@brightchain/brightchain-api-lib 0.14.0 → 0.15.0

package/package.json

@@ -1,15 +1,15 @@
 {
   "name": "@brightchain/brightchain-api-lib",
-  "version": "0.14.0",
+  "version": "0.15.0",
   "main": "./src/index.js",
   "types": "./src/index.d.ts",
   "dependencies": {
     "@aws-sdk/client-ses": "^3.859.0",
-    "@brightchain/brightchain-lib": "0.14.0",
-    "@digitaldefiance/branded-enum": "^0.0.6",
+    "@brightchain/brightchain-lib": "0.15.0",
+    "@digitaldefiance/branded-enum": "^0.0.7",
     "@digitaldefiance/enclave-bridge-client": "^1.1.0",
-    "@digitaldefiance/i18n-lib": "^4.3.2",
-    "@digitaldefiance/node-ecies-lib": "^4.17.2",
+    "@digitaldefiance/i18n-lib": "^4.5.0",
+    "@digitaldefiance/node-ecies-lib": "^4.18.0",
     "@ethereumjs/wallet": "^10.0.0",
     "bip39": "^3.1.0",
     "buffer": "^6.0.3",

package/src/index.d.ts

@@ -14,9 +14,12 @@ export * from './lib/datastore';
 export * from './lib/middlewares';
 export * from './lib/routers';
 export * from './lib/availability';
+export * from './lib/blockFetch';
 export * from './lib/utils/errorResponse';
 export * from './lib/utils/type-converters';
 export type { ClientSession, DefaultBackendIdType, SchemaMap, } from './lib/shared-types';
+export * from './lib/auth';
+export * from './lib/encryption';
 export * from './lib/browserKeyring';
 export * from './lib/nodeKeyring';
 export * from './lib/secureEnclaveKeyring';

package/src/index.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../brightchain-api-lib/src/index.ts"],"names":[],"mappings":"AACA,cAAc,cAAc,CAAC;AAC7B,cAAc,kBAAkB,CAAC;AAGjC,cAAc,gBAAgB,CAAC;AAG/B,cAAc,oBAAoB,CAAC;AACnC,cAAc,mBAAmB,CAAC;AAClC,cAAc,wBAAwB,CAAC;AACvC,cAAc,iBAAiB,CAAC;AAChC,cAAc,mBAAmB,CAAC;AAElC,cAAc,oBAAoB,CAAC;AACnC,cAAc,mBAAmB,CAAC;AAClC,cAAc,cAAc,CAAC;AAC7B,cAAc,kBAAkB,CAAC;AAKjC,cAAc,iBAAiB,CAAC;AAChC,cAAc,mBAAmB,CAAC;AAClC,cAAc,eAAe,CAAC;AAG9B,cAAc,oBAAoB,CAAC;AACnC,cAAc,2BAA2B,CAAC;AAC1C,cAAc,6BAA6B,CAAC;AAE5C,YAAY,EACV,aAAa,EACb,oBAAoB,EACpB,SAAS,GACV,MAAM,oBAAoB,CAAC;AAG5B,cAAc,sBAAsB,CAAC;AACrC,cAAc,mBAAmB,CAAC;AAClC,cAAc,4BAA4B,CAAC;AAC3C,cAAc,qBAAqB,CAAC"}
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../brightchain-api-lib/src/index.ts"],"names":[],"mappings":"AACA,cAAc,cAAc,CAAC;AAC7B,cAAc,kBAAkB,CAAC;AAGjC,cAAc,gBAAgB,CAAC;AAG/B,cAAc,oBAAoB,CAAC;AACnC,cAAc,mBAAmB,CAAC;AAClC,cAAc,wBAAwB,CAAC;AACvC,cAAc,iBAAiB,CAAC;AAChC,cAAc,mBAAmB,CAAC;AAElC,cAAc,oBAAoB,CAAC;AACnC,cAAc,mBAAmB,CAAC;AAClC,cAAc,cAAc,CAAC;AAC7B,cAAc,kBAAkB,CAAC;AAKjC,cAAc,iBAAiB,CAAC;AAChC,cAAc,mBAAmB,CAAC;AAClC,cAAc,eAAe,CAAC;AAG9B,cAAc,oBAAoB,CAAC;AACnC,cAAc,kBAAkB,CAAC;AACjC,cAAc,2BAA2B,CAAC;AAC1C,cAAc,6BAA6B,CAAC;AAE5C,YAAY,EACV,aAAa,EACb,oBAAoB,EACpB,SAAS,GACV,MAAM,oBAAoB,CAAC;AAG5B,cAAc,YAAY,CAAC;AAG3B,cAAc,kBAAkB,CAAC;AAGjC,cAAc,sBAAsB,CAAC;AACrC,cAAc,mBAAmB,CAAC;AAClC,cAAc,4BAA4B,CAAC;AAC3C,cAAc,qBAAqB,CAAC"}

package/src/index.js

@@ -26,8 +26,13 @@ tslib_1.__exportStar(require("./lib/routers"), exports);
 // Note: FEC types (ParityData, FecRecoveryResult, IFecService) are re-exported from brightchain-lib
 // Only export the WASM implementation class with a unique name to avoid conflicts
 tslib_1.__exportStar(require("./lib/availability"), exports);
+tslib_1.__exportStar(require("./lib/blockFetch"), exports);
 tslib_1.__exportStar(require("./lib/utils/errorResponse"), exports);
 tslib_1.__exportStar(require("./lib/utils/type-converters"), exports);
+// Auth exports
+tslib_1.__exportStar(require("./lib/auth"), exports);
+// Encryption exports
+tslib_1.__exportStar(require("./lib/encryption"), exports);
 // Keyring exports
 tslib_1.__exportStar(require("./lib/browserKeyring"), exports);
 tslib_1.__exportStar(require("./lib/nodeKeyring"), exports);

package/src/index.js.map

@@ -1 +1 @@
-{"version":3,"file":"index.js","sourceRoot":"","sources":["../../../brightchain-api-lib/src/index.ts"],"names":[],"mappings":";;;AAAA,qCAAqC;AACrC,uDAA6B;AAC7B,2DAAiC;AAEjC,mCAAmC;AACnC,yDAA+B;AAE/B,kBAAkB;AAClB,6DAAmC;AACnC,4DAAkC;AAClC,iEAAuC;AACvC,0DAAgC;AAChC,4DAAkC;AAClC,6GAA6G;AAC7G,6DAAmC;AACnC,4DAAkC;AAClC,uDAA6B;AAC7B,2DAAiC;AACjC,iGAAiG;AACjG,+EAA+E;AAC/E,gFAAgF;AAEhF,0DAAgC;AAChC,4DAAkC;AAClC,wDAA8B;AAC9B,oGAAoG;AACpG,kFAAkF;AAClF,6DAAmC;AACnC,oEAA0C;AAC1C,sEAA4C;AAQ5C,kBAAkB;AAClB,+DAAqC;AACrC,4DAAkC;AAClC,qEAA2C;AAC3C,8DAAoC"}
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../../brightchain-api-lib/src/index.ts"],"names":[],"mappings":";;;AAAA,qCAAqC;AACrC,uDAA6B;AAC7B,2DAAiC;AAEjC,mCAAmC;AACnC,yDAA+B;AAE/B,kBAAkB;AAClB,6DAAmC;AACnC,4DAAkC;AAClC,iEAAuC;AACvC,0DAAgC;AAChC,4DAAkC;AAClC,6GAA6G;AAC7G,6DAAmC;AACnC,4DAAkC;AAClC,uDAA6B;AAC7B,2DAAiC;AACjC,iGAAiG;AACjG,+EAA+E;AAC/E,gFAAgF;AAEhF,0DAAgC;AAChC,4DAAkC;AAClC,wDAA8B;AAC9B,oGAAoG;AACpG,kFAAkF;AAClF,6DAAmC;AACnC,2DAAiC;AACjC,oEAA0C;AAC1C,sEAA4C;AAQ5C,eAAe;AACf,qDAA2B;AAE3B,qBAAqB;AACrB,2DAAiC;AAEjC,kBAAkB;AAClB,+DAAqC;AACrC,4DAAkC;AAClC,qEAA2C;AAC3C,8DAAoC"}

package/src/lib/application.d.ts

@@ -19,6 +19,7 @@ export declare class App<TID extends PlatformID> extends BaseApplication<TID> {
     private eventSystem;
     private wsServer;
     private messagePassingService;
+    private upnpManager;
     constructor(environment: Environment<TID>);
     start(): Promise<void>;
     stop(): Promise<void>;

package/src/lib/application.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"application.d.ts","sourceRoot":"","sources":["../../../../brightchain-api-lib/src/lib/application.ts"],"names":[],"mappings":"AAAA,OAAO,EAKL,oBAAoB,EACpB,kBAAkB,EAClB,sBAAsB,EAGvB,MAAM,8BAA8B,CAAC;AAEtC,OAAO,EAAE,UAAU,EAAE,MAAM,iCAAiC,CAAC;AAW7D,OAAgB,EAAE,WAAW,EAAmC,MAAM,SAAS,CAAC;AAKhF,OAAO,EAAE,eAAe,EAAE,MAAM,oBAAoB,CAAC;AAErD,OAAO,EAAE,WAAW,EAAE,MAAM,eAAe,CAAC;AAG5C,OAAO,EAAE,SAAS,EAAE,MAAM,eAAe,CAAC;AAG1C,OAAO,EAAE,uBAAuB,EAAE,MAAM,oCAAoC,CAAC;AAC7E,OAAO,EAAE,qBAAqB,EAAE,MAAM,kCAAkC,CAAC;AACzE,OAAO,EAAE,sBAAsB,EAAE,MAAM,mCAAmC,CAAC;AAE3E;;GAEG;AACH,qBAAa,GAAG,CAAC,GAAG,SAAS,UAAU,CAAE,SAAQ,eAAe,CAAC,GAAG,CAAC;IACnE,SAAgB,UAAU,EAAE,WAAW,CAAC;IACxC,OAAO,CAAC,MAAM,CAAuB;IACrC,OAAO,CAAC,WAAW,CAAmC;IACtD,OAAO,CAAC,QAAQ,CAAC,UAAU,CAAmB;IAC9C,OAAO,CAAC,SAAS,CAA+B;IAChD,OAAO,CAAC,WAAW,CAAwC;IAC3D,OAAO,CAAC,QAAQ,CAAuC;IACvD,OAAO,CAAC,qBAAqB,CAAsC;gBAEvD,WAAW,EAAE,WAAW,CAAC,GAAG,CAAC;IAcnB,KAAK,IAAI,OAAO,CAAC,IAAI,CAAC;IAuJtB,IAAI,IAAI,OAAO,CAAC,IAAI,CAAC;IA2CpC,aAAa,CAAC,CAAC,GAAG,OAAO,EAAE,IAAI,EAAE,MAAM,GAAG,CAAC;IAI3C,aAAa,CAAC,IAAI,EAAE,MAAM,EAAE,UAAU,EAAE,OAAO,GAAG,IAAI;IAI7D;;;OAGG;IACI,YAAY,IAAI,SAAS,CAAC,GAAG,CAAC,GAAG,IAAI;IAI5C;;;OAGG;IACI,cAAc,IAAI,uBAAuB,GAAG,IAAI;IAIvD;;;OAGG;IACI,kBAAkB,IAAI,sBAAsB,GAAG,IAAI;IAI1D;;;;;OAKG;IACI,wBAAwB,CAAC,OAAO,EAAE,qBAAqB,GAAG,IAAI;IAQrE;;;;;OAKG;IACI,oBAAoB,CAAC,QAAQ,EAAE,kBAAkB,GAAG,IAAI;IAO/D;;;;;OAKG;IACI,sBAAsB,CAAC,OAAO,EAAE,oBAAoB,GAAG,IAAI;IAQlE;;;;;OAKG;IACI,wBAAwB,CAAC,OAAO,EAAE,sBAAsB,GAAG,IAAI;CAMvE"}
+{"version":3,"file":"application.d.ts","sourceRoot":"","sources":["../../../../brightchain-api-lib/src/lib/application.ts"],"names":[],"mappings":"AAAA,OAAO,EAKL,oBAAoB,EACpB,kBAAkB,EAClB,sBAAsB,EAGvB,MAAM,8BAA8B,CAAC;AAEtC,OAAO,EAAE,UAAU,EAAE,MAAM,iCAAiC,CAAC;AAY7D,OAAgB,EAAE,WAAW,EAAmC,MAAM,SAAS,CAAC;AAKhF,OAAO,EAAE,eAAe,EAAE,MAAM,oBAAoB,CAAC;AAErD,OAAO,EAAE,WAAW,EAAE,MAAM,eAAe,CAAC;AAG5C,OAAO,EAAE,SAAS,EAAE,MAAM,eAAe,CAAC;AAG1C,OAAO,EAAE,uBAAuB,EAAE,MAAM,oCAAoC,CAAC;AAC7E,OAAO,EAAE,qBAAqB,EAAE,MAAM,kCAAkC,CAAC;AACzE,OAAO,EAAE,sBAAsB,EAAE,MAAM,mCAAmC,CAAC;AAE3E;;GAEG;AACH,qBAAa,GAAG,CAAC,GAAG,SAAS,UAAU,CAAE,SAAQ,eAAe,CAAC,GAAG,CAAC;IACnE,SAAgB,UAAU,EAAE,WAAW,CAAC;IACxC,OAAO,CAAC,MAAM,CAAuB;IACrC,OAAO,CAAC,WAAW,CAAmC;IACtD,OAAO,CAAC,QAAQ,CAAC,UAAU,CAAmB;IAC9C,OAAO,CAAC,SAAS,CAA+B;IAChD,OAAO,CAAC,WAAW,CAAwC;IAC3D,OAAO,CAAC,QAAQ,CAAuC;IACvD,OAAO,CAAC,qBAAqB,CAAsC;IACnE,OAAO,CAAC,WAAW,CAA4B;gBAEnC,WAAW,EAAE,WAAW,CAAC,GAAG,CAAC;IAcnB,KAAK,IAAI,OAAO,CAAC,IAAI,CAAC;IAiLtB,IAAI,IAAI,OAAO,CAAC,IAAI,CAAC;IAkDpC,aAAa,CAAC,CAAC,GAAG,OAAO,EAAE,IAAI,EAAE,MAAM,GAAG,CAAC;IAI3C,aAAa,CAAC,IAAI,EAAE,MAAM,EAAE,UAAU,EAAE,OAAO,GAAG,IAAI;IAI7D;;;OAGG;IACI,YAAY,IAAI,SAAS,CAAC,GAAG,CAAC,GAAG,IAAI;IAI5C;;;OAGG;IACI,cAAc,IAAI,uBAAuB,GAAG,IAAI;IAIvD;;;OAGG;IACI,kBAAkB,IAAI,sBAAsB,GAAG,IAAI;IAI1D;;;;;OAKG;IACI,wBAAwB,CAAC,OAAO,EAAE,qBAAqB,GAAG,IAAI;IAQrE;;;;;OAKG;IACI,oBAAoB,CAAC,QAAQ,EAAE,kBAAkB,GAAG,IAAI;IAO/D;;;;;OAKG;IACI,sBAAsB,CAAC,OAAO,EAAE,oBAAoB,GAAG,IAAI;IAQlE;;;;;OAKG;IACI,wBAAwB,CAAC,OAAO,EAAE,sBAAsB,GAAG,IAAI;CAMvE"}

package/src/lib/application.js

@@ -7,6 +7,7 @@ const i18n_lib_1 = require("@digitaldefiance/i18n-lib");
 const node_express_suite_1 = require("@digitaldefiance/node-express-suite");
 const suite_core_lib_1 = require("@digitaldefiance/suite-core-lib");
 /* eslint-disable @typescript-eslint/no-explicit-any */
+const node_express_suite_2 = require("@digitaldefiance/node-express-suite");
 const express_1 = tslib_1.__importDefault(require("express"));
 const fs_1 = require("fs");
 const https_1 = require("https");
@@ -36,6 +37,7 @@ class App extends application_base_1.BaseApplication {
         this.eventSystem = null;
         this.wsServer = null;
         this.messagePassingService = null;
+        this.upnpManager = null;
         this.expressApp = (0, express_1.default)();
         this.server = null;
         this.keyStorage = services_1.SecureKeyStorage.getInstance();
@@ -116,6 +118,21 @@ class App extends application_base_1.BaseApplication {
                 }
             }
             await Promise.all(serversReady);
+            // Initialize UPnP port mapping if enabled (non-fatal on failure)
+            try {
+                if (this.environment.upnp.enabled) {
+                    this.upnpManager = new node_express_suite_2.UpnpManager(this.environment.upnp);
+                    await this.upnpManager.initialize();
+                    this.services.register('upnpManager', () => this.upnpManager);
+                    (0, node_express_suite_1.debugLog)(this.environment.debug, 'log', '[ ready ] UPnP port mapping initialized');
+                }
+                else {
+                    (0, node_express_suite_1.debugLog)(this.environment.debug, 'log', '[ info ] UPnP port mapping disabled');
+                }
+            }
+            catch (upnpErr) {
+                console.warn('[ warning ] UPnP initialization failed, continuing without port mapping:', upnpErr);
+            }
             this._ready = true;
         }
         catch (err) {
@@ -127,6 +144,12 @@ class App extends application_base_1.BaseApplication {
         }
     }
     async stop() {
+        // Shutdown UPnP port mappings first
+        if (this.upnpManager) {
+            (0, node_express_suite_1.debugLog)(this.environment.debug, 'log', '[ stopping ] UPnP port mapping');
+            await this.upnpManager.shutdown();
+            this.upnpManager = null;
+        }
         // Close WebSocket server first
         if (this.wsServer) {
             (0, node_express_suite_1.debugLog)(this.environment.debug, 'log', '[ stopping ] WebSocket server');

package/src/lib/application.js.map

@@ -1 +1 @@
-{"version":3,"file":"application.js","sourceRoot":"","sources":["../../../../brightchain-api-lib/src/lib/application.ts"],"names":[],"mappings":";;;;AAAA,kEAUsC;AACtC,wDAA4D;AAE5D,4EAI6C;AAC7C,oEAGyC;AACzC,uDAAuD;AACvD,8DAAgF;AAChF,2BAAkC;AAElC,iCAAqC;AACrC,+BAA+B;AAC/B,yDAAqD;AACrD,2FAAoF;AAEpF,qEAAkE;AAClE,+CAA4C;AAC5C,uCAA0C;AAC1C,uCAA0C;AAC1C,yCAAyE;AACzE,gFAA6E;AAE7E,8EAA2E;AAE3E;;GAEG;AACH,MAAa,GAA4B,SAAQ,kCAAoB;IAUnE,YAAY,WAA6B;QACvC,KAAK,CACH,WAAW,EACX,IAAA,uDAAwB,EAAC;YACvB,SAAS,EAAE,WAAW,CAAC,cAAc;YACrC,SAAS,EAAE,WAAW,CAAC,mBAAmB;YAC1C,SAAS,EAAE,WAAW,CAAC,sBAAsB;SAC9C,CAAC,CACH,CAAC;QAhBI,WAAM,GAAkB,IAAI,CAAC;QAC7B,gBAAW,GAAyB,IAAI,GAAG,EAAE,CAAC;QAE9C,cAAS,GAA0B,IAAI,CAAC;QACxC,gBAAW,GAAmC,IAAI,CAAC;QACnD,aAAQ,GAAkC,IAAI,CAAC;QAC/C,0BAAqB,GAAiC,IAAI,CAAC;QAWjE,IAAI,CAAC,UAAU,GAAG,IAAA,iBAAO,GAAE,CAAC;QAC5B,IAAI,CAAC,MAAM,GAAG,IAAI,CAAC;QACnB,IAAI,CAAC,UAAU,GAAG,2BAAgB,CAAC,WAAW,EAAE,CAAC;IACnD,CAAC;IAEe,KAAK,CAAC,KAAK;QACzB,MAAM,KAAK,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;QACxB,IAAI,CAAC;YACH,IAAI,IAAI,CAAC,MAAM,EAAE,CAAC;gBAChB,OAAO,CAAC,KAAK,CACX,kCAAkC,EAClC,gCAAgC,CACjC,CAAC;gBACF,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;YAClB,CAAC;YACD,MAAM,IAAI,CAAC,UAAU,CAAC,yBAAyB,EAAE,CAAC;YAElD,sBAAsB;YACtB,MAAM,UAAU,GAAG,qCAAiB,CAAC,iBAAiB,CAAC;gBACrD,SAAS,EAAE,2BAAS,CAAC,KAAK;aAC3B,CAAC,CAAC;YACH,MAAM,WAAW,GAAG,IAAI,6BAAW,CAAC,UAAU,CAAC,CAAC;YAChD,MAAM,WAAW,GAAG,IAAI,oCAAkB,EAAE,CAAC;YAC7C,MAAM,YAAY,GAAG,IAAI,8BAAY,EAAE,CAAC;YACxC,MAAM,YAAY,GAAG,IAAI,uBAAY,CAAM,IAAI,CAAC,CAAC;YACjD,MAAM,WAAW,GAAG,IAAI,sBAAW,CACjC,IAAI,EACJ,WAAW,EACX,WAAW,EACX,YAAY,EACZ,IAAI,CAAC,WAAW,CAAC,SAAS,CAC3B,CAAC;YAEF,oBAAoB;YACpB,IAAI,CAAC,QAAQ,CAAC,QAAQ,CAAC,aAAa,EAAE,GAAG,EAAE,CAAC,WAAW,CAAC,CAAC;YACzD,IAAI,CAAC,QAAQ,CAAC,QAAQ,CAAC,aAAa,EAAE,GAAG,EAAE,CAAC,WAAW,CAAC,CAAC;YACzD,IAAI,CAAC,QAAQ,CAAC,QAAQ,CAAC,cAAc,EAAE,GAAG,EAAE,CAAC,YAAY,CAAC,CAAC;YAC3D,IAAI,CAAC,QAAQ,CAAC,QAAQ,CAAC,cAAc,EAAE,GAAG,EAAE,CAAC,YAAY,CAAC,CAAC;YAC3D,IAAI,CAAC,QAAQ,CAAC,QAAQ,CAAC,MAAM,EAAE,GAAG,EAAE,CAAC,WAAW,CAAC,CAAC;YAElD,0DAA0D;YAC1D,8BAA8B;YAC9B,IAAI,CAAC,WAAW,GAAG,IAAI,iDAAuB,EAAE,CAAC;YACjD,IAAI,CAAC,QAAQ,CAAC,QAAQ,CAAC,aAAa,EAAE,GAAG,EAAE,CAAC,IAAI,CAAC,WAAW,CAAC,CAAC;YAE9D,yBAAW,CAAC,IAAI,CAAC,IAAI,CAAC,UAAU,CAAC,CAAC;YAClC,MAAM,SAAS,GAAG,IAAI,eAAS,CAAM,IAAI,CAAC,CAAC;YAC3C,IAAI,CAAC,SAAS,GAAG,SAAS,CAAC;YAC3B,MAAM,SAAS,GAAG,IAAI,eAAS,CAAM,SAAS,CAAC,CAAC;YAEhD,wEAAwE;YACxE,oBAAoB;YACpB,SAAS,CAAC,kBAAkB,CAAC,IAAI,CAAC,WAAW,CAAC,CAAC;YAE/C,SAAS,CAAC,IAAI,CAAC,IAAI,CAAC,UAAU,CAAC,CAAC;YAChC,IAAI,CAAC,UAAU,CAAC,GAAG,CACjB,CACE,GAA4B,EAC5B,GAAY,EACZ,GAAa,EACb,IAAkB,EAClB,EAAE;gBACF,MAAM,eAAe,GACnB,GAAG,YAAY,0BAAe;oBAC5B,CAAC,CAAC,GAAG;oBACL,CAAC,CAAC,IAAI,0BAAe,CACjB,IAAI,KAAK,CACP,GAAG,CAAC,OAAO;wBACT,IAAA,2BAAS,EAAC,oCAAkB,CAAC,sBAAsB,CAAC,CACvD,EACD,EAAE,KAAK,EAAE,GAAG,EAAE,CACf,CAAC;gBACR,IAAA,gCAAW,EACT,eAAe,EACf,GAAU,EACV,2CAAsB,EACtB,IAAI,CACL,CAAC;YACJ,CAAC,CACF,CAAC;YAEF,MAAM,YAAY,GAAoB,EAAE,CAAC;YACzC,YAAY,CAAC,IAAI,CACf,IAAI,OAAO,CAAO,CAAC,OAAO,EAAE,EAAE;gBAC5B,IAAI,CAAC,MAAM,GAAG,IAAI,CAAC,UAAU,CAAC,MAAM,CAClC,IAAI,CAAC,WAAW,CAAC,IAAI,EACrB,IAAI,CAAC,WAAW,CAAC,IAAI,EACrB,GAAG,EAAE;oBACH,IAAA,6BAAQ,EACN,IAAI,CAAC,WAAW,CAAC,KAAK,EACtB,KAAK,EACL,oBAAoB,IAAI,CAAC,WAAW,CAAC,IAAI,IAAI,IAAI,CAAC,WAAW,CAAC,IAAI,EAAE,CACrE,CAAC;oBAEF,yDAAyD;oBACzD,oBAAoB;oBACpB,IAAI,IAAI,CAAC,MAAM,EAAE,CAAC;wBAChB,IAAI,CAAC,QAAQ,GAAG,IAAI,+CAAsB,CAAC,IAAI,CAAC,MAAM,EAAE,KAAK,CAAC,CAAC;wBAC/D,IAAI,CAAC,QAAQ,CAAC,QAAQ,CAAC,UAAU,EAAE,GAAG,EAAE,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC;wBACxD,IAAA,6BAAQ,EACN,IAAI,CAAC,WAAW,CAAC,KAAK,EACtB,KAAK,EACL,wCAAwC,CACzC,CAAC;oBACJ,CAAC;oBAED,OAAO,EAAE,CAAC;gBACZ,CAAC,CACF,CAAC;YACJ,CAAC,CAAC,CACH,CAAC;YAEF,IAAI,IAAI,CAAC,WAAW,CAAC,gBAAgB,EAAE,CAAC;gBACtC,IAAI,CAAC;oBACH,MAAM,QAAQ,GAAG,IAAA,cAAO,EAAC,IAAI,CAAC,WAAW,CAAC,gBAAgB,GAAG,MAAM,CAAC,CAAC;oBACrE,MAAM,OAAO,GAAG,IAAA,cAAO,EACrB,IAAI,CAAC,WAAW,CAAC,gBAAgB,GAAG,UAAU,CAC/C,CAAC;oBACF,MAAM,OAAO,GAAG;wBACd,GAAG,EAAE,IAAA,iBAAY,EAAC,OAAO,CAAC;wBAC1B,IAAI,EAAE,IAAA,iBAAY,EAAC,QAAQ,CAAC;qBAC7B,CAAC;oBAEF,YAAY,CAAC,IAAI,CACf,IAAI,OAAO,CAAO,CAAC,OAAO,EAAE,EAAE;wBAC5B,IAAA,oBAAY,EAAC,OAAO,EAAE,IAAI,CAAC,UAAU,CAAC,CAAC,MAAM,CAC3C,IAAI,CAAC,WAAW,CAAC,YAAY,EAC7B,GAAG,EAAE;4BACH,OAAO,CAAC,GAAG,CACT,KAAK,IAAA,wCAAuB,EAC1B,mCAAkB,CAAC,YAAY,CAChC,cAAc,IAAI,CAAC,WAAW,CAAC,IAAI,IAClC,IAAI,CAAC,WAAW,CAAC,YACnB,EAAE,CACH,CAAC;4BACF,OAAO,EAAE,CAAC;wBACZ,CAAC,CACF,CAAC;oBACJ,CAAC,CAAC,CACH,CAAC;gBACJ,CAAC;gBAAC,OAAO,GAAG,EAAE,CAAC;oBACb,OAAO,CAAC,KAAK,CAAC,+BAA+B,EAAE,GAAG,CAAC,CAAC;gBACtD,CAAC;YACH,CAAC;YAED,MAAM,OAAO,CAAC,GAAG,CAAC,YAAY,CAAC,CAAC;YAChC,IAAI,CAAC,MAAM,GAAG,IAAI,CAAC;QACrB,CAAC;QAAC,OAAO,GAAG,EAAE,CAAC;YACb,OAAO,CAAC,KAAK,CAAC,kCAAkC,EAAE,GAAG,CAAC,CAAC;YACvD,IAAI,OAAO,CAAC,GAAG,CAAC,UAAU,CAAC,KAAK,MAAM,EAAE,CAAC;gBACvC,MAAM,GAAG,CAAC;YACZ,CAAC;YACD,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;QAClB,CAAC;IACH,CAAC;IAEe,KAAK,CAAC,IAAI;QACxB,+BAA+B;QAC/B,IAAI,IAAI,CAAC,QAAQ,EAAE,CAAC;YAClB,IAAA,6BAAQ,EAAC,IAAI,CAAC,WAAW,CAAC,KAAK,EAAE,KAAK,EAAE,+BAA+B,CAAC,CAAC;YACzE,MAAM,IAAI,OAAO,CAAO,CAAC,OAAO,EAAE,EAAE;gBAClC,IAAI,CAAC,QAAS,CAAC,KAAK,CAAC,GAAG,EAAE,CAAC,OAAO,EAAE,CAAC,CAAC;YACxC,CAAC,CAAC,CAAC;YACH,IAAI,CAAC,QAAQ,GAAG,IAAI,CAAC;QACvB,CAAC;QAED,IAAI,IAAI,CAAC,MAAM,EAAE,CAAC;YAChB,IAAA,6BAAQ,EACN,IAAI,CAAC,WAAW,CAAC,KAAK,EACtB,KAAK,EACL,iCAAiC,CAClC,CAAC;YACF,MAAM,IAAI,OAAO,CAAO,CAAC,OAAO,EAAE,MAAM,EAAE,EAAE;gBAC1C,IAAI,CAAC,MAAO,CAAC,mBAAmB,EAAE,EAAE,CAAC;gBACrC,IAAI,CAAC,MAAO,CAAC,KAAK,CAAC,CAAC,GAAG,EAAE,EAAE;oBACzB,IAAI,GAAG,EAAE,CAAC;wBACR,MAAM,CAAC,GAAG,CAAC,CAAC;oBACd,CAAC;yBAAM,CAAC;wBACN,OAAO,EAAE,CAAC;oBACZ,CAAC;gBACH,CAAC,CAAC,CAAC;YACL,CAAC,CAAC,CAAC;YACH,IAAI,CAAC,MAAM,GAAG,IAAI,CAAC;QACrB,CAAC;QAED,0BAA0B;QAC1B,IAAI,CAAC,WAAW,GAAG,IAAI,CAAC;QACxB,IAAI,CAAC,qBAAqB,GAAG,IAAI,CAAC;QAClC,IAAI,CAAC,SAAS,GAAG,IAAI,CAAC;QAEtB,MAAM,KAAK,CAAC,IAAI,EAAE,CAAC;QACnB,IAAI,CAAC,MAAM,GAAG,KAAK,CAAC;QACpB,IAAA,6BAAQ,EACN,IAAI,CAAC,WAAW,CAAC,KAAK,EACtB,KAAK,EACL,yDAAyD,CAC1D,CAAC;IACJ,CAAC;IAEM,aAAa,CAAc,IAAY;QAC5C,OAAO,IAAI,CAAC,WAAW,CAAC,GAAG,CAAC,IAAI,CAAM,CAAC;IACzC,CAAC;IAEM,aAAa,CAAC,IAAY,EAAE,UAAmB;QACpD,IAAI,CAAC,WAAW,CAAC,GAAG,CAAC,IAAI,EAAE,UAAU,CAAC,CAAC;IACzC,CAAC;IAED;;;OAGG;IACI,YAAY;QACjB,OAAO,IAAI,CAAC,SAAS,CAAC;IACxB,CAAC;IAED;;;OAGG;IACI,cAAc;QACnB,OAAO,IAAI,CAAC,WAAW,CAAC;IAC1B,CAAC;IAED;;;OAGG;IACI,kBAAkB;QACvB,OAAO,IAAI,CAAC,QAAQ,CAAC;IACvB,CAAC;IAED;;;;;OAKG;IACI,wBAAwB,CAAC,OAA8B;QAC5D,IAAI,CAAC,qBAAqB,GAAG,OAAO,CAAC;QACrC,IAAI,CAAC,QAAQ,CAAC,QAAQ,CAAC,uBAAuB,EAAE,GAAG,EAAE,CAAC,OAAO,CAAC,CAAC;QAC/D,IAAI,IAAI,CAAC,SAAS,EAAE,CAAC;YACnB,IAAI,CAAC,SAAS,CAAC,wBAAwB,CAAC,OAAO,CAAC,CAAC;QACnD,CAAC;IACH,CAAC;IAED;;;;;OAKG;IACI,oBAAoB,CAAC,QAA4B;QACtD,IAAI,CAAC,QAAQ,CAAC,QAAQ,CAAC,mBAAmB,EAAE,GAAG,EAAE,CAAC,QAAQ,CAAC,CAAC;QAC5D,IAAI,IAAI,CAAC,SAAS,EAAE,CAAC;YACnB,IAAI,CAAC,SAAS,CAAC,oBAAoB,CAAC,QAAQ,CAAC,CAAC;QAChD,CAAC;IACH,CAAC;IAED;;;;;OAKG;IACI,sBAAsB,CAAC,OAA6B;QACzD,IAAI,CAAC,QAAQ,CAAC,QAAQ,CAAC,qBAAqB,EAAE,GAAG,EAAE,CAAC,OAAO,CAAC,CAAC;QAC7D,IAAI,IAAI,CAAC,SAAS,EAAE,CAAC;YACnB,IAAI,CAAC,SAAS,CAAC,sBAAsB,CAAC,OAAO,CAAC,CAAC;YAC/C,IAAI,CAAC,SAAS,CAAC,0BAA0B,CAAC,OAAO,CAAC,CAAC;QACrD,CAAC;IACH,CAAC;IAED;;;;;OAKG;IACI,wBAAwB,CAAC,OAA+B;QAC7D,IAAI,CAAC,QAAQ,CAAC,QAAQ,CAAC,uBAAuB,EAAE,GAAG,EAAE,CAAC,OAAO,CAAC,CAAC;QAC/D,IAAI,IAAI,CAAC,SAAS,EAAE,CAAC;YACnB,IAAI,CAAC,SAAS,CAAC,wBAAwB,CAAC,OAAO,CAAC,CAAC;QACnD,CAAC;IACH,CAAC;CACF;AA/SD,kBA+SC"}
+{"version":3,"file":"application.js","sourceRoot":"","sources":["../../../../brightchain-api-lib/src/lib/application.ts"],"names":[],"mappings":";;;;AAAA,kEAUsC;AACtC,wDAA4D;AAE5D,4EAI6C;AAC7C,oEAGyC;AACzC,uDAAuD;AACvD,4EAAkE;AAClE,8DAAgF;AAChF,2BAAkC;AAElC,iCAAqC;AACrC,+BAA+B;AAC/B,yDAAqD;AACrD,2FAAoF;AAEpF,qEAAkE;AAClE,+CAA4C;AAC5C,uCAA0C;AAC1C,uCAA0C;AAC1C,yCAAyE;AACzE,gFAA6E;AAE7E,8EAA2E;AAE3E;;GAEG;AACH,MAAa,GAA4B,SAAQ,kCAAoB;IAWnE,YAAY,WAA6B;QACvC,KAAK,CACH,WAAW,EACX,IAAA,uDAAwB,EAAC;YACvB,SAAS,EAAE,WAAW,CAAC,cAAc;YACrC,SAAS,EAAE,WAAW,CAAC,mBAAmB;YAC1C,SAAS,EAAE,WAAW,CAAC,sBAAsB;SAC9C,CAAC,CACH,CAAC;QAjBI,WAAM,GAAkB,IAAI,CAAC;QAC7B,gBAAW,GAAyB,IAAI,GAAG,EAAE,CAAC;QAE9C,cAAS,GAA0B,IAAI,CAAC;QACxC,gBAAW,GAAmC,IAAI,CAAC;QACnD,aAAQ,GAAkC,IAAI,CAAC;QAC/C,0BAAqB,GAAiC,IAAI,CAAC;QAC3D,gBAAW,GAAuB,IAAI,CAAC;QAW7C,IAAI,CAAC,UAAU,GAAG,IAAA,iBAAO,GAAE,CAAC;QAC5B,IAAI,CAAC,MAAM,GAAG,IAAI,CAAC;QACnB,IAAI,CAAC,UAAU,GAAG,2BAAgB,CAAC,WAAW,EAAE,CAAC;IACnD,CAAC;IAEe,KAAK,CAAC,KAAK;QACzB,MAAM,KAAK,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;QACxB,IAAI,CAAC;YACH,IAAI,IAAI,CAAC,MAAM,EAAE,CAAC;gBAChB,OAAO,CAAC,KAAK,CACX,kCAAkC,EAClC,gCAAgC,CACjC,CAAC;gBACF,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;YAClB,CAAC;YACD,MAAM,IAAI,CAAC,UAAU,CAAC,yBAAyB,EAAE,CAAC;YAElD,sBAAsB;YACtB,MAAM,UAAU,GAAG,qCAAiB,CAAC,iBAAiB,CAAC;gBACrD,SAAS,EAAE,2BAAS,CAAC,KAAK;aAC3B,CAAC,CAAC;YACH,MAAM,WAAW,GAAG,IAAI,6BAAW,CAAC,UAAU,CAAC,CAAC;YAChD,MAAM,WAAW,GAAG,IAAI,oCAAkB,EAAE,CAAC;YAC7C,MAAM,YAAY,GAAG,IAAI,8BAAY,EAAE,CAAC;YACxC,MAAM,YAAY,GAAG,IAAI,uBAAY,CAAM,IAAI,CAAC,CAAC;YACjD,MAAM,WAAW,GAAG,IAAI,sBAAW,CACjC,IAAI,EACJ,WAAW,EACX,WAAW,EACX,YAAY,EACZ,IAAI,CAAC,WAAW,CAAC,SAAS,CAC3B,CAAC;YAEF,oBAAoB;YACpB,IAAI,CAAC,QAAQ,CAAC,QAAQ,CAAC,aAAa,EAAE,GAAG,EAAE,CAAC,WAAW,CAAC,CAAC;YACzD,IAAI,CAAC,QAAQ,CAAC,QAAQ,CAAC,aAAa,EAAE,GAAG,EAAE,CAAC,WAAW,CAAC,CAAC;YACzD,IAAI,CAAC,QAAQ,CAAC,QAAQ,CAAC,cAAc,EAAE,GAAG,EAAE,CAAC,YAAY,CAAC,CAAC;YAC3D,IAAI,CAAC,QAAQ,CAAC,QAAQ,CAAC,cAAc,EAAE,GAAG,EAAE,CAAC,YAAY,CAAC,CAAC;YAC3D,IAAI,CAAC,QAAQ,CAAC,QAAQ,CAAC,MAAM,EAAE,GAAG,EAAE,CAAC,WAAW,CAAC,CAAC;YAElD,0DAA0D;YAC1D,8BAA8B;YAC9B,IAAI,CAAC,WAAW,GAAG,IAAI,iDAAuB,EAAE,CAAC;YACjD,IAAI,CAAC,QAAQ,CAAC,QAAQ,CAAC,aAAa,EAAE,GAAG,EAAE,CAAC,IAAI,CAAC,WAAW,CAAC,CAAC;YAE9D,yBAAW,CAAC,IAAI,CAAC,IAAI,CAAC,UAAU,CAAC,CAAC;YAClC,MAAM,SAAS,GAAG,IAAI,eAAS,CAAM,IAAI,CAAC,CAAC;YAC3C,IAAI,CAAC,SAAS,GAAG,SAAS,CAAC;YAC3B,MAAM,SAAS,GAAG,IAAI,eAAS,CAAM,SAAS,CAAC,CAAC;YAEhD,wEAAwE;YACxE,oBAAoB;YACpB,SAAS,CAAC,kBAAkB,CAAC,IAAI,CAAC,WAAW,CAAC,CAAC;YAE/C,SAAS,CAAC,IAAI,CAAC,IAAI,CAAC,UAAU,CAAC,CAAC;YAChC,IAAI,CAAC,UAAU,CAAC,GAAG,CACjB,CACE,GAA4B,EAC5B,GAAY,EACZ,GAAa,EACb,IAAkB,EAClB,EAAE;gBACF,MAAM,eAAe,GACnB,GAAG,YAAY,0BAAe;oBAC5B,CAAC,CAAC,GAAG;oBACL,CAAC,CAAC,IAAI,0BAAe,CACjB,IAAI,KAAK,CACP,GAAG,CAAC,OAAO;wBACT,IAAA,2BAAS,EAAC,oCAAkB,CAAC,sBAAsB,CAAC,CACvD,EACD,EAAE,KAAK,EAAE,GAAG,EAAE,CACf,CAAC;gBACR,IAAA,gCAAW,EACT,eAAe,EACf,GAAU,EACV,2CAAsB,EACtB,IAAI,CACL,CAAC;YACJ,CAAC,CACF,CAAC;YAEF,MAAM,YAAY,GAAoB,EAAE,CAAC;YACzC,YAAY,CAAC,IAAI,CACf,IAAI,OAAO,CAAO,CAAC,OAAO,EAAE,EAAE;gBAC5B,IAAI,CAAC,MAAM,GAAG,IAAI,CAAC,UAAU,CAAC,MAAM,CAClC,IAAI,CAAC,WAAW,CAAC,IAAI,EACrB,IAAI,CAAC,WAAW,CAAC,IAAI,EACrB,GAAG,EAAE;oBACH,IAAA,6BAAQ,EACN,IAAI,CAAC,WAAW,CAAC,KAAK,EACtB,KAAK,EACL,oBAAoB,IAAI,CAAC,WAAW,CAAC,IAAI,IAAI,IAAI,CAAC,WAAW,CAAC,IAAI,EAAE,CACrE,CAAC;oBAEF,yDAAyD;oBACzD,oBAAoB;oBACpB,IAAI,IAAI,CAAC,MAAM,EAAE,CAAC;wBAChB,IAAI,CAAC,QAAQ,GAAG,IAAI,+CAAsB,CAAC,IAAI,CAAC,MAAM,EAAE,KAAK,CAAC,CAAC;wBAC/D,IAAI,CAAC,QAAQ,CAAC,QAAQ,CAAC,UAAU,EAAE,GAAG,EAAE,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC;wBACxD,IAAA,6BAAQ,EACN,IAAI,CAAC,WAAW,CAAC,KAAK,EACtB,KAAK,EACL,wCAAwC,CACzC,CAAC;oBACJ,CAAC;oBAED,OAAO,EAAE,CAAC;gBACZ,CAAC,CACF,CAAC;YACJ,CAAC,CAAC,CACH,CAAC;YAEF,IAAI,IAAI,CAAC,WAAW,CAAC,gBAAgB,EAAE,CAAC;gBACtC,IAAI,CAAC;oBACH,MAAM,QAAQ,GAAG,IAAA,cAAO,EAAC,IAAI,CAAC,WAAW,CAAC,gBAAgB,GAAG,MAAM,CAAC,CAAC;oBACrE,MAAM,OAAO,GAAG,IAAA,cAAO,EACrB,IAAI,CAAC,WAAW,CAAC,gBAAgB,GAAG,UAAU,CAC/C,CAAC;oBACF,MAAM,OAAO,GAAG;wBACd,GAAG,EAAE,IAAA,iBAAY,EAAC,OAAO,CAAC;wBAC1B,IAAI,EAAE,IAAA,iBAAY,EAAC,QAAQ,CAAC;qBAC7B,CAAC;oBAEF,YAAY,CAAC,IAAI,CACf,IAAI,OAAO,CAAO,CAAC,OAAO,EAAE,EAAE;wBAC5B,IAAA,oBAAY,EAAC,OAAO,EAAE,IAAI,CAAC,UAAU,CAAC,CAAC,MAAM,CAC3C,IAAI,CAAC,WAAW,CAAC,YAAY,EAC7B,GAAG,EAAE;4BACH,OAAO,CAAC,GAAG,CACT,KAAK,IAAA,wCAAuB,EAC1B,mCAAkB,CAAC,YAAY,CAChC,cAAc,IAAI,CAAC,WAAW,CAAC,IAAI,IAClC,IAAI,CAAC,WAAW,CAAC,YACnB,EAAE,CACH,CAAC;4BACF,OAAO,EAAE,CAAC;wBACZ,CAAC,CACF,CAAC;oBACJ,CAAC,CAAC,CACH,CAAC;gBACJ,CAAC;gBAAC,OAAO,GAAG,EAAE,CAAC;oBACb,OAAO,CAAC,KAAK,CAAC,+BAA+B,EAAE,GAAG,CAAC,CAAC;gBACtD,CAAC;YACH,CAAC;YAED,MAAM,OAAO,CAAC,GAAG,CAAC,YAAY,CAAC,CAAC;YAEhC,iEAAiE;YACjE,IAAI,CAAC;gBACH,IAAI,IAAI,CAAC,WAAW,CAAC,IAAI,CAAC,OAAO,EAAE,CAAC;oBAClC,IAAI,CAAC,WAAW,GAAG,IAAI,gCAAW,CAAC,IAAI,CAAC,WAAW,CAAC,IAAI,CAAC,CAAC;oBAC1D,MAAM,IAAI,CAAC,WAAW,CAAC,UAAU,EAAE,CAAC;oBACpC,IAAI,CAAC,QAAQ,CAAC,QAAQ,CAAC,aAAa,EAAE,GAAG,EAAE,CAAC,IAAI,CAAC,WAAW,CAAC,CAAC;oBAC9D,IAAA,6BAAQ,EACN,IAAI,CAAC,WAAW,CAAC,KAAK,EACtB,KAAK,EACL,yCAAyC,CAC1C,CAAC;gBACJ,CAAC;qBAAM,CAAC;oBACN,IAAA,6BAAQ,EACN,IAAI,CAAC,WAAW,CAAC,KAAK,EACtB,KAAK,EACL,qCAAqC,CACtC,CAAC;gBACJ,CAAC;YACH,CAAC;YAAC,OAAO,OAAO,EAAE,CAAC;gBACjB,OAAO,CAAC,IAAI,CACV,0EAA0E,EAC1E,OAAO,CACR,CAAC;YACJ,CAAC;YAED,IAAI,CAAC,MAAM,GAAG,IAAI,CAAC;QACrB,CAAC;QAAC,OAAO,GAAG,EAAE,CAAC;YACb,OAAO,CAAC,KAAK,CAAC,kCAAkC,EAAE,GAAG,CAAC,CAAC;YACvD,IAAI,OAAO,CAAC,GAAG,CAAC,UAAU,CAAC,KAAK,MAAM,EAAE,CAAC;gBACvC,MAAM,GAAG,CAAC;YACZ,CAAC;YACD,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;QAClB,CAAC;IACH,CAAC;IAEe,KAAK,CAAC,IAAI;QACxB,oCAAoC;QACpC,IAAI,IAAI,CAAC,WAAW,EAAE,CAAC;YACrB,IAAA,6BAAQ,EAAC,IAAI,CAAC,WAAW,CAAC,KAAK,EAAE,KAAK,EAAE,gCAAgC,CAAC,CAAC;YAC1E,MAAM,IAAI,CAAC,WAAW,CAAC,QAAQ,EAAE,CAAC;YAClC,IAAI,CAAC,WAAW,GAAG,IAAI,CAAC;QAC1B,CAAC;QAED,+BAA+B;QAC/B,IAAI,IAAI,CAAC,QAAQ,EAAE,CAAC;YAClB,IAAA,6BAAQ,EAAC,IAAI,CAAC,WAAW,CAAC,KAAK,EAAE,KAAK,EAAE,+BAA+B,CAAC,CAAC;YACzE,MAAM,IAAI,OAAO,CAAO,CAAC,OAAO,EAAE,EAAE;gBAClC,IAAI,CAAC,QAAS,CAAC,KAAK,CAAC,GAAG,EAAE,CAAC,OAAO,EAAE,CAAC,CAAC;YACxC,CAAC,CAAC,CAAC;YACH,IAAI,CAAC,QAAQ,GAAG,IAAI,CAAC;QACvB,CAAC;QAED,IAAI,IAAI,CAAC,MAAM,EAAE,CAAC;YAChB,IAAA,6BAAQ,EACN,IAAI,CAAC,WAAW,CAAC,KAAK,EACtB,KAAK,EACL,iCAAiC,CAClC,CAAC;YACF,MAAM,IAAI,OAAO,CAAO,CAAC,OAAO,EAAE,MAAM,EAAE,EAAE;gBAC1C,IAAI,CAAC,MAAO,CAAC,mBAAmB,EAAE,EAAE,CAAC;gBACrC,IAAI,CAAC,MAAO,CAAC,KAAK,CAAC,CAAC,GAAG,EAAE,EAAE;oBACzB,IAAI,GAAG,EAAE,CAAC;wBACR,MAAM,CAAC,GAAG,CAAC,CAAC;oBACd,CAAC;yBAAM,CAAC;wBACN,OAAO,EAAE,CAAC;oBACZ,CAAC;gBACH,CAAC,CAAC,CAAC;YACL,CAAC,CAAC,CAAC;YACH,IAAI,CAAC,MAAM,GAAG,IAAI,CAAC;QACrB,CAAC;QAED,0BAA0B;QAC1B,IAAI,CAAC,WAAW,GAAG,IAAI,CAAC;QACxB,IAAI,CAAC,qBAAqB,GAAG,IAAI,CAAC;QAClC,IAAI,CAAC,SAAS,GAAG,IAAI,CAAC;QAEtB,MAAM,KAAK,CAAC,IAAI,EAAE,CAAC;QACnB,IAAI,CAAC,MAAM,GAAG,KAAK,CAAC;QACpB,IAAA,6BAAQ,EACN,IAAI,CAAC,WAAW,CAAC,KAAK,EACtB,KAAK,EACL,yDAAyD,CAC1D,CAAC;IACJ,CAAC;IAEM,aAAa,CAAc,IAAY;QAC5C,OAAO,IAAI,CAAC,WAAW,CAAC,GAAG,CAAC,IAAI,CAAM,CAAC;IACzC,CAAC;IAEM,aAAa,CAAC,IAAY,EAAE,UAAmB;QACpD,IAAI,CAAC,WAAW,CAAC,GAAG,CAAC,IAAI,EAAE,UAAU,CAAC,CAAC;IACzC,CAAC;IAED;;;OAGG;IACI,YAAY;QACjB,OAAO,IAAI,CAAC,SAAS,CAAC;IACxB,CAAC;IAED;;;OAGG;IACI,cAAc;QACnB,OAAO,IAAI,CAAC,WAAW,CAAC;IAC1B,CAAC;IAED;;;OAGG;IACI,kBAAkB;QACvB,OAAO,IAAI,CAAC,QAAQ,CAAC;IACvB,CAAC;IAED;;;;;OAKG;IACI,wBAAwB,CAAC,OAA8B;QAC5D,IAAI,CAAC,qBAAqB,GAAG,OAAO,CAAC;QACrC,IAAI,CAAC,QAAQ,CAAC,QAAQ,CAAC,uBAAuB,EAAE,GAAG,EAAE,CAAC,OAAO,CAAC,CAAC;QAC/D,IAAI,IAAI,CAAC,SAAS,EAAE,CAAC;YACnB,IAAI,CAAC,SAAS,CAAC,wBAAwB,CAAC,OAAO,CAAC,CAAC;QACnD,CAAC;IACH,CAAC;IAED;;;;;OAKG;IACI,oBAAoB,CAAC,QAA4B;QACtD,IAAI,CAAC,QAAQ,CAAC,QAAQ,CAAC,mBAAmB,EAAE,GAAG,EAAE,CAAC,QAAQ,CAAC,CAAC;QAC5D,IAAI,IAAI,CAAC,SAAS,EAAE,CAAC;YACnB,IAAI,CAAC,SAAS,CAAC,oBAAoB,CAAC,QAAQ,CAAC,CAAC;QAChD,CAAC;IACH,CAAC;IAED;;;;;OAKG;IACI,sBAAsB,CAAC,OAA6B;QACzD,IAAI,CAAC,QAAQ,CAAC,QAAQ,CAAC,qBAAqB,EAAE,GAAG,EAAE,CAAC,OAAO,CAAC,CAAC;QAC7D,IAAI,IAAI,CAAC,SAAS,EAAE,CAAC;YACnB,IAAI,CAAC,SAAS,CAAC,sBAAsB,CAAC,OAAO,CAAC,CAAC;YAC/C,IAAI,CAAC,SAAS,CAAC,0BAA0B,CAAC,OAAO,CAAC,CAAC;QACrD,CAAC;IACH,CAAC;IAED;;;;;OAKG;IACI,wBAAwB,CAAC,OAA+B;QAC7D,IAAI,CAAC,QAAQ,CAAC,QAAQ,CAAC,uBAAuB,EAAE,GAAG,EAAE,CAAC,OAAO,CAAC,CAAC;QAC/D,IAAI,IAAI,CAAC,SAAS,EAAE,CAAC;YACnB,IAAI,CAAC,SAAS,CAAC,wBAAwB,CAAC,OAAO,CAAC,CAAC;QACnD,CAAC;IACH,CAAC;CACF;AAjVD,kBAiVC"}

package/src/lib/auth/aclEnforcedAvailability.d.ts

@@ -0,0 +1,57 @@
+/**
+ * ACL-enforced wrappers for availability services (gossip, reconciliation, discovery).
+ *
+ * These lightweight wrappers use the same ACLProvider interface and PermissionDeniedError
+ * from the ACLEnforcedBlockStore, applying permission checks to gossip announcements,
+ * reconciliation exchanges, and discovery queries.
+ *
+ * @see Requirements 11.5, 11.6, 11.7
+ */
+import { ACLProvider } from './aclEnforcedBlockStore';
+/**
+ * Filters incoming gossip announcements by checking the announcing node's
+ * Write or Replicate permission in the target pool's ACL.
+ *
+ * @see Requirement 11.5
+ */
+export declare class ACLEnforcedGossipFilter {
+    private readonly aclProvider;
+    constructor(aclProvider: ACLProvider);
+    /**
+     * Check whether a gossip announcement from the given node should be accepted
+     * for the given pool. The announcing node must have Write or Replicate permission.
+     */
+    shouldAcceptAnnouncement(poolId: string, announcingNodeId: string): Promise<boolean>;
+}
+/**
+ * Wraps reconciliation to verify both the current node and the peer node
+ * have Replicate permission in the target pool's ACL.
+ *
+ * @see Requirement 11.6
+ */
+export declare class ACLEnforcedReconciliation {
+    private readonly aclProvider;
+    private readonly currentNodeId;
+    constructor(aclProvider: ACLProvider, currentNodeId: string);
+    /**
+     * Verify that both the current node and the peer have Replicate permission
+     * for the given pool. Throws PermissionDeniedError if either lacks permission.
+     */
+    verifyReconciliationPermission(poolId: string, peerNodeId: string): Promise<void>;
+}
+/**
+ * Wraps discovery to verify the querying node has Read permission
+ * in the target pool's ACL.
+ *
+ * @see Requirement 11.7
+ */
+export declare class ACLEnforcedDiscovery {
+    private readonly aclProvider;
+    constructor(aclProvider: ACLProvider);
+    /**
+     * Verify that the querying node has Read permission for the given pool.
+     * Throws PermissionDeniedError if the node lacks permission.
+     */
+    verifyDiscoveryPermission(poolId: string, queryingNodeId: string): Promise<void>;
+}
+//# sourceMappingURL=aclEnforcedAvailability.d.ts.map

package/src/lib/auth/aclEnforcedAvailability.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"aclEnforcedAvailability.d.ts","sourceRoot":"","sources":["../../../../../brightchain-api-lib/src/lib/auth/aclEnforcedAvailability.ts"],"names":[],"mappings":"AAAA;;;;;;;;GAQG;AAIH,OAAO,EAAE,WAAW,EAAyB,MAAM,yBAAyB,CAAC;AAE7E;;;;;GAKG;AACH,qBAAa,uBAAuB;IACtB,OAAO,CAAC,QAAQ,CAAC,WAAW;gBAAX,WAAW,EAAE,WAAW;IAErD;;;OAGG;IACG,wBAAwB,CAC5B,MAAM,EAAE,MAAM,EACd,gBAAgB,EAAE,MAAM,GACvB,OAAO,CAAC,OAAO,CAAC;CAOpB;AAED;;;;;GAKG;AACH,qBAAa,yBAAyB;IAElC,OAAO,CAAC,QAAQ,CAAC,WAAW;IAC5B,OAAO,CAAC,QAAQ,CAAC,aAAa;gBADb,WAAW,EAAE,WAAW,EACxB,aAAa,EAAE,MAAM;IAGxC;;;OAGG;IACG,8BAA8B,CAClC,MAAM,EAAE,MAAM,EACd,UAAU,EAAE,MAAM,GACjB,OAAO,CAAC,IAAI,CAAC;CAuBjB;AAED;;;;;GAKG;AACH,qBAAa,oBAAoB;IACnB,OAAO,CAAC,QAAQ,CAAC,WAAW;gBAAX,WAAW,EAAE,WAAW;IAErD;;;OAGG;IACG,yBAAyB,CAC7B,MAAM,EAAE,MAAM,EACd,cAAc,EAAE,MAAM,GACrB,OAAO,CAAC,IAAI,CAAC;CAYjB"}

package/src/lib/auth/aclEnforcedAvailability.js

@@ -0,0 +1,87 @@
+"use strict";
+/**
+ * ACL-enforced wrappers for availability services (gossip, reconciliation, discovery).
+ *
+ * These lightweight wrappers use the same ACLProvider interface and PermissionDeniedError
+ * from the ACLEnforcedBlockStore, applying permission checks to gossip announcements,
+ * reconciliation exchanges, and discovery queries.
+ *
+ * @see Requirements 11.5, 11.6, 11.7
+ */
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.ACLEnforcedDiscovery = exports.ACLEnforcedReconciliation = exports.ACLEnforcedGossipFilter = void 0;
+const brightchain_lib_1 = require("@brightchain/brightchain-lib");
+const aclEnforcedBlockStore_1 = require("./aclEnforcedBlockStore");
+/**
+ * Filters incoming gossip announcements by checking the announcing node's
+ * Write or Replicate permission in the target pool's ACL.
+ *
+ * @see Requirement 11.5
+ */
+class ACLEnforcedGossipFilter {
+    constructor(aclProvider) {
+        this.aclProvider = aclProvider;
+    }
+    /**
+     * Check whether a gossip announcement from the given node should be accepted
+     * for the given pool. The announcing node must have Write or Replicate permission.
+     */
+    async shouldAcceptAnnouncement(poolId, announcingNodeId) {
+        const acl = await this.aclProvider.getACL(poolId);
+        return ((0, brightchain_lib_1.hasPermission)(acl, announcingNodeId, brightchain_lib_1.PoolPermission.Write) ||
+            (0, brightchain_lib_1.hasPermission)(acl, announcingNodeId, brightchain_lib_1.PoolPermission.Replicate));
+    }
+}
+exports.ACLEnforcedGossipFilter = ACLEnforcedGossipFilter;
+/**
+ * Wraps reconciliation to verify both the current node and the peer node
+ * have Replicate permission in the target pool's ACL.
+ *
+ * @see Requirement 11.6
+ */
+class ACLEnforcedReconciliation {
+    constructor(aclProvider, currentNodeId) {
+        this.aclProvider = aclProvider;
+        this.currentNodeId = currentNodeId;
+    }
+    /**
+     * Verify that both the current node and the peer have Replicate permission
+     * for the given pool. Throws PermissionDeniedError if either lacks permission.
+     */
+    async verifyReconciliationPermission(poolId, peerNodeId) {
+        const acl = await this.aclProvider.getACL(poolId);
+        if (!(0, brightchain_lib_1.hasPermission)(acl, this.currentNodeId, brightchain_lib_1.PoolPermission.Replicate)) {
+            const member = acl.members.find((m) => m.nodeId === this.currentNodeId);
+            throw new aclEnforcedBlockStore_1.PermissionDeniedError(poolId, this.currentNodeId, brightchain_lib_1.PoolPermission.Replicate, member ? member.permissions : []);
+        }
+        if (!(0, brightchain_lib_1.hasPermission)(acl, peerNodeId, brightchain_lib_1.PoolPermission.Replicate)) {
+            const member = acl.members.find((m) => m.nodeId === peerNodeId);
+            throw new aclEnforcedBlockStore_1.PermissionDeniedError(poolId, peerNodeId, brightchain_lib_1.PoolPermission.Replicate, member ? member.permissions : []);
+        }
+    }
+}
+exports.ACLEnforcedReconciliation = ACLEnforcedReconciliation;
+/**
+ * Wraps discovery to verify the querying node has Read permission
+ * in the target pool's ACL.
+ *
+ * @see Requirement 11.7
+ */
+class ACLEnforcedDiscovery {
+    constructor(aclProvider) {
+        this.aclProvider = aclProvider;
+    }
+    /**
+     * Verify that the querying node has Read permission for the given pool.
+     * Throws PermissionDeniedError if the node lacks permission.
+     */
+    async verifyDiscoveryPermission(poolId, queryingNodeId) {
+        const acl = await this.aclProvider.getACL(poolId);
+        if (!(0, brightchain_lib_1.hasPermission)(acl, queryingNodeId, brightchain_lib_1.PoolPermission.Read)) {
+            const member = acl.members.find((m) => m.nodeId === queryingNodeId);
+            throw new aclEnforcedBlockStore_1.PermissionDeniedError(poolId, queryingNodeId, brightchain_lib_1.PoolPermission.Read, member ? member.permissions : []);
+        }
+    }
+}
+exports.ACLEnforcedDiscovery = ACLEnforcedDiscovery;
+//# sourceMappingURL=aclEnforcedAvailability.js.map

package/src/lib/auth/aclEnforcedAvailability.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"aclEnforcedAvailability.js","sourceRoot":"","sources":["../../../../../brightchain-api-lib/src/lib/auth/aclEnforcedAvailability.ts"],"names":[],"mappings":";AAAA;;;;;;;;GAQG;;;AAEH,kEAA6E;AAE7E,mEAA6E;AAE7E;;;;;GAKG;AACH,MAAa,uBAAuB;IAClC,YAA6B,WAAwB;QAAxB,gBAAW,GAAX,WAAW,CAAa;IAAG,CAAC;IAEzD;;;OAGG;IACH,KAAK,CAAC,wBAAwB,CAC5B,MAAc,EACd,gBAAwB;QAExB,MAAM,GAAG,GAAG,MAAM,IAAI,CAAC,WAAW,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC;QAClD,OAAO,CACL,IAAA,+BAAa,EAAC,GAAG,EAAE,gBAAgB,EAAE,gCAAc,CAAC,KAAK,CAAC;YAC1D,IAAA,+BAAa,EAAC,GAAG,EAAE,gBAAgB,EAAE,gCAAc,CAAC,SAAS,CAAC,CAC/D,CAAC;IACJ,CAAC;CACF;AAjBD,0DAiBC;AAED;;;;;GAKG;AACH,MAAa,yBAAyB;IACpC,YACmB,WAAwB,EACxB,aAAqB;QADrB,gBAAW,GAAX,WAAW,CAAa;QACxB,kBAAa,GAAb,aAAa,CAAQ;IACrC,CAAC;IAEJ;;;OAGG;IACH,KAAK,CAAC,8BAA8B,CAClC,MAAc,EACd,UAAkB;QAElB,MAAM,GAAG,GAAG,MAAM,IAAI,CAAC,WAAW,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC;QAElD,IAAI,CAAC,IAAA,+BAAa,EAAC,GAAG,EAAE,IAAI,CAAC,aAAa,EAAE,gCAAc,CAAC,SAAS,CAAC,EAAE,CAAC;YACtE,MAAM,MAAM,GAAG,GAAG,CAAC,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,MAAM,KAAK,IAAI,CAAC,aAAa,CAAC,CAAC;YACxE,MAAM,IAAI,6CAAqB,CAC7B,MAAM,EACN,IAAI,CAAC,aAAa,EAClB,gCAAc,CAAC,SAAS,EACxB,MAAM,CAAC,CAAC,CAAC,MAAM,CAAC,WAAW,CAAC,CAAC,CAAC,EAAE,CACjC,CAAC;QACJ,CAAC;QAED,IAAI,CAAC,IAAA,+BAAa,EAAC,GAAG,EAAE,UAAU,EAAE,gCAAc,CAAC,SAAS,CAAC,EAAE,CAAC;YAC9D,MAAM,MAAM,GAAG,GAAG,CAAC,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,MAAM,KAAK,UAAU,CAAC,CAAC;YAChE,MAAM,IAAI,6CAAqB,CAC7B,MAAM,EACN,UAAU,EACV,gCAAc,CAAC,SAAS,EACxB,MAAM,CAAC,CAAC,CAAC,MAAM,CAAC,WAAW,CAAC,CAAC,CAAC,EAAE,CACjC,CAAC;QACJ,CAAC;IACH,CAAC;CACF;AApCD,8DAoCC;AAED;;;;;GAKG;AACH,MAAa,oBAAoB;IAC/B,YAA6B,WAAwB;QAAxB,gBAAW,GAAX,WAAW,CAAa;IAAG,CAAC;IAEzD;;;OAGG;IACH,KAAK,CAAC,yBAAyB,CAC7B,MAAc,EACd,cAAsB;QAEtB,MAAM,GAAG,GAAG,MAAM,IAAI,CAAC,WAAW,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC;QAClD,IAAI,CAAC,IAAA,+BAAa,EAAC,GAAG,EAAE,cAAc,EAAE,gCAAc,CAAC,IAAI,CAAC,EAAE,CAAC;YAC7D,MAAM,MAAM,GAAG,GAAG,CAAC,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,MAAM,KAAK,cAAc,CAAC,CAAC;YACpE,MAAM,IAAI,6CAAqB,CAC7B,MAAM,EACN,cAAc,EACd,gCAAc,CAAC,IAAI,EACnB,MAAM,CAAC,CAAC,CAAC,MAAM,CAAC,WAAW,CAAC,CAAC,CAAC,EAAE,CACjC,CAAC;QACJ,CAAC;IACH,CAAC;CACF;AAtBD,oDAsBC"}

package/src/lib/auth/aclEnforcedBlockStore.d.ts

@@ -0,0 +1,66 @@
+/**
+ * ACL-enforced block store wrapper.
+ *
+ * Wraps an IPooledBlockStore and checks ACL permissions before delegating
+ * pool-scoped operations (get, put, delete). This is a lightweight middleware
+ * pattern — it only wraps the key operations that need ACL checks.
+ *
+ * @see Requirements 11.4, 10.3, 10.4
+ */
+import type { BlockStoreOptions, IPoolACL, IPooledBlockStore, PoolId } from '@brightchain/brightchain-lib';
+import { PoolPermission } from '@brightchain/brightchain-lib';
+/**
+ * Error thrown when a node lacks the required permission for a pool operation.
+ * Includes the required permission, actual permissions, pool ID, and node ID
+ * for diagnostic purposes.
+ *
+ * @see Requirement 10.6
+ */
+export declare class PermissionDeniedError extends Error {
+    readonly poolId: string;
+    readonly nodeId: string;
+    readonly requiredPermission: PoolPermission;
+    readonly actualPermissions: PoolPermission[];
+    constructor(poolId: string, nodeId: string, requiredPermission: PoolPermission, actualPermissions: PoolPermission[]);
+}
+/**
+ * Provider interface for retrieving the ACL for a given pool.
+ * Implementations may load ACLs from the block store, cache, or any other source.
+ */
+export interface ACLProvider {
+    getACL(poolId: string): Promise<IPoolACL<string>>;
+}
+/**
+ * Lightweight wrapper around an IPooledBlockStore that enforces ACL permissions
+ * before delegating pool-scoped operations.
+ *
+ * - getFromPool: requires Read permission
+ * - putInPool: requires Write permission
+ * - deleteFromPool: requires Write permission
+ *
+ * @see Requirements 11.4, 10.3, 10.4
+ */
+export declare class ACLEnforcedBlockStore {
+    private readonly inner;
+    private readonly aclProvider;
+    private readonly currentNodeId;
+    constructor(inner: IPooledBlockStore, aclProvider: ACLProvider, currentNodeId: string);
+    /**
+     * Retrieve a block from a pool after verifying Read permission.
+     */
+    getFromPool(pool: PoolId, hash: string): Promise<Uint8Array>;
+    /**
+     * Store a block in a pool after verifying Write permission.
+     */
+    putInPool(pool: PoolId, data: Uint8Array, options?: BlockStoreOptions): Promise<string>;
+    /**
+     * Delete a block from a pool after verifying Write permission.
+     */
+    deleteFromPool(pool: PoolId, hash: string): Promise<void>;
+    /**
+     * Check that the current node has the required permission for the given pool.
+     * Throws PermissionDeniedError if the permission check fails.
+     */
+    private checkPermission;
+}
+//# sourceMappingURL=aclEnforcedBlockStore.d.ts.map

package/src/lib/auth/aclEnforcedBlockStore.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"aclEnforcedBlockStore.d.ts","sourceRoot":"","sources":["../../../../../brightchain-api-lib/src/lib/auth/aclEnforcedBlockStore.ts"],"names":[],"mappings":"AAAA;;;;;;;;GAQG;AAEH,OAAO,KAAK,EACV,iBAAiB,EACjB,QAAQ,EACR,iBAAiB,EACjB,MAAM,EACP,MAAM,8BAA8B,CAAC;AACtC,OAAO,EAAiB,cAAc,EAAE,MAAM,8BAA8B,CAAC;AAE7E;;;;;;GAMG;AACH,qBAAa,qBAAsB,SAAQ,KAAK;aAE5B,MAAM,EAAE,MAAM;aACd,MAAM,EAAE,MAAM;aACd,kBAAkB,EAAE,cAAc;aAClC,iBAAiB,EAAE,cAAc,EAAE;gBAHnC,MAAM,EAAE,MAAM,EACd,MAAM,EAAE,MAAM,EACd,kBAAkB,EAAE,cAAc,EAClC,iBAAiB,EAAE,cAAc,EAAE;CAOtD;AAED;;;GAGG;AACH,MAAM,WAAW,WAAW;IAC1B,MAAM,CAAC,MAAM,EAAE,MAAM,GAAG,OAAO,CAAC,QAAQ,CAAC,MAAM,CAAC,CAAC,CAAC;CACnD;AAED;;;;;;;;;GASG;AACH,qBAAa,qBAAqB;IAE9B,OAAO,CAAC,QAAQ,CAAC,KAAK;IACtB,OAAO,CAAC,QAAQ,CAAC,WAAW;IAC5B,OAAO,CAAC,QAAQ,CAAC,aAAa;gBAFb,KAAK,EAAE,iBAAiB,EACxB,WAAW,EAAE,WAAW,EACxB,aAAa,EAAE,MAAM;IAGxC;;OAEG;IACG,WAAW,CAAC,IAAI,EAAE,MAAM,EAAE,IAAI,EAAE,MAAM,GAAG,OAAO,CAAC,UAAU,CAAC;IAKlE;;OAEG;IACG,SAAS,CACb,IAAI,EAAE,MAAM,EACZ,IAAI,EAAE,UAAU,EAChB,OAAO,CAAC,EAAE,iBAAiB,GAC1B,OAAO,CAAC,MAAM,CAAC;IAKlB;;OAEG;IACG,cAAc,CAAC,IAAI,EAAE,MAAM,EAAE,IAAI,EAAE,MAAM,GAAG,OAAO,CAAC,IAAI,CAAC;IAK/D;;;OAGG;YACW,eAAe;CAgB9B"}

package/src/lib/auth/aclEnforcedBlockStore.js

@@ -0,0 +1,83 @@
+"use strict";
+/**
+ * ACL-enforced block store wrapper.
+ *
+ * Wraps an IPooledBlockStore and checks ACL permissions before delegating
+ * pool-scoped operations (get, put, delete). This is a lightweight middleware
+ * pattern — it only wraps the key operations that need ACL checks.
+ *
+ * @see Requirements 11.4, 10.3, 10.4
+ */
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.ACLEnforcedBlockStore = exports.PermissionDeniedError = void 0;
+const brightchain_lib_1 = require("@brightchain/brightchain-lib");
+/**
+ * Error thrown when a node lacks the required permission for a pool operation.
+ * Includes the required permission, actual permissions, pool ID, and node ID
+ * for diagnostic purposes.
+ *
+ * @see Requirement 10.6
+ */
+class PermissionDeniedError extends Error {
+    constructor(poolId, nodeId, requiredPermission, actualPermissions) {
+        super(`Permission denied: ${requiredPermission} required for pool ${poolId}, node ${nodeId} has [${actualPermissions.join(', ')}]`);
+        this.poolId = poolId;
+        this.nodeId = nodeId;
+        this.requiredPermission = requiredPermission;
+        this.actualPermissions = actualPermissions;
+        this.name = 'PermissionDeniedError';
+    }
+}
+exports.PermissionDeniedError = PermissionDeniedError;
+/**
+ * Lightweight wrapper around an IPooledBlockStore that enforces ACL permissions
+ * before delegating pool-scoped operations.
+ *
+ * - getFromPool: requires Read permission
+ * - putInPool: requires Write permission
+ * - deleteFromPool: requires Write permission
+ *
+ * @see Requirements 11.4, 10.3, 10.4
+ */
+class ACLEnforcedBlockStore {
+    constructor(inner, aclProvider, currentNodeId) {
+        this.inner = inner;
+        this.aclProvider = aclProvider;
+        this.currentNodeId = currentNodeId;
+    }
+    /**
+     * Retrieve a block from a pool after verifying Read permission.
+     */
+    async getFromPool(pool, hash) {
+        await this.checkPermission(pool, brightchain_lib_1.PoolPermission.Read);
+        return this.inner.getFromPool(pool, hash);
+    }
+    /**
+     * Store a block in a pool after verifying Write permission.
+     */
+    async putInPool(pool, data, options) {
+        await this.checkPermission(pool, brightchain_lib_1.PoolPermission.Write);
+        return this.inner.putInPool(pool, data, options);
+    }
+    /**
+     * Delete a block from a pool after verifying Write permission.
+     */
+    async deleteFromPool(pool, hash) {
+        await this.checkPermission(pool, brightchain_lib_1.PoolPermission.Write);
+        return this.inner.deleteFromPool(pool, hash);
+    }
+    /**
+     * Check that the current node has the required permission for the given pool.
+     * Throws PermissionDeniedError if the permission check fails.
+     */
+    async checkPermission(poolId, required) {
+        const acl = await this.aclProvider.getACL(poolId);
+        if (!(0, brightchain_lib_1.hasPermission)(acl, this.currentNodeId, required)) {
+            const member = acl.members.find((m) => m.nodeId === this.currentNodeId);
+            const actual = member ? member.permissions : [];
+            throw new PermissionDeniedError(poolId, this.currentNodeId, required, actual);
+        }
+    }
+}
+exports.ACLEnforcedBlockStore = ACLEnforcedBlockStore;
+//# sourceMappingURL=aclEnforcedBlockStore.js.map

package/src/lib/auth/aclEnforcedBlockStore.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"aclEnforcedBlockStore.js","sourceRoot":"","sources":["../../../../../brightchain-api-lib/src/lib/auth/aclEnforcedBlockStore.ts"],"names":[],"mappings":";AAAA;;;;;;;;GAQG;;;AAQH,kEAA6E;AAE7E;;;;;;GAMG;AACH,MAAa,qBAAsB,SAAQ,KAAK;IAC9C,YACkB,MAAc,EACd,MAAc,EACd,kBAAkC,EAClC,iBAAmC;QAEnD,KAAK,CACH,sBAAsB,kBAAkB,sBAAsB,MAAM,UAAU,MAAM,SAAS,iBAAiB,CAAC,IAAI,CAAC,IAAI,CAAC,GAAG,CAC7H,CAAC;QAPc,WAAM,GAAN,MAAM,CAAQ;QACd,WAAM,GAAN,MAAM,CAAQ;QACd,uBAAkB,GAAlB,kBAAkB,CAAgB;QAClC,sBAAiB,GAAjB,iBAAiB,CAAkB;QAKnD,IAAI,CAAC,IAAI,GAAG,uBAAuB,CAAC;IACtC,CAAC;CACF;AAZD,sDAYC;AAUD;;;;;;;;;GASG;AACH,MAAa,qBAAqB;IAChC,YACmB,KAAwB,EACxB,WAAwB,EACxB,aAAqB;QAFrB,UAAK,GAAL,KAAK,CAAmB;QACxB,gBAAW,GAAX,WAAW,CAAa;QACxB,kBAAa,GAAb,aAAa,CAAQ;IACrC,CAAC;IAEJ;;OAEG;IACH,KAAK,CAAC,WAAW,CAAC,IAAY,EAAE,IAAY;QAC1C,MAAM,IAAI,CAAC,eAAe,CAAC,IAAI,EAAE,gCAAc,CAAC,IAAI,CAAC,CAAC;QACtD,OAAO,IAAI,CAAC,KAAK,CAAC,WAAW,CAAC,IAAI,EAAE,IAAI,CAAC,CAAC;IAC5C,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,SAAS,CACb,IAAY,EACZ,IAAgB,EAChB,OAA2B;QAE3B,MAAM,IAAI,CAAC,eAAe,CAAC,IAAI,EAAE,gCAAc,CAAC,KAAK,CAAC,CAAC;QACvD,OAAO,IAAI,CAAC,KAAK,CAAC,SAAS,CAAC,IAAI,EAAE,IAAI,EAAE,OAAO,CAAC,CAAC;IACnD,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,cAAc,CAAC,IAAY,EAAE,IAAY;QAC7C,MAAM,IAAI,CAAC,eAAe,CAAC,IAAI,EAAE,gCAAc,CAAC,KAAK,CAAC,CAAC;QACvD,OAAO,IAAI,CAAC,KAAK,CAAC,cAAc,CAAC,IAAI,EAAE,IAAI,CAAC,CAAC;IAC/C,CAAC;IAED;;;OAGG;IACK,KAAK,CAAC,eAAe,CAC3B,MAAc,EACd,QAAwB;QAExB,MAAM,GAAG,GAAG,MAAM,IAAI,CAAC,WAAW,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC;QAClD,IAAI,CAAC,IAAA,+BAAa,EAAC,GAAG,EAAE,IAAI,CAAC,aAAa,EAAE,QAAQ,CAAC,EAAE,CAAC;YACtD,MAAM,MAAM,GAAG,GAAG,CAAC,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,MAAM,KAAK,IAAI,CAAC,aAAa,CAAC,CAAC;YACxE,MAAM,MAAM,GAAG,MAAM,CAAC,CAAC,CAAC,MAAM,CAAC,WAAW,CAAC,CAAC,CAAC,EAAE,CAAC;YAChD,MAAM,IAAI,qBAAqB,CAC7B,MAAM,EACN,IAAI,CAAC,aAAa,EAClB,QAAQ,EACR,MAAM,CACP,CAAC;QACJ,CAAC;IACH,CAAC;CACF;AAvDD,sDAuDC"}

package/src/lib/auth/ecdsaNodeAuthenticator.d.ts

@@ -0,0 +1,46 @@
+/**
+ * ECDSA Node Authenticator - Node.js implementation of INodeAuthenticator.
+ *
+ * Uses Node.js `crypto` module for all cryptographic operations:
+ * - Challenge: 32 random bytes via crypto.randomBytes
+ * - Sign/verify: ECDSA with secp256k1 curve (via JWK key import)
+ * - Node ID derivation: SHA-256 hash of public key (hex string)
+ *
+ * @see Requirements 9.1, 9.2, 9.3, 9.5
+ */
+import type { INodeAuthenticator } from '@brightchain/brightchain-lib';
+/**
+ * Optional logger for authentication failures.
+ * Requirement 9.3: Failed authentication attempts SHALL be logged
+ * with the requesting node ID and operation type.
+ */
+export interface AuthFailureLogger {
+    logAuthFailure(nodeId: string, operationType: string): void;
+}
+export declare class ECDSANodeAuthenticator implements INodeAuthenticator {
+    private readonly logger?;
+    constructor(logger?: AuthFailureLogger);
+    /** Generate a 32-byte random challenge nonce. */
+    createChallenge(): Uint8Array;
+    /**
+     * Sign a challenge with the node's ECDSA private key (secp256k1).
+     * The private key must be a raw 32-byte secp256k1 private key.
+     * Returns a DER-encoded ECDSA signature.
+     */
+    signChallenge(challenge: Uint8Array, privateKey: Uint8Array): Promise<Uint8Array>;
+    /**
+     * Verify an ECDSA signature against a public key (secp256k1).
+     * Accepts uncompressed (65 bytes) or compressed (33 bytes) keys.
+     * Logs authentication failures when a logger is provided (Requirement 9.3).
+     */
+    verifySignature(challenge: Uint8Array, signature: Uint8Array, publicKey: Uint8Array): Promise<boolean>;
+    /** Derive a node ID from a public key via SHA-256 hash (hex). */
+    deriveNodeId(publicKey: Uint8Array): string;
+    /** Convert compressed (33-byte) public key to uncompressed (65-byte). */
+    private ensureUncompressed;
+    /** Build a JWK for a secp256k1 private key. */
+    private buildPrivateJWK;
+    /** Build a JWK for a secp256k1 public key (uncompressed 65-byte input). */
+    private buildPublicJWK;
+}
+//# sourceMappingURL=ecdsaNodeAuthenticator.d.ts.map

package/src/lib/auth/ecdsaNodeAuthenticator.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"ecdsaNodeAuthenticator.d.ts","sourceRoot":"","sources":["../../../../../brightchain-api-lib/src/lib/auth/ecdsaNodeAuthenticator.ts"],"names":[],"mappings":"AAAA;;;;;;;;;GASG;AAEH,OAAO,KAAK,EAAE,kBAAkB,EAAE,MAAM,8BAA8B,CAAC;AAGvE;;;;GAIG;AACH,MAAM,WAAW,iBAAiB;IAChC,cAAc,CAAC,MAAM,EAAE,MAAM,EAAE,aAAa,EAAE,MAAM,GAAG,IAAI,CAAC;CAC7D;AAED,qBAAa,sBAAuB,YAAW,kBAAkB;IAC/D,OAAO,CAAC,QAAQ,CAAC,MAAM,CAAC,CAAoB;gBAEhC,MAAM,CAAC,EAAE,iBAAiB;IAItC,iDAAiD;IACjD,eAAe,IAAI,UAAU;IAI7B;;;;OAIG;IACG,aAAa,CACjB,SAAS,EAAE,UAAU,EACrB,UAAU,EAAE,UAAU,GACrB,OAAO,CAAC,UAAU,CAAC;IActB;;;;OAIG;IACG,eAAe,CACnB,SAAS,EAAE,UAAU,EACrB,SAAS,EAAE,UAAU,EACrB,SAAS,EAAE,UAAU,GACpB,OAAO,CAAC,OAAO,CAAC;IA2BnB,iEAAiE;IACjE,YAAY,CAAC,SAAS,EAAE,UAAU,GAAG,MAAM;IAO3C,yEAAyE;IACzE,OAAO,CAAC,kBAAkB;IAqB1B,+CAA+C;IAC/C,OAAO,CAAC,eAAe;IAevB,2EAA2E;IAC3E,OAAO,CAAC,cAAc;CAUvB"}