UNPKG

lnurl-pay

Version:

Client library for lnurl-pay and lightning address

github.com/dolcalmi/lnurl-pay

465 lines (459 loc) 15.7 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
345
346
347
348
349
350
351
352
353
354
355
356
357
358
359
360
361
362
363
364
365
366
367
368
369
370
371
372
373
374
375
376
377
378
379
380
381
382
383
384
385
386
387
388
389
390
391
392
393
394
395
396
397
398
399
400
401
402
403
404
405
406
407
408
409
410
411
412
413
414
415
416
417
418
419
420
421
422
423
424
425
426
427
428
429
430
431
432
433
434
435
436
437
438
439
440
441
442
443
444
445
446
447
448
449
450
451
452
453
454
455
456
457
458
459
460
461
462
463
464
465
//#region rolldown:runtime var __create = Object.create; var __defProp = Object.defineProperty; var __getOwnPropDesc = Object.getOwnPropertyDescriptor; var __getOwnPropNames = Object.getOwnPropertyNames; var __getProtoOf = Object.getPrototypeOf; var __hasOwnProp = Object.prototype.hasOwnProperty; var __commonJS = (cb, mod) => function() { return mod || (0, cb[__getOwnPropNames(cb)[0]])((mod = { exports: {} }).exports, mod), mod.exports; }; var __export = (target, all) => { for (var name in all) __defProp(target, name, { get: all[name], enumerable: true }); }; var __copyProps = (to, from, except, desc) => { if (from && typeof from === "object" || typeof from === "function") for (var keys = __getOwnPropNames(from), i = 0, n = keys.length, key; i < n; i++) { key = keys[i]; if (!__hasOwnProp.call(to, key) && key !== except) __defProp(to, key, { get: ((k) => from[k]).bind(null, key), enumerable: !(desc = __getOwnPropDesc(from, key)) || desc.enumerable }); } return to; }; var __toESM = (mod, isNodeMode, target) => (target = mod != null ? __create(__getProtoOf(mod)) : {}, __copyProps(isNodeMode || !mod || !mod.__esModule ? __defProp(target, "default", { value: mod, enumerable: true }) : target, mod)); //#endregion const bech32 = __toESM(require("bech32")); const axios = __toESM(require("axios")); const aes_js = __toESM(require("aes-js")); const base64_js = __toESM(require("base64-js")); const bolt11 = __toESM(require("bolt11")); const __aws_crypto_sha256_js = __toESM(require("@aws-crypto/sha256-js")); //#region node_modules/@oxc-project/runtime/src/helpers/asyncToGenerator.js var require_asyncToGenerator = /* @__PURE__ */ __commonJS({ "node_modules/@oxc-project/runtime/src/helpers/asyncToGenerator.js": ((exports, module) => { function asyncGeneratorStep(n, t, e, r, o, a, c) { try { var i = n[a](c), u = i.value; } catch (n$1) { return void e(n$1); } i.done ? t(u) : Promise.resolve(u).then(r, o); } function _asyncToGenerator$3(n) { return function() { var t = this, e = arguments; return new Promise(function(r, o) { var a = n.apply(t, e); function _next(n$1) { asyncGeneratorStep(a, r, o, _next, _throw, "next", n$1); } function _throw(n$1) { asyncGeneratorStep(a, r, o, _next, _throw, "throw", n$1); } _next(void 0); }); }; } module.exports = _asyncToGenerator$3, module.exports.__esModule = true, module.exports["default"] = module.exports; }) }); //#endregion //#region src/utils.ts var utils_exports = {}; __export(utils_exports, { checkedToSats: () => checkedToSats, decipherAES: () => decipherAES, decodeInvoice: () => decodeInvoice, decodeUrlOrAddress: () => decodeUrlOrAddress, getHashFromInvoice: () => getHashFromInvoice, getJson: () => getJson, isLightningAddress: () => isLightningAddress, isLnurl: () => isLnurl, isLnurlp: () => isLnurlp, isOnionUrl: () => isOnionUrl, isUrl: () => isUrl, isValidAmount: () => isValidAmount, isValidPreimage: () => isValidPreimage, parseLightningAddress: () => parseLightningAddress, parseLnUrl: () => parseLnUrl, parseLnurlp: () => parseLnurlp, sha256: () => sha256, toSats: () => toSats }); var import_asyncToGenerator$2 = /* @__PURE__ */ __toESM(require_asyncToGenerator()); const PROTOCOL_AND_DOMAIN = new RegExp("^(?:\\w+:)?\\/\\/(\\S+)$", ""); const LOCALHOST_DOMAIN = /^localhost[:?\d]*(?:[^:?\d]\S*)?$/; const NON_LOCALHOST_DOMAIN = /^[^\s.]+\.\S{2,}$/; const LNURL_REGEX = new RegExp("^(?:http.*[&?]lightning=|lightning:)?(lnurl[0-9]{1,}[02-9ac-hj-np-z]+)", ""); const LN_ADDRESS_REGEX = new RegExp("^((?:[^<>()[\\]\\\\.,;:\\s@\"]+(?:\\.[^<>()[\\]\\\\.,;:\\s@\"]+)*)|(?:\".+\"))@((?:\\[[0-9]{1,3}\\.[0-9]{1,3}\\.[0-9]{1,3}\\.[0-9]{1,3}])|(?:(?:[a-zA-Z-0-9]+\\.)+[a-zA-Z]{2,}))$", ""); const ONION_REGEX = new RegExp("^(http:\\/\\/[^/:@]+\\.onion(?::\\d{1,5})?)(\\/.*)?$", ""); const LNURLP_REGEX = new RegExp("^lnurlp:\\/\\/([\\w-]+\\.)+[\\w-]+(:\\d{1,5})?(\\/[\\w-./?%&=]*)?$", ""); /** * Decode a bech32 encoded url (lnurl), lightning address or lnurlp url and return a url * @method decodeUrlOrAddress * @param lnUrlOrAddress string to decode * @return plain url or null if is an invalid url, lightning address or lnurlp */ const decodeUrlOrAddress = (lnUrlOrAddress) => { const bech32Url = parseLnUrl(lnUrlOrAddress); if (bech32Url) { const decoded = bech32.bech32.decode(bech32Url, 2e4); return Buffer.from(bech32.bech32.fromWords(decoded.words)).toString(); } const address = parseLightningAddress(lnUrlOrAddress); if (address) { const { username, domain } = address; const protocol = domain.match(/\.onion$/) ? "http" : "https"; return `${protocol}://${domain}/.well-known/lnurlp/${username}`; } return parseLnurlp(lnUrlOrAddress); }; /** * Parse an url and return a bech32 encoded url (lnurl) * @method parseLnUrl * @param url string to parse * @return bech32 encoded url (lnurl) or null if is an invalid url */ const parseLnUrl = (url) => { if (!url) return null; const result = LNURL_REGEX.exec(url.toLowerCase()); return result ? result[1] : null; }; /** * Verify if a string is a valid lnurl value * @method isLnurl * @param url string to validate * @return true if is a valid lnurl value */ const isLnurl = (url) => { if (!url) return false; return LNURL_REGEX.test(url.toLowerCase()); }; /** * Verify if a string is a lightning adress * @method isLightningAddress * @param address string to validate * @return true if is a lightning address */ const isLightningAddress = (address) => { if (!address) return false; return LN_ADDRESS_REGEX.test(address); }; /** * Parse an address and return username and domain * @method parseLightningAddress * @param address string to parse * @return LightningAddress { username, domain } */ const parseLightningAddress = (address) => { if (!address) return null; const result = LN_ADDRESS_REGEX.exec(address); return result ? { username: result[1], domain: result[2] } : null; }; /** * Verify if a string is a lnurlp url * @method isLnurlp * @param url string to validate * @return true if is a lnurlp url */ const isLnurlp = (url) => { if (!url) return false; return LNURLP_REGEX.test(url); }; /** * Parse a lnurlp url and return an url with the proper protocol * @method parseLnurlp * @param url string to parse * @return url (http or https) or null if is an invalid lnurlp */ const parseLnurlp = (url) => { if (!url) return null; const parsedUrl = url.toLowerCase(); if (!LNURLP_REGEX.test(parsedUrl)) return null; const protocol = parsedUrl.includes(".onion") ? "http://" : "https://"; return parsedUrl.replace("lnurlp://", protocol); }; /** * Verify if a string is an url * @method isUrl * @param url string to validate * @return true if is an url */ const isUrl = (url) => { if (!url) return false; if (typeof url !== "string") return false; var match = url.match(PROTOCOL_AND_DOMAIN); if (!match) return false; var everythingAfterProtocol = match[1]; if (!everythingAfterProtocol) return false; if (LOCALHOST_DOMAIN.test(everythingAfterProtocol) || NON_LOCALHOST_DOMAIN.test(everythingAfterProtocol)) return true; return false; }; /** * Verify if a string is an onion url * @method isOnionUrl * @param url string to validate * @return true if is an onion url */ const isOnionUrl = (url) => { return isUrl(url) && ONION_REGEX.test(url.toLowerCase()); }; /** * Parse a number to Satoshis * @method checkedToSats * @param value number to parse * @return Satoshis or null */ const checkedToSats = (value) => { if (value && value >= 0) return toSats(value); return null; }; /** * Cast a number to Satoshis type * @method toSats * @param value number to cast * @return Satoshis */ const toSats = (value) => { return value; }; const isValidAmount = ({ amount, min, max }) => { const isValid = amount > 0 && amount >= min && amount <= max; const isFixed = min === max; return isValid && isFixed ? amount === min : isValid; }; const getJson = function() { var _ref = (0, import_asyncToGenerator$2.default)(function* ({ url, params }) { return axios.default.get(url, { params }).then((response) => { if (response.data.status === "ERROR") throw new Error(response.data.reason + ""); return response.data; }); }); return function getJson$1(_x) { return _ref.apply(this, arguments); }; }(); const sha256 = (data, encoding = "hex") => { const sha256$1 = new __aws_crypto_sha256_js.Sha256(); sha256$1.update(Buffer.from(data, encoding)); return Buffer.from(sha256$1.digestSync()).toString("hex"); }; const decodeInvoice = (invoice) => { if (!invoice) return null; try { let network = void 0; if (invoice.startsWith("lntbs")) network = { bech32: "tbs", pubKeyHash: 111, scriptHash: 196, validWitnessVersions: [0, 1] }; return bolt11.decode(invoice, network); } catch (_unused) { return null; } }; const getHashFromInvoice = (invoice) => { if (!invoice) return null; try { const decoded = decodeInvoice(invoice); if (!decoded || !decoded.tags) return null; const hashTag = decoded.tags.find((value) => value.tagName === "payment_hash"); if (!hashTag || !hashTag.data) return null; return hashTag.data.toString(); } catch (_unused2) { return null; } }; const isValidPreimage = ({ invoice, preimage }) => { if (!invoice || !preimage) return false; const invoiceHash = getHashFromInvoice(invoice); if (!invoiceHash) return false; try { const preimageHash = sha256(preimage); return invoiceHash === preimageHash; } catch (_unused3) { return false; } }; const decipherAES = ({ successAction, preimage }) => { if (successAction.tag !== "aes" || !successAction.iv || !successAction.ciphertext || !preimage) return null; const key = aes_js.default.utils.hex.toBytes(preimage); const iv = base64_js.default.toByteArray(successAction.iv); const ciphertext = base64_js.default.toByteArray(successAction.ciphertext); const cbc = new aes_js.default.ModeOfOperation.cbc(key, iv); let plaintext = cbc.decrypt(ciphertext); const size = plaintext.length; const pad = plaintext[size - 1]; plaintext = plaintext.slice(0, size - pad); return aes_js.default.utils.utf8.fromBytes(plaintext); }; //#endregion //#region src/request-pay-service-params.ts var import_asyncToGenerator$1 = /* @__PURE__ */ __toESM(require_asyncToGenerator()); const TAG_PAY_REQUEST = "payRequest"; const requestPayServiceParams = function() { var _ref = (0, import_asyncToGenerator$1.default)(function* ({ lnUrlOrAddress, onionAllowed = false, fetchGet = getJson }) { const url = decodeUrlOrAddress(lnUrlOrAddress); if (!isUrl(url)) throw new Error("Invalid lnUrlOrAddress"); if (!onionAllowed && isOnionUrl(url)) throw new Error("Onion requests not allowed"); const json = yield fetchGet({ url }); const params = parseLnUrlPayServiceResponse(json); if (!params) throw new Error("Invalid pay service params"); return params; }); return function requestPayServiceParams$1(_x) { return _ref.apply(this, arguments); }; }(); /** * Parse the ln service response to LnUrlPayServiceResponse * @method parseLnUrlPayServiceResponse * @param data object to parse * @return LnUrlPayServiceResponse */ const parseLnUrlPayServiceResponse = (data) => { if (data.tag !== TAG_PAY_REQUEST) return null; const callback = (data.callback + "").trim(); if (!isUrl(callback)) return null; const min = checkedToSats(Math.ceil(Number(data.minSendable || 0) / 1e3)); const max = checkedToSats(Math.floor(Number(data.maxSendable) / 1e3)); if (!(min && max) || min > max) return null; let metadata; let metadataHash; try { metadata = JSON.parse(data.metadata + ""); metadataHash = sha256(data.metadata + "", "utf8"); } catch (_unused) { metadata = []; metadataHash = sha256("[]", "utf8"); } let image = ""; let description = ""; let identifier = ""; for (let i = 0; i < metadata.length; i++) { const [k, v] = metadata[i]; switch (k) { case "text/plain": description = v; break; case "text/identifier": identifier = v; break; case "image/png;base64": case "image/jpeg;base64": image = "data:" + k + "," + v; break; } } let domain; try { domain = new URL(callback).hostname; } catch (_unused2) {} return { callback, fixed: min === max, min, max, domain, metadata, metadataHash, identifier, description, image, commentAllowed: Number(data.commentAllowed) || 0, rawData: data }; }; //#endregion //#region src/request-invoice.ts var import_asyncToGenerator = /* @__PURE__ */ __toESM(require_asyncToGenerator()); const requestInvoiceWithServiceParams = function() { var _ref = (0, import_asyncToGenerator.default)(function* ({ params, tokens, comment, onionAllowed = false, validateInvoice = false, fetchGet = getJson }) { const { callback, commentAllowed, min, max } = params; if (!isValidAmount({ amount: tokens, min, max })) throw new Error("Invalid amount"); if (!isUrl(callback)) throw new Error("Callback must be a valid url"); if (!onionAllowed && isOnionUrl(callback)) throw new Error("Onion requests not allowed"); const invoiceParams = { amount: tokens * 1e3 }; if (comment && commentAllowed > 0 && comment.length > commentAllowed) throw new Error(`The comment length must be ${commentAllowed} characters or fewer`); if (comment) invoiceParams.comment = comment; const data = yield fetchGet({ url: callback, params: invoiceParams }); const invoice = data && data.pr && data.pr.toString(); if (!invoice) throw new Error("Invalid pay service invoice"); const decodedInvoice = decodeInvoice(invoice); const descriptionHash = decodedInvoice === null || decodedInvoice === void 0 ? void 0 : decodedInvoice.tags.find((t) => t.tagName === "purpose_commit_hash"); const hasValidDescriptionHash = descriptionHash ? params.metadataHash === descriptionHash.data : false; if (validateInvoice && !hasValidDescriptionHash) throw new Error(`Invoice description hash doesn't match metadata hash.`); const hasValidAmount = decodedInvoice ? decodedInvoice.satoshis === tokens : false; if (validateInvoice && !hasValidAmount) throw new Error(`Invalid invoice amount ${decodedInvoice === null || decodedInvoice === void 0 ? void 0 : decodedInvoice.satoshis}. Expected ${tokens}`); let successAction = void 0; if (data.successAction) { const decipher = (preimage) => decipherAES({ preimage, successAction: data.successAction }); successAction = Object.assign({ decipher }, data.successAction); } return { params, rawData: data, invoice, successAction, hasValidAmount, hasValidDescriptionHash, validatePreimage: (preimage) => isValidPreimage({ invoice, preimage }) }; }); return function requestInvoiceWithServiceParams$1(_x) { return _ref.apply(this, arguments); }; }(); const requestInvoice = function() { var _ref2 = (0, import_asyncToGenerator.default)(function* ({ lnUrlOrAddress, tokens, comment, onionAllowed = false, validateInvoice = false, fetchGet = getJson }) { const params = yield requestPayServiceParams({ lnUrlOrAddress, onionAllowed, fetchGet }); return requestInvoiceWithServiceParams({ params, tokens, comment, onionAllowed, validateInvoice, fetchGet }); }); return function requestInvoice$1(_x2) { return _ref2.apply(this, arguments); }; }(); //#endregion exports.requestInvoice = requestInvoice; exports.requestInvoiceWithServiceParams = requestInvoiceWithServiceParams; exports.requestPayServiceParams = requestPayServiceParams; Object.defineProperty(exports, 'utils', { enumerable: true, get: function () { return utils_exports; } }); //# sourceMappingURL=index.js.map