payid 0.5.9 → 0.6.0

package/dist/{chunk-ROBSNIIZ.js → chunk-2VO4XLTT.js}

@@ -2,13 +2,14 @@ import {
   combineRules
 } from "./chunk-GG34PNTF.js";
 import {
-  decodeSessionPolicy
-} from "./chunk-MXKZJKXE.js";
+  decodeSessionPolicy,
+  decodeSessionPolicyV2
+} from "./chunk-BLIRABV7.js";
 import {
   evaluate,
   generateDecisionProof,
   resolveRule
-} from "./chunk-PAJYP7JI.js";
+} from "./chunk-DZ6GVRER.js";
 import {
   __export
 } from "./chunk-MLKGABMK.js";
@@ -43,7 +44,10 @@ var PayIDClient = class {
   }
   async evaluateAndProve(params) {
     const authorityConfig = isRuleSource(params.authorityRule) ? (await resolveRule(params.authorityRule)).config : params.authorityRule;
-    const evalConfig = params.evaluationRule ?? (params.sessionPolicy ? combineRules(
+    const evalConfig = params.evaluationRule ?? (params.sessionPolicyV2 ? (() => {
+      decodeSessionPolicyV2(params.sessionPolicyV2, params.blockTimestamp);
+      return authorityConfig;
+    })() : params.sessionPolicy ? combineRules(
       authorityConfig,
       decodeSessionPolicy(
         params.sessionPolicy,

package/dist/chunk-BLIRABV7.js

@@ -0,0 +1,207 @@
+import {
+  canonicalizeRuleSet
+} from "./chunk-6VPSJFO4.js";
+import {
+  randomHex
+} from "./chunk-KDC67LIN.js";
+
+// src/sessionPolicy/create.ts
+import { ethers } from "ethers";
+async function createSessionPolicyPayload(params) {
+  const issuedAt = Math.floor(Date.now() / 1e3);
+  const nonce = randomHex(16);
+  const payload = {
+    version: "payid.session.policy.v1",
+    receiver: params.receiver,
+    rule: canonicalizeRuleSet(params.rule),
+    issuedAt,
+    expiresAt: params.expiresAt,
+    nonce
+  };
+  const message = ethers.keccak256(
+    ethers.toUtf8Bytes(JSON.stringify(payload))
+  );
+  const signature = await params.signer.signMessage(message);
+  return { ...payload, signature };
+}
+var SESSION_POLICY_V2_DOMAIN_NAME = "PAY.ID SessionPolicy";
+var SESSION_POLICY_V2_DOMAIN_VERSION = "1";
+var SESSION_POLICY_V2_TYPES = {
+  SessionPolicy: [
+    { name: "receiver", type: "address" },
+    { name: "ruleSetHash", type: "bytes32" },
+    { name: "ruleAuthority", type: "address" },
+    { name: "allowedAsset", type: "address" },
+    { name: "maxAmount", type: "uint256" },
+    { name: "expiresAt", type: "uint64" },
+    { name: "policyNonce", type: "bytes32" },
+    { name: "payId", type: "bytes32" }
+  ]
+};
+function buildSessionPolicyV2Domain(chainId, verifyingContract) {
+  return {
+    name: SESSION_POLICY_V2_DOMAIN_NAME,
+    version: SESSION_POLICY_V2_DOMAIN_VERSION,
+    chainId,
+    verifyingContract
+  };
+}
+async function createSessionPolicyV2(params) {
+  const {
+    receiver,
+    ruleSetHash,
+    ruleAuthority,
+    allowedAsset,
+    maxAmount,
+    expiresAt,
+    payId,
+    chainId,
+    verifyingContract,
+    signer
+  } = params;
+  if (!ethers.isAddress(receiver)) {
+    throw new Error(`SESSION_POLICY_V2: receiver address tidak valid: ${receiver}`);
+  }
+  if (maxAmount <= 0n) {
+    throw new Error("SESSION_POLICY_V2: maxAmount harus > 0");
+  }
+  if (expiresAt <= Math.floor(Date.now() / 1e3)) {
+    throw new Error("SESSION_POLICY_V2: expiresAt sudah lewat");
+  }
+  const policyNonce = randomHex(32);
+  const payIdBytes32 = ethers.keccak256(ethers.toUtf8Bytes(payId));
+  const domain = buildSessionPolicyV2Domain(chainId, verifyingContract);
+  const value = {
+    receiver,
+    ruleSetHash,
+    ruleAuthority,
+    allowedAsset,
+    maxAmount,
+    expiresAt,
+    policyNonce,
+    payId: payIdBytes32
+  };
+  const signature = await signer.signTypedData(
+    domain,
+    SESSION_POLICY_V2_TYPES,
+    value
+  );
+  const recovered = ethers.verifyTypedData(domain, SESSION_POLICY_V2_TYPES, value, signature);
+  if (recovered.toLowerCase() !== receiver.toLowerCase()) {
+    throw new Error("SESSION_POLICY_V2: self-verification gagal");
+  }
+  return {
+    version: "payid.session.policy.v2",
+    receiver,
+    ruleSetHash,
+    ruleAuthority,
+    allowedAsset,
+    maxAmount: maxAmount.toString(),
+    expiresAt,
+    policyNonce,
+    payId,
+    chainId,
+    verifyingContract,
+    signature
+  };
+}
+
+// src/sessionPolicy/decode.ts
+import { ethers as ethers2 } from "ethers";
+function decodeSessionPolicy(sessionPolicy, now) {
+  if (sessionPolicy.version !== "payid.session.policy.v1") {
+    throw new Error("INVALID_SESSION_POLICY_VERSION");
+  }
+  if (now > sessionPolicy.expiresAt) {
+    throw new Error("SESSION_POLICY_EXPIRED");
+  }
+  const payload = {
+    version: sessionPolicy.version,
+    receiver: sessionPolicy.receiver,
+    rule: sessionPolicy.rule,
+    issuedAt: sessionPolicy.issuedAt,
+    expiresAt: sessionPolicy.expiresAt,
+    nonce: sessionPolicy.nonce
+  };
+  const message = ethers2.keccak256(ethers2.toUtf8Bytes(JSON.stringify(payload)));
+  const recovered = ethers2.verifyMessage(message, sessionPolicy.signature);
+  if (recovered.toLowerCase() !== sessionPolicy.receiver.toLowerCase()) {
+    throw new Error("INVALID_SESSION_POLICY_SIGNATURE");
+  }
+  return sessionPolicy.rule;
+}
+function decodeSessionPolicyV2(policy, blockTimestamp) {
+  if (policy.version !== "payid.session.policy.v2") {
+    throw new Error("INVALID_SESSION_POLICY_V2_VERSION");
+  }
+  if (blockTimestamp >= policy.expiresAt) {
+    throw new Error("SESSION_POLICY_V2_EXPIRED");
+  }
+  const payIdBytes32 = ethers2.keccak256(ethers2.toUtf8Bytes(policy.payId));
+  const domain = buildSessionPolicyV2Domain(policy.chainId, policy.verifyingContract);
+  const value = {
+    receiver: policy.receiver,
+    ruleSetHash: policy.ruleSetHash,
+    ruleAuthority: policy.ruleAuthority,
+    allowedAsset: policy.allowedAsset,
+    maxAmount: BigInt(policy.maxAmount),
+    expiresAt: policy.expiresAt,
+    policyNonce: policy.policyNonce,
+    payId: payIdBytes32
+  };
+  const recovered = ethers2.verifyTypedData(domain, SESSION_POLICY_V2_TYPES, value, policy.signature);
+  if (recovered.toLowerCase() !== policy.receiver.toLowerCase()) {
+    throw new Error("INVALID_SESSION_POLICY_V2_SIGNATURE");
+  }
+  return policy;
+}
+function encodeSessionPolicyV2QR(policy) {
+  const encoded = Buffer.from(JSON.stringify(policy), "utf-8").toString("base64url");
+  return `payid-v2:${encoded}`;
+}
+function decodeSessionPolicyV2QR(qrString) {
+  const PREFIX = "payid-v2:";
+  if (!qrString.startsWith(PREFIX)) {
+    throw new Error(
+      `QR_FORMAT_UNKNOWN: harus diawali "${PREFIX}". Got: ${qrString.slice(0, 20)}...`
+    );
+  }
+  let policy;
+  try {
+    const json = Buffer.from(qrString.slice(PREFIX.length), "base64url").toString("utf-8");
+    policy = JSON.parse(json);
+  } catch {
+    throw new Error("QR_CORRUPT: tidak bisa di-decode");
+  }
+  const required = [
+    "version",
+    "receiver",
+    "ruleSetHash",
+    "ruleAuthority",
+    "allowedAsset",
+    "maxAmount",
+    "expiresAt",
+    "policyNonce",
+    "payId",
+    "chainId",
+    "verifyingContract",
+    "signature"
+  ];
+  for (const f of required) {
+    if (policy[f] == null) {
+      throw new Error(`SESSION_POLICY_V2_INVALID: field "${f}" tidak ada`);
+    }
+  }
+  return policy;
+}
+
+export {
+  createSessionPolicyPayload,
+  SESSION_POLICY_V2_TYPES,
+  buildSessionPolicyV2Domain,
+  createSessionPolicyV2,
+  decodeSessionPolicy,
+  decodeSessionPolicyV2,
+  encodeSessionPolicyV2QR,
+  decodeSessionPolicyV2QR
+};

package/dist/{chunk-PAJYP7JI.js → chunk-DZ6GVRER.js}

@@ -11,9 +11,9 @@ function normalizeContext(ctx) {
     ...ctx,
     tx: {
       ...ctx.tx,
-      sender: ctx.tx.sender?.toLowerCase(),
-      receiver: ctx.tx.receiver?.toLowerCase(),
-      asset: ctx.tx.asset.toUpperCase()
+      sender: ctx.tx.sender,
+      receiver: ctx.tx.receiver,
+      asset: ctx.tx.asset
     }
   };
 }
@@ -295,7 +295,8 @@ async function generateDecisionProof(params) {
   };
   const signature = await params.signer.signTypedData(domain, types, payload);
   const recovered = ethers.verifyTypedData(domain, types, payload, signature);
-  if (recovered.toLowerCase() !== params.payer.toLowerCase()) {
+  const signerAddress = await params.signer.getAddress();
+  if (recovered.toLowerCase() !== signerAddress.toLowerCase()) {
     throw new Error("SIGNATURE_MISMATCH");
   }
   return { payload, signature };

package/dist/chunk-Q4UZCGU4.js

@@ -0,0 +1,30 @@
+import {
+  SESSION_POLICY_V2_TYPES,
+  buildSessionPolicyV2Domain,
+  createSessionPolicyPayload,
+  createSessionPolicyV2,
+  decodeSessionPolicy,
+  decodeSessionPolicyV2,
+  decodeSessionPolicyV2QR,
+  encodeSessionPolicyV2QR
+} from "./chunk-BLIRABV7.js";
+import {
+  __export
+} from "./chunk-MLKGABMK.js";
+
+// src/sessionPolicy/index.ts
+var sessionPolicy_exports = {};
+__export(sessionPolicy_exports, {
+  SESSION_POLICY_V2_TYPES: () => SESSION_POLICY_V2_TYPES,
+  buildSessionPolicyV2Domain: () => buildSessionPolicyV2Domain,
+  createSessionPolicyPayload: () => createSessionPolicyPayload,
+  createSessionPolicyV2: () => createSessionPolicyV2,
+  decodeSessionPolicy: () => decodeSessionPolicy,
+  decodeSessionPolicyV2: () => decodeSessionPolicyV2,
+  decodeSessionPolicyV2QR: () => decodeSessionPolicyV2QR,
+  encodeSessionPolicyV2QR: () => encodeSessionPolicyV2QR
+});
+
+export {
+  sessionPolicy_exports
+};

package/dist/{chunk-AYJYFAXJ.js → chunk-TQJUKEFO.js}

@@ -2,7 +2,7 @@ import {
   evaluate,
   generateDecisionProof,
   resolveRule
-} from "./chunk-PAJYP7JI.js";
+} from "./chunk-DZ6GVRER.js";
 import {
   __export
 } from "./chunk-MLKGABMK.js";

package/dist/core/client/index.d.ts

@@ -1,5 +1,5 @@
-export { c as createPayID } from '../../index-BPJ_oOfy.js';
+export { c as createPayID } from '../../index-CtdogR8X.js';
 import 'payid-types';
 import 'ethers';
 import '../../types-B8pJQdMQ.js';
-import '../../types-BmMf7udp.js';
+import '../../types-CpXiPRYs.js';

package/dist/core/client/index.js

@@ -1,10 +1,10 @@
 import {
   createPayID
-} from "../../chunk-ROBSNIIZ.js";
+} from "../../chunk-2VO4XLTT.js";
 import "../../chunk-GG34PNTF.js";
-import "../../chunk-MXKZJKXE.js";
+import "../../chunk-BLIRABV7.js";
 import "../../chunk-6VPSJFO4.js";
-import "../../chunk-PAJYP7JI.js";
+import "../../chunk-DZ6GVRER.js";
 import "../../chunk-KDC67LIN.js";
 import "../../chunk-MLKGABMK.js";
 export {

package/dist/core/server/index.js

@@ -1,7 +1,7 @@
 import {
   createPayID
-} from "../../chunk-AYJYFAXJ.js";
-import "../../chunk-PAJYP7JI.js";
+} from "../../chunk-TQJUKEFO.js";
+import "../../chunk-DZ6GVRER.js";
 import "../../chunk-KDC67LIN.js";
 import "../../chunk-MLKGABMK.js";
 export {

package/dist/{index-BPJ_oOfy.d.ts → index-CtdogR8X.d.ts}

@@ -1,7 +1,7 @@
 import { RuleContext, RuleConfig, RuleResult } from 'payid-types';
 import { ethers } from 'ethers';
 import { R as RuleSource, D as DecisionProof } from './types-B8pJQdMQ.js';
-import { P as PayIDSessionPolicyPayloadV1 } from './types-BmMf7udp.js';
+import { P as PayIDSessionPolicyPayloadV1, S as SessionPolicyV2 } from './types-CpXiPRYs.js';
 
 declare class PayIDClient {
     private readonly debugTrace?;
@@ -15,6 +15,7 @@ declare class PayIDClient {
         authorityRule: RuleConfig | RuleSource;
         evaluationRule?: RuleConfig;
         sessionPolicy?: PayIDSessionPolicyPayloadV1;
+        sessionPolicyV2?: SessionPolicyV2;
         payId: string;
         payer: string;
         receiver: string;

package/dist/index-DSHZvYii.d.ts

@@ -0,0 +1,103 @@
+import { ethers, TypedDataField } from 'ethers';
+import { RuleConfig } from 'payid-types';
+import { P as PayIDSessionPolicyPayloadV1, S as SessionPolicyV2 } from './types-CpXiPRYs.js';
+
+/**
+ * Create and sign an ephemeral PayID session policy payload (V1).
+ * @deprecated Use createSessionPolicyV2 for new implementations.
+ */
+declare function createSessionPolicyPayload(params: {
+    receiver: string;
+    rule: RuleConfig;
+    expiresAt: number;
+    signer: ethers.Signer;
+}): Promise<PayIDSessionPolicyPayloadV1>;
+
+declare const SESSION_POLICY_V2_TYPES: Record<string, TypedDataField[]>;
+/**
+ * Build EIP-712 domain untuk SessionPolicyV2.
+ * Bind ke chainId + verifyingContract — policy tidak bisa di-replay di chain lain.
+ */
+declare function buildSessionPolicyV2Domain(chainId: number, verifyingContract: string): {
+    name: string;
+    version: string;
+    chainId: number;
+    verifyingContract: string;
+};
+/**
+ * Create and sign a Channel A Session Policy (V2).
+ *
+ * Receiver sign CONSTRAINTS — bukan transaksi spesifik.
+ * Receiver tidak perlu tahu siapa payer-nya saat membuat ini.
+ *
+ * Security model:
+ *   - Receiver sign constraints (rule, maxAmount, asset, expiry)
+ *   - Payer sign context transaksinya sendiri
+ *   - Chain enforce keduanya — tidak ada self-approval
+ *
+ * Perbedaan dari V1:
+ *   - Bind ke ruleSetHash on-chain   → payer tidak bisa swap rule
+ *   - Bind ke allowedAsset+maxAmount → payer tidak bisa exceed
+ *   - Bind ke chainId+verifyingContract (EIP-712) → anti cross-chain replay
+ *   - Signed via EIP-712 → human-readable di wallet UI
+ *
+ * @throws Jika maxAmount <= 0, expiresAt sudah lewat, atau address invalid
+ */
+declare function createSessionPolicyV2(params: {
+    receiver: string;
+    ruleSetHash: string;
+    ruleAuthority: string;
+    allowedAsset: string;
+    maxAmount: bigint;
+    expiresAt: number;
+    payId: string;
+    chainId: number;
+    verifyingContract: string;
+    signer: ethers.Signer;
+}): Promise<SessionPolicyV2>;
+
+/**
+ * Decode and verify a V1 session policy.
+ * @deprecated Use decodeSessionPolicyV2 for new implementations.
+ */
+declare function decodeSessionPolicy(sessionPolicy: PayIDSessionPolicyPayloadV1, now: number): RuleConfig;
+/**
+ * Verify and decode a Channel A SessionPolicyV2.
+ *
+ * Checks (in order):
+ *   1. version === "payid.session.policy.v2"
+ *   2. blockTimestamp < expiresAt  (belum expired)
+ *   3. EIP-712 signature valid dan recovered === receiver
+ *
+ * @param policy         - SessionPolicyV2 dari QR / URL
+ * @param blockTimestamp - Timestamp dari block, bukan Date.now()
+ * @returns policy yang terverifikasi (same object)
+ * @throws  INVALID_SESSION_POLICY_V2_VERSION | SESSION_POLICY_V2_EXPIRED | INVALID_SESSION_POLICY_V2_SIGNATURE
+ */
+declare function decodeSessionPolicyV2(policy: SessionPolicyV2, blockTimestamp: number): SessionPolicyV2;
+/**
+ * Encode SessionPolicyV2 ke QR / URL string.
+ * Format: "payid-v2:<base64url(JSON)>"
+ */
+declare function encodeSessionPolicyV2QR(policy: SessionPolicyV2): string;
+/**
+ * Decode QR / URL string ke SessionPolicyV2.
+ * @throws QR_FORMAT_UNKNOWN | QR_CORRUPT | SESSION_POLICY_V2_INVALID
+ */
+declare function decodeSessionPolicyV2QR(qrString: string): SessionPolicyV2;
+
+declare const index_PayIDSessionPolicyPayloadV1: typeof PayIDSessionPolicyPayloadV1;
+declare const index_SESSION_POLICY_V2_TYPES: typeof SESSION_POLICY_V2_TYPES;
+declare const index_SessionPolicyV2: typeof SessionPolicyV2;
+declare const index_buildSessionPolicyV2Domain: typeof buildSessionPolicyV2Domain;
+declare const index_createSessionPolicyPayload: typeof createSessionPolicyPayload;
+declare const index_createSessionPolicyV2: typeof createSessionPolicyV2;
+declare const index_decodeSessionPolicy: typeof decodeSessionPolicy;
+declare const index_decodeSessionPolicyV2: typeof decodeSessionPolicyV2;
+declare const index_decodeSessionPolicyV2QR: typeof decodeSessionPolicyV2QR;
+declare const index_encodeSessionPolicyV2QR: typeof encodeSessionPolicyV2QR;
+declare namespace index {
+  export { index_PayIDSessionPolicyPayloadV1 as PayIDSessionPolicyPayloadV1, index_SESSION_POLICY_V2_TYPES as SESSION_POLICY_V2_TYPES, index_SessionPolicyV2 as SessionPolicyV2, index_buildSessionPolicyV2Domain as buildSessionPolicyV2Domain, index_createSessionPolicyPayload as createSessionPolicyPayload, index_createSessionPolicyV2 as createSessionPolicyV2, index_decodeSessionPolicy as decodeSessionPolicy, index_decodeSessionPolicyV2 as decodeSessionPolicyV2, index_decodeSessionPolicyV2QR as decodeSessionPolicyV2QR, index_encodeSessionPolicyV2QR as encodeSessionPolicyV2QR };
+}
+
+export { SESSION_POLICY_V2_TYPES as S, createSessionPolicyV2 as a, buildSessionPolicyV2Domain as b, createSessionPolicyPayload as c, decodeSessionPolicy as d, decodeSessionPolicyV2 as e, encodeSessionPolicyV2QR as f, decodeSessionPolicyV2QR as g, index as i };

package/dist/index.d.ts

@@ -3,12 +3,12 @@ import { R as RuleSource } from './types-B8pJQdMQ.js';
 import { U as UserOperation } from './index-C1DHMQA0.js';
 export { i as server } from './index-C1DHMQA0.js';
 import { ethers } from 'ethers';
-export { i as sessionPolicy } from './index-BQQnMG2H.js';
+export { i as sessionPolicy } from './index-DSHZvYii.js';
 export { i as rule } from './index-Dj9IEios.js';
 export { i as issuer } from './index-2JCvey4-.js';
 export { i as context } from './index-BEvnPzzt.js';
-export { i as client } from './index-BPJ_oOfy.js';
-import './types-BmMf7udp.js';
+export { i as client } from './index-CtdogR8X.js';
+import './types-CpXiPRYs.js';
 
 interface PayIDClient {
     /**

package/dist/index.js

@@ -10,24 +10,24 @@ import {
 } from "./chunk-QC24X74O.js";
 import {
   sessionPolicy_exports
-} from "./chunk-IQNCMOIE.js";
-import {
-  client_exports
-} from "./chunk-ROBSNIIZ.js";
-import "./chunk-GG34PNTF.js";
-import "./chunk-MXKZJKXE.js";
-import "./chunk-6VPSJFO4.js";
+} from "./chunk-Q4UZCGU4.js";
 import {
   buildPayERC20CallData,
   buildPayETHCallData,
   buildUserOperation,
   server_exports
-} from "./chunk-AYJYFAXJ.js";
+} from "./chunk-TQJUKEFO.js";
+import {
+  client_exports
+} from "./chunk-2VO4XLTT.js";
+import "./chunk-GG34PNTF.js";
+import "./chunk-BLIRABV7.js";
+import "./chunk-6VPSJFO4.js";
 import {
   evaluate,
   generateDecisionProof,
   resolveRule
-} from "./chunk-PAJYP7JI.js";
+} from "./chunk-DZ6GVRER.js";
 import "./chunk-KDC67LIN.js";
 import {
   __export

package/dist/sessionPolicy/index.d.ts

@@ -1,4 +1,4 @@
-export { c as createSessionPolicyPayload, d as decodeSessionPolicy } from '../index-BQQnMG2H.js';
-export { P as PayIDSessionPolicyPayloadV1 } from '../types-BmMf7udp.js';
+export { S as SESSION_POLICY_V2_TYPES, b as buildSessionPolicyV2Domain, c as createSessionPolicyPayload, a as createSessionPolicyV2, d as decodeSessionPolicy, e as decodeSessionPolicyV2, g as decodeSessionPolicyV2QR, f as encodeSessionPolicyV2QR } from '../index-DSHZvYii.js';
+export { P as PayIDSessionPolicyPayloadV1, S as SessionPolicyV2 } from '../types-CpXiPRYs.js';
 import 'ethers';
 import 'payid-types';

package/dist/sessionPolicy/index.js

@@ -1,13 +1,24 @@
+import "../chunk-Q4UZCGU4.js";
 import {
-  createSessionPolicyPayload
-} from "../chunk-IQNCMOIE.js";
-import {
-  decodeSessionPolicy
-} from "../chunk-MXKZJKXE.js";
+  SESSION_POLICY_V2_TYPES,
+  buildSessionPolicyV2Domain,
+  createSessionPolicyPayload,
+  createSessionPolicyV2,
+  decodeSessionPolicy,
+  decodeSessionPolicyV2,
+  decodeSessionPolicyV2QR,
+  encodeSessionPolicyV2QR
+} from "../chunk-BLIRABV7.js";
 import "../chunk-6VPSJFO4.js";
 import "../chunk-KDC67LIN.js";
 import "../chunk-MLKGABMK.js";
 export {
+  SESSION_POLICY_V2_TYPES,
+  buildSessionPolicyV2Domain,
   createSessionPolicyPayload,
-  decodeSessionPolicy
+  createSessionPolicyV2,
+  decodeSessionPolicy,
+  decodeSessionPolicyV2,
+  decodeSessionPolicyV2QR,
+  encodeSessionPolicyV2QR
 };

package/dist/types-CpXiPRYs.d.ts

@@ -0,0 +1,66 @@
+import { RuleConfig } from 'payid-types';
+
+/**
+ * SessionPolicy V1 — off-chain only, rule injected inline.
+ *
+ * @deprecated Use SessionPolicyV2 for new implementations.
+ * V1 tidak ada chain binding (chainId, verifyingContract) sehingga
+ * policy bisa di-replay di chain lain, dan tidak ada constraint
+ * ruleSetHash / maxAmount.
+ */
+interface PayIDSessionPolicyPayloadV1 {
+    version: "payid.session.policy.v1" | string;
+    receiver: string;
+    rule: RuleConfig;
+    expiresAt: number;
+    nonce: string;
+    issuedAt: number;
+    signature: string;
+}
+/**
+ * SessionPolicyV2 — Channel A, on-chain rule binding.
+ *
+ * Perbedaan dari V1:
+ *
+ * 1. ruleSetHash + ruleAuthority
+ *    Receiver commit ke rule set yang terdaftar on-chain.
+ *    Payer tidak bisa swap rule dengan yang lebih longgar.
+ *
+ * 2. allowedAsset + maxAmount
+ *    Receiver set constraint token dan batas amount.
+ *    Payer tidak bisa melebihi maxAmount atau pakai token lain.
+ *
+ * 3. chainId + verifyingContract (EIP-712 domain)
+ *    Policy di-bind ke chain dan contract tertentu.
+ *    Policy tidak bisa di-replay di chain lain.
+ *
+ * 4. Signed via EIP-712 (bukan raw keccak256)
+ *    Type-safe, human-readable di wallet UI, standard.
+ */
+interface SessionPolicyV2 {
+    version: "payid.session.policy.v2";
+    /** Receiver address — pemilik policy */
+    receiver: string;
+    /** ruleSetHash dari CombinedRuleStorage — binding ke rule on-chain */
+    ruleSetHash: string;
+    /** CombinedRuleStorage address — authority rule */
+    ruleAuthority: string;
+    /** Token address yang diizinkan. ZeroAddress = ETH. */
+    allowedAsset: string;
+    /** Max amount per transaksi (string karena bigint tidak JSON-safe) */
+    maxAmount: string;
+    /** Unix timestamp expiry */
+    expiresAt: number;
+    /** Nonce unik per policy — anti-replay */
+    policyNonce: string;
+    /** PAY.ID identifier string (e.g. "pay.id/toko-budi") */
+    payId: string;
+    /** Chain ID — bagian dari EIP-712 domain */
+    chainId: number;
+    /** PayIDVerifier contract address — bagian dari EIP-712 domain */
+    verifyingContract: string;
+    /** EIP-712 signature dari receiver */
+    signature: string;
+}
+
+export type { PayIDSessionPolicyPayloadV1 as P, SessionPolicyV2 as S };

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "payid",
-  "version": "0.5.9",
+  "version": "0.6.0",
   "private": false,
   "type": "module",
   "main": "./dist/index.js",

package/dist/chunk-IQNCMOIE.js

@@ -1,47 +0,0 @@
-import {
-  decodeSessionPolicy
-} from "./chunk-MXKZJKXE.js";
-import {
-  canonicalizeRuleSet
-} from "./chunk-6VPSJFO4.js";
-import {
-  randomHex
-} from "./chunk-KDC67LIN.js";
-import {
-  __export
-} from "./chunk-MLKGABMK.js";
-
-// src/sessionPolicy/index.ts
-var sessionPolicy_exports = {};
-__export(sessionPolicy_exports, {
-  createSessionPolicyPayload: () => createSessionPolicyPayload,
-  decodeSessionPolicy: () => decodeSessionPolicy
-});
-
-// src/sessionPolicy/create.ts
-import { ethers } from "ethers";
-async function createSessionPolicyPayload(params) {
-  const issuedAt = Math.floor(Date.now() / 1e3);
-  const nonce = randomHex(16);
-  const payload = {
-    version: "payid.session.policy.v1",
-    receiver: params.receiver,
-    rule: canonicalizeRuleSet(params.rule),
-    issuedAt,
-    expiresAt: params.expiresAt,
-    nonce
-  };
-  const message = ethers.keccak256(
-    ethers.toUtf8Bytes(JSON.stringify(payload))
-  );
-  const signature = await params.signer.signMessage(message);
-  return {
-    ...payload,
-    signature
-  };
-}
-
-export {
-  createSessionPolicyPayload,
-  sessionPolicy_exports
-};

package/dist/chunk-MXKZJKXE.js

@@ -1,33 +0,0 @@
-// src/sessionPolicy/decode.ts
-import { ethers } from "ethers";
-function decodeSessionPolicy(sessionPolicy, now) {
-  if (sessionPolicy.version !== "payid.session.policy.v1") {
-    throw new Error("INVALID_SESSION_POLICY_VERSION");
-  }
-  if (now > sessionPolicy.expiresAt) {
-    throw new Error("SESSION_POLICY_EXPIRED");
-  }
-  const payload = {
-    version: sessionPolicy.version,
-    receiver: sessionPolicy.receiver,
-    rule: sessionPolicy.rule,
-    issuedAt: sessionPolicy.issuedAt,
-    expiresAt: sessionPolicy.expiresAt,
-    nonce: sessionPolicy.nonce
-  };
-  const message = ethers.keccak256(
-    ethers.toUtf8Bytes(JSON.stringify(payload))
-  );
-  const recovered = ethers.verifyMessage(
-    message,
-    sessionPolicy.signature
-  );
-  if (recovered.toLowerCase() !== sessionPolicy.receiver.toLowerCase()) {
-    throw new Error("INVALID_SESSION_POLICY_SIGNATURE");
-  }
-  return sessionPolicy.rule;
-}
-
-export {
-  decodeSessionPolicy
-};

package/dist/index-BQQnMG2H.d.ts

@@ -1,114 +0,0 @@
-import { ethers } from 'ethers';
-import { RuleConfig } from 'payid-types';
-import { P as PayIDSessionPolicyPayloadV1 } from './types-BmMf7udp.js';
-
-/**
- * Create and sign an ephemeral PayID session policy payload.
- *
- * A session policy represents a **temporary, off-chain consent**
- * granted by the receiver to apply additional rule constraints
- * during rule evaluation (e.g. session limits, QR payments,
- * intent-scoped conditions).
- *
- * ## Security model
- *
- * - The session policy is signed by the receiver.
- * - The signature proves **explicit consent** for the included rule.
- * - This policy does NOT establish on-chain authority and MUST NOT
- *   be registered or referenced in any on-chain rule registry.
- *
- * ## Canonicalization
- *
- * - The rule set is canonicalized BEFORE signing to ensure
- *   deterministic hashing and signature verification.
- * - The exact payload signed here MUST be used verbatim during
- *   policy verification.
- *
- * ## Lifecycle
- *
- * - Session policies are valid only until `expiresAt`.
- * - Expired policies MUST be rejected by the verifier.
- *
- * @param params
- * @param params.receiver
- *   Address of the receiver granting the session policy.
- *
- * @param params.rule
- *   Rule configuration to be applied as an **off-chain evaluation
- *   override** during the session.
- *
- * @param params.expiresAt
- *   UNIX timestamp (seconds) indicating when the session policy
- *   becomes invalid.
- *
- * @param params.signer
- *   Signer controlling the receiver address, used to sign the
- *   session policy payload.
- *
- * @returns
- *   A signed `PayIDSessionPolicyPayloadV1` that may be transmitted
- *   to clients and verified using `decodeSessionPolicy`.
- *
- * @throws
- *   May throw if signing fails or the signer is misconfigured.
- */
-declare function createSessionPolicyPayload(params: {
-    receiver: string;
-    rule: RuleConfig;
-    expiresAt: number;
-    signer: ethers.Signer;
-}): Promise<PayIDSessionPolicyPayloadV1>;
-
-/**
- * Decode and verify an ephemeral PayID session policy.
- *
- * This function validates that a session policy:
- * - Uses a supported policy version
- * - Has not expired
- * - Was cryptographically signed by the declared receiver
- *
- * If all checks pass, the embedded rule configuration is returned
- * and may be used as an **off-chain evaluation override**
- * (e.g. combined with an authoritative on-chain rule).
- *
- * ## Security model
- *
- * - The session policy signature represents **explicit consent**
- *   from the receiver for temporary rule constraints.
- * - This policy does NOT establish on-chain authority and MUST NOT
- *   be used to derive `ruleSetHash` or interact with rule registries.
- *
- * ## Invariants
- *
- * - The payload verified here MUST match exactly the payload that was signed.
- * - No canonicalization or mutation is performed during verification.
- * - Expired or invalidly signed policies are rejected immediately.
- *
- * @export
- *
- * @param sessionPolicy
- *   A signed session policy payload created by
- *   `createSessionPolicyPayload`.
- *
- * @param now
- *   Current UNIX timestamp (seconds) used to validate policy expiry.
- *
- * @returns
- *   A `RuleConfig` representing the session's evaluation rule.
- *
- * @throws
- *   Throws if:
- *   - The policy version is unsupported
- *   - The policy has expired
- *   - The signature does not match the receiver
- */
-declare function decodeSessionPolicy(sessionPolicy: PayIDSessionPolicyPayloadV1, now: number): RuleConfig;
-
-declare const index_PayIDSessionPolicyPayloadV1: typeof PayIDSessionPolicyPayloadV1;
-declare const index_createSessionPolicyPayload: typeof createSessionPolicyPayload;
-declare const index_decodeSessionPolicy: typeof decodeSessionPolicy;
-declare namespace index {
-  export { index_PayIDSessionPolicyPayloadV1 as PayIDSessionPolicyPayloadV1, index_createSessionPolicyPayload as createSessionPolicyPayload, index_decodeSessionPolicy as decodeSessionPolicy };
-}
-
-export { createSessionPolicyPayload as c, decodeSessionPolicy as d, index as i };

package/dist/types-BmMf7udp.d.ts

@@ -1,13 +0,0 @@
-import { RuleConfig } from 'payid-types';
-
-interface PayIDSessionPolicyPayloadV1 {
-    version: "payid.session.policy.v1" | string;
-    receiver: string;
-    rule: RuleConfig;
-    expiresAt: number;
-    nonce: string;
-    issuedAt: number;
-    signature: string;
-}
-
-export type { PayIDSessionPolicyPayloadV1 as P };