@thecryptodonkey/toll-booth 1.0.0

package/dist/adapters/web-standard.d.ts

@@ -0,0 +1,60 @@
+import type { TollBoothEngine } from '../core/toll-booth.js';
+import type { CreateInvoiceDeps } from '../core/create-invoice.js';
+import type { InvoiceStatusDeps } from '../core/invoice-status.js';
+import type { NwcPayDeps } from '../core/nwc-pay.js';
+import type { CashuRedeemDeps } from '../core/cashu-redeem.js';
+export type WebStandardHandler = (req: Request) => Promise<Response>;
+/**
+ * Returns a `WebStandardHandler` that enforces L402 payment gating.
+ *
+ * On `pass` or `proxy` results the request is forwarded to the upstream.
+ * On `challenge` a 402 response is returned with invoice details.
+ */
+export interface WebStandardMiddlewareConfig {
+    engine: TollBoothEngine;
+    upstream: string;
+    trustProxy?: boolean;
+    responseHeaders?: Record<string, string>;
+    /** Timeout in milliseconds for upstream proxy requests (default: 30000). */
+    upstreamTimeout?: number;
+    /**
+     * Custom callback to extract client IP from the request.
+     * Use this for platform-specific IP resolution (e.g. Cloudflare's
+     * `CF-Connecting-IP`, Deno's `connInfo.remoteAddr`).
+     * If `freeTier` is enabled, provide either `trustProxy: true` or
+     * a `getClientIp` callback for per-client isolation.
+     */
+    getClientIp?: (req: Request) => string;
+}
+export declare function createWebStandardMiddleware(engineOrConfig: TollBoothEngine | WebStandardMiddlewareConfig, upstreamArg?: string): WebStandardHandler;
+/**
+ * Returns a `WebStandardHandler` that serves invoice status as JSON or HTML.
+ *
+ * Extracts the payment hash from the last URL path segment and expects
+ * a `?token=...` status lookup secret. When `Accept: text/html` is requested,
+ * renders the self-service payment page; otherwise returns JSON with
+ * `{ paid, preimage }`.
+ */
+export declare function createWebStandardInvoiceStatusHandler(deps: InvoiceStatusDeps): WebStandardHandler;
+/**
+ * Returns a `WebStandardHandler` that creates a new Lightning invoice.
+ *
+ * Parses the JSON body for an optional `amountSats` field, delegates
+ * to the core `handleCreateInvoice`, and returns the result.
+ */
+export declare function createWebStandardCreateInvoiceHandler(deps: CreateInvoiceDeps): WebStandardHandler;
+/**
+ * Returns a `WebStandardHandler` that pays a Lightning invoice via NWC.
+ *
+ * Expects JSON body with `{ nwcUri, bolt11, paymentHash, statusToken }`.
+ * Returns the payment preimage on success.
+ */
+export declare function createWebStandardNwcHandler(deps: NwcPayDeps): WebStandardHandler;
+/**
+ * Returns a `WebStandardHandler` that redeems a Cashu token as payment.
+ *
+ * Expects JSON body with `{ token, paymentHash, statusToken }`.
+ * Uses durable claims and leases to avoid concurrent duplicate redemption.
+ */
+export declare function createWebStandardCashuHandler(deps: CashuRedeemDeps): WebStandardHandler;
+//# sourceMappingURL=web-standard.d.ts.map

package/dist/adapters/web-standard.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"web-standard.d.ts","sourceRoot":"","sources":["../../src/adapters/web-standard.ts"],"names":[],"mappings":"AACA,OAAO,KAAK,EAAE,eAAe,EAAE,MAAM,uBAAuB,CAAA;AAC5D,OAAO,KAAK,EAAE,iBAAiB,EAAE,MAAM,2BAA2B,CAAA;AAElE,OAAO,KAAK,EAAE,iBAAiB,EAAE,MAAM,2BAA2B,CAAA;AAIlE,OAAO,KAAK,EAAE,UAAU,EAAE,MAAM,oBAAoB,CAAA;AAEpD,OAAO,KAAK,EAAE,eAAe,EAAE,MAAM,yBAAyB,CAAA;AAS9D,MAAM,MAAM,kBAAkB,GAAG,CAAC,GAAG,EAAE,OAAO,KAAK,OAAO,CAAC,QAAQ,CAAC,CAAA;AAqFpE;;;;;GAKG;AACH,MAAM,WAAW,2BAA2B;IAC1C,MAAM,EAAE,eAAe,CAAA;IACvB,QAAQ,EAAE,MAAM,CAAA;IAChB,UAAU,CAAC,EAAE,OAAO,CAAA;IACpB,eAAe,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAA;IACxC,4EAA4E;IAC5E,eAAe,CAAC,EAAE,MAAM,CAAA;IACxB;;;;;;OAMG;IACH,WAAW,CAAC,EAAE,CAAC,GAAG,EAAE,OAAO,KAAK,MAAM,CAAA;CACvC;AAED,wBAAgB,2BAA2B,CACzC,cAAc,EAAE,eAAe,GAAG,2BAA2B,EAC7D,WAAW,CAAC,EAAE,MAAM,GACnB,kBAAkB,CAqEpB;AAID;;;;;;;GAOG;AACH,wBAAgB,qCAAqC,CACnD,IAAI,EAAE,iBAAiB,GACtB,kBAAkB,CAwCpB;AAID;;;;;GAKG;AACH,wBAAgB,qCAAqC,CACnD,IAAI,EAAE,iBAAiB,GACtB,kBAAkB,CAiCpB;AAID;;;;;GAKG;AACH,wBAAgB,2BAA2B,CAAC,IAAI,EAAE,UAAU,GAAG,kBAAkB,CAmBhF;AAID;;;;;GAKG;AACH,wBAAgB,6BAA6B,CAAC,IAAI,EAAE,eAAe,GAAG,kBAAkB,CA4BvF"}

package/dist/adapters/web-standard.js

@@ -0,0 +1,252 @@
+import { handleCreateInvoice } from '../core/create-invoice.js';
+import { handleInvoiceStatus, renderInvoiceStatusHtml } from '../core/invoice-status.js';
+import { handleNwcPay } from '../core/nwc-pay.js';
+import { handleCashuRedeem } from '../core/cashu-redeem.js';
+import { PAYMENT_HASH_RE } from '../core/types.js';
+import { appendVary, applyNoStoreHeaders, stripProxyRequestHeaders, stripProxyResponseHeaders, } from './proxy-headers.js';
+// -- Helpers ------------------------------------------------------------------
+class BodyTooLargeError extends Error {
+}
+/**
+ * Parses the request body as JSON with a configurable size limit.
+ *
+ * Checks the `Content-Length` header first for a fast rejection, then reads
+ * the body as text and enforces the byte limit before parsing. Returns an
+ * empty object on any failure (oversized body, missing body, malformed JSON)
+ * so callers behave identically to the previous `.catch(() => ({}))` pattern.
+ *
+ * @param req      - The incoming request.
+ * @param maxBytes - Maximum allowed body size in bytes (default: 64 KiB).
+ */
+async function safeParseJson(req, maxBytes = 65_536) {
+    // Quick rejection via Content-Length header — avoids reading the body at all
+    const contentLength = req.headers.get('content-length');
+    const parsedLength = contentLength === null ? NaN : parseInt(contentLength, 10);
+    if (Number.isFinite(parsedLength) && parsedLength > maxBytes) {
+        return { ok: false };
+    }
+    try {
+        const text = await readBodyTextWithinLimit(req, maxBytes);
+        if (!text.trim())
+            return { ok: true, value: {} };
+        return { ok: true, value: JSON.parse(text) };
+    }
+    catch {
+        return { ok: false };
+    }
+}
+async function proxyUpstream(upstream, req, timeoutMs = 30_000) {
+    const url = new URL(req.url);
+    const target = `${upstream}${url.pathname}${url.search}`;
+    const headers = stripProxyRequestHeaders(req.headers);
+    const init = {
+        method: req.method,
+        headers,
+        signal: AbortSignal.timeout(timeoutMs),
+        duplex: 'half',
+    };
+    // Forward body for non-GET/HEAD requests
+    if (req.method !== 'GET' && req.method !== 'HEAD') {
+        init.body = req.body;
+    }
+    return fetch(target, init);
+}
+async function readBodyTextWithinLimit(req, maxBytes) {
+    if (!req.body)
+        return '';
+    const reader = req.body.getReader();
+    const decoder = new TextDecoder();
+    let totalBytes = 0;
+    let text = '';
+    try {
+        while (true) {
+            const { done, value } = await reader.read();
+            if (done)
+                break;
+            totalBytes += value.byteLength;
+            if (totalBytes > maxBytes) {
+                await reader.cancel();
+                throw new BodyTooLargeError('Request body exceeded limit');
+            }
+            text += decoder.decode(value, { stream: true });
+        }
+        return text + decoder.decode();
+    }
+    finally {
+        reader.releaseLock();
+    }
+}
+export function createWebStandardMiddleware(engineOrConfig, upstreamArg) {
+    // Support both old (engine, upstream) and new (config) signatures
+    const config = typeof upstreamArg === 'string'
+        ? { engine: engineOrConfig, upstream: upstreamArg }
+        : engineOrConfig;
+    const engine = config.engine;
+    const upstreamBase = config.upstream.replace(/\/$/, '');
+    const extraHeaders = config.responseHeaders ?? {};
+    const upstreamTimeout = config.upstreamTimeout ?? 30_000;
+    // Fail closed when free-tier is enabled but all requests would collapse
+    // into one shared bucket.
+    if (engine.freeTier && !config.trustProxy && !config.getClientIp) {
+        throw new Error('freeTier requires either trustProxy: true or getClientIp for the web-standard adapter');
+    }
+    return async (req) => {
+        const url = new URL(req.url);
+        const ip = config.getClientIp
+            ? config.getClientIp(req)
+            : config.trustProxy
+                ? req.headers.get('x-forwarded-for')?.split(',')[0]?.trim() ?? req.headers.get('x-real-ip') ?? 'unknown'
+                : 'unknown';
+        const headers = Object.fromEntries(req.headers.entries());
+        const result = await engine.handle({
+            method: req.method,
+            path: url.pathname,
+            headers,
+            ip,
+            body: req.body,
+        });
+        if (result.action === 'pass' || result.action === 'proxy') {
+            try {
+                const res = await proxyUpstream(upstreamBase, req, upstreamTimeout);
+                const responseHeaders = stripProxyResponseHeaders(res.headers);
+                for (const [key, value] of Object.entries(result.headers)) {
+                    responseHeaders.set(key, value);
+                }
+                for (const [key, value] of Object.entries(extraHeaders)) {
+                    responseHeaders.set(key, value);
+                }
+                return new Response(res.body, {
+                    status: res.status,
+                    statusText: res.statusText,
+                    headers: responseHeaders,
+                });
+            }
+            catch {
+                return Response.json({ error: 'Upstream unavailable' }, { status: 502, headers: new Headers(extraHeaders) });
+            }
+        }
+        // challenge — 402
+        const challengeHeaders = new Headers(extraHeaders);
+        for (const [key, value] of Object.entries(result.headers)) {
+            challengeHeaders.set(key, value);
+        }
+        applyNoStoreHeaders(challengeHeaders);
+        return Response.json(result.body, {
+            status: 402,
+            headers: challengeHeaders,
+        });
+    };
+}
+// -- Invoice status handler ---------------------------------------------------
+/**
+ * Returns a `WebStandardHandler` that serves invoice status as JSON or HTML.
+ *
+ * Extracts the payment hash from the last URL path segment and expects
+ * a `?token=...` status lookup secret. When `Accept: text/html` is requested,
+ * renders the self-service payment page; otherwise returns JSON with
+ * `{ paid, preimage }`.
+ */
+export function createWebStandardInvoiceStatusHandler(deps) {
+    return async (req) => {
+        const url = new URL(req.url);
+        const segments = url.pathname.split('/').filter(Boolean);
+        const paymentHash = segments[segments.length - 1] ?? '';
+        if (!PAYMENT_HASH_RE.test(paymentHash)) {
+            return Response.json({ error: 'Invalid payment hash' }, { status: 400 });
+        }
+        const statusToken = url.searchParams.get('token') ?? undefined;
+        const accept = req.headers.get('accept') ?? '';
+        try {
+            if (accept.includes('text/html')) {
+                const { html, status } = await renderInvoiceStatusHtml(deps, paymentHash, statusToken);
+                const headers = appendVary(applyNoStoreHeaders(new Headers()), 'Accept');
+                headers.set('Content-Type', 'text/html; charset=utf-8');
+                return new Response(html, {
+                    status,
+                    headers,
+                });
+            }
+            const result = await handleInvoiceStatus(deps, paymentHash, statusToken);
+            if (!result.found) {
+                return Response.json({ error: 'Invoice not found' }, { status: 404, headers: appendVary(applyNoStoreHeaders(new Headers()), 'Accept') });
+            }
+            return Response.json({ paid: result.paid, preimage: result.preimage, token_suffix: result.tokenSuffix }, { headers: appendVary(applyNoStoreHeaders(new Headers()), 'Accept') });
+        }
+        catch {
+            return Response.json({ error: 'Failed to check invoice status' }, { status: 502, headers: appendVary(applyNoStoreHeaders(new Headers()), 'Accept') });
+        }
+    };
+}
+// -- Create invoice handler ---------------------------------------------------
+/**
+ * Returns a `WebStandardHandler` that creates a new Lightning invoice.
+ *
+ * Parses the JSON body for an optional `amountSats` field, delegates
+ * to the core `handleCreateInvoice`, and returns the result.
+ */
+export function createWebStandardCreateInvoiceHandler(deps) {
+    return async (req) => {
+        const parsed = await safeParseJson(req);
+        if (!parsed.ok) {
+            return Response.json({ error: 'Invalid JSON body' }, { status: 400, headers: applyNoStoreHeaders(new Headers()) });
+        }
+        const result = await handleCreateInvoice(deps, parsed.value);
+        if (!result.success) {
+            return Response.json({ error: result.error, tiers: result.tiers }, { status: 400, headers: applyNoStoreHeaders(new Headers()) });
+        }
+        const d = result.data;
+        return Response.json({
+            bolt11: d.bolt11,
+            payment_hash: d.paymentHash,
+            payment_url: d.paymentUrl,
+            amount_sats: d.amountSats,
+            credit_sats: d.creditSats,
+            macaroon: d.macaroon,
+            qr_svg: d.qrSvg,
+        }, { headers: applyNoStoreHeaders(new Headers()) });
+    };
+}
+// -- NWC handler --------------------------------------------------------------
+/**
+ * Returns a `WebStandardHandler` that pays a Lightning invoice via NWC.
+ *
+ * Expects JSON body with `{ nwcUri, bolt11, paymentHash, statusToken }`.
+ * Returns the payment preimage on success.
+ */
+export function createWebStandardNwcHandler(deps) {
+    return async (req) => {
+        const parsed = await safeParseJson(req);
+        if (!parsed.ok) {
+            return Response.json({ error: 'Invalid JSON body' }, { status: 400, headers: applyNoStoreHeaders(new Headers()) });
+        }
+        const result = await handleNwcPay(deps, parsed.value);
+        if (result.success) {
+            return Response.json({ preimage: result.preimage }, { headers: applyNoStoreHeaders(new Headers()) });
+        }
+        return Response.json({ error: result.error }, { status: result.status, headers: applyNoStoreHeaders(new Headers()) });
+    };
+}
+// -- Cashu handler ------------------------------------------------------------
+/**
+ * Returns a `WebStandardHandler` that redeems a Cashu token as payment.
+ *
+ * Expects JSON body with `{ token, paymentHash, statusToken }`.
+ * Uses durable claims and leases to avoid concurrent duplicate redemption.
+ */
+export function createWebStandardCashuHandler(deps) {
+    return async (req) => {
+        const parsed = await safeParseJson(req);
+        if (!parsed.ok) {
+            return Response.json({ error: 'Invalid JSON body' }, { status: 400, headers: applyNoStoreHeaders(new Headers()) });
+        }
+        const result = await handleCashuRedeem(deps, parsed.value);
+        if (result.success) {
+            return Response.json({ credited: result.credited, token_suffix: result.tokenSuffix }, { headers: applyNoStoreHeaders(new Headers()) });
+        }
+        if ('state' in result) {
+            return Response.json({ state: result.state, retryAfterMs: result.retryAfterMs }, { status: 202, headers: applyNoStoreHeaders(new Headers()) });
+        }
+        return Response.json({ error: result.error }, { status: result.status, headers: applyNoStoreHeaders(new Headers()) });
+    };
+}
+//# sourceMappingURL=web-standard.js.map

package/dist/adapters/web-standard.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"web-standard.js","sourceRoot":"","sources":["../../src/adapters/web-standard.ts"],"names":[],"mappings":"AAKA,OAAO,EAAE,mBAAmB,EAAE,MAAM,2BAA2B,CAAA;AAC/D,OAAO,EAAE,mBAAmB,EAAE,uBAAuB,EAAE,MAAM,2BAA2B,CAAA;AACxF,OAAO,EAAE,YAAY,EAAE,MAAM,oBAAoB,CAAA;AAEjD,OAAO,EAAE,iBAAiB,EAAE,MAAM,yBAAyB,CAAA;AAE3D,OAAO,EAAE,eAAe,EAAE,MAAM,kBAAkB,CAAA;AAClD,OAAO,EACL,UAAU,EACV,mBAAmB,EACnB,wBAAwB,EACxB,yBAAyB,GAC1B,MAAM,oBAAoB,CAAA;AAI3B,gFAAgF;AAEhF,MAAM,iBAAkB,SAAQ,KAAK;CAAG;AAGxC;;;;;;;;;;GAUG;AACH,KAAK,UAAU,aAAa,CAA8B,GAAY,EAAE,QAAQ,GAAG,MAAM;IACvF,6EAA6E;IAC7E,MAAM,aAAa,GAAG,GAAG,CAAC,OAAO,CAAC,GAAG,CAAC,gBAAgB,CAAC,CAAA;IACvD,MAAM,YAAY,GAAG,aAAa,KAAK,IAAI,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,QAAQ,CAAC,aAAa,EAAE,EAAE,CAAC,CAAA;IAC/E,IAAI,MAAM,CAAC,QAAQ,CAAC,YAAY,CAAC,IAAI,YAAY,GAAG,QAAQ,EAAE,CAAC;QAC7D,OAAO,EAAE,EAAE,EAAE,KAAK,EAAE,CAAA;IACtB,CAAC;IAED,IAAI,CAAC;QACH,MAAM,IAAI,GAAG,MAAM,uBAAuB,CAAC,GAAG,EAAE,QAAQ,CAAC,CAAA;QACzD,IAAI,CAAC,IAAI,CAAC,IAAI,EAAE;YAAE,OAAO,EAAE,EAAE,EAAE,IAAI,EAAE,KAAK,EAAE,EAAO,EAAE,CAAA;QACrD,OAAO,EAAE,EAAE,EAAE,IAAI,EAAE,KAAK,EAAE,IAAI,CAAC,KAAK,CAAC,IAAI,CAAM,EAAE,CAAA;IACnD,CAAC;IAAC,MAAM,CAAC;QACP,OAAO,EAAE,EAAE,EAAE,KAAK,EAAE,CAAA;IACtB,CAAC;AACH,CAAC;AAED,KAAK,UAAU,aAAa,CAAC,QAAgB,EAAE,GAAY,EAAE,SAAS,GAAG,MAAM;IAC7E,MAAM,GAAG,GAAG,IAAI,GAAG,CAAC,GAAG,CAAC,GAAG,CAAC,CAAA;IAC5B,MAAM,MAAM,GAAG,GAAG,QAAQ,GAAG,GAAG,CAAC,QAAQ,GAAG,GAAG,CAAC,MAAM,EAAE,CAAA;IACxD,MAAM,OAAO,GAAG,wBAAwB,CAAC,GAAG,CAAC,OAAO,CAAC,CAAA;IAErD,MAAM,IAAI,GAAsC;QAC9C,MAAM,EAAE,GAAG,CAAC,MAAM;QAClB,OAAO;QACP,MAAM,EAAE,WAAW,CAAC,OAAO,CAAC,SAAS,CAAC;QACtC,MAAM,EAAE,MAAM;KACf,CAAA;IAED,yCAAyC;IACzC,IAAI,GAAG,CAAC,MAAM,KAAK,KAAK,IAAI,GAAG,CAAC,MAAM,KAAK,MAAM,EAAE,CAAC;QAClD,IAAI,CAAC,IAAI,GAAG,GAAG,CAAC,IAAI,CAAA;IACtB,CAAC;IAED,OAAO,KAAK,CAAC,MAAM,EAAE,IAAmB,CAAC,CAAA;AAC3C,CAAC;AAED,KAAK,UAAU,uBAAuB,CAAC,GAAY,EAAE,QAAgB;IACnE,IAAI,CAAC,GAAG,CAAC,IAAI;QAAE,OAAO,EAAE,CAAA;IAExB,MAAM,MAAM,GAAG,GAAG,CAAC,IAAI,CAAC,SAAS,EAAE,CAAA;IACnC,MAAM,OAAO,GAAG,IAAI,WAAW,EAAE,CAAA;IACjC,IAAI,UAAU,GAAG,CAAC,CAAA;IAClB,IAAI,IAAI,GAAG,EAAE,CAAA;IAEb,IAAI,CAAC;QACH,OAAO,IAAI,EAAE,CAAC;YACZ,MAAM,EAAE,IAAI,EAAE,KAAK,EAAE,GAAG,MAAM,MAAM,CAAC,IAAI,EAAE,CAAA;YAC3C,IAAI,IAAI;gBAAE,MAAK;YAEf,UAAU,IAAI,KAAK,CAAC,UAAU,CAAA;YAC9B,IAAI,UAAU,GAAG,QAAQ,EAAE,CAAC;gBAC1B,MAAM,MAAM,CAAC,MAAM,EAAE,CAAA;gBACrB,MAAM,IAAI,iBAAiB,CAAC,6BAA6B,CAAC,CAAA;YAC5D,CAAC;YAED,IAAI,IAAI,OAAO,CAAC,MAAM,CAAC,KAAK,EAAE,EAAE,MAAM,EAAE,IAAI,EAAE,CAAC,CAAA;QACjD,CAAC;QAED,OAAO,IAAI,GAAG,OAAO,CAAC,MAAM,EAAE,CAAA;IAChC,CAAC;YAAS,CAAC;QACT,MAAM,CAAC,WAAW,EAAE,CAAA;IACtB,CAAC;AACH,CAAC;AA2BD,MAAM,UAAU,2BAA2B,CACzC,cAA6D,EAC7D,WAAoB;IAEpB,kEAAkE;IAClE,MAAM,MAAM,GAAgC,OAAO,WAAW,KAAK,QAAQ;QACzE,CAAC,CAAC,EAAE,MAAM,EAAE,cAAiC,EAAE,QAAQ,EAAE,WAAW,EAAE;QACtE,CAAC,CAAC,cAA6C,CAAA;IACjD,MAAM,MAAM,GAAG,MAAM,CAAC,MAAM,CAAA;IAC5B,MAAM,YAAY,GAAG,MAAM,CAAC,QAAQ,CAAC,OAAO,CAAC,KAAK,EAAE,EAAE,CAAC,CAAA;IACvD,MAAM,YAAY,GAAG,MAAM,CAAC,eAAe,IAAI,EAAE,CAAA;IACjD,MAAM,eAAe,GAAG,MAAM,CAAC,eAAe,IAAI,MAAM,CAAA;IAExD,wEAAwE;IACxE,0BAA0B;IAC1B,IAAI,MAAM,CAAC,QAAQ,IAAI,CAAC,MAAM,CAAC,UAAU,IAAI,CAAC,MAAM,CAAC,WAAW,EAAE,CAAC;QACjE,MAAM,IAAI,KAAK,CACb,uFAAuF,CACxF,CAAA;IACH,CAAC;IAED,OAAO,KAAK,EAAE,GAAY,EAAqB,EAAE;QAC/C,MAAM,GAAG,GAAG,IAAI,GAAG,CAAC,GAAG,CAAC,GAAG,CAAC,CAAA;QAC5B,MAAM,EAAE,GAAG,MAAM,CAAC,WAAW;YAC3B,CAAC,CAAC,MAAM,CAAC,WAAW,CAAC,GAAG,CAAC;YACzB,CAAC,CAAC,MAAM,CAAC,UAAU;gBACjB,CAAC,CAAC,GAAG,CAAC,OAAO,CAAC,GAAG,CAAC,iBAAiB,CAAC,EAAE,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,EAAE,IAAI,EAAE,IAAI,GAAG,CAAC,OAAO,CAAC,GAAG,CAAC,WAAW,CAAC,IAAI,SAAS;gBACxG,CAAC,CAAC,SAAS,CAAA;QACf,MAAM,OAAO,GAAG,MAAM,CAAC,WAAW,CAAC,GAAG,CAAC,OAAO,CAAC,OAAO,EAAE,CAAC,CAAA;QAEzD,MAAM,MAAM,GAAG,MAAM,MAAM,CAAC,MAAM,CAAC;YACjC,MAAM,EAAE,GAAG,CAAC,MAAM;YAClB,IAAI,EAAE,GAAG,CAAC,QAAQ;YAClB,OAAO;YACP,EAAE;YACF,IAAI,EAAE,GAAG,CAAC,IAAI;SACf,CAAC,CAAA;QAEF,IAAI,MAAM,CAAC,MAAM,KAAK,MAAM,IAAI,MAAM,CAAC,MAAM,KAAK,OAAO,EAAE,CAAC;YAC1D,IAAI,CAAC;gBACH,MAAM,GAAG,GAAG,MAAM,aAAa,CAAC,YAAY,EAAE,GAAG,EAAE,eAAe,CAAC,CAAA;gBACnE,MAAM,eAAe,GAAG,yBAAyB,CAAC,GAAG,CAAC,OAAO,CAAC,CAAA;gBAC9D,KAAK,MAAM,CAAC,GAAG,EAAE,KAAK,CAAC,IAAI,MAAM,CAAC,OAAO,CAAC,MAAM,CAAC,OAAO,CAAC,EAAE,CAAC;oBAC1D,eAAe,CAAC,GAAG,CAAC,GAAG,EAAE,KAAK,CAAC,CAAA;gBACjC,CAAC;gBACD,KAAK,MAAM,CAAC,GAAG,EAAE,KAAK,CAAC,IAAI,MAAM,CAAC,OAAO,CAAC,YAAY,CAAC,EAAE,CAAC;oBACxD,eAAe,CAAC,GAAG,CAAC,GAAG,EAAE,KAAK,CAAC,CAAA;gBACjC,CAAC;gBACD,OAAO,IAAI,QAAQ,CAAC,GAAG,CAAC,IAAI,EAAE;oBAC5B,MAAM,EAAE,GAAG,CAAC,MAAM;oBAClB,UAAU,EAAE,GAAG,CAAC,UAAU;oBAC1B,OAAO,EAAE,eAAe;iBACzB,CAAC,CAAA;YACJ,CAAC;YAAC,MAAM,CAAC;gBACP,OAAO,QAAQ,CAAC,IAAI,CAClB,EAAE,KAAK,EAAE,sBAAsB,EAAE,EACjC,EAAE,MAAM,EAAE,GAAG,EAAE,OAAO,EAAE,IAAI,OAAO,CAAC,YAAY,CAAC,EAAE,CACpD,CAAA;YACH,CAAC;QACH,CAAC;QAED,kBAAkB;QAClB,MAAM,gBAAgB,GAAG,IAAI,OAAO,CAAC,YAAY,CAAC,CAAA;QAClD,KAAK,MAAM,CAAC,GAAG,EAAE,KAAK,CAAC,IAAI,MAAM,CAAC,OAAO,CAAC,MAAM,CAAC,OAAO,CAAC,EAAE,CAAC;YAC1D,gBAAgB,CAAC,GAAG,CAAC,GAAG,EAAE,KAAK,CAAC,CAAA;QAClC,CAAC;QACD,mBAAmB,CAAC,gBAAgB,CAAC,CAAA;QACrC,OAAO,QAAQ,CAAC,IAAI,CAAC,MAAM,CAAC,IAAI,EAAE;YAChC,MAAM,EAAE,GAAG;YACX,OAAO,EAAE,gBAAgB;SAC1B,CAAC,CAAA;IACJ,CAAC,CAAA;AACH,CAAC;AAED,gFAAgF;AAEhF;;;;;;;GAOG;AACH,MAAM,UAAU,qCAAqC,CACnD,IAAuB;IAEvB,OAAO,KAAK,EAAE,GAAY,EAAqB,EAAE;QAC/C,MAAM,GAAG,GAAG,IAAI,GAAG,CAAC,GAAG,CAAC,GAAG,CAAC,CAAA;QAC5B,MAAM,QAAQ,GAAG,GAAG,CAAC,QAAQ,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,MAAM,CAAC,OAAO,CAAC,CAAA;QACxD,MAAM,WAAW,GAAG,QAAQ,CAAC,QAAQ,CAAC,MAAM,GAAG,CAAC,CAAC,IAAI,EAAE,CAAA;QACvD,IAAI,CAAC,eAAe,CAAC,IAAI,CAAC,WAAW,CAAC,EAAE,CAAC;YACvC,OAAO,QAAQ,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,sBAAsB,EAAE,EAAE,EAAE,MAAM,EAAE,GAAG,EAAE,CAAC,CAAA;QAC1E,CAAC;QACD,MAAM,WAAW,GAAG,GAAG,CAAC,YAAY,CAAC,GAAG,CAAC,OAAO,CAAC,IAAI,SAAS,CAAA;QAC9D,MAAM,MAAM,GAAG,GAAG,CAAC,OAAO,CAAC,GAAG,CAAC,QAAQ,CAAC,IAAI,EAAE,CAAA;QAE9C,IAAI,CAAC;YACH,IAAI,MAAM,CAAC,QAAQ,CAAC,WAAW,CAAC,EAAE,CAAC;gBACjC,MAAM,EAAE,IAAI,EAAE,MAAM,EAAE,GAAG,MAAM,uBAAuB,CAAC,IAAI,EAAE,WAAW,EAAE,WAAW,CAAC,CAAA;gBACtF,MAAM,OAAO,GAAG,UAAU,CAAC,mBAAmB,CAAC,IAAI,OAAO,EAAE,CAAC,EAAE,QAAQ,CAAC,CAAA;gBACxE,OAAO,CAAC,GAAG,CAAC,cAAc,EAAE,0BAA0B,CAAC,CAAA;gBACvD,OAAO,IAAI,QAAQ,CAAC,IAAI,EAAE;oBACxB,MAAM;oBACN,OAAO;iBACR,CAAC,CAAA;YACJ,CAAC;YAED,MAAM,MAAM,GAAG,MAAM,mBAAmB,CAAC,IAAI,EAAE,WAAW,EAAE,WAAW,CAAC,CAAA;YACxE,IAAI,CAAC,MAAM,CAAC,KAAK,EAAE,CAAC;gBAClB,OAAO,QAAQ,CAAC,IAAI,CAClB,EAAE,KAAK,EAAE,mBAAmB,EAAE,EAC9B,EAAE,MAAM,EAAE,GAAG,EAAE,OAAO,EAAE,UAAU,CAAC,mBAAmB,CAAC,IAAI,OAAO,EAAE,CAAC,EAAE,QAAQ,CAAC,EAAE,CACnF,CAAA;YACH,CAAC;YACD,OAAO,QAAQ,CAAC,IAAI,CAClB,EAAE,IAAI,EAAE,MAAM,CAAC,IAAI,EAAE,QAAQ,EAAE,MAAM,CAAC,QAAQ,EAAE,YAAY,EAAE,MAAM,CAAC,WAAW,EAAE,EAClF,EAAE,OAAO,EAAE,UAAU,CAAC,mBAAmB,CAAC,IAAI,OAAO,EAAE,CAAC,EAAE,QAAQ,CAAC,EAAE,CACtE,CAAA;QACH,CAAC;QAAC,MAAM,CAAC;YACP,OAAO,QAAQ,CAAC,IAAI,CAClB,EAAE,KAAK,EAAE,gCAAgC,EAAE,EAC3C,EAAE,MAAM,EAAE,GAAG,EAAE,OAAO,EAAE,UAAU,CAAC,mBAAmB,CAAC,IAAI,OAAO,EAAE,CAAC,EAAE,QAAQ,CAAC,EAAE,CACnF,CAAA;QACH,CAAC;IACH,CAAC,CAAA;AACH,CAAC;AAED,gFAAgF;AAEhF;;;;;GAKG;AACH,MAAM,UAAU,qCAAqC,CACnD,IAAuB;IAEvB,OAAO,KAAK,EAAE,GAAY,EAAqB,EAAE;QAC/C,MAAM,MAAM,GAAG,MAAM,aAAa,CAAuB,GAAG,CAAC,CAAA;QAC7D,IAAI,CAAC,MAAM,CAAC,EAAE,EAAE,CAAC;YACf,OAAO,QAAQ,CAAC,IAAI,CAClB,EAAE,KAAK,EAAE,mBAAmB,EAAE,EAC9B,EAAE,MAAM,EAAE,GAAG,EAAE,OAAO,EAAE,mBAAmB,CAAC,IAAI,OAAO,EAAE,CAAC,EAAE,CAC7D,CAAA;QACH,CAAC;QAED,MAAM,MAAM,GAAG,MAAM,mBAAmB,CAAC,IAAI,EAAE,MAAM,CAAC,KAAK,CAAC,CAAA;QAE5D,IAAI,CAAC,MAAM,CAAC,OAAO,EAAE,CAAC;YACpB,OAAO,QAAQ,CAAC,IAAI,CAClB,EAAE,KAAK,EAAE,MAAM,CAAC,KAAK,EAAE,KAAK,EAAE,MAAM,CAAC,KAAK,EAAE,EAC5C,EAAE,MAAM,EAAE,GAAG,EAAE,OAAO,EAAE,mBAAmB,CAAC,IAAI,OAAO,EAAE,CAAC,EAAE,CAC7D,CAAA;QACH,CAAC;QAED,MAAM,CAAC,GAAG,MAAM,CAAC,IAAK,CAAA;QACtB,OAAO,QAAQ,CAAC,IAAI,CAClB;YACE,MAAM,EAAE,CAAC,CAAC,MAAM;YAChB,YAAY,EAAE,CAAC,CAAC,WAAW;YAC3B,WAAW,EAAE,CAAC,CAAC,UAAU;YACzB,WAAW,EAAE,CAAC,CAAC,UAAU;YACzB,WAAW,EAAE,CAAC,CAAC,UAAU;YACzB,QAAQ,EAAE,CAAC,CAAC,QAAQ;YACpB,MAAM,EAAE,CAAC,CAAC,KAAK;SAChB,EACD,EAAE,OAAO,EAAE,mBAAmB,CAAC,IAAI,OAAO,EAAE,CAAC,EAAE,CAChD,CAAA;IACH,CAAC,CAAA;AACH,CAAC;AAED,gFAAgF;AAEhF;;;;;GAKG;AACH,MAAM,UAAU,2BAA2B,CAAC,IAAgB;IAC1D,OAAO,KAAK,EAAE,GAAY,EAAqB,EAAE;QAC/C,MAAM,MAAM,GAAG,MAAM,aAAa,CAAgB,GAAG,CAAC,CAAA;QACtD,IAAI,CAAC,MAAM,CAAC,EAAE,EAAE,CAAC;YACf,OAAO,QAAQ,CAAC,IAAI,CAClB,EAAE,KAAK,EAAE,mBAAmB,EAAE,EAC9B,EAAE,MAAM,EAAE,GAAG,EAAE,OAAO,EAAE,mBAAmB,CAAC,IAAI,OAAO,EAAE,CAAC,EAAE,CAC7D,CAAA;QACH,CAAC;QAED,MAAM,MAAM,GAAG,MAAM,YAAY,CAAC,IAAI,EAAE,MAAM,CAAC,KAAK,CAAC,CAAA;QACrD,IAAI,MAAM,CAAC,OAAO,EAAE,CAAC;YACnB,OAAO,QAAQ,CAAC,IAAI,CAAC,EAAE,QAAQ,EAAE,MAAM,CAAC,QAAQ,EAAE,EAAE,EAAE,OAAO,EAAE,mBAAmB,CAAC,IAAI,OAAO,EAAE,CAAC,EAAE,CAAC,CAAA;QACtG,CAAC;QACD,OAAO,QAAQ,CAAC,IAAI,CAClB,EAAE,KAAK,EAAE,MAAM,CAAC,KAAK,EAAE,EACvB,EAAE,MAAM,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,EAAE,mBAAmB,CAAC,IAAI,OAAO,EAAE,CAAC,EAAE,CACvE,CAAA;IACH,CAAC,CAAA;AACH,CAAC;AAED,gFAAgF;AAEhF;;;;;GAKG;AACH,MAAM,UAAU,6BAA6B,CAAC,IAAqB;IACjE,OAAO,KAAK,EAAE,GAAY,EAAqB,EAAE;QAC/C,MAAM,MAAM,GAAG,MAAM,aAAa,CAAqB,GAAG,CAAC,CAAA;QAC3D,IAAI,CAAC,MAAM,CAAC,EAAE,EAAE,CAAC;YACf,OAAO,QAAQ,CAAC,IAAI,CAClB,EAAE,KAAK,EAAE,mBAAmB,EAAE,EAC9B,EAAE,MAAM,EAAE,GAAG,EAAE,OAAO,EAAE,mBAAmB,CAAC,IAAI,OAAO,EAAE,CAAC,EAAE,CAC7D,CAAA;QACH,CAAC;QAED,MAAM,MAAM,GAAG,MAAM,iBAAiB,CAAC,IAAI,EAAE,MAAM,CAAC,KAAK,CAAC,CAAA;QAC1D,IAAI,MAAM,CAAC,OAAO,EAAE,CAAC;YACnB,OAAO,QAAQ,CAAC,IAAI,CAClB,EAAE,QAAQ,EAAE,MAAM,CAAC,QAAQ,EAAE,YAAY,EAAE,MAAM,CAAC,WAAW,EAAE,EAC/D,EAAE,OAAO,EAAE,mBAAmB,CAAC,IAAI,OAAO,EAAE,CAAC,EAAE,CAChD,CAAA;QACH,CAAC;QACD,IAAI,OAAO,IAAI,MAAM,EAAE,CAAC;YACtB,OAAO,QAAQ,CAAC,IAAI,CAClB,EAAE,KAAK,EAAE,MAAM,CAAC,KAAK,EAAE,YAAY,EAAE,MAAM,CAAC,YAAY,EAAE,EAC1D,EAAE,MAAM,EAAE,GAAG,EAAE,OAAO,EAAE,mBAAmB,CAAC,IAAI,OAAO,EAAE,CAAC,EAAE,CAC7D,CAAA;QACH,CAAC;QACD,OAAO,QAAQ,CAAC,IAAI,CAClB,EAAE,KAAK,EAAE,MAAM,CAAC,KAAK,EAAE,EACvB,EAAE,MAAM,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,EAAE,mBAAmB,CAAC,IAAI,OAAO,EAAE,CAAC,EAAE,CACvE,CAAA;IACH,CAAC,CAAA;AACH,CAAC"}

package/dist/backends/alby.d.ts

@@ -0,0 +1,25 @@
+import type { LightningBackend } from '../types.js';
+export interface AlbyConfig {
+    /** NWC connection URI: nostr+walletconnect://pubkey?relay=wss://...&secret=... */
+    nwcUrl: string;
+    /** Request timeout in ms (default: 30000) */
+    timeout?: number;
+    /**
+     * Opt into the current insecure JSON-over-relay transport.
+     * This exists only for local testing and trusted relay experiments.
+     */
+    allowInsecureRelay?: boolean;
+}
+/**
+ * Lightning backend adapter for Alby / Nostr Wallet Connect (NWC).
+ *
+ * This transport is intentionally disabled by default because it sends
+ * unsigned, unencrypted JSON directly to the relay and therefore cannot
+ * authenticate responses. Pass `allowInsecureRelay: true` only for local
+ * testing or a fully trusted relay shim.
+ *
+ * The `ws` package is imported dynamically so it only needs to be
+ * installed when this backend is actually used.
+ */
+export declare function albyBackend(config: AlbyConfig): LightningBackend;
+//# sourceMappingURL=alby.d.ts.map

package/dist/backends/alby.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"alby.d.ts","sourceRoot":"","sources":["../../src/backends/alby.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,gBAAgB,EAA0B,MAAM,aAAa,CAAA;AAE3E,MAAM,WAAW,UAAU;IACzB,kFAAkF;IAClF,MAAM,EAAE,MAAM,CAAA;IACd,6CAA6C;IAC7C,OAAO,CAAC,EAAE,MAAM,CAAA;IAChB;;;OAGG;IACH,kBAAkB,CAAC,EAAE,OAAO,CAAA;CAC7B;AAkCD;;;;;;;;;;GAUG;AACH,wBAAgB,WAAW,CAAC,MAAM,EAAE,UAAU,GAAG,gBAAgB,CAmEhE"}

package/dist/backends/alby.js

@@ -0,0 +1,137 @@
+function parseNwcUrl(nwcUrl) {
+    // Replace the custom scheme so URL parser can handle it
+    const url = new URL(nwcUrl.replace('nostr+walletconnect://', 'https://'));
+    const pubkey = url.hostname;
+    const relay = url.searchParams.get('relay');
+    const secret = url.searchParams.get('secret');
+    if (!relay)
+        throw new Error('NWC URL missing required "relay" parameter');
+    if (!secret)
+        throw new Error('NWC URL missing required "secret" parameter');
+    return { pubkey, relay, secret };
+}
+/**
+ * Lightning backend adapter for Alby / Nostr Wallet Connect (NWC).
+ *
+ * This transport is intentionally disabled by default because it sends
+ * unsigned, unencrypted JSON directly to the relay and therefore cannot
+ * authenticate responses. Pass `allowInsecureRelay: true` only for local
+ * testing or a fully trusted relay shim.
+ *
+ * The `ws` package is imported dynamically so it only needs to be
+ * installed when this backend is actually used.
+ */
+export function albyBackend(config) {
+    if (!config.allowInsecureRelay) {
+        throw new Error('albyBackend is disabled by default because its JSON relay transport is unauthenticated; pass allowInsecureRelay: true only for local testing');
+    }
+    const params = parseNwcUrl(config.nwcUrl);
+    const timeoutMs = config.timeout ?? 30_000;
+    const MAX_CACHED_INVOICES = 10_000;
+    const invoiceMap = new Map();
+    return {
+        async createInvoice(amountSats, memo) {
+            const result = await sendNwcRequest(params, timeoutMs, 'make_invoice', {
+                amount: amountSats * 1000, // NWC uses millisats
+                description: memo,
+            });
+            const bolt11 = getStringField(result, 'invoice') ?? getStringField(result, 'bolt11');
+            const paymentHash = getStringField(result, 'payment_hash') ?? getStringField(result, 'paymentHash');
+            if (!bolt11 || !paymentHash) {
+                throw new Error('NWC response missing invoice or payment_hash');
+            }
+            // Evict oldest entries when cache is full (Map preserves insertion order)
+            if (invoiceMap.size >= MAX_CACHED_INVOICES) {
+                const oldest = invoiceMap.keys().next().value;
+                invoiceMap.delete(oldest);
+            }
+            invoiceMap.set(paymentHash, { bolt11, paid: false });
+            return { bolt11, paymentHash };
+        },
+        async checkInvoice(paymentHash) {
+            const entry = invoiceMap.get(paymentHash);
+            if (!entry)
+                return { paid: false };
+            if (entry.paid) {
+                return { paid: true, preimage: entry.preimage };
+            }
+            const result = await sendNwcRequest(params, timeoutMs, 'lookup_invoice', { payment_hash: paymentHash });
+            const lookupRecord = result;
+            const paid = isPaid(result);
+            const preimage = paid
+                ? getStringField(lookupRecord, 'payment_preimage') ?? getStringField(lookupRecord, 'preimage')
+                : undefined;
+            const bolt11 = getStringField(lookupRecord, 'invoice') ?? getStringField(lookupRecord, 'bolt11') ?? entry.bolt11;
+            invoiceMap.set(paymentHash, { bolt11, paid, preimage });
+            return { paid, preimage };
+        },
+    };
+}
+async function sendNwcRequest(params, timeoutMs, method, requestParams) {
+    const { default: WebSocket } = await import('ws');
+    return new Promise((resolve, reject) => {
+        const ws = new WebSocket(params.relay);
+        let settled = false;
+        const cleanup = () => {
+            if (ws.readyState === WebSocket.OPEN || ws.readyState === WebSocket.CONNECTING) {
+                ws.close();
+            }
+        };
+        const finish = (fn) => {
+            if (settled)
+                return;
+            settled = true;
+            clearTimeout(timer);
+            cleanup();
+            fn();
+        };
+        const timer = setTimeout(() => {
+            finish(() => reject(new Error(`NWC ${method} timed out`)));
+        }, timeoutMs);
+        ws.on('open', () => {
+            ws.send(JSON.stringify({
+                method,
+                params: requestParams,
+            }));
+        });
+        ws.on('message', (data) => {
+            finish(() => {
+                try {
+                    const response = JSON.parse(data.toString());
+                    const error = response.error;
+                    if (error) {
+                        reject(new Error(`NWC ${method} failed: ${formatError(error)}`));
+                        return;
+                    }
+                    resolve((response.result ?? response));
+                }
+                catch (err) {
+                    reject(new Error(`Failed to parse NWC response: ${err}`));
+                }
+            });
+        });
+        ws.on('error', (err) => {
+            finish(() => reject(new Error(`NWC WebSocket error: ${err.message}`)));
+        });
+    });
+}
+function getStringField(record, key) {
+    const value = record[key];
+    return typeof value === 'string' && value.length > 0 ? value : undefined;
+}
+function isPaid(result) {
+    return result.paid === true ||
+        result.settled === true ||
+        result.state === 'paid' ||
+        result.state === 'settled' ||
+        result.settled_at !== undefined;
+}
+function formatError(error) {
+    if (typeof error === 'string')
+        return error;
+    if (error && typeof error === 'object' && 'message' in error && typeof error.message === 'string') {
+        return error.message;
+    }
+    return 'unknown error';
+}
+//# sourceMappingURL=alby.js.map

package/dist/backends/alby.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"alby.js","sourceRoot":"","sources":["../../src/backends/alby.ts"],"names":[],"mappings":"AAiCA,SAAS,WAAW,CAAC,MAAc;IACjC,wDAAwD;IACxD,MAAM,GAAG,GAAG,IAAI,GAAG,CAAC,MAAM,CAAC,OAAO,CAAC,wBAAwB,EAAE,UAAU,CAAC,CAAC,CAAA;IACzE,MAAM,MAAM,GAAG,GAAG,CAAC,QAAQ,CAAA;IAC3B,MAAM,KAAK,GAAG,GAAG,CAAC,YAAY,CAAC,GAAG,CAAC,OAAO,CAAC,CAAA;IAC3C,MAAM,MAAM,GAAG,GAAG,CAAC,YAAY,CAAC,GAAG,CAAC,QAAQ,CAAC,CAAA;IAE7C,IAAI,CAAC,KAAK;QAAE,MAAM,IAAI,KAAK,CAAC,4CAA4C,CAAC,CAAA;IACzE,IAAI,CAAC,MAAM;QAAE,MAAM,IAAI,KAAK,CAAC,6CAA6C,CAAC,CAAA;IAE3E,OAAO,EAAE,MAAM,EAAE,KAAK,EAAE,MAAM,EAAE,CAAA;AAClC,CAAC;AAED;;;;;;;;;;GAUG;AACH,MAAM,UAAU,WAAW,CAAC,MAAkB;IAC5C,IAAI,CAAC,MAAM,CAAC,kBAAkB,EAAE,CAAC;QAC/B,MAAM,IAAI,KAAK,CACb,8IAA8I,CAC/I,CAAA;IACH,CAAC;IAED,MAAM,MAAM,GAAG,WAAW,CAAC,MAAM,CAAC,MAAM,CAAC,CAAA;IACzC,MAAM,SAAS,GAAG,MAAM,CAAC,OAAO,IAAI,MAAM,CAAA;IAE1C,MAAM,mBAAmB,GAAG,MAAM,CAAA;IAClC,MAAM,UAAU,GAAG,IAAI,GAAG,EAAgE,CAAA;IAE1F,OAAO;QACL,KAAK,CAAC,aAAa,CAAC,UAAkB,EAAE,IAAa;YACnD,MAAM,MAAM,GAAG,MAAM,cAAc,CACjC,MAAM,EACN,SAAS,EACT,cAAc,EACd;gBACE,MAAM,EAAE,UAAU,GAAG,IAAI,EAAE,qBAAqB;gBAChD,WAAW,EAAE,IAAI;aAClB,CACF,CAAA;YAED,MAAM,MAAM,GAAG,cAAc,CAAC,MAAM,EAAE,SAAS,CAAC,IAAI,cAAc,CAAC,MAAM,EAAE,QAAQ,CAAC,CAAA;YACpF,MAAM,WAAW,GAAG,cAAc,CAAC,MAAM,EAAE,cAAc,CAAC,IAAI,cAAc,CAAC,MAAM,EAAE,aAAa,CAAC,CAAA;YAEnG,IAAI,CAAC,MAAM,IAAI,CAAC,WAAW,EAAE,CAAC;gBAC5B,MAAM,IAAI,KAAK,CAAC,8CAA8C,CAAC,CAAA;YACjE,CAAC;YAED,0EAA0E;YAC1E,IAAI,UAAU,CAAC,IAAI,IAAI,mBAAmB,EAAE,CAAC;gBAC3C,MAAM,MAAM,GAAG,UAAU,CAAC,IAAI,EAAE,CAAC,IAAI,EAAE,CAAC,KAAM,CAAA;gBAC9C,UAAU,CAAC,MAAM,CAAC,MAAM,CAAC,CAAA;YAC3B,CAAC;YACD,UAAU,CAAC,GAAG,CAAC,WAAW,EAAE,EAAE,MAAM,EAAE,IAAI,EAAE,KAAK,EAAE,CAAC,CAAA;YACpD,OAAO,EAAE,MAAM,EAAE,WAAW,EAAE,CAAA;QAChC,CAAC;QAED,KAAK,CAAC,YAAY,CAAC,WAAmB;YACpC,MAAM,KAAK,GAAG,UAAU,CAAC,GAAG,CAAC,WAAW,CAAC,CAAA;YACzC,IAAI,CAAC,KAAK;gBAAE,OAAO,EAAE,IAAI,EAAE,KAAK,EAAE,CAAA;YAElC,IAAI,KAAK,CAAC,IAAI,EAAE,CAAC;gBACf,OAAO,EAAE,IAAI,EAAE,IAAI,EAAE,QAAQ,EAAE,KAAK,CAAC,QAAQ,EAAE,CAAA;YACjD,CAAC;YAED,MAAM,MAAM,GAAG,MAAM,cAAc,CACjC,MAAM,EACN,SAAS,EACT,gBAAgB,EAChB,EAAE,YAAY,EAAE,WAAW,EAAE,CAC9B,CAAA;YACD,MAAM,YAAY,GAAG,MAAiC,CAAA;YAEtD,MAAM,IAAI,GAAG,MAAM,CAAC,MAAM,CAAC,CAAA;YAC3B,MAAM,QAAQ,GAAG,IAAI;gBACnB,CAAC,CAAC,cAAc,CAAC,YAAY,EAAE,kBAAkB,CAAC,IAAI,cAAc,CAAC,YAAY,EAAE,UAAU,CAAC;gBAC9F,CAAC,CAAC,SAAS,CAAA;YACb,MAAM,MAAM,GAAG,cAAc,CAAC,YAAY,EAAE,SAAS,CAAC,IAAI,cAAc,CAAC,YAAY,EAAE,QAAQ,CAAC,IAAI,KAAK,CAAC,MAAM,CAAA;YAEhH,UAAU,CAAC,GAAG,CAAC,WAAW,EAAE,EAAE,MAAM,EAAE,IAAI,EAAE,QAAQ,EAAE,CAAC,CAAA;YACvD,OAAO,EAAE,IAAI,EAAE,QAAQ,EAAE,CAAA;QAC3B,CAAC;KACF,CAAA;AACH,CAAC;AAED,KAAK,UAAU,cAAc,CAC3B,MAAiB,EACjB,SAAiB,EACjB,MAAc,EACd,aAAsC;IAEtC,MAAM,EAAE,OAAO,EAAE,SAAS,EAAE,GAAG,MAAM,MAAM,CAAC,IAAI,CAAC,CAAA;IAEjD,OAAO,IAAI,OAAO,CAAI,CAAC,OAAO,EAAE,MAAM,EAAE,EAAE;QACxC,MAAM,EAAE,GAAG,IAAI,SAAS,CAAC,MAAM,CAAC,KAAK,CAAC,CAAA;QACtC,IAAI,OAAO,GAAG,KAAK,CAAA;QAEnB,MAAM,OAAO,GAAG,GAAG,EAAE;YACnB,IAAI,EAAE,CAAC,UAAU,KAAK,SAAS,CAAC,IAAI,IAAI,EAAE,CAAC,UAAU,KAAK,SAAS,CAAC,UAAU,EAAE,CAAC;gBAC/E,EAAE,CAAC,KAAK,EAAE,CAAA;YACZ,CAAC;QACH,CAAC,CAAA;QAED,MAAM,MAAM,GAAG,CAAC,EAAc,EAAE,EAAE;YAChC,IAAI,OAAO;gBAAE,OAAM;YACnB,OAAO,GAAG,IAAI,CAAA;YACd,YAAY,CAAC,KAAK,CAAC,CAAA;YACnB,OAAO,EAAE,CAAA;YACT,EAAE,EAAE,CAAA;QACN,CAAC,CAAA;QAED,MAAM,KAAK,GAAG,UAAU,CAAC,GAAG,EAAE;YAC5B,MAAM,CAAC,GAAG,EAAE,CAAC,MAAM,CAAC,IAAI,KAAK,CAAC,OAAO,MAAM,YAAY,CAAC,CAAC,CAAC,CAAA;QAC5D,CAAC,EAAE,SAAS,CAAC,CAAA;QAEb,EAAE,CAAC,EAAE,CAAC,MAAM,EAAE,GAAG,EAAE;YACjB,EAAE,CAAC,IAAI,CAAC,IAAI,CAAC,SAAS,CAAC;gBACrB,MAAM;gBACN,MAAM,EAAE,aAAa;aACtB,CAAC,CAAC,CAAA;QACL,CAAC,CAAC,CAAA;QAEF,EAAE,CAAC,EAAE,CAAC,SAAS,EAAE,CAAC,IAAqB,EAAE,EAAE;YACzC,MAAM,CAAC,GAAG,EAAE;gBACV,IAAI,CAAC;oBACH,MAAM,QAAQ,GAAG,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,QAAQ,EAAE,CAA4B,CAAA;oBACvE,MAAM,KAAK,GAAG,QAAQ,CAAC,KAAK,CAAA;oBAC5B,IAAI,KAAK,EAAE,CAAC;wBACV,MAAM,CAAC,IAAI,KAAK,CAAC,OAAO,MAAM,YAAY,WAAW,CAAC,KAAK,CAAC,EAAE,CAAC,CAAC,CAAA;wBAChE,OAAM;oBACR,CAAC;oBAED,OAAO,CAAC,CAAC,QAAQ,CAAC,MAAM,IAAI,QAAQ,CAAM,CAAC,CAAA;gBAC7C,CAAC;gBAAC,OAAO,GAAG,EAAE,CAAC;oBACb,MAAM,CAAC,IAAI,KAAK,CAAC,iCAAiC,GAAG,EAAE,CAAC,CAAC,CAAA;gBAC3D,CAAC;YACH,CAAC,CAAC,CAAA;QACJ,CAAC,CAAC,CAAA;QAEF,EAAE,CAAC,EAAE,CAAC,OAAO,EAAE,CAAC,GAAU,EAAE,EAAE;YAC5B,MAAM,CAAC,GAAG,EAAE,CAAC,MAAM,CAAC,IAAI,KAAK,CAAC,wBAAwB,GAAG,CAAC,OAAO,EAAE,CAAC,CAAC,CAAC,CAAA;QACxE,CAAC,CAAC,CAAA;IACJ,CAAC,CAAC,CAAA;AACJ,CAAC;AAED,SAAS,cAAc,CAAC,MAA+B,EAAE,GAAW;IAClE,MAAM,KAAK,GAAG,MAAM,CAAC,GAAG,CAAC,CAAA;IACzB,OAAO,OAAO,KAAK,KAAK,QAAQ,IAAI,KAAK,CAAC,MAAM,GAAG,CAAC,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,SAAS,CAAA;AAC1E,CAAC;AAED,SAAS,MAAM,CAAC,MAAuB;IACrC,OAAO,MAAM,CAAC,IAAI,KAAK,IAAI;QACzB,MAAM,CAAC,OAAO,KAAK,IAAI;QACvB,MAAM,CAAC,KAAK,KAAK,MAAM;QACvB,MAAM,CAAC,KAAK,KAAK,SAAS;QAC1B,MAAM,CAAC,UAAU,KAAK,SAAS,CAAA;AACnC,CAAC;AAED,SAAS,WAAW,CAAC,KAAc;IACjC,IAAI,OAAO,KAAK,KAAK,QAAQ;QAAE,OAAO,KAAK,CAAA;IAC3C,IAAI,KAAK,IAAI,OAAO,KAAK,KAAK,QAAQ,IAAI,SAAS,IAAI,KAAK,IAAI,OAAO,KAAK,CAAC,OAAO,KAAK,QAAQ,EAAE,CAAC;QAClG,OAAO,KAAK,CAAC,OAAO,CAAA;IACtB,CAAC;IACD,OAAO,eAAe,CAAA;AACxB,CAAC"}

package/dist/backends/cln.d.ts

@@ -0,0 +1,22 @@
+import type { LightningBackend } from '../types.js';
+export interface ClnConfig {
+    /** CLN REST API URL (e.g. https://localhost:3010). */
+    url: string;
+    /** Rune token for authentication. */
+    rune: string;
+    /** Request timeout in ms (default: 30000) */
+    timeout?: number;
+}
+/**
+ * Lightning backend adapter for Core Lightning's REST API (clnrest).
+ *
+ * Uses the `/v1/invoice` and `/v1/listinvoices` endpoints.
+ * Authentication via `Rune` header.
+ *
+ * CLN requires a unique `label` per invoice — we generate one using
+ * a `toll-booth-` prefix and a timestamp + random suffix.
+ *
+ * @see https://docs.corelightning.org/docs/rest
+ */
+export declare function clnBackend(config: ClnConfig): LightningBackend;
+//# sourceMappingURL=cln.d.ts.map

package/dist/backends/cln.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"cln.d.ts","sourceRoot":"","sources":["../../src/backends/cln.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,gBAAgB,EAA0B,MAAM,aAAa,CAAA;AAE3E,MAAM,WAAW,SAAS;IACxB,sDAAsD;IACtD,GAAG,EAAE,MAAM,CAAA;IACX,qCAAqC;IACrC,IAAI,EAAE,MAAM,CAAA;IACZ,6CAA6C;IAC7C,OAAO,CAAC,EAAE,MAAM,CAAA;CACjB;AAED;;;;;;;;;;GAUG;AACH,wBAAgB,UAAU,CAAC,MAAM,EAAE,SAAS,GAAG,gBAAgB,CA0D9D"}

package/dist/backends/cln.js

@@ -0,0 +1,55 @@
+/**
+ * Lightning backend adapter for Core Lightning's REST API (clnrest).
+ *
+ * Uses the `/v1/invoice` and `/v1/listinvoices` endpoints.
+ * Authentication via `Rune` header.
+ *
+ * CLN requires a unique `label` per invoice — we generate one using
+ * a `toll-booth-` prefix and a timestamp + random suffix.
+ *
+ * @see https://docs.corelightning.org/docs/rest
+ */
+export function clnBackend(config) {
+    const baseUrl = config.url.replace(/\/$/, '');
+    const timeoutMs = config.timeout ?? 30_000;
+    const headers = {
+        'Rune': config.rune,
+    };
+    return {
+        async createInvoice(amountSats, memo) {
+            const label = `toll-booth-${Date.now()}-${Math.random().toString(36).slice(2, 8)}`;
+            const res = await fetch(`${baseUrl}/v1/invoice`, {
+                method: 'POST',
+                headers: { ...headers, 'Content-Type': 'application/json' },
+                body: JSON.stringify({
+                    amount_msat: amountSats * 1000,
+                    label,
+                    description: memo ?? 'toll-booth payment',
+                }),
+                signal: AbortSignal.timeout(timeoutMs),
+            });
+            if (!res.ok) {
+                const text = await res.text().catch(() => '');
+                throw new Error(`CLN createInvoice failed (${res.status}): ${text}`);
+            }
+            const data = await res.json();
+            return { bolt11: data.bolt11, paymentHash: data.payment_hash };
+        },
+        async checkInvoice(paymentHash) {
+            const res = await fetch(`${baseUrl}/v1/listinvoices?payment_hash=${paymentHash}`, { headers, signal: AbortSignal.timeout(timeoutMs) });
+            if (!res.ok) {
+                const text = await res.text().catch(() => '');
+                throw new Error(`CLN checkInvoice failed (${res.status}): ${text}`);
+            }
+            const data = await res.json();
+            const inv = data.invoices[0];
+            if (!inv || inv.status !== 'paid')
+                return { paid: false };
+            return {
+                paid: true,
+                preimage: inv.payment_preimage,
+            };
+        },
+    };
+}
+//# sourceMappingURL=cln.js.map

package/dist/backends/cln.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"cln.js","sourceRoot":"","sources":["../../src/backends/cln.ts"],"names":[],"mappings":"AAWA;;;;;;;;;;GAUG;AACH,MAAM,UAAU,UAAU,CAAC,MAAiB;IAC1C,MAAM,OAAO,GAAG,MAAM,CAAC,GAAG,CAAC,OAAO,CAAC,KAAK,EAAE,EAAE,CAAC,CAAA;IAC7C,MAAM,SAAS,GAAG,MAAM,CAAC,OAAO,IAAI,MAAM,CAAA;IAC1C,MAAM,OAAO,GAA2B;QACtC,MAAM,EAAE,MAAM,CAAC,IAAI;KACpB,CAAA;IAED,OAAO;QACL,KAAK,CAAC,aAAa,CAAC,UAAkB,EAAE,IAAa;YACnD,MAAM,KAAK,GAAG,cAAc,IAAI,CAAC,GAAG,EAAE,IAAI,IAAI,CAAC,MAAM,EAAE,CAAC,QAAQ,CAAC,EAAE,CAAC,CAAC,KAAK,CAAC,CAAC,EAAE,CAAC,CAAC,EAAE,CAAA;YAElF,MAAM,GAAG,GAAG,MAAM,KAAK,CAAC,GAAG,OAAO,aAAa,EAAE;gBAC/C,MAAM,EAAE,MAAM;gBACd,OAAO,EAAE,EAAE,GAAG,OAAO,EAAE,cAAc,EAAE,kBAAkB,EAAE;gBAC3D,IAAI,EAAE,IAAI,CAAC,SAAS,CAAC;oBACnB,WAAW,EAAE,UAAU,GAAG,IAAI;oBAC9B,KAAK;oBACL,WAAW,EAAE,IAAI,IAAI,oBAAoB;iBAC1C,CAAC;gBACF,MAAM,EAAE,WAAW,CAAC,OAAO,CAAC,SAAS,CAAC;aACvC,CAAC,CAAA;YAEF,IAAI,CAAC,GAAG,CAAC,EAAE,EAAE,CAAC;gBACZ,MAAM,IAAI,GAAG,MAAM,GAAG,CAAC,IAAI,EAAE,CAAC,KAAK,CAAC,GAAG,EAAE,CAAC,EAAE,CAAC,CAAA;gBAC7C,MAAM,IAAI,KAAK,CAAC,6BAA6B,GAAG,CAAC,MAAM,MAAM,IAAI,EAAE,CAAC,CAAA;YACtE,CAAC;YAED,MAAM,IAAI,GAAG,MAAM,GAAG,CAAC,IAAI,EAA8C,CAAA;YACzE,OAAO,EAAE,MAAM,EAAE,IAAI,CAAC,MAAM,EAAE,WAAW,EAAE,IAAI,CAAC,YAAY,EAAE,CAAA;QAChE,CAAC;QAED,KAAK,CAAC,YAAY,CAAC,WAAmB;YACpC,MAAM,GAAG,GAAG,MAAM,KAAK,CACrB,GAAG,OAAO,iCAAiC,WAAW,EAAE,EACxD,EAAE,OAAO,EAAE,MAAM,EAAE,WAAW,CAAC,OAAO,CAAC,SAAS,CAAC,EAAE,CACpD,CAAA;YAED,IAAI,CAAC,GAAG,CAAC,EAAE,EAAE,CAAC;gBACZ,MAAM,IAAI,GAAG,MAAM,GAAG,CAAC,IAAI,EAAE,CAAC,KAAK,CAAC,GAAG,EAAE,CAAC,EAAE,CAAC,CAAA;gBAC7C,MAAM,IAAI,KAAK,CAAC,4BAA4B,GAAG,CAAC,MAAM,MAAM,IAAI,EAAE,CAAC,CAAA;YACrE,CAAC;YAED,MAAM,IAAI,GAAG,MAAM,GAAG,CAAC,IAAI,EAK1B,CAAA;YAED,MAAM,GAAG,GAAG,IAAI,CAAC,QAAQ,CAAC,CAAC,CAAC,CAAA;YAC5B,IAAI,CAAC,GAAG,IAAI,GAAG,CAAC,MAAM,KAAK,MAAM;gBAAE,OAAO,EAAE,IAAI,EAAE,KAAK,EAAE,CAAA;YAEzD,OAAO;gBACL,IAAI,EAAE,IAAI;gBACV,QAAQ,EAAE,GAAG,CAAC,gBAAgB;aAC/B,CAAA;QACH,CAAC;KACF,CAAA;AACH,CAAC"}

package/dist/backends/lnbits.d.ts

@@ -0,0 +1,23 @@
+import type { LightningBackend } from '../types.js';
+export interface LNbitsConfig {
+    /** LNbits instance URL (e.g. https://legend.lnbits.com) */
+    url: string;
+    /** Invoice/read API key from the LNbits wallet */
+    apiKey: string;
+    /** Request timeout in ms (default: 30000) */
+    timeout?: number;
+}
+/**
+ * Lightning backend adapter for LNbits.
+ *
+ * Uses the LNbits Payments API with `X-Api-Key` header authentication.
+ * Works with any LNbits instance — self-hosted or hosted (legend.lnbits.com).
+ *
+ * LNbits abstracts over multiple funding sources (LND, CLN, Phoenixd,
+ * LndHub, etc.), so this backend supports any node type that LNbits
+ * connects to.
+ *
+ * @see https://lnbits.com/
+ */
+export declare function lnbitsBackend(config: LNbitsConfig): LightningBackend;
+//# sourceMappingURL=lnbits.d.ts.map

package/dist/backends/lnbits.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"lnbits.d.ts","sourceRoot":"","sources":["../../src/backends/lnbits.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,gBAAgB,EAA0B,MAAM,aAAa,CAAA;AAE3E,MAAM,WAAW,YAAY;IAC3B,2DAA2D;IAC3D,GAAG,EAAE,MAAM,CAAA;IACX,kDAAkD;IAClD,MAAM,EAAE,MAAM,CAAA;IACd,6CAA6C;IAC7C,OAAO,CAAC,EAAE,MAAM,CAAA;CACjB;AAED;;;;;;;;;;;GAWG;AACH,wBAAgB,aAAa,CAAC,MAAM,EAAE,YAAY,GAAG,gBAAgB,CAkDpE"}