npm - @enbox/dwn-server - Versions diffs - 0.0.2 → 0.0.4 - Mend

@enbox/dwn-server 0.0.2 → 0.0.4

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (309) hide show

package/LICENSE +3 -2
package/README.md +115 -215
package/dist/esm/src/admin/activity-log.d.ts +44 -0
package/dist/esm/src/admin/activity-log.d.ts.map +1 -0
package/dist/esm/src/admin/activity-log.js +85 -0
package/dist/esm/src/admin/activity-log.js.map +1 -0
package/dist/esm/src/admin/admin-api.d.ts +61 -0
package/dist/esm/src/admin/admin-api.d.ts.map +1 -0
package/dist/esm/src/admin/admin-api.js +1047 -0
package/dist/esm/src/admin/admin-api.js.map +1 -0
package/dist/esm/src/admin/admin-auth.d.ts +9 -0
package/dist/esm/src/admin/admin-auth.d.ts.map +1 -0
package/dist/esm/src/admin/admin-auth.js +45 -0
package/dist/esm/src/admin/admin-auth.js.map +1 -0
package/dist/esm/src/admin/admin-store.d.ts +111 -0
package/dist/esm/src/admin/admin-store.d.ts.map +1 -0
package/dist/esm/src/admin/admin-store.js +376 -0
package/dist/esm/src/admin/admin-store.js.map +1 -0
package/dist/esm/src/admin/audit-log.d.ts +94 -0
package/dist/esm/src/admin/audit-log.d.ts.map +1 -0
package/dist/esm/src/admin/audit-log.js +220 -0
package/dist/esm/src/admin/audit-log.js.map +1 -0
package/dist/esm/src/admin/index.d.ts +10 -0
package/dist/esm/src/admin/index.d.ts.map +1 -0
package/dist/esm/src/admin/index.js +7 -0
package/dist/esm/src/admin/index.js.map +1 -0
package/dist/esm/src/admin/types.d.ts +306 -0
package/dist/esm/src/admin/types.d.ts.map +1 -0
package/dist/esm/src/admin/types.js +2 -0
package/dist/esm/src/admin/types.js.map +1 -0
package/dist/esm/src/admin/webhook-manager.d.ts +55 -0
package/dist/esm/src/admin/webhook-manager.d.ts.map +1 -0
package/dist/esm/src/admin/webhook-manager.js +184 -0
package/dist/esm/src/admin/webhook-manager.js.map +1 -0
package/dist/esm/src/config.d.ts +124 -9
package/dist/esm/src/config.d.ts.map +1 -1
package/dist/esm/src/config.js +155 -13
package/dist/esm/src/config.js.map +1 -1
package/dist/esm/src/connection/connection-manager.d.ts +32 -9
package/dist/esm/src/connection/connection-manager.d.ts.map +1 -1
package/dist/esm/src/connection/connection-manager.js +38 -5
package/dist/esm/src/connection/connection-manager.js.map +1 -1
package/dist/esm/src/connection/flow-controller.d.ts +53 -0
package/dist/esm/src/connection/flow-controller.d.ts.map +1 -0
package/dist/esm/src/connection/flow-controller.js +101 -0
package/dist/esm/src/connection/flow-controller.js.map +1 -0
package/dist/esm/src/connection/socket-connection.d.ts +54 -18
package/dist/esm/src/connection/socket-connection.d.ts.map +1 -1
package/dist/esm/src/connection/socket-connection.js +102 -40
package/dist/esm/src/connection/socket-connection.js.map +1 -1
package/dist/esm/src/delivery-service.d.ts +43 -0
package/dist/esm/src/delivery-service.d.ts.map +1 -0
package/dist/esm/src/delivery-service.js +574 -0
package/dist/esm/src/delivery-service.js.map +1 -0
package/dist/esm/src/dwn-error.d.ts +10 -1
package/dist/esm/src/dwn-error.d.ts.map +1 -1
package/dist/esm/src/dwn-error.js +9 -0
package/dist/esm/src/dwn-error.js.map +1 -1
package/dist/esm/src/dwn-server.d.ts +13 -6
package/dist/esm/src/dwn-server.d.ts.map +1 -1
package/dist/esm/src/dwn-server.js +199 -24
package/dist/esm/src/dwn-server.js.map +1 -1
package/dist/esm/src/http-api.d.ts +28 -13
package/dist/esm/src/http-api.d.ts.map +1 -1
package/dist/esm/src/http-api.js +649 -374
package/dist/esm/src/http-api.js.map +1 -1
package/dist/esm/src/index.d.ts +6 -2
package/dist/esm/src/index.d.ts.map +1 -1
package/dist/esm/src/index.js +4 -1
package/dist/esm/src/index.js.map +1 -1
package/dist/esm/src/json-rpc-api.js +2 -1
package/dist/esm/src/json-rpc-api.js.map +1 -1
package/dist/esm/src/json-rpc-handlers/dwn/process-message.d.ts.map +1 -1
package/dist/esm/src/json-rpc-handlers/dwn/process-message.js +109 -7
package/dist/esm/src/json-rpc-handlers/dwn/process-message.js.map +1 -1
package/dist/esm/src/json-rpc-handlers/subscription/ack.d.ts +20 -0
package/dist/esm/src/json-rpc-handlers/subscription/ack.d.ts.map +1 -0
package/dist/esm/src/json-rpc-handlers/subscription/ack.js +41 -0
package/dist/esm/src/json-rpc-handlers/subscription/ack.js.map +1 -0
package/dist/esm/src/json-rpc-handlers/subscription/close.d.ts.map +1 -1
package/dist/esm/src/json-rpc-handlers/subscription/close.js +1 -1
package/dist/esm/src/json-rpc-handlers/subscription/close.js.map +1 -1
package/dist/esm/src/json-rpc-handlers/subscription/index.d.ts +1 -0
package/dist/esm/src/json-rpc-handlers/subscription/index.d.ts.map +1 -1
package/dist/esm/src/json-rpc-handlers/subscription/index.js +1 -0
package/dist/esm/src/json-rpc-handlers/subscription/index.js.map +1 -1
package/dist/esm/src/lib/json-rpc-router.d.ts +25 -8
package/dist/esm/src/lib/json-rpc-router.d.ts.map +1 -1
package/dist/esm/src/lib/json-rpc-router.js.map +1 -1
package/dist/esm/src/lib/sql-utils.d.ts +6 -0
package/dist/esm/src/lib/sql-utils.d.ts.map +1 -0
package/dist/esm/src/lib/sql-utils.js +8 -0
package/dist/esm/src/lib/sql-utils.js.map +1 -0
package/dist/esm/src/main.js +0 -6
package/dist/esm/src/main.js.map +1 -1
package/dist/esm/src/message-processed-hook.d.ts +35 -0
package/dist/esm/src/message-processed-hook.d.ts.map +1 -0
package/dist/esm/src/message-processed-hook.js +2 -0
package/dist/esm/src/message-processed-hook.js.map +1 -0
package/dist/esm/src/metrics.d.ts +14 -2
package/dist/esm/src/metrics.d.ts.map +1 -1
package/dist/esm/src/metrics.js +41 -1
package/dist/esm/src/metrics.js.map +1 -1
package/dist/esm/src/plugins/event-log-nats.d.ts +25 -0
package/dist/esm/src/plugins/event-log-nats.d.ts.map +1 -0
package/dist/esm/src/plugins/event-log-nats.js +379 -0
package/dist/esm/src/plugins/event-log-nats.js.map +1 -0
package/dist/esm/src/rate-limiter.d.ts +60 -0
package/dist/esm/src/rate-limiter.d.ts.map +1 -0
package/dist/esm/src/rate-limiter.js +116 -0
package/dist/esm/src/rate-limiter.js.map +1 -0
package/dist/esm/src/registration/jwt-provider-auth-plugin.d.ts +53 -0
package/dist/esm/src/registration/jwt-provider-auth-plugin.d.ts.map +1 -0
package/dist/esm/src/registration/jwt-provider-auth-plugin.js +90 -0
package/dist/esm/src/registration/jwt-provider-auth-plugin.js.map +1 -0
package/dist/esm/src/registration/open-auth-handler.d.ts +37 -0
package/dist/esm/src/registration/open-auth-handler.d.ts.map +1 -0
package/dist/esm/src/registration/open-auth-handler.js +214 -0
package/dist/esm/src/registration/open-auth-handler.js.map +1 -0
package/dist/esm/src/registration/proof-of-work-manager.d.ts +1 -1
package/dist/esm/src/registration/proof-of-work-manager.d.ts.map +1 -1
package/dist/esm/src/registration/proof-of-work-manager.js +3 -3
package/dist/esm/src/registration/proof-of-work-manager.js.map +1 -1
package/dist/esm/src/registration/provider-auth-plugin.d.ts +46 -0
package/dist/esm/src/registration/provider-auth-plugin.d.ts.map +1 -0
package/dist/esm/src/registration/provider-auth-plugin.js +29 -0
package/dist/esm/src/registration/provider-auth-plugin.js.map +1 -0
package/dist/esm/src/registration/registration-manager.d.ts +28 -5
package/dist/esm/src/registration/registration-manager.d.ts.map +1 -1
package/dist/esm/src/registration/registration-manager.js +83 -12
package/dist/esm/src/registration/registration-manager.js.map +1 -1
package/dist/esm/src/registration/registration-store.d.ts +83 -3
package/dist/esm/src/registration/registration-store.d.ts.map +1 -1
package/dist/esm/src/registration/registration-store.js +248 -11
package/dist/esm/src/registration/registration-store.js.map +1 -1
package/dist/esm/src/storage.d.ts +5 -5
package/dist/esm/src/storage.d.ts.map +1 -1
package/dist/esm/src/storage.js +105 -24
package/dist/esm/src/storage.js.map +1 -1
package/dist/esm/src/web5-connect/sql-ttl-cache.d.ts.map +1 -1
package/dist/esm/src/web5-connect/sql-ttl-cache.js +11 -3
package/dist/esm/src/web5-connect/sql-ttl-cache.js.map +1 -1
package/dist/esm/src/web5-connect/web5-connect-server.d.ts.map +1 -1
package/dist/esm/src/web5-connect/web5-connect-server.js +2 -2
package/dist/esm/src/web5-connect/web5-connect-server.js.map +1 -1
package/dist/esm/src/ws-api.d.ts +18 -4
package/dist/esm/src/ws-api.d.ts.map +1 -1
package/dist/esm/src/ws-api.js +12 -16
package/dist/esm/src/ws-api.js.map +1 -1
package/package.json +34 -53
package/src/admin/activity-log.ts +100 -0
package/src/admin/admin-api.ts +1308 -0
package/src/admin/admin-auth.ts +56 -0
package/src/admin/admin-store.ts +515 -0
package/src/admin/audit-log.ts +327 -0
package/src/admin/index.ts +34 -0
package/src/admin/types.ts +352 -0
package/src/admin/webhook-manager.ts +245 -0
package/src/config.ts +190 -22
package/src/connection/connection-manager.ts +67 -17
package/src/connection/flow-controller.ts +117 -0
package/src/connection/socket-connection.ts +144 -67
package/src/delivery-service.ts +740 -0
package/src/dwn-error.ts +11 -2
package/src/dwn-server.ts +254 -39
package/src/http-api.ts +736 -392
package/src/index.ts +13 -2
package/src/json-rpc-api.ts +2 -1
package/src/json-rpc-handlers/dwn/process-message.ts +149 -15
package/src/json-rpc-handlers/subscription/ack.ts +63 -0
package/src/json-rpc-handlers/subscription/close.ts +5 -9
package/src/json-rpc-handlers/subscription/index.ts +1 -0
package/src/lib/json-rpc-router.ts +26 -11
package/src/lib/sql-utils.ts +7 -0
package/src/main.ts +0 -8
package/src/message-processed-hook.ts +33 -0
package/src/metrics.ts +57 -8
package/src/plugins/event-log-nats.ts +466 -0
package/src/process-handlers.ts +5 -5
package/src/rate-limiter.ts +143 -0
package/src/registration/jwt-provider-auth-plugin.ts +119 -0
package/src/registration/open-auth-handler.ts +263 -0
package/src/registration/proof-of-work-manager.ts +11 -10
package/src/registration/provider-auth-plugin.ts +84 -0
package/src/registration/registration-manager.ts +129 -31
package/src/registration/registration-store.ts +332 -22
package/src/storage.ts +136 -40
package/src/web5-connect/sql-ttl-cache.ts +12 -5
package/src/web5-connect/web5-connect-server.ts +9 -8
package/src/ws-api.ts +39 -26
package/dist/cjs/index.js +0 -6811
package/dist/cjs/package.json +0 -1
package/dist/esm/src/json-rpc-socket.d.ts +0 -39
package/dist/esm/src/json-rpc-socket.d.ts.map +0 -1
package/dist/esm/src/json-rpc-socket.js +0 -125
package/dist/esm/src/json-rpc-socket.js.map +0 -1
package/dist/esm/src/lib/http-server-shutdown-handler.d.ts +0 -10
package/dist/esm/src/lib/http-server-shutdown-handler.d.ts.map +0 -1
package/dist/esm/src/lib/http-server-shutdown-handler.js +0 -65
package/dist/esm/src/lib/http-server-shutdown-handler.js.map +0 -1
package/dist/esm/src/lib/json-rpc.d.ts +0 -54
package/dist/esm/src/lib/json-rpc.d.ts.map +0 -1
package/dist/esm/src/lib/json-rpc.js +0 -60
package/dist/esm/src/lib/json-rpc.js.map +0 -1
package/dist/esm/src/registration/proof-of-work-types.d.ts +0 -8
package/dist/esm/src/registration/proof-of-work-types.d.ts.map +0 -1
package/dist/esm/src/registration/proof-of-work-types.js +0 -2
package/dist/esm/src/registration/proof-of-work-types.js.map +0 -1
package/dist/esm/src/registration/registration-types.d.ts +0 -18
package/dist/esm/src/registration/registration-types.d.ts.map +0 -1
package/dist/esm/src/registration/registration-types.js +0 -2
package/dist/esm/src/registration/registration-types.js.map +0 -1
package/dist/esm/tests/common-scenario-validator.d.ts +0 -11
package/dist/esm/tests/common-scenario-validator.d.ts.map +0 -1
package/dist/esm/tests/common-scenario-validator.js +0 -114
package/dist/esm/tests/common-scenario-validator.js.map +0 -1
package/dist/esm/tests/connection/connection-manager.spec.d.ts +0 -2
package/dist/esm/tests/connection/connection-manager.spec.d.ts.map +0 -1
package/dist/esm/tests/connection/connection-manager.spec.js +0 -47
package/dist/esm/tests/connection/connection-manager.spec.js.map +0 -1
package/dist/esm/tests/connection/socket-connection.spec.d.ts +0 -2
package/dist/esm/tests/connection/socket-connection.spec.d.ts.map +0 -1
package/dist/esm/tests/connection/socket-connection.spec.js +0 -125
package/dist/esm/tests/connection/socket-connection.spec.js.map +0 -1
package/dist/esm/tests/cors/http-api.browser.d.ts +0 -2
package/dist/esm/tests/cors/http-api.browser.d.ts.map +0 -1
package/dist/esm/tests/cors/http-api.browser.js +0 -60
package/dist/esm/tests/cors/http-api.browser.js.map +0 -1
package/dist/esm/tests/cors/ping.browser.d.ts +0 -2
package/dist/esm/tests/cors/ping.browser.d.ts.map +0 -1
package/dist/esm/tests/cors/ping.browser.js +0 -7
package/dist/esm/tests/cors/ping.browser.js.map +0 -1
package/dist/esm/tests/dwn-process-message.spec.d.ts +0 -2
package/dist/esm/tests/dwn-process-message.spec.d.ts.map +0 -1
package/dist/esm/tests/dwn-process-message.spec.js +0 -172
package/dist/esm/tests/dwn-process-message.spec.js.map +0 -1
package/dist/esm/tests/dwn-server.spec.d.ts +0 -2
package/dist/esm/tests/dwn-server.spec.d.ts.map +0 -1
package/dist/esm/tests/dwn-server.spec.js +0 -49
package/dist/esm/tests/dwn-server.spec.js.map +0 -1
package/dist/esm/tests/http-api.spec.d.ts +0 -2
package/dist/esm/tests/http-api.spec.d.ts.map +0 -1
package/dist/esm/tests/http-api.spec.js +0 -775
package/dist/esm/tests/http-api.spec.js.map +0 -1
package/dist/esm/tests/json-rpc-socket.spec.d.ts +0 -2
package/dist/esm/tests/json-rpc-socket.spec.d.ts.map +0 -1
package/dist/esm/tests/json-rpc-socket.spec.js +0 -225
package/dist/esm/tests/json-rpc-socket.spec.js.map +0 -1
package/dist/esm/tests/plugins/data-store-sqlite.d.ts +0 -17
package/dist/esm/tests/plugins/data-store-sqlite.d.ts.map +0 -1
package/dist/esm/tests/plugins/data-store-sqlite.js +0 -23
package/dist/esm/tests/plugins/data-store-sqlite.js.map +0 -1
package/dist/esm/tests/plugins/event-log-sqlite.d.ts +0 -17
package/dist/esm/tests/plugins/event-log-sqlite.d.ts.map +0 -1
package/dist/esm/tests/plugins/event-log-sqlite.js +0 -23
package/dist/esm/tests/plugins/event-log-sqlite.js.map +0 -1
package/dist/esm/tests/plugins/event-stream-in-memory.d.ts +0 -17
package/dist/esm/tests/plugins/event-stream-in-memory.d.ts.map +0 -1
package/dist/esm/tests/plugins/event-stream-in-memory.js +0 -21
package/dist/esm/tests/plugins/event-stream-in-memory.js.map +0 -1
package/dist/esm/tests/plugins/message-store-sqlite.d.ts +0 -17
package/dist/esm/tests/plugins/message-store-sqlite.d.ts.map +0 -1
package/dist/esm/tests/plugins/message-store-sqlite.js +0 -23
package/dist/esm/tests/plugins/message-store-sqlite.js.map +0 -1
package/dist/esm/tests/plugins/resumable-task-store-sqlite.d.ts +0 -17
package/dist/esm/tests/plugins/resumable-task-store-sqlite.d.ts.map +0 -1
package/dist/esm/tests/plugins/resumable-task-store-sqlite.js +0 -23
package/dist/esm/tests/plugins/resumable-task-store-sqlite.js.map +0 -1
package/dist/esm/tests/process-handler.spec.d.ts +0 -2
package/dist/esm/tests/process-handler.spec.d.ts.map +0 -1
package/dist/esm/tests/process-handler.spec.js +0 -60
package/dist/esm/tests/process-handler.spec.js.map +0 -1
package/dist/esm/tests/registration/proof-of-work-manager.spec.d.ts +0 -2
package/dist/esm/tests/registration/proof-of-work-manager.spec.d.ts.map +0 -1
package/dist/esm/tests/registration/proof-of-work-manager.spec.js +0 -157
package/dist/esm/tests/registration/proof-of-work-manager.spec.js.map +0 -1
package/dist/esm/tests/rpc-subscribe-close.spec.d.ts +0 -2
package/dist/esm/tests/rpc-subscribe-close.spec.d.ts.map +0 -1
package/dist/esm/tests/rpc-subscribe-close.spec.js +0 -81
package/dist/esm/tests/rpc-subscribe-close.spec.js.map +0 -1
package/dist/esm/tests/scenarios/dynamic-plugin-loading.spec.d.ts +0 -2
package/dist/esm/tests/scenarios/dynamic-plugin-loading.spec.d.ts.map +0 -1
package/dist/esm/tests/scenarios/dynamic-plugin-loading.spec.js +0 -73
package/dist/esm/tests/scenarios/dynamic-plugin-loading.spec.js.map +0 -1
package/dist/esm/tests/scenarios/registration.spec.d.ts +0 -2
package/dist/esm/tests/scenarios/registration.spec.d.ts.map +0 -1
package/dist/esm/tests/scenarios/registration.spec.js +0 -507
package/dist/esm/tests/scenarios/registration.spec.js.map +0 -1
package/dist/esm/tests/scenarios/web5-connect.spec.d.ts +0 -2
package/dist/esm/tests/scenarios/web5-connect.spec.d.ts.map +0 -1
package/dist/esm/tests/scenarios/web5-connect.spec.js +0 -137
package/dist/esm/tests/scenarios/web5-connect.spec.js.map +0 -1
package/dist/esm/tests/test-dwn.d.ts +0 -7
package/dist/esm/tests/test-dwn.d.ts.map +0 -1
package/dist/esm/tests/test-dwn.js +0 -34
package/dist/esm/tests/test-dwn.js.map +0 -1
package/dist/esm/tests/utils.d.ts +0 -46
package/dist/esm/tests/utils.d.ts.map +0 -1
package/dist/esm/tests/utils.js +0 -116
package/dist/esm/tests/utils.js.map +0 -1
package/dist/esm/tests/ws-api.spec.d.ts +0 -2
package/dist/esm/tests/ws-api.spec.d.ts.map +0 -1
package/dist/esm/tests/ws-api.spec.js +0 -327
package/dist/esm/tests/ws-api.spec.js.map +0 -1
package/src/json-rpc-socket.ts +0 -155
package/src/lib/http-server-shutdown-handler.ts +0 -79
package/src/lib/json-rpc.ts +0 -126
package/src/registration/proof-of-work-types.ts +0 -7
package/src/registration/registration-types.ts +0 -18

package/src/index.ts CHANGED Viewed

@@ -1,6 +1,17 @@
-export { DwnServerConfig } from './config.js';
+export { ActivityLog, AdminApi, AdminStore } from './admin/index.js';
+export type {
+  AdminActivityEvent,
+  AdminConnectionSnapshot,
+  AdminHealthCheck,
+  AdminServerStats,
+  AdminTenantDetail,
+  AdminTenantSummary,
+} from './admin/index.js';
+export { config as defaultDwnServerConfig, DwnServerConfig } from './config.js';
+export { DeliveryService } from './delivery-service.js';
 export { DwnServer, DwnServerOptions } from './dwn-server.js';
 export { HttpApi } from './http-api.js';
 export { jsonRpcRouter } from './json-rpc-api.js';
-export { StoreType, BackendTypes, DwnStore } from './storage.js';
+export type { MessageProcessedContext, MessageProcessedHook } from './message-processed-hook.js';
+export { getDwnConfig, StoreType, BackendTypes, DwnStore } from './storage.js';
 export { WsApi } from './ws-api.js';

package/src/json-rpc-api.ts CHANGED Viewed

@@ -1,11 +1,12 @@
 import { JsonRpcRouter } from './lib/json-rpc-router.js';
 import { handleDwnProcessMessage } from './json-rpc-handlers/dwn/index.js';
-import { handleSubscriptionsClose } from './json-rpc-handlers/subscription/index.js';
+import { handleSubscriptionAck, handleSubscriptionsClose } from './json-rpc-handlers/subscription/index.js';
 export const jsonRpcRouter = new JsonRpcRouter();
 jsonRpcRouter.on('dwn.processMessage', handleDwnProcessMessage);
 jsonRpcRouter.on('rpc.subscribe.dwn.processMessage', handleDwnProcessMessage);
+jsonRpcRouter.on('rpc.ack', handleSubscriptionAck);
 jsonRpcRouter.on('rpc.subscribe.close', handleSubscriptionsClose);

package/src/json-rpc-handlers/dwn/process-message.ts CHANGED Viewed

@@ -1,21 +1,22 @@
 import type { GenericMessage } from '@enbox/dwn-sdk-js';
 import { DwnInterfaceName, DwnMethodName } from '@enbox/dwn-sdk-js';
-import type { Readable as IsomorphicReadable } from 'readable-stream';
 import log from 'loglevel';
 import { v4 as uuidv4 } from 'uuid';
-import type { JsonRpcSubscription } from '../../lib/json-rpc.js';
+import type { JsonRpcSubscription } from '@enbox/dwn-clients';
 import type {
   HandlerResponse,
   JsonRpcHandler,
 } from '../../lib/json-rpc-router.js';
+import { DwnServerErrorCode } from '../../dwn-error.js';
+import { requestDataBytesTotal } from '../../metrics.js';
 import {
   createJsonRpcErrorResponse,
   createJsonRpcSuccessResponse,
   JsonRpcErrorCodes,
-} from '../../lib/json-rpc.js';
+} from '@enbox/dwn-clients';
 export const handleDwnProcessMessage: JsonRpcHandler = async (
@@ -28,7 +29,7 @@ export const handleDwnProcessMessage: JsonRpcHandler = async (
   try {
     // RecordsWrite is only supported on 'http' to support data stream for large data
-    // TODO: https://github.com/TBD54566975/dwn-server/issues/108
+    // TODO: https://github.com/enboxorg/enbox/issues/108
     if (
       transport !== 'http' &&
       message.descriptor.interface === DwnInterfaceName.Records &&
@@ -38,11 +39,11 @@ export const handleDwnProcessMessage: JsonRpcHandler = async (
         requestId,
         JsonRpcErrorCodes.InvalidParams,
         `RecordsWrite is not supported via ${context.transport}`
-      )
+      );
       return { jsonRpcResponse };
     }
-    // subscribe methods must come with a subscriptionRequest context
+    // subscribe methods must come with a subscriptionRequest context
     if (message.descriptor.method === DwnMethodName.Subscribe && subscriptionRequest === undefined) {
       const jsonRpcResponse = createJsonRpcErrorResponse(
         requestId,
@@ -58,7 +59,7 @@ export const handleDwnProcessMessage: JsonRpcHandler = async (
         requestId,
         JsonRpcErrorCodes.InvalidParams,
         `subscriptions are not supported via ${context.transport}`
-      )
+      );
       return { jsonRpcResponse };
     }
@@ -70,12 +71,40 @@ export const handleDwnProcessMessage: JsonRpcHandler = async (
         requestId,
         JsonRpcErrorCodes.InvalidParams,
         `the subscribe id: ${subscriptionRequest.id} is in use by an active subscription`
-      )
+      );
       return { jsonRpcResponse };
     }
+    // --- Per-tenant rate limiting (before any DWN processing) ---
+    if (context.tenantRateLimiter) {
+      const result = context.tenantRateLimiter.consume(target);
+      if (result.allowed === false) {
+        const retryAfterSec = Math.ceil(result.retryAfterMs / 1000);
+        const jsonRpcResponse = createJsonRpcErrorResponse(
+          requestId,
+          JsonRpcErrorCodes.TooManyRequests,
+          `${DwnServerErrorCode.RateLimitExceeded}: tenant rate limit exceeded, retry after ${retryAfterSec}s`,
+          { retryAfterSec },
+        );
+        return { jsonRpcResponse };
+      }
+    }
+    // --- Per-tenant storage quota enforcement (RecordsWrite only) ---
+    if (
+      context.config &&
+      context.adminStore &&
+      message.descriptor.interface === DwnInterfaceName.Records &&
+      message.descriptor.method === DwnMethodName.Write
+    ) {
+      const quotaResult = await enforceQuota(target, message, context);
+      if (quotaResult !== undefined) {
+        return quotaResult;
+      }
+    }
     const reply = await dwn.processMessage(target, message, {
-      dataStream: dataStream as IsomorphicReadable,
+      dataStream,
       subscriptionHandler: subscriptionRequest?.subscriptionHandler,
     });
@@ -83,7 +112,7 @@ export const handleDwnProcessMessage: JsonRpcHandler = async (
     const { entry } = reply;
     // RecordsRead or MessagesRead messages optionally return data as a stream to accommodate large amounts of data
     // we remove the data stream from the reply that will be serialized and return it as a separate property in the response payload.
-    let recordDataStream: IsomorphicReadable;
+    let recordDataStream: ReadableStream<Uint8Array>;
     if (entry !== undefined && entry.data !== undefined) {
       recordDataStream = entry.data;
       delete reply.entry.data; // not serializable via JSON
@@ -97,9 +126,9 @@ export const handleDwnProcessMessage: JsonRpcHandler = async (
       const subscriptionReply: JsonRpcSubscription = {
         id: subscriptionRequest.id,
         close,
-      }
+      };
       await socketConnection.addSubscription(subscriptionReply);
-      delete reply.subscription.close // delete the close method from the reply as it's not JSON serializable and has a held reference.
+      delete reply.subscription.close; // delete the close method from the reply as it's not JSON serializable and has a held reference.
     }
     const jsonRpcResponse = createJsonRpcSuccessResponse(requestId, { reply });
@@ -108,16 +137,121 @@ export const handleDwnProcessMessage: JsonRpcHandler = async (
       responsePayload.dataStream = recordDataStream;
     }
+    // --- Fire-and-forget: post-processing hooks ---
+    const statusCode = reply.status?.code ?? 0;
+    if (context.messageProcessedHooks) {
+      const hookContext = { tenant: target, message, status: reply.status, transport };
+      for (const hook of context.messageProcessedHooks) {
+        try {
+          const result = hook.onMessageProcessed(hookContext);
+          if (result instanceof Promise) {
+            result.catch((err: unknown): void => {
+              log.error('MessageProcessedHook error', err);
+            });
+          }
+        } catch (err) {
+          log.error('MessageProcessedHook error', err);
+        }
+      }
+    }
+    // Capture activity event and per-request metrics.
+    const dwnInterface = message.descriptor.interface as string;
+    const dwnMethod = message.descriptor.method as string;
+    const dataSizeBytes = (message.descriptor as { dataSize?: number }).dataSize;
+    if (dataSizeBytes !== undefined && dataSizeBytes > 0) {
+      requestDataBytesTotal.inc({ interface: dwnInterface, method: dwnMethod }, dataSizeBytes);
+    }
+    if (context.activityLog) {
+      context.activityLog.record({
+        tenant    : target,
+        interface : dwnInterface,
+        method    : dwnMethod,
+        statusCode,
+        transport,
+        dataSizeBytes,
+      });
+    }
     return responsePayload;
   } catch (error) {
+    // Log the full error internally but return a generic message to the client
+    // to avoid leaking implementation details (SQL errors, file paths, etc.).
+    log.error('handleDwnProcessMessage error', error);
     const jsonRpcResponse = createJsonRpcErrorResponse(
       requestId,
       JsonRpcErrorCodes.InternalError,
-      error.message,
+      'an unexpected error occurred while processing the message',
     );
-    // log the unhandled error response
-    log.error('handleDwnProcessMessage error', jsonRpcResponse, dwnRequest, error);
     return { jsonRpcResponse } as HandlerResponse;
   }
 };
+// ---------------------------------------------------------------------------
+// Quota enforcement helper
+// ---------------------------------------------------------------------------
+/**
+ * Checks whether the tenant has exceeded their message count or storage quota.
+ * Returns a JSON-RPC error response if the quota is exceeded, or `undefined` to proceed.
+ */
+async function enforceQuota(
+  target: string,
+  message: GenericMessage,
+  context: Parameters<JsonRpcHandler>[1],
+): Promise<HandlerResponse | undefined> {
+  const { config, adminStore, registrationStore } = context;
+  const requestId = (message as any).recordId ?? uuidv4();
+  // Resolve effective quota: per-tenant override > global config > unlimited.
+  let maxMessages = config!.quotaMaxMessages ?? 0;
+  let maxStorageBytes = config!.quotaMaxStorageBytes ?? 0;
+  if (registrationStore) {
+    const tenantQuota = await registrationStore.getQuota(target);
+    if (tenantQuota !== undefined) {
+      maxMessages = tenantQuota.maxMessages ?? maxMessages;
+      maxStorageBytes = tenantQuota.maxStorageBytes ?? maxStorageBytes;
+    }
+  }
+  // 0 means unlimited — skip enforcement.
+  if (maxMessages === 0 && maxStorageBytes === 0) {
+    return undefined;
+  }
+  // Check message count quota.
+  if (maxMessages > 0) {
+    const currentMessages = await adminStore!.getTenantMessageCount(target);
+    if (currentMessages >= maxMessages) {
+      return {
+        jsonRpcResponse: createJsonRpcErrorResponse(
+          requestId,
+          JsonRpcErrorCodes.InvalidRequest,
+          `${DwnServerErrorCode.TenantMessageQuotaExceeded}: tenant has reached the message limit of ${maxMessages}`,
+        ),
+      };
+    }
+  }
+  // Check storage size quota.
+  if (maxStorageBytes > 0) {
+    const dataSize = (message.descriptor as { dataSize?: number }).dataSize ?? 0;
+    const currentStorage = await adminStore!.getTenantStorageSize(target);
+    if (currentStorage + dataSize > maxStorageBytes) {
+      return {
+        jsonRpcResponse: createJsonRpcErrorResponse(
+          requestId,
+          JsonRpcErrorCodes.InvalidRequest,
+          `${DwnServerErrorCode.TenantStorageQuotaExceeded}: tenant would exceed storage limit of ${maxStorageBytes} bytes`,
+        ),
+      };
+    }
+  }
+  return undefined;
+}

package/src/json-rpc-handlers/subscription/ack.ts ADDED Viewed

@@ -0,0 +1,63 @@
+import { v4 as uuidv4 } from 'uuid';
+import type { JsonRpcId } from '@enbox/dwn-clients';
+import type {
+  HandlerResponse,
+  JsonRpcHandler,
+} from '../../lib/json-rpc-router.js';
+import { createJsonRpcErrorResponse, createJsonRpcSuccessResponse, JsonRpcErrorCodes } from '@enbox/dwn-clients';
+/**
+ * Handles `rpc.ack` — acknowledges receipt of subscription events up to the
+ * given cursor, advancing the per-subscription flow-control window.
+ *
+ * Request shape:
+ * ```json
+ * {
+ *   "jsonrpc": "2.0",
+ *   "method": "rpc.ack",
+ *   "params": { "cursor": "<opaque-cursor>" },
+ *   "subscription": { "id": "<subscription-id>" }
+ * }
+ * ```
+ *
+ * This is a notification (no `id` required), but the server sends a response
+ * if validation fails (missing params, unknown subscription, etc.).
+ */
+export const handleSubscriptionAck: JsonRpcHandler = async (
+  jsonRpcRequest,
+  context,
+) => {
+  const requestId = jsonRpcRequest.id ?? uuidv4();
+  if (context.socketConnection === undefined) {
+    const jsonRpcResponse = createJsonRpcErrorResponse(
+      requestId, JsonRpcErrorCodes.InvalidRequest, 'socket connection does not exist'
+    );
+    return { jsonRpcResponse };
+  }
+  if (jsonRpcRequest.subscription === undefined) {
+    const jsonRpcResponse = createJsonRpcErrorResponse(
+      requestId, JsonRpcErrorCodes.InvalidParams, 'subscription options are required'
+    );
+    return { jsonRpcResponse };
+  }
+  const { id: subscriptionId } = jsonRpcRequest.subscription as { id: JsonRpcId };
+  const { cursor } = (jsonRpcRequest.params ?? {}) as { cursor?: string };
+  if (cursor === undefined || typeof cursor !== 'string' || cursor === '') {
+    const jsonRpcResponse = createJsonRpcErrorResponse(
+      requestId, JsonRpcErrorCodes.InvalidParams, 'params.cursor is required and must be a non-empty string'
+    );
+    return { jsonRpcResponse };
+  }
+  const { socketConnection } = context;
+  socketConnection.ackSubscription(subscriptionId, cursor);
+  const jsonRpcResponse = createJsonRpcSuccessResponse(requestId, { reply: { status: 200, detail: 'OK' } });
+  return { jsonRpcResponse } as HandlerResponse;
+};

package/src/json-rpc-handlers/subscription/close.ts CHANGED Viewed

@@ -1,17 +1,13 @@
 import { v4 as uuidv4 } from 'uuid';
-import { DwnServerErrorCode } from '../../dwn-error.js';
 import type {
   HandlerResponse,
   JsonRpcHandler,
 } from '../../lib/json-rpc-router.js';
+import type { JsonRpcId, JsonRpcResponse } from '@enbox/dwn-clients';
-import type { JsonRpcId, JsonRpcResponse } from '../../lib/json-rpc.js';
-import {
-  createJsonRpcErrorResponse,
-  createJsonRpcSuccessResponse,
-  JsonRpcErrorCodes,
-} from '../../lib/json-rpc.js';
+import { DwnServerErrorCode } from '../../dwn-error.js';
+import { createJsonRpcErrorResponse, createJsonRpcSuccessResponse, JsonRpcErrorCodes } from '@enbox/dwn-clients';
 /**
  * Closes a subscription tied to a specific `SocketConnection`.
@@ -43,7 +39,7 @@ export const handleSubscriptionsClose: JsonRpcHandler = async (
     // closing the subscription and cleaning up the reference within the given connection.
     await socketConnection.closeSubscription(id);
     jsonRpcResponse = createJsonRpcSuccessResponse(requestId, { reply: { status: 200, detail: 'Accepted' } });
-  } catch(error) {
+  } catch (error) {
     if (error.code === DwnServerErrorCode.ConnectionSubscriptionJsonRpcIdNotFound) {
       jsonRpcResponse = createJsonRpcErrorResponse(requestId, JsonRpcErrorCodes.InvalidParams, `subscription ${id} does not exist.`);
     } else {
@@ -56,4 +52,4 @@ export const handleSubscriptionsClose: JsonRpcHandler = async (
   }
   return { jsonRpcResponse } as HandlerResponse;
-}
+};

package/src/json-rpc-handlers/subscription/index.ts CHANGED Viewed

	@@ -1 +1,2 @@
1	+ export * from './ack.js';
1 2	export * from './close.js';

package/src/lib/json-rpc-router.ts CHANGED Viewed

@@ -1,9 +1,12 @@
-import type { Dwn, MessageSubscriptionHandler } from '@enbox/dwn-sdk-js';
-import type { Readable } from 'node:stream';
-import type { JsonRpcId, JsonRpcRequest, JsonRpcResponse } from './json-rpc.js';
+import type { ActivityLog } from '../admin/activity-log.js';
+import type { AdminStore } from '../admin/admin-store.js';
+import type { DwnServerConfig } from '../config.js';
+import type { MessageProcessedHook } from '../message-processed-hook.js';
+import type { RateLimiter } from '../rate-limiter.js';
+import type { RegistrationStore } from '../registration/registration-store.js';
 import type { SocketConnection } from '../connection/socket-connection.js';
+import type { Dwn, SubscriptionListener } from '@enbox/dwn-sdk-js';
+import type { JsonRpcId, JsonRpcRequest, JsonRpcResponse } from '@enbox/dwn-clients';
 export type RequestContext = {
   transport: 'http' | 'ws';
@@ -12,17 +15,29 @@ export type RequestContext = {
   socketConnection?: SocketConnection;
   subscriptionRequest?: {
     /** The JsonRpcId of the subscription handler */
-    id: JsonRpcId;
-    /** The `MessageEvent` handler associated with a subscription request, only used in `ws` requests */
-    subscriptionHandler: MessageSubscriptionHandler;
+    id: JsonRpcId;
+    /** The `SubscriptionMessage` handler associated with a subscription request, only used in `ws` requests */
+    subscriptionHandler: SubscriptionListener;
   }
-  /** The `Readable` stream associated with a `RecordsWrite` request only used in `http` requests */
-  dataStream?: Readable;
+  /** The `ReadableStream` associated with a `RecordsWrite` request only used in `http` requests */
+  dataStream?: ReadableStream<Uint8Array>;
+  /** The admin activity log for capturing DWN request events (optional). */
+  activityLog?: ActivityLog;
+  /** The admin store for quota usage queries (optional). */
+  adminStore?: AdminStore;
+  /** The registration store for per-tenant quota lookups (optional). */
+  registrationStore?: RegistrationStore;
+  /** Server configuration for global quota/rate-limit defaults (optional). */
+  config?: DwnServerConfig;
+  /** Per-tenant rate limiter (optional). */
+  tenantRateLimiter?: RateLimiter;
+  /** Hooks invoked after every `dwn.processMessage()` call (fire-and-forget). */
+  messageProcessedHooks?: MessageProcessedHook[];
 };
 export type HandlerResponse = {
   jsonRpcResponse: JsonRpcResponse;
-  dataStream?: Readable;
+  dataStream?: ReadableStream<Uint8Array>;
 };
 export type JsonRpcHandler = (

package/src/lib/sql-utils.ts ADDED Viewed

@@ -0,0 +1,7 @@
+/**
+ * Escapes SQL LIKE wildcard characters (`%`, `_`, `\`) in user-supplied input
+ * so that they are treated as literal characters rather than pattern operators.
+ */
+export function escapeLikeWildcards(input: string): string {
+  return input.replace(/[%_\\]/g, '\\$&');
+}

package/src/main.ts CHANGED Viewed

@@ -1,14 +1,6 @@
 #!/usr/bin/env node
-// node.js 18 and earlier, needs globalThis.crypto polyfill. needed for dwn-sdk-js
-import { webcrypto } from 'node:crypto';
 import { DwnServer } from './dwn-server.js';
-if (!globalThis.crypto) {
-  // @ts-ignore
-  globalThis.crypto = webcrypto;
-}
 const dwnServer = new DwnServer();
 await dwnServer.start();

package/src/message-processed-hook.ts ADDED Viewed

@@ -0,0 +1,33 @@
+import type { GenericMessage } from '@enbox/dwn-sdk-js';
+/**
+ * Context provided to hooks after `dwn.processMessage()` returns.
+ */
+export type MessageProcessedContext = {
+  /** The tenant DID that owns the DWN. */
+  tenant: string;
+  /** The original signed DWN message. */
+  message: GenericMessage;
+  /** The reply status from the DWN engine. */
+  status: { code: number; detail: string };
+  /** The transport over which the message was received. */
+  transport: 'http' | 'ws';
+};
+/**
+ * Hook that is invoked after every successful `dwn.processMessage()` call.
+ *
+ * Hooks are fire-and-forget: they run asynchronously and their return values
+ * are ignored. Errors thrown by hooks are logged but never propagate to the
+ * request handler or the client.
+ *
+ * Implementations should return quickly and schedule any expensive work
+ * (network I/O, retries) internally.
+ */
+export interface MessageProcessedHook {
+  /**
+   * Called after a DWN message has been processed.
+   * May return void or a Promise — both are handled gracefully.
+   */
+  onMessageProcessed(context: MessageProcessedContext): void | Promise<void>;
+}

package/src/metrics.ts CHANGED Viewed

@@ -1,14 +1,63 @@
-import { Counter, Histogram } from 'prom-client';
+import { Counter, Gauge, Histogram } from 'prom-client';
+// ---------------------------------------------------------------------------
+// Existing metrics
+// ---------------------------------------------------------------------------
 export const requestCounter = new Counter({
-  name: 'dwn_requests_total',
-  help: 'all dwn requests processed',
-  labelNames: ['method', 'status', 'error'],
+  name       : 'dwn_requests_total',
+  help       : 'all dwn requests processed',
+  labelNames : ['method', 'status', 'error'],
 });
 export const responseHistogram = new Histogram({
-  name: 'http_response',
-  help: 'response histogram',
-  buckets: [0.005, 0.01, 0.025, 0.05, 0.1, 0.25, 0.5, 1, 2.5, 5, 10],
-  labelNames: ['route', 'code'],
+  name       : 'http_response',
+  help       : 'response histogram',
+  buckets    : [0.005, 0.01, 0.025, 0.05, 0.1, 0.25, 0.5, 1, 2.5, 5, 10],
+  labelNames : ['route', 'code'],
+});
+// ---------------------------------------------------------------------------
+// Enhanced gauges — updated periodically by AdminApi.startMetricsUpdater()
+// ---------------------------------------------------------------------------
+/** Number of active (registered) tenants. */
+export const activeTenants = new Gauge({
+  name : 'dwn_active_tenants',
+  help : 'number of active registered tenants',
+});
+/** Total messages stored across all tenants. */
+export const totalMessages = new Gauge({
+  name : 'dwn_total_messages',
+  help : 'total messages stored across all tenants',
+});
+/** Total data storage in bytes across all tenants. */
+export const totalDataBytes = new Gauge({
+  name : 'dwn_total_data_bytes',
+  help : 'total data storage bytes across all tenants',
+});
+/** Number of active WebSocket connections. */
+export const websocketConnections = new Gauge({
+  name : 'dwn_websocket_connections',
+  help : 'number of active websocket connections',
+});
+/** Number of active WebSocket subscriptions. */
+export const websocketSubscriptions = new Gauge({
+  name : 'dwn_websocket_subscriptions',
+  help : 'number of active websocket subscriptions',
+});
+// ---------------------------------------------------------------------------
+// Enhanced counters — incremented per-request
+// ---------------------------------------------------------------------------
+/** Total data bytes written via RecordsWrite, labeled by interface + method. */
+export const requestDataBytesTotal = new Counter({
+  name       : 'dwn_request_data_bytes_total',
+  help       : 'total data bytes processed in DWN requests',
+  labelNames : ['interface', 'method'],
 });