Plugins

Retry, idempotency, logging, webhook verification, and writing custom plugins.

Added in v0.1.0

Plugins intercept requests and webhook events at specific points in the lifecycle. They are plain objects passed in the plugins array of PesaConfig. Order matters — plugins are composed in sequence.

import { createPesa } from '@borapesa/pesa';
import { retryPlugin, idempotencyPlugin, loggingPlugin } from '@borapesa/pesa/plugins';

const pesa = createPesa({
  provider: new ClickPesaProvider({ ... }),
  plugins: [
    idempotencyPlugin(),   // must be before retryPlugin
    retryPlugin({ maxAttempts: 3 }),
    loggingPlugin({ level: 'info' }),
  ],
});

Built-in plugins

retryPlugin()

Retries payments on in-progress statuses (AMBIGUOUS, PROCESSING, QUEUED) with configurable backoff.

retryPlugin({
  maxAttempts: 3,                    // default: 3
  backoff: 'exponential',           // 'exponential' | 'linear' | 'fixed'
  baseDelayMs: 1000,                // default: 1000
})
BackoffFormulaDelay sequence (base=1000)
exponentialbase * 2^attempt1s, 2s, 4s
linearbase * (attempt + 1)1s, 2s, 3s
fixedbase1s, 1s, 1s

idempotencyPlugin()

Prevents duplicate charges on network retries. Keys on operation + reference — the same reference sent to the same operation twice throws an error.

idempotencyPlugin({ store: 'memory' }); // default: in-memory set

Place this before retryPlugin in the array. The retry loop in createPesa won't re-run beforeRequest hooks on retries, so idempotency checks only fire once per logical request.

loggingPlugin()

Structured logs for all SDK operations. Redacts phone numbers and email addresses from payloads.

loggingPlugin({
  level: 'info',           // 'debug' | 'info' | 'warn' | 'error'
  logger: console,         // swap for Pino, Winston, etc.
})

Logs include: operation name, status, duration in ms, and sanitized payload.

webhookVerifyPlugin()

Enforces the BORAPESA_WEBHOOK_SECRET environment variable in production. Throws if it's missing.

webhookVerifyPlugin('my-secret'); // or reads from process.env.BORAPESA_WEBHOOK_SECRET

Provider-specific cryptographic verification is handled by the provider adapter. This plugin adds an application-layer guard.

Plugin interface

Write custom plugins by implementing the PesaPlugin interface:

interface PesaPlugin {
  name: string;

  // Intercept outgoing request
  beforeRequest?: (ctx: RequestContext) => Promise<RequestContext>;

  // Intercept provider response — set ctx.retry = true to trigger retry
  afterResponse?: (ctx: ResponseContext) => Promise<ResponseContext>;

  // React to verified, about-to-be-persisted events
  onPaymentEvent?: (event: PaymentEvent) => Promise<void>;

  // Called once at startup with the assembled PesaInstance
  init?: (pesa: PesaInstance) => void;
}

Example: SMS notification plugin

const smsPlugin: PesaPlugin = {
  name: 'sms-notify',

  async onPaymentEvent(event) {
    if (event.type !== 'PAYMENT_SUCCESS') return;

    await fetch('https://sms-gateway.example.com/send', {
      method: 'POST',
      body: JSON.stringify({
        phone: event.metadata?.customerPhone,
        message: `Payment of TZS ${event.amount} confirmed. Ref: ${event.reference}`,
      }),
    });
  },
};

const pesa = createPesa({
  provider: new ClickPesaProvider({ ... }),
  plugins: [smsPlugin, retryPlugin()],
});

Event System

Webhooks, event persistence, and typed event handlers in Bora Pesa.

Error Handling

Understanding PesaError, when to retry, and how to handle provider errors.

On this page

Built-in pluginsretryPlugin()idempotencyPlugin()loggingPlugin()webhookVerifyPlugin()Plugin interfaceExample: SMS notification plugin