@agentunion/fastaun-browser 0.2.18 → 0.2.20

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (90) hide show
  1. package/CHANGELOG.md +26 -0
  2. package/_packed_docs/CHANGELOG.md +26 -0
  3. package/_packed_docs/agent.md/SCHEMA.md +173 -0
  4. package/_packed_docs/agent.md/examples/codeagent-claudecode.md +61 -0
  5. package/_packed_docs/agent.md/examples/human-developer.md +60 -0
  6. package/_packed_docs/agent.md/examples/openclaw-lobster.md +52 -0
  7. package/_packed_docs/agent.md/examples/signed-openclaw-lobster.md +43 -0
  8. package/_packed_docs/protocol/00-/346/200/273/350/247/210/344/270/216/345/210/206/345/261/202.md +205 -0
  9. package/_packed_docs/protocol/00A-/350/256/276/350/256/241/345/216/237/345/210/231-/344/270/272Agent/350/200/214/347/224/237.md +197 -0
  10. package/_packed_docs/protocol/01-/350/272/253/344/273/275/344/270/216/345/207/255/350/257/201/345/215/217/350/256/256-auth.md +549 -0
  11. package/_packed_docs/protocol/02-/350/257/201/344/271/246/344/270/216/344/277/241/344/273/273/344/275/223/347/263/273.md +810 -0
  12. package/_packed_docs/protocol/03-Gateway-/350/277/236/346/216/245/346/250/241/345/274/217.md +262 -0
  13. package/_packed_docs/protocol/04-Peer-/345/255/220/345/215/217/350/256/256.md +180 -0
  14. package/_packed_docs/protocol/05-Relay-/345/255/220/345/215/217/350/256/256.md +164 -0
  15. package/_packed_docs/protocol/06-/346/234/215/345/212/241/345/215/217/350/256/256.md +1135 -0
  16. package/_packed_docs/protocol/07-/351/224/231/350/257/257/347/240/201/344/270/216/347/212/266/346/200/201/346/234/272.md +234 -0
  17. package/_packed_docs/protocol/08-AUN-E2EE-Group.md +900 -0
  18. package/_packed_docs/protocol/08-AUN-E2EE.md +413 -0
  19. package/_packed_docs/protocol/09-/345/256/211/345/205/250/350/200/203/350/231/221.md +316 -0
  20. package/_packed_docs/protocol/10-Group-/345/255/220/345/215/217/350/256/256.md +804 -0
  21. package/_packed_docs/protocol/11-Storage-/345/255/220/345/215/217/350/256/256.md +271 -0
  22. package/_packed_docs/protocol/12-Stream-/345/255/220/345/215/217/350/256/256.md +329 -0
  23. package/_packed_docs/protocol/13-Agent/350/241/214/344/270/272/350/247/204/350/214/203.md +141 -0
  24. package/_packed_docs/protocol/14-/344/272/244/344/272/222/346/234/272/345/210/266-/345/223/215/345/272/224/346/250/241/345/274/217/344/270/216/350/207/252/344/270/273/346/250/241/345/274/217.md +170 -0
  25. package/_packed_docs/protocol/README.md +71 -0
  26. package/_packed_docs/protocol/agent.md/SCHEMA.md +118 -0
  27. package/_packed_docs/protocol/agent.md/examples/codeagent-claudecode.md +61 -0
  28. package/_packed_docs/protocol/agent.md/examples/human-developer.md +60 -0
  29. package/_packed_docs/protocol/agent.md/examples/openclaw-lobster.md +52 -0
  30. package/_packed_docs/protocol/aun-docs-guide.md +49 -0
  31. package/_packed_docs/protocol/index.md +114 -0
  32. package/_packed_docs/protocol//350/215/211/346/241/210-agent.md/347/255/276/345/220/215/345/215/217/350/256/256.md +205 -0
  33. package/_packed_docs/protocol//350/215/211/346/241/210-/346/213/222/347/273/235/344/277/241/345/217/267/345/215/217/350/256/256.md +249 -0
  34. package/_packed_docs/protocol//351/231/204/345/275/225A-/346/234/257/350/257/255/350/241/250.md +337 -0
  35. package/_packed_docs/protocol//351/231/204/345/275/225B-/346/211/251/345/261/225/346/200/247/346/214/207/345/215/227.md +80 -0
  36. package/_packed_docs/protocol//351/231/204/345/275/225C-/347/247/201/351/222/245/347/256/241/347/220/206/344/270/216/350/272/253/344/273/275/346/201/242/345/244/215.md +704 -0
  37. package/_packed_docs/protocol//351/231/204/345/275/225D-Root_CA_/346/262/273/347/220/206/346/234/272/345/210/266.md +620 -0
  38. package/_packed_docs/protocol//351/231/204/345/275/225E-Root_CA_/345/207/206/345/205/245/346/265/201/347/250/213.md +605 -0
  39. package/_packed_docs/protocol//351/231/204/345/275/225F-Issuer_CA_/347/224/263/350/257/267/346/265/201/347/250/213.md +548 -0
  40. package/_packed_docs/protocol//351/231/204/345/275/225G-AID_/345/255/244/345/204/277/351/242/204/351/230/262/344/270/216/346/225/221/346/217/264/346/234/272/345/210/266.md +513 -0
  41. package/_packed_docs/protocol//351/231/204/345/275/225H-Identity/346/234/215/345/212/241/345/256/236/347/216/260/346/214/207/345/215/227.md +619 -0
  42. package/_packed_docs/protocol//351/231/204/345/275/225I-/350/267/250/345/237/237/346/266/210/346/201/257/350/267/257/347/224/261/345/256/236/347/216/260/346/214/207/345/215/227.md +492 -0
  43. package/_packed_docs/protocol//351/231/204/345/275/225J-/345/256/242/346/210/267/347/253/257/346/216/245/345/205/245/347/244/272/344/276/213.md +402 -0
  44. package/_packed_docs/protocol//351/231/204/345/275/225K-Agent_Web/345/217/221/347/216/260/345/215/217/350/256/256.md +130 -0
  45. package/_packed_docs/protocol//351/231/204/345/275/225L-E2EE/345/256/236/347/216/260/346/214/207/345/215/227.md +267 -0
  46. package/_packed_docs/protocol//351/231/204/345/275/225M-JWT/350/256/244/350/257/201/345/256/236/347/216/260/346/214/207/345/215/227.md +367 -0
  47. package/_packed_docs/sdk/01-/345/277/253/351/200/237/345/274/200/345/247/213.md +223 -0
  48. package/_packed_docs/sdk/02-WebSocket/345/215/217/350/256/256.md +354 -0
  49. package/_packed_docs/sdk/03-/346/240/270/345/277/203/346/246/202/345/277/265.md +172 -0
  50. package/_packed_docs/sdk/04-/350/277/236/346/216/245/344/270/216/350/256/244/350/257/201.md +373 -0
  51. package/_packed_docs/sdk/05-E2EE/345/212/240/345/257/206/351/200/232/344/277/241.md +611 -0
  52. package/_packed_docs/sdk/06-API/346/211/213/345/206/214.md +1152 -0
  53. package/_packed_docs/sdk/07-/351/224/231/350/257/257/345/244/204/347/220/206.md +150 -0
  54. package/_packed_docs/sdk/08-/346/234/200/344/275/263/345/256/236/350/267/265.md +89 -0
  55. package/_packed_docs/sdk/09-custody-api-manual.md +445 -0
  56. package/_packed_docs/sdk/09-group-rpc-manual.md +1895 -0
  57. package/_packed_docs/sdk/09-message-rpc-manual.md +597 -0
  58. package/_packed_docs/sdk/09-meta-rpc-manual.md +142 -0
  59. package/_packed_docs/sdk/09-payload-reference.md +702 -0
  60. package/_packed_docs/sdk/09-storage-rpc-manual.md +408 -0
  61. package/_packed_docs/sdk/09-stream-rpc-manual.md +275 -0
  62. package/_packed_docs/sdk/AUN_DOCS_GUIDE.md +72 -0
  63. package/_packed_docs/sdk/INDEX.md +131 -0
  64. package/_packed_docs/sdk/README.md +307 -0
  65. package/dist/auth.d.ts +11 -1
  66. package/dist/auth.d.ts.map +1 -1
  67. package/dist/auth.js +92 -17
  68. package/dist/auth.js.map +1 -1
  69. package/dist/client.d.ts +51 -9
  70. package/dist/client.d.ts.map +1 -1
  71. package/dist/client.js +394 -122
  72. package/dist/client.js.map +1 -1
  73. package/dist/e2ee.d.ts.map +1 -1
  74. package/dist/e2ee.js +20 -0
  75. package/dist/e2ee.js.map +1 -1
  76. package/dist/keystore/index.d.ts +11 -0
  77. package/dist/keystore/index.d.ts.map +1 -1
  78. package/dist/keystore/indexeddb.d.ts +35 -0
  79. package/dist/keystore/indexeddb.d.ts.map +1 -1
  80. package/dist/keystore/indexeddb.js +91 -0
  81. package/dist/keystore/indexeddb.js.map +1 -1
  82. package/dist/namespaces/auth.d.ts +10 -3
  83. package/dist/namespaces/auth.d.ts.map +1 -1
  84. package/dist/namespaces/auth.js +94 -15
  85. package/dist/namespaces/auth.js.map +1 -1
  86. package/dist/transport.d.ts +9 -1
  87. package/dist/transport.d.ts.map +1 -1
  88. package/dist/transport.js +24 -0
  89. package/dist/transport.js.map +1 -1
  90. package/package.json +4 -1
package/_packed_docs/sdk/09-meta-rpc-manual.md ADDED
@@ -0,0 +1,142 @@
1
+ # 元信息 — RPC Manual
2
+
3
+ ## 方法索引
4
+
5
+ | 方法 | 说明 |
6
+ |------|------|
7
+ | [meta.ping](#metaping) | 心跳检测 |
8
+ | [meta.status](#metastatus) | 查询连接状态 |
9
+ | [meta.trust_roots](#metatrust_roots) | 获取信任根证书 |
10
+
11
+ ---
12
+
13
+ ## meta.ping
14
+
15
+ 心跳检测。SDK Core 自动调用以保持连接活性,也可手动调用验证连接是否正常。
16
+
17
+ ### 参数
18
+
19
+ 无。
20
+
21
+ > **注意**:`timestamp` 参数**不会被回显**,服务端始终返回自身当前时间戳。
22
+
23
+ ### 响应
24
+
25
+ | 字段 | 类型 | 说明 |
26
+ |------|------|------|
27
+ | `pong` | boolean | 固定为 `true` |
28
+ | `timestamp` | integer | 服务端当前 Unix 时间戳(秒) |
29
+
30
+ ### 示例
31
+
32
+ ```python
33
+ result = await client.call("meta.ping", {})
34
+ print(result) # {"pong": true, "timestamp": ...}
35
+ ```
36
+
37
+ ---
38
+
39
+ ## meta.status
40
+
41
+ 查询当前连接的状态信息。
42
+
43
+ ### 参数
44
+
45
+ 无。
46
+
47
+ ### 响应
48
+
49
+ 当前服务实现由 Gateway 本地处理 `meta.status`,返回的是**简化 Gateway 连接状态**,不是完整的 peer/relay 诊断结构。
50
+
51
+ | 字段 | 类型 | 说明 |
52
+ |------|------|------|
53
+ | `mode` | string | 当前连接模式。现实现固定返回 `"gateway"` |
54
+ | `aid` | string | 当前会话认证后的 AID |
55
+ | `role` | string | 当前会话角色 |
56
+ | `connected_at` | integer | 会话建立时间戳(毫秒) |
57
+ | `protocol_version` | string | 协议版本,当前为 `"1.0"` |
58
+
59
+ > **实现事实**:Python SDK 当前也只实现 Gateway 拓扑;`peer` / `relay` 拓扑在 Python SDK 中尚未实现,不应把 `meta.status` 当作可稳定返回完整 peer/relay 诊断结构的接口。
60
+ > 客户端仍应容忍未知字段和未来扩展字段。
61
+
62
+ ### 示例
63
+
64
+ ```python
65
+ status = await client.call("meta.status", {})
66
+ print(f"模式: {status['mode']}")
67
+ ```
68
+
69
+ ---
70
+
71
+ ## meta.trust_roots
72
+
73
+ 获取当前服务端缓存的受信根证书列表。Gateway 内部转发给 `ca.get_trust_roots`。
74
+
75
+ 该 RPC 适合已连接客户端查询。首次信任根更新应优先使用公开 HTTP 端点 `GET https://trust.aun.network/.well-known/aun/trust-roots.json`,不可达时可使用 Issuer PKI 泛域名端点 `GET https://pki.{issuer}/trust-root.json` 或 Gateway 镜像 `GET https://gateway.{issuer}/pki/trust-roots.json`。无论来源是 RPC 还是 HTTP,客户端导入前都必须验证 `authority_signature`。
76
+
77
+ Issuer PKI 泛域名服务还必须公开 `GET https://pki.{issuer}/root.crt`,用于下载该 issuer 证书链锚定的 Root CA PEM。客户端通过 `client.meta.update_issuer_root_cert(issuer)` 更新指定 issuer 的根证书时,必须先确认该证书指纹存在于已验签的受信根列表中。
78
+
79
+ ### 参数
80
+
81
+ 无参数。
82
+
83
+ ### 响应
84
+
85
+ ```json
86
+ {
87
+ "version": 2,
88
+ "issued_at": "2026-03-15T10:00:00Z",
89
+ "next_update": "2026-03-16T10:00:00Z",
90
+ "authority_signature": "MEUCIQDx...",
91
+ "root_cas": [
92
+ {
93
+ "id": "root-ca-001",
94
+ "name": "AUN Root CA A",
95
+ "organization": "Organization A",
96
+ "certificate": "-----BEGIN CERTIFICATE-----\n...",
97
+ "fingerprint_sha256": "a1b2c3d4...",
98
+ "status": "active",
99
+ "crl_url": "http://crl.rootca-a.example/root.crl",
100
+ "ocsp_url": "http://ocsp.rootca-a.example"
101
+ }
102
+ ]
103
+ }
104
+ ```
105
+
106
+ | 字段 | 类型 | 说明 |
107
+ |------|------|------|
108
+ | `version` | integer | 受信根列表版本,单调递增 |
109
+ | `issued_at` | string | 列表签发时间 |
110
+ | `next_update` | string | 建议下次更新时间 |
111
+ | `authority_signature` | string | 管理局对规范化列表内容的签名 |
112
+ | `root_cas` | array | Root CA 列表 |
113
+ | `root_cas[].certificate` | string | PEM 格式 Root CA 证书 |
114
+ | `root_cas[].fingerprint_sha256` | string | Root CA 证书 DER SHA-256 指纹 |
115
+ | `root_cas[].status` | string | `active` / `retired` / `revoked` 等状态 |
116
+
117
+ > 兼容说明:早期服务可能仍返回 `roots/count` 简化结构。SDK 可以查询该结构,但默认不得将未签名列表导入本地信任根。
118
+ > 导入签名列表时,SDK 还会校验 `version`、`issued_at`、`next_update`、Root CA 证书 CA 约束、有效期和 SHA-256 指纹,并拒绝低于本地已导入版本的回滚列表。
119
+
120
+ ### 示例
121
+
122
+ ```python
123
+ trust_list = await client.meta.trust_roots()
124
+ client.meta.import_trust_roots(trust_list, authority_cert_pem=authority_cert_pem)
125
+ ```
126
+
127
+ ---
128
+
129
+ ## Python SDK `MetaNamespace` 辅助方法
130
+
131
+ 以下方法属于 SDK 本地辅助能力,不是新的服务端 RPC;底层只在需要时调用 `meta.trust_roots` 或公开 HTTP 端点。
132
+
133
+ | 方法 | 说明 |
134
+ |------|------|
135
+ | `await client.meta.download_trust_roots(...)` | 从管理局权威端点、`pki.{issuer}` 或 Gateway 镜像下载受信根列表 |
136
+ | `client.meta.verify_trust_roots(...)` | 验证受信根列表结构、签名、证书 CA 约束、有效期和 SHA-256 指纹 |
137
+ | `client.meta.import_trust_roots(...)` | 验证后写入本地 `trust-roots.json` / `trust-roots.pem` 并刷新信任根缓存 |
138
+ | `await client.meta.refresh_trust_roots(...)` | 下载、验证并导入受信根列表 |
139
+ | `await client.meta.download_issuer_root_cert(issuer, ...)` | 从 `https://pki.{issuer}/root.crt` 下载指定 issuer 的 Root CA PEM |
140
+ | `await client.meta.update_issuer_root_cert(issuer, ...)` | 校验证书为自签 Root CA,且指纹存在于已验签受信根列表后导入本地 |
141
+
142
+ `update_issuer_root_cert()` 不信任下载来源本身;它必须以已验签的受信根列表为准,确认 `root.crt` 的 SHA-256 指纹已列入 `root_cas` 后才能写入本地信任锚。