@fuzdev/fuz_app 0.60.0 → 0.62.0

package/dist/ui/admin_accounts_state.svelte.js

@@ -1,11 +1,20 @@
 /**
  * Reactive state for admin account management.
  *
+ * Holds one fetch `AsyncSlot` (`list`) plus three `KeyedAsyncSlot`s —
+ * `grant` (offer creation, keyed by `account_id:role` or
+ * `account_id:role:to_actor_id`), `revoke` (role_grant revoke, keyed
+ * by `role_grant_id`), `retract` (offer retraction, keyed by
+ * `offer_id`). Per-row supersession is correct (clicking row B no
+ * longer aborts row A) and `error(key)` surfaces failure per-row.
+ * Method names use the `submit_*` prefix to avoid slot-name
+ * collisions.
+ *
  * @module
  */
-import { SvelteSet } from 'svelte/reactivity';
 import { create_context } from '@fuzdev/fuz_ui/context_helpers.js';
-import { Loadable } from './loadable.svelte.js';
+import { AsyncSlot } from './async_slot.svelte.js';
+import { KeyedAsyncSlot } from './keyed_async_slot.svelte.js';
 /**
  * Svelte context carrying the reactive `AdminAccountsRpc` accessor. The
  * provisioner (typically the admin route shell) calls `set(() => rpc)`;
@@ -17,16 +26,23 @@ import { Loadable } from './loadable.svelte.js';
  * not wired" path.
  */
 export const admin_accounts_rpc_context = create_context(() => () => null);
-export class AdminAccountsState extends Loadable {
+/**
+ * Compose the `grant` keyed-slot key for an offer. Account-grain offers
+ * key on `${account_id}:${role}`; actor-targeted offers add the actor
+ * suffix so the two variants can be in flight simultaneously without
+ * colliding on per-row spinners.
+ */
+export const grant_key = (account_id, role, to_actor_id) => to_actor_id ? `${account_id}:${role}:${to_actor_id}` : `${account_id}:${role}`;
+export class AdminAccountsState {
     #get_rpc;
+    list = new AsyncSlot();
+    grant = new KeyedAsyncSlot();
+    revoke = new KeyedAsyncSlot();
+    retract = new KeyedAsyncSlot();
     accounts = $state.raw([]);
     grantable_roles = $state.raw([]);
-    granting_keys = new SvelteSet();
-    revoking_ids = new SvelteSet();
-    retracting_ids = new SvelteSet();
     account_count = $derived(this.accounts.length);
     constructor(options) {
-        super();
         this.#get_rpc = options?.get_rpc ?? (() => null);
     }
     /**
@@ -36,14 +52,15 @@ export class AdminAccountsState extends Loadable {
     get has_rpc() {
         return this.#get_rpc() !== null;
     }
-    async fetch() {
+    #require_rpc() {
         const rpc = this.#get_rpc();
-        if (!rpc) {
-            this.error = 'rpc adapter not wired';
-            return;
-        }
-        await this.run(async () => {
-            const { accounts, grantable_roles } = await rpc.list_accounts();
+        if (!rpc)
+            throw new Error('rpc adapter not wired');
+        return rpc;
+    }
+    async fetch() {
+        await this.list.run(async () => {
+            const { accounts, grantable_roles } = await this.#require_rpc().list_accounts();
             this.accounts = accounts;
             this.grantable_roles = grantable_roles;
         });
@@ -59,40 +76,25 @@ export class AdminAccountsState extends Loadable {
      * across those calls.
      *
      * `to_actor_id` (optional) narrows the offer to a specific actor on
-     * `account_id`; the in-flight `granting_keys` entry stays at
-     * `account_id:role` for the account-grain default (so existing
-     * consumers reading the 2-segment key keep working) and becomes
-     * `account_id:role:to_actor_id` when actor-targeted, so the two
-     * variants can be in flight without colliding on the per-row spinner.
-     *
-     * No-op when the rpc adapter is absent; `error` is set to a descriptive
-     * message so the UI surfaces the misconfiguration.
+     * `account_id`; the keyed-slot key stays at `account_id:role` for the
+     * account-grain default (so existing consumers keep working) and
+     * becomes `account_id:role:to_actor_id` when actor-targeted, so the
+     * two variants can be in flight without colliding on the per-row
+     * spinner.
      */
-    async create_role_grant(account_id, role, to_actor_id) {
-        const rpc = this.#get_rpc();
-        if (!rpc) {
-            this.error = 'rpc adapter not wired';
-            return undefined;
-        }
-        const key = to_actor_id ? `${account_id}:${role}:${to_actor_id}` : `${account_id}:${role}`;
-        this.granting_keys.add(key);
-        try {
-            const { offer } = await rpc.create_role_grant({
+    async submit_grant(account_id, role, to_actor_id) {
+        const key = grant_key(account_id, role, to_actor_id);
+        const offer = await this.grant.run(key, async () => {
+            const result = await this.#require_rpc().create_role_grant({
                 to_account_id: account_id,
                 role,
                 ...(to_actor_id ? { to_actor_id } : {}),
             });
-            this.error = null;
+            return result.offer;
+        });
+        if (offer)
             await this.fetch();
-            return offer;
-        }
-        catch (e) {
-            this.error = e instanceof Error ? e.message : 'Failed to grant role_grant';
-            return undefined;
-        }
-        finally {
-            this.granting_keys.delete(key);
-        }
+        return offer;
     }
     /**
      * Revoke an active role_grant via the `role_grant_revoke` RPC.
@@ -103,24 +105,16 @@ export class AdminAccountsState extends Loadable {
      * The optional `reason` is stamped on `role_grant.revoked_reason` and
      * surfaced on the revokee's WS notification.
      */
-    async revoke_role_grant(actor_id, role_grant_id, reason) {
-        const rpc = this.#get_rpc();
-        if (!rpc) {
-            this.error = 'rpc adapter not wired';
-            return;
-        }
-        this.revoking_ids.add(role_grant_id);
-        try {
-            await rpc.revoke_role_grant({ actor_id, role_grant_id, reason: reason ?? null });
-            this.error = null;
+    async submit_revoke(actor_id, role_grant_id, reason) {
+        await this.revoke.run(role_grant_id, async () => {
+            await this.#require_rpc().revoke_role_grant({
+                actor_id,
+                role_grant_id,
+                reason: reason ?? null,
+            });
+        });
+        if (this.revoke.succeeded(role_grant_id))
             await this.fetch();
-        }
-        catch (e) {
-            this.error = e instanceof Error ? e.message : 'Failed to revoke role_grant';
-        }
-        finally {
-            this.revoking_ids.delete(role_grant_id);
-        }
     }
     /**
      * Retract a pending offer the admin issued via the `role_grant_offer_retract`
@@ -130,23 +124,11 @@ export class AdminAccountsState extends Loadable {
      * After success, refetches the listing so `pending_offers` drops the
      * row and the "+ {role}" button un-hides.
      */
-    async retract_offer(offer_id) {
-        const rpc = this.#get_rpc();
-        if (!rpc) {
-            this.error = 'rpc adapter not wired';
-            return;
-        }
-        this.retracting_ids.add(offer_id);
-        try {
-            await rpc.retract_offer(offer_id);
-            this.error = null;
+    async submit_retract(offer_id) {
+        await this.retract.run(offer_id, async () => {
+            await this.#require_rpc().retract_offer(offer_id);
+        });
+        if (this.retract.succeeded(offer_id))
             await this.fetch();
-        }
-        catch (e) {
-            this.error = e instanceof Error ? e.message : 'Failed to retract offer';
-        }
-        finally {
-            this.retracting_ids.delete(offer_id);
-        }
     }
 }

package/dist/ui/admin_invites_state.svelte.d.ts

@@ -5,11 +5,17 @@
  * class stays decoupled from the concrete RPC client so tests can inject
  * plain-function stubs. Mirrors `AdminAccountsRpc` / `AuditLogRpc`.
  *
+ * Holds two `AsyncSlot`s — `list` (fetch) and `create` (singular write) —
+ * plus one `KeyedAsyncSlot<Uuid>` (`remove`) for the per-row delete with
+ * correct per-row supersession and per-row error surfacing. Method names
+ * use the `submit_*` prefix to avoid slot-name collisions (`delete` is
+ * reserved at top-level positions; renamed for symmetry).
+ *
  * @module
  */
-import { SvelteSet } from 'svelte/reactivity';
 import type { Uuid } from '@fuzdev/fuz_util/id.js';
-import { Loadable } from './loadable.svelte.js';
+import { AsyncSlot } from './async_slot.svelte.js';
+import { KeyedAsyncSlot } from './keyed_async_slot.svelte.js';
 import type { InviteWithUsernamesJson } from '../auth/invite_schema.js';
 import type { InviteCreateInput, InviteCreateOutput, InviteDeleteInput, InviteDeleteOutput, InviteListOutput } from '../auth/admin_action_specs.js';
 /**
@@ -39,18 +45,19 @@ export interface AdminInvitesStateOptions {
      */
     get_rpc?: () => AdminInvitesRpc | null;
 }
-export declare class AdminInvitesState extends Loadable {
+export declare class AdminInvitesState {
     #private;
+    readonly list: AsyncSlot<void, string>;
+    readonly create: AsyncSlot<void, string>;
+    readonly remove: KeyedAsyncSlot<string & import("zod").$brand<"Uuid">, void, string>;
     invites: Array<InviteWithUsernamesJson>;
-    creating: boolean;
-    readonly deleting_ids: SvelteSet<string>;
     readonly invite_count: number;
     readonly unclaimed_count: number;
     constructor(options?: AdminInvitesStateOptions);
     /** True when an RPC adapter is wired. All ops require it. */
     get has_rpc(): boolean;
     fetch(): Promise<void>;
-    create_invite(email?: string, username?: string): Promise<boolean>;
-    delete_invite(id: Uuid): Promise<void>;
+    submit_create(email?: string, username?: string): Promise<boolean>;
+    submit_delete(id: Uuid): Promise<void>;
 }
 //# sourceMappingURL=admin_invites_state.svelte.d.ts.map

package/dist/ui/admin_invites_state.svelte.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"admin_invites_state.svelte.d.ts","sourceRoot":"../src/lib/","sources":["../../src/lib/ui/admin_invites_state.svelte.ts"],"names":[],"mappings":"AAAA;;;;;;;;GAQG;AAEH,OAAO,EAAC,SAAS,EAAC,MAAM,mBAAmB,CAAC;AAE5C,OAAO,KAAK,EAAC,IAAI,EAAC,MAAM,wBAAwB,CAAC;AAEjD,OAAO,EAAC,QAAQ,EAAC,MAAM,sBAAsB,CAAC;AAC9C,OAAO,KAAK,EAAC,uBAAuB,EAAC,MAAM,0BAA0B,CAAC;AACtE,OAAO,KAAK,EACX,iBAAiB,EACjB,kBAAkB,EAClB,iBAAiB,EACjB,kBAAkB,EAClB,gBAAgB,EAChB,MAAM,+BAA+B,CAAC;AAEvC;;;;;;GAMG;AACH,MAAM,WAAW,eAAe;IAC/B,IAAI,EAAE,MAAM,OAAO,CAAC,gBAAgB,CAAC,CAAC;IACtC,MAAM,EAAE,CAAC,MAAM,EAAE,iBAAiB,KAAK,OAAO,CAAC,kBAAkB,CAAC,CAAC;IACnE,MAAM,EAAE,CAAC,MAAM,EAAE,iBAAiB,KAAK,OAAO,CAAC,kBAAkB,CAAC,CAAC;CACnE;AAED;;;GAGG;AACH,eAAO,MAAM,yBAAyB;qBAAwB,eAAe,GAAG,IAAI;yBAAtB,eAAe,GAAG,IAAI,wBAAtB,eAAe,GAAG,IAAI;CAEnF,CAAC;AAEF,MAAM,WAAW,wBAAwB;IACxC;;;OAGG;IACH,OAAO,CAAC,EAAE,MAAM,eAAe,GAAG,IAAI,CAAC;CACvC;AAED,qBAAa,iBAAkB,SAAQ,QAAQ;;IAG9C,OAAO,EAAE,KAAK,CAAC,uBAAuB,CAAC,CAAkB;IACzD,QAAQ,UAAqB;IAC7B,QAAQ,CAAC,YAAY,EAAE,SAAS,CAAC,MAAM,CAAC,CAAmB;IAE3D,QAAQ,CAAC,YAAY,SAAiC;IACtD,QAAQ,CAAC,eAAe,SAA8D;gBAE1E,OAAO,CAAC,EAAE,wBAAwB;IAK9C,6DAA6D;IAC7D,IAAI,OAAO,IAAI,OAAO,CAErB;IAEK,KAAK,IAAI,OAAO,CAAC,IAAI,CAAC;IAYtB,aAAa,CAAC,KAAK,CAAC,EAAE,MAAM,EAAE,QAAQ,CAAC,EAAE,MAAM,GAAG,OAAO,CAAC,OAAO,CAAC;IAoBlE,aAAa,CAAC,EAAE,EAAE,IAAI,GAAG,OAAO,CAAC,IAAI,CAAC;CAgB5C"}
+{"version":3,"file":"admin_invites_state.svelte.d.ts","sourceRoot":"../src/lib/","sources":["../../src/lib/ui/admin_invites_state.svelte.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;GAcG;AAGH,OAAO,KAAK,EAAC,IAAI,EAAC,MAAM,wBAAwB,CAAC;AAEjD,OAAO,EAAC,SAAS,EAAC,MAAM,wBAAwB,CAAC;AACjD,OAAO,EAAC,cAAc,EAAC,MAAM,8BAA8B,CAAC;AAC5D,OAAO,KAAK,EAAC,uBAAuB,EAAC,MAAM,0BAA0B,CAAC;AACtE,OAAO,KAAK,EACX,iBAAiB,EACjB,kBAAkB,EAClB,iBAAiB,EACjB,kBAAkB,EAClB,gBAAgB,EAChB,MAAM,+BAA+B,CAAC;AAEvC;;;;;;GAMG;AACH,MAAM,WAAW,eAAe;IAC/B,IAAI,EAAE,MAAM,OAAO,CAAC,gBAAgB,CAAC,CAAC;IACtC,MAAM,EAAE,CAAC,MAAM,EAAE,iBAAiB,KAAK,OAAO,CAAC,kBAAkB,CAAC,CAAC;IACnE,MAAM,EAAE,CAAC,MAAM,EAAE,iBAAiB,KAAK,OAAO,CAAC,kBAAkB,CAAC,CAAC;CACnE;AAED;;;GAGG;AACH,eAAO,MAAM,yBAAyB;qBAAwB,eAAe,GAAG,IAAI;yBAAtB,eAAe,GAAG,IAAI,wBAAtB,eAAe,GAAG,IAAI;CAEnF,CAAC;AAEF,MAAM,WAAW,wBAAwB;IACxC;;;OAGG;IACH,OAAO,CAAC,EAAE,MAAM,eAAe,GAAG,IAAI,CAAC;CACvC;AAED,qBAAa,iBAAiB;;IAG7B,QAAQ,CAAC,IAAI,0BAAyB;IACtC,QAAQ,CAAC,MAAM,0BAAyB;IACxC,QAAQ,CAAC,MAAM,sEAAoC;IAEnD,OAAO,EAAE,KAAK,CAAC,uBAAuB,CAAC,CAAkB;IAEzD,QAAQ,CAAC,YAAY,EAAE,MAAM,CAAiC;IAC9D,QAAQ,CAAC,eAAe,EAAE,MAAM,CAA8D;gBAElF,OAAO,CAAC,EAAE,wBAAwB;IAI9C,6DAA6D;IAC7D,IAAI,OAAO,IAAI,OAAO,CAErB;IAQK,KAAK,IAAI,OAAO,CAAC,IAAI,CAAC;IAOtB,aAAa,CAAC,KAAK,CAAC,EAAE,MAAM,EAAE,QAAQ,CAAC,EAAE,MAAM,GAAG,OAAO,CAAC,OAAO,CAAC;IASlE,aAAa,CAAC,EAAE,EAAE,IAAI,GAAG,OAAO,CAAC,IAAI,CAAC;CAM5C"}

package/dist/ui/admin_invites_state.svelte.js

@@ -5,79 +5,63 @@
  * class stays decoupled from the concrete RPC client so tests can inject
  * plain-function stubs. Mirrors `AdminAccountsRpc` / `AuditLogRpc`.
  *
+ * Holds two `AsyncSlot`s — `list` (fetch) and `create` (singular write) —
+ * plus one `KeyedAsyncSlot<Uuid>` (`remove`) for the per-row delete with
+ * correct per-row supersession and per-row error surfacing. Method names
+ * use the `submit_*` prefix to avoid slot-name collisions (`delete` is
+ * reserved at top-level positions; renamed for symmetry).
+ *
  * @module
  */
-import { SvelteSet } from 'svelte/reactivity';
 import { create_context } from '@fuzdev/fuz_ui/context_helpers.js';
-import { Loadable } from './loadable.svelte.js';
+import { AsyncSlot } from './async_slot.svelte.js';
+import { KeyedAsyncSlot } from './keyed_async_slot.svelte.js';
 /**
  * Svelte context carrying the reactive `AdminInvitesRpc` accessor. Mirrors
  * `admin_accounts_rpc_context`. Unset context falls back to `() => null`.
  */
 export const admin_invites_rpc_context = create_context(() => () => null);
-export class AdminInvitesState extends Loadable {
+export class AdminInvitesState {
     #get_rpc;
+    list = new AsyncSlot();
+    create = new AsyncSlot();
+    remove = new KeyedAsyncSlot();
     invites = $state.raw([]);
-    creating = $state.raw(false);
-    deleting_ids = new SvelteSet();
     invite_count = $derived(this.invites.length);
     unclaimed_count = $derived(this.invites.filter((i) => !i.claimed_at).length);
     constructor(options) {
-        super();
         this.#get_rpc = options?.get_rpc ?? (() => null);
     }
     /** True when an RPC adapter is wired. All ops require it. */
     get has_rpc() {
         return this.#get_rpc() !== null;
     }
-    async fetch() {
+    #require_rpc() {
         const rpc = this.#get_rpc();
-        if (!rpc) {
-            this.error = 'rpc adapter not wired';
-            return;
-        }
-        await this.run(async () => {
-            const { invites } = await rpc.list();
+        if (!rpc)
+            throw new Error('rpc adapter not wired');
+        return rpc;
+    }
+    async fetch() {
+        await this.list.run(async () => {
+            const { invites } = await this.#require_rpc().list();
             this.invites = invites;
         });
     }
-    async create_invite(email, username) {
-        const rpc = this.#get_rpc();
-        if (!rpc) {
-            this.error = 'rpc adapter not wired';
-            return false;
-        }
-        this.creating = true;
-        this.error = null;
-        try {
-            await rpc.create({ email: email ?? null, username: username ?? null });
-            await this.fetch();
-            return true;
-        }
-        catch (e) {
-            this.error = e instanceof Error ? e.message : 'Failed to create invite';
+    async submit_create(email, username) {
+        await this.create.run(async () => {
+            await this.#require_rpc().create({ email: email ?? null, username: username ?? null });
+        });
+        if (!this.create.succeeded)
             return false;
-        }
-        finally {
-            this.creating = false;
-        }
+        await this.fetch();
+        return true;
     }
-    async delete_invite(id) {
-        const rpc = this.#get_rpc();
-        if (!rpc) {
-            this.error = 'rpc adapter not wired';
-            return;
-        }
-        this.deleting_ids.add(id);
-        try {
-            await rpc.delete({ invite_id: id });
+    async submit_delete(id) {
+        await this.remove.run(id, async () => {
+            await this.#require_rpc().delete({ invite_id: id });
+        });
+        if (this.remove.succeeded(id))
             await this.fetch();
-        }
-        catch (e) {
-            this.error = e instanceof Error ? e.message : 'Failed to delete invite';
-        }
-        finally {
-            this.deleting_ids.delete(id);
-        }
     }
 }

package/dist/ui/admin_sessions_state.svelte.d.ts

@@ -6,18 +6,24 @@
  * `token_revoke_all`); the listing wraps the `admin_session_list` RPC
  * method.
  *
+ * Holds one fetch `AsyncSlot` (`list`) plus two `KeyedAsyncSlot`s keyed by
+ * `account_id` — `revoke_sessions` and `revoke_tokens`. Per-account
+ * concurrent revokes are independent (clicking row B does not abort row A)
+ * and per-row errors surface via `revoke_sessions.error(account_id)` /
+ * `revoke_tokens.error(account_id)`.
+ *
  * @module
  */
-import { SvelteSet } from 'svelte/reactivity';
 import type { Uuid } from '@fuzdev/fuz_util/id.js';
-import { Loadable } from './loadable.svelte.js';
+import { AsyncSlot } from './async_slot.svelte.js';
+import { KeyedAsyncSlot } from './keyed_async_slot.svelte.js';
 import type { AdminAccountsRpc } from './admin_accounts_state.svelte.js';
 import type { AdminSessionJson } from '../auth/audit_log_schema.js';
 /**
  * Options for `AdminSessionsState`.
  *
  * The RPC adapter drives every operation (listing + the two revoke-all
- * mutations). Without it, `fetch` and the revoke controls no-op with
+ * mutations). Without it, the slots' `run()` calls fail with
  * `'rpc adapter not wired'` on `error`.
  */
 export interface AdminSessionsStateOptions {
@@ -29,17 +35,18 @@ export interface AdminSessionsStateOptions {
      */
     get_rpc?: () => AdminAccountsRpc | null;
 }
-export declare class AdminSessionsState extends Loadable {
+export declare class AdminSessionsState {
     #private;
+    readonly list: AsyncSlot<void, string>;
+    readonly revoke_sessions: KeyedAsyncSlot<string & import("zod").$brand<"Uuid">, void, string>;
+    readonly revoke_tokens: KeyedAsyncSlot<string & import("zod").$brand<"Uuid">, void, string>;
     sessions: Array<AdminSessionJson>;
-    readonly revoking_account_ids: SvelteSet<string>;
-    readonly revoking_token_account_ids: SvelteSet<string>;
     readonly active_count: number;
     constructor(options?: AdminSessionsStateOptions);
     /** True when an RPC adapter is wired. `fetch` and the revoke controls no-op without it. */
     get has_rpc(): boolean;
     fetch(): Promise<void>;
-    revoke_all_for_account(account_id: Uuid): Promise<void>;
-    revoke_all_tokens_for_account(account_id: Uuid): Promise<void>;
+    submit_revoke_sessions(account_id: Uuid): Promise<void>;
+    submit_revoke_tokens(account_id: Uuid): Promise<void>;
 }
 //# sourceMappingURL=admin_sessions_state.svelte.d.ts.map

package/dist/ui/admin_sessions_state.svelte.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"admin_sessions_state.svelte.d.ts","sourceRoot":"../src/lib/","sources":["../../src/lib/ui/admin_sessions_state.svelte.ts"],"names":[],"mappings":"AAAA;;;;;;;;;GASG;AAEH,OAAO,EAAC,SAAS,EAAC,MAAM,mBAAmB,CAAC;AAC5C,OAAO,KAAK,EAAC,IAAI,EAAC,MAAM,wBAAwB,CAAC;AAEjD,OAAO,EAAC,QAAQ,EAAC,MAAM,sBAAsB,CAAC;AAC9C,OAAO,KAAK,EAAC,gBAAgB,EAAC,MAAM,kCAAkC,CAAC;AACvE,OAAO,KAAK,EAAC,gBAAgB,EAAC,MAAM,6BAA6B,CAAC;AAElE;;;;;;GAMG;AACH,MAAM,WAAW,yBAAyB;IACzC;;;;;OAKG;IACH,OAAO,CAAC,EAAE,MAAM,gBAAgB,GAAG,IAAI,CAAC;CACxC;AAED,qBAAa,kBAAmB,SAAQ,QAAQ;;IAG/C,QAAQ,EAAE,KAAK,CAAC,gBAAgB,CAAC,CAAkB;IACnD,QAAQ,CAAC,oBAAoB,EAAE,SAAS,CAAC,MAAM,CAAC,CAAmB;IACnE,QAAQ,CAAC,0BAA0B,EAAE,SAAS,CAAC,MAAM,CAAC,CAAmB;IAEzE,QAAQ,CAAC,YAAY,SAAkC;gBAE3C,OAAO,CAAC,EAAE,yBAAyB;IAK/C,2FAA2F;IAC3F,IAAI,OAAO,IAAI,OAAO,CAErB;IAEK,KAAK,IAAI,OAAO,CAAC,IAAI,CAAC;IAYtB,sBAAsB,CAAC,UAAU,EAAE,IAAI,GAAG,OAAO,CAAC,IAAI,CAAC;IAkBvD,6BAA6B,CAAC,UAAU,EAAE,IAAI,GAAG,OAAO,CAAC,IAAI,CAAC;CAiBpE"}
+{"version":3,"file":"admin_sessions_state.svelte.d.ts","sourceRoot":"../src/lib/","sources":["../../src/lib/ui/admin_sessions_state.svelte.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;GAeG;AAEH,OAAO,KAAK,EAAC,IAAI,EAAC,MAAM,wBAAwB,CAAC;AAEjD,OAAO,EAAC,SAAS,EAAC,MAAM,wBAAwB,CAAC;AACjD,OAAO,EAAC,cAAc,EAAC,MAAM,8BAA8B,CAAC;AAC5D,OAAO,KAAK,EAAC,gBAAgB,EAAC,MAAM,kCAAkC,CAAC;AACvE,OAAO,KAAK,EAAC,gBAAgB,EAAC,MAAM,6BAA6B,CAAC;AAElE;;;;;;GAMG;AACH,MAAM,WAAW,yBAAyB;IACzC;;;;;OAKG;IACH,OAAO,CAAC,EAAE,MAAM,gBAAgB,GAAG,IAAI,CAAC;CACxC;AAED,qBAAa,kBAAkB;;IAG9B,QAAQ,CAAC,IAAI,0BAAyB;IACtC,QAAQ,CAAC,eAAe,sEAAoC;IAC5D,QAAQ,CAAC,aAAa,sEAAoC;IAE1D,QAAQ,EAAE,KAAK,CAAC,gBAAgB,CAAC,CAAkB;IAEnD,QAAQ,CAAC,YAAY,EAAE,MAAM,CAAkC;gBAEnD,OAAO,CAAC,EAAE,yBAAyB;IAI/C,2FAA2F;IAC3F,IAAI,OAAO,IAAI,OAAO,CAErB;IAQK,KAAK,IAAI,OAAO,CAAC,IAAI,CAAC;IAOtB,sBAAsB,CAAC,UAAU,EAAE,IAAI,GAAG,OAAO,CAAC,IAAI,CAAC;IAOvD,oBAAoB,CAAC,UAAU,EAAE,IAAI,GAAG,OAAO,CAAC,IAAI,CAAC;CAM3D"}

package/dist/ui/admin_sessions_state.svelte.js

@@ -6,71 +6,54 @@
  * `token_revoke_all`); the listing wraps the `admin_session_list` RPC
  * method.
  *
+ * Holds one fetch `AsyncSlot` (`list`) plus two `KeyedAsyncSlot`s keyed by
+ * `account_id` — `revoke_sessions` and `revoke_tokens`. Per-account
+ * concurrent revokes are independent (clicking row B does not abort row A)
+ * and per-row errors surface via `revoke_sessions.error(account_id)` /
+ * `revoke_tokens.error(account_id)`.
+ *
  * @module
  */
-import { SvelteSet } from 'svelte/reactivity';
-import { Loadable } from './loadable.svelte.js';
-export class AdminSessionsState extends Loadable {
+import { AsyncSlot } from './async_slot.svelte.js';
+import { KeyedAsyncSlot } from './keyed_async_slot.svelte.js';
+export class AdminSessionsState {
     #get_rpc;
+    list = new AsyncSlot();
+    revoke_sessions = new KeyedAsyncSlot();
+    revoke_tokens = new KeyedAsyncSlot();
     sessions = $state.raw([]);
-    revoking_account_ids = new SvelteSet();
-    revoking_token_account_ids = new SvelteSet();
     active_count = $derived(this.sessions.length);
     constructor(options) {
-        super();
         this.#get_rpc = options?.get_rpc ?? (() => null);
     }
     /** True when an RPC adapter is wired. `fetch` and the revoke controls no-op without it. */
     get has_rpc() {
         return this.#get_rpc() !== null;
     }
-    async fetch() {
+    #require_rpc() {
         const rpc = this.#get_rpc();
-        if (!rpc) {
-            this.error = 'rpc adapter not wired';
-            return;
-        }
-        await this.run(async () => {
-            const { sessions } = await rpc.list_sessions();
+        if (!rpc)
+            throw new Error('rpc adapter not wired');
+        return rpc;
+    }
+    async fetch() {
+        await this.list.run(async () => {
+            const { sessions } = await this.#require_rpc().list_sessions();
             this.sessions = sessions;
         });
     }
-    async revoke_all_for_account(account_id) {
-        const rpc = this.#get_rpc();
-        if (!rpc) {
-            this.error = 'rpc adapter not wired';
-            return;
-        }
-        this.revoking_account_ids.add(account_id);
-        try {
-            await rpc.session_revoke_all({ account_id });
-            this.error = null;
+    async submit_revoke_sessions(account_id) {
+        await this.revoke_sessions.run(account_id, async () => {
+            await this.#require_rpc().session_revoke_all({ account_id });
+        });
+        if (this.revoke_sessions.succeeded(account_id))
             await this.fetch();
-        }
-        catch (e) {
-            this.error = e instanceof Error ? e.message : 'Failed to revoke sessions';
-        }
-        finally {
-            this.revoking_account_ids.delete(account_id);
-        }
     }
-    async revoke_all_tokens_for_account(account_id) {
-        const rpc = this.#get_rpc();
-        if (!rpc) {
-            this.error = 'rpc adapter not wired';
-            return;
-        }
-        this.revoking_token_account_ids.add(account_id);
-        try {
-            await rpc.token_revoke_all({ account_id });
-            this.error = null;
+    async submit_revoke_tokens(account_id) {
+        await this.revoke_tokens.run(account_id, async () => {
+            await this.#require_rpc().token_revoke_all({ account_id });
+        });
+        if (this.revoke_tokens.succeeded(account_id))
             await this.fetch();
-        }
-        catch (e) {
-            this.error = e instanceof Error ? e.message : 'Failed to revoke tokens';
-        }
-        finally {
-            this.revoking_token_account_ids.delete(account_id);
-        }
     }
 }

package/dist/ui/app_settings_state.svelte.d.ts

@@ -5,9 +5,13 @@
  * `AdminInvitesRpc` / `AuditLogRpc`. Tests can inject plain-function stubs
  * and consumers adapt their typed RPC client to the same shape.
  *
+ * Holds two `AsyncSlot`s — `list` (the initial fetch) and `update` (the
+ * `app_settings_update` write). Slots track status/error; the canonical
+ * `settings` lives on the class so consumers don't unwrap `slot.data`.
+ *
  * @module
  */
-import { Loadable } from './loadable.svelte.js';
+import { AsyncSlot } from './async_slot.svelte.js';
 import type { AppSettingsWithUsernameJson } from '../auth/app_settings_schema.js';
 import type { AppSettingsGetOutput, AppSettingsUpdateInput, AppSettingsUpdateOutput } from '../auth/admin_action_specs.js';
 /**
@@ -35,10 +39,11 @@ export interface AppSettingsStateOptions {
      */
     get_rpc?: () => AppSettingsRpc | null;
 }
-export declare class AppSettingsState extends Loadable {
+export declare class AppSettingsState {
     #private;
+    readonly list: AsyncSlot<void, string>;
+    readonly update: AsyncSlot<void, string>;
     settings: AppSettingsWithUsernameJson | null;
-    updating: boolean;
     constructor(options?: AppSettingsStateOptions);
     /** True when an RPC adapter is wired. All ops require it. */
     get has_rpc(): boolean;

package/dist/ui/app_settings_state.svelte.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"app_settings_state.svelte.d.ts","sourceRoot":"../src/lib/","sources":["../../src/lib/ui/app_settings_state.svelte.ts"],"names":[],"mappings":"AAAA;;;;;;;;GAQG;AAIH,OAAO,EAAC,QAAQ,EAAC,MAAM,sBAAsB,CAAC;AAC9C,OAAO,KAAK,EAAC,2BAA2B,EAAC,MAAM,gCAAgC,CAAC;AAChF,OAAO,KAAK,EACX,oBAAoB,EACpB,sBAAsB,EACtB,uBAAuB,EACvB,MAAM,+BAA+B,CAAC;AAEvC;;;;GAIG;AACH,MAAM,WAAW,cAAc;IAC9B,GAAG,EAAE,MAAM,OAAO,CAAC,oBAAoB,CAAC,CAAC;IACzC,MAAM,EAAE,CAAC,MAAM,EAAE,sBAAsB,KAAK,OAAO,CAAC,uBAAuB,CAAC,CAAC;CAC7E;AAED;;;;GAIG;AACH,eAAO,MAAM,wBAAwB;qBAAwB,cAAc,GAAG,IAAI;yBAArB,cAAc,GAAG,IAAI,wBAArB,cAAc,GAAG,IAAI;CAEjF,CAAC;AAEF,MAAM,WAAW,uBAAuB;IACvC;;;OAGG;IACH,OAAO,CAAC,EAAE,MAAM,cAAc,GAAG,IAAI,CAAC;CACtC;AAED,qBAAa,gBAAiB,SAAQ,QAAQ;;IAG7C,QAAQ,EAAE,2BAA2B,GAAG,IAAI,CAAoB;IAChE,QAAQ,UAAqB;gBAEjB,OAAO,CAAC,EAAE,uBAAuB;IAK7C,6DAA6D;IAC7D,IAAI,OAAO,IAAI,OAAO,CAErB;IAEK,KAAK,IAAI,OAAO,CAAC,IAAI,CAAC;IAYtB,kBAAkB,CAAC,KAAK,EAAE,OAAO,GAAG,OAAO,CAAC,IAAI,CAAC;CAiBvD"}
+{"version":3,"file":"app_settings_state.svelte.d.ts","sourceRoot":"../src/lib/","sources":["../../src/lib/ui/app_settings_state.svelte.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;GAYG;AAIH,OAAO,EAAC,SAAS,EAAC,MAAM,wBAAwB,CAAC;AACjD,OAAO,KAAK,EAAC,2BAA2B,EAAC,MAAM,gCAAgC,CAAC;AAChF,OAAO,KAAK,EACX,oBAAoB,EACpB,sBAAsB,EACtB,uBAAuB,EACvB,MAAM,+BAA+B,CAAC;AAEvC;;;;GAIG;AACH,MAAM,WAAW,cAAc;IAC9B,GAAG,EAAE,MAAM,OAAO,CAAC,oBAAoB,CAAC,CAAC;IACzC,MAAM,EAAE,CAAC,MAAM,EAAE,sBAAsB,KAAK,OAAO,CAAC,uBAAuB,CAAC,CAAC;CAC7E;AAED;;;;GAIG;AACH,eAAO,MAAM,wBAAwB;qBAAwB,cAAc,GAAG,IAAI;yBAArB,cAAc,GAAG,IAAI,wBAArB,cAAc,GAAG,IAAI;CAEjF,CAAC;AAEF,MAAM,WAAW,uBAAuB;IACvC;;;OAGG;IACH,OAAO,CAAC,EAAE,MAAM,cAAc,GAAG,IAAI,CAAC;CACtC;AAED,qBAAa,gBAAgB;;IAG5B,QAAQ,CAAC,IAAI,0BAAyB;IACtC,QAAQ,CAAC,MAAM,0BAAyB;IAExC,QAAQ,EAAE,2BAA2B,GAAG,IAAI,CAAoB;gBAEpD,OAAO,CAAC,EAAE,uBAAuB;IAI7C,6DAA6D;IAC7D,IAAI,OAAO,IAAI,OAAO,CAErB;IAQK,KAAK,IAAI,OAAO,CAAC,IAAI,CAAC;IAOtB,kBAAkB,CAAC,KAAK,EAAE,OAAO,GAAG,OAAO,CAAC,IAAI,CAAC;CAMvD"}

package/dist/ui/app_settings_state.svelte.js

@@ -5,56 +5,48 @@
  * `AdminInvitesRpc` / `AuditLogRpc`. Tests can inject plain-function stubs
  * and consumers adapt their typed RPC client to the same shape.
  *
+ * Holds two `AsyncSlot`s — `list` (the initial fetch) and `update` (the
+ * `app_settings_update` write). Slots track status/error; the canonical
+ * `settings` lives on the class so consumers don't unwrap `slot.data`.
+ *
  * @module
  */
 import { create_context } from '@fuzdev/fuz_ui/context_helpers.js';
-import { Loadable } from './loadable.svelte.js';
+import { AsyncSlot } from './async_slot.svelte.js';
 /**
  * Svelte context carrying the reactive `AppSettingsRpc` accessor. Mirrors
  * `admin_accounts_rpc_context`. Unset context falls back to `() => null` so
  * `OpenSignupToggle` mounted outside a provisioner hides gracefully.
  */
 export const app_settings_rpc_context = create_context(() => () => null);
-export class AppSettingsState extends Loadable {
+export class AppSettingsState {
     #get_rpc;
+    list = new AsyncSlot();
+    update = new AsyncSlot();
     settings = $state.raw(null);
-    updating = $state.raw(false);
     constructor(options) {
-        super();
         this.#get_rpc = options?.get_rpc ?? (() => null);
     }
     /** True when an RPC adapter is wired. All ops require it. */
     get has_rpc() {
         return this.#get_rpc() !== null;
     }
-    async fetch() {
+    #require_rpc() {
         const rpc = this.#get_rpc();
-        if (!rpc) {
-            this.error = 'rpc adapter not wired';
-            return;
-        }
-        await this.run(async () => {
-            const { settings } = await rpc.get();
+        if (!rpc)
+            throw new Error('rpc adapter not wired');
+        return rpc;
+    }
+    async fetch() {
+        await this.list.run(async () => {
+            const { settings } = await this.#require_rpc().get();
             this.settings = settings;
         });
     }
     async update_open_signup(value) {
-        const rpc = this.#get_rpc();
-        if (!rpc) {
-            this.error = 'rpc adapter not wired';
-            return;
-        }
-        this.updating = true;
-        this.error = null;
-        try {
-            const { settings } = await rpc.update({ open_signup: value });
+        await this.update.run(async () => {
+            const { settings } = await this.#require_rpc().update({ open_signup: value });
             this.settings = settings;
-        }
-        catch (e) {
-            this.error = e instanceof Error ? e.message : 'Failed to update settings';
-        }
-        finally {
-            this.updating = false;
-        }
+        });
     }
 }