nl-market-sdk
v1.0.2
Published
SDK for NL Market API (TypeScript)
Maintainers
walkaisaReadme
nl-market-sdk
🚀 Typed SDK for the Neverlose Marketplace API
nl-market-sdk is a fully‑typed Node.js/TypeScript client for the Neverlose.cc marketplace API.
It wraps the HTTP endpoints in a friendly, type‑safe interface with automatic request‑ID generation and transparent cryptographic signing – so you can focus on building features, not wiring JSON.
Minimum runtime: Node ≥ 22.12 · Bundled types: yes · ESM & CJS: dual export
Table of Contents
- Installation
- Quick-Start
- Why this SDK?
- Result Shape ⇄ Union Explained
- API Cheat Sheet
- Endpoint Cookbook
- Understanding CNT
- Error Handling
- Type Safety
- Reseller Toolkit
- Development
- License
Installation
# npm
npm install nl-market-sdk
# pnpm (recommended)
pnpm add nl-market-sdk…or yarn / bun – pick your poison.
Quick‑Start
import { MarketClient } from "nl-market-sdk";
const client = new MarketClient({
userId: "12345", // Neverlose → API settings
secret: "SUPER_SECRET_KEY", // keep me secret!
// integrationId: 100 // ONLY if you use checkout integration
});
const res = await client.getBalance();
if (res.success) console.log(`💰 ${res.balance}\u00A0NLE left`);You just:
- Auto‑generated a unique request‑ID 🔑
- Signed the payload with SHA‑256 🕵️♂️
- Runtime‑validated the response ✅
No manual fetch, no crypto copy‑pasta.
Why this SDK?
- Tiny API. One class, typed methods – that’s it.
- End‑to‑end types. Your IDE autocompletes the exact response shape and yells on wrong params.
- Runtime guardrails. Unexpected data? Instant
MarketError('VALIDATION', …)– not silent breakage. - Cryptography handled. SHA‑256 signatures & constant‑time compare baked‑in.
Grab a coffee ☕️ while everyone else hand‑rolls signatures.
Result Shape ⇄ Union Explained
Every SDK call resolves to one of two objects:
// success branch (data lives here)
{ success: true, ...payload }
// error branch (soft API error, 4xx‑style)
{ success: false, error: string }👉 Always check success first – your editor auto‑narrows the type in each branch.
Severe issues outside the normal contract (network, non‑2xx, schema drift…) throw a typed MarketError.
API Cheat Sheet
Below is a structured overview of every helper the SDK exposes – grouped by the permissions that Neverlose enforces.
Public Endpoints (accessible to every account)
| Method | Purpose |
| -------------- | ---------------------------------- |
| getBalance() | Retrieve your current NLE balance. |
Reseller Endpoints – no integrationId required
You must be flagged as an official reseller but you don’t need to pass
integrationId.
| Method | Purpose |
| --------------------- | -------------------------------------------------- |
| getPrices(body) | Fetch latest subscription prices for a product. |
| isUserExists(body) | Check whether a username exists. |
| isUserInvited(body) | Check whether a user is invited to CS:GO / CS2. |
| transferMoney(body) | Send NLE credits to another user. |
| giftProduct(body) | Gift a CS:GO or CS2 subscription to another user. |
Reseller Endpoints – integrationId required
Official reseller permission and a valid
integrationId(see constructor) are mandatory.
| Method | Purpose |
| ----------------------------- | -------------------------------------------------------------------------------------------------------- |
| integrationVisibility(body) | Toggle your reseller integration between public and private. |
| setResellerPrices(body) | Publish or refresh your reseller pricing so that it appears in the Neverlose checkout UI (expires 24 h). |
Endpoint Cookbook
For in‑depth request/response examples, head over to the Marketplace API docs. The tables above serve as your quick reference.
Understanding cnt
cnt is the plan selector common to every product:
| cnt | Subscription length |
| ----: | ------------------- |
| 0 | 30 days |
| 1 | 90 days |
| 2 | 180 days |
| 3 | 365 days |
Mix product + cnt → exact upgrade.
Error Handling
try {
const tx = await client.transferMoney({ username: "alice", amount: 5 });
if (!tx.success) {
console.warn(tx.error); // e.g. "Insufficient balance"
return void 0;
}
console.log("Transfer accepted ✔️");
} catch (err) {
if (err instanceof MarketError) {
console.error(`Fatal SDK error [${err.code}]:`, err.message);
} else {
throw err; // unknown – re‑throw
}
}Error Codes
| Code | When it happens |
| --------------- | ----------------------------------------------- |
| NETWORK | DNS issues, TLS errors, connection reset… |
| TIMEOUT | (reserved) |
| HTTP | Non‑2xx status code from Neverlose API |
| API | success: false response from the API |
| VALIDATION | Payload or response fails Zod schema validation |
| INVALID_ID | Duplicate or malformed id │ requestId |
| CONFIGURATION | Missing integrationId for reseller endpoints |
Type Safety
Each endpoint is backed by a colocated Zod schema. The SDK uses them twice:
- Compile‑time –
z.infergenerates TypeScript types for parameters & results → auto‑completion, noany. - Run‑time – responses are parsed with
schema.parse()→ any shape drift throws aMarketError("VALIDATION", …).
That means no silent‑failing JSON, ever.
Reseller Toolkit
If you operate a payment gateway or top‑up service you’ll love these helpers:
| Helper | Description |
| -------------------------- | --------------------------------------------------------- |
| Signer.make(body) | Generate the SHA‑256 signature required by every request. |
| Signer.validate(payload) | Constant‑time comparison of an incoming webhook payload. |
| integrationVisibility() | One‑liner to toggle sandbox / production exposure. |
| setResellerPrices() | Publish dynamic pricing (auto‑expires after 24 h). |
Development
pnpm lint # format + static‑analysis
pnpm test # vitest suite
pnpm build # tsup → dist (ESM & CJS)
pnpm dev # watch‑build demo.tsCode style, tests and semantic commits are enforced by Biome, Vitest and Semantic‑Release.
License
Released under the MIT License – do whatever you want, just keep the copyright and don’t blame me if things go boom. See LICENSE for the full text.