npm package discovery and stats viewer.

Discover Tips

  • General search

    [free text search, go nuts!]

  • Package details

    pkg:[package-name]

  • User packages

    @[username]

Sponsor

Optimize Toolset

I’ve always been into building performant and accessible sites, but lately I’ve been taking it extremely seriously. So much so that I’ve been building a tool to help me optimize and monitor the sites that I build to make sure that I’m making an attempt to offer the best experience to those who visit them. If you’re into performant, accessible and SEO friendly sites, you might like it too! You can check it out at Optimize Toolset.

About

Hi, 👋, I’m Ryan Hefner  and I built this site for me, and you! The goal of this site was to provide an easy way for me to check the stats on my npm packages, both for prioritizing issues and updates, and to give me a little kick in the pants to keep up on stuff.

As I was building it, I realized that I was actually using the tool to build the tool, and figured I might as well put this out there and hopefully others will find it to be a fast and useful way to search and browse npm packages as I have.

If you’re interested in other things I’m working on, follow me on Twitter or check out the open source projects I’ve been publishing on GitHub.

I am also working on a Twitter bot for this site to tweet the most popular, newest, random packages from npm. Please follow that account now and it will start sending out packages soon–ish.

Open Software & Tools

This site wouldn’t be possible without the immense generosity and tireless efforts from the people who make contributions to the world and share their work via open source initiatives. Thank you 🙏

© 2026 – Pkg Stats / Ryan Hefner

@syscli/oneclickdz

v0.2.0

Published

Typed OneClickDZ API client for Node. Mobile, internet, gift card, and payment recharges in Algeria. Server-side only.

Readme

oneclickdz

A typed client for the OneClickDZ API. It covers the recharges every Algerian integration ends up writing by hand: mobile top-ups for Mobilis, Djezzy, and Ooredoo, ADSL and 4G internet cards, gift cards, and Navio payment links.

Two things set it apart. The recharge endpoints are asynchronous, so you send an order and then poll until it settles; this client runs that loop for you and hands back a fully typed, settled result. And the card codes a recharge delivers come back wrapped so they stay out of your logs until you ask for them.

It is meant for servers. Your access token grants account and balance access, so it must never reach the browser.

Published as @syscli/oneclickdz. It needs Node 18 or newer, uses the global fetch, and ships no runtime dependencies.

Install

npm install @syscli/oneclickdz

Quick start

import { OneClickDZ } from "@syscli/oneclickdz";

const oneclick = new OneClickDZ({
  key: process.env.ONECLICKDZ_API_KEY!,
});

// Confirm the key and see which environment it belongs to.
const { username, apiKey } = await oneclick.validate();
console.log(username, apiKey.type); // "boutique-batna", "SANDBOX"

// Send a Djezzy top-up and wait for it to settle.
const topup = await oneclick.mobile.sendAndWait({
  plan_code: "PREPAID_DJEZZY",
  MSSIDN: "0778037340",
  amount: 500,
});

console.log(topup.status); // "FULFILLED"

Keys and environments

Every key is either sandbox or production. Sandbox runs the full flow without touching real balance, so build against it first. Read the environment off the key with validate() before a deploy goes live:

const { apiKey } = await oneclick.validate();
if (apiKey.type !== "PRODUCTION") {
  throw new Error("Refusing to start with a sandbox key in production.");
}

The token goes over the wire as the X-Access-Token header. After five failed auth attempts the API blocks your IP for fifteen minutes, so cache a working key rather than guessing.

Sending and waiting

A send returns an id and a reference; the order then moves from PENDING through HANDLING to a final state. You can drive that yourself:

const { topupRef } = await oneclick.mobile.send({
  plan_code: "PREPAID_MOBILIS",
  MSSIDN: "0661234567",
  amount: 1000,
});

const status = await oneclick.mobile.checkByRef(topupRef);

Or let the client poll for you. sendAndWait checks every five seconds and resolves once the order is FULFILLED, REFUNDED, or UNKNOWN_ERROR:

const topup = await oneclick.mobile.sendAndWait({
  plan_code: "PREPAID_OOREDOO",
  MSSIDN: "0551234567",
  amount: 200,
});

if (topup.status === "REFUNDED") {
  console.log(topup.refund_message, topup.suggested_offers);
}

Pass an AbortSignal to stop waiting, and override the cadence when you need to:

await oneclick.giftCards.placeOrderAndWait(order, {
  intervalMs: 5000,
  maxAttempts: 120,
  signal: controller.signal,
});

A wait that never settles inside its budget throws a PollTimeoutError that carries the last status it saw on error.last.

Available offers for a number

Some numbers have operator offers that are cheaper or larger than a plain top-up. getOffers reads them. It drives the GETMENU plans for you: it sends a probe the operator refunds rather than charges, then returns the offers off the result. Each one carries the plan_code and amount you would pass to send to buy it:

const offers = await oneclick.mobile.getOffers("Djezzy", "0778037340");
// [{ typename: "HAYLA BEZZEF 100", plan_code: "MIX100_DJEZZY", amount: 100 }, ...]

await oneclick.mobile.sendAndWait({
  plan_code: offers[0].plan_code,
  MSSIDN: "0778037340",
  amount: offers[0].amount,
});

References and safe resends

Every send takes an optional ref. Leave it out and the client generates one, so a resend after a dropped connection reuses the same reference and the API rejects the duplicate instead of charging twice. A duplicate is a DuplicateRefError, its own class, so you can tell it apart from a real failure:

import { DuplicateRefError } from "@syscli/oneclickdz";

try {
  await oneclick.mobile.send({ plan_code, MSSIDN, amount, ref: "order-1043" });
} catch (error) {
  if (error instanceof DuplicateRefError) {
    const existing = await oneclick.mobile.checkByRef("order-1043");
    // The first order stands. Read it rather than sending again.
  }
}

Card codes are secrets

Internet recharges and gift cards return codes the customer keys in. Those are bearer credentials, so the client wraps them. A wrapped value renders as [redacted] in logs, JSON, and string interpolation, and gives up its contents only through reveal():

const order = await oneclick.giftCards.checkOrder(orderId);

for (const card of order.cards) {
  console.log(card.value); // [redacted]
  sendToCustomer(card.value.reveal()); // the real code, read on purpose
}

JSON.stringify(order); // the codes do not appear

The same applies to card_code on a settled internet top-up.

Gift cards

Load the catalog once and cache it; it changes rarely. Check a product for live pricing and stock, place the order, then wait for the codes:

const catalog = await oneclick.giftCards.catalog();
const details = await oneclick.giftCards.checkProduct("psn-us");

const order = await oneclick.giftCards.placeOrderAndWait({
  productId: "psn-us",
  typeId: details.types[0].id,
  quantity: 2,
});

if (order.status === "PARTIALLY_FILLED") {
  console.log(`Only ${order.fulfilled_quantity} of ${order.quantity} came through.`);
}

Payments with Navio

Create a hosted payment link, send the customer to its URL, then poll the reference. A link stays open for twenty minutes:

const link = await oneclick.payments.createLink({
  productInfo: { title: "Commande 1043", amount: 4500 },
  feeMode: "CUSTOMER_FEE",
  redirectUrl: "https://shop.example.dz/merci",
});

console.log(link.paymentUrl);

const payment = await oneclick.payments.waitForPayment(link.paymentRef);
console.log(payment.status); // "CONFIRMED" or "FAILED"

Resale pricing

The API returns your wholesale cost on internet products and gift-card types, and that figure must never reach a customer. Pick a markup and get back a clean, customer-facing list with the cost gone:

import { priceInternetProducts } from "@syscli/oneclickdz";

const products = await oneclick.internet.products("4G");
const forSale = priceInternetProducts(products.products, { percent: 10 });
// [{ value: 1000, price: 1078, available: true }, ...] and no cost field

import { sellPrice } from "@syscli/oneclickdz";
sellPrice(480, { flat: 100 }); // 580

priceGiftTypes does the same for a gift product's denominations.

Validation

Inputs are checked before the request leaves. A wrong number for the service, an amount that is not a whole dinar figure, a payment under the floor, or a quantity below one throws a ValidationError with one issue per problem, and spends no request:

import { ValidationError } from "@syscli/oneclickdz";

try {
  await oneclick.internet.send({ type: "4G", number: "033123456", value: 1500 });
} catch (error) {
  if (error instanceof ValidationError) {
    for (const issue of error.issues) console.warn(issue.field, issue.message);
  }
}

Errors

Every failure is a OneClickError, so you can catch one type and branch on it or on its stable code:

import {
  AuthError,
  InsufficientBalanceError,
  DuplicateRefError,
  RateLimitError,
  ServiceError,
} from "@syscli/oneclickdz";

AuthError (401), InsufficientBalanceError and DuplicateRefError (403), ValidationError (400 or client-side), NotFoundError (404), RateLimitError (429, with retryAfter), and ServiceError (5xx) all carry status, the API's code, the requestId, and the parsed body.

Rate limits and retries

The API allows 60 requests a minute on sandbox and 120 on production. On a 429 the client waits the Retry-After and tries again, up to three attempts. A 5xx or a dropped connection is retried too, but only for reads: a top-up that timed out may still have gone through, so the client never blindly resends a charge. That is also why a server error on a send should not be refunded right away; the docs note it can still settle within a day.

Pagination

List endpoints return a Page. Step through it with next(), or let an iterator walk every page:

const page = await oneclick.account.transactions({ pageSize: 50 });
console.log(page.items, page.totalResults, page.hasMore);

for await (const tx of oneclick.account.paginateTransactions()) {
  console.log(tx.type, tx.amount, tx.newBalance);
}

Limitations

Worth knowing before you build on it:

  • Server only. The token grants account and balance access. There is no browser build, on purpose.
  • No webhooks yet. The API does not offer them at the time of writing, so the only way to learn an outcome is to poll. The *AndWait helpers and the pollers are built around that. Webhook support can be added once it ships.
  • Navio needs merchant onboarding. createLink returns a 403 until the account completes merchant validation in the dashboard. The client surfaces that as a ForbiddenError; it is an account step, not a code change.
  • A QUEUED internet order is slow. It can take up to 48 hours, well past the default polling window. Treat QUEUED as accepted and check back later rather than waiting in process.
  • Wholesale prices are not for display. Product cost and price are your rates. Apply your own markup and do not show them to customers.

Development

npm install
npm test        # vitest
npm run build   # tsup, dual ESM and CJS plus types

A small set of live tests run against the real API when ONECLICKDZ_API_KEY is set, and are skipped otherwise. Point them at a sandbox key.

License

MIT. See LICENSE.