@erroraware/client NPM

Error-Aware Client API Documentation

Overview

This API endpoint provides a secure way to process signed payloads with built-in error handling and rate limiting.

Security Requirements

HTTPS protocol only
IP whitelist enforced
Request signing required
Rate limit: 100 requests per minute
Maximum request size: 1MB

Request Format

Headers

{
  "Content-Type": "application/json",
  "x-platform-origin": "qwerkly-platform",
  "x-forwarded-proto": "https"
}

Body Structure

{
  "payload": {
    // Your data as key-value pairs
    [key: string]: unknown
  },
  "signature": string // Base64 encoded signature
}

Signing Requests

Using the Provided Utility

import { signPayload } from "./signPayload";

const payload = {
  message: "Hello World",
  timestamp: Date.now()
};

const signedPayload = signPayload(payload);

Manual Signing Process

Convert payload to JSON string
Sign using SHA-256 algorithm
Encode signature in Base64

Response Format

Success Response (200 OK)

{
  "success": true,
  "received": {
    // Echo of your payload
  },
  "requestId": "unique-request-identifier"
}

Error Response

{
  "error": "Error message",
  "requestId": "unique-request-identifier"
}

Status Codes

Code	Description
200	Success
400	Invalid JSON or Missing Fields
403	Unauthorized or Invalid Signature
408	Request Timeout (5s limit)
413	Payload Too Large
429	Rate Limit Exceeded
500	Internal Server Error

Example Implementation

async function makeApiRequest(data: Record<string, unknown>) {
  try {
    const signedPayload = signPayload(data);
    
    const response = await fetch('https://your-api-endpoint', {
      method: 'POST',
      headers: {
        'Content-Type': 'application/json',
        'x-platform-origin': 'qwerkly-platform',
        'x-forwarded-proto': 'https'
      },
      body: JSON.stringify(signedPayload)
    });

    if (!response.ok) {
      const error = await response.json();
      throw new Error(error.error || 'Request failed');
    }

    return await response.json();
  } catch (error) {
    console.error('API request failed:', error);
    throw error;
  }
}

Error Types

enum ErrorType {
  RATE_LIMIT = "Rate limit exceeded",
  INVALID_IP = "Unauthorized IP",
  INVALID_PROTOCOL = "HTTPS required",
  INVALID_ORIGIN = "Invalid origin header",
  INVALID_SIGNATURE = "Invalid signature",
  TIMEOUT = "Request timeout",
  PAYLOAD_TOO_LARGE = "Request too large",
  INVALID_JSON = "Invalid JSON payload",
  MISSING_FIELDS = "Missing payload or signature",
  INTERNAL_ERROR = "Internal server error"
}

Setup Requirements

Generate key pair:

# Generate private key
openssl genpkey -algorithm RSA -out private.pem -pkeyopt rsa_keygen_bits:2048

# Extract public key
openssl rsa -pubout -in private.pem -out public.pem

Place private.pem in client directory
Configure server with public.pem
Update allowed IPs in server configuration

Connection Verification

Request Format

{
  "payload": {
    "verificationType": "connection",
    "platformId": string,
    "timestamp": number // Unix timestamp in milliseconds
  },
  "signature": string
}

Verification Response

{
  "success": true,
  "verified": true,
  "platformId": string,
  "requestId": string
}

Headers

X-Request-ID: Unique request identifier
X-Verification-Time: Server timestamp of verification

Verification Rules

Request must be signed like normal requests
Timestamp must be within last 5 minutes
Platform ID must match expected format
All security checks (IP, origin, etc.) still apply

Example

const verificationPayload = {
  verificationType: 'connection',
  platformId: 'your-platform-id',
  timestamp: Date.now()
};

const signedPayload = signPayload(verificationPayload);
const response = await makeApiRequest(signedPayload);

nextjs log logger ndjson pino winston

@upstash/ratelimit @upstash/redis jsonwebtoken micro-ansi ms

5 months ago

5 months ago

5 months ago

5 months ago