@thebookingkit/server 0.1.2 → 0.1.5

package/dist/serialization-retry.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"serialization-retry.d.ts","sourceRoot":"","sources":["../src/serialization-retry.ts"],"names":[],"mappings":"AAKA,kDAAkD;AAClD,MAAM,WAAW,wBAAwB;IACvC,qEAAqE;IACrE,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB,sEAAsE;IACtE,WAAW,CAAC,EAAE,MAAM,CAAC;CACtB;AAyBD;;;;;;;;;;;;;;;;;;GAkBG;AACH,wBAAsB,qBAAqB,CAAC,CAAC,EAC3C,EAAE,EAAE,MAAM,OAAO,CAAC,CAAC,CAAC,EACpB,OAAO,CAAC,EAAE,wBAAwB,GACjC,OAAO,CAAC,CAAC,CAAC,CAmCZ"}

package/dist/serialization-retry.js

@@ -0,0 +1,71 @@
+import { BookingConflictError, SerializationRetryExhaustedError, } from "@thebookingkit/core";
+/**
+ * Postgres SQLSTATE codes we handle:
+ * - 40001: serialization_failure (SERIALIZABLE transaction contention)
+ * - 23P01: exclusion_violation (EXCLUDE constraint — slot already taken)
+ */
+const SERIALIZATION_FAILURE = "40001";
+const EXCLUSION_VIOLATION = "23P01";
+/**
+ * Check if an error is a Postgres error with a specific code.
+ */
+function getPostgresErrorCode(error) {
+    if (error &&
+        typeof error === "object" &&
+        "code" in error &&
+        typeof error.code === "string") {
+        return error.code;
+    }
+    return undefined;
+}
+/**
+ * Wraps a database operation in serialization retry logic.
+ *
+ * If the operation fails with SQLSTATE 40001 (serialization_failure),
+ * retries up to `maxRetries` times with jittered exponential backoff.
+ *
+ * If the operation fails with SQLSTATE 23P01 (exclusion_violation),
+ * immediately throws a `BookingConflictError` (no retry — the slot is taken).
+ *
+ * @example
+ * ```ts
+ * const booking = await withSerializableRetry(
+ *   () => db.transaction(async (tx) => {
+ *     // insert booking in SERIALIZABLE isolation
+ *   }),
+ *   { maxRetries: 3 }
+ * );
+ * ```
+ */
+export async function withSerializableRetry(fn, options) {
+    const maxRetries = options?.maxRetries ?? 3;
+    const baseDelayMs = options?.baseDelayMs ?? 50;
+    for (let attempt = 0; attempt <= maxRetries; attempt++) {
+        try {
+            return await fn();
+        }
+        catch (error) {
+            const code = getPostgresErrorCode(error);
+            // Exclusion violation — slot is taken, do not retry
+            if (code === EXCLUSION_VIOLATION) {
+                throw new BookingConflictError();
+            }
+            // Serialization failure — retry with backoff
+            if (code === SERIALIZATION_FAILURE && attempt < maxRetries) {
+                const delay = baseDelayMs * Math.pow(2, attempt);
+                const jitter = Math.random() * delay;
+                await new Promise((resolve) => setTimeout(resolve, delay + jitter));
+                continue;
+            }
+            // All retries exhausted for serialization failure
+            if (code === SERIALIZATION_FAILURE) {
+                throw new SerializationRetryExhaustedError(maxRetries);
+            }
+            // Unknown error — rethrow as-is
+            throw error;
+        }
+    }
+    // Should never reach here, but TypeScript needs it
+    throw new SerializationRetryExhaustedError(maxRetries);
+}
+//# sourceMappingURL=serialization-retry.js.map

package/dist/serialization-retry.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"serialization-retry.js","sourceRoot":"","sources":["../src/serialization-retry.ts"],"names":[],"mappings":"AAAA,OAAO,EACL,oBAAoB,EACpB,gCAAgC,GACjC,MAAM,qBAAqB,CAAC;AAU7B;;;;GAIG;AACH,MAAM,qBAAqB,GAAG,OAAO,CAAC;AACtC,MAAM,mBAAmB,GAAG,OAAO,CAAC;AAEpC;;GAEG;AACH,SAAS,oBAAoB,CAAC,KAAc;IAC1C,IACE,KAAK;QACL,OAAO,KAAK,KAAK,QAAQ;QACzB,MAAM,IAAI,KAAK;QACf,OAAQ,KAA2B,CAAC,IAAI,KAAK,QAAQ,EACrD,CAAC;QACD,OAAQ,KAA0B,CAAC,IAAI,CAAC;IAC1C,CAAC;IACD,OAAO,SAAS,CAAC;AACnB,CAAC;AAED;;;;;;;;;;;;;;;;;;GAkBG;AACH,MAAM,CAAC,KAAK,UAAU,qBAAqB,CACzC,EAAoB,EACpB,OAAkC;IAElC,MAAM,UAAU,GAAG,OAAO,EAAE,UAAU,IAAI,CAAC,CAAC;IAC5C,MAAM,WAAW,GAAG,OAAO,EAAE,WAAW,IAAI,EAAE,CAAC;IAE/C,KAAK,IAAI,OAAO,GAAG,CAAC,EAAE,OAAO,IAAI,UAAU,EAAE,OAAO,EAAE,EAAE,CAAC;QACvD,IAAI,CAAC;YACH,OAAO,MAAM,EAAE,EAAE,CAAC;QACpB,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,MAAM,IAAI,GAAG,oBAAoB,CAAC,KAAK,CAAC,CAAC;YAEzC,oDAAoD;YACpD,IAAI,IAAI,KAAK,mBAAmB,EAAE,CAAC;gBACjC,MAAM,IAAI,oBAAoB,EAAE,CAAC;YACnC,CAAC;YAED,6CAA6C;YAC7C,IAAI,IAAI,KAAK,qBAAqB,IAAI,OAAO,GAAG,UAAU,EAAE,CAAC;gBAC3D,MAAM,KAAK,GAAG,WAAW,GAAG,IAAI,CAAC,GAAG,CAAC,CAAC,EAAE,OAAO,CAAC,CAAC;gBACjD,MAAM,MAAM,GAAG,IAAI,CAAC,MAAM,EAAE,GAAG,KAAK,CAAC;gBACrC,MAAM,IAAI,OAAO,CAAC,CAAC,OAAO,EAAE,EAAE,CAAC,UAAU,CAAC,OAAO,EAAE,KAAK,GAAG,MAAM,CAAC,CAAC,CAAC;gBACpE,SAAS;YACX,CAAC;YAED,kDAAkD;YAClD,IAAI,IAAI,KAAK,qBAAqB,EAAE,CAAC;gBACnC,MAAM,IAAI,gCAAgC,CAAC,UAAU,CAAC,CAAC;YACzD,CAAC;YAED,gCAAgC;YAChC,MAAM,KAAK,CAAC;QACd,CAAC;IACH,CAAC;IAED,mDAAmD;IACnD,MAAM,IAAI,gCAAgC,CAAC,UAAU,CAAC,CAAC;AACzD,CAAC"}

package/dist/webhooks.d.ts

@@ -0,0 +1,164 @@
+/**
+ * Webhook infrastructure for event-driven integrations.
+ *
+ * Includes typed payloads, HMAC-SHA256 signing with replay protection,
+ * retry logic, and custom payload templates.
+ */
+/** Supported webhook trigger events */
+export type WebhookTrigger = "BOOKING_CREATED" | "BOOKING_CONFIRMED" | "BOOKING_CANCELLED" | "BOOKING_RESCHEDULED" | "BOOKING_REJECTED" | "BOOKING_PAID" | "BOOKING_NO_SHOW" | "FORM_SUBMITTED" | "OOO_CREATED";
+/** Attendee in a webhook payload */
+export interface WebhookAttendee {
+    email: string;
+    name: string;
+    phone?: string;
+}
+/** Standard webhook payload body */
+export interface WebhookPayload {
+    bookingId: string;
+    eventType: string;
+    startTime: string;
+    endTime: string;
+    organizer: {
+        name: string;
+        email: string;
+    };
+    attendees: WebhookAttendee[];
+    status: string;
+    responses?: Record<string, unknown>;
+    metadata?: Record<string, unknown>;
+}
+/** Full webhook envelope */
+export interface WebhookEnvelope {
+    triggerEvent: WebhookTrigger;
+    createdAt: string;
+    payload: WebhookPayload;
+}
+/** A webhook subscription definition */
+export interface WebhookSubscription {
+    id: string;
+    subscriberUrl: string;
+    triggers: WebhookTrigger[];
+    secret?: string;
+    isActive: boolean;
+    /** Optional scope */
+    eventTypeId?: string;
+    teamId?: string;
+    /** Optional custom payload template (JSON with {{variable}} placeholders) */
+    payloadTemplate?: string;
+}
+/** Result of a webhook delivery attempt */
+export interface WebhookDeliveryResult {
+    webhookId: string;
+    trigger: WebhookTrigger;
+    responseCode: number | null;
+    success: boolean;
+    attempt: number;
+    deliveredAt: Date;
+    error?: string;
+}
+/** Retry configuration for webhook delivery */
+export interface WebhookRetryConfig {
+    /** Maximum number of retry attempts (default: 3) */
+    maxRetries: number;
+    /** Backoff delays in seconds for each retry (default: [10, 60, 300]) */
+    backoffSeconds: number[];
+}
+/** Result of signature verification */
+export interface WebhookVerificationResult {
+    valid: boolean;
+    reason?: "timestamp_expired" | "signature_mismatch";
+}
+/** Default retry configuration */
+export declare const DEFAULT_RETRY_CONFIG: WebhookRetryConfig;
+/** All valid webhook triggers */
+export declare const WEBHOOK_TRIGGERS: WebhookTrigger[];
+/** Signature header name */
+export declare const SIGNATURE_HEADER = "X-SlotKit-Signature";
+/** Timestamp header name */
+export declare const TIMESTAMP_HEADER = "X-SlotKit-Timestamp";
+/** Default tolerance window in seconds (5 minutes) */
+export declare const DEFAULT_TOLERANCE_SECONDS = 300;
+/** Error thrown when webhook validation fails */
+export declare class WebhookValidationError extends Error {
+    constructor(message: string);
+}
+/**
+ * Create an HMAC-SHA256 signature for a webhook payload.
+ *
+ * Signature = HMAC-SHA256(secret, timestamp + '.' + rawBody)
+ *
+ * @param rawBody - The raw JSON string of the payload
+ * @param secret - The webhook secret key
+ * @param timestampSeconds - Unix timestamp in seconds
+ * @returns The hex-encoded HMAC signature
+ */
+export declare function signWebhookPayload(rawBody: string, secret: string, timestampSeconds: number): string;
+/**
+ * Verify a webhook signature with replay protection.
+ *
+ * @param rawBody - The raw JSON string of the received payload
+ * @param signature - The value of the X-SlotKit-Signature header
+ * @param timestampSeconds - The value of the X-SlotKit-Timestamp header (Unix seconds)
+ * @param secret - The webhook secret key
+ * @param options - Optional configuration
+ * @param options.toleranceSeconds - Maximum age of the timestamp in seconds (default: 300)
+ * @returns Verification result with reason if invalid
+ */
+export declare function verifyWebhookSignature(rawBody: string, signature: string, timestampSeconds: number, secret: string, options?: {
+    toleranceSeconds?: number;
+}): WebhookVerificationResult;
+/**
+ * Create a standard webhook envelope.
+ *
+ * @param trigger - The trigger event
+ * @param payload - The webhook payload data
+ * @returns The full webhook envelope
+ */
+export declare function createWebhookEnvelope(trigger: WebhookTrigger, payload: WebhookPayload): WebhookEnvelope;
+/**
+ * Resolve a custom payload template with webhook data.
+ *
+ * Replaces `{{variable}}` placeholders with values from the envelope.
+ * Supported variables: triggerEvent, createdAt, bookingId, eventType,
+ * startTime, endTime, status, and any workflow template variables.
+ *
+ * @param template - The JSON template string with {{variable}} placeholders
+ * @param envelope - The webhook envelope
+ * @returns The resolved JSON string
+ */
+export declare function resolvePayloadTemplate(template: string, envelope: WebhookEnvelope): string;
+/**
+ * Find all active webhook subscriptions that match a trigger and optional scope.
+ *
+ * @param subscriptions - All available webhook subscriptions
+ * @param trigger - The trigger event that occurred
+ * @param scope - Optional scope filters (eventTypeId, teamId)
+ * @returns Matching subscriptions
+ */
+export declare function matchWebhookSubscriptions(subscriptions: WebhookSubscription[], trigger: WebhookTrigger, scope?: {
+    eventTypeId?: string;
+    teamId?: string;
+}): WebhookSubscription[];
+/**
+ * Determine the delay before the next retry attempt.
+ *
+ * @param attempt - The current attempt number (0-indexed)
+ * @param config - Retry configuration
+ * @returns Delay in seconds, or null if max retries exceeded
+ */
+export declare function getRetryDelay(attempt: number, config?: WebhookRetryConfig): number | null;
+/**
+ * Determine if a response code indicates success (2xx).
+ *
+ * @param statusCode - HTTP response status code
+ * @returns Whether the delivery was successful
+ */
+export declare function isSuccessResponse(statusCode: number): boolean;
+/**
+ * Validate a webhook subscription.
+ *
+ * @param subscription - The subscription to validate
+ * @throws {WebhookValidationError} If the subscription is invalid
+ */
+export declare function validateWebhookSubscription(subscription: Omit<WebhookSubscription, "id">): void;
+//# sourceMappingURL=webhooks.d.ts.map

package/dist/webhooks.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"webhooks.d.ts","sourceRoot":"","sources":["../src/webhooks.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAQH,uCAAuC;AACvC,MAAM,MAAM,cAAc,GACtB,iBAAiB,GACjB,mBAAmB,GACnB,mBAAmB,GACnB,qBAAqB,GACrB,kBAAkB,GAClB,cAAc,GACd,iBAAiB,GACjB,gBAAgB,GAChB,aAAa,CAAC;AAElB,oCAAoC;AACpC,MAAM,WAAW,eAAe;IAC9B,KAAK,EAAE,MAAM,CAAC;IACd,IAAI,EAAE,MAAM,CAAC;IACb,KAAK,CAAC,EAAE,MAAM,CAAC;CAChB;AAED,oCAAoC;AACpC,MAAM,WAAW,cAAc;IAC7B,SAAS,EAAE,MAAM,CAAC;IAClB,SAAS,EAAE,MAAM,CAAC;IAClB,SAAS,EAAE,MAAM,CAAC;IAClB,OAAO,EAAE,MAAM,CAAC;IAChB,SAAS,EAAE;QAAE,IAAI,EAAE,MAAM,CAAC;QAAC,KAAK,EAAE,MAAM,CAAA;KAAE,CAAC;IAC3C,SAAS,EAAE,eAAe,EAAE,CAAC;IAC7B,MAAM,EAAE,MAAM,CAAC;IACf,SAAS,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;IACpC,QAAQ,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;CACpC;AAED,4BAA4B;AAC5B,MAAM,WAAW,eAAe;IAC9B,YAAY,EAAE,cAAc,CAAC;IAC7B,SAAS,EAAE,MAAM,CAAC;IAClB,OAAO,EAAE,cAAc,CAAC;CACzB;AAED,wCAAwC;AACxC,MAAM,WAAW,mBAAmB;IAClC,EAAE,EAAE,MAAM,CAAC;IACX,aAAa,EAAE,MAAM,CAAC;IACtB,QAAQ,EAAE,cAAc,EAAE,CAAC;IAC3B,MAAM,CAAC,EAAE,MAAM,CAAC;IAChB,QAAQ,EAAE,OAAO,CAAC;IAClB,qBAAqB;IACrB,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,MAAM,CAAC,EAAE,MAAM,CAAC;IAChB,6EAA6E;IAC7E,eAAe,CAAC,EAAE,MAAM,CAAC;CAC1B;AAED,2CAA2C;AAC3C,MAAM,WAAW,qBAAqB;IACpC,SAAS,EAAE,MAAM,CAAC;IAClB,OAAO,EAAE,cAAc,CAAC;IACxB,YAAY,EAAE,MAAM,GAAG,IAAI,CAAC;IAC5B,OAAO,EAAE,OAAO,CAAC;IACjB,OAAO,EAAE,MAAM,CAAC;IAChB,WAAW,EAAE,IAAI,CAAC;IAClB,KAAK,CAAC,EAAE,MAAM,CAAC;CAChB;AAED,+CAA+C;AAC/C,MAAM,WAAW,kBAAkB;IACjC,oDAAoD;IACpD,UAAU,EAAE,MAAM,CAAC;IACnB,wEAAwE;IACxE,cAAc,EAAE,MAAM,EAAE,CAAC;CAC1B;AAED,uCAAuC;AACvC,MAAM,WAAW,yBAAyB;IACxC,KAAK,EAAE,OAAO,CAAC;IACf,MAAM,CAAC,EAAE,mBAAmB,GAAG,oBAAoB,CAAC;CACrD;AAMD,kCAAkC;AAClC,eAAO,MAAM,oBAAoB,EAAE,kBAGlC,CAAC;AAEF,iCAAiC;AACjC,eAAO,MAAM,gBAAgB,EAAE,cAAc,EAU5C,CAAC;AAEF,4BAA4B;AAC5B,eAAO,MAAM,gBAAgB,wBAAwB,CAAC;AAEtD,4BAA4B;AAC5B,eAAO,MAAM,gBAAgB,wBAAwB,CAAC;AAEtD,sDAAsD;AACtD,eAAO,MAAM,yBAAyB,MAAM,CAAC;AAM7C,iDAAiD;AACjD,qBAAa,sBAAuB,SAAQ,KAAK;gBACnC,OAAO,EAAE,MAAM;CAI5B;AAMD;;;;;;;;;GASG;AACH,wBAAgB,kBAAkB,CAChC,OAAO,EAAE,MAAM,EACf,MAAM,EAAE,MAAM,EACd,gBAAgB,EAAE,MAAM,GACvB,MAAM,CAGR;AAED;;;;;;;;;;GAUG;AACH,wBAAgB,sBAAsB,CACpC,OAAO,EAAE,MAAM,EACf,SAAS,EAAE,MAAM,EACjB,gBAAgB,EAAE,MAAM,EACxB,MAAM,EAAE,MAAM,EACd,OAAO,CAAC,EAAE;IAAE,gBAAgB,CAAC,EAAE,MAAM,CAAA;CAAE,GACtC,yBAAyB,CAuC3B;AAMD;;;;;;GAMG;AACH,wBAAgB,qBAAqB,CACnC,OAAO,EAAE,cAAc,EACvB,OAAO,EAAE,cAAc,GACtB,eAAe,CAMjB;AAMD;;;;;;;;;;GAUG;AACH,wBAAgB,sBAAsB,CACpC,QAAQ,EAAE,MAAM,EAChB,QAAQ,EAAE,eAAe,GACxB,MAAM,CAqBR;AAMD;;;;;;;GAOG;AACH,wBAAgB,yBAAyB,CACvC,aAAa,EAAE,mBAAmB,EAAE,EACpC,OAAO,EAAE,cAAc,EACvB,KAAK,CAAC,EAAE;IAAE,WAAW,CAAC,EAAE,MAAM,CAAC;IAAC,MAAM,CAAC,EAAE,MAAM,CAAA;CAAE,GAChD,mBAAmB,EAAE,CAevB;AAMD;;;;;;GAMG;AACH,wBAAgB,aAAa,CAC3B,OAAO,EAAE,MAAM,EACf,MAAM,GAAE,kBAAyC,GAChD,MAAM,GAAG,IAAI,CAGf;AAED;;;;;GAKG;AACH,wBAAgB,iBAAiB,CAAC,UAAU,EAAE,MAAM,GAAG,OAAO,CAE7D;AAMD;;;;;GAKG;AACH,wBAAgB,2BAA2B,CACzC,YAAY,EAAE,IAAI,CAAC,mBAAmB,EAAE,IAAI,CAAC,GAC5C,IAAI,CA0CN"}

package/dist/webhooks.js

@@ -0,0 +1,239 @@
+/**
+ * Webhook infrastructure for event-driven integrations.
+ *
+ * Includes typed payloads, HMAC-SHA256 signing with replay protection,
+ * retry logic, and custom payload templates.
+ */
+import { createHmac } from "node:crypto";
+// ---------------------------------------------------------------------------
+// Constants
+// ---------------------------------------------------------------------------
+/** Default retry configuration */
+export const DEFAULT_RETRY_CONFIG = {
+    maxRetries: 3,
+    backoffSeconds: [10, 60, 300],
+};
+/** All valid webhook triggers */
+export const WEBHOOK_TRIGGERS = [
+    "BOOKING_CREATED",
+    "BOOKING_CONFIRMED",
+    "BOOKING_CANCELLED",
+    "BOOKING_RESCHEDULED",
+    "BOOKING_REJECTED",
+    "BOOKING_PAID",
+    "BOOKING_NO_SHOW",
+    "FORM_SUBMITTED",
+    "OOO_CREATED",
+];
+/** Signature header name */
+export const SIGNATURE_HEADER = "X-SlotKit-Signature";
+/** Timestamp header name */
+export const TIMESTAMP_HEADER = "X-SlotKit-Timestamp";
+/** Default tolerance window in seconds (5 minutes) */
+export const DEFAULT_TOLERANCE_SECONDS = 300;
+// ---------------------------------------------------------------------------
+// Errors
+// ---------------------------------------------------------------------------
+/** Error thrown when webhook validation fails */
+export class WebhookValidationError extends Error {
+    constructor(message) {
+        super(message);
+        this.name = "WebhookValidationError";
+    }
+}
+// ---------------------------------------------------------------------------
+// Signing & Verification
+// ---------------------------------------------------------------------------
+/**
+ * Create an HMAC-SHA256 signature for a webhook payload.
+ *
+ * Signature = HMAC-SHA256(secret, timestamp + '.' + rawBody)
+ *
+ * @param rawBody - The raw JSON string of the payload
+ * @param secret - The webhook secret key
+ * @param timestampSeconds - Unix timestamp in seconds
+ * @returns The hex-encoded HMAC signature
+ */
+export function signWebhookPayload(rawBody, secret, timestampSeconds) {
+    const message = `${timestampSeconds}.${rawBody}`;
+    return createHmac("sha256", secret).update(message).digest("hex");
+}
+/**
+ * Verify a webhook signature with replay protection.
+ *
+ * @param rawBody - The raw JSON string of the received payload
+ * @param signature - The value of the X-SlotKit-Signature header
+ * @param timestampSeconds - The value of the X-SlotKit-Timestamp header (Unix seconds)
+ * @param secret - The webhook secret key
+ * @param options - Optional configuration
+ * @param options.toleranceSeconds - Maximum age of the timestamp in seconds (default: 300)
+ * @returns Verification result with reason if invalid
+ */
+export function verifyWebhookSignature(rawBody, signature, timestampSeconds, secret, options) {
+    const tolerance = options?.toleranceSeconds ?? DEFAULT_TOLERANCE_SECONDS;
+    const nowSeconds = Math.floor(Date.now() / 1000);
+    const age = nowSeconds - timestampSeconds;
+    // Check replay protection
+    if (age > tolerance || age < -tolerance) {
+        return { valid: false, reason: "timestamp_expired" };
+    }
+    // Verify HMAC
+    const expectedSignature = signWebhookPayload(rawBody, secret, timestampSeconds);
+    // Constant-time comparison
+    if (expectedSignature.length !== signature.length) {
+        return { valid: false, reason: "signature_mismatch" };
+    }
+    const a = Buffer.from(expectedSignature, "hex");
+    const b = Buffer.from(signature, "hex");
+    if (a.length !== b.length) {
+        return { valid: false, reason: "signature_mismatch" };
+    }
+    let mismatch = 0;
+    for (let i = 0; i < a.length; i++) {
+        mismatch |= a[i] ^ b[i];
+    }
+    if (mismatch !== 0) {
+        return { valid: false, reason: "signature_mismatch" };
+    }
+    return { valid: true };
+}
+// ---------------------------------------------------------------------------
+// Envelope Construction
+// ---------------------------------------------------------------------------
+/**
+ * Create a standard webhook envelope.
+ *
+ * @param trigger - The trigger event
+ * @param payload - The webhook payload data
+ * @returns The full webhook envelope
+ */
+export function createWebhookEnvelope(trigger, payload) {
+    return {
+        triggerEvent: trigger,
+        createdAt: new Date().toISOString(),
+        payload,
+    };
+}
+// ---------------------------------------------------------------------------
+// Custom Payload Templates
+// ---------------------------------------------------------------------------
+/**
+ * Resolve a custom payload template with webhook data.
+ *
+ * Replaces `{{variable}}` placeholders with values from the envelope.
+ * Supported variables: triggerEvent, createdAt, bookingId, eventType,
+ * startTime, endTime, status, and any workflow template variables.
+ *
+ * @param template - The JSON template string with {{variable}} placeholders
+ * @param envelope - The webhook envelope
+ * @returns The resolved JSON string
+ */
+export function resolvePayloadTemplate(template, envelope) {
+    const vars = {
+        "{{triggerEvent}}": envelope.triggerEvent,
+        "{{createdAt}}": envelope.createdAt,
+        "{{bookingId}}": envelope.payload.bookingId,
+        "{{eventType}}": envelope.payload.eventType,
+        "{{startTime}}": envelope.payload.startTime,
+        "{{endTime}}": envelope.payload.endTime,
+        "{{status}}": envelope.payload.status,
+        "{{organizerName}}": envelope.payload.organizer.name,
+        "{{organizerEmail}}": envelope.payload.organizer.email,
+    };
+    let result = template;
+    for (const [key, value] of Object.entries(vars)) {
+        const safeValue = value.replace(/\{/g, "\x00LBRACE\x00").replace(/\}/g, "\x00RBRACE\x00");
+        result = result.replaceAll(key, safeValue);
+    }
+    result = result.replace(/\x00LBRACE\x00/g, "{").replace(/\x00RBRACE\x00/g, "}");
+    return result;
+}
+// ---------------------------------------------------------------------------
+// Subscription Matching
+// ---------------------------------------------------------------------------
+/**
+ * Find all active webhook subscriptions that match a trigger and optional scope.
+ *
+ * @param subscriptions - All available webhook subscriptions
+ * @param trigger - The trigger event that occurred
+ * @param scope - Optional scope filters (eventTypeId, teamId)
+ * @returns Matching subscriptions
+ */
+export function matchWebhookSubscriptions(subscriptions, trigger, scope) {
+    return subscriptions.filter((sub) => {
+        if (!sub.isActive)
+            return false;
+        if (!sub.triggers.includes(trigger))
+            return false;
+        // Scope filtering: subscription must match if it has a scope
+        if (sub.eventTypeId && scope?.eventTypeId !== sub.eventTypeId) {
+            return false;
+        }
+        if (sub.teamId && scope?.teamId !== sub.teamId) {
+            return false;
+        }
+        return true;
+    });
+}
+// ---------------------------------------------------------------------------
+// Retry Logic
+// ---------------------------------------------------------------------------
+/**
+ * Determine the delay before the next retry attempt.
+ *
+ * @param attempt - The current attempt number (0-indexed)
+ * @param config - Retry configuration
+ * @returns Delay in seconds, or null if max retries exceeded
+ */
+export function getRetryDelay(attempt, config = DEFAULT_RETRY_CONFIG) {
+    if (attempt >= config.maxRetries)
+        return null;
+    return config.backoffSeconds[attempt] ?? config.backoffSeconds[config.backoffSeconds.length - 1];
+}
+/**
+ * Determine if a response code indicates success (2xx).
+ *
+ * @param statusCode - HTTP response status code
+ * @returns Whether the delivery was successful
+ */
+export function isSuccessResponse(statusCode) {
+    return statusCode >= 200 && statusCode < 300;
+}
+// ---------------------------------------------------------------------------
+// Validation
+// ---------------------------------------------------------------------------
+/**
+ * Validate a webhook subscription.
+ *
+ * @param subscription - The subscription to validate
+ * @throws {WebhookValidationError} If the subscription is invalid
+ */
+export function validateWebhookSubscription(subscription) {
+    if (!subscription.subscriberUrl) {
+        throw new WebhookValidationError("Subscriber URL is required");
+    }
+    let parsedUrl;
+    try {
+        parsedUrl = new URL(subscription.subscriberUrl);
+    }
+    catch {
+        throw new WebhookValidationError(`Invalid subscriber URL: "${subscription.subscriberUrl}"`);
+    }
+    if (parsedUrl.protocol !== "https:") {
+        throw new WebhookValidationError("Subscriber URL must use HTTPS");
+    }
+    const hostname = parsedUrl.hostname.toLowerCase();
+    const ssrfPattern = /^(localhost|127\.\d+\.\d+\.\d+|10\.\d+\.\d+\.\d+|172\.(1[6-9]|2\d|3[01])\.\d+\.\d+|192\.168\.\d+\.\d+|169\.254\.\d+\.\d+|\[::1\]|::1)$/;
+    if (ssrfPattern.test(hostname)) {
+        throw new WebhookValidationError(`Subscriber URL hostname is not allowed: "${hostname}"`);
+    }
+    if (!Array.isArray(subscription.triggers) || subscription.triggers.length === 0) {
+        throw new WebhookValidationError("At least one trigger is required");
+    }
+    for (const trigger of subscription.triggers) {
+        if (!WEBHOOK_TRIGGERS.includes(trigger)) {
+            throw new WebhookValidationError(`Invalid trigger: "${trigger}". Must be one of: ${WEBHOOK_TRIGGERS.join(", ")}`);
+        }
+    }
+}
+//# sourceMappingURL=webhooks.js.map

package/dist/webhooks.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"webhooks.js","sourceRoot":"","sources":["../src/webhooks.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAEH,OAAO,EAAE,UAAU,EAAE,MAAM,aAAa,CAAC;AAoFzC,8EAA8E;AAC9E,YAAY;AACZ,8EAA8E;AAE9E,kCAAkC;AAClC,MAAM,CAAC,MAAM,oBAAoB,GAAuB;IACtD,UAAU,EAAE,CAAC;IACb,cAAc,EAAE,CAAC,EAAE,EAAE,EAAE,EAAE,GAAG,CAAC;CAC9B,CAAC;AAEF,iCAAiC;AACjC,MAAM,CAAC,MAAM,gBAAgB,GAAqB;IAChD,iBAAiB;IACjB,mBAAmB;IACnB,mBAAmB;IACnB,qBAAqB;IACrB,kBAAkB;IAClB,cAAc;IACd,iBAAiB;IACjB,gBAAgB;IAChB,aAAa;CACd,CAAC;AAEF,4BAA4B;AAC5B,MAAM,CAAC,MAAM,gBAAgB,GAAG,qBAAqB,CAAC;AAEtD,4BAA4B;AAC5B,MAAM,CAAC,MAAM,gBAAgB,GAAG,qBAAqB,CAAC;AAEtD,sDAAsD;AACtD,MAAM,CAAC,MAAM,yBAAyB,GAAG,GAAG,CAAC;AAE7C,8EAA8E;AAC9E,SAAS;AACT,8EAA8E;AAE9E,iDAAiD;AACjD,MAAM,OAAO,sBAAuB,SAAQ,KAAK;IAC/C,YAAY,OAAe;QACzB,KAAK,CAAC,OAAO,CAAC,CAAC;QACf,IAAI,CAAC,IAAI,GAAG,wBAAwB,CAAC;IACvC,CAAC;CACF;AAED,8EAA8E;AAC9E,yBAAyB;AACzB,8EAA8E;AAE9E;;;;;;;;;GASG;AACH,MAAM,UAAU,kBAAkB,CAChC,OAAe,EACf,MAAc,EACd,gBAAwB;IAExB,MAAM,OAAO,GAAG,GAAG,gBAAgB,IAAI,OAAO,EAAE,CAAC;IACjD,OAAO,UAAU,CAAC,QAAQ,EAAE,MAAM,CAAC,CAAC,MAAM,CAAC,OAAO,CAAC,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC;AACpE,CAAC;AAED;;;;;;;;;;GAUG;AACH,MAAM,UAAU,sBAAsB,CACpC,OAAe,EACf,SAAiB,EACjB,gBAAwB,EACxB,MAAc,EACd,OAAuC;IAEvC,MAAM,SAAS,GAAG,OAAO,EAAE,gBAAgB,IAAI,yBAAyB,CAAC;IACzE,MAAM,UAAU,GAAG,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,GAAG,EAAE,GAAG,IAAI,CAAC,CAAC;IACjD,MAAM,GAAG,GAAG,UAAU,GAAG,gBAAgB,CAAC;IAE1C,0BAA0B;IAC1B,IAAI,GAAG,GAAG,SAAS,IAAI,GAAG,GAAG,CAAC,SAAS,EAAE,CAAC;QACxC,OAAO,EAAE,KAAK,EAAE,KAAK,EAAE,MAAM,EAAE,mBAAmB,EAAE,CAAC;IACvD,CAAC;IAED,cAAc;IACd,MAAM,iBAAiB,GAAG,kBAAkB,CAC1C,OAAO,EACP,MAAM,EACN,gBAAgB,CACjB,CAAC;IAEF,2BAA2B;IAC3B,IAAI,iBAAiB,CAAC,MAAM,KAAK,SAAS,CAAC,MAAM,EAAE,CAAC;QAClD,OAAO,EAAE,KAAK,EAAE,KAAK,EAAE,MAAM,EAAE,oBAAoB,EAAE,CAAC;IACxD,CAAC;IAED,MAAM,CAAC,GAAG,MAAM,CAAC,IAAI,CAAC,iBAAiB,EAAE,KAAK,CAAC,CAAC;IAChD,MAAM,CAAC,GAAG,MAAM,CAAC,IAAI,CAAC,SAAS,EAAE,KAAK,CAAC,CAAC;IAExC,IAAI,CAAC,CAAC,MAAM,KAAK,CAAC,CAAC,MAAM,EAAE,CAAC;QAC1B,OAAO,EAAE,KAAK,EAAE,KAAK,EAAE,MAAM,EAAE,oBAAoB,EAAE,CAAC;IACxD,CAAC;IAED,IAAI,QAAQ,GAAG,CAAC,CAAC;IACjB,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,CAAC,CAAC,MAAM,EAAE,CAAC,EAAE,EAAE,CAAC;QAClC,QAAQ,IAAI,CAAC,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,CAAC;IAC1B,CAAC;IAED,IAAI,QAAQ,KAAK,CAAC,EAAE,CAAC;QACnB,OAAO,EAAE,KAAK,EAAE,KAAK,EAAE,MAAM,EAAE,oBAAoB,EAAE,CAAC;IACxD,CAAC;IAED,OAAO,EAAE,KAAK,EAAE,IAAI,EAAE,CAAC;AACzB,CAAC;AAED,8EAA8E;AAC9E,wBAAwB;AACxB,8EAA8E;AAE9E;;;;;;GAMG;AACH,MAAM,UAAU,qBAAqB,CACnC,OAAuB,EACvB,OAAuB;IAEvB,OAAO;QACL,YAAY,EAAE,OAAO;QACrB,SAAS,EAAE,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE;QACnC,OAAO;KACR,CAAC;AACJ,CAAC;AAED,8EAA8E;AAC9E,2BAA2B;AAC3B,8EAA8E;AAE9E;;;;;;;;;;GAUG;AACH,MAAM,UAAU,sBAAsB,CACpC,QAAgB,EAChB,QAAyB;IAEzB,MAAM,IAAI,GAA2B;QACnC,kBAAkB,EAAE,QAAQ,CAAC,YAAY;QACzC,eAAe,EAAE,QAAQ,CAAC,SAAS;QACnC,eAAe,EAAE,QAAQ,CAAC,OAAO,CAAC,SAAS;QAC3C,eAAe,EAAE,QAAQ,CAAC,OAAO,CAAC,SAAS;QAC3C,eAAe,EAAE,QAAQ,CAAC,OAAO,CAAC,SAAS;QAC3C,aAAa,EAAE,QAAQ,CAAC,OAAO,CAAC,OAAO;QACvC,YAAY,EAAE,QAAQ,CAAC,OAAO,CAAC,MAAM;QACrC,mBAAmB,EAAE,QAAQ,CAAC,OAAO,CAAC,SAAS,CAAC,IAAI;QACpD,oBAAoB,EAAE,QAAQ,CAAC,OAAO,CAAC,SAAS,CAAC,KAAK;KACvD,CAAC;IAEF,IAAI,MAAM,GAAG,QAAQ,CAAC;IACtB,KAAK,MAAM,CAAC,GAAG,EAAE,KAAK,CAAC,IAAI,MAAM,CAAC,OAAO,CAAC,IAAI,CAAC,EAAE,CAAC;QAChD,MAAM,SAAS,GAAG,KAAK,CAAC,OAAO,CAAC,KAAK,EAAE,gBAAgB,CAAC,CAAC,OAAO,CAAC,KAAK,EAAE,gBAAgB,CAAC,CAAC;QAC1F,MAAM,GAAG,MAAM,CAAC,UAAU,CAAC,GAAG,EAAE,SAAS,CAAC,CAAC;IAC7C,CAAC;IACD,MAAM,GAAG,MAAM,CAAC,OAAO,CAAC,iBAAiB,EAAE,GAAG,CAAC,CAAC,OAAO,CAAC,iBAAiB,EAAE,GAAG,CAAC,CAAC;IAEhF,OAAO,MAAM,CAAC;AAChB,CAAC;AAED,8EAA8E;AAC9E,wBAAwB;AACxB,8EAA8E;AAE9E;;;;;;;GAOG;AACH,MAAM,UAAU,yBAAyB,CACvC,aAAoC,EACpC,OAAuB,EACvB,KAAiD;IAEjD,OAAO,aAAa,CAAC,MAAM,CAAC,CAAC,GAAG,EAAE,EAAE;QAClC,IAAI,CAAC,GAAG,CAAC,QAAQ;YAAE,OAAO,KAAK,CAAC;QAChC,IAAI,CAAC,GAAG,CAAC,QAAQ,CAAC,QAAQ,CAAC,OAAO,CAAC;YAAE,OAAO,KAAK,CAAC;QAElD,6DAA6D;QAC7D,IAAI,GAAG,CAAC,WAAW,IAAI,KAAK,EAAE,WAAW,KAAK,GAAG,CAAC,WAAW,EAAE,CAAC;YAC9D,OAAO,KAAK,CAAC;QACf,CAAC;QACD,IAAI,GAAG,CAAC,MAAM,IAAI,KAAK,EAAE,MAAM,KAAK,GAAG,CAAC,MAAM,EAAE,CAAC;YAC/C,OAAO,KAAK,CAAC;QACf,CAAC;QAED,OAAO,IAAI,CAAC;IACd,CAAC,CAAC,CAAC;AACL,CAAC;AAED,8EAA8E;AAC9E,cAAc;AACd,8EAA8E;AAE9E;;;;;;GAMG;AACH,MAAM,UAAU,aAAa,CAC3B,OAAe,EACf,SAA6B,oBAAoB;IAEjD,IAAI,OAAO,IAAI,MAAM,CAAC,UAAU;QAAE,OAAO,IAAI,CAAC;IAC9C,OAAO,MAAM,CAAC,cAAc,CAAC,OAAO,CAAC,IAAI,MAAM,CAAC,cAAc,CAAC,MAAM,CAAC,cAAc,CAAC,MAAM,GAAG,CAAC,CAAC,CAAC;AACnG,CAAC;AAED;;;;;GAKG;AACH,MAAM,UAAU,iBAAiB,CAAC,UAAkB;IAClD,OAAO,UAAU,IAAI,GAAG,IAAI,UAAU,GAAG,GAAG,CAAC;AAC/C,CAAC;AAED,8EAA8E;AAC9E,aAAa;AACb,8EAA8E;AAE9E;;;;;GAKG;AACH,MAAM,UAAU,2BAA2B,CACzC,YAA6C;IAE7C,IAAI,CAAC,YAAY,CAAC,aAAa,EAAE,CAAC;QAChC,MAAM,IAAI,sBAAsB,CAAC,4BAA4B,CAAC,CAAC;IACjE,CAAC;IAED,IAAI,SAAc,CAAC;IACnB,IAAI,CAAC;QACH,SAAS,GAAG,IAAI,GAAG,CAAC,YAAY,CAAC,aAAa,CAAC,CAAC;IAClD,CAAC;IAAC,MAAM,CAAC;QACP,MAAM,IAAI,sBAAsB,CAC9B,4BAA4B,YAAY,CAAC,aAAa,GAAG,CAC1D,CAAC;IACJ,CAAC;IAED,IAAI,SAAS,CAAC,QAAQ,KAAK,QAAQ,EAAE,CAAC;QACpC,MAAM,IAAI,sBAAsB,CAC9B,+BAA+B,CAChC,CAAC;IACJ,CAAC;IAED,MAAM,QAAQ,GAAG,SAAS,CAAC,QAAQ,CAAC,WAAW,EAAE,CAAC;IAClD,MAAM,WAAW,GACf,wIAAwI,CAAC;IAC3I,IAAI,WAAW,CAAC,IAAI,CAAC,QAAQ,CAAC,EAAE,CAAC;QAC/B,MAAM,IAAI,sBAAsB,CAC9B,4CAA4C,QAAQ,GAAG,CACxD,CAAC;IACJ,CAAC;IAED,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,YAAY,CAAC,QAAQ,CAAC,IAAI,YAAY,CAAC,QAAQ,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;QAChF,MAAM,IAAI,sBAAsB,CAC9B,kCAAkC,CACnC,CAAC;IACJ,CAAC;IAED,KAAK,MAAM,OAAO,IAAI,YAAY,CAAC,QAAQ,EAAE,CAAC;QAC5C,IAAI,CAAC,gBAAgB,CAAC,QAAQ,CAAC,OAAO,CAAC,EAAE,CAAC;YACxC,MAAM,IAAI,sBAAsB,CAC9B,qBAAqB,OAAO,sBAAsB,gBAAgB,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE,CAChF,CAAC;QACJ,CAAC;IACH,CAAC;AACH,CAAC"}

package/dist/workflows.d.ts

@@ -0,0 +1,169 @@
+/**
+ * Workflow automation engine.
+ *
+ * Trigger-condition-action framework that automates tasks
+ * based on booking lifecycle events.
+ */
+/** Supported workflow trigger events */
+export type WorkflowTrigger = "booking_created" | "booking_confirmed" | "booking_cancelled" | "booking_rescheduled" | "before_event" | "after_event" | "payment_received" | "payment_failed" | "no_show_confirmed" | "form_submitted";
+/** Supported workflow action types */
+export type WorkflowActionType = "send_email" | "send_sms" | "fire_webhook" | "update_status" | "create_calendar_event";
+/** Condition operator for filtering */
+export type ConditionOperator = "equals" | "not_equals" | "contains" | "in";
+/** A single workflow condition */
+export interface WorkflowCondition {
+    /** The field to check (e.g., "event_type_id", "status", "customer_email") */
+    field: string;
+    /** Comparison operator */
+    operator: ConditionOperator;
+    /** Value(s) to compare against */
+    value: string | string[];
+}
+/** Email action configuration */
+export interface EmailActionConfig {
+    type: "send_email";
+    /** Recipient: "customer", "host", or a specific email address */
+    to: string;
+    /** Email subject (supports template variables) */
+    subject: string;
+    /** Email body template (supports template variables) */
+    body: string;
+}
+/** SMS action configuration */
+export interface SmsActionConfig {
+    type: "send_sms";
+    /** Phone number field key or literal number */
+    to: string;
+    /** SMS body template (supports template variables) */
+    body: string;
+}
+/** Webhook action configuration */
+export interface WebhookActionConfig {
+    type: "fire_webhook";
+    /** Target URL */
+    url: string;
+    /** Payload template (JSON string with template variables) */
+    payload?: string;
+    /** HTTP method (default: POST) */
+    method?: "POST" | "PUT" | "PATCH";
+    /** Custom headers */
+    headers?: Record<string, string>;
+}
+/** Status update action configuration */
+export interface StatusUpdateActionConfig {
+    type: "update_status";
+    /** New status to set */
+    status: string;
+}
+/** Calendar event action configuration */
+export interface CalendarEventActionConfig {
+    type: "create_calendar_event";
+    /** Additional notes for the calendar event */
+    notes?: string;
+}
+/** Union of all action configurations */
+export type WorkflowAction = EmailActionConfig | SmsActionConfig | WebhookActionConfig | StatusUpdateActionConfig | CalendarEventActionConfig;
+/** A complete workflow definition */
+export interface WorkflowDefinition {
+    id: string;
+    name: string;
+    trigger: WorkflowTrigger;
+    conditions: WorkflowCondition[];
+    actions: WorkflowAction[];
+    isActive: boolean;
+}
+/** Context data passed when evaluating a workflow */
+export interface WorkflowContext {
+    bookingId?: string;
+    eventTypeId?: string;
+    providerId?: string;
+    customerEmail?: string;
+    customerName?: string;
+    customerPhone?: string;
+    status?: string;
+    startsAt?: Date;
+    endsAt?: Date;
+    hostName?: string;
+    eventTitle?: string;
+    eventDuration?: number;
+    eventLocation?: string;
+    managementUrl?: string;
+    /** Additional fields for condition evaluation */
+    [key: string]: unknown;
+}
+/** Result of a workflow execution log entry */
+export interface WorkflowLogEntry {
+    workflowId: string;
+    bookingId?: string;
+    actionType: WorkflowActionType;
+    status: "success" | "error" | "skipped";
+    error?: string;
+    executedAt: Date;
+}
+/** Error thrown when workflow validation fails */
+export declare class WorkflowValidationError extends Error {
+    constructor(message: string);
+}
+/** Standard template variables available in workflow messages */
+export declare const TEMPLATE_VARIABLES: readonly ["{booking.title}", "{booking.startTime}", "{booking.endTime}", "{booking.date}", "{attendee.name}", "{attendee.email}", "{host.name}", "{event.location}", "{event.duration}", "{booking.managementUrl}"];
+/**
+ * Resolve template variables in a string using workflow context.
+ *
+ * Missing variables are replaced with empty strings.
+ *
+ * @param template - The template string with `{variable}` placeholders
+ * @param context - The workflow context with booking/event data
+ * @returns The resolved string
+ */
+export declare function resolveTemplateVariables(template: string, context: WorkflowContext): string;
+/** Default workflow templates for common scenarios */
+export declare const DEFAULT_TEMPLATES: {
+    readonly confirmation: {
+        readonly subject: "Booking Confirmed: {booking.title}";
+        readonly body: "Hi {attendee.name},\n\nYour booking for {booking.title} on {booking.date} at {booking.startTime} has been confirmed.\n\nDuration: {event.duration}\nLocation: {event.location}\n\nManage your booking: {booking.managementUrl}\n\nBest regards,\n{host.name}";
+    };
+    readonly reminder_24h: {
+        readonly subject: "Reminder: {booking.title} tomorrow";
+        readonly body: "Hi {attendee.name},\n\nThis is a reminder that you have a booking for {booking.title} tomorrow at {booking.startTime}.\n\nLocation: {event.location}\n\nManage your booking: {booking.managementUrl}\n\nSee you soon,\n{host.name}";
+    };
+    readonly reminder_1h: {
+        readonly subject: "Reminder: {booking.title} in 1 hour";
+        readonly body: "Hi {attendee.name},\n\nYour booking for {booking.title} starts in 1 hour at {booking.startTime}.\n\nLocation: {event.location}\n\nSee you soon,\n{host.name}";
+    };
+    readonly cancellation: {
+        readonly subject: "Booking Cancelled: {booking.title}";
+        readonly body: "Hi {attendee.name},\n\nYour booking for {booking.title} on {booking.date} at {booking.startTime} has been cancelled.\n\nIf you'd like to rebook, please visit our booking page.\n\nBest regards,\n{host.name}";
+    };
+    readonly followup: {
+        readonly subject: "How was your {booking.title}?";
+        readonly body: "Hi {attendee.name},\n\nThank you for your recent {booking.title} with {host.name}.\n\nWe hope you had a great experience! If you'd like to book again, we'd love to see you.\n\nBest regards,\n{host.name}";
+    };
+};
+/**
+ * Evaluate whether a workflow's conditions are met for the given context.
+ *
+ * If no conditions are defined, returns true (unconditional trigger).
+ * All conditions must match (AND logic).
+ *
+ * @param conditions - Array of workflow conditions
+ * @param context - The workflow context data
+ * @returns Whether all conditions are satisfied
+ */
+export declare function evaluateConditions(conditions: WorkflowCondition[], context: WorkflowContext): boolean;
+/**
+ * Validate a workflow definition.
+ *
+ * @param workflow - The workflow to validate
+ * @throws {WorkflowValidationError} If the workflow is invalid
+ */
+export declare function validateWorkflow(workflow: WorkflowDefinition): void;
+/**
+ * Find all active workflows that match a given trigger and context.
+ *
+ * @param workflows - All available workflows
+ * @param trigger - The trigger event that occurred
+ * @param context - The workflow context data
+ * @returns Workflows that should be executed
+ */
+export declare function matchWorkflows(workflows: WorkflowDefinition[], trigger: WorkflowTrigger, context: WorkflowContext): WorkflowDefinition[];
+//# sourceMappingURL=workflows.d.ts.map