npm - mppx - Versions diffs - 0.6.30 → 0.7.0 - Mend

mppx 0.6.30 → 0.7.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (483) hide show

package/CHANGELOG.md +25 -0
package/dist/Challenge.d.ts.map +1 -1
package/dist/Challenge.js +9 -7
package/dist/Challenge.js.map +1 -1
package/dist/Constants.d.ts +46 -0
package/dist/Constants.d.ts.map +1 -0
package/dist/Constants.js +46 -0
package/dist/Constants.js.map +1 -0
package/dist/Credential.d.ts.map +1 -1
package/dist/Credential.js +5 -4
package/dist/Credential.js.map +1 -1
package/dist/Method.d.ts +32 -4
package/dist/Method.d.ts.map +1 -1
package/dist/Method.js +5 -2
package/dist/Method.js.map +1 -1
package/dist/Receipt.d.ts.map +1 -1
package/dist/Receipt.js +3 -2
package/dist/Receipt.js.map +1 -1
package/dist/cli/cli.d.ts.map +1 -1
package/dist/cli/cli.js +19 -11
package/dist/cli/cli.js.map +1 -1
package/dist/cli/plugins/tempo.d.ts.map +1 -1
package/dist/cli/plugins/tempo.js +17 -6
package/dist/cli/plugins/tempo.js.map +1 -1
package/dist/cli/utils.d.ts +5 -0
package/dist/cli/utils.d.ts.map +1 -1
package/dist/cli/utils.js +10 -0
package/dist/cli/utils.js.map +1 -1
package/dist/client/Methods.d.ts +5 -2
package/dist/client/Methods.d.ts.map +1 -1
package/dist/client/Methods.js +5 -2
package/dist/client/Methods.js.map +1 -1
package/dist/client/Transport.d.ts.map +1 -1
package/dist/client/Transport.js +4 -5
package/dist/client/Transport.js.map +1 -1
package/dist/client/index.d.ts +2 -1
package/dist/client/index.d.ts.map +1 -1
package/dist/client/index.js +2 -1
package/dist/client/index.js.map +1 -1
package/dist/client/internal/Fetch.d.ts.map +1 -1
package/dist/client/internal/Fetch.js +14 -6
package/dist/client/internal/Fetch.js.map +1 -1
package/dist/evm/server/Methods.d.ts +1 -1
package/dist/evm/server/Methods.d.ts.map +1 -1
package/dist/index.d.ts +1 -0
package/dist/index.d.ts.map +1 -1
package/dist/index.js +1 -0
package/dist/index.js.map +1 -1
package/dist/internal/AcceptPayment.d.ts +3 -0
package/dist/internal/AcceptPayment.d.ts.map +1 -1
package/dist/internal/AcceptPayment.js +15 -11
package/dist/internal/AcceptPayment.js.map +1 -1
package/dist/mcp-sdk/client/McpClient.d.ts +12 -5
package/dist/mcp-sdk/client/McpClient.d.ts.map +1 -1
package/dist/mcp-sdk/client/McpClient.js +55 -42
package/dist/mcp-sdk/client/McpClient.js.map +1 -1
package/dist/server/Mppx.d.ts +11 -3
package/dist/server/Mppx.d.ts.map +1 -1
package/dist/server/Mppx.js +76 -27
package/dist/server/Mppx.js.map +1 -1
package/dist/server/Request.js +24 -10
package/dist/server/Request.js.map +1 -1
package/dist/server/Response.d.ts.map +1 -1
package/dist/server/Response.js +2 -1
package/dist/server/Response.js.map +1 -1
package/dist/server/Transport.d.ts.map +1 -1
package/dist/server/Transport.js +4 -3
package/dist/server/Transport.js.map +1 -1
package/dist/server/index.d.ts +1 -0
package/dist/server/index.d.ts.map +1 -1
package/dist/server/index.js +1 -0
package/dist/server/index.js.map +1 -1
package/dist/stripe/client/Charge.d.ts +1 -1
package/dist/stripe/client/Charge.d.ts.map +1 -1
package/dist/stripe/client/Charge.js +3 -1
package/dist/stripe/client/Charge.js.map +1 -1
package/dist/stripe/server/Charge.d.ts +1 -1
package/dist/stripe/server/Charge.d.ts.map +1 -1
package/dist/stripe/server/Charge.js +9 -2
package/dist/stripe/server/Charge.js.map +1 -1
package/dist/stripe/server/Methods.d.ts +1 -1
package/dist/stripe/server/Methods.d.ts.map +1 -1
package/dist/stripe/server/internal/html.gen.d.ts +1 -1
package/dist/stripe/server/internal/html.gen.d.ts.map +1 -1
package/dist/stripe/server/internal/html.gen.js +1 -1
package/dist/stripe/server/internal/html.gen.js.map +1 -1
package/dist/tempo/Methods.d.ts +18 -0
package/dist/tempo/Methods.d.ts.map +1 -1
package/dist/tempo/Methods.js +16 -1
package/dist/tempo/Methods.js.map +1 -1
package/dist/tempo/client/Charge.d.ts +6 -0
package/dist/tempo/client/Charge.d.ts.map +1 -1
package/dist/tempo/client/Charge.js +9 -2
package/dist/tempo/client/Charge.js.map +1 -1
package/dist/tempo/client/Methods.d.ts +36 -7
package/dist/tempo/client/Methods.d.ts.map +1 -1
package/dist/tempo/client/Methods.js +12 -5
package/dist/tempo/client/Methods.js.map +1 -1
package/dist/tempo/client/index.d.ts +7 -4
package/dist/tempo/client/index.d.ts.map +1 -1
package/dist/tempo/client/index.js +5 -3
package/dist/tempo/client/index.js.map +1 -1
package/dist/tempo/index.d.ts +1 -0
package/dist/tempo/index.d.ts.map +1 -1
package/dist/tempo/index.js +1 -0
package/dist/tempo/index.js.map +1 -1
package/dist/tempo/internal/fee-payer.d.ts +21 -1
package/dist/tempo/internal/fee-payer.d.ts.map +1 -1
package/dist/tempo/internal/fee-payer.js +109 -4
package/dist/tempo/internal/fee-payer.js.map +1 -1
package/dist/tempo/{client → legacy/client}/ChannelOps.d.ts +19 -6
package/dist/tempo/legacy/client/ChannelOps.d.ts.map +1 -0
package/dist/tempo/{client → legacy/client}/ChannelOps.js +9 -3
package/dist/tempo/legacy/client/ChannelOps.js.map +1 -0
package/dist/tempo/{client → legacy/client}/Session.d.ts +23 -4
package/dist/tempo/legacy/client/Session.d.ts.map +1 -0
package/dist/tempo/{client → legacy/client}/Session.js +14 -7
package/dist/tempo/legacy/client/Session.js.map +1 -0
package/dist/tempo/{client → legacy/client}/SessionManager.d.ts +20 -5
package/dist/tempo/legacy/client/SessionManager.d.ts.map +1 -0
package/dist/tempo/{client → legacy/client}/SessionManager.js +20 -16
package/dist/tempo/legacy/client/SessionManager.js.map +1 -0
package/dist/tempo/legacy/client/index.d.ts +7 -0
package/dist/tempo/legacy/client/index.d.ts.map +1 -0
package/dist/tempo/legacy/client/index.js +5 -0
package/dist/tempo/legacy/client/index.js.map +1 -0
package/dist/tempo/legacy/index.d.ts +7 -0
package/dist/tempo/legacy/index.d.ts.map +1 -0
package/dist/tempo/legacy/index.js +7 -0
package/dist/tempo/legacy/index.js.map +1 -0
package/dist/tempo/{server → legacy/server}/Session.d.ts +28 -11
package/dist/tempo/legacy/server/Session.d.ts.map +1 -0
package/dist/tempo/{server → legacy/server}/Session.js +28 -23
package/dist/tempo/legacy/server/Session.js.map +1 -0
package/dist/tempo/legacy/server/index.d.ts +5 -0
package/dist/tempo/legacy/server/index.d.ts.map +1 -0
package/dist/tempo/legacy/server/index.js +5 -0
package/dist/tempo/legacy/server/index.js.map +1 -0
package/dist/tempo/{session → legacy/session}/Chain.d.ts +30 -23
package/dist/tempo/legacy/session/Chain.d.ts.map +1 -0
package/dist/tempo/{session → legacy/session}/Chain.js +12 -11
package/dist/tempo/legacy/session/Chain.js.map +1 -0
package/dist/tempo/{session → legacy/session}/Channel.d.ts +1 -0
package/dist/tempo/legacy/session/Channel.d.ts.map +1 -0
package/dist/tempo/legacy/session/Channel.js.map +1 -0
package/dist/tempo/legacy/session/ChannelStore.d.ts +22 -0
package/dist/tempo/legacy/session/ChannelStore.d.ts.map +1 -0
package/dist/tempo/legacy/session/ChannelStore.js +6 -0
package/dist/tempo/legacy/session/ChannelStore.js.map +1 -0
package/dist/tempo/legacy/session/Types.d.ts +73 -0
package/dist/tempo/legacy/session/Types.d.ts.map +1 -0
package/dist/tempo/legacy/session/Types.js.map +1 -0
package/dist/tempo/{session → legacy/session}/Voucher.d.ts +4 -4
package/dist/tempo/legacy/session/Voucher.d.ts.map +1 -0
package/dist/tempo/{session → legacy/session}/Voucher.js +1 -1
package/dist/tempo/legacy/session/Voucher.js.map +1 -0
package/dist/tempo/{session → legacy/session}/escrow.abi.d.ts +1 -0
package/dist/tempo/{session → legacy/session}/escrow.abi.d.ts.map +1 -1
package/dist/tempo/{session → legacy/session}/escrow.abi.js +1 -0
package/dist/tempo/legacy/session/escrow.abi.js.map +1 -0
package/dist/tempo/legacy/session/index.d.ts +9 -0
package/dist/tempo/legacy/session/index.d.ts.map +1 -0
package/dist/tempo/legacy/session/index.js +9 -0
package/dist/tempo/legacy/session/index.js.map +1 -0
package/dist/tempo/server/Charge.d.ts +1 -1
package/dist/tempo/server/Charge.d.ts.map +1 -1
package/dist/tempo/server/Charge.js +13 -16
package/dist/tempo/server/Charge.js.map +1 -1
package/dist/tempo/server/Methods.d.ts +63 -6
package/dist/tempo/server/Methods.d.ts.map +1 -1
package/dist/tempo/server/Methods.js +36 -8
package/dist/tempo/server/Methods.js.map +1 -1
package/dist/tempo/server/Subscription.d.ts +1 -1
package/dist/tempo/server/Subscription.d.ts.map +1 -1
package/dist/tempo/server/index.d.ts +6 -5
package/dist/tempo/server/index.d.ts.map +1 -1
package/dist/tempo/server/index.js +5 -5
package/dist/tempo/server/index.js.map +1 -1
package/dist/tempo/server/internal/html.gen.d.ts +1 -1
package/dist/tempo/server/internal/html.gen.d.ts.map +1 -1
package/dist/tempo/server/internal/html.gen.js +1 -1
package/dist/tempo/server/internal/html.gen.js.map +1 -1
package/dist/tempo/server/internal/request-body.d.ts +7 -2
package/dist/tempo/server/internal/request-body.d.ts.map +1 -1
package/dist/tempo/server/internal/request-body.js +20 -3
package/dist/tempo/server/internal/request-body.js.map +1 -1
package/dist/tempo/server/internal/transport.d.ts +8 -4
package/dist/tempo/server/internal/transport.d.ts.map +1 -1
package/dist/tempo/server/internal/transport.js +8 -7
package/dist/tempo/server/internal/transport.js.map +1 -1
package/dist/tempo/session/Snapshot.d.ts +32 -0
package/dist/tempo/session/Snapshot.d.ts.map +1 -0
package/dist/tempo/session/Snapshot.js +37 -0
package/dist/tempo/session/Snapshot.js.map +1 -0
package/dist/tempo/session/client/ChannelOps.d.ts +82 -0
package/dist/tempo/session/client/ChannelOps.d.ts.map +1 -0
package/dist/tempo/session/client/ChannelOps.js +204 -0
package/dist/tempo/session/client/ChannelOps.js.map +1 -0
package/dist/tempo/session/client/CredentialState.d.ts +262 -0
package/dist/tempo/session/client/CredentialState.d.ts.map +1 -0
package/dist/tempo/session/client/CredentialState.js +417 -0
package/dist/tempo/session/client/CredentialState.js.map +1 -0
package/dist/tempo/session/client/ReceiptCoordinator.d.ts +26 -0
package/dist/tempo/session/client/ReceiptCoordinator.d.ts.map +1 -0
package/dist/tempo/session/client/ReceiptCoordinator.js +61 -0
package/dist/tempo/session/client/ReceiptCoordinator.js.map +1 -0
package/dist/tempo/session/client/Runtime.d.ts +464 -0
package/dist/tempo/session/client/Runtime.d.ts.map +1 -0
package/dist/tempo/session/client/Runtime.js +499 -0
package/dist/tempo/session/client/Runtime.js.map +1 -0
package/dist/tempo/session/client/Session.d.ts +132 -0
package/dist/tempo/session/client/Session.d.ts.map +1 -0
package/dist/tempo/session/client/Session.js +55 -0
package/dist/tempo/session/client/Session.js.map +1 -0
package/dist/tempo/session/client/SessionManager.d.ts +120 -0
package/dist/tempo/session/client/SessionManager.d.ts.map +1 -0
package/dist/tempo/session/client/SessionManager.js +627 -0
package/dist/tempo/session/client/SessionManager.js.map +1 -0
package/dist/tempo/session/client/Transports.d.ts +449 -0
package/dist/tempo/session/client/Transports.d.ts.map +1 -0
package/dist/tempo/session/client/Transports.js +721 -0
package/dist/tempo/session/client/Transports.js.map +1 -0
package/dist/tempo/session/client/index.d.ts +12 -0
package/dist/tempo/session/client/index.d.ts.map +1 -0
package/dist/tempo/session/client/index.js +5 -0
package/dist/tempo/session/client/index.js.map +1 -0
package/dist/tempo/session/index.d.ts +7 -8
package/dist/tempo/session/index.d.ts.map +1 -1
package/dist/tempo/session/index.js +7 -8
package/dist/tempo/session/index.js.map +1 -1
package/dist/tempo/session/precompile/Chain.d.ts +319 -0
package/dist/tempo/session/precompile/Chain.d.ts.map +1 -0
package/dist/tempo/session/precompile/Chain.js +492 -0
package/dist/tempo/session/precompile/Chain.js.map +1 -0
package/dist/tempo/session/precompile/Channel.d.ts +46 -0
package/dist/tempo/session/precompile/Channel.d.ts.map +1 -0
package/dist/tempo/session/precompile/Channel.js +56 -0
package/dist/tempo/session/precompile/Channel.js.map +1 -0
package/dist/tempo/session/precompile/Protocol.d.ts +308 -0
package/dist/tempo/session/precompile/Protocol.d.ts.map +1 -0
package/dist/tempo/session/precompile/Protocol.js +264 -0
package/dist/tempo/session/precompile/Protocol.js.map +1 -0
package/dist/tempo/session/precompile/Voucher.d.ts +40 -0
package/dist/tempo/session/precompile/Voucher.d.ts.map +1 -0
package/dist/tempo/session/precompile/Voucher.js +126 -0
package/dist/tempo/session/precompile/Voucher.js.map +1 -0
package/dist/tempo/session/precompile/escrow.abi.d.ts +522 -0
package/dist/tempo/session/precompile/escrow.abi.d.ts.map +1 -0
package/dist/tempo/session/precompile/escrow.abi.js +224 -0
package/dist/tempo/session/precompile/escrow.abi.js.map +1 -0
package/dist/tempo/session/precompile/index.d.ts +24 -0
package/dist/tempo/session/precompile/index.d.ts.map +1 -0
package/dist/tempo/session/precompile/index.js +22 -0
package/dist/tempo/session/precompile/index.js.map +1 -0
package/dist/tempo/session/server/ChannelOps.d.ts +56 -0
package/dist/tempo/session/server/ChannelOps.d.ts.map +1 -0
package/dist/tempo/session/server/ChannelOps.js +91 -0
package/dist/tempo/session/server/ChannelOps.js.map +1 -0
package/dist/tempo/session/server/ChannelStore.d.ts +347 -0
package/dist/tempo/session/server/ChannelStore.d.ts.map +1 -0
package/dist/tempo/session/server/ChannelStore.js +404 -0
package/dist/tempo/session/server/ChannelStore.js.map +1 -0
package/dist/tempo/session/server/CredentialVerification.d.ts +85 -0
package/dist/tempo/session/server/CredentialVerification.d.ts.map +1 -0
package/dist/tempo/session/server/CredentialVerification.js +494 -0
package/dist/tempo/session/server/CredentialVerification.js.map +1 -0
package/dist/tempo/session/server/MeteredStream.d.ts +40 -0
package/dist/tempo/session/server/MeteredStream.d.ts.map +1 -0
package/dist/tempo/session/server/MeteredStream.js +42 -0
package/dist/tempo/session/server/MeteredStream.js.map +1 -0
package/dist/tempo/session/server/RequestState.d.ts +208 -0
package/dist/tempo/session/server/RequestState.d.ts.map +1 -0
package/dist/tempo/session/server/RequestState.js +252 -0
package/dist/tempo/session/server/RequestState.js.map +1 -0
package/dist/tempo/session/server/Session.d.ts +169 -0
package/dist/tempo/session/server/Session.d.ts.map +1 -0
package/dist/tempo/session/server/Session.js +351 -0
package/dist/tempo/session/server/Session.js.map +1 -0
package/dist/tempo/session/server/Settlement.d.ts +185 -0
package/dist/tempo/session/server/Settlement.d.ts.map +1 -0
package/dist/tempo/session/server/Settlement.js +250 -0
package/dist/tempo/session/server/Settlement.js.map +1 -0
package/dist/tempo/session/{Sse.d.ts → server/Sse.d.ts} +9 -56
package/dist/tempo/session/server/Sse.d.ts.map +1 -0
package/dist/tempo/session/server/Sse.js +184 -0
package/dist/tempo/session/server/Sse.js.map +1 -0
package/dist/tempo/session/server/Transports.d.ts +89 -0
package/dist/tempo/session/server/Transports.d.ts.map +1 -0
package/dist/tempo/session/server/Transports.js +149 -0
package/dist/tempo/session/server/Transports.js.map +1 -0
package/dist/tempo/session/server/Ws.d.ts +48 -0
package/dist/tempo/session/server/Ws.d.ts.map +1 -0
package/dist/tempo/session/server/Ws.js +244 -0
package/dist/tempo/session/server/Ws.js.map +1 -0
package/dist/tempo/session/server/index.d.ts +4 -0
package/dist/tempo/session/server/index.d.ts.map +1 -0
package/dist/tempo/session/server/index.js +2 -0
package/dist/tempo/session/server/index.js.map +1 -0
package/package.json +8 -3
package/src/Challenge.ts +9 -7
package/src/Constants.ts +58 -0
package/src/Credential.ts +5 -4
package/src/Method.ts +46 -5
package/src/Receipt.ts +3 -2
package/src/cli/cli.test.ts +23 -28
package/src/cli/cli.ts +23 -10
package/src/cli/mcp.test.ts +21 -7
package/src/cli/plugins/tempo.ts +21 -8
package/src/cli/utils.test.ts +25 -1
package/src/cli/utils.ts +10 -0
package/src/client/Methods.ts +5 -2
package/src/client/Mppx.test-d.ts +10 -0
package/src/client/Mppx.test.ts +75 -0
package/src/client/Transport.ts +4 -5
package/src/client/index.ts +11 -1
package/src/client/internal/Fetch.test.ts +29 -4
package/src/client/internal/Fetch.ts +17 -5
package/src/env.d.ts +1 -1
package/src/index.ts +1 -0
package/src/internal/AcceptPayment.test.ts +61 -0
package/src/internal/AcceptPayment.ts +21 -14
package/src/mcp-sdk/client/McpClient.integration.test.ts +8 -7
package/src/mcp-sdk/client/McpClient.test-d.ts +7 -0
package/src/mcp-sdk/client/McpClient.ts +99 -67
package/src/mcp-sdk/client/McpClient.unit.test.ts +131 -0
package/src/middlewares/elysia.test.ts +8 -4
package/src/middlewares/express.test.ts +8 -4
package/src/middlewares/hono.test.ts +4 -4
package/src/middlewares/nextjs.test.ts +8 -4
package/src/proxy/Proxy.test.ts +8 -8
package/src/server/Mppx.test-d.ts +54 -0
package/src/server/Mppx.test.ts +274 -7
package/src/server/Mppx.ts +487 -406
package/src/server/Request.test.ts +81 -0
package/src/server/Request.ts +23 -9
package/src/server/Response.ts +2 -1
package/src/server/Transport.ts +4 -3
package/src/server/index.ts +1 -0
package/src/stripe/client/Charge.test.ts +20 -5
package/src/stripe/client/Charge.ts +6 -2
package/src/stripe/server/Charge.test.ts +114 -1
package/src/stripe/server/Charge.ts +13 -2
package/src/stripe/server/internal/html/package.json +1 -1
package/src/stripe/server/internal/html.gen.ts +1 -1
package/src/tempo/AccessKeyAuthorization.test.ts +4 -94
package/src/tempo/Methods.test.ts +45 -17
package/src/tempo/Methods.ts +22 -0
package/src/tempo/PublicExports.test-d.ts +105 -0
package/src/tempo/client/Charge.test.ts +85 -0
package/src/tempo/client/Charge.ts +19 -2
package/src/tempo/client/Methods.ts +18 -6
package/src/tempo/client/index.ts +15 -4
package/src/tempo/index.ts +1 -0
package/src/tempo/internal/fee-payer.test.ts +241 -17
package/src/tempo/internal/fee-payer.ts +150 -4
package/src/tempo/internal/fee-token.test.ts +14 -9
package/src/tempo/legacy/AccessKeyAuthorization.test.ts +162 -0
package/src/tempo/legacy/README.md +9 -0
package/src/tempo/{client → legacy/client}/ChannelOps.test.ts +6 -7
package/src/tempo/{client → legacy/client}/ChannelOps.ts +22 -9
package/src/tempo/{client → legacy/client}/Session.test.ts +51 -9
package/src/tempo/{client → legacy/client}/Session.ts +25 -11
package/src/tempo/{client → legacy/client}/SessionManager.test.ts +81 -9
package/src/tempo/{client → legacy/client}/SessionManager.ts +41 -20
package/src/tempo/legacy/client/index.ts +6 -0
package/src/tempo/legacy/index.ts +6 -0
package/src/tempo/{server → legacy/server}/Session.test.ts +162 -63
package/src/tempo/{server → legacy/server}/Session.ts +49 -37
package/src/tempo/legacy/server/index.ts +4 -0
package/src/tempo/{session → legacy/session}/Chain.test.ts +3 -4
package/src/tempo/{session → legacy/session}/Chain.ts +94 -63
package/src/tempo/{session → legacy/session}/Channel.ts +1 -0
package/src/tempo/legacy/session/ChannelStore.test.ts +58 -0
package/src/tempo/legacy/session/ChannelStore.ts +39 -0
package/src/tempo/legacy/session/Types.ts +91 -0
package/src/tempo/{session → legacy/session}/Voucher.ts +12 -8
package/src/tempo/{session → legacy/session}/escrow.abi.ts +1 -0
package/src/tempo/legacy/session/index.ts +8 -0
package/src/tempo/server/AtomicStore.test-d.ts +16 -11
package/src/tempo/server/Charge.test.ts +92 -14
package/src/tempo/server/Charge.ts +18 -16
package/src/tempo/server/Methods.ts +54 -8
package/src/tempo/server/Sse.test.ts +2 -2
package/src/tempo/server/index.ts +6 -5
package/src/tempo/server/internal/html/package.json +1 -1
package/src/tempo/server/internal/html.gen.ts +1 -1
package/src/tempo/server/internal/request-body.test.ts +37 -4
package/src/tempo/server/internal/request-body.ts +25 -6
package/src/tempo/server/internal/transport.test.ts +4 -4
package/src/tempo/server/internal/transport.ts +19 -10
package/src/tempo/session/Snapshot.test.ts +41 -0
package/src/tempo/session/Snapshot.ts +74 -0
package/src/tempo/session/client/ChannelOps.test.ts +163 -0
package/src/tempo/session/client/ChannelOps.ts +344 -0
package/src/tempo/session/client/CredentialState.test.ts +645 -0
package/src/tempo/session/client/CredentialState.ts +814 -0
package/src/tempo/session/client/ReceiptCoordinator.ts +95 -0
package/src/tempo/session/client/Runtime.test.ts +1092 -0
package/src/tempo/session/client/Runtime.ts +986 -0
package/src/tempo/session/client/Session.test.ts +734 -0
package/src/tempo/session/client/Session.ts +97 -0
package/src/tempo/session/client/SessionManager.test.ts +1308 -0
package/src/tempo/session/client/SessionManager.ts +845 -0
package/src/tempo/session/client/Transports.test.ts +837 -0
package/src/tempo/session/client/Transports.ts +1292 -0
package/src/tempo/session/client/index.ts +37 -0
package/src/tempo/session/index.ts +7 -8
package/src/tempo/session/precompile/Chain.integration.test.ts +321 -0
package/src/tempo/session/precompile/Chain.test.ts +1258 -0
package/src/tempo/session/precompile/Chain.ts +979 -0
package/src/tempo/session/precompile/Channel.test.ts +138 -0
package/src/tempo/session/precompile/Channel.ts +103 -0
package/src/tempo/session/precompile/Protocol.test.ts +358 -0
package/src/tempo/session/precompile/Protocol.ts +520 -0
package/src/tempo/session/precompile/Voucher.test.ts +316 -0
package/src/tempo/session/precompile/Voucher.ts +160 -0
package/src/tempo/session/precompile/escrow.abi.ts +226 -0
package/src/tempo/session/precompile/index.ts +33 -0
package/src/tempo/session/server/ChannelOps.test.ts +129 -0
package/src/tempo/session/server/ChannelOps.ts +157 -0
package/src/tempo/session/{ChannelStore.test.ts → server/ChannelStore.test.ts} +536 -29
package/src/tempo/session/server/ChannelStore.ts +835 -0
package/src/tempo/session/server/CredentialVerification.test.ts +146 -0
package/src/tempo/session/server/CredentialVerification.ts +710 -0
package/src/tempo/session/server/MeteredStream.ts +88 -0
package/src/tempo/session/server/RequestState.test.ts +531 -0
package/src/tempo/session/server/RequestState.ts +499 -0
package/src/tempo/session/server/Session.integration.test.ts +444 -0
package/src/tempo/session/server/Session.test.ts +3253 -0
package/src/tempo/session/server/Session.ts +543 -0
package/src/tempo/session/server/Settlement.test.ts +242 -0
package/src/tempo/session/server/Settlement.ts +470 -0
package/src/tempo/session/{Sse.test.ts → server/Sse.test.ts} +37 -3
package/src/tempo/session/server/Sse.ts +256 -0
package/src/tempo/session/server/Transports.test.ts +346 -0
package/src/tempo/session/server/Transports.ts +255 -0
package/src/tempo/session/{Ws.test.ts → server/Ws.test.ts} +4 -4
package/src/tempo/session/server/Ws.ts +384 -0
package/src/tempo/session/server/index.ts +8 -0
package/dist/tempo/client/ChannelOps.d.ts.map +0 -1
package/dist/tempo/client/ChannelOps.js.map +0 -1
package/dist/tempo/client/Session.d.ts.map +0 -1
package/dist/tempo/client/Session.js.map +0 -1
package/dist/tempo/client/SessionManager.d.ts.map +0 -1
package/dist/tempo/client/SessionManager.js.map +0 -1
package/dist/tempo/server/Session.d.ts.map +0 -1
package/dist/tempo/server/Session.js.map +0 -1
package/dist/tempo/session/Chain.d.ts.map +0 -1
package/dist/tempo/session/Chain.js.map +0 -1
package/dist/tempo/session/Channel.d.ts.map +0 -1
package/dist/tempo/session/Channel.js.map +0 -1
package/dist/tempo/session/ChannelStore.d.ts +0 -117
package/dist/tempo/session/ChannelStore.d.ts.map +0 -1
package/dist/tempo/session/ChannelStore.js +0 -172
package/dist/tempo/session/ChannelStore.js.map +0 -1
package/dist/tempo/session/Receipt.d.ts +0 -22
package/dist/tempo/session/Receipt.d.ts.map +0 -1
package/dist/tempo/session/Receipt.js +0 -34
package/dist/tempo/session/Receipt.js.map +0 -1
package/dist/tempo/session/Sse.d.ts.map +0 -1
package/dist/tempo/session/Sse.js +0 -363
package/dist/tempo/session/Sse.js.map +0 -1
package/dist/tempo/session/Types.d.ts +0 -78
package/dist/tempo/session/Types.d.ts.map +0 -1
package/dist/tempo/session/Types.js.map +0 -1
package/dist/tempo/session/Voucher.d.ts.map +0 -1
package/dist/tempo/session/Voucher.js.map +0 -1
package/dist/tempo/session/Ws.d.ts +0 -87
package/dist/tempo/session/Ws.d.ts.map +0 -1
package/dist/tempo/session/Ws.js +0 -443
package/dist/tempo/session/Ws.js.map +0 -1
package/dist/tempo/session/escrow.abi.js.map +0 -1
package/src/tempo/session/ChannelStore.ts +0 -308
package/src/tempo/session/Receipt.test.ts +0 -89
package/src/tempo/session/Receipt.ts +0 -46
package/src/tempo/session/Sse.ts +0 -462
package/src/tempo/session/Types.ts +0 -86
package/src/tempo/session/Ws.ts +0 -576
/package/dist/tempo/{session → legacy/session}/Channel.js +0 -0
/package/dist/tempo/{session → legacy/session}/Types.js +0 -0
/package/src/tempo/{session → legacy/session}/Channel.test.ts +0 -0
/package/src/tempo/{session → legacy/session}/Voucher.test.ts +0 -0
/package/src/tempo/session/{Sse.fuzz.test.ts → server/Sse.fuzz.test.ts} +0 -0

package/src/tempo/session/server/CredentialVerification.ts ADDED Viewed

@@ -0,0 +1,710 @@
+import {
+  isAddress,
+  isAddressEqual,
+  zeroAddress,
+  type Account as viem_Account,
+  type Address,
+  type Hex,
+} from 'viem'
+import type * as Challenge from '../../../Challenge.js'
+import {
+  AmountExceedsDepositError,
+  ChannelClosedError,
+  ChannelNotFoundError,
+  InsufficientBalanceError,
+  InvalidSignatureError,
+  VerificationFailedError,
+} from '../../../Errors.js'
+import type * as FeePayer from '../../internal/fee-payer.js'
+import * as Chain from '../precompile/Chain.js'
+import { readChannelClosedReceiptFields } from '../precompile/Chain.js'
+import * as Channel from '../precompile/Channel.js'
+import {
+  createSessionReceipt,
+  uint96,
+  type ChannelDescriptor,
+  type SessionCredentialPayload,
+  type SessionReceipt,
+} from '../precompile/Protocol.js'
+import * as Voucher from '../precompile/Voucher.js'
+import * as ChannelStore from './ChannelStore.js'
+import { getChallengePaymentFields } from './RequestState.js'
+import { assertSettlementSender, getClientAccount } from './Settlement.js'
+/** Returns the effective voucher signer for a TIP-1034 descriptor. */
+export function authorizedSigner(descriptor: Channel.ChannelDescriptor): Address {
+  return isAddressEqual(descriptor.authorizedSigner, zeroAddress)
+    ? descriptor.payer
+    : descriptor.authorizedSigner
+}
+/** Asserts that a credential payload includes a TIP-1034 descriptor. */
+export function assertDescriptor(payload: {
+  descriptor?: Channel.ChannelDescriptor | undefined
+}): asserts payload is { descriptor: Channel.ChannelDescriptor } {
+  if (!payload.descriptor)
+    throw new VerificationFailedError({
+      reason: 'descriptor required for TIP-1034 session action',
+    })
+}
+/** Asserts that two TIP-1034 descriptors identify the same channel. */
+export function assertSameDescriptor(a: Channel.ChannelDescriptor, b: Channel.ChannelDescriptor) {
+  if (
+    !isAddressEqual(a.payer, b.payer) ||
+    !isAddressEqual(a.payee, b.payee) ||
+    !isAddressEqual(a.operator, b.operator) ||
+    !isAddressEqual(a.token, b.token) ||
+    !isAddressEqual(a.authorizedSigner, b.authorizedSigner) ||
+    a.salt.toLowerCase() !== b.salt.toLowerCase() ||
+    a.expiringNonceHash.toLowerCase() !== b.expiringNonceHash.toLowerCase()
+  )
+    throw new VerificationFailedError({
+      reason: 'credential descriptor does not match stored channel',
+    })
+}
+/**
+ * Validates a TIP-1034 descriptor against channel ID, server destination, and token.
+ */
+export function validateChannelDescriptor(
+  descriptor: Channel.ChannelDescriptor,
+  channelId: Address | `0x${string}`,
+  chainId: number,
+  escrow: Address,
+  recipient: Address,
+  currency: Address,
+  expectedOperator?: Address | undefined,
+): void {
+  const computed = Channel.computeId({ ...descriptor, chainId, escrow })
+  if (computed.toLowerCase() !== channelId.toLowerCase()) {
+    throw new VerificationFailedError({ reason: 'channel descriptor does not match channelId' })
+  }
+  if (!isAddressEqual(descriptor.payee, recipient)) {
+    throw new VerificationFailedError({
+      reason: 'channel descriptor payee does not match server destination',
+    })
+  }
+  if (!isAddressEqual(descriptor.token, currency)) {
+    throw new VerificationFailedError({
+      reason: 'channel descriptor token does not match server token',
+    })
+  }
+  if (expectedOperator !== undefined && !isAddressEqual(descriptor.operator, expectedOperator)) {
+    throw new VerificationFailedError({
+      reason: 'channel descriptor operator does not match server operator',
+    })
+  }
+}
+/** Validates on-chain channel state before accepting or charging a credential. */
+export function validateChannelState(state: Chain.ChannelState, amount?: bigint): void {
+  if (state.deposit === 0n) {
+    throw new ChannelNotFoundError({ reason: 'channel not funded on-chain' })
+  }
+  if (state.closeRequestedAt !== 0) {
+    throw new ChannelClosedError({ reason: 'channel has a pending close request' })
+  }
+  if (amount !== undefined && state.deposit - state.settled < amount) {
+    throw new InsufficientBalanceError({
+      reason: 'channel available balance insufficient for requested amount',
+    })
+  }
+}
+const sessionCredentialActions = [
+  'open',
+  'topUp',
+  'voucher',
+  'close',
+] as const satisfies readonly SessionCredentialPayload['action'][]
+const sessionCredentialActionSet = new Set<string>(sessionCredentialActions)
+/** Shared action and channel fields required on every session credential payload. */
+export type SessionCredentialPayloadHeader = {
+  /** Credential action discriminator. */
+  action: SessionCredentialPayload['action']
+  /** Channel ID the credential acts on. */
+  channelId: Hex
+}
+type SessionCredentialPayloadData = {
+  candidate: Record<string, unknown>
+  header: SessionCredentialPayloadHeader
+}
+function isObject(value: unknown): value is Record<string, unknown> {
+  return value !== null && typeof value === 'object'
+}
+function isSessionCredentialAction(value: unknown): value is SessionCredentialPayload['action'] {
+  return typeof value === 'string' && sessionCredentialActionSet.has(value)
+}
+function isHex(value: unknown): value is Hex {
+  return typeof value === 'string' && /^0x[0-9a-fA-F]*$/.test(value)
+}
+function isHash(value: unknown): value is Hex {
+  return typeof value === 'string' && /^0x[0-9a-fA-F]{64}$/.test(value)
+}
+function readAddress(value: unknown, field: string): Address {
+  if (typeof value === 'string' && isAddress(value, { strict: false })) return value
+  throw new VerificationFailedError({ reason: `invalid session credential ${field}` })
+}
+function readHash(value: unknown, field: string): Hex {
+  if (isHash(value)) return value
+  throw new VerificationFailedError({ reason: `invalid session credential ${field}` })
+}
+function readHex(value: unknown, field: string): Hex {
+  if (isHex(value)) return value
+  throw new VerificationFailedError({ reason: `invalid session credential ${field}` })
+}
+function readRawAmount(value: unknown, field: string): string {
+  if (typeof value === 'string' && /^[0-9]+$/.test(value)) return value
+  throw new VerificationFailedError({ reason: `invalid session credential ${field}` })
+}
+function readPayloadObject(payload: unknown): Record<string, unknown> {
+  if (!isObject(payload))
+    throw new VerificationFailedError({ reason: 'invalid session credential payload' })
+  return payload
+}
+function readDescriptor(value: unknown): ChannelDescriptor {
+  if (value === undefined)
+    throw new VerificationFailedError({
+      reason: 'descriptor required for TIP-1034 session action',
+    })
+  const candidate = readPayloadObject(value)
+  return {
+    payer: readAddress(candidate.payer, 'descriptor.payer'),
+    payee: readAddress(candidate.payee, 'descriptor.payee'),
+    operator: readAddress(candidate.operator, 'descriptor.operator'),
+    token: readAddress(candidate.token, 'descriptor.token'),
+    salt: readHash(candidate.salt, 'descriptor.salt'),
+    authorizedSigner: readAddress(candidate.authorizedSigner, 'descriptor.authorizedSigner'),
+    expiringNonceHash: readHash(candidate.expiringNonceHash, 'descriptor.expiringNonceHash'),
+  }
+}
+function readPayloadHeader(payload: unknown): SessionCredentialPayloadData {
+  const candidate = readPayloadObject(payload)
+  if (!isSessionCredentialAction(candidate.action)) {
+    throw new VerificationFailedError({ reason: 'invalid session credential action' })
+  }
+  return {
+    candidate,
+    header: {
+      action: candidate.action,
+      channelId: ChannelStore.normalizeChannelId(readHash(candidate.channelId, 'channelId')),
+    },
+  }
+}
+/** Validates the action discriminator for a TIP-1034 session credential payload. */
+export function requireSessionCredentialAction(
+  payload: unknown,
+): SessionCredentialPayload['action'] {
+  const candidate = readPayloadObject(payload)
+  if (!isSessionCredentialAction(candidate.action)) {
+    throw new VerificationFailedError({ reason: 'invalid session credential action' })
+  }
+  return candidate.action
+}
+/** Validates the shared action and channel fields for a TIP-1034 session credential payload. */
+export function requireSessionCredentialPayloadHeader(
+  payload: unknown,
+): SessionCredentialPayloadHeader {
+  return readPayloadHeader(payload).header
+}
+/** Validates action-specific fields for a TIP-1034 session credential payload. */
+export function requireSessionCredentialPayload(payload: unknown): SessionCredentialPayload {
+  const { candidate, header } = readPayloadHeader(payload)
+  switch (header.action) {
+    case 'open':
+      return {
+        action: 'open',
+        type: readTransactionType(candidate.type),
+        channelId: header.channelId,
+        transaction: readHex(candidate.transaction, 'transaction'),
+        signature: readHex(candidate.signature, 'signature'),
+        descriptor: readDescriptor(candidate.descriptor),
+        cumulativeAmount: readRawAmount(candidate.cumulativeAmount, 'cumulativeAmount'),
+        ...(candidate.authorizedSigner === undefined
+          ? {}
+          : {
+              authorizedSigner: readAddress(candidate.authorizedSigner, 'authorizedSigner'),
+            }),
+      }
+    case 'topUp':
+      return {
+        action: 'topUp',
+        type: readTransactionType(candidate.type),
+        channelId: header.channelId,
+        transaction: readHex(candidate.transaction, 'transaction'),
+        descriptor: readDescriptor(candidate.descriptor),
+        additionalDeposit: readRawAmount(candidate.additionalDeposit, 'additionalDeposit'),
+      }
+    case 'voucher':
+      return {
+        action: 'voucher',
+        channelId: header.channelId,
+        descriptor: readDescriptor(candidate.descriptor),
+        cumulativeAmount: readRawAmount(candidate.cumulativeAmount, 'cumulativeAmount'),
+        signature: readHex(candidate.signature, 'signature'),
+      }
+    case 'close':
+      return {
+        action: 'close',
+        channelId: header.channelId,
+        descriptor: readDescriptor(candidate.descriptor),
+        cumulativeAmount: readRawAmount(candidate.cumulativeAmount, 'cumulativeAmount'),
+        signature: readHex(candidate.signature, 'signature'),
+      }
+  }
+}
+function readTransactionType(value: unknown): 'transaction' {
+  if (value === 'transaction') return value
+  throw new VerificationFailedError({ reason: 'invalid session credential transaction type' })
+}
+/** Shared inputs required to verify a single precompile session credential payload. */
+export type VerifyCredentialPayloadParameters = {
+  /** Optional account override used for payee-side close settlement. */
+  account?: viem_Account | undefined
+  /** Challenge echoed by the credential. */
+  challenge: Challenge.Challenge
+  /** Milliseconds before voucher verification refreshes on-chain channel state. */
+  channelStateTtl: number
+  /** Chain ID used for channel ID derivation and voucher domain separation. */
+  chainId: number
+  /** viem client used for precompile reads and transaction broadcasts. */
+  client: Chain.TransactionClient
+  /** TIP20EscrowChannel precompile address for this session method. */
+  escrow: Address
+  /** Operator address advertised in the HMAC-bound challenge details. */
+  expectedOperator?: Address | undefined
+  /** Optional fee-payer account for fee-sponsored management transactions. */
+  feePayer?: viem_Account | undefined
+  /** Optional policy for fee-sponsored close/open/top-up transactions. */
+  feePayerPolicy?: Partial<FeePayer.Policy> | undefined
+  /** Optional fee token override for close transactions. */
+  feeToken?: Address | undefined
+  /** Last successful on-chain refresh timestamp per channel ID. */
+  lastOnChainVerified: Map<Hex, number>
+  /** Minimum allowed voucher delta in raw units. */
+  minVoucherDelta: bigint
+  /** Discriminated session credential payload to verify. */
+  payload: SessionCredentialPayload
+  /** Server-side channel store. */
+  store: ChannelStore.ChannelStore
+}
+/** Narrows shared credential verification inputs to one payload action. */
+export type VerifyCredentialActionParameters<action extends SessionCredentialPayload['action']> =
+  Omit<VerifyCredentialPayloadParameters, 'payload'> & {
+    /** Credential payload for the selected action. */
+    payload: Extract<SessionCredentialPayload, { action: action }>
+  }
+/** Inputs for verifying an open transaction credential and initial voucher. */
+export type OpenCredentialActionParameters = VerifyCredentialActionParameters<'open'>
+/** Inputs for verifying a top-up transaction credential. */
+export type TopUpCredentialActionParameters = VerifyCredentialActionParameters<'topUp'>
+/** Inputs for verifying and accepting an incremental voucher credential. */
+export type VoucherCredentialActionParameters = VerifyCredentialActionParameters<'voucher'>
+/** Inputs for verifying and settling a cooperative close credential. */
+export type CloseCredentialActionParameters = VerifyCredentialActionParameters<'close'>
+const refreshOnChainVerificationCache = {
+  close: false,
+  open: true,
+  topUp: true,
+  voucher: false,
+} satisfies Record<SessionCredentialPayload['action'], boolean>
+/** Verifies a session credential payload and applies the action-specific state transition. */
+export async function verifyCredentialPayload(
+  context: VerifyCredentialPayloadParameters,
+): Promise<SessionReceipt> {
+  const receipt = await verifyCredentialAction(context)
+  if (refreshOnChainVerificationCache[context.payload.action])
+    context.lastOnChainVerified.set(receipt.channelId, Date.now())
+  return receipt
+}
+function verifyCredentialAction(
+  context: VerifyCredentialPayloadParameters,
+): Promise<SessionReceipt> {
+  const { payload } = context
+  switch (payload.action) {
+    case 'open':
+      return handleOpenCredential(actionContext(context, payload))
+    case 'topUp':
+      return handleTopUpCredential(actionContext(context, payload))
+    case 'voucher':
+      return handleVoucherCredential(actionContext(context, payload))
+    case 'close':
+      return handleCloseCredential(actionContext(context, payload))
+  }
+}
+function actionContext<action extends SessionCredentialPayload['action']>(
+  context: VerifyCredentialPayloadParameters,
+  payload: Extract<SessionCredentialPayload, { action: action }>,
+): VerifyCredentialActionParameters<action> {
+  return { ...context, payload }
+}
+async function handleOpenCredential(
+  parameters: OpenCredentialActionParameters,
+): Promise<SessionReceipt> {
+  const { store, client, challenge, payload, chainId, escrow } = parameters
+  const request = getChallengePaymentFields(challenge)
+  const expectedOperator = parameters.expectedOperator ?? zeroAddress
+  const cumulativeAmount = uint96(BigInt(payload.cumulativeAmount))
+  assertDescriptor(payload)
+  if (
+    payload.authorizedSigner !== undefined &&
+    !isAddressEqual(payload.authorizedSigner, payload.descriptor.authorizedSigner)
+  )
+    throw new VerificationFailedError({
+      reason: 'credential authorizedSigner does not match descriptor',
+    })
+  const channelId = ChannelStore.normalizeChannelId(payload.channelId)
+  validateChannelDescriptor(
+    payload.descriptor,
+    channelId,
+    chainId,
+    escrow,
+    request.recipient,
+    request.currency,
+    expectedOperator,
+  )
+  const result = await Chain.broadcastOpenTransaction({
+    challengeExpires: challenge.expires,
+    chainId,
+    client,
+    escrowContract: escrow,
+    expectedAuthorizedSigner: payload.descriptor.authorizedSigner,
+    expectedChannelId: channelId,
+    expectedCurrency: request.currency,
+    expectedOperator,
+    expectedPayee: request.recipient,
+    expectedExpiringNonceHash: payload.descriptor.expiringNonceHash,
+    expectedPayer: payload.descriptor.payer,
+    feePayer: parameters.feePayer,
+    feePayerPolicy: parameters.feePayerPolicy,
+    serializedTransaction: payload.transaction,
+    async beforeBroadcast(prepared) {
+      assertSameDescriptor(prepared.descriptor, payload.descriptor)
+      if (cumulativeAmount > prepared.openDeposit)
+        throw new AmountExceedsDepositError({ reason: 'voucher amount exceeds open deposit' })
+      const valid = await Voucher.verifyVoucher(
+        escrow,
+        chainId,
+        { channelId, cumulativeAmount: cumulativeAmount, signature: payload.signature },
+        authorizedSigner(prepared.descriptor),
+      )
+      if (!valid) throw new InvalidSignatureError({ reason: 'invalid voucher signature' })
+    },
+  })
+  const { descriptor, state } = result
+  assertSameDescriptor(descriptor, payload.descriptor)
+  validateChannelState(state, request.amount)
+  const updated = await store.updateChannel(channelId, (current) =>
+    ChannelStore.openChannelState({
+      authorizedSigner: authorizedSigner(descriptor),
+      chainId,
+      channelId,
+      current,
+      descriptor,
+      escrow,
+      expiringNonceHash: result.expiringNonceHash,
+      cumulativeAmount,
+      signature: payload.signature,
+      state,
+    }),
+  )
+  if (!updated) throw new VerificationFailedError({ reason: 'failed to create channel' })
+  return createSessionReceipt({
+    challengeId: challenge.id,
+    channelId,
+    acceptedCumulative: updated.highestVoucherAmount,
+    spent: updated.spent,
+    units: updated.units,
+    txHash: result.txHash,
+  })
+}
+async function handleTopUpCredential(
+  parameters: TopUpCredentialActionParameters,
+): Promise<SessionReceipt> {
+  const { store, client, challenge, payload, chainId, escrow } = parameters
+  const request = getChallengePaymentFields(challenge)
+  const expectedOperator = parameters.expectedOperator ?? zeroAddress
+  const additionalDeposit = uint96(BigInt(payload.additionalDeposit))
+  assertDescriptor(payload)
+  const channelId = ChannelStore.normalizeChannelId(payload.channelId)
+  validateChannelDescriptor(
+    payload.descriptor,
+    channelId,
+    chainId,
+    escrow,
+    request.recipient,
+    request.currency,
+    expectedOperator,
+  )
+  const channel = await ChannelStore.loadPrecompileChannel({
+    descriptor: payload.descriptor,
+    channelId,
+    chainId,
+    escrow,
+    store,
+    validateDescriptor: true,
+  })
+  const result = await Chain.broadcastTopUpTransaction({
+    additionalDeposit,
+    challengeExpires: challenge.expires,
+    chainId,
+    client,
+    descriptor: channel.descriptor,
+    escrowContract: escrow,
+    expectedChannelId: channelId,
+    expectedCurrency: request.currency,
+    feePayer: parameters.feePayer,
+    feePayerPolicy: parameters.feePayerPolicy,
+    serializedTransaction: payload.transaction,
+  })
+  const { state } = result
+  validateChannelState(state)
+  const updated = await store.updateChannel(channelId, (current) =>
+    ChannelStore.topUpChannelState({ current, state }),
+  )
+  return createSessionReceipt({
+    challengeId: challenge.id,
+    channelId,
+    acceptedCumulative: updated?.highestVoucherAmount ?? channel.highestVoucherAmount,
+    spent: updated?.spent ?? channel.spent,
+    units: updated?.units ?? channel.units,
+    txHash: result.txHash,
+  })
+}
+async function handleVoucherCredential(
+  parameters: VoucherCredentialActionParameters,
+): Promise<SessionReceipt> {
+  const {
+    store,
+    client,
+    challenge,
+    payload,
+    chainId,
+    escrow,
+    minVoucherDelta,
+    channelStateTtl,
+    lastOnChainVerified,
+  } = parameters
+  const request = getChallengePaymentFields(challenge)
+  const expectedOperator = parameters.expectedOperator ?? zeroAddress
+  const channelId = ChannelStore.normalizeChannelId(payload.channelId)
+  const voucher = Voucher.parseVoucherFromPayload(
+    channelId,
+    payload.cumulativeAmount,
+    payload.signature,
+  )
+  assertDescriptor(payload)
+  validateChannelDescriptor(
+    payload.descriptor,
+    channelId,
+    chainId,
+    escrow,
+    request.recipient,
+    request.currency,
+    expectedOperator,
+  )
+  const channel = await ChannelStore.loadPrecompileChannel({
+    descriptor: payload.descriptor,
+    channelId,
+    chainId,
+    escrow,
+    store,
+    validateDescriptor: true,
+  })
+  if (channel.finalized) throw new ChannelClosedError({ reason: 'channel is finalized' })
+  const isStale = Date.now() - (lastOnChainVerified.get(channelId) ?? 0) > channelStateTtl
+  const state = isStale ? await Chain.getChannelState(client, channelId, escrow) : undefined
+  if (state) lastOnChainVerified.set(channelId, Date.now())
+  const channelState = {
+    deposit: state?.deposit ?? uint96(channel.deposit),
+    settled: state?.settled ?? uint96(channel.settledOnChain),
+    closeRequestedAt: state?.closeRequestedAt ?? Number(channel.closeRequestedAt),
+  }
+  if (channelState.closeRequestedAt !== 0) {
+    await store.updateChannel(channelId, (current) =>
+      current
+        ? {
+            ...current,
+            closeRequestedAt:
+              BigInt(channelState.closeRequestedAt) > current.closeRequestedAt
+                ? BigInt(channelState.closeRequestedAt)
+                : current.closeRequestedAt,
+          }
+        : current,
+    )
+  }
+  return ChannelStore.verifyAndAcceptVoucher({
+    store,
+    minVoucherDelta,
+    challenge,
+    channel,
+    voucher,
+    channelState,
+    methodDetails: { chainId, escrowContract: escrow },
+  })
+}
+async function handleCloseCredential(
+  parameters: CloseCredentialActionParameters,
+): Promise<SessionReceipt> {
+  const { store, client, challenge, payload, chainId, escrow } = parameters
+  const request = getChallengePaymentFields(challenge)
+  const expectedOperator = parameters.expectedOperator ?? zeroAddress
+  const cumulativeAmount = uint96(BigInt(payload.cumulativeAmount))
+  const channelId = ChannelStore.normalizeChannelId(payload.channelId)
+  assertDescriptor(payload)
+  validateChannelDescriptor(
+    payload.descriptor,
+    channelId,
+    chainId,
+    escrow,
+    request.recipient,
+    request.currency,
+    expectedOperator,
+  )
+  const channel = await ChannelStore.loadPrecompileChannel({
+    descriptor: payload.descriptor,
+    channelId,
+    chainId,
+    escrow,
+    store,
+  })
+  if (channel.finalized) throw new ChannelClosedError({ reason: 'channel is already finalized' })
+  const state = await Chain.getChannelState(client, channelId, escrow)
+  if (state.closeRequestedAt !== 0)
+    throw new ChannelClosedError({ reason: 'channel has a pending close request' })
+  if (state.deposit === 0n && (cumulativeAmount !== 0n || channel.spent !== 0n))
+    throw new ChannelClosedError({ reason: 'channel deposit is zero (settled)' })
+  if (cumulativeAmount < channel.spent)
+    throw new VerificationFailedError({
+      reason: `close voucher amount must be >= ${channel.spent} (spent)`,
+    })
+  if (cumulativeAmount < state.settled)
+    throw new VerificationFailedError({
+      reason: `close voucher amount must be >= ${state.settled} (on-chain settled)`,
+    })
+  const valid = await Voucher.verifyVoucher(
+    escrow,
+    chainId,
+    { channelId, cumulativeAmount: cumulativeAmount, signature: payload.signature },
+    channel.authorizedSigner,
+  )
+  if (!valid) throw new InvalidSignatureError({ reason: 'invalid voucher signature' })
+  let captureAmount = uint96(channel.spent > state.settled ? channel.spent : state.settled)
+  if (captureAmount > state.deposit)
+    throw new AmountExceedsDepositError({ reason: 'close capture amount exceeds on-chain deposit' })
+  const pendingCloseStartedAt = BigInt(Math.floor(Date.now() / 1000) || 1)
+  const previousCloseRequestedAt = channel.closeRequestedAt
+  let pendingCloseMarked = false
+  await store.updateChannel(channelId, (current) => {
+    const next = ChannelStore.markPendingClose({
+      closeRequestedAt: pendingCloseStartedAt,
+      cumulativeAmount,
+      current,
+      onChainDeposit: state.deposit,
+      onChainSettled: state.settled,
+    })
+    if (next.state) {
+      captureAmount = next.captureAmount
+      pendingCloseMarked = true
+    }
+    return next.state
+  })
+  const account = parameters.account ?? getClientAccount(client)
+  let txHash: Hex | undefined
+  let receipt: Awaited<ReturnType<typeof Chain.waitForSuccessfulReceipt>>
+  try {
+    assertSettlementSender({
+      operation: 'close',
+      channelId,
+      operator: channel.operator,
+      payee: channel.payee,
+      sender: account?.address,
+    })
+    txHash = await Chain.closeOnChain(
+      client,
+      channel.descriptor,
+      cumulativeAmount,
+      captureAmount,
+      payload.signature,
+      escrow,
+      account
+        ? {
+            account,
+            ...(parameters.feePayer ? { feePayer: parameters.feePayer } : {}),
+            ...(parameters.feePayerPolicy ? { feePayerPolicy: parameters.feePayerPolicy } : {}),
+            ...(parameters.feeToken ? { feeToken: parameters.feeToken } : {}),
+            candidateFeeTokens: [channel.token],
+          }
+        : undefined,
+    )
+    receipt = await Chain.waitForSuccessfulReceipt(client, txHash)
+  } catch (error) {
+    if (pendingCloseMarked) {
+      await store.updateChannel(channelId, (current) =>
+        current && current.closeRequestedAt === pendingCloseStartedAt
+          ? { ...current, closeRequestedAt: previousCloseRequestedAt }
+          : current,
+      )
+    }
+    throw error
+  }
+  const closed = readChannelClosedReceiptFields(
+    Chain.getChannelEvent(receipt, 'ChannelClosed', channelId),
+  )
+  const { refundedToPayer, settledToPayee } = closed
+  if (settledToPayee > captureAmount || settledToPayee + refundedToPayer > state.deposit)
+    throw new VerificationFailedError({ reason: 'ChannelClosed amounts do not match state' })
+  const updated = await store.updateChannel(channelId, (current) =>
+    ChannelStore.finalizeClosedChannelState({
+      captureAmount,
+      channelId,
+      cumulativeAmount,
+      current,
+      signature: payload.signature,
+    }),
+  )
+  return createSessionReceipt({
+    challengeId: challenge.id,
+    channelId,
+    acceptedCumulative: cumulativeAmount,
+    spent: updated?.spent ?? channel.spent,
+    units: updated?.units ?? channel.units,
+    txHash,
+  })
+}