npm - @fedify/debugger - Versions diffs - 2.0.0-dev.0 - Mend

@fedify/debugger 2.0.0-dev.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (6) hide show

package/dist/mod.js ADDED Viewed

@@ -0,0 +1,945 @@
+        import { Temporal } from "@js-temporal/polyfill";
+import { MemoryKvStore } from "@fedify/fedify/federation";
+import { FedifySpanExporter } from "@fedify/fedify/otel";
+import { configureSync, getConfig } from "@logtape/logtape";
+import { context, propagation, trace } from "@opentelemetry/api";
+import { AsyncLocalStorageContextManager } from "@opentelemetry/context-async-hooks";
+import { W3CTraceContextPropagator } from "@opentelemetry/core";
+import { BasicTracerProvider, SimpleSpanProcessor } from "@opentelemetry/sdk-trace-base";
+import { AsyncLocalStorage } from "node:async_hooks";
+import { Hono } from "hono";
+import { getCookie } from "hono/cookie";
+import { timingSafeEqual } from "node:crypto";
+import { jsx, jsxs } from "hono/jsx/jsx-runtime";
+//#region src/log-store.ts
+/**
+* Persistent storage for log records grouped by trace ID, backed by a
+* {@link KvStore}.  When the same `KvStore` is shared across web and worker
+* processes the dashboard can display logs produced by background tasks.
+*/
+var LogStore = class {
+	#kv;
+	#keyPrefix;
+	/** Chain of pending write promises for flush(). */
+	#pending = Promise.resolve();
+	constructor(kv, keyPrefix = [
+		"fedify",
+		"debugger",
+		"logs"
+	]) {
+		this.#kv = kv;
+		this.#keyPrefix = keyPrefix;
+	}
+	/**
+	* Enqueue a log record for writing.  The write happens asynchronously;
+	* call {@link flush} to wait for all pending writes to complete.
+	*
+	* Keys use a timestamp + random suffix so that entries sort
+	* chronologically and never collide, even across multiple processes
+	* sharing the same {@link KvStore}.
+	*/
+	add(traceId, record) {
+		const key = [
+			...this.#keyPrefix,
+			traceId,
+			`${Date.now().toString(36).padStart(10, "0")}-${Math.random().toString(36).slice(2)}`
+		];
+		this.#pending = this.#pending.then(() => this.#kv.set(key, record)).catch(() => {});
+	}
+	/** Wait for all pending writes to complete. */
+	flush() {
+		return this.#pending;
+	}
+	async get(traceId) {
+		const prefix = [...this.#keyPrefix, traceId];
+		const logs = [];
+		for await (const entry of this.#kv.list(prefix)) logs.push(entry.value);
+		return logs;
+	}
+};
+/**
+* Converts a {@link LogRecord} into a plain serializable object suitable
+* for storage in a {@link KvStore}.
+*/
+function serializeLogRecord(record) {
+	const messageParts = [];
+	for (const part of record.message) if (typeof part === "string") messageParts.push(part);
+	else if (part == null) messageParts.push("");
+	else messageParts.push(String(part));
+	const { traceId: _t, spanId: _s,...properties } = record.properties;
+	return {
+		category: record.category,
+		level: record.level,
+		message: messageParts.join(""),
+		timestamp: record.timestamp,
+		properties
+	};
+}
+/**
+* Creates a LogTape {@link Sink} that writes log records into the given
+* {@link LogStore}, grouped by their `traceId` property.  Records without
+* a `traceId` are silently discarded.
+*/
+function createLogSink(store) {
+	return (record) => {
+		const traceId = record.properties.traceId;
+		if (typeof traceId !== "string" || traceId.length === 0) return;
+		store.add(traceId, serializeLogRecord(record));
+	};
+}
+//#endregion
+//#region src/auth.ts
+const SESSION_COOKIE_NAME = "__fedify_debug_session";
+const SESSION_TOKEN = "authenticated";
+async function generateHmacKey() {
+	return await crypto.subtle.generateKey({
+		name: "HMAC",
+		hash: "SHA-256"
+	}, false, ["sign", "verify"]);
+}
+function toHex(buffer) {
+	return [...new Uint8Array(buffer)].map((b) => b.toString(16).padStart(2, "0")).join("");
+}
+function fromHex(hex) {
+	const bytes = new Uint8Array(hex.length / 2);
+	for (let i = 0; i < hex.length; i += 2) bytes[i / 2] = parseInt(hex.substring(i, i + 2), 16);
+	return bytes.buffer;
+}
+async function signSession(key) {
+	const encoder = new TextEncoder();
+	const signature = await crypto.subtle.sign("HMAC", key, encoder.encode(SESSION_TOKEN));
+	return toHex(signature);
+}
+async function verifySession(key, signature) {
+	try {
+		const encoder = new TextEncoder();
+		return await crypto.subtle.verify("HMAC", key, fromHex(signature), encoder.encode(SESSION_TOKEN));
+	} catch {
+		return false;
+	}
+}
+/**
+* Constant-time string comparison to prevent timing attacks on credential
+* checks.  Uses {@link timingSafeEqual} from `node:crypto` under the hood.
+*/
+function constantTimeEqual(a, b) {
+	const encoder = new TextEncoder();
+	const bufA = encoder.encode(a);
+	const bufB = encoder.encode(b);
+	if (bufA.byteLength !== bufB.byteLength) {
+		timingSafeEqual(bufA, new Uint8Array(bufA.byteLength));
+		return false;
+	}
+	return timingSafeEqual(bufA, bufB);
+}
+async function checkAuth(auth, formData) {
+	if (auth.type === "password") {
+		if ("authenticate" in auth) return await auth.authenticate(formData.password);
+		return constantTimeEqual(formData.password, auth.password);
+	}
+	if (auth.type === "usernamePassword") {
+		if ("authenticate" in auth) return await auth.authenticate(formData.username ?? "", formData.password);
+		const usernameMatch = constantTimeEqual(formData.username ?? "", auth.username);
+		const passwordMatch = constantTimeEqual(formData.password, auth.password);
+		return usernameMatch && passwordMatch;
+	}
+	return false;
+}
+//#endregion
+//#region src/views/logo.tsx
+/**
+* Inline SVG of the Fedify logo (mascot bird with fediverse connection nodes).
+*/
+const FedifyLogo = ({ size = 24 }) => {
+	return /* @__PURE__ */ jsxs("svg", {
+		width: size,
+		height: size,
+		viewBox: "0 0 112 112",
+		role: "img",
+		"aria-label": "Fedify logo",
+		children: [
+			/* @__PURE__ */ jsx("defs", { children: /* @__PURE__ */ jsx("clipPath", {
+				clipPathUnits: "userSpaceOnUse",
+				id: "fedify-logo-clip",
+				children: /* @__PURE__ */ jsx("ellipse", {
+					style: "fill: #000; stroke: #000; stroke-width: 3.02635; stroke-linejoin: miter; stroke-dasharray: none; stroke-dashoffset: 0; stroke-opacity: 1; paint-order: normal",
+					cx: "55.92646",
+					cy: "56.073448",
+					transform: "rotate(-0.07519647)",
+					rx: "54.486828",
+					ry: "54.486824"
+				})
+			}) }),
+			/* @__PURE__ */ jsx("ellipse", {
+				style: "fill: #ffffff; stroke: none; stroke-width: 3.02635; stroke-linejoin: miter; stroke-dasharray: none; stroke-dashoffset: 0; stroke-opacity: 1; paint-order: normal",
+				cx: "55.92646",
+				cy: "56.073448",
+				transform: "rotate(-0.07519647)",
+				rx: "54.486828",
+				ry: "54.486824"
+			}),
+			/* @__PURE__ */ jsxs("g", {
+				"clip-path": "url(#fedify-logo-clip)",
+				children: [/* @__PURE__ */ jsxs("g", { children: [
+					/* @__PURE__ */ jsx("path", {
+						d: "M 77.4624,78.9593 C 78.2802,68.3428 73.7143,58.8833 71.3291,55.4806 L 87.6847,48.335 c 4.9066,1.6333 6.474,17.3537 6.6444,25.0098 0,0 -3.5778,0.5104 -5.6222,2.0416 -2.085,1.5616 -5.6222,5.1041 -11.2445,3.5729 z",
+						fill: "#ffffff",
+						stroke: "#84b5d9",
+						"stroke-width": "3",
+						"stroke-linecap": "round"
+					}),
+					/* @__PURE__ */ jsx("path", {
+						d: "M 7.06239,52.159 C -5.55748,54.1782 -12.682,66.0659 -17.661,73.2769 c -0.8584,13.3918 -0.6181,41.1021 7.211,44.8111 7.82906,3.709 26.9553,1.545 35.5398,0 v 4.121 c 1.3736,0.515 5.0477,1.648 8.7562,2.06 3.7085,0.412 6.696,-1.202 7.7261,-2.06 v -9.787 c 0.5151,-0.343 2.9874,-1.957 8.7562,-5.666 7.211,-4.635 11.3315,-16.482 9.7863,-24.7229 -1.1589,-6.181 3.6055,-18.5427 6.1809,-26.7838 9.7863,2.0601 22.148,-1.0301 23.1781,-14.9369 C 90.1205,31.5801 80.7174,19.9868 63.2051,25.3752 45.6927,30.7636 48.268,52.159 41.5721,59.37 35.3913,53.1891 23.5446,49.5219 7.06239,52.159 Z",
+						fill: "#bae6fd",
+						stroke: "#0c4a6e",
+						"stroke-width": "3",
+						"stroke-linecap": "round"
+					}),
+					/* @__PURE__ */ jsx("path", {
+						d: "M 66.2955,55.2493 C 64.5786,54.7342 60.9387,53.6011 60.1146,53.189",
+						stroke: "#0284c7",
+						"stroke-opacity": "0.37",
+						"stroke-width": "3",
+						"stroke-linecap": "round",
+						style: "opacity: 1; fill: none; stroke-width: 3; stroke-linejoin: miter; stroke-dasharray: none; paint-order: normal"
+					}),
+					/* @__PURE__ */ jsx("path", {
+						d: "m 41.5721,59.3698 c -0.6868,0.8585 -2.6784,2.7814 -5.1507,3.6055",
+						stroke: "#0284c7",
+						"stroke-opacity": "0.37",
+						"stroke-width": "3",
+						"stroke-linecap": "round",
+						style: "fill: none"
+					}),
+					/* @__PURE__ */ jsx("circle", {
+						cx: "68.870796",
+						cy: "42.8876",
+						r: "2.0602801",
+						fill: "#000000"
+					})
+				] }), /* @__PURE__ */ jsxs("g", {
+					transform: "matrix(0.08160718,0,0,0.08160718,76.994732,53.205469)",
+					style: "display: inline",
+					children: [
+						/* @__PURE__ */ jsx("path", {
+							style: "fill: #a730b8; fill-opacity: 1; fill-rule: nonzero; stroke: none; stroke-width: 41.5748",
+							d: "m 181.13086,275.13672 a 68.892408,68.892408 0 0 1 -29.46484,29.32812 l 161.75781,162.38868 38.99805,-19.76368 z m 213.36328,214.1875 -38.99805,19.76367 81.96289,82.2832 a 68.892409,68.892409 0 0 1 29.47071,-29.33203 z",
+							transform: "matrix(0.26458333,0,0,0.26458333,-6.6789703,32.495842)"
+						}),
+						/* @__PURE__ */ jsx("path", {
+							style: "fill: #5496be; fill-opacity: 1; fill-rule: nonzero; stroke: none; stroke-width: 41.5748",
+							d: "m 581.64648,339.39062 -91.57617,46.41016 6.75196,43.18945 103.61523,-52.51367 A 68.892409,68.892409 0 0 1 581.64648,339.39062 Z M 436.9082,412.74219 220.38281,522.47656 a 68.892408,68.892408 0 0 1 18.79492,37.08985 L 443.66016,455.93359 Z",
+							transform: "matrix(0.26458333,0,0,0.26458333,-6.6789703,32.495842)"
+						}),
+						/* @__PURE__ */ jsx("path", {
+							style: "fill: #ce3d1a; fill-opacity: 1; fill-rule: nonzero; stroke: none; stroke-width: 41.5748",
+							d: "M 367.27539,142.4375 262.79492,346.4082 293.64258,377.375 404.26562,161.41797 A 68.892408,68.892408 0 0 1 367.27539,142.4375 Z m -131.6543,257.02148 -52.92187,103.31446 a 68.892409,68.892409 0 0 1 36.98633,18.97851 l 46.78125,-91.32812 z",
+							transform: "matrix(0.26458333,0,0,0.26458333,-6.6789703,32.495842)"
+						}),
+						/* @__PURE__ */ jsx("path", {
+							style: "fill: #d0188f; fill-opacity: 1; fill-rule: nonzero; stroke: none; stroke-width: 41.5748",
+							d: "m 150.76758,304.91797 a 68.892408,68.892408 0 0 1 -34.41602,7.19531 68.892408,68.892408 0 0 1 -6.65039,-0.69531 l 30.90235,197.66211 a 68.892409,68.892409 0 0 1 34.41601,-7.19531 68.892409,68.892409 0 0 1 6.64649,0.69531 z",
+							transform: "matrix(0.26458333,0,0,0.26458333,-6.6789703,32.495842)"
+						}),
+						/* @__PURE__ */ jsx("path", {
+							style: "fill: #5b36e9; fill-opacity: 1; fill-rule: nonzero; stroke: none; stroke-width: 41.5748",
+							d: "m 239.3418,560.54492 a 68.892408,68.892408 0 0 1 0.7207,13.87696 68.892408,68.892408 0 0 1 -7.26758,27.17968 l 197.62891,31.71289 a 68.892409,68.892409 0 0 1 -0.72266,-13.8789 68.892409,68.892409 0 0 1 7.26953,-27.17774 z",
+							transform: "matrix(0.26458333,0,0,0.26458333,-6.6789703,32.495842)"
+						}),
+						/* @__PURE__ */ jsx("path", {
+							style: "fill: #30b873; fill-opacity: 1; fill-rule: nonzero; stroke: none; stroke-width: 41.5748",
+							d: "m 601.13281,377.19922 -91.21875,178.08203 a 68.892408,68.892408 0 0 1 36.99414,18.98242 L 638.125,396.18359 a 68.892409,68.892409 0 0 1 -36.99219,-18.98437 z",
+							transform: "matrix(0.26458333,0,0,0.26458333,-6.6789703,32.495842)"
+						}),
+						/* @__PURE__ */ jsx("path", {
+							style: "fill: #ebe305; fill-opacity: 1; fill-rule: nonzero; stroke: none; stroke-width: 41.5748",
+							d: "m 476.72266,125.33008 a 68.892408,68.892408 0 0 1 -29.47071,29.33203 l 141.26563,141.81055 a 68.892409,68.892409 0 0 1 29.46875,-29.33204 z",
+							transform: "matrix(0.26458333,0,0,0.26458333,-6.6789703,32.495842)"
+						}),
+						/* @__PURE__ */ jsx("path", {
+							style: "fill: #f47601; fill-opacity: 1; fill-rule: nonzero; stroke: none; stroke-width: 41.5748",
+							d: "m 347.78711,104.63086 -178.57617,90.49805 a 68.892409,68.892409 0 0 1 18.79297,37.08593 l 178.57421,-90.50195 a 68.892408,68.892408 0 0 1 -18.79101,-37.08203 z",
+							transform: "matrix(0.26458333,0,0,0.26458333,-6.6789703,32.495842)"
+						}),
+						/* @__PURE__ */ jsx("path", {
+							style: "fill: #57c115; fill-opacity: 1; fill-rule: nonzero; stroke: none; stroke-width: 41.5748",
+							d: "m 446.92578,154.82617 a 68.892408,68.892408 0 0 1 -34.98242,7.48242 68.892408,68.892408 0 0 1 -6.0293,-0.63281 l 15.81836,101.29102 43.16211,6.92578 z m -16,167.02735 37.40039,239.48242 a 68.892409,68.892409 0 0 1 33.91406,-6.94336 68.892409,68.892409 0 0 1 7.20704,0.79101 L 474.08984,328.77734 Z",
+							transform: "matrix(0.26458333,0,0,0.26458333,-6.6789703,32.495842)"
+						}),
+						/* @__PURE__ */ jsx("path", {
+							style: "fill: #dbb210; fill-opacity: 1; fill-rule: nonzero; stroke: none; stroke-width: 41.5748",
+							d: "m 188.13086,232.97461 a 68.892408,68.892408 0 0 1 0.75781,14.0957 68.892408,68.892408 0 0 1 -7.16015,26.98242 l 101.36914,16.28125 19.92382,-38.9082 z m 173.73633,27.90039 -19.92578,38.91211 239.51367,38.4668 a 68.892409,68.892409 0 0 1 -0.69531,-13.71875 68.892409,68.892409 0 0 1 7.34961,-27.32422 z",
+							transform: "matrix(0.26458333,0,0,0.26458333,-6.6789703,32.495842)"
+						}),
+						/* @__PURE__ */ jsx("circle", {
+							style: "fill: #ffca00; fill-opacity: 0.995968; stroke: none; stroke-width: 0.264583; stroke-opacity: 0.960784",
+							cx: "106.26596",
+							cy: "51.535553",
+							r: "16.570711",
+							transform: "rotate(3.1178174)"
+						}),
+						/* @__PURE__ */ jsx("circle", {
+							style: "fill: #64ff00; fill-opacity: 0.995968; stroke: none; stroke-width: 0.264583; stroke-opacity: 0.960784",
+							cx: "171.42836",
+							cy: "110.19328",
+							r: "16.570711",
+							transform: "rotate(3.1178174)"
+						}),
+						/* @__PURE__ */ jsx("circle", {
+							style: "fill: #00a3ff; fill-opacity: 0.995968; stroke: none; stroke-width: 0.264583; stroke-opacity: 0.960784",
+							cx: "135.76379",
+							cy: "190.27704",
+							r: "16.570711",
+							transform: "rotate(3.1178174)"
+						}),
+						/* @__PURE__ */ jsx("circle", {
+							style: "fill: #9500ff; fill-opacity: 0.995968; stroke: none; stroke-width: 0.264583; stroke-opacity: 0.960784",
+							cx: "48.559471",
+							cy: "181.1138",
+							r: "16.570711",
+							transform: "rotate(3.1178174)"
+						}),
+						/* @__PURE__ */ jsx("circle", {
+							style: "fill: #ff0000; fill-opacity: 0.995968; stroke: none; stroke-width: 0.264583; stroke-opacity: 0.960784",
+							cx: "30.328812",
+							cy: "95.366837",
+							r: "16.570711",
+							transform: "rotate(3.1178174)"
+						})
+					]
+				})]
+			}),
+			/* @__PURE__ */ jsx("circle", {
+				style: "opacity: 1; fill: none; stroke: #84b5d9; stroke-width: 4.91342; stroke-linejoin: miter; stroke-dasharray: none; stroke-dashoffset: 0; stroke-opacity: 1; paint-order: normal",
+				cx: "55.926456",
+				cy: "56.073448",
+				transform: "rotate(-0.07519625)",
+				r: "53.543289"
+			})
+		]
+	});
+};
+//#endregion
+//#region src/views/layout.tsx
+/**
+* Root HTML layout for the debug dashboard.
+*/
+const Layout = ({ title, pathPrefix, children }) => {
+	return /* @__PURE__ */ jsxs("html", { children: [/* @__PURE__ */ jsxs("head", { children: [
+		/* @__PURE__ */ jsx("meta", { charset: "utf-8" }),
+		/* @__PURE__ */ jsx("meta", {
+			name: "viewport",
+			content: "width=device-width, initial-scale=1"
+		}),
+		/* @__PURE__ */ jsxs("title", { children: [title != null ? `${title} — ` : "", "Fedify Debug Dashboard"] }),
+		/* @__PURE__ */ jsx("style", { children: `
+          body {
+            font-family: system-ui, -apple-system, sans-serif;
+            max-width: 960px;
+            margin: 0 auto;
+            padding: 1rem;
+            color: #333;
+          }
+          header { border-bottom: 1px solid #ddd; padding-bottom: 0.5rem; margin-bottom: 1rem; }
+          header h1 { margin: 0; font-size: 1.25rem; }
+          header h1 a { color: inherit; text-decoration: none; display: inline-flex; align-items: center; gap: 0.5rem; }
+          table { width: 100%; border-collapse: collapse; }
+          th, td { text-align: left; padding: 0.5rem; border-bottom: 1px solid #eee; }
+          th { font-weight: 600; font-size: 0.875rem; color: #666; }
+          a { color: #0969da; }
+          code { background: #f0f0f0; padding: 0.15em 0.3em; border-radius: 3px; font-size: 0.875em; }
+          .badge { display: inline-block; background: #e0e0e0; color: #333; padding: 0.15em 0.5em; border-radius: 3px; font-size: 0.75rem; }
+          .badge-inbound { background: #ddf4ff; color: #0969da; }
+          .badge-outbound { background: #fff8c5; color: #9a6700; }
+          .detail-section { margin-bottom: 1.5rem; }
+          .detail-section h2 { font-size: 1rem; margin-bottom: 0.5rem; border-bottom: 1px solid #eee; padding-bottom: 0.25rem; }
+          pre { background: #f6f8fa; padding: 1rem; overflow-x: auto; border-radius: 6px; font-size: 0.8125rem; }
+          .empty { color: #888; font-style: italic; }
+          nav a { margin-right: 0.5rem; }
+          .log-table td { font-size: 0.8125rem; vertical-align: top; }
+          .log-table time { font-family: monospace; white-space: nowrap; }
+          .badge-debug { background: #e8e8e8; color: #666; }
+          .badge-info { background: #ddf4ff; color: #0969da; }
+          .badge-warning { background: #fff8c5; color: #9a6700; }
+          .badge-error { background: #ffebe9; color: #cf222e; }
+          .badge-fatal { background: #cf222e; color: #fff; }
+          .log-error td { background: #fff5f5; }
+          .log-fatal td { background: #ffebe9; }
+          @media (prefers-color-scheme: dark) {
+            body { background: #0d1117; color: #e6edf3; }
+            header { border-bottom-color: #30363d; }
+            th { color: #9198a1; }
+            th, td { border-bottom-color: #21262d; }
+            a { color: #58a6ff; }
+            code { background: #161b22; }
+            .badge { background: #30363d; color: #e6edf3; }
+            .badge-inbound { background: #122d42; color: #58a6ff; }
+            .badge-outbound { background: #2e2a1f; color: #d29922; }
+            .detail-section h2 { border-bottom-color: #21262d; }
+            pre { background: #161b22; }
+            .empty { color: #9198a1; }
+            .badge-debug { background: #21262d; color: #9198a1; }
+            .badge-info { background: #122d42; color: #58a6ff; }
+            .badge-warning { background: #2e2a1f; color: #d29922; }
+            .badge-error { background: #3d1f20; color: #f85149; }
+            .badge-fatal { background: #da3633; color: #fff; }
+            .log-error td { background: #2d1215; }
+            .log-fatal td { background: #3d1f20; }
+          }
+        ` })
+	] }), /* @__PURE__ */ jsxs("body", { children: [/* @__PURE__ */ jsx("header", { children: /* @__PURE__ */ jsx("h1", { children: /* @__PURE__ */ jsxs("a", {
+		href: pathPrefix + "/",
+		children: [/* @__PURE__ */ jsx(FedifyLogo, { size: 24 }), "Fedify Debug Dashboard"]
+	}) }) }), /* @__PURE__ */ jsx("main", { children })] })] });
+};
+//#endregion
+//#region src/views/login.tsx
+/**
+* Login page for the debug dashboard.
+*/
+const LoginPage = ({ pathPrefix, showUsername, error }) => {
+	return /* @__PURE__ */ jsxs(Layout, {
+		title: "Login",
+		pathPrefix,
+		children: [
+			/* @__PURE__ */ jsx("h2", { children: "Login Required" }),
+			/* @__PURE__ */ jsx("p", {
+				class: "login-description",
+				children: "The debug dashboard requires authentication to access."
+			}),
+			error && /* @__PURE__ */ jsx("p", {
+				class: "login-error",
+				children: error
+			}),
+			/* @__PURE__ */ jsxs("form", {
+				method: "post",
+				action: pathPrefix + "/login",
+				class: "login-form",
+				children: [
+					showUsername && /* @__PURE__ */ jsxs("div", {
+						class: "login-field",
+						children: [/* @__PURE__ */ jsx("label", {
+							for: "username",
+							children: "Username"
+						}), /* @__PURE__ */ jsx("input", {
+							type: "text",
+							id: "username",
+							name: "username",
+							required: true,
+							autocomplete: "username"
+						})]
+					}),
+					/* @__PURE__ */ jsxs("div", {
+						class: "login-field",
+						children: [/* @__PURE__ */ jsx("label", {
+							for: "password",
+							children: "Password"
+						}), /* @__PURE__ */ jsx("input", {
+							type: "password",
+							id: "password",
+							name: "password",
+							required: true,
+							autocomplete: "current-password"
+						})]
+					}),
+					/* @__PURE__ */ jsx("button", {
+						type: "submit",
+						children: "Log in"
+					})
+				]
+			}),
+			/* @__PURE__ */ jsx("style", { children: `
+        .login-form {
+          max-width: 320px;
+        }
+        .login-field {
+          margin-bottom: 0.75rem;
+        }
+        .login-field label {
+          display: block;
+          margin-bottom: 0.25rem;
+          font-weight: 600;
+          font-size: 0.875rem;
+        }
+        .login-field input {
+          width: 100%;
+          padding: 0.5rem;
+          border: 1px solid #ccc;
+          border-radius: 4px;
+          font-size: 0.875rem;
+          box-sizing: border-box;
+        }
+        .login-form button {
+          padding: 0.5rem 1.5rem;
+          background: #0969da;
+          color: #fff;
+          border: none;
+          border-radius: 4px;
+          font-size: 0.875rem;
+          cursor: pointer;
+        }
+        .login-form button:hover {
+          background: #0860c5;
+        }
+        .login-error {
+          color: #d1242f;
+          background: #ffebe9;
+          padding: 0.5rem 0.75rem;
+          border-radius: 4px;
+          font-size: 0.875rem;
+        }
+        .login-description {
+          color: #666;
+          font-size: 0.875rem;
+        }
+        @media (prefers-color-scheme: dark) {
+          .login-field input {
+            background: #0d1117;
+            color: #e6edf3;
+            border-color: #30363d;
+          }
+          .login-form button {
+            background: #1f6feb;
+          }
+          .login-form button:hover {
+            background: #388bfd;
+          }
+          .login-error {
+            color: #f85149;
+            background: #3d1f20;
+          }
+          .login-description {
+            color: #9198a1;
+          }
+        }
+        ` })
+		]
+	});
+};
+//#endregion
+//#region src/views/trace-detail.tsx
+/**
+* Safely formats a timestamp (milliseconds since epoch) as an ISO string.
+* Returns `"(invalid)"` if the timestamp is not a finite number or produces
+* an invalid `Date`.
+*/
+function safeISOString(timestamp) {
+	if (!Number.isFinite(timestamp)) return "(invalid)";
+	try {
+		return new Date(timestamp).toISOString();
+	} catch {
+		return "(invalid)";
+	}
+}
+/**
+* The trace detail page of the debug dashboard.
+*/
+const TraceDetailPage = ({ traceId, activities, logs, pathPrefix }) => {
+	return /* @__PURE__ */ jsxs(Layout, {
+		pathPrefix,
+		title: `Trace ${traceId.slice(0, 8)}`,
+		children: [
+			/* @__PURE__ */ jsx("nav", { children: /* @__PURE__ */ jsx("a", {
+				href: `${pathPrefix}/`,
+				children: "← Back to traces"
+			}) }),
+			/* @__PURE__ */ jsxs("h2", { children: ["Trace ", /* @__PURE__ */ jsx("code", { children: traceId.slice(0, 8) })] }),
+			/* @__PURE__ */ jsxs("p", { children: [
+				"Full ID: ",
+				/* @__PURE__ */ jsx("code", { children: traceId }),
+				" —",
+				" ",
+				/* @__PURE__ */ jsx("strong", { children: activities.length }),
+				" ",
+				"activit",
+				activities.length !== 1 ? "ies" : "y",
+				",",
+				" ",
+				/* @__PURE__ */ jsx("strong", { children: logs.length }),
+				" log record",
+				logs.length !== 1 ? "s" : ""
+			] }),
+			activities.length === 0 ? /* @__PURE__ */ jsx("p", {
+				class: "empty",
+				children: "No activities found for this trace."
+			}) : activities.map((activity) => /* @__PURE__ */ jsxs("div", {
+				class: "detail-section",
+				children: [
+					/* @__PURE__ */ jsxs("h2", { children: [
+						/* @__PURE__ */ jsx("span", {
+							class: `badge ${activity.direction === "inbound" ? "badge-inbound" : "badge-outbound"}`,
+							children: activity.direction
+						}),
+						" ",
+						activity.activityType
+					] }),
+					/* @__PURE__ */ jsx("table", { children: /* @__PURE__ */ jsxs("tbody", { children: [
+						/* @__PURE__ */ jsxs("tr", { children: [/* @__PURE__ */ jsx("th", { children: "Span ID" }), /* @__PURE__ */ jsx("td", { children: /* @__PURE__ */ jsx("code", { children: activity.spanId }) })] }),
+						activity.parentSpanId != null && /* @__PURE__ */ jsxs("tr", { children: [/* @__PURE__ */ jsx("th", { children: "Parent Span" }), /* @__PURE__ */ jsx("td", { children: /* @__PURE__ */ jsx("code", { children: activity.parentSpanId }) })] }),
+						activity.activityId != null && /* @__PURE__ */ jsxs("tr", { children: [/* @__PURE__ */ jsx("th", { children: "Activity ID" }), /* @__PURE__ */ jsx("td", { children: /* @__PURE__ */ jsx("code", { children: activity.activityId }) })] }),
+						activity.actorId != null && /* @__PURE__ */ jsxs("tr", { children: [/* @__PURE__ */ jsx("th", { children: "Actor" }), /* @__PURE__ */ jsx("td", { children: /* @__PURE__ */ jsx("code", { children: activity.actorId }) })] }),
+						/* @__PURE__ */ jsxs("tr", { children: [/* @__PURE__ */ jsx("th", { children: "Timestamp" }), /* @__PURE__ */ jsx("td", { children: /* @__PURE__ */ jsx("time", {
+							datetime: activity.timestamp,
+							children: activity.timestamp
+						}) })] }),
+						activity.direction === "outbound" && activity.inboxUrl != null && /* @__PURE__ */ jsxs("tr", { children: [/* @__PURE__ */ jsx("th", { children: "Inbox URL" }), /* @__PURE__ */ jsx("td", { children: /* @__PURE__ */ jsx("code", { children: activity.inboxUrl }) })] }),
+						activity.direction === "inbound" && /* @__PURE__ */ jsxs("tr", { children: [/* @__PURE__ */ jsx("th", { children: "Verified" }), /* @__PURE__ */ jsx("td", { children: activity.verified ? "Yes" : "No" })] }),
+						activity.signatureDetails != null && /* @__PURE__ */ jsxs("tr", { children: [/* @__PURE__ */ jsx("th", { children: "Signature Details" }), /* @__PURE__ */ jsxs("td", { children: [
+							"HTTP Signatures:",
+							" ",
+							activity.signatureDetails.httpSignaturesVerified ? "verified" : "not verified",
+							activity.signatureDetails.httpSignaturesKeyId != null && /* @__PURE__ */ jsxs("span", { children: [
+								"\xA0(key:\xA0",
+								/* @__PURE__ */ jsx("code", { children: activity.signatureDetails.httpSignaturesKeyId }),
+								")"
+							] }),
+							/* @__PURE__ */ jsx("br", {}),
+							"LD Signatures:",
+							" ",
+							activity.signatureDetails.ldSignaturesVerified ? "verified" : "not verified"
+						] })] })
+					] }) }),
+					/* @__PURE__ */ jsxs("details", { children: [/* @__PURE__ */ jsx("summary", { children: "Activity JSON" }), /* @__PURE__ */ jsx("pre", { children: formatJson(activity.activityJson) })] })
+				]
+			}, activity.spanId)),
+			/* @__PURE__ */ jsx("h2", { children: "Logs" }),
+			logs.length === 0 ? /* @__PURE__ */ jsx("p", {
+				class: "empty",
+				children: "No logs captured for this trace."
+			}) : /* @__PURE__ */ jsxs("table", {
+				class: "log-table",
+				children: [/* @__PURE__ */ jsx("thead", { children: /* @__PURE__ */ jsxs("tr", { children: [
+					/* @__PURE__ */ jsx("th", { children: "Time" }),
+					/* @__PURE__ */ jsx("th", { children: "Level" }),
+					/* @__PURE__ */ jsx("th", { children: "Category" }),
+					/* @__PURE__ */ jsx("th", { children: "Message" })
+				] }) }), /* @__PURE__ */ jsx("tbody", { children: logs.map((log, i) => /* @__PURE__ */ jsxs("tr", {
+					class: `log-${log.level}`,
+					children: [
+						/* @__PURE__ */ jsx("td", { children: /* @__PURE__ */ jsx("time", {
+							datetime: safeISOString(log.timestamp),
+							children: (() => {
+								const iso = safeISOString(log.timestamp);
+								return iso === "(invalid)" ? iso : iso.slice(11, 23);
+							})()
+						}) }),
+						/* @__PURE__ */ jsx("td", { children: /* @__PURE__ */ jsx("span", {
+							class: `badge badge-${log.level}`,
+							children: log.level
+						}) }),
+						/* @__PURE__ */ jsx("td", { children: /* @__PURE__ */ jsx("code", { children: log.category.join(".") }) }),
+						/* @__PURE__ */ jsxs("td", { children: [log.message, Object.keys(log.properties).length > 0 && /* @__PURE__ */ jsxs("details", { children: [/* @__PURE__ */ jsx("summary", { children: "Properties" }), /* @__PURE__ */ jsx("pre", { children: JSON.stringify(log.properties, null, 2) })] })] })
+					]
+				}, i)) })]
+			})
+		]
+	});
+};
+function formatJson(json) {
+	try {
+		return JSON.stringify(JSON.parse(json), null, 2);
+	} catch {
+		return json;
+	}
+}
+//#endregion
+//#region src/views/traces-list.tsx
+/**
+* The traces list page of the debug dashboard.
+*/
+const TracesListPage = ({ traces, pathPrefix }) => {
+	return /* @__PURE__ */ jsxs(Layout, {
+		pathPrefix,
+		children: [
+			/* @__PURE__ */ jsxs("p", { children: [
+				"Showing ",
+				/* @__PURE__ */ jsx("strong", { children: traces.length }),
+				" ",
+				"trace",
+				traces.length !== 1 ? "s" : "",
+				"."
+			] }),
+			traces.length === 0 ? /* @__PURE__ */ jsx("p", {
+				class: "empty",
+				children: "No traces captured yet."
+			}) : /* @__PURE__ */ jsxs("table", { children: [/* @__PURE__ */ jsx("thead", { children: /* @__PURE__ */ jsxs("tr", { children: [
+				/* @__PURE__ */ jsx("th", { children: "Trace ID" }),
+				/* @__PURE__ */ jsx("th", { children: "Activity Types" }),
+				/* @__PURE__ */ jsx("th", { children: "Activities" }),
+				/* @__PURE__ */ jsx("th", { children: "Timestamp" })
+			] }) }), /* @__PURE__ */ jsx("tbody", { children: traces.map((trace$1) => /* @__PURE__ */ jsxs("tr", { children: [
+				/* @__PURE__ */ jsx("td", { children: /* @__PURE__ */ jsx("a", {
+					href: `${pathPrefix}/traces/${trace$1.traceId}`,
+					children: /* @__PURE__ */ jsx("code", { children: trace$1.traceId.slice(0, 8) })
+				}) }),
+				/* @__PURE__ */ jsxs("td", { children: [trace$1.activityTypes.map((t) => /* @__PURE__ */ jsx("span", {
+					class: "badge",
+					children: t
+				}, t)), trace$1.activityTypes.length === 0 && /* @__PURE__ */ jsx("span", {
+					class: "empty",
+					children: "none"
+				})] }),
+				/* @__PURE__ */ jsx("td", { children: trace$1.activityCount }),
+				/* @__PURE__ */ jsx("td", { children: /* @__PURE__ */ jsx("time", {
+					datetime: trace$1.timestamp,
+					children: trace$1.timestamp
+				}) })
+			] }, trace$1.traceId)) })] }),
+			/* @__PURE__ */ jsx("script", { dangerouslySetInnerHTML: { __html: `
+(function() {
+  var interval = setInterval(function() {
+    fetch(${JSON.stringify(pathPrefix).replace(/</g, "\\u003c")} + "/api/traces")
+      .then(function(r) { return r.json(); })
+      .then(function(data) {
+        var countEl = document.querySelector("strong");
+        if (countEl) {
+          var current = parseInt(countEl.textContent, 10);
+          if (data.length !== current) {
+            location.reload();
+          }
+        }
+      })
+      .catch(function() {});
+  }, 3000);
+  window.addEventListener("beforeunload", function() {
+    clearInterval(interval);
+  });
+})();
+` } })
+		]
+	});
+};
+//#endregion
+//#region src/routes.tsx
+function createDebugApp(pathPrefix, exporter, logStore, auth) {
+	const app = new Hono({ strict: false }).basePath(pathPrefix);
+	let hmacKeyPromise;
+	if (auth != null && auth.type !== "request") hmacKeyPromise = generateHmacKey();
+	if (auth != null) if (auth.type === "request") app.use("*", async (c, next) => {
+		const allowed = await auth.authenticate(c.req.raw);
+		if (!allowed) return c.text("Forbidden", 403);
+		await next();
+	});
+	else {
+		const showUsername = auth.type === "usernamePassword";
+		app.post("/login", async (c) => {
+			const body = await c.req.parseBody();
+			const password = typeof body.password === "string" ? body.password : "";
+			const username = typeof body.username === "string" ? body.username : void 0;
+			const ok = await checkAuth(auth, {
+				username,
+				password
+			});
+			if (!ok) return c.html(/* @__PURE__ */ jsx(LoginPage, {
+				pathPrefix,
+				showUsername,
+				error: "Invalid credentials."
+			}), 401);
+			const key = await hmacKeyPromise;
+			const sig = await signSession(key);
+			const secure = new URL(c.req.url).protocol === "https:";
+			return new Response(null, {
+				status: 303,
+				headers: {
+					"Location": pathPrefix + "/",
+					"Set-Cookie": `${SESSION_COOKIE_NAME}=${sig}; Path=${pathPrefix}; HttpOnly; SameSite=Strict${secure ? "; Secure" : ""}`
+				}
+			});
+		});
+		app.get("/logout", (c) => {
+			const secure = new URL(c.req.url).protocol === "https:";
+			return new Response(null, {
+				status: 303,
+				headers: {
+					"Location": pathPrefix + "/",
+					"Set-Cookie": `${SESSION_COOKIE_NAME}=; Path=${pathPrefix}; HttpOnly; SameSite=Strict${secure ? "; Secure" : ""}; Max-Age=0`
+				}
+			});
+		});
+		app.use("*", async (c, next) => {
+			const path = new URL(c.req.url).pathname;
+			const loginPath = pathPrefix + "/login";
+			const logoutPath = pathPrefix + "/logout";
+			if (path === loginPath || path === logoutPath) {
+				await next();
+				return;
+			}
+			const sessionValue = getCookie(c, SESSION_COOKIE_NAME);
+			if (sessionValue) {
+				const key = await hmacKeyPromise;
+				const valid = await verifySession(key, sessionValue);
+				if (valid) {
+					await next();
+					return;
+				}
+			}
+			return c.html(/* @__PURE__ */ jsx(LoginPage, {
+				pathPrefix,
+				showUsername
+			}), 401);
+		});
+	}
+	app.get("/api/traces", async (c) => {
+		const traces = await exporter.getRecentTraces();
+		return c.json(traces);
+	});
+	app.get("/api/logs/:traceId", async (c) => {
+		const traceId = c.req.param("traceId");
+		await logStore.flush();
+		const logs = await logStore.get(traceId);
+		return c.json(logs);
+	});
+	app.get("/traces/:traceId", async (c) => {
+		const traceId = c.req.param("traceId");
+		await logStore.flush();
+		const activities = await exporter.getActivitiesByTraceId(traceId);
+		const logs = await logStore.get(traceId);
+		return c.html(/* @__PURE__ */ jsx(TraceDetailPage, {
+			traceId,
+			activities,
+			logs,
+			pathPrefix
+		}));
+	});
+	app.get("/", async (c) => {
+		const traces = await exporter.getRecentTraces();
+		return c.html(/* @__PURE__ */ jsx(TracesListPage, {
+			traces,
+			pathPrefix
+		}));
+	});
+	return app;
+}
+//#endregion
+//#region src/mod.tsx
+/**
+* Cached auto-setup state so that repeated calls to
+* `createFederationDebugger()` without an explicit exporter reuse the same
+* global OpenTelemetry tracer provider and exporter instead of registering
+* duplicate providers and LogTape sinks.
+*/
+let _autoSetup;
+/**
+* Resets the internal auto-setup state.  This is intended **only for tests**
+* that need to exercise the auto-setup code path more than once within the
+* same process.
+*
+* @internal
+*/
+function resetAutoSetup() {
+	_autoSetup = void 0;
+}
+/**
+* Validates and normalizes the path prefix for the debug dashboard.
+*
+* The path must start with `/`, must not end with `/` (unless it is exactly
+* `"/"`), and must not contain control characters, semicolons, or commas
+* (which are unsafe in HTTP headers like `Set-Cookie` and `Location`).
+*
+* @param path The path prefix to validate.
+* @returns The normalized path prefix (trailing slash stripped).
+* @throws {TypeError} If the path is invalid.
+*/
+function validatePathPrefix(path) {
+	if (path === "" || !path.startsWith("/")) throw new TypeError(`Invalid debug dashboard path: ${JSON.stringify(path)}. The path must start with '/'.`);
+	if (/[\x00-\x1f\x7f;,]/.test(path)) throw new TypeError(`Invalid debug dashboard path: ${JSON.stringify(path)}. The path must not contain control characters, semicolons, or commas.`);
+	if (path.length > 1 && path.endsWith("/")) return path.slice(0, -1);
+	return path;
+}
+function createFederationDebugger(federation, options) {
+	const pathPrefix = validatePathPrefix(options?.path ?? "/__debug__");
+	let exporter;
+	let logKv;
+	if (options != null && "exporter" in options) {
+		exporter = options.exporter;
+		logKv = options.kv;
+	} else if (_autoSetup != null) {
+		exporter = _autoSetup.exporter;
+		logKv = _autoSetup.kv;
+	} else {
+		const kv = new MemoryKvStore();
+		logKv = kv;
+		exporter = new FedifySpanExporter(kv);
+		const tracerProvider = new BasicTracerProvider({ spanProcessors: [new SimpleSpanProcessor(exporter)] });
+		trace.setGlobalTracerProvider(tracerProvider);
+		const contextManager = new AsyncLocalStorageContextManager();
+		context.setGlobalContextManager(contextManager);
+		propagation.setGlobalPropagator(new W3CTraceContextPropagator());
+		_autoSetup = {
+			exporter,
+			kv
+		};
+	}
+	const logStore = new LogStore(logKv);
+	const sink = createLogSink(logStore);
+	if (options == null || !("exporter" in options)) {
+		const existingConfig = getConfig();
+		if (existingConfig != null) {
+			const sinks = {
+				...existingConfig.sinks,
+				__fedify_debugger__: sink
+			};
+			const loggers = existingConfig.loggers.map((l) => ({
+				...l,
+				sinks: Array.isArray(l.category) && l.category.length < 1 ? [...l.sinks ?? [], "__fedify_debugger__"] : l.sinks
+			}));
+			if (loggers.every((l) => typeof l.category === "string" || Array.isArray(l.category) && l.category.length > 0)) loggers.push({
+				category: [],
+				sinks: ["__fedify_debugger__"]
+			});
+			configureSync({
+				...existingConfig,
+				contextLocalStorage: existingConfig.contextLocalStorage ?? new AsyncLocalStorage(),
+				reset: true,
+				sinks,
+				loggers
+			});
+		} else configureSync({
+			sinks: { __fedify_debugger__: sink },
+			loggers: [{
+				category: [],
+				sinks: ["__fedify_debugger__"]
+			}],
+			contextLocalStorage: new AsyncLocalStorage()
+		});
+	}
+	const auth = options?.auth;
+	const app = createDebugApp(pathPrefix, exporter, logStore, auth);
+	const debugFetch = async (request, fetchOptions) => {
+		const url = new URL(request.url);
+		if (url.pathname === pathPrefix || url.pathname.startsWith(pathPrefix + "/")) return await app.fetch(request);
+		return await federation.fetch(request, fetchOptions);
+	};
+	const overrides = {
+		fetch: debugFetch,
+		sink
+	};
+	return new Proxy(federation, {
+		get(target, prop, receiver) {
+			if (prop in overrides) return overrides[prop];
+			const value = Reflect.get(target, prop, receiver);
+			if (typeof value === "function") return value.bind(target);
+			return value;
+		},
+		has(target, prop) {
+			if (prop in overrides) return true;
+			return Reflect.has(target, prop);
+		}
+	});
+}
+//#endregion
+export { createFederationDebugger, resetAutoSetup };