payment-kit 1.18.21 → 1.18.23

package/api/src/integrations/blocklet/user.ts

@@ -1,5 +1,6 @@
 import notification from '@blocklet/sdk/service/notification';
 
+import dayjs from 'dayjs';
 import { Customer } from '../../store/models';
 
 import logger from '../../libs/logger';
@@ -15,13 +16,17 @@ const handleUserUpdate = async ({ user }: { user: any }) => {
     },
   });
   if (customer) {
+    if (Math.abs(dayjs(customer.updated_at).diff(dayjs(user.updatedAt), 'minute')) <= 1) {
+      logger.info(`skip customer update due to recent sync within 1 minute: ${customer.did}`);
+      return;
+    }
     const now = Math.floor(Date.now() / 1000);
     await customer.update({
-      name: user.fullName,
-      email: user.email,
-      phone: user.phone,
+      name: user.fullName || customer.name,
+      email: user.email || customer.email,
+      phone: user.phone || customer.phone,
       last_sync_at: now,
-      address: Customer.formatAddressFromUser(user),
+      address: Customer.formatAddressFromUser(user, customer),
     });
     logger.info(`customer info updated: ${customer.did}`);
   }

package/api/src/libs/api.ts

@@ -2,6 +2,7 @@ import { BN, fromTokenToUnit } from '@ocap/util';
 import Joi from 'joi';
 import { Op } from 'sequelize';
 import SqlWhereParser from 'sql-where-parser';
+import type { OrderDirection, OrderInput, OrderItem } from '../store/models';
 
 const parser = new SqlWhereParser();
 
@@ -109,36 +110,191 @@ export const getWhereFromKvQuery = (query?: string) => {
   return out;
 };
 
+export function normalizeOrder(
+  order: OrderInput | undefined,
+  defaultOrder: OrderItem[] = [['created_at', 'DESC']]
+): OrderItem[] {
+  if (!order) return defaultOrder;
+
+  let normalizedOrder: OrderItem[];
+
+  if (typeof order === 'string') {
+    const [field, direction] = order.split(':');
+    normalizedOrder = [[field || '', (direction?.toUpperCase() as OrderDirection) || 'ASC']];
+  } else if (Array.isArray(order)) {
+    if (order.length === 0) return defaultOrder;
+
+    if (Array.isArray(order[0])) {
+      normalizedOrder = order.map(([field, direction]) => [
+        field || '',
+        (direction?.toUpperCase() as OrderDirection) || 'ASC',
+      ]);
+    } else {
+      normalizedOrder = order.map((item) => {
+        const [field, direction] = (item as string).split(':');
+        return [field || '', (direction?.toUpperCase() as OrderDirection) || 'ASC'];
+      });
+    }
+  } else {
+    return defaultOrder;
+  }
+
+  // merge default order with normalized order
+  const orderFields = new Set(normalizedOrder.map(([field]) => field));
+  const remainingDefaultOrders = defaultOrder.filter(([field]) => !orderFields.has(field));
+
+  return [...normalizedOrder, ...remainingDefaultOrders];
+}
+
+export function getOrder(query: Record<string, any>, defaultOrder?: OrderItem[]): OrderItem[] {
+  if (query.order) {
+    return normalizeOrder(query.order, defaultOrder);
+  }
+
+  if (query.o) {
+    const direction = query.o.toUpperCase() as OrderDirection;
+    return defaultOrder?.map(([field]) => [field, direction]) || [['created_at', direction]];
+  }
+
+  return defaultOrder || [['created_at', 'DESC']];
+}
+
+const fieldRegex = /^[\w.]+$/i;
+const directionRegex = /(asc|desc)$/i;
+
+const ORDER_ERROR_MESSAGES = {
+  FIELD_PATTERN: 'Field name can only contain letters, numbers, dots and underscores',
+  DIRECTION_PATTERN: 'Direction must be either "asc" or "desc"',
+  SEPARATOR: 'Must use ":" to separate field and direction',
+  TUPLE_LENGTH: 'Each tuple must contain exactly 2 elements',
+  ARRAY_TYPE: 'Each item must be an array',
+  INVALID_FORMAT:
+    'Invalid order format. Must be one of:\n' +
+    '- Single field: "field:direction"\n' +
+    '- Multiple fields: ["field1:asc", "field2:desc"]\n' +
+    '- Tuple format: [["field1", "ASC"], ["field2", "DESC"]]\n' +
+    'where field contains only letters, numbers, dots and underscores, ' +
+    'and direction is either "asc" or "desc" (case insensitive)',
+};
+
+const validateField = (field: any): boolean => typeof field === 'string' && fieldRegex.test(field);
+
+const validateDirection = (direction: any): boolean => typeof direction === 'string' && directionRegex.test(direction);
+
+// Function to validate the order parameter
+export const validateOrderInput = (value: any, helpers: any) => {
+  // If it does not exist or is null, skip validation
+  if (value == null) return value;
+
+  // String format: "field:direction"
+  if (typeof value === 'string') {
+    const parts = value.split(':');
+
+    if (parts.length !== 2) {
+      return helpers.message(ORDER_ERROR_MESSAGES.SEPARATOR);
+    }
+
+    const [field, direction] = parts;
+
+    if (!validateField(field)) {
+      return helpers.message(ORDER_ERROR_MESSAGES.FIELD_PATTERN);
+    }
+
+    if (!validateDirection(direction)) {
+      return helpers.message(ORDER_ERROR_MESSAGES.DIRECTION_PATTERN);
+    }
+
+    return value;
+  }
+
+  // Array format
+  if (Array.isArray(value)) {
+    // Empty array, return directly
+    if (value.length === 0) return value;
+
+    // String array format
+    if (typeof value[0] === 'string') {
+      const invalidItem = value.find((item) => typeof item !== 'string');
+      if (invalidItem !== undefined) {
+        return helpers.message(ORDER_ERROR_MESSAGES.INVALID_FORMAT);
+      }
+
+      for (const item of value) {
+        const parts = item.split(':');
+
+        if (parts.length !== 2) {
+          return helpers.message(ORDER_ERROR_MESSAGES.SEPARATOR);
+        }
+
+        const [field, direction] = parts;
+
+        if (!validateField(field)) {
+          return helpers.message(ORDER_ERROR_MESSAGES.FIELD_PATTERN);
+        }
+
+        if (!validateDirection(direction)) {
+          return helpers.message(ORDER_ERROR_MESSAGES.DIRECTION_PATTERN);
+        }
+      }
+
+      return value;
+    }
+
+    // Multiple tuples format
+    if (Array.isArray(value[0])) {
+      for (const tuple of value) {
+        if (!Array.isArray(tuple)) {
+          return helpers.message(ORDER_ERROR_MESSAGES.ARRAY_TYPE);
+        }
+
+        if (tuple.length !== 2) {
+          return helpers.message(ORDER_ERROR_MESSAGES.TUPLE_LENGTH);
+        }
+
+        const [field, direction] = tuple;
+
+        if (!validateField(field)) {
+          return helpers.message(ORDER_ERROR_MESSAGES.FIELD_PATTERN);
+        }
+
+        if (!validateDirection(direction)) {
+          return helpers.message(ORDER_ERROR_MESSAGES.DIRECTION_PATTERN);
+        }
+      }
+
+      return value;
+    }
+  }
+  return helpers.message(ORDER_ERROR_MESSAGES.INVALID_FORMAT);
+};
+
 export function createListParamSchema<T>(schema: any, pageSize: number = 20) {
-  return Joi.object<T & { page: number; pageSize: number; livemode?: boolean; q?: string; o?: string }>({
-    // prettier-ignore
+  return Joi.object<
+    T & {
+      page: number;
+      pageSize: number;
+      livemode?: boolean;
+      q?: string;
+      o?: string;
+      order?: OrderInput;
+    }
+  >({
     page: Joi.number()
       .integer()
       .default(1)
-      .custom((value) => {
-        if (value < 1) {
-          return 1;
-        }
-        return value;
-      }, 'page should be valid'),
-
+      .custom((value) => (value < 1 ? 1 : value), 'page should be valid'),
     pageSize: Joi.number()
       .integer()
       .default(pageSize)
       .custom((value) => {
-        if (value > 100) {
-          return 100;
-        }
-        if (value < 1) {
-          return 1;
-        }
+        if (value > 100) return 100;
+        if (value < 1) return 1;
         return value;
       }, 'pageSize should be valid'),
-
     livemode: Joi.boolean().empty(''),
-    q: Joi.string().empty(''), // query
-    o: Joi.string().empty(''), // order
-
+    q: Joi.string().empty(''),
+    o: Joi.string().valid('asc', 'desc').insensitive().empty(''),
+    order: Joi.any().custom(validateOrderInput).optional(),
     ...schema,
   });
 }

package/api/src/routes/checkout-sessions.ts

@@ -1312,7 +1312,6 @@ router.put('/:id/donate-submit', ensureCheckoutSessionOpen, async (req, res) =>
       lineItems
     );
 
-    // 返回支付信息
     return res.json({
       paymentIntent,
       checkoutSession,

package/api/src/routes/customers.ts

@@ -7,7 +7,7 @@ import isEmail from 'validator/es/lib/isEmail';
 import { Op } from 'sequelize';
 import { BN } from '@ocap/util';
 import { getStakeSummaryByDid, getTokenSummaryByDid, getTokenByAddress } from '../integrations/arcblock/stake';
-import { createListParamSchema, getWhereFromKvQuery, getWhereFromQuery, MetadataSchema } from '../libs/api';
+import { createListParamSchema, getOrder, getWhereFromKvQuery, getWhereFromQuery, MetadataSchema } from '../libs/api';
 import { authenticate } from '../libs/security';
 import { formatMetadata } from '../libs/util';
 import { Customer } from '../store/models/customer';
@@ -52,7 +52,7 @@ router.get('/', auth, async (req, res) => {
   try {
     const { rows: list, count } = await Customer.findAndCountAll({
       where,
-      order: [['created_at', query.o === 'asc' ? 'ASC' : 'DESC']],
+      order: getOrder(query, [['created_at', query.o === 'asc' ? 'ASC' : 'DESC']]),
       offset: (page - 1) * pageSize,
       limit: pageSize,
       include: [],
@@ -83,7 +83,7 @@ router.get('/search', auth, async (req, res) => {
   }
   const { rows: list, count } = await Customer.findAndCountAll({
     where,
-    order: [['created_at', o === 'asc' ? 'ASC' : 'DESC']],
+    order: getOrder(req.query, [['created_at', o === 'asc' ? 'ASC' : 'DESC']]),
     offset: (page - 1) * pageSize,
     limit: pageSize,
     include: [],
@@ -104,7 +104,7 @@ router.get('/me', sessionMiddleware(), async (req, res) => {
     if (!doc) {
       if (req.query.fallback) {
         const result = await blocklet.getUser(req.user.did);
-        return res.json({ ...result.user, address: {}, livemode });
+        return res.json({ ...result.user, address: Customer.formatAddressFromUser(result.user), livemode });
       }
       if (req.query.create) {
         // create customer
@@ -132,6 +132,9 @@ router.get('/me', sessionMiddleware(), async (req, res) => {
         return res.json({ error: 'Customer not found' });
       }
     }
+    if (req.query.skipSummary) {
+      return res.json({ ...doc.toJSON(), livemode });
+    }
     try {
       const [summary, stake, token] = await Promise.all([
         doc.getSummary(livemode),

package/api/src/routes/donations.ts

@@ -2,7 +2,7 @@ import { Joi } from '@arcblock/validator';
 import { Router } from 'express';
 
 import { BN } from '@ocap/util';
-import { createListParamSchema } from '../libs/api';
+import { createListParamSchema, getOrder } from '../libs/api';
 import logger from '../libs/logger';
 import { CheckoutSession } from '../store/models/checkout-session';
 import { Customer } from '../store/models/customer';
@@ -143,7 +143,7 @@ router.get('/', async (req, res) => {
         'created_at',
         'updated_at',
       ],
-      order: [['created_at', 'DESC']],
+      order: getOrder(req.query, [['created_at', 'DESC']]),
       offset: (page - 1) * pageSize,
       include: [{ model: Customer, as: 'customer', attributes: ['id', 'did', 'name', 'metadata'] }],
       limit: pageSize,

package/api/src/routes/events.ts

@@ -2,7 +2,7 @@ import { Router } from 'express';
 import Joi from 'joi';
 import type { WhereOptions } from 'sequelize';
 
-import { createListParamSchema } from '../libs/api';
+import { createListParamSchema, getOrder } from '../libs/api';
 import { authenticate } from '../libs/security';
 import { Event } from '../store/models/event';
 import { blocklet } from '../libs/auth';
@@ -42,7 +42,7 @@ router.get('/', auth, async (req, res) => {
     const { rows: list, count } = await Event.findAndCountAll({
       where,
       attributes: { exclude: ['data', 'request'] },
-      order: [['created_at', 'DESC']],
+      order: getOrder(req.query, [['created_at', 'DESC']]),
       offset: (page - 1) * pageSize,
       limit: pageSize,
       include: [],

package/api/src/routes/invoices.ts

@@ -8,7 +8,7 @@ import { Op } from 'sequelize';
 import { BN } from '@ocap/util';
 import { syncStripeInvoice } from '../integrations/stripe/handlers/invoice';
 import { syncStripePayment } from '../integrations/stripe/handlers/payment-intent';
-import { createListParamSchema, getWhereFromKvQuery, MetadataSchema } from '../libs/api';
+import { createListParamSchema, getOrder, getWhereFromKvQuery, MetadataSchema } from '../libs/api';
 import { authenticate } from '../libs/security';
 import { expandLineItems } from '../libs/session';
 import { formatMetadata, getBlockletJson, getUserOrAppInfo } from '../libs/util';
@@ -136,7 +136,7 @@ router.get('/', authMine, async (req, res) => {
   try {
     const { rows: list, count } = await Invoice.findAndCountAll({
       where,
-      order: [['created_at', query.o === 'asc' ? 'ASC' : 'DESC']],
+      order: getOrder(req.query, [['created_at', query.o === 'asc' ? 'ASC' : 'DESC']]),
       offset: (page - 1) * pageSize,
       limit: pageSize,
       include: [
@@ -212,7 +212,7 @@ router.get('/recharge', authMine, async (req, res) => {
       },
       offset: (page - 1) * pageSize,
       limit: pageSize,
-      order: [['created_at', 'DESC']],
+      order: getOrder(req.query, [['created_at', 'DESC']]),
       include: [
         { model: PaymentCurrency, as: 'paymentCurrency' },
         { model: PaymentMethod, as: 'paymentMethod' },
@@ -240,7 +240,7 @@ router.get('/search', authMine, async (req, res) => {
 
   const { rows: list, count } = await Invoice.findAndCountAll({
     where,
-    order: [['created_at', o === 'asc' ? 'ASC' : 'DESC']],
+    order: getOrder(req.query, [['created_at', o === 'asc' ? 'ASC' : 'DESC']]),
     offset: (page - 1) * pageSize,
     limit: pageSize,
     distinct: true,

package/api/src/routes/payment-intents.ts

@@ -9,6 +9,7 @@ import { syncStripePayment } from '../integrations/stripe/handlers/payment-inten
 import {
   BNPositiveValidator,
   createListParamSchema,
+  getOrder,
   getWhereFromKvQuery,
   getWhereFromQuery,
   MetadataSchema,
@@ -111,7 +112,7 @@ router.get('/', authMine, async (req, res) => {
   try {
     const { rows: list, count } = await PaymentIntent.findAndCountAll({
       where,
-      order: [['created_at', query.o === 'asc' ? 'ASC' : 'DESC']],
+      order: getOrder(req.query, [['created_at', query.o === 'asc' ? 'ASC' : 'DESC']]),
       offset: (page - 1) * pageSize,
       limit: pageSize,
       include: [
@@ -147,7 +148,7 @@ router.get('/search', authMine, async (req, res) => {
 
   const { rows: list, count } = await PaymentIntent.findAndCountAll({
     where,
-    order: [['created_at', o === 'asc' ? 'ASC' : 'DESC']],
+    order: getOrder(req.query, [['created_at', o === 'asc' ? 'ASC' : 'DESC']]),
     offset: (page - 1) * pageSize,
     limit: pageSize,
     include: [

package/api/src/routes/payment-links.ts

@@ -4,7 +4,7 @@ import pick from 'lodash/pick';
 import { Op } from 'sequelize';
 import type { WhereOptions } from 'sequelize';
 
-import { createListParamSchema, MetadataSchema } from '../libs/api';
+import { createListParamSchema, getOrder, MetadataSchema } from '../libs/api';
 import logger from '../libs/logger';
 import { authenticate } from '../libs/security';
 import { isLineItemAligned } from '../libs/session';
@@ -239,7 +239,7 @@ router.get('/', auth, async (req, res) => {
   try {
     const { rows: list, count } = await PaymentLink.findAndCountAll({
       where,
-      order: [['created_at', 'DESC']],
+      order: getOrder(req.query, [['created_at', 'DESC']]),
       offset: (page - 1) * pageSize,
       limit: pageSize,
       include: [],

package/api/src/routes/payment-stats.ts

@@ -5,7 +5,7 @@ import { joinURL } from 'ufo';
 
 import { getPaymentStat } from '../crons/payment-stat';
 import { getTokenSummaryByDid } from '../integrations/arcblock/stake';
-import { createListParamSchema } from '../libs/api';
+import { createListParamSchema, getOrder } from '../libs/api';
 import { ethWallet, wallet } from '../libs/auth';
 import dayjs from '../libs/dayjs';
 import { authenticate } from '../libs/security';
@@ -56,7 +56,7 @@ router.get('/', auth, async (req, res) => {
   try {
     const { rows: list, count } = await PaymentStat.findAndCountAll({
       where,
-      order: [['created_at', 'ASC']],
+      order: getOrder(req.query, [['created_at', 'ASC']]),
       include: [],
     });
 

package/api/src/routes/payouts.ts

@@ -4,7 +4,7 @@ import Joi from 'joi';
 import pick from 'lodash/pick';
 
 import sessionMiddleware from '@blocklet/sdk/lib/middlewares/session';
-import { createListParamSchema, getWhereFromKvQuery, MetadataSchema } from '../libs/api';
+import { createListParamSchema, getOrder, getWhereFromKvQuery, MetadataSchema } from '../libs/api';
 import { authenticate } from '../libs/security';
 import { formatMetadata } from '../libs/util';
 import { Customer } from '../store/models/customer';
@@ -90,7 +90,7 @@ router.get('/', authMine, async (req, res) => {
   try {
     const { rows: list, count } = await Payout.findAndCountAll({
       where,
-      order: [['created_at', query.o === 'asc' ? 'ASC' : 'DESC']],
+      order: getOrder(req.query, [['created_at', query.o === 'asc' ? 'ASC' : 'DESC']]),
       offset: (page - 1) * pageSize,
       limit: pageSize,
       include: [
@@ -146,7 +146,7 @@ router.get('/mine', sessionMiddleware(), async (req, res) => {
 
     const { rows: list, count } = await Payout.findAndCountAll({
       where,
-      order: [['created_at', 'DESC']],
+      order: getOrder(req.query, [['created_at', 'DESC']]),
       offset: (page - 1) * pageSize,
       limit: pageSize,
       include: [

package/api/src/routes/prices.ts

@@ -4,7 +4,7 @@ import Joi from 'joi';
 import pick from 'lodash/pick';
 import type { WhereOptions } from 'sequelize';
 
-import { createListParamSchema, getWhereFromQuery, MetadataSchema } from '../libs/api';
+import { createListParamSchema, getOrder, getWhereFromQuery, MetadataSchema } from '../libs/api';
 import logger from '../libs/logger';
 import { authenticate } from '../libs/security';
 import { canUpsell } from '../libs/session';
@@ -88,7 +88,7 @@ router.get('/', auth, async (req, res) => {
   const { rows, count } = await Price.findAndCountAll({
     where,
     attributes: ['id'],
-    order: [['created_at', 'DESC']],
+    order: getOrder(req.query, [['created_at', 'DESC']]),
     offset: (page - 1) * pageSize,
     limit: pageSize,
   });
@@ -115,7 +115,7 @@ router.get('/search', auth, async (req, res) => {
   const { rows, count } = await Price.findAndCountAll({
     where,
     attributes: ['id'],
-    order: [['created_at', 'DESC']],
+    order: getOrder(req.query, [['created_at', 'DESC']]),
     offset: (page - 1) * pageSize,
     limit: pageSize,
   });

package/api/src/routes/pricing-table.ts

@@ -8,7 +8,7 @@ import uniq from 'lodash/uniq';
 import type { WhereOptions } from 'sequelize';
 
 import { checkPassportForPricingTable } from '../integrations/blocklet/passport';
-import { createListParamSchema, MetadataSchema } from '../libs/api';
+import { createListParamSchema, getOrder, MetadataSchema } from '../libs/api';
 import logger from '../libs/logger';
 import { authenticate } from '../libs/security';
 import { getBillingThreshold, getMinStakeAmount, isLineItemCurrencyAligned } from '../libs/session';
@@ -107,7 +107,7 @@ router.get('/', auth, async (req, res) => {
   try {
     const { rows: list, count } = await PricingTable.findAndCountAll({
       where,
-      order: [['created_at', 'DESC']],
+      order: getOrder(req.query, [['created_at', 'DESC']]),
       offset: (page - 1) * pageSize,
       limit: pageSize,
       include: [],

package/api/src/routes/products.ts

@@ -5,7 +5,7 @@ import cloneDeep from 'lodash/cloneDeep';
 import pick from 'lodash/pick';
 import { Op } from 'sequelize';
 
-import { createListParamSchema, getWhereFromKvQuery, getWhereFromQuery, MetadataSchema } from '../libs/api';
+import { createListParamSchema, getOrder, getWhereFromKvQuery, getWhereFromQuery, MetadataSchema } from '../libs/api';
 import logger from '../libs/logger';
 import { authenticate } from '../libs/security';
 import { formatMetadata } from '../libs/util';
@@ -257,7 +257,7 @@ router.get('/', auth, async (req, res) => {
 
   const { rows: list, count } = await Product.findAndCountAll({
     where,
-    order: [['created_at', query.o === 'asc' ? 'ASC' : 'DESC']],
+    order: getOrder(req.query, [['created_at', query.o === 'asc' ? 'ASC' : 'DESC']]),
     offset: (page - 1) * pageSize,
     limit: pageSize,
     include: [{ model: Price, as: 'prices' }],
@@ -286,7 +286,7 @@ router.get('/search', auth, async (req, res) => {
 
   const { rows: list, count } = await Product.findAndCountAll({
     where,
-    order: [['created_at', 'DESC']],
+    order: getOrder(req.query, [['created_at', 'DESC']]),
     offset: (page - 1) * pageSize,
     limit: pageSize,
     include: [{ model: Price, as: 'prices', separate: true }],

package/api/src/routes/refunds.ts

@@ -5,7 +5,7 @@ import Joi from 'joi';
 import pick from 'lodash/pick';
 
 import { BN, fromTokenToUnit } from '@ocap/util';
-import { BNPositiveValidator, createListParamSchema, getWhereFromKvQuery, MetadataSchema } from '../libs/api';
+import { BNPositiveValidator, createListParamSchema, getOrder, getWhereFromKvQuery, MetadataSchema } from '../libs/api';
 import { authenticate } from '../libs/security';
 import { formatMetadata } from '../libs/util';
 import {
@@ -94,7 +94,7 @@ router.get('/', auth, async (req, res) => {
 
   const { rows: list, count } = await Refund.findAndCountAll({
     where,
-    order: [['created_at', query.o === 'asc' ? 'ASC' : 'DESC']],
+    order: getOrder(req.query, [['created_at', query.o === 'asc' ? 'ASC' : 'DESC']]),
     offset: (page - 1) * pageSize,
     limit: pageSize,
     include: [
@@ -196,7 +196,7 @@ router.get('/search', auth, async (req, res) => {
 
   const { rows: list, count } = await Refund.findAndCountAll({
     where,
-    order: [['created_at', o === 'asc' ? 'ASC' : 'DESC']],
+    order: getOrder(req.query, [['created_at', o === 'asc' ? 'ASC' : 'DESC']]),
     offset: (page - 1) * pageSize,
     limit: pageSize,
     include: [

package/api/src/routes/settings.ts

@@ -9,7 +9,7 @@ import { PaymentMethod } from '../store/models/payment-method';
 import { authenticate } from '../libs/security';
 import { Setting } from '../store/models';
 import logger from '../libs/logger';
-import { createListParamSchema, getWhereFromKvQuery } from '../libs/api';
+import { createListParamSchema, getOrder, getWhereFromKvQuery } from '../libs/api';
 
 const router = Router();
 const authAdmin = authenticate<Setting>({ component: true, roles: ['owner', 'admin'] });
@@ -80,7 +80,7 @@ router.get('/donate', async (req, res) => {
 
     const { rows: list, count } = await Setting.findAndCountAll({
       where,
-      order: [['created_at', query.o === 'asc' ? 'ASC' : 'DESC']],
+      order: getOrder(req.query, [['created_at', query.o === 'asc' ? 'ASC' : 'DESC']]),
       offset: (page - 1) * pageSize,
       limit: pageSize,
       distinct: true,

package/api/src/routes/subscription-items.ts

@@ -4,7 +4,7 @@ import Joi from 'joi';
 import pick from 'lodash/pick';
 import type { WhereOptions } from 'sequelize';
 
-import { createListParamSchema, MetadataSchema } from '../libs/api';
+import { createListParamSchema, getOrder, MetadataSchema } from '../libs/api';
 import { authenticate } from '../libs/security';
 import { expandLineItems } from '../libs/session';
 import { formatMetadata } from '../libs/util';
@@ -80,7 +80,7 @@ router.get('/', auth, async (req, res) => {
   try {
     const { rows, count } = await SubscriptionItem.findAndCountAll({
       where,
-      order: [['created_at', 'DESC']],
+      order: getOrder(req.query, [['created_at', 'DESC']]),
       offset: (page - 1) * pageSize,
       limit: pageSize,
       include: [],

package/api/src/routes/subscriptions.ts

@@ -10,7 +10,7 @@ import { literal, Op, OrderItem } from 'sequelize';
 import { BN } from '@ocap/util';
 import { createEvent } from '../libs/audit';
 import { ensureStripeCustomer, ensureStripePrice, ensureStripeSubscription } from '../integrations/stripe/resource';
-import { createListParamSchema, getWhereFromKvQuery, getWhereFromQuery, MetadataSchema } from '../libs/api';
+import { createListParamSchema, getOrder, getWhereFromKvQuery, getWhereFromQuery, MetadataSchema } from '../libs/api';
 import dayjs from '../libs/dayjs';
 import logger from '../libs/logger';
 import { isDelegationSufficientForPayment } from '../libs/payment';
@@ -91,7 +91,6 @@ const schema = createListParamSchema<{
   customer_did?: string;
   activeFirst?: boolean;
   price_id?: string;
-  order?: string | string[] | OrderItem | OrderItem[];
   showTotalCount?: boolean;
 }>({
   status: Joi.string().empty(''),
@@ -99,21 +98,9 @@ const schema = createListParamSchema<{
   customer_did: Joi.string().empty(''),
   activeFirst: Joi.boolean().optional(),
   price_id: Joi.string().empty(''),
-  order: Joi.alternatives()
-    .try(
-      Joi.string(),
-      Joi.array().items(Joi.string()),
-      Joi.array().items(Joi.array().ordered(Joi.string(), Joi.string().valid('ASC', 'DESC').insensitive()))
-    )
-    .optional(),
   showTotalCount: Joi.boolean().optional(),
 });
 
-const parseOrder = (orderStr: string): OrderItem => {
-  const [field, direction] = orderStr.split(':');
-  return [field ?? '', (direction?.toUpperCase() as 'ASC' | 'DESC') || 'ASC'];
-};
-
 router.get('/', authMine, async (req, res) => {
   const { page, pageSize, status, livemode, ...query } = await schema.validateAsync(req.query, {
     stripUnknown: false,
@@ -139,9 +126,7 @@ router.get('/', authMine, async (req, res) => {
       return;
     }
   }
-  if (typeof livemode === 'boolean') {
-    where.livemode = livemode;
-  }
+  where.livemode = typeof livemode === 'boolean' ? livemode : true;
 
   Object.keys(query)
     .filter((x) => x.startsWith('metadata.'))
@@ -150,11 +135,7 @@ router.get('/', authMine, async (req, res) => {
       where[key] = query[key];
     });
 
-  let order: OrderItem[] = [];
-  if (query.order) {
-    const orderItems = Array.isArray(query.order) ? query.order : [query.order];
-    order = orderItems.map((item) => (typeof item === 'string' ? parseOrder(item) : (item as OrderItem)));
-  }
+  const order: OrderItem[] = getOrder(req.query, []);
 
   if (query.activeFirst) {
     order.unshift([
@@ -196,6 +177,7 @@ router.get('/', authMine, async (req, res) => {
       const totalCount = await Subscription.count({
         where: {
           customer_id: where.customer_id,
+          livemode: where.livemode ?? true,
         },
         distinct: true,
       });
@@ -228,7 +210,7 @@ router.get('/search', auth, async (req, res) => {
   // fix here https://github.com/blocklet/payment-kit/issues/394
   const { rows: list, count } = await Subscription.findAndCountAll({
     where,
-    order: [['created_at', o === 'asc' ? 'ASC' : 'DESC']],
+    order: getOrder(req.query, [['created_at', o === 'asc' ? 'ASC' : 'DESC']]),
     offset: (page - 1) * pageSize,
     limit: pageSize,
     distinct: true,
@@ -1901,7 +1883,7 @@ router.get('/:id/recharge', authMine, async (req, res) => {
       },
       offset: (page - 1) * pageSize,
       limit: pageSize,
-      order: [['created_at', 'DESC']],
+      order: getOrder(req.query, [['created_at', 'DESC']]),
       include: [
         { model: PaymentCurrency, as: 'paymentCurrency' },
         { model: PaymentMethod, as: 'paymentMethod' },
@@ -2036,15 +2018,11 @@ router.get('/:id/overdraft-protection', authPortal, async (req, res) => {
   }
 });
 
-const overdraftProtectionSchema = createListParamSchema<{
-  amount: string;
-  enabled: boolean;
-  return_stake: boolean;
-}>({
+const overdraftProtectionSchema = Joi.object({
   amount: Joi.number().empty(0).optional(),
   enabled: Joi.boolean().required(),
   return_stake: Joi.boolean().empty(false).optional(),
-});
+}).unknown(true);
 // 订阅保护
 router.post('/:id/overdraft-protection', authPortal, async (req, res) => {
   try {

package/api/src/routes/usage-records.ts

@@ -5,7 +5,7 @@ import pick from 'lodash/pick';
 import { Op } from 'sequelize';
 
 import { forwardUsageRecordToStripe } from '../integrations/stripe/resource';
-import { createListParamSchema } from '../libs/api';
+import { createListParamSchema, getOrder } from '../libs/api';
 import dayjs from '../libs/dayjs';
 import { authenticate } from '../libs/security';
 import { usageRecordQueue } from '../queues/usage-record';
@@ -163,7 +163,7 @@ router.get('/summary', auth, async (req, res) => {
     const { rows, count } = await Invoice.findAndCountAll({
       where: { subscription_id: item.subscription_id },
       attributes: ['id', 'period_end', 'period_start'],
-      order: [['created_at', 'DESC']],
+      order: getOrder(req.query, [['created_at', 'DESC']]),
       offset: (page - 1) * pageSize,
       limit: pageSize,
     });

package/api/src/routes/webhook-attempts.ts

@@ -2,7 +2,7 @@ import { Router } from 'express';
 import Joi from 'joi';
 import type { WhereOptions } from 'sequelize';
 
-import { createListParamSchema } from '../libs/api';
+import { createListParamSchema, getOrder } from '../libs/api';
 import { authenticate } from '../libs/security';
 import { Event, WebhookAttempt, WebhookEndpoint } from '../store/models';
 import { blocklet } from '../libs/auth';
@@ -35,7 +35,7 @@ router.get('/', auth, async (req, res) => {
   try {
     const { rows: list, count } = await WebhookAttempt.findAndCountAll({
       where,
-      order: [['created_at', 'DESC']],
+      order: getOrder(req.query, [['created_at', 'DESC']]),
       offset: (page - 1) * pageSize,
       limit: pageSize,
       include: [

package/api/src/routes/webhook-endpoints.ts

@@ -3,7 +3,7 @@ import Joi from 'joi';
 import pick from 'lodash/pick';
 import type { WhereOptions } from 'sequelize';
 
-import { createListParamSchema, MetadataSchema } from '../libs/api';
+import { createListParamSchema, getOrder, MetadataSchema } from '../libs/api';
 import { authenticate } from '../libs/security';
 import { formatMetadata } from '../libs/util';
 import { WebhookEndpoint } from '../store/models';
@@ -62,7 +62,7 @@ router.get('/', auth, async (req, res) => {
   try {
     const { rows: list, count } = await WebhookEndpoint.findAndCountAll({
       where,
-      order: [['created_at', 'DESC']],
+      order: getOrder(req.query, [['created_at', 'DESC']]),
       offset: (page - 1) * pageSize,
       limit: pageSize,
       include: [],

package/api/src/store/models/customer.ts

@@ -283,14 +283,14 @@ export class Customer extends Model<InferAttributes<Customer>, InferCreationAttr
     return nextInvoicePrefix();
   }
 
-  public static formatAddressFromUser(user: any) {
+  public static formatAddressFromUser(user: any, customer?: Customer) {
     return {
-      country: user.address?.country || '',
-      state: user.address?.province || '',
-      city: user.address?.city || '',
-      line1: user.address?.line1 || '',
-      line2: user.address?.line2 || '',
-      postal_code: user.address?.postalCode || '',
+      country: user.address?.country || customer?.address?.country || '',
+      state: user.address?.province || customer?.address?.state || '',
+      city: user.address?.city || customer?.address?.city || '',
+      line1: user.address?.line1 || customer?.address?.line1 || '',
+      line2: user.address?.line2 || customer?.address?.line2 || '',
+      postal_code: user.address?.postalCode || customer?.address?.postal_code || '',
     };
   }
 

package/api/src/store/models/types.ts

@@ -10,6 +10,10 @@ export type ChainType = 'arcblock' | 'bitcoin' | 'stripe' | EVMChainType;
 export type GroupedBN = { [currencyId: string]: string };
 export type GroupedStrList = { [currencyId: string]: string[] };
 
+export type OrderDirection = 'ASC' | 'DESC';
+export type OrderItem = [string, OrderDirection];
+export type OrderInput = string | string[] | OrderItem[];
+
 export type Pagination<T = any> = T & {
   // offset based
   page?: number;
@@ -18,6 +22,7 @@ export type Pagination<T = any> = T & {
   // TODO: cursor based
   starting_after?: string;
   ending_before?: string;
+  order?: OrderInput; // order by field:ASC|DESC or [field:ASC|DESC, ...] or [[field, direction], ...]
 };
 
 export type Searchable<T = any> = Pagination<T> & {

package/api/tests/libs/api.spec.ts

@@ -1,6 +1,7 @@
 import { Op } from 'sequelize';
 
-import { getWhereFromQuery, MetadataSchema } from '../../src/libs/api';
+import { getOrder, getWhereFromQuery, MetadataSchema, normalizeOrder, createListParamSchema } from '../../src/libs/api';
+import type { OrderItem } from '../../src/store/models';
 
 describe('getWhereFromQuery', () => {
   it('should correctly parse > operator', () => {
@@ -224,3 +225,299 @@ describe('MetadataSchema', () => {
     expect(error).toBeUndefined();
   });
 });
+
+describe('normalizeOrder', () => {
+  it('should return default order when input is undefined', () => {
+    const result = normalizeOrder(undefined);
+    expect(result).toEqual([['created_at', 'DESC']]);
+  });
+
+  it('should handle string input', () => {
+    const result = normalizeOrder('name:asc');
+    expect(result).toEqual([
+      ['name', 'ASC'],
+      ['created_at', 'DESC'],
+    ]);
+  });
+
+  it('should handle string array input', () => {
+    const result = normalizeOrder(['name:asc', 'age:desc']);
+    expect(result).toEqual([
+      ['name', 'ASC'],
+      ['age', 'DESC'],
+      ['created_at', 'DESC'],
+    ]);
+  });
+
+  it('should handle tuple array input', () => {
+    const result = normalizeOrder([
+      ['name', 'ASC'],
+      ['age', 'DESC'],
+    ]);
+    expect(result).toEqual([
+      ['name', 'ASC'],
+      ['age', 'DESC'],
+      ['created_at', 'DESC'],
+    ]);
+  });
+
+  it('should merge with default order correctly', () => {
+    const defaultOrder: OrderItem[] = [
+      ['updated_at', 'DESC'],
+      ['created_at', 'ASC'],
+    ];
+    const result = normalizeOrder('name:asc', defaultOrder);
+    expect(result).toEqual([
+      ['name', 'ASC'],
+      ['updated_at', 'DESC'],
+      ['created_at', 'ASC'],
+    ]);
+  });
+
+  it('should not duplicate fields from default order', () => {
+    const defaultOrder: OrderItem[] = [
+      ['name', 'DESC'],
+      ['created_at', 'ASC'],
+    ];
+    const result = normalizeOrder('name:asc', defaultOrder);
+    expect(result).toEqual([
+      ['name', 'ASC'],
+      ['created_at', 'ASC'],
+    ]);
+  });
+});
+
+describe('getOrder', () => {
+  it('should handle query.order parameter', () => {
+    const result = getOrder({ order: 'name:asc' });
+    expect(result).toEqual([
+      ['name', 'ASC'],
+      ['created_at', 'DESC'],
+    ]);
+  });
+
+  it('should handle query.o parameter', () => {
+    const result = getOrder({ o: 'desc' }, [
+      ['name', 'ASC'],
+      ['age', 'ASC'],
+    ]);
+    expect(result).toEqual([
+      ['name', 'DESC'],
+      ['age', 'DESC'],
+    ]);
+  });
+
+  it('should handle query.o parameter without defaultOrder', () => {
+    const result = getOrder({ o: 'asc' });
+    expect(result).toEqual([['created_at', 'ASC']]);
+  });
+
+  it('should prioritize query.order over query.o', () => {
+    const result = getOrder({ order: 'name:asc', o: 'desc' });
+    expect(result).toEqual([
+      ['name', 'ASC'],
+      ['created_at', 'DESC'],
+    ]);
+  });
+
+  it('should return default order when no parameters provided', () => {
+    const result = getOrder({});
+    expect(result).toEqual([['created_at', 'DESC']]);
+  });
+
+  it('should return custom default order when provided', () => {
+    const defaultOrder: OrderItem[] = [
+      ['updated_at', 'DESC'],
+      ['name', 'ASC'],
+    ];
+    const result = getOrder({}, defaultOrder);
+    expect(result).toEqual(defaultOrder);
+  });
+
+  it('should handle complex ordering with array input', () => {
+    const result = getOrder({ order: ['name:asc', 'age:desc'] });
+    expect(result).toEqual([
+      ['name', 'ASC'],
+      ['age', 'DESC'],
+      ['created_at', 'DESC'],
+    ]);
+  });
+
+  it('should handle tuple array input', () => {
+    const result = getOrder({
+      order: [
+        ['name', 'ASC'],
+        ['age', 'DESC'],
+      ],
+    });
+    expect(result).toEqual([
+      ['name', 'ASC'],
+      ['age', 'DESC'],
+      ['created_at', 'DESC'],
+    ]);
+  });
+
+  it('should merge order fields correctly with defaults', () => {
+    const defaultOrder: OrderItem[] = [
+      ['status', 'DESC'],
+      ['created_at', 'DESC'],
+    ];
+    const result = getOrder({ order: 'name:asc' }, defaultOrder);
+    expect(result).toEqual([
+      ['name', 'ASC'],
+      ['status', 'DESC'],
+      ['created_at', 'DESC'],
+    ]);
+  });
+});
+
+describe('createListParamSchema', () => {
+  const schema = createListParamSchema({});
+
+  describe('order validation', () => {
+    // Valid format validation
+    it('should validate valid string order format', () => {
+      const { error } = schema.validate({ order: 'name:asc' });
+      expect(error).toBeUndefined();
+    });
+
+    it('should validate valid array of strings order format', () => {
+      const { error } = schema.validate({ order: ['name:asc', 'age:desc'] });
+      expect(error).toBeUndefined();
+    });
+
+    it('should validate valid tuple array format', () => {
+      const { error } = schema.validate({
+        order: [
+          ['name', 'ASC'],
+          ['age', 'DESC'],
+        ],
+      });
+      expect(error).toBeUndefined();
+    });
+
+    // Invalid format validation
+    it('should reject invalid format with detailed error message', () => {
+      const { error } = schema.validate({ order: 'nameasc' });
+      expect(error).toBeDefined();
+      expect((error as any).details[0].message).toMatch(/Must use ":" to separate field and direction/);
+    });
+
+    // Field name validation
+    it('should reject invalid field characters with detailed error message', () => {
+      const invalidInputs = ['@name:asc', 'field-name:asc', 'field name:asc', ':asc'];
+
+      invalidInputs.forEach((input) => {
+        const { error } = schema.validate({ order: input });
+        expect(error).toBeDefined();
+        expect((error as any).details[0].message).toMatch(
+          /Field name can only contain letters, numbers, dots and underscores/
+        );
+      });
+    });
+
+    // Direction validation
+    it('should reject invalid direction with detailed error message', () => {
+      const invalidDirections = ['name:up', 'name:', 'name:invalid'];
+
+      invalidDirections.forEach((input) => {
+        const { error } = schema.validate({ order: input });
+        expect(error).toBeDefined();
+        expect((error as any).details[0].message).toMatch(/Direction must be either "asc" or "desc"/);
+      });
+    });
+
+    // Array format validation
+    it('should reject invalid array items with detailed error message', () => {
+      const invalidArrays = [['name:up'], ['@name:asc'], ['name:'], ['nameasc']];
+
+      invalidArrays.forEach((input) => {
+        const { error } = schema.validate({ order: input });
+        expect(error).toBeDefined();
+      });
+    });
+
+    // Tuple format validation
+    it('should reject invalid tuple format with detailed error message', () => {
+      const invalidTuples = [[['@name', 'ASC']], [['name', 'UP']], [['name']], [['name', 'ASC', 'extra']]];
+
+      invalidTuples.forEach((input, index) => {
+        const { error } = schema.validate({ order: input });
+        expect(error).toBeDefined();
+
+        if (index === 0) {
+          expect((error as any).details[0].message).toMatch(
+            /Field name can only contain letters, numbers, dots and underscores/
+          );
+        } else if (index === 1) {
+          expect((error as any).details[0].message).toMatch(/Direction must be either "asc" or "desc"/);
+        } else if (index === 2 || index === 3) {
+          // Test for array length validation
+          expect((error as any).details[0].message).toMatch(
+            /Each tuple must contain exactly 2 elements|Each tuple must contain \[field, direction\]/
+          );
+        }
+      });
+    });
+
+    // Case variation validation
+    it('should accept all valid case variations', () => {
+      const validInputs = [
+        'name:asc',
+        'name:ASC',
+        'name:desc',
+        'name:DESC',
+        ['name:asc'],
+        [['name', 'asc']],
+        [['name', 'ASC']],
+        [
+          ['name', 'ASC'],
+          ['age', 'desc'],
+        ],
+      ];
+
+      validInputs.forEach((input) => {
+        const { error } = schema.validate({ order: input });
+        expect(error).toBeUndefined();
+      });
+    });
+
+    // Testing specific error messages for each validation rule
+    it('should validate field name format', () => {
+      const { error } = schema.validate({ order: '@invalid:asc' });
+      expect(error).toBeDefined();
+      expect((error as any).details[0].message).toBe(
+        'Field name can only contain letters, numbers, dots and underscores'
+      );
+    });
+
+    it('should validate separator', () => {
+      const { error } = schema.validate({ order: 'name-asc' });
+      expect(error).toBeDefined();
+      expect((error as any).details[0].message).toBe('Must use ":" to separate field and direction');
+    });
+
+    it('should validate direction', () => {
+      const { error } = schema.validate({ order: 'name:up' });
+      expect(error).toBeDefined();
+      expect((error as any).details[0].message).toBe('Direction must be either "asc" or "desc"');
+    });
+
+    it('should validate tuple format length', () => {
+      const { error } = schema.validate({
+        order: [['name', 'ASC', 'extra']],
+      });
+      expect(error).toBeDefined();
+      expect((error as any).details[0].message).toBe('Each tuple must contain exactly 2 elements');
+    });
+
+    // Object format should not be supported
+    it('should reject object format', () => {
+      const { error } = schema.validate({
+        order: { name: 'asc', age: 'desc' },
+      });
+      expect(error).toBeDefined();
+      expect((error as any).details[0].message).toMatch(/Invalid order format. Must be one of:/);
+    });
+  });
+});

package/blocklet.yml

@@ -14,7 +14,7 @@ repository:
   type: git
   url: git+https://github.com/blocklet/payment-kit.git
 specVersion: 1.2.8
-version: 1.18.21
+version: 1.18.23
 logo: logo.png
 files:
   - dist

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "payment-kit",
-  "version": "1.18.21",
+  "version": "1.18.23",
   "scripts": {
     "dev": "blocklet dev --open",
     "eject": "vite eject",
@@ -46,17 +46,17 @@
     "@abtnode/cron": "^1.16.40",
     "@arcblock/did": "^1.19.15",
     "@arcblock/did-auth-storage-nedb": "^1.7.1",
-    "@arcblock/did-connect": "^2.12.43",
+    "@arcblock/did-connect": "^2.12.44",
     "@arcblock/did-util": "^1.19.15",
     "@arcblock/jwt": "^1.19.15",
-    "@arcblock/ux": "^2.12.43",
+    "@arcblock/ux": "^2.12.44",
     "@arcblock/validator": "^1.19.15",
     "@blocklet/js-sdk": "^1.16.40",
     "@blocklet/logger": "^1.16.40",
-    "@blocklet/payment-react": "1.18.21",
+    "@blocklet/payment-react": "1.18.23",
     "@blocklet/sdk": "^1.16.40",
-    "@blocklet/ui-react": "^2.12.43",
-    "@blocklet/uploader": "^0.1.79",
+    "@blocklet/ui-react": "^2.12.44",
+    "@blocklet/uploader": "^0.1.80",
     "@blocklet/xss": "^0.1.30",
     "@mui/icons-material": "^5.16.6",
     "@mui/lab": "^5.0.0-alpha.173",
@@ -121,7 +121,7 @@
   "devDependencies": {
     "@abtnode/types": "^1.16.40",
     "@arcblock/eslint-config-ts": "^0.3.3",
-    "@blocklet/payment-types": "1.18.21",
+    "@blocklet/payment-types": "1.18.23",
     "@types/cookie-parser": "^1.4.7",
     "@types/cors": "^2.8.17",
     "@types/debug": "^4.1.12",
@@ -167,5 +167,5 @@
       "parser": "typescript"
     }
   },
-  "gitHead": "cf08902482dded20ee91402ed6d4678383965daf"
+  "gitHead": "4ffd236baa345ecd8facab1e71a6ed2491332fd4"
 }

package/src/libs/util.ts

@@ -21,9 +21,8 @@ import { hexToNumber } from '@ocap/util';
 import { isEmpty, isObject } from 'lodash';
 import cloneDeep from 'lodash/cloneDeep';
 import isEqual from 'lodash/isEqual';
-import { joinURL, withQuery } from 'ufo';
+import { joinURL } from 'ufo';
 
-import type { LiteralUnion } from 'type-fest';
 import { t } from '../locales/index';
 
 export const formatProductPrice = (
@@ -327,22 +326,6 @@ export function getInvoiceUsageReportStartEnd(invoice: TInvoiceExpanded, showPre
   return usageReportRange;
 }
 
-export function getCustomerProfileUrl({
-  locale = 'en',
-  userDid,
-}: {
-  locale: LiteralUnion<'en' | 'zh', string>;
-  userDid: string;
-}) {
-  return joinURL(
-    getPrefix(),
-    withQuery('.well-known/service/user', {
-      locale,
-      did: userDid,
-    })
-  );
-}
-
 export function getAppInfo(address: string): { name: string; avatar: string; type: string; url: string } | null {
   const blockletJson = window.blocklet;
   if (blockletJson) {

package/src/pages/admin/payments/payouts/detail.tsx

@@ -12,6 +12,7 @@ import {
   formatTime,
   getCustomerAvatar,
   getPayoutStatusColor,
+  getUserProfileLink,
   useMobile,
 } from '@blocklet/payment-react';
 import type { TCustomer, TPayoutExpanded } from '@blocklet/payment-types';
@@ -30,7 +31,7 @@ import InfoRow from '../../../../components/info-row';
 import MetadataEditor from '../../../../components/metadata/editor';
 import MetadataList from '../../../../components/metadata/list';
 import SectionHeader from '../../../../components/section/header';
-import { getAppInfo, getCustomerProfileUrl, goBackOrFallback } from '../../../../libs/util';
+import { getAppInfo, goBackOrFallback } from '../../../../libs/util';
 import InfoCard from '../../../../components/info-card';
 import InfoRowGroup from '../../../../components/info-row-group';
 
@@ -48,7 +49,7 @@ const InfoDirection = 'column';
 const InfoAlignItems = 'flex-start';
 
 export default function PayoutDetail(props: { id: string }) {
-  const { t } = useLocaleContext();
+  const { t, locale } = useLocaleContext();
   const { isMobile } = useMobile();
   const [state, setState] = useSetState({
     adding: {
@@ -227,10 +228,7 @@ export default function PayoutDetail(props: { id: string }) {
                           if (isAnonymousPayer) {
                             return;
                           }
-                          const url = getCustomerProfileUrl({
-                            userDid: paymentIntent?.customer?.did,
-                            locale: 'zh',
-                          });
+                          const url = getUserProfileLink(paymentIntent?.customer?.did, locale);
                           window.open(url, '_blank');
                         }}>
                         {paymentIntent?.customer?.name}

package/src/pages/customer/index.tsx

@@ -510,7 +510,7 @@ export default function CustomerHome() {
     <Box className="base-card section section-invoices">
       <Box className="section-header">
         <Typography variant="h3">{t('customer.invoiceHistory')}</Typography>
-        {isEmpty(data?.summary?.due) !== false && (
+        {isEmpty(data?.summary?.due) === false && (
           <Tooltip title={t('payment.customer.pastDue.warning')}>
             <Button
               variant="text"

package/src/pages/customer/payout/detail.tsx

@@ -9,6 +9,7 @@ import {
   formatTime,
   getCustomerAvatar,
   getPayoutStatusColor,
+  getUserProfileLink,
   useMobile,
 } from '@blocklet/payment-react';
 import type { TCustomer, TPaymentLink, TPayoutExpanded } from '@blocklet/payment-types';
@@ -22,7 +23,7 @@ import DID from '@arcblock/ux/lib/DID';
 import InfoMetric from '../../../components/info-metric';
 import InfoRow from '../../../components/info-row';
 import SectionHeader from '../../../components/section/header';
-import { getCustomerProfileUrl, goBackOrFallback } from '../../../libs/util';
+import { goBackOrFallback } from '../../../libs/util';
 import CustomerLink from '../../../components/customer/link';
 import InfoCard from '../../../components/info-card';
 import InfoRowGroup from '../../../components/info-row-group';
@@ -39,7 +40,7 @@ const fetchData = (
 };
 
 export default function PayoutDetail() {
-  const { t } = useLocaleContext();
+  const { t, locale } = useLocaleContext();
   const { isMobile } = useMobile();
   const params = useParams<{ id: string }>();
   const { loading, error, data } = useRequest(() => fetchData(params.id!), {
@@ -178,10 +179,7 @@ export default function PayoutDetail() {
                         if (isAnonymousPayer) {
                           return;
                         }
-                        const url = getCustomerProfileUrl({
-                          userDid: paymentIntent?.customer?.did,
-                          locale: 'zh',
-                        });
+                        const url = getUserProfileLink(paymentIntent?.customer?.did, locale);
                         window.open(url, '_blank');
                       }}>
                       {paymentIntent?.customer?.name}