@peac/protocol 0.9.18

package/README.md

@@ -0,0 +1,23 @@
+# @peac/protocol
+
+PEAC protocol implementation - receipt issuance and verification
+
+## Installation
+
+```bash
+pnpm add @peac/protocol
+```
+
+## Documentation
+
+See [peacprotocol.org](https://peacprotocol.org) for full documentation.
+
+## License
+
+Apache-2.0
+
+---
+
+PEAC Protocol is an open source project stewarded by Originary and community contributors.
+
+[Originary](https://www.originary.xyz) | [Docs](https://peacprotocol.org) | [GitHub](https://github.com/peacprotocol/peac)

package/dist/discovery.d.ts

@@ -0,0 +1,19 @@
+/**
+ * PEAC discovery manifest parsing (/.well-known/peac.txt)
+ */
+import { PEACDiscovery } from '@peac/schema';
+/**
+ * Parse a PEAC discovery manifest from YAML-like text
+ *
+ * @param text - PEAC discovery text (≤20 lines, ≤2000 bytes)
+ * @returns Parsed discovery manifest
+ */
+export declare function parseDiscovery(text: string): PEACDiscovery;
+/**
+ * Fetch and parse PEAC discovery from an issuer URL
+ *
+ * @param issuerUrl - Issuer URL (https://)
+ * @returns Parsed discovery manifest
+ */
+export declare function fetchDiscovery(issuerUrl: string): Promise<PEACDiscovery>;
+//# sourceMappingURL=discovery.d.ts.map

package/dist/discovery.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"discovery.d.ts","sourceRoot":"","sources":["../src/discovery.ts"],"names":[],"mappings":"AAAA;;GAEG;AAEH,OAAO,EAAE,aAAa,EAA4B,MAAM,cAAc,CAAC;AAEvE;;;;;GAKG;AACH,wBAAgB,cAAc,CAAC,IAAI,EAAE,MAAM,GAAG,aAAa,CAkF1D;AAED;;;;;GAKG;AACH,wBAAsB,cAAc,CAAC,SAAS,EAAE,MAAM,GAAG,OAAO,CAAC,aAAa,CAAC,CA0B9E"}

package/dist/discovery.js

@@ -0,0 +1,120 @@
+"use strict";
+/**
+ * PEAC discovery manifest parsing (/.well-known/peac.txt)
+ */
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.parseDiscovery = parseDiscovery;
+exports.fetchDiscovery = fetchDiscovery;
+const schema_1 = require("@peac/schema");
+/**
+ * Parse a PEAC discovery manifest from YAML-like text
+ *
+ * @param text - PEAC discovery text (≤20 lines, ≤2000 bytes)
+ * @returns Parsed discovery manifest
+ */
+function parseDiscovery(text) {
+    // Validate size
+    const bytes = new TextEncoder().encode(text).length;
+    if (bytes > schema_1.PEAC_DISCOVERY_MAX_BYTES) {
+        throw new Error(`Discovery manifest exceeds ${schema_1.PEAC_DISCOVERY_MAX_BYTES} bytes (got ${bytes})`);
+    }
+    const lines = text.trim().split('\n');
+    if (lines.length > 20) {
+        throw new Error(`Discovery manifest exceeds 20 lines (got ${lines.length})`);
+    }
+    const discovery = {
+        payments: [],
+    };
+    let inPayments = false;
+    for (const line of lines) {
+        const trimmed = line.trim();
+        if (!trimmed || trimmed.startsWith('#')) {
+            continue; // Skip empty lines and comments
+        }
+        if (trimmed === 'payments:') {
+            inPayments = true;
+            continue;
+        }
+        if (inPayments) {
+            // Support both "rail:" (new) and "scheme:" (deprecated) for backward compatibility
+            if (trimmed.startsWith('- rail:') || trimmed.startsWith('- scheme:')) {
+                const rail = trimmed.replace(/^- (rail|scheme):/, '').trim();
+                discovery.payments.push({ rail });
+            }
+            else if (trimmed.startsWith('info:')) {
+                const info = trimmed.replace('info:', '').trim();
+                if (discovery.payments.length > 0) {
+                    discovery.payments[discovery.payments.length - 1].info = info;
+                }
+            }
+            else if (!trimmed.startsWith(' ') && trimmed.includes(':')) {
+                // New top-level key, exit payments section
+                inPayments = false;
+            }
+        }
+        if (!inPayments && trimmed.includes(':')) {
+            const [key, ...valueParts] = trimmed.split(':');
+            const value = valueParts.join(':').trim();
+            switch (key.trim()) {
+                case 'version':
+                    discovery.version = value;
+                    break;
+                case 'issuer':
+                    discovery.issuer = value;
+                    break;
+                case 'verify':
+                    discovery.verify = value;
+                    break;
+                case 'jwks':
+                    discovery.jwks = value;
+                    break;
+                case 'aipref':
+                    discovery.aipref = value;
+                    break;
+                case 'slos':
+                    discovery.slos = value;
+                    break;
+                case 'security':
+                    discovery.security = value;
+                    break;
+            }
+        }
+    }
+    // Validate required fields
+    if (!discovery.version)
+        throw new Error('Missing required field: version');
+    if (!discovery.issuer)
+        throw new Error('Missing required field: issuer');
+    if (!discovery.verify)
+        throw new Error('Missing required field: verify');
+    if (!discovery.jwks)
+        throw new Error('Missing required field: jwks');
+    return discovery;
+}
+/**
+ * Fetch and parse PEAC discovery from an issuer URL
+ *
+ * @param issuerUrl - Issuer URL (https://)
+ * @returns Parsed discovery manifest
+ */
+async function fetchDiscovery(issuerUrl) {
+    if (!issuerUrl.startsWith('https://')) {
+        throw new Error('Issuer URL must be https://');
+    }
+    const discoveryUrl = `${issuerUrl}/.well-known/peac.txt`;
+    try {
+        const resp = await fetch(discoveryUrl, {
+            headers: { Accept: 'text/plain' },
+            signal: AbortSignal.timeout(5000),
+        });
+        if (!resp.ok) {
+            throw new Error(`Discovery fetch failed: ${resp.status}`);
+        }
+        const text = await resp.text();
+        return parseDiscovery(text);
+    }
+    catch (err) {
+        throw new Error(`Failed to fetch discovery from ${issuerUrl}: ${err instanceof Error ? err.message : String(err)}`);
+    }
+}
+//# sourceMappingURL=discovery.js.map

package/dist/discovery.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"discovery.js","sourceRoot":"","sources":["../src/discovery.ts"],"names":[],"mappings":";AAAA;;GAEG;;AAUH,wCAkFC;AAQD,wCA0BC;AA5HD,yCAAuE;AAEvE;;;;;GAKG;AACH,SAAgB,cAAc,CAAC,IAAY;IACzC,gBAAgB;IAChB,MAAM,KAAK,GAAG,IAAI,WAAW,EAAE,CAAC,MAAM,CAAC,IAAI,CAAC,CAAC,MAAM,CAAC;IACpD,IAAI,KAAK,GAAG,iCAAwB,EAAE,CAAC;QACrC,MAAM,IAAI,KAAK,CAAC,8BAA8B,iCAAwB,eAAe,KAAK,GAAG,CAAC,CAAC;IACjG,CAAC;IAED,MAAM,KAAK,GAAG,IAAI,CAAC,IAAI,EAAE,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;IACtC,IAAI,KAAK,CAAC,MAAM,GAAG,EAAE,EAAE,CAAC;QACtB,MAAM,IAAI,KAAK,CAAC,4CAA4C,KAAK,CAAC,MAAM,GAAG,CAAC,CAAC;IAC/E,CAAC;IAED,MAAM,SAAS,GAA2B;QACxC,QAAQ,EAAE,EAAE;KACb,CAAC;IAEF,IAAI,UAAU,GAAG,KAAK,CAAC;IAEvB,KAAK,MAAM,IAAI,IAAI,KAAK,EAAE,CAAC;QACzB,MAAM,OAAO,GAAG,IAAI,CAAC,IAAI,EAAE,CAAC;QAC5B,IAAI,CAAC,OAAO,IAAI,OAAO,CAAC,UAAU,CAAC,GAAG,CAAC,EAAE,CAAC;YACxC,SAAS,CAAC,gCAAgC;QAC5C,CAAC;QAED,IAAI,OAAO,KAAK,WAAW,EAAE,CAAC;YAC5B,UAAU,GAAG,IAAI,CAAC;YAClB,SAAS;QACX,CAAC;QAED,IAAI,UAAU,EAAE,CAAC;YACf,mFAAmF;YACnF,IAAI,OAAO,CAAC,UAAU,CAAC,SAAS,CAAC,IAAI,OAAO,CAAC,UAAU,CAAC,WAAW,CAAC,EAAE,CAAC;gBACrE,MAAM,IAAI,GAAG,OAAO,CAAC,OAAO,CAAC,mBAAmB,EAAE,EAAE,CAAC,CAAC,IAAI,EAAE,CAAC;gBAC7D,SAAS,CAAC,QAAS,CAAC,IAAI,CAAC,EAAE,IAAI,EAAE,CAAC,CAAC;YACrC,CAAC;iBAAM,IAAI,OAAO,CAAC,UAAU,CAAC,OAAO,CAAC,EAAE,CAAC;gBACvC,MAAM,IAAI,GAAG,OAAO,CAAC,OAAO,CAAC,OAAO,EAAE,EAAE,CAAC,CAAC,IAAI,EAAE,CAAC;gBACjD,IAAI,SAAS,CAAC,QAAS,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;oBACnC,SAAS,CAAC,QAAS,CAAC,SAAS,CAAC,QAAS,CAAC,MAAM,GAAG,CAAC,CAAC,CAAC,IAAI,GAAG,IAAI,CAAC;gBAClE,CAAC;YACH,CAAC;iBAAM,IAAI,CAAC,OAAO,CAAC,UAAU,CAAC,GAAG,CAAC,IAAI,OAAO,CAAC,QAAQ,CAAC,GAAG,CAAC,EAAE,CAAC;gBAC7D,2CAA2C;gBAC3C,UAAU,GAAG,KAAK,CAAC;YACrB,CAAC;QACH,CAAC;QAED,IAAI,CAAC,UAAU,IAAI,OAAO,CAAC,QAAQ,CAAC,GAAG,CAAC,EAAE,CAAC;YACzC,MAAM,CAAC,GAAG,EAAE,GAAG,UAAU,CAAC,GAAG,OAAO,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC;YAChD,MAAM,KAAK,GAAG,UAAU,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC,IAAI,EAAE,CAAC;YAE1C,QAAQ,GAAG,CAAC,IAAI,EAAE,EAAE,CAAC;gBACnB,KAAK,SAAS;oBACZ,SAAS,CAAC,OAAO,GAAG,KAAK,CAAC;oBAC1B,MAAM;gBACR,KAAK,QAAQ;oBACX,SAAS,CAAC,MAAM,GAAG,KAAK,CAAC;oBACzB,MAAM;gBACR,KAAK,QAAQ;oBACX,SAAS,CAAC,MAAM,GAAG,KAAK,CAAC;oBACzB,MAAM;gBACR,KAAK,MAAM;oBACT,SAAS,CAAC,IAAI,GAAG,KAAK,CAAC;oBACvB,MAAM;gBACR,KAAK,QAAQ;oBACX,SAAS,CAAC,MAAM,GAAG,KAAK,CAAC;oBACzB,MAAM;gBACR,KAAK,MAAM;oBACT,SAAS,CAAC,IAAI,GAAG,KAAK,CAAC;oBACvB,MAAM;gBACR,KAAK,UAAU;oBACb,SAAS,CAAC,QAAQ,GAAG,KAAK,CAAC;oBAC3B,MAAM;YACV,CAAC;QACH,CAAC;IACH,CAAC;IAED,2BAA2B;IAC3B,IAAI,CAAC,SAAS,CAAC,OAAO;QAAE,MAAM,IAAI,KAAK,CAAC,iCAAiC,CAAC,CAAC;IAC3E,IAAI,CAAC,SAAS,CAAC,MAAM;QAAE,MAAM,IAAI,KAAK,CAAC,gCAAgC,CAAC,CAAC;IACzE,IAAI,CAAC,SAAS,CAAC,MAAM;QAAE,MAAM,IAAI,KAAK,CAAC,gCAAgC,CAAC,CAAC;IACzE,IAAI,CAAC,SAAS,CAAC,IAAI;QAAE,MAAM,IAAI,KAAK,CAAC,8BAA8B,CAAC,CAAC;IAErE,OAAO,SAA0B,CAAC;AACpC,CAAC;AAED;;;;;GAKG;AACI,KAAK,UAAU,cAAc,CAAC,SAAiB;IACpD,IAAI,CAAC,SAAS,CAAC,UAAU,CAAC,UAAU,CAAC,EAAE,CAAC;QACtC,MAAM,IAAI,KAAK,CAAC,6BAA6B,CAAC,CAAC;IACjD,CAAC;IAED,MAAM,YAAY,GAAG,GAAG,SAAS,uBAAuB,CAAC;IAEzD,IAAI,CAAC;QACH,MAAM,IAAI,GAAG,MAAM,KAAK,CAAC,YAAY,EAAE;YACrC,OAAO,EAAE,EAAE,MAAM,EAAE,YAAY,EAAE;YACjC,MAAM,EAAE,WAAW,CAAC,OAAO,CAAC,IAAI,CAAC;SAClC,CAAC,CAAC;QAEH,IAAI,CAAC,IAAI,CAAC,EAAE,EAAE,CAAC;YACb,MAAM,IAAI,KAAK,CAAC,2BAA2B,IAAI,CAAC,MAAM,EAAE,CAAC,CAAC;QAC5D,CAAC;QAED,MAAM,IAAI,GAAG,MAAM,IAAI,CAAC,IAAI,EAAE,CAAC;QAC/B,OAAO,cAAc,CAAC,IAAI,CAAC,CAAC;IAC9B,CAAC;IAAC,OAAO,GAAG,EAAE,CAAC;QACb,MAAM,IAAI,KAAK,CACb,kCAAkC,SAAS,KACzC,GAAG,YAAY,KAAK,CAAC,CAAC,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,GAAG,CACjD,EAAE,CACH,CAAC;IACJ,CAAC;AACH,CAAC"}

package/dist/headers.d.ts

@@ -0,0 +1,24 @@
+/**
+ * HTTP header utilities for PEAC receipts
+ */
+/**
+ * Set PEAC-Receipt header on a response
+ *
+ * @param headers - Headers object (e.g., Response.headers)
+ * @param receiptJws - JWS compact serialization
+ */
+export declare function setReceiptHeader(headers: Headers, receiptJws: string): void;
+/**
+ * Get PEAC-Receipt header from a request/response
+ *
+ * @param headers - Headers object
+ * @returns JWS compact serialization, or null if not present
+ */
+export declare function getReceiptHeader(headers: Headers): string | null;
+/**
+ * Set Vary: PEAC-Receipt header for caching
+ *
+ * @param headers - Response headers
+ */
+export declare function setVaryHeader(headers: Headers): void;
+//# sourceMappingURL=headers.d.ts.map

package/dist/headers.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"headers.d.ts","sourceRoot":"","sources":["../src/headers.ts"],"names":[],"mappings":"AAAA;;GAEG;AAIH;;;;;GAKG;AACH,wBAAgB,gBAAgB,CAAC,OAAO,EAAE,OAAO,EAAE,UAAU,EAAE,MAAM,GAAG,IAAI,CAE3E;AAED;;;;;GAKG;AACH,wBAAgB,gBAAgB,CAAC,OAAO,EAAE,OAAO,GAAG,MAAM,GAAG,IAAI,CAEhE;AAED;;;;GAIG;AACH,wBAAgB,aAAa,CAAC,OAAO,EAAE,OAAO,GAAG,IAAI,CAWpD"}

package/dist/headers.js

@@ -0,0 +1,46 @@
+"use strict";
+/**
+ * HTTP header utilities for PEAC receipts
+ */
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.setReceiptHeader = setReceiptHeader;
+exports.getReceiptHeader = getReceiptHeader;
+exports.setVaryHeader = setVaryHeader;
+const schema_1 = require("@peac/schema");
+/**
+ * Set PEAC-Receipt header on a response
+ *
+ * @param headers - Headers object (e.g., Response.headers)
+ * @param receiptJws - JWS compact serialization
+ */
+function setReceiptHeader(headers, receiptJws) {
+    headers.set(schema_1.PEAC_RECEIPT_HEADER, receiptJws);
+}
+/**
+ * Get PEAC-Receipt header from a request/response
+ *
+ * @param headers - Headers object
+ * @returns JWS compact serialization, or null if not present
+ */
+function getReceiptHeader(headers) {
+    return headers.get(schema_1.PEAC_RECEIPT_HEADER);
+}
+/**
+ * Set Vary: PEAC-Receipt header for caching
+ *
+ * @param headers - Response headers
+ */
+function setVaryHeader(headers) {
+    const existing = headers.get('Vary');
+    if (existing) {
+        // Append to existing Vary header
+        const varies = existing.split(',').map((v) => v.trim());
+        if (!varies.includes(schema_1.PEAC_RECEIPT_HEADER)) {
+            headers.set('Vary', `${existing}, ${schema_1.PEAC_RECEIPT_HEADER}`);
+        }
+    }
+    else {
+        headers.set('Vary', schema_1.PEAC_RECEIPT_HEADER);
+    }
+}
+//# sourceMappingURL=headers.js.map

package/dist/headers.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"headers.js","sourceRoot":"","sources":["../src/headers.ts"],"names":[],"mappings":";AAAA;;GAEG;;AAUH,4CAEC;AAQD,4CAEC;AAOD,sCAWC;AAtCD,yCAAmD;AAEnD;;;;;GAKG;AACH,SAAgB,gBAAgB,CAAC,OAAgB,EAAE,UAAkB;IACnE,OAAO,CAAC,GAAG,CAAC,4BAAmB,EAAE,UAAU,CAAC,CAAC;AAC/C,CAAC;AAED;;;;;GAKG;AACH,SAAgB,gBAAgB,CAAC,OAAgB;IAC/C,OAAO,OAAO,CAAC,GAAG,CAAC,4BAAmB,CAAC,CAAC;AAC1C,CAAC;AAED;;;;GAIG;AACH,SAAgB,aAAa,CAAC,OAAgB;IAC5C,MAAM,QAAQ,GAAG,OAAO,CAAC,GAAG,CAAC,MAAM,CAAC,CAAC;IACrC,IAAI,QAAQ,EAAE,CAAC;QACb,iCAAiC;QACjC,MAAM,MAAM,GAAG,QAAQ,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,IAAI,EAAE,CAAC,CAAC;QACxD,IAAI,CAAC,MAAM,CAAC,QAAQ,CAAC,4BAAmB,CAAC,EAAE,CAAC;YAC1C,OAAO,CAAC,GAAG,CAAC,MAAM,EAAE,GAAG,QAAQ,KAAK,4BAAmB,EAAE,CAAC,CAAC;QAC7D,CAAC;IACH,CAAC;SAAM,CAAC;QACN,OAAO,CAAC,GAAG,CAAC,MAAM,EAAE,4BAAmB,CAAC,CAAC;IAC3C,CAAC;AACH,CAAC"}

package/dist/index.d.ts

@@ -0,0 +1,9 @@
+/**
+ * PEAC Protocol Implementation
+ * Receipt issuance and verification with JWKS caching
+ */
+export * from './issue';
+export * from './verify';
+export * from './headers';
+export * from './discovery';
+//# sourceMappingURL=index.d.ts.map

package/dist/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AAAA;;;GAGG;AAEH,cAAc,SAAS,CAAC;AACxB,cAAc,UAAU,CAAC;AACzB,cAAc,WAAW,CAAC;AAC1B,cAAc,aAAa,CAAC"}

package/dist/index.js

@@ -0,0 +1,25 @@
+"use strict";
+/**
+ * PEAC Protocol Implementation
+ * Receipt issuance and verification with JWKS caching
+ */
+var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    var desc = Object.getOwnPropertyDescriptor(m, k);
+    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
+      desc = { enumerable: true, get: function() { return m[k]; } };
+    }
+    Object.defineProperty(o, k2, desc);
+}) : (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    o[k2] = m[k];
+}));
+var __exportStar = (this && this.__exportStar) || function(m, exports) {
+    for (var p in m) if (p !== "default" && !Object.prototype.hasOwnProperty.call(exports, p)) __createBinding(exports, m, p);
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+__exportStar(require("./issue"), exports);
+__exportStar(require("./verify"), exports);
+__exportStar(require("./headers"), exports);
+__exportStar(require("./discovery"), exports);
+//# sourceMappingURL=index.js.map

package/dist/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":";AAAA;;;GAGG;;;;;;;;;;;;;;;;AAEH,0CAAwB;AACxB,2CAAyB;AACzB,4CAA0B;AAC1B,8CAA4B"}

package/dist/issue.d.ts

@@ -0,0 +1,75 @@
+/**
+ * Receipt issuance
+ * Validates input, generates UUIDv7 rid, and signs with Ed25519
+ */
+import { PEACReceiptClaims, SubjectProfileSnapshot } from '@peac/schema';
+/**
+ * Options for issuing a receipt
+ */
+export interface IssueOptions {
+    /** Issuer URL (https://) */
+    iss: string;
+    /** Audience / resource URL (https://) */
+    aud: string;
+    /** Amount in smallest currency unit */
+    amt: number;
+    /** ISO 4217 currency code (uppercase) */
+    cur: string;
+    /** Payment rail identifier */
+    rail: string;
+    /** Rail-specific payment reference */
+    reference: string;
+    /** Asset transferred (e.g., "USD", "USDC", "BTC") - defaults to currency if not provided */
+    asset?: string;
+    /** Environment ("live" or "test") - defaults to "test" */
+    env?: 'live' | 'test';
+    /** Network/rail identifier (optional, SHOULD for crypto) */
+    network?: string;
+    /** Facilitator reference (optional) */
+    facilitator_ref?: string;
+    /** Rail-specific evidence (opaque) - defaults to empty object if not provided */
+    evidence?: unknown;
+    /** Idempotency key (optional) */
+    idempotency_key?: string;
+    /** Rail-specific metadata (optional) */
+    metadata?: Record<string, unknown>;
+    /** Subject URI (optional) */
+    subject?: string;
+    /** Extensions (optional) */
+    ext?: PEACReceiptClaims['ext'];
+    /** Expiry timestamp (Unix seconds, optional) */
+    exp?: number;
+    /** Subject profile snapshot for envelope (v0.9.17+, optional) */
+    subject_snapshot?: SubjectProfileSnapshot;
+    /** Ed25519 private key (32 bytes) */
+    privateKey: Uint8Array;
+    /** Key ID (ISO 8601 timestamp) */
+    kid: string;
+}
+/**
+ * Result of issuing a receipt
+ */
+export interface IssueResult {
+    /** JWS compact serialization */
+    jws: string;
+    /** Validated subject snapshot (if provided) */
+    subject_snapshot?: SubjectProfileSnapshot;
+}
+/**
+ * Issue a PEAC receipt
+ *
+ * @param options - Receipt options
+ * @returns Issue result with JWS and optional subject_snapshot
+ */
+export declare function issue(options: IssueOptions): Promise<IssueResult>;
+/**
+ * Issue a PEAC receipt and return just the JWS string
+ *
+ * Convenience wrapper for common header-centric flows where only the JWS is needed.
+ * For access to validated subject_snapshot, use issue() instead.
+ *
+ * @param options - Receipt options
+ * @returns JWS compact serialization
+ */
+export declare function issueJws(options: IssueOptions): Promise<string>;
+//# sourceMappingURL=issue.d.ts.map

package/dist/issue.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"issue.d.ts","sourceRoot":"","sources":["../src/issue.ts"],"names":[],"mappings":"AAAA;;;GAGG;AAIH,OAAO,EACL,iBAAiB,EAEjB,sBAAsB,EAEvB,MAAM,cAAc,CAAC;AAEtB;;GAEG;AACH,MAAM,WAAW,YAAY;IAC3B,4BAA4B;IAC5B,GAAG,EAAE,MAAM,CAAC;IAEZ,yCAAyC;IACzC,GAAG,EAAE,MAAM,CAAC;IAEZ,uCAAuC;IACvC,GAAG,EAAE,MAAM,CAAC;IAEZ,yCAAyC;IACzC,GAAG,EAAE,MAAM,CAAC;IAEZ,8BAA8B;IAC9B,IAAI,EAAE,MAAM,CAAC;IAEb,sCAAsC;IACtC,SAAS,EAAE,MAAM,CAAC;IAElB,4FAA4F;IAC5F,KAAK,CAAC,EAAE,MAAM,CAAC;IAEf,0DAA0D;IAC1D,GAAG,CAAC,EAAE,MAAM,GAAG,MAAM,CAAC;IAEtB,4DAA4D;IAC5D,OAAO,CAAC,EAAE,MAAM,CAAC;IAEjB,uCAAuC;IACvC,eAAe,CAAC,EAAE,MAAM,CAAC;IAEzB,iFAAiF;IACjF,QAAQ,CAAC,EAAE,OAAO,CAAC;IAEnB,iCAAiC;IACjC,eAAe,CAAC,EAAE,MAAM,CAAC;IAEzB,wCAAwC;IACxC,QAAQ,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;IAEnC,6BAA6B;IAC7B,OAAO,CAAC,EAAE,MAAM,CAAC;IAEjB,4BAA4B;IAC5B,GAAG,CAAC,EAAE,iBAAiB,CAAC,KAAK,CAAC,CAAC;IAE/B,gDAAgD;IAChD,GAAG,CAAC,EAAE,MAAM,CAAC;IAEb,iEAAiE;IACjE,gBAAgB,CAAC,EAAE,sBAAsB,CAAC;IAE1C,qCAAqC;IACrC,UAAU,EAAE,UAAU,CAAC;IAEvB,kCAAkC;IAClC,GAAG,EAAE,MAAM,CAAC;CACb;AAED;;GAEG;AACH,MAAM,WAAW,WAAW;IAC1B,gCAAgC;IAChC,GAAG,EAAE,MAAM,CAAC;IAEZ,+CAA+C;IAC/C,gBAAgB,CAAC,EAAE,sBAAsB,CAAC;CAC3C;AAED;;;;;GAKG;AACH,wBAAsB,KAAK,CAAC,OAAO,EAAE,YAAY,GAAG,OAAO,CAAC,WAAW,CAAC,CA2EvE;AAED;;;;;;;;GAQG;AACH,wBAAsB,QAAQ,CAAC,OAAO,EAAE,YAAY,GAAG,OAAO,CAAC,MAAM,CAAC,CAGrE"}

package/dist/issue.js

@@ -0,0 +1,97 @@
+"use strict";
+/**
+ * Receipt issuance
+ * Validates input, generates UUIDv7 rid, and signs with Ed25519
+ */
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.issue = issue;
+exports.issueJws = issueJws;
+const uuidv7_1 = require("uuidv7");
+const crypto_1 = require("@peac/crypto");
+const schema_1 = require("@peac/schema");
+/**
+ * Issue a PEAC receipt
+ *
+ * @param options - Receipt options
+ * @returns Issue result with JWS and optional subject_snapshot
+ */
+async function issue(options) {
+    // Validate URLs
+    if (!options.iss.startsWith('https://')) {
+        throw new Error('Issuer URL must start with https://');
+    }
+    if (!options.aud.startsWith('https://')) {
+        throw new Error('Audience URL must start with https://');
+    }
+    if (options.subject && !options.subject.startsWith('https://')) {
+        throw new Error('Subject URI must start with https://');
+    }
+    // Validate currency code
+    if (!/^[A-Z]{3}$/.test(options.cur)) {
+        throw new Error('Currency must be ISO 4217 uppercase (e.g., USD)');
+    }
+    // Validate amount
+    if (!Number.isInteger(options.amt) || options.amt < 0) {
+        throw new Error('Amount must be a non-negative integer');
+    }
+    // Validate expiry (if provided)
+    if (options.exp !== undefined) {
+        if (!Number.isInteger(options.exp) || options.exp < 0) {
+            throw new Error('Expiry must be a non-negative integer');
+        }
+    }
+    // Generate UUIDv7 for receipt ID
+    const rid = (0, uuidv7_1.uuidv7)();
+    // Get current timestamp
+    const iat = Math.floor(Date.now() / 1000);
+    // Build receipt claims
+    const claims = {
+        iss: options.iss,
+        aud: options.aud,
+        iat,
+        rid,
+        amt: options.amt,
+        cur: options.cur,
+        payment: {
+            rail: options.rail,
+            reference: options.reference,
+            amount: options.amt,
+            currency: options.cur,
+            asset: options.asset ?? options.cur, // Default asset to currency for backward compatibility
+            env: options.env ?? 'test', // Default to test environment for backward compatibility
+            evidence: options.evidence ?? {}, // Default to empty object for backward compatibility
+            ...(options.network && { network: options.network }),
+            ...(options.facilitator_ref && { facilitator_ref: options.facilitator_ref }),
+            ...(options.idempotency_key && { idempotency_key: options.idempotency_key }),
+            ...(options.metadata && { metadata: options.metadata }),
+        },
+        ...(options.exp && { exp: options.exp }),
+        ...(options.subject && { subject: { uri: options.subject } }),
+        ...(options.ext && { ext: options.ext }),
+    };
+    // Validate claims with Zod
+    schema_1.ReceiptClaims.parse(claims);
+    // Validate subject_snapshot if provided (v0.9.17+)
+    // This validates schema and logs advisory PII warning if applicable
+    const validatedSnapshot = (0, schema_1.validateSubjectSnapshot)(options.subject_snapshot);
+    // Sign with Ed25519
+    const jws = await (0, crypto_1.sign)(claims, options.privateKey, options.kid);
+    return {
+        jws,
+        ...(validatedSnapshot && { subject_snapshot: validatedSnapshot }),
+    };
+}
+/**
+ * Issue a PEAC receipt and return just the JWS string
+ *
+ * Convenience wrapper for common header-centric flows where only the JWS is needed.
+ * For access to validated subject_snapshot, use issue() instead.
+ *
+ * @param options - Receipt options
+ * @returns JWS compact serialization
+ */
+async function issueJws(options) {
+    const result = await issue(options);
+    return result.jws;
+}
+//# sourceMappingURL=issue.js.map

package/dist/issue.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"issue.js","sourceRoot":"","sources":["../src/issue.ts"],"names":[],"mappings":";AAAA;;;GAGG;;AA0FH,sBA2EC;AAWD,4BAGC;AAjLD,mCAAgC;AAChC,yCAAoC;AACpC,yCAKsB;AA2EtB;;;;;GAKG;AACI,KAAK,UAAU,KAAK,CAAC,OAAqB;IAC/C,gBAAgB;IAChB,IAAI,CAAC,OAAO,CAAC,GAAG,CAAC,UAAU,CAAC,UAAU,CAAC,EAAE,CAAC;QACxC,MAAM,IAAI,KAAK,CAAC,qCAAqC,CAAC,CAAC;IACzD,CAAC;IACD,IAAI,CAAC,OAAO,CAAC,GAAG,CAAC,UAAU,CAAC,UAAU,CAAC,EAAE,CAAC;QACxC,MAAM,IAAI,KAAK,CAAC,uCAAuC,CAAC,CAAC;IAC3D,CAAC;IACD,IAAI,OAAO,CAAC,OAAO,IAAI,CAAC,OAAO,CAAC,OAAO,CAAC,UAAU,CAAC,UAAU,CAAC,EAAE,CAAC;QAC/D,MAAM,IAAI,KAAK,CAAC,sCAAsC,CAAC,CAAC;IAC1D,CAAC;IAED,yBAAyB;IACzB,IAAI,CAAC,YAAY,CAAC,IAAI,CAAC,OAAO,CAAC,GAAG,CAAC,EAAE,CAAC;QACpC,MAAM,IAAI,KAAK,CAAC,iDAAiD,CAAC,CAAC;IACrE,CAAC;IAED,kBAAkB;IAClB,IAAI,CAAC,MAAM,CAAC,SAAS,CAAC,OAAO,CAAC,GAAG,CAAC,IAAI,OAAO,CAAC,GAAG,GAAG,CAAC,EAAE,CAAC;QACtD,MAAM,IAAI,KAAK,CAAC,uCAAuC,CAAC,CAAC;IAC3D,CAAC;IAED,gCAAgC;IAChC,IAAI,OAAO,CAAC,GAAG,KAAK,SAAS,EAAE,CAAC;QAC9B,IAAI,CAAC,MAAM,CAAC,SAAS,CAAC,OAAO,CAAC,GAAG,CAAC,IAAI,OAAO,CAAC,GAAG,GAAG,CAAC,EAAE,CAAC;YACtD,MAAM,IAAI,KAAK,CAAC,uCAAuC,CAAC,CAAC;QAC3D,CAAC;IACH,CAAC;IAED,iCAAiC;IACjC,MAAM,GAAG,GAAG,IAAA,eAAM,GAAE,CAAC;IAErB,wBAAwB;IACxB,MAAM,GAAG,GAAG,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,GAAG,EAAE,GAAG,IAAI,CAAC,CAAC;IAE1C,uBAAuB;IACvB,MAAM,MAAM,GAAsB;QAChC,GAAG,EAAE,OAAO,CAAC,GAAG;QAChB,GAAG,EAAE,OAAO,CAAC,GAAG;QAChB,GAAG;QACH,GAAG;QACH,GAAG,EAAE,OAAO,CAAC,GAAG;QAChB,GAAG,EAAE,OAAO,CAAC,GAAG;QAChB,OAAO,EAAE;YACP,IAAI,EAAE,OAAO,CAAC,IAAI;YAClB,SAAS,EAAE,OAAO,CAAC,SAAS;YAC5B,MAAM,EAAE,OAAO,CAAC,GAAG;YACnB,QAAQ,EAAE,OAAO,CAAC,GAAG;YACrB,KAAK,EAAE,OAAO,CAAC,KAAK,IAAI,OAAO,CAAC,GAAG,EAAE,uDAAuD;YAC5F,GAAG,EAAE,OAAO,CAAC,GAAG,IAAI,MAAM,EAAE,yDAAyD;YACrF,QAAQ,EAAE,OAAO,CAAC,QAAQ,IAAI,EAAE,EAAE,qDAAqD;YACvF,GAAG,CAAC,OAAO,CAAC,OAAO,IAAI,EAAE,OAAO,EAAE,OAAO,CAAC,OAAO,EAAE,CAAC;YACpD,GAAG,CAAC,OAAO,CAAC,eAAe,IAAI,EAAE,eAAe,EAAE,OAAO,CAAC,eAAe,EAAE,CAAC;YAC5E,GAAG,CAAC,OAAO,CAAC,eAAe,IAAI,EAAE,eAAe,EAAE,OAAO,CAAC,eAAe,EAAE,CAAC;YAC5E,GAAG,CAAC,OAAO,CAAC,QAAQ,IAAI,EAAE,QAAQ,EAAE,OAAO,CAAC,QAAQ,EAAE,CAAC;SACxD;QACD,GAAG,CAAC,OAAO,CAAC,GAAG,IAAI,EAAE,GAAG,EAAE,OAAO,CAAC,GAAG,EAAE,CAAC;QACxC,GAAG,CAAC,OAAO,CAAC,OAAO,IAAI,EAAE,OAAO,EAAE,EAAE,GAAG,EAAE,OAAO,CAAC,OAAO,EAAE,EAAE,CAAC;QAC7D,GAAG,CAAC,OAAO,CAAC,GAAG,IAAI,EAAE,GAAG,EAAE,OAAO,CAAC,GAAG,EAAE,CAAC;KACzC,CAAC;IAEF,2BAA2B;IAC3B,sBAAa,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC;IAE5B,mDAAmD;IACnD,oEAAoE;IACpE,MAAM,iBAAiB,GAAG,IAAA,gCAAuB,EAAC,OAAO,CAAC,gBAAgB,CAAC,CAAC;IAE5E,oBAAoB;IACpB,MAAM,GAAG,GAAG,MAAM,IAAA,aAAI,EAAC,MAAM,EAAE,OAAO,CAAC,UAAU,EAAE,OAAO,CAAC,GAAG,CAAC,CAAC;IAEhE,OAAO;QACL,GAAG;QACH,GAAG,CAAC,iBAAiB,IAAI,EAAE,gBAAgB,EAAE,iBAAiB,EAAE,CAAC;KAClE,CAAC;AACJ,CAAC;AAED;;;;;;;;GAQG;AACI,KAAK,UAAU,QAAQ,CAAC,OAAqB;IAClD,MAAM,MAAM,GAAG,MAAM,KAAK,CAAC,OAAO,CAAC,CAAC;IACpC,OAAO,MAAM,CAAC,GAAG,CAAC;AACpB,CAAC"}

package/dist/verify.d.ts

@@ -0,0 +1,48 @@
+/**
+ * Receipt verification with JWKS fetching and caching
+ */
+import { PEACReceiptClaims, SubjectProfileSnapshot } from '@peac/schema';
+/**
+ * Verification result
+ */
+export interface VerifyResult {
+    /** Verification succeeded */
+    ok: true;
+    /** Receipt claims */
+    claims: PEACReceiptClaims;
+    /** Subject profile snapshot (v0.9.17+, if provided) */
+    subject_snapshot?: SubjectProfileSnapshot;
+    /** Performance metrics */
+    perf?: {
+        verify_ms: number;
+        jwks_fetch_ms?: number;
+    };
+}
+/**
+ * Verification failure
+ */
+export interface VerifyFailure {
+    /** Verification failed */
+    ok: false;
+    /** Error reason */
+    reason: string;
+    /** Error details */
+    details?: string;
+}
+/**
+ * Options for verifying a receipt
+ */
+export interface VerifyOptions {
+    /** JWS compact serialization */
+    receiptJws: string;
+    /** Subject profile snapshot (v0.9.17+, optional envelope metadata) */
+    subject_snapshot?: SubjectProfileSnapshot;
+}
+/**
+ * Verify a PEAC receipt JWS
+ *
+ * @param optionsOrJws - Verify options or JWS compact serialization (for backwards compatibility)
+ * @returns Verification result or failure
+ */
+export declare function verifyReceipt(optionsOrJws: string | VerifyOptions): Promise<VerifyResult | VerifyFailure>;
+//# sourceMappingURL=verify.d.ts.map

package/dist/verify.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"verify.d.ts","sourceRoot":"","sources":["../src/verify.ts"],"names":[],"mappings":"AAAA;;GAEG;AAGH,OAAO,EACL,iBAAiB,EAEjB,sBAAsB,EAEvB,MAAM,cAAc,CAAC;AA8BtB;;GAEG;AACH,MAAM,WAAW,YAAY;IAC3B,6BAA6B;IAC7B,EAAE,EAAE,IAAI,CAAC;IAET,qBAAqB;IACrB,MAAM,EAAE,iBAAiB,CAAC;IAE1B,uDAAuD;IACvD,gBAAgB,CAAC,EAAE,sBAAsB,CAAC;IAE1C,0BAA0B;IAC1B,IAAI,CAAC,EAAE;QACL,SAAS,EAAE,MAAM,CAAC;QAClB,aAAa,CAAC,EAAE,MAAM,CAAC;KACxB,CAAC;CACH;AAED;;GAEG;AACH,MAAM,WAAW,aAAa;IAC5B,0BAA0B;IAC1B,EAAE,EAAE,KAAK,CAAC;IAEV,mBAAmB;IACnB,MAAM,EAAE,MAAM,CAAC;IAEf,oBAAoB;IACpB,OAAO,CAAC,EAAE,MAAM,CAAC;CAClB;AAmGD;;GAEG;AACH,MAAM,WAAW,aAAa;IAC5B,gCAAgC;IAChC,UAAU,EAAE,MAAM,CAAC;IAEnB,sEAAsE;IACtE,gBAAgB,CAAC,EAAE,sBAAsB,CAAC;CAC3C;AAED;;;;;GAKG;AACH,wBAAsB,aAAa,CACjC,YAAY,EAAE,MAAM,GAAG,aAAa,GACnC,OAAO,CAAC,YAAY,GAAG,aAAa,CAAC,CA6EvC"}

package/dist/verify.js

@@ -0,0 +1,169 @@
+"use strict";
+/**
+ * Receipt verification with JWKS fetching and caching
+ */
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.verifyReceipt = verifyReceipt;
+const crypto_1 = require("@peac/crypto");
+const schema_1 = require("@peac/schema");
+/**
+ * In-memory JWKS cache
+ * Maps issuer URL to { keys, expiresAt }
+ */
+const jwksCache = new Map();
+/**
+ * Cache TTL (5 minutes)
+ */
+const CACHE_TTL_MS = 5 * 60 * 1000;
+/**
+ * Fetch JWKS from issuer (SSRF-safe)
+ */
+async function fetchJWKS(issuerUrl) {
+    // SSRF protection: only allow https://
+    if (!issuerUrl.startsWith('https://')) {
+        throw new Error('Issuer URL must be https://');
+    }
+    // Construct JWKS URL from discovery
+    const discoveryUrl = `${issuerUrl}/.well-known/peac.txt`;
+    try {
+        const discoveryResp = await fetch(discoveryUrl, {
+            headers: { Accept: 'text/plain' },
+            // Timeout after 5 seconds
+            signal: AbortSignal.timeout(5000),
+        });
+        if (!discoveryResp.ok) {
+            throw new Error(`Discovery fetch failed: ${discoveryResp.status}`);
+        }
+        const discoveryText = await discoveryResp.text();
+        // Parse YAML-like discovery (simple key: value parsing)
+        const jwksLine = discoveryText.split('\n').find((line) => line.startsWith('jwks:'));
+        if (!jwksLine) {
+            throw new Error('No jwks field in discovery');
+        }
+        const jwksUrl = jwksLine.replace('jwks:', '').trim();
+        // SSRF protection: verify JWKS URL is also https://
+        if (!jwksUrl.startsWith('https://')) {
+            throw new Error('JWKS URL must be https://');
+        }
+        // Fetch JWKS
+        const jwksResp = await fetch(jwksUrl, {
+            headers: { Accept: 'application/json' },
+            signal: AbortSignal.timeout(5000),
+        });
+        if (!jwksResp.ok) {
+            throw new Error(`JWKS fetch failed: ${jwksResp.status}`);
+        }
+        const jwks = (await jwksResp.json());
+        return jwks;
+    }
+    catch (err) {
+        throw new Error(`JWKS fetch failed: ${err instanceof Error ? err.message : String(err)}`);
+    }
+}
+/**
+ * Get JWKS (from cache or fetch)
+ */
+async function getJWKS(issuerUrl) {
+    const now = Date.now();
+    // Check cache
+    const cached = jwksCache.get(issuerUrl);
+    if (cached && cached.expiresAt > now) {
+        return { jwks: cached.keys, fromCache: true };
+    }
+    // Fetch fresh JWKS
+    const jwks = await fetchJWKS(issuerUrl);
+    // Cache it
+    jwksCache.set(issuerUrl, {
+        keys: jwks,
+        expiresAt: now + CACHE_TTL_MS,
+    });
+    return { jwks, fromCache: false };
+}
+/**
+ * Convert JWK x coordinate to Ed25519 public key
+ */
+function jwkToPublicKey(jwk) {
+    if (jwk.kty !== 'OKP' || jwk.crv !== 'Ed25519') {
+        throw new Error('Only Ed25519 keys (OKP/Ed25519) are supported');
+    }
+    // Decode base64url x coordinate
+    const xBytes = Buffer.from(jwk.x, 'base64url');
+    if (xBytes.length !== 32) {
+        throw new Error('Ed25519 public key must be 32 bytes');
+    }
+    return new Uint8Array(xBytes);
+}
+/**
+ * Verify a PEAC receipt JWS
+ *
+ * @param optionsOrJws - Verify options or JWS compact serialization (for backwards compatibility)
+ * @returns Verification result or failure
+ */
+async function verifyReceipt(optionsOrJws) {
+    // Support both old (string) and new (options) signatures for backwards compatibility
+    const receiptJws = typeof optionsOrJws === 'string' ? optionsOrJws : optionsOrJws.receiptJws;
+    const inputSnapshot = typeof optionsOrJws === 'string' ? undefined : optionsOrJws.subject_snapshot;
+    const startTime = performance.now();
+    let jwksFetchTime;
+    try {
+        // Decode JWS to get issuer
+        const { header, payload } = (0, crypto_1.decode)(receiptJws);
+        // Validate claims structure
+        schema_1.ReceiptClaims.parse(payload);
+        // Check expiry
+        if (payload.exp && payload.exp < Math.floor(Date.now() / 1000)) {
+            return {
+                ok: false,
+                reason: 'expired',
+                details: `Receipt expired at ${new Date(payload.exp * 1000).toISOString()}`,
+            };
+        }
+        // Fetch JWKS
+        const jwksFetchStart = performance.now();
+        const { jwks, fromCache } = await getJWKS(payload.iss);
+        if (!fromCache) {
+            jwksFetchTime = performance.now() - jwksFetchStart;
+        }
+        // Find key by kid
+        const jwk = jwks.keys.find((k) => k.kid === header.kid);
+        if (!jwk) {
+            return {
+                ok: false,
+                reason: 'unknown_key',
+                details: `No key found with kid=${header.kid}`,
+            };
+        }
+        // Convert JWK to public key
+        const publicKey = jwkToPublicKey(jwk);
+        // Verify signature
+        const result = await (0, crypto_1.verify)(receiptJws, publicKey);
+        if (!result.valid) {
+            return {
+                ok: false,
+                reason: 'invalid_signature',
+                details: 'Ed25519 signature verification failed',
+            };
+        }
+        // Validate subject_snapshot if provided (v0.9.17+)
+        // This validates schema and logs advisory PII warning if applicable
+        const validatedSnapshot = (0, schema_1.validateSubjectSnapshot)(inputSnapshot);
+        const verifyTime = performance.now() - startTime;
+        return {
+            ok: true,
+            claims: payload,
+            ...(validatedSnapshot && { subject_snapshot: validatedSnapshot }),
+            perf: {
+                verify_ms: verifyTime,
+                ...(jwksFetchTime && { jwks_fetch_ms: jwksFetchTime }),
+            },
+        };
+    }
+    catch (err) {
+        return {
+            ok: false,
+            reason: 'verification_error',
+            details: err instanceof Error ? err.message : String(err),
+        };
+    }
+}
+//# sourceMappingURL=verify.js.map

package/dist/verify.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"verify.js","sourceRoot":"","sources":["../src/verify.ts"],"names":[],"mappings":";AAAA;;GAEG;;AA0LH,sCA+EC;AAvQD,yCAA2D;AAC3D,yCAKsB;AAmBtB;;;GAGG;AACH,MAAM,SAAS,GAAG,IAAI,GAAG,EAA6C,CAAC;AAEvE;;GAEG;AACH,MAAM,YAAY,GAAG,CAAC,GAAG,EAAE,GAAG,IAAI,CAAC;AAoCnC;;GAEG;AACH,KAAK,UAAU,SAAS,CAAC,SAAiB;IACxC,uCAAuC;IACvC,IAAI,CAAC,SAAS,CAAC,UAAU,CAAC,UAAU,CAAC,EAAE,CAAC;QACtC,MAAM,IAAI,KAAK,CAAC,6BAA6B,CAAC,CAAC;IACjD,CAAC;IAED,oCAAoC;IACpC,MAAM,YAAY,GAAG,GAAG,SAAS,uBAAuB,CAAC;IAEzD,IAAI,CAAC;QACH,MAAM,aAAa,GAAG,MAAM,KAAK,CAAC,YAAY,EAAE;YAC9C,OAAO,EAAE,EAAE,MAAM,EAAE,YAAY,EAAE;YACjC,0BAA0B;YAC1B,MAAM,EAAE,WAAW,CAAC,OAAO,CAAC,IAAI,CAAC;SAClC,CAAC,CAAC;QAEH,IAAI,CAAC,aAAa,CAAC,EAAE,EAAE,CAAC;YACtB,MAAM,IAAI,KAAK,CAAC,2BAA2B,aAAa,CAAC,MAAM,EAAE,CAAC,CAAC;QACrE,CAAC;QAED,MAAM,aAAa,GAAG,MAAM,aAAa,CAAC,IAAI,EAAE,CAAC;QAEjD,wDAAwD;QACxD,MAAM,QAAQ,GAAG,aAAa,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC,IAAI,CAAC,CAAC,IAAI,EAAE,EAAE,CAAC,IAAI,CAAC,UAAU,CAAC,OAAO,CAAC,CAAC,CAAC;QACpF,IAAI,CAAC,QAAQ,EAAE,CAAC;YACd,MAAM,IAAI,KAAK,CAAC,4BAA4B,CAAC,CAAC;QAChD,CAAC;QAED,MAAM,OAAO,GAAG,QAAQ,CAAC,OAAO,CAAC,OAAO,EAAE,EAAE,CAAC,CAAC,IAAI,EAAE,CAAC;QAErD,oDAAoD;QACpD,IAAI,CAAC,OAAO,CAAC,UAAU,CAAC,UAAU,CAAC,EAAE,CAAC;YACpC,MAAM,IAAI,KAAK,CAAC,2BAA2B,CAAC,CAAC;QAC/C,CAAC;QAED,aAAa;QACb,MAAM,QAAQ,GAAG,MAAM,KAAK,CAAC,OAAO,EAAE;YACpC,OAAO,EAAE,EAAE,MAAM,EAAE,kBAAkB,EAAE;YACvC,MAAM,EAAE,WAAW,CAAC,OAAO,CAAC,IAAI,CAAC;SAClC,CAAC,CAAC;QAEH,IAAI,CAAC,QAAQ,CAAC,EAAE,EAAE,CAAC;YACjB,MAAM,IAAI,KAAK,CAAC,sBAAsB,QAAQ,CAAC,MAAM,EAAE,CAAC,CAAC;QAC3D,CAAC;QAED,MAAM,IAAI,GAAG,CAAC,MAAM,QAAQ,CAAC,IAAI,EAAE,CAAS,CAAC;QAE7C,OAAO,IAAI,CAAC;IACd,CAAC;IAAC,OAAO,GAAG,EAAE,CAAC;QACb,MAAM,IAAI,KAAK,CAAC,sBAAsB,GAAG,YAAY,KAAK,CAAC,CAAC,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC;IAC5F,CAAC;AACH,CAAC;AAED;;GAEG;AACH,KAAK,UAAU,OAAO,CAAC,SAAiB;IACtC,MAAM,GAAG,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC;IAEvB,cAAc;IACd,MAAM,MAAM,GAAG,SAAS,CAAC,GAAG,CAAC,SAAS,CAAC,CAAC;IACxC,IAAI,MAAM,IAAI,MAAM,CAAC,SAAS,GAAG,GAAG,EAAE,CAAC;QACrC,OAAO,EAAE,IAAI,EAAE,MAAM,CAAC,IAAI,EAAE,SAAS,EAAE,IAAI,EAAE,CAAC;IAChD,CAAC;IAED,mBAAmB;IACnB,MAAM,IAAI,GAAG,MAAM,SAAS,CAAC,SAAS,CAAC,CAAC;IAExC,WAAW;IACX,SAAS,CAAC,GAAG,CAAC,SAAS,EAAE;QACvB,IAAI,EAAE,IAAI;QACV,SAAS,EAAE,GAAG,GAAG,YAAY;KAC9B,CAAC,CAAC;IAEH,OAAO,EAAE,IAAI,EAAE,SAAS,EAAE,KAAK,EAAE,CAAC;AACpC,CAAC;AAED;;GAEG;AACH,SAAS,cAAc,CAAC,GAAQ;IAC9B,IAAI,GAAG,CAAC,GAAG,KAAK,KAAK,IAAI,GAAG,CAAC,GAAG,KAAK,SAAS,EAAE,CAAC;QAC/C,MAAM,IAAI,KAAK,CAAC,+CAA+C,CAAC,CAAC;IACnE,CAAC;IAED,gCAAgC;IAChC,MAAM,MAAM,GAAG,MAAM,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC,EAAE,WAAW,CAAC,CAAC;IAC/C,IAAI,MAAM,CAAC,MAAM,KAAK,EAAE,EAAE,CAAC;QACzB,MAAM,IAAI,KAAK,CAAC,qCAAqC,CAAC,CAAC;IACzD,CAAC;IAED,OAAO,IAAI,UAAU,CAAC,MAAM,CAAC,CAAC;AAChC,CAAC;AAaD;;;;;GAKG;AACI,KAAK,UAAU,aAAa,CACjC,YAAoC;IAEpC,qFAAqF;IACrF,MAAM,UAAU,GAAG,OAAO,YAAY,KAAK,QAAQ,CAAC,CAAC,CAAC,YAAY,CAAC,CAAC,CAAC,YAAY,CAAC,UAAU,CAAC;IAC7F,MAAM,aAAa,GACjB,OAAO,YAAY,KAAK,QAAQ,CAAC,CAAC,CAAC,SAAS,CAAC,CAAC,CAAC,YAAY,CAAC,gBAAgB,CAAC;IAC/E,MAAM,SAAS,GAAG,WAAW,CAAC,GAAG,EAAE,CAAC;IACpC,IAAI,aAAiC,CAAC;IAEtC,IAAI,CAAC;QACH,2BAA2B;QAC3B,MAAM,EAAE,MAAM,EAAE,OAAO,EAAE,GAAG,IAAA,eAAM,EAAoB,UAAU,CAAC,CAAC;QAElE,4BAA4B;QAC5B,sBAAa,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC;QAE7B,eAAe;QACf,IAAI,OAAO,CAAC,GAAG,IAAI,OAAO,CAAC,GAAG,GAAG,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,GAAG,EAAE,GAAG,IAAI,CAAC,EAAE,CAAC;YAC/D,OAAO;gBACL,EAAE,EAAE,KAAK;gBACT,MAAM,EAAE,SAAS;gBACjB,OAAO,EAAE,sBAAsB,IAAI,IAAI,CAAC,OAAO,CAAC,GAAG,GAAG,IAAI,CAAC,CAAC,WAAW,EAAE,EAAE;aAC5E,CAAC;QACJ,CAAC;QAED,aAAa;QACb,MAAM,cAAc,GAAG,WAAW,CAAC,GAAG,EAAE,CAAC;QACzC,MAAM,EAAE,IAAI,EAAE,SAAS,EAAE,GAAG,MAAM,OAAO,CAAC,OAAO,CAAC,GAAG,CAAC,CAAC;QACvD,IAAI,CAAC,SAAS,EAAE,CAAC;YACf,aAAa,GAAG,WAAW,CAAC,GAAG,EAAE,GAAG,cAAc,CAAC;QACrD,CAAC;QAED,kBAAkB;QAClB,MAAM,GAAG,GAAG,IAAI,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,GAAG,KAAK,MAAM,CAAC,GAAG,CAAC,CAAC;QACxD,IAAI,CAAC,GAAG,EAAE,CAAC;YACT,OAAO;gBACL,EAAE,EAAE,KAAK;gBACT,MAAM,EAAE,aAAa;gBACrB,OAAO,EAAE,yBAAyB,MAAM,CAAC,GAAG,EAAE;aAC/C,CAAC;QACJ,CAAC;QAED,4BAA4B;QAC5B,MAAM,SAAS,GAAG,cAAc,CAAC,GAAG,CAAC,CAAC;QAEtC,mBAAmB;QACnB,MAAM,MAAM,GAAG,MAAM,IAAA,eAAS,EAAoB,UAAU,EAAE,SAAS,CAAC,CAAC;QAEzE,IAAI,CAAC,MAAM,CAAC,KAAK,EAAE,CAAC;YAClB,OAAO;gBACL,EAAE,EAAE,KAAK;gBACT,MAAM,EAAE,mBAAmB;gBAC3B,OAAO,EAAE,uCAAuC;aACjD,CAAC;QACJ,CAAC;QAED,mDAAmD;QACnD,oEAAoE;QACpE,MAAM,iBAAiB,GAAG,IAAA,gCAAuB,EAAC,aAAa,CAAC,CAAC;QAEjE,MAAM,UAAU,GAAG,WAAW,CAAC,GAAG,EAAE,GAAG,SAAS,CAAC;QAEjD,OAAO;YACL,EAAE,EAAE,IAAI;YACR,MAAM,EAAE,OAAO;YACf,GAAG,CAAC,iBAAiB,IAAI,EAAE,gBAAgB,EAAE,iBAAiB,EAAE,CAAC;YACjE,IAAI,EAAE;gBACJ,SAAS,EAAE,UAAU;gBACrB,GAAG,CAAC,aAAa,IAAI,EAAE,aAAa,EAAE,aAAa,EAAE,CAAC;aACvD;SACF,CAAC;IACJ,CAAC;IAAC,OAAO,GAAG,EAAE,CAAC;QACb,OAAO;YACL,EAAE,EAAE,KAAK;YACT,MAAM,EAAE,oBAAoB;YAC5B,OAAO,EAAE,GAAG,YAAY,KAAK,CAAC,CAAC,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,GAAG,CAAC;SAC1D,CAAC;IACJ,CAAC;AACH,CAAC"}

package/package.json

@@ -0,0 +1,41 @@
+{
+  "name": "@peac/protocol",
+  "version": "0.9.18",
+  "description": "PEAC protocol implementation - receipt issuance and verification",
+  "main": "dist/index.js",
+  "types": "dist/index.d.ts",
+  "repository": {
+    "type": "git",
+    "url": "https://github.com/peacprotocol/peac.git",
+    "directory": "packages/protocol"
+  },
+  "author": "jithinraj <7850727+jithinraj@users.noreply.github.com>",
+  "license": "Apache-2.0",
+  "bugs": {
+    "url": "https://github.com/peacprotocol/peac/issues"
+  },
+  "homepage": "https://github.com/peacprotocol/peac#readme",
+  "files": [
+    "dist",
+    "README.md"
+  ],
+  "publishConfig": {
+    "access": "public"
+  },
+  "scripts": {
+    "build": "tsc",
+    "test": "vitest run",
+    "test:watch": "vitest",
+    "clean": "rm -rf dist"
+  },
+  "dependencies": {
+    "@peac/schema": "workspace:*",
+    "@peac/crypto": "workspace:*",
+    "uuidv7": "^0.6.3"
+  },
+  "devDependencies": {
+    "@types/node": "^20.10.0",
+    "typescript": "^5.3.3",
+    "vitest": "^1.1.0"
+  }
+}