@naylence/runtime 0.4.16 → 0.4.17

package/dist/browser/index.cjs

@@ -525,12 +525,12 @@ async function ensureRuntimeFactoriesRegistered(registry = factory.Registry) {
 }
 
 // This file is auto-generated during build - do not edit manually
-// Generated from package.json version: 0.4.16
+// Generated from package.json version: 0.4.17
 /**
  * The package version, injected at build time.
  * @internal
  */
-const VERSION = '0.4.16';
+const VERSION = '0.4.17';
 
 let initialized = false;
 const runtimePlugin = {
@@ -4497,7 +4497,7 @@ function toHex(data) {
         .map((byte) => byte.toString(16).padStart(2, '0'))
         .join('');
 }
-function toArrayBuffer$1(view) {
+function toArrayBuffer(view) {
     const slice = view.buffer.slice(view.byteOffset, view.byteOffset + view.byteLength);
     return slice;
 }
@@ -4553,11 +4553,11 @@ class StorageAESEncryptionManager {
     async encrypt(plaintext, key) {
         const subtle = await getSubtleCrypto();
         const normalizedKey = normalizeKey(key);
-        const keyBuffer = toArrayBuffer$1(normalizedKey);
+        const keyBuffer = toArrayBuffer(normalizedKey);
         const cryptoKey = await subtle.importKey('raw', keyBuffer, { name: 'AES-GCM' }, false, ['encrypt']);
         const iv = await getRandomBytes$2(GCM_IV_LENGTH$1);
-        const ivBuffer = toArrayBuffer$1(iv);
-        const ciphertextBuffer = await subtle.encrypt({ name: 'AES-GCM', iv: ivBuffer }, cryptoKey, toArrayBuffer$1(plaintext));
+        const ivBuffer = toArrayBuffer(iv);
+        const ciphertextBuffer = await subtle.encrypt({ name: 'AES-GCM', iv: ivBuffer }, cryptoKey, toArrayBuffer(plaintext));
         const ciphertext = new Uint8Array(ciphertextBuffer);
         const result = new Uint8Array(iv.length + ciphertext.length);
         result.set(iv, 0);
@@ -4570,12 +4570,12 @@ class StorageAESEncryptionManager {
         }
         const subtle = await getSubtleCrypto();
         const normalizedKey = normalizeKey(key);
-        const keyBuffer = toArrayBuffer$1(normalizedKey);
+        const keyBuffer = toArrayBuffer(normalizedKey);
         const cryptoKey = await subtle.importKey('raw', keyBuffer, { name: 'AES-GCM' }, false, ['decrypt']);
         const iv = ciphertext.slice(0, GCM_IV_LENGTH$1);
         const actualCiphertext = ciphertext.slice(GCM_IV_LENGTH$1);
-        const ivBuffer = toArrayBuffer$1(iv);
-        const cipherBuffer = toArrayBuffer$1(actualCiphertext);
+        const ivBuffer = toArrayBuffer(iv);
+        const cipherBuffer = toArrayBuffer(actualCiphertext);
         const plaintextBuffer = await subtle.decrypt({ name: 'AES-GCM', iv: ivBuffer }, cryptoKey, cipherBuffer);
         return new Uint8Array(plaintextBuffer);
     }
@@ -29371,11 +29371,6 @@ async function getRandomBytes$1(length) {
     }
     throw new Error('Unable to generate secure random bytes in this environment');
 }
-function toArrayBuffer(data) {
-    const buffer = new ArrayBuffer(data.byteLength);
-    new Uint8Array(buffer).set(data);
-    return buffer;
-}
 function base64Encode(data) {
     if (typeof btoa === 'function') {
         let binary = '';
@@ -29410,7 +29405,7 @@ async function deriveKEK(passphrase, salt, iterations) {
     const baseKey = await subtle.importKey('raw', UTF8_ENCODER.encode(passphrase), { name: 'PBKDF2' }, false, ['deriveKey']);
     return subtle.deriveKey({
         name: 'PBKDF2',
-        salt: toArrayBuffer(salt),
+        salt: salt,
         iterations,
         hash: 'SHA-256',
     }, baseKey, { name: 'AES-GCM', length: 256 }, false, ['encrypt', 'decrypt']);
@@ -29419,13 +29414,13 @@ async function aesGcmEncrypt(key, data) {
     const cryptoObject = await getCrypto();
     const subtle = cryptoObject.subtle;
     const iv = await getRandomBytes$1(GCM_IV_LENGTH);
-    const ciphertextBuffer = await subtle.encrypt({ name: 'AES-GCM', iv: toArrayBuffer(iv) }, key, toArrayBuffer(data));
+    const ciphertextBuffer = await subtle.encrypt({ name: 'AES-GCM', iv: iv }, key, data);
     return { iv, ciphertext: new Uint8Array(ciphertextBuffer) };
 }
 async function aesGcmDecrypt(key, iv, data) {
     const cryptoObject = await getCrypto();
     const subtle = cryptoObject.subtle;
-    const plaintextBuffer = await subtle.decrypt({ name: 'AES-GCM', iv: toArrayBuffer(iv) }, key, toArrayBuffer(data));
+    const plaintextBuffer = await subtle.decrypt({ name: 'AES-GCM', iv: iv }, key, data);
     return new Uint8Array(plaintextBuffer);
 }
 async function openDatabase(factory, dbName, storeName) {
@@ -37640,11 +37635,14 @@ class DefaultSecurityManagerFactory extends SecurityManagerFactory {
             if (!shouldCreate) {
                 return null;
             }
-            const tokenVerifier = new NoopTokenVerifier();
-            return ((await AuthorizerFactory.createAuthorizer(null, {
-                ...createOptions,
-                factoryArgs: [tokenVerifier],
-            })) ?? null);
+            // If authorization is required but no config provided, return null
+            // The caller should explicitly configure an authorizer with policy
+            // rather than relying on auto-creation which requires policy config
+            logger$h.debug('skipping_authorizer_auto_creation', {
+                reason: 'no_config_provided',
+                authorization_required: shouldCreate,
+            });
+            return null;
         }
         catch (error) {
             logger$h.error('failed_to_auto_create_authorizer', {

package/dist/browser/index.mjs

@@ -523,12 +523,12 @@ async function ensureRuntimeFactoriesRegistered(registry = Registry) {
 }
 
 // This file is auto-generated during build - do not edit manually
-// Generated from package.json version: 0.4.16
+// Generated from package.json version: 0.4.17
 /**
  * The package version, injected at build time.
  * @internal
  */
-const VERSION = '0.4.16';
+const VERSION = '0.4.17';
 
 let initialized = false;
 const runtimePlugin = {
@@ -4495,7 +4495,7 @@ function toHex(data) {
         .map((byte) => byte.toString(16).padStart(2, '0'))
         .join('');
 }
-function toArrayBuffer$1(view) {
+function toArrayBuffer(view) {
     const slice = view.buffer.slice(view.byteOffset, view.byteOffset + view.byteLength);
     return slice;
 }
@@ -4551,11 +4551,11 @@ class StorageAESEncryptionManager {
     async encrypt(plaintext, key) {
         const subtle = await getSubtleCrypto();
         const normalizedKey = normalizeKey(key);
-        const keyBuffer = toArrayBuffer$1(normalizedKey);
+        const keyBuffer = toArrayBuffer(normalizedKey);
         const cryptoKey = await subtle.importKey('raw', keyBuffer, { name: 'AES-GCM' }, false, ['encrypt']);
         const iv = await getRandomBytes$2(GCM_IV_LENGTH$1);
-        const ivBuffer = toArrayBuffer$1(iv);
-        const ciphertextBuffer = await subtle.encrypt({ name: 'AES-GCM', iv: ivBuffer }, cryptoKey, toArrayBuffer$1(plaintext));
+        const ivBuffer = toArrayBuffer(iv);
+        const ciphertextBuffer = await subtle.encrypt({ name: 'AES-GCM', iv: ivBuffer }, cryptoKey, toArrayBuffer(plaintext));
         const ciphertext = new Uint8Array(ciphertextBuffer);
         const result = new Uint8Array(iv.length + ciphertext.length);
         result.set(iv, 0);
@@ -4568,12 +4568,12 @@ class StorageAESEncryptionManager {
         }
         const subtle = await getSubtleCrypto();
         const normalizedKey = normalizeKey(key);
-        const keyBuffer = toArrayBuffer$1(normalizedKey);
+        const keyBuffer = toArrayBuffer(normalizedKey);
         const cryptoKey = await subtle.importKey('raw', keyBuffer, { name: 'AES-GCM' }, false, ['decrypt']);
         const iv = ciphertext.slice(0, GCM_IV_LENGTH$1);
         const actualCiphertext = ciphertext.slice(GCM_IV_LENGTH$1);
-        const ivBuffer = toArrayBuffer$1(iv);
-        const cipherBuffer = toArrayBuffer$1(actualCiphertext);
+        const ivBuffer = toArrayBuffer(iv);
+        const cipherBuffer = toArrayBuffer(actualCiphertext);
         const plaintextBuffer = await subtle.decrypt({ name: 'AES-GCM', iv: ivBuffer }, cryptoKey, cipherBuffer);
         return new Uint8Array(plaintextBuffer);
     }
@@ -29369,11 +29369,6 @@ async function getRandomBytes$1(length) {
     }
     throw new Error('Unable to generate secure random bytes in this environment');
 }
-function toArrayBuffer(data) {
-    const buffer = new ArrayBuffer(data.byteLength);
-    new Uint8Array(buffer).set(data);
-    return buffer;
-}
 function base64Encode(data) {
     if (typeof btoa === 'function') {
         let binary = '';
@@ -29408,7 +29403,7 @@ async function deriveKEK(passphrase, salt, iterations) {
     const baseKey = await subtle.importKey('raw', UTF8_ENCODER.encode(passphrase), { name: 'PBKDF2' }, false, ['deriveKey']);
     return subtle.deriveKey({
         name: 'PBKDF2',
-        salt: toArrayBuffer(salt),
+        salt: salt,
         iterations,
         hash: 'SHA-256',
     }, baseKey, { name: 'AES-GCM', length: 256 }, false, ['encrypt', 'decrypt']);
@@ -29417,13 +29412,13 @@ async function aesGcmEncrypt(key, data) {
     const cryptoObject = await getCrypto();
     const subtle = cryptoObject.subtle;
     const iv = await getRandomBytes$1(GCM_IV_LENGTH);
-    const ciphertextBuffer = await subtle.encrypt({ name: 'AES-GCM', iv: toArrayBuffer(iv) }, key, toArrayBuffer(data));
+    const ciphertextBuffer = await subtle.encrypt({ name: 'AES-GCM', iv: iv }, key, data);
     return { iv, ciphertext: new Uint8Array(ciphertextBuffer) };
 }
 async function aesGcmDecrypt(key, iv, data) {
     const cryptoObject = await getCrypto();
     const subtle = cryptoObject.subtle;
-    const plaintextBuffer = await subtle.decrypt({ name: 'AES-GCM', iv: toArrayBuffer(iv) }, key, toArrayBuffer(data));
+    const plaintextBuffer = await subtle.decrypt({ name: 'AES-GCM', iv: iv }, key, data);
     return new Uint8Array(plaintextBuffer);
 }
 async function openDatabase(factory, dbName, storeName) {
@@ -37638,11 +37633,14 @@ class DefaultSecurityManagerFactory extends SecurityManagerFactory {
             if (!shouldCreate) {
                 return null;
             }
-            const tokenVerifier = new NoopTokenVerifier();
-            return ((await AuthorizerFactory.createAuthorizer(null, {
-                ...createOptions,
-                factoryArgs: [tokenVerifier],
-            })) ?? null);
+            // If authorization is required but no config provided, return null
+            // The caller should explicitly configure an authorizer with policy
+            // rather than relying on auto-creation which requires policy config
+            logger$h.debug('skipping_authorizer_auto_creation', {
+                reason: 'no_config_provided',
+                authorization_required: shouldCreate,
+            });
+            return null;
         }
         catch (error) {
             logger$h.error('failed_to_auto_create_authorizer', {

package/dist/cjs/naylence/fame/security/credential/browser-wrapped-key-credential-provider.js

@@ -95,6 +95,7 @@ async function getRandomBytes(length) {
     }
     throw new Error('Unable to generate secure random bytes in this environment');
 }
+// @ts-expect-error Kept for potential browser compatibility - Node.js prefers TypedArray
 function toArrayBuffer(data) {
     const buffer = new ArrayBuffer(data.byteLength);
     new Uint8Array(buffer).set(data);
@@ -134,7 +135,7 @@ async function deriveKEK(passphrase, salt, iterations) {
     const baseKey = await subtle.importKey('raw', UTF8_ENCODER.encode(passphrase), { name: 'PBKDF2' }, false, ['deriveKey']);
     return subtle.deriveKey({
         name: 'PBKDF2',
-        salt: toArrayBuffer(salt),
+        salt: salt,
         iterations,
         hash: 'SHA-256',
     }, baseKey, { name: 'AES-GCM', length: 256 }, false, ['encrypt', 'decrypt']);
@@ -143,13 +144,13 @@ async function aesGcmEncrypt(key, data) {
     const cryptoObject = await getCrypto();
     const subtle = cryptoObject.subtle;
     const iv = await getRandomBytes(GCM_IV_LENGTH);
-    const ciphertextBuffer = await subtle.encrypt({ name: 'AES-GCM', iv: toArrayBuffer(iv) }, key, toArrayBuffer(data));
+    const ciphertextBuffer = await subtle.encrypt({ name: 'AES-GCM', iv: iv }, key, data);
     return { iv, ciphertext: new Uint8Array(ciphertextBuffer) };
 }
 async function aesGcmDecrypt(key, iv, data) {
     const cryptoObject = await getCrypto();
     const subtle = cryptoObject.subtle;
-    const plaintextBuffer = await subtle.decrypt({ name: 'AES-GCM', iv: toArrayBuffer(iv) }, key, toArrayBuffer(data));
+    const plaintextBuffer = await subtle.decrypt({ name: 'AES-GCM', iv: iv }, key, data);
     return new Uint8Array(plaintextBuffer);
 }
 async function openDatabase(factory, dbName, storeName) {

package/dist/cjs/naylence/fame/security/default-security-manager-factory.js

@@ -2,7 +2,6 @@
 Object.defineProperty(exports, "__esModule", { value: true });
 exports.DefaultSecurityManagerFactory = exports.FACTORY_META = void 0;
 const authorizer_factory_js_1 = require("./auth/authorizer-factory.js");
-const noop_token_verifier_js_1 = require("./auth/noop-token-verifier.js");
 const certificate_manager_factory_js_1 = require("./cert/certificate-manager-factory.js");
 const encryption_manager_factory_js_1 = require("./encryption/encryption-manager-factory.js");
 const secure_channel_manager_factory_js_1 = require("./encryption/secure-channel-manager-factory.js");
@@ -411,11 +410,14 @@ class DefaultSecurityManagerFactory extends security_manager_factory_js_1.Securi
             if (!shouldCreate) {
                 return null;
             }
-            const tokenVerifier = new noop_token_verifier_js_1.NoopTokenVerifier();
-            return ((await authorizer_factory_js_1.AuthorizerFactory.createAuthorizer(null, {
-                ...createOptions,
-                factoryArgs: [tokenVerifier],
-            })) ?? null);
+            // If authorization is required but no config provided, return null
+            // The caller should explicitly configure an authorizer with policy
+            // rather than relying on auto-creation which requires policy config
+            logger.debug('skipping_authorizer_auto_creation', {
+                reason: 'no_config_provided',
+                authorization_required: shouldCreate,
+            });
+            return null;
         }
         catch (error) {
             logger.error('failed_to_auto_create_authorizer', {

package/dist/cjs/version.js

@@ -1,10 +1,10 @@
 "use strict";
 // This file is auto-generated during build - do not edit manually
-// Generated from package.json version: 0.4.16
+// Generated from package.json version: 0.4.17
 Object.defineProperty(exports, "__esModule", { value: true });
 exports.VERSION = void 0;
 /**
  * The package version, injected at build time.
  * @internal
  */
-exports.VERSION = '0.4.16';
+exports.VERSION = '0.4.17';

package/dist/esm/naylence/fame/security/credential/browser-wrapped-key-credential-provider.js

@@ -58,6 +58,7 @@ async function getRandomBytes(length) {
     }
     throw new Error('Unable to generate secure random bytes in this environment');
 }
+// @ts-expect-error Kept for potential browser compatibility - Node.js prefers TypedArray
 function toArrayBuffer(data) {
     const buffer = new ArrayBuffer(data.byteLength);
     new Uint8Array(buffer).set(data);
@@ -97,7 +98,7 @@ async function deriveKEK(passphrase, salt, iterations) {
     const baseKey = await subtle.importKey('raw', UTF8_ENCODER.encode(passphrase), { name: 'PBKDF2' }, false, ['deriveKey']);
     return subtle.deriveKey({
         name: 'PBKDF2',
-        salt: toArrayBuffer(salt),
+        salt: salt,
         iterations,
         hash: 'SHA-256',
     }, baseKey, { name: 'AES-GCM', length: 256 }, false, ['encrypt', 'decrypt']);
@@ -106,13 +107,13 @@ async function aesGcmEncrypt(key, data) {
     const cryptoObject = await getCrypto();
     const subtle = cryptoObject.subtle;
     const iv = await getRandomBytes(GCM_IV_LENGTH);
-    const ciphertextBuffer = await subtle.encrypt({ name: 'AES-GCM', iv: toArrayBuffer(iv) }, key, toArrayBuffer(data));
+    const ciphertextBuffer = await subtle.encrypt({ name: 'AES-GCM', iv: iv }, key, data);
     return { iv, ciphertext: new Uint8Array(ciphertextBuffer) };
 }
 async function aesGcmDecrypt(key, iv, data) {
     const cryptoObject = await getCrypto();
     const subtle = cryptoObject.subtle;
-    const plaintextBuffer = await subtle.decrypt({ name: 'AES-GCM', iv: toArrayBuffer(iv) }, key, toArrayBuffer(data));
+    const plaintextBuffer = await subtle.decrypt({ name: 'AES-GCM', iv: iv }, key, data);
     return new Uint8Array(plaintextBuffer);
 }
 async function openDatabase(factory, dbName, storeName) {

package/dist/esm/naylence/fame/security/default-security-manager-factory.js

@@ -1,5 +1,4 @@
 import { AuthorizerFactory } from './auth/authorizer-factory.js';
-import { NoopTokenVerifier } from './auth/noop-token-verifier.js';
 import { CertificateManagerFactory } from './cert/certificate-manager-factory.js';
 import { EncryptionManagerFactory } from './encryption/encryption-manager-factory.js';
 import { SecureChannelManagerFactory } from './encryption/secure-channel-manager-factory.js';
@@ -408,11 +407,14 @@ export class DefaultSecurityManagerFactory extends SecurityManagerFactory {
             if (!shouldCreate) {
                 return null;
             }
-            const tokenVerifier = new NoopTokenVerifier();
-            return ((await AuthorizerFactory.createAuthorizer(null, {
-                ...createOptions,
-                factoryArgs: [tokenVerifier],
-            })) ?? null);
+            // If authorization is required but no config provided, return null
+            // The caller should explicitly configure an authorizer with policy
+            // rather than relying on auto-creation which requires policy config
+            logger.debug('skipping_authorizer_auto_creation', {
+                reason: 'no_config_provided',
+                authorization_required: shouldCreate,
+            });
+            return null;
         }
         catch (error) {
             logger.error('failed_to_auto_create_authorizer', {

package/dist/esm/version.js

@@ -1,7 +1,7 @@
 // This file is auto-generated during build - do not edit manually
-// Generated from package.json version: 0.4.16
+// Generated from package.json version: 0.4.17
 /**
  * The package version, injected at build time.
  * @internal
  */
-export const VERSION = '0.4.16';
+export const VERSION = '0.4.17';

package/dist/node/index.cjs

@@ -14,12 +14,12 @@ var fastify = require('fastify');
 var websocketPlugin = require('@fastify/websocket');
 
 // This file is auto-generated during build - do not edit manually
-// Generated from package.json version: 0.4.16
+// Generated from package.json version: 0.4.17
 /**
  * The package version, injected at build time.
  * @internal
  */
-const VERSION = '0.4.16';
+const VERSION = '0.4.17';
 
 /**
  * Fame protocol specific error classes with WebSocket close codes and proper inheritance.
@@ -3959,7 +3959,7 @@ function toHex(data) {
         .map((byte) => byte.toString(16).padStart(2, '0'))
         .join('');
 }
-function toArrayBuffer$1(view) {
+function toArrayBuffer(view) {
     const slice = view.buffer.slice(view.byteOffset, view.byteOffset + view.byteLength);
     return slice;
 }
@@ -4015,11 +4015,11 @@ class StorageAESEncryptionManager {
     async encrypt(plaintext, key) {
         const subtle = await getSubtleCrypto();
         const normalizedKey = normalizeKey(key);
-        const keyBuffer = toArrayBuffer$1(normalizedKey);
+        const keyBuffer = toArrayBuffer(normalizedKey);
         const cryptoKey = await subtle.importKey('raw', keyBuffer, { name: 'AES-GCM' }, false, ['encrypt']);
         const iv = await getRandomBytes$2(GCM_IV_LENGTH$1);
-        const ivBuffer = toArrayBuffer$1(iv);
-        const ciphertextBuffer = await subtle.encrypt({ name: 'AES-GCM', iv: ivBuffer }, cryptoKey, toArrayBuffer$1(plaintext));
+        const ivBuffer = toArrayBuffer(iv);
+        const ciphertextBuffer = await subtle.encrypt({ name: 'AES-GCM', iv: ivBuffer }, cryptoKey, toArrayBuffer(plaintext));
         const ciphertext = new Uint8Array(ciphertextBuffer);
         const result = new Uint8Array(iv.length + ciphertext.length);
         result.set(iv, 0);
@@ -4032,12 +4032,12 @@ class StorageAESEncryptionManager {
         }
         const subtle = await getSubtleCrypto();
         const normalizedKey = normalizeKey(key);
-        const keyBuffer = toArrayBuffer$1(normalizedKey);
+        const keyBuffer = toArrayBuffer(normalizedKey);
         const cryptoKey = await subtle.importKey('raw', keyBuffer, { name: 'AES-GCM' }, false, ['decrypt']);
         const iv = ciphertext.slice(0, GCM_IV_LENGTH$1);
         const actualCiphertext = ciphertext.slice(GCM_IV_LENGTH$1);
-        const ivBuffer = toArrayBuffer$1(iv);
-        const cipherBuffer = toArrayBuffer$1(actualCiphertext);
+        const ivBuffer = toArrayBuffer(iv);
+        const cipherBuffer = toArrayBuffer(actualCiphertext);
         const plaintextBuffer = await subtle.decrypt({ name: 'AES-GCM', iv: ivBuffer }, cryptoKey, cipherBuffer);
         return new Uint8Array(plaintextBuffer);
     }
@@ -29258,11 +29258,6 @@ async function getRandomBytes$1(length) {
     }
     throw new Error('Unable to generate secure random bytes in this environment');
 }
-function toArrayBuffer(data) {
-    const buffer = new ArrayBuffer(data.byteLength);
-    new Uint8Array(buffer).set(data);
-    return buffer;
-}
 function base64Encode(data) {
     if (typeof btoa === 'function') {
         let binary = '';
@@ -29297,7 +29292,7 @@ async function deriveKEK(passphrase, salt, iterations) {
     const baseKey = await subtle.importKey('raw', UTF8_ENCODER.encode(passphrase), { name: 'PBKDF2' }, false, ['deriveKey']);
     return subtle.deriveKey({
         name: 'PBKDF2',
-        salt: toArrayBuffer(salt),
+        salt: salt,
         iterations,
         hash: 'SHA-256',
     }, baseKey, { name: 'AES-GCM', length: 256 }, false, ['encrypt', 'decrypt']);
@@ -29306,13 +29301,13 @@ async function aesGcmEncrypt(key, data) {
     const cryptoObject = await getCrypto();
     const subtle = cryptoObject.subtle;
     const iv = await getRandomBytes$1(GCM_IV_LENGTH);
-    const ciphertextBuffer = await subtle.encrypt({ name: 'AES-GCM', iv: toArrayBuffer(iv) }, key, toArrayBuffer(data));
+    const ciphertextBuffer = await subtle.encrypt({ name: 'AES-GCM', iv: iv }, key, data);
     return { iv, ciphertext: new Uint8Array(ciphertextBuffer) };
 }
 async function aesGcmDecrypt(key, iv, data) {
     const cryptoObject = await getCrypto();
     const subtle = cryptoObject.subtle;
-    const plaintextBuffer = await subtle.decrypt({ name: 'AES-GCM', iv: toArrayBuffer(iv) }, key, toArrayBuffer(data));
+    const plaintextBuffer = await subtle.decrypt({ name: 'AES-GCM', iv: iv }, key, data);
     return new Uint8Array(plaintextBuffer);
 }
 async function openDatabase(factory, dbName, storeName) {
@@ -36190,11 +36185,14 @@ class DefaultSecurityManagerFactory extends SecurityManagerFactory {
             if (!shouldCreate) {
                 return null;
             }
-            const tokenVerifier = new NoopTokenVerifier();
-            return ((await AuthorizerFactory.createAuthorizer(null, {
-                ...createOptions,
-                factoryArgs: [tokenVerifier],
-            })) ?? null);
+            // If authorization is required but no config provided, return null
+            // The caller should explicitly configure an authorizer with policy
+            // rather than relying on auto-creation which requires policy config
+            logger$k.debug('skipping_authorizer_auto_creation', {
+                reason: 'no_config_provided',
+                authorization_required: shouldCreate,
+            });
+            return null;
         }
         catch (error) {
             logger$k.error('failed_to_auto_create_authorizer', {

package/dist/node/index.mjs

@@ -13,12 +13,12 @@ import fastify from 'fastify';
 import websocketPlugin from '@fastify/websocket';
 
 // This file is auto-generated during build - do not edit manually
-// Generated from package.json version: 0.4.16
+// Generated from package.json version: 0.4.17
 /**
  * The package version, injected at build time.
  * @internal
  */
-const VERSION = '0.4.16';
+const VERSION = '0.4.17';
 
 /**
  * Fame protocol specific error classes with WebSocket close codes and proper inheritance.
@@ -3958,7 +3958,7 @@ function toHex(data) {
         .map((byte) => byte.toString(16).padStart(2, '0'))
         .join('');
 }
-function toArrayBuffer$1(view) {
+function toArrayBuffer(view) {
     const slice = view.buffer.slice(view.byteOffset, view.byteOffset + view.byteLength);
     return slice;
 }
@@ -4014,11 +4014,11 @@ class StorageAESEncryptionManager {
     async encrypt(plaintext, key) {
         const subtle = await getSubtleCrypto();
         const normalizedKey = normalizeKey(key);
-        const keyBuffer = toArrayBuffer$1(normalizedKey);
+        const keyBuffer = toArrayBuffer(normalizedKey);
         const cryptoKey = await subtle.importKey('raw', keyBuffer, { name: 'AES-GCM' }, false, ['encrypt']);
         const iv = await getRandomBytes$2(GCM_IV_LENGTH$1);
-        const ivBuffer = toArrayBuffer$1(iv);
-        const ciphertextBuffer = await subtle.encrypt({ name: 'AES-GCM', iv: ivBuffer }, cryptoKey, toArrayBuffer$1(plaintext));
+        const ivBuffer = toArrayBuffer(iv);
+        const ciphertextBuffer = await subtle.encrypt({ name: 'AES-GCM', iv: ivBuffer }, cryptoKey, toArrayBuffer(plaintext));
         const ciphertext = new Uint8Array(ciphertextBuffer);
         const result = new Uint8Array(iv.length + ciphertext.length);
         result.set(iv, 0);
@@ -4031,12 +4031,12 @@ class StorageAESEncryptionManager {
         }
         const subtle = await getSubtleCrypto();
         const normalizedKey = normalizeKey(key);
-        const keyBuffer = toArrayBuffer$1(normalizedKey);
+        const keyBuffer = toArrayBuffer(normalizedKey);
         const cryptoKey = await subtle.importKey('raw', keyBuffer, { name: 'AES-GCM' }, false, ['decrypt']);
         const iv = ciphertext.slice(0, GCM_IV_LENGTH$1);
         const actualCiphertext = ciphertext.slice(GCM_IV_LENGTH$1);
-        const ivBuffer = toArrayBuffer$1(iv);
-        const cipherBuffer = toArrayBuffer$1(actualCiphertext);
+        const ivBuffer = toArrayBuffer(iv);
+        const cipherBuffer = toArrayBuffer(actualCiphertext);
         const plaintextBuffer = await subtle.decrypt({ name: 'AES-GCM', iv: ivBuffer }, cryptoKey, cipherBuffer);
         return new Uint8Array(plaintextBuffer);
     }
@@ -29257,11 +29257,6 @@ async function getRandomBytes$1(length) {
     }
     throw new Error('Unable to generate secure random bytes in this environment');
 }
-function toArrayBuffer(data) {
-    const buffer = new ArrayBuffer(data.byteLength);
-    new Uint8Array(buffer).set(data);
-    return buffer;
-}
 function base64Encode(data) {
     if (typeof btoa === 'function') {
         let binary = '';
@@ -29296,7 +29291,7 @@ async function deriveKEK(passphrase, salt, iterations) {
     const baseKey = await subtle.importKey('raw', UTF8_ENCODER.encode(passphrase), { name: 'PBKDF2' }, false, ['deriveKey']);
     return subtle.deriveKey({
         name: 'PBKDF2',
-        salt: toArrayBuffer(salt),
+        salt: salt,
         iterations,
         hash: 'SHA-256',
     }, baseKey, { name: 'AES-GCM', length: 256 }, false, ['encrypt', 'decrypt']);
@@ -29305,13 +29300,13 @@ async function aesGcmEncrypt(key, data) {
     const cryptoObject = await getCrypto();
     const subtle = cryptoObject.subtle;
     const iv = await getRandomBytes$1(GCM_IV_LENGTH);
-    const ciphertextBuffer = await subtle.encrypt({ name: 'AES-GCM', iv: toArrayBuffer(iv) }, key, toArrayBuffer(data));
+    const ciphertextBuffer = await subtle.encrypt({ name: 'AES-GCM', iv: iv }, key, data);
     return { iv, ciphertext: new Uint8Array(ciphertextBuffer) };
 }
 async function aesGcmDecrypt(key, iv, data) {
     const cryptoObject = await getCrypto();
     const subtle = cryptoObject.subtle;
-    const plaintextBuffer = await subtle.decrypt({ name: 'AES-GCM', iv: toArrayBuffer(iv) }, key, toArrayBuffer(data));
+    const plaintextBuffer = await subtle.decrypt({ name: 'AES-GCM', iv: iv }, key, data);
     return new Uint8Array(plaintextBuffer);
 }
 async function openDatabase(factory, dbName, storeName) {
@@ -36189,11 +36184,14 @@ class DefaultSecurityManagerFactory extends SecurityManagerFactory {
             if (!shouldCreate) {
                 return null;
             }
-            const tokenVerifier = new NoopTokenVerifier();
-            return ((await AuthorizerFactory.createAuthorizer(null, {
-                ...createOptions,
-                factoryArgs: [tokenVerifier],
-            })) ?? null);
+            // If authorization is required but no config provided, return null
+            // The caller should explicitly configure an authorizer with policy
+            // rather than relying on auto-creation which requires policy config
+            logger$k.debug('skipping_authorizer_auto_creation', {
+                reason: 'no_config_provided',
+                authorization_required: shouldCreate,
+            });
+            return null;
         }
         catch (error) {
             logger$k.error('failed_to_auto_create_authorizer', {

package/dist/node/node.cjs

@@ -4436,12 +4436,12 @@ async function ensureRuntimeFactoriesRegistered(registry = factory.Registry) {
 }
 
 // This file is auto-generated during build - do not edit manually
-// Generated from package.json version: 0.4.16
+// Generated from package.json version: 0.4.17
 /**
  * The package version, injected at build time.
  * @internal
  */
-const VERSION = '0.4.16';
+const VERSION = '0.4.17';
 
 let initialized = false;
 const runtimePlugin = {
@@ -30480,6 +30480,7 @@ async function getRandomBytes$1(length) {
     }
     throw new Error('Unable to generate secure random bytes in this environment');
 }
+// @ts-expect-error Kept for potential browser compatibility - Node.js prefers TypedArray
 function toArrayBuffer(data) {
     const buffer = new ArrayBuffer(data.byteLength);
     new Uint8Array(buffer).set(data);
@@ -30519,7 +30520,7 @@ async function deriveKEK(passphrase, salt, iterations) {
     const baseKey = await subtle.importKey('raw', UTF8_ENCODER.encode(passphrase), { name: 'PBKDF2' }, false, ['deriveKey']);
     return subtle.deriveKey({
         name: 'PBKDF2',
-        salt: toArrayBuffer(salt),
+        salt: salt,
         iterations,
         hash: 'SHA-256',
     }, baseKey, { name: 'AES-GCM', length: 256 }, false, ['encrypt', 'decrypt']);
@@ -30528,13 +30529,13 @@ async function aesGcmEncrypt(key, data) {
     const cryptoObject = await getCrypto();
     const subtle = cryptoObject.subtle;
     const iv = await getRandomBytes$1(GCM_IV_LENGTH);
-    const ciphertextBuffer = await subtle.encrypt({ name: 'AES-GCM', iv: toArrayBuffer(iv) }, key, toArrayBuffer(data));
+    const ciphertextBuffer = await subtle.encrypt({ name: 'AES-GCM', iv: iv }, key, data);
     return { iv, ciphertext: new Uint8Array(ciphertextBuffer) };
 }
 async function aesGcmDecrypt(key, iv, data) {
     const cryptoObject = await getCrypto();
     const subtle = cryptoObject.subtle;
-    const plaintextBuffer = await subtle.decrypt({ name: 'AES-GCM', iv: toArrayBuffer(iv) }, key, toArrayBuffer(data));
+    const plaintextBuffer = await subtle.decrypt({ name: 'AES-GCM', iv: iv }, key, data);
     return new Uint8Array(plaintextBuffer);
 }
 async function openDatabase(factory, dbName, storeName) {
@@ -40949,11 +40950,14 @@ class DefaultSecurityManagerFactory extends SecurityManagerFactory {
             if (!shouldCreate) {
                 return null;
             }
-            const tokenVerifier = new NoopTokenVerifier();
-            return ((await AuthorizerFactory.createAuthorizer(null, {
-                ...createOptions,
-                factoryArgs: [tokenVerifier],
-            })) ?? null);
+            // If authorization is required but no config provided, return null
+            // The caller should explicitly configure an authorizer with policy
+            // rather than relying on auto-creation which requires policy config
+            logger$e.debug('skipping_authorizer_auto_creation', {
+                reason: 'no_config_provided',
+                authorization_required: shouldCreate,
+            });
+            return null;
         }
         catch (error) {
             logger$e.error('failed_to_auto_create_authorizer', {

package/dist/node/node.mjs

@@ -4435,12 +4435,12 @@ async function ensureRuntimeFactoriesRegistered(registry = Registry) {
 }
 
 // This file is auto-generated during build - do not edit manually
-// Generated from package.json version: 0.4.16
+// Generated from package.json version: 0.4.17
 /**
  * The package version, injected at build time.
  * @internal
  */
-const VERSION = '0.4.16';
+const VERSION = '0.4.17';
 
 let initialized = false;
 const runtimePlugin = {
@@ -30479,6 +30479,7 @@ async function getRandomBytes$1(length) {
     }
     throw new Error('Unable to generate secure random bytes in this environment');
 }
+// @ts-expect-error Kept for potential browser compatibility - Node.js prefers TypedArray
 function toArrayBuffer(data) {
     const buffer = new ArrayBuffer(data.byteLength);
     new Uint8Array(buffer).set(data);
@@ -30518,7 +30519,7 @@ async function deriveKEK(passphrase, salt, iterations) {
     const baseKey = await subtle.importKey('raw', UTF8_ENCODER.encode(passphrase), { name: 'PBKDF2' }, false, ['deriveKey']);
     return subtle.deriveKey({
         name: 'PBKDF2',
-        salt: toArrayBuffer(salt),
+        salt: salt,
         iterations,
         hash: 'SHA-256',
     }, baseKey, { name: 'AES-GCM', length: 256 }, false, ['encrypt', 'decrypt']);
@@ -30527,13 +30528,13 @@ async function aesGcmEncrypt(key, data) {
     const cryptoObject = await getCrypto();
     const subtle = cryptoObject.subtle;
     const iv = await getRandomBytes$1(GCM_IV_LENGTH);
-    const ciphertextBuffer = await subtle.encrypt({ name: 'AES-GCM', iv: toArrayBuffer(iv) }, key, toArrayBuffer(data));
+    const ciphertextBuffer = await subtle.encrypt({ name: 'AES-GCM', iv: iv }, key, data);
     return { iv, ciphertext: new Uint8Array(ciphertextBuffer) };
 }
 async function aesGcmDecrypt(key, iv, data) {
     const cryptoObject = await getCrypto();
     const subtle = cryptoObject.subtle;
-    const plaintextBuffer = await subtle.decrypt({ name: 'AES-GCM', iv: toArrayBuffer(iv) }, key, toArrayBuffer(data));
+    const plaintextBuffer = await subtle.decrypt({ name: 'AES-GCM', iv: iv }, key, data);
     return new Uint8Array(plaintextBuffer);
 }
 async function openDatabase(factory, dbName, storeName) {
@@ -40948,11 +40949,14 @@ class DefaultSecurityManagerFactory extends SecurityManagerFactory {
             if (!shouldCreate) {
                 return null;
             }
-            const tokenVerifier = new NoopTokenVerifier();
-            return ((await AuthorizerFactory.createAuthorizer(null, {
-                ...createOptions,
-                factoryArgs: [tokenVerifier],
-            })) ?? null);
+            // If authorization is required but no config provided, return null
+            // The caller should explicitly configure an authorizer with policy
+            // rather than relying on auto-creation which requires policy config
+            logger$e.debug('skipping_authorizer_auto_creation', {
+                reason: 'no_config_provided',
+                authorization_required: shouldCreate,
+            });
+            return null;
         }
         catch (error) {
             logger$e.error('failed_to_auto_create_authorizer', {

package/dist/types/version.d.ts

@@ -2,4 +2,4 @@
  * The package version, injected at build time.
  * @internal
  */
-export declare const VERSION = "0.4.16";
+export declare const VERSION = "0.4.17";

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@naylence/runtime",
-  "version": "0.4.16",
+  "version": "0.4.17",
   "type": "module",
   "description": "Naylence Runtime - Complete TypeScript runtime",
   "author": "Naylence Dev <naylencedev@gmail.com>",