npm - @nvwa-app/sdk-functions - Versions diffs - 6.0.50 → 6.0.52 - Mend

@nvwa-app/sdk-functions 6.0.50 → 6.0.52

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (5) hide show

package/dist/index.d.mts CHANGED Viewed

@@ -73,4 +73,23 @@ declare function getAvailableProviders(options?: GetAvailableProvidersOptions):
 /** 单例：Functions 内 getPayment() 使用 env PAYMENT_GATEWAY_URL、PAYMENT_PROJECT_KEY。 */
 declare function getPayment(options?: PaymentGatewayClientOptions): PaymentGatewayClient;
-export { type AuthUser, type CreateOrderParams, type CreateOrderResult, type GetAvailableProvidersOptions, type GetOrderResult, type PaymentGatewayClient, type PaymentGatewayClientOptions, type PaymentPlatform, createPaymentClient, filterProvidersByPlatform, getAvailableProviders, getConfiguredProviders, getDb, getPayment, getRequestUser, providerSupportedPlatforms };
+interface ExecuteCapabilityOptions {
+    /** 覆盖 NVWA_SERVER_BASE_URL（Workspace/Server 根地址，与 nvwa.json server.baseUrl 一致） */
+    serverBaseUrl?: string;
+    /** 覆盖 NVWA_INTERNAL_SECRET（与 nvwa.json server.internalSecret / 项目 runtimeInternalKey 一致） */
+    internalSecret?: string;
+    /** 覆盖 NVWA_PROJECT_CODE */
+    projectCode?: string;
+}
+interface CapabilityExecuteResponse<Data = unknown> {
+    status: number;
+    data?: Data;
+    message?: string;
+}
+/**
+ * 在 Edge Function 中调用已开通的 Nvwa capability（经 Server internal HMAC 路由）。
+ * 需在环境中配置 NVWA_SERVER_BASE_URL、NVWA_INTERNAL_SECRET、NVWA_PROJECT_CODE（与 Runtime nvwa.json server 块一致）。
+ */
+declare function executeCapability<Result = unknown>(capabilityName: string, param?: unknown, options?: ExecuteCapabilityOptions): Promise<Result | undefined>;
+export { type AuthUser, type CapabilityExecuteResponse, type CreateOrderParams, type CreateOrderResult, type ExecuteCapabilityOptions, type GetAvailableProvidersOptions, type GetOrderResult, type PaymentGatewayClient, type PaymentGatewayClientOptions, type PaymentPlatform, createPaymentClient, executeCapability, filterProvidersByPlatform, getAvailableProviders, getConfiguredProviders, getDb, getPayment, getRequestUser, providerSupportedPlatforms };

package/dist/index.d.ts CHANGED Viewed

@@ -73,4 +73,23 @@ declare function getAvailableProviders(options?: GetAvailableProvidersOptions):
 /** 单例：Functions 内 getPayment() 使用 env PAYMENT_GATEWAY_URL、PAYMENT_PROJECT_KEY。 */
 declare function getPayment(options?: PaymentGatewayClientOptions): PaymentGatewayClient;
-export { type AuthUser, type CreateOrderParams, type CreateOrderResult, type GetAvailableProvidersOptions, type GetOrderResult, type PaymentGatewayClient, type PaymentGatewayClientOptions, type PaymentPlatform, createPaymentClient, filterProvidersByPlatform, getAvailableProviders, getConfiguredProviders, getDb, getPayment, getRequestUser, providerSupportedPlatforms };
+interface ExecuteCapabilityOptions {
+    /** 覆盖 NVWA_SERVER_BASE_URL（Workspace/Server 根地址，与 nvwa.json server.baseUrl 一致） */
+    serverBaseUrl?: string;
+    /** 覆盖 NVWA_INTERNAL_SECRET（与 nvwa.json server.internalSecret / 项目 runtimeInternalKey 一致） */
+    internalSecret?: string;
+    /** 覆盖 NVWA_PROJECT_CODE */
+    projectCode?: string;
+}
+interface CapabilityExecuteResponse<Data = unknown> {
+    status: number;
+    data?: Data;
+    message?: string;
+}
+/**
+ * 在 Edge Function 中调用已开通的 Nvwa capability（经 Server internal HMAC 路由）。
+ * 需在环境中配置 NVWA_SERVER_BASE_URL、NVWA_INTERNAL_SECRET、NVWA_PROJECT_CODE（与 Runtime nvwa.json server 块一致）。
+ */
+declare function executeCapability<Result = unknown>(capabilityName: string, param?: unknown, options?: ExecuteCapabilityOptions): Promise<Result | undefined>;
+export { type AuthUser, type CapabilityExecuteResponse, type CreateOrderParams, type CreateOrderResult, type ExecuteCapabilityOptions, type GetAvailableProvidersOptions, type GetOrderResult, type PaymentGatewayClient, type PaymentGatewayClientOptions, type PaymentPlatform, createPaymentClient, executeCapability, filterProvidersByPlatform, getAvailableProviders, getConfiguredProviders, getDb, getPayment, getRequestUser, providerSupportedPlatforms };

package/dist/index.js CHANGED Viewed

@@ -31,6 +31,7 @@ var __toCommonJS = (mod) => __copyProps(__defProp({}, "__esModule", { value: tru
 var index_exports = {};
 __export(index_exports, {
   createPaymentClient: () => createPaymentClient,
+  executeCapability: () => executeCapability,
   filterProvidersByPlatform: () => filterProvidersByPlatform,
   getAvailableProviders: () => getAvailableProviders,
   getConfiguredProviders: () => getConfiguredProviders,
@@ -211,9 +212,98 @@ function getPayment(options) {
   if (!_payment) _payment = createPaymentClient();
   return _payment;
 }
+// src/capability.ts
+function bytesToHex(bytes) {
+  return Array.from(bytes).map((byte) => byte.toString(16).padStart(2, "0")).join("");
+}
+async function sha256Hex(content) {
+  const digest = await crypto.subtle.digest(
+    "SHA-256",
+    new TextEncoder().encode(content)
+  );
+  return bytesToHex(new Uint8Array(digest));
+}
+async function hmacSha256Hex(secret, content) {
+  const key = await crypto.subtle.importKey(
+    "raw",
+    new TextEncoder().encode(secret),
+    { name: "HMAC", hash: "SHA-256" },
+    false,
+    ["sign"]
+  );
+  const signature = await crypto.subtle.sign(
+    "HMAC",
+    key,
+    new TextEncoder().encode(content)
+  );
+  return bytesToHex(new Uint8Array(signature));
+}
+function resolveServerBaseUrl(explicit) {
+  const url = explicit ?? getEnv("NVWA_SERVER_BASE_URL");
+  if (!url) {
+    throw new Error(
+      "NVWA_SERVER_BASE_URL is not set; executeCapability requires Workspace server base URL (same as nvwa.json server.baseUrl)"
+    );
+  }
+  return url.replace(/\/$/, "");
+}
+function resolveInternalSecret(explicit) {
+  const s = explicit ?? getEnv("NVWA_INTERNAL_SECRET");
+  if (!s) {
+    throw new Error(
+      "NVWA_INTERNAL_SECRET is not set; must match project runtime internal HMAC secret"
+    );
+  }
+  return s;
+}
+function resolveProjectCode(explicit) {
+  const c = explicit ?? getEnv("NVWA_PROJECT_CODE");
+  if (!c) {
+    throw new Error("NVWA_PROJECT_CODE is not set");
+  }
+  return c;
+}
+async function executeCapability(capabilityName, param, options) {
+  const projectCode = resolveProjectCode(options?.projectCode);
+  const baseUrl = resolveServerBaseUrl(options?.serverBaseUrl);
+  const internalSecret = resolveInternalSecret(options?.internalSecret);
+  const path = `/internal/project/${projectCode}/capability/${capabilityName}/execute`;
+  const bodyText = param != null ? JSON.stringify(param) : "";
+  const timestamp = Date.now().toString();
+  const nonce = crypto.randomUUID();
+  const bodySha256 = await sha256Hex(bodyText);
+  const signingPayload = `POST
+${path}
+${timestamp}
+${nonce}
+${bodySha256}
+${projectCode}`;
+  const signature = await hmacSha256Hex(internalSecret, signingPayload);
+  const response = await fetch(`${baseUrl}${path}`, {
+    method: "POST",
+    headers: {
+      "Content-Type": "application/json",
+      "X-Internal-Timestamp": timestamp,
+      "X-Internal-Nonce": nonce,
+      "X-Internal-Body-Sha256": bodySha256,
+      "X-Internal-Signature": signature,
+      "X-Internal-Project-Code": projectCode
+    },
+    body: bodyText
+  });
+  const responseBody = await response.json();
+  if (responseBody.status !== 200) {
+    throw new Error(
+      responseBody.message ?? `Capability execute failed with status ${responseBody.status}`
+    );
+  }
+  return responseBody.data;
+}
 // Annotate the CommonJS export names for ESM import in node:
 0 && (module.exports = {
   createPaymentClient,
+  executeCapability,
   filterProvidersByPlatform,
   getAvailableProviders,
   getConfiguredProviders,

package/dist/index.mjs CHANGED Viewed

@@ -168,8 +168,97 @@ function getPayment(options) {
   if (!_payment) _payment = createPaymentClient();
   return _payment;
 }
+// src/capability.ts
+function bytesToHex(bytes) {
+  return Array.from(bytes).map((byte) => byte.toString(16).padStart(2, "0")).join("");
+}
+async function sha256Hex(content) {
+  const digest = await crypto.subtle.digest(
+    "SHA-256",
+    new TextEncoder().encode(content)
+  );
+  return bytesToHex(new Uint8Array(digest));
+}
+async function hmacSha256Hex(secret, content) {
+  const key = await crypto.subtle.importKey(
+    "raw",
+    new TextEncoder().encode(secret),
+    { name: "HMAC", hash: "SHA-256" },
+    false,
+    ["sign"]
+  );
+  const signature = await crypto.subtle.sign(
+    "HMAC",
+    key,
+    new TextEncoder().encode(content)
+  );
+  return bytesToHex(new Uint8Array(signature));
+}
+function resolveServerBaseUrl(explicit) {
+  const url = explicit ?? getEnv("NVWA_SERVER_BASE_URL");
+  if (!url) {
+    throw new Error(
+      "NVWA_SERVER_BASE_URL is not set; executeCapability requires Workspace server base URL (same as nvwa.json server.baseUrl)"
+    );
+  }
+  return url.replace(/\/$/, "");
+}
+function resolveInternalSecret(explicit) {
+  const s = explicit ?? getEnv("NVWA_INTERNAL_SECRET");
+  if (!s) {
+    throw new Error(
+      "NVWA_INTERNAL_SECRET is not set; must match project runtime internal HMAC secret"
+    );
+  }
+  return s;
+}
+function resolveProjectCode(explicit) {
+  const c = explicit ?? getEnv("NVWA_PROJECT_CODE");
+  if (!c) {
+    throw new Error("NVWA_PROJECT_CODE is not set");
+  }
+  return c;
+}
+async function executeCapability(capabilityName, param, options) {
+  const projectCode = resolveProjectCode(options?.projectCode);
+  const baseUrl = resolveServerBaseUrl(options?.serverBaseUrl);
+  const internalSecret = resolveInternalSecret(options?.internalSecret);
+  const path = `/internal/project/${projectCode}/capability/${capabilityName}/execute`;
+  const bodyText = param != null ? JSON.stringify(param) : "";
+  const timestamp = Date.now().toString();
+  const nonce = crypto.randomUUID();
+  const bodySha256 = await sha256Hex(bodyText);
+  const signingPayload = `POST
+${path}
+${timestamp}
+${nonce}
+${bodySha256}
+${projectCode}`;
+  const signature = await hmacSha256Hex(internalSecret, signingPayload);
+  const response = await fetch(`${baseUrl}${path}`, {
+    method: "POST",
+    headers: {
+      "Content-Type": "application/json",
+      "X-Internal-Timestamp": timestamp,
+      "X-Internal-Nonce": nonce,
+      "X-Internal-Body-Sha256": bodySha256,
+      "X-Internal-Signature": signature,
+      "X-Internal-Project-Code": projectCode
+    },
+    body: bodyText
+  });
+  const responseBody = await response.json();
+  if (responseBody.status !== 200) {
+    throw new Error(
+      responseBody.message ?? `Capability execute failed with status ${responseBody.status}`
+    );
+  }
+  return responseBody.data;
+}
 export {
   createPaymentClient,
+  executeCapability,
   filterProvidersByPlatform,
   getAvailableProviders,
   getConfiguredProviders,

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "@nvwa-app/sdk-functions",
-  "version": "6.0.50",
+  "version": "6.0.52",
   "description": "NVWA Edge Functions SDK: db, payment gateway, auth, provider list. Use in Deno: import from 'npm:@nvwa-app/sdk-functions'.",
   "main": "dist/index.js",
   "module": "dist/index.mjs",