npm - @fuzdev/fuz_app - Versions diffs - 0.54.0 → 0.56.0 - Mend

@fuzdev/fuz_app 0.54.0 → 0.56.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (348) hide show

package/dist/actions/CLAUDE.md +214 -103
package/dist/actions/action_bridge.d.ts +8 -5
package/dist/actions/action_bridge.d.ts.map +1 -1
package/dist/actions/action_bridge.js +1 -11
package/dist/actions/action_codegen.d.ts +32 -0
package/dist/actions/action_codegen.d.ts.map +1 -1
package/dist/actions/action_codegen.js +35 -15
package/dist/actions/action_registry.d.ts.map +1 -1
package/dist/actions/action_registry.js +5 -2
package/dist/actions/action_rpc.d.ts +141 -22
package/dist/actions/action_rpc.d.ts.map +1 -1
package/dist/actions/action_rpc.js +106 -187
package/dist/actions/action_spec.d.ts +55 -16
package/dist/actions/action_spec.d.ts.map +1 -1
package/dist/actions/action_spec.js +16 -11
package/dist/actions/action_types.d.ts +28 -60
package/dist/actions/action_types.d.ts.map +1 -1
package/dist/actions/action_types.js +13 -5
package/dist/actions/broadcast_api.d.ts +2 -2
package/dist/actions/broadcast_api.js +2 -2
package/dist/actions/compile_action_registry.d.ts +50 -0
package/dist/actions/compile_action_registry.d.ts.map +1 -0
package/dist/actions/compile_action_registry.js +69 -0
package/dist/actions/heartbeat.d.ts +8 -4
package/dist/actions/heartbeat.d.ts.map +1 -1
package/dist/actions/heartbeat.js +5 -4
package/dist/actions/perform_action.d.ts +145 -0
package/dist/actions/perform_action.d.ts.map +1 -0
package/dist/actions/perform_action.js +258 -0
package/dist/actions/register_action_ws.d.ts +46 -40
package/dist/actions/register_action_ws.d.ts.map +1 -1
package/dist/actions/register_action_ws.js +101 -159
package/dist/actions/register_ws_endpoint.d.ts +15 -10
package/dist/actions/register_ws_endpoint.d.ts.map +1 -1
package/dist/actions/register_ws_endpoint.js +54 -7
package/dist/actions/transports.d.ts.map +1 -1
package/dist/actions/transports.js +0 -4
package/dist/actions/transports_ws_auth_guard.d.ts +1 -1
package/dist/actions/transports_ws_auth_guard.js +1 -1
package/dist/actions/transports_ws_backend.d.ts +1 -1
package/dist/actions/transports_ws_backend.js +1 -1
package/dist/auth/CLAUDE.md +794 -410
package/dist/auth/account_action_specs.d.ts +28 -7
package/dist/auth/account_action_specs.d.ts.map +1 -1
package/dist/auth/account_action_specs.js +7 -7
package/dist/auth/account_actions.d.ts +7 -13
package/dist/auth/account_actions.d.ts.map +1 -1
package/dist/auth/account_actions.js +26 -35
package/dist/auth/account_queries.d.ts +52 -16
package/dist/auth/account_queries.d.ts.map +1 -1
package/dist/auth/account_queries.js +87 -38
package/dist/auth/account_routes.d.ts +9 -11
package/dist/auth/account_routes.d.ts.map +1 -1
package/dist/auth/account_routes.js +118 -46
package/dist/auth/account_schema.d.ts +46 -35
package/dist/auth/account_schema.d.ts.map +1 -1
package/dist/auth/account_schema.js +21 -28
package/dist/auth/admin_action_specs.d.ts +100 -32
package/dist/auth/admin_action_specs.d.ts.map +1 -1
package/dist/auth/admin_action_specs.js +64 -33
package/dist/auth/admin_actions.d.ts +13 -19
package/dist/auth/admin_actions.d.ts.map +1 -1
package/dist/auth/admin_actions.js +37 -41
package/dist/auth/audit_emitter.d.ts +160 -0
package/dist/auth/audit_emitter.d.ts.map +1 -0
package/dist/auth/audit_emitter.js +83 -0
package/dist/auth/audit_log_queries.d.ts +17 -48
package/dist/auth/audit_log_queries.d.ts.map +1 -1
package/dist/auth/audit_log_queries.js +20 -56
package/dist/auth/audit_log_routes.d.ts +1 -1
package/dist/auth/audit_log_routes.d.ts.map +1 -1
package/dist/auth/audit_log_routes.js +7 -3
package/dist/auth/audit_log_schema.d.ts +92 -32
package/dist/auth/audit_log_schema.d.ts.map +1 -1
package/dist/auth/audit_log_schema.js +75 -46
package/dist/auth/auth_guard_resolver.d.ts +44 -0
package/dist/auth/auth_guard_resolver.d.ts.map +1 -0
package/dist/auth/auth_guard_resolver.js +56 -0
package/dist/auth/bearer_auth.d.ts +9 -7
package/dist/auth/bearer_auth.d.ts.map +1 -1
package/dist/auth/bearer_auth.js +13 -21
package/dist/auth/bootstrap_account.d.ts +7 -7
package/dist/auth/bootstrap_account.d.ts.map +1 -1
package/dist/auth/bootstrap_account.js +7 -7
package/dist/auth/bootstrap_routes.d.ts.map +1 -1
package/dist/auth/bootstrap_routes.js +11 -10
package/dist/auth/cleanup.d.ts +20 -26
package/dist/auth/cleanup.d.ts.map +1 -1
package/dist/auth/cleanup.js +33 -42
package/dist/auth/credential_type_schema.d.ts +115 -0
package/dist/auth/credential_type_schema.d.ts.map +1 -0
package/dist/auth/credential_type_schema.js +127 -0
package/dist/auth/daemon_token_middleware.d.ts +23 -11
package/dist/auth/daemon_token_middleware.d.ts.map +1 -1
package/dist/auth/daemon_token_middleware.js +28 -22
package/dist/auth/ddl.d.ts +2 -2
package/dist/auth/ddl.d.ts.map +1 -1
package/dist/auth/ddl.js +6 -6
package/dist/auth/deps.d.ts +7 -18
package/dist/auth/deps.d.ts.map +1 -1
package/dist/auth/grant_path_schema.d.ts +117 -0
package/dist/auth/grant_path_schema.d.ts.map +1 -0
package/dist/auth/grant_path_schema.js +137 -0
package/dist/auth/invite_queries.d.ts +12 -1
package/dist/auth/invite_queries.d.ts.map +1 -1
package/dist/auth/invite_queries.js +12 -1
package/dist/auth/invite_schema.d.ts +1 -1
package/dist/auth/invite_schema.d.ts.map +1 -1
package/dist/auth/invite_schema.js +1 -1
package/dist/auth/middleware.d.ts.map +1 -1
package/dist/auth/middleware.js +9 -4
package/dist/auth/migrations.d.ts +37 -14
package/dist/auth/migrations.d.ts.map +1 -1
package/dist/auth/migrations.js +79 -32
package/dist/auth/request_context.d.ts +331 -61
package/dist/auth/request_context.d.ts.map +1 -1
package/dist/auth/request_context.js +378 -95
package/dist/auth/{permit_offer_action_specs.d.ts → role_grant_offer_action_specs.d.ts} +163 -94
package/dist/auth/role_grant_offer_action_specs.d.ts.map +1 -0
package/dist/auth/role_grant_offer_action_specs.js +262 -0
package/dist/auth/role_grant_offer_actions.d.ts +104 -0
package/dist/auth/role_grant_offer_actions.d.ts.map +1 -0
package/dist/auth/role_grant_offer_actions.js +473 -0
package/dist/auth/{permit_offer_notifications.d.ts → role_grant_offer_notifications.d.ts} +90 -70
package/dist/auth/role_grant_offer_notifications.d.ts.map +1 -0
package/dist/auth/role_grant_offer_notifications.js +182 -0
package/dist/auth/role_grant_offer_queries.d.ts +242 -0
package/dist/auth/role_grant_offer_queries.d.ts.map +1 -0
package/dist/auth/role_grant_offer_queries.js +533 -0
package/dist/auth/role_grant_offer_schema.d.ts +150 -0
package/dist/auth/role_grant_offer_schema.d.ts.map +1 -0
package/dist/auth/{permit_offer_schema.js → role_grant_offer_schema.js} +60 -36
package/dist/auth/role_grant_queries.d.ts +231 -0
package/dist/auth/role_grant_queries.d.ts.map +1 -0
package/dist/auth/role_grant_queries.js +320 -0
package/dist/auth/role_schema.d.ts +150 -40
package/dist/auth/role_schema.d.ts.map +1 -1
package/dist/auth/role_schema.js +144 -45
package/dist/auth/scope_kind_schema.d.ts +96 -0
package/dist/auth/scope_kind_schema.d.ts.map +1 -0
package/dist/auth/scope_kind_schema.js +94 -0
package/dist/auth/self_service_role_action_specs.d.ts +6 -1
package/dist/auth/self_service_role_action_specs.d.ts.map +1 -1
package/dist/auth/self_service_role_action_specs.js +3 -1
package/dist/auth/self_service_role_actions.d.ts +34 -27
package/dist/auth/self_service_role_actions.d.ts.map +1 -1
package/dist/auth/self_service_role_actions.js +68 -48
package/dist/auth/session_cookie.d.ts +43 -6
package/dist/auth/session_cookie.d.ts.map +1 -1
package/dist/auth/session_cookie.js +31 -5
package/dist/auth/session_middleware.d.ts +37 -3
package/dist/auth/session_middleware.d.ts.map +1 -1
package/dist/auth/session_middleware.js +33 -7
package/dist/auth/signup_routes.d.ts.map +1 -1
package/dist/auth/signup_routes.js +48 -19
package/dist/auth/standard_action_specs.d.ts +2 -2
package/dist/auth/standard_action_specs.js +4 -4
package/dist/auth/standard_rpc_actions.d.ts +23 -19
package/dist/auth/standard_rpc_actions.d.ts.map +1 -1
package/dist/auth/standard_rpc_actions.js +12 -12
package/dist/db/migrate.d.ts +12 -8
package/dist/db/migrate.d.ts.map +1 -1
package/dist/db/migrate.js +10 -7
package/dist/dev/setup.d.ts +2 -2
package/dist/dev/setup.d.ts.map +1 -1
package/dist/dev/setup.js +9 -7
package/dist/env/load.d.ts +1 -1
package/dist/env/load.js +1 -1
package/dist/hono_context.d.ts +64 -5
package/dist/hono_context.d.ts.map +1 -1
package/dist/hono_context.js +38 -2
package/dist/http/CLAUDE.md +264 -87
package/dist/http/auth_shape.d.ts +191 -0
package/dist/http/auth_shape.d.ts.map +1 -0
package/dist/http/auth_shape.js +237 -0
package/dist/http/common_routes.js +3 -3
package/dist/http/db_routes.d.ts +4 -0
package/dist/http/db_routes.d.ts.map +1 -1
package/dist/http/db_routes.js +44 -7
package/dist/http/error_schemas.d.ts +132 -19
package/dist/http/error_schemas.d.ts.map +1 -1
package/dist/http/error_schemas.js +132 -40
package/dist/http/jsonrpc_errors.d.ts +27 -2
package/dist/http/jsonrpc_errors.d.ts.map +1 -1
package/dist/http/jsonrpc_errors.js +26 -2
package/dist/http/pending_effects.d.ts +71 -18
package/dist/http/pending_effects.d.ts.map +1 -1
package/dist/http/pending_effects.js +87 -18
package/dist/http/proxy.d.ts +52 -5
package/dist/http/proxy.d.ts.map +1 -1
package/dist/http/proxy.js +92 -14
package/dist/http/route_spec.d.ts +113 -41
package/dist/http/route_spec.d.ts.map +1 -1
package/dist/http/route_spec.js +130 -52
package/dist/http/schema_helpers.d.ts +3 -2
package/dist/http/schema_helpers.d.ts.map +1 -1
package/dist/http/schema_helpers.js +9 -2
package/dist/http/surface.d.ts +2 -1
package/dist/http/surface.d.ts.map +1 -1
package/dist/http/surface.js +1 -2
package/dist/http/surface_query.d.ts +39 -35
package/dist/http/surface_query.d.ts.map +1 -1
package/dist/http/surface_query.js +79 -36
package/dist/primitive_schemas.d.ts +39 -0
package/dist/primitive_schemas.d.ts.map +1 -0
package/dist/primitive_schemas.js +40 -0
package/dist/realtime/sse_auth_guard.d.ts +5 -5
package/dist/realtime/sse_auth_guard.js +9 -9
package/dist/runtime/mock.d.ts +1 -1
package/dist/runtime/mock.js +1 -1
package/dist/server/app_backend.d.ts +14 -11
package/dist/server/app_backend.d.ts.map +1 -1
package/dist/server/app_backend.js +12 -8
package/dist/server/app_server.d.ts +7 -7
package/dist/server/app_server.d.ts.map +1 -1
package/dist/server/app_server.js +36 -31
package/dist/server/validate_nginx.d.ts +1 -1
package/dist/server/validate_nginx.js +1 -1
package/dist/testing/CLAUDE.md +73 -55
package/dist/testing/admin_integration.d.ts +5 -6
package/dist/testing/admin_integration.d.ts.map +1 -1
package/dist/testing/admin_integration.js +100 -96
package/dist/testing/adversarial_headers.js +1 -1
package/dist/testing/app_server.d.ts +11 -14
package/dist/testing/app_server.d.ts.map +1 -1
package/dist/testing/app_server.js +18 -17
package/dist/testing/assertions.d.ts.map +1 -1
package/dist/testing/assertions.js +2 -1
package/dist/testing/attack_surface.d.ts.map +1 -1
package/dist/testing/attack_surface.js +15 -9
package/dist/testing/audit_completeness.d.ts +2 -2
package/dist/testing/audit_completeness.d.ts.map +1 -1
package/dist/testing/audit_completeness.js +53 -39
package/dist/testing/auth_apps.d.ts +5 -4
package/dist/testing/auth_apps.d.ts.map +1 -1
package/dist/testing/auth_apps.js +28 -22
package/dist/testing/data_exposure.d.ts.map +1 -1
package/dist/testing/data_exposure.js +5 -5
package/dist/testing/db.d.ts +1 -1
package/dist/testing/db.d.ts.map +1 -1
package/dist/testing/db.js +4 -4
package/dist/testing/db_entities.d.ts +22 -0
package/dist/testing/db_entities.d.ts.map +1 -0
package/dist/testing/db_entities.js +28 -0
package/dist/testing/entities.d.ts +10 -8
package/dist/testing/entities.d.ts.map +1 -1
package/dist/testing/entities.js +22 -18
package/dist/testing/integration.d.ts.map +1 -1
package/dist/testing/integration.js +13 -14
package/dist/testing/integration_helpers.d.ts +8 -6
package/dist/testing/integration_helpers.d.ts.map +1 -1
package/dist/testing/integration_helpers.js +29 -23
package/dist/testing/middleware.d.ts +15 -11
package/dist/testing/middleware.d.ts.map +1 -1
package/dist/testing/middleware.js +75 -32
package/dist/testing/rpc_attack_surface.d.ts.map +1 -1
package/dist/testing/rpc_attack_surface.js +40 -24
package/dist/testing/rpc_helpers.d.ts.map +1 -1
package/dist/testing/rpc_helpers.js +3 -1
package/dist/testing/rpc_round_trip.d.ts +1 -1
package/dist/testing/rpc_round_trip.d.ts.map +1 -1
package/dist/testing/rpc_round_trip.js +14 -13
package/dist/testing/sse_round_trip.d.ts +3 -4
package/dist/testing/sse_round_trip.d.ts.map +1 -1
package/dist/testing/sse_round_trip.js +7 -11
package/dist/testing/standard.d.ts +1 -1
package/dist/testing/stubs.d.ts +25 -0
package/dist/testing/stubs.d.ts.map +1 -1
package/dist/testing/stubs.js +43 -2
package/dist/testing/surface_invariants.d.ts +2 -2
package/dist/testing/ws_round_trip.d.ts +12 -13
package/dist/testing/ws_round_trip.d.ts.map +1 -1
package/dist/testing/ws_round_trip.js +24 -12
package/dist/ui/AdminAccounts.svelte +23 -20
package/dist/ui/AdminOverview.svelte +15 -13
package/dist/ui/AdminOverview.svelte.d.ts.map +1 -1
package/dist/ui/{AdminPermitHistory.svelte → AdminRoleGrantHistory.svelte} +12 -12
package/dist/ui/AdminRoleGrantHistory.svelte.d.ts +4 -0
package/dist/ui/AdminRoleGrantHistory.svelte.d.ts.map +1 -0
package/dist/ui/BootstrapForm.svelte +1 -1
package/dist/ui/CLAUDE.md +65 -59
package/dist/ui/{PermitOfferForm.svelte → RoleGrantOfferForm.svelte} +37 -22
package/dist/ui/RoleGrantOfferForm.svelte.d.ts +20 -0
package/dist/ui/RoleGrantOfferForm.svelte.d.ts.map +1 -0
package/dist/ui/{PermitOfferHistory.svelte → RoleGrantOfferHistory.svelte} +12 -12
package/dist/ui/{PermitOfferHistory.svelte.d.ts → RoleGrantOfferHistory.svelte.d.ts} +4 -4
package/dist/ui/RoleGrantOfferHistory.svelte.d.ts.map +1 -0
package/dist/ui/{PermitOfferInbox.svelte → RoleGrantOfferInbox.svelte} +14 -14
package/dist/ui/{PermitOfferInbox.svelte.d.ts → RoleGrantOfferInbox.svelte.d.ts} +4 -4
package/dist/ui/RoleGrantOfferInbox.svelte.d.ts.map +1 -0
package/dist/ui/SignupForm.svelte +1 -1
package/dist/ui/SurfaceExplorer.svelte +35 -15
package/dist/ui/SurfaceExplorer.svelte.d.ts.map +1 -1
package/dist/ui/account_sessions_state.svelte.d.ts +2 -3
package/dist/ui/account_sessions_state.svelte.d.ts.map +1 -1
package/dist/ui/account_sessions_state.svelte.js +2 -3
package/dist/ui/admin_accounts_state.svelte.d.ts +25 -18
package/dist/ui/admin_accounts_state.svelte.d.ts.map +1 -1
package/dist/ui/admin_accounts_state.svelte.js +28 -17
package/dist/ui/admin_rpc_adapters.d.ts +20 -20
package/dist/ui/admin_rpc_adapters.d.ts.map +1 -1
package/dist/ui/admin_rpc_adapters.js +17 -17
package/dist/ui/admin_sessions_state.svelte.d.ts +2 -2
package/dist/ui/admin_sessions_state.svelte.js +2 -2
package/dist/ui/audit_log_state.svelte.d.ts +7 -7
package/dist/ui/audit_log_state.svelte.d.ts.map +1 -1
package/dist/ui/audit_log_state.svelte.js +6 -6
package/dist/ui/auth_state.svelte.d.ts +3 -3
package/dist/ui/auth_state.svelte.d.ts.map +1 -1
package/dist/ui/auth_state.svelte.js +6 -6
package/dist/ui/format_scope.d.ts +2 -2
package/dist/ui/format_scope.js +2 -2
package/dist/ui/{permit_offers_state.svelte.d.ts → role_grant_offers_state.svelte.d.ts} +39 -31
package/dist/ui/role_grant_offers_state.svelte.d.ts.map +1 -0
package/dist/ui/{permit_offers_state.svelte.js → role_grant_offers_state.svelte.js} +25 -19
package/dist/ui/ui_format.js +2 -2
package/package.json +3 -3
package/dist/auth/permit_offer_action_specs.d.ts.map +0 -1
package/dist/auth/permit_offer_action_specs.js +0 -227
package/dist/auth/permit_offer_actions.d.ts +0 -110
package/dist/auth/permit_offer_actions.d.ts.map +0 -1
package/dist/auth/permit_offer_actions.js +0 -452
package/dist/auth/permit_offer_notifications.d.ts.map +0 -1
package/dist/auth/permit_offer_notifications.js +0 -182
package/dist/auth/permit_offer_queries.d.ts +0 -183
package/dist/auth/permit_offer_queries.d.ts.map +0 -1
package/dist/auth/permit_offer_queries.js +0 -408
package/dist/auth/permit_offer_schema.d.ts +0 -103
package/dist/auth/permit_offer_schema.d.ts.map +0 -1
package/dist/auth/permit_queries.d.ts +0 -210
package/dist/auth/permit_queries.d.ts.map +0 -1
package/dist/auth/permit_queries.js +0 -294
package/dist/auth/require_keeper.d.ts +0 -20
package/dist/auth/require_keeper.d.ts.map +0 -1
package/dist/auth/require_keeper.js +0 -35
package/dist/auth/route_guards.d.ts +0 -21
package/dist/auth/route_guards.d.ts.map +0 -1
package/dist/auth/route_guards.js +0 -32
package/dist/auth/session_lifecycle.d.ts +0 -37
package/dist/auth/session_lifecycle.d.ts.map +0 -1
package/dist/auth/session_lifecycle.js +0 -29
package/dist/ui/AdminPermitHistory.svelte.d.ts +0 -4
package/dist/ui/AdminPermitHistory.svelte.d.ts.map +0 -1
package/dist/ui/PermitOfferForm.svelte.d.ts +0 -14
package/dist/ui/PermitOfferForm.svelte.d.ts.map +0 -1
package/dist/ui/PermitOfferHistory.svelte.d.ts.map +0 -1
package/dist/ui/PermitOfferInbox.svelte.d.ts.map +0 -1
package/dist/ui/permit_offers_state.svelte.d.ts.map +0 -1

package/dist/auth/admin_action_specs.js CHANGED Viewed

@@ -18,22 +18,42 @@
 import { z } from 'zod';
 import { Uuid } from '@fuzdev/fuz_util/id.js';
 import { ROLE_ADMIN, RoleName } from './role_schema.js';
-import { AdminAccountEntryJson, Email, Username } from './account_schema.js';
-import { AdminSessionJson, AUDIT_LOG_DEFAULT_LIMIT, AuditEventTypeName, AuditLogEventWithUsernamesJson, AuditOutcome, PermitHistoryEventJson, } from './audit_log_schema.js';
+import { AdminAccountEntryJson } from './account_schema.js';
+import { Email, Username } from '../primitive_schemas.js';
+import { ActingActor } from '../http/auth_shape.js';
+import { AdminSessionJson, AUDIT_LOG_DEFAULT_LIMIT, AuditEventTypeName, AuditLogEventWithUsernamesJson, AuditOutcome, RoleGrantHistoryEventJson, } from './audit_log_schema.js';
 import { InviteJson, InviteWithUsernamesJson } from './invite_schema.js';
 import { AppSettingsWithUsernameJson } from './app_settings_schema.js';
-/** Max audit-log page size. Mirrors the former REST route's clamp. */
+/** Max audit-log page size. */
 export const AUDIT_LOG_LIST_LIMIT_MAX = 200;
+/** Default `admin_account_list` page size. */
+export const ADMIN_ACCOUNT_LIST_DEFAULT_LIMIT = 50;
+/** Max `admin_account_list` page size. */
+export const ADMIN_ACCOUNT_LIST_LIMIT_MAX = 200;
 // -- Input/output schemas ---------------------------------------------------
-/** Input for `admin_account_list`. No parameters — the caller is the subject. */
-export const AdminAccountListInput = z.void();
+/** Input for `admin_account_list`. */
+export const AdminAccountListInput = z.strictObject({
+    acting: ActingActor,
+    limit: z
+        .number()
+        .int()
+        .min(1)
+        .max(ADMIN_ACCOUNT_LIST_LIMIT_MAX)
+        .nullish()
+        .meta({
+        description: `Max accounts to return (default ${ADMIN_ACCOUNT_LIST_DEFAULT_LIMIT}, max ${ADMIN_ACCOUNT_LIST_LIMIT_MAX}).`,
+    }),
+    offset: z.number().int().min(0).nullish().meta({ description: 'Pagination offset.' }),
+});
 /** Output for `admin_account_list`. */
 export const AdminAccountListOutput = z.strictObject({
     accounts: z.array(AdminAccountEntryJson),
     grantable_roles: z.array(RoleName),
 });
-/** Input for `admin_session_list`. No parameters — reads every active session. */
-export const AdminSessionListInput = z.void();
+/** Input for `admin_session_list`. */
+export const AdminSessionListInput = z.strictObject({
+    acting: ActingActor,
+});
 /** Output for `admin_session_list`. Cross-account listing; fan-out already scoped by role auth. */
 export const AdminSessionListOutput = z.strictObject({
     sessions: z.array(AdminSessionJson),
@@ -41,6 +61,7 @@ export const AdminSessionListOutput = z.strictObject({
 /** Input for `admin_session_revoke_all`. */
 export const AdminSessionRevokeAllInput = z.strictObject({
     account_id: Uuid.meta({ description: 'Account whose sessions to revoke.' }),
+    acting: ActingActor,
 });
 /** Output for `admin_session_revoke_all`. */
 export const AdminSessionRevokeAllOutput = z.strictObject({
@@ -50,6 +71,7 @@ export const AdminSessionRevokeAllOutput = z.strictObject({
 /** Input for `admin_token_revoke_all`. */
 export const AdminTokenRevokeAllInput = z.strictObject({
     account_id: Uuid.meta({ description: 'Account whose API tokens to revoke.' }),
+    acting: ActingActor,
 });
 /** Output for `admin_token_revoke_all`. */
 export const AdminTokenRevokeAllOutput = z.strictObject({
@@ -83,13 +105,14 @@ export const AuditLogListInput = z.strictObject({
     since_seq: z.number().int().min(0).nullish().meta({
         description: 'Gap-fill from this seq forward. Used for SSE reconnection.',
     }),
+    acting: ActingActor,
 });
 /** Output for `audit_log_list`. */
 export const AuditLogListOutput = z.strictObject({
     events: z.array(AuditLogEventWithUsernamesJson),
 });
-/** Input for `audit_log_permit_history`. */
-export const AuditLogPermitHistoryInput = z.strictObject({
+/** Input for `audit_log_role_grant_history`. */
+export const AuditLogRoleGrantHistoryInput = z.strictObject({
     limit: z
         .number()
         .int()
@@ -100,15 +123,17 @@ export const AuditLogPermitHistoryInput = z.strictObject({
         description: `Max rows to return (default ${AUDIT_LOG_DEFAULT_LIMIT}, max ${AUDIT_LOG_LIST_LIMIT_MAX}).`,
     }),
     offset: z.number().int().min(0).nullish().meta({ description: 'Pagination offset.' }),
+    acting: ActingActor,
 });
-/** Output for `audit_log_permit_history`. */
-export const AuditLogPermitHistoryOutput = z.strictObject({
-    events: z.array(PermitHistoryEventJson),
+/** Output for `audit_log_role_grant_history`. */
+export const AuditLogRoleGrantHistoryOutput = z.strictObject({
+    events: z.array(RoleGrantHistoryEventJson),
 });
 /** Input for `invite_create`. At least one of `email` / `username` must be provided. */
 export const InviteCreateInput = z.strictObject({
     email: Email.nullish().meta({ description: 'Invitee email.' }),
     username: Username.nullish().meta({ description: 'Invitee username.' }),
+    acting: ActingActor,
 });
 /** Output for `invite_create`. */
 export const InviteCreateOutput = z.strictObject({
@@ -116,7 +141,9 @@ export const InviteCreateOutput = z.strictObject({
     invite: InviteJson,
 });
 /** Input for `invite_list`. */
-export const InviteListInput = z.void();
+export const InviteListInput = z.strictObject({
+    acting: ActingActor,
+});
 /** Output for `invite_list`. Uses the enriched row including creator/claimer usernames. */
 export const InviteListOutput = z.strictObject({
     invites: z.array(InviteWithUsernamesJson),
@@ -124,13 +151,16 @@ export const InviteListOutput = z.strictObject({
 /** Input for `invite_delete`. */
 export const InviteDeleteInput = z.strictObject({
     invite_id: Uuid.meta({ description: 'Invite to delete. Must be unclaimed.' }),
+    acting: ActingActor,
 });
 /** Output for `invite_delete`. */
 export const InviteDeleteOutput = z.strictObject({
     ok: z.literal(true),
 });
-/** Input for `app_settings_get`. No parameters. */
-export const AppSettingsGetInput = z.void();
+/** Input for `app_settings_get`. */
+export const AppSettingsGetInput = z.strictObject({
+    acting: ActingActor,
+});
 /** Output for `app_settings_get`. */
 export const AppSettingsGetOutput = z.strictObject({
     settings: AppSettingsWithUsernameJson,
@@ -138,6 +168,7 @@ export const AppSettingsGetOutput = z.strictObject({
 /** Input for `app_settings_update`. */
 export const AppSettingsUpdateInput = z.strictObject({
     open_signup: z.boolean().meta({ description: 'New value for the open signup toggle.' }),
+    acting: ActingActor,
 });
 /** Output for `app_settings_update`. */
 export const AppSettingsUpdateOutput = z.strictObject({
@@ -149,18 +180,18 @@ export const admin_account_list_action_spec = {
     method: 'admin_account_list',
     kind: 'request_response',
     initiator: 'frontend',
-    auth: { role: ROLE_ADMIN },
+    auth: { account: 'required', actor: 'required', roles: [ROLE_ADMIN] },
     side_effects: false,
     input: AdminAccountListInput,
     output: AdminAccountListOutput,
     async: true,
-    description: 'List all accounts with their actors, permits, and pending offers. Admin-only.',
+    description: 'List all accounts with their actors, role_grants, and pending offers. Admin-only.',
 };
 export const admin_session_list_action_spec = {
     method: 'admin_session_list',
     kind: 'request_response',
     initiator: 'frontend',
-    auth: { role: ROLE_ADMIN },
+    auth: { account: 'required', actor: 'required', roles: [ROLE_ADMIN] },
     side_effects: false,
     input: AdminSessionListInput,
     output: AdminSessionListOutput,
@@ -171,7 +202,7 @@ export const admin_session_revoke_all_action_spec = {
     method: 'admin_session_revoke_all',
     kind: 'request_response',
     initiator: 'frontend',
-    auth: { role: ROLE_ADMIN },
+    auth: { account: 'required', actor: 'required', roles: [ROLE_ADMIN] },
     side_effects: true,
     input: AdminSessionRevokeAllInput,
     output: AdminSessionRevokeAllOutput,
@@ -183,7 +214,7 @@ export const admin_token_revoke_all_action_spec = {
     method: 'admin_token_revoke_all',
     kind: 'request_response',
     initiator: 'frontend',
-    auth: { role: ROLE_ADMIN },
+    auth: { account: 'required', actor: 'required', roles: [ROLE_ADMIN] },
     side_effects: true,
     input: AdminTokenRevokeAllInput,
     output: AdminTokenRevokeAllOutput,
@@ -195,29 +226,29 @@ export const audit_log_list_action_spec = {
     method: 'audit_log_list',
     kind: 'request_response',
     initiator: 'frontend',
-    auth: { role: ROLE_ADMIN },
+    auth: { account: 'required', actor: 'required', roles: [ROLE_ADMIN] },
     side_effects: false,
     input: AuditLogListInput,
     output: AuditLogListOutput,
     async: true,
     description: 'List audit log events with optional filters. Admin-only.',
 };
-export const audit_log_permit_history_action_spec = {
-    method: 'audit_log_permit_history',
+export const audit_log_role_grant_history_action_spec = {
+    method: 'audit_log_role_grant_history',
     kind: 'request_response',
     initiator: 'frontend',
-    auth: { role: ROLE_ADMIN },
+    auth: { account: 'required', actor: 'required', roles: [ROLE_ADMIN] },
     side_effects: false,
-    input: AuditLogPermitHistoryInput,
-    output: AuditLogPermitHistoryOutput,
+    input: AuditLogRoleGrantHistoryInput,
+    output: AuditLogRoleGrantHistoryOutput,
     async: true,
-    description: 'List permit grant and revoke events with usernames. Admin-only.',
+    description: 'List role_grant grant and revoke events with usernames. Admin-only.',
 };
 export const invite_create_action_spec = {
     method: 'invite_create',
     kind: 'request_response',
     initiator: 'frontend',
-    auth: { role: ROLE_ADMIN },
+    auth: { account: 'required', actor: 'required', roles: [ROLE_ADMIN] },
     side_effects: true,
     input: InviteCreateInput,
     output: InviteCreateOutput,
@@ -229,7 +260,7 @@ export const invite_list_action_spec = {
     method: 'invite_list',
     kind: 'request_response',
     initiator: 'frontend',
-    auth: { role: ROLE_ADMIN },
+    auth: { account: 'required', actor: 'required', roles: [ROLE_ADMIN] },
     side_effects: false,
     input: InviteListInput,
     output: InviteListOutput,
@@ -240,7 +271,7 @@ export const invite_delete_action_spec = {
     method: 'invite_delete',
     kind: 'request_response',
     initiator: 'frontend',
-    auth: { role: ROLE_ADMIN },
+    auth: { account: 'required', actor: 'required', roles: [ROLE_ADMIN] },
     side_effects: true,
     input: InviteDeleteInput,
     output: InviteDeleteOutput,
@@ -252,7 +283,7 @@ export const app_settings_get_action_spec = {
     method: 'app_settings_get',
     kind: 'request_response',
     initiator: 'frontend',
-    auth: { role: ROLE_ADMIN },
+    auth: { account: 'required', actor: 'required', roles: [ROLE_ADMIN] },
     side_effects: false,
     input: AppSettingsGetInput,
     output: AppSettingsGetOutput,
@@ -263,7 +294,7 @@ export const app_settings_update_action_spec = {
     method: 'app_settings_update',
     kind: 'request_response',
     initiator: 'frontend',
-    auth: { role: ROLE_ADMIN },
+    auth: { account: 'required', actor: 'required', roles: [ROLE_ADMIN] },
     side_effects: true,
     input: AppSettingsUpdateInput,
     output: AppSettingsUpdateOutput,
@@ -284,7 +315,7 @@ export const all_admin_action_specs = [
     admin_session_revoke_all_action_spec,
     admin_token_revoke_all_action_spec,
     audit_log_list_action_spec,
-    audit_log_permit_history_action_spec,
+    audit_log_role_grant_history_action_spec,
     invite_create_action_spec,
     invite_list_action_spec,
     invite_delete_action_spec,

package/dist/auth/admin_actions.d.ts CHANGED Viewed

@@ -5,23 +5,23 @@
  *
  * - Account management: `admin_account_list`, `admin_session_list`,
  *   `admin_session_revoke_all`, `admin_token_revoke_all`.
- * - Audit log reads: `audit_log_list`, `audit_log_permit_history`.
+ * - Audit log reads: `audit_log_list`, `audit_log_role_grant_history`.
  * - Invite CRUD: `invite_create`, `invite_list`, `invite_delete`.
  * - App settings: `app_settings_get`, `app_settings_update` (registered only
  *   when `AdminActionOptions.app_settings` is provided — the mutable ref is
  *   owned by the server context and shared with signup middleware).
  *
  * The action specs themselves live in `auth/admin_action_specs.ts`. Mutations
- * emit matching audit events via `audit_log_fire_and_forget`.
+ * emit matching audit events via `deps.audit.emit`.
  *
  * Authorization is declared at the spec level (`auth: {role: 'admin'}`) so
  * the RPC dispatcher enforces it before the handler runs and the generated
- * surface accurately reports the requirement. `permit_revoke` in
- * `auth/permit_offer_actions.ts` uses the same spec-level pattern even though its
+ * surface accurately reports the requirement. `role_grant_revoke` in
+ * `auth/role_grant_offer_actions.ts` uses the same spec-level pattern even though its
  * sibling methods are authenticated-but-not-admin — the dispatcher checks
  * auth per-spec, so mixed-auth endpoints compose cleanly. Handler-level
  * gates are reserved for input-dependent elevation (e.g.
- * `permit_offer_list`/`_history` elevate to admin only when the caller
+ * `role_grant_offer_list`/`_history` elevate to admin only when the caller
  * passes an `account_id` other than their own — an input-dependent check
  * the spec can't express).
  *
@@ -35,8 +35,9 @@ import type { RouteFactoryDeps } from './deps.js';
 export interface AdminActionOptions {
     /**
      * Role schema result from `create_role_schema()`. Defaults to builtin
-     * roles only. Used to derive `grantable_roles` (the `web_grantable`
-     * subset) returned by `admin_account_list`.
+     * roles only. Used to derive `grantable_roles` (the subset whose
+     * `RoleSpec.grant_paths` includes `'admin'`) returned by
+     * `admin_account_list`.
      */
     roles?: RoleSchemaResult;
     /**
@@ -49,23 +50,16 @@ export interface AdminActionOptions {
      */
     app_settings?: AppSettings;
 }
-/**
- * Dependencies for `create_admin_actions`.
- *
- * Shares shape with `PermitOfferActionDeps` so consumers can pass the same
- * deps to both factories. `log` drives RPC-internal error logging;
- * `on_audit_event` is wired by the two revoke-all mutations so SSE fan-out
- * mirrors the former REST-route behavior. `audit_log_config` flows from
- * `AppDeps` and is consumed by `audit_log_fire_and_forget`.
- */
-export type AdminActionDeps = Pick<RouteFactoryDeps, 'log' | 'on_audit_event' | 'audit_log_config'>;
 /**
  * Create the admin-only RPC actions.
  *
- * @param deps - `AdminActionDeps` slice of `AppDeps` (`log`, `on_audit_event`, optional `audit_log_config`)
+ * @param deps - `RouteFactoryDeps` (`log`, `audit`, …). `log` drives RPC-
+ *   internal error logging; `audit.emit` writes audit rows via the captured
+ *   pool. The bound emitter encapsulates `on_audit_event` fan-out and the
+ *   optional `AuditLogConfig`.
  * @param options - role schema for `grantable_roles` derivation
  * @returns the `RpcAction` array to spread into a `create_rpc_endpoint` call
  * @mutates `options.app_settings` ref - `app_settings_update` writes `open_signup`, `updated_at`, and `updated_by` so signup middleware reads without a DB round trip
  */
-export declare const create_admin_actions: (deps: AdminActionDeps, options?: AdminActionOptions) => Array<RpcAction>;
+export declare const create_admin_actions: (deps: Pick<RouteFactoryDeps, "log" | "audit">, options?: AdminActionOptions) => Array<RpcAction>;
 //# sourceMappingURL=admin_actions.d.ts.map

package/dist/auth/admin_actions.d.ts.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"file":"admin_actions.d.ts","sourceRoot":"../src/lib/","sources":["../../src/lib/auth/admin_actions.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;;;;;;;;;;;;;GA4BG;AAEH,OAAO,~~EAAiC~~,KAAK,SAAS,EAAC,MAAM,0BAA0B,CAAC;~~AAExF~~,OAAO,~~EAAuB~~,KAAK,gBAAgB,~~EAAC~~,MAAM,kBAAkB,CAAC;~~AAuB7E~~,OAAO,EAAC,KAAK,WAAW,EAAC,MAAM,0BAA0B,CAAC;AAK1D,OAAO,KAAK,EAAC,gBAAgB,EAAC,MAAM,WAAW,CAAC;AA8ChD,0CAA0C;AAC1C,MAAM,WAAW,kBAAkB;IAClC~~;;;;OAIG~~;IACH,KAAK,CAAC,EAAE,gBAAgB,CAAC;IACzB;;;;;;;OAOG;IACH,YAAY,CAAC,EAAE,WAAW,CAAC;CAC3B;AAED~~;;;;;;;;GAQG~~;AACH,~~MAAM~~,MAAM,~~eAAe~~,~~GAAG~~,IAAI,CAAC,gBAAgB,EAAE,KAAK,GAAG,~~gBAAgB~~,~~GAAG,kBAAkB,~~CAAC,~~CAAC;AAEpG;;;;;;;GAOG;AACH~~,~~eAAO,MAAM,oBAAoB,GAChC,MAAM,eAAe,EACrB,~~UAAS,kBAAuB,KAC9B,KAAK,CAAC,SAAS,~~CAmSjB~~,CAAC"}
1	+ {"version":3,"file":"admin_actions.d.ts","sourceRoot":"../src/lib/","sources":["../../src/lib/auth/admin_actions.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;;;;;;;;;;;;;GA4BG;AAEH,OAAO,EAAsC,KAAK,SAAS,EAAC,MAAM,0BAA0B,CAAC;AAE7F,OAAO,EAGN,KAAK,gBAAgB,EACrB,MAAM,kBAAkB,CAAC;AAuB1B,OAAO,EAAC,KAAK,WAAW,EAAC,MAAM,0BAA0B,CAAC;AAK1D,OAAO,KAAK,EAAC,gBAAgB,EAAC,MAAM,WAAW,CAAC;AA8ChD,0CAA0C;AAC1C,MAAM,WAAW,kBAAkB;IAClC;;;;;OAKG;IACH,KAAK,CAAC,EAAE,gBAAgB,CAAC;IACzB;;;;;;;OAOG;IACH,YAAY,CAAC,EAAE,WAAW,CAAC;CAC3B;AAED;;;;;;;;;;GAUG;AACH,eAAO,MAAM,oBAAoB,GAChC,MAAM,IAAI,CAAC,gBAAgB,EAAE,KAAK,GAAG,OAAO,CAAC,EAC7C,UAAS,kBAAuB,KAC9B,KAAK,CAAC,SAAS,CAgQjB,CAAC"}

package/dist/auth/admin_actions.js CHANGED Viewed

@@ -5,23 +5,23 @@
  *
  * - Account management: `admin_account_list`, `admin_session_list`,
  *   `admin_session_revoke_all`, `admin_token_revoke_all`.
- * - Audit log reads: `audit_log_list`, `audit_log_permit_history`.
+ * - Audit log reads: `audit_log_list`, `audit_log_role_grant_history`.
  * - Invite CRUD: `invite_create`, `invite_list`, `invite_delete`.
  * - App settings: `app_settings_get`, `app_settings_update` (registered only
  *   when `AdminActionOptions.app_settings` is provided — the mutable ref is
  *   owned by the server context and shared with signup middleware).
  *
  * The action specs themselves live in `auth/admin_action_specs.ts`. Mutations
- * emit matching audit events via `audit_log_fire_and_forget`.
+ * emit matching audit events via `deps.audit.emit`.
  *
  * Authorization is declared at the spec level (`auth: {role: 'admin'}`) so
  * the RPC dispatcher enforces it before the handler runs and the generated
- * surface accurately reports the requirement. `permit_revoke` in
- * `auth/permit_offer_actions.ts` uses the same spec-level pattern even though its
+ * surface accurately reports the requirement. `role_grant_revoke` in
+ * `auth/role_grant_offer_actions.ts` uses the same spec-level pattern even though its
  * sibling methods are authenticated-but-not-admin — the dispatcher checks
  * auth per-spec, so mixed-auth endpoints compose cleanly. Handler-level
  * gates are reserved for input-dependent elevation (e.g.
- * `permit_offer_list`/`_history` elevate to admin only when the caller
+ * `role_grant_offer_list`/`_history` elevate to admin only when the caller
  * passes an `account_id` other than their own — an input-dependent check
  * the spec can't express).
  *
@@ -29,35 +29,38 @@
  */
 import { rpc_action } from '../actions/action_rpc.js';
 import { jsonrpc_errors } from '../http/jsonrpc_errors.js';
-import { BUILTIN_ROLE_OPTIONS } from './role_schema.js';
+import { BUILTIN_ROLE_SPECS_BY_NAME, list_roles_with_grant_path, } from './role_schema.js';
+import { GRANT_PATH_ADMIN } from './grant_path_schema.js';
 import { query_account_by_email, query_account_by_id, query_account_by_username, query_admin_account_list, } from './account_queries.js';
 import { query_session_list_all_active, query_session_revoke_all_for_account, } from './session_queries.js';
 import { query_revoke_all_api_tokens_for_account } from './api_token_queries.js';
-import { audit_log_fire_and_forget, query_audit_log_list_permit_history, query_audit_log_list_with_usernames, } from './audit_log_queries.js';
+import { query_audit_log_list_role_grant_history, query_audit_log_list_with_usernames, } from './audit_log_queries.js';
 import { AUDIT_LOG_DEFAULT_LIMIT } from './audit_log_schema.js';
 import { query_create_invite, query_invite_delete_unclaimed, query_invite_list_all_with_usernames, } from './invite_queries.js';
 import {} from './app_settings_schema.js';
 import { query_app_settings_load_with_username, query_app_settings_update, } from './app_settings_queries.js';
 import { is_pg_unique_violation } from '../db/pg_error.js';
 import { ERROR_ACCOUNT_NOT_FOUND, ERROR_INVITE_ACCOUNT_EXISTS_EMAIL, ERROR_INVITE_ACCOUNT_EXISTS_USERNAME, ERROR_INVITE_DUPLICATE, ERROR_INVITE_MISSING_IDENTIFIER, ERROR_INVITE_NOT_FOUND, } from '../http/error_schemas.js';
-import { admin_account_list_action_spec, admin_session_list_action_spec, admin_session_revoke_all_action_spec, admin_token_revoke_all_action_spec, audit_log_list_action_spec, audit_log_permit_history_action_spec, invite_create_action_spec, invite_list_action_spec, invite_delete_action_spec, app_settings_get_action_spec, app_settings_update_action_spec, } from './admin_action_specs.js';
+import { admin_account_list_action_spec, admin_session_list_action_spec, admin_session_revoke_all_action_spec, admin_token_revoke_all_action_spec, audit_log_list_action_spec, audit_log_role_grant_history_action_spec, invite_create_action_spec, invite_list_action_spec, invite_delete_action_spec, app_settings_get_action_spec, app_settings_update_action_spec, } from './admin_action_specs.js';
 /**
  * Create the admin-only RPC actions.
  *
- * @param deps - `AdminActionDeps` slice of `AppDeps` (`log`, `on_audit_event`, optional `audit_log_config`)
+ * @param deps - `RouteFactoryDeps` (`log`, `audit`, …). `log` drives RPC-
+ *   internal error logging; `audit.emit` writes audit rows via the captured
+ *   pool. The bound emitter encapsulates `on_audit_event` fan-out and the
+ *   optional `AuditLogConfig`.
  * @param options - role schema for `grantable_roles` derivation
  * @returns the `RpcAction` array to spread into a `create_rpc_endpoint` call
  * @mutates `options.app_settings` ref - `app_settings_update` writes `open_signup`, `updated_at`, and `updated_by` so signup middleware reads without a DB round trip
  */
 export const create_admin_actions = (deps, options = {}) => {
-    const role_options = options.roles?.role_options ?? BUILTIN_ROLE_OPTIONS;
-    const grantable_roles = [];
-    for (const [name, rc] of role_options) {
-        if (rc.web_grantable)
-            grantable_roles.push(name);
-    }
-    const account_list_handler = async (_input, ctx) => {
-        const accounts = await query_admin_account_list(ctx);
+    const role_specs = options.roles?.role_specs ?? BUILTIN_ROLE_SPECS_BY_NAME;
+    const grantable_roles = list_roles_with_grant_path(role_specs, GRANT_PATH_ADMIN);
+    const account_list_handler = async (input, ctx) => {
+        const accounts = await query_admin_account_list(ctx, {
+            limit: input.limit,
+            offset: input.offset,
+        });
         return { accounts, grantable_roles };
     };
     const session_list_handler = async (_input, ctx) => {
@@ -68,10 +71,9 @@ export const create_admin_actions = (deps, options = {}) => {
         const auth = ctx.auth;
         const account = await query_account_by_id(ctx, input.account_id);
         if (!account) {
-            void audit_log_fire_and_forget(ctx, {
+            deps.audit.emit(ctx, {
                 event_type: 'session_revoke_all',
                 outcome: 'failure',
-                actor_id: auth.actor.id,
                 account_id: auth.account.id,
                 // `target_account_id` is null: the FK to `account` would reject
                 // a probe for a non-existent id. The probed value is preserved
@@ -82,28 +84,26 @@ export const create_admin_actions = (deps, options = {}) => {
                     reason: ERROR_ACCOUNT_NOT_FOUND,
                     attempted_account_id: input.account_id,
                 },
-            }, deps);
+            });
             throw jsonrpc_errors.not_found('account', { reason: ERROR_ACCOUNT_NOT_FOUND });
         }
         const count = await query_session_revoke_all_for_account(ctx, input.account_id);
-        void audit_log_fire_and_forget(ctx, {
+        deps.audit.emit(ctx, {
             event_type: 'session_revoke_all',
-            actor_id: auth.actor.id,
             account_id: auth.account.id,
             target_account_id: input.account_id,
             ip: ctx.client_ip,
             metadata: { count },
-        }, deps);
+        });
         return { ok: true, count };
     };
     const token_revoke_all_handler = async (input, ctx) => {
         const auth = ctx.auth;
         const account = await query_account_by_id(ctx, input.account_id);
         if (!account) {
-            void audit_log_fire_and_forget(ctx, {
+            deps.audit.emit(ctx, {
                 event_type: 'token_revoke_all',
                 outcome: 'failure',
-                actor_id: auth.actor.id,
                 account_id: auth.account.id,
                 // See `session_revoke_all_handler` — FK forces null here; the
                 // probed id lives under `metadata.attempted_account_id`.
@@ -113,18 +113,17 @@ export const create_admin_actions = (deps, options = {}) => {
                     reason: ERROR_ACCOUNT_NOT_FOUND,
                     attempted_account_id: input.account_id,
                 },
-            }, deps);
+            });
             throw jsonrpc_errors.not_found('account', { reason: ERROR_ACCOUNT_NOT_FOUND });
         }
         const count = await query_revoke_all_api_tokens_for_account(ctx, input.account_id);
-        void audit_log_fire_and_forget(ctx, {
+        deps.audit.emit(ctx, {
             event_type: 'token_revoke_all',
-            actor_id: auth.actor.id,
             account_id: auth.account.id,
             target_account_id: input.account_id,
             ip: ctx.client_ip,
             metadata: { count },
-        }, deps);
+        });
         return { ok: true, count };
     };
     const audit_log_list_handler = async (input, ctx) => {
@@ -138,8 +137,8 @@ export const create_admin_actions = (deps, options = {}) => {
         });
         return { events };
     };
-    const audit_log_permit_history_handler = async (input, ctx) => {
-        const events = await query_audit_log_list_permit_history(ctx, input.limit ?? AUDIT_LOG_DEFAULT_LIMIT, input.offset ?? 0);
+    const audit_log_role_grant_history_handler = async (input, ctx) => {
+        const events = await query_audit_log_list_role_grant_history(ctx, input.limit ?? AUDIT_LOG_DEFAULT_LIMIT, input.offset ?? 0);
         return { events };
     };
     const invite_create_handler = async (input, ctx) => {
@@ -183,13 +182,12 @@ export const create_admin_actions = (deps, options = {}) => {
             }
             throw err;
         }
-        void audit_log_fire_and_forget(ctx, {
+        deps.audit.emit(ctx, {
             event_type: 'invite_create',
-            actor_id: auth.actor.id,
             account_id: auth.account.id,
             ip: ctx.client_ip,
             metadata: { invite_id: invite.id, email, username },
-        }, deps);
+        });
         return { ok: true, invite };
     };
     const invite_list_handler = async (_input, ctx) => {
@@ -202,13 +200,12 @@ export const create_admin_actions = (deps, options = {}) => {
         if (!deleted) {
             throw jsonrpc_errors.not_found('invite', { reason: ERROR_INVITE_NOT_FOUND });
         }
-        void audit_log_fire_and_forget(ctx, {
+        deps.audit.emit(ctx, {
             event_type: 'invite_delete',
-            actor_id: auth.actor.id,
             account_id: auth.account.id,
             ip: ctx.client_ip,
             metadata: { invite_id: input.invite_id },
-        }, deps);
+        });
         return { ok: true };
     };
     const actions = [
@@ -217,7 +214,7 @@ export const create_admin_actions = (deps, options = {}) => {
         rpc_action(admin_session_revoke_all_action_spec, session_revoke_all_handler),
         rpc_action(admin_token_revoke_all_action_spec, token_revoke_all_handler),
         rpc_action(audit_log_list_action_spec, audit_log_list_handler),
-        rpc_action(audit_log_permit_history_action_spec, audit_log_permit_history_handler),
+        rpc_action(audit_log_role_grant_history_action_spec, audit_log_role_grant_history_handler),
         rpc_action(invite_create_action_spec, invite_create_handler),
         rpc_action(invite_list_action_spec, invite_list_handler),
         rpc_action(invite_delete_action_spec, invite_delete_handler),
@@ -237,9 +234,8 @@ export const create_admin_actions = (deps, options = {}) => {
             app_settings.open_signup = updated.open_signup;
             app_settings.updated_at = updated.updated_at;
             app_settings.updated_by = updated.updated_by;
-            void audit_log_fire_and_forget(ctx, {
+            deps.audit.emit(ctx, {
                 event_type: 'app_settings_update',
-                actor_id: auth.actor.id,
                 account_id: auth.account.id,
                 ip: ctx.client_ip,
                 metadata: {
@@ -247,7 +243,7 @@ export const create_admin_actions = (deps, options = {}) => {
                     old_value,
                     new_value: input.open_signup,
                 },
-            }, deps);
+            });
             const settings = await query_app_settings_load_with_username(ctx);
             return { ok: true, settings };
         };