npm package discovery and stats viewer.

Discover Tips

  • General search

    [free text search, go nuts!]

  • Package details

    pkg:[package-name]

  • User packages

    @[username]

Sponsor

Optimize Toolset

I’ve always been into building performant and accessible sites, but lately I’ve been taking it extremely seriously. So much so that I’ve been building a tool to help me optimize and monitor the sites that I build to make sure that I’m making an attempt to offer the best experience to those who visit them. If you’re into performant, accessible and SEO friendly sites, you might like it too! You can check it out at Optimize Toolset.

About

Hi, 👋, I’m Ryan Hefner  and I built this site for me, and you! The goal of this site was to provide an easy way for me to check the stats on my npm packages, both for prioritizing issues and updates, and to give me a little kick in the pants to keep up on stuff.

As I was building it, I realized that I was actually using the tool to build the tool, and figured I might as well put this out there and hopefully others will find it to be a fast and useful way to search and browse npm packages as I have.

If you’re interested in other things I’m working on, follow me on Twitter or check out the open source projects I’ve been publishing on GitHub.

I am also working on a Twitter bot for this site to tweet the most popular, newest, random packages from npm. Please follow that account now and it will start sending out packages soon–ish.

Open Software & Tools

This site wouldn’t be possible without the immense generosity and tireless efforts from the people who make contributions to the world and share their work via open source initiatives. Thank you 🙏

© 2026 – Pkg Stats / Ryan Hefner

payvault-sdk

v0.1.0

Published

Unified payment SDK for African markets. One API for Paystack + Flutterwave -- backend TypeScript SDK + embeddable checkout widget.

Downloads

78

Vulnerabilities

Powered byPowered by Snyk
  • 0High
  • 0Medium
  • 0Low

Links

Git

Maintainers

t9ner_honourt9ner_honour

Keywords

paymentspaystackflutterwaveafricafintechcheckoutnigeriaghanakenyasdk

Readme

PayVault

One API. Every African payment provider.

npm version License: MIT TypeScript PRs Welcome

Stop rewriting payment code when you switch providers. PayVault gives you a single, type-safe API that works with Paystack, Flutterwave, and any provider you add.

Quick StartAPI ReferenceWebhooksProvider SwitchingCustom Providers

Why PayVault?

| Problem | PayVault Solution | |---|---| | Every provider has a different API shape | One unified interface for all providers | | Switching providers means rewriting code | Change one line to switch providers | | 15+ transaction statuses across providers | 4 unified statuses: success, failed, pending, abandoned | | Different amount formats (kobo vs naira) | Always use major currency units (5000 = N5,000) | | No retry logic out of the box | Smart retry with exponential backoff + jitter | | Webhook formats differ per provider | Unified webhook events with signature verification |

Quick Start

Installation

npm install payvault

Initialize a Payment (Paystack)

import { PayVault } from 'payvault';

// Create a PayVault instance for Paystack
const vault = PayVault.paystack('sk_test_xxxxx');

// Initialize a transaction -- returns a checkout URL
const tx = await vault.initializeTransaction({
  amount: 5000,          // N5,000 (always in major units)
  email: '[email protected]',
  currency: 'NGN',
  metadata: { orderId: 'order_123' },
});

console.log(tx.authorizationUrl);
// => "https://checkout.paystack.com/abc123"
// Redirect your customer to this URL

Verify a Transaction

const result = await vault.verifyTransaction('pvt_ps_abc123');

if (result.success) {
  console.log(`Paid ${result.amount} ${result.currency}`);
  console.log(`Channel: ${result.channel}`);        // 'card', 'bank_transfer', etc.
  console.log(`Customer: ${result.customer.email}`);

  // Save authorization code for recurring charges
  if (result.authorization?.reusable) {
    await saveAuthCode(result.customer.email, result.authorization.code);
  }
}

Switch to Flutterwave

The killer feature -- change one line to switch providers:

- const vault = PayVault.paystack('sk_test_xxxxx');
+ const vault = PayVault.flutterwave('FLWSECK_TEST-xxxxx');

Everything else stays the same. Same method names, same response shapes, same types.

Configuration

const vault = new PayVault({
  provider: 'paystack',            // or 'flutterwave'
  secretKey: 'sk_test_xxxxx',
  publicKey: 'pk_test_xxxxx',      // optional
  currency: 'NGN',                 // default currency
  webhookSecret: 'whsec_xxxxx',    // for webhook verification

  // Smart retry (enabled by default)
  retry: {
    enabled: true,
    maxAttempts: 3,
    backoffMs: 1000,               // doubles each attempt + jitter
    retryableStatuses: [408, 429, 500, 502, 503, 504],
  },

  timeout: 30000,                  // request timeout in ms

  // Metadata attached to every transaction
  metadata: {
    source: 'web',
    version: '2.0',
  },
});

// Or use the convenience factory methods:
const paystackVault = PayVault.paystack('sk_test_xxxxx', {
  currency: 'NGN',
  webhookSecret: 'whsec_xxxxx',
});

API Reference

Transactions

| Method | Description | |---|---| | initializeTransaction(config) | Create a payment and get a checkout URL | | verifyTransaction(reference) | Verify a transaction status server-side |

Charges

| Method | Description | |---|---| | charge(config) | Direct charge (card, bank, recurring via auth code) | | submitAuthorization(ref, auth) | Submit OTP, PIN, or other auth response |

Refunds

| Method | Description | |---|---| | refund(config) | Full or partial refund by transaction reference |

Subscriptions

| Method | Description | |---|---| | createSubscription(config) | Subscribe a customer to a plan | | cancelSubscription(code) | Cancel an active subscription |

Webhooks

| Method | Description | |---|---| | verifyWebhook(payload, signature) | Verify webhook signature (returns boolean) | | parseWebhook(payload) | Parse raw webhook into unified event | | handleWebhook(payload, signature) | Verify + parse + dispatch to handlers | | on(eventType, handler) | Register a webhook event handler |

Utilities

| Method | Description | |---|---| | PayVault.paystack(secretKey, opts?) | Factory for Paystack | | PayVault.flutterwave(secretKey, opts?) | Factory for Flutterwave | | PayVault.registerProvider(name, class) | Register a custom provider | | vault.providerName | Get current provider name |

Webhooks

PayVault normalizes webhook payloads across providers into a single WebhookEvent shape.

Express Example

import express from 'express';
import { PayVault } from 'payvault';

const app = express();
const vault = PayVault.paystack('sk_live_xxxxx', {
  webhookSecret: 'whsec_xxxxx',
});

// Register handlers
vault.on('charge.success', async (event) => {
  console.log(`Payment received: ${event.amount} ${event.currency}`);
  console.log(`Reference: ${event.reference}`);
  console.log(`Customer: ${event.customer.email}`);
  await fulfillOrder(event.reference);
});

vault.on('charge.failed', async (event) => {
  console.log(`Payment failed: ${event.reference}`);
  await notifyCustomer(event.customer.email);
});

// Catch-all handler for logging
vault.on('*', async (event) => {
  await logWebhookEvent(event);
});

// Webhook endpoint
app.post('/webhooks/payments', express.raw({ type: 'application/json' }), async (req, res) => {
  try {
    const signature =
      (req.headers['x-paystack-signature'] as string) ||
      (req.headers['verif-hash'] as string);

    const event = await vault.handleWebhook(req.body, signature);
    res.status(200).json({ received: true, type: event.type });
  } catch (err) {
    console.error('Webhook error:', err);
    res.status(401).json({ error: 'Invalid webhook signature' });
  }
});

Webhook Event Shape

interface WebhookEvent {
  id: string;              // Event ID
  provider: string;        // 'paystack' | 'flutterwave'
  type: string;            // 'charge.success', 'transfer.failed', etc.
  reference: string;       // Transaction reference
  status: string;          // 'success' | 'failed' | 'pending' | 'abandoned'
  amount: number;          // In major currency units
  currency: string;        // 'NGN', 'GHS', 'KES', etc.
  customer: Customer;      // { email, firstName, lastName, phone }
  timestamp: string;       // ISO 8601
  raw: any;                // Original provider payload
}

Recurring Charges

Charge returning customers without collecting card details again.

// Step 1: After first successful payment, save the authorization code
const verification = await vault.verifyTransaction('pvt_first_payment');

if (verification.authorization?.reusable) {
  const authCode = verification.authorization.code;
  // Save authCode to your database, linked to the customer
}

// Step 2: Charge the saved card later
const charge = await vault.charge({
  amount: 5000,
  email: '[email protected]',
  channel: 'card',
  authorizationCode: authCode,   // from step 1
});

if (charge.success) {
  console.log('Recurring charge successful!');
}

Split Payments

Route payments to subaccounts for marketplace or multi-vendor setups.

const tx = await vault.initializeTransaction({
  amount: 10000,
  email: '[email protected]',
  split: {
    subaccountCode: 'ACCT_vendor123',
    transactionCharge: 500,        // platform fee (N500)
    bearer: 'account',             // main account bears Paystack fees
  },
});

Multi-Step Authorization

Some charges require additional authorization (OTP, PIN, 3DS redirect).

const charge = await vault.charge({
  amount: 5000,
  email: '[email protected]',
  channel: 'card',
  card: {
    number: '4084084084084081',
    expMonth: '01',
    expYear: '30',
    cvv: '408',
  },
});

if (charge.requiresAuth) {
  switch (charge.authType) {
    case 'otp':
      // Show OTP input to user
      console.log(charge.authMessage);  // "Enter OTP sent to 080****1234"
      const otp = await promptUser('Enter OTP:');
      const result = await vault.submitAuthorization(charge.reference, {
        type: 'otp',
        value: otp,
      });
      break;

    case 'redirect':
      // Redirect to 3DS page
      redirectTo(charge.authUrl!);
      break;

    case 'pin':
      const pin = await promptUser('Enter card PIN:');
      await vault.submitAuthorization(charge.reference, {
        type: 'pin',
        value: pin,
      });
      break;
  }
}

Provider Switching

PayVault's architecture makes provider migration painless. Your business logic never changes.

Environment-Based Switching

const vault = new PayVault({
  provider: process.env.PAYMENT_PROVIDER!,     // 'paystack' or 'flutterwave'
  secretKey: process.env.PAYMENT_SECRET_KEY!,
  currency: 'NGN',
});

// This code works identically with either provider
const tx = await vault.initializeTransaction({
  amount: 5000,
  email: '[email protected]',
});

A/B Testing Providers

function getPaymentVault(userId: string): PayVault {
  // Route 20% of users to Flutterwave
  const useFlutterwave = hashUserId(userId) % 5 === 0;

  return useFlutterwave
    ? PayVault.flutterwave(process.env.FLW_SECRET!)
    : PayVault.paystack(process.env.PS_SECRET!);
}

Failover

async function processPayment(config: TransactionConfig) {
  try {
    const primary = PayVault.paystack(process.env.PS_SECRET!);
    return await primary.initializeTransaction(config);
  } catch (err) {
    console.warn('Paystack failed, falling back to Flutterwave');
    const fallback = PayVault.flutterwave(process.env.FLW_SECRET!);
    return await fallback.initializeTransaction(config);
  }
}

Smart Retry

PayVault automatically retries failed requests with exponential backoff and jitter. No configuration needed -- it works out of the box.

What gets retried:

  • HTTP 408 (Request Timeout)
  • HTTP 429 (Rate Limited)
  • HTTP 500, 502, 503, 504 (Server Errors)
  • Network failures and timeouts

What never gets retried:

  • HTTP 401 (Authentication) -- throws AuthenticationError immediately
  • HTTP 400 (Bad Request) -- your input is wrong, retrying won't help
  • HTTP 404 (Not Found) -- the resource doesn't exist

Backoff strategy: baseMs * 2^(attempt-1) with +/- 25% jitter to prevent thundering herds.

// Custom retry config
const vault = PayVault.paystack('sk_test_xxxxx', {
  retry: {
    maxAttempts: 5,             // try up to 5 times
    backoffMs: 2000,            // start at 2s, then 4s, 8s, 16s
    retryableStatuses: [429, 500, 502, 503, 504],
  },
  timeout: 15000,               // 15s per request
});

// Disable retry entirely
const noRetryVault = PayVault.paystack('sk_test_xxxxx', {
  retry: { enabled: false },
});

Error Handling

PayVault provides structured, catchable errors with provider context.

import {
  PayVaultError,
  AuthenticationError,
  ValidationError,
  ProviderError,
  NetworkError,
  TransactionError,
} from 'payvault';

try {
  await vault.initializeTransaction({ amount: 5000, email: '' });
} catch (err) {
  if (err instanceof ValidationError) {
    console.log(err.field);       // 'email'
    console.log(err.message);     // 'Email is required'
  }

  if (err instanceof AuthenticationError) {
    // Bad API key -- check your config
    console.log(err.provider);    // 'paystack'
  }

  if (err instanceof ProviderError) {
    console.log(err.statusCode);  // 422, 500, etc.
    console.log(err.raw);         // raw provider error response
  }

  if (err instanceof NetworkError) {
    // Timeout or connection failure (after all retries exhausted)
    console.log(err.provider);
  }

  // All errors extend PayVaultError
  if (err instanceof PayVaultError) {
    console.log(err.code);        // 'VALIDATION_ERROR', 'PROVIDER_ERROR', etc.
    console.log(err.provider);    // which provider threw
  }
}

Custom Providers

Add support for any payment provider by implementing the Provider interface.

import { PayVault } from 'payvault';
import type {
  PayVaultConfig,
  Provider,
  TransactionConfig,
  TransactionResult,
  VerificationResult,
  ChargeConfig,
  ChargeResult,
  RefundConfig,
  RefundResult,
  WebhookEvent,
} from 'payvault';

class MyCustomProvider implements Provider {
  name = 'my_provider';

  constructor(private config: PayVaultConfig) {
    // Initialize your provider with config.secretKey, etc.
  }

  async initializeTransaction(config: TransactionConfig): Promise<TransactionResult> {
    // Call your provider's API
    // Return a unified TransactionResult
    return {
      success: true,
      provider: this.name,
      authorizationUrl: 'https://pay.myprovider.com/checkout/abc',
      accessCode: 'abc',
      reference: 'ref_123',
      raw: {},
    };
  }

  async verifyTransaction(reference: string): Promise<VerificationResult> {
    // Implement verification
    throw new Error('Not implemented');
  }

  async charge(config: ChargeConfig): Promise<ChargeResult> {
    // Implement direct charge
    throw new Error('Not implemented');
  }

  async submitAuthorization(
    ref: string,
    auth: { type: string; value: string }
  ): Promise<ChargeResult> {
    throw new Error('Not implemented');
  }

  async refund(config: RefundConfig): Promise<RefundResult> {
    throw new Error('Not implemented');
  }

  verifyWebhook(payload: string | Buffer, signature: string): boolean {
    // Verify webhook signature using your provider's method
    return true;
  }

  parseWebhook(payload: string | Buffer): WebhookEvent {
    // Parse into unified WebhookEvent
    throw new Error('Not implemented');
  }
}

// Register your provider
PayVault.registerProvider('my_provider', MyCustomProvider);

// Use it like any built-in provider
const vault = new PayVault({
  provider: 'my_provider',
  secretKey: 'my_secret_key',
});

Unified Status Mapping

PayVault normalizes provider-specific statuses into 4 universal states:

| Unified Status | Paystack | Flutterwave | |---|---|---| | success | success | successful, completed | | failed | failed, reversed | failed, error | | pending | pending, processing, ongoing, queued | pending, processing | | abandoned | abandoned | cancelled |

Amount Handling

PayVault always works in major currency units (the number your customer sees).

// You write this:
await vault.initializeTransaction({ amount: 5000, email: '...' });
// PayVault sends 500000 (kobo) to Paystack
// PayVault sends 5000 (naira) to Flutterwave
// You never think about conversion

Zero-decimal currencies (JPY, KRW, VND) are handled automatically.

TypeScript Support

PayVault is written in TypeScript and exports full type definitions. Every method, config object, and response is strongly typed.

import type {
  TransactionConfig,
  TransactionResult,
  VerificationResult,
  ChargeResult,
  WebhookEvent,
  Provider,
} from 'payvault';

Project Structure

payvault/
  src/
    index.ts              # Public API exports
    client.ts             # PayVault main client class
    types.ts              # All TypeScript interfaces and types
    errors.ts             # Structured error classes
    http.ts               # HTTP client with retry logic
    utils.ts              # Shared utilities
    providers/
      paystack.ts         # Paystack provider implementation
      flutterwave.ts      # Flutterwave provider implementation
  package.json
  tsconfig.json

Contributing

We welcome contributions! Here's how:

  1. Fork the repo
  2. Create a branch (git checkout -b feat/my-feature)
  3. Write tests for your changes
  4. Ensure TypeScript compiles (npm run build)
  5. Submit a PR with a clear description

Adding a New Provider

  1. Create src/providers/yourprovider.ts
  2. Implement the Provider interface
  3. Add it to the BUILTIN_PROVIDERS registry in src/client.ts
  4. Export it from src/index.ts
  5. Add status mappings to src/utils.ts
  6. Write tests

License

MIT License. See LICENSE for details.

Built with care for African developers, by T9ner🧑‍💻.