yeetful 0.2.0 → 0.3.1

package/dist/client.d.cts

@@ -1,5 +1,5 @@
 import { WalletClient } from 'viem';
-import { b as PaymentRequirement, X as X402Network, a as PaymentRequiredResponse, P as PaymentPayload } from './types-DzGpKiV3.cjs';
+import { c as PaymentRequirement, X as X402Network, b as PaymentRequiredResponse, E as ExactEvmPayload, a as PaymentPayload } from './types-DgG0iIOB.cjs';
 
 interface ClientOptions {
     /** A viem WalletClient able to sign EIP-712 typed data. */
@@ -17,11 +17,13 @@ interface ClientOptions {
     allowedNetworks?: X402Network[];
 }
 /**
- * Create a fetch wrapper that transparently handles x402 payments.
+ * Create a fetch wrapper that transparently handles x402 payments —
+ * protocol v1 ("base" networks, `maxAmountRequired`, `X-PAYMENT` header)
+ * and v2 (CAIP-2 networks, `amount`, `PAYMENT-SIGNATURE` envelope) alike.
  *
  * On a 402 response, it picks the cheapest acceptable requirement,
  * signs an EIP-3009 authorization with the provided wallet, and retries
- * the request with an `X-PAYMENT` header.
+ * the request with the version-appropriate payment header.
  *
  * @example
  * ```ts
@@ -34,7 +36,18 @@ declare class PaymentError extends Error {
     readonly requirements?: PaymentRequiredResponse;
     constructor(message: string, requirements?: PaymentRequiredResponse);
 }
+/**
+ * Atomic units owed for a requirement, version-agnostic: x402 v2 prices in
+ * `amount`, v1 in `maxAmountRequired`. Returns null when absent or
+ * unparseable (never throws — selection must be able to skip bad entries).
+ */
+declare function requirementAtomicAmount(req: PaymentRequirement): bigint | null;
 /** Sign an EIP-3009 `TransferWithAuthorization` for the given requirement. */
+declare function signExactAuthorization(wallet: WalletClient, requirement: PaymentRequirement): Promise<ExactEvmPayload>;
+/**
+ * Sign a requirement into the x402 **v1** `X-PAYMENT` payload shape.
+ * Kept for back-compat; `createPaymentClient` is version-aware internally.
+ */
 declare function signPayment(wallet: WalletClient, requirement: PaymentRequirement): Promise<PaymentPayload>;
 
-export { type ClientOptions, PaymentError, createPaymentClient, signPayment };
+export { type ClientOptions, PaymentError, createPaymentClient, requirementAtomicAmount, signExactAuthorization, signPayment };

package/dist/client.d.ts

@@ -1,5 +1,5 @@
 import { WalletClient } from 'viem';
-import { b as PaymentRequirement, X as X402Network, a as PaymentRequiredResponse, P as PaymentPayload } from './types-DzGpKiV3.js';
+import { c as PaymentRequirement, X as X402Network, b as PaymentRequiredResponse, E as ExactEvmPayload, a as PaymentPayload } from './types-DgG0iIOB.js';
 
 interface ClientOptions {
     /** A viem WalletClient able to sign EIP-712 typed data. */
@@ -17,11 +17,13 @@ interface ClientOptions {
     allowedNetworks?: X402Network[];
 }
 /**
- * Create a fetch wrapper that transparently handles x402 payments.
+ * Create a fetch wrapper that transparently handles x402 payments —
+ * protocol v1 ("base" networks, `maxAmountRequired`, `X-PAYMENT` header)
+ * and v2 (CAIP-2 networks, `amount`, `PAYMENT-SIGNATURE` envelope) alike.
  *
  * On a 402 response, it picks the cheapest acceptable requirement,
  * signs an EIP-3009 authorization with the provided wallet, and retries
- * the request with an `X-PAYMENT` header.
+ * the request with the version-appropriate payment header.
  *
  * @example
  * ```ts
@@ -34,7 +36,18 @@ declare class PaymentError extends Error {
     readonly requirements?: PaymentRequiredResponse;
     constructor(message: string, requirements?: PaymentRequiredResponse);
 }
+/**
+ * Atomic units owed for a requirement, version-agnostic: x402 v2 prices in
+ * `amount`, v1 in `maxAmountRequired`. Returns null when absent or
+ * unparseable (never throws — selection must be able to skip bad entries).
+ */
+declare function requirementAtomicAmount(req: PaymentRequirement): bigint | null;
 /** Sign an EIP-3009 `TransferWithAuthorization` for the given requirement. */
+declare function signExactAuthorization(wallet: WalletClient, requirement: PaymentRequirement): Promise<ExactEvmPayload>;
+/**
+ * Sign a requirement into the x402 **v1** `X-PAYMENT` payload shape.
+ * Kept for back-compat; `createPaymentClient` is version-aware internally.
+ */
 declare function signPayment(wallet: WalletClient, requirement: PaymentRequirement): Promise<PaymentPayload>;
 
-export { type ClientOptions, PaymentError, createPaymentClient, signPayment };
+export { type ClientOptions, PaymentError, createPaymentClient, requirementAtomicAmount, signExactAuthorization, signPayment };

package/dist/client.js

@@ -1,6 +1,6 @@
 // src/utils.ts
 var utf8Encoder = new TextEncoder();
-new TextDecoder();
+var utf8Decoder = new TextDecoder();
 function encodePayment(value) {
   const bytes = utf8Encoder.encode(JSON.stringify(value));
   if (typeof Buffer !== "undefined") {
@@ -10,6 +10,17 @@ function encodePayment(value) {
   for (const byte of bytes) binary += String.fromCharCode(byte);
   return btoa(binary);
 }
+function decodePayment(b64) {
+  let bytes;
+  if (typeof Buffer !== "undefined") {
+    bytes = new Uint8Array(Buffer.from(b64, "base64"));
+  } else {
+    const binary = atob(b64);
+    bytes = new Uint8Array(binary.length);
+    for (let i = 0; i < binary.length; i++) bytes[i] = binary.charCodeAt(i);
+  }
+  return JSON.parse(utf8Decoder.decode(bytes));
+}
 function randomNonce() {
   const bytes = new Uint8Array(32);
   globalThis.crypto.getRandomValues(bytes);
@@ -23,7 +34,7 @@ function createPaymentClient(options) {
     const first = await baseFetch(input, init);
     if (first.status !== 402) return first;
     const requirements = await parsePaymentRequired(first);
-    const requirement = selectRequirement(requirements.accepts, options);
+    const requirement = selectRequirement(requirements.accepts ?? [], options);
     if (!requirement) {
       throw new PaymentError("No acceptable payment requirement matched client constraints", requirements);
     }
@@ -31,9 +42,10 @@ function createPaymentClient(options) {
       const approved = await options.onPaymentRequired(requirement);
       if (!approved) throw new PaymentError("Payment rejected by user", requirements);
     }
-    const payment = await signPayment(options.wallet, requirement);
+    const payload = await signExactAuthorization(options.wallet, requirement);
+    const header = buildPaymentHeader(requirements, requirement, payload);
     const headers = new Headers(init.headers);
-    headers.set("X-PAYMENT", encodePayment(payment));
+    headers.set(header.name, header.value);
     return baseFetch(input, { ...init, headers });
   };
 }
@@ -45,22 +57,66 @@ var PaymentError = class extends Error {
     this.requirements = requirements;
   }
 };
+function requirementAtomicAmount(req) {
+  const raw = req.amount ?? req.maxAmountRequired;
+  if (raw == null) return null;
+  try {
+    return BigInt(raw);
+  } catch {
+    return null;
+  }
+}
 async function parsePaymentRequired(res) {
   try {
     return await res.clone().json();
   } catch {
+    const header = res.headers.get("payment-required");
+    if (header) {
+      try {
+        return decodePayment(header);
+      } catch {
+      }
+    }
     throw new PaymentError("402 response did not contain a valid x402 discovery body");
   }
 }
 function selectRequirement(accepts, opts) {
-  const filtered = accepts.filter((a) => a.scheme === "exact").filter((a) => !opts.allowedNetworks || opts.allowedNetworks.includes(a.network)).filter((a) => !opts.maxAmountAtomic || BigInt(a.maxAmountRequired) <= opts.maxAmountAtomic);
-  return filtered.sort(
-    (a, b) => BigInt(a.maxAmountRequired) < BigInt(b.maxAmountRequired) ? -1 : 1
-  )[0];
+  const priced = accepts.filter((a) => a.scheme === "exact").filter((a) => chainIdForNetwork(a.network) !== null).filter(
+    (a) => !opts.allowedNetworks || opts.allowedNetworks.some((n) => chainIdForNetwork(n) === chainIdForNetwork(a.network))
+  ).map((a) => ({ req: a, amount: requirementAtomicAmount(a) })).filter((e) => e.amount !== null).filter((e) => !opts.maxAmountAtomic || e.amount <= opts.maxAmountAtomic);
+  return priced.sort((a, b) => a.amount < b.amount ? -1 : 1)[0]?.req;
 }
-async function signPayment(wallet, requirement) {
+function buildPaymentHeader(challenge, requirement, payload) {
+  const version = challenge.x402Version ?? 1;
+  if (version >= 2) {
+    const envelope = {
+      x402Version: version,
+      resource: challenge.resource,
+      accepted: requirement,
+      payload,
+      extensions: challenge.extensions ?? {}
+    };
+    return { name: "PAYMENT-SIGNATURE", value: encodePayment(envelope) };
+  }
+  const v1 = {
+    x402Version: 1,
+    scheme: "exact",
+    network: requirement.network,
+    payload
+  };
+  return { name: "X-PAYMENT", value: encodePayment(v1) };
+}
+async function signExactAuthorization(wallet, requirement) {
   const account = wallet.account;
   if (!account) throw new PaymentError("Wallet has no account attached");
+  const value = requirementAtomicAmount(requirement);
+  if (value === null) {
+    throw new PaymentError("x402 requirement is missing a payment amount");
+  }
+  const chainId = chainIdForNetwork(requirement.network);
+  if (chainId === null) {
+    throw new PaymentError(`Unsupported x402 network: ${requirement.network}`);
+  }
   const now = Math.floor(Date.now() / 1e3);
   const validAfter = BigInt(now - 60);
   const validBefore = BigInt(now + (requirement.maxTimeoutSeconds ?? 600));
@@ -72,7 +128,7 @@ async function signPayment(wallet, requirement) {
     domain: {
       name: tokenName,
       version: tokenVersion,
-      chainId: chainIdForNetwork(requirement.network),
+      chainId,
       verifyingContract: requirement.asset
     },
     types: {
@@ -89,30 +145,37 @@ async function signPayment(wallet, requirement) {
     message: {
       from: account.address,
       to: requirement.payTo,
-      value: BigInt(requirement.maxAmountRequired),
+      value,
       validAfter,
       validBefore,
       nonce
     }
   });
+  return {
+    signature,
+    authorization: {
+      from: account.address,
+      to: requirement.payTo,
+      value: value.toString(),
+      validAfter: validAfter.toString(),
+      validBefore: validBefore.toString(),
+      nonce
+    }
+  };
+}
+async function signPayment(wallet, requirement) {
   return {
     x402Version: 1,
     scheme: "exact",
     network: requirement.network,
-    payload: {
-      signature,
-      authorization: {
-        from: account.address,
-        to: requirement.payTo,
-        value: requirement.maxAmountRequired,
-        validAfter: validAfter.toString(),
-        validBefore: validBefore.toString(),
-        nonce
-      }
-    }
+    payload: await signExactAuthorization(wallet, requirement)
   };
 }
 function chainIdForNetwork(network) {
+  if (network.startsWith("eip155:")) {
+    const id = Number(network.slice("eip155:".length));
+    return Number.isInteger(id) && id > 0 ? id : null;
+  }
   switch (network) {
     case "base":
       return 8453;
@@ -126,9 +189,11 @@ function chainIdForNetwork(network) {
       return 42161;
     case "polygon":
       return 137;
+    default:
+      return null;
   }
 }
 
-export { PaymentError, createPaymentClient, signPayment };
+export { PaymentError, createPaymentClient, requirementAtomicAmount, signExactAuthorization, signPayment };
 //# sourceMappingURL=client.js.map
 //# sourceMappingURL=client.js.map

package/dist/client.js.map

@@ -1 +1 @@
-{"version":3,"sources":["../src/utils.ts","../src/client.ts"],"names":[],"mappings":";AAgCA,IAAM,WAAA,GAAc,IAAI,WAAA,EAAY;AAChB,IAAI,WAAA;AAGjB,SAAS,cAAc,KAAA,EAAwB;AACpD,EAAA,MAAM,QAAQ,WAAA,CAAY,MAAA,CAAO,IAAA,CAAK,SAAA,CAAU,KAAK,CAAC,CAAA;AACtD,EAAA,IAAI,OAAO,WAAW,WAAA,EAAa;AACjC,IAAA,OAAO,MAAA,CAAO,IAAA,CAAK,KAAK,CAAA,CAAE,SAAS,QAAQ,CAAA;AAAA,EAC7C;AACA,EAAA,IAAI,MAAA,GAAS,EAAA;AACb,EAAA,KAAA,MAAW,IAAA,IAAQ,KAAA,EAAO,MAAA,IAAU,MAAA,CAAO,aAAa,IAAI,CAAA;AAC5D,EAAA,OAAO,KAAK,MAAM,CAAA;AACpB;AAgBO,SAAS,WAAA,GAA6B;AAC3C,EAAA,MAAM,KAAA,GAAQ,IAAI,UAAA,CAAW,EAAE,CAAA;AAC/B,EAAA,UAAA,CAAW,MAAA,CAAO,gBAAgB,KAAK,CAAA;AACvC,EAAA,OAAQ,OAAO,KAAA,CAAM,IAAA,CAAK,KAAA,EAAO,CAAC,MAAM,CAAA,CAAE,QAAA,CAAS,EAAE,CAAA,CAAE,SAAS,CAAA,EAAG,GAAG,CAAC,CAAA,CAAE,KAAK,EAAE,CAAA;AAClF;;;AC1BO,SAAS,oBAAoB,OAAA,EAAwB;AAC1D,EAAA,MAAM,YAAY,OAAA,CAAQ,KAAA,IAAS,UAAA,CAAW,KAAA,CAAM,KAAK,UAAU,CAAA;AAEnE,EAAA,OAAO,eAAe,QAAA,CACpB,KAAA,EACA,IAAA,GAAoB,EAAC,EACF;AACnB,IAAA,MAAM,KAAA,GAAQ,MAAM,SAAA,CAAU,KAAA,EAAO,IAAI,CAAA;AACzC,IAAA,IAAI,KAAA,CAAM,MAAA,KAAW,GAAA,EAAK,OAAO,KAAA;AAEjC,IAAA,MAAM,YAAA,GAAe,MAAM,oBAAA,CAAqB,KAAK,CAAA;AACrD,IAAA,MAAM,WAAA,GAAc,iBAAA,CAAkB,YAAA,CAAa,OAAA,EAAS,OAAO,CAAA;AACnE,IAAA,IAAI,CAAC,WAAA,EAAa;AAChB,MAAA,MAAM,IAAI,YAAA,CAAa,8DAAA,EAAgE,YAAY,CAAA;AAAA,IACrG;AAEA,IAAA,IAAI,QAAQ,iBAAA,EAAmB;AAC7B,MAAA,MAAM,QAAA,GAAW,MAAM,OAAA,CAAQ,iBAAA,CAAkB,WAAW,CAAA;AAC5D,MAAA,IAAI,CAAC,QAAA,EAAU,MAAM,IAAI,YAAA,CAAa,4BAA4B,YAAY,CAAA;AAAA,IAChF;AAEA,IAAA,MAAM,OAAA,GAAU,MAAM,WAAA,CAAY,OAAA,CAAQ,QAAQ,WAAW,CAAA;AAC7D,IAAA,MAAM,OAAA,GAAU,IAAI,OAAA,CAAQ,IAAA,CAAK,OAAO,CAAA;AACxC,IAAA,OAAA,CAAQ,GAAA,CAAI,WAAA,EAAa,aAAA,CAAc,OAAO,CAAC,CAAA;AAE/C,IAAA,OAAO,UAAU,KAAA,EAAO,EAAE,GAAG,IAAA,EAAM,SAAS,CAAA;AAAA,EAC9C,CAAA;AACF;AAEO,IAAM,YAAA,GAAN,cAA2B,KAAA,CAAM;AAAA,EAC7B,YAAA;AAAA,EACT,WAAA,CAAY,SAAiB,YAAA,EAAwC;AACnE,IAAA,KAAA,CAAM,OAAO,CAAA;AACb,IAAA,IAAA,CAAK,IAAA,GAAO,cAAA;AACZ,IAAA,IAAA,CAAK,YAAA,GAAe,YAAA;AAAA,EACtB;AACF;AAEA,eAAe,qBAAqB,GAAA,EAAiD;AACnF,EAAA,IAAI;AACF,IAAA,OAAQ,MAAM,GAAA,CAAI,KAAA,EAAM,CAAE,IAAA,EAAK;AAAA,EACjC,CAAA,CAAA,MAAQ;AACN,IAAA,MAAM,IAAI,aAAa,0DAA0D,CAAA;AAAA,EACnF;AACF;AAEA,SAAS,iBAAA,CACP,SACA,IAAA,EACgC;AAChC,EAAA,MAAM,QAAA,GAAW,OAAA,CACd,MAAA,CAAO,CAAC,MAAM,CAAA,CAAE,MAAA,KAAW,OAAO,CAAA,CAClC,MAAA,CAAO,CAAC,CAAA,KAAM,CAAC,KAAK,eAAA,IAAmB,IAAA,CAAK,eAAA,CAAgB,QAAA,CAAS,CAAA,CAAE,OAAO,CAAC,CAAA,CAC/E,OAAO,CAAC,CAAA,KAAM,CAAC,IAAA,CAAK,mBAAmB,MAAA,CAAO,CAAA,CAAE,iBAAiB,CAAA,IAAK,KAAK,eAAe,CAAA;AAE7F,EAAA,OAAO,QAAA,CAAS,IAAA;AAAA,IAAK,CAAC,CAAA,EAAG,CAAA,KACvB,MAAA,CAAO,CAAA,CAAE,iBAAiB,CAAA,GAAI,MAAA,CAAO,CAAA,CAAE,iBAAiB,CAAA,GAAI,EAAA,GAAK;AAAA,IACjE,CAAC,CAAA;AACL;AAGA,eAAsB,WAAA,CACpB,QACA,WAAA,EACyB;AACzB,EAAA,MAAM,UAAU,MAAA,CAAO,OAAA;AACvB,EAAA,IAAI,CAAC,OAAA,EAAS,MAAM,IAAI,aAAa,gCAAgC,CAAA;AAErE,EAAA,MAAM,MAAM,IAAA,CAAK,KAAA,CAAM,IAAA,CAAK,GAAA,KAAQ,GAAI,CAAA;AACxC,EAAA,MAAM,UAAA,GAAa,MAAA,CAAO,GAAA,GAAM,EAAE,CAAA;AAClC,EAAA,MAAM,WAAA,GAAc,MAAA,CAAO,GAAA,IAAO,WAAA,CAAY,qBAAqB,GAAA,CAAI,CAAA;AACvE,EAAA,MAAM,QAAQ,WAAA,EAAY;AAE1B,EAAA,MAAM,SAAA,GACH,WAAA,CAAY,KAAA,EAAO,IAAA,IAA+B,UAAA;AACrD,EAAA,MAAM,YAAA,GACH,WAAA,CAAY,KAAA,EAAO,OAAA,IAAkC,GAAA;AAExD,EAAA,MAAM,SAAA,GAAa,MAAM,MAAA,CAAO,aAAA,CAAc;AAAA,IAC5C,OAAA;AAAA,IACA,MAAA,EAAQ;AAAA,MACN,IAAA,EAAM,SAAA;AAAA,MACN,OAAA,EAAS,YAAA;AAAA,MACT,OAAA,EAAS,iBAAA,CAAkB,WAAA,CAAY,OAAO,CAAA;AAAA,MAC9C,mBAAmB,WAAA,CAAY;AAAA,KACjC;AAAA,IACA,KAAA,EAAO;AAAA,MACL,yBAAA,EAA2B;AAAA,QACzB,EAAE,IAAA,EAAM,MAAA,EAAQ,IAAA,EAAM,SAAA,EAAU;AAAA,QAChC,EAAE,IAAA,EAAM,IAAA,EAAM,IAAA,EAAM,SAAA,EAAU;AAAA,QAC9B,EAAE,IAAA,EAAM,OAAA,EAAS,IAAA,EAAM,SAAA,EAAU;AAAA,QACjC,EAAE,IAAA,EAAM,YAAA,EAAc,IAAA,EAAM,SAAA,EAAU;AAAA,QACtC,EAAE,IAAA,EAAM,aAAA,EAAe,IAAA,EAAM,SAAA,EAAU;AAAA,QACvC,EAAE,IAAA,EAAM,OAAA,EAAS,IAAA,EAAM,SAAA;AAAU;AACnC,KACF;AAAA,IACA,WAAA,EAAa,2BAAA;AAAA,IACb,OAAA,EAAS;AAAA,MACP,MAAM,OAAA,CAAQ,OAAA;AAAA,MACd,IAAI,WAAA,CAAY,KAAA;AAAA,MAChB,KAAA,EAAO,MAAA,CAAO,WAAA,CAAY,iBAAiB,CAAA;AAAA,MAC3C,UAAA;AAAA,MACA,WAAA;AAAA,MACA;AAAA;AACF,GACD,CAAA;AAED,EAAA,OAAO;AAAA,IACL,WAAA,EAAa,CAAA;AAAA,IACb,MAAA,EAAQ,OAAA;AAAA,IACR,SAAS,WAAA,CAAY,OAAA;AAAA,IACrB,OAAA,EAAS;AAAA,MACP,SAAA;AAAA,MACA,aAAA,EAAe;AAAA,QACb,MAAM,OAAA,CAAQ,OAAA;AAAA,QACd,IAAI,WAAA,CAAY,KAAA;AAAA,QAChB,OAAO,WAAA,CAAY,iBAAA;AAAA,QACnB,UAAA,EAAY,WAAW,QAAA,EAAS;AAAA,QAChC,WAAA,EAAa,YAAY,QAAA,EAAS;AAAA,QAClC;AAAA;AACF;AACF,GACF;AACF;AAEA,SAAS,kBAAkB,OAAA,EAA8B;AACvD,EAAA,QAAQ,OAAA;AAAS,IACf,KAAK,MAAA;AACH,MAAA,OAAO,IAAA;AAAA,IACT,KAAK,cAAA;AACH,MAAA,OAAO,KAAA;AAAA,IACT,KAAK,UAAA;AACH,MAAA,OAAO,CAAA;AAAA,IACT,KAAK,UAAA;AACH,MAAA,OAAO,EAAA;AAAA,IACT,KAAK,UAAA;AACH,MAAA,OAAO,KAAA;AAAA,IACT,KAAK,SAAA;AACH,MAAA,OAAO,GAAA;AAAA;AAEb","file":"client.js","sourcesContent":["import type { X402Network } from './types.js'\n\nconst USDC_BY_NETWORK: Record<X402Network, `0x${string}`> = {\n  base: '0x833589fCD6eDb6E08f4c7C32D4f71b54bdA02913',\n  'base-sepolia': '0x036CbD53842c5426634e7929541eC2318f3dCF7e',\n  ethereum: '0xA0b86991c6218b36c1d19D4a2e9Eb0cE3606eB48',\n  optimism: '0x0b2C639c533813f4Aa9D7837CAf62653d097Ff85',\n  arbitrum: '0xaf88d065e77c8cC2239327C5EDb3A432268e5831',\n  polygon: '0x3c499c542cEF5E3811e1192ce70d8cC03d5c3359',\n}\n\nexport const USDC_DECIMALS = 6\n\n/** Returns the canonical USDC contract address for a supported network. */\nexport function usdcAddress(network: X402Network): `0x${string}` {\n  return USDC_BY_NETWORK[network]\n}\n\n/**\n * Convert a human-friendly USD amount (e.g. \"0.01\") into atomic USDC units.\n * Fixed-point to avoid float drift — safer than Number math for payments.\n */\nexport function usdToAtomic(amount: string | number, decimals = USDC_DECIMALS): string {\n  const str = typeof amount === 'number' ? amount.toString() : amount\n  if (!/^\\d+(\\.\\d+)?$/.test(str)) {\n    throw new Error(`Invalid amount: ${str}`)\n  }\n  const [whole, frac = ''] = str.split('.')\n  const padded = frac.slice(0, decimals).padEnd(decimals, '0')\n  return (BigInt(whole ?? '0') * 10n ** BigInt(decimals) + BigInt(padded || '0')).toString()\n}\n\nconst utf8Encoder = new TextEncoder()\nconst utf8Decoder = new TextDecoder()\n\n/** Base64 encode a JSON value — works in Node 18+ and browsers. */\nexport function encodePayment(value: unknown): string {\n  const bytes = utf8Encoder.encode(JSON.stringify(value))\n  if (typeof Buffer !== 'undefined') {\n    return Buffer.from(bytes).toString('base64')\n  }\n  let binary = ''\n  for (const byte of bytes) binary += String.fromCharCode(byte)\n  return btoa(binary)\n}\n\n/** Base64 decode a payment header value back into JSON. */\nexport function decodePayment<T = unknown>(b64: string): T {\n  let bytes: Uint8Array\n  if (typeof Buffer !== 'undefined') {\n    bytes = new Uint8Array(Buffer.from(b64, 'base64'))\n  } else {\n    const binary = atob(b64)\n    bytes = new Uint8Array(binary.length)\n    for (let i = 0; i < binary.length; i++) bytes[i] = binary.charCodeAt(i)\n  }\n  return JSON.parse(utf8Decoder.decode(bytes)) as T\n}\n\n/** Generate a random 32-byte nonce as a 0x-prefixed hex string. */\nexport function randomNonce(): `0x${string}` {\n  const bytes = new Uint8Array(32)\n  globalThis.crypto.getRandomValues(bytes)\n  return ('0x' + Array.from(bytes, (b) => b.toString(16).padStart(2, '0')).join('')) as `0x${string}`\n}\n","import type { Address, Hex, WalletClient } from 'viem'\nimport type {\n  PaymentPayload,\n  PaymentRequiredResponse,\n  PaymentRequirement,\n  X402Network,\n} from './types.js'\nimport { encodePayment, randomNonce } from './utils.js'\n\nexport interface ClientOptions {\n  /** A viem WalletClient able to sign EIP-712 typed data. */\n  wallet: WalletClient\n  /** Underlying fetch to wrap (defaults to global fetch). */\n  fetch?: typeof fetch\n  /**\n   * Hook called before signing. Return `false` to reject the payment.\n   * Useful for showing a confirmation UI to the user.\n   */\n  onPaymentRequired?: (requirement: PaymentRequirement) => boolean | Promise<boolean>\n  /** Only allow payments up to this atomic-units cap. Safety belt. */\n  maxAmountAtomic?: bigint\n  /** Restrict to specific networks (defaults to all). */\n  allowedNetworks?: X402Network[]\n}\n\n/**\n * Create a fetch wrapper that transparently handles x402 payments.\n *\n * On a 402 response, it picks the cheapest acceptable requirement,\n * signs an EIP-3009 authorization with the provided wallet, and retries\n * the request with an `X-PAYMENT` header.\n *\n * @example\n * ```ts\n * const pay = createPaymentClient({ wallet })\n * const res = await pay('https://api.example.com/premium')\n * ```\n */\nexport function createPaymentClient(options: ClientOptions) {\n  const baseFetch = options.fetch ?? globalThis.fetch.bind(globalThis)\n\n  return async function payFetch(\n    input: string | URL | Request,\n    init: RequestInit = {},\n  ): Promise<Response> {\n    const first = await baseFetch(input, init)\n    if (first.status !== 402) return first\n\n    const requirements = await parsePaymentRequired(first)\n    const requirement = selectRequirement(requirements.accepts, options)\n    if (!requirement) {\n      throw new PaymentError('No acceptable payment requirement matched client constraints', requirements)\n    }\n\n    if (options.onPaymentRequired) {\n      const approved = await options.onPaymentRequired(requirement)\n      if (!approved) throw new PaymentError('Payment rejected by user', requirements)\n    }\n\n    const payment = await signPayment(options.wallet, requirement)\n    const headers = new Headers(init.headers)\n    headers.set('X-PAYMENT', encodePayment(payment))\n\n    return baseFetch(input, { ...init, headers })\n  }\n}\n\nexport class PaymentError extends Error {\n  readonly requirements?: PaymentRequiredResponse\n  constructor(message: string, requirements?: PaymentRequiredResponse) {\n    super(message)\n    this.name = 'PaymentError'\n    this.requirements = requirements\n  }\n}\n\nasync function parsePaymentRequired(res: Response): Promise<PaymentRequiredResponse> {\n  try {\n    return (await res.clone().json()) as PaymentRequiredResponse\n  } catch {\n    throw new PaymentError('402 response did not contain a valid x402 discovery body')\n  }\n}\n\nfunction selectRequirement(\n  accepts: PaymentRequirement[],\n  opts: ClientOptions,\n): PaymentRequirement | undefined {\n  const filtered = accepts\n    .filter((a) => a.scheme === 'exact')\n    .filter((a) => !opts.allowedNetworks || opts.allowedNetworks.includes(a.network))\n    .filter((a) => !opts.maxAmountAtomic || BigInt(a.maxAmountRequired) <= opts.maxAmountAtomic)\n\n  return filtered.sort((a, b) =>\n    BigInt(a.maxAmountRequired) < BigInt(b.maxAmountRequired) ? -1 : 1,\n  )[0]\n}\n\n/** Sign an EIP-3009 `TransferWithAuthorization` for the given requirement. */\nexport async function signPayment(\n  wallet: WalletClient,\n  requirement: PaymentRequirement,\n): Promise<PaymentPayload> {\n  const account = wallet.account\n  if (!account) throw new PaymentError('Wallet has no account attached')\n\n  const now = Math.floor(Date.now() / 1000)\n  const validAfter = BigInt(now - 60)\n  const validBefore = BigInt(now + (requirement.maxTimeoutSeconds ?? 600))\n  const nonce = randomNonce()\n\n  const tokenName =\n    (requirement.extra?.name as string | undefined) ?? 'USD Coin'\n  const tokenVersion =\n    (requirement.extra?.version as string | undefined) ?? '2'\n\n  const signature = (await wallet.signTypedData({\n    account,\n    domain: {\n      name: tokenName,\n      version: tokenVersion,\n      chainId: chainIdForNetwork(requirement.network),\n      verifyingContract: requirement.asset,\n    },\n    types: {\n      TransferWithAuthorization: [\n        { name: 'from', type: 'address' },\n        { name: 'to', type: 'address' },\n        { name: 'value', type: 'uint256' },\n        { name: 'validAfter', type: 'uint256' },\n        { name: 'validBefore', type: 'uint256' },\n        { name: 'nonce', type: 'bytes32' },\n      ],\n    },\n    primaryType: 'TransferWithAuthorization',\n    message: {\n      from: account.address as Address,\n      to: requirement.payTo,\n      value: BigInt(requirement.maxAmountRequired),\n      validAfter,\n      validBefore,\n      nonce,\n    },\n  })) as Hex\n\n  return {\n    x402Version: 1,\n    scheme: 'exact',\n    network: requirement.network,\n    payload: {\n      signature,\n      authorization: {\n        from: account.address as Address,\n        to: requirement.payTo,\n        value: requirement.maxAmountRequired,\n        validAfter: validAfter.toString(),\n        validBefore: validBefore.toString(),\n        nonce,\n      },\n    },\n  }\n}\n\nfunction chainIdForNetwork(network: X402Network): number {\n  switch (network) {\n    case 'base':\n      return 8453\n    case 'base-sepolia':\n      return 84532\n    case 'ethereum':\n      return 1\n    case 'optimism':\n      return 10\n    case 'arbitrum':\n      return 42161\n    case 'polygon':\n      return 137\n  }\n}\n"]}
+{"version":3,"sources":["../src/utils.ts","../src/client.ts"],"names":[],"mappings":";AAgCA,IAAM,WAAA,GAAc,IAAI,WAAA,EAAY;AACpC,IAAM,WAAA,GAAc,IAAI,WAAA,EAAY;AAG7B,SAAS,cAAc,KAAA,EAAwB;AACpD,EAAA,MAAM,QAAQ,WAAA,CAAY,MAAA,CAAO,IAAA,CAAK,SAAA,CAAU,KAAK,CAAC,CAAA;AACtD,EAAA,IAAI,OAAO,WAAW,WAAA,EAAa;AACjC,IAAA,OAAO,MAAA,CAAO,IAAA,CAAK,KAAK,CAAA,CAAE,SAAS,QAAQ,CAAA;AAAA,EAC7C;AACA,EAAA,IAAI,MAAA,GAAS,EAAA;AACb,EAAA,KAAA,MAAW,IAAA,IAAQ,KAAA,EAAO,MAAA,IAAU,MAAA,CAAO,aAAa,IAAI,CAAA;AAC5D,EAAA,OAAO,KAAK,MAAM,CAAA;AACpB;AAGO,SAAS,cAA2B,GAAA,EAAgB;AACzD,EAAA,IAAI,KAAA;AACJ,EAAA,IAAI,OAAO,WAAW,WAAA,EAAa;AACjC,IAAA,KAAA,GAAQ,IAAI,UAAA,CAAW,MAAA,CAAO,IAAA,CAAK,GAAA,EAAK,QAAQ,CAAC,CAAA;AAAA,EACnD,CAAA,MAAO;AACL,IAAA,MAAM,MAAA,GAAS,KAAK,GAAG,CAAA;AACvB,IAAA,KAAA,GAAQ,IAAI,UAAA,CAAW,MAAA,CAAO,MAAM,CAAA;AACpC,IAAA,KAAA,IAAS,CAAA,GAAI,CAAA,EAAG,CAAA,GAAI,MAAA,CAAO,MAAA,EAAQ,CAAA,EAAA,EAAK,KAAA,CAAM,CAAC,CAAA,GAAI,MAAA,CAAO,UAAA,CAAW,CAAC,CAAA;AAAA,EACxE;AACA,EAAA,OAAO,IAAA,CAAK,KAAA,CAAM,WAAA,CAAY,MAAA,CAAO,KAAK,CAAC,CAAA;AAC7C;AAGO,SAAS,WAAA,GAA6B;AAC3C,EAAA,MAAM,KAAA,GAAQ,IAAI,UAAA,CAAW,EAAE,CAAA;AAC/B,EAAA,UAAA,CAAW,MAAA,CAAO,gBAAgB,KAAK,CAAA;AACvC,EAAA,OAAQ,OAAO,KAAA,CAAM,IAAA,CAAK,KAAA,EAAO,CAAC,MAAM,CAAA,CAAE,QAAA,CAAS,EAAE,CAAA,CAAE,SAAS,CAAA,EAAG,GAAG,CAAC,CAAA,CAAE,KAAK,EAAE,CAAA;AAClF;;;ACtBO,SAAS,oBAAoB,OAAA,EAAwB;AAC1D,EAAA,MAAM,YAAY,OAAA,CAAQ,KAAA,IAAS,UAAA,CAAW,KAAA,CAAM,KAAK,UAAU,CAAA;AAEnE,EAAA,OAAO,eAAe,QAAA,CACpB,KAAA,EACA,IAAA,GAAoB,EAAC,EACF;AACnB,IAAA,MAAM,KAAA,GAAQ,MAAM,SAAA,CAAU,KAAA,EAAO,IAAI,CAAA;AACzC,IAAA,IAAI,KAAA,CAAM,MAAA,KAAW,GAAA,EAAK,OAAO,KAAA;AAEjC,IAAA,MAAM,YAAA,GAAe,MAAM,oBAAA,CAAqB,KAAK,CAAA;AACrD,IAAA,MAAM,cAAc,iBAAA,CAAkB,YAAA,CAAa,OAAA,IAAW,IAAI,OAAO,CAAA;AACzE,IAAA,IAAI,CAAC,WAAA,EAAa;AAChB,MAAA,MAAM,IAAI,YAAA,CAAa,8DAAA,EAAgE,YAAY,CAAA;AAAA,IACrG;AAEA,IAAA,IAAI,QAAQ,iBAAA,EAAmB;AAC7B,MAAA,MAAM,QAAA,GAAW,MAAM,OAAA,CAAQ,iBAAA,CAAkB,WAAW,CAAA;AAC5D,MAAA,IAAI,CAAC,QAAA,EAAU,MAAM,IAAI,YAAA,CAAa,4BAA4B,YAAY,CAAA;AAAA,IAChF;AAEA,IAAA,MAAM,OAAA,GAAU,MAAM,sBAAA,CAAuB,OAAA,CAAQ,QAAQ,WAAW,CAAA;AACxE,IAAA,MAAM,MAAA,GAAS,kBAAA,CAAmB,YAAA,EAAc,WAAA,EAAa,OAAO,CAAA;AACpE,IAAA,MAAM,OAAA,GAAU,IAAI,OAAA,CAAQ,IAAA,CAAK,OAAO,CAAA;AACxC,IAAA,OAAA,CAAQ,GAAA,CAAI,MAAA,CAAO,IAAA,EAAM,MAAA,CAAO,KAAK,CAAA;AAErC,IAAA,OAAO,UAAU,KAAA,EAAO,EAAE,GAAG,IAAA,EAAM,SAAS,CAAA;AAAA,EAC9C,CAAA;AACF;AAEO,IAAM,YAAA,GAAN,cAA2B,KAAA,CAAM;AAAA,EAC7B,YAAA;AAAA,EACT,WAAA,CAAY,SAAiB,YAAA,EAAwC;AACnE,IAAA,KAAA,CAAM,OAAO,CAAA;AACb,IAAA,IAAA,CAAK,IAAA,GAAO,cAAA;AACZ,IAAA,IAAA,CAAK,YAAA,GAAe,YAAA;AAAA,EACtB;AACF;AAOO,SAAS,wBAAwB,GAAA,EAAwC;AAC9E,EAAA,MAAM,GAAA,GAAM,GAAA,CAAI,MAAA,IAAU,GAAA,CAAI,iBAAA;AAC9B,EAAA,IAAI,GAAA,IAAO,MAAM,OAAO,IAAA;AACxB,EAAA,IAAI;AACF,IAAA,OAAO,OAAO,GAAG,CAAA;AAAA,EACnB,CAAA,CAAA,MAAQ;AACN,IAAA,OAAO,IAAA;AAAA,EACT;AACF;AAEA,eAAe,qBAAqB,GAAA,EAAiD;AACnF,EAAA,IAAI;AACF,IAAA,OAAQ,MAAM,GAAA,CAAI,KAAA,EAAM,CAAE,IAAA,EAAK;AAAA,EACjC,CAAA,CAAA,MAAQ;AAGN,IAAA,MAAM,MAAA,GAAS,GAAA,CAAI,OAAA,CAAQ,GAAA,CAAI,kBAAkB,CAAA;AACjD,IAAA,IAAI,MAAA,EAAQ;AACV,MAAA,IAAI;AACF,QAAA,OAAO,cAAuC,MAAM,CAAA;AAAA,MACtD,CAAA,CAAA,MAAQ;AAAA,MAER;AAAA,IACF;AACA,IAAA,MAAM,IAAI,aAAa,0DAA0D,CAAA;AAAA,EACnF;AACF;AAEA,SAAS,iBAAA,CACP,SACA,IAAA,EACgC;AAChC,EAAA,MAAM,SAAS,OAAA,CACZ,MAAA,CAAO,CAAC,CAAA,KAAM,EAAE,MAAA,KAAW,OAAO,CAAA,CAElC,MAAA,CAAO,CAAC,CAAA,KAAM,iBAAA,CAAkB,EAAE,OAAO,CAAA,KAAM,IAAI,CAAA,CACnD,MAAA;AAAA,IACC,CAAC,CAAA,KACC,CAAC,IAAA,CAAK,eAAA,IACN,KAAK,eAAA,CAAgB,IAAA,CAAK,CAAC,CAAA,KAAM,kBAAkB,CAAC,CAAA,KAAM,iBAAA,CAAkB,CAAA,CAAE,OAAO,CAAC;AAAA,GAC1F,CACC,GAAA,CAAI,CAAC,CAAA,MAAO,EAAE,GAAA,EAAK,CAAA,EAAG,MAAA,EAAQ,uBAAA,CAAwB,CAAC,CAAA,EAAE,CAAE,CAAA,CAC3D,MAAA,CAAO,CAAC,CAAA,KAAwD,CAAA,CAAE,MAAA,KAAW,IAAI,CAAA,CACjF,MAAA,CAAO,CAAC,CAAA,KAAM,CAAC,IAAA,CAAK,eAAA,IAAmB,CAAA,CAAE,MAAA,IAAU,KAAK,eAAe,CAAA;AAE1E,EAAA,OAAO,MAAA,CAAO,IAAA,CAAK,CAAC,CAAA,EAAG,CAAA,KAAO,CAAA,CAAE,MAAA,GAAS,CAAA,CAAE,MAAA,GAAS,EAAA,GAAK,CAAE,CAAA,CAAE,CAAC,CAAA,EAAG,GAAA;AACnE;AAGA,SAAS,kBAAA,CACP,SAAA,EACA,WAAA,EACA,OAAA,EACiC;AACjC,EAAA,MAAM,OAAA,GAAU,UAAU,WAAA,IAAe,CAAA;AACzC,EAAA,IAAI,WAAW,CAAA,EAAG;AAChB,IAAA,MAAM,QAAA,GAA8B;AAAA,MAClC,WAAA,EAAa,OAAA;AAAA,MACb,UAAU,SAAA,CAAU,QAAA;AAAA,MACpB,QAAA,EAAU,WAAA;AAAA,MACV,OAAA;AAAA,MACA,UAAA,EAAY,SAAA,CAAU,UAAA,IAAc;AAAC,KACvC;AACA,IAAA,OAAO,EAAE,IAAA,EAAM,mBAAA,EAAqB,KAAA,EAAO,aAAA,CAAc,QAAQ,CAAA,EAAE;AAAA,EACrE;AACA,EAAA,MAAM,EAAA,GAAqB;AAAA,IACzB,WAAA,EAAa,CAAA;AAAA,IACb,MAAA,EAAQ,OAAA;AAAA,IACR,SAAS,WAAA,CAAY,OAAA;AAAA,IACrB;AAAA,GACF;AACA,EAAA,OAAO,EAAE,IAAA,EAAM,WAAA,EAAa,KAAA,EAAO,aAAA,CAAc,EAAE,CAAA,EAAE;AACvD;AAGA,eAAsB,sBAAA,CACpB,QACA,WAAA,EAC0B;AAC1B,EAAA,MAAM,UAAU,MAAA,CAAO,OAAA;AACvB,EAAA,IAAI,CAAC,OAAA,EAAS,MAAM,IAAI,aAAa,gCAAgC,CAAA;AAErE,EAAA,MAAM,KAAA,GAAQ,wBAAwB,WAAW,CAAA;AACjD,EAAA,IAAI,UAAU,IAAA,EAAM;AAClB,IAAA,MAAM,IAAI,aAAa,8CAA8C,CAAA;AAAA,EACvE;AACA,EAAA,MAAM,OAAA,GAAU,iBAAA,CAAkB,WAAA,CAAY,OAAO,CAAA;AACrD,EAAA,IAAI,YAAY,IAAA,EAAM;AACpB,IAAA,MAAM,IAAI,YAAA,CAAa,CAAA,0BAAA,EAA6B,WAAA,CAAY,OAAO,CAAA,CAAE,CAAA;AAAA,EAC3E;AAEA,EAAA,MAAM,MAAM,IAAA,CAAK,KAAA,CAAM,IAAA,CAAK,GAAA,KAAQ,GAAI,CAAA;AACxC,EAAA,MAAM,UAAA,GAAa,MAAA,CAAO,GAAA,GAAM,EAAE,CAAA;AAClC,EAAA,MAAM,WAAA,GAAc,MAAA,CAAO,GAAA,IAAO,WAAA,CAAY,qBAAqB,GAAA,CAAI,CAAA;AACvE,EAAA,MAAM,QAAQ,WAAA,EAAY;AAE1B,EAAA,MAAM,SAAA,GACH,WAAA,CAAY,KAAA,EAAO,IAAA,IAA+B,UAAA;AACrD,EAAA,MAAM,YAAA,GACH,WAAA,CAAY,KAAA,EAAO,OAAA,IAAkC,GAAA;AAExD,EAAA,MAAM,SAAA,GAAa,MAAM,MAAA,CAAO,aAAA,CAAc;AAAA,IAC5C,OAAA;AAAA,IACA,MAAA,EAAQ;AAAA,MACN,IAAA,EAAM,SAAA;AAAA,MACN,OAAA,EAAS,YAAA;AAAA,MACT,OAAA;AAAA,MACA,mBAAmB,WAAA,CAAY;AAAA,KACjC;AAAA,IACA,KAAA,EAAO;AAAA,MACL,yBAAA,EAA2B;AAAA,QACzB,EAAE,IAAA,EAAM,MAAA,EAAQ,IAAA,EAAM,SAAA,EAAU;AAAA,QAChC,EAAE,IAAA,EAAM,IAAA,EAAM,IAAA,EAAM,SAAA,EAAU;AAAA,QAC9B,EAAE,IAAA,EAAM,OAAA,EAAS,IAAA,EAAM,SAAA,EAAU;AAAA,QACjC,EAAE,IAAA,EAAM,YAAA,EAAc,IAAA,EAAM,SAAA,EAAU;AAAA,QACtC,EAAE,IAAA,EAAM,aAAA,EAAe,IAAA,EAAM,SAAA,EAAU;AAAA,QACvC,EAAE,IAAA,EAAM,OAAA,EAAS,IAAA,EAAM,SAAA;AAAU;AACnC,KACF;AAAA,IACA,WAAA,EAAa,2BAAA;AAAA,IACb,OAAA,EAAS;AAAA,MACP,MAAM,OAAA,CAAQ,OAAA;AAAA,MACd,IAAI,WAAA,CAAY,KAAA;AAAA,MAChB,KAAA;AAAA,MACA,UAAA;AAAA,MACA,WAAA;AAAA,MACA;AAAA;AACF,GACD,CAAA;AAED,EAAA,OAAO;AAAA,IACL,SAAA;AAAA,IACA,aAAA,EAAe;AAAA,MACb,MAAM,OAAA,CAAQ,OAAA;AAAA,MACd,IAAI,WAAA,CAAY,KAAA;AAAA,MAChB,KAAA,EAAO,MAAM,QAAA,EAAS;AAAA,MACtB,UAAA,EAAY,WAAW,QAAA,EAAS;AAAA,MAChC,WAAA,EAAa,YAAY,QAAA,EAAS;AAAA,MAClC;AAAA;AACF,GACF;AACF;AAMA,eAAsB,WAAA,CACpB,QACA,WAAA,EACyB;AACzB,EAAA,OAAO;AAAA,IACL,WAAA,EAAa,CAAA;AAAA,IACb,MAAA,EAAQ,OAAA;AAAA,IACR,SAAS,WAAA,CAAY,OAAA;AAAA,IACrB,OAAA,EAAS,MAAM,sBAAA,CAAuB,MAAA,EAAQ,WAAW;AAAA,GAC3D;AACF;AAGA,SAAS,kBAAkB,OAAA,EAAgC;AACzD,EAAA,IAAI,OAAA,CAAQ,UAAA,CAAW,SAAS,CAAA,EAAG;AACjC,IAAA,MAAM,KAAK,MAAA,CAAO,OAAA,CAAQ,KAAA,CAAM,SAAA,CAAU,MAAM,CAAC,CAAA;AACjD,IAAA,OAAO,OAAO,SAAA,CAAU,EAAE,CAAA,IAAK,EAAA,GAAK,IAAI,EAAA,GAAK,IAAA;AAAA,EAC/C;AACA,EAAA,QAAQ,OAAA;AAAwB,IAC9B,KAAK,MAAA;AACH,MAAA,OAAO,IAAA;AAAA,IACT,KAAK,cAAA;AACH,MAAA,OAAO,KAAA;AAAA,IACT,KAAK,UAAA;AACH,MAAA,OAAO,CAAA;AAAA,IACT,KAAK,UAAA;AACH,MAAA,OAAO,EAAA;AAAA,IACT,KAAK,UAAA;AACH,MAAA,OAAO,KAAA;AAAA,IACT,KAAK,SAAA;AACH,MAAA,OAAO,GAAA;AAAA,IACT;AACE,MAAA,OAAO,IAAA;AAAA;AAEb","file":"client.js","sourcesContent":["import type { X402Network } from './types.js'\n\nconst USDC_BY_NETWORK: Record<X402Network, `0x${string}`> = {\n  base: '0x833589fCD6eDb6E08f4c7C32D4f71b54bdA02913',\n  'base-sepolia': '0x036CbD53842c5426634e7929541eC2318f3dCF7e',\n  ethereum: '0xA0b86991c6218b36c1d19D4a2e9Eb0cE3606eB48',\n  optimism: '0x0b2C639c533813f4Aa9D7837CAf62653d097Ff85',\n  arbitrum: '0xaf88d065e77c8cC2239327C5EDb3A432268e5831',\n  polygon: '0x3c499c542cEF5E3811e1192ce70d8cC03d5c3359',\n}\n\nexport const USDC_DECIMALS = 6\n\n/** Returns the canonical USDC contract address for a supported network. */\nexport function usdcAddress(network: X402Network): `0x${string}` {\n  return USDC_BY_NETWORK[network]\n}\n\n/**\n * Convert a human-friendly USD amount (e.g. \"0.01\") into atomic USDC units.\n * Fixed-point to avoid float drift — safer than Number math for payments.\n */\nexport function usdToAtomic(amount: string | number, decimals = USDC_DECIMALS): string {\n  const str = typeof amount === 'number' ? amount.toString() : amount\n  if (!/^\\d+(\\.\\d+)?$/.test(str)) {\n    throw new Error(`Invalid amount: ${str}`)\n  }\n  const [whole, frac = ''] = str.split('.')\n  const padded = frac.slice(0, decimals).padEnd(decimals, '0')\n  return (BigInt(whole ?? '0') * 10n ** BigInt(decimals) + BigInt(padded || '0')).toString()\n}\n\nconst utf8Encoder = new TextEncoder()\nconst utf8Decoder = new TextDecoder()\n\n/** Base64 encode a JSON value — works in Node 18+ and browsers. */\nexport function encodePayment(value: unknown): string {\n  const bytes = utf8Encoder.encode(JSON.stringify(value))\n  if (typeof Buffer !== 'undefined') {\n    return Buffer.from(bytes).toString('base64')\n  }\n  let binary = ''\n  for (const byte of bytes) binary += String.fromCharCode(byte)\n  return btoa(binary)\n}\n\n/** Base64 decode a payment header value back into JSON. */\nexport function decodePayment<T = unknown>(b64: string): T {\n  let bytes: Uint8Array\n  if (typeof Buffer !== 'undefined') {\n    bytes = new Uint8Array(Buffer.from(b64, 'base64'))\n  } else {\n    const binary = atob(b64)\n    bytes = new Uint8Array(binary.length)\n    for (let i = 0; i < binary.length; i++) bytes[i] = binary.charCodeAt(i)\n  }\n  return JSON.parse(utf8Decoder.decode(bytes)) as T\n}\n\n/** Generate a random 32-byte nonce as a 0x-prefixed hex string. */\nexport function randomNonce(): `0x${string}` {\n  const bytes = new Uint8Array(32)\n  globalThis.crypto.getRandomValues(bytes)\n  return ('0x' + Array.from(bytes, (b) => b.toString(16).padStart(2, '0')).join('')) as `0x${string}`\n}\n","import type { Address, Hex, WalletClient } from 'viem'\nimport type {\n  ExactEvmPayload,\n  PaymentEnvelopeV2,\n  PaymentPayload,\n  PaymentRequiredResponse,\n  PaymentRequirement,\n  X402Network,\n} from './types.js'\nimport { decodePayment, encodePayment, randomNonce } from './utils.js'\n\nexport interface ClientOptions {\n  /** A viem WalletClient able to sign EIP-712 typed data. */\n  wallet: WalletClient\n  /** Underlying fetch to wrap (defaults to global fetch). */\n  fetch?: typeof fetch\n  /**\n   * Hook called before signing. Return `false` to reject the payment.\n   * Useful for showing a confirmation UI to the user.\n   */\n  onPaymentRequired?: (requirement: PaymentRequirement) => boolean | Promise<boolean>\n  /** Only allow payments up to this atomic-units cap. Safety belt. */\n  maxAmountAtomic?: bigint\n  /** Restrict to specific networks (defaults to all). */\n  allowedNetworks?: X402Network[]\n}\n\n/**\n * Create a fetch wrapper that transparently handles x402 payments —\n * protocol v1 (\"base\" networks, `maxAmountRequired`, `X-PAYMENT` header)\n * and v2 (CAIP-2 networks, `amount`, `PAYMENT-SIGNATURE` envelope) alike.\n *\n * On a 402 response, it picks the cheapest acceptable requirement,\n * signs an EIP-3009 authorization with the provided wallet, and retries\n * the request with the version-appropriate payment header.\n *\n * @example\n * ```ts\n * const pay = createPaymentClient({ wallet })\n * const res = await pay('https://api.example.com/premium')\n * ```\n */\nexport function createPaymentClient(options: ClientOptions) {\n  const baseFetch = options.fetch ?? globalThis.fetch.bind(globalThis)\n\n  return async function payFetch(\n    input: string | URL | Request,\n    init: RequestInit = {},\n  ): Promise<Response> {\n    const first = await baseFetch(input, init)\n    if (first.status !== 402) return first\n\n    const requirements = await parsePaymentRequired(first)\n    const requirement = selectRequirement(requirements.accepts ?? [], options)\n    if (!requirement) {\n      throw new PaymentError('No acceptable payment requirement matched client constraints', requirements)\n    }\n\n    if (options.onPaymentRequired) {\n      const approved = await options.onPaymentRequired(requirement)\n      if (!approved) throw new PaymentError('Payment rejected by user', requirements)\n    }\n\n    const payload = await signExactAuthorization(options.wallet, requirement)\n    const header = buildPaymentHeader(requirements, requirement, payload)\n    const headers = new Headers(init.headers)\n    headers.set(header.name, header.value)\n\n    return baseFetch(input, { ...init, headers })\n  }\n}\n\nexport class PaymentError extends Error {\n  readonly requirements?: PaymentRequiredResponse\n  constructor(message: string, requirements?: PaymentRequiredResponse) {\n    super(message)\n    this.name = 'PaymentError'\n    this.requirements = requirements\n  }\n}\n\n/**\n * Atomic units owed for a requirement, version-agnostic: x402 v2 prices in\n * `amount`, v1 in `maxAmountRequired`. Returns null when absent or\n * unparseable (never throws — selection must be able to skip bad entries).\n */\nexport function requirementAtomicAmount(req: PaymentRequirement): bigint | null {\n  const raw = req.amount ?? req.maxAmountRequired\n  if (raw == null) return null\n  try {\n    return BigInt(raw)\n  } catch {\n    return null\n  }\n}\n\nasync function parsePaymentRequired(res: Response): Promise<PaymentRequiredResponse> {\n  try {\n    return (await res.clone().json()) as PaymentRequiredResponse\n  } catch {\n    // v2 servers mirror the discovery document base64-encoded in the\n    // `payment-required` response header — fall back to it for non-JSON bodies.\n    const header = res.headers.get('payment-required')\n    if (header) {\n      try {\n        return decodePayment<PaymentRequiredResponse>(header)\n      } catch {\n        /* fall through to the error below */\n      }\n    }\n    throw new PaymentError('402 response did not contain a valid x402 discovery body')\n  }\n}\n\nfunction selectRequirement(\n  accepts: PaymentRequirement[],\n  opts: ClientOptions,\n): PaymentRequirement | undefined {\n  const priced = accepts\n    .filter((a) => a.scheme === 'exact')\n    // Only EVM networks this client can sign for (drops e.g. \"solana:…\").\n    .filter((a) => chainIdForNetwork(a.network) !== null)\n    .filter(\n      (a) =>\n        !opts.allowedNetworks ||\n        opts.allowedNetworks.some((n) => chainIdForNetwork(n) === chainIdForNetwork(a.network)),\n    )\n    .map((a) => ({ req: a, amount: requirementAtomicAmount(a) }))\n    .filter((e): e is { req: PaymentRequirement; amount: bigint } => e.amount !== null)\n    .filter((e) => !opts.maxAmountAtomic || e.amount <= opts.maxAmountAtomic)\n\n  return priced.sort((a, b) => (a.amount < b.amount ? -1 : 1))[0]?.req\n}\n\n/** Build the version-appropriate payment header for a signed authorization. */\nfunction buildPaymentHeader(\n  challenge: PaymentRequiredResponse,\n  requirement: PaymentRequirement,\n  payload: ExactEvmPayload,\n): { name: string; value: string } {\n  const version = challenge.x402Version ?? 1\n  if (version >= 2) {\n    const envelope: PaymentEnvelopeV2 = {\n      x402Version: version,\n      resource: challenge.resource,\n      accepted: requirement,\n      payload,\n      extensions: challenge.extensions ?? {},\n    }\n    return { name: 'PAYMENT-SIGNATURE', value: encodePayment(envelope) }\n  }\n  const v1: PaymentPayload = {\n    x402Version: 1,\n    scheme: 'exact',\n    network: requirement.network,\n    payload,\n  }\n  return { name: 'X-PAYMENT', value: encodePayment(v1) }\n}\n\n/** Sign an EIP-3009 `TransferWithAuthorization` for the given requirement. */\nexport async function signExactAuthorization(\n  wallet: WalletClient,\n  requirement: PaymentRequirement,\n): Promise<ExactEvmPayload> {\n  const account = wallet.account\n  if (!account) throw new PaymentError('Wallet has no account attached')\n\n  const value = requirementAtomicAmount(requirement)\n  if (value === null) {\n    throw new PaymentError('x402 requirement is missing a payment amount')\n  }\n  const chainId = chainIdForNetwork(requirement.network)\n  if (chainId === null) {\n    throw new PaymentError(`Unsupported x402 network: ${requirement.network}`)\n  }\n\n  const now = Math.floor(Date.now() / 1000)\n  const validAfter = BigInt(now - 60)\n  const validBefore = BigInt(now + (requirement.maxTimeoutSeconds ?? 600))\n  const nonce = randomNonce()\n\n  const tokenName =\n    (requirement.extra?.name as string | undefined) ?? 'USD Coin'\n  const tokenVersion =\n    (requirement.extra?.version as string | undefined) ?? '2'\n\n  const signature = (await wallet.signTypedData({\n    account,\n    domain: {\n      name: tokenName,\n      version: tokenVersion,\n      chainId,\n      verifyingContract: requirement.asset,\n    },\n    types: {\n      TransferWithAuthorization: [\n        { name: 'from', type: 'address' },\n        { name: 'to', type: 'address' },\n        { name: 'value', type: 'uint256' },\n        { name: 'validAfter', type: 'uint256' },\n        { name: 'validBefore', type: 'uint256' },\n        { name: 'nonce', type: 'bytes32' },\n      ],\n    },\n    primaryType: 'TransferWithAuthorization',\n    message: {\n      from: account.address as Address,\n      to: requirement.payTo,\n      value,\n      validAfter,\n      validBefore,\n      nonce,\n    },\n  })) as Hex\n\n  return {\n    signature,\n    authorization: {\n      from: account.address as Address,\n      to: requirement.payTo,\n      value: value.toString(),\n      validAfter: validAfter.toString(),\n      validBefore: validBefore.toString(),\n      nonce,\n    },\n  }\n}\n\n/**\n * Sign a requirement into the x402 **v1** `X-PAYMENT` payload shape.\n * Kept for back-compat; `createPaymentClient` is version-aware internally.\n */\nexport async function signPayment(\n  wallet: WalletClient,\n  requirement: PaymentRequirement,\n): Promise<PaymentPayload> {\n  return {\n    x402Version: 1,\n    scheme: 'exact',\n    network: requirement.network,\n    payload: await signExactAuthorization(wallet, requirement),\n  }\n}\n\n/** Resolve a network to an EVM chain id — v1 friendly names and CAIP-2 ids. */\nfunction chainIdForNetwork(network: string): number | null {\n  if (network.startsWith('eip155:')) {\n    const id = Number(network.slice('eip155:'.length))\n    return Number.isInteger(id) && id > 0 ? id : null\n  }\n  switch (network as X402Network) {\n    case 'base':\n      return 8453\n    case 'base-sepolia':\n      return 84532\n    case 'ethereum':\n      return 1\n    case 'optimism':\n      return 10\n    case 'arbitrum':\n      return 42161\n    case 'polygon':\n      return 137\n    default:\n      return null\n  }\n}\n"]}

package/dist/express.d.cts

@@ -2,7 +2,7 @@ import { RequestHandler } from 'express';
 import { RouteGateOptions } from './server.cjs';
 export { gate } from './server.cjs';
 import 'viem';
-import './types-DzGpKiV3.cjs';
+import './types-DgG0iIOB.cjs';
 
 declare module 'express-serve-static-core' {
     interface Request {

package/dist/express.d.ts

@@ -2,7 +2,7 @@ import { RequestHandler } from 'express';
 import { RouteGateOptions } from './server.js';
 export { gate } from './server.js';
 import 'viem';
-import './types-DzGpKiV3.js';
+import './types-DgG0iIOB.js';
 
 declare module 'express-serve-static-core' {
     interface Request {

package/dist/index.cjs

@@ -57,7 +57,7 @@ function createPaymentClient(options) {
     const first = await baseFetch(input, init);
     if (first.status !== 402) return first;
     const requirements = await parsePaymentRequired(first);
-    const requirement = selectRequirement(requirements.accepts, options);
+    const requirement = selectRequirement(requirements.accepts ?? [], options);
     if (!requirement) {
       throw new PaymentError("No acceptable payment requirement matched client constraints", requirements);
     }
@@ -65,9 +65,10 @@ function createPaymentClient(options) {
       const approved = await options.onPaymentRequired(requirement);
       if (!approved) throw new PaymentError("Payment rejected by user", requirements);
     }
-    const payment = await signPayment(options.wallet, requirement);
+    const payload = await signExactAuthorization(options.wallet, requirement);
+    const header = buildPaymentHeader(requirements, requirement, payload);
     const headers = new Headers(init.headers);
-    headers.set("X-PAYMENT", encodePayment(payment));
+    headers.set(header.name, header.value);
     return baseFetch(input, { ...init, headers });
   };
 }
@@ -79,22 +80,66 @@ var PaymentError = class extends Error {
     this.requirements = requirements;
   }
 };
+function requirementAtomicAmount(req) {
+  const raw = req.amount ?? req.maxAmountRequired;
+  if (raw == null) return null;
+  try {
+    return BigInt(raw);
+  } catch {
+    return null;
+  }
+}
 async function parsePaymentRequired(res) {
   try {
     return await res.clone().json();
   } catch {
+    const header = res.headers.get("payment-required");
+    if (header) {
+      try {
+        return decodePayment(header);
+      } catch {
+      }
+    }
     throw new PaymentError("402 response did not contain a valid x402 discovery body");
   }
 }
 function selectRequirement(accepts, opts) {
-  const filtered = accepts.filter((a) => a.scheme === "exact").filter((a) => !opts.allowedNetworks || opts.allowedNetworks.includes(a.network)).filter((a) => !opts.maxAmountAtomic || BigInt(a.maxAmountRequired) <= opts.maxAmountAtomic);
-  return filtered.sort(
-    (a, b) => BigInt(a.maxAmountRequired) < BigInt(b.maxAmountRequired) ? -1 : 1
-  )[0];
+  const priced = accepts.filter((a) => a.scheme === "exact").filter((a) => chainIdForNetwork(a.network) !== null).filter(
+    (a) => !opts.allowedNetworks || opts.allowedNetworks.some((n) => chainIdForNetwork(n) === chainIdForNetwork(a.network))
+  ).map((a) => ({ req: a, amount: requirementAtomicAmount(a) })).filter((e) => e.amount !== null).filter((e) => !opts.maxAmountAtomic || e.amount <= opts.maxAmountAtomic);
+  return priced.sort((a, b) => a.amount < b.amount ? -1 : 1)[0]?.req;
 }
-async function signPayment(wallet, requirement) {
+function buildPaymentHeader(challenge, requirement, payload) {
+  const version = challenge.x402Version ?? 1;
+  if (version >= 2) {
+    const envelope = {
+      x402Version: version,
+      resource: challenge.resource,
+      accepted: requirement,
+      payload,
+      extensions: challenge.extensions ?? {}
+    };
+    return { name: "PAYMENT-SIGNATURE", value: encodePayment(envelope) };
+  }
+  const v1 = {
+    x402Version: 1,
+    scheme: "exact",
+    network: requirement.network,
+    payload
+  };
+  return { name: "X-PAYMENT", value: encodePayment(v1) };
+}
+async function signExactAuthorization(wallet, requirement) {
   const account = wallet.account;
   if (!account) throw new PaymentError("Wallet has no account attached");
+  const value = requirementAtomicAmount(requirement);
+  if (value === null) {
+    throw new PaymentError("x402 requirement is missing a payment amount");
+  }
+  const chainId = chainIdForNetwork(requirement.network);
+  if (chainId === null) {
+    throw new PaymentError(`Unsupported x402 network: ${requirement.network}`);
+  }
   const now = Math.floor(Date.now() / 1e3);
   const validAfter = BigInt(now - 60);
   const validBefore = BigInt(now + (requirement.maxTimeoutSeconds ?? 600));
@@ -106,7 +151,7 @@ async function signPayment(wallet, requirement) {
     domain: {
       name: tokenName,
       version: tokenVersion,
-      chainId: chainIdForNetwork(requirement.network),
+      chainId,
       verifyingContract: requirement.asset
     },
     types: {
@@ -123,30 +168,37 @@ async function signPayment(wallet, requirement) {
     message: {
       from: account.address,
       to: requirement.payTo,
-      value: BigInt(requirement.maxAmountRequired),
+      value,
       validAfter,
       validBefore,
       nonce
     }
   });
+  return {
+    signature,
+    authorization: {
+      from: account.address,
+      to: requirement.payTo,
+      value: value.toString(),
+      validAfter: validAfter.toString(),
+      validBefore: validBefore.toString(),
+      nonce
+    }
+  };
+}
+async function signPayment(wallet, requirement) {
   return {
     x402Version: 1,
     scheme: "exact",
     network: requirement.network,
-    payload: {
-      signature,
-      authorization: {
-        from: account.address,
-        to: requirement.payTo,
-        value: requirement.maxAmountRequired,
-        validAfter: validAfter.toString(),
-        validBefore: validBefore.toString(),
-        nonce
-      }
-    }
+    payload: await signExactAuthorization(wallet, requirement)
   };
 }
 function chainIdForNetwork(network) {
+  if (network.startsWith("eip155:")) {
+    const id = Number(network.slice("eip155:".length));
+    return Number.isInteger(id) && id > 0 ? id : null;
+  }
   switch (network) {
     case "base":
       return 8453;
@@ -160,6 +212,8 @@ function chainIdForNetwork(network) {
       return 42161;
     case "polygon":
       return 137;
+    default:
+      return null;
   }
 }
 
@@ -191,7 +245,7 @@ function hostOf(input) {
   }
 }
 function txHashOf(res) {
-  const header = res.headers.get("x-payment-response");
+  const header = res.headers.get("payment-response") ?? res.headers.get("x-payment-response");
   if (!header) return void 0;
   try {
     return decodePayment(header).transaction;
@@ -206,7 +260,36 @@ function yeetful(options) {
   let spentToday = 0;
   let spentTotal = 0;
   let dayIndex = utcDayIndex(Date.now());
+  const ledgerEndpoint = options.apiKey && grant.id ? `${(options.ledgerUrl ?? "https://yeetful.com").replace(/\/+$/, "")}/api/grants/${grant.id}/ledger` : null;
+  if (options.apiKey && !grant.id) {
+    log("hosted-ledger sync disabled: grant.id is not set (use the id of your yeetful.com grant)");
+  }
+  let ledgerChain = Promise.resolve();
+  const ledgerFetch = options.fetch ?? globalThis.fetch;
+  const sync = (r) => {
+    if (!ledgerEndpoint) return;
+    ledgerChain = ledgerChain.then(async () => {
+      const res = await ledgerFetch(ledgerEndpoint, {
+        method: "POST",
+        headers: {
+          "content-type": "application/json",
+          authorization: `Bearer ${options.apiKey}`
+        },
+        body: JSON.stringify({
+          host: r.host,
+          amountUsd: r.amountUsd,
+          ok: r.ok,
+          txHash: r.txHash,
+          note: r.note
+        })
+      });
+      if (!res.ok) log(`ledger sync \u2192 ${res.status} for ${r.host}`);
+    }).catch((err) => {
+      log(`ledger sync failed for ${r.host}: ${err instanceof Error ? err.message : err}`);
+    });
+  };
   const emit = (r) => {
+    sync(r);
     void Promise.resolve(onReceipt?.(r)).catch(() => {
     });
   };
@@ -235,7 +318,7 @@ function yeetful(options) {
       // Per-call enforcement lives in the hook (not maxAmountAtomic) so an
       // over-cap call surfaces a clean GrantError instead of a filtered no-match.
       onPaymentRequired: (req) => {
-        const price = Number(req.maxAmountRequired) / 1e6;
+        const price = Number(requirementAtomicAmount(req) ?? 0n) / 1e6;
         if (price > grant.perCallUsd) {
           deny(host, "OVER_PER_CALL", `$${price.toFixed(4)} exceeds per-call cap $${grant.perCallUsd}`);
         }
@@ -270,6 +353,7 @@ function yeetful(options) {
   pay.spentTodayUsd = () => spentToday;
   pay.remainingTodayUsd = () => Math.max(0, grant.perDayUsd - spentToday);
   pay.spentTotalUsd = () => spentTotal;
+  pay.flushLedger = () => ledgerChain;
   return pay;
 }
 
@@ -405,6 +489,8 @@ exports.createPaymentClient = createPaymentClient;
 exports.decodePayment = decodePayment;
 exports.encodePayment = encodePayment;
 exports.gate = gate;
+exports.requirementAtomicAmount = requirementAtomicAmount;
+exports.signExactAuthorization = signExactAuthorization;
 exports.signPayment = signPayment;
 exports.usdToAtomic = usdToAtomic;
 exports.usdcAddress = usdcAddress;