@blue-repository/types 0.23.0 → 0.25.0

package/dist/packages/myos/contents/SingleDocumentPermissionRevokeRequested.d.ts

@@ -1,5 +1,11 @@
 export declare const SingleDocumentPermissionRevokeRequested: {
-    readonly description: "Emitted by revoke operation";
+    readonly description: "Emitted either by revoke operation on the grant document or by grantee-document self-revoke flow when grantDocumentId is provided.";
+    readonly grantDocumentId: {
+        readonly description: "Optional. If present, MyOS Admin must revoke the referenced permission grant after validating that the requesting document matches the grant granteeDocumentId. If absent, revoke applies to the grant document that emitted the event.";
+        readonly type: {
+            readonly blueId: "DLRQwz7MQeCrzjy9bohPNwtCxKEBbKaMK65KBrwjfG6K";
+        };
+    };
     readonly name: "Single Document Permission Revoke Requested";
     readonly reason: {
         readonly type: {

package/dist/packages/myos/contents/SingleDocumentPermissionRevokeRequested.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"SingleDocumentPermissionRevokeRequested.d.ts","sourceRoot":"","sources":["../../../../src/packages/myos/contents/SingleDocumentPermissionRevokeRequested.ts"],"names":[],"mappings":"AAAA,eAAO,MAAM,uCAAuC;;;;;;;;;;;CAW1C,CAAC"}
+{"version":3,"file":"SingleDocumentPermissionRevokeRequested.d.ts","sourceRoot":"","sources":["../../../../src/packages/myos/contents/SingleDocumentPermissionRevokeRequested.ts"],"names":[],"mappings":"AAAA,eAAO,MAAM,uCAAuC;;;;;;;;;;;;;;;;;CAmB1C,CAAC"}

package/dist/packages/myos/contents/SingleDocumentPermissionRevokeRequested.js

@@ -1,5 +1,11 @@
 export const SingleDocumentPermissionRevokeRequested = {
-    description: 'Emitted by revoke operation',
+    description: 'Emitted either by revoke operation on the grant document or by grantee-document self-revoke flow when grantDocumentId is provided.',
+    grantDocumentId: {
+        description: 'Optional. If present, MyOS Admin must revoke the referenced permission grant after validating that the requesting document matches the grant granteeDocumentId. If absent, revoke applies to the grant document that emitted the event.',
+        type: {
+            blueId: 'DLRQwz7MQeCrzjy9bohPNwtCxKEBbKaMK65KBrwjfG6K',
+        },
+    },
     name: 'Single Document Permission Revoke Requested',
     reason: {
         type: {

package/dist/packages/myos/contents/SingleDocumentPermissionRevokeRequested.js.map

@@ -1 +1 @@
-{"version":3,"file":"SingleDocumentPermissionRevokeRequested.js","sourceRoot":"","sources":["../../../../src/packages/myos/contents/SingleDocumentPermissionRevokeRequested.ts"],"names":[],"mappings":"AAAA,MAAM,CAAC,MAAM,uCAAuC,GAAG;IACrD,WAAW,EAAE,6BAA6B;IAC1C,IAAI,EAAE,6CAA6C;IACnD,MAAM,EAAE;QACN,IAAI,EAAE;YACJ,MAAM,EAAE,8CAA8C;SACvD;KACF;IACD,IAAI,EAAE;QACJ,MAAM,EAAE,8CAA8C;KACvD;CACO,CAAC"}
+{"version":3,"file":"SingleDocumentPermissionRevokeRequested.js","sourceRoot":"","sources":["../../../../src/packages/myos/contents/SingleDocumentPermissionRevokeRequested.ts"],"names":[],"mappings":"AAAA,MAAM,CAAC,MAAM,uCAAuC,GAAG;IACrD,WAAW,EACT,oIAAoI;IACtI,eAAe,EAAE;QACf,WAAW,EACT,yOAAyO;QAC3O,IAAI,EAAE;YACJ,MAAM,EAAE,8CAA8C;SACvD;KACF;IACD,IAAI,EAAE,6CAA6C;IACnD,MAAM,EAAE;QACN,IAAI,EAAE;YACJ,MAAM,EAAE,8CAA8C;SACvD;KACF;IACD,IAAI,EAAE;QACJ,MAAM,EAAE,8CAA8C;KACvD;CACO,CAAC"}

package/dist/packages/myos/contents/WorkerAgencyPermissionGrant.d.ts

@@ -9,7 +9,7 @@ export declare const WorkerAgencyPermissionGrant: {
     };
     readonly contracts: {
         readonly granterChannel: {
-            readonly description: "Granter/owner’s timeline (actor allowed to request revoke)";
+            readonly description: "Granter/owner’s timeline (direct grant-document revoke lives here).";
             readonly type: {
                 readonly blueId: "HCF8mXnX3dFjQ8osjxb4Wzm2Nm1DoXnTYuA5sPnV7NTs";
             };
@@ -31,7 +31,7 @@ export declare const WorkerAgencyPermissionGrant: {
                 };
                 readonly value: "granterChannel";
             };
-            readonly description: "Granter requests revocation (handled by MyOS Admin)";
+            readonly description: "Granter requests revocation on the grant document. Grantee-document self-revoke uses the existing revoke-request event with grantDocumentId emitted from the grantee document itself.";
             readonly request: {
                 readonly description: "Optional human-readable reason";
                 readonly type: {
@@ -80,7 +80,7 @@ export declare const WorkerAgencyPermissionGrant: {
                         readonly type: {
                             readonly blueId: "DLRQwz7MQeCrzjy9bohPNwtCxKEBbKaMK65KBrwjfG6K";
                         };
-                        readonly value: "const issues = [];\n\nconst unwrapText = value => {\n  if (typeof value === 'string') {\n    const trimmed = value.trim();\n    return trimmed.length > 0 ? trimmed : undefined;\n  }\n  if (value && typeof value === 'object') {\n    if (typeof value.value === 'string') {\n      const trimmed = value.value.trim();\n      return trimmed.length > 0 ? trimmed : undefined;\n    }\n    if (typeof value.workerType === 'string') {\n      const trimmed = value.workerType.trim();\n      return trimmed.length > 0 ? trimmed : undefined;\n    }\n    if (typeof value.name === 'string') {\n      const trimmed = value.name.trim();\n      return trimmed.length > 0 ? trimmed : undefined;\n    }\n  }\n  return undefined;\n};\n\nconst unwrapBoolean = value => {\n  if (typeof value === 'boolean') {\n    return value;\n  }\n  if (value && typeof value === 'object') {\n    if (typeof value.value === 'boolean') {\n      return value.value;\n    }\n    if (\n      value.value &&\n      typeof value.value === 'object' &&\n      typeof value.value.value === 'boolean'\n    ) {\n      return value.value.value;\n    }\n  }\n  return undefined;\n};\n\nconst hasBooleanValue = value => {\n  if (typeof value === 'boolean') {\n    return true;\n  }\n  if (value && typeof value === 'object') {\n    if (typeof value.value === 'boolean') {\n      return true;\n    }\n    if (\n      value.value &&\n      typeof value.value === 'object' &&\n      typeof value.value.value === 'boolean'\n    ) {\n      return true;\n    }\n  }\n  return false;\n};\n\nconst unwrapArray = value => {\n  if (Array.isArray(value)) {\n    return value;\n  }\n  if (value && typeof value === 'object' && Array.isArray(value.items)) {\n    return value.items;\n  }\n  return [];\n};\n\nconst unwrapRecord = value => {\n  if (value && typeof value === 'object' && !Array.isArray(value)) {\n    if (value.value && typeof value.value === 'object') {\n      return value.value;\n    }\n    return value;\n  }\n  return {};\n};\n\n// --- granter binding (owner account) ---\nconst granterId = document('/contracts/granterChannel/accountId');\nif (typeof granterId !== 'string' || granterId.length === 0) {\n  issues.push(\"granterChannel must be bound to an accountId\");\n}\n// --- grantee (parent worker) session id ---\nconst granteeDocumentId = document('/granteeDocumentId');\nif (\n  typeof granteeDocumentId !== 'string' ||\n  granteeDocumentId.trim().length === 0\n) {\n  issues.push(\"granteeDocumentId must be a non-empty string\");\n}\n// --- allowedWorkerAgencyPermissions : list of { workerType, permissions } ---\nconst list = document('/allowedWorkerAgencyPermissions');\nif (!Array.isArray(list) || list.length === 0) {\n  issues.push(\"allowedWorkerAgencyPermissions must be a non-empty array\");\n} else {\n  // helper: validate Single Document Permission Set\n  const validateSDPS = (p, path) => {\n    const record = unwrapRecord(p);\n    if (Object.keys(record).length === 0) {\n      issues.push(`${path} must be an object`);\n      return;\n    }\n    // read must be true to allow any access at all\n    const read = unwrapBoolean(record.read);\n    if (read !== true) {\n      issues.push(`${path}.read must be true`);\n    }\n    const share = record.share;\n    const shareValue = unwrapBoolean(share);\n    if (hasBooleanValue(share) && typeof shareValue !== 'boolean') {\n      issues.push(`${path}.share must be boolean if provided`);\n    }\n    const allOps = record.allOps;\n    const allOpsValue = unwrapBoolean(allOps);\n    if (hasBooleanValue(allOps) && typeof allOpsValue !== 'boolean') {\n      issues.push(`${path}.allOps must be boolean if provided`);\n    }\n    const singleOpsRaw = unwrapArray(record.singleOps)\n      .map(entry => unwrapText(entry))\n      .filter(Boolean);\n    const hasSingle = singleOpsRaw.length > 0;\n    if (hasSingle) {\n      const bad = singleOpsRaw.length !== unwrapArray(record.singleOps).length;\n      if (bad) issues.push(`${path}.singleOps must contain only non-empty strings`);\n    }\n    if (allOpsValue === true && hasSingle) {\n      issues.push(`${path}.allOps=true and ${path}.singleOps are mutually exclusive`);\n    }\n    // Note: it is valid to have read=true with neither allOps nor singleOps (read-only template)\n  };\n  const seenTypes = new Set();\n  list.forEach((item, idx) => {\n    const itemPath = `/allowedWorkerAgencyPermissions[${idx}]`;\n    // shape\n    if (typeof item !== 'object' || item === null) {\n      issues.push(`${itemPath} must be an object`);\n      return;\n    }\n    // workerType\n    const workerType = unwrapText(item.workerType);\n    if (!workerType) {\n      issues.push(`${itemPath}.workerType must be a non-empty string`);\n    } else {\n      if (seenTypes.has(workerType)) {\n        issues.push(`duplicate workerType '${workerType}' in allowedWorkerAgencyPermissions`);\n      } else {\n        seenTypes.add(workerType);\n      }\n    }\n    // permissions (Single Document Permission Set)\n    const perms = item.permissions;\n    if (typeof perms === 'undefined') {\n      issues.push(`${itemPath}.permissions is required`);\n    } else {\n      validateSDPS(perms, `${itemPath}.permissions`);\n    }\n  });\n}\nif (issues.length > 0) {\n  return { events: [ { type: \"MyOS/Worker Agency Permission Invalid\", issues } ] };\n} else {\n  return { events: [ { type: \"MyOS/Worker Agency Permission Validated\" } ] };\n}\n";
+                        readonly value: "const issues = [];\n\nconst unwrapText = value => {\n  if (typeof value === 'string') {\n    const trimmed = value.trim();\n    return trimmed.length > 0 ? trimmed : undefined;\n  }\n  if (value && typeof value === 'object') {\n    if (typeof value.value === 'string') {\n      const trimmed = value.value.trim();\n      return trimmed.length > 0 ? trimmed : undefined;\n    }\n    if (typeof value.workerType === 'string') {\n      const trimmed = value.workerType.trim();\n      return trimmed.length > 0 ? trimmed : undefined;\n    }\n    if (typeof value.name === 'string') {\n      const trimmed = value.name.trim();\n      return trimmed.length > 0 ? trimmed : undefined;\n    }\n  }\n  return undefined;\n};\n\nconst unwrapBoolean = value => {\n  if (typeof value === 'boolean') {\n    return value;\n  }\n  if (value && typeof value === 'object') {\n    if (typeof value.value === 'boolean') {\n      return value.value;\n    }\n    if (\n      value.value &&\n      typeof value.value === 'object' &&\n      typeof value.value.value === 'boolean'\n    ) {\n      return value.value.value;\n    }\n  }\n  return undefined;\n};\n\nconst hasBooleanValue = value => {\n  if (typeof value === 'boolean') {\n    return true;\n  }\n  if (value && typeof value === 'object') {\n    if (typeof value.value === 'boolean') {\n      return true;\n    }\n    if (\n      value.value &&\n      typeof value.value === 'object' &&\n      typeof value.value.value === 'boolean'\n    ) {\n      return true;\n    }\n  }\n  return false;\n};\n\nconst unwrapArray = value => {\n  if (Array.isArray(value)) {\n    return value;\n  }\n  if (value && typeof value === 'object' && Array.isArray(value.items)) {\n    return value.items;\n  }\n  return [];\n};\n\nconst unwrapRecord = value => {\n  if (value && typeof value === 'object' && !Array.isArray(value)) {\n    if (value.value && typeof value.value === 'object') {\n      return value.value;\n    }\n    return value;\n  }\n  return {};\n};\n\nconst granterId = document('/contracts/granterChannel/accountId');\nif (typeof granterId !== 'string' || granterId.length === 0) {\n  issues.push(\"granterChannel must be bound to an accountId\");\n}\n\nconst granteeDocumentId = document('/granteeDocumentId');\nif (\n  typeof granteeDocumentId !== 'string' ||\n  granteeDocumentId.trim().length === 0\n) {\n  issues.push(\"granteeDocumentId must be a non-empty string\");\n}\n\nconst list = document('/allowedWorkerAgencyPermissions');\nif (!Array.isArray(list) || list.length === 0) {\n  issues.push(\"allowedWorkerAgencyPermissions must be a non-empty array\");\n} else {\n  const validateSDPS = (p, path) => {\n    const record = unwrapRecord(p);\n    if (Object.keys(record).length === 0) {\n      issues.push(`${path} must be an object`);\n      return;\n    }\n    const read = unwrapBoolean(record.read);\n    if (read !== true) {\n      issues.push(`${path}.read must be true`);\n    }\n    const share = record.share;\n    const shareValue = unwrapBoolean(share);\n    if (hasBooleanValue(share) && typeof shareValue !== 'boolean') {\n      issues.push(`${path}.share must be boolean if provided`);\n    }\n    const allOps = record.allOps;\n    const allOpsValue = unwrapBoolean(allOps);\n    if (hasBooleanValue(allOps) && typeof allOpsValue !== 'boolean') {\n      issues.push(`${path}.allOps must be boolean if provided`);\n    }\n    const singleOpsRaw = unwrapArray(record.singleOps)\n      .map(entry => unwrapText(entry))\n      .filter(Boolean);\n    const hasSingle = singleOpsRaw.length > 0;\n    if (hasSingle) {\n      const bad = singleOpsRaw.length !== unwrapArray(record.singleOps).length;\n      if (bad) issues.push(`${path}.singleOps must contain only non-empty strings`);\n    }\n    if (allOpsValue === true && hasSingle) {\n      issues.push(`${path}.allOps=true and ${path}.singleOps are mutually exclusive`);\n    }\n  };\n  const seenTypes = new Set();\n  list.forEach((item, idx) => {\n    const itemPath = `/allowedWorkerAgencyPermissions[${idx}]`;\n    if (typeof item !== 'object' || item === null) {\n      issues.push(`${itemPath} must be an object`);\n      return;\n    }\n    const workerType = unwrapText(item.workerType);\n    if (!workerType) {\n      issues.push(`${itemPath}.workerType must be a non-empty string`);\n    } else {\n      if (seenTypes.has(workerType)) {\n        issues.push(`duplicate workerType '${workerType}' in allowedWorkerAgencyPermissions`);\n      } else {\n        seenTypes.add(workerType);\n      }\n    }\n    const perms = item.permissions;\n    if (typeof perms === 'undefined') {\n      issues.push(`${itemPath}.permissions is required`);\n    } else {\n      validateSDPS(perms, `${itemPath}.permissions`);\n    }\n  });\n}\nif (issues.length > 0) {\n  return { events: [ { type: \"MyOS/Worker Agency Permission Invalid\", issues } ] };\n} else {\n  return { events: [ { type: \"MyOS/Worker Agency Permission Validated\" } ] };\n}\n";
                     };
                     readonly name: "ValidateBasicShape";
                     readonly type: {

package/dist/packages/myos/contents/WorkerAgencyPermissionGrant.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"WorkerAgencyPermissionGrant.d.ts","sourceRoot":"","sources":["../../../../src/packages/myos/contents/WorkerAgencyPermissionGrant.ts"],"names":[],"mappings":"AAAA,eAAO,MAAM,2BAA2B;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;CA8G9B,CAAC"}
+{"version":3,"file":"WorkerAgencyPermissionGrant.d.ts","sourceRoot":"","sources":["../../../../src/packages/myos/contents/WorkerAgencyPermissionGrant.ts"],"names":[],"mappings":"AAAA,eAAO,MAAM,2BAA2B;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;CAgH9B,CAAC"}

package/dist/packages/myos/contents/WorkerAgencyPermissionGrant.js

@@ -9,7 +9,7 @@ export const WorkerAgencyPermissionGrant = {
     },
     contracts: {
         granterChannel: {
-            description: 'Granter/owner’s timeline (actor allowed to request revoke)',
+            description: 'Granter/owner’s timeline (direct grant-document revoke lives here).',
             type: {
                 blueId: 'HCF8mXnX3dFjQ8osjxb4Wzm2Nm1DoXnTYuA5sPnV7NTs',
             },
@@ -31,7 +31,7 @@ export const WorkerAgencyPermissionGrant = {
                 },
                 value: 'granterChannel',
             },
-            description: 'Granter requests revocation (handled by MyOS Admin)',
+            description: 'Granter requests revocation on the grant document. Grantee-document self-revoke uses the existing revoke-request event with grantDocumentId emitted from the grantee document itself.',
             request: {
                 description: 'Optional human-readable reason',
                 type: {
@@ -83,7 +83,7 @@ export const WorkerAgencyPermissionGrant = {
                             type: {
                                 blueId: 'DLRQwz7MQeCrzjy9bohPNwtCxKEBbKaMK65KBrwjfG6K',
                             },
-                            value: "const issues = [];\n\nconst unwrapText = value => {\n  if (typeof value === 'string') {\n    const trimmed = value.trim();\n    return trimmed.length > 0 ? trimmed : undefined;\n  }\n  if (value && typeof value === 'object') {\n    if (typeof value.value === 'string') {\n      const trimmed = value.value.trim();\n      return trimmed.length > 0 ? trimmed : undefined;\n    }\n    if (typeof value.workerType === 'string') {\n      const trimmed = value.workerType.trim();\n      return trimmed.length > 0 ? trimmed : undefined;\n    }\n    if (typeof value.name === 'string') {\n      const trimmed = value.name.trim();\n      return trimmed.length > 0 ? trimmed : undefined;\n    }\n  }\n  return undefined;\n};\n\nconst unwrapBoolean = value => {\n  if (typeof value === 'boolean') {\n    return value;\n  }\n  if (value && typeof value === 'object') {\n    if (typeof value.value === 'boolean') {\n      return value.value;\n    }\n    if (\n      value.value &&\n      typeof value.value === 'object' &&\n      typeof value.value.value === 'boolean'\n    ) {\n      return value.value.value;\n    }\n  }\n  return undefined;\n};\n\nconst hasBooleanValue = value => {\n  if (typeof value === 'boolean') {\n    return true;\n  }\n  if (value && typeof value === 'object') {\n    if (typeof value.value === 'boolean') {\n      return true;\n    }\n    if (\n      value.value &&\n      typeof value.value === 'object' &&\n      typeof value.value.value === 'boolean'\n    ) {\n      return true;\n    }\n  }\n  return false;\n};\n\nconst unwrapArray = value => {\n  if (Array.isArray(value)) {\n    return value;\n  }\n  if (value && typeof value === 'object' && Array.isArray(value.items)) {\n    return value.items;\n  }\n  return [];\n};\n\nconst unwrapRecord = value => {\n  if (value && typeof value === 'object' && !Array.isArray(value)) {\n    if (value.value && typeof value.value === 'object') {\n      return value.value;\n    }\n    return value;\n  }\n  return {};\n};\n\n// --- granter binding (owner account) ---\nconst granterId = document('/contracts/granterChannel/accountId');\nif (typeof granterId !== 'string' || granterId.length === 0) {\n  issues.push(\"granterChannel must be bound to an accountId\");\n}\n// --- grantee (parent worker) session id ---\nconst granteeDocumentId = document('/granteeDocumentId');\nif (\n  typeof granteeDocumentId !== 'string' ||\n  granteeDocumentId.trim().length === 0\n) {\n  issues.push(\"granteeDocumentId must be a non-empty string\");\n}\n// --- allowedWorkerAgencyPermissions : list of { workerType, permissions } ---\nconst list = document('/allowedWorkerAgencyPermissions');\nif (!Array.isArray(list) || list.length === 0) {\n  issues.push(\"allowedWorkerAgencyPermissions must be a non-empty array\");\n} else {\n  // helper: validate Single Document Permission Set\n  const validateSDPS = (p, path) => {\n    const record = unwrapRecord(p);\n    if (Object.keys(record).length === 0) {\n      issues.push(`${path} must be an object`);\n      return;\n    }\n    // read must be true to allow any access at all\n    const read = unwrapBoolean(record.read);\n    if (read !== true) {\n      issues.push(`${path}.read must be true`);\n    }\n    const share = record.share;\n    const shareValue = unwrapBoolean(share);\n    if (hasBooleanValue(share) && typeof shareValue !== 'boolean') {\n      issues.push(`${path}.share must be boolean if provided`);\n    }\n    const allOps = record.allOps;\n    const allOpsValue = unwrapBoolean(allOps);\n    if (hasBooleanValue(allOps) && typeof allOpsValue !== 'boolean') {\n      issues.push(`${path}.allOps must be boolean if provided`);\n    }\n    const singleOpsRaw = unwrapArray(record.singleOps)\n      .map(entry => unwrapText(entry))\n      .filter(Boolean);\n    const hasSingle = singleOpsRaw.length > 0;\n    if (hasSingle) {\n      const bad = singleOpsRaw.length !== unwrapArray(record.singleOps).length;\n      if (bad) issues.push(`${path}.singleOps must contain only non-empty strings`);\n    }\n    if (allOpsValue === true && hasSingle) {\n      issues.push(`${path}.allOps=true and ${path}.singleOps are mutually exclusive`);\n    }\n    // Note: it is valid to have read=true with neither allOps nor singleOps (read-only template)\n  };\n  const seenTypes = new Set();\n  list.forEach((item, idx) => {\n    const itemPath = `/allowedWorkerAgencyPermissions[${idx}]`;\n    // shape\n    if (typeof item !== 'object' || item === null) {\n      issues.push(`${itemPath} must be an object`);\n      return;\n    }\n    // workerType\n    const workerType = unwrapText(item.workerType);\n    if (!workerType) {\n      issues.push(`${itemPath}.workerType must be a non-empty string`);\n    } else {\n      if (seenTypes.has(workerType)) {\n        issues.push(`duplicate workerType '${workerType}' in allowedWorkerAgencyPermissions`);\n      } else {\n        seenTypes.add(workerType);\n      }\n    }\n    // permissions (Single Document Permission Set)\n    const perms = item.permissions;\n    if (typeof perms === 'undefined') {\n      issues.push(`${itemPath}.permissions is required`);\n    } else {\n      validateSDPS(perms, `${itemPath}.permissions`);\n    }\n  });\n}\nif (issues.length > 0) {\n  return { events: [ { type: \"MyOS/Worker Agency Permission Invalid\", issues } ] };\n} else {\n  return { events: [ { type: \"MyOS/Worker Agency Permission Validated\" } ] };\n}\n",
+                            value: "const issues = [];\n\nconst unwrapText = value => {\n  if (typeof value === 'string') {\n    const trimmed = value.trim();\n    return trimmed.length > 0 ? trimmed : undefined;\n  }\n  if (value && typeof value === 'object') {\n    if (typeof value.value === 'string') {\n      const trimmed = value.value.trim();\n      return trimmed.length > 0 ? trimmed : undefined;\n    }\n    if (typeof value.workerType === 'string') {\n      const trimmed = value.workerType.trim();\n      return trimmed.length > 0 ? trimmed : undefined;\n    }\n    if (typeof value.name === 'string') {\n      const trimmed = value.name.trim();\n      return trimmed.length > 0 ? trimmed : undefined;\n    }\n  }\n  return undefined;\n};\n\nconst unwrapBoolean = value => {\n  if (typeof value === 'boolean') {\n    return value;\n  }\n  if (value && typeof value === 'object') {\n    if (typeof value.value === 'boolean') {\n      return value.value;\n    }\n    if (\n      value.value &&\n      typeof value.value === 'object' &&\n      typeof value.value.value === 'boolean'\n    ) {\n      return value.value.value;\n    }\n  }\n  return undefined;\n};\n\nconst hasBooleanValue = value => {\n  if (typeof value === 'boolean') {\n    return true;\n  }\n  if (value && typeof value === 'object') {\n    if (typeof value.value === 'boolean') {\n      return true;\n    }\n    if (\n      value.value &&\n      typeof value.value === 'object' &&\n      typeof value.value.value === 'boolean'\n    ) {\n      return true;\n    }\n  }\n  return false;\n};\n\nconst unwrapArray = value => {\n  if (Array.isArray(value)) {\n    return value;\n  }\n  if (value && typeof value === 'object' && Array.isArray(value.items)) {\n    return value.items;\n  }\n  return [];\n};\n\nconst unwrapRecord = value => {\n  if (value && typeof value === 'object' && !Array.isArray(value)) {\n    if (value.value && typeof value.value === 'object') {\n      return value.value;\n    }\n    return value;\n  }\n  return {};\n};\n\nconst granterId = document('/contracts/granterChannel/accountId');\nif (typeof granterId !== 'string' || granterId.length === 0) {\n  issues.push(\"granterChannel must be bound to an accountId\");\n}\n\nconst granteeDocumentId = document('/granteeDocumentId');\nif (\n  typeof granteeDocumentId !== 'string' ||\n  granteeDocumentId.trim().length === 0\n) {\n  issues.push(\"granteeDocumentId must be a non-empty string\");\n}\n\nconst list = document('/allowedWorkerAgencyPermissions');\nif (!Array.isArray(list) || list.length === 0) {\n  issues.push(\"allowedWorkerAgencyPermissions must be a non-empty array\");\n} else {\n  const validateSDPS = (p, path) => {\n    const record = unwrapRecord(p);\n    if (Object.keys(record).length === 0) {\n      issues.push(`${path} must be an object`);\n      return;\n    }\n    const read = unwrapBoolean(record.read);\n    if (read !== true) {\n      issues.push(`${path}.read must be true`);\n    }\n    const share = record.share;\n    const shareValue = unwrapBoolean(share);\n    if (hasBooleanValue(share) && typeof shareValue !== 'boolean') {\n      issues.push(`${path}.share must be boolean if provided`);\n    }\n    const allOps = record.allOps;\n    const allOpsValue = unwrapBoolean(allOps);\n    if (hasBooleanValue(allOps) && typeof allOpsValue !== 'boolean') {\n      issues.push(`${path}.allOps must be boolean if provided`);\n    }\n    const singleOpsRaw = unwrapArray(record.singleOps)\n      .map(entry => unwrapText(entry))\n      .filter(Boolean);\n    const hasSingle = singleOpsRaw.length > 0;\n    if (hasSingle) {\n      const bad = singleOpsRaw.length !== unwrapArray(record.singleOps).length;\n      if (bad) issues.push(`${path}.singleOps must contain only non-empty strings`);\n    }\n    if (allOpsValue === true && hasSingle) {\n      issues.push(`${path}.allOps=true and ${path}.singleOps are mutually exclusive`);\n    }\n  };\n  const seenTypes = new Set();\n  list.forEach((item, idx) => {\n    const itemPath = `/allowedWorkerAgencyPermissions[${idx}]`;\n    if (typeof item !== 'object' || item === null) {\n      issues.push(`${itemPath} must be an object`);\n      return;\n    }\n    const workerType = unwrapText(item.workerType);\n    if (!workerType) {\n      issues.push(`${itemPath}.workerType must be a non-empty string`);\n    } else {\n      if (seenTypes.has(workerType)) {\n        issues.push(`duplicate workerType '${workerType}' in allowedWorkerAgencyPermissions`);\n      } else {\n        seenTypes.add(workerType);\n      }\n    }\n    const perms = item.permissions;\n    if (typeof perms === 'undefined') {\n      issues.push(`${itemPath}.permissions is required`);\n    } else {\n      validateSDPS(perms, `${itemPath}.permissions`);\n    }\n  });\n}\nif (issues.length > 0) {\n  return { events: [ { type: \"MyOS/Worker Agency Permission Invalid\", issues } ] };\n} else {\n  return { events: [ { type: \"MyOS/Worker Agency Permission Validated\" } ] };\n}\n",
                         },
                         name: 'ValidateBasicShape',
                         type: {

package/dist/packages/myos/contents/WorkerAgencyPermissionGrant.js.map

@@ -1 +1 @@
-{"version":3,"file":"WorkerAgencyPermissionGrant.js","sourceRoot":"","sources":["../../../../src/packages/myos/contents/WorkerAgencyPermissionGrant.ts"],"names":[],"mappings":"AAAA,MAAM,CAAC,MAAM,2BAA2B,GAAG;IACzC,8BAA8B,EAAE;QAC9B,QAAQ,EAAE;YACR,MAAM,EAAE,8CAA8C;SACvD;QACD,IAAI,EAAE;YACJ,MAAM,EAAE,8CAA8C;SACvD;KACF;IACD,SAAS,EAAE;QACT,cAAc,EAAE;YACd,WAAW,EAAE,4DAA4D;YACzE,IAAI,EAAE;gBACJ,MAAM,EAAE,8CAA8C;aACvD;SACF;QACD,oBAAoB,EAAE;YACpB,KAAK,EAAE;gBACL,IAAI,EAAE;oBACJ,MAAM,EAAE,8CAA8C;iBACvD;aACF;YACD,IAAI,EAAE;gBACJ,MAAM,EAAE,8CAA8C;aACvD;SACF;QACD,MAAM,EAAE;YACN,OAAO,EAAE;gBACP,IAAI,EAAE;oBACJ,MAAM,EAAE,8CAA8C;iBACvD;gBACD,KAAK,EAAE,gBAAgB;aACxB;YACD,WAAW,EAAE,qDAAqD;YAClE,OAAO,EAAE;gBACP,WAAW,EAAE,gCAAgC;gBAC7C,IAAI,EAAE;oBACJ,MAAM,EAAE,8CAA8C;iBACvD;aACF;YACD,IAAI,EAAE;gBACJ,MAAM,EAAE,8CAA8C;aACvD;SACF;QACD,iBAAiB,EAAE;YACjB,SAAS,EAAE;gBACT,IAAI,EAAE;oBACJ,MAAM,EAAE,8CAA8C;iBACvD;gBACD,KAAK,EAAE,QAAQ;aAChB;YACD,KAAK,EAAE;gBACL,KAAK,EAAE;oBACL;wBACE,IAAI,EAAE;4BACJ,IAAI,EAAE;gCACJ,MAAM,EAAE,8CAA8C;6BACvD;4BACD,KAAK,EACH,oJAAoJ;yBACvJ;wBACD,IAAI,EAAE,qBAAqB;wBAC3B,IAAI,EAAE;4BACJ,MAAM,EAAE,8CAA8C;yBACvD;qBACF;iBACF;aACF;YACD,IAAI,EAAE;gBACJ,MAAM,EAAE,8CAA8C;aACvD;SACF;QACD,cAAc,EAAE;YACd,OAAO,EAAE;gBACP,IAAI,EAAE;oBACJ,MAAM,EAAE,8CAA8C;iBACvD;gBACD,KAAK,EAAE,sBAAsB;aAC9B;YACD,KAAK,EAAE;gBACL,KAAK,EAAE;oBACL;wBACE,IAAI,EAAE;4BACJ,IAAI,EAAE;gCACJ,MAAM,EAAE,8CAA8C;6BACvD;4BACD,KAAK,EACH,qyKAAqyK;yBACxyK;wBACD,IAAI,EAAE,oBAAoB;wBAC1B,IAAI,EAAE;4BACJ,MAAM,EAAE,8CAA8C;yBACvD;qBACF;iBACF;aACF;YACD,IAAI,EAAE;gBACJ,MAAM,EAAE,8CAA8C;aACvD;SACF;KACF;IACD,iBAAiB,EAAE;QACjB,IAAI,EAAE;YACJ,MAAM,EAAE,8CAA8C;SACvD;KACF;IACD,IAAI,EAAE,gCAAgC;IACtC,IAAI,EAAE;QACJ,MAAM,EAAE,8CAA8C;KACvD;CACO,CAAC"}
+{"version":3,"file":"WorkerAgencyPermissionGrant.js","sourceRoot":"","sources":["../../../../src/packages/myos/contents/WorkerAgencyPermissionGrant.ts"],"names":[],"mappings":"AAAA,MAAM,CAAC,MAAM,2BAA2B,GAAG;IACzC,8BAA8B,EAAE;QAC9B,QAAQ,EAAE;YACR,MAAM,EAAE,8CAA8C;SACvD;QACD,IAAI,EAAE;YACJ,MAAM,EAAE,8CAA8C;SACvD;KACF;IACD,SAAS,EAAE;QACT,cAAc,EAAE;YACd,WAAW,EACT,qEAAqE;YACvE,IAAI,EAAE;gBACJ,MAAM,EAAE,8CAA8C;aACvD;SACF;QACD,oBAAoB,EAAE;YACpB,KAAK,EAAE;gBACL,IAAI,EAAE;oBACJ,MAAM,EAAE,8CAA8C;iBACvD;aACF;YACD,IAAI,EAAE;gBACJ,MAAM,EAAE,8CAA8C;aACvD;SACF;QACD,MAAM,EAAE;YACN,OAAO,EAAE;gBACP,IAAI,EAAE;oBACJ,MAAM,EAAE,8CAA8C;iBACvD;gBACD,KAAK,EAAE,gBAAgB;aACxB;YACD,WAAW,EACT,uLAAuL;YACzL,OAAO,EAAE;gBACP,WAAW,EAAE,gCAAgC;gBAC7C,IAAI,EAAE;oBACJ,MAAM,EAAE,8CAA8C;iBACvD;aACF;YACD,IAAI,EAAE;gBACJ,MAAM,EAAE,8CAA8C;aACvD;SACF;QACD,iBAAiB,EAAE;YACjB,SAAS,EAAE;gBACT,IAAI,EAAE;oBACJ,MAAM,EAAE,8CAA8C;iBACvD;gBACD,KAAK,EAAE,QAAQ;aAChB;YACD,KAAK,EAAE;gBACL,KAAK,EAAE;oBACL;wBACE,IAAI,EAAE;4BACJ,IAAI,EAAE;gCACJ,MAAM,EAAE,8CAA8C;6BACvD;4BACD,KAAK,EACH,oJAAoJ;yBACvJ;wBACD,IAAI,EAAE,qBAAqB;wBAC3B,IAAI,EAAE;4BACJ,MAAM,EAAE,8CAA8C;yBACvD;qBACF;iBACF;aACF;YACD,IAAI,EAAE;gBACJ,MAAM,EAAE,8CAA8C;aACvD;SACF;QACD,cAAc,EAAE;YACd,OAAO,EAAE;gBACP,IAAI,EAAE;oBACJ,MAAM,EAAE,8CAA8C;iBACvD;gBACD,KAAK,EAAE,sBAAsB;aAC9B;YACD,KAAK,EAAE;gBACL,KAAK,EAAE;oBACL;wBACE,IAAI,EAAE;4BACJ,IAAI,EAAE;gCACJ,MAAM,EAAE,8CAA8C;6BACvD;4BACD,KAAK,EACH,y1JAAy1J;yBAC51J;wBACD,IAAI,EAAE,oBAAoB;wBAC1B,IAAI,EAAE;4BACJ,MAAM,EAAE,8CAA8C;yBACvD;qBACF;iBACF;aACF;YACD,IAAI,EAAE;gBACJ,MAAM,EAAE,8CAA8C;aACvD;SACF;KACF;IACD,iBAAiB,EAAE;QACjB,IAAI,EAAE;YACJ,MAAM,EAAE,8CAA8C;SACvD;KACF;IACD,IAAI,EAAE,gCAAgC;IACtC,IAAI,EAAE;QACJ,MAAM,EAAE,8CAA8C;KACvD;CACO,CAAC"}

package/dist/packages/myos/contents/WorkerAgencyPermissionGranted.d.ts

@@ -8,6 +8,12 @@ export declare const WorkerAgencyPermissionGranted: {
         };
     };
     readonly description: "DB rows written; rights are effective.";
+    readonly grantDocumentId: {
+        readonly description: "Optional. Stable handle of the created permission grant document. Required in request/response document-grant flows that later support self-revoke from the grantee document.";
+        readonly type: {
+            readonly blueId: "DLRQwz7MQeCrzjy9bohPNwtCxKEBbKaMK65KBrwjfG6K";
+        };
+    };
     readonly granteeDocumentId: {
         readonly type: {
             readonly blueId: "DLRQwz7MQeCrzjy9bohPNwtCxKEBbKaMK65KBrwjfG6K";

package/dist/packages/myos/contents/WorkerAgencyPermissionGranted.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"WorkerAgencyPermissionGranted.d.ts","sourceRoot":"","sources":["../../../../src/packages/myos/contents/WorkerAgencyPermissionGranted.ts"],"names":[],"mappings":"AAAA,eAAO,MAAM,6BAA6B;;;;;;;;;;;;;;;;;;;CAmBhC,CAAC"}
+{"version":3,"file":"WorkerAgencyPermissionGranted.d.ts","sourceRoot":"","sources":["../../../../src/packages/myos/contents/WorkerAgencyPermissionGranted.ts"],"names":[],"mappings":"AAAA,eAAO,MAAM,6BAA6B;;;;;;;;;;;;;;;;;;;;;;;;;CA0BhC,CAAC"}

package/dist/packages/myos/contents/WorkerAgencyPermissionGranted.js

@@ -8,6 +8,12 @@ export const WorkerAgencyPermissionGranted = {
         },
     },
     description: 'DB rows written; rights are effective.',
+    grantDocumentId: {
+        description: 'Optional. Stable handle of the created permission grant document. Required in request/response document-grant flows that later support self-revoke from the grantee document.',
+        type: {
+            blueId: 'DLRQwz7MQeCrzjy9bohPNwtCxKEBbKaMK65KBrwjfG6K',
+        },
+    },
     granteeDocumentId: {
         type: {
             blueId: 'DLRQwz7MQeCrzjy9bohPNwtCxKEBbKaMK65KBrwjfG6K',

package/dist/packages/myos/contents/WorkerAgencyPermissionGranted.js.map

@@ -1 +1 @@
-{"version":3,"file":"WorkerAgencyPermissionGranted.js","sourceRoot":"","sources":["../../../../src/packages/myos/contents/WorkerAgencyPermissionGranted.ts"],"names":[],"mappings":"AAAA,MAAM,CAAC,MAAM,6BAA6B,GAAG;IAC3C,8BAA8B,EAAE;QAC9B,QAAQ,EAAE;YACR,MAAM,EAAE,8CAA8C;SACvD;QACD,IAAI,EAAE;YACJ,MAAM,EAAE,8CAA8C;SACvD;KACF;IACD,WAAW,EAAE,wCAAwC;IACrD,iBAAiB,EAAE;QACjB,IAAI,EAAE;YACJ,MAAM,EAAE,8CAA8C;SACvD;KACF;IACD,IAAI,EAAE,kCAAkC;IACxC,IAAI,EAAE;QACJ,MAAM,EAAE,8CAA8C;KACvD;CACO,CAAC"}
+{"version":3,"file":"WorkerAgencyPermissionGranted.js","sourceRoot":"","sources":["../../../../src/packages/myos/contents/WorkerAgencyPermissionGranted.ts"],"names":[],"mappings":"AAAA,MAAM,CAAC,MAAM,6BAA6B,GAAG;IAC3C,8BAA8B,EAAE;QAC9B,QAAQ,EAAE;YACR,MAAM,EAAE,8CAA8C;SACvD;QACD,IAAI,EAAE;YACJ,MAAM,EAAE,8CAA8C;SACvD;KACF;IACD,WAAW,EAAE,wCAAwC;IACrD,eAAe,EAAE;QACf,WAAW,EACT,+KAA+K;QACjL,IAAI,EAAE;YACJ,MAAM,EAAE,8CAA8C;SACvD;KACF;IACD,iBAAiB,EAAE;QACjB,IAAI,EAAE;YACJ,MAAM,EAAE,8CAA8C;SACvD;KACF;IACD,IAAI,EAAE,kCAAkC;IACxC,IAAI,EAAE;QACJ,MAAM,EAAE,8CAA8C;KACvD;CACO,CAAC"}

package/dist/packages/myos/contents/WorkerAgencyPermissionRevokeRequested.d.ts

@@ -1,5 +1,11 @@
 export declare const WorkerAgencyPermissionRevokeRequested: {
-    readonly description: "Emitted by revoke operation";
+    readonly description: "Emitted either by revoke operation on the grant document or by grantee-document self-revoke flow when grantDocumentId is provided.";
+    readonly grantDocumentId: {
+        readonly description: "Optional. If present, MyOS Admin must revoke the referenced permission grant after validating that the requesting document matches the grant granteeDocumentId. If absent, revoke applies to the grant document that emitted the event.";
+        readonly type: {
+            readonly blueId: "DLRQwz7MQeCrzjy9bohPNwtCxKEBbKaMK65KBrwjfG6K";
+        };
+    };
     readonly name: "Worker Agency Permission Revoke Requested";
     readonly reason: {
         readonly type: {

package/dist/packages/myos/contents/WorkerAgencyPermissionRevokeRequested.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"WorkerAgencyPermissionRevokeRequested.d.ts","sourceRoot":"","sources":["../../../../src/packages/myos/contents/WorkerAgencyPermissionRevokeRequested.ts"],"names":[],"mappings":"AAAA,eAAO,MAAM,qCAAqC;;;;;;;;;;;CAWxC,CAAC"}
+{"version":3,"file":"WorkerAgencyPermissionRevokeRequested.d.ts","sourceRoot":"","sources":["../../../../src/packages/myos/contents/WorkerAgencyPermissionRevokeRequested.ts"],"names":[],"mappings":"AAAA,eAAO,MAAM,qCAAqC;;;;;;;;;;;;;;;;;CAmBxC,CAAC"}

package/dist/packages/myos/contents/WorkerAgencyPermissionRevokeRequested.js

@@ -1,5 +1,11 @@
 export const WorkerAgencyPermissionRevokeRequested = {
-    description: 'Emitted by revoke operation',
+    description: 'Emitted either by revoke operation on the grant document or by grantee-document self-revoke flow when grantDocumentId is provided.',
+    grantDocumentId: {
+        description: 'Optional. If present, MyOS Admin must revoke the referenced permission grant after validating that the requesting document matches the grant granteeDocumentId. If absent, revoke applies to the grant document that emitted the event.',
+        type: {
+            blueId: 'DLRQwz7MQeCrzjy9bohPNwtCxKEBbKaMK65KBrwjfG6K',
+        },
+    },
     name: 'Worker Agency Permission Revoke Requested',
     reason: {
         type: {

package/dist/packages/myos/contents/WorkerAgencyPermissionRevokeRequested.js.map

@@ -1 +1 @@
-{"version":3,"file":"WorkerAgencyPermissionRevokeRequested.js","sourceRoot":"","sources":["../../../../src/packages/myos/contents/WorkerAgencyPermissionRevokeRequested.ts"],"names":[],"mappings":"AAAA,MAAM,CAAC,MAAM,qCAAqC,GAAG;IACnD,WAAW,EAAE,6BAA6B;IAC1C,IAAI,EAAE,2CAA2C;IACjD,MAAM,EAAE;QACN,IAAI,EAAE;YACJ,MAAM,EAAE,8CAA8C;SACvD;KACF;IACD,IAAI,EAAE;QACJ,MAAM,EAAE,8CAA8C;KACvD;CACO,CAAC"}
+{"version":3,"file":"WorkerAgencyPermissionRevokeRequested.js","sourceRoot":"","sources":["../../../../src/packages/myos/contents/WorkerAgencyPermissionRevokeRequested.ts"],"names":[],"mappings":"AAAA,MAAM,CAAC,MAAM,qCAAqC,GAAG;IACnD,WAAW,EACT,oIAAoI;IACtI,eAAe,EAAE;QACf,WAAW,EACT,yOAAyO;QAC3O,IAAI,EAAE;YACJ,MAAM,EAAE,8CAA8C;SACvD;KACF;IACD,IAAI,EAAE,2CAA2C;IACjD,MAAM,EAAE;QACN,IAAI,EAAE;YACJ,MAAM,EAAE,8CAA8C;SACvD;KACF;IACD,IAAI,EAAE;QACJ,MAAM,EAAE,8CAA8C;KACvD;CACO,CAAC"}