Metadata-Version: 2.4
Name: absolutepay
Version: 0.5.0
Summary: Official AbsolutePay API client for Python — payments, payouts, invoices, conversions, off-ramp, gift cards, and signed webhooks.
Project-URL: Homepage, https://docs.absolutepay.io
Project-URL: Repository, https://github.com/AbsolutePay/absolutepay-python
Project-URL: Issues, https://github.com/AbsolutePay/absolutepay-python/issues
Author: AbsolutePay
License-Expression: MIT
License-File: LICENSE
Keywords: absolutepay,api,crypto,payments,payouts,sdk,webhooks
Classifier: Development Status :: 4 - Beta
Classifier: Intended Audience :: Developers
Classifier: License :: OSI Approved :: MIT License
Classifier: Programming Language :: Python :: 3
Classifier: Programming Language :: Python :: 3.9
Classifier: Programming Language :: Python :: 3.10
Classifier: Programming Language :: Python :: 3.11
Classifier: Programming Language :: Python :: 3.12
Classifier: Topic :: Software Development :: Libraries :: Python Modules
Classifier: Typing :: Typed
Requires-Python: >=3.9
Provides-Extra: dev
Requires-Dist: pytest>=8; extra == 'dev'
Description-Content-Type: text/markdown

# absolutepay

Official AbsolutePay API client for Python. Server-side only — your API key and signing secret must never reach a browser.

> Every request from an app key is HMAC-signed automatically. Inbound webhooks are verified with one call. **Zero runtime dependencies** — standard library only.

## Install

```bash
pip install absolutepay
```

Requires Python 3.9+.

## Environments

| Config | Base URL |
|---|---|
| default | `https://api.absolutepay.io` (production) |
| `sandbox=True` | `https://sandbox-api.absolutepay.io` |
| `base_url="https://…"` | your override (takes precedence over `sandbox`) |

Use a dedicated sandbox app (sign up at [sandbox.absolutepay.io](https://sandbox.absolutepay.io)) with `sandbox=True` to test end-to-end without moving real funds.

## Quickstart

```python
import os
from absolutepay import AbsolutePay

ap = AbsolutePay(
    api_key=os.environ["ABSOLUTEPAY_API_KEY"],            # ap_live_… / ap_test_…
    signing_secret=os.environ["ABSOLUTEPAY_SIGNING_SECRET"],  # apisign_…  (required for app keys)
    # sandbox=True,             # → https://sandbox-api.absolutepay.io (default is production)
    # base_url="https://…",     # optional: override the origin entirely (wins over sandbox)
)

balances = ap.balances.list()          # {"items": [...]}
preview = ap.fees.preview(amount="100", currency="USDT")

# Hosted checkout link — the payer picks which asset/chain to pay with on the page
checkout = ap.checkouts.create(
    reference="order-123",
    amount={"amount": "25.00", "currency": "USDT"},
    redirect_url="https://shop.example.com/thank-you",  # payer returns here when done
)
print(checkout["checkoutUrl"])  # send the payer here; confirm via the payment.succeeded webhook

# Up-front address flow — `chain` is required; the deposit address is minted immediately
invoice = ap.invoices.create(
    reference="order-124",
    amount={"amount": "25.00", "currency": "USDT"},
    chain="TRX",
)
print(invoice["address"])
```

## Money

Amounts are plain dicts — a decimal string plus a currency code:

```python
{"amount": "10.00", "currency": "USDT"}
```

## Resources

`balances` · `fees` · `payouts` · `refunds` · `conversions` · `checkouts` · `invoices` · `deposits` · `subscriptions` (+ `subscriptions.plans`) · `giftcards` · `offramp` · `reconciliation`

Both `checkouts` and `invoices` expose the same CRUD: `create` · `list` · `get` · `update` · `delete`.

### Lists & pagination

Every `list`-style method takes keyword filters plus `limit` / `before` / `order` (`"asc"`/`"desc"`) and returns the raw page `{"items": [...], "nextCursor": ...}`. Page by feeding `nextCursor` back as `before`; a `None` cursor is the last page. Refund, conversion and reconciliation histories additionally carry a `total`.

```python
page = ap.checkouts.list(status="open", limit=50, order="desc")
for chk in page["items"]:
    ...
cursor = page["nextCursor"]  # pass as before= for the next page; None on the last

# Settled refund history (keyset-paginated, carries a total)
refunds = ap.refunds.list(from_=1_700_000_000_000, to=1_800_000_000_000, currency="USDT")
```

### Idempotency

Money POSTs — `payouts.create`, `refunds.create`, `conversions.execute`, `offramp.withdraw`, `giftcards.create`, `subscriptions.create`, `subscriptions.plans.create` — accept `idempotency_key=`, sent as the `Idempotency-Key` header (a retry with the same key never acts twice; a `409` surfaces as a normal `AbsolutePayError`).

```python
# Batch payout (idempotent — a retry with the same key never pays twice)
ap.payouts.create(
    [{"recipientAddress": "0xabc…", "chain": "MATIC", "amount": {"amount": "5.00", "currency": "USDT"}}],
    idempotency_key="payroll-2026-07-01",
)

# Convert USDT → ETH (quote then execute)
q = ap.conversions.quote(sell_currency="USDT", buy_currency="ETH", sell_amount="100")
ap.conversions.execute(
    quote_id=q["quoteId"],
    sell={"amount": q["sellAmount"], "currency": q["sellCurrency"]},
    buy={"amount": q["buyAmount"], "currency": q["buyCurrency"]},
    idempotency_key="convert-001",
)
```

### Deposits (own-balance receive addresses)

```python
ap.deposits.chains()                     # {"items": [...]}
addr = ap.deposits.create_address(chain="TRX")   # idempotent mint-or-return
ap.deposits.list(chain="TRX")            # settled deposit history {"items", "nextCursor"}
```

## Errors

Non-2xx responses raise `AbsolutePayError`:

```python
from absolutepay import AbsolutePayError

try:
    ap.invoices.list()
except AbsolutePayError as e:
    print(e.status, e.code, e.detail, e.request_id)
    if e.is_rate_limited:  # 429 — back off and retry
        ...
    if e.is_auth:          # 401/403 — bad creds, missing scope, or bad signature
        ...
```

## Webhooks

Verify the signature and parse the event in one call. Pass the **raw** request body (bytes or str), the request headers, and your app's callback secret (`whsec_…`):

```python
from absolutepay import construct_event, WebhookSignatureError

# e.g. in a Flask handler
raw = request.get_data()  # RAW bytes — do not re-serialize
try:
    event = construct_event(raw, dict(request.headers), os.environ["ABSOLUTEPAY_WEBHOOK_SECRET"])
except WebhookSignatureError:
    return "", 400

if event["type"] == "payment.succeeded":
    fulfill(event["data"])
return "", 200
```

The freshness (replay) window defaults to 5 minutes; pass `tolerance_ms=0` to disable it.

## Security

- **Server-side only.** The API key + signing secret authenticate as your workspace — never ship them to a browser or mobile app.
- Requests are sent over HTTPS only (except `localhost` for local development).
- The `Idempotency-Key` header (on money POSTs) is intentionally **not** part of the signed canonical string.

## License

MIT
