npm - mppx - Versions diffs - 0.6.30 → 0.7.0 - Mend

mppx 0.6.30 → 0.7.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (483) hide show

package/CHANGELOG.md +25 -0
package/dist/Challenge.d.ts.map +1 -1
package/dist/Challenge.js +9 -7
package/dist/Challenge.js.map +1 -1
package/dist/Constants.d.ts +46 -0
package/dist/Constants.d.ts.map +1 -0
package/dist/Constants.js +46 -0
package/dist/Constants.js.map +1 -0
package/dist/Credential.d.ts.map +1 -1
package/dist/Credential.js +5 -4
package/dist/Credential.js.map +1 -1
package/dist/Method.d.ts +32 -4
package/dist/Method.d.ts.map +1 -1
package/dist/Method.js +5 -2
package/dist/Method.js.map +1 -1
package/dist/Receipt.d.ts.map +1 -1
package/dist/Receipt.js +3 -2
package/dist/Receipt.js.map +1 -1
package/dist/cli/cli.d.ts.map +1 -1
package/dist/cli/cli.js +19 -11
package/dist/cli/cli.js.map +1 -1
package/dist/cli/plugins/tempo.d.ts.map +1 -1
package/dist/cli/plugins/tempo.js +17 -6
package/dist/cli/plugins/tempo.js.map +1 -1
package/dist/cli/utils.d.ts +5 -0
package/dist/cli/utils.d.ts.map +1 -1
package/dist/cli/utils.js +10 -0
package/dist/cli/utils.js.map +1 -1
package/dist/client/Methods.d.ts +5 -2
package/dist/client/Methods.d.ts.map +1 -1
package/dist/client/Methods.js +5 -2
package/dist/client/Methods.js.map +1 -1
package/dist/client/Transport.d.ts.map +1 -1
package/dist/client/Transport.js +4 -5
package/dist/client/Transport.js.map +1 -1
package/dist/client/index.d.ts +2 -1
package/dist/client/index.d.ts.map +1 -1
package/dist/client/index.js +2 -1
package/dist/client/index.js.map +1 -1
package/dist/client/internal/Fetch.d.ts.map +1 -1
package/dist/client/internal/Fetch.js +14 -6
package/dist/client/internal/Fetch.js.map +1 -1
package/dist/evm/server/Methods.d.ts +1 -1
package/dist/evm/server/Methods.d.ts.map +1 -1
package/dist/index.d.ts +1 -0
package/dist/index.d.ts.map +1 -1
package/dist/index.js +1 -0
package/dist/index.js.map +1 -1
package/dist/internal/AcceptPayment.d.ts +3 -0
package/dist/internal/AcceptPayment.d.ts.map +1 -1
package/dist/internal/AcceptPayment.js +15 -11
package/dist/internal/AcceptPayment.js.map +1 -1
package/dist/mcp-sdk/client/McpClient.d.ts +12 -5
package/dist/mcp-sdk/client/McpClient.d.ts.map +1 -1
package/dist/mcp-sdk/client/McpClient.js +55 -42
package/dist/mcp-sdk/client/McpClient.js.map +1 -1
package/dist/server/Mppx.d.ts +11 -3
package/dist/server/Mppx.d.ts.map +1 -1
package/dist/server/Mppx.js +76 -27
package/dist/server/Mppx.js.map +1 -1
package/dist/server/Request.js +24 -10
package/dist/server/Request.js.map +1 -1
package/dist/server/Response.d.ts.map +1 -1
package/dist/server/Response.js +2 -1
package/dist/server/Response.js.map +1 -1
package/dist/server/Transport.d.ts.map +1 -1
package/dist/server/Transport.js +4 -3
package/dist/server/Transport.js.map +1 -1
package/dist/server/index.d.ts +1 -0
package/dist/server/index.d.ts.map +1 -1
package/dist/server/index.js +1 -0
package/dist/server/index.js.map +1 -1
package/dist/stripe/client/Charge.d.ts +1 -1
package/dist/stripe/client/Charge.d.ts.map +1 -1
package/dist/stripe/client/Charge.js +3 -1
package/dist/stripe/client/Charge.js.map +1 -1
package/dist/stripe/server/Charge.d.ts +1 -1
package/dist/stripe/server/Charge.d.ts.map +1 -1
package/dist/stripe/server/Charge.js +9 -2
package/dist/stripe/server/Charge.js.map +1 -1
package/dist/stripe/server/Methods.d.ts +1 -1
package/dist/stripe/server/Methods.d.ts.map +1 -1
package/dist/stripe/server/internal/html.gen.d.ts +1 -1
package/dist/stripe/server/internal/html.gen.d.ts.map +1 -1
package/dist/stripe/server/internal/html.gen.js +1 -1
package/dist/stripe/server/internal/html.gen.js.map +1 -1
package/dist/tempo/Methods.d.ts +18 -0
package/dist/tempo/Methods.d.ts.map +1 -1
package/dist/tempo/Methods.js +16 -1
package/dist/tempo/Methods.js.map +1 -1
package/dist/tempo/client/Charge.d.ts +6 -0
package/dist/tempo/client/Charge.d.ts.map +1 -1
package/dist/tempo/client/Charge.js +9 -2
package/dist/tempo/client/Charge.js.map +1 -1
package/dist/tempo/client/Methods.d.ts +36 -7
package/dist/tempo/client/Methods.d.ts.map +1 -1
package/dist/tempo/client/Methods.js +12 -5
package/dist/tempo/client/Methods.js.map +1 -1
package/dist/tempo/client/index.d.ts +7 -4
package/dist/tempo/client/index.d.ts.map +1 -1
package/dist/tempo/client/index.js +5 -3
package/dist/tempo/client/index.js.map +1 -1
package/dist/tempo/index.d.ts +1 -0
package/dist/tempo/index.d.ts.map +1 -1
package/dist/tempo/index.js +1 -0
package/dist/tempo/index.js.map +1 -1
package/dist/tempo/internal/fee-payer.d.ts +21 -1
package/dist/tempo/internal/fee-payer.d.ts.map +1 -1
package/dist/tempo/internal/fee-payer.js +109 -4
package/dist/tempo/internal/fee-payer.js.map +1 -1
package/dist/tempo/{client → legacy/client}/ChannelOps.d.ts +19 -6
package/dist/tempo/legacy/client/ChannelOps.d.ts.map +1 -0
package/dist/tempo/{client → legacy/client}/ChannelOps.js +9 -3
package/dist/tempo/legacy/client/ChannelOps.js.map +1 -0
package/dist/tempo/{client → legacy/client}/Session.d.ts +23 -4
package/dist/tempo/legacy/client/Session.d.ts.map +1 -0
package/dist/tempo/{client → legacy/client}/Session.js +14 -7
package/dist/tempo/legacy/client/Session.js.map +1 -0
package/dist/tempo/{client → legacy/client}/SessionManager.d.ts +20 -5
package/dist/tempo/legacy/client/SessionManager.d.ts.map +1 -0
package/dist/tempo/{client → legacy/client}/SessionManager.js +20 -16
package/dist/tempo/legacy/client/SessionManager.js.map +1 -0
package/dist/tempo/legacy/client/index.d.ts +7 -0
package/dist/tempo/legacy/client/index.d.ts.map +1 -0
package/dist/tempo/legacy/client/index.js +5 -0
package/dist/tempo/legacy/client/index.js.map +1 -0
package/dist/tempo/legacy/index.d.ts +7 -0
package/dist/tempo/legacy/index.d.ts.map +1 -0
package/dist/tempo/legacy/index.js +7 -0
package/dist/tempo/legacy/index.js.map +1 -0
package/dist/tempo/{server → legacy/server}/Session.d.ts +28 -11
package/dist/tempo/legacy/server/Session.d.ts.map +1 -0
package/dist/tempo/{server → legacy/server}/Session.js +28 -23
package/dist/tempo/legacy/server/Session.js.map +1 -0
package/dist/tempo/legacy/server/index.d.ts +5 -0
package/dist/tempo/legacy/server/index.d.ts.map +1 -0
package/dist/tempo/legacy/server/index.js +5 -0
package/dist/tempo/legacy/server/index.js.map +1 -0
package/dist/tempo/{session → legacy/session}/Chain.d.ts +30 -23
package/dist/tempo/legacy/session/Chain.d.ts.map +1 -0
package/dist/tempo/{session → legacy/session}/Chain.js +12 -11
package/dist/tempo/legacy/session/Chain.js.map +1 -0
package/dist/tempo/{session → legacy/session}/Channel.d.ts +1 -0
package/dist/tempo/legacy/session/Channel.d.ts.map +1 -0
package/dist/tempo/legacy/session/Channel.js.map +1 -0
package/dist/tempo/legacy/session/ChannelStore.d.ts +22 -0
package/dist/tempo/legacy/session/ChannelStore.d.ts.map +1 -0
package/dist/tempo/legacy/session/ChannelStore.js +6 -0
package/dist/tempo/legacy/session/ChannelStore.js.map +1 -0
package/dist/tempo/legacy/session/Types.d.ts +73 -0
package/dist/tempo/legacy/session/Types.d.ts.map +1 -0
package/dist/tempo/legacy/session/Types.js.map +1 -0
package/dist/tempo/{session → legacy/session}/Voucher.d.ts +4 -4
package/dist/tempo/legacy/session/Voucher.d.ts.map +1 -0
package/dist/tempo/{session → legacy/session}/Voucher.js +1 -1
package/dist/tempo/legacy/session/Voucher.js.map +1 -0
package/dist/tempo/{session → legacy/session}/escrow.abi.d.ts +1 -0
package/dist/tempo/{session → legacy/session}/escrow.abi.d.ts.map +1 -1
package/dist/tempo/{session → legacy/session}/escrow.abi.js +1 -0
package/dist/tempo/legacy/session/escrow.abi.js.map +1 -0
package/dist/tempo/legacy/session/index.d.ts +9 -0
package/dist/tempo/legacy/session/index.d.ts.map +1 -0
package/dist/tempo/legacy/session/index.js +9 -0
package/dist/tempo/legacy/session/index.js.map +1 -0
package/dist/tempo/server/Charge.d.ts +1 -1
package/dist/tempo/server/Charge.d.ts.map +1 -1
package/dist/tempo/server/Charge.js +13 -16
package/dist/tempo/server/Charge.js.map +1 -1
package/dist/tempo/server/Methods.d.ts +63 -6
package/dist/tempo/server/Methods.d.ts.map +1 -1
package/dist/tempo/server/Methods.js +36 -8
package/dist/tempo/server/Methods.js.map +1 -1
package/dist/tempo/server/Subscription.d.ts +1 -1
package/dist/tempo/server/Subscription.d.ts.map +1 -1
package/dist/tempo/server/index.d.ts +6 -5
package/dist/tempo/server/index.d.ts.map +1 -1
package/dist/tempo/server/index.js +5 -5
package/dist/tempo/server/index.js.map +1 -1
package/dist/tempo/server/internal/html.gen.d.ts +1 -1
package/dist/tempo/server/internal/html.gen.d.ts.map +1 -1
package/dist/tempo/server/internal/html.gen.js +1 -1
package/dist/tempo/server/internal/html.gen.js.map +1 -1
package/dist/tempo/server/internal/request-body.d.ts +7 -2
package/dist/tempo/server/internal/request-body.d.ts.map +1 -1
package/dist/tempo/server/internal/request-body.js +20 -3
package/dist/tempo/server/internal/request-body.js.map +1 -1
package/dist/tempo/server/internal/transport.d.ts +8 -4
package/dist/tempo/server/internal/transport.d.ts.map +1 -1
package/dist/tempo/server/internal/transport.js +8 -7
package/dist/tempo/server/internal/transport.js.map +1 -1
package/dist/tempo/session/Snapshot.d.ts +32 -0
package/dist/tempo/session/Snapshot.d.ts.map +1 -0
package/dist/tempo/session/Snapshot.js +37 -0
package/dist/tempo/session/Snapshot.js.map +1 -0
package/dist/tempo/session/client/ChannelOps.d.ts +82 -0
package/dist/tempo/session/client/ChannelOps.d.ts.map +1 -0
package/dist/tempo/session/client/ChannelOps.js +204 -0
package/dist/tempo/session/client/ChannelOps.js.map +1 -0
package/dist/tempo/session/client/CredentialState.d.ts +262 -0
package/dist/tempo/session/client/CredentialState.d.ts.map +1 -0
package/dist/tempo/session/client/CredentialState.js +417 -0
package/dist/tempo/session/client/CredentialState.js.map +1 -0
package/dist/tempo/session/client/ReceiptCoordinator.d.ts +26 -0
package/dist/tempo/session/client/ReceiptCoordinator.d.ts.map +1 -0
package/dist/tempo/session/client/ReceiptCoordinator.js +61 -0
package/dist/tempo/session/client/ReceiptCoordinator.js.map +1 -0
package/dist/tempo/session/client/Runtime.d.ts +464 -0
package/dist/tempo/session/client/Runtime.d.ts.map +1 -0
package/dist/tempo/session/client/Runtime.js +499 -0
package/dist/tempo/session/client/Runtime.js.map +1 -0
package/dist/tempo/session/client/Session.d.ts +132 -0
package/dist/tempo/session/client/Session.d.ts.map +1 -0
package/dist/tempo/session/client/Session.js +55 -0
package/dist/tempo/session/client/Session.js.map +1 -0
package/dist/tempo/session/client/SessionManager.d.ts +120 -0
package/dist/tempo/session/client/SessionManager.d.ts.map +1 -0
package/dist/tempo/session/client/SessionManager.js +627 -0
package/dist/tempo/session/client/SessionManager.js.map +1 -0
package/dist/tempo/session/client/Transports.d.ts +449 -0
package/dist/tempo/session/client/Transports.d.ts.map +1 -0
package/dist/tempo/session/client/Transports.js +721 -0
package/dist/tempo/session/client/Transports.js.map +1 -0
package/dist/tempo/session/client/index.d.ts +12 -0
package/dist/tempo/session/client/index.d.ts.map +1 -0
package/dist/tempo/session/client/index.js +5 -0
package/dist/tempo/session/client/index.js.map +1 -0
package/dist/tempo/session/index.d.ts +7 -8
package/dist/tempo/session/index.d.ts.map +1 -1
package/dist/tempo/session/index.js +7 -8
package/dist/tempo/session/index.js.map +1 -1
package/dist/tempo/session/precompile/Chain.d.ts +319 -0
package/dist/tempo/session/precompile/Chain.d.ts.map +1 -0
package/dist/tempo/session/precompile/Chain.js +492 -0
package/dist/tempo/session/precompile/Chain.js.map +1 -0
package/dist/tempo/session/precompile/Channel.d.ts +46 -0
package/dist/tempo/session/precompile/Channel.d.ts.map +1 -0
package/dist/tempo/session/precompile/Channel.js +56 -0
package/dist/tempo/session/precompile/Channel.js.map +1 -0
package/dist/tempo/session/precompile/Protocol.d.ts +308 -0
package/dist/tempo/session/precompile/Protocol.d.ts.map +1 -0
package/dist/tempo/session/precompile/Protocol.js +264 -0
package/dist/tempo/session/precompile/Protocol.js.map +1 -0
package/dist/tempo/session/precompile/Voucher.d.ts +40 -0
package/dist/tempo/session/precompile/Voucher.d.ts.map +1 -0
package/dist/tempo/session/precompile/Voucher.js +126 -0
package/dist/tempo/session/precompile/Voucher.js.map +1 -0
package/dist/tempo/session/precompile/escrow.abi.d.ts +522 -0
package/dist/tempo/session/precompile/escrow.abi.d.ts.map +1 -0
package/dist/tempo/session/precompile/escrow.abi.js +224 -0
package/dist/tempo/session/precompile/escrow.abi.js.map +1 -0
package/dist/tempo/session/precompile/index.d.ts +24 -0
package/dist/tempo/session/precompile/index.d.ts.map +1 -0
package/dist/tempo/session/precompile/index.js +22 -0
package/dist/tempo/session/precompile/index.js.map +1 -0
package/dist/tempo/session/server/ChannelOps.d.ts +56 -0
package/dist/tempo/session/server/ChannelOps.d.ts.map +1 -0
package/dist/tempo/session/server/ChannelOps.js +91 -0
package/dist/tempo/session/server/ChannelOps.js.map +1 -0
package/dist/tempo/session/server/ChannelStore.d.ts +347 -0
package/dist/tempo/session/server/ChannelStore.d.ts.map +1 -0
package/dist/tempo/session/server/ChannelStore.js +404 -0
package/dist/tempo/session/server/ChannelStore.js.map +1 -0
package/dist/tempo/session/server/CredentialVerification.d.ts +85 -0
package/dist/tempo/session/server/CredentialVerification.d.ts.map +1 -0
package/dist/tempo/session/server/CredentialVerification.js +494 -0
package/dist/tempo/session/server/CredentialVerification.js.map +1 -0
package/dist/tempo/session/server/MeteredStream.d.ts +40 -0
package/dist/tempo/session/server/MeteredStream.d.ts.map +1 -0
package/dist/tempo/session/server/MeteredStream.js +42 -0
package/dist/tempo/session/server/MeteredStream.js.map +1 -0
package/dist/tempo/session/server/RequestState.d.ts +208 -0
package/dist/tempo/session/server/RequestState.d.ts.map +1 -0
package/dist/tempo/session/server/RequestState.js +252 -0
package/dist/tempo/session/server/RequestState.js.map +1 -0
package/dist/tempo/session/server/Session.d.ts +169 -0
package/dist/tempo/session/server/Session.d.ts.map +1 -0
package/dist/tempo/session/server/Session.js +351 -0
package/dist/tempo/session/server/Session.js.map +1 -0
package/dist/tempo/session/server/Settlement.d.ts +185 -0
package/dist/tempo/session/server/Settlement.d.ts.map +1 -0
package/dist/tempo/session/server/Settlement.js +250 -0
package/dist/tempo/session/server/Settlement.js.map +1 -0
package/dist/tempo/session/{Sse.d.ts → server/Sse.d.ts} +9 -56
package/dist/tempo/session/server/Sse.d.ts.map +1 -0
package/dist/tempo/session/server/Sse.js +184 -0
package/dist/tempo/session/server/Sse.js.map +1 -0
package/dist/tempo/session/server/Transports.d.ts +89 -0
package/dist/tempo/session/server/Transports.d.ts.map +1 -0
package/dist/tempo/session/server/Transports.js +149 -0
package/dist/tempo/session/server/Transports.js.map +1 -0
package/dist/tempo/session/server/Ws.d.ts +48 -0
package/dist/tempo/session/server/Ws.d.ts.map +1 -0
package/dist/tempo/session/server/Ws.js +244 -0
package/dist/tempo/session/server/Ws.js.map +1 -0
package/dist/tempo/session/server/index.d.ts +4 -0
package/dist/tempo/session/server/index.d.ts.map +1 -0
package/dist/tempo/session/server/index.js +2 -0
package/dist/tempo/session/server/index.js.map +1 -0
package/package.json +8 -3
package/src/Challenge.ts +9 -7
package/src/Constants.ts +58 -0
package/src/Credential.ts +5 -4
package/src/Method.ts +46 -5
package/src/Receipt.ts +3 -2
package/src/cli/cli.test.ts +23 -28
package/src/cli/cli.ts +23 -10
package/src/cli/mcp.test.ts +21 -7
package/src/cli/plugins/tempo.ts +21 -8
package/src/cli/utils.test.ts +25 -1
package/src/cli/utils.ts +10 -0
package/src/client/Methods.ts +5 -2
package/src/client/Mppx.test-d.ts +10 -0
package/src/client/Mppx.test.ts +75 -0
package/src/client/Transport.ts +4 -5
package/src/client/index.ts +11 -1
package/src/client/internal/Fetch.test.ts +29 -4
package/src/client/internal/Fetch.ts +17 -5
package/src/env.d.ts +1 -1
package/src/index.ts +1 -0
package/src/internal/AcceptPayment.test.ts +61 -0
package/src/internal/AcceptPayment.ts +21 -14
package/src/mcp-sdk/client/McpClient.integration.test.ts +8 -7
package/src/mcp-sdk/client/McpClient.test-d.ts +7 -0
package/src/mcp-sdk/client/McpClient.ts +99 -67
package/src/mcp-sdk/client/McpClient.unit.test.ts +131 -0
package/src/middlewares/elysia.test.ts +8 -4
package/src/middlewares/express.test.ts +8 -4
package/src/middlewares/hono.test.ts +4 -4
package/src/middlewares/nextjs.test.ts +8 -4
package/src/proxy/Proxy.test.ts +8 -8
package/src/server/Mppx.test-d.ts +54 -0
package/src/server/Mppx.test.ts +274 -7
package/src/server/Mppx.ts +487 -406
package/src/server/Request.test.ts +81 -0
package/src/server/Request.ts +23 -9
package/src/server/Response.ts +2 -1
package/src/server/Transport.ts +4 -3
package/src/server/index.ts +1 -0
package/src/stripe/client/Charge.test.ts +20 -5
package/src/stripe/client/Charge.ts +6 -2
package/src/stripe/server/Charge.test.ts +114 -1
package/src/stripe/server/Charge.ts +13 -2
package/src/stripe/server/internal/html/package.json +1 -1
package/src/stripe/server/internal/html.gen.ts +1 -1
package/src/tempo/AccessKeyAuthorization.test.ts +4 -94
package/src/tempo/Methods.test.ts +45 -17
package/src/tempo/Methods.ts +22 -0
package/src/tempo/PublicExports.test-d.ts +105 -0
package/src/tempo/client/Charge.test.ts +85 -0
package/src/tempo/client/Charge.ts +19 -2
package/src/tempo/client/Methods.ts +18 -6
package/src/tempo/client/index.ts +15 -4
package/src/tempo/index.ts +1 -0
package/src/tempo/internal/fee-payer.test.ts +241 -17
package/src/tempo/internal/fee-payer.ts +150 -4
package/src/tempo/internal/fee-token.test.ts +14 -9
package/src/tempo/legacy/AccessKeyAuthorization.test.ts +162 -0
package/src/tempo/legacy/README.md +9 -0
package/src/tempo/{client → legacy/client}/ChannelOps.test.ts +6 -7
package/src/tempo/{client → legacy/client}/ChannelOps.ts +22 -9
package/src/tempo/{client → legacy/client}/Session.test.ts +51 -9
package/src/tempo/{client → legacy/client}/Session.ts +25 -11
package/src/tempo/{client → legacy/client}/SessionManager.test.ts +81 -9
package/src/tempo/{client → legacy/client}/SessionManager.ts +41 -20
package/src/tempo/legacy/client/index.ts +6 -0
package/src/tempo/legacy/index.ts +6 -0
package/src/tempo/{server → legacy/server}/Session.test.ts +162 -63
package/src/tempo/{server → legacy/server}/Session.ts +49 -37
package/src/tempo/legacy/server/index.ts +4 -0
package/src/tempo/{session → legacy/session}/Chain.test.ts +3 -4
package/src/tempo/{session → legacy/session}/Chain.ts +94 -63
package/src/tempo/{session → legacy/session}/Channel.ts +1 -0
package/src/tempo/legacy/session/ChannelStore.test.ts +58 -0
package/src/tempo/legacy/session/ChannelStore.ts +39 -0
package/src/tempo/legacy/session/Types.ts +91 -0
package/src/tempo/{session → legacy/session}/Voucher.ts +12 -8
package/src/tempo/{session → legacy/session}/escrow.abi.ts +1 -0
package/src/tempo/legacy/session/index.ts +8 -0
package/src/tempo/server/AtomicStore.test-d.ts +16 -11
package/src/tempo/server/Charge.test.ts +92 -14
package/src/tempo/server/Charge.ts +18 -16
package/src/tempo/server/Methods.ts +54 -8
package/src/tempo/server/Sse.test.ts +2 -2
package/src/tempo/server/index.ts +6 -5
package/src/tempo/server/internal/html/package.json +1 -1
package/src/tempo/server/internal/html.gen.ts +1 -1
package/src/tempo/server/internal/request-body.test.ts +37 -4
package/src/tempo/server/internal/request-body.ts +25 -6
package/src/tempo/server/internal/transport.test.ts +4 -4
package/src/tempo/server/internal/transport.ts +19 -10
package/src/tempo/session/Snapshot.test.ts +41 -0
package/src/tempo/session/Snapshot.ts +74 -0
package/src/tempo/session/client/ChannelOps.test.ts +163 -0
package/src/tempo/session/client/ChannelOps.ts +344 -0
package/src/tempo/session/client/CredentialState.test.ts +645 -0
package/src/tempo/session/client/CredentialState.ts +814 -0
package/src/tempo/session/client/ReceiptCoordinator.ts +95 -0
package/src/tempo/session/client/Runtime.test.ts +1092 -0
package/src/tempo/session/client/Runtime.ts +986 -0
package/src/tempo/session/client/Session.test.ts +734 -0
package/src/tempo/session/client/Session.ts +97 -0
package/src/tempo/session/client/SessionManager.test.ts +1308 -0
package/src/tempo/session/client/SessionManager.ts +845 -0
package/src/tempo/session/client/Transports.test.ts +837 -0
package/src/tempo/session/client/Transports.ts +1292 -0
package/src/tempo/session/client/index.ts +37 -0
package/src/tempo/session/index.ts +7 -8
package/src/tempo/session/precompile/Chain.integration.test.ts +321 -0
package/src/tempo/session/precompile/Chain.test.ts +1258 -0
package/src/tempo/session/precompile/Chain.ts +979 -0
package/src/tempo/session/precompile/Channel.test.ts +138 -0
package/src/tempo/session/precompile/Channel.ts +103 -0
package/src/tempo/session/precompile/Protocol.test.ts +358 -0
package/src/tempo/session/precompile/Protocol.ts +520 -0
package/src/tempo/session/precompile/Voucher.test.ts +316 -0
package/src/tempo/session/precompile/Voucher.ts +160 -0
package/src/tempo/session/precompile/escrow.abi.ts +226 -0
package/src/tempo/session/precompile/index.ts +33 -0
package/src/tempo/session/server/ChannelOps.test.ts +129 -0
package/src/tempo/session/server/ChannelOps.ts +157 -0
package/src/tempo/session/{ChannelStore.test.ts → server/ChannelStore.test.ts} +536 -29
package/src/tempo/session/server/ChannelStore.ts +835 -0
package/src/tempo/session/server/CredentialVerification.test.ts +146 -0
package/src/tempo/session/server/CredentialVerification.ts +710 -0
package/src/tempo/session/server/MeteredStream.ts +88 -0
package/src/tempo/session/server/RequestState.test.ts +531 -0
package/src/tempo/session/server/RequestState.ts +499 -0
package/src/tempo/session/server/Session.integration.test.ts +444 -0
package/src/tempo/session/server/Session.test.ts +3253 -0
package/src/tempo/session/server/Session.ts +543 -0
package/src/tempo/session/server/Settlement.test.ts +242 -0
package/src/tempo/session/server/Settlement.ts +470 -0
package/src/tempo/session/{Sse.test.ts → server/Sse.test.ts} +37 -3
package/src/tempo/session/server/Sse.ts +256 -0
package/src/tempo/session/server/Transports.test.ts +346 -0
package/src/tempo/session/server/Transports.ts +255 -0
package/src/tempo/session/{Ws.test.ts → server/Ws.test.ts} +4 -4
package/src/tempo/session/server/Ws.ts +384 -0
package/src/tempo/session/server/index.ts +8 -0
package/dist/tempo/client/ChannelOps.d.ts.map +0 -1
package/dist/tempo/client/ChannelOps.js.map +0 -1
package/dist/tempo/client/Session.d.ts.map +0 -1
package/dist/tempo/client/Session.js.map +0 -1
package/dist/tempo/client/SessionManager.d.ts.map +0 -1
package/dist/tempo/client/SessionManager.js.map +0 -1
package/dist/tempo/server/Session.d.ts.map +0 -1
package/dist/tempo/server/Session.js.map +0 -1
package/dist/tempo/session/Chain.d.ts.map +0 -1
package/dist/tempo/session/Chain.js.map +0 -1
package/dist/tempo/session/Channel.d.ts.map +0 -1
package/dist/tempo/session/Channel.js.map +0 -1
package/dist/tempo/session/ChannelStore.d.ts +0 -117
package/dist/tempo/session/ChannelStore.d.ts.map +0 -1
package/dist/tempo/session/ChannelStore.js +0 -172
package/dist/tempo/session/ChannelStore.js.map +0 -1
package/dist/tempo/session/Receipt.d.ts +0 -22
package/dist/tempo/session/Receipt.d.ts.map +0 -1
package/dist/tempo/session/Receipt.js +0 -34
package/dist/tempo/session/Receipt.js.map +0 -1
package/dist/tempo/session/Sse.d.ts.map +0 -1
package/dist/tempo/session/Sse.js +0 -363
package/dist/tempo/session/Sse.js.map +0 -1
package/dist/tempo/session/Types.d.ts +0 -78
package/dist/tempo/session/Types.d.ts.map +0 -1
package/dist/tempo/session/Types.js.map +0 -1
package/dist/tempo/session/Voucher.d.ts.map +0 -1
package/dist/tempo/session/Voucher.js.map +0 -1
package/dist/tempo/session/Ws.d.ts +0 -87
package/dist/tempo/session/Ws.d.ts.map +0 -1
package/dist/tempo/session/Ws.js +0 -443
package/dist/tempo/session/Ws.js.map +0 -1
package/dist/tempo/session/escrow.abi.js.map +0 -1
package/src/tempo/session/ChannelStore.ts +0 -308
package/src/tempo/session/Receipt.test.ts +0 -89
package/src/tempo/session/Receipt.ts +0 -46
package/src/tempo/session/Sse.ts +0 -462
package/src/tempo/session/Types.ts +0 -86
package/src/tempo/session/Ws.ts +0 -576
/package/dist/tempo/{session → legacy/session}/Channel.js +0 -0
/package/dist/tempo/{session → legacy/session}/Types.js +0 -0
/package/src/tempo/{session → legacy/session}/Channel.test.ts +0 -0
/package/src/tempo/{session → legacy/session}/Voucher.test.ts +0 -0
/package/src/tempo/session/{Sse.fuzz.test.ts → server/Sse.fuzz.test.ts} +0 -0

package/src/middlewares/elysia.test.ts CHANGED Viewed

@@ -2,14 +2,18 @@ import * as http from 'node:http'
 import { Elysia } from 'elysia'
 import { Receipt } from 'mppx'
-import { Mppx as Mppx_client, session as sessionIntent, tempo as tempo_client } from 'mppx/client'
+import {
+  Mppx as Mppx_client,
+  sessionLegacy as sessionIntent,
+  tempo as tempo_client,
+} from 'mppx/client'
 import { Mppx, discovery, payment } from 'mppx/elysia'
 import { tempo as tempo_server } from 'mppx/server'
 import type { Address } from 'viem'
 import { Addresses } from 'viem/tempo'
 import { beforeAll, describe, expect, test } from 'vp/test'
 import * as TestHttp from '~test/Http.js'
-import { deployEscrow } from '~test/tempo/session.js'
+import { deployEscrow } from '~test/tempo/legacy/session.js'
 import { accounts, asset, client, fundAccount } from '~test/tempo/viem.js'
 function createServer(app: Elysia<any, any, any, any, any, any, any>) {
@@ -202,7 +206,7 @@ describe('session', () => {
   function createSessionHarness(feePayer: boolean) {
     const mppx = Mppx.create({
       methods: [
-        tempo_server.session({
+        tempo_server.sessionLegacy({
           getClient: () => client,
           account: accounts[0],
           currency: asset,
@@ -218,7 +222,7 @@ describe('session', () => {
       methods: [
         sessionIntent({
           account: accounts[2],
-          deposit: '10',
+          maxDeposit: '10',
           getClient: () => client,
         }),
       ],

package/src/middlewares/express.test.ts CHANGED Viewed

@@ -1,13 +1,17 @@
 import express from 'express'
 import { Receipt } from 'mppx'
-import { Mppx as Mppx_client, session as sessionIntent, tempo as tempo_client } from 'mppx/client'
+import {
+  Mppx as Mppx_client,
+  sessionLegacy as sessionIntent,
+  tempo as tempo_client,
+} from 'mppx/client'
 import { Mppx, discovery, payment } from 'mppx/express'
 import { Mppx as Mppx_server, tempo as tempo_server } from 'mppx/server'
 import type { Address } from 'viem'
 import { Addresses } from 'viem/tempo'
 import { beforeAll, describe, expect, test } from 'vp/test'
 import * as Http from '~test/Http.js'
-import { deployEscrow } from '~test/tempo/session.js'
+import { deployEscrow } from '~test/tempo/legacy/session.js'
 import { accounts, asset, client, fundAccount } from '~test/tempo/viem.js'
 function createServer(app: express.Express) {
@@ -196,7 +200,7 @@ describe('session', () => {
   function createSessionHarness(feePayer: boolean) {
     const mppx = Mppx.create({
       methods: [
-        tempo_server.session({
+        tempo_server.sessionLegacy({
           getClient: () => client,
           account: accounts[0],
           currency: asset,
@@ -212,7 +216,7 @@ describe('session', () => {
       methods: [
         sessionIntent({
           account: accounts[2],
-          deposit: '10',
+          maxDeposit: '10',
           getClient: () => client,
         }),
       ],

package/src/middlewares/hono.test.ts CHANGED Viewed

@@ -4,7 +4,7 @@ import { Challenge, Credential, Method, Receipt, z } from 'mppx'
 import {
   evm as evm_client,
   Mppx as Mppx_client,
-  session as sessionIntent,
+  sessionLegacy as sessionIntent,
   tempo as tempo_client,
 } from 'mppx/client'
 import { Mppx, discovery, payment } from 'mppx/hono'
@@ -19,7 +19,7 @@ import type { Address } from 'viem'
 import { Addresses } from 'viem/tempo'
 import { beforeAll, describe, expect, test } from 'vp/test'
 import * as Http from '~test/Http.js'
-import { deployEscrow } from '~test/tempo/session.js'
+import { deployEscrow } from '~test/tempo/legacy/session.js'
 import { accounts, asset, client, fundAccount } from '~test/tempo/viem.js'
 function createServer(app: Hono) {
@@ -391,7 +391,7 @@ describe('session', () => {
   function createSessionHarness(feePayer: boolean) {
     const mppx = Mppx.create({
       methods: [
-        tempo_server.session({
+        tempo_server.sessionLegacy({
           getClient: () => client,
           account: accounts[0],
           currency: asset,
@@ -407,7 +407,7 @@ describe('session', () => {
       methods: [
         sessionIntent({
           account: accounts[2],
-          deposit: '10',
+          maxDeposit: '10',
           getClient: () => client,
         }),
       ],

package/src/middlewares/nextjs.test.ts CHANGED Viewed

@@ -1,14 +1,18 @@
 import * as http from 'node:http'
 import { Challenge, Credential, Receipt } from 'mppx'
-import { Mppx as Mppx_client, session as sessionIntent, tempo as tempo_client } from 'mppx/client'
+import {
+  Mppx as Mppx_client,
+  sessionLegacy as sessionIntent,
+  tempo as tempo_client,
+} from 'mppx/client'
 import { Mppx, discovery, payment } from 'mppx/nextjs'
 import { tempo as tempo_server } from 'mppx/server'
 import type { Address } from 'viem'
 import { Addresses } from 'viem/tempo'
 import { beforeAll, describe, expect, test } from 'vp/test'
 import * as TestHttp from '~test/Http.js'
-import { deployEscrow } from '~test/tempo/session.js'
+import { deployEscrow } from '~test/tempo/legacy/session.js'
 import { accounts, asset, chain, client, fundAccount } from '~test/tempo/viem.js'
 function createServer(handler: (request: Request) => Promise<Response> | Response) {
@@ -279,7 +283,7 @@ describe('session', () => {
   function createSessionHarness(feePayer: boolean) {
     const mppx = Mppx.create({
       methods: [
-        tempo_server.session({
+        tempo_server.sessionLegacy({
           getClient: () => client,
           account: accounts[0],
           currency: asset,
@@ -295,7 +299,7 @@ describe('session', () => {
       methods: [
         sessionIntent({
           account: accounts[2],
-          deposit: '10',
+          maxDeposit: '10',
           getClient: () => client,
         }),
       ],

package/src/proxy/Proxy.test.ts CHANGED Viewed

@@ -3,20 +3,20 @@ import { Mppx as Mppx_client, tempo as tempo_client } from 'mppx/client'
 import { Mppx as Mppx_server, tempo as tempo_server } from 'mppx/server'
 import type { Address } from 'viem'
 import { afterEach, beforeAll, describe, expect, test } from 'vp/test'
-import { nodeEnv } from '~test/config.js'
+import { tempoNetwork } from '~test/config.js'
 import * as Http from '~test/Http.js'
-import { deployEscrow } from '~test/tempo/session.js'
+import { deployEscrow } from '~test/tempo/legacy/session.js'
 import { accounts, asset, client } from '~test/tempo/viem.js'
-import { sessionManager } from '../tempo/client/SessionManager.js'
-import { deserializeSessionReceipt } from '../tempo/session/Receipt.js'
+import { sessionManager } from '../tempo/legacy/client/index.js'
+import { deserializeSessionReceipt } from '../tempo/session/precompile/Protocol.js'
 import * as ApiProxy from './Proxy.js'
 import * as Service from './Service.js'
 import { anthropic } from './services/anthropic.js'
 import { openai } from './services/openai.js'
 const secretKey = 'test-secret-key'
-const isLocalnet = nodeEnv === 'localnet'
+const isLocalnet = tempoNetwork === 'localnet'
 const mppx_server = Mppx_server.create({
   methods: [
@@ -907,7 +907,7 @@ describe.runIf(isLocalnet)('plain HTTP session proxy', () => {
     const sessionHandler = Mppx_server.create({
       methods: [
-        tempo_server.session({
+        tempo_server.sessionLegacy({
           account: accounts[0],
           currency: asset,
           escrowContract: sessionEscrow,
@@ -967,7 +967,7 @@ describe.runIf(isLocalnet)('plain HTTP session proxy', () => {
     const sessionHandler = Mppx_server.create({
       methods: [
-        tempo_server.session({
+        tempo_server.sessionLegacy({
           account: accounts[0],
           currency: asset,
           escrowContract: sessionEscrow,
@@ -997,7 +997,7 @@ describe.runIf(isLocalnet)('plain HTTP session proxy', () => {
     const sessionClient = Mppx_client.create({
       polyfill: false,
       methods: [
-        tempo_client({
+        tempo_client.sessionLegacy.method({
           account: accounts[1],
           getClient: () => client,
           maxDeposit: '2',

package/src/server/Mppx.test-d.ts CHANGED Viewed

@@ -34,6 +34,22 @@ const mockChargeB = Method.from({
   },
 })
+const mockSession = Method.from({
+  name: 'tempo',
+  intent: 'session',
+  schema: {
+    credential: {
+      payload: z.object({ token: z.string() }),
+    },
+    request: z.object({
+      amount: z.string(),
+      currency: z.string(),
+      methodDetails: z.object({ sessionProtocol: z.string() }),
+      unitType: z.string(),
+    }),
+  },
+})
 const alphaMethod = Method.toServer(mockChargeA, {
   async verify() {
     return {
@@ -56,6 +72,29 @@ const betaMethod = Method.toServer(mockChargeB, {
   },
 })
+const tip1034SessionMethod = Method.toServer(mockSession, {
+  async verify() {
+    return {
+      method: 'tempo',
+      reference: 'tx',
+      status: 'success' as const,
+      timestamp: new Date().toISOString(),
+    }
+  },
+})
+const legacySessionMethod = Method.toServer(mockSession, {
+  alias: 'sessionLegacy',
+  async verify() {
+    return {
+      method: 'tempo',
+      reference: 'tx',
+      status: 'success' as const,
+      timestamp: new Date().toISOString(),
+    }
+  },
+})
 const secretKey = 'test-secret'
 const realm = 'api.example.com'
@@ -105,6 +144,21 @@ describe('Mppx type tests', () => {
     expectTypeOf(mppx.beta.charge).toBeFunction()
   })
+  test('aliased duplicate handlers are accessible by nested and slash keys', () => {
+    const mppx = Mppx.create({
+      methods: [tip1034SessionMethod, legacySessionMethod],
+      realm,
+      secretKey,
+    })
+    expectTypeOf(mppx.tempo.session).toBeFunction()
+    expectTypeOf(mppx.tempo.sessionLegacy).toBeFunction()
+    expectTypeOf(mppx['tempo/session']).toBeFunction()
+    expectTypeOf(mppx['tempo/sessionLegacy']).toBeFunction()
+    expectTypeOf(mppx.challenge.tempo.session).toBeFunction()
+    expectTypeOf(mppx.challenge.tempo.sessionLegacy).toBeFunction()
+  })
   test('slash key handlers are accessible', () => {
     const mppx = Mppx.create({ methods: [alphaMethod, betaMethod], realm, secretKey })

package/src/server/Mppx.test.ts CHANGED Viewed

@@ -3,7 +3,7 @@ import * as http from 'node:http'
 import { Challenge, Credential, Errors, Method, Receipt, z } from 'mppx'
 import {
   Mppx as Mppx_client,
-  session as tempo_session_client,
+  sessionLegacy as tempo_session_client,
   tempo as tempo_client,
 } from 'mppx/client'
 import { Types as evm_Types } from 'mppx/evm'
@@ -12,10 +12,10 @@ import { Header as x402_Header, Types as x402_Types, type PaymentPayload } from
 import { getTransactionReceipt } from 'viem/actions'
 import { describe, expect, test } from 'vp/test'
 import * as Http from '~test/Http.js'
-import { deployEscrow } from '~test/tempo/session.js'
+import { deployEscrow } from '~test/tempo/legacy/session.js'
 import { accounts, asset, client } from '~test/tempo/viem.js'
-import type { SessionReceipt } from '../tempo/session/Types.js'
+import type { SessionReceipt } from '../tempo/session/precompile/Protocol.js'
 import * as x402_RouteBinding from '../x402/internal/RouteBinding.js'
 const realm = 'api.example.com'
@@ -1837,6 +1837,22 @@ describe('compose', () => {
     },
   })
+  const mockSession = Method.from({
+    name: 'tempo',
+    intent: 'session',
+    schema: {
+      credential: {
+        payload: z.object({ token: z.string() }),
+      },
+      request: z.object({
+        amount: z.string(),
+        currency: z.string(),
+        methodDetails: z.object({ sessionProtocol: z.optional(z.string()) }),
+        unitType: z.string(),
+      }),
+    },
+  })
   function mockReceipt(name: string) {
     return {
       method: name,
@@ -1858,6 +1874,19 @@ describe('compose', () => {
     },
   })
+  const tip1034SessionMethod = Method.toServer(mockSession, {
+    async verify() {
+      return mockReceipt('v2')
+    },
+  })
+  const legacySessionMethod = Method.toServer(mockSession, {
+    alias: 'sessionLegacy',
+    async verify() {
+      return mockReceipt('v1')
+    },
+  })
   const x402Method = evm.charge({
     currency: evm.assets.baseSepolia.USDC,
     recipient: accounts[0].address,
@@ -1889,6 +1918,19 @@ describe('compose', () => {
     recipient: '0x0000000000000000000000000000000000000002',
   }
+  const sessionChallengeOpts = {
+    amount: '100',
+    currency: asset,
+    expires: new Date(Date.now() + 60_000),
+    methodDetails: { sessionProtocol: 'v2' },
+    unitType: 'request',
+  }
+  const legacySessionChallengeOpts = {
+    ...sessionChallengeOpts,
+    methodDetails: { sessionProtocol: 'v1' },
+  }
   test('returns 402 with multiple WWW-Authenticate headers when no credential', async () => {
     const mppx = Mppx.create({ methods: [alphaMethod, betaMethod], realm, secretKey })
@@ -1905,6 +1947,157 @@ describe('compose', () => {
     expect(wwwAuth).toContain('method="beta"')
   })
+  test('broadcasts duplicate tempo/session variants in compose order', async () => {
+    const mppx = Mppx.create({
+      methods: [tip1034SessionMethod, legacySessionMethod],
+      realm,
+      secretKey,
+    })
+    const result = await mppx.compose(
+      [mppx.tempo.session, sessionChallengeOpts],
+      [mppx.tempo.sessionLegacy, legacySessionChallengeOpts],
+    )(new Request('https://example.com/resource'))
+    expect(result.status).toBe(402)
+    if (result.status !== 402) throw new Error()
+    const challenges = Challenge.fromResponseList(result.challenge)
+    expect(challenges.map((challenge) => challenge.request.methodDetails)).toEqual([
+      { sessionProtocol: 'v2' },
+      { sessionProtocol: 'v1' },
+    ])
+  })
+  test('keeps duplicate tempo/session variants when Accept-Payment allows tempo/session', async () => {
+    const mppx = Mppx.create({
+      methods: [tip1034SessionMethod, legacySessionMethod],
+      realm,
+      secretKey,
+    })
+    const result = await mppx.compose(
+      [mppx.tempo.session, sessionChallengeOpts],
+      [mppx.tempo.sessionLegacy, legacySessionChallengeOpts],
+    )(
+      new Request('https://example.com/resource', {
+        headers: { 'Accept-Payment': 'tempo/session' },
+      }),
+    )
+    expect(result.status).toBe(402)
+    if (result.status !== 402) throw new Error()
+    expect(Challenge.fromResponseList(result.challenge)).toHaveLength(2)
+  })
+  test('uses TIP-1034 as the bare tempo/session handler regardless of registration order', async () => {
+    const mppx = Mppx.create({
+      methods: [legacySessionMethod, tip1034SessionMethod],
+      realm,
+      secretKey,
+    })
+    const result = await mppx.compose([mppx.tempo.session, sessionChallengeOpts])(
+      new Request('https://example.com/resource'),
+    )
+    expect(result.status).toBe(402)
+    if (result.status !== 402) throw new Error()
+    expect(Challenge.fromResponse(result.challenge).request.methodDetails).toEqual({
+      sessionProtocol: 'v2',
+    })
+  })
+  test('rejects cross-protocol tempo/session credential replay', async () => {
+    const mppx = Mppx.create({
+      methods: [tip1034SessionMethod, legacySessionMethod],
+      realm,
+      secretKey,
+    })
+    const tip1034ChallengeResponse = await mppx.compose([mppx.tempo.session, sessionChallengeOpts])(
+      new Request('https://example.com/resource'),
+    )
+    expect(tip1034ChallengeResponse.status).toBe(402)
+    if (tip1034ChallengeResponse.status !== 402) throw new Error()
+    const tip1034Challenge = Challenge.fromResponse(tip1034ChallengeResponse.challenge)
+    const credential = Credential.serialize({
+      challenge: tip1034Challenge,
+      payload: { token: 'valid' },
+    })
+    const legacyResult = await mppx.compose([mppx.tempo.sessionLegacy, legacySessionChallengeOpts])(
+      new Request('https://example.com/resource', {
+        headers: { Authorization: credential },
+      }),
+    )
+    expect(legacyResult.status).toBe(402)
+  })
+  test('verifyCredential dispatches duplicate tempo/session variants by sessionProtocol', async () => {
+    const mppx = Mppx.create({
+      methods: [tip1034SessionMethod, legacySessionMethod],
+      realm,
+      secretKey,
+    })
+    const tip1034Challenge = await mppx.challenge.tempo.session(sessionChallengeOpts)
+    const legacyChallenge = await mppx.challenge.tempo.sessionLegacy(legacySessionChallengeOpts)
+    const tip1034Receipt = await mppx.verifyCredential(
+      Credential.serialize({
+        challenge: tip1034Challenge,
+        payload: { token: 'valid' },
+      }),
+    )
+    const legacyReceipt = await mppx.verifyCredential(
+      Credential.serialize({
+        challenge: legacyChallenge,
+        payload: { token: 'valid' },
+      }),
+    )
+    expect(tip1034Receipt.reference).toBe('tx-v2')
+    expect(legacyReceipt.reference).toBe('tx-v1')
+  })
+  test('verifyCredential routes unmarked tempo/session challenges to legacy v1', async () => {
+    const mppx = Mppx.create({
+      methods: [legacySessionMethod, tip1034SessionMethod],
+      realm,
+      secretKey,
+    })
+    const unmarkedLegacyChallenge = await mppx.challenge.tempo.sessionLegacy({
+      ...legacySessionChallengeOpts,
+      methodDetails: {},
+    })
+    await expect(
+      mppx.verifyCredential(
+        Credential.serialize({
+          challenge: unmarkedLegacyChallenge,
+          payload: { token: 'valid' },
+        }),
+      ),
+    ).resolves.toMatchObject({ reference: 'tx-v1' })
+  })
+  test('verifyCredential rejects unknown tempo/session protocol markers', async () => {
+    const mppx = Mppx.create({
+      methods: [legacySessionMethod, tip1034SessionMethod],
+      realm,
+      secretKey,
+    })
+    const challenge = await mppx.challenge.tempo.session({
+      ...sessionChallengeOpts,
+      methodDetails: { sessionProtocol: 'future' },
+    })
+    await expect(
+      mppx.verifyCredential(Credential.serialize({ challenge, payload: { token: 'valid' } })),
+    ).rejects.toThrow('no registered method for tempo/session')
+  })
   test('returns composed x402 challenge headers when no credential', async () => {
     const mppx = Mppx.create({ methods: [x402Method], realm, secretKey })
@@ -3983,6 +4176,80 @@ describe('realm auto-detection', () => {
     }
   })
+  // A raw request line can carry a protocol-relative or embedded-authority
+  // target that WHATWG URL would resolve into a foreign host, which would then
+  // be auto-detected as the challenge realm. The realm must stay bound to the
+  // Host header.
+  test.each([
+    { name: 'protocol-relative', path: '//evil.com/resource' },
+    { name: 'embedded authority', path: '//first.example//evil.com/resource' },
+  ])('ignores $name request targets when deriving realm in node listeners', async ({ path }) => {
+    const handler = Mppx.create({ methods: [mockMethod], secretKey })
+    const server = await Http.createServer(async (req, res) => {
+      const result = await Mppx.toNodeListener(
+        handler.charge({
+          amount: '100',
+          currency: '0x0000000000000000000000000000000000000001',
+          recipient: '0x0000000000000000000000000000000000000002',
+        }),
+      )(req, res)
+      if (result.status !== 402) res.end('OK')
+    })
+    try {
+      const rawResponse = await new Promise<{
+        body: string
+        headers: http.IncomingHttpHeaders
+        statusCode: number
+      }>((resolve, reject) => {
+        const request = http.request(
+          {
+            host: '127.0.0.1',
+            port: server.port,
+            method: 'GET',
+            path,
+            headers: { Host: `localhost:${server.port}` },
+          },
+          (response) => {
+            const chunks: Buffer[] = []
+            response.on('data', (chunk) => chunks.push(Buffer.from(chunk)))
+            response.on('end', () => {
+              resolve({
+                body: Buffer.concat(chunks).toString('utf8'),
+                headers: response.headers,
+                statusCode: response.statusCode ?? 0,
+              })
+            })
+          },
+        )
+        request.on('error', reject)
+        request.end()
+      })
+      const headers = new Headers()
+      for (const [name, value] of Object.entries(rawResponse.headers)) {
+        if (Array.isArray(value)) {
+          for (const item of value) headers.append(name, item)
+        } else if (value !== undefined) {
+          headers.append(name, value)
+        }
+      }
+      const challenge = Challenge.fromResponse(
+        new Response(rawResponse.body, {
+          status: rawResponse.statusCode,
+          headers,
+        }),
+      )
+      expect(challenge.realm).toBe('localhost')
+    } finally {
+      server.close()
+    }
+  })
   test('credential verifies across different casing of same host', async () => {
     const handler = Mppx.create({ methods: [mockMethod], secretKey })
@@ -5104,7 +5371,7 @@ describe('verifyCredential', () => {
     const escrowContract = await deployEscrow()
     const server = Mppx.create({
       methods: [
-        tempo.session({
+        tempo.sessionLegacy({
           store: Store.memory(),
           getClient: () => client,
           account: accounts[0],
@@ -5121,7 +5388,7 @@ describe('verifyCredential', () => {
       methods: [
         tempo_session_client({
           account: accounts[1],
-          deposit: '10',
+          maxDeposit: '10',
           getClient: () => client,
         }),
       ],
@@ -5167,7 +5434,7 @@ describe('verifyCredential', () => {
     const escrowContract = await deployEscrow()
     const server = Mppx.create({
       methods: [
-        tempo.session({
+        tempo.sessionLegacy({
           store: Store.memory(),
           getClient: () => client,
           account: accounts[0],
@@ -5185,7 +5452,7 @@ describe('verifyCredential', () => {
       methods: [
         tempo_session_client({
           account: accounts[1],
-          deposit: '10',
+          maxDeposit: '10',
           getClient: () => client,
         }),
       ],