npm - @mixrpay/merchant-sdk - Versions diffs - 0.1.0 - Mend

@mixrpay/merchant-sdk 0.1.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (28) hide show

package/README.md +293 -0
package/dist/index.d.mts +291 -0
package/dist/index.d.ts +291 -0
package/dist/index.js +901 -0
package/dist/index.js.map +1 -0
package/dist/index.mjs +843 -0
package/dist/index.mjs.map +1 -0
package/dist/middleware/express.d.mts +57 -0
package/dist/middleware/express.d.ts +57 -0
package/dist/middleware/express.js +326 -0
package/dist/middleware/express.js.map +1 -0
package/dist/middleware/express.mjs +299 -0
package/dist/middleware/express.mjs.map +1 -0
package/dist/middleware/fastify.d.mts +56 -0
package/dist/middleware/fastify.d.ts +56 -0
package/dist/middleware/fastify.js +328 -0
package/dist/middleware/fastify.js.map +1 -0
package/dist/middleware/fastify.mjs +300 -0
package/dist/middleware/fastify.mjs.map +1 -0
package/dist/middleware/nextjs.d.mts +78 -0
package/dist/middleware/nextjs.d.ts +78 -0
package/dist/middleware/nextjs.js +346 -0
package/dist/middleware/nextjs.js.map +1 -0
package/dist/middleware/nextjs.mjs +320 -0
package/dist/middleware/nextjs.mjs.map +1 -0
package/dist/types-BJNy6Hhb.d.mts +166 -0
package/dist/types-BJNy6Hhb.d.ts +166 -0
package/package.json +91 -0

package/dist/middleware/fastify.mjs.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"sources":["../../src/verify.ts","../../src/utils.ts","../../src/receipt-fetcher.ts","../../src/middleware/fastify.ts"],"sourcesContent":["/**\n * MixrPay Merchant SDK - Payment Verification\n */\n\nimport { recoverTypedDataAddress } from 'viem';\nimport type { \n X402PaymentResult, \n X402PaymentPayload, \n VerifyOptions,\n TransferWithAuthorizationMessage,\n} from './types';\nimport { \n getUSDCDomain, \n TRANSFER_WITH_AUTHORIZATION_TYPES, \n base64Decode,\n minorToUsd,\n DEFAULT_FACILITATOR,\n} from './utils';\n\n// =============================================================================\n// Payment Verification\n// =============================================================================\n\n/**\n * Verify an X-PAYMENT header and optionally settle the payment.\n * \n * @param paymentHeader - The X-PAYMENT header value (base64 encoded JSON)\n * @param options - Verification options\n * @returns Payment verification result\n * \n * @example\n * ```typescript\n * const result = await verifyX402Payment(req.headers['x-payment'], {\n * expectedAmount: 50000n, // 0.05 USDC\n * expectedRecipient: '0x...',\n * });\n * \n * if (result.valid) {\n * console.log(`Payment from ${result.payer}: $${result.amount}`);\n * }\n * ```\n */\nexport async function verifyX402Payment(\n paymentHeader: string,\n options: VerifyOptions\n): Promise<X402PaymentResult> {\n try {\n // 1. Decode the X-PAYMENT header\n let decoded: X402PaymentPayload;\n try {\n const jsonStr = base64Decode(paymentHeader);\n decoded = JSON.parse(jsonStr);\n } catch (e) {\n return { valid: false, error: 'Invalid payment header encoding' };\n }\n\n // 2. Validate payload structure\n if (!decoded.payload?.authorization || !decoded.payload?.signature) {\n return { valid: false, error: 'Missing authorization or signature in payment' };\n }\n\n const { authorization, signature } = decoded.payload;\n const chainId = options.chainId || 8453;\n\n // 3. Build EIP-712 message for verification\n const message: TransferWithAuthorizationMessage = {\n from: authorization.from as `0x${string}`,\n to: authorization.to as `0x${string}`,\n value: BigInt(authorization.value),\n validAfter: BigInt(authorization.validAfter),\n validBefore: BigInt(authorization.validBefore),\n nonce: authorization.nonce as `0x${string}`,\n };\n\n // 4. Recover signer address\n const domain = getUSDCDomain(chainId);\n let signerAddress: string;\n \n try {\n signerAddress = await recoverTypedDataAddress({\n domain,\n types: TRANSFER_WITH_AUTHORIZATION_TYPES,\n primaryType: 'TransferWithAuthorization',\n message,\n signature: signature as `0x${string}`,\n });\n } catch (e) {\n return { valid: false, error: 'Failed to recover signer from signature' };\n }\n\n // 5. Verify signer matches the 'from' address\n if (signerAddress.toLowerCase() !== authorization.from.toLowerCase()) {\n return { \n valid: false, \n error: `Signature mismatch: expected ${authorization.from}, got ${signerAddress}` \n };\n }\n\n // 6. Verify payment amount\n const paymentAmount = BigInt(authorization.value);\n if (paymentAmount < options.expectedAmount) {\n return { \n valid: false, \n error: `Insufficient payment: expected ${options.expectedAmount}, got ${paymentAmount}` \n };\n }\n\n // 7. Verify recipient\n if (authorization.to.toLowerCase() !== options.expectedRecipient.toLowerCase()) {\n return { \n valid: false, \n error: `Wrong recipient: expected ${options.expectedRecipient}, got ${authorization.to}` \n };\n }\n\n // 8. Check expiration\n const now = Math.floor(Date.now() / 1000);\n if (Number(authorization.validBefore) < now) {\n return { valid: false, error: 'Payment authorization has expired' };\n }\n\n // 9. Check validAfter\n if (Number(authorization.validAfter) > now) {\n return { valid: false, error: 'Payment authorization is not yet valid' };\n }\n\n // 10. Submit to facilitator for settlement (unless skipped)\n let txHash: string | undefined;\n let settledAt: Date | undefined;\n\n if (!options.skipSettlement) {\n const facilitatorUrl = options.facilitator || DEFAULT_FACILITATOR;\n \n try {\n const settlementResponse = await fetch(`${facilitatorUrl}/settle`, {\n method: 'POST',\n headers: { 'Content-Type': 'application/json' },\n body: JSON.stringify({ \n authorization, \n signature,\n chainId,\n }),\n });\n\n if (!settlementResponse.ok) {\n const errorBody = await settlementResponse.text();\n let errorMessage = 'Settlement failed';\n try {\n const errorJson = JSON.parse(errorBody);\n errorMessage = errorJson.message || errorJson.error || errorMessage;\n } catch {\n errorMessage = errorBody || errorMessage;\n }\n return { valid: false, error: `Settlement failed: ${errorMessage}` };\n }\n\n const settlement = await settlementResponse.json() as { txHash?: string; tx_hash?: string };\n txHash = settlement.txHash || settlement.tx_hash;\n settledAt = new Date();\n } catch (e) {\n return { \n valid: false, \n error: `Settlement request failed: ${(e as Error).message}` \n };\n }\n }\n\n // Success!\n return {\n valid: true,\n payer: authorization.from,\n amount: minorToUsd(paymentAmount),\n amountMinor: paymentAmount,\n txHash,\n settledAt: settledAt || new Date(),\n nonce: authorization.nonce,\n };\n\n } catch (error) {\n return { \n valid: false, \n error: `Verification error: ${(error as Error).message}` \n };\n }\n}\n\n/**\n * Parse and validate an X-PAYMENT header without settlement.\n * Useful for checking if a payment is structurally valid before processing.\n */\nexport async function parseX402Payment(\n paymentHeader: string,\n chainId: number = 8453\n): Promise<{\n valid: boolean;\n error?: string;\n payer?: string;\n recipient?: string;\n amount?: number;\n amountMinor?: bigint;\n expiresAt?: Date;\n}> {\n try {\n const jsonStr = base64Decode(paymentHeader);\n const decoded: X402PaymentPayload = JSON.parse(jsonStr);\n\n if (!decoded.payload?.authorization) {\n return { valid: false, error: 'Missing authorization in payment' };\n }\n\n const { authorization, signature } = decoded.payload;\n\n // Verify signature\n const domain = getUSDCDomain(chainId);\n const message: TransferWithAuthorizationMessage = {\n from: authorization.from as `0x${string}`,\n to: authorization.to as `0x${string}`,\n value: BigInt(authorization.value),\n validAfter: BigInt(authorization.validAfter),\n validBefore: BigInt(authorization.validBefore),\n nonce: authorization.nonce as `0x${string}`,\n };\n\n const signerAddress = await recoverTypedDataAddress({\n domain,\n types: TRANSFER_WITH_AUTHORIZATION_TYPES,\n primaryType: 'TransferWithAuthorization',\n message,\n signature: signature as `0x${string}`,\n });\n\n if (signerAddress.toLowerCase() !== authorization.from.toLowerCase()) {\n return { valid: false, error: 'Signature mismatch' };\n }\n\n const amountMinor = BigInt(authorization.value);\n \n return {\n valid: true,\n payer: authorization.from,\n recipient: authorization.to,\n amount: minorToUsd(amountMinor),\n amountMinor,\n expiresAt: new Date(Number(authorization.validBefore) * 1000),\n };\n } catch (error) {\n return { valid: false, error: `Parse error: ${(error as Error).message}` };\n }\n}\n\n","/**\n * MixrPay Merchant SDK - Utilities\n */\n\nimport type { EIP712Domain } from './types';\n\n// =============================================================================\n// USDC Constants by Chain\n// =============================================================================\n\nexport const USDC_CONTRACTS: Record<number, `0x${string}`> = {\n 8453: '0x833589fCD6eDb6E08f4c7C32D4f71b54bdA02913', // Base Mainnet\n 84532: '0x036CbD53842c5426634e7929541eC2318f3dCF7e', // Base Sepolia\n};\n\nexport const DEFAULT_FACILITATOR = 'https://x402.org/facilitator';\n\n// =============================================================================\n// EIP-712 Domain\n// =============================================================================\n\nexport function getUSDCDomain(chainId: number): EIP712Domain {\n const verifyingContract = USDC_CONTRACTS[chainId];\n if (!verifyingContract) {\n throw new Error(`Unsupported chain ID: ${chainId}. Supported: ${Object.keys(USDC_CONTRACTS).join(', ')}`);\n }\n\n return {\n name: 'USD Coin',\n version: '2',\n chainId,\n verifyingContract,\n };\n}\n\n// EIP-712 types for TransferWithAuthorization\nexport const TRANSFER_WITH_AUTHORIZATION_TYPES = {\n TransferWithAuthorization: [\n { name: 'from', type: 'address' },\n { name: 'to', type: 'address' },\n { name: 'value', type: 'uint256' },\n { name: 'validAfter', type: 'uint256' },\n { name: 'validBefore', type: 'uint256' },\n { name: 'nonce', type: 'bytes32' },\n ],\n} as const;\n\n// =============================================================================\n// Utility Functions\n// =============================================================================\n\n/**\n * Convert USD dollars to USDC minor units (6 decimals)\n */\nexport function usdToMinor(usd: number): bigint {\n return BigInt(Math.round(usd * 1_000_000));\n}\n\n/**\n * Convert USDC minor units to USD dollars\n */\nexport function minorToUsd(minor: bigint): number {\n return Number(minor) / 1_000_000;\n}\n\n/**\n * Generate a random nonce for x402 payments\n */\nexport function generateNonce(): `0x${string}` {\n const bytes = new Uint8Array(32);\n crypto.getRandomValues(bytes);\n return `0x${Array.from(bytes).map(b => b.toString(16).padStart(2, '0')).join('')}` as `0x${string}`;\n}\n\n/**\n * Check if an address is valid\n */\nexport function isValidAddress(address: string): address is `0x${string}` {\n return /^0x[a-fA-F0-9]{40}$/.test(address);\n}\n\n/**\n * Normalize an address to lowercase checksum format\n */\nexport function normalizeAddress(address: string): `0x${string}` {\n if (!isValidAddress(address)) {\n throw new Error(`Invalid address: ${address}`);\n }\n return address.toLowerCase() as `0x${string}`;\n}\n\n/**\n * Safe base64 decode that works in both Node.js and browsers\n */\nexport function base64Decode(str: string): string {\n if (typeof Buffer !== 'undefined') {\n return Buffer.from(str, 'base64').toString('utf-8');\n }\n return atob(str);\n}\n\n/**\n * Safe base64 encode that works in both Node.js and browsers\n */\nexport function base64Encode(str: string): string {\n if (typeof Buffer !== 'undefined') {\n return Buffer.from(str, 'utf-8').toString('base64');\n }\n return btoa(str);\n}\n\n","/**\n * MixrPay Merchant SDK - Receipt Fetcher\n * \n * Internal utility to fetch JWT receipts from MixrPay API after settlement.\n * Used by x402 middleware to get receipts for the X-Payment-Receipt header.\n */\n\n// =============================================================================\n// Constants\n// =============================================================================\n\nconst DEFAULT_MIXRPAY_API_URL = process.env.MIXRPAY_BASE_URL || 'http://localhost:3000';\n\n// =============================================================================\n// Types\n// =============================================================================\n\nexport interface FetchReceiptParams {\n /** Settlement transaction hash */\n txHash: string;\n /** Payer address */\n payer: string;\n /** Recipient address */\n recipient: string;\n /** Amount in USDC minor units */\n amount: bigint;\n /** Chain ID */\n chainId: number;\n /** Custom MixrPay API URL (optional) */\n apiUrl?: string;\n}\n\ninterface ReceiptResponse {\n receipt: string;\n expiresAt: string;\n}\n\n// =============================================================================\n// Receipt Fetching\n// =============================================================================\n\n/**\n * Fetch a JWT payment receipt from MixrPay API.\n * \n * This is called by the x402 middleware after successful payment verification\n * when receiptMode is 'jwt' or 'both'.\n * \n * @param params - Receipt request parameters\n * @returns JWT receipt string, or null if not available\n */\nexport async function fetchPaymentReceipt(params: FetchReceiptParams): Promise<string | null> {\n const apiUrl = params.apiUrl || DEFAULT_MIXRPAY_API_URL;\n const endpoint = `${apiUrl}/api/v1/receipts`;\n\n try {\n const response = await fetch(endpoint, {\n method: 'POST',\n headers: {\n 'Content-Type': 'application/json',\n },\n body: JSON.stringify({\n tx_hash: params.txHash,\n payer: params.payer,\n recipient: params.recipient,\n amount: params.amount.toString(),\n chain_id: params.chainId,\n }),\n });\n\n if (!response.ok) {\n // Log but don't throw - receipt is optional\n console.warn(`[x402] Receipt fetch failed: ${response.status} ${response.statusText}`);\n return null;\n }\n\n const data = await response.json() as ReceiptResponse;\n return data.receipt || null;\n } catch (error) {\n // Log but don't throw - payment was successful, receipt is optional\n console.warn('[x402] Receipt fetch error:', (error as Error).message);\n return null;\n }\n}\n\n/**\n * Generate a local receipt for testing purposes.\n * \n * WARNING: This generates an unsigned receipt that will NOT verify.\n * Use only for local development and testing.\n * \n * @param params - Receipt parameters\n * @returns Mock JWT-like string (not cryptographically signed)\n */\nexport function generateMockReceipt(params: FetchReceiptParams): string {\n const header = {\n alg: 'none',\n typ: 'JWT',\n };\n\n const payload = {\n paymentId: `mock_${Date.now()}`,\n amount: params.amount.toString(),\n amountUsd: Number(params.amount) / 1_000_000,\n payer: params.payer,\n recipient: params.recipient,\n chainId: params.chainId,\n txHash: params.txHash,\n settledAt: new Date().toISOString(),\n iat: Math.floor(Date.now() / 1000),\n exp: Math.floor(Date.now() / 1000) + 3600,\n _mock: true,\n };\n\n const base64Header = Buffer.from(JSON.stringify(header)).toString('base64url');\n const base64Payload = Buffer.from(JSON.stringify(payload)).toString('base64url');\n\n // Mock signature (not cryptographically valid)\n return `${base64Header}.${base64Payload}.mock_signature_for_testing_only`;\n}\n\n","/**\n * MixrPay Merchant SDK - Fastify Plugin\n * \n * Add x402 payment requirement to Fastify routes.\n * \n * @example\n * ```typescript\n * import Fastify from 'fastify';\n * import { x402Plugin, x402 } from '@mixrpay/merchant-sdk/fastify';\n * \n * const app = Fastify();\n * \n * // Register the plugin\n * app.register(x402Plugin, { \n * recipient: '0x...', // or use MIXRPAY_MERCHANT_ADDRESS env var\n * });\n * \n * // Use on routes\n * app.post('/api/query', { preHandler: x402({ price: 0.05 }) }, async (req, reply) => {\n * return { result: 'success', payer: req.x402Payment?.payer };\n * });\n * \n * // With JWT receipts\n * app.post('/api/premium', { preHandler: x402({ price: 0.10, receiptMode: 'jwt' }) }, handler);\n * ```\n */\n\nimport type { FastifyInstance, FastifyRequest, FastifyReply, FastifyPluginCallback } from 'fastify';\nimport { verifyX402Payment } from '../verify';\nimport { usdToMinor, generateNonce, DEFAULT_FACILITATOR } from '../utils';\nimport { fetchPaymentReceipt } from '../receipt-fetcher';\nimport type { X402Options, X402PaymentResult, X402PaymentRequired, PriceContext } from '../types';\n\n// Extend Fastify types\ndeclare module 'fastify' {\n interface FastifyRequest {\n x402Payment?: X402PaymentResult;\n }\n}\n\nexport interface X402PluginOptions {\n /** Default recipient address (can be overridden per route) */\n recipient?: string;\n /** Default chain ID */\n chainId?: number;\n /** Default facilitator URL */\n facilitator?: string;\n}\n\n/**\n * Fastify plugin that adds x402 payment support.\n */\nexport const x402Plugin: FastifyPluginCallback<X402PluginOptions> = (\n fastify: FastifyInstance,\n options: X402PluginOptions,\n done: (err?: Error) => void\n) => {\n // Decorate request with x402Payment property\n fastify.decorateRequest('x402Payment', null);\n\n // Store default options\n fastify.decorate('x402Defaults', {\n recipient: options.recipient || process.env.MIXRPAY_MERCHANT_ADDRESS,\n chainId: options.chainId || 8453,\n facilitator: options.facilitator || DEFAULT_FACILITATOR,\n });\n\n done();\n};\n\n/**\n * Create a preHandler hook that requires x402 payment.\n * \n * @param options - x402 configuration options\n * @returns Fastify preHandler function\n */\nexport function x402(options: X402Options) {\n return async (request: FastifyRequest, reply: FastifyReply) => {\n // Build context for callbacks\n const context: PriceContext = {\n path: request.url,\n method: request.method,\n headers: request.headers as Record<string, string | string[] | undefined>,\n body: request.body,\n };\n\n // Check if we should skip payment\n if (options.skip) {\n const shouldSkip = await options.skip(context);\n if (shouldSkip) {\n return;\n }\n }\n\n // Get defaults from plugin or options\n const defaults = (request.server as unknown as { x402Defaults?: X402PluginOptions }).x402Defaults || {};\n const recipient = options.recipient || defaults.recipient || process.env.MIXRPAY_MERCHANT_ADDRESS;\n \n if (!recipient) {\n request.log.error('[x402] No recipient address configured');\n return reply.status(500).send({\n error: 'Payment configuration error',\n message: 'Merchant wallet address not configured',\n });\n }\n\n // Determine price\n const price = options.getPrice \n ? await options.getPrice(context) \n : options.price;\n \n const priceMinor = usdToMinor(price);\n const chainId = options.chainId || defaults.chainId || 8453;\n const facilitator = options.facilitator || defaults.facilitator || DEFAULT_FACILITATOR;\n\n // Check for X-PAYMENT header\n const paymentHeader = request.headers['x-payment'] as string | undefined;\n\n if (!paymentHeader) {\n // Return 402 with payment requirements\n const nonce = generateNonce();\n const expiresAt = Math.floor(Date.now() / 1000) + 300;\n\n const paymentRequired: X402PaymentRequired = {\n recipient,\n amount: priceMinor.toString(),\n currency: 'USDC',\n chainId,\n facilitator,\n nonce,\n expiresAt,\n description: options.description,\n };\n\n reply.header('X-Payment-Required', JSON.stringify(paymentRequired));\n reply.header('WWW-Authenticate', `X-402 ${Buffer.from(JSON.stringify(paymentRequired)).toString('base64')}`);\n\n return reply.status(402).send({\n error: 'Payment required',\n payment: paymentRequired,\n });\n }\n\n // Verify the payment\n const result = await verifyX402Payment(paymentHeader, {\n expectedAmount: priceMinor,\n expectedRecipient: recipient,\n chainId,\n facilitator,\n skipSettlement: options.testMode,\n });\n\n if (!result.valid) {\n return reply.status(402).send({\n error: 'Invalid payment',\n reason: result.error,\n });\n }\n\n // Payment verified! Attach to request\n request.x402Payment = result;\n\n // Set response header with tx hash\n if (result.txHash) {\n reply.header('X-Payment-TxHash', result.txHash);\n }\n\n // Handle receipt mode\n const receiptMode = options.receiptMode || 'webhook';\n \n if ((receiptMode === 'jwt' || receiptMode === 'both') && result.txHash && result.payer) {\n try {\n const receipt = await fetchPaymentReceipt({\n txHash: result.txHash,\n payer: result.payer,\n recipient,\n amount: priceMinor,\n chainId,\n apiUrl: options.mixrpayApiUrl,\n });\n \n if (receipt) {\n result.receipt = receipt;\n reply.header('X-Payment-Receipt', receipt);\n }\n } catch (receiptError) {\n request.log.warn({ err: receiptError }, '[x402] Failed to fetch JWT receipt');\n // Continue without receipt - payment was still successful\n }\n }\n\n // Call onPayment callback\n if (options.onPayment) {\n await options.onPayment(result);\n }\n\n // Continue to handler\n };\n}\n\nexport type { X402Options, X402PaymentResult };\n\n"],"mappings":";AAIA,SAAS,+BAA+B;;;ACMjC,IAAM,iBAAgD;AAAA,EAC3D,MAAM;AAAA;AAAA,EACN,OAAO;AAAA;AACT;AAEO,IAAM,sBAAsB;AAM5B,SAAS,cAAc,SAA+B;AAC3D,QAAM,oBAAoB,eAAe,OAAO;AAChD,MAAI,CAAC,mBAAmB;AACtB,UAAM,IAAI,MAAM,yBAAyB,OAAO,gBAAgB,OAAO,KAAK,cAAc,EAAE,KAAK,IAAI,CAAC,EAAE;AAAA,EAC1G;AAEA,SAAO;AAAA,IACL,MAAM;AAAA,IACN,SAAS;AAAA,IACT;AAAA,IACA;AAAA,EACF;AACF;AAGO,IAAM,oCAAoC;AAAA,EAC/C,2BAA2B;AAAA,IACzB,EAAE,MAAM,QAAQ,MAAM,UAAU;AAAA,IAChC,EAAE,MAAM,MAAM,MAAM,UAAU;AAAA,IAC9B,EAAE,MAAM,SAAS,MAAM,UAAU;AAAA,IACjC,EAAE,MAAM,cAAc,MAAM,UAAU;AAAA,IACtC,EAAE,MAAM,eAAe,MAAM,UAAU;AAAA,IACvC,EAAE,MAAM,SAAS,MAAM,UAAU;AAAA,EACnC;AACF;AASO,SAAS,WAAW,KAAqB;AAC9C,SAAO,OAAO,KAAK,MAAM,MAAM,GAAS,CAAC;AAC3C;AAKO,SAAS,WAAW,OAAuB;AAChD,SAAO,OAAO,KAAK,IAAI;AACzB;AAKO,SAAS,gBAA+B;AAC7C,QAAM,QAAQ,IAAI,WAAW,EAAE;AAC/B,SAAO,gBAAgB,KAAK;AAC5B,SAAO,KAAK,MAAM,KAAK,KAAK,EAAE,IAAI,OAAK,EAAE,SAAS,EAAE,EAAE,SAAS,GAAG,GAAG,CAAC,EAAE,KAAK,EAAE,CAAC;AAClF;AAsBO,SAAS,aAAa,KAAqB;AAChD,MAAI,OAAO,WAAW,aAAa;AACjC,WAAO,OAAO,KAAK,KAAK,QAAQ,EAAE,SAAS,OAAO;AAAA,EACpD;AACA,SAAO,KAAK,GAAG;AACjB;;;ADzDA,eAAsB,kBACpB,eACA,SAC4B;AAC5B,MAAI;AAEF,QAAI;AACJ,QAAI;AACF,YAAM,UAAU,aAAa,aAAa;AAC1C,gBAAU,KAAK,MAAM,OAAO;AAAA,IAC9B,SAAS,GAAG;AACV,aAAO,EAAE,OAAO,OAAO,OAAO,kCAAkC;AAAA,IAClE;AAGA,QAAI,CAAC,QAAQ,SAAS,iBAAiB,CAAC,QAAQ,SAAS,WAAW;AAClE,aAAO,EAAE,OAAO,OAAO,OAAO,gDAAgD;AAAA,IAChF;AAEA,UAAM,EAAE,eAAe,UAAU,IAAI,QAAQ;AAC7C,UAAM,UAAU,QAAQ,WAAW;AAGnC,UAAM,UAA4C;AAAA,MAChD,MAAM,cAAc;AAAA,MACpB,IAAI,cAAc;AAAA,MAClB,OAAO,OAAO,cAAc,KAAK;AAAA,MACjC,YAAY,OAAO,cAAc,UAAU;AAAA,MAC3C,aAAa,OAAO,cAAc,WAAW;AAAA,MAC7C,OAAO,cAAc;AAAA,IACvB;AAGA,UAAM,SAAS,cAAc,OAAO;AACpC,QAAI;AAEJ,QAAI;AACF,sBAAgB,MAAM,wBAAwB;AAAA,QAC5C;AAAA,QACA,OAAO;AAAA,QACP,aAAa;AAAA,QACb;AAAA,QACA;AAAA,MACF,CAAC;AAAA,IACH,SAAS,GAAG;AACV,aAAO,EAAE,OAAO,OAAO,OAAO,0CAA0C;AAAA,IAC1E;AAGA,QAAI,cAAc,YAAY,MAAM,cAAc,KAAK,YAAY,GAAG;AACpE,aAAO;AAAA,QACL,OAAO;AAAA,QACP,OAAO,gCAAgC,cAAc,IAAI,SAAS,aAAa;AAAA,MACjF;AAAA,IACF;AAGA,UAAM,gBAAgB,OAAO,cAAc,KAAK;AAChD,QAAI,gBAAgB,QAAQ,gBAAgB;AAC1C,aAAO;AAAA,QACL,OAAO;AAAA,QACP,OAAO,kCAAkC,QAAQ,cAAc,SAAS,aAAa;AAAA,MACvF;AAAA,IACF;AAGA,QAAI,cAAc,GAAG,YAAY,MAAM,QAAQ,kBAAkB,YAAY,GAAG;AAC9E,aAAO;AAAA,QACL,OAAO;AAAA,QACP,OAAO,6BAA6B,QAAQ,iBAAiB,SAAS,cAAc,EAAE;AAAA,MACxF;AAAA,IACF;AAGA,UAAM,MAAM,KAAK,MAAM,KAAK,IAAI,IAAI,GAAI;AACxC,QAAI,OAAO,cAAc,WAAW,IAAI,KAAK;AAC3C,aAAO,EAAE,OAAO,OAAO,OAAO,oCAAoC;AAAA,IACpE;AAGA,QAAI,OAAO,cAAc,UAAU,IAAI,KAAK;AAC1C,aAAO,EAAE,OAAO,OAAO,OAAO,yCAAyC;AAAA,IACzE;AAGA,QAAI;AACJ,QAAI;AAEJ,QAAI,CAAC,QAAQ,gBAAgB;AAC3B,YAAM,iBAAiB,QAAQ,eAAe;AAE9C,UAAI;AACF,cAAM,qBAAqB,MAAM,MAAM,GAAG,cAAc,WAAW;AAAA,UACjE,QAAQ;AAAA,UACR,SAAS,EAAE,gBAAgB,mBAAmB;AAAA,UAC9C,MAAM,KAAK,UAAU;AAAA,YACnB;AAAA,YACA;AAAA,YACA;AAAA,UACF,CAAC;AAAA,QACH,CAAC;AAED,YAAI,CAAC,mBAAmB,IAAI;AAC1B,gBAAM,YAAY,MAAM,mBAAmB,KAAK;AAChD,cAAI,eAAe;AACnB,cAAI;AACF,kBAAM,YAAY,KAAK,MAAM,SAAS;AACtC,2BAAe,UAAU,WAAW,UAAU,SAAS;AAAA,UACzD,QAAQ;AACN,2BAAe,aAAa;AAAA,UAC9B;AACA,iBAAO,EAAE,OAAO,OAAO,OAAO,sBAAsB,YAAY,GAAG;AAAA,QACrE;AAEA,cAAM,aAAa,MAAM,mBAAmB,KAAK;AACjD,iBAAS,WAAW,UAAU,WAAW;AACzC,oBAAY,oBAAI,KAAK;AAAA,MACvB,SAAS,GAAG;AACV,eAAO;AAAA,UACL,OAAO;AAAA,UACP,OAAO,8BAA+B,EAAY,OAAO;AAAA,QAC3D;AAAA,MACF;AAAA,IACF;AAGA,WAAO;AAAA,MACL,OAAO;AAAA,MACP,OAAO,cAAc;AAAA,MACrB,QAAQ,WAAW,aAAa;AAAA,MAChC,aAAa;AAAA,MACb;AAAA,MACA,WAAW,aAAa,oBAAI,KAAK;AAAA,MACjC,OAAO,cAAc;AAAA,IACvB;AAAA,EAEF,SAAS,OAAO;AACd,WAAO;AAAA,MACL,OAAO;AAAA,MACP,OAAO,uBAAwB,MAAgB,OAAO;AAAA,IACxD;AAAA,EACF;AACF;;;AE7KA,IAAM,0BAA0B,QAAQ,IAAI,oBAAoB;AAuChE,eAAsB,oBAAoB,QAAoD;AAC5F,QAAM,SAAS,OAAO,UAAU;AAChC,QAAM,WAAW,GAAG,MAAM;AAE1B,MAAI;AACF,UAAM,WAAW,MAAM,MAAM,UAAU;AAAA,MACrC,QAAQ;AAAA,MACR,SAAS;AAAA,QACP,gBAAgB;AAAA,MAClB;AAAA,MACA,MAAM,KAAK,UAAU;AAAA,QACnB,SAAS,OAAO;AAAA,QAChB,OAAO,OAAO;AAAA,QACd,WAAW,OAAO;AAAA,QAClB,QAAQ,OAAO,OAAO,SAAS;AAAA,QAC/B,UAAU,OAAO;AAAA,MACnB,CAAC;AAAA,IACH,CAAC;AAED,QAAI,CAAC,SAAS,IAAI;AAEhB,cAAQ,KAAK,gCAAgC,SAAS,MAAM,IAAI,SAAS,UAAU,EAAE;AACrF,aAAO;AAAA,IACT;AAEA,UAAM,OAAO,MAAM,SAAS,KAAK;AACjC,WAAO,KAAK,WAAW;AAAA,EACzB,SAAS,OAAO;AAEd,YAAQ,KAAK,+BAAgC,MAAgB,OAAO;AACpE,WAAO;AAAA,EACT;AACF;;;AC9BO,IAAM,aAAuD,CAClE,SACA,SACA,SACG;AAEH,UAAQ,gBAAgB,eAAe,IAAI;AAG3C,UAAQ,SAAS,gBAAgB;AAAA,IAC/B,WAAW,QAAQ,aAAa,QAAQ,IAAI;AAAA,IAC5C,SAAS,QAAQ,WAAW;AAAA,IAC5B,aAAa,QAAQ,eAAe;AAAA,EACtC,CAAC;AAED,OAAK;AACP;AAQO,SAAS,KAAK,SAAsB;AACzC,SAAO,OAAO,SAAyB,UAAwB;AAE7D,UAAM,UAAwB;AAAA,MAC5B,MAAM,QAAQ;AAAA,MACd,QAAQ,QAAQ;AAAA,MAChB,SAAS,QAAQ;AAAA,MACjB,MAAM,QAAQ;AAAA,IAChB;AAGA,QAAI,QAAQ,MAAM;AAChB,YAAM,aAAa,MAAM,QAAQ,KAAK,OAAO;AAC7C,UAAI,YAAY;AACd;AAAA,MACF;AAAA,IACF;AAGA,UAAM,WAAY,QAAQ,OAA2D,gBAAgB,CAAC;AACtG,UAAM,YAAY,QAAQ,aAAa,SAAS,aAAa,QAAQ,IAAI;AAEzE,QAAI,CAAC,WAAW;AACd,cAAQ,IAAI,MAAM,wCAAwC;AAC1D,aAAO,MAAM,OAAO,GAAG,EAAE,KAAK;AAAA,QAC5B,OAAO;AAAA,QACP,SAAS;AAAA,MACX,CAAC;AAAA,IACH;AAGA,UAAM,QAAQ,QAAQ,WAClB,MAAM,QAAQ,SAAS,OAAO,IAC9B,QAAQ;AAEZ,UAAM,aAAa,WAAW,KAAK;AACnC,UAAM,UAAU,QAAQ,WAAW,SAAS,WAAW;AACvD,UAAM,cAAc,QAAQ,eAAe,SAAS,eAAe;AAGnE,UAAM,gBAAgB,QAAQ,QAAQ,WAAW;AAEjD,QAAI,CAAC,eAAe;AAElB,YAAM,QAAQ,cAAc;AAC5B,YAAM,YAAY,KAAK,MAAM,KAAK,IAAI,IAAI,GAAI,IAAI;AAElD,YAAM,kBAAuC;AAAA,QAC3C;AAAA,QACA,QAAQ,WAAW,SAAS;AAAA,QAC5B,UAAU;AAAA,QACV;AAAA,QACA;AAAA,QACA;AAAA,QACA;AAAA,QACA,aAAa,QAAQ;AAAA,MACvB;AAEA,YAAM,OAAO,sBAAsB,KAAK,UAAU,eAAe,CAAC;AAClE,YAAM,OAAO,oBAAoB,SAAS,OAAO,KAAK,KAAK,UAAU,eAAe,CAAC,EAAE,SAAS,QAAQ,CAAC,EAAE;AAE3G,aAAO,MAAM,OAAO,GAAG,EAAE,KAAK;AAAA,QAC5B,OAAO;AAAA,QACP,SAAS;AAAA,MACX,CAAC;AAAA,IACH;AAGA,UAAM,SAAS,MAAM,kBAAkB,eAAe;AAAA,MACpD,gBAAgB;AAAA,MAChB,mBAAmB;AAAA,MACnB;AAAA,MACA;AAAA,MACA,gBAAgB,QAAQ;AAAA,IAC1B,CAAC;AAED,QAAI,CAAC,OAAO,OAAO;AACjB,aAAO,MAAM,OAAO,GAAG,EAAE,KAAK;AAAA,QAC5B,OAAO;AAAA,QACP,QAAQ,OAAO;AAAA,MACjB,CAAC;AAAA,IACH;AAGA,YAAQ,cAAc;AAGtB,QAAI,OAAO,QAAQ;AACjB,YAAM,OAAO,oBAAoB,OAAO,MAAM;AAAA,IAChD;AAGA,UAAM,cAAc,QAAQ,eAAe;AAE3C,SAAK,gBAAgB,SAAS,gBAAgB,WAAW,OAAO,UAAU,OAAO,OAAO;AACtF,UAAI;AACF,cAAM,UAAU,MAAM,oBAAoB;AAAA,UACxC,QAAQ,OAAO;AAAA,UACf,OAAO,OAAO;AAAA,UACd;AAAA,UACA,QAAQ;AAAA,UACR;AAAA,UACA,QAAQ,QAAQ;AAAA,QAClB,CAAC;AAED,YAAI,SAAS;AACX,iBAAO,UAAU;AACjB,gBAAM,OAAO,qBAAqB,OAAO;AAAA,QAC3C;AAAA,MACF,SAAS,cAAc;AACrB,gBAAQ,IAAI,KAAK,EAAE,KAAK,aAAa,GAAG,oCAAoC;AAAA,MAE9E;AAAA,IACF;AAGA,QAAI,QAAQ,WAAW;AACrB,YAAM,QAAQ,UAAU,MAAM;AAAA,IAChC;AAAA,EAGF;AACF;","names":[]}

package/dist/middleware/nextjs.d.mts ADDED Viewed

@@ -0,0 +1,78 @@
+import { NextRequest, NextResponse } from 'next/server';
+import { X as X402PaymentResult, R as ReceiptMode } from '../types-BJNy6Hhb.mjs';
+/**
+ * MixrPay Merchant SDK - Next.js Integration
+ *
+ * Add x402 payment requirement to Next.js API routes.
+ *
+ * @example
+ * ```typescript
+ * // app/api/query/route.ts
+ * import { withX402 } from '@mixrpay/merchant-sdk/nextjs';
+ *
+ * async function handler(req: NextRequest, payment: X402PaymentResult) {
+ *   // This handler only runs after payment is verified
+ *   return NextResponse.json({
+ *     result: 'success',
+ *     payer: payment.payer,
+ *     amount: payment.amount,
+ *   });
+ * }
+ *
+ * export const POST = withX402({ price: 0.05 }, handler);
+ *
+ * // With JWT receipts
+ * export const POST = withX402({ price: 0.10, receiptMode: 'jwt' }, handler);
+ * ```
+ */
+interface X402Config {
+    /** Price in USD (e.g., 0.05 for 5 cents) */
+    price: number;
+    /** Your merchant wallet address to receive payments */
+    recipient?: string;
+    /** Chain ID (default: 8453 for Base) */
+    chainId?: number;
+    /** Facilitator URL */
+    facilitator?: string;
+    /** Description of what the payment is for */
+    description?: string;
+    /** Skip payment verification (for testing) */
+    testMode?: boolean;
+    /** Custom function to determine price dynamically */
+    getPrice?: (req: NextRequest) => number | Promise<number>;
+    /** Called after successful payment */
+    onPayment?: (payment: X402PaymentResult, req: NextRequest) => void | Promise<void>;
+    /**
+     * Receipt mode for payment verification responses.
+     * - 'jwt': Set X-Payment-Receipt header with JWT (no webhook)
+     * - 'webhook': Send webhook only (default, backwards compatible)
+     * - 'both': Set JWT header AND send webhook
+     */
+    receiptMode?: ReceiptMode;
+    /** MixrPay API URL for fetching JWT receipts (default: production) */
+    mixrpayApiUrl?: string;
+}
+type X402Handler = (req: NextRequest, payment: X402PaymentResult) => Promise<NextResponse> | NextResponse;
+/**
+ * Wrap a Next.js API route handler with x402 payment requirement.
+ *
+ * @param config - x402 configuration
+ * @param handler - The handler to wrap (receives req and payment result)
+ * @returns Wrapped handler function
+ */
+declare function withX402(config: X402Config, handler: X402Handler): (req: NextRequest) => Promise<NextResponse>;
+/**
+ * Create a x402 payment requirements response.
+ * Useful for building custom payment flows.
+ */
+declare function createPaymentRequired(options: {
+    recipient: string;
+    amount: number;
+    chainId?: number;
+    facilitator?: string;
+    description?: string;
+}): NextResponse;
+export { type X402Config, X402PaymentResult, createPaymentRequired, withX402 };

package/dist/middleware/nextjs.d.ts ADDED Viewed

@@ -0,0 +1,78 @@
+import { NextRequest, NextResponse } from 'next/server';
+import { X as X402PaymentResult, R as ReceiptMode } from '../types-BJNy6Hhb.js';
+/**
+ * MixrPay Merchant SDK - Next.js Integration
+ *
+ * Add x402 payment requirement to Next.js API routes.
+ *
+ * @example
+ * ```typescript
+ * // app/api/query/route.ts
+ * import { withX402 } from '@mixrpay/merchant-sdk/nextjs';
+ *
+ * async function handler(req: NextRequest, payment: X402PaymentResult) {
+ *   // This handler only runs after payment is verified
+ *   return NextResponse.json({
+ *     result: 'success',
+ *     payer: payment.payer,
+ *     amount: payment.amount,
+ *   });
+ * }
+ *
+ * export const POST = withX402({ price: 0.05 }, handler);
+ *
+ * // With JWT receipts
+ * export const POST = withX402({ price: 0.10, receiptMode: 'jwt' }, handler);
+ * ```
+ */
+interface X402Config {
+    /** Price in USD (e.g., 0.05 for 5 cents) */
+    price: number;
+    /** Your merchant wallet address to receive payments */
+    recipient?: string;
+    /** Chain ID (default: 8453 for Base) */
+    chainId?: number;
+    /** Facilitator URL */
+    facilitator?: string;
+    /** Description of what the payment is for */
+    description?: string;
+    /** Skip payment verification (for testing) */
+    testMode?: boolean;
+    /** Custom function to determine price dynamically */
+    getPrice?: (req: NextRequest) => number | Promise<number>;
+    /** Called after successful payment */
+    onPayment?: (payment: X402PaymentResult, req: NextRequest) => void | Promise<void>;
+    /**
+     * Receipt mode for payment verification responses.
+     * - 'jwt': Set X-Payment-Receipt header with JWT (no webhook)
+     * - 'webhook': Send webhook only (default, backwards compatible)
+     * - 'both': Set JWT header AND send webhook
+     */
+    receiptMode?: ReceiptMode;
+    /** MixrPay API URL for fetching JWT receipts (default: production) */
+    mixrpayApiUrl?: string;
+}
+type X402Handler = (req: NextRequest, payment: X402PaymentResult) => Promise<NextResponse> | NextResponse;
+/**
+ * Wrap a Next.js API route handler with x402 payment requirement.
+ *
+ * @param config - x402 configuration
+ * @param handler - The handler to wrap (receives req and payment result)
+ * @returns Wrapped handler function
+ */
+declare function withX402(config: X402Config, handler: X402Handler): (req: NextRequest) => Promise<NextResponse>;
+/**
+ * Create a x402 payment requirements response.
+ * Useful for building custom payment flows.
+ */
+declare function createPaymentRequired(options: {
+    recipient: string;
+    amount: number;
+    chainId?: number;
+    facilitator?: string;
+    description?: string;
+}): NextResponse;
+export { type X402Config, X402PaymentResult, createPaymentRequired, withX402 };

package/dist/middleware/nextjs.js ADDED Viewed

@@ -0,0 +1,346 @@
+"use strict";
+var __defProp = Object.defineProperty;
+var __getOwnPropDesc = Object.getOwnPropertyDescriptor;
+var __getOwnPropNames = Object.getOwnPropertyNames;
+var __hasOwnProp = Object.prototype.hasOwnProperty;
+var __export = (target, all) => {
+  for (var name in all)
+    __defProp(target, name, { get: all[name], enumerable: true });
+};
+var __copyProps = (to, from, except, desc) => {
+  if (from && typeof from === "object" || typeof from === "function") {
+    for (let key of __getOwnPropNames(from))
+      if (!__hasOwnProp.call(to, key) && key !== except)
+        __defProp(to, key, { get: () => from[key], enumerable: !(desc = __getOwnPropDesc(from, key)) || desc.enumerable });
+  }
+  return to;
+};
+var __toCommonJS = (mod) => __copyProps(__defProp({}, "__esModule", { value: true }), mod);
+// src/middleware/nextjs.ts
+var nextjs_exports = {};
+__export(nextjs_exports, {
+  createPaymentRequired: () => createPaymentRequired,
+  withX402: () => withX402
+});
+module.exports = __toCommonJS(nextjs_exports);
+var import_server = require("next/server");
+// src/verify.ts
+var import_viem = require("viem");
+// src/utils.ts
+var USDC_CONTRACTS = {
+  8453: "0x833589fCD6eDb6E08f4c7C32D4f71b54bdA02913",
+  // Base Mainnet
+  84532: "0x036CbD53842c5426634e7929541eC2318f3dCF7e"
+  // Base Sepolia
+};
+var DEFAULT_FACILITATOR = "https://x402.org/facilitator";
+function getUSDCDomain(chainId) {
+  const verifyingContract = USDC_CONTRACTS[chainId];
+  if (!verifyingContract) {
+    throw new Error(`Unsupported chain ID: ${chainId}. Supported: ${Object.keys(USDC_CONTRACTS).join(", ")}`);
+  }
+  return {
+    name: "USD Coin",
+    version: "2",
+    chainId,
+    verifyingContract
+  };
+}
+var TRANSFER_WITH_AUTHORIZATION_TYPES = {
+  TransferWithAuthorization: [
+    { name: "from", type: "address" },
+    { name: "to", type: "address" },
+    { name: "value", type: "uint256" },
+    { name: "validAfter", type: "uint256" },
+    { name: "validBefore", type: "uint256" },
+    { name: "nonce", type: "bytes32" }
+  ]
+};
+function usdToMinor(usd) {
+  return BigInt(Math.round(usd * 1e6));
+}
+function minorToUsd(minor) {
+  return Number(minor) / 1e6;
+}
+function generateNonce() {
+  const bytes = new Uint8Array(32);
+  crypto.getRandomValues(bytes);
+  return `0x${Array.from(bytes).map((b) => b.toString(16).padStart(2, "0")).join("")}`;
+}
+function base64Decode(str) {
+  if (typeof Buffer !== "undefined") {
+    return Buffer.from(str, "base64").toString("utf-8");
+  }
+  return atob(str);
+}
+// src/verify.ts
+async function verifyX402Payment(paymentHeader, options) {
+  try {
+    let decoded;
+    try {
+      const jsonStr = base64Decode(paymentHeader);
+      decoded = JSON.parse(jsonStr);
+    } catch (e) {
+      return { valid: false, error: "Invalid payment header encoding" };
+    }
+    if (!decoded.payload?.authorization || !decoded.payload?.signature) {
+      return { valid: false, error: "Missing authorization or signature in payment" };
+    }
+    const { authorization, signature } = decoded.payload;
+    const chainId = options.chainId || 8453;
+    const message = {
+      from: authorization.from,
+      to: authorization.to,
+      value: BigInt(authorization.value),
+      validAfter: BigInt(authorization.validAfter),
+      validBefore: BigInt(authorization.validBefore),
+      nonce: authorization.nonce
+    };
+    const domain = getUSDCDomain(chainId);
+    let signerAddress;
+    try {
+      signerAddress = await (0, import_viem.recoverTypedDataAddress)({
+        domain,
+        types: TRANSFER_WITH_AUTHORIZATION_TYPES,
+        primaryType: "TransferWithAuthorization",
+        message,
+        signature
+      });
+    } catch (e) {
+      return { valid: false, error: "Failed to recover signer from signature" };
+    }
+    if (signerAddress.toLowerCase() !== authorization.from.toLowerCase()) {
+      return {
+        valid: false,
+        error: `Signature mismatch: expected ${authorization.from}, got ${signerAddress}`
+      };
+    }
+    const paymentAmount = BigInt(authorization.value);
+    if (paymentAmount < options.expectedAmount) {
+      return {
+        valid: false,
+        error: `Insufficient payment: expected ${options.expectedAmount}, got ${paymentAmount}`
+      };
+    }
+    if (authorization.to.toLowerCase() !== options.expectedRecipient.toLowerCase()) {
+      return {
+        valid: false,
+        error: `Wrong recipient: expected ${options.expectedRecipient}, got ${authorization.to}`
+      };
+    }
+    const now = Math.floor(Date.now() / 1e3);
+    if (Number(authorization.validBefore) < now) {
+      return { valid: false, error: "Payment authorization has expired" };
+    }
+    if (Number(authorization.validAfter) > now) {
+      return { valid: false, error: "Payment authorization is not yet valid" };
+    }
+    let txHash;
+    let settledAt;
+    if (!options.skipSettlement) {
+      const facilitatorUrl = options.facilitator || DEFAULT_FACILITATOR;
+      try {
+        const settlementResponse = await fetch(`${facilitatorUrl}/settle`, {
+          method: "POST",
+          headers: { "Content-Type": "application/json" },
+          body: JSON.stringify({
+            authorization,
+            signature,
+            chainId
+          })
+        });
+        if (!settlementResponse.ok) {
+          const errorBody = await settlementResponse.text();
+          let errorMessage = "Settlement failed";
+          try {
+            const errorJson = JSON.parse(errorBody);
+            errorMessage = errorJson.message || errorJson.error || errorMessage;
+          } catch {
+            errorMessage = errorBody || errorMessage;
+          }
+          return { valid: false, error: `Settlement failed: ${errorMessage}` };
+        }
+        const settlement = await settlementResponse.json();
+        txHash = settlement.txHash || settlement.tx_hash;
+        settledAt = /* @__PURE__ */ new Date();
+      } catch (e) {
+        return {
+          valid: false,
+          error: `Settlement request failed: ${e.message}`
+        };
+      }
+    }
+    return {
+      valid: true,
+      payer: authorization.from,
+      amount: minorToUsd(paymentAmount),
+      amountMinor: paymentAmount,
+      txHash,
+      settledAt: settledAt || /* @__PURE__ */ new Date(),
+      nonce: authorization.nonce
+    };
+  } catch (error) {
+    return {
+      valid: false,
+      error: `Verification error: ${error.message}`
+    };
+  }
+}
+// src/receipt-fetcher.ts
+var DEFAULT_MIXRPAY_API_URL = process.env.MIXRPAY_BASE_URL || "http://localhost:3000";
+async function fetchPaymentReceipt(params) {
+  const apiUrl = params.apiUrl || DEFAULT_MIXRPAY_API_URL;
+  const endpoint = `${apiUrl}/api/v1/receipts`;
+  try {
+    const response = await fetch(endpoint, {
+      method: "POST",
+      headers: {
+        "Content-Type": "application/json"
+      },
+      body: JSON.stringify({
+        tx_hash: params.txHash,
+        payer: params.payer,
+        recipient: params.recipient,
+        amount: params.amount.toString(),
+        chain_id: params.chainId
+      })
+    });
+    if (!response.ok) {
+      console.warn(`[x402] Receipt fetch failed: ${response.status} ${response.statusText}`);
+      return null;
+    }
+    const data = await response.json();
+    return data.receipt || null;
+  } catch (error) {
+    console.warn("[x402] Receipt fetch error:", error.message);
+    return null;
+  }
+}
+// src/middleware/nextjs.ts
+function withX402(config, handler) {
+  return async (req) => {
+    try {
+      const recipient = config.recipient || process.env.MIXRPAY_MERCHANT_ADDRESS;
+      if (!recipient) {
+        console.error("[x402] No recipient address configured");
+        return import_server.NextResponse.json(
+          { error: "Payment configuration error" },
+          { status: 500 }
+        );
+      }
+      const price = config.getPrice ? await config.getPrice(req) : config.price;
+      const priceMinor = usdToMinor(price);
+      const chainId = config.chainId || 8453;
+      const facilitator = config.facilitator || DEFAULT_FACILITATOR;
+      const paymentHeader = req.headers.get("x-payment");
+      if (!paymentHeader) {
+        const nonce = generateNonce();
+        const expiresAt = Math.floor(Date.now() / 1e3) + 300;
+        const paymentRequired = {
+          recipient,
+          amount: priceMinor.toString(),
+          currency: "USDC",
+          chainId,
+          facilitator,
+          nonce,
+          expiresAt,
+          description: config.description
+        };
+        return import_server.NextResponse.json(
+          { error: "Payment required", payment: paymentRequired },
+          {
+            status: 402,
+            headers: {
+              "X-Payment-Required": JSON.stringify(paymentRequired),
+              "WWW-Authenticate": `X-402 ${Buffer.from(JSON.stringify(paymentRequired)).toString("base64")}`
+            }
+          }
+        );
+      }
+      const result = await verifyX402Payment(paymentHeader, {
+        expectedAmount: priceMinor,
+        expectedRecipient: recipient,
+        chainId,
+        facilitator,
+        skipSettlement: config.testMode
+      });
+      if (!result.valid) {
+        return import_server.NextResponse.json(
+          { error: "Invalid payment", reason: result.error },
+          { status: 402 }
+        );
+      }
+      const receiptMode = config.receiptMode || "webhook";
+      if ((receiptMode === "jwt" || receiptMode === "both") && result.txHash && result.payer) {
+        try {
+          const receipt = await fetchPaymentReceipt({
+            txHash: result.txHash,
+            payer: result.payer,
+            recipient,
+            amount: priceMinor,
+            chainId,
+            apiUrl: config.mixrpayApiUrl
+          });
+          if (receipt) {
+            result.receipt = receipt;
+          }
+        } catch (receiptError) {
+          console.warn("[x402] Failed to fetch JWT receipt:", receiptError);
+        }
+      }
+      if (config.onPayment) {
+        await config.onPayment(result, req);
+      }
+      const response = await handler(req, result);
+      if (result.txHash) {
+        response.headers.set("X-Payment-TxHash", result.txHash);
+      }
+      if (result.receipt) {
+        response.headers.set("X-Payment-Receipt", result.receipt);
+      }
+      return response;
+    } catch (error) {
+      console.error("[x402] Handler error:", error);
+      return import_server.NextResponse.json(
+        { error: "Payment processing error" },
+        { status: 500 }
+      );
+    }
+  };
+}
+function createPaymentRequired(options) {
+  const priceMinor = usdToMinor(options.amount);
+  const nonce = generateNonce();
+  const expiresAt = Math.floor(Date.now() / 1e3) + 300;
+  const paymentRequired = {
+    recipient: options.recipient,
+    amount: priceMinor.toString(),
+    currency: "USDC",
+    chainId: options.chainId || 8453,
+    facilitator: options.facilitator || DEFAULT_FACILITATOR,
+    nonce,
+    expiresAt,
+    description: options.description
+  };
+  return import_server.NextResponse.json(
+    { error: "Payment required", payment: paymentRequired },
+    {
+      status: 402,
+      headers: {
+        "X-Payment-Required": JSON.stringify(paymentRequired)
+      }
+    }
+  );
+}
+// Annotate the CommonJS export names for ESM import in node:
+0 && (module.exports = {
+  createPaymentRequired,
+  withX402
+});
+//# sourceMappingURL=nextjs.js.map

package/dist/middleware/nextjs.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"sources":["../../src/middleware/nextjs.ts","../../src/verify.ts","../../src/utils.ts","../../src/receipt-fetcher.ts"],"sourcesContent":["/**\n * MixrPay Merchant SDK - Next.js Integration\n * \n * Add x402 payment requirement to Next.js API routes.\n * \n * @example\n * ```typescript\n * // app/api/query/route.ts\n * import { withX402 } from '@mixrpay/merchant-sdk/nextjs';\n * \n * async function handler(req: NextRequest, payment: X402PaymentResult) {\n * // This handler only runs after payment is verified\n * return NextResponse.json({ \n * result: 'success', \n * payer: payment.payer,\n * amount: payment.amount,\n * });\n * }\n * \n * export const POST = withX402({ price: 0.05 }, handler);\n * \n * // With JWT receipts\n * export const POST = withX402({ price: 0.10, receiptMode: 'jwt' }, handler);\n * ```\n */\n\nimport type { NextRequest } from 'next/server';\nimport { NextResponse } from 'next/server';\nimport { verifyX402Payment } from '../verify';\nimport { usdToMinor, generateNonce, DEFAULT_FACILITATOR } from '../utils';\nimport { fetchPaymentReceipt } from '../receipt-fetcher';\nimport type { X402Options, X402PaymentResult, X402PaymentRequired, PriceContext, ReceiptMode } from '../types';\n\nexport interface X402Config {\n /** Price in USD (e.g., 0.05 for 5 cents) */\n price: number;\n /** Your merchant wallet address to receive payments */\n recipient?: string;\n /** Chain ID (default: 8453 for Base) */\n chainId?: number;\n /** Facilitator URL */\n facilitator?: string;\n /** Description of what the payment is for */\n description?: string;\n /** Skip payment verification (for testing) */\n testMode?: boolean;\n /** Custom function to determine price dynamically */\n getPrice?: (req: NextRequest) => number | Promise<number>;\n /** Called after successful payment */\n onPayment?: (payment: X402PaymentResult, req: NextRequest) => void | Promise<void>;\n /**\n * Receipt mode for payment verification responses.\n * - 'jwt': Set X-Payment-Receipt header with JWT (no webhook)\n * - 'webhook': Send webhook only (default, backwards compatible)\n * - 'both': Set JWT header AND send webhook\n */\n receiptMode?: ReceiptMode;\n /** MixrPay API URL for fetching JWT receipts (default: production) */\n mixrpayApiUrl?: string;\n}\n\ntype X402Handler = (req: NextRequest, payment: X402PaymentResult) => Promise<NextResponse> | NextResponse;\n\n/**\n * Wrap a Next.js API route handler with x402 payment requirement.\n * \n * @param config - x402 configuration\n * @param handler - The handler to wrap (receives req and payment result)\n * @returns Wrapped handler function\n */\nexport function withX402(config: X402Config, handler: X402Handler) {\n return async (req: NextRequest): Promise<NextResponse> => {\n try {\n // Get recipient address\n const recipient = config.recipient || process.env.MIXRPAY_MERCHANT_ADDRESS;\n if (!recipient) {\n console.error('[x402] No recipient address configured');\n return NextResponse.json(\n { error: 'Payment configuration error' },\n { status: 500 }\n );\n }\n\n // Determine price\n const price = config.getPrice \n ? await config.getPrice(req)\n : config.price;\n \n const priceMinor = usdToMinor(price);\n const chainId = config.chainId || 8453;\n const facilitator = config.facilitator || DEFAULT_FACILITATOR;\n\n // Check for X-PAYMENT header\n const paymentHeader = req.headers.get('x-payment');\n\n if (!paymentHeader) {\n // Return 402 with payment requirements\n const nonce = generateNonce();\n const expiresAt = Math.floor(Date.now() / 1000) + 300;\n\n const paymentRequired: X402PaymentRequired = {\n recipient,\n amount: priceMinor.toString(),\n currency: 'USDC',\n chainId,\n facilitator,\n nonce,\n expiresAt,\n description: config.description,\n };\n\n return NextResponse.json(\n { error: 'Payment required', payment: paymentRequired },\n { \n status: 402,\n headers: {\n 'X-Payment-Required': JSON.stringify(paymentRequired),\n 'WWW-Authenticate': `X-402 ${Buffer.from(JSON.stringify(paymentRequired)).toString('base64')}`,\n },\n }\n );\n }\n\n // Verify the payment\n const result = await verifyX402Payment(paymentHeader, {\n expectedAmount: priceMinor,\n expectedRecipient: recipient,\n chainId,\n facilitator,\n skipSettlement: config.testMode,\n });\n\n if (!result.valid) {\n return NextResponse.json(\n { error: 'Invalid payment', reason: result.error },\n { status: 402 }\n );\n }\n\n // Handle receipt mode\n const receiptMode = config.receiptMode || 'webhook';\n \n if ((receiptMode === 'jwt' || receiptMode === 'both') && result.txHash && result.payer) {\n try {\n const receipt = await fetchPaymentReceipt({\n txHash: result.txHash,\n payer: result.payer,\n recipient,\n amount: priceMinor,\n chainId,\n apiUrl: config.mixrpayApiUrl,\n });\n \n if (receipt) {\n result.receipt = receipt;\n }\n } catch (receiptError) {\n console.warn('[x402] Failed to fetch JWT receipt:', receiptError);\n // Continue without receipt - payment was still successful\n }\n }\n\n // Call onPayment callback\n if (config.onPayment) {\n await config.onPayment(result, req);\n }\n\n // Call the handler with payment result\n const response = await handler(req, result);\n\n // Add tx hash to response headers\n if (result.txHash) {\n response.headers.set('X-Payment-TxHash', result.txHash);\n }\n\n // Add receipt to response headers\n if (result.receipt) {\n response.headers.set('X-Payment-Receipt', result.receipt);\n }\n\n return response;\n } catch (error) {\n console.error('[x402] Handler error:', error);\n return NextResponse.json(\n { error: 'Payment processing error' },\n { status: 500 }\n );\n }\n };\n}\n\n/**\n * Create a x402 payment requirements response.\n * Useful for building custom payment flows.\n */\nexport function createPaymentRequired(options: {\n recipient: string;\n amount: number;\n chainId?: number;\n facilitator?: string;\n description?: string;\n}): NextResponse {\n const priceMinor = usdToMinor(options.amount);\n const nonce = generateNonce();\n const expiresAt = Math.floor(Date.now() / 1000) + 300;\n\n const paymentRequired: X402PaymentRequired = {\n recipient: options.recipient,\n amount: priceMinor.toString(),\n currency: 'USDC',\n chainId: options.chainId || 8453,\n facilitator: options.facilitator || DEFAULT_FACILITATOR,\n nonce,\n expiresAt,\n description: options.description,\n };\n\n return NextResponse.json(\n { error: 'Payment required', payment: paymentRequired },\n { \n status: 402,\n headers: {\n 'X-Payment-Required': JSON.stringify(paymentRequired),\n },\n }\n );\n}\n\nexport type { X402PaymentResult };\n\n","/**\n * MixrPay Merchant SDK - Payment Verification\n */\n\nimport { recoverTypedDataAddress } from 'viem';\nimport type { \n X402PaymentResult, \n X402PaymentPayload, \n VerifyOptions,\n TransferWithAuthorizationMessage,\n} from './types';\nimport { \n getUSDCDomain, \n TRANSFER_WITH_AUTHORIZATION_TYPES, \n base64Decode,\n minorToUsd,\n DEFAULT_FACILITATOR,\n} from './utils';\n\n// =============================================================================\n// Payment Verification\n// =============================================================================\n\n/**\n * Verify an X-PAYMENT header and optionally settle the payment.\n * \n * @param paymentHeader - The X-PAYMENT header value (base64 encoded JSON)\n * @param options - Verification options\n * @returns Payment verification result\n * \n * @example\n * ```typescript\n * const result = await verifyX402Payment(req.headers['x-payment'], {\n * expectedAmount: 50000n, // 0.05 USDC\n * expectedRecipient: '0x...',\n * });\n * \n * if (result.valid) {\n * console.log(`Payment from ${result.payer}: $${result.amount}`);\n * }\n * ```\n */\nexport async function verifyX402Payment(\n paymentHeader: string,\n options: VerifyOptions\n): Promise<X402PaymentResult> {\n try {\n // 1. Decode the X-PAYMENT header\n let decoded: X402PaymentPayload;\n try {\n const jsonStr = base64Decode(paymentHeader);\n decoded = JSON.parse(jsonStr);\n } catch (e) {\n return { valid: false, error: 'Invalid payment header encoding' };\n }\n\n // 2. Validate payload structure\n if (!decoded.payload?.authorization || !decoded.payload?.signature) {\n return { valid: false, error: 'Missing authorization or signature in payment' };\n }\n\n const { authorization, signature } = decoded.payload;\n const chainId = options.chainId || 8453;\n\n // 3. Build EIP-712 message for verification\n const message: TransferWithAuthorizationMessage = {\n from: authorization.from as `0x${string}`,\n to: authorization.to as `0x${string}`,\n value: BigInt(authorization.value),\n validAfter: BigInt(authorization.validAfter),\n validBefore: BigInt(authorization.validBefore),\n nonce: authorization.nonce as `0x${string}`,\n };\n\n // 4. Recover signer address\n const domain = getUSDCDomain(chainId);\n let signerAddress: string;\n \n try {\n signerAddress = await recoverTypedDataAddress({\n domain,\n types: TRANSFER_WITH_AUTHORIZATION_TYPES,\n primaryType: 'TransferWithAuthorization',\n message,\n signature: signature as `0x${string}`,\n });\n } catch (e) {\n return { valid: false, error: 'Failed to recover signer from signature' };\n }\n\n // 5. Verify signer matches the 'from' address\n if (signerAddress.toLowerCase() !== authorization.from.toLowerCase()) {\n return { \n valid: false, \n error: `Signature mismatch: expected ${authorization.from}, got ${signerAddress}` \n };\n }\n\n // 6. Verify payment amount\n const paymentAmount = BigInt(authorization.value);\n if (paymentAmount < options.expectedAmount) {\n return { \n valid: false, \n error: `Insufficient payment: expected ${options.expectedAmount}, got ${paymentAmount}` \n };\n }\n\n // 7. Verify recipient\n if (authorization.to.toLowerCase() !== options.expectedRecipient.toLowerCase()) {\n return { \n valid: false, \n error: `Wrong recipient: expected ${options.expectedRecipient}, got ${authorization.to}` \n };\n }\n\n // 8. Check expiration\n const now = Math.floor(Date.now() / 1000);\n if (Number(authorization.validBefore) < now) {\n return { valid: false, error: 'Payment authorization has expired' };\n }\n\n // 9. Check validAfter\n if (Number(authorization.validAfter) > now) {\n return { valid: false, error: 'Payment authorization is not yet valid' };\n }\n\n // 10. Submit to facilitator for settlement (unless skipped)\n let txHash: string | undefined;\n let settledAt: Date | undefined;\n\n if (!options.skipSettlement) {\n const facilitatorUrl = options.facilitator || DEFAULT_FACILITATOR;\n \n try {\n const settlementResponse = await fetch(`${facilitatorUrl}/settle`, {\n method: 'POST',\n headers: { 'Content-Type': 'application/json' },\n body: JSON.stringify({ \n authorization, \n signature,\n chainId,\n }),\n });\n\n if (!settlementResponse.ok) {\n const errorBody = await settlementResponse.text();\n let errorMessage = 'Settlement failed';\n try {\n const errorJson = JSON.parse(errorBody);\n errorMessage = errorJson.message || errorJson.error || errorMessage;\n } catch {\n errorMessage = errorBody || errorMessage;\n }\n return { valid: false, error: `Settlement failed: ${errorMessage}` };\n }\n\n const settlement = await settlementResponse.json() as { txHash?: string; tx_hash?: string };\n txHash = settlement.txHash || settlement.tx_hash;\n settledAt = new Date();\n } catch (e) {\n return { \n valid: false, \n error: `Settlement request failed: ${(e as Error).message}` \n };\n }\n }\n\n // Success!\n return {\n valid: true,\n payer: authorization.from,\n amount: minorToUsd(paymentAmount),\n amountMinor: paymentAmount,\n txHash,\n settledAt: settledAt || new Date(),\n nonce: authorization.nonce,\n };\n\n } catch (error) {\n return { \n valid: false, \n error: `Verification error: ${(error as Error).message}` \n };\n }\n}\n\n/**\n * Parse and validate an X-PAYMENT header without settlement.\n * Useful for checking if a payment is structurally valid before processing.\n */\nexport async function parseX402Payment(\n paymentHeader: string,\n chainId: number = 8453\n): Promise<{\n valid: boolean;\n error?: string;\n payer?: string;\n recipient?: string;\n amount?: number;\n amountMinor?: bigint;\n expiresAt?: Date;\n}> {\n try {\n const jsonStr = base64Decode(paymentHeader);\n const decoded: X402PaymentPayload = JSON.parse(jsonStr);\n\n if (!decoded.payload?.authorization) {\n return { valid: false, error: 'Missing authorization in payment' };\n }\n\n const { authorization, signature } = decoded.payload;\n\n // Verify signature\n const domain = getUSDCDomain(chainId);\n const message: TransferWithAuthorizationMessage = {\n from: authorization.from as `0x${string}`,\n to: authorization.to as `0x${string}`,\n value: BigInt(authorization.value),\n validAfter: BigInt(authorization.validAfter),\n validBefore: BigInt(authorization.validBefore),\n nonce: authorization.nonce as `0x${string}`,\n };\n\n const signerAddress = await recoverTypedDataAddress({\n domain,\n types: TRANSFER_WITH_AUTHORIZATION_TYPES,\n primaryType: 'TransferWithAuthorization',\n message,\n signature: signature as `0x${string}`,\n });\n\n if (signerAddress.toLowerCase() !== authorization.from.toLowerCase()) {\n return { valid: false, error: 'Signature mismatch' };\n }\n\n const amountMinor = BigInt(authorization.value);\n \n return {\n valid: true,\n payer: authorization.from,\n recipient: authorization.to,\n amount: minorToUsd(amountMinor),\n amountMinor,\n expiresAt: new Date(Number(authorization.validBefore) * 1000),\n };\n } catch (error) {\n return { valid: false, error: `Parse error: ${(error as Error).message}` };\n }\n}\n\n","/**\n * MixrPay Merchant SDK - Utilities\n */\n\nimport type { EIP712Domain } from './types';\n\n// =============================================================================\n// USDC Constants by Chain\n// =============================================================================\n\nexport const USDC_CONTRACTS: Record<number, `0x${string}`> = {\n 8453: '0x833589fCD6eDb6E08f4c7C32D4f71b54bdA02913', // Base Mainnet\n 84532: '0x036CbD53842c5426634e7929541eC2318f3dCF7e', // Base Sepolia\n};\n\nexport const DEFAULT_FACILITATOR = 'https://x402.org/facilitator';\n\n// =============================================================================\n// EIP-712 Domain\n// =============================================================================\n\nexport function getUSDCDomain(chainId: number): EIP712Domain {\n const verifyingContract = USDC_CONTRACTS[chainId];\n if (!verifyingContract) {\n throw new Error(`Unsupported chain ID: ${chainId}. Supported: ${Object.keys(USDC_CONTRACTS).join(', ')}`);\n }\n\n return {\n name: 'USD Coin',\n version: '2',\n chainId,\n verifyingContract,\n };\n}\n\n// EIP-712 types for TransferWithAuthorization\nexport const TRANSFER_WITH_AUTHORIZATION_TYPES = {\n TransferWithAuthorization: [\n { name: 'from', type: 'address' },\n { name: 'to', type: 'address' },\n { name: 'value', type: 'uint256' },\n { name: 'validAfter', type: 'uint256' },\n { name: 'validBefore', type: 'uint256' },\n { name: 'nonce', type: 'bytes32' },\n ],\n} as const;\n\n// =============================================================================\n// Utility Functions\n// =============================================================================\n\n/**\n * Convert USD dollars to USDC minor units (6 decimals)\n */\nexport function usdToMinor(usd: number): bigint {\n return BigInt(Math.round(usd * 1_000_000));\n}\n\n/**\n * Convert USDC minor units to USD dollars\n */\nexport function minorToUsd(minor: bigint): number {\n return Number(minor) / 1_000_000;\n}\n\n/**\n * Generate a random nonce for x402 payments\n */\nexport function generateNonce(): `0x${string}` {\n const bytes = new Uint8Array(32);\n crypto.getRandomValues(bytes);\n return `0x${Array.from(bytes).map(b => b.toString(16).padStart(2, '0')).join('')}` as `0x${string}`;\n}\n\n/**\n * Check if an address is valid\n */\nexport function isValidAddress(address: string): address is `0x${string}` {\n return /^0x[a-fA-F0-9]{40}$/.test(address);\n}\n\n/**\n * Normalize an address to lowercase checksum format\n */\nexport function normalizeAddress(address: string): `0x${string}` {\n if (!isValidAddress(address)) {\n throw new Error(`Invalid address: ${address}`);\n }\n return address.toLowerCase() as `0x${string}`;\n}\n\n/**\n * Safe base64 decode that works in both Node.js and browsers\n */\nexport function base64Decode(str: string): string {\n if (typeof Buffer !== 'undefined') {\n return Buffer.from(str, 'base64').toString('utf-8');\n }\n return atob(str);\n}\n\n/**\n * Safe base64 encode that works in both Node.js and browsers\n */\nexport function base64Encode(str: string): string {\n if (typeof Buffer !== 'undefined') {\n return Buffer.from(str, 'utf-8').toString('base64');\n }\n return btoa(str);\n}\n\n","/**\n * MixrPay Merchant SDK - Receipt Fetcher\n * \n * Internal utility to fetch JWT receipts from MixrPay API after settlement.\n * Used by x402 middleware to get receipts for the X-Payment-Receipt header.\n */\n\n// =============================================================================\n// Constants\n// =============================================================================\n\nconst DEFAULT_MIXRPAY_API_URL = process.env.MIXRPAY_BASE_URL || 'http://localhost:3000';\n\n// =============================================================================\n// Types\n// =============================================================================\n\nexport interface FetchReceiptParams {\n /** Settlement transaction hash */\n txHash: string;\n /** Payer address */\n payer: string;\n /** Recipient address */\n recipient: string;\n /** Amount in USDC minor units */\n amount: bigint;\n /** Chain ID */\n chainId: number;\n /** Custom MixrPay API URL (optional) */\n apiUrl?: string;\n}\n\ninterface ReceiptResponse {\n receipt: string;\n expiresAt: string;\n}\n\n// =============================================================================\n// Receipt Fetching\n// =============================================================================\n\n/**\n * Fetch a JWT payment receipt from MixrPay API.\n * \n * This is called by the x402 middleware after successful payment verification\n * when receiptMode is 'jwt' or 'both'.\n * \n * @param params - Receipt request parameters\n * @returns JWT receipt string, or null if not available\n */\nexport async function fetchPaymentReceipt(params: FetchReceiptParams): Promise<string | null> {\n const apiUrl = params.apiUrl || DEFAULT_MIXRPAY_API_URL;\n const endpoint = `${apiUrl}/api/v1/receipts`;\n\n try {\n const response = await fetch(endpoint, {\n method: 'POST',\n headers: {\n 'Content-Type': 'application/json',\n },\n body: JSON.stringify({\n tx_hash: params.txHash,\n payer: params.payer,\n recipient: params.recipient,\n amount: params.amount.toString(),\n chain_id: params.chainId,\n }),\n });\n\n if (!response.ok) {\n // Log but don't throw - receipt is optional\n console.warn(`[x402] Receipt fetch failed: ${response.status} ${response.statusText}`);\n return null;\n }\n\n const data = await response.json() as ReceiptResponse;\n return data.receipt || null;\n } catch (error) {\n // Log but don't throw - payment was successful, receipt is optional\n console.warn('[x402] Receipt fetch error:', (error as Error).message);\n return null;\n }\n}\n\n/**\n * Generate a local receipt for testing purposes.\n * \n * WARNING: This generates an unsigned receipt that will NOT verify.\n * Use only for local development and testing.\n * \n * @param params - Receipt parameters\n * @returns Mock JWT-like string (not cryptographically signed)\n */\nexport function generateMockReceipt(params: FetchReceiptParams): string {\n const header = {\n alg: 'none',\n typ: 'JWT',\n };\n\n const payload = {\n paymentId: `mock_${Date.now()}`,\n amount: params.amount.toString(),\n amountUsd: Number(params.amount) / 1_000_000,\n payer: params.payer,\n recipient: params.recipient,\n chainId: params.chainId,\n txHash: params.txHash,\n settledAt: new Date().toISOString(),\n iat: Math.floor(Date.now() / 1000),\n exp: Math.floor(Date.now() / 1000) + 3600,\n _mock: true,\n };\n\n const base64Header = Buffer.from(JSON.stringify(header)).toString('base64url');\n const base64Payload = Buffer.from(JSON.stringify(payload)).toString('base64url');\n\n // Mock signature (not cryptographically valid)\n return `${base64Header}.${base64Payload}.mock_signature_for_testing_only`;\n}\n\n"],"mappings":";;;;;;;;;;;;;;;;;;;;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AA2BA,oBAA6B;;;ACvB7B,kBAAwC;;;ACMjC,IAAM,iBAAgD;AAAA,EAC3D,MAAM;AAAA;AAAA,EACN,OAAO;AAAA;AACT;AAEO,IAAM,sBAAsB;AAM5B,SAAS,cAAc,SAA+B;AAC3D,QAAM,oBAAoB,eAAe,OAAO;AAChD,MAAI,CAAC,mBAAmB;AACtB,UAAM,IAAI,MAAM,yBAAyB,OAAO,gBAAgB,OAAO,KAAK,cAAc,EAAE,KAAK,IAAI,CAAC,EAAE;AAAA,EAC1G;AAEA,SAAO;AAAA,IACL,MAAM;AAAA,IACN,SAAS;AAAA,IACT;AAAA,IACA;AAAA,EACF;AACF;AAGO,IAAM,oCAAoC;AAAA,EAC/C,2BAA2B;AAAA,IACzB,EAAE,MAAM,QAAQ,MAAM,UAAU;AAAA,IAChC,EAAE,MAAM,MAAM,MAAM,UAAU;AAAA,IAC9B,EAAE,MAAM,SAAS,MAAM,UAAU;AAAA,IACjC,EAAE,MAAM,cAAc,MAAM,UAAU;AAAA,IACtC,EAAE,MAAM,eAAe,MAAM,UAAU;AAAA,IACvC,EAAE,MAAM,SAAS,MAAM,UAAU;AAAA,EACnC;AACF;AASO,SAAS,WAAW,KAAqB;AAC9C,SAAO,OAAO,KAAK,MAAM,MAAM,GAAS,CAAC;AAC3C;AAKO,SAAS,WAAW,OAAuB;AAChD,SAAO,OAAO,KAAK,IAAI;AACzB;AAKO,SAAS,gBAA+B;AAC7C,QAAM,QAAQ,IAAI,WAAW,EAAE;AAC/B,SAAO,gBAAgB,KAAK;AAC5B,SAAO,KAAK,MAAM,KAAK,KAAK,EAAE,IAAI,OAAK,EAAE,SAAS,EAAE,EAAE,SAAS,GAAG,GAAG,CAAC,EAAE,KAAK,EAAE,CAAC;AAClF;AAsBO,SAAS,aAAa,KAAqB;AAChD,MAAI,OAAO,WAAW,aAAa;AACjC,WAAO,OAAO,KAAK,KAAK,QAAQ,EAAE,SAAS,OAAO;AAAA,EACpD;AACA,SAAO,KAAK,GAAG;AACjB;;;ADzDA,eAAsB,kBACpB,eACA,SAC4B;AAC5B,MAAI;AAEF,QAAI;AACJ,QAAI;AACF,YAAM,UAAU,aAAa,aAAa;AAC1C,gBAAU,KAAK,MAAM,OAAO;AAAA,IAC9B,SAAS,GAAG;AACV,aAAO,EAAE,OAAO,OAAO,OAAO,kCAAkC;AAAA,IAClE;AAGA,QAAI,CAAC,QAAQ,SAAS,iBAAiB,CAAC,QAAQ,SAAS,WAAW;AAClE,aAAO,EAAE,OAAO,OAAO,OAAO,gDAAgD;AAAA,IAChF;AAEA,UAAM,EAAE,eAAe,UAAU,IAAI,QAAQ;AAC7C,UAAM,UAAU,QAAQ,WAAW;AAGnC,UAAM,UAA4C;AAAA,MAChD,MAAM,cAAc;AAAA,MACpB,IAAI,cAAc;AAAA,MAClB,OAAO,OAAO,cAAc,KAAK;AAAA,MACjC,YAAY,OAAO,cAAc,UAAU;AAAA,MAC3C,aAAa,OAAO,cAAc,WAAW;AAAA,MAC7C,OAAO,cAAc;AAAA,IACvB;AAGA,UAAM,SAAS,cAAc,OAAO;AACpC,QAAI;AAEJ,QAAI;AACF,sBAAgB,UAAM,qCAAwB;AAAA,QAC5C;AAAA,QACA,OAAO;AAAA,QACP,aAAa;AAAA,QACb;AAAA,QACA;AAAA,MACF,CAAC;AAAA,IACH,SAAS,GAAG;AACV,aAAO,EAAE,OAAO,OAAO,OAAO,0CAA0C;AAAA,IAC1E;AAGA,QAAI,cAAc,YAAY,MAAM,cAAc,KAAK,YAAY,GAAG;AACpE,aAAO;AAAA,QACL,OAAO;AAAA,QACP,OAAO,gCAAgC,cAAc,IAAI,SAAS,aAAa;AAAA,MACjF;AAAA,IACF;AAGA,UAAM,gBAAgB,OAAO,cAAc,KAAK;AAChD,QAAI,gBAAgB,QAAQ,gBAAgB;AAC1C,aAAO;AAAA,QACL,OAAO;AAAA,QACP,OAAO,kCAAkC,QAAQ,cAAc,SAAS,aAAa;AAAA,MACvF;AAAA,IACF;AAGA,QAAI,cAAc,GAAG,YAAY,MAAM,QAAQ,kBAAkB,YAAY,GAAG;AAC9E,aAAO;AAAA,QACL,OAAO;AAAA,QACP,OAAO,6BAA6B,QAAQ,iBAAiB,SAAS,cAAc,EAAE;AAAA,MACxF;AAAA,IACF;AAGA,UAAM,MAAM,KAAK,MAAM,KAAK,IAAI,IAAI,GAAI;AACxC,QAAI,OAAO,cAAc,WAAW,IAAI,KAAK;AAC3C,aAAO,EAAE,OAAO,OAAO,OAAO,oCAAoC;AAAA,IACpE;AAGA,QAAI,OAAO,cAAc,UAAU,IAAI,KAAK;AAC1C,aAAO,EAAE,OAAO,OAAO,OAAO,yCAAyC;AAAA,IACzE;AAGA,QAAI;AACJ,QAAI;AAEJ,QAAI,CAAC,QAAQ,gBAAgB;AAC3B,YAAM,iBAAiB,QAAQ,eAAe;AAE9C,UAAI;AACF,cAAM,qBAAqB,MAAM,MAAM,GAAG,cAAc,WAAW;AAAA,UACjE,QAAQ;AAAA,UACR,SAAS,EAAE,gBAAgB,mBAAmB;AAAA,UAC9C,MAAM,KAAK,UAAU;AAAA,YACnB;AAAA,YACA;AAAA,YACA;AAAA,UACF,CAAC;AAAA,QACH,CAAC;AAED,YAAI,CAAC,mBAAmB,IAAI;AAC1B,gBAAM,YAAY,MAAM,mBAAmB,KAAK;AAChD,cAAI,eAAe;AACnB,cAAI;AACF,kBAAM,YAAY,KAAK,MAAM,SAAS;AACtC,2BAAe,UAAU,WAAW,UAAU,SAAS;AAAA,UACzD,QAAQ;AACN,2BAAe,aAAa;AAAA,UAC9B;AACA,iBAAO,EAAE,OAAO,OAAO,OAAO,sBAAsB,YAAY,GAAG;AAAA,QACrE;AAEA,cAAM,aAAa,MAAM,mBAAmB,KAAK;AACjD,iBAAS,WAAW,UAAU,WAAW;AACzC,oBAAY,oBAAI,KAAK;AAAA,MACvB,SAAS,GAAG;AACV,eAAO;AAAA,UACL,OAAO;AAAA,UACP,OAAO,8BAA+B,EAAY,OAAO;AAAA,QAC3D;AAAA,MACF;AAAA,IACF;AAGA,WAAO;AAAA,MACL,OAAO;AAAA,MACP,OAAO,cAAc;AAAA,MACrB,QAAQ,WAAW,aAAa;AAAA,MAChC,aAAa;AAAA,MACb;AAAA,MACA,WAAW,aAAa,oBAAI,KAAK;AAAA,MACjC,OAAO,cAAc;AAAA,IACvB;AAAA,EAEF,SAAS,OAAO;AACd,WAAO;AAAA,MACL,OAAO;AAAA,MACP,OAAO,uBAAwB,MAAgB,OAAO;AAAA,IACxD;AAAA,EACF;AACF;;;AE7KA,IAAM,0BAA0B,QAAQ,IAAI,oBAAoB;AAuChE,eAAsB,oBAAoB,QAAoD;AAC5F,QAAM,SAAS,OAAO,UAAU;AAChC,QAAM,WAAW,GAAG,MAAM;AAE1B,MAAI;AACF,UAAM,WAAW,MAAM,MAAM,UAAU;AAAA,MACrC,QAAQ;AAAA,MACR,SAAS;AAAA,QACP,gBAAgB;AAAA,MAClB;AAAA,MACA,MAAM,KAAK,UAAU;AAAA,QACnB,SAAS,OAAO;AAAA,QAChB,OAAO,OAAO;AAAA,QACd,WAAW,OAAO;AAAA,QAClB,QAAQ,OAAO,OAAO,SAAS;AAAA,QAC/B,UAAU,OAAO;AAAA,MACnB,CAAC;AAAA,IACH,CAAC;AAED,QAAI,CAAC,SAAS,IAAI;AAEhB,cAAQ,KAAK,gCAAgC,SAAS,MAAM,IAAI,SAAS,UAAU,EAAE;AACrF,aAAO;AAAA,IACT;AAEA,UAAM,OAAO,MAAM,SAAS,KAAK;AACjC,WAAO,KAAK,WAAW;AAAA,EACzB,SAAS,OAAO;AAEd,YAAQ,KAAK,+BAAgC,MAAgB,OAAO;AACpE,WAAO;AAAA,EACT;AACF;;;AHZO,SAAS,SAAS,QAAoB,SAAsB;AACjE,SAAO,OAAO,QAA4C;AACxD,QAAI;AAEF,YAAM,YAAY,OAAO,aAAa,QAAQ,IAAI;AAClD,UAAI,CAAC,WAAW;AACd,gBAAQ,MAAM,wCAAwC;AACtD,eAAO,2BAAa;AAAA,UAClB,EAAE,OAAO,8BAA8B;AAAA,UACvC,EAAE,QAAQ,IAAI;AAAA,QAChB;AAAA,MACF;AAGA,YAAM,QAAQ,OAAO,WACjB,MAAM,OAAO,SAAS,GAAG,IACzB,OAAO;AAEX,YAAM,aAAa,WAAW,KAAK;AACnC,YAAM,UAAU,OAAO,WAAW;AAClC,YAAM,cAAc,OAAO,eAAe;AAG1C,YAAM,gBAAgB,IAAI,QAAQ,IAAI,WAAW;AAEjD,UAAI,CAAC,eAAe;AAElB,cAAM,QAAQ,cAAc;AAC5B,cAAM,YAAY,KAAK,MAAM,KAAK,IAAI,IAAI,GAAI,IAAI;AAElD,cAAM,kBAAuC;AAAA,UAC3C;AAAA,UACA,QAAQ,WAAW,SAAS;AAAA,UAC5B,UAAU;AAAA,UACV;AAAA,UACA;AAAA,UACA;AAAA,UACA;AAAA,UACA,aAAa,OAAO;AAAA,QACtB;AAEA,eAAO,2BAAa;AAAA,UAClB,EAAE,OAAO,oBAAoB,SAAS,gBAAgB;AAAA,UACtD;AAAA,YACE,QAAQ;AAAA,YACR,SAAS;AAAA,cACP,sBAAsB,KAAK,UAAU,eAAe;AAAA,cACpD,oBAAoB,SAAS,OAAO,KAAK,KAAK,UAAU,eAAe,CAAC,EAAE,SAAS,QAAQ,CAAC;AAAA,YAC9F;AAAA,UACF;AAAA,QACF;AAAA,MACF;AAGA,YAAM,SAAS,MAAM,kBAAkB,eAAe;AAAA,QACpD,gBAAgB;AAAA,QAChB,mBAAmB;AAAA,QACnB;AAAA,QACA;AAAA,QACA,gBAAgB,OAAO;AAAA,MACzB,CAAC;AAED,UAAI,CAAC,OAAO,OAAO;AACjB,eAAO,2BAAa;AAAA,UAClB,EAAE,OAAO,mBAAmB,QAAQ,OAAO,MAAM;AAAA,UACjD,EAAE,QAAQ,IAAI;AAAA,QAChB;AAAA,MACF;AAGA,YAAM,cAAc,OAAO,eAAe;AAE1C,WAAK,gBAAgB,SAAS,gBAAgB,WAAW,OAAO,UAAU,OAAO,OAAO;AACtF,YAAI;AACF,gBAAM,UAAU,MAAM,oBAAoB;AAAA,YACxC,QAAQ,OAAO;AAAA,YACf,OAAO,OAAO;AAAA,YACd;AAAA,YACA,QAAQ;AAAA,YACR;AAAA,YACA,QAAQ,OAAO;AAAA,UACjB,CAAC;AAED,cAAI,SAAS;AACX,mBAAO,UAAU;AAAA,UACnB;AAAA,QACF,SAAS,cAAc;AACrB,kBAAQ,KAAK,uCAAuC,YAAY;AAAA,QAElE;AAAA,MACF;AAGA,UAAI,OAAO,WAAW;AACpB,cAAM,OAAO,UAAU,QAAQ,GAAG;AAAA,MACpC;AAGA,YAAM,WAAW,MAAM,QAAQ,KAAK,MAAM;AAG1C,UAAI,OAAO,QAAQ;AACjB,iBAAS,QAAQ,IAAI,oBAAoB,OAAO,MAAM;AAAA,MACxD;AAGA,UAAI,OAAO,SAAS;AAClB,iBAAS,QAAQ,IAAI,qBAAqB,OAAO,OAAO;AAAA,MAC1D;AAEA,aAAO;AAAA,IACT,SAAS,OAAO;AACd,cAAQ,MAAM,yBAAyB,KAAK;AAC5C,aAAO,2BAAa;AAAA,QAClB,EAAE,OAAO,2BAA2B;AAAA,QACpC,EAAE,QAAQ,IAAI;AAAA,MAChB;AAAA,IACF;AAAA,EACF;AACF;AAMO,SAAS,sBAAsB,SAMrB;AACf,QAAM,aAAa,WAAW,QAAQ,MAAM;AAC5C,QAAM,QAAQ,cAAc;AAC5B,QAAM,YAAY,KAAK,MAAM,KAAK,IAAI,IAAI,GAAI,IAAI;AAElD,QAAM,kBAAuC;AAAA,IAC3C,WAAW,QAAQ;AAAA,IACnB,QAAQ,WAAW,SAAS;AAAA,IAC5B,UAAU;AAAA,IACV,SAAS,QAAQ,WAAW;AAAA,IAC5B,aAAa,QAAQ,eAAe;AAAA,IACpC;AAAA,IACA;AAAA,IACA,aAAa,QAAQ;AAAA,EACvB;AAEA,SAAO,2BAAa;AAAA,IAClB,EAAE,OAAO,oBAAoB,SAAS,gBAAgB;AAAA,IACtD;AAAA,MACE,QAAQ;AAAA,MACR,SAAS;AAAA,QACP,sBAAsB,KAAK,UAAU,eAAe;AAAA,MACtD;AAAA,IACF;AAAA,EACF;AACF;","names":[]}