Phase 1 · v1.0PlannedGeneral availability
Hosted-plan pricing + SLA announced, plus general availability.
- Planned
Hosted plan — pricing + SLA
Per-app + usage pricing model (likely). Specific rates announced at launch.
Changelog
ReliPay is in public beta, so this changelog is grouped by phase rather than version date. The source is open on GitHub; once v1.0 ships, this page becomes a per-release log generated from git tags.
Phase 1 · v1.0PlannedHosted-plan pricing + SLA announced, plus general availability.
Per-app + usage pricing model (likely). Specific rates announced at launch.
Phase 0.5 · Enterprise hardeningShippedAn enterprise-readiness wave: cryptographic and operational features that larger teams ask for first.
The operator MCP can now run your workspace, not just read it: create applications, edit auth config, manage plans and webhooks, plus admin tools (configure billing credentials, cancel subscriptions) behind a separate `mcp:operator:admin` scope. Every tier requires explicit OAuth consent and an OWNER/ADMIN role; the end-user MCP stays read-only.
ReliPay's source is now public under the MIT license at github.com/relipay-dev/relipay — self-host from source, audit it, or contribute.
Verify end-user tokens offline — at the edge, in microservices, anywhere — via /.well-known/jwks.json and verifyAccessToken() in @relipay/node. HS256 stays the default; RS256 is per-Application opt-in.
A deployable end-user portal (apps/portal): sign in, view subscription + entitlements, billing history, change plans, cancel at period end.
Failed payments open a recovery case: reminder emails on day 0/3/7 through your app's email transport, auto-cancel with provider sync at day 14, recovery tracked when a later payment lands. Full visibility in the panel.
rp_test_ keys now stamp and see test data only — users, subscriptions, and payments never mix with production. Revenue stats count live mode only.
Grant workspace members admin, billing-manager, or viewer access per Application — finance can manage plans and coupons without touching API keys or auth config.
Send an Idempotency-Key header on mutating requests and retry safely — replays return the original response (encrypted at rest), conflicting reuse is rejected.
Per-app MRR/churn/12-month revenue in the panel, one-click DSAR JSON export per end-user, audit-log CSV export, and 16 typed outbound webhook events covering auth, billing, and dunning.
Phase 0 · Public betaShippedThe full Phase 0 surface is in beta and being onboarded to design-partner teams.
BillingProvider abstraction with BYO credentials per Tenant. Geographic routing across providers is supported.
Plans declare what they bill for. License keys auto-issue on activation of LICENSE plans; USAGE plans bill against tracked meters.
End-user roles scoped per Application with default-role enforcement.
Enrollment via QR; recovery codes downloadable from the panel. Per-Application 2FA policy (off / optional / required) for end-users.
Passkey enrollment + authentication for both operator accounts and end-users, alongside TOTP.
CREDIT plan kind backed by an atomic, idempotent balance ledger — one-time top-ups that draw down per use.
Verification, password-reset, and magic-link email via BYO or ReliPay-managed Resend, with a template editor in the panel.
Percentage/amount coupons with redemption idempotency, plus one-click webhook registration for Stripe/PayPal from the panel.
Google, GitHub, and additional providers behind the same OIDC interface.
Tenants own Workspaces with independent billing config. Operators invite teammates with role assignment.
Typed SDKs + a non-interactive CLI + a read-only MCP server for Claude / Cursor / Claude Code — all live on npm under the @relipay scope (beta).
Full CRUD across plans, coupons, keys, end-users, and workspace settings. Built fresh in Next.js.