@peac/telemetry 0.9.31

package/dist/provider.js

@@ -0,0 +1,65 @@
+"use strict";
+/**
+ * @peac/telemetry - Provider registry
+ *
+ * Zero-throw provider ref pattern for hot-path performance.
+ * When undefined, telemetry is disabled with NO function calls.
+ */
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.providerRef = void 0;
+exports.setTelemetryProvider = setTelemetryProvider;
+exports.getTelemetryProvider = getTelemetryProvider;
+exports.isTelemetryEnabled = isTelemetryEnabled;
+/**
+ * Singleton provider reference for zero-overhead hot path.
+ *
+ * When undefined, telemetry is disabled with NO function calls
+ * beyond the initial `if (!p)` check.
+ *
+ * @example
+ * ```typescript
+ * // In hot path (issue/verify)
+ * const p = providerRef.current;
+ * if (p) {
+ *   try {
+ *     p.onReceiptIssued({ receiptHash: '...' });
+ *   } catch {
+ *     // Telemetry MUST NOT break core flow
+ *   }
+ * }
+ * ```
+ */
+exports.providerRef = {
+    current: undefined,
+};
+/**
+ * Set the telemetry provider.
+ *
+ * Idempotent, no-throw, safe to call multiple times.
+ * Pass undefined to disable telemetry.
+ *
+ * @param provider - The provider to use, or undefined to disable
+ */
+function setTelemetryProvider(provider) {
+    exports.providerRef.current = provider;
+}
+/**
+ * Get the current telemetry provider.
+ *
+ * Returns undefined if no provider is set (telemetry disabled).
+ *
+ * For hot paths, prefer direct access to `providerRef.current`
+ * to avoid the function call overhead.
+ */
+function getTelemetryProvider() {
+    return exports.providerRef.current;
+}
+/**
+ * Check if telemetry is enabled.
+ *
+ * Convenience function for conditional logic outside hot paths.
+ */
+function isTelemetryEnabled() {
+    return exports.providerRef.current !== undefined;
+}
+//# sourceMappingURL=provider.js.map

package/dist/provider.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"provider.js","sourceRoot":"","sources":["../src/provider.ts"],"names":[],"mappings":";AAAA;;;;;GAKG;;;AAmCH,oDAEC;AAUD,oDAEC;AAOD,gDAEC;AAtDD;;;;;;;;;;;;;;;;;;GAkBG;AACU,QAAA,WAAW,GAAoC;IAC1D,OAAO,EAAE,SAAS;CACnB,CAAC;AAEF;;;;;;;GAOG;AACH,SAAgB,oBAAoB,CAAC,QAAuC;IAC1E,mBAAW,CAAC,OAAO,GAAG,QAAQ,CAAC;AACjC,CAAC;AAED;;;;;;;GAOG;AACH,SAAgB,oBAAoB;IAClC,OAAO,mBAAW,CAAC,OAAO,CAAC;AAC7B,CAAC;AAED;;;;GAIG;AACH,SAAgB,kBAAkB;IAChC,OAAO,mBAAW,CAAC,OAAO,KAAK,SAAS,CAAC;AAC3C,CAAC"}

package/dist/types.d.ts

@@ -0,0 +1,129 @@
+/**
+ * @peac/telemetry - Telemetry types and interfaces
+ *
+ * This module defines the core telemetry interfaces for PEAC protocol.
+ * These are runtime-portable and have no external dependencies.
+ */
+/**
+ * Telemetry decision outcome
+ */
+export type TelemetryDecision = 'allow' | 'deny' | 'unknown';
+/**
+ * Privacy mode for telemetry emission
+ *
+ * - strict: Hash all identifiers, emit minimal data (production default)
+ * - balanced: Hash identifiers but include rail + amounts (debugging)
+ * - custom: Use allowlist-based filtering
+ */
+export type PrivacyMode = 'strict' | 'balanced' | 'custom';
+/**
+ * Telemetry configuration
+ */
+export interface TelemetryConfig {
+    /** Service name for resource identification */
+    serviceName: string;
+    /** Privacy mode: strict (hashes only), balanced, custom */
+    privacyMode?: PrivacyMode;
+    /** Allowlist for custom mode - only these attribute keys are emitted */
+    allowAttributes?: string[];
+    /** Custom redaction hook for edge cases */
+    redact?: (attrs: Record<string, unknown>) => Record<string, unknown>;
+    /** Enable experimental GenAI semantic conventions (default: false) */
+    enableExperimentalGenAI?: boolean;
+    /** Salt for privacy-preserving hashing (should be configured per deployment) */
+    hashSalt?: string;
+}
+/**
+ * Input for receipt issued telemetry event
+ */
+export interface ReceiptIssuedInput {
+    /** Hash of the receipt (never raw content) */
+    receiptHash: string;
+    /** Hash of the policy used */
+    policyHash?: string;
+    /** Issuer identifier (may be hashed based on privacy mode) */
+    issuer?: string;
+    /** Key ID used for signing */
+    kid?: string;
+    /** HTTP context (privacy-safe: path only, no query) */
+    http?: HttpContext;
+    /** Duration of issue operation in milliseconds */
+    durationMs?: number;
+}
+/**
+ * Input for receipt verified telemetry event
+ */
+export interface ReceiptVerifiedInput {
+    /** Hash of the receipt */
+    receiptHash: string;
+    /** Issuer identifier */
+    issuer?: string;
+    /** Key ID used */
+    kid?: string;
+    /** Whether verification succeeded */
+    valid: boolean;
+    /** Reason code if verification failed */
+    reasonCode?: string;
+    /** HTTP context */
+    http?: HttpContext;
+    /** Duration of verify operation in milliseconds */
+    durationMs?: number;
+}
+/**
+ * Input for access decision telemetry event
+ */
+export interface AccessDecisionInput {
+    /** Hash of the receipt (if present) */
+    receiptHash?: string;
+    /** Hash of the policy evaluated */
+    policyHash?: string;
+    /** Decision outcome */
+    decision: TelemetryDecision;
+    /** Reason code for the decision */
+    reasonCode?: string;
+    /** Payment context (balanced/custom mode only) */
+    payment?: PaymentContext;
+    /** HTTP context */
+    http?: HttpContext;
+}
+/**
+ * HTTP context for telemetry (privacy-safe subset)
+ */
+export interface HttpContext {
+    /** HTTP method */
+    method?: string;
+    /** URL path (no query string) */
+    path?: string;
+}
+/**
+ * Payment context for telemetry (balanced/custom mode only)
+ */
+export interface PaymentContext {
+    /** Payment rail identifier */
+    rail?: string;
+    /** Amount in minor units */
+    amount?: number;
+    /** Currency code */
+    currency?: string;
+}
+/**
+ * Telemetry provider interface
+ *
+ * Implementations SHOULD be no-throw. PEAC guards all calls,
+ * but well-behaved providers should not throw.
+ */
+export interface TelemetryProvider {
+    /**
+     * Called when a receipt is issued
+     */
+    onReceiptIssued(input: ReceiptIssuedInput): void;
+    /**
+     * Called when a receipt is verified
+     */
+    onReceiptVerified(input: ReceiptVerifiedInput): void;
+    /**
+     * Called when an access decision is made
+     */
+    onAccessDecision(input: AccessDecisionInput): void;
+}
+//# sourceMappingURL=types.d.ts.map

package/dist/types.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"types.d.ts","sourceRoot":"","sources":["../src/types.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAEH;;GAEG;AACH,MAAM,MAAM,iBAAiB,GAAG,OAAO,GAAG,MAAM,GAAG,SAAS,CAAC;AAE7D;;;;;;GAMG;AACH,MAAM,MAAM,WAAW,GAAG,QAAQ,GAAG,UAAU,GAAG,QAAQ,CAAC;AAE3D;;GAEG;AACH,MAAM,WAAW,eAAe;IAC9B,+CAA+C;IAC/C,WAAW,EAAE,MAAM,CAAC;IAEpB,2DAA2D;IAC3D,WAAW,CAAC,EAAE,WAAW,CAAC;IAE1B,wEAAwE;IACxE,eAAe,CAAC,EAAE,MAAM,EAAE,CAAC;IAE3B,2CAA2C;IAC3C,MAAM,CAAC,EAAE,CAAC,KAAK,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,KAAK,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;IAErE,sEAAsE;IACtE,uBAAuB,CAAC,EAAE,OAAO,CAAC;IAElC,gFAAgF;IAChF,QAAQ,CAAC,EAAE,MAAM,CAAC;CACnB;AAED;;GAEG;AACH,MAAM,WAAW,kBAAkB;IACjC,8CAA8C;IAC9C,WAAW,EAAE,MAAM,CAAC;IAEpB,8BAA8B;IAC9B,UAAU,CAAC,EAAE,MAAM,CAAC;IAEpB,8DAA8D;IAC9D,MAAM,CAAC,EAAE,MAAM,CAAC;IAEhB,8BAA8B;IAC9B,GAAG,CAAC,EAAE,MAAM,CAAC;IAEb,uDAAuD;IACvD,IAAI,CAAC,EAAE,WAAW,CAAC;IAEnB,kDAAkD;IAClD,UAAU,CAAC,EAAE,MAAM,CAAC;CACrB;AAED;;GAEG;AACH,MAAM,WAAW,oBAAoB;IACnC,0BAA0B;IAC1B,WAAW,EAAE,MAAM,CAAC;IAEpB,wBAAwB;IACxB,MAAM,CAAC,EAAE,MAAM,CAAC;IAEhB,kBAAkB;IAClB,GAAG,CAAC,EAAE,MAAM,CAAC;IAEb,qCAAqC;IACrC,KAAK,EAAE,OAAO,CAAC;IAEf,yCAAyC;IACzC,UAAU,CAAC,EAAE,MAAM,CAAC;IAEpB,mBAAmB;IACnB,IAAI,CAAC,EAAE,WAAW,CAAC;IAEnB,mDAAmD;IACnD,UAAU,CAAC,EAAE,MAAM,CAAC;CACrB;AAED;;GAEG;AACH,MAAM,WAAW,mBAAmB;IAClC,uCAAuC;IACvC,WAAW,CAAC,EAAE,MAAM,CAAC;IAErB,mCAAmC;IACnC,UAAU,CAAC,EAAE,MAAM,CAAC;IAEpB,uBAAuB;IACvB,QAAQ,EAAE,iBAAiB,CAAC;IAE5B,mCAAmC;IACnC,UAAU,CAAC,EAAE,MAAM,CAAC;IAEpB,kDAAkD;IAClD,OAAO,CAAC,EAAE,cAAc,CAAC;IAEzB,mBAAmB;IACnB,IAAI,CAAC,EAAE,WAAW,CAAC;CACpB;AAED;;GAEG;AACH,MAAM,WAAW,WAAW;IAC1B,kBAAkB;IAClB,MAAM,CAAC,EAAE,MAAM,CAAC;IAEhB,iCAAiC;IACjC,IAAI,CAAC,EAAE,MAAM,CAAC;CACf;AAED;;GAEG;AACH,MAAM,WAAW,cAAc;IAC7B,8BAA8B;IAC9B,IAAI,CAAC,EAAE,MAAM,CAAC;IAEd,4BAA4B;IAC5B,MAAM,CAAC,EAAE,MAAM,CAAC;IAEhB,oBAAoB;IACpB,QAAQ,CAAC,EAAE,MAAM,CAAC;CACnB;AAED;;;;;GAKG;AACH,MAAM,WAAW,iBAAiB;IAChC;;OAEG;IACH,eAAe,CAAC,KAAK,EAAE,kBAAkB,GAAG,IAAI,CAAC;IAEjD;;OAEG;IACH,iBAAiB,CAAC,KAAK,EAAE,oBAAoB,GAAG,IAAI,CAAC;IAErD;;OAEG;IACH,gBAAgB,CAAC,KAAK,EAAE,mBAAmB,GAAG,IAAI,CAAC;CACpD"}

package/dist/types.js

@@ -0,0 +1,9 @@
+"use strict";
+/**
+ * @peac/telemetry - Telemetry types and interfaces
+ *
+ * This module defines the core telemetry interfaces for PEAC protocol.
+ * These are runtime-portable and have no external dependencies.
+ */
+Object.defineProperty(exports, "__esModule", { value: true });
+//# sourceMappingURL=types.js.map

package/dist/types.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"types.js","sourceRoot":"","sources":["../src/types.ts"],"names":[],"mappings":";AAAA;;;;;GAKG"}

package/package.json

@@ -0,0 +1,37 @@
+{
+  "name": "@peac/telemetry",
+  "version": "0.9.31",
+  "description": "Telemetry interfaces and no-op implementation for PEAC protocol",
+  "main": "dist/index.js",
+  "types": "dist/index.d.ts",
+  "exports": {
+    ".": {
+      "types": "./dist/index.d.ts",
+      "require": "./dist/index.js",
+      "import": "./dist/index.js"
+    }
+  },
+  "repository": {
+    "type": "git",
+    "url": "https://github.com/peacprotocol/peac.git",
+    "directory": "packages/telemetry"
+  },
+  "author": "PEAC Protocol contributors",
+  "license": "Apache-2.0",
+  "dependencies": {
+    "@peac/kernel": "0.9.31"
+  },
+  "devDependencies": {
+    "@types/node": "^20.10.0",
+    "typescript": "^5.3.3",
+    "vitest": "^1.6.0"
+  },
+  "sideEffects": false,
+  "scripts": {
+    "build": "tsc",
+    "typecheck": "tsc --noEmit",
+    "test": "vitest run",
+    "test:watch": "vitest",
+    "clean": "rm -rf dist"
+  }
+}

package/src/attributes.ts

@@ -0,0 +1,71 @@
+/**
+ * @peac/telemetry - Attribute constants
+ *
+ * Standard attribute names for PEAC telemetry.
+ * Uses stable OTel semantic conventions where applicable.
+ */
+
+/**
+ * PEAC-specific attribute names
+ */
+export const PEAC_ATTRS = {
+  // Core (always emitted)
+  VERSION: 'peac.version',
+  EVENT: 'peac.event',
+  RECEIPT_HASH: 'peac.receipt.hash',
+  POLICY_HASH: 'peac.policy.hash',
+  DECISION: 'peac.decision',
+  REASON_CODE: 'peac.reason_code',
+  ISSUER: 'peac.issuer',
+  ISSUER_HASH: 'peac.issuer_hash',
+  KID: 'peac.kid',
+  VALID: 'peac.valid',
+
+  // HTTP (privacy-safe, stable OTel semconv)
+  HTTP_METHOD: 'http.request.method',
+  HTTP_PATH: 'url.path', // No query string
+  HTTP_HOST_HASH: 'peac.http.host_hash',
+  HTTP_CLIENT_HASH: 'peac.http.client_hash',
+
+  // Payment (balanced/custom mode only)
+  PAYMENT_RAIL: 'peac.payment.rail',
+  PAYMENT_AMOUNT: 'peac.payment.amount',
+  PAYMENT_CURRENCY: 'peac.payment.currency',
+
+  // Duration
+  DURATION_MS: 'peac.duration_ms',
+} as const;
+
+/**
+ * PEAC event names
+ */
+export const PEAC_EVENTS = {
+  RECEIPT_ISSUED: 'peac.receipt.issued',
+  RECEIPT_VERIFIED: 'peac.receipt.verified',
+  ACCESS_DECISION: 'peac.access.decision',
+} as const;
+
+/**
+ * PEAC metric names
+ */
+export const PEAC_METRICS = {
+  // Counters
+  RECEIPTS_ISSUED: 'peac.receipts.issued',
+  RECEIPTS_VERIFIED: 'peac.receipts.verified',
+  ACCESS_DECISIONS: 'peac.access.decisions',
+
+  // Histograms
+  ISSUE_DURATION: 'peac.issue.duration',
+  VERIFY_DURATION: 'peac.verify.duration',
+} as const;
+
+/**
+ * Extension keys for trace context binding
+ *
+ * Uses w3c/ namespace for vendor neutrality.
+ * W3C owns the Trace Context spec; OTel implements it.
+ */
+export const TRACE_CONTEXT_EXTENSIONS = {
+  TRACEPARENT: 'w3c/traceparent',
+  TRACESTATE: 'w3c/tracestate',
+} as const;

package/src/index.ts

@@ -0,0 +1,63 @@
+/**
+ * @peac/telemetry
+ *
+ * Telemetry interfaces and no-op implementation for PEAC protocol.
+ *
+ * This package provides:
+ * - Core telemetry interfaces (TelemetryProvider, inputs, config)
+ * - No-op provider for when telemetry is disabled
+ * - Provider registry for global telemetry configuration
+ * - Attribute constants for consistent naming
+ *
+ * @example
+ * ```typescript
+ * import {
+ *   setTelemetryProvider,
+ *   providerRef,
+ *   noopProvider,
+ *   PEAC_ATTRS,
+ * } from '@peac/telemetry';
+ *
+ * // Enable telemetry with a custom provider
+ * setTelemetryProvider(myOtelProvider);
+ *
+ * // In hot path (zero overhead when disabled)
+ * const p = providerRef.current;
+ * if (p) {
+ *   try {
+ *     p.onReceiptIssued({ receiptHash: '...' });
+ *   } catch {
+ *     // Telemetry MUST NOT break core flow
+ *   }
+ * }
+ * ```
+ *
+ * @packageDocumentation
+ */
+
+// Types
+export type {
+  TelemetryDecision,
+  PrivacyMode,
+  TelemetryConfig,
+  TelemetryProvider,
+  ReceiptIssuedInput,
+  ReceiptVerifiedInput,
+  AccessDecisionInput,
+  HttpContext,
+  PaymentContext,
+} from './types.js';
+
+// No-op provider
+export { noopProvider } from './noop.js';
+
+// Provider registry
+export {
+  providerRef,
+  setTelemetryProvider,
+  getTelemetryProvider,
+  isTelemetryEnabled,
+} from './provider.js';
+
+// Attribute constants
+export { PEAC_ATTRS, PEAC_EVENTS, PEAC_METRICS, TRACE_CONTEXT_EXTENSIONS } from './attributes.js';

package/src/noop.ts

@@ -0,0 +1,20 @@
+/**
+ * @peac/telemetry - No-op telemetry provider
+ *
+ * This provider does nothing. Use it when telemetry is disabled
+ * or when you need a fallback provider.
+ */
+
+import type { TelemetryProvider } from './types.js';
+
+/**
+ * No-op telemetry provider
+ *
+ * All methods are empty functions that do nothing.
+ * Use this as the default when no telemetry is configured.
+ */
+export const noopProvider: TelemetryProvider = {
+  onReceiptIssued: () => {},
+  onReceiptVerified: () => {},
+  onAccessDecision: () => {},
+};

package/src/provider.ts

@@ -0,0 +1,64 @@
+/**
+ * @peac/telemetry - Provider registry
+ *
+ * Zero-throw provider ref pattern for hot-path performance.
+ * When undefined, telemetry is disabled with NO function calls.
+ */
+
+import type { TelemetryProvider } from './types.js';
+
+/**
+ * Singleton provider reference for zero-overhead hot path.
+ *
+ * When undefined, telemetry is disabled with NO function calls
+ * beyond the initial `if (!p)` check.
+ *
+ * @example
+ * ```typescript
+ * // In hot path (issue/verify)
+ * const p = providerRef.current;
+ * if (p) {
+ *   try {
+ *     p.onReceiptIssued({ receiptHash: '...' });
+ *   } catch {
+ *     // Telemetry MUST NOT break core flow
+ *   }
+ * }
+ * ```
+ */
+export const providerRef: { current?: TelemetryProvider } = {
+  current: undefined,
+};
+
+/**
+ * Set the telemetry provider.
+ *
+ * Idempotent, no-throw, safe to call multiple times.
+ * Pass undefined to disable telemetry.
+ *
+ * @param provider - The provider to use, or undefined to disable
+ */
+export function setTelemetryProvider(provider: TelemetryProvider | undefined): void {
+  providerRef.current = provider;
+}
+
+/**
+ * Get the current telemetry provider.
+ *
+ * Returns undefined if no provider is set (telemetry disabled).
+ *
+ * For hot paths, prefer direct access to `providerRef.current`
+ * to avoid the function call overhead.
+ */
+export function getTelemetryProvider(): TelemetryProvider | undefined {
+  return providerRef.current;
+}
+
+/**
+ * Check if telemetry is enabled.
+ *
+ * Convenience function for conditional logic outside hot paths.
+ */
+export function isTelemetryEnabled(): boolean {
+  return providerRef.current !== undefined;
+}

package/src/types.ts

@@ -0,0 +1,163 @@
+/**
+ * @peac/telemetry - Telemetry types and interfaces
+ *
+ * This module defines the core telemetry interfaces for PEAC protocol.
+ * These are runtime-portable and have no external dependencies.
+ */
+
+/**
+ * Telemetry decision outcome
+ */
+export type TelemetryDecision = 'allow' | 'deny' | 'unknown';
+
+/**
+ * Privacy mode for telemetry emission
+ *
+ * - strict: Hash all identifiers, emit minimal data (production default)
+ * - balanced: Hash identifiers but include rail + amounts (debugging)
+ * - custom: Use allowlist-based filtering
+ */
+export type PrivacyMode = 'strict' | 'balanced' | 'custom';
+
+/**
+ * Telemetry configuration
+ */
+export interface TelemetryConfig {
+  /** Service name for resource identification */
+  serviceName: string;
+
+  /** Privacy mode: strict (hashes only), balanced, custom */
+  privacyMode?: PrivacyMode;
+
+  /** Allowlist for custom mode - only these attribute keys are emitted */
+  allowAttributes?: string[];
+
+  /** Custom redaction hook for edge cases */
+  redact?: (attrs: Record<string, unknown>) => Record<string, unknown>;
+
+  /** Enable experimental GenAI semantic conventions (default: false) */
+  enableExperimentalGenAI?: boolean;
+
+  /** Salt for privacy-preserving hashing (should be configured per deployment) */
+  hashSalt?: string;
+}
+
+/**
+ * Input for receipt issued telemetry event
+ */
+export interface ReceiptIssuedInput {
+  /** Hash of the receipt (never raw content) */
+  receiptHash: string;
+
+  /** Hash of the policy used */
+  policyHash?: string;
+
+  /** Issuer identifier (may be hashed based on privacy mode) */
+  issuer?: string;
+
+  /** Key ID used for signing */
+  kid?: string;
+
+  /** HTTP context (privacy-safe: path only, no query) */
+  http?: HttpContext;
+
+  /** Duration of issue operation in milliseconds */
+  durationMs?: number;
+}
+
+/**
+ * Input for receipt verified telemetry event
+ */
+export interface ReceiptVerifiedInput {
+  /** Hash of the receipt */
+  receiptHash: string;
+
+  /** Issuer identifier */
+  issuer?: string;
+
+  /** Key ID used */
+  kid?: string;
+
+  /** Whether verification succeeded */
+  valid: boolean;
+
+  /** Reason code if verification failed */
+  reasonCode?: string;
+
+  /** HTTP context */
+  http?: HttpContext;
+
+  /** Duration of verify operation in milliseconds */
+  durationMs?: number;
+}
+
+/**
+ * Input for access decision telemetry event
+ */
+export interface AccessDecisionInput {
+  /** Hash of the receipt (if present) */
+  receiptHash?: string;
+
+  /** Hash of the policy evaluated */
+  policyHash?: string;
+
+  /** Decision outcome */
+  decision: TelemetryDecision;
+
+  /** Reason code for the decision */
+  reasonCode?: string;
+
+  /** Payment context (balanced/custom mode only) */
+  payment?: PaymentContext;
+
+  /** HTTP context */
+  http?: HttpContext;
+}
+
+/**
+ * HTTP context for telemetry (privacy-safe subset)
+ */
+export interface HttpContext {
+  /** HTTP method */
+  method?: string;
+
+  /** URL path (no query string) */
+  path?: string;
+}
+
+/**
+ * Payment context for telemetry (balanced/custom mode only)
+ */
+export interface PaymentContext {
+  /** Payment rail identifier */
+  rail?: string;
+
+  /** Amount in minor units */
+  amount?: number;
+
+  /** Currency code */
+  currency?: string;
+}
+
+/**
+ * Telemetry provider interface
+ *
+ * Implementations SHOULD be no-throw. PEAC guards all calls,
+ * but well-behaved providers should not throw.
+ */
+export interface TelemetryProvider {
+  /**
+   * Called when a receipt is issued
+   */
+  onReceiptIssued(input: ReceiptIssuedInput): void;
+
+  /**
+   * Called when a receipt is verified
+   */
+  onReceiptVerified(input: ReceiptVerifiedInput): void;
+
+  /**
+   * Called when an access decision is made
+   */
+  onAccessDecision(input: AccessDecisionInput): void;
+}