npm - @enbox/dwn-server - Versions diffs - 0.0.3 → 0.0.5 - Mend

@enbox/dwn-server 0.0.3 → 0.0.5

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (295) hide show

package/LICENSE +3 -2
package/README.md +112 -212
package/dist/esm/src/admin/activity-log.d.ts +44 -0
package/dist/esm/src/admin/activity-log.d.ts.map +1 -0
package/dist/esm/src/admin/activity-log.js +85 -0
package/dist/esm/src/admin/activity-log.js.map +1 -0
package/dist/esm/src/admin/admin-api.d.ts +61 -0
package/dist/esm/src/admin/admin-api.d.ts.map +1 -0
package/dist/esm/src/admin/admin-api.js +1047 -0
package/dist/esm/src/admin/admin-api.js.map +1 -0
package/dist/esm/src/admin/admin-auth.d.ts +9 -0
package/dist/esm/src/admin/admin-auth.d.ts.map +1 -0
package/dist/esm/src/admin/admin-auth.js +45 -0
package/dist/esm/src/admin/admin-auth.js.map +1 -0
package/dist/esm/src/admin/admin-store.d.ts +111 -0
package/dist/esm/src/admin/admin-store.d.ts.map +1 -0
package/dist/esm/src/admin/admin-store.js +376 -0
package/dist/esm/src/admin/admin-store.js.map +1 -0
package/dist/esm/src/admin/audit-log.d.ts +94 -0
package/dist/esm/src/admin/audit-log.d.ts.map +1 -0
package/dist/esm/src/admin/audit-log.js +220 -0
package/dist/esm/src/admin/audit-log.js.map +1 -0
package/dist/esm/src/admin/index.d.ts +10 -0
package/dist/esm/src/admin/index.d.ts.map +1 -0
package/dist/esm/src/admin/index.js +7 -0
package/dist/esm/src/admin/index.js.map +1 -0
package/dist/esm/src/admin/types.d.ts +306 -0
package/dist/esm/src/admin/types.d.ts.map +1 -0
package/dist/esm/src/admin/types.js +2 -0
package/dist/esm/src/admin/types.js.map +1 -0
package/dist/esm/src/admin/webhook-manager.d.ts +55 -0
package/dist/esm/src/admin/webhook-manager.d.ts.map +1 -0
package/dist/esm/src/admin/webhook-manager.js +184 -0
package/dist/esm/src/admin/webhook-manager.js.map +1 -0
package/dist/esm/src/config.d.ts +122 -3
package/dist/esm/src/config.d.ts.map +1 -1
package/dist/esm/src/config.js +151 -5
package/dist/esm/src/config.js.map +1 -1
package/dist/esm/src/connection/connection-manager.d.ts +24 -1
package/dist/esm/src/connection/connection-manager.d.ts.map +1 -1
package/dist/esm/src/connection/connection-manager.js +33 -2
package/dist/esm/src/connection/connection-manager.js.map +1 -1
package/dist/esm/src/connection/flow-controller.d.ts +53 -0
package/dist/esm/src/connection/flow-controller.d.ts.map +1 -0
package/dist/esm/src/connection/flow-controller.js +101 -0
package/dist/esm/src/connection/flow-controller.js.map +1 -0
package/dist/esm/src/connection/socket-connection.d.ts +39 -4
package/dist/esm/src/connection/socket-connection.d.ts.map +1 -1
package/dist/esm/src/connection/socket-connection.js +80 -9
package/dist/esm/src/connection/socket-connection.js.map +1 -1
package/dist/esm/src/delivery-service.d.ts +43 -0
package/dist/esm/src/delivery-service.d.ts.map +1 -0
package/dist/esm/src/delivery-service.js +574 -0
package/dist/esm/src/delivery-service.js.map +1 -0
package/dist/esm/src/dwn-error.d.ts +10 -1
package/dist/esm/src/dwn-error.d.ts.map +1 -1
package/dist/esm/src/dwn-error.js +9 -0
package/dist/esm/src/dwn-error.js.map +1 -1
package/dist/esm/src/dwn-server.d.ts +8 -0
package/dist/esm/src/dwn-server.d.ts.map +1 -1
package/dist/esm/src/dwn-server.js +198 -12
package/dist/esm/src/dwn-server.js.map +1 -1
package/dist/esm/src/http-api.d.ts +19 -2
package/dist/esm/src/http-api.d.ts.map +1 -1
package/dist/esm/src/http-api.js +219 -19
package/dist/esm/src/http-api.js.map +1 -1
package/dist/esm/src/index.d.ts +6 -2
package/dist/esm/src/index.d.ts.map +1 -1
package/dist/esm/src/index.js +4 -1
package/dist/esm/src/index.js.map +1 -1
package/dist/esm/src/json-rpc-api.js +2 -1
package/dist/esm/src/json-rpc-api.js.map +1 -1
package/dist/esm/src/json-rpc-handlers/dwn/process-message.d.ts.map +1 -1
package/dist/esm/src/json-rpc-handlers/dwn/process-message.js +106 -4
package/dist/esm/src/json-rpc-handlers/dwn/process-message.js.map +1 -1
package/dist/esm/src/json-rpc-handlers/subscription/ack.d.ts +20 -0
package/dist/esm/src/json-rpc-handlers/subscription/ack.d.ts.map +1 -0
package/dist/esm/src/json-rpc-handlers/subscription/ack.js +41 -0
package/dist/esm/src/json-rpc-handlers/subscription/ack.js.map +1 -0
package/dist/esm/src/json-rpc-handlers/subscription/close.d.ts.map +1 -1
package/dist/esm/src/json-rpc-handlers/subscription/close.js +1 -1
package/dist/esm/src/json-rpc-handlers/subscription/close.js.map +1 -1
package/dist/esm/src/json-rpc-handlers/subscription/index.d.ts +1 -0
package/dist/esm/src/json-rpc-handlers/subscription/index.d.ts.map +1 -1
package/dist/esm/src/json-rpc-handlers/subscription/index.js +1 -0
package/dist/esm/src/json-rpc-handlers/subscription/index.js.map +1 -1
package/dist/esm/src/lib/json-rpc-router.d.ts +22 -4
package/dist/esm/src/lib/json-rpc-router.d.ts.map +1 -1
package/dist/esm/src/lib/json-rpc-router.js.map +1 -1
package/dist/esm/src/lib/sql-utils.d.ts +6 -0
package/dist/esm/src/lib/sql-utils.d.ts.map +1 -0
package/dist/esm/src/lib/sql-utils.js +8 -0
package/dist/esm/src/lib/sql-utils.js.map +1 -0
package/dist/esm/src/main.js +0 -6
package/dist/esm/src/main.js.map +1 -1
package/dist/esm/src/message-processed-hook.d.ts +35 -0
package/dist/esm/src/message-processed-hook.d.ts.map +1 -0
package/dist/esm/src/message-processed-hook.js +2 -0
package/dist/esm/src/message-processed-hook.js.map +1 -0
package/dist/esm/src/metrics.d.ts +13 -1
package/dist/esm/src/metrics.d.ts.map +1 -1
package/dist/esm/src/metrics.js +41 -1
package/dist/esm/src/metrics.js.map +1 -1
package/dist/esm/src/plugins/event-log-nats.d.ts +25 -0
package/dist/esm/src/plugins/event-log-nats.d.ts.map +1 -0
package/dist/esm/src/plugins/event-log-nats.js +379 -0
package/dist/esm/src/plugins/event-log-nats.js.map +1 -0
package/dist/esm/src/rate-limiter.d.ts +60 -0
package/dist/esm/src/rate-limiter.d.ts.map +1 -0
package/dist/esm/src/rate-limiter.js +116 -0
package/dist/esm/src/rate-limiter.js.map +1 -0
package/dist/esm/src/registration/jwt-provider-auth-plugin.d.ts +53 -0
package/dist/esm/src/registration/jwt-provider-auth-plugin.d.ts.map +1 -0
package/dist/esm/src/registration/jwt-provider-auth-plugin.js +90 -0
package/dist/esm/src/registration/jwt-provider-auth-plugin.js.map +1 -0
package/dist/esm/src/registration/open-auth-handler.d.ts +37 -0
package/dist/esm/src/registration/open-auth-handler.d.ts.map +1 -0
package/dist/esm/src/registration/open-auth-handler.js +214 -0
package/dist/esm/src/registration/open-auth-handler.js.map +1 -0
package/dist/esm/src/registration/proof-of-work-manager.d.ts +1 -1
package/dist/esm/src/registration/proof-of-work-manager.d.ts.map +1 -1
package/dist/esm/src/registration/provider-auth-plugin.d.ts +46 -0
package/dist/esm/src/registration/provider-auth-plugin.d.ts.map +1 -0
package/dist/esm/src/registration/provider-auth-plugin.js +29 -0
package/dist/esm/src/registration/provider-auth-plugin.js.map +1 -0
package/dist/esm/src/registration/registration-manager.d.ts +27 -4
package/dist/esm/src/registration/registration-manager.d.ts.map +1 -1
package/dist/esm/src/registration/registration-manager.js +77 -6
package/dist/esm/src/registration/registration-manager.js.map +1 -1
package/dist/esm/src/registration/registration-store.d.ts +83 -3
package/dist/esm/src/registration/registration-store.d.ts.map +1 -1
package/dist/esm/src/registration/registration-store.js +248 -11
package/dist/esm/src/registration/registration-store.js.map +1 -1
package/dist/esm/src/storage.d.ts +4 -4
package/dist/esm/src/storage.d.ts.map +1 -1
package/dist/esm/src/storage.js +100 -20
package/dist/esm/src/storage.js.map +1 -1
package/dist/esm/src/web5-connect/sql-ttl-cache.d.ts.map +1 -1
package/dist/esm/src/web5-connect/sql-ttl-cache.js +8 -1
package/dist/esm/src/web5-connect/sql-ttl-cache.js.map +1 -1
package/dist/esm/src/ws-api.d.ts +17 -1
package/dist/esm/src/ws-api.d.ts.map +1 -1
package/dist/esm/src/ws-api.js +9 -2
package/dist/esm/src/ws-api.js.map +1 -1
package/package.json +18 -16
package/src/admin/activity-log.ts +100 -0
package/src/admin/admin-api.ts +1308 -0
package/src/admin/admin-auth.ts +56 -0
package/src/admin/admin-store.ts +515 -0
package/src/admin/audit-log.ts +327 -0
package/src/admin/index.ts +34 -0
package/src/admin/types.ts +352 -0
package/src/admin/webhook-manager.ts +245 -0
package/src/config.ts +177 -5
package/src/connection/connection-manager.ts +50 -6
package/src/connection/flow-controller.ts +117 -0
package/src/connection/socket-connection.ts +103 -21
package/src/delivery-service.ts +740 -0
package/src/dwn-error.ts +9 -0
package/src/dwn-server.ts +242 -14
package/src/http-api.ts +271 -30
package/src/index.ts +13 -2
package/src/json-rpc-api.ts +2 -1
package/src/json-rpc-handlers/dwn/process-message.ts +140 -5
package/src/json-rpc-handlers/subscription/ack.ts +63 -0
package/src/json-rpc-handlers/subscription/close.ts +2 -6
package/src/json-rpc-handlers/subscription/index.ts +1 -0
package/src/lib/json-rpc-router.ts +22 -6
package/src/lib/sql-utils.ts +7 -0
package/src/main.ts +0 -8
package/src/message-processed-hook.ts +33 -0
package/src/metrics.ts +50 -1
package/src/plugins/event-log-nats.ts +466 -0
package/src/rate-limiter.ts +143 -0
package/src/registration/jwt-provider-auth-plugin.ts +119 -0
package/src/registration/open-auth-handler.ts +263 -0
package/src/registration/proof-of-work-manager.ts +1 -1
package/src/registration/provider-auth-plugin.ts +84 -0
package/src/registration/registration-manager.ts +108 -12
package/src/registration/registration-store.ts +326 -17
package/src/storage.ts +121 -27
package/src/web5-connect/sql-ttl-cache.ts +7 -1
package/src/ws-api.ts +30 -2
package/dist/esm/src/json-rpc-socket.d.ts +0 -39
package/dist/esm/src/json-rpc-socket.d.ts.map +0 -1
package/dist/esm/src/json-rpc-socket.js +0 -125
package/dist/esm/src/json-rpc-socket.js.map +0 -1
package/dist/esm/src/lib/json-rpc.d.ts +0 -54
package/dist/esm/src/lib/json-rpc.d.ts.map +0 -1
package/dist/esm/src/lib/json-rpc.js +0 -60
package/dist/esm/src/lib/json-rpc.js.map +0 -1
package/dist/esm/src/registration/proof-of-work-types.d.ts +0 -8
package/dist/esm/src/registration/proof-of-work-types.d.ts.map +0 -1
package/dist/esm/src/registration/proof-of-work-types.js +0 -2
package/dist/esm/src/registration/proof-of-work-types.js.map +0 -1
package/dist/esm/src/registration/registration-types.d.ts +0 -18
package/dist/esm/src/registration/registration-types.d.ts.map +0 -1
package/dist/esm/src/registration/registration-types.js +0 -2
package/dist/esm/src/registration/registration-types.js.map +0 -1
package/dist/esm/tests/common-scenario-validator.d.ts +0 -11
package/dist/esm/tests/common-scenario-validator.d.ts.map +0 -1
package/dist/esm/tests/common-scenario-validator.js +0 -113
package/dist/esm/tests/common-scenario-validator.js.map +0 -1
package/dist/esm/tests/connection/connection-manager.spec.d.ts +0 -2
package/dist/esm/tests/connection/connection-manager.spec.d.ts.map +0 -1
package/dist/esm/tests/connection/connection-manager.spec.js +0 -49
package/dist/esm/tests/connection/connection-manager.spec.js.map +0 -1
package/dist/esm/tests/connection/socket-connection.spec.d.ts +0 -2
package/dist/esm/tests/connection/socket-connection.spec.d.ts.map +0 -1
package/dist/esm/tests/connection/socket-connection.spec.js +0 -147
package/dist/esm/tests/connection/socket-connection.spec.js.map +0 -1
package/dist/esm/tests/cors/http-api.browser.d.ts +0 -2
package/dist/esm/tests/cors/http-api.browser.d.ts.map +0 -1
package/dist/esm/tests/cors/http-api.browser.js +0 -60
package/dist/esm/tests/cors/http-api.browser.js.map +0 -1
package/dist/esm/tests/cors/ping.browser.d.ts +0 -2
package/dist/esm/tests/cors/ping.browser.d.ts.map +0 -1
package/dist/esm/tests/cors/ping.browser.js +0 -7
package/dist/esm/tests/cors/ping.browser.js.map +0 -1
package/dist/esm/tests/dwn-process-message.spec.d.ts +0 -2
package/dist/esm/tests/dwn-process-message.spec.d.ts.map +0 -1
package/dist/esm/tests/dwn-process-message.spec.js +0 -172
package/dist/esm/tests/dwn-process-message.spec.js.map +0 -1
package/dist/esm/tests/dwn-server.spec.d.ts +0 -2
package/dist/esm/tests/dwn-server.spec.d.ts.map +0 -1
package/dist/esm/tests/dwn-server.spec.js +0 -48
package/dist/esm/tests/dwn-server.spec.js.map +0 -1
package/dist/esm/tests/http-api.spec.d.ts +0 -2
package/dist/esm/tests/http-api.spec.d.ts.map +0 -1
package/dist/esm/tests/http-api.spec.js +0 -782
package/dist/esm/tests/http-api.spec.js.map +0 -1
package/dist/esm/tests/json-rpc-socket.spec.d.ts +0 -2
package/dist/esm/tests/json-rpc-socket.spec.d.ts.map +0 -1
package/dist/esm/tests/json-rpc-socket.spec.js +0 -227
package/dist/esm/tests/json-rpc-socket.spec.js.map +0 -1
package/dist/esm/tests/plugins/data-store-sqlite.d.ts +0 -17
package/dist/esm/tests/plugins/data-store-sqlite.d.ts.map +0 -1
package/dist/esm/tests/plugins/data-store-sqlite.js +0 -23
package/dist/esm/tests/plugins/data-store-sqlite.js.map +0 -1
package/dist/esm/tests/plugins/event-log-sqlite.d.ts +0 -17
package/dist/esm/tests/plugins/event-log-sqlite.d.ts.map +0 -1
package/dist/esm/tests/plugins/event-log-sqlite.js +0 -23
package/dist/esm/tests/plugins/event-log-sqlite.js.map +0 -1
package/dist/esm/tests/plugins/event-stream-in-memory.d.ts +0 -17
package/dist/esm/tests/plugins/event-stream-in-memory.d.ts.map +0 -1
package/dist/esm/tests/plugins/event-stream-in-memory.js +0 -21
package/dist/esm/tests/plugins/event-stream-in-memory.js.map +0 -1
package/dist/esm/tests/plugins/message-store-sqlite.d.ts +0 -17
package/dist/esm/tests/plugins/message-store-sqlite.d.ts.map +0 -1
package/dist/esm/tests/plugins/message-store-sqlite.js +0 -23
package/dist/esm/tests/plugins/message-store-sqlite.js.map +0 -1
package/dist/esm/tests/plugins/resumable-task-store-sqlite.d.ts +0 -17
package/dist/esm/tests/plugins/resumable-task-store-sqlite.d.ts.map +0 -1
package/dist/esm/tests/plugins/resumable-task-store-sqlite.js +0 -23
package/dist/esm/tests/plugins/resumable-task-store-sqlite.js.map +0 -1
package/dist/esm/tests/process-handler.spec.d.ts +0 -2
package/dist/esm/tests/process-handler.spec.d.ts.map +0 -1
package/dist/esm/tests/process-handler.spec.js +0 -60
package/dist/esm/tests/process-handler.spec.js.map +0 -1
package/dist/esm/tests/registration/proof-of-work-manager.spec.d.ts +0 -2
package/dist/esm/tests/registration/proof-of-work-manager.spec.d.ts.map +0 -1
package/dist/esm/tests/registration/proof-of-work-manager.spec.js +0 -156
package/dist/esm/tests/registration/proof-of-work-manager.spec.js.map +0 -1
package/dist/esm/tests/rpc-subscribe-close.spec.d.ts +0 -2
package/dist/esm/tests/rpc-subscribe-close.spec.d.ts.map +0 -1
package/dist/esm/tests/rpc-subscribe-close.spec.js +0 -81
package/dist/esm/tests/rpc-subscribe-close.spec.js.map +0 -1
package/dist/esm/tests/scenarios/dynamic-plugin-loading.spec.d.ts +0 -2
package/dist/esm/tests/scenarios/dynamic-plugin-loading.spec.d.ts.map +0 -1
package/dist/esm/tests/scenarios/dynamic-plugin-loading.spec.js +0 -74
package/dist/esm/tests/scenarios/dynamic-plugin-loading.spec.js.map +0 -1
package/dist/esm/tests/scenarios/registration.spec.d.ts +0 -2
package/dist/esm/tests/scenarios/registration.spec.d.ts.map +0 -1
package/dist/esm/tests/scenarios/registration.spec.js +0 -511
package/dist/esm/tests/scenarios/registration.spec.js.map +0 -1
package/dist/esm/tests/scenarios/web5-connect.spec.d.ts +0 -2
package/dist/esm/tests/scenarios/web5-connect.spec.d.ts.map +0 -1
package/dist/esm/tests/scenarios/web5-connect.spec.js +0 -141
package/dist/esm/tests/scenarios/web5-connect.spec.js.map +0 -1
package/dist/esm/tests/test-dwn.d.ts +0 -7
package/dist/esm/tests/test-dwn.d.ts.map +0 -1
package/dist/esm/tests/test-dwn.js +0 -28
package/dist/esm/tests/test-dwn.js.map +0 -1
package/dist/esm/tests/utils.d.ts +0 -43
package/dist/esm/tests/utils.d.ts.map +0 -1
package/dist/esm/tests/utils.js +0 -107
package/dist/esm/tests/utils.js.map +0 -1
package/dist/esm/tests/ws-api.spec.d.ts +0 -2
package/dist/esm/tests/ws-api.spec.d.ts.map +0 -1
package/dist/esm/tests/ws-api.spec.js +0 -332
package/dist/esm/tests/ws-api.spec.js.map +0 -1
package/src/json-rpc-socket.ts +0 -156
package/src/lib/json-rpc.ts +0 -126
package/src/registration/proof-of-work-types.ts +0 -7
package/src/registration/registration-types.ts +0 -18

package/src/http-api.ts CHANGED Viewed

@@ -1,28 +1,50 @@
+import type { JsonRpcRequest } from '@enbox/dwn-clients';
 import type { RecordsReadReply } from '@enbox/dwn-sdk-js';
+import type { ServerInfo } from '@enbox/dwn-clients';
 import type { Server, ServerWebSocket } from 'bun';
+import type { ActivityLog } from './admin/activity-log.js';
+import type { AdminApi } from './admin/admin-api.js';
+import type { AdminStore } from './admin/admin-store.js';
+import type { DwnServerConfig } from './config.js';
+import type { DwnServerError } from './dwn-error.js';
+import type { MessageProcessedHook } from './message-processed-hook.js';
+import type { OpenAuthHandler } from './registration/open-auth-handler.js';
+import type { RateLimiter } from './rate-limiter.js';
+import type { RegistrationManager } from './registration/registration-manager.js';
+import type { RegistrationStore } from './registration/registration-store.js';
+import type { RequestContext } from './lib/json-rpc-router.js';
+import type { SocketConnection } from './connection/socket-connection.js';
 import log from 'loglevel';
 import { Convert } from '@enbox/common';
-import { readFileSync } from 'fs';
 import { register } from 'prom-client';
 import { v4 as uuidv4 } from 'uuid';
+import { createJsonRpcErrorResponse, JsonRpcErrorCodes } from '@enbox/dwn-clients';
 import { DataStream, DateSort, type Dwn, ProtocolsQuery, RecordsQuery, RecordsRead } from '@enbox/dwn-sdk-js';
-import type { DwnServerConfig } from './config.js';
-import type { DwnServerError } from './dwn-error.js';
-import type { JsonRpcRequest } from './lib/json-rpc.js';
-import type { RegistrationManager } from './registration/registration-manager.js';
-import type { RequestContext } from './lib/json-rpc-router.js';
-import type { SocketConnection } from './connection/socket-connection.js';
+import { existsSync, readFileSync } from 'fs';
+import { join, resolve } from 'path';
 import { config } from './config.js';
 import { jsonRpcRouter } from './json-rpc-api.js';
+import { validateAdminAuth } from './admin/admin-auth.js';
 import { Web5ConnectServer } from './web5-connect/web5-connect-server.js';
-import { createJsonRpcErrorResponse, JsonRpcErrorCodes } from './lib/json-rpc.js';
 import { requestCounter, responseHistogram } from './metrics.js';
+/** Property names that must never be used as keys when building objects from user input. */
+const DANGEROUS_KEYS = new Set(['__proto__', 'constructor', 'prototype']);
+// Resolve admin UI dist path at module load time. Gracefully handle the case
+// where the admin UI package is not installed.
+let resolvedAdminUiPath: string | undefined;
+try {
+  const adminUiModule = require('@enbox/dwn-server-admin-ui');
+  resolvedAdminUiPath = adminUiModule.adminUiDistPath;
+} catch {
+  // Admin UI package not installed — static serving will be disabled.
+}
 /** Data attached to each Bun WebSocket via `ws.data`. */
 export interface WsData {
   connection: SocketConnection;
@@ -32,6 +54,15 @@ export class HttpApi {
   #config: DwnServerConfig;
   #packageInfo: { version?: string, sdkVersion?: string, server: string };
   #server!: Server<WsData>;
+  #adminApi: AdminApi | undefined;
+  #activityLog: ActivityLog | undefined;
+  #adminStore: AdminStore | undefined;
+  #registrationStore: RegistrationStore | undefined;
+  #ipRateLimiter: RateLimiter | undefined;
+  #tenantRateLimiter: RateLimiter | undefined;
+  #messageProcessedHooks: MessageProcessedHook[];
+  #openAuthHandler: OpenAuthHandler | undefined;
+  #adminUiPath: string | undefined;
   web5ConnectServer: Web5ConnectServer;
   registrationManager: RegistrationManager;
   dwn: Dwn;
@@ -42,11 +73,20 @@ export class HttpApi {
   private constructor() { }
   public static async create(
-    config: DwnServerConfig, dwn: Dwn, registrationManager?: RegistrationManager
+    config: DwnServerConfig, dwn: Dwn, registrationManager?: RegistrationManager,
+    adminApi?: AdminApi, activityLog?: ActivityLog,
+    options?: {
+      adminStore? : AdminStore;
+      registrationStore? : RegistrationStore;
+      ipRateLimiter? : RateLimiter;
+      tenantRateLimiter? : RateLimiter;
+      messageProcessedHooks? : MessageProcessedHook[];
+      openAuthHandler? : OpenAuthHandler;
+    },
   ): Promise<HttpApi> {
     const httpApi = new HttpApi();
-    log.info(config);
+    log.info(HttpApi.#redactConfig(config));
     httpApi.#packageInfo = {
       server: config.serverName,
@@ -64,6 +104,15 @@ export class HttpApi {
     httpApi.#config = config;
     httpApi.dwn = dwn;
+    httpApi.#adminApi = adminApi;
+    httpApi.#activityLog = activityLog;
+    httpApi.#adminStore = options?.adminStore;
+    httpApi.#registrationStore = options?.registrationStore;
+    httpApi.#ipRateLimiter = options?.ipRateLimiter;
+    httpApi.#tenantRateLimiter = options?.tenantRateLimiter;
+    httpApi.#messageProcessedHooks = options?.messageProcessedHooks ?? [];
+    httpApi.#openAuthHandler = options?.openAuthHandler;
+    httpApi.#adminUiPath = resolvedAdminUiPath;
     if (registrationManager !== undefined) {
       httpApi.registrationManager = registrationManager;
@@ -81,6 +130,18 @@ export class HttpApi {
     return this.#server;
   }
+  get ipRateLimiter(): RateLimiter | undefined {
+    return this.#ipRateLimiter;
+  }
+  get tenantRateLimiter(): RateLimiter | undefined {
+    return this.#tenantRateLimiter;
+  }
+  get messageProcessedHooks(): MessageProcessedHook[] {
+    return this.#messageProcessedHooks;
+  }
   // ---------------------------------------------------------------------------
   // HTTP request handler
   // ---------------------------------------------------------------------------
@@ -106,6 +167,25 @@ export class HttpApi {
           return new Response('WebSocket upgrade failed', { status: 400 });
         }
+        // --- Per-IP rate limiting ---
+        if (self.#ipRateLimiter) {
+          const ip = server.requestIP(req)?.address ?? 'unknown';
+          const result = self.#ipRateLimiter.consume(ip);
+          if (result.allowed === false) {
+            const retryAfterSec = Math.ceil(result.retryAfterMs / 1000);
+            return new Response(
+              JSON.stringify({ error: 'Rate limit exceeded' }),
+              {
+                status  : 429,
+                headers : {
+                  'content-type' : 'application/json',
+                  'retry-after'  : String(retryAfterSec),
+                },
+              },
+            );
+          }
+        }
         // --- Route matching ---
         let response: Response;
         try {
@@ -116,10 +196,15 @@ export class HttpApi {
         }
         // --- CORS headers ---
-        response.headers.set('access-control-allow-origin', '*');
-        response.headers.set('access-control-allow-methods', 'GET, POST, OPTIONS');
-        response.headers.set('access-control-allow-headers', '*');
-        response.headers.set('access-control-expose-headers', 'dwn-response');
+        // Admin API and metrics endpoints do not receive wildcard CORS headers
+        // to limit cross-origin access when the admin token is configured.
+        const isAdminRoute = path.startsWith('/admin') || path === '/metrics';
+        if (!isAdminRoute) {
+          response.headers.set('access-control-allow-origin', '*');
+          response.headers.set('access-control-allow-methods', 'GET, POST, OPTIONS');
+          response.headers.set('access-control-allow-headers', '*');
+          response.headers.set('access-control-expose-headers', 'dwn-response');
+        }
         // --- Response-time metrics ---
         const elapsed = performance.now() - startTime;
@@ -134,6 +219,7 @@ export class HttpApi {
       },
       websocket: {
+        maxPayloadLength: self.#config.maxRecordDataSize,
         open(ws: ServerWebSocket<WsData>): void {
           if (self.onWebSocketConnection) {
             self.onWebSocketConnection(ws);
@@ -151,17 +237,65 @@ export class HttpApi {
             connection.close();
           }
         },
-        // Bun automatically responds to pings with pongs
+        pong(ws: ServerWebSocket<WsData>): void {
+          const connection = ws.data?.connection;
+          if (connection) {
+            connection.pong();
+          }
+        },
       },
     });
   }
   async close(): Promise<void> {
+    if (this.#openAuthHandler) {
+      this.#openAuthHandler.destroy();
+    }
     if (this.#server) {
       this.#server.stop(true); // close all connections immediately
     }
   }
+  // ---------------------------------------------------------------------------
+  // Admin UI static file serving
+  // ---------------------------------------------------------------------------
+  /**
+   * Serves static files from the admin UI dist directory. Returns `null` when
+   * the admin UI package is not installed or the requested file does not exist.
+   * All non-file paths under `/admin` fall back to `index.html` (SPA routing).
+   */
+  #serveAdminUi(path: string): Response | null {
+    if (!this.#adminUiPath) {
+      return null;
+    }
+    // Strip the `/admin` prefix to get the file path within the dist directory.
+    const relativePath = path.replace(/^\/admin\/?/, '');
+    // Map to a file on disk. Empty path or paths without an extension get
+    // the SPA index.html (client-side routing).
+    let filePath: string;
+    if (relativePath === '' || !relativePath.includes('.')) {
+      filePath = join(this.#adminUiPath, 'index.html');
+    } else {
+      filePath = join(this.#adminUiPath, relativePath);
+    }
+    // Prevent path traversal: resolved path must stay within the admin UI directory.
+    const resolvedBase = resolve(this.#adminUiPath);
+    if (!resolve(filePath).startsWith(resolvedBase)) {
+      return null;
+    }
+    if (!existsSync(filePath)) {
+      return null;
+    }
+    const file = Bun.file(filePath);
+    return new Response(file);
+  }
   // ---------------------------------------------------------------------------
   // Router
   // ---------------------------------------------------------------------------
@@ -178,6 +312,13 @@ export class HttpApi {
     }
     if (method === 'GET' && path === '/metrics') {
+      // Metrics require admin authentication when an admin token is configured.
+      if (this.#config.adminToken) {
+        const authError = validateAdminAuth(req, this.#config);
+        if (authError) {
+          return authError;
+        }
+      }
       try {
         const metricsBody = await register.metrics();
         return new Response(metricsBody, {
@@ -204,6 +345,32 @@ export class HttpApi {
       return this.#handleJsonRpcPost(req);
     }
+    // --- Admin API routes ---
+    if (path.startsWith('/admin/api/') && this.#adminApi) {
+      return this.#adminApi.route(req, url, path, method);
+    }
+    // --- Admin UI static files (only when admin API is enabled) ---
+    if (method === 'GET' && path.startsWith('/admin') && this.#adminApi) {
+      const uiResponse = this.#serveAdminUi(path);
+      if (uiResponse) {
+        return uiResponse;
+      }
+    }
+    // --- Provider auth (open-auth) routes ---
+    if (this.#openAuthHandler && path.startsWith('/provider-auth/')) {
+      if (method === 'GET' && path === '/provider-auth/authorize') {
+        return this.#openAuthHandler.handleAuthorize(url);
+      }
+      if (method === 'POST' && path === '/provider-auth/token') {
+        return this.#openAuthHandler.handleToken(req);
+      }
+      if (method === 'POST' && path === '/provider-auth/refresh') {
+        return this.#openAuthHandler.handleRefresh(req);
+      }
+    }
     // --- Registration routes ---
     const registrationResponse = await this.#matchRegistrationRoutes(req, path, method);
     if (registrationResponse) {
@@ -275,6 +442,38 @@ export class HttpApi {
     return new Response('Not Found', { status: 404 });
   }
+  // ---------------------------------------------------------------------------
+  // Security helpers
+  // ---------------------------------------------------------------------------
+  /** Returns `true` if the given key is a prototype-pollution-dangerous property name. */
+  static #isDangerousKey(key: string | undefined): boolean {
+    return key !== undefined && DANGEROUS_KEYS.has(key);
+  }
+  /** Returns `true` if any element in `keys` is a dangerous property name. */
+  static #hasDangerousKey(keys: string[]): boolean {
+    return keys.some(k => DANGEROUS_KEYS.has(k));
+  }
+  /** Returns a shallow copy of the config with sensitive values redacted for logging. */
+  static #redactConfig(cfg: DwnServerConfig): Record<string, unknown> {
+    const redacted: Record<string, unknown> = { ...cfg };
+    const sensitiveKeys = ['adminToken', 'providerAuthJwtSecret'];
+    for (const key of sensitiveKeys) {
+      if (redacted[key]) {
+        redacted[key] = '[REDACTED]';
+      }
+    }
+    // Redact passwords in connection-string-like values.
+    for (const [key, value] of Object.entries(redacted)) {
+      if (typeof value === 'string' && /^(?:postgres|mysql|sqlite):\/\//.test(value) && value.includes('@')) {
+        redacted[key] = value.replace(/:\/\/([^:]+):([^@]+)@/, '://$1:****@');
+      }
+    }
+    return redacted;
+  }
   // ---------------------------------------------------------------------------
   // Handlers
   // ---------------------------------------------------------------------------
@@ -287,16 +486,31 @@ export class HttpApi {
     if (config.termsOfServiceFilePath !== undefined) {
       registrationRequirements.push('terms-of-service');
     }
+    if (config.providerAuthEnabled && !registrationRequirements.includes('provider-auth-v0')) {
+      registrationRequirements.push('provider-auth-v0');
+    }
-    return Response.json({
-      url                      : config.baseUrl,
-      server                   : this.#packageInfo.server,
+    const serverInfo: ServerInfo = {
       maxFileSize              : config.maxRecordDataSize,
+      maxInFlight              : config.maxInFlight,
       registrationRequirements : registrationRequirements,
-      version                  : this.#packageInfo.version,
+      server                   : this.#packageInfo.server,
       sdkVersion               : this.#packageInfo.sdkVersion,
+      url                      : config.baseUrl,
+      version                  : this.#packageInfo.version,
       webSocketSupport         : config.webSocketSupport,
-    });
+    };
+    if (config.providerAuthEnabled) {
+      serverInfo.providerAuth = {
+        authorizeUrl  : config.providerAuthAuthorizeUrl,
+        tokenUrl      : config.providerAuthTokenUrl,
+        refreshUrl    : config.providerAuthRefreshUrl,
+        managementUrl : config.providerAuthManagementUrl,
+      };
+    }
+    return Response.json(serverInfo);
   }
   async #handleJsonRpcPost(req: Request): Promise<Response> {
@@ -319,9 +533,13 @@ export class HttpApi {
       return Response.json(reply, { status: 400 });
     }
-    // Read the request body into bytes first, then wrap in a fresh ReadableStream.
-    // Bun's native Request.body stream has an incompatible reader.releaseLock()
-    // that breaks DWN SDK's DataStream.toBytes(), so we materialise the body here.
+    // Materialise the request body before passing to DWN.
+    // Bun's Bun.serve() returns a ReadableStream for req.body that is
+    // incompatible with the ReadableStream consumer code in dwn-sdk-js,
+    // causing DataStream.toBytes() to crash with "undefined is not a
+    // function" at reader.releaseLock().  Buffering via arrayBuffer()
+    // converts it into a well-behaved stream that dwn-sdk-js can consume.
+    // TODO: https://github.com/enboxorg/enbox/issues/90 — remove once Bun ships fix
     const contentLength = req.headers.get('content-length');
     const transferEncoding = req.headers.get('transfer-encoding');
     let requestDataStream: ReadableStream<Uint8Array> | undefined;
@@ -331,15 +549,31 @@ export class HttpApi {
     }
     const requestContext: RequestContext = {
-      dwn        : this.dwn,
-      transport  : 'http',
-      dataStream : requestDataStream,
+      dwn                   : this.dwn,
+      transport             : 'http',
+      dataStream            : requestDataStream,
+      activityLog           : this.#activityLog,
+      adminStore            : this.#adminStore,
+      registrationStore     : this.#registrationStore,
+      config                : this.#config,
+      tenantRateLimiter     : this.#tenantRateLimiter,
+      messageProcessedHooks : this.#messageProcessedHooks,
     };
     const { jsonRpcResponse, dataStream: responseDataStream } =
       await jsonRpcRouter.handle(dwnRpcRequest, requestContext);
     if (jsonRpcResponse.error) {
       requestCounter.inc({ method: dwnRpcRequest.method, error: 1 });
+      // Return HTTP 429 with Retry-After header for rate-limit rejections.
+      if (jsonRpcResponse.error.code === JsonRpcErrorCodes.TooManyRequests) {
+        const retryAfterSec = jsonRpcResponse.error.data?.retryAfterSec ?? 1;
+        return Response.json(jsonRpcResponse, {
+          status  : 429,
+          headers : { 'retry-after': String(retryAfterSec) },
+        });
+      }
       return Response.json(jsonRpcResponse, { status: 500 });
     }
@@ -400,6 +634,9 @@ export class HttpApi {
       for (const [param, value] of url.searchParams) {
         const keys = param.split('.');
         const lastKey = keys.pop();
+        if (HttpApi.#hasDangerousKey(keys) || HttpApi.#isDangerousKey(lastKey)) {
+          continue;
+        }
         const nestObj = (obj: Record<string, any>, key: string): Record<string, any> =>
           obj[key] = obj[key] || {};
         const lastLevelObject = keys.reduce(nestObj, queryOptions);
@@ -481,6 +718,9 @@ export class HttpApi {
       for (const [param, value] of url.searchParams) {
         const keys = param.split('.');
         const lastKey = keys.pop();
+        if (HttpApi.#hasDangerousKey(keys) || HttpApi.#isDangerousKey(lastKey)) {
+          continue;
+        }
         const nestObj = (obj: Record<string, any>, key: string): Record<string, any> =>
           obj[key] = obj[key] || {};
         const lastLevelObject = keys.reduce(nestObj, recordsQueryOptions);
@@ -498,7 +738,8 @@ export class HttpApi {
         headers: { 'content-type': 'application/json' },
       });
     } catch (error) {
-      return Response.json(error, { status: 400 });
+      log.error('Error processing query records request', error);
+      return Response.json({ error: 'Bad Request' }, { status: 400 });
     }
   }
@@ -523,7 +764,7 @@ export class HttpApi {
     if (method === 'POST' && path === '/registration'
       && this.#config.registrationStoreUrl !== undefined) {
       const requestBody = await req.json();
-      log.info('Registration request:', requestBody);
+      log.info('Registration request received');
       try {
         await this.registrationManager.handleRegistrationRequest(requestBody);

package/src/index.ts CHANGED Viewed

@@ -1,6 +1,17 @@
-export { DwnServerConfig } from './config.js';
+export { ActivityLog, AdminApi, AdminStore } from './admin/index.js';
+export type {
+  AdminActivityEvent,
+  AdminConnectionSnapshot,
+  AdminHealthCheck,
+  AdminServerStats,
+  AdminTenantDetail,
+  AdminTenantSummary,
+} from './admin/index.js';
+export { config as defaultDwnServerConfig, DwnServerConfig } from './config.js';
+export { DeliveryService } from './delivery-service.js';
 export { DwnServer, DwnServerOptions } from './dwn-server.js';
 export { HttpApi } from './http-api.js';
 export { jsonRpcRouter } from './json-rpc-api.js';
-export { StoreType, BackendTypes, DwnStore } from './storage.js';
+export type { MessageProcessedContext, MessageProcessedHook } from './message-processed-hook.js';
+export { getDwnConfig, StoreType, BackendTypes, DwnStore } from './storage.js';
 export { WsApi } from './ws-api.js';

package/src/json-rpc-api.ts CHANGED Viewed

@@ -1,11 +1,12 @@
 import { JsonRpcRouter } from './lib/json-rpc-router.js';
 import { handleDwnProcessMessage } from './json-rpc-handlers/dwn/index.js';
-import { handleSubscriptionsClose } from './json-rpc-handlers/subscription/index.js';
+import { handleSubscriptionAck, handleSubscriptionsClose } from './json-rpc-handlers/subscription/index.js';
 export const jsonRpcRouter = new JsonRpcRouter();
 jsonRpcRouter.on('dwn.processMessage', handleDwnProcessMessage);
 jsonRpcRouter.on('rpc.subscribe.dwn.processMessage', handleDwnProcessMessage);
+jsonRpcRouter.on('rpc.ack', handleSubscriptionAck);
 jsonRpcRouter.on('rpc.subscribe.close', handleSubscriptionsClose);

package/src/json-rpc-handlers/dwn/process-message.ts CHANGED Viewed

@@ -4,17 +4,19 @@ import { DwnInterfaceName, DwnMethodName } from '@enbox/dwn-sdk-js';
 import log from 'loglevel';
 import { v4 as uuidv4 } from 'uuid';
-import type { JsonRpcSubscription } from '../../lib/json-rpc.js';
+import type { JsonRpcSubscription } from '@enbox/dwn-clients';
 import type {
   HandlerResponse,
   JsonRpcHandler,
 } from '../../lib/json-rpc-router.js';
+import { DwnServerErrorCode } from '../../dwn-error.js';
+import { requestDataBytesTotal } from '../../metrics.js';
 import {
   createJsonRpcErrorResponse,
   createJsonRpcSuccessResponse,
   JsonRpcErrorCodes,
-} from '../../lib/json-rpc.js';
+} from '@enbox/dwn-clients';
 export const handleDwnProcessMessage: JsonRpcHandler = async (
@@ -73,6 +75,34 @@ export const handleDwnProcessMessage: JsonRpcHandler = async (
       return { jsonRpcResponse };
     }
+    // --- Per-tenant rate limiting (before any DWN processing) ---
+    if (context.tenantRateLimiter) {
+      const result = context.tenantRateLimiter.consume(target);
+      if (result.allowed === false) {
+        const retryAfterSec = Math.ceil(result.retryAfterMs / 1000);
+        const jsonRpcResponse = createJsonRpcErrorResponse(
+          requestId,
+          JsonRpcErrorCodes.TooManyRequests,
+          `${DwnServerErrorCode.RateLimitExceeded}: tenant rate limit exceeded, retry after ${retryAfterSec}s`,
+          { retryAfterSec },
+        );
+        return { jsonRpcResponse };
+      }
+    }
+    // --- Per-tenant storage quota enforcement (RecordsWrite only) ---
+    if (
+      context.config &&
+      context.adminStore &&
+      message.descriptor.interface === DwnInterfaceName.Records &&
+      message.descriptor.method === DwnMethodName.Write
+    ) {
+      const quotaResult = await enforceQuota(target, message, context);
+      if (quotaResult !== undefined) {
+        return quotaResult;
+      }
+    }
     const reply = await dwn.processMessage(target, message, {
       dataStream,
       subscriptionHandler: subscriptionRequest?.subscriptionHandler,
@@ -107,16 +137,121 @@ export const handleDwnProcessMessage: JsonRpcHandler = async (
       responsePayload.dataStream = recordDataStream;
     }
+    // --- Fire-and-forget: post-processing hooks ---
+    const statusCode = reply.status?.code ?? 0;
+    if (context.messageProcessedHooks) {
+      const hookContext = { tenant: target, message, status: reply.status, transport };
+      for (const hook of context.messageProcessedHooks) {
+        try {
+          const result = hook.onMessageProcessed(hookContext);
+          if (result instanceof Promise) {
+            result.catch((err: unknown): void => {
+              log.error('MessageProcessedHook error', err);
+            });
+          }
+        } catch (err) {
+          log.error('MessageProcessedHook error', err);
+        }
+      }
+    }
+    // Capture activity event and per-request metrics.
+    const dwnInterface = message.descriptor.interface as string;
+    const dwnMethod = message.descriptor.method as string;
+    const dataSizeBytes = (message.descriptor as { dataSize?: number }).dataSize;
+    if (dataSizeBytes !== undefined && dataSizeBytes > 0) {
+      requestDataBytesTotal.inc({ interface: dwnInterface, method: dwnMethod }, dataSizeBytes);
+    }
+    if (context.activityLog) {
+      context.activityLog.record({
+        tenant    : target,
+        interface : dwnInterface,
+        method    : dwnMethod,
+        statusCode,
+        transport,
+        dataSizeBytes,
+      });
+    }
     return responsePayload;
   } catch (error) {
+    // Log the full error internally but return a generic message to the client
+    // to avoid leaking implementation details (SQL errors, file paths, etc.).
+    log.error('handleDwnProcessMessage error', error);
     const jsonRpcResponse = createJsonRpcErrorResponse(
       requestId,
       JsonRpcErrorCodes.InternalError,
-      error.message,
+      'an unexpected error occurred while processing the message',
     );
-    // log the unhandled error response
-    log.error('handleDwnProcessMessage error', jsonRpcResponse, dwnRequest, error);
     return { jsonRpcResponse } as HandlerResponse;
   }
 };
+// ---------------------------------------------------------------------------
+// Quota enforcement helper
+// ---------------------------------------------------------------------------
+/**
+ * Checks whether the tenant has exceeded their message count or storage quota.
+ * Returns a JSON-RPC error response if the quota is exceeded, or `undefined` to proceed.
+ */
+async function enforceQuota(
+  target: string,
+  message: GenericMessage,
+  context: Parameters<JsonRpcHandler>[1],
+): Promise<HandlerResponse | undefined> {
+  const { config, adminStore, registrationStore } = context;
+  const requestId = (message as any).recordId ?? uuidv4();
+  // Resolve effective quota: per-tenant override > global config > unlimited.
+  let maxMessages = config!.quotaMaxMessages ?? 0;
+  let maxStorageBytes = config!.quotaMaxStorageBytes ?? 0;
+  if (registrationStore) {
+    const tenantQuota = await registrationStore.getQuota(target);
+    if (tenantQuota !== undefined) {
+      maxMessages = tenantQuota.maxMessages ?? maxMessages;
+      maxStorageBytes = tenantQuota.maxStorageBytes ?? maxStorageBytes;
+    }
+  }
+  // 0 means unlimited — skip enforcement.
+  if (maxMessages === 0 && maxStorageBytes === 0) {
+    return undefined;
+  }
+  // Check message count quota.
+  if (maxMessages > 0) {
+    const currentMessages = await adminStore!.getTenantMessageCount(target);
+    if (currentMessages >= maxMessages) {
+      return {
+        jsonRpcResponse: createJsonRpcErrorResponse(
+          requestId,
+          JsonRpcErrorCodes.InvalidRequest,
+          `${DwnServerErrorCode.TenantMessageQuotaExceeded}: tenant has reached the message limit of ${maxMessages}`,
+        ),
+      };
+    }
+  }
+  // Check storage size quota.
+  if (maxStorageBytes > 0) {
+    const dataSize = (message.descriptor as { dataSize?: number }).dataSize ?? 0;
+    const currentStorage = await adminStore!.getTenantStorageSize(target);
+    if (currentStorage + dataSize > maxStorageBytes) {
+      return {
+        jsonRpcResponse: createJsonRpcErrorResponse(
+          requestId,
+          JsonRpcErrorCodes.InvalidRequest,
+          `${DwnServerErrorCode.TenantStorageQuotaExceeded}: tenant would exceed storage limit of ${maxStorageBytes} bytes`,
+        ),
+      };
+    }
+  }
+  return undefined;
+}