x402z-server 0.1.0 → 0.1.3

package/README.md

@@ -17,7 +17,12 @@ pnpm add x402z-server
 ## Usage
 
 ```ts
-import { createX402zServer } from "x402z-server";
+import {
+  buildAcceptsFromConfigs,
+  buildConfidentialServerConfigFromSchemeConfig,
+  createX402zServer,
+} from "x402z-server";
+import { SCHEME_CONFIG } from "x402z-scheme-config";
 import { createRelayer, SepoliaConfig } from "x402z-shared";
 
 const relayer = await createRelayer({
@@ -25,34 +30,39 @@ const relayer = await createRelayer({
   network: "https://sepolia.infura.io/v3/...",
 });
 
+const allowedPayments = [
+  {
+    method: "exact.USDC.base",
+    payTo: "0xPayTo",
+    price: "$0.01",
+  },
+  {
+    method: SCHEME_CONFIG["erc7984-mind-v1"].CONFIDENTIAL_USDC.sepolia,
+    payTo: "0xPayTo",
+    price: "1.0",
+    maxTimeoutSeconds: 300,
+  },
+] as const;
+
+const confidentialEntry = SCHEME_CONFIG["erc7984-mind-v1"].CONFIDENTIAL_USDC.sepolia;
+
 const server = await createX402zServer({
   facilitatorUrl: "http://localhost:8040",
-  confidential: {
-    asset: "0xToken",
-    eip712: { name: "FHEToken Confidential", version: "1" },
-    decimals: 6,
-    batcherAddress: "0xBatcher",
+  confidential: buildConfidentialServerConfigFromSchemeConfig({
+    config: confidentialEntry,
     signer: { address, signTypedData },
     relayer,
-  },
+  }),
   routes: {
     "GET /demo": {
-      accepts: [
-        {
-          scheme: "erc7984-mind-v1",
-          payTo: "0xPayTo",
-          price: "1.0",
-          network: "eip155:11155111",
-          maxTimeoutSeconds: 300,
-        },
-      ],
+      accepts: buildAcceptsFromConfigs(allowedPayments),
       description: "Demo content",
       mimeType: "text/plain",
+      onPaid: async () => ({
+        body: "demo content from server",
+      }),
     },
   },
-  onPaid: async () => ({
-    body: "demo content from server",
-  }),
 });
 
 server.listen(8080);
@@ -62,12 +72,12 @@ server.listen(8080);
 
 - `createX402zServer(config)`
   - `facilitatorUrl` (required): HTTP facilitator endpoint
-  - `confidential` (optional): confidential scheme config (required if any route uses `erc7984-mind-v1`)
-  - `confidential.signer`: signer used to decrypt transfer amounts
-  - `confidential.relayer`: FHEVM relayer instance used for decryption
-  - `confidential.asset`, `confidential.eip712`, `confidential.decimals`, `confidential.batcherAddress`: optional overrides; when omitted, defaults are pulled from the facilitator `/supported` response
-  - `routes`: map of `METHOD /path` to payment requirements
-  - `onPaid`: handler for successful payment (returns response body + optional headers)
+- `confidential` (optional): confidential scheme config (required if any route uses `erc7984-mind-v1`)
+- `confidential.signer`: signer used to decrypt transfer amounts
+- `confidential.relayer`: FHEVM relayer instance used for decryption
+- `routes`: map of `METHOD /path` to payment requirements
+- `routes["METHOD /path"].onRequest`: optional pre-payment hook; return a response to short-circuit
+- `routes["METHOD /path"].onPaid`: handler for successful payment (returns response body + optional headers)
 
 ## Examples
 
@@ -92,19 +102,54 @@ const server = await createX402zServer({
       ],
       description: "Exact USDC payment demo",
       mimeType: "text/plain",
+      onPaid: async () => ({ body: "paid content" }),
     },
   },
-  onPaid: async () => ({ body: "paid content" }),
 });
 
 server.listen(8090);
 ```
 
+## Choosing Payment Methods (Server)
+
+Server routes accept an ordered list of payment methods, each paired with its own `payTo` and `price`.
+
+You can specify methods in two ways:
+
+1) **Name string** (scheme + token + network alias):
+```ts
+const method = "exact.USDC.base";
+```
+
+2) **Config entry** (from `SCHEME_CONFIG`):
+```ts
+const method = SCHEME_CONFIG.exact.USDC.base;
+```
+
+Build your `accepts` array from these entries:
+```ts
+const accepts = buildAcceptsFromConfigs([
+  { method: "exact.USDC.base", payTo, price: "$0.01" },
+  { method: SCHEME_CONFIG["erc7984-mind-v1"].CONFIDENTIAL_USDC.sepolia, payTo, price: "1.0" },
+]);
+```
+
 ## Notes
 
 - Confidential scheme name: `erc7984-mind-v1`
 - Exact scheme name: `exact`
 - `confidential.batcherAddress` is required in requirements; clients bind encrypted inputs to it.
+- Scheme defaults are exported as `SCHEME_CONFIG` from `x402z-scheme-config` (and re-exported by `x402z-server`). Keys are `scheme -> token -> networkAlias` (e.g., `SCHEME_CONFIG.exact.USDC.base`).
+- You can also refer to a method by its string name (e.g., `exact.USDC.base`). A full list is available as `SCHEME_CONFIG_NAMES`.
+
+## Choosing Schemes/Networks
+
+Select supported methods using `SCHEME_CONFIG` entries in your server code. Pair each entry with its own `payTo` and `price`.
+
+## Scheme Naming Guidance
+
+- Use a single scheme name when the payment flow is identical and only the asset changes (for example, multiple ERC-20 tokens using the exact same exact-scheme logic).
+- Introduce a new scheme name only when the payment flow differs (for example, different contract method, different typed data, or different authorization logic).
 
 ## API surface
 
@@ -112,6 +157,12 @@ Exports:
 - `X402zEvmServerScheme`: server scheme implementation for erc7984-mind-v1.
 - `registerX402zEvmServerScheme`: registers the scheme with x402 server.
 - `createX402zServer`: helper to configure the paywalled server.
+- `buildExactAccept`, `buildConfidentialAccept`, `buildConfidentialServerConfig`: helpers to construct accept items and confidential config.
+- `buildAcceptsFromConfigs`: build `accepts` from `SCHEME_CONFIG` entries paired with `payTo`/`price`.
+- `SCHEME_CONFIG`: full scheme/token/network config (addresses, network, decimals, EIP-712, batcher). Source of truth lives in `x402z-scheme-config`.
+- `buildConfidentialServerConfigFromSchemeConfig`: build confidential server config from a `SCHEME_CONFIG` entry.
+- `SCHEME_CONFIG_NAMES`: all supported method names as strings (e.g., `exact.USDC.base`).
+- `getSchemeConfigByName`: resolve a method name string to its config entry.
 - `x402ResourceServer`: core x402 resource server.
 - `HTTPFacilitatorClient`: HTTP facilitator client wrapper.
 - `x402HTTPResourceServer`: HTTP resource server helpers.
@@ -146,3 +197,7 @@ Types:
 - `UnpaidResponseBody`: unpaid response shape.
 - `UnpaidResponseResult`: unpaid response result.
 - re-exported types from `@x402/core/types`: shared x402 types.
+- `ExactTokenConfig`, `ConfidentialTokenConfig`: resolved token config for exact/confidential schemes.
+- `ExactTokenSymbol`, `ConfidentialTokenSymbol`: allowed token symbols per scheme.
+- `PaymentMethodPricing`: `{ method, payTo, price, maxTimeoutSeconds? }` for `buildAcceptsFromConfigs`.
+- `BuildConfidentialServerConfigFromConfigInput`: input shape for `buildConfidentialServerConfigFromSchemeConfig`.

package/dist/index.d.mts

@@ -4,6 +4,8 @@ import { x402ResourceServer } from '@x402/core/server';
 export { x402ResourceServer } from '@x402/core/server';
 import * as http from 'http';
 import { RelayerSigner, RelayerInstance } from 'x402z-shared';
+import { ExactTokenConfig, SchemeConfigName, ConfidentialTokenConfig } from 'x402z-scheme-config';
+export { ConfidentialTokenConfig, ConfidentialTokenSymbol, ExactTokenConfig, ExactTokenSymbol, SCHEME_CONFIG, SCHEME_CONFIG_NAMES, SchemeConfig, SchemeConfigName, getSchemeConfigByName, isConfidentialTokenConfig } from 'x402z-scheme-config';
 export { CompiledRoute, DynamicPayTo, DynamicPrice, FacilitatorClient, FacilitatorConfig, HTTPAdapter, HTTPFacilitatorClient, HTTPProcessResult, HTTPRequestContext, HTTPResponseInstructions, PaymentOption, PaywallConfig, PaywallProvider, ProcessSettleFailureResponse, ProcessSettleResultResponse, ProcessSettleSuccessResponse, RouteConfigurationError, RouteValidationError, RoutesConfig, UnpaidResponseBody, UnpaidResponseResult, x402HTTPResourceServer } from '@x402/core/http';
 
 type NoScheme$1 = {
@@ -58,11 +60,6 @@ type X402zRouteAccept = {
 type NoScheme = {
     scheme?: never;
 };
-type X402zRouteOptions = NoScheme & {
-    accepts: X402zRouteAccept[];
-    description: string;
-    mimeType: string;
-};
 type X402zRouteHandler = (args: {
     paymentRequirements: PaymentRequirements;
     settleHeaders: Record<string, string>;
@@ -71,6 +68,27 @@ type X402zRouteHandler = (args: {
     headers?: Record<string, string>;
     body: string;
 }>;
+type X402zRequestHandler = (args: {
+    method: string;
+    path: string;
+    url: string;
+    headers: Record<string, string>;
+}) => Promise<{
+    status?: number;
+    headers?: Record<string, string>;
+    body: string;
+} | void> | {
+    status?: number;
+    headers?: Record<string, string>;
+    body: string;
+} | void;
+type X402zRouteOptions = NoScheme & {
+    accepts: X402zRouteAccept[];
+    description: string;
+    mimeType: string;
+    onRequest?: X402zRequestHandler;
+    onPaid: X402zRouteHandler;
+};
 type X402zBaseServerOptions = {
     facilitatorUrl: string;
     debug?: boolean;
@@ -99,9 +117,64 @@ type X402zConfidentialServerConfig = {
 } & NoScheme;
 type X402zServerOptions = X402zBaseServerOptions & {
     routes: Record<string, X402zRouteOptions>;
-    onPaid: X402zRouteHandler;
     confidential?: X402zConfidentialServerConfig;
 } & NoScheme;
 declare function createX402zServer(config: X402zServerOptions): Promise<http.Server<typeof http.IncomingMessage, typeof http.ServerResponse>>;
 
-export { type X402zConfidentialServerConfig, X402zEvmServerScheme, type X402zRouteAccept, type X402zRouteHandler, type X402zRouteOptions, type X402zServerNetworkOptions, type X402zServerOptions, type X402zServerRegistrationOptions, type X402zServerSchemeOptions, createX402zServer, registerX402zEvmServerScheme };
+type ExactAcceptInput = {
+    network: Network;
+    payTo: string;
+    price: Price;
+    asset: `0x${string}`;
+    decimals: number;
+    eip712Name: string;
+    eip712Version: string;
+    maxTimeoutSeconds?: number;
+};
+type ConfidentialAcceptInput = {
+    network: Network;
+    payTo: string;
+    price: string;
+    maxTimeoutSeconds?: number;
+};
+type ExactMethodPricing = {
+    method: ExactTokenConfig | SchemeConfigName;
+    payTo: string;
+    price: Price;
+    maxTimeoutSeconds?: number;
+};
+type ConfidentialMethodPricing = {
+    method: ConfidentialTokenConfig | SchemeConfigName;
+    payTo: string;
+    price: string;
+    maxTimeoutSeconds?: number;
+};
+type PaymentMethodPricing = ExactMethodPricing | ConfidentialMethodPricing;
+type ConfidentialRuntimeInput = {
+    signer: X402zConfidentialServerConfig["signer"];
+    relayer: X402zConfidentialServerConfig["relayer"];
+    resourceHash?: X402zConfidentialServerConfig["resourceHash"];
+};
+type ConfidentialConfigInput = {
+    asset: `0x${string}`;
+    eip712: {
+        name: string;
+        version: string;
+    };
+    decimals: number;
+    batcherAddress: `0x${string}`;
+    resourceHash?: `0x${string}`;
+};
+type BuildConfidentialServerConfigFromConfigInput = {
+    config: ConfidentialTokenConfig | SchemeConfigName | null | undefined;
+    signer: X402zConfidentialServerConfig["signer"];
+    relayer: X402zConfidentialServerConfig["relayer"];
+    resourceHash?: X402zConfidentialServerConfig["resourceHash"];
+};
+declare function buildExactAccept(config: ExactAcceptInput): X402zRouteAccept;
+declare function buildConfidentialAccept(config: ConfidentialAcceptInput): X402zRouteAccept;
+declare function buildAcceptsFromConfigs(methods: PaymentMethodPricing[]): X402zRouteAccept[];
+declare function buildConfidentialServerConfig(config: ConfidentialConfigInput, runtime: ConfidentialRuntimeInput): X402zConfidentialServerConfig;
+declare function buildConfidentialServerConfigFromSchemeConfig(input: BuildConfidentialServerConfigFromConfigInput): X402zConfidentialServerConfig | undefined;
+
+export { type BuildConfidentialServerConfigFromConfigInput, type ConfidentialAcceptInput, type ExactAcceptInput, type PaymentMethodPricing, type X402zConfidentialServerConfig, X402zEvmServerScheme, type X402zRouteAccept, type X402zRouteHandler, type X402zRouteOptions, type X402zServerNetworkOptions, type X402zServerOptions, type X402zServerRegistrationOptions, type X402zServerSchemeOptions, buildAcceptsFromConfigs, buildConfidentialAccept, buildConfidentialServerConfig, buildConfidentialServerConfigFromSchemeConfig, buildExactAccept, createX402zServer, registerX402zEvmServerScheme };

package/dist/index.d.ts

@@ -4,6 +4,8 @@ import { x402ResourceServer } from '@x402/core/server';
 export { x402ResourceServer } from '@x402/core/server';
 import * as http from 'http';
 import { RelayerSigner, RelayerInstance } from 'x402z-shared';
+import { ExactTokenConfig, SchemeConfigName, ConfidentialTokenConfig } from 'x402z-scheme-config';
+export { ConfidentialTokenConfig, ConfidentialTokenSymbol, ExactTokenConfig, ExactTokenSymbol, SCHEME_CONFIG, SCHEME_CONFIG_NAMES, SchemeConfig, SchemeConfigName, getSchemeConfigByName, isConfidentialTokenConfig } from 'x402z-scheme-config';
 export { CompiledRoute, DynamicPayTo, DynamicPrice, FacilitatorClient, FacilitatorConfig, HTTPAdapter, HTTPFacilitatorClient, HTTPProcessResult, HTTPRequestContext, HTTPResponseInstructions, PaymentOption, PaywallConfig, PaywallProvider, ProcessSettleFailureResponse, ProcessSettleResultResponse, ProcessSettleSuccessResponse, RouteConfigurationError, RouteValidationError, RoutesConfig, UnpaidResponseBody, UnpaidResponseResult, x402HTTPResourceServer } from '@x402/core/http';
 
 type NoScheme$1 = {
@@ -58,11 +60,6 @@ type X402zRouteAccept = {
 type NoScheme = {
     scheme?: never;
 };
-type X402zRouteOptions = NoScheme & {
-    accepts: X402zRouteAccept[];
-    description: string;
-    mimeType: string;
-};
 type X402zRouteHandler = (args: {
     paymentRequirements: PaymentRequirements;
     settleHeaders: Record<string, string>;
@@ -71,6 +68,27 @@ type X402zRouteHandler = (args: {
     headers?: Record<string, string>;
     body: string;
 }>;
+type X402zRequestHandler = (args: {
+    method: string;
+    path: string;
+    url: string;
+    headers: Record<string, string>;
+}) => Promise<{
+    status?: number;
+    headers?: Record<string, string>;
+    body: string;
+} | void> | {
+    status?: number;
+    headers?: Record<string, string>;
+    body: string;
+} | void;
+type X402zRouteOptions = NoScheme & {
+    accepts: X402zRouteAccept[];
+    description: string;
+    mimeType: string;
+    onRequest?: X402zRequestHandler;
+    onPaid: X402zRouteHandler;
+};
 type X402zBaseServerOptions = {
     facilitatorUrl: string;
     debug?: boolean;
@@ -99,9 +117,64 @@ type X402zConfidentialServerConfig = {
 } & NoScheme;
 type X402zServerOptions = X402zBaseServerOptions & {
     routes: Record<string, X402zRouteOptions>;
-    onPaid: X402zRouteHandler;
     confidential?: X402zConfidentialServerConfig;
 } & NoScheme;
 declare function createX402zServer(config: X402zServerOptions): Promise<http.Server<typeof http.IncomingMessage, typeof http.ServerResponse>>;
 
-export { type X402zConfidentialServerConfig, X402zEvmServerScheme, type X402zRouteAccept, type X402zRouteHandler, type X402zRouteOptions, type X402zServerNetworkOptions, type X402zServerOptions, type X402zServerRegistrationOptions, type X402zServerSchemeOptions, createX402zServer, registerX402zEvmServerScheme };
+type ExactAcceptInput = {
+    network: Network;
+    payTo: string;
+    price: Price;
+    asset: `0x${string}`;
+    decimals: number;
+    eip712Name: string;
+    eip712Version: string;
+    maxTimeoutSeconds?: number;
+};
+type ConfidentialAcceptInput = {
+    network: Network;
+    payTo: string;
+    price: string;
+    maxTimeoutSeconds?: number;
+};
+type ExactMethodPricing = {
+    method: ExactTokenConfig | SchemeConfigName;
+    payTo: string;
+    price: Price;
+    maxTimeoutSeconds?: number;
+};
+type ConfidentialMethodPricing = {
+    method: ConfidentialTokenConfig | SchemeConfigName;
+    payTo: string;
+    price: string;
+    maxTimeoutSeconds?: number;
+};
+type PaymentMethodPricing = ExactMethodPricing | ConfidentialMethodPricing;
+type ConfidentialRuntimeInput = {
+    signer: X402zConfidentialServerConfig["signer"];
+    relayer: X402zConfidentialServerConfig["relayer"];
+    resourceHash?: X402zConfidentialServerConfig["resourceHash"];
+};
+type ConfidentialConfigInput = {
+    asset: `0x${string}`;
+    eip712: {
+        name: string;
+        version: string;
+    };
+    decimals: number;
+    batcherAddress: `0x${string}`;
+    resourceHash?: `0x${string}`;
+};
+type BuildConfidentialServerConfigFromConfigInput = {
+    config: ConfidentialTokenConfig | SchemeConfigName | null | undefined;
+    signer: X402zConfidentialServerConfig["signer"];
+    relayer: X402zConfidentialServerConfig["relayer"];
+    resourceHash?: X402zConfidentialServerConfig["resourceHash"];
+};
+declare function buildExactAccept(config: ExactAcceptInput): X402zRouteAccept;
+declare function buildConfidentialAccept(config: ConfidentialAcceptInput): X402zRouteAccept;
+declare function buildAcceptsFromConfigs(methods: PaymentMethodPricing[]): X402zRouteAccept[];
+declare function buildConfidentialServerConfig(config: ConfidentialConfigInput, runtime: ConfidentialRuntimeInput): X402zConfidentialServerConfig;
+declare function buildConfidentialServerConfigFromSchemeConfig(input: BuildConfidentialServerConfigFromConfigInput): X402zConfidentialServerConfig | undefined;
+
+export { type BuildConfidentialServerConfigFromConfigInput, type ConfidentialAcceptInput, type ExactAcceptInput, type PaymentMethodPricing, type X402zConfidentialServerConfig, X402zEvmServerScheme, type X402zRouteAccept, type X402zRouteHandler, type X402zRouteOptions, type X402zServerNetworkOptions, type X402zServerOptions, type X402zServerRegistrationOptions, type X402zServerSchemeOptions, buildAcceptsFromConfigs, buildConfidentialAccept, buildConfidentialServerConfig, buildConfidentialServerConfigFromSchemeConfig, buildExactAccept, createX402zServer, registerX402zEvmServerScheme };

package/dist/index.js

@@ -21,8 +21,17 @@ var __toCommonJS = (mod) => __copyProps(__defProp({}, "__esModule", { value: tru
 var index_exports = {};
 __export(index_exports, {
   HTTPFacilitatorClient: () => import_http2.HTTPFacilitatorClient,
+  SCHEME_CONFIG: () => import_x402z_scheme_config2.SCHEME_CONFIG,
+  SCHEME_CONFIG_NAMES: () => import_x402z_scheme_config2.SCHEME_CONFIG_NAMES,
   X402zEvmServerScheme: () => X402zEvmServerScheme,
+  buildAcceptsFromConfigs: () => buildAcceptsFromConfigs,
+  buildConfidentialAccept: () => buildConfidentialAccept,
+  buildConfidentialServerConfig: () => buildConfidentialServerConfig,
+  buildConfidentialServerConfigFromSchemeConfig: () => buildConfidentialServerConfigFromSchemeConfig,
+  buildExactAccept: () => buildExactAccept,
   createX402zServer: () => createX402zServer,
+  getSchemeConfigByName: () => import_x402z_scheme_config2.getSchemeConfigByName,
+  isConfidentialTokenConfig: () => import_x402z_scheme_config2.isConfidentialTokenConfig,
   registerX402zEvmServerScheme: () => registerX402zEvmServerScheme,
   x402HTTPResourceServer: () => import_http2.x402HTTPResourceServer,
   x402ResourceServer: () => import_server4.x402ResourceServer
@@ -161,6 +170,30 @@ async function fetchSupported(facilitatorUrl, fetchFn) {
   }
   return response.json();
 }
+function normalizeExactDefaults(extra) {
+  const exact = extra?.exact;
+  if (!exact) {
+    return null;
+  }
+  const list = Array.isArray(exact) ? exact : [exact];
+  const normalized = list.map((item) => {
+    if (!item?.asset) {
+      return null;
+    }
+    const name = item.eip712?.name ?? item.name;
+    const version = item.eip712?.version ?? item.version;
+    if (!name || !version) {
+      return null;
+    }
+    return {
+      asset: item.asset,
+      decimals: item.decimals ?? 6,
+      name,
+      version
+    };
+  }).filter((value) => value !== null);
+  return normalized.length > 0 ? normalized : null;
+}
 function normalizeConfidentialDefaults(extra) {
   const confidential = extra?.confidential ?? null;
   if (!confidential?.asset || !confidential.eip712?.name || !confidential.eip712?.version) {
@@ -180,6 +213,25 @@ function normalizeConfidentialDefaults(extra) {
     resourceHash: confidential.resourceHash
   };
 }
+function parseMoneyToDecimal(money) {
+  if (typeof money === "number") {
+    return money;
+  }
+  if (typeof money !== "string") {
+    throw new Error("Invalid price type for exact scheme");
+  }
+  const clean = money.replace(/^\$/, "").trim();
+  const amount = Number.parseFloat(clean);
+  if (Number.isNaN(amount)) {
+    throw new Error(`Invalid money format: ${money}`);
+  }
+  return amount;
+}
+function convertToTokenAmount(amount, decimals) {
+  const [intPart, decPart = ""] = String(amount).split(".");
+  const paddedDec = decPart.padEnd(decimals, "0").slice(0, decimals);
+  return (intPart + paddedDec).replace(/^0+/, "") || "0";
+}
 async function createX402zServer(config) {
   const debugEnabled = config.debug ?? process.env.X402Z_DEBUG === "1";
   const fetchFn = globalThis.fetch;
@@ -195,6 +247,23 @@ async function createX402zServer(config) {
   if (wantsConfidential && !confidentialConfig) {
     throw new Error("confidential config is required when using erc7984-mind-v1 routes");
   }
+  const needsExactDefaults = Object.values(config.routes).some(
+    (route) => route.accepts.some((accept) => accept.scheme === "exact" && typeof accept.price !== "object")
+  );
+  let supportedExactDefaults = {};
+  if (wantsExact && needsExactDefaults) {
+    if (!fetchFn) {
+      throw new Error("fetch is required to load exact defaults from facilitator");
+    }
+    const supported = await fetchSupported(config.facilitatorUrl, fetchFn);
+    for (const kind of supported.kinds ?? []) {
+      if (kind.scheme !== "exact") continue;
+      const normalized = normalizeExactDefaults(kind.extra);
+      if (normalized) {
+        supportedExactDefaults[kind.network] = normalized;
+      }
+    }
+  }
   if (wantsConfidential && confidentialConfig) {
     let supportedDefaults = {};
     const needsSupportedDefaults = !confidentialConfig.getNetworkConfig && (!confidentialConfig.asset || !confidentialConfig.eip712 || !confidentialConfig.batcherAddress);
@@ -244,9 +313,39 @@ async function createX402zServer(config) {
   const rpcUrl = relayer ? getRelayerRpcUrl(relayer) : null;
   const routes = {};
   for (const [path, route] of Object.entries(config.routes)) {
+    const accepts = route.accepts.map((accept) => {
+      if (accept.scheme !== "exact") {
+        return accept;
+      }
+      if (typeof accept.price === "object") {
+        return accept;
+      }
+      const defaults = supportedExactDefaults[accept.network];
+      if (!defaults || defaults.length === 0) {
+        throw new Error(`Missing exact defaults for network ${accept.network}`);
+      }
+      if (defaults.length > 1) {
+        throw new Error(
+          `Multiple exact assets configured for ${accept.network}. Provide a Price object with an explicit asset.`
+        );
+      }
+      const decimalAmount = parseMoneyToDecimal(accept.price);
+      const amount = convertToTokenAmount(decimalAmount, defaults[0].decimals);
+      return {
+        ...accept,
+        price: {
+          amount,
+          asset: defaults[0].asset,
+          extra: {
+            name: defaults[0].name,
+            version: defaults[0].version
+          }
+        }
+      };
+    });
     routes[path] = {
       ...route,
-      accepts: route.accepts
+      accepts
     };
   }
   const httpServer = new import_http.x402HTTPResourceServer(resourceServer, routes);
@@ -255,6 +354,35 @@ async function createX402zServer(config) {
     const adapter = buildAdapter(req);
     const method = adapter.getMethod();
     const path = adapter.getPath();
+    const routeKey = `${method} ${path}`;
+    const routeConfig = config.routes[routeKey];
+    if (routeConfig?.onRequest) {
+      const headers = {};
+      for (const [key, value] of Object.entries(req.headers)) {
+        if (value === void 0) continue;
+        headers[key.toLowerCase()] = Array.isArray(value) ? value.join(",") : value;
+      }
+      const response = await routeConfig.onRequest({
+        method,
+        path,
+        url: adapter.getUrl(),
+        headers
+      });
+      if (response) {
+        const status = response.status ?? 200;
+        const responseHeaders = {
+          ...response.headers ?? {}
+        };
+        if (!responseHeaders["Content-Type"] && !responseHeaders["content-type"]) {
+          responseHeaders["Content-Type"] = "text/plain";
+        }
+        sendText(res, status, responseHeaders, response.body);
+        if (debugEnabled) {
+          console.debug(`[server] ${method} ${path} -> ${status} (onRequest)`);
+        }
+        return;
+      }
+    }
     const paymentHeader = adapter.getHeader("payment-signature") ?? adapter.getHeader("x402-payment") ?? adapter.getHeader("x-payment");
     if (debugEnabled) {
       console.debug(`[server] ${method} ${path}`);
@@ -371,7 +499,15 @@ async function createX402zServer(config) {
         }
       }
       const settleHeaders = settle.headers ?? {};
-      const payload = await config.onPaid({
+      if (!routeConfig) {
+        res.writeHead(500, { ...corsHeaders, "Content-Type": "application/json" });
+        res.end(JSON.stringify({ error: "route_config_missing" }));
+        if (debugEnabled) {
+          console.debug(`[server] ${method} ${path} -> 500 route_config_missing`);
+        }
+        return;
+      }
+      const payload = await routeConfig.onPaid({
         paymentRequirements: result.paymentRequirements,
         settleHeaders
       });
@@ -410,14 +546,161 @@ async function createX402zServer(config) {
   return server;
 }
 
+// src/config/builders.ts
+var import_x402z_scheme_config = require("x402z-scheme-config");
+function parseMoneyToDecimal2(money) {
+  if (typeof money === "number") {
+    return money;
+  }
+  if (typeof money !== "string") {
+    throw new Error("Invalid price type for exact scheme");
+  }
+  const clean = money.replace(/^\$/, "").trim();
+  const amount = Number.parseFloat(clean);
+  if (Number.isNaN(amount)) {
+    throw new Error(`Invalid money format: ${money}`);
+  }
+  return amount;
+}
+function convertToTokenAmount2(amount, decimals) {
+  const [intPart, decPart = ""] = String(amount).split(".");
+  const paddedDec = decPart.padEnd(decimals, "0").slice(0, decimals);
+  return (intPart + paddedDec).replace(/^0+/, "") || "0";
+}
+function buildExactAccept(config) {
+  const decimalAmount = parseMoneyToDecimal2(config.price);
+  const amount = convertToTokenAmount2(decimalAmount, config.decimals);
+  return {
+    scheme: "exact",
+    payTo: config.payTo,
+    price: {
+      amount,
+      asset: config.asset,
+      extra: {
+        name: config.eip712Name,
+        version: config.eip712Version
+      }
+    },
+    network: config.network,
+    ...config.maxTimeoutSeconds ? { maxTimeoutSeconds: config.maxTimeoutSeconds } : {}
+  };
+}
+function buildConfidentialAccept(config) {
+  return {
+    scheme: "erc7984-mind-v1",
+    payTo: config.payTo,
+    price: config.price,
+    network: config.network,
+    maxTimeoutSeconds: config.maxTimeoutSeconds ?? 300
+  };
+}
+function buildAcceptsFromConfigs(methods) {
+  const accepts = [];
+  for (const method of methods) {
+    const config = resolveMethodConfig(method.method);
+    const isConfidential = (0, import_x402z_scheme_config.isConfidentialTokenConfig)(config);
+    if (isConfidential) {
+      const confidential = method;
+      accepts.push(
+        buildConfidentialAccept({
+          network: config.network,
+          payTo: confidential.payTo,
+          price: confidential.price,
+          maxTimeoutSeconds: confidential.maxTimeoutSeconds
+        })
+      );
+      continue;
+    }
+    const exact = method;
+    accepts.push(
+      buildExactAccept({
+        network: config.network,
+        payTo: exact.payTo,
+        price: exact.price,
+        asset: config.asset,
+        decimals: config.decimals,
+        eip712Name: config.eip712.name,
+        eip712Version: config.eip712.version,
+        maxTimeoutSeconds: exact.maxTimeoutSeconds
+      })
+    );
+  }
+  return accepts;
+}
+function buildConfidentialServerConfig(config, runtime) {
+  return {
+    asset: config.asset,
+    eip712: {
+      name: config.eip712.name,
+      version: config.eip712.version
+    },
+    decimals: config.decimals,
+    batcherAddress: config.batcherAddress,
+    resourceHash: runtime.resourceHash ?? config.resourceHash,
+    signer: runtime.signer,
+    relayer: runtime.relayer
+  };
+}
+function buildConfidentialServerConfigFromConfig(input) {
+  if (!input.config) {
+    return void 0;
+  }
+  const resolved = resolveMethodConfig(input.config);
+  if (!(0, import_x402z_scheme_config.isConfidentialTokenConfig)(resolved)) {
+    throw new Error("Confidential config required for confidential server config");
+  }
+  return buildConfidentialServerConfig(
+    {
+      asset: resolved.asset,
+      eip712: {
+        name: resolved.eip712.name,
+        version: resolved.eip712.version
+      },
+      decimals: resolved.decimals,
+      batcherAddress: resolved.batcherAddress
+    },
+    {
+      signer: input.signer,
+      relayer: input.relayer,
+      resourceHash: input.resourceHash
+    }
+  );
+}
+function buildConfidentialServerConfigFromSchemeConfig(input) {
+  if (!input.config) {
+    return void 0;
+  }
+  return buildConfidentialServerConfigFromConfig(input);
+}
+function resolveMethodConfig(method) {
+  if (typeof method !== "string") {
+    return method;
+  }
+  const resolved = (0, import_x402z_scheme_config.getSchemeConfigByName)(method);
+  if (!resolved) {
+    throw new Error(`Unknown scheme config name: ${method}`);
+  }
+  return resolved;
+}
+
 // src/index.ts
+var import_x402z_scheme_config2 = require("x402z-scheme-config");
 var import_server4 = require("@x402/core/server");
 var import_http2 = require("@x402/core/http");
 // Annotate the CommonJS export names for ESM import in node:
 0 && (module.exports = {
   HTTPFacilitatorClient,
+  SCHEME_CONFIG,
+  SCHEME_CONFIG_NAMES,
   X402zEvmServerScheme,
+  buildAcceptsFromConfigs,
+  buildConfidentialAccept,
+  buildConfidentialServerConfig,
+  buildConfidentialServerConfigFromSchemeConfig,
+  buildExactAccept,
   createX402zServer,
+  getSchemeConfigByName,
+  isConfidentialTokenConfig,
   registerX402zEvmServerScheme,
   x402HTTPResourceServer,
   x402ResourceServer

package/dist/index.mjs

@@ -134,6 +134,30 @@ async function fetchSupported(facilitatorUrl, fetchFn) {
   }
   return response.json();
 }
+function normalizeExactDefaults(extra) {
+  const exact = extra?.exact;
+  if (!exact) {
+    return null;
+  }
+  const list = Array.isArray(exact) ? exact : [exact];
+  const normalized = list.map((item) => {
+    if (!item?.asset) {
+      return null;
+    }
+    const name = item.eip712?.name ?? item.name;
+    const version = item.eip712?.version ?? item.version;
+    if (!name || !version) {
+      return null;
+    }
+    return {
+      asset: item.asset,
+      decimals: item.decimals ?? 6,
+      name,
+      version
+    };
+  }).filter((value) => value !== null);
+  return normalized.length > 0 ? normalized : null;
+}
 function normalizeConfidentialDefaults(extra) {
   const confidential = extra?.confidential ?? null;
   if (!confidential?.asset || !confidential.eip712?.name || !confidential.eip712?.version) {
@@ -153,6 +177,25 @@ function normalizeConfidentialDefaults(extra) {
     resourceHash: confidential.resourceHash
   };
 }
+function parseMoneyToDecimal(money) {
+  if (typeof money === "number") {
+    return money;
+  }
+  if (typeof money !== "string") {
+    throw new Error("Invalid price type for exact scheme");
+  }
+  const clean = money.replace(/^\$/, "").trim();
+  const amount = Number.parseFloat(clean);
+  if (Number.isNaN(amount)) {
+    throw new Error(`Invalid money format: ${money}`);
+  }
+  return amount;
+}
+function convertToTokenAmount(amount, decimals) {
+  const [intPart, decPart = ""] = String(amount).split(".");
+  const paddedDec = decPart.padEnd(decimals, "0").slice(0, decimals);
+  return (intPart + paddedDec).replace(/^0+/, "") || "0";
+}
 async function createX402zServer(config) {
   const debugEnabled = config.debug ?? process.env.X402Z_DEBUG === "1";
   const fetchFn = globalThis.fetch;
@@ -168,6 +211,23 @@ async function createX402zServer(config) {
   if (wantsConfidential && !confidentialConfig) {
     throw new Error("confidential config is required when using erc7984-mind-v1 routes");
   }
+  const needsExactDefaults = Object.values(config.routes).some(
+    (route) => route.accepts.some((accept) => accept.scheme === "exact" && typeof accept.price !== "object")
+  );
+  let supportedExactDefaults = {};
+  if (wantsExact && needsExactDefaults) {
+    if (!fetchFn) {
+      throw new Error("fetch is required to load exact defaults from facilitator");
+    }
+    const supported = await fetchSupported(config.facilitatorUrl, fetchFn);
+    for (const kind of supported.kinds ?? []) {
+      if (kind.scheme !== "exact") continue;
+      const normalized = normalizeExactDefaults(kind.extra);
+      if (normalized) {
+        supportedExactDefaults[kind.network] = normalized;
+      }
+    }
+  }
   if (wantsConfidential && confidentialConfig) {
     let supportedDefaults = {};
     const needsSupportedDefaults = !confidentialConfig.getNetworkConfig && (!confidentialConfig.asset || !confidentialConfig.eip712 || !confidentialConfig.batcherAddress);
@@ -217,9 +277,39 @@ async function createX402zServer(config) {
   const rpcUrl = relayer ? getRelayerRpcUrl(relayer) : null;
   const routes = {};
   for (const [path, route] of Object.entries(config.routes)) {
+    const accepts = route.accepts.map((accept) => {
+      if (accept.scheme !== "exact") {
+        return accept;
+      }
+      if (typeof accept.price === "object") {
+        return accept;
+      }
+      const defaults = supportedExactDefaults[accept.network];
+      if (!defaults || defaults.length === 0) {
+        throw new Error(`Missing exact defaults for network ${accept.network}`);
+      }
+      if (defaults.length > 1) {
+        throw new Error(
+          `Multiple exact assets configured for ${accept.network}. Provide a Price object with an explicit asset.`
+        );
+      }
+      const decimalAmount = parseMoneyToDecimal(accept.price);
+      const amount = convertToTokenAmount(decimalAmount, defaults[0].decimals);
+      return {
+        ...accept,
+        price: {
+          amount,
+          asset: defaults[0].asset,
+          extra: {
+            name: defaults[0].name,
+            version: defaults[0].version
+          }
+        }
+      };
+    });
     routes[path] = {
       ...route,
-      accepts: route.accepts
+      accepts
     };
   }
   const httpServer = new x402HTTPResourceServer(resourceServer, routes);
@@ -228,6 +318,35 @@ async function createX402zServer(config) {
     const adapter = buildAdapter(req);
     const method = adapter.getMethod();
     const path = adapter.getPath();
+    const routeKey = `${method} ${path}`;
+    const routeConfig = config.routes[routeKey];
+    if (routeConfig?.onRequest) {
+      const headers = {};
+      for (const [key, value] of Object.entries(req.headers)) {
+        if (value === void 0) continue;
+        headers[key.toLowerCase()] = Array.isArray(value) ? value.join(",") : value;
+      }
+      const response = await routeConfig.onRequest({
+        method,
+        path,
+        url: adapter.getUrl(),
+        headers
+      });
+      if (response) {
+        const status = response.status ?? 200;
+        const responseHeaders = {
+          ...response.headers ?? {}
+        };
+        if (!responseHeaders["Content-Type"] && !responseHeaders["content-type"]) {
+          responseHeaders["Content-Type"] = "text/plain";
+        }
+        sendText(res, status, responseHeaders, response.body);
+        if (debugEnabled) {
+          console.debug(`[server] ${method} ${path} -> ${status} (onRequest)`);
+        }
+        return;
+      }
+    }
     const paymentHeader = adapter.getHeader("payment-signature") ?? adapter.getHeader("x402-payment") ?? adapter.getHeader("x-payment");
     if (debugEnabled) {
       console.debug(`[server] ${method} ${path}`);
@@ -344,7 +463,15 @@ async function createX402zServer(config) {
         }
       }
       const settleHeaders = settle.headers ?? {};
-      const payload = await config.onPaid({
+      if (!routeConfig) {
+        res.writeHead(500, { ...corsHeaders, "Content-Type": "application/json" });
+        res.end(JSON.stringify({ error: "route_config_missing" }));
+        if (debugEnabled) {
+          console.debug(`[server] ${method} ${path} -> 500 route_config_missing`);
+        }
+        return;
+      }
+      const payload = await routeConfig.onPaid({
         paymentRequirements: result.paymentRequirements,
         settleHeaders
       });
@@ -383,7 +510,150 @@ async function createX402zServer(config) {
   return server;
 }
 
+// src/config/builders.ts
+import { getSchemeConfigByName, isConfidentialTokenConfig } from "x402z-scheme-config";
+function parseMoneyToDecimal2(money) {
+  if (typeof money === "number") {
+    return money;
+  }
+  if (typeof money !== "string") {
+    throw new Error("Invalid price type for exact scheme");
+  }
+  const clean = money.replace(/^\$/, "").trim();
+  const amount = Number.parseFloat(clean);
+  if (Number.isNaN(amount)) {
+    throw new Error(`Invalid money format: ${money}`);
+  }
+  return amount;
+}
+function convertToTokenAmount2(amount, decimals) {
+  const [intPart, decPart = ""] = String(amount).split(".");
+  const paddedDec = decPart.padEnd(decimals, "0").slice(0, decimals);
+  return (intPart + paddedDec).replace(/^0+/, "") || "0";
+}
+function buildExactAccept(config) {
+  const decimalAmount = parseMoneyToDecimal2(config.price);
+  const amount = convertToTokenAmount2(decimalAmount, config.decimals);
+  return {
+    scheme: "exact",
+    payTo: config.payTo,
+    price: {
+      amount,
+      asset: config.asset,
+      extra: {
+        name: config.eip712Name,
+        version: config.eip712Version
+      }
+    },
+    network: config.network,
+    ...config.maxTimeoutSeconds ? { maxTimeoutSeconds: config.maxTimeoutSeconds } : {}
+  };
+}
+function buildConfidentialAccept(config) {
+  return {
+    scheme: "erc7984-mind-v1",
+    payTo: config.payTo,
+    price: config.price,
+    network: config.network,
+    maxTimeoutSeconds: config.maxTimeoutSeconds ?? 300
+  };
+}
+function buildAcceptsFromConfigs(methods) {
+  const accepts = [];
+  for (const method of methods) {
+    const config = resolveMethodConfig(method.method);
+    const isConfidential = isConfidentialTokenConfig(config);
+    if (isConfidential) {
+      const confidential = method;
+      accepts.push(
+        buildConfidentialAccept({
+          network: config.network,
+          payTo: confidential.payTo,
+          price: confidential.price,
+          maxTimeoutSeconds: confidential.maxTimeoutSeconds
+        })
+      );
+      continue;
+    }
+    const exact = method;
+    accepts.push(
+      buildExactAccept({
+        network: config.network,
+        payTo: exact.payTo,
+        price: exact.price,
+        asset: config.asset,
+        decimals: config.decimals,
+        eip712Name: config.eip712.name,
+        eip712Version: config.eip712.version,
+        maxTimeoutSeconds: exact.maxTimeoutSeconds
+      })
+    );
+  }
+  return accepts;
+}
+function buildConfidentialServerConfig(config, runtime) {
+  return {
+    asset: config.asset,
+    eip712: {
+      name: config.eip712.name,
+      version: config.eip712.version
+    },
+    decimals: config.decimals,
+    batcherAddress: config.batcherAddress,
+    resourceHash: runtime.resourceHash ?? config.resourceHash,
+    signer: runtime.signer,
+    relayer: runtime.relayer
+  };
+}
+function buildConfidentialServerConfigFromConfig(input) {
+  if (!input.config) {
+    return void 0;
+  }
+  const resolved = resolveMethodConfig(input.config);
+  if (!isConfidentialTokenConfig(resolved)) {
+    throw new Error("Confidential config required for confidential server config");
+  }
+  return buildConfidentialServerConfig(
+    {
+      asset: resolved.asset,
+      eip712: {
+        name: resolved.eip712.name,
+        version: resolved.eip712.version
+      },
+      decimals: resolved.decimals,
+      batcherAddress: resolved.batcherAddress
+    },
+    {
+      signer: input.signer,
+      relayer: input.relayer,
+      resourceHash: input.resourceHash
+    }
+  );
+}
+function buildConfidentialServerConfigFromSchemeConfig(input) {
+  if (!input.config) {
+    return void 0;
+  }
+  return buildConfidentialServerConfigFromConfig(input);
+}
+function resolveMethodConfig(method) {
+  if (typeof method !== "string") {
+    return method;
+  }
+  const resolved = getSchemeConfigByName(method);
+  if (!resolved) {
+    throw new Error(`Unknown scheme config name: ${method}`);
+  }
+  return resolved;
+}
+
 // src/index.ts
+import {
+  SCHEME_CONFIG,
+  SCHEME_CONFIG_NAMES,
+  getSchemeConfigByName as getSchemeConfigByName2,
+  isConfidentialTokenConfig as isConfidentialTokenConfig2
+} from "x402z-scheme-config";
 import { x402ResourceServer as x402ResourceServer2 } from "@x402/core/server";
 import {
   HTTPFacilitatorClient as HTTPFacilitatorClient2,
@@ -391,8 +661,17 @@ import {
 } from "@x402/core/http";
 export {
   HTTPFacilitatorClient2 as HTTPFacilitatorClient,
+  SCHEME_CONFIG,
+  SCHEME_CONFIG_NAMES,
   X402zEvmServerScheme,
+  buildAcceptsFromConfigs,
+  buildConfidentialAccept,
+  buildConfidentialServerConfig,
+  buildConfidentialServerConfigFromSchemeConfig,
+  buildExactAccept,
   createX402zServer,
+  getSchemeConfigByName2 as getSchemeConfigByName,
+  isConfidentialTokenConfig2 as isConfidentialTokenConfig,
   registerX402zEvmServerScheme,
   x402HTTPResourceServer2 as x402HTTPResourceServer,
   x402ResourceServer2 as x402ResourceServer

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "x402z-server",
-  "version": "0.1.0",
+  "version": "0.1.3",
   "main": "./dist/index.js",
   "module": "./dist/index.mjs",
   "types": "./dist/index.d.ts",
@@ -8,10 +8,11 @@
     "dist"
   ],
   "dependencies": {
-    "@x402/core": "^2.0.0",
-    "@x402/evm": "^2.0.0",
+    "@x402/core": "^2.2.0",
+    "@x402/evm": "^2.2.0",
     "viem": "^2.43.3",
-    "x402z-shared": "0.1.0"
+    "x402z-shared": "0.1.2",
+    "x402z-scheme-config": "0.1.2"
   },
   "devDependencies": {
     "jest": "^29.7.0",