npm - @invictus-z/attp - Versions diffs - 0.1.0-alpha.0 - Mend

@invictus-z/attp 0.1.0-alpha.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (7) hide show

package/dist/index.js ADDED Viewed

@@ -0,0 +1,513 @@
+// attp/core/authentication/signatures.ts
+async function signHash(entryHash, privateKey) {
+  try {
+    const data = new TextEncoder().encode(entryHash);
+    let signature;
+    const algorithm = privateKey.algorithm;
+    if (algorithm.name === "RSA-PSS") {
+      signature = await crypto.subtle.sign(
+        {
+          name: "RSA-PSS",
+          saltLength: 32
+          // PSS.MAX_LENGTH 在浏览器端无法直接获取，使用 32 (SHA-256 摘要长度)
+        },
+        privateKey,
+        data
+      );
+    } else if (algorithm.name === "ECDSA") {
+      signature = await crypto.subtle.sign(
+        {
+          name: "ECDSA",
+          hash: "SHA-256"
+        },
+        privateKey,
+        data
+      );
+    } else {
+      console.error(`[signatures] Unsupported key type: ${algorithm.name}`);
+      return "";
+    }
+    return arrayBufferToBase64(signature);
+  } catch (e) {
+    console.error("[signatures] signHash error:", e);
+    return "";
+  }
+}
+async function verifySignature(entryHash, signatureB64, publicKey) {
+  try {
+    const sigBytes = base64ToArrayBuffer(signatureB64);
+    const data = new TextEncoder().encode(entryHash);
+    const algorithm = publicKey.algorithm;
+    if (algorithm.name === "RSA-PSS") {
+      return await crypto.subtle.verify(
+        {
+          name: "RSA-PSS",
+          saltLength: 32
+        },
+        publicKey,
+        sigBytes,
+        data
+      );
+    } else if (algorithm.name === "ECDSA") {
+      return await crypto.subtle.verify(
+        {
+          name: "ECDSA",
+          hash: "SHA-256"
+        },
+        publicKey,
+        sigBytes,
+        data
+      );
+    } else {
+      console.error(`[signatures] Unsupported key type: ${algorithm.name}`);
+      return false;
+    }
+  } catch {
+    return false;
+  }
+}
+function arrayBufferToBase64(buffer) {
+  const bytes = new Uint8Array(buffer);
+  let binary = "";
+  for (let i = 0; i < bytes.byteLength; i++) {
+    binary += String.fromCharCode(bytes[i]);
+  }
+  return btoa(binary);
+}
+function base64ToArrayBuffer(base64) {
+  const binary = atob(base64);
+  const bytes = new Uint8Array(binary.length);
+  for (let i = 0; i < binary.length; i++) {
+    bytes[i] = binary.charCodeAt(i);
+  }
+  return bytes.buffer;
+}
+// attp/core/message/event.ts
+var RecordedHop = class _RecordedHop {
+  constructor(data) {
+    this.sessionId = data.sessionId;
+    this.senderDid = data.senderDid;
+    this.targetDid = data.targetDid;
+    this.content = data.content;
+    this.timestamp = data.timestamp;
+    this.hopCount = data.hopCount;
+    this.sigContent = data.sigContent ?? "";
+  }
+  /** 计算除 sigContent 外所有字段的 SHA-256 哈希。 */
+  async contentHash() {
+    const obj = {
+      session_id: this.sessionId,
+      sender_did: this.senderDid,
+      target_did: this.targetDid,
+      content: this.content,
+      timestamp: this.timestamp,
+      hop_count: this.hopCount
+    };
+    const sorted = {};
+    for (const key of Object.keys(obj).sort()) {
+      sorted[key] = obj[key];
+    }
+    const raw = JSON.stringify(sorted);
+    const buffer = new TextEncoder().encode(raw);
+    const hashBuffer = await crypto.subtle.digest("SHA-256", buffer);
+    const hashArray = Array.from(new Uint8Array(hashBuffer));
+    return hashArray.map((b) => b.toString(16).padStart(2, "0")).join("");
+  }
+  toDict() {
+    return {
+      session_id: this.sessionId,
+      sender_did: this.senderDid,
+      target_did: this.targetDid,
+      content: this.content,
+      timestamp: this.timestamp,
+      hop_count: this.hopCount,
+      sig_content: this.sigContent
+    };
+  }
+  static fromDict(data) {
+    return new _RecordedHop({
+      sessionId: data["session_id"],
+      senderDid: data["sender_did"],
+      targetDid: data["target_did"],
+      content: data["content"],
+      timestamp: data["timestamp"],
+      hopCount: data["hop_count"],
+      sigContent: data["sig_content"] ?? ""
+    });
+  }
+};
+var NodeMessage = class _NodeMessage {
+  constructor(data) {
+    this.protocolUrl = data.protocolUrl;
+    this.nonce = data.nonce;
+    this.recordedHop = data.recordedHop;
+  }
+  /** 发送方私钥对 recordedHop 内容签名，写入 sigContent。 */
+  async signContent(privateKey) {
+    const hash = await this.recordedHop.contentHash();
+    this.recordedHop.sigContent = await signHash(hash, privateKey);
+  }
+  /** 验证 recordedHop.sigContent 是否由对应公钥签署。 */
+  async verifyContent(publicKey) {
+    if (!this.recordedHop.sigContent) return false;
+    const hash = await this.recordedHop.contentHash();
+    return verifySignature(hash, this.recordedHop.sigContent, publicKey);
+  }
+  toDict() {
+    return {
+      protocol_url: this.protocolUrl,
+      nonce: this.nonce,
+      recorded_hop: this.recordedHop.toDict()
+    };
+  }
+  static fromDict(data) {
+    return new _NodeMessage({
+      protocolUrl: data["protocol_url"],
+      nonce: data["nonce"],
+      recordedHop: RecordedHop.fromDict(data["recorded_hop"])
+    });
+  }
+};
+async function identityHash(nodeDid, nonce) {
+  const obj = { node_did: nodeDid, nonce };
+  const sorted = {};
+  for (const key of Object.keys(obj).sort()) {
+    sorted[key] = obj[key];
+  }
+  const raw = JSON.stringify(sorted);
+  const buffer = new TextEncoder().encode(raw);
+  const hashBuffer = await crypto.subtle.digest("SHA-256", buffer);
+  const hashArray = Array.from(new Uint8Array(hashBuffer));
+  return hashArray.map((b) => b.toString(16).padStart(2, "0")).join("");
+}
+var BackMessage = class _BackMessage {
+  constructor(data) {
+    this.protocolUrl = data.protocolUrl;
+    this.nodeDid = data.nodeDid;
+    this.nonce = data.nonce;
+    this.sigIdentity = data.sigIdentity ?? "";
+    this.recordedHop = data.recordedHop;
+  }
+  // -- 身份签名 --
+  /** 使用回传节点私钥对 nodeDid+nonce 签名，写入 sigIdentity。 */
+  async signIdentity(privateKey) {
+    this.sigIdentity = await signHash(
+      await identityHash(this.nodeDid, this.nonce),
+      privateKey
+    );
+  }
+  /** 验证 sigIdentity 是否合法。 */
+  async verifyIdentity(publicKey) {
+    if (!this.sigIdentity) return false;
+    return verifySignature(
+      await identityHash(this.nodeDid, this.nonce),
+      this.sigIdentity,
+      publicKey
+    );
+  }
+  // -- 内容签名（发送方签名，由 recordedHop.sigContent 承载）--
+  /** 使用发送方私钥对 recordedHop 内容签名。 */
+  async signContent(privateKey) {
+    const hash = await this.recordedHop.contentHash();
+    this.recordedHop.sigContent = await signHash(hash, privateKey);
+  }
+  /** 验证 recordedHop 内容签名（发送方签名）。 */
+  async verifyContent(publicKey) {
+    if (!this.recordedHop.sigContent) return false;
+    const hash = await this.recordedHop.contentHash();
+    return verifySignature(hash, this.recordedHop.sigContent, publicKey);
+  }
+  toDict() {
+    return {
+      protocol_url: this.protocolUrl,
+      node_did: this.nodeDid,
+      nonce: this.nonce,
+      sig_identity: this.sigIdentity,
+      recorded_hop: this.recordedHop.toDict()
+    };
+  }
+  static fromDict(data) {
+    return new _BackMessage({
+      protocolUrl: data["protocol_url"],
+      nodeDid: data["node_did"],
+      nonce: data["nonce"],
+      sigIdentity: data["sig_identity"] ?? "",
+      recordedHop: RecordedHop.fromDict(data["recorded_hop"])
+    });
+  }
+};
+// attp/core/authentication/keys.ts
+var KeyStore = class {
+  constructor() {
+    this._cache = /* @__PURE__ */ new Map();
+    this._privateKeyCache = /* @__PURE__ */ new Map();
+  }
+  /**
+   * 注入公钥到缓存。
+   */
+  cachePublicKey(nodeDid, publicKey) {
+    this._cache.set(nodeDid, publicKey);
+  }
+  /**
+   * 获取缓存的公钥，不存在返回 undefined。
+   */
+  get(nodeDid) {
+    return this._cache.get(nodeDid);
+  }
+  /**
+   * 暴露内部缓存 Map 引用，维持兼容性。
+   */
+  get cacheDict() {
+    return this._cache;
+  }
+  /**
+   * 缓存私钥，后续调用相同标识直接返回缓存。
+   */
+  cachePrivateKey(keyId, privateKey) {
+    this._privateKeyCache.set(keyId, privateKey);
+  }
+  /**
+   * 获取缓存的私钥。
+   */
+  getPrivateKey(keyId) {
+    return this._privateKeyCache.get(keyId);
+  }
+  /**
+   * 检查是否已有缓存的私钥。
+   */
+  hasPrivateKey(keyId) {
+    return this._privateKeyCache.has(keyId);
+  }
+};
+// attp/core/provenance/hashing.ts
+async function sha256Sorted(obj) {
+  const sorted = {};
+  for (const key of Object.keys(obj).sort()) {
+    sorted[key] = obj[key];
+  }
+  const raw = JSON.stringify(sorted);
+  const buffer = new TextEncoder().encode(raw);
+  const hashBuffer = await crypto.subtle.digest("SHA-256", buffer);
+  const hashArray = Array.from(new Uint8Array(hashBuffer));
+  return hashArray.map((b) => b.toString(16).padStart(2, "0")).join("");
+}
+async function calculateGenesisHash(sessionId, protocolNodeAddress) {
+  return sha256Sorted({
+    session_id: sessionId,
+    protocol_node_address: protocolNodeAddress
+  });
+}
+async function calculateHopHash(content, nodeDid, targetDid, hopCount, timestamp, sessionId, protocolNodeAddress) {
+  return sha256Sorted({
+    content,
+    node_did: nodeDid,
+    target_did: targetDid,
+    hop_count: hopCount,
+    timestamp,
+    session_id: sessionId,
+    protocol_node_address: protocolNodeAddress
+  });
+}
+// attp/core/sessions/node_message.ts
+var BehaviorEntry = class _BehaviorEntry {
+  constructor(data) {
+    this.fieldType = data.fieldType;
+    this.content = data.content;
+    this.timestamp = data.timestamp ?? Date.now() / 1e3;
+    this.target = data.target ?? "";
+    this.extra = data.extra ?? {};
+  }
+  toDict() {
+    return {
+      field_type: this.fieldType,
+      content: this.content,
+      timestamp: this.timestamp,
+      target: this.target,
+      extra: this.extra
+    };
+  }
+  static fromDict(data) {
+    return new _BehaviorEntry({
+      fieldType: data["field_type"],
+      content: data["content"],
+      timestamp: data["timestamp"] ?? 0,
+      target: data["target"] ?? "",
+      extra: data["extra"] ?? {}
+    });
+  }
+};
+// attp/core/sessions/user_session.ts
+var TRACE_KEYS = ["Hop", "Session_ID", "Protocol_Node_Address"];
+var UserSession = class _UserSession {
+  constructor(data) {
+    this.key = data.key;
+    this.metadata = data.metadata ?? {};
+    this.updatedAt = data.updatedAt ?? Date.now() / 1e3;
+  }
+  // -- 追踪路由元数据 --
+  /** 提取追踪相关的元数据。 */
+  getTraceMetadata() {
+    const result = {};
+    for (const k of TRACE_KEYS) {
+      if (k in this.metadata) {
+        result[k] = this.metadata[k];
+      }
+    }
+    return result;
+  }
+  /** 合并追踪元数据。 */
+  setTraceMetadata(traceData) {
+    for (const k of TRACE_KEYS) {
+      if (k in traceData) {
+        this.metadata[k] = traceData[k];
+      }
+    }
+    this.updatedAt = Date.now() / 1e3;
+  }
+  // -- 便捷访问器 --
+  get sessionId() {
+    return this.metadata["Session_ID"];
+  }
+  set sessionId(value) {
+    if (value !== void 0) this.metadata["Session_ID"] = value;
+  }
+  get protocolNodeAddress() {
+    return this.metadata["Protocol_Node_Address"];
+  }
+  set protocolNodeAddress(value) {
+    if (value !== void 0) this.metadata["Protocol_Node_Address"] = value;
+  }
+  get hop() {
+    return this.metadata["Hop"];
+  }
+  get hopCount() {
+    return this.hop?.Hop_Count ?? -1;
+  }
+  /** 用户 DID 标识 */
+  get userDid() {
+    return this.metadata["user_did"];
+  }
+  set userDid(value) {
+    if (value !== void 0) this.metadata["user_did"] = value;
+  }
+  /** 密钥标识（用于从 KeyStore 查找私钥） */
+  get keyId() {
+    return this.metadata["key_id"];
+  }
+  set keyId(value) {
+    if (value !== void 0) this.metadata["key_id"] = value;
+  }
+  // -- 通用元数据 --
+  setMetadata(key, value) {
+    this.metadata[key] = value;
+    this.updatedAt = Date.now() / 1e3;
+  }
+  getMetadata(key, defaultValue) {
+    return this.metadata[key] ?? defaultValue;
+  }
+  updateMetadata(data) {
+    Object.assign(this.metadata, data);
+    this.updatedAt = Date.now() / 1e3;
+  }
+  // -- 序列化 --
+  toDict() {
+    return {
+      key: this.key,
+      metadata: { ...this.metadata },
+      updated_at: this.updatedAt
+    };
+  }
+  static fromDict(data) {
+    return new _UserSession({
+      key: data["key"],
+      metadata: data["metadata"] ?? {},
+      updatedAt: data["updated_at"] ?? Date.now() / 1e3
+    });
+  }
+};
+var UserSessionManager = class {
+  constructor() {
+    this._sessions = /* @__PURE__ */ new Map();
+  }
+  /** 获取或创建会话。 */
+  getOrCreate(chatId) {
+    if (!this._sessions.has(chatId)) {
+      this._sessions.set(chatId, new UserSession({ key: chatId }));
+    }
+    return this._sessions.get(chatId);
+  }
+  /** 获取已有会话，不存在返回 undefined。 */
+  get(chatId) {
+    return this._sessions.get(chatId);
+  }
+  /** 保存/更新会话。 */
+  save(session) {
+    this._sessions.set(session.key, session);
+  }
+  /** 删除会话。 */
+  delete(chatId) {
+    this._sessions.delete(chatId);
+  }
+  /** 所有会话条目。 */
+  entries() {
+    return this._sessions.entries();
+  }
+  /** 会话数量。 */
+  get size() {
+    return this._sessions.size;
+  }
+  // -- 持久化 --
+  /** 序列化所有会话为 JSON 字符串。 */
+  serialize() {
+    const obj = {};
+    for (const [key, session] of this._sessions) {
+      obj[key] = session.toDict();
+    }
+    return JSON.stringify(obj);
+  }
+  /** 从 JSON 字符串反序列化恢复所有会话。 */
+  deserialize(json) {
+    try {
+      const obj = JSON.parse(json);
+      this._sessions.clear();
+      for (const [key, value] of Object.entries(obj)) {
+        this._sessions.set(key, UserSession.fromDict(value));
+      }
+    } catch {
+    }
+  }
+  /** 保存到 localStorage。 */
+  saveToStorage(storageKey = "attp_user_sessions") {
+    try {
+      localStorage.setItem(storageKey, this.serialize());
+    } catch {
+    }
+  }
+  /** 从 localStorage 加载。 */
+  loadFromStorage(storageKey = "attp_user_sessions") {
+    try {
+      const raw = localStorage.getItem(storageKey);
+      if (raw) this.deserialize(raw);
+    } catch {
+    }
+  }
+};
+export {
+  BackMessage,
+  BehaviorEntry,
+  KeyStore,
+  NodeMessage,
+  RecordedHop,
+  UserSession,
+  UserSessionManager,
+  calculateGenesisHash,
+  calculateHopHash,
+  signHash,
+  verifySignature
+};
+//# sourceMappingURL=index.js.map

package/dist/index.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"sources":["../attp/core/authentication/signatures.ts","../attp/core/message/event.ts","../attp/core/authentication/keys.ts","../attp/core/provenance/hashing.ts","../attp/core/sessions/node_message.ts","../attp/core/sessions/user_session.ts"],"sourcesContent":["/**\r\n * 签名与验签引擎。\r\n *\r\n * 从 python/attp/core/authentication/signatures.py 翻译而来。\r\n * 使用 Web Crypto API 实现，支持：\r\n * - RSA-PSS (对应 Python rsa.RSAPrivateKey/RSAPublicKey)\r\n * - ECDSA P-256/384/521 (对应 Python ec.EllipticCurvePrivateKey)\r\n *\r\n * 注意：Python 端对 entry_hash 字符串直接签名（UTF-8 编码后），\r\n * Web Crypto API 签名时也对 UTF-8 编码的字符串签名，保持一致。\r\n */\r\n\r\n/**\r\n * 使用私钥对 entryHash 签名，返回 Base64 编码的签名字符串。\r\n *\r\n * @param entryHash SHA-256 hex 字符串\r\n * @param privateKey CryptoKey 私钥对象 (RSA 或 EC)\r\n * @returns Base64 编码的签名字符串，失败返回空字符串\r\n */\r\nexport async function signHash(\r\n entryHash: string,\r\n privateKey: CryptoKey,\r\n): Promise<string> {\r\n try {\r\n const data = new TextEncoder().encode(entryHash);\r\n\r\n let signature: ArrayBuffer;\r\n\r\n const algorithm = privateKey.algorithm;\r\n if (algorithm.name === 'RSA-PSS') {\r\n signature = await crypto.subtle.sign(\r\n {\r\n name: 'RSA-PSS',\r\n saltLength: 32, // PSS.MAX_LENGTH 在浏览器端无法直接获取，使用 32 (SHA-256 摘要长度)\r\n },\r\n privateKey,\r\n data,\r\n );\r\n } else if (algorithm.name === 'ECDSA') {\r\n signature = await crypto.subtle.sign(\r\n {\r\n name: 'ECDSA',\r\n hash: 'SHA-256',\r\n },\r\n privateKey,\r\n data,\r\n );\r\n } else {\r\n console.error(`[signatures] Unsupported key type: ${algorithm.name}`);\r\n return '';\r\n }\r\n\r\n // 转为 Base64\r\n return arrayBufferToBase64(signature);\r\n } catch (e) {\r\n console.error('[signatures] signHash error:', e);\r\n return '';\r\n }\r\n}\r\n\r\n/**\r\n * 用公钥验证 entryHash 的签名。\r\n *\r\n * @param entryHash SHA-256 hex 字符串\r\n * @param signatureB64 Base64 编码的签名\r\n * @param publicKey CryptoKey 公钥对象\r\n * @returns true 签名合法，false 验证失败\r\n */\r\nexport async function verifySignature(\r\n entryHash: string,\r\n signatureB64: string,\r\n publicKey: CryptoKey,\r\n): Promise<boolean> {\r\n try {\r\n const sigBytes = base64ToArrayBuffer(signatureB64);\r\n const data = new TextEncoder().encode(entryHash);\r\n\r\n const algorithm = publicKey.algorithm;\r\n if (algorithm.name === 'RSA-PSS') {\r\n return await crypto.subtle.verify(\r\n {\r\n name: 'RSA-PSS',\r\n saltLength: 32,\r\n },\r\n publicKey,\r\n sigBytes,\r\n data,\r\n );\r\n } else if (algorithm.name === 'ECDSA') {\r\n return await crypto.subtle.verify(\r\n {\r\n name: 'ECDSA',\r\n hash: 'SHA-256',\r\n },\r\n publicKey,\r\n sigBytes,\r\n data,\r\n );\r\n } else {\r\n console.error(`[signatures] Unsupported key type: ${algorithm.name}`);\r\n return false;\r\n }\r\n } catch {\r\n return false;\r\n }\r\n}\r\n\r\n// ---- 辅助函数 ----\r\n\r\nfunction arrayBufferToBase64(buffer: ArrayBuffer): string {\r\n const bytes = new Uint8Array(buffer);\r\n let binary = '';\r\n for (let i = 0; i < bytes.byteLength; i++) {\r\n binary += String.fromCharCode(bytes[i]);\r\n }\r\n return btoa(binary);\r\n}\r\n\r\nfunction base64ToArrayBuffer(base64: string): ArrayBuffer {\r\n const binary = atob(base64);\r\n const bytes = new Uint8Array(binary.length);\r\n for (let i = 0; i < binary.length; i++) {\r\n bytes[i] = binary.charCodeAt(i);\r\n }\r\n return bytes.buffer;\r\n}","/**\r\n * 消息格式规范化 — RecordedHop / NodeMessage / BackMessage。\r\n *\r\n * 从 python/attp/core/message/event.py 翻译而来。\r\n * 序列化格式 (to_dict/from_dict) 与 Python 端完全一致，\r\n * 确保跨语言通信时的数据兼容性。\r\n */\r\n\r\nimport { signHash, verifySignature } from '../authentication/signatures';\r\n\r\n// ---------------------------------------------------------------------------\r\n// RecordedHop — 单跳记录\r\n// ---------------------------------------------------------------------------\r\n\r\n/**\r\n * 单跳记录内容，嵌入在 NodeMessage 和 BackMessage 中。\r\n *\r\n * sigContent 是对其余字段哈希后的签名，\r\n * 由发送方私钥签署，用于内容完整性验证。\r\n */\r\nexport class RecordedHop {\r\n sessionId: string;\r\n senderDid: string;\r\n targetDid: string;\r\n content: string;\r\n timestamp: number;\r\n hopCount: number;\r\n sigContent: string;\r\n\r\n constructor(data: {\r\n sessionId: string;\r\n senderDid: string;\r\n targetDid: string;\r\n content: string;\r\n timestamp: number;\r\n hopCount: number;\r\n sigContent?: string;\r\n }) {\r\n this.sessionId = data.sessionId;\r\n this.senderDid = data.senderDid;\r\n this.targetDid = data.targetDid;\r\n this.content = data.content;\r\n this.timestamp = data.timestamp;\r\n this.hopCount = data.hopCount;\r\n this.sigContent = data.sigContent ?? '';\r\n }\r\n\r\n /** 计算除 sigContent 外所有字段的 SHA-256 哈希。 */\r\n async contentHash(): Promise<string> {\r\n const obj: Record<string, unknown> = {\r\n session_id: this.sessionId,\r\n sender_did: this.senderDid,\r\n target_did: this.targetDid,\r\n content: this.content,\r\n timestamp: this.timestamp,\r\n hop_count: this.hopCount,\r\n };\r\n // 排序键后序列化，与 Python sort_keys=True 一致\r\n const sorted: Record<string, unknown> = {};\r\n for (const key of Object.keys(obj).sort()) {\r\n sorted[key] = obj[key];\r\n }\r\n const raw = JSON.stringify(sorted);\r\n const buffer = new TextEncoder().encode(raw);\r\n const hashBuffer = await crypto.subtle.digest('SHA-256', buffer);\r\n const hashArray = Array.from(new Uint8Array(hashBuffer));\r\n return hashArray.map(b => b.toString(16).padStart(2, '0')).join('');\r\n }\r\n\r\n toDict(): Record<string, unknown> {\r\n return {\r\n session_id: this.sessionId,\r\n sender_did: this.senderDid,\r\n target_did: this.targetDid,\r\n content: this.content,\r\n timestamp: this.timestamp,\r\n hop_count: this.hopCount,\r\n sig_content: this.sigContent,\r\n };\r\n }\r\n\r\n static fromDict(data: Record<string, unknown>): RecordedHop {\r\n return new RecordedHop({\r\n sessionId: data['session_id'] as string,\r\n senderDid: data['sender_did'] as string,\r\n targetDid: data['target_did'] as string,\r\n content: data['content'] as string,\r\n timestamp: data['timestamp'] as number,\r\n hopCount: data['hop_count'] as number,\r\n sigContent: (data['sig_content'] as string) ?? '',\r\n });\r\n }\r\n}\r\n\r\n// ---------------------------------------------------------------------------\r\n// NodeMessage — 节点间转发消息 (A → B)\r\n// ---------------------------------------------------------------------------\r\n\r\n/**\r\n * 转发消息：A 向 B 发送。\r\n *\r\n * protocolUrl: 协议节点地址\r\n * nonce: 唯一标识，用于匹配回传消息\r\n * recordedHop: 单跳记录内容\r\n */\r\nexport class NodeMessage {\r\n protocolUrl: string;\r\n nonce: string;\r\n recordedHop: RecordedHop;\r\n\r\n constructor(data: {\r\n protocolUrl: string;\r\n nonce: string;\r\n recordedHop: RecordedHop;\r\n }) {\r\n this.protocolUrl = data.protocolUrl;\r\n this.nonce = data.nonce;\r\n this.recordedHop = data.recordedHop;\r\n }\r\n\r\n /** 发送方私钥对 recordedHop 内容签名，写入 sigContent。 */\r\n async signContent(privateKey: CryptoKey): Promise<void> {\r\n const hash = await this.recordedHop.contentHash();\r\n this.recordedHop.sigContent = await signHash(hash, privateKey);\r\n }\r\n\r\n /** 验证 recordedHop.sigContent 是否由对应公钥签署。 */\r\n async verifyContent(publicKey: CryptoKey): Promise<boolean> {\r\n if (!this.recordedHop.sigContent) return false;\r\n const hash = await this.recordedHop.contentHash();\r\n return verifySignature(hash, this.recordedHop.sigContent, publicKey);\r\n }\r\n\r\n toDict(): Record<string, unknown> {\r\n return {\r\n protocol_url: this.protocolUrl,\r\n nonce: this.nonce,\r\n recorded_hop: this.recordedHop.toDict(),\r\n };\r\n }\r\n\r\n static fromDict(data: Record<string, unknown>): NodeMessage {\r\n return new NodeMessage({\r\n protocolUrl: data['protocol_url'] as string,\r\n nonce: data['nonce'] as string,\r\n recordedHop: RecordedHop.fromDict(data['recorded_hop'] as Record<string, unknown>),\r\n });\r\n }\r\n}\r\n\r\n// ---------------------------------------------------------------------------\r\n// BackMessage — 节点回传消息\r\n// ---------------------------------------------------------------------------\r\n\r\n/** 计算 nodeDid + nonce 的身份哈希。 */\r\nasync function identityHash(nodeDid: string, nonce: string): Promise<string> {\r\n const obj: Record<string, unknown> = { node_did: nodeDid, nonce };\r\n const sorted: Record<string, unknown> = {};\r\n for (const key of Object.keys(obj).sort()) {\r\n sorted[key] = obj[key];\r\n }\r\n const raw = JSON.stringify(sorted);\r\n const buffer = new TextEncoder().encode(raw);\r\n const hashBuffer = await crypto.subtle.digest('SHA-256', buffer);\r\n const hashArray = Array.from(new Uint8Array(hashBuffer));\r\n return hashArray.map(b => b.toString(16).padStart(2, '0')).join('');\r\n}\r\n\r\n/**\r\n * 节点回传消息：节点（A 或 B）向协议节点回传。\r\n *\r\n * protocolUrl: 协议节点地址\r\n * nodeDid: 回传节点的 DID 身份\r\n * nonce: 唯一标识，用于匹配回传消息\r\n * sigIdentity: nodeDid + nonce 的私钥签名，用于身份确认\r\n * recordedHop: 单跳记录内容\r\n */\r\nexport class BackMessage {\r\n protocolUrl: string;\r\n nodeDid: string;\r\n nonce: string;\r\n sigIdentity: string;\r\n recordedHop: RecordedHop;\r\n\r\n constructor(data: {\r\n protocolUrl: string;\r\n nodeDid: string;\r\n nonce: string;\r\n sigIdentity?: string;\r\n recordedHop: RecordedHop;\r\n }) {\r\n this.protocolUrl = data.protocolUrl;\r\n this.nodeDid = data.nodeDid;\r\n this.nonce = data.nonce;\r\n this.sigIdentity = data.sigIdentity ?? '';\r\n this.recordedHop = data.recordedHop;\r\n }\r\n\r\n // -- 身份签名 --\r\n\r\n /** 使用回传节点私钥对 nodeDid+nonce 签名，写入 sigIdentity。 */\r\n async signIdentity(privateKey: CryptoKey): Promise<void> {\r\n this.sigIdentity = await signHash(\r\n await identityHash(this.nodeDid, this.nonce),\r\n privateKey,\r\n );\r\n }\r\n\r\n /** 验证 sigIdentity 是否合法。 */\r\n async verifyIdentity(publicKey: CryptoKey): Promise<boolean> {\r\n if (!this.sigIdentity) return false;\r\n return verifySignature(\r\n await identityHash(this.nodeDid, this.nonce),\r\n this.sigIdentity,\r\n publicKey,\r\n );\r\n }\r\n\r\n // -- 内容签名（发送方签名，由 recordedHop.sigContent 承载）--\r\n\r\n /** 使用发送方私钥对 recordedHop 内容签名。 */\r\n async signContent(privateKey: CryptoKey): Promise<void> {\r\n const hash = await this.recordedHop.contentHash();\r\n this.recordedHop.sigContent = await signHash(hash, privateKey);\r\n }\r\n\r\n /** 验证 recordedHop 内容签名（发送方签名）。 */\r\n async verifyContent(publicKey: CryptoKey): Promise<boolean> {\r\n if (!this.recordedHop.sigContent) return false;\r\n const hash = await this.recordedHop.contentHash();\r\n return verifySignature(hash, this.recordedHop.sigContent, publicKey);\r\n }\r\n\r\n toDict(): Record<string, unknown> {\r\n return {\r\n protocol_url: this.protocolUrl,\r\n node_did: this.nodeDid,\r\n nonce: this.nonce,\r\n sig_identity: this.sigIdentity,\r\n recorded_hop: this.recordedHop.toDict(),\r\n };\r\n }\r\n\r\n static fromDict(data: Record<string, unknown>): BackMessage {\r\n return new BackMessage({\r\n protocolUrl: data['protocol_url'] as string,\r\n nodeDid: data['node_did'] as string,\r\n nonce: data['nonce'] as string,\r\n sigIdentity: (data['sig_identity'] as string) ?? '',\r\n recordedHop: RecordedHop.fromDict(data['recorded_hop'] as Record<string, unknown>),\r\n });\r\n }\r\n}","/**\r\n * 密钥管理 — KeyStore 用于缓存公钥/私钥。\r\n *\r\n * 从 python/attp/core/authentication/keys.py 翻译而来。\r\n * 浏览器端使用 CryptoKey 对象替代 Python cryptography 库的密钥对象。\r\n */\r\n\r\n/**\r\n * 密钥存储：管理公钥缓存 (nodeDid → publicKey) 和私钥缓存 (path → privateKey)。\r\n *\r\n * 在浏览器环境中，私钥通过 CryptoKey 对象表示，\r\n * 公钥同样为 CryptoKey 对象。\r\n */\r\nexport class KeyStore {\r\n private _cache: Map<string, CryptoKey> = new Map();\r\n private _privateKeyCache: Map<string, CryptoKey> = new Map();\r\n\r\n /**\r\n * 注入公钥到缓存。\r\n */\r\n cachePublicKey(nodeDid: string, publicKey: CryptoKey): void {\r\n this._cache.set(nodeDid, publicKey);\r\n }\r\n\r\n /**\r\n * 获取缓存的公钥，不存在返回 undefined。\r\n */\r\n get(nodeDid: string): CryptoKey | undefined {\r\n return this._cache.get(nodeDid);\r\n }\r\n\r\n /**\r\n * 暴露内部缓存 Map 引用，维持兼容性。\r\n */\r\n get cacheDict(): Map<string, CryptoKey> {\r\n return this._cache;\r\n }\r\n\r\n /**\r\n * 缓存私钥，后续调用相同标识直接返回缓存。\r\n */\r\n cachePrivateKey(keyId: string, privateKey: CryptoKey): void {\r\n this._privateKeyCache.set(keyId, privateKey);\r\n }\r\n\r\n /**\r\n * 获取缓存的私钥。\r\n */\r\n getPrivateKey(keyId: string): CryptoKey | undefined {\r\n return this._privateKeyCache.get(keyId);\r\n }\r\n\r\n /**\r\n * 检查是否已有缓存的私钥。\r\n */\r\n hasPrivateKey(keyId: string): boolean {\r\n return this._privateKeyCache.has(keyId);\r\n }\r\n}","/**\r\n * 哈希计算：genesis 标识哈希和每跳签名哈希。\r\n *\r\n * 从 python/attp/core/provenance/hashing.py 翻译而来。\r\n * 使用 Web Crypto API (crypto.subtle.digest) 实现 SHA-256，\r\n * 保证输出与 Python 端 hashlib.sha256 完全一致。\r\n */\r\n\r\n/**\r\n * 计算 JSON 对象的 SHA-256 哈希。\r\n * 使用 JSON.stringify + sort_keys 语义：先对键排序再序列化。\r\n */\r\nasync function sha256Sorted(obj: Record<string, unknown>): Promise<string> {\r\n const sorted: Record<string, unknown> = {};\r\n for (const key of Object.keys(obj).sort()) {\r\n sorted[key] = obj[key];\r\n }\r\n const raw = JSON.stringify(sorted);\r\n const buffer = new TextEncoder().encode(raw);\r\n const hashBuffer = await crypto.subtle.digest('SHA-256', buffer);\r\n const hashArray = Array.from(new Uint8Array(hashBuffer));\r\n return hashArray.map(b => b.toString(16).padStart(2, '0')).join('');\r\n}\r\n\r\n/**\r\n * 计算创世标识的 SHA-256 哈希，用于防篡改验证。\r\n */\r\nexport async function calculateGenesisHash(\r\n sessionId: string,\r\n protocolNodeAddress: string,\r\n): Promise<string> {\r\n return sha256Sorted({\r\n session_id: sessionId,\r\n protocol_node_address: protocolNodeAddress,\r\n });\r\n}\r\n\r\n/**\r\n * 计算单跳消息字段的 SHA-256 哈希，用于身份验证签名。\r\n */\r\nexport async function calculateHopHash(\r\n content: string,\r\n nodeDid: string,\r\n targetDid: string,\r\n hopCount: number,\r\n timestamp: number,\r\n sessionId: string,\r\n protocolNodeAddress: string,\r\n): Promise<string> {\r\n return sha256Sorted({\r\n content,\r\n node_did: nodeDid,\r\n target_did: targetDid,\r\n hop_count: hopCount,\r\n timestamp,\r\n session_id: sessionId,\r\n protocol_node_address: protocolNodeAddress,\r\n });\r\n}","/**\r\n * BehaviorEntry — 单条行为记录。\r\n *\r\n * 从 python/attp/core/sessions/node_message.py 翻译而来。\r\n *\r\n * fieldType 取值：\r\n * A2T — Agent → Tool （Agent 调用工具）\r\n * A2U — Agent → User （Agent 发给用户）\r\n * U2A — User → Agent （用户发给 Agent）\r\n * A2A — Agent → Agent （Agent 间通信）\r\n * T2A — Tool → Agent （工具返回结果，预留）\r\n */\r\n\r\n/** 行为类型枚举 */\r\nexport type FieldType = 'A2T' | 'A2U' | 'U2A' | 'A2A' | 'T2A';\r\n\r\nexport class BehaviorEntry {\r\n fieldType: FieldType;\r\n content: string;\r\n timestamp: number;\r\n target: string; // A2T: tool; A2A: target_did; 其他: \"\"\r\n extra: Record<string, unknown>;\r\n\r\n constructor(data: {\r\n fieldType: FieldType;\r\n content: string;\r\n timestamp?: number;\r\n target?: string;\r\n extra?: Record<string, unknown>;\r\n }) {\r\n this.fieldType = data.fieldType;\r\n this.content = data.content;\r\n this.timestamp = data.timestamp ?? Date.now() / 1000;\r\n this.target = data.target ?? '';\r\n this.extra = data.extra ?? {};\r\n }\r\n\r\n toDict(): Record<string, unknown> {\r\n return {\r\n field_type: this.fieldType,\r\n content: this.content,\r\n timestamp: this.timestamp,\r\n target: this.target,\r\n extra: this.extra,\r\n };\r\n }\r\n\r\n static fromDict(data: Record<string, unknown>): BehaviorEntry {\r\n return new BehaviorEntry({\r\n fieldType: data['field_type'] as FieldType,\r\n content: data['content'] as string,\r\n timestamp: (data['timestamp'] as number) ?? 0.0,\r\n target: (data['target'] as string) ?? '',\r\n extra: (data['extra'] as Record<string, unknown>) ?? {},\r\n });\r\n }\r\n}","/**\r\n * UserSession / UserSessionManager — 用户端会话管理。\r\n *\r\n * 面向 User 客户端，管理 ATTP 协议层的会话元数据：\r\n * - session_id / protocol_node_address / hop 元数据\r\n * - 用户身份 (userDid) 和密钥标识\r\n *\r\n * 参考 Python 端 AppSession 的结构，但针对用户端场景简化。\r\n */\r\n\r\n/** Hop 记录的元数据结构 */\r\nexport interface HopMetadata {\r\n Hop_Count: number;\r\n Timestamp: number;\r\n Signature: string;\r\n Content: string;\r\n node_did: string;\r\n target_did: string;\r\n session_id?: string;\r\n protocol_node_address?: string;\r\n}\r\n\r\n/** 追踪相关元数据的键集合 */\r\nconst TRACE_KEYS = ['Hop', 'Session_ID', 'Protocol_Node_Address'] as const;\r\n\r\n/**\r\n * UserSession — 用户端单个会话的协议层状态容器。\r\n */\r\nexport class UserSession {\r\n /** 会话标识（通常是 chatId） */\r\n key: string;\r\n /** ATTP 协议层元数据 */\r\n metadata: Record<string, unknown>;\r\n /** 最后更新时间（Unix 时间戳，秒） */\r\n updatedAt: number;\r\n\r\n constructor(data: { key: string; metadata?: Record<string, unknown>; updatedAt?: number }) {\r\n this.key = data.key;\r\n this.metadata = data.metadata ?? {};\r\n this.updatedAt = data.updatedAt ?? Date.now() / 1000;\r\n }\r\n\r\n // -- 追踪路由元数据 --\r\n\r\n /** 提取追踪相关的元数据。 */\r\n getTraceMetadata(): Record<string, unknown> {\r\n const result: Record<string, unknown> = {};\r\n for (const k of TRACE_KEYS) {\r\n if (k in this.metadata) {\r\n result[k] = this.metadata[k];\r\n }\r\n }\r\n return result;\r\n }\r\n\r\n /** 合并追踪元数据。 */\r\n setTraceMetadata(traceData: Record<string, unknown>): void {\r\n for (const k of TRACE_KEYS) {\r\n if (k in traceData) {\r\n this.metadata[k] = traceData[k];\r\n }\r\n }\r\n this.updatedAt = Date.now() / 1000;\r\n }\r\n\r\n // -- 便捷访问器 --\r\n\r\n get sessionId(): string | undefined {\r\n return this.metadata['Session_ID'] as string | undefined;\r\n }\r\n\r\n set sessionId(value: string | undefined) {\r\n if (value !== undefined) this.metadata['Session_ID'] = value;\r\n }\r\n\r\n get protocolNodeAddress(): string | undefined {\r\n return this.metadata['Protocol_Node_Address'] as string | undefined;\r\n }\r\n\r\n set protocolNodeAddress(value: string | undefined) {\r\n if (value !== undefined) this.metadata['Protocol_Node_Address'] = value;\r\n }\r\n\r\n get hop(): HopMetadata | undefined {\r\n return this.metadata['Hop'] as HopMetadata | undefined;\r\n }\r\n\r\n get hopCount(): number {\r\n return this.hop?.Hop_Count ?? -1;\r\n }\r\n\r\n /** 用户 DID 标识 */\r\n get userDid(): string | undefined {\r\n return this.metadata['user_did'] as string | undefined;\r\n }\r\n\r\n set userDid(value: string | undefined) {\r\n if (value !== undefined) this.metadata['user_did'] = value;\r\n }\r\n\r\n /** 密钥标识（用于从 KeyStore 查找私钥） */\r\n get keyId(): string | undefined {\r\n return this.metadata['key_id'] as string | undefined;\r\n }\r\n\r\n set keyId(value: string | undefined) {\r\n if (value !== undefined) this.metadata['key_id'] = value;\r\n }\r\n\r\n // -- 通用元数据 --\r\n\r\n setMetadata(key: string, value: unknown): void {\r\n this.metadata[key] = value;\r\n this.updatedAt = Date.now() / 1000;\r\n }\r\n\r\n getMetadata(key: string, defaultValue?: unknown): unknown {\r\n return this.metadata[key] ?? defaultValue;\r\n }\r\n\r\n updateMetadata(data: Record<string, unknown>): void {\r\n Object.assign(this.metadata, data);\r\n this.updatedAt = Date.now() / 1000;\r\n }\r\n\r\n // -- 序列化 --\r\n\r\n toDict(): Record<string, unknown> {\r\n return {\r\n key: this.key,\r\n metadata: { ...this.metadata },\r\n updated_at: this.updatedAt,\r\n };\r\n }\r\n\r\n static fromDict(data: Record<string, unknown>): UserSession {\r\n return new UserSession({\r\n key: data['key'] as string,\r\n metadata: (data['metadata'] as Record<string, unknown>) ?? {},\r\n updatedAt: (data['updated_at'] as number) ?? Date.now() / 1000,\r\n });\r\n }\r\n}\r\n\r\n/**\r\n * UserSessionManager — 用户端会话存储，按 chatId 索引。\r\n *\r\n * 内存中维护所有活跃会话，可选持久化到 localStorage。\r\n */\r\nexport class UserSessionManager {\r\n private _sessions: Map<string, UserSession> = new Map();\r\n\r\n /** 获取或创建会话。 */\r\n getOrCreate(chatId: string): UserSession {\r\n if (!this._sessions.has(chatId)) {\r\n this._sessions.set(chatId, new UserSession({ key: chatId }));\r\n }\r\n return this._sessions.get(chatId)!;\r\n }\r\n\r\n /** 获取已有会话，不存在返回 undefined。 */\r\n get(chatId: string): UserSession | undefined {\r\n return this._sessions.get(chatId);\r\n }\r\n\r\n /** 保存/更新会话。 */\r\n save(session: UserSession): void {\r\n this._sessions.set(session.key, session);\r\n }\r\n\r\n /** 删除会话。 */\r\n delete(chatId: string): void {\r\n this._sessions.delete(chatId);\r\n }\r\n\r\n /** 所有会话条目。 */\r\n entries(): IterableIterator<[string, UserSession]> {\r\n return this._sessions.entries();\r\n }\r\n\r\n /** 会话数量。 */\r\n get size(): number {\r\n return this._sessions.size;\r\n }\r\n\r\n // -- 持久化 --\r\n\r\n /** 序列化所有会话为 JSON 字符串。 */\r\n serialize(): string {\r\n const obj: Record<string, unknown> = {};\r\n for (const [key, session] of this._sessions) {\r\n obj[key] = session.toDict();\r\n }\r\n return JSON.stringify(obj);\r\n }\r\n\r\n /** 从 JSON 字符串反序列化恢复所有会话。 */\r\n deserialize(json: string): void {\r\n try {\r\n const obj = JSON.parse(json);\r\n this._sessions.clear();\r\n for (const [key, value] of Object.entries(obj)) {\r\n this._sessions.set(key, UserSession.fromDict(value as Record<string, unknown>));\r\n }\r\n } catch {\r\n // 反序列化失败时保持空状态\r\n }\r\n }\r\n\r\n /** 保存到 localStorage。 */\r\n saveToStorage(storageKey: string = 'attp_user_sessions'): void {\r\n try {\r\n localStorage.setItem(storageKey, this.serialize());\r\n } catch {\r\n // localStorage 不可用时静默失败\r\n }\r\n }\r\n\r\n /** 从 localStorage 加载。 */\r\n loadFromStorage(storageKey: string = 'attp_user_sessions'): void {\r\n try {\r\n const raw = localStorage.getItem(storageKey);\r\n if (raw) this.deserialize(raw);\r\n } catch {\r\n // localStorage 不可用时静默失败\r\n }\r\n }\r\n}"],"mappings":";AAmBA,eAAsB,SACpB,WACA,YACiB;AACjB,MAAI;AACF,UAAM,OAAO,IAAI,YAAY,EAAE,OAAO,SAAS;AAE/C,QAAI;AAEJ,UAAM,YAAY,WAAW;AAC7B,QAAI,UAAU,SAAS,WAAW;AAChC,kBAAY,MAAM,OAAO,OAAO;AAAA,QAC9B;AAAA,UACE,MAAM;AAAA,UACN,YAAY;AAAA;AAAA,QACd;AAAA,QACA;AAAA,QACA;AAAA,MACF;AAAA,IACF,WAAW,UAAU,SAAS,SAAS;AACrC,kBAAY,MAAM,OAAO,OAAO;AAAA,QAC9B;AAAA,UACE,MAAM;AAAA,UACN,MAAM;AAAA,QACR;AAAA,QACA;AAAA,QACA;AAAA,MACF;AAAA,IACF,OAAO;AACL,cAAQ,MAAM,sCAAsC,UAAU,IAAI,EAAE;AACpE,aAAO;AAAA,IACT;AAGA,WAAO,oBAAoB,SAAS;AAAA,EACtC,SAAS,GAAG;AACV,YAAQ,MAAM,gCAAgC,CAAC;AAC/C,WAAO;AAAA,EACT;AACF;AAUA,eAAsB,gBACpB,WACA,cACA,WACkB;AAClB,MAAI;AACF,UAAM,WAAW,oBAAoB,YAAY;AACjD,UAAM,OAAO,IAAI,YAAY,EAAE,OAAO,SAAS;AAE/C,UAAM,YAAY,UAAU;AAC5B,QAAI,UAAU,SAAS,WAAW;AAChC,aAAO,MAAM,OAAO,OAAO;AAAA,QACzB;AAAA,UACE,MAAM;AAAA,UACN,YAAY;AAAA,QACd;AAAA,QACA;AAAA,QACA;AAAA,QACA;AAAA,MACF;AAAA,IACF,WAAW,UAAU,SAAS,SAAS;AACrC,aAAO,MAAM,OAAO,OAAO;AAAA,QACzB;AAAA,UACE,MAAM;AAAA,UACN,MAAM;AAAA,QACR;AAAA,QACA;AAAA,QACA;AAAA,QACA;AAAA,MACF;AAAA,IACF,OAAO;AACL,cAAQ,MAAM,sCAAsC,UAAU,IAAI,EAAE;AACpE,aAAO;AAAA,IACT;AAAA,EACF,QAAQ;AACN,WAAO;AAAA,EACT;AACF;AAIA,SAAS,oBAAoB,QAA6B;AACxD,QAAM,QAAQ,IAAI,WAAW,MAAM;AACnC,MAAI,SAAS;AACb,WAAS,IAAI,GAAG,IAAI,MAAM,YAAY,KAAK;AACzC,cAAU,OAAO,aAAa,MAAM,CAAC,CAAC;AAAA,EACxC;AACA,SAAO,KAAK,MAAM;AACpB;AAEA,SAAS,oBAAoB,QAA6B;AACxD,QAAM,SAAS,KAAK,MAAM;AAC1B,QAAM,QAAQ,IAAI,WAAW,OAAO,MAAM;AAC1C,WAAS,IAAI,GAAG,IAAI,OAAO,QAAQ,KAAK;AACtC,UAAM,CAAC,IAAI,OAAO,WAAW,CAAC;AAAA,EAChC;AACA,SAAO,MAAM;AACf;;;ACzGO,IAAM,cAAN,MAAM,aAAY;AAAA,EASvB,YAAY,MAQT;AACD,SAAK,YAAY,KAAK;AACtB,SAAK,YAAY,KAAK;AACtB,SAAK,YAAY,KAAK;AACtB,SAAK,UAAU,KAAK;AACpB,SAAK,YAAY,KAAK;AACtB,SAAK,WAAW,KAAK;AACrB,SAAK,aAAa,KAAK,cAAc;AAAA,EACvC;AAAA;AAAA,EAGA,MAAM,cAA+B;AACnC,UAAM,MAA+B;AAAA,MACnC,YAAY,KAAK;AAAA,MACjB,YAAY,KAAK;AAAA,MACjB,YAAY,KAAK;AAAA,MACjB,SAAS,KAAK;AAAA,MACd,WAAW,KAAK;AAAA,MAChB,WAAW,KAAK;AAAA,IAClB;AAEA,UAAM,SAAkC,CAAC;AACzC,eAAW,OAAO,OAAO,KAAK,GAAG,EAAE,KAAK,GAAG;AACzC,aAAO,GAAG,IAAI,IAAI,GAAG;AAAA,IACvB;AACA,UAAM,MAAM,KAAK,UAAU,MAAM;AACjC,UAAM,SAAS,IAAI,YAAY,EAAE,OAAO,GAAG;AAC3C,UAAM,aAAa,MAAM,OAAO,OAAO,OAAO,WAAW,MAAM;AAC/D,UAAM,YAAY,MAAM,KAAK,IAAI,WAAW,UAAU,CAAC;AACvD,WAAO,UAAU,IAAI,OAAK,EAAE,SAAS,EAAE,EAAE,SAAS,GAAG,GAAG,CAAC,EAAE,KAAK,EAAE;AAAA,EACpE;AAAA,EAEA,SAAkC;AAChC,WAAO;AAAA,MACL,YAAY,KAAK;AAAA,MACjB,YAAY,KAAK;AAAA,MACjB,YAAY,KAAK;AAAA,MACjB,SAAS,KAAK;AAAA,MACd,WAAW,KAAK;AAAA,MAChB,WAAW,KAAK;AAAA,MAChB,aAAa,KAAK;AAAA,IACpB;AAAA,EACF;AAAA,EAEA,OAAO,SAAS,MAA4C;AAC1D,WAAO,IAAI,aAAY;AAAA,MACrB,WAAW,KAAK,YAAY;AAAA,MAC5B,WAAW,KAAK,YAAY;AAAA,MAC5B,WAAW,KAAK,YAAY;AAAA,MAC5B,SAAS,KAAK,SAAS;AAAA,MACvB,WAAW,KAAK,WAAW;AAAA,MAC3B,UAAU,KAAK,WAAW;AAAA,MAC1B,YAAa,KAAK,aAAa,KAAgB;AAAA,IACjD,CAAC;AAAA,EACH;AACF;AAaO,IAAM,cAAN,MAAM,aAAY;AAAA,EAKvB,YAAY,MAIT;AACD,SAAK,cAAc,KAAK;AACxB,SAAK,QAAQ,KAAK;AAClB,SAAK,cAAc,KAAK;AAAA,EAC1B;AAAA;AAAA,EAGA,MAAM,YAAY,YAAsC;AACtD,UAAM,OAAO,MAAM,KAAK,YAAY,YAAY;AAChD,SAAK,YAAY,aAAa,MAAM,SAAS,MAAM,UAAU;AAAA,EAC/D;AAAA;AAAA,EAGA,MAAM,cAAc,WAAwC;AAC1D,QAAI,CAAC,KAAK,YAAY,WAAY,QAAO;AACzC,UAAM,OAAO,MAAM,KAAK,YAAY,YAAY;AAChD,WAAO,gBAAgB,MAAM,KAAK,YAAY,YAAY,SAAS;AAAA,EACrE;AAAA,EAEA,SAAkC;AAChC,WAAO;AAAA,MACL,cAAc,KAAK;AAAA,MACnB,OAAO,KAAK;AAAA,MACZ,cAAc,KAAK,YAAY,OAAO;AAAA,IACxC;AAAA,EACF;AAAA,EAEA,OAAO,SAAS,MAA4C;AAC1D,WAAO,IAAI,aAAY;AAAA,MACrB,aAAa,KAAK,cAAc;AAAA,MAChC,OAAO,KAAK,OAAO;AAAA,MACnB,aAAa,YAAY,SAAS,KAAK,cAAc,CAA4B;AAAA,IACnF,CAAC;AAAA,EACH;AACF;AAOA,eAAe,aAAa,SAAiB,OAAgC;AAC3E,QAAM,MAA+B,EAAE,UAAU,SAAS,MAAM;AAChE,QAAM,SAAkC,CAAC;AACzC,aAAW,OAAO,OAAO,KAAK,GAAG,EAAE,KAAK,GAAG;AACzC,WAAO,GAAG,IAAI,IAAI,GAAG;AAAA,EACvB;AACA,QAAM,MAAM,KAAK,UAAU,MAAM;AACjC,QAAM,SAAS,IAAI,YAAY,EAAE,OAAO,GAAG;AAC3C,QAAM,aAAa,MAAM,OAAO,OAAO,OAAO,WAAW,MAAM;AAC/D,QAAM,YAAY,MAAM,KAAK,IAAI,WAAW,UAAU,CAAC;AACvD,SAAO,UAAU,IAAI,OAAK,EAAE,SAAS,EAAE,EAAE,SAAS,GAAG,GAAG,CAAC,EAAE,KAAK,EAAE;AACpE;AAWO,IAAM,cAAN,MAAM,aAAY;AAAA,EAOvB,YAAY,MAMT;AACD,SAAK,cAAc,KAAK;AACxB,SAAK,UAAU,KAAK;AACpB,SAAK,QAAQ,KAAK;AAClB,SAAK,cAAc,KAAK,eAAe;AACvC,SAAK,cAAc,KAAK;AAAA,EAC1B;AAAA;AAAA;AAAA,EAKA,MAAM,aAAa,YAAsC;AACvD,SAAK,cAAc,MAAM;AAAA,MACvB,MAAM,aAAa,KAAK,SAAS,KAAK,KAAK;AAAA,MAC3C;AAAA,IACF;AAAA,EACF;AAAA;AAAA,EAGA,MAAM,eAAe,WAAwC;AAC3D,QAAI,CAAC,KAAK,YAAa,QAAO;AAC9B,WAAO;AAAA,MACL,MAAM,aAAa,KAAK,SAAS,KAAK,KAAK;AAAA,MAC3C,KAAK;AAAA,MACL;AAAA,IACF;AAAA,EACF;AAAA;AAAA;AAAA,EAKA,MAAM,YAAY,YAAsC;AACtD,UAAM,OAAO,MAAM,KAAK,YAAY,YAAY;AAChD,SAAK,YAAY,aAAa,MAAM,SAAS,MAAM,UAAU;AAAA,EAC/D;AAAA;AAAA,EAGA,MAAM,cAAc,WAAwC;AAC1D,QAAI,CAAC,KAAK,YAAY,WAAY,QAAO;AACzC,UAAM,OAAO,MAAM,KAAK,YAAY,YAAY;AAChD,WAAO,gBAAgB,MAAM,KAAK,YAAY,YAAY,SAAS;AAAA,EACrE;AAAA,EAEA,SAAkC;AAChC,WAAO;AAAA,MACL,cAAc,KAAK;AAAA,MACnB,UAAU,KAAK;AAAA,MACf,OAAO,KAAK;AAAA,MACZ,cAAc,KAAK;AAAA,MACnB,cAAc,KAAK,YAAY,OAAO;AAAA,IACxC;AAAA,EACF;AAAA,EAEA,OAAO,SAAS,MAA4C;AAC1D,WAAO,IAAI,aAAY;AAAA,MACrB,aAAa,KAAK,cAAc;AAAA,MAChC,SAAS,KAAK,UAAU;AAAA,MACxB,OAAO,KAAK,OAAO;AAAA,MACnB,aAAc,KAAK,cAAc,KAAgB;AAAA,MACjD,aAAa,YAAY,SAAS,KAAK,cAAc,CAA4B;AAAA,IACnF,CAAC;AAAA,EACH;AACF;;;AC/OO,IAAM,WAAN,MAAe;AAAA,EAAf;AACL,SAAQ,SAAiC,oBAAI,IAAI;AACjD,SAAQ,mBAA2C,oBAAI,IAAI;AAAA;AAAA;AAAA;AAAA;AAAA,EAK3D,eAAe,SAAiB,WAA4B;AAC1D,SAAK,OAAO,IAAI,SAAS,SAAS;AAAA,EACpC;AAAA;AAAA;AAAA;AAAA,EAKA,IAAI,SAAwC;AAC1C,WAAO,KAAK,OAAO,IAAI,OAAO;AAAA,EAChC;AAAA;AAAA;AAAA;AAAA,EAKA,IAAI,YAAoC;AACtC,WAAO,KAAK;AAAA,EACd;AAAA;AAAA;AAAA;AAAA,EAKA,gBAAgB,OAAe,YAA6B;AAC1D,SAAK,iBAAiB,IAAI,OAAO,UAAU;AAAA,EAC7C;AAAA;AAAA;AAAA;AAAA,EAKA,cAAc,OAAsC;AAClD,WAAO,KAAK,iBAAiB,IAAI,KAAK;AAAA,EACxC;AAAA;AAAA;AAAA;AAAA,EAKA,cAAc,OAAwB;AACpC,WAAO,KAAK,iBAAiB,IAAI,KAAK;AAAA,EACxC;AACF;;;AC9CA,eAAe,aAAa,KAA+C;AACzE,QAAM,SAAkC,CAAC;AACzC,aAAW,OAAO,OAAO,KAAK,GAAG,EAAE,KAAK,GAAG;AACzC,WAAO,GAAG,IAAI,IAAI,GAAG;AAAA,EACvB;AACA,QAAM,MAAM,KAAK,UAAU,MAAM;AACjC,QAAM,SAAS,IAAI,YAAY,EAAE,OAAO,GAAG;AAC3C,QAAM,aAAa,MAAM,OAAO,OAAO,OAAO,WAAW,MAAM;AAC/D,QAAM,YAAY,MAAM,KAAK,IAAI,WAAW,UAAU,CAAC;AACvD,SAAO,UAAU,IAAI,OAAK,EAAE,SAAS,EAAE,EAAE,SAAS,GAAG,GAAG,CAAC,EAAE,KAAK,EAAE;AACpE;AAKA,eAAsB,qBACpB,WACA,qBACiB;AACjB,SAAO,aAAa;AAAA,IAClB,YAAY;AAAA,IACZ,uBAAuB;AAAA,EACzB,CAAC;AACH;AAKA,eAAsB,iBACpB,SACA,SACA,WACA,UACA,WACA,WACA,qBACiB;AACjB,SAAO,aAAa;AAAA,IAClB;AAAA,IACA,UAAU;AAAA,IACV,YAAY;AAAA,IACZ,WAAW;AAAA,IACX;AAAA,IACA,YAAY;AAAA,IACZ,uBAAuB;AAAA,EACzB,CAAC;AACH;;;AC1CO,IAAM,gBAAN,MAAM,eAAc;AAAA,EAOzB,YAAY,MAMT;AACD,SAAK,YAAY,KAAK;AACtB,SAAK,UAAU,KAAK;AACpB,SAAK,YAAY,KAAK,aAAa,KAAK,IAAI,IAAI;AAChD,SAAK,SAAS,KAAK,UAAU;AAC7B,SAAK,QAAQ,KAAK,SAAS,CAAC;AAAA,EAC9B;AAAA,EAEA,SAAkC;AAChC,WAAO;AAAA,MACL,YAAY,KAAK;AAAA,MACjB,SAAS,KAAK;AAAA,MACd,WAAW,KAAK;AAAA,MAChB,QAAQ,KAAK;AAAA,MACb,OAAO,KAAK;AAAA,IACd;AAAA,EACF;AAAA,EAEA,OAAO,SAAS,MAA8C;AAC5D,WAAO,IAAI,eAAc;AAAA,MACvB,WAAW,KAAK,YAAY;AAAA,MAC5B,SAAS,KAAK,SAAS;AAAA,MACvB,WAAY,KAAK,WAAW,KAAgB;AAAA,MAC5C,QAAS,KAAK,QAAQ,KAAgB;AAAA,MACtC,OAAQ,KAAK,OAAO,KAAiC,CAAC;AAAA,IACxD,CAAC;AAAA,EACH;AACF;;;ACjCA,IAAM,aAAa,CAAC,OAAO,cAAc,uBAAuB;AAKzD,IAAM,cAAN,MAAM,aAAY;AAAA,EAQvB,YAAY,MAA+E;AACzF,SAAK,MAAM,KAAK;AAChB,SAAK,WAAW,KAAK,YAAY,CAAC;AAClC,SAAK,YAAY,KAAK,aAAa,KAAK,IAAI,IAAI;AAAA,EAClD;AAAA;AAAA;AAAA,EAKA,mBAA4C;AAC1C,UAAM,SAAkC,CAAC;AACzC,eAAW,KAAK,YAAY;AAC1B,UAAI,KAAK,KAAK,UAAU;AACtB,eAAO,CAAC,IAAI,KAAK,SAAS,CAAC;AAAA,MAC7B;AAAA,IACF;AACA,WAAO;AAAA,EACT;AAAA;AAAA,EAGA,iBAAiB,WAA0C;AACzD,eAAW,KAAK,YAAY;AAC1B,UAAI,KAAK,WAAW;AAClB,aAAK,SAAS,CAAC,IAAI,UAAU,CAAC;AAAA,MAChC;AAAA,IACF;AACA,SAAK,YAAY,KAAK,IAAI,IAAI;AAAA,EAChC;AAAA;AAAA,EAIA,IAAI,YAAgC;AAClC,WAAO,KAAK,SAAS,YAAY;AAAA,EACnC;AAAA,EAEA,IAAI,UAAU,OAA2B;AACvC,QAAI,UAAU,OAAW,MAAK,SAAS,YAAY,IAAI;AAAA,EACzD;AAAA,EAEA,IAAI,sBAA0C;AAC5C,WAAO,KAAK,SAAS,uBAAuB;AAAA,EAC9C;AAAA,EAEA,IAAI,oBAAoB,OAA2B;AACjD,QAAI,UAAU,OAAW,MAAK,SAAS,uBAAuB,IAAI;AAAA,EACpE;AAAA,EAEA,IAAI,MAA+B;AACjC,WAAO,KAAK,SAAS,KAAK;AAAA,EAC5B;AAAA,EAEA,IAAI,WAAmB;AACrB,WAAO,KAAK,KAAK,aAAa;AAAA,EAChC;AAAA;AAAA,EAGA,IAAI,UAA8B;AAChC,WAAO,KAAK,SAAS,UAAU;AAAA,EACjC;AAAA,EAEA,IAAI,QAAQ,OAA2B;AACrC,QAAI,UAAU,OAAW,MAAK,SAAS,UAAU,IAAI;AAAA,EACvD;AAAA;AAAA,EAGA,IAAI,QAA4B;AAC9B,WAAO,KAAK,SAAS,QAAQ;AAAA,EAC/B;AAAA,EAEA,IAAI,MAAM,OAA2B;AACnC,QAAI,UAAU,OAAW,MAAK,SAAS,QAAQ,IAAI;AAAA,EACrD;AAAA;AAAA,EAIA,YAAY,KAAa,OAAsB;AAC7C,SAAK,SAAS,GAAG,IAAI;AACrB,SAAK,YAAY,KAAK,IAAI,IAAI;AAAA,EAChC;AAAA,EAEA,YAAY,KAAa,cAAiC;AACxD,WAAO,KAAK,SAAS,GAAG,KAAK;AAAA,EAC/B;AAAA,EAEA,eAAe,MAAqC;AAClD,WAAO,OAAO,KAAK,UAAU,IAAI;AACjC,SAAK,YAAY,KAAK,IAAI,IAAI;AAAA,EAChC;AAAA;AAAA,EAIA,SAAkC;AAChC,WAAO;AAAA,MACL,KAAK,KAAK;AAAA,MACV,UAAU,EAAE,GAAG,KAAK,SAAS;AAAA,MAC7B,YAAY,KAAK;AAAA,IACnB;AAAA,EACF;AAAA,EAEA,OAAO,SAAS,MAA4C;AAC1D,WAAO,IAAI,aAAY;AAAA,MACrB,KAAK,KAAK,KAAK;AAAA,MACf,UAAW,KAAK,UAAU,KAAiC,CAAC;AAAA,MAC5D,WAAY,KAAK,YAAY,KAAgB,KAAK,IAAI,IAAI;AAAA,IAC5D,CAAC;AAAA,EACH;AACF;AAOO,IAAM,qBAAN,MAAyB;AAAA,EAAzB;AACL,SAAQ,YAAsC,oBAAI,IAAI;AAAA;AAAA;AAAA,EAGtD,YAAY,QAA6B;AACvC,QAAI,CAAC,KAAK,UAAU,IAAI,MAAM,GAAG;AAC/B,WAAK,UAAU,IAAI,QAAQ,IAAI,YAAY,EAAE,KAAK,OAAO,CAAC,CAAC;AAAA,IAC7D;AACA,WAAO,KAAK,UAAU,IAAI,MAAM;AAAA,EAClC;AAAA;AAAA,EAGA,IAAI,QAAyC;AAC3C,WAAO,KAAK,UAAU,IAAI,MAAM;AAAA,EAClC;AAAA;AAAA,EAGA,KAAK,SAA4B;AAC/B,SAAK,UAAU,IAAI,QAAQ,KAAK,OAAO;AAAA,EACzC;AAAA;AAAA,EAGA,OAAO,QAAsB;AAC3B,SAAK,UAAU,OAAO,MAAM;AAAA,EAC9B;AAAA;AAAA,EAGA,UAAmD;AACjD,WAAO,KAAK,UAAU,QAAQ;AAAA,EAChC;AAAA;AAAA,EAGA,IAAI,OAAe;AACjB,WAAO,KAAK,UAAU;AAAA,EACxB;AAAA;AAAA;AAAA,EAKA,YAAoB;AAClB,UAAM,MAA+B,CAAC;AACtC,eAAW,CAAC,KAAK,OAAO,KAAK,KAAK,WAAW;AAC3C,UAAI,GAAG,IAAI,QAAQ,OAAO;AAAA,IAC5B;AACA,WAAO,KAAK,UAAU,GAAG;AAAA,EAC3B;AAAA;AAAA,EAGA,YAAY,MAAoB;AAC9B,QAAI;AACF,YAAM,MAAM,KAAK,MAAM,IAAI;AAC3B,WAAK,UAAU,MAAM;AACrB,iBAAW,CAAC,KAAK,KAAK,KAAK,OAAO,QAAQ,GAAG,GAAG;AAC9C,aAAK,UAAU,IAAI,KAAK,YAAY,SAAS,KAAgC,CAAC;AAAA,MAChF;AAAA,IACF,QAAQ;AAAA,IAER;AAAA,EACF;AAAA;AAAA,EAGA,cAAc,aAAqB,sBAA4B;AAC7D,QAAI;AACF,mBAAa,QAAQ,YAAY,KAAK,UAAU,CAAC;AAAA,IACnD,QAAQ;AAAA,IAER;AAAA,EACF;AAAA;AAAA,EAGA,gBAAgB,aAAqB,sBAA4B;AAC/D,QAAI;AACF,YAAM,MAAM,aAAa,QAAQ,UAAU;AAC3C,UAAI,IAAK,MAAK,YAAY,GAAG;AAAA,IAC/B,QAAQ;AAAA,IAER;AAAA,EACF;AACF;","names":[]}

package/package.json ADDED Viewed

@@ -0,0 +1,40 @@
+{
+  "name": "@invictus-z/attp",
+  "version": "0.1.0-alpha.0",
+  "description": "ATTP SDK for TypeScript — authentication, provenance & session management",
+  "type": "module",
+  "main": "./dist/index.cjs",
+  "module": "./dist/index.js",
+  "types": "./dist/index.d.ts",
+  "exports": {
+    ".": {
+      "import": {
+        "types": "./dist/index.d.ts",
+        "default": "./dist/index.js"
+      },
+      "require": {
+        "types": "./dist/index.d.cts",
+        "default": "./dist/index.cjs"
+      }
+    }
+  },
+  "files": [
+    "dist"
+  ],
+  "scripts": {
+    "build": "tsup",
+    "prepublishOnly": "npm run build"
+  },
+  "keywords": [
+    "attp",
+    "authentication",
+    "provenance",
+    "session",
+    "nanobot"
+  ],
+  "license": "MIT",
+  "devDependencies": {
+    "tsup": "^8.0.0",
+    "typescript": "^5.2.0"
+  }
+}