@copilotkit/runtime 1.55.0-next.8 → 1.55.0

package/dist/v2/runtime/core/fetch-cors.cjs

@@ -0,0 +1,72 @@
+require("reflect-metadata");
+
+//#region src/v2/runtime/core/fetch-cors.ts
+const DEFAULT_METHODS = [
+	"GET",
+	"HEAD",
+	"PUT",
+	"POST",
+	"DELETE",
+	"PATCH",
+	"OPTIONS"
+];
+const DEFAULT_HEADERS = ["*"];
+function resolveOrigin(config, requestOrigin) {
+	const { origin } = config;
+	if (!origin) return "*";
+	if (typeof origin === "string") return origin;
+	if (Array.isArray(origin)) {
+		if (!requestOrigin) return null;
+		return origin.includes(requestOrigin) ? requestOrigin : null;
+	}
+	if (typeof origin === "function") return requestOrigin ? origin(requestOrigin) : null;
+	return "*";
+}
+function setCorsHeaders(headers, config, requestOrigin) {
+	let allowedOrigin = resolveOrigin(config, requestOrigin);
+	if (!allowedOrigin) return;
+	if (config.credentials && allowedOrigin === "*") if (requestOrigin) allowedOrigin = requestOrigin;
+	else return;
+	headers.set("Access-Control-Allow-Origin", allowedOrigin);
+	if (config.credentials) headers.set("Access-Control-Allow-Credentials", "true");
+	if (config.exposeHeaders?.length) headers.set("Access-Control-Expose-Headers", config.exposeHeaders.join(", "));
+	if (allowedOrigin !== "*") headers.append("Vary", "Origin");
+}
+/**
+* Handle CORS preflight (OPTIONS) requests.
+* Returns a 204 Response if it's a preflight, or null if not.
+*/
+function handleCors(request, config) {
+	if (request.method !== "OPTIONS") return null;
+	const requestOrigin = request.headers.get("origin");
+	const headers = new Headers();
+	setCorsHeaders(headers, config, requestOrigin);
+	const methods = config.allowMethods ?? DEFAULT_METHODS;
+	headers.set("Access-Control-Allow-Methods", methods.join(", "));
+	const allowHeaders = config.allowHeaders ?? DEFAULT_HEADERS;
+	headers.set("Access-Control-Allow-Headers", allowHeaders.join(", "));
+	if (config.maxAge != null) headers.set("Access-Control-Max-Age", String(config.maxAge));
+	headers.append("Vary", "Access-Control-Request-Headers");
+	headers.append("Vary", "Access-Control-Request-Method");
+	return new Response(null, {
+		status: 204,
+		headers
+	});
+}
+/**
+* Add CORS headers to an existing response.
+*/
+function addCorsHeaders(response, config, requestOrigin) {
+	const headers = new Headers(response.headers);
+	setCorsHeaders(headers, config, requestOrigin);
+	return new Response(response.body, {
+		status: response.status,
+		statusText: response.statusText,
+		headers
+	});
+}
+
+//#endregion
+exports.addCorsHeaders = addCorsHeaders;
+exports.handleCors = handleCors;
+//# sourceMappingURL=fetch-cors.cjs.map

package/dist/v2/runtime/core/fetch-cors.cjs.map

@@ -0,0 +1 @@
+{"version":3,"file":"fetch-cors.cjs","names":[],"sources":["../../../../src/v2/runtime/core/fetch-cors.ts"],"sourcesContent":["/**\n * Built-in CORS utility for framework-agnostic CopilotKit runtime handler.\n *\n * This is a lightweight CORS implementation for web-standard\n * Request/Response. It's optional — if your framework already handles CORS,\n * pass `cors: false` or omit it.\n */\n\nexport interface CopilotCorsConfig {\n  origin?: string | string[] | ((origin: string) => string | null);\n  credentials?: boolean;\n  allowMethods?: string[];\n  allowHeaders?: string[];\n  exposeHeaders?: string[];\n  maxAge?: number;\n}\n\nconst DEFAULT_METHODS = [\n  \"GET\",\n  \"HEAD\",\n  \"PUT\",\n  \"POST\",\n  \"DELETE\",\n  \"PATCH\",\n  \"OPTIONS\",\n];\nconst DEFAULT_HEADERS = [\"*\"];\n\nfunction resolveOrigin(\n  config: CopilotCorsConfig,\n  requestOrigin: string | null,\n): string | null {\n  const { origin } = config;\n  if (!origin) return \"*\";\n\n  if (typeof origin === \"string\") return origin;\n\n  if (Array.isArray(origin)) {\n    if (!requestOrigin) return null;\n    return origin.includes(requestOrigin) ? requestOrigin : null;\n  }\n\n  if (typeof origin === \"function\") {\n    return requestOrigin ? origin(requestOrigin) : null;\n  }\n\n  return \"*\";\n}\n\nfunction setCorsHeaders(\n  headers: Headers,\n  config: CopilotCorsConfig,\n  requestOrigin: string | null,\n): void {\n  let allowedOrigin = resolveOrigin(config, requestOrigin);\n  if (!allowedOrigin) return;\n\n  // Per the Fetch spec, Access-Control-Allow-Origin: * combined with\n  // Access-Control-Allow-Credentials: true causes browsers to reject the\n  // response. Auto-resolve wildcard to the request origin when credentials\n  // are enabled; if there is no request origin, skip CORS entirely.\n  if (config.credentials && allowedOrigin === \"*\") {\n    if (requestOrigin) {\n      allowedOrigin = requestOrigin;\n    } else {\n      return;\n    }\n  }\n\n  headers.set(\"Access-Control-Allow-Origin\", allowedOrigin);\n\n  if (config.credentials) {\n    headers.set(\"Access-Control-Allow-Credentials\", \"true\");\n  }\n\n  if (config.exposeHeaders?.length) {\n    headers.set(\n      \"Access-Control-Expose-Headers\",\n      config.exposeHeaders.join(\", \"),\n    );\n  }\n\n  // Vary on Origin when it's not a fixed wildcard\n  if (allowedOrigin !== \"*\") {\n    headers.append(\"Vary\", \"Origin\");\n  }\n}\n\n/**\n * Handle CORS preflight (OPTIONS) requests.\n * Returns a 204 Response if it's a preflight, or null if not.\n */\nexport function handleCors(\n  request: Request,\n  config: CopilotCorsConfig,\n): Response | null {\n  if (request.method !== \"OPTIONS\") return null;\n\n  const requestOrigin = request.headers.get(\"origin\");\n  const headers = new Headers();\n\n  setCorsHeaders(headers, config, requestOrigin);\n\n  const methods = config.allowMethods ?? DEFAULT_METHODS;\n  headers.set(\"Access-Control-Allow-Methods\", methods.join(\", \"));\n\n  const allowHeaders = config.allowHeaders ?? DEFAULT_HEADERS;\n  headers.set(\"Access-Control-Allow-Headers\", allowHeaders.join(\", \"));\n\n  if (config.maxAge != null) {\n    headers.set(\"Access-Control-Max-Age\", String(config.maxAge));\n  }\n\n  // Vary headers for correct CDN caching of preflight responses\n  headers.append(\"Vary\", \"Access-Control-Request-Headers\");\n  headers.append(\"Vary\", \"Access-Control-Request-Method\");\n\n  return new Response(null, { status: 204, headers });\n}\n\n/**\n * Add CORS headers to an existing response.\n */\nexport function addCorsHeaders(\n  response: Response,\n  config: CopilotCorsConfig,\n  requestOrigin: string | null,\n): Response {\n  const headers = new Headers(response.headers);\n  setCorsHeaders(headers, config, requestOrigin);\n  return new Response(response.body, {\n    status: response.status,\n    statusText: response.statusText,\n    headers,\n  });\n}\n"],"mappings":";;;AAiBA,MAAM,kBAAkB;CACtB;CACA;CACA;CACA;CACA;CACA;CACA;CACD;AACD,MAAM,kBAAkB,CAAC,IAAI;AAE7B,SAAS,cACP,QACA,eACe;CACf,MAAM,EAAE,WAAW;AACnB,KAAI,CAAC,OAAQ,QAAO;AAEpB,KAAI,OAAO,WAAW,SAAU,QAAO;AAEvC,KAAI,MAAM,QAAQ,OAAO,EAAE;AACzB,MAAI,CAAC,cAAe,QAAO;AAC3B,SAAO,OAAO,SAAS,cAAc,GAAG,gBAAgB;;AAG1D,KAAI,OAAO,WAAW,WACpB,QAAO,gBAAgB,OAAO,cAAc,GAAG;AAGjD,QAAO;;AAGT,SAAS,eACP,SACA,QACA,eACM;CACN,IAAI,gBAAgB,cAAc,QAAQ,cAAc;AACxD,KAAI,CAAC,cAAe;AAMpB,KAAI,OAAO,eAAe,kBAAkB,IAC1C,KAAI,cACF,iBAAgB;KAEhB;AAIJ,SAAQ,IAAI,+BAA+B,cAAc;AAEzD,KAAI,OAAO,YACT,SAAQ,IAAI,oCAAoC,OAAO;AAGzD,KAAI,OAAO,eAAe,OACxB,SAAQ,IACN,iCACA,OAAO,cAAc,KAAK,KAAK,CAChC;AAIH,KAAI,kBAAkB,IACpB,SAAQ,OAAO,QAAQ,SAAS;;;;;;AAQpC,SAAgB,WACd,SACA,QACiB;AACjB,KAAI,QAAQ,WAAW,UAAW,QAAO;CAEzC,MAAM,gBAAgB,QAAQ,QAAQ,IAAI,SAAS;CACnD,MAAM,UAAU,IAAI,SAAS;AAE7B,gBAAe,SAAS,QAAQ,cAAc;CAE9C,MAAM,UAAU,OAAO,gBAAgB;AACvC,SAAQ,IAAI,gCAAgC,QAAQ,KAAK,KAAK,CAAC;CAE/D,MAAM,eAAe,OAAO,gBAAgB;AAC5C,SAAQ,IAAI,gCAAgC,aAAa,KAAK,KAAK,CAAC;AAEpE,KAAI,OAAO,UAAU,KACnB,SAAQ,IAAI,0BAA0B,OAAO,OAAO,OAAO,CAAC;AAI9D,SAAQ,OAAO,QAAQ,iCAAiC;AACxD,SAAQ,OAAO,QAAQ,gCAAgC;AAEvD,QAAO,IAAI,SAAS,MAAM;EAAE,QAAQ;EAAK;EAAS,CAAC;;;;;AAMrD,SAAgB,eACd,UACA,QACA,eACU;CACV,MAAM,UAAU,IAAI,QAAQ,SAAS,QAAQ;AAC7C,gBAAe,SAAS,QAAQ,cAAc;AAC9C,QAAO,IAAI,SAAS,SAAS,MAAM;EACjC,QAAQ,SAAS;EACjB,YAAY,SAAS;EACrB;EACD,CAAC"}

package/dist/v2/runtime/core/fetch-cors.d.cts

@@ -0,0 +1,20 @@
+
+//#region src/v2/runtime/core/fetch-cors.d.ts
+/**
+ * Built-in CORS utility for framework-agnostic CopilotKit runtime handler.
+ *
+ * This is a lightweight CORS implementation for web-standard
+ * Request/Response. It's optional — if your framework already handles CORS,
+ * pass `cors: false` or omit it.
+ */
+interface CopilotCorsConfig {
+  origin?: string | string[] | ((origin: string) => string | null);
+  credentials?: boolean;
+  allowMethods?: string[];
+  allowHeaders?: string[];
+  exposeHeaders?: string[];
+  maxAge?: number;
+}
+//#endregion
+export { CopilotCorsConfig };
+//# sourceMappingURL=fetch-cors.d.cts.map

package/dist/v2/runtime/core/fetch-cors.d.cts.map

@@ -0,0 +1 @@
+{"version":3,"file":"fetch-cors.d.cts","names":[],"sources":["../../../../src/v2/runtime/core/fetch-cors.ts"],"mappings":";;;AAQA;;;;;;UAAiB,iBAAA;EACf,MAAA,yBAA+B,MAAA;EAC/B,WAAA;EACA,YAAA;EACA,YAAA;EACA,aAAA;EACA,MAAA;AAAA"}

package/dist/v2/runtime/core/fetch-cors.d.mts

@@ -0,0 +1,20 @@
+import "reflect-metadata";
+//#region src/v2/runtime/core/fetch-cors.d.ts
+/**
+ * Built-in CORS utility for framework-agnostic CopilotKit runtime handler.
+ *
+ * This is a lightweight CORS implementation for web-standard
+ * Request/Response. It's optional — if your framework already handles CORS,
+ * pass `cors: false` or omit it.
+ */
+interface CopilotCorsConfig {
+  origin?: string | string[] | ((origin: string) => string | null);
+  credentials?: boolean;
+  allowMethods?: string[];
+  allowHeaders?: string[];
+  exposeHeaders?: string[];
+  maxAge?: number;
+}
+//#endregion
+export { CopilotCorsConfig };
+//# sourceMappingURL=fetch-cors.d.mts.map

package/dist/v2/runtime/core/fetch-cors.d.mts.map

@@ -0,0 +1 @@
+{"version":3,"file":"fetch-cors.d.mts","names":[],"sources":["../../../../src/v2/runtime/core/fetch-cors.ts"],"mappings":";;;AAQA;;;;;;UAAiB,iBAAA;EACf,MAAA,yBAA+B,MAAA;EAC/B,WAAA;EACA,YAAA;EACA,YAAA;EACA,aAAA;EACA,MAAA;AAAA"}

package/dist/v2/runtime/core/fetch-cors.mjs

@@ -0,0 +1,70 @@
+import "reflect-metadata";
+//#region src/v2/runtime/core/fetch-cors.ts
+const DEFAULT_METHODS = [
+	"GET",
+	"HEAD",
+	"PUT",
+	"POST",
+	"DELETE",
+	"PATCH",
+	"OPTIONS"
+];
+const DEFAULT_HEADERS = ["*"];
+function resolveOrigin(config, requestOrigin) {
+	const { origin } = config;
+	if (!origin) return "*";
+	if (typeof origin === "string") return origin;
+	if (Array.isArray(origin)) {
+		if (!requestOrigin) return null;
+		return origin.includes(requestOrigin) ? requestOrigin : null;
+	}
+	if (typeof origin === "function") return requestOrigin ? origin(requestOrigin) : null;
+	return "*";
+}
+function setCorsHeaders(headers, config, requestOrigin) {
+	let allowedOrigin = resolveOrigin(config, requestOrigin);
+	if (!allowedOrigin) return;
+	if (config.credentials && allowedOrigin === "*") if (requestOrigin) allowedOrigin = requestOrigin;
+	else return;
+	headers.set("Access-Control-Allow-Origin", allowedOrigin);
+	if (config.credentials) headers.set("Access-Control-Allow-Credentials", "true");
+	if (config.exposeHeaders?.length) headers.set("Access-Control-Expose-Headers", config.exposeHeaders.join(", "));
+	if (allowedOrigin !== "*") headers.append("Vary", "Origin");
+}
+/**
+* Handle CORS preflight (OPTIONS) requests.
+* Returns a 204 Response if it's a preflight, or null if not.
+*/
+function handleCors(request, config) {
+	if (request.method !== "OPTIONS") return null;
+	const requestOrigin = request.headers.get("origin");
+	const headers = new Headers();
+	setCorsHeaders(headers, config, requestOrigin);
+	const methods = config.allowMethods ?? DEFAULT_METHODS;
+	headers.set("Access-Control-Allow-Methods", methods.join(", "));
+	const allowHeaders = config.allowHeaders ?? DEFAULT_HEADERS;
+	headers.set("Access-Control-Allow-Headers", allowHeaders.join(", "));
+	if (config.maxAge != null) headers.set("Access-Control-Max-Age", String(config.maxAge));
+	headers.append("Vary", "Access-Control-Request-Headers");
+	headers.append("Vary", "Access-Control-Request-Method");
+	return new Response(null, {
+		status: 204,
+		headers
+	});
+}
+/**
+* Add CORS headers to an existing response.
+*/
+function addCorsHeaders(response, config, requestOrigin) {
+	const headers = new Headers(response.headers);
+	setCorsHeaders(headers, config, requestOrigin);
+	return new Response(response.body, {
+		status: response.status,
+		statusText: response.statusText,
+		headers
+	});
+}
+
+//#endregion
+export { addCorsHeaders, handleCors };
+//# sourceMappingURL=fetch-cors.mjs.map

package/dist/v2/runtime/core/fetch-cors.mjs.map

@@ -0,0 +1 @@
+{"version":3,"file":"fetch-cors.mjs","names":[],"sources":["../../../../src/v2/runtime/core/fetch-cors.ts"],"sourcesContent":["/**\n * Built-in CORS utility for framework-agnostic CopilotKit runtime handler.\n *\n * This is a lightweight CORS implementation for web-standard\n * Request/Response. It's optional — if your framework already handles CORS,\n * pass `cors: false` or omit it.\n */\n\nexport interface CopilotCorsConfig {\n  origin?: string | string[] | ((origin: string) => string | null);\n  credentials?: boolean;\n  allowMethods?: string[];\n  allowHeaders?: string[];\n  exposeHeaders?: string[];\n  maxAge?: number;\n}\n\nconst DEFAULT_METHODS = [\n  \"GET\",\n  \"HEAD\",\n  \"PUT\",\n  \"POST\",\n  \"DELETE\",\n  \"PATCH\",\n  \"OPTIONS\",\n];\nconst DEFAULT_HEADERS = [\"*\"];\n\nfunction resolveOrigin(\n  config: CopilotCorsConfig,\n  requestOrigin: string | null,\n): string | null {\n  const { origin } = config;\n  if (!origin) return \"*\";\n\n  if (typeof origin === \"string\") return origin;\n\n  if (Array.isArray(origin)) {\n    if (!requestOrigin) return null;\n    return origin.includes(requestOrigin) ? requestOrigin : null;\n  }\n\n  if (typeof origin === \"function\") {\n    return requestOrigin ? origin(requestOrigin) : null;\n  }\n\n  return \"*\";\n}\n\nfunction setCorsHeaders(\n  headers: Headers,\n  config: CopilotCorsConfig,\n  requestOrigin: string | null,\n): void {\n  let allowedOrigin = resolveOrigin(config, requestOrigin);\n  if (!allowedOrigin) return;\n\n  // Per the Fetch spec, Access-Control-Allow-Origin: * combined with\n  // Access-Control-Allow-Credentials: true causes browsers to reject the\n  // response. Auto-resolve wildcard to the request origin when credentials\n  // are enabled; if there is no request origin, skip CORS entirely.\n  if (config.credentials && allowedOrigin === \"*\") {\n    if (requestOrigin) {\n      allowedOrigin = requestOrigin;\n    } else {\n      return;\n    }\n  }\n\n  headers.set(\"Access-Control-Allow-Origin\", allowedOrigin);\n\n  if (config.credentials) {\n    headers.set(\"Access-Control-Allow-Credentials\", \"true\");\n  }\n\n  if (config.exposeHeaders?.length) {\n    headers.set(\n      \"Access-Control-Expose-Headers\",\n      config.exposeHeaders.join(\", \"),\n    );\n  }\n\n  // Vary on Origin when it's not a fixed wildcard\n  if (allowedOrigin !== \"*\") {\n    headers.append(\"Vary\", \"Origin\");\n  }\n}\n\n/**\n * Handle CORS preflight (OPTIONS) requests.\n * Returns a 204 Response if it's a preflight, or null if not.\n */\nexport function handleCors(\n  request: Request,\n  config: CopilotCorsConfig,\n): Response | null {\n  if (request.method !== \"OPTIONS\") return null;\n\n  const requestOrigin = request.headers.get(\"origin\");\n  const headers = new Headers();\n\n  setCorsHeaders(headers, config, requestOrigin);\n\n  const methods = config.allowMethods ?? DEFAULT_METHODS;\n  headers.set(\"Access-Control-Allow-Methods\", methods.join(\", \"));\n\n  const allowHeaders = config.allowHeaders ?? DEFAULT_HEADERS;\n  headers.set(\"Access-Control-Allow-Headers\", allowHeaders.join(\", \"));\n\n  if (config.maxAge != null) {\n    headers.set(\"Access-Control-Max-Age\", String(config.maxAge));\n  }\n\n  // Vary headers for correct CDN caching of preflight responses\n  headers.append(\"Vary\", \"Access-Control-Request-Headers\");\n  headers.append(\"Vary\", \"Access-Control-Request-Method\");\n\n  return new Response(null, { status: 204, headers });\n}\n\n/**\n * Add CORS headers to an existing response.\n */\nexport function addCorsHeaders(\n  response: Response,\n  config: CopilotCorsConfig,\n  requestOrigin: string | null,\n): Response {\n  const headers = new Headers(response.headers);\n  setCorsHeaders(headers, config, requestOrigin);\n  return new Response(response.body, {\n    status: response.status,\n    statusText: response.statusText,\n    headers,\n  });\n}\n"],"mappings":";;AAiBA,MAAM,kBAAkB;CACtB;CACA;CACA;CACA;CACA;CACA;CACA;CACD;AACD,MAAM,kBAAkB,CAAC,IAAI;AAE7B,SAAS,cACP,QACA,eACe;CACf,MAAM,EAAE,WAAW;AACnB,KAAI,CAAC,OAAQ,QAAO;AAEpB,KAAI,OAAO,WAAW,SAAU,QAAO;AAEvC,KAAI,MAAM,QAAQ,OAAO,EAAE;AACzB,MAAI,CAAC,cAAe,QAAO;AAC3B,SAAO,OAAO,SAAS,cAAc,GAAG,gBAAgB;;AAG1D,KAAI,OAAO,WAAW,WACpB,QAAO,gBAAgB,OAAO,cAAc,GAAG;AAGjD,QAAO;;AAGT,SAAS,eACP,SACA,QACA,eACM;CACN,IAAI,gBAAgB,cAAc,QAAQ,cAAc;AACxD,KAAI,CAAC,cAAe;AAMpB,KAAI,OAAO,eAAe,kBAAkB,IAC1C,KAAI,cACF,iBAAgB;KAEhB;AAIJ,SAAQ,IAAI,+BAA+B,cAAc;AAEzD,KAAI,OAAO,YACT,SAAQ,IAAI,oCAAoC,OAAO;AAGzD,KAAI,OAAO,eAAe,OACxB,SAAQ,IACN,iCACA,OAAO,cAAc,KAAK,KAAK,CAChC;AAIH,KAAI,kBAAkB,IACpB,SAAQ,OAAO,QAAQ,SAAS;;;;;;AAQpC,SAAgB,WACd,SACA,QACiB;AACjB,KAAI,QAAQ,WAAW,UAAW,QAAO;CAEzC,MAAM,gBAAgB,QAAQ,QAAQ,IAAI,SAAS;CACnD,MAAM,UAAU,IAAI,SAAS;AAE7B,gBAAe,SAAS,QAAQ,cAAc;CAE9C,MAAM,UAAU,OAAO,gBAAgB;AACvC,SAAQ,IAAI,gCAAgC,QAAQ,KAAK,KAAK,CAAC;CAE/D,MAAM,eAAe,OAAO,gBAAgB;AAC5C,SAAQ,IAAI,gCAAgC,aAAa,KAAK,KAAK,CAAC;AAEpE,KAAI,OAAO,UAAU,KACnB,SAAQ,IAAI,0BAA0B,OAAO,OAAO,OAAO,CAAC;AAI9D,SAAQ,OAAO,QAAQ,iCAAiC;AACxD,SAAQ,OAAO,QAAQ,gCAAgC;AAEvD,QAAO,IAAI,SAAS,MAAM;EAAE,QAAQ;EAAK;EAAS,CAAC;;;;;AAMrD,SAAgB,eACd,UACA,QACA,eACU;CACV,MAAM,UAAU,IAAI,QAAQ,SAAS,QAAQ;AAC7C,gBAAe,SAAS,QAAQ,cAAc;AAC9C,QAAO,IAAI,SAAS,SAAS,MAAM;EACjC,QAAQ,SAAS;EACjB,YAAY,SAAS;EACrB;EACD,CAAC"}

package/dist/v2/runtime/core/fetch-handler.cjs

@@ -0,0 +1,232 @@
+require("reflect-metadata");
+const require_runtime = require('../../../_virtual/_rolldown/runtime.cjs');
+const require_hooks = require('./hooks.cjs');
+const require_fetch_cors = require('./fetch-cors.cjs');
+const require_fetch_router = require('./fetch-router.cjs');
+const require_middleware = require('./middleware.cjs');
+const require_handle_run = require('../handlers/handle-run.cjs');
+const require_handle_connect = require('../handlers/handle-connect.cjs');
+const require_handle_stop = require('../handlers/handle-stop.cjs');
+const require_get_runtime_info = require('../handlers/get-runtime-info.cjs');
+const require_handle_transcribe = require('../handlers/handle-transcribe.cjs');
+const require_single_route_helpers = require('../endpoints/single-route-helpers.cjs');
+let _copilotkit_shared = require("@copilotkit/shared");
+
+//#region src/v2/runtime/core/fetch-handler.ts
+function createCopilotRuntimeHandler(options) {
+	const { runtime, basePath, mode = "multi-route", cors, hooks } = options;
+	const corsConfig = resolveCorsConfig(cors);
+	return async (request) => {
+		const path = new URL(request.url, "http://localhost").pathname;
+		const requestOrigin = request.headers.get("origin");
+		const baseCtx = {
+			request,
+			path,
+			runtime
+		};
+		let route;
+		try {
+			if (corsConfig) {
+				const preflight = require_fetch_cors.handleCors(request, corsConfig);
+				if (preflight) return preflight;
+			}
+			request = await require_hooks.runOnRequest(hooks, {
+				...baseCtx,
+				request
+			});
+			try {
+				const maybeModified = await require_middleware.callBeforeRequestMiddleware({
+					runtime,
+					request,
+					path
+				});
+				if (maybeModified) request = maybeModified;
+			} catch (mwError) {
+				_copilotkit_shared.logger.error({
+					err: mwError,
+					url: request.url,
+					path
+				}, "Error running before request middleware");
+				if (mwError instanceof Response) return maybeAddCors(mwError, corsConfig, requestOrigin);
+				throw mwError;
+			}
+			let response;
+			if (mode === "single-route") {
+				const resolved = await resolveSingleRoute(request, basePath, path);
+				route = resolved.route;
+				const { methodCall } = resolved;
+				request = await require_hooks.runOnBeforeHandler(hooks, {
+					request,
+					path,
+					runtime,
+					route
+				});
+				if (route.method === "agent/run" || route.method === "agent/connect" || route.method === "transcribe") request = require_single_route_helpers.createJsonRequest(request, methodCall.body);
+				response = await dispatchRoute(runtime, request, route);
+			} else {
+				const matched = require_fetch_router.matchRoute(path, basePath);
+				if (!matched) throw jsonResponse({ error: "Not found" }, 404);
+				const methodError = validateHttpMethod(request.method, matched);
+				if (methodError) {
+					route = matched;
+					throw methodError;
+				}
+				route = matched;
+				request = await require_hooks.runOnBeforeHandler(hooks, {
+					request,
+					path,
+					runtime,
+					route
+				});
+				response = await dispatchRoute(runtime, request, route);
+			}
+			response = await require_hooks.runOnResponse(hooks, {
+				request,
+				response,
+				path,
+				runtime,
+				route
+			});
+			response = maybeAddCors(response, corsConfig, requestOrigin);
+			require_middleware.callAfterRequestMiddleware({
+				runtime,
+				response: response.clone(),
+				path
+			}).catch((error) => {
+				_copilotkit_shared.logger.error({
+					err: error,
+					url: request.url,
+					path
+				}, "Error running after request middleware");
+			});
+			return response;
+		} catch (error) {
+			if (error instanceof Response) return maybeAddCors(await require_hooks.runOnResponse(hooks, {
+				request,
+				response: error,
+				path,
+				runtime,
+				route: route ?? { method: "info" }
+			}), corsConfig, requestOrigin);
+			try {
+				const errorResponse = await require_hooks.runOnError(hooks, {
+					request,
+					error,
+					path,
+					runtime,
+					route
+				});
+				if (errorResponse) return maybeAddCors(errorResponse, corsConfig, requestOrigin);
+			} catch (hookError) {
+				_copilotkit_shared.logger.error({
+					err: hookError,
+					originalErr: error,
+					url: request.url,
+					path
+				}, "onError hook threw");
+			}
+			_copilotkit_shared.logger.error({
+				err: error,
+				url: request.url,
+				path
+			}, "Unhandled error in CopilotKit runtime handler");
+			return maybeAddCors(jsonResponse({ error: "internal_error" }, 500), corsConfig, requestOrigin);
+		}
+	};
+}
+function dispatchRoute(runtime, request, route) {
+	switch (route.method) {
+		case "agent/run": return require_handle_run.handleRunAgent({
+			runtime,
+			request,
+			agentId: route.agentId
+		});
+		case "agent/connect": return require_handle_connect.handleConnectAgent({
+			runtime,
+			request,
+			agentId: route.agentId
+		});
+		case "agent/stop": return require_handle_stop.handleStopAgent({
+			runtime,
+			request,
+			agentId: route.agentId,
+			threadId: route.threadId
+		});
+		case "info": return require_get_runtime_info.handleGetRuntimeInfo({
+			runtime,
+			request
+		});
+		case "transcribe": return require_handle_transcribe.handleTranscribe({
+			runtime,
+			request
+		});
+	}
+}
+async function resolveSingleRoute(request, basePath, pathname) {
+	if (basePath) {
+		const normalizedBase = basePath.length > 1 && basePath.endsWith("/") ? basePath.slice(0, -1) : basePath;
+		if (!pathname.startsWith(normalizedBase)) throw jsonResponse({ error: "Not found" }, 404);
+	}
+	if (request.method !== "POST") throw jsonResponse({ error: "Method not allowed" }, 405, { Allow: "POST" });
+	const methodCall = await require_single_route_helpers.parseMethodCall(request);
+	let route;
+	switch (methodCall.method) {
+		case "agent/run":
+			route = {
+				method: "agent/run",
+				agentId: require_single_route_helpers.expectString(methodCall.params, "agentId")
+			};
+			break;
+		case "agent/connect":
+			route = {
+				method: "agent/connect",
+				agentId: require_single_route_helpers.expectString(methodCall.params, "agentId")
+			};
+			break;
+		case "agent/stop":
+			route = {
+				method: "agent/stop",
+				agentId: require_single_route_helpers.expectString(methodCall.params, "agentId"),
+				threadId: require_single_route_helpers.expectString(methodCall.params, "threadId")
+			};
+			break;
+		case "info":
+			route = { method: "info" };
+			break;
+		case "transcribe":
+			route = { method: "transcribe" };
+			break;
+	}
+	return {
+		route,
+		methodCall
+	};
+}
+function validateHttpMethod(httpMethod, route) {
+	const method = httpMethod.toUpperCase();
+	if (route.method === "info" && method === "GET") return null;
+	if (route.method !== "info" && method === "POST") return null;
+	return jsonResponse({ error: "Method not allowed" }, 405, { Allow: route.method === "info" ? "GET" : "POST" });
+}
+function resolveCorsConfig(cors) {
+	if (!cors) return null;
+	if (cors === true) return {};
+	return cors;
+}
+function maybeAddCors(response, config, requestOrigin) {
+	if (!config) return response;
+	return require_fetch_cors.addCorsHeaders(response, config, requestOrigin);
+}
+function jsonResponse(body, status, extraHeaders) {
+	return new Response(JSON.stringify(body), {
+		status,
+		headers: {
+			"Content-Type": "application/json",
+			...extraHeaders
+		}
+	});
+}
+
+//#endregion
+exports.createCopilotRuntimeHandler = createCopilotRuntimeHandler;
+//# sourceMappingURL=fetch-handler.cjs.map

package/dist/v2/runtime/core/fetch-handler.cjs.map

@@ -0,0 +1 @@
+{"version":3,"file":"fetch-handler.cjs","names":["handleCors","runOnRequest","callBeforeRequestMiddleware","runOnBeforeHandler","createJsonRequest","matchRoute","runOnResponse","runOnError","handleRunAgent","handleConnectAgent","handleStopAgent","handleGetRuntimeInfo","handleTranscribe","parseMethodCall","expectString","addCorsHeaders"],"sources":["../../../../src/v2/runtime/core/fetch-handler.ts"],"sourcesContent":["/**\n * Framework-agnostic CopilotKit runtime handler.\n *\n * Returns a pure `(Request) => Promise<Response>` function that can be used\n * directly with Bun, Deno, Cloudflare Workers, Next.js App Router, or any\n * Fetch-native runtime — no framework dependency required.\n *\n * @example\n * ```typescript\n * import { CopilotRuntime, createCopilotRuntimeHandler } from \"@copilotkit/runtime/v2\";\n *\n * const handler = createCopilotRuntimeHandler({\n *   runtime: new CopilotRuntime({ agents: { ... } }),\n *   basePath: \"/api/copilotkit\",\n *   cors: true,\n * });\n *\n * // Bun\n * Bun.serve({ fetch: handler });\n *\n * // Deno\n * Deno.serve(handler);\n *\n * // Cloudflare Workers\n * export default { fetch: handler };\n * ```\n */\n\nimport type { CopilotRuntimeLike } from \"./runtime\";\nimport type { CopilotRuntimeHooks, RouteInfo, HookContext } from \"./hooks\";\nimport {\n  runOnRequest,\n  runOnBeforeHandler,\n  runOnResponse,\n  runOnError,\n} from \"./hooks\";\nimport type { CopilotCorsConfig } from \"./fetch-cors\";\nimport { handleCors, addCorsHeaders } from \"./fetch-cors\";\nimport { matchRoute } from \"./fetch-router\";\nimport {\n  callBeforeRequestMiddleware,\n  callAfterRequestMiddleware,\n} from \"./middleware\";\nimport { handleRunAgent } from \"../handlers/handle-run\";\nimport { handleConnectAgent } from \"../handlers/handle-connect\";\nimport { handleStopAgent } from \"../handlers/handle-stop\";\nimport { handleGetRuntimeInfo } from \"../handlers/get-runtime-info\";\nimport { handleTranscribe } from \"../handlers/handle-transcribe\";\nimport {\n  parseMethodCall,\n  createJsonRequest,\n  expectString,\n  type MethodCall,\n} from \"../endpoints/single-route-helpers\";\nimport { logger } from \"@copilotkit/shared\";\n\n/* ------------------------------------------------------------------------------------------------\n * Public types\n * --------------------------------------------------------------------------------------------- */\n\nexport interface CopilotRuntimeHandlerOptions {\n  runtime: CopilotRuntimeLike;\n\n  /**\n   * Optional base path for routing.\n   *\n   * When provided: strict prefix stripping. The handler strips this prefix from the\n   * URL pathname and matches the remainder against known routes.\n   *\n   * When omitted: suffix matching. The handler matches known route patterns as\n   * suffixes of the URL pathname.\n   */\n  basePath?: string;\n\n  /**\n   * Endpoint mode:\n   * - \"multi-route\" (default): Routes like POST /agent/:agentId/run, GET /info, etc.\n   * - \"single-route\": Single POST endpoint with JSON envelope { method, params, body }\n   */\n  mode?: \"multi-route\" | \"single-route\";\n\n  /**\n   * Optional CORS configuration.\n   * When not provided, no CORS headers are added (let the framework handle it).\n   * Set to true for permissive defaults, or provide an object.\n   */\n  cors?: boolean | CopilotCorsConfig;\n\n  /**\n   * Lifecycle hooks for request processing.\n   */\n  hooks?: CopilotRuntimeHooks;\n}\n\nexport type CopilotRuntimeFetchHandler = (\n  request: Request,\n) => Promise<Response>;\n\n/* ------------------------------------------------------------------------------------------------\n * Handler factory\n * --------------------------------------------------------------------------------------------- */\n\nexport function createCopilotRuntimeHandler(\n  options: CopilotRuntimeHandlerOptions,\n): CopilotRuntimeFetchHandler {\n  const { runtime, basePath, mode = \"multi-route\", cors, hooks } = options;\n\n  const corsConfig = resolveCorsConfig(cors);\n\n  return async (request: Request): Promise<Response> => {\n    const url = new URL(request.url, \"http://localhost\");\n    const path = url.pathname;\n    const requestOrigin = request.headers.get(\"origin\");\n\n    // Base hook context (route not yet known)\n    const baseCtx: HookContext = { request, path, runtime };\n\n    let route: RouteInfo | undefined;\n\n    try {\n      // 1. CORS preflight\n      if (corsConfig) {\n        const preflight = handleCors(request, corsConfig);\n        if (preflight) return preflight;\n      }\n\n      // 2. onRequest hook\n      request = await runOnRequest(hooks, { ...baseCtx, request });\n\n      // 3. Legacy beforeRequestMiddleware\n      try {\n        const maybeModified = await callBeforeRequestMiddleware({\n          runtime,\n          request,\n          path,\n        });\n        if (maybeModified) {\n          request = maybeModified;\n        }\n      } catch (mwError: unknown) {\n        logger.error(\n          { err: mwError, url: request.url, path },\n          \"Error running before request middleware\",\n        );\n        if (mwError instanceof Response) {\n          return maybeAddCors(mwError, corsConfig, requestOrigin);\n        }\n        throw mwError;\n      }\n\n      // 4. Route matching\n      let response: Response;\n\n      if (mode === \"single-route\") {\n        const resolved = await resolveSingleRoute(request, basePath, path);\n        route = resolved.route;\n        const { methodCall } = resolved;\n        // 5. onBeforeHandler hook\n        request = await runOnBeforeHandler(hooks, {\n          request,\n          path,\n          runtime,\n          route,\n        });\n        // 6. Wrap body for methods that need it, then dispatch\n        if (\n          route.method === \"agent/run\" ||\n          route.method === \"agent/connect\" ||\n          route.method === \"transcribe\"\n        ) {\n          request = createJsonRequest(request, methodCall.body);\n        }\n        response = await dispatchRoute(runtime, request, route);\n      } else {\n        // Multi-route: match URL pattern\n        const matched = matchRoute(path, basePath);\n        if (!matched) {\n          throw jsonResponse({ error: \"Not found\" }, 404);\n        }\n\n        // Validate HTTP method\n        const methodError = validateHttpMethod(request.method, matched);\n        if (methodError) {\n          route = matched;\n          throw methodError;\n        }\n\n        route = matched;\n\n        // 5. onBeforeHandler hook\n        request = await runOnBeforeHandler(hooks, {\n          request,\n          path,\n          runtime,\n          route,\n        });\n\n        // 6. Handler dispatch\n        response = await dispatchRoute(runtime, request, route);\n      }\n\n      // 7. onResponse hook\n      response = await runOnResponse(hooks, {\n        request,\n        response,\n        path,\n        runtime,\n        route,\n      });\n\n      // 8. CORS headers on response\n      response = maybeAddCors(response, corsConfig, requestOrigin);\n\n      // 9. Legacy afterRequestMiddleware (non-blocking)\n      // Clone the response so middleware can read the body without consuming\n      // the original stream that will be sent to the client.\n      callAfterRequestMiddleware({\n        runtime,\n        response: response.clone(),\n        path,\n      }).catch((error: unknown) => {\n        logger.error(\n          { err: error, url: request.url, path },\n          \"Error running after request middleware\",\n        );\n      });\n\n      return response;\n    } catch (error) {\n      // Short-circuit with thrown Response\n      if (error instanceof Response) {\n        const finalResponse = await runOnResponse(hooks, {\n          request,\n          response: error,\n          path,\n          runtime,\n          route: route ?? { method: \"info\" },\n        });\n        return maybeAddCors(finalResponse, corsConfig, requestOrigin);\n      }\n\n      // Run onError hook — wrapped so a throwing hook doesn't escape\n      try {\n        const errorResponse = await runOnError(hooks, {\n          request,\n          error,\n          path,\n          runtime,\n          route,\n        });\n\n        if (errorResponse) {\n          return maybeAddCors(errorResponse, corsConfig, requestOrigin);\n        }\n      } catch (hookError: unknown) {\n        logger.error(\n          { err: hookError, originalErr: error, url: request.url, path },\n          \"onError hook threw\",\n        );\n      }\n\n      logger.error(\n        { err: error, url: request.url, path },\n        \"Unhandled error in CopilotKit runtime handler\",\n      );\n\n      return maybeAddCors(\n        jsonResponse({ error: \"internal_error\" }, 500),\n        corsConfig,\n        requestOrigin,\n      );\n    }\n  };\n}\n\n/* ------------------------------------------------------------------------------------------------\n * Route dispatch\n * --------------------------------------------------------------------------------------------- */\n\nfunction dispatchRoute(\n  runtime: CopilotRuntimeLike,\n  request: Request,\n  route: RouteInfo,\n): Promise<Response> {\n  switch (route.method) {\n    case \"agent/run\":\n      return handleRunAgent({\n        runtime,\n        request,\n        agentId: route.agentId,\n      });\n    case \"agent/connect\":\n      return handleConnectAgent({\n        runtime,\n        request,\n        agentId: route.agentId,\n      });\n    case \"agent/stop\":\n      return handleStopAgent({\n        runtime,\n        request,\n        agentId: route.agentId,\n        threadId: route.threadId,\n      });\n    case \"info\":\n      return handleGetRuntimeInfo({ runtime, request });\n    case \"transcribe\":\n      return handleTranscribe({ runtime, request });\n  }\n}\n\ninterface SingleRouteResolution {\n  route: RouteInfo;\n  methodCall: MethodCall;\n}\n\nasync function resolveSingleRoute(\n  request: Request,\n  basePath: string | undefined,\n  pathname: string,\n): Promise<SingleRouteResolution> {\n  if (basePath) {\n    const normalizedBase =\n      basePath.length > 1 && basePath.endsWith(\"/\")\n        ? basePath.slice(0, -1)\n        : basePath;\n    if (!pathname.startsWith(normalizedBase)) {\n      throw jsonResponse({ error: \"Not found\" }, 404);\n    }\n  }\n\n  if (request.method !== \"POST\") {\n    throw jsonResponse({ error: \"Method not allowed\" }, 405, { Allow: \"POST\" });\n  }\n\n  const methodCall = await parseMethodCall(request);\n\n  let route: RouteInfo;\n  switch (methodCall.method) {\n    case \"agent/run\":\n      route = {\n        method: \"agent/run\",\n        agentId: expectString(methodCall.params, \"agentId\"),\n      };\n      break;\n    case \"agent/connect\":\n      route = {\n        method: \"agent/connect\",\n        agentId: expectString(methodCall.params, \"agentId\"),\n      };\n      break;\n    case \"agent/stop\":\n      route = {\n        method: \"agent/stop\",\n        agentId: expectString(methodCall.params, \"agentId\"),\n        threadId: expectString(methodCall.params, \"threadId\"),\n      };\n      break;\n    case \"info\":\n      route = { method: \"info\" };\n      break;\n    case \"transcribe\":\n      route = { method: \"transcribe\" };\n      break;\n  }\n\n  return { route, methodCall };\n}\n\n/* ------------------------------------------------------------------------------------------------\n * HTTP method validation\n * --------------------------------------------------------------------------------------------- */\n\nfunction validateHttpMethod(\n  httpMethod: string,\n  route: RouteInfo,\n): Response | null {\n  const method = httpMethod.toUpperCase();\n  if (route.method === \"info\" && method === \"GET\") return null;\n  if (route.method !== \"info\" && method === \"POST\") return null;\n  const allowed = route.method === \"info\" ? \"GET\" : \"POST\";\n  return jsonResponse({ error: \"Method not allowed\" }, 405, { Allow: allowed });\n}\n\n/* ------------------------------------------------------------------------------------------------\n * Helpers\n * --------------------------------------------------------------------------------------------- */\n\nfunction resolveCorsConfig(\n  cors: boolean | CopilotCorsConfig | undefined,\n): CopilotCorsConfig | null {\n  if (!cors) return null;\n  if (cors === true) return {};\n  return cors;\n}\n\nfunction maybeAddCors(\n  response: Response,\n  config: CopilotCorsConfig | null,\n  requestOrigin: string | null,\n): Response {\n  if (!config) return response;\n  return addCorsHeaders(response, config, requestOrigin);\n}\n\nfunction jsonResponse(\n  body: unknown,\n  status: number,\n  extraHeaders?: Record<string, string>,\n): Response {\n  return new Response(JSON.stringify(body), {\n    status,\n    headers: { \"Content-Type\": \"application/json\", ...extraHeaders },\n  });\n}\n"],"mappings":";;;;;;;;;;;;;;;AAsGA,SAAgB,4BACd,SAC4B;CAC5B,MAAM,EAAE,SAAS,UAAU,OAAO,eAAe,MAAM,UAAU;CAEjE,MAAM,aAAa,kBAAkB,KAAK;AAE1C,QAAO,OAAO,YAAwC;EAEpD,MAAM,OADM,IAAI,IAAI,QAAQ,KAAK,mBAAmB,CACnC;EACjB,MAAM,gBAAgB,QAAQ,QAAQ,IAAI,SAAS;EAGnD,MAAM,UAAuB;GAAE;GAAS;GAAM;GAAS;EAEvD,IAAI;AAEJ,MAAI;AAEF,OAAI,YAAY;IACd,MAAM,YAAYA,8BAAW,SAAS,WAAW;AACjD,QAAI,UAAW,QAAO;;AAIxB,aAAU,MAAMC,2BAAa,OAAO;IAAE,GAAG;IAAS;IAAS,CAAC;AAG5D,OAAI;IACF,MAAM,gBAAgB,MAAMC,+CAA4B;KACtD;KACA;KACA;KACD,CAAC;AACF,QAAI,cACF,WAAU;YAEL,SAAkB;AACzB,8BAAO,MACL;KAAE,KAAK;KAAS,KAAK,QAAQ;KAAK;KAAM,EACxC,0CACD;AACD,QAAI,mBAAmB,SACrB,QAAO,aAAa,SAAS,YAAY,cAAc;AAEzD,UAAM;;GAIR,IAAI;AAEJ,OAAI,SAAS,gBAAgB;IAC3B,MAAM,WAAW,MAAM,mBAAmB,SAAS,UAAU,KAAK;AAClE,YAAQ,SAAS;IACjB,MAAM,EAAE,eAAe;AAEvB,cAAU,MAAMC,iCAAmB,OAAO;KACxC;KACA;KACA;KACA;KACD,CAAC;AAEF,QACE,MAAM,WAAW,eACjB,MAAM,WAAW,mBACjB,MAAM,WAAW,aAEjB,WAAUC,+CAAkB,SAAS,WAAW,KAAK;AAEvD,eAAW,MAAM,cAAc,SAAS,SAAS,MAAM;UAClD;IAEL,MAAM,UAAUC,gCAAW,MAAM,SAAS;AAC1C,QAAI,CAAC,QACH,OAAM,aAAa,EAAE,OAAO,aAAa,EAAE,IAAI;IAIjD,MAAM,cAAc,mBAAmB,QAAQ,QAAQ,QAAQ;AAC/D,QAAI,aAAa;AACf,aAAQ;AACR,WAAM;;AAGR,YAAQ;AAGR,cAAU,MAAMF,iCAAmB,OAAO;KACxC;KACA;KACA;KACA;KACD,CAAC;AAGF,eAAW,MAAM,cAAc,SAAS,SAAS,MAAM;;AAIzD,cAAW,MAAMG,4BAAc,OAAO;IACpC;IACA;IACA;IACA;IACA;IACD,CAAC;AAGF,cAAW,aAAa,UAAU,YAAY,cAAc;AAK5D,iDAA2B;IACzB;IACA,UAAU,SAAS,OAAO;IAC1B;IACD,CAAC,CAAC,OAAO,UAAmB;AAC3B,8BAAO,MACL;KAAE,KAAK;KAAO,KAAK,QAAQ;KAAK;KAAM,EACtC,yCACD;KACD;AAEF,UAAO;WACA,OAAO;AAEd,OAAI,iBAAiB,SAQnB,QAAO,aAPe,MAAMA,4BAAc,OAAO;IAC/C;IACA,UAAU;IACV;IACA;IACA,OAAO,SAAS,EAAE,QAAQ,QAAQ;IACnC,CAAC,EACiC,YAAY,cAAc;AAI/D,OAAI;IACF,MAAM,gBAAgB,MAAMC,yBAAW,OAAO;KAC5C;KACA;KACA;KACA;KACA;KACD,CAAC;AAEF,QAAI,cACF,QAAO,aAAa,eAAe,YAAY,cAAc;YAExD,WAAoB;AAC3B,8BAAO,MACL;KAAE,KAAK;KAAW,aAAa;KAAO,KAAK,QAAQ;KAAK;KAAM,EAC9D,qBACD;;AAGH,6BAAO,MACL;IAAE,KAAK;IAAO,KAAK,QAAQ;IAAK;IAAM,EACtC,gDACD;AAED,UAAO,aACL,aAAa,EAAE,OAAO,kBAAkB,EAAE,IAAI,EAC9C,YACA,cACD;;;;AASP,SAAS,cACP,SACA,SACA,OACmB;AACnB,SAAQ,MAAM,QAAd;EACE,KAAK,YACH,QAAOC,kCAAe;GACpB;GACA;GACA,SAAS,MAAM;GAChB,CAAC;EACJ,KAAK,gBACH,QAAOC,0CAAmB;GACxB;GACA;GACA,SAAS,MAAM;GAChB,CAAC;EACJ,KAAK,aACH,QAAOC,oCAAgB;GACrB;GACA;GACA,SAAS,MAAM;GACf,UAAU,MAAM;GACjB,CAAC;EACJ,KAAK,OACH,QAAOC,8CAAqB;GAAE;GAAS;GAAS,CAAC;EACnD,KAAK,aACH,QAAOC,2CAAiB;GAAE;GAAS;GAAS,CAAC;;;AASnD,eAAe,mBACb,SACA,UACA,UACgC;AAChC,KAAI,UAAU;EACZ,MAAM,iBACJ,SAAS,SAAS,KAAK,SAAS,SAAS,IAAI,GACzC,SAAS,MAAM,GAAG,GAAG,GACrB;AACN,MAAI,CAAC,SAAS,WAAW,eAAe,CACtC,OAAM,aAAa,EAAE,OAAO,aAAa,EAAE,IAAI;;AAInD,KAAI,QAAQ,WAAW,OACrB,OAAM,aAAa,EAAE,OAAO,sBAAsB,EAAE,KAAK,EAAE,OAAO,QAAQ,CAAC;CAG7E,MAAM,aAAa,MAAMC,6CAAgB,QAAQ;CAEjD,IAAI;AACJ,SAAQ,WAAW,QAAnB;EACE,KAAK;AACH,WAAQ;IACN,QAAQ;IACR,SAASC,0CAAa,WAAW,QAAQ,UAAU;IACpD;AACD;EACF,KAAK;AACH,WAAQ;IACN,QAAQ;IACR,SAASA,0CAAa,WAAW,QAAQ,UAAU;IACpD;AACD;EACF,KAAK;AACH,WAAQ;IACN,QAAQ;IACR,SAASA,0CAAa,WAAW,QAAQ,UAAU;IACnD,UAAUA,0CAAa,WAAW,QAAQ,WAAW;IACtD;AACD;EACF,KAAK;AACH,WAAQ,EAAE,QAAQ,QAAQ;AAC1B;EACF,KAAK;AACH,WAAQ,EAAE,QAAQ,cAAc;AAChC;;AAGJ,QAAO;EAAE;EAAO;EAAY;;AAO9B,SAAS,mBACP,YACA,OACiB;CACjB,MAAM,SAAS,WAAW,aAAa;AACvC,KAAI,MAAM,WAAW,UAAU,WAAW,MAAO,QAAO;AACxD,KAAI,MAAM,WAAW,UAAU,WAAW,OAAQ,QAAO;AAEzD,QAAO,aAAa,EAAE,OAAO,sBAAsB,EAAE,KAAK,EAAE,OAD5C,MAAM,WAAW,SAAS,QAAQ,QAC0B,CAAC;;AAO/E,SAAS,kBACP,MAC0B;AAC1B,KAAI,CAAC,KAAM,QAAO;AAClB,KAAI,SAAS,KAAM,QAAO,EAAE;AAC5B,QAAO;;AAGT,SAAS,aACP,UACA,QACA,eACU;AACV,KAAI,CAAC,OAAQ,QAAO;AACpB,QAAOC,kCAAe,UAAU,QAAQ,cAAc;;AAGxD,SAAS,aACP,MACA,QACA,cACU;AACV,QAAO,IAAI,SAAS,KAAK,UAAU,KAAK,EAAE;EACxC;EACA,SAAS;GAAE,gBAAgB;GAAoB,GAAG;GAAc;EACjE,CAAC"}

package/dist/v2/runtime/core/fetch-handler.d.cts

@@ -0,0 +1,40 @@
+
+import { CopilotRuntimeLike } from "./runtime.cjs";
+import { CopilotCorsConfig } from "./fetch-cors.cjs";
+import { CopilotRuntimeHooks } from "./hooks.cjs";
+
+//#region src/v2/runtime/core/fetch-handler.d.ts
+interface CopilotRuntimeHandlerOptions {
+  runtime: CopilotRuntimeLike;
+  /**
+   * Optional base path for routing.
+   *
+   * When provided: strict prefix stripping. The handler strips this prefix from the
+   * URL pathname and matches the remainder against known routes.
+   *
+   * When omitted: suffix matching. The handler matches known route patterns as
+   * suffixes of the URL pathname.
+   */
+  basePath?: string;
+  /**
+   * Endpoint mode:
+   * - "multi-route" (default): Routes like POST /agent/:agentId/run, GET /info, etc.
+   * - "single-route": Single POST endpoint with JSON envelope { method, params, body }
+   */
+  mode?: "multi-route" | "single-route";
+  /**
+   * Optional CORS configuration.
+   * When not provided, no CORS headers are added (let the framework handle it).
+   * Set to true for permissive defaults, or provide an object.
+   */
+  cors?: boolean | CopilotCorsConfig;
+  /**
+   * Lifecycle hooks for request processing.
+   */
+  hooks?: CopilotRuntimeHooks;
+}
+type CopilotRuntimeFetchHandler = (request: Request) => Promise<Response>;
+declare function createCopilotRuntimeHandler(options: CopilotRuntimeHandlerOptions): CopilotRuntimeFetchHandler;
+//#endregion
+export { CopilotRuntimeFetchHandler, CopilotRuntimeHandlerOptions, createCopilotRuntimeHandler };
+//# sourceMappingURL=fetch-handler.d.cts.map

package/dist/v2/runtime/core/fetch-handler.d.cts.map

@@ -0,0 +1 @@
+{"version":3,"file":"fetch-handler.d.cts","names":[],"sources":["../../../../src/v2/runtime/core/fetch-handler.ts"],"mappings":";;;;;;UA4DiB,4BAAA;EACf,OAAA,EAAS,kBAAA;EAkCT;;;;;AAOF;;;;EA9BE,QAAA;EA+BA;;;;;EAxBA,IAAA;;;;;;EAOA,IAAA,aAAiB,iBAAA;;;;EAKjB,KAAA,GAAQ,mBAAA;AAAA;AAAA,KAGE,0BAAA,IACV,OAAA,EAAS,OAAA,KACN,OAAA,CAAQ,QAAA;AAAA,iBAMG,2BAAA,CACd,OAAA,EAAS,4BAAA,GACR,0BAAA"}

package/dist/v2/runtime/core/fetch-handler.d.mts

@@ -0,0 +1,40 @@
+import "reflect-metadata";
+import { CopilotRuntimeLike } from "./runtime.mjs";
+import { CopilotCorsConfig } from "./fetch-cors.mjs";
+import { CopilotRuntimeHooks } from "./hooks.mjs";
+
+//#region src/v2/runtime/core/fetch-handler.d.ts
+interface CopilotRuntimeHandlerOptions {
+  runtime: CopilotRuntimeLike;
+  /**
+   * Optional base path for routing.
+   *
+   * When provided: strict prefix stripping. The handler strips this prefix from the
+   * URL pathname and matches the remainder against known routes.
+   *
+   * When omitted: suffix matching. The handler matches known route patterns as
+   * suffixes of the URL pathname.
+   */
+  basePath?: string;
+  /**
+   * Endpoint mode:
+   * - "multi-route" (default): Routes like POST /agent/:agentId/run, GET /info, etc.
+   * - "single-route": Single POST endpoint with JSON envelope { method, params, body }
+   */
+  mode?: "multi-route" | "single-route";
+  /**
+   * Optional CORS configuration.
+   * When not provided, no CORS headers are added (let the framework handle it).
+   * Set to true for permissive defaults, or provide an object.
+   */
+  cors?: boolean | CopilotCorsConfig;
+  /**
+   * Lifecycle hooks for request processing.
+   */
+  hooks?: CopilotRuntimeHooks;
+}
+type CopilotRuntimeFetchHandler = (request: Request) => Promise<Response>;
+declare function createCopilotRuntimeHandler(options: CopilotRuntimeHandlerOptions): CopilotRuntimeFetchHandler;
+//#endregion
+export { CopilotRuntimeFetchHandler, CopilotRuntimeHandlerOptions, createCopilotRuntimeHandler };
+//# sourceMappingURL=fetch-handler.d.mts.map

package/dist/v2/runtime/core/fetch-handler.d.mts.map

@@ -0,0 +1 @@
+{"version":3,"file":"fetch-handler.d.mts","names":[],"sources":["../../../../src/v2/runtime/core/fetch-handler.ts"],"mappings":";;;;;;UA4DiB,4BAAA;EACf,OAAA,EAAS,kBAAA;EAkCT;;;;;AAOF;;;;EA9BE,QAAA;EA+BA;;;;;EAxBA,IAAA;;;;;;EAOA,IAAA,aAAiB,iBAAA;;;;EAKjB,KAAA,GAAQ,mBAAA;AAAA;AAAA,KAGE,0BAAA,IACV,OAAA,EAAS,OAAA,KACN,OAAA,CAAQ,QAAA;AAAA,iBAMG,2BAAA,CACd,OAAA,EAAS,4BAAA,GACR,0BAAA"}