npm - mppx - Versions diffs - 0.6.30 → 0.7.0 - Mend

mppx 0.6.30 → 0.7.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (483) hide show

package/CHANGELOG.md +25 -0
package/dist/Challenge.d.ts.map +1 -1
package/dist/Challenge.js +9 -7
package/dist/Challenge.js.map +1 -1
package/dist/Constants.d.ts +46 -0
package/dist/Constants.d.ts.map +1 -0
package/dist/Constants.js +46 -0
package/dist/Constants.js.map +1 -0
package/dist/Credential.d.ts.map +1 -1
package/dist/Credential.js +5 -4
package/dist/Credential.js.map +1 -1
package/dist/Method.d.ts +32 -4
package/dist/Method.d.ts.map +1 -1
package/dist/Method.js +5 -2
package/dist/Method.js.map +1 -1
package/dist/Receipt.d.ts.map +1 -1
package/dist/Receipt.js +3 -2
package/dist/Receipt.js.map +1 -1
package/dist/cli/cli.d.ts.map +1 -1
package/dist/cli/cli.js +19 -11
package/dist/cli/cli.js.map +1 -1
package/dist/cli/plugins/tempo.d.ts.map +1 -1
package/dist/cli/plugins/tempo.js +17 -6
package/dist/cli/plugins/tempo.js.map +1 -1
package/dist/cli/utils.d.ts +5 -0
package/dist/cli/utils.d.ts.map +1 -1
package/dist/cli/utils.js +10 -0
package/dist/cli/utils.js.map +1 -1
package/dist/client/Methods.d.ts +5 -2
package/dist/client/Methods.d.ts.map +1 -1
package/dist/client/Methods.js +5 -2
package/dist/client/Methods.js.map +1 -1
package/dist/client/Transport.d.ts.map +1 -1
package/dist/client/Transport.js +4 -5
package/dist/client/Transport.js.map +1 -1
package/dist/client/index.d.ts +2 -1
package/dist/client/index.d.ts.map +1 -1
package/dist/client/index.js +2 -1
package/dist/client/index.js.map +1 -1
package/dist/client/internal/Fetch.d.ts.map +1 -1
package/dist/client/internal/Fetch.js +14 -6
package/dist/client/internal/Fetch.js.map +1 -1
package/dist/evm/server/Methods.d.ts +1 -1
package/dist/evm/server/Methods.d.ts.map +1 -1
package/dist/index.d.ts +1 -0
package/dist/index.d.ts.map +1 -1
package/dist/index.js +1 -0
package/dist/index.js.map +1 -1
package/dist/internal/AcceptPayment.d.ts +3 -0
package/dist/internal/AcceptPayment.d.ts.map +1 -1
package/dist/internal/AcceptPayment.js +15 -11
package/dist/internal/AcceptPayment.js.map +1 -1
package/dist/mcp-sdk/client/McpClient.d.ts +12 -5
package/dist/mcp-sdk/client/McpClient.d.ts.map +1 -1
package/dist/mcp-sdk/client/McpClient.js +55 -42
package/dist/mcp-sdk/client/McpClient.js.map +1 -1
package/dist/server/Mppx.d.ts +11 -3
package/dist/server/Mppx.d.ts.map +1 -1
package/dist/server/Mppx.js +76 -27
package/dist/server/Mppx.js.map +1 -1
package/dist/server/Request.js +24 -10
package/dist/server/Request.js.map +1 -1
package/dist/server/Response.d.ts.map +1 -1
package/dist/server/Response.js +2 -1
package/dist/server/Response.js.map +1 -1
package/dist/server/Transport.d.ts.map +1 -1
package/dist/server/Transport.js +4 -3
package/dist/server/Transport.js.map +1 -1
package/dist/server/index.d.ts +1 -0
package/dist/server/index.d.ts.map +1 -1
package/dist/server/index.js +1 -0
package/dist/server/index.js.map +1 -1
package/dist/stripe/client/Charge.d.ts +1 -1
package/dist/stripe/client/Charge.d.ts.map +1 -1
package/dist/stripe/client/Charge.js +3 -1
package/dist/stripe/client/Charge.js.map +1 -1
package/dist/stripe/server/Charge.d.ts +1 -1
package/dist/stripe/server/Charge.d.ts.map +1 -1
package/dist/stripe/server/Charge.js +9 -2
package/dist/stripe/server/Charge.js.map +1 -1
package/dist/stripe/server/Methods.d.ts +1 -1
package/dist/stripe/server/Methods.d.ts.map +1 -1
package/dist/stripe/server/internal/html.gen.d.ts +1 -1
package/dist/stripe/server/internal/html.gen.d.ts.map +1 -1
package/dist/stripe/server/internal/html.gen.js +1 -1
package/dist/stripe/server/internal/html.gen.js.map +1 -1
package/dist/tempo/Methods.d.ts +18 -0
package/dist/tempo/Methods.d.ts.map +1 -1
package/dist/tempo/Methods.js +16 -1
package/dist/tempo/Methods.js.map +1 -1
package/dist/tempo/client/Charge.d.ts +6 -0
package/dist/tempo/client/Charge.d.ts.map +1 -1
package/dist/tempo/client/Charge.js +9 -2
package/dist/tempo/client/Charge.js.map +1 -1
package/dist/tempo/client/Methods.d.ts +36 -7
package/dist/tempo/client/Methods.d.ts.map +1 -1
package/dist/tempo/client/Methods.js +12 -5
package/dist/tempo/client/Methods.js.map +1 -1
package/dist/tempo/client/index.d.ts +7 -4
package/dist/tempo/client/index.d.ts.map +1 -1
package/dist/tempo/client/index.js +5 -3
package/dist/tempo/client/index.js.map +1 -1
package/dist/tempo/index.d.ts +1 -0
package/dist/tempo/index.d.ts.map +1 -1
package/dist/tempo/index.js +1 -0
package/dist/tempo/index.js.map +1 -1
package/dist/tempo/internal/fee-payer.d.ts +21 -1
package/dist/tempo/internal/fee-payer.d.ts.map +1 -1
package/dist/tempo/internal/fee-payer.js +109 -4
package/dist/tempo/internal/fee-payer.js.map +1 -1
package/dist/tempo/{client → legacy/client}/ChannelOps.d.ts +19 -6
package/dist/tempo/legacy/client/ChannelOps.d.ts.map +1 -0
package/dist/tempo/{client → legacy/client}/ChannelOps.js +9 -3
package/dist/tempo/legacy/client/ChannelOps.js.map +1 -0
package/dist/tempo/{client → legacy/client}/Session.d.ts +23 -4
package/dist/tempo/legacy/client/Session.d.ts.map +1 -0
package/dist/tempo/{client → legacy/client}/Session.js +14 -7
package/dist/tempo/legacy/client/Session.js.map +1 -0
package/dist/tempo/{client → legacy/client}/SessionManager.d.ts +20 -5
package/dist/tempo/legacy/client/SessionManager.d.ts.map +1 -0
package/dist/tempo/{client → legacy/client}/SessionManager.js +20 -16
package/dist/tempo/legacy/client/SessionManager.js.map +1 -0
package/dist/tempo/legacy/client/index.d.ts +7 -0
package/dist/tempo/legacy/client/index.d.ts.map +1 -0
package/dist/tempo/legacy/client/index.js +5 -0
package/dist/tempo/legacy/client/index.js.map +1 -0
package/dist/tempo/legacy/index.d.ts +7 -0
package/dist/tempo/legacy/index.d.ts.map +1 -0
package/dist/tempo/legacy/index.js +7 -0
package/dist/tempo/legacy/index.js.map +1 -0
package/dist/tempo/{server → legacy/server}/Session.d.ts +28 -11
package/dist/tempo/legacy/server/Session.d.ts.map +1 -0
package/dist/tempo/{server → legacy/server}/Session.js +28 -23
package/dist/tempo/legacy/server/Session.js.map +1 -0
package/dist/tempo/legacy/server/index.d.ts +5 -0
package/dist/tempo/legacy/server/index.d.ts.map +1 -0
package/dist/tempo/legacy/server/index.js +5 -0
package/dist/tempo/legacy/server/index.js.map +1 -0
package/dist/tempo/{session → legacy/session}/Chain.d.ts +30 -23
package/dist/tempo/legacy/session/Chain.d.ts.map +1 -0
package/dist/tempo/{session → legacy/session}/Chain.js +12 -11
package/dist/tempo/legacy/session/Chain.js.map +1 -0
package/dist/tempo/{session → legacy/session}/Channel.d.ts +1 -0
package/dist/tempo/legacy/session/Channel.d.ts.map +1 -0
package/dist/tempo/legacy/session/Channel.js.map +1 -0
package/dist/tempo/legacy/session/ChannelStore.d.ts +22 -0
package/dist/tempo/legacy/session/ChannelStore.d.ts.map +1 -0
package/dist/tempo/legacy/session/ChannelStore.js +6 -0
package/dist/tempo/legacy/session/ChannelStore.js.map +1 -0
package/dist/tempo/legacy/session/Types.d.ts +73 -0
package/dist/tempo/legacy/session/Types.d.ts.map +1 -0
package/dist/tempo/legacy/session/Types.js.map +1 -0
package/dist/tempo/{session → legacy/session}/Voucher.d.ts +4 -4
package/dist/tempo/legacy/session/Voucher.d.ts.map +1 -0
package/dist/tempo/{session → legacy/session}/Voucher.js +1 -1
package/dist/tempo/legacy/session/Voucher.js.map +1 -0
package/dist/tempo/{session → legacy/session}/escrow.abi.d.ts +1 -0
package/dist/tempo/{session → legacy/session}/escrow.abi.d.ts.map +1 -1
package/dist/tempo/{session → legacy/session}/escrow.abi.js +1 -0
package/dist/tempo/legacy/session/escrow.abi.js.map +1 -0
package/dist/tempo/legacy/session/index.d.ts +9 -0
package/dist/tempo/legacy/session/index.d.ts.map +1 -0
package/dist/tempo/legacy/session/index.js +9 -0
package/dist/tempo/legacy/session/index.js.map +1 -0
package/dist/tempo/server/Charge.d.ts +1 -1
package/dist/tempo/server/Charge.d.ts.map +1 -1
package/dist/tempo/server/Charge.js +13 -16
package/dist/tempo/server/Charge.js.map +1 -1
package/dist/tempo/server/Methods.d.ts +63 -6
package/dist/tempo/server/Methods.d.ts.map +1 -1
package/dist/tempo/server/Methods.js +36 -8
package/dist/tempo/server/Methods.js.map +1 -1
package/dist/tempo/server/Subscription.d.ts +1 -1
package/dist/tempo/server/Subscription.d.ts.map +1 -1
package/dist/tempo/server/index.d.ts +6 -5
package/dist/tempo/server/index.d.ts.map +1 -1
package/dist/tempo/server/index.js +5 -5
package/dist/tempo/server/index.js.map +1 -1
package/dist/tempo/server/internal/html.gen.d.ts +1 -1
package/dist/tempo/server/internal/html.gen.d.ts.map +1 -1
package/dist/tempo/server/internal/html.gen.js +1 -1
package/dist/tempo/server/internal/html.gen.js.map +1 -1
package/dist/tempo/server/internal/request-body.d.ts +7 -2
package/dist/tempo/server/internal/request-body.d.ts.map +1 -1
package/dist/tempo/server/internal/request-body.js +20 -3
package/dist/tempo/server/internal/request-body.js.map +1 -1
package/dist/tempo/server/internal/transport.d.ts +8 -4
package/dist/tempo/server/internal/transport.d.ts.map +1 -1
package/dist/tempo/server/internal/transport.js +8 -7
package/dist/tempo/server/internal/transport.js.map +1 -1
package/dist/tempo/session/Snapshot.d.ts +32 -0
package/dist/tempo/session/Snapshot.d.ts.map +1 -0
package/dist/tempo/session/Snapshot.js +37 -0
package/dist/tempo/session/Snapshot.js.map +1 -0
package/dist/tempo/session/client/ChannelOps.d.ts +82 -0
package/dist/tempo/session/client/ChannelOps.d.ts.map +1 -0
package/dist/tempo/session/client/ChannelOps.js +204 -0
package/dist/tempo/session/client/ChannelOps.js.map +1 -0
package/dist/tempo/session/client/CredentialState.d.ts +262 -0
package/dist/tempo/session/client/CredentialState.d.ts.map +1 -0
package/dist/tempo/session/client/CredentialState.js +417 -0
package/dist/tempo/session/client/CredentialState.js.map +1 -0
package/dist/tempo/session/client/ReceiptCoordinator.d.ts +26 -0
package/dist/tempo/session/client/ReceiptCoordinator.d.ts.map +1 -0
package/dist/tempo/session/client/ReceiptCoordinator.js +61 -0
package/dist/tempo/session/client/ReceiptCoordinator.js.map +1 -0
package/dist/tempo/session/client/Runtime.d.ts +464 -0
package/dist/tempo/session/client/Runtime.d.ts.map +1 -0
package/dist/tempo/session/client/Runtime.js +499 -0
package/dist/tempo/session/client/Runtime.js.map +1 -0
package/dist/tempo/session/client/Session.d.ts +132 -0
package/dist/tempo/session/client/Session.d.ts.map +1 -0
package/dist/tempo/session/client/Session.js +55 -0
package/dist/tempo/session/client/Session.js.map +1 -0
package/dist/tempo/session/client/SessionManager.d.ts +120 -0
package/dist/tempo/session/client/SessionManager.d.ts.map +1 -0
package/dist/tempo/session/client/SessionManager.js +627 -0
package/dist/tempo/session/client/SessionManager.js.map +1 -0
package/dist/tempo/session/client/Transports.d.ts +449 -0
package/dist/tempo/session/client/Transports.d.ts.map +1 -0
package/dist/tempo/session/client/Transports.js +721 -0
package/dist/tempo/session/client/Transports.js.map +1 -0
package/dist/tempo/session/client/index.d.ts +12 -0
package/dist/tempo/session/client/index.d.ts.map +1 -0
package/dist/tempo/session/client/index.js +5 -0
package/dist/tempo/session/client/index.js.map +1 -0
package/dist/tempo/session/index.d.ts +7 -8
package/dist/tempo/session/index.d.ts.map +1 -1
package/dist/tempo/session/index.js +7 -8
package/dist/tempo/session/index.js.map +1 -1
package/dist/tempo/session/precompile/Chain.d.ts +319 -0
package/dist/tempo/session/precompile/Chain.d.ts.map +1 -0
package/dist/tempo/session/precompile/Chain.js +492 -0
package/dist/tempo/session/precompile/Chain.js.map +1 -0
package/dist/tempo/session/precompile/Channel.d.ts +46 -0
package/dist/tempo/session/precompile/Channel.d.ts.map +1 -0
package/dist/tempo/session/precompile/Channel.js +56 -0
package/dist/tempo/session/precompile/Channel.js.map +1 -0
package/dist/tempo/session/precompile/Protocol.d.ts +308 -0
package/dist/tempo/session/precompile/Protocol.d.ts.map +1 -0
package/dist/tempo/session/precompile/Protocol.js +264 -0
package/dist/tempo/session/precompile/Protocol.js.map +1 -0
package/dist/tempo/session/precompile/Voucher.d.ts +40 -0
package/dist/tempo/session/precompile/Voucher.d.ts.map +1 -0
package/dist/tempo/session/precompile/Voucher.js +126 -0
package/dist/tempo/session/precompile/Voucher.js.map +1 -0
package/dist/tempo/session/precompile/escrow.abi.d.ts +522 -0
package/dist/tempo/session/precompile/escrow.abi.d.ts.map +1 -0
package/dist/tempo/session/precompile/escrow.abi.js +224 -0
package/dist/tempo/session/precompile/escrow.abi.js.map +1 -0
package/dist/tempo/session/precompile/index.d.ts +24 -0
package/dist/tempo/session/precompile/index.d.ts.map +1 -0
package/dist/tempo/session/precompile/index.js +22 -0
package/dist/tempo/session/precompile/index.js.map +1 -0
package/dist/tempo/session/server/ChannelOps.d.ts +56 -0
package/dist/tempo/session/server/ChannelOps.d.ts.map +1 -0
package/dist/tempo/session/server/ChannelOps.js +91 -0
package/dist/tempo/session/server/ChannelOps.js.map +1 -0
package/dist/tempo/session/server/ChannelStore.d.ts +347 -0
package/dist/tempo/session/server/ChannelStore.d.ts.map +1 -0
package/dist/tempo/session/server/ChannelStore.js +404 -0
package/dist/tempo/session/server/ChannelStore.js.map +1 -0
package/dist/tempo/session/server/CredentialVerification.d.ts +85 -0
package/dist/tempo/session/server/CredentialVerification.d.ts.map +1 -0
package/dist/tempo/session/server/CredentialVerification.js +494 -0
package/dist/tempo/session/server/CredentialVerification.js.map +1 -0
package/dist/tempo/session/server/MeteredStream.d.ts +40 -0
package/dist/tempo/session/server/MeteredStream.d.ts.map +1 -0
package/dist/tempo/session/server/MeteredStream.js +42 -0
package/dist/tempo/session/server/MeteredStream.js.map +1 -0
package/dist/tempo/session/server/RequestState.d.ts +208 -0
package/dist/tempo/session/server/RequestState.d.ts.map +1 -0
package/dist/tempo/session/server/RequestState.js +252 -0
package/dist/tempo/session/server/RequestState.js.map +1 -0
package/dist/tempo/session/server/Session.d.ts +169 -0
package/dist/tempo/session/server/Session.d.ts.map +1 -0
package/dist/tempo/session/server/Session.js +351 -0
package/dist/tempo/session/server/Session.js.map +1 -0
package/dist/tempo/session/server/Settlement.d.ts +185 -0
package/dist/tempo/session/server/Settlement.d.ts.map +1 -0
package/dist/tempo/session/server/Settlement.js +250 -0
package/dist/tempo/session/server/Settlement.js.map +1 -0
package/dist/tempo/session/{Sse.d.ts → server/Sse.d.ts} +9 -56
package/dist/tempo/session/server/Sse.d.ts.map +1 -0
package/dist/tempo/session/server/Sse.js +184 -0
package/dist/tempo/session/server/Sse.js.map +1 -0
package/dist/tempo/session/server/Transports.d.ts +89 -0
package/dist/tempo/session/server/Transports.d.ts.map +1 -0
package/dist/tempo/session/server/Transports.js +149 -0
package/dist/tempo/session/server/Transports.js.map +1 -0
package/dist/tempo/session/server/Ws.d.ts +48 -0
package/dist/tempo/session/server/Ws.d.ts.map +1 -0
package/dist/tempo/session/server/Ws.js +244 -0
package/dist/tempo/session/server/Ws.js.map +1 -0
package/dist/tempo/session/server/index.d.ts +4 -0
package/dist/tempo/session/server/index.d.ts.map +1 -0
package/dist/tempo/session/server/index.js +2 -0
package/dist/tempo/session/server/index.js.map +1 -0
package/package.json +8 -3
package/src/Challenge.ts +9 -7
package/src/Constants.ts +58 -0
package/src/Credential.ts +5 -4
package/src/Method.ts +46 -5
package/src/Receipt.ts +3 -2
package/src/cli/cli.test.ts +23 -28
package/src/cli/cli.ts +23 -10
package/src/cli/mcp.test.ts +21 -7
package/src/cli/plugins/tempo.ts +21 -8
package/src/cli/utils.test.ts +25 -1
package/src/cli/utils.ts +10 -0
package/src/client/Methods.ts +5 -2
package/src/client/Mppx.test-d.ts +10 -0
package/src/client/Mppx.test.ts +75 -0
package/src/client/Transport.ts +4 -5
package/src/client/index.ts +11 -1
package/src/client/internal/Fetch.test.ts +29 -4
package/src/client/internal/Fetch.ts +17 -5
package/src/env.d.ts +1 -1
package/src/index.ts +1 -0
package/src/internal/AcceptPayment.test.ts +61 -0
package/src/internal/AcceptPayment.ts +21 -14
package/src/mcp-sdk/client/McpClient.integration.test.ts +8 -7
package/src/mcp-sdk/client/McpClient.test-d.ts +7 -0
package/src/mcp-sdk/client/McpClient.ts +99 -67
package/src/mcp-sdk/client/McpClient.unit.test.ts +131 -0
package/src/middlewares/elysia.test.ts +8 -4
package/src/middlewares/express.test.ts +8 -4
package/src/middlewares/hono.test.ts +4 -4
package/src/middlewares/nextjs.test.ts +8 -4
package/src/proxy/Proxy.test.ts +8 -8
package/src/server/Mppx.test-d.ts +54 -0
package/src/server/Mppx.test.ts +274 -7
package/src/server/Mppx.ts +487 -406
package/src/server/Request.test.ts +81 -0
package/src/server/Request.ts +23 -9
package/src/server/Response.ts +2 -1
package/src/server/Transport.ts +4 -3
package/src/server/index.ts +1 -0
package/src/stripe/client/Charge.test.ts +20 -5
package/src/stripe/client/Charge.ts +6 -2
package/src/stripe/server/Charge.test.ts +114 -1
package/src/stripe/server/Charge.ts +13 -2
package/src/stripe/server/internal/html/package.json +1 -1
package/src/stripe/server/internal/html.gen.ts +1 -1
package/src/tempo/AccessKeyAuthorization.test.ts +4 -94
package/src/tempo/Methods.test.ts +45 -17
package/src/tempo/Methods.ts +22 -0
package/src/tempo/PublicExports.test-d.ts +105 -0
package/src/tempo/client/Charge.test.ts +85 -0
package/src/tempo/client/Charge.ts +19 -2
package/src/tempo/client/Methods.ts +18 -6
package/src/tempo/client/index.ts +15 -4
package/src/tempo/index.ts +1 -0
package/src/tempo/internal/fee-payer.test.ts +241 -17
package/src/tempo/internal/fee-payer.ts +150 -4
package/src/tempo/internal/fee-token.test.ts +14 -9
package/src/tempo/legacy/AccessKeyAuthorization.test.ts +162 -0
package/src/tempo/legacy/README.md +9 -0
package/src/tempo/{client → legacy/client}/ChannelOps.test.ts +6 -7
package/src/tempo/{client → legacy/client}/ChannelOps.ts +22 -9
package/src/tempo/{client → legacy/client}/Session.test.ts +51 -9
package/src/tempo/{client → legacy/client}/Session.ts +25 -11
package/src/tempo/{client → legacy/client}/SessionManager.test.ts +81 -9
package/src/tempo/{client → legacy/client}/SessionManager.ts +41 -20
package/src/tempo/legacy/client/index.ts +6 -0
package/src/tempo/legacy/index.ts +6 -0
package/src/tempo/{server → legacy/server}/Session.test.ts +162 -63
package/src/tempo/{server → legacy/server}/Session.ts +49 -37
package/src/tempo/legacy/server/index.ts +4 -0
package/src/tempo/{session → legacy/session}/Chain.test.ts +3 -4
package/src/tempo/{session → legacy/session}/Chain.ts +94 -63
package/src/tempo/{session → legacy/session}/Channel.ts +1 -0
package/src/tempo/legacy/session/ChannelStore.test.ts +58 -0
package/src/tempo/legacy/session/ChannelStore.ts +39 -0
package/src/tempo/legacy/session/Types.ts +91 -0
package/src/tempo/{session → legacy/session}/Voucher.ts +12 -8
package/src/tempo/{session → legacy/session}/escrow.abi.ts +1 -0
package/src/tempo/legacy/session/index.ts +8 -0
package/src/tempo/server/AtomicStore.test-d.ts +16 -11
package/src/tempo/server/Charge.test.ts +92 -14
package/src/tempo/server/Charge.ts +18 -16
package/src/tempo/server/Methods.ts +54 -8
package/src/tempo/server/Sse.test.ts +2 -2
package/src/tempo/server/index.ts +6 -5
package/src/tempo/server/internal/html/package.json +1 -1
package/src/tempo/server/internal/html.gen.ts +1 -1
package/src/tempo/server/internal/request-body.test.ts +37 -4
package/src/tempo/server/internal/request-body.ts +25 -6
package/src/tempo/server/internal/transport.test.ts +4 -4
package/src/tempo/server/internal/transport.ts +19 -10
package/src/tempo/session/Snapshot.test.ts +41 -0
package/src/tempo/session/Snapshot.ts +74 -0
package/src/tempo/session/client/ChannelOps.test.ts +163 -0
package/src/tempo/session/client/ChannelOps.ts +344 -0
package/src/tempo/session/client/CredentialState.test.ts +645 -0
package/src/tempo/session/client/CredentialState.ts +814 -0
package/src/tempo/session/client/ReceiptCoordinator.ts +95 -0
package/src/tempo/session/client/Runtime.test.ts +1092 -0
package/src/tempo/session/client/Runtime.ts +986 -0
package/src/tempo/session/client/Session.test.ts +734 -0
package/src/tempo/session/client/Session.ts +97 -0
package/src/tempo/session/client/SessionManager.test.ts +1308 -0
package/src/tempo/session/client/SessionManager.ts +845 -0
package/src/tempo/session/client/Transports.test.ts +837 -0
package/src/tempo/session/client/Transports.ts +1292 -0
package/src/tempo/session/client/index.ts +37 -0
package/src/tempo/session/index.ts +7 -8
package/src/tempo/session/precompile/Chain.integration.test.ts +321 -0
package/src/tempo/session/precompile/Chain.test.ts +1258 -0
package/src/tempo/session/precompile/Chain.ts +979 -0
package/src/tempo/session/precompile/Channel.test.ts +138 -0
package/src/tempo/session/precompile/Channel.ts +103 -0
package/src/tempo/session/precompile/Protocol.test.ts +358 -0
package/src/tempo/session/precompile/Protocol.ts +520 -0
package/src/tempo/session/precompile/Voucher.test.ts +316 -0
package/src/tempo/session/precompile/Voucher.ts +160 -0
package/src/tempo/session/precompile/escrow.abi.ts +226 -0
package/src/tempo/session/precompile/index.ts +33 -0
package/src/tempo/session/server/ChannelOps.test.ts +129 -0
package/src/tempo/session/server/ChannelOps.ts +157 -0
package/src/tempo/session/{ChannelStore.test.ts → server/ChannelStore.test.ts} +536 -29
package/src/tempo/session/server/ChannelStore.ts +835 -0
package/src/tempo/session/server/CredentialVerification.test.ts +146 -0
package/src/tempo/session/server/CredentialVerification.ts +710 -0
package/src/tempo/session/server/MeteredStream.ts +88 -0
package/src/tempo/session/server/RequestState.test.ts +531 -0
package/src/tempo/session/server/RequestState.ts +499 -0
package/src/tempo/session/server/Session.integration.test.ts +444 -0
package/src/tempo/session/server/Session.test.ts +3253 -0
package/src/tempo/session/server/Session.ts +543 -0
package/src/tempo/session/server/Settlement.test.ts +242 -0
package/src/tempo/session/server/Settlement.ts +470 -0
package/src/tempo/session/{Sse.test.ts → server/Sse.test.ts} +37 -3
package/src/tempo/session/server/Sse.ts +256 -0
package/src/tempo/session/server/Transports.test.ts +346 -0
package/src/tempo/session/server/Transports.ts +255 -0
package/src/tempo/session/{Ws.test.ts → server/Ws.test.ts} +4 -4
package/src/tempo/session/server/Ws.ts +384 -0
package/src/tempo/session/server/index.ts +8 -0
package/dist/tempo/client/ChannelOps.d.ts.map +0 -1
package/dist/tempo/client/ChannelOps.js.map +0 -1
package/dist/tempo/client/Session.d.ts.map +0 -1
package/dist/tempo/client/Session.js.map +0 -1
package/dist/tempo/client/SessionManager.d.ts.map +0 -1
package/dist/tempo/client/SessionManager.js.map +0 -1
package/dist/tempo/server/Session.d.ts.map +0 -1
package/dist/tempo/server/Session.js.map +0 -1
package/dist/tempo/session/Chain.d.ts.map +0 -1
package/dist/tempo/session/Chain.js.map +0 -1
package/dist/tempo/session/Channel.d.ts.map +0 -1
package/dist/tempo/session/Channel.js.map +0 -1
package/dist/tempo/session/ChannelStore.d.ts +0 -117
package/dist/tempo/session/ChannelStore.d.ts.map +0 -1
package/dist/tempo/session/ChannelStore.js +0 -172
package/dist/tempo/session/ChannelStore.js.map +0 -1
package/dist/tempo/session/Receipt.d.ts +0 -22
package/dist/tempo/session/Receipt.d.ts.map +0 -1
package/dist/tempo/session/Receipt.js +0 -34
package/dist/tempo/session/Receipt.js.map +0 -1
package/dist/tempo/session/Sse.d.ts.map +0 -1
package/dist/tempo/session/Sse.js +0 -363
package/dist/tempo/session/Sse.js.map +0 -1
package/dist/tempo/session/Types.d.ts +0 -78
package/dist/tempo/session/Types.d.ts.map +0 -1
package/dist/tempo/session/Types.js.map +0 -1
package/dist/tempo/session/Voucher.d.ts.map +0 -1
package/dist/tempo/session/Voucher.js.map +0 -1
package/dist/tempo/session/Ws.d.ts +0 -87
package/dist/tempo/session/Ws.d.ts.map +0 -1
package/dist/tempo/session/Ws.js +0 -443
package/dist/tempo/session/Ws.js.map +0 -1
package/dist/tempo/session/escrow.abi.js.map +0 -1
package/src/tempo/session/ChannelStore.ts +0 -308
package/src/tempo/session/Receipt.test.ts +0 -89
package/src/tempo/session/Receipt.ts +0 -46
package/src/tempo/session/Sse.ts +0 -462
package/src/tempo/session/Types.ts +0 -86
package/src/tempo/session/Ws.ts +0 -576
/package/dist/tempo/{session → legacy/session}/Channel.js +0 -0
/package/dist/tempo/{session → legacy/session}/Types.js +0 -0
/package/src/tempo/{session → legacy/session}/Channel.test.ts +0 -0
/package/src/tempo/{session → legacy/session}/Voucher.test.ts +0 -0
/package/src/tempo/session/{Sse.fuzz.test.ts → server/Sse.fuzz.test.ts} +0 -0

package/src/tempo/session/client/Transports.ts ADDED Viewed

@@ -0,0 +1,1292 @@
+import type { Hex } from 'ox'
+import * as Challenge from '../../../Challenge.js'
+import * as Fetch from '../../../client/internal/Fetch.js'
+import * as Constants from '../../../Constants.js'
+import * as PaymentCredential from '../../../Credential.js'
+import * as z from '../../../zod.js'
+import * as Methods from '../../Methods.js'
+import {
+  deserializeSessionReceipt,
+  isEventStream,
+  parseEvent,
+  readSessionChallengeAmount,
+  uint96,
+  type NeedVoucherEvent,
+  type SessionCredentialPayload,
+  type SessionReceipt,
+} from '../precompile/Protocol.js'
+import * as Ws from '../precompile/Protocol.js'
+import type { SessionSnapshot } from '../Snapshot.js'
+import type { ChannelEntry } from './ChannelOps.js'
+import type { SessionContext } from './CredentialState.js'
+import {
+  activeStateFromChannel,
+  activeStateFromReceipt,
+  isExpectedCloseReceipt,
+  parseManagerAmount,
+  type CloseTarget,
+  type SessionState,
+} from './Runtime.js'
+/** Runtime WebSocket constructor accepted by `sessionManager()` in non-browser environments. */
+export type WebSocketConstructor = {
+  new (url: string | URL, protocols?: string | string[]): WebSocket
+}
+/** Numeric ready-state constants used by browser-compatible WebSocket clients. */
+export const WebSocketReadyState = {
+  CONNECTING: 0,
+  OPEN: 1,
+  CLOSING: 2,
+  CLOSED: 3,
+} as const
+// Browser-style WebSocket clients may only initiate close with 1000 or 3000-4999.
+// Keep protocol/policy close codes on the server side and use an app-defined code here.
+/** Client-side close code used for payment protocol errors. */
+export const ClientWebSocketProtocolErrorCloseCode = 3008
+type EventType = 'close' | 'error' | 'message' | 'open'
+type ManagedEventMap = {
+  close: { code: number; reason: string; type: 'close'; wasClean: boolean }
+  error: { type: 'error' }
+  message: { data: string; type: 'message' }
+  open: { type: 'open' }
+}
+type ListenerValue<type extends EventType = EventType> =
+  | ((event: ManagedEventMap[type]) => void)
+  | { handleEvent(event: ManagedEventMap[type]): void }
+type Listener = {
+  once: boolean
+  value: ListenerValue<EventType>
+}
+type ManagedSocketShape = {
+  onclose: ((event: ManagedEventMap['close']) => void) | null
+  onerror: ((event: ManagedEventMap['error']) => void) | null
+  onmessage: ((event: ManagedEventMap['message']) => void) | null
+  onopen: ((event: ManagedEventMap['open']) => void) | null
+}
+/** Managed socket facade returned to callers after payment protocol frames are intercepted. */
+export type SessionManagedWebSocket = ManagedSocketShape & {
+  addEventListener<type extends EventType>(
+    type: type,
+    listener: ListenerValue<type>,
+    options?: boolean | AddEventListenerOptions,
+  ): void
+  readonly bufferedAmount: WebSocket['bufferedAmount']
+  close(code?: number, reason?: string): void
+  readonly extensions: WebSocket['extensions']
+  on<type extends EventType>(type: type, listener: (event: ManagedEventMap[type]) => void): void
+  off<type extends EventType>(type: type, listener: (event: ManagedEventMap[type]) => void): void
+  readonly protocol: WebSocket['protocol']
+  readonly readyState: WebSocket['readyState']
+  removeEventListener<type extends EventType>(type: type, listener: ListenerValue<type>): void
+  send(data: string): void
+  readonly url: WebSocket['url']
+}
+/** Wraps a raw WebSocket so protocol frames can be handled before user listeners see messages. */
+export function createManagedSocket(socket: WebSocket) {
+  const listeners = new Map<EventType, Set<Listener>>()
+  let emittedClose = false
+  let messageBuffer: ManagedEventMap['message'][] | null = []
+  let readyState = socket.readyState
+  const add = <type extends EventType>(
+    type: type,
+    listener: ListenerValue<type>,
+    options?: boolean | AddEventListenerOptions,
+  ) => {
+    let set = listeners.get(type)
+    if (!set) {
+      set = new Set()
+      listeners.set(type, set)
+    }
+    set.add({
+      once: typeof options === 'object' ? options.once === true : false,
+      value: listener as ListenerValue<EventType>,
+    })
+    if (type === 'message' && messageBuffer) {
+      const buffered = messageBuffer
+      messageBuffer = null
+      for (const event of buffered) emit('message', event)
+    }
+  }
+  const remove = <type extends EventType>(type: type, listener: ListenerValue<type>) => {
+    const set = listeners.get(type)
+    if (!set) return
+    for (const entry of set) {
+      if (entry.value === listener) set.delete(entry)
+    }
+  }
+  function emit<type extends EventType>(type: type, event: ManagedEventMap[type]) {
+    if (event.type === 'close') {
+      if (emittedClose) return
+      emittedClose = true
+      readyState = WebSocketReadyState.CLOSED
+      messageBuffer = null
+    }
+    if (event.type === 'open') readyState = WebSocketReadyState.OPEN
+    if (event.type === 'message' && messageBuffer) {
+      messageBuffer.push(event)
+      return
+    }
+    switch (event.type) {
+      case 'close':
+        managed.onclose?.(event)
+        break
+      case 'error':
+        managed.onerror?.(event)
+        break
+      case 'message':
+        managed.onmessage?.(event)
+        break
+      case 'open':
+        managed.onopen?.(event)
+        break
+    }
+    const set = listeners.get(type)
+    if (!set) return
+    for (const entry of Array.from(set)) {
+      if (typeof entry.value === 'function') entry.value(event)
+      else entry.value.handleEvent(event)
+      if (entry.once) set.delete(entry)
+    }
+  }
+  let onmessage: ManagedSocketShape['onmessage'] = null
+  const managed: SessionManagedWebSocket = {
+    addEventListener: add,
+    close(code?: number, reason?: string) {
+      socket.close(code, reason)
+    },
+    get bufferedAmount() {
+      return socket.bufferedAmount
+    },
+    get extensions() {
+      return socket.extensions
+    },
+    on<type extends EventType>(type: type, listener: (event: ManagedEventMap[type]) => void) {
+      add(type, listener)
+    },
+    onclose: null as ManagedSocketShape['onclose'],
+    onerror: null as ManagedSocketShape['onerror'],
+    get onmessage() {
+      return onmessage
+    },
+    set onmessage(fn: ManagedSocketShape['onmessage']) {
+      onmessage = fn
+      if (fn && messageBuffer) {
+        const buffered = messageBuffer
+        messageBuffer = null
+        for (const event of buffered) emit('message', event)
+      }
+    },
+    onopen: null as ManagedSocketShape['onopen'],
+    off<type extends EventType>(type: type, listener: (event: ManagedEventMap[type]) => void) {
+      remove(type, listener)
+    },
+    get protocol() {
+      return socket.protocol
+    },
+    get readyState() {
+      return readyState
+    },
+    removeEventListener: remove,
+    send(data: string) {
+      socket.send(data)
+    },
+    get url() {
+      return socket.url
+    },
+  }
+  return {
+    emit,
+    socket: managed,
+  }
+}
+/** Top-up requirement emitted by HTTP, SSE, or WebSocket session flows. */
+export type TopUpRequirement = {
+  /** Challenge used to authorize the management request. */
+  challenge: TempoSessionChallenge
+  /** Channel that requires more deposit. */
+  channelId: Hex.Hex
+  /** Current channel deposit in raw units. */
+  deposit: bigint
+  /** Original paid resource URL; converted to a management URL by the caller. */
+  input: RequestInfo | URL
+  /** Minimum cumulative voucher amount the server needs. */
+  requiredCumulative: bigint
+}
+/** Inputs needed to validate a caller-requested manager top-up. */
+export type ResolveManualTopUpParameters = {
+  /** Human-readable or raw top-up amount passed to `SessionManager.topUp()`. */
+  amount: string | bigint
+  /** Local policy guard for cumulative voucher authorization. */
+  assertVoucherWithinLocalLimit(cumulativeAmount: bigint): void
+  /** Active channel cache entry, when one exists. */
+  channel: ChannelEntry | null
+  /** Token decimals used to parse string amounts. */
+  decimals: number
+  /** Last challenge observed by the manager. */
+  lastChallenge: TempoSessionChallenge | null
+  /** Last paid resource or management URL available to the manager. */
+  lastUrl: RequestInfo | URL | null
+}
+/** Validated target for a caller-requested manager top-up. */
+export type ManualTopUpTarget = {
+  /** Additional deposit in raw token units. */
+  additionalDeposit: bigint
+  /** Challenge used to authorize the top-up credential. */
+  challenge: TempoSessionChallenge
+  /** Channel ID receiving the top-up. */
+  channelId: Hex.Hex
+  /** URL used for the top-up management POST. */
+  input: RequestInfo | URL
+}
+/** Inputs for applying a successful top-up POST to local manager state. */
+export type ApplyTopUpResultParameters = {
+  /** Additional deposit accepted by the top-up credential. */
+  additionalDeposit: bigint
+  /** Active local channel cache entry, when one exists. */
+  channel: ChannelEntry | null
+  /** Channel ID targeted by the top-up. */
+  channelId: Hex.Hex
+  /** Current active challenge ID, used when the server did not return a receipt. */
+  challengeId?: string | undefined
+  /** Current active machine state, used to preserve paid unit count when possible. */
+  currentState: SessionState
+  /** Receipt returned by the top-up POST, when present. */
+  receipt?: SessionReceipt | undefined
+  /** Latest locally observed spend in raw units. */
+  spent: bigint
+}
+/** Local runtime updates produced by a top-up POST. */
+export type AppliedTopUpResult = {
+  /** Channel with updated deposit. */
+  channel: ChannelEntry
+  /** Next public machine state, when enough context is available to project one. */
+  state?: SessionState | undefined
+}
+/** Parsed raw-unit amounts from a server need-voucher event. */
+export type NeedVoucherEventAmounts = {
+  /** Highest voucher amount currently accepted by the server. */
+  acceptedCumulative: bigint
+  /** Current on-chain deposit reported by the server. */
+  deposit: bigint
+  /** Minimum cumulative voucher amount required by the server. */
+  requiredCumulative: bigint
+}
+/** Inputs used to satisfy a server need-voucher event. */
+export type ResolveNeedVoucherContextParameters = {
+  /** Local policy guard for cumulative voucher authorization. */
+  assertVoucherWithinLocalLimit(cumulativeAmount: bigint): void
+  /** Challenge used for follow-up management credentials. */
+  challenge: TempoSessionChallenge
+  /** Server need-voucher event. */
+  event: NeedVoucherEvent
+  /** Expected channel ID for this transport flow. */
+  expectedChannelId: Hex.Hex
+  /** Reads the latest active channel after any top-up. */
+  getChannel(): ChannelEntry | null
+  /** Original paid resource URL; converted to management URL by the caller. */
+  input: RequestInfo | URL
+  /** Performs the deposit top-up when server-required cumulative exceeds deposit. */
+  topUpIfNeeded(parameters: TopUpRequirement): Promise<void>
+}
+/** Result of handling a server need-voucher event. */
+export type NeedVoucherResolution =
+  | {
+      /** A voucher credential can be signed with this context. */
+      status: 'ready'
+      /** Context passed to the low-level session credential method. */
+      context: SessionContext
+    }
+  | {
+      /** No voucher should be sent for this event. */
+      status: 'ignored'
+      /** Why the event was ignored. */
+      reason: 'channel-mismatch' | 'missing-channel'
+    }
+/** Parses raw-unit numeric fields from a need-voucher event. */
+export function readNeedVoucherEventAmounts(event: NeedVoucherEvent): NeedVoucherEventAmounts {
+  return {
+    acceptedCumulative: BigInt(event.acceptedCumulative),
+    deposit: BigInt(event.deposit),
+    requiredCumulative: BigInt(event.requiredCumulative),
+  }
+}
+/** Validates local manager state and returns the concrete top-up operation to execute. */
+export function resolveManualTopUp(parameters: ResolveManualTopUpParameters): ManualTopUpTarget {
+  const { amount, assertVoucherWithinLocalLimit, channel, decimals, lastChallenge, lastUrl } =
+    parameters
+  if (!channel?.opened) throw new Error('Cannot top up session: no open channel.')
+  if (!lastChallenge) {
+    throw new Error('Cannot top up session: no challenge available. Make a request first.')
+  }
+  if (!lastUrl) {
+    throw new Error('Cannot top up session: no URL available. Call fetch(), sse(), or ws() first.')
+  }
+  const additionalDeposit = parseManagerAmount(amount, decimals)
+  if (additionalDeposit <= 0n) throw new Error('Top-up amount must be greater than zero.')
+  assertVoucherWithinLocalLimit(channel.cumulativeAmount + additionalDeposit)
+  return {
+    additionalDeposit,
+    challenge: lastChallenge,
+    channelId: channel.channelId,
+    input: lastUrl,
+  }
+}
+/**
+ * Applies local deposit and state bookkeeping for a top-up response.
+ *
+ * `deposit` is updated from the top-up amount. Receipt cumulative values only
+ * update accepted spend authorization; they do not replace deposit.
+ */
+export function applyTopUpResult(
+  parameters: ApplyTopUpResultParameters,
+): AppliedTopUpResult | undefined {
+  const { additionalDeposit, channel, channelId, challengeId, currentState, receipt, spent } =
+    parameters
+  if (channel?.channelId !== channelId) return undefined
+  channel.deposit += additionalDeposit
+  if (receipt) return { channel, state: activeStateFromReceipt(receipt, channel) }
+  if (!challengeId) return { channel }
+  return {
+    channel,
+    state: activeStateFromChannel({
+      challengeId,
+      entry: channel,
+      spent: spent.toString(),
+      units: currentState.status === 'active' ? currentState.units : 0,
+    }),
+  }
+}
+/**
+ * Applies local top-up/cumulative bookkeeping for a need-voucher event and
+ * returns an explicit transport decision.
+ */
+export async function resolveNeedVoucherContext(
+  parameters: ResolveNeedVoucherContextParameters,
+): Promise<NeedVoucherResolution> {
+  if (parameters.event.channelId !== parameters.expectedChannelId) {
+    return { status: 'ignored', reason: 'channel-mismatch' }
+  }
+  const eventAmounts = readNeedVoucherEventAmounts(parameters.event)
+  parameters.assertVoucherWithinLocalLimit(eventAmounts.requiredCumulative)
+  await parameters.topUpIfNeeded({
+    challenge: parameters.challenge,
+    input: parameters.input,
+    channelId: parameters.expectedChannelId,
+    deposit: eventAmounts.deposit,
+    requiredCumulative: eventAmounts.requiredCumulative,
+  })
+  const channel = parameters.getChannel()
+  if (!channel || channel.channelId !== parameters.expectedChannelId) {
+    return { status: 'ignored', reason: 'missing-channel' }
+  }
+  const cumulativeAmount =
+    channel.cumulativeAmount > eventAmounts.requiredCumulative
+      ? channel.cumulativeAmount
+      : uint96(eventAmounts.requiredCumulative)
+  return {
+    status: 'ready',
+    context: {
+      action: 'voucher',
+      channelId: parameters.expectedChannelId,
+      descriptor: channel.descriptor,
+      cumulativeAmountRaw: cumulativeAmount.toString(),
+    },
+  }
+}
+/** Canonical challenge shape for built-in `tempo/session` requests. */
+export type TempoSessionChallenge = Challenge.Challenge<
+  z.output<typeof Methods.session.schema.request>,
+  typeof Constants.Intents.session,
+  typeof Constants.Methods.tempo
+>
+/** Creates a credential bound to the current session challenge. */
+export type CreateSessionCredential = (
+  challenge: TempoSessionChallenge,
+  context: SessionContext,
+) => Promise<string>
+/** Inputs for posting a precompile session top-up credential. */
+export type PostTopUpParameters = {
+  /** Additional deposit in raw token units. */
+  additionalDeposit: bigint
+  /** Challenge used to authorize the management request. */
+  challenge: TempoSessionChallenge
+  /** Local channel expected to receive the top-up. */
+  channel: ChannelEntry | null
+  /** Channel ID being topped up. */
+  channelId: Hex.Hex
+  /** Creates the signed top-up credential. */
+  createSessionCredential: CreateSessionCredential
+  /** Fetch implementation used for the management POST. */
+  fetch: typeof globalThis.fetch
+  /** Original paid resource URL; normalized to a management URL before posting. */
+  input: RequestInfo | URL
+}
+/** Inputs for retrying an HTTP 402 with a top-up/voucher management round trip. */
+export type RetryHttpPaymentRequiredParameters = {
+  /** Creates the signed voucher credential. */
+  createSessionCredential: CreateSessionCredential
+  /** Fetch implementation used for the paid retry. */
+  fetch: typeof globalThis.fetch
+  /** Returns the current active channel after any top-up side effects. */
+  getChannel(): ChannelEntry | null
+  /** Original request init used by the paid resource request. */
+  init?: RequestInit | undefined
+  /** Original paid resource URL. */
+  input: RequestInfo | URL
+  /** Failed HTTP response that may contain a session challenge. */
+  response: Response
+  /** Restores local cumulative authorization if the voucher retry fails. */
+  restoreCumulative(channelId: Hex.Hex, cumulativeAmount: bigint): void
+  /** Stores the selected follow-up challenge on the manager. */
+  setChallenge(challenge: TempoSessionChallenge): void
+  /** Performs automatic top-up before the voucher retry when deposit is insufficient. */
+  topUpIfNeeded(parameters: TopUpRequirement): Promise<void>
+}
+/** Resolved data needed to perform an automatic HTTP voucher retry. */
+export type RetryHttpPaymentContext = {
+  /** Channel active before the retry attempt. */
+  channel: ChannelEntry
+  /** Follow-up challenge selected from the 402 response. */
+  challenge: TempoSessionChallenge
+  /** Server snapshot describing the required voucher boundary. */
+  snapshot: NonNullable<ReturnType<typeof getSessionSnapshot>>
+}
+/** Inputs for posting a cooperative HTTP close credential. */
+export type CloseHttpSessionParameters = {
+  /** Creates the signed close credential. */
+  createSessionCredential: CreateSessionCredential
+  /** Fetch implementation used for the close POST. */
+  fetch: typeof globalThis.fetch
+  /** Last paid resource URL; used as the management endpoint base. */
+  lastUrl: RequestInfo | URL | null
+  /** Final cumulative amount the client is willing to sign. */
+  signedCloseAmount: string
+  /** Stores a fresh close challenge when the first close credential expired. */
+  setChallenge?: ((challenge: TempoSessionChallenge) => void) | undefined
+  /** Channel/challenge pair being closed. */
+  target: CloseTarget
+}
+/** Returns true when a payment challenge is the built-in `tempo/session` method. */
+export function isTempoSessionChallenge(
+  challenge: Challenge.Challenge,
+): challenge is TempoSessionChallenge {
+  return (
+    challenge.method === Constants.Methods.tempo && challenge.intent === Constants.Intents.session
+  )
+}
+/** Reads a server-provided session snapshot from challenge method details. */
+export function getSessionSnapshot(challenge: TempoSessionChallenge): SessionSnapshot | undefined {
+  return Constants.getMethodDetail<SessionSnapshot>(
+    challenge.request.methodDetails,
+    Constants.MethodDetailKeys.sessionSnapshot,
+  )
+}
+/** Merges request headers and sets the payment authorization header for a retry. */
+export function requestInitWithAuthorization(
+  input: RequestInfo | URL,
+  init: RequestInit | undefined,
+  credential: string,
+): RequestInit {
+  const requestHeaders = input instanceof Request ? input.headers : undefined
+  return {
+    ...init,
+    headers: {
+      ...Fetch.normalizeHeaders(requestHeaders),
+      ...Fetch.normalizeHeaders(init?.headers),
+      [Constants.Headers.authorization]: credential,
+    },
+  }
+}
+/** Returns the URL used for out-of-band management POSTs, stripping resource query state. */
+export function managementInput(input: RequestInfo | URL): RequestInfo | URL {
+  try {
+    const base =
+      typeof location === 'undefined' ? undefined : (location.href as `${string}:${string}`)
+    const url =
+      input instanceof Request
+        ? new URL(input.url)
+        : input instanceof URL
+          ? new URL(input)
+          : new URL(String(input), base)
+    url.search = ''
+    return url
+  } catch {
+    return input
+  }
+}
+/** Converts a WebSocket URL into the HTTP URL used for its payment challenge probe. */
+export function webSocketProbeUrl(input: string | URL): URL {
+  const url = new URL(input.toString())
+  if (url.protocol === 'ws:') url.protocol = 'http:'
+  if (url.protocol === 'wss:') url.protocol = 'https:'
+  return url
+}
+/** Reads an HTTP problem detail body, falling back to raw text for non-problem responses. */
+export async function readProblemDetail(response: Response) {
+  const body = await response.text().catch(() => '')
+  if (!body) return ''
+  if (!response.headers.get('Content-Type')?.includes('application/problem+json')) return body
+  try {
+    const problem = JSON.parse(body) as { detail?: string }
+    return problem.detail ?? body
+  } catch {
+    return body
+  }
+}
+/** Posts a top-up management credential and returns its receipt, when present. */
+export async function postTopUp(
+  parameters: PostTopUpParameters,
+): Promise<SessionReceipt | undefined> {
+  const { channel, channelId } = parameters
+  if (!channel?.descriptor || channel.channelId !== channelId) {
+    throw new Error('Cannot top up session: no local channel descriptor available.')
+  }
+  const credential = await parameters.createSessionCredential(parameters.challenge, {
+    action: 'topUp',
+    channelId,
+    descriptor: channel.descriptor,
+    additionalDepositRaw: parameters.additionalDeposit.toString(),
+  })
+  const response = await parameters.fetch(managementInput(parameters.input), {
+    method: 'POST',
+    headers: { [Constants.Headers.authorization]: credential },
+  })
+  if (!response.ok) throw new Error(`Top-up POST failed with status ${response.status}`)
+  const receiptHeader = response.headers.get(Constants.Headers.paymentReceipt)
+  return receiptHeader ? deserializeSessionReceipt(receiptHeader) : undefined
+}
+/** Retries an HTTP 402 when the server snapshot asks for more voucher headroom. */
+export async function retryHttpPaymentRequired(
+  parameters: RetryHttpPaymentRequiredParameters,
+): Promise<Response | undefined> {
+  const context = resolveRetryHttpPaymentContext({
+    channel: parameters.getChannel(),
+    response: parameters.response,
+  })
+  if (!context) return undefined
+  const { channel, challenge, snapshot } = context
+  parameters.setChallenge(challenge)
+  const requiredCumulative = BigInt(snapshot.requiredCumulative)
+  const cumulativeBeforeVoucher = channel.cumulativeAmount
+  await parameters.topUpIfNeeded({
+    challenge,
+    input: parameters.input,
+    channelId: snapshot.channelId,
+    deposit: BigInt(snapshot.deposit),
+    requiredCumulative,
+  })
+  const currentChannel = parameters.getChannel()
+  if (!currentChannel?.descriptor || currentChannel.channelId !== snapshot.channelId) {
+    return undefined
+  }
+  const cumulativeAmount =
+    currentChannel.cumulativeAmount > requiredCumulative
+      ? currentChannel.cumulativeAmount
+      : requiredCumulative
+  const credential = await parameters.createSessionCredential(challenge, {
+    action: 'voucher',
+    channelId: snapshot.channelId,
+    descriptor: currentChannel.descriptor,
+    cumulativeAmountRaw: cumulativeAmount.toString(),
+  })
+  const retry = await parameters.fetch(
+    parameters.input,
+    requestInitWithAuthorization(parameters.input, parameters.init, credential),
+  )
+  if (!retry.ok && !retry.headers.get(Constants.Headers.paymentReceipt)) {
+    parameters.restoreCumulative(snapshot.channelId, cumulativeBeforeVoucher)
+  }
+  return retry
+}
+/** Resolves whether a 402 response can be handled by an automatic session voucher retry. */
+export function resolveRetryHttpPaymentContext(parameters: {
+  channel: ChannelEntry | null
+  response: Response
+}): RetryHttpPaymentContext | undefined {
+  const challenge = Challenge.fromResponseList(parameters.response).find(isTempoSessionChallenge)
+  if (!challenge) return undefined
+  const snapshot = getSessionSnapshot(challenge)
+  if (!snapshot) return undefined
+  const { channel } = parameters
+  if (!channel?.descriptor || channel.channelId !== snapshot.channelId) return undefined
+  return { channel, challenge, snapshot }
+}
+/** Posts a cooperative close credential over HTTP and returns its receipt, when present. */
+export async function closeHttpSession(
+  parameters: CloseHttpSessionParameters,
+): Promise<SessionReceipt | undefined> {
+  if (!parameters.lastUrl) {
+    throw new Error(
+      'Cannot close session: no URL available. This usually means close() was called on a SessionManager instance that was recreated after the session was opened. Use the same SessionManager instance that opened the session, or call fetch()/sse() before close().',
+    )
+  }
+  const postClose = async (challenge: TempoSessionChallenge) => {
+    const credential = await parameters.createSessionCredential(challenge, {
+      action: 'close',
+      channelId: parameters.target.channelId,
+      descriptor: parameters.target.channel.descriptor,
+      cumulativeAmountRaw: parameters.signedCloseAmount,
+    })
+    return parameters.fetch(parameters.lastUrl!, {
+      method: 'POST',
+      headers: { [Constants.Headers.authorization]: credential },
+    })
+  }
+  let response = await postClose(parameters.target.challenge)
+  if (response.status === 402) {
+    const challenge = Challenge.fromResponseList(response).find(isTempoSessionChallenge)
+    if (challenge) {
+      parameters.setChallenge?.(challenge)
+      response = await postClose(challenge)
+    }
+  }
+  if (!response.ok) {
+    const detail = await readProblemDetail(response)
+    const wwwAuth = response.headers.get(Constants.Headers.wwwAuthenticate) ?? ''
+    throw new Error(
+      `Close request failed with status ${response.status}${detail ? `: ${detail}` : ''}${wwwAuth ? ` [${Constants.Headers.wwwAuthenticate}: ${wwwAuth}]` : ''}`,
+    )
+  }
+  const receiptHeader = response.headers.get(Constants.Headers.paymentReceipt)
+  return receiptHeader ? deserializeSessionReceipt(receiptHeader) : undefined
+}
+/** Options accepted by the auto-driving SSE session flow. */
+export type SseDriverOptions = RequestInit & {
+  /** Called for each payment receipt emitted by the SSE stream. */
+  onReceipt?: ((receipt: SessionReceipt) => void) | undefined
+  /** Abort signal used to cancel the stream. */
+  signal?: AbortSignal | undefined
+}
+/** Dependencies the SSE driver needs from `SessionManager`. */
+export type OpenSseSessionParameters = {
+  /** Creates a session credential for the selected challenge/context. */
+  createSessionCredential(
+    challenge: TempoSessionChallenge,
+    context: SessionContext,
+  ): Promise<string>
+  /** Paid fetch flow used for the initial SSE request and any retry. */
+  doFetch(input: RequestInfo | URL, init?: RequestInit): Promise<Response>
+  /** Fetch implementation used for management voucher posts. */
+  fetch: typeof globalThis.fetch
+  /** Returns the active channel, if any. */
+  getChannel(): ChannelEntry | null
+  /** Returns the latest challenge observed by the manager. */
+  getChallenge(): TempoSessionChallenge | null
+  /** Validates a cumulative amount against local client policy. */
+  assertVoucherWithinLocalLimit(cumulativeAmount: bigint): void
+  /** Converts a resource URL to the server's session management URL. */
+  managementInput(input: RequestInfo | URL): RequestInfo | URL
+  /** Applies an incoming receipt to manager state. */
+  acceptReceipt(receipt: SessionReceipt): void
+  /** Performs an automatic channel top-up when deposit is insufficient. */
+  topUpIfNeeded(parameters: TopUpRequirement): Promise<void>
+}
+/**
+ * Opens an auto-driving paid SSE stream.
+ *
+ * The driver owns only transport parsing and management posts. Session state,
+ * credential creation, and top-up policy stay in `SessionManager`.
+ */
+export async function openSseSession(
+  input: RequestInfo | URL,
+  init: SseDriverOptions | undefined,
+  driver: OpenSseSessionParameters,
+): Promise<AsyncIterable<string>> {
+  const { onReceipt, signal, ...fetchInit } = init ?? {}
+  const sseInit = {
+    ...fetchInit,
+    headers: {
+      ...Fetch.normalizeHeaders(fetchInit.headers),
+      Accept: 'text/event-stream',
+    },
+    ...(signal ? { signal } : {}),
+  }
+  let response = await driver.doFetch(input, sseInit)
+  if (!isEventStream(response) && driver.getChannel()?.opened)
+    response = await driver.doFetch(input, sseInit)
+  const challenge = driver.getChallenge()
+  if (!isEventStream(response)) throw new Error('SSE response is not an event stream.')
+  if (!response.body) throw new Error('Response has no body.')
+  return iterateSseResponse({
+    challenge,
+    driver,
+    input,
+    onReceipt,
+    response,
+    signal,
+  })
+}
+type IterateSseResponseParameters = {
+  challenge: TempoSessionChallenge | null
+  driver: OpenSseSessionParameters
+  input: RequestInfo | URL
+  onReceipt?: ((receipt: SessionReceipt) => void) | undefined
+  response: Response
+  signal?: AbortSignal | undefined
+}
+async function* iterateSseResponse(
+  parameters: IterateSseResponseParameters,
+): AsyncGenerator<string> {
+  const reader = parameters.response.body!.getReader()
+  const decoder = new TextDecoder()
+  let buffer = ''
+  try {
+    while (true) {
+      if (parameters.signal?.aborted) break
+      const { done, value } = await reader.read()
+      if (done) break
+      buffer += decoder.decode(value, { stream: true })
+      const parts = buffer.split('\n\n')
+      buffer = parts.pop()!
+      for (const part of parts) {
+        if (!part.trim()) continue
+        const event = parseEvent(part)
+        if (!event) continue
+        switch (event.type) {
+          case 'message':
+            yield event.data
+            break
+          case 'payment-need-voucher':
+            await handleSseNeedVoucher(parameters, event.data)
+            break
+          case 'payment-receipt':
+            parameters.driver.acceptReceipt(event.data)
+            parameters.onReceipt?.(event.data)
+            break
+        }
+      }
+    }
+  } finally {
+    reader.releaseLock()
+  }
+}
+async function handleSseNeedVoucher(
+  parameters: IterateSseResponseParameters,
+  event: NeedVoucherEvent,
+) {
+  const channel = parameters.driver.getChannel()
+  if (!channel || !parameters.challenge) return
+  const resolution = await resolveNeedVoucherContext({
+    assertVoucherWithinLocalLimit: parameters.driver.assertVoucherWithinLocalLimit,
+    challenge: parameters.challenge,
+    event,
+    expectedChannelId: channel.channelId,
+    getChannel: parameters.driver.getChannel,
+    input: parameters.input,
+    topUpIfNeeded: parameters.driver.topUpIfNeeded,
+  })
+  if (resolution.status !== 'ready') return
+  const credential = await parameters.driver.createSessionCredential(
+    parameters.challenge,
+    resolution.context,
+  )
+  const voucherResponse = await parameters.driver.fetch(
+    parameters.driver.managementInput(parameters.input),
+    {
+      method: 'POST',
+      headers: { [Constants.Headers.authorization]: credential },
+    },
+  )
+  if (!voucherResponse.ok) {
+    throw new Error(`Voucher POST failed with status ${voucherResponse.status}`)
+  }
+}
+/** Options accepted by the auto-driving WebSocket session flow. */
+export type WebSocketDriverOptions = {
+  /** Called for each payment receipt emitted by the WebSocket flow. */
+  onReceipt?: ((receipt: SessionReceipt) => void) | undefined
+  /** WebSocket subprotocols passed to the runtime constructor. */
+  protocols?: string | string[] | undefined
+  /** Abort signal used to cancel the socket payment flow. */
+  signal?: AbortSignal | undefined
+}
+/** Creates a session credential for a WebSocket payment challenge. */
+export type CreateWebSocketCredential = (
+  challenge: TempoSessionChallenge,
+  context: SessionContext,
+) => Promise<string>
+/** Inputs for probing and authorizing a paid WebSocket session. */
+export type PrepareWebSocketSessionParameters = {
+  /** Creates the opening session credential. */
+  createSessionCredential: CreateWebSocketCredential
+  /** Fetch implementation used for the HTTP 402 probe. */
+  fetch: typeof globalThis.fetch
+  /** WebSocket URL requested by the caller. */
+  input: string | URL
+  /** Called after resolving the HTTP probe URL, before the network request. */
+  onProbeUrl?: ((httpUrl: URL) => void) | undefined
+  /** Optional request init for the HTTP probe. */
+  probeInit?: RequestInit | undefined
+  /** Optional abort signal applied to the HTTP probe. */
+  signal?: AbortSignal | undefined
+}
+/** Result of the HTTP probe and opening credential creation for a WebSocket session. */
+export type PreparedWebSocketSession = {
+  /** Selected tempo/session challenge from the HTTP probe. */
+  challenge: TempoSessionChallenge
+  /** Opening authorization credential to send in-band after the socket opens. */
+  credential: string
+  /** HTTP URL used for probe and out-of-band management requests. */
+  httpUrl: URL
+  /** WebSocket URL to open. */
+  wsUrl: URL
+}
+/** Active WebSocket session bookkeeping shared by the manager and socket driver. */
+export type ActiveSocketSession = {
+  /** Challenge used to create credentials for this socket. */
+  challenge: TempoSessionChallenge
+  /** Channel authorized by the opening credential. */
+  channelId: Hex.Hex
+  /** Server close-ready receipt, when the stream is ready to close. */
+  closeReadyReceipt: SessionReceipt | null
+  /** Number of application chunks delivered through the managed socket. */
+  deliveredChunks: bigint
+  /** Expected final close amount while a close credential is in flight. */
+  expectedCloseAmount: string | null
+  /** Raw socket while open; set to null after close. */
+  socket: WebSocket | null
+  /** Raw token cost per delivered chunk. */
+  tickCost: bigint
+}
+/** Inputs for creating initial WebSocket payment runtime state. */
+export type CreateActiveSocketSessionParameters = {
+  /** Challenge selected by the HTTP probe. */
+  challenge: TempoSessionChallenge
+  /** Opening credential sent when the socket opens. */
+  credential: string
+  /** Raw runtime socket. */
+  socket: WebSocket
+}
+/** Dependencies the WebSocket driver needs from `SessionManager`. */
+export type OpenWebSocketSessionParameters = {
+  /** Challenge selected by the HTTP probe. */
+  challenge: TempoSessionChallenge
+  /** Opening credential to send in-band after the socket opens. */
+  credential: string
+  /** URL used for automatic top-up management calls. */
+  httpUrl: URL
+  /** WebSocket constructor for the current runtime. */
+  WebSocket: WebSocketConstructor
+  /** WebSocket URL to open. */
+  wsUrl: URL
+  /** Optional WebSocket call options. */
+  options?: WebSocketDriverOptions | undefined
+  /** Creates a session credential for the selected challenge/context. */
+  createSessionCredential(
+    challenge: TempoSessionChallenge,
+    context: SessionContext,
+  ): Promise<string>
+  /** Returns the active channel, if any. */
+  getChannel(): ChannelEntry | null
+  /** Stores the active socket state in the manager. */
+  setSocketSession(session: ActiveSocketSession): void
+  /** Validates a cumulative amount against local client policy. */
+  assertVoucherWithinLocalLimit(cumulativeAmount: bigint): void
+  /** Applies an incoming receipt to manager state. */
+  acceptReceipt(receipt: SessionReceipt): void
+  /** Rejects any pending close-ready wait. */
+  rejectCloseReady(error: Error): void
+  /** Rejects any pending receipt wait. */
+  rejectReceipt(error: Error): void
+  /** Records a close-ready receipt. */
+  settleCloseReady(receipt: SessionReceipt): void
+  /** Records a payment receipt. */
+  settleReceipt(receipt: SessionReceipt): void
+  /** Performs an automatic channel top-up when deposit is insufficient. */
+  topUpIfNeeded(parameters: TopUpRequirement): Promise<void>
+  /** Waits for the opening receipt before returning the managed socket. */
+  waitForReceipt(): Promise<SessionReceipt>
+}
+/** Inputs for validating a receipt belongs to the active WebSocket payment flow. */
+export type ExpectedSocketReceiptParameters = {
+  /** Active WebSocket challenge ID. */
+  challengeId: string
+  /** Active WebSocket channel ID. */
+  channelId: Hex.Hex
+  /** Receipt received from a WebSocket payment frame. */
+  receipt: SessionReceipt
+}
+/** Inputs for validating a payment-close-ready frame. */
+export type ValidateSocketCloseReadyReceiptParameters = ExpectedSocketReceiptParameters & {
+  /** Local cumulative voucher authorization for the active channel. */
+  cumulativeAmount: bigint
+}
+/** Inputs for validating a payment-receipt frame. */
+export type ValidateSocketPaymentReceiptParameters = ExpectedSocketReceiptParameters & {
+  /** Expected final close amount while a close credential is in flight. */
+  expectedCloseAmount: string | null
+}
+/** Probes a WebSocket endpoint over HTTP and creates the opening credential. */
+export async function prepareWebSocketSession(
+  parameters: PrepareWebSocketSessionParameters,
+): Promise<PreparedWebSocketSession> {
+  const wsUrl = new URL(parameters.input.toString())
+  const httpUrl = webSocketProbeUrl(wsUrl)
+  parameters.onProbeUrl?.(httpUrl)
+  const probe = await parameters.fetch(httpUrl, {
+    ...parameters.probeInit,
+    ...(parameters.signal ? { signal: parameters.signal } : {}),
+  })
+  if (probe.status !== 402) {
+    throw new Error(
+      `Expected a 402 payment challenge from ${httpUrl}, received ${probe.status} instead.`,
+    )
+  }
+  const challenge = Challenge.fromResponseList(probe).find(isTempoSessionChallenge)
+  if (!challenge) {
+    throw new Error(
+      'No payment challenge received from HTTP endpoint for this WebSocket URL. The server may not require payment or did not advertise a challenge.',
+    )
+  }
+  return {
+    challenge,
+    credential: await parameters.createSessionCredential(challenge, {}),
+    httpUrl,
+    wsUrl,
+  }
+}
+/** Creates the initial runtime state for a paid WebSocket from its opening credential. */
+export function createActiveSocketSession(
+  parameters: CreateActiveSocketSessionParameters,
+): ActiveSocketSession {
+  const { challenge, credential, socket } = parameters
+  return {
+    challenge,
+    channelId:
+      PaymentCredential.deserialize<SessionCredentialPayload>(credential).payload.channelId,
+    closeReadyReceipt: null,
+    deliveredChunks: 0n,
+    expectedCloseAmount: null,
+    socket,
+    tickCost: readSessionChallengeAmount(challenge),
+  }
+}
+/** Returns whether a receipt belongs to the active WebSocket session. */
+export function isExpectedSocketReceipt(parameters: ExpectedSocketReceiptParameters): boolean {
+  const { challengeId, channelId, receipt } = parameters
+  return receipt.challengeId === challengeId && receipt.channelId === channelId
+}
+/** Returns a protocol failure message when a close-ready receipt is invalid. */
+export function validateSocketCloseReadyReceipt(
+  parameters: ValidateSocketCloseReadyReceiptParameters,
+): string | undefined {
+  if (!isExpectedSocketReceipt(parameters)) return 'received mismatched payment-close-ready frame'
+  if (BigInt(parameters.receipt.spent) > parameters.cumulativeAmount) {
+    return 'received payment-close-ready beyond local voucher state'
+  }
+  return undefined
+}
+/** Returns a protocol failure message when a payment receipt is invalid. */
+export function validateSocketPaymentReceipt(
+  parameters: ValidateSocketPaymentReceiptParameters,
+): string | undefined {
+  const { challengeId, channelId, expectedCloseAmount, receipt } = parameters
+  if (!isExpectedSocketReceipt(parameters)) return 'received mismatched payment-receipt frame'
+  if (
+    expectedCloseAmount !== null &&
+    Boolean(receipt.txHash) &&
+    !isExpectedCloseReceipt({ challengeId, channelId, expectedCloseAmount, receipt })
+  ) {
+    return 'received mismatched payment-close receipt frame'
+  }
+  return undefined
+}
+/**
+ * Opens an auto-driving paid WebSocket session.
+ *
+ * The driver owns socket protocol frames. Session state, credential creation,
+ * and top-up policy remain supplied by `SessionManager`.
+ */
+export async function openWebSocketSession(
+  parameters: OpenWebSocketSessionParameters,
+): Promise<SessionManagedWebSocket> {
+  const { challenge, credential, options, WebSocket: WebSocketImpl, wsUrl } = parameters
+  const rawSocket = new WebSocketImpl(wsUrl, options?.protocols)
+  const socketState = createActiveSocketSession({
+    challenge,
+    credential,
+    socket: rawSocket,
+  })
+  parameters.setSocketSession(socketState)
+  const managedSocket = createManagedSocket(rawSocket)
+  const failSocketFlow = (message: string) => {
+    parameters.rejectReceipt(new Error(message))
+    parameters.rejectCloseReady(new Error(message))
+    if (
+      rawSocket.readyState === WebSocketReadyState.CONNECTING ||
+      rawSocket.readyState === WebSocketReadyState.OPEN
+    ) {
+      rawSocket.close(ClientWebSocketProtocolErrorCloseCode, message)
+    }
+  }
+  rawSocket.addEventListener('close', (event) => {
+    socketState.socket = null
+    socketState.expectedCloseAmount = null
+    parameters.rejectReceipt(new Error('WebSocket closed before the payment flow completed.'))
+    parameters.rejectCloseReady(new Error('WebSocket closed before the payment flow completed.'))
+    managedSocket.emit('close', {
+      code: (event as CloseEvent).code ?? 1000,
+      reason: (event as CloseEvent).reason ?? '',
+      type: 'close',
+      wasClean: true,
+    })
+  })
+  rawSocket.addEventListener('error', () => {
+    managedSocket.emit('error', { type: 'error' })
+  })
+  rawSocket.addEventListener('message', async (event) => {
+    const raw = typeof event.data === 'string' ? event.data : undefined
+    if (!raw) return
+    await handleSocketMessage({
+      driver: parameters,
+      failSocketFlow,
+      managedEmit: managedSocket.emit,
+      message: raw,
+      rawSocket,
+      socketState,
+    })
+  })
+  options?.signal?.addEventListener(
+    'abort',
+    () => {
+      parameters.rejectReceipt(new Error('WebSocket payment flow aborted.'))
+      parameters.rejectCloseReady(new Error('WebSocket payment flow aborted.'))
+      rawSocket.close()
+    },
+    { once: true },
+  )
+  await waitForSocketOpen(rawSocket, managedSocket.emit, wsUrl)
+  rawSocket.send(Ws.formatAuthorizationMessage(credential))
+  await parameters.waitForReceipt()
+  return managedSocket.socket
+}
+type ManagedEmit = ReturnType<typeof createManagedSocket>['emit']
+function waitForSocketOpen(rawSocket: WebSocket, managedEmit: ManagedEmit, wsUrl: URL) {
+  return new Promise<void>((resolve, reject) => {
+    const onOpen = () => {
+      rawSocket.removeEventListener('error', onError)
+      managedEmit('open', { type: 'open' })
+      resolve()
+    }
+    const onError = () => {
+      rawSocket.removeEventListener('open', onOpen)
+      reject(new Error(`WebSocket connection to ${wsUrl} failed to open.`))
+    }
+    rawSocket.addEventListener('open', onOpen, { once: true })
+    rawSocket.addEventListener('error', onError, { once: true })
+  })
+}
+type HandleSocketMessageParameters = {
+  driver: OpenWebSocketSessionParameters
+  failSocketFlow(message: string): void
+  managedEmit: ManagedEmit
+  message: string
+  rawSocket: WebSocket
+  socketState: ActiveSocketSession
+}
+async function handleSocketMessage(parameters: HandleSocketMessageParameters) {
+  const parsed = Ws.parseMessage(parameters.message)
+  if (!parsed) {
+    parameters.managedEmit('message', { data: parameters.message, type: 'message' })
+    return
+  }
+  switch (parsed.mpp) {
+    case 'authorization':
+      return
+    case 'message':
+      parameters.socketState.deliveredChunks += 1n
+      parameters.managedEmit('message', { data: parsed.data, type: 'message' })
+      return
+    case 'payment-close-ready':
+      handleCloseReady(parameters, parsed.data)
+      return
+    case 'payment-error':
+      parameters.driver.rejectReceipt(new Error(parsed.message))
+      parameters.driver.rejectCloseReady(new Error(parsed.message))
+      return
+    case 'payment-need-voucher':
+      await handleNeedVoucher(parameters, parsed.data)
+      return
+    case 'payment-receipt':
+      handleReceipt(parameters, parsed.data)
+      return
+  }
+}
+function handleCloseReady(parameters: HandleSocketMessageParameters, receipt: SessionReceipt) {
+  const cumulativeAmount = parameters.driver.getChannel()?.cumulativeAmount ?? 0n
+  const error = validateSocketCloseReadyReceipt({
+    challengeId: parameters.driver.challenge.id,
+    channelId: parameters.socketState.channelId,
+    cumulativeAmount,
+    receipt,
+  })
+  if (error) {
+    parameters.failSocketFlow(error)
+    return
+  }
+  parameters.driver.acceptReceipt(receipt)
+  parameters.driver.options?.onReceipt?.(receipt)
+  parameters.driver.settleCloseReady(receipt)
+  parameters.managedEmit('close', {
+    code: 1000,
+    reason: 'stream complete',
+    type: 'close',
+    wasClean: true,
+  })
+}
+async function handleNeedVoucher(
+  parameters: HandleSocketMessageParameters,
+  event: NeedVoucherEvent,
+) {
+  try {
+    const resolution = await resolveNeedVoucherContext({
+      assertVoucherWithinLocalLimit: parameters.driver.assertVoucherWithinLocalLimit,
+      challenge: parameters.driver.challenge,
+      event,
+      expectedChannelId: parameters.socketState.channelId,
+      getChannel: parameters.driver.getChannel,
+      input: parameters.driver.httpUrl,
+      topUpIfNeeded: parameters.driver.topUpIfNeeded,
+    })
+    if (resolution.status === 'ignored') {
+      parameters.failSocketFlow(
+        resolution.reason === 'channel-mismatch'
+          ? 'received mismatched payment-need-voucher frame'
+          : 'cannot create voucher: no active channel',
+      )
+      return
+    }
+    const voucher = await parameters.driver.createSessionCredential(
+      parameters.driver.challenge,
+      resolution.context,
+    )
+    parameters.rawSocket.send(Ws.formatAuthorizationMessage(voucher))
+  } catch (error) {
+    parameters.failSocketFlow(
+      error instanceof Error ? error.message : 'failed to create websocket voucher',
+    )
+  }
+}
+function handleReceipt(parameters: HandleSocketMessageParameters, receipt: SessionReceipt) {
+  const error = validateSocketPaymentReceipt({
+    challengeId: parameters.driver.challenge.id,
+    channelId: parameters.socketState.channelId,
+    expectedCloseAmount: parameters.socketState.expectedCloseAmount,
+    receipt,
+  })
+  if (error) {
+    parameters.failSocketFlow(error)
+    return
+  }
+  parameters.driver.acceptReceipt(receipt)
+  parameters.driver.options?.onReceipt?.(receipt)
+  parameters.driver.settleReceipt(receipt)
+}