@astrasyncai/verification-gateway 1.0.0 → 2.0.0

package/dist/{sdk-xCbZgeZx.d.mts → sdk-DAJahT3p.d.mts}

@@ -1,4 +1,4 @@
-import { a as AccessLevel, i as TrustLevel, S as SDKOptions, b as VerificationResult } from './types-CS6v75-d.mjs';
+import { a as AccessLevel, i as TrustLevel, S as SDKOptions, b as VerificationResult } from './types-Bf8pML07.mjs';
 
 /**
  * AstraSync Universal Verification Gateway - Access Level Definitions
@@ -109,6 +109,8 @@ declare class VerificationGatewayClient {
         isSubAgentRequest?: boolean;
         parentAgentId?: string;
         subAgentDepth?: number;
+        counterpartyUrl?: string;
+        counterpartyType?: string;
     }): Promise<VerificationResult>;
     /**
      * Quick verification - just check if credentials are valid

package/dist/transport/index.d.mts

@@ -0,0 +1,2 @@
+import '../types-Bf8pML07.mjs';
+export { a as applyCredentials, d as detectProtocol, e as extractA2ACredentials, b as extractCredentialsFromProtocol, c as extractHttpCredentials, f as extractMcpCredentials, s as setA2AMetadata, g as setHttpHeaders, h as setMcpMeta } from '../index-CoLebmwv.mjs';

package/dist/transport/index.d.ts

@@ -0,0 +1,2 @@
+import '../types-Bf8pML07.js';
+export { a as applyCredentials, d as detectProtocol, e as extractA2ACredentials, b as extractCredentialsFromProtocol, c as extractHttpCredentials, f as extractMcpCredentials, s as setA2AMetadata, g as setHttpHeaders, h as setMcpMeta } from '../index-CNkmHmpi.js';

package/dist/transport/index.js

@@ -0,0 +1,211 @@
+"use strict";
+var __defProp = Object.defineProperty;
+var __getOwnPropDesc = Object.getOwnPropertyDescriptor;
+var __getOwnPropNames = Object.getOwnPropertyNames;
+var __hasOwnProp = Object.prototype.hasOwnProperty;
+var __export = (target, all) => {
+  for (var name in all)
+    __defProp(target, name, { get: all[name], enumerable: true });
+};
+var __copyProps = (to, from, except, desc) => {
+  if (from && typeof from === "object" || typeof from === "function") {
+    for (let key of __getOwnPropNames(from))
+      if (!__hasOwnProp.call(to, key) && key !== except)
+        __defProp(to, key, { get: () => from[key], enumerable: !(desc = __getOwnPropDesc(from, key)) || desc.enumerable });
+  }
+  return to;
+};
+var __toCommonJS = (mod) => __copyProps(__defProp({}, "__esModule", { value: true }), mod);
+
+// src/transport/index.ts
+var transport_exports = {};
+__export(transport_exports, {
+  applyCredentials: () => applyCredentials,
+  detectProtocol: () => detectProtocol,
+  extractA2ACredentials: () => extractA2ACredentials,
+  extractCredentialsFromProtocol: () => extractCredentialsFromProtocol,
+  extractHttpCredentials: () => extractHttpCredentials,
+  extractMcpCredentials: () => extractMcpCredentials,
+  setA2AMetadata: () => setA2AMetadata,
+  setHttpHeaders: () => setHttpHeaders,
+  setMcpMeta: () => setMcpMeta
+});
+module.exports = __toCommonJS(transport_exports);
+
+// src/transport/http.ts
+var HEADER_PREFIX = "X-Astra-";
+function setHttpHeaders(headers, credentials) {
+  const result = { ...headers };
+  result[`${HEADER_PREFIX}ID`] = credentials.agentId;
+  if (credentials.verifyUrl) {
+    result[`${HEADER_PREFIX}Verify`] = credentials.verifyUrl;
+  }
+  if (credentials.challengeUrl) {
+    result[`${HEADER_PREFIX}Challenge`] = credentials.challengeUrl;
+  }
+  if (credentials.pdlss?.purpose) {
+    const purposeValue = credentials.pdlss.purpose.action ? `${credentials.pdlss.purpose.category}:${credentials.pdlss.purpose.action}` : credentials.pdlss.purpose.category;
+    result[`${HEADER_PREFIX}Purpose`] = purposeValue;
+  }
+  if (credentials.pdlss?.duration?.maxSessionDuration) {
+    result[`${HEADER_PREFIX}Duration`] = String(credentials.pdlss.duration.maxSessionDuration);
+  }
+  if (credentials.pdlss?.scope?.jurisdiction) {
+    result[`${HEADER_PREFIX}Scope`] = credentials.pdlss.scope.jurisdiction;
+  }
+  return result;
+}
+function extractHttpCredentials(headers) {
+  const getValue = (key) => {
+    const v = headers[key] ?? headers[key.toLowerCase()];
+    return Array.isArray(v) ? v[0] : v;
+  };
+  const agentId = getValue(`${HEADER_PREFIX}ID`) ?? getValue("x-astra-id");
+  if (!agentId) return null;
+  const credentials = { agentId };
+  const verifyUrl = getValue(`${HEADER_PREFIX}Verify`) ?? getValue("x-astra-verify");
+  if (verifyUrl) credentials.verifyUrl = verifyUrl;
+  const challengeUrl = getValue(`${HEADER_PREFIX}Challenge`) ?? getValue("x-astra-challenge");
+  if (challengeUrl) credentials.challengeUrl = challengeUrl;
+  const purpose = getValue(`${HEADER_PREFIX}Purpose`) ?? getValue("x-astra-purpose");
+  if (purpose) {
+    const [category, action] = purpose.split(":");
+    credentials.pdlss = {
+      ...credentials.pdlss,
+      purpose: { category, action }
+    };
+  }
+  const duration = getValue(`${HEADER_PREFIX}Duration`) ?? getValue("x-astra-duration");
+  if (duration) {
+    credentials.pdlss = {
+      ...credentials.pdlss,
+      duration: { maxSessionDuration: parseInt(duration, 10) }
+    };
+  }
+  const scope = getValue(`${HEADER_PREFIX}Scope`) ?? getValue("x-astra-scope");
+  if (scope) {
+    credentials.pdlss = {
+      ...credentials.pdlss,
+      scope: { jurisdiction: scope }
+    };
+  }
+  return credentials;
+}
+
+// src/transport/a2a.ts
+function setA2AMetadata(task, credentials) {
+  const astrasync = {
+    agentId: credentials.agentId
+  };
+  if (credentials.verifyUrl) astrasync.verifyUrl = credentials.verifyUrl;
+  if (credentials.challengeUrl) astrasync.challengeUrl = credentials.challengeUrl;
+  if (credentials.pdlss?.purpose) astrasync.purpose = credentials.pdlss.purpose;
+  if (credentials.pdlss?.duration) astrasync.duration = credentials.pdlss.duration;
+  if (credentials.pdlss?.scope) astrasync.scope = credentials.pdlss.scope;
+  return {
+    ...task,
+    metadata: {
+      ...task.metadata,
+      astrasync
+    }
+  };
+}
+function extractA2ACredentials(task) {
+  const meta = task.metadata?.astrasync;
+  if (!meta?.agentId) return null;
+  const credentials = {
+    agentId: meta.agentId
+  };
+  if (meta.verifyUrl) credentials.verifyUrl = meta.verifyUrl;
+  if (meta.challengeUrl) credentials.challengeUrl = meta.challengeUrl;
+  if (meta.purpose || meta.duration || meta.scope) {
+    credentials.pdlss = {};
+    if (meta.purpose) credentials.pdlss.purpose = meta.purpose;
+    if (meta.duration) credentials.pdlss.duration = meta.duration;
+    if (meta.scope) credentials.pdlss.scope = meta.scope;
+  }
+  return credentials;
+}
+
+// src/transport/mcp.ts
+function setMcpMeta(params, credentials) {
+  const astrasync = {
+    agentId: credentials.agentId
+  };
+  if (credentials.verifyUrl) astrasync.verifyUrl = credentials.verifyUrl;
+  if (credentials.challengeUrl) astrasync.challengeUrl = credentials.challengeUrl;
+  if (credentials.pdlss?.purpose) astrasync.purpose = credentials.pdlss.purpose;
+  if (credentials.pdlss?.duration) astrasync.duration = credentials.pdlss.duration;
+  if (credentials.pdlss?.scope) astrasync.scope = credentials.pdlss.scope;
+  return {
+    ...params,
+    _meta: {
+      ...params._meta,
+      astrasync
+    }
+  };
+}
+function extractMcpCredentials(params) {
+  const meta = params._meta?.astrasync;
+  if (!meta?.agentId) return null;
+  const credentials = {
+    agentId: meta.agentId
+  };
+  if (meta.verifyUrl) credentials.verifyUrl = meta.verifyUrl;
+  if (meta.challengeUrl) credentials.challengeUrl = meta.challengeUrl;
+  if (meta.purpose || meta.duration || meta.scope) {
+    credentials.pdlss = {};
+    if (meta.purpose) credentials.pdlss.purpose = meta.purpose;
+    if (meta.duration) credentials.pdlss.duration = meta.duration;
+    if (meta.scope) credentials.pdlss.scope = meta.scope;
+  }
+  return credentials;
+}
+
+// src/transport/index.ts
+function detectProtocol(context) {
+  if (context.metadata && typeof context.metadata === "object") {
+    return "a2a";
+  }
+  if (context._meta && typeof context._meta === "object") {
+    return "mcp";
+  }
+  return "http";
+}
+function applyCredentials(protocol, target, credentials) {
+  switch (protocol) {
+    case "http":
+      return setHttpHeaders(target, credentials);
+    case "a2a":
+      return setA2AMetadata(target, credentials);
+    case "mcp":
+      return setMcpMeta(target, credentials);
+    default:
+      return target;
+  }
+}
+function extractCredentialsFromProtocol(protocol, context) {
+  switch (protocol) {
+    case "http":
+      return extractHttpCredentials(context);
+    case "a2a":
+      return extractA2ACredentials(context);
+    case "mcp":
+      return extractMcpCredentials(context);
+    default:
+      return null;
+  }
+}
+// Annotate the CommonJS export names for ESM import in node:
+0 && (module.exports = {
+  applyCredentials,
+  detectProtocol,
+  extractA2ACredentials,
+  extractCredentialsFromProtocol,
+  extractHttpCredentials,
+  extractMcpCredentials,
+  setA2AMetadata,
+  setHttpHeaders,
+  setMcpMeta
+});
+//# sourceMappingURL=index.js.map

package/dist/transport/index.js.map

@@ -0,0 +1 @@
+{"version":3,"sources":["../../src/transport/index.ts","../../src/transport/http.ts","../../src/transport/a2a.ts","../../src/transport/mcp.ts"],"sourcesContent":["/**\n * Cross-Protocol Transport Module\n *\n * Provides adapters for injecting/extracting AstraSync credentials\n * across HTTP, A2A, and MCP protocols.\n */\n\nimport type { AstraSyncCredentials, ProtocolTransport } from '../types';\nimport { setHttpHeaders, extractHttpCredentials } from './http';\nimport { setA2AMetadata, extractA2ACredentials } from './a2a';\nimport { setMcpMeta, extractMcpCredentials } from './mcp';\n\nexport { setHttpHeaders, extractHttpCredentials } from './http';\nexport { setA2AMetadata, extractA2ACredentials } from './a2a';\nexport { setMcpMeta, extractMcpCredentials } from './mcp';\n\n/**\n * Auto-detect protocol from request/context shape.\n */\nexport function detectProtocol(context: Record<string, unknown>): ProtocolTransport {\n  // A2A: has metadata block with task-like structure\n  if (context.metadata && typeof context.metadata === 'object') {\n    return 'a2a';\n  }\n\n  // MCP: has _meta block (MCP convention)\n  if (context._meta && typeof context._meta === 'object') {\n    return 'mcp';\n  }\n\n  // Default to HTTP\n  return 'http';\n}\n\n/**\n * Apply credentials to any protocol target.\n */\nexport function applyCredentials(\n  protocol: ProtocolTransport,\n  target: Record<string, unknown>,\n  credentials: AstraSyncCredentials,\n): Record<string, unknown> {\n  switch (protocol) {\n    case 'http':\n      return setHttpHeaders(target as Record<string, string>, credentials);\n    case 'a2a':\n      return setA2AMetadata(target, credentials);\n    case 'mcp':\n      return setMcpMeta(target, credentials);\n    default:\n      return target;\n  }\n}\n\n/**\n * Extract credentials from any protocol context.\n */\nexport function extractCredentialsFromProtocol(\n  protocol: ProtocolTransport,\n  context: Record<string, unknown>,\n): AstraSyncCredentials | null {\n  switch (protocol) {\n    case 'http':\n      return extractHttpCredentials(context as Record<string, string | string[] | undefined>);\n    case 'a2a':\n      return extractA2ACredentials(context);\n    case 'mcp':\n      return extractMcpCredentials(context);\n    default:\n      return null;\n  }\n}\n","/**\n * HTTP Transport Adapter\n *\n * Maps AstraSync credentials to/from HTTP headers (X-Astra-* convention).\n */\n\nimport type { AstraSyncCredentials } from '../types';\n\nconst HEADER_PREFIX = 'X-Astra-';\n\n/**\n * Inject AstraSync credentials into HTTP headers.\n */\nexport function setHttpHeaders(\n  headers: Record<string, string>,\n  credentials: AstraSyncCredentials,\n): Record<string, string> {\n  const result = { ...headers };\n\n  result[`${HEADER_PREFIX}ID`] = credentials.agentId;\n\n  if (credentials.verifyUrl) {\n    result[`${HEADER_PREFIX}Verify`] = credentials.verifyUrl;\n  }\n\n  if (credentials.challengeUrl) {\n    result[`${HEADER_PREFIX}Challenge`] = credentials.challengeUrl;\n  }\n\n  if (credentials.pdlss?.purpose) {\n    const purposeValue = credentials.pdlss.purpose.action\n      ? `${credentials.pdlss.purpose.category}:${credentials.pdlss.purpose.action}`\n      : credentials.pdlss.purpose.category;\n    result[`${HEADER_PREFIX}Purpose`] = purposeValue;\n  }\n\n  if (credentials.pdlss?.duration?.maxSessionDuration) {\n    result[`${HEADER_PREFIX}Duration`] = String(credentials.pdlss.duration.maxSessionDuration);\n  }\n\n  if (credentials.pdlss?.scope?.jurisdiction) {\n    result[`${HEADER_PREFIX}Scope`] = credentials.pdlss.scope.jurisdiction;\n  }\n\n  return result;\n}\n\n/**\n * Extract AstraSync credentials from HTTP headers.\n */\nexport function extractHttpCredentials(\n  headers: Record<string, string | string[] | undefined>,\n): AstraSyncCredentials | null {\n  const getValue = (key: string): string | undefined => {\n    const v = headers[key] ?? headers[key.toLowerCase()];\n    return Array.isArray(v) ? v[0] : v;\n  };\n\n  const agentId = getValue(`${HEADER_PREFIX}ID`) ?? getValue('x-astra-id');\n  if (!agentId) return null;\n\n  const credentials: AstraSyncCredentials = { agentId };\n\n  const verifyUrl = getValue(`${HEADER_PREFIX}Verify`) ?? getValue('x-astra-verify');\n  if (verifyUrl) credentials.verifyUrl = verifyUrl;\n\n  const challengeUrl = getValue(`${HEADER_PREFIX}Challenge`) ?? getValue('x-astra-challenge');\n  if (challengeUrl) credentials.challengeUrl = challengeUrl;\n\n  const purpose = getValue(`${HEADER_PREFIX}Purpose`) ?? getValue('x-astra-purpose');\n  if (purpose) {\n    const [category, action] = purpose.split(':');\n    credentials.pdlss = {\n      ...credentials.pdlss,\n      purpose: { category, action },\n    };\n  }\n\n  const duration = getValue(`${HEADER_PREFIX}Duration`) ?? getValue('x-astra-duration');\n  if (duration) {\n    credentials.pdlss = {\n      ...credentials.pdlss,\n      duration: { maxSessionDuration: parseInt(duration, 10) },\n    };\n  }\n\n  const scope = getValue(`${HEADER_PREFIX}Scope`) ?? getValue('x-astra-scope');\n  if (scope) {\n    credentials.pdlss = {\n      ...credentials.pdlss,\n      scope: { jurisdiction: scope },\n    };\n  }\n\n  return credentials;\n}\n","/**\n * A2A (Agent-to-Agent) Transport Adapter\n *\n * Maps AstraSync credentials to/from A2A task metadata.astrasync block.\n */\n\nimport type { AstraSyncCredentials } from '../types';\n\ninterface A2ATask {\n  metadata?: Record<string, unknown>;\n  [key: string]: unknown;\n}\n\ninterface AstraSyncMetadata {\n  agentId: string;\n  verifyUrl?: string;\n  challengeUrl?: string;\n  purpose?: { category: string; action?: string };\n  duration?: { maxSessionDuration?: number };\n  scope?: { jurisdiction?: string };\n}\n\n/**\n * Add AstraSync credentials to an A2A task's metadata block.\n */\nexport function setA2AMetadata(\n  task: A2ATask,\n  credentials: AstraSyncCredentials,\n): A2ATask {\n  const astrasync: AstraSyncMetadata = {\n    agentId: credentials.agentId,\n  };\n\n  if (credentials.verifyUrl) astrasync.verifyUrl = credentials.verifyUrl;\n  if (credentials.challengeUrl) astrasync.challengeUrl = credentials.challengeUrl;\n  if (credentials.pdlss?.purpose) astrasync.purpose = credentials.pdlss.purpose;\n  if (credentials.pdlss?.duration) astrasync.duration = credentials.pdlss.duration;\n  if (credentials.pdlss?.scope) astrasync.scope = credentials.pdlss.scope;\n\n  return {\n    ...task,\n    metadata: {\n      ...task.metadata,\n      astrasync,\n    },\n  };\n}\n\n/**\n * Extract AstraSync credentials from an A2A task's metadata block.\n */\nexport function extractA2ACredentials(task: A2ATask): AstraSyncCredentials | null {\n  const meta = task.metadata?.astrasync as AstraSyncMetadata | undefined;\n  if (!meta?.agentId) return null;\n\n  const credentials: AstraSyncCredentials = {\n    agentId: meta.agentId,\n  };\n\n  if (meta.verifyUrl) credentials.verifyUrl = meta.verifyUrl;\n  if (meta.challengeUrl) credentials.challengeUrl = meta.challengeUrl;\n\n  if (meta.purpose || meta.duration || meta.scope) {\n    credentials.pdlss = {};\n    if (meta.purpose) credentials.pdlss.purpose = meta.purpose;\n    if (meta.duration) credentials.pdlss.duration = meta.duration;\n    if (meta.scope) credentials.pdlss.scope = meta.scope;\n  }\n\n  return credentials;\n}\n","/**\n * MCP (Model Context Protocol) Transport Adapter\n *\n * Maps AstraSync credentials to/from MCP params._meta.astrasync block.\n */\n\nimport type { AstraSyncCredentials } from '../types';\n\ninterface McpParams {\n  _meta?: Record<string, unknown>;\n  [key: string]: unknown;\n}\n\ninterface AstraSyncMeta {\n  agentId: string;\n  verifyUrl?: string;\n  challengeUrl?: string;\n  purpose?: { category: string; action?: string };\n  duration?: { maxSessionDuration?: number };\n  scope?: { jurisdiction?: string };\n}\n\n/**\n * Add AstraSync credentials to MCP params' _meta block.\n */\nexport function setMcpMeta(\n  params: McpParams,\n  credentials: AstraSyncCredentials,\n): McpParams {\n  const astrasync: AstraSyncMeta = {\n    agentId: credentials.agentId,\n  };\n\n  if (credentials.verifyUrl) astrasync.verifyUrl = credentials.verifyUrl;\n  if (credentials.challengeUrl) astrasync.challengeUrl = credentials.challengeUrl;\n  if (credentials.pdlss?.purpose) astrasync.purpose = credentials.pdlss.purpose;\n  if (credentials.pdlss?.duration) astrasync.duration = credentials.pdlss.duration;\n  if (credentials.pdlss?.scope) astrasync.scope = credentials.pdlss.scope;\n\n  return {\n    ...params,\n    _meta: {\n      ...params._meta,\n      astrasync,\n    },\n  };\n}\n\n/**\n * Extract AstraSync credentials from MCP params' _meta block.\n */\nexport function extractMcpCredentials(params: McpParams): AstraSyncCredentials | null {\n  const meta = params._meta?.astrasync as AstraSyncMeta | undefined;\n  if (!meta?.agentId) return null;\n\n  const credentials: AstraSyncCredentials = {\n    agentId: meta.agentId,\n  };\n\n  if (meta.verifyUrl) credentials.verifyUrl = meta.verifyUrl;\n  if (meta.challengeUrl) credentials.challengeUrl = meta.challengeUrl;\n\n  if (meta.purpose || meta.duration || meta.scope) {\n    credentials.pdlss = {};\n    if (meta.purpose) credentials.pdlss.purpose = meta.purpose;\n    if (meta.duration) credentials.pdlss.duration = meta.duration;\n    if (meta.scope) credentials.pdlss.scope = meta.scope;\n  }\n\n  return credentials;\n}\n"],"mappings":";;;;;;;;;;;;;;;;;;;;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;;;ACQA,IAAM,gBAAgB;AAKf,SAAS,eACd,SACA,aACwB;AACxB,QAAM,SAAS,EAAE,GAAG,QAAQ;AAE5B,SAAO,GAAG,aAAa,IAAI,IAAI,YAAY;AAE3C,MAAI,YAAY,WAAW;AACzB,WAAO,GAAG,aAAa,QAAQ,IAAI,YAAY;AAAA,EACjD;AAEA,MAAI,YAAY,cAAc;AAC5B,WAAO,GAAG,aAAa,WAAW,IAAI,YAAY;AAAA,EACpD;AAEA,MAAI,YAAY,OAAO,SAAS;AAC9B,UAAM,eAAe,YAAY,MAAM,QAAQ,SAC3C,GAAG,YAAY,MAAM,QAAQ,QAAQ,IAAI,YAAY,MAAM,QAAQ,MAAM,KACzE,YAAY,MAAM,QAAQ;AAC9B,WAAO,GAAG,aAAa,SAAS,IAAI;AAAA,EACtC;AAEA,MAAI,YAAY,OAAO,UAAU,oBAAoB;AACnD,WAAO,GAAG,aAAa,UAAU,IAAI,OAAO,YAAY,MAAM,SAAS,kBAAkB;AAAA,EAC3F;AAEA,MAAI,YAAY,OAAO,OAAO,cAAc;AAC1C,WAAO,GAAG,aAAa,OAAO,IAAI,YAAY,MAAM,MAAM;AAAA,EAC5D;AAEA,SAAO;AACT;AAKO,SAAS,uBACd,SAC6B;AAC7B,QAAM,WAAW,CAAC,QAAoC;AACpD,UAAM,IAAI,QAAQ,GAAG,KAAK,QAAQ,IAAI,YAAY,CAAC;AACnD,WAAO,MAAM,QAAQ,CAAC,IAAI,EAAE,CAAC,IAAI;AAAA,EACnC;AAEA,QAAM,UAAU,SAAS,GAAG,aAAa,IAAI,KAAK,SAAS,YAAY;AACvE,MAAI,CAAC,QAAS,QAAO;AAErB,QAAM,cAAoC,EAAE,QAAQ;AAEpD,QAAM,YAAY,SAAS,GAAG,aAAa,QAAQ,KAAK,SAAS,gBAAgB;AACjF,MAAI,UAAW,aAAY,YAAY;AAEvC,QAAM,eAAe,SAAS,GAAG,aAAa,WAAW,KAAK,SAAS,mBAAmB;AAC1F,MAAI,aAAc,aAAY,eAAe;AAE7C,QAAM,UAAU,SAAS,GAAG,aAAa,SAAS,KAAK,SAAS,iBAAiB;AACjF,MAAI,SAAS;AACX,UAAM,CAAC,UAAU,MAAM,IAAI,QAAQ,MAAM,GAAG;AAC5C,gBAAY,QAAQ;AAAA,MAClB,GAAG,YAAY;AAAA,MACf,SAAS,EAAE,UAAU,OAAO;AAAA,IAC9B;AAAA,EACF;AAEA,QAAM,WAAW,SAAS,GAAG,aAAa,UAAU,KAAK,SAAS,kBAAkB;AACpF,MAAI,UAAU;AACZ,gBAAY,QAAQ;AAAA,MAClB,GAAG,YAAY;AAAA,MACf,UAAU,EAAE,oBAAoB,SAAS,UAAU,EAAE,EAAE;AAAA,IACzD;AAAA,EACF;AAEA,QAAM,QAAQ,SAAS,GAAG,aAAa,OAAO,KAAK,SAAS,eAAe;AAC3E,MAAI,OAAO;AACT,gBAAY,QAAQ;AAAA,MAClB,GAAG,YAAY;AAAA,MACf,OAAO,EAAE,cAAc,MAAM;AAAA,IAC/B;AAAA,EACF;AAEA,SAAO;AACT;;;ACtEO,SAAS,eACd,MACA,aACS;AACT,QAAM,YAA+B;AAAA,IACnC,SAAS,YAAY;AAAA,EACvB;AAEA,MAAI,YAAY,UAAW,WAAU,YAAY,YAAY;AAC7D,MAAI,YAAY,aAAc,WAAU,eAAe,YAAY;AACnE,MAAI,YAAY,OAAO,QAAS,WAAU,UAAU,YAAY,MAAM;AACtE,MAAI,YAAY,OAAO,SAAU,WAAU,WAAW,YAAY,MAAM;AACxE,MAAI,YAAY,OAAO,MAAO,WAAU,QAAQ,YAAY,MAAM;AAElE,SAAO;AAAA,IACL,GAAG;AAAA,IACH,UAAU;AAAA,MACR,GAAG,KAAK;AAAA,MACR;AAAA,IACF;AAAA,EACF;AACF;AAKO,SAAS,sBAAsB,MAA4C;AAChF,QAAM,OAAO,KAAK,UAAU;AAC5B,MAAI,CAAC,MAAM,QAAS,QAAO;AAE3B,QAAM,cAAoC;AAAA,IACxC,SAAS,KAAK;AAAA,EAChB;AAEA,MAAI,KAAK,UAAW,aAAY,YAAY,KAAK;AACjD,MAAI,KAAK,aAAc,aAAY,eAAe,KAAK;AAEvD,MAAI,KAAK,WAAW,KAAK,YAAY,KAAK,OAAO;AAC/C,gBAAY,QAAQ,CAAC;AACrB,QAAI,KAAK,QAAS,aAAY,MAAM,UAAU,KAAK;AACnD,QAAI,KAAK,SAAU,aAAY,MAAM,WAAW,KAAK;AACrD,QAAI,KAAK,MAAO,aAAY,MAAM,QAAQ,KAAK;AAAA,EACjD;AAEA,SAAO;AACT;;;AC7CO,SAAS,WACd,QACA,aACW;AACX,QAAM,YAA2B;AAAA,IAC/B,SAAS,YAAY;AAAA,EACvB;AAEA,MAAI,YAAY,UAAW,WAAU,YAAY,YAAY;AAC7D,MAAI,YAAY,aAAc,WAAU,eAAe,YAAY;AACnE,MAAI,YAAY,OAAO,QAAS,WAAU,UAAU,YAAY,MAAM;AACtE,MAAI,YAAY,OAAO,SAAU,WAAU,WAAW,YAAY,MAAM;AACxE,MAAI,YAAY,OAAO,MAAO,WAAU,QAAQ,YAAY,MAAM;AAElE,SAAO;AAAA,IACL,GAAG;AAAA,IACH,OAAO;AAAA,MACL,GAAG,OAAO;AAAA,MACV;AAAA,IACF;AAAA,EACF;AACF;AAKO,SAAS,sBAAsB,QAAgD;AACpF,QAAM,OAAO,OAAO,OAAO;AAC3B,MAAI,CAAC,MAAM,QAAS,QAAO;AAE3B,QAAM,cAAoC;AAAA,IACxC,SAAS,KAAK;AAAA,EAChB;AAEA,MAAI,KAAK,UAAW,aAAY,YAAY,KAAK;AACjD,MAAI,KAAK,aAAc,aAAY,eAAe,KAAK;AAEvD,MAAI,KAAK,WAAW,KAAK,YAAY,KAAK,OAAO;AAC/C,gBAAY,QAAQ,CAAC;AACrB,QAAI,KAAK,QAAS,aAAY,MAAM,UAAU,KAAK;AACnD,QAAI,KAAK,SAAU,aAAY,MAAM,WAAW,KAAK;AACrD,QAAI,KAAK,MAAO,aAAY,MAAM,QAAQ,KAAK;AAAA,EACjD;AAEA,SAAO;AACT;;;AHnDO,SAAS,eAAe,SAAqD;AAElF,MAAI,QAAQ,YAAY,OAAO,QAAQ,aAAa,UAAU;AAC5D,WAAO;AAAA,EACT;AAGA,MAAI,QAAQ,SAAS,OAAO,QAAQ,UAAU,UAAU;AACtD,WAAO;AAAA,EACT;AAGA,SAAO;AACT;AAKO,SAAS,iBACd,UACA,QACA,aACyB;AACzB,UAAQ,UAAU;AAAA,IAChB,KAAK;AACH,aAAO,eAAe,QAAkC,WAAW;AAAA,IACrE,KAAK;AACH,aAAO,eAAe,QAAQ,WAAW;AAAA,IAC3C,KAAK;AACH,aAAO,WAAW,QAAQ,WAAW;AAAA,IACvC;AACE,aAAO;AAAA,EACX;AACF;AAKO,SAAS,+BACd,UACA,SAC6B;AAC7B,UAAQ,UAAU;AAAA,IAChB,KAAK;AACH,aAAO,uBAAuB,OAAwD;AAAA,IACxF,KAAK;AACH,aAAO,sBAAsB,OAAO;AAAA,IACtC,KAAK;AACH,aAAO,sBAAsB,OAAO;AAAA,IACtC;AACE,aAAO;AAAA,EACX;AACF;","names":[]}

package/dist/transport/index.mjs

@@ -0,0 +1,176 @@
+// src/transport/http.ts
+var HEADER_PREFIX = "X-Astra-";
+function setHttpHeaders(headers, credentials) {
+  const result = { ...headers };
+  result[`${HEADER_PREFIX}ID`] = credentials.agentId;
+  if (credentials.verifyUrl) {
+    result[`${HEADER_PREFIX}Verify`] = credentials.verifyUrl;
+  }
+  if (credentials.challengeUrl) {
+    result[`${HEADER_PREFIX}Challenge`] = credentials.challengeUrl;
+  }
+  if (credentials.pdlss?.purpose) {
+    const purposeValue = credentials.pdlss.purpose.action ? `${credentials.pdlss.purpose.category}:${credentials.pdlss.purpose.action}` : credentials.pdlss.purpose.category;
+    result[`${HEADER_PREFIX}Purpose`] = purposeValue;
+  }
+  if (credentials.pdlss?.duration?.maxSessionDuration) {
+    result[`${HEADER_PREFIX}Duration`] = String(credentials.pdlss.duration.maxSessionDuration);
+  }
+  if (credentials.pdlss?.scope?.jurisdiction) {
+    result[`${HEADER_PREFIX}Scope`] = credentials.pdlss.scope.jurisdiction;
+  }
+  return result;
+}
+function extractHttpCredentials(headers) {
+  const getValue = (key) => {
+    const v = headers[key] ?? headers[key.toLowerCase()];
+    return Array.isArray(v) ? v[0] : v;
+  };
+  const agentId = getValue(`${HEADER_PREFIX}ID`) ?? getValue("x-astra-id");
+  if (!agentId) return null;
+  const credentials = { agentId };
+  const verifyUrl = getValue(`${HEADER_PREFIX}Verify`) ?? getValue("x-astra-verify");
+  if (verifyUrl) credentials.verifyUrl = verifyUrl;
+  const challengeUrl = getValue(`${HEADER_PREFIX}Challenge`) ?? getValue("x-astra-challenge");
+  if (challengeUrl) credentials.challengeUrl = challengeUrl;
+  const purpose = getValue(`${HEADER_PREFIX}Purpose`) ?? getValue("x-astra-purpose");
+  if (purpose) {
+    const [category, action] = purpose.split(":");
+    credentials.pdlss = {
+      ...credentials.pdlss,
+      purpose: { category, action }
+    };
+  }
+  const duration = getValue(`${HEADER_PREFIX}Duration`) ?? getValue("x-astra-duration");
+  if (duration) {
+    credentials.pdlss = {
+      ...credentials.pdlss,
+      duration: { maxSessionDuration: parseInt(duration, 10) }
+    };
+  }
+  const scope = getValue(`${HEADER_PREFIX}Scope`) ?? getValue("x-astra-scope");
+  if (scope) {
+    credentials.pdlss = {
+      ...credentials.pdlss,
+      scope: { jurisdiction: scope }
+    };
+  }
+  return credentials;
+}
+
+// src/transport/a2a.ts
+function setA2AMetadata(task, credentials) {
+  const astrasync = {
+    agentId: credentials.agentId
+  };
+  if (credentials.verifyUrl) astrasync.verifyUrl = credentials.verifyUrl;
+  if (credentials.challengeUrl) astrasync.challengeUrl = credentials.challengeUrl;
+  if (credentials.pdlss?.purpose) astrasync.purpose = credentials.pdlss.purpose;
+  if (credentials.pdlss?.duration) astrasync.duration = credentials.pdlss.duration;
+  if (credentials.pdlss?.scope) astrasync.scope = credentials.pdlss.scope;
+  return {
+    ...task,
+    metadata: {
+      ...task.metadata,
+      astrasync
+    }
+  };
+}
+function extractA2ACredentials(task) {
+  const meta = task.metadata?.astrasync;
+  if (!meta?.agentId) return null;
+  const credentials = {
+    agentId: meta.agentId
+  };
+  if (meta.verifyUrl) credentials.verifyUrl = meta.verifyUrl;
+  if (meta.challengeUrl) credentials.challengeUrl = meta.challengeUrl;
+  if (meta.purpose || meta.duration || meta.scope) {
+    credentials.pdlss = {};
+    if (meta.purpose) credentials.pdlss.purpose = meta.purpose;
+    if (meta.duration) credentials.pdlss.duration = meta.duration;
+    if (meta.scope) credentials.pdlss.scope = meta.scope;
+  }
+  return credentials;
+}
+
+// src/transport/mcp.ts
+function setMcpMeta(params, credentials) {
+  const astrasync = {
+    agentId: credentials.agentId
+  };
+  if (credentials.verifyUrl) astrasync.verifyUrl = credentials.verifyUrl;
+  if (credentials.challengeUrl) astrasync.challengeUrl = credentials.challengeUrl;
+  if (credentials.pdlss?.purpose) astrasync.purpose = credentials.pdlss.purpose;
+  if (credentials.pdlss?.duration) astrasync.duration = credentials.pdlss.duration;
+  if (credentials.pdlss?.scope) astrasync.scope = credentials.pdlss.scope;
+  return {
+    ...params,
+    _meta: {
+      ...params._meta,
+      astrasync
+    }
+  };
+}
+function extractMcpCredentials(params) {
+  const meta = params._meta?.astrasync;
+  if (!meta?.agentId) return null;
+  const credentials = {
+    agentId: meta.agentId
+  };
+  if (meta.verifyUrl) credentials.verifyUrl = meta.verifyUrl;
+  if (meta.challengeUrl) credentials.challengeUrl = meta.challengeUrl;
+  if (meta.purpose || meta.duration || meta.scope) {
+    credentials.pdlss = {};
+    if (meta.purpose) credentials.pdlss.purpose = meta.purpose;
+    if (meta.duration) credentials.pdlss.duration = meta.duration;
+    if (meta.scope) credentials.pdlss.scope = meta.scope;
+  }
+  return credentials;
+}
+
+// src/transport/index.ts
+function detectProtocol(context) {
+  if (context.metadata && typeof context.metadata === "object") {
+    return "a2a";
+  }
+  if (context._meta && typeof context._meta === "object") {
+    return "mcp";
+  }
+  return "http";
+}
+function applyCredentials(protocol, target, credentials) {
+  switch (protocol) {
+    case "http":
+      return setHttpHeaders(target, credentials);
+    case "a2a":
+      return setA2AMetadata(target, credentials);
+    case "mcp":
+      return setMcpMeta(target, credentials);
+    default:
+      return target;
+  }
+}
+function extractCredentialsFromProtocol(protocol, context) {
+  switch (protocol) {
+    case "http":
+      return extractHttpCredentials(context);
+    case "a2a":
+      return extractA2ACredentials(context);
+    case "mcp":
+      return extractMcpCredentials(context);
+    default:
+      return null;
+  }
+}
+export {
+  applyCredentials,
+  detectProtocol,
+  extractA2ACredentials,
+  extractCredentialsFromProtocol,
+  extractHttpCredentials,
+  extractMcpCredentials,
+  setA2AMetadata,
+  setHttpHeaders,
+  setMcpMeta
+};
+//# sourceMappingURL=index.mjs.map

package/dist/transport/index.mjs.map

@@ -0,0 +1 @@
+{"version":3,"sources":["../../src/transport/http.ts","../../src/transport/a2a.ts","../../src/transport/mcp.ts","../../src/transport/index.ts"],"sourcesContent":["/**\n * HTTP Transport Adapter\n *\n * Maps AstraSync credentials to/from HTTP headers (X-Astra-* convention).\n */\n\nimport type { AstraSyncCredentials } from '../types';\n\nconst HEADER_PREFIX = 'X-Astra-';\n\n/**\n * Inject AstraSync credentials into HTTP headers.\n */\nexport function setHttpHeaders(\n  headers: Record<string, string>,\n  credentials: AstraSyncCredentials,\n): Record<string, string> {\n  const result = { ...headers };\n\n  result[`${HEADER_PREFIX}ID`] = credentials.agentId;\n\n  if (credentials.verifyUrl) {\n    result[`${HEADER_PREFIX}Verify`] = credentials.verifyUrl;\n  }\n\n  if (credentials.challengeUrl) {\n    result[`${HEADER_PREFIX}Challenge`] = credentials.challengeUrl;\n  }\n\n  if (credentials.pdlss?.purpose) {\n    const purposeValue = credentials.pdlss.purpose.action\n      ? `${credentials.pdlss.purpose.category}:${credentials.pdlss.purpose.action}`\n      : credentials.pdlss.purpose.category;\n    result[`${HEADER_PREFIX}Purpose`] = purposeValue;\n  }\n\n  if (credentials.pdlss?.duration?.maxSessionDuration) {\n    result[`${HEADER_PREFIX}Duration`] = String(credentials.pdlss.duration.maxSessionDuration);\n  }\n\n  if (credentials.pdlss?.scope?.jurisdiction) {\n    result[`${HEADER_PREFIX}Scope`] = credentials.pdlss.scope.jurisdiction;\n  }\n\n  return result;\n}\n\n/**\n * Extract AstraSync credentials from HTTP headers.\n */\nexport function extractHttpCredentials(\n  headers: Record<string, string | string[] | undefined>,\n): AstraSyncCredentials | null {\n  const getValue = (key: string): string | undefined => {\n    const v = headers[key] ?? headers[key.toLowerCase()];\n    return Array.isArray(v) ? v[0] : v;\n  };\n\n  const agentId = getValue(`${HEADER_PREFIX}ID`) ?? getValue('x-astra-id');\n  if (!agentId) return null;\n\n  const credentials: AstraSyncCredentials = { agentId };\n\n  const verifyUrl = getValue(`${HEADER_PREFIX}Verify`) ?? getValue('x-astra-verify');\n  if (verifyUrl) credentials.verifyUrl = verifyUrl;\n\n  const challengeUrl = getValue(`${HEADER_PREFIX}Challenge`) ?? getValue('x-astra-challenge');\n  if (challengeUrl) credentials.challengeUrl = challengeUrl;\n\n  const purpose = getValue(`${HEADER_PREFIX}Purpose`) ?? getValue('x-astra-purpose');\n  if (purpose) {\n    const [category, action] = purpose.split(':');\n    credentials.pdlss = {\n      ...credentials.pdlss,\n      purpose: { category, action },\n    };\n  }\n\n  const duration = getValue(`${HEADER_PREFIX}Duration`) ?? getValue('x-astra-duration');\n  if (duration) {\n    credentials.pdlss = {\n      ...credentials.pdlss,\n      duration: { maxSessionDuration: parseInt(duration, 10) },\n    };\n  }\n\n  const scope = getValue(`${HEADER_PREFIX}Scope`) ?? getValue('x-astra-scope');\n  if (scope) {\n    credentials.pdlss = {\n      ...credentials.pdlss,\n      scope: { jurisdiction: scope },\n    };\n  }\n\n  return credentials;\n}\n","/**\n * A2A (Agent-to-Agent) Transport Adapter\n *\n * Maps AstraSync credentials to/from A2A task metadata.astrasync block.\n */\n\nimport type { AstraSyncCredentials } from '../types';\n\ninterface A2ATask {\n  metadata?: Record<string, unknown>;\n  [key: string]: unknown;\n}\n\ninterface AstraSyncMetadata {\n  agentId: string;\n  verifyUrl?: string;\n  challengeUrl?: string;\n  purpose?: { category: string; action?: string };\n  duration?: { maxSessionDuration?: number };\n  scope?: { jurisdiction?: string };\n}\n\n/**\n * Add AstraSync credentials to an A2A task's metadata block.\n */\nexport function setA2AMetadata(\n  task: A2ATask,\n  credentials: AstraSyncCredentials,\n): A2ATask {\n  const astrasync: AstraSyncMetadata = {\n    agentId: credentials.agentId,\n  };\n\n  if (credentials.verifyUrl) astrasync.verifyUrl = credentials.verifyUrl;\n  if (credentials.challengeUrl) astrasync.challengeUrl = credentials.challengeUrl;\n  if (credentials.pdlss?.purpose) astrasync.purpose = credentials.pdlss.purpose;\n  if (credentials.pdlss?.duration) astrasync.duration = credentials.pdlss.duration;\n  if (credentials.pdlss?.scope) astrasync.scope = credentials.pdlss.scope;\n\n  return {\n    ...task,\n    metadata: {\n      ...task.metadata,\n      astrasync,\n    },\n  };\n}\n\n/**\n * Extract AstraSync credentials from an A2A task's metadata block.\n */\nexport function extractA2ACredentials(task: A2ATask): AstraSyncCredentials | null {\n  const meta = task.metadata?.astrasync as AstraSyncMetadata | undefined;\n  if (!meta?.agentId) return null;\n\n  const credentials: AstraSyncCredentials = {\n    agentId: meta.agentId,\n  };\n\n  if (meta.verifyUrl) credentials.verifyUrl = meta.verifyUrl;\n  if (meta.challengeUrl) credentials.challengeUrl = meta.challengeUrl;\n\n  if (meta.purpose || meta.duration || meta.scope) {\n    credentials.pdlss = {};\n    if (meta.purpose) credentials.pdlss.purpose = meta.purpose;\n    if (meta.duration) credentials.pdlss.duration = meta.duration;\n    if (meta.scope) credentials.pdlss.scope = meta.scope;\n  }\n\n  return credentials;\n}\n","/**\n * MCP (Model Context Protocol) Transport Adapter\n *\n * Maps AstraSync credentials to/from MCP params._meta.astrasync block.\n */\n\nimport type { AstraSyncCredentials } from '../types';\n\ninterface McpParams {\n  _meta?: Record<string, unknown>;\n  [key: string]: unknown;\n}\n\ninterface AstraSyncMeta {\n  agentId: string;\n  verifyUrl?: string;\n  challengeUrl?: string;\n  purpose?: { category: string; action?: string };\n  duration?: { maxSessionDuration?: number };\n  scope?: { jurisdiction?: string };\n}\n\n/**\n * Add AstraSync credentials to MCP params' _meta block.\n */\nexport function setMcpMeta(\n  params: McpParams,\n  credentials: AstraSyncCredentials,\n): McpParams {\n  const astrasync: AstraSyncMeta = {\n    agentId: credentials.agentId,\n  };\n\n  if (credentials.verifyUrl) astrasync.verifyUrl = credentials.verifyUrl;\n  if (credentials.challengeUrl) astrasync.challengeUrl = credentials.challengeUrl;\n  if (credentials.pdlss?.purpose) astrasync.purpose = credentials.pdlss.purpose;\n  if (credentials.pdlss?.duration) astrasync.duration = credentials.pdlss.duration;\n  if (credentials.pdlss?.scope) astrasync.scope = credentials.pdlss.scope;\n\n  return {\n    ...params,\n    _meta: {\n      ...params._meta,\n      astrasync,\n    },\n  };\n}\n\n/**\n * Extract AstraSync credentials from MCP params' _meta block.\n */\nexport function extractMcpCredentials(params: McpParams): AstraSyncCredentials | null {\n  const meta = params._meta?.astrasync as AstraSyncMeta | undefined;\n  if (!meta?.agentId) return null;\n\n  const credentials: AstraSyncCredentials = {\n    agentId: meta.agentId,\n  };\n\n  if (meta.verifyUrl) credentials.verifyUrl = meta.verifyUrl;\n  if (meta.challengeUrl) credentials.challengeUrl = meta.challengeUrl;\n\n  if (meta.purpose || meta.duration || meta.scope) {\n    credentials.pdlss = {};\n    if (meta.purpose) credentials.pdlss.purpose = meta.purpose;\n    if (meta.duration) credentials.pdlss.duration = meta.duration;\n    if (meta.scope) credentials.pdlss.scope = meta.scope;\n  }\n\n  return credentials;\n}\n","/**\n * Cross-Protocol Transport Module\n *\n * Provides adapters for injecting/extracting AstraSync credentials\n * across HTTP, A2A, and MCP protocols.\n */\n\nimport type { AstraSyncCredentials, ProtocolTransport } from '../types';\nimport { setHttpHeaders, extractHttpCredentials } from './http';\nimport { setA2AMetadata, extractA2ACredentials } from './a2a';\nimport { setMcpMeta, extractMcpCredentials } from './mcp';\n\nexport { setHttpHeaders, extractHttpCredentials } from './http';\nexport { setA2AMetadata, extractA2ACredentials } from './a2a';\nexport { setMcpMeta, extractMcpCredentials } from './mcp';\n\n/**\n * Auto-detect protocol from request/context shape.\n */\nexport function detectProtocol(context: Record<string, unknown>): ProtocolTransport {\n  // A2A: has metadata block with task-like structure\n  if (context.metadata && typeof context.metadata === 'object') {\n    return 'a2a';\n  }\n\n  // MCP: has _meta block (MCP convention)\n  if (context._meta && typeof context._meta === 'object') {\n    return 'mcp';\n  }\n\n  // Default to HTTP\n  return 'http';\n}\n\n/**\n * Apply credentials to any protocol target.\n */\nexport function applyCredentials(\n  protocol: ProtocolTransport,\n  target: Record<string, unknown>,\n  credentials: AstraSyncCredentials,\n): Record<string, unknown> {\n  switch (protocol) {\n    case 'http':\n      return setHttpHeaders(target as Record<string, string>, credentials);\n    case 'a2a':\n      return setA2AMetadata(target, credentials);\n    case 'mcp':\n      return setMcpMeta(target, credentials);\n    default:\n      return target;\n  }\n}\n\n/**\n * Extract credentials from any protocol context.\n */\nexport function extractCredentialsFromProtocol(\n  protocol: ProtocolTransport,\n  context: Record<string, unknown>,\n): AstraSyncCredentials | null {\n  switch (protocol) {\n    case 'http':\n      return extractHttpCredentials(context as Record<string, string | string[] | undefined>);\n    case 'a2a':\n      return extractA2ACredentials(context);\n    case 'mcp':\n      return extractMcpCredentials(context);\n    default:\n      return null;\n  }\n}\n"],"mappings":";AAQA,IAAM,gBAAgB;AAKf,SAAS,eACd,SACA,aACwB;AACxB,QAAM,SAAS,EAAE,GAAG,QAAQ;AAE5B,SAAO,GAAG,aAAa,IAAI,IAAI,YAAY;AAE3C,MAAI,YAAY,WAAW;AACzB,WAAO,GAAG,aAAa,QAAQ,IAAI,YAAY;AAAA,EACjD;AAEA,MAAI,YAAY,cAAc;AAC5B,WAAO,GAAG,aAAa,WAAW,IAAI,YAAY;AAAA,EACpD;AAEA,MAAI,YAAY,OAAO,SAAS;AAC9B,UAAM,eAAe,YAAY,MAAM,QAAQ,SAC3C,GAAG,YAAY,MAAM,QAAQ,QAAQ,IAAI,YAAY,MAAM,QAAQ,MAAM,KACzE,YAAY,MAAM,QAAQ;AAC9B,WAAO,GAAG,aAAa,SAAS,IAAI;AAAA,EACtC;AAEA,MAAI,YAAY,OAAO,UAAU,oBAAoB;AACnD,WAAO,GAAG,aAAa,UAAU,IAAI,OAAO,YAAY,MAAM,SAAS,kBAAkB;AAAA,EAC3F;AAEA,MAAI,YAAY,OAAO,OAAO,cAAc;AAC1C,WAAO,GAAG,aAAa,OAAO,IAAI,YAAY,MAAM,MAAM;AAAA,EAC5D;AAEA,SAAO;AACT;AAKO,SAAS,uBACd,SAC6B;AAC7B,QAAM,WAAW,CAAC,QAAoC;AACpD,UAAM,IAAI,QAAQ,GAAG,KAAK,QAAQ,IAAI,YAAY,CAAC;AACnD,WAAO,MAAM,QAAQ,CAAC,IAAI,EAAE,CAAC,IAAI;AAAA,EACnC;AAEA,QAAM,UAAU,SAAS,GAAG,aAAa,IAAI,KAAK,SAAS,YAAY;AACvE,MAAI,CAAC,QAAS,QAAO;AAErB,QAAM,cAAoC,EAAE,QAAQ;AAEpD,QAAM,YAAY,SAAS,GAAG,aAAa,QAAQ,KAAK,SAAS,gBAAgB;AACjF,MAAI,UAAW,aAAY,YAAY;AAEvC,QAAM,eAAe,SAAS,GAAG,aAAa,WAAW,KAAK,SAAS,mBAAmB;AAC1F,MAAI,aAAc,aAAY,eAAe;AAE7C,QAAM,UAAU,SAAS,GAAG,aAAa,SAAS,KAAK,SAAS,iBAAiB;AACjF,MAAI,SAAS;AACX,UAAM,CAAC,UAAU,MAAM,IAAI,QAAQ,MAAM,GAAG;AAC5C,gBAAY,QAAQ;AAAA,MAClB,GAAG,YAAY;AAAA,MACf,SAAS,EAAE,UAAU,OAAO;AAAA,IAC9B;AAAA,EACF;AAEA,QAAM,WAAW,SAAS,GAAG,aAAa,UAAU,KAAK,SAAS,kBAAkB;AACpF,MAAI,UAAU;AACZ,gBAAY,QAAQ;AAAA,MAClB,GAAG,YAAY;AAAA,MACf,UAAU,EAAE,oBAAoB,SAAS,UAAU,EAAE,EAAE;AAAA,IACzD;AAAA,EACF;AAEA,QAAM,QAAQ,SAAS,GAAG,aAAa,OAAO,KAAK,SAAS,eAAe;AAC3E,MAAI,OAAO;AACT,gBAAY,QAAQ;AAAA,MAClB,GAAG,YAAY;AAAA,MACf,OAAO,EAAE,cAAc,MAAM;AAAA,IAC/B;AAAA,EACF;AAEA,SAAO;AACT;;;ACtEO,SAAS,eACd,MACA,aACS;AACT,QAAM,YAA+B;AAAA,IACnC,SAAS,YAAY;AAAA,EACvB;AAEA,MAAI,YAAY,UAAW,WAAU,YAAY,YAAY;AAC7D,MAAI,YAAY,aAAc,WAAU,eAAe,YAAY;AACnE,MAAI,YAAY,OAAO,QAAS,WAAU,UAAU,YAAY,MAAM;AACtE,MAAI,YAAY,OAAO,SAAU,WAAU,WAAW,YAAY,MAAM;AACxE,MAAI,YAAY,OAAO,MAAO,WAAU,QAAQ,YAAY,MAAM;AAElE,SAAO;AAAA,IACL,GAAG;AAAA,IACH,UAAU;AAAA,MACR,GAAG,KAAK;AAAA,MACR;AAAA,IACF;AAAA,EACF;AACF;AAKO,SAAS,sBAAsB,MAA4C;AAChF,QAAM,OAAO,KAAK,UAAU;AAC5B,MAAI,CAAC,MAAM,QAAS,QAAO;AAE3B,QAAM,cAAoC;AAAA,IACxC,SAAS,KAAK;AAAA,EAChB;AAEA,MAAI,KAAK,UAAW,aAAY,YAAY,KAAK;AACjD,MAAI,KAAK,aAAc,aAAY,eAAe,KAAK;AAEvD,MAAI,KAAK,WAAW,KAAK,YAAY,KAAK,OAAO;AAC/C,gBAAY,QAAQ,CAAC;AACrB,QAAI,KAAK,QAAS,aAAY,MAAM,UAAU,KAAK;AACnD,QAAI,KAAK,SAAU,aAAY,MAAM,WAAW,KAAK;AACrD,QAAI,KAAK,MAAO,aAAY,MAAM,QAAQ,KAAK;AAAA,EACjD;AAEA,SAAO;AACT;;;AC7CO,SAAS,WACd,QACA,aACW;AACX,QAAM,YAA2B;AAAA,IAC/B,SAAS,YAAY;AAAA,EACvB;AAEA,MAAI,YAAY,UAAW,WAAU,YAAY,YAAY;AAC7D,MAAI,YAAY,aAAc,WAAU,eAAe,YAAY;AACnE,MAAI,YAAY,OAAO,QAAS,WAAU,UAAU,YAAY,MAAM;AACtE,MAAI,YAAY,OAAO,SAAU,WAAU,WAAW,YAAY,MAAM;AACxE,MAAI,YAAY,OAAO,MAAO,WAAU,QAAQ,YAAY,MAAM;AAElE,SAAO;AAAA,IACL,GAAG;AAAA,IACH,OAAO;AAAA,MACL,GAAG,OAAO;AAAA,MACV;AAAA,IACF;AAAA,EACF;AACF;AAKO,SAAS,sBAAsB,QAAgD;AACpF,QAAM,OAAO,OAAO,OAAO;AAC3B,MAAI,CAAC,MAAM,QAAS,QAAO;AAE3B,QAAM,cAAoC;AAAA,IACxC,SAAS,KAAK;AAAA,EAChB;AAEA,MAAI,KAAK,UAAW,aAAY,YAAY,KAAK;AACjD,MAAI,KAAK,aAAc,aAAY,eAAe,KAAK;AAEvD,MAAI,KAAK,WAAW,KAAK,YAAY,KAAK,OAAO;AAC/C,gBAAY,QAAQ,CAAC;AACrB,QAAI,KAAK,QAAS,aAAY,MAAM,UAAU,KAAK;AACnD,QAAI,KAAK,SAAU,aAAY,MAAM,WAAW,KAAK;AACrD,QAAI,KAAK,MAAO,aAAY,MAAM,QAAQ,KAAK;AAAA,EACjD;AAEA,SAAO;AACT;;;ACnDO,SAAS,eAAe,SAAqD;AAElF,MAAI,QAAQ,YAAY,OAAO,QAAQ,aAAa,UAAU;AAC5D,WAAO;AAAA,EACT;AAGA,MAAI,QAAQ,SAAS,OAAO,QAAQ,UAAU,UAAU;AACtD,WAAO;AAAA,EACT;AAGA,SAAO;AACT;AAKO,SAAS,iBACd,UACA,QACA,aACyB;AACzB,UAAQ,UAAU;AAAA,IAChB,KAAK;AACH,aAAO,eAAe,QAAkC,WAAW;AAAA,IACrE,KAAK;AACH,aAAO,eAAe,QAAQ,WAAW;AAAA,IAC3C,KAAK;AACH,aAAO,WAAW,QAAQ,WAAW;AAAA,IACvC;AACE,aAAO;AAAA,EACX;AACF;AAKO,SAAS,+BACd,UACA,SAC6B;AAC7B,UAAQ,UAAU;AAAA,IAChB,KAAK;AACH,aAAO,uBAAuB,OAAwD;AAAA,IACxF,KAAK;AACH,aAAO,sBAAsB,OAAO;AAAA,IACtC,KAAK;AACH,aAAO,sBAAsB,OAAO;AAAA,IACtC;AACE,aAAO;AAAA,EACX;AACF;","names":[]}

package/dist/{types-CS6v75-d.d.mts → types-Bf8pML07.d.mts}

@@ -54,6 +54,10 @@ interface GatewayConfig {
     debug?: boolean;
     /** Custom headers to send with verification requests */
     customHeaders?: Record<string, string>;
+    /** This counterparty's URL (sent with verify-access requests for analytics) */
+    counterpartyUrl?: string;
+    /** This counterparty's type (sent with verify-access requests for analytics) */
+    counterpartyType?: CounterpartyType;
 }
 /**
  * Verified agent information
@@ -202,6 +206,8 @@ interface VerificationRequest {
     createSession?: boolean;
     /** Counterparty type */
     counterpartyType?: CounterpartyType;
+    /** Counterparty URL */
+    counterpartyUrl?: string;
     /** Runtime challenge options */
     runtimeChallengeOptions?: {
         timeoutOverride?: number;
@@ -236,6 +242,8 @@ interface ExpressMiddlewareOptions extends GatewayConfig {
     skipPaths?: string[];
     /** Custom response for denied requests */
     onDenied?: (result: VerificationResult, req: unknown, res: unknown) => void;
+    /** Automatically create sessions and record grant/deny decisions (default: true) */
+    recordDecisions?: boolean;
 }
 /**
  * Next.js middleware options
@@ -356,4 +364,4 @@ interface CommerceShieldProps {
     className?: string;
 }
 
-export type { AgentCredentials as A, CommerceShieldProps as C, EnhancedVerificationResult as E, GatewayConfig as G, NextJsMiddlewareOptions as N, ProtocolTransport as P, RouteAccessConfig as R, SDKOptions as S, TokenGuidance as T, VerificationRequest as V, AccessLevel as a, VerificationResult as b, AstraSyncCredentials as c, CounterpartyType as d, ExpressMiddlewareOptions as e, GuidanceInfo as f, PDLSSInfo as g, RuntimeChallengeResult as h, TrustLevel as i, VerifiedAgent as j, VerifiedDeveloper as k, VerifiedOrganization as l };
+export type { AgentCredentials as A, CommerceShieldProps as C, EnhancedVerificationResult as E, GatewayConfig as G, NextJsMiddlewareOptions as N, PDLSSInfo as P, RouteAccessConfig as R, SDKOptions as S, TokenGuidance as T, VerificationRequest as V, AccessLevel as a, VerificationResult as b, AstraSyncCredentials as c, CounterpartyType as d, ExpressMiddlewareOptions as e, GuidanceInfo as f, ProtocolTransport as g, RuntimeChallengeResult as h, TrustLevel as i, VerifiedAgent as j, VerifiedDeveloper as k, VerifiedOrganization as l };

package/dist/{types-CS6v75-d.d.ts → types-Bf8pML07.d.ts}

@@ -54,6 +54,10 @@ interface GatewayConfig {
     debug?: boolean;
     /** Custom headers to send with verification requests */
     customHeaders?: Record<string, string>;
+    /** This counterparty's URL (sent with verify-access requests for analytics) */
+    counterpartyUrl?: string;
+    /** This counterparty's type (sent with verify-access requests for analytics) */
+    counterpartyType?: CounterpartyType;
 }
 /**
  * Verified agent information
@@ -202,6 +206,8 @@ interface VerificationRequest {
     createSession?: boolean;
     /** Counterparty type */
     counterpartyType?: CounterpartyType;
+    /** Counterparty URL */
+    counterpartyUrl?: string;
     /** Runtime challenge options */
     runtimeChallengeOptions?: {
         timeoutOverride?: number;
@@ -236,6 +242,8 @@ interface ExpressMiddlewareOptions extends GatewayConfig {
     skipPaths?: string[];
     /** Custom response for denied requests */
     onDenied?: (result: VerificationResult, req: unknown, res: unknown) => void;
+    /** Automatically create sessions and record grant/deny decisions (default: true) */
+    recordDecisions?: boolean;
 }
 /**
  * Next.js middleware options
@@ -356,4 +364,4 @@ interface CommerceShieldProps {
     className?: string;
 }
 
-export type { AgentCredentials as A, CommerceShieldProps as C, EnhancedVerificationResult as E, GatewayConfig as G, NextJsMiddlewareOptions as N, ProtocolTransport as P, RouteAccessConfig as R, SDKOptions as S, TokenGuidance as T, VerificationRequest as V, AccessLevel as a, VerificationResult as b, AstraSyncCredentials as c, CounterpartyType as d, ExpressMiddlewareOptions as e, GuidanceInfo as f, PDLSSInfo as g, RuntimeChallengeResult as h, TrustLevel as i, VerifiedAgent as j, VerifiedDeveloper as k, VerifiedOrganization as l };
+export type { AgentCredentials as A, CommerceShieldProps as C, EnhancedVerificationResult as E, GatewayConfig as G, NextJsMiddlewareOptions as N, PDLSSInfo as P, RouteAccessConfig as R, SDKOptions as S, TokenGuidance as T, VerificationRequest as V, AccessLevel as a, VerificationResult as b, AstraSyncCredentials as c, CounterpartyType as d, ExpressMiddlewareOptions as e, GuidanceInfo as f, ProtocolTransport as g, RuntimeChallengeResult as h, TrustLevel as i, VerifiedAgent as j, VerifiedDeveloper as k, VerifiedOrganization as l };