@ibgib/core-gib 0.1.8 → 0.1.10

package/dist/keystone/keystone-service-v1.d.mts

@@ -1,4 +1,4 @@
-import { KeystoneIbGib_V1, KeystonePoolConfig, KeystoneClaim } from './keystone-types.mjs';
+import { KeystoneIbGib_V1, KeystonePoolConfig, KeystoneClaim, KeystoneChallengePool } from './keystone-types.mjs';
 import { IbGibSpaceAny } from '../witness/space/space-base-v1.mjs';
 import { MetaspaceService } from '../witness/space/metaspace/metaspace-types.mjs';
 /**
@@ -18,14 +18,31 @@ export declare class KeystoneService_V1 {
         space: IbGibSpaceAny;
     }): Promise<KeystoneIbGib_V1>;
     /**
-     * Signs a claim using a hybrid selection strategy.
-     * Supports: Mandatory IDs (Alice) + Sequential (FIFO) + Random (Stochastic).
+     * Signs a claim by solving challenges from a specific pool and evolving the Keystone timeline.
+     *
+     * Uses a hybrid selection strategy: Mandatory IDs (Alice) + Sequential (FIFO) + Random (Stochastic).
+     *
+     * Supports Delegation via `poolFilter` to find specific foreign pools.
      */
-    sign({ latestKeystone, masterSecret, claim, poolId, requiredChallengeIds, frameDetails, metaspace, space, }: {
+    sign({ latestKeystone, masterSecret, claim, poolId, poolFilter, requiredChallengeIds, frameDetails, metaspace, space, }: {
         latestKeystone: KeystoneIbGib_V1;
+        /**
+         * The secret used to solve the challenges.
+         * If signing with a native pool, this is the User's Master Secret.
+         * If signing with a foreign/delegated pool, this is the Delegate's Secret.
+         */
         masterSecret: string;
         claim: Partial<KeystoneClaim>;
+        /**
+         * Explicit ID of the pool to use.
+         */
         poolId?: string;
+        /**
+         * Optional predicate to find a pool.
+         * Useful for finding delegates via metadata without knowing the exact ID.
+         * e.g. (p) => p.metadata?.delegate === 'Bob'
+         */
+        poolFilter?: (pool: KeystoneChallengePool) => boolean;
         requiredChallengeIds?: string[];
         frameDetails?: any;
         metaspace: MetaspaceService;
@@ -51,8 +68,9 @@ export declare class KeystoneService_V1 {
      *
      * Logic:
      * 1. Locates the 'revoke' pool.
-     * 2. Consumes ALL available challenges in that pool (Scorched Earth).
-     * 3. Sets the revocationInfo on the new frame.
+     * 2. Solves required challenges to prove ownership.
+     * 3. Wipes the pool (via 'scorched-earth' strategy in solveAndReplenish).
+     * 4. Sets the revocationInfo on the new frame.
      */
     revoke({ latestKeystone, masterSecret, reason, frameDetails, metaspace, space, }: {
         latestKeystone: KeystoneIbGib_V1;
@@ -60,18 +78,33 @@ export declare class KeystoneService_V1 {
         reason?: string;
         frameDetails?: any;
         metaspace: MetaspaceService;
-        space?: IbGibSpaceAny;
+        space: IbGibSpaceAny;
     }): Promise<KeystoneIbGib_V1>;
     /**
-     * Generates an opaque, collision-resistant ID for a challenge.
-     * atow (2025/12/22) - Hash(Salt + Timestamp + Index)
-     */
-    private generateOpaqueChallengeId;
-    private applyReplenishmentStrategy;
-    /**
-     * Creates a new keystone ibgib that has no dna and no past.
+     * Structural evolution: Adds new challenge pools to the keystone.
+     *
+     * Use Case: Adding a delegate (Server) for SSO, adding a recovery key,
+     * or rotating to a new set of pools.
+     *
+     * Requires the Master Secret to authorize the change via a pool containing
+     * the 'manage' verb.
      */
-    private createKeystoneIbGibImpl;
-    private evolveKeystoneIbGibImpl;
+    addPools({ latestKeystone, masterSecret, newPools, metaspace, space, }: {
+        latestKeystone: KeystoneIbGib_V1;
+        /**
+         * Alice's Master Secret.
+         * Required to solve challenges from the Admin/Manage pool to authorize this change.
+         */
+        masterSecret: string;
+        /**
+         * The pools to add.
+         * NOTE: These are fully constructed Pool objects.
+         * If they are foreign (Bob's), Alice must have constructed them
+         * using Bob's challenges + Her config restrictions + isForeign=true.
+         */
+        newPools: KeystoneChallengePool[];
+        metaspace: MetaspaceService;
+        space: IbGibSpaceAny;
+    }): Promise<KeystoneIbGib_V1>;
 }
 //# sourceMappingURL=keystone-service-v1.d.mts.map

package/dist/keystone/keystone-service-v1.d.mts.map

@@ -1 +1 @@
-{"version":3,"file":"keystone-service-v1.d.mts","sourceRoot":"","sources":["../../src/keystone/keystone-service-v1.mts"],"names":[],"mappings":"AASA,OAAO,EAEH,gBAAgB,EAChB,kBAAkB,EAClB,aAAa,EAOhB,MAAM,sBAAsB,CAAC;AAU9B,OAAO,EAAE,aAAa,EAAE,MAAM,oCAAoC,CAAC;AACnE,OAAO,EAAE,gBAAgB,EAAE,MAAM,gDAAgD,CAAC;AAKlF;;;;GAIG;AACH,qBAAa,kBAAkB;IAC3B,SAAS,CAAC,EAAE,EAAE,MAAM,CAAkC;IAEtD;;OAEG;IACG,OAAO,CAAC,EACV,YAAY,EACZ,OAAO,EACP,SAAS,EACT,KAAK,GACR,EAAE;QACC,YAAY,EAAE,MAAM,CAAC;QACrB,OAAO,EAAE,kBAAkB,EAAE,CAAC;QAC9B,SAAS,EAAE,gBAAgB,CAAC;QAC5B,KAAK,EAAE,aAAa,CAAC;KACxB,GAAG,OAAO,CAAC,gBAAgB,CAAC;IAkD7B;;;OAGG;IACG,IAAI,CAAC,EACP,cAAc,EACd,YAAY,EACZ,KAAK,EACL,MAAM,EACN,oBAAyB,EACzB,YAAY,EACZ,SAAS,EACT,KAAK,GACR,EAAE;QACC,cAAc,EAAE,gBAAgB,CAAC;QACjC,YAAY,EAAE,MAAM,CAAC;QACrB,KAAK,EAAE,OAAO,CAAC,aAAa,CAAC,CAAC;QAC9B,MAAM,CAAC,EAAE,MAAM,CAAC;QAChB,oBAAoB,CAAC,EAAE,MAAM,EAAE,CAAC;QAChC,YAAY,CAAC,EAAE,GAAG,CAAC;QACnB,SAAS,EAAE,gBAAgB,CAAC;QAC5B,KAAK,EAAE,aAAa,CAAC;KACxB,GAAG,OAAO,CAAC,gBAAgB,CAAC;IA0H7B;;;;;;;;;;OAUG;IACG,QAAQ,CAAC,EACX,YAAY,EACZ,SAAS,GACZ,EAAE;QACC,YAAY,EAAE,gBAAgB,CAAC;QAC/B,SAAS,EAAE,gBAAgB,CAAC;KAC/B,GAAG,OAAO,CAAC,MAAM,EAAE,CAAC;IAOrB;;;;;;;OAOG;IACG,MAAM,CAAC,EACT,cAAc,EACd,YAAY,EACZ,MAAoC,EACpC,YAAY,EACZ,SAAS,EACT,KAAK,GACR,EAAE;QACC,cAAc,EAAE,gBAAgB,CAAC;QACjC,YAAY,EAAE,MAAM,CAAC;QACrB,MAAM,CAAC,EAAE,MAAM,CAAC;QAChB,YAAY,CAAC,EAAE,GAAG,CAAC;QACnB,SAAS,EAAE,gBAAgB,CAAC;QAC5B,KAAK,CAAC,EAAE,aAAa,CAAC;KACzB,GAAG,OAAO,CAAC,gBAAgB,CAAC;IAuF7B;;;OAGG;YACW,yBAAyB;YAgBzB,0BAA0B;IA4ExC;;OAEG;YACW,uBAAuB;YA4DvB,uBAAuB;CAmExC"}
+{"version":3,"file":"keystone-service-v1.d.mts","sourceRoot":"","sources":["../../src/keystone/keystone-service-v1.mts"],"names":[],"mappings":"AAIA,OAAO,EACc,gBAAgB,EAAE,kBAAkB,EAAE,aAAa,EACpE,qBAAqB,EACxB,MAAM,sBAAsB,CAAC;AAQ9B,OAAO,EAAE,aAAa,EAAE,MAAM,oCAAoC,CAAC;AACnE,OAAO,EAAE,gBAAgB,EAAE,MAAM,gDAAgD,CAAC;AAIlF;;;;GAIG;AACH,qBAAa,kBAAkB;IAC3B,SAAS,CAAC,EAAE,EAAE,MAAM,CAAkC;IAEtD;;OAEG;IACG,OAAO,CAAC,EACV,YAAY,EACZ,OAAO,EACP,SAAS,EACT,KAAK,GACR,EAAE;QACC,YAAY,EAAE,MAAM,CAAC;QACrB,OAAO,EAAE,kBAAkB,EAAE,CAAC;QAC9B,SAAS,EAAE,gBAAgB,CAAC;QAC5B,KAAK,EAAE,aAAa,CAAC;KACxB,GAAG,OAAO,CAAC,gBAAgB,CAAC;IAoD7B;;;;;;OAMG;IACG,IAAI,CAAC,EACP,cAAc,EACd,YAAY,EACZ,KAAK,EACL,MAAM,EACN,UAAU,EACV,oBAAyB,EACzB,YAAY,EACZ,SAAS,EACT,KAAK,GACR,EAAE;QACC,cAAc,EAAE,gBAAgB,CAAC;QACjC;;;;WAIG;QACH,YAAY,EAAE,MAAM,CAAC;QACrB,KAAK,EAAE,OAAO,CAAC,aAAa,CAAC,CAAC;QAC9B;;WAEG;QACH,MAAM,CAAC,EAAE,MAAM,CAAC;QAChB;;;;WAIG;QACH,UAAU,CAAC,EAAE,CAAC,IAAI,EAAE,qBAAqB,KAAK,OAAO,CAAC;QACtD,oBAAoB,CAAC,EAAE,MAAM,EAAE,CAAC;QAChC,YAAY,CAAC,EAAE,GAAG,CAAC;QACnB,SAAS,EAAE,gBAAgB,CAAC;QAC5B,KAAK,EAAE,aAAa,CAAC;KACxB,GAAG,OAAO,CAAC,gBAAgB,CAAC;IA+D7B;;;;;;;;;;OAUG;IACG,QAAQ,CAAC,EACX,YAAY,EACZ,SAAS,GACZ,EAAE;QACC,YAAY,EAAE,gBAAgB,CAAC;QAC/B,SAAS,EAAE,gBAAgB,CAAC;KAC/B,GAAG,OAAO,CAAC,MAAM,EAAE,CAAC;IAOrB;;;;;;;;OAQG;IACG,MAAM,CAAC,EACT,cAAc,EACd,YAAY,EACZ,MAAoC,EACpC,YAAY,EACZ,SAAS,EACT,KAAK,GACR,EAAE;QACC,cAAc,EAAE,gBAAgB,CAAC;QACjC,YAAY,EAAE,MAAM,CAAC;QACrB,MAAM,CAAC,EAAE,MAAM,CAAC;QAChB,YAAY,CAAC,EAAE,GAAG,CAAC;QACnB,SAAS,EAAE,gBAAgB,CAAC;QAC5B,KAAK,EAAE,aAAa,CAAC;KACxB,GAAG,OAAO,CAAC,gBAAgB,CAAC;IAyE7B;;;;;;;;OAQG;IACG,QAAQ,CAAC,EACX,cAAc,EACd,YAAY,EACZ,QAAQ,EACR,SAAS,EACT,KAAK,GACR,EAAE;QACC,cAAc,EAAE,gBAAgB,CAAC;QACjC;;;WAGG;QACH,YAAY,EAAE,MAAM,CAAC;QACrB;;;;;WAKG;QACH,QAAQ,EAAE,qBAAqB,EAAE,CAAC;QAClC,SAAS,EAAE,gBAAgB,CAAC;QAC5B,KAAK,EAAE,aAAa,CAAC;KACxB,GAAG,OAAO,CAAC,gBAAgB,CAAC;CA+EhC"}