@neocleus/razorpay-firebase-functions 1.0.0

package/lib/callables/subscriptions.js

@@ -0,0 +1,138 @@
+"use strict";
+var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    var desc = Object.getOwnPropertyDescriptor(m, k);
+    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
+      desc = { enumerable: true, get: function() { return m[k]; } };
+    }
+    Object.defineProperty(o, k2, desc);
+}) : (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    o[k2] = m[k];
+}));
+var __setModuleDefault = (this && this.__setModuleDefault) || (Object.create ? (function(o, v) {
+    Object.defineProperty(o, "default", { enumerable: true, value: v });
+}) : function(o, v) {
+    o["default"] = v;
+});
+var __importStar = (this && this.__importStar) || (function () {
+    var ownKeys = function(o) {
+        ownKeys = Object.getOwnPropertyNames || function (o) {
+            var ar = [];
+            for (var k in o) if (Object.prototype.hasOwnProperty.call(o, k)) ar[ar.length] = k;
+            return ar;
+        };
+        return ownKeys(o);
+    };
+    return function (mod) {
+        if (mod && mod.__esModule) return mod;
+        var result = {};
+        if (mod != null) for (var k = ownKeys(mod), i = 0; i < k.length; i++) if (k[i] !== "default") __createBinding(result, mod, k[i]);
+        __setModuleDefault(result, mod);
+        return result;
+    };
+})();
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.buildUpdateSubscriptionPlan = exports.buildCancelSubscription = void 0;
+const https_1 = require("firebase-functions/v2/https");
+const admin = __importStar(require("firebase-admin"));
+const firestore_1 = require("firebase-admin/firestore");
+const logs_1 = require("../logs");
+const typedFirestore_1 = require("../utils/typedFirestore");
+const buildCancelSubscription = (config, rzp) => {
+    return (0, https_1.onCall)(async (request) => {
+        const uid = request.auth?.uid;
+        if (!uid) {
+            throw new https_1.HttpsError('unauthenticated', 'User must be authenticated to cancel a subscription');
+        }
+        const { subscriptionId } = request.data;
+        if (!subscriptionId) {
+            throw new https_1.HttpsError('invalid-argument', 'The "subscriptionId" must be provided');
+        }
+        const db = admin.firestore();
+        const typedFs = new typedFirestore_1.TypedFirestore(db, config);
+        const docRef = typedFs.getSubscriptionDoc(uid, subscriptionId);
+        const doc = await docRef.get();
+        if (!doc.exists) {
+            throw new https_1.HttpsError('not-found', 'Subscription not found');
+        }
+        const existingData = doc.data();
+        if (existingData?.status === 'cancelled' || existingData?.status === 'completed') {
+            throw new https_1.HttpsError('failed-precondition', 'Subscription is already cancelled or completed.');
+        }
+        try {
+            const cancelledSubscription = await rzp.subscriptions.cancel(subscriptionId);
+            // Update main document status & timestamps only
+            const updateData = {
+                status: cancelledSubscription.status,
+                updated_at: firestore_1.FieldValue.serverTimestamp()
+            };
+            await docRef.set(updateData, { merge: true });
+            // Save raw subscription response separately
+            const detailsDocRef = typedFs.getSubscriptionDetailsDoc(uid, subscriptionId);
+            await detailsDocRef.set(cancelledSubscription);
+            logs_1.logs.info(`Successfully cancelled subscription ${subscriptionId} for user ${uid}`);
+            return { status: cancelledSubscription.status };
+        }
+        catch (error) {
+            logs_1.logs.error(new Error(`Failed to cancel subscription ${subscriptionId}: ${error.message}`));
+            throw new https_1.HttpsError('internal', `Failed to cancel subscription: ${error.message}`);
+        }
+    });
+};
+exports.buildCancelSubscription = buildCancelSubscription;
+const buildUpdateSubscriptionPlan = (config, rzp) => {
+    return (0, https_1.onCall)(async (request) => {
+        const uid = request.auth?.uid;
+        if (!uid) {
+            throw new https_1.HttpsError('unauthenticated', 'User must be authenticated to update a subscription');
+        }
+        const { subscriptionId, planId, scheduleChangeAt } = request.data;
+        if (!subscriptionId || !planId) {
+            throw new https_1.HttpsError('invalid-argument', 'Both "subscriptionId" and "planId" must be provided');
+        }
+        // Only allow known-safe values for schedule_change_at
+        const validSchedule = scheduleChangeAt === 'cycle_end' ? 'cycle_end' : 'now';
+        const db = admin.firestore();
+        const typedFs = new typedFirestore_1.TypedFirestore(db, config);
+        const docRef = typedFs.getSubscriptionDoc(uid, subscriptionId);
+        const doc = await docRef.get();
+        if (!doc.exists) {
+            throw new https_1.HttpsError('not-found', 'Subscription not found');
+        }
+        // SEC-07: Validate that the planId is valid and belongs to an active product
+        const productsSnap = await typedFs.getProductsCollection()
+            .where('active', '==', true)
+            .get();
+        const isAllowed = productsSnap.docs.some(productDoc => {
+            const data = productDoc.data();
+            return data.allowedPlans && Object.values(data.allowedPlans).includes(planId);
+        });
+        if (!isAllowed) {
+            throw new https_1.HttpsError('invalid-argument', 'The specified plan is not available.');
+        }
+        try {
+            const updatedSubscription = await rzp.subscriptions.update(subscriptionId, {
+                plan_id: planId,
+                schedule_change_at: validSchedule
+            });
+            // Update main document status & timestamps only
+            const updateData = {
+                status: updatedSubscription.status,
+                updated_at: firestore_1.FieldValue.serverTimestamp()
+            };
+            await docRef.set(updateData, { merge: true });
+            // Save raw subscription response separately
+            const detailsDocRef = typedFs.getSubscriptionDetailsDoc(uid, subscriptionId);
+            await detailsDocRef.set(updatedSubscription);
+            logs_1.logs.info(`Successfully updated subscription ${subscriptionId} for user ${uid} to plan ${planId}`);
+            return { plan_id: updatedSubscription.plan_id, status: updatedSubscription.status };
+        }
+        catch (error) {
+            logs_1.logs.error(new Error(`Failed to update subscription ${subscriptionId}: ${error.message}`));
+            throw new https_1.HttpsError('internal', `Failed to update subscription: ${error.message}`);
+        }
+    });
+};
+exports.buildUpdateSubscriptionPlan = buildUpdateSubscriptionPlan;
+//# sourceMappingURL=subscriptions.js.map

package/lib/callables/subscriptions.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"subscriptions.js","sourceRoot":"","sources":["../../src/callables/subscriptions.ts"],"names":[],"mappings":";;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;AAAA,uDAAiE;AACjE,sDAAwC;AACxC,wDAAsD;AAEtD,kCAA+B;AAE/B,4DAAyD;AAElD,MAAM,uBAAuB,GAAG,CAAC,MAA0B,EAAE,GAAa,EAAE,EAAE;IACjF,OAAO,IAAA,cAAM,EAAC,KAAK,EAAE,OAAO,EAAE,EAAE;QAC5B,MAAM,GAAG,GAAG,OAAO,CAAC,IAAI,EAAE,GAAG,CAAC;QAC9B,IAAI,CAAC,GAAG,EAAE,CAAC;YACP,MAAM,IAAI,kBAAU,CAAC,iBAAiB,EAAE,qDAAqD,CAAC,CAAC;QACnG,CAAC;QAED,MAAM,EAAE,cAAc,EAAE,GAAG,OAAO,CAAC,IAAI,CAAC;QACxC,IAAI,CAAC,cAAc,EAAE,CAAC;YAClB,MAAM,IAAI,kBAAU,CAAC,kBAAkB,EAAE,uCAAuC,CAAC,CAAC;QACtF,CAAC;QAED,MAAM,EAAE,GAAG,KAAK,CAAC,SAAS,EAAE,CAAC;QAC7B,MAAM,OAAO,GAAG,IAAI,+BAAc,CAAC,EAAE,EAAE,MAAM,CAAC,CAAC;QAC/C,MAAM,MAAM,GAAG,OAAO,CAAC,kBAAkB,CAAC,GAAG,EAAE,cAAc,CAAC,CAAC;QAE/D,MAAM,GAAG,GAAG,MAAM,MAAM,CAAC,GAAG,EAAE,CAAC;QAC/B,IAAI,CAAC,GAAG,CAAC,MAAM,EAAE,CAAC;YACd,MAAM,IAAI,kBAAU,CAAC,WAAW,EAAE,wBAAwB,CAAC,CAAC;QAChE,CAAC;QAED,MAAM,YAAY,GAAG,GAAG,CAAC,IAAI,EAAE,CAAC;QAChC,IAAI,YAAY,EAAE,MAAM,KAAK,WAAW,IAAI,YAAY,EAAE,MAAM,KAAK,WAAW,EAAE,CAAC;YAC/E,MAAM,IAAI,kBAAU,CAAC,qBAAqB,EAAE,iDAAiD,CAAC,CAAC;QACnG,CAAC;QAED,IAAI,CAAC;YACD,MAAM,qBAAqB,GAAG,MAAM,GAAG,CAAC,aAAa,CAAC,MAAM,CAAC,cAAc,CAAC,CAAC;YAE7E,gDAAgD;YAChD,MAAM,UAAU,GAA6B;gBACzC,MAAM,EAAE,qBAAqB,CAAC,MAAM;gBACpC,UAAU,EAAE,sBAAU,CAAC,eAAe,EAAE;aAC3C,CAAC;YACF,MAAM,MAAM,CAAC,GAAG,CAAC,UAA6B,EAAE,EAAE,KAAK,EAAE,IAAI,EAAE,CAAC,CAAC;YAEjE,4CAA4C;YAC5C,MAAM,aAAa,GAAG,OAAO,CAAC,yBAAyB,CAAC,GAAG,EAAE,cAAc,CAAC,CAAC;YAC7E,MAAM,aAAa,CAAC,GAAG,CAAC,qBAAqB,CAAC,CAAC;YAE/C,WAAI,CAAC,IAAI,CAAC,uCAAuC,cAAc,aAAa,GAAG,EAAE,CAAC,CAAC;YACnF,OAAO,EAAE,MAAM,EAAE,qBAAqB,CAAC,MAAM,EAAE,CAAC;QACpD,CAAC;QAAC,OAAO,KAAU,EAAE,CAAC;YAClB,WAAI,CAAC,KAAK,CAAC,IAAI,KAAK,CAAC,iCAAiC,cAAc,KAAK,KAAK,CAAC,OAAO,EAAE,CAAC,CAAC,CAAC;YAC3F,MAAM,IAAI,kBAAU,CAAC,UAAU,EAAE,kCAAkC,KAAK,CAAC,OAAO,EAAE,CAAC,CAAC;QACxF,CAAC;IACL,CAAC,CAAC,CAAC;AACP,CAAC,CAAC;AA/CW,QAAA,uBAAuB,2BA+ClC;AAEK,MAAM,2BAA2B,GAAG,CAAC,MAA0B,EAAE,GAAa,EAAE,EAAE;IACrF,OAAO,IAAA,cAAM,EAAC,KAAK,EAAE,OAAO,EAAE,EAAE;QAC5B,MAAM,GAAG,GAAG,OAAO,CAAC,IAAI,EAAE,GAAG,CAAC;QAC9B,IAAI,CAAC,GAAG,EAAE,CAAC;YACP,MAAM,IAAI,kBAAU,CAAC,iBAAiB,EAAE,qDAAqD,CAAC,CAAC;QACnG,CAAC;QAED,MAAM,EAAE,cAAc,EAAE,MAAM,EAAE,gBAAgB,EAAE,GAAG,OAAO,CAAC,IAAI,CAAC;QAClE,IAAI,CAAC,cAAc,IAAI,CAAC,MAAM,EAAE,CAAC;YAC7B,MAAM,IAAI,kBAAU,CAAC,kBAAkB,EAAE,qDAAqD,CAAC,CAAC;QACpG,CAAC;QAED,sDAAsD;QACtD,MAAM,aAAa,GAAG,gBAAgB,KAAK,WAAW,CAAC,CAAC,CAAC,WAAW,CAAC,CAAC,CAAC,KAAK,CAAC;QAE7E,MAAM,EAAE,GAAG,KAAK,CAAC,SAAS,EAAE,CAAC;QAC7B,MAAM,OAAO,GAAG,IAAI,+BAAc,CAAC,EAAE,EAAE,MAAM,CAAC,CAAC;QAC/C,MAAM,MAAM,GAAG,OAAO,CAAC,kBAAkB,CAAC,GAAG,EAAE,cAAc,CAAC,CAAC;QAE/D,MAAM,GAAG,GAAG,MAAM,MAAM,CAAC,GAAG,EAAE,CAAC;QAC/B,IAAI,CAAC,GAAG,CAAC,MAAM,EAAE,CAAC;YACd,MAAM,IAAI,kBAAU,CAAC,WAAW,EAAE,wBAAwB,CAAC,CAAC;QAChE,CAAC;QAED,6EAA6E;QAC7E,MAAM,YAAY,GAAG,MAAM,OAAO,CAAC,qBAAqB,EAAE;aACrD,KAAK,CAAC,QAAQ,EAAE,IAAI,EAAE,IAAI,CAAC;aAC3B,GAAG,EAAE,CAAC;QAEX,MAAM,SAAS,GAAG,YAAY,CAAC,IAAI,CAAC,IAAI,CAAC,UAAU,CAAC,EAAE;YAClD,MAAM,IAAI,GAAG,UAAU,CAAC,IAAI,EAAE,CAAC;YAC/B,OAAO,IAAI,CAAC,YAAY,IAAI,MAAM,CAAC,MAAM,CAAC,IAAI,CAAC,YAAY,CAAC,CAAC,QAAQ,CAAC,MAAM,CAAC,CAAC;QAClF,CAAC,CAAC,CAAC;QAEH,IAAI,CAAC,SAAS,EAAE,CAAC;YACb,MAAM,IAAI,kBAAU,CAAC,kBAAkB,EAAE,sCAAsC,CAAC,CAAC;QACrF,CAAC;QAED,IAAI,CAAC;YACD,MAAM,mBAAmB,GAAG,MAAM,GAAG,CAAC,aAAa,CAAC,MAAM,CAAC,cAAc,EAAE;gBACvE,OAAO,EAAE,MAAM;gBACf,kBAAkB,EAAE,aAAa;aACpC,CAAC,CAAC;YAEH,gDAAgD;YAChD,MAAM,UAAU,GAA6B;gBACzC,MAAM,EAAE,mBAAmB,CAAC,MAAM;gBAClC,UAAU,EAAE,sBAAU,CAAC,eAAe,EAAE;aAC3C,CAAC;YACF,MAAM,MAAM,CAAC,GAAG,CAAC,UAA6B,EAAE,EAAE,KAAK,EAAE,IAAI,EAAE,CAAC,CAAC;YAEjE,4CAA4C;YAC5C,MAAM,aAAa,GAAG,OAAO,CAAC,yBAAyB,CAAC,GAAG,EAAE,cAAc,CAAC,CAAC;YAC7E,MAAM,aAAa,CAAC,GAAG,CAAC,mBAAmB,CAAC,CAAC;YAE7C,WAAI,CAAC,IAAI,CAAC,qCAAqC,cAAc,aAAa,GAAG,YAAY,MAAM,EAAE,CAAC,CAAC;YACnG,OAAO,EAAE,OAAO,EAAE,mBAAmB,CAAC,OAAO,EAAE,MAAM,EAAE,mBAAmB,CAAC,MAAM,EAAE,CAAC;QACxF,CAAC;QAAC,OAAO,KAAU,EAAE,CAAC;YAClB,WAAI,CAAC,KAAK,CAAC,IAAI,KAAK,CAAC,iCAAiC,cAAc,KAAK,KAAK,CAAC,OAAO,EAAE,CAAC,CAAC,CAAC;YAC3F,MAAM,IAAI,kBAAU,CAAC,UAAU,EAAE,kCAAkC,KAAK,CAAC,OAAO,EAAE,CAAC,CAAC;QACxF,CAAC;IACL,CAAC,CAAC,CAAC;AACP,CAAC,CAAC;AA9DW,QAAA,2BAA2B,+BA8DtC"}

package/lib/handlers/payments.d.ts

@@ -0,0 +1,4 @@
+import * as admin from 'firebase-admin';
+import Razorpay from 'razorpay';
+import { WebhookEvent, RazorpaySyncConfig } from '../types';
+export declare const handlePaymentEvent: (event: WebhookEvent, db: admin.firestore.Firestore, razorpayClient: InstanceType<typeof Razorpay>, config: RazorpaySyncConfig) => Promise<void>;

package/lib/handlers/payments.js

@@ -0,0 +1,135 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.handlePaymentEvent = void 0;
+const firestore_1 = require("firebase-admin/firestore");
+const logs_1 = require("../logs");
+const retry_1 = require("../utils/retry");
+const customerMapping_1 = require("../utils/customerMapping");
+const typedFirestore_1 = require("../utils/typedFirestore");
+const handlePaymentEvent = async (event, db, razorpayClient, config) => {
+    const webhookPaymentId = event.payload.payment?.entity?.id || event.payload.payment?.id;
+    const webhookOrderId = event.payload.order?.entity?.id || event.payload.order?.id;
+    if (!webhookPaymentId && !webhookOrderId) {
+        logs_1.logs.error(new Error(`Missing both payment and order IDs in webhook payload: ${event.id}`));
+        return;
+    }
+    let fetchedPayment = null;
+    let fetchedOrder = null;
+    let isPayment = false;
+    try {
+        if (event.event.startsWith('payment.') && webhookPaymentId) {
+            fetchedPayment = await (0, retry_1.fetchWithBackoff)(() => razorpayClient.payments.fetch(webhookPaymentId));
+            isPayment = true;
+        }
+        else if (event.event.startsWith('order.') && webhookOrderId) {
+            fetchedOrder = await (0, retry_1.fetchWithBackoff)(() => razorpayClient.orders.fetch(webhookOrderId));
+        }
+        else if (webhookOrderId) {
+            fetchedOrder = await (0, retry_1.fetchWithBackoff)(() => razorpayClient.orders.fetch(webhookOrderId));
+        }
+        else if (webhookPaymentId) {
+            fetchedPayment = await (0, retry_1.fetchWithBackoff)(() => razorpayClient.payments.fetch(webhookPaymentId));
+            isPayment = true;
+        }
+    }
+    catch (err) {
+        logs_1.logs.error(new Error(`Failed to fetch entity from Razorpay API. Event: ${event.event}. Error: ${err.message}`));
+        if ((0, retry_1.isTransientError)(err)) {
+            throw err;
+        }
+        return;
+    }
+    const fetchedEntity = fetchedPayment || fetchedOrder;
+    if (!fetchedEntity) {
+        logs_1.logs.error(new Error(`Failed to resolve entity for event: ${event.event}`));
+        return;
+    }
+    const notes = fetchedEntity.notes;
+    const sessionId = notes?.sessionId ? String(notes.sessionId) : undefined;
+    let uid;
+    const customerId = (isPayment && fetchedPayment)
+        ? fetchedPayment.customer_id
+        : (fetchedOrder ? fetchedOrder.customer_id : undefined);
+    if (customerId) {
+        const mappedUid = await (0, customerMapping_1.getUidByCustomerId)(customerId, config.customersCollection);
+        if (mappedUid) {
+            uid = mappedUid;
+        }
+        else {
+            logs_1.logs.error(new Error(`Failed to map Razorpay Customer ID ${customerId} to a Firebase UID. Rejecting webhook.`));
+            return;
+        }
+    }
+    if (!uid) {
+        logs_1.logs.error(new Error(`Cannot resolve UID for event ${event.event}. No customer_id mapping and notes.uid fallback removed for security.`));
+        return;
+    }
+    if (!sessionId) {
+        logs_1.logs.error(new Error(`Missing sessionId in notes for event ${event.event}.`));
+        return;
+    }
+    let newStatus = 'processing';
+    if (isPayment && fetchedPayment) {
+        if (fetchedPayment.status === 'captured')
+            newStatus = 'paid';
+        else if (fetchedPayment.status === 'failed')
+            newStatus = 'failed';
+        else
+            newStatus = 'processing';
+    }
+    else if (fetchedOrder) {
+        if (fetchedOrder.status === 'paid')
+            newStatus = 'paid';
+        else
+            newStatus = 'processing';
+    }
+    const typedFs = new typedFirestore_1.TypedFirestore(db, config);
+    const docRef = typedFs.getCheckoutSessionDoc(uid, sessionId);
+    const orderDocRef = typedFs.getCheckoutSessionOrderDoc(uid, sessionId);
+    try {
+        await db.runTransaction(async (tx) => {
+            const snap = await tx.get(docRef);
+            if (!snap.exists) {
+                logs_1.logs.error(new Error(`Checkout session ${sessionId} for user ${uid} does not exist. Possible notes injection attempt.`));
+                return;
+            }
+            // Secure validation: Fetch the server-written order document inside the transaction to verify order ID
+            const orderSnap = await tx.get(orderDocRef);
+            if (!orderSnap.exists) {
+                logs_1.logs.error(new Error(`Order details missing for session ${sessionId}. Possible notes injection.`));
+                return;
+            }
+            const orderData = orderSnap.data();
+            const expectedOrderId = isPayment && fetchedPayment ? fetchedPayment.order_id : fetchedOrder.id;
+            if (!orderData || orderData.id !== expectedOrderId) {
+                logs_1.logs.error(new Error(`Order ID mismatch for session ${sessionId}. Expected: ${orderData?.id}, Got: ${expectedOrderId}. Possible notes injection.`));
+                return;
+            }
+            const dataToWrite = {
+                status: newStatus,
+                updated_at: firestore_1.FieldValue.serverTimestamp(),
+            };
+            const existingData = snap.data();
+            if (existingData?.processing_at) {
+                dataToWrite.processing_at = firestore_1.FieldValue.delete();
+            }
+            // Update status and timestamp on the main document
+            tx.set(docRef, dataToWrite, { merge: true });
+            // Store raw Razorpay responses in separate subcollection documents
+            if (isPayment && fetchedPayment) {
+                const paymentDocRef = typedFs.getCheckoutSessionPaymentDoc(uid, sessionId);
+                tx.set(paymentDocRef, fetchedPayment);
+            }
+            else if (fetchedOrder) {
+                tx.set(orderDocRef, fetchedOrder);
+            }
+        });
+        logs_1.logs.webhookProcessed(event.event, fetchedEntity.id);
+    }
+    catch (error) {
+        logs_1.logs.error(error);
+        throw error;
+    }
+};
+exports.handlePaymentEvent = handlePaymentEvent;
+//# sourceMappingURL=payments.js.map

package/lib/handlers/payments.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"payments.js","sourceRoot":"","sources":["../../src/handlers/payments.ts"],"names":[],"mappings":";;;AAAA,wDAAsD;AAKtD,kCAA+B;AAE/B,0CAAoE;AACpE,8DAA8D;AAC9D,4DAAyD;AAElD,MAAM,kBAAkB,GAAG,KAAK,EACnC,KAAmB,EACnB,EAA6B,EAC7B,cAA6C,EAC7C,MAA0B,EAC5B,EAAE;IACA,MAAM,gBAAgB,GAAG,KAAK,CAAC,OAAO,CAAC,OAAO,EAAE,MAAM,EAAE,EAAE,IAAI,KAAK,CAAC,OAAO,CAAC,OAAO,EAAE,EAAE,CAAC;IACxF,MAAM,cAAc,GAAG,KAAK,CAAC,OAAO,CAAC,KAAK,EAAE,MAAM,EAAE,EAAE,IAAI,KAAK,CAAC,OAAO,CAAC,KAAK,EAAE,EAAE,CAAC;IAElF,IAAI,CAAC,gBAAgB,IAAI,CAAC,cAAc,EAAE,CAAC;QACvC,WAAI,CAAC,KAAK,CAAC,IAAI,KAAK,CAAC,0DAA0D,KAAK,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC;QAC5F,OAAO;IACX,CAAC;IAED,IAAI,cAAc,GAAoC,IAAI,CAAC;IAC3D,IAAI,YAAY,GAAgC,IAAI,CAAC;IACrD,IAAI,SAAS,GAAG,KAAK,CAAC;IAEtB,IAAI,CAAC;QACD,IAAI,KAAK,CAAC,KAAK,CAAC,UAAU,CAAC,UAAU,CAAC,IAAI,gBAAgB,EAAE,CAAC;YACzD,cAAc,GAAG,MAAM,IAAA,wBAAgB,EAAC,GAAG,EAAE,CAAC,cAAc,CAAC,QAAQ,CAAC,KAAK,CAAC,gBAAgB,CAAC,CAAC,CAAC;YAC/F,SAAS,GAAG,IAAI,CAAC;QACrB,CAAC;aAAM,IAAI,KAAK,CAAC,KAAK,CAAC,UAAU,CAAC,QAAQ,CAAC,IAAI,cAAc,EAAE,CAAC;YAC5D,YAAY,GAAG,MAAM,IAAA,wBAAgB,EAAC,GAAG,EAAE,CAAC,cAAc,CAAC,MAAM,CAAC,KAAK,CAAC,cAAc,CAAC,CAAC,CAAC;QAC7F,CAAC;aAAM,IAAI,cAAc,EAAE,CAAC;YACxB,YAAY,GAAG,MAAM,IAAA,wBAAgB,EAAC,GAAG,EAAE,CAAC,cAAc,CAAC,MAAM,CAAC,KAAK,CAAC,cAAc,CAAC,CAAC,CAAC;QAC7F,CAAC;aAAM,IAAI,gBAAgB,EAAE,CAAC;YAC1B,cAAc,GAAG,MAAM,IAAA,wBAAgB,EAAC,GAAG,EAAE,CAAC,cAAc,CAAC,QAAQ,CAAC,KAAK,CAAC,gBAAgB,CAAC,CAAC,CAAC;YAC/F,SAAS,GAAG,IAAI,CAAC;QACrB,CAAC;IACL,CAAC;IAAC,OAAO,GAAQ,EAAE,CAAC;QAChB,WAAI,CAAC,KAAK,CAAC,IAAI,KAAK,CAAC,oDAAoD,KAAK,CAAC,KAAK,YAAY,GAAG,CAAC,OAAO,EAAE,CAAC,CAAC,CAAC;QAChH,IAAI,IAAA,wBAAgB,EAAC,GAAG,CAAC,EAAE,CAAC;YACxB,MAAM,GAAG,CAAC;QACd,CAAC;QACD,OAAO;IACX,CAAC;IAED,MAAM,aAAa,GAAG,cAAc,IAAI,YAAY,CAAC;IAErD,IAAI,CAAC,aAAa,EAAE,CAAC;QACjB,WAAI,CAAC,KAAK,CAAC,IAAI,KAAK,CAAC,uCAAuC,KAAK,CAAC,KAAK,EAAE,CAAC,CAAC,CAAC;QAC5E,OAAO;IACX,CAAC;IAED,MAAM,KAAK,GAAG,aAAa,CAAC,KAAK,CAAC;IAClC,MAAM,SAAS,GAAG,KAAK,EAAE,SAAS,CAAC,CAAC,CAAC,MAAM,CAAC,KAAK,CAAC,SAAS,CAAC,CAAC,CAAC,CAAC,SAAS,CAAC;IAEzE,IAAI,GAAuB,CAAC;IAC5B,MAAM,UAAU,GAAG,CAAC,SAAS,IAAI,cAAc,CAAC;QAC5C,CAAC,CAAC,cAAc,CAAC,WAAW;QAC5B,CAAC,CAAC,CAAC,YAAY,CAAC,CAAC,CAAE,YAAoB,CAAC,WAAW,CAAC,CAAC,CAAC,SAAS,CAAC,CAAC;IAErE,IAAI,UAAU,EAAE,CAAC;QACb,MAAM,SAAS,GAAG,MAAM,IAAA,oCAAkB,EAAC,UAAU,EAAE,MAAM,CAAC,mBAAmB,CAAC,CAAC;QACnF,IAAI,SAAS,EAAE,CAAC;YACZ,GAAG,GAAG,SAAS,CAAC;QACpB,CAAC;aAAM,CAAC;YACJ,WAAI,CAAC,KAAK,CAAC,IAAI,KAAK,CAAC,sCAAsC,UAAU,wCAAwC,CAAC,CAAC,CAAC;YAChH,OAAO;QACX,CAAC;IACL,CAAC;IAED,IAAI,CAAC,GAAG,EAAE,CAAC;QACP,WAAI,CAAC,KAAK,CAAC,IAAI,KAAK,CAAC,gCAAgC,KAAK,CAAC,KAAK,uEAAuE,CAAC,CAAC,CAAC;QAC1I,OAAO;IACX,CAAC;IAED,IAAI,CAAC,SAAS,EAAE,CAAC;QACb,WAAI,CAAC,KAAK,CAAC,IAAI,KAAK,CAAC,wCAAwC,KAAK,CAAC,KAAK,GAAG,CAAC,CAAC,CAAC;QAC9E,OAAO;IACX,CAAC;IAED,IAAI,SAAS,GAAqC,YAAY,CAAC;IAC/D,IAAI,SAAS,IAAI,cAAc,EAAE,CAAC;QAC9B,IAAI,cAAc,CAAC,MAAM,KAAK,UAAU;YAAE,SAAS,GAAG,MAAM,CAAC;aACxD,IAAI,cAAc,CAAC,MAAM,KAAK,QAAQ;YAAE,SAAS,GAAG,QAAQ,CAAC;;YAC7D,SAAS,GAAG,YAAY,CAAC;IAClC,CAAC;SAAM,IAAI,YAAY,EAAE,CAAC;QACtB,IAAI,YAAY,CAAC,MAAM,KAAK,MAAM;YAAE,SAAS,GAAG,MAAM,CAAC;;YAClD,SAAS,GAAG,YAAY,CAAC;IAClC,CAAC;IAED,MAAM,OAAO,GAAG,IAAI,+BAAc,CAAC,EAAE,EAAE,MAAM,CAAC,CAAC;IAC/C,MAAM,MAAM,GAAG,OAAO,CAAC,qBAAqB,CAAC,GAAG,EAAE,SAAS,CAAC,CAAC;IAC7D,MAAM,WAAW,GAAG,OAAO,CAAC,0BAA0B,CAAC,GAAG,EAAE,SAAS,CAAC,CAAC;IAEvE,IAAI,CAAC;QACD,MAAM,EAAE,CAAC,cAAc,CAAC,KAAK,EAAE,EAAE,EAAE,EAAE;YACjC,MAAM,IAAI,GAAG,MAAM,EAAE,CAAC,GAAG,CAAC,MAAM,CAAC,CAAC;YAElC,IAAI,CAAC,IAAI,CAAC,MAAM,EAAE,CAAC;gBACf,WAAI,CAAC,KAAK,CAAC,IAAI,KAAK,CAAC,oBAAoB,SAAS,aAAa,GAAG,oDAAoD,CAAC,CAAC,CAAC;gBACzH,OAAO;YACX,CAAC;YAED,uGAAuG;YACvG,MAAM,SAAS,GAAG,MAAM,EAAE,CAAC,GAAG,CAAC,WAAW,CAAC,CAAC;YAC5C,IAAI,CAAC,SAAS,CAAC,MAAM,EAAE,CAAC;gBACpB,WAAI,CAAC,KAAK,CAAC,IAAI,KAAK,CAAC,qCAAqC,SAAS,6BAA6B,CAAC,CAAC,CAAC;gBACnG,OAAO;YACX,CAAC;YAED,MAAM,SAAS,GAAG,SAAS,CAAC,IAAI,EAAE,CAAC;YACnC,MAAM,eAAe,GAAG,SAAS,IAAI,cAAc,CAAC,CAAC,CAAC,cAAc,CAAC,QAAQ,CAAC,CAAC,CAAC,YAAa,CAAC,EAAE,CAAC;YACjG,IAAI,CAAC,SAAS,IAAI,SAAS,CAAC,EAAE,KAAK,eAAe,EAAE,CAAC;gBACjD,WAAI,CAAC,KAAK,CAAC,IAAI,KAAK,CAAC,iCAAiC,SAAS,eAAe,SAAS,EAAE,EAAE,UAAU,eAAe,6BAA6B,CAAC,CAAC,CAAC;gBACpJ,OAAO;YACX,CAAC;YAED,MAAM,WAAW,GAAgC;gBAC7C,MAAM,EAAE,SAAS;gBACjB,UAAU,EAAE,sBAAU,CAAC,eAAe,EAAE;aAC3C,CAAC;YAEF,MAAM,YAAY,GAAG,IAAI,CAAC,IAAI,EAAE,CAAC;YACjC,IAAI,YAAY,EAAE,aAAa,EAAE,CAAC;gBAC9B,WAAW,CAAC,aAAa,GAAG,sBAAU,CAAC,MAAM,EAAS,CAAC;YAC3D,CAAC;YAED,mDAAmD;YACnD,EAAE,CAAC,GAAG,CAAC,MAAM,EAAE,WAAiC,EAAE,EAAE,KAAK,EAAE,IAAI,EAAE,CAAC,CAAC;YAEnE,mEAAmE;YACnE,IAAI,SAAS,IAAI,cAAc,EAAE,CAAC;gBAC9B,MAAM,aAAa,GAAG,OAAO,CAAC,4BAA4B,CAAC,GAAG,EAAE,SAAS,CAAC,CAAC;gBAC3E,EAAE,CAAC,GAAG,CAAC,aAAa,EAAE,cAAc,CAAC,CAAC;YAC1C,CAAC;iBAAM,IAAI,YAAY,EAAE,CAAC;gBACtB,EAAE,CAAC,GAAG,CAAC,WAAW,EAAE,YAAY,CAAC,CAAC;YACtC,CAAC;QACL,CAAC,CAAC,CAAC;QAEH,WAAI,CAAC,gBAAgB,CAAC,KAAK,CAAC,KAAK,EAAE,aAAa,CAAC,EAAE,CAAC,CAAC;IACzD,CAAC;IAAC,OAAO,KAAU,EAAE,CAAC;QAClB,WAAI,CAAC,KAAK,CAAC,KAAK,CAAC,CAAC;QAClB,MAAM,KAAK,CAAC;IAChB,CAAC;AACL,CAAC,CAAC;AAzIW,QAAA,kBAAkB,sBAyI7B"}

package/lib/handlers/subscriptions.d.ts

@@ -0,0 +1,4 @@
+import * as admin from 'firebase-admin';
+import Razorpay from 'razorpay';
+import { WebhookEvent, RazorpaySyncConfig } from '../types';
+export declare const handleSubscriptionEvent: (event: WebhookEvent, db: admin.firestore.Firestore, razorpayClient: InstanceType<typeof Razorpay>, config: RazorpaySyncConfig) => Promise<void>;

package/lib/handlers/subscriptions.js

@@ -0,0 +1,87 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.handleSubscriptionEvent = void 0;
+const firestore_1 = require("firebase-admin/firestore");
+const logs_1 = require("../logs");
+const retry_1 = require("../utils/retry");
+const customerMapping_1 = require("../utils/customerMapping");
+const typedFirestore_1 = require("../utils/typedFirestore");
+const handleSubscriptionEvent = async (event, db, razorpayClient, config) => {
+    const webhookSubscription = event.payload.subscription?.entity;
+    if (!webhookSubscription?.id) {
+        logs_1.logs.error(new Error(`Missing subscription entity or ID in webhook payload: ${event.id}`));
+        return;
+    }
+    let subscriptionEntity;
+    try {
+        subscriptionEntity = await (0, retry_1.fetchWithBackoff)(() => razorpayClient.subscriptions.fetch(webhookSubscription.id));
+    }
+    catch (err) {
+        logs_1.logs.error(new Error(`Failed to fetch subscription from Razorpay API: ${webhookSubscription.id}. Error: ${err.message}`));
+        if ((0, retry_1.isTransientError)(err)) {
+            throw err;
+        }
+        return;
+    }
+    const customerId = subscriptionEntity.customer_id;
+    if (!customerId) {
+        logs_1.logs.error(new Error(`No customer_id found on subscription ${subscriptionEntity.id}. Cannot resolve UID.`));
+        return;
+    }
+    const uid = await (0, customerMapping_1.getUidByCustomerId)(customerId, config.customersCollection);
+    if (!uid) {
+        logs_1.logs.error(new Error(`No Firebase UID found mapped to Razorpay Customer ID ${customerId} for subscription ${subscriptionEntity.id}`));
+        return;
+    }
+    const newStatus = String(subscriptionEntity.status);
+    const subscriptionId = subscriptionEntity.id;
+    const typedFs = new typedFirestore_1.TypedFirestore(db, config);
+    const docRef = typedFs.getSubscriptionDoc(uid, subscriptionId);
+    let paymentEntity = null;
+    const webhookPayment = event.payload.payment?.entity || (event.payload.payment?.id ? event.payload.payment : null);
+    if (webhookPayment?.id) {
+        try {
+            paymentEntity = await (0, retry_1.fetchWithBackoff)(() => razorpayClient.payments.fetch(webhookPayment.id));
+        }
+        catch (err) {
+            logs_1.logs.error(new Error(`Failed to fetch payment from Razorpay API: ${webhookPayment.id}. Error: ${err.message}`));
+            if ((0, retry_1.isTransientError)(err)) {
+                throw err;
+            }
+        }
+    }
+    try {
+        await db.runTransaction(async (tx) => {
+            const existingDoc = await tx.get(docRef);
+            if (!existingDoc.exists) {
+                logs_1.logs.error(new Error(`Subscription document does not exist in Firestore for ID: ${subscriptionId}. Rejecting webhook event.`));
+                return;
+            }
+            const existingData = existingDoc.data();
+            const dataToWrite = {
+                status: newStatus,
+                updated_at: firestore_1.FieldValue.serverTimestamp(),
+            };
+            if (existingData?.processing_at) {
+                dataToWrite.processing_at = firestore_1.FieldValue.delete();
+            }
+            // Update status and timestamp on the main document
+            tx.set(docRef, dataToWrite, { merge: true });
+            // Store the raw subscription object in the canonical subcollection
+            const detailsDocRef = typedFs.getSubscriptionDetailsDoc(uid, subscriptionId);
+            tx.set(detailsDocRef, subscriptionEntity);
+            // Store the raw payment entity directly in the payments subcollection
+            if (paymentEntity) {
+                const paymentRef = typedFs.getSubscriptionPaymentDoc(uid, subscriptionId, paymentEntity.id);
+                tx.set(paymentRef, paymentEntity);
+            }
+        });
+        logs_1.logs.webhookProcessed(event.event, subscriptionEntity.id);
+    }
+    catch (error) {
+        logs_1.logs.error(error);
+        throw error;
+    }
+};
+exports.handleSubscriptionEvent = handleSubscriptionEvent;
+//# sourceMappingURL=subscriptions.js.map

package/lib/handlers/subscriptions.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"subscriptions.js","sourceRoot":"","sources":["../../src/handlers/subscriptions.ts"],"names":[],"mappings":";;;AAAA,wDAAsD;AAKtD,kCAA+B;AAE/B,0CAAoE;AACpE,8DAA8D;AAC9D,4DAAyD;AAElD,MAAM,uBAAuB,GAAG,KAAK,EACxC,KAAmB,EACnB,EAA6B,EAC7B,cAA6C,EAC7C,MAA0B,EAC5B,EAAE;IACA,MAAM,mBAAmB,GAAG,KAAK,CAAC,OAAO,CAAC,YAAY,EAAE,MAAM,CAAC;IAE/D,IAAI,CAAC,mBAAmB,EAAE,EAAE,EAAE,CAAC;QAC3B,WAAI,CAAC,KAAK,CAAC,IAAI,KAAK,CAAC,yDAAyD,KAAK,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC;QAC3F,OAAO;IACX,CAAC;IAED,IAAI,kBAAsD,CAAC;IAC3D,IAAI,CAAC;QACD,kBAAkB,GAAG,MAAM,IAAA,wBAAgB,EAAC,GAAG,EAAE,CAAC,cAAc,CAAC,aAAa,CAAC,KAAK,CAAC,mBAAmB,CAAC,EAAE,CAAC,CAAC,CAAC;IAClH,CAAC;IAAC,OAAO,GAAQ,EAAE,CAAC;QAChB,WAAI,CAAC,KAAK,CAAC,IAAI,KAAK,CAAC,mDAAmD,mBAAmB,CAAC,EAAE,YAAY,GAAG,CAAC,OAAO,EAAE,CAAC,CAAC,CAAC;QAC1H,IAAI,IAAA,wBAAgB,EAAC,GAAG,CAAC,EAAE,CAAC;YACxB,MAAM,GAAG,CAAC;QACd,CAAC;QACD,OAAO;IACX,CAAC;IAED,MAAM,UAAU,GAAG,kBAAkB,CAAC,WAAW,CAAC;IAClD,IAAI,CAAC,UAAU,EAAE,CAAC;QACd,WAAI,CAAC,KAAK,CAAC,IAAI,KAAK,CAAC,wCAAwC,kBAAkB,CAAC,EAAE,uBAAuB,CAAC,CAAC,CAAC;QAC5G,OAAO;IACX,CAAC;IAED,MAAM,GAAG,GAAG,MAAM,IAAA,oCAAkB,EAAC,UAAU,EAAE,MAAM,CAAC,mBAAmB,CAAC,CAAC;IAC7E,IAAI,CAAC,GAAG,EAAE,CAAC;QACP,WAAI,CAAC,KAAK,CAAC,IAAI,KAAK,CAAC,wDAAwD,UAAU,qBAAqB,kBAAkB,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC;QACtI,OAAO;IACX,CAAC;IAED,MAAM,SAAS,GAAG,MAAM,CAAC,kBAAkB,CAAC,MAAM,CAAC,CAAC;IACpD,MAAM,cAAc,GAAG,kBAAkB,CAAC,EAAE,CAAC;IAE7C,MAAM,OAAO,GAAG,IAAI,+BAAc,CAAC,EAAE,EAAE,MAAM,CAAC,CAAC;IAC/C,MAAM,MAAM,GAAG,OAAO,CAAC,kBAAkB,CAAC,GAAG,EAAE,cAAc,CAAC,CAAC;IAE/D,IAAI,aAAa,GAAoC,IAAI,CAAC;IAC1D,MAAM,cAAc,GAAG,KAAK,CAAC,OAAO,CAAC,OAAO,EAAE,MAAM,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,OAAO,EAAE,EAAE,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,OAAO,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC;IACnH,IAAI,cAAc,EAAE,EAAE,EAAE,CAAC;QACrB,IAAI,CAAC;YACD,aAAa,GAAG,MAAM,IAAA,wBAAgB,EAAC,GAAG,EAAE,CAAC,cAAc,CAAC,QAAQ,CAAC,KAAK,CAAC,cAAc,CAAC,EAAE,CAAC,CAAC,CAAC;QACnG,CAAC;QAAC,OAAO,GAAQ,EAAE,CAAC;YAChB,WAAI,CAAC,KAAK,CAAC,IAAI,KAAK,CAAC,8CAA8C,cAAc,CAAC,EAAE,YAAY,GAAG,CAAC,OAAO,EAAE,CAAC,CAAC,CAAC;YAChH,IAAI,IAAA,wBAAgB,EAAC,GAAG,CAAC,EAAE,CAAC;gBACxB,MAAM,GAAG,CAAC;YACd,CAAC;QACL,CAAC;IACL,CAAC;IAED,IAAI,CAAC;QACD,MAAM,EAAE,CAAC,cAAc,CAAC,KAAK,EAAE,EAAE,EAAE,EAAE;YACjC,MAAM,WAAW,GAAG,MAAM,EAAE,CAAC,GAAG,CAAC,MAAM,CAAC,CAAC;YACzC,IAAI,CAAC,WAAW,CAAC,MAAM,EAAE,CAAC;gBACtB,WAAI,CAAC,KAAK,CAAC,IAAI,KAAK,CAAC,6DAA6D,cAAc,4BAA4B,CAAC,CAAC,CAAC;gBAC/H,OAAO;YACX,CAAC;YAED,MAAM,YAAY,GAAG,WAAW,CAAC,IAAI,EAAE,CAAC;YAExC,MAAM,WAAW,GAA6B;gBAC1C,MAAM,EAAE,SAAS;gBACjB,UAAU,EAAE,sBAAU,CAAC,eAAe,EAAE;aAC3C,CAAC;YAEF,IAAI,YAAY,EAAE,aAAa,EAAE,CAAC;gBAC9B,WAAW,CAAC,aAAa,GAAG,sBAAU,CAAC,MAAM,EAAS,CAAC;YAC3D,CAAC;YAED,mDAAmD;YACnD,EAAE,CAAC,GAAG,CAAC,MAAM,EAAE,WAA8B,EAAE,EAAE,KAAK,EAAE,IAAI,EAAE,CAAC,CAAC;YAEhE,mEAAmE;YACnE,MAAM,aAAa,GAAG,OAAO,CAAC,yBAAyB,CAAC,GAAG,EAAE,cAAc,CAAC,CAAC;YAC7E,EAAE,CAAC,GAAG,CAAC,aAAa,EAAE,kBAAkB,CAAC,CAAC;YAE1C,sEAAsE;YACtE,IAAI,aAAa,EAAE,CAAC;gBAChB,MAAM,UAAU,GAAG,OAAO,CAAC,yBAAyB,CAAC,GAAG,EAAE,cAAc,EAAE,aAAa,CAAC,EAAE,CAAC,CAAC;gBAC5F,EAAE,CAAC,GAAG,CAAC,UAAU,EAAE,aAAa,CAAC,CAAC;YACtC,CAAC;QACL,CAAC,CAAC,CAAC;QAEH,WAAI,CAAC,gBAAgB,CAAC,KAAK,CAAC,KAAK,EAAE,kBAAkB,CAAC,EAAE,CAAC,CAAC;IAC9D,CAAC;IAAC,OAAO,KAAU,EAAE,CAAC;QAClB,WAAI,CAAC,KAAK,CAAC,KAAK,CAAC,CAAC;QAClB,MAAM,KAAK,CAAC;IAChB,CAAC;AACL,CAAC,CAAC;AA7FW,QAAA,uBAAuB,2BA6FlC"}

package/lib/index.d.ts

@@ -0,0 +1,29 @@
+import { RazorpayUserConfig } from './types';
+export { RazorpayUserConfig, RazorpaySyncConfig } from './types';
+export declare function initializeRazorpay(userConfig: RazorpayUserConfig): {
+    createOrder: import("firebase-functions/v2/core").CloudFunction<import("firebase-functions/v2/firestore").FirestoreEvent<import("firebase-functions/v2/firestore").QueryDocumentSnapshot | undefined, {
+        uid: string;
+        id: string;
+    }>>;
+    createSubscription: import("firebase-functions/v2/core").CloudFunction<import("firebase-functions/v2/firestore").FirestoreEvent<import("firebase-functions/v2/firestore").QueryDocumentSnapshot | undefined, {
+        uid: string;
+        id: string;
+    }>>;
+    createCustomer: import("firebase-functions/v1").CloudFunction<import("firebase-admin/auth").UserRecord>;
+    onUserDeleted: import("firebase-functions/v1").CloudFunction<import("firebase-admin/auth").UserRecord>;
+    onCustomerDataDeleted: import("firebase-functions/v1").CloudFunction<import("firebase-functions/v1/firestore").QueryDocumentSnapshot>;
+    webhookHandler: import("firebase-functions/v2/https").HttpsFunction;
+    cancelSubscription: import("firebase-functions/v2/https").CallableFunction<any, Promise<{
+        status: "cancelled" | "active" | "pending" | "created" | "expired" | "authenticated" | "halted" | "completed";
+    }>>;
+    updateSubscriptionPlan: import("firebase-functions/v2/https").CallableFunction<any, Promise<{
+        plan_id: string;
+        status: "cancelled" | "active" | "pending" | "created" | "expired" | "authenticated" | "halted" | "completed";
+    }>>;
+    createPlan: import("firebase-functions/v2/https").CallableFunction<any, Promise<import("./types").ProductDoc>>;
+    syncPlans: import("firebase-functions/v2/https").CallableFunction<any, Promise<{
+        status: string;
+        count: number;
+        productsCount: number;
+    }>>;
+};

package/lib/index.js

@@ -0,0 +1,88 @@
+"use strict";
+var __importDefault = (this && this.__importDefault) || function (mod) {
+    return (mod && mod.__esModule) ? mod : { "default": mod };
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.initializeRazorpay = initializeRazorpay;
+const razorpay_1 = __importDefault(require("razorpay"));
+const eventarc_1 = require("firebase-admin/eventarc");
+const logs_1 = require("./logs");
+// Import builders
+const createOrder_1 = require("./triggers/createOrder");
+const createSubscription_1 = require("./triggers/createSubscription");
+const createCustomer_1 = require("./triggers/createCustomer");
+const onUserDeleted_1 = require("./triggers/onUserDeleted");
+const subscriptions_1 = require("./callables/subscriptions");
+const admin_1 = require("./admin");
+const api_1 = require("./api");
+function initializeRazorpay(userConfig) {
+    // 1. Log initialization
+    logs_1.logs.init();
+    // 2. Validate required configs
+    if (!userConfig.keyId || !userConfig.keySecret) {
+        throw new Error("keyId or keySecret is missing. Razorpay functions cannot be initialized.");
+    }
+    else if (!userConfig.keyId.startsWith('rzp_')) {
+        throw new Error(`keyId seems malformed (expected to start with 'rzp_'). Configuration is invalid.`);
+    }
+    if (!userConfig.webhookSecret) {
+        throw new Error('webhookSecret is missing. Razorpay functions cannot be initialized.');
+    }
+    // 3. Apply defaults
+    const config = {
+        keyId: userConfig.keyId,
+        keySecret: userConfig.keySecret,
+        webhookSecret: userConfig.webhookSecret,
+        customersCollection: userConfig.customersCollection || 'customers',
+        productsCollection: userConfig.productsCollection || 'products',
+        syncCustomers: userConfig.syncCustomers ?? true,
+        eventarcChannel: userConfig.eventarcChannel,
+        allowedEventTypes: userConfig.allowedEventTypes,
+    };
+    // 4. Initialize Razorpay Client once
+    const rzpClient = new razorpay_1.default({
+        key_id: config.keyId,
+        key_secret: config.keySecret,
+    });
+    // Allow overriding the API base URL (for emulator/integration testing ONLY)
+    if (process.env.RAZORPAY_API_URL) {
+        if (process.env.NODE_ENV === 'production') {
+            logs_1.logs.error(new Error('RAZORPAY_API_URL is set in production. This is a security risk (SSRF). Ignoring.'));
+        }
+        else {
+            logs_1.logs.info(`Initializing Razorpay client with custom base URL: ${process.env.RAZORPAY_API_URL}`);
+            rzpClient.api.rq.defaults.baseURL = process.env.RAZORPAY_API_URL;
+        }
+    }
+    // 5. Initialize Eventarc channel if configured
+    let eventChannel = null;
+    if (config.eventarcChannel) {
+        try {
+            eventChannel = (0, eventarc_1.getEventarc)().channel(config.eventarcChannel, {
+                allowedEventTypes: config.allowedEventTypes,
+            });
+        }
+        catch (e) {
+            logs_1.logs.error(`Failed to initialize Eventarc channel: ${e.message || e}`);
+        }
+    }
+    // 6. Build and return grouped functions
+    return {
+        // Session and Subscription Firestore Triggers
+        createOrder: (0, createOrder_1.buildCreateOrder)(config, rzpClient),
+        createSubscription: (0, createSubscription_1.buildCreateSubscription)(config, rzpClient),
+        // Auth and lifecycle triggers
+        createCustomer: (0, createCustomer_1.buildCreateCustomer)(config, rzpClient),
+        onUserDeleted: (0, onUserDeleted_1.buildOnUserDeleted)(config),
+        onCustomerDataDeleted: (0, onUserDeleted_1.buildOnCustomerDataDeleted)(config, rzpClient),
+        // HTTPS Webhook Handler
+        webhookHandler: (0, api_1.buildWebhookHandler)(config, rzpClient, eventChannel),
+        // Client Callables
+        cancelSubscription: (0, subscriptions_1.buildCancelSubscription)(config, rzpClient),
+        updateSubscriptionPlan: (0, subscriptions_1.buildUpdateSubscriptionPlan)(config, rzpClient),
+        // Admin callables
+        createPlan: (0, admin_1.buildCreatePlan)(config, rzpClient),
+        syncPlans: (0, admin_1.buildSyncPlans)(config, rzpClient),
+    };
+}
+//# sourceMappingURL=index.js.map

package/lib/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":";;;;;AAgBA,gDA6EC;AA7FD,wDAAgC;AAChC,sDAA+D;AAE/D,iCAA8B;AAE9B,kBAAkB;AAClB,wDAA0D;AAC1D,sEAAwE;AACxE,8DAAgE;AAChE,4DAA0F;AAC1F,6DAAiG;AACjG,mCAA0D;AAC1D,+BAA4C;AAI5C,SAAgB,kBAAkB,CAAC,UAA8B;IAC7D,wBAAwB;IACxB,WAAI,CAAC,IAAI,EAAE,CAAC;IAEZ,+BAA+B;IAC/B,IAAI,CAAC,UAAU,CAAC,KAAK,IAAI,CAAC,UAAU,CAAC,SAAS,EAAE,CAAC;QAC7C,MAAM,IAAI,KAAK,CAAC,0EAA0E,CAAC,CAAC;IAChG,CAAC;SAAM,IAAI,CAAC,UAAU,CAAC,KAAK,CAAC,UAAU,CAAC,MAAM,CAAC,EAAE,CAAC;QAC9C,MAAM,IAAI,KAAK,CAAC,kFAAkF,CAAC,CAAC;IACxG,CAAC;IAED,IAAI,CAAC,UAAU,CAAC,aAAa,EAAE,CAAC;QAC5B,MAAM,IAAI,KAAK,CAAC,qEAAqE,CAAC,CAAC;IAC3F,CAAC;IAED,oBAAoB;IACpB,MAAM,MAAM,GAAuB;QAC/B,KAAK,EAAE,UAAU,CAAC,KAAK;QACvB,SAAS,EAAE,UAAU,CAAC,SAAS;QAC/B,aAAa,EAAE,UAAU,CAAC,aAAa;QACvC,mBAAmB,EAAE,UAAU,CAAC,mBAAmB,IAAI,WAAW;QAClE,kBAAkB,EAAE,UAAU,CAAC,kBAAkB,IAAI,UAAU;QAC/D,aAAa,EAAE,UAAU,CAAC,aAAa,IAAI,IAAI;QAC/C,eAAe,EAAE,UAAU,CAAC,eAAe;QAC3C,iBAAiB,EAAE,UAAU,CAAC,iBAAiB;KAClD,CAAC;IAEF,qCAAqC;IACrC,MAAM,SAAS,GAAG,IAAI,kBAAQ,CAAC;QAC3B,MAAM,EAAE,MAAM,CAAC,KAAK;QACpB,UAAU,EAAE,MAAM,CAAC,SAAS;KAC/B,CAAC,CAAC;IAEH,4EAA4E;IAC5E,IAAI,OAAO,CAAC,GAAG,CAAC,gBAAgB,EAAE,CAAC;QAC/B,IAAI,OAAO,CAAC,GAAG,CAAC,QAAQ,KAAK,YAAY,EAAE,CAAC;YACxC,WAAI,CAAC,KAAK,CAAC,IAAI,KAAK,CAAC,kFAAkF,CAAC,CAAC,CAAC;QAC9G,CAAC;aAAM,CAAC;YACJ,WAAI,CAAC,IAAI,CAAC,sDAAsD,OAAO,CAAC,GAAG,CAAC,gBAAgB,EAAE,CAAC,CAAC;YAC/F,SAAiB,CAAC,GAAG,CAAC,EAAE,CAAC,QAAQ,CAAC,OAAO,GAAG,OAAO,CAAC,GAAG,CAAC,gBAAgB,CAAC;QAC9E,CAAC;IACL,CAAC;IAED,+CAA+C;IAC/C,IAAI,YAAY,GAAmB,IAAI,CAAC;IACxC,IAAI,MAAM,CAAC,eAAe,EAAE,CAAC;QACzB,IAAI,CAAC;YACD,YAAY,GAAG,IAAA,sBAAW,GAAE,CAAC,OAAO,CAAC,MAAM,CAAC,eAAe,EAAE;gBACzD,iBAAiB,EAAE,MAAM,CAAC,iBAAiB;aAC9C,CAAC,CAAC;QACP,CAAC;QAAC,OAAO,CAAM,EAAE,CAAC;YACd,WAAI,CAAC,KAAK,CAAC,0CAA0C,CAAC,CAAC,OAAO,IAAI,CAAC,EAAE,CAAC,CAAC;QAC3E,CAAC;IACL,CAAC;IAED,wCAAwC;IACxC,OAAO;QACH,8CAA8C;QAC9C,WAAW,EAAE,IAAA,8BAAgB,EAAC,MAAM,EAAE,SAAS,CAAC;QAChD,kBAAkB,EAAE,IAAA,4CAAuB,EAAC,MAAM,EAAE,SAAS,CAAC;QAE9D,8BAA8B;QAC9B,cAAc,EAAE,IAAA,oCAAmB,EAAC,MAAM,EAAE,SAAS,CAAC;QACtD,aAAa,EAAE,IAAA,kCAAkB,EAAC,MAAM,CAAC;QACzC,qBAAqB,EAAE,IAAA,0CAA0B,EAAC,MAAM,EAAE,SAAS,CAAC;QAEpE,wBAAwB;QACxB,cAAc,EAAE,IAAA,yBAAmB,EAAC,MAAM,EAAE,SAAS,EAAE,YAAY,CAAC;QAEpE,mBAAmB;QACnB,kBAAkB,EAAE,IAAA,uCAAuB,EAAC,MAAM,EAAE,SAAS,CAAC;QAC9D,sBAAsB,EAAE,IAAA,2CAA2B,EAAC,MAAM,EAAE,SAAS,CAAC;QAEtE,kBAAkB;QAClB,UAAU,EAAE,IAAA,uBAAe,EAAC,MAAM,EAAE,SAAS,CAAC;QAC9C,SAAS,EAAE,IAAA,sBAAc,EAAC,MAAM,EAAE,SAAS,CAAC;KAC/C,CAAC;AACN,CAAC"}

package/lib/logs.d.ts

@@ -0,0 +1,10 @@
+export declare const logs: {
+    init: () => void;
+    info: (message: string) => void;
+    startWebhook: (eventType: string) => void;
+    webhookProcessed: (eventType: string, id: string) => void;
+    invalidSignature: () => void;
+    orderCreated: (orderId: string, docPath: string) => void;
+    subscriptionCreated: (subId: string, docPath: string) => void;
+    error: (message: string | Error, err?: unknown) => void;
+};

package/lib/logs.js

@@ -0,0 +1,36 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.logs = void 0;
+const firebase_functions_1 = require("firebase-functions");
+exports.logs = {
+    init: () => {
+        firebase_functions_1.logger.info('Initializing Razorpay Firebase package');
+    },
+    info: (message) => {
+        firebase_functions_1.logger.info(message);
+    },
+    startWebhook: (eventType) => {
+        firebase_functions_1.logger.info(`Started processing Razorpay webhook for event: ${eventType}`);
+    },
+    webhookProcessed: (eventType, id) => {
+        firebase_functions_1.logger.info(`Successfully processed webhook event ${eventType} for entity ${id}`);
+    },
+    invalidSignature: () => {
+        firebase_functions_1.logger.error('Webhook failed signature verification');
+    },
+    orderCreated: (orderId, docPath) => {
+        firebase_functions_1.logger.info(`Successfully created Razorpay order ${orderId} for ${docPath}`);
+    },
+    subscriptionCreated: (subId, docPath) => {
+        firebase_functions_1.logger.info(`Successfully created Razorpay subscription ${subId} for ${docPath}`);
+    },
+    error: (message, err) => {
+        if (err) {
+            firebase_functions_1.logger.error(message, err);
+        }
+        else {
+            firebase_functions_1.logger.error(message);
+        }
+    }
+};
+//# sourceMappingURL=logs.js.map

package/lib/logs.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"logs.js","sourceRoot":"","sources":["../src/logs.ts"],"names":[],"mappings":";;;AAAA,2DAA4C;AAE/B,QAAA,IAAI,GAAG;IAChB,IAAI,EAAE,GAAG,EAAE;QACP,2BAAM,CAAC,IAAI,CAAC,wCAAwC,CAAC,CAAC;IAC1D,CAAC;IAED,IAAI,EAAE,CAAC,OAAe,EAAE,EAAE;QACtB,2BAAM,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC;IACzB,CAAC;IAED,YAAY,EAAE,CAAC,SAAiB,EAAE,EAAE;QAChC,2BAAM,CAAC,IAAI,CAAC,kDAAkD,SAAS,EAAE,CAAC,CAAC;IAC/E,CAAC;IAED,gBAAgB,EAAE,CAAC,SAAiB,EAAE,EAAU,EAAE,EAAE;QAChD,2BAAM,CAAC,IAAI,CAAC,wCAAwC,SAAS,eAAe,EAAE,EAAE,CAAC,CAAC;IACtF,CAAC;IAED,gBAAgB,EAAE,GAAG,EAAE;QACnB,2BAAM,CAAC,KAAK,CAAC,uCAAuC,CAAC,CAAC;IAC1D,CAAC;IAED,YAAY,EAAE,CAAC,OAAe,EAAE,OAAe,EAAE,EAAE;QAC/C,2BAAM,CAAC,IAAI,CAAC,uCAAuC,OAAO,QAAQ,OAAO,EAAE,CAAC,CAAC;IACjF,CAAC;IAED,mBAAmB,EAAE,CAAC,KAAa,EAAE,OAAe,EAAE,EAAE;QACpD,2BAAM,CAAC,IAAI,CAAC,8CAA8C,KAAK,QAAQ,OAAO,EAAE,CAAC,CAAC;IACtF,CAAC;IAED,KAAK,EAAE,CAAC,OAAuB,EAAE,GAAa,EAAE,EAAE;QAC9C,IAAI,GAAG,EAAE,CAAC;YACN,2BAAM,CAAC,KAAK,CAAC,OAAO,EAAE,GAAG,CAAC,CAAC;QAC/B,CAAC;aAAM,CAAC;YACJ,2BAAM,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC;QAC1B,CAAC;IACL,CAAC;CACJ,CAAC"}

package/lib/security.d.ts

@@ -0,0 +1 @@
+export declare const verifyWebhookSignature: (payload: string, signature: string, webhookSecret: string) => boolean;

package/lib/security.js

@@ -0,0 +1,14 @@
+"use strict";
+var __importDefault = (this && this.__importDefault) || function (mod) {
+    return (mod && mod.__esModule) ? mod : { "default": mod };
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.verifyWebhookSignature = void 0;
+const razorpay_1 = __importDefault(require("razorpay"));
+const verifyWebhookSignature = (payload, signature, webhookSecret) => {
+    if (!signature || !payload || !webhookSecret)
+        return false;
+    return razorpay_1.default.validateWebhookSignature(payload, signature, webhookSecret);
+};
+exports.verifyWebhookSignature = verifyWebhookSignature;
+//# sourceMappingURL=security.js.map

package/lib/security.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"security.js","sourceRoot":"","sources":["../src/security.ts"],"names":[],"mappings":";;;;;;AAAA,wDAAgC;AAEzB,MAAM,sBAAsB,GAAG,CAClC,OAAe,EACf,SAAiB,EACjB,aAAqB,EACd,EAAE;IACT,IAAI,CAAC,SAAS,IAAI,CAAC,OAAO,IAAI,CAAC,aAAa;QAAE,OAAO,KAAK,CAAC;IAE3D,OAAO,kBAAQ,CAAC,wBAAwB,CACpC,OAAO,EACP,SAAS,EACT,aAAa,CAChB,CAAC;AACN,CAAC,CAAC;AAZW,QAAA,sBAAsB,0BAYjC"}

package/lib/triggers/createCustomer.d.ts

@@ -0,0 +1,4 @@
+import * as functions from 'firebase-functions';
+import Razorpay from 'razorpay';
+import { RazorpaySyncConfig } from '../types';
+export declare const buildCreateCustomer: (config: RazorpaySyncConfig, rzp: Razorpay) => functions.CloudFunction<import("firebase-admin/auth").UserRecord>;