@naylence/runtime 0.3.5-test.920 → 0.3.5-test.922

package/dist/esm/naylence/fame/security/index.js

@@ -44,6 +44,8 @@ export { SECURITY_MANAGER_FACTORY_BASE_TYPE } from './security-manager-factory.j
 export * from './signing/envelope-signer.js';
 export * from './signing/envelope-verifier.js';
 export { SigningConfig as SigningConfigClass, } from './signing/signing-config.js';
+export { canonicalJson, decodeBase64Url, frameDigest, immutableHeaders, } from './signing/eddsa-signer-verifier.js';
+export { encodeUtf8, } from './signing/eddsa-utils.js';
 export * from './crypto/providers/crypto-provider.js';
 export * from './crypto/providers/default-crypto-provider.js';
 export * from './credential/credential-provider.js';

package/dist/esm/naylence/fame/util/logging.js

@@ -287,15 +287,22 @@ function getInitialLogLevel() {
         return LogLevel.OFF;
     }
     // Check FAME_LOG_LEVEL environment variable
-    if (isNode && typeof process !== 'undefined' && process.env.FAME_LOG_LEVEL) {
+    let envLevel;
+    if (isNode && typeof process !== 'undefined') {
+        envLevel = process.env.FAME_LOG_LEVEL;
+    }
+    else if (typeof window !== 'undefined' && window.__ENV__) {
+        envLevel = window.__ENV__.FAME_LOG_LEVEL;
+    }
+    if (envLevel) {
         try {
-            const envLevel = process.env.FAME_LOG_LEVEL.trim().toUpperCase();
+            const normalized = envLevel.trim().toUpperCase();
             // Direct enum name match (e.g., "DEBUG", "INFO")
-            if (envLevel in LogLevel) {
-                return LogLevel[envLevel];
+            if (normalized in LogLevel) {
+                return LogLevel[normalized];
             }
             // Try alternative mappings
-            if (envLevel === 'WARN')
+            if (normalized === 'WARN')
                 return LogLevel.WARNING;
         }
         catch {

package/dist/esm/version.js

@@ -1,7 +1,7 @@
 // This file is auto-generated during build - do not edit manually
-// Generated from package.json version: 0.3.5-test.920
+// Generated from package.json version: 0.3.5-test.922
 /**
  * The package version, injected at build time.
  * @internal
  */
-export const VERSION = '0.3.5-test.920';
+export const VERSION = '0.3.5-test.922';

package/dist/node/index.cjs

@@ -14,12 +14,12 @@ var websocketPlugin = require('@fastify/websocket');
 var ed25519 = require('@noble/ed25519');
 
 // This file is auto-generated during build - do not edit manually
-// Generated from package.json version: 0.3.5-test.920
+// Generated from package.json version: 0.3.5-test.922
 /**
  * The package version, injected at build time.
  * @internal
  */
-const VERSION = '0.3.5-test.920';
+const VERSION = '0.3.5-test.922';
 
 /**
  * Fame protocol specific error classes with WebSocket close codes and proper inheritance.
@@ -599,15 +599,22 @@ function getInitialLogLevel() {
         return exports.LogLevel.OFF;
     }
     // Check FAME_LOG_LEVEL environment variable
-    if (isNode && typeof process !== 'undefined' && process.env.FAME_LOG_LEVEL) {
+    let envLevel;
+    if (isNode && typeof process !== 'undefined') {
+        envLevel = process.env.FAME_LOG_LEVEL;
+    }
+    else if (typeof window !== 'undefined' && window.__ENV__) {
+        envLevel = window.__ENV__.FAME_LOG_LEVEL;
+    }
+    if (envLevel) {
         try {
-            const envLevel = process.env.FAME_LOG_LEVEL.trim().toUpperCase();
+            const normalized = envLevel.trim().toUpperCase();
             // Direct enum name match (e.g., "DEBUG", "INFO")
-            if (envLevel in exports.LogLevel) {
-                return exports.LogLevel[envLevel];
+            if (normalized in exports.LogLevel) {
+                return exports.LogLevel[normalized];
             }
             // Try alternative mappings
-            if (envLevel === 'WARN')
+            if (normalized === 'WARN')
                 return exports.LogLevel.WARNING;
         }
         catch {
@@ -25154,6 +25161,111 @@ class SigningConfig {
     }
 }
 
+function hasBuffer() {
+    return typeof Buffer !== 'undefined';
+}
+function readStringProperty(source, ...names) {
+    if (!source || typeof source !== 'object') {
+        return undefined;
+    }
+    for (const name of names) {
+        const value = source[name];
+        if (typeof value === 'string' && value.length > 0) {
+            return value;
+        }
+    }
+    return undefined;
+}
+function decodePem(pem) {
+    const base64 = pem
+        .replace(/-----BEGIN[^-]+-----/g, '')
+        .replace(/-----END[^-]+-----/g, '')
+        .replace(/\s+/g, '');
+    if (typeof atob === 'function') {
+        const binary = atob(base64);
+        const bytes = new Uint8Array(binary.length);
+        for (let i = 0; i < binary.length; i += 1) {
+            bytes[i] = binary.charCodeAt(i);
+        }
+        return bytes;
+    }
+    if (hasBuffer()) {
+        return Uint8Array.from(Buffer.from(base64, 'base64'));
+    }
+    throw new Error('Base64 decoding is not available in this environment');
+}
+function readLength(data, offset) {
+    const initial = data[offset];
+    if (initial === undefined) {
+        throw new Error('Unexpected end of ASN.1 data');
+    }
+    if ((initial & 0x80) === 0) {
+        return { length: initial, nextOffset: offset + 1 };
+    }
+    const lengthOfLength = initial & 0x7f;
+    if (lengthOfLength === 0 || lengthOfLength > 4) {
+        throw new Error('Unsupported ASN.1 length encoding');
+    }
+    let length = 0;
+    let position = offset + 1;
+    for (let i = 0; i < lengthOfLength; i += 1) {
+        const byte = data[position];
+        if (byte === undefined) {
+            throw new Error('Unexpected end of ASN.1 data');
+        }
+        length = (length << 8) | byte;
+        position += 1;
+    }
+    return { length, nextOffset: position };
+}
+function readElement(data, offset, tag) {
+    if (data[offset] !== tag) {
+        throw new Error(`Unexpected ASN.1 tag: expected 0x${tag.toString(16)}, got 0x${(data[offset] ?? 0).toString(16)}`);
+    }
+    const { length, nextOffset } = readLength(data, offset + 1);
+    const contentOffset = nextOffset;
+    return {
+        length,
+        contentOffset,
+        nextOffset: contentOffset + length,
+    };
+}
+function parseEd25519PrivateKey(pem) {
+    const raw = decodePem(pem);
+    if (raw.length === 32) {
+        return raw.slice();
+    }
+    // Handle PKCS#8 structure defined in RFC 8410
+    const sequence = readElement(raw, 0, 0x30);
+    const version = readElement(raw, sequence.contentOffset, 0x02);
+    let offset = version.nextOffset;
+    const algorithm = readElement(raw, offset, 0x30);
+    offset = algorithm.nextOffset;
+    const privateKey = readElement(raw, offset, 0x04);
+    const privateContent = raw.subarray(privateKey.contentOffset, privateKey.contentOffset + privateKey.length);
+    if (privateContent.length === 32) {
+        return privateContent.slice();
+    }
+    if (privateContent.length >= 34 && privateContent[0] === 0x04) {
+        const innerLength = privateContent[1];
+        if (innerLength !== 32 || privateContent.length < innerLength + 2) {
+            throw new Error('Unexpected Ed25519 private key length');
+        }
+        return privateContent.subarray(2, 34);
+    }
+    throw new Error('Unsupported Ed25519 private key structure');
+}
+const textEncoder = typeof TextEncoder !== 'undefined' ? new TextEncoder() : undefined;
+function encodeUtf8(value) {
+    if (textEncoder) {
+        return textEncoder.encode(value);
+    }
+    if (hasBuffer()) {
+        return Uint8Array.from(Buffer.from(value, 'utf8'));
+    }
+    throw new Error('No UTF-8 encoder available in this environment');
+}
+
 const logger$x = getLogger('naylence.fame.security.auth.jwt_token_issuer');
 let joseModulePromise = null;
 async function requireJose() {
@@ -39259,111 +39371,6 @@ var sharedSecretTokenVerifier = /*#__PURE__*/Object.freeze({
     SharedSecretTokenVerifier: SharedSecretTokenVerifier
 });
 
-function hasBuffer() {
-    return typeof Buffer !== 'undefined';
-}
-function readStringProperty(source, ...names) {
-    if (!source || typeof source !== 'object') {
-        return undefined;
-    }
-    for (const name of names) {
-        const value = source[name];
-        if (typeof value === 'string' && value.length > 0) {
-            return value;
-        }
-    }
-    return undefined;
-}
-function decodePem(pem) {
-    const base64 = pem
-        .replace(/-----BEGIN[^-]+-----/g, '')
-        .replace(/-----END[^-]+-----/g, '')
-        .replace(/\s+/g, '');
-    if (typeof atob === 'function') {
-        const binary = atob(base64);
-        const bytes = new Uint8Array(binary.length);
-        for (let i = 0; i < binary.length; i += 1) {
-            bytes[i] = binary.charCodeAt(i);
-        }
-        return bytes;
-    }
-    if (hasBuffer()) {
-        return Uint8Array.from(Buffer.from(base64, 'base64'));
-    }
-    throw new Error('Base64 decoding is not available in this environment');
-}
-function readLength(data, offset) {
-    const initial = data[offset];
-    if (initial === undefined) {
-        throw new Error('Unexpected end of ASN.1 data');
-    }
-    if ((initial & 0x80) === 0) {
-        return { length: initial, nextOffset: offset + 1 };
-    }
-    const lengthOfLength = initial & 0x7f;
-    if (lengthOfLength === 0 || lengthOfLength > 4) {
-        throw new Error('Unsupported ASN.1 length encoding');
-    }
-    let length = 0;
-    let position = offset + 1;
-    for (let i = 0; i < lengthOfLength; i += 1) {
-        const byte = data[position];
-        if (byte === undefined) {
-            throw new Error('Unexpected end of ASN.1 data');
-        }
-        length = (length << 8) | byte;
-        position += 1;
-    }
-    return { length, nextOffset: position };
-}
-function readElement(data, offset, tag) {
-    if (data[offset] !== tag) {
-        throw new Error(`Unexpected ASN.1 tag: expected 0x${tag.toString(16)}, got 0x${(data[offset] ?? 0).toString(16)}`);
-    }
-    const { length, nextOffset } = readLength(data, offset + 1);
-    const contentOffset = nextOffset;
-    return {
-        length,
-        contentOffset,
-        nextOffset: contentOffset + length,
-    };
-}
-function parseEd25519PrivateKey(pem) {
-    const raw = decodePem(pem);
-    if (raw.length === 32) {
-        return raw.slice();
-    }
-    // Handle PKCS#8 structure defined in RFC 8410
-    const sequence = readElement(raw, 0, 0x30);
-    const version = readElement(raw, sequence.contentOffset, 0x02);
-    let offset = version.nextOffset;
-    const algorithm = readElement(raw, offset, 0x30);
-    offset = algorithm.nextOffset;
-    const privateKey = readElement(raw, offset, 0x04);
-    const privateContent = raw.subarray(privateKey.contentOffset, privateKey.contentOffset + privateKey.length);
-    if (privateContent.length === 32) {
-        return privateContent.slice();
-    }
-    if (privateContent.length >= 34 && privateContent[0] === 0x04) {
-        const innerLength = privateContent[1];
-        if (innerLength !== 32 || privateContent.length < innerLength + 2) {
-            throw new Error('Unexpected Ed25519 private key length');
-        }
-        return privateContent.subarray(2, 34);
-    }
-    throw new Error('Unsupported Ed25519 private key structure');
-}
-const textEncoder = typeof TextEncoder !== 'undefined' ? new TextEncoder() : undefined;
-function encodeUtf8(value) {
-    if (textEncoder) {
-        return textEncoder.encode(value);
-    }
-    if (hasBuffer()) {
-        return Uint8Array.from(Buffer.from(value, 'utf8'));
-    }
-    throw new Error('No UTF-8 encoder available in this environment');
-}
-
 if (!ed25519.hashes.sha512) {
     ed25519.hashes.sha512 = (message) => sha2_js.sha512(message);
 }
@@ -39912,6 +39919,7 @@ exports.assertGrant = assertGrant;
 exports.basicConfig = basicConfig;
 exports.broadcastChannelGrantToConnectorConfig = broadcastChannelGrantToConnectorConfig;
 exports.camelToSnakeCase = camelToSnakeCase;
+exports.canonicalJson = canonicalJson;
 exports.capitalizeFirstLetter = capitalizeFirstLetter;
 exports.color = color;
 exports.compareCryptoLevels = compareCryptoLevels;
@@ -39931,12 +39939,14 @@ exports.createX25519Keypair = createX25519Keypair;
 exports.credentialToString = credentialToString;
 exports.currentTraceId = currentTraceId$1;
 exports.debounce = debounce;
+exports.decodeBase64Url = decodeBase64Url;
 exports.decodeFameDataPayload = decodeFameDataPayload;
 exports.deepMerge = deepMerge;
 exports.defaultJsonEncoder = defaultJsonEncoder;
 exports.delay = delay;
 exports.dropEmpty = dropEmpty;
 exports.enableLogging = enableLogging;
+exports.encodeUtf8 = encodeUtf8;
 exports.ensureRuntimeFactoriesRegistered = ensureRuntimeFactoriesRegistered;
 exports.extractId = extractId;
 exports.extractPoolAddressBase = extractPoolAddressBase;
@@ -39944,6 +39954,7 @@ exports.extractPoolBase = extractPoolBase;
 exports.filterKeysByUse = filterKeysByUse;
 exports.formatTimestamp = formatTimestamp;
 exports.formatTimestampForConsole = formatTimestampForConsole$1;
+exports.frameDigest = frameDigest;
 exports.getCurrentEnvelope = getCurrentEnvelope;
 exports.getFameRoot = getFameRoot;
 exports.getKeyProvider = getKeyProvider;
@@ -39953,6 +39964,7 @@ exports.hasCryptoSupport = hasCryptoSupport;
 exports.hostnameToLogical = hostnameToLogical;
 exports.hostnamesToLogicals = hostnamesToLogicals;
 exports.httpGrantToConnectorConfig = httpGrantToConnectorConfig;
+exports.immutableHeaders = immutableHeaders;
 exports.inPageGrantToConnectorConfig = inPageGrantToConnectorConfig;
 exports.isAuthInjectionStrategy = isAuthInjectionStrategy;
 exports.isBroadcastChannelConnectionGrant = isBroadcastChannelConnectionGrant;

package/dist/node/index.mjs

@@ -13,12 +13,12 @@ import websocketPlugin from '@fastify/websocket';
 import { sign, hashes, verify } from '@noble/ed25519';
 
 // This file is auto-generated during build - do not edit manually
-// Generated from package.json version: 0.3.5-test.920
+// Generated from package.json version: 0.3.5-test.922
 /**
  * The package version, injected at build time.
  * @internal
  */
-const VERSION = '0.3.5-test.920';
+const VERSION = '0.3.5-test.922';
 
 /**
  * Fame protocol specific error classes with WebSocket close codes and proper inheritance.
@@ -598,15 +598,22 @@ function getInitialLogLevel() {
         return LogLevel.OFF;
     }
     // Check FAME_LOG_LEVEL environment variable
-    if (isNode && typeof process !== 'undefined' && process.env.FAME_LOG_LEVEL) {
+    let envLevel;
+    if (isNode && typeof process !== 'undefined') {
+        envLevel = process.env.FAME_LOG_LEVEL;
+    }
+    else if (typeof window !== 'undefined' && window.__ENV__) {
+        envLevel = window.__ENV__.FAME_LOG_LEVEL;
+    }
+    if (envLevel) {
         try {
-            const envLevel = process.env.FAME_LOG_LEVEL.trim().toUpperCase();
+            const normalized = envLevel.trim().toUpperCase();
             // Direct enum name match (e.g., "DEBUG", "INFO")
-            if (envLevel in LogLevel) {
-                return LogLevel[envLevel];
+            if (normalized in LogLevel) {
+                return LogLevel[normalized];
             }
             // Try alternative mappings
-            if (envLevel === 'WARN')
+            if (normalized === 'WARN')
                 return LogLevel.WARNING;
         }
         catch {
@@ -25153,6 +25160,111 @@ class SigningConfig {
     }
 }
 
+function hasBuffer() {
+    return typeof Buffer !== 'undefined';
+}
+function readStringProperty(source, ...names) {
+    if (!source || typeof source !== 'object') {
+        return undefined;
+    }
+    for (const name of names) {
+        const value = source[name];
+        if (typeof value === 'string' && value.length > 0) {
+            return value;
+        }
+    }
+    return undefined;
+}
+function decodePem(pem) {
+    const base64 = pem
+        .replace(/-----BEGIN[^-]+-----/g, '')
+        .replace(/-----END[^-]+-----/g, '')
+        .replace(/\s+/g, '');
+    if (typeof atob === 'function') {
+        const binary = atob(base64);
+        const bytes = new Uint8Array(binary.length);
+        for (let i = 0; i < binary.length; i += 1) {
+            bytes[i] = binary.charCodeAt(i);
+        }
+        return bytes;
+    }
+    if (hasBuffer()) {
+        return Uint8Array.from(Buffer.from(base64, 'base64'));
+    }
+    throw new Error('Base64 decoding is not available in this environment');
+}
+function readLength(data, offset) {
+    const initial = data[offset];
+    if (initial === undefined) {
+        throw new Error('Unexpected end of ASN.1 data');
+    }
+    if ((initial & 0x80) === 0) {
+        return { length: initial, nextOffset: offset + 1 };
+    }
+    const lengthOfLength = initial & 0x7f;
+    if (lengthOfLength === 0 || lengthOfLength > 4) {
+        throw new Error('Unsupported ASN.1 length encoding');
+    }
+    let length = 0;
+    let position = offset + 1;
+    for (let i = 0; i < lengthOfLength; i += 1) {
+        const byte = data[position];
+        if (byte === undefined) {
+            throw new Error('Unexpected end of ASN.1 data');
+        }
+        length = (length << 8) | byte;
+        position += 1;
+    }
+    return { length, nextOffset: position };
+}
+function readElement(data, offset, tag) {
+    if (data[offset] !== tag) {
+        throw new Error(`Unexpected ASN.1 tag: expected 0x${tag.toString(16)}, got 0x${(data[offset] ?? 0).toString(16)}`);
+    }
+    const { length, nextOffset } = readLength(data, offset + 1);
+    const contentOffset = nextOffset;
+    return {
+        length,
+        contentOffset,
+        nextOffset: contentOffset + length,
+    };
+}
+function parseEd25519PrivateKey(pem) {
+    const raw = decodePem(pem);
+    if (raw.length === 32) {
+        return raw.slice();
+    }
+    // Handle PKCS#8 structure defined in RFC 8410
+    const sequence = readElement(raw, 0, 0x30);
+    const version = readElement(raw, sequence.contentOffset, 0x02);
+    let offset = version.nextOffset;
+    const algorithm = readElement(raw, offset, 0x30);
+    offset = algorithm.nextOffset;
+    const privateKey = readElement(raw, offset, 0x04);
+    const privateContent = raw.subarray(privateKey.contentOffset, privateKey.contentOffset + privateKey.length);
+    if (privateContent.length === 32) {
+        return privateContent.slice();
+    }
+    if (privateContent.length >= 34 && privateContent[0] === 0x04) {
+        const innerLength = privateContent[1];
+        if (innerLength !== 32 || privateContent.length < innerLength + 2) {
+            throw new Error('Unexpected Ed25519 private key length');
+        }
+        return privateContent.subarray(2, 34);
+    }
+    throw new Error('Unsupported Ed25519 private key structure');
+}
+const textEncoder = typeof TextEncoder !== 'undefined' ? new TextEncoder() : undefined;
+function encodeUtf8(value) {
+    if (textEncoder) {
+        return textEncoder.encode(value);
+    }
+    if (hasBuffer()) {
+        return Uint8Array.from(Buffer.from(value, 'utf8'));
+    }
+    throw new Error('No UTF-8 encoder available in this environment');
+}
+
 const logger$x = getLogger('naylence.fame.security.auth.jwt_token_issuer');
 let joseModulePromise = null;
 async function requireJose() {
@@ -39258,111 +39370,6 @@ var sharedSecretTokenVerifier = /*#__PURE__*/Object.freeze({
     SharedSecretTokenVerifier: SharedSecretTokenVerifier
 });
 
-function hasBuffer() {
-    return typeof Buffer !== 'undefined';
-}
-function readStringProperty(source, ...names) {
-    if (!source || typeof source !== 'object') {
-        return undefined;
-    }
-    for (const name of names) {
-        const value = source[name];
-        if (typeof value === 'string' && value.length > 0) {
-            return value;
-        }
-    }
-    return undefined;
-}
-function decodePem(pem) {
-    const base64 = pem
-        .replace(/-----BEGIN[^-]+-----/g, '')
-        .replace(/-----END[^-]+-----/g, '')
-        .replace(/\s+/g, '');
-    if (typeof atob === 'function') {
-        const binary = atob(base64);
-        const bytes = new Uint8Array(binary.length);
-        for (let i = 0; i < binary.length; i += 1) {
-            bytes[i] = binary.charCodeAt(i);
-        }
-        return bytes;
-    }
-    if (hasBuffer()) {
-        return Uint8Array.from(Buffer.from(base64, 'base64'));
-    }
-    throw new Error('Base64 decoding is not available in this environment');
-}
-function readLength(data, offset) {
-    const initial = data[offset];
-    if (initial === undefined) {
-        throw new Error('Unexpected end of ASN.1 data');
-    }
-    if ((initial & 0x80) === 0) {
-        return { length: initial, nextOffset: offset + 1 };
-    }
-    const lengthOfLength = initial & 0x7f;
-    if (lengthOfLength === 0 || lengthOfLength > 4) {
-        throw new Error('Unsupported ASN.1 length encoding');
-    }
-    let length = 0;
-    let position = offset + 1;
-    for (let i = 0; i < lengthOfLength; i += 1) {
-        const byte = data[position];
-        if (byte === undefined) {
-            throw new Error('Unexpected end of ASN.1 data');
-        }
-        length = (length << 8) | byte;
-        position += 1;
-    }
-    return { length, nextOffset: position };
-}
-function readElement(data, offset, tag) {
-    if (data[offset] !== tag) {
-        throw new Error(`Unexpected ASN.1 tag: expected 0x${tag.toString(16)}, got 0x${(data[offset] ?? 0).toString(16)}`);
-    }
-    const { length, nextOffset } = readLength(data, offset + 1);
-    const contentOffset = nextOffset;
-    return {
-        length,
-        contentOffset,
-        nextOffset: contentOffset + length,
-    };
-}
-function parseEd25519PrivateKey(pem) {
-    const raw = decodePem(pem);
-    if (raw.length === 32) {
-        return raw.slice();
-    }
-    // Handle PKCS#8 structure defined in RFC 8410
-    const sequence = readElement(raw, 0, 0x30);
-    const version = readElement(raw, sequence.contentOffset, 0x02);
-    let offset = version.nextOffset;
-    const algorithm = readElement(raw, offset, 0x30);
-    offset = algorithm.nextOffset;
-    const privateKey = readElement(raw, offset, 0x04);
-    const privateContent = raw.subarray(privateKey.contentOffset, privateKey.contentOffset + privateKey.length);
-    if (privateContent.length === 32) {
-        return privateContent.slice();
-    }
-    if (privateContent.length >= 34 && privateContent[0] === 0x04) {
-        const innerLength = privateContent[1];
-        if (innerLength !== 32 || privateContent.length < innerLength + 2) {
-            throw new Error('Unexpected Ed25519 private key length');
-        }
-        return privateContent.subarray(2, 34);
-    }
-    throw new Error('Unsupported Ed25519 private key structure');
-}
-const textEncoder = typeof TextEncoder !== 'undefined' ? new TextEncoder() : undefined;
-function encodeUtf8(value) {
-    if (textEncoder) {
-        return textEncoder.encode(value);
-    }
-    if (hasBuffer()) {
-        return Uint8Array.from(Buffer.from(value, 'utf8'));
-    }
-    throw new Error('No UTF-8 encoder available in this environment');
-}
-
 if (!hashes.sha512) {
     hashes.sha512 = (message) => sha512(message);
 }
@@ -39740,4 +39747,4 @@ var websocketTransportProvisioner = /*#__PURE__*/Object.freeze({
     WebSocketTransportProvisionerFactory: WebSocketTransportProvisionerFactory
 });
 
-export { ADMISSION_CLIENT_FACTORY_BASE_TYPE, ATTACHMENT_KEY_VALIDATOR_FACTORY_BASE_TYPE, AUTHORIZER_FACTORY_BASE_TYPE, AUTH_INJECTION_STRATEGY_FACTORY_BASE_TYPE, AnsiColor, AsyncLock, AttachmentKeyValidator, AuthInjectionStrategyFactory, AuthorizerFactory, BROADCAST_CHANNEL_CONNECTION_GRANT_TYPE, BackPressureFull, BaseAsyncConnector, BaseNodeEventListener, BindingManager, BindingStoreEntryRecord, BrowserAutoKeyCredentialProvider, BrowserWrappedKeyCredentialProvider, CERTIFICATE_MANAGER_FACTORY_BASE_TYPE, CREDENTIAL_PROVIDER_FACTORY_BASE_TYPE, CRYPTO_LEVEL_SECURITY_ORDER, CertificateManagerFactory, ConnectorConfigDefaults, ConnectorFactory, ConsoleMetricsEmitter, CryptoLevel, FACTORY_META$_ as DEFAULT_WELCOME_FACTORY_META, DefaultCryptoProvider, DefaultKeyManager, DefaultSecurityManager, DefaultSecurityPolicy, DefaultWelcomeService, DefaultWelcomeServiceFactory, DevFixedKeyCredentialProvider, ENCRYPTION_MANAGER_FACTORY_BASE_TYPE, ENVELOPE_SIGNER_FACTORY_BASE_TYPE, ENVELOPE_VERIFIER_FACTORY_BASE_TYPE, ENV_VAR_DEFAULT_ENCRYPTION_LEVEL, ENV_VAR_HMAC_SECRET, ENV_VAR_JWKS_URL, ENV_VAR_JWT_ALGORITHM, ENV_VAR_JWT_AUDIENCE$1 as ENV_VAR_JWT_AUDIENCE, ENV_VAR_JWT_REVERSE_AUTH_AUDIENCE, ENV_VAR_JWT_REVERSE_AUTH_TRUSTED_ISSUER, ENV_VAR_JWT_TRUSTED_ISSUER, ENV_VAR_SHOW_ENVELOPES$1 as ENV_VAR_SHOW_ENVELOPES, EncryptedKeyValueStore, EncryptedStorageProviderBase, EncryptedValue, EncryptionConfiguration, EncryptionManagerFactory, EncryptionResult, EncryptionStatus, EnvCredentialProvider, EnvelopeContext, EnvelopeListenerManager, EnvelopeSecurityHandler, EnvelopeSignerFactory, EnvelopeVerifierFactory, FACTORY_META$$ as FACTORY_META, FIXED_PREFIX_LEN, FameAuthorizedDeliveryContextSchema, FameConnectError, FameEnvironmentContext, FameError, FameMessageTooLarge, FameNode, FameNodeAuthorizationContextSchema, FameProtocolError, FameTransportClose, FlowController, GRANT_PURPOSE_NODE_ATTACH, HTTP_CONNECTION_GRANT_TYPE, HTTP_STATELESS_CONNECTOR_TYPE, INPAGE_CONNECTION_GRANT_TYPE, INPAGE_CONNECTOR_TYPE, InMemoryBinding, InMemoryFanoutBroker, InMemoryKeyValueStore, InMemoryReadWriteChannel, InMemoryStorageProvider, InPageConnector, IndexedDBKeyValueStore, IndexedDBStorageProvider, InvalidPassphraseError, JWKValidationError, KEY_MANAGER_FACTORY_BASE_TYPE, KEY_STORE_FACTORY_BASE_TYPE, KeyInfo, KeyManagementHandler, KeyManagerFactory, KeyStore, KeyStoreFactory, KeyValidationError, LOAD_BALANCER_STICKINESS_MANAGER_FACTORY_BASE_TYPE, LoadBalancerStickinessManagerFactory, LogLevel, LogLevelNames, MemoryMetricsEmitter, NODE_LIKE_FACTORY_BASE_TYPE, NODE_PLACEMENT_STRATEGY_FACTORY_BASE_TYPE, NoOpMetricsEmitter, NoSecurityPolicy, NodeFactory, NodePlacementStrategyFactory, NoneCredentialProvider, NoopEncryptionManager, NoopKeyValidator, NotAuthorized, PROFILE_NAME_GATED, PROFILE_NAME_GATED_CALLBACK, PROFILE_NAME_OPEN$1 as PROFILE_NAME_OPEN, PROFILE_NAME_OVERLAY, PROFILE_NAME_OVERLAY_CALLBACK, PROFILE_NAME_STRICT_OVERLAY, PromptCredentialProvider, REPLICA_STICKINESS_MANAGER_FACTORY_BASE_TYPE, REQUIRED_FIELDS_BY_KTY, ReplicaStickinessManagerFactory, RootSessionManager, RouteManager, RpcMixin, RpcProxy, SEALED_ENVELOPE_NONCE_LENGTH, SEALED_ENVELOPE_OVERHEAD, SEALED_ENVELOPE_PRIVATE_KEY_LENGTH, SEALED_ENVELOPE_PUBLIC_KEY_LENGTH, SEALED_ENVELOPE_TAG_LENGTH, SECURE_CHANNEL_MANAGER_FACTORY_BASE_TYPE, SECURITY_MANAGER_FACTORY_BASE_TYPE, SECURITY_POLICY_FACTORY_BASE_TYPE, STORAGE_PROVIDER_FACTORY_BASE_TYPE, SecretSource, SecretStoreCredentialProvider, SecureChannelFrameHandler, SecureChannelManagerFactory, SecurityAction, SecurityRequirements, Sentinel, SentinelFactory, SessionKeyCredentialProvider, SignaturePolicy, SigningConfig as SigningConfigClass, SigningConfiguration, SimpleLoadBalancerStickinessManager, SimpleLoadBalancerStickinessManagerFactory, StaticCredentialProvider, StorageAESEncryptionManager, TOKEN_ISSUER_FACTORY_BASE_TYPE, TOKEN_PROVIDER_FACTORY_BASE_TYPE, TOKEN_VERIFIER_FACTORY_BASE_TYPE, TRANSPORT_PROVISIONER_FACTORY_BASE_TYPE, TaskSpawner, TokenIssuerFactory, TokenProviderFactory, TokenVerifierFactory, TransportProvisionerFactory, TtlValidationError, UpstreamSessionManager, VALID_CURVES_BY_KTY, VALID_KEY_USES, VERSION, WEBSOCKET_CONNECTION_GRANT_TYPE, WELCOME_SERVICE_FACTORY_BASE_TYPE, WebSocketCloseCode, WebSocketConnector, WebSocketState, WelcomeServiceFactory, _NoopFlowController, __runtimePluginLoader, addEnvelopeFields, addLogLevel, addTimestamp, assertConnectionGrant, assertGrant, basicConfig, broadcastChannelGrantToConnectorConfig, camelToSnakeCase, capitalizeFirstLetter, color, compareCryptoLevels, compiledPathPattern, consoleTransport, convertWildcardLogicalToDnsConstraint, createConnectorConfig, createEd25519Keypair, createHostLogicalUri, createLogicalUri, createNodeDeliveryContext, createResource, createRpcProxy, createRsaKeypair, createTransportCloseError, createX25519Keypair, credentialToString, currentTraceId$1 as currentTraceId, debounce, decodeFameDataPayload, deepMerge, defaultJsonEncoder, delay, dropEmpty, enableLogging, ensureRuntimeFactoriesRegistered, extractId, extractPoolAddressBase, extractPoolBase, filterKeysByUse, formatTimestamp, formatTimestampForConsole$1 as formatTimestampForConsole, getCurrentEnvelope, getFameRoot, getKeyProvider, getKeyStore, getLogger, hasCryptoSupport, hostnameToLogical, hostnamesToLogicals, httpGrantToConnectorConfig, inPageGrantToConnectorConfig, isAuthInjectionStrategy, isBroadcastChannelConnectionGrant, isConnectionGrant, isConnectorConfig, isEnvelopeLoggingEnabled, isFameError, isFameErrorType, isGrant, isHttpConnectionGrant, isInPageConnectionGrant, isNodeLike, isPlainObject$3 as isPlainObject, isPoolAddress, isPoolLogical, isRegisterable, isTokenExpired, isTokenProvider, isTokenValid, isWebSocketConnectionGrant, jsonDumps, logicalPatternsToDnsConstraints, logicalToHostname, logicalsToHostnames, matchesPoolAddress, matchesPoolLogical, maybeAwait, nodeWelcomeRouter, nodeWelcomeRouterPlugin, normalizeBroadcastChannelConnectionGrant, normalizeEncryptionConfig, normalizeEnvelopeSnapshot, normalizeHttpConnectionGrant, normalizeInPageConnectionGrant, normalizeInboundCryptoRules, normalizeInboundSigningRules, normalizeOutboundCryptoRules, normalizeOutboundSigningRules, normalizePath, normalizeResponseCryptoRules, normalizeResponseSigningRules, normalizeSecretSource, normalizeSecurityRequirements, normalizeSigningConfig, normalizeWebSocketConnectionGrant, objectToBytes, operation, parseSealedEnvelope, pinoTransport, prettyModel$1 as prettyModel, registerDefaultFactories, registerDefaultKeyStoreFactory, registerNodePlacementStrategyFactory, registerRuntimeFactories, requireCryptoSupport, retryWithBackoff, safeColor, sealedDecrypt, sealedEncrypt, secureDigest, setKeyStore, showEnvelopes$1 as showEnvelopes, sleep, snakeToCamelCase, stringifyNonPrimitives, supportsColor, throttle, urlsafeBase64Decode, urlsafeBase64Encode, validateCacheTtlSec, validateEncryptionKey, validateHostLogical, validateHostLogicals, validateJwkComplete, validateJwkStructure, validateJwkUseField, validateJwtTokenTtlSec, validateKeyCorrelationTtlSec, validateLogical, validateLogicalSegment, validateOAuth2TtlSec, validateSigningKey, validateTtlSec, waitForAll, waitForAllSettled, waitForAny, websocketGrantToConnectorConfig, withEnvelopeContext, withEnvelopeContextAsync, withLegacySnakeCaseKeys, withLock, withTimeout };
+export { ADMISSION_CLIENT_FACTORY_BASE_TYPE, ATTACHMENT_KEY_VALIDATOR_FACTORY_BASE_TYPE, AUTHORIZER_FACTORY_BASE_TYPE, AUTH_INJECTION_STRATEGY_FACTORY_BASE_TYPE, AnsiColor, AsyncLock, AttachmentKeyValidator, AuthInjectionStrategyFactory, AuthorizerFactory, BROADCAST_CHANNEL_CONNECTION_GRANT_TYPE, BackPressureFull, BaseAsyncConnector, BaseNodeEventListener, BindingManager, BindingStoreEntryRecord, BrowserAutoKeyCredentialProvider, BrowserWrappedKeyCredentialProvider, CERTIFICATE_MANAGER_FACTORY_BASE_TYPE, CREDENTIAL_PROVIDER_FACTORY_BASE_TYPE, CRYPTO_LEVEL_SECURITY_ORDER, CertificateManagerFactory, ConnectorConfigDefaults, ConnectorFactory, ConsoleMetricsEmitter, CryptoLevel, FACTORY_META$_ as DEFAULT_WELCOME_FACTORY_META, DefaultCryptoProvider, DefaultKeyManager, DefaultSecurityManager, DefaultSecurityPolicy, DefaultWelcomeService, DefaultWelcomeServiceFactory, DevFixedKeyCredentialProvider, ENCRYPTION_MANAGER_FACTORY_BASE_TYPE, ENVELOPE_SIGNER_FACTORY_BASE_TYPE, ENVELOPE_VERIFIER_FACTORY_BASE_TYPE, ENV_VAR_DEFAULT_ENCRYPTION_LEVEL, ENV_VAR_HMAC_SECRET, ENV_VAR_JWKS_URL, ENV_VAR_JWT_ALGORITHM, ENV_VAR_JWT_AUDIENCE$1 as ENV_VAR_JWT_AUDIENCE, ENV_VAR_JWT_REVERSE_AUTH_AUDIENCE, ENV_VAR_JWT_REVERSE_AUTH_TRUSTED_ISSUER, ENV_VAR_JWT_TRUSTED_ISSUER, ENV_VAR_SHOW_ENVELOPES$1 as ENV_VAR_SHOW_ENVELOPES, EncryptedKeyValueStore, EncryptedStorageProviderBase, EncryptedValue, EncryptionConfiguration, EncryptionManagerFactory, EncryptionResult, EncryptionStatus, EnvCredentialProvider, EnvelopeContext, EnvelopeListenerManager, EnvelopeSecurityHandler, EnvelopeSignerFactory, EnvelopeVerifierFactory, FACTORY_META$$ as FACTORY_META, FIXED_PREFIX_LEN, FameAuthorizedDeliveryContextSchema, FameConnectError, FameEnvironmentContext, FameError, FameMessageTooLarge, FameNode, FameNodeAuthorizationContextSchema, FameProtocolError, FameTransportClose, FlowController, GRANT_PURPOSE_NODE_ATTACH, HTTP_CONNECTION_GRANT_TYPE, HTTP_STATELESS_CONNECTOR_TYPE, INPAGE_CONNECTION_GRANT_TYPE, INPAGE_CONNECTOR_TYPE, InMemoryBinding, InMemoryFanoutBroker, InMemoryKeyValueStore, InMemoryReadWriteChannel, InMemoryStorageProvider, InPageConnector, IndexedDBKeyValueStore, IndexedDBStorageProvider, InvalidPassphraseError, JWKValidationError, KEY_MANAGER_FACTORY_BASE_TYPE, KEY_STORE_FACTORY_BASE_TYPE, KeyInfo, KeyManagementHandler, KeyManagerFactory, KeyStore, KeyStoreFactory, KeyValidationError, LOAD_BALANCER_STICKINESS_MANAGER_FACTORY_BASE_TYPE, LoadBalancerStickinessManagerFactory, LogLevel, LogLevelNames, MemoryMetricsEmitter, NODE_LIKE_FACTORY_BASE_TYPE, NODE_PLACEMENT_STRATEGY_FACTORY_BASE_TYPE, NoOpMetricsEmitter, NoSecurityPolicy, NodeFactory, NodePlacementStrategyFactory, NoneCredentialProvider, NoopEncryptionManager, NoopKeyValidator, NotAuthorized, PROFILE_NAME_GATED, PROFILE_NAME_GATED_CALLBACK, PROFILE_NAME_OPEN$1 as PROFILE_NAME_OPEN, PROFILE_NAME_OVERLAY, PROFILE_NAME_OVERLAY_CALLBACK, PROFILE_NAME_STRICT_OVERLAY, PromptCredentialProvider, REPLICA_STICKINESS_MANAGER_FACTORY_BASE_TYPE, REQUIRED_FIELDS_BY_KTY, ReplicaStickinessManagerFactory, RootSessionManager, RouteManager, RpcMixin, RpcProxy, SEALED_ENVELOPE_NONCE_LENGTH, SEALED_ENVELOPE_OVERHEAD, SEALED_ENVELOPE_PRIVATE_KEY_LENGTH, SEALED_ENVELOPE_PUBLIC_KEY_LENGTH, SEALED_ENVELOPE_TAG_LENGTH, SECURE_CHANNEL_MANAGER_FACTORY_BASE_TYPE, SECURITY_MANAGER_FACTORY_BASE_TYPE, SECURITY_POLICY_FACTORY_BASE_TYPE, STORAGE_PROVIDER_FACTORY_BASE_TYPE, SecretSource, SecretStoreCredentialProvider, SecureChannelFrameHandler, SecureChannelManagerFactory, SecurityAction, SecurityRequirements, Sentinel, SentinelFactory, SessionKeyCredentialProvider, SignaturePolicy, SigningConfig as SigningConfigClass, SigningConfiguration, SimpleLoadBalancerStickinessManager, SimpleLoadBalancerStickinessManagerFactory, StaticCredentialProvider, StorageAESEncryptionManager, TOKEN_ISSUER_FACTORY_BASE_TYPE, TOKEN_PROVIDER_FACTORY_BASE_TYPE, TOKEN_VERIFIER_FACTORY_BASE_TYPE, TRANSPORT_PROVISIONER_FACTORY_BASE_TYPE, TaskSpawner, TokenIssuerFactory, TokenProviderFactory, TokenVerifierFactory, TransportProvisionerFactory, TtlValidationError, UpstreamSessionManager, VALID_CURVES_BY_KTY, VALID_KEY_USES, VERSION, WEBSOCKET_CONNECTION_GRANT_TYPE, WELCOME_SERVICE_FACTORY_BASE_TYPE, WebSocketCloseCode, WebSocketConnector, WebSocketState, WelcomeServiceFactory, _NoopFlowController, __runtimePluginLoader, addEnvelopeFields, addLogLevel, addTimestamp, assertConnectionGrant, assertGrant, basicConfig, broadcastChannelGrantToConnectorConfig, camelToSnakeCase, canonicalJson, capitalizeFirstLetter, color, compareCryptoLevels, compiledPathPattern, consoleTransport, convertWildcardLogicalToDnsConstraint, createConnectorConfig, createEd25519Keypair, createHostLogicalUri, createLogicalUri, createNodeDeliveryContext, createResource, createRpcProxy, createRsaKeypair, createTransportCloseError, createX25519Keypair, credentialToString, currentTraceId$1 as currentTraceId, debounce, decodeBase64Url, decodeFameDataPayload, deepMerge, defaultJsonEncoder, delay, dropEmpty, enableLogging, encodeUtf8, ensureRuntimeFactoriesRegistered, extractId, extractPoolAddressBase, extractPoolBase, filterKeysByUse, formatTimestamp, formatTimestampForConsole$1 as formatTimestampForConsole, frameDigest, getCurrentEnvelope, getFameRoot, getKeyProvider, getKeyStore, getLogger, hasCryptoSupport, hostnameToLogical, hostnamesToLogicals, httpGrantToConnectorConfig, immutableHeaders, inPageGrantToConnectorConfig, isAuthInjectionStrategy, isBroadcastChannelConnectionGrant, isConnectionGrant, isConnectorConfig, isEnvelopeLoggingEnabled, isFameError, isFameErrorType, isGrant, isHttpConnectionGrant, isInPageConnectionGrant, isNodeLike, isPlainObject$3 as isPlainObject, isPoolAddress, isPoolLogical, isRegisterable, isTokenExpired, isTokenProvider, isTokenValid, isWebSocketConnectionGrant, jsonDumps, logicalPatternsToDnsConstraints, logicalToHostname, logicalsToHostnames, matchesPoolAddress, matchesPoolLogical, maybeAwait, nodeWelcomeRouter, nodeWelcomeRouterPlugin, normalizeBroadcastChannelConnectionGrant, normalizeEncryptionConfig, normalizeEnvelopeSnapshot, normalizeHttpConnectionGrant, normalizeInPageConnectionGrant, normalizeInboundCryptoRules, normalizeInboundSigningRules, normalizeOutboundCryptoRules, normalizeOutboundSigningRules, normalizePath, normalizeResponseCryptoRules, normalizeResponseSigningRules, normalizeSecretSource, normalizeSecurityRequirements, normalizeSigningConfig, normalizeWebSocketConnectionGrant, objectToBytes, operation, parseSealedEnvelope, pinoTransport, prettyModel$1 as prettyModel, registerDefaultFactories, registerDefaultKeyStoreFactory, registerNodePlacementStrategyFactory, registerRuntimeFactories, requireCryptoSupport, retryWithBackoff, safeColor, sealedDecrypt, sealedEncrypt, secureDigest, setKeyStore, showEnvelopes$1 as showEnvelopes, sleep, snakeToCamelCase, stringifyNonPrimitives, supportsColor, throttle, urlsafeBase64Decode, urlsafeBase64Encode, validateCacheTtlSec, validateEncryptionKey, validateHostLogical, validateHostLogicals, validateJwkComplete, validateJwkStructure, validateJwkUseField, validateJwtTokenTtlSec, validateKeyCorrelationTtlSec, validateLogical, validateLogicalSegment, validateOAuth2TtlSec, validateSigningKey, validateTtlSec, waitForAll, waitForAllSettled, waitForAny, websocketGrantToConnectorConfig, withEnvelopeContext, withEnvelopeContextAsync, withLegacySnakeCaseKeys, withLock, withTimeout };