mppx 0.6.18 → 0.6.20

package/dist/tempo/subscription/Store.js

@@ -0,0 +1,292 @@
+import { Secp256k1 } from 'ox';
+import { Account as TempoAccount } from 'viem/tempo';
+const defaultRecordPrefix = 'tempo:subscription:record:';
+const defaultKeyPrefix = 'tempo:subscription:key:';
+const defaultActivationPrefix = 'tempo:subscription:activation:';
+const defaultAccessKeyPrefix = 'tempo:subscription:access-key:';
+const defaultCredentialPrefix = 'tempo:subscription:credential:';
+const defaultActivationTimeoutMs = 15 * 60 * 1_000;
+const defaultRenewalTimeoutMs = 15 * 60 * 1_000;
+/** Wraps a generic key-value {@link Store.Store} with subscription-specific accessors. */
+export function fromStore(store, options) {
+    const { accessKeyPrefix = defaultAccessKeyPrefix, activationPrefix = defaultActivationPrefix, activationTimeoutMs = defaultActivationTimeoutMs, credentialPrefix = defaultCredentialPrefix, keyPrefix = defaultKeyPrefix, recordPrefix = defaultRecordPrefix, renewalTimeoutMs = defaultRenewalTimeoutMs, } = options ?? {};
+    function recordKey(subscriptionId) {
+        return `${recordPrefix}${subscriptionId}`;
+    }
+    function activationKey(key) {
+        return `${activationPrefix}${key}`;
+    }
+    function credentialKey(challengeId) {
+        return `${credentialPrefix}${challengeId}`;
+    }
+    function accessKeyKey(key) {
+        return `${accessKeyPrefix}${key}`;
+    }
+    function lookupRecordKey(key) {
+        return `${keyPrefix}${key}`;
+    }
+    async function getByLookupKey(key) {
+        const subscriptionId = (await store.get(lookupRecordKey(key)));
+        if (!subscriptionId)
+            return null;
+        return (await store.get(recordKey(subscriptionId)));
+    }
+    async function clearRenewalState(subscriptionId, periodIndex, attempt) {
+        await store.update(recordKey(subscriptionId), (current) => {
+            const subscription = current;
+            if (!subscription ||
+                subscription.inFlightPeriod !== periodIndex ||
+                subscription.inFlightAttempt !== attempt) {
+                return { op: 'noop', result: undefined };
+            }
+            return {
+                op: 'set',
+                value: clearRenewal(subscription),
+                result: undefined,
+            };
+        });
+    }
+    async function clearActivationState(lookupKey, challengeId) {
+        await store.update(activationKey(lookupKey), (current) => {
+            const marker = current;
+            if (marker?.challengeId !== challengeId)
+                return { op: 'noop', result: undefined };
+            return { op: 'delete', result: undefined };
+        });
+    }
+    async function ownsActivation(lookupKey, challengeId) {
+        const marker = (await store.get(activationKey(lookupKey)));
+        return marker?.challengeId === challengeId;
+    }
+    return {
+        async activate({ challengeId, create, isReusable, lookupKey }) {
+            const claimed = await store.update(credentialKey(challengeId), (current) => {
+                if (current)
+                    return { op: 'noop', result: false };
+                return {
+                    op: 'set',
+                    value: { claimedAt: timestamp() },
+                    result: true,
+                };
+            });
+            if (!claimed)
+                return { status: 'replayed' };
+            const existing = await getByLookupKey(lookupKey);
+            if (existing && isReusable?.(existing)) {
+                return { status: 'existing', subscription: existing };
+            }
+            const started = await store.update(activationKey(lookupKey), (current) => {
+                const marker = current;
+                if (marker && !isStaleActivation(marker, activationTimeoutMs)) {
+                    return { op: 'noop', result: { status: 'inFlight' } };
+                }
+                return {
+                    op: 'set',
+                    value: {
+                        challengeId,
+                        startedAt: timestamp(),
+                    },
+                    result: { status: 'started' },
+                };
+            });
+            if (started.status !== 'started')
+                return { status: 'inFlight' };
+            const claimedExisting = await getByLookupKey(lookupKey);
+            if (claimedExisting && isReusable?.(claimedExisting)) {
+                await clearActivationState(lookupKey, challengeId);
+                return { status: 'existing', subscription: claimedExisting };
+            }
+            const result = await create().catch(async (error) => {
+                await clearActivationState(lookupKey, challengeId);
+                throw error;
+            });
+            const { subscription } = result;
+            const committed = await store.update(activationKey(subscription.lookupKey), (current) => {
+                const marker = current;
+                if (marker?.challengeId !== challengeId)
+                    return { op: 'noop', result: false };
+                return {
+                    op: 'set',
+                    value: {
+                        ...marker,
+                        committingAt: timestamp(),
+                        startedAt: timestamp(),
+                    },
+                    result: true,
+                };
+            });
+            if (!committed) {
+                await store.put(recordKey(subscription.subscriptionId), {
+                    ...subscription,
+                    canceledAt: subscription.canceledAt ?? timestamp(),
+                });
+                return { status: 'claimMismatch' };
+            }
+            const previous = await getByLookupKey(subscription.lookupKey);
+            if (previous && previous.subscriptionId !== subscription.subscriptionId) {
+                if (!(await ownsActivation(subscription.lookupKey, challengeId))) {
+                    return { status: 'claimMismatch' };
+                }
+                await store.put(recordKey(previous.subscriptionId), {
+                    ...previous,
+                    canceledAt: previous.canceledAt ?? timestamp(),
+                });
+            }
+            if (!(await ownsActivation(subscription.lookupKey, challengeId))) {
+                return { status: 'claimMismatch' };
+            }
+            await store.put(recordKey(subscription.subscriptionId), subscription);
+            if (!(await ownsActivation(subscription.lookupKey, challengeId))) {
+                return { status: 'claimMismatch' };
+            }
+            await store.put(lookupRecordKey(subscription.lookupKey), subscription.subscriptionId);
+            await clearActivationState(subscription.lookupKey, challengeId);
+            return { status: 'activated', result };
+        },
+        async get(subscriptionId) {
+            return (await store.get(recordKey(subscriptionId)));
+        },
+        async getAccessKey(key) {
+            return (await store.get(accessKeyKey(key)));
+        },
+        async getByKey(key) {
+            return getByLookupKey(key);
+        },
+        async getOrCreateAccessKey(key) {
+            const existing = (await store.get(accessKeyKey(key)));
+            if (existing)
+                return existing;
+            const privateKey = Secp256k1.randomPrivateKey();
+            const account = TempoAccount.fromSecp256k1(privateKey);
+            const candidate = {
+                accessKeyAddress: account.address.toLowerCase(),
+                keyType: account.keyType,
+                privateKey,
+            };
+            return store.update(accessKeyKey(key), (current) => {
+                if (current) {
+                    return { op: 'noop', result: current };
+                }
+                return { op: 'set', value: candidate, result: candidate };
+            });
+        },
+        async put(record) {
+            await store.put(recordKey(record.subscriptionId), record);
+            await store.put(lookupRecordKey(record.lookupKey), record.subscriptionId);
+        },
+        async renew({ inFlightReference, periodIndex, renew, subscriptionId }) {
+            const attempt = createAttemptToken();
+            const started = await store.update(recordKey(subscriptionId), (current) => {
+                const subscription = current;
+                if (!subscription)
+                    return { op: 'noop', result: { status: 'missing' } };
+                if (subscription.lastChargedPeriod >= periodIndex) {
+                    return {
+                        op: 'noop',
+                        result: { status: 'charged', subscription },
+                    };
+                }
+                if (subscription.inFlightPeriod !== undefined &&
+                    !isStaleRenewal(subscription, renewalTimeoutMs)) {
+                    return {
+                        op: 'noop',
+                        result: { status: 'inFlight', subscription },
+                    };
+                }
+                const next = {
+                    ...subscription,
+                    inFlightAttempt: attempt,
+                    inFlightPeriod: periodIndex,
+                    inFlightReference,
+                    inFlightStartedAt: timestamp(),
+                };
+                return {
+                    op: 'set',
+                    value: next,
+                    result: { status: 'started', subscription: next },
+                };
+            });
+            if (started.status !== 'started')
+                return started;
+            const active = await getByLookupKey(started.subscription.lookupKey);
+            if (active?.subscriptionId !== subscriptionId) {
+                await clearRenewalState(subscriptionId, periodIndex, attempt);
+                return { status: 'superseded', subscription: started.subscription };
+            }
+            const result = await renew({
+                inFlightReference,
+                periodIndex,
+                subscription: started.subscription,
+            }).catch(async (error) => {
+                await clearRenewalState(subscriptionId, periodIndex, attempt);
+                throw error;
+            });
+            const activeAfterRenew = await getByLookupKey(result.subscription.lookupKey);
+            if (activeAfterRenew?.subscriptionId !== subscriptionId) {
+                await clearRenewalState(subscriptionId, periodIndex, attempt);
+                return { status: 'superseded', subscription: started.subscription };
+            }
+            const committed = await store.update(recordKey(subscriptionId), (current) => {
+                const existing = current;
+                if (!existing ||
+                    existing.inFlightPeriod !== periodIndex ||
+                    existing.inFlightAttempt !== attempt) {
+                    return { op: 'noop', result: false };
+                }
+                const terminal = {
+                    ...(existing.canceledAt ? { canceledAt: existing.canceledAt } : {}),
+                    ...(existing.revokedAt ? { revokedAt: existing.revokedAt } : {}),
+                };
+                return {
+                    op: 'set',
+                    value: clearRenewal({
+                        ...result.subscription,
+                        ...terminal,
+                        lastChargedPeriod: periodIndex,
+                        subscriptionId,
+                    }),
+                    result: true,
+                };
+            });
+            if (!committed)
+                return { status: 'claimMismatch' };
+            const ownsLookup = await store.update(lookupRecordKey(result.subscription.lookupKey), (current) => {
+                if (current !== subscriptionId)
+                    return { op: 'noop', result: false };
+                return { op: 'set', value: subscriptionId, result: true };
+            });
+            if (!ownsLookup)
+                return { status: 'superseded', subscription: started.subscription };
+            return { status: 'renewed', result };
+        },
+    };
+}
+function isStaleActivation(marker, timeoutMs) {
+    if (!Number.isFinite(timeoutMs) || timeoutMs < 0)
+        return false;
+    if ('committingAt' in marker && marker.committingAt)
+        return false;
+    const startedAt = new Date(marker.startedAt ?? '').getTime();
+    if (!Number.isFinite(startedAt))
+        return true;
+    return Date.now() - startedAt >= timeoutMs;
+}
+function isStaleRenewal(subscription, timeoutMs) {
+    return isStaleActivation({ startedAt: subscription.inFlightStartedAt }, timeoutMs);
+}
+function clearRenewal(subscription) {
+    return {
+        ...subscription,
+        inFlightAttempt: undefined,
+        inFlightPeriod: undefined,
+        inFlightReference: undefined,
+        inFlightStartedAt: undefined,
+    };
+}
+function timestamp() {
+    return new Date().toISOString();
+}
+function createAttemptToken() {
+    return globalThis.crypto.randomUUID();
+}
+//# sourceMappingURL=Store.js.map

package/dist/tempo/subscription/Store.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"Store.js","sourceRoot":"","sources":["../../../src/tempo/subscription/Store.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,SAAS,EAAE,MAAM,IAAI,CAAA;AAC9B,OAAO,EAAE,OAAO,IAAI,YAAY,EAAE,MAAM,YAAY,CAAA;AAKpD,MAAM,mBAAmB,GAAG,4BAA4B,CAAA;AACxD,MAAM,gBAAgB,GAAG,yBAAyB,CAAA;AAClD,MAAM,uBAAuB,GAAG,gCAAgC,CAAA;AAChE,MAAM,sBAAsB,GAAG,gCAAgC,CAAA;AAC/D,MAAM,uBAAuB,GAAG,gCAAgC,CAAA;AAChE,MAAM,0BAA0B,GAAG,EAAE,GAAG,EAAE,GAAG,KAAK,CAAA;AAClD,MAAM,uBAAuB,GAAG,EAAE,GAAG,EAAE,GAAG,KAAK,CAAA;AA+D/C,0FAA0F;AAC1F,MAAM,UAAU,SAAS,CACvB,KAAiD,EACjD,OAA2B;IAE3B,MAAM,EACJ,eAAe,GAAG,sBAAsB,EACxC,gBAAgB,GAAG,uBAAuB,EAC1C,mBAAmB,GAAG,0BAA0B,EAChD,gBAAgB,GAAG,uBAAuB,EAC1C,SAAS,GAAG,gBAAgB,EAC5B,YAAY,GAAG,mBAAmB,EAClC,gBAAgB,GAAG,uBAAuB,GAC3C,GAAG,OAAO,IAAI,EAAE,CAAA;IAEjB,SAAS,SAAS,CAAC,cAAsB;QACvC,OAAO,GAAG,YAAY,GAAG,cAAc,EAAE,CAAA;IAC3C,CAAC;IAED,SAAS,aAAa,CAAC,GAAW;QAChC,OAAO,GAAG,gBAAgB,GAAG,GAAG,EAAE,CAAA;IACpC,CAAC;IAED,SAAS,aAAa,CAAC,WAAmB;QACxC,OAAO,GAAG,gBAAgB,GAAG,WAAW,EAAE,CAAA;IAC5C,CAAC;IAED,SAAS,YAAY,CAAC,GAAW;QAC/B,OAAO,GAAG,eAAe,GAAG,GAAG,EAAE,CAAA;IACnC,CAAC;IAED,SAAS,eAAe,CAAC,GAAW;QAClC,OAAO,GAAG,SAAS,GAAG,GAAG,EAAE,CAAA;IAC7B,CAAC;IAED,KAAK,UAAU,cAAc,CAAC,GAAW;QACvC,MAAM,cAAc,GAAG,CAAC,MAAM,KAAK,CAAC,GAAG,CAAC,eAAe,CAAC,GAAG,CAAC,CAAC,CAAkB,CAAA;QAC/E,IAAI,CAAC,cAAc;YAAE,OAAO,IAAI,CAAA;QAChC,OAAO,CAAC,MAAM,KAAK,CAAC,GAAG,CAAC,SAAS,CAAC,cAAc,CAAC,CAAC,CAA8B,CAAA;IAClF,CAAC;IAED,KAAK,UAAU,iBAAiB,CAAC,cAAsB,EAAE,WAAmB,EAAE,OAAe;QAC3F,MAAM,KAAK,CAAC,MAAM,CAAC,SAAS,CAAC,cAAc,CAAC,EAAE,CAAC,OAAO,EAAE,EAAE;YACxD,MAAM,YAAY,GAAG,OAAoC,CAAA;YACzD,IACE,CAAC,YAAY;gBACb,YAAY,CAAC,cAAc,KAAK,WAAW;gBAC3C,YAAY,CAAC,eAAe,KAAK,OAAO,EACxC,CAAC;gBACD,OAAO,EAAE,EAAE,EAAE,MAAM,EAAE,MAAM,EAAE,SAAS,EAAE,CAAA;YAC1C,CAAC;YACD,OAAO;gBACL,EAAE,EAAE,KAAK;gBACT,KAAK,EAAE,YAAY,CAAC,YAAY,CAAC;gBACjC,MAAM,EAAE,SAAS;aAClB,CAAA;QACH,CAAC,CAAC,CAAA;IACJ,CAAC;IAED,KAAK,UAAU,oBAAoB,CAAC,SAAiB,EAAE,WAAmB;QACxE,MAAM,KAAK,CAAC,MAAM,CAAC,aAAa,CAAC,SAAS,CAAC,EAAE,CAAC,OAAO,EAAE,EAAE;YACvD,MAAM,MAAM,GAAG,OAAkC,CAAA;YACjD,IAAI,MAAM,EAAE,WAAW,KAAK,WAAW;gBAAE,OAAO,EAAE,EAAE,EAAE,MAAM,EAAE,MAAM,EAAE,SAAS,EAAE,CAAA;YACjF,OAAO,EAAE,EAAE,EAAE,QAAQ,EAAE,MAAM,EAAE,SAAS,EAAE,CAAA;QAC5C,CAAC,CAAC,CAAA;IACJ,CAAC;IAED,KAAK,UAAU,cAAc,CAAC,SAAiB,EAAE,WAAmB;QAClE,MAAM,MAAM,GAAG,CAAC,MAAM,KAAK,CAAC,GAAG,CAAC,aAAa,CAAC,SAAS,CAAC,CAAC,CAA4B,CAAA;QACrF,OAAO,MAAM,EAAE,WAAW,KAAK,WAAW,CAAA;IAC5C,CAAC;IAED,OAAO;QACL,KAAK,CAAC,QAAQ,CAAC,EAAE,WAAW,EAAE,MAAM,EAAE,UAAU,EAAE,SAAS,EAAE;YAC3D,MAAM,OAAO,GAAG,MAAM,KAAK,CAAC,MAAM,CAAC,aAAa,CAAC,WAAW,CAAC,EAAE,CAAC,OAAO,EAAE,EAAE;gBACzE,IAAI,OAAO;oBAAE,OAAO,EAAE,EAAE,EAAE,MAAM,EAAE,MAAM,EAAE,KAAK,EAAE,CAAA;gBACjD,OAAO;oBACL,EAAE,EAAE,KAAK;oBACT,KAAK,EAAE,EAAE,SAAS,EAAE,SAAS,EAAE,EAAE;oBACjC,MAAM,EAAE,IAAI;iBACb,CAAA;YACH,CAAC,CAAC,CAAA;YACF,IAAI,CAAC,OAAO;gBAAE,OAAO,EAAE,MAAM,EAAE,UAAU,EAAE,CAAA;YAE3C,MAAM,QAAQ,GAAG,MAAM,cAAc,CAAC,SAAS,CAAC,CAAA;YAChD,IAAI,QAAQ,IAAI,UAAU,EAAE,CAAC,QAAQ,CAAC,EAAE,CAAC;gBACvC,OAAO,EAAE,MAAM,EAAE,UAAU,EAAE,YAAY,EAAE,QAAQ,EAAE,CAAA;YACvD,CAAC;YAED,MAAM,OAAO,GAAG,MAAM,KAAK,CAAC,MAAM,CAChC,aAAa,CAAC,SAAS,CAAC,EACxB,CAAC,OAAO,EAAyE,EAAE;gBACjF,MAAM,MAAM,GAAG,OAAkC,CAAA;gBACjD,IAAI,MAAM,IAAI,CAAC,iBAAiB,CAAC,MAAM,EAAE,mBAAmB,CAAC,EAAE,CAAC;oBAC9D,OAAO,EAAE,EAAE,EAAE,MAAM,EAAE,MAAM,EAAE,EAAE,MAAM,EAAE,UAAmB,EAAE,EAAE,CAAA;gBAChE,CAAC;gBACD,OAAO;oBACL,EAAE,EAAE,KAAK;oBACT,KAAK,EAAE;wBACL,WAAW;wBACX,SAAS,EAAE,SAAS,EAAE;qBACvB;oBACD,MAAM,EAAE,EAAE,MAAM,EAAE,SAAkB,EAAE;iBACvC,CAAA;YACH,CAAC,CACF,CAAA;YACD,IAAI,OAAO,CAAC,MAAM,KAAK,SAAS;gBAAE,OAAO,EAAE,MAAM,EAAE,UAAU,EAAE,CAAA;YAE/D,MAAM,eAAe,GAAG,MAAM,cAAc,CAAC,SAAS,CAAC,CAAA;YACvD,IAAI,eAAe,IAAI,UAAU,EAAE,CAAC,eAAe,CAAC,EAAE,CAAC;gBACrD,MAAM,oBAAoB,CAAC,SAAS,EAAE,WAAW,CAAC,CAAA;gBAClD,OAAO,EAAE,MAAM,EAAE,UAAU,EAAE,YAAY,EAAE,eAAe,EAAE,CAAA;YAC9D,CAAC;YAED,MAAM,MAAM,GAAG,MAAM,MAAM,EAAE,CAAC,KAAK,CAAC,KAAK,EAAE,KAAK,EAAE,EAAE;gBAClD,MAAM,oBAAoB,CAAC,SAAS,EAAE,WAAW,CAAC,CAAA;gBAClD,MAAM,KAAK,CAAA;YACb,CAAC,CAAC,CAAA;YACF,MAAM,EAAE,YAAY,EAAE,GAAG,MAAM,CAAA;YAC/B,MAAM,SAAS,GAAG,MAAM,KAAK,CAAC,MAAM,CAAC,aAAa,CAAC,YAAY,CAAC,SAAS,CAAC,EAAE,CAAC,OAAO,EAAE,EAAE;gBACtF,MAAM,MAAM,GAAG,OAAkC,CAAA;gBACjD,IAAI,MAAM,EAAE,WAAW,KAAK,WAAW;oBAAE,OAAO,EAAE,EAAE,EAAE,MAAM,EAAE,MAAM,EAAE,KAAK,EAAE,CAAA;gBAC7E,OAAO;oBACL,EAAE,EAAE,KAAK;oBACT,KAAK,EAAE;wBACL,GAAG,MAAM;wBACT,YAAY,EAAE,SAAS,EAAE;wBACzB,SAAS,EAAE,SAAS,EAAE;qBACvB;oBACD,MAAM,EAAE,IAAI;iBACb,CAAA;YACH,CAAC,CAAC,CAAA;YACF,IAAI,CAAC,SAAS,EAAE,CAAC;gBACf,MAAM,KAAK,CAAC,GAAG,CAAC,SAAS,CAAC,YAAY,CAAC,cAAc,CAAC,EAAE;oBACtD,GAAG,YAAY;oBACf,UAAU,EAAE,YAAY,CAAC,UAAU,IAAI,SAAS,EAAE;iBACnD,CAAC,CAAA;gBACF,OAAO,EAAE,MAAM,EAAE,eAAe,EAAE,CAAA;YACpC,CAAC;YAED,MAAM,QAAQ,GAAG,MAAM,cAAc,CAAC,YAAY,CAAC,SAAS,CAAC,CAAA;YAC7D,IAAI,QAAQ,IAAI,QAAQ,CAAC,cAAc,KAAK,YAAY,CAAC,cAAc,EAAE,CAAC;gBACxE,IAAI,CAAC,CAAC,MAAM,cAAc,CAAC,YAAY,CAAC,SAAS,EAAE,WAAW,CAAC,CAAC,EAAE,CAAC;oBACjE,OAAO,EAAE,MAAM,EAAE,eAAe,EAAE,CAAA;gBACpC,CAAC;gBACD,MAAM,KAAK,CAAC,GAAG,CAAC,SAAS,CAAC,QAAQ,CAAC,cAAc,CAAC,EAAE;oBAClD,GAAG,QAAQ;oBACX,UAAU,EAAE,QAAQ,CAAC,UAAU,IAAI,SAAS,EAAE;iBAC/C,CAAC,CAAA;YACJ,CAAC;YACD,IAAI,CAAC,CAAC,MAAM,cAAc,CAAC,YAAY,CAAC,SAAS,EAAE,WAAW,CAAC,CAAC,EAAE,CAAC;gBACjE,OAAO,EAAE,MAAM,EAAE,eAAe,EAAE,CAAA;YACpC,CAAC;YACD,MAAM,KAAK,CAAC,GAAG,CAAC,SAAS,CAAC,YAAY,CAAC,cAAc,CAAC,EAAE,YAAY,CAAC,CAAA;YACrE,IAAI,CAAC,CAAC,MAAM,cAAc,CAAC,YAAY,CAAC,SAAS,EAAE,WAAW,CAAC,CAAC,EAAE,CAAC;gBACjE,OAAO,EAAE,MAAM,EAAE,eAAe,EAAE,CAAA;YACpC,CAAC;YACD,MAAM,KAAK,CAAC,GAAG,CAAC,eAAe,CAAC,YAAY,CAAC,SAAS,CAAC,EAAE,YAAY,CAAC,cAAc,CAAC,CAAA;YACrF,MAAM,oBAAoB,CAAC,YAAY,CAAC,SAAS,EAAE,WAAW,CAAC,CAAA;YAC/D,OAAO,EAAE,MAAM,EAAE,WAAW,EAAE,MAAM,EAAE,CAAA;QACxC,CAAC;QAED,KAAK,CAAC,GAAG,CAAC,cAAc;YACtB,OAAO,CAAC,MAAM,KAAK,CAAC,GAAG,CAAC,SAAS,CAAC,cAAc,CAAC,CAAC,CAA8B,CAAA;QAClF,CAAC;QAED,KAAK,CAAC,YAAY,CAAC,GAAG;YACpB,OAAO,CAAC,MAAM,KAAK,CAAC,GAAG,CAAC,YAAY,CAAC,GAAG,CAAC,CAAC,CAAuC,CAAA;QACnF,CAAC;QAED,KAAK,CAAC,QAAQ,CAAC,GAAG;YAChB,OAAO,cAAc,CAAC,GAAG,CAAC,CAAA;QAC5B,CAAC;QAED,KAAK,CAAC,oBAAoB,CAAC,GAAG;YAC5B,MAAM,QAAQ,GAAG,CAAC,MAAM,KAAK,CAAC,GAAG,CAAC,YAAY,CAAC,GAAG,CAAC,CAAC,CAAuC,CAAA;YAC3F,IAAI,QAAQ;gBAAE,OAAO,QAAQ,CAAA;YAE7B,MAAM,UAAU,GAAG,SAAS,CAAC,gBAAgB,EAAE,CAAA;YAC/C,MAAM,OAAO,GAAG,YAAY,CAAC,aAAa,CAAC,UAAU,CAAC,CAAA;YACtD,MAAM,SAAS,GAAG;gBAChB,gBAAgB,EAAE,OAAO,CAAC,OAAO,CAAC,WAAW,EAAmB;gBAChE,OAAO,EAAE,OAAO,CAAC,OAAO;gBACxB,UAAU;aAC2B,CAAA;YACvC,OAAO,KAAK,CAAC,MAAM,CACjB,YAAY,CAAC,GAAG,CAAC,EACjB,CAAC,OAAO,EAAsD,EAAE;gBAC9D,IAAI,OAAO,EAAE,CAAC;oBACZ,OAAO,EAAE,EAAE,EAAE,MAAM,EAAE,MAAM,EAAE,OAAsC,EAAE,CAAA;gBACvE,CAAC;gBACD,OAAO,EAAE,EAAE,EAAE,KAAK,EAAE,KAAK,EAAE,SAAS,EAAE,MAAM,EAAE,SAAS,EAAE,CAAA;YAC3D,CAAC,CACF,CAAA;QACH,CAAC;QAED,KAAK,CAAC,GAAG,CAAC,MAAM;YACd,MAAM,KAAK,CAAC,GAAG,CAAC,SAAS,CAAC,MAAM,CAAC,cAAc,CAAC,EAAE,MAAM,CAAC,CAAA;YACzD,MAAM,KAAK,CAAC,GAAG,CAAC,eAAe,CAAC,MAAM,CAAC,SAAS,CAAC,EAAE,MAAM,CAAC,cAAc,CAAC,CAAA;QAC3E,CAAC;QAED,KAAK,CAAC,KAAK,CAAC,EAAE,iBAAiB,EAAE,WAAW,EAAE,KAAK,EAAE,cAAc,EAAE;YACnE,MAAM,OAAO,GAAG,kBAAkB,EAAE,CAAA;YACpC,MAAM,OAAO,GAAG,MAAM,KAAK,CAAC,MAAM,CAChC,SAAS,CAAC,cAAc,CAAC,EACzB,CACE,OAAO,EAOP,EAAE;gBACF,MAAM,YAAY,GAAG,OAAoC,CAAA;gBACzD,IAAI,CAAC,YAAY;oBAAE,OAAO,EAAE,EAAE,EAAE,MAAM,EAAE,MAAM,EAAE,EAAE,MAAM,EAAE,SAAkB,EAAE,EAAE,CAAA;gBAChF,IAAI,YAAY,CAAC,iBAAiB,IAAI,WAAW,EAAE,CAAC;oBAClD,OAAO;wBACL,EAAE,EAAE,MAAM;wBACV,MAAM,EAAE,EAAE,MAAM,EAAE,SAAkB,EAAE,YAAY,EAAE;qBACrD,CAAA;gBACH,CAAC;gBACD,IACE,YAAY,CAAC,cAAc,KAAK,SAAS;oBACzC,CAAC,cAAc,CAAC,YAAY,EAAE,gBAAgB,CAAC,EAC/C,CAAC;oBACD,OAAO;wBACL,EAAE,EAAE,MAAM;wBACV,MAAM,EAAE,EAAE,MAAM,EAAE,UAAmB,EAAE,YAAY,EAAE;qBACtD,CAAA;gBACH,CAAC;gBAED,MAAM,IAAI,GAAG;oBACX,GAAG,YAAY;oBACf,eAAe,EAAE,OAAO;oBACxB,cAAc,EAAE,WAAW;oBAC3B,iBAAiB;oBACjB,iBAAiB,EAAE,SAAS,EAAE;iBAC/B,CAAA;gBACD,OAAO;oBACL,EAAE,EAAE,KAAK;oBACT,KAAK,EAAE,IAAI;oBACX,MAAM,EAAE,EAAE,MAAM,EAAE,SAAkB,EAAE,YAAY,EAAE,IAAI,EAAE;iBAC3D,CAAA;YACH,CAAC,CACF,CAAA;YACD,IAAI,OAAO,CAAC,MAAM,KAAK,SAAS;gBAAE,OAAO,OAAO,CAAA;YAChD,MAAM,MAAM,GAAG,MAAM,cAAc,CAAC,OAAO,CAAC,YAAY,CAAC,SAAS,CAAC,CAAA;YACnE,IAAI,MAAM,EAAE,cAAc,KAAK,cAAc,EAAE,CAAC;gBAC9C,MAAM,iBAAiB,CAAC,cAAc,EAAE,WAAW,EAAE,OAAO,CAAC,CAAA;gBAC7D,OAAO,EAAE,MAAM,EAAE,YAAY,EAAE,YAAY,EAAE,OAAO,CAAC,YAAY,EAAE,CAAA;YACrE,CAAC;YAED,MAAM,MAAM,GAAG,MAAM,KAAK,CAAC;gBACzB,iBAAiB;gBACjB,WAAW;gBACX,YAAY,EAAE,OAAO,CAAC,YAAY;aACnC,CAAC,CAAC,KAAK,CAAC,KAAK,EAAE,KAAK,EAAE,EAAE;gBACvB,MAAM,iBAAiB,CAAC,cAAc,EAAE,WAAW,EAAE,OAAO,CAAC,CAAA;gBAC7D,MAAM,KAAK,CAAA;YACb,CAAC,CAAC,CAAA;YAEF,MAAM,gBAAgB,GAAG,MAAM,cAAc,CAAC,MAAM,CAAC,YAAY,CAAC,SAAS,CAAC,CAAA;YAC5E,IAAI,gBAAgB,EAAE,cAAc,KAAK,cAAc,EAAE,CAAC;gBACxD,MAAM,iBAAiB,CAAC,cAAc,EAAE,WAAW,EAAE,OAAO,CAAC,CAAA;gBAC7D,OAAO,EAAE,MAAM,EAAE,YAAY,EAAE,YAAY,EAAE,OAAO,CAAC,YAAY,EAAE,CAAA;YACrE,CAAC;YAED,MAAM,SAAS,GAAG,MAAM,KAAK,CAAC,MAAM,CAAC,SAAS,CAAC,cAAc,CAAC,EAAE,CAAC,OAAO,EAAE,EAAE;gBAC1E,MAAM,QAAQ,GAAG,OAAoC,CAAA;gBACrD,IACE,CAAC,QAAQ;oBACT,QAAQ,CAAC,cAAc,KAAK,WAAW;oBACvC,QAAQ,CAAC,eAAe,KAAK,OAAO,EACpC,CAAC;oBACD,OAAO,EAAE,EAAE,EAAE,MAAM,EAAE,MAAM,EAAE,KAAK,EAAE,CAAA;gBACtC,CAAC;gBAED,MAAM,QAAQ,GAAG;oBACf,GAAG,CAAC,QAAQ,CAAC,UAAU,CAAC,CAAC,CAAC,EAAE,UAAU,EAAE,QAAQ,CAAC,UAAU,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC;oBACnE,GAAG,CAAC,QAAQ,CAAC,SAAS,CAAC,CAAC,CAAC,EAAE,SAAS,EAAE,QAAQ,CAAC,SAAS,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC;iBACjE,CAAA;gBACD,OAAO;oBACL,EAAE,EAAE,KAAK;oBACT,KAAK,EAAE,YAAY,CAAC;wBAClB,GAAG,MAAM,CAAC,YAAY;wBACtB,GAAG,QAAQ;wBACX,iBAAiB,EAAE,WAAW;wBAC9B,cAAc;qBACf,CAAC;oBACF,MAAM,EAAE,IAAI;iBACb,CAAA;YACH,CAAC,CAAC,CAAA;YACF,IAAI,CAAC,SAAS;gBAAE,OAAO,EAAE,MAAM,EAAE,eAAe,EAAE,CAAA;YAElD,MAAM,UAAU,GAAG,MAAM,KAAK,CAAC,MAAM,CACnC,eAAe,CAAC,MAAM,CAAC,YAAY,CAAC,SAAS,CAAC,EAC9C,CAAC,OAAO,EAAE,EAAE;gBACV,IAAI,OAAO,KAAK,cAAc;oBAAE,OAAO,EAAE,EAAE,EAAE,MAAM,EAAE,MAAM,EAAE,KAAK,EAAE,CAAA;gBACpE,OAAO,EAAE,EAAE,EAAE,KAAK,EAAE,KAAK,EAAE,cAAc,EAAE,MAAM,EAAE,IAAI,EAAE,CAAA;YAC3D,CAAC,CACF,CAAA;YACD,IAAI,CAAC,UAAU;gBAAE,OAAO,EAAE,MAAM,EAAE,YAAY,EAAE,YAAY,EAAE,OAAO,CAAC,YAAY,EAAE,CAAA;YACpF,OAAO,EAAE,MAAM,EAAE,SAAS,EAAE,MAAM,EAAE,CAAA;QACtC,CAAC;KACF,CAAA;AACH,CAAC;AAqBD,SAAS,iBAAiB,CAAC,MAA0C,EAAE,SAAiB;IACtF,IAAI,CAAC,MAAM,CAAC,QAAQ,CAAC,SAAS,CAAC,IAAI,SAAS,GAAG,CAAC;QAAE,OAAO,KAAK,CAAA;IAC9D,IAAI,cAAc,IAAI,MAAM,IAAI,MAAM,CAAC,YAAY;QAAE,OAAO,KAAK,CAAA;IACjE,MAAM,SAAS,GAAG,IAAI,IAAI,CAAC,MAAM,CAAC,SAAS,IAAI,EAAE,CAAC,CAAC,OAAO,EAAE,CAAA;IAC5D,IAAI,CAAC,MAAM,CAAC,QAAQ,CAAC,SAAS,CAAC;QAAE,OAAO,IAAI,CAAA;IAC5C,OAAO,IAAI,CAAC,GAAG,EAAE,GAAG,SAAS,IAAI,SAAS,CAAA;AAC5C,CAAC;AAED,SAAS,cAAc,CAAC,YAAgC,EAAE,SAAiB;IACzE,OAAO,iBAAiB,CAAC,EAAE,SAAS,EAAE,YAAY,CAAC,iBAAiB,EAAE,EAAE,SAAS,CAAC,CAAA;AACpF,CAAC;AAED,SAAS,YAAY,CAAC,YAAgC;IACpD,OAAO;QACL,GAAG,YAAY;QACf,eAAe,EAAE,SAAS;QAC1B,cAAc,EAAE,SAAS;QACzB,iBAAiB,EAAE,SAAS;QAC5B,iBAAiB,EAAE,SAAS;KAC7B,CAAA;AACH,CAAC;AAED,SAAS,SAAS;IAChB,OAAO,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE,CAAA;AACjC,CAAC;AAED,SAAS,kBAAkB;IACzB,OAAO,UAAU,CAAC,MAAM,CAAC,UAAU,EAAE,CAAA;AACvC,CAAC"}

package/dist/tempo/subscription/Types.d.ts

@@ -0,0 +1,65 @@
+import type { Address } from 'viem';
+/** Tempo-supported subscription period units. The shared intent also defines `month`, but Tempo cannot represent calendar-month periods exactly. */
+export type SubscriptionPeriodUnit = 'day' | 'week';
+/** Access key information used to authorize recurring Tempo payments. */
+export type SubscriptionAccessKey = {
+    accessKeyAddress: Address;
+    keyType: 'p256' | 'secp256k1' | 'webAuthn';
+};
+/** Server-owned subscription access key persisted for automatic billing. */
+export type SubscriptionAccessKeyRecord = SubscriptionAccessKey & {
+    privateKey: `0x${string}`;
+};
+/** Request-scoped lookup key for the active subscription tied to a route. */
+export type SubscriptionLookup = {
+    accessKey?: SubscriptionAccessKey | undefined;
+    key: string;
+};
+/** Persisted recurring Tempo subscription state. */
+export type SubscriptionRecord = {
+    amount: string;
+    billingAnchor: string;
+    chainId?: number | undefined;
+    currency: Address | string;
+    externalId?: string | undefined;
+    accessKey?: SubscriptionAccessKey | undefined;
+    inFlightPeriod?: number | undefined;
+    /** Per-attempt ownership token for the renewal currently in progress. */
+    inFlightAttempt?: string | undefined;
+    /** Stable idempotency/reconciliation reference for a renewal currently in progress. */
+    inFlightReference?: string | undefined;
+    inFlightStartedAt?: string | undefined;
+    /** Signed key authorization used to activate the access key. */
+    keyAuthorization?: `0x${string}` | undefined;
+    lastChargedPeriod: number;
+    lookupKey: string;
+    /** Root account that authorized the stored subscription access key. */
+    payer?: {
+        address: Address;
+        chainId: number;
+    } | undefined;
+    periodCount: string;
+    periodUnit: SubscriptionPeriodUnit;
+    recipient: Address | string;
+    reference: string;
+    subscriptionExpires: string;
+    subscriptionId: string;
+    timestamp: string;
+    canceledAt?: string | undefined;
+    revokedAt?: string | undefined;
+};
+/** Credential payload for a Tempo subscription activation. */
+export type SubscriptionCredentialPayload = {
+    signature: `0x${string}`;
+    type: 'keyAuthorization';
+};
+/** Receipt returned for a Tempo subscription activation or renewal. */
+export type SubscriptionReceipt = {
+    method: 'tempo';
+    reference: string;
+    status: 'success';
+    subscriptionId: string;
+    timestamp: string;
+    externalId?: string | undefined;
+};
+//# sourceMappingURL=Types.d.ts.map

package/dist/tempo/subscription/Types.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"Types.d.ts","sourceRoot":"","sources":["../../../src/tempo/subscription/Types.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,OAAO,EAAE,MAAM,MAAM,CAAA;AAEnC,oJAAoJ;AACpJ,MAAM,MAAM,sBAAsB,GAAG,KAAK,GAAG,MAAM,CAAA;AAEnD,yEAAyE;AACzE,MAAM,MAAM,qBAAqB,GAAG;IAClC,gBAAgB,EAAE,OAAO,CAAA;IACzB,OAAO,EAAE,MAAM,GAAG,WAAW,GAAG,UAAU,CAAA;CAC3C,CAAA;AAED,4EAA4E;AAC5E,MAAM,MAAM,2BAA2B,GAAG,qBAAqB,GAAG;IAChE,UAAU,EAAE,KAAK,MAAM,EAAE,CAAA;CAC1B,CAAA;AAED,6EAA6E;AAC7E,MAAM,MAAM,kBAAkB,GAAG;IAC/B,SAAS,CAAC,EAAE,qBAAqB,GAAG,SAAS,CAAA;IAC7C,GAAG,EAAE,MAAM,CAAA;CACZ,CAAA;AAED,oDAAoD;AACpD,MAAM,MAAM,kBAAkB,GAAG;IAC/B,MAAM,EAAE,MAAM,CAAA;IACd,aAAa,EAAE,MAAM,CAAA;IACrB,OAAO,CAAC,EAAE,MAAM,GAAG,SAAS,CAAA;IAC5B,QAAQ,EAAE,OAAO,GAAG,MAAM,CAAA;IAC1B,UAAU,CAAC,EAAE,MAAM,GAAG,SAAS,CAAA;IAC/B,SAAS,CAAC,EAAE,qBAAqB,GAAG,SAAS,CAAA;IAC7C,cAAc,CAAC,EAAE,MAAM,GAAG,SAAS,CAAA;IACnC,yEAAyE;IACzE,eAAe,CAAC,EAAE,MAAM,GAAG,SAAS,CAAA;IACpC,uFAAuF;IACvF,iBAAiB,CAAC,EAAE,MAAM,GAAG,SAAS,CAAA;IACtC,iBAAiB,CAAC,EAAE,MAAM,GAAG,SAAS,CAAA;IACtC,gEAAgE;IAChE,gBAAgB,CAAC,EAAE,KAAK,MAAM,EAAE,GAAG,SAAS,CAAA;IAC5C,iBAAiB,EAAE,MAAM,CAAA;IACzB,SAAS,EAAE,MAAM,CAAA;IACjB,uEAAuE;IACvE,KAAK,CAAC,EAAE;QAAE,OAAO,EAAE,OAAO,CAAC;QAAC,OAAO,EAAE,MAAM,CAAA;KAAE,GAAG,SAAS,CAAA;IACzD,WAAW,EAAE,MAAM,CAAA;IACnB,UAAU,EAAE,sBAAsB,CAAA;IAClC,SAAS,EAAE,OAAO,GAAG,MAAM,CAAA;IAC3B,SAAS,EAAE,MAAM,CAAA;IACjB,mBAAmB,EAAE,MAAM,CAAA;IAC3B,cAAc,EAAE,MAAM,CAAA;IACtB,SAAS,EAAE,MAAM,CAAA;IACjB,UAAU,CAAC,EAAE,MAAM,GAAG,SAAS,CAAA;IAC/B,SAAS,CAAC,EAAE,MAAM,GAAG,SAAS,CAAA;CAC/B,CAAA;AAED,8DAA8D;AAC9D,MAAM,MAAM,6BAA6B,GAAG;IAC1C,SAAS,EAAE,KAAK,MAAM,EAAE,CAAA;IACxB,IAAI,EAAE,kBAAkB,CAAA;CACzB,CAAA;AAED,uEAAuE;AACvE,MAAM,MAAM,mBAAmB,GAAG;IAChC,MAAM,EAAE,OAAO,CAAA;IACf,SAAS,EAAE,MAAM,CAAA;IACjB,MAAM,EAAE,SAAS,CAAA;IACjB,cAAc,EAAE,MAAM,CAAA;IACtB,SAAS,EAAE,MAAM,CAAA;IACjB,UAAU,CAAC,EAAE,MAAM,GAAG,SAAS,CAAA;CAChC,CAAA"}

package/dist/tempo/subscription/Types.js

@@ -0,0 +1,2 @@
+export {};
+//# sourceMappingURL=Types.js.map

package/dist/tempo/subscription/Types.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"Types.js","sourceRoot":"","sources":["../../../src/tempo/subscription/Types.ts"],"names":[],"mappings":""}

package/dist/tempo/subscription/index.d.ts

@@ -0,0 +1,6 @@
+export { createSubscriptionReceipt, fromRecord } from './Receipt.js';
+export { getSubscriptionRpcAllowedCalls, getSubscriptionScopes, signSubscriptionKeyAuthorization, toSubscriptionExpiryDate, toSubscriptionExpirySeconds, toSubscriptionPeriodSeconds, transferSelector, transferWithMemoSelector, verifySubscriptionKeyAuthorization, } from './KeyAuthorization.js';
+export { fromStore } from './Store.js';
+export type { ActivateResult, RenewResult, SubscriptionStore } from './Store.js';
+export type { SubscriptionAccessKey, SubscriptionAccessKeyRecord, SubscriptionCredentialPayload, SubscriptionLookup, SubscriptionPeriodUnit, SubscriptionRecord, SubscriptionReceipt, } from './Types.js';
+//# sourceMappingURL=index.d.ts.map

package/dist/tempo/subscription/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../src/tempo/subscription/index.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,yBAAyB,EAAE,UAAU,EAAE,MAAM,cAAc,CAAA;AACpE,OAAO,EACL,8BAA8B,EAC9B,qBAAqB,EACrB,gCAAgC,EAChC,wBAAwB,EACxB,2BAA2B,EAC3B,2BAA2B,EAC3B,gBAAgB,EAChB,wBAAwB,EACxB,kCAAkC,GACnC,MAAM,uBAAuB,CAAA;AAC9B,OAAO,EAAE,SAAS,EAAE,MAAM,YAAY,CAAA;AACtC,YAAY,EAAE,cAAc,EAAE,WAAW,EAAE,iBAAiB,EAAE,MAAM,YAAY,CAAA;AAChF,YAAY,EACV,qBAAqB,EACrB,2BAA2B,EAC3B,6BAA6B,EAC7B,kBAAkB,EAClB,sBAAsB,EACtB,kBAAkB,EAClB,mBAAmB,GACpB,MAAM,YAAY,CAAA"}

package/dist/tempo/subscription/index.js

@@ -0,0 +1,4 @@
+export { createSubscriptionReceipt, fromRecord } from './Receipt.js';
+export { getSubscriptionRpcAllowedCalls, getSubscriptionScopes, signSubscriptionKeyAuthorization, toSubscriptionExpiryDate, toSubscriptionExpirySeconds, toSubscriptionPeriodSeconds, transferSelector, transferWithMemoSelector, verifySubscriptionKeyAuthorization, } from './KeyAuthorization.js';
+export { fromStore } from './Store.js';
+//# sourceMappingURL=index.js.map

package/dist/tempo/subscription/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../../src/tempo/subscription/index.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,yBAAyB,EAAE,UAAU,EAAE,MAAM,cAAc,CAAA;AACpE,OAAO,EACL,8BAA8B,EAC9B,qBAAqB,EACrB,gCAAgC,EAChC,wBAAwB,EACxB,2BAA2B,EAC3B,2BAA2B,EAC3B,gBAAgB,EAChB,wBAAwB,EACxB,kCAAkC,GACnC,MAAM,uBAAuB,CAAA;AAC9B,OAAO,EAAE,SAAS,EAAE,MAAM,YAAY,CAAA"}

package/dist/zod.d.ts

@@ -1,9 +1,16 @@
 import { type ZodMiniType, z } from 'zod/mini';
 export * from 'zod/mini';
+export type DatetimeInput = string | Date;
 /** Numeric string amount (e.g., "1", "1.5", "1000000"). */
 export declare function amount(): z.ZodMiniString<string>;
 /** ISO 8601 datetime string (e.g., "2025-01-06T12:00:00Z"). */
 export declare function datetime(): z.ZodMiniString<string>;
+/** ISO 8601 datetime string or Date object, transformed to a Date. */
+export declare function datetimeInput(message?: string): z.ZodMiniPipe<z.ZodMiniUnion<readonly [z.ZodMiniString<string>, z.ZodMiniCustom<Date, Date>]>, z.ZodMiniTransform<Date, DatetimeInput>>;
+/** Converts an ISO 8601 datetime string or Date object to a Date. */
+export declare function toDate(value: DatetimeInput): Date;
+/** Serializes an ISO 8601 datetime string or Date object for wire output. */
+export declare function toDatetimeString(value: DatetimeInput): string;
 /** Hex-encoded address string (0x-prefixed, 40 hex chars). */
 export declare function address(): z.ZodMiniString<string>;
 /** Hex-encoded hash string (0x-prefixed, 64 hex chars). */

package/dist/zod.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"zod.d.ts","sourceRoot":"","sources":["../src/zod.ts"],"names":[],"mappings":"AAAA,OAAO,EAAwB,KAAK,WAAW,EAAE,CAAC,EAAE,MAAM,UAAU,CAAA;AAEpE,cAAc,UAAU,CAAA;AAExB,2DAA2D;AAC3D,wBAAgB,MAAM,4BAErB;AAED,+DAA+D;AAC/D,wBAAgB,QAAQ,4BASvB;AAED,8DAA8D;AAC9D,wBAAgB,OAAO,4BAEtB;AAED,2DAA2D;AAC3D,wBAAgB,IAAI,4BAEnB;AAED,4EAA4E;AAC5E,wBAAgB,MAAM,4BAErB;AAED,kDAAkD;AAClD,wBAAgB,SAAS,4BAExB;AAED,uEAAuE;AACvE,wBAAgB,cAAc,CAAC,MAAM,SAAS,WAAW,EAAE,MAAM,EAAE,MAAM,GAAG,WAAW,CAItF"}
+{"version":3,"file":"zod.d.ts","sourceRoot":"","sources":["../src/zod.ts"],"names":[],"mappings":"AAAA,OAAO,EAAwB,KAAK,WAAW,EAAE,CAAC,EAAE,MAAM,UAAU,CAAA;AAEpE,cAAc,UAAU,CAAA;AAExB,MAAM,MAAM,aAAa,GAAG,MAAM,GAAG,IAAI,CAAA;AAEzC,2DAA2D;AAC3D,wBAAgB,MAAM,4BAErB;AAED,+DAA+D;AAC/D,wBAAgB,QAAQ,4BASvB;AAED,sEAAsE;AACtE,wBAAgB,aAAa,CAAC,OAAO,SAA8B,2IAOlE;AAED,qEAAqE;AACrE,wBAAgB,MAAM,CAAC,KAAK,EAAE,aAAa,GAAG,IAAI,CAEjD;AAED,6EAA6E;AAC7E,wBAAgB,gBAAgB,CAAC,KAAK,EAAE,aAAa,GAAG,MAAM,CAI7D;AAED,8DAA8D;AAC9D,wBAAgB,OAAO,4BAEtB;AAED,2DAA2D;AAC3D,wBAAgB,IAAI,4BAEnB;AAED,4EAA4E;AAC5E,wBAAgB,MAAM,4BAErB;AAED,kDAAkD;AAClD,wBAAgB,SAAS,4BAExB;AAED,uEAAuE;AACvE,wBAAgB,cAAc,CAAC,MAAM,SAAS,WAAW,EAAE,MAAM,EAAE,MAAM,GAAG,WAAW,CAItF"}

package/dist/zod.js

@@ -10,6 +10,24 @@ export function datetime() {
         .string()
         .check(z.regex(/^\d{4}-\d{2}-\d{2}T\d{2}:\d{2}:\d{2}(?:\.\d+)?(?:Z|[+-]\d{2}:\d{2})$/, 'Invalid ISO 8601 datetime'));
 }
+/** ISO 8601 datetime string or Date object, transformed to a Date. */
+export function datetimeInput(message = 'Invalid ISO 8601 datetime') {
+    return z
+        .pipe(z.union([datetime(), z.custom((value) => value instanceof Date)]), z.transform(toDate))
+        .check(z.refine((value) => Number.isFinite(value.getTime()), message));
+}
+/** Converts an ISO 8601 datetime string or Date object to a Date. */
+export function toDate(value) {
+    return value instanceof Date ? value : new Date(value);
+}
+/** Serializes an ISO 8601 datetime string or Date object for wire output. */
+export function toDatetimeString(value) {
+    if (!(value instanceof Date))
+        return value;
+    if (!Number.isFinite(value.getTime()))
+        return 'Invalid Date';
+    return value.toISOString();
+}
 /** Hex-encoded address string (0x-prefixed, 40 hex chars). */
 export function address() {
     return z.string().check(z.regex(/^0x[0-9a-fA-F]{40}$/, 'Invalid address'));

package/dist/zod.js.map

@@ -1 +1 @@
-{"version":3,"file":"zod.js","sourceRoot":"","sources":["../src/zod.ts"],"names":[],"mappings":"AAAA,OAAO,EAA0C,CAAC,EAAE,MAAM,UAAU,CAAA;AAEpE,cAAc,UAAU,CAAA;AAExB,2DAA2D;AAC3D,MAAM,UAAU,MAAM;IACpB,OAAO,CAAC,CAAC,MAAM,EAAE,CAAC,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,eAAe,EAAE,gBAAgB,CAAC,CAAC,CAAA;AACrE,CAAC;AAED,+DAA+D;AAC/D,MAAM,UAAU,QAAQ;IACtB,OAAO,CAAC;SACL,MAAM,EAAE;SACR,KAAK,CACJ,CAAC,CAAC,KAAK,CACL,sEAAsE,EACtE,2BAA2B,CAC5B,CACF,CAAA;AACL,CAAC;AAED,8DAA8D;AAC9D,MAAM,UAAU,OAAO;IACrB,OAAO,CAAC,CAAC,MAAM,EAAE,CAAC,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,qBAAqB,EAAE,iBAAiB,CAAC,CAAC,CAAA;AAC5E,CAAC;AAED,2DAA2D;AAC3D,MAAM,UAAU,IAAI;IAClB,OAAO,CAAC,CAAC,MAAM,EAAE,CAAC,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,qBAAqB,EAAE,cAAc,CAAC,CAAC,CAAA;AACzE,CAAC;AAED,4EAA4E;AAC5E,MAAM,UAAU,MAAM;IACpB,OAAO,CAAC,CAAC,MAAM,EAAE,CAAC,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,6BAA6B,EAAE,gBAAgB,CAAC,CAAC,CAAA;AACnF,CAAC;AAED,kDAAkD;AAClD,MAAM,UAAU,SAAS;IACvB,OAAO,CAAC,CAAC,MAAM,EAAE,CAAC,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,kBAAkB,EAAE,mBAAmB,CAAC,CAAC,CAAA;AAC3E,CAAC;AAED,uEAAuE;AACvE,MAAM,UAAU,cAAc,CAA6B,MAAc;IACvE,IAAI,MAAM,CAAC,IAAI,CAAC,GAAG,CAAC,IAAI,KAAK,UAAU;QACrC,OAAQ,MAAqC,CAAC,IAAI,CAAC,GAAG,CAAC,SAAwB,CAAA;IACjF,OAAO,MAAM,CAAA;AACf,CAAC"}
+{"version":3,"file":"zod.js","sourceRoot":"","sources":["../src/zod.ts"],"names":[],"mappings":"AAAA,OAAO,EAA0C,CAAC,EAAE,MAAM,UAAU,CAAA;AAEpE,cAAc,UAAU,CAAA;AAIxB,2DAA2D;AAC3D,MAAM,UAAU,MAAM;IACpB,OAAO,CAAC,CAAC,MAAM,EAAE,CAAC,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,eAAe,EAAE,gBAAgB,CAAC,CAAC,CAAA;AACrE,CAAC;AAED,+DAA+D;AAC/D,MAAM,UAAU,QAAQ;IACtB,OAAO,CAAC;SACL,MAAM,EAAE;SACR,KAAK,CACJ,CAAC,CAAC,KAAK,CACL,sEAAsE,EACtE,2BAA2B,CAC5B,CACF,CAAA;AACL,CAAC;AAED,sEAAsE;AACtE,MAAM,UAAU,aAAa,CAAC,OAAO,GAAG,2BAA2B;IACjE,OAAO,CAAC;SACL,IAAI,CACH,CAAC,CAAC,KAAK,CAAC,CAAC,QAAQ,EAAE,EAAE,CAAC,CAAC,MAAM,CAAO,CAAC,KAAK,EAAE,EAAE,CAAC,KAAK,YAAY,IAAI,CAAC,CAAC,CAAC,EACvE,CAAC,CAAC,SAAS,CAAC,MAAM,CAAC,CACpB;SACA,KAAK,CAAC,CAAC,CAAC,MAAM,CAAC,CAAC,KAAK,EAAE,EAAE,CAAC,MAAM,CAAC,QAAQ,CAAC,KAAK,CAAC,OAAO,EAAE,CAAC,EAAE,OAAO,CAAC,CAAC,CAAA;AAC1E,CAAC;AAED,qEAAqE;AACrE,MAAM,UAAU,MAAM,CAAC,KAAoB;IACzC,OAAO,KAAK,YAAY,IAAI,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,IAAI,IAAI,CAAC,KAAK,CAAC,CAAA;AACxD,CAAC;AAED,6EAA6E;AAC7E,MAAM,UAAU,gBAAgB,CAAC,KAAoB;IACnD,IAAI,CAAC,CAAC,KAAK,YAAY,IAAI,CAAC;QAAE,OAAO,KAAK,CAAA;IAC1C,IAAI,CAAC,MAAM,CAAC,QAAQ,CAAC,KAAK,CAAC,OAAO,EAAE,CAAC;QAAE,OAAO,cAAc,CAAA;IAC5D,OAAO,KAAK,CAAC,WAAW,EAAE,CAAA;AAC5B,CAAC;AAED,8DAA8D;AAC9D,MAAM,UAAU,OAAO;IACrB,OAAO,CAAC,CAAC,MAAM,EAAE,CAAC,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,qBAAqB,EAAE,iBAAiB,CAAC,CAAC,CAAA;AAC5E,CAAC;AAED,2DAA2D;AAC3D,MAAM,UAAU,IAAI;IAClB,OAAO,CAAC,CAAC,MAAM,EAAE,CAAC,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,qBAAqB,EAAE,cAAc,CAAC,CAAC,CAAA;AACzE,CAAC;AAED,4EAA4E;AAC5E,MAAM,UAAU,MAAM;IACpB,OAAO,CAAC,CAAC,MAAM,EAAE,CAAC,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,6BAA6B,EAAE,gBAAgB,CAAC,CAAC,CAAA;AACnF,CAAC;AAED,kDAAkD;AAClD,MAAM,UAAU,SAAS;IACvB,OAAO,CAAC,CAAC,MAAM,EAAE,CAAC,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,kBAAkB,EAAE,mBAAmB,CAAC,CAAC,CAAA;AAC3E,CAAC;AAED,uEAAuE;AACvE,MAAM,UAAU,cAAc,CAA6B,MAAc;IACvE,IAAI,MAAM,CAAC,IAAI,CAAC,GAAG,CAAC,IAAI,KAAK,UAAU;QACrC,OAAQ,MAAqC,CAAC,IAAI,CAAC,GAAG,CAAC,SAAwB,CAAA;IACjF,OAAO,MAAM,CAAA;AACf,CAAC"}

package/package.json

@@ -1,7 +1,7 @@
 {
   "name": "mppx",
   "type": "module",
-  "version": "0.6.18",
+  "version": "0.6.20",
   "main": "./dist/index.js",
   "license": "MIT",
   "files": [
@@ -124,8 +124,8 @@
   },
   "dependencies": {
     "incur": "^0.4.5",
-    "ox": "0.14.18",
-    "zod": "^4.3.6"
+    "ox": "0.14.20",
+    "zod": "^4.4.3"
   },
   "repository": {
     "type": "git",

package/src/Challenge.test.ts

@@ -53,6 +53,19 @@ describe('from', () => {
     `)
   })
 
+  test('behavior: accepts expires as a Date', () => {
+    const challenge = Challenge.from({
+      id: 'abc123',
+      realm: 'api.example.com',
+      method: 'tempo',
+      intent: 'charge',
+      request: { amount: '1000000' },
+      expires: new Date('2025-01-06T12:00:00Z'),
+    })
+
+    expect(challenge.expires).toBe('2025-01-06T12:00:00.000Z')
+  })
+
   // ---------------------------------------------------------------------------
   // HMAC Challenge ID Test Vectors
   //

package/src/Challenge.ts

@@ -129,7 +129,7 @@ export function from<
     secretKey,
   } = parameters
 
-  const expires = parameters.expires as string
+  const expires = parameters.expires ? z.toDatetimeString(parameters.expires) : undefined
   const opaque =
     parameters.opaque ?? (meta !== undefined ? PaymentRequest.serialize(meta) : undefined)
   const id = secretKey
@@ -173,7 +173,7 @@ export declare namespace from {
     /** Optional digest of the request body. */
     digest?: string | undefined
     /** Optional expiration timestamp (ISO 8601). */
-    expires?: string | undefined
+    expires?: z.DatetimeInput | undefined
     /** Intent type (e.g., "charge", "session"). */
     intent: string
     /** Optional server-defined correlation data (serialized as `opaque` on the challenge). Flat string-to-string map; clients MUST NOT modify. */
@@ -266,7 +266,7 @@ export declare namespace fromMethod {
     /** Optional digest of the request body. */
     digest?: string | undefined
     /** Optional expiration timestamp (ISO 8601). */
-    expires?: string | undefined
+    expires?: z.DatetimeInput | undefined
     /** Optional server-defined correlation data (serialized as `opaque` on the challenge). Flat string-to-string map; clients MUST NOT modify. */
     meta?: Record<string, string> | undefined
     /** Server realm (e.g., hostname). */

package/src/Method.ts

@@ -130,10 +130,12 @@ export type Server<
   defaults extends ExactPartial<z.input<method['schema']['request']>> = {},
   transportOverride = undefined,
 > = method & {
+  authorize?: AuthorizeFn<method> | undefined
   defaults?: defaults | undefined
   html?: Html.Options | undefined
   request?: RequestFn<method> | undefined
   respond?: RespondFn<method> | undefined
+  stableBinding?: StableBindingFn<method> | undefined
   transport?: transportOverride | undefined
   verify: VerifyFn<method>
 }
@@ -155,6 +157,45 @@ export type RequestFn<method extends Method> = (
   options: RequestContext<method>,
 ) => MaybePromise<z.input<method['schema']['request']>>
 
+/**
+ * Optional authorization hook for a server-side method.
+ *
+ * Called after request normalization but before the 402 challenge path. This lets
+ * a server grant access based on existing application state (for example, an
+ * active subscription) without requiring a fresh `Payment` credential.
+ *
+ * **HTTP-only.** The `input` parameter is a Fetch `Request`; non-HTTP transports
+ * do not invoke this hook.
+ *
+ * Transports that require credential context for `withReceipt()` should return a
+ * `response` from this hook so adapters can short-circuit protected handlers.
+ */
+export type AuthorizeFn<method extends Method> = (parameters: {
+  challenge: Challenge.Challenge<
+    z.output<method['schema']['request']>,
+    method['intent'],
+    method['name']
+  >
+  input: globalThis.Request
+  request: z.output<method['schema']['request']>
+}) => MaybePromise<AuthorizeResult | undefined>
+
+/** Successful result returned from an {@link AuthorizeFn}. */
+export type AuthorizeResult = {
+  receipt: Receipt.Receipt
+  response?: globalThis.Response | undefined
+}
+
+/**
+ * Produces the stable request fields used to bind credentials to a route.
+ *
+ * Methods can override this to opt into additional request fields beyond the
+ * default amount/currency/recipient binding used by generic methods.
+ */
+export type StableBindingFn<method extends Method> = (
+  request: z.output<method['schema']['request']>,
+) => Record<string, unknown>
+
 /** Verification function for a single method. */
 export type VerifyFn<method extends Method> = (
   parameters: VerifyContext<method>,
@@ -251,13 +292,15 @@ export function toServer<
   method: method,
   options: toServer.Options<method, defaults, transportOverride>,
 ): Server<method, defaults, transportOverride> {
-  const { defaults, html, request, respond, transport, verify } = options
+  const { authorize, defaults, html, request, respond, stableBinding, transport, verify } = options
   return {
     ...method,
+    authorize,
     defaults,
     html,
     request,
     respond,
+    stableBinding,
     transport,
     verify,
   } as Server<method, defaults, transportOverride>
@@ -269,10 +312,12 @@ export declare namespace toServer {
     defaults extends RequestDefaults<method> = {},
     transportOverride extends Transport.AnyTransport | undefined = undefined,
   > = {
+    authorize?: AuthorizeFn<method> | undefined
     defaults?: defaults | undefined
     html?: Html.Options | undefined
     request?: RequestFn<method> | undefined
     respond?: RespondFn<method> | undefined
+    stableBinding?: StableBindingFn<method> | undefined
     transport?: transportOverride | undefined
     verify: VerifyFn<method>
   }

package/src/Receipt.ts

@@ -19,6 +19,8 @@ export const Schema = z.object({
   reference: z.string(),
   /** Optional external reference ID echoed from the credential payload. */
   externalId: z.optional(z.string()),
+  /** Optional server-issued subscription identifier for recurring payments. */
+  subscriptionId: z.optional(z.string()),
   /** Payment status. Always "success" — failures use 402 + Problem Details. */
   status: z.literal('success'),
   /** RFC 3339 settlement timestamp. */

package/src/client/Methods.ts

@@ -1,3 +1,4 @@
 export { stripe } from '../stripe/client/index.js'
+export { subscription } from '../tempo/client/Subscription.js'
 export { tempo } from '../tempo/client/index.js'
 export { session } from '../tempo/client/Session.js'