@xapps-platform/backend-kit 0.1.1

package/dist/backend/modes/index.js

@@ -0,0 +1,159 @@
+import * as gatewayManagedPayment from "./gateway-managed/payment.js";
+import * as gatewayManagedPolicy from "./gateway-managed/policy.js";
+import * as tenantDelegatedPayment from "./tenant-delegated/payment.js";
+import * as tenantDelegatedPolicy from "./tenant-delegated/policy.js";
+import * as publisherDelegatedPayment from "./publisher-delegated/payment.js";
+import * as publisherDelegatedPolicy from "./publisher-delegated/policy.js";
+import * as ownerManagedPayment from "./owner-managed/payment.js";
+import * as ownerManagedPolicy from "./owner-managed/policy.js";
+const BACKEND_MODE_HANDLERS = {
+  gateway_managed: {
+    ...gatewayManagedPayment,
+    ...gatewayManagedPolicy
+  },
+  tenant_delegated: {
+    ...tenantDelegatedPayment,
+    ...tenantDelegatedPolicy
+  },
+  publisher_delegated: {
+    ...publisherDelegatedPayment,
+    ...publisherDelegatedPolicy
+  },
+  owner_managed: {
+    ...ownerManagedPayment,
+    ...ownerManagedPolicy
+  }
+};
+const BACKEND_MODE_ENDPOINT_GROUPS = [
+  gatewayManagedPayment.referenceEndpointGroup,
+  tenantDelegatedPayment.referenceEndpointGroup,
+  publisherDelegatedPayment.referenceEndpointGroup,
+  ownerManagedPayment.referenceEndpointGroup
+];
+const BACKEND_MODE_REFERENCE_DETAILS = [
+  {
+    key: "gateway_managed",
+    label: gatewayManagedPayment.paymentModeLabel,
+    description: gatewayManagedPayment.paymentModeDescription,
+    payment_session_model: gatewayManagedPayment.paymentSessionModel,
+    required_settings: gatewayManagedPayment.requiredSettings,
+    payment_responsibilities: gatewayManagedPayment.paymentResponsibilities,
+    payment_endpoints: gatewayManagedPayment.paymentEndpoints,
+    policy_responsibilities: gatewayManagedPolicy.policyResponsibilities,
+    policy_endpoints: gatewayManagedPolicy.policyEndpoints,
+    guide_path: "packages/backend-kit/src/backend/modes/gateway-managed/payment.ts"
+  },
+  {
+    key: "tenant_delegated",
+    label: tenantDelegatedPayment.paymentModeLabel,
+    description: tenantDelegatedPayment.paymentModeDescription,
+    payment_session_model: tenantDelegatedPayment.paymentSessionModel,
+    required_settings: tenantDelegatedPayment.requiredSettings,
+    payment_responsibilities: tenantDelegatedPayment.paymentResponsibilities,
+    payment_endpoints: tenantDelegatedPayment.paymentEndpoints,
+    policy_responsibilities: tenantDelegatedPolicy.policyResponsibilities,
+    policy_endpoints: tenantDelegatedPolicy.policyEndpoints,
+    guide_path: "packages/backend-kit/src/backend/modes/tenant-delegated/payment.ts"
+  },
+  {
+    key: "publisher_delegated",
+    label: publisherDelegatedPayment.paymentModeLabel,
+    description: publisherDelegatedPayment.paymentModeDescription,
+    payment_session_model: publisherDelegatedPayment.paymentSessionModel,
+    required_settings: publisherDelegatedPayment.requiredSettings,
+    payment_responsibilities: publisherDelegatedPayment.paymentResponsibilities,
+    payment_endpoints: publisherDelegatedPayment.paymentEndpoints,
+    policy_responsibilities: publisherDelegatedPolicy.policyResponsibilities,
+    policy_endpoints: publisherDelegatedPolicy.policyEndpoints,
+    guide_path: "packages/backend-kit/src/backend/modes/publisher-delegated/payment.ts"
+  },
+  {
+    key: "owner_managed",
+    reference_key: ownerManagedPayment.referenceMode,
+    label: ownerManagedPayment.paymentModeLabel,
+    description: ownerManagedPayment.paymentModeDescription,
+    payment_session_model: ownerManagedPayment.paymentSessionModel,
+    required_settings: ownerManagedPayment.requiredSettings,
+    payment_responsibilities: ownerManagedPayment.paymentResponsibilities,
+    payment_endpoints: ownerManagedPayment.paymentEndpoints,
+    policy_responsibilities: ownerManagedPolicy.policyResponsibilities,
+    policy_endpoints: ownerManagedPolicy.policyEndpoints,
+    guide_path: "packages/backend-kit/src/backend/modes/owner-managed/payment.ts"
+  }
+];
+const ALL_BACKEND_MODE_KEYS = Object.freeze(Object.keys(BACKEND_MODE_HANDLERS));
+function normalizeModeKey(value) {
+  const mode = String(value || "").trim().toLowerCase();
+  if (mode === "tenant_managed") return "owner_managed";
+  return mode;
+}
+function normalizeEnabledBackendModes(enabledModes) {
+  if (!Array.isArray(enabledModes) || enabledModes.length === 0) {
+    return [...ALL_BACKEND_MODE_KEYS];
+  }
+  const selected = [];
+  for (const value of enabledModes) {
+    const mode = normalizeModeKey(value);
+    if (ALL_BACKEND_MODE_KEYS.includes(mode) && !selected.includes(mode)) {
+      selected.push(mode);
+    }
+  }
+  return selected.length > 0 ? selected : [...ALL_BACKEND_MODE_KEYS];
+}
+function getBackendModeHandlers(enabledModes) {
+  const selected = normalizeEnabledBackendModes(enabledModes);
+  return Object.fromEntries(selected.map((key) => [key, BACKEND_MODE_HANDLERS[key]]));
+}
+function getBackendModeEndpointGroups(enabledModes) {
+  const selected = new Set(normalizeEnabledBackendModes(enabledModes));
+  return BACKEND_MODE_ENDPOINT_GROUPS.filter((group) => {
+    if (group.key === "gateway_managed_payment_reference") return selected.has("gateway_managed");
+    if (group.key === "tenant_delegated_payment_reference") return selected.has("tenant_delegated");
+    if (group.key === "publisher_delegated_payment_reference") {
+      return selected.has("publisher_delegated");
+    }
+    if (group.key === "owner_managed_payment_reference") return selected.has("owner_managed");
+    return true;
+  });
+}
+function getBackendModeReferenceDetails(enabledModes) {
+  const selected = new Set(normalizeEnabledBackendModes(enabledModes));
+  return BACKEND_MODE_REFERENCE_DETAILS.filter((detail) => selected.has(detail.key));
+}
+function resolveCanonicalPaymentMode(payloadInput) {
+  const payload = payloadInput && typeof payloadInput === "object" ? payloadInput : {};
+  const guard = payload.guard && typeof payload.guard === "object" ? payload.guard : {};
+  const guardConfig = guard.config && typeof guard.config === "object" ? guard.config : {};
+  const mode = String(guardConfig?.payment_issuer_mode || guardConfig?.paymentIssuerMode || "").trim().toLowerCase();
+  if (mode === "gateway_managed") return "gateway_managed";
+  if (mode === "tenant_delegated") return "tenant_delegated";
+  if (mode === "publisher_delegated") return "publisher_delegated";
+  return "owner_managed";
+}
+async function resolveBackendPaymentPolicy(payloadInput, { log, enabledModes, paymentRuntime = {} } = {}) {
+  const paymentMode = resolveCanonicalPaymentMode(payloadInput);
+  const normalizedEnabledModes = normalizeEnabledBackendModes(enabledModes);
+  if (!normalizedEnabledModes.includes(paymentMode)) {
+    return {
+      allowed: false,
+      reason: "payment_mode_not_enabled",
+      message: "Payment mode is not enabled for this backend.",
+      details: {
+        payment_mode: paymentMode,
+        enabled_payment_modes: normalizedEnabledModes
+      }
+    };
+  }
+  const backendModeHandlers = getBackendModeHandlers(normalizedEnabledModes);
+  const backendModeHandler = backendModeHandlers[paymentMode] || backendModeHandlers.owner_managed || BACKEND_MODE_HANDLERS.owner_managed;
+  return backendModeHandler.resolvePolicyRequest(payloadInput, { log, paymentRuntime });
+}
+export {
+  ALL_BACKEND_MODE_KEYS,
+  getBackendModeEndpointGroups,
+  getBackendModeHandlers,
+  getBackendModeReferenceDetails,
+  normalizeEnabledBackendModes,
+  resolveBackendPaymentPolicy
+};
+//# sourceMappingURL=index.js.map

package/dist/backend/modes/index.js.map

@@ -0,0 +1,7 @@
+{
+  "version": 3,
+  "sources": ["../../../src/backend/modes/index.ts"],
+  "sourcesContent": ["// @ts-nocheck\nimport * as gatewayManagedPayment from \"./gateway-managed/payment.js\";\nimport * as gatewayManagedPolicy from \"./gateway-managed/policy.js\";\nimport * as tenantDelegatedPayment from \"./tenant-delegated/payment.js\";\nimport * as tenantDelegatedPolicy from \"./tenant-delegated/policy.js\";\nimport * as publisherDelegatedPayment from \"./publisher-delegated/payment.js\";\nimport * as publisherDelegatedPolicy from \"./publisher-delegated/policy.js\";\nimport * as ownerManagedPayment from \"./owner-managed/payment.js\";\nimport * as ownerManagedPolicy from \"./owner-managed/policy.js\";\n\nconst BACKEND_MODE_HANDLERS = {\n  gateway_managed: {\n    ...gatewayManagedPayment,\n    ...gatewayManagedPolicy,\n  },\n  tenant_delegated: {\n    ...tenantDelegatedPayment,\n    ...tenantDelegatedPolicy,\n  },\n  publisher_delegated: {\n    ...publisherDelegatedPayment,\n    ...publisherDelegatedPolicy,\n  },\n  owner_managed: {\n    ...ownerManagedPayment,\n    ...ownerManagedPolicy,\n  },\n};\n\nconst BACKEND_MODE_ENDPOINT_GROUPS = [\n  gatewayManagedPayment.referenceEndpointGroup,\n  tenantDelegatedPayment.referenceEndpointGroup,\n  publisherDelegatedPayment.referenceEndpointGroup,\n  ownerManagedPayment.referenceEndpointGroup,\n];\n\nconst BACKEND_MODE_REFERENCE_DETAILS = [\n  {\n    key: \"gateway_managed\",\n    label: gatewayManagedPayment.paymentModeLabel,\n    description: gatewayManagedPayment.paymentModeDescription,\n    payment_session_model: gatewayManagedPayment.paymentSessionModel,\n    required_settings: gatewayManagedPayment.requiredSettings,\n    payment_responsibilities: gatewayManagedPayment.paymentResponsibilities,\n    payment_endpoints: gatewayManagedPayment.paymentEndpoints,\n    policy_responsibilities: gatewayManagedPolicy.policyResponsibilities,\n    policy_endpoints: gatewayManagedPolicy.policyEndpoints,\n    guide_path: \"packages/backend-kit/src/backend/modes/gateway-managed/payment.ts\",\n  },\n  {\n    key: \"tenant_delegated\",\n    label: tenantDelegatedPayment.paymentModeLabel,\n    description: tenantDelegatedPayment.paymentModeDescription,\n    payment_session_model: tenantDelegatedPayment.paymentSessionModel,\n    required_settings: tenantDelegatedPayment.requiredSettings,\n    payment_responsibilities: tenantDelegatedPayment.paymentResponsibilities,\n    payment_endpoints: tenantDelegatedPayment.paymentEndpoints,\n    policy_responsibilities: tenantDelegatedPolicy.policyResponsibilities,\n    policy_endpoints: tenantDelegatedPolicy.policyEndpoints,\n    guide_path: \"packages/backend-kit/src/backend/modes/tenant-delegated/payment.ts\",\n  },\n  {\n    key: \"publisher_delegated\",\n    label: publisherDelegatedPayment.paymentModeLabel,\n    description: publisherDelegatedPayment.paymentModeDescription,\n    payment_session_model: publisherDelegatedPayment.paymentSessionModel,\n    required_settings: publisherDelegatedPayment.requiredSettings,\n    payment_responsibilities: publisherDelegatedPayment.paymentResponsibilities,\n    payment_endpoints: publisherDelegatedPayment.paymentEndpoints,\n    policy_responsibilities: publisherDelegatedPolicy.policyResponsibilities,\n    policy_endpoints: publisherDelegatedPolicy.policyEndpoints,\n    guide_path: \"packages/backend-kit/src/backend/modes/publisher-delegated/payment.ts\",\n  },\n  {\n    key: \"owner_managed\",\n    reference_key: ownerManagedPayment.referenceMode,\n    label: ownerManagedPayment.paymentModeLabel,\n    description: ownerManagedPayment.paymentModeDescription,\n    payment_session_model: ownerManagedPayment.paymentSessionModel,\n    required_settings: ownerManagedPayment.requiredSettings,\n    payment_responsibilities: ownerManagedPayment.paymentResponsibilities,\n    payment_endpoints: ownerManagedPayment.paymentEndpoints,\n    policy_responsibilities: ownerManagedPolicy.policyResponsibilities,\n    policy_endpoints: ownerManagedPolicy.policyEndpoints,\n    guide_path: \"packages/backend-kit/src/backend/modes/owner-managed/payment.ts\",\n  },\n];\n\nexport const ALL_BACKEND_MODE_KEYS = Object.freeze(Object.keys(BACKEND_MODE_HANDLERS));\n\nfunction normalizeModeKey(value) {\n  const mode = String(value || \"\")\n    .trim()\n    .toLowerCase();\n  if (mode === \"tenant_managed\") return \"owner_managed\";\n  return mode;\n}\n\nexport function normalizeEnabledBackendModes(enabledModes) {\n  if (!Array.isArray(enabledModes) || enabledModes.length === 0) {\n    return [...ALL_BACKEND_MODE_KEYS];\n  }\n  const selected = [];\n  for (const value of enabledModes) {\n    const mode = normalizeModeKey(value);\n    if (ALL_BACKEND_MODE_KEYS.includes(mode) && !selected.includes(mode)) {\n      selected.push(mode);\n    }\n  }\n  return selected.length > 0 ? selected : [...ALL_BACKEND_MODE_KEYS];\n}\n\nexport function getBackendModeHandlers(enabledModes) {\n  const selected = normalizeEnabledBackendModes(enabledModes);\n  return Object.fromEntries(selected.map((key) => [key, BACKEND_MODE_HANDLERS[key]]));\n}\n\nexport function getBackendModeEndpointGroups(enabledModes) {\n  const selected = new Set(normalizeEnabledBackendModes(enabledModes));\n  return BACKEND_MODE_ENDPOINT_GROUPS.filter((group) => {\n    if (group.key === \"gateway_managed_payment_reference\") return selected.has(\"gateway_managed\");\n    if (group.key === \"tenant_delegated_payment_reference\") return selected.has(\"tenant_delegated\");\n    if (group.key === \"publisher_delegated_payment_reference\") {\n      return selected.has(\"publisher_delegated\");\n    }\n    if (group.key === \"owner_managed_payment_reference\") return selected.has(\"owner_managed\");\n    return true;\n  });\n}\n\nexport function getBackendModeReferenceDetails(enabledModes) {\n  const selected = new Set(normalizeEnabledBackendModes(enabledModes));\n  return BACKEND_MODE_REFERENCE_DETAILS.filter((detail) => selected.has(detail.key));\n}\n\nfunction resolveCanonicalPaymentMode(payloadInput) {\n  const payload = payloadInput && typeof payloadInput === \"object\" ? payloadInput : {};\n  const guard = payload.guard && typeof payload.guard === \"object\" ? payload.guard : {};\n  const guardConfig = guard.config && typeof guard.config === \"object\" ? guard.config : {};\n  const mode = String(guardConfig?.payment_issuer_mode || guardConfig?.paymentIssuerMode || \"\")\n    .trim()\n    .toLowerCase();\n  if (mode === \"gateway_managed\") return \"gateway_managed\";\n  if (mode === \"tenant_delegated\") return \"tenant_delegated\";\n  if (mode === \"publisher_delegated\") return \"publisher_delegated\";\n  return \"owner_managed\";\n}\n\nexport async function resolveBackendPaymentPolicy(\n  payloadInput,\n  { log, enabledModes, paymentRuntime = {} } = {},\n) {\n  const paymentMode = resolveCanonicalPaymentMode(payloadInput);\n  const normalizedEnabledModes = normalizeEnabledBackendModes(enabledModes);\n  if (!normalizedEnabledModes.includes(paymentMode)) {\n    return {\n      allowed: false,\n      reason: \"payment_mode_not_enabled\",\n      message: \"Payment mode is not enabled for this backend.\",\n      details: {\n        payment_mode: paymentMode,\n        enabled_payment_modes: normalizedEnabledModes,\n      },\n    };\n  }\n  const backendModeHandlers = getBackendModeHandlers(normalizedEnabledModes);\n  const backendModeHandler =\n    backendModeHandlers[paymentMode] ||\n    backendModeHandlers.owner_managed ||\n    BACKEND_MODE_HANDLERS.owner_managed;\n  return backendModeHandler.resolvePolicyRequest(payloadInput, { log, paymentRuntime });\n}\n"],
+  "mappings": "AACA,YAAY,2BAA2B;AACvC,YAAY,0BAA0B;AACtC,YAAY,4BAA4B;AACxC,YAAY,2BAA2B;AACvC,YAAY,+BAA+B;AAC3C,YAAY,8BAA8B;AAC1C,YAAY,yBAAyB;AACrC,YAAY,wBAAwB;AAEpC,MAAM,wBAAwB;AAAA,EAC5B,iBAAiB;AAAA,IACf,GAAG;AAAA,IACH,GAAG;AAAA,EACL;AAAA,EACA,kBAAkB;AAAA,IAChB,GAAG;AAAA,IACH,GAAG;AAAA,EACL;AAAA,EACA,qBAAqB;AAAA,IACnB,GAAG;AAAA,IACH,GAAG;AAAA,EACL;AAAA,EACA,eAAe;AAAA,IACb,GAAG;AAAA,IACH,GAAG;AAAA,EACL;AACF;AAEA,MAAM,+BAA+B;AAAA,EACnC,sBAAsB;AAAA,EACtB,uBAAuB;AAAA,EACvB,0BAA0B;AAAA,EAC1B,oBAAoB;AACtB;AAEA,MAAM,iCAAiC;AAAA,EACrC;AAAA,IACE,KAAK;AAAA,IACL,OAAO,sBAAsB;AAAA,IAC7B,aAAa,sBAAsB;AAAA,IACnC,uBAAuB,sBAAsB;AAAA,IAC7C,mBAAmB,sBAAsB;AAAA,IACzC,0BAA0B,sBAAsB;AAAA,IAChD,mBAAmB,sBAAsB;AAAA,IACzC,yBAAyB,qBAAqB;AAAA,IAC9C,kBAAkB,qBAAqB;AAAA,IACvC,YAAY;AAAA,EACd;AAAA,EACA;AAAA,IACE,KAAK;AAAA,IACL,OAAO,uBAAuB;AAAA,IAC9B,aAAa,uBAAuB;AAAA,IACpC,uBAAuB,uBAAuB;AAAA,IAC9C,mBAAmB,uBAAuB;AAAA,IAC1C,0BAA0B,uBAAuB;AAAA,IACjD,mBAAmB,uBAAuB;AAAA,IAC1C,yBAAyB,sBAAsB;AAAA,IAC/C,kBAAkB,sBAAsB;AAAA,IACxC,YAAY;AAAA,EACd;AAAA,EACA;AAAA,IACE,KAAK;AAAA,IACL,OAAO,0BAA0B;AAAA,IACjC,aAAa,0BAA0B;AAAA,IACvC,uBAAuB,0BAA0B;AAAA,IACjD,mBAAmB,0BAA0B;AAAA,IAC7C,0BAA0B,0BAA0B;AAAA,IACpD,mBAAmB,0BAA0B;AAAA,IAC7C,yBAAyB,yBAAyB;AAAA,IAClD,kBAAkB,yBAAyB;AAAA,IAC3C,YAAY;AAAA,EACd;AAAA,EACA;AAAA,IACE,KAAK;AAAA,IACL,eAAe,oBAAoB;AAAA,IACnC,OAAO,oBAAoB;AAAA,IAC3B,aAAa,oBAAoB;AAAA,IACjC,uBAAuB,oBAAoB;AAAA,IAC3C,mBAAmB,oBAAoB;AAAA,IACvC,0BAA0B,oBAAoB;AAAA,IAC9C,mBAAmB,oBAAoB;AAAA,IACvC,yBAAyB,mBAAmB;AAAA,IAC5C,kBAAkB,mBAAmB;AAAA,IACrC,YAAY;AAAA,EACd;AACF;AAEO,MAAM,wBAAwB,OAAO,OAAO,OAAO,KAAK,qBAAqB,CAAC;AAErF,SAAS,iBAAiB,OAAO;AAC/B,QAAM,OAAO,OAAO,SAAS,EAAE,EAC5B,KAAK,EACL,YAAY;AACf,MAAI,SAAS,iBAAkB,QAAO;AACtC,SAAO;AACT;AAEO,SAAS,6BAA6B,cAAc;AACzD,MAAI,CAAC,MAAM,QAAQ,YAAY,KAAK,aAAa,WAAW,GAAG;AAC7D,WAAO,CAAC,GAAG,qBAAqB;AAAA,EAClC;AACA,QAAM,WAAW,CAAC;AAClB,aAAW,SAAS,cAAc;AAChC,UAAM,OAAO,iBAAiB,KAAK;AACnC,QAAI,sBAAsB,SAAS,IAAI,KAAK,CAAC,SAAS,SAAS,IAAI,GAAG;AACpE,eAAS,KAAK,IAAI;AAAA,IACpB;AAAA,EACF;AACA,SAAO,SAAS,SAAS,IAAI,WAAW,CAAC,GAAG,qBAAqB;AACnE;AAEO,SAAS,uBAAuB,cAAc;AACnD,QAAM,WAAW,6BAA6B,YAAY;AAC1D,SAAO,OAAO,YAAY,SAAS,IAAI,CAAC,QAAQ,CAAC,KAAK,sBAAsB,GAAG,CAAC,CAAC,CAAC;AACpF;AAEO,SAAS,6BAA6B,cAAc;AACzD,QAAM,WAAW,IAAI,IAAI,6BAA6B,YAAY,CAAC;AACnE,SAAO,6BAA6B,OAAO,CAAC,UAAU;AACpD,QAAI,MAAM,QAAQ,oCAAqC,QAAO,SAAS,IAAI,iBAAiB;AAC5F,QAAI,MAAM,QAAQ,qCAAsC,QAAO,SAAS,IAAI,kBAAkB;AAC9F,QAAI,MAAM,QAAQ,yCAAyC;AACzD,aAAO,SAAS,IAAI,qBAAqB;AAAA,IAC3C;AACA,QAAI,MAAM,QAAQ,kCAAmC,QAAO,SAAS,IAAI,eAAe;AACxF,WAAO;AAAA,EACT,CAAC;AACH;AAEO,SAAS,+BAA+B,cAAc;AAC3D,QAAM,WAAW,IAAI,IAAI,6BAA6B,YAAY,CAAC;AACnE,SAAO,+BAA+B,OAAO,CAAC,WAAW,SAAS,IAAI,OAAO,GAAG,CAAC;AACnF;AAEA,SAAS,4BAA4B,cAAc;AACjD,QAAM,UAAU,gBAAgB,OAAO,iBAAiB,WAAW,eAAe,CAAC;AACnF,QAAM,QAAQ,QAAQ,SAAS,OAAO,QAAQ,UAAU,WAAW,QAAQ,QAAQ,CAAC;AACpF,QAAM,cAAc,MAAM,UAAU,OAAO,MAAM,WAAW,WAAW,MAAM,SAAS,CAAC;AACvF,QAAM,OAAO,OAAO,aAAa,uBAAuB,aAAa,qBAAqB,EAAE,EACzF,KAAK,EACL,YAAY;AACf,MAAI,SAAS,kBAAmB,QAAO;AACvC,MAAI,SAAS,mBAAoB,QAAO;AACxC,MAAI,SAAS,sBAAuB,QAAO;AAC3C,SAAO;AACT;AAEA,eAAsB,4BACpB,cACA,EAAE,KAAK,cAAc,iBAAiB,CAAC,EAAE,IAAI,CAAC,GAC9C;AACA,QAAM,cAAc,4BAA4B,YAAY;AAC5D,QAAM,yBAAyB,6BAA6B,YAAY;AACxE,MAAI,CAAC,uBAAuB,SAAS,WAAW,GAAG;AACjD,WAAO;AAAA,MACL,SAAS;AAAA,MACT,QAAQ;AAAA,MACR,SAAS;AAAA,MACT,SAAS;AAAA,QACP,cAAc;AAAA,QACd,uBAAuB;AAAA,MACzB;AAAA,IACF;AAAA,EACF;AACA,QAAM,sBAAsB,uBAAuB,sBAAsB;AACzE,QAAM,qBACJ,oBAAoB,WAAW,KAC/B,oBAAoB,iBACpB,sBAAsB;AACxB,SAAO,mBAAmB,qBAAqB,cAAc,EAAE,KAAK,eAAe,CAAC;AACtF;",
+  "names": []
+}

package/dist/backend/modes/owner-managed/payment.d.ts

@@ -0,0 +1,34 @@
+export declare const paymentMode = "owner_managed";
+export declare const referenceMode = "owner_managed";
+export declare const paymentModeLabel = "Owner managed";
+export declare const paymentModeDescription = "The owner controls the payment page flow. The packaged sample payment page is the default reference seam for this path.";
+export declare const paymentPagePath = "/tenant-payment.html";
+export declare const paymentSessionModel: {
+    uses_gateway_payment_session: boolean;
+    tenant_owns_payment_page: boolean;
+    tenant_owns_payment_session_endpoints: boolean;
+    tenant_calls_gateway_payment_session_api_directly: boolean;
+    tenant_session_reference: string;
+};
+export declare const requiredSettings: string[];
+export declare const paymentResponsibilities: string[];
+export declare const paymentEndpoints: {
+    method: string;
+    path: string;
+    purpose: string;
+}[];
+export declare const referenceEndpointGroup: {
+    key: string;
+    label: string;
+    when_to_use: string;
+    endpoints: {
+        method: string;
+        path: string;
+        purpose: string;
+    }[];
+};
+export declare function buildPaymentUrl(input: any, runtime?: {}): Promise<string>;
+export declare function registerRoutes(fastify: any, { paymentRuntime }?: {
+    paymentRuntime?: {};
+}): Promise<void>;
+//# sourceMappingURL=payment.d.ts.map

package/dist/backend/modes/owner-managed/payment.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"payment.d.ts","sourceRoot":"","sources":["../../../../src/backend/modes/owner-managed/payment.ts"],"names":[],"mappings":"AAKA,eAAO,MAAM,WAAW,kBAAkB,CAAC;AAC3C,eAAO,MAAM,aAAa,kBAAkB,CAAC;AAC7C,eAAO,MAAM,gBAAgB,kBAAkB,CAAC;AAChD,eAAO,MAAM,sBAAsB,4HACwF,CAAC;AAC5H,eAAO,MAAM,eAAe,yBAAyB,CAAC;AACtD,eAAO,MAAM,mBAAmB;;;;;;CAM/B,CAAC;AACF,eAAO,MAAM,gBAAgB,UAI5B,CAAC;AACF,eAAO,MAAM,uBAAuB,UAInC,CAAC;AACF,eAAO,MAAM,gBAAgB;;;;GAqB5B,CAAC;AAEF,eAAO,MAAM,sBAAsB;;;;;;;;;CAMlC,CAAC;AAEF,wBAAsB,eAAe,CAAC,KAAK,KAAA,EAAE,OAAO,KAAK,mBAExD;AAED,wBAAsB,cAAc,CAAC,OAAO,KAAA,EAAE,EAAE,cAAmB,EAAE;;CAAK,iBAGzE"}

package/dist/backend/modes/owner-managed/payment.js

@@ -0,0 +1,75 @@
+import { buildPaymentUrl as buildOwnerManagedPaymentUrl } from "./paymentSession.js";
+import paymentAssetRoutes from "./paymentAssets.js";
+import paymentPageApiRoutes from "./paymentPageApi.js";
+const paymentMode = "owner_managed";
+const referenceMode = "owner_managed";
+const paymentModeLabel = "Owner managed";
+const paymentModeDescription = "The owner controls the payment page flow. The packaged sample payment page is the default reference seam for this path.";
+const paymentPagePath = "/tenant-payment.html";
+const paymentSessionModel = {
+  uses_gateway_payment_session: true,
+  tenant_owns_payment_page: true,
+  tenant_owns_payment_session_endpoints: true,
+  tenant_calls_gateway_payment_session_api_directly: true,
+  tenant_session_reference: "tenant page proxies gateway session through /api/tenant-payment/*"
+};
+const requiredSettings = [
+  "XCONECT_GUARD_INGEST_API_KEY",
+  "XCONECT_TENANT_PAYMENT_URL",
+  "XCONECT_TENANT_PAYMENT_RETURN_SECRET or XCONECT_TENANT_PAYMENT_RETURN_SECRET_REF"
+];
+const paymentResponsibilities = [
+  "serve the tenant payment page",
+  "implement tenant payment session endpoints",
+  "complete/client-settle the hosted gateway session from the tenant page"
+];
+const paymentEndpoints = [
+  {
+    method: "GET",
+    path: "/tenant-payment.html",
+    purpose: "Serves the tenant-owned payment page."
+  },
+  {
+    method: "GET",
+    path: "/api/tenant-payment/session",
+    purpose: "Loads the current hosted gateway session for the tenant page."
+  },
+  {
+    method: "POST",
+    path: "/api/tenant-payment/complete",
+    purpose: "Advances the hosted gateway session from the tenant page."
+  },
+  {
+    method: "POST",
+    path: "/api/tenant-payment/client-settle",
+    purpose: "Fallback client settlement for the tenant page flow."
+  }
+];
+const referenceEndpointGroup = {
+  key: "owner_managed_payment_reference",
+  label: "Owner-managed payment page reference",
+  when_to_use: "Use this when the owner keeps the owner-managed lane and the packaged sample payment page is used.",
+  endpoints: paymentEndpoints
+};
+async function buildPaymentUrl(input, runtime = {}) {
+  return buildOwnerManagedPaymentUrl(input, runtime);
+}
+async function registerRoutes(fastify, { paymentRuntime = {} } = {}) {
+  await fastify.register(paymentAssetRoutes, { paymentRuntime });
+  await fastify.register(paymentPageApiRoutes, { paymentRuntime });
+}
+export {
+  buildPaymentUrl,
+  paymentEndpoints,
+  paymentMode,
+  paymentModeDescription,
+  paymentModeLabel,
+  paymentPagePath,
+  paymentResponsibilities,
+  paymentSessionModel,
+  referenceEndpointGroup,
+  referenceMode,
+  registerRoutes,
+  requiredSettings
+};
+//# sourceMappingURL=payment.js.map

package/dist/backend/modes/owner-managed/payment.js.map

@@ -0,0 +1,7 @@
+{
+  "version": 3,
+  "sources": ["../../../../src/backend/modes/owner-managed/payment.ts"],
+  "sourcesContent": ["// @ts-nocheck\nimport { buildPaymentUrl as buildOwnerManagedPaymentUrl } from \"./paymentSession.js\";\nimport paymentAssetRoutes from \"./paymentAssets.js\";\nimport paymentPageApiRoutes from \"./paymentPageApi.js\";\n\nexport const paymentMode = \"owner_managed\";\nexport const referenceMode = \"owner_managed\";\nexport const paymentModeLabel = \"Owner managed\";\nexport const paymentModeDescription =\n  \"The owner controls the payment page flow. The packaged sample payment page is the default reference seam for this path.\";\nexport const paymentPagePath = \"/tenant-payment.html\";\nexport const paymentSessionModel = {\n  uses_gateway_payment_session: true,\n  tenant_owns_payment_page: true,\n  tenant_owns_payment_session_endpoints: true,\n  tenant_calls_gateway_payment_session_api_directly: true,\n  tenant_session_reference: \"tenant page proxies gateway session through /api/tenant-payment/*\",\n};\nexport const requiredSettings = [\n  \"XCONECT_GUARD_INGEST_API_KEY\",\n  \"XCONECT_TENANT_PAYMENT_URL\",\n  \"XCONECT_TENANT_PAYMENT_RETURN_SECRET or XCONECT_TENANT_PAYMENT_RETURN_SECRET_REF\",\n];\nexport const paymentResponsibilities = [\n  \"serve the tenant payment page\",\n  \"implement tenant payment session endpoints\",\n  \"complete/client-settle the hosted gateway session from the tenant page\",\n];\nexport const paymentEndpoints = [\n  {\n    method: \"GET\",\n    path: \"/tenant-payment.html\",\n    purpose: \"Serves the tenant-owned payment page.\",\n  },\n  {\n    method: \"GET\",\n    path: \"/api/tenant-payment/session\",\n    purpose: \"Loads the current hosted gateway session for the tenant page.\",\n  },\n  {\n    method: \"POST\",\n    path: \"/api/tenant-payment/complete\",\n    purpose: \"Advances the hosted gateway session from the tenant page.\",\n  },\n  {\n    method: \"POST\",\n    path: \"/api/tenant-payment/client-settle\",\n    purpose: \"Fallback client settlement for the tenant page flow.\",\n  },\n];\n\nexport const referenceEndpointGroup = {\n  key: \"owner_managed_payment_reference\",\n  label: \"Owner-managed payment page reference\",\n  when_to_use:\n    \"Use this when the owner keeps the owner-managed lane and the packaged sample payment page is used.\",\n  endpoints: paymentEndpoints,\n};\n\nexport async function buildPaymentUrl(input, runtime = {}) {\n  return buildOwnerManagedPaymentUrl(input, runtime);\n}\n\nexport async function registerRoutes(fastify, { paymentRuntime = {} } = {}) {\n  await fastify.register(paymentAssetRoutes, { paymentRuntime });\n  await fastify.register(paymentPageApiRoutes, { paymentRuntime });\n}\n"],
+  "mappings": "AACA,SAAS,mBAAmB,mCAAmC;AAC/D,OAAO,wBAAwB;AAC/B,OAAO,0BAA0B;AAE1B,MAAM,cAAc;AACpB,MAAM,gBAAgB;AACtB,MAAM,mBAAmB;AACzB,MAAM,yBACX;AACK,MAAM,kBAAkB;AACxB,MAAM,sBAAsB;AAAA,EACjC,8BAA8B;AAAA,EAC9B,0BAA0B;AAAA,EAC1B,uCAAuC;AAAA,EACvC,mDAAmD;AAAA,EACnD,0BAA0B;AAC5B;AACO,MAAM,mBAAmB;AAAA,EAC9B;AAAA,EACA;AAAA,EACA;AACF;AACO,MAAM,0BAA0B;AAAA,EACrC;AAAA,EACA;AAAA,EACA;AACF;AACO,MAAM,mBAAmB;AAAA,EAC9B;AAAA,IACE,QAAQ;AAAA,IACR,MAAM;AAAA,IACN,SAAS;AAAA,EACX;AAAA,EACA;AAAA,IACE,QAAQ;AAAA,IACR,MAAM;AAAA,IACN,SAAS;AAAA,EACX;AAAA,EACA;AAAA,IACE,QAAQ;AAAA,IACR,MAAM;AAAA,IACN,SAAS;AAAA,EACX;AAAA,EACA;AAAA,IACE,QAAQ;AAAA,IACR,MAAM;AAAA,IACN,SAAS;AAAA,EACX;AACF;AAEO,MAAM,yBAAyB;AAAA,EACpC,KAAK;AAAA,EACL,OAAO;AAAA,EACP,aACE;AAAA,EACF,WAAW;AACb;AAEA,eAAsB,gBAAgB,OAAO,UAAU,CAAC,GAAG;AACzD,SAAO,4BAA4B,OAAO,OAAO;AACnD;AAEA,eAAsB,eAAe,SAAS,EAAE,iBAAiB,CAAC,EAAE,IAAI,CAAC,GAAG;AAC1E,QAAM,QAAQ,SAAS,oBAAoB,EAAE,eAAe,CAAC;AAC7D,QAAM,QAAQ,SAAS,sBAAsB,EAAE,eAAe,CAAC;AACjE;",
+  "names": []
+}

package/dist/backend/modes/owner-managed/paymentAssets.d.ts

@@ -0,0 +1,4 @@
+export default function paymentAssetRoutes(fastify: any, { paymentRuntime }?: {
+    paymentRuntime?: {};
+}): Promise<void>;
+//# sourceMappingURL=paymentAssets.d.ts.map

package/dist/backend/modes/owner-managed/paymentAssets.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"paymentAssets.d.ts","sourceRoot":"","sources":["../../../../src/backend/modes/owner-managed/paymentAssets.ts"],"names":[],"mappings":"AAGA,wBAA8B,kBAAkB,CAAC,OAAO,KAAA,EAAE,EAAE,cAAmB,EAAE;;CAAK,iBAKrF"}

package/dist/backend/modes/owner-managed/paymentAssets.js

@@ -0,0 +1,11 @@
+import { registerPaymentPageAssetRoute } from "../../../index.js";
+async function paymentAssetRoutes(fastify, { paymentRuntime = {} } = {}) {
+  await registerPaymentPageAssetRoute(fastify, {
+    pagePath: "/tenant-payment.html",
+    pageFile: paymentRuntime.paymentPageFile
+  });
+}
+export {
+  paymentAssetRoutes as default
+};
+//# sourceMappingURL=paymentAssets.js.map

package/dist/backend/modes/owner-managed/paymentAssets.js.map

@@ -0,0 +1,7 @@
+{
+  "version": 3,
+  "sources": ["../../../../src/backend/modes/owner-managed/paymentAssets.ts"],
+  "sourcesContent": ["// @ts-nocheck\nimport { registerPaymentPageAssetRoute } from \"../../../index.js\";\n\nexport default async function paymentAssetRoutes(fastify, { paymentRuntime = {} } = {}) {\n  await registerPaymentPageAssetRoute(fastify, {\n    pagePath: \"/tenant-payment.html\",\n    pageFile: paymentRuntime.paymentPageFile,\n  });\n}\n"],
+  "mappings": "AACA,SAAS,qCAAqC;AAE9C,eAAO,mBAA0C,SAAS,EAAE,iBAAiB,CAAC,EAAE,IAAI,CAAC,GAAG;AACtF,QAAM,8BAA8B,SAAS;AAAA,IAC3C,UAAU;AAAA,IACV,UAAU,eAAe;AAAA,EAC3B,CAAC;AACH;",
+  "names": []
+}

package/dist/backend/modes/owner-managed/paymentPageApi.d.ts

@@ -0,0 +1,4 @@
+export default function paymentPageApiRoutes(fastify: any, { paymentRuntime }?: {
+    paymentRuntime?: {};
+}): Promise<void>;
+//# sourceMappingURL=paymentPageApi.d.ts.map

package/dist/backend/modes/owner-managed/paymentPageApi.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"paymentPageApi.d.ts","sourceRoot":"","sources":["../../../../src/backend/modes/owner-managed/paymentPageApi.ts"],"names":[],"mappings":"AAGA,wBAA8B,oBAAoB,CAAC,OAAO,KAAA,EAAE,EAAE,cAAmB,EAAE;;CAAK,iBAKvF"}

package/dist/backend/modes/owner-managed/paymentPageApi.js

@@ -0,0 +1,11 @@
+import { registerPaymentPageApiRoutes } from "../../../index.js";
+async function paymentPageApiRoutes(fastify, { paymentRuntime = {} } = {}) {
+  await registerPaymentPageApiRoutes(fastify, {
+    gatewayClient: paymentRuntime.gatewayClient || null,
+    pathPrefix: "/api/tenant-payment"
+  });
+}
+export {
+  paymentPageApiRoutes as default
+};
+//# sourceMappingURL=paymentPageApi.js.map

package/dist/backend/modes/owner-managed/paymentPageApi.js.map

@@ -0,0 +1,7 @@
+{
+  "version": 3,
+  "sources": ["../../../../src/backend/modes/owner-managed/paymentPageApi.ts"],
+  "sourcesContent": ["// @ts-nocheck\nimport { registerPaymentPageApiRoutes } from \"../../../index.js\";\n\nexport default async function paymentPageApiRoutes(fastify, { paymentRuntime = {} } = {}) {\n  await registerPaymentPageApiRoutes(fastify, {\n    gatewayClient: paymentRuntime.gatewayClient || null,\n    pathPrefix: \"/api/tenant-payment\",\n  });\n}\n"],
+  "mappings": "AACA,SAAS,oCAAoC;AAE7C,eAAO,qBAA4C,SAAS,EAAE,iBAAiB,CAAC,EAAE,IAAI,CAAC,GAAG;AACxF,QAAM,6BAA6B,SAAS;AAAA,IAC1C,eAAe,eAAe,iBAAiB;AAAA,IAC/C,YAAY;AAAA,EACd,CAAC;AACH;",
+  "names": []
+}

package/dist/backend/modes/owner-managed/paymentSession.d.ts

@@ -0,0 +1,4 @@
+import { extractHostedPaymentSessionId } from "../../../index.js";
+export declare function buildPaymentUrl(input: any, runtime?: {}): Promise<string>;
+export { extractHostedPaymentSessionId };
+//# sourceMappingURL=paymentSession.d.ts.map

package/dist/backend/modes/owner-managed/paymentSession.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"paymentSession.d.ts","sourceRoot":"","sources":["../../../../src/backend/modes/owner-managed/paymentSession.ts"],"names":[],"mappings":"AACA,OAAO,EAAoC,6BAA6B,EAAE,MAAM,mBAAmB,CAAC;AAEpG,wBAAsB,eAAe,CAAC,KAAK,KAAA,EAAE,OAAO,KAAK,mBAgBxD;AAED,OAAO,EAAE,6BAA6B,EAAE,CAAC"}

package/dist/backend/modes/owner-managed/paymentSession.js

@@ -0,0 +1,18 @@
+import { buildModeHostedGatewayPaymentUrl, extractHostedPaymentSessionId } from "../../../index.js";
+async function buildPaymentUrl(input, runtime = {}) {
+  const ownerIssuer = String(runtime?.paymentSettings?.ownerIssuer || "").trim().toLowerCase() === "publisher" ? "publisher" : "tenant";
+  return buildModeHostedGatewayPaymentUrl(
+    input,
+    {
+      fallbackIssuer: ownerIssuer,
+      storedIssuer: ownerIssuer,
+      allowDefaultSecretFallback: true
+    },
+    runtime
+  );
+}
+export {
+  buildPaymentUrl,
+  extractHostedPaymentSessionId
+};
+//# sourceMappingURL=paymentSession.js.map

package/dist/backend/modes/owner-managed/paymentSession.js.map

@@ -0,0 +1,7 @@
+{
+  "version": 3,
+  "sources": ["../../../../src/backend/modes/owner-managed/paymentSession.ts"],
+  "sourcesContent": ["// @ts-nocheck\nimport { buildModeHostedGatewayPaymentUrl, extractHostedPaymentSessionId } from \"../../../index.js\";\n\nexport async function buildPaymentUrl(input, runtime = {}) {\n  const ownerIssuer =\n    String(runtime?.paymentSettings?.ownerIssuer || \"\")\n      .trim()\n      .toLowerCase() === \"publisher\"\n      ? \"publisher\"\n      : \"tenant\";\n  return buildModeHostedGatewayPaymentUrl(\n    input,\n    {\n      fallbackIssuer: ownerIssuer,\n      storedIssuer: ownerIssuer,\n      allowDefaultSecretFallback: true,\n    },\n    runtime,\n  );\n}\n\nexport { extractHostedPaymentSessionId };\n"],
+  "mappings": "AACA,SAAS,kCAAkC,qCAAqC;AAEhF,eAAsB,gBAAgB,OAAO,UAAU,CAAC,GAAG;AACzD,QAAM,cACJ,OAAO,SAAS,iBAAiB,eAAe,EAAE,EAC/C,KAAK,EACL,YAAY,MAAM,cACjB,cACA;AACN,SAAO;AAAA,IACL;AAAA,IACA;AAAA,MACE,gBAAgB;AAAA,MAChB,cAAc;AAAA,MACd,4BAA4B;AAAA,IAC9B;AAAA,IACA;AAAA,EACF;AACF;",
+  "names": []
+}

package/dist/backend/modes/owner-managed/policy.d.ts

@@ -0,0 +1,68 @@
+export declare const policyResponsibilities: string[];
+export declare const policyEndpoints: {
+    method: string;
+    path: string;
+    purpose: string;
+}[];
+export declare function buildBlockedResult(input: any, runtime?: {}): Promise<{
+    allowed: boolean;
+    reason: any;
+    message: any;
+    action: import("@xapps/server-sdk").PaymentGuardAction;
+    details: {
+        verification_failure?: any;
+        uiRequired: boolean;
+        orchestration: {
+            reference_mode?: any;
+            mode: string;
+            surface: string;
+            status: string;
+            payment_session_id: any;
+            payment_mode: any;
+        };
+        payment_status: any;
+        expected_amount: any;
+        expected_currency: any;
+    };
+}>;
+export declare function resolvePolicyResult(input: any, runtime?: {}): Promise<{
+    allowed: boolean;
+    reason: string;
+    message: string;
+    details: {
+        reference_mode?: any;
+        payment_status: any;
+        orchestrationApproved: any;
+        gatewayPaymentVerified: any;
+        paidByGatewayHint: boolean;
+        paidByPlainStatusFallback: boolean;
+        paidByVerifiedEvidence: any;
+        verified_contract: any;
+        payment_mode: any;
+    };
+} | {
+    allowed: boolean;
+    reason: any;
+    message: any;
+    action: import("@xapps/server-sdk").PaymentGuardAction;
+    details: {
+        verification_failure?: any;
+        uiRequired: boolean;
+        orchestration: {
+            reference_mode?: any;
+            mode: string;
+            surface: string;
+            status: string;
+            payment_session_id: any;
+            payment_mode: any;
+        };
+        payment_status: any;
+        expected_amount: any;
+        expected_currency: any;
+    };
+}>;
+export declare function resolvePolicyRequest(payloadInput: any, { log, paymentRuntime }: {
+    log: any;
+    paymentRuntime?: {};
+}): Promise<any>;
+//# sourceMappingURL=policy.d.ts.map

package/dist/backend/modes/owner-managed/policy.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"policy.d.ts","sourceRoot":"","sources":["../../../../src/backend/modes/owner-managed/policy.ts"],"names":[],"mappings":"AAUA,eAAO,MAAM,sBAAsB,UAGlC,CAAC;AACF,eAAO,MAAM,eAAe;;;;GAM3B,CAAC;AAMF,wBAAsB,kBAAkB,CAAC,KAAK,KAAA,EAAE,OAAO,KAAK;;;;;;;;;;;;;;;;;;;;GAM3D;AAED,wBAAsB,mBAAmB,CAAC,KAAK,KAAA,EAAE,OAAO,KAAK;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GAK5D;AAED,wBAAsB,oBAAoB,CAAC,YAAY,KAAA,EAAE,EAAE,GAAG,EAAE,cAAmB,EAAE;;;CAAA,gBASpF"}

package/dist/backend/modes/owner-managed/policy.js

@@ -0,0 +1,53 @@
+import { resolveAllowedIssuers, resolveExpectedPaymentIssuer } from "./policyContext.js";
+import {
+  buildPaymentPolicyAllowedResult,
+  buildPaymentPolicyBlockedResult,
+  resolvePolicyRequestCommon
+} from "../../policies/common.js";
+import { extractHostedPaymentSessionId } from "./paymentSession.js";
+import { buildPaymentUrl, paymentMode, referenceMode } from "./payment.js";
+const policyResponsibilities = [
+  "verify signed payment evidence for the owner-managed lane",
+  "block and return the tenant payment page action when evidence is missing"
+];
+const policyEndpoints = [
+  {
+    method: "POST",
+    path: "/xapps/requests",
+    purpose: "Runs the tenant payment policy for owner-managed xapps."
+  }
+];
+function buildAllowedResult(input) {
+  return buildPaymentPolicyAllowedResult(input, { paymentMode, referenceMode });
+}
+async function buildBlockedResult(input, runtime = {}) {
+  return buildPaymentPolicyBlockedResult(input, {
+    buildPaymentUrl: (payload) => buildPaymentUrl(payload, runtime),
+    extractHostedPaymentSessionId,
+    modeMeta: { paymentMode, referenceMode }
+  });
+}
+async function resolvePolicyResult(input, runtime = {}) {
+  if (input.paidByVerifiedEvidence && !input.verificationFailure) {
+    return buildAllowedResult(input);
+  }
+  return buildBlockedResult(input, runtime);
+}
+async function resolvePolicyRequest(payloadInput, { log, paymentRuntime = {} }) {
+  return resolvePolicyRequestCommon({
+    payloadInput,
+    log,
+    resolveAllowedIssuers,
+    resolveExpectedPaymentIssuer,
+    resolveModeResult: resolvePolicyResult,
+    paymentRuntime
+  });
+}
+export {
+  buildBlockedResult,
+  policyEndpoints,
+  policyResponsibilities,
+  resolvePolicyRequest,
+  resolvePolicyResult
+};
+//# sourceMappingURL=policy.js.map

package/dist/backend/modes/owner-managed/policy.js.map

@@ -0,0 +1,7 @@
+{
+  "version": 3,
+  "sources": ["../../../../src/backend/modes/owner-managed/policy.ts"],
+  "sourcesContent": ["// @ts-nocheck\nimport { resolveAllowedIssuers, resolveExpectedPaymentIssuer } from \"./policyContext.js\";\nimport {\n  buildPaymentPolicyAllowedResult,\n  buildPaymentPolicyBlockedResult,\n  resolvePolicyRequestCommon,\n} from \"../../policies/common.js\";\nimport { extractHostedPaymentSessionId } from \"./paymentSession.js\";\nimport { buildPaymentUrl, paymentMode, referenceMode } from \"./payment.js\";\n\nexport const policyResponsibilities = [\n  \"verify signed payment evidence for the owner-managed lane\",\n  \"block and return the tenant payment page action when evidence is missing\",\n];\nexport const policyEndpoints = [\n  {\n    method: \"POST\",\n    path: \"/xapps/requests\",\n    purpose: \"Runs the tenant payment policy for owner-managed xapps.\",\n  },\n];\n\nfunction buildAllowedResult(input) {\n  return buildPaymentPolicyAllowedResult(input, { paymentMode, referenceMode });\n}\n\nexport async function buildBlockedResult(input, runtime = {}) {\n  return buildPaymentPolicyBlockedResult(input, {\n    buildPaymentUrl: (payload) => buildPaymentUrl(payload, runtime),\n    extractHostedPaymentSessionId,\n    modeMeta: { paymentMode, referenceMode },\n  });\n}\n\nexport async function resolvePolicyResult(input, runtime = {}) {\n  if (input.paidByVerifiedEvidence && !input.verificationFailure) {\n    return buildAllowedResult(input);\n  }\n  return buildBlockedResult(input, runtime);\n}\n\nexport async function resolvePolicyRequest(payloadInput, { log, paymentRuntime = {} }) {\n  return resolvePolicyRequestCommon({\n    payloadInput,\n    log,\n    resolveAllowedIssuers,\n    resolveExpectedPaymentIssuer,\n    resolveModeResult: resolvePolicyResult,\n    paymentRuntime,\n  });\n}\n"],
+  "mappings": "AACA,SAAS,uBAAuB,oCAAoC;AACpE;AAAA,EACE;AAAA,EACA;AAAA,EACA;AAAA,OACK;AACP,SAAS,qCAAqC;AAC9C,SAAS,iBAAiB,aAAa,qBAAqB;AAErD,MAAM,yBAAyB;AAAA,EACpC;AAAA,EACA;AACF;AACO,MAAM,kBAAkB;AAAA,EAC7B;AAAA,IACE,QAAQ;AAAA,IACR,MAAM;AAAA,IACN,SAAS;AAAA,EACX;AACF;AAEA,SAAS,mBAAmB,OAAO;AACjC,SAAO,gCAAgC,OAAO,EAAE,aAAa,cAAc,CAAC;AAC9E;AAEA,eAAsB,mBAAmB,OAAO,UAAU,CAAC,GAAG;AAC5D,SAAO,gCAAgC,OAAO;AAAA,IAC5C,iBAAiB,CAAC,YAAY,gBAAgB,SAAS,OAAO;AAAA,IAC9D;AAAA,IACA,UAAU,EAAE,aAAa,cAAc;AAAA,EACzC,CAAC;AACH;AAEA,eAAsB,oBAAoB,OAAO,UAAU,CAAC,GAAG;AAC7D,MAAI,MAAM,0BAA0B,CAAC,MAAM,qBAAqB;AAC9D,WAAO,mBAAmB,KAAK;AAAA,EACjC;AACA,SAAO,mBAAmB,OAAO,OAAO;AAC1C;AAEA,eAAsB,qBAAqB,cAAc,EAAE,KAAK,iBAAiB,CAAC,EAAE,GAAG;AACrF,SAAO,2BAA2B;AAAA,IAChC;AAAA,IACA;AAAA,IACA;AAAA,IACA;AAAA,IACA,mBAAmB;AAAA,IACnB;AAAA,EACF,CAAC;AACH;",
+  "names": []
+}

package/dist/backend/modes/owner-managed/policyContext.d.ts

@@ -0,0 +1,5 @@
+import { buildPaymentAction, hasUpstreamPaymentVerified, resolveMergedContext, resolvePriceAmount } from "../../policies/common.js";
+export { buildPaymentAction, hasUpstreamPaymentVerified, resolveMergedContext, resolvePriceAmount };
+export declare function resolveExpectedPaymentIssuer(_guardConfig: any, paymentSettings?: {}): "tenant" | "publisher";
+export declare function resolveAllowedIssuers(guardConfig: any, paymentSettings?: {}): string[];
+//# sourceMappingURL=policyContext.d.ts.map

package/dist/backend/modes/owner-managed/policyContext.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"policyContext.d.ts","sourceRoot":"","sources":["../../../../src/backend/modes/owner-managed/policyContext.ts"],"names":[],"mappings":"AACA,OAAO,EACL,kBAAkB,EAClB,0BAA0B,EAE1B,oBAAoB,EACpB,kBAAkB,EACnB,MAAM,0BAA0B,CAAC;AAElC,OAAO,EAAE,kBAAkB,EAAE,0BAA0B,EAAE,oBAAoB,EAAE,kBAAkB,EAAE,CAAC;AASpG,wBAAgB,4BAA4B,CAAC,YAAY,KAAA,EAAE,eAAe,KAAK,0BAE9E;AAED,wBAAgB,qBAAqB,CAAC,WAAW,KAAA,EAAE,eAAe,KAAK,YAEtE"}

package/dist/backend/modes/owner-managed/policyContext.js

@@ -0,0 +1,26 @@
+import {
+  buildPaymentAction,
+  hasUpstreamPaymentVerified,
+  normalizeAllowedIssuers,
+  resolveMergedContext,
+  resolvePriceAmount
+} from "../../policies/common.js";
+function readOwnerIssuer(paymentSettings) {
+  const raw = String(paymentSettings?.ownerIssuer || "").trim().toLowerCase();
+  return raw === "publisher" ? "publisher" : "tenant";
+}
+function resolveExpectedPaymentIssuer(_guardConfig, paymentSettings = {}) {
+  return readOwnerIssuer(paymentSettings);
+}
+function resolveAllowedIssuers(guardConfig, paymentSettings = {}) {
+  return normalizeAllowedIssuers(guardConfig, readOwnerIssuer(paymentSettings));
+}
+export {
+  buildPaymentAction,
+  hasUpstreamPaymentVerified,
+  resolveAllowedIssuers,
+  resolveExpectedPaymentIssuer,
+  resolveMergedContext,
+  resolvePriceAmount
+};
+//# sourceMappingURL=policyContext.js.map

package/dist/backend/modes/owner-managed/policyContext.js.map

@@ -0,0 +1,7 @@
+{
+  "version": 3,
+  "sources": ["../../../../src/backend/modes/owner-managed/policyContext.ts"],
+  "sourcesContent": ["// @ts-nocheck\nimport {\n  buildPaymentAction,\n  hasUpstreamPaymentVerified,\n  normalizeAllowedIssuers,\n  resolveMergedContext,\n  resolvePriceAmount,\n} from \"../../policies/common.js\";\n\nexport { buildPaymentAction, hasUpstreamPaymentVerified, resolveMergedContext, resolvePriceAmount };\n\nfunction readOwnerIssuer(paymentSettings) {\n  const raw = String(paymentSettings?.ownerIssuer || \"\")\n    .trim()\n    .toLowerCase();\n  return raw === \"publisher\" ? \"publisher\" : \"tenant\";\n}\n\nexport function resolveExpectedPaymentIssuer(_guardConfig, paymentSettings = {}) {\n  return readOwnerIssuer(paymentSettings);\n}\n\nexport function resolveAllowedIssuers(guardConfig, paymentSettings = {}) {\n  return normalizeAllowedIssuers(guardConfig, readOwnerIssuer(paymentSettings));\n}\n"],
+  "mappings": "AACA;AAAA,EACE;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,OACK;AAIP,SAAS,gBAAgB,iBAAiB;AACxC,QAAM,MAAM,OAAO,iBAAiB,eAAe,EAAE,EAClD,KAAK,EACL,YAAY;AACf,SAAO,QAAQ,cAAc,cAAc;AAC7C;AAEO,SAAS,6BAA6B,cAAc,kBAAkB,CAAC,GAAG;AAC/E,SAAO,gBAAgB,eAAe;AACxC;AAEO,SAAS,sBAAsB,aAAa,kBAAkB,CAAC,GAAG;AACvE,SAAO,wBAAwB,aAAa,gBAAgB,eAAe,CAAC;AAC9E;",
+  "names": []
+}

package/dist/backend/modes/publisher-delegated/payment.d.ts

@@ -0,0 +1,23 @@
+export declare const paymentMode = "publisher_delegated";
+export declare const paymentModeLabel = "Gateway delegated by publisher";
+export declare const paymentModeDescription = "Gateway executes checkout with publisher-scoped delegated credentials and delegated signing.";
+export declare const paymentSessionModel: {
+    uses_gateway_payment_session: boolean;
+    tenant_owns_payment_page: boolean;
+    tenant_owns_payment_session_endpoints: boolean;
+    tenant_calls_gateway_payment_session_api_directly: boolean;
+    tenant_session_reference: string;
+};
+export declare const requiredSettings: string[];
+export declare const paymentResponsibilities: string[];
+export declare const paymentEndpoints: any[];
+export declare const referenceEndpointGroup: {
+    key: string;
+    label: string;
+    when_to_use: string;
+    endpoints: any[];
+    notes: string[];
+};
+export declare function buildPaymentUrl(input: any, runtime?: {}): Promise<string>;
+export declare function registerRoutes(): Promise<void>;
+//# sourceMappingURL=payment.d.ts.map

package/dist/backend/modes/publisher-delegated/payment.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"payment.d.ts","sourceRoot":"","sources":["../../../../src/backend/modes/publisher-delegated/payment.ts"],"names":[],"mappings":"AAGA,eAAO,MAAM,WAAW,wBAAwB,CAAC;AACjD,eAAO,MAAM,gBAAgB,mCAAmC,CAAC;AACjE,eAAO,MAAM,sBAAsB,iGAC6D,CAAC;AACjG,eAAO,MAAM,mBAAmB;;;;;;CAM/B,CAAC;AACF,eAAO,MAAM,gBAAgB,UAI5B,CAAC;AACF,eAAO,MAAM,uBAAuB,UAInC,CAAC;AACF,eAAO,MAAM,gBAAgB,OAAK,CAAC;AAEnC,eAAO,MAAM,sBAAsB;;;;;;CAUlC,CAAC;AAEF,wBAAsB,eAAe,CAAC,KAAK,KAAA,EAAE,OAAO,KAAK,mBAExD;AAED,wBAAsB,cAAc,kBAAK"}