@fedify/fedify 1.9.0-pr.428.1587 → 1.9.0-pr.431.1597

package/dist/middleware-COHAbwGs.js

@@ -0,0 +1,17 @@
+
+          import { Temporal } from "@js-temporal/polyfill";
+          import { URLPattern } from "urlpattern-polyfill";
+        
+import "./transformers-BFT6d7J5.js";
+import "./docloader-BKf9RWX4.js";
+import "./actor-Detmisdi.js";
+import { ContextImpl, FederationImpl, InboxContextImpl, KvSpecDeterminer, createFederation } from "./middleware-T_y4Bnvw.js";
+import "./lookup-D_-F1hLw.js";
+import "./key-BCWvPOkD.js";
+import "./http-CwlUFNG4.js";
+import "./proof-BuPk23Er.js";
+import "./types-Q17QxOOC.js";
+import "./authdocloader-5UJ5Gme-.js";
+import "./vocab-BUc_4ZsW.js";
+
+export { FederationImpl };

package/dist/{middleware-dku9cdga.js → middleware-CuTcPjfP.js}

@@ -3,22 +3,22 @@
       import { URLPattern } from "urlpattern-polyfill";
       globalThis.addEventListener = () => {};
     
-import { Activity, Collection, CollectionPage, CryptographicKey, Link, Multikey, Object as Object$1, OrderedCollection, OrderedCollectionPage, deno_default, getDocumentLoader, getTypeId, kvCache, lookupWebFinger } from "./type-CKxYS9Sh.js";
-import { getNodeInfo } from "./client-PZOCn5-Y.js";
-import { RouterError, lookupObject, traverseCollection } from "./lookup-Bj_u3eYM.js";
+import { Activity, Collection, CollectionPage, CryptographicKey, Link, Multikey, Object as Object$1, OrderedCollection, OrderedCollectionPage, deno_default, getDocumentLoader, getTypeId, kvCache, lookupWebFinger } from "./type-DF9yoIpt.js";
+import { getNodeInfo } from "./client-DgRjF0ha.js";
+import { RouterError, lookupObject, traverseCollection } from "./lookup-DdxOle8f.js";
 import { nodeInfoToJson } from "./types-BIgY6c-l.js";
-import { exportJwk, importJwk, validateCryptoKey } from "./key-LefgNv9I.js";
-import { verifyRequest } from "./http-CFiUVZfi.js";
-import { getAuthenticatedDocumentLoader } from "./authdocloader-C1iaSe2N.js";
-import { detachSignature, hasSignature, signJsonLd, verifyJsonLd } from "./ld-Dgthw_5_.js";
-import { doesActorOwnKey, getKeyOwner } from "./owner-QgsLL0FU.js";
-import { signObject, verifyObject } from "./proof-B4xoN40A.js";
-import { routeActivity } from "./inbox-VMSM478g.js";
-import { FederationBuilderImpl } from "./builder-DLD2OVGE.js";
+import { exportJwk, importJwk, validateCryptoKey } from "./key-Jrnr66vx.js";
+import { verifyRequest } from "./http-C5XLveZw.js";
+import { getAuthenticatedDocumentLoader } from "./authdocloader-ZlLoXSxM.js";
+import { detachSignature, hasSignature, signJsonLd, verifyJsonLd } from "./ld-BSE4jnyK.js";
+import { doesActorOwnKey, getKeyOwner } from "./owner-DJtc8evi.js";
+import { signObject, verifyObject } from "./proof-9OMp0o4n.js";
+import { routeActivity } from "./inbox-sVXiVBbT.js";
+import { FederationBuilderImpl } from "./builder-BbKfqPmR.js";
 import { buildCollectionSynchronizationHeader } from "./collection-CSzG2j1P.js";
-import { KvKeyCache } from "./keycache-9EJyq0-_.js";
+import { KvKeyCache } from "./keycache-ogQInQck.js";
 import { createExponentialBackoffPolicy } from "./retry-D4GJ670a.js";
-import { extractInboxes, sendActivity } from "./send-ByaKiMsV.js";
+import { extractInboxes, sendActivity } from "./send-cXerEJm9.js";
 import { getLogger, withContext } from "@logtape/logtape";
 import { SpanKind, SpanStatusCode, context, propagation, trace } from "@opentelemetry/api";
 import { ATTR_HTTP_REQUEST_HEADER, ATTR_HTTP_REQUEST_METHOD, ATTR_HTTP_RESPONSE_HEADER, ATTR_HTTP_RESPONSE_STATUS_CODE, ATTR_URL_FULL } from "@opentelemetry/semantic-conventions";

package/dist/middleware-Dt7C7qpw.js

@@ -0,0 +1,26 @@
+
+      import { Temporal } from "@js-temporal/polyfill";
+      import { URLPattern } from "urlpattern-polyfill";
+      globalThis.addEventListener = () => {};
+    
+import "./type-DF9yoIpt.js";
+import { ContextImpl, FederationImpl, InboxContextImpl, KvSpecDeterminer, createFederation } from "./middleware-CuTcPjfP.js";
+import "./semver-dArNLkR9.js";
+import "./client-DgRjF0ha.js";
+import "./lookup-DdxOle8f.js";
+import "./types-BIgY6c-l.js";
+import "./actor-Dw7av4Zk.js";
+import "./key-Jrnr66vx.js";
+import "./http-C5XLveZw.js";
+import "./authdocloader-ZlLoXSxM.js";
+import "./ld-BSE4jnyK.js";
+import "./owner-DJtc8evi.js";
+import "./proof-9OMp0o4n.js";
+import "./inbox-sVXiVBbT.js";
+import "./builder-BbKfqPmR.js";
+import "./collection-CSzG2j1P.js";
+import "./keycache-ogQInQck.js";
+import "./retry-D4GJ670a.js";
+import "./send-cXerEJm9.js";
+
+export { FederationImpl };

package/dist/{middleware-CqVZVdeM.js → middleware-T_y4Bnvw.js}

@@ -1,17 +1,17 @@
 
-      import { Temporal } from "@js-temporal/polyfill";
-      import { URLPattern } from "urlpattern-polyfill";
-    
-import { getDefaultActivityTransformers } from "./transformers-Dna8Fg7k.js";
-import { deno_default, getDocumentLoader, kvCache } from "./docloader-6Si9l3iy.js";
-import { Activity, Collection, CollectionPage, CryptographicKey, Link, Multikey, Object as Object$1, OrderedCollection, OrderedCollectionPage, getTypeId } from "./actor-CRWrH2fJ.js";
-import { lookupWebFinger } from "./lookup-D0EUk78B.js";
-import { exportJwk, importJwk, validateCryptoKey } from "./key-CdGoFWIl.js";
-import { doubleKnock, verifyRequest } from "./http-DEm-ammv.js";
-import { detachSignature, doesActorOwnKey, getKeyOwner, hasSignature, signJsonLd, signObject, verifyJsonLd, verifyObject } from "./proof-E_33BNCY.js";
-import { getNodeInfo, nodeInfoToJson } from "./types-DNXXKtNN.js";
-import { getAuthenticatedDocumentLoader } from "./authdocloader-DuPcJhwz.js";
-import { lookupObject, traverseCollection } from "./vocab-BXEmH50Y.js";
+          import { Temporal } from "@js-temporal/polyfill";
+          import { URLPattern } from "urlpattern-polyfill";
+        
+import { getDefaultActivityTransformers } from "./transformers-BFT6d7J5.js";
+import { deno_default, getDocumentLoader, kvCache } from "./docloader-BKf9RWX4.js";
+import { Activity, Collection, CollectionPage, CryptographicKey, Link, Multikey, Object as Object$1, OrderedCollection, OrderedCollectionPage, getTypeId } from "./actor-Detmisdi.js";
+import { lookupWebFinger } from "./lookup-D_-F1hLw.js";
+import { exportJwk, importJwk, validateCryptoKey } from "./key-BCWvPOkD.js";
+import { doubleKnock, verifyRequest } from "./http-CwlUFNG4.js";
+import { detachSignature, doesActorOwnKey, getKeyOwner, hasSignature, signJsonLd, signObject, verifyJsonLd, verifyObject } from "./proof-BuPk23Er.js";
+import { getNodeInfo, nodeInfoToJson } from "./types-Q17QxOOC.js";
+import { getAuthenticatedDocumentLoader } from "./authdocloader-5UJ5Gme-.js";
+import { lookupObject, traverseCollection } from "./vocab-BUc_4ZsW.js";
 import { getLogger, withContext } from "@logtape/logtape";
 import { SpanKind, SpanStatusCode, context, propagation, trace } from "@opentelemetry/api";
 import { encodeHex } from "byte-encodings/hex";
@@ -321,7 +321,7 @@ var FederationBuilderImpl = class {
 		this.collectionTypeIds = {};
 	}
 	async build(options) {
-		const { FederationImpl: FederationImpl$1 } = await import("./middleware-BxSWANLr.js");
+		const { FederationImpl: FederationImpl$1 } = await import("./middleware-COHAbwGs.js");
 		const f = new FederationImpl$1(options);
 		const trailingSlashInsensitiveValue = f.router.trailingSlashInsensitive;
 		f.router = this.router.clone();

package/dist/mod-C2tOeRkN.d.cts

@@ -0,0 +1 @@
+export { };

package/dist/mod-C3CGxYoF.d.cts

@@ -0,0 +1,102 @@
+import { DocumentLoader, DocumentLoaderFactoryOptions } from "./docloader-D-MrRyHl.cjs";
+import { HttpMessageSignaturesSpecDeterminer } from "./http-B_zBcsai.cjs";
+import { TracerProvider } from "@opentelemetry/api";
+
+//#region src/runtime/authdocloader.d.ts
+/**
+ * Options for {@link getAuthenticatedDocumentLoader}.
+ * @see {@link getAuthenticatedDocumentLoader}
+ * @since 1.3.0
+ */
+interface GetAuthenticatedDocumentLoaderOptions extends DocumentLoaderFactoryOptions {
+  /**
+   * An optional spec determiner for HTTP Message Signatures.
+   * It determines the spec to use for signing requests.
+   * It is used for double-knocking
+   * (see <https://swicg.github.io/activitypub-http-signature/#how-to-upgrade-supported-versions>).
+   * @since 1.6.0
+   */
+  specDeterminer?: HttpMessageSignaturesSpecDeterminer;
+  /**
+   * The OpenTelemetry tracer provider.  If omitted, the global tracer provider
+   * is used.
+   * @since 1.6.0
+   */
+  tracerProvider?: TracerProvider;
+}
+/**
+ * Gets an authenticated {@link DocumentLoader} for the given identity.
+ * Note that an authenticated document loader intentionally does not cache
+ * the fetched documents.
+ * @param identity The identity to get the document loader for.
+ *                 The actor's key pair.
+ * @param options The options for the document loader.
+ * @returns The authenticated document loader.
+ * @throws {TypeError} If the key is invalid or unsupported.
+ * @since 0.4.0
+ */
+declare function getAuthenticatedDocumentLoader(identity: {
+  keyId: URL;
+  privateKey: CryptoKey;
+}, {
+  allowPrivateAddress,
+  userAgent,
+  specDeterminer,
+  tracerProvider
+}?: GetAuthenticatedDocumentLoaderOptions): DocumentLoader;
+//#endregion
+//#region src/runtime/key.d.ts
+/**
+ * Imports a PEM-SPKI formatted public key.
+ * @param pem The PEM-SPKI formatted public key.
+ * @returns The imported public key.
+ * @throws {TypeError} If the key is invalid or unsupported.
+ * @since 0.5.0
+ */
+declare function importSpki(pem: string): Promise<CryptoKey>;
+/**
+ * Exports a public key in PEM-SPKI format.
+ * @param key The public key to export.
+ * @returns The exported public key in PEM-SPKI format.
+ * @throws {TypeError} If the key is invalid or unsupported.
+ * @since 0.5.0
+ */
+declare function exportSpki(key: CryptoKey): Promise<string>;
+/**
+ * Imports a PEM-PKCS#1 formatted public key.
+ * @param pem The PEM-PKCS#1 formatted public key.
+ * @returns The imported public key.
+ * @throws {TypeError} If the key is invalid or unsupported.
+ * @since 1.5.0
+ */
+declare function importPkcs1(pem: string): Promise<CryptoKey>;
+/**
+ * Imports a PEM formatted public key (SPKI or PKCS#1).
+ * @param pem The PEM formatted public key to import (SPKI or PKCS#1).
+ * @returns The imported public key.
+ * @throws {TypeError} If the key is invalid or unsupported.
+ * @since 1.5.0
+ */
+declare function importPem(pem: string): Promise<CryptoKey>;
+/**
+ * Imports a [Multibase]-encoded public key.
+ *
+ * [Multibase]: https://www.w3.org/TR/vc-data-integrity/#multibase-0
+ * @param key The Multibase-encoded public key.
+ * @returns The imported public key.
+ * @throws {TypeError} If the key is invalid or unsupported.
+ * @since 0.10.0
+ */
+declare function importMultibaseKey(key: string): Promise<CryptoKey>;
+/**
+ * Exports a public key in [Multibase] format.
+ *
+ * [Multibase]: https://www.w3.org/TR/vc-data-integrity/#multibase-0
+ * @param key The public key to export.
+ * @returns The exported public key in Multibase format.
+ * @throws {TypeError} If the key is invalid or unsupported.
+ * @since 0.10.0
+ */
+declare function exportMultibaseKey(key: CryptoKey): Promise<string>;
+//#endregion
+export { GetAuthenticatedDocumentLoaderOptions, exportMultibaseKey, exportSpki, getAuthenticatedDocumentLoader, importMultibaseKey, importPem, importPkcs1, importSpki };

package/dist/mod-COw_caPC.d.cts

@@ -0,0 +1,266 @@
+import { DocumentLoader } from "./docloader-D-MrRyHl.cjs";
+import { CryptographicKey, DataIntegrityProof, Multikey, Object as Object$1 } from "./vocab-BzGg7ltX.cjs";
+import { KeyCache } from "./http-B_zBcsai.cjs";
+import { TracerProvider } from "@opentelemetry/api";
+
+//#region src/sig/ld.d.ts
+/**
+ * A signature of a JSON-LD document.
+ * @since 1.0.0
+ */
+interface Signature {
+  "@context"?: "https://w3id.org/identity/v1";
+  type: "RsaSignature2017";
+  id?: string;
+  creator: string;
+  created: string;
+  signatureValue: string;
+}
+/**
+ * Attaches a LD signature to the given JSON-LD document.
+ * @param jsonLd The JSON-LD document to attach the signature to.  It is not
+ *               modified.
+ * @param signature The signature to attach.
+ * @returns The JSON-LD document with the attached signature.
+ * @throws {TypeError} If the input document is not a valid JSON-LD document.
+ * @since 1.0.0
+ */
+declare function attachSignature(jsonLd: unknown, signature: Signature): {
+  signature: Signature;
+};
+/**
+ * Options for creating Linked Data Signatures.
+ * @since 1.0.0
+ */
+interface CreateSignatureOptions {
+  /**
+   * The context loader for loading remote JSON-LD contexts.
+   */
+  contextLoader?: DocumentLoader;
+  /**
+   * The time when the signature was created.  If not specified, the current
+   * time will be used.
+   */
+  created?: Temporal.Instant;
+}
+/**
+ * Creates a LD signature for the given JSON-LD document.
+ * @param jsonLd The JSON-LD document to sign.
+ * @param privateKey The private key to sign the document.
+ * @param keyId The ID of the public key that corresponds to the private key.
+ * @param options Additional options for creating the signature.
+ *                See also {@link CreateSignatureOptions}.
+ * @return The created signature.
+ * @throws {TypeError} If the private key is invalid or unsupported.
+ * @since 1.0.0
+ */
+declare function createSignature(jsonLd: unknown, privateKey: CryptoKey, keyId: URL, {
+  contextLoader,
+  created
+}?: CreateSignatureOptions): Promise<Signature>;
+/**
+ * Options for signing JSON-LD documents.
+ * @since 1.0.0
+ */
+interface SignJsonLdOptions extends CreateSignatureOptions {
+  /**
+   * The OpenTelemetry tracer provider for tracing the signing process.
+   * If omitted, the global tracer provider is used.
+   * @since 1.3.0
+   */
+  tracerProvider?: TracerProvider;
+}
+/**
+ * Signs the given JSON-LD document with the private key and returns the signed
+ * JSON-LD document.
+ * @param jsonLd The JSON-LD document to sign.
+ * @param privateKey The private key to sign the document.
+ * @param keyId The key ID to use in the signature.  It will be used by the
+ *              verifier to fetch the corresponding public key.
+ * @param options Additional options for signing the document.
+ *                See also {@link SignJsonLdOptions}.
+ * @returns The signed JSON-LD document.
+ * @throws {TypeError} If the private key is invalid or unsupported.
+ * @since 1.0.0
+ */
+declare function signJsonLd(jsonLd: unknown, privateKey: CryptoKey, keyId: URL, options: SignJsonLdOptions): Promise<{
+  signature: Signature;
+}>;
+/**
+ * Detaches Linked Data Signatures from the given JSON-LD document.
+ * @param jsonLd The JSON-LD document to modify.
+ * @returns The modified JSON-LD document.  If the input document does not
+ *          contain a signature, the original document is returned.
+ * @since 1.0.0
+ */
+declare function detachSignature(jsonLd: unknown): unknown;
+/**
+ * Options for verifying Linked Data Signatures.
+ * @since 1.0.0
+ */
+interface VerifySignatureOptions {
+  /**
+   * The document loader to use for fetching the public key.
+   */
+  documentLoader?: DocumentLoader;
+  /**
+   * The context loader to use for JSON-LD context retrieval.
+   */
+  contextLoader?: DocumentLoader;
+  /**
+   * The key cache to use for caching public keys.
+   */
+  keyCache?: KeyCache;
+  /**
+   * The OpenTelemetry tracer provider for tracing the verification process.
+   * If omitted, the global tracer provider is used.
+   * @since 1.3.0
+   */
+  tracerProvider?: TracerProvider;
+}
+/**
+ * Verifies Linked Data Signatures of the given JSON-LD document.
+ * @param jsonLd The JSON-LD document to verify.
+ * @param options Options for verifying the signature.
+ * @returns The public key that signed the document or `null` if the signature
+ *          is invalid or the key is not found.
+ * @since 1.0.0
+ */
+declare function verifySignature(jsonLd: unknown, options?: VerifySignatureOptions): Promise<CryptographicKey | null>;
+/**
+ * Options for verifying JSON-LD documents.
+ */
+interface VerifyJsonLdOptions extends VerifySignatureOptions {}
+/**
+ * Verify the authenticity of the given JSON-LD document using Linked Data
+ * Signatures.  If the document is signed, this function verifies the signature
+ * and checks if the document is attributed to the owner of the public key.
+ * If the document is not signed, this function returns `false`.
+ * @param jsonLd The JSON-LD document to verify.
+ * @param options Options for verifying the document.
+ * @returns `true` if the document is authentic; `false` otherwise.
+ */
+declare function verifyJsonLd(jsonLd: unknown, options?: VerifyJsonLdOptions): Promise<boolean>;
+//#endregion
+//#region src/sig/proof.d.ts
+/**
+ * Options for {@link createProof}.
+ * @since 0.10.0
+ */
+interface CreateProofOptions {
+  /**
+   * The context loader for loading remote JSON-LD contexts.
+   */
+  contextLoader?: DocumentLoader;
+  /**
+   * The JSON-LD context to use for serializing the object to sign.
+   */
+  context?: string | Record<string, string> | (string | Record<string, string>)[];
+  /**
+   * The time when the proof was created.  If not specified, the current time
+   * will be used.
+   */
+  created?: Temporal.Instant;
+}
+/**
+ * Creates a proof for the given object.
+ * @param object The object to create a proof for.
+ * @param privateKey The private key to sign the proof with.
+ * @param keyId The key ID to use in the proof. It will be used by the verifier.
+ * @param options Additional options.  See also {@link CreateProofOptions}.
+ * @returns The created proof.
+ * @throws {TypeError} If the private key is invalid or unsupported.
+ * @since 0.10.0
+ */
+declare function createProof(object: Object$1, privateKey: CryptoKey, keyId: URL, {
+  contextLoader,
+  context,
+  created
+}?: CreateProofOptions): Promise<DataIntegrityProof>;
+/**
+ * Options for {@link signObject}.
+ * @since 0.10.0
+ */
+interface SignObjectOptions extends CreateProofOptions {
+  /**
+   * The document loader for loading remote JSON-LD documents.
+   */
+  documentLoader?: DocumentLoader;
+  /**
+   * The OpenTelemetry tracer provider.  If omitted, the global tracer provider
+   * is used.
+   * @since 1.3.0
+   */
+  tracerProvider?: TracerProvider;
+}
+/**
+ * Signs the given object with the private key and returns the signed object.
+ * @param object The object to create a proof for.
+ * @param privateKey The private key to sign the proof with.
+ * @param keyId The key ID to use in the proof. It will be used by the verifier.
+ * @param options Additional options.  See also {@link SignObjectOptions}.
+ * @returns The signed object.
+ * @throws {TypeError} If the private key is invalid or unsupported.
+ * @since 0.10.0
+ */
+declare function signObject<T extends Object$1>(object: T, privateKey: CryptoKey, keyId: URL, options?: SignObjectOptions): Promise<T>;
+/**
+ * Options for {@link verifyProof}.
+ * @since 0.10.0
+ */
+interface VerifyProofOptions {
+  /**
+   * The context loader for loading remote JSON-LD contexts.
+   */
+  contextLoader?: DocumentLoader;
+  /**
+   * The document loader for loading remote JSON-LD documents.
+   */
+  documentLoader?: DocumentLoader;
+  /**
+   * The key cache to use for caching public keys.
+   * @since 0.12.0
+   */
+  keyCache?: KeyCache;
+  /**
+   * The OpenTelemetry tracer provider.  If omitted, the global tracer provider
+   * is used.
+   * @since 1.3.0
+   */
+  tracerProvider?: TracerProvider;
+}
+/**
+ * Verifies the given proof for the object.
+ * @param jsonLd The JSON-LD object to verify the proof for.  If it contains
+ *               any proofs, they will be ignored.
+ * @param proof The proof to verify.
+ * @param options Additional options.  See also {@link VerifyProofOptions}.
+ * @returns The public key that was used to sign the proof, or `null` if the
+ *          proof is invalid.
+ * @since 0.10.0
+ */
+declare function verifyProof(jsonLd: unknown, proof: DataIntegrityProof, options?: VerifyProofOptions): Promise<Multikey | null>;
+/**
+ * Options for {@link verifyObject}.
+ * @since 0.10.0
+ */
+interface VerifyObjectOptions extends VerifyProofOptions {}
+/**
+ * Verifies the given object.  It will verify all the proofs in the object,
+ * and succeed only if all the proofs are valid and all attributions and
+ * actors are authenticated by the proofs.
+ * @template T The type of the object to verify.
+ * @param cls The class of the object to verify.  It must be a subclass of
+ *            the {@link Object}.
+ * @param jsonLd The JSON-LD object to verify.  It's assumed that the object
+ *               is a compacted JSON-LD representation of a `T` with `@context`.
+ * @param options Additional options.  See also {@link VerifyObjectOptions}.
+ * @returns The object if it's verified, or `null` if it's not.
+ * @throws {TypeError} If the object is invalid or unsupported.
+ * @since 0.10.0
+ */
+declare function verifyObject<T extends Object$1>(cls: (new (...args: any[]) => T) & {
+  fromJsonLd(jsonLd: unknown, options: VerifyObjectOptions): Promise<T>;
+}, jsonLd: unknown, options?: VerifyObjectOptions): Promise<T | null>;
+//#endregion
+export { CreateProofOptions, CreateSignatureOptions, SignJsonLdOptions, SignObjectOptions, VerifyJsonLdOptions, VerifyObjectOptions, VerifyProofOptions, VerifySignatureOptions, attachSignature, createProof, createSignature, detachSignature, signJsonLd, signObject, verifyJsonLd, verifyObject, verifyProof, verifySignature };

package/dist/mod-FZd39qVq.d.cts

@@ -0,0 +1 @@
+export { };