@singularity-payments/nuxt 0.1.0-alpha.1

package/LICENSE

@@ -0,0 +1,201 @@
+                                 Apache License
+                           Version 2.0, January 2004
+                        http://www.apache.org/licenses/
+
+   TERMS AND CONDITIONS FOR USE, REPRODUCTION, AND DISTRIBUTION
+
+   1. Definitions.
+
+      "License" shall mean the terms and conditions for use, reproduction,
+      and distribution as defined by Sections 1 through 9 of this document.
+
+      "Licensor" shall mean the copyright owner or entity authorized by
+      the copyright owner that is granting the License.
+
+      "Legal Entity" shall mean the union of the acting entity and all
+      other entities that control, are controlled by, or are under common
+      control with that entity. For the purposes of this definition,
+      "control" means (i) the power, direct or indirect, to cause the
+      direction or management of such entity, whether by contract or
+      otherwise, or (ii) ownership of fifty percent (50%) or more of the
+      outstanding shares, or (iii) beneficial ownership of such entity.
+
+      "You" (or "Your") shall mean an individual or Legal Entity
+      exercising permissions granted by this License.
+
+      "Source" form shall mean the preferred form for making modifications,
+      including but not limited to software source code, documentation
+      source, and configuration files.
+
+      "Object" form shall mean any form resulting from mechanical
+      transformation or translation of a Source form, including but
+      not limited to compiled object code, generated documentation,
+      and conversions to other media types.
+
+      "Work" shall mean the work of authorship, whether in Source or
+      Object form, made available under the License, as indicated by a
+      copyright notice that is included in or attached to the work
+      (an example is provided in the Appendix below).
+
+      "Derivative Works" shall mean any work, whether in Source or Object
+      form, that is based on (or derived from) the Work and for which the
+      editorial revisions, annotations, elaborations, or other modifications
+      represent, as a whole, an original work of authorship. For the purposes
+      of this License, Derivative Works shall not include works that remain
+      separable from, or merely link (or bind by name) to the interfaces of,
+      the Work and Derivative Works thereof.
+
+      "Contribution" shall mean any work of authorship, including
+      the original version of the Work and any modifications or additions
+      to that Work or Derivative Works thereof, that is intentionally
+      submitted to Licensor for inclusion in the Work by the copyright owner
+      or by an individual or Legal Entity authorized to submit on behalf of
+      the copyright owner. For the purposes of this definition, "submitted"
+      means any form of electronic, verbal, or written communication sent
+      to the Licensor or its representatives, including but not limited to
+      communication on electronic mailing lists, source code control systems,
+      and issue tracking systems that are managed by, or on behalf of, the
+      Licensor for the purpose of discussing and improving the Work, but
+      excluding communication that is conspicuously marked or otherwise
+      designated in writing by the copyright owner as "Not a Contribution."
+
+      "Contributor" shall mean Licensor and any individual or Legal Entity
+      on behalf of whom a Contribution has been received by Licensor and
+      subsequently incorporated within the Work.
+
+   2. Grant of Copyright License. Subject to the terms and conditions of
+      this License, each Contributor hereby grants to You a perpetual,
+      worldwide, non-exclusive, no-charge, royalty-free, irrevocable
+      copyright license to reproduce, prepare Derivative Works of,
+      publicly display, publicly perform, sublicense, and distribute the
+      Work and such Derivative Works in Source or Object form.
+
+   3. Grant of Patent License. Subject to the terms and conditions of
+      this License, each Contributor hereby grants to You a perpetual,
+      worldwide, non-exclusive, no-charge, royalty-free, irrevocable
+      (except as stated in this section) patent license to make, have made,
+      use, offer to sell, sell, import, and otherwise transfer the Work,
+      where such license applies only to those patent claims licensable
+      by such Contributor that are necessarily infringed by their
+      Contribution(s) alone or by combination of their Contribution(s)
+      with the Work to which such Contribution(s) was submitted. If You
+      institute patent litigation against any entity (including a
+      cross-claim or counterclaim in a lawsuit) alleging that the Work
+      or a Contribution incorporated within the Work constitutes direct
+      or contributory patent infringement, then any patent licenses
+      granted to You under this License for that Work shall terminate
+      as of the date such litigation is filed.
+
+   4. Redistribution. You may reproduce and distribute copies of the
+      Work or Derivative Works thereof in any medium, with or without
+      modifications, and in Source or Object form, provided that You
+      meet the following conditions:
+
+      (a) You must give any other recipients of the Work or
+          Derivative Works a copy of this License; and
+
+      (b) You must cause any modified files to carry prominent notices
+          stating that You changed the files; and
+
+      (c) You must retain, in the Source form of any Derivative Works
+          that You distribute, all copyright, patent, trademark, and
+          attribution notices from the Source form of the Work,
+          excluding those notices that do not pertain to any part of
+          the Derivative Works; and
+
+      (d) If the Work includes a "NOTICE" text file as part of its
+          distribution, then any Derivative Works that You distribute must
+          include a readable copy of the attribution notices contained
+          within such NOTICE file, excluding those notices that do not
+          pertain to any part of the Derivative Works, in at least one
+          of the following places: within a NOTICE text file distributed
+          as part of the Derivative Works; within the Source form or
+          documentation, if provided along with the Derivative Works; or,
+          within a display generated by the Derivative Works, if and
+          wherever such third-party notices normally appear. The contents
+          of the NOTICE file are for informational purposes only and
+          do not modify the License. You may add Your own attribution
+          notices within Derivative Works that You distribute, alongside
+          or as an addendum to the NOTICE text from the Work, provided
+          that such additional attribution notices cannot be construed
+          as modifying the License.
+
+      You may add Your own copyright statement to Your modifications and
+      may provide additional or different license terms and conditions
+      for use, reproduction, or distribution of Your modifications, or
+      for any such Derivative Works as a whole, provided Your use,
+      reproduction, and distribution of the Work otherwise complies with
+      the conditions stated in this License.
+
+   5. Submission of Contributions. Unless You explicitly state otherwise,
+      any Contribution intentionally submitted for inclusion in the Work
+      by You to the Licensor shall be under the terms and conditions of
+      this License, without any additional terms or conditions.
+      Notwithstanding the above, nothing herein shall supersede or modify
+      the terms of any separate license agreement you may have executed
+      with Licensor regarding such Contributions.
+
+   6. Trademarks. This License does not grant permission to use the trade
+      names, trademarks, service marks, or product names of the Licensor,
+      except as required for reasonable and customary use in describing the
+      origin of the Work and reproducing the content of the NOTICE file.
+
+   7. Disclaimer of Warranty. Unless required by applicable law or
+      agreed to in writing, Licensor provides the Work (and each
+      Contributor provides its Contributions) on an "AS IS" BASIS,
+      WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or
+      implied, including, without limitation, any warranties or conditions
+      of TITLE, NON-INFRINGEMENT, MERCHANTABILITY, or FITNESS FOR A
+      PARTICULAR PURPOSE. You are solely responsible for determining the
+      appropriateness of using or redistributing the Work and assume any
+      risks associated with Your exercise of permissions under this License.
+
+   8. Limitation of Liability. In no event and under no legal theory,
+      whether in tort (including negligence), contract, or otherwise,
+      unless required by applicable law (such as deliberate and grossly
+      negligent acts) or agreed to in writing, shall any Contributor be
+      liable to You for damages, including any direct, indirect, special,
+      incidental, or consequential damages of any character arising as a
+      result of this License or out of the use or inability to use the
+      Work (including but not limited to damages for loss of goodwill,
+      work stoppage, computer failure or malfunction, or any and all
+      other commercial damages or losses), even if such Contributor
+      has been advised of the possibility of such damages.
+
+   9. Accepting Warranty or Additional Liability. While redistributing
+      the Work or Derivative Works thereof, You may choose to offer,
+      and charge a fee for, acceptance of support, warranty, indemnity,
+      or other liability obligations and/or rights consistent with this
+      License. However, in accepting such obligations, You may act only
+      on Your own behalf and on Your sole responsibility, not on behalf
+      of any other Contributor, and only if You agree to indemnify,
+      defend, and hold each Contributor harmless for any liability
+      incurred by, or claims asserted against, such Contributor by reason
+      of your accepting any such warranty or additional liability.
+
+   END OF TERMS AND CONDITIONS
+
+   APPENDIX: How to apply the Apache License to your work.
+
+      To apply the Apache License to your work, attach the following
+      boilerplate notice, with the fields enclosed by brackets "[]"
+      replaced with your own identifying information. (Don't include
+      the brackets!)  The text should be enclosed in the appropriate
+      comment syntax for the file format. We also recommend that a
+      file or class name and description of purpose be included on the
+      same "printed page" as the copyright notice for easier
+      identification within third-party archives.
+
+   Copyright [yyyy] [name of copyright owner]
+
+   Licensed under the Apache License, Version 2.0 (the "License");
+   you may not use this file except in compliance with the License.
+   You may obtain a copy of the License at
+
+       http://www.apache.org/licenses/LICENSE-2.0
+
+   Unless required by applicable law or agreed to in writing, software
+   distributed under the License is distributed on an "AS IS" BASIS,
+   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+   See the License for the specific language governing permissions and
+   limitations under the License.

package/dist/index.d.mts

@@ -0,0 +1,67 @@
+import { EventHandler } from 'h3';
+import { MpesaClient, MpesaConfig, MpesaClientOptions } from '@singularity-payments/core';
+export { C2BCallback, C2BRegisterRequest, C2BRegisterResponse, MpesaClient, MpesaClientOptions, MpesaConfig, ParsedC2BCallback, ParsedCallbackData, STKCallback, STKPushRequest, STKPushResponse, TransactionStatusRequest, TransactionStatusResponse } from '@singularity-payments/core';
+
+type MpesaEventHandler = EventHandler;
+interface MpesaEventHandlers {
+    stkCallback: MpesaEventHandler;
+    c2bValidation: MpesaEventHandler;
+    c2bConfirmation: MpesaEventHandler;
+    b2cResult: MpesaEventHandler;
+    b2cTimeout: MpesaEventHandler;
+    catchAll: MpesaEventHandler;
+}
+
+/**
+ * Create Nuxt/Nitro event handlers for M-Pesa callbacks and client-side API requests
+ */
+declare function createMpesaHandlers(client: MpesaClient): MpesaEventHandlers;
+
+/**
+ * Create M-Pesa instance for Nuxt
+ *
+ * @example
+ * ```typescript
+ * // utils/mpesa.ts
+ * import { createMpesa } from "@singularity-payments/nuxt";
+ *
+ * export const mpesa = createMpesa({
+ *   consumerKey: process.env.MPESA_CONSUMER_KEY!,
+ *   consumerSecret: process.env.MPESA_CONSUMER_SECRET!,
+ *   passkey: process.env.MPESA_PASSKEY!,
+ *   shortcode: process.env.MPESA_SHORTCODE!,
+ *   environment: "sandbox",
+ *   callbackUrl: `${process.env.NUXT_PUBLIC_APP_URL}/api/mpesa/callback`
+ * }, {
+ *   callbackOptions: {
+ *     onSuccess: async (data) => {
+ *       console.log("Payment successful:", data);
+ *       // Save to database
+ *     },
+ *     onFailure: async (data) => {
+ *       console.log("Payment failed:", data);
+ *     }
+ *   }
+ * });
+ * ```
+ *
+ * @example
+ * ```typescript
+ * // server/api/mpesa/[...mpesa].ts
+ * import { mpesa } from "~/utils/mpesa";
+ *
+ * export default mpesa.handlers.catchAll;
+ * ```
+ */
+declare function createMpesa(config: MpesaConfig, options?: MpesaClientOptions): {
+    /**
+     * M-Pesa client instance for making API calls
+     */
+    client: MpesaClient;
+    /**
+     * Pre-configured Nuxt event handlers for M-Pesa callbacks
+     */
+    handlers: MpesaEventHandlers;
+};
+
+export { type MpesaEventHandler, type MpesaEventHandlers, createMpesa, createMpesaHandlers };

package/dist/index.d.ts

@@ -0,0 +1,67 @@
+import { EventHandler } from 'h3';
+import { MpesaClient, MpesaConfig, MpesaClientOptions } from '@singularity-payments/core';
+export { C2BCallback, C2BRegisterRequest, C2BRegisterResponse, MpesaClient, MpesaClientOptions, MpesaConfig, ParsedC2BCallback, ParsedCallbackData, STKCallback, STKPushRequest, STKPushResponse, TransactionStatusRequest, TransactionStatusResponse } from '@singularity-payments/core';
+
+type MpesaEventHandler = EventHandler;
+interface MpesaEventHandlers {
+    stkCallback: MpesaEventHandler;
+    c2bValidation: MpesaEventHandler;
+    c2bConfirmation: MpesaEventHandler;
+    b2cResult: MpesaEventHandler;
+    b2cTimeout: MpesaEventHandler;
+    catchAll: MpesaEventHandler;
+}
+
+/**
+ * Create Nuxt/Nitro event handlers for M-Pesa callbacks and client-side API requests
+ */
+declare function createMpesaHandlers(client: MpesaClient): MpesaEventHandlers;
+
+/**
+ * Create M-Pesa instance for Nuxt
+ *
+ * @example
+ * ```typescript
+ * // utils/mpesa.ts
+ * import { createMpesa } from "@singularity-payments/nuxt";
+ *
+ * export const mpesa = createMpesa({
+ *   consumerKey: process.env.MPESA_CONSUMER_KEY!,
+ *   consumerSecret: process.env.MPESA_CONSUMER_SECRET!,
+ *   passkey: process.env.MPESA_PASSKEY!,
+ *   shortcode: process.env.MPESA_SHORTCODE!,
+ *   environment: "sandbox",
+ *   callbackUrl: `${process.env.NUXT_PUBLIC_APP_URL}/api/mpesa/callback`
+ * }, {
+ *   callbackOptions: {
+ *     onSuccess: async (data) => {
+ *       console.log("Payment successful:", data);
+ *       // Save to database
+ *     },
+ *     onFailure: async (data) => {
+ *       console.log("Payment failed:", data);
+ *     }
+ *   }
+ * });
+ * ```
+ *
+ * @example
+ * ```typescript
+ * // server/api/mpesa/[...mpesa].ts
+ * import { mpesa } from "~/utils/mpesa";
+ *
+ * export default mpesa.handlers.catchAll;
+ * ```
+ */
+declare function createMpesa(config: MpesaConfig, options?: MpesaClientOptions): {
+    /**
+     * M-Pesa client instance for making API calls
+     */
+    client: MpesaClient;
+    /**
+     * Pre-configured Nuxt event handlers for M-Pesa callbacks
+     */
+    handlers: MpesaEventHandlers;
+};
+
+export { type MpesaEventHandler, type MpesaEventHandlers, createMpesa, createMpesaHandlers };

package/dist/index.js

@@ -0,0 +1,468 @@
+"use strict";
+var __defProp = Object.defineProperty;
+var __getOwnPropDesc = Object.getOwnPropertyDescriptor;
+var __getOwnPropNames = Object.getOwnPropertyNames;
+var __hasOwnProp = Object.prototype.hasOwnProperty;
+var __export = (target, all) => {
+  for (var name in all)
+    __defProp(target, name, { get: all[name], enumerable: true });
+};
+var __copyProps = (to, from, except, desc) => {
+  if (from && typeof from === "object" || typeof from === "function") {
+    for (let key of __getOwnPropNames(from))
+      if (!__hasOwnProp.call(to, key) && key !== except)
+        __defProp(to, key, { get: () => from[key], enumerable: !(desc = __getOwnPropDesc(from, key)) || desc.enumerable });
+  }
+  return to;
+};
+var __toCommonJS = (mod) => __copyProps(__defProp({}, "__esModule", { value: true }), mod);
+
+// src/index.ts
+var index_exports = {};
+__export(index_exports, {
+  MpesaClient: () => import_core2.MpesaClient,
+  createMpesa: () => createMpesa,
+  createMpesaHandlers: () => createMpesaHandlers
+});
+module.exports = __toCommonJS(index_exports);
+var import_core = require("@singularity-payments/core");
+
+// src/handlers.ts
+var import_h3 = require("h3");
+function createMpesaHandlers(client) {
+  const handlers = {
+    /**
+     * STK Push callback handler
+     * Handles callbacks from M-Pesa after STK Push requests
+     */
+    stkCallback: (0, import_h3.defineEventHandler)(async (event) => {
+      try {
+        const body = await (0, import_h3.readBody)(event);
+        const ipAddress = (0, import_h3.getRequestHeader)(event, "x-forwarded-for") || (0, import_h3.getRequestHeader)(event, "x-real-ip") || void 0;
+        const response = await client.handleSTKCallback(body, ipAddress);
+        return response;
+      } catch (error) {
+        console.error("STK Callback error:", error);
+        return {
+          ResultCode: 1,
+          ResultDesc: "Internal error processing callback"
+        };
+      }
+    }),
+    /**
+     * C2B validation handler
+     * Validates C2B transactions before they are processed
+     */
+    c2bValidation: (0, import_h3.defineEventHandler)(async (event) => {
+      try {
+        const body = await (0, import_h3.readBody)(event);
+        const response = await client.handleC2BValidation(body);
+        return response;
+      } catch (error) {
+        console.error("C2B Validation error:", error);
+        return {
+          ResultCode: 1,
+          ResultDesc: "Validation failed"
+        };
+      }
+    }),
+    /**
+     * C2B confirmation handler
+     * Confirms C2B transactions after they are processed
+     */
+    c2bConfirmation: (0, import_h3.defineEventHandler)(async (event) => {
+      try {
+        const body = await (0, import_h3.readBody)(event);
+        const response = await client.handleC2BConfirmation(body);
+        return response;
+      } catch (error) {
+        console.error("C2B Confirmation error:", error);
+        return {
+          ResultCode: 1,
+          ResultDesc: "Processing failed"
+        };
+      }
+    }),
+    /**
+     * B2C result handler
+     * Handles callbacks from M-Pesa after B2C requests
+     */
+    b2cResult: (0, import_h3.defineEventHandler)(async (event) => {
+      try {
+        const body = await (0, import_h3.readBody)(event);
+        const parsed = client.getCallbackHandler().parseB2CCallback(body);
+        console.log("B2C Result:", parsed);
+        return {
+          ResultCode: 0,
+          ResultDesc: "Accepted"
+        };
+      } catch (error) {
+        console.error("B2C Result error:", error);
+        return {
+          ResultCode: 1,
+          ResultDesc: "Processing failed"
+        };
+      }
+    }),
+    /**
+     * B2C timeout handler
+     * Handles timeout notifications from M-Pesa for B2C requests
+     */
+    b2cTimeout: (0, import_h3.defineEventHandler)(async (event) => {
+      try {
+        const body = await (0, import_h3.readBody)(event);
+        console.log("B2C Timeout:", body);
+        return {
+          ResultCode: 0,
+          ResultDesc: "Timeout received"
+        };
+      } catch (error) {
+        console.error("B2C Timeout error:", error);
+        return {
+          ResultCode: 1,
+          ResultDesc: "Processing failed"
+        };
+      }
+    }),
+    /**
+     * Catch-all handler for all M-Pesa webhooks and client-side API requests
+     * Routes based on URL path segment
+     *
+     * Usage: server/api/mpesa/[...mpesa].ts
+     * export default mpesa.handlers.catchAll;
+     *
+     * Supported endpoints:
+     *
+     * WEBHOOKS (from M-Pesa):
+     * - /api/mpesa/callback or /api/mpesa/stk-callback - STK Push callbacks
+     * - /api/mpesa/validation or /api/mpesa/c2b-validation - C2B validation
+     * - /api/mpesa/confirmation or /api/mpesa/c2b-confirmation - C2B confirmation
+     * - /api/mpesa/b2c-result - B2C result callback
+     * - /api/mpesa/b2c-timeout - B2C timeout callback
+     * - /api/mpesa/b2b-result - B2B result callback
+     * - /api/mpesa/b2b-timeout - B2B timeout callback
+     * - /api/mpesa/balance-result - Account balance result
+     * - /api/mpesa/balance-timeout - Account balance timeout
+     * - /api/mpesa/reversal-result - Reversal result
+     * - /api/mpesa/reversal-timeout - Reversal timeout
+     * - /api/mpesa/status-result - Transaction status result
+     * - /api/mpesa/status-timeout - Transaction status timeout
+     *
+     * CLIENT APIs (from the frontend):
+     * - /api/mpesa/stk-push - Initiate STK Push request
+     * - /api/mpesa/stk-query - Query STK Push status
+     * - /api/mpesa/b2c - Initiate B2C payment
+     * - /api/mpesa/b2b - Initiate B2B payment
+     * - /api/mpesa/balance - Query account balance
+     * - /api/mpesa/transaction-status - Query transaction status
+     * - /api/mpesa/reversal - Reverse a transaction
+     * - /api/mpesa/register-c2b - Register C2B URLs
+     * - /api/mpesa/generate-qr - Generate dynamic QR code
+     */
+    catchAll: (0, import_h3.defineEventHandler)(async (event) => {
+      const url = (0, import_h3.getRequestURL)(event);
+      const pathname = url.pathname;
+      const segments = pathname.split("/").filter(Boolean);
+      const lastSegment = segments[segments.length - 1];
+      try {
+        if (lastSegment === "callback" || lastSegment === "stk-callback") {
+          const body = await (0, import_h3.readBody)(event);
+          const ipAddress = (0, import_h3.getRequestHeader)(event, "x-forwarded-for") || (0, import_h3.getRequestHeader)(event, "x-real-ip") || void 0;
+          const response = await client.handleSTKCallback(body, ipAddress);
+          return response;
+        }
+        if (lastSegment === "validation" || lastSegment === "c2b-validation") {
+          const body = await (0, import_h3.readBody)(event);
+          const response = await client.handleC2BValidation(body);
+          return response;
+        }
+        if (lastSegment === "confirmation" || lastSegment === "c2b-confirmation") {
+          const body = await (0, import_h3.readBody)(event);
+          const response = await client.handleC2BConfirmation(body);
+          return response;
+        }
+        if (lastSegment === "b2c-result") {
+          const body = await (0, import_h3.readBody)(event);
+          const parsed = client.getCallbackHandler().parseB2CCallback(body);
+          console.log("B2C Result:", parsed);
+          return { ResultCode: 0, ResultDesc: "Accepted" };
+        }
+        if (lastSegment === "b2c-timeout") {
+          const body = await (0, import_h3.readBody)(event);
+          console.log("B2C Timeout:", body);
+          return { ResultCode: 0, ResultDesc: "Timeout received" };
+        }
+        if (lastSegment === "b2b-result") {
+          const body = await (0, import_h3.readBody)(event);
+          const parsed = client.getCallbackHandler().parseB2BCallback(body);
+          console.log("B2B Result:", parsed);
+          return { ResultCode: 0, ResultDesc: "Accepted" };
+        }
+        if (lastSegment === "b2b-timeout") {
+          const body = await (0, import_h3.readBody)(event);
+          console.log("B2B Timeout:", body);
+          return { ResultCode: 0, ResultDesc: "Timeout received" };
+        }
+        if (lastSegment === "balance-result") {
+          const body = await (0, import_h3.readBody)(event);
+          const parsed = client.getCallbackHandler().parseAccountBalanceCallback(body);
+          console.log("Balance Result:", parsed);
+          return { ResultCode: 0, ResultDesc: "Accepted" };
+        }
+        if (lastSegment === "balance-timeout") {
+          const body = await (0, import_h3.readBody)(event);
+          console.log("Balance Timeout:", body);
+          return { ResultCode: 0, ResultDesc: "Timeout received" };
+        }
+        if (lastSegment === "status-result") {
+          const body = await (0, import_h3.readBody)(event);
+          const parsed = client.getCallbackHandler().parseTransactionStatusCallback(body);
+          console.log("Status Result:", parsed);
+          return { ResultCode: 0, ResultDesc: "Accepted" };
+        }
+        if (lastSegment === "status-timeout") {
+          const body = await (0, import_h3.readBody)(event);
+          console.log("Status Timeout:", body);
+          return { ResultCode: 0, ResultDesc: "Timeout received" };
+        }
+        if (lastSegment === "reversal-result") {
+          const body = await (0, import_h3.readBody)(event);
+          const parsed = client.getCallbackHandler().parseReversalCallback(body);
+          console.log("Reversal Result:", parsed);
+          return { ResultCode: 0, ResultDesc: "Accepted" };
+        }
+        if (lastSegment === "reversal-timeout") {
+          const body = await (0, import_h3.readBody)(event);
+          console.log("Reversal Timeout:", body);
+          return { ResultCode: 0, ResultDesc: "Timeout received" };
+        }
+        if (lastSegment === "stk-push") {
+          const body = await (0, import_h3.readBody)(event);
+          const {
+            amount,
+            phoneNumber,
+            accountReference,
+            transactionDesc,
+            callbackUrl
+          } = body;
+          if (!amount || !phoneNumber) {
+            throw (0, import_h3.createError)({
+              statusCode: 400,
+              message: "Amount and phone number are required"
+            });
+          }
+          const response = await client.stkPush({
+            amount: Number(amount),
+            phoneNumber: String(phoneNumber),
+            accountReference: accountReference || "Payment",
+            transactionDesc: transactionDesc || "Payment",
+            callbackUrl
+          });
+          return response;
+        }
+        if (lastSegment === "stk-query") {
+          const body = await (0, import_h3.readBody)(event);
+          const { CheckoutRequestID } = body;
+          if (!CheckoutRequestID) {
+            throw (0, import_h3.createError)({
+              statusCode: 400,
+              message: "CheckoutRequestID is required"
+            });
+          }
+          const response = await client.stkQuery({ CheckoutRequestID });
+          return response;
+        }
+        if (lastSegment === "b2c") {
+          const body = await (0, import_h3.readBody)(event);
+          const {
+            amount,
+            phoneNumber,
+            commandID,
+            remarks,
+            occasion,
+            resultUrl,
+            timeoutUrl
+          } = body;
+          if (!amount || !phoneNumber || !commandID) {
+            throw (0, import_h3.createError)({
+              statusCode: 400,
+              message: "Amount, phone number, and command ID are required"
+            });
+          }
+          const response = await client.b2c({
+            amount: Number(amount),
+            phoneNumber: String(phoneNumber),
+            commandID,
+            remarks: remarks || "Payment",
+            occasion,
+            resultUrl,
+            timeoutUrl
+          });
+          return response;
+        }
+        if (lastSegment === "b2b") {
+          const body = await (0, import_h3.readBody)(event);
+          const {
+            amount,
+            partyB,
+            commandID,
+            senderIdentifierType,
+            receiverIdentifierType,
+            accountReference,
+            remarks,
+            resultUrl,
+            timeoutUrl
+          } = body;
+          console.log("B2B Request Parameters:", {
+            amount,
+            partyB,
+            commandID,
+            senderIdentifierType,
+            receiverIdentifierType,
+            accountReference,
+            remarks
+          });
+          if (!amount || !partyB || !commandID || !accountReference) {
+            throw (0, import_h3.createError)({
+              statusCode: 400,
+              message: "Amount, partyB, commandID, and account reference are required"
+            });
+          }
+          const response = await client.b2b({
+            amount: Number(amount),
+            partyB: String(partyB),
+            commandID,
+            senderIdentifierType,
+            receiverIdentifierType,
+            accountReference: String(accountReference),
+            remarks: remarks || "Payment",
+            resultUrl,
+            timeoutUrl
+          });
+          console.log("B2B Response:", response);
+          return response;
+        }
+        if (lastSegment === "balance") {
+          const body = await (0, import_h3.readBody)(event);
+          const response = await client.accountBalance(body);
+          return response;
+        }
+        if (lastSegment === "transaction-status") {
+          const body = await (0, import_h3.readBody)(event);
+          const { transactionID } = body;
+          if (!transactionID) {
+            throw (0, import_h3.createError)({
+              statusCode: 400,
+              message: "Transaction ID is required"
+            });
+          }
+          const response = await client.transactionStatus(body);
+          return response;
+        }
+        if (lastSegment === "reversal") {
+          const body = await (0, import_h3.readBody)(event);
+          const { transactionID, amount } = body;
+          if (!transactionID || !amount) {
+            throw (0, import_h3.createError)({
+              statusCode: 400,
+              message: "Transaction ID and amount are required"
+            });
+          }
+          const response = await client.reversal(body);
+          return response;
+        }
+        if (lastSegment === "register-c2b") {
+          const body = await (0, import_h3.readBody)(event);
+          const { shortCode, responseType, confirmationURL, validationURL } = body;
+          if (!confirmationURL || !validationURL) {
+            throw (0, import_h3.createError)({
+              statusCode: 400,
+              message: "Confirmation URL and validation URL are required"
+            });
+          }
+          const response = await client.registerC2BUrl({
+            shortCode,
+            responseType,
+            confirmationURL,
+            validationURL
+          });
+          return response;
+        }
+        if (lastSegment === "generate-qr") {
+          const body = await (0, import_h3.readBody)(event);
+          const {
+            merchantName,
+            refNo,
+            amount,
+            transactionType,
+            creditPartyIdentifier,
+            size
+          } = body;
+          if (!merchantName || !refNo || !amount || !transactionType || !creditPartyIdentifier) {
+            throw (0, import_h3.createError)({
+              statusCode: 400,
+              message: "Merchant name, reference number, amount, transaction type, and credit party identifier are required",
+              data: { received: body }
+            });
+          }
+          let qrSize = void 0;
+          if (size) {
+            if (size !== "500" && size !== "300") {
+              throw (0, import_h3.createError)({
+                statusCode: 400,
+                message: "Size must be either '300' or '500'"
+              });
+            }
+            qrSize = size;
+          }
+          const response = await client.generateDynamicQR({
+            merchantName,
+            refNo,
+            amount: Number(amount),
+            transactionType,
+            creditPartyIdentifier,
+            size: qrSize
+          });
+          return response;
+        }
+        throw (0, import_h3.createError)({
+          statusCode: 404,
+          message: `Unknown endpoint: ${lastSegment}`
+        });
+      } catch (error) {
+        console.error(`M-Pesa ${lastSegment} error:`, error);
+        if (error.statusCode) {
+          throw error;
+        }
+        throw (0, import_h3.createError)({
+          statusCode: 500,
+          message: error.message || "Request failed"
+        });
+      }
+    })
+  };
+  return handlers;
+}
+
+// src/index.ts
+var import_core2 = require("@singularity-payments/core");
+function createMpesa(config, options) {
+  const client = new import_core.MpesaClient(config, options);
+  const handlers = createMpesaHandlers(client);
+  return {
+    /**
+     * M-Pesa client instance for making API calls
+     */
+    client,
+    /**
+     * Pre-configured Nuxt event handlers for M-Pesa callbacks
+     */
+    handlers
+  };
+}
+// Annotate the CommonJS export names for ESM import in node:
+0 && (module.exports = {
+  MpesaClient,
+  createMpesa,
+  createMpesaHandlers
+});

package/dist/index.mjs

@@ -0,0 +1,449 @@
+// src/index.ts
+import { MpesaClient } from "@singularity-payments/core";
+
+// src/handlers.ts
+import {
+  defineEventHandler,
+  readBody,
+  getRequestURL,
+  getRequestHeader,
+  createError
+} from "h3";
+function createMpesaHandlers(client) {
+  const handlers = {
+    /**
+     * STK Push callback handler
+     * Handles callbacks from M-Pesa after STK Push requests
+     */
+    stkCallback: defineEventHandler(async (event) => {
+      try {
+        const body = await readBody(event);
+        const ipAddress = getRequestHeader(event, "x-forwarded-for") || getRequestHeader(event, "x-real-ip") || void 0;
+        const response = await client.handleSTKCallback(body, ipAddress);
+        return response;
+      } catch (error) {
+        console.error("STK Callback error:", error);
+        return {
+          ResultCode: 1,
+          ResultDesc: "Internal error processing callback"
+        };
+      }
+    }),
+    /**
+     * C2B validation handler
+     * Validates C2B transactions before they are processed
+     */
+    c2bValidation: defineEventHandler(async (event) => {
+      try {
+        const body = await readBody(event);
+        const response = await client.handleC2BValidation(body);
+        return response;
+      } catch (error) {
+        console.error("C2B Validation error:", error);
+        return {
+          ResultCode: 1,
+          ResultDesc: "Validation failed"
+        };
+      }
+    }),
+    /**
+     * C2B confirmation handler
+     * Confirms C2B transactions after they are processed
+     */
+    c2bConfirmation: defineEventHandler(async (event) => {
+      try {
+        const body = await readBody(event);
+        const response = await client.handleC2BConfirmation(body);
+        return response;
+      } catch (error) {
+        console.error("C2B Confirmation error:", error);
+        return {
+          ResultCode: 1,
+          ResultDesc: "Processing failed"
+        };
+      }
+    }),
+    /**
+     * B2C result handler
+     * Handles callbacks from M-Pesa after B2C requests
+     */
+    b2cResult: defineEventHandler(async (event) => {
+      try {
+        const body = await readBody(event);
+        const parsed = client.getCallbackHandler().parseB2CCallback(body);
+        console.log("B2C Result:", parsed);
+        return {
+          ResultCode: 0,
+          ResultDesc: "Accepted"
+        };
+      } catch (error) {
+        console.error("B2C Result error:", error);
+        return {
+          ResultCode: 1,
+          ResultDesc: "Processing failed"
+        };
+      }
+    }),
+    /**
+     * B2C timeout handler
+     * Handles timeout notifications from M-Pesa for B2C requests
+     */
+    b2cTimeout: defineEventHandler(async (event) => {
+      try {
+        const body = await readBody(event);
+        console.log("B2C Timeout:", body);
+        return {
+          ResultCode: 0,
+          ResultDesc: "Timeout received"
+        };
+      } catch (error) {
+        console.error("B2C Timeout error:", error);
+        return {
+          ResultCode: 1,
+          ResultDesc: "Processing failed"
+        };
+      }
+    }),
+    /**
+     * Catch-all handler for all M-Pesa webhooks and client-side API requests
+     * Routes based on URL path segment
+     *
+     * Usage: server/api/mpesa/[...mpesa].ts
+     * export default mpesa.handlers.catchAll;
+     *
+     * Supported endpoints:
+     *
+     * WEBHOOKS (from M-Pesa):
+     * - /api/mpesa/callback or /api/mpesa/stk-callback - STK Push callbacks
+     * - /api/mpesa/validation or /api/mpesa/c2b-validation - C2B validation
+     * - /api/mpesa/confirmation or /api/mpesa/c2b-confirmation - C2B confirmation
+     * - /api/mpesa/b2c-result - B2C result callback
+     * - /api/mpesa/b2c-timeout - B2C timeout callback
+     * - /api/mpesa/b2b-result - B2B result callback
+     * - /api/mpesa/b2b-timeout - B2B timeout callback
+     * - /api/mpesa/balance-result - Account balance result
+     * - /api/mpesa/balance-timeout - Account balance timeout
+     * - /api/mpesa/reversal-result - Reversal result
+     * - /api/mpesa/reversal-timeout - Reversal timeout
+     * - /api/mpesa/status-result - Transaction status result
+     * - /api/mpesa/status-timeout - Transaction status timeout
+     *
+     * CLIENT APIs (from the frontend):
+     * - /api/mpesa/stk-push - Initiate STK Push request
+     * - /api/mpesa/stk-query - Query STK Push status
+     * - /api/mpesa/b2c - Initiate B2C payment
+     * - /api/mpesa/b2b - Initiate B2B payment
+     * - /api/mpesa/balance - Query account balance
+     * - /api/mpesa/transaction-status - Query transaction status
+     * - /api/mpesa/reversal - Reverse a transaction
+     * - /api/mpesa/register-c2b - Register C2B URLs
+     * - /api/mpesa/generate-qr - Generate dynamic QR code
+     */
+    catchAll: defineEventHandler(async (event) => {
+      const url = getRequestURL(event);
+      const pathname = url.pathname;
+      const segments = pathname.split("/").filter(Boolean);
+      const lastSegment = segments[segments.length - 1];
+      try {
+        if (lastSegment === "callback" || lastSegment === "stk-callback") {
+          const body = await readBody(event);
+          const ipAddress = getRequestHeader(event, "x-forwarded-for") || getRequestHeader(event, "x-real-ip") || void 0;
+          const response = await client.handleSTKCallback(body, ipAddress);
+          return response;
+        }
+        if (lastSegment === "validation" || lastSegment === "c2b-validation") {
+          const body = await readBody(event);
+          const response = await client.handleC2BValidation(body);
+          return response;
+        }
+        if (lastSegment === "confirmation" || lastSegment === "c2b-confirmation") {
+          const body = await readBody(event);
+          const response = await client.handleC2BConfirmation(body);
+          return response;
+        }
+        if (lastSegment === "b2c-result") {
+          const body = await readBody(event);
+          const parsed = client.getCallbackHandler().parseB2CCallback(body);
+          console.log("B2C Result:", parsed);
+          return { ResultCode: 0, ResultDesc: "Accepted" };
+        }
+        if (lastSegment === "b2c-timeout") {
+          const body = await readBody(event);
+          console.log("B2C Timeout:", body);
+          return { ResultCode: 0, ResultDesc: "Timeout received" };
+        }
+        if (lastSegment === "b2b-result") {
+          const body = await readBody(event);
+          const parsed = client.getCallbackHandler().parseB2BCallback(body);
+          console.log("B2B Result:", parsed);
+          return { ResultCode: 0, ResultDesc: "Accepted" };
+        }
+        if (lastSegment === "b2b-timeout") {
+          const body = await readBody(event);
+          console.log("B2B Timeout:", body);
+          return { ResultCode: 0, ResultDesc: "Timeout received" };
+        }
+        if (lastSegment === "balance-result") {
+          const body = await readBody(event);
+          const parsed = client.getCallbackHandler().parseAccountBalanceCallback(body);
+          console.log("Balance Result:", parsed);
+          return { ResultCode: 0, ResultDesc: "Accepted" };
+        }
+        if (lastSegment === "balance-timeout") {
+          const body = await readBody(event);
+          console.log("Balance Timeout:", body);
+          return { ResultCode: 0, ResultDesc: "Timeout received" };
+        }
+        if (lastSegment === "status-result") {
+          const body = await readBody(event);
+          const parsed = client.getCallbackHandler().parseTransactionStatusCallback(body);
+          console.log("Status Result:", parsed);
+          return { ResultCode: 0, ResultDesc: "Accepted" };
+        }
+        if (lastSegment === "status-timeout") {
+          const body = await readBody(event);
+          console.log("Status Timeout:", body);
+          return { ResultCode: 0, ResultDesc: "Timeout received" };
+        }
+        if (lastSegment === "reversal-result") {
+          const body = await readBody(event);
+          const parsed = client.getCallbackHandler().parseReversalCallback(body);
+          console.log("Reversal Result:", parsed);
+          return { ResultCode: 0, ResultDesc: "Accepted" };
+        }
+        if (lastSegment === "reversal-timeout") {
+          const body = await readBody(event);
+          console.log("Reversal Timeout:", body);
+          return { ResultCode: 0, ResultDesc: "Timeout received" };
+        }
+        if (lastSegment === "stk-push") {
+          const body = await readBody(event);
+          const {
+            amount,
+            phoneNumber,
+            accountReference,
+            transactionDesc,
+            callbackUrl
+          } = body;
+          if (!amount || !phoneNumber) {
+            throw createError({
+              statusCode: 400,
+              message: "Amount and phone number are required"
+            });
+          }
+          const response = await client.stkPush({
+            amount: Number(amount),
+            phoneNumber: String(phoneNumber),
+            accountReference: accountReference || "Payment",
+            transactionDesc: transactionDesc || "Payment",
+            callbackUrl
+          });
+          return response;
+        }
+        if (lastSegment === "stk-query") {
+          const body = await readBody(event);
+          const { CheckoutRequestID } = body;
+          if (!CheckoutRequestID) {
+            throw createError({
+              statusCode: 400,
+              message: "CheckoutRequestID is required"
+            });
+          }
+          const response = await client.stkQuery({ CheckoutRequestID });
+          return response;
+        }
+        if (lastSegment === "b2c") {
+          const body = await readBody(event);
+          const {
+            amount,
+            phoneNumber,
+            commandID,
+            remarks,
+            occasion,
+            resultUrl,
+            timeoutUrl
+          } = body;
+          if (!amount || !phoneNumber || !commandID) {
+            throw createError({
+              statusCode: 400,
+              message: "Amount, phone number, and command ID are required"
+            });
+          }
+          const response = await client.b2c({
+            amount: Number(amount),
+            phoneNumber: String(phoneNumber),
+            commandID,
+            remarks: remarks || "Payment",
+            occasion,
+            resultUrl,
+            timeoutUrl
+          });
+          return response;
+        }
+        if (lastSegment === "b2b") {
+          const body = await readBody(event);
+          const {
+            amount,
+            partyB,
+            commandID,
+            senderIdentifierType,
+            receiverIdentifierType,
+            accountReference,
+            remarks,
+            resultUrl,
+            timeoutUrl
+          } = body;
+          console.log("B2B Request Parameters:", {
+            amount,
+            partyB,
+            commandID,
+            senderIdentifierType,
+            receiverIdentifierType,
+            accountReference,
+            remarks
+          });
+          if (!amount || !partyB || !commandID || !accountReference) {
+            throw createError({
+              statusCode: 400,
+              message: "Amount, partyB, commandID, and account reference are required"
+            });
+          }
+          const response = await client.b2b({
+            amount: Number(amount),
+            partyB: String(partyB),
+            commandID,
+            senderIdentifierType,
+            receiverIdentifierType,
+            accountReference: String(accountReference),
+            remarks: remarks || "Payment",
+            resultUrl,
+            timeoutUrl
+          });
+          console.log("B2B Response:", response);
+          return response;
+        }
+        if (lastSegment === "balance") {
+          const body = await readBody(event);
+          const response = await client.accountBalance(body);
+          return response;
+        }
+        if (lastSegment === "transaction-status") {
+          const body = await readBody(event);
+          const { transactionID } = body;
+          if (!transactionID) {
+            throw createError({
+              statusCode: 400,
+              message: "Transaction ID is required"
+            });
+          }
+          const response = await client.transactionStatus(body);
+          return response;
+        }
+        if (lastSegment === "reversal") {
+          const body = await readBody(event);
+          const { transactionID, amount } = body;
+          if (!transactionID || !amount) {
+            throw createError({
+              statusCode: 400,
+              message: "Transaction ID and amount are required"
+            });
+          }
+          const response = await client.reversal(body);
+          return response;
+        }
+        if (lastSegment === "register-c2b") {
+          const body = await readBody(event);
+          const { shortCode, responseType, confirmationURL, validationURL } = body;
+          if (!confirmationURL || !validationURL) {
+            throw createError({
+              statusCode: 400,
+              message: "Confirmation URL and validation URL are required"
+            });
+          }
+          const response = await client.registerC2BUrl({
+            shortCode,
+            responseType,
+            confirmationURL,
+            validationURL
+          });
+          return response;
+        }
+        if (lastSegment === "generate-qr") {
+          const body = await readBody(event);
+          const {
+            merchantName,
+            refNo,
+            amount,
+            transactionType,
+            creditPartyIdentifier,
+            size
+          } = body;
+          if (!merchantName || !refNo || !amount || !transactionType || !creditPartyIdentifier) {
+            throw createError({
+              statusCode: 400,
+              message: "Merchant name, reference number, amount, transaction type, and credit party identifier are required",
+              data: { received: body }
+            });
+          }
+          let qrSize = void 0;
+          if (size) {
+            if (size !== "500" && size !== "300") {
+              throw createError({
+                statusCode: 400,
+                message: "Size must be either '300' or '500'"
+              });
+            }
+            qrSize = size;
+          }
+          const response = await client.generateDynamicQR({
+            merchantName,
+            refNo,
+            amount: Number(amount),
+            transactionType,
+            creditPartyIdentifier,
+            size: qrSize
+          });
+          return response;
+        }
+        throw createError({
+          statusCode: 404,
+          message: `Unknown endpoint: ${lastSegment}`
+        });
+      } catch (error) {
+        console.error(`M-Pesa ${lastSegment} error:`, error);
+        if (error.statusCode) {
+          throw error;
+        }
+        throw createError({
+          statusCode: 500,
+          message: error.message || "Request failed"
+        });
+      }
+    })
+  };
+  return handlers;
+}
+
+// src/index.ts
+import {
+  MpesaClient as MpesaClient2
+} from "@singularity-payments/core";
+function createMpesa(config, options) {
+  const client = new MpesaClient(config, options);
+  const handlers = createMpesaHandlers(client);
+  return {
+    /**
+     * M-Pesa client instance for making API calls
+     */
+    client,
+    /**
+     * Pre-configured Nuxt event handlers for M-Pesa callbacks
+     */
+    handlers
+  };
+}
+export {
+  MpesaClient2 as MpesaClient,
+  createMpesa,
+  createMpesaHandlers
+};

package/package.json

@@ -0,0 +1,49 @@
+{
+  "name": "@singularity-payments/nuxt",
+  "version": "0.1.0-alpha.1",
+  "publishConfig": {
+    "access": "public"
+  },
+  "description": "Nuxt integration for M-Pesa payments",
+  "main": "./dist/index.js",
+  "module": "./dist/index.mjs",
+  "types": "./dist/index.d.ts",
+  "exports": {
+    ".": {
+      "types": "./dist/index.d.ts",
+      "import": "./dist/index.mjs",
+      "require": "./dist/index.js",
+      "default": "./dist/index.js"
+    }
+  },
+  "files": [
+    "dist"
+  ],
+  "keywords": [
+    "mpesa",
+    "nuxt",
+    "payments",
+    "kenya"
+  ],
+  "author": "",
+  "license": "Apache-2.0",
+  "peerDependencies": {
+    "h3": ">=1.0.0",
+    "nuxt": ">=3.0.0"
+  },
+  "dependencies": {
+    "@singularity-payments/core": "0.1.0-alpha.0"
+  },
+  "devDependencies": {
+    "@types/node": "^25.0.3",
+    "h3": "^1.13.0",
+    "nuxt": "^3.15.3",
+    "tsup": "^8.5.1",
+    "typescript": "^5.9.3"
+  },
+  "scripts": {
+    "test": "echo \"Error: no test specified\" && exit 1",
+    "build": "tsup src/index.ts --format cjs,esm --dts --external h3,nuxt",
+    "dev": "tsup src/index.ts --format cjs,esm --dts --external h3,nuxt --watch"
+  }
+}