@fuzdev/fuz_app 0.38.1 → 0.40.0

package/dist/auth/CLAUDE.md

@@ -162,22 +162,53 @@ Separated from runtime types to isolate DDL concerns. Consumed by
   `_decline` / `_retract` / `_expire` / `_supersede`.
 - `AuditEventType` (Zod enum), `AuditOutcome` (`'success' | 'failure'`).
 - `AUDIT_METADATA_SCHEMAS` — per-type `z.looseObject`. Notable shapes:
-  - `permit_grant` metadata carries `scope_id`, optional `permit_id` (failed
-    grants omit — `web_grantable` denial never produces a row), optional
-    `source_offer_id`.
-  - `permit_revoke` metadata carries `scope_id`, optional `reason`.
-  - `permit_offer_create` metadata carries optional `offer_id` (failed
-    creates omit).
-  - `permit_offer_supersede` metadata carries
-    `reason: 'sibling_accepted' | 'permit_revoked'` + `cause_id` (accepted
-    offer id or revoked permit id).
-- `AuditLogEvent` (row), `AuditLogInput<T>` (narrow metadata), `AuditLogListOptions`
-  (supports `since_seq` for SSE reconnection gap fill).
+  - `permit_grant` — `scope_id`, optional `permit_id` (failed grants
+    omit — `web_grantable` denial never produces a row), optional
+    `source_offer_id`, optional `self_service` (set by
+    `self_service_role_actions.ts`; declared on the schema rather than
+    riding on `z.looseObject` so the field is part of the documented surface).
+  - `permit_revoke` — `scope_id`, optional `reason`, optional
+    `self_service` (same self-service toggle).
+  - `permit_offer_create` — optional `offer_id` (failed creates omit).
+  - `permit_offer_supersede` — `reason: 'sibling_accepted' | 'permit_revoked'`
+    plus `cause_id` (accepted offer id or revoked permit id).
+- `AuditLogEvent` (row); `AuditLogInput<T extends string = AuditEventType>`
+  (narrow metadata when `T` is builtin, generic record otherwise);
+  `AuditLogListOptions` (supports `since_seq` for SSE reconnection gap fill).
 - Client-safe: `AuditLogEventJson`, `AuditLogEventWithUsernamesJson`,
   `PermitHistoryEventJson`, `AdminSessionJson`.
-- `get_audit_metadata(event)` type-narrows metadata after checking `event_type`.
+- `get_audit_metadata(event)` type-narrows after checking `event_type`.
 - DDL: `AUDIT_LOG_SCHEMA` (includes monotonically-increasing `seq SERIAL`
-  column for cursor-based gap fill), `AUDIT_LOG_INDEXES`.
+  for cursor-based gap fill), `AUDIT_LOG_INDEXES`.
+- **Consumer extensibility**: `create_audit_log_config({extra_events})`
+  builds an `AuditLogConfig` merging builtins with consumer event-type
+  strings keyed to a Zod schema (validates metadata) or `null` (registers
+  without validation). Pass the result to `create_app_backend({audit_log_config})`
+  — it lands on `AppDeps.audit_log_config` and `audit_log_fire_and_forget`
+  reads it off the deps bundle automatically (defaults to
+  `BUILTIN_AUDIT_LOG_CONFIG` when absent). `query_audit_log` still accepts
+  the trailing `config` positional arg for in-transaction emit sites that
+  don't have `AppDeps`. Builtin collisions and `AuditEventTypeName`
+  format failures throw at construction. The DB column is `TEXT NOT NULL`
+  (no enum), so consumer types round-trip through list queries, the
+  `audit_log_list` RPC, and SSE identically to builtins.
+  `AuditLogEvent.event_type` (row interface), `AuditLogEventJson.event_type`,
+  and the `audit_log_list` filter input are all `AuditEventTypeName`
+  (regex-validated string) — widened from the closed enum so consumer rows
+  round-trip through DB queries, `on_audit_event` callbacks, and
+  `spec.output.safeParse` identically to builtins. `AuditLogInput<T>` and
+  `AuditMetadataMap` stay closed-enum on the write side — metadata-narrowing
+  helpers like `get_audit_metadata` continue to require a builtin type guard.
+- **Drift counters**: `audit_metadata_validation_failures` (schema mismatch)
+  and `audit_unknown_event_type_failures` (`event_type` not in active
+  config). Both fail-open. Independent in implementation; under the
+  factory they track the same config, but a hand-rolled `AuditLogConfig`
+  (or a cast escape) can fire both on a single emission. Sample via
+  `get_*` getters; `reset_*` are test-only. `AUDIT_EVENT_TYPES`,
+  `AUDIT_METADATA_SCHEMAS`, `BUILTIN_AUDIT_LOG_CONFIG`, and the configs
+  returned by `create_audit_log_config` are `Object.freeze`'d to convert
+  accidental mutation (bugs, test cross-contamination, cast escapes)
+  into loud TypeErrors — not a security boundary.
 
 ### Permit offer (`permit_offer_schema.ts`)
 
@@ -422,31 +453,34 @@ run'` if the seed somehow missed (defensive — migrations always seed).
 ### `audit_log_queries.ts`
 
 - `AUDIT_LOG_DEFAULT_LIMIT = 50`.
-- `query_audit_log<T>(deps, input)` — validates metadata against
-  `AUDIT_METADATA_SCHEMAS[event_type]` in production + DEV both.
-  Mismatches `console.error` and increment
-  `audit_metadata_validation_failures` (sample via
-  `get_audit_metadata_validation_failures()`), but never throw — fail-open
-  by design, matching the rest of the fire-and-forget audit pipeline.
-  Returns the inserted row via `RETURNING *` (so callers get `id`, `seq`,
-  `created_at`).
-- `get_audit_metadata_validation_failures()` / `reset_audit_metadata_validation_failures()` —
-  read / clear the in-process counter. Single-process scope (resets on
-  restart); operators thread it into a future `/metrics` surface or a
-  debug RPC handler when external observability is needed.
+- `query_audit_log<T>(deps, input, config?)` — `config` defaults to
+  `BUILTIN_AUDIT_LOG_CONFIG`. Membership check runs against
+  `config.event_types`; metadata validation runs independently against
+  `config.metadata_schemas[event_type]` when present. Mismatches and
+  unknown types log + bump their counters (see schema section);
+  never throws. Returns the inserted row via `RETURNING *`.
+- Drift counters live alongside in this module:
+  `get_audit_metadata_validation_failures()` /
+  `get_audit_unknown_event_type_failures()` (read);
+  `reset_*` (test-only). In-process; reset on restart.
 - `query_audit_log_list(deps, options?)` — supports `event_type`,
-  `event_type_in`, `account_id` (matches either `account_id` OR
+  `event_type_in`, `account_id` (matches `account_id` OR
   `target_account_id`), `outcome`, `since_seq`, `limit`, `offset`.
 - `query_audit_log_list_with_usernames` — joins twice to `account`.
 - `query_audit_log_list_for_account`, `query_audit_log_list_permit_history`
   (filters to `permit_grant` / `permit_revoke`).
 - `query_audit_log_cleanup_before`.
-- **`audit_log_fire_and_forget(route, input, log, on_event)`** — writes to
-  `route.background_db` (pool-level), **not** the handler's transaction,
-  so audit entries **persist even when the request transaction rolls back**.
-  Write failures and `on_event` callback failures are logged separately so
-  the error message indicates the failing phase. Pushes onto
-  `route.pending_effects` for test flushing.
+- **`audit_log_fire_and_forget(route, input, deps)`** —
+  writes to `route.background_db` (pool-level), so audit entries persist
+  even when the request transaction rolls back. `deps` is an
+  `AuditLogFireAndForgetDeps` bundle (`{log, on_audit_event, audit_log_config?}`)
+  — structurally compatible with `Pick<AppDeps, 'log' | 'on_audit_event' | 'audit_log_config'>`,
+  so call sites pass the surrounding deps object directly. Bundling
+  replaces the prior 5-arg positional signature; consumers that forgot
+  the trailing `config` would silently fall back to
+  `BUILTIN_AUDIT_LOG_CONFIG`. Write and `on_audit_event` callback
+  failures are logged separately. Pushes onto `route.pending_effects`
+  for test flushing.
 
 ### `migrations.ts`
 
@@ -761,7 +795,7 @@ Closure state:
 `all_admin_action_specs: Array<RequestResponseActionSpec>` — codegen-ready
 registry of all eleven specs (always includes the two app-settings specs).
 
-Deps: `AdminActionDeps = Pick<RouteFactoryDeps, 'log' | 'on_audit_event'>`.
+Deps: `AdminActionDeps = Pick<RouteFactoryDeps, 'log' | 'on_audit_event' | 'audit_log_config'>`. The `audit_log_config` slot flows through to `audit_log_fire_and_forget` so consumer-extended event-type metadata gets validated.
 
 ### `permit_offer_action_specs.ts` + `permit_offer_actions.ts` — seven RPC actions
 
@@ -841,7 +875,7 @@ can't starve others; see `../http/CLAUDE.md` §Pending Effects):
 - Revoke → `permit_revoke` to revokee + one `permit_offer_supersede` per
   superseded sibling.
 
-Deps: `PermitOfferActionDeps extends Pick<RouteFactoryDeps, 'log' | 'on_audit_event'> & {notification_sender?: NotificationSender | null}`.
+Deps: `PermitOfferActionDeps extends Pick<RouteFactoryDeps, 'log' | 'on_audit_event' | 'audit_log_config'> & {notification_sender?: NotificationSender | null}`.
 Notification sender is optional — when absent, WS fan-out is silently
 skipped (DB-only side effects still happen).
 
@@ -854,6 +888,13 @@ Options:
 - `authorize?: PermitOfferCreateAuthorize` — custom policy for
   `permit_offer_create`. Signature:
   `(auth, input: {to_account_id, role, scope_id}, deps: Pick<RouteFactoryDeps, 'log'>, ctx: ActionContext) => boolean | Promise<boolean>`.
+  Pre-built option: `authorize_admin_or_holder` admits any admin and
+  otherwise falls back to the symmetric default (caller must hold the
+  offered role globally). Drop into
+  `create_permit_offer_actions({authorize: authorize_admin_or_holder})`
+  or any factory that forwards `authorize` (e.g. `create_standard_rpc_actions`)
+  for the common "admins offer anything web_grantable; users offer what
+  they hold" pattern.
 
 `all_permit_offer_action_specs: Array<RequestResponseActionSpec>` —
 codegen-ready registry.
@@ -929,13 +970,55 @@ Audit events emitted (via `audit_log_fire_and_forget` with `ip: ctx.client_ip`):
 IP is the resolved trusted-proxy value from `ActionContext.client_ip`,
 matching the REST handler convention.
 
-Deps: `AccountActionDeps = Pick<RouteFactoryDeps, 'log' | 'on_audit_event'>`.
+Deps: `AccountActionDeps = Pick<RouteFactoryDeps, 'log' | 'on_audit_event' | 'audit_log_config'>`.
 Options: `{max_tokens?: number | null}` — defaults to `DEFAULT_MAX_TOKENS`
 from `account_routes.ts`; `null` disables the cap.
 
 `all_account_action_specs: Array<RequestResponseActionSpec>` — codegen-ready
 registry of all seven specs.
 
+### `self_service_role_actions.ts` — opt-in self-service role toggle
+
+Two static `request_response` actions — `self_service_role_grant` and
+`self_service_role_revoke` — that take `{role}` as input and toggle a
+global permit on the caller. Both are idempotent: `granted: false` when
+the caller already holds the role, `revoked: false` when they don't.
+Audit metadata carries `self_service: true` so admin reviewers can
+distinguish self-toggled permits from admin grants/offers. The
+`permit_grant` / `permit_revoke` metadata schemas declare
+`self_service: z.boolean().optional()` explicitly, so the field is
+part of the documented surface rather than riding on `z.looseObject`
+permissiveness.
+
+Method names are static — `role` lives in the input, not the method
+name. Mirrors the `permit_offer_create({role})` precedent. Per-role
+parameterized methods would break the `satisfies RequestResponseActionSpec`
+codegen invariant and grow the surface linearly per role.
+
+`create_self_service_role_actions(deps, options)`:
+
+- `eligible_roles: ReadonlyArray<string>` — required allowlist. Roles
+  outside the list are rejected with `forbidden` + reason
+  `role_not_self_service_eligible` (exported as
+  `ERROR_ROLE_NOT_SELF_SERVICE_ELIGIBLE`).
+- `roles?: RoleSchemaResult` — optional. When supplied, every entry in
+  `eligible_roles` is checked against `roles.role_options` at factory
+  time so typos throw at startup instead of at first call.
+
+Grant path uses `query_permit_has_role` for a benign-TOCTOU pre-check
+(distinguishes new grant from idempotent re-grant), then
+`query_grant_permit` for the actual insert. Revoke path filters
+`query_permit_find_active_for_actor` in JS for the matching
+`(actor, role, scope_id IS NULL)` row before calling
+`query_revoke_permit`. Bundle is **not** included in
+`create_standard_rpc_actions` — `eligible_roles` is app-specific, opt-in,
+spread alongside the standard bundle when needed.
+
+Deps: `SelfServiceRoleActionDeps = Pick<RouteFactoryDeps, 'log' | 'on_audit_event' | 'audit_log_config'>`.
+
+`all_self_service_role_action_specs: Array<RequestResponseActionSpec>` —
+codegen-ready registry of both specs.
+
 ## Cleanup
 
 `cleanup.ts` — periodic auth maintenance:
@@ -962,7 +1045,7 @@ resulting permit.
 
 `deps.ts` defines:
 
-- **`AppDeps`** — the stateless capabilities bundle. Seven members:
+- **`AppDeps`** — the stateless capabilities bundle. Eight members:
   - `stat`, `read_text_file`, `delete_file` — filesystem.
   - `keyring: Keyring` — HMAC-SHA256 signing.
   - `password: PasswordHashDeps` — use `argon2_password_deps` in production.
@@ -973,6 +1056,11 @@ resulting permit.
     INSERT. Wire to SSE broadcast for realtime audit streams. Defaults to
     noop when unwired. Flows automatically through every factory that
     receives `deps` / `RouteFactoryDeps`.
+  - `audit_log_config?: AuditLogConfig` — optional consumer-extended audit
+    config from `create_audit_log_config({extra_events})`. Wired into
+    `audit_log_fire_and_forget` via the deps bundle so consumer event-type
+    metadata gets validated. Absent → defaults to `BUILTIN_AUDIT_LOG_CONFIG`.
+    Pass at the backend via `create_app_backend({audit_log_config})`.
 - **`RouteFactoryDeps = Omit<AppDeps, 'db'>`** — for route factories. Route
   handlers receive DB access via `RouteContext`, so factories don't capture
   a pool-level `Db`.

package/dist/auth/account_actions.d.ts

@@ -37,13 +37,15 @@ export interface AccountActionOptions {
  * Dependencies for `create_account_actions`.
  *
  * Shares shape with `AdminActionDeps` / `PermitOfferActionDeps` so consumers
- * can pass the same deps to every action factory.
+ * can pass the same deps to every action factory. `audit_log_config` is
+ * carried through `AppDeps` and consumed by `audit_log_fire_and_forget`;
+ * absent → defaults to `BUILTIN_AUDIT_LOG_CONFIG`.
  */
-export type AccountActionDeps = Pick<RouteFactoryDeps, 'log' | 'on_audit_event'>;
+export type AccountActionDeps = Pick<RouteFactoryDeps, 'log' | 'on_audit_event' | 'audit_log_config'>;
 /**
  * Create the self-service account RPC actions.
  *
- * @param deps - stateless capabilities (log, on_audit_event)
+ * @param deps - `AccountActionDeps` slice of `AppDeps` (`log`, `on_audit_event`, optional `audit_log_config`)
  * @param options - per-factory configuration
  * @returns the `RpcAction` array to spread into a `create_rpc_endpoint` call
  */

package/dist/auth/account_actions.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"account_actions.d.ts","sourceRoot":"../src/lib/","sources":["../../src/lib/auth/account_actions.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;;;;;;;GAsBG;AAEH,OAAO,EAAiC,KAAK,SAAS,EAAC,MAAM,0BAA0B,CAAC;AAgBxF,OAAO,KAAK,EAAC,gBAAgB,EAAC,MAAM,WAAW,CAAC;AAwBhD,4CAA4C;AAC5C,MAAM,WAAW,oBAAoB;IACpC;;;;;OAKG;IACH,UAAU,CAAC,EAAE,MAAM,GAAG,IAAI,CAAC;CAC3B;AAED;;;;;GAKG;AACH,MAAM,MAAM,iBAAiB,GAAG,IAAI,CAAC,gBAAgB,EAAE,KAAK,GAAG,gBAAgB,CAAC,CAAC;AAEjF;;;;;;GAMG;AACH,eAAO,MAAM,sBAAsB,GAClC,MAAM,iBAAiB,EACvB,UAAS,oBAAyB,KAChC,KAAK,CAAC,SAAS,CA8HjB,CAAC"}
+{"version":3,"file":"account_actions.d.ts","sourceRoot":"../src/lib/","sources":["../../src/lib/auth/account_actions.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;;;;;;;GAsBG;AAEH,OAAO,EAAiC,KAAK,SAAS,EAAC,MAAM,0BAA0B,CAAC;AAgBxF,OAAO,KAAK,EAAC,gBAAgB,EAAC,MAAM,WAAW,CAAC;AAwBhD,4CAA4C;AAC5C,MAAM,WAAW,oBAAoB;IACpC;;;;;OAKG;IACH,UAAU,CAAC,EAAE,MAAM,GAAG,IAAI,CAAC;CAC3B;AAED;;;;;;;GAOG;AACH,MAAM,MAAM,iBAAiB,GAAG,IAAI,CACnC,gBAAgB,EAChB,KAAK,GAAG,gBAAgB,GAAG,kBAAkB,CAC7C,CAAC;AAEF;;;;;;GAMG;AACH,eAAO,MAAM,sBAAsB,GAClC,MAAM,iBAAiB,EACvB,UAAS,oBAAyB,KAChC,KAAK,CAAC,SAAS,CAyHjB,CAAC"}

package/dist/auth/account_actions.js

@@ -32,12 +32,11 @@ import { account_verify_action_spec, account_session_list_action_spec, account_s
 /**
  * Create the self-service account RPC actions.
  *
- * @param deps - stateless capabilities (log, on_audit_event)
+ * @param deps - `AccountActionDeps` slice of `AppDeps` (`log`, `on_audit_event`, optional `audit_log_config`)
  * @param options - per-factory configuration
  * @returns the `RpcAction` array to spread into a `create_rpc_endpoint` call
  */
 export const create_account_actions = (deps, options = {}) => {
-    const { log, on_audit_event } = deps;
     const { max_tokens = DEFAULT_MAX_TOKENS } = options;
     const verify_handler = (_input, ctx) => {
         const auth = ctx.auth;
@@ -58,7 +57,7 @@ export const create_account_actions = (deps, options = {}) => {
             account_id: auth.account.id,
             ip: ctx.client_ip,
             metadata: { session_id: input.session_id },
-        }, log, on_audit_event);
+        }, deps);
         return { ok: true, revoked };
     };
     const session_revoke_all_handler = async (_input, ctx) => {
@@ -70,7 +69,7 @@ export const create_account_actions = (deps, options = {}) => {
             account_id: auth.account.id,
             ip: ctx.client_ip,
             metadata: { count },
-        }, log, on_audit_event);
+        }, deps);
         return { ok: true, count };
     };
     const token_create_handler = async (input, ctx) => {
@@ -86,7 +85,7 @@ export const create_account_actions = (deps, options = {}) => {
             account_id: auth.account.id,
             ip: ctx.client_ip,
             metadata: { token_id: id, name: input.name },
-        }, log, on_audit_event);
+        }, deps);
         return { ok: true, token, id, name: input.name };
     };
     const token_list_handler = async (_input, ctx) => {
@@ -104,7 +103,7 @@ export const create_account_actions = (deps, options = {}) => {
             account_id: auth.account.id,
             ip: ctx.client_ip,
             metadata: { token_id: input.token_id },
-        }, log, on_audit_event);
+        }, deps);
         return { ok: true, revoked };
     };
     return [

package/dist/auth/account_routes.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"account_routes.d.ts","sourceRoot":"../src/lib/","sources":["../../src/lib/auth/account_routes.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;;;;;;;GAsBG;AAEH,OAAO,EAAC,CAAC,EAAC,MAAM,KAAK,CAAC;AAEtB,OAAO,KAAK,EAAC,cAAc,EAAC,MAAM,qBAAqB,CAAC;AAsBxD,OAAO,EAAkB,KAAK,SAAS,EAAC,MAAM,uBAAuB,CAAC;AAEtE,OAAO,EAA+B,KAAK,WAAW,EAAC,MAAM,oBAAoB,CAAC;AAElF,OAAO,KAAK,EAAC,gBAAgB,EAAC,MAAM,WAAW,CAAC;AAQhD,kFAAkF;AAClF,eAAO,MAAM,kBAAkB,WAAW,CAAC;AAC3C,MAAM,MAAM,kBAAkB,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,kBAAkB,CAAC,CAAC;AAEpE;;;;;;;;;;;GAWG;AACH,eAAO,MAAM,mBAAmB;;;;;;;;;;;;;;;;;;;;kBAI9B,CAAC;AACH,MAAM,MAAM,mBAAmB,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,mBAAmB,CAAC,CAAC;AAEtE,4EAA4E;AAC5E,eAAO,MAAM,iCAAiC;;;iBAG5C,CAAC;AACH,MAAM,MAAM,iCAAiC,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,iCAAiC,CAAC,CAAC;AAElG;;;;;;;;;;;;GAYG;AACH,eAAO,MAAM,gCAAgC,GAAI,UAAU,oBAAoB,KAAG,SAmChF,CAAC;AAEH,iDAAiD;AACjD,MAAM,WAAW,oBAAoB;IACpC,yDAAyD;IACzD,IAAI,CAAC,EAAE,MAAM,CAAC;IACd,8FAA8F;IAC9F,gBAAgB,CAAC,EAAE;QAAC,SAAS,EAAE,OAAO,CAAA;KAAC,CAAC;CACxC;AAED,4CAA4C;AAC5C,eAAO,MAAM,oBAAoB,IAAI,CAAC;AAEtC,8CAA8C;AAC9C,eAAO,MAAM,kBAAkB,KAAK,CAAC;AAErC;;;;;;;;;GASG;AACH,eAAO,MAAM,2BAA2B,MAAM,CAAC;AAE/C;;;;;;GAMG;AACH,eAAO,MAAM,4BAA4B,KAAK,CAAC;AAQ/C;;;;;GAKG;AACH,MAAM,WAAW,uBAAuB;IACvC,eAAe,EAAE,cAAc,CAAC,MAAM,CAAC,CAAC;IACxC,kFAAkF;IAClF,eAAe,EAAE,WAAW,GAAG,IAAI,CAAC;CACpC;AAED;;GAEG;AACH,MAAM,WAAW,mBAAoB,SAAQ,uBAAuB;IACnE,4FAA4F;IAC5F,0BAA0B,EAAE,WAAW,GAAG,IAAI,CAAC;IAC/C,2FAA2F;IAC3F,YAAY,CAAC,EAAE,MAAM,GAAG,IAAI,CAAC;IAC7B;;;;OAIG;IACH,mBAAmB,CAAC,EAAE,MAAM,CAAC;IAC7B;;;OAGG;IACH,oBAAoB,CAAC,EAAE,MAAM,CAAC;CAC9B;AAID,oFAAoF;AACpF,eAAO,MAAM,UAAU;;;kBAGrB,CAAC;AACH,MAAM,MAAM,UAAU,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,UAAU,CAAC,CAAC;AAEpD,wFAAwF;AACxF,eAAO,MAAM,WAAW;;kBAEtB,CAAC;AACH,MAAM,MAAM,WAAW,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,WAAW,CAAC,CAAC;AAEtD,2EAA2E;AAC3E,eAAO,MAAM,WAAW,WAAW,CAAC;AACpC,MAAM,MAAM,WAAW,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,WAAW,CAAC,CAAC;AAEtD,wFAAwF;AACxF,eAAO,MAAM,YAAY;;;kBAGvB,CAAC;AACH,MAAM,MAAM,YAAY,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,YAAY,CAAC,CAAC;AAExD,sHAAsH;AACtH,eAAO,MAAM,mBAAmB;;;kBAG9B,CAAC;AACH,MAAM,MAAM,mBAAmB,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,mBAAmB,CAAC,CAAC;AAEtE,uGAAuG;AACvG,eAAO,MAAM,oBAAoB;;;;kBAI/B,CAAC;AACH,MAAM,MAAM,oBAAoB,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,oBAAoB,CAAC,CAAC;AAExE;;;;;;;;;;GAUG;AACH,eAAO,MAAM,0BAA0B,GACtC,MAAM,gBAAgB,EACtB,SAAS,mBAAmB,KAC1B,KAAK,CAAC,SAAS,CAsPjB,CAAC"}
+{"version":3,"file":"account_routes.d.ts","sourceRoot":"../src/lib/","sources":["../../src/lib/auth/account_routes.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;;;;;;;GAsBG;AAEH,OAAO,EAAC,CAAC,EAAC,MAAM,KAAK,CAAC;AAEtB,OAAO,KAAK,EAAC,cAAc,EAAC,MAAM,qBAAqB,CAAC;AAsBxD,OAAO,EAAkB,KAAK,SAAS,EAAC,MAAM,uBAAuB,CAAC;AAEtE,OAAO,EAA+B,KAAK,WAAW,EAAC,MAAM,oBAAoB,CAAC;AAElF,OAAO,KAAK,EAAC,gBAAgB,EAAC,MAAM,WAAW,CAAC;AAQhD,kFAAkF;AAClF,eAAO,MAAM,kBAAkB,WAAW,CAAC;AAC3C,MAAM,MAAM,kBAAkB,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,kBAAkB,CAAC,CAAC;AAEpE;;;;;;;;;;;GAWG;AACH,eAAO,MAAM,mBAAmB;;;;;;;;;;;;;;;;;;;;kBAI9B,CAAC;AACH,MAAM,MAAM,mBAAmB,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,mBAAmB,CAAC,CAAC;AAEtE,4EAA4E;AAC5E,eAAO,MAAM,iCAAiC;;;iBAG5C,CAAC;AACH,MAAM,MAAM,iCAAiC,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,iCAAiC,CAAC,CAAC;AAElG;;;;;;;;;;;;GAYG;AACH,eAAO,MAAM,gCAAgC,GAAI,UAAU,oBAAoB,KAAG,SAmChF,CAAC;AAEH,iDAAiD;AACjD,MAAM,WAAW,oBAAoB;IACpC,yDAAyD;IACzD,IAAI,CAAC,EAAE,MAAM,CAAC;IACd,8FAA8F;IAC9F,gBAAgB,CAAC,EAAE;QAAC,SAAS,EAAE,OAAO,CAAA;KAAC,CAAC;CACxC;AAED,4CAA4C;AAC5C,eAAO,MAAM,oBAAoB,IAAI,CAAC;AAEtC,8CAA8C;AAC9C,eAAO,MAAM,kBAAkB,KAAK,CAAC;AAErC;;;;;;;;;GASG;AACH,eAAO,MAAM,2BAA2B,MAAM,CAAC;AAE/C;;;;;;GAMG;AACH,eAAO,MAAM,4BAA4B,KAAK,CAAC;AAQ/C;;;;;GAKG;AACH,MAAM,WAAW,uBAAuB;IACvC,eAAe,EAAE,cAAc,CAAC,MAAM,CAAC,CAAC;IACxC,kFAAkF;IAClF,eAAe,EAAE,WAAW,GAAG,IAAI,CAAC;CACpC;AAED;;GAEG;AACH,MAAM,WAAW,mBAAoB,SAAQ,uBAAuB;IACnE,4FAA4F;IAC5F,0BAA0B,EAAE,WAAW,GAAG,IAAI,CAAC;IAC/C,2FAA2F;IAC3F,YAAY,CAAC,EAAE,MAAM,GAAG,IAAI,CAAC;IAC7B;;;;OAIG;IACH,mBAAmB,CAAC,EAAE,MAAM,CAAC;IAC7B;;;OAGG;IACH,oBAAoB,CAAC,EAAE,MAAM,CAAC;CAC9B;AAID,oFAAoF;AACpF,eAAO,MAAM,UAAU;;;kBAGrB,CAAC;AACH,MAAM,MAAM,UAAU,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,UAAU,CAAC,CAAC;AAEpD,wFAAwF;AACxF,eAAO,MAAM,WAAW;;kBAEtB,CAAC;AACH,MAAM,MAAM,WAAW,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,WAAW,CAAC,CAAC;AAEtD,2EAA2E;AAC3E,eAAO,MAAM,WAAW,WAAW,CAAC;AACpC,MAAM,MAAM,WAAW,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,WAAW,CAAC,CAAC;AAEtD,wFAAwF;AACxF,eAAO,MAAM,YAAY;;;kBAGvB,CAAC;AACH,MAAM,MAAM,YAAY,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,YAAY,CAAC,CAAC;AAExD,sHAAsH;AACtH,eAAO,MAAM,mBAAmB;;;kBAG9B,CAAC;AACH,MAAM,MAAM,mBAAmB,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,mBAAmB,CAAC,CAAC;AAEtE,uGAAuG;AACvG,eAAO,MAAM,oBAAoB;;;;kBAI/B,CAAC;AACH,MAAM,MAAM,oBAAoB,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,oBAAoB,CAAC,CAAC;AAExE;;;;;;;;;;GAUG;AACH,eAAO,MAAM,0BAA0B,GACtC,MAAM,gBAAgB,EACtB,SAAS,mBAAmB,KAC1B,KAAK,CAAC,SAAS,CAgPjB,CAAC"}

package/dist/auth/account_routes.js

@@ -174,7 +174,7 @@ export const PasswordChangeOutput = z.strictObject({
  * @returns route specs (not yet applied to Hono)
  */
 export const create_account_route_specs = (deps, options) => {
-    const { keyring, password, on_audit_event } = deps;
+    const { keyring, password } = deps;
     const { session_options, ip_rate_limiter, login_account_rate_limiter, max_sessions = DEFAULT_MAX_SESSIONS, login_fail_floor_ms = DEFAULT_LOGIN_FAIL_FLOOR_MS, login_fail_jitter_ms = DEFAULT_LOGIN_FAIL_JITTER_MS, } = options;
     return [
         {
@@ -243,7 +243,7 @@ export const create_account_route_specs = (deps, options) => {
                         outcome: 'failure',
                         ip: get_client_ip(c),
                         metadata: { username },
-                    }, deps.log, on_audit_event);
+                    }, deps);
                     await delay;
                     return c.json({ error: ERROR_INVALID_CREDENTIALS }, 401);
                 }
@@ -259,7 +259,7 @@ export const create_account_route_specs = (deps, options) => {
                         account_id: account.id,
                         ip: get_client_ip(c),
                         metadata: { username },
-                    }, deps.log, on_audit_event);
+                    }, deps);
                     await delay;
                     return c.json({ error: ERROR_INVALID_CREDENTIALS }, 401);
                 }
@@ -280,7 +280,7 @@ export const create_account_route_specs = (deps, options) => {
                     event_type: 'login',
                     account_id: account.id,
                     ip: get_client_ip(c),
-                }, deps.log, on_audit_event);
+                }, deps);
                 return c.json({ ok: true });
             },
         },
@@ -304,7 +304,7 @@ export const create_account_route_specs = (deps, options) => {
                     actor_id: ctx.actor.id,
                     account_id: ctx.account.id,
                     ip: get_client_ip(c),
-                }, deps.log, on_audit_event);
+                }, deps);
                 return c.json({ ok: true, username: ctx.account.username });
             },
         },
@@ -351,7 +351,7 @@ export const create_account_route_specs = (deps, options) => {
                         actor_id: ctx.actor.id,
                         account_id: ctx.account.id,
                         ip: get_client_ip(c),
-                    }, deps.log, on_audit_event);
+                    }, deps);
                     return c.json({ error: ERROR_INVALID_CREDENTIALS }, 401);
                 }
                 // successful verification — reset rate limiters
@@ -371,7 +371,7 @@ export const create_account_route_specs = (deps, options) => {
                     account_id: ctx.account.id,
                     ip: get_client_ip(c),
                     metadata: { sessions_revoked, tokens_revoked },
-                }, deps.log, on_audit_event);
+                }, deps);
                 return c.json({ ok: true, sessions_revoked, tokens_revoked });
             },
         },

package/dist/auth/admin_action_specs.d.ts

@@ -103,29 +103,7 @@ export type AdminTokenRevokeAllOutput = z.infer<typeof AdminTokenRevokeAllOutput
  * after).
  */
 export declare const AuditLogListInput: z.ZodObject<{
-    event_type: z.ZodOptional<z.ZodNullable<z.ZodEnum<{
-        login: "login";
-        logout: "logout";
-        bootstrap: "bootstrap";
-        signup: "signup";
-        password_change: "password_change";
-        session_revoke: "session_revoke";
-        session_revoke_all: "session_revoke_all";
-        token_create: "token_create";
-        token_revoke: "token_revoke";
-        token_revoke_all: "token_revoke_all";
-        permit_grant: "permit_grant";
-        permit_revoke: "permit_revoke";
-        permit_offer_create: "permit_offer_create";
-        permit_offer_accept: "permit_offer_accept";
-        permit_offer_decline: "permit_offer_decline";
-        permit_offer_retract: "permit_offer_retract";
-        permit_offer_expire: "permit_offer_expire";
-        permit_offer_supersede: "permit_offer_supersede";
-        invite_create: "invite_create";
-        invite_delete: "invite_delete";
-        app_settings_update: "app_settings_update";
-    }>>>;
+    event_type: z.ZodOptional<z.ZodNullable<z.ZodString>>;
     outcome: z.ZodOptional<z.ZodNullable<z.ZodEnum<{
         success: "success";
         failure: "failure";
@@ -141,29 +119,7 @@ export declare const AuditLogListOutput: z.ZodObject<{
     events: z.ZodArray<z.ZodObject<{
         id: z.core.$ZodBranded<z.ZodUUID, "Uuid", "out">;
         seq: z.ZodNumber;
-        event_type: z.ZodEnum<{
-            login: "login";
-            logout: "logout";
-            bootstrap: "bootstrap";
-            signup: "signup";
-            password_change: "password_change";
-            session_revoke: "session_revoke";
-            session_revoke_all: "session_revoke_all";
-            token_create: "token_create";
-            token_revoke: "token_revoke";
-            token_revoke_all: "token_revoke_all";
-            permit_grant: "permit_grant";
-            permit_revoke: "permit_revoke";
-            permit_offer_create: "permit_offer_create";
-            permit_offer_accept: "permit_offer_accept";
-            permit_offer_decline: "permit_offer_decline";
-            permit_offer_retract: "permit_offer_retract";
-            permit_offer_expire: "permit_offer_expire";
-            permit_offer_supersede: "permit_offer_supersede";
-            invite_create: "invite_create";
-            invite_delete: "invite_delete";
-            app_settings_update: "app_settings_update";
-        }>;
+        event_type: z.ZodString;
         outcome: z.ZodEnum<{
             success: "success";
             failure: "failure";
@@ -190,29 +146,7 @@ export declare const AuditLogPermitHistoryOutput: z.ZodObject<{
     events: z.ZodArray<z.ZodObject<{
         id: z.core.$ZodBranded<z.ZodUUID, "Uuid", "out">;
         seq: z.ZodNumber;
-        event_type: z.ZodEnum<{
-            login: "login";
-            logout: "logout";
-            bootstrap: "bootstrap";
-            signup: "signup";
-            password_change: "password_change";
-            session_revoke: "session_revoke";
-            session_revoke_all: "session_revoke_all";
-            token_create: "token_create";
-            token_revoke: "token_revoke";
-            token_revoke_all: "token_revoke_all";
-            permit_grant: "permit_grant";
-            permit_revoke: "permit_revoke";
-            permit_offer_create: "permit_offer_create";
-            permit_offer_accept: "permit_offer_accept";
-            permit_offer_decline: "permit_offer_decline";
-            permit_offer_retract: "permit_offer_retract";
-            permit_offer_expire: "permit_offer_expire";
-            permit_offer_supersede: "permit_offer_supersede";
-            invite_create: "invite_create";
-            invite_delete: "invite_delete";
-            app_settings_update: "app_settings_update";
-        }>;
+        event_type: z.ZodString;
         outcome: z.ZodEnum<{
             success: "success";
             failure: "failure";
@@ -419,29 +353,7 @@ export declare const audit_log_list_action_spec: {
     };
     side_effects: false;
     input: z.ZodObject<{
-        event_type: z.ZodOptional<z.ZodNullable<z.ZodEnum<{
-            login: "login";
-            logout: "logout";
-            bootstrap: "bootstrap";
-            signup: "signup";
-            password_change: "password_change";
-            session_revoke: "session_revoke";
-            session_revoke_all: "session_revoke_all";
-            token_create: "token_create";
-            token_revoke: "token_revoke";
-            token_revoke_all: "token_revoke_all";
-            permit_grant: "permit_grant";
-            permit_revoke: "permit_revoke";
-            permit_offer_create: "permit_offer_create";
-            permit_offer_accept: "permit_offer_accept";
-            permit_offer_decline: "permit_offer_decline";
-            permit_offer_retract: "permit_offer_retract";
-            permit_offer_expire: "permit_offer_expire";
-            permit_offer_supersede: "permit_offer_supersede";
-            invite_create: "invite_create";
-            invite_delete: "invite_delete";
-            app_settings_update: "app_settings_update";
-        }>>>;
+        event_type: z.ZodOptional<z.ZodNullable<z.ZodString>>;
         outcome: z.ZodOptional<z.ZodNullable<z.ZodEnum<{
             success: "success";
             failure: "failure";
@@ -455,29 +367,7 @@ export declare const audit_log_list_action_spec: {
         events: z.ZodArray<z.ZodObject<{
             id: z.core.$ZodBranded<z.ZodUUID, "Uuid", "out">;
             seq: z.ZodNumber;
-            event_type: z.ZodEnum<{
-                login: "login";
-                logout: "logout";
-                bootstrap: "bootstrap";
-                signup: "signup";
-                password_change: "password_change";
-                session_revoke: "session_revoke";
-                session_revoke_all: "session_revoke_all";
-                token_create: "token_create";
-                token_revoke: "token_revoke";
-                token_revoke_all: "token_revoke_all";
-                permit_grant: "permit_grant";
-                permit_revoke: "permit_revoke";
-                permit_offer_create: "permit_offer_create";
-                permit_offer_accept: "permit_offer_accept";
-                permit_offer_decline: "permit_offer_decline";
-                permit_offer_retract: "permit_offer_retract";
-                permit_offer_expire: "permit_offer_expire";
-                permit_offer_supersede: "permit_offer_supersede";
-                invite_create: "invite_create";
-                invite_delete: "invite_delete";
-                app_settings_update: "app_settings_update";
-            }>;
+            event_type: z.ZodString;
             outcome: z.ZodEnum<{
                 success: "success";
                 failure: "failure";
@@ -511,29 +401,7 @@ export declare const audit_log_permit_history_action_spec: {
         events: z.ZodArray<z.ZodObject<{
             id: z.core.$ZodBranded<z.ZodUUID, "Uuid", "out">;
             seq: z.ZodNumber;
-            event_type: z.ZodEnum<{
-                login: "login";
-                logout: "logout";
-                bootstrap: "bootstrap";
-                signup: "signup";
-                password_change: "password_change";
-                session_revoke: "session_revoke";
-                session_revoke_all: "session_revoke_all";
-                token_create: "token_create";
-                token_revoke: "token_revoke";
-                token_revoke_all: "token_revoke_all";
-                permit_grant: "permit_grant";
-                permit_revoke: "permit_revoke";
-                permit_offer_create: "permit_offer_create";
-                permit_offer_accept: "permit_offer_accept";
-                permit_offer_decline: "permit_offer_decline";
-                permit_offer_retract: "permit_offer_retract";
-                permit_offer_expire: "permit_offer_expire";
-                permit_offer_supersede: "permit_offer_supersede";
-                invite_create: "invite_create";
-                invite_delete: "invite_delete";
-                app_settings_update: "app_settings_update";
-            }>;
+            event_type: z.ZodString;
             outcome: z.ZodEnum<{
                 success: "success";
                 failure: "failure";

package/dist/auth/admin_action_specs.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"admin_action_specs.d.ts","sourceRoot":"../src/lib/","sources":["../../src/lib/auth/admin_action_specs.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;GAgBG;AAEH,OAAO,EAAC,CAAC,EAAC,MAAM,KAAK,CAAC;AAEtB,OAAO,KAAK,EAAC,yBAAyB,EAAC,MAAM,2BAA2B,CAAC;AAezE,sEAAsE;AACtE,eAAO,MAAM,wBAAwB,MAAM,CAAC;AAI5C,iFAAiF;AACjF,eAAO,MAAM,qBAAqB,WAAW,CAAC;AAC9C,MAAM,MAAM,qBAAqB,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,qBAAqB,CAAC,CAAC;AAE1E,uCAAuC;AACvC,eAAO,MAAM,sBAAsB;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;kBAGjC,CAAC;AACH,MAAM,MAAM,sBAAsB,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,sBAAsB,CAAC,CAAC;AAE5E,kFAAkF;AAClF,eAAO,MAAM,qBAAqB,WAAW,CAAC;AAC9C,MAAM,MAAM,qBAAqB,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,qBAAqB,CAAC,CAAC;AAE1E,mGAAmG;AACnG,eAAO,MAAM,sBAAsB;;;;;;;;;kBAEjC,CAAC;AACH,MAAM,MAAM,sBAAsB,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,sBAAsB,CAAC,CAAC;AAE5E,4CAA4C;AAC5C,eAAO,MAAM,0BAA0B;;kBAErC,CAAC;AACH,MAAM,MAAM,0BAA0B,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,0BAA0B,CAAC,CAAC;AAEpF,6CAA6C;AAC7C,eAAO,MAAM,2BAA2B;;;kBAGtC,CAAC;AACH,MAAM,MAAM,2BAA2B,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,2BAA2B,CAAC,CAAC;AAEtF,0CAA0C;AAC1C,eAAO,MAAM,wBAAwB;;kBAEnC,CAAC;AACH,MAAM,MAAM,wBAAwB,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,wBAAwB,CAAC,CAAC;AAEhF,2CAA2C;AAC3C,eAAO,MAAM,yBAAyB;;;kBAGpC,CAAC;AACH,MAAM,MAAM,yBAAyB,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,yBAAyB,CAAC,CAAC;AAElF;;;;;GAKG;AACH,eAAO,MAAM,iBAAiB;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;kBAmB5B,CAAC;AACH,MAAM,MAAM,iBAAiB,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,iBAAiB,CAAC,CAAC;AAElE,mCAAmC;AACnC,eAAO,MAAM,kBAAkB;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;kBAE7B,CAAC;AACH,MAAM,MAAM,kBAAkB,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,kBAAkB,CAAC,CAAC;AAEpE,4CAA4C;AAC5C,eAAO,MAAM,0BAA0B;;;kBAWrC,CAAC;AACH,MAAM,MAAM,0BAA0B,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,0BAA0B,CAAC,CAAC;AAEpF,6CAA6C;AAC7C,eAAO,MAAM,2BAA2B;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;kBAEtC,CAAC;AACH,MAAM,MAAM,2BAA2B,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,2BAA2B,CAAC,CAAC;AAEtF,wFAAwF;AACxF,eAAO,MAAM,iBAAiB;;;kBAG5B,CAAC;AACH,MAAM,MAAM,iBAAiB,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,iBAAiB,CAAC,CAAC;AAElE,kCAAkC;AAClC,eAAO,MAAM,kBAAkB;;;;;;;;;;;kBAG7B,CAAC;AACH,MAAM,MAAM,kBAAkB,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,kBAAkB,CAAC,CAAC;AAEpE,+BAA+B;AAC/B,eAAO,MAAM,eAAe,WAAW,CAAC;AACxC,MAAM,MAAM,eAAe,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,eAAe,CAAC,CAAC;AAE9D,2FAA2F;AAC3F,eAAO,MAAM,gBAAgB;;;;;;;;;;;;kBAE3B,CAAC;AACH,MAAM,MAAM,gBAAgB,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,gBAAgB,CAAC,CAAC;AAEhE,iCAAiC;AACjC,eAAO,MAAM,iBAAiB;;kBAE5B,CAAC;AACH,MAAM,MAAM,iBAAiB,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,iBAAiB,CAAC,CAAC;AAElE,kCAAkC;AAClC,eAAO,MAAM,kBAAkB;;kBAE7B,CAAC;AACH,MAAM,MAAM,kBAAkB,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,kBAAkB,CAAC,CAAC;AAEpE,mDAAmD;AACnD,eAAO,MAAM,mBAAmB,WAAW,CAAC;AAC5C,MAAM,MAAM,mBAAmB,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,mBAAmB,CAAC,CAAC;AAEtE,qCAAqC;AACrC,eAAO,MAAM,oBAAoB;;;;;;;kBAE/B,CAAC;AACH,MAAM,MAAM,oBAAoB,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,oBAAoB,CAAC,CAAC;AAExE,uCAAuC;AACvC,eAAO,MAAM,sBAAsB;;kBAEjC,CAAC;AACH,MAAM,MAAM,sBAAsB,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,sBAAsB,CAAC,CAAC;AAE5E,wCAAwC;AACxC,eAAO,MAAM,uBAAuB;;;;;;;;kBAGlC,CAAC;AACH,MAAM,MAAM,uBAAuB,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,uBAAuB,CAAC,CAAC;AAI9E,eAAO,MAAM,8BAA8B;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;CAUN,CAAC;AAEtC,eAAO,MAAM,8BAA8B;;;;;;;;;;;;;;;;;;;;;CAUN,CAAC;AAEtC,eAAO,MAAM,oCAAoC;;;;;;;;;;;;;;;;;CAUZ,CAAC;AAEtC,eAAO,MAAM,kCAAkC;;;;;;;;;;;;;;;;;CAUV,CAAC;AAEtC,eAAO,MAAM,0BAA0B;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;CAUF,CAAC;AAEtC,eAAO,MAAM,oCAAoC;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;CAUZ,CAAC;AAEtC,eAAO,MAAM,yBAAyB;;;;;;;;;;;;;;;;;;;;;;;;;;CAUD,CAAC;AAEtC,eAAO,MAAM,uBAAuB;;;;;;;;;;;;;;;;;;;;;;;;CAUC,CAAC;AAEtC,eAAO,MAAM,yBAAyB;;;;;;;;;;;;;;;;CAUD,CAAC;AAEtC,eAAO,MAAM,4BAA4B;;;;;;;;;;;;;;;;;;;CAUJ,CAAC;AAEtC,eAAO,MAAM,+BAA+B;;;;;;;;;;;;;;;;;;;;;;CAUP,CAAC;AAEtC;;;;;;GAMG;AACH,eAAO,MAAM,sBAAsB,EAAE,KAAK,CAAC,yBAAyB,CAYnE,CAAC"}
+{"version":3,"file":"admin_action_specs.d.ts","sourceRoot":"../src/lib/","sources":["../../src/lib/auth/admin_action_specs.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;GAgBG;AAEH,OAAO,EAAC,CAAC,EAAC,MAAM,KAAK,CAAC;AAEtB,OAAO,KAAK,EAAC,yBAAyB,EAAC,MAAM,2BAA2B,CAAC;AAezE,sEAAsE;AACtE,eAAO,MAAM,wBAAwB,MAAM,CAAC;AAI5C,iFAAiF;AACjF,eAAO,MAAM,qBAAqB,WAAW,CAAC;AAC9C,MAAM,MAAM,qBAAqB,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,qBAAqB,CAAC,CAAC;AAE1E,uCAAuC;AACvC,eAAO,MAAM,sBAAsB;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;kBAGjC,CAAC;AACH,MAAM,MAAM,sBAAsB,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,sBAAsB,CAAC,CAAC;AAE5E,kFAAkF;AAClF,eAAO,MAAM,qBAAqB,WAAW,CAAC;AAC9C,MAAM,MAAM,qBAAqB,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,qBAAqB,CAAC,CAAC;AAE1E,mGAAmG;AACnG,eAAO,MAAM,sBAAsB;;;;;;;;;kBAEjC,CAAC;AACH,MAAM,MAAM,sBAAsB,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,sBAAsB,CAAC,CAAC;AAE5E,4CAA4C;AAC5C,eAAO,MAAM,0BAA0B;;kBAErC,CAAC;AACH,MAAM,MAAM,0BAA0B,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,0BAA0B,CAAC,CAAC;AAEpF,6CAA6C;AAC7C,eAAO,MAAM,2BAA2B;;;kBAGtC,CAAC;AACH,MAAM,MAAM,2BAA2B,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,2BAA2B,CAAC,CAAC;AAEtF,0CAA0C;AAC1C,eAAO,MAAM,wBAAwB;;kBAEnC,CAAC;AACH,MAAM,MAAM,wBAAwB,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,wBAAwB,CAAC,CAAC;AAEhF,2CAA2C;AAC3C,eAAO,MAAM,yBAAyB;;;kBAGpC,CAAC;AACH,MAAM,MAAM,yBAAyB,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,yBAAyB,CAAC,CAAC;AAElF;;;;;GAKG;AACH,eAAO,MAAM,iBAAiB;;;;;;;;;;kBAsB5B,CAAC;AACH,MAAM,MAAM,iBAAiB,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,iBAAiB,CAAC,CAAC;AAElE,mCAAmC;AACnC,eAAO,MAAM,kBAAkB;;;;;;;;;;;;;;;;;;kBAE7B,CAAC;AACH,MAAM,MAAM,kBAAkB,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,kBAAkB,CAAC,CAAC;AAEpE,4CAA4C;AAC5C,eAAO,MAAM,0BAA0B;;;kBAWrC,CAAC;AACH,MAAM,MAAM,0BAA0B,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,0BAA0B,CAAC,CAAC;AAEpF,6CAA6C;AAC7C,eAAO,MAAM,2BAA2B;;;;;;;;;;;;;;;;;;kBAEtC,CAAC;AACH,MAAM,MAAM,2BAA2B,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,2BAA2B,CAAC,CAAC;AAEtF,wFAAwF;AACxF,eAAO,MAAM,iBAAiB;;;kBAG5B,CAAC;AACH,MAAM,MAAM,iBAAiB,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,iBAAiB,CAAC,CAAC;AAElE,kCAAkC;AAClC,eAAO,MAAM,kBAAkB;;;;;;;;;;;kBAG7B,CAAC;AACH,MAAM,MAAM,kBAAkB,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,kBAAkB,CAAC,CAAC;AAEpE,+BAA+B;AAC/B,eAAO,MAAM,eAAe,WAAW,CAAC;AACxC,MAAM,MAAM,eAAe,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,eAAe,CAAC,CAAC;AAE9D,2FAA2F;AAC3F,eAAO,MAAM,gBAAgB;;;;;;;;;;;;kBAE3B,CAAC;AACH,MAAM,MAAM,gBAAgB,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,gBAAgB,CAAC,CAAC;AAEhE,iCAAiC;AACjC,eAAO,MAAM,iBAAiB;;kBAE5B,CAAC;AACH,MAAM,MAAM,iBAAiB,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,iBAAiB,CAAC,CAAC;AAElE,kCAAkC;AAClC,eAAO,MAAM,kBAAkB;;kBAE7B,CAAC;AACH,MAAM,MAAM,kBAAkB,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,kBAAkB,CAAC,CAAC;AAEpE,mDAAmD;AACnD,eAAO,MAAM,mBAAmB,WAAW,CAAC;AAC5C,MAAM,MAAM,mBAAmB,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,mBAAmB,CAAC,CAAC;AAEtE,qCAAqC;AACrC,eAAO,MAAM,oBAAoB;;;;;;;kBAE/B,CAAC;AACH,MAAM,MAAM,oBAAoB,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,oBAAoB,CAAC,CAAC;AAExE,uCAAuC;AACvC,eAAO,MAAM,sBAAsB;;kBAEjC,CAAC;AACH,MAAM,MAAM,sBAAsB,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,sBAAsB,CAAC,CAAC;AAE5E,wCAAwC;AACxC,eAAO,MAAM,uBAAuB;;;;;;;;kBAGlC,CAAC;AACH,MAAM,MAAM,uBAAuB,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,uBAAuB,CAAC,CAAC;AAI9E,eAAO,MAAM,8BAA8B;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;CAUN,CAAC;AAEtC,eAAO,MAAM,8BAA8B;;;;;;;;;;;;;;;;;;;;;CAUN,CAAC;AAEtC,eAAO,MAAM,oCAAoC;;;;;;;;;;;;;;;;;CAUZ,CAAC;AAEtC,eAAO,MAAM,kCAAkC;;;;;;;;;;;;;;;;;CAUV,CAAC;AAEtC,eAAO,MAAM,0BAA0B;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;CAUF,CAAC;AAEtC,eAAO,MAAM,oCAAoC;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;CAUZ,CAAC;AAEtC,eAAO,MAAM,yBAAyB;;;;;;;;;;;;;;;;;;;;;;;;;;CAUD,CAAC;AAEtC,eAAO,MAAM,uBAAuB;;;;;;;;;;;;;;;;;;;;;;;;CAUC,CAAC;AAEtC,eAAO,MAAM,yBAAyB;;;;;;;;;;;;;;;;CAUD,CAAC;AAEtC,eAAO,MAAM,4BAA4B;;;;;;;;;;;;;;;;;;;CAUJ,CAAC;AAEtC,eAAO,MAAM,+BAA+B;;;;;;;;;;;;;;;;;;;;;;CAUP,CAAC;AAEtC;;;;;;GAMG;AACH,eAAO,MAAM,sBAAsB,EAAE,KAAK,CAAC,yBAAyB,CAYnE,CAAC"}

package/dist/auth/admin_action_specs.js

@@ -18,7 +18,7 @@
 import { z } from 'zod';
 import { ROLE_ADMIN, RoleName } from './role_schema.js';
 import { AdminAccountEntryJson, Email, Username } from './account_schema.js';
-import { AdminSessionJson, AuditEventType, AuditLogEventWithUsernamesJson, AuditOutcome, PermitHistoryEventJson, } from './audit_log_schema.js';
+import { AdminSessionJson, AuditEventTypeName, AuditLogEventWithUsernamesJson, AuditOutcome, PermitHistoryEventJson, } from './audit_log_schema.js';
 import { InviteJson, InviteWithUsernamesJson } from './invite_schema.js';
 import { AppSettingsWithUsernameJson } from './app_settings_schema.js';
 import { AUDIT_LOG_DEFAULT_LIMIT } from './audit_log_queries.js';
@@ -64,7 +64,9 @@ export const AdminTokenRevokeAllOutput = z.strictObject({
  * after).
  */
 export const AuditLogListInput = z.strictObject({
-    event_type: AuditEventType.nullish().meta({ description: 'Filter by event type.' }),
+    event_type: AuditEventTypeName.nullish().meta({
+        description: 'Filter by event type. Accepts builtin or consumer-registered names (regex-validated).',
+    }),
     outcome: AuditOutcome.nullish().meta({
         description: 'Filter by outcome (`success` or `failure`).',
     }),

package/dist/auth/admin_actions.d.ts

@@ -55,13 +55,14 @@ export interface AdminActionOptions {
  * Shares shape with `PermitOfferActionDeps` so consumers can pass the same
  * deps to both factories. `log` drives RPC-internal error logging;
  * `on_audit_event` is wired by the two revoke-all mutations so SSE fan-out
- * mirrors the former REST-route behavior.
+ * mirrors the former REST-route behavior. `audit_log_config` flows from
+ * `AppDeps` and is consumed by `audit_log_fire_and_forget`.
  */
-export type AdminActionDeps = Pick<RouteFactoryDeps, 'log' | 'on_audit_event'>;
+export type AdminActionDeps = Pick<RouteFactoryDeps, 'log' | 'on_audit_event' | 'audit_log_config'>;
 /**
  * Create the admin-only RPC actions.
  *
- * @param deps - stateless capabilities (log, on_audit_event)
+ * @param deps - `AdminActionDeps` slice of `AppDeps` (`log`, `on_audit_event`, optional `audit_log_config`)
  * @param options - role schema for `grantable_roles` derivation
  * @returns the `RpcAction` array to spread into a `create_rpc_endpoint` call
  */

package/dist/auth/admin_actions.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"admin_actions.d.ts","sourceRoot":"../src/lib/","sources":["../../src/lib/auth/admin_actions.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;;;;;;;;;;;;;GA4BG;AAEH,OAAO,EAAiC,KAAK,SAAS,EAAC,MAAM,0BAA0B,CAAC;AAExF,OAAO,EAAuB,KAAK,gBAAgB,EAAC,MAAM,kBAAkB,CAAC;AAuB7E,OAAO,EAAC,KAAK,WAAW,EAAC,MAAM,0BAA0B,CAAC;AAK1D,OAAO,KAAK,EAAC,gBAAgB,EAAC,MAAM,WAAW,CAAC;AA8ChD,0CAA0C;AAC1C,MAAM,WAAW,kBAAkB;IAClC;;;;OAIG;IACH,KAAK,CAAC,EAAE,gBAAgB,CAAC;IACzB;;;;;;;OAOG;IACH,YAAY,CAAC,EAAE,WAAW,CAAC;CAC3B;AAED;;;;;;;GAOG;AACH,MAAM,MAAM,eAAe,GAAG,IAAI,CAAC,gBAAgB,EAAE,KAAK,GAAG,gBAAgB,CAAC,CAAC;AAE/E;;;;;;GAMG;AACH,eAAO,MAAM,oBAAoB,GAChC,MAAM,eAAe,EACrB,UAAS,kBAAuB,KAC9B,KAAK,CAAC,SAAS,CA2SjB,CAAC"}
+{"version":3,"file":"admin_actions.d.ts","sourceRoot":"../src/lib/","sources":["../../src/lib/auth/admin_actions.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;;;;;;;;;;;;;GA4BG;AAEH,OAAO,EAAiC,KAAK,SAAS,EAAC,MAAM,0BAA0B,CAAC;AAExF,OAAO,EAAuB,KAAK,gBAAgB,EAAC,MAAM,kBAAkB,CAAC;AAuB7E,OAAO,EAAC,KAAK,WAAW,EAAC,MAAM,0BAA0B,CAAC;AAK1D,OAAO,KAAK,EAAC,gBAAgB,EAAC,MAAM,WAAW,CAAC;AA8ChD,0CAA0C;AAC1C,MAAM,WAAW,kBAAkB;IAClC;;;;OAIG;IACH,KAAK,CAAC,EAAE,gBAAgB,CAAC;IACzB;;;;;;;OAOG;IACH,YAAY,CAAC,EAAE,WAAW,CAAC;CAC3B;AAED;;;;;;;;GAQG;AACH,MAAM,MAAM,eAAe,GAAG,IAAI,CAAC,gBAAgB,EAAE,KAAK,GAAG,gBAAgB,GAAG,kBAAkB,CAAC,CAAC;AAEpG;;;;;;GAMG;AACH,eAAO,MAAM,oBAAoB,GAChC,MAAM,eAAe,EACrB,UAAS,kBAAuB,KAC9B,KAAK,CAAC,SAAS,CAmSjB,CAAC"}