docs/payments.ts - Chobble Tickets documentation

Payment processing with Stripe and Square.

A provider-agnostic payment interface with adapters for Stripe and Square. Handles checkout sessions, webhook verification, refunds, and idempotent payment processing.

Provider Interface

PaymentProvider defines the common contract:

Create single and multi-event checkout sessions
Verify webhook signatures
Retrieve session details and process refunds

Classes

c

PaymentUserError(message: string)

Error subclass for user-facing payment validation errors (e.g. invalid phone number). These propagate through safeAsync so the message can be shown to the user.

Functions

f

buildItemsMetadata(intent: CheckoutIntent): Record<string, string>

Build checkout metadata from a CheckoutIntent (converts items to compact form).

f

buildMetadata(intent: MetadataInput): Record<string, string>

Build checkout session metadata from booking data (items already compact).

f

createWithClient<Client>(getClient: () => Client | null | Promise<Client | null>)

Create a withClient helper that runs an operation with a lazily-resolved client. Returns null if the client is not available or the operation fails.

f

enforceMetadataLimits(

metadata: Record<string, string>,

maxValueLength: number

): Record<string, string>

Enforce metadata value length limits for a payment provider.

f

errorMessage(err: unknown): string

Extract a human-readable message from an unknown caught value

f

extractSessionMetadata(metadata: SessionMetadata): ValidatedPaymentSession["metadata"]

Normalize validated session metadata into the canonical SessionMetadata shape.

f

getActivePaymentProvider(): Promise<PaymentProvider | null>

Resolve the active payment provider based on admin settings. Lazy-loads the provider module to avoid importing unused SDKs. Returns null if no provider is configured.

f

hasRequiredSessionMetadata(metadata: Record<string, string | undefined> | null | undefined): metadata is SessionMetadata

Validate that session metadata contains required fields (name + items).

f

isPaymentStatus(s: string): s is PaymentStatus

Type guard: check if a string is a valid PaymentStatus

f

processBooking(

event: EventWithCount,

contact: ContactInfo,

quantity: number,

date: string | null,

baseUrl: string,

customUnitPrice?: number,

answerIds?: number[]

): Promise<BookingResult>

Process a single-event booking.

f

fn: () => Promise<T>,

errorCode: ErrorCodeType

): Promise<T | null>

Safely execute async operation, returning null on error. Re-throws PaymentUserError so user-facing messages propagate.

f

singleEventAnswerIds(

eventId: number,

answerIds?: number[]

): Record<string, number[]> | undefined

Convert single-event answerIds to the per-event format used in metadata

f

toBookingItems(items: CheckoutIntent["items"]): BookingItem[]

Convert registration line items to compact booking items

f

toCheckoutResult(

sessionId: string | undefined,

url: string | undefined | null,

label: LogCategory

): CheckoutSessionResult

Convert a provider-specific checkout result to a CheckoutSessionResult. Returns null if session ID or URL is missing.

f

withCheckoutError(op: () => Promise<CheckoutSessionResult>): Promise<CheckoutSessionResult>

Wrap a checkout operation, converting PaymentUserError to { error } result and swallowing unexpected errors as null. Used by both provider adapters.

Interfaces

I

PaymentProvider

Payment provider interface.

checkoutCompletedEventType: string
The webhook event type name that indicates a completed checkout
createCheckoutSession(
intent: CheckoutIntent,
baseUrl: string
): Promise<CheckoutSessionResult>
Create a checkout session for one or more events. Returns a session ID and hosted checkout URL, or null on failure.
isPaymentRefunded(paymentReference: string): Promise<boolean>
Check if a payment has been refunded via the provider API. Used to refresh refund status from the edit attendee page.
refundPayment(paymentReference: string): Promise<boolean>
Refund a completed payment.
resolveWebhookSession(event: WebhookEvent): Promise<ValidatedPaymentSession | "skip" | null>
Resolve a validated session from a webhook event. Each provider knows how to extract/fetch session data from its own event structure, so the webhook handler stays provider-agnostic.
retrieveSession(sessionId: string): Promise<ValidatedPaymentSession | null>
Retrieve and validate a completed checkout session by ID. Returns the validated session or null if not found / invalid.
setupWebhookEndpoint(
secretKey: string,
webhookUrl: string,
existingEndpointId?: string | null
): Promise<WebhookSetupResult>
Set up a webhook endpoint for this provider. Some providers (e.g. Stripe) support programmatic creation.
type: PaymentProviderType
Provider identifier
verifyWebhookSignature(
payload: string,
signature: string,
webhookUrl: string,
payloadBytes: Uint8Array
): Promise<WebhookVerifyResult>
Verify a webhook request's signature and parse the event payload.

Type Aliases

T

BookingIntent =

ContactInfo
& { date: string | null; items: BookingItem[]; eventAnswerIds?: Record<string, number[]>; }

Processed booking intent extracted from payment session metadata

T

BookingItem = { e: number; q: number; p: number; }

Compact booking item stored in session metadata (serialized/deserialized as JSON)

T

BookingResult =

{ type: "success"; attendee: Attendee; }
| { type: "checkout"; checkoutUrl: string; }
| { type: "sold_out"; }
| { type: "checkout_failed"; error?: string; }
| { type: "creation_failed"; reason: "capacity_exceeded" | "encryption_error"; }

Booking result — callers map this to their response format

T

CheckoutIntent =

ContactInfo
& { date: string | null; items: CheckoutItem[]; eventAnswerIds?: Record<string, number[]>; }

Registration intent for checkout (one or more events)

T

CheckoutItem = { eventId: number; quantity: number; unitPrice: number; slug: string; name: string; }

Single item within a checkout

T

CheckoutSessionResult =

{ sessionId: string; checkoutUrl: string; }
| { error: string; }
| null

Result of creating a checkout session.

T

PaymentProviderType = "stripe" | "square"

Supported payment provider identifiers

T

PaymentProviderType = "stripe" | "square"

Supported payment provider identifiers

T

PaymentStatus = "paid" | "unpaid" | "no_payment_required"

Valid payment status values

T

SessionMetadata = { _origin: string; name: string; email: string; phone: string; address: string; special_instructions: string; items: string; date: string; answer_ids: string; }

Metadata attached to a validated payment session.

T

ValidatedPaymentSession = { id: string; paymentStatus: PaymentStatus; paymentReference: string; amountTotal: number; metadata: SessionMetadata; }

A validated payment session returned after checkout completion

amountTotal: number
Total amount charged in smallest currency unit (cents), from the payment provider
id: string
metadata: SessionMetadata
paymentReference: string
paymentStatus: PaymentStatus

T

WebhookEvent = { id: string; type: string; data: { object: Record<string, unknown>; }; }

Provider-agnostic webhook event

T

WebhookSetupResult =

{ success: true; endpointId: string; secret: string; }
| { success: false; error: string; }

Result of webhook endpoint setup

T

WebhookVerifyResult =

{ valid: true; event: WebhookEvent; }
| { valid: false; error: string; }

Result of webhook signature verification

Variables

v

paymentsApi: { getConfiguredProvider: () => PaymentProviderType | null; }

Stubbable API for internal calls (testable via spyOn, like stripeApi/squareApi)

getConfiguredProvider: () => PaymentProviderType | null

v

SQUARE_METADATA_MAX_VALUE_LENGTH: 255

Square metadata constraint: each value max 255 characters

v

STRIPE_METADATA_MAX_VALUE_LENGTH: 500

Stripe metadata constraint: each value max 500 characters

Usage

import * as mod from "docs/payments.ts";