npm - @payzcore/node - Versions diffs - 1.0.1 - Mend

@payzcore/node 1.0.1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Potentially problematic release.

This version of @payzcore/node might be problematic. Click here for more details.

Files changed (8) hide show

package/dist/index.js ADDED Viewed

@@ -0,0 +1,400 @@
+"use strict";
+var __defProp = Object.defineProperty;
+var __getOwnPropDesc = Object.getOwnPropertyDescriptor;
+var __getOwnPropNames = Object.getOwnPropertyNames;
+var __hasOwnProp = Object.prototype.hasOwnProperty;
+var __export = (target, all) => {
+  for (var name in all)
+    __defProp(target, name, { get: all[name], enumerable: true });
+};
+var __copyProps = (to, from, except, desc) => {
+  if (from && typeof from === "object" || typeof from === "function") {
+    for (let key of __getOwnPropNames(from))
+      if (!__hasOwnProp.call(to, key) && key !== except)
+        __defProp(to, key, { get: () => from[key], enumerable: !(desc = __getOwnPropDesc(from, key)) || desc.enumerable });
+  }
+  return to;
+};
+var __toCommonJS = (mod) => __copyProps(__defProp({}, "__esModule", { value: true }), mod);
+// src/index.ts
+var index_exports = {};
+__export(index_exports, {
+  AuthenticationError: () => AuthenticationError,
+  ForbiddenError: () => ForbiddenError,
+  NotFoundError: () => NotFoundError,
+  PayzCore: () => PayzCore,
+  PayzCoreError: () => PayzCoreError,
+  RateLimitError: () => RateLimitError,
+  ValidationError: () => ValidationError,
+  WebhookSignatureError: () => WebhookSignatureError,
+  constructEvent: () => constructEvent,
+  default: () => index_default,
+  verifyWebhookSignature: () => verifyWebhookSignature
+});
+module.exports = __toCommonJS(index_exports);
+// src/errors.ts
+var PayzCoreError = class extends Error {
+  status;
+  code;
+  details;
+  constructor(message, status, code, details) {
+    super(message);
+    this.name = "PayzCoreError";
+    this.status = status;
+    this.code = code;
+    this.details = details;
+  }
+};
+var AuthenticationError = class extends PayzCoreError {
+  constructor(message = "Invalid or missing API key") {
+    super(message, 401, "authentication_error");
+    this.name = "AuthenticationError";
+  }
+};
+var ForbiddenError = class extends PayzCoreError {
+  constructor(message = "Access denied") {
+    super(message, 403, "forbidden");
+    this.name = "ForbiddenError";
+  }
+};
+var NotFoundError = class extends PayzCoreError {
+  constructor(message = "Resource not found") {
+    super(message, 404, "not_found");
+    this.name = "NotFoundError";
+  }
+};
+var ValidationError = class extends PayzCoreError {
+  constructor(message, details) {
+    super(message, 400, "validation_error", details);
+    this.name = "ValidationError";
+  }
+};
+var RateLimitError = class extends PayzCoreError {
+  retryAfter;
+  isDaily;
+  constructor(message, retryAfter = null, isDaily = false) {
+    super(message, 429, "rate_limit_error");
+    this.name = "RateLimitError";
+    this.retryAfter = retryAfter;
+    this.isDaily = isDaily;
+  }
+};
+var WebhookSignatureError = class extends Error {
+  constructor(message = "Webhook signature verification failed") {
+    super(message);
+    this.name = "WebhookSignatureError";
+  }
+};
+// src/client.ts
+var DEFAULT_BASE_URL = "https://api.payzcore.com";
+var DEFAULT_TIMEOUT = 3e4;
+var DEFAULT_MAX_RETRIES = 2;
+var RETRY_BASE_MS = 200;
+var HttpClient = class {
+  apiKey;
+  baseUrl;
+  timeout;
+  maxRetries;
+  useMasterKey;
+  constructor(apiKey, options = {}) {
+    this.apiKey = apiKey;
+    this.baseUrl = (options.baseUrl ?? DEFAULT_BASE_URL).replace(/\/+$/, "");
+    this.timeout = options.timeout ?? DEFAULT_TIMEOUT;
+    this.maxRetries = options.maxRetries ?? DEFAULT_MAX_RETRIES;
+    this.useMasterKey = options.masterKey ?? false;
+  }
+  async request(method, path, body) {
+    const url = `${this.baseUrl}${path}`;
+    const headers = {
+      "Content-Type": "application/json",
+      "User-Agent": "@payzcore/node/1.0.0"
+    };
+    if (this.useMasterKey) {
+      headers["x-master-key"] = this.apiKey;
+    } else {
+      headers["x-api-key"] = this.apiKey;
+    }
+    let lastError = null;
+    for (let attempt = 0; attempt <= this.maxRetries; attempt++) {
+      if (attempt > 0) {
+        await sleep(RETRY_BASE_MS * 2 ** (attempt - 1));
+      }
+      try {
+        const response = await fetch(url, {
+          method,
+          headers,
+          body: body != null ? JSON.stringify(body) : void 0,
+          signal: AbortSignal.timeout(this.timeout)
+        });
+        if (response.ok) {
+          return await response.json();
+        }
+        if (response.status < 500 && response.status !== 429) {
+          await throwApiError(response);
+        }
+        if (response.status === 429) {
+          await throwApiError(response);
+        }
+        lastError = await buildApiError(response);
+      } catch (err) {
+        if (err instanceof PayzCoreError || err instanceof AuthenticationError || err instanceof ForbiddenError || err instanceof NotFoundError || err instanceof ValidationError || err instanceof RateLimitError) {
+          throw err;
+        }
+        lastError = err instanceof Error ? err : new Error(String(err));
+      }
+    }
+    throw lastError ?? new PayzCoreError("Request failed after retries", 0, "network_error");
+  }
+  get(path) {
+    return this.request("GET", path);
+  }
+  post(path, body) {
+    return this.request("POST", path, body);
+  }
+};
+function sleep(ms) {
+  return new Promise((resolve) => setTimeout(resolve, ms));
+}
+async function throwApiError(response) {
+  throw await buildApiError(response);
+}
+async function buildApiError(response) {
+  let body;
+  try {
+    body = await response.json();
+  } catch {
+    body = { error: response.statusText || "Unknown error" };
+  }
+  const message = body.error ?? "Unknown error";
+  switch (response.status) {
+    case 400:
+      return new ValidationError(message, body.details);
+    case 401:
+      return new AuthenticationError(message);
+    case 403:
+      return new ForbiddenError(message);
+    case 404:
+      return new NotFoundError(message);
+    case 429: {
+      const resetHeader = response.headers.get("X-RateLimit-Reset");
+      const dailyHeader = response.headers.get("X-RateLimit-Daily");
+      const retryAfter = resetHeader ? parseInt(resetHeader, 10) : null;
+      const isDaily = dailyHeader === "true";
+      return new RateLimitError(message, retryAfter, isDaily);
+    }
+    default:
+      return new PayzCoreError(message, response.status, "api_error");
+  }
+}
+// src/resources/payments.ts
+function mapPayment(raw) {
+  return {
+    id: raw.id,
+    address: raw.address,
+    amount: raw.amount,
+    chain: raw.chain,
+    token: raw.token ?? "USDT",
+    status: raw.status,
+    expiresAt: raw.expires_at,
+    externalOrderId: raw.external_order_id,
+    qrCode: raw.qr_code
+  };
+}
+function mapPaymentListItem(raw) {
+  return {
+    id: raw.id,
+    externalRef: raw.external_ref,
+    externalOrderId: raw.external_order_id,
+    chain: raw.chain,
+    token: raw.token ?? "USDT",
+    address: raw.address,
+    expectedAmount: raw.expected_amount,
+    paidAmount: raw.paid_amount,
+    status: raw.status,
+    txHash: raw.tx_hash,
+    expiresAt: raw.expires_at,
+    paidAt: raw.paid_at,
+    createdAt: raw.created_at
+  };
+}
+function mapPaymentDetail(raw) {
+  const txs = raw.transactions;
+  return {
+    id: raw.id,
+    status: raw.status,
+    expectedAmount: raw.expected_amount,
+    paidAmount: raw.paid_amount,
+    address: raw.address,
+    chain: raw.chain,
+    token: raw.token ?? "USDT",
+    txHash: raw.tx_hash,
+    expiresAt: raw.expires_at,
+    transactions: (txs ?? []).map((t) => ({
+      txHash: t.tx_hash,
+      amount: t.amount,
+      from: t.from,
+      confirmed: t.confirmed
+    }))
+  };
+}
+var Payments = class {
+  constructor(client) {
+    this.client = client;
+  }
+  async create(params) {
+    const body = {
+      amount: params.amount,
+      chain: params.chain,
+      token: params.token,
+      external_ref: params.externalRef,
+      external_order_id: params.externalOrderId,
+      expires_in: params.expiresIn,
+      metadata: params.metadata
+    };
+    const raw = await this.client.post("/api/v1/payments", body);
+    return {
+      success: true,
+      existing: raw.existing,
+      payment: mapPayment(raw.payment)
+    };
+  }
+  async list(params = {}) {
+    const searchParams = new URLSearchParams();
+    if (params.status) searchParams.set("status", params.status);
+    if (params.limit != null) searchParams.set("limit", String(params.limit));
+    if (params.offset != null) searchParams.set("offset", String(params.offset));
+    const qs = searchParams.toString();
+    const path = `/api/v1/payments${qs ? `?${qs}` : ""}`;
+    const raw = await this.client.get(path);
+    const payments = raw.payments;
+    return {
+      success: true,
+      payments: payments.map(mapPaymentListItem)
+    };
+  }
+  async get(id) {
+    const raw = await this.client.get(`/api/v1/payments/${encodeURIComponent(id)}`);
+    return {
+      success: true,
+      payment: mapPaymentDetail(raw.payment)
+    };
+  }
+};
+// src/resources/projects.ts
+function mapProject(raw) {
+  return {
+    id: raw.id,
+    name: raw.name,
+    slug: raw.slug,
+    apiKey: raw.api_key,
+    webhookSecret: raw.webhook_secret,
+    webhookUrl: raw.webhook_url,
+    createdAt: raw.created_at
+  };
+}
+function mapProjectListItem(raw) {
+  return {
+    id: raw.id,
+    name: raw.name,
+    slug: raw.slug,
+    apiKey: raw.api_key,
+    webhookUrl: raw.webhook_url,
+    isActive: raw.is_active,
+    createdAt: raw.created_at
+  };
+}
+var Projects = class {
+  constructor(client) {
+    this.client = client;
+  }
+  async create(params) {
+    const body = {
+      name: params.name,
+      slug: params.slug,
+      webhook_url: params.webhookUrl,
+      metadata: params.metadata
+    };
+    const raw = await this.client.post("/api/v1/projects", body);
+    return {
+      success: true,
+      project: mapProject(raw.project)
+    };
+  }
+  async list() {
+    const raw = await this.client.get("/api/v1/projects");
+    const projects = raw.projects;
+    return {
+      success: true,
+      projects: projects.map(mapProjectListItem)
+    };
+  }
+};
+// src/webhook.ts
+var import_crypto = require("crypto");
+function verifyWebhookSignature(body, signature, secret) {
+  const expected = (0, import_crypto.createHmac)("sha256", secret).update(body).digest("hex");
+  if (signature.length !== expected.length) return false;
+  return (0, import_crypto.timingSafeEqual)(Buffer.from(signature), Buffer.from(expected));
+}
+function constructEvent(body, signature, secret) {
+  if (!verifyWebhookSignature(body, signature, secret)) {
+    throw new WebhookSignatureError();
+  }
+  let raw;
+  try {
+    raw = JSON.parse(body);
+  } catch {
+    throw new WebhookSignatureError("Invalid webhook payload");
+  }
+  return {
+    event: raw.event,
+    paymentId: raw.payment_id,
+    externalRef: raw.external_ref,
+    externalOrderId: raw.external_order_id,
+    chain: raw.chain,
+    token: raw.token ?? "USDT",
+    address: raw.address,
+    expectedAmount: raw.expected_amount,
+    paidAmount: raw.paid_amount,
+    txHash: raw.tx_hash,
+    status: raw.status,
+    paidAt: raw.paid_at,
+    metadata: raw.metadata ?? {},
+    timestamp: raw.timestamp
+  };
+}
+// src/index.ts
+var PayzCore = class {
+  payments;
+  projects;
+  constructor(apiKey, options = {}) {
+    if (!apiKey) {
+      throw new Error("PayzCore API key is required. Pass your pk_live_xxx or mk_xxx key.");
+    }
+    const client = new HttpClient(apiKey, options);
+    this.payments = new Payments(client);
+    this.projects = new Projects(client);
+  }
+};
+var index_default = PayzCore;
+// Annotate the CommonJS export names for ESM import in node:
+0 && (module.exports = {
+  AuthenticationError,
+  ForbiddenError,
+  NotFoundError,
+  PayzCore,
+  PayzCoreError,
+  RateLimitError,
+  ValidationError,
+  WebhookSignatureError,
+  constructEvent,
+  verifyWebhookSignature
+});
+//# sourceMappingURL=index.js.map

package/dist/index.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"sources":["../src/index.ts","../src/errors.ts","../src/client.ts","../src/resources/payments.ts","../src/resources/projects.ts","../src/webhook.ts"],"sourcesContent":["import { HttpClient } from './client'\nimport { Payments } from './resources/payments'\nimport { Projects } from './resources/projects'\nimport type { PayzCoreOptions } from './types'\n\nexport class PayzCore {\n readonly payments: Payments\n readonly projects: Projects\n\n constructor(apiKey: string, options: PayzCoreOptions = {}) {\n if (!apiKey) {\n throw new Error('PayzCore API key is required. Pass your pk_live_xxx or mk_xxx key.')\n }\n\n const client = new HttpClient(apiKey, options)\n this.payments = new Payments(client)\n this.projects = new Projects(client)\n }\n}\n\nexport default PayzCore\n\n// Webhook utilities\nexport { verifyWebhookSignature, constructEvent } from './webhook'\n\n// Error classes\nexport {\n PayzCoreError,\n AuthenticationError,\n ForbiddenError,\n NotFoundError,\n ValidationError,\n RateLimitError,\n WebhookSignatureError,\n} from './errors'\n\n// Types\nexport type {\n Chain,\n Token,\n PaymentStatus,\n WebhookEventType,\n PayzCoreOptions,\n CreatePaymentParams,\n Payment,\n CreatePaymentResponse,\n PaymentListItem,\n ListPaymentsParams,\n ListPaymentsResponse,\n Transaction,\n PaymentDetail,\n GetPaymentResponse,\n CreateProjectParams,\n Project,\n CreateProjectResponse,\n ProjectListItem,\n ListProjectsResponse,\n WebhookPayload,\n} from './types'\n","import type { ApiErrorBody } from './types'\n\nexport class PayzCoreError extends Error {\n readonly status: number\n readonly code: string\n readonly details?: Array<{ code: string; path?: string[]; message: string }>\n\n constructor(message: string, status: number, code: string, details?: ApiErrorBody['details']) {\n super(message)\n this.name = 'PayzCoreError'\n this.status = status\n this.code = code\n this.details = details\n }\n}\n\nexport class AuthenticationError extends PayzCoreError {\n constructor(message = 'Invalid or missing API key') {\n super(message, 401, 'authentication_error')\n this.name = 'AuthenticationError'\n }\n}\n\nexport class ForbiddenError extends PayzCoreError {\n constructor(message = 'Access denied') {\n super(message, 403, 'forbidden')\n this.name = 'ForbiddenError'\n }\n}\n\nexport class NotFoundError extends PayzCoreError {\n constructor(message = 'Resource not found') {\n super(message, 404, 'not_found')\n this.name = 'NotFoundError'\n }\n}\n\nexport class ValidationError extends PayzCoreError {\n constructor(\n message: string,\n details?: ApiErrorBody['details'],\n ) {\n super(message, 400, 'validation_error', details)\n this.name = 'ValidationError'\n }\n}\n\nexport class RateLimitError extends PayzCoreError {\n readonly retryAfter: number | null\n readonly isDaily: boolean\n\n constructor(message: string, retryAfter: number | null = null, isDaily = false) {\n super(message, 429, 'rate_limit_error')\n this.name = 'RateLimitError'\n this.retryAfter = retryAfter\n this.isDaily = isDaily\n }\n}\n\nexport class WebhookSignatureError extends Error {\n constructor(message = 'Webhook signature verification failed') {\n super(message)\n this.name = 'WebhookSignatureError'\n }\n}\n","import type { ApiErrorBody, PayzCoreOptions } from './types'\nimport {\n PayzCoreError,\n AuthenticationError,\n ForbiddenError,\n NotFoundError,\n ValidationError,\n RateLimitError,\n} from './errors'\n\nconst DEFAULT_BASE_URL = 'https://api.payzcore.com'\nconst DEFAULT_TIMEOUT = 30_000\nconst DEFAULT_MAX_RETRIES = 2\nconst RETRY_BASE_MS = 200\n\nexport class HttpClient {\n private readonly apiKey: string\n private readonly baseUrl: string\n private readonly timeout: number\n private readonly maxRetries: number\n private readonly useMasterKey: boolean\n\n constructor(apiKey: string, options: PayzCoreOptions = {}) {\n this.apiKey = apiKey\n this.baseUrl = (options.baseUrl ?? DEFAULT_BASE_URL).replace(/\\/+$/, '')\n this.timeout = options.timeout ?? DEFAULT_TIMEOUT\n this.maxRetries = options.maxRetries ?? DEFAULT_MAX_RETRIES\n this.useMasterKey = options.masterKey ?? false\n }\n\n async request<T>(method: string, path: string, body?: unknown): Promise<T> {\n const url = `${this.baseUrl}${path}`\n const headers: Record<string, string> = {\n 'Content-Type': 'application/json',\n 'User-Agent': '@payzcore/node/1.0.0',\n }\n\n if (this.useMasterKey) {\n headers['x-master-key'] = this.apiKey\n } else {\n headers['x-api-key'] = this.apiKey\n }\n\n let lastError: Error | null = null\n\n for (let attempt = 0; attempt <= this.maxRetries; attempt++) {\n if (attempt > 0) {\n await sleep(RETRY_BASE_MS * 2 ** (attempt - 1))\n }\n\n try {\n const response = await fetch(url, {\n method,\n headers,\n body: body != null ? JSON.stringify(body) : undefined,\n signal: AbortSignal.timeout(this.timeout),\n })\n\n if (response.ok) {\n return (await response.json()) as T\n }\n\n // Non-retryable errors — throw immediately\n if (response.status < 500 && response.status !== 429) {\n await throwApiError(response)\n }\n\n // 429 — don't retry\n if (response.status === 429) {\n await throwApiError(response)\n }\n\n // 5xx — retry if attempts remain\n lastError = await buildApiError(response)\n } catch (err) {\n if (\n err instanceof PayzCoreError ||\n err instanceof AuthenticationError ||\n err instanceof ForbiddenError ||\n err instanceof NotFoundError ||\n err instanceof ValidationError ||\n err instanceof RateLimitError\n ) {\n throw err\n }\n\n // Network / timeout errors — retry\n lastError = err instanceof Error ? err : new Error(String(err))\n }\n }\n\n throw lastError ?? new PayzCoreError('Request failed after retries', 0, 'network_error')\n }\n\n get<T>(path: string): Promise<T> {\n return this.request<T>('GET', path)\n }\n\n post<T>(path: string, body: unknown): Promise<T> {\n return this.request<T>('POST', path, body)\n }\n}\n\nfunction sleep(ms: number): Promise<void> {\n return new Promise((resolve) => setTimeout(resolve, ms))\n}\n\nasync function throwApiError(response: Response): Promise<never> {\n throw await buildApiError(response)\n}\n\nasync function buildApiError(response: Response): Promise<PayzCoreError> {\n let body: ApiErrorBody\n try {\n body = (await response.json()) as ApiErrorBody\n } catch {\n body = { error: response.statusText || 'Unknown error' }\n }\n\n const message = body.error ?? 'Unknown error'\n\n switch (response.status) {\n case 400:\n return new ValidationError(message, body.details)\n case 401:\n return new AuthenticationError(message)\n case 403:\n return new ForbiddenError(message)\n case 404:\n return new NotFoundError(message)\n case 429: {\n const resetHeader = response.headers.get('X-RateLimit-Reset')\n const dailyHeader = response.headers.get('X-RateLimit-Daily')\n const retryAfter = resetHeader ? parseInt(resetHeader, 10) : null\n const isDaily = dailyHeader === 'true'\n return new RateLimitError(message, retryAfter, isDaily)\n }\n default:\n return new PayzCoreError(message, response.status, 'api_error')\n }\n}\n","import type { HttpClient } from '../client'\nimport type {\n CreatePaymentParams,\n CreatePaymentResponse,\n ListPaymentsParams,\n ListPaymentsResponse,\n GetPaymentResponse,\n} from '../types'\n\n// Map snake_case API response to camelCase SDK types\nfunction mapPayment(raw: Record<string, unknown>) {\n return {\n id: raw.id,\n address: raw.address,\n amount: raw.amount,\n chain: raw.chain,\n token: raw.token ?? 'USDT',\n status: raw.status,\n expiresAt: raw.expires_at,\n externalOrderId: raw.external_order_id,\n qrCode: raw.qr_code,\n }\n}\n\nfunction mapPaymentListItem(raw: Record<string, unknown>) {\n return {\n id: raw.id,\n externalRef: raw.external_ref,\n externalOrderId: raw.external_order_id,\n chain: raw.chain,\n token: raw.token ?? 'USDT',\n address: raw.address,\n expectedAmount: raw.expected_amount,\n paidAmount: raw.paid_amount,\n status: raw.status,\n txHash: raw.tx_hash,\n expiresAt: raw.expires_at,\n paidAt: raw.paid_at,\n createdAt: raw.created_at,\n }\n}\n\nfunction mapPaymentDetail(raw: Record<string, unknown>) {\n const txs = raw.transactions as Array<Record<string, unknown>> | undefined\n return {\n id: raw.id,\n status: raw.status,\n expectedAmount: raw.expected_amount,\n paidAmount: raw.paid_amount,\n address: raw.address,\n chain: raw.chain,\n token: raw.token ?? 'USDT',\n txHash: raw.tx_hash,\n expiresAt: raw.expires_at,\n transactions: (txs ?? []).map((t) => ({\n txHash: t.tx_hash,\n amount: t.amount,\n from: t.from,\n confirmed: t.confirmed,\n })),\n }\n}\n\nexport class Payments {\n constructor(private readonly client: HttpClient) {}\n\n async create(params: CreatePaymentParams): Promise<CreatePaymentResponse> {\n const body = {\n amount: params.amount,\n chain: params.chain,\n token: params.token,\n external_ref: params.externalRef,\n external_order_id: params.externalOrderId,\n expires_in: params.expiresIn,\n metadata: params.metadata,\n }\n\n const raw = await this.client.post<Record<string, unknown>>('/api/v1/payments', body)\n return {\n success: true,\n existing: raw.existing as boolean,\n payment: mapPayment(raw.payment as Record<string, unknown>),\n } as CreatePaymentResponse\n }\n\n async list(params: ListPaymentsParams = {}): Promise<ListPaymentsResponse> {\n const searchParams = new URLSearchParams()\n if (params.status) searchParams.set('status', params.status)\n if (params.limit != null) searchParams.set('limit', String(params.limit))\n if (params.offset != null) searchParams.set('offset', String(params.offset))\n\n const qs = searchParams.toString()\n const path = `/api/v1/payments${qs ? `?${qs}` : ''}`\n const raw = await this.client.get<Record<string, unknown>>(path)\n const payments = raw.payments as Array<Record<string, unknown>>\n\n return {\n success: true,\n payments: payments.map(mapPaymentListItem),\n } as ListPaymentsResponse\n }\n\n async get(id: string): Promise<GetPaymentResponse> {\n const raw = await this.client.get<Record<string, unknown>>(`/api/v1/payments/${encodeURIComponent(id)}`)\n return {\n success: true,\n payment: mapPaymentDetail(raw.payment as Record<string, unknown>),\n } as GetPaymentResponse\n }\n}\n","import type { HttpClient } from '../client'\nimport type {\n CreateProjectParams,\n CreateProjectResponse,\n ListProjectsResponse,\n} from '../types'\n\nfunction mapProject(raw: Record<string, unknown>) {\n return {\n id: raw.id,\n name: raw.name,\n slug: raw.slug,\n apiKey: raw.api_key,\n webhookSecret: raw.webhook_secret,\n webhookUrl: raw.webhook_url,\n createdAt: raw.created_at,\n }\n}\n\nfunction mapProjectListItem(raw: Record<string, unknown>) {\n return {\n id: raw.id,\n name: raw.name,\n slug: raw.slug,\n apiKey: raw.api_key,\n webhookUrl: raw.webhook_url,\n isActive: raw.is_active,\n createdAt: raw.created_at,\n }\n}\n\nexport class Projects {\n constructor(private readonly client: HttpClient) {}\n\n async create(params: CreateProjectParams): Promise<CreateProjectResponse> {\n const body = {\n name: params.name,\n slug: params.slug,\n webhook_url: params.webhookUrl,\n metadata: params.metadata,\n }\n\n const raw = await this.client.post<Record<string, unknown>>('/api/v1/projects', body)\n return {\n success: true,\n project: mapProject(raw.project as Record<string, unknown>),\n } as CreateProjectResponse\n }\n\n async list(): Promise<ListProjectsResponse> {\n const raw = await this.client.get<Record<string, unknown>>('/api/v1/projects')\n const projects = raw.projects as Array<Record<string, unknown>>\n\n return {\n success: true,\n projects: projects.map(mapProjectListItem),\n } as ListProjectsResponse\n }\n}\n","import { createHmac, timingSafeEqual } from 'crypto'\nimport { WebhookSignatureError } from './errors'\nimport type { WebhookPayload, Chain, PaymentStatus, WebhookEventType } from './types'\n\n/**\n * Verify a webhook signature from PayzCore.\n *\n * @param body - Raw request body string\n * @param signature - Value of X-PayzCore-Signature header\n * @param secret - Webhook secret from project creation (whsec_xxx)\n * @returns true if signature is valid\n */\nexport function verifyWebhookSignature(\n body: string,\n signature: string,\n secret: string,\n): boolean {\n const expected = createHmac('sha256', secret).update(body).digest('hex')\n if (signature.length !== expected.length) return false\n return timingSafeEqual(Buffer.from(signature), Buffer.from(expected))\n}\n\n/**\n * Verify signature and parse the webhook payload.\n * Throws WebhookSignatureError if signature is invalid.\n *\n * @param body - Raw request body string\n * @param signature - Value of X-PayzCore-Signature header\n * @param secret - Webhook secret from project creation (whsec_xxx)\n * @returns Parsed and typed webhook payload\n */\nexport function constructEvent(\n body: string,\n signature: string,\n secret: string,\n): WebhookPayload {\n if (!verifyWebhookSignature(body, signature, secret)) {\n throw new WebhookSignatureError()\n }\n\n let raw: Record<string, unknown>\n try {\n raw = JSON.parse(body) as Record<string, unknown>\n } catch {\n throw new WebhookSignatureError('Invalid webhook payload')\n }\n\n return {\n event: raw.event as WebhookEventType,\n paymentId: raw.payment_id as string,\n externalRef: raw.external_ref as string,\n externalOrderId: raw.external_order_id as string | undefined,\n chain: raw.chain as Chain,\n token: (raw.token as string) ?? 'USDT',\n address: raw.address as string,\n expectedAmount: raw.expected_amount as string,\n paidAmount: raw.paid_amount as string,\n txHash: raw.tx_hash as string | null,\n status: raw.status as PaymentStatus,\n paidAt: raw.paid_at as string | null,\n metadata: (raw.metadata as Record<string, unknown>) ?? {},\n timestamp: raw.timestamp as string,\n }\n}\n"],"mappings":";;;;;;;;;;;;;;;;;;;;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;;;ACEO,IAAM,gBAAN,cAA4B,MAAM;AAAA,EAC9B;AAAA,EACA;AAAA,EACA;AAAA,EAET,YAAY,SAAiB,QAAgB,MAAc,SAAmC;AAC5F,UAAM,OAAO;AACb,SAAK,OAAO;AACZ,SAAK,SAAS;AACd,SAAK,OAAO;AACZ,SAAK,UAAU;AAAA,EACjB;AACF;AAEO,IAAM,sBAAN,cAAkC,cAAc;AAAA,EACrD,YAAY,UAAU,8BAA8B;AAClD,UAAM,SAAS,KAAK,sBAAsB;AAC1C,SAAK,OAAO;AAAA,EACd;AACF;AAEO,IAAM,iBAAN,cAA6B,cAAc;AAAA,EAChD,YAAY,UAAU,iBAAiB;AACrC,UAAM,SAAS,KAAK,WAAW;AAC/B,SAAK,OAAO;AAAA,EACd;AACF;AAEO,IAAM,gBAAN,cAA4B,cAAc;AAAA,EAC/C,YAAY,UAAU,sBAAsB;AAC1C,UAAM,SAAS,KAAK,WAAW;AAC/B,SAAK,OAAO;AAAA,EACd;AACF;AAEO,IAAM,kBAAN,cAA8B,cAAc;AAAA,EACjD,YACE,SACA,SACA;AACA,UAAM,SAAS,KAAK,oBAAoB,OAAO;AAC/C,SAAK,OAAO;AAAA,EACd;AACF;AAEO,IAAM,iBAAN,cAA6B,cAAc;AAAA,EACvC;AAAA,EACA;AAAA,EAET,YAAY,SAAiB,aAA4B,MAAM,UAAU,OAAO;AAC9E,UAAM,SAAS,KAAK,kBAAkB;AACtC,SAAK,OAAO;AACZ,SAAK,aAAa;AAClB,SAAK,UAAU;AAAA,EACjB;AACF;AAEO,IAAM,wBAAN,cAAoC,MAAM;AAAA,EAC/C,YAAY,UAAU,yCAAyC;AAC7D,UAAM,OAAO;AACb,SAAK,OAAO;AAAA,EACd;AACF;;;ACtDA,IAAM,mBAAmB;AACzB,IAAM,kBAAkB;AACxB,IAAM,sBAAsB;AAC5B,IAAM,gBAAgB;AAEf,IAAM,aAAN,MAAiB;AAAA,EACL;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EAEjB,YAAY,QAAgB,UAA2B,CAAC,GAAG;AACzD,SAAK,SAAS;AACd,SAAK,WAAW,QAAQ,WAAW,kBAAkB,QAAQ,QAAQ,EAAE;AACvE,SAAK,UAAU,QAAQ,WAAW;AAClC,SAAK,aAAa,QAAQ,cAAc;AACxC,SAAK,eAAe,QAAQ,aAAa;AAAA,EAC3C;AAAA,EAEA,MAAM,QAAW,QAAgB,MAAc,MAA4B;AACzE,UAAM,MAAM,GAAG,KAAK,OAAO,GAAG,IAAI;AAClC,UAAM,UAAkC;AAAA,MACtC,gBAAgB;AAAA,MAChB,cAAc;AAAA,IAChB;AAEA,QAAI,KAAK,cAAc;AACrB,cAAQ,cAAc,IAAI,KAAK;AAAA,IACjC,OAAO;AACL,cAAQ,WAAW,IAAI,KAAK;AAAA,IAC9B;AAEA,QAAI,YAA0B;AAE9B,aAAS,UAAU,GAAG,WAAW,KAAK,YAAY,WAAW;AAC3D,UAAI,UAAU,GAAG;AACf,cAAM,MAAM,gBAAgB,MAAM,UAAU,EAAE;AAAA,MAChD;AAEA,UAAI;AACF,cAAM,WAAW,MAAM,MAAM,KAAK;AAAA,UAChC;AAAA,UACA;AAAA,UACA,MAAM,QAAQ,OAAO,KAAK,UAAU,IAAI,IAAI;AAAA,UAC5C,QAAQ,YAAY,QAAQ,KAAK,OAAO;AAAA,QAC1C,CAAC;AAED,YAAI,SAAS,IAAI;AACf,iBAAQ,MAAM,SAAS,KAAK;AAAA,QAC9B;AAGA,YAAI,SAAS,SAAS,OAAO,SAAS,WAAW,KAAK;AACpD,gBAAM,cAAc,QAAQ;AAAA,QAC9B;AAGA,YAAI,SAAS,WAAW,KAAK;AAC3B,gBAAM,cAAc,QAAQ;AAAA,QAC9B;AAGA,oBAAY,MAAM,cAAc,QAAQ;AAAA,MAC1C,SAAS,KAAK;AACZ,YACE,eAAe,iBACf,eAAe,uBACf,eAAe,kBACf,eAAe,iBACf,eAAe,mBACf,eAAe,gBACf;AACA,gBAAM;AAAA,QACR;AAGA,oBAAY,eAAe,QAAQ,MAAM,IAAI,MAAM,OAAO,GAAG,CAAC;AAAA,MAChE;AAAA,IACF;AAEA,UAAM,aAAa,IAAI,cAAc,gCAAgC,GAAG,eAAe;AAAA,EACzF;AAAA,EAEA,IAAO,MAA0B;AAC/B,WAAO,KAAK,QAAW,OAAO,IAAI;AAAA,EACpC;AAAA,EAEA,KAAQ,MAAc,MAA2B;AAC/C,WAAO,KAAK,QAAW,QAAQ,MAAM,IAAI;AAAA,EAC3C;AACF;AAEA,SAAS,MAAM,IAA2B;AACxC,SAAO,IAAI,QAAQ,CAAC,YAAY,WAAW,SAAS,EAAE,CAAC;AACzD;AAEA,eAAe,cAAc,UAAoC;AAC/D,QAAM,MAAM,cAAc,QAAQ;AACpC;AAEA,eAAe,cAAc,UAA4C;AACvE,MAAI;AACJ,MAAI;AACF,WAAQ,MAAM,SAAS,KAAK;AAAA,EAC9B,QAAQ;AACN,WAAO,EAAE,OAAO,SAAS,cAAc,gBAAgB;AAAA,EACzD;AAEA,QAAM,UAAU,KAAK,SAAS;AAE9B,UAAQ,SAAS,QAAQ;AAAA,IACvB,KAAK;AACH,aAAO,IAAI,gBAAgB,SAAS,KAAK,OAAO;AAAA,IAClD,KAAK;AACH,aAAO,IAAI,oBAAoB,OAAO;AAAA,IACxC,KAAK;AACH,aAAO,IAAI,eAAe,OAAO;AAAA,IACnC,KAAK;AACH,aAAO,IAAI,cAAc,OAAO;AAAA,IAClC,KAAK,KAAK;AACR,YAAM,cAAc,SAAS,QAAQ,IAAI,mBAAmB;AAC5D,YAAM,cAAc,SAAS,QAAQ,IAAI,mBAAmB;AAC5D,YAAM,aAAa,cAAc,SAAS,aAAa,EAAE,IAAI;AAC7D,YAAM,UAAU,gBAAgB;AAChC,aAAO,IAAI,eAAe,SAAS,YAAY,OAAO;AAAA,IACxD;AAAA,IACA;AACE,aAAO,IAAI,cAAc,SAAS,SAAS,QAAQ,WAAW;AAAA,EAClE;AACF;;;AClIA,SAAS,WAAW,KAA8B;AAChD,SAAO;AAAA,IACL,IAAI,IAAI;AAAA,IACR,SAAS,IAAI;AAAA,IACb,QAAQ,IAAI;AAAA,IACZ,OAAO,IAAI;AAAA,IACX,OAAO,IAAI,SAAS;AAAA,IACpB,QAAQ,IAAI;AAAA,IACZ,WAAW,IAAI;AAAA,IACf,iBAAiB,IAAI;AAAA,IACrB,QAAQ,IAAI;AAAA,EACd;AACF;AAEA,SAAS,mBAAmB,KAA8B;AACxD,SAAO;AAAA,IACL,IAAI,IAAI;AAAA,IACR,aAAa,IAAI;AAAA,IACjB,iBAAiB,IAAI;AAAA,IACrB,OAAO,IAAI;AAAA,IACX,OAAO,IAAI,SAAS;AAAA,IACpB,SAAS,IAAI;AAAA,IACb,gBAAgB,IAAI;AAAA,IACpB,YAAY,IAAI;AAAA,IAChB,QAAQ,IAAI;AAAA,IACZ,QAAQ,IAAI;AAAA,IACZ,WAAW,IAAI;AAAA,IACf,QAAQ,IAAI;AAAA,IACZ,WAAW,IAAI;AAAA,EACjB;AACF;AAEA,SAAS,iBAAiB,KAA8B;AACtD,QAAM,MAAM,IAAI;AAChB,SAAO;AAAA,IACL,IAAI,IAAI;AAAA,IACR,QAAQ,IAAI;AAAA,IACZ,gBAAgB,IAAI;AAAA,IACpB,YAAY,IAAI;AAAA,IAChB,SAAS,IAAI;AAAA,IACb,OAAO,IAAI;AAAA,IACX,OAAO,IAAI,SAAS;AAAA,IACpB,QAAQ,IAAI;AAAA,IACZ,WAAW,IAAI;AAAA,IACf,eAAe,OAAO,CAAC,GAAG,IAAI,CAAC,OAAO;AAAA,MACpC,QAAQ,EAAE;AAAA,MACV,QAAQ,EAAE;AAAA,MACV,MAAM,EAAE;AAAA,MACR,WAAW,EAAE;AAAA,IACf,EAAE;AAAA,EACJ;AACF;AAEO,IAAM,WAAN,MAAe;AAAA,EACpB,YAA6B,QAAoB;AAApB;AAAA,EAAqB;AAAA,EAElD,MAAM,OAAO,QAA6D;AACxE,UAAM,OAAO;AAAA,MACX,QAAQ,OAAO;AAAA,MACf,OAAO,OAAO;AAAA,MACd,OAAO,OAAO;AAAA,MACd,cAAc,OAAO;AAAA,MACrB,mBAAmB,OAAO;AAAA,MAC1B,YAAY,OAAO;AAAA,MACnB,UAAU,OAAO;AAAA,IACnB;AAEA,UAAM,MAAM,MAAM,KAAK,OAAO,KAA8B,oBAAoB,IAAI;AACpF,WAAO;AAAA,MACL,SAAS;AAAA,MACT,UAAU,IAAI;AAAA,MACd,SAAS,WAAW,IAAI,OAAkC;AAAA,IAC5D;AAAA,EACF;AAAA,EAEA,MAAM,KAAK,SAA6B,CAAC,GAAkC;AACzE,UAAM,eAAe,IAAI,gBAAgB;AACzC,QAAI,OAAO,OAAQ,cAAa,IAAI,UAAU,OAAO,MAAM;AAC3D,QAAI,OAAO,SAAS,KAAM,cAAa,IAAI,SAAS,OAAO,OAAO,KAAK,CAAC;AACxE,QAAI,OAAO,UAAU,KAAM,cAAa,IAAI,UAAU,OAAO,OAAO,MAAM,CAAC;AAE3E,UAAM,KAAK,aAAa,SAAS;AACjC,UAAM,OAAO,mBAAmB,KAAK,IAAI,EAAE,KAAK,EAAE;AAClD,UAAM,MAAM,MAAM,KAAK,OAAO,IAA6B,IAAI;AAC/D,UAAM,WAAW,IAAI;AAErB,WAAO;AAAA,MACL,SAAS;AAAA,MACT,UAAU,SAAS,IAAI,kBAAkB;AAAA,IAC3C;AAAA,EACF;AAAA,EAEA,MAAM,IAAI,IAAyC;AACjD,UAAM,MAAM,MAAM,KAAK,OAAO,IAA6B,oBAAoB,mBAAmB,EAAE,CAAC,EAAE;AACvG,WAAO;AAAA,MACL,SAAS;AAAA,MACT,SAAS,iBAAiB,IAAI,OAAkC;AAAA,IAClE;AAAA,EACF;AACF;;;ACtGA,SAAS,WAAW,KAA8B;AAChD,SAAO;AAAA,IACL,IAAI,IAAI;AAAA,IACR,MAAM,IAAI;AAAA,IACV,MAAM,IAAI;AAAA,IACV,QAAQ,IAAI;AAAA,IACZ,eAAe,IAAI;AAAA,IACnB,YAAY,IAAI;AAAA,IAChB,WAAW,IAAI;AAAA,EACjB;AACF;AAEA,SAAS,mBAAmB,KAA8B;AACxD,SAAO;AAAA,IACL,IAAI,IAAI;AAAA,IACR,MAAM,IAAI;AAAA,IACV,MAAM,IAAI;AAAA,IACV,QAAQ,IAAI;AAAA,IACZ,YAAY,IAAI;AAAA,IAChB,UAAU,IAAI;AAAA,IACd,WAAW,IAAI;AAAA,EACjB;AACF;AAEO,IAAM,WAAN,MAAe;AAAA,EACpB,YAA6B,QAAoB;AAApB;AAAA,EAAqB;AAAA,EAElD,MAAM,OAAO,QAA6D;AACxE,UAAM,OAAO;AAAA,MACX,MAAM,OAAO;AAAA,MACb,MAAM,OAAO;AAAA,MACb,aAAa,OAAO;AAAA,MACpB,UAAU,OAAO;AAAA,IACnB;AAEA,UAAM,MAAM,MAAM,KAAK,OAAO,KAA8B,oBAAoB,IAAI;AACpF,WAAO;AAAA,MACL,SAAS;AAAA,MACT,SAAS,WAAW,IAAI,OAAkC;AAAA,IAC5D;AAAA,EACF;AAAA,EAEA,MAAM,OAAsC;AAC1C,UAAM,MAAM,MAAM,KAAK,OAAO,IAA6B,kBAAkB;AAC7E,UAAM,WAAW,IAAI;AAErB,WAAO;AAAA,MACL,SAAS;AAAA,MACT,UAAU,SAAS,IAAI,kBAAkB;AAAA,IAC3C;AAAA,EACF;AACF;;;AC1DA,oBAA4C;AAYrC,SAAS,uBACd,MACA,WACA,QACS;AACT,QAAM,eAAW,0BAAW,UAAU,MAAM,EAAE,OAAO,IAAI,EAAE,OAAO,KAAK;AACvE,MAAI,UAAU,WAAW,SAAS,OAAQ,QAAO;AACjD,aAAO,+BAAgB,OAAO,KAAK,SAAS,GAAG,OAAO,KAAK,QAAQ,CAAC;AACtE;AAWO,SAAS,eACd,MACA,WACA,QACgB;AAChB,MAAI,CAAC,uBAAuB,MAAM,WAAW,MAAM,GAAG;AACpD,UAAM,IAAI,sBAAsB;AAAA,EAClC;AAEA,MAAI;AACJ,MAAI;AACF,UAAM,KAAK,MAAM,IAAI;AAAA,EACvB,QAAQ;AACN,UAAM,IAAI,sBAAsB,yBAAyB;AAAA,EAC3D;AAEA,SAAO;AAAA,IACL,OAAO,IAAI;AAAA,IACX,WAAW,IAAI;AAAA,IACf,aAAa,IAAI;AAAA,IACjB,iBAAiB,IAAI;AAAA,IACrB,OAAO,IAAI;AAAA,IACX,OAAQ,IAAI,SAAoB;AAAA,IAChC,SAAS,IAAI;AAAA,IACb,gBAAgB,IAAI;AAAA,IACpB,YAAY,IAAI;AAAA,IAChB,QAAQ,IAAI;AAAA,IACZ,QAAQ,IAAI;AAAA,IACZ,QAAQ,IAAI;AAAA,IACZ,UAAW,IAAI,YAAwC,CAAC;AAAA,IACxD,WAAW,IAAI;AAAA,EACjB;AACF;;;AL1DO,IAAM,WAAN,MAAe;AAAA,EACX;AAAA,EACA;AAAA,EAET,YAAY,QAAgB,UAA2B,CAAC,GAAG;AACzD,QAAI,CAAC,QAAQ;AACX,YAAM,IAAI,MAAM,oEAAoE;AAAA,IACtF;AAEA,UAAM,SAAS,IAAI,WAAW,QAAQ,OAAO;AAC7C,SAAK,WAAW,IAAI,SAAS,MAAM;AACnC,SAAK,WAAW,IAAI,SAAS,MAAM;AAAA,EACrC;AACF;AAEA,IAAO,gBAAQ;","names":[]}