npm - @nokinc-flur/sdk - Versions diffs - 2.0.0 → 2.1.0 - Mend

@nokinc-flur/sdk 2.0.0 → 2.1.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (7) hide show

package/dist/index.d.cts CHANGED Viewed

@@ -3427,13 +3427,25 @@ declare const ConsumerPaymentClaimSchema: z.ZodObject<{
     payerUserId: z.ZodString;
     payeeUserId: z.ZodString;
     payerDeviceId: z.ZodString;
-    payerNonce: z.ZodString;
-    payeeNonce: z.ZodString;
+    payerNonce: z.ZodEffects<z.ZodString, string, string>;
+    payeeNonce: z.ZodEffects<z.ZodString, string, string>;
     amountKobo: z.ZodNumber;
     currency: z.ZodDefault<z.ZodString>;
     occurredAtMs: z.ZodNumber;
     completedAtMs: z.ZodOptional<z.ZodNumber>;
     contextId: z.ZodOptional<z.ZodString>;
+    requestId: z.ZodOptional<z.ZodString>;
+    requestMode: z.ZodOptional<z.ZodEnum<["fixed", "editable"]>>;
+    requestTakerUserId: z.ZodOptional<z.ZodString>;
+    requestAmountKobo: z.ZodOptional<z.ZodNumber>;
+    requestCurrency: z.ZodOptional<z.ZodString>;
+    requestReference: z.ZodOptional<z.ZodNullable<z.ZodString>>;
+    requestCreatedAtMs: z.ZodOptional<z.ZodNumber>;
+    requestExpiresAtMs: z.ZodOptional<z.ZodNumber>;
+    requestNonce: z.ZodOptional<z.ZodString>;
+    requestTakerDeviceId: z.ZodOptional<z.ZodNullable<z.ZodString>>;
+    requestTakerPubkeySpkiB64: z.ZodOptional<z.ZodString>;
+    requestTakerSignatureDerB64: z.ZodOptional<z.ZodString>;
     payerPubkeySpkiB64: z.ZodString;
     payerSignatureDerB64: z.ZodString;
     payeePubkeySpkiB64: z.ZodOptional<z.ZodString>;
@@ -3451,9 +3463,21 @@ declare const ConsumerPaymentClaimSchema: z.ZodObject<{
     payerDeviceId: string;
     payerPubkeySpkiB64: string;
     payerSignatureDerB64: string;
+    requestId?: string | undefined;
     encounterId?: string | undefined;
     completedAtMs?: number | undefined;
     contextId?: string | undefined;
+    requestMode?: "fixed" | "editable" | undefined;
+    requestTakerUserId?: string | undefined;
+    requestAmountKobo?: number | undefined;
+    requestCurrency?: string | undefined;
+    requestReference?: string | null | undefined;
+    requestCreatedAtMs?: number | undefined;
+    requestExpiresAtMs?: number | undefined;
+    requestNonce?: string | undefined;
+    requestTakerDeviceId?: string | null | undefined;
+    requestTakerPubkeySpkiB64?: string | undefined;
+    requestTakerSignatureDerB64?: string | undefined;
     payeePubkeySpkiB64?: string | undefined;
     payeeSignatureDerB64?: string | undefined;
 }, {
@@ -3467,11 +3491,23 @@ declare const ConsumerPaymentClaimSchema: z.ZodObject<{
     payerDeviceId: string;
     payerPubkeySpkiB64: string;
     payerSignatureDerB64: string;
+    requestId?: string | undefined;
     currency?: string | undefined;
     encounterId?: string | undefined;
     completedAtMs?: number | undefined;
     contextId?: string | undefined;
     alg?: "p256" | undefined;
+    requestMode?: "fixed" | "editable" | undefined;
+    requestTakerUserId?: string | undefined;
+    requestAmountKobo?: number | undefined;
+    requestCurrency?: string | undefined;
+    requestReference?: string | null | undefined;
+    requestCreatedAtMs?: number | undefined;
+    requestExpiresAtMs?: number | undefined;
+    requestNonce?: string | undefined;
+    requestTakerDeviceId?: string | null | undefined;
+    requestTakerPubkeySpkiB64?: string | undefined;
+    requestTakerSignatureDerB64?: string | undefined;
     payeePubkeySpkiB64?: string | undefined;
     payeeSignatureDerB64?: string | undefined;
 }>;
@@ -3490,35 +3526,40 @@ declare const ConsumerSettlementSchema: z.ZodObject<{
     ledgerRef: z.ZodNullable<z.ZodString>;
     /** ASN.1 DER ECDSA P-256 issuer signature, base64. */
     issuerSig: z.ZodString;
-    createdAtMs: z.ZodNumber;
+    /** Canonical millisecond timestamp signed into the settlement receipt. */
+    issuedAtMs: z.ZodNumber;
+    /** Compatibility alias for API consumers that predate issuedAtMs. */
+    createdAtMs: z.ZodOptional<z.ZodNumber>;
 }, "strip", z.ZodTypeAny, {
     status: "SETTLED" | "REVIEW";
     currency: string;
-    createdAtMs: number;
     amountKobo: number;
     payerUserId: string;
     ledgerRef: string | null;
     issuerSig: string;
+    issuedAtMs: number;
     encounterId: string;
     payeeUserId: string;
     settlementId: string;
     settlementKey: string;
     oacId: string;
     reviewReason: string | null;
+    createdAtMs?: number | undefined;
 }, {
     status: "SETTLED" | "REVIEW";
     currency: string;
-    createdAtMs: number;
     amountKobo: number;
     payerUserId: string;
     ledgerRef: string | null;
     issuerSig: string;
+    issuedAtMs: number;
     encounterId: string;
     payeeUserId: string;
     settlementId: string;
     settlementKey: string;
     oacId: string;
     reviewReason: string | null;
+    createdAtMs?: number | undefined;
 }>;
 type ConsumerSettlement = z.infer<typeof ConsumerSettlementSchema>;
 declare const ConsumerSettleResultSchema: z.ZodObject<{
@@ -3536,35 +3577,40 @@ declare const ConsumerSettleResultSchema: z.ZodObject<{
         ledgerRef: z.ZodNullable<z.ZodString>;
         /** ASN.1 DER ECDSA P-256 issuer signature, base64. */
         issuerSig: z.ZodString;
-        createdAtMs: z.ZodNumber;
+        /** Canonical millisecond timestamp signed into the settlement receipt. */
+        issuedAtMs: z.ZodNumber;
+        /** Compatibility alias for API consumers that predate issuedAtMs. */
+        createdAtMs: z.ZodOptional<z.ZodNumber>;
     }, "strip", z.ZodTypeAny, {
         status: "SETTLED" | "REVIEW";
         currency: string;
-        createdAtMs: number;
         amountKobo: number;
         payerUserId: string;
         ledgerRef: string | null;
         issuerSig: string;
+        issuedAtMs: number;
         encounterId: string;
         payeeUserId: string;
         settlementId: string;
         settlementKey: string;
         oacId: string;
         reviewReason: string | null;
+        createdAtMs?: number | undefined;
     }, {
         status: "SETTLED" | "REVIEW";
         currency: string;
-        createdAtMs: number;
         amountKobo: number;
         payerUserId: string;
         ledgerRef: string | null;
         issuerSig: string;
+        issuedAtMs: number;
         encounterId: string;
         payeeUserId: string;
         settlementId: string;
         settlementKey: string;
         oacId: string;
         reviewReason: string | null;
+        createdAtMs?: number | undefined;
     }>;
     encounterId: z.ZodString;
     replayed: z.ZodBoolean;
@@ -3574,17 +3620,18 @@ declare const ConsumerSettleResultSchema: z.ZodObject<{
     settlement: {
         status: "SETTLED" | "REVIEW";
         currency: string;
-        createdAtMs: number;
         amountKobo: number;
         payerUserId: string;
         ledgerRef: string | null;
         issuerSig: string;
+        issuedAtMs: number;
         encounterId: string;
         payeeUserId: string;
         settlementId: string;
         settlementKey: string;
         oacId: string;
         reviewReason: string | null;
+        createdAtMs?: number | undefined;
     };
 }, {
     replayed: boolean;
@@ -3592,17 +3639,18 @@ declare const ConsumerSettleResultSchema: z.ZodObject<{
     settlement: {
         status: "SETTLED" | "REVIEW";
         currency: string;
-        createdAtMs: number;
         amountKobo: number;
         payerUserId: string;
         ledgerRef: string | null;
         issuerSig: string;
+        issuedAtMs: number;
         encounterId: string;
         payeeUserId: string;
         settlementId: string;
         settlementKey: string;
         oacId: string;
         reviewReason: string | null;
+        createdAtMs?: number | undefined;
     };
 }>;
 type ConsumerSettleResult = z.infer<typeof ConsumerSettleResultSchema>;
@@ -3634,6 +3682,7 @@ type MeOfflineClient = {
     issueAccountOac: (input: IssueAccountOacInput) => Promise<OACRecord>;
     getStatus: (deviceId?: string) => Promise<OfflineStatusResult>;
     submitClaim: (claim: ConsumerPaymentClaim) => Promise<ConsumerSettleResult>;
+    getSettlement: (idOrKey: string) => Promise<ConsumerSettlement>;
 };
 declare function createMeOfflineClient(opts: MeOfflineClientOptions): MeOfflineClient;
@@ -3730,6 +3779,14 @@ declare function canonicalClaimSigningPayload(claim: CanonicalClaimInput): {
 };
 /** Bytes the signer must operate on. */
 declare function canonicalClaimSigningBytes(claim: CanonicalClaimInput): Uint8Array;
+/** Deterministic encounter id used by backend settlement dedupe. */
+declare function computeConsumerClaimEncounterId(input: {
+    oacId: string;
+    payerUserId: string;
+    payeeUserId: string;
+    payerNonce: string;
+    payeeNonce: string;
+}): string;
 /**
  * Software P-256 signer. Useful for:
  *   - test harnesses
@@ -3753,10 +3810,268 @@ interface VerifyClaimSignatureInput {
  */
 declare function verifyClaimSignature(input: VerifyClaimSignatureInput): boolean;
+declare const CONSUMER_PAYMENT_REQUEST_DOMAIN: "flur:consumer-offline:v1:request";
+declare const ConsumerPaymentRequestEnvelopeSchema: z.ZodEffects<z.ZodObject<{
+    requestId: z.ZodString;
+    mode: z.ZodEnum<["fixed", "editable"]>;
+    takerUserId: z.ZodString;
+    amountKobo: z.ZodNumber;
+    currency: z.ZodDefault<z.ZodString>;
+    reference: z.ZodDefault<z.ZodNullable<z.ZodString>>;
+    createdAtMs: z.ZodNumber;
+    expiresAtMs: z.ZodNumber;
+    nonce: z.ZodString;
+    takerDeviceId: z.ZodDefault<z.ZodNullable<z.ZodString>>;
+    takerPubkeySpkiB64: z.ZodOptional<z.ZodString>;
+    takerSignatureDerB64: z.ZodOptional<z.ZodString>;
+}, "strip", z.ZodTypeAny, {
+    requestId: string;
+    nonce: string;
+    currency: string;
+    createdAtMs: number;
+    reference: string | null;
+    amountKobo: number;
+    expiresAtMs: number;
+    mode: "fixed" | "editable";
+    takerUserId: string;
+    takerDeviceId: string | null;
+    takerPubkeySpkiB64?: string | undefined;
+    takerSignatureDerB64?: string | undefined;
+}, {
+    requestId: string;
+    nonce: string;
+    createdAtMs: number;
+    amountKobo: number;
+    expiresAtMs: number;
+    mode: "fixed" | "editable";
+    takerUserId: string;
+    currency?: string | undefined;
+    reference?: string | null | undefined;
+    takerDeviceId?: string | null | undefined;
+    takerPubkeySpkiB64?: string | undefined;
+    takerSignatureDerB64?: string | undefined;
+}>, {
+    requestId: string;
+    nonce: string;
+    currency: string;
+    createdAtMs: number;
+    reference: string | null;
+    amountKobo: number;
+    expiresAtMs: number;
+    mode: "fixed" | "editable";
+    takerUserId: string;
+    takerDeviceId: string | null;
+    takerPubkeySpkiB64?: string | undefined;
+    takerSignatureDerB64?: string | undefined;
+}, {
+    requestId: string;
+    nonce: string;
+    createdAtMs: number;
+    amountKobo: number;
+    expiresAtMs: number;
+    mode: "fixed" | "editable";
+    takerUserId: string;
+    currency?: string | undefined;
+    reference?: string | null | undefined;
+    takerDeviceId?: string | null | undefined;
+    takerPubkeySpkiB64?: string | undefined;
+    takerSignatureDerB64?: string | undefined;
+}>;
+type ConsumerPaymentRequestEnvelope = z.infer<typeof ConsumerPaymentRequestEnvelopeSchema>;
+type UnsignedConsumerPaymentRequest = Omit<ConsumerPaymentRequestEnvelope, 'takerPubkeySpkiB64' | 'takerSignatureDerB64'>;
+declare function buildConsumerPaymentRequest(input: {
+    requestId: string;
+    mode: 'fixed' | 'editable';
+    takerUserId: string;
+    amountKobo: number;
+    currency?: string;
+    reference?: string | null;
+    createdAtMs: number;
+    expiresAtMs: number;
+    nonce: string;
+    takerDeviceId?: string | null;
+}): UnsignedConsumerPaymentRequest;
+declare function consumerPaymentRequestSigningPayload(request: UnsignedConsumerPaymentRequest | ConsumerPaymentRequestEnvelope): {
+    domain: "flur:consumer-offline:v1:request";
+    version: number;
+    requestId: string;
+    mode: "fixed" | "editable";
+    takerUserId: string;
+    amountKobo: number;
+    currency: string;
+    reference: string | null;
+    createdAtMs: number;
+    expiresAtMs: number;
+    nonce: string;
+    takerDeviceId: string | null;
+};
+declare function consumerPaymentRequestSigningBytes(request: UnsignedConsumerPaymentRequest | ConsumerPaymentRequestEnvelope): Uint8Array;
+declare function signConsumerPaymentRequest(unsigned: UnsignedConsumerPaymentRequest, signer: OfflineClaimSigner): Promise<ConsumerPaymentRequestEnvelope>;
+declare function verifyConsumerPaymentRequest(request: ConsumerPaymentRequestEnvelope): boolean;
+declare function isConsumerPaymentRequestExpired(request: ConsumerPaymentRequestEnvelope, nowMs?: number): boolean;
+declare const CONSUMER_SETTLEMENT_DOMAIN: "flur:consumer-offline:v1:settlement";
+declare const CONSUMER_SETTLEMENT_RECEIPT_QR_PREFIX: "FLURSR1.";
+declare function consumerSettlementSigningPayload(settlement: ConsumerSettlement): {
+    domain: "flur:consumer-offline:v1:settlement";
+    settlementId: string;
+    settlementKey: string;
+    encounterId: string;
+    oacId: string;
+    payerUserId: string;
+    payeeUserId: string;
+    amountKobo: number;
+    currency: string;
+    status: "SETTLED" | "REVIEW";
+    reviewReason: string | null;
+    ledgerRef: string | null;
+    issuedAtMs: number;
+};
+declare function verifyConsumerSettlement(settlement: ConsumerSettlement, issuerPublicKeySpkiB64: string): boolean;
+declare function encodeConsumerSettlementReceiptQR(settlement: ConsumerSettlement): string;
+declare function decodeUnverifiedConsumerSettlementReceiptQR(value: string): ConsumerSettlement;
+declare function verifyConsumerSettlementReceiptQR(value: string, issuerPublicKeySpkiB64: string): ConsumerSettlement;
+/**
+ * @deprecated One-argument decode is unverified and exists only for 2.x
+ * source compatibility. Prefer `verifyConsumerSettlementReceiptQR(value,
+ * issuerPublicKeySpkiB64)` or pass the issuer key as the second argument.
+ */
+declare function decodeConsumerSettlementReceiptQR(value: string): ConsumerSettlement;
+declare function decodeConsumerSettlementReceiptQR(value: string, issuerPublicKeySpkiB64: string): ConsumerSettlement;
+/**
+ * FLURA1 — single-SMS consumer-offline settle token.
+ *
+ * Why this exists:
+ *  - The legacy `FLURC1.` codec packed the entire dual-party-signed
+ *    `ConsumerPaymentClaim` JSON into a base64url SMS, which (a) overran
+ *    the 160-char GSM-7 single-SMS budget for any non-trivial claim and
+ *    (b) leaked enough state through the carrier to allow a hostile relay
+ *    to replay the claim out-of-band.
+ *  - Text-banking rails in the real world (737-SMS, M-Pesa STK applet)
+ *    settle from a much smaller payload, but they substitute MSISDN trust
+ *    + tiny daily limits for cryptographic auth. We can do strictly better
+ *    because we already have hardware-backed P-256 device keys.
+ *
+ * FLURA1 wire (112 bytes, signed by the payer's hardware key):
+ *
+ *   off  len  field
+ *     0    1  version              0x01
+ *     1    1  flags                reserved, must be 0x00
+ *     2   16  encounterId prefix   first 16 of sha256(encounterId)
+ *    18    8  payer userId prefix  first 8 bytes of UUID binary
+ *    26    8  payee userId prefix  first 8 bytes of UUID binary
+ *    34    8  amountKobo           uint64 big-endian
+ *    42    6  occurredAtMs         uint48 big-endian
+ *    48   64  signature            raw ECDSA-P256 r‖s (32 + 32)
+ *
+ * Signing input is `FLURA1_DOMAIN ‖ bytes[0..47]` (31 + 48 = 79 bytes),
+ * SHA-256-prehashed inside `p256.sign`. Currency is the platform invariant
+ * NGN and never travels on the wire. The backend resolves full UUIDs from
+ * the 8-byte prefixes (collision probability < 1e-12 at our scale; the
+ * backend rejects ambiguous matches).
+ *
+ * Wire encoding: `FLURA1.<base64url(112 bytes)>` = 7 + 150 = 157 chars,
+ * fits one GSM-7 SMS with 3 chars to spare.
+ *
+ * This payload is enough to *settle* unilaterally — the payer's signature
+ * is the authority, the OAC active at `occurredAtMs` is the limit. The
+ * payee can dispute the amount in person; the ledger move is final once
+ * verified, just like cash.
+ */
+/**
+ * Full-claim QR envelope used for authenticated app-to-app relay. This is
+ * intentionally NOT the carrier-SMS settle rail: the JSON claim can exceed
+ * a single SMS and must not be sent to the provider webhook. Mobile keeps
+ * this for QR/paste flows that submit to `/v1/me/offline/claims`.
+ */
 declare const OFFLINE_CLAIM_SMS_PREFIX: "FLURC1.";
 declare function encodeOfflineClaimSmsMessage(claim: ConsumerPaymentClaim): string;
 declare function decodeOfflineClaimSmsMessage(message: string): ConsumerPaymentClaim;
 declare function extractOfflineClaimSmsToken(message: string): string | null;
+declare const OFFLINE_SMS_SETTLE_PREFIX: "FLURA1.";
+/** Domain string prepended to the 48-byte header before signing/verifying. */
+declare const OFFLINE_SMS_SETTLE_DOMAIN: "flur:consumer-offline:v1:attest";
+/** Fixed total binary length, in bytes. */
+declare const OFFLINE_SMS_SETTLE_TOKEN_BYTES: 112;
+/** Length of the signed prefix (everything except the 64-byte signature). */
+declare const OFFLINE_SMS_SETTLE_HEADER_BYTES: 48;
+/** Length of the raw P-256 r‖s signature appended after the header. */
+declare const OFFLINE_SMS_SETTLE_SIGNATURE_BYTES: 64;
+/** Wire version supported by this codec. */
+declare const OFFLINE_SMS_SETTLE_VERSION: 1;
+/**
+ * Inputs the caller supplies when building a FLURA1 token. All identifier
+ * fields are full hex/UUID strings; this codec computes prefixes.
+ */
+interface OfflineSmsSettleInput {
+    /** Opaque encounter identifier — same value the claim uses. */
+    encounterId: string;
+    /** Full payer user UUID (string form, e.g. `8c...-...-...-...-...`). */
+    payerUserId: string;
+    /** Full payee user UUID (string form). */
+    payeeUserId: string;
+    amountKobo: number;
+    occurredAtMs: number;
+}
+/**
+ * Decoded view of a FLURA1 token. Field prefixes are returned as hex
+ * strings; raw byte arrays are exposed for callers that need them
+ * (signature verification, audit storage).
+ */
+interface DecodedOfflineSmsSettleToken {
+    version: number;
+    flags: number;
+    encounterIdPrefixHex: string;
+    payerUserIdPrefixHex: string;
+    payeeUserIdPrefixHex: string;
+    amountKobo: number;
+    occurredAtMs: number;
+    /** Raw 64-byte ECDSA-P256 r‖s signature. */
+    signature: Uint8Array;
+    /** 48-byte signed header (`bytes[0..47]`). */
+    header: Uint8Array;
+    /** 79-byte domain-tagged buffer that was actually fed into `p256.verify`. */
+    signedBytes: Uint8Array;
+}
+/**
+ * Minimal signer surface accepted by `encodeOfflineSmsSettleToken`. Returns
+ * raw 64-byte r‖s ECDSA-P256. Hardware signers that natively emit DER must
+ * convert before calling this codec — see `derToRawP256Signature`.
+ */
+interface OfflineSmsSettleSigner {
+    signRaw(bytes: Uint8Array): Promise<Uint8Array>;
+}
+declare function encodeOfflineSmsSettleToken(input: OfflineSmsSettleInput, signer: OfflineSmsSettleSigner): Promise<string>;
+/**
+ * Build the 48-byte signed header for the given input. Exposed so callers
+ * that own the signing primitive directly (e.g. a native Secure Enclave
+ * bridge that emits DER) can compute the bytes-to-sign without going
+ * through `OfflineSmsSettleSigner`.
+ */
+declare function buildSmsSettleHeader(input: OfflineSmsSettleInput): Promise<Uint8Array>;
+/**
+ * Bytes a signer must operate on: `OFFLINE_SMS_SETTLE_DOMAIN ‖ header`.
+ * Exposed for hardware bridges that own the signing call themselves.
+ */
+declare function domainTag(header: Uint8Array): Uint8Array;
+declare function decodeOfflineSmsSettleToken(message: string): DecodedOfflineSmsSettleToken;
+declare function extractOfflineSmsSettleToken(message: string): string | null;
+/**
+ * Verify a decoded FLURA1 token against a candidate payer SPKI public key.
+ * Returns `false` (never throws) on any signature or key-decode failure so
+ * callers can iterate a candidate set safely.
+ */
+declare function verifyOfflineSmsSettleToken(decoded: DecodedOfflineSmsSettleToken, payerPubkeySpkiB64: string): boolean;
+/**
+ * Convert an ASN.1 DER ECDSA-P256 signature (the format every hardware
+ * Secure-Enclave / Keystore bridge in this codebase emits) into the
+ * 64-byte raw r‖s form that FLURA1 carries on the wire.
+ *
+ * Throws on any DER parse failure or out-of-range coordinate.
+ */
+declare function derToRawP256Signature(derBytes: Uint8Array): Uint8Array;
 /**
  * Partner-funded wallet rails SDK.
@@ -6034,4 +6349,4 @@ declare function createOfflinePaymentAuthorizationArtifactUri(input: {
     }>;
 };
-export { ACCOUNT_FUNDED_OAC_MAX_TTL_MS, ACCOUNT_STATUSES, ACCOUNT_TYPES, ADDITIONAL_DATA_SUBFIELD, ARTIFACT_BODY_SCHEMAS, ARTIFACT_TYPES, type Account, type AccountActivityItem, type AccountMembership, AccountMembershipSchema, AccountSchema, type AccountStatus, type AccountSummaryResponse, type AccountType, type AccountsClient, type AccountsClientOptions, type AddMemberInput, type AdditionalData, type ApiCredentialPublic, ApiCredentialPublicSchema, type ApiCredentialsAdminClient, type ArtifactBody, type ArtifactHeader, ArtifactHeaderSchema, type ArtifactType, type AtomicRedeemReceiptInput, type AtomicRedeemResponse, type AttestationSecurityLevel, AttestationSecurityLevelSchema, type AuthLogoutInput, type AuthRefreshInput, type AuthRefreshResponse, type AuthorizeSendWithBiometricInput, type AuthorizedOptions, type BiometricSigner, type BuildPassInput, type BuildReceiptInput, type BuildRedemptionInput, CLAIM_DOMAIN_V2, COLLECTION_INTENT_STATUSES, COLLECTION_PAYMENT_STATUSES, CONSUMER_OFFLINE_CLAIM_SUBMIT_GRACE_MS, CUSTODIAL_MODES, type CanonicalClaimInput, type CashNamespace, type ClaimSignature, type CollectionIntent, CollectionIntentSchema, type CollectionPayment, type CollectionPaymentResult, CollectionPaymentResultSchema, CollectionPaymentSchema, type CollectionReportSummary, CollectionReportSummarySchema, type CollectionStatement, CollectionStatementSchema, type CollectionsClient, type CollectionsClientOptions, type ConsumerCollectionsClient, type ConsumerOAC, type OACRecord as ConsumerOACRecord, OACRecordSchema as ConsumerOACRecordSchema, ConsumerOACSchema, type ConsumerPaymentClaim, ConsumerPaymentClaimSchema, type ConsumerSettleResult, ConsumerSettleResultSchema, type ConsumerSettlement, ConsumerSettlementSchema, type ConsumerWithdrawalsClient, type ConsumerWithdrawalsClientOptions, type CreateBusinessAccountInput, type CreateCollectionIntentInput, CreateCollectionIntentInputSchema, type CreatePayLinkResponse, type CreatePayoutDestinationInput, CreatePayoutDestinationInputSchema, type CreatePayoutInput, CreatePayoutInputSchema, type CreateTransferOptions, type CreateWithdrawalInput, CreateWithdrawalInputSchema, type CreateWithdrawalResult, CreateWithdrawalResultSchema, type CustodialMode, type DecodedArtifactUri, type DeviceKeyAlg, DeviceKeyAlgSchema, type DeviceKeyRecord, DeviceKeyRecordSchema, type DeviceTrustState, FIELD, FLUR_ARTIFACT_URI_PREFIX, FLUR_ARTIFACT_URI_SCHEME, FLUR_ARTIFACT_VERSION, FlurApiError, FlurArtifactError, FlurCapExceededError, FlurClient, type FlurClientOptions, FlurError, type FlurErrorCode, FlurExpiredError, type FlurHandle, type FlurInitOptions, type FlurOfflineSettlementsClient, type FlurPartnerClient, type FlurPaymentEvent, FlurReplayError, HARDENED_ARTIFACT_TYPES, type HmacFetchOptions, IdentityArtifactSchema, type IngestFundingResult, IngestFundingResultSchema, type IssueAccountOacInput, IssueAccountOacInputSchema, type IssueOfflineTokenInput, type IssuePassInput, type IssueReceiptInput, LedgerJournalEntryArtifactSchema, type ListPassesInput, type ListPassesResponse, type ListPayoutDestinationsResult, ListPayoutDestinationsResultSchema, type ListReceiptsInput, type ListReceiptsResponse, type ListTransactionsOptions, MEMBERSHIP_ROLES, MERCHANT_PAYOUT_STATUSES, MERCHANT_PROFILE_STATUSES, type MeOfflineClient, type MeOfflineClientOptions, type MembershipRole, type MerchantAccountInfo, type MerchantPayout, MerchantPayoutSchema, type MerchantProfile, MerchantProfileSchema, type MintedApiCredential, MintedApiCredentialSchema, type Money, NGN_CURRENCY_CODE, NG_COUNTRY_CODE, NQRParseError, type NQRPayloadInput, NqrPaymentRequestArtifactSchema, type OAC, OACSchema, OAC_DEFAULT_CUMULATIVE_KOBO, OAC_DEFAULT_PER_TX_KOBO, OAC_DEFAULT_VALIDITY_MS, OFFLINE_CLAIM_SMS_PREFIX, type OfflineClaimAlgorithm, OfflineClaimArtifactSchema, type OfflineClaimSigner, type OfflinePaymentAuthorization, type OfflinePaymentAuthorizationArtifact, OfflinePaymentAuthorizationArtifactSchema, OfflinePaymentAuthorizationSchema, type OfflinePaymentRequest, OfflinePaymentRequestSchema, type OfflineStatusResult, OfflineStatusResultSchema, type OfflineToken, OfflineTokenSchema, type OnboardingCompleteInput, type OnboardingCompleteResponse, type OnboardingFallback, type OnboardingRiskReason, type OnboardingStartInput, type OnboardingStartResponse, type P256EnrollmentChallengeInput, P256EnrollmentChallengeInputSchema, type P256EnrollmentChallengeResult, P256EnrollmentChallengeResultSchema, PARTNER_FUNDING_DIRECTIONS, PARTNER_FUNDING_STATUSES, PARTNER_KINDS, PARTNER_PROFILE_STATUSES, PARTNER_SCOPES, PASS_KINDS, PASS_STATES, PAYLOAD_FORMAT_INDICATOR_VALUE, PAYOUT_DESTINATION_STATUSES, POINT_OF_INITIATION, type ParsedNQR, type PartnerClientOptions, type PartnerCollectionsClient, type PartnerFunding, type PartnerFundingClient, type PartnerFundingDirection, type PartnerFundingEventInput, PartnerFundingEventInputSchema, PartnerFundingSchema, type PartnerFundingStatus, type PartnerKind, type PartnerProfile, type PartnerProfileAdminClient, type PartnerProfileAdminClientOptions, PartnerProfileSchema, type PartnerProfileStatus, type PartnerScope, type PartnerSignResult, type Pass, PassArtifactSchema, type PassKind, type PassMetadata, PassMetadataSchema, PassSchema, type PassState, type PassesClient, type PassesClientOptions, type PayCollectionInput, PayCollectionInputSchema, type PayCollectionOptions, type PayCollectionResponse, type PaymentClaim, PaymentClaimSchema, PaymentIntentArtifactSchema, type PayoutDestination, PayoutDestinationSchema, type PayoutDestinationStatus, type PayoutEventInput, PayoutEventInputSchema, type PinSetInput, type PinVerifyInput, type ProviderEventInput, ProviderEventInputSchema, type ProviderEventRecord, ProviderEventRecordSchema, type PublicCollectionIntent, PublicCollectionIntentSchema, type PushPlatform, type PushRegisterInput, RECEIPT_CHANNELS, RECEIPT_KINDS, REPLAY_WINDOW_MS, type Receipt, type ReceiptArtifact, ReceiptArtifactSchema, type ReceiptChannel, type ReceiptKind, type ReceiptPayload, ReceiptPayloadSchema, ReceiptSchema, type ReceiptsClient, type ReceiptsClientOptions, type RecipientResolveInput, type RecipientResolveResponse, type ReconciliationReport, ReconciliationReportSchema, type RecordPayoutEventResult, RecordPayoutEventResultSchema, type RedeemPassResponse, type Redemption, RedemptionSchema, type RegisterDeviceInput, type RegisterDeviceKeyP256Input, RegisterDeviceKeyP256InputSchema, type RegisterDeviceResponse, type RegisterSendDeviceKeyInput, type ResolveCollectionOptions, type ResolveCollectionResponse, type ResolvePayLinkResponse, ReversalRecordArtifactSchema, RevokeDeviceKeyInputSchema, type RevokePassInput, type RoutingHint, SETTLEMENT_SCHEDULES, type SendChallengeInput, type SendChallengeResponse, type SendMoneyInput, type SendMoneyOptions, type SendVerifyInput, type SendVerifyResponse, type SettleResponse, SettleResponseSchema, type Settlement, SettlementRecordArtifactSchema, SettlementSchema, type SignedArtifact, type SignedConsumerOAC, SignedConsumerOACSchema, type SignerPublicKey, StatementArtifactSchema, type SubscribeOptions, type TLVField, type TransactionDetailResponse, type TransactionDirection, type TransactionsListResponse, type TransferInput, type TransferResponse, type TransferStatus, type UnsignedOAC, type UnsignedOfflinePaymentAuthorization, type UnsignedOfflinePaymentRequest, type UnsignedPass, type UnsignedReceipt, type UnsignedRedemption, type UpsertMerchantProfileInput, UpsertMerchantProfileInputSchema, type UpsertPartnerProfileInput, UpsertPartnerProfileInputSchema, type VerifiedArtifact, type VerifyArtifactOptions, type VerifyClaimSignatureInput, WITHDRAWAL_STATES, type Withdrawal, WithdrawalSchema, type WithdrawalState, base64UrlDecode, base64UrlEncode, bodySha256Hex, buildArtifactBody, buildAuthorization, buildOAC, buildPass, buildPaymentRequest, buildReceipt, buildRedemption, canonicalClaimSigningBytes, canonicalClaimSigningPayload, canonicalJSONBytes, canonicalJSONStringify, canonicalRequestString, computeEncounterId, constantTimeEqual, crc16ccitt, crc16ccittHex, createAccountsClient, createApiCredentialsAdminClient, createArtifactUri, createCollectionsClient, createConsumerCollectionsClient, createConsumerWithdrawalsClient, createFlurPartnerClient, createHmacFetch, createMeOfflineClient, createOfflinePaymentAuthorizationArtifactUri, createOfflineSettlementsClient, createPartnerCollectionsClient, createPartnerFundingClient, createPartnerProfileAdminClient, createPassesClient, createReceiptArtifactUri, createReceiptsClient, createSoftwareP256Signer, decodeArtifactUri, decodeAuthorizationQR, decodeBase45, decodeOfflineClaimSmsMessage, decodePaymentRequestQR, encodeArtifactUri, encodeAuthorizationQR, encodeBase45, encodeNQR, encodeOfflineClaimSmsMessage, encodePaymentRequestQR, extractOfflineClaimSmsToken, formatAmount, generateDynamicQR, generateStaticQR, init, isHardenedArtifactType, isKnownArtifactType, isPassWithinValidity, moneyMinorToNumber, normalizeE164, parseAmountInput, parseNQR, parseQR, readTLV, routingHint, signArtifact, signAuthorization, signOAC, signPartnerRequest, signPass, signPaymentRequest, signReceipt, signRedemption, signRequestHMAC, verifyArtifactSignature, verifyArtifactUri, verifyAuthorization, verifyClaimSignature, verifyOAC, verifyPass, verifyPaymentRequest, verifyReceipt, verifyRedemption, verifyRequestHMAC, writeTLV };
+export { ACCOUNT_FUNDED_OAC_MAX_TTL_MS, ACCOUNT_STATUSES, ACCOUNT_TYPES, ADDITIONAL_DATA_SUBFIELD, ARTIFACT_BODY_SCHEMAS, ARTIFACT_TYPES, type Account, type AccountActivityItem, type AccountMembership, AccountMembershipSchema, AccountSchema, type AccountStatus, type AccountSummaryResponse, type AccountType, type AccountsClient, type AccountsClientOptions, type AddMemberInput, type AdditionalData, type ApiCredentialPublic, ApiCredentialPublicSchema, type ApiCredentialsAdminClient, type ArtifactBody, type ArtifactHeader, ArtifactHeaderSchema, type ArtifactType, type AtomicRedeemReceiptInput, type AtomicRedeemResponse, type AttestationSecurityLevel, AttestationSecurityLevelSchema, type AuthLogoutInput, type AuthRefreshInput, type AuthRefreshResponse, type AuthorizeSendWithBiometricInput, type AuthorizedOptions, type BiometricSigner, type BuildPassInput, type BuildReceiptInput, type BuildRedemptionInput, CLAIM_DOMAIN_V2, COLLECTION_INTENT_STATUSES, COLLECTION_PAYMENT_STATUSES, CONSUMER_OFFLINE_CLAIM_SUBMIT_GRACE_MS, CONSUMER_PAYMENT_REQUEST_DOMAIN, CONSUMER_SETTLEMENT_DOMAIN, CONSUMER_SETTLEMENT_RECEIPT_QR_PREFIX, CUSTODIAL_MODES, type CanonicalClaimInput, type CashNamespace, type ClaimSignature, type CollectionIntent, CollectionIntentSchema, type CollectionPayment, type CollectionPaymentResult, CollectionPaymentResultSchema, CollectionPaymentSchema, type CollectionReportSummary, CollectionReportSummarySchema, type CollectionStatement, CollectionStatementSchema, type CollectionsClient, type CollectionsClientOptions, type ConsumerCollectionsClient, type ConsumerOAC, type OACRecord as ConsumerOACRecord, OACRecordSchema as ConsumerOACRecordSchema, ConsumerOACSchema, type ConsumerPaymentClaim, ConsumerPaymentClaimSchema, type ConsumerPaymentRequestEnvelope, ConsumerPaymentRequestEnvelopeSchema, type ConsumerSettleResult, ConsumerSettleResultSchema, type ConsumerSettlement, ConsumerSettlementSchema, type ConsumerWithdrawalsClient, type ConsumerWithdrawalsClientOptions, type CreateBusinessAccountInput, type CreateCollectionIntentInput, CreateCollectionIntentInputSchema, type CreatePayLinkResponse, type CreatePayoutDestinationInput, CreatePayoutDestinationInputSchema, type CreatePayoutInput, CreatePayoutInputSchema, type CreateTransferOptions, type CreateWithdrawalInput, CreateWithdrawalInputSchema, type CreateWithdrawalResult, CreateWithdrawalResultSchema, type CustodialMode, type DecodedArtifactUri, type DecodedOfflineSmsSettleToken, type DeviceKeyAlg, DeviceKeyAlgSchema, type DeviceKeyRecord, DeviceKeyRecordSchema, type DeviceTrustState, FIELD, FLUR_ARTIFACT_URI_PREFIX, FLUR_ARTIFACT_URI_SCHEME, FLUR_ARTIFACT_VERSION, FlurApiError, FlurArtifactError, FlurCapExceededError, FlurClient, type FlurClientOptions, FlurError, type FlurErrorCode, FlurExpiredError, type FlurHandle, type FlurInitOptions, type FlurOfflineSettlementsClient, type FlurPartnerClient, type FlurPaymentEvent, FlurReplayError, HARDENED_ARTIFACT_TYPES, type HmacFetchOptions, IdentityArtifactSchema, type IngestFundingResult, IngestFundingResultSchema, type IssueAccountOacInput, IssueAccountOacInputSchema, type IssueOfflineTokenInput, type IssuePassInput, type IssueReceiptInput, LedgerJournalEntryArtifactSchema, type ListPassesInput, type ListPassesResponse, type ListPayoutDestinationsResult, ListPayoutDestinationsResultSchema, type ListReceiptsInput, type ListReceiptsResponse, type ListTransactionsOptions, MEMBERSHIP_ROLES, MERCHANT_PAYOUT_STATUSES, MERCHANT_PROFILE_STATUSES, type MeOfflineClient, type MeOfflineClientOptions, type MembershipRole, type MerchantAccountInfo, type MerchantPayout, MerchantPayoutSchema, type MerchantProfile, MerchantProfileSchema, type MintedApiCredential, MintedApiCredentialSchema, type Money, NGN_CURRENCY_CODE, NG_COUNTRY_CODE, NQRParseError, type NQRPayloadInput, NqrPaymentRequestArtifactSchema, type OAC, OACSchema, OAC_DEFAULT_CUMULATIVE_KOBO, OAC_DEFAULT_PER_TX_KOBO, OAC_DEFAULT_VALIDITY_MS, OFFLINE_CLAIM_SMS_PREFIX, OFFLINE_SMS_SETTLE_DOMAIN, OFFLINE_SMS_SETTLE_HEADER_BYTES, OFFLINE_SMS_SETTLE_PREFIX, OFFLINE_SMS_SETTLE_SIGNATURE_BYTES, OFFLINE_SMS_SETTLE_TOKEN_BYTES, OFFLINE_SMS_SETTLE_VERSION, type OfflineClaimAlgorithm, OfflineClaimArtifactSchema, type OfflineClaimSigner, type OfflinePaymentAuthorization, type OfflinePaymentAuthorizationArtifact, OfflinePaymentAuthorizationArtifactSchema, OfflinePaymentAuthorizationSchema, type OfflinePaymentRequest, OfflinePaymentRequestSchema, type OfflineSmsSettleInput, type OfflineSmsSettleSigner, type OfflineStatusResult, OfflineStatusResultSchema, type OfflineToken, OfflineTokenSchema, type OnboardingCompleteInput, type OnboardingCompleteResponse, type OnboardingFallback, type OnboardingRiskReason, type OnboardingStartInput, type OnboardingStartResponse, type P256EnrollmentChallengeInput, P256EnrollmentChallengeInputSchema, type P256EnrollmentChallengeResult, P256EnrollmentChallengeResultSchema, PARTNER_FUNDING_DIRECTIONS, PARTNER_FUNDING_STATUSES, PARTNER_KINDS, PARTNER_PROFILE_STATUSES, PARTNER_SCOPES, PASS_KINDS, PASS_STATES, PAYLOAD_FORMAT_INDICATOR_VALUE, PAYOUT_DESTINATION_STATUSES, POINT_OF_INITIATION, type ParsedNQR, type PartnerClientOptions, type PartnerCollectionsClient, type PartnerFunding, type PartnerFundingClient, type PartnerFundingDirection, type PartnerFundingEventInput, PartnerFundingEventInputSchema, PartnerFundingSchema, type PartnerFundingStatus, type PartnerKind, type PartnerProfile, type PartnerProfileAdminClient, type PartnerProfileAdminClientOptions, PartnerProfileSchema, type PartnerProfileStatus, type PartnerScope, type PartnerSignResult, type Pass, PassArtifactSchema, type PassKind, type PassMetadata, PassMetadataSchema, PassSchema, type PassState, type PassesClient, type PassesClientOptions, type PayCollectionInput, PayCollectionInputSchema, type PayCollectionOptions, type PayCollectionResponse, type PaymentClaim, PaymentClaimSchema, PaymentIntentArtifactSchema, type PayoutDestination, PayoutDestinationSchema, type PayoutDestinationStatus, type PayoutEventInput, PayoutEventInputSchema, type PinSetInput, type PinVerifyInput, type ProviderEventInput, ProviderEventInputSchema, type ProviderEventRecord, ProviderEventRecordSchema, type PublicCollectionIntent, PublicCollectionIntentSchema, type PushPlatform, type PushRegisterInput, RECEIPT_CHANNELS, RECEIPT_KINDS, REPLAY_WINDOW_MS, type Receipt, type ReceiptArtifact, ReceiptArtifactSchema, type ReceiptChannel, type ReceiptKind, type ReceiptPayload, ReceiptPayloadSchema, ReceiptSchema, type ReceiptsClient, type ReceiptsClientOptions, type RecipientResolveInput, type RecipientResolveResponse, type ReconciliationReport, ReconciliationReportSchema, type RecordPayoutEventResult, RecordPayoutEventResultSchema, type RedeemPassResponse, type Redemption, RedemptionSchema, type RegisterDeviceInput, type RegisterDeviceKeyP256Input, RegisterDeviceKeyP256InputSchema, type RegisterDeviceResponse, type RegisterSendDeviceKeyInput, type ResolveCollectionOptions, type ResolveCollectionResponse, type ResolvePayLinkResponse, ReversalRecordArtifactSchema, RevokeDeviceKeyInputSchema, type RevokePassInput, type RoutingHint, SETTLEMENT_SCHEDULES, type SendChallengeInput, type SendChallengeResponse, type SendMoneyInput, type SendMoneyOptions, type SendVerifyInput, type SendVerifyResponse, type SettleResponse, SettleResponseSchema, type Settlement, SettlementRecordArtifactSchema, SettlementSchema, type SignedArtifact, type SignedConsumerOAC, SignedConsumerOACSchema, type SignerPublicKey, StatementArtifactSchema, type SubscribeOptions, type TLVField, type TransactionDetailResponse, type TransactionDirection, type TransactionsListResponse, type TransferInput, type TransferResponse, type TransferStatus, type UnsignedConsumerPaymentRequest, type UnsignedOAC, type UnsignedOfflinePaymentAuthorization, type UnsignedOfflinePaymentRequest, type UnsignedPass, type UnsignedReceipt, type UnsignedRedemption, type UpsertMerchantProfileInput, UpsertMerchantProfileInputSchema, type UpsertPartnerProfileInput, UpsertPartnerProfileInputSchema, type VerifiedArtifact, type VerifyArtifactOptions, type VerifyClaimSignatureInput, WITHDRAWAL_STATES, type Withdrawal, WithdrawalSchema, type WithdrawalState, base64UrlDecode, base64UrlEncode, bodySha256Hex, buildArtifactBody, buildAuthorization, buildConsumerPaymentRequest, buildOAC, buildPass, buildPaymentRequest, buildReceipt, buildRedemption, buildSmsSettleHeader, domainTag as buildSmsSettleSignedBytes, canonicalClaimSigningBytes, canonicalClaimSigningPayload, canonicalJSONBytes, canonicalJSONStringify, canonicalRequestString, computeConsumerClaimEncounterId, computeEncounterId, constantTimeEqual, consumerPaymentRequestSigningBytes, consumerPaymentRequestSigningPayload, consumerSettlementSigningPayload, crc16ccitt, crc16ccittHex, createAccountsClient, createApiCredentialsAdminClient, createArtifactUri, createCollectionsClient, createConsumerCollectionsClient, createConsumerWithdrawalsClient, createFlurPartnerClient, createHmacFetch, createMeOfflineClient, createOfflinePaymentAuthorizationArtifactUri, createOfflineSettlementsClient, createPartnerCollectionsClient, createPartnerFundingClient, createPartnerProfileAdminClient, createPassesClient, createReceiptArtifactUri, createReceiptsClient, createSoftwareP256Signer, decodeArtifactUri, decodeAuthorizationQR, decodeBase45, decodeConsumerSettlementReceiptQR, decodeOfflineClaimSmsMessage, decodeOfflineSmsSettleToken, decodePaymentRequestQR, decodeUnverifiedConsumerSettlementReceiptQR, derToRawP256Signature, encodeArtifactUri, encodeAuthorizationQR, encodeBase45, encodeConsumerSettlementReceiptQR, encodeNQR, encodeOfflineClaimSmsMessage, encodeOfflineSmsSettleToken, encodePaymentRequestQR, extractOfflineClaimSmsToken, extractOfflineSmsSettleToken, formatAmount, generateDynamicQR, generateStaticQR, init, isConsumerPaymentRequestExpired, isHardenedArtifactType, isKnownArtifactType, isPassWithinValidity, moneyMinorToNumber, normalizeE164, parseAmountInput, parseNQR, parseQR, readTLV, routingHint, signArtifact, signAuthorization, signConsumerPaymentRequest, signOAC, signPartnerRequest, signPass, signPaymentRequest, signReceipt, signRedemption, signRequestHMAC, verifyArtifactSignature, verifyArtifactUri, verifyAuthorization, verifyClaimSignature, verifyConsumerPaymentRequest, verifyConsumerSettlement, verifyConsumerSettlementReceiptQR, verifyOAC, verifyOfflineSmsSettleToken, verifyPass, verifyPaymentRequest, verifyReceipt, verifyRedemption, verifyRequestHMAC, writeTLV };