flintn-checkout 0.0.1

package/README.md

@@ -0,0 +1,193 @@
+# flintn-checkout
+
+FlintN Payment SDK — Iframe-based payment widget with postMessage communication.
+
+## Installation
+```bash
+npm install flintn-checkout
+```
+
+## Quick Start
+
+### React
+```tsx
+import { useFlintNPayment } from 'flintn-checkout/react';
+
+function Checkout() {
+  const { containerRef, isReady, paymentResult, error } = useFlintNPayment({
+    config: {
+      clientToken: 'your_client_token',
+    },
+    onPayment: (result) => {
+      if (result.status === 'PAYMENT_SUCCESS') {
+        console.log('Payment succeeded:', result.data);
+      } else {
+        console.log('Payment failed:', result.error);
+      }
+    },
+    onExpressPayment: (result) => {
+      console.log('Express payment:', result);
+    },
+  });
+
+  return (
+    <div style={{ display: 'flex', justifyContent: 'center' }}>
+      <div ref={containerRef} style={{ width: '100%', maxWidth: '440px', height: '600px' }} />
+    </div>
+  );
+}
+```
+
+### Vanilla JavaScript
+```javascript
+import { FlintNPayment } from 'flintn-checkout';
+
+const payment = new FlintNPayment({
+  config: {
+    clientToken: 'your_client_token',
+    maxWidth: '440px',
+    isCardHolderRequired: true,
+    successRedirectUrl: 'https://example.com/success',
+  },
+  onPayment: (result) => {
+    if (result.status === 'PAYMENT_SUCCESS') {
+      console.log('Payment succeeded:', result.data);
+    } else {
+      console.log('Payment failed:', result.error);
+    }
+  },
+  onExpressPayment: (result) => {
+    console.log('Express payment:', result);
+  },
+  onReady: () => {
+    console.log('Widget ready');
+  },
+  debug: true,
+});
+
+payment.mount('#payment-container');
+
+// Cleanup when done
+payment.unmount();
+```
+
+### HTML
+```html
+<!DOCTYPE html>
+<html>
+<head>
+  <title>FlintN Checkout</title>
+</head>
+<body>
+  <div id="payment-container" style="max-width: 440px; height: 600px; margin: 0 auto;"></div>
+
+  <script type="module">
+    import { FlintNPayment } from 'flintn-checkout';
+
+    const payment = new FlintNPayment({
+      config: {
+        clientToken: 'your_client_token',
+      },
+      onPayment: (result) => {
+        console.log('Payment result:', result);
+      },
+    });
+
+    payment.mount('#payment-container');
+  </script>
+</body>
+</html>
+```
+
+## Configuration
+
+| Option | Type | Required | Default | Description |
+|--------|------|----------|---------|-------------|
+| `clientToken` | `string` | ✅ | — | Client token from your backend |
+| `maxWidth` | `string` | ❌ | `'440px'` | Maximum width of widget |
+| `isCardHolderRequired` | `boolean` | ❌ | `true` | Show cardholder name field |
+| `successRedirectUrl` | `string` | ❌ | — | Redirect URL after successful payment |
+
+## Callbacks
+
+| Callback | Description |
+|----------|-------------|
+| `onPayment` | Fired when card payment completes (success or error) |
+| `onExpressPayment` | Fired when express payment completes (Apple Pay, Google Pay, PayPal) |
+| `onReady` | Fired when widget is loaded and ready |
+| `onError` | Fired on SDK initialization error |
+
+## React Hook Return Values
+
+| Value | Type | Description |
+|-------|------|-------------|
+| `containerRef` | `RefObject<HTMLDivElement>` | Ref to attach to container element |
+| `isReady` | `boolean` | Widget is loaded and ready |
+| `paymentResult` | `PaymentResult \| null` | Result after payment attempt |
+| `error` | `PaymentError \| null` | SDK error if any |
+
+## Types
+
+### PaymentResult
+```typescript
+interface PaymentResult {
+  status: 'PAYMENT_SUCCESS' | 'PAYMENT_ERROR' | 'PAYMENT_CANCELLED';
+  data?: string;  // Payment ID on success
+  error?: {
+    code: string;
+    message: string;
+  };
+}
+```
+
+### PaymentError
+```typescript
+interface PaymentError {
+  code: string;
+  message: string;
+}
+```
+
+## Supported Payment Methods
+
+- 💳 Credit/Debit Cards (Visa, Mastercard, Amex, Discover)
+- 🍎 Apple Pay
+- 🔵 Google Pay
+- 🟡 PayPal
+
+## Debug Mode
+
+Enable debug logs in console:
+```typescript
+// React
+useFlintNPayment({
+  config: { clientToken: '...' },
+  debug: true,
+});
+
+// Vanilla JS
+new FlintNPayment({
+  config: { clientToken: '...' },
+  debug: true,
+});
+```
+
+## Test Cards
+
+| Card Number | Result |
+|-------------|--------|
+| `4111 1111 1111 1111` | Success |
+| `4000 0000 0000 0002` | Declined |
+
+Use any future expiry date and any 3-digit CVV.
+
+## Browser Support
+
+- Chrome (latest)
+- Firefox (latest)
+- Safari (latest)
+- Edge (latest)
+
+## License
+
+MIT

package/dist/index.d.mts

@@ -0,0 +1,66 @@
+declare const EventType: {
+    readonly WIDGET_READY: "WIDGET_READY";
+    readonly WIDGET_CONFIG: "WIDGET_CONFIG";
+    readonly PAYMENT: "PAYMENT";
+    readonly EXPRESS_PAYMENT: "EXPRESS_PAYMENT";
+    readonly PAYMENT_SUCCESS: "PAYMENT_SUCCESS";
+    readonly PAYMENT_ERROR: "PAYMENT_ERROR";
+    readonly PAYMENT_CANCELLED: "PAYMENT_CANCELLED";
+    readonly REDIRECT: "REDIRECT";
+};
+type TEventType = (typeof EventType)[keyof typeof EventType];
+interface FlintNConfig {
+    clientToken: string;
+    maxWidth?: string;
+    isCardHolderRequired?: boolean;
+    successRedirectUrl?: string;
+}
+interface PaymentResult {
+    status: 'PAYMENT_SUCCESS' | 'PAYMENT_ERROR' | 'PAYMENT_CANCELLED';
+    data?: string;
+    error?: {
+        code: string;
+        message: string;
+    };
+}
+interface PaymentError {
+    code: string;
+    message: string;
+}
+interface FlintNPaymentOptions {
+    origin?: string;
+    config: FlintNConfig;
+    onPayment?: (result: PaymentResult) => void;
+    onExpressPayment?: (result: PaymentResult) => void;
+    onReady?: () => void;
+    onError?: (error: PaymentError) => void;
+    debug?: boolean;
+}
+
+declare class FlintNPayment {
+    private options;
+    private origin;
+    private iframe;
+    private container;
+    private isReady;
+    private messageHandler;
+    constructor(options: FlintNPaymentOptions);
+    mount(selector: string | HTMLElement): void;
+    unmount(): void;
+    getIsReady(): boolean;
+    private handleMessage;
+    private isValidRedirectUrl;
+    private handlePaymentResult;
+    private sendConfig;
+    private log;
+}
+
+declare const parseOrigin: (origin: string) => string;
+declare const buildIframeSrc: (origin: string) => string;
+declare const createIframeElement: (src: string) => HTMLIFrameElement;
+declare const validateConfig: (config: {
+    clientToken?: string;
+}) => void;
+declare const sanitizeToken: (token: string) => string;
+
+export { EventType, type FlintNConfig, FlintNPayment, type FlintNPaymentOptions, type PaymentError, type PaymentResult, type TEventType, buildIframeSrc, createIframeElement, parseOrigin, sanitizeToken, validateConfig };

package/dist/index.d.ts

@@ -0,0 +1,66 @@
+declare const EventType: {
+    readonly WIDGET_READY: "WIDGET_READY";
+    readonly WIDGET_CONFIG: "WIDGET_CONFIG";
+    readonly PAYMENT: "PAYMENT";
+    readonly EXPRESS_PAYMENT: "EXPRESS_PAYMENT";
+    readonly PAYMENT_SUCCESS: "PAYMENT_SUCCESS";
+    readonly PAYMENT_ERROR: "PAYMENT_ERROR";
+    readonly PAYMENT_CANCELLED: "PAYMENT_CANCELLED";
+    readonly REDIRECT: "REDIRECT";
+};
+type TEventType = (typeof EventType)[keyof typeof EventType];
+interface FlintNConfig {
+    clientToken: string;
+    maxWidth?: string;
+    isCardHolderRequired?: boolean;
+    successRedirectUrl?: string;
+}
+interface PaymentResult {
+    status: 'PAYMENT_SUCCESS' | 'PAYMENT_ERROR' | 'PAYMENT_CANCELLED';
+    data?: string;
+    error?: {
+        code: string;
+        message: string;
+    };
+}
+interface PaymentError {
+    code: string;
+    message: string;
+}
+interface FlintNPaymentOptions {
+    origin?: string;
+    config: FlintNConfig;
+    onPayment?: (result: PaymentResult) => void;
+    onExpressPayment?: (result: PaymentResult) => void;
+    onReady?: () => void;
+    onError?: (error: PaymentError) => void;
+    debug?: boolean;
+}
+
+declare class FlintNPayment {
+    private options;
+    private origin;
+    private iframe;
+    private container;
+    private isReady;
+    private messageHandler;
+    constructor(options: FlintNPaymentOptions);
+    mount(selector: string | HTMLElement): void;
+    unmount(): void;
+    getIsReady(): boolean;
+    private handleMessage;
+    private isValidRedirectUrl;
+    private handlePaymentResult;
+    private sendConfig;
+    private log;
+}
+
+declare const parseOrigin: (origin: string) => string;
+declare const buildIframeSrc: (origin: string) => string;
+declare const createIframeElement: (src: string) => HTMLIFrameElement;
+declare const validateConfig: (config: {
+    clientToken?: string;
+}) => void;
+declare const sanitizeToken: (token: string) => string;
+
+export { EventType, type FlintNConfig, FlintNPayment, type FlintNPaymentOptions, type PaymentError, type PaymentResult, type TEventType, buildIframeSrc, createIframeElement, parseOrigin, sanitizeToken, validateConfig };

package/dist/index.js

@@ -0,0 +1,197 @@
+"use strict";
+var __defProp = Object.defineProperty;
+var __getOwnPropDesc = Object.getOwnPropertyDescriptor;
+var __getOwnPropNames = Object.getOwnPropertyNames;
+var __hasOwnProp = Object.prototype.hasOwnProperty;
+var __export = (target, all) => {
+  for (var name in all)
+    __defProp(target, name, { get: all[name], enumerable: true });
+};
+var __copyProps = (to, from, except, desc) => {
+  if (from && typeof from === "object" || typeof from === "function") {
+    for (let key of __getOwnPropNames(from))
+      if (!__hasOwnProp.call(to, key) && key !== except)
+        __defProp(to, key, { get: () => from[key], enumerable: !(desc = __getOwnPropDesc(from, key)) || desc.enumerable });
+  }
+  return to;
+};
+var __toCommonJS = (mod) => __copyProps(__defProp({}, "__esModule", { value: true }), mod);
+
+// src/index.ts
+var index_exports = {};
+__export(index_exports, {
+  EventType: () => EventType,
+  FlintNPayment: () => FlintNPayment,
+  buildIframeSrc: () => buildIframeSrc,
+  createIframeElement: () => createIframeElement,
+  parseOrigin: () => parseOrigin,
+  sanitizeToken: () => sanitizeToken,
+  validateConfig: () => validateConfig
+});
+module.exports = __toCommonJS(index_exports);
+
+// src/types.ts
+var EventType = {
+  WIDGET_READY: "WIDGET_READY",
+  WIDGET_CONFIG: "WIDGET_CONFIG",
+  PAYMENT: "PAYMENT",
+  EXPRESS_PAYMENT: "EXPRESS_PAYMENT",
+  PAYMENT_SUCCESS: "PAYMENT_SUCCESS",
+  PAYMENT_ERROR: "PAYMENT_ERROR",
+  PAYMENT_CANCELLED: "PAYMENT_CANCELLED",
+  REDIRECT: "REDIRECT"
+};
+
+// src/utils.ts
+var parseOrigin = (origin) => {
+  try {
+    return new URL(origin).origin;
+  } catch {
+    try {
+      return new URL(`https://${origin}`).origin;
+    } catch {
+      throw new Error(`[FlintN SDK] Invalid origin: ${origin}`);
+    }
+  }
+};
+var buildIframeSrc = (origin) => {
+  return parseOrigin(origin) + "/";
+};
+var createIframeElement = (src) => {
+  const iframe = document.createElement("iframe");
+  iframe.src = src;
+  iframe.title = "FlintN Checkout";
+  iframe.style.cssText = "width: 100%; height: 100%; border: none;";
+  iframe.setAttribute("sandbox", "allow-scripts allow-forms allow-popups allow-same-origin");
+  iframe.setAttribute("allow", "payment; clipboard-write");
+  return iframe;
+};
+var validateConfig = (config) => {
+  if (!config.clientToken) {
+    throw new Error("[FlintN SDK] clientToken is required");
+  }
+};
+var sanitizeToken = (token) => {
+  if (token.length <= 20) return token;
+  return token.substring(0, 20) + "...";
+};
+
+// src/flintn-payment.ts
+var DEFAULT_ORIGIN = "https://pay.flintn.com/iframe";
+var FlintNPayment = class {
+  constructor(options) {
+    this.iframe = null;
+    this.container = null;
+    this.isReady = false;
+    this.messageHandler = null;
+    validateConfig(options.config);
+    this.options = options;
+    this.origin = parseOrigin(options.origin || DEFAULT_ORIGIN);
+    this.log("Initialized with origin:", this.origin);
+  }
+  mount(selector) {
+    this.container = typeof selector === "string" ? document.querySelector(selector) : selector;
+    if (!this.container) {
+      const selectorDescription = typeof selector === "string" ? selector : `<${selector.tagName.toLowerCase()}${selector.id ? ` id="${selector.id}"` : ""}${selector.className ? ` class="${selector.className}"` : ""}>`;
+      throw new Error(`[FlintN SDK] Container not found: ${selectorDescription}`);
+    }
+    this.iframe = createIframeElement(buildIframeSrc(this.origin));
+    this.container.appendChild(this.iframe);
+    this.messageHandler = this.handleMessage.bind(this);
+    window.addEventListener("message", this.messageHandler);
+    this.log("Mounted to container");
+  }
+  unmount() {
+    if (this.messageHandler) {
+      window.removeEventListener("message", this.messageHandler);
+      this.messageHandler = null;
+    }
+    if (this.iframe && this.container && this.container.contains(this.iframe)) {
+      this.container.removeChild(this.iframe);
+    }
+    this.iframe = null;
+    this.isReady = false;
+    this.log("Unmounted");
+  }
+  getIsReady() {
+    return this.isReady;
+  }
+  handleMessage(event) {
+    if (event.origin !== this.origin) return;
+    const { type, payload } = event.data || {};
+    if (!type) return;
+    this.log("Received message:", type, payload ?? "");
+    switch (type) {
+      case EventType.WIDGET_READY:
+        this.isReady = true;
+        this.sendConfig();
+        this.options.onReady?.();
+        break;
+      case EventType.PAYMENT:
+        this.handlePaymentResult(payload, this.options.onPayment);
+        break;
+      case EventType.EXPRESS_PAYMENT:
+        this.handlePaymentResult(payload, this.options.onExpressPayment);
+        break;
+      case EventType.REDIRECT:
+        if (payload?.url && this.isValidRedirectUrl(payload.url)) {
+          window.location.href = payload.url;
+        }
+        break;
+    }
+  }
+  isValidRedirectUrl(url) {
+    try {
+      const parsed = new URL(url);
+      if (parsed.protocol !== "http:" && parsed.protocol !== "https:") {
+        this.log("Invalid redirect URL protocol:", parsed.protocol);
+        return false;
+      }
+      if (parsed.origin === window.location.origin) {
+        return true;
+      }
+      const configRedirectUrl = this.options.config.successRedirectUrl;
+      if (configRedirectUrl) {
+        const configParsed = new URL(configRedirectUrl);
+        if (parsed.origin === configParsed.origin) {
+          return true;
+        }
+      }
+      this.log("Redirect URL not in allowed origins:", url);
+      return false;
+    } catch {
+      this.log("Invalid redirect URL:", url);
+      return false;
+    }
+  }
+  handlePaymentResult(payload, callback) {
+    if (!callback) return;
+    callback(payload);
+  }
+  sendConfig() {
+    if (!this.iframe?.contentWindow) return;
+    this.iframe.contentWindow.postMessage(
+      {
+        type: EventType.WIDGET_CONFIG,
+        payload: this.options.config
+      },
+      this.origin
+    );
+    this.log("Sent config:", sanitizeToken(this.options.config.clientToken));
+  }
+  log(...args) {
+    if (this.options.debug) {
+      console.log("[FlintN SDK]", ...args);
+    }
+  }
+};
+// Annotate the CommonJS export names for ESM import in node:
+0 && (module.exports = {
+  EventType,
+  FlintNPayment,
+  buildIframeSrc,
+  createIframeElement,
+  parseOrigin,
+  sanitizeToken,
+  validateConfig
+});

package/dist/index.mjs

@@ -0,0 +1,164 @@
+// src/types.ts
+var EventType = {
+  WIDGET_READY: "WIDGET_READY",
+  WIDGET_CONFIG: "WIDGET_CONFIG",
+  PAYMENT: "PAYMENT",
+  EXPRESS_PAYMENT: "EXPRESS_PAYMENT",
+  PAYMENT_SUCCESS: "PAYMENT_SUCCESS",
+  PAYMENT_ERROR: "PAYMENT_ERROR",
+  PAYMENT_CANCELLED: "PAYMENT_CANCELLED",
+  REDIRECT: "REDIRECT"
+};
+
+// src/utils.ts
+var parseOrigin = (origin) => {
+  try {
+    return new URL(origin).origin;
+  } catch {
+    try {
+      return new URL(`https://${origin}`).origin;
+    } catch {
+      throw new Error(`[FlintN SDK] Invalid origin: ${origin}`);
+    }
+  }
+};
+var buildIframeSrc = (origin) => {
+  return parseOrigin(origin) + "/";
+};
+var createIframeElement = (src) => {
+  const iframe = document.createElement("iframe");
+  iframe.src = src;
+  iframe.title = "FlintN Checkout";
+  iframe.style.cssText = "width: 100%; height: 100%; border: none;";
+  iframe.setAttribute("sandbox", "allow-scripts allow-forms allow-popups allow-same-origin");
+  iframe.setAttribute("allow", "payment; clipboard-write");
+  return iframe;
+};
+var validateConfig = (config) => {
+  if (!config.clientToken) {
+    throw new Error("[FlintN SDK] clientToken is required");
+  }
+};
+var sanitizeToken = (token) => {
+  if (token.length <= 20) return token;
+  return token.substring(0, 20) + "...";
+};
+
+// src/flintn-payment.ts
+var DEFAULT_ORIGIN = "https://pay.flintn.com/iframe";
+var FlintNPayment = class {
+  constructor(options) {
+    this.iframe = null;
+    this.container = null;
+    this.isReady = false;
+    this.messageHandler = null;
+    validateConfig(options.config);
+    this.options = options;
+    this.origin = parseOrigin(options.origin || DEFAULT_ORIGIN);
+    this.log("Initialized with origin:", this.origin);
+  }
+  mount(selector) {
+    this.container = typeof selector === "string" ? document.querySelector(selector) : selector;
+    if (!this.container) {
+      const selectorDescription = typeof selector === "string" ? selector : `<${selector.tagName.toLowerCase()}${selector.id ? ` id="${selector.id}"` : ""}${selector.className ? ` class="${selector.className}"` : ""}>`;
+      throw new Error(`[FlintN SDK] Container not found: ${selectorDescription}`);
+    }
+    this.iframe = createIframeElement(buildIframeSrc(this.origin));
+    this.container.appendChild(this.iframe);
+    this.messageHandler = this.handleMessage.bind(this);
+    window.addEventListener("message", this.messageHandler);
+    this.log("Mounted to container");
+  }
+  unmount() {
+    if (this.messageHandler) {
+      window.removeEventListener("message", this.messageHandler);
+      this.messageHandler = null;
+    }
+    if (this.iframe && this.container && this.container.contains(this.iframe)) {
+      this.container.removeChild(this.iframe);
+    }
+    this.iframe = null;
+    this.isReady = false;
+    this.log("Unmounted");
+  }
+  getIsReady() {
+    return this.isReady;
+  }
+  handleMessage(event) {
+    if (event.origin !== this.origin) return;
+    const { type, payload } = event.data || {};
+    if (!type) return;
+    this.log("Received message:", type, payload ?? "");
+    switch (type) {
+      case EventType.WIDGET_READY:
+        this.isReady = true;
+        this.sendConfig();
+        this.options.onReady?.();
+        break;
+      case EventType.PAYMENT:
+        this.handlePaymentResult(payload, this.options.onPayment);
+        break;
+      case EventType.EXPRESS_PAYMENT:
+        this.handlePaymentResult(payload, this.options.onExpressPayment);
+        break;
+      case EventType.REDIRECT:
+        if (payload?.url && this.isValidRedirectUrl(payload.url)) {
+          window.location.href = payload.url;
+        }
+        break;
+    }
+  }
+  isValidRedirectUrl(url) {
+    try {
+      const parsed = new URL(url);
+      if (parsed.protocol !== "http:" && parsed.protocol !== "https:") {
+        this.log("Invalid redirect URL protocol:", parsed.protocol);
+        return false;
+      }
+      if (parsed.origin === window.location.origin) {
+        return true;
+      }
+      const configRedirectUrl = this.options.config.successRedirectUrl;
+      if (configRedirectUrl) {
+        const configParsed = new URL(configRedirectUrl);
+        if (parsed.origin === configParsed.origin) {
+          return true;
+        }
+      }
+      this.log("Redirect URL not in allowed origins:", url);
+      return false;
+    } catch {
+      this.log("Invalid redirect URL:", url);
+      return false;
+    }
+  }
+  handlePaymentResult(payload, callback) {
+    if (!callback) return;
+    callback(payload);
+  }
+  sendConfig() {
+    if (!this.iframe?.contentWindow) return;
+    this.iframe.contentWindow.postMessage(
+      {
+        type: EventType.WIDGET_CONFIG,
+        payload: this.options.config
+      },
+      this.origin
+    );
+    this.log("Sent config:", sanitizeToken(this.options.config.clientToken));
+  }
+  log(...args) {
+    if (this.options.debug) {
+      console.log("[FlintN SDK]", ...args);
+    }
+  }
+};
+export {
+  EventType,
+  FlintNPayment,
+  buildIframeSrc,
+  createIframeElement,
+  parseOrigin,
+  sanitizeToken,
+  validateConfig
+};

package/dist/react.d.mts

@@ -0,0 +1,60 @@
+declare const EventType: {
+    readonly WIDGET_READY: "WIDGET_READY";
+    readonly WIDGET_CONFIG: "WIDGET_CONFIG";
+    readonly PAYMENT: "PAYMENT";
+    readonly EXPRESS_PAYMENT: "EXPRESS_PAYMENT";
+    readonly PAYMENT_SUCCESS: "PAYMENT_SUCCESS";
+    readonly PAYMENT_ERROR: "PAYMENT_ERROR";
+    readonly PAYMENT_CANCELLED: "PAYMENT_CANCELLED";
+    readonly REDIRECT: "REDIRECT";
+};
+type TEventType = (typeof EventType)[keyof typeof EventType];
+interface FlintNConfig {
+    clientToken: string;
+    maxWidth?: string;
+    isCardHolderRequired?: boolean;
+    successRedirectUrl?: string;
+}
+interface PaymentResult {
+    status: 'PAYMENT_SUCCESS' | 'PAYMENT_ERROR' | 'PAYMENT_CANCELLED';
+    data?: string;
+    error?: {
+        code: string;
+        message: string;
+    };
+}
+interface PaymentError {
+    code: string;
+    message: string;
+}
+interface FlintNPaymentOptions {
+    origin?: string;
+    config: FlintNConfig;
+    onPayment?: (result: PaymentResult) => void;
+    onExpressPayment?: (result: PaymentResult) => void;
+    onReady?: () => void;
+    onError?: (error: PaymentError) => void;
+    debug?: boolean;
+}
+
+/**
+ * Options for the useFlintNPayment hook.
+ *
+ * Extends FlintNPaymentOptions but omits `onReady` and `onError` callbacks
+ * as they are managed internally by the hook. Use the returned `isReady`
+ * and `error` values instead.
+ *
+ * All other FlintNPaymentOptions fields (config, onPayment, onExpressPayment, debug)
+ * can be passed directly.
+ */
+interface UseFlintNPaymentOptions extends Omit<FlintNPaymentOptions, 'onReady' | 'onError'> {
+}
+interface UseFlintNPaymentReturn {
+    containerRef: React.RefObject<HTMLDivElement | null>;
+    isReady: boolean;
+    paymentResult: PaymentResult | null;
+    error: PaymentError | null;
+}
+declare function useFlintNPayment(options: UseFlintNPaymentOptions): UseFlintNPaymentReturn;
+
+export { EventType, type FlintNConfig, type FlintNPaymentOptions, type PaymentError, type PaymentResult, type TEventType, type UseFlintNPaymentOptions, type UseFlintNPaymentReturn, useFlintNPayment };

package/dist/react.d.ts

@@ -0,0 +1,60 @@
+declare const EventType: {
+    readonly WIDGET_READY: "WIDGET_READY";
+    readonly WIDGET_CONFIG: "WIDGET_CONFIG";
+    readonly PAYMENT: "PAYMENT";
+    readonly EXPRESS_PAYMENT: "EXPRESS_PAYMENT";
+    readonly PAYMENT_SUCCESS: "PAYMENT_SUCCESS";
+    readonly PAYMENT_ERROR: "PAYMENT_ERROR";
+    readonly PAYMENT_CANCELLED: "PAYMENT_CANCELLED";
+    readonly REDIRECT: "REDIRECT";
+};
+type TEventType = (typeof EventType)[keyof typeof EventType];
+interface FlintNConfig {
+    clientToken: string;
+    maxWidth?: string;
+    isCardHolderRequired?: boolean;
+    successRedirectUrl?: string;
+}
+interface PaymentResult {
+    status: 'PAYMENT_SUCCESS' | 'PAYMENT_ERROR' | 'PAYMENT_CANCELLED';
+    data?: string;
+    error?: {
+        code: string;
+        message: string;
+    };
+}
+interface PaymentError {
+    code: string;
+    message: string;
+}
+interface FlintNPaymentOptions {
+    origin?: string;
+    config: FlintNConfig;
+    onPayment?: (result: PaymentResult) => void;
+    onExpressPayment?: (result: PaymentResult) => void;
+    onReady?: () => void;
+    onError?: (error: PaymentError) => void;
+    debug?: boolean;
+}
+
+/**
+ * Options for the useFlintNPayment hook.
+ *
+ * Extends FlintNPaymentOptions but omits `onReady` and `onError` callbacks
+ * as they are managed internally by the hook. Use the returned `isReady`
+ * and `error` values instead.
+ *
+ * All other FlintNPaymentOptions fields (config, onPayment, onExpressPayment, debug)
+ * can be passed directly.
+ */
+interface UseFlintNPaymentOptions extends Omit<FlintNPaymentOptions, 'onReady' | 'onError'> {
+}
+interface UseFlintNPaymentReturn {
+    containerRef: React.RefObject<HTMLDivElement | null>;
+    isReady: boolean;
+    paymentResult: PaymentResult | null;
+    error: PaymentError | null;
+}
+declare function useFlintNPayment(options: UseFlintNPaymentOptions): UseFlintNPaymentReturn;
+
+export { EventType, type FlintNConfig, type FlintNPaymentOptions, type PaymentError, type PaymentResult, type TEventType, type UseFlintNPaymentOptions, type UseFlintNPaymentReturn, useFlintNPayment };

package/dist/react.js

@@ -0,0 +1,251 @@
+"use strict";
+var __defProp = Object.defineProperty;
+var __getOwnPropDesc = Object.getOwnPropertyDescriptor;
+var __getOwnPropNames = Object.getOwnPropertyNames;
+var __hasOwnProp = Object.prototype.hasOwnProperty;
+var __export = (target, all) => {
+  for (var name in all)
+    __defProp(target, name, { get: all[name], enumerable: true });
+};
+var __copyProps = (to, from, except, desc) => {
+  if (from && typeof from === "object" || typeof from === "function") {
+    for (let key of __getOwnPropNames(from))
+      if (!__hasOwnProp.call(to, key) && key !== except)
+        __defProp(to, key, { get: () => from[key], enumerable: !(desc = __getOwnPropDesc(from, key)) || desc.enumerable });
+  }
+  return to;
+};
+var __toCommonJS = (mod) => __copyProps(__defProp({}, "__esModule", { value: true }), mod);
+
+// src/react/index.ts
+var react_exports = {};
+__export(react_exports, {
+  EventType: () => EventType,
+  useFlintNPayment: () => useFlintNPayment
+});
+module.exports = __toCommonJS(react_exports);
+
+// src/react/use-flintn-payment.ts
+var import_react = require("react");
+
+// src/types.ts
+var EventType = {
+  WIDGET_READY: "WIDGET_READY",
+  WIDGET_CONFIG: "WIDGET_CONFIG",
+  PAYMENT: "PAYMENT",
+  EXPRESS_PAYMENT: "EXPRESS_PAYMENT",
+  PAYMENT_SUCCESS: "PAYMENT_SUCCESS",
+  PAYMENT_ERROR: "PAYMENT_ERROR",
+  PAYMENT_CANCELLED: "PAYMENT_CANCELLED",
+  REDIRECT: "REDIRECT"
+};
+
+// src/utils.ts
+var parseOrigin = (origin) => {
+  try {
+    return new URL(origin).origin;
+  } catch {
+    try {
+      return new URL(`https://${origin}`).origin;
+    } catch {
+      throw new Error(`[FlintN SDK] Invalid origin: ${origin}`);
+    }
+  }
+};
+var buildIframeSrc = (origin) => {
+  return parseOrigin(origin) + "/";
+};
+var createIframeElement = (src) => {
+  const iframe = document.createElement("iframe");
+  iframe.src = src;
+  iframe.title = "FlintN Checkout";
+  iframe.style.cssText = "width: 100%; height: 100%; border: none;";
+  iframe.setAttribute("sandbox", "allow-scripts allow-forms allow-popups allow-same-origin");
+  iframe.setAttribute("allow", "payment; clipboard-write");
+  return iframe;
+};
+var validateConfig = (config) => {
+  if (!config.clientToken) {
+    throw new Error("[FlintN SDK] clientToken is required");
+  }
+};
+var sanitizeToken = (token) => {
+  if (token.length <= 20) return token;
+  return token.substring(0, 20) + "...";
+};
+
+// src/flintn-payment.ts
+var DEFAULT_ORIGIN = "https://pay.flintn.com/iframe";
+var FlintNPayment = class {
+  constructor(options) {
+    this.iframe = null;
+    this.container = null;
+    this.isReady = false;
+    this.messageHandler = null;
+    validateConfig(options.config);
+    this.options = options;
+    this.origin = parseOrigin(options.origin || DEFAULT_ORIGIN);
+    this.log("Initialized with origin:", this.origin);
+  }
+  mount(selector) {
+    this.container = typeof selector === "string" ? document.querySelector(selector) : selector;
+    if (!this.container) {
+      const selectorDescription = typeof selector === "string" ? selector : `<${selector.tagName.toLowerCase()}${selector.id ? ` id="${selector.id}"` : ""}${selector.className ? ` class="${selector.className}"` : ""}>`;
+      throw new Error(`[FlintN SDK] Container not found: ${selectorDescription}`);
+    }
+    this.iframe = createIframeElement(buildIframeSrc(this.origin));
+    this.container.appendChild(this.iframe);
+    this.messageHandler = this.handleMessage.bind(this);
+    window.addEventListener("message", this.messageHandler);
+    this.log("Mounted to container");
+  }
+  unmount() {
+    if (this.messageHandler) {
+      window.removeEventListener("message", this.messageHandler);
+      this.messageHandler = null;
+    }
+    if (this.iframe && this.container && this.container.contains(this.iframe)) {
+      this.container.removeChild(this.iframe);
+    }
+    this.iframe = null;
+    this.isReady = false;
+    this.log("Unmounted");
+  }
+  getIsReady() {
+    return this.isReady;
+  }
+  handleMessage(event) {
+    if (event.origin !== this.origin) return;
+    const { type, payload } = event.data || {};
+    if (!type) return;
+    this.log("Received message:", type, payload ?? "");
+    switch (type) {
+      case EventType.WIDGET_READY:
+        this.isReady = true;
+        this.sendConfig();
+        this.options.onReady?.();
+        break;
+      case EventType.PAYMENT:
+        this.handlePaymentResult(payload, this.options.onPayment);
+        break;
+      case EventType.EXPRESS_PAYMENT:
+        this.handlePaymentResult(payload, this.options.onExpressPayment);
+        break;
+      case EventType.REDIRECT:
+        if (payload?.url && this.isValidRedirectUrl(payload.url)) {
+          window.location.href = payload.url;
+        }
+        break;
+    }
+  }
+  isValidRedirectUrl(url) {
+    try {
+      const parsed = new URL(url);
+      if (parsed.protocol !== "http:" && parsed.protocol !== "https:") {
+        this.log("Invalid redirect URL protocol:", parsed.protocol);
+        return false;
+      }
+      if (parsed.origin === window.location.origin) {
+        return true;
+      }
+      const configRedirectUrl = this.options.config.successRedirectUrl;
+      if (configRedirectUrl) {
+        const configParsed = new URL(configRedirectUrl);
+        if (parsed.origin === configParsed.origin) {
+          return true;
+        }
+      }
+      this.log("Redirect URL not in allowed origins:", url);
+      return false;
+    } catch {
+      this.log("Invalid redirect URL:", url);
+      return false;
+    }
+  }
+  handlePaymentResult(payload, callback) {
+    if (!callback) return;
+    callback(payload);
+  }
+  sendConfig() {
+    if (!this.iframe?.contentWindow) return;
+    this.iframe.contentWindow.postMessage(
+      {
+        type: EventType.WIDGET_CONFIG,
+        payload: this.options.config
+      },
+      this.origin
+    );
+    this.log("Sent config:", sanitizeToken(this.options.config.clientToken));
+  }
+  log(...args) {
+    if (this.options.debug) {
+      console.log("[FlintN SDK]", ...args);
+    }
+  }
+};
+
+// src/react/use-flintn-payment.ts
+function useFlintNPayment(options) {
+  const containerRef = (0, import_react.useRef)(null);
+  const paymentRef = (0, import_react.useRef)(null);
+  const onPaymentRef = (0, import_react.useRef)(options.onPayment);
+  const onExpressPaymentRef = (0, import_react.useRef)(options.onExpressPayment);
+  const [isReady, setIsReady] = (0, import_react.useState)(false);
+  const [paymentResult, setPaymentResult] = (0, import_react.useState)(null);
+  const [error, setError] = (0, import_react.useState)(null);
+  (0, import_react.useEffect)(() => {
+    onPaymentRef.current = options.onPayment;
+  }, [options.onPayment]);
+  (0, import_react.useEffect)(() => {
+    onExpressPaymentRef.current = options.onExpressPayment;
+  }, [options.onExpressPayment]);
+  (0, import_react.useEffect)(() => {
+    if (!containerRef.current) return;
+    setIsReady(false);
+    setPaymentResult(null);
+    setError(null);
+    try {
+      paymentRef.current = new FlintNPayment({
+        ...options,
+        onReady: () => setIsReady(true),
+        onPayment: (result) => {
+          setPaymentResult(result);
+          onPaymentRef.current?.(result);
+        },
+        onExpressPayment: (result) => {
+          setPaymentResult(result);
+          onExpressPaymentRef.current?.(result);
+        },
+        onError: (err) => setError(err)
+      });
+      paymentRef.current.mount(containerRef.current);
+    } catch (err) {
+      setError({
+        code: "INIT_ERROR",
+        message: err instanceof Error ? err.message : "Failed to initialize SDK"
+      });
+    }
+    return () => {
+      paymentRef.current?.unmount();
+      paymentRef.current = null;
+    };
+  }, [
+    options.origin,
+    options.debug,
+    options.config.clientToken,
+    options.config.maxWidth,
+    options.config.isCardHolderRequired,
+    options.config.successRedirectUrl
+  ]);
+  return {
+    containerRef,
+    isReady,
+    paymentResult,
+    error
+  };
+}
+// Annotate the CommonJS export names for ESM import in node:
+0 && (module.exports = {
+  EventType,
+  useFlintNPayment
+});

package/dist/react.mjs

@@ -0,0 +1,223 @@
+// src/react/use-flintn-payment.ts
+import { useEffect, useRef, useState } from "react";
+
+// src/types.ts
+var EventType = {
+  WIDGET_READY: "WIDGET_READY",
+  WIDGET_CONFIG: "WIDGET_CONFIG",
+  PAYMENT: "PAYMENT",
+  EXPRESS_PAYMENT: "EXPRESS_PAYMENT",
+  PAYMENT_SUCCESS: "PAYMENT_SUCCESS",
+  PAYMENT_ERROR: "PAYMENT_ERROR",
+  PAYMENT_CANCELLED: "PAYMENT_CANCELLED",
+  REDIRECT: "REDIRECT"
+};
+
+// src/utils.ts
+var parseOrigin = (origin) => {
+  try {
+    return new URL(origin).origin;
+  } catch {
+    try {
+      return new URL(`https://${origin}`).origin;
+    } catch {
+      throw new Error(`[FlintN SDK] Invalid origin: ${origin}`);
+    }
+  }
+};
+var buildIframeSrc = (origin) => {
+  return parseOrigin(origin) + "/";
+};
+var createIframeElement = (src) => {
+  const iframe = document.createElement("iframe");
+  iframe.src = src;
+  iframe.title = "FlintN Checkout";
+  iframe.style.cssText = "width: 100%; height: 100%; border: none;";
+  iframe.setAttribute("sandbox", "allow-scripts allow-forms allow-popups allow-same-origin");
+  iframe.setAttribute("allow", "payment; clipboard-write");
+  return iframe;
+};
+var validateConfig = (config) => {
+  if (!config.clientToken) {
+    throw new Error("[FlintN SDK] clientToken is required");
+  }
+};
+var sanitizeToken = (token) => {
+  if (token.length <= 20) return token;
+  return token.substring(0, 20) + "...";
+};
+
+// src/flintn-payment.ts
+var DEFAULT_ORIGIN = "https://pay.flintn.com/iframe";
+var FlintNPayment = class {
+  constructor(options) {
+    this.iframe = null;
+    this.container = null;
+    this.isReady = false;
+    this.messageHandler = null;
+    validateConfig(options.config);
+    this.options = options;
+    this.origin = parseOrigin(options.origin || DEFAULT_ORIGIN);
+    this.log("Initialized with origin:", this.origin);
+  }
+  mount(selector) {
+    this.container = typeof selector === "string" ? document.querySelector(selector) : selector;
+    if (!this.container) {
+      const selectorDescription = typeof selector === "string" ? selector : `<${selector.tagName.toLowerCase()}${selector.id ? ` id="${selector.id}"` : ""}${selector.className ? ` class="${selector.className}"` : ""}>`;
+      throw new Error(`[FlintN SDK] Container not found: ${selectorDescription}`);
+    }
+    this.iframe = createIframeElement(buildIframeSrc(this.origin));
+    this.container.appendChild(this.iframe);
+    this.messageHandler = this.handleMessage.bind(this);
+    window.addEventListener("message", this.messageHandler);
+    this.log("Mounted to container");
+  }
+  unmount() {
+    if (this.messageHandler) {
+      window.removeEventListener("message", this.messageHandler);
+      this.messageHandler = null;
+    }
+    if (this.iframe && this.container && this.container.contains(this.iframe)) {
+      this.container.removeChild(this.iframe);
+    }
+    this.iframe = null;
+    this.isReady = false;
+    this.log("Unmounted");
+  }
+  getIsReady() {
+    return this.isReady;
+  }
+  handleMessage(event) {
+    if (event.origin !== this.origin) return;
+    const { type, payload } = event.data || {};
+    if (!type) return;
+    this.log("Received message:", type, payload ?? "");
+    switch (type) {
+      case EventType.WIDGET_READY:
+        this.isReady = true;
+        this.sendConfig();
+        this.options.onReady?.();
+        break;
+      case EventType.PAYMENT:
+        this.handlePaymentResult(payload, this.options.onPayment);
+        break;
+      case EventType.EXPRESS_PAYMENT:
+        this.handlePaymentResult(payload, this.options.onExpressPayment);
+        break;
+      case EventType.REDIRECT:
+        if (payload?.url && this.isValidRedirectUrl(payload.url)) {
+          window.location.href = payload.url;
+        }
+        break;
+    }
+  }
+  isValidRedirectUrl(url) {
+    try {
+      const parsed = new URL(url);
+      if (parsed.protocol !== "http:" && parsed.protocol !== "https:") {
+        this.log("Invalid redirect URL protocol:", parsed.protocol);
+        return false;
+      }
+      if (parsed.origin === window.location.origin) {
+        return true;
+      }
+      const configRedirectUrl = this.options.config.successRedirectUrl;
+      if (configRedirectUrl) {
+        const configParsed = new URL(configRedirectUrl);
+        if (parsed.origin === configParsed.origin) {
+          return true;
+        }
+      }
+      this.log("Redirect URL not in allowed origins:", url);
+      return false;
+    } catch {
+      this.log("Invalid redirect URL:", url);
+      return false;
+    }
+  }
+  handlePaymentResult(payload, callback) {
+    if (!callback) return;
+    callback(payload);
+  }
+  sendConfig() {
+    if (!this.iframe?.contentWindow) return;
+    this.iframe.contentWindow.postMessage(
+      {
+        type: EventType.WIDGET_CONFIG,
+        payload: this.options.config
+      },
+      this.origin
+    );
+    this.log("Sent config:", sanitizeToken(this.options.config.clientToken));
+  }
+  log(...args) {
+    if (this.options.debug) {
+      console.log("[FlintN SDK]", ...args);
+    }
+  }
+};
+
+// src/react/use-flintn-payment.ts
+function useFlintNPayment(options) {
+  const containerRef = useRef(null);
+  const paymentRef = useRef(null);
+  const onPaymentRef = useRef(options.onPayment);
+  const onExpressPaymentRef = useRef(options.onExpressPayment);
+  const [isReady, setIsReady] = useState(false);
+  const [paymentResult, setPaymentResult] = useState(null);
+  const [error, setError] = useState(null);
+  useEffect(() => {
+    onPaymentRef.current = options.onPayment;
+  }, [options.onPayment]);
+  useEffect(() => {
+    onExpressPaymentRef.current = options.onExpressPayment;
+  }, [options.onExpressPayment]);
+  useEffect(() => {
+    if (!containerRef.current) return;
+    setIsReady(false);
+    setPaymentResult(null);
+    setError(null);
+    try {
+      paymentRef.current = new FlintNPayment({
+        ...options,
+        onReady: () => setIsReady(true),
+        onPayment: (result) => {
+          setPaymentResult(result);
+          onPaymentRef.current?.(result);
+        },
+        onExpressPayment: (result) => {
+          setPaymentResult(result);
+          onExpressPaymentRef.current?.(result);
+        },
+        onError: (err) => setError(err)
+      });
+      paymentRef.current.mount(containerRef.current);
+    } catch (err) {
+      setError({
+        code: "INIT_ERROR",
+        message: err instanceof Error ? err.message : "Failed to initialize SDK"
+      });
+    }
+    return () => {
+      paymentRef.current?.unmount();
+      paymentRef.current = null;
+    };
+  }, [
+    options.origin,
+    options.debug,
+    options.config.clientToken,
+    options.config.maxWidth,
+    options.config.isCardHolderRequired,
+    options.config.successRedirectUrl
+  ]);
+  return {
+    containerRef,
+    isReady,
+    paymentResult,
+    error
+  };
+}
+export {
+  EventType,
+  useFlintNPayment
+};

package/package.json

@@ -0,0 +1,58 @@
+{
+  "name": "flintn-checkout",
+  "version": "0.0.1",
+  "description": "FlintN Payment SDK — drop-in iframe checkout for card payments and wallets with localization and theming.",
+  "main": "./dist/index.js",
+  "module": "./dist/index.mjs",
+  "types": "./dist/index.d.ts",
+  "keywords": [
+    "flintn",
+    "payments",
+    "payment",
+    "checkout",
+    "payment-gateway",
+    "payment-widget",
+    "payment-iframe",
+    "iframe",
+    "tokenization",
+    "card-payments",
+    "3ds",
+    "apple-pay",
+    "google-pay",
+    "web-sdk"
+  ],
+  "author": "FlintN (https://flintn.com), support@flintn.com",
+  "homepage": "https://tutorvue-group.gitbook.io/flintn-docs",
+  "repository": { "url": "https://github.com" },
+  "exports": {
+    ".": {
+      "import": "./dist/index.mjs",
+      "require": "./dist/index.js",
+      "types": "./dist/index.d.ts"
+    },
+    "./react": {
+      "import": "./dist/react.mjs",
+      "require": "./dist/react.js",
+      "types": "./dist/react.d.ts"
+    }
+  },
+  "files": ["dist"],
+  "scripts": {
+    "build": "tsup",
+    "dev": "tsup --watch",
+    "typecheck": "tsc --noEmit"
+  },
+  "peerDependencies": {
+    "react": ">=17.0.0"
+  },
+  "peerDependenciesMeta": {
+    "react": { "optional": true }
+  },
+  "devDependencies": {
+    "@types/react": "^19.0.0",
+    "react": "^19.0.0",
+    "tsup": "^8.0.0",
+    "typescript": "^5.3.0"
+  },
+  "license": "MIT"
+}