pesafy 0.0.2 → 0.2.0

package/CHANGELOG.md

@@ -1,5 +1,44 @@
 # pesafy
 
+## 0.2.0
+
+### Minor Changes
+
+- 582d257: Restructure tests beside `src/`, add shared adapter route handlers
+  with parity checks, expand CLI with new Daraja commands and global flags, and
+  sync documentation.
+
+## 0.1.0
+
+### Minor Changes
+
+- Restructure tests, shared adapter routes, and production CLI.
+  - Co-locate unit tests under `src/**/*.test.ts`; remove flat `__tests__/`
+    mega-suites
+  - Extract shared adapter handlers (`src/adapters/shared/`) with parity CI
+    check
+  - Modular CLI with new commands: tx-status, b2c-payment, b2c-disburse,
+    b2b-checkout, tax-remit, qr-generate, bills
+  - Global CLI flags: `--json`, `--env-file`, `--env`
+  - Update adapter and testing documentation
+
+## 0.0.3
+
+### Patch Changes
+
+- Production hardening for supply chain and Socket scanner transparency.
+  - Patch dev transitive CVEs (`fast-uri` >= 3.1.2, `@ungap/structured-clone` >=
+    1.3.1)
+  - Publish unminified `dist/` with source maps; static ESM imports in adapters
+    (no dynamic `require`)
+  - Replace placeholder domains with `example.com` / `example.org` in published
+    docs and CLI defaults
+  - Remove `prepare` lifecycle script from npm consumers; document
+    `pnpm exec simple-git-hooks` for contributors
+  - CI: `pnpm audit`, `publint`, `npm pack --dry-run`; Dependabot for npm
+  - Add supply-chain security documentation and fix SECURITY.md supported
+    versions
+
 ## 0.0.2
 
 ### Patch Changes

package/README.md

@@ -73,7 +73,7 @@ const mpesa = new Mpesa({
 const response = await mpesa.stkPush({
   amount: 100,
   phoneNumber: '0712345678',
-  callbackUrl: 'https://yourdomain.com/api/mpesa/callback',
+  callbackUrl: 'https://example.com/api/mpesa/callback',
   accountReference: 'INV-001',
   transactionDesc: 'Payment',
 })
@@ -114,8 +114,20 @@ npx pesafy balance --shortcode 600000 --identifier-type 4
 npx pesafy reversal <txId>                        Initiate a transaction reversal
 npx pesafy register-c2b-urls                      Register C2B Confirmation + Validation URLs
 npx pesafy simulate-c2b                           Simulate a C2B payment (sandbox only)
+npx pesafy tx-status <txId>                       Query transaction status (async)
+npx pesafy b2c-payment                            Initiate B2C payment (async)
+npx pesafy b2c-disburse                           Initiate B2C disbursement (async)
+npx pesafy b2b-checkout                           Initiate B2B Express checkout
+npx pesafy tax-remit                              Initiate tax remittance (async)
+npx pesafy qr-generate                            Generate a dynamic M-PESA QR code
+npx pesafy bills <subcommand>                     Bill Manager (opt-in, invoice, reconcile)
 npx pesafy version                                Print library version
 npx pesafy help                                   Show help
+
+# Global flags (any command)
+npx pesafy --json token                           Machine-readable output
+npx pesafy --env-file .env.staging stk-push       Load env from a custom file
+npx pesafy --env production doctor                Override MPESA_ENVIRONMENT for one run
 ```
 
 ### Environment variables read by the CLI
@@ -175,7 +187,7 @@ Prompts the customer to enter their M-PESA PIN on their phone.
 const push = await mpesa.stkPush({
   amount: 100, // KES — whole numbers only (1–250 000)
   phoneNumber: '0712345678', // any common Kenyan format
-  callbackUrl: 'https://yourdomain.com/api/mpesa/callback',
+  callbackUrl: 'https://example.com/api/mpesa/callback',
   accountReference: 'INV-001', // max 12 chars
   transactionDesc: 'Subscription', // max 13 chars
   transactionType: 'CustomerPayBillOnline', // default; or "CustomerBuyGoodsOnline"
@@ -197,7 +209,7 @@ if (status.ResultCode === 0) {
 const result = await mpesa.stkPushSafe({
   amount: 100,
   phoneNumber: '0712345678',
-  callbackUrl: 'https://yourdomain.com/api/mpesa/callback',
+  callbackUrl: 'https://example.com/api/mpesa/callback',
   accountReference: 'INV-001',
   transactionDesc: 'Payment',
 })
@@ -249,8 +261,8 @@ Register your Paybill or Till to receive M-PESA payments.
 await mpesa.registerC2BUrls({
   shortCode: '600984',
   responseType: 'Completed', // "Completed" | "Cancelled" (sentence-case required)
-  confirmationUrl: 'https://yourdomain.com/api/mpesa/c2b/confirmation',
-  validationUrl: 'https://yourdomain.com/api/mpesa/c2b/validation',
+  confirmationUrl: 'https://example.com/api/mpesa/c2b/confirmation',
+  validationUrl: 'https://example.com/api/mpesa/c2b/validation',
   apiVersion: 'v2', // default
 })
 
@@ -335,8 +347,8 @@ const ack = await mpesa.b2cPayment({
   partyA: '600979', // sender MMF shortcode (or set b2cPartyA in config)
   partyB: '600000', // target B2C shortcode
   accountReference: 'BATCH-2024-01',
-  resultUrl: 'https://yourdomain.com/api/mpesa/b2c/result',
-  queueTimeOutUrl: 'https://yourdomain.com/api/mpesa/b2c/timeout',
+  resultUrl: 'https://example.com/api/mpesa/b2c/result',
+  queueTimeOutUrl: 'https://example.com/api/mpesa/b2c/timeout',
   remarks: 'Monthly top-up',
 })
 ```
@@ -391,8 +403,8 @@ const ack = await mpesa.b2cDisbursement({
   partyA: '600979', // sender shortcode
   partyB: '254712345678', // recipient MSISDN (2547XXXXXXXX)
   remarks: 'January salary', // required, 2–100 chars
-  resultUrl: 'https://yourdomain.com/api/mpesa/b2c/disburse/result',
-  queueTimeOutUrl: 'https://yourdomain.com/api/mpesa/b2c/disburse/timeout',
+  resultUrl: 'https://example.com/api/mpesa/b2c/disburse/result',
+  queueTimeOutUrl: 'https://example.com/api/mpesa/b2c/disburse/timeout',
   occasion: 'Payroll Jan 2024', // optional
 })
 ```
@@ -452,7 +464,7 @@ const ack = await mpesa.b2bExpressCheckout({
   receiverShortCode: '000002', // vendor Paybill (credit party)
   amount: 5000,
   paymentRef: 'INV-001',
-  callbackUrl: 'https://yourdomain.com/api/mpesa/b2b/callback',
+  callbackUrl: 'https://example.com/api/mpesa/b2b/callback',
   partnerName: 'Acme Supplies', // shown in merchant's USSD prompt
   requestRefId: 'unique-uuid', // auto-generated UUID if omitted
 })
@@ -520,8 +532,8 @@ const ack = await mpesa.b2bPayBill({
   partyA: '600979', // your shortcode (debit)
   partyB: '000000', // destination Paybill (credit)
   accountReference: 'ACC-353353', // max 13 chars
-  resultUrl: 'https://yourdomain.com/api/mpesa/b2b/paybill/result',
-  queueTimeOutUrl: 'https://yourdomain.com/api/mpesa/b2b/paybill/timeout',
+  resultUrl: 'https://example.com/api/mpesa/b2b/paybill/result',
+  queueTimeOutUrl: 'https://example.com/api/mpesa/b2b/paybill/timeout',
   remarks: 'Supplier payment',
   requester: '254712345678', // optional — consumer MSISDN on whose behalf
   occasion: 'Q1 Invoice', // optional
@@ -572,8 +584,8 @@ const ack = await mpesa.b2bBuyGoods({
   partyA: '600979', // your shortcode (debit)
   partyB: '000000', // destination till / merchant store
   accountReference: 'PO-19008', // max 13 chars
-  resultUrl: 'https://yourdomain.com/api/mpesa/b2b/buygoods/result',
-  queueTimeOutUrl: 'https://yourdomain.com/api/mpesa/b2b/buygoods/timeout',
+  resultUrl: 'https://example.com/api/mpesa/b2b/buygoods/result',
+  queueTimeOutUrl: 'https://example.com/api/mpesa/b2b/buygoods/timeout',
   remarks: 'Stock purchase',
   requester: '254712345678', // optional
 })
@@ -638,8 +650,8 @@ POSTed to your `resultUrl`.
 await mpesa.accountBalance({
   partyA:         '174379',
   identifierType: '4', // "1"=MSISDN, "2"=Till, "4"=ShortCode (most common)
-  resultUrl:      'https://yourdomain.com/api/mpesa/balance/result',
-  queueTimeOutUrl:'https://yourdomain.com/api/mpesa/balance/timeout',
+  resultUrl:      'https://example.com/api/mpesa/balance/result',
+  queueTimeOutUrl:'https://example.com/api/mpesa/balance/timeout',
   remarks:        'Balance check',
 })
 
@@ -692,8 +704,8 @@ await mpesa.transactionStatus({
   // OR: originalConversationId: '7071-4170-...'  ← when no receipt is available
   partyA: '174379',
   identifierType: '4', // "1"=MSISDN, "2"=Till, "4"=ShortCode
-  resultUrl: 'https://yourdomain.com/api/mpesa/tx/result',
-  queueTimeOutUrl: 'https://yourdomain.com/api/mpesa/tx/timeout',
+  resultUrl: 'https://example.com/api/mpesa/tx/result',
+  queueTimeOutUrl: 'https://example.com/api/mpesa/tx/timeout',
   remarks: 'Check payment status',
 })
 ```
@@ -745,8 +757,8 @@ await mpesa.reverseTransaction({
   transactionId: 'OEI2AK4XXXX', // M-PESA receipt of the transaction to reverse
   receiverParty: '174379', // your shortcode
   amount: 500, // must equal the original amount
-  resultUrl: 'https://yourdomain.com/api/mpesa/reversal/result',
-  queueTimeOutUrl: 'https://yourdomain.com/api/mpesa/reversal/timeout',
+  resultUrl: 'https://example.com/api/mpesa/reversal/result',
+  queueTimeOutUrl: 'https://example.com/api/mpesa/reversal/timeout',
   remarks: 'Erroneous charge', // 2–100 chars
 })
 ```
@@ -817,8 +829,8 @@ await mpesa.remitTax({
   amount: 5_000,
   partyA: '888880', // your business shortcode
   accountReference: 'PRN1234XN', // KRA Payment Registration Number (PRN)
-  resultUrl: 'https://yourdomain.com/api/mpesa/tax/result',
-  queueTimeOutUrl: 'https://yourdomain.com/api/mpesa/tax/timeout',
+  resultUrl: 'https://example.com/api/mpesa/tax/result',
+  queueTimeOutUrl: 'https://example.com/api/mpesa/tax/timeout',
   remarks: 'Monthly PAYE',
 })
 ```
@@ -898,7 +910,7 @@ await mpesa.billManagerOptIn({
   officialContact: '0700000000',
   sendReminders: '1', // "1" enable | "0" disable (7-, 3-day, due-date reminders)
   logo: 'https://cdn.company.com/logo.jpg', // optional JPEG/JPG
-  callbackUrl: 'https://yourdomain.com/api/mpesa/bills/callback',
+  callbackUrl: 'https://example.com/api/mpesa/bills/callback',
 })
 
 // 2. Update opt-in details
@@ -907,7 +919,7 @@ await mpesa.updateOptIn({
   email: 'new@company.com',
   officialContact: '0700000001',
   sendReminders: '1',
-  callbackUrl: 'https://yourdomain.com/api/mpesa/bills/callback',
+  callbackUrl: 'https://example.com/api/mpesa/bills/callback',
 })
 
 // 3. Send a single invoice
@@ -1070,7 +1082,7 @@ createMpesaExpressRouter(router, {
   // STK Push
   lipaNaMpesaShortCode: '174379',
   lipaNaMpesaPassKey: process.env.MPESA_PASSKEY!,
-  callbackUrl: 'https://yourdomain.com/api/mpesa/express/callback',
+  callbackUrl: 'https://example.com/api/mpesa/express/callback',
 
   // Initiator (B2C, Tax, Reversal, Balance)
   initiatorName: 'testapi',
@@ -1078,13 +1090,13 @@ createMpesaExpressRouter(router, {
   certificatePath: './SandboxCertificate.cer',
 
   // Transaction Status
-  resultUrl: 'https://yourdomain.com/api/mpesa/transaction-status/result',
-  queueTimeOutUrl: 'https://yourdomain.com/api/mpesa/timeout',
+  resultUrl: 'https://example.com/api/mpesa/transaction-status/result',
+  queueTimeOutUrl: 'https://example.com/api/mpesa/timeout',
 
   // C2B
   c2bShortCode: '600984',
-  c2bConfirmationUrl: 'https://yourdomain.com/api/mpesa/c2b/confirmation',
-  c2bValidationUrl: 'https://yourdomain.com/api/mpesa/c2b/validation',
+  c2bConfirmationUrl: 'https://example.com/api/mpesa/c2b/confirmation',
+  c2bValidationUrl: 'https://example.com/api/mpesa/c2b/validation',
   c2bResponseType: 'Completed',
   c2bApiVersion: 'v2',
   onC2BValidation: async (payload) => {
@@ -1101,23 +1113,23 @@ createMpesaExpressRouter(router, {
 
   // Tax Remittance
   taxPartyA: '888880',
-  taxResultUrl: 'https://yourdomain.com/api/mpesa/tax/result',
-  taxQueueTimeOutUrl: 'https://yourdomain.com/api/mpesa/tax/timeout',
+  taxResultUrl: 'https://example.com/api/mpesa/tax/result',
+  taxQueueTimeOutUrl: 'https://example.com/api/mpesa/tax/timeout',
   onTaxRemittanceResult: async (result) => {
     console.log('Tax result:', result.Result.ResultCode)
   },
 
   // B2B Express Checkout
   b2bReceiverShortCode: '000002',
-  b2bCallbackUrl: 'https://yourdomain.com/api/mpesa/b2b/callback',
+  b2bCallbackUrl: 'https://example.com/api/mpesa/b2b/callback',
   onB2BCheckoutCallback: async (callback) => {
     console.log('B2B callback:', callback.resultCode)
   },
 
   // B2C Account Top Up
   b2cPartyA: '600979',
-  b2cResultUrl: 'https://yourdomain.com/api/mpesa/b2c/result',
-  b2cQueueTimeOutUrl: 'https://yourdomain.com/api/mpesa/b2c/timeout',
+  b2cResultUrl: 'https://example.com/api/mpesa/b2c/result',
+  b2cQueueTimeOutUrl: 'https://example.com/api/mpesa/b2c/timeout',
   onB2CResult: async (result) => {
     console.log('B2C result:', result.Result.ResultCode)
   },
@@ -1167,9 +1179,9 @@ createMpesaHonoRouter(app, {
   environment: 'sandbox',
   lipaNaMpesaShortCode: '174379',
   lipaNaMpesaPassKey: process.env.MPESA_PASSKEY!,
-  callbackUrl: 'https://yourdomain.com/mpesa/express/callback',
-  resultUrl: 'https://yourdomain.com/mpesa/result',
-  queueTimeOutUrl: 'https://yourdomain.com/mpesa/timeout',
+  callbackUrl: 'https://example.com/mpesa/express/callback',
+  resultUrl: 'https://example.com/mpesa/result',
+  queueTimeOutUrl: 'https://example.com/mpesa/timeout',
 
   onStkSuccess: async ({ receiptNumber, amount, phone }) => {
     await db.payments.create({ receiptNumber, amount, phone })
@@ -1298,9 +1310,9 @@ await registerMpesaRoutes(app, {
   environment: 'sandbox',
   lipaNaMpesaShortCode: '174379',
   lipaNaMpesaPassKey: process.env.MPESA_PASSKEY!,
-  callbackUrl: 'https://yourdomain.com/mpesa/callback',
-  resultUrl: 'https://yourdomain.com/mpesa/result',
-  queueTimeOutUrl: 'https://yourdomain.com/mpesa/timeout',
+  callbackUrl: 'https://example.com/mpesa/callback',
+  resultUrl: 'https://example.com/mpesa/result',
+  queueTimeOutUrl: 'https://example.com/mpesa/timeout',
   skipIPCheck: true,
   onStkSuccess: async ({ receiptNumber, amount, phone }) => {
     app.log.info({ receiptNumber, amount, phone }, 'Payment received')
@@ -1506,6 +1518,16 @@ console.log(mpesa.environment) // "sandbox" | "production"
 
 ---
 
+## Security
+
+- [SECURITY.md](SECURITY.md) — supported versions and vulnerability reporting
+- [Supply chain & scanners](https://pesafy.vercel.app/guide/supply-chain) — why
+  Socket/Snyk may flag network URLs, Safaricom IPs, and the CLI
+- Releases are built with npm **provenance**; verify with `pnpm pack --dry-run`
+  before publishing
+
+---
+
 ## License
 
 MIT © [Lewis Odero](https://github.com/levos-snr)

package/dist/adapters/express.d.ts

@@ -1,85 +1,8 @@
-import { A as TransactionStatusResult, D as MpesaConfig, T as AccountBalanceResult, b as B2BExpressCheckoutCallback, f as C2BValidationPayload, g as B2CDisbursementResult, o as ReversalResult, p as C2BValidationResponse, r as TaxRemittanceResult, s as C2BConfirmationPayload, y as B2CResult } from "../types.js";
-import { t as Mpesa } from "../index.js";
+import { i as Mpesa, n as StkFailurePayload, r as StkSuccessPayload, t as MpesaAdapterConfig } from "../types.js";
 import { Router } from "express";
 
 //#region src/adapters/express.d.ts
-interface MpesaExpressConfig extends MpesaConfig {
-  /** STK Push callback URL (required) */
-  callbackUrl: string;
-  /** Default ResultURL for async APIs (balance, reversal, tx-status, b2c, tax) */
-  resultUrl?: string;
-  /** Default QueueTimeOutURL */
-  queueTimeoutUrl?: string;
-  /** Skip Safaricom IP whitelist check (local dev only) */
-  skipIPCheck?: boolean;
-  /** Shared secret for opt-in HMAC webhook verification */
-  webhookSecret?: string;
-  /** Require valid HMAC when webhookSecret is set */
-  requireHMAC?: boolean;
-  /** Signature header name (default: x-safaricom-signature) */
-  signatureHeader?: string;
-  /** Prefix for all routes — default "" */
-  routePrefix?: string;
-  balance?: {
-    resultUrl?: string;
-    queueTimeoutUrl?: string;
-    shortCode?: string;
-  };
-  reversal?: {
-    resultUrl?: string;
-    queueTimeoutUrl?: string;
-  };
-  txStatus?: {
-    resultUrl?: string;
-    queueTimeoutUrl?: string;
-  };
-  tax?: {
-    resultUrl?: string;
-    queueTimeoutUrl?: string;
-    partyA?: string;
-  };
-  b2c?: {
-    resultUrl?: string;
-    queueTimeoutUrl?: string;
-    partyA?: string;
-  };
-  c2b?: {
-    shortCode?: string;
-    confirmationUrl?: string;
-    validationUrl?: string;
-    responseType?: 'Completed' | 'Cancelled';
-    apiVersion?: 'v1' | 'v2';
-  };
-  b2b?: {
-    receiverShortCode?: string;
-    callbackUrl?: string;
-  };
-  onStkSuccess?: (data: StkSuccessPayload) => Awaitable<void>;
-  onStkFailure?: (data: StkFailurePayload) => Awaitable<void>;
-  onC2BValidation?: (payload: C2BValidationPayload) => Awaitable<C2BValidationResponse>;
-  onC2BConfirmation?: (payload: C2BConfirmationPayload) => Awaitable<void>;
-  onAccountBalanceResult?: (result: AccountBalanceResult) => Awaitable<void>;
-  onReversalResult?: (result: ReversalResult) => Awaitable<void>;
-  onTxStatusResult?: (result: TransactionStatusResult) => Awaitable<void>;
-  onTaxResult?: (result: TaxRemittanceResult) => Awaitable<void>;
-  onB2BCheckoutCallback?: (callback: B2BExpressCheckoutCallback) => Awaitable<void>;
-  onB2CResult?: (result: B2CResult) => Awaitable<void>;
-  onB2CDisbursementResult?: (result: B2CDisbursementResult) => Awaitable<void>;
-}
-type Awaitable<T> = T | Promise<T>;
-interface StkSuccessPayload {
-  receiptNumber: string | null;
-  amount: number | null;
-  phone: string | null;
-  checkoutRequestId: string;
-  merchantRequestId: string;
-}
-interface StkFailurePayload {
-  resultCode: number;
-  resultDesc: string;
-  checkoutRequestId: string;
-  merchantRequestId: string;
-}
+type MpesaExpressConfig = MpesaAdapterConfig;
 /**
  * Creates an Express Router with all M-PESA Daraja routes mounted.
  *
@@ -93,7 +16,7 @@ interface StkFailurePayload {
  *   consumerKey: process.env.MPESA_CONSUMER_KEY!,
  *   consumerSecret: process.env.MPESA_CONSUMER_SECRET!,
  *   environment: 'sandbox',
- *   callbackUrl: 'https://yourdomain.com/api/mpesa/stk/callback',
+ *   callbackUrl: 'https://example.com/api/mpesa/stk/callback',
  *   lipaNaMpesaShortCode: '174379',
  *   lipaNaMpesaPassKey: process.env.MPESA_PASSKEY!,
  * }))
@@ -103,4 +26,5 @@ declare function createMpesaExpressClient(config: MpesaExpressConfig): {
   mpesa: Mpesa;
 };
 //#endregion
-export { MpesaExpressConfig, StkFailurePayload, StkSuccessPayload, createMpesaExpressClient, createMpesaRouter as createMpesaExpressRouter, createMpesaRouter };
+export { MpesaExpressConfig, type StkFailurePayload, type StkSuccessPayload, createMpesaExpressClient, createMpesaRouter as createMpesaExpressRouter, createMpesaRouter };
+//# sourceMappingURL=express.d.ts.map

package/dist/adapters/express.js

@@ -1 +1,127 @@
-import{t as e}from"../chunk.js";import{A as t,C as n,D as r,E as i,O as a,S as o,T as s,_ as c,a as l,b as u,c as d,d as f,f as p,g as m,h,i as g,j as _,k as v,l as y,m as b,n as x,o as S,p as C,r as w,s as T,t as E,u as D,v as O,w as k,x as A,y as j}from"../webhook-guard.js";function M(e){return e.headers[`x-forwarded-for`]?.split(`,`)[0]?.trim()??e.ip??``}function N(e,t){if(!e.headersSent){if(t instanceof _){e.status(t.statusCode??400).json({ok:!1,error:t.code,message:t.message});return}e.status(500).json({ok:!1,error:`INTERNAL_ERROR`,message:`Unexpected server error`})}}function P(e,t,n,r){let i=e??t??n??``;if(!i)throw new _({code:`VALIDATION_ERROR`,message:`${r} is required. Set it in config or include it in the request body.`});return i}function F(e,t){e&&e().catch(e=>console.error(`[pesafy] ${t} hook error:`,e))}function I(e){let t=e.rawBody;if(typeof t==`string`)return t;if(t instanceof Buffer)return t.toString(`utf8`);if(e.body!==void 0)return JSON.stringify(e.body)}async function L(e,t){return E(M(e),I(e),t=>{let n=e.headers[t.toLowerCase()];return Array.isArray(n)?n[0]:n},t)}function R(E,M){let{Router:N}=e(`express`),I=M??N(),R=new x(E),B=E.routePrefix??``;return I.post(`${B}/mpesa/stk/push`,z(async(e,t)=>{let{amount:n,phoneNumber:r,accountReference:i,transactionDesc:a,transactionType:o,partyB:s}=e.body;if(!n||n<=0)throw new _({code:`VALIDATION_ERROR`,message:`amount must be > 0`});if(!r)throw new _({code:`VALIDATION_ERROR`,message:`phoneNumber is required`});let c=await R.stkPush({amount:n,phoneNumber:r,callbackUrl:E.callbackUrl,accountReference:i??`REF-${Date.now().toString(36).toUpperCase()}`,transactionDesc:a??`Payment`,...o===void 0?{}:{transactionType:o},...s===void 0?{}:{partyB:s}});t.json({ok:!0,data:c})})),I.post(`${B}/mpesa/stk/query`,z(async(e,t)=>{let{checkoutRequestId:n}=e.body;if(!n)throw new _({code:`VALIDATION_ERROR`,message:`checkoutRequestId is required`});let r=await R.stkQuery({checkoutRequestId:n});t.json({ok:!0,data:r})})),I.post(`${B}/mpesa/stk/callback`,async(e,t)=>{await L(e,E);let n=e.body,r=n?.Body?.stkCallback;if(!r)return t.json({ResultCode:0,ResultDesc:`Accepted`});if(S(n)){let e={receiptNumber:l(n),amount:w(n),phone:g(n),checkoutRequestId:r.CheckoutRequestID,merchantRequestId:r.MerchantRequestID};console.info(`[pesafy] STK success:`,e),F(E.onStkSuccess?()=>Promise.resolve(E.onStkSuccess(e)):void 0,`onStkSuccess`)}else{let e={resultCode:r.ResultCode,resultDesc:r.ResultDesc,checkoutRequestId:r.CheckoutRequestID,merchantRequestId:r.MerchantRequestID};console.warn(`[pesafy] STK failure:`,e),F(E.onStkFailure?()=>Promise.resolve(E.onStkFailure(e)):void 0,`onStkFailure`)}return t.json({ResultCode:0,ResultDesc:`Accepted`})}),I.post(`${B}/mpesa/c2b/register`,z(async(e,t)=>{let{shortCode:n=E.c2b?.shortCode,confirmationUrl:r=E.c2b?.confirmationUrl,validationUrl:i=E.c2b?.validationUrl,responseType:a=E.c2b?.responseType??`Completed`,apiVersion:o=E.c2b?.apiVersion??`v2`}=e.body;if(!n)throw new _({code:`VALIDATION_ERROR`,message:`shortCode is required`});if(!r)throw new _({code:`VALIDATION_ERROR`,message:`confirmationUrl is required`});if(!i)throw new _({code:`VALIDATION_ERROR`,message:`validationUrl is required`});let s=await R.registerC2BUrls({shortCode:n,responseType:a,confirmationUrl:r,validationUrl:i,apiVersion:o});t.json({ok:!0,data:s})})),I.post(`${B}/mpesa/c2b/simulate`,z(async(e,t)=>{let{commandId:n,amount:r,msisdn:i,billRefNumber:a,shortCode:o,apiVersion:s}=e.body;if(!n)throw new _({code:`VALIDATION_ERROR`,message:`commandId is required`});if(!r||r<=0)throw new _({code:`VALIDATION_ERROR`,message:`amount must be > 0`});if(!i)throw new _({code:`VALIDATION_ERROR`,message:`msisdn is required`});let c=await R.simulateC2B({shortCode:o??E.c2b?.shortCode??``,commandId:n,amount:r,msisdn:i,apiVersion:s??E.c2b?.apiVersion??`v2`,...a===void 0?{}:{billRefNumber:a}});t.json({ok:!0,data:c})})),I.post(`${B}/mpesa/c2b/validation`,z(async(e,t)=>{await L(e,E);let n=e.body,r=E.onC2BValidation?await E.onC2BValidation(n):b();t.json(r)})),I.post(`${B}/mpesa/c2b/confirmation`,(e,t)=>{let n=e.body;console.info(`[pesafy] C2B confirmation:`,{transactionId:n.TransID,amount:n.TransAmount,billRef:n.BillRefNumber}),F(E.onC2BConfirmation?()=>Promise.resolve(E.onC2BConfirmation(n)):void 0,`onC2BConfirmation`),t.json({ResultCode:0,ResultDesc:`Success`})}),I.post(`${B}/mpesa/balance/query`,z(async(e,t)=>{let n=e.body,r=await R.accountBalance({partyA:n.partyA??E.balance?.shortCode??``,identifierType:n.identifierType??`4`,resultUrl:P(n.resultUrl,E.balance?.resultUrl,E.resultUrl,`resultUrl`),queueTimeOutUrl:P(n.queueTimeoutUrl,E.balance?.queueTimeoutUrl,E.queueTimeoutUrl,`queueTimeoutUrl`),...n.remarks===void 0?{}:{remarks:n.remarks}});t.json({ok:!0,data:r})})),I.post(`${B}/mpesa/balance/result`,(e,n)=>{let r=e.body;if(!v(r))console.warn(`[pesafy] Account balance failed:`,r);else{let e=a(r);console.info(`[pesafy] Account balance:`,e?t(e):r)}F(E.onAccountBalanceResult?()=>Promise.resolve(E.onAccountBalanceResult(r)):void 0,`onAccountBalanceResult`),n.json({ResultCode:0,ResultDesc:`Accepted`})}),I.post(`${B}/mpesa/qr/generate`,z(async(e,t)=>{let n=await R.generateDynamicQR(e.body);t.json({ok:!0,data:n})})),I.post(`${B}/mpesa/reversal/request`,z(async(e,t)=>{let n=e.body;if(!n.transactionId)throw new _({code:`VALIDATION_ERROR`,message:`transactionId is required`});if(!n.receiverParty)throw new _({code:`VALIDATION_ERROR`,message:`receiverParty is required`});if(!n.amount||n.amount<=0)throw new _({code:`VALIDATION_ERROR`,message:`amount must be > 0`});let r=await R.reverseTransaction({transactionId:n.transactionId,receiverParty:n.receiverParty,amount:n.amount,resultUrl:P(n.resultUrl,E.reversal?.resultUrl,E.resultUrl,`resultUrl`),queueTimeOutUrl:P(n.queueTimeoutUrl,E.reversal?.queueTimeoutUrl,E.queueTimeoutUrl,`queueTimeoutUrl`),...n.remarks===void 0?{}:{remarks:n.remarks},...n.occasion===void 0?{}:{occasion:n.occasion}});t.json({ok:!0,data:r})})),I.post(`${B}/mpesa/reversal/result`,(e,t)=>{let n=e.body;p(n)&&(C(n)?console.info(`[pesafy] Reversal success:`,{txId:f(n)}):console.warn(`[pesafy] Reversal failed:`,n.Result.ResultDesc),F(E.onReversalResult?()=>Promise.resolve(E.onReversalResult(n)):void 0,`onReversalResult`)),t.json({ResultCode:0,ResultDesc:`Accepted`})}),I.post(`${B}/mpesa/tx-status/query`,z(async(e,t)=>{let n=e.body,r=await R.transactionStatus({...n.transactionId===void 0?{}:{transactionId:n.transactionId},...n.originalConversationId===void 0?{}:{originalConversationId:n.originalConversationId},partyA:n.partyA,identifierType:n.identifierType,resultUrl:P(n.resultUrl,E.txStatus?.resultUrl,E.resultUrl,`resultUrl`),queueTimeOutUrl:P(n.queueTimeoutUrl,E.txStatus?.queueTimeoutUrl,E.queueTimeoutUrl,`queueTimeoutUrl`),...n.remarks===void 0?{}:{remarks:n.remarks},...n.occasion===void 0?{}:{occasion:n.occasion}});t.json({ok:!0,data:r})})),I.post(`${B}/mpesa/tx-status/result`,(e,t)=>{let n=e.body;T(n)&&(d(n)?console.info(`[pesafy] Transaction status success:`,n.Result.TransactionID):console.warn(`[pesafy] Transaction status failed:`,n.Result.ResultDesc),F(E.onTxStatusResult?()=>Promise.resolve(E.onTxStatusResult(n)):void 0,`onTxStatusResult`)),t.json({ResultCode:0,ResultDesc:`Accepted`})}),I.post(`${B}/mpesa/tax/remit`,z(async(e,t)=>{let n=e.body;if(!n.amount||n.amount<=0)throw new _({code:`VALIDATION_ERROR`,message:`amount must be > 0`});if(!n.accountReference)throw new _({code:`VALIDATION_ERROR`,message:`accountReference (KRA PRN) is required`});let r=await R.remitTax({amount:n.amount,partyA:n.partyA??E.tax?.partyA??``,accountReference:n.accountReference,resultUrl:P(n.resultUrl,E.tax?.resultUrl,E.resultUrl,`resultUrl`),queueTimeOutUrl:P(n.queueTimeoutUrl,E.tax?.queueTimeoutUrl,E.queueTimeoutUrl,`queueTimeoutUrl`),...n.partyB===void 0?{}:{partyB:n.partyB},...n.remarks===void 0?{}:{remarks:n.remarks}});t.json({ok:!0,data:r})})),I.post(`${B}/mpesa/tax/result`,(e,t)=>{let n=e.body;y(n)&&(D(n)?console.info(`[pesafy] Tax remittance success:`,n.Result.TransactionID):console.warn(`[pesafy] Tax remittance failed:`,n.Result.ResultDesc),F(E.onTaxResult?()=>Promise.resolve(E.onTaxResult(n)):void 0,`onTaxResult`)),t.json({ResultCode:0,ResultDesc:`Accepted`})}),I.post(`${B}/mpesa/b2b/checkout`,z(async(e,t)=>{let n=e.body;if(!n.primaryShortCode)throw new _({code:`VALIDATION_ERROR`,message:`primaryShortCode is required`});if(!n.amount||n.amount<=0)throw new _({code:`VALIDATION_ERROR`,message:`amount must be > 0`});if(!n.paymentRef)throw new _({code:`VALIDATION_ERROR`,message:`paymentRef is required`});if(!n.partnerName)throw new _({code:`VALIDATION_ERROR`,message:`partnerName is required`});let r=n.receiverShortCode??E.b2b?.receiverShortCode??``;if(!r)throw new _({code:`VALIDATION_ERROR`,message:`receiverShortCode is required`});let i=n.callbackUrl??E.b2b?.callbackUrl??``;if(!i)throw new _({code:`VALIDATION_ERROR`,message:`callbackUrl is required`});let a=await R.b2bExpressCheckout({primaryShortCode:n.primaryShortCode,receiverShortCode:r,amount:n.amount,paymentRef:n.paymentRef,callbackUrl:i,partnerName:n.partnerName,...n.requestRefId===void 0?{}:{requestRefId:n.requestRefId}});t.json({ok:!0,data:a})})),I.post(`${B}/mpesa/b2b/callback`,(e,t)=>{let a=e.body;if(!s(a))return console.warn(`[pesafy] Unknown B2B callback payload`),t.json({ResultCode:0,ResultDesc:`Accepted`});let c=a;return r(c)?console.info(`[pesafy] B2B checkout success:`,{txId:k(c),conversationId:n(c),amount:o(c)}):i(c)?console.warn(`[pesafy] B2B checkout cancelled by merchant`):console.warn(`[pesafy] B2B checkout failed:`,c.resultDesc),F(E.onB2BCheckoutCallback?()=>Promise.resolve(E.onB2BCheckoutCallback(c)):void 0,`onB2BCheckoutCallback`),t.json({ResultCode:0,ResultDesc:`Accepted`})}),I.post(`${B}/mpesa/b2c/payment`,z(async(e,t)=>{let n=e.body;if(n.commandId!==`BusinessPayToBulk`)throw new _({code:`VALIDATION_ERROR`,message:`commandId must be "BusinessPayToBulk"`});if(!n.amount||n.amount<=0)throw new _({code:`VALIDATION_ERROR`,message:`amount must be > 0`});if(!n.partyB)throw new _({code:`VALIDATION_ERROR`,message:`partyB is required`});if(!n.accountReference)throw new _({code:`VALIDATION_ERROR`,message:`accountReference is required`});let r=await R.b2cPayment({commandId:`BusinessPayToBulk`,amount:n.amount,partyA:n.partyA??E.b2c?.partyA??``,partyB:n.partyB,accountReference:n.accountReference,resultUrl:P(n.resultUrl,E.b2c?.resultUrl,E.resultUrl,`resultUrl`),queueTimeOutUrl:P(n.queueTimeoutUrl,E.b2c?.queueTimeoutUrl,E.queueTimeoutUrl,`queueTimeoutUrl`),...n.requester===void 0?{}:{requester:n.requester},...n.remarks===void 0?{}:{remarks:n.remarks}});t.json({ok:!0,data:r})})),I.post(`${B}/mpesa/b2c/result`,(e,t)=>{let n=e.body;u(n)&&(A(n)?console.info(`[pesafy] B2C success:`,{txId:j(n),amount:c(n),origConvId:O(n)}):console.warn(`[pesafy] B2C failed:`,n.Result.ResultDesc),F(E.onB2CResult?()=>Promise.resolve(E.onB2CResult(n)):void 0,`onB2CResult`)),t.json({ResultCode:0,ResultDesc:`Accepted`})}),I.post(`${B}/mpesa/b2c/disburse`,z(async(e,t)=>{let n=e.body,r=await R.b2cDisbursement({originatorConversationId:n.originatorConversationId,commandId:n.commandId,amount:n.amount,partyA:n.partyA,partyB:n.partyB,remarks:n.remarks,resultUrl:P(n.resultUrl,E.b2c?.resultUrl,E.resultUrl,`resultUrl`),queueTimeOutUrl:P(n.queueTimeoutUrl,E.b2c?.queueTimeoutUrl,E.queueTimeoutUrl,`queueTimeoutUrl`),...n.occasion===void 0?{}:{occasion:n.occasion}});t.json({ok:!0,data:r})})),I.post(`${B}/mpesa/b2c/disburse/result`,(e,t)=>{let n=e.body;h(n)&&(m(n)?console.info(`[pesafy] B2C disbursement success:`,n.Result.TransactionID):console.warn(`[pesafy] B2C disbursement failed:`,n.Result.ResultDesc),F(E.onB2CDisbursementResult?()=>Promise.resolve(E.onB2CDisbursementResult(n)):void 0,`onB2CDisbursementResult`)),t.json({ResultCode:0,ResultDesc:`Accepted`})}),I.post(`${B}/mpesa/bills/optin`,z(async(e,t)=>{let n=await R.billManagerOptIn(e.body);t.json({ok:!0,data:n})})),I.patch(`${B}/mpesa/bills/optin`,z(async(e,t)=>{let n=await R.updateOptIn(e.body);t.json({ok:!0,data:n})})),I.post(`${B}/mpesa/bills/invoice`,z(async(e,t)=>{let n=await R.sendInvoice(e.body);t.json({ok:!0,data:n})})),I.post(`${B}/mpesa/bills/invoice/bulk`,z(async(e,t)=>{let n=await R.sendBulkInvoices(e.body);t.json({ok:!0,data:n})})),I.delete(`${B}/mpesa/bills/invoice`,z(async(e,t)=>{let n=await R.cancelInvoice(e.body);t.json({ok:!0,data:n})})),I.delete(`${B}/mpesa/bills/invoice/bulk`,z(async(e,t)=>{let n=await R.cancelBulkInvoices(e.body);t.json({ok:!0,data:n})})),I.post(`${B}/mpesa/bills/reconcile`,z(async(e,t)=>{let n=await R.reconcilePayment(e.body);t.json({ok:!0,data:n})})),I.get(`${B}/mpesa/health`,(e,t)=>{t.json({ok:!0,environment:R.environment,ts:new Date().toISOString()})}),I}function z(e){return(t,n,r)=>{e(t,n,r).catch(e=>{n.headersSent?r(e):N(n,e)})}}function B(e){return{mpesa:new x(e)}}export{B as createMpesaExpressClient,R as createMpesaExpressRouter,R as createMpesaRouter};
+import { a as PesafyError, i as Mpesa, n as getRoutePaths, r as createRouteHandlers, t as ROUTE_DEFINITIONS } from "../route-definitions.js";
+import express from "express";
+
+//#region src/adapters/shared/mount-express.ts
+/** All paths mounted by this adapter (parity anchor). */
+const EXPRESS_ROUTE_PATHS = getRoutePaths();
+function getIP(req) {
+	return req.headers["x-forwarded-for"]?.split(",")[0]?.trim() ?? req.ip ?? "";
+}
+function getRawBody(req) {
+	const raw = req.rawBody;
+	if (typeof raw === "string") return raw;
+	if (raw instanceof Buffer) return raw.toString("utf8");
+	if (req.body !== void 0) return JSON.stringify(req.body);
+}
+function sendHandlerResult(res, result, routeId) {
+	if (routeId === "health") {
+		res.json(result.body);
+		return;
+	}
+	if (result.type === "daraja") {
+		res.json(result.body);
+		return;
+	}
+	res.json({
+		ok: true,
+		data: result.body
+	});
+}
+function sendError(res, error) {
+	if (res.headersSent) return;
+	if (error instanceof PesafyError) {
+		res.status(error.statusCode ?? 400).json({
+			ok: false,
+			error: error.code,
+			message: error.message
+		});
+		return;
+	}
+	res.status(500).json({
+		ok: false,
+		error: "INTERNAL_ERROR",
+		message: "Unexpected server error"
+	});
+}
+function buildContext(req) {
+	const rawBody = getRawBody(req);
+	return {
+		body: req.body,
+		...rawBody !== void 0 ? { rawBody } : {},
+		requestIP: getIP(req),
+		getHeader: (name) => {
+			const v = req.headers[name.toLowerCase()];
+			return Array.isArray(v) ? v[0] : v;
+		}
+	};
+}
+function asyncHandler(fn) {
+	return (req, res, next) => {
+		fn(req, res, next).catch((err) => {
+			if (!res.headersSent) sendError(res, err);
+			else next(err);
+		});
+	};
+}
+/**
+* Mounts all M-PESA routes on an Express Router using shared handlers.
+*/
+function mountExpressRoutes(mpesa, config, router) {
+	const r = router ?? express.Router();
+	const prefix = config.routePrefix ?? "";
+	const handlers = createRouteHandlers(mpesa, config);
+	const register = (method) => (path, ...handlers) => {
+		r[method](path, ...handlers);
+	};
+	for (const route of ROUTE_DEFINITIONS) {
+		const path = `${prefix}${route.path}`;
+		const handler = handlers[route.id];
+		register(route.method.toLowerCase())(path, asyncHandler(async (req, res) => {
+			sendHandlerResult(res, await handler(buildContext(req)), route.id);
+		}));
+	}
+	return r;
+}
+
+//#endregion
+//#region src/adapters/express.ts
+/**
+* @file src/adapters/express.ts
+* Express adapter for pesafy — full M-PESA Daraja surface.
+*
+* Usage:
+*   import express from 'express'
+*   import { createMpesaRouter } from 'pesafy/adapters/express'
+*
+*   const app = express()
+*   app.use(express.json())
+*   app.use(createMpesaRouter(config))
+*/
+/**
+* Creates an Express Router with all M-PESA Daraja routes mounted.
+*
+* @example
+* import express from 'express'
+* import { createMpesaRouter } from 'pesafy/adapters/express'
+*
+* const app = express()
+* app.use(express.json())
+* app.use('/api', createMpesaRouter({
+*   consumerKey: process.env.MPESA_CONSUMER_KEY!,
+*   consumerSecret: process.env.MPESA_CONSUMER_SECRET!,
+*   environment: 'sandbox',
+*   callbackUrl: 'https://example.com/api/mpesa/stk/callback',
+*   lipaNaMpesaShortCode: '174379',
+*   lipaNaMpesaPassKey: process.env.MPESA_PASSKEY!,
+* }))
+*/
+function createMpesaRouter(config, router) {
+	return mountExpressRoutes(new Mpesa(config), config, router ?? express.Router());
+}
+function createMpesaExpressClient(config) {
+	return { mpesa: new Mpesa(config) };
+}
+
+//#endregion
+export { createMpesaExpressClient, createMpesaRouter as createMpesaExpressRouter, createMpesaRouter };
+//# sourceMappingURL=express.js.map

package/dist/adapters/express.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"express.js","names":[],"sources":["../../src/adapters/shared/mount-express.ts","../../src/adapters/express.ts"],"sourcesContent":["import express, {\n  type NextFunction,\n  type Request,\n  type RequestHandler,\n  type Response,\n  type Router,\n} from 'express'\nimport { Mpesa } from '../../mpesa'\nimport { PesafyError } from '../../utils/errors'\nimport { createRouteHandlers } from './handlers'\nimport { ROUTE_DEFINITIONS, getRoutePaths } from './route-definitions'\n\n/** All paths mounted by this adapter (parity anchor). */\nexport const EXPRESS_ROUTE_PATHS = getRoutePaths()\nimport type { HandlerContext, HandlerResult, MpesaAdapterConfig } from './types'\n\nfunction getIP(req: Request): string {\n  return (\n    (req.headers['x-forwarded-for'] as string | undefined)?.split(',')[0]?.trim() ?? req.ip ?? ''\n  )\n}\n\nfunction getRawBody(req: Request): string | undefined {\n  const raw = (req as Request & { rawBody?: string | Buffer }).rawBody\n  if (typeof raw === 'string') return raw\n  if (raw instanceof Buffer) return raw.toString('utf8')\n  if (req.body !== undefined) return JSON.stringify(req.body)\n  return undefined\n}\n\nfunction sendHandlerResult(res: Response, result: HandlerResult, routeId: string): void {\n  if (routeId === 'health') {\n    res.json(result.body)\n    return\n  }\n  if (result.type === 'daraja') {\n    res.json(result.body)\n    return\n  }\n  res.json({ ok: true, data: result.body })\n}\n\nfunction sendError(res: Response, error: unknown): void {\n  if (res.headersSent) return\n  if (error instanceof PesafyError) {\n    res.status(error.statusCode ?? 400).json({\n      ok: false,\n      error: error.code,\n      message: error.message,\n    })\n    return\n  }\n  res.status(500).json({ ok: false, error: 'INTERNAL_ERROR', message: 'Unexpected server error' })\n}\n\nfunction buildContext(req: Request): HandlerContext {\n  const rawBody = getRawBody(req)\n  return {\n    body: req.body,\n    ...(rawBody !== undefined ? { rawBody } : {}),\n    requestIP: getIP(req),\n    getHeader: (name) => {\n      const v = req.headers[name.toLowerCase()]\n      return Array.isArray(v) ? v[0] : v\n    },\n  }\n}\n\nfunction asyncHandler(\n  fn: (req: Request, res: Response, next: NextFunction) => Promise<void>,\n): RequestHandler {\n  return (req, res, next) => {\n    fn(req, res, next).catch((err) => {\n      if (!res.headersSent) sendError(res, err)\n      else next(err)\n    })\n  }\n}\n\n/**\n * Mounts all M-PESA routes on an Express Router using shared handlers.\n */\nexport function mountExpressRoutes(\n  mpesa: Mpesa,\n  config: MpesaAdapterConfig,\n  router?: Router,\n): Router {\n  const r: Router = router ?? express.Router()\n  const prefix = config.routePrefix ?? ''\n  const handlers = createRouteHandlers(mpesa, config)\n\n  const register =\n    (method: 'get' | 'post' | 'patch' | 'delete') =>\n    (path: string, ...handlers: RequestHandler[]) => {\n      r[method](path, ...handlers)\n    }\n\n  for (const route of ROUTE_DEFINITIONS) {\n    const path = `${prefix}${route.path}`\n    const handler = handlers[route.id]\n    const method = route.method.toLowerCase() as 'get' | 'post' | 'patch' | 'delete'\n\n    register(method)(\n      path,\n      asyncHandler(async (req, res) => {\n        const result = await handler(buildContext(req))\n        sendHandlerResult(res, result, route.id)\n      }),\n    )\n  }\n\n  return r\n}\n","/**\n * @file src/adapters/express.ts\n * Express adapter for pesafy — full M-PESA Daraja surface.\n *\n * Usage:\n *   import express from 'express'\n *   import { createMpesaRouter } from 'pesafy/adapters/express'\n *\n *   const app = express()\n *   app.use(express.json())\n *   app.use(createMpesaRouter(config))\n */\n\nimport express, { type Router } from 'express'\nimport { Mpesa } from '../mpesa'\nimport { mountExpressRoutes } from './shared/mount-express'\nimport type { MpesaAdapterConfig, StkFailurePayload, StkSuccessPayload } from './shared/types'\n\nexport type MpesaExpressConfig = MpesaAdapterConfig\nexport type { StkSuccessPayload, StkFailurePayload }\n\n/**\n * Creates an Express Router with all M-PESA Daraja routes mounted.\n *\n * @example\n * import express from 'express'\n * import { createMpesaRouter } from 'pesafy/adapters/express'\n *\n * const app = express()\n * app.use(express.json())\n * app.use('/api', createMpesaRouter({\n *   consumerKey: process.env.MPESA_CONSUMER_KEY!,\n *   consumerSecret: process.env.MPESA_CONSUMER_SECRET!,\n *   environment: 'sandbox',\n *   callbackUrl: 'https://example.com/api/mpesa/stk/callback',\n *   lipaNaMpesaShortCode: '174379',\n *   lipaNaMpesaPassKey: process.env.MPESA_PASSKEY!,\n * }))\n */\nexport function createMpesaRouter(config: MpesaExpressConfig, router?: Router): Router {\n  const mpesa = new Mpesa(config)\n  return mountExpressRoutes(mpesa, config, router ?? express.Router())\n}\n\nexport { createMpesaRouter as createMpesaExpressRouter }\n\nexport function createMpesaExpressClient(config: MpesaExpressConfig) {\n  return { mpesa: new Mpesa(config) }\n}\n"],"mappings":";;;;;AAaA,MAAa,sBAAsB,eAAe;AAGlD,SAAS,MAAM,KAAsB;AACnC,QACG,IAAI,QAAQ,oBAA2C,MAAM,IAAI,CAAC,IAAI,MAAM,IAAI,IAAI,MAAM;;AAI/F,SAAS,WAAW,KAAkC;CACpD,MAAM,MAAO,IAAgD;AAC7D,KAAI,OAAO,QAAQ,SAAU,QAAO;AACpC,KAAI,eAAe,OAAQ,QAAO,IAAI,SAAS,OAAO;AACtD,KAAI,IAAI,SAAS,OAAW,QAAO,KAAK,UAAU,IAAI,KAAK;;AAI7D,SAAS,kBAAkB,KAAe,QAAuB,SAAuB;AACtF,KAAI,YAAY,UAAU;AACxB,MAAI,KAAK,OAAO,KAAK;AACrB;;AAEF,KAAI,OAAO,SAAS,UAAU;AAC5B,MAAI,KAAK,OAAO,KAAK;AACrB;;AAEF,KAAI,KAAK;EAAE,IAAI;EAAM,MAAM,OAAO;EAAM,CAAC;;AAG3C,SAAS,UAAU,KAAe,OAAsB;AACtD,KAAI,IAAI,YAAa;AACrB,KAAI,iBAAiB,aAAa;AAChC,MAAI,OAAO,MAAM,cAAc,IAAI,CAAC,KAAK;GACvC,IAAI;GACJ,OAAO,MAAM;GACb,SAAS,MAAM;GAChB,CAAC;AACF;;AAEF,KAAI,OAAO,IAAI,CAAC,KAAK;EAAE,IAAI;EAAO,OAAO;EAAkB,SAAS;EAA2B,CAAC;;AAGlG,SAAS,aAAa,KAA8B;CAClD,MAAM,UAAU,WAAW,IAAI;AAC/B,QAAO;EACL,MAAM,IAAI;EACV,GAAI,YAAY,SAAY,EAAE,SAAS,GAAG,EAAE;EAC5C,WAAW,MAAM,IAAI;EACrB,YAAY,SAAS;GACnB,MAAM,IAAI,IAAI,QAAQ,KAAK,aAAa;AACxC,UAAO,MAAM,QAAQ,EAAE,GAAG,EAAE,KAAK;;EAEpC;;AAGH,SAAS,aACP,IACgB;AAChB,SAAQ,KAAK,KAAK,SAAS;AACzB,KAAG,KAAK,KAAK,KAAK,CAAC,OAAO,QAAQ;AAChC,OAAI,CAAC,IAAI,YAAa,WAAU,KAAK,IAAI;OACpC,MAAK,IAAI;IACd;;;;;;AAON,SAAgB,mBACd,OACA,QACA,QACQ;CACR,MAAM,IAAY,UAAU,QAAQ,QAAQ;CAC5C,MAAM,SAAS,OAAO,eAAe;CACrC,MAAM,WAAW,oBAAoB,OAAO,OAAO;CAEnD,MAAM,YACH,YACA,MAAc,GAAG,aAA+B;AAC/C,IAAE,QAAQ,MAAM,GAAG,SAAS;;AAGhC,MAAK,MAAM,SAAS,mBAAmB;EACrC,MAAM,OAAO,GAAG,SAAS,MAAM;EAC/B,MAAM,UAAU,SAAS,MAAM;AAG/B,WAFe,MAAM,OAAO,aAAa,CAEzB,CACd,MACA,aAAa,OAAO,KAAK,QAAQ;AAE/B,qBAAkB,KADH,MAAM,QAAQ,aAAa,IAAI,CAAC,EAChB,MAAM,GAAG;IACxC,CACH;;AAGH,QAAO;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;ACxET,SAAgB,kBAAkB,QAA4B,QAAyB;AAErF,QAAO,mBADO,IAAI,MAAM,OAAO,EACE,QAAQ,UAAU,QAAQ,QAAQ,CAAC;;AAKtE,SAAgB,yBAAyB,QAA4B;AACnE,QAAO,EAAE,OAAO,IAAI,MAAM,OAAO,EAAE"}