web-agent-bridge 3.4.0 → 3.8.1
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/LICENSE +84 -84
- package/README.ar.md +1563 -1304
- package/README.md +137 -298
- package/bin/agent-runner.js +474 -474
- package/bin/cli.js +237 -237
- package/bin/wab-init.js +244 -223
- package/bin/wab.js +80 -80
- package/examples/azure-dns-wab.js +83 -83
- package/examples/bidi-agent.js +119 -119
- package/examples/cloudflare-wab-dns.js +121 -121
- package/examples/cpanel-wab-dns.js +114 -114
- package/examples/cross-site-agent.js +91 -91
- package/examples/dns-discovery-agent.js +166 -166
- package/examples/gcp-dns-wab.js +76 -76
- package/examples/governance-agent.js +169 -169
- package/examples/mcp-agent.js +94 -94
- package/examples/next-app-router/README.md +44 -44
- package/examples/plesk-wab-dns.js +103 -103
- package/examples/puppeteer-agent.js +108 -108
- package/examples/route53-wab-dns.js +144 -144
- package/examples/saas-dashboard/README.md +55 -55
- package/examples/safe-mode-agent.js +96 -96
- package/examples/self-discovery.js +106 -0
- package/examples/shopify-hydrogen/README.md +74 -74
- package/examples/vision-agent.js +171 -171
- package/examples/wab-sign.js +74 -74
- package/examples/wab-verify.js +60 -60
- package/examples/wordpress-elementor/README.md +77 -77
- package/package.json +93 -93
- package/public/.well-known/agent-tools.json +180 -180
- package/public/.well-known/ai-assets.json +59 -59
- package/public/.well-known/security.txt +8 -8
- package/public/.well-known/wab.json +28 -28
- package/public/activate.html +448 -368
- package/public/adopt.html +236 -0
- package/public/adoption-metrics.html +188 -188
- package/public/agent-workspace.html +359 -349
- package/public/ai.html +198 -198
- package/public/api.html +397 -413
- package/public/azure-dns-integration.html +289 -289
- package/public/browser.html +486 -486
- package/public/cloudflare-integration.html +380 -380
- package/public/commander-dashboard.html +243 -243
- package/public/cookies.html +210 -210
- package/public/cpanel-integration.html +398 -398
- package/public/css/agent-workspace.css +1713 -1713
- package/public/css/premium.css +317 -317
- package/public/css/styles.css +1401 -1263
- package/public/dashboard-shieldlink.html +295 -0
- package/public/dashboard.html +711 -707
- package/public/dns.html +436 -436
- package/public/docs.html +588 -588
- package/public/enterprise-mesh.ar.html +80 -0
- package/public/enterprise-mesh.html +81 -0
- package/public/feed.xml +89 -89
- package/public/gcp-dns-integration.html +318 -318
- package/public/governance.ar.html +70 -0
- package/public/governance.html +69 -0
- package/public/growth.html +465 -465
- package/public/index.html +1372 -1266
- package/public/integrations.html +556 -556
- package/public/js/activate.js +449 -145
- package/public/js/agent-workspace.js +1740 -1740
- package/public/js/auth-nav.js +117 -65
- package/public/js/auth-redirect.js +12 -12
- package/public/js/cookie-consent.js +56 -56
- package/public/js/dns.js +438 -438
- package/public/js/wab-demo-page.js +721 -721
- package/public/js/ws-client.js +74 -74
- package/public/l-preview.html +242 -0
- package/public/llms-full.txt +360 -360
- package/public/llms.txt +125 -125
- package/public/login.html +85 -85
- package/public/mesh-dashboard.html +328 -328
- package/public/milestones.html +346 -0
- package/public/one-click.html +779 -0
- package/public/openapi.json +669 -669
- package/public/partners.ar.html +145 -0
- package/public/partners.html +143 -0
- package/public/phone-shield.html +281 -281
- package/public/plesk-integration.html +375 -375
- package/public/premium-dashboard.html +2489 -2489
- package/public/premium.html +793 -793
- package/public/privacy.html +297 -297
- package/public/provider-onboarding.html +172 -172
- package/public/provider-sandbox.html +134 -134
- package/public/providers.html +359 -359
- package/public/refusals.html +172 -0
- package/public/register.html +105 -105
- package/public/registrar-integrations.html +141 -141
- package/public/ring4.html +292 -0
- package/public/robots.txt +99 -99
- package/public/route53-integration.html +531 -531
- package/public/score.html +263 -0
- package/public/script/wab-consent.d.ts +36 -36
- package/public/script/wab-consent.js +104 -104
- package/public/script/wab-schema.js +131 -131
- package/public/script/wab.d.ts +108 -108
- package/public/script/wab.min.js +580 -580
- package/public/security.txt +8 -8
- package/public/shieldlink.html +244 -0
- package/public/shieldqr.html +231 -231
- package/public/sitemap.xml +13 -1
- package/public/terms.html +256 -256
- package/public/trust-graph-api.ar.html +92 -0
- package/public/trust-graph-api.html +91 -0
- package/public/wab-features.html +560 -0
- package/public/wab-trust.html +200 -200
- package/public/wab-truth.html +375 -0
- package/public/wab-vs-protocols.html +210 -210
- package/public/whitepaper.html +449 -449
- package/script/ai-agent-bridge.js +1754 -1754
- package/sdk/README.md +99 -99
- package/sdk/agent-mesh.js +449 -449
- package/sdk/auto-discovery.js +301 -288
- package/sdk/commander.js +262 -262
- package/sdk/governance.js +262 -262
- package/sdk/index.d.ts +464 -464
- package/sdk/index.js +649 -649
- package/sdk/multi-agent.js +318 -318
- package/sdk/safe-mode.js +221 -221
- package/sdk/safety-shield.js +219 -219
- package/sdk/schema-discovery.js +83 -83
- package/server/adapters/index.js +520 -520
- package/server/config/plans.js +412 -367
- package/server/config/secrets.js +102 -102
- package/server/control-plane/index.js +301 -301
- package/server/data-plane/index.js +354 -354
- package/server/index.js +790 -670
- package/server/llm/index.js +404 -404
- package/server/middleware/adminAuth.js +35 -35
- package/server/middleware/api-tier.js +170 -0
- package/server/middleware/auth.js +50 -50
- package/server/middleware/featureGate.js +88 -88
- package/server/middleware/rateLimits.js +100 -100
- package/server/middleware/sensitiveAction.js +157 -157
- package/server/middleware/wab-trust.js +141 -0
- package/server/migrations/001_add_analytics_indexes.sql +7 -7
- package/server/migrations/002_premium_features.sql +418 -418
- package/server/migrations/003_ads_integer_cents.sql +33 -33
- package/server/migrations/004_agent_os.sql +158 -158
- package/server/migrations/005_marketplace_metering.sql +126 -126
- package/server/migrations/006_growth_suite.sql +138 -0
- package/server/migrations/007_governance.sql +106 -106
- package/server/migrations/008_plans.sql +144 -144
- package/server/migrations/009_shieldqr.sql +30 -30
- package/server/migrations/010_extended_trust.sql +33 -33
- package/server/migrations/011_outreach.sql +47 -0
- package/server/migrations/012_shieldlink.sql +116 -0
- package/server/migrations/013_ct_monitor.sql +13 -0
- package/server/migrations/014_wab_advanced_features.sql +128 -0
- package/server/migrations/015_wab_truth_layer.sql +101 -0
- package/server/migrations/016_ring4_external_trust.sql +84 -0
- package/server/migrations/017_ring4_extensions.sql +69 -0
- package/server/migrations/018_commercial_foundations.sql +167 -0
- package/server/migrations/019_unify_tier_constraints.sql +133 -0
- package/server/models/adapters/index.js +33 -33
- package/server/models/adapters/mysql.js +183 -183
- package/server/models/adapters/postgresql.js +172 -172
- package/server/models/adapters/sqlite.js +7 -7
- package/server/models/db.js +740 -740
- package/server/observability/failure-analysis.js +337 -337
- package/server/observability/index.js +394 -394
- package/server/protocol/capabilities.js +223 -223
- package/server/protocol/index.js +243 -243
- package/server/protocol/schema.js +584 -584
- package/server/registry/certification.js +271 -271
- package/server/registry/index.js +326 -326
- package/server/routes/activate.js +478 -0
- package/server/routes/admin-outreach.js +239 -0
- package/server/routes/admin-plans.js +76 -76
- package/server/routes/admin-premium.js +674 -673
- package/server/routes/admin-shieldlink.js +137 -0
- package/server/routes/admin-shieldqr.js +90 -90
- package/server/routes/admin-trust-monitor.js +139 -83
- package/server/routes/admin.js +550 -549
- package/server/routes/adopt.js +61 -0
- package/server/routes/ads.js +130 -130
- package/server/routes/agent-workspace.js +540 -540
- package/server/routes/api-keys.js +127 -0
- package/server/routes/api.js +150 -150
- package/server/routes/auth.js +71 -71
- package/server/routes/billing.js +57 -57
- package/server/routes/commander.js +316 -316
- package/server/routes/customer-shieldlink.js +133 -0
- package/server/routes/demo-showcase.js +332 -332
- package/server/routes/demo-store.js +154 -154
- package/server/routes/diagnose.js +373 -0
- package/server/routes/discovery.js +2348 -2348
- package/server/routes/enterprise-mesh.js +170 -0
- package/server/routes/gateway.js +173 -173
- package/server/routes/governance-saas.js +203 -0
- package/server/routes/governance.js +208 -208
- package/server/routes/growth.js +1048 -0
- package/server/routes/intent.js +328 -0
- package/server/routes/license.js +251 -251
- package/server/routes/mesh.js +469 -469
- package/server/routes/noscript.js +543 -543
- package/server/routes/partners.js +201 -0
- package/server/routes/plans.js +33 -33
- package/server/routes/premium-v2.js +686 -686
- package/server/routes/premium.js +724 -724
- package/server/routes/providers.js +650 -650
- package/server/routes/reputation.js +411 -0
- package/server/routes/ring4.js +885 -0
- package/server/routes/runtime.js +2148 -2148
- package/server/routes/shieldlink.js +70 -0
- package/server/routes/shieldqr.js +88 -88
- package/server/routes/sovereign.js +465 -465
- package/server/routes/truth-layer.js +670 -0
- package/server/routes/universal.js +200 -200
- package/server/routes/unsubscribe.js +51 -0
- package/server/routes/wab-api.js +850 -850
- package/server/routes/wab-cache.js +282 -0
- package/server/runtime/container-worker.js +111 -111
- package/server/runtime/container.js +448 -448
- package/server/runtime/distributed-worker.js +362 -362
- package/server/runtime/event-bus.js +210 -210
- package/server/runtime/index.js +253 -253
- package/server/runtime/queue.js +599 -599
- package/server/runtime/replay.js +666 -666
- package/server/runtime/sandbox.js +266 -266
- package/server/runtime/scheduler.js +534 -534
- package/server/runtime/session-engine.js +293 -293
- package/server/runtime/state-manager.js +188 -188
- package/server/secrets/wab-signing-key.pem +3 -0
- package/server/secrets/wab-signing-pub.pem +3 -0
- package/server/security/cross-site-redactor.js +196 -196
- package/server/security/dry-run.js +180 -180
- package/server/security/human-gate-rate-limit.js +147 -147
- package/server/security/human-gate-transports.js +178 -178
- package/server/security/human-gate.js +281 -281
- package/server/security/index.js +368 -368
- package/server/security/intent-engine.js +245 -245
- package/server/security/reward-guard.js +171 -171
- package/server/security/rollback-store.js +239 -239
- package/server/security/token-scope.js +404 -404
- package/server/security/url-policy.js +139 -139
- package/server/services/adoption-agent.js +182 -0
- package/server/services/agent-chat.js +506 -506
- package/server/services/agent-learning.js +601 -601
- package/server/services/agent-memory.js +625 -625
- package/server/services/agent-mesh.js +555 -555
- package/server/services/agent-symphony.js +717 -717
- package/server/services/agent-tasks.js +1807 -1807
- package/server/services/api-key-engine.js +292 -292
- package/server/services/cluster.js +894 -894
- package/server/services/commander.js +738 -738
- package/server/services/edge-compute.js +440 -440
- package/server/services/email.js +233 -233
- package/server/services/fairness-engine.js +409 -0
- package/server/services/fairness.js +420 -0
- package/server/services/governance.js +466 -466
- package/server/services/hosted-runtime.js +205 -205
- package/server/services/lfd.js +635 -635
- package/server/services/local-ai.js +389 -389
- package/server/services/marketplace.js +270 -270
- package/server/services/metering.js +182 -182
- package/server/services/modules/affiliate-intelligence.js +93 -93
- package/server/services/modules/agent-firewall.js +90 -90
- package/server/services/modules/bounty.js +89 -89
- package/server/services/modules/collective-bargaining.js +92 -92
- package/server/services/modules/dark-pattern.js +66 -66
- package/server/services/modules/gov-intelligence.js +45 -45
- package/server/services/modules/neural.js +55 -55
- package/server/services/modules/notary.js +49 -49
- package/server/services/modules/price-time-machine.js +86 -86
- package/server/services/modules/protocol.js +104 -104
- package/server/services/negotiation.js +439 -439
- package/server/services/outreach-agent.js +312 -0
- package/server/services/plans.js +214 -214
- package/server/services/plugins.js +771 -771
- package/server/services/price-intelligence.js +566 -566
- package/server/services/price-shield.js +1137 -1137
- package/server/services/provider-clients.js +740 -740
- package/server/services/reputation.js +465 -465
- package/server/services/search-engine.js +357 -357
- package/server/services/security.js +513 -513
- package/server/services/self-healing.js +843 -843
- package/server/services/shieldlink.js +492 -0
- package/server/services/shieldqr.js +322 -322
- package/server/services/sovereign-shield.js +542 -542
- package/server/services/ssl-ct-monitor.js +224 -0
- package/server/services/ssl-inspector.js +42 -42
- package/server/services/ssl-monitor.js +167 -167
- package/server/services/stripe.js +206 -205
- package/server/services/swarm.js +788 -788
- package/server/services/universal-scraper.js +662 -662
- package/server/services/verification.js +481 -481
- package/server/services/vision.js +1163 -1163
- package/server/services/wab-crypto.js +178 -178
- package/server/utils/cache.js +125 -125
- package/server/utils/migrate.js +81 -81
- package/server/utils/safe-fetch.js +228 -228
- package/server/utils/secureFields.js +50 -50
- package/server/ws.js +161 -161
- package/templates/artisan-marketplace.yaml +104 -104
- package/templates/book-price-scout.yaml +98 -98
- package/templates/electronics-price-tracker.yaml +108 -108
- package/templates/flight-deal-hunter.yaml +113 -113
- package/templates/freelancer-direct.yaml +116 -116
- package/templates/grocery-price-compare.yaml +93 -93
- package/templates/hotel-direct-booking.yaml +113 -113
- package/templates/local-services.yaml +98 -98
- package/templates/olive-oil-tunisia.yaml +88 -88
- package/templates/organic-farm-fresh.yaml +101 -101
- package/templates/restaurant-direct.yaml +97 -97
- package/templates/ring4/banking-sovereign.yaml +55 -0
- package/templates/ring4/ecommerce-sovereign.yaml +58 -0
- package/templates/ring4/healthcare-sovereign.yaml +60 -0
|
@@ -1,205 +1,206 @@
|
|
|
1
|
-
/**
|
|
2
|
-
* Stripe Payment Integration Service
|
|
3
|
-
*/
|
|
4
|
-
|
|
5
|
-
const {
|
|
6
|
-
getPlatformSetting,
|
|
7
|
-
saveStripeCustomer,
|
|
8
|
-
getStripeCustomer,
|
|
9
|
-
saveStripeSubscription,
|
|
10
|
-
updateStripeSubscription,
|
|
11
|
-
getStripeSubscriptionBySubId,
|
|
12
|
-
savePayment,
|
|
13
|
-
updateSiteTier,
|
|
14
|
-
findSiteById
|
|
15
|
-
} = require('../models/db');
|
|
16
|
-
|
|
17
|
-
let stripe = null;
|
|
18
|
-
|
|
19
|
-
function getStripe() {
|
|
20
|
-
if (stripe) return stripe;
|
|
21
|
-
const key = process.env.STRIPE_SECRET_KEY || getPlatformSetting('stripe_secret_key');
|
|
22
|
-
if (!key) return null;
|
|
23
|
-
stripe = require('stripe')(key);
|
|
24
|
-
return stripe;
|
|
25
|
-
}
|
|
26
|
-
|
|
27
|
-
function getStripePrices() {
|
|
28
|
-
return {
|
|
29
|
-
starter: process.env.STRIPE_PRICE_STARTER || getPlatformSetting('stripe_price_starter'),
|
|
30
|
-
pro: process.env.STRIPE_PRICE_PRO || getPlatformSetting('stripe_price_pro'),
|
|
31
|
-
|
|
32
|
-
|
|
33
|
-
}
|
|
34
|
-
|
|
35
|
-
|
|
36
|
-
//
|
|
37
|
-
|
|
38
|
-
|
|
39
|
-
|
|
40
|
-
|
|
41
|
-
const
|
|
42
|
-
|
|
43
|
-
|
|
44
|
-
|
|
45
|
-
|
|
46
|
-
}
|
|
47
|
-
|
|
48
|
-
|
|
49
|
-
|
|
50
|
-
|
|
51
|
-
|
|
52
|
-
|
|
53
|
-
|
|
54
|
-
|
|
55
|
-
|
|
56
|
-
|
|
57
|
-
|
|
58
|
-
const
|
|
59
|
-
|
|
60
|
-
|
|
61
|
-
|
|
62
|
-
|
|
63
|
-
|
|
64
|
-
|
|
65
|
-
|
|
66
|
-
|
|
67
|
-
|
|
68
|
-
|
|
69
|
-
|
|
70
|
-
|
|
71
|
-
|
|
72
|
-
|
|
73
|
-
|
|
74
|
-
|
|
75
|
-
|
|
76
|
-
|
|
77
|
-
|
|
78
|
-
|
|
79
|
-
|
|
80
|
-
|
|
81
|
-
|
|
82
|
-
}
|
|
83
|
-
|
|
84
|
-
|
|
85
|
-
|
|
86
|
-
|
|
87
|
-
|
|
88
|
-
|
|
89
|
-
|
|
90
|
-
|
|
91
|
-
|
|
92
|
-
|
|
93
|
-
|
|
94
|
-
|
|
95
|
-
|
|
96
|
-
|
|
97
|
-
|
|
98
|
-
|
|
99
|
-
}
|
|
100
|
-
|
|
101
|
-
|
|
102
|
-
|
|
103
|
-
|
|
104
|
-
|
|
105
|
-
const
|
|
106
|
-
|
|
107
|
-
|
|
108
|
-
|
|
109
|
-
|
|
110
|
-
|
|
111
|
-
|
|
112
|
-
|
|
113
|
-
|
|
114
|
-
|
|
115
|
-
|
|
116
|
-
|
|
117
|
-
|
|
118
|
-
|
|
119
|
-
|
|
120
|
-
|
|
121
|
-
|
|
122
|
-
|
|
123
|
-
|
|
124
|
-
|
|
125
|
-
|
|
126
|
-
|
|
127
|
-
|
|
128
|
-
|
|
129
|
-
|
|
130
|
-
|
|
131
|
-
|
|
132
|
-
|
|
133
|
-
|
|
134
|
-
|
|
135
|
-
|
|
136
|
-
|
|
137
|
-
|
|
138
|
-
|
|
139
|
-
|
|
140
|
-
|
|
141
|
-
|
|
142
|
-
|
|
143
|
-
|
|
144
|
-
|
|
145
|
-
|
|
146
|
-
|
|
147
|
-
|
|
148
|
-
|
|
149
|
-
|
|
150
|
-
|
|
151
|
-
|
|
152
|
-
|
|
153
|
-
|
|
154
|
-
|
|
155
|
-
const
|
|
156
|
-
|
|
157
|
-
|
|
158
|
-
|
|
159
|
-
|
|
160
|
-
|
|
161
|
-
|
|
162
|
-
|
|
163
|
-
|
|
164
|
-
|
|
165
|
-
|
|
166
|
-
|
|
167
|
-
|
|
168
|
-
|
|
169
|
-
|
|
170
|
-
|
|
171
|
-
}
|
|
172
|
-
|
|
173
|
-
|
|
174
|
-
|
|
175
|
-
|
|
176
|
-
|
|
177
|
-
|
|
178
|
-
|
|
179
|
-
|
|
180
|
-
|
|
181
|
-
|
|
182
|
-
|
|
183
|
-
const
|
|
184
|
-
const
|
|
185
|
-
|
|
186
|
-
|
|
187
|
-
|
|
188
|
-
|
|
189
|
-
|
|
190
|
-
|
|
191
|
-
|
|
192
|
-
|
|
193
|
-
|
|
194
|
-
|
|
195
|
-
|
|
196
|
-
|
|
197
|
-
|
|
198
|
-
|
|
199
|
-
|
|
200
|
-
|
|
201
|
-
|
|
202
|
-
|
|
203
|
-
|
|
204
|
-
|
|
205
|
-
|
|
1
|
+
/**
|
|
2
|
+
* Stripe Payment Integration Service
|
|
3
|
+
*/
|
|
4
|
+
|
|
5
|
+
const {
|
|
6
|
+
getPlatformSetting,
|
|
7
|
+
saveStripeCustomer,
|
|
8
|
+
getStripeCustomer,
|
|
9
|
+
saveStripeSubscription,
|
|
10
|
+
updateStripeSubscription,
|
|
11
|
+
getStripeSubscriptionBySubId,
|
|
12
|
+
savePayment,
|
|
13
|
+
updateSiteTier,
|
|
14
|
+
findSiteById
|
|
15
|
+
} = require('../models/db');
|
|
16
|
+
|
|
17
|
+
let stripe = null;
|
|
18
|
+
|
|
19
|
+
function getStripe() {
|
|
20
|
+
if (stripe) return stripe;
|
|
21
|
+
const key = process.env.STRIPE_SECRET_KEY || getPlatformSetting('stripe_secret_key');
|
|
22
|
+
if (!key) return null;
|
|
23
|
+
stripe = require('stripe')(key);
|
|
24
|
+
return stripe;
|
|
25
|
+
}
|
|
26
|
+
|
|
27
|
+
function getStripePrices() {
|
|
28
|
+
return {
|
|
29
|
+
starter: process.env.STRIPE_PRICE_STARTER || getPlatformSetting('stripe_price_starter'),
|
|
30
|
+
pro: process.env.STRIPE_PRICE_PRO || getPlatformSetting('stripe_price_pro'),
|
|
31
|
+
business: process.env.STRIPE_PRICE_BUSINESS || getPlatformSetting('stripe_price_business'),
|
|
32
|
+
enterprise: process.env.STRIPE_PRICE_ENTERPRISE || getPlatformSetting('stripe_price_enterprise')
|
|
33
|
+
};
|
|
34
|
+
}
|
|
35
|
+
|
|
36
|
+
// Resolve a Stripe price id from either a plan id (DB) or a legacy tier name.
|
|
37
|
+
// Order: DB plan.stripe_price_id → env STRIPE_PRICE_<UPPER> → platform_settings → null.
|
|
38
|
+
function resolvePriceId(planOrTier) {
|
|
39
|
+
if (!planOrTier) return null;
|
|
40
|
+
try {
|
|
41
|
+
const plans = require('./plans');
|
|
42
|
+
const p = plans.getPlan(planOrTier);
|
|
43
|
+
if (p && p.stripe_price_id) return p.stripe_price_id;
|
|
44
|
+
} catch { /* DB layer not ready (tests) — fall through to legacy lookup */ }
|
|
45
|
+
const envKey = `STRIPE_PRICE_${String(planOrTier).toUpperCase()}`;
|
|
46
|
+
return process.env[envKey] || getPlatformSetting(`stripe_price_${planOrTier}`) || null;
|
|
47
|
+
}
|
|
48
|
+
|
|
49
|
+
async function createCheckoutSession({ userId, userEmail, siteId, tier, planId }) {
|
|
50
|
+
const site = findSiteById.get(siteId);
|
|
51
|
+
if (!site || site.user_id !== userId) {
|
|
52
|
+
throw new Error('Site not found or access denied');
|
|
53
|
+
}
|
|
54
|
+
|
|
55
|
+
const s = getStripe();
|
|
56
|
+
if (!s) throw new Error('Stripe not configured');
|
|
57
|
+
|
|
58
|
+
const planRef = planId || tier;
|
|
59
|
+
const priceId = resolvePriceId(planRef);
|
|
60
|
+
if (!priceId) throw new Error(`No price configured for plan: ${planRef}`);
|
|
61
|
+
|
|
62
|
+
// Get or create Stripe customer
|
|
63
|
+
let customer = getStripeCustomer(userId);
|
|
64
|
+
if (!customer) {
|
|
65
|
+
const stripeCustomer = await s.customers.create({ email: userEmail, metadata: { wab_user_id: userId } });
|
|
66
|
+
saveStripeCustomer(userId, stripeCustomer.id);
|
|
67
|
+
customer = { stripe_customer_id: stripeCustomer.id };
|
|
68
|
+
}
|
|
69
|
+
|
|
70
|
+
const baseUrl = process.env.BASE_URL || 'https://webagentbridge.com';
|
|
71
|
+
|
|
72
|
+
const session = await s.checkout.sessions.create({
|
|
73
|
+
customer: customer.stripe_customer_id,
|
|
74
|
+
mode: 'subscription',
|
|
75
|
+
payment_method_types: ['card'],
|
|
76
|
+
line_items: [{ price: priceId, quantity: 1 }],
|
|
77
|
+
metadata: { wab_user_id: userId, wab_site_id: siteId, tier: planRef, plan_id: planRef },
|
|
78
|
+
success_url: `${baseUrl}/dashboard?payment=success&session_id={CHECKOUT_SESSION_ID}`,
|
|
79
|
+
cancel_url: `${baseUrl}/dashboard?payment=cancelled`
|
|
80
|
+
});
|
|
81
|
+
|
|
82
|
+
return { sessionId: session.id, url: session.url };
|
|
83
|
+
}
|
|
84
|
+
|
|
85
|
+
async function createPortalSession(userId) {
|
|
86
|
+
const s = getStripe();
|
|
87
|
+
if (!s) throw new Error('Stripe not configured');
|
|
88
|
+
|
|
89
|
+
const customer = getStripeCustomer(userId);
|
|
90
|
+
if (!customer) throw new Error('No Stripe customer found');
|
|
91
|
+
|
|
92
|
+
const baseUrl = process.env.BASE_URL || 'https://webagentbridge.com';
|
|
93
|
+
|
|
94
|
+
const session = await s.billingPortal.sessions.create({
|
|
95
|
+
customer: customer.stripe_customer_id,
|
|
96
|
+
return_url: `${baseUrl}/dashboard`
|
|
97
|
+
});
|
|
98
|
+
|
|
99
|
+
return { url: session.url };
|
|
100
|
+
}
|
|
101
|
+
|
|
102
|
+
function handleWebhookEvent(event) {
|
|
103
|
+
switch (event.type) {
|
|
104
|
+
case 'checkout.session.completed': {
|
|
105
|
+
const session = event.data.object;
|
|
106
|
+
const { wab_user_id, wab_site_id, tier } = session.metadata || {};
|
|
107
|
+
if (wab_user_id && wab_site_id && session.subscription) {
|
|
108
|
+
saveStripeSubscription({
|
|
109
|
+
userId: wab_user_id,
|
|
110
|
+
siteId: wab_site_id,
|
|
111
|
+
stripeSubId: session.subscription,
|
|
112
|
+
stripePriceId: null,
|
|
113
|
+
tier: tier || 'starter',
|
|
114
|
+
status: 'active',
|
|
115
|
+
periodStart: new Date().toISOString(),
|
|
116
|
+
periodEnd: null
|
|
117
|
+
});
|
|
118
|
+
updateSiteTier.run(tier || 'starter', wab_site_id, wab_user_id);
|
|
119
|
+
}
|
|
120
|
+
break;
|
|
121
|
+
}
|
|
122
|
+
|
|
123
|
+
case 'invoice.payment_succeeded': {
|
|
124
|
+
const invoice = event.data.object;
|
|
125
|
+
if (invoice.subscription) {
|
|
126
|
+
const sub = getStripeSubscriptionBySubId(invoice.subscription);
|
|
127
|
+
if (sub) {
|
|
128
|
+
savePayment({
|
|
129
|
+
userId: sub.user_id,
|
|
130
|
+
stripePaymentId: invoice.payment_intent,
|
|
131
|
+
amount: invoice.amount_paid,
|
|
132
|
+
currency: invoice.currency,
|
|
133
|
+
status: 'succeeded',
|
|
134
|
+
description: `Subscription payment - ${sub.tier}`
|
|
135
|
+
});
|
|
136
|
+
updateStripeSubscription(invoice.subscription, {
|
|
137
|
+
status: 'active',
|
|
138
|
+
periodStart: new Date(invoice.period_start * 1000).toISOString(),
|
|
139
|
+
periodEnd: new Date(invoice.period_end * 1000).toISOString()
|
|
140
|
+
});
|
|
141
|
+
}
|
|
142
|
+
}
|
|
143
|
+
break;
|
|
144
|
+
}
|
|
145
|
+
|
|
146
|
+
case 'customer.subscription.updated': {
|
|
147
|
+
const subscription = event.data.object;
|
|
148
|
+
updateStripeSubscription(subscription.id, {
|
|
149
|
+
status: subscription.status === 'active' ? 'active' : subscription.status === 'past_due' ? 'past_due' : subscription.status === 'trialing' ? 'trialing' : 'cancelled'
|
|
150
|
+
});
|
|
151
|
+
break;
|
|
152
|
+
}
|
|
153
|
+
|
|
154
|
+
case 'customer.subscription.deleted': {
|
|
155
|
+
const subscription = event.data.object;
|
|
156
|
+
const sub = getStripeSubscriptionBySubId(subscription.id);
|
|
157
|
+
if (sub) {
|
|
158
|
+
updateStripeSubscription(subscription.id, { status: 'cancelled' });
|
|
159
|
+
updateSiteTier.run('free', sub.site_id, sub.user_id);
|
|
160
|
+
}
|
|
161
|
+
break;
|
|
162
|
+
}
|
|
163
|
+
|
|
164
|
+
case 'invoice.payment_failed': {
|
|
165
|
+
const invoice = event.data.object;
|
|
166
|
+
if (invoice.subscription) {
|
|
167
|
+
updateStripeSubscription(invoice.subscription, { status: 'past_due' });
|
|
168
|
+
}
|
|
169
|
+
break;
|
|
170
|
+
}
|
|
171
|
+
}
|
|
172
|
+
}
|
|
173
|
+
|
|
174
|
+
function isStripeConfigured() {
|
|
175
|
+
const key = process.env.STRIPE_SECRET_KEY || getPlatformSetting('stripe_secret_key');
|
|
176
|
+
return !!key;
|
|
177
|
+
}
|
|
178
|
+
|
|
179
|
+
/**
|
|
180
|
+
* Express webhook handler: verifies Stripe signature, then dispatches business logic.
|
|
181
|
+
*/
|
|
182
|
+
function handleWebhookRequest(req) {
|
|
183
|
+
const sig = req.headers['stripe-signature'];
|
|
184
|
+
const raw = req.body;
|
|
185
|
+
const whSecret = process.env.STRIPE_WEBHOOK_SECRET || getPlatformSetting('stripe_webhook_secret');
|
|
186
|
+
if (!whSecret) {
|
|
187
|
+
throw new Error('Stripe webhook secret not configured (STRIPE_WEBHOOK_SECRET or platform stripe_webhook_secret)');
|
|
188
|
+
}
|
|
189
|
+
if (!sig) {
|
|
190
|
+
throw new Error('Missing Stripe-Signature header');
|
|
191
|
+
}
|
|
192
|
+
const s = getStripe();
|
|
193
|
+
if (!s) throw new Error('Stripe not configured');
|
|
194
|
+
const event = s.webhooks.constructEvent(raw, sig, whSecret);
|
|
195
|
+
handleWebhookEvent(event);
|
|
196
|
+
}
|
|
197
|
+
|
|
198
|
+
module.exports = {
|
|
199
|
+
getStripe,
|
|
200
|
+
createCheckoutSession,
|
|
201
|
+
createPortalSession,
|
|
202
|
+
handleWebhookEvent,
|
|
203
|
+
handleWebhookRequest,
|
|
204
|
+
isStripeConfigured,
|
|
205
|
+
getStripePrices
|
|
206
|
+
};
|