@wazabiai/x402 0.1.0

package/dist/types/index.d.ts

@@ -0,0 +1,408 @@
+import { z } from 'zod';
+
+/**
+ * x402 Protocol Version
+ */
+declare const X402_VERSION: "2.0.0";
+/**
+ * EIP-712 Domain name for x402 protocol
+ */
+declare const X402_DOMAIN_NAME: "x402";
+/**
+ * HTTP Header names used in x402 protocol
+ */
+declare const X402_HEADERS: {
+    readonly PAYMENT_REQUIRED: "x-payment-required";
+    readonly PAYMENT_SIGNATURE: "x-payment-signature";
+    readonly PAYMENT_PAYLOAD: "x-payment-payload";
+};
+/**
+ * Supported token symbol types
+ */
+type TokenSymbol = 'USDT' | 'USDC' | 'BNB' | 'BUSD';
+/**
+ * Token configuration for a specific blockchain
+ */
+interface TokenConfig {
+    /** Token contract address (0x...) */
+    address: `0x${string}`;
+    /** Token symbol */
+    symbol: TokenSymbol;
+    /** Token decimals (typically 18 for most tokens) */
+    decimals: number;
+    /** Human-readable token name */
+    name: string;
+}
+/**
+ * Network configuration for a specific blockchain
+ */
+interface NetworkConfig {
+    /** CAIP-2 chain identifier (e.g., 'eip155:56' for BSC) */
+    caipId: string;
+    /** Numeric chain ID */
+    chainId: number;
+    /** Human-readable network name */
+    name: string;
+    /** Default RPC URL */
+    rpcUrl: string;
+    /** Native currency symbol */
+    nativeCurrency: {
+        name: string;
+        symbol: string;
+        decimals: number;
+    };
+    /** Block explorer URL */
+    blockExplorer: string;
+    /** Supported tokens on this network */
+    tokens: Record<string, TokenConfig>;
+}
+/**
+ * Zod schema for PaymentRequirement validation
+ */
+declare const PaymentRequirementSchema: z.ZodObject<{
+    /** Payment amount in smallest token unit (wei/satoshi) as string */
+    amount: z.ZodString;
+    /** Token contract address */
+    token: z.ZodString;
+    /** CAIP-2 network identifier */
+    network_id: z.ZodString;
+    /** Recipient address for payment */
+    pay_to: z.ZodString;
+    /** Optional: Payment description */
+    description: z.ZodOptional<z.ZodString>;
+    /** Optional: Resource identifier being accessed */
+    resource: z.ZodOptional<z.ZodString>;
+    /** Optional: Expiration timestamp (Unix epoch seconds) */
+    expires_at: z.ZodOptional<z.ZodNumber>;
+    /** Optional: Unique nonce to prevent replay attacks */
+    nonce: z.ZodOptional<z.ZodString>;
+    /** Protocol version */
+    version: z.ZodOptional<z.ZodString>;
+}, "strip", z.ZodTypeAny, {
+    amount: string;
+    token: string;
+    network_id: string;
+    pay_to: string;
+    description?: string | undefined;
+    resource?: string | undefined;
+    expires_at?: number | undefined;
+    nonce?: string | undefined;
+    version?: string | undefined;
+}, {
+    amount: string;
+    token: string;
+    network_id: string;
+    pay_to: string;
+    description?: string | undefined;
+    resource?: string | undefined;
+    expires_at?: number | undefined;
+    nonce?: string | undefined;
+    version?: string | undefined;
+}>;
+/**
+ * Payment requirement structure returned in 402 response header
+ */
+type PaymentRequirement = z.infer<typeof PaymentRequirementSchema>;
+/**
+ * EIP-712 Domain structure for x402 protocol
+ */
+interface X402Domain {
+    name: typeof X402_DOMAIN_NAME;
+    version: string;
+    chainId: number;
+    verifyingContract?: `0x${string}`;
+}
+/**
+ * Zod schema for PaymentPayload validation
+ */
+declare const PaymentPayloadSchema: z.ZodObject<{
+    /** Payment amount in smallest token unit */
+    amount: z.ZodString;
+    /** Token contract address */
+    token: z.ZodString;
+    /** Chain ID (numeric) */
+    chainId: z.ZodNumber;
+    /** Recipient address */
+    payTo: z.ZodString;
+    /** Payer address (signer) */
+    payer: z.ZodString;
+    /** Unix timestamp when payment expires */
+    deadline: z.ZodNumber;
+    /** Unique nonce to prevent replay attacks */
+    nonce: z.ZodString;
+    /** Optional: Resource being accessed */
+    resource: z.ZodOptional<z.ZodString>;
+}, "strip", z.ZodTypeAny, {
+    amount: string;
+    token: string;
+    nonce: string;
+    chainId: number;
+    payTo: string;
+    payer: string;
+    deadline: number;
+    resource?: string | undefined;
+}, {
+    amount: string;
+    token: string;
+    nonce: string;
+    chainId: number;
+    payTo: string;
+    payer: string;
+    deadline: number;
+    resource?: string | undefined;
+}>;
+/**
+ * EIP-712 typed data payload for signing
+ */
+type PaymentPayload = z.infer<typeof PaymentPayloadSchema>;
+/**
+ * EIP-712 type definitions for Payment message
+ */
+declare const PAYMENT_TYPES: {
+    readonly Payment: readonly [{
+        readonly name: "amount";
+        readonly type: "uint256";
+    }, {
+        readonly name: "token";
+        readonly type: "address";
+    }, {
+        readonly name: "chainId";
+        readonly type: "uint256";
+    }, {
+        readonly name: "payTo";
+        readonly type: "address";
+    }, {
+        readonly name: "payer";
+        readonly type: "address";
+    }, {
+        readonly name: "deadline";
+        readonly type: "uint256";
+    }, {
+        readonly name: "nonce";
+        readonly type: "string";
+    }, {
+        readonly name: "resource";
+        readonly type: "string";
+    }];
+};
+/**
+ * Complete signed payment ready to be sent as header
+ */
+interface SignedPayment {
+    /** The payment payload that was signed */
+    payload: PaymentPayload;
+    /** EIP-712 signature (0x prefixed) */
+    signature: `0x${string}`;
+    /** Address of the signer */
+    signer: `0x${string}`;
+}
+/**
+ * Zod schema for SignedPayment validation
+ */
+declare const SignedPaymentSchema: z.ZodObject<{
+    payload: z.ZodObject<{
+        /** Payment amount in smallest token unit */
+        amount: z.ZodString;
+        /** Token contract address */
+        token: z.ZodString;
+        /** Chain ID (numeric) */
+        chainId: z.ZodNumber;
+        /** Recipient address */
+        payTo: z.ZodString;
+        /** Payer address (signer) */
+        payer: z.ZodString;
+        /** Unix timestamp when payment expires */
+        deadline: z.ZodNumber;
+        /** Unique nonce to prevent replay attacks */
+        nonce: z.ZodString;
+        /** Optional: Resource being accessed */
+        resource: z.ZodOptional<z.ZodString>;
+    }, "strip", z.ZodTypeAny, {
+        amount: string;
+        token: string;
+        nonce: string;
+        chainId: number;
+        payTo: string;
+        payer: string;
+        deadline: number;
+        resource?: string | undefined;
+    }, {
+        amount: string;
+        token: string;
+        nonce: string;
+        chainId: number;
+        payTo: string;
+        payer: string;
+        deadline: number;
+        resource?: string | undefined;
+    }>;
+    signature: z.ZodString;
+    signer: z.ZodString;
+}, "strip", z.ZodTypeAny, {
+    payload: {
+        amount: string;
+        token: string;
+        nonce: string;
+        chainId: number;
+        payTo: string;
+        payer: string;
+        deadline: number;
+        resource?: string | undefined;
+    };
+    signature: string;
+    signer: string;
+}, {
+    payload: {
+        amount: string;
+        token: string;
+        nonce: string;
+        chainId: number;
+        payTo: string;
+        payer: string;
+        deadline: number;
+        resource?: string | undefined;
+    };
+    signature: string;
+    signer: string;
+}>;
+/**
+ * Configuration options for X402Client
+ */
+interface X402ClientConfig {
+    /** Private key for signing (hex string with or without 0x prefix) */
+    privateKey?: string;
+    /** Custom RPC URL to use instead of default */
+    rpcUrl?: string;
+    /** Supported network IDs (defaults to ['eip155:56']) */
+    supportedNetworks?: string[];
+    /** Default deadline duration in seconds (default: 300 = 5 minutes) */
+    defaultDeadline?: number;
+    /** Auto-retry on 402 response (default: true) */
+    autoRetry?: boolean;
+    /** Maximum retries for payment (default: 1) */
+    maxRetries?: number;
+    /** Custom axios instance configuration */
+    axiosConfig?: Record<string, unknown>;
+    /** Callback when payment is required */
+    onPaymentRequired?: (requirement: PaymentRequirement) => void | Promise<void>;
+    /** Callback when payment is signed */
+    onPaymentSigned?: (payment: SignedPayment) => void | Promise<void>;
+}
+/**
+ * Payment verification result
+ */
+interface PaymentVerificationResult {
+    /** Whether the payment signature is valid */
+    valid: boolean;
+    /** Recovered signer address if valid */
+    signer?: `0x${string}`;
+    /** Error message if invalid */
+    error?: string;
+    /** The verified payment payload */
+    payload?: PaymentPayload;
+}
+/**
+ * Facilitator verification request
+ */
+interface FacilitatorVerifyRequest {
+    signature: string;
+    payload: PaymentPayload;
+    networkId: string;
+}
+/**
+ * Facilitator verification response
+ */
+interface FacilitatorVerifyResponse {
+    valid: boolean;
+    signer?: string;
+    error?: string;
+    balanceSufficient?: boolean;
+    allowanceSufficient?: boolean;
+}
+/**
+ * Configuration options for x402 server middleware
+ */
+interface X402MiddlewareConfig {
+    /** Recipient address for payments */
+    recipientAddress: `0x${string}`;
+    /** Payment amount in smallest token unit */
+    amount: string;
+    /** Token contract address (defaults to BSC-USDT) */
+    tokenAddress?: `0x${string}`;
+    /** Optional facilitator URL for offloading verification */
+    facilitatorUrl?: string;
+    /** Custom payment description */
+    description?: string;
+    /** Network ID (defaults to 'eip155:56') */
+    networkId?: string;
+    /** Deadline duration in seconds (default: 300) */
+    deadlineDuration?: number;
+    /** Custom nonce generator */
+    nonceGenerator?: () => string;
+    /** Callback to verify payment against custom logic (e.g., database) */
+    verifyPayment?: (payment: SignedPayment, req: unknown) => Promise<boolean>;
+    /** Routes to exclude from payment requirement */
+    excludeRoutes?: string[];
+    /** Custom error handler */
+    onError?: (error: Error, req: unknown, res: unknown) => void;
+}
+/**
+ * Base error class for x402 protocol errors
+ */
+declare class X402Error extends Error {
+    code: string;
+    details?: Record<string, unknown> | undefined;
+    constructor(message: string, code: string, details?: Record<string, unknown> | undefined);
+}
+/**
+ * Error thrown when payment is required but not provided
+ */
+declare class PaymentRequiredError extends X402Error {
+    requirement: PaymentRequirement;
+    constructor(requirement: PaymentRequirement, message?: string);
+}
+/**
+ * Error thrown when payment signature verification fails
+ */
+declare class PaymentVerificationError extends X402Error {
+    details?: Record<string, unknown> | undefined;
+    constructor(message: string, details?: Record<string, unknown> | undefined);
+}
+/**
+ * Error thrown when network is not supported
+ */
+declare class UnsupportedNetworkError extends X402Error {
+    constructor(networkId: string, supportedNetworks: string[]);
+}
+/**
+ * Error thrown when payment has expired
+ */
+declare class PaymentExpiredError extends X402Error {
+    constructor(deadline: number);
+}
+/**
+ * Hex string type (0x prefixed)
+ */
+type HexString = `0x${string}`;
+/**
+ * Address type (0x prefixed, 40 hex chars)
+ */
+type Address = `0x${string}`;
+/**
+ * Extract chain ID from CAIP-2 identifier
+ */
+declare function extractChainId(caipId: string): number;
+/**
+ * Create CAIP-2 identifier from chain ID
+ */
+declare function createCaipId(chainId: number): string;
+/**
+ * Generate a random nonce
+ */
+declare function generateNonce(): string;
+/**
+ * Calculate deadline from duration
+ */
+declare function calculateDeadline(durationSeconds?: number): number;
+
+export { type Address, type FacilitatorVerifyRequest, type FacilitatorVerifyResponse, type HexString, type NetworkConfig, PAYMENT_TYPES, PaymentExpiredError, type PaymentPayload, PaymentPayloadSchema, PaymentRequiredError, type PaymentRequirement, PaymentRequirementSchema, PaymentVerificationError, type PaymentVerificationResult, type SignedPayment, SignedPaymentSchema, type TokenConfig, type TokenSymbol, UnsupportedNetworkError, type X402ClientConfig, type X402Domain, X402Error, type X402MiddlewareConfig, X402_DOMAIN_NAME, X402_HEADERS, X402_VERSION, calculateDeadline, createCaipId, extractChainId, generateNonce };

package/dist/types/index.js

@@ -0,0 +1,141 @@
+import { z } from 'zod';
+
+/* @wazabiai/x402 - x402 v2 Payment Protocol SDK */
+
+var X402_VERSION = "2.0.0";
+var X402_DOMAIN_NAME = "x402";
+var X402_HEADERS = {
+  PAYMENT_REQUIRED: "x-payment-required",
+  PAYMENT_SIGNATURE: "x-payment-signature",
+  PAYMENT_PAYLOAD: "x-payment-payload"
+};
+var PaymentRequirementSchema = z.object({
+  /** Payment amount in smallest token unit (wei/satoshi) as string */
+  amount: z.string().regex(/^\d+$/, "Amount must be a numeric string"),
+  /** Token contract address */
+  token: z.string().regex(/^0x[a-fA-F0-9]{40}$/, "Invalid token address"),
+  /** CAIP-2 network identifier */
+  network_id: z.string().regex(/^eip155:\d+$/, "Invalid CAIP-2 network ID"),
+  /** Recipient address for payment */
+  pay_to: z.string().regex(/^0x[a-fA-F0-9]{40}$/, "Invalid recipient address"),
+  /** Optional: Payment description */
+  description: z.string().optional(),
+  /** Optional: Resource identifier being accessed */
+  resource: z.string().optional(),
+  /** Optional: Expiration timestamp (Unix epoch seconds) */
+  expires_at: z.number().int().positive().optional(),
+  /** Optional: Unique nonce to prevent replay attacks */
+  nonce: z.string().optional(),
+  /** Protocol version */
+  version: z.string().optional()
+});
+var PaymentPayloadSchema = z.object({
+  /** Payment amount in smallest token unit */
+  amount: z.string().regex(/^\d+$/, "Amount must be a numeric string"),
+  /** Token contract address */
+  token: z.string().regex(/^0x[a-fA-F0-9]{40}$/, "Invalid token address"),
+  /** Chain ID (numeric) */
+  chainId: z.number().int().positive(),
+  /** Recipient address */
+  payTo: z.string().regex(/^0x[a-fA-F0-9]{40}$/, "Invalid recipient address"),
+  /** Payer address (signer) */
+  payer: z.string().regex(/^0x[a-fA-F0-9]{40}$/, "Invalid payer address"),
+  /** Unix timestamp when payment expires */
+  deadline: z.number().int().positive(),
+  /** Unique nonce to prevent replay attacks */
+  nonce: z.string(),
+  /** Optional: Resource being accessed */
+  resource: z.string().optional()
+});
+var PAYMENT_TYPES = {
+  Payment: [
+    { name: "amount", type: "uint256" },
+    { name: "token", type: "address" },
+    { name: "chainId", type: "uint256" },
+    { name: "payTo", type: "address" },
+    { name: "payer", type: "address" },
+    { name: "deadline", type: "uint256" },
+    { name: "nonce", type: "string" },
+    { name: "resource", type: "string" }
+  ]
+};
+var SignedPaymentSchema = z.object({
+  payload: PaymentPayloadSchema,
+  signature: z.string().regex(/^0x[a-fA-F0-9]+$/, "Invalid signature format"),
+  signer: z.string().regex(/^0x[a-fA-F0-9]{40}$/, "Invalid signer address")
+});
+var X402Error = class _X402Error extends Error {
+  constructor(message, code, details) {
+    super(message);
+    this.code = code;
+    this.details = details;
+    this.name = "X402Error";
+    Object.setPrototypeOf(this, _X402Error.prototype);
+  }
+};
+var PaymentRequiredError = class _PaymentRequiredError extends X402Error {
+  constructor(requirement, message = "Payment required") {
+    super(message, "PAYMENT_REQUIRED", { requirement });
+    this.requirement = requirement;
+    this.name = "PaymentRequiredError";
+    Object.setPrototypeOf(this, _PaymentRequiredError.prototype);
+  }
+};
+var PaymentVerificationError = class _PaymentVerificationError extends X402Error {
+  constructor(message, details) {
+    super(message, "PAYMENT_VERIFICATION_FAILED", details);
+    this.details = details;
+    this.name = "PaymentVerificationError";
+    Object.setPrototypeOf(this, _PaymentVerificationError.prototype);
+  }
+};
+var UnsupportedNetworkError = class _UnsupportedNetworkError extends X402Error {
+  constructor(networkId, supportedNetworks) {
+    super(
+      `Network ${networkId} is not supported. Supported networks: ${supportedNetworks.join(", ")}`,
+      "UNSUPPORTED_NETWORK",
+      { networkId, supportedNetworks }
+    );
+    this.name = "UnsupportedNetworkError";
+    Object.setPrototypeOf(this, _UnsupportedNetworkError.prototype);
+  }
+};
+var PaymentExpiredError = class _PaymentExpiredError extends X402Error {
+  constructor(deadline) {
+    super(
+      `Payment has expired. Deadline: ${new Date(deadline * 1e3).toISOString()}`,
+      "PAYMENT_EXPIRED",
+      { deadline }
+    );
+    this.name = "PaymentExpiredError";
+    Object.setPrototypeOf(this, _PaymentExpiredError.prototype);
+  }
+};
+function extractChainId(caipId) {
+  const match = caipId.match(/^eip155:(\d+)$/);
+  if (!match?.[1]) {
+    throw new X402Error(`Invalid CAIP-2 identifier: ${caipId}`, "INVALID_CAIP_ID");
+  }
+  return parseInt(match[1], 10);
+}
+function createCaipId(chainId) {
+  return `eip155:${chainId}`;
+}
+function generateNonce() {
+  const bytes = new Uint8Array(16);
+  if (typeof crypto !== "undefined" && crypto.getRandomValues) {
+    crypto.getRandomValues(bytes);
+  } else {
+    for (let i = 0; i < bytes.length; i++) {
+      bytes[i] = Math.floor(Math.random() * 256);
+    }
+  }
+  return Array.from(bytes).map((b) => b.toString(16).padStart(2, "0")).join("");
+}
+function calculateDeadline(durationSeconds = 300) {
+  return Math.floor(Date.now() / 1e3) + durationSeconds;
+}
+
+export { PAYMENT_TYPES, PaymentExpiredError, PaymentPayloadSchema, PaymentRequiredError, PaymentRequirementSchema, PaymentVerificationError, SignedPaymentSchema, UnsupportedNetworkError, X402Error, X402_DOMAIN_NAME, X402_HEADERS, X402_VERSION, calculateDeadline, createCaipId, extractChainId, generateNonce };
+//# sourceMappingURL=index.js.map
+//# sourceMappingURL=index.js.map

package/dist/types/index.js.map

@@ -0,0 +1 @@
+{"version":3,"sources":["../../src/types/index.ts"],"names":[],"mappings":";;;;AASO,IAAM,YAAA,GAAe;AAKrB,IAAM,gBAAA,GAAmB;AAKzB,IAAM,YAAA,GAAe;AAAA,EAC1B,gBAAA,EAAkB,oBAAA;AAAA,EAClB,iBAAA,EAAmB,qBAAA;AAAA,EACnB,eAAA,EAAiB;AACnB;AAwDO,IAAM,wBAAA,GAA2B,EAAE,MAAA,CAAO;AAAA;AAAA,EAE/C,QAAQ,CAAA,CAAE,MAAA,EAAO,CAAE,KAAA,CAAM,SAAS,iCAAiC,CAAA;AAAA;AAAA,EAEnE,OAAO,CAAA,CAAE,MAAA,EAAO,CAAE,KAAA,CAAM,uBAAuB,uBAAuB,CAAA;AAAA;AAAA,EAEtE,YAAY,CAAA,CAAE,MAAA,EAAO,CAAE,KAAA,CAAM,gBAAgB,2BAA2B,CAAA;AAAA;AAAA,EAExE,QAAQ,CAAA,CAAE,MAAA,EAAO,CAAE,KAAA,CAAM,uBAAuB,2BAA2B,CAAA;AAAA;AAAA,EAE3E,WAAA,EAAa,CAAA,CAAE,MAAA,EAAO,CAAE,QAAA,EAAS;AAAA;AAAA,EAEjC,QAAA,EAAU,CAAA,CAAE,MAAA,EAAO,CAAE,QAAA,EAAS;AAAA;AAAA,EAE9B,UAAA,EAAY,EAAE,MAAA,EAAO,CAAE,KAAI,CAAE,QAAA,GAAW,QAAA,EAAS;AAAA;AAAA,EAEjD,KAAA,EAAO,CAAA,CAAE,MAAA,EAAO,CAAE,QAAA,EAAS;AAAA;AAAA,EAE3B,OAAA,EAAS,CAAA,CAAE,MAAA,EAAO,CAAE,QAAA;AACtB,CAAC;AAwBM,IAAM,oBAAA,GAAuB,EAAE,MAAA,CAAO;AAAA;AAAA,EAE3C,QAAQ,CAAA,CAAE,MAAA,EAAO,CAAE,KAAA,CAAM,SAAS,iCAAiC,CAAA;AAAA;AAAA,EAEnE,OAAO,CAAA,CAAE,MAAA,EAAO,CAAE,KAAA,CAAM,uBAAuB,uBAAuB,CAAA;AAAA;AAAA,EAEtE,SAAS,CAAA,CAAE,MAAA,EAAO,CAAE,GAAA,GAAM,QAAA,EAAS;AAAA;AAAA,EAEnC,OAAO,CAAA,CAAE,MAAA,EAAO,CAAE,KAAA,CAAM,uBAAuB,2BAA2B,CAAA;AAAA;AAAA,EAE1E,OAAO,CAAA,CAAE,MAAA,EAAO,CAAE,KAAA,CAAM,uBAAuB,uBAAuB,CAAA;AAAA;AAAA,EAEtE,UAAU,CAAA,CAAE,MAAA,EAAO,CAAE,GAAA,GAAM,QAAA,EAAS;AAAA;AAAA,EAEpC,KAAA,EAAO,EAAE,MAAA,EAAO;AAAA;AAAA,EAEhB,QAAA,EAAU,CAAA,CAAE,MAAA,EAAO,CAAE,QAAA;AACvB,CAAC;AAUM,IAAM,aAAA,GAAgB;AAAA,EAC3B,OAAA,EAAS;AAAA,IACP,EAAE,IAAA,EAAM,QAAA,EAAU,IAAA,EAAM,SAAA,EAAU;AAAA,IAClC,EAAE,IAAA,EAAM,OAAA,EAAS,IAAA,EAAM,SAAA,EAAU;AAAA,IACjC,EAAE,IAAA,EAAM,SAAA,EAAW,IAAA,EAAM,SAAA,EAAU;AAAA,IACnC,EAAE,IAAA,EAAM,OAAA,EAAS,IAAA,EAAM,SAAA,EAAU;AAAA,IACjC,EAAE,IAAA,EAAM,OAAA,EAAS,IAAA,EAAM,SAAA,EAAU;AAAA,IACjC,EAAE,IAAA,EAAM,UAAA,EAAY,IAAA,EAAM,SAAA,EAAU;AAAA,IACpC,EAAE,IAAA,EAAM,OAAA,EAAS,IAAA,EAAM,QAAA,EAAS;AAAA,IAChC,EAAE,IAAA,EAAM,UAAA,EAAY,IAAA,EAAM,QAAA;AAAS;AAEvC;AAqBO,IAAM,mBAAA,GAAsB,EAAE,MAAA,CAAO;AAAA,EAC1C,OAAA,EAAS,oBAAA;AAAA,EACT,WAAW,CAAA,CAAE,MAAA,EAAO,CAAE,KAAA,CAAM,oBAAoB,0BAA0B,CAAA;AAAA,EAC1E,QAAQ,CAAA,CAAE,MAAA,EAAO,CAAE,KAAA,CAAM,uBAAuB,wBAAwB;AAC1E,CAAC;AAuGM,IAAM,SAAA,GAAN,MAAM,UAAA,SAAkB,KAAA,CAAM;AAAA,EACnC,WAAA,CACE,OAAA,EACO,IAAA,EACA,OAAA,EACP;AACA,IAAA,KAAA,CAAM,OAAO,CAAA;AAHN,IAAA,IAAA,CAAA,IAAA,GAAA,IAAA;AACA,IAAA,IAAA,CAAA,OAAA,GAAA,OAAA;AAGP,IAAA,IAAA,CAAK,IAAA,GAAO,WAAA;AACZ,IAAA,MAAA,CAAO,cAAA,CAAe,IAAA,EAAM,UAAA,CAAU,SAAS,CAAA;AAAA,EACjD;AACF;AAKO,IAAM,oBAAA,GAAN,MAAM,qBAAA,SAA6B,SAAA,CAAU;AAAA,EAClD,WAAA,CACS,WAAA,EACP,OAAA,GAAU,kBAAA,EACV;AACA,IAAA,KAAA,CAAM,OAAA,EAAS,kBAAA,EAAoB,EAAE,WAAA,EAAa,CAAA;AAH3C,IAAA,IAAA,CAAA,WAAA,GAAA,WAAA;AAIP,IAAA,IAAA,CAAK,IAAA,GAAO,sBAAA;AACZ,IAAA,MAAA,CAAO,cAAA,CAAe,IAAA,EAAM,qBAAA,CAAqB,SAAS,CAAA;AAAA,EAC5D;AACF;AAKO,IAAM,wBAAA,GAAN,MAAM,yBAAA,SAAiC,SAAA,CAAU;AAAA,EACtD,WAAA,CACE,SACO,OAAA,EACP;AACA,IAAA,KAAA,CAAM,OAAA,EAAS,+BAA+B,OAAO,CAAA;AAF9C,IAAA,IAAA,CAAA,OAAA,GAAA,OAAA;AAGP,IAAA,IAAA,CAAK,IAAA,GAAO,0BAAA;AACZ,IAAA,MAAA,CAAO,cAAA,CAAe,IAAA,EAAM,yBAAA,CAAyB,SAAS,CAAA;AAAA,EAChE;AACF;AAKO,IAAM,uBAAA,GAAN,MAAM,wBAAA,SAAgC,SAAA,CAAU;AAAA,EACrD,WAAA,CACE,WACA,iBAAA,EACA;AACA,IAAA,KAAA;AAAA,MACE,WAAW,SAAS,CAAA,uCAAA,EAA0C,iBAAA,CAAkB,IAAA,CAAK,IAAI,CAAC,CAAA,CAAA;AAAA,MAC1F,qBAAA;AAAA,MACA,EAAE,WAAW,iBAAA;AAAkB,KACjC;AACA,IAAA,IAAA,CAAK,IAAA,GAAO,yBAAA;AACZ,IAAA,MAAA,CAAO,cAAA,CAAe,IAAA,EAAM,wBAAA,CAAwB,SAAS,CAAA;AAAA,EAC/D;AACF;AAKO,IAAM,mBAAA,GAAN,MAAM,oBAAA,SAA4B,SAAA,CAAU;AAAA,EACjD,YAAY,QAAA,EAAkB;AAC5B,IAAA,KAAA;AAAA,MACE,kCAAkC,IAAI,IAAA,CAAK,WAAW,GAAI,CAAA,CAAE,aAAa,CAAA,CAAA;AAAA,MACzE,iBAAA;AAAA,MACA,EAAE,QAAA;AAAS,KACb;AACA,IAAA,IAAA,CAAK,IAAA,GAAO,qBAAA;AACZ,IAAA,MAAA,CAAO,cAAA,CAAe,IAAA,EAAM,oBAAA,CAAoB,SAAS,CAAA;AAAA,EAC3D;AACF;AAmBO,SAAS,eAAe,MAAA,EAAwB;AACrD,EAAA,MAAM,KAAA,GAAQ,MAAA,CAAO,KAAA,CAAM,gBAAgB,CAAA;AAC3C,EAAA,IAAI,CAAC,KAAA,GAAQ,CAAC,CAAA,EAAG;AACf,IAAA,MAAM,IAAI,SAAA,CAAU,CAAA,2BAAA,EAA8B,MAAM,IAAI,iBAAiB,CAAA;AAAA,EAC/E;AACA,EAAA,OAAO,QAAA,CAAS,KAAA,CAAM,CAAC,CAAA,EAAG,EAAE,CAAA;AAC9B;AAKO,SAAS,aAAa,OAAA,EAAyB;AACpD,EAAA,OAAO,UAAU,OAAO,CAAA,CAAA;AAC1B;AAKO,SAAS,aAAA,GAAwB;AACtC,EAAA,MAAM,KAAA,GAAQ,IAAI,UAAA,CAAW,EAAE,CAAA;AAC/B,EAAA,IAAI,OAAO,MAAA,KAAW,WAAA,IAAe,MAAA,CAAO,eAAA,EAAiB;AAC3D,IAAA,MAAA,CAAO,gBAAgB,KAAK,CAAA;AAAA,EAC9B,CAAA,MAAO;AAEL,IAAA,KAAA,IAAS,CAAA,GAAI,CAAA,EAAG,CAAA,GAAI,KAAA,CAAM,QAAQ,CAAA,EAAA,EAAK;AACrC,MAAA,KAAA,CAAM,CAAC,CAAA,GAAI,IAAA,CAAK,MAAM,IAAA,CAAK,MAAA,KAAW,GAAG,CAAA;AAAA,IAC3C;AAAA,EACF;AACA,EAAA,OAAO,MAAM,IAAA,CAAK,KAAK,CAAA,CACpB,GAAA,CAAI,CAAC,CAAA,KAAM,CAAA,CAAE,QAAA,CAAS,EAAE,EAAE,QAAA,CAAS,CAAA,EAAG,GAAG,CAAC,CAAA,CAC1C,KAAK,EAAE,CAAA;AACZ;AAKO,SAAS,iBAAA,CAAkB,kBAA0B,GAAA,EAAa;AACvE,EAAA,OAAO,KAAK,KAAA,CAAM,IAAA,CAAK,GAAA,EAAI,GAAI,GAAI,CAAA,GAAI,eAAA;AACzC","file":"index.js","sourcesContent":["import { z } from 'zod';\n\n// ============================================================================\n// Constants\n// ============================================================================\n\n/**\n * x402 Protocol Version\n */\nexport const X402_VERSION = '2.0.0' as const;\n\n/**\n * EIP-712 Domain name for x402 protocol\n */\nexport const X402_DOMAIN_NAME = 'x402' as const;\n\n/**\n * HTTP Header names used in x402 protocol\n */\nexport const X402_HEADERS = {\n  PAYMENT_REQUIRED: 'x-payment-required',\n  PAYMENT_SIGNATURE: 'x-payment-signature',\n  PAYMENT_PAYLOAD: 'x-payment-payload',\n} as const;\n\n// ============================================================================\n// Network Configuration Types\n// ============================================================================\n\n/**\n * Supported token symbol types\n */\nexport type TokenSymbol = 'USDT' | 'USDC' | 'BNB' | 'BUSD';\n\n/**\n * Token configuration for a specific blockchain\n */\nexport interface TokenConfig {\n  /** Token contract address (0x...) */\n  address: `0x${string}`;\n  /** Token symbol */\n  symbol: TokenSymbol;\n  /** Token decimals (typically 18 for most tokens) */\n  decimals: number;\n  /** Human-readable token name */\n  name: string;\n}\n\n/**\n * Network configuration for a specific blockchain\n */\nexport interface NetworkConfig {\n  /** CAIP-2 chain identifier (e.g., 'eip155:56' for BSC) */\n  caipId: string;\n  /** Numeric chain ID */\n  chainId: number;\n  /** Human-readable network name */\n  name: string;\n  /** Default RPC URL */\n  rpcUrl: string;\n  /** Native currency symbol */\n  nativeCurrency: {\n    name: string;\n    symbol: string;\n    decimals: number;\n  };\n  /** Block explorer URL */\n  blockExplorer: string;\n  /** Supported tokens on this network */\n  tokens: Record<string, TokenConfig>;\n}\n\n// ============================================================================\n// Payment Requirement Types\n// ============================================================================\n\n/**\n * Zod schema for PaymentRequirement validation\n */\nexport const PaymentRequirementSchema = z.object({\n  /** Payment amount in smallest token unit (wei/satoshi) as string */\n  amount: z.string().regex(/^\\d+$/, 'Amount must be a numeric string'),\n  /** Token contract address */\n  token: z.string().regex(/^0x[a-fA-F0-9]{40}$/, 'Invalid token address'),\n  /** CAIP-2 network identifier */\n  network_id: z.string().regex(/^eip155:\\d+$/, 'Invalid CAIP-2 network ID'),\n  /** Recipient address for payment */\n  pay_to: z.string().regex(/^0x[a-fA-F0-9]{40}$/, 'Invalid recipient address'),\n  /** Optional: Payment description */\n  description: z.string().optional(),\n  /** Optional: Resource identifier being accessed */\n  resource: z.string().optional(),\n  /** Optional: Expiration timestamp (Unix epoch seconds) */\n  expires_at: z.number().int().positive().optional(),\n  /** Optional: Unique nonce to prevent replay attacks */\n  nonce: z.string().optional(),\n  /** Protocol version */\n  version: z.string().optional(),\n});\n\n/**\n * Payment requirement structure returned in 402 response header\n */\nexport type PaymentRequirement = z.infer<typeof PaymentRequirementSchema>;\n\n// ============================================================================\n// EIP-712 Payment Payload Types\n// ============================================================================\n\n/**\n * EIP-712 Domain structure for x402 protocol\n */\nexport interface X402Domain {\n  name: typeof X402_DOMAIN_NAME;\n  version: string;\n  chainId: number;\n  verifyingContract?: `0x${string}`;\n}\n\n/**\n * Zod schema for PaymentPayload validation\n */\nexport const PaymentPayloadSchema = z.object({\n  /** Payment amount in smallest token unit */\n  amount: z.string().regex(/^\\d+$/, 'Amount must be a numeric string'),\n  /** Token contract address */\n  token: z.string().regex(/^0x[a-fA-F0-9]{40}$/, 'Invalid token address'),\n  /** Chain ID (numeric) */\n  chainId: z.number().int().positive(),\n  /** Recipient address */\n  payTo: z.string().regex(/^0x[a-fA-F0-9]{40}$/, 'Invalid recipient address'),\n  /** Payer address (signer) */\n  payer: z.string().regex(/^0x[a-fA-F0-9]{40}$/, 'Invalid payer address'),\n  /** Unix timestamp when payment expires */\n  deadline: z.number().int().positive(),\n  /** Unique nonce to prevent replay attacks */\n  nonce: z.string(),\n  /** Optional: Resource being accessed */\n  resource: z.string().optional(),\n});\n\n/**\n * EIP-712 typed data payload for signing\n */\nexport type PaymentPayload = z.infer<typeof PaymentPayloadSchema>;\n\n/**\n * EIP-712 type definitions for Payment message\n */\nexport const PAYMENT_TYPES = {\n  Payment: [\n    { name: 'amount', type: 'uint256' },\n    { name: 'token', type: 'address' },\n    { name: 'chainId', type: 'uint256' },\n    { name: 'payTo', type: 'address' },\n    { name: 'payer', type: 'address' },\n    { name: 'deadline', type: 'uint256' },\n    { name: 'nonce', type: 'string' },\n    { name: 'resource', type: 'string' },\n  ],\n} as const;\n\n// ============================================================================\n// Signed Payment Types\n// ============================================================================\n\n/**\n * Complete signed payment ready to be sent as header\n */\nexport interface SignedPayment {\n  /** The payment payload that was signed */\n  payload: PaymentPayload;\n  /** EIP-712 signature (0x prefixed) */\n  signature: `0x${string}`;\n  /** Address of the signer */\n  signer: `0x${string}`;\n}\n\n/**\n * Zod schema for SignedPayment validation\n */\nexport const SignedPaymentSchema = z.object({\n  payload: PaymentPayloadSchema,\n  signature: z.string().regex(/^0x[a-fA-F0-9]+$/, 'Invalid signature format'),\n  signer: z.string().regex(/^0x[a-fA-F0-9]{40}$/, 'Invalid signer address'),\n});\n\n// ============================================================================\n// Client Configuration Types\n// ============================================================================\n\n/**\n * Configuration options for X402Client\n */\nexport interface X402ClientConfig {\n  /** Private key for signing (hex string with or without 0x prefix) */\n  privateKey?: string;\n  /** Custom RPC URL to use instead of default */\n  rpcUrl?: string;\n  /** Supported network IDs (defaults to ['eip155:56']) */\n  supportedNetworks?: string[];\n  /** Default deadline duration in seconds (default: 300 = 5 minutes) */\n  defaultDeadline?: number;\n  /** Auto-retry on 402 response (default: true) */\n  autoRetry?: boolean;\n  /** Maximum retries for payment (default: 1) */\n  maxRetries?: number;\n  /** Custom axios instance configuration */\n  axiosConfig?: Record<string, unknown>;\n  /** Callback when payment is required */\n  onPaymentRequired?: (requirement: PaymentRequirement) => void | Promise<void>;\n  /** Callback when payment is signed */\n  onPaymentSigned?: (payment: SignedPayment) => void | Promise<void>;\n}\n\n// ============================================================================\n// Server/Middleware Configuration Types\n// ============================================================================\n\n/**\n * Payment verification result\n */\nexport interface PaymentVerificationResult {\n  /** Whether the payment signature is valid */\n  valid: boolean;\n  /** Recovered signer address if valid */\n  signer?: `0x${string}`;\n  /** Error message if invalid */\n  error?: string;\n  /** The verified payment payload */\n  payload?: PaymentPayload;\n}\n\n/**\n * Facilitator verification request\n */\nexport interface FacilitatorVerifyRequest {\n  signature: string;\n  payload: PaymentPayload;\n  networkId: string;\n}\n\n/**\n * Facilitator verification response\n */\nexport interface FacilitatorVerifyResponse {\n  valid: boolean;\n  signer?: string;\n  error?: string;\n  balanceSufficient?: boolean;\n  allowanceSufficient?: boolean;\n}\n\n/**\n * Configuration options for x402 server middleware\n */\nexport interface X402MiddlewareConfig {\n  /** Recipient address for payments */\n  recipientAddress: `0x${string}`;\n  /** Payment amount in smallest token unit */\n  amount: string;\n  /** Token contract address (defaults to BSC-USDT) */\n  tokenAddress?: `0x${string}`;\n  /** Optional facilitator URL for offloading verification */\n  facilitatorUrl?: string;\n  /** Custom payment description */\n  description?: string;\n  /** Network ID (defaults to 'eip155:56') */\n  networkId?: string;\n  /** Deadline duration in seconds (default: 300) */\n  deadlineDuration?: number;\n  /** Custom nonce generator */\n  nonceGenerator?: () => string;\n  /** Callback to verify payment against custom logic (e.g., database) */\n  verifyPayment?: (payment: SignedPayment, req: unknown) => Promise<boolean>;\n  /** Routes to exclude from payment requirement */\n  excludeRoutes?: string[];\n  /** Custom error handler */\n  onError?: (error: Error, req: unknown, res: unknown) => void;\n}\n\n// ============================================================================\n// Error Types\n// ============================================================================\n\n/**\n * Base error class for x402 protocol errors\n */\nexport class X402Error extends Error {\n  constructor(\n    message: string,\n    public code: string,\n    public details?: Record<string, unknown>\n  ) {\n    super(message);\n    this.name = 'X402Error';\n    Object.setPrototypeOf(this, X402Error.prototype);\n  }\n}\n\n/**\n * Error thrown when payment is required but not provided\n */\nexport class PaymentRequiredError extends X402Error {\n  constructor(\n    public requirement: PaymentRequirement,\n    message = 'Payment required'\n  ) {\n    super(message, 'PAYMENT_REQUIRED', { requirement });\n    this.name = 'PaymentRequiredError';\n    Object.setPrototypeOf(this, PaymentRequiredError.prototype);\n  }\n}\n\n/**\n * Error thrown when payment signature verification fails\n */\nexport class PaymentVerificationError extends X402Error {\n  constructor(\n    message: string,\n    public details?: Record<string, unknown>\n  ) {\n    super(message, 'PAYMENT_VERIFICATION_FAILED', details);\n    this.name = 'PaymentVerificationError';\n    Object.setPrototypeOf(this, PaymentVerificationError.prototype);\n  }\n}\n\n/**\n * Error thrown when network is not supported\n */\nexport class UnsupportedNetworkError extends X402Error {\n  constructor(\n    networkId: string,\n    supportedNetworks: string[]\n  ) {\n    super(\n      `Network ${networkId} is not supported. Supported networks: ${supportedNetworks.join(', ')}`,\n      'UNSUPPORTED_NETWORK',\n      { networkId, supportedNetworks }\n    );\n    this.name = 'UnsupportedNetworkError';\n    Object.setPrototypeOf(this, UnsupportedNetworkError.prototype);\n  }\n}\n\n/**\n * Error thrown when payment has expired\n */\nexport class PaymentExpiredError extends X402Error {\n  constructor(deadline: number) {\n    super(\n      `Payment has expired. Deadline: ${new Date(deadline * 1000).toISOString()}`,\n      'PAYMENT_EXPIRED',\n      { deadline }\n    );\n    this.name = 'PaymentExpiredError';\n    Object.setPrototypeOf(this, PaymentExpiredError.prototype);\n  }\n}\n\n// ============================================================================\n// Utility Types\n// ============================================================================\n\n/**\n * Hex string type (0x prefixed)\n */\nexport type HexString = `0x${string}`;\n\n/**\n * Address type (0x prefixed, 40 hex chars)\n */\nexport type Address = `0x${string}`;\n\n/**\n * Extract chain ID from CAIP-2 identifier\n */\nexport function extractChainId(caipId: string): number {\n  const match = caipId.match(/^eip155:(\\d+)$/);\n  if (!match?.[1]) {\n    throw new X402Error(`Invalid CAIP-2 identifier: ${caipId}`, 'INVALID_CAIP_ID');\n  }\n  return parseInt(match[1], 10);\n}\n\n/**\n * Create CAIP-2 identifier from chain ID\n */\nexport function createCaipId(chainId: number): string {\n  return `eip155:${chainId}`;\n}\n\n/**\n * Generate a random nonce\n */\nexport function generateNonce(): string {\n  const bytes = new Uint8Array(16);\n  if (typeof crypto !== 'undefined' && crypto.getRandomValues) {\n    crypto.getRandomValues(bytes);\n  } else {\n    // Fallback for Node.js without Web Crypto\n    for (let i = 0; i < bytes.length; i++) {\n      bytes[i] = Math.floor(Math.random() * 256);\n    }\n  }\n  return Array.from(bytes)\n    .map((b) => b.toString(16).padStart(2, '0'))\n    .join('');\n}\n\n/**\n * Calculate deadline from duration\n */\nexport function calculateDeadline(durationSeconds: number = 300): number {\n  return Math.floor(Date.now() / 1000) + durationSeconds;\n}\n"]}