REST API for lodging receipts — bearer-token auth, standardized JSON envelope, manual payment tracking only (no payment gateway).
{success, data, meta} on success or {success: false, error: {code, message, details}} on failure. Authenticated routes require Authorization: Bearer <token> (Sanctum personal access tokens — see the "Auth model" section of the backend README). Payments below are always staff-entered manual records; there is no payment gateway/processor integration.