@fedify/fedify 1.7.12 → 1.7.14

package/dist/federation/retry.test.js

@@ -3,10 +3,11 @@
       import { URLPattern } from "urlpattern-polyfill";
       globalThis.addEventListener = () => {};
     
-import { AssertionError, assertEquals } from "../assert_equals-B44MxcIj.js";
-import { createExponentialBackoffPolicy } from "../retry-BiIhZWgD.js";
-import { test } from "../testing-DLyvtiiW.js";
-import { assertNotEquals } from "../assert_not_equals-C685gKx6.js";
+import "../chunk-DvTpRkcT.js";
+import { t as assertEquals, u as AssertionError } from "../assert_equals-Dy0MG_Zw.js";
+import { t as createExponentialBackoffPolicy } from "../retry-BQet39_l.js";
+import { t as test } from "../testing-qaAD4B0t.js";
+import { t as assertNotEquals } from "../assert_not_equals-C1azCAB0.js";
 
 //#region federation/retry.test.ts
 test("createExponentialBackoffPolicy()", () => {

package/dist/federation/router.test.js

@@ -3,16 +3,15 @@
       import { URLPattern } from "urlpattern-polyfill";
       globalThis.addEventListener = () => {};
     
-import { assertEquals } from "../assert_equals-B44MxcIj.js";
-import { assert } from "../assert-LOEeCUK5.js";
-import "../assert_instance_of-XtuFevV_.js";
-import { Router, RouterError } from "../router-D_aVZZUc.js";
-import { test } from "../testing-DLyvtiiW.js";
-import "../std__assert-o_r9vqm1.js";
-import { assertFalse } from "../assert_rejects-DWQ4jaf9.js";
-import "../assert_is_error-BTlryvT0.js";
-import "../assert_not_equals-C685gKx6.js";
-import { assertThrows } from "../assert_throws-YetpVSc-.js";
+import "../chunk-DvTpRkcT.js";
+import { t as assertEquals } from "../assert_equals-Dy0MG_Zw.js";
+import { t as assert } from "../assert-C-mZuSQl.js";
+import { n as RouterError, t as Router } from "../router-BuDkN4RQ.js";
+import { t as test } from "../testing-qaAD4B0t.js";
+import "../std__assert-BdP_WkD-.js";
+import { n as assertFalse } from "../assert_rejects-Bkh5lA1a.js";
+import "../assert_is_error-CIYFACrT.js";
+import { t as assertThrows } from "../assert_throws-CmpfkWEM.js";
 
 //#region federation/router.test.ts
 function setUp(options = {}) {

package/dist/federation/send.test.js

@@ -3,30 +3,29 @@
       import { URLPattern } from "urlpattern-polyfill";
       globalThis.addEventListener = () => {};
     
-import { assertEquals } from "../assert_equals-B44MxcIj.js";
-import { assert } from "../assert-LOEeCUK5.js";
-import "../assert_instance_of-XtuFevV_.js";
-import "../docloader-bgBm1Hd1.js";
-import "../url-C2xuoQD1.js";
-import "../multibase-CnLHszip.js";
-import { Activity, Application, Endpoints, Group, Person, Service } from "../vocab-DFlq4Wa6.js";
-import "../langstr-DbWheeIS.js";
-import "../lookup-DL62q3Xh.js";
-import "../type-CFuiGLz9.js";
-import "../actor-TYqJGdVq.js";
-import "../key-KVhaUM92.js";
-import { verifyRequest } from "../http-D2DkwsjA.js";
-import { doesActorOwnKey } from "../owner-81ey_76X.js";
-import { extractInboxes, sendActivity } from "../send-DdxfTHo6.js";
-import { test } from "../testing-DLyvtiiW.js";
-import "../std__assert-o_r9vqm1.js";
-import { assertFalse, assertRejects } from "../assert_rejects-DWQ4jaf9.js";
-import "../assert_is_error-BTlryvT0.js";
-import { assertNotEquals } from "../assert_not_equals-C685gKx6.js";
-import "../assert_throws-YetpVSc-.js";
-import { mockDocumentLoader } from "../docloader-09nVWLAZ.js";
-import { ed25519Multikey, ed25519PrivateKey, rsaPrivateKey2, rsaPublicKey2 } from "../keys-C4XQHW5_.js";
-import { esm_default } from "../esm-DO9PrujO.js";
+import "../chunk-DvTpRkcT.js";
+import { t as assertEquals } from "../assert_equals-Dy0MG_Zw.js";
+import { t as assert } from "../assert-C-mZuSQl.js";
+import "../docloader-sGz4vcrK.js";
+import "../url-BdNvnK9P.js";
+import "../multibase-DBcKTV2a.js";
+import { S as Person, T as Service, c as Endpoints, r as Application, t as Activity, u as Group } from "../vocab-DCHRuBGF.js";
+import "../langstr-pFHBDU4y.js";
+import "../lookup-Bq8vhIG4.js";
+import "../actor-y7shp0CR.js";
+import "../key-bMrDyA2T.js";
+import { l as verifyRequest } from "../http-BhES0Sg9.js";
+import { t as doesActorOwnKey } from "../owner-DkTRLQAV.js";
+import { n as sendActivity, t as extractInboxes } from "../send-axIyQX2p.js";
+import { t as test } from "../testing-qaAD4B0t.js";
+import "../std__assert-BdP_WkD-.js";
+import { n as assertFalse, t as assertRejects } from "../assert_rejects-Bkh5lA1a.js";
+import "../assert_is_error-CIYFACrT.js";
+import { t as assertNotEquals } from "../assert_not_equals-C1azCAB0.js";
+import "../assert_throws-CmpfkWEM.js";
+import { t as mockDocumentLoader } from "../docloader-BDSHZfTJ.js";
+import { i as rsaPrivateKey2, n as ed25519PrivateKey, s as rsaPublicKey2, t as ed25519Multikey } from "../keys-DK4k1R8e.js";
+import { t as esm_default } from "../esm-BRXvTSrx.js";
 
 //#region federation/send.test.ts
 test("extractInboxes()", () => {

package/dist/{http-D2DkwsjA.js → http-BhES0Sg9.js}

@@ -3,9 +3,9 @@
       import { URLPattern } from "urlpattern-polyfill";
       globalThis.addEventListener = () => {};
     
-import { deno_default } from "./docloader-bgBm1Hd1.js";
-import { CryptographicKey } from "./vocab-DFlq4Wa6.js";
-import { fetchKey, validateCryptoKey } from "./key-KVhaUM92.js";
+import { d as version, u as name } from "./docloader-sGz4vcrK.js";
+import { o as CryptographicKey } from "./vocab-DCHRuBGF.js";
+import { a as validateCryptoKey, n as fetchKey } from "./key-bMrDyA2T.js";
 import { getLogger } from "@logtape/logtape";
 import { SpanStatusCode, trace } from "@opentelemetry/api";
 import { ATTR_HTTP_REQUEST_HEADER, ATTR_HTTP_REQUEST_METHOD, ATTR_URL_FULL } from "@opentelemetry/semantic-conventions";
@@ -25,7 +25,7 @@ import { Item, decodeDict, encodeItem } from "structured-field-values";
 */
 async function signRequest(request, privateKey, keyId, options = {}) {
 	validateCryptoKey(privateKey, "private");
-	return await (options.tracerProvider ?? trace.getTracerProvider()).getTracer(deno_default.name, deno_default.version).startActiveSpan("http_signatures.sign", async (span) => {
+	return await (options.tracerProvider ?? trace.getTracerProvider()).getTracer(name, version).startActiveSpan("http_signatures.sign", async (span) => {
 		try {
 			const spec = options.spec ?? "draft-cavage-http-signatures-12";
 			let signed;
@@ -34,7 +34,7 @@ async function signRequest(request, privateKey, keyId, options = {}) {
 			if (span.isRecording()) {
 				span.setAttribute(ATTR_HTTP_REQUEST_METHOD, signed.method);
 				span.setAttribute(ATTR_URL_FULL, signed.url);
-				for (const [name, value] of signed.headers) span.setAttribute(ATTR_HTTP_REQUEST_HEADER(name), value);
+				for (const [name$1, value] of signed.headers) span.setAttribute(ATTR_HTTP_REQUEST_HEADER(name$1), value);
 				span.setAttribute("http_signatures.key_id", keyId.href);
 			}
 			return signed;
@@ -62,8 +62,8 @@ async function signRequestDraft(request, privateKey, keyId, span, currentTime, b
 	}
 	if (!headers.has("Date")) headers.set("Date", currentTime == null ? (/* @__PURE__ */ new Date()).toUTCString() : new Date(currentTime.toString()).toUTCString());
 	const serialized = [["(request-target)", `${request.method.toLowerCase()} ${url.pathname}`], ...headers];
-	const headerNames = serialized.map(([name]) => name);
-	const message = serialized.map(([name, value]) => `${name}: ${value.trim()}`).join("\n");
+	const headerNames = serialized.map(([name$1]) => name$1);
+	const message = serialized.map(([name$1, value]) => `${name$1}: ${value.trim()}`).join("\n");
 	const signature = await crypto.subtle.sign("RSASSA-PKCS1-v1_5", privateKey, new TextEncoder().encode(message));
 	const sigHeader = `keyId="${keyId.href}",algorithm="rsa-sha256",headers="${headerNames.join(" ")}",signature="${encodeBase64(signature)}"`;
 	headers.set("Signature", sigHeader);
@@ -120,9 +120,7 @@ function createRfc9421SignatureBase(request, components, parameters) {
 * @returns The formatted signature string.
 */
 function formatRfc9421Signature(signature, components, parameters) {
-	const signatureInputValue = `sig1=("${components.join("\" \"")}");${parameters}`;
-	const signatureValue = `sig1=:${encodeBase64(signature)}:`;
-	return [signatureInputValue, signatureValue];
+	return [`sig1=("${components.join("\" \"")}");${parameters}`, `sig1=:${encodeBase64(signature)}:`];
 }
 /**
 * Parse RFC 9421 Signature-Input header.
@@ -252,11 +250,11 @@ const supportedHashAlgorithms = {
 *          could not be verified.
 */
 async function verifyRequest(request, options = {}) {
-	return await (options.tracerProvider ?? trace.getTracerProvider()).getTracer(deno_default.name, deno_default.version).startActiveSpan("http_signatures.verify", async (span) => {
+	return await (options.tracerProvider ?? trace.getTracerProvider()).getTracer(name, version).startActiveSpan("http_signatures.verify", async (span) => {
 		if (span.isRecording()) {
 			span.setAttribute(ATTR_HTTP_REQUEST_METHOD, request.method);
 			span.setAttribute(ATTR_URL_FULL, request.url);
-			for (const [name, value] of request.headers) span.setAttribute(ATTR_HTTP_REQUEST_HEADER(name), value);
+			for (const [name$1, value] of request.headers) span.setAttribute(ATTR_HTTP_REQUEST_HEADER(name$1), value);
 		}
 		try {
 			let spec = options.spec;
@@ -439,7 +437,7 @@ async function verifyRequestDraft(request, span, { documentLoader, contextLoader
 		logger.debug("Failed to verify; required headers missing in the Signature header: {headers}.", { headers });
 		return null;
 	}
-	const message = headerNames.map((name) => `${name}: ` + (name === "(request-target)" ? `${request.method.toLowerCase()} ${new URL(request.url).pathname}` : name === "(created)" ? sigValues.created ?? "" : name === "(expires)" ? sigValues.expires ?? "" : name === "host" ? request.headers.get("host") ?? new URL(request.url).host : request.headers.get(name))).join("\n");
+	const message = headerNames.map((name$1) => `${name$1}: ` + (name$1 === "(request-target)" ? `${request.method.toLowerCase()} ${new URL(request.url).pathname}` : name$1 === "(created)" ? sigValues.created ?? "" : name$1 === "(expires)" ? sigValues.expires ?? "" : name$1 === "host" ? request.headers.get("host") ?? new URL(request.url).host : request.headers.get(name$1))).join("\n");
 	const sig = decodeBase64(signature);
 	span?.setAttribute("http_signatures.signature", encodeHex(sig));
 	if (!await crypto.subtle.verify("RSASSA-PKCS1-v1_5", key.publicKey, sig, new TextEncoder().encode(message))) {
@@ -606,8 +604,7 @@ async function verifyRequestRfc9421(request, span, { documentLoader, contextLoad
 				logger.debug("Failed to verify; Content-Digest header required but not found.", { components: sigInput.components });
 				continue;
 			}
-			const body = await request.arrayBuffer();
-			if (!await verifyRfc9421ContentDigest(contentDigestHeader, body)) {
+			if (!await verifyRfc9421ContentDigest(contentDigestHeader, await request.arrayBuffer())) {
 				logger.debug("Failed to verify; Content-Digest verification failed.", { contentDigest: contentDigestHeader });
 				continue;
 			}
@@ -729,13 +726,11 @@ async function doubleKnock(request, identity, options = {}) {
 	});
 	log?.(signedRequest);
 	let response = await fetch(signedRequest, { redirect: "manual" });
-	if (response.status >= 300 && response.status < 400 && response.headers.has("Location")) {
-		const location = response.headers.get("Location");
-		return doubleKnock(createRedirectRequest(request, location, body), identity, {
-			...options,
-			body
-		});
-	} else if (response.status === 400 || response.status === 401 || response.status > 401) {
+	if (response.status >= 300 && response.status < 400 && response.headers.has("Location")) return doubleKnock(createRedirectRequest(request, response.headers.get("Location"), body), identity, {
+		...options,
+		body
+	});
+	else if (response.status === 400 || response.status === 401 || response.status > 401) {
 		const spec = firstTrySpec === "draft-cavage-http-signatures-12" ? "rfc9421" : "draft-cavage-http-signatures-12";
 		getLogger([
 			"fedify",
@@ -754,13 +749,11 @@ async function doubleKnock(request, identity, options = {}) {
 		});
 		log?.(signedRequest);
 		response = await fetch(signedRequest, { redirect: "manual" });
-		if (response.status >= 300 && response.status < 400 && response.headers.has("Location")) {
-			const location = response.headers.get("Location");
-			return doubleKnock(createRedirectRequest(request, location, body), identity, {
-				...options,
-				body
-			});
-		} else if (response.status !== 400 && response.status !== 401) await specDeterminer?.rememberSpec(origin, spec);
+		if (response.status >= 300 && response.status < 400 && response.headers.has("Location")) return doubleKnock(createRedirectRequest(request, response.headers.get("Location"), body), identity, {
+			...options,
+			body
+		});
+		else if (response.status !== 400 && response.status !== 401) await specDeterminer?.rememberSpec(origin, spec);
 	} else await specDeterminer?.rememberSpec(origin, firstTrySpec);
 	return response;
 }
@@ -793,4 +786,4 @@ function timingSafeEqual(a, b) {
 }
 
 //#endregion
-export { createRfc9421SignatureBase, doubleKnock, formatRfc9421Signature, formatRfc9421SignatureParameters, parseRfc9421Signature, parseRfc9421SignatureInput, signRequest, timingSafeEqual, verifyRequest };
+export { parseRfc9421Signature as a, timingSafeEqual as c, formatRfc9421SignatureParameters as i, verifyRequest as l, doubleKnock as n, parseRfc9421SignatureInput as o, formatRfc9421Signature as r, signRequest as s, createRfc9421SignatureBase as t };

package/dist/{http-DMTrO3Ye.d.ts → http-DFZRNfDP.d.ts}

@@ -1,7 +1,7 @@
 import { Temporal } from "@js-temporal/polyfill";
 import { URLPattern } from "urlpattern-polyfill";
-import { DocumentLoader } from "./docloader-Q42SMRIB.js";
-import { CryptographicKey, Multikey } from "./vocab-CzEfWQk2.js";
+import { n as DocumentLoader } from "./docloader-D_MGP37Q.js";
+import { B as Multikey, m as CryptographicKey } from "./vocab-DoBcp8ow.js";
 import { TracerProvider } from "@opentelemetry/api";
 
 //#region sig/key.d.ts
@@ -252,4 +252,4 @@ interface HttpMessageSignaturesSpecDeterminer {
  * @since 1.6.0
  */
 //#endregion
-export { FetchKeyOptions, FetchKeyResult, HttpMessageSignaturesSpec, HttpMessageSignaturesSpecDeterminer, KeyCache, SignRequestOptions, VerifyRequestOptions, exportJwk, fetchKey, generateCryptoKeyPair, importJwk, signRequest, verifyRequest };
+export { signRequest as a, FetchKeyResult as c, fetchKey as d, generateCryptoKeyPair as f, VerifyRequestOptions as i, KeyCache as l, HttpMessageSignaturesSpecDeterminer as n, verifyRequest as o, importJwk as p, SignRequestOptions as r, FetchKeyOptions as s, HttpMessageSignaturesSpec as t, exportJwk as u };

package/dist/{http-vqMAvOVs.js → http-DRePVWfE.js}

@@ -2,9 +2,9 @@
       import { Temporal } from "@js-temporal/polyfill";
       import { URLPattern } from "urlpattern-polyfill";
     
-import { deno_default } from "./docloader-DJxET2fN.js";
-import { CryptographicKey } from "./actor-GZRoTRqg.js";
-import { fetchKey, validateCryptoKey } from "./key-DmqJj57e.js";
+import { d as name, f as version } from "./docloader-BU25UQLB.js";
+import { y as CryptographicKey } from "./actor-OYVgkiZG.js";
+import { a as validateCryptoKey, n as fetchKey } from "./key-D2HZrCxh.js";
 import { getLogger } from "@logtape/logtape";
 import { SpanStatusCode, trace } from "@opentelemetry/api";
 import { decodeBase64, encodeBase64 } from "byte-encodings/base64";
@@ -24,7 +24,7 @@ import { Item, decodeDict, encodeItem } from "structured-field-values";
 */
 async function signRequest(request, privateKey, keyId, options = {}) {
 	validateCryptoKey(privateKey, "private");
-	return await (options.tracerProvider ?? trace.getTracerProvider()).getTracer(deno_default.name, deno_default.version).startActiveSpan("http_signatures.sign", async (span) => {
+	return await (options.tracerProvider ?? trace.getTracerProvider()).getTracer(name, version).startActiveSpan("http_signatures.sign", async (span) => {
 		try {
 			const spec = options.spec ?? "draft-cavage-http-signatures-12";
 			let signed;
@@ -33,7 +33,7 @@ async function signRequest(request, privateKey, keyId, options = {}) {
 			if (span.isRecording()) {
 				span.setAttribute(ATTR_HTTP_REQUEST_METHOD, signed.method);
 				span.setAttribute(ATTR_URL_FULL, signed.url);
-				for (const [name, value] of signed.headers) span.setAttribute(ATTR_HTTP_REQUEST_HEADER(name), value);
+				for (const [name$1, value] of signed.headers) span.setAttribute(ATTR_HTTP_REQUEST_HEADER(name$1), value);
 				span.setAttribute("http_signatures.key_id", keyId.href);
 			}
 			return signed;
@@ -61,8 +61,8 @@ async function signRequestDraft(request, privateKey, keyId, span, currentTime, b
 	}
 	if (!headers.has("Date")) headers.set("Date", currentTime == null ? (/* @__PURE__ */ new Date()).toUTCString() : new Date(currentTime.toString()).toUTCString());
 	const serialized = [["(request-target)", `${request.method.toLowerCase()} ${url.pathname}`], ...headers];
-	const headerNames = serialized.map(([name]) => name);
-	const message = serialized.map(([name, value]) => `${name}: ${value.trim()}`).join("\n");
+	const headerNames = serialized.map(([name$1]) => name$1);
+	const message = serialized.map(([name$1, value]) => `${name$1}: ${value.trim()}`).join("\n");
 	const signature = await crypto.subtle.sign("RSASSA-PKCS1-v1_5", privateKey, new TextEncoder().encode(message));
 	const sigHeader = `keyId="${keyId.href}",algorithm="rsa-sha256",headers="${headerNames.join(" ")}",signature="${encodeBase64(signature)}"`;
 	headers.set("Signature", sigHeader);
@@ -119,9 +119,7 @@ function createRfc9421SignatureBase(request, components, parameters) {
 * @returns The formatted signature string.
 */
 function formatRfc9421Signature(signature, components, parameters) {
-	const signatureInputValue = `sig1=("${components.join("\" \"")}");${parameters}`;
-	const signatureValue = `sig1=:${encodeBase64(signature)}:`;
-	return [signatureInputValue, signatureValue];
+	return [`sig1=("${components.join("\" \"")}");${parameters}`, `sig1=:${encodeBase64(signature)}:`];
 }
 /**
 * Parse RFC 9421 Signature-Input header.
@@ -251,11 +249,11 @@ const supportedHashAlgorithms = {
 *          could not be verified.
 */
 async function verifyRequest(request, options = {}) {
-	return await (options.tracerProvider ?? trace.getTracerProvider()).getTracer(deno_default.name, deno_default.version).startActiveSpan("http_signatures.verify", async (span) => {
+	return await (options.tracerProvider ?? trace.getTracerProvider()).getTracer(name, version).startActiveSpan("http_signatures.verify", async (span) => {
 		if (span.isRecording()) {
 			span.setAttribute(ATTR_HTTP_REQUEST_METHOD, request.method);
 			span.setAttribute(ATTR_URL_FULL, request.url);
-			for (const [name, value] of request.headers) span.setAttribute(ATTR_HTTP_REQUEST_HEADER(name), value);
+			for (const [name$1, value] of request.headers) span.setAttribute(ATTR_HTTP_REQUEST_HEADER(name$1), value);
 		}
 		try {
 			let spec = options.spec;
@@ -438,7 +436,7 @@ async function verifyRequestDraft(request, span, { documentLoader, contextLoader
 		logger.debug("Failed to verify; required headers missing in the Signature header: {headers}.", { headers });
 		return null;
 	}
-	const message = headerNames.map((name) => `${name}: ` + (name === "(request-target)" ? `${request.method.toLowerCase()} ${new URL(request.url).pathname}` : name === "(created)" ? sigValues.created ?? "" : name === "(expires)" ? sigValues.expires ?? "" : name === "host" ? request.headers.get("host") ?? new URL(request.url).host : request.headers.get(name))).join("\n");
+	const message = headerNames.map((name$1) => `${name$1}: ` + (name$1 === "(request-target)" ? `${request.method.toLowerCase()} ${new URL(request.url).pathname}` : name$1 === "(created)" ? sigValues.created ?? "" : name$1 === "(expires)" ? sigValues.expires ?? "" : name$1 === "host" ? request.headers.get("host") ?? new URL(request.url).host : request.headers.get(name$1))).join("\n");
 	const sig = decodeBase64(signature);
 	span?.setAttribute("http_signatures.signature", encodeHex(sig));
 	if (!await crypto.subtle.verify("RSASSA-PKCS1-v1_5", key.publicKey, sig, new TextEncoder().encode(message))) {
@@ -605,8 +603,7 @@ async function verifyRequestRfc9421(request, span, { documentLoader, contextLoad
 				logger.debug("Failed to verify; Content-Digest header required but not found.", { components: sigInput.components });
 				continue;
 			}
-			const body = await request.arrayBuffer();
-			if (!await verifyRfc9421ContentDigest(contentDigestHeader, body)) {
+			if (!await verifyRfc9421ContentDigest(contentDigestHeader, await request.arrayBuffer())) {
 				logger.debug("Failed to verify; Content-Digest verification failed.", { contentDigest: contentDigestHeader });
 				continue;
 			}
@@ -728,13 +725,11 @@ async function doubleKnock(request, identity, options = {}) {
 	});
 	log?.(signedRequest);
 	let response = await fetch(signedRequest, { redirect: "manual" });
-	if (response.status >= 300 && response.status < 400 && response.headers.has("Location")) {
-		const location = response.headers.get("Location");
-		return doubleKnock(createRedirectRequest(request, location, body), identity, {
-			...options,
-			body
-		});
-	} else if (response.status === 400 || response.status === 401 || response.status > 401) {
+	if (response.status >= 300 && response.status < 400 && response.headers.has("Location")) return doubleKnock(createRedirectRequest(request, response.headers.get("Location"), body), identity, {
+		...options,
+		body
+	});
+	else if (response.status === 400 || response.status === 401 || response.status > 401) {
 		const spec = firstTrySpec === "draft-cavage-http-signatures-12" ? "rfc9421" : "draft-cavage-http-signatures-12";
 		getLogger([
 			"fedify",
@@ -753,13 +748,11 @@ async function doubleKnock(request, identity, options = {}) {
 		});
 		log?.(signedRequest);
 		response = await fetch(signedRequest, { redirect: "manual" });
-		if (response.status >= 300 && response.status < 400 && response.headers.has("Location")) {
-			const location = response.headers.get("Location");
-			return doubleKnock(createRedirectRequest(request, location, body), identity, {
-				...options,
-				body
-			});
-		} else if (response.status !== 400 && response.status !== 401) await specDeterminer?.rememberSpec(origin, spec);
+		if (response.status >= 300 && response.status < 400 && response.headers.has("Location")) return doubleKnock(createRedirectRequest(request, response.headers.get("Location"), body), identity, {
+			...options,
+			body
+		});
+		else if (response.status !== 400 && response.status !== 401) await specDeterminer?.rememberSpec(origin, spec);
 	} else await specDeterminer?.rememberSpec(origin, firstTrySpec);
 	return response;
 }
@@ -792,4 +785,4 @@ function timingSafeEqual(a, b) {
 }
 
 //#endregion
-export { doubleKnock, signRequest, verifyRequest };
+export { signRequest as n, verifyRequest as r, doubleKnock as t };

package/dist/{inbox-DAAZZl2k.js → inbox-Z_QlSGYN.js}

@@ -3,9 +3,9 @@
       import { URLPattern } from "urlpattern-polyfill";
       globalThis.addEventListener = () => {};
     
-import { deno_default } from "./docloader-bgBm1Hd1.js";
-import { Activity } from "./vocab-DFlq4Wa6.js";
-import { getTypeId } from "./type-CFuiGLz9.js";
+import { d as version, u as name } from "./docloader-sGz4vcrK.js";
+import { t as Activity } from "./vocab-DCHRuBGF.js";
+import { t as getTypeId } from "./type-DFsmi-p1.js";
 import { getLogger } from "@logtape/logtape";
 import { SpanKind, SpanStatusCode, context, propagation, trace } from "@opentelemetry/api";
 
@@ -112,7 +112,7 @@ async function routeActivity({ context: ctx, json, activity, recipient, inboxLis
 		return "enqueued";
 	}
 	tracerProvider = tracerProvider ?? trace.getTracerProvider();
-	return await tracerProvider.getTracer(deno_default.name, deno_default.version).startActiveSpan("activitypub.dispatch_inbox_listener", { kind: SpanKind.INTERNAL }, async (span$1) => {
+	return await tracerProvider.getTracer(name, version).startActiveSpan("activitypub.dispatch_inbox_listener", { kind: SpanKind.INTERNAL }, async (span$1) => {
 		const dispatched = inboxListeners?.dispatchWithClass(activity);
 		if (dispatched == null) {
 			logger.error("Unsupported activity type:\n{activity}", {
@@ -166,4 +166,4 @@ async function routeActivity({ context: ctx, json, activity, recipient, inboxLis
 }
 
 //#endregion
-export { InboxListenerSet, routeActivity };
+export { routeActivity as n, InboxListenerSet as t };

package/dist/key-CJuc1GE1.js

@@ -0,0 +1,10 @@
+
+      import { Temporal } from "@js-temporal/polyfill";
+      import { URLPattern } from "urlpattern-polyfill";
+    
+import "./docloader-BU25UQLB.js";
+import "./actor-OYVgkiZG.js";
+import "./lookup-4uc2jh52.js";
+import { a as validateCryptoKey, i as importJwk, n as fetchKey, r as generateCryptoKeyPair, t as exportJwk } from "./key-D2HZrCxh.js";
+
+export { validateCryptoKey };

package/dist/{key-DmqJj57e.js → key-D2HZrCxh.js}

@@ -2,8 +2,8 @@
       import { Temporal } from "@js-temporal/polyfill";
       import { URLPattern } from "urlpattern-polyfill";
     
-import { deno_default, getDocumentLoader } from "./docloader-DJxET2fN.js";
-import { CryptographicKey, Object as Object$1, isActor } from "./actor-GZRoTRqg.js";
+import { d as name, f as version, i as getDocumentLoader } from "./docloader-BU25UQLB.js";
+import { i as isActor, q as Object$1, y as CryptographicKey } from "./actor-OYVgkiZG.js";
 import { getLogger } from "@logtape/logtape";
 import { SpanKind, SpanStatusCode, trace } from "@opentelemetry/api";
 
@@ -100,7 +100,7 @@ async function importJwk(jwk, type) {
 * @since 1.3.0
 */
 function fetchKey(keyId, cls, options = {}) {
-	const tracer = (options.tracerProvider ?? trace.getTracerProvider()).getTracer(deno_default.name, deno_default.version);
+	const tracer = (options.tracerProvider ?? trace.getTracerProvider()).getTracer(name, version);
 	keyId = typeof keyId === "string" ? new URL(keyId) : keyId;
 	return tracer.startActiveSpan("activitypub.fetch_key", {
 		kind: SpanKind.CLIENT,
@@ -254,4 +254,4 @@ async function fetchKeyInternal(keyId, cls, { documentLoader, contextLoader, key
 }
 
 //#endregion
-export { exportJwk, fetchKey, generateCryptoKeyPair, importJwk, validateCryptoKey };
+export { validateCryptoKey as a, importJwk as i, fetchKey as n, generateCryptoKeyPair as r, exportJwk as t };

package/dist/{key-KVhaUM92.js → key-bMrDyA2T.js}

@@ -3,9 +3,9 @@
       import { URLPattern } from "urlpattern-polyfill";
       globalThis.addEventListener = () => {};
     
-import { deno_default, getDocumentLoader } from "./docloader-bgBm1Hd1.js";
-import { CryptographicKey, Object as Object$1 } from "./vocab-DFlq4Wa6.js";
-import { isActor } from "./actor-TYqJGdVq.js";
+import { d as version, i as getDocumentLoader, u as name } from "./docloader-sGz4vcrK.js";
+import { _ as Object$1, o as CryptographicKey } from "./vocab-DCHRuBGF.js";
+import { i as isActor } from "./actor-y7shp0CR.js";
 import { getLogger } from "@logtape/logtape";
 import { SpanKind, SpanStatusCode, trace } from "@opentelemetry/api";
 
@@ -102,7 +102,7 @@ async function importJwk(jwk, type) {
 * @since 1.3.0
 */
 function fetchKey(keyId, cls, options = {}) {
-	const tracer = (options.tracerProvider ?? trace.getTracerProvider()).getTracer(deno_default.name, deno_default.version);
+	const tracer = (options.tracerProvider ?? trace.getTracerProvider()).getTracer(name, version);
 	keyId = typeof keyId === "string" ? new URL(keyId) : keyId;
 	return tracer.startActiveSpan("activitypub.fetch_key", {
 		kind: SpanKind.CLIENT,
@@ -256,4 +256,4 @@ async function fetchKeyInternal(keyId, cls, { documentLoader, contextLoader, key
 }
 
 //#endregion
-export { exportJwk, fetchKey, generateCryptoKeyPair, importJwk, validateCryptoKey };
+export { validateCryptoKey as a, importJwk as i, fetchKey as n, generateCryptoKeyPair as r, exportJwk as t };

package/dist/key-eP5Yk7hl.js

@@ -0,0 +1,16 @@
+
+      import { Temporal } from "@js-temporal/polyfill";
+      import { URLPattern } from "urlpattern-polyfill";
+      globalThis.addEventListener = () => {};
+    
+import "./chunk-DvTpRkcT.js";
+import "./docloader-sGz4vcrK.js";
+import "./url-BdNvnK9P.js";
+import "./multibase-DBcKTV2a.js";
+import "./vocab-DCHRuBGF.js";
+import "./langstr-pFHBDU4y.js";
+import "./lookup-Bq8vhIG4.js";
+import "./actor-y7shp0CR.js";
+import { a as validateCryptoKey, i as importJwk, n as fetchKey, r as generateCryptoKeyPair, t as exportJwk } from "./key-bMrDyA2T.js";
+
+export { validateCryptoKey };

package/dist/{keycache-C1pEuRyQ.js → keycache-B5Rr8Lbc.js}

@@ -3,7 +3,7 @@
       import { URLPattern } from "urlpattern-polyfill";
       globalThis.addEventListener = () => {};
     
-import { CryptographicKey, Multikey } from "./vocab-DFlq4Wa6.js";
+import { h as Multikey, o as CryptographicKey } from "./vocab-DCHRuBGF.js";
 
 //#region federation/keycache.ts
 var KvKeyCache = class {
@@ -45,4 +45,4 @@ var KvKeyCache = class {
 };
 
 //#endregion
-export { KvKeyCache };
+export { KvKeyCache as t };

package/dist/{keys-C4XQHW5_.js → keys-DK4k1R8e.js}

@@ -3,7 +3,7 @@
       import { URLPattern } from "urlpattern-polyfill";
       globalThis.addEventListener = () => {};
     
-import { CryptographicKey, Multikey, importSpki } from "./vocab-DFlq4Wa6.js";
+import { P as importSpki, h as Multikey, o as CryptographicKey } from "./vocab-DCHRuBGF.js";
 
 //#region testing/keys.ts
 const rsaPublicKey1 = new CryptographicKey({
@@ -120,4 +120,4 @@ const ed25519Multikey = new Multikey({
 });
 
 //#endregion
-export { ed25519Multikey, ed25519PrivateKey, ed25519PublicKey, rsaPrivateKey2, rsaPrivateKey3, rsaPublicKey1, rsaPublicKey2, rsaPublicKey3, rsaPublicKey5 };
+export { rsaPrivateKey3 as a, rsaPublicKey3 as c, rsaPrivateKey2 as i, rsaPublicKey5 as l, ed25519PrivateKey as n, rsaPublicKey1 as o, ed25519PublicKey as r, rsaPublicKey2 as s, ed25519Multikey as t };

package/dist/{kv-DRaeSXco.d.ts → kv-CKqSUxHd.d.ts}

@@ -67,4 +67,4 @@ declare class MemoryKvStore implements KvStore {
   delete(key: KvKey): Promise<void>;
 }
 //#endregion
-export { KvKey, KvStore, KvStoreSetOptions, MemoryKvStore };
+export { MemoryKvStore as i, KvStore as n, KvStoreSetOptions as r, KvKey as t };

package/dist/{kv-BMY6Qf_A.js → kv-QeuZ51go.js}

@@ -49,4 +49,4 @@ var MemoryKvStore = class {
 };
 
 //#endregion
-export { MemoryKvStore };
+export { MemoryKvStore as t };

package/dist/{langstr-DbWheeIS.js → langstr-pFHBDU4y.js}

@@ -30,4 +30,4 @@ var LanguageString = class extends String {
 };
 
 //#endregion
-export { LanguageString };
+export { LanguageString as t };

package/dist/{ld-DzlJ_IpT.js → ld--auFISy7.js}

@@ -3,10 +3,10 @@
       import { URLPattern } from "urlpattern-polyfill";
       globalThis.addEventListener = () => {};
     
-import { deno_default, getDocumentLoader } from "./docloader-bgBm1Hd1.js";
-import { Activity, CryptographicKey, Object as Object$1 } from "./vocab-DFlq4Wa6.js";
-import { getTypeId } from "./type-CFuiGLz9.js";
-import { fetchKey, validateCryptoKey } from "./key-KVhaUM92.js";
+import { d as version, i as getDocumentLoader, u as name } from "./docloader-sGz4vcrK.js";
+import { _ as Object$1, o as CryptographicKey, t as Activity } from "./vocab-DCHRuBGF.js";
+import { t as getTypeId } from "./type-DFsmi-p1.js";
+import { a as validateCryptoKey, n as fetchKey } from "./key-bMrDyA2T.js";
 import { getLogger } from "@logtape/logtape";
 import { SpanStatusCode, trace } from "@opentelemetry/api";
 import { decodeBase64, encodeBase64 } from "byte-encodings/base64";
@@ -54,9 +54,7 @@ async function createSignature(jsonLd, privateKey, keyId, { contextLoader, creat
 		creator: keyId.href,
 		created: created?.toString() ?? (/* @__PURE__ */ new Date()).toISOString()
 	};
-	const optionsHash = await hashJsonLd(options, contextLoader);
-	const docHash = await hashJsonLd(jsonLd, contextLoader);
-	const message = optionsHash + docHash;
+	const message = await hashJsonLd(options, contextLoader) + await hashJsonLd(jsonLd, contextLoader);
 	const messageBytes = new TextEncoder().encode(message);
 	const signature = await crypto.subtle.sign("RSASSA-PKCS1-v1_5", privateKey, messageBytes);
 	return {
@@ -79,7 +77,7 @@ async function createSignature(jsonLd, privateKey, keyId, { contextLoader, creat
 * @since 1.0.0
 */
 async function signJsonLd(jsonLd, privateKey, keyId, options) {
-	return await (options.tracerProvider ?? trace.getTracerProvider()).getTracer(deno_default.name, deno_default.version).startActiveSpan("ld_signatures.sign", { attributes: { "ld_signatures.key_id": keyId.href } }, async (span) => {
+	return await (options.tracerProvider ?? trace.getTracerProvider()).getTracer(name, version).startActiveSpan("ld_signatures.sign", { attributes: { "ld_signatures.key_id": keyId.href } }, async (span) => {
 		try {
 			const signature = await createSignature(jsonLd, privateKey, keyId, options);
 			if (span.isRecording()) {
@@ -214,7 +212,7 @@ async function verifySignature(jsonLd, options = {}) {
 * @returns `true` if the document is authentic; `false` otherwise.
 */
 async function verifyJsonLd(jsonLd, options = {}) {
-	return await (options.tracerProvider ?? trace.getTracerProvider()).getTracer(deno_default.name, deno_default.version).startActiveSpan("ld_signatures.verify", async (span) => {
+	return await (options.tracerProvider ?? trace.getTracerProvider()).getTracer(name, version).startActiveSpan("ld_signatures.verify", async (span) => {
 		try {
 			const object = await Object$1.fromJsonLd(jsonLd, options);
 			if (object.id != null) span.setAttribute("activitypub.object.id", object.id.href);
@@ -255,9 +253,8 @@ async function hashJsonLd(jsonLd, contextLoader) {
 		documentLoader: contextLoader ?? getDocumentLoader()
 	});
 	const encoder = new TextEncoder();
-	const hash = await crypto.subtle.digest("SHA-256", encoder.encode(canon));
-	return encodeHex(hash);
+	return encodeHex(await crypto.subtle.digest("SHA-256", encoder.encode(canon)));
 }
 
 //#endregion
-export { attachSignature, createSignature, detachSignature, hasSignature, signJsonLd, verifyJsonLd, verifySignature };
+export { signJsonLd as a, hasSignature as i, createSignature as n, verifyJsonLd as o, detachSignature as r, verifySignature as s, attachSignature as t };

package/dist/{lookup-CSngxuWm.js → lookup-4uc2jh52.js}

@@ -2,7 +2,7 @@
       import { Temporal } from "@js-temporal/polyfill";
       import { URLPattern } from "urlpattern-polyfill";
     
-import { UrlError, deno_default, getUserAgent, validatePublicUrl } from "./docloader-DJxET2fN.js";
+import { d as name, f as version, l as UrlError, o as getUserAgent, u as validatePublicUrl } from "./docloader-BU25UQLB.js";
 import { getLogger } from "@logtape/logtape";
 import { SpanKind, SpanStatusCode, trace } from "@opentelemetry/api";
 
@@ -21,7 +21,7 @@ const MAX_REDIRECTION = 5;
 * @since 0.2.0
 */
 async function lookupWebFinger(resource, options = {}) {
-	return await (options.tracerProvider ?? trace.getTracerProvider()).getTracer(deno_default.name, deno_default.version).startActiveSpan("webfinger.lookup", {
+	return await (options.tracerProvider ?? trace.getTracerProvider()).getTracer(name, version).startActiveSpan("webfinger.lookup", {
 		kind: SpanKind.CLIENT,
 		attributes: {
 			"webfinger.resource": resource.toString(),
@@ -124,4 +124,4 @@ async function lookupWebFingerInternal(resource, options = {}) {
 }
 
 //#endregion
-export { lookupWebFinger };
+export { lookupWebFinger as t };