@useagentpay/sdk 0.1.2 → 0.1.3

package/dist/index.cjs

@@ -648,7 +648,7 @@ function createApprovalServer(tx, tm, audit, options) {
           return;
         }
         try {
-          const keyPath = options?.home ? (0, import_node_path7.join)(options.home, "keys", "private.pem") : void 0;
+          const keyPath = options?.home ? (0, import_node_path8.join)(options.home, "keys", "private.pem") : void 0;
           const privateKeyPem = loadPrivateKey(keyPath);
           const txDetails = {
             txId: tx.id,
@@ -749,14 +749,14 @@ function requestBrowserApproval(tx, tm, audit, home) {
   const handle = createApprovalServer(tx, tm, audit, { openBrowser: true, home });
   return handle.promise;
 }
-var import_node_http, import_node_crypto5, import_node_path7, TIMEOUT_MS, MAX_BODY;
+var import_node_http, import_node_crypto5, import_node_path8, TIMEOUT_MS, MAX_BODY;
 var init_approval_server = __esm({
   "src/server/approval-server.ts"() {
     "use strict";
     init_cjs_shims();
     import_node_http = require("http");
     import_node_crypto5 = require("crypto");
-    import_node_path7 = require("path");
+    import_node_path8 = require("path");
     init_approval_html();
     init_open_browser();
     init_keypair();
@@ -767,6 +767,202 @@ var init_approval_server = __esm({
   }
 });
 
+// src/tunnel/tunnel.ts
+async function openTunnel(port) {
+  return new Promise((resolve, reject) => {
+    let child;
+    try {
+      child = (0, import_node_child_process2.spawn)("cloudflared", ["tunnel", "--url", `http://127.0.0.1:${port}`], {
+        stdio: ["ignore", "pipe", "pipe"]
+      });
+    } catch {
+      reject(new Error(
+        "cloudflared is required for mobile approval. Install it: https://developers.cloudflare.com/cloudflare-one/connections/connect-networks/downloads/"
+      ));
+      return;
+    }
+    let resolved = false;
+    const timeout = setTimeout(() => {
+      if (!resolved) {
+        resolved = true;
+        child.kill();
+        reject(new Error("cloudflared tunnel timed out waiting for URL (15s). Is cloudflared installed?"));
+      }
+    }, 15e3);
+    const close = () => {
+      child.kill();
+    };
+    const chunks = [];
+    child.stderr?.on("data", (data) => {
+      const text = data.toString();
+      chunks.push(text);
+      const match = text.match(/https:\/\/[a-z0-9-]+\.trycloudflare\.com/);
+      if (match && !resolved) {
+        resolved = true;
+        clearTimeout(timeout);
+        resolve({ url: match[0], close });
+      }
+    });
+    child.on("error", (err) => {
+      if (!resolved) {
+        resolved = true;
+        clearTimeout(timeout);
+        reject(new Error(
+          `cloudflared failed to start: ${err.message}. Install it: https://developers.cloudflare.com/cloudflare-one/connections/connect-networks/downloads/`
+        ));
+      }
+    });
+    child.on("exit", (code) => {
+      if (!resolved) {
+        resolved = true;
+        clearTimeout(timeout);
+        const output = chunks.join("");
+        reject(new Error(
+          `cloudflared exited with code ${code}. Output: ${output.slice(0, 500)}`
+        ));
+      }
+    });
+  });
+}
+var import_node_child_process2;
+var init_tunnel = __esm({
+  "src/tunnel/tunnel.ts"() {
+    "use strict";
+    init_cjs_shims();
+    import_node_child_process2 = require("child_process");
+  }
+});
+
+// src/notify/notify.ts
+async function sendNotification(payload, options) {
+  const results = [];
+  if (options.command) {
+    const cmd = options.command.replace(/\{\{url\}\}/g, payload.url);
+    try {
+      await runCommand(cmd);
+      results.push({ method: "command", success: true });
+    } catch (err) {
+      results.push({
+        method: "command",
+        success: false,
+        error: err instanceof Error ? err.message : "Command failed"
+      });
+    }
+  }
+  if (options.webhookUrl) {
+    try {
+      const res = await fetch(options.webhookUrl, {
+        method: "POST",
+        headers: { "Content-Type": "application/json" },
+        body: JSON.stringify(payload)
+      });
+      if (!res.ok) {
+        results.push({
+          method: "webhook",
+          success: false,
+          error: `Webhook returned ${res.status}`
+        });
+      } else {
+        results.push({ method: "webhook", success: true });
+      }
+    } catch (err) {
+      results.push({
+        method: "webhook",
+        success: false,
+        error: err instanceof Error ? err.message : "Webhook failed"
+      });
+    }
+  }
+  if (results.length === 0) {
+    results.push({
+      method: "none",
+      success: false,
+      error: "No notification method configured. Set AGENTPAY_NOTIFY_COMMAND or AGENTPAY_NOTIFY_WEBHOOK."
+    });
+  }
+  return results;
+}
+function runCommand(cmd) {
+  return new Promise((resolve, reject) => {
+    (0, import_node_child_process3.execFile)("sh", ["-c", cmd], { timeout: 1e4 }, (err) => {
+      if (err) reject(err);
+      else resolve();
+    });
+  });
+}
+var import_node_child_process3;
+var init_notify = __esm({
+  "src/notify/notify.ts"() {
+    "use strict";
+    init_cjs_shims();
+    import_node_child_process3 = require("child_process");
+  }
+});
+
+// src/server/mobile-approval-server.ts
+var mobile_approval_server_exports = {};
+__export(mobile_approval_server_exports, {
+  requestMobileApproval: () => requestMobileApproval
+});
+async function requestMobileApproval(tx, tm, audit, options) {
+  const handle = createApprovalServer(tx, tm, audit, {
+    openBrowser: false,
+    home: options.home
+  });
+  await waitForPort(handle);
+  let tunnel;
+  try {
+    tunnel = await openTunnel(handle.port);
+    const approvalUrl = `${tunnel.url}/approve/${tx.id}?token=${handle.token}`;
+    const payload = {
+      url: approvalUrl,
+      txId: tx.id,
+      merchant: tx.merchant,
+      amount: tx.amount
+    };
+    const notifyResults = await sendNotification(payload, options.notify);
+    audit.log("MOBILE_APPROVAL_REQUESTED", {
+      txId: tx.id,
+      tunnelUrl: tunnel.url,
+      notifyResults
+    });
+    const result = await handle.promise;
+    return {
+      ...result,
+      approvalUrl,
+      notifyResults
+    };
+  } finally {
+    tunnel?.close();
+  }
+}
+function waitForPort(handle, timeoutMs = 5e3) {
+  return new Promise((resolve, reject) => {
+    const start = Date.now();
+    const check = () => {
+      if (handle.port > 0) {
+        resolve();
+        return;
+      }
+      if (Date.now() - start > timeoutMs) {
+        reject(new Error("Approval server failed to bind to a port"));
+        return;
+      }
+      setTimeout(check, 50);
+    };
+    check();
+  });
+}
+var init_mobile_approval_server = __esm({
+  "src/server/mobile-approval-server.ts"() {
+    "use strict";
+    init_cjs_shims();
+    init_approval_server();
+    init_tunnel();
+    init_notify();
+  }
+});
+
 // src/server/passphrase-html.ts
 function esc2(s) {
   return s.replace(/&/g, "&amp;").replace(/</g, "&lt;").replace(/>/g, "&gt;").replace(/"/g, "&quot;");
@@ -1128,18 +1324,24 @@ __export(src_exports, {
   getPlaceholderVariables: () => getPlaceholderVariables,
   getTransactionsPath: () => getTransactionsPath,
   getWalletPath: () => getWalletPath,
+  loadConfig: () => loadConfig,
   loadPrivateKey: () => loadPrivateKey,
   loadPublicKey: () => loadPublicKey,
   loadVault: () => loadVault,
   openBrowser: () => openBrowser,
+  openTunnel: () => openTunnel,
   promptConfirm: () => promptConfirm,
   promptInput: () => promptInput,
   promptPassphrase: () => promptPassphrase,
   promptPassphraseSafe: () => promptPassphraseSafe,
   requestBrowserApproval: () => requestBrowserApproval,
   requestBrowserSetup: () => requestBrowserSetup,
+  requestMobileApproval: () => requestMobileApproval,
+  saveConfig: () => saveConfig,
   saveKeyPair: () => saveKeyPair,
   saveVault: () => saveVault,
+  sendNotification: () => sendNotification,
+  setMobileMode: () => setMobileMode,
   startDashboardServer: () => startServer,
   verifyMandate: () => verifyMandate,
   waitForApproval: () => waitForApproval
@@ -1346,11 +1548,47 @@ var BudgetManager = class {
   }
 };
 
-// src/transactions/manager.ts
+// src/config/config.ts
 init_cjs_shims();
 var import_node_fs5 = require("fs");
 var import_node_path5 = require("path");
 init_paths();
+
+// src/config/types.ts
+init_cjs_shims();
+var DEFAULT_CONFIG = {
+  mobileMode: false
+};
+
+// src/config/config.ts
+function getConfigPath(home) {
+  return (0, import_node_path5.join)(home ?? getHomePath(), "config.json");
+}
+function loadConfig(home) {
+  try {
+    const data = (0, import_node_fs5.readFileSync)(getConfigPath(home), "utf8");
+    return { ...DEFAULT_CONFIG, ...JSON.parse(data) };
+  } catch {
+    return { ...DEFAULT_CONFIG };
+  }
+}
+function saveConfig(config, home) {
+  const path = getConfigPath(home);
+  (0, import_node_fs5.mkdirSync)((0, import_node_path5.dirname)(path), { recursive: true });
+  (0, import_node_fs5.writeFileSync)(path, JSON.stringify(config, null, 2), { mode: 384 });
+}
+function setMobileMode(enabled, home) {
+  const config = loadConfig(home);
+  config.mobileMode = enabled;
+  saveConfig(config, home);
+  return config;
+}
+
+// src/transactions/manager.ts
+init_cjs_shims();
+var import_node_fs6 = require("fs");
+var import_node_path6 = require("path");
+init_paths();
 var TransactionManager = class {
   txPath;
   constructor(txPath) {
@@ -1358,15 +1596,15 @@ var TransactionManager = class {
   }
   loadAll() {
     try {
-      const data = (0, import_node_fs5.readFileSync)(this.txPath, "utf8");
+      const data = (0, import_node_fs6.readFileSync)(this.txPath, "utf8");
       return JSON.parse(data);
     } catch {
       return [];
     }
   }
   saveAll(transactions) {
-    (0, import_node_fs5.mkdirSync)((0, import_node_path5.dirname)(this.txPath), { recursive: true });
-    (0, import_node_fs5.writeFileSync)(this.txPath, JSON.stringify(transactions, null, 2), { mode: 384 });
+    (0, import_node_fs6.mkdirSync)((0, import_node_path6.dirname)(this.txPath), { recursive: true });
+    (0, import_node_fs6.writeFileSync)(this.txPath, JSON.stringify(transactions, null, 2), { mode: 384 });
   }
   propose(options) {
     const transactions = this.loadAll();
@@ -1446,8 +1684,8 @@ init_poller();
 
 // src/audit/logger.ts
 init_cjs_shims();
-var import_node_fs6 = require("fs");
-var import_node_path6 = require("path");
+var import_node_fs7 = require("fs");
+var import_node_path7 = require("path");
 init_paths();
 var AuditLogger = class {
   logPath;
@@ -1459,12 +1697,12 @@ var AuditLogger = class {
     const detailsStr = JSON.stringify(details);
     const entry = `${timestamp}	${action}	${detailsStr}
 `;
-    (0, import_node_fs6.mkdirSync)((0, import_node_path6.dirname)(this.logPath), { recursive: true });
-    (0, import_node_fs6.appendFileSync)(this.logPath, entry, { mode: 384 });
+    (0, import_node_fs7.mkdirSync)((0, import_node_path7.dirname)(this.logPath), { recursive: true });
+    (0, import_node_fs7.appendFileSync)(this.logPath, entry, { mode: 384 });
   }
   getLog() {
     try {
-      const data = (0, import_node_fs6.readFileSync)(this.logPath, "utf8");
+      const data = (0, import_node_fs7.readFileSync)(this.logPath, "utf8");
       return data.trim().split("\n").filter(Boolean);
     } catch {
       return [];
@@ -1731,13 +1969,16 @@ var PurchaseExecutor = class {
 
 // src/index.ts
 init_approval_server();
+init_mobile_approval_server();
+init_tunnel();
+init_notify();
 
 // src/server/setup-server.ts
 init_cjs_shims();
 var import_node_http2 = require("http");
 var import_node_crypto6 = require("crypto");
-var import_node_fs7 = require("fs");
-var import_node_path8 = require("path");
+var import_node_fs8 = require("fs");
+var import_node_path9 = require("path");
 
 // src/server/setup-html.ts
 init_cjs_shims();
@@ -2215,7 +2456,7 @@ function createSetupServer(options) {
           return;
         }
         try {
-          (0, import_node_fs7.mkdirSync)(home, { recursive: true });
+          (0, import_node_fs8.mkdirSync)(home, { recursive: true });
           const credentials = {
             card: { number: body.card.number, expiry: body.card.expiry, cvv: body.card.cvv },
             name: body.name,
@@ -2236,18 +2477,18 @@ function createSetupServer(options) {
             email: body.email,
             phone: body.phone
           };
-          const credPath = (0, import_node_path8.join)(home, "credentials.enc");
+          const credPath = (0, import_node_path9.join)(home, "credentials.enc");
           const vault = encrypt(credentials, passphrase);
           saveVault(vault, credPath);
-          const keysDir = (0, import_node_path8.join)(home, "keys");
-          (0, import_node_fs7.mkdirSync)(keysDir, { recursive: true });
+          const keysDir = (0, import_node_path9.join)(home, "keys");
+          (0, import_node_fs8.mkdirSync)(keysDir, { recursive: true });
           const keys = generateKeyPair(passphrase);
-          saveKeyPair(keys, (0, import_node_path8.join)(keysDir, "public.pem"), (0, import_node_path8.join)(keysDir, "private.pem"));
+          saveKeyPair(keys, (0, import_node_path9.join)(keysDir, "public.pem"), (0, import_node_path9.join)(keysDir, "private.pem"));
           const budget = typeof body.budget === "number" ? body.budget : 0;
           const limitPerTx = typeof body.limitPerTx === "number" ? body.limitPerTx : 0;
-          const bm = new BudgetManager((0, import_node_path8.join)(home, "wallet.json"));
+          const bm = new BudgetManager((0, import_node_path9.join)(home, "wallet.json"));
           bm.initWallet(budget, limitPerTx);
-          const audit = new AuditLogger((0, import_node_path8.join)(home, "audit.log"));
+          const audit = new AuditLogger((0, import_node_path9.join)(home, "audit.log"));
           audit.log("SETUP", { message: "credentials encrypted, keypair generated, wallet initialized", source: "browser-setup" });
         } catch (err) {
           const msg = err instanceof Error ? err.message : "Setup failed";
@@ -2825,11 +3066,11 @@ App.init();
 
 // src/server/routes.ts
 init_cjs_shims();
-var import_node_fs8 = require("fs");
+var import_node_fs9 = require("fs");
 init_keypair();
 init_paths();
 function handleGetStatus() {
-  const isSetup = (0, import_node_fs8.existsSync)(getCredentialsPath());
+  const isSetup = (0, import_node_fs9.existsSync)(getCredentialsPath());
   if (!isSetup) {
     return { status: 200, body: { isSetup: false } };
   }
@@ -2852,11 +3093,11 @@ function handlePostSetup(body) {
   }
   try {
     const home = getHomePath();
-    (0, import_node_fs8.mkdirSync)(home, { recursive: true });
+    (0, import_node_fs9.mkdirSync)(home, { recursive: true });
     const vault = encrypt(body.credentials, body.passphrase);
     saveVault(vault, getCredentialsPath());
     const keys = generateKeyPair(body.passphrase);
-    (0, import_node_fs8.mkdirSync)(getKeysPath(), { recursive: true });
+    (0, import_node_fs9.mkdirSync)(getKeysPath(), { recursive: true });
     saveKeyPair(keys);
     const bm = new BudgetManager();
     bm.initWallet(body.budget || 0, body.limitPerTx || 0);
@@ -3006,7 +3247,7 @@ async function promptPassphraseSafe(context) {
 
 // src/agentpay.ts
 init_cjs_shims();
-var import_node_path9 = require("path");
+var import_node_path10 = require("path");
 init_mandate();
 init_paths();
 init_errors();
@@ -3020,9 +3261,9 @@ var AgentPay = class {
   constructor(options) {
     this.home = options?.home ?? getHomePath();
     this.passphrase = options?.passphrase;
-    this.budgetManager = new BudgetManager((0, import_node_path9.join)(this.home, "wallet.json"));
-    this.txManager = new TransactionManager((0, import_node_path9.join)(this.home, "transactions.json"));
-    this.auditLogger = new AuditLogger((0, import_node_path9.join)(this.home, "audit.log"));
+    this.budgetManager = new BudgetManager((0, import_node_path10.join)(this.home, "wallet.json"));
+    this.txManager = new TransactionManager((0, import_node_path10.join)(this.home, "transactions.json"));
+    this.auditLogger = new AuditLogger((0, import_node_path10.join)(this.home, "audit.log"));
     this.executor = new PurchaseExecutor(options?.executor);
   }
   get wallet() {
@@ -3036,6 +3277,13 @@ var AgentPay = class {
       }
     };
   }
+  get config() {
+    return {
+      get: () => loadConfig(this.home),
+      setMobileMode: (enabled) => setMobileMode(enabled, this.home),
+      save: (config) => saveConfig(config, this.home)
+    };
+  }
   get transactions() {
     return {
       propose: (options) => {
@@ -3054,13 +3302,28 @@ var AgentPay = class {
         if (!tx) throw new Error(`Transaction ${txId} not found.`);
         if (tx.status !== "pending") throw new Error(`Transaction ${txId} is not pending.`);
         const { existsSync: existsSync3 } = await import("fs");
-        const keyPath = (0, import_node_path9.join)(this.home, "keys", "private.pem");
+        const keyPath = (0, import_node_path10.join)(this.home, "keys", "private.pem");
         if (!existsSync3(keyPath)) {
           throw new Error('Private key not found. Run "agentpay setup" first.');
         }
         const { requestBrowserApproval: requestBrowserApproval2 } = await Promise.resolve().then(() => (init_approval_server(), approval_server_exports));
         return requestBrowserApproval2(tx, this.txManager, this.auditLogger, this.home);
       },
+      requestMobileApproval: async (txId, notify) => {
+        const tx = this.txManager.get(txId);
+        if (!tx) throw new Error(`Transaction ${txId} not found.`);
+        if (tx.status !== "pending") throw new Error(`Transaction ${txId} is not pending.`);
+        const { existsSync: existsSync3 } = await import("fs");
+        const keyPath = (0, import_node_path10.join)(this.home, "keys", "private.pem");
+        if (!existsSync3(keyPath)) {
+          throw new Error('Private key not found. Run "agentpay setup" first.');
+        }
+        const { requestMobileApproval: requestMobileApproval2 } = await Promise.resolve().then(() => (init_mobile_approval_server(), mobile_approval_server_exports));
+        return requestMobileApproval2(tx, this.txManager, this.auditLogger, {
+          notify,
+          home: this.home
+        });
+      },
       execute: async (txId) => {
         const tx = this.txManager.get(txId);
         if (!tx) throw new Error(`Transaction ${txId} not found.`);
@@ -3090,7 +3353,7 @@ var AgentPay = class {
           if (!this.passphrase) {
             throw new Error("Passphrase required for execution. Pass it to AgentPay constructor.");
           }
-          const vaultPath = (0, import_node_path9.join)(this.home, "credentials.enc");
+          const vaultPath = (0, import_node_path10.join)(this.home, "credentials.enc");
           const vault = loadVault(vaultPath);
           const credentials = decrypt(vault, this.passphrase);
           const result = await this.executor.execute(tx, credentials);
@@ -3121,6 +3384,7 @@ var AgentPay = class {
     return { getLog: () => this.auditLogger.getLog() };
   }
   status() {
+    const cfg = loadConfig(this.home);
     try {
       const wallet = this.budgetManager.getBalance();
       const pending = this.txManager.getPending();
@@ -3131,7 +3395,8 @@ var AgentPay = class {
         limitPerTx: wallet.limitPerTx,
         pending,
         recent,
-        isSetup: true
+        isSetup: true,
+        mobileMode: cfg.mobileMode
       };
     } catch {
       return {
@@ -3140,14 +3405,15 @@ var AgentPay = class {
         limitPerTx: 0,
         pending: [],
         recent: [],
-        isSetup: false
+        isSetup: false,
+        mobileMode: cfg.mobileMode
       };
     }
   }
 };
 
 // src/index.ts
-var VERSION = true ? "0.1.2" : "0.0.0";
+var VERSION = true ? "0.1.3" : "0.0.0";
 // Annotate the CommonJS export names for ESM import in node:
 0 && (module.exports = {
   AgentPay,
@@ -3183,18 +3449,24 @@ var VERSION = true ? "0.1.2" : "0.0.0";
   getPlaceholderVariables,
   getTransactionsPath,
   getWalletPath,
+  loadConfig,
   loadPrivateKey,
   loadPublicKey,
   loadVault,
   openBrowser,
+  openTunnel,
   promptConfirm,
   promptInput,
   promptPassphrase,
   promptPassphraseSafe,
   requestBrowserApproval,
   requestBrowserSetup,
+  requestMobileApproval,
+  saveConfig,
   saveKeyPair,
   saveVault,
+  sendNotification,
+  setMobileMode,
   startDashboardServer,
   verifyMandate,
   waitForApproval