npm - @enbox/dwn-sdk-js - Versions diffs - 0.0.5 → 0.0.7 - Mend

@enbox/dwn-sdk-js 0.0.5 → 0.0.7

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (363) hide show

package/dist/browser.mjs +8 -8
package/dist/browser.mjs.map +4 -4
package/dist/esm/generated/precompiled-validators.js +1 -2
package/dist/esm/generated/precompiled-validators.js.map +1 -1
package/dist/esm/src/core/abstract-message.js +4 -0
package/dist/esm/src/core/abstract-message.js.map +1 -1
package/dist/esm/src/core/auth.js +22 -33
package/dist/esm/src/core/auth.js.map +1 -1
package/dist/esm/src/core/dwn-constant.js +7 -7
package/dist/esm/src/core/dwn-constant.js.map +1 -1
package/dist/esm/src/core/dwn-error.js +1 -0
package/dist/esm/src/core/dwn-error.js.map +1 -1
package/dist/esm/src/core/grant-authorization.js +37 -52
package/dist/esm/src/core/grant-authorization.js.map +1 -1
package/dist/esm/src/core/message.js +85 -116
package/dist/esm/src/core/message.js.map +1 -1
package/dist/esm/src/core/messages-grant-authorization.js +63 -78
package/dist/esm/src/core/messages-grant-authorization.js.map +1 -1
package/dist/esm/src/core/protocol-authorization-action.js +266 -0
package/dist/esm/src/core/protocol-authorization-action.js.map +1 -0
package/dist/esm/src/core/protocol-authorization-validation.js +254 -0
package/dist/esm/src/core/protocol-authorization-validation.js.map +1 -0
package/dist/esm/src/core/protocol-authorization.js +122 -740
package/dist/esm/src/core/protocol-authorization.js.map +1 -1
package/dist/esm/src/core/protocols-grant-authorization.js +24 -38
package/dist/esm/src/core/protocols-grant-authorization.js.map +1 -1
package/dist/esm/src/core/record-chain.js +64 -0
package/dist/esm/src/core/record-chain.js.map +1 -0
package/dist/esm/src/core/records-grant-authorization.js +55 -72
package/dist/esm/src/core/records-grant-authorization.js.map +1 -1
package/dist/esm/src/core/resumable-task-manager.js +50 -65
package/dist/esm/src/core/resumable-task-manager.js.map +1 -1
package/dist/esm/src/core/tenant-gate.js +2 -13
package/dist/esm/src/core/tenant-gate.js.map +1 -1
package/dist/esm/src/dwn.js +69 -86
package/dist/esm/src/dwn.js.map +1 -1
package/dist/esm/src/event-stream/event-emitter-stream.js +17 -31
package/dist/esm/src/event-stream/event-emitter-stream.js.map +1 -1
package/dist/esm/src/handlers/messages-read.js +67 -77
package/dist/esm/src/handlers/messages-read.js.map +1 -1
package/dist/esm/src/handlers/messages-subscribe.js +51 -61
package/dist/esm/src/handlers/messages-subscribe.js.map +1 -1
package/dist/esm/src/handlers/messages-sync.js +75 -85
package/dist/esm/src/handlers/messages-sync.js.map +1 -1
package/dist/esm/src/handlers/protocols-configure.js +135 -155
package/dist/esm/src/handlers/protocols-configure.js.map +1 -1
package/dist/esm/src/handlers/protocols-query.js +52 -51
package/dist/esm/src/handlers/protocols-query.js.map +1 -1
package/dist/esm/src/handlers/records-count.js +96 -82
package/dist/esm/src/handlers/records-count.js.map +1 -1
package/dist/esm/src/handlers/records-delete.js +78 -88
package/dist/esm/src/handlers/records-delete.js.map +1 -1
package/dist/esm/src/handlers/records-query.js +116 -101
package/dist/esm/src/handlers/records-query.js.map +1 -1
package/dist/esm/src/handlers/records-read.js +124 -131
package/dist/esm/src/handlers/records-read.js.map +1 -1
package/dist/esm/src/handlers/records-subscribe.js +150 -103
package/dist/esm/src/handlers/records-subscribe.js.map +1 -1
package/dist/esm/src/handlers/records-write.js +250 -259
package/dist/esm/src/handlers/records-write.js.map +1 -1
package/dist/esm/src/interfaces/messages-read.js +24 -32
package/dist/esm/src/interfaces/messages-read.js.map +1 -1
package/dist/esm/src/interfaces/messages-subscribe.js +27 -41
package/dist/esm/src/interfaces/messages-subscribe.js.map +1 -1
package/dist/esm/src/interfaces/messages-sync.js +26 -40
package/dist/esm/src/interfaces/messages-sync.js.map +1 -1
package/dist/esm/src/interfaces/protocols-configure.js +63 -63
package/dist/esm/src/interfaces/protocols-configure.js.map +1 -1
package/dist/esm/src/interfaces/protocols-query.js +55 -68
package/dist/esm/src/interfaces/protocols-query.js.map +1 -1
package/dist/esm/src/interfaces/records-count.js +50 -66
package/dist/esm/src/interfaces/records-count.js.map +1 -1
package/dist/esm/src/interfaces/records-delete.js +45 -55
package/dist/esm/src/interfaces/records-delete.js.map +1 -1
package/dist/esm/src/interfaces/records-query.js +60 -76
package/dist/esm/src/interfaces/records-query.js.map +1 -1
package/dist/esm/src/interfaces/records-read.js +51 -67
package/dist/esm/src/interfaces/records-read.js.map +1 -1
package/dist/esm/src/interfaces/records-subscribe.js +52 -68
package/dist/esm/src/interfaces/records-subscribe.js.map +1 -1
package/dist/esm/src/interfaces/records-write-query.js +102 -0
package/dist/esm/src/interfaces/records-write-query.js.map +1 -0
package/dist/esm/src/interfaces/records-write-signing.js +92 -0
package/dist/esm/src/interfaces/records-write-signing.js.map +1 -0
package/dist/esm/src/interfaces/records-write.js +407 -602
package/dist/esm/src/interfaces/records-write.js.map +1 -1
package/dist/esm/src/jose/algorithms/signing/ed25519.js +10 -19
package/dist/esm/src/jose/algorithms/signing/ed25519.js.map +1 -1
package/dist/esm/src/jose/jws/general/builder.js +23 -35
package/dist/esm/src/jose/jws/general/builder.js.map +1 -1
package/dist/esm/src/jose/jws/general/verifier.js +56 -69
package/dist/esm/src/jose/jws/general/verifier.js.map +1 -1
package/dist/esm/src/protocols/permission-grant.js +44 -15
package/dist/esm/src/protocols/permission-grant.js.map +1 -1
package/dist/esm/src/protocols/permission-request.js +29 -15
package/dist/esm/src/protocols/permission-request.js.map +1 -1
package/dist/esm/src/protocols/permissions.js +216 -226
package/dist/esm/src/protocols/permissions.js.map +1 -1
package/dist/esm/src/smt/smt-store-level.js +42 -64
package/dist/esm/src/smt/smt-store-level.js.map +1 -1
package/dist/esm/src/smt/smt-store-memory.js +19 -45
package/dist/esm/src/smt/smt-store-memory.js.map +1 -1
package/dist/esm/src/smt/smt-utils.js +28 -45
package/dist/esm/src/smt/smt-utils.js.map +1 -1
package/dist/esm/src/smt/sparse-merkle-tree.js +426 -471
package/dist/esm/src/smt/sparse-merkle-tree.js.map +1 -1
package/dist/esm/src/state-index/state-index-level.js +115 -150
package/dist/esm/src/state-index/state-index-level.js.map +1 -1
package/dist/esm/src/store/blockstore-level.js +54 -156
package/dist/esm/src/store/blockstore-level.js.map +1 -1
package/dist/esm/src/store/blockstore-mock.js +48 -153
package/dist/esm/src/store/blockstore-mock.js.map +1 -1
package/dist/esm/src/store/data-store-level.js +59 -99
package/dist/esm/src/store/data-store-level.js.map +1 -1
package/dist/esm/src/store/index-level-compound.js +246 -0
package/dist/esm/src/store/index-level-compound.js.map +1 -0
package/dist/esm/src/store/index-level.js +295 -713
package/dist/esm/src/store/index-level.js.map +1 -1
package/dist/esm/src/store/level-wrapper.js +143 -244
package/dist/esm/src/store/level-wrapper.js.map +1 -1
package/dist/esm/src/store/message-store-level.js +71 -94
package/dist/esm/src/store/message-store-level.js.map +1 -1
package/dist/esm/src/store/resumable-task-store-level.js +62 -101
package/dist/esm/src/store/resumable-task-store-level.js.map +1 -1
package/dist/esm/src/store/storage-controller.js +129 -144
package/dist/esm/src/store/storage-controller.js.map +1 -1
package/dist/esm/src/utils/abort.js +8 -19
package/dist/esm/src/utils/abort.js.map +1 -1
package/dist/esm/src/utils/array.js +15 -49
package/dist/esm/src/utils/array.js.map +1 -1
package/dist/esm/src/utils/cid.js +29 -77
package/dist/esm/src/utils/cid.js.map +1 -1
package/dist/esm/src/utils/data-stream.js +37 -65
package/dist/esm/src/utils/data-stream.js.map +1 -1
package/dist/esm/src/utils/encryption.js +136 -162
package/dist/esm/src/utils/encryption.js.map +1 -1
package/dist/esm/src/utils/filter.js +1 -12
package/dist/esm/src/utils/filter.js.map +1 -1
package/dist/esm/src/utils/hd-key.js +45 -63
package/dist/esm/src/utils/hd-key.js.map +1 -1
package/dist/esm/src/utils/jws.js +9 -20
package/dist/esm/src/utils/jws.js.map +1 -1
package/dist/esm/src/utils/memory-cache.js +12 -23
package/dist/esm/src/utils/memory-cache.js.map +1 -1
package/dist/esm/src/utils/messages.js +9 -3
package/dist/esm/src/utils/messages.js.map +1 -1
package/dist/esm/src/utils/private-key-signer.js +9 -17
package/dist/esm/src/utils/private-key-signer.js.map +1 -1
package/dist/esm/src/utils/protocols.js +62 -70
package/dist/esm/src/utils/protocols.js.map +1 -1
package/dist/esm/src/utils/records.js +108 -140
package/dist/esm/src/utils/records.js.map +1 -1
package/dist/esm/src/utils/secp256k1.js +60 -96
package/dist/esm/src/utils/secp256k1.js.map +1 -1
package/dist/esm/src/utils/secp256r1.js +54 -71
package/dist/esm/src/utils/secp256r1.js.map +1 -1
package/dist/esm/src/utils/time.js +5 -18
package/dist/esm/src/utils/time.js.map +1 -1
package/dist/esm/src/utils/url.js +3 -3
package/dist/esm/src/utils/url.js.map +1 -1
package/dist/esm/tests/core/auth.spec.js +3 -12
package/dist/esm/tests/core/auth.spec.js.map +1 -1
package/dist/esm/tests/core/message.spec.js +50 -59
package/dist/esm/tests/core/message.spec.js.map +1 -1
package/dist/esm/tests/core/protocol-authorization.spec.js +9 -18
package/dist/esm/tests/core/protocol-authorization.spec.js.map +1 -1
package/dist/esm/tests/dwn.spec.js +45 -58
package/dist/esm/tests/dwn.spec.js.map +1 -1
package/dist/esm/tests/event-stream/event-emitter-stream.spec.js +24 -33
package/dist/esm/tests/event-stream/event-emitter-stream.spec.js.map +1 -1
package/dist/esm/tests/event-stream/event-stream.spec.js +46 -55
package/dist/esm/tests/event-stream/event-stream.spec.js.map +1 -1
package/dist/esm/tests/features/author-delegated-grant.spec.js +326 -343
package/dist/esm/tests/features/author-delegated-grant.spec.js.map +1 -1
package/dist/esm/tests/features/owner-delegated-grant.spec.js +153 -169
package/dist/esm/tests/features/owner-delegated-grant.spec.js.map +1 -1
package/dist/esm/tests/features/owner-signature.spec.js +67 -78
package/dist/esm/tests/features/owner-signature.spec.js.map +1 -1
package/dist/esm/tests/features/permissions.spec.js +446 -181
package/dist/esm/tests/features/permissions.spec.js.map +1 -1
package/dist/esm/tests/features/protocol-composition.spec.js +346 -356
package/dist/esm/tests/features/protocol-composition.spec.js.map +1 -1
package/dist/esm/tests/features/protocol-create-action.spec.js +42 -51
package/dist/esm/tests/features/protocol-create-action.spec.js.map +1 -1
package/dist/esm/tests/features/protocol-delete-action.spec.js +94 -103
package/dist/esm/tests/features/protocol-delete-action.spec.js.map +1 -1
package/dist/esm/tests/features/protocol-update-action.spec.js +105 -114
package/dist/esm/tests/features/protocol-update-action.spec.js.map +1 -1
package/dist/esm/tests/features/records-prune.spec.js +175 -191
package/dist/esm/tests/features/records-prune.spec.js.map +1 -1
package/dist/esm/tests/features/records-tags.spec.js +441 -460
package/dist/esm/tests/features/records-tags.spec.js.map +1 -1
package/dist/esm/tests/features/resumable-tasks.spec.js +82 -91
package/dist/esm/tests/features/resumable-tasks.spec.js.map +1 -1
package/dist/esm/tests/handlers/messages-read.spec.js +206 -207
package/dist/esm/tests/handlers/messages-read.spec.js.map +1 -1
package/dist/esm/tests/handlers/messages-subscribe.spec.js +145 -154
package/dist/esm/tests/handlers/messages-subscribe.spec.js.map +1 -1
package/dist/esm/tests/handlers/messages-sync.spec.js +174 -183
package/dist/esm/tests/handlers/messages-sync.spec.js.map +1 -1
package/dist/esm/tests/handlers/protocols-configure.spec.js +244 -238
package/dist/esm/tests/handlers/protocols-configure.spec.js.map +1 -1
package/dist/esm/tests/handlers/protocols-query.spec.js +156 -169
package/dist/esm/tests/handlers/protocols-query.spec.js.map +1 -1
package/dist/esm/tests/handlers/records-count.spec.js +93 -102
package/dist/esm/tests/handlers/records-count.spec.js.map +1 -1
package/dist/esm/tests/handlers/records-delete.spec.js +252 -264
package/dist/esm/tests/handlers/records-delete.spec.js.map +1 -1
package/dist/esm/tests/handlers/records-query.spec.js +917 -988
package/dist/esm/tests/handlers/records-query.spec.js.map +1 -1
package/dist/esm/tests/handlers/records-read.spec.js +553 -568
package/dist/esm/tests/handlers/records-read.spec.js.map +1 -1
package/dist/esm/tests/handlers/records-subscribe.spec.js +269 -278
package/dist/esm/tests/handlers/records-subscribe.spec.js.map +1 -1
package/dist/esm/tests/handlers/records-write.spec.js +1057 -1082
package/dist/esm/tests/handlers/records-write.spec.js.map +1 -1
package/dist/esm/tests/interfaces/messages-get.spec.js +39 -48
package/dist/esm/tests/interfaces/messages-get.spec.js.map +1 -1
package/dist/esm/tests/interfaces/messages-subscribe.spec.js +4 -13
package/dist/esm/tests/interfaces/messages-subscribe.spec.js.map +1 -1
package/dist/esm/tests/interfaces/protocols-configure.spec.js +212 -88
package/dist/esm/tests/interfaces/protocols-configure.spec.js.map +1 -1
package/dist/esm/tests/interfaces/protocols-query.spec.js +8 -17
package/dist/esm/tests/interfaces/protocols-query.spec.js.map +1 -1
package/dist/esm/tests/interfaces/records-delete.spec.js +8 -17
package/dist/esm/tests/interfaces/records-delete.spec.js.map +1 -1
package/dist/esm/tests/interfaces/records-query.spec.js +20 -29
package/dist/esm/tests/interfaces/records-query.spec.js.map +1 -1
package/dist/esm/tests/interfaces/records-read.spec.js +42 -51
package/dist/esm/tests/interfaces/records-read.spec.js.map +1 -1
package/dist/esm/tests/interfaces/records-subscribe.spec.js +16 -25
package/dist/esm/tests/interfaces/records-subscribe.spec.js.map +1 -1
package/dist/esm/tests/interfaces/records-write.spec.js +152 -165
package/dist/esm/tests/interfaces/records-write.spec.js.map +1 -1
package/dist/esm/tests/jose/jws/general.spec.js +36 -45
package/dist/esm/tests/jose/jws/general.spec.js.map +1 -1
package/dist/esm/tests/protocols/permission-grant.spec.js +44 -50
package/dist/esm/tests/protocols/permission-grant.spec.js.map +1 -1
package/dist/esm/tests/protocols/permission-request.spec.js +23 -32
package/dist/esm/tests/protocols/permission-request.spec.js.map +1 -1
package/dist/esm/tests/protocols/permissions.spec.js +49 -55
package/dist/esm/tests/protocols/permissions.spec.js.map +1 -1
package/dist/esm/tests/scenarios/aggregator.spec.js +124 -135
package/dist/esm/tests/scenarios/aggregator.spec.js.map +1 -1
package/dist/esm/tests/scenarios/deleted-record.spec.js +23 -32
package/dist/esm/tests/scenarios/deleted-record.spec.js.map +1 -1
package/dist/esm/tests/scenarios/end-to-end-tests.spec.js +52 -61
package/dist/esm/tests/scenarios/end-to-end-tests.spec.js.map +1 -1
package/dist/esm/tests/scenarios/nested-roles.spec.js +63 -73
package/dist/esm/tests/scenarios/nested-roles.spec.js.map +1 -1
package/dist/esm/tests/scenarios/subscriptions.spec.js +377 -333
package/dist/esm/tests/scenarios/subscriptions.spec.js.map +1 -1
package/dist/esm/tests/smt/smt-store-level.spec.js +76 -87
package/dist/esm/tests/smt/smt-store-level.spec.js.map +1 -1
package/dist/esm/tests/smt/sparse-merkle-tree.spec.js +344 -353
package/dist/esm/tests/smt/sparse-merkle-tree.spec.js.map +1 -1
package/dist/esm/tests/state-index/state-index-level.spec.js +117 -126
package/dist/esm/tests/state-index/state-index-level.spec.js.map +1 -1
package/dist/esm/tests/store/blockstore-level.spec.js +44 -99
package/dist/esm/tests/store/blockstore-level.spec.js.map +1 -1
package/dist/esm/tests/store/blockstore-mock.spec.js +40 -120
package/dist/esm/tests/store/blockstore-mock.spec.js.map +1 -1
package/dist/esm/tests/store/data-store-level.spec.js +86 -95
package/dist/esm/tests/store/data-store-level.spec.js.map +1 -1
package/dist/esm/tests/store/index-level.spec.js +404 -414
package/dist/esm/tests/store/index-level.spec.js.map +1 -1
package/dist/esm/tests/store/message-store-level.spec.js +13 -22
package/dist/esm/tests/store/message-store-level.spec.js.map +1 -1
package/dist/esm/tests/store/message-store.spec.js +229 -238
package/dist/esm/tests/store/message-store.spec.js.map +1 -1
package/dist/esm/tests/test-event-stream.js +3 -3
package/dist/esm/tests/test-event-stream.js.map +1 -1
package/dist/esm/tests/test-stores.js +16 -13
package/dist/esm/tests/test-stores.js.map +1 -1
package/dist/esm/tests/test-suite.js +2 -11
package/dist/esm/tests/test-suite.js.map +1 -1
package/dist/esm/tests/utils/cid.spec.js +24 -33
package/dist/esm/tests/utils/cid.spec.js.map +1 -1
package/dist/esm/tests/utils/data-stream.spec.js +48 -57
package/dist/esm/tests/utils/data-stream.spec.js.map +1 -1
package/dist/esm/tests/utils/encryption-callbacks.spec.js +45 -54
package/dist/esm/tests/utils/encryption-callbacks.spec.js.map +1 -1
package/dist/esm/tests/utils/encryption.spec.js +291 -44
package/dist/esm/tests/utils/encryption.spec.js.map +1 -1
package/dist/esm/tests/utils/filters.spec.js +46 -55
package/dist/esm/tests/utils/filters.spec.js.map +1 -1
package/dist/esm/tests/utils/hd-key.spec.js +10 -19
package/dist/esm/tests/utils/hd-key.spec.js.map +1 -1
package/dist/esm/tests/utils/jws.spec.js +3 -12
package/dist/esm/tests/utils/jws.spec.js.map +1 -1
package/dist/esm/tests/utils/memory-cache.spec.js +9 -18
package/dist/esm/tests/utils/memory-cache.spec.js.map +1 -1
package/dist/esm/tests/utils/messages.spec.js +6 -15
package/dist/esm/tests/utils/messages.spec.js.map +1 -1
package/dist/esm/tests/utils/poller.js +22 -33
package/dist/esm/tests/utils/poller.js.map +1 -1
package/dist/esm/tests/utils/private-key-signer.spec.js +15 -24
package/dist/esm/tests/utils/private-key-signer.spec.js.map +1 -1
package/dist/esm/tests/utils/records.spec.js +10 -19
package/dist/esm/tests/utils/records.spec.js.map +1 -1
package/dist/esm/tests/utils/secp256k1.spec.js +16 -25
package/dist/esm/tests/utils/secp256k1.spec.js.map +1 -1
package/dist/esm/tests/utils/secp256r1.spec.js +18 -27
package/dist/esm/tests/utils/secp256r1.spec.js.map +1 -1
package/dist/esm/tests/utils/test-data-generator.js +414 -468
package/dist/esm/tests/utils/test-data-generator.js.map +1 -1
package/dist/esm/tests/validation/json-schemas/definitions.spec.js +2 -11
package/dist/esm/tests/validation/json-schemas/definitions.spec.js.map +1 -1
package/dist/esm/tests/validation/json-schemas/jwk/general-jwk.spec.js +4 -13
package/dist/esm/tests/validation/json-schemas/jwk/general-jwk.spec.js.map +1 -1
package/dist/esm/tests/validation/json-schemas/jwk/public-jwk.spec.js +8 -17
package/dist/esm/tests/validation/json-schemas/jwk/public-jwk.spec.js.map +1 -1
package/dist/esm/tests/validation/json-schemas/jwk-verification-method.spec.js +3 -12
package/dist/esm/tests/validation/json-schemas/jwk-verification-method.spec.js.map +1 -1
package/dist/esm/tests/validation/json-schemas/protocols/protocols-configure.spec.js +4 -13
package/dist/esm/tests/validation/json-schemas/protocols/protocols-configure.spec.js.map +1 -1
package/dist/esm/tests/validation/json-schemas/records/records-query.spec.js +2 -11
package/dist/esm/tests/validation/json-schemas/records/records-query.spec.js.map +1 -1
package/dist/esm/tests/validation/json-schemas/records/records-read.spec.js +2 -11
package/dist/esm/tests/validation/json-schemas/records/records-read.spec.js.map +1 -1
package/dist/esm/tests/validation/json-schemas/records/records-write.spec.js +7 -16
package/dist/esm/tests/validation/json-schemas/records/records-write.spec.js.map +1 -1
package/dist/types/src/core/protocol-authorization-action.d.ts +42 -0
package/dist/types/src/core/protocol-authorization-action.d.ts.map +1 -0
package/dist/types/src/core/protocol-authorization-validation.d.ts +60 -0
package/dist/types/src/core/protocol-authorization-validation.d.ts.map +1 -0
package/dist/types/src/core/protocol-authorization.d.ts +10 -100
package/dist/types/src/core/protocol-authorization.d.ts.map +1 -1
package/dist/types/src/core/record-chain.d.ts +24 -0
package/dist/types/src/core/record-chain.d.ts.map +1 -0
package/dist/types/src/handlers/records-write.d.ts +2 -1
package/dist/types/src/handlers/records-write.d.ts.map +1 -1
package/dist/types/src/interfaces/protocols-configure.d.ts.map +1 -1
package/dist/types/src/interfaces/records-write-query.d.ts +33 -0
package/dist/types/src/interfaces/records-write-query.d.ts.map +1 -0
package/dist/types/src/interfaces/records-write-signing.d.ts +35 -0
package/dist/types/src/interfaces/records-write-signing.d.ts.map +1 -0
package/dist/types/src/interfaces/records-write.d.ts +10 -44
package/dist/types/src/interfaces/records-write.d.ts.map +1 -1
package/dist/types/src/store/index-level-compound.d.ts +70 -0
package/dist/types/src/store/index-level-compound.d.ts.map +1 -0
package/dist/types/src/store/index-level.d.ts +0 -58
package/dist/types/src/store/index-level.d.ts.map +1 -1
package/dist/types/src/utils/protocols.d.ts +5 -0
package/dist/types/src/utils/protocols.d.ts.map +1 -1
package/dist/types/src/utils/records.d.ts +3 -1
package/dist/types/src/utils/records.d.ts.map +1 -1
package/dist/types/tests/features/permissions.spec.d.ts.map +1 -1
package/package.json +3 -3
package/src/core/protocol-authorization-action.ts +377 -0
package/src/core/protocol-authorization-validation.ts +391 -0
package/src/core/protocol-authorization.ts +60 -849
package/src/core/record-chain.ts +99 -0
package/src/handlers/records-read.ts +1 -1
package/src/handlers/records-write.ts +37 -21
package/src/interfaces/protocols-configure.ts +33 -5
package/src/interfaces/records-write-query.ts +139 -0
package/src/interfaces/records-write-signing.ts +143 -0
package/src/interfaces/records-write.ts +49 -221
package/src/store/index-level-compound.ts +324 -0
package/src/store/index-level.ts +24 -306
package/src/utils/protocols.ts +8 -0
package/src/utils/records.ts +9 -15

package/dist/esm/src/handlers/records-write.js CHANGED Viewed

@@ -1,12 +1,3 @@
-var __awaiter = (this && this.__awaiter) || function (thisArg, _arguments, P, generator) {
-    function adopt(value) { return value instanceof P ? value : new P(function (resolve) { resolve(value); }); }
-    return new (P || (P = Promise))(function (resolve, reject) {
-        function fulfilled(value) { try { step(generator.next(value)); } catch (e) { reject(e); } }
-        function rejected(value) { try { step(generator["throw"](value)); } catch (e) { reject(e); } }
-        function step(result) { result.done ? resolve(result.value) : adopt(result.value).then(fulfilled, rejected); }
-        step((generator = generator.apply(thisArg, _arguments || [])).next());
-    });
-};
 import { authenticate } from '../core/auth.js';
 import { Cid } from '../utils/cid.js';
 import { DataStream } from '../utils/data-stream.js';
@@ -22,6 +13,11 @@ import { StorageController } from '../store/storage-controller.js';
 import { DwnError, DwnErrorCode } from '../core/dwn-error.js';
 import { DwnInterfaceName, DwnMethodName } from '../enums/dwn-interface-method.js';
 export class RecordsWriteHandler {
+    didResolver;
+    messageStore;
+    dataStore;
+    stateIndex;
+    eventStream;
     constructor(didResolver, messageStore, dataStore, stateIndex, eventStream) {
         this.didResolver = didResolver;
         this.messageStore = messageStore;
@@ -29,154 +25,149 @@ export class RecordsWriteHandler {
         this.stateIndex = stateIndex;
         this.eventStream = eventStream;
     }
-    handle(_a) {
-        return __awaiter(this, arguments, void 0, function* ({ tenant, message, dataStream }) {
-            let recordsWrite;
-            try {
-                recordsWrite = yield RecordsWrite.parse(message);
-                // Protocol-authorized record specific validation
-                if (message.descriptor.protocol !== undefined) {
-                    yield ProtocolAuthorization.validateReferentialIntegrity(tenant, recordsWrite, this.messageStore);
-                }
-            }
-            catch (e) {
-                return messageReplyFromError(e, 400);
+    async handle({ tenant, message, dataStream }) {
+        let recordsWrite;
+        try {
+            recordsWrite = await RecordsWrite.parse(message);
+            // Protocol-authorized record specific validation
+            if (message.descriptor.protocol !== undefined) {
+                await ProtocolAuthorization.validateReferentialIntegrity(tenant, recordsWrite, this.messageStore);
             }
-            // authentication & authorization
+        }
+        catch (e) {
+            return messageReplyFromError(e, 400);
+        }
+        // authentication & authorization
+        try {
+            await authenticate(message.authorization, this.didResolver, message.attestation);
+            await RecordsWriteHandler.authorizeRecordsWrite(tenant, recordsWrite, this.messageStore);
+        }
+        catch (e) {
+            return messageReplyFromError(e, 401);
+        }
+        // get existing messages matching the `recordId`
+        const query = {
+            interface: DwnInterfaceName.Records,
+            recordId: message.recordId
+        };
+        const { messages: existingMessages } = await this.messageStore.query(tenant, [query]);
+        // if the incoming write is not the initial write, then it must not modify any immutable properties defined by the initial write
+        const newMessageIsInitialWrite = await recordsWrite.isInitialWrite();
+        let initialWrite;
+        if (!newMessageIsInitialWrite) {
             try {
-                yield authenticate(message.authorization, this.didResolver, message.attestation);
-                yield RecordsWriteHandler.authorizeRecordsWrite(tenant, recordsWrite, this.messageStore);
+                initialWrite = await RecordsWrite.getInitialWrite(existingMessages);
+                RecordsWrite.verifyEqualityOfImmutableProperties(initialWrite, message);
             }
             catch (e) {
-                return messageReplyFromError(e, 401);
+                return messageReplyFromError(e, 400);
             }
-            // get existing messages matching the `recordId`
-            const query = {
-                interface: DwnInterfaceName.Records,
-                recordId: message.recordId
+        }
+        const newestExistingMessage = await Message.getNewestMessage(existingMessages);
+        let incomingMessageIsNewest = false;
+        let newestMessage; // keep reference of newest message for pruning later
+        if (newestExistingMessage === undefined || await Message.isNewer(message, newestExistingMessage)) {
+            incomingMessageIsNewest = true;
+            newestMessage = message;
+        }
+        else { // existing message is the same age or newer than the incoming message
+            newestMessage = newestExistingMessage;
+        }
+        if (!incomingMessageIsNewest) {
+            return {
+                status: { code: 409, detail: 'Conflict' }
             };
-            const { messages: existingMessages } = yield this.messageStore.query(tenant, [query]);
-            // if the incoming write is not the initial write, then it must not modify any immutable properties defined by the initial write
-            const newMessageIsInitialWrite = yield recordsWrite.isInitialWrite();
-            let initialWrite;
-            if (!newMessageIsInitialWrite) {
-                try {
-                    initialWrite = yield RecordsWrite.getInitialWrite(existingMessages);
-                    RecordsWrite.verifyEqualityOfImmutableProperties(initialWrite, message);
-                }
-                catch (e) {
-                    return messageReplyFromError(e, 400);
-                }
-            }
-            const newestExistingMessage = yield Message.getNewestMessage(existingMessages);
-            let incomingMessageIsNewest = false;
-            let newestMessage; // keep reference of newest message for pruning later
-            if (newestExistingMessage === undefined || (yield Message.isNewer(message, newestExistingMessage))) {
-                incomingMessageIsNewest = true;
-                newestMessage = message;
-            }
-            else { // existing message is the same age or newer than the incoming message
-                newestMessage = newestExistingMessage;
+        }
+        try {
+            if (newestExistingMessage?.descriptor.method === DwnMethodName.Delete) {
+                throw new DwnError(DwnErrorCode.RecordsWriteNotAllowedAfterDelete, 'RecordsWrite is not allowed after a RecordsDelete.');
             }
-            if (!incomingMessageIsNewest) {
-                return {
-                    status: { code: 409, detail: 'Conflict' }
-                };
+            // NOTE: We want to perform additional validation before storing the RecordsWrite.
+            // This is necessary for core DWN RecordsWrite that needs additional processing and allows us to fail before the storing and post processing.
+            //
+            // Example: Ensures that the protocol tag of a permission revocation RecordsWrite and the parent grant's scoped protocol match.
+            await this.preProcessingForCoreRecordsWrite(tenant, message);
+            // NOTE: We allow isLatestBaseState to be true ONLY if the incoming message comes with data, or if the incoming message is NOT an initial write
+            // This would allow an initial write to be written to the DB without data, but having it not queryable,
+            // because query implementation filters on `isLatestBaseState` being `true`
+            // thus preventing a user's attempt to gain authorized access to data by referencing the dataCid of a private data in their initial writes,
+            // See: https://github.com/enboxorg/enbox/issues/359 for more info
+            let isLatestBaseState = false;
+            let messageWithOptionalEncodedData = message;
+            if (dataStream !== undefined) {
+                messageWithOptionalEncodedData = await this.processMessageWithDataStream(tenant, message, dataStream);
+                isLatestBaseState = true;
             }
-            try {
-                if ((newestExistingMessage === null || newestExistingMessage === void 0 ? void 0 : newestExistingMessage.descriptor.method) === DwnMethodName.Delete) {
-                    throw new DwnError(DwnErrorCode.RecordsWriteNotAllowedAfterDelete, 'RecordsWrite is not allowed after a RecordsDelete.');
-                }
-                // NOTE: We want to perform additional validation before storing the RecordsWrite.
-                // This is necessary for core DWN RecordsWrite that needs additional processing and allows us to fail before the storing and post processing.
-                //
-                // Example: Ensures that the protocol tag of a permission revocation RecordsWrite and the parent grant's scoped protocol match.
-                yield this.preProcessingForCoreRecordsWrite(tenant, message);
-                // NOTE: We allow isLatestBaseState to be true ONLY if the incoming message comes with data, or if the incoming message is NOT an initial write
-                // This would allow an initial write to be written to the DB without data, but having it not queryable,
-                // because query implementation filters on `isLatestBaseState` being `true`
-                // thus preventing a user's attempt to gain authorized access to data by referencing the dataCid of a private data in their initial writes,
-                // See: https://github.com/enboxorg/enbox/issues/359 for more info
-                let isLatestBaseState = false;
-                let messageWithOptionalEncodedData = message;
-                if (dataStream !== undefined) {
-                    messageWithOptionalEncodedData = yield this.processMessageWithDataStream(tenant, message, dataStream);
+            else {
+                // else data stream is NOT provided
+                // if the incoming message is not an initial write, and no dataStream is provided, we would allow it provided it passes validation
+                // processMessageWithoutDataStream() abstracts that logic
+                if (!newMessageIsInitialWrite) {
+                    const newestExistingWrite = newestExistingMessage;
+                    messageWithOptionalEncodedData = await this.processMessageWithoutDataStream(tenant, message, newestExistingWrite);
                     isLatestBaseState = true;
                 }
-                else {
-                    // else data stream is NOT provided
-                    // if the incoming message is not an initial write, and no dataStream is provided, we would allow it provided it passes validation
-                    // processMessageWithoutDataStream() abstracts that logic
-                    if (!newMessageIsInitialWrite) {
-                        const newestExistingWrite = newestExistingMessage;
-                        messageWithOptionalEncodedData = yield this.processMessageWithoutDataStream(tenant, message, newestExistingWrite);
-                        isLatestBaseState = true;
-                    }
-                }
-                const indexes = yield recordsWrite.constructIndexes(isLatestBaseState);
-                yield this.messageStore.put(tenant, messageWithOptionalEncodedData, indexes);
-                yield this.stateIndex.insert(tenant, yield Message.getCid(message), indexes);
-                // NOTE: We only emit a `RecordsWrite` when the message is the latest base state.
-                // Because we allow a `RecordsWrite` which is not the latest state to be written, but not queried, we shouldn't emit it either.
-                // It will be emitted as a part of a subsequent next write, if it is the latest base state.
-                if (this.eventStream !== undefined && isLatestBaseState) {
-                    this.eventStream.emit(tenant, { message, initialWrite }, indexes);
-                }
             }
-            catch (error) {
-                if (error instanceof DwnError) {
-                    if (error.code === DwnErrorCode.RecordsWriteMissingEncodedDataInPrevious ||
-                        error.code === DwnErrorCode.RecordsWriteMissingDataInPrevious ||
-                        error.code === DwnErrorCode.RecordsWriteNotAllowedAfterDelete ||
-                        error.code === DwnErrorCode.RecordsWriteDataCidMismatch ||
-                        error.code === DwnErrorCode.RecordsWriteDataSizeMismatch ||
-                        error.code.startsWith('PermissionsProtocolValidate') ||
-                        error.code.startsWith('SchemaValidator')) {
-                        return messageReplyFromError(error, 400);
-                    }
+            const indexes = await recordsWrite.constructIndexes(isLatestBaseState);
+            await this.messageStore.put(tenant, messageWithOptionalEncodedData, indexes);
+            await this.stateIndex.insert(tenant, await Message.getCid(message), indexes);
+            // NOTE: We only emit a `RecordsWrite` when the message is the latest base state.
+            // Because we allow a `RecordsWrite` which is not the latest state to be written, but not queried, we shouldn't emit it either.
+            // It will be emitted as a part of a subsequent next write, if it is the latest base state.
+            if (this.eventStream !== undefined && isLatestBaseState) {
+                this.eventStream.emit(tenant, { message, initialWrite }, indexes);
+            }
+        }
+        catch (error) {
+            if (error instanceof DwnError) {
+                if (error.code === DwnErrorCode.RecordsWriteMissingEncodedDataInPrevious ||
+                    error.code === DwnErrorCode.RecordsWriteMissingDataInPrevious ||
+                    error.code === DwnErrorCode.RecordsWriteNotAllowedAfterDelete ||
+                    error.code === DwnErrorCode.RecordsWriteDataCidMismatch ||
+                    error.code === DwnErrorCode.RecordsWriteDataSizeMismatch ||
+                    error.code.startsWith('PermissionsProtocolValidate') ||
+                    error.code.startsWith('SchemaValidator')) {
+                    return messageReplyFromError(error, 400);
                 }
-                // else throw
-                throw error;
             }
-            const messageReply = {
-                // In order to discern between something that was accepted as a queryable write and something that was accepted
-                // as an initial state we use separate response codes. See https://github.com/enboxorg/enbox/issues/695
-                // for more details.
-                status: (newMessageIsInitialWrite && dataStream === undefined) ?
-                    { code: 204, detail: 'No Content' } :
-                    { code: 202, detail: 'Accepted' }
-            };
-            // delete all existing messages of the same record that are not newest, except for the initial write
-            yield StorageController.deleteAllOlderMessagesButKeepInitialWrite(tenant, existingMessages, newestMessage, this.messageStore, this.dataStore, this.stateIndex);
-            yield this.postProcessingForCoreRecordsWrite(tenant, recordsWrite);
-            return messageReply;
-        });
+            // else throw
+            throw error;
+        }
+        const messageReply = {
+            // In order to discern between something that was accepted as a queryable write and something that was accepted
+            // as an initial state we use separate response codes. See https://github.com/enboxorg/enbox/issues/695
+            // for more details.
+            status: (newMessageIsInitialWrite && dataStream === undefined) ?
+                { code: 204, detail: 'No Content' } :
+                { code: 202, detail: 'Accepted' }
+        };
+        // delete all existing messages of the same record that are not newest, except for the initial write
+        await StorageController.deleteAllOlderMessagesButKeepInitialWrite(tenant, existingMessages, newestMessage, this.messageStore, this.dataStore, this.stateIndex);
+        await this.postProcessingForCoreRecordsWrite(tenant, recordsWrite);
+        return messageReply;
     }
     ;
     /**
      * Performs additional necessary validation before storing the RecordsWrite if it is a core DWN RecordsWrite that needs additional processing.
      * For instance: a Permission revocation RecordsWrite.
      */
-    preProcessingForCoreRecordsWrite(tenant, recordsWriteMessage) {
-        return __awaiter(this, void 0, void 0, function* () {
-            var _a;
-            // we validate the protocol tag of the revocation message against the grant's scoped protocol
-            // to do this we will fetch the grant, and compare the the scoped protocol value to the protocol tag of the revocation message
-            if (recordsWriteMessage.descriptor.protocol === PermissionsProtocol.uri &&
-                recordsWriteMessage.descriptor.protocolPath === PermissionsProtocol.revocationPath) {
-                // get the parentId of the revocation message, which is the permissionGrantId
-                // fetch the grant in order to get the grant's protocol
-                const permissionGrantId = recordsWriteMessage.descriptor.parentId;
-                const grant = yield PermissionsProtocol.fetchGrant(tenant, this.messageStore, permissionGrantId);
-                // get the protocol values of the revocation message from the protocol tag and the protocol from the grant scope if they are defined
-                // compare the two values ensuring they must match
-                const revokeTagProtocol = (_a = recordsWriteMessage.descriptor.tags) === null || _a === void 0 ? void 0 : _a.protocol;
-                const grantProtocol = 'protocol' in grant.scope ? grant.scope.protocol : undefined;
-                if (grantProtocol !== revokeTagProtocol) {
-                    throw new DwnError(DwnErrorCode.PermissionsProtocolValidateRevocationProtocolTagMismatch, `Revocation protocol ${revokeTagProtocol} does not match grant protocol ${grantProtocol}`);
-                }
+    async preProcessingForCoreRecordsWrite(tenant, recordsWriteMessage) {
+        // we validate the protocol tag of the revocation message against the grant's scoped protocol
+        // to do this we will fetch the grant, and compare the the scoped protocol value to the protocol tag of the revocation message
+        if (recordsWriteMessage.descriptor.protocol === PermissionsProtocol.uri &&
+            recordsWriteMessage.descriptor.protocolPath === PermissionsProtocol.revocationPath) {
+            // get the parentId of the revocation message, which is the permissionGrantId
+            // fetch the grant in order to get the grant's protocol
+            const permissionGrantId = recordsWriteMessage.descriptor.parentId;
+            const grant = await PermissionsProtocol.fetchGrant(tenant, this.messageStore, permissionGrantId);
+            // get the protocol values of the revocation message from the protocol tag and the protocol from the grant scope if they are defined
+            // compare the two values ensuring they must match
+            const revokeTagProtocol = recordsWriteMessage.descriptor.tags?.protocol;
+            const grantProtocol = 'protocol' in grant.scope ? grant.scope.protocol : undefined;
+            if (grantProtocol !== revokeTagProtocol) {
+                throw new DwnError(DwnErrorCode.PermissionsProtocolValidateRevocationProtocolTagMismatch, `Revocation protocol ${revokeTagProtocol} does not match grant protocol ${grantProtocol}`);
             }
-        });
+        }
     }
     static validateSchemaForCoreRecordsWrite(recordsWriteMessage, dataBytes) {
         if (recordsWriteMessage.descriptor.protocol === PermissionsProtocol.uri) {
@@ -185,104 +176,106 @@ export class RecordsWriteHandler {
     }
     /**
      * Performs additional necessary tasks if the RecordsWrite handled is a core DWN RecordsWrite that need additional processing.
-     * For instance: a Permission revocation RecordsWrite.
+     * For instance: when a Permission revocation is written, all messages authorized by the revoked grant
+     * that were created after the revocation timestamp are deleted from all stores.
      */
-    postProcessingForCoreRecordsWrite(tenant, recordsWrite) {
-        return __awaiter(this, void 0, void 0, function* () {
-            // If this message is a Permission revocation, we need to delete all grant-authorized messages with timestamp after revocation
-            // TODO: https://github.com/enboxorg/enbox/issues/716
-            // This code is a direct copy and paste from the original PermissionsRevokeHandler (no longer exists),
-            // but it appears that there was no test for it and it does not look like the code worked:
-            // - not seeing `permissionGrantId` being an index
-            // - not seeing `this.dataStore` being called to delete actual data
-            // - test coverage is missing for the main delete logic
-            if (recordsWrite.message.descriptor.protocol === PermissionsProtocol.uri &&
-                recordsWrite.message.descriptor.protocolPath === PermissionsProtocol.revocationPath) {
-                const permissionGrantId = recordsWrite.message.descriptor.parentId;
-                const grantAuthorizedMessagesQuery = {
-                    permissionGrantId,
-                    dateCreated: { gte: recordsWrite.message.descriptor.messageTimestamp },
-                };
-                const { messages: grantAuthorizedMessagesAfterRevoke } = yield this.messageStore.query(tenant, [grantAuthorizedMessagesQuery]);
-                const grantAuthorizedMessageCidsAfterRevoke = [];
-                for (const grantAuthorizedMessage of grantAuthorizedMessagesAfterRevoke) {
-                    const messageCid = yield Message.getCid(grantAuthorizedMessage);
-                    yield this.messageStore.delete(tenant, messageCid);
+    async postProcessingForCoreRecordsWrite(tenant, recordsWrite) {
+        if (recordsWrite.message.descriptor.protocol !== PermissionsProtocol.uri ||
+            recordsWrite.message.descriptor.protocolPath !== PermissionsProtocol.revocationPath) {
+            return;
+        }
+        // Delete all messages authorized by the revoked grant that were created after the revocation.
+        // `permissionGrantId` is indexed via the RecordsWriteDescriptor spread in constructIndexes().
+        const permissionGrantId = recordsWrite.message.descriptor.parentId;
+        const grantAuthorizedMessagesQuery = {
+            permissionGrantId,
+            dateCreated: { gte: recordsWrite.message.descriptor.messageTimestamp },
+        };
+        const { messages: grantAuthorizedMessages } = await this.messageStore.query(tenant, [grantAuthorizedMessagesQuery]);
+        if (grantAuthorizedMessages.length === 0) {
+            return;
+        }
+        // Delete data from the data store first to avoid orphaned data blobs in case of crash.
+        // Only RecordsWrite messages with data larger than maxDataSizeAllowedToBeEncoded have data in the data store.
+        for (const message of grantAuthorizedMessages) {
+            if (message.descriptor.method === DwnMethodName.Write) {
+                const recordsWriteMessage = message;
+                if (recordsWriteMessage.descriptor.dataSize > DwnConstant.maxDataSizeAllowedToBeEncoded) {
+                    await this.dataStore.delete(tenant, recordsWriteMessage.recordId, recordsWriteMessage.descriptor.dataCid);
                 }
-                this.stateIndex.delete(tenant, grantAuthorizedMessageCidsAfterRevoke);
             }
-        });
+        }
+        // Compute CIDs for all messages to delete.
+        const messageCids = await Promise.all(grantAuthorizedMessages.map((message) => Message.getCid(message)));
+        // Delete from state index before message store so we don't have orphaned state entries.
+        await this.stateIndex.delete(tenant, messageCids);
+        // Finally delete all messages from the message store.
+        await Promise.all(messageCids.map((cid) => this.messageStore.delete(tenant, cid)));
     }
     /**
      * Returns a `RecordsQueryReplyEntry` with a copy of the incoming message and the incoming data encoded to `Base64URL`.
      */
-    cloneAndAddEncodedData(message, dataBytes) {
-        return __awaiter(this, void 0, void 0, function* () {
-            const recordsWrite = Object.assign({}, message);
-            recordsWrite.encodedData = Encoder.bytesToBase64Url(dataBytes);
-            return recordsWrite;
-        });
+    async cloneAndAddEncodedData(message, dataBytes) {
+        const recordsWrite = { ...message };
+        recordsWrite.encodedData = Encoder.bytesToBase64Url(dataBytes);
+        return recordsWrite;
     }
-    processMessageWithDataStream(tenant, message, dataStream) {
-        return __awaiter(this, void 0, void 0, function* () {
-            let messageWithOptionalEncodedData = message;
-            // if data is below the threshold, we store it within MessageStore
-            if (message.descriptor.dataSize <= DwnConstant.maxDataSizeAllowedToBeEncoded) {
-                // validate data integrity before setting.
-                const dataBytes = yield DataStream.toBytes(dataStream);
-                const dataCid = yield Cid.computeDagPbCidFromBytes(dataBytes);
-                RecordsWriteHandler.validateDataIntegrity(message.descriptor.dataCid, message.descriptor.dataSize, dataCid, dataBytes.length);
-                RecordsWriteHandler.validateSchemaForCoreRecordsWrite(message, dataBytes);
-                messageWithOptionalEncodedData = yield this.cloneAndAddEncodedData(message, dataBytes);
+    async processMessageWithDataStream(tenant, message, dataStream) {
+        let messageWithOptionalEncodedData = message;
+        // if data is below the threshold, we store it within MessageStore
+        if (message.descriptor.dataSize <= DwnConstant.maxDataSizeAllowedToBeEncoded) {
+            // validate data integrity before setting.
+            const dataBytes = await DataStream.toBytes(dataStream);
+            const dataCid = await Cid.computeDagPbCidFromBytes(dataBytes);
+            RecordsWriteHandler.validateDataIntegrity(message.descriptor.dataCid, message.descriptor.dataSize, dataCid, dataBytes.length);
+            RecordsWriteHandler.validateSchemaForCoreRecordsWrite(message, dataBytes);
+            messageWithOptionalEncodedData = await this.cloneAndAddEncodedData(message, dataBytes);
+        }
+        else {
+            // split the dataStream into two: one for CID computation and one for storage
+            const [dataStreamCopy1, dataStreamCopy2] = DataStream.duplicateDataStream(dataStream, 2);
+            try {
+                // perform storage and CID computation in parallel
+                const [dataCid, DataStorePutResult] = await Promise.all([
+                    Cid.computeDagPbCidFromStream(dataStreamCopy1),
+                    this.dataStore.put(tenant, message.recordId, message.descriptor.dataCid, dataStreamCopy2)
+                ]);
+                RecordsWriteHandler.validateDataIntegrity(message.descriptor.dataCid, message.descriptor.dataSize, dataCid, DataStorePutResult.dataSize);
             }
-            else {
-                // split the dataStream into two: one for CID computation and one for storage
-                const [dataStreamCopy1, dataStreamCopy2] = DataStream.duplicateDataStream(dataStream, 2);
-                try {
-                    // perform storage and CID computation in parallel
-                    const [dataCid, DataStorePutResult] = yield Promise.all([
-                        Cid.computeDagPbCidFromStream(dataStreamCopy1),
-                        this.dataStore.put(tenant, message.recordId, message.descriptor.dataCid, dataStreamCopy2)
-                    ]);
-                    RecordsWriteHandler.validateDataIntegrity(message.descriptor.dataCid, message.descriptor.dataSize, dataCid, DataStorePutResult.dataSize);
-                }
-                catch (error) {
-                    // unwind/delete data if we have issue with storage or the data failed integrity validation
-                    yield this.dataStore.delete(tenant, message.recordId, message.descriptor.dataCid);
-                    throw error;
-                }
+            catch (error) {
+                // unwind/delete data if we have issue with storage or the data failed integrity validation
+                await this.dataStore.delete(tenant, message.recordId, message.descriptor.dataCid);
+                throw error;
             }
-            return messageWithOptionalEncodedData;
-        });
+        }
+        return messageWithOptionalEncodedData;
     }
-    processMessageWithoutDataStream(tenant, message, newestExistingWrite) {
-        return __awaiter(this, void 0, void 0, function* () {
-            const messageWithOptionalEncodedData = Object.assign({}, message); // clone
-            const { dataCid, dataSize } = message.descriptor;
-            // Since incoming message is not an initial write, and no dataStream is provided, we first check integrity against newest existing write.
-            // we preform the dataCid check in case a user attempts to gain access to data by referencing a different known dataCid,
-            // so we insure that the data is already associated with the existing newest message
-            // See: https://github.com/enboxorg/enbox/issues/359 for more info
-            RecordsWriteHandler.validateDataIntegrity(dataCid, dataSize, newestExistingWrite.descriptor.dataCid, newestExistingWrite.descriptor.dataSize);
-            if (dataSize <= DwnConstant.maxDataSizeAllowedToBeEncoded) {
-                // we encode the data from the original write if it is smaller than the data-store threshold
-                if (newestExistingWrite.encodedData !== undefined) {
-                    messageWithOptionalEncodedData.encodedData = newestExistingWrite.encodedData;
-                }
-                else {
-                    throw new DwnError(DwnErrorCode.RecordsWriteMissingEncodedDataInPrevious, `No dataStream was provided and unable to get data from previous message`);
-                }
+    async processMessageWithoutDataStream(tenant, message, newestExistingWrite) {
+        const messageWithOptionalEncodedData = { ...message }; // clone
+        const { dataCid, dataSize } = message.descriptor;
+        // Since incoming message is not an initial write, and no dataStream is provided, we first check integrity against newest existing write.
+        // we preform the dataCid check in case a user attempts to gain access to data by referencing a different known dataCid,
+        // so we insure that the data is already associated with the existing newest message
+        // See: https://github.com/enboxorg/enbox/issues/359 for more info
+        RecordsWriteHandler.validateDataIntegrity(dataCid, dataSize, newestExistingWrite.descriptor.dataCid, newestExistingWrite.descriptor.dataSize);
+        if (dataSize <= DwnConstant.maxDataSizeAllowedToBeEncoded) {
+            // we encode the data from the original write if it is smaller than the data-store threshold
+            if (newestExistingWrite.encodedData !== undefined) {
+                messageWithOptionalEncodedData.encodedData = newestExistingWrite.encodedData;
             }
             else {
-                // else just make sure the data is in the data store
-                // attempt to retrieve the data from the previous message
-                const DataStoreGetResult = yield this.dataStore.get(tenant, newestExistingWrite.recordId, message.descriptor.dataCid);
-                if (DataStoreGetResult === undefined) {
-                    throw new DwnError(DwnErrorCode.RecordsWriteMissingDataInPrevious, `No dataStream was provided and unable to get data from previous message`);
-                }
+                throw new DwnError(DwnErrorCode.RecordsWriteMissingEncodedDataInPrevious, `No dataStream was provided and unable to get data from previous message`);
+            }
+        }
+        else {
+            // else just make sure the data is in the data store
+            // attempt to retrieve the data from the previous message
+            const DataStoreGetResult = await this.dataStore.get(tenant, newestExistingWrite.recordId, message.descriptor.dataCid);
+            if (DataStoreGetResult === undefined) {
+                throw new DwnError(DwnErrorCode.RecordsWriteMissingDataInPrevious, `No dataStream was provided and unable to get data from previous message`);
             }
-            return messageWithOptionalEncodedData;
-        });
+        }
+        return messageWithOptionalEncodedData;
     }
     /**
      * Validates the expected `dataCid` and `dataSize` in the descriptor vs the received data.
@@ -300,44 +293,42 @@ export class RecordsWriteHandler {
             throw new DwnError(DwnErrorCode.RecordsWriteDataSizeMismatch, `actual data size ${actualDataSize} bytes does not match dataSize in descriptor: ${expectedDataSize}`);
         }
     }
-    static authorizeRecordsWrite(tenant, recordsWrite, messageStore) {
-        return __awaiter(this, void 0, void 0, function* () {
-            // if owner signature is given (`owner` is not `undefined`), it must be the same as the tenant DID
-            if (recordsWrite.owner !== undefined && recordsWrite.owner !== tenant) {
-                throw new DwnError(DwnErrorCode.RecordsWriteOwnerAndTenantMismatch, `Owner ${recordsWrite.owner} must be the same as tenant ${tenant} when specified.`);
-            }
-            if (recordsWrite.isSignedByAuthorDelegate) {
-                yield recordsWrite.authorizeAuthorDelegate(messageStore);
-            }
-            if (recordsWrite.isSignedByOwnerDelegate) {
-                yield recordsWrite.authorizeOwnerDelegate(messageStore);
-            }
-            if (recordsWrite.owner !== undefined) {
-                // if incoming message is a write retained by this tenant, we by-design always allow
-                // NOTE: the "owner === tenant" check is already done earlier in this method
-                return;
-            }
-            else if (recordsWrite.author === tenant) {
-                // if author is the same as the target tenant, we can directly grant access
-                return;
-            }
-            else if (recordsWrite.author !== undefined && recordsWrite.signaturePayload.permissionGrantId !== undefined) {
-                const permissionGrant = yield PermissionsProtocol.fetchGrant(tenant, messageStore, recordsWrite.signaturePayload.permissionGrantId);
-                yield RecordsGrantAuthorization.authorizeWrite({
-                    recordsWriteMessage: recordsWrite.message,
-                    expectedGrantor: tenant,
-                    expectedGrantee: recordsWrite.author,
-                    permissionGrant,
-                    messageStore
-                });
-            }
-            else if (recordsWrite.message.descriptor.protocol !== undefined) {
-                yield ProtocolAuthorization.authorizeWrite(tenant, recordsWrite, messageStore);
-            }
-            else {
-                throw new DwnError(DwnErrorCode.RecordsWriteAuthorizationFailed, 'message failed authorization');
-            }
-        });
+    static async authorizeRecordsWrite(tenant, recordsWrite, messageStore) {
+        // if owner signature is given (`owner` is not `undefined`), it must be the same as the tenant DID
+        if (recordsWrite.owner !== undefined && recordsWrite.owner !== tenant) {
+            throw new DwnError(DwnErrorCode.RecordsWriteOwnerAndTenantMismatch, `Owner ${recordsWrite.owner} must be the same as tenant ${tenant} when specified.`);
+        }
+        if (recordsWrite.isSignedByAuthorDelegate) {
+            await recordsWrite.authorizeAuthorDelegate(messageStore);
+        }
+        if (recordsWrite.isSignedByOwnerDelegate) {
+            await recordsWrite.authorizeOwnerDelegate(messageStore);
+        }
+        if (recordsWrite.owner !== undefined) {
+            // if incoming message is a write retained by this tenant, we by-design always allow
+            // NOTE: the "owner === tenant" check is already done earlier in this method
+            return;
+        }
+        else if (recordsWrite.author === tenant) {
+            // if author is the same as the target tenant, we can directly grant access
+            return;
+        }
+        else if (recordsWrite.author !== undefined && recordsWrite.signaturePayload.permissionGrantId !== undefined) {
+            const permissionGrant = await PermissionsProtocol.fetchGrant(tenant, messageStore, recordsWrite.signaturePayload.permissionGrantId);
+            await RecordsGrantAuthorization.authorizeWrite({
+                recordsWriteMessage: recordsWrite.message,
+                expectedGrantor: tenant,
+                expectedGrantee: recordsWrite.author,
+                permissionGrant,
+                messageStore
+            });
+        }
+        else if (recordsWrite.message.descriptor.protocol !== undefined) {
+            await ProtocolAuthorization.authorizeWrite(tenant, recordsWrite, messageStore);
+        }
+        else {
+            throw new DwnError(DwnErrorCode.RecordsWriteAuthorizationFailed, 'message failed authorization');
+        }
     }
 }
 //# sourceMappingURL=records-write.js.map