@fuzdev/fuz_app 0.67.1 → 0.69.0

package/dist/ui/OpenSignupToggle.svelte

@@ -2,8 +2,7 @@
 	/**
 	 * Single checkbox bound to `AppSettings.open_signup`. Consumes
 	 * `app_settings_rpc_context`; the toggle calls `app_settings_update` RPC
-	 * via `AppSettingsState.update_open_signup`. Hides gracefully when
-	 * `has_rpc` is `false` (renders an "rpc adapter not wired" notice).
+	 * via `AppSettingsState.update_open_signup`.
 	 *
 	 * @module
 	 */
@@ -17,9 +16,7 @@
 </script>
 
 <div class="open-signup-toggle">
-	{#if !app_settings.has_rpc}
-		<p class="text_50">rpc adapter not wired</p>
-	{:else if app_settings.list.loading}
+	{#if app_settings.list.loading}
 		<p class="text_50">loading settings...</p>
 	{:else if app_settings.settings}
 		<label class="row">

package/dist/ui/OpenSignupToggle.svelte.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"OpenSignupToggle.svelte.d.ts","sourceRoot":"../src/lib/","sources":["../../src/lib/ui/OpenSignupToggle.svelte"],"names":[],"mappings":"AAiDA,UAAU,kCAAkC,CAAC,KAAK,SAAS,MAAM,CAAC,MAAM,EAAE,GAAG,CAAC,GAAG,GAAG,EAAE,MAAM,SAAS,MAAM,CAAC,MAAM,EAAE,GAAG,CAAC,GAAG,GAAG,EAAE,KAAK,SAAS,MAAM,CAAC,MAAM,EAAE,GAAG,CAAC,GAAG,GAAG,EAAE,OAAO,GAAG,EAAE,EAAE,QAAQ,GAAG,MAAM;IACpM,KAAK,OAAO,EAAE,OAAO,QAAQ,EAAE,2BAA2B,CAAC,KAAK,CAAC,GAAG,OAAO,QAAQ,EAAE,eAAe,CAAC,KAAK,EAAE,MAAM,EAAE,KAAK,CAAC,GAAG;QAAE,UAAU,CAAC,EAAE,QAAQ,CAAA;KAAE,GAAG,OAAO,CAAC;IACjK,CAAC,QAAQ,EAAE,OAAO,EAAE,KAAK,EAAE;QAAC,QAAQ,CAAC,EAAE,MAAM,CAAC;QAAC,OAAO,CAAC,EAAE,KAAK,CAAA;KAAC,GAAG,OAAO,GAAG;QAAE,IAAI,CAAC,EAAE,GAAG,CAAC;QAAC,GAAG,CAAC,EAAE,GAAG,CAAA;KAAE,CAAC;IACtG,YAAY,CAAC,EAAE,QAAQ,CAAC;CAC3B;AAKD,QAAA,MAAM,gBAAgB;;kBAA+E,CAAC;AACpF,KAAK,gBAAgB,GAAG,YAAY,CAAC,OAAO,gBAAgB,CAAC,CAAC;AAChE,eAAe,gBAAgB,CAAC"}
+{"version":3,"file":"OpenSignupToggle.svelte.d.ts","sourceRoot":"../src/lib/","sources":["../../src/lib/ui/OpenSignupToggle.svelte"],"names":[],"mappings":"AA8CA,UAAU,kCAAkC,CAAC,KAAK,SAAS,MAAM,CAAC,MAAM,EAAE,GAAG,CAAC,GAAG,GAAG,EAAE,MAAM,SAAS,MAAM,CAAC,MAAM,EAAE,GAAG,CAAC,GAAG,GAAG,EAAE,KAAK,SAAS,MAAM,CAAC,MAAM,EAAE,GAAG,CAAC,GAAG,GAAG,EAAE,OAAO,GAAG,EAAE,EAAE,QAAQ,GAAG,MAAM;IACpM,KAAK,OAAO,EAAE,OAAO,QAAQ,EAAE,2BAA2B,CAAC,KAAK,CAAC,GAAG,OAAO,QAAQ,EAAE,eAAe,CAAC,KAAK,EAAE,MAAM,EAAE,KAAK,CAAC,GAAG;QAAE,UAAU,CAAC,EAAE,QAAQ,CAAA;KAAE,GAAG,OAAO,CAAC;IACjK,CAAC,QAAQ,EAAE,OAAO,EAAE,KAAK,EAAE;QAAC,QAAQ,CAAC,EAAE,MAAM,CAAC;QAAC,OAAO,CAAC,EAAE,KAAK,CAAA;KAAC,GAAG,OAAO,GAAG;QAAE,IAAI,CAAC,EAAE,GAAG,CAAC;QAAC,GAAG,CAAC,EAAE,GAAG,CAAA;KAAE,CAAC;IACtG,YAAY,CAAC,EAAE,QAAQ,CAAC;CAC3B;AAKD,QAAA,MAAM,gBAAgB;;kBAA+E,CAAC;AACpF,KAAK,gBAAgB,GAAG,YAAY,CAAC,OAAO,gBAAgB,CAAC,CAAC;AAChE,eAAe,gBAAgB,CAAC"}

package/dist/ui/account_sessions_state.svelte.d.ts

@@ -43,19 +43,20 @@ export interface AccountSessionsRpc {
 }
 /**
  * Svelte context carrying the reactive `AccountSessionsRpc` accessor. Mirrors
- * the admin-side RPC contexts. Unset context falls back to `() => null` so
- * components render the usual "rpc adapter not wired" state.
+ * the admin-side RPC contexts. `get()` throws when no provisioner ran above
+ * the component — the adapter is required.
  */
 export declare const account_sessions_rpc_context: {
-    get: () => () => AccountSessionsRpc | null;
-    set: (value?: (() => AccountSessionsRpc | null) | undefined) => () => AccountSessionsRpc | null;
+    get: (error_message?: string) => () => AccountSessionsRpc;
+    get_maybe: () => (() => AccountSessionsRpc) | undefined;
+    set: (value: () => AccountSessionsRpc) => () => AccountSessionsRpc;
 };
 export interface AccountSessionsStateOptions {
     /**
-     * Reactive accessor for the RPC adapter; returns `null` when unwired.
-     * Matches the `get_rpc` pattern on the admin state classes.
+     * Reactive accessor for the RPC adapter. Matches the `get_rpc` pattern on
+     * the admin state classes.
      */
-    get_rpc?: () => AccountSessionsRpc | null;
+    get_rpc: () => AccountSessionsRpc;
 }
 export declare class AccountSessionsState {
     #private;
@@ -64,9 +65,7 @@ export declare class AccountSessionsState {
     readonly revoke_all: AsyncSlot<void, string>;
     sessions: Array<AuthSessionJson>;
     readonly active_count: number;
-    constructor(options?: AccountSessionsStateOptions);
-    /** True when an RPC adapter is wired. `fetch` / `submit_revoke` / `submit_revoke_all` no-op without it. */
-    get has_rpc(): boolean;
+    constructor(options: AccountSessionsStateOptions);
     fetch(): Promise<void>;
     submit_revoke(id: string): Promise<void>;
     submit_revoke_all(): Promise<void>;

package/dist/ui/account_sessions_state.svelte.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"account_sessions_state.svelte.d.ts","sourceRoot":"../src/lib/","sources":["../../src/lib/ui/account_sessions_state.svelte.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;GAYG;AAIH,OAAO,EAAC,SAAS,EAAC,MAAM,wBAAwB,CAAC;AACjD,OAAO,EAAC,cAAc,EAAC,MAAM,8BAA8B,CAAC;AAC5D,OAAO,KAAK,EAAC,eAAe,EAAC,MAAM,2BAA2B,CAAC;AAE/D;;;;;;;;;;;GAWG;AACH,MAAM,WAAW,kBAAkB;IAClC,IAAI,EAAE,MAAM,OAAO,CAAC;QAAC,QAAQ,EAAE,KAAK,CAAC,eAAe,CAAC,CAAA;KAAC,CAAC,CAAC;IACxD,MAAM,EAAE,CAAC,MAAM,EAAE;QAAC,UAAU,EAAE,MAAM,CAAA;KAAC,KAAK,OAAO,CAAC;QAAC,EAAE,EAAE,IAAI,CAAC;QAAC,OAAO,EAAE,OAAO,CAAA;KAAC,CAAC,CAAC;IAChF,UAAU,EAAE,MAAM,OAAO,CAAC;QAAC,EAAE,EAAE,IAAI,CAAC;QAAC,KAAK,EAAE,MAAM,CAAA;KAAC,CAAC,CAAC;CACrD;AAED;;;;GAIG;AACH,eAAO,MAAM,4BAA4B;qBAAwB,kBAAkB,GAAG,IAAI;yBAAzB,kBAAkB,GAAG,IAAI,wBAAzB,kBAAkB,GAAG,IAAI;CAEzF,CAAC;AAEF,MAAM,WAAW,2BAA2B;IAC3C;;;OAGG;IACH,OAAO,CAAC,EAAE,MAAM,kBAAkB,GAAG,IAAI,CAAC;CAC1C;AAED,qBAAa,oBAAoB;;IAGhC,QAAQ,CAAC,IAAI,0BAAyB;IACtC,QAAQ,CAAC,MAAM,uCAAsC;IACrD,QAAQ,CAAC,UAAU,0BAAyB;IAE5C,QAAQ,EAAE,KAAK,CAAC,eAAe,CAAC,CAAkB;IAElD,QAAQ,CAAC,YAAY,EAAE,MAAM,CAAkC;gBAEnD,OAAO,CAAC,EAAE,2BAA2B;IAIjD,2GAA2G;IAC3G,IAAI,OAAO,IAAI,OAAO,CAErB;IAQK,KAAK,IAAI,OAAO,CAAC,IAAI,CAAC;IAOtB,aAAa,CAAC,EAAE,EAAE,MAAM,GAAG,OAAO,CAAC,IAAI,CAAC;IAOxC,iBAAiB,IAAI,OAAO,CAAC,IAAI,CAAC;CAUxC"}
+{"version":3,"file":"account_sessions_state.svelte.d.ts","sourceRoot":"../src/lib/","sources":["../../src/lib/ui/account_sessions_state.svelte.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;GAYG;AAIH,OAAO,EAAC,SAAS,EAAC,MAAM,wBAAwB,CAAC;AACjD,OAAO,EAAC,cAAc,EAAC,MAAM,8BAA8B,CAAC;AAC5D,OAAO,KAAK,EAAC,eAAe,EAAC,MAAM,2BAA2B,CAAC;AAE/D;;;;;;;;;;;GAWG;AACH,MAAM,WAAW,kBAAkB;IAClC,IAAI,EAAE,MAAM,OAAO,CAAC;QAAC,QAAQ,EAAE,KAAK,CAAC,eAAe,CAAC,CAAA;KAAC,CAAC,CAAC;IACxD,MAAM,EAAE,CAAC,MAAM,EAAE;QAAC,UAAU,EAAE,MAAM,CAAA;KAAC,KAAK,OAAO,CAAC;QAAC,EAAE,EAAE,IAAI,CAAC;QAAC,OAAO,EAAE,OAAO,CAAA;KAAC,CAAC,CAAC;IAChF,UAAU,EAAE,MAAM,OAAO,CAAC;QAAC,EAAE,EAAE,IAAI,CAAC;QAAC,KAAK,EAAE,MAAM,CAAA;KAAC,CAAC,CAAC;CACrD;AAED;;;;GAIG;AACH,eAAO,MAAM,4BAA4B;2CAAwB,kBAAkB;4BAAlB,kBAAkB;uBAAlB,kBAAkB,WAAlB,kBAAkB;CAAG,CAAC;AAEvF,MAAM,WAAW,2BAA2B;IAC3C;;;OAGG;IACH,OAAO,EAAE,MAAM,kBAAkB,CAAC;CAClC;AAED,qBAAa,oBAAoB;;IAGhC,QAAQ,CAAC,IAAI,0BAAyB;IACtC,QAAQ,CAAC,MAAM,uCAAsC;IACrD,QAAQ,CAAC,UAAU,0BAAyB;IAE5C,QAAQ,EAAE,KAAK,CAAC,eAAe,CAAC,CAAkB;IAElD,QAAQ,CAAC,YAAY,EAAE,MAAM,CAAkC;gBAEnD,OAAO,EAAE,2BAA2B;IAI1C,KAAK,IAAI,OAAO,CAAC,IAAI,CAAC;IAOtB,aAAa,CAAC,EAAE,EAAE,MAAM,GAAG,OAAO,CAAC,IAAI,CAAC;IAOxC,iBAAiB,IAAI,OAAO,CAAC,IAAI,CAAC;CAUxC"}

package/dist/ui/account_sessions_state.svelte.js

@@ -16,10 +16,10 @@ import { AsyncSlot } from './async_slot.svelte.js';
 import { KeyedAsyncSlot } from './keyed_async_slot.svelte.js';
 /**
  * Svelte context carrying the reactive `AccountSessionsRpc` accessor. Mirrors
- * the admin-side RPC contexts. Unset context falls back to `() => null` so
- * components render the usual "rpc adapter not wired" state.
+ * the admin-side RPC contexts. `get()` throws when no provisioner ran above
+ * the component — the adapter is required.
  */
-export const account_sessions_rpc_context = create_context(() => () => null);
+export const account_sessions_rpc_context = create_context();
 export class AccountSessionsState {
     #get_rpc;
     list = new AsyncSlot();
@@ -28,34 +28,24 @@ export class AccountSessionsState {
     sessions = $state.raw([]);
     active_count = $derived(this.sessions.length);
     constructor(options) {
-        this.#get_rpc = options?.get_rpc ?? (() => null);
-    }
-    /** True when an RPC adapter is wired. `fetch` / `submit_revoke` / `submit_revoke_all` no-op without it. */
-    get has_rpc() {
-        return this.#get_rpc() !== null;
-    }
-    #require_rpc() {
-        const rpc = this.#get_rpc();
-        if (!rpc)
-            throw new Error('rpc adapter not wired');
-        return rpc;
+        this.#get_rpc = options.get_rpc;
     }
     async fetch() {
         await this.list.run(async () => {
-            const { sessions } = await this.#require_rpc().list();
+            const { sessions } = await this.#get_rpc().list();
             this.sessions = sessions;
         });
     }
     async submit_revoke(id) {
         await this.revoke.run(id, async () => {
-            await this.#require_rpc().revoke({ session_id: id });
+            await this.#get_rpc().revoke({ session_id: id });
         });
         if (this.revoke.succeeded(id))
             await this.fetch();
     }
     async submit_revoke_all() {
         await this.revoke_all.run(async () => {
-            await this.#require_rpc().revoke_all();
+            await this.#get_rpc().revoke_all();
         });
         if (this.revoke_all.succeeded) {
             // Current session is now revoked — next API call will 401.

package/dist/ui/admin_accounts_state.svelte.d.ts

@@ -18,7 +18,7 @@ import { KeyedAsyncSlot } from './keyed_async_slot.svelte.js';
 import type { AdminAccountEntryJson } from '../auth/account_schema.js';
 import type { RoleName } from '../auth/role_schema.js';
 import type { RoleGrantOfferJson } from '../auth/role_grant_offer_schema.js';
-import type { AdminAccountListOutput, AdminSessionListOutput, AdminSessionRevokeAllInput, AdminSessionRevokeAllOutput, AdminTokenRevokeAllInput, AdminTokenRevokeAllOutput } from '../auth/admin_action_specs.js';
+import type { AdminAccountListOutput, AccountDeleteOutput, AccountUndeleteOutput, AdminSessionListOutput, AdminSessionRevokeAllInput, AdminSessionRevokeAllOutput, AdminTokenRevokeAllInput, AdminTokenRevokeAllOutput } from '../auth/admin_action_specs.js';
 import type { RoleGrantOfferCreateInput, RoleGrantOfferCreateOutput, RoleGrantOfferOkOutput, RoleGrantRevokeInput, RoleGrantRevokeOutput } from '../auth/role_grant_offer_action_specs.js';
 /**
  * Narrow RPC surface consumed by `AdminAccountsState`. Consumers adapt their
@@ -30,9 +30,7 @@ import type { RoleGrantOfferCreateInput, RoleGrantOfferCreateOutput, RoleGrantOf
  * Every operation flows through RPC: the listing reuses `admin_account_list`,
  * grant reuses `role_grant_offer_create`, revoke and retract have dedicated
  * actions, and the session / token revoke-all mutations reuse
- * `admin_session_revoke_all` and `admin_token_revoke_all`. Without the
- * adapter the state class cannot fetch, grant, revoke, retract, or
- * revoke-all sessions/tokens.
+ * `admin_session_revoke_all` and `admin_token_revoke_all`.
  *
  * Method signatures track the underlying action specs — `Uuid`-branded ids
  * propagate from the wire through the state class to the components. The
@@ -40,7 +38,9 @@ import type { RoleGrantOfferCreateInput, RoleGrantOfferCreateOutput, RoleGrantOf
  * to bridge to the typed throwing Proxy.
  */
 export interface AdminAccountsRpc {
-    list_accounts: () => Promise<AdminAccountListOutput>;
+    list_accounts: (include_deleted?: boolean) => Promise<AdminAccountListOutput>;
+    delete_account: (account_id: Uuid) => Promise<AccountDeleteOutput>;
+    undelete_account: (account_id: Uuid) => Promise<AccountUndeleteOutput>;
     list_sessions: () => Promise<AdminSessionListOutput>;
     create_role_grant: (params: RoleGrantOfferCreateInput) => Promise<RoleGrantOfferCreateOutput>;
     revoke_role_grant: (params: RoleGrantRevokeInput) => Promise<RoleGrantRevokeOutput>;
@@ -54,22 +54,22 @@ export interface AdminAccountsRpc {
  * consumers read with `const get_rpc = admin_accounts_rpc_context.get();`
  * and either pass the accessor straight to `AdminAccountsState`/
  * `AdminSessionsState` or wrap it with `const rpc = $derived(get_rpc());`
- * for direct RPC calls. Unset context falls back to `() => null` so
- * components mounted without a provisioner surface the usual "rpc adapter
- * not wired" path.
+ * for direct RPC calls. `get()` throws when no provisioner ran above the
+ * component — the adapter is required, not optional.
  */
 export declare const admin_accounts_rpc_context: {
-    get: () => () => AdminAccountsRpc | null;
-    set: (value?: (() => AdminAccountsRpc | null) | undefined) => () => AdminAccountsRpc | null;
+    get: (error_message?: string) => () => AdminAccountsRpc;
+    get_maybe: () => (() => AdminAccountsRpc) | undefined;
+    set: (value: () => AdminAccountsRpc) => () => AdminAccountsRpc;
 };
 export interface AdminAccountsStateOptions {
     /**
-     * Reactive accessor for the RPC adapter; returns `null` when unwired.
-     * Matches `RoleGrantOffersStateOptions.account_id` / `actor_id` pattern —
-     * lets the component pass a `$props()`-sourced rpc without tripping
-     * Svelte's `state_referenced_locally` warning.
+     * Reactive accessor for the RPC adapter. Matches
+     * `RoleGrantOffersStateOptions.account_id` / `actor_id` pattern — lets the
+     * component pass a `$props()`-sourced rpc without tripping Svelte's
+     * `state_referenced_locally` warning.
      */
-    get_rpc?: () => AdminAccountsRpc | null;
+    get_rpc: () => AdminAccountsRpc;
 }
 /**
  * Compose the `grant` keyed-slot key for an offer. Account-grain offers
@@ -101,16 +101,37 @@ export declare class AdminAccountsState {
     }, string>;
     readonly revoke: KeyedAsyncSlot<string & import("zod").$brand<"Uuid">, void, string>;
     readonly retract: KeyedAsyncSlot<string & import("zod").$brand<"Uuid">, void, string>;
+    readonly soft_delete: KeyedAsyncSlot<string & import("zod").$brand<"Uuid">, void, string>;
+    readonly undelete: KeyedAsyncSlot<string & import("zod").$brand<"Uuid">, void, string>;
     accounts: Array<AdminAccountEntryJson>;
     grantable_roles: Array<RoleName>;
-    readonly account_count: number;
-    constructor(options?: AdminAccountsStateOptions);
     /**
-     * True when an RPC adapter is wired. UI uses this to gate all controls
-     * — fetch, grant, revoke, retract all flow through the same adapter.
+     * When `true`, `fetch()` includes soft-deleted (tombstoned) accounts so
+     * the admin can reactivate them. Toggled via `set_show_deleted`.
      */
-    get has_rpc(): boolean;
+    show_deleted: boolean;
+    readonly account_count: number;
+    constructor(options: AdminAccountsStateOptions);
     fetch(): Promise<void>;
+    /**
+     * Toggle whether soft-deleted accounts appear in the listing, then
+     * re-fetch. Tombstoned rows are surfaced so an admin can reactivate them
+     * via `submit_undelete`.
+     */
+    set_show_deleted(value: boolean): Promise<void>;
+    /**
+     * Soft-delete an account (reversible tombstone) via `account_delete`.
+     * Keyed by `account_id` so per-row spinners/errors stay independent.
+     * Refreshes the listing on success so the row drops out (active view) or
+     * flips to its tombstoned state (`show_deleted` view).
+     */
+    submit_delete(account_id: Uuid): Promise<void>;
+    /**
+     * Reactivate a soft-deleted account via `account_undelete` (admin-only).
+     * Keyed by `account_id`; refreshes the listing on success so the row
+     * returns to active state.
+     */
+    submit_undelete(account_id: Uuid): Promise<void>;
     /**
      * Offer the role to the recipient via the `role_grant_offer_create` RPC.
      * Server returns the pending offer; the recipient must accept before

package/dist/ui/admin_accounts_state.svelte.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"admin_accounts_state.svelte.d.ts","sourceRoot":"../src/lib/","sources":["../../src/lib/ui/admin_accounts_state.svelte.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;GAaG;AAGH,OAAO,KAAK,EAAC,IAAI,EAAC,MAAM,wBAAwB,CAAC;AAEjD,OAAO,EAAC,SAAS,EAAC,MAAM,wBAAwB,CAAC;AACjD,OAAO,EAAC,cAAc,EAAC,MAAM,8BAA8B,CAAC;AAC5D,OAAO,KAAK,EAAC,qBAAqB,EAAC,MAAM,2BAA2B,CAAC;AACrE,OAAO,KAAK,EAAC,QAAQ,EAAC,MAAM,wBAAwB,CAAC;AACrD,OAAO,KAAK,EAAC,kBAAkB,EAAC,MAAM,oCAAoC,CAAC;AAC3E,OAAO,KAAK,EACX,sBAAsB,EACtB,sBAAsB,EACtB,0BAA0B,EAC1B,2BAA2B,EAC3B,wBAAwB,EACxB,yBAAyB,EACzB,MAAM,+BAA+B,CAAC;AACvC,OAAO,KAAK,EACX,yBAAyB,EACzB,0BAA0B,EAC1B,sBAAsB,EACtB,oBAAoB,EACpB,qBAAqB,EACrB,MAAM,0CAA0C,CAAC;AAElD;;;;;;;;;;;;;;;;;;GAkBG;AACH,MAAM,WAAW,gBAAgB;IAChC,aAAa,EAAE,MAAM,OAAO,CAAC,sBAAsB,CAAC,CAAC;IACrD,aAAa,EAAE,MAAM,OAAO,CAAC,sBAAsB,CAAC,CAAC;IACrD,iBAAiB,EAAE,CAAC,MAAM,EAAE,yBAAyB,KAAK,OAAO,CAAC,0BAA0B,CAAC,CAAC;IAC9F,iBAAiB,EAAE,CAAC,MAAM,EAAE,oBAAoB,KAAK,OAAO,CAAC,qBAAqB,CAAC,CAAC;IACpF,aAAa,EAAE,CAAC,QAAQ,EAAE,IAAI,KAAK,OAAO,CAAC,sBAAsB,CAAC,CAAC;IACnE,kBAAkB,EAAE,CAAC,MAAM,EAAE,0BAA0B,KAAK,OAAO,CAAC,2BAA2B,CAAC,CAAC;IACjG,gBAAgB,EAAE,CAAC,MAAM,EAAE,wBAAwB,KAAK,OAAO,CAAC,yBAAyB,CAAC,CAAC;CAC3F;AAED;;;;;;;;;GASG;AACH,eAAO,MAAM,0BAA0B;qBAAwB,gBAAgB,GAAG,IAAI;yBAAvB,gBAAgB,GAAG,IAAI,wBAAvB,gBAAgB,GAAG,IAAI;CAErF,CAAC;AAEF,MAAM,WAAW,yBAAyB;IACzC;;;;;OAKG;IACH,OAAO,CAAC,EAAE,MAAM,gBAAgB,GAAG,IAAI,CAAC;CACxC;AAED;;;;;GAKG;AACH,eAAO,MAAM,SAAS,GAAI,YAAY,IAAI,EAAE,MAAM,QAAQ,EAAE,cAAc,IAAI,GAAG,IAAI,KAAG,MACT,CAAC;AAEhF,qBAAa,kBAAkB;;IAG9B,QAAQ,CAAC,IAAI,0BAAyB;IACtC,QAAQ,CAAC,KAAK;;;;;;;;;;;;;;;;;eAAoD;IAClE,QAAQ,CAAC,MAAM,sEAAoC;IACnD,QAAQ,CAAC,OAAO,sEAAoC;IAEpD,QAAQ,EAAE,KAAK,CAAC,qBAAqB,CAAC,CAAkB;IACxD,eAAe,EAAE,KAAK,CAAC,QAAQ,CAAC,CAAkB;IAElD,QAAQ,CAAC,aAAa,EAAE,MAAM,CAAkC;gBAEpD,OAAO,CAAC,EAAE,yBAAyB;IAI/C;;;OAGG;IACH,IAAI,OAAO,IAAI,OAAO,CAErB;IAQK,KAAK,IAAI,OAAO,CAAC,IAAI,CAAC;IAQ5B;;;;;;;;;;;;;;;;OAgBG;IACG,YAAY,CACjB,UAAU,EAAE,IAAI,EAChB,IAAI,EAAE,QAAQ,EACd,WAAW,CAAC,EAAE,IAAI,GAAG,IAAI,GACvB,OAAO,CAAC,kBAAkB,GAAG,SAAS,CAAC;IAc1C;;;;;;;;OAQG;IACG,aAAa,CAAC,QAAQ,EAAE,IAAI,EAAE,aAAa,EAAE,IAAI,EAAE,MAAM,CAAC,EAAE,MAAM,GAAG,IAAI,GAAG,OAAO,CAAC,IAAI,CAAC;IAW/F;;;;;;;OAOG;IACG,cAAc,CAAC,QAAQ,EAAE,IAAI,GAAG,OAAO,CAAC,IAAI,CAAC;CAMnD"}
+{"version":3,"file":"admin_accounts_state.svelte.d.ts","sourceRoot":"../src/lib/","sources":["../../src/lib/ui/admin_accounts_state.svelte.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;GAaG;AAGH,OAAO,KAAK,EAAC,IAAI,EAAC,MAAM,wBAAwB,CAAC;AAEjD,OAAO,EAAC,SAAS,EAAC,MAAM,wBAAwB,CAAC;AACjD,OAAO,EAAC,cAAc,EAAC,MAAM,8BAA8B,CAAC;AAC5D,OAAO,KAAK,EAAC,qBAAqB,EAAC,MAAM,2BAA2B,CAAC;AACrE,OAAO,KAAK,EAAC,QAAQ,EAAC,MAAM,wBAAwB,CAAC;AACrD,OAAO,KAAK,EAAC,kBAAkB,EAAC,MAAM,oCAAoC,CAAC;AAC3E,OAAO,KAAK,EACX,sBAAsB,EACtB,mBAAmB,EACnB,qBAAqB,EACrB,sBAAsB,EACtB,0BAA0B,EAC1B,2BAA2B,EAC3B,wBAAwB,EACxB,yBAAyB,EACzB,MAAM,+BAA+B,CAAC;AACvC,OAAO,KAAK,EACX,yBAAyB,EACzB,0BAA0B,EAC1B,sBAAsB,EACtB,oBAAoB,EACpB,qBAAqB,EACrB,MAAM,0CAA0C,CAAC;AAElD;;;;;;;;;;;;;;;;GAgBG;AACH,MAAM,WAAW,gBAAgB;IAChC,aAAa,EAAE,CAAC,eAAe,CAAC,EAAE,OAAO,KAAK,OAAO,CAAC,sBAAsB,CAAC,CAAC;IAC9E,cAAc,EAAE,CAAC,UAAU,EAAE,IAAI,KAAK,OAAO,CAAC,mBAAmB,CAAC,CAAC;IACnE,gBAAgB,EAAE,CAAC,UAAU,EAAE,IAAI,KAAK,OAAO,CAAC,qBAAqB,CAAC,CAAC;IACvE,aAAa,EAAE,MAAM,OAAO,CAAC,sBAAsB,CAAC,CAAC;IACrD,iBAAiB,EAAE,CAAC,MAAM,EAAE,yBAAyB,KAAK,OAAO,CAAC,0BAA0B,CAAC,CAAC;IAC9F,iBAAiB,EAAE,CAAC,MAAM,EAAE,oBAAoB,KAAK,OAAO,CAAC,qBAAqB,CAAC,CAAC;IACpF,aAAa,EAAE,CAAC,QAAQ,EAAE,IAAI,KAAK,OAAO,CAAC,sBAAsB,CAAC,CAAC;IACnE,kBAAkB,EAAE,CAAC,MAAM,EAAE,0BAA0B,KAAK,OAAO,CAAC,2BAA2B,CAAC,CAAC;IACjG,gBAAgB,EAAE,CAAC,MAAM,EAAE,wBAAwB,KAAK,OAAO,CAAC,yBAAyB,CAAC,CAAC;CAC3F;AAED;;;;;;;;GAQG;AACH,eAAO,MAAM,0BAA0B;2CAAwB,gBAAgB;4BAAhB,gBAAgB;uBAAhB,gBAAgB,WAAhB,gBAAgB;CAAG,CAAC;AAEnF,MAAM,WAAW,yBAAyB;IACzC;;;;;OAKG;IACH,OAAO,EAAE,MAAM,gBAAgB,CAAC;CAChC;AAED;;;;;GAKG;AACH,eAAO,MAAM,SAAS,GAAI,YAAY,IAAI,EAAE,MAAM,QAAQ,EAAE,cAAc,IAAI,GAAG,IAAI,KAAG,MACT,CAAC;AAEhF,qBAAa,kBAAkB;;IAG9B,QAAQ,CAAC,IAAI,0BAAyB;IACtC,QAAQ,CAAC,KAAK;;;;;;;;;;;;;;;;;eAAoD;IAClE,QAAQ,CAAC,MAAM,sEAAoC;IACnD,QAAQ,CAAC,OAAO,sEAAoC;IAEpD,QAAQ,CAAC,WAAW,sEAAoC;IACxD,QAAQ,CAAC,QAAQ,sEAAoC;IAErD,QAAQ,EAAE,KAAK,CAAC,qBAAqB,CAAC,CAAkB;IACxD,eAAe,EAAE,KAAK,CAAC,QAAQ,CAAC,CAAkB;IAClD;;;OAGG;IACH,YAAY,EAAE,OAAO,CAAiB;IAEtC,QAAQ,CAAC,aAAa,EAAE,MAAM,CAAkC;gBAEpD,OAAO,EAAE,yBAAyB;IAIxC,KAAK,IAAI,OAAO,CAAC,IAAI,CAAC;IAQ5B;;;;OAIG;IACG,gBAAgB,CAAC,KAAK,EAAE,OAAO,GAAG,OAAO,CAAC,IAAI,CAAC;IAMrD;;;;;OAKG;IACG,aAAa,CAAC,UAAU,EAAE,IAAI,GAAG,OAAO,CAAC,IAAI,CAAC;IAOpD;;;;OAIG;IACG,eAAe,CAAC,UAAU,EAAE,IAAI,GAAG,OAAO,CAAC,IAAI,CAAC;IAOtD;;;;;;;;;;;;;;;;OAgBG;IACG,YAAY,CACjB,UAAU,EAAE,IAAI,EAChB,IAAI,EAAE,QAAQ,EACd,WAAW,CAAC,EAAE,IAAI,GAAG,IAAI,GACvB,OAAO,CAAC,kBAAkB,GAAG,SAAS,CAAC;IAc1C;;;;;;;;OAQG;IACG,aAAa,CAAC,QAAQ,EAAE,IAAI,EAAE,aAAa,EAAE,IAAI,EAAE,MAAM,CAAC,EAAE,MAAM,GAAG,IAAI,GAAG,OAAO,CAAC,IAAI,CAAC;IAW/F;;;;;;;OAOG;IACG,cAAc,CAAC,QAAQ,EAAE,IAAI,GAAG,OAAO,CAAC,IAAI,CAAC;CAMnD"}

package/dist/ui/admin_accounts_state.svelte.js

@@ -21,11 +21,10 @@ import { KeyedAsyncSlot } from './keyed_async_slot.svelte.js';
  * consumers read with `const get_rpc = admin_accounts_rpc_context.get();`
  * and either pass the accessor straight to `AdminAccountsState`/
  * `AdminSessionsState` or wrap it with `const rpc = $derived(get_rpc());`
- * for direct RPC calls. Unset context falls back to `() => null` so
- * components mounted without a provisioner surface the usual "rpc adapter
- * not wired" path.
+ * for direct RPC calls. `get()` throws when no provisioner ran above the
+ * component — the adapter is required, not optional.
  */
-export const admin_accounts_rpc_context = create_context(() => () => null);
+export const admin_accounts_rpc_context = create_context();
 /**
  * Compose the `grant` keyed-slot key for an offer. Account-grain offers
  * key on `${account_id}:${role}`; actor-targeted offers add the actor
@@ -39,32 +38,63 @@ export class AdminAccountsState {
     grant = new KeyedAsyncSlot();
     revoke = new KeyedAsyncSlot();
     retract = new KeyedAsyncSlot();
+    // Per-row account lifecycle slots, keyed by `account_id`.
+    soft_delete = new KeyedAsyncSlot();
+    undelete = new KeyedAsyncSlot();
     accounts = $state.raw([]);
     grantable_roles = $state.raw([]);
-    account_count = $derived(this.accounts.length);
-    constructor(options) {
-        this.#get_rpc = options?.get_rpc ?? (() => null);
-    }
     /**
-     * True when an RPC adapter is wired. UI uses this to gate all controls
-     * — fetch, grant, revoke, retract all flow through the same adapter.
+     * When `true`, `fetch()` includes soft-deleted (tombstoned) accounts so
+     * the admin can reactivate them. Toggled via `set_show_deleted`.
      */
-    get has_rpc() {
-        return this.#get_rpc() !== null;
-    }
-    #require_rpc() {
-        const rpc = this.#get_rpc();
-        if (!rpc)
-            throw new Error('rpc adapter not wired');
-        return rpc;
+    show_deleted = $state(false);
+    account_count = $derived(this.accounts.length);
+    constructor(options) {
+        this.#get_rpc = options.get_rpc;
     }
     async fetch() {
         await this.list.run(async () => {
-            const { accounts, grantable_roles } = await this.#require_rpc().list_accounts();
+            const { accounts, grantable_roles } = await this.#get_rpc().list_accounts(this.show_deleted);
             this.accounts = accounts;
             this.grantable_roles = grantable_roles;
         });
     }
+    /**
+     * Toggle whether soft-deleted accounts appear in the listing, then
+     * re-fetch. Tombstoned rows are surfaced so an admin can reactivate them
+     * via `submit_undelete`.
+     */
+    async set_show_deleted(value) {
+        if (this.show_deleted === value)
+            return;
+        this.show_deleted = value;
+        await this.fetch();
+    }
+    /**
+     * Soft-delete an account (reversible tombstone) via `account_delete`.
+     * Keyed by `account_id` so per-row spinners/errors stay independent.
+     * Refreshes the listing on success so the row drops out (active view) or
+     * flips to its tombstoned state (`show_deleted` view).
+     */
+    async submit_delete(account_id) {
+        await this.soft_delete.run(account_id, async () => {
+            await this.#get_rpc().delete_account(account_id);
+        });
+        if (this.soft_delete.succeeded(account_id))
+            await this.fetch();
+    }
+    /**
+     * Reactivate a soft-deleted account via `account_undelete` (admin-only).
+     * Keyed by `account_id`; refreshes the listing on success so the row
+     * returns to active state.
+     */
+    async submit_undelete(account_id) {
+        await this.undelete.run(account_id, async () => {
+            await this.#get_rpc().undelete_account(account_id);
+        });
+        if (this.undelete.succeeded(account_id))
+            await this.fetch();
+    }
     /**
      * Offer the role to the recipient via the `role_grant_offer_create` RPC.
      * Server returns the pending offer; the recipient must accept before
@@ -85,7 +115,7 @@ export class AdminAccountsState {
     async submit_grant(account_id, role, to_actor_id) {
         const key = grant_key(account_id, role, to_actor_id);
         const offer = await this.grant.run(key, async () => {
-            const result = await this.#require_rpc().create_role_grant({
+            const result = await this.#get_rpc().create_role_grant({
                 to_account_id: account_id,
                 role,
                 ...(to_actor_id ? { to_actor_id } : {}),
@@ -107,7 +137,7 @@ export class AdminAccountsState {
      */
     async submit_revoke(actor_id, role_grant_id, reason) {
         await this.revoke.run(role_grant_id, async () => {
-            await this.#require_rpc().revoke_role_grant({
+            await this.#get_rpc().revoke_role_grant({
                 actor_id,
                 role_grant_id,
                 reason: reason ?? null,
@@ -126,7 +156,7 @@ export class AdminAccountsState {
      */
     async submit_retract(offer_id) {
         await this.retract.run(offer_id, async () => {
-            await this.#require_rpc().retract_offer(offer_id);
+            await this.#get_rpc().retract_offer(offer_id);
         });
         if (this.retract.succeeded(offer_id))
             await this.fetch();

package/dist/ui/admin_invites_state.svelte.d.ts

@@ -32,18 +32,17 @@ export interface AdminInvitesRpc {
 }
 /**
  * Svelte context carrying the reactive `AdminInvitesRpc` accessor. Mirrors
- * `admin_accounts_rpc_context`. Unset context falls back to `() => null`.
+ * `admin_accounts_rpc_context`. `get()` throws when no provisioner ran above
+ * the component — the adapter is required.
  */
 export declare const admin_invites_rpc_context: {
-    get: () => () => AdminInvitesRpc | null;
-    set: (value?: (() => AdminInvitesRpc | null) | undefined) => () => AdminInvitesRpc | null;
+    get: (error_message?: string) => () => AdminInvitesRpc;
+    get_maybe: () => (() => AdminInvitesRpc) | undefined;
+    set: (value: () => AdminInvitesRpc) => () => AdminInvitesRpc;
 };
 export interface AdminInvitesStateOptions {
-    /**
-     * Reactive accessor for the RPC adapter. `null` disables all operations
-     * (the state reports a descriptive error when mutations/fetches fire).
-     */
-    get_rpc?: () => AdminInvitesRpc | null;
+    /** Reactive accessor for the RPC adapter. */
+    get_rpc: () => AdminInvitesRpc;
 }
 export declare class AdminInvitesState {
     #private;
@@ -53,9 +52,7 @@ export declare class AdminInvitesState {
     invites: Array<InviteWithUsernamesJson>;
     readonly invite_count: number;
     readonly unclaimed_count: number;
-    constructor(options?: AdminInvitesStateOptions);
-    /** True when an RPC adapter is wired. All ops require it. */
-    get has_rpc(): boolean;
+    constructor(options: AdminInvitesStateOptions);
     fetch(): Promise<void>;
     submit_create(email?: string, username?: string): Promise<boolean>;
     submit_delete(id: Uuid): Promise<void>;

package/dist/ui/admin_invites_state.svelte.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"admin_invites_state.svelte.d.ts","sourceRoot":"../src/lib/","sources":["../../src/lib/ui/admin_invites_state.svelte.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;GAcG;AAGH,OAAO,KAAK,EAAC,IAAI,EAAC,MAAM,wBAAwB,CAAC;AAEjD,OAAO,EAAC,SAAS,EAAC,MAAM,wBAAwB,CAAC;AACjD,OAAO,EAAC,cAAc,EAAC,MAAM,8BAA8B,CAAC;AAC5D,OAAO,KAAK,EAAC,uBAAuB,EAAC,MAAM,0BAA0B,CAAC;AACtE,OAAO,KAAK,EACX,iBAAiB,EACjB,kBAAkB,EAClB,iBAAiB,EACjB,kBAAkB,EAClB,gBAAgB,EAChB,MAAM,+BAA+B,CAAC;AAEvC;;;;;;GAMG;AACH,MAAM,WAAW,eAAe;IAC/B,IAAI,EAAE,MAAM,OAAO,CAAC,gBAAgB,CAAC,CAAC;IACtC,MAAM,EAAE,CAAC,MAAM,EAAE,iBAAiB,KAAK,OAAO,CAAC,kBAAkB,CAAC,CAAC;IACnE,MAAM,EAAE,CAAC,MAAM,EAAE,iBAAiB,KAAK,OAAO,CAAC,kBAAkB,CAAC,CAAC;CACnE;AAED;;;GAGG;AACH,eAAO,MAAM,yBAAyB;qBAAwB,eAAe,GAAG,IAAI;yBAAtB,eAAe,GAAG,IAAI,wBAAtB,eAAe,GAAG,IAAI;CAEnF,CAAC;AAEF,MAAM,WAAW,wBAAwB;IACxC;;;OAGG;IACH,OAAO,CAAC,EAAE,MAAM,eAAe,GAAG,IAAI,CAAC;CACvC;AAED,qBAAa,iBAAiB;;IAG7B,QAAQ,CAAC,IAAI,0BAAyB;IACtC,QAAQ,CAAC,MAAM,0BAAyB;IACxC,QAAQ,CAAC,MAAM,sEAAoC;IAEnD,OAAO,EAAE,KAAK,CAAC,uBAAuB,CAAC,CAAkB;IAEzD,QAAQ,CAAC,YAAY,EAAE,MAAM,CAAiC;IAC9D,QAAQ,CAAC,eAAe,EAAE,MAAM,CAA8D;gBAElF,OAAO,CAAC,EAAE,wBAAwB;IAI9C,6DAA6D;IAC7D,IAAI,OAAO,IAAI,OAAO,CAErB;IAQK,KAAK,IAAI,OAAO,CAAC,IAAI,CAAC;IAOtB,aAAa,CAAC,KAAK,CAAC,EAAE,MAAM,EAAE,QAAQ,CAAC,EAAE,MAAM,GAAG,OAAO,CAAC,OAAO,CAAC;IASlE,aAAa,CAAC,EAAE,EAAE,IAAI,GAAG,OAAO,CAAC,IAAI,CAAC;CAM5C"}
+{"version":3,"file":"admin_invites_state.svelte.d.ts","sourceRoot":"../src/lib/","sources":["../../src/lib/ui/admin_invites_state.svelte.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;GAcG;AAGH,OAAO,KAAK,EAAC,IAAI,EAAC,MAAM,wBAAwB,CAAC;AAEjD,OAAO,EAAC,SAAS,EAAC,MAAM,wBAAwB,CAAC;AACjD,OAAO,EAAC,cAAc,EAAC,MAAM,8BAA8B,CAAC;AAC5D,OAAO,KAAK,EAAC,uBAAuB,EAAC,MAAM,0BAA0B,CAAC;AACtE,OAAO,KAAK,EACX,iBAAiB,EACjB,kBAAkB,EAClB,iBAAiB,EACjB,kBAAkB,EAClB,gBAAgB,EAChB,MAAM,+BAA+B,CAAC;AAEvC;;;;;;GAMG;AACH,MAAM,WAAW,eAAe;IAC/B,IAAI,EAAE,MAAM,OAAO,CAAC,gBAAgB,CAAC,CAAC;IACtC,MAAM,EAAE,CAAC,MAAM,EAAE,iBAAiB,KAAK,OAAO,CAAC,kBAAkB,CAAC,CAAC;IACnE,MAAM,EAAE,CAAC,MAAM,EAAE,iBAAiB,KAAK,OAAO,CAAC,kBAAkB,CAAC,CAAC;CACnE;AAED;;;;GAIG;AACH,eAAO,MAAM,yBAAyB;2CAAwB,eAAe;4BAAf,eAAe;uBAAf,eAAe,WAAf,eAAe;CAAG,CAAC;AAEjF,MAAM,WAAW,wBAAwB;IACxC,6CAA6C;IAC7C,OAAO,EAAE,MAAM,eAAe,CAAC;CAC/B;AAED,qBAAa,iBAAiB;;IAG7B,QAAQ,CAAC,IAAI,0BAAyB;IACtC,QAAQ,CAAC,MAAM,0BAAyB;IACxC,QAAQ,CAAC,MAAM,sEAAoC;IAEnD,OAAO,EAAE,KAAK,CAAC,uBAAuB,CAAC,CAAkB;IAEzD,QAAQ,CAAC,YAAY,EAAE,MAAM,CAAiC;IAC9D,QAAQ,CAAC,eAAe,EAAE,MAAM,CAA8D;gBAElF,OAAO,EAAE,wBAAwB;IAIvC,KAAK,IAAI,OAAO,CAAC,IAAI,CAAC;IAOtB,aAAa,CAAC,KAAK,CAAC,EAAE,MAAM,EAAE,QAAQ,CAAC,EAAE,MAAM,GAAG,OAAO,CAAC,OAAO,CAAC;IASlE,aAAa,CAAC,EAAE,EAAE,IAAI,GAAG,OAAO,CAAC,IAAI,CAAC;CAM5C"}

package/dist/ui/admin_invites_state.svelte.js

@@ -18,9 +18,10 @@ import { AsyncSlot } from './async_slot.svelte.js';
 import { KeyedAsyncSlot } from './keyed_async_slot.svelte.js';
 /**
  * Svelte context carrying the reactive `AdminInvitesRpc` accessor. Mirrors
- * `admin_accounts_rpc_context`. Unset context falls back to `() => null`.
+ * `admin_accounts_rpc_context`. `get()` throws when no provisioner ran above
+ * the component — the adapter is required.
  */
-export const admin_invites_rpc_context = create_context(() => () => null);
+export const admin_invites_rpc_context = create_context();
 export class AdminInvitesState {
     #get_rpc;
     list = new AsyncSlot();
@@ -30,27 +31,17 @@ export class AdminInvitesState {
     invite_count = $derived(this.invites.length);
     unclaimed_count = $derived(this.invites.filter((i) => !i.claimed_at).length);
     constructor(options) {
-        this.#get_rpc = options?.get_rpc ?? (() => null);
-    }
-    /** True when an RPC adapter is wired. All ops require it. */
-    get has_rpc() {
-        return this.#get_rpc() !== null;
-    }
-    #require_rpc() {
-        const rpc = this.#get_rpc();
-        if (!rpc)
-            throw new Error('rpc adapter not wired');
-        return rpc;
+        this.#get_rpc = options.get_rpc;
     }
     async fetch() {
         await this.list.run(async () => {
-            const { invites } = await this.#require_rpc().list();
+            const { invites } = await this.#get_rpc().list();
             this.invites = invites;
         });
     }
     async submit_create(email, username) {
         await this.create.run(async () => {
-            await this.#require_rpc().create({ email: email ?? null, username: username ?? null });
+            await this.#get_rpc().create({ email: email ?? null, username: username ?? null });
         });
         if (!this.create.succeeded)
             return false;
@@ -59,7 +50,7 @@ export class AdminInvitesState {
     }
     async submit_delete(id) {
         await this.remove.run(id, async () => {
-            await this.#require_rpc().delete({ invite_id: id });
+            await this.#get_rpc().delete({ invite_id: id });
         });
         if (this.remove.succeeded(id))
             await this.fetch();

package/dist/ui/admin_rpc_adapters.d.ts

@@ -32,7 +32,7 @@
  *
  * @module
  */
-import type { AdminAccountListOutput, AdminSessionListOutput, AdminSessionRevokeAllInput, AdminSessionRevokeAllOutput, AdminTokenRevokeAllInput, AdminTokenRevokeAllOutput, AuditLogListInput, AuditLogListOutput, AuditLogRoleGrantHistoryInput, AuditLogRoleGrantHistoryOutput, InviteCreateInput, InviteCreateOutput, InviteDeleteInput, InviteDeleteOutput, InviteListOutput, AppSettingsGetOutput, AppSettingsUpdateInput, AppSettingsUpdateOutput } from '../auth/admin_action_specs.js';
+import type { AdminAccountListInput, AdminAccountListOutput, AccountDeleteInput, AccountDeleteOutput, AccountUndeleteInput, AccountUndeleteOutput, AdminSessionListOutput, AdminSessionRevokeAllInput, AdminSessionRevokeAllOutput, AdminTokenRevokeAllInput, AdminTokenRevokeAllOutput, AuditLogListInput, AuditLogListOutput, AuditLogRoleGrantHistoryInput, AuditLogRoleGrantHistoryOutput, InviteCreateInput, InviteCreateOutput, InviteDeleteInput, InviteDeleteOutput, InviteListOutput, AppSettingsGetOutput, AppSettingsUpdateInput, AppSettingsUpdateOutput } from '../auth/admin_action_specs.js';
 import type { RoleGrantOfferCreateInput, RoleGrantOfferCreateOutput, RoleGrantOfferRetractInput, RoleGrantOfferOkOutput, RoleGrantRevokeInput, RoleGrantRevokeOutput } from '../auth/role_grant_offer_action_specs.js';
 import { type AdminAccountsRpc } from './admin_accounts_state.svelte.js';
 import { type AdminInvitesRpc } from './admin_invites_state.svelte.js';
@@ -51,7 +51,9 @@ import { type FormatScope } from './format_scope.js';
  * assignable as long as these methods are present at these signatures.
  */
 export interface AdminRpcApi {
-    admin_account_list: () => Promise<AdminAccountListOutput>;
+    admin_account_list: (input?: AdminAccountListInput) => Promise<AdminAccountListOutput>;
+    account_delete: (input: AccountDeleteInput) => Promise<AccountDeleteOutput>;
+    account_undelete: (input: AccountUndeleteInput) => Promise<AccountUndeleteOutput>;
     admin_session_list: () => Promise<AdminSessionListOutput>;
     admin_session_revoke_all: (input: AdminSessionRevokeAllInput) => Promise<AdminSessionRevokeAllOutput>;
     admin_token_revoke_all: (input: AdminTokenRevokeAllInput) => Promise<AdminTokenRevokeAllOutput>;
@@ -81,6 +83,8 @@ export interface AdminRpcAdapters {
  * | Narrow RPC method                   | Action spec method           |
  * | ----------------------------------- | ---------------------------- |
  * | `admin_accounts.list_accounts`      | `admin_account_list`         |
+ * | `admin_accounts.delete_account`     | `account_delete` (soft)      |
+ * | `admin_accounts.undelete_account`   | `account_undelete`           |
  * | `admin_accounts.list_sessions`      | `admin_session_list`         |
  * | `admin_accounts.create_role_grant`       | `role_grant_offer_create`        |
  * | `admin_accounts.revoke_role_grant`      | `role_grant_revoke`              |

package/dist/ui/admin_rpc_adapters.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"admin_rpc_adapters.d.ts","sourceRoot":"../src/lib/","sources":["../../src/lib/ui/admin_rpc_adapters.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GAiCG;AAEH,OAAO,KAAK,EACX,sBAAsB,EACtB,sBAAsB,EACtB,0BAA0B,EAC1B,2BAA2B,EAC3B,wBAAwB,EACxB,yBAAyB,EACzB,iBAAiB,EACjB,kBAAkB,EAClB,6BAA6B,EAC7B,8BAA8B,EAC9B,iBAAiB,EACjB,kBAAkB,EAClB,iBAAiB,EACjB,kBAAkB,EAClB,gBAAgB,EAChB,oBAAoB,EACpB,sBAAsB,EACtB,uBAAuB,EACvB,MAAM,+BAA+B,CAAC;AACvC,OAAO,KAAK,EACX,yBAAyB,EACzB,0BAA0B,EAC1B,0BAA0B,EAC1B,sBAAsB,EACtB,oBAAoB,EACpB,qBAAqB,EACrB,MAAM,0CAA0C,CAAC;AAClD,OAAO,EAA6B,KAAK,gBAAgB,EAAC,MAAM,kCAAkC,CAAC;AACnG,OAAO,EAA4B,KAAK,eAAe,EAAC,MAAM,iCAAiC,CAAC;AAChG,OAAO,EAAwB,KAAK,WAAW,EAAC,MAAM,6BAA6B,CAAC;AACpF,OAAO,EAA2B,KAAK,cAAc,EAAC,MAAM,gCAAgC,CAAC;AAC7F,OAAO,EAAuB,KAAK,WAAW,EAAC,MAAM,mBAAmB,CAAC;AAEzE;;;;;;;;;;GAUG;AACH,MAAM,WAAW,WAAW;IAC3B,kBAAkB,EAAE,MAAM,OAAO,CAAC,sBAAsB,CAAC,CAAC;IAC1D,kBAAkB,EAAE,MAAM,OAAO,CAAC,sBAAsB,CAAC,CAAC;IAC1D,wBAAwB,EAAE,CACzB,KAAK,EAAE,0BAA0B,KAC7B,OAAO,CAAC,2BAA2B,CAAC,CAAC;IAC1C,sBAAsB,EAAE,CAAC,KAAK,EAAE,wBAAwB,KAAK,OAAO,CAAC,yBAAyB,CAAC,CAAC;IAChG,cAAc,EAAE,CAAC,KAAK,EAAE,iBAAiB,KAAK,OAAO,CAAC,kBAAkB,CAAC,CAAC;IAC1E,4BAA4B,EAAE,CAC7B,KAAK,EAAE,6BAA6B,KAChC,OAAO,CAAC,8BAA8B,CAAC,CAAC;IAC7C,WAAW,EAAE,MAAM,OAAO,CAAC,gBAAgB,CAAC,CAAC;IAC7C,aAAa,EAAE,CAAC,KAAK,EAAE,iBAAiB,KAAK,OAAO,CAAC,kBAAkB,CAAC,CAAC;IACzE,aAAa,EAAE,CAAC,KAAK,EAAE,iBAAiB,KAAK,OAAO,CAAC,kBAAkB,CAAC,CAAC;IACzE,gBAAgB,EAAE,MAAM,OAAO,CAAC,oBAAoB,CAAC,CAAC;IACtD,mBAAmB,EAAE,CAAC,KAAK,EAAE,sBAAsB,KAAK,OAAO,CAAC,uBAAuB,CAAC,CAAC;IACzF,uBAAuB,EAAE,CACxB,KAAK,EAAE,yBAAyB,KAC5B,OAAO,CAAC,0BAA0B,CAAC,CAAC;IACzC,wBAAwB,EAAE,CAAC,KAAK,EAAE,0BAA0B,KAAK,OAAO,CAAC,sBAAsB,CAAC,CAAC;IACjG,iBAAiB,EAAE,CAAC,KAAK,EAAE,oBAAoB,KAAK,OAAO,CAAC,qBAAqB,CAAC,CAAC;CACnF;AAED,iEAAiE;AACjE,MAAM,WAAW,gBAAgB;IAChC,cAAc,EAAE,gBAAgB,CAAC;IACjC,aAAa,EAAE,eAAe,CAAC;IAC/B,SAAS,EAAE,WAAW,CAAC;IACvB,YAAY,EAAE,cAAc,CAAC;CAC7B;AAED;;;;;;;;;;;;;;;;;;;;;;;;;GAyBG;AACH,eAAO,MAAM,yBAAyB,GAAI,KAAK,WAAW,KAAG,gBAuB3D,CAAC;AAEH,wEAAwE;AACxE,MAAM,WAAW,8BAA8B;IAC9C;;;OAGG;IACH,YAAY,CAAC,EAAE,WAAW,CAAC;CAC3B;AAED;;;;;;;;;;;;;;;;;GAiBG;AACH,eAAO,MAAM,0BAA0B,GACtC,UAAU,gBAAgB,EAC1B,UAAU,8BAA8B,KACtC,IASF,CAAC"}
+{"version":3,"file":"admin_rpc_adapters.d.ts","sourceRoot":"../src/lib/","sources":["../../src/lib/ui/admin_rpc_adapters.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GAiCG;AAEH,OAAO,KAAK,EACX,qBAAqB,EACrB,sBAAsB,EACtB,kBAAkB,EAClB,mBAAmB,EACnB,oBAAoB,EACpB,qBAAqB,EACrB,sBAAsB,EACtB,0BAA0B,EAC1B,2BAA2B,EAC3B,wBAAwB,EACxB,yBAAyB,EACzB,iBAAiB,EACjB,kBAAkB,EAClB,6BAA6B,EAC7B,8BAA8B,EAC9B,iBAAiB,EACjB,kBAAkB,EAClB,iBAAiB,EACjB,kBAAkB,EAClB,gBAAgB,EAChB,oBAAoB,EACpB,sBAAsB,EACtB,uBAAuB,EACvB,MAAM,+BAA+B,CAAC;AACvC,OAAO,KAAK,EACX,yBAAyB,EACzB,0BAA0B,EAC1B,0BAA0B,EAC1B,sBAAsB,EACtB,oBAAoB,EACpB,qBAAqB,EACrB,MAAM,0CAA0C,CAAC;AAClD,OAAO,EAA6B,KAAK,gBAAgB,EAAC,MAAM,kCAAkC,CAAC;AACnG,OAAO,EAA4B,KAAK,eAAe,EAAC,MAAM,iCAAiC,CAAC;AAChG,OAAO,EAAwB,KAAK,WAAW,EAAC,MAAM,6BAA6B,CAAC;AACpF,OAAO,EAA2B,KAAK,cAAc,EAAC,MAAM,gCAAgC,CAAC;AAC7F,OAAO,EAAuB,KAAK,WAAW,EAAC,MAAM,mBAAmB,CAAC;AAEzE;;;;;;;;;;GAUG;AACH,MAAM,WAAW,WAAW;IAC3B,kBAAkB,EAAE,CAAC,KAAK,CAAC,EAAE,qBAAqB,KAAK,OAAO,CAAC,sBAAsB,CAAC,CAAC;IACvF,cAAc,EAAE,CAAC,KAAK,EAAE,kBAAkB,KAAK,OAAO,CAAC,mBAAmB,CAAC,CAAC;IAC5E,gBAAgB,EAAE,CAAC,KAAK,EAAE,oBAAoB,KAAK,OAAO,CAAC,qBAAqB,CAAC,CAAC;IAClF,kBAAkB,EAAE,MAAM,OAAO,CAAC,sBAAsB,CAAC,CAAC;IAC1D,wBAAwB,EAAE,CACzB,KAAK,EAAE,0BAA0B,KAC7B,OAAO,CAAC,2BAA2B,CAAC,CAAC;IAC1C,sBAAsB,EAAE,CAAC,KAAK,EAAE,wBAAwB,KAAK,OAAO,CAAC,yBAAyB,CAAC,CAAC;IAChG,cAAc,EAAE,CAAC,KAAK,EAAE,iBAAiB,KAAK,OAAO,CAAC,kBAAkB,CAAC,CAAC;IAC1E,4BAA4B,EAAE,CAC7B,KAAK,EAAE,6BAA6B,KAChC,OAAO,CAAC,8BAA8B,CAAC,CAAC;IAC7C,WAAW,EAAE,MAAM,OAAO,CAAC,gBAAgB,CAAC,CAAC;IAC7C,aAAa,EAAE,CAAC,KAAK,EAAE,iBAAiB,KAAK,OAAO,CAAC,kBAAkB,CAAC,CAAC;IACzE,aAAa,EAAE,CAAC,KAAK,EAAE,iBAAiB,KAAK,OAAO,CAAC,kBAAkB,CAAC,CAAC;IACzE,gBAAgB,EAAE,MAAM,OAAO,CAAC,oBAAoB,CAAC,CAAC;IACtD,mBAAmB,EAAE,CAAC,KAAK,EAAE,sBAAsB,KAAK,OAAO,CAAC,uBAAuB,CAAC,CAAC;IACzF,uBAAuB,EAAE,CACxB,KAAK,EAAE,yBAAyB,KAC5B,OAAO,CAAC,0BAA0B,CAAC,CAAC;IACzC,wBAAwB,EAAE,CAAC,KAAK,EAAE,0BAA0B,KAAK,OAAO,CAAC,sBAAsB,CAAC,CAAC;IACjG,iBAAiB,EAAE,CAAC,KAAK,EAAE,oBAAoB,KAAK,OAAO,CAAC,qBAAqB,CAAC,CAAC;CACnF;AAED,iEAAiE;AACjE,MAAM,WAAW,gBAAgB;IAChC,cAAc,EAAE,gBAAgB,CAAC;IACjC,aAAa,EAAE,eAAe,CAAC;IAC/B,SAAS,EAAE,WAAW,CAAC;IACvB,YAAY,EAAE,cAAc,CAAC;CAC7B;AAED;;;;;;;;;;;;;;;;;;;;;;;;;;;GA2BG;AACH,eAAO,MAAM,yBAAyB,GAAI,KAAK,WAAW,KAAG,gBAyB3D,CAAC;AAEH,wEAAwE;AACxE,MAAM,WAAW,8BAA8B;IAC9C;;;OAGG;IACH,YAAY,CAAC,EAAE,WAAW,CAAC;CAC3B;AAED;;;;;;;;;;;;;;;;;GAiBG;AACH,eAAO,MAAM,0BAA0B,GACtC,UAAU,gBAAgB,EAC1B,UAAU,8BAA8B,KACtC,IASF,CAAC"}

package/dist/ui/admin_rpc_adapters.js

@@ -45,6 +45,8 @@ import { format_scope_context } from './format_scope.js';
  * | Narrow RPC method                   | Action spec method           |
  * | ----------------------------------- | ---------------------------- |
  * | `admin_accounts.list_accounts`      | `admin_account_list`         |
+ * | `admin_accounts.delete_account`     | `account_delete` (soft)      |
+ * | `admin_accounts.undelete_account`   | `account_undelete`           |
  * | `admin_accounts.list_sessions`      | `admin_session_list`         |
  * | `admin_accounts.create_role_grant`       | `role_grant_offer_create`        |
  * | `admin_accounts.revoke_role_grant`      | `role_grant_revoke`              |
@@ -65,7 +67,9 @@ import { format_scope_context } from './format_scope.js';
  */
 export const create_admin_rpc_adapters = (api) => ({
     admin_accounts: {
-        list_accounts: () => api.admin_account_list(),
+        list_accounts: (include_deleted) => api.admin_account_list({ include_deleted }),
+        delete_account: (account_id) => api.account_delete({ account_id }),
+        undelete_account: (account_id) => api.account_undelete({ account_id }),
         list_sessions: () => api.admin_session_list(),
         create_role_grant: (params) => api.role_grant_offer_create(params),
         revoke_role_grant: (params) => api.role_grant_revoke(params),

package/dist/ui/admin_sessions_state.svelte.d.ts

@@ -23,17 +23,15 @@ import type { AdminSessionJson } from '../auth/audit_log_schema.js';
  * Options for `AdminSessionsState`.
  *
  * The RPC adapter drives every operation (listing + the two revoke-all
- * mutations). Without it, the slots' `run()` calls fail with
- * `'rpc adapter not wired'` on `error`.
+ * mutations).
  */
 export interface AdminSessionsStateOptions {
     /**
-     * Reactive accessor for the RPC adapter; returns `null` when unwired.
-     * Mirrors `AdminAccountsStateOptions.get_rpc` so a single adapter
-     * instance backs both states without tripping Svelte's
-     * `state_referenced_locally` warning.
+     * Reactive accessor for the RPC adapter. Mirrors
+     * `AdminAccountsStateOptions.get_rpc` so a single adapter instance backs
+     * both states without tripping Svelte's `state_referenced_locally` warning.
      */
-    get_rpc?: () => AdminAccountsRpc | null;
+    get_rpc: () => AdminAccountsRpc;
 }
 export declare class AdminSessionsState {
     #private;
@@ -42,9 +40,7 @@ export declare class AdminSessionsState {
     readonly revoke_tokens: KeyedAsyncSlot<string & import("zod").$brand<"Uuid">, void, string>;
     sessions: Array<AdminSessionJson>;
     readonly active_count: number;
-    constructor(options?: AdminSessionsStateOptions);
-    /** True when an RPC adapter is wired. `fetch` and the revoke controls no-op without it. */
-    get has_rpc(): boolean;
+    constructor(options: AdminSessionsStateOptions);
     fetch(): Promise<void>;
     submit_revoke_sessions(account_id: Uuid): Promise<void>;
     submit_revoke_tokens(account_id: Uuid): Promise<void>;

package/dist/ui/admin_sessions_state.svelte.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"admin_sessions_state.svelte.d.ts","sourceRoot":"../src/lib/","sources":["../../src/lib/ui/admin_sessions_state.svelte.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;GAeG;AAEH,OAAO,KAAK,EAAC,IAAI,EAAC,MAAM,wBAAwB,CAAC;AAEjD,OAAO,EAAC,SAAS,EAAC,MAAM,wBAAwB,CAAC;AACjD,OAAO,EAAC,cAAc,EAAC,MAAM,8BAA8B,CAAC;AAC5D,OAAO,KAAK,EAAC,gBAAgB,EAAC,MAAM,kCAAkC,CAAC;AACvE,OAAO,KAAK,EAAC,gBAAgB,EAAC,MAAM,6BAA6B,CAAC;AAElE;;;;;;GAMG;AACH,MAAM,WAAW,yBAAyB;IACzC;;;;;OAKG;IACH,OAAO,CAAC,EAAE,MAAM,gBAAgB,GAAG,IAAI,CAAC;CACxC;AAED,qBAAa,kBAAkB;;IAG9B,QAAQ,CAAC,IAAI,0BAAyB;IACtC,QAAQ,CAAC,eAAe,sEAAoC;IAC5D,QAAQ,CAAC,aAAa,sEAAoC;IAE1D,QAAQ,EAAE,KAAK,CAAC,gBAAgB,CAAC,CAAkB;IAEnD,QAAQ,CAAC,YAAY,EAAE,MAAM,CAAkC;gBAEnD,OAAO,CAAC,EAAE,yBAAyB;IAI/C,2FAA2F;IAC3F,IAAI,OAAO,IAAI,OAAO,CAErB;IAQK,KAAK,IAAI,OAAO,CAAC,IAAI,CAAC;IAOtB,sBAAsB,CAAC,UAAU,EAAE,IAAI,GAAG,OAAO,CAAC,IAAI,CAAC;IAOvD,oBAAoB,CAAC,UAAU,EAAE,IAAI,GAAG,OAAO,CAAC,IAAI,CAAC;CAM3D"}
+{"version":3,"file":"admin_sessions_state.svelte.d.ts","sourceRoot":"../src/lib/","sources":["../../src/lib/ui/admin_sessions_state.svelte.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;GAeG;AAEH,OAAO,KAAK,EAAC,IAAI,EAAC,MAAM,wBAAwB,CAAC;AAEjD,OAAO,EAAC,SAAS,EAAC,MAAM,wBAAwB,CAAC;AACjD,OAAO,EAAC,cAAc,EAAC,MAAM,8BAA8B,CAAC;AAC5D,OAAO,KAAK,EAAC,gBAAgB,EAAC,MAAM,kCAAkC,CAAC;AACvE,OAAO,KAAK,EAAC,gBAAgB,EAAC,MAAM,6BAA6B,CAAC;AAElE;;;;;GAKG;AACH,MAAM,WAAW,yBAAyB;IACzC;;;;OAIG;IACH,OAAO,EAAE,MAAM,gBAAgB,CAAC;CAChC;AAED,qBAAa,kBAAkB;;IAG9B,QAAQ,CAAC,IAAI,0BAAyB;IACtC,QAAQ,CAAC,eAAe,sEAAoC;IAC5D,QAAQ,CAAC,aAAa,sEAAoC;IAE1D,QAAQ,EAAE,KAAK,CAAC,gBAAgB,CAAC,CAAkB;IAEnD,QAAQ,CAAC,YAAY,EAAE,MAAM,CAAkC;gBAEnD,OAAO,EAAE,yBAAyB;IAIxC,KAAK,IAAI,OAAO,CAAC,IAAI,CAAC;IAOtB,sBAAsB,CAAC,UAAU,EAAE,IAAI,GAAG,OAAO,CAAC,IAAI,CAAC;IAOvD,oBAAoB,CAAC,UAAU,EAAE,IAAI,GAAG,OAAO,CAAC,IAAI,CAAC;CAM3D"}

package/dist/ui/admin_sessions_state.svelte.js

@@ -24,34 +24,24 @@ export class AdminSessionsState {
     sessions = $state.raw([]);
     active_count = $derived(this.sessions.length);
     constructor(options) {
-        this.#get_rpc = options?.get_rpc ?? (() => null);
-    }
-    /** True when an RPC adapter is wired. `fetch` and the revoke controls no-op without it. */
-    get has_rpc() {
-        return this.#get_rpc() !== null;
-    }
-    #require_rpc() {
-        const rpc = this.#get_rpc();
-        if (!rpc)
-            throw new Error('rpc adapter not wired');
-        return rpc;
+        this.#get_rpc = options.get_rpc;
     }
     async fetch() {
         await this.list.run(async () => {
-            const { sessions } = await this.#require_rpc().list_sessions();
+            const { sessions } = await this.#get_rpc().list_sessions();
             this.sessions = sessions;
         });
     }
     async submit_revoke_sessions(account_id) {
         await this.revoke_sessions.run(account_id, async () => {
-            await this.#require_rpc().session_revoke_all({ account_id });
+            await this.#get_rpc().session_revoke_all({ account_id });
         });
         if (this.revoke_sessions.succeeded(account_id))
             await this.fetch();
     }
     async submit_revoke_tokens(account_id) {
         await this.revoke_tokens.run(account_id, async () => {
-            await this.#require_rpc().token_revoke_all({ account_id });
+            await this.#get_rpc().token_revoke_all({ account_id });
         });
         if (this.revoke_tokens.succeeded(account_id))
             await this.fetch();