vesant-sdk 1.6.2 → 1.6.3

package/dist/fraud/index.mjs

@@ -0,0 +1,604 @@
+// src/core/errors.ts
+var VesantError = class _VesantError extends Error {
+  constructor(message, code, statusCode, details) {
+    super(message);
+    this.code = code;
+    this.statusCode = statusCode;
+    this.details = details;
+    this.name = "VesantError";
+    Object.setPrototypeOf(this, _VesantError.prototype);
+  }
+};
+var NetworkError = class _NetworkError extends VesantError {
+  constructor(message, originalError) {
+    super(message, "NETWORK_ERROR");
+    this.originalError = originalError;
+    this.name = "NetworkError";
+    Object.setPrototypeOf(this, _NetworkError.prototype);
+  }
+};
+var ValidationError = class _ValidationError extends VesantError {
+  constructor(message, fields) {
+    super(message, "VALIDATION_ERROR", 400, { fields });
+    this.name = "ValidationError";
+    Object.setPrototypeOf(this, _ValidationError.prototype);
+  }
+};
+var ServiceUnavailableError = class _ServiceUnavailableError extends VesantError {
+  constructor(message = "Service unavailable") {
+    super(message, "SERVICE_UNAVAILABLE", 503);
+    this.name = "ServiceUnavailableError";
+    Object.setPrototypeOf(this, _ServiceUnavailableError.prototype);
+  }
+};
+var AuthenticationError = class _AuthenticationError extends VesantError {
+  constructor(message = "Authentication failed") {
+    super(message, "AUTHENTICATION_ERROR", 401);
+    this.name = "AuthenticationError";
+    Object.setPrototypeOf(this, _AuthenticationError.prototype);
+  }
+};
+var RateLimitError = class _RateLimitError extends VesantError {
+  constructor(retryAfter) {
+    super("Rate limit exceeded", "RATE_LIMIT_EXCEEDED", 429, { retryAfter });
+    this.retryAfter = retryAfter;
+    this.name = "RateLimitError";
+    Object.setPrototypeOf(this, _RateLimitError.prototype);
+  }
+};
+var TimeoutError = class _TimeoutError extends VesantError {
+  constructor(timeout) {
+    super(`Request timeout after ${timeout}ms`, "TIMEOUT", 408, { timeout });
+    this.timeout = timeout;
+    this.name = "TimeoutError";
+    Object.setPrototypeOf(this, _TimeoutError.prototype);
+  }
+};
+var CircuitBreakerOpenError = class _CircuitBreakerOpenError extends VesantError {
+  constructor() {
+    super("Circuit breaker is open \u2014 requests are temporarily blocked", "CIRCUIT_BREAKER_OPEN", 503);
+    this.name = "CircuitBreakerOpenError";
+    Object.setPrototypeOf(this, _CircuitBreakerOpenError.prototype);
+  }
+};
+
+// src/core/circuit-breaker.ts
+var CircuitBreaker = class {
+  constructor(config = {}) {
+    this.state = "closed";
+    this.failures = 0;
+    this.successes = 0;
+    this.lastFailureTime = null;
+    this.failureThreshold = config.failureThreshold ?? 5;
+    this.resetTimeout = config.resetTimeout ?? 3e4;
+    this.successThreshold = config.successThreshold ?? 1;
+  }
+  /**
+   * Check if a request can proceed through the circuit breaker.
+   */
+  canExecute() {
+    if (this.state === "closed") {
+      return true;
+    }
+    if (this.state === "open") {
+      const now = Date.now();
+      if (this.lastFailureTime && now - this.lastFailureTime >= this.resetTimeout) {
+        this.state = "half-open";
+        this.successes = 0;
+        return true;
+      }
+      return false;
+    }
+    return true;
+  }
+  /**
+   * Record a successful request.
+   */
+  onSuccess() {
+    if (this.state === "half-open") {
+      this.successes++;
+      if (this.successes >= this.successThreshold) {
+        this.state = "closed";
+        this.failures = 0;
+        this.successes = 0;
+        this.lastFailureTime = null;
+      }
+    } else if (this.state === "closed") {
+      this.failures = 0;
+    }
+  }
+  /**
+   * Record a failed request.
+   */
+  onFailure() {
+    this.failures++;
+    this.lastFailureTime = Date.now();
+    if (this.state === "half-open") {
+      this.state = "open";
+      this.successes = 0;
+    } else if (this.state === "closed" && this.failures >= this.failureThreshold) {
+      this.state = "open";
+    }
+  }
+  /**
+   * Get current circuit breaker status.
+   */
+  getStatus() {
+    return {
+      state: this.state,
+      failures: this.failures,
+      successes: this.successes,
+      lastFailureTime: this.lastFailureTime,
+      nextRetryTime: this.state === "open" && this.lastFailureTime ? this.lastFailureTime + this.resetTimeout : null
+    };
+  }
+  /**
+   * Reset the circuit breaker to its initial closed state.
+   */
+  reset() {
+    this.state = "closed";
+    this.failures = 0;
+    this.successes = 0;
+    this.lastFailureTime = null;
+  }
+};
+
+// src/core/rate-limiter.ts
+var RateLimitTracker = class {
+  constructor() {
+    this.limit = null;
+    this.remaining = null;
+    this.reset = null;
+    this.retryAfter = null;
+  }
+  /**
+   * Extract rate limit information from response headers.
+   */
+  updateFromHeaders(headers) {
+    const limit = headers.get("x-ratelimit-limit");
+    const remaining = headers.get("x-ratelimit-remaining");
+    const reset = headers.get("x-ratelimit-reset");
+    const retryAfter = headers.get("retry-after");
+    if (limit !== null) this.limit = parseInt(limit, 10);
+    if (remaining !== null) this.remaining = parseInt(remaining, 10);
+    if (reset !== null) this.reset = parseInt(reset, 10);
+    if (retryAfter !== null) this.retryAfter = parseInt(retryAfter, 10);
+  }
+  /**
+   * Check if the rate limit has been exceeded based on tracked headers.
+   */
+  isLimitExceeded() {
+    if (this.remaining !== null && this.remaining <= 0) {
+      if (this.reset !== null) {
+        const now = Math.floor(Date.now() / 1e3);
+        if (now >= this.reset) {
+          this.remaining = null;
+          this.reset = null;
+          this.retryAfter = null;
+          return false;
+        }
+      }
+      return true;
+    }
+    return false;
+  }
+  /**
+   * Get current rate limit status.
+   */
+  getStatus() {
+    return {
+      limit: this.limit,
+      remaining: this.remaining,
+      reset: this.reset,
+      retryAfter: this.retryAfter
+    };
+  }
+};
+
+// src/core/logger.ts
+function createConsoleLogger() {
+  return {
+    debug(message, meta) {
+      console.log(`[Vesant SDK] ${message}`, meta !== void 0 ? meta : "");
+    },
+    info(message, meta) {
+      console.info(`[Vesant SDK] ${message}`, meta !== void 0 ? meta : "");
+    },
+    warn(message, meta) {
+      console.warn(`[Vesant SDK] ${message}`, meta !== void 0 ? meta : "");
+    },
+    error(message, meta) {
+      console.error(`[Vesant SDK] ${message}`, meta !== void 0 ? meta : "");
+    }
+  };
+}
+
+// src/core/version.ts
+var SDK_VERSION = "1.6.2";
+
+// src/shared/browser-utils.ts
+function generateUUID() {
+  if (typeof crypto !== "undefined" && crypto.randomUUID) {
+    return crypto.randomUUID();
+  }
+  return "xxxxxxxx-xxxx-4xxx-yxxx-xxxxxxxxxxxx".replace(/[xy]/g, (c) => {
+    const r = Math.random() * 16 | 0;
+    const v = c === "x" ? r : r & 3 | 8;
+    return v.toString(16);
+  });
+}
+
+// src/core/client.ts
+var BaseClient = class {
+  constructor(config) {
+    this.circuitBreaker = null;
+    this.rateLimitTracker = null;
+    if (!config.baseURL?.trim()) {
+      throw new ValidationError("baseURL is required and must be a non-empty string", ["baseURL"]);
+    }
+    if (!config.tenantId?.trim()) {
+      throw new ValidationError("tenantId is required and must be a non-empty string", ["tenantId"]);
+    }
+    this.interceptors = config.interceptors || [];
+    this.logger = config.logger || createConsoleLogger();
+    let environment = config.environment;
+    const apiKey = config.apiKey || "";
+    if (apiKey.startsWith("pk_test_")) {
+      if (environment === "production") {
+        this.logger.warn('Sandbox API key (pk_test_*) used with environment: "production" \u2014 overriding to "sandbox"');
+      }
+      environment = "sandbox";
+    } else if (apiKey.startsWith("pk_live_") && environment === "sandbox") {
+      this.logger.warn('Production API key (pk_live_*) used with environment: "sandbox" \u2014 sandbox isolation will still be applied for backward compatibility');
+    }
+    this.config = {
+      ...config,
+      apiKey,
+      environment,
+      headers: config.headers || {},
+      timeout: config.timeout || 1e4,
+      retries: config.retries || 3,
+      debug: config.debug || false,
+      interceptors: this.interceptors,
+      logger: this.logger
+    };
+    if (config.circuitBreaker) {
+      this.circuitBreaker = new CircuitBreaker(config.circuitBreaker);
+    }
+    if (config.enableRateLimitTracking) {
+      this.rateLimitTracker = new RateLimitTracker();
+    }
+  }
+  /**
+   * Make an HTTP request with timeout and error handling
+   */
+  async request(endpoint, options = {}, serviceURL, requestOptions) {
+    const requestId = generateUUID();
+    if (this.circuitBreaker && !this.circuitBreaker.canExecute()) {
+      const error = new CircuitBreakerOpenError();
+      error.requestId = requestId;
+      throw error;
+    }
+    if (this.rateLimitTracker && this.rateLimitTracker.isLimitExceeded()) {
+      const status = this.rateLimitTracker.getStatus();
+      const error = new RateLimitError(status.retryAfter ?? void 0);
+      error.requestId = requestId;
+      throw error;
+    }
+    const url = `${serviceURL || this.config.baseURL}${endpoint}`;
+    const headers = {
+      "Content-Type": "application/json",
+      "X-Tenant-ID": this.config.tenantId,
+      "X-SDK-Version": `vesant-sdk-ts/${SDK_VERSION}`,
+      "X-Request-ID": requestId,
+      ...this.config.headers,
+      ...options.headers || {}
+    };
+    if (this.config.apiKey) {
+      headers["Authorization"] = `Bearer ${this.config.apiKey}`;
+    }
+    if (this.config.environment === "sandbox") {
+      headers["X-Sandbox"] = "true";
+    }
+    const method = (options.method || "GET").toUpperCase();
+    if (["POST", "PUT", "PATCH"].includes(method)) {
+      headers["Idempotency-Key"] = requestOptions?.idempotencyKey || generateUUID();
+    }
+    const controller = new AbortController();
+    const timeoutId = setTimeout(() => controller.abort(), this.config.timeout);
+    if (requestOptions?.signal) {
+      if (requestOptions.signal.aborted) {
+        controller.abort();
+      } else {
+        requestOptions.signal.addEventListener("abort", () => controller.abort(), { once: true });
+      }
+    }
+    try {
+      let finalOptions = { ...options, headers };
+      for (const interceptor of this.interceptors) {
+        if (interceptor.onRequest) {
+          finalOptions = await interceptor.onRequest(url, finalOptions);
+        }
+      }
+      if (this.config.debug) {
+        this.logger.debug(`${finalOptions.method || "GET"} ${endpoint}`);
+      }
+      const response = await fetch(url, {
+        ...finalOptions,
+        signal: controller.signal
+      });
+      clearTimeout(timeoutId);
+      if (this.rateLimitTracker) {
+        this.rateLimitTracker.updateFromHeaders(response.headers);
+      }
+      if (requestOptions?.responseType === "arraybuffer") {
+        if (!response.ok) {
+          let errData = {};
+          try {
+            errData = await response.json();
+          } catch {
+          }
+          this.handleErrorResponse(response.status, errData, requestId);
+        }
+        this.circuitBreaker?.onSuccess();
+        const buffer = await response.arrayBuffer();
+        return buffer;
+      }
+      let data;
+      try {
+        data = await response.json();
+      } catch {
+        if (!response.ok) {
+          this.handleErrorResponse(response.status, {
+            error: `HTTP ${response.status}`,
+            message: response.statusText
+          }, requestId);
+        }
+        this.circuitBreaker?.onSuccess();
+        return void 0;
+      }
+      if (!response.ok) {
+        this.handleErrorResponse(response.status, data || {}, requestId);
+      }
+      this.circuitBreaker?.onSuccess();
+      let result = data;
+      for (const interceptor of this.interceptors) {
+        if (interceptor.onResponse) {
+          result = await interceptor.onResponse(url, result);
+        }
+      }
+      if (this.config.debug) {
+        this.logger.debug(`Response: ${response.status}`);
+      }
+      return result;
+    } catch (error) {
+      clearTimeout(timeoutId);
+      if (error instanceof VesantError && error.statusCode && error.statusCode >= 500) {
+        this.circuitBreaker?.onFailure();
+      } else if (error instanceof NetworkError || error instanceof TimeoutError) {
+        this.circuitBreaker?.onFailure();
+      }
+      if (error instanceof VesantError && !error.requestId) {
+        error.requestId = requestId;
+      }
+      if (error instanceof Error) {
+        for (const interceptor of this.interceptors) {
+          if (interceptor.onError) {
+            await interceptor.onError(url, error);
+          }
+        }
+      }
+      if (error instanceof Error) {
+        if (error.name === "AbortError") {
+          if (requestOptions?.signal?.aborted) {
+            const abortError = new VesantError("Request aborted", "REQUEST_ABORTED");
+            abortError.requestId = requestId;
+            throw abortError;
+          }
+          this.circuitBreaker?.onFailure();
+          const timeoutError = new TimeoutError(this.config.timeout);
+          timeoutError.requestId = requestId;
+          throw timeoutError;
+        }
+        if (error instanceof VesantError) {
+          throw error;
+        }
+      }
+      const networkError = new NetworkError("Network request failed", error);
+      networkError.requestId = requestId;
+      this.circuitBreaker?.onFailure();
+      throw networkError;
+    }
+  }
+  /**
+   * Make an HTTP request with retry logic
+   */
+  async requestWithRetry(endpoint, options = {}, serviceURL, retries = this.config.retries, requestOptions) {
+    let lastError;
+    for (let attempt = 0; attempt <= retries; attempt++) {
+      try {
+        return await this.request(endpoint, options, serviceURL, requestOptions);
+      } catch (error) {
+        lastError = error instanceof Error ? error : new Error("Unknown error");
+        if (requestOptions?.signal?.aborted) {
+          throw lastError;
+        }
+        if (lastError instanceof VesantError && lastError.statusCode && lastError.statusCode >= 400 && lastError.statusCode < 500 && lastError.statusCode !== 429) {
+          throw lastError;
+        }
+        if (attempt === retries) {
+          break;
+        }
+        let delay;
+        if (lastError instanceof RateLimitError && lastError.retryAfter) {
+          delay = lastError.retryAfter * 1e3;
+        } else {
+          delay = Math.min(1e3 * Math.pow(2, attempt) + Math.random() * 1e3, 1e4);
+        }
+        await new Promise((resolve) => setTimeout(resolve, delay));
+        if (this.config.debug) {
+          this.logger.debug(`Retry attempt ${attempt + 1}/${retries} after ${delay.toFixed(0)}ms`);
+        }
+      }
+    }
+    throw new NetworkError(`Request failed after ${retries} retries`, lastError);
+  }
+  /**
+   * Handle error responses from API
+   */
+  handleErrorResponse(status, data, requestId) {
+    const message = data.error || data.message || `HTTP ${status}`;
+    const createError = () => {
+      switch (status) {
+        case 400:
+          return new VesantError(message, "BAD_REQUEST", 400);
+        case 401:
+          return new AuthenticationError(message);
+        case 403:
+          return new VesantError(message, "FORBIDDEN", 403);
+        case 404:
+          return new VesantError(message, "NOT_FOUND", 404);
+        case 409:
+          return new VesantError(message, "DUPLICATE_PROFILE", 409);
+        case 429: {
+          const retryAfter = data.retry_after || data.retryAfter;
+          return new RateLimitError(retryAfter);
+        }
+        case 500:
+        case 502:
+        case 503:
+        case 504:
+          return new ServiceUnavailableError(message);
+        default:
+          return new VesantError(message, "UNKNOWN_ERROR", status);
+      }
+    };
+    const error = createError();
+    if (requestId) {
+      error.requestId = requestId;
+    }
+    throw error;
+  }
+  /**
+   * Build query string from parameters
+   */
+  buildQueryString(params) {
+    const query = new URLSearchParams();
+    Object.entries(params).forEach(([key, value]) => {
+      if (value !== void 0 && value !== null) {
+        if (Array.isArray(value)) {
+          value.forEach((item) => query.append(key, String(item)));
+        } else {
+          query.append(key, String(value));
+        }
+      }
+    });
+    const queryString = query.toString();
+    return queryString ? `?${queryString}` : "";
+  }
+  /**
+   * Update client configuration
+   */
+  updateConfig(config) {
+    this.config = {
+      ...this.config,
+      ...config,
+      headers: {
+        ...this.config.headers,
+        ...config.headers || {}
+      }
+    };
+    if (config.logger) {
+      this.logger = config.logger;
+    }
+    if (config.interceptors) {
+      this.interceptors = config.interceptors;
+    }
+  }
+  /**
+   * Get current configuration (readonly)
+   */
+  getConfig() {
+    return { ...this.config };
+  }
+  /**
+   * Get rate limit status from tracked response headers.
+   */
+  getRateLimitStatus() {
+    return this.rateLimitTracker?.getStatus() ?? null;
+  }
+  /**
+   * Get circuit breaker status.
+   */
+  getCircuitBreakerStatus() {
+    return this.circuitBreaker?.getStatus() ?? null;
+  }
+  /**
+   * Health check endpoint
+   */
+  async healthCheck() {
+    return this.request("/api/v1/health");
+  }
+};
+
+// src/fraud/client.ts
+var FraudClient = class extends BaseClient {
+  /**
+   * Submit a single fraud event for scoring.
+   */
+  async scoreEvent(request, requestOptions) {
+    this.validateScoreRequest(request);
+    return this.requestWithRetry(
+      "/api/v1/fraud/score",
+      {
+        method: "POST",
+        body: JSON.stringify(request)
+      },
+      void 0,
+      void 0,
+      requestOptions
+    );
+  }
+  /**
+   * Submit multiple fraud events for scoring.
+   */
+  async scoreEventsBulk(requests, requestOptions) {
+    if (!Array.isArray(requests) || requests.length === 0) {
+      throw new ValidationError(
+        "Invalid bulk score request: at least one score request is required",
+        ["requests"]
+      );
+    }
+    requests.forEach((request, index) => this.validateScoreRequest(request, index));
+    return this.requestWithRetry(
+      "/api/v1/fraud/score/bulk",
+      {
+        method: "POST",
+        body: JSON.stringify(requests)
+      },
+      void 0,
+      void 0,
+      requestOptions
+    );
+  }
+  validateScoreRequest(request, index) {
+    const errors = [];
+    const prefix = index === void 0 ? "" : `requests[${index}].`;
+    if (!request.customer_id?.trim()) {
+      errors.push(`${prefix}customer_id is required`);
+    }
+    if (!request.sift_user_id?.trim()) {
+      errors.push(`${prefix}sift_user_id is required`);
+    }
+    if (!request.event_type?.trim()) {
+      errors.push(`${prefix}event_type is required`);
+    }
+    if (errors.length > 0) {
+      throw new ValidationError(`Invalid fraud score request: ${errors.join(", ")}`, errors);
+    }
+  }
+};
+
+export { FraudClient };
+//# sourceMappingURL=index.mjs.map
+//# sourceMappingURL=index.mjs.map