@ixo/editor 3.0.0-beta.28 → 3.0.0-beta.29

package/dist/core/index.d.ts

@@ -1,10 +1,10 @@
-import { r as ActionDefinition, t as ActionServices } from '../setup-C5MpJdyr.mjs';
-export { P as ActionContext, Q as ActionResult, m as ActivationResult, V as ActorConstraint, l as AuthorizationContext, G as AuthorizationContextV2, A as AuthorizationResult, B as BaseUcanFlow, M as CapabilityGrant, Y as CompiledBlock, Z as CompiledEdge, q as CompiledFlow, _ as CompiledFlowNode, C as CompilerRegistry, T as ConditionRef, D as DelegationStore, O as DerivedCapability, E as ExecuteNodeParams, x as ExecuteNodeParamsV2, k as ExecutionContext, y as ExecutionContextV2, j as ExecutionOutcome, p as FlowCapability, F as FlowRuntimeStateManager, N as NodeActionResult, R as OutputSchemaField, X as RuntimeRef, S as SetupFlowOptions, o as SetupFlowResult, K as SimpleUCANManager, W as TTLConstraint, L as UCANManager, U as UcanService, I as UcanServiceConfig, J as UcanServiceHandlers, h as buildAuthzFromProps, g as buildFlowNodeFromBlock, u as clearRuntimeForTemplateClone, n as compileBaseUcanFlow, c as createDelegationStore, b as createMemoryDelegationStore, d as createRuntimeStateManager, H as createUcanService, e as executeNode, w as executeNodeWithInvocation, f as findValidCapability, i as isActorAuthorized, z as isActorAuthorizedV2, a as isNodeActive, $ as isRuntimeRef, s as setupFlowFromBaseUcan, v as validateCapabilityChain } from '../setup-C5MpJdyr.mjs';
-export { A as ActivationCondition, C as Capability, m as CapabilityURI, a as CapabilityValidationResult, o as ClaimCollectionURI, G as CreateDelegationParams, H as CreateInvocationParams, B as CreateRootDelegationParams, n as DID, y as DelegationChainValidationResult, D as DelegationGrant, E as EvaluationStatus, x as ExecutionWithInvocationResult, z as FindProofsResult, r as FlowNode, F as FlowNodeAuthzExtension, q as FlowNodeBase, p as FlowNodeRuntimeState, v as InvocationRequest, w as InvocationResult, l as InvocationStore, L as LinkedClaim, M as MigrationReport, N as NodeState, S as SignedCapability, t as StoredDelegation, u as StoredInvocation, s as UcanCapability, U as UcanDelegationStore, j as createInvocationStore, k as createMemoryInvocationStore, i as createMemoryUcanDelegationStore, h as createUcanDelegationStore } from '../index-BmOZ-1iJ.mjs';
-import '@ixo/ucan';
+import { n as ActionDefinition, o as ActionServices } from '../setup-CahGoKeh.mjs';
+export { q as ActionContext, r as ActionResult, h as ActivationResult, u as ActorConstraint, A as AuthorizationResult, B as BaseUcanFlow, v as CompiledBlock, w as CompiledEdge, m as CompiledFlow, x as CompiledFlowNode, C as CompilerRegistry, t as ConditionRef, E as ExecuteNodeParams, g as ExecutionContext, f as ExecutionOutcome, l as FlowCapability, F as FlowRuntimeStateManager, N as NodeActionResult, O as OutputSchemaField, R as RuntimeRef, S as SetupFlowOptions, k as SetupFlowResult, T as TTLConstraint, d as buildAuthzFromProps, b as buildFlowNodeFromBlock, p as clearRuntimeForTemplateClone, j as compileBaseUcanFlow, c as createRuntimeStateManager, e as executeNode, i as isAuthorized, a as isNodeActive, y as isRuntimeRef, s as setupFlowFromBaseUcan } from '../setup-CahGoKeh.mjs';
+export { A as ActivationCondition, C as ClaimCollectionURI, G as CreateDelegationParams, H as CreateInvocationParams, B as CreateRootDelegationParams, s as DID, D as DelegationChainValidationResult, k as DelegationGrant, E as EvaluationStatus, y as ExecutionWithInvocationResult, z as FindProofsResult, v as FlowNode, F as FlowNodeAuthzExtension, u as FlowNodeBase, t as FlowNodeRuntimeState, w as InvocationRequest, x as InvocationResult, I as InvocationStore, L as LinkedClaim, N as NodeState, S as StoredDelegation, j as StoredInvocation, i as UcanCapability, U as UcanDelegationStore, f as UcanService, g as UcanServiceConfig, h as UcanServiceHandlers, b as createInvocationStore, d as createMemoryInvocationStore, a as createMemoryUcanDelegationStore, c as createUcanDelegationStore, e as createUcanService } from '../index-7ptWHYA8.mjs';
 import 'yjs';
 import 'matrix-js-sdk';
 import '@blocknote/core';
+import '@ixo/ucan';
 
 declare function registerAction(definition: ActionDefinition): void;
 declare function getAction(type: string): ActionDefinition | undefined;

package/dist/core/index.mjs

@@ -3,43 +3,35 @@ import {
   isRuntimeRef,
   resolveRuntimeRefs,
   setupFlowFromBaseUcan
-} from "../chunk-SZSEZY6Z.mjs";
+} from "../chunk-5PHI3WWK.mjs";
 import {
-  SimpleUCANManager,
   buildAuthzFromProps,
   buildFlowNodeFromBlock,
   buildServicesFromHandlers,
   canToType,
   clearRuntimeForTemplateClone,
-  createDelegationStore,
   createInvocationStore,
-  createMemoryDelegationStore,
   createMemoryInvocationStore,
   createMemoryUcanDelegationStore,
   createRuntimeStateManager,
   createUcanDelegationStore,
   createUcanService,
   executeNode,
-  executeNodeWithInvocation,
-  findValidCapability,
   getAction,
   getActionByCan,
   getAllActions,
   getAllCanMappings,
   hasAction,
-  isActorAuthorized,
-  isActorAuthorizedV2,
+  isAuthorized,
   isNodeActive,
   registerAction,
-  typeToCan,
-  validateCapabilityChain
-} from "../chunk-NOMJJJDB.mjs";
+  typeToCan
+} from "../chunk-77R3T42S.mjs";
 import {
   computeCID,
   computeJsonCID
 } from "../chunk-VU34HOXM.mjs";
 export {
-  SimpleUCANManager,
   buildAuthzFromProps,
   buildFlowNodeFromBlock,
   buildServicesFromHandlers,
@@ -48,30 +40,24 @@ export {
   compileBaseUcanFlow,
   computeCID,
   computeJsonCID,
-  createDelegationStore,
   createInvocationStore,
-  createMemoryDelegationStore,
   createMemoryInvocationStore,
   createMemoryUcanDelegationStore,
   createRuntimeStateManager,
   createUcanDelegationStore,
   createUcanService,
   executeNode,
-  executeNodeWithInvocation,
-  findValidCapability,
   getAction,
   getActionByCan,
   getAllActions,
   getAllCanMappings,
   hasAction,
-  isActorAuthorized,
-  isActorAuthorizedV2,
+  isAuthorized,
   isNodeActive,
   isRuntimeRef,
   registerAction,
   resolveRuntimeRefs,
   setupFlowFromBaseUcan,
-  typeToCan,
-  validateCapabilityChain
+  typeToCan
 };
 //# sourceMappingURL=index.mjs.map

package/dist/{graphql-client-CSiffz9I.d.ts → graphql-client-D1Zgezg6.d.ts}

@@ -1,5 +1,5 @@
 import * as _blocknote_core from '@blocknote/core';
-import { K as IxoBlockProps, J as IxoEditorType, I as IxoEditorOptions, e as IxoCollaborativeEditorOptions, D as DelegationGrant } from './index-BmOZ-1iJ.mjs';
+import { K as IxoBlockProps, J as IxoEditorType, l as IxoEditorOptions, p as IxoCollaborativeEditorOptions, k as DelegationGrant } from './index-7ptWHYA8.mjs';
 import { Text, Doc, Map, Array as Array$1 } from 'yjs';
 import React from 'react';
 import { MatrixClient } from 'matrix-js-sdk';
@@ -2691,8 +2691,6 @@ interface CoverImageProps {
 declare function CoverImage({ coverImageUrl, logoUrl }: CoverImageProps): React.ReactElement | null;
 
 type AuthorizationTabState = {
-    parentCapability: string;
-    authorisedActors: string;
     activationUpstreamNodeId: string;
     activationRequiredStatus: 'pending' | 'approved' | 'rejected' | '';
     activationRequireAuthorisedActor: boolean;
@@ -2702,11 +2700,6 @@ interface AuthorizationTabProps extends IxoBlockProps {
     flowUri?: string;
     /** Entity DID that owns this flow */
     entityDid?: string;
-    /** Flow permissions (actors with flow-level access) */
-    flowActors?: Array<{
-        did: string;
-        displayName: string;
-    }>;
     /** Callback to open flow permissions panel */
     onOpenFlowPermissions?: () => void;
 }

package/dist/{index-BmOZ-1iJ.d.ts → index-7ptWHYA8.d.ts}

@@ -2,6 +2,7 @@ import * as _blocknote_core from '@blocknote/core';
 import { BlockSchemaFromSpecs, InlineContentSchema, StyleSchema, BlockNoteEditor, PartialBlock } from '@blocknote/core';
 import { MatrixClient } from 'matrix-js-sdk';
 import { Map, Array as Array$1 } from 'yjs';
+import { Delegation } from '@ixo/ucan';
 
 declare const blockSpecs: {
     checkbox: {
@@ -603,12 +604,6 @@ declare const blockSpecs: {
                 readonly claimCollectionId: {
                     readonly default: "";
                 };
-                readonly parentCapability: {
-                    readonly default: "";
-                };
-                readonly authorisedActors: {
-                    readonly default: "";
-                };
                 readonly linkedClaimCollectionId: {
                     readonly default: "";
                 };
@@ -666,12 +661,6 @@ declare const blockSpecs: {
                 readonly claimCollectionId: {
                     readonly default: "";
                 };
-                readonly parentCapability: {
-                    readonly default: "";
-                };
-                readonly authorisedActors: {
-                    readonly default: "";
-                };
                 readonly linkedClaimCollectionId: {
                     readonly default: "";
                 };
@@ -1578,12 +1567,6 @@ declare const blockSpecs: {
                 readonly conditions: {
                     readonly default: "";
                 };
-                readonly parentCapability: {
-                    readonly default: "";
-                };
-                readonly authorisedActors: {
-                    readonly default: "";
-                };
                 readonly activationUpstreamNodeId: {
                     readonly default: "";
                 };
@@ -1653,12 +1636,6 @@ declare const blockSpecs: {
                 readonly conditions: {
                     readonly default: "";
                 };
-                readonly parentCapability: {
-                    readonly default: "";
-                };
-                readonly authorisedActors: {
-                    readonly default: "";
-                };
                 readonly activationUpstreamNodeId: {
                     readonly default: "";
                 };
@@ -1876,7 +1853,6 @@ declare class MatrixMetadataManager {
     dispose(): void;
 }
 
-type CapabilityURI = string;
 type DID = string;
 type ClaimCollectionURI = string;
 type EvaluationStatus = 'pending' | 'approved' | 'rejected';
@@ -1886,11 +1862,13 @@ interface LinkedClaim {
 interface ActivationCondition {
     upstreamNodeId: string;
     requiredStatus: EvaluationStatus;
+    /**
+     * When true, activation requires the upstream block to have been executed
+     * with a valid UCAN invocation (i.e. lastInvocationCid is set).
+     */
     requireAuthorisedActor?: boolean;
 }
 interface FlowNodeAuthzExtension {
-    parentCapability?: CapabilityURI;
-    authorisedActors?: DID[];
     linkedClaim?: LinkedClaim;
     activationCondition?: ActivationCondition;
 }
@@ -1937,8 +1915,6 @@ interface FlowNodeRuntimeState {
     submittedByDid?: DID;
     evaluationStatus?: EvaluationStatus;
     executionTimestamp?: number;
-    derivedUcan?: string;
-    authorisedActorsSnapshot?: DID[];
 }
 interface FlowNodeBase {
     id: string;
@@ -1992,8 +1968,8 @@ interface StoredDelegation {
     expiration?: number;
     /** When this delegation was created (milliseconds) */
     createdAt: number;
-    /** Format indicator: 'car' for new format, 'legacy' for old JSON format */
-    format: 'car' | 'legacy';
+    /** Format indicator */
+    format: 'car';
     /** CIDs of proof delegations in the chain */
     proofCids: string[];
 }
@@ -2085,22 +2061,6 @@ interface FindProofsResult {
     /** Error message if not found */
     error?: string;
 }
-/**
- * Report from migrating legacy delegations
- */
-interface MigrationReport {
-    /** Total number of legacy delegations found */
-    total: number;
-    /** Number successfully migrated */
-    migrated: number;
-    /** Number that failed migration */
-    failed: number;
-    /** Details of failures */
-    errors: Array<{
-        id: string;
-        error: string;
-    }>;
-}
 /**
  * Parameters for creating a root delegation
  */
@@ -2158,68 +2118,7 @@ interface CreateInvocationParams {
 }
 
 /**
- * Capability types for UCAN-based authorization
- *
- * NOTE: This module contains legacy types for backward compatibility.
- * For new code, prefer using types from './ucan.ts' which align with @ixo/ucan.
- */
-
-/**
- * @deprecated Use UcanCapability from './ucan' for new code
- */
-interface Capability {
-    /** Action that can be performed, e.g., "flow/execute", "flow/block/execute" */
-    can: string;
-    /** Resource URI, e.g., "ixo:flow:abc123", "ixo:flow:abc123:blockId" */
-    with: string;
-    /** Additional constraints/caveats (optional) */
-    nb?: CapabilityCaveats;
-}
-/**
- * @deprecated Use StoredDelegation from './ucan' for new code.
- * SignedCapability uses JSON format; StoredDelegation uses CAR format.
- */
-interface SignedCapability {
-    /** Unique identifier (CID or generated ID) */
-    id: string;
-    /** DID of the issuer (entity or user who signed) */
-    issuer: string;
-    /** DID of the recipient */
-    audience: string;
-    /** Capabilities being granted */
-    capabilities: Capability[];
-    /** IDs of parent capabilities in the chain (empty for root) */
-    proofs: string[];
-    /** Unix timestamp when capability expires (optional) */
-    expiration?: number;
-    /** ISO timestamp when created */
-    issuedAt: string;
-    /** Base64 encoded signature */
-    signature: string;
-}
-interface CapabilityValidationResult {
-    valid: boolean;
-    error?: string;
-    /** The full chain from root to the validated capability */
-    chain?: SignedCapability[];
-}
-interface DelegationGrant {
-    /** DID of recipient */
-    audience: string;
-    /** Display name of recipient (for UI) */
-    audienceDisplayName?: string;
-    /** Capabilities to grant */
-    capabilities: Capability[];
-    /** IDs of proof capabilities */
-    proofs: string[];
-    /** Expiration timestamp (optional) */
-    expiration?: number;
-    /** Whether recipient can further delegate */
-    canDelegate?: boolean;
-}
-
-/**
- * UCAN Delegation Store with dual-mode support for CAR and legacy JSON formats
+ * UCAN Delegation Store — stores CAR-serialized delegations
  */
 interface UcanDelegationStore {
     get: (cid: string) => StoredDelegation | null;
@@ -2233,15 +2132,9 @@ interface UcanDelegationStore {
     getByAudience: (audienceDid: string) => StoredDelegation[];
     getByIssuer: (issuerDid: string) => StoredDelegation[];
     findByCapability: (can: string, withUri: string) => StoredDelegation[];
-    getVersion: () => number;
-    setVersion: (version: number) => void;
-    getLegacy: (id: string) => SignedCapability | null;
-    hasLegacy: (id: string) => boolean;
-    getAllLegacy: () => SignedCapability[];
-    convertLegacyToStored: (legacy: SignedCapability) => StoredDelegation;
 }
 /**
- * Create a UCAN delegation store backed by Y.Map with dual-mode support
+ * Create a UCAN delegation store backed by Y.Map
  */
 declare const createUcanDelegationStore: (yMap: Map<unknown>) => UcanDelegationStore;
 /**
@@ -2289,6 +2182,174 @@ declare const createInvocationStore: (yMap: Map<unknown>) => InvocationStore;
  */
 declare const createMemoryInvocationStore: () => InvocationStore;
 
+/**
+ * UCAN Service using @ixo/ucan directly
+ *
+ * This service provides a high-level API for:
+ * - Creating and managing delegations (CAR format)
+ * - Creating and validating invocations
+ * - Executing actions with invocation-based authorization
+ *
+ * The host app only needs to provide the signer (private key) after PIN decryption.
+ * All UCAN operations are performed using @ixo/ucan directly.
+ */
+
+/**
+ * Signer session scope type
+ */
+type SignerSessionScope = 'session' | 'operation';
+/**
+ * Signer session returned by createSignerSession
+ */
+interface SignerSessionInfo {
+    sessionId: string;
+    did: string;
+    publicKey: string;
+    keyId: string;
+    expiresAt: number;
+    scope: SignerSessionScope;
+}
+/**
+ * Handler functions for getting signers from the host application
+ * The host app handles PIN decryption and key management
+ */
+interface UcanServiceHandlers {
+    /**
+     * Get a signer for the given DID after PIN verification
+     * The host app decrypts the private key using the PIN
+     *
+     * @returns The private key in multibase format (for parseSigner)
+     * @deprecated Prefer createSignerSession for better security
+     */
+    getPrivateKey?: (params: {
+        did: string;
+        didType: 'entity' | 'user';
+        entityRoomId?: string;
+        pin: string;
+    }) => Promise<string>;
+    /**
+     * Get a signer from mnemonic (alternative to getPrivateKey)
+     * The host app retrieves and decrypts the mnemonic using the PIN
+     *
+     * @returns The mnemonic phrase
+     * @deprecated Prefer createSignerSession for better security
+     */
+    getMnemonic?: (params: {
+        did: string;
+        didType: 'entity' | 'user';
+        entityRoomId?: string;
+        pin: string;
+    }) => Promise<string>;
+    /**
+     * Create a signer session that can be used for multiple sign operations.
+     * The host app keeps the key material secure; the editor only receives an opaque handle.
+     *
+     * @param params.scope - 'session' for multiple operations, 'operation' for one-time use
+     * @param params.ttlSeconds - Time-to-live for session scope (default: 300, max: 3600)
+     */
+    createSignerSession?: (params: {
+        did: string;
+        didType: 'entity' | 'user';
+        entityRoomId?: string;
+        pin: string;
+        scope: SignerSessionScope;
+        ttlSeconds?: number;
+    }) => Promise<SignerSessionInfo>;
+    /**
+     * Sign data using an existing session.
+     * For 'operation' scope, the session is automatically invalidated after this call.
+     */
+    signWithSession?: (params: {
+        sessionId: string;
+        data: string;
+        algorithm?: 'Ed25519';
+    }) => Promise<{
+        signature: string;
+        algorithm: 'Ed25519';
+        keyId: string;
+    }>;
+    /**
+     * Release a session before it expires.
+     * Safe to call on already-released or expired sessions.
+     */
+    releaseSignerSession?: (params: {
+        sessionId: string;
+    }) => Promise<{
+        released: boolean;
+        reason?: string;
+    }>;
+    /**
+     * Create a delegation directly in the host app.
+     * The host handles all signing internally using session-based signing.
+     * This is the preferred approach for security.
+     */
+    createDelegationWithSession?: (params: {
+        sessionId: string;
+        audience: string;
+        capabilities: Array<{
+            can: string;
+            with: string;
+            nb?: Record<string, unknown>;
+        }>;
+        proofs?: string[];
+        expiration?: number;
+    }) => Promise<{
+        cid: string;
+        delegation: string;
+    }>;
+    /**
+     * Create an invocation directly in the host app.
+     * The host handles all signing internally using session-based signing.
+     * This is the preferred approach for security.
+     */
+    createInvocationWithSession?: (params: {
+        sessionId: string;
+        audience: string;
+        capability: {
+            can: string;
+            with: string;
+            nb?: Record<string, unknown>;
+        };
+        proofs: string[];
+    }) => Promise<{
+        cid: string;
+        invocation: string;
+    }>;
+}
+/**
+ * Configuration for UcanService
+ */
+interface UcanServiceConfig {
+    delegationStore: UcanDelegationStore;
+    invocationStore: InvocationStore;
+    handlers: UcanServiceHandlers;
+    flowOwnerDid: string;
+    flowUri: string;
+}
+/**
+ * UCAN Service interface
+ */
+interface UcanService {
+    createRootDelegation: (params: CreateRootDelegationParams) => Promise<StoredDelegation>;
+    createDelegation: (params: CreateDelegationParams) => Promise<StoredDelegation>;
+    revokeDelegation: (cid: string) => void;
+    getDelegation: (cid: string) => StoredDelegation | null;
+    getAllDelegations: () => StoredDelegation[];
+    getRootDelegation: () => StoredDelegation | null;
+    createAndValidateInvocation: (params: CreateInvocationParams, flowId: string, blockId?: string) => Promise<InvocationResult>;
+    executeWithInvocation: <T>(params: CreateInvocationParams, action: () => Promise<T>, flowId: string, blockId?: string) => Promise<ExecutionWithInvocationResult & {
+        actionResult?: T;
+    }>;
+    validateDelegationChain: (audienceDid: string, capability: UcanCapability) => Promise<DelegationChainValidationResult>;
+    findValidProofs: (audienceDid: string, capability: UcanCapability) => Promise<FindProofsResult>;
+    parseDelegationFromStore: (cid: string) => Promise<Delegation | null>;
+    isConfigured: () => boolean;
+}
+/**
+ * Create a UCAN service instance
+ */
+declare const createUcanService: (config: UcanServiceConfig) => UcanService;
+
 /**
  * The schema type for the IXO editor, derived from block specs
  */
@@ -2440,17 +2501,21 @@ interface IxoEditorType<BSchema extends IxoBlockSchema = IxoBlockSchema, ISchema
      */
     getFlowNode?: (nodeId: string) => FlowNode | null;
     /**
-     * Get a delegation by ID
+     * Get the UCAN service for this flow
+     */
+    getUcanService?: () => UcanService | null;
+    /**
+     * Get a delegation by CID
      */
-    getDelegation?: (capabilityId: string) => SignedCapability | null;
+    getDelegation?: (cid: string) => StoredDelegation | null;
     /**
-     * Store a delegation
+     * Store a delegation (legacy compatibility — prefers UcanService)
      */
-    setDelegation?: (capability: SignedCapability) => void;
+    setDelegation?: (delegation: any) => void;
     /**
      * Get the root capability for this flow
      */
-    getRootCapability?: () => SignedCapability | null;
+    getRootCapability?: () => any | null;
     /**
      * Set the root capability ID
      */
@@ -2458,11 +2523,11 @@ interface IxoEditorType<BSchema extends IxoBlockSchema = IxoBlockSchema, ISchema
     /**
      * Get all delegations as array
      */
-    getAllDelegations?: () => SignedCapability[];
+    getAllDelegations?: () => any[];
     /**
      * Remove a delegation (revoke)
      */
-    removeDelegation?: (capabilityId: string) => void;
+    removeDelegation?: (cid: string) => void;
     /**
      * Add an invocation to the store (audit trail)
      */
@@ -2545,6 +2610,29 @@ interface IxoBlockProps<TBlock = any> {
     block: TBlock;
 }
 
+/**
+ * Capability types for UCAN-based authorization
+ */
+
+/**
+ * Grant request for delegating capabilities to a recipient.
+ * Used by the GrantPermissionPanel UI.
+ */
+interface DelegationGrant {
+    /** DID of recipient */
+    audience: string;
+    /** Display name of recipient (for UI) */
+    audienceDisplayName?: string;
+    /** Capabilities to grant */
+    capabilities: UcanCapability[];
+    /** CIDs of proof delegations */
+    proofs: string[];
+    /** Expiration timestamp (optional) */
+    expiration?: number;
+    /** Whether recipient can further delegate */
+    canDelegate?: boolean;
+}
+
 type IxoEditorTheme = 'light' | 'dark';
 interface IxoEditorOptions {
     /**
@@ -2647,4 +2735,4 @@ interface IxoEditorConfig {
     tableHandles: boolean;
 }
 
-export { type ActivationCondition as A, type CreateRootDelegationParams as B, type Capability as C, type DelegationGrant as D, type EvaluationStatus as E, type FlowNodeAuthzExtension as F, type CreateDelegationParams as G, type CreateInvocationParams as H, type IxoEditorOptions as I, type IxoEditorType as J, type IxoBlockProps as K, type LinkedClaim as L, type MigrationReport as M, type NodeState as N, type SignedCapability as S, type UcanDelegationStore as U, type CapabilityValidationResult as a, type IxoEditorTheme as b, type IxoEditorConfig as c, type IxoCollaborativeUser as d, type IxoCollaborativeEditorOptions as e, blockSpecs as f, getExtraSlashMenuItems as g, createUcanDelegationStore as h, createMemoryUcanDelegationStore as i, createInvocationStore as j, createMemoryInvocationStore as k, type InvocationStore as l, type CapabilityURI as m, type DID as n, type ClaimCollectionURI as o, type FlowNodeRuntimeState as p, type FlowNodeBase as q, type FlowNode as r, type UcanCapability as s, type StoredDelegation as t, type StoredInvocation as u, type InvocationRequest as v, type InvocationResult as w, type ExecutionWithInvocationResult as x, type DelegationChainValidationResult as y, type FindProofsResult as z };
+export { type ActivationCondition as A, type CreateRootDelegationParams as B, type ClaimCollectionURI as C, type DelegationChainValidationResult as D, type EvaluationStatus as E, type FlowNodeAuthzExtension as F, type CreateDelegationParams as G, type CreateInvocationParams as H, type InvocationStore as I, type IxoEditorType as J, type IxoBlockProps as K, type LinkedClaim as L, type NodeState as N, type StoredDelegation as S, type UcanDelegationStore as U, createMemoryUcanDelegationStore as a, createInvocationStore as b, createUcanDelegationStore as c, createMemoryInvocationStore as d, createUcanService as e, type UcanService as f, type UcanServiceConfig as g, type UcanServiceHandlers as h, type UcanCapability as i, type StoredInvocation as j, type DelegationGrant as k, type IxoEditorOptions as l, type IxoEditorTheme as m, type IxoEditorConfig as n, type IxoCollaborativeUser as o, type IxoCollaborativeEditorOptions as p, blockSpecs as q, getExtraSlashMenuItems as r, type DID as s, type FlowNodeRuntimeState as t, type FlowNodeBase as u, type FlowNode as v, type InvocationRequest as w, type InvocationResult as x, type ExecutionWithInvocationResult as y, type FindProofsResult as z };

package/dist/index.d.ts

@@ -1,6 +1,6 @@
-export { N as Addr, n as ApiRequestBlockProps, h as ApiRequestBlockSpec, A as AuthorizationTab, d as AuthorizationTabState, t as AuthzExecActionTypes, B as BlockPresenceUser, x as BlockRequirements, w as BlocknoteContextValue, v as BlocknoteHandlers, q as BlocknoteProvider, i as CheckboxBlockProps, g as CheckboxBlockSpec, Z as CosmosMsgForEmpty, C as CoverImage, c as CoverImageProps, a0 as Entity, a1 as EntityResponse, f as EntitySigningSetup, a2 as EntityVariables, E as EvaluationTab, e as EvaluationTabState, R as Expiration, F as FlowPermissionsPanel, G as GrantPermissionModal, a3 as GraphQLClient, a6 as GraphQLRequest, a5 as GraphQLResponse, H as HttpMethod, I as IxoEditor, b as IxoEditorProps, K as KeyValuePair, k as ListBlockProps, j as ListBlockSettings, L as ListBlockSpec, O as OverviewBlock, l as OverviewBlockProps, _ as ProposalAction, m as ProposalBlockProps, P as ProposalBlockSpec, y as ProposalResponse, z as SingleChoiceProposal, S as StakeType, S as StakeTypeValue, W as Status, X as Threshold, T as Timestamp, Q as Uint128, U as User, V as ValidatorActionType, M as Vote, J as VoteInfo, D as VoteResponse, Y as Votes, $ as getEntity, a4 as ixoGraphQLClient, o as useBlockPresence, r as useBlocknoteContext, s as useBlocknoteHandlers, a as useCreateCollaborativeIxoEditor, u as useCreateIxoEditor, p as useTrackBlockFocus } from './graphql-client-CSiffz9I.mjs';
-export { m as ActivationResult, l as AuthorizationContext, A as AuthorizationResult, B as BaseUcanFlow, q as CompiledFlow, C as CompilerRegistry, D as DelegationStore, E as ExecuteNodeParams, k as ExecutionContext, j as ExecutionOutcome, p as FlowCapability, F as FlowRuntimeStateManager, N as NodeActionResult, S as SetupFlowOptions, o as SetupFlowResult, h as buildAuthzFromProps, g as buildFlowNodeFromBlock, n as compileBaseUcanFlow, c as createDelegationStore, b as createMemoryDelegationStore, d as createRuntimeStateManager, e as executeNode, f as findValidCapability, i as isActorAuthorized, a as isNodeActive, s as setupFlowFromBaseUcan, v as validateCapabilityChain } from './setup-C5MpJdyr.mjs';
-export { C as Capability, a as CapabilityValidationResult, D as DelegationGrant, e as IxoCollaborativeEditorOptions, d as IxoCollaborativeUser, c as IxoEditorConfig, I as IxoEditorOptions, b as IxoEditorTheme, S as SignedCapability, f as blockSpecs, g as getExtraSlashMenuItems } from './index-BmOZ-1iJ.mjs';
+export { N as Addr, n as ApiRequestBlockProps, h as ApiRequestBlockSpec, A as AuthorizationTab, d as AuthorizationTabState, t as AuthzExecActionTypes, B as BlockPresenceUser, x as BlockRequirements, w as BlocknoteContextValue, v as BlocknoteHandlers, q as BlocknoteProvider, i as CheckboxBlockProps, g as CheckboxBlockSpec, Z as CosmosMsgForEmpty, C as CoverImage, c as CoverImageProps, a0 as Entity, a1 as EntityResponse, f as EntitySigningSetup, a2 as EntityVariables, E as EvaluationTab, e as EvaluationTabState, R as Expiration, F as FlowPermissionsPanel, G as GrantPermissionModal, a3 as GraphQLClient, a6 as GraphQLRequest, a5 as GraphQLResponse, H as HttpMethod, I as IxoEditor, b as IxoEditorProps, K as KeyValuePair, k as ListBlockProps, j as ListBlockSettings, L as ListBlockSpec, O as OverviewBlock, l as OverviewBlockProps, _ as ProposalAction, m as ProposalBlockProps, P as ProposalBlockSpec, y as ProposalResponse, z as SingleChoiceProposal, S as StakeType, S as StakeTypeValue, W as Status, X as Threshold, T as Timestamp, Q as Uint128, U as User, V as ValidatorActionType, M as Vote, J as VoteInfo, D as VoteResponse, Y as Votes, $ as getEntity, a4 as ixoGraphQLClient, o as useBlockPresence, r as useBlocknoteContext, s as useBlocknoteHandlers, a as useCreateCollaborativeIxoEditor, u as useCreateIxoEditor, p as useTrackBlockFocus } from './graphql-client-D1Zgezg6.mjs';
+export { h as ActivationResult, A as AuthorizationResult, B as BaseUcanFlow, m as CompiledFlow, C as CompilerRegistry, E as ExecuteNodeParams, g as ExecutionContext, f as ExecutionOutcome, l as FlowCapability, F as FlowRuntimeStateManager, N as NodeActionResult, S as SetupFlowOptions, k as SetupFlowResult, d as buildAuthzFromProps, b as buildFlowNodeFromBlock, j as compileBaseUcanFlow, c as createRuntimeStateManager, e as executeNode, i as isAuthorized, a as isNodeActive, s as setupFlowFromBaseUcan } from './setup-CahGoKeh.mjs';
+export { D as DelegationChainValidationResult, k as DelegationGrant, I as InvocationStore, p as IxoCollaborativeEditorOptions, o as IxoCollaborativeUser, n as IxoEditorConfig, l as IxoEditorOptions, m as IxoEditorTheme, S as StoredDelegation, j as StoredInvocation, i as UcanCapability, U as UcanDelegationStore, f as UcanService, g as UcanServiceConfig, h as UcanServiceHandlers, q as blockSpecs, b as createInvocationStore, d as createMemoryInvocationStore, a as createMemoryUcanDelegationStore, c as createUcanDelegationStore, e as createUcanService, r as getExtraSlashMenuItems } from './index-7ptWHYA8.mjs';
 export { CloneDocumentResult, cloneDocument } from '@ixo/matrix-crdt';
 export { Block, BlockNoteEditor, BlockNoteSchema, DefaultBlockSchema, DefaultInlineContentSchema, DefaultStyleSchema, PartialBlock } from '@blocknote/core';
 import 'yjs';

package/dist/index.mjs

@@ -26,23 +26,24 @@ import {
   useCreateCollaborativeIxoEditor,
   useCreateIxoEditor,
   useTrackBlockFocus
-} from "./chunk-LQP2DPYM.mjs";
+} from "./chunk-EDCITCO5.mjs";
 import {
   compileBaseUcanFlow,
   setupFlowFromBaseUcan
-} from "./chunk-SZSEZY6Z.mjs";
+} from "./chunk-5PHI3WWK.mjs";
 import {
   buildAuthzFromProps,
   buildFlowNodeFromBlock,
-  createDelegationStore,
-  createMemoryDelegationStore,
+  createInvocationStore,
+  createMemoryInvocationStore,
+  createMemoryUcanDelegationStore,
   createRuntimeStateManager,
+  createUcanDelegationStore,
+  createUcanService,
   executeNode,
-  findValidCapability,
-  isActorAuthorized,
-  isNodeActive,
-  validateCapabilityChain
-} from "./chunk-NOMJJJDB.mjs";
+  isAuthorized,
+  isNodeActive
+} from "./chunk-77R3T42S.mjs";
 
 // src/index.ts
 import { cloneDocument } from "@ixo/matrix-crdt";
@@ -69,14 +70,16 @@ export {
   buildFlowNodeFromBlock,
   cloneDocument,
   compileBaseUcanFlow,
-  createDelegationStore,
-  createMemoryDelegationStore,
+  createInvocationStore,
+  createMemoryInvocationStore,
+  createMemoryUcanDelegationStore,
   createRuntimeStateManager,
+  createUcanDelegationStore,
+  createUcanService,
   executeNode,
-  findValidCapability,
   getEntity,
   getExtraSlashMenuItems,
-  isActorAuthorized,
+  isAuthorized,
   isNodeActive,
   ixoGraphQLClient,
   setupFlowFromBaseUcan,
@@ -85,7 +88,6 @@ export {
   useBlocknoteHandlers,
   useCreateCollaborativeIxoEditor,
   useCreateIxoEditor,
-  useTrackBlockFocus,
-  validateCapabilityChain
+  useTrackBlockFocus
 };
 //# sourceMappingURL=index.mjs.map