<string, unknown>);
+}
+export declare class KsefRateLimitError extends KsefApiError {
+    readonly retryAfter: number;
+    constructor(message: string, retryAfter: number, requestId?: string, context?: Record<string, unknown>);
+}
+//# sourceMappingURL=errors.d.ts.map

package/dist/errors.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"errors.d.ts","sourceRoot":"","sources":["../src/errors.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,YAAY,IAAI,kBAAkB,EAAE,MAAM,iBAAiB,CAAA;AAEpE,qBAAa,YAAa,SAAQ,kBAAkB;aAIhC,SAAS,CAAC,EAAE,MAAM;aAClB,UAAU,CAAC,EAAE,MAAM;gBAHnC,OAAO,EAAE,MAAM,EACf,UAAU,CAAC,EAAE,MAAM,EACH,SAAS,CAAC,EAAE,MAAM,YAAA,EAClB,UAAU,CAAC,EAAE,MAAM,YAAA,EACnC,OAAO,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC;CAKpC;AAED,qBAAa,aAAc,SAAQ,YAAY;gBAE3C,OAAO,EAAE,MAAM,EACf,UAAU,EAAE,MAAM,EAClB,SAAS,CAAC,EAAE,MAAM,EAClB,UAAU,CAAC,EAAE,MAAM,EACnB,OAAO,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC;CAKpC;AAED,qBAAa,kBAAmB,SAAQ,YAAY;aAGhC,UAAU,EAAE,MAAM;gBADlC,OAAO,EAAE,MAAM,EACC,UAAU,EAAE,MAAM,EAClC,SAAS,CAAC,EAAE,MAAM,EAClB,OAAO,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC;CAKpC"}

package/dist/errors.js

@@ -0,0 +1,26 @@
+import { KsefApiError as SharedKsefApiError } from '@ksefnik/shared';
+export class KsefApiError extends SharedKsefApiError {
+    requestId;
+    detailCode;
+    constructor(message, statusCode, requestId, detailCode, context) {
+        super(message, statusCode, context);
+        this.requestId = requestId;
+        this.detailCode = detailCode;
+        this.name = 'KsefApiError';
+    }
+}
+export class KsefAuthError extends KsefApiError {
+    constructor(message, statusCode, requestId, detailCode, context) {
+        super(message, statusCode, requestId, detailCode, context);
+        this.name = 'KsefAuthError';
+    }
+}
+export class KsefRateLimitError extends KsefApiError {
+    retryAfter;
+    constructor(message, retryAfter, requestId, context) {
+        super(message, 429, requestId, 'RATE_LIMIT', context);
+        this.retryAfter = retryAfter;
+        this.name = 'KsefRateLimitError';
+    }
+}
+//# sourceMappingURL=errors.js.map

package/dist/errors.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"errors.js","sourceRoot":"","sources":["../src/errors.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,YAAY,IAAI,kBAAkB,EAAE,MAAM,iBAAiB,CAAA;AAEpE,MAAM,OAAO,YAAa,SAAQ,kBAAkB;IAIhC;IACA;IAJlB,YACE,OAAe,EACf,UAAmB,EACH,SAAkB,EAClB,UAAmB,EACnC,OAAiC;QAEjC,KAAK,CAAC,OAAO,EAAE,UAAU,EAAE,OAAO,CAAC,CAAA;QAJnB,cAAS,GAAT,SAAS,CAAS;QAClB,eAAU,GAAV,UAAU,CAAS;QAInC,IAAI,CAAC,IAAI,GAAG,cAAc,CAAA;IAC5B,CAAC;CACF;AAED,MAAM,OAAO,aAAc,SAAQ,YAAY;IAC7C,YACE,OAAe,EACf,UAAkB,EAClB,SAAkB,EAClB,UAAmB,EACnB,OAAiC;QAEjC,KAAK,CAAC,OAAO,EAAE,UAAU,EAAE,SAAS,EAAE,UAAU,EAAE,OAAO,CAAC,CAAA;QAC1D,IAAI,CAAC,IAAI,GAAG,eAAe,CAAA;IAC7B,CAAC;CACF;AAED,MAAM,OAAO,kBAAmB,SAAQ,YAAY;IAGhC;IAFlB,YACE,OAAe,EACC,UAAkB,EAClC,SAAkB,EAClB,OAAiC;QAEjC,KAAK,CAAC,OAAO,EAAE,GAAG,EAAE,SAAS,EAAE,YAAY,EAAE,OAAO,CAAC,CAAA;QAJrC,eAAU,GAAV,UAAU,CAAQ;QAKlC,IAAI,CAAC,IAAI,GAAG,oBAAoB,CAAA;IAClC,CAAC;CACF"}

package/dist/generated/index.d.ts

@@ -0,0 +1,30 @@
+/**
+ * Re-exports from the openapi-typescript generated file. Consumers should
+ * import named type aliases from here rather than reaching into the raw
+ * `components["schemas"][...]` tree.
+ *
+ * Regenerate with: `pnpm --filter @ksefnik/http generate`
+ * Source of truth: https://api.ksef.mf.gov.pl/docs/v2/openapi.json
+ */
+import type { components } from './ksef-api.js';
+type Schemas = components['schemas'];
+export type KsefAuthenticationChallengeResponse = Schemas['AuthenticationChallengeResponse'];
+export type KsefInitTokenAuthenticationRequest = Schemas['InitTokenAuthenticationRequest'];
+export type KsefAuthenticationInitResponse = Schemas['AuthenticationInitResponse'];
+export type KsefAuthenticationOperationStatusResponse = Schemas['AuthenticationOperationStatusResponse'];
+export type KsefAuthenticationTokensResponse = Schemas['AuthenticationTokensResponse'];
+export type KsefAuthenticationTokenRefreshResponse = Schemas['AuthenticationTokenRefreshResponse'];
+export type KsefTokenInfo = Schemas['TokenInfo'];
+export type KsefAuthenticationContextIdentifier = Schemas['AuthenticationContextIdentifier'];
+export type KsefAuthenticationContextIdentifierType = Schemas['AuthenticationContextIdentifierType'];
+export type KsefPublicKeyCertificate = Schemas['PublicKeyCertificate'];
+export type KsefPublicKeyCertificateUsage = Schemas['PublicKeyCertificateUsage'];
+export type KsefInvoiceQueryFilters = Schemas['InvoiceQueryFilters'];
+export type KsefInvoiceQuerySubjectType = Schemas['InvoiceQuerySubjectType'];
+export type KsefInvoiceQueryDateType = Schemas['InvoiceQueryDateType'];
+export type KsefQueryInvoicesMetadataResponse = Schemas['QueryInvoicesMetadataResponse'];
+export type KsefInvoiceMetadata = Schemas['InvoiceMetadata'];
+export type KsefInvoiceMetadataBuyer = Schemas['InvoiceMetadataBuyer'];
+export type KsefInvoiceMetadataSeller = Schemas['InvoiceMetadataSeller'];
+export type { components, paths, operations } from './ksef-api.js';
+//# sourceMappingURL=index.d.ts.map

package/dist/generated/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/generated/index.ts"],"names":[],"mappings":"AAAA;;;;;;;GAOG;AACH,OAAO,KAAK,EAAE,UAAU,EAAE,MAAM,eAAe,CAAA;AAE/C,KAAK,OAAO,GAAG,UAAU,CAAC,SAAS,CAAC,CAAA;AAGpC,MAAM,MAAM,mCAAmC,GAAG,OAAO,CAAC,iCAAiC,CAAC,CAAA;AAC5F,MAAM,MAAM,kCAAkC,GAAG,OAAO,CAAC,gCAAgC,CAAC,CAAA;AAC1F,MAAM,MAAM,8BAA8B,GAAG,OAAO,CAAC,4BAA4B,CAAC,CAAA;AAClF,MAAM,MAAM,yCAAyC,GAAG,OAAO,CAAC,uCAAuC,CAAC,CAAA;AACxG,MAAM,MAAM,gCAAgC,GAAG,OAAO,CAAC,8BAA8B,CAAC,CAAA;AACtF,MAAM,MAAM,sCAAsC,GAAG,OAAO,CAAC,oCAAoC,CAAC,CAAA;AAClG,MAAM,MAAM,aAAa,GAAG,OAAO,CAAC,WAAW,CAAC,CAAA;AAChD,MAAM,MAAM,mCAAmC,GAAG,OAAO,CAAC,iCAAiC,CAAC,CAAA;AAC5F,MAAM,MAAM,uCAAuC,GAAG,OAAO,CAAC,qCAAqC,CAAC,CAAA;AAGpG,MAAM,MAAM,wBAAwB,GAAG,OAAO,CAAC,sBAAsB,CAAC,CAAA;AACtE,MAAM,MAAM,6BAA6B,GAAG,OAAO,CAAC,2BAA2B,CAAC,CAAA;AAGhF,MAAM,MAAM,uBAAuB,GAAG,OAAO,CAAC,qBAAqB,CAAC,CAAA;AACpE,MAAM,MAAM,2BAA2B,GAAG,OAAO,CAAC,yBAAyB,CAAC,CAAA;AAC5E,MAAM,MAAM,wBAAwB,GAAG,OAAO,CAAC,sBAAsB,CAAC,CAAA;AACtE,MAAM,MAAM,iCAAiC,GAAG,OAAO,CAAC,+BAA+B,CAAC,CAAA;AACxF,MAAM,MAAM,mBAAmB,GAAG,OAAO,CAAC,iBAAiB,CAAC,CAAA;AAC5D,MAAM,MAAM,wBAAwB,GAAG,OAAO,CAAC,sBAAsB,CAAC,CAAA;AACtE,MAAM,MAAM,yBAAyB,GAAG,OAAO,CAAC,uBAAuB,CAAC,CAAA;AAGxE,YAAY,EAAE,UAAU,EAAE,KAAK,EAAE,UAAU,EAAE,MAAM,eAAe,CAAA"}

package/dist/generated/index.js

@@ -0,0 +1,2 @@
+export {};
+//# sourceMappingURL=index.js.map

package/dist/generated/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../src/generated/index.ts"],"names":[],"mappings":""}