npm - @xenterprises/fastify-xstripe - Versions diffs - 1.0.0 - Mend

@xenterprises/fastify-xstripe 1.0.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (23) hide show

package/.dockerignore +62 -0
package/.env.example +116 -0
package/API.md +574 -0
package/CHANGELOG.md +96 -0
package/EXAMPLES.md +883 -0
package/LICENSE +15 -0
package/MIGRATION.md +374 -0
package/QUICK_START.md +179 -0
package/README.md +331 -0
package/SECURITY.md +465 -0
package/TESTING.md +357 -0
package/index.d.ts +309 -0
package/package.json +53 -0
package/server/app.js +557 -0
package/src/handlers/defaultHandlers.js +355 -0
package/src/handlers/exampleHandlers.js +278 -0
package/src/handlers/index.js +8 -0
package/src/index.js +10 -0
package/src/utils/helpers.js +220 -0
package/src/webhooks/webhooks.js +72 -0
package/src/xStripe.js +45 -0
package/test/handlers.test.js +959 -0
package/test/xStripe.integration.test.js +409 -0

package/README.md ADDED Viewed

@@ -0,0 +1,331 @@
+# xStripe
+Fastify v5 plugin for simplified, testable Stripe webhook handling. Focuses on subscription lifecycle management with clean, readable code.
+## Requirements
+- **Fastify v5.0.0+**
+- **Node.js v20+**
+## Features
+- **Simple webhook handling** - Clean event-based architecture
+- **Built-in handlers** - 20+ default handlers for common events
+- **Easy to test** - Handlers are pure functions
+- **Type-safe** - Full TypeScript support
+- **Readable** - Clear, self-documenting code
+- **Flexible** - Override any default handler
+- **Production-ready** - Signature verification, error handling, logging
+## Installation
+```bash
+npm install @xenterprises/fastify-xstripe fastify@5
+```
+## Quick Start
+```javascript
+import Fastify from 'fastify';
+import xStripe from '@xenterprises/fastify-xstripe';
+const fastify = Fastify({ logger: true });
+await fastify.register(xStripe, {
+  apiKey: process.env.STRIPE_API_KEY,
+  webhookSecret: process.env.STRIPE_WEBHOOK_SECRET,
+  webhookPath: '/stripe/webhook', // Optional, defaults to /stripe/webhook
+});
+await fastify.listen({ port: 3000 });
+```
+## Custom Handlers
+Override default handlers with your business logic:
+```javascript
+await fastify.register(xStripe, {
+  apiKey: process.env.STRIPE_API_KEY,
+  webhookSecret: process.env.STRIPE_WEBHOOK_SECRET,
+  handlers: {
+    // Handle new subscription
+    'customer.subscription.created': async (event, fastify, stripe) => {
+      const subscription = event.data.object;
+      // Update your database
+      await fastify.prisma.user.update({
+        where: { stripeCustomerId: subscription.customer },
+        data: {
+          subscriptionId: subscription.id,
+          subscriptionStatus: subscription.status,
+          planId: subscription.items.data[0]?.price.id,
+        },
+      });
+      // Send welcome email
+      await fastify.email.send(
+        subscription.customer.email,
+        'Welcome to Premium!',
+        '<h1>Thanks for subscribing!</h1>'
+      );
+    },
+    // Handle subscription cancellation
+    'customer.subscription.deleted': async (event, fastify, stripe) => {
+      const subscription = event.data.object;
+      // Revoke access
+      await fastify.prisma.user.update({
+        where: { stripeSubscriptionId: subscription.id },
+        data: {
+          subscriptionStatus: 'canceled',
+          hasAccess: false,
+        },
+      });
+    },
+    // Handle failed payment
+    'invoice.payment_failed': async (event, fastify, stripe) => {
+      const invoice = event.data.object;
+      // Send payment failure email
+      const customer = await stripe.customers.retrieve(invoice.customer);
+      await fastify.email.send(
+        customer.email,
+        'Payment Failed',
+        '<p>Please update your payment method.</p>'
+      );
+    },
+  },
+});
+```
+## Handler Function Signature
+All handlers receive three parameters:
+```javascript
+async function handler(event, fastify, stripe) {
+  // event - The Stripe webhook event object
+  // fastify - The Fastify instance (access to decorators)
+  // stripe - The Stripe client instance
+}
+```
+## Supported Events
+### Subscription Events
+- `customer.subscription.created` - New subscription
+- `customer.subscription.updated` - Subscription changed
+- `customer.subscription.deleted` - Subscription canceled
+- `customer.subscription.trial_will_end` - Trial ending in 3 days
+- `customer.subscription.paused` - Subscription paused
+- `customer.subscription.resumed` - Subscription resumed
+### Invoice Events
+- `invoice.created` - Invoice created
+- `invoice.finalized` - Invoice ready for payment
+- `invoice.paid` - Payment succeeded
+- `invoice.payment_failed` - Payment failed
+- `invoice.upcoming` - Upcoming charge notification
+### Payment Events
+- `payment_intent.succeeded` - Payment successful
+- `payment_intent.payment_failed` - Payment failed
+### Customer Events
+- `customer.created` - New customer
+- `customer.updated` - Customer details changed
+- `customer.deleted` - Customer deleted
+### Payment Method Events
+- `payment_method.attached` - Payment method added
+- `payment_method.detached` - Payment method removed
+### Checkout Events
+- `checkout.session.completed` - Checkout completed
+- `checkout.session.expired` - Checkout session expired
+## Testing Webhooks Locally
+### 1. Use Stripe CLI
+```bash
+# Install Stripe CLI
+brew install stripe/stripe-cli/stripe
+# Login to Stripe
+stripe login
+# Forward webhooks to your local server
+stripe listen --forward-to localhost:3000/stripe/webhook
+# Trigger test events
+stripe trigger customer.subscription.created
+stripe trigger invoice.payment_failed
+```
+### 2. Test Handlers Directly
+Since handlers are pure functions, they're easy to test:
+```javascript
+import { test } from 'node:test';
+import assert from 'node:assert';
+test('subscription.created handler', async () => {
+  const mockEvent = {
+    type: 'customer.subscription.created',
+    data: {
+      object: {
+        id: 'sub_123',
+        customer: 'cus_123',
+        status: 'active',
+      },
+    },
+  };
+  const mockFastify = {
+    log: { info: () => {} },
+    prisma: {
+      user: {
+        update: async (data) => {
+          assert.equal(data.where.stripeCustomerId, 'cus_123');
+          return {};
+        },
+      },
+    },
+  };
+  const mockStripe = {};
+  await handlers['customer.subscription.created'](
+    mockEvent,
+    mockFastify,
+    mockStripe
+  );
+});
+```
+## Common Patterns
+### Update Database on Subscription Change
+```javascript
+'customer.subscription.updated': async (event, fastify, stripe) => {
+  const subscription = event.data.object;
+  const previous = event.data.previous_attributes || {};
+  // Check what changed
+  if ('status' in previous) {
+    await fastify.prisma.user.update({
+      where: { stripeSubscriptionId: subscription.id },
+      data: { subscriptionStatus: subscription.status },
+    });
+    // Handle specific status changes
+    if (subscription.status === 'past_due') {
+      // Send payment reminder
+    }
+  }
+}
+```
+### Send Notification Emails
+```javascript
+'customer.subscription.trial_will_end': async (event, fastify, stripe) => {
+  const subscription = event.data.object;
+  const customer = await stripe.customers.retrieve(subscription.customer);
+  await fastify.email.send(
+    customer.email,
+    'Your trial ends soon!',
+    '<p>Convert to a paid plan to keep access.</p>'
+  );
+}
+```
+### Track Failed Payments
+```javascript
+'invoice.payment_failed': async (event, fastify, stripe) => {
+  const invoice = event.data.object;
+  await fastify.prisma.user.update({
+    where: { stripeSubscriptionId: invoice.subscription },
+    data: {
+      failedPaymentCount: { increment: 1 },
+      lastFailedPayment: new Date(),
+    },
+  });
+  // After 3 failed payments, suspend account
+  const user = await fastify.prisma.user.findUnique({
+    where: { stripeSubscriptionId: invoice.subscription },
+  });
+  if (user.failedPaymentCount >= 3) {
+    await fastify.prisma.user.update({
+      where: { id: user.id },
+      data: { accountSuspended: true },
+    });
+  }
+}
+```
+## Configuration Options
+| Option | Type | Required | Default | Description |
+|--------|------|----------|---------|-------------|
+| `apiKey` | string | Yes | - | Stripe API key |
+| `webhookSecret` | string | No | - | Stripe webhook signing secret |
+| `webhookPath` | string | No | `/stripe/webhook` | Webhook endpoint path |
+| `handlers` | object | No | `{}` | Custom event handlers |
+| `apiVersion` | string | No | `2024-11-20.acacia` | Stripe API version |
+## Security
+- **Signature Verification**: All webhooks are verified using Stripe's signature
+- **Raw Body Required**: Plugin automatically handles raw body parsing
+- **Error Isolation**: Handler errors don't prevent webhook acknowledgment
+- **Logging**: All events and errors are logged
+## Best Practices
+1. **Always acknowledge webhooks quickly** - Do heavy processing async
+2. **Make handlers idempotent** - Stripe may send events multiple times
+3. **Log everything** - Use structured logging for debugging
+4. **Test with Stripe CLI** - Test all event types before production
+5. **Monitor failed handlers** - Set up alerts for handler errors
+## Environment Variables
+```bash
+STRIPE_API_KEY=sk_test_...
+STRIPE_WEBHOOK_SECRET=whsec_...
+```
+## Integration with Other xPlugins
+Works seamlessly with other x-series plugins:
+```javascript
+await fastify.register(xStripe, { /* ... */ });
+await fastify.register(xTwilio, { /* ... */ });  // Send SMS notifications
+await fastify.register(xConfig, { /* ... */ });  // Email notifications
+// In your handlers:
+'invoice.payment_failed': async (event, fastify, stripe) => {
+  // Send email via xConfig/SendGrid
+  await fastify.email.send(/* ... */);
+  // Send SMS via xTwilio
+  await fastify.sms.send(/* ... */);
+}
+```
+## License
+ISC