@fuzdev/fuz_app 0.53.0 → 0.55.0

package/dist/http/error_schemas.d.ts

@@ -41,6 +41,39 @@ export declare const ERROR_BEARER_REJECTED_BROWSER: "bearer_token_rejected_in_br
 export declare const ERROR_INVALID_TOKEN: "invalid_token";
 /** Token references a deleted account. */
 export declare const ERROR_ACCOUNT_NOT_FOUND: "account_not_found";
+/**
+ * Multi-actor account requires the request to carry an explicit `acting`
+ * field naming the actor the request is acting as, so the dispatcher's
+ * authorization phase doesn't pick a default actor silently. Returned
+ * with the available actors so the client can prompt.
+ */
+export declare const ERROR_ACTOR_REQUIRED: "actor_required";
+/**
+ * Supplied `acting` field does not name an actor on the authenticated
+ * account.
+ */
+export declare const ERROR_ACTOR_NOT_ON_ACCOUNT: "actor_not_on_account";
+/**
+ * Authenticated account exists but has no actors. Server invariant
+ * violation — signup / bootstrap always create an actor in the same
+ * transaction. Surfaced from the dispatcher's authorization phase as a
+ * 500 so the operator sees the corruption signal rather than a confusing
+ * 4xx. Distinct from `ERROR_ACCOUNT_VANISHED`: the actor list was
+ * enumerated successfully and came back empty.
+ */
+export declare const ERROR_NO_ACTORS_ON_ACCOUNT: "no_actors_on_account";
+/**
+ * Authentication validated an account, but a follow-up read in the
+ * authorization phase came back null — the account or its named actor
+ * row was deleted between the credential check and the dispatcher's
+ * `build_request_context` / `build_account_context` step. Torn read,
+ * not a missing-actor invariant violation. Surfaced as 500 so the
+ * operator sees the race signal; clients can retry. Distinct from
+ * `ERROR_ACCOUNT_NOT_FOUND` (stale token referencing a long-deleted
+ * account, raised at credential validation) and
+ * `ERROR_NO_ACTORS_ON_ACCOUNT` (the actor list enumerated empty).
+ */
+export declare const ERROR_ACCOUNT_VANISHED: "account_vanished";
 /** Keeper routes require daemon_token credential type. */
 export declare const ERROR_KEEPER_REQUIRES_DAEMON_TOKEN: "keeper_requires_daemon_token";
 /** Daemon token header present but malformed or not matching current/previous token. */
@@ -132,6 +165,44 @@ export declare const ForeignKeyError: z.ZodObject<{
     error: z.ZodLiteral<"foreign_key_violation">;
 }, z.core.$loose>;
 export type ForeignKeyError = z.infer<typeof ForeignKeyError>;
+/**
+ * Authorization-phase failure shapes. Surfaced when the dispatcher's
+ * `apply_authorization_phase` rejects a request before the handler runs —
+ * the route is acting-aware (input declares `acting?: ActingActor` or
+ * auth requires permits), but actor resolution failed.
+ *
+ * 400: `actor_required` (with `available[]`) for unspecified-actor on
+ * a multi-actor account; `actor_not_on_account` for a supplied actor
+ * id that doesn't belong to the authenticated account.
+ *
+ * 500: `no_actors_on_account` for a signup-invariant violation (the
+ * actor list enumerated empty); `account_vanished` for a torn-read
+ * race (account/actor row deleted between credential validation and
+ * the dispatcher's follow-up read).
+ *
+ * Used by `derive_error_schemas` when `acting_aware` is true so the
+ * merged error surface matches what the dispatcher actually emits.
+ */
+export declare const ActorRequiredError: z.ZodObject<{
+    error: z.ZodLiteral<"actor_required">;
+    available: z.ZodArray<z.ZodObject<{
+        id: z.ZodString;
+        name: z.ZodString;
+    }, z.core.$loose>>;
+}, z.core.$loose>;
+export type ActorRequiredError = z.infer<typeof ActorRequiredError>;
+export declare const ActorNotOnAccountError: z.ZodObject<{
+    error: z.ZodLiteral<"actor_not_on_account">;
+}, z.core.$loose>;
+export type ActorNotOnAccountError = z.infer<typeof ActorNotOnAccountError>;
+export declare const NoActorsOnAccountError: z.ZodObject<{
+    error: z.ZodLiteral<"no_actors_on_account">;
+}, z.core.$loose>;
+export type NoActorsOnAccountError = z.infer<typeof NoActorsOnAccountError>;
+export declare const AccountVanishedError: z.ZodObject<{
+    error: z.ZodLiteral<"account_vanished">;
+}, z.core.$loose>;
+export type AccountVanishedError = z.infer<typeof AccountVanishedError>;
 /**
  * Error schema map — maps HTTP status codes to Zod schemas.
  *
@@ -167,6 +238,26 @@ export type RateLimitKey = z.infer<typeof RateLimitKey>;
  * - **auth: role**: 401 + 403 (with `required_role`)
  * - **auth: keeper**: 401 + 403 (keeper-specific)
  * - **rate_limit**: 429 (rate limit exceeded with `retry_after`)
+ * - **acting_aware**: extends 400 with `ActorRequiredError` / `ActorNotOnAccountError`
+ *   and adds 500 union of `NoActorsOnAccountError` / `AccountVanishedError`. The
+ *   dispatcher's authorization phase emits these on routes whose input declares
+ *   `acting?: ActingActor` or whose auth requires permits (`role` / `keeper`); the
+ *   route's surface must reflect them so DEV-mode error-schema validation in
+ *   `wrap_output_validation` doesn't fail when the auth phase fires before the
+ *   handler. See `http/CLAUDE.md` § Three-layer error-schema merge.
+ *
+ * `acting_aware` is computed at the merge call site (it requires inspecting
+ * the input schema for `acting?: ActingActor`, which lives in `auth/`). This
+ * keeps `http/` auth-agnostic — the per-route flag flows in via the optional
+ * `is_acting_aware` callback on `apply_route_specs` / `generate_app_surface`.
  */
-export declare const derive_error_schemas: (auth: RouteAuth, has_input: boolean, has_params?: boolean, has_query?: boolean, rate_limit?: RateLimitKey) => RouteErrorSchemas;
+export interface DeriveErrorSchemasOptions {
+    auth: RouteAuth;
+    has_input?: boolean;
+    has_params?: boolean;
+    has_query?: boolean;
+    rate_limit?: RateLimitKey;
+    acting_aware?: boolean;
+}
+export declare const derive_error_schemas: ({ auth, has_input, has_params, has_query, rate_limit, acting_aware, }: DeriveErrorSchemasOptions) => RouteErrorSchemas;
 //# sourceMappingURL=error_schemas.d.ts.map

package/dist/http/error_schemas.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"error_schemas.d.ts","sourceRoot":"../src/lib/","sources":["../../src/lib/http/error_schemas.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;GAYG;AAEH,OAAO,EAAC,CAAC,EAAC,MAAM,KAAK,CAAC;AAEtB,OAAO,KAAK,EAAC,SAAS,EAAC,MAAM,iBAAiB,CAAC;AAI/C,0CAA0C;AAC1C,eAAO,MAAM,0BAA0B,EAAG,sBAA+B,CAAC;AAE1E,uDAAuD;AACvD,eAAO,MAAM,uBAAuB,EAAG,mBAA4B,CAAC;AAEpE,6CAA6C;AAC7C,eAAO,MAAM,0BAA0B,EAAG,sBAA+B,CAAC;AAE1E,8CAA8C;AAC9C,eAAO,MAAM,0BAA0B,EAAG,sBAA+B,CAAC;AAI1E,wCAAwC;AACxC,eAAO,MAAM,6BAA6B,EAAG,yBAAkC,CAAC;AAEhF,+CAA+C;AAC/C,eAAO,MAAM,8BAA8B,EAAG,0BAAmC,CAAC;AAElF,yCAAyC;AACzC,eAAO,MAAM,yBAAyB,EAAG,qBAA8B,CAAC;AAExE,sFAAsF;AACtF,eAAO,MAAM,yBAAyB,EAAG,qBAA8B,CAAC;AAExE,qDAAqD;AACrD,eAAO,MAAM,uBAAuB,EAAG,mBAA4B,CAAC;AAIpE,uCAAuC;AACvC,eAAO,MAAM,sBAAsB,EAAG,kBAA2B,CAAC;AAElE,wCAAwC;AACxC,eAAO,MAAM,uBAAuB,EAAG,mBAA4B,CAAC;AAEpE,sEAAsE;AACtE,eAAO,MAAM,6BAA6B,EAAG,0CAAmD,CAAC;AAEjG,uEAAuE;AACvE,eAAO,MAAM,mBAAmB,EAAG,eAAwB,CAAC;AAE5D,0CAA0C;AAC1C,eAAO,MAAM,uBAAuB,EAAG,mBAA4B,CAAC;AAIpE,0DAA0D;AAC1D,eAAO,MAAM,kCAAkC,EAAG,8BAAuC,CAAC;AAE1F,wFAAwF;AACxF,eAAO,MAAM,0BAA0B,EAAG,sBAA+B,CAAC;AAE1E,8EAA8E;AAC9E,eAAO,MAAM,mCAAmC,EAAG,+BAAwC,CAAC;AAE5F,uDAAuD;AACvD,eAAO,MAAM,8BAA8B,EAAG,0BAAmC,CAAC;AAIlF,qEAAqE;AACrE,eAAO,MAAM,0BAA0B,EAAG,sBAA+B,CAAC;AAE1E,8CAA8C;AAC9C,eAAO,MAAM,wBAAwB,EAAG,oBAA6B,CAAC;AAEtE,8DAA8D;AAC9D,eAAO,MAAM,8BAA8B,EAAG,0BAAmC,CAAC;AAIlF,0DAA0D;AAC1D,eAAO,MAAM,wBAAwB,EAAG,oBAA6B,CAAC;AAEtE,0GAA0G;AAC1G,eAAO,MAAM,qBAAqB,EAAG,iBAA0B,CAAC;AAEhE,gDAAgD;AAChD,eAAO,MAAM,sBAAsB,EAAG,kBAA2B,CAAC;AAElE,sDAAsD;AACtD,eAAO,MAAM,+BAA+B,EAAG,2BAAoC,CAAC;AAEpF,qEAAqE;AACrE,eAAO,MAAM,sBAAsB,EAAG,kBAA2B,CAAC;AAElE,6DAA6D;AAC7D,eAAO,MAAM,oCAAoC,EAAG,gCAAyC,CAAC;AAE9F,0DAA0D;AAC1D,eAAO,MAAM,iCAAiC,EAAG,6BAAsC,CAAC;AAIxF,6DAA6D;AAC7D,eAAO,MAAM,4BAA4B,EAAG,wBAAiC,CAAC;AAE9E,4DAA4D;AAC5D,eAAO,MAAM,sBAAsB,EAAG,kBAA2B,CAAC;AAElE,oEAAoE;AACpE,eAAO,MAAM,wBAAwB,EAAG,oBAA6B,CAAC;AAItE,kDAAkD;AAClD,eAAO,MAAM,2BAA2B,EAAG,uBAAgC,CAAC;AAE5E,oDAAoD;AACpD,eAAO,MAAM,qBAAqB,EAAG,iBAA0B,CAAC;AAEhE,iEAAiE;AACjE,eAAO,MAAM,0BAA0B,EAAG,sBAA+B,CAAC;AAE1E,6CAA6C;AAC7C,eAAO,MAAM,mBAAmB,EAAG,eAAwB,CAAC;AAE5D,wEAAwE;AACxE,eAAO,MAAM,gCAAgC,EAAG,4BAAqC,CAAC;AAKtF,iFAAiF;AACjF,eAAO,MAAM,QAAQ;;iBAAqC,CAAC;AAC3D,MAAM,MAAM,QAAQ,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,QAAQ,CAAC,CAAC;AAEhD;;;;GAIG;AACH,eAAO,MAAM,eAAe;;;;;;;iBAS1B,CAAC;AACH,MAAM,MAAM,eAAe,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,eAAe,CAAC,CAAC;AAE9D,yFAAyF;AACzF,eAAO,MAAM,eAAe;;;iBAG1B,CAAC;AACH,MAAM,MAAM,eAAe,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,eAAe,CAAC,CAAC;AAE9D,4FAA4F;AAC5F,eAAO,MAAM,WAAW;;;iBAGtB,CAAC;AACH,MAAM,MAAM,WAAW,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,WAAW,CAAC,CAAC;AAEtD,2EAA2E;AAC3E,eAAO,MAAM,cAAc;;;iBAGzB,CAAC;AACH,MAAM,MAAM,cAAc,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,cAAc,CAAC,CAAC;AAE5D,uFAAuF;AACvF,eAAO,MAAM,oBAAoB;;iBAE/B,CAAC;AACH,MAAM,MAAM,oBAAoB,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,oBAAoB,CAAC,CAAC;AAExE,qFAAqF;AACrF,eAAO,MAAM,eAAe;;iBAE1B,CAAC;AACH,MAAM,MAAM,eAAe,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,eAAe,CAAC,CAAC;AAE9D;;;;GAIG;AACH,MAAM,MAAM,iBAAiB,GAAG,OAAO,CAAC,MAAM,CAAC,MAAM,EAAE,CAAC,CAAC,OAAO,CAAC,CAAC,CAAC;AAEnE;;;;;;;;;GASG;AACH,eAAO,MAAM,YAAY;;;;EAAoC,CAAC;AAC9D,MAAM,MAAM,YAAY,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,YAAY,CAAC,CAAC;AAExD;;;;;;;;;;;;;GAaG;AACH,eAAO,MAAM,oBAAoB,GAChC,MAAM,SAAS,EACf,WAAW,OAAO,EAClB,oBAAkB,EAClB,mBAAiB,EACjB,aAAa,YAAY,KACvB,iBA4BF,CAAC"}
+{"version":3,"file":"error_schemas.d.ts","sourceRoot":"../src/lib/","sources":["../../src/lib/http/error_schemas.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;GAYG;AAEH,OAAO,EAAC,CAAC,EAAC,MAAM,KAAK,CAAC;AAEtB,OAAO,KAAK,EAAC,SAAS,EAAC,MAAM,iBAAiB,CAAC;AAI/C,0CAA0C;AAC1C,eAAO,MAAM,0BAA0B,EAAG,sBAA+B,CAAC;AAE1E,uDAAuD;AACvD,eAAO,MAAM,uBAAuB,EAAG,mBAA4B,CAAC;AAEpE,6CAA6C;AAC7C,eAAO,MAAM,0BAA0B,EAAG,sBAA+B,CAAC;AAE1E,8CAA8C;AAC9C,eAAO,MAAM,0BAA0B,EAAG,sBAA+B,CAAC;AAI1E,wCAAwC;AACxC,eAAO,MAAM,6BAA6B,EAAG,yBAAkC,CAAC;AAEhF,+CAA+C;AAC/C,eAAO,MAAM,8BAA8B,EAAG,0BAAmC,CAAC;AAElF,yCAAyC;AACzC,eAAO,MAAM,yBAAyB,EAAG,qBAA8B,CAAC;AAExE,sFAAsF;AACtF,eAAO,MAAM,yBAAyB,EAAG,qBAA8B,CAAC;AAExE,qDAAqD;AACrD,eAAO,MAAM,uBAAuB,EAAG,mBAA4B,CAAC;AAIpE,uCAAuC;AACvC,eAAO,MAAM,sBAAsB,EAAG,kBAA2B,CAAC;AAElE,wCAAwC;AACxC,eAAO,MAAM,uBAAuB,EAAG,mBAA4B,CAAC;AAEpE,sEAAsE;AACtE,eAAO,MAAM,6BAA6B,EAAG,0CAAmD,CAAC;AAEjG,uEAAuE;AACvE,eAAO,MAAM,mBAAmB,EAAG,eAAwB,CAAC;AAE5D,0CAA0C;AAC1C,eAAO,MAAM,uBAAuB,EAAG,mBAA4B,CAAC;AAEpE;;;;;GAKG;AACH,eAAO,MAAM,oBAAoB,EAAG,gBAAyB,CAAC;AAE9D;;;GAGG;AACH,eAAO,MAAM,0BAA0B,EAAG,sBAA+B,CAAC;AAE1E;;;;;;;GAOG;AACH,eAAO,MAAM,0BAA0B,EAAG,sBAA+B,CAAC;AAE1E;;;;;;;;;;GAUG;AACH,eAAO,MAAM,sBAAsB,EAAG,kBAA2B,CAAC;AAIlE,0DAA0D;AAC1D,eAAO,MAAM,kCAAkC,EAAG,8BAAuC,CAAC;AAE1F,wFAAwF;AACxF,eAAO,MAAM,0BAA0B,EAAG,sBAA+B,CAAC;AAE1E,8EAA8E;AAC9E,eAAO,MAAM,mCAAmC,EAAG,+BAAwC,CAAC;AAE5F,uDAAuD;AACvD,eAAO,MAAM,8BAA8B,EAAG,0BAAmC,CAAC;AAIlF,qEAAqE;AACrE,eAAO,MAAM,0BAA0B,EAAG,sBAA+B,CAAC;AAE1E,8CAA8C;AAC9C,eAAO,MAAM,wBAAwB,EAAG,oBAA6B,CAAC;AAEtE,8DAA8D;AAC9D,eAAO,MAAM,8BAA8B,EAAG,0BAAmC,CAAC;AAIlF,0DAA0D;AAC1D,eAAO,MAAM,wBAAwB,EAAG,oBAA6B,CAAC;AAEtE,0GAA0G;AAC1G,eAAO,MAAM,qBAAqB,EAAG,iBAA0B,CAAC;AAEhE,gDAAgD;AAChD,eAAO,MAAM,sBAAsB,EAAG,kBAA2B,CAAC;AAElE,sDAAsD;AACtD,eAAO,MAAM,+BAA+B,EAAG,2BAAoC,CAAC;AAEpF,qEAAqE;AACrE,eAAO,MAAM,sBAAsB,EAAG,kBAA2B,CAAC;AAElE,6DAA6D;AAC7D,eAAO,MAAM,oCAAoC,EAAG,gCAAyC,CAAC;AAE9F,0DAA0D;AAC1D,eAAO,MAAM,iCAAiC,EAAG,6BAAsC,CAAC;AAIxF,6DAA6D;AAC7D,eAAO,MAAM,4BAA4B,EAAG,wBAAiC,CAAC;AAE9E,4DAA4D;AAC5D,eAAO,MAAM,sBAAsB,EAAG,kBAA2B,CAAC;AAElE,oEAAoE;AACpE,eAAO,MAAM,wBAAwB,EAAG,oBAA6B,CAAC;AAItE,kDAAkD;AAClD,eAAO,MAAM,2BAA2B,EAAG,uBAAgC,CAAC;AAE5E,oDAAoD;AACpD,eAAO,MAAM,qBAAqB,EAAG,iBAA0B,CAAC;AAEhE,iEAAiE;AACjE,eAAO,MAAM,0BAA0B,EAAG,sBAA+B,CAAC;AAE1E,6CAA6C;AAC7C,eAAO,MAAM,mBAAmB,EAAG,eAAwB,CAAC;AAE5D,wEAAwE;AACxE,eAAO,MAAM,gCAAgC,EAAG,4BAAqC,CAAC;AAKtF,iFAAiF;AACjF,eAAO,MAAM,QAAQ;;iBAAqC,CAAC;AAC3D,MAAM,MAAM,QAAQ,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,QAAQ,CAAC,CAAC;AAEhD;;;;GAIG;AACH,eAAO,MAAM,eAAe;;;;;;;iBAS1B,CAAC;AACH,MAAM,MAAM,eAAe,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,eAAe,CAAC,CAAC;AAE9D,yFAAyF;AACzF,eAAO,MAAM,eAAe;;;iBAG1B,CAAC;AACH,MAAM,MAAM,eAAe,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,eAAe,CAAC,CAAC;AAE9D,4FAA4F;AAC5F,eAAO,MAAM,WAAW;;;iBAGtB,CAAC;AACH,MAAM,MAAM,WAAW,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,WAAW,CAAC,CAAC;AAEtD,2EAA2E;AAC3E,eAAO,MAAM,cAAc;;;iBAGzB,CAAC;AACH,MAAM,MAAM,cAAc,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,cAAc,CAAC,CAAC;AAE5D,uFAAuF;AACvF,eAAO,MAAM,oBAAoB;;iBAE/B,CAAC;AACH,MAAM,MAAM,oBAAoB,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,oBAAoB,CAAC,CAAC;AAExE,qFAAqF;AACrF,eAAO,MAAM,eAAe;;iBAE1B,CAAC;AACH,MAAM,MAAM,eAAe,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,eAAe,CAAC,CAAC;AAE9D;;;;;;;;;;;;;;;;;GAiBG;AACH,eAAO,MAAM,kBAAkB;;;;;;iBAG7B,CAAC;AACH,MAAM,MAAM,kBAAkB,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,kBAAkB,CAAC,CAAC;AAEpE,eAAO,MAAM,sBAAsB;;iBAEjC,CAAC;AACH,MAAM,MAAM,sBAAsB,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,sBAAsB,CAAC,CAAC;AAE5E,eAAO,MAAM,sBAAsB;;iBAEjC,CAAC;AACH,MAAM,MAAM,sBAAsB,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,sBAAsB,CAAC,CAAC;AAE5E,eAAO,MAAM,oBAAoB;;iBAE/B,CAAC;AACH,MAAM,MAAM,oBAAoB,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,oBAAoB,CAAC,CAAC;AAExE;;;;GAIG;AACH,MAAM,MAAM,iBAAiB,GAAG,OAAO,CAAC,MAAM,CAAC,MAAM,EAAE,CAAC,CAAC,OAAO,CAAC,CAAC,CAAC;AAEnE;;;;;;;;;GASG;AACH,eAAO,MAAM,YAAY;;;;EAAoC,CAAC;AAC9D,MAAM,MAAM,YAAY,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,YAAY,CAAC,CAAC;AAExD;;;;;;;;;;;;;;;;;;;;;;;;;GAyBG;AACH,MAAM,WAAW,yBAAyB;IACzC,IAAI,EAAE,SAAS,CAAC;IAChB,SAAS,CAAC,EAAE,OAAO,CAAC;IACpB,UAAU,CAAC,EAAE,OAAO,CAAC;IACrB,SAAS,CAAC,EAAE,OAAO,CAAC;IACpB,UAAU,CAAC,EAAE,YAAY,CAAC;IAC1B,YAAY,CAAC,EAAE,OAAO,CAAC;CACvB;AAED,eAAO,MAAM,oBAAoB,GAAI,uEAOlC,yBAAyB,KAAG,iBAkC9B,CAAC"}

package/dist/http/error_schemas.js

@@ -43,6 +43,39 @@ export const ERROR_BEARER_REJECTED_BROWSER = 'bearer_token_rejected_in_browser_c
 export const ERROR_INVALID_TOKEN = 'invalid_token';
 /** Token references a deleted account. */
 export const ERROR_ACCOUNT_NOT_FOUND = 'account_not_found';
+/**
+ * Multi-actor account requires the request to carry an explicit `acting`
+ * field naming the actor the request is acting as, so the dispatcher's
+ * authorization phase doesn't pick a default actor silently. Returned
+ * with the available actors so the client can prompt.
+ */
+export const ERROR_ACTOR_REQUIRED = 'actor_required';
+/**
+ * Supplied `acting` field does not name an actor on the authenticated
+ * account.
+ */
+export const ERROR_ACTOR_NOT_ON_ACCOUNT = 'actor_not_on_account';
+/**
+ * Authenticated account exists but has no actors. Server invariant
+ * violation — signup / bootstrap always create an actor in the same
+ * transaction. Surfaced from the dispatcher's authorization phase as a
+ * 500 so the operator sees the corruption signal rather than a confusing
+ * 4xx. Distinct from `ERROR_ACCOUNT_VANISHED`: the actor list was
+ * enumerated successfully and came back empty.
+ */
+export const ERROR_NO_ACTORS_ON_ACCOUNT = 'no_actors_on_account';
+/**
+ * Authentication validated an account, but a follow-up read in the
+ * authorization phase came back null — the account or its named actor
+ * row was deleted between the credential check and the dispatcher's
+ * `build_request_context` / `build_account_context` step. Torn read,
+ * not a missing-actor invariant violation. Surfaced as 500 so the
+ * operator sees the race signal; clients can retry. Distinct from
+ * `ERROR_ACCOUNT_NOT_FOUND` (stale token referencing a long-deleted
+ * account, raised at credential validation) and
+ * `ERROR_NO_ACTORS_ON_ACCOUNT` (the actor list enumerated empty).
+ */
+export const ERROR_ACCOUNT_VANISHED = 'account_vanished';
 // --- Keeper / daemon token ---
 /** Keeper routes require daemon_token credential type. */
 export const ERROR_KEEPER_REQUIRES_DAEMON_TOKEN = 'keeper_requires_daemon_token';
@@ -132,6 +165,37 @@ export const PayloadTooLargeError = z.looseObject({
 export const ForeignKeyError = z.looseObject({
     error: z.literal(ERROR_FOREIGN_KEY_VIOLATION),
 });
+/**
+ * Authorization-phase failure shapes. Surfaced when the dispatcher's
+ * `apply_authorization_phase` rejects a request before the handler runs —
+ * the route is acting-aware (input declares `acting?: ActingActor` or
+ * auth requires permits), but actor resolution failed.
+ *
+ * 400: `actor_required` (with `available[]`) for unspecified-actor on
+ * a multi-actor account; `actor_not_on_account` for a supplied actor
+ * id that doesn't belong to the authenticated account.
+ *
+ * 500: `no_actors_on_account` for a signup-invariant violation (the
+ * actor list enumerated empty); `account_vanished` for a torn-read
+ * race (account/actor row deleted between credential validation and
+ * the dispatcher's follow-up read).
+ *
+ * Used by `derive_error_schemas` when `acting_aware` is true so the
+ * merged error surface matches what the dispatcher actually emits.
+ */
+export const ActorRequiredError = z.looseObject({
+    error: z.literal(ERROR_ACTOR_REQUIRED),
+    available: z.array(z.looseObject({ id: z.string(), name: z.string() })),
+});
+export const ActorNotOnAccountError = z.looseObject({
+    error: z.literal(ERROR_ACTOR_NOT_ON_ACCOUNT),
+});
+export const NoActorsOnAccountError = z.looseObject({
+    error: z.literal(ERROR_NO_ACTORS_ON_ACCOUNT),
+});
+export const AccountVanishedError = z.looseObject({
+    error: z.literal(ERROR_ACCOUNT_VANISHED),
+});
 /**
  * Rate limit key type — declares what a route or RPC action's rate limiter
  * is keyed on.
@@ -143,23 +207,16 @@ export const ForeignKeyError = z.looseObject({
  * - `'both'` — both keys.
  */
 export const RateLimitKey = z.enum(['ip', 'account', 'both']);
-/**
- * Derive error schemas from a route's auth requirement, input schema, and rate limit config.
- *
- * Returns the error schemas that middleware will auto-produce for this route.
- * Route handlers can declare additional error schemas via `RouteSpec.errors`;
- * explicit entries override auto-derived ones for the same status code.
- *
- * Derivation rules:
- * - **Has input schema** (non-null) or **has params schema** or **has query schema**: 400 (validation error with issues)
- * - **auth: authenticated**: 401
- * - **auth: role**: 401 + 403 (with `required_role`)
- * - **auth: keeper**: 401 + 403 (keeper-specific)
- * - **rate_limit**: 429 (rate limit exceeded with `retry_after`)
- */
-export const derive_error_schemas = (auth, has_input, has_params = false, has_query = false, rate_limit) => {
+export const derive_error_schemas = ({ auth, has_input = false, has_params = false, has_query = false, rate_limit, acting_aware = false, }) => {
     const errors = {};
-    if (has_input || has_params || has_query) {
+    const has_validation = has_input || has_params || has_query;
+    if (acting_aware) {
+        errors[400] = has_validation
+            ? z.union([ValidationError, ActorRequiredError, ActorNotOnAccountError])
+            : z.union([ActorRequiredError, ActorNotOnAccountError]);
+        errors[500] = z.union([NoActorsOnAccountError, AccountVanishedError]);
+    }
+    else if (has_validation) {
         errors[400] = ValidationError;
     }
     switch (auth.type) {

package/dist/http/jsonrpc_errors.d.ts

@@ -16,6 +16,7 @@
  *
  * @module
  */
+import type { ContentfulStatusCode } from 'hono/utils/http-status';
 import { type JsonrpcErrorCode, type JsonrpcErrorObject } from './jsonrpc.js';
 /** Default message for unknown errors. */
 export declare const UNKNOWN_ERROR_MESSAGE = "unknown error";
@@ -97,13 +98,37 @@ export declare const HTTP_STATUS_TO_JSONRPC_ERROR_CODE: Record<number, JsonrpcEr
  * Map a JSON-RPC error code to an HTTP status code.
  *
  * Returns 500 for unrecognized codes (consumer-defined codes
- * without a mapping default to internal server error).
+ * without a mapping default to internal server error). The return
+ * is narrowed to Hono's `ContentfulStatusCode` so call sites can
+ * pass the result to `c.json(body, status)` without `as any` —
+ * 499 (nginx "client closed request") is non-standard and gets
+ * absorbed by the cast here rather than at every dispatcher branch.
  */
-export declare const jsonrpc_error_code_to_http_status: (code: JsonrpcErrorCode) => number;
+export declare const jsonrpc_error_code_to_http_status: (code: JsonrpcErrorCode) => ContentfulStatusCode;
 /**
  * Map an HTTP status code to a JSON-RPC error code.
  *
  * Returns `internal_error` (-32603) for unrecognized status codes.
  */
 export declare const http_status_to_jsonrpc_error_code: (status: number) => JsonrpcErrorCode;
+/**
+ * Reverse map of `JSONRPC_ERROR_CODES` — JSON-RPC error code → name.
+ *
+ * Used by REST emitters that need a stable string identifier for the
+ * code in their flat-shape error body (`{error: '<name>', ...}`)
+ * without inventing a separate vocabulary. Built once at module load
+ * from the canonical `JSONRPC_ERROR_CODES` map so the two cannot drift.
+ *
+ * Consumer-defined codes outside the standard taxonomy are not present;
+ * `jsonrpc_error_code_to_name` falls back to `'internal_error'` so the
+ * REST shape always carries some reason rather than `undefined`.
+ */
+export declare const JSONRPC_ERROR_CODE_TO_NAME: Readonly<Record<number, JsonrpcErrorName>>;
+/**
+ * Map a JSON-RPC error code to its canonical name (`'not_found'`,
+ * `'forbidden'`, etc.). Falls back to `'internal_error'` for codes
+ * outside the standard taxonomy so REST emitters that read this for
+ * their `error` field always have a stable string to emit.
+ */
+export declare const jsonrpc_error_code_to_name: (code: JsonrpcErrorCode) => JsonrpcErrorName;
 //# sourceMappingURL=jsonrpc_errors.d.ts.map

package/dist/http/jsonrpc_errors.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"jsonrpc_errors.d.ts","sourceRoot":"../src/lib/","sources":["../../src/lib/http/jsonrpc_errors.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;;GAiBG;AAEH,OAAO,EAMN,KAAK,gBAAgB,EACrB,KAAK,kBAAkB,EACvB,MAAM,cAAc,CAAC;AAEtB,0CAA0C;AAC1C,eAAO,MAAM,qBAAqB,kBAAkB,CAAC;AAErD,sEAAsE;AACtE,MAAM,MAAM,gBAAgB,GACzB,aAAa,GACb,iBAAiB,GACjB,kBAAkB,GAClB,gBAAgB,GAChB,gBAAgB,GAChB,iBAAiB,GACjB,WAAW,GACX,WAAW,GACX,UAAU,GACV,kBAAkB,GAClB,cAAc,GACd,qBAAqB,GACrB,SAAS,GACT,gBAAgB,GAChB,mBAAmB,CAAC;AAEvB;;;;;;;;;;GAUG;AACH,eAAO,MAAM,mBAAmB,EA0C1B,QAAQ,CAAC,MAAM,CAAC,gBAAgB,EAAE,gBAAgB,CAAC,CAAC,CAAC;AAE3D;;;;;;;;GAQG;AACH,eAAO,MAAM,sBAAsB,EAmG7B,QAAQ,CAAC,MAAM,CAAC,gBAAgB,EAAE,CAAC,GAAG,IAAI,EAAE,KAAK,CAAC,GAAG,CAAC,KAAK,kBAAkB,CAAC,CAAC,CAAC;AAEtF;;;;;GAKG;AACH,qBAAa,kBAAmB,SAAQ,KAAK;IAC5C,IAAI,EAAE,gBAAgB,CAAC;IACvB,IAAI,CAAC,EAAE,OAAO,CAAC;gBAEH,IAAI,EAAE,gBAAgB,EAAE,OAAO,EAAE,MAAM,EAAE,IAAI,CAAC,EAAE,OAAO,EAAE,OAAO,CAAC,EAAE,YAAY;CAK3F;AAWD;;;;GAIG;AACH,eAAO,MAAM,cAAc;8CAXQ,kBAAkB;kDAAlB,kBAAkB;mDAAlB,kBAAkB;iDAAlB,kBAAkB;iDAAlB,kBAAkB;kDAAlB,kBAAkB;4CAAlB,kBAAkB;4CAAlB,kBAAkB;2CAAlB,kBAAkB;mDAAlB,kBAAkB;+CAAlB,kBAAkB;sDAAlB,kBAAkB;0CAAlB,kBAAkB;iDAAlB,kBAAkB;oDAAlB,kBAAkB;CA2BqC,CAAC;AAI3F;;;;;;;GAOG;AACH,eAAO,MAAM,iCAAiC,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAkBpE,CAAC;AAEF;;;;;;GAMG;AACH,eAAO,MAAM,iCAAiC,EAAE,MAAM,CAAC,MAAM,EAAE,gBAAgB,CAMzC,CAAC;AAEvC;;;;;GAKG;AACH,eAAO,MAAM,iCAAiC,GAAI,MAAM,gBAAgB,KAAG,MAClB,CAAC;AAE1D;;;;GAIG;AACH,eAAO,MAAM,iCAAiC,GAAI,QAAQ,MAAM,KAAG,gBACa,CAAC"}
+{"version":3,"file":"jsonrpc_errors.d.ts","sourceRoot":"../src/lib/","sources":["../../src/lib/http/jsonrpc_errors.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;;GAiBG;AAEH,OAAO,KAAK,EAAC,oBAAoB,EAAC,MAAM,wBAAwB,CAAC;AAEjE,OAAO,EAMN,KAAK,gBAAgB,EACrB,KAAK,kBAAkB,EACvB,MAAM,cAAc,CAAC;AAEtB,0CAA0C;AAC1C,eAAO,MAAM,qBAAqB,kBAAkB,CAAC;AAErD,sEAAsE;AACtE,MAAM,MAAM,gBAAgB,GACzB,aAAa,GACb,iBAAiB,GACjB,kBAAkB,GAClB,gBAAgB,GAChB,gBAAgB,GAChB,iBAAiB,GACjB,WAAW,GACX,WAAW,GACX,UAAU,GACV,kBAAkB,GAClB,cAAc,GACd,qBAAqB,GACrB,SAAS,GACT,gBAAgB,GAChB,mBAAmB,CAAC;AAEvB;;;;;;;;;;GAUG;AACH,eAAO,MAAM,mBAAmB,EA0C1B,QAAQ,CAAC,MAAM,CAAC,gBAAgB,EAAE,gBAAgB,CAAC,CAAC,CAAC;AAE3D;;;;;;;;GAQG;AACH,eAAO,MAAM,sBAAsB,EAmG7B,QAAQ,CAAC,MAAM,CAAC,gBAAgB,EAAE,CAAC,GAAG,IAAI,EAAE,KAAK,CAAC,GAAG,CAAC,KAAK,kBAAkB,CAAC,CAAC,CAAC;AAEtF;;;;;GAKG;AACH,qBAAa,kBAAmB,SAAQ,KAAK;IAC5C,IAAI,EAAE,gBAAgB,CAAC;IACvB,IAAI,CAAC,EAAE,OAAO,CAAC;gBAEH,IAAI,EAAE,gBAAgB,EAAE,OAAO,EAAE,MAAM,EAAE,IAAI,CAAC,EAAE,OAAO,EAAE,OAAO,CAAC,EAAE,YAAY;CAK3F;AAWD;;;;GAIG;AACH,eAAO,MAAM,cAAc;8CAXQ,kBAAkB;kDAAlB,kBAAkB;mDAAlB,kBAAkB;iDAAlB,kBAAkB;iDAAlB,kBAAkB;kDAAlB,kBAAkB;4CAAlB,kBAAkB;4CAAlB,kBAAkB;2CAAlB,kBAAkB;mDAAlB,kBAAkB;+CAAlB,kBAAkB;sDAAlB,kBAAkB;0CAAlB,kBAAkB;iDAAlB,kBAAkB;oDAAlB,kBAAkB;CA2BqC,CAAC;AAI3F;;;;;;;GAOG;AACH,eAAO,MAAM,iCAAiC,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAkBpE,CAAC;AAEF;;;;;;GAMG;AACH,eAAO,MAAM,iCAAiC,EAAE,MAAM,CAAC,MAAM,EAAE,gBAAgB,CAMzC,CAAC;AAEvC;;;;;;;;;GASG;AACH,eAAO,MAAM,iCAAiC,GAAI,MAAM,gBAAgB,KAAG,oBACQ,CAAC;AAEpF;;;;GAIG;AACH,eAAO,MAAM,iCAAiC,GAAI,QAAQ,MAAM,KAAG,gBACa,CAAC;AAEjF;;;;;;;;;;;GAWG;AACH,eAAO,MAAM,0BAA0B,EAAE,QAAQ,CAAC,MAAM,CAAC,MAAM,EAAE,gBAAgB,CAAC,CAMjF,CAAC;AAEF;;;;;GAKG;AACH,eAAO,MAAM,0BAA0B,GAAI,MAAM,gBAAgB,KAAG,gBACL,CAAC"}

package/dist/http/jsonrpc_errors.js

@@ -242,12 +242,36 @@ export const HTTP_STATUS_TO_JSONRPC_ERROR_CODE = Object.fromEntries(Object.entri
  * Map a JSON-RPC error code to an HTTP status code.
  *
  * Returns 500 for unrecognized codes (consumer-defined codes
- * without a mapping default to internal server error).
+ * without a mapping default to internal server error). The return
+ * is narrowed to Hono's `ContentfulStatusCode` so call sites can
+ * pass the result to `c.json(body, status)` without `as any` —
+ * 499 (nginx "client closed request") is non-standard and gets
+ * absorbed by the cast here rather than at every dispatcher branch.
  */
-export const jsonrpc_error_code_to_http_status = (code) => JSONRPC_ERROR_CODE_TO_HTTP_STATUS[code] ?? 500;
+export const jsonrpc_error_code_to_http_status = (code) => (JSONRPC_ERROR_CODE_TO_HTTP_STATUS[code] ?? 500);
 /**
  * Map an HTTP status code to a JSON-RPC error code.
  *
  * Returns `internal_error` (-32603) for unrecognized status codes.
  */
 export const http_status_to_jsonrpc_error_code = (status) => HTTP_STATUS_TO_JSONRPC_ERROR_CODE[status] ?? JSONRPC_ERROR_CODES.internal_error;
+/**
+ * Reverse map of `JSONRPC_ERROR_CODES` — JSON-RPC error code → name.
+ *
+ * Used by REST emitters that need a stable string identifier for the
+ * code in their flat-shape error body (`{error: '<name>', ...}`)
+ * without inventing a separate vocabulary. Built once at module load
+ * from the canonical `JSONRPC_ERROR_CODES` map so the two cannot drift.
+ *
+ * Consumer-defined codes outside the standard taxonomy are not present;
+ * `jsonrpc_error_code_to_name` falls back to `'internal_error'` so the
+ * REST shape always carries some reason rather than `undefined`.
+ */
+export const JSONRPC_ERROR_CODE_TO_NAME = Object.freeze(Object.fromEntries(Object.entries(JSONRPC_ERROR_CODES).map(([name, code]) => [code, name])));
+/**
+ * Map a JSON-RPC error code to its canonical name (`'not_found'`,
+ * `'forbidden'`, etc.). Falls back to `'internal_error'` for codes
+ * outside the standard taxonomy so REST emitters that read this for
+ * their `error` field always have a stable string to emit.
+ */
+export const jsonrpc_error_code_to_name = (code) => JSONRPC_ERROR_CODE_TO_NAME[code] ?? 'internal_error';

package/dist/http/route_spec.d.ts

@@ -34,6 +34,19 @@ export type RouteAuth = {
 } | {
     type: 'keeper';
 };
+/**
+ * Two-phase auth guard set returned by `AuthGuardResolver`.
+ *
+ * `pre_validation` runs before input validation — 401 checks live here
+ * so unauthenticated callers never see route-shape information from
+ * input parsing failures. `post_authorization` runs after the
+ * authorization phase has populated `RequestContext` — role / keeper
+ * checks live here because they read `c.var.request_context.permits`.
+ */
+export interface AuthGuards {
+    pre_validation: Array<MiddlewareHandler>;
+    post_authorization: Array<MiddlewareHandler>;
+}
 /**
  * Resolves a `RouteAuth` to middleware guard handlers.
  *
@@ -41,7 +54,37 @@ export type RouteAuth = {
  * from auth-specific middleware. See `fuz_auth_guard_resolver` in
  * `auth/route_guards.ts` for the standard implementation.
  */
-export type AuthGuardResolver = (auth: RouteAuth) => Array<MiddlewareHandler>;
+export type AuthGuardResolver = (auth: RouteAuth) => AuthGuards;
+/**
+ * Per-route authorization phase. Runs after the pre-validation auth guards
+ * and before input validation; resolves the acting actor (when the route's
+ * input declares `acting?: ActingActor` or auth requires permits) and sets
+ * the request context on the Hono context. Per-route order in
+ * `apply_route_specs`: params → query → pre-validation auth (401) →
+ * authorization → post-authorization auth (403) → input validation →
+ * handler.
+ *
+ * Returns a `Response` to short-circuit (resolution failure → 400 / 500),
+ * or `void` to continue. The http framework stays auth-agnostic — fuz_app
+ * provides the implementation via `create_fuz_authorization_handler` in
+ * `auth/request_context.ts`.
+ */
+export type AuthorizationHandler = (c: Context, spec: RouteSpec) => Promise<Response | void>;
+/**
+ * Predicate that decides whether a route is "acting-aware" — i.e. whether
+ * the dispatcher's authorization phase may emit `actor_required` /
+ * `actor_not_on_account` (400) or `no_actors_on_account` /
+ * `account_vanished` (500) on this spec. When the predicate returns true
+ * the merged error schema is widened to accept those shapes so DEV-mode
+ * `wrap_output_validation` doesn't reject them.
+ *
+ * Computed at the call site because the canonical "input declares
+ * `acting?: ActingActor`" check lives in `auth/request_context.ts` (it
+ * uses reference equality with the canonical `ActingActor` schema). The
+ * `http/` framework receives the predicate via this callback so it stays
+ * auth-agnostic. See `http/CLAUDE.md` § Three-layer error-schema merge.
+ */
+export type IsActingAware = (spec: Pick<RouteSpec, 'auth' | 'input'>) => boolean;
 /** HTTP methods supported by route specs. */
 export type RouteMethod = 'GET' | 'POST' | 'PUT' | 'DELETE' | 'PATCH';
 /**
@@ -153,8 +196,22 @@ export declare const apply_middleware_specs: (app: Hono, specs: Array<Middleware
  *
  * For each spec: resolves auth to guards via the provided resolver,
  * adds input validation middleware (for routes with non-null input schemas),
- * wraps handler with DEV-only output and error validation, wraps with error
- * catch layer (catches `ThrownJsonrpcError` and generic errors), and registers the route.
+ * runs the optional authorization phase to resolve the acting actor + build
+ * the request context, wraps handler with DEV-only output and error
+ * validation, wraps with error catch layer (catches `ThrownJsonrpcError`
+ * and generic errors), and registers the route.
+ *
+ * Per-route middleware order: params → query → pre-validation auth
+ * guards (401) → authorization phase → post-authorization auth guards
+ * (403) → input validation → handler. The 401 check runs before any
+ * body parsing so unauthenticated callers never see route-shape
+ * information from parse failures. The authorization phase runs before
+ * input validation (matches the RPC dispatcher's order) so role /
+ * keeper denials surface 403 before 400 invalid_params; it extracts
+ * `acting` from raw query (GET) or pre-parsed JSON body (POST/PUT/...)
+ * — Hono caches the parsed body internally so the subsequent input-
+ * validation step does not re-parse. The role / keeper guards consume
+ * the `RequestContext` populated by the authorization phase.
  *
  * Each handler receives a `RouteContext` with:
  * - `db`: transaction-scoped (for non-GET) or pool-level (for GET)
@@ -162,11 +219,12 @@ export declare const apply_middleware_specs: (app: Hono, specs: Array<Middleware
  * - `pending_effects`: fire-and-forget effect queue
  *
  * @param resolve_auth_guards - maps `RouteAuth` to middleware — use `fuz_auth_guard_resolver` from `auth/route_guards.ts`
+ * @param authorize - optional authorization phase; runs between guards and input validation
  * @param db - used for transaction wrapping and `RouteContext`
  * @mutates `app`
  * @throws Error if two specs share the same `method` + `path` (each combination must be unique)
  */
-export declare const apply_route_specs: (app: Hono, specs: Array<RouteSpec>, resolve_auth_guards: AuthGuardResolver, log: Logger, db: Db) => void;
+export declare const apply_route_specs: (app: Hono, specs: Array<RouteSpec>, resolve_auth_guards: AuthGuardResolver, log: Logger, db: Db, authorize?: AuthorizationHandler, is_acting_aware?: IsActingAware) => void;
 /**
  * Prepend a prefix to all route spec paths.
  *

package/dist/http/route_spec.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"route_spec.d.ts","sourceRoot":"../src/lib/","sources":["../../src/lib/http/route_spec.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;GAaG;AAEH,OAAO,KAAK,EAAC,OAAO,EAAW,IAAI,EAAE,iBAAiB,EAAC,MAAM,MAAM,CAAC;AACpE,OAAO,KAAK,EAAC,CAAC,EAAC,MAAM,KAAK,CAAC;AAE3B,OAAO,KAAK,EAAC,MAAM,EAAC,MAAM,yBAAyB,CAAC;AAEpD,OAAO,KAAK,EAAC,EAAE,EAAC,MAAM,aAAa,CAAC;AACpC,OAAO,EACN,KAAK,iBAAiB,EACtB,KAAK,YAAY,EAKjB,MAAM,oBAAoB,CAAC;AAQ5B,OAAO,KAAK,EAAC,cAAc,EAAC,MAAM,sBAAsB,CAAC;AAEzD;;;;;GAKG;AACH,MAAM,MAAM,SAAS,GAClB;IAAC,IAAI,EAAE,MAAM,CAAA;CAAC,GACd;IAAC,IAAI,EAAE,eAAe,CAAA;CAAC,GACvB;IAAC,IAAI,EAAE,MAAM,CAAC;IAAC,IAAI,EAAE,MAAM,CAAA;CAAC,GAC5B;IAAC,IAAI,EAAE,QAAQ,CAAA;CAAC,CAAC;AAEpB;;;;;;GAMG;AACH,MAAM,MAAM,iBAAiB,GAAG,CAAC,IAAI,EAAE,SAAS,KAAK,KAAK,CAAC,iBAAiB,CAAC,CAAC;AAE9E,6CAA6C;AAC7C,MAAM,MAAM,WAAW,GAAG,KAAK,GAAG,MAAM,GAAG,KAAK,GAAG,QAAQ,GAAG,OAAO,CAAC;AAEtE;;GAEG;AACH,MAAM,WAAW,YAAY;IAC5B,8DAA8D;IAC9D,EAAE,EAAE,EAAE,CAAC;IACP,yFAAyF;IACzF,aAAa,EAAE,EAAE,CAAC;IAClB,2EAA2E;IAC3E,eAAe,EAAE,KAAK,CAAC,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC;CACtC;AAED;;;;;;GAMG;AACH,MAAM,MAAM,YAAY,GAAG,CAAC,CAAC,EAAE,OAAO,EAAE,KAAK,EAAE,YAAY,KAAK,QAAQ,GAAG,OAAO,CAAC,QAAQ,CAAC,CAAC;AAE7F;;;;;GAKG;AACH,MAAM,WAAW,SAAS;IACzB,MAAM,EAAE,WAAW,CAAC;IACpB,IAAI,EAAE,MAAM,CAAC;IACb,IAAI,EAAE,SAAS,CAAC;IAChB,OAAO,EAAE,YAAY,CAAC;IACtB,WAAW,EAAE,MAAM,CAAC;IACpB;;;;;OAKG;IACH,MAAM,CAAC,EAAE,CAAC,CAAC,SAAS,CAAC;IACrB,6EAA6E;IAC7E,KAAK,CAAC,EAAE,CAAC,CAAC,SAAS,CAAC;IACpB,mEAAmE;IACnE,KAAK,EAAE,CAAC,CAAC,OAAO,CAAC;IACjB,oCAAoC;IACpC,MAAM,EAAE,CAAC,CAAC,OAAO,CAAC;IAClB;;;;;;OAMG;IACH,UAAU,CAAC,EAAE,YAAY,CAAC;IAC1B;;;;;;;;OAQG;IACH,MAAM,CAAC,EAAE,iBAAiB,CAAC;IAC3B;;;;;;;;;OASG;IACH,WAAW,CAAC,EAAE,OAAO,CAAC;CACtB;AAED;;;;;GAKG;AACH,eAAO,MAAM,eAAe,GAAI,CAAC,EAAE,GAAG,OAAO,KAAG,CAE/C,CAAC;AAEF;;;;;;;;GAQG;AACH,eAAO,MAAM,gBAAgB,GAAI,CAAC,EAAE,GAAG,OAAO,KAAG,CAEhD,CAAC;AAEF;;;;;GAKG;AACH,eAAO,MAAM,eAAe,GAAI,CAAC,EAAE,GAAG,OAAO,KAAG,CAE/C,CAAC;AA8IF;;;;GAIG;AACH,eAAO,MAAM,sBAAsB,GAAI,KAAK,IAAI,EAAE,OAAO,KAAK,CAAC,cAAc,CAAC,KAAG,IAIhF,CAAC;AAgCF;;;;;;;;;;;;;;;;;GAiBG;AACH,eAAO,MAAM,iBAAiB,GAC7B,KAAK,IAAI,EACT,OAAO,KAAK,CAAC,SAAS,CAAC,EACvB,qBAAqB,iBAAiB,EACtC,KAAK,MAAM,EACX,IAAI,EAAE,KACJ,IAsCF,CAAC;AAEF;;;;;GAKG;AACH,eAAO,MAAM,kBAAkB,GAAI,QAAQ,MAAM,EAAE,OAAO,KAAK,CAAC,SAAS,CAAC,KAAG,KAAK,CAAC,SAAS,CAK3F,CAAC"}
+{"version":3,"file":"route_spec.d.ts","sourceRoot":"../src/lib/","sources":["../../src/lib/http/route_spec.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;GAaG;AAEH,OAAO,KAAK,EAAC,OAAO,EAAW,IAAI,EAAE,iBAAiB,EAAC,MAAM,MAAM,CAAC;AACpE,OAAO,KAAK,EAAC,CAAC,EAAC,MAAM,KAAK,CAAC;AAE3B,OAAO,KAAK,EAAC,MAAM,EAAC,MAAM,yBAAyB,CAAC;AAEpD,OAAO,KAAK,EAAC,EAAE,EAAC,MAAM,aAAa,CAAC;AACpC,OAAO,EACN,KAAK,iBAAiB,EACtB,KAAK,YAAY,EAKjB,MAAM,oBAAoB,CAAC;AAQ5B,OAAO,KAAK,EAAC,cAAc,EAAC,MAAM,sBAAsB,CAAC;AAEzD;;;;;GAKG;AACH,MAAM,MAAM,SAAS,GAClB;IAAC,IAAI,EAAE,MAAM,CAAA;CAAC,GACd;IAAC,IAAI,EAAE,eAAe,CAAA;CAAC,GACvB;IAAC,IAAI,EAAE,MAAM,CAAC;IAAC,IAAI,EAAE,MAAM,CAAA;CAAC,GAC5B;IAAC,IAAI,EAAE,QAAQ,CAAA;CAAC,CAAC;AAEpB;;;;;;;;GAQG;AACH,MAAM,WAAW,UAAU;IAC1B,cAAc,EAAE,KAAK,CAAC,iBAAiB,CAAC,CAAC;IACzC,kBAAkB,EAAE,KAAK,CAAC,iBAAiB,CAAC,CAAC;CAC7C;AAED;;;;;;GAMG;AACH,MAAM,MAAM,iBAAiB,GAAG,CAAC,IAAI,EAAE,SAAS,KAAK,UAAU,CAAC;AAEhE;;;;;;;;;;;;;GAaG;AACH,MAAM,MAAM,oBAAoB,GAAG,CAAC,CAAC,EAAE,OAAO,EAAE,IAAI,EAAE,SAAS,KAAK,OAAO,CAAC,QAAQ,GAAG,IAAI,CAAC,CAAC;AAE7F;;;;;;;;;;;;;GAaG;AACH,MAAM,MAAM,aAAa,GAAG,CAAC,IAAI,EAAE,IAAI,CAAC,SAAS,EAAE,MAAM,GAAG,OAAO,CAAC,KAAK,OAAO,CAAC;AAEjF,6CAA6C;AAC7C,MAAM,MAAM,WAAW,GAAG,KAAK,GAAG,MAAM,GAAG,KAAK,GAAG,QAAQ,GAAG,OAAO,CAAC;AAEtE;;GAEG;AACH,MAAM,WAAW,YAAY;IAC5B,8DAA8D;IAC9D,EAAE,EAAE,EAAE,CAAC;IACP,yFAAyF;IACzF,aAAa,EAAE,EAAE,CAAC;IAClB,2EAA2E;IAC3E,eAAe,EAAE,KAAK,CAAC,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC;CACtC;AAED;;;;;;GAMG;AACH,MAAM,MAAM,YAAY,GAAG,CAAC,CAAC,EAAE,OAAO,EAAE,KAAK,EAAE,YAAY,KAAK,QAAQ,GAAG,OAAO,CAAC,QAAQ,CAAC,CAAC;AAE7F;;;;;GAKG;AACH,MAAM,WAAW,SAAS;IACzB,MAAM,EAAE,WAAW,CAAC;IACpB,IAAI,EAAE,MAAM,CAAC;IACb,IAAI,EAAE,SAAS,CAAC;IAChB,OAAO,EAAE,YAAY,CAAC;IACtB,WAAW,EAAE,MAAM,CAAC;IACpB;;;;;OAKG;IACH,MAAM,CAAC,EAAE,CAAC,CAAC,SAAS,CAAC;IACrB,6EAA6E;IAC7E,KAAK,CAAC,EAAE,CAAC,CAAC,SAAS,CAAC;IACpB,mEAAmE;IACnE,KAAK,EAAE,CAAC,CAAC,OAAO,CAAC;IACjB,oCAAoC;IACpC,MAAM,EAAE,CAAC,CAAC,OAAO,CAAC;IAClB;;;;;;OAMG;IACH,UAAU,CAAC,EAAE,YAAY,CAAC;IAC1B;;;;;;;;OAQG;IACH,MAAM,CAAC,EAAE,iBAAiB,CAAC;IAC3B;;;;;;;;;OASG;IACH,WAAW,CAAC,EAAE,OAAO,CAAC;CACtB;AAED;;;;;GAKG;AACH,eAAO,MAAM,eAAe,GAAI,CAAC,EAAE,GAAG,OAAO,KAAG,CAE/C,CAAC;AAEF;;;;;;;;GAQG;AACH,eAAO,MAAM,gBAAgB,GAAI,CAAC,EAAE,GAAG,OAAO,KAAG,CAEhD,CAAC;AAEF;;;;;GAKG;AACH,eAAO,MAAM,eAAe,GAAI,CAAC,EAAE,GAAG,OAAO,KAAG,CAE/C,CAAC;AA8JF;;;;GAIG;AACH,eAAO,MAAM,sBAAsB,GAAI,KAAK,IAAI,EAAE,OAAO,KAAK,CAAC,cAAc,CAAC,KAAG,IAIhF,CAAC;AAkFF;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GAgCG;AACH,eAAO,MAAM,iBAAiB,GAC7B,KAAK,IAAI,EACT,OAAO,KAAK,CAAC,SAAS,CAAC,EACvB,qBAAqB,iBAAiB,EACtC,KAAK,MAAM,EACX,IAAI,EAAE,EACN,YAAY,oBAAoB,EAChC,kBAAkB,aAAa,KAC7B,IAkDF,CAAC;AAEF;;;;;GAKG;AACH,eAAO,MAAM,kBAAkB,GAAI,QAAQ,MAAM,EAAE,OAAO,KAAK,CAAC,SAAS,CAAC,KAAG,KAAK,CAAC,SAAS,CAK3F,CAAC"}