@puga-labs/x402-mantle-sdk 0.2.0 → 0.3.1

package/dist/chunk-Q6SPMEIW.js

@@ -0,0 +1,235 @@
+import {
+  MANTLE_DEFAULTS,
+  getDefaultAssetForNetwork,
+  usdCentsToAtomic
+} from "./chunk-XAQGMFSR.js";
+
+// src/server/constants.ts
+var DEFAULT_TELEMETRY_ENDPOINT = void 0;
+
+// src/server/telemetry.ts
+function createTelemetryEvent(entry, config) {
+  const assetConfig = getDefaultAssetForNetwork(entry.network);
+  return {
+    event: "payment_verified",
+    ts: entry.timestamp,
+    projectKey: config.projectKey,
+    network: entry.network,
+    buyer: entry.from,
+    payTo: entry.to,
+    amountAtomic: entry.valueAtomic,
+    asset: entry.asset,
+    decimals: assetConfig.decimals,
+    nonce: entry.id,
+    route: entry.route ?? "unknown",
+    // Facilitator metadata
+    facilitatorType: "hosted",
+    // SDK always uses hosted mode
+    facilitatorUrl: entry.facilitatorUrl,
+    // From PaymentLogEntry
+    // facilitatorAddress is undefined for SDK (not available)
+    // Optional metadata
+    txHash: entry.txHash,
+    priceUsd: entry.paymentRequirements?.price
+  };
+}
+async function sendTelemetry(event, endpoint) {
+  const targetEndpoint = endpoint ?? DEFAULT_TELEMETRY_ENDPOINT;
+  if (!targetEndpoint) {
+    return;
+  }
+  try {
+    const response = await fetch(targetEndpoint, {
+      method: "POST",
+      headers: {
+        "Content-Type": "application/json",
+        "Authorization": `Bearer ${event.projectKey}`
+      },
+      body: JSON.stringify(event)
+    });
+    if (!response.ok) {
+      console.warn(
+        `[x402-telemetry] Failed to send event: HTTP ${response.status}`
+      );
+    }
+  } catch (err) {
+    console.error("[x402-telemetry] Error sending telemetry:", err);
+  }
+}
+
+// src/server/paymentMiddleware.ts
+function getRouteKey(req) {
+  const method = (req.method || "GET").toUpperCase();
+  const path = req.path || "/";
+  return `${method} ${path}`;
+}
+function decodePaymentHeader(paymentHeaderBase64) {
+  try {
+    if (typeof Buffer !== "undefined") {
+      const json = Buffer.from(paymentHeaderBase64, "base64").toString("utf8");
+      return JSON.parse(json);
+    }
+    if (typeof atob === "function") {
+      const json = atob(paymentHeaderBase64);
+      return JSON.parse(json);
+    }
+    throw new Error("No base64 decoding available in this environment");
+  } catch (err) {
+    const msg = err instanceof Error ? err.message : "Unknown error";
+    throw new Error(`Failed to decode paymentHeader: ${msg}`);
+  }
+}
+function createPaymentMiddleware(config) {
+  const { facilitatorUrl, receiverAddress, routes, onPaymentSettled, telemetry } = config;
+  if (!facilitatorUrl) {
+    throw new Error("facilitatorUrl is required");
+  }
+  if (!receiverAddress) {
+    throw new Error("receiverAddress is required");
+  }
+  if (!routes || Object.keys(routes).length === 0) {
+    throw new Error("routes config must not be empty");
+  }
+  return async function paymentMiddleware(req, res, next) {
+    const routeKey = getRouteKey(req);
+    const routeConfig = routes[routeKey];
+    if (!routeConfig) {
+      next();
+      return;
+    }
+    const { priceUsdCents, network } = routeConfig;
+    const assetConfig = getDefaultAssetForNetwork(network);
+    const maxAmountRequiredBigInt = usdCentsToAtomic(
+      priceUsdCents,
+      assetConfig.decimals
+    );
+    const paymentRequirements = {
+      scheme: "exact",
+      network,
+      asset: assetConfig.address,
+      maxAmountRequired: maxAmountRequiredBigInt.toString(),
+      payTo: receiverAddress,
+      price: `$${(priceUsdCents / 100).toFixed(2)}`,
+      currency: "USD"
+    };
+    const paymentHeader = req.header("X-PAYMENT") ?? req.header("x-payment");
+    if (!paymentHeader) {
+      res.status(402).json({
+        error: "Payment Required",
+        paymentRequirements,
+        paymentHeader: null
+      });
+      return;
+    }
+    try {
+      const verifyUrl = `${facilitatorUrl.replace(/\/+$/, "")}/verify`;
+      const verifyRes = await fetch(verifyUrl, {
+        method: "POST",
+        headers: {
+          "Content-Type": "application/json"
+        },
+        body: JSON.stringify({
+          x402Version: 1,
+          paymentHeader,
+          paymentRequirements
+        })
+      });
+      if (!verifyRes.ok) {
+        const text = await verifyRes.text().catch(() => "");
+        console.error(
+          "[x402-mantle-sdk] Facilitator /verify returned non-OK:",
+          verifyRes.status,
+          text
+        );
+        res.status(500).json({
+          error: "Payment verification error",
+          details: `Facilitator responded with HTTP ${verifyRes.status}`
+        });
+        return;
+      }
+      const verifyJson = await verifyRes.json();
+      if (!verifyJson.isValid) {
+        res.status(402).json({
+          error: "Payment verification failed",
+          invalidReason: verifyJson.invalidReason ?? null,
+          paymentRequirements,
+          paymentHeader: null
+        });
+        return;
+      }
+      if (onPaymentSettled) {
+        try {
+          const headerObj = decodePaymentHeader(paymentHeader);
+          const { authorization } = headerObj.payload;
+          const logEntry = {
+            id: authorization.nonce,
+            from: authorization.from,
+            to: authorization.to,
+            valueAtomic: authorization.value,
+            network,
+            asset: assetConfig.address,
+            route: routeKey,
+            timestamp: Date.now(),
+            facilitatorUrl,
+            // Pass from config closure
+            paymentRequirements
+          };
+          onPaymentSettled(logEntry);
+          if (telemetry) {
+            const event = createTelemetryEvent(logEntry, telemetry);
+            sendTelemetry(event, telemetry.endpoint).catch(
+              (err) => console.error("[x402-telemetry] Async send failed:", err)
+            );
+          }
+        } catch (err) {
+          console.error(
+            "[x402-mantle-sdk] Error calling onPaymentSettled hook:",
+            err
+          );
+        }
+      }
+      next();
+      return;
+    } catch (err) {
+      console.error(
+        "[x402-mantle-sdk] Error while calling facilitator /verify:",
+        err
+      );
+      const message = err instanceof Error ? err.message : "Unknown verification error";
+      res.status(500).json({
+        error: "Payment verification error",
+        details: message
+      });
+      return;
+    }
+  };
+}
+
+// src/server/mantlePaywall.ts
+function mantlePaywall(opts) {
+  const { priceUsd, payTo, facilitatorUrl, telemetry, onPaymentSettled } = opts;
+  const priceUsdCents = Math.round(priceUsd * 100);
+  return async (req, res, next) => {
+    const method = (req.method || "GET").toUpperCase();
+    const path = req.path || "/";
+    const routeKey = `${method} ${path}`;
+    const middleware = createPaymentMiddleware({
+      facilitatorUrl: facilitatorUrl || MANTLE_DEFAULTS.FACILITATOR_URL,
+      receiverAddress: payTo,
+      routes: {
+        [routeKey]: {
+          priceUsdCents,
+          network: MANTLE_DEFAULTS.NETWORK
+        }
+      },
+      telemetry,
+      onPaymentSettled
+    });
+    return middleware(req, res, next);
+  };
+}
+
+export {
+  createPaymentMiddleware,
+  mantlePaywall
+};

package/dist/chunk-RNKXSBT7.js

@@ -0,0 +1,135 @@
+import {
+  createMantleClient
+} from "./chunk-TSEE5NSJ.js";
+
+// src/client/react/useEthersWallet.ts
+import { useState, useEffect, useCallback } from "react";
+import { ethers } from "ethers";
+function useEthersWallet(options) {
+  const [address, setAddress] = useState(void 0);
+  const [isConnected, setIsConnected] = useState(false);
+  const [provider, setProvider] = useState(
+    void 0
+  );
+  const [chainId, setChainId] = useState(void 0);
+  const [error, setError] = useState(void 0);
+  const connect = useCallback(async () => {
+    try {
+      setError(void 0);
+      if (typeof window === "undefined" || !window.ethereum) {
+        throw new Error(
+          "No Ethereum wallet detected. Please install MetaMask or another wallet."
+        );
+      }
+      const browserProvider = new ethers.BrowserProvider(
+        window.ethereum
+      );
+      setProvider(browserProvider);
+      const accounts = await window.ethereum.request({
+        method: "eth_requestAccounts"
+      });
+      if (!accounts || accounts.length === 0) {
+        throw new Error("No accounts returned from wallet");
+      }
+      const userAddress = accounts[0];
+      setAddress(userAddress);
+      setIsConnected(true);
+      const network = await browserProvider.getNetwork();
+      setChainId(Number(network.chainId));
+    } catch (err) {
+      const errorObj = err instanceof Error ? err : new Error(String(err));
+      setError(errorObj);
+      setIsConnected(false);
+      setAddress(void 0);
+      setChainId(void 0);
+      throw errorObj;
+    }
+  }, []);
+  const disconnect = useCallback(() => {
+    setAddress(void 0);
+    setIsConnected(false);
+    setChainId(void 0);
+    setError(void 0);
+  }, []);
+  useEffect(() => {
+    if (typeof window === "undefined" || !window.ethereum) return;
+    const ethereum = window.ethereum;
+    const handleAccountsChanged = (accounts) => {
+      const accountsArray = accounts;
+      if (!accountsArray || accountsArray.length === 0) {
+        disconnect();
+      } else {
+        setAddress(accountsArray[0]);
+        setIsConnected(true);
+      }
+    };
+    if (ethereum.on) {
+      ethereum.on("accountsChanged", handleAccountsChanged);
+    }
+    return () => {
+      if (ethereum.removeListener) {
+        ethereum.removeListener("accountsChanged", handleAccountsChanged);
+      }
+    };
+  }, [disconnect]);
+  useEffect(() => {
+    if (typeof window === "undefined" || !window.ethereum) return;
+    const ethereum = window.ethereum;
+    const handleChainChanged = (chainIdHex) => {
+      const newChainId = parseInt(chainIdHex, 16);
+      setChainId(newChainId);
+    };
+    if (ethereum.on) {
+      ethereum.on("chainChanged", handleChainChanged);
+    }
+    return () => {
+      if (ethereum.removeListener) {
+        ethereum.removeListener("chainChanged", handleChainChanged);
+      }
+    };
+  }, []);
+  useEffect(() => {
+    if (options?.autoConnect) {
+      connect().catch((err) => {
+        console.warn("[useEthersWallet] Auto-connect failed:", err);
+      });
+    }
+  }, [options?.autoConnect, connect]);
+  return {
+    address,
+    isConnected,
+    provider,
+    chainId,
+    connect,
+    disconnect,
+    error
+  };
+}
+
+// src/client/react/useMantleX402.ts
+function useMantleX402(opts) {
+  const { address, isConnected } = useEthersWallet({
+    autoConnect: opts?.autoConnect ?? false
+  });
+  const client = createMantleClient({
+    facilitatorUrl: opts?.facilitatorUrl,
+    resourceUrl: opts?.resourceUrl,
+    projectKey: opts?.projectKey,
+    getAccount: () => {
+      if (!isConnected || !address) return void 0;
+      return address;
+    },
+    getProvider: () => {
+      if (typeof window !== "undefined" && window.ethereum) {
+        return window.ethereum;
+      }
+      return void 0;
+    }
+  });
+  return client;
+}
+
+export {
+  useEthersWallet,
+  useMantleX402
+};

package/dist/chunk-SPCXFN7C.js

@@ -0,0 +1,284 @@
+import {
+  __require,
+  getChainIdForNetwork
+} from "./chunk-XAQGMFSR.js";
+
+// src/shared/utils.ts
+function encodeJsonToBase64(value) {
+  const json = JSON.stringify(value);
+  if (typeof btoa === "function") {
+    const bytes = new TextEncoder().encode(json);
+    const binString = Array.from(
+      bytes,
+      (byte) => String.fromCodePoint(byte)
+    ).join("");
+    return btoa(binString);
+  }
+  if (typeof globalThis.Buffer !== "undefined") {
+    return globalThis.Buffer.from(json, "utf8").toString("base64");
+  }
+  throw new Error("No base64 implementation found in this environment");
+}
+function randomBytes32Hex() {
+  if (typeof crypto !== "undefined" && "getRandomValues" in crypto) {
+    const arr = new Uint8Array(32);
+    crypto.getRandomValues(arr);
+    return "0x" + Array.from(arr).map((b) => b.toString(16).padStart(2, "0")).join("");
+  }
+  try {
+    const nodeCrypto = __require("crypto");
+    const buf = nodeCrypto.randomBytes(32);
+    return "0x" + buf.toString("hex");
+  } catch {
+    throw new Error(
+      "No cryptographically secure random number generator found. This environment does not support crypto.getRandomValues or Node.js crypto module."
+    );
+  }
+}
+
+// src/client/paymentClient.ts
+function joinUrl(base, path) {
+  const normalizedBase = base.replace(/\/+$/, "");
+  const normalizedPath = path.startsWith("/") ? path : `/${path}`;
+  return `${normalizedBase}${normalizedPath}`;
+}
+async function getUserAddressFromProvider(provider) {
+  const p = provider;
+  if (!p || typeof p.request !== "function") {
+    throw new Error("provider must implement EIP-1193 request()");
+  }
+  const accounts = await p.request({
+    method: "eth_requestAccounts"
+  });
+  if (!accounts || accounts.length === 0) {
+    throw new Error("No accounts returned from provider");
+  }
+  return accounts[0];
+}
+function buildTypedDataForAuthorization(authorization, paymentRequirements) {
+  const chainId = getChainIdForNetwork(paymentRequirements.network);
+  const verifyingContract = paymentRequirements.asset;
+  const domain = {
+    name: "USD Coin",
+    version: "2",
+    chainId,
+    verifyingContract
+  };
+  const types = {
+    TransferWithAuthorization: [
+      { name: "from", type: "address" },
+      { name: "to", type: "address" },
+      { name: "value", type: "uint256" },
+      { name: "validAfter", type: "uint256" },
+      { name: "validBefore", type: "uint256" },
+      { name: "nonce", type: "bytes32" }
+    ]
+  };
+  return {
+    domain,
+    types,
+    primaryType: "TransferWithAuthorization",
+    message: authorization
+  };
+}
+async function signAuthorizationWithProvider(provider, address, authorization, paymentRequirements) {
+  const p = provider;
+  if (!p || typeof p.request !== "function") {
+    throw new Error("provider must implement EIP-1193 request()");
+  }
+  const typedData = buildTypedDataForAuthorization(
+    authorization,
+    paymentRequirements
+  );
+  console.log("[SDK DEBUG] Signing with address:", address);
+  console.log("[SDK DEBUG] Authorization.from:", authorization.from);
+  console.log("[SDK DEBUG] Match:", address.toLowerCase() === authorization.from.toLowerCase());
+  console.log("[SDK DEBUG] EIP-712 domain:", typedData.domain);
+  const params = [address, JSON.stringify(typedData)];
+  const signature = await p.request({
+    method: "eth_signTypedData_v4",
+    params
+  });
+  console.log("[SDK DEBUG] Signature created:", signature);
+  if (typeof signature !== "string" || !signature.startsWith("0x")) {
+    throw new Error("Invalid signature returned from provider");
+  }
+  return signature;
+}
+function createPaymentClient(config) {
+  const {
+    resourceUrl,
+    facilitatorUrl,
+    provider,
+    userAddress: userAddressOverride,
+    projectKey
+  } = config;
+  if (!resourceUrl) {
+    throw new Error("resourceUrl is required");
+  }
+  if (!facilitatorUrl) {
+    throw new Error("facilitatorUrl is required");
+  }
+  if (!provider) {
+    throw new Error("provider is required (e.g. window.ethereum)");
+  }
+  return {
+    async callWithPayment(path, options) {
+      const method = options?.method ?? "GET";
+      const headers = {
+        ...options?.headers ?? {}
+      };
+      let body;
+      if (options?.body !== void 0) {
+        headers["Content-Type"] = headers["Content-Type"] ?? "application/json";
+        body = JSON.stringify(options.body);
+      }
+      const initialUrl = joinUrl(resourceUrl, path);
+      const initialRes = await fetch(initialUrl, {
+        method,
+        headers,
+        body
+      });
+      if (initialRes.status !== 402) {
+        const json = await initialRes.json().catch((err) => {
+          console.error("[x402] Failed to parse initial response JSON:", err);
+          return null;
+        });
+        return {
+          response: json,
+          txHash: void 0
+        };
+      }
+      const bodyJson = await initialRes.json();
+      const paymentRequirements = bodyJson.paymentRequirements;
+      if (!paymentRequirements) {
+        throw new Error(
+          "402 response did not include paymentRequirements field"
+        );
+      }
+      const fromAddress = userAddressOverride ?? await getUserAddressFromProvider(provider);
+      console.log("[SDK DEBUG] fromAddress determined:", fromAddress);
+      console.log("[SDK DEBUG] userAddressOverride:", userAddressOverride);
+      const nowSec = Math.floor(Date.now() / 1e3);
+      const validAfter = "0";
+      const validBefore = String(nowSec + 10 * 60);
+      const nonce = randomBytes32Hex();
+      const valueAtomic = options?.valueOverrideAtomic ?? paymentRequirements.maxAmountRequired;
+      const authorization = {
+        from: fromAddress,
+        to: paymentRequirements.payTo,
+        value: valueAtomic,
+        validAfter,
+        validBefore,
+        nonce
+      };
+      const signature = await signAuthorizationWithProvider(
+        provider,
+        fromAddress,
+        authorization,
+        paymentRequirements
+      );
+      const paymentHeaderObject = {
+        x402Version: 1,
+        scheme: paymentRequirements.scheme,
+        network: paymentRequirements.network,
+        payload: {
+          signature,
+          authorization
+        }
+      };
+      const paymentHeader = encodeJsonToBase64(paymentHeaderObject);
+      const settleUrl = joinUrl(facilitatorUrl, "/settle");
+      const settleRes = await fetch(settleUrl, {
+        method: "POST",
+        headers: {
+          "Content-Type": "application/json",
+          ...projectKey ? { "X-Project-Key": projectKey } : {}
+        },
+        body: JSON.stringify({
+          x402Version: 1,
+          paymentHeader,
+          paymentRequirements
+        })
+      });
+      if (!settleRes.ok) {
+        const text = await settleRes.text().catch((err) => {
+          console.error("[x402] Failed to read settle response text:", err);
+          return "";
+        });
+        throw new Error(
+          `Facilitator /settle failed with HTTP ${settleRes.status}: ${text}`
+        );
+      }
+      const settleJson = await settleRes.json();
+      if (!settleJson.success) {
+        throw new Error(
+          `Facilitator /settle returned error: ${settleJson.error ?? "unknown error"}`
+        );
+      }
+      const txHash = settleJson.txHash ?? void 0;
+      const retryHeaders = {
+        ...headers,
+        "X-PAYMENT": paymentHeader
+      };
+      const retryRes = await fetch(initialUrl, {
+        method,
+        headers: retryHeaders,
+        body
+      });
+      if (!retryRes.ok) {
+        const text = await retryRes.text().catch((err) => {
+          console.error("[x402] Failed to read retry response text:", err);
+          return "";
+        });
+        throw new Error(
+          `Protected request with X-PAYMENT failed: HTTP ${retryRes.status} ${text}`
+        );
+      }
+      const finalJson = await retryRes.json();
+      return {
+        response: finalJson,
+        txHash,
+        paymentHeader,
+        paymentRequirements
+      };
+    }
+  };
+}
+
+// src/client/createMantleClient.ts
+function createMantleClient(config) {
+  const resourceUrl = config?.resourceUrl ?? (typeof window !== "undefined" ? window.location.origin : "");
+  const facilitatorUrl = config?.facilitatorUrl ?? (typeof process !== "undefined" ? process.env?.NEXT_PUBLIC_FACILITATOR_URL : void 0) ?? "http://localhost:8080";
+  return {
+    async postWithPayment(url, body) {
+      const account = await config?.getAccount?.();
+      if (!account) {
+        throw new Error(
+          "Wallet not connected. Please connect your wallet first."
+        );
+      }
+      const provider = config?.getProvider?.();
+      if (!provider) {
+        throw new Error("Wallet provider not available");
+      }
+      const client = createPaymentClient({
+        resourceUrl,
+        facilitatorUrl,
+        provider,
+        userAddress: account,
+        projectKey: config?.projectKey
+      });
+      const result = await client.callWithPayment(url, {
+        method: "POST",
+        body
+      });
+      return result.response;
+    }
+  };
+}
+
+export {
+  createPaymentClient,
+  createMantleClient
+};