paynode-sdk-python 1.4.0__tar.gz → 2.1.0__tar.gz

{paynode_sdk_python-1.4.0 → paynode_sdk_python-2.1.0}/PKG-INFO

@@ -1,6 +1,6 @@
 Metadata-Version: 2.4
 Name: paynode-sdk-python
-Version: 1.4.0
+Version: 2.1.0
 Summary: PayNode Protocol Python SDK for AI Agents
 Author-email: PayNodeLabs <contact@paynode.dev>
 License: MIT
@@ -23,7 +23,7 @@ Dynamic: license-file
 [![Official Documentation](https://img.shields.io/badge/Docs-docs.paynode.dev-00ff88?style=for-the-badge&logo=readthedocs)](https://docs.paynode.dev)
 [![PyPI Version](https://img.shields.io/pypi/v/paynode-sdk-python.svg?style=for-the-badge)](https://pypi.org/project/paynode-sdk-python/)
 
-The official Python SDK for the **PayNode Protocol**. PayNode allows autonomous AI Agents to seamlessly pay for APIs and computational resources using USDC on Base L2, utilizing the standardized HTTP 402 protocol.
+The official Python SDK for the **PayNode Protocol (v3.1)**. PayNode allows autonomous AI Agents to seamlessly pay for APIs and computational resources using USDC on Base L2, utilizing the standardized HTTP 402 protocol with support for both on-chain receipts and off-chain signatures (EIP-3009).
 
 ## 📖 Read the Docs
 
@@ -54,6 +54,17 @@ response = agent.request_gate("https://api.merchant.com/premium-data", method="P
 print(response.json())
 ```
 
+### Key Features (v2.1)
+- **EIP-3009 Support**: Sign payments off-chain using `TransferWithAuthorization`, allowing for gasless or relayer-mediated settlement.
+- **X402 V2 Protocol**: JSON-based handshake for more structured and machine-readable payment instructions.
+- **Dual Flow**: Automatic fallback to V1 (on-chain receipts) for legacy merchant support.
+- **FastAPI Middleware**: Easy-to-use middleware for merchants to protect their API routes.
+
+## 🗺️ Roadmap
+- **TRON Support**: USDT (TRC-20) payment integration.
+- **Solana Support**: SPL USDC/USDT payment integration.
+- **Cross-chain**: Universal settlement via bridges.
+
 ## 🚀 Run the Demo
 
 The SDK includes a complete Merchant/Agent demo in the `examples/` directory.

{paynode_sdk_python-1.4.0 → paynode_sdk_python-2.1.0}/README.md

@@ -3,7 +3,7 @@
 [![Official Documentation](https://img.shields.io/badge/Docs-docs.paynode.dev-00ff88?style=for-the-badge&logo=readthedocs)](https://docs.paynode.dev)
 [![PyPI Version](https://img.shields.io/pypi/v/paynode-sdk-python.svg?style=for-the-badge)](https://pypi.org/project/paynode-sdk-python/)
 
-The official Python SDK for the **PayNode Protocol**. PayNode allows autonomous AI Agents to seamlessly pay for APIs and computational resources using USDC on Base L2, utilizing the standardized HTTP 402 protocol.
+The official Python SDK for the **PayNode Protocol (v3.1)**. PayNode allows autonomous AI Agents to seamlessly pay for APIs and computational resources using USDC on Base L2, utilizing the standardized HTTP 402 protocol with support for both on-chain receipts and off-chain signatures (EIP-3009).
 
 ## 📖 Read the Docs
 
@@ -34,6 +34,17 @@ response = agent.request_gate("https://api.merchant.com/premium-data", method="P
 print(response.json())
 ```
 
+### Key Features (v2.1)
+- **EIP-3009 Support**: Sign payments off-chain using `TransferWithAuthorization`, allowing for gasless or relayer-mediated settlement.
+- **X402 V2 Protocol**: JSON-based handshake for more structured and machine-readable payment instructions.
+- **Dual Flow**: Automatic fallback to V1 (on-chain receipts) for legacy merchant support.
+- **FastAPI Middleware**: Easy-to-use middleware for merchants to protect their API routes.
+
+## 🗺️ Roadmap
+- **TRON Support**: USDT (TRC-20) payment integration.
+- **Solana Support**: SPL USDC/USDT payment integration.
+- **Cross-chain**: Universal settlement via bridges.
+
 ## 🚀 Run the Demo
 
 The SDK includes a complete Merchant/Agent demo in the `examples/` directory.

{paynode_sdk_python-1.4.0 → paynode_sdk_python-2.1.0}/paynode_sdk/__init__.py

@@ -8,7 +8,7 @@ warnings.filterwarnings("ignore", category=DeprecationWarning, module="websocket
 from .middleware import PayNodeMiddleware, x402_gate
 from .verifier import PayNodeVerifier
 from .errors import ErrorCode, PayNodeException
-from .idempotency import IdempotencyStore, MemoryIdempotencyStore
+from .idempotency import IdempotencyStore, MemoryIdempotencyStore, RedisIdempotencyStore
 from .webhook import PayNodeWebhookNotifier, PaymentEvent
 from .client import PayNodeAgentClient
 from .constants import (
@@ -22,7 +22,7 @@ from .constants import (
 
 __all__ = [
     "PayNodeMiddleware", "x402_gate", "PayNodeVerifier", "ErrorCode", "PayNodeException",
-    "IdempotencyStore", "MemoryIdempotencyStore",
+    "IdempotencyStore", "MemoryIdempotencyStore", "RedisIdempotencyStore",
     "PayNodeWebhookNotifier", "PaymentEvent",
     "PayNodeAgentClient",
     "PAYNODE_ROUTER_ADDRESS", "PAYNODE_ROUTER_ADDRESS_SANDBOX",

paynode_sdk_python-2.1.0/paynode_sdk/client.py

@@ -0,0 +1,362 @@
+import time
+import logging
+import threading
+from concurrent.futures import ThreadPoolExecutor, as_completed
+import requests
+from urllib.parse import urlparse
+from eth_account.messages import encode_typed_data
+from web3 import Web3
+from requests.adapters import HTTPAdapter
+from urllib3.util.retry import Retry
+from .constants import PAYNODE_ROUTER_ADDRESS, BASE_USDC_ADDRESS, BASE_USDC_DECIMALS, BASE_RPC_URLS, ACCEPTED_TOKENS, MIN_PAYMENT_AMOUNT, PAYNODE_ROUTER_ABI
+from .errors import PayNodeException, ErrorCode
+
+logger = logging.getLogger("paynode_sdk.client")
+
+class PayNodeAgentClient:
+    """
+    The main PayNode Client for AI Agents (v3.1).
+    Automatically handles the x402 'Payment Required' handshake.
+    Supports RPC redundancy, EIP-2612 Permit, and EIP-3009 Authorization.
+    """
+    def __init__(self, private_key: str, rpc_urls: list | str = BASE_RPC_URLS):
+        self.rpc_urls = rpc_urls if isinstance(rpc_urls, list) else [rpc_urls]
+        self.w3 = self._init_w3()
+        self.current_rpc_index = 0
+        
+        # Initialize account and discard private key string
+        self.account = self.w3.eth.account.from_key(private_key)
+        self.nonce_lock = threading.Lock()
+        
+        # Setup session
+        self.session = requests.Session()
+        retry_strategy = Retry(
+            total=3,
+            status_forcelist=[429, 500, 502, 503, 504],
+            allowed_methods=["HEAD", "GET", "POST", "PUT", "DELETE", "OPTIONS", "TRACE"]
+        )
+        adapter = HTTPAdapter(max_retries=retry_strategy)
+        self.session.mount("https://", adapter)
+        self.session.mount("http://", adapter)
+
+    def _init_w3(self):
+        """Finds a working RPC from the list concurrently (Faster initialization)."""
+        
+        def _check_rpc(rpc_url):
+            try:
+                temp_w3 = Web3(Web3.HTTPProvider(rpc_url, request_kwargs={'timeout': 3}))
+                if temp_w3.is_connected():
+                    return temp_w3
+                return None
+            except Exception:
+                return None
+
+        with ThreadPoolExecutor(max_workers=min(len(self.rpc_urls), 5)) as executor:
+            future_to_url = {executor.submit(_check_rpc, url): url for url in self.rpc_urls}
+            # Return the first one that succeeds
+            for future in as_completed(future_to_url):
+                w3_instance = future.result()
+                if w3_instance:
+                    logger.debug(f"⚡ [PayNode-PY] Connected to RPC: {future_to_url[future]}")
+                    return w3_instance
+                    
+        raise PayNodeException(ErrorCode.rpc_error, message="All provided RPC nodes are unreachable.")
+
+    def _rotate_rpc(self):
+        """Switches to the next available RPC node in the list."""
+        self.current_rpc_index = (self.current_rpc_index + 1) % len(self.rpc_urls)
+        new_url = self.rpc_urls[self.current_rpc_index]
+        logger.warning(f"⚠️ [PayNode-PY] RPC failure detected. Rotating to: {new_url}")
+        self.w3 = Web3(Web3.HTTPProvider(new_url, request_kwargs={'timeout': 10}))
+
+    def _call_with_failover(self, func, *args, **kwargs):
+        """Wrapper to retry a web3 call with RPC failover."""
+        for attempt in range(len(self.rpc_urls)):
+            try:
+                return func(*args, **kwargs)
+            except Exception as e:
+                if attempt < len(self.rpc_urls) - 1:
+                    self._rotate_rpc()
+                else:
+                    raise e
+
+    def request_gate(self, url: str, method: str = "GET", **kwargs):
+        """The high-level autonomous method handling 402 loop."""
+        return self._request_with_402_retry(method.upper(), url, **kwargs)
+
+    def get(self, url, **kwargs):
+        return self.request_gate(url, "GET", **kwargs)
+
+    def post(self, url, **kwargs):
+        return self.request_gate(url, "POST", **kwargs)
+
+    def _request_with_402_retry(self, method: str, url: str, max_retries: int = 3, **kwargs) -> requests.Response:
+        response = None
+        for attempt in range(max_retries):
+            response = self.session.request(method, url, **kwargs)
+            if response.status_code == 402:
+                logger.info(f"💡 [PayNode-PY] 402 Detected (Attempt {attempt+1}/{max_retries}). Analyzing protocol version...")
+                
+                # Check for x402 v2 (JSON body or X-402-Required header)
+                content_type = response.headers.get('Content-Type', '')
+                b64_required = response.headers.get('X-402-Required')
+                order_id = response.headers.get('X-402-Order-Id')
+                
+                body = None
+                if 'application/json' in content_type:
+                    try:
+                        body = response.json()
+                    except Exception as e:
+                        logger.debug(f"⚠️ [PayNode-PY] Failed to parse 402 JSON body: {e}")
+                
+                if not body and b64_required:
+                    try:
+                        import base64
+                        import json
+                        body = json.loads(base64.b64decode(b64_required).decode())
+                    except Exception as e:
+                        logger.warning(f"❌ [PayNode-PY] Failed to decode X-402-Required header: {e}")
+
+                if body and body.get('x402Version') == 2:
+                    logger.info("🚀 [PayNode-PY] x402 v2 detected. Handling autonomous payment...")
+                    if order_id: body['orderId'] = order_id
+                    kwargs = self._handle_x402_v2(url, body, **kwargs)
+                    continue
+
+                raise PayNodeException(ErrorCode.internal_error, message="Unsupported or malformed 402 response")
+            
+            return response
+
+        if response and response.status_code == 402:
+            raise PayNodeException(ErrorCode.internal_error, message="Still 402 after all payment attempts. The server may have rejected the payment or authorization.")
+        return response
+
+    def _handle_x402_v2(self, url: str, requirements: dict, **kwargs) -> dict:
+        """
+        Internal handler for X402 V2/V3.1 protocol.
+        Analyzes requirements, executes payment, and returns updated kwargs for retrying the request.
+        """
+        chain_id = self.w3.eth.chain_id
+        caip2_chain_id = f"eip155:{chain_id}"
+
+        # Select suitable requirement
+        requirement = next((req for req in requirements.get('accepts', []) 
+                         if req.get('network') == caip2_chain_id), None)
+
+        if not requirement:
+            raise PayNodeException(ErrorCode.internal_error, message=f"No compatible payment requirement found for network {caip2_chain_id}")
+
+        # 🛡️ Token Whitelist Check
+        chain_tokens = ACCEPTED_TOKENS.get(chain_id, [])
+        if chain_tokens and requirement.get('asset').lower() not in [t.lower() for t in chain_tokens]:
+            raise PayNodeException(ErrorCode.token_not_accepted, message=f"Token {requirement['asset']} is not in the whitelist for chain {chain_id}")
+
+        logger.info(f"💡 [PayNode-PY] Payment request (v2): {requirement['amount']} atomic units of {requirement['asset']} to {requirement['payTo']}")
+        
+        # Dust limit check
+        if int(requirement['amount']) < MIN_PAYMENT_AMOUNT:
+            raise PayNodeException(ErrorCode.amount_too_low, message=f"Payment amount {requirement['amount']} is below the minimum dust limit of {MIN_PAYMENT_AMOUNT}")
+
+        order_id = requirement.get('orderId') or requirements.get('orderId') or urlparse(url).path
+        
+        payload_data = {}
+        ptype = requirement.get('type', 'onchain')
+
+        if ptype == 'eip3009':
+            valid_after = int(time.time()) - 60
+            valid_before = int(time.time()) + requirement.get('maxTimeoutSeconds', 3600)
+            import os
+            nonce = "0x" + os.urandom(32).hex()
+
+            try:
+                payload_data = self.sign_transfer_with_authorization(
+                    requirement['asset'],
+                    requirement['payTo'],
+                    int(requirement['amount']),
+                    valid_after,
+                    valid_before,
+                    nonce,
+                    requirement.get('extra', {})
+                )
+            except Exception as e:
+                raise PayNodeException(ErrorCode.transaction_failed, message="Failed to sign payment authorization", details=e)
+        else:
+            # type: 'onchain'
+            router_addr = requirement.get('router')
+            if not router_addr:
+                raise PayNodeException(ErrorCode.internal_error, message="On-chain payment required but no router address provided.")
+
+            logger.info(f"⚡ [PayNode-PY] Executing on-chain payment to {requirement['payTo']}...")
+            amount = int(requirement['amount'])
+            asset = requirement['asset']
+            allowance = self._get_allowance(asset, router_addr)
+
+            if allowance >= amount:
+                try:
+                    tx_hash = self.pay(router_addr, asset, requirement['payTo'], amount, order_id)
+                except Exception as e:
+                    logger.warning(f"⚠️ [PayNode-PY] Direct pay failed (possibly allowance race), falling back to permit: {e}")
+                    tx_hash = self.pay_with_permit(router_addr, asset, requirement['payTo'], amount, order_id, version=requirement.get('extra', {}).get('version', '2'))
+            else:
+                tx_hash = self.pay_with_permit(router_addr, asset, requirement['payTo'], amount, order_id, version=requirement.get('extra', {}).get('version', '2'))
+            
+            payload_data = {"txHash": tx_hash}
+
+        # Unified Payload for v3.1
+        payment_payload = {
+            "version": "3.1",
+            "type": ptype,
+            "orderId": order_id,
+            "payload": payload_data
+        }
+
+        logger.info(f"✅ [PayNode-PY] {ptype} payment prepared. Retrying request...")
+        
+        import json
+        import base64
+        b64_payload = base64.b64encode(json.dumps(payment_payload).encode()).decode()
+
+        retry_headers = kwargs.get('headers', {}).copy()
+        retry_headers.update({
+            'Content-Type': 'application/json',
+            'X-402-Payload': b64_payload,
+            'X-402-Order-Id': order_id
+        })
+        kwargs['headers'] = retry_headers
+        return kwargs
+
+    def sign_transfer_with_authorization(self, token_addr, to, amount, valid_after, valid_before, nonce, extra=None):
+        extra = extra or {}
+        token_addr = Web3.to_checksum_address(token_addr)
+        to = Web3.to_checksum_address(to)
+        
+        domain = {
+            "name": extra.get("name", "USD Coin"),
+            "version": extra.get("version", "2"),
+            "chainId": self.w3.eth.chain_id,
+            "verifyingContract": token_addr,
+        }
+        
+        types = {
+            "EIP712Domain": [
+                {"name": "name", "type": "string"},
+                {"name": "version", "type": "string"},
+                {"name": "chainId", "type": "uint256"},
+                {"name": "verifyingContract", "type": "address"},
+            ],
+            "TransferWithAuthorization": [
+                {"name": "from", "type": "address"},
+                {"name": "to", "type": "address"},
+                {"name": "value", "type": "uint256"},
+                {"name": "validAfter", "type": "uint256"},
+                {"name": "validBefore", "type": "uint256"},
+                {"name": "nonce", "type": "bytes32"},
+            ],
+        }
+        
+        message = {
+            "from": self.account.address,
+            "to": to,
+            "value": int(amount),
+            "validAfter": int(valid_after),
+            "validBefore": int(valid_before),
+            "nonce": Web3.to_bytes(hexstr=nonce),
+        }
+        
+        structured_data = {
+            "types": types,
+            "domain": domain,
+            "primaryType": "TransferWithAuthorization",
+            "message": message,
+        }
+        
+        signed = self.account.sign_typed_data(full_message=structured_data)
+        
+        return {
+            "signature": signed.signature.hex(),
+            "authorization": {
+                "from": self.account.address,
+                "to": to,
+                "value": str(amount),
+                "validAfter": str(valid_after),
+                "validBefore": str(valid_before),
+                "nonce": nonce
+            }
+        }
+
+    def _get_allowance(self, token_addr, spender_addr):
+        return self._call_with_failover(self.__get_allowance_raw, token_addr, spender_addr)
+
+    def __get_allowance_raw(self, token_addr, spender_addr):
+        abi = [{"constant": True, "inputs": [{"name": "o", "type": "address"}, {"name": "s", "type": "address"}], "name": "allowance", "outputs": [{"name": "", "type": "uint256"}], "type": "function"}]
+        token = self.w3.eth.contract(address=Web3.to_checksum_address(token_addr), abi=abi)
+        return token.functions.allowance(self.account.address, Web3.to_checksum_address(spender_addr)).call()
+
+    def sign_permit(self, token_addr: str, spender_addr: str, amount: int, deadline: int = None, version: str = "2"):
+        if deadline is None:
+            deadline = int(time.time()) + 3600
+        
+        token_addr = Web3.to_checksum_address(token_addr)
+        spender_addr = Web3.to_checksum_address(spender_addr)
+        
+        abi = [
+            {"inputs": [{"name": "o", "type": "address"}], "name": "nonces", "outputs": [{"name": "", "type": "uint256"}], "stateMutability": "view", "type": "function"},
+            {"inputs": [], "name": "name", "outputs": [{"name": "", "type": "string"}], "stateMutability": "view", "type": "function"}
+        ]
+        token = self.w3.eth.contract(address=token_addr, abi=abi)
+        nonce = token.functions.nonces(self.account.address).call()
+        name = token.functions.name().call()
+        chain_id = self.w3.eth.chain_id
+
+        domain = {"name": name, "version": version, "chainId": chain_id, "verifyingContract": token_addr}
+        message = {"owner": self.account.address, "spender": spender_addr, "value": amount, "nonce": nonce, "deadline": deadline}
+        types = {
+            "EIP712Domain": [
+                {"name": "name", "type": "string"}, {"name": "version", "type": "string"},
+                {"name": "chainId", "type": "uint256"}, {"name": "verifyingContract", "type": "address"},
+            ],
+            "Permit": [
+                {"name": "owner", "type": "address"}, {"name": "spender", "type": "address"},
+                {"name": "value", "type": "uint256"}, {"name": "nonce", "type": "uint256"},
+                {"name": "deadline", "type": "uint256"},
+            ],
+        }
+        structured_data = {"types": types, "domain": domain, "primaryType": "Permit", "message": message}
+        signed = self.account.sign_typed_data(full_message=structured_data)
+        
+        # NOTE: r/s padding to 32 bytes ensures bytes32 compatibility
+        r_bytes = Web3.to_bytes(signed.r).rjust(32, b'\0')
+        s_bytes = Web3.to_bytes(signed.s).rjust(32, b'\0')
+        
+        return {"v": signed.v, "r": r_bytes, "s": s_bytes, "deadline": deadline}
+
+    def pay_with_permit(self, router_addr, token_addr, merchant_addr, amount, order_id, version="2"):
+        return self._call_with_failover(self.__pay_with_permit_raw, router_addr, token_addr, merchant_addr, amount, order_id, version)
+
+    def __pay_with_permit_raw(self, router_addr, token_addr, merchant_addr, amount, order_id, version="2"):
+        sig = self.sign_permit(token_addr, router_addr, amount, version=version)
+        router = self.w3.eth.contract(address=Web3.to_checksum_address(router_addr), abi=PAYNODE_ROUTER_ABI)
+        order_id_bytes = self.w3.keccak(text=order_id)
+        current_gas_price = int(self.w3.eth.gas_price * 1.2)
+        with self.nonce_lock:
+            nonce = self.w3.eth.get_transaction_count(self.account.address, 'pending')
+            tx = router.functions.payWithPermit(self.account.address, Web3.to_checksum_address(token_addr), Web3.to_checksum_address(merchant_addr), amount, order_id_bytes, sig["deadline"], sig["v"], sig["r"], sig["s"]).build_transaction({'from': self.account.address, 'nonce': nonce, 'gas': 300000, 'gasPrice': current_gas_price})
+            signed_tx = self.account.sign_transaction(tx)
+            tx_h = self.w3.eth.send_raw_transaction(signed_tx.raw_transaction)
+        self.w3.eth.wait_for_transaction_receipt(tx_h, timeout=60)
+        return self.w3.to_hex(tx_h)
+
+    def pay(self, router_addr, token_addr, merchant_addr, amount, order_id):
+        return self._call_with_failover(self.__pay_raw, router_addr, token_addr, merchant_addr, amount, order_id)
+
+    def __pay_raw(self, router_addr, token_addr, merchant_addr, amount, order_id):
+        router = self.w3.eth.contract(address=Web3.to_checksum_address(router_addr), abi=PAYNODE_ROUTER_ABI)
+        order_id_bytes = self.w3.keccak(text=order_id)
+        current_gas_price = int(self.w3.eth.gas_price * 1.2)
+        with self.nonce_lock:
+            nonce = self.w3.eth.get_transaction_count(self.account.address, 'pending')
+            tx = router.functions.pay(Web3.to_checksum_address(token_addr), Web3.to_checksum_address(merchant_addr), amount, order_id_bytes).build_transaction({'from': self.account.address, 'nonce': nonce, 'gas': 200000, 'gasPrice': current_gas_price})
+            signed_tx = self.account.sign_transaction(tx)
+            tx_h = self.w3.eth.send_raw_transaction(signed_tx.raw_transaction)
+        self.w3.eth.wait_for_transaction_receipt(tx_h, timeout=60)
+        return self.w3.to_hex(tx_h)

paynode_sdk_python-2.1.0/paynode_sdk/constants.py

@@ -0,0 +1,20 @@
+# Generated by scripts/sync-config.py
+PAYNODE_ROUTER_ADDRESS = "0x4A73696ccF76E7381b044cB95127B3784369Ed63"
+PAYNODE_ROUTER_ADDRESS_SANDBOX = "0x24cD8b68aaC209217ff5a6ef1Bf55a59f2c8Ca6F"
+BASE_USDC_ADDRESS = "0x833589fCD6eDb6E08f4c7C32D4f71b54bdA02913"
+BASE_USDC_ADDRESS_SANDBOX = "0x65c088EfBDB0E03185Dbe8e258Ad0cf4Ab7946b0"
+BASE_USDC_DECIMALS = 6
+
+PROTOCOL_TREASURY = "0x598bF63F5449876efafa7b36b77Deb2070621C0E"
+PROTOCOL_FEE_BPS = 100
+MIN_PAYMENT_AMOUNT = 1000
+
+BASE_RPC_URLS = ["https://mainnet.base.org", "https://base.meowrpc.com", "https://1rpc.io/base"]
+BASE_RPC_URLS_SANDBOX = ["https://sepolia.base.org", "https://base-sepolia-rpc.publicnode.com"]
+
+ACCEPTED_TOKENS = {
+    8453: ["0x833589fCD6eDb6E08f4c7C32D4f71b54bdA02913"],
+    84532: ["0x65c088EfBDB0E03185Dbe8e258Ad0cf4Ab7946b0"]
+}
+
+PAYNODE_ROUTER_ABI = [{'type': 'constructor', 'inputs': [{'name': '_protocolTreasury', 'type': 'address', 'internalType': 'address'}], 'stateMutability': 'nonpayable'}, {'type': 'function', 'name': 'MAX_BPS', 'inputs': [], 'outputs': [{'name': '', 'type': 'uint256', 'internalType': 'uint256'}], 'stateMutability': 'view'}, {'type': 'function', 'name': 'MIN_PAYMENT_AMOUNT', 'inputs': [], 'outputs': [{'name': '', 'type': 'uint256', 'internalType': 'uint256'}], 'stateMutability': 'view'}, {'type': 'function', 'name': 'PROTOCOL_FEE_BPS', 'inputs': [], 'outputs': [{'name': '', 'type': 'uint256', 'internalType': 'uint256'}], 'stateMutability': 'view'}, {'type': 'function', 'name': 'acceptOwnership', 'inputs': [], 'outputs': [], 'stateMutability': 'nonpayable'}, {'type': 'function', 'name': 'owner', 'inputs': [], 'outputs': [{'name': '', 'type': 'address', 'internalType': 'address'}], 'stateMutability': 'view'}, {'type': 'function', 'name': 'pause', 'inputs': [], 'outputs': [], 'stateMutability': 'nonpayable'}, {'type': 'function', 'name': 'paused', 'inputs': [], 'outputs': [{'name': '', 'type': 'bool', 'internalType': 'bool'}], 'stateMutability': 'view'}, {'type': 'function', 'name': 'pay', 'inputs': [{'name': 'token', 'type': 'address', 'internalType': 'address'}, {'name': 'merchant', 'type': 'address', 'internalType': 'address'}, {'name': 'amount', 'type': 'uint256', 'internalType': 'uint256'}, {'name': 'orderId', 'type': 'bytes32', 'internalType': 'bytes32'}], 'outputs': [], 'stateMutability': 'nonpayable'}, {'type': 'function', 'name': 'payWithPermit', 'inputs': [{'name': 'payer', 'type': 'address', 'internalType': 'address'}, {'name': 'token', 'type': 'address', 'internalType': 'address'}, {'name': 'merchant', 'type': 'address', 'internalType': 'address'}, {'name': 'amount', 'type': 'uint256', 'internalType': 'uint256'}, {'name': 'orderId', 'type': 'bytes32', 'internalType': 'bytes32'}, {'name': 'deadline', 'type': 'uint256', 'internalType': 'uint256'}, {'name': 'v', 'type': 'uint8', 'internalType': 'uint8'}, {'name': 'r', 'type': 'bytes32', 'internalType': 'bytes32'}, {'name': 's', 'type': 'bytes32', 'internalType': 'bytes32'}], 'outputs': [], 'stateMutability': 'nonpayable'}, {'type': 'function', 'name': 'pendingOwner', 'inputs': [], 'outputs': [{'name': '', 'type': 'address', 'internalType': 'address'}], 'stateMutability': 'view'}, {'type': 'function', 'name': 'protocolTreasury', 'inputs': [], 'outputs': [{'name': '', 'type': 'address', 'internalType': 'address'}], 'stateMutability': 'view'}, {'type': 'function', 'name': 'renounceOwnership', 'inputs': [], 'outputs': [], 'stateMutability': 'nonpayable'}, {'type': 'function', 'name': 'transferOwnership', 'inputs': [{'name': 'newOwner', 'type': 'address', 'internalType': 'address'}], 'outputs': [], 'stateMutability': 'nonpayable'}, {'type': 'function', 'name': 'unpause', 'inputs': [], 'outputs': [], 'stateMutability': 'nonpayable'}, {'type': 'function', 'name': 'updateTreasury', 'inputs': [{'name': '_newTreasury', 'type': 'address', 'internalType': 'address'}], 'outputs': [], 'stateMutability': 'nonpayable'}, {'type': 'event', 'name': 'OwnershipTransferStarted', 'inputs': [{'name': 'previousOwner', 'type': 'address', 'indexed': True, 'internalType': 'address'}, {'name': 'newOwner', 'type': 'address', 'indexed': True, 'internalType': 'address'}], 'anonymous': False}, {'type': 'event', 'name': 'OwnershipTransferred', 'inputs': [{'name': 'previousOwner', 'type': 'address', 'indexed': True, 'internalType': 'address'}, {'name': 'newOwner', 'type': 'address', 'indexed': True, 'internalType': 'address'}], 'anonymous': False}, {'type': 'event', 'name': 'Paused', 'inputs': [{'name': 'account', 'type': 'address', 'indexed': False, 'internalType': 'address'}], 'anonymous': False}, {'type': 'event', 'name': 'PaymentReceived', 'inputs': [{'name': 'orderId', 'type': 'bytes32', 'indexed': True, 'internalType': 'bytes32'}, {'name': 'merchant', 'type': 'address', 'indexed': True, 'internalType': 'address'}, {'name': 'payer', 'type': 'address', 'indexed': True, 'internalType': 'address'}, {'name': 'token', 'type': 'address', 'indexed': False, 'internalType': 'address'}, {'name': 'amount', 'type': 'uint256', 'indexed': False, 'internalType': 'uint256'}, {'name': 'fee', 'type': 'uint256', 'indexed': False, 'internalType': 'uint256'}, {'name': 'chainId', 'type': 'uint256', 'indexed': False, 'internalType': 'uint256'}], 'anonymous': False}, {'type': 'event', 'name': 'TreasuryUpdated', 'inputs': [{'name': 'oldTreasury', 'type': 'address', 'indexed': True, 'internalType': 'address'}, {'name': 'newTreasury', 'type': 'address', 'indexed': True, 'internalType': 'address'}], 'anonymous': False}, {'type': 'event', 'name': 'Unpaused', 'inputs': [{'name': 'account', 'type': 'address', 'indexed': False, 'internalType': 'address'}], 'anonymous': False}, {'type': 'error', 'name': 'AmountTooLow', 'inputs': []}, {'type': 'error', 'name': 'EnforcedPause', 'inputs': []}, {'type': 'error', 'name': 'ExpectedPause', 'inputs': []}, {'type': 'error', 'name': 'InvalidAddress', 'inputs': []}, {'type': 'error', 'name': 'OwnableInvalidOwner', 'inputs': [{'name': 'owner', 'type': 'address', 'internalType': 'address'}]}, {'type': 'error', 'name': 'OwnableUnauthorizedAccount', 'inputs': [{'name': 'account', 'type': 'address', 'internalType': 'address'}]}, {'type': 'error', 'name': 'SafeERC20FailedOperation', 'inputs': [{'name': 'token', 'type': 'address', 'internalType': 'address'}]}, {'type': 'error', 'name': 'UnauthorizedCaller', 'inputs': []}]

{paynode_sdk_python-1.4.0 → paynode_sdk_python-2.1.0}/paynode_sdk/errors.py

@@ -28,7 +28,7 @@ ERROR_MESSAGES = {
     ErrorCode.transaction_not_found: "Transaction not found on-chain.",
     ErrorCode.wrong_contract: "Payment event was not emitted by the official PayNode contract.",
     ErrorCode.order_mismatch: "OrderId in receipt does not match requested ID.",
-    ErrorCode.missing_receipt: "Please pay to PayNode contract and provide 'x-paynode-receipt' header.",
+    ErrorCode.missing_receipt: "Please pay to PayNode contract and provide 'X-402-Payload' header.",
 }
 
 class PayNodeException(Exception):

paynode_sdk_python-2.1.0/paynode_sdk/idempotency.py

@@ -0,0 +1,78 @@
+import time
+from abc import ABC, abstractmethod
+from typing import Dict, Optional
+
+class IdempotencyStore(ABC):
+    @abstractmethod
+    async def check_and_set(self, tx_hash: str, ttl_seconds: int) -> bool:
+        """
+        Returns True if hash was newly set, False if already exists and not expired.
+        """
+        pass
+
+    @abstractmethod
+    async def delete(self, tx_hash: str) -> None:
+        """
+        Deletes a transaction hash from the store.
+        Used for rolling back a lock if subsequent verification fails.
+        """
+        pass
+
+import threading
+
+class MemoryIdempotencyStore(IdempotencyStore):
+    def __init__(self):
+        self.cache: Dict[str, float] = {}
+        self.last_cleanup = time.time()
+        self.lock = threading.Lock()
+
+    async def check_and_set(self, tx_hash: str, ttl_seconds: int) -> bool:
+        with self.lock:
+            now = time.time()
+            expiry = self.cache.get(tx_hash)
+
+            if expiry and expiry > now:
+                return False
+
+            self.cache[tx_hash] = now + ttl_seconds
+            
+            # BUG-5 FIX: Only cleanup periodically to avoid O(n) overhead on every call.
+            if now - self.last_cleanup > 60:
+                self._cleanup()
+                self.last_cleanup = now
+                
+            return True
+
+    async def delete(self, tx_hash: str) -> None:
+        with self.lock:
+            self.cache.pop(tx_hash, None)
+
+    def _cleanup(self):
+        # Already inside lock when called from check_and_set
+        now = time.time()
+        expired_keys = [k for k, v in self.cache.items() if v <= now]
+        for k in expired_keys:
+            del self.cache[k]
+
+
+class RedisIdempotencyStore(IdempotencyStore):
+    """
+    Production-ready implementation using Redis.
+    Uses `SET txHash 1 NX EX ttlSeconds` for atomic check-and-set.
+
+    Requires: pip install redis
+    Usage:
+        import redis
+        store = RedisIdempotencyStore(redis.Redis(host='localhost', port=6379))
+    """
+    def __init__(self, redis_client, prefix: str = "paynode:tx:"):
+        self.redis = redis_client
+        self.prefix = prefix
+
+    async def check_and_set(self, tx_hash: str, ttl_seconds: int) -> bool:
+        key = f"{self.prefix}{tx_hash}"
+        return bool(self.redis.set(key, 1, ex=ttl_seconds, nx=True))
+
+    async def delete(self, tx_hash: str) -> None:
+        key = f"{self.prefix}{tx_hash}"
+        self.redis.delete(key)