@nvwa-app/sdk-functions 6.0.51 → 6.0.53

package/dist/index.d.mts

@@ -19,7 +19,7 @@ interface AuthUser {
 declare function getRequestUser(req: Request, baseUrlOverride?: string): Promise<AuthUser | null>;
 
 /** 支付端类型：与 integrations/payment 中的 supportedPlatforms 一致，用于按端过滤可用 provider。 */
-type PaymentPlatform = "web" | "uniapp" | "wechat-miniprogram";
+type PaymentPlatform = "web" | "uniapp" | "wechat-miniprogram" | "alipay-miniprogram";
 interface PaymentGatewayClientOptions {
     baseUrl: string;
     /** Project key (PAYMENT_PROJECT_KEY) for project-side auth; gateway validates via X-Payment-Project-Key */
@@ -73,4 +73,23 @@ declare function getAvailableProviders(options?: GetAvailableProvidersOptions):
 /** 单例：Functions 内 getPayment() 使用 env PAYMENT_GATEWAY_URL、PAYMENT_PROJECT_KEY。 */
 declare function getPayment(options?: PaymentGatewayClientOptions): PaymentGatewayClient;
 
-export { type AuthUser, type CreateOrderParams, type CreateOrderResult, type GetAvailableProvidersOptions, type GetOrderResult, type PaymentGatewayClient, type PaymentGatewayClientOptions, type PaymentPlatform, createPaymentClient, filterProvidersByPlatform, getAvailableProviders, getConfiguredProviders, getDb, getPayment, getRequestUser, providerSupportedPlatforms };
+interface ExecuteCapabilityOptions {
+    /** 覆盖 NVWA_SERVER_BASE_URL（Workspace/Server 根地址，与 nvwa.json server.baseUrl 一致） */
+    serverBaseUrl?: string;
+    /** 覆盖 NVWA_INTERNAL_SECRET（与 nvwa.json server.internalSecret / 项目 runtimeInternalKey 一致） */
+    internalSecret?: string;
+    /** 覆盖 NVWA_PROJECT_CODE */
+    projectCode?: string;
+}
+interface CapabilityExecuteResponse<Data = unknown> {
+    status: number;
+    data?: Data;
+    message?: string;
+}
+/**
+ * 在 Edge Function 中调用已开通的 Nvwa capability（经 Server internal HMAC 路由）。
+ * 需在环境中配置 NVWA_SERVER_BASE_URL、NVWA_INTERNAL_SECRET、NVWA_PROJECT_CODE（与 Runtime nvwa.json server 块一致）。
+ */
+declare function executeCapability<Result = unknown>(capabilityName: string, param?: unknown, options?: ExecuteCapabilityOptions): Promise<Result | undefined>;
+
+export { type AuthUser, type CapabilityExecuteResponse, type CreateOrderParams, type CreateOrderResult, type ExecuteCapabilityOptions, type GetAvailableProvidersOptions, type GetOrderResult, type PaymentGatewayClient, type PaymentGatewayClientOptions, type PaymentPlatform, createPaymentClient, executeCapability, filterProvidersByPlatform, getAvailableProviders, getConfiguredProviders, getDb, getPayment, getRequestUser, providerSupportedPlatforms };

package/dist/index.d.ts

@@ -19,7 +19,7 @@ interface AuthUser {
 declare function getRequestUser(req: Request, baseUrlOverride?: string): Promise<AuthUser | null>;
 
 /** 支付端类型：与 integrations/payment 中的 supportedPlatforms 一致，用于按端过滤可用 provider。 */
-type PaymentPlatform = "web" | "uniapp" | "wechat-miniprogram";
+type PaymentPlatform = "web" | "uniapp" | "wechat-miniprogram" | "alipay-miniprogram";
 interface PaymentGatewayClientOptions {
     baseUrl: string;
     /** Project key (PAYMENT_PROJECT_KEY) for project-side auth; gateway validates via X-Payment-Project-Key */
@@ -73,4 +73,23 @@ declare function getAvailableProviders(options?: GetAvailableProvidersOptions):
 /** 单例：Functions 内 getPayment() 使用 env PAYMENT_GATEWAY_URL、PAYMENT_PROJECT_KEY。 */
 declare function getPayment(options?: PaymentGatewayClientOptions): PaymentGatewayClient;
 
-export { type AuthUser, type CreateOrderParams, type CreateOrderResult, type GetAvailableProvidersOptions, type GetOrderResult, type PaymentGatewayClient, type PaymentGatewayClientOptions, type PaymentPlatform, createPaymentClient, filterProvidersByPlatform, getAvailableProviders, getConfiguredProviders, getDb, getPayment, getRequestUser, providerSupportedPlatforms };
+interface ExecuteCapabilityOptions {
+    /** 覆盖 NVWA_SERVER_BASE_URL（Workspace/Server 根地址，与 nvwa.json server.baseUrl 一致） */
+    serverBaseUrl?: string;
+    /** 覆盖 NVWA_INTERNAL_SECRET（与 nvwa.json server.internalSecret / 项目 runtimeInternalKey 一致） */
+    internalSecret?: string;
+    /** 覆盖 NVWA_PROJECT_CODE */
+    projectCode?: string;
+}
+interface CapabilityExecuteResponse<Data = unknown> {
+    status: number;
+    data?: Data;
+    message?: string;
+}
+/**
+ * 在 Edge Function 中调用已开通的 Nvwa capability（经 Server internal HMAC 路由）。
+ * 需在环境中配置 NVWA_SERVER_BASE_URL、NVWA_INTERNAL_SECRET、NVWA_PROJECT_CODE（与 Runtime nvwa.json server 块一致）。
+ */
+declare function executeCapability<Result = unknown>(capabilityName: string, param?: unknown, options?: ExecuteCapabilityOptions): Promise<Result | undefined>;
+
+export { type AuthUser, type CapabilityExecuteResponse, type CreateOrderParams, type CreateOrderResult, type ExecuteCapabilityOptions, type GetAvailableProvidersOptions, type GetOrderResult, type PaymentGatewayClient, type PaymentGatewayClientOptions, type PaymentPlatform, createPaymentClient, executeCapability, filterProvidersByPlatform, getAvailableProviders, getConfiguredProviders, getDb, getPayment, getRequestUser, providerSupportedPlatforms };

package/dist/index.js

@@ -31,6 +31,7 @@ var __toCommonJS = (mod) => __copyProps(__defProp({}, "__esModule", { value: tru
 var index_exports = {};
 __export(index_exports, {
   createPaymentClient: () => createPaymentClient,
+  executeCapability: () => executeCapability,
   filterProvidersByPlatform: () => filterProvidersByPlatform,
   getAvailableProviders: () => getAvailableProviders,
   getConfiguredProviders: () => getConfiguredProviders,
@@ -99,6 +100,7 @@ async function getRequestUser(req, baseUrlOverride) {
 var PROVIDER_SUPPORTED_PLATFORMS = {
   "wechat-pay": ["web", "uniapp", "wechat-miniprogram"],
   "alipay": ["web", "uniapp"],
+  "alipay-miniprogram": ["alipay-miniprogram"],
   "stripe": ["web"]
 };
 function resolveBaseUrl(explicit) {
@@ -211,9 +213,98 @@ function getPayment(options) {
   if (!_payment) _payment = createPaymentClient();
   return _payment;
 }
+
+// src/capability.ts
+function bytesToHex(bytes) {
+  return Array.from(bytes).map((byte) => byte.toString(16).padStart(2, "0")).join("");
+}
+async function sha256Hex(content) {
+  const digest = await crypto.subtle.digest(
+    "SHA-256",
+    new TextEncoder().encode(content)
+  );
+  return bytesToHex(new Uint8Array(digest));
+}
+async function hmacSha256Hex(secret, content) {
+  const key = await crypto.subtle.importKey(
+    "raw",
+    new TextEncoder().encode(secret),
+    { name: "HMAC", hash: "SHA-256" },
+    false,
+    ["sign"]
+  );
+  const signature = await crypto.subtle.sign(
+    "HMAC",
+    key,
+    new TextEncoder().encode(content)
+  );
+  return bytesToHex(new Uint8Array(signature));
+}
+function resolveServerBaseUrl(explicit) {
+  const url = explicit ?? getEnv("NVWA_SERVER_BASE_URL");
+  if (!url) {
+    throw new Error(
+      "NVWA_SERVER_BASE_URL is not set; executeCapability requires Workspace server base URL (same as nvwa.json server.baseUrl)"
+    );
+  }
+  return url.replace(/\/$/, "");
+}
+function resolveInternalSecret(explicit) {
+  const s = explicit ?? getEnv("NVWA_INTERNAL_SECRET");
+  if (!s) {
+    throw new Error(
+      "NVWA_INTERNAL_SECRET is not set; must match project runtime internal HMAC secret"
+    );
+  }
+  return s;
+}
+function resolveProjectCode(explicit) {
+  const c = explicit ?? getEnv("NVWA_PROJECT_CODE");
+  if (!c) {
+    throw new Error("NVWA_PROJECT_CODE is not set");
+  }
+  return c;
+}
+async function executeCapability(capabilityName, param, options) {
+  const projectCode = resolveProjectCode(options?.projectCode);
+  const baseUrl = resolveServerBaseUrl(options?.serverBaseUrl);
+  const internalSecret = resolveInternalSecret(options?.internalSecret);
+  const path = `/internal/project/${projectCode}/capability/${capabilityName}/execute`;
+  const bodyText = param != null ? JSON.stringify(param) : "";
+  const timestamp = Date.now().toString();
+  const nonce = crypto.randomUUID();
+  const bodySha256 = await sha256Hex(bodyText);
+  const signingPayload = `POST
+${path}
+${timestamp}
+${nonce}
+${bodySha256}
+${projectCode}`;
+  const signature = await hmacSha256Hex(internalSecret, signingPayload);
+  const response = await fetch(`${baseUrl}${path}`, {
+    method: "POST",
+    headers: {
+      "Content-Type": "application/json",
+      "X-Internal-Timestamp": timestamp,
+      "X-Internal-Nonce": nonce,
+      "X-Internal-Body-Sha256": bodySha256,
+      "X-Internal-Signature": signature,
+      "X-Internal-Project-Code": projectCode
+    },
+    body: bodyText
+  });
+  const responseBody = await response.json();
+  if (responseBody.status !== 200) {
+    throw new Error(
+      responseBody.message ?? `Capability execute failed with status ${responseBody.status}`
+    );
+  }
+  return responseBody.data;
+}
 // Annotate the CommonJS export names for ESM import in node:
 0 && (module.exports = {
   createPaymentClient,
+  executeCapability,
   filterProvidersByPlatform,
   getAvailableProviders,
   getConfiguredProviders,

package/dist/index.mjs

@@ -56,6 +56,7 @@ async function getRequestUser(req, baseUrlOverride) {
 var PROVIDER_SUPPORTED_PLATFORMS = {
   "wechat-pay": ["web", "uniapp", "wechat-miniprogram"],
   "alipay": ["web", "uniapp"],
+  "alipay-miniprogram": ["alipay-miniprogram"],
   "stripe": ["web"]
 };
 function resolveBaseUrl(explicit) {
@@ -168,8 +169,97 @@ function getPayment(options) {
   if (!_payment) _payment = createPaymentClient();
   return _payment;
 }
+
+// src/capability.ts
+function bytesToHex(bytes) {
+  return Array.from(bytes).map((byte) => byte.toString(16).padStart(2, "0")).join("");
+}
+async function sha256Hex(content) {
+  const digest = await crypto.subtle.digest(
+    "SHA-256",
+    new TextEncoder().encode(content)
+  );
+  return bytesToHex(new Uint8Array(digest));
+}
+async function hmacSha256Hex(secret, content) {
+  const key = await crypto.subtle.importKey(
+    "raw",
+    new TextEncoder().encode(secret),
+    { name: "HMAC", hash: "SHA-256" },
+    false,
+    ["sign"]
+  );
+  const signature = await crypto.subtle.sign(
+    "HMAC",
+    key,
+    new TextEncoder().encode(content)
+  );
+  return bytesToHex(new Uint8Array(signature));
+}
+function resolveServerBaseUrl(explicit) {
+  const url = explicit ?? getEnv("NVWA_SERVER_BASE_URL");
+  if (!url) {
+    throw new Error(
+      "NVWA_SERVER_BASE_URL is not set; executeCapability requires Workspace server base URL (same as nvwa.json server.baseUrl)"
+    );
+  }
+  return url.replace(/\/$/, "");
+}
+function resolveInternalSecret(explicit) {
+  const s = explicit ?? getEnv("NVWA_INTERNAL_SECRET");
+  if (!s) {
+    throw new Error(
+      "NVWA_INTERNAL_SECRET is not set; must match project runtime internal HMAC secret"
+    );
+  }
+  return s;
+}
+function resolveProjectCode(explicit) {
+  const c = explicit ?? getEnv("NVWA_PROJECT_CODE");
+  if (!c) {
+    throw new Error("NVWA_PROJECT_CODE is not set");
+  }
+  return c;
+}
+async function executeCapability(capabilityName, param, options) {
+  const projectCode = resolveProjectCode(options?.projectCode);
+  const baseUrl = resolveServerBaseUrl(options?.serverBaseUrl);
+  const internalSecret = resolveInternalSecret(options?.internalSecret);
+  const path = `/internal/project/${projectCode}/capability/${capabilityName}/execute`;
+  const bodyText = param != null ? JSON.stringify(param) : "";
+  const timestamp = Date.now().toString();
+  const nonce = crypto.randomUUID();
+  const bodySha256 = await sha256Hex(bodyText);
+  const signingPayload = `POST
+${path}
+${timestamp}
+${nonce}
+${bodySha256}
+${projectCode}`;
+  const signature = await hmacSha256Hex(internalSecret, signingPayload);
+  const response = await fetch(`${baseUrl}${path}`, {
+    method: "POST",
+    headers: {
+      "Content-Type": "application/json",
+      "X-Internal-Timestamp": timestamp,
+      "X-Internal-Nonce": nonce,
+      "X-Internal-Body-Sha256": bodySha256,
+      "X-Internal-Signature": signature,
+      "X-Internal-Project-Code": projectCode
+    },
+    body: bodyText
+  });
+  const responseBody = await response.json();
+  if (responseBody.status !== 200) {
+    throw new Error(
+      responseBody.message ?? `Capability execute failed with status ${responseBody.status}`
+    );
+  }
+  return responseBody.data;
+}
 export {
   createPaymentClient,
+  executeCapability,
   filterProvidersByPlatform,
   getAvailableProviders,
   getConfiguredProviders,

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@nvwa-app/sdk-functions",
-  "version": "6.0.51",
+  "version": "6.0.53",
   "description": "NVWA Edge Functions SDK: db, payment gateway, auth, provider list. Use in Deno: import from 'npm:@nvwa-app/sdk-functions'.",
   "main": "dist/index.js",
   "module": "dist/index.mjs",