@open-mercato/shared 0.4.6-canary-c3811b08ec → 0.4.6-canary-8ae94de818

package/dist/lib/i18n/context.js.map

@@ -1,7 +1,7 @@
 {
   "version": 3,
   "sources": ["../../../src/lib/i18n/context.tsx"],
-  "sourcesContent": ["\"use client\"\nimport { createContext, useContext, useMemo, type ReactNode } from 'react'\nimport type { Locale } from './config'\n\nexport type Dict = Record<string, string>\n\nexport type TranslateParams = Record<string, string | number>\n\nexport type TranslateFn = (\n  key: string,\n  fallbackOrParams?: string | TranslateParams,\n  params?: TranslateParams\n) => string\n\nexport type I18nContextValue = {\n  locale: Locale\n  t: TranslateFn\n}\n\nconst I18nContext = createContext<I18nContextValue | null>(null)\n\nfunction format(template: string, params?: TranslateParams) {\n  if (!params) return template\n  return template.replace(/\\{\\{(\\w+)\\}\\}|\\{(\\w+)\\}/g, (_, doubleKey, singleKey) => {\n    const key = doubleKey ?? singleKey\n    if (!key) return _\n    const value = params[key]\n    if (value === undefined) {\n      return doubleKey ? `{{${key}}}` : `{${key}}`\n    }\n    return String(value)\n  })\n}\n\nexport function I18nProvider({ children, locale, dict }: { children: ReactNode; locale: Locale; dict: Dict }) {\n  const value = useMemo<I18nContextValue>(() => ({\n    locale,\n    t: (key, fallbackOrParams, params) => {\n      let fallback: string | undefined\n      let resolvedParams: TranslateParams | undefined\n\n      if (typeof fallbackOrParams === 'string') {\n        fallback = fallbackOrParams\n        resolvedParams = params\n      } else {\n        resolvedParams = fallbackOrParams ?? params\n      }\n\n      const template = dict[key] ?? fallback ?? key\n      return format(template, resolvedParams)\n    },\n  }), [locale, dict])\n  return <I18nContext.Provider value={value}>{children}</I18nContext.Provider>\n}\n\nexport function useT() {\n  const ctx = useContext(I18nContext)\n  if (!ctx) throw new Error('useT must be used within I18nProvider')\n  return ctx.t\n}\n\nexport function useLocale() {\n  const ctx = useContext(I18nContext)\n  if (!ctx) throw new Error('useLocale must be used within I18nProvider')\n  return ctx.locale\n}\n"],
-  "mappings": ";AAoDS;AAnDT,SAAS,eAAe,YAAY,eAA+B;AAkBnE,MAAM,cAAc,cAAuC,IAAI;AAE/D,SAAS,OAAO,UAAkB,QAA0B;AAC1D,MAAI,CAAC,OAAQ,QAAO;AACpB,SAAO,SAAS,QAAQ,4BAA4B,CAAC,GAAG,WAAW,cAAc;AAC/E,UAAM,MAAM,aAAa;AACzB,QAAI,CAAC,IAAK,QAAO;AACjB,UAAM,QAAQ,OAAO,GAAG;AACxB,QAAI,UAAU,QAAW;AACvB,aAAO,YAAY,KAAK,GAAG,OAAO,IAAI,GAAG;AAAA,IAC3C;AACA,WAAO,OAAO,KAAK;AAAA,EACrB,CAAC;AACH;AAEO,SAAS,aAAa,EAAE,UAAU,QAAQ,KAAK,GAAwD;AAC5G,QAAM,QAAQ,QAA0B,OAAO;AAAA,IAC7C;AAAA,IACA,GAAG,CAAC,KAAK,kBAAkB,WAAW;AACpC,UAAI;AACJ,UAAI;AAEJ,UAAI,OAAO,qBAAqB,UAAU;AACxC,mBAAW;AACX,yBAAiB;AAAA,MACnB,OAAO;AACL,yBAAiB,oBAAoB;AAAA,MACvC;AAEA,YAAM,WAAW,KAAK,GAAG,KAAK,YAAY;AAC1C,aAAO,OAAO,UAAU,cAAc;AAAA,IACxC;AAAA,EACF,IAAI,CAAC,QAAQ,IAAI,CAAC;AAClB,SAAO,oBAAC,YAAY,UAAZ,EAAqB,OAAe,UAAS;AACvD;AAEO,SAAS,OAAO;AACrB,QAAM,MAAM,WAAW,WAAW;AAClC,MAAI,CAAC,IAAK,OAAM,IAAI,MAAM,uCAAuC;AACjE,SAAO,IAAI;AACb;AAEO,SAAS,YAAY;AAC1B,QAAM,MAAM,WAAW,WAAW;AAClC,MAAI,CAAC,IAAK,OAAM,IAAI,MAAM,4CAA4C;AACtE,SAAO,IAAI;AACb;",
+  "sourcesContent": ["\"use client\"\nimport React, { createContext, useContext, useMemo } from 'react'\nimport type { Locale } from './config'\n\nexport type Dict = Record<string, string>\n\nexport type TranslateParams = Record<string, string | number>\n\nexport type TranslateFn = (\n  key: string,\n  fallbackOrParams?: string | TranslateParams,\n  params?: TranslateParams\n) => string\n\nexport type I18nContextValue = {\n  locale: Locale\n  t: TranslateFn\n}\n\nconst I18nContext = createContext<I18nContextValue | null>(null)\n\nfunction format(template: string, params?: TranslateParams) {\n  if (!params) return template\n  return template.replace(/\\{\\{(\\w+)\\}\\}|\\{(\\w+)\\}/g, (_, doubleKey, singleKey) => {\n    const key = doubleKey ?? singleKey\n    if (!key) return _\n    const value = params[key]\n    if (value === undefined) {\n      return doubleKey ? `{{${key}}}` : `{${key}}`\n    }\n    return String(value)\n  })\n}\n\nexport function I18nProvider({ children, locale, dict }: { children: React.ReactNode; locale: Locale; dict: Dict }) {\n  const value = useMemo<I18nContextValue>(() => ({\n    locale,\n    t: (key, fallbackOrParams, params) => {\n      let fallback: string | undefined\n      let resolvedParams: TranslateParams | undefined\n\n      if (typeof fallbackOrParams === 'string') {\n        fallback = fallbackOrParams\n        resolvedParams = params\n      } else {\n        resolvedParams = fallbackOrParams ?? params\n      }\n\n      const template = dict[key] ?? fallback ?? key\n      return format(template, resolvedParams)\n    },\n  }), [locale, dict])\n  return <I18nContext.Provider value={value}>{children}</I18nContext.Provider>\n}\n\nexport function useT() {\n  const ctx = useContext(I18nContext)\n  if (!ctx) throw new Error('useT must be used within I18nProvider')\n  return ctx.t\n}\n\nexport function useLocale() {\n  const ctx = useContext(I18nContext)\n  if (!ctx) throw new Error('useLocale must be used within I18nProvider')\n  return ctx.locale\n}\n"],
+  "mappings": ";AAoDS;AAnDT,SAAgB,eAAe,YAAY,eAAe;AAkB1D,MAAM,cAAc,cAAuC,IAAI;AAE/D,SAAS,OAAO,UAAkB,QAA0B;AAC1D,MAAI,CAAC,OAAQ,QAAO;AACpB,SAAO,SAAS,QAAQ,4BAA4B,CAAC,GAAG,WAAW,cAAc;AAC/E,UAAM,MAAM,aAAa;AACzB,QAAI,CAAC,IAAK,QAAO;AACjB,UAAM,QAAQ,OAAO,GAAG;AACxB,QAAI,UAAU,QAAW;AACvB,aAAO,YAAY,KAAK,GAAG,OAAO,IAAI,GAAG;AAAA,IAC3C;AACA,WAAO,OAAO,KAAK;AAAA,EACrB,CAAC;AACH;AAEO,SAAS,aAAa,EAAE,UAAU,QAAQ,KAAK,GAA8D;AAClH,QAAM,QAAQ,QAA0B,OAAO;AAAA,IAC7C;AAAA,IACA,GAAG,CAAC,KAAK,kBAAkB,WAAW;AACpC,UAAI;AACJ,UAAI;AAEJ,UAAI,OAAO,qBAAqB,UAAU;AACxC,mBAAW;AACX,yBAAiB;AAAA,MACnB,OAAO;AACL,yBAAiB,oBAAoB;AAAA,MACvC;AAEA,YAAM,WAAW,KAAK,GAAG,KAAK,YAAY;AAC1C,aAAO,OAAO,UAAU,cAAc;AAAA,IACxC;AAAA,EACF,IAAI,CAAC,QAAQ,IAAI,CAAC;AAClB,SAAO,oBAAC,YAAY,UAAZ,EAAqB,OAAe,UAAS;AACvD;AAEO,SAAS,OAAO;AACrB,QAAM,MAAM,WAAW,WAAW;AAClC,MAAI,CAAC,IAAK,OAAM,IAAI,MAAM,uCAAuC;AACjE,SAAO,IAAI;AACb;AAEO,SAAS,YAAY;AAC1B,QAAM,MAAM,WAAW,WAAW;AAClC,MAAI,CAAC,IAAK,OAAM,IAAI,MAAM,4CAA4C;AACtE,SAAO,IAAI;AACb;",
   "names": []
 }

package/dist/lib/lib/auth/jwt.js

@@ -0,0 +1,34 @@
+import crypto from "node:crypto";
+function base64url(input) {
+  return (typeof input === "string" ? Buffer.from(input) : input).toString("base64").replace(/=/g, "").replace(/\+/g, "-").replace(/\//g, "_");
+}
+function signJwt(payload, secret = process.env.JWT_SECRET, expiresInSec = 60 * 60 * 8) {
+  if (!secret) throw new Error("JWT_SECRET is not set");
+  const header = { alg: "HS256", typ: "JWT" };
+  const now = Math.floor(Date.now() / 1e3);
+  const body = { iat: now, exp: now + expiresInSec, ...payload };
+  const encHeader = base64url(JSON.stringify(header));
+  const encBody = base64url(JSON.stringify(body));
+  const data = `${encHeader}.${encBody}`;
+  const sig = crypto.createHmac("sha256", secret).update(data).digest();
+  const encSig = base64url(sig);
+  return `${data}.${encSig}`;
+}
+function verifyJwt(token, secret = process.env.JWT_SECRET) {
+  if (!secret) throw new Error("JWT_SECRET is not set");
+  const parts = token.split(".");
+  if (parts.length !== 3) return null;
+  const [h, p, s] = parts;
+  const data = `${h}.${p}`;
+  const expected = base64url(crypto.createHmac("sha256", secret).update(data).digest());
+  if (!crypto.timingSafeEqual(Buffer.from(s), Buffer.from(expected))) return null;
+  const payload = JSON.parse(Buffer.from(p, "base64").toString("utf8"));
+  const now = Math.floor(Date.now() / 1e3);
+  if (payload.exp && now > payload.exp) return null;
+  return payload;
+}
+export {
+  signJwt,
+  verifyJwt
+};
+//# sourceMappingURL=jwt.js.map

package/dist/lib/lib/auth/jwt.js.map

@@ -0,0 +1,7 @@
+{
+  "version": 3,
+  "sources": ["../../../../src/lib/lib/auth/jwt.ts"],
+  "sourcesContent": ["import crypto from 'node:crypto'\n\nfunction base64url(input: Buffer | string) {\n  return (typeof input === 'string' ? Buffer.from(input) : input)\n    .toString('base64')\n    .replace(/=/g, '')\n    .replace(/\\+/g, '-')\n    .replace(/\\//g, '_')\n}\n\nexport type JwtPayload = Record<string, any>\n\nexport function signJwt(payload: JwtPayload, secret = process.env.JWT_SECRET!, expiresInSec = 60 * 60 * 8) {\n  if (!secret) throw new Error('JWT_SECRET is not set')\n  const header = { alg: 'HS256', typ: 'JWT' }\n  const now = Math.floor(Date.now() / 1000)\n  const body = { iat: now, exp: now + expiresInSec, ...payload }\n  const encHeader = base64url(JSON.stringify(header))\n  const encBody = base64url(JSON.stringify(body))\n  const data = `${encHeader}.${encBody}`\n  const sig = crypto.createHmac('sha256', secret).update(data).digest()\n  const encSig = base64url(sig)\n  return `${data}.${encSig}`\n}\n\nexport function verifyJwt(token: string, secret = process.env.JWT_SECRET!) {\n  if (!secret) throw new Error('JWT_SECRET is not set')\n  const parts = token.split('.')\n  if (parts.length !== 3) return null\n  const [h, p, s] = parts\n  const data = `${h}.${p}`\n  const expected = base64url(crypto.createHmac('sha256', secret).update(data).digest())\n  if (!crypto.timingSafeEqual(Buffer.from(s), Buffer.from(expected))) return null\n  const payload = JSON.parse(Buffer.from(p, 'base64').toString('utf8'))\n  const now = Math.floor(Date.now() / 1000)\n  if (payload.exp && now > payload.exp) return null\n  return payload\n}\n\n"],
+  "mappings": "AAAA,OAAO,YAAY;AAEnB,SAAS,UAAU,OAAwB;AACzC,UAAQ,OAAO,UAAU,WAAW,OAAO,KAAK,KAAK,IAAI,OACtD,SAAS,QAAQ,EACjB,QAAQ,MAAM,EAAE,EAChB,QAAQ,OAAO,GAAG,EAClB,QAAQ,OAAO,GAAG;AACvB;AAIO,SAAS,QAAQ,SAAqB,SAAS,QAAQ,IAAI,YAAa,eAAe,KAAK,KAAK,GAAG;AACzG,MAAI,CAAC,OAAQ,OAAM,IAAI,MAAM,uBAAuB;AACpD,QAAM,SAAS,EAAE,KAAK,SAAS,KAAK,MAAM;AAC1C,QAAM,MAAM,KAAK,MAAM,KAAK,IAAI,IAAI,GAAI;AACxC,QAAM,OAAO,EAAE,KAAK,KAAK,KAAK,MAAM,cAAc,GAAG,QAAQ;AAC7D,QAAM,YAAY,UAAU,KAAK,UAAU,MAAM,CAAC;AAClD,QAAM,UAAU,UAAU,KAAK,UAAU,IAAI,CAAC;AAC9C,QAAM,OAAO,GAAG,SAAS,IAAI,OAAO;AACpC,QAAM,MAAM,OAAO,WAAW,UAAU,MAAM,EAAE,OAAO,IAAI,EAAE,OAAO;AACpE,QAAM,SAAS,UAAU,GAAG;AAC5B,SAAO,GAAG,IAAI,IAAI,MAAM;AAC1B;AAEO,SAAS,UAAU,OAAe,SAAS,QAAQ,IAAI,YAAa;AACzE,MAAI,CAAC,OAAQ,OAAM,IAAI,MAAM,uBAAuB;AACpD,QAAM,QAAQ,MAAM,MAAM,GAAG;AAC7B,MAAI,MAAM,WAAW,EAAG,QAAO;AAC/B,QAAM,CAAC,GAAG,GAAG,CAAC,IAAI;AAClB,QAAM,OAAO,GAAG,CAAC,IAAI,CAAC;AACtB,QAAM,WAAW,UAAU,OAAO,WAAW,UAAU,MAAM,EAAE,OAAO,IAAI,EAAE,OAAO,CAAC;AACpF,MAAI,CAAC,OAAO,gBAAgB,OAAO,KAAK,CAAC,GAAG,OAAO,KAAK,QAAQ,CAAC,EAAG,QAAO;AAC3E,QAAM,UAAU,KAAK,MAAM,OAAO,KAAK,GAAG,QAAQ,EAAE,SAAS,MAAM,CAAC;AACpE,QAAM,MAAM,KAAK,MAAM,KAAK,IAAI,IAAI,GAAI;AACxC,MAAI,QAAQ,OAAO,MAAM,QAAQ,IAAK,QAAO;AAC7C,SAAO;AACT;",
+  "names": []
+}

package/dist/lib/lib/auth/server.js

@@ -0,0 +1,77 @@
+import { cookies } from "next/headers";
+import { verifyJwt } from "./jwt.js";
+async function resolveApiKeyAuth(secret) {
+  if (!secret) return null;
+  try {
+    const { createRequestContainer } = await import("@open-mercato/shared/lib/di/container");
+    const container = await createRequestContainer();
+    const em = container.resolve("em");
+    const { findApiKeyBySecret } = await import("@open-mercato/core/modules/api_keys/services/apiKeyService");
+    const { Role } = await import("@open-mercato/core/modules/auth/data/entities");
+    const record = await findApiKeyBySecret(em, secret);
+    if (!record) return null;
+    const roleIds = Array.isArray(record.rolesJson) ? record.rolesJson : [];
+    const roles = roleIds.length ? await em.find(Role, { id: { $in: roleIds } }) : [];
+    const roleNames = roles.map((role) => role.name).filter((name) => typeof name === "string" && name.length > 0);
+    try {
+      record.lastUsedAt = /* @__PURE__ */ new Date();
+      await em.persistAndFlush(record);
+    } catch {
+    }
+    return {
+      sub: `api_key:${record.id}`,
+      tenantId: record.tenantId ?? null,
+      orgId: record.organizationId ?? null,
+      roles: roleNames,
+      isApiKey: true,
+      keyId: record.id,
+      keyName: record.name
+    };
+  } catch {
+    return null;
+  }
+}
+function extractApiKey(req) {
+  const header = (req.headers.get("x-api-key") || "").trim();
+  if (header) return header;
+  const authHeader = (req.headers.get("authorization") || "").trim();
+  if (authHeader.toLowerCase().startsWith("apikey ")) {
+    return authHeader.slice(7).trim();
+  }
+  return null;
+}
+async function getAuthFromCookies() {
+  const token = (await cookies()).get("auth_token")?.value;
+  if (!token) return null;
+  try {
+    const payload = verifyJwt(token);
+    return payload;
+  } catch {
+    return null;
+  }
+}
+async function getAuthFromRequest(req) {
+  const authHeader = (req.headers.get("authorization") || "").trim();
+  let token;
+  if (authHeader.toLowerCase().startsWith("bearer ")) token = authHeader.slice(7).trim();
+  if (!token) {
+    const cookie = req.headers.get("cookie") || "";
+    const match = cookie.match(/(?:^|;\s*)auth_token=([^;]+)/);
+    if (match) token = decodeURIComponent(match[1]);
+  }
+  if (token) {
+    try {
+      const payload = verifyJwt(token);
+      if (payload) return payload;
+    } catch {
+    }
+  }
+  const apiKey = extractApiKey(req);
+  if (!apiKey) return null;
+  return resolveApiKeyAuth(apiKey);
+}
+export {
+  getAuthFromCookies,
+  getAuthFromRequest
+};
+//# sourceMappingURL=server.js.map

package/dist/lib/lib/auth/server.js.map

@@ -0,0 +1,7 @@
+{
+  "version": 3,
+  "sources": ["../../../../src/lib/lib/auth/server.ts"],
+  "sourcesContent": ["import { cookies } from 'next/headers'\nimport type { EntityManager } from '@mikro-orm/postgresql'\nimport { verifyJwt } from './jwt'\n\nexport type AuthContext = {\n  sub: string\n  tenantId: string | null\n  orgId: string | null\n  email?: string\n  roles?: string[]\n  isApiKey?: boolean\n  keyId?: string\n  keyName?: string\n  [k: string]: any\n} | null\n\nasync function resolveApiKeyAuth(secret: string): Promise<AuthContext> {\n  if (!secret) return null\n  try {\n    const { createRequestContainer } = await import('@open-mercato/shared/lib/di/container')\n    const container = await createRequestContainer()\n    const em = (container.resolve('em') as EntityManager)\n    const { findApiKeyBySecret } = await import('@open-mercato/core/modules/api_keys/services/apiKeyService')\n    const { Role } = await import('@open-mercato/core/modules/auth/data/entities')\n\n    const record = await findApiKeyBySecret(em, secret)\n    if (!record) return null\n\n    const roleIds = Array.isArray(record.rolesJson) ? record.rolesJson : []\n    const roles = roleIds.length\n      ? await em.find(Role, { id: { $in: roleIds as any } } as any)\n      : []\n    const roleNames = roles.map((role) => role.name).filter((name): name is string => typeof name === 'string' && name.length > 0)\n\n    try {\n      record.lastUsedAt = new Date()\n      await em.persistAndFlush(record)\n    } catch {}\n\n    return {\n      sub: `api_key:${record.id}`,\n      tenantId: record.tenantId ?? null,\n      orgId: record.organizationId ?? null,\n      roles: roleNames,\n      isApiKey: true,\n      keyId: record.id,\n      keyName: record.name,\n    }\n  } catch {\n    return null\n  }\n}\n\nfunction extractApiKey(req: Request): string | null {\n  const header = (req.headers.get('x-api-key') || '').trim()\n  if (header) return header\n  const authHeader = (req.headers.get('authorization') || '').trim()\n  if (authHeader.toLowerCase().startsWith('apikey ')) {\n    return authHeader.slice(7).trim()\n  }\n  return null\n}\n\nexport async function getAuthFromCookies(): Promise<AuthContext> {\n  const token = (await cookies()).get('auth_token')?.value\n  if (!token) return null\n  try {\n    const payload = verifyJwt(token)\n    return payload\n  } catch {\n    return null\n  }\n}\n\nexport async function getAuthFromRequest(req: Request): Promise<AuthContext> {\n  const authHeader = (req.headers.get('authorization') || '').trim()\n  let token: string | undefined\n  if (authHeader.toLowerCase().startsWith('bearer ')) token = authHeader.slice(7).trim()\n  if (!token) {\n    const cookie = req.headers.get('cookie') || ''\n    const match = cookie.match(/(?:^|;\\s*)auth_token=([^;]+)/)\n    if (match) token = decodeURIComponent(match[1])\n  }\n  if (token) {\n    try {\n      const payload = verifyJwt(token)\n      if (payload) return payload\n    } catch {}\n  }\n\n  const apiKey = extractApiKey(req)\n  if (!apiKey) return null\n  return resolveApiKeyAuth(apiKey)\n}\n"],
+  "mappings": "AAAA,SAAS,eAAe;AAExB,SAAS,iBAAiB;AAc1B,eAAe,kBAAkB,QAAsC;AACrE,MAAI,CAAC,OAAQ,QAAO;AACpB,MAAI;AACF,UAAM,EAAE,uBAAuB,IAAI,MAAM,OAAO,uCAAuC;AACvF,UAAM,YAAY,MAAM,uBAAuB;AAC/C,UAAM,KAAM,UAAU,QAAQ,IAAI;AAClC,UAAM,EAAE,mBAAmB,IAAI,MAAM,OAAO,4DAA4D;AACxG,UAAM,EAAE,KAAK,IAAI,MAAM,OAAO,+CAA+C;AAE7E,UAAM,SAAS,MAAM,mBAAmB,IAAI,MAAM;AAClD,QAAI,CAAC,OAAQ,QAAO;AAEpB,UAAM,UAAU,MAAM,QAAQ,OAAO,SAAS,IAAI,OAAO,YAAY,CAAC;AACtE,UAAM,QAAQ,QAAQ,SAClB,MAAM,GAAG,KAAK,MAAM,EAAE,IAAI,EAAE,KAAK,QAAe,EAAE,CAAQ,IAC1D,CAAC;AACL,UAAM,YAAY,MAAM,IAAI,CAAC,SAAS,KAAK,IAAI,EAAE,OAAO,CAAC,SAAyB,OAAO,SAAS,YAAY,KAAK,SAAS,CAAC;AAE7H,QAAI;AACF,aAAO,aAAa,oBAAI,KAAK;AAC7B,YAAM,GAAG,gBAAgB,MAAM;AAAA,IACjC,QAAQ;AAAA,IAAC;AAET,WAAO;AAAA,MACL,KAAK,WAAW,OAAO,EAAE;AAAA,MACzB,UAAU,OAAO,YAAY;AAAA,MAC7B,OAAO,OAAO,kBAAkB;AAAA,MAChC,OAAO;AAAA,MACP,UAAU;AAAA,MACV,OAAO,OAAO;AAAA,MACd,SAAS,OAAO;AAAA,IAClB;AAAA,EACF,QAAQ;AACN,WAAO;AAAA,EACT;AACF;AAEA,SAAS,cAAc,KAA6B;AAClD,QAAM,UAAU,IAAI,QAAQ,IAAI,WAAW,KAAK,IAAI,KAAK;AACzD,MAAI,OAAQ,QAAO;AACnB,QAAM,cAAc,IAAI,QAAQ,IAAI,eAAe,KAAK,IAAI,KAAK;AACjE,MAAI,WAAW,YAAY,EAAE,WAAW,SAAS,GAAG;AAClD,WAAO,WAAW,MAAM,CAAC,EAAE,KAAK;AAAA,EAClC;AACA,SAAO;AACT;AAEA,eAAsB,qBAA2C;AAC/D,QAAM,SAAS,MAAM,QAAQ,GAAG,IAAI,YAAY,GAAG;AACnD,MAAI,CAAC,MAAO,QAAO;AACnB,MAAI;AACF,UAAM,UAAU,UAAU,KAAK;AAC/B,WAAO;AAAA,EACT,QAAQ;AACN,WAAO;AAAA,EACT;AACF;AAEA,eAAsB,mBAAmB,KAAoC;AAC3E,QAAM,cAAc,IAAI,QAAQ,IAAI,eAAe,KAAK,IAAI,KAAK;AACjE,MAAI;AACJ,MAAI,WAAW,YAAY,EAAE,WAAW,SAAS,EAAG,SAAQ,WAAW,MAAM,CAAC,EAAE,KAAK;AACrF,MAAI,CAAC,OAAO;AACV,UAAM,SAAS,IAAI,QAAQ,IAAI,QAAQ,KAAK;AAC5C,UAAM,QAAQ,OAAO,MAAM,8BAA8B;AACzD,QAAI,MAAO,SAAQ,mBAAmB,MAAM,CAAC,CAAC;AAAA,EAChD;AACA,MAAI,OAAO;AACT,QAAI;AACF,YAAM,UAAU,UAAU,KAAK;AAC/B,UAAI,QAAS,QAAO;AAAA,IACtB,QAAQ;AAAA,IAAC;AAAA,EACX;AAEA,QAAM,SAAS,cAAc,GAAG;AAChC,MAAI,CAAC,OAAQ,QAAO;AACpB,SAAO,kBAAkB,MAAM;AACjC;",
+  "names": []
+}

package/dist/lib/lib/email/send.js

@@ -0,0 +1,26 @@
+import { Resend } from "resend";
+import { parseBooleanWithDefault } from "../../boolean.js";
+async function sendEmail({ to, subject, react, from, replyTo }) {
+  const emailDisabled = parseBooleanWithDefault(process.env.OM_DISABLE_EMAIL_DELIVERY, false) || parseBooleanWithDefault(process.env.OM_TEST_MODE, false);
+  if (emailDisabled) return;
+  const apiKey = process.env.RESEND_API_KEY;
+  if (!apiKey) throw new Error("RESEND_API_KEY is not set");
+  const resend = new Resend(apiKey);
+  const fromAddr = from || process.env.EMAIL_FROM || "no-reply@localhost";
+  const payload = {
+    to,
+    subject,
+    from: fromAddr,
+    react,
+    ...replyTo ? { reply_to: replyTo } : {}
+  };
+  const result = await resend.emails.send(payload);
+  const errorMessage = typeof result?.error === "string" ? result.error : typeof result?.error?.message === "string" ? result.error.message : null;
+  if (errorMessage) {
+    throw new Error(`RESEND_SEND_FAILED: ${errorMessage}`);
+  }
+}
+export {
+  sendEmail
+};
+//# sourceMappingURL=send.js.map

package/dist/lib/lib/email/send.js.map

@@ -0,0 +1,7 @@
+{
+  "version": 3,
+  "sources": ["../../../../src/lib/lib/email/send.ts"],
+  "sourcesContent": ["import { Resend } from 'resend'\nimport React from 'react'\nimport { parseBooleanWithDefault } from '../../boolean'\n\nexport type SendEmailOptions = {\n  to: string\n  subject: string\n  react: React.ReactElement\n  from?: string\n  replyTo?: string\n}\n\nexport async function sendEmail({ to, subject, react, from, replyTo }: SendEmailOptions) {\n  const emailDisabled =\n    parseBooleanWithDefault(process.env.OM_DISABLE_EMAIL_DELIVERY, false) ||\n    parseBooleanWithDefault(process.env.OM_TEST_MODE, false)\n  if (emailDisabled) return\n\n  const apiKey = process.env.RESEND_API_KEY\n  if (!apiKey) throw new Error('RESEND_API_KEY is not set')\n  const resend = new Resend(apiKey)\n  const fromAddr = from || process.env.EMAIL_FROM || 'no-reply@localhost'\n  const payload = {\n    to,\n    subject,\n    from: fromAddr,\n    react,\n    ...(replyTo ? { reply_to: replyTo } : {}),\n  }\n  const result = await resend.emails.send(payload)\n  const errorMessage =\n    typeof (result as any)?.error === 'string'\n      ? (result as any).error\n      : typeof (result as any)?.error?.message === 'string'\n        ? (result as any).error.message\n        : null\n  if (errorMessage) {\n    throw new Error(`RESEND_SEND_FAILED: ${errorMessage}`)\n  }\n}\n"],
+  "mappings": "AAAA,SAAS,cAAc;AAEvB,SAAS,+BAA+B;AAUxC,eAAsB,UAAU,EAAE,IAAI,SAAS,OAAO,MAAM,QAAQ,GAAqB;AACvF,QAAM,gBACJ,wBAAwB,QAAQ,IAAI,2BAA2B,KAAK,KACpE,wBAAwB,QAAQ,IAAI,cAAc,KAAK;AACzD,MAAI,cAAe;AAEnB,QAAM,SAAS,QAAQ,IAAI;AAC3B,MAAI,CAAC,OAAQ,OAAM,IAAI,MAAM,2BAA2B;AACxD,QAAM,SAAS,IAAI,OAAO,MAAM;AAChC,QAAM,WAAW,QAAQ,QAAQ,IAAI,cAAc;AACnD,QAAM,UAAU;AAAA,IACd;AAAA,IACA;AAAA,IACA,MAAM;AAAA,IACN;AAAA,IACA,GAAI,UAAU,EAAE,UAAU,QAAQ,IAAI,CAAC;AAAA,EACzC;AACA,QAAM,SAAS,MAAM,OAAO,OAAO,KAAK,OAAO;AAC/C,QAAM,eACJ,OAAQ,QAAgB,UAAU,WAC7B,OAAe,QAChB,OAAQ,QAAgB,OAAO,YAAY,WACxC,OAAe,MAAM,UACtB;AACR,MAAI,cAAc;AAChB,UAAM,IAAI,MAAM,uBAAuB,YAAY,EAAE;AAAA,EACvD;AACF;",
+  "names": []
+}

package/dist/lib/lib/i18n/config.js

@@ -0,0 +1,7 @@
+const locales = ["en", "pl", "es", "de"];
+const defaultLocale = "en";
+export {
+  defaultLocale,
+  locales
+};
+//# sourceMappingURL=config.js.map

package/dist/lib/lib/i18n/config.js.map

@@ -0,0 +1,7 @@
+{
+  "version": 3,
+  "sources": ["../../../../src/lib/lib/i18n/config.ts"],
+  "sourcesContent": ["export type Locale = 'en' | 'pl' | 'es' | 'de'\n\nexport const locales: Locale[] = ['en', 'pl', 'es', 'de']\nexport const defaultLocale: Locale = 'en'\n"],
+  "mappings": "AAEO,MAAM,UAAoB,CAAC,MAAM,MAAM,MAAM,IAAI;AACjD,MAAM,gBAAwB;",
+  "names": []
+}

package/dist/lib/lib/i18n/context.js

@@ -0,0 +1,31 @@
+"use client";
+import { jsx } from "react/jsx-runtime";
+import { createContext, useContext, useMemo } from "react";
+const I18nContext = createContext(null);
+function format(template, params) {
+  if (!params) return template;
+  return template.replace(/\{(\w+)\}/g, (_, k) => String(params[k] ?? `{${k}}`));
+}
+function I18nProvider({ children, locale, dict }) {
+  const value = useMemo(() => ({
+    locale,
+    t: (key, params) => format(dict[key] ?? key, params)
+  }), [locale, dict]);
+  return /* @__PURE__ */ jsx(I18nContext.Provider, { value, children });
+}
+function useT() {
+  const ctx = useContext(I18nContext);
+  if (!ctx) throw new Error("useT must be used within I18nProvider");
+  return ctx.t;
+}
+function useLocale() {
+  const ctx = useContext(I18nContext);
+  if (!ctx) throw new Error("useLocale must be used within I18nProvider");
+  return ctx.locale;
+}
+export {
+  I18nProvider,
+  useLocale,
+  useT
+};
+//# sourceMappingURL=context.js.map

package/dist/lib/lib/i18n/context.js.map

@@ -0,0 +1,7 @@
+{
+  "version": 3,
+  "sources": ["../../../../src/lib/lib/i18n/context.tsx"],
+  "sourcesContent": ["\"use client\"\nimport React, { createContext, useContext, useMemo } from 'react'\nimport type { Locale } from './config'\n\nexport type Dict = Record<string, string>\n\nexport type I18nContextValue = {\n  locale: Locale\n  t: (key: string, params?: Record<string, string | number>) => string\n}\n\nconst I18nContext = createContext<I18nContextValue | null>(null)\n\nfunction format(template: string, params?: Record<string, string | number>) {\n  if (!params) return template\n  return template.replace(/\\{(\\w+)\\}/g, (_, k) => String(params[k] ?? `{${k}}`))\n}\n\nexport function I18nProvider({ children, locale, dict }: { children: React.ReactNode; locale: Locale; dict: Dict }) {\n  const value = useMemo<I18nContextValue>(() => ({\n    locale,\n    t: (key, params) => format(dict[key] ?? key, params),\n  }), [locale, dict])\n  return <I18nContext.Provider value={value}>{children}</I18nContext.Provider>\n}\n\nexport function useT() {\n  const ctx = useContext(I18nContext)\n  if (!ctx) throw new Error('useT must be used within I18nProvider')\n  return ctx.t\n}\n\nexport function useLocale() {\n  const ctx = useContext(I18nContext)\n  if (!ctx) throw new Error('useLocale must be used within I18nProvider')\n  return ctx.locale\n}\n\n"],
+  "mappings": ";AAuBS;AAtBT,SAAgB,eAAe,YAAY,eAAe;AAU1D,MAAM,cAAc,cAAuC,IAAI;AAE/D,SAAS,OAAO,UAAkB,QAA0C;AAC1E,MAAI,CAAC,OAAQ,QAAO;AACpB,SAAO,SAAS,QAAQ,cAAc,CAAC,GAAG,MAAM,OAAO,OAAO,CAAC,KAAK,IAAI,CAAC,GAAG,CAAC;AAC/E;AAEO,SAAS,aAAa,EAAE,UAAU,QAAQ,KAAK,GAA8D;AAClH,QAAM,QAAQ,QAA0B,OAAO;AAAA,IAC7C;AAAA,IACA,GAAG,CAAC,KAAK,WAAW,OAAO,KAAK,GAAG,KAAK,KAAK,MAAM;AAAA,EACrD,IAAI,CAAC,QAAQ,IAAI,CAAC;AAClB,SAAO,oBAAC,YAAY,UAAZ,EAAqB,OAAe,UAAS;AACvD;AAEO,SAAS,OAAO;AACrB,QAAM,MAAM,WAAW,WAAW;AAClC,MAAI,CAAC,IAAK,OAAM,IAAI,MAAM,uCAAuC;AACjE,SAAO,IAAI;AACb;AAEO,SAAS,YAAY;AAC1B,QAAM,MAAM,WAAW,WAAW;AAClC,MAAI,CAAC,IAAK,OAAM,IAAI,MAAM,4CAA4C;AACtE,SAAO,IAAI;AACb;",
+  "names": []
+}

package/dist/lib/lib/utils.js

@@ -0,0 +1,9 @@
+import { clsx } from "clsx";
+import { twMerge } from "tailwind-merge";
+function cn(...inputs) {
+  return twMerge(clsx(inputs));
+}
+export {
+  cn
+};
+//# sourceMappingURL=utils.js.map

package/dist/lib/lib/utils.js.map

@@ -0,0 +1,7 @@
+{
+  "version": 3,
+  "sources": ["../../../src/lib/lib/utils.ts"],
+  "sourcesContent": ["import { clsx, type ClassValue } from \"clsx\"\nimport { twMerge } from \"tailwind-merge\"\n\nexport function cn(...inputs: ClassValue[]) {\n  return twMerge(clsx(inputs))\n}\n"],
+  "mappings": "AAAA,SAAS,YAA6B;AACtC,SAAS,eAAe;AAEjB,SAAS,MAAM,QAAsB;AAC1C,SAAO,QAAQ,KAAK,MAAM,CAAC;AAC7B;",
+  "names": []
+}

package/dist/lib/version.js

@@ -1,4 +1,4 @@
-const APP_VERSION = "0.4.6-canary-c3811b08ec";
+const APP_VERSION = "0.4.6-canary-8ae94de818";
 const appVersion = APP_VERSION;
 export {
   APP_VERSION,

package/dist/lib/version.js.map

@@ -1,7 +1,7 @@
 {
   "version": 3,
   "sources": ["../../src/lib/version.ts"],
-  "sourcesContent": ["// Build-time generated version\nexport const APP_VERSION = '0.4.6-canary-c3811b08ec'\nexport const appVersion = APP_VERSION\n"],
+  "sourcesContent": ["// Build-time generated version\nexport const APP_VERSION = '0.4.6-canary-8ae94de818'\nexport const appVersion = APP_VERSION\n"],
   "mappings": "AACO,MAAM,cAAc;AACpB,MAAM,aAAa;",
   "names": []
 }

package/dist/modules/payment_gateways/index.js

@@ -0,0 +1,2 @@
+export * from "./types.js";
+//# sourceMappingURL=index.js.map

package/dist/modules/payment_gateways/index.js.map

@@ -0,0 +1,7 @@
+{
+  "version": 3,
+  "sources": ["../../../src/modules/payment_gateways/index.ts"],
+  "sourcesContent": ["export * from './types'\n"],
+  "mappings": "AAAA,cAAc;",
+  "names": []
+}

package/dist/modules/payment_gateways/types.js

@@ -0,0 +1,59 @@
+const adapterRegistry = /* @__PURE__ */ new Map();
+const webhookHandlerRegistry = /* @__PURE__ */ new Map();
+function adapterKey(providerKey, version) {
+  return version ? `${providerKey}:${version}` : providerKey;
+}
+function registerGatewayAdapter(adapter, options) {
+  const key = adapterKey(adapter.providerKey, options?.version);
+  adapterRegistry.set(key, adapter);
+  if (options?.version) {
+    if (!adapterRegistry.has(adapter.providerKey)) {
+      adapterRegistry.set(adapter.providerKey, adapter);
+    }
+  }
+  return () => {
+    adapterRegistry.delete(key);
+  };
+}
+function getGatewayAdapter(providerKey, version) {
+  if (version) {
+    return adapterRegistry.get(adapterKey(providerKey, version)) ?? adapterRegistry.get(providerKey);
+  }
+  return adapterRegistry.get(providerKey);
+}
+function listGatewayAdapters() {
+  const seen = /* @__PURE__ */ new Set();
+  const result = [];
+  for (const [key, adapter] of adapterRegistry) {
+    if (!key.includes(":") && !seen.has(adapter.providerKey)) {
+      seen.add(adapter.providerKey);
+      result.push(adapter);
+    }
+  }
+  return result;
+}
+function clearGatewayAdapters() {
+  adapterRegistry.clear();
+}
+function registerWebhookHandler(providerKey, handler, options) {
+  webhookHandlerRegistry.set(providerKey, { handler, queue: options?.queue });
+  return () => {
+    webhookHandlerRegistry.delete(providerKey);
+  };
+}
+function getWebhookHandler(providerKey) {
+  return webhookHandlerRegistry.get(providerKey);
+}
+function clearWebhookHandlers() {
+  webhookHandlerRegistry.clear();
+}
+export {
+  clearGatewayAdapters,
+  clearWebhookHandlers,
+  getGatewayAdapter,
+  getWebhookHandler,
+  listGatewayAdapters,
+  registerGatewayAdapter,
+  registerWebhookHandler
+};
+//# sourceMappingURL=types.js.map

package/dist/modules/payment_gateways/types.js.map

@@ -0,0 +1,7 @@
+{
+  "version": 3,
+  "sources": ["../../../src/modules/payment_gateways/types.ts"],
+  "sourcesContent": ["// \u2500\u2500 Unified Payment Status \u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n\nexport type UnifiedPaymentStatus =\n  | 'pending'\n  | 'authorized'\n  | 'captured'\n  | 'partially_captured'\n  | 'refunded'\n  | 'partially_refunded'\n  | 'cancelled'\n  | 'failed'\n  | 'expired'\n  | 'unknown'\n\n// \u2500\u2500 GatewayAdapter Interface \u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n\nexport interface GatewayAdapter {\n  readonly providerKey: string\n\n  /** Create a payment session / payment intent */\n  createSession(input: CreateSessionInput): Promise<CreateSessionResult>\n\n  /** Capture an authorized payment */\n  capture(input: CaptureInput): Promise<CaptureResult>\n\n  /** Refund a captured payment (full or partial) */\n  refund(input: RefundInput): Promise<RefundResult>\n\n  /** Cancel / void an authorized payment before capture */\n  cancel(input: CancelInput): Promise<CancelResult>\n\n  /** Get current payment status from provider */\n  getStatus(input: GetStatusInput): Promise<GatewayPaymentStatus>\n\n  /** Verify and parse an inbound webhook event */\n  verifyWebhook(input: VerifyWebhookInput): Promise<WebhookEvent>\n\n  /** Map provider status to unified status */\n  mapStatus(providerStatus: string, eventType?: string): UnifiedPaymentStatus\n}\n\n// \u2500\u2500 Input / Output Types \u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n\nexport interface CreateSessionInput {\n  orderId?: string\n  paymentId: string\n  tenantId: string\n  organizationId: string\n  amount: number\n  currencyCode: string\n  captureMethod?: 'automatic' | 'manual'\n  paymentTypes?: string[]\n  description?: string\n  successUrl?: string\n  cancelUrl?: string\n  metadata?: Record<string, unknown>\n  credentials: Record<string, unknown>\n  lineItems?: SessionLineItem[]\n}\n\nexport interface SessionLineItem {\n  name: string\n  quantity: number\n  unitAmount: number\n  currencyCode: string\n}\n\nexport interface CreateSessionResult {\n  sessionId: string\n  clientSecret?: string\n  redirectUrl?: string\n  status: UnifiedPaymentStatus\n  providerData?: Record<string, unknown>\n}\n\nexport interface CaptureInput {\n  sessionId: string\n  amount?: number\n  credentials: Record<string, unknown>\n  metadata?: Record<string, unknown>\n}\n\nexport interface CaptureResult {\n  status: UnifiedPaymentStatus\n  capturedAmount: number\n  providerData?: Record<string, unknown>\n}\n\nexport interface RefundInput {\n  sessionId: string\n  amount?: number\n  reason?: string\n  credentials: Record<string, unknown>\n  metadata?: Record<string, unknown>\n}\n\nexport interface RefundResult {\n  refundId: string\n  status: UnifiedPaymentStatus\n  refundedAmount: number\n  providerData?: Record<string, unknown>\n}\n\nexport interface CancelInput {\n  sessionId: string\n  reason?: string\n  credentials: Record<string, unknown>\n}\n\nexport interface CancelResult {\n  status: UnifiedPaymentStatus\n  providerData?: Record<string, unknown>\n}\n\nexport interface GetStatusInput {\n  sessionId: string\n  credentials: Record<string, unknown>\n}\n\nexport interface GatewayPaymentStatus {\n  status: UnifiedPaymentStatus\n  amount: number\n  amountReceived: number\n  currencyCode: string\n  providerData?: Record<string, unknown>\n}\n\nexport interface VerifyWebhookInput {\n  rawBody: string | Buffer\n  headers: Record<string, string | string[] | undefined>\n  credentials: Record<string, unknown>\n}\n\nexport interface WebhookEvent {\n  eventType: string\n  eventId: string\n  data: Record<string, unknown>\n  idempotencyKey: string\n  timestamp: Date\n}\n\n// \u2500\u2500 Webhook Handler \u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n\nexport interface WebhookHandlerRegistration {\n  handler: (input: VerifyWebhookInput) => Promise<WebhookEvent>\n  queue?: string\n}\n\n// \u2500\u2500 Adapter Registry Options \u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n\nexport interface RegisterAdapterOptions {\n  version?: string\n}\n\n// \u2500\u2500 Registries \u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n\nconst adapterRegistry = new Map<string, GatewayAdapter>()\nconst webhookHandlerRegistry = new Map<string, WebhookHandlerRegistration>()\n\nfunction adapterKey(providerKey: string, version?: string): string {\n  return version ? `${providerKey}:${version}` : providerKey\n}\n\nexport function registerGatewayAdapter(adapter: GatewayAdapter, options?: RegisterAdapterOptions): () => void {\n  const key = adapterKey(adapter.providerKey, options?.version)\n  adapterRegistry.set(key, adapter)\n  if (options?.version) {\n    // Also register as default if no default exists\n    if (!adapterRegistry.has(adapter.providerKey)) {\n      adapterRegistry.set(adapter.providerKey, adapter)\n    }\n  }\n  return () => {\n    adapterRegistry.delete(key)\n  }\n}\n\nexport function getGatewayAdapter(providerKey: string, version?: string): GatewayAdapter | undefined {\n  if (version) {\n    return adapterRegistry.get(adapterKey(providerKey, version)) ?? adapterRegistry.get(providerKey)\n  }\n  return adapterRegistry.get(providerKey)\n}\n\nexport function listGatewayAdapters(): GatewayAdapter[] {\n  const seen = new Set<string>()\n  const result: GatewayAdapter[] = []\n  for (const [key, adapter] of adapterRegistry) {\n    if (!key.includes(':') && !seen.has(adapter.providerKey)) {\n      seen.add(adapter.providerKey)\n      result.push(adapter)\n    }\n  }\n  return result\n}\n\nexport function clearGatewayAdapters(): void {\n  adapterRegistry.clear()\n}\n\nexport function registerWebhookHandler(\n  providerKey: string,\n  handler: (input: VerifyWebhookInput) => Promise<WebhookEvent>,\n  options?: { queue?: string },\n): () => void {\n  webhookHandlerRegistry.set(providerKey, { handler, queue: options?.queue })\n  return () => {\n    webhookHandlerRegistry.delete(providerKey)\n  }\n}\n\nexport function getWebhookHandler(providerKey: string): WebhookHandlerRegistration | undefined {\n  return webhookHandlerRegistry.get(providerKey)\n}\n\nexport function clearWebhookHandlers(): void {\n  webhookHandlerRegistry.clear()\n}\n"],
+  "mappings": "AA4JA,MAAM,kBAAkB,oBAAI,IAA4B;AACxD,MAAM,yBAAyB,oBAAI,IAAwC;AAE3E,SAAS,WAAW,aAAqB,SAA0B;AACjE,SAAO,UAAU,GAAG,WAAW,IAAI,OAAO,KAAK;AACjD;AAEO,SAAS,uBAAuB,SAAyB,SAA8C;AAC5G,QAAM,MAAM,WAAW,QAAQ,aAAa,SAAS,OAAO;AAC5D,kBAAgB,IAAI,KAAK,OAAO;AAChC,MAAI,SAAS,SAAS;AAEpB,QAAI,CAAC,gBAAgB,IAAI,QAAQ,WAAW,GAAG;AAC7C,sBAAgB,IAAI,QAAQ,aAAa,OAAO;AAAA,IAClD;AAAA,EACF;AACA,SAAO,MAAM;AACX,oBAAgB,OAAO,GAAG;AAAA,EAC5B;AACF;AAEO,SAAS,kBAAkB,aAAqB,SAA8C;AACnG,MAAI,SAAS;AACX,WAAO,gBAAgB,IAAI,WAAW,aAAa,OAAO,CAAC,KAAK,gBAAgB,IAAI,WAAW;AAAA,EACjG;AACA,SAAO,gBAAgB,IAAI,WAAW;AACxC;AAEO,SAAS,sBAAwC;AACtD,QAAM,OAAO,oBAAI,IAAY;AAC7B,QAAM,SAA2B,CAAC;AAClC,aAAW,CAAC,KAAK,OAAO,KAAK,iBAAiB;AAC5C,QAAI,CAAC,IAAI,SAAS,GAAG,KAAK,CAAC,KAAK,IAAI,QAAQ,WAAW,GAAG;AACxD,WAAK,IAAI,QAAQ,WAAW;AAC5B,aAAO,KAAK,OAAO;AAAA,IACrB;AAAA,EACF;AACA,SAAO;AACT;AAEO,SAAS,uBAA6B;AAC3C,kBAAgB,MAAM;AACxB;AAEO,SAAS,uBACd,aACA,SACA,SACY;AACZ,yBAAuB,IAAI,aAAa,EAAE,SAAS,OAAO,SAAS,MAAM,CAAC;AAC1E,SAAO,MAAM;AACX,2BAAuB,OAAO,WAAW;AAAA,EAC3C;AACF;AAEO,SAAS,kBAAkB,aAA6D;AAC7F,SAAO,uBAAuB,IAAI,WAAW;AAC/C;AAEO,SAAS,uBAA6B;AAC3C,yBAAuB,MAAM;AAC/B;",
+  "names": []
+}

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@open-mercato/shared",
-  "version": "0.4.6-canary-c3811b08ec",
+  "version": "0.4.6-canary-8ae94de818",
   "type": "module",
   "main": "./dist/index.js",
   "scripts": {

package/src/lib/i18n/context.tsx

@@ -1,5 +1,5 @@
 "use client"
-import { createContext, useContext, useMemo, type ReactNode } from 'react'
+import React, { createContext, useContext, useMemo } from 'react'
 import type { Locale } from './config'
 
 export type Dict = Record<string, string>
@@ -32,7 +32,7 @@ function format(template: string, params?: TranslateParams) {
   })
 }
 
-export function I18nProvider({ children, locale, dict }: { children: ReactNode; locale: Locale; dict: Dict }) {
+export function I18nProvider({ children, locale, dict }: { children: React.ReactNode; locale: Locale; dict: Dict }) {
   const value = useMemo<I18nContextValue>(() => ({
     locale,
     t: (key, fallbackOrParams, params) => {

package/src/lib/lib/auth/jwt.ts

@@ -0,0 +1,39 @@
+import crypto from 'node:crypto'
+
+function base64url(input: Buffer | string) {
+  return (typeof input === 'string' ? Buffer.from(input) : input)
+    .toString('base64')
+    .replace(/=/g, '')
+    .replace(/\+/g, '-')
+    .replace(/\//g, '_')
+}
+
+export type JwtPayload = Record<string, any>
+
+export function signJwt(payload: JwtPayload, secret = process.env.JWT_SECRET!, expiresInSec = 60 * 60 * 8) {
+  if (!secret) throw new Error('JWT_SECRET is not set')
+  const header = { alg: 'HS256', typ: 'JWT' }
+  const now = Math.floor(Date.now() / 1000)
+  const body = { iat: now, exp: now + expiresInSec, ...payload }
+  const encHeader = base64url(JSON.stringify(header))
+  const encBody = base64url(JSON.stringify(body))
+  const data = `${encHeader}.${encBody}`
+  const sig = crypto.createHmac('sha256', secret).update(data).digest()
+  const encSig = base64url(sig)
+  return `${data}.${encSig}`
+}
+
+export function verifyJwt(token: string, secret = process.env.JWT_SECRET!) {
+  if (!secret) throw new Error('JWT_SECRET is not set')
+  const parts = token.split('.')
+  if (parts.length !== 3) return null
+  const [h, p, s] = parts
+  const data = `${h}.${p}`
+  const expected = base64url(crypto.createHmac('sha256', secret).update(data).digest())
+  if (!crypto.timingSafeEqual(Buffer.from(s), Buffer.from(expected))) return null
+  const payload = JSON.parse(Buffer.from(p, 'base64').toString('utf8'))
+  const now = Math.floor(Date.now() / 1000)
+  if (payload.exp && now > payload.exp) return null
+  return payload
+}
+

package/src/lib/lib/auth/server.ts

@@ -0,0 +1,94 @@
+import { cookies } from 'next/headers'
+import type { EntityManager } from '@mikro-orm/postgresql'
+import { verifyJwt } from './jwt'
+
+export type AuthContext = {
+  sub: string
+  tenantId: string | null
+  orgId: string | null
+  email?: string
+  roles?: string[]
+  isApiKey?: boolean
+  keyId?: string
+  keyName?: string
+  [k: string]: any
+} | null
+
+async function resolveApiKeyAuth(secret: string): Promise<AuthContext> {
+  if (!secret) return null
+  try {
+    const { createRequestContainer } = await import('@open-mercato/shared/lib/di/container')
+    const container = await createRequestContainer()
+    const em = (container.resolve('em') as EntityManager)
+    const { findApiKeyBySecret } = await import('@open-mercato/core/modules/api_keys/services/apiKeyService')
+    const { Role } = await import('@open-mercato/core/modules/auth/data/entities')
+
+    const record = await findApiKeyBySecret(em, secret)
+    if (!record) return null
+
+    const roleIds = Array.isArray(record.rolesJson) ? record.rolesJson : []
+    const roles = roleIds.length
+      ? await em.find(Role, { id: { $in: roleIds as any } } as any)
+      : []
+    const roleNames = roles.map((role) => role.name).filter((name): name is string => typeof name === 'string' && name.length > 0)
+
+    try {
+      record.lastUsedAt = new Date()
+      await em.persistAndFlush(record)
+    } catch {}
+
+    return {
+      sub: `api_key:${record.id}`,
+      tenantId: record.tenantId ?? null,
+      orgId: record.organizationId ?? null,
+      roles: roleNames,
+      isApiKey: true,
+      keyId: record.id,
+      keyName: record.name,
+    }
+  } catch {
+    return null
+  }
+}
+
+function extractApiKey(req: Request): string | null {
+  const header = (req.headers.get('x-api-key') || '').trim()
+  if (header) return header
+  const authHeader = (req.headers.get('authorization') || '').trim()
+  if (authHeader.toLowerCase().startsWith('apikey ')) {
+    return authHeader.slice(7).trim()
+  }
+  return null
+}
+
+export async function getAuthFromCookies(): Promise<AuthContext> {
+  const token = (await cookies()).get('auth_token')?.value
+  if (!token) return null
+  try {
+    const payload = verifyJwt(token)
+    return payload
+  } catch {
+    return null
+  }
+}
+
+export async function getAuthFromRequest(req: Request): Promise<AuthContext> {
+  const authHeader = (req.headers.get('authorization') || '').trim()
+  let token: string | undefined
+  if (authHeader.toLowerCase().startsWith('bearer ')) token = authHeader.slice(7).trim()
+  if (!token) {
+    const cookie = req.headers.get('cookie') || ''
+    const match = cookie.match(/(?:^|;\s*)auth_token=([^;]+)/)
+    if (match) token = decodeURIComponent(match[1])
+  }
+  if (token) {
+    try {
+      const payload = verifyJwt(token)
+      if (payload) return payload
+    } catch {}
+  }
+
+  const apiKey = extractApiKey(req)
+  if (!apiKey) return null
+  return resolveApiKeyAuth(apiKey)
+}

package/src/lib/lib/email/send.ts

@@ -0,0 +1,40 @@
+import { Resend } from 'resend'
+import React from 'react'
+import { parseBooleanWithDefault } from '../../boolean'
+
+export type SendEmailOptions = {
+  to: string
+  subject: string
+  react: React.ReactElement
+  from?: string
+  replyTo?: string
+}
+
+export async function sendEmail({ to, subject, react, from, replyTo }: SendEmailOptions) {
+  const emailDisabled =
+    parseBooleanWithDefault(process.env.OM_DISABLE_EMAIL_DELIVERY, false) ||
+    parseBooleanWithDefault(process.env.OM_TEST_MODE, false)
+  if (emailDisabled) return
+
+  const apiKey = process.env.RESEND_API_KEY
+  if (!apiKey) throw new Error('RESEND_API_KEY is not set')
+  const resend = new Resend(apiKey)
+  const fromAddr = from || process.env.EMAIL_FROM || 'no-reply@localhost'
+  const payload = {
+    to,
+    subject,
+    from: fromAddr,
+    react,
+    ...(replyTo ? { reply_to: replyTo } : {}),
+  }
+  const result = await resend.emails.send(payload)
+  const errorMessage =
+    typeof (result as any)?.error === 'string'
+      ? (result as any).error
+      : typeof (result as any)?.error?.message === 'string'
+        ? (result as any).error.message
+        : null
+  if (errorMessage) {
+    throw new Error(`RESEND_SEND_FAILED: ${errorMessage}`)
+  }
+}

package/src/lib/lib/i18n/config.ts

@@ -0,0 +1,4 @@
+export type Locale = 'en' | 'pl' | 'es' | 'de'
+
+export const locales: Locale[] = ['en', 'pl', 'es', 'de']
+export const defaultLocale: Locale = 'en'

package/src/lib/lib/i18n/context.tsx

@@ -0,0 +1,38 @@
+"use client"
+import React, { createContext, useContext, useMemo } from 'react'
+import type { Locale } from './config'
+
+export type Dict = Record<string, string>
+
+export type I18nContextValue = {
+  locale: Locale
+  t: (key: string, params?: Record<string, string | number>) => string
+}
+
+const I18nContext = createContext<I18nContextValue | null>(null)
+
+function format(template: string, params?: Record<string, string | number>) {
+  if (!params) return template
+  return template.replace(/\{(\w+)\}/g, (_, k) => String(params[k] ?? `{${k}}`))
+}
+
+export function I18nProvider({ children, locale, dict }: { children: React.ReactNode; locale: Locale; dict: Dict }) {
+  const value = useMemo<I18nContextValue>(() => ({
+    locale,
+    t: (key, params) => format(dict[key] ?? key, params),
+  }), [locale, dict])
+  return <I18nContext.Provider value={value}>{children}</I18nContext.Provider>
+}
+
+export function useT() {
+  const ctx = useContext(I18nContext)
+  if (!ctx) throw new Error('useT must be used within I18nProvider')
+  return ctx.t
+}
+
+export function useLocale() {
+  const ctx = useContext(I18nContext)
+  if (!ctx) throw new Error('useLocale must be used within I18nProvider')
+  return ctx.locale
+}
+

package/src/lib/lib/utils.ts

@@ -0,0 +1,6 @@
+import { clsx, type ClassValue } from "clsx"
+import { twMerge } from "tailwind-merge"
+
+export function cn(...inputs: ClassValue[]) {
+  return twMerge(clsx(inputs))
+}

package/src/modules/payment_gateways/index.ts

@@ -0,0 +1 @@
+export * from './types'

package/src/modules/payment_gateways/types.ts

@@ -0,0 +1,218 @@
+// ── Unified Payment Status ──────────────────────────────────────────────────
+
+export type UnifiedPaymentStatus =
+  | 'pending'
+  | 'authorized'
+  | 'captured'
+  | 'partially_captured'
+  | 'refunded'
+  | 'partially_refunded'
+  | 'cancelled'
+  | 'failed'
+  | 'expired'
+  | 'unknown'
+
+// ── GatewayAdapter Interface ────────────────────────────────────────────────
+
+export interface GatewayAdapter {
+  readonly providerKey: string
+
+  /** Create a payment session / payment intent */
+  createSession(input: CreateSessionInput): Promise<CreateSessionResult>
+
+  /** Capture an authorized payment */
+  capture(input: CaptureInput): Promise<CaptureResult>
+
+  /** Refund a captured payment (full or partial) */
+  refund(input: RefundInput): Promise<RefundResult>
+
+  /** Cancel / void an authorized payment before capture */
+  cancel(input: CancelInput): Promise<CancelResult>
+
+  /** Get current payment status from provider */
+  getStatus(input: GetStatusInput): Promise<GatewayPaymentStatus>
+
+  /** Verify and parse an inbound webhook event */
+  verifyWebhook(input: VerifyWebhookInput): Promise<WebhookEvent>
+
+  /** Map provider status to unified status */
+  mapStatus(providerStatus: string, eventType?: string): UnifiedPaymentStatus
+}
+
+// ── Input / Output Types ────────────────────────────────────────────────────
+
+export interface CreateSessionInput {
+  orderId?: string
+  paymentId: string
+  tenantId: string
+  organizationId: string
+  amount: number
+  currencyCode: string
+  captureMethod?: 'automatic' | 'manual'
+  paymentTypes?: string[]
+  description?: string
+  successUrl?: string
+  cancelUrl?: string
+  metadata?: Record<string, unknown>
+  credentials: Record<string, unknown>
+  lineItems?: SessionLineItem[]
+}
+
+export interface SessionLineItem {
+  name: string
+  quantity: number
+  unitAmount: number
+  currencyCode: string
+}
+
+export interface CreateSessionResult {
+  sessionId: string
+  clientSecret?: string
+  redirectUrl?: string
+  status: UnifiedPaymentStatus
+  providerData?: Record<string, unknown>
+}
+
+export interface CaptureInput {
+  sessionId: string
+  amount?: number
+  credentials: Record<string, unknown>
+  metadata?: Record<string, unknown>
+}
+
+export interface CaptureResult {
+  status: UnifiedPaymentStatus
+  capturedAmount: number
+  providerData?: Record<string, unknown>
+}
+
+export interface RefundInput {
+  sessionId: string
+  amount?: number
+  reason?: string
+  credentials: Record<string, unknown>
+  metadata?: Record<string, unknown>
+}
+
+export interface RefundResult {
+  refundId: string
+  status: UnifiedPaymentStatus
+  refundedAmount: number
+  providerData?: Record<string, unknown>
+}
+
+export interface CancelInput {
+  sessionId: string
+  reason?: string
+  credentials: Record<string, unknown>
+}
+
+export interface CancelResult {
+  status: UnifiedPaymentStatus
+  providerData?: Record<string, unknown>
+}
+
+export interface GetStatusInput {
+  sessionId: string
+  credentials: Record<string, unknown>
+}
+
+export interface GatewayPaymentStatus {
+  status: UnifiedPaymentStatus
+  amount: number
+  amountReceived: number
+  currencyCode: string
+  providerData?: Record<string, unknown>
+}
+
+export interface VerifyWebhookInput {
+  rawBody: string | Buffer
+  headers: Record<string, string | string[] | undefined>
+  credentials: Record<string, unknown>
+}
+
+export interface WebhookEvent {
+  eventType: string
+  eventId: string
+  data: Record<string, unknown>
+  idempotencyKey: string
+  timestamp: Date
+}
+
+// ── Webhook Handler ─────────────────────────────────────────────────────────
+
+export interface WebhookHandlerRegistration {
+  handler: (input: VerifyWebhookInput) => Promise<WebhookEvent>
+  queue?: string
+}
+
+// ── Adapter Registry Options ────────────────────────────────────────────────
+
+export interface RegisterAdapterOptions {
+  version?: string
+}
+
+// ── Registries ──────────────────────────────────────────────────────────────
+
+const adapterRegistry = new Map<string, GatewayAdapter>()
+const webhookHandlerRegistry = new Map<string, WebhookHandlerRegistration>()
+
+function adapterKey(providerKey: string, version?: string): string {
+  return version ? `${providerKey}:${version}` : providerKey
+}
+
+export function registerGatewayAdapter(adapter: GatewayAdapter, options?: RegisterAdapterOptions): () => void {
+  const key = adapterKey(adapter.providerKey, options?.version)
+  adapterRegistry.set(key, adapter)
+  if (options?.version) {
+    // Also register as default if no default exists
+    if (!adapterRegistry.has(adapter.providerKey)) {
+      adapterRegistry.set(adapter.providerKey, adapter)
+    }
+  }
+  return () => {
+    adapterRegistry.delete(key)
+  }
+}
+
+export function getGatewayAdapter(providerKey: string, version?: string): GatewayAdapter | undefined {
+  if (version) {
+    return adapterRegistry.get(adapterKey(providerKey, version)) ?? adapterRegistry.get(providerKey)
+  }
+  return adapterRegistry.get(providerKey)
+}
+
+export function listGatewayAdapters(): GatewayAdapter[] {
+  const seen = new Set<string>()
+  const result: GatewayAdapter[] = []
+  for (const [key, adapter] of adapterRegistry) {
+    if (!key.includes(':') && !seen.has(adapter.providerKey)) {
+      seen.add(adapter.providerKey)
+      result.push(adapter)
+    }
+  }
+  return result
+}
+
+export function clearGatewayAdapters(): void {
+  adapterRegistry.clear()
+}
+
+export function registerWebhookHandler(
+  providerKey: string,
+  handler: (input: VerifyWebhookInput) => Promise<WebhookEvent>,
+  options?: { queue?: string },
+): () => void {
+  webhookHandlerRegistry.set(providerKey, { handler, queue: options?.queue })
+  return () => {
+    webhookHandlerRegistry.delete(providerKey)
+  }
+}
+
+export function getWebhookHandler(providerKey: string): WebhookHandlerRegistration | undefined {
+  return webhookHandlerRegistry.get(providerKey)
+}
+
+export function clearWebhookHandlers(): void {
+  webhookHandlerRegistry.clear()
+}