npm - mppx - Versions diffs - 0.6.27 → 0.6.29 - Mend

mppx 0.6.27 → 0.6.29

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (295) hide show

package/CHANGELOG.md +25 -0
package/dist/Challenge.d.ts.map +1 -1
package/dist/Challenge.js +16 -10
package/dist/Challenge.js.map +1 -1
package/dist/Method.d.ts +1 -1
package/dist/Method.d.ts.map +1 -1
package/dist/Store.d.ts +32 -9
package/dist/Store.d.ts.map +1 -1
package/dist/Store.js +42 -10
package/dist/Store.js.map +1 -1
package/dist/client/Methods.d.ts +1 -0
package/dist/client/Methods.d.ts.map +1 -1
package/dist/client/Methods.js +1 -0
package/dist/client/Methods.js.map +1 -1
package/dist/client/Mppx.d.ts +3 -3
package/dist/client/Mppx.d.ts.map +1 -1
package/dist/client/Mppx.js +1 -0
package/dist/client/Mppx.js.map +1 -1
package/dist/client/Transport.d.ts +10 -3
package/dist/client/Transport.d.ts.map +1 -1
package/dist/client/Transport.js +60 -7
package/dist/client/Transport.js.map +1 -1
package/dist/client/index.d.ts +1 -1
package/dist/client/index.d.ts.map +1 -1
package/dist/client/index.js +1 -1
package/dist/client/index.js.map +1 -1
package/dist/client/internal/Fetch.d.ts +3 -0
package/dist/client/internal/Fetch.d.ts.map +1 -1
package/dist/client/internal/Fetch.js +12 -20
package/dist/client/internal/Fetch.js.map +1 -1
package/dist/evm/Assets.d.ts +2 -0
package/dist/evm/Assets.d.ts.map +1 -0
package/dist/evm/Assets.js +2 -0
package/dist/evm/Assets.js.map +1 -0
package/dist/evm/Chains.d.ts +5 -0
package/dist/evm/Chains.d.ts.map +1 -0
package/dist/evm/Chains.js +5 -0
package/dist/evm/Chains.js.map +1 -0
package/dist/evm/Methods.d.ts +68 -0
package/dist/evm/Methods.d.ts.map +1 -0
package/dist/evm/Methods.js +28 -0
package/dist/evm/Methods.js.map +1 -0
package/dist/evm/Types.d.ts +143 -0
package/dist/evm/Types.d.ts.map +1 -0
package/dist/evm/Types.js +102 -0
package/dist/evm/Types.js.map +1 -0
package/dist/evm/client/Charge.d.ts +102 -0
package/dist/evm/client/Charge.d.ts.map +1 -0
package/dist/evm/client/Charge.js +141 -0
package/dist/evm/client/Charge.js.map +1 -0
package/dist/evm/client/Methods.d.ts +81 -0
package/dist/evm/client/Methods.d.ts.map +1 -0
package/dist/evm/client/Methods.js +16 -0
package/dist/evm/client/Methods.js.map +1 -0
package/dist/evm/client/index.d.ts +6 -0
package/dist/evm/client/index.d.ts.map +1 -0
package/dist/evm/client/index.js +6 -0
package/dist/evm/client/index.js.map +1 -0
package/dist/evm/index.d.ts +9 -0
package/dist/evm/index.d.ts.map +1 -0
package/dist/evm/index.js +8 -0
package/dist/evm/index.js.map +1 -0
package/dist/evm/server/Charge.d.ts +62 -0
package/dist/evm/server/Charge.d.ts.map +1 -0
package/dist/evm/server/Charge.js +172 -0
package/dist/evm/server/Charge.js.map +1 -0
package/dist/evm/server/Methods.d.ts +80 -0
package/dist/evm/server/Methods.d.ts.map +1 -0
package/dist/evm/server/Methods.js +16 -0
package/dist/evm/server/Methods.js.map +1 -0
package/dist/evm/server/index.d.ts +6 -0
package/dist/evm/server/index.d.ts.map +1 -0
package/dist/evm/server/index.js +6 -0
package/dist/evm/server/index.js.map +1 -0
package/dist/index.d.ts +2 -0
package/dist/index.d.ts.map +1 -1
package/dist/index.js +2 -0
package/dist/index.js.map +1 -1
package/dist/internal/HeaderCodec.d.ts +18 -0
package/dist/internal/HeaderCodec.d.ts.map +1 -0
package/dist/internal/HeaderCodec.js +31 -0
package/dist/internal/HeaderCodec.js.map +1 -0
package/dist/middlewares/elysia.d.ts.map +1 -1
package/dist/middlewares/elysia.js +2 -3
package/dist/middlewares/elysia.js.map +1 -1
package/dist/middlewares/express.js +2 -1
package/dist/middlewares/express.js.map +1 -1
package/dist/proxy/internal/Headers.d.ts +13 -1
package/dist/proxy/internal/Headers.d.ts.map +1 -1
package/dist/proxy/internal/Headers.js +25 -2
package/dist/proxy/internal/Headers.js.map +1 -1
package/dist/proxy/services/openai.d.ts.map +1 -1
package/dist/proxy/services/openai.js +2 -0
package/dist/proxy/services/openai.js.map +1 -1
package/dist/server/Methods.d.ts +1 -0
package/dist/server/Methods.d.ts.map +1 -1
package/dist/server/Methods.js +1 -0
package/dist/server/Methods.js.map +1 -1
package/dist/server/Mppx.d.ts.map +1 -1
package/dist/server/Mppx.js +90 -12
package/dist/server/Mppx.js.map +1 -1
package/dist/server/Transport.d.ts +10 -0
package/dist/server/Transport.d.ts.map +1 -1
package/dist/server/Transport.js +9 -0
package/dist/server/Transport.js.map +1 -1
package/dist/server/index.d.ts +1 -1
package/dist/server/index.d.ts.map +1 -1
package/dist/server/index.js +1 -1
package/dist/server/index.js.map +1 -1
package/dist/stripe/server/Charge.d.ts +31 -1
package/dist/stripe/server/Charge.d.ts.map +1 -1
package/dist/stripe/server/Charge.js +88 -11
package/dist/stripe/server/Charge.js.map +1 -1
package/dist/stripe/server/internal/html.gen.d.ts +1 -1
package/dist/stripe/server/internal/html.gen.d.ts.map +1 -1
package/dist/stripe/server/internal/html.gen.js +1 -1
package/dist/stripe/server/internal/html.gen.js.map +1 -1
package/dist/tempo/client/ChannelOps.d.ts +3 -3
package/dist/tempo/client/ChannelOps.d.ts.map +1 -1
package/dist/tempo/client/ChannelOps.js +13 -6
package/dist/tempo/client/ChannelOps.js.map +1 -1
package/dist/tempo/client/Charge.d.ts.map +1 -1
package/dist/tempo/client/Charge.js +8 -5
package/dist/tempo/client/Charge.js.map +1 -1
package/dist/tempo/client/Methods.d.ts +0 -1
package/dist/tempo/client/Methods.d.ts.map +1 -1
package/dist/tempo/client/Session.d.ts +2 -4
package/dist/tempo/client/Session.d.ts.map +1 -1
package/dist/tempo/client/Session.js +10 -12
package/dist/tempo/client/Session.js.map +1 -1
package/dist/tempo/client/SessionManager.d.ts +3 -3
package/dist/tempo/client/SessionManager.d.ts.map +1 -1
package/dist/tempo/client/SessionManager.js +1 -1
package/dist/tempo/client/SessionManager.js.map +1 -1
package/dist/tempo/internal/account.d.ts +5 -0
package/dist/tempo/internal/account.d.ts.map +1 -1
package/dist/tempo/internal/account.js +8 -0
package/dist/tempo/internal/account.js.map +1 -1
package/dist/tempo/internal/fee-payer.d.ts.map +1 -1
package/dist/tempo/internal/fee-payer.js +5 -2
package/dist/tempo/internal/fee-payer.js.map +1 -1
package/dist/tempo/server/Charge.d.ts +6 -0
package/dist/tempo/server/Charge.d.ts.map +1 -1
package/dist/tempo/server/Charge.js +30 -3
package/dist/tempo/server/Charge.js.map +1 -1
package/dist/tempo/server/Session.d.ts +6 -0
package/dist/tempo/server/Session.d.ts.map +1 -1
package/dist/tempo/server/Session.js +14 -13
package/dist/tempo/server/Session.js.map +1 -1
package/dist/tempo/server/Subscription.d.ts +6 -0
package/dist/tempo/server/Subscription.d.ts.map +1 -1
package/dist/tempo/server/Subscription.js +1 -1
package/dist/tempo/server/Subscription.js.map +1 -1
package/dist/tempo/server/internal/html.gen.d.ts +1 -1
package/dist/tempo/server/internal/html.gen.d.ts.map +1 -1
package/dist/tempo/server/internal/html.gen.js +1 -1
package/dist/tempo/server/internal/html.gen.js.map +1 -1
package/dist/tempo/session/Chain.d.ts +2 -0
package/dist/tempo/session/Chain.d.ts.map +1 -1
package/dist/tempo/session/Chain.js +8 -8
package/dist/tempo/session/Chain.js.map +1 -1
package/dist/tempo/session/Voucher.d.ts +4 -3
package/dist/tempo/session/Voucher.d.ts.map +1 -1
package/dist/tempo/session/Voucher.js +71 -44
package/dist/tempo/session/Voucher.js.map +1 -1
package/dist/tempo/session/Ws.d.ts.map +1 -1
package/dist/tempo/session/Ws.js +15 -0
package/dist/tempo/session/Ws.js.map +1 -1
package/dist/tempo/subscription/KeyAuthorization.d.ts +2 -2
package/dist/x402/Assets.d.ts +29 -0
package/dist/x402/Assets.d.ts.map +1 -0
package/dist/x402/Assets.js +46 -0
package/dist/x402/Assets.js.map +1 -0
package/dist/x402/Header.d.ts +14 -0
package/dist/x402/Header.d.ts.map +1 -0
package/dist/x402/Header.js +18 -0
package/dist/x402/Header.js.map +1 -0
package/dist/x402/Types.d.ts +289 -0
package/dist/x402/Types.d.ts.map +1 -0
package/dist/x402/Types.js +139 -0
package/dist/x402/Types.js.map +1 -0
package/dist/x402/client/Exact.d.ts +38 -0
package/dist/x402/client/Exact.d.ts.map +1 -0
package/dist/x402/client/Exact.js +141 -0
package/dist/x402/client/Exact.js.map +1 -0
package/dist/x402/index.d.ts +6 -0
package/dist/x402/index.d.ts.map +1 -0
package/dist/x402/index.js +6 -0
package/dist/x402/index.js.map +1 -0
package/dist/x402/internal/ChallengeBrand.d.ts +5 -0
package/dist/x402/internal/ChallengeBrand.d.ts.map +1 -0
package/dist/x402/internal/ChallengeBrand.js +13 -0
package/dist/x402/internal/ChallengeBrand.js.map +1 -0
package/dist/x402/internal/RouteBinding.d.ts +8 -0
package/dist/x402/internal/RouteBinding.d.ts.map +1 -0
package/dist/x402/internal/RouteBinding.js +12 -0
package/dist/x402/internal/RouteBinding.js.map +1 -0
package/dist/x402/server/EvmCharge.d.ts +50 -0
package/dist/x402/server/EvmCharge.d.ts.map +1 -0
package/dist/x402/server/EvmCharge.js +301 -0
package/dist/x402/server/EvmCharge.js.map +1 -0
package/dist/x402/server/Facilitator.d.ts +12 -0
package/dist/x402/server/Facilitator.d.ts.map +1 -0
package/dist/x402/server/Facilitator.js +42 -0
package/dist/x402/server/Facilitator.js.map +1 -0
package/package.json +41 -21
package/src/Challenge.test.ts +28 -0
package/src/Challenge.ts +17 -10
package/src/Method.ts +1 -1
package/src/Store.test-d.ts +58 -0
package/src/Store.test.ts +77 -0
package/src/Store.ts +155 -74
package/src/client/Methods.ts +1 -0
package/src/client/Mppx.ts +4 -3
package/src/client/Transport.test.ts +165 -30
package/src/client/Transport.ts +76 -8
package/src/client/index.ts +1 -1
package/src/client/internal/Fetch.test.ts +31 -2
package/src/client/internal/Fetch.ts +26 -19
package/src/evm/Assets.ts +1 -0
package/src/evm/Chains.ts +5 -0
package/src/evm/Methods.ts +44 -0
package/src/evm/PublicInterface.test-d.ts +109 -0
package/src/evm/Types.ts +140 -0
package/src/evm/client/Charge.test.ts +99 -0
package/src/evm/client/Charge.ts +198 -0
package/src/evm/client/Methods.ts +19 -0
package/src/evm/client/index.ts +5 -0
package/src/evm/index.ts +13 -0
package/src/evm/server/Charge.test.ts +199 -0
package/src/evm/server/Charge.ts +283 -0
package/src/evm/server/Methods.ts +22 -0
package/src/evm/server/index.ts +5 -0
package/src/index.ts +2 -0
package/src/internal/HeaderCodec.ts +36 -0
package/src/middlewares/elysia.test.ts +25 -0
package/src/middlewares/elysia.ts +1 -2
package/src/middlewares/express.test.ts +28 -0
package/src/middlewares/express.ts +1 -1
package/src/middlewares/hono.test.ts +138 -2
package/src/middlewares/nextjs.test.ts +22 -0
package/src/proxy/internal/Headers.test.ts +38 -0
package/src/proxy/internal/Headers.ts +26 -2
package/src/proxy/services/openai.test.ts +57 -1
package/src/proxy/services/openai.ts +2 -0
package/src/server/Methods.ts +1 -0
package/src/server/Mppx.test.ts +244 -1
package/src/server/Mppx.ts +124 -11
package/src/server/NodeListener.test.ts +28 -1
package/src/server/Transport.test.ts +19 -0
package/src/server/Transport.ts +20 -0
package/src/server/index.ts +1 -1
package/src/stripe/server/Charge.test.ts +215 -1
package/src/stripe/server/Charge.ts +150 -20
package/src/stripe/server/internal/html.gen.ts +1 -1
package/src/tempo/AccessKeyAuthorization.test.ts +231 -0
package/src/tempo/client/ChannelOps.test.ts +61 -7
package/src/tempo/client/ChannelOps.ts +18 -7
package/src/tempo/client/Charge.test.ts +126 -0
package/src/tempo/client/Charge.ts +10 -6
package/src/tempo/client/Session.test.ts +130 -1
package/src/tempo/client/Session.ts +12 -19
package/src/tempo/client/SessionManager.test.ts +69 -2
package/src/tempo/client/SessionManager.ts +4 -4
package/src/tempo/internal/account.ts +13 -0
package/src/tempo/internal/fee-payer.test.ts +32 -2
package/src/tempo/internal/fee-payer.ts +6 -2
package/src/tempo/server/Charge.test.ts +91 -1
package/src/tempo/server/Charge.ts +48 -2
package/src/tempo/server/Session.test.ts +30 -0
package/src/tempo/server/Session.ts +24 -17
package/src/tempo/server/Subscription.ts +7 -1
package/src/tempo/server/internal/html.gen.ts +1 -1
package/src/tempo/session/Chain.test.ts +4 -4
package/src/tempo/session/Chain.ts +10 -6
package/src/tempo/session/ChannelStore.test.ts +21 -0
package/src/tempo/session/Voucher.test.ts +230 -1
package/src/tempo/session/Voucher.ts +96 -48
package/src/tempo/session/Ws.test.ts +71 -0
package/src/tempo/session/Ws.ts +13 -0
package/src/tempo/subscription/Store.test.ts +55 -0
package/src/x402/Assets.ts +65 -0
package/src/x402/Exact.e2e.test.ts +448 -0
package/src/x402/Header.test.ts +73 -0
package/src/x402/Header.ts +34 -0
package/src/x402/PublicInterface.test-d.ts +39 -0
package/src/x402/Types.ts +248 -0
package/src/x402/client/Exact.test.ts +180 -0
package/src/x402/client/Exact.ts +198 -0
package/src/x402/index.ts +5 -0
package/src/x402/internal/ChallengeBrand.ts +14 -0
package/src/x402/internal/RouteBinding.ts +18 -0
package/src/x402/server/EvmCharge.ts +394 -0
package/src/x402/server/Facilitator.test.ts +111 -0
package/src/x402/server/Facilitator.ts +56 -0

package/src/evm/PublicInterface.test-d.ts ADDED Viewed

@@ -0,0 +1,109 @@
+import * as evmRoot from 'mppx/evm'
+import {
+  assets as clientAssets,
+  chains as clientChains,
+  charge as clientCharge,
+  evm as clientEvm,
+} from 'mppx/evm/client'
+import { assets as serverAssets, charge as serverCharge, evm as serverEvm } from 'mppx/evm/server'
+import type { Account } from 'viem'
+import { describe, expectTypeOf, test } from 'vp/test'
+import { Mppx as ClientMppx } from '../client/index.js'
+import { Mppx as ServerMppx } from '../server/index.js'
+const account = {} as Account
+const recipient = '0x209693Bc6afc0C5328bA36FaF03C514EF312287C'
+const secretKey = 'test-secret'
+const settle = async () => ({
+  reference: `0x${'1'.repeat(64)}` as `0x${string}`,
+})
+const facilitator = {
+  settle: async () => ({
+    network: 'eip155:8453',
+    success: true,
+    transaction: `0x${'1'.repeat(64)}` as `0x${string}`,
+  }),
+  verify: async () => ({ isValid: true }),
+}
+describe('evm public interface', () => {
+  test('exports EVM asset metadata from root and subpaths', () => {
+    expectTypeOf(evmRoot.assets.base.USDC).toMatchTypeOf<typeof serverAssets.base.USDC>()
+    expectTypeOf(clientAssets.baseSepolia.USDC).toMatchTypeOf<
+      typeof serverAssets.baseSepolia.USDC
+    >()
+    expectTypeOf(evmRoot.chains.base).toMatchTypeOf<number>()
+    expectTypeOf(clientChains.baseSepolia).toMatchTypeOf<number>()
+  })
+  test('server charge works through subpath exports and tuple helper', () => {
+    const direct = serverCharge({
+      currency: serverAssets.base.USDC,
+      recipient,
+      x402: { facilitator },
+    })
+    expectTypeOf(direct.name).toEqualTypeOf<'evm'>()
+    expectTypeOf(direct.intent).toEqualTypeOf<'charge'>()
+    const mppx = ServerMppx.create({
+      methods: [
+        serverEvm({
+          currency: serverAssets.base.USDC,
+          recipient,
+          x402: { facilitator },
+        }),
+      ],
+      secretKey,
+    })
+    expectTypeOf(mppx.evm.charge).toBeFunction()
+    expectTypeOf(mppx.evm.charge({ amount: '0.01' })).toBeFunction()
+  })
+  test('server charge accepts a custom settlement override', () => {
+    const direct = serverCharge({
+      currency: serverAssets.base.USDC,
+      recipient,
+      settle,
+    })
+    expectTypeOf(direct.name).toEqualTypeOf<'evm'>()
+    expectTypeOf(direct.intent).toEqualTypeOf<'charge'>()
+  })
+  test('client charge works through subpath exports and tuple helper', () => {
+    const direct = clientCharge({
+      account,
+      currencies: [clientAssets.baseSepolia.USDC],
+      maxAmount: '0.01',
+      networks: [clientChains.baseSepolia],
+    })
+    expectTypeOf(direct.name).toEqualTypeOf<'evm'>()
+    expectTypeOf(direct.intent).toEqualTypeOf<'charge'>()
+    const mppx = ClientMppx.create({
+      methods: [
+        clientEvm({
+          account,
+          currencies: [clientAssets.baseSepolia.USDC],
+          maxAmount: '0.01',
+          networks: [clientEvm.chains.baseSepolia],
+        }),
+      ],
+      polyfill: false,
+    })
+    expectTypeOf(mppx.createCredential).toBeFunction()
+  })
+  test('server charge rejects x402 exact config shape', () => {
+    serverCharge({
+      // @ts-expect-error evm.charge takes shared charge config, not x402 exact config.
+      config: {
+        currency: serverAssets.base.USDC,
+        recipient,
+        x402: { facilitator },
+      },
+    })
+  })
+})

package/src/evm/Types.ts ADDED Viewed

@@ -0,0 +1,140 @@
+import { Bytes, Hash } from 'ox'
+import * as z from '../zod.js'
+/** Payment method name for Payment-auth EVM challenges. */
+export const paymentMethod = 'evm' as const
+/** Payment intent name for one-time EVM charges. */
+export const chargeIntent = 'charge' as const
+/** CAIP-2 namespace prefix for EVM networks. */
+export const evmNetworkPrefix = 'eip155:' as const
+/** EIP-3009 transfer authorization method identifier. */
+export const eip3009 = 'eip3009' as const
+/** EVM charge credential types supported by this package. */
+export const credentialTypes = ['authorization'] as const
+const atomicAmount = z.string().check(z.regex(/^\d+$/, 'Invalid atomic amount'))
+/** EIP-3009 domain metadata for `transferWithAuthorization` signatures. */
+export const AuthorizationConfigSchema = z.object({
+  name: z.string().check(z.minLength(1)),
+  version: z.string().check(z.minLength(1)),
+})
+export type AuthorizationConfig = z.infer<typeof AuthorizationConfigSchema>
+/** CAIP-2 EVM network identifier. */
+export type EvmNetwork = `${typeof evmNetworkPrefix}${number}`
+/** EVM-specific charge method details. */
+export const MethodDetailsSchema = z.object({
+  chainId: z.number(),
+  credentialTypes: z.optional(z.array(z.enum(credentialTypes)).check(z.minLength(1))),
+  decimals: z.optional(z.number()),
+  permit2Address: z.optional(z.address()),
+  splits: z.optional(
+    z.array(
+      z.object({
+        amount: atomicAmount,
+        recipient: z.address(),
+      }),
+    ),
+  ),
+})
+export type MethodDetails = z.infer<typeof MethodDetailsSchema>
+/** Canonical Payment-auth EVM charge request. */
+export const ChargeRequestSchema = z.object({
+  amount: atomicAmount,
+  currency: z.address(),
+  description: z.optional(z.string()),
+  externalId: z.optional(z.string()),
+  methodDetails: MethodDetailsSchema,
+  recipient: z.address(),
+})
+export type ChargeRequest = z.infer<typeof ChargeRequestSchema>
+/** Public route input before display-unit amounts are converted to atomic units. */
+export const ChargeRequestInputSchema = z.object({
+  amount: z.amount(),
+  chainId: z.number(),
+  currency: z.address(),
+  credentialTypes: z.optional(z.array(z.enum(credentialTypes)).check(z.minLength(1))),
+  decimals: z.number(),
+  description: z.optional(z.string()),
+  externalId: z.optional(z.string()),
+  permit2Address: z.optional(z.address()),
+  recipient: z.address(),
+  splits: z.optional(
+    z.array(
+      z.object({
+        amount: atomicAmount,
+        recipient: z.address(),
+      }),
+    ),
+  ),
+})
+export type ChargeRequestInput = z.infer<typeof ChargeRequestInputSchema>
+/** Payment-auth EVM authorization credential payload. */
+export const AuthorizationPayloadSchema = z.object({
+  from: z.address(),
+  nonce: z.hash(),
+  signature: z.signature(),
+  to: z.address(),
+  type: z.literal('authorization'),
+  validAfter: atomicAmount,
+  validBefore: atomicAmount,
+  value: atomicAmount,
+})
+export type AuthorizationPayload = z.infer<typeof AuthorizationPayloadSchema>
+/** Payment-auth EVM charge credential payload. */
+export const ChargePayloadSchema = AuthorizationPayloadSchema
+export type ChargePayload = z.infer<typeof ChargePayloadSchema>
+/** EIP-712 type definition for EIP-3009 `transferWithAuthorization`. */
+export const authorizationTypes = {
+  TransferWithAuthorization: [
+    { name: 'from', type: 'address' },
+    { name: 'to', type: 'address' },
+    { name: 'value', type: 'uint256' },
+    { name: 'validAfter', type: 'uint256' },
+    { name: 'validBefore', type: 'uint256' },
+    { name: 'nonce', type: 'bytes32' },
+  ],
+} as const
+/** Returns the EIP-712 domain for an EIP-3009 authorization signature. */
+export function authorizationDomain(parameters: {
+  authorization: AuthorizationConfig
+  chainId: number
+  currency: `0x${string}`
+}) {
+  return {
+    chainId: parameters.chainId,
+    name: parameters.authorization.name,
+    verifyingContract: parameters.currency,
+    version: parameters.authorization.version,
+  } as const
+}
+/** Computes the Payment-auth EVM challenge hash used as the EIP-3009 nonce. */
+export function challengeHash(challenge: { id: string; realm: string }): `0x${string}` {
+  return Hash.keccak256(Bytes.fromString(`${challenge.id}${challenge.realm}`), {
+    as: 'Hex',
+  }) as `0x${string}`
+}
+/** Converts a chain ID to the CAIP-2 EVM network identifier. */
+export function networkOf(chainId: number): EvmNetwork {
+  return `${evmNetworkPrefix}${chainId}`
+}
+/** Formats an EVM address as a did:pkh source identifier. */
+export function toSource(parameters: { address: `0x${string}`; chainId: number }) {
+  return `did:pkh:eip155:${parameters.chainId}:${parameters.address}` as const
+}

package/src/evm/client/Charge.test.ts ADDED Viewed

@@ -0,0 +1,99 @@
+import { Challenge } from 'mppx'
+import type { Account } from 'viem'
+import { describe, expect, test, vi } from 'vp/test'
+import * as Assets from '../Assets.js'
+import * as Chains from '../Chains.js'
+import { charge } from './Charge.js'
+const account = {
+  address: '0x1111111111111111111111111111111111111111',
+  signTypedData: vi.fn(async () => '0x1234'),
+} as unknown as Account
+describe('evm charge client', () => {
+  test('does not sign x402 payloads from unbranded Payment-auth challenges', async () => {
+    const signTypedData = vi.fn(async () => '0x1234')
+    const client = charge({
+      account: {
+        ...account,
+        signTypedData,
+      } as unknown as Account,
+      currencies: [Assets.baseSepolia.USDC],
+      maxAmount: '0.01',
+      networks: [Chains.baseSepolia],
+    })
+    const challenge = Challenge.from({
+      id: 'attacker-controlled',
+      intent: 'charge',
+      method: 'evm',
+      realm: 'api.example.com',
+      request: {
+        amount: '10000',
+        asset: Assets.baseSepolia.USDC.address,
+        maxTimeoutSeconds: 60,
+        network: 'eip155:84532',
+        payTo: '0x2222222222222222222222222222222222222222',
+        scheme: 'exact',
+      },
+    })
+    await expect(client.createCredential({ challenge } as never)).rejects.toThrow()
+    expect(signTypedData).not.toHaveBeenCalled()
+  })
+  test('does not use server-supplied decimals for maxAmount policy', async () => {
+    const client = charge({
+      account,
+      maxAmount: '1',
+    })
+    const challenge = Challenge.from({
+      id: 'native',
+      intent: 'charge',
+      method: 'evm',
+      realm: 'api.example.com',
+      request: {
+        amount: '1000000000000000000',
+        currency: Assets.baseSepolia.USDC.address,
+        methodDetails: {
+          chainId: 84532,
+          credentialTypes: ['authorization'],
+          decimals: 18,
+        },
+        recipient: '0x2222222222222222222222222222222222222222',
+      },
+    })
+    await expect(client.createCredential({ challenge } as never)).rejects.toThrow(
+      'EVM charge maxAmount requires currency decimals.',
+    )
+  })
+  test('requires network policy for raw hex currencies', async () => {
+    const client = charge({
+      account,
+      currencies: [Assets.baseSepolia.USDC.address],
+      maxAmount: '1',
+    })
+    const challenge = Challenge.from({
+      id: 'native',
+      intent: 'charge',
+      method: 'evm',
+      realm: 'api.example.com',
+      request: {
+        amount: '1000000',
+        currency: Assets.baseSepolia.USDC.address,
+        methodDetails: {
+          chainId: 84532,
+          credentialTypes: ['authorization'],
+          decimals: 6,
+        },
+        recipient: '0x2222222222222222222222222222222222222222',
+      },
+    })
+    await expect(client.createCredential({ challenge } as never)).rejects.toThrow(
+      'EVM raw currency allowlists require networks.',
+    )
+  })
+})

package/src/evm/client/Charge.ts ADDED Viewed

@@ -0,0 +1,198 @@
+import type { Account } from 'viem'
+import { getAddress, parseUnits } from 'viem'
+import * as Credential from '../../Credential.js'
+import * as Method from '../../Method.js'
+import * as x402_Exact from '../../x402/client/Exact.js'
+import * as x402_ChallengeBrand from '../../x402/internal/ChallengeBrand.js'
+import * as z from '../../zod.js'
+import * as Assets from '../Assets.js'
+import * as Methods from '../Methods.js'
+import * as Types from '../Types.js'
+/**
+ * Creates an EVM charge client method.
+ *
+ * Signs native Payment-auth `authorization` credentials for EVM charges. It
+ * also keeps x402 exact signing for x402 compatibility challenges.
+ */
+export function charge(parameters: charge.Parameters) {
+  return Method.toClient(Methods.charge, {
+    context: z.object({
+      account: z.optional(z.custom<Account>()),
+    }),
+    async createCredential({ challenge, context }) {
+      if (isX402Challenge(challenge))
+        return x402_Exact.createCredential({
+          challenge: challenge as never,
+          config: parameters as x402_Exact.Config,
+          context,
+        })
+      const account = (context?.account ?? parameters.account) as charge.Signer
+      if (!account.signTypedData) throw new Error('EVM authorization requires a typed-data signer.')
+      const request = challenge.request as Types.ChargeRequest
+      assertPolicy(parameters, request)
+      if (!request.methodDetails.credentialTypes?.includes('authorization')) {
+        throw new Error('EVM authorization is not accepted by this challenge.')
+      }
+      if (request.methodDetails.splits?.length) {
+        throw new Error('EVM authorization does not support payment splits.')
+      }
+      const authorization = resolveAuthorization(parameters, request)
+      const validBefore = challenge.expires
+        ? Math.floor(new Date(challenge.expires).getTime() / 1000).toString()
+        : (Math.floor(Date.now() / 1000) + 300).toString()
+      const payload: Types.AuthorizationPayload = {
+        from: getAddress(account.address),
+        nonce: Types.challengeHash(challenge),
+        signature: await account.signTypedData({
+          domain: Types.authorizationDomain({
+            authorization,
+            chainId: request.methodDetails.chainId,
+            currency: request.currency as `0x${string}`,
+          }),
+          message: {
+            from: getAddress(account.address),
+            nonce: Types.challengeHash(challenge),
+            to: getAddress(request.recipient),
+            validAfter: 0n,
+            validBefore: BigInt(validBefore),
+            value: BigInt(request.amount),
+          },
+          primaryType: 'TransferWithAuthorization',
+          types: Types.authorizationTypes,
+        }),
+        to: getAddress(request.recipient),
+        type: 'authorization',
+        validAfter: '0',
+        validBefore,
+        value: request.amount,
+      }
+      return Credential.serialize(
+        Credential.from({
+          challenge,
+          payload,
+          source: Types.toSource({
+            address: getAddress(account.address),
+            chainId: request.methodDetails.chainId,
+          }),
+        }),
+      )
+    },
+  })
+}
+export declare namespace charge {
+  type Signer = Account & {
+    signTypedData?: (parameters: any) => Promise<`0x${string}`>
+  }
+  type Parameters = {
+    /** Account used to sign EVM charge credentials. */
+    account: Account
+    /** EIP-3009 token domain metadata for custom currencies. */
+    authorization?: Types.AuthorizationConfig | undefined
+    /** Optional token decimals used to parse `maxAmount` when currency metadata is not provided. */
+    decimals?: number | undefined
+    /** Optional maximum display-unit amount the client is willing to pay. */
+    maxAmount?: string | undefined
+    /** Optional maximum atomic amount the client is willing to pay. */
+    maxAtomicAmount?: string | undefined
+    /** Optional allowlist of supported EVM chain IDs. */
+    networks?: readonly number[] | undefined
+    /** Optional allowlist of supported currencies. */
+    currencies?: readonly (`0x${string}` | Assets.KnownAsset)[] | undefined
+    /** Legacy alias for `currencies`. */
+    assets?: readonly (`0x${string}` | Assets.KnownAsset)[] | undefined
+  }
+}
+function isX402Challenge(challenge: { request: Record<string, unknown> }) {
+  return (
+    x402_ChallengeBrand.is(challenge) &&
+    challenge.request.scheme === 'exact' &&
+    typeof challenge.request.network === 'string'
+  )
+}
+function assertPolicy(parameters: charge.Parameters, request: Types.ChargeRequest) {
+  const chainId = request.methodDetails.chainId
+  const network = Types.networkOf(chainId)
+  if (parameters.networks && !parameters.networks.includes(chainId))
+    throw new Error(`EVM chain ID is not allowed: ${chainId}.`)
+  const currencies = parameters.currencies ?? parameters.assets
+  if (currencies?.some((currency) => !Assets.isAsset(currency)) && !parameters.networks?.length)
+    throw new Error('EVM raw currency allowlists require networks.')
+  if (currencies) {
+    const acceptedCurrency = getAddress(request.currency as `0x${string}`)
+    const allowed = currencies.some((currency) =>
+      currencyMatches(currency, acceptedCurrency, network),
+    )
+    if (!allowed) throw new Error(`EVM currency is not allowed: ${acceptedCurrency}.`)
+  }
+  if (
+    parameters.maxAtomicAmount !== undefined &&
+    BigInt(request.amount) > BigInt(parameters.maxAtomicAmount)
+  )
+    throw new Error('EVM charge amount exceeds maxAtomicAmount.')
+  if (parameters.maxAmount !== undefined) {
+    const decimals = decimalsOfAcceptedCurrency(parameters, request)
+    if (decimals === undefined) throw new Error('EVM charge maxAmount requires currency decimals.')
+    if (BigInt(request.amount) > parseUnits(parameters.maxAmount, decimals))
+      throw new Error('EVM charge amount exceeds maxAmount.')
+  }
+}
+function resolveAuthorization(
+  parameters: charge.Parameters,
+  request: Types.ChargeRequest,
+): Types.AuthorizationConfig {
+  const currencies = parameters.currencies ?? parameters.assets
+  const acceptedCurrency = getAddress(request.currency as `0x${string}`)
+  const network = Types.networkOf(request.methodDetails.chainId)
+  const currency = currencies?.find((currency) =>
+    currencyMatches(currency, acceptedCurrency, network),
+  )
+  if (currency && Assets.isAsset(currency) && currency.transfer.type === Types.eip3009)
+    return {
+      name: currency.transfer.name,
+      version: currency.transfer.version,
+    }
+  if (parameters.authorization) return parameters.authorization
+  throw new Error('EVM authorization requires token name and version.')
+}
+function addressOf(currency: `0x${string}` | Assets.KnownAsset): `0x${string}` {
+  return Assets.isAsset(currency) ? currency.address : currency
+}
+function currencyMatches(
+  currency: `0x${string}` | Assets.KnownAsset,
+  acceptedCurrency: `0x${string}`,
+  network: Types.EvmNetwork,
+): boolean {
+  if (getAddress(addressOf(currency)) !== acceptedCurrency) return false
+  return !Assets.isAsset(currency) || currency.network === network
+}
+function decimalsOfAcceptedCurrency(
+  parameters: charge.Parameters,
+  request: Types.ChargeRequest,
+): number | undefined {
+  const currencies = parameters.currencies ?? parameters.assets
+  const acceptedCurrency = getAddress(request.currency as `0x${string}`)
+  const network = Types.networkOf(request.methodDetails.chainId)
+  const currency = currencies?.find((currency) =>
+    currencyMatches(currency, acceptedCurrency, network),
+  )
+  if (currency && Assets.isAsset(currency)) return currency.decimals
+  return parameters.decimals
+}

package/src/evm/client/Methods.ts ADDED Viewed

@@ -0,0 +1,19 @@
+import * as Assets from '../Assets.js'
+import * as Chains from '../Chains.js'
+import { charge as charge_ } from './Charge.js'
+/** Creates EVM client methods from shared charge parameters. */
+export function evm(parameters: evm.Parameters) {
+  return [evm.charge(parameters)] as const
+}
+export namespace evm {
+  export type Parameters = charge_.Parameters
+  /** Creates an EVM `charge` client method. */
+  export const charge = charge_
+  /** Known EVM asset metadata for public config. */
+  export const assets = Assets
+  /** Common EVM chain IDs for public config. */
+  export const chains = Chains
+}

package/src/evm/client/index.ts ADDED Viewed

@@ -0,0 +1,5 @@
+export * as assets from '../Assets.js'
+export * as Chains from '../Chains.js'
+export * as chains from '../Chains.js'
+export { charge } from './Charge.js'
+export { evm } from './Methods.js'

package/src/evm/index.ts ADDED Viewed

@@ -0,0 +1,13 @@
+export * as Assets from './Assets.js'
+export * as Chains from './Chains.js'
+export * as Methods from './Methods.js'
+export * as Types from './Types.js'
+export * as assets from './Assets.js'
+export * as chains from './Chains.js'
+export * from './Types.js'
+export type {
+  ExactEip3009Transfer,
+  ExactPermit2Transfer,
+  ExactTransfer,
+  ResourceInfo,
+} from '../x402/Types.js'