@naylence/runtime 0.4.5 → 0.4.7

package/dist/esm/naylence/fame/node/admission/admission-profile-factory.js

@@ -1,6 +1,7 @@
 import { Expressions } from '@naylence/factory';
 import { GRANT_PURPOSE_NODE_ATTACH } from '../../grants/grant.js';
 import { getLogger } from '../../util/logging.js';
+import { getProfile, registerProfile, } from '../../profile/profile-registry.js';
 import { ADMISSION_CLIENT_FACTORY_BASE_TYPE, AdmissionClientFactory, } from './admission-client-factory.js';
 const logger = getLogger('naylence.fame.node.admission.admission_profile_factory');
 const ENV_VAR_IS_ROOT = 'FAME_ROOT';
@@ -211,20 +212,18 @@ const NOOP_PROFILE = {
     auto_accept_logicals: true,
     autoAcceptLogicals: true,
 };
-const PROFILE_MAP = {
-    [PROFILE_NAME_WELCOME]: WELCOME_SERVICE_PROFILE,
-    [PROFILE_NAME_WELCOME_PKCE]: WELCOME_SERVICE_PKCE_PROFILE,
-    [PROFILE_NAME_WELCOME_PKCE_ALIAS]: WELCOME_SERVICE_PKCE_PROFILE,
-    [PROFILE_NAME_DIRECT]: DIRECT_PROFILE,
-    [PROFILE_NAME_DIRECT_PKCE]: DIRECT_PKCE_PROFILE,
-    [PROFILE_NAME_DIRECT_PKCE_ALIAS]: DIRECT_PKCE_PROFILE,
-    [PROFILE_NAME_DIRECT_HTTP]: DIRECT_HTTP_PROFILE,
-    [PROFILE_NAME_DIRECT_INPAGE]: DIRECT_INPAGE_PROFILE,
-    [PROFILE_NAME_DIRECT_INPAGE_ALIAS]: DIRECT_INPAGE_PROFILE,
-    [PROFILE_NAME_OPEN]: OPEN_PROFILE,
-    [PROFILE_NAME_NOOP]: NOOP_PROFILE,
-    [PROFILE_NAME_NONE]: NOOP_PROFILE,
-};
+registerProfile(ADMISSION_CLIENT_FACTORY_BASE_TYPE, PROFILE_NAME_WELCOME, WELCOME_SERVICE_PROFILE, { source: 'admission-profile-factory' });
+registerProfile(ADMISSION_CLIENT_FACTORY_BASE_TYPE, PROFILE_NAME_WELCOME_PKCE, WELCOME_SERVICE_PKCE_PROFILE, { source: 'admission-profile-factory' });
+registerProfile(ADMISSION_CLIENT_FACTORY_BASE_TYPE, PROFILE_NAME_WELCOME_PKCE_ALIAS, WELCOME_SERVICE_PKCE_PROFILE, { source: 'admission-profile-factory' });
+registerProfile(ADMISSION_CLIENT_FACTORY_BASE_TYPE, PROFILE_NAME_DIRECT, DIRECT_PROFILE, { source: 'admission-profile-factory' });
+registerProfile(ADMISSION_CLIENT_FACTORY_BASE_TYPE, PROFILE_NAME_DIRECT_PKCE, DIRECT_PKCE_PROFILE, { source: 'admission-profile-factory' });
+registerProfile(ADMISSION_CLIENT_FACTORY_BASE_TYPE, PROFILE_NAME_DIRECT_PKCE_ALIAS, DIRECT_PKCE_PROFILE, { source: 'admission-profile-factory' });
+registerProfile(ADMISSION_CLIENT_FACTORY_BASE_TYPE, PROFILE_NAME_DIRECT_HTTP, DIRECT_HTTP_PROFILE, { source: 'admission-profile-factory' });
+registerProfile(ADMISSION_CLIENT_FACTORY_BASE_TYPE, PROFILE_NAME_DIRECT_INPAGE, DIRECT_INPAGE_PROFILE, { source: 'admission-profile-factory' });
+registerProfile(ADMISSION_CLIENT_FACTORY_BASE_TYPE, PROFILE_NAME_DIRECT_INPAGE_ALIAS, DIRECT_INPAGE_PROFILE, { source: 'admission-profile-factory' });
+registerProfile(ADMISSION_CLIENT_FACTORY_BASE_TYPE, PROFILE_NAME_OPEN, OPEN_PROFILE, { source: 'admission-profile-factory' });
+registerProfile(ADMISSION_CLIENT_FACTORY_BASE_TYPE, PROFILE_NAME_NOOP, NOOP_PROFILE, { source: 'admission-profile-factory' });
+registerProfile(ADMISSION_CLIENT_FACTORY_BASE_TYPE, PROFILE_NAME_NONE, NOOP_PROFILE, { source: 'admission-profile-factory' });
 export const FACTORY_META = {
     base: ADMISSION_CLIENT_FACTORY_BASE_TYPE,
     key: 'AdmissionProfile',
@@ -261,13 +260,10 @@ function normalizeConfig(config) {
     return { profile: normalizedProfile };
 }
 function resolveProfileConfig(profileName) {
-    const profile = PROFILE_MAP[profileName];
+    const profile = getProfile(ADMISSION_CLIENT_FACTORY_BASE_TYPE, profileName);
     if (!profile) {
         throw new Error(`Unknown admission profile: ${profileName}`);
     }
-    return deepClone(profile);
-}
-function deepClone(value) {
-    return JSON.parse(JSON.stringify(value));
+    return profile;
 }
 export default AdmissionProfileFactory;

package/dist/esm/naylence/fame/node/node-identity-policy-profile-factory.js

@@ -1,5 +1,6 @@
 import { NODE_IDENTITY_POLICY_FACTORY_BASE_TYPE, NodeIdentityPolicyFactory, } from './node-identity-policy-factory.js';
 import { getLogger } from '../util/logging.js';
+import { getProfile, registerProfile, } from '../profile/profile-registry.js';
 const logger = getLogger('naylence.fame.node.node_identity_policy_profile_factory');
 const PROFILE_NAME_DEFAULT = 'default';
 const PROFILE_NAME_TOKEN_SUBJECT = 'token-subject';
@@ -10,11 +11,9 @@ const DEFAULT_PROFILE = {
 const TOKEN_SUBJECT_PROFILE = {
     type: 'TokenSubjectNodeIdentityPolicy',
 };
-const PROFILE_MAP = {
-    [PROFILE_NAME_DEFAULT]: DEFAULT_PROFILE,
-    [PROFILE_NAME_TOKEN_SUBJECT]: TOKEN_SUBJECT_PROFILE,
-    [PROFILE_NAME_TOKEN_SUBJECT_ALIAS]: TOKEN_SUBJECT_PROFILE,
-};
+registerProfile(NODE_IDENTITY_POLICY_FACTORY_BASE_TYPE, PROFILE_NAME_DEFAULT, DEFAULT_PROFILE, { source: 'node-identity-policy-profile-factory' });
+registerProfile(NODE_IDENTITY_POLICY_FACTORY_BASE_TYPE, PROFILE_NAME_TOKEN_SUBJECT, TOKEN_SUBJECT_PROFILE, { source: 'node-identity-policy-profile-factory' });
+registerProfile(NODE_IDENTITY_POLICY_FACTORY_BASE_TYPE, PROFILE_NAME_TOKEN_SUBJECT_ALIAS, TOKEN_SUBJECT_PROFILE, { source: 'node-identity-policy-profile-factory' });
 export const FACTORY_META = {
     base: NODE_IDENTITY_POLICY_FACTORY_BASE_TYPE,
     key: 'NodeIdentityPolicyProfile',
@@ -51,13 +50,10 @@ function normalizeConfig(config) {
     return { profile: normalizedProfile };
 }
 function resolveProfileConfig(profileName) {
-    const profile = PROFILE_MAP[profileName];
+    const profile = getProfile(NODE_IDENTITY_POLICY_FACTORY_BASE_TYPE, profileName);
     if (!profile) {
         throw new Error(`Unknown node identity policy profile: ${profileName}`);
     }
-    return deepClone(profile);
-}
-function deepClone(value) {
-    return JSON.parse(JSON.stringify(value));
+    return profile;
 }
 export default NodeIdentityPolicyProfileFactory;

package/dist/esm/naylence/fame/profile/index.js

@@ -0,0 +1 @@
+export { registerProfile, getProfile, listProfiles, clearProfiles, } from './profile-registry.js';

package/dist/esm/naylence/fame/profile/profile-registry.js

@@ -0,0 +1,51 @@
+const registry = new Map();
+function normalizeKey(value, label) {
+    if (typeof value !== 'string') {
+        throw new Error(`${label} must be a non-empty string`);
+    }
+    const trimmed = value.trim();
+    if (!trimmed) {
+        throw new Error(`${label} must be a non-empty string`);
+    }
+    return trimmed;
+}
+function cloneConfig(value) {
+    return JSON.parse(JSON.stringify(value));
+}
+export function registerProfile(baseType, name, config, options) {
+    const normalizedBase = normalizeKey(baseType, 'baseType');
+    const normalizedName = normalizeKey(name, 'profile name');
+    if (!config || typeof config !== 'object' || Array.isArray(config)) {
+        throw new Error(`Profile '${normalizedName}' config must be an object`);
+    }
+    const profiles = registry.get(normalizedBase) ?? new Map();
+    if (profiles.has(normalizedName) && options?.allowOverride !== true) {
+        const sourceLabel = options?.source ? ` (${options.source})` : '';
+        throw new Error(`Profile '${normalizedName}' already registered for ${normalizedBase}${sourceLabel}`);
+    }
+    profiles.set(normalizedName, config);
+    registry.set(normalizedBase, profiles);
+}
+export function getProfile(baseType, name) {
+    const normalizedBase = normalizeKey(baseType, 'baseType');
+    const normalizedName = normalizeKey(name, 'profile name');
+    const profiles = registry.get(normalizedBase);
+    if (!profiles) {
+        return null;
+    }
+    const profile = profiles.get(normalizedName);
+    return profile ? cloneConfig(profile) : null;
+}
+export function listProfiles(baseType) {
+    const normalizedBase = normalizeKey(baseType, 'baseType');
+    const profiles = registry.get(normalizedBase);
+    return profiles ? Array.from(profiles.keys()) : [];
+}
+export function clearProfiles(baseType) {
+    if (!baseType) {
+        registry.clear();
+        return;
+    }
+    const normalizedBase = normalizeKey(baseType, 'baseType');
+    registry.delete(normalizedBase);
+}

package/dist/esm/naylence/fame/security/auth/authorization-profile-factory.js

@@ -1,6 +1,7 @@
-import { Expressions, ExpressionEvaluator } from '@naylence/factory';
+import { Expressions, configValidator } from '@naylence/factory';
 import { getLogger } from '../../util/logging.js';
 import { AUTHORIZER_FACTORY_BASE_TYPE, AuthorizerFactory, } from './authorizer-factory.js';
+import { getProfile, registerProfile, } from '../../profile/profile-registry.js';
 const logger = getLogger('naylence.fame.security.auth.authorization_profile_factory');
 export const PROFILE_NAME_DEFAULT = 'jwt';
 export const PROFILE_NAME_OAUTH2 = 'oauth2';
@@ -21,14 +22,13 @@ export const ENV_VAR_JWT_REVERSE_AUTH_AUDIENCE = 'FAME_JWT_REVERSE_AUTH_AUDIENCE
 export const ENV_VAR_HMAC_SECRET = 'FAME_HMAC_SECRET';
 const DEFAULT_REVERSE_AUTH_ISSUER = 'reverse-auth.naylence.ai';
 const DEFAULT_REVERSE_AUTH_AUDIENCE = 'dev.naylence.ai';
-const DEFAULT_VERIFIER_CONFIG = {
-    type: 'JWKSJWTTokenVerifier',
-    jwks_url: Expressions.env(ENV_VAR_JWKS_URL),
-    issuer: Expressions.env(ENV_VAR_JWT_TRUSTED_ISSUER),
-};
 const DEFAULT_PROFILE = {
     type: 'DefaultAuthorizer',
-    verifier: DEFAULT_VERIFIER_CONFIG,
+    verifier: {
+        type: 'JWKSJWTTokenVerifier',
+        jwks_url: Expressions.env(ENV_VAR_JWKS_URL),
+        issuer: Expressions.env(ENV_VAR_JWT_TRUSTED_ISSUER),
+    },
 };
 const OAUTH2_PROFILE = {
     type: 'OAuth2Authorizer',
@@ -73,6 +73,11 @@ const OAUTH2_CALLBACK_PROFILE = {
 const NOOP_PROFILE = {
     type: 'NoopAuthorizer',
 };
+const DEFAULT_VERIFIER_CONFIG = {
+    type: 'JWKSJWTTokenVerifier',
+    jwks_url: Expressions.env(ENV_VAR_JWKS_URL),
+    issuer: Expressions.env(ENV_VAR_JWT_TRUSTED_ISSUER),
+};
 const DEFAULT_POLICY_SOURCE = {
     type: 'LocalFileAuthorizationPolicySource',
     path: Expressions.env(ENV_VAR_AUTH_POLICY_PATH, './auth-policy.yaml'),
@@ -83,14 +88,12 @@ const POLICY_LOCALFILE_PROFILE = {
     verifier: DEFAULT_VERIFIER_CONFIG,
     policySource: DEFAULT_POLICY_SOURCE,
 };
-const PROFILE_MAP = {
-    [PROFILE_NAME_DEFAULT]: DEFAULT_PROFILE,
-    [PROFILE_NAME_OAUTH2]: OAUTH2_PROFILE,
-    [PROFILE_NAME_OAUTH2_GATED]: OAUTH2_GATED_PROFILE,
-    [PROFILE_NAME_OAUTH2_CALLBACK]: OAUTH2_CALLBACK_PROFILE,
-    [PROFILE_NAME_POLICY_LOCALFILE]: POLICY_LOCALFILE_PROFILE,
-    [PROFILE_NAME_NOOP]: NOOP_PROFILE,
-};
+registerProfile(AUTHORIZER_FACTORY_BASE_TYPE, PROFILE_NAME_DEFAULT, DEFAULT_PROFILE, { source: 'authorization-profile-factory' });
+registerProfile(AUTHORIZER_FACTORY_BASE_TYPE, PROFILE_NAME_OAUTH2, OAUTH2_PROFILE, { source: 'authorization-profile-factory' });
+registerProfile(AUTHORIZER_FACTORY_BASE_TYPE, PROFILE_NAME_OAUTH2_GATED, OAUTH2_GATED_PROFILE, { source: 'authorization-profile-factory' });
+registerProfile(AUTHORIZER_FACTORY_BASE_TYPE, PROFILE_NAME_OAUTH2_CALLBACK, OAUTH2_CALLBACK_PROFILE, { source: 'authorization-profile-factory' });
+registerProfile(AUTHORIZER_FACTORY_BASE_TYPE, PROFILE_NAME_POLICY_LOCALFILE, POLICY_LOCALFILE_PROFILE, { source: 'authorization-profile-factory' });
+registerProfile(AUTHORIZER_FACTORY_BASE_TYPE, PROFILE_NAME_NOOP, NOOP_PROFILE, { source: 'authorization-profile-factory' });
 const PROFILE_ALIASES = {
     jwt: PROFILE_NAME_DEFAULT,
     jwks: PROFILE_NAME_DEFAULT,
@@ -124,13 +127,55 @@ export class AuthorizationProfileFactory extends AuthorizerFactory {
         logger.debug('enabling_authorization_profile', {
             profile: normalized.profile,
         });
-        const authorizer = await AuthorizerFactory.createAuthorizer(profileConfig, { factoryArgs });
+        // Extract CreateResourceOptions from factoryArgs - it's typically the last object with env/config/variables
+        const createOptions = extractCreateResourceOptions(factoryArgs);
+        // Only evaluate expressions if we have env/config/variables available
+        let evaluatedConfig = profileConfig;
+        const hasContext = createOptions.env || createOptions.config || createOptions.variables;
+        if (hasContext) {
+            // Build validation context from createOptions to evaluate expressions
+            const validationContext = {
+                env: createOptions.env,
+                config: createOptions.config,
+                variables: createOptions.variables,
+                allowUnknownProperties: true,
+            };
+            // Evaluate expressions in the profile config
+            const validationResult = configValidator.validate(profileConfig, validationContext);
+            if (!validationResult.valid) {
+                const errorMessages = validationResult.errors
+                    .map((error) => `${error.path || 'root'}: ${error.message}`)
+                    .join('; ');
+                throw new Error(`Failed to evaluate authorization profile configuration: ${errorMessages}`);
+            }
+            evaluatedConfig = validationResult.config ?? profileConfig;
+        }
+        const authorizer = await AuthorizerFactory.createAuthorizer(evaluatedConfig, hasContext ? { validate: false } : { factoryArgs } // Pass factoryArgs if no validation was done
+        );
         if (!authorizer) {
             throw new Error(`Failed to create authorizer for profile: ${normalized.profile}`);
         }
         return authorizer;
     }
 }
+/**
+ * Extracts CreateResourceOptions from factoryArgs.
+ * The factory system passes CreateResourceOptions as an object in factoryArgs.
+ */
+function extractCreateResourceOptions(factoryArgs) {
+    // Find the last object argument that looks like CreateResourceOptions
+    for (let i = factoryArgs.length - 1; i >= 0; i--) {
+        const arg = factoryArgs[i];
+        if (arg && typeof arg === 'object' && !Array.isArray(arg)) {
+            const candidate = arg;
+            // Check if it has typical CreateResourceOptions properties
+            if ('env' in candidate || 'config' in candidate || 'variables' in candidate || 'factoryArgs' in candidate) {
+                return candidate;
+            }
+        }
+    }
+    return {};
+}
 function normalizeConfig(config) {
     if (!config) {
         return { profile: PROFILE_NAME_OAUTH2 };
@@ -142,21 +187,13 @@ function normalizeConfig(config) {
     return { profile: canonicalProfile };
 }
 function resolveProfileName(candidate) {
-    let direct = coerceProfileString(candidate.profile);
-    if (direct && ExpressionEvaluator.isExpression(direct)) {
-        const evaluated = ExpressionEvaluator.evaluate(direct);
-        direct = coerceProfileString(evaluated);
-    }
+    const direct = coerceProfileString(candidate.profile);
     if (direct) {
         return direct;
     }
     const legacyKeys = ['profile_name', 'profileName'];
     for (const legacyKey of legacyKeys) {
-        let legacyValue = coerceProfileString(candidate[legacyKey]);
-        if (legacyValue && ExpressionEvaluator.isExpression(legacyValue)) {
-            const evaluated = ExpressionEvaluator.evaluate(legacyValue);
-            legacyValue = coerceProfileString(evaluated);
-        }
+        const legacyValue = coerceProfileString(candidate[legacyKey]);
         if (legacyValue) {
             return legacyValue;
         }
@@ -175,13 +212,10 @@ function canonicalizeProfileName(value) {
     return PROFILE_ALIASES[normalized] ?? normalized;
 }
 function resolveProfileConfig(profileName) {
-    const profile = PROFILE_MAP[profileName];
+    const profile = getProfile(AUTHORIZER_FACTORY_BASE_TYPE, profileName);
     if (!profile) {
         throw new Error(`Unknown authorization profile: ${profileName}`);
     }
-    return deepClone(profile);
-}
-function deepClone(value) {
-    return JSON.parse(JSON.stringify(value));
+    return profile;
 }
 export default AuthorizationProfileFactory;

package/dist/esm/naylence/fame/security/default-security-manager-factory.js

@@ -156,7 +156,7 @@ export class DefaultSecurityManagerFactory extends SecurityManagerFactory {
         }
         if (!authorizer) {
             authorizer =
-                await DefaultSecurityManagerFactory.createAuthorizerFromConfig(config, policy);
+                await DefaultSecurityManagerFactory.createAuthorizerFromConfig(config, policy, createOptions);
         }
         if (authorizer &&
             eventListeners &&
@@ -387,14 +387,14 @@ export class DefaultSecurityManagerFactory extends SecurityManagerFactory {
         }
         return null;
     }
-    static async createAuthorizerFromConfig(config, policy) {
+    static async createAuthorizerFromConfig(config, policy, createOptions) {
         let authorizerConfig = config.authorizer ?? null;
         if (!authorizerConfig) {
             authorizerConfig = config.authorizer_config ?? null;
         }
         if (authorizerConfig &&
             DefaultSecurityManagerFactory.isConfigLike(authorizerConfig)) {
-            return ((await AuthorizerFactory.createAuthorizer(authorizerConfig)) ?? null);
+            return ((await AuthorizerFactory.createAuthorizer(authorizerConfig, createOptions ?? undefined)) ?? null);
         }
         try {
             const requirements = policy.requirements?.();
@@ -410,6 +410,7 @@ export class DefaultSecurityManagerFactory extends SecurityManagerFactory {
             }
             const tokenVerifier = new NoopTokenVerifier();
             return ((await AuthorizerFactory.createAuthorizer(null, {
+                ...createOptions,
                 factoryArgs: [tokenVerifier],
             })) ?? null);
         }

package/dist/esm/naylence/fame/security/node-security-profile-factory.js

@@ -1,6 +1,7 @@
 import { Expressions, configValidator, createResource, } from '@naylence/factory';
 import { SECURITY_MANAGER_FACTORY_BASE_TYPE, SecurityManagerFactory, } from './security-manager-factory.js';
 import { getLogger } from '../util/logging.js';
+import { getProfile, registerProfile, } from '../profile/profile-registry.js';
 const logger = getLogger('naylence.fame.security.node_security_profile_factory');
 export const ENV_VAR_JWT_TRUSTED_ISSUER = 'FAME_JWT_TRUSTED_ISSUER';
 export const ENV_VAR_JWT_ALGORITHM = 'FAME_JWT_ALGORITHM';
@@ -268,14 +269,12 @@ const OPEN_PROFILE = {
         profile: Expressions.env(ENV_VAR_AUTHORIZATION_PROFILE, 'noop'),
     },
 };
-const PROFILE_MAP = {
-    [PROFILE_NAME_OVERLAY]: OVERLAY_PROFILE,
-    [PROFILE_NAME_OVERLAY_CALLBACK]: OVERLAY_CALLBACK_PROFILE,
-    [PROFILE_NAME_STRICT_OVERLAY]: STRICT_OVERLAY_PROFILE,
-    [PROFILE_NAME_GATED]: GATED_PROFILE,
-    [PROFILE_NAME_GATED_CALLBACK]: GATED_CALLBACK_PROFILE,
-    [PROFILE_NAME_OPEN]: OPEN_PROFILE,
-};
+registerProfile(SECURITY_MANAGER_FACTORY_BASE_TYPE, PROFILE_NAME_OVERLAY, OVERLAY_PROFILE, { source: 'node-security-profile-factory' });
+registerProfile(SECURITY_MANAGER_FACTORY_BASE_TYPE, PROFILE_NAME_OVERLAY_CALLBACK, OVERLAY_CALLBACK_PROFILE, { source: 'node-security-profile-factory' });
+registerProfile(SECURITY_MANAGER_FACTORY_BASE_TYPE, PROFILE_NAME_STRICT_OVERLAY, STRICT_OVERLAY_PROFILE, { source: 'node-security-profile-factory' });
+registerProfile(SECURITY_MANAGER_FACTORY_BASE_TYPE, PROFILE_NAME_GATED, GATED_PROFILE, { source: 'node-security-profile-factory' });
+registerProfile(SECURITY_MANAGER_FACTORY_BASE_TYPE, PROFILE_NAME_GATED_CALLBACK, GATED_CALLBACK_PROFILE, { source: 'node-security-profile-factory' });
+registerProfile(SECURITY_MANAGER_FACTORY_BASE_TYPE, PROFILE_NAME_OPEN, OPEN_PROFILE, { source: 'node-security-profile-factory' });
 export const FACTORY_META = {
     base: SECURITY_MANAGER_FACTORY_BASE_TYPE,
     key: 'SecurityProfile',
@@ -382,13 +381,10 @@ function normalizeProfile(config) {
     return value.toLowerCase();
 }
 function resolveProfileConfig(profileName) {
-    const template = PROFILE_MAP[profileName];
+    const template = getProfile(SECURITY_MANAGER_FACTORY_BASE_TYPE, profileName);
     if (!template) {
         throw new Error(`Unknown security profile: ${profileName}`);
     }
-    return deepClone(template);
-}
-function deepClone(value) {
-    return JSON.parse(JSON.stringify(value));
+    return template;
 }
 export default NodeSecurityProfileFactory;

package/dist/esm/naylence/fame/sentinel/load-balancing/load-balancing-profile-factory.js

@@ -1,5 +1,6 @@
 import { createResource } from '@naylence/factory';
 import { getLogger } from '../../util/logging.js';
+import { getProfile, registerProfile, } from '../../profile/profile-registry.js';
 import { LOAD_BALANCING_STRATEGY_FACTORY_BASE, LoadBalancingStrategyFactory, } from './load-balancing-strategy-factory.js';
 const logger = getLogger('naylence.fame.sentinel.load_balancing.load_balancing_profile_factory');
 export const PROFILE_NAME_RANDOM = 'random';
@@ -23,6 +24,11 @@ const STICKY_HRW_PROFILE = {
 const DEVELOPMENT_PROFILE = {
     type: 'RoundRobinLoadBalancingStrategy',
 };
+registerProfile(LOAD_BALANCING_STRATEGY_FACTORY_BASE, PROFILE_NAME_RANDOM, RANDOM_PROFILE, { source: 'load-balancing-profile-factory' });
+registerProfile(LOAD_BALANCING_STRATEGY_FACTORY_BASE, PROFILE_NAME_ROUND_ROBIN, ROUND_ROBIN_PROFILE, { source: 'load-balancing-profile-factory' });
+registerProfile(LOAD_BALANCING_STRATEGY_FACTORY_BASE, PROFILE_NAME_HRW, HRW_PROFILE, { source: 'load-balancing-profile-factory' });
+registerProfile(LOAD_BALANCING_STRATEGY_FACTORY_BASE, PROFILE_NAME_STICKY_HRW, STICKY_HRW_PROFILE, { source: 'load-balancing-profile-factory' });
+registerProfile(LOAD_BALANCING_STRATEGY_FACTORY_BASE, PROFILE_NAME_DEVELOPMENT, DEVELOPMENT_PROFILE, { source: 'load-balancing-profile-factory' });
 export const FACTORY_META = {
     base: LOAD_BALANCING_STRATEGY_FACTORY_BASE,
     key: 'LoadBalancingProfile',
@@ -77,20 +83,11 @@ export class LoadBalancingProfileFactory extends LoadBalancingStrategyFactory {
         return undefined;
     }
     resolveProfile(profile) {
-        switch (profile) {
-            case PROFILE_NAME_RANDOM:
-                return RANDOM_PROFILE;
-            case PROFILE_NAME_ROUND_ROBIN:
-                return ROUND_ROBIN_PROFILE;
-            case PROFILE_NAME_HRW:
-                return HRW_PROFILE;
-            case PROFILE_NAME_STICKY_HRW:
-                return STICKY_HRW_PROFILE;
-            case PROFILE_NAME_DEVELOPMENT:
-                return DEVELOPMENT_PROFILE;
-            default:
-                throw new Error(`Unknown load balancing profile: ${profile}`);
+        const strategyConfig = getProfile(LOAD_BALANCING_STRATEGY_FACTORY_BASE, profile);
+        if (!strategyConfig) {
+            throw new Error(`Unknown load balancing profile: ${profile}`);
         }
+        return strategyConfig;
     }
 }
 export default LoadBalancingProfileFactory;

package/dist/esm/naylence/fame/sentinel/routing-profile-factory.js

@@ -1,5 +1,6 @@
 import { createResource } from '@naylence/factory';
 import { getLogger } from '../util/logging.js';
+import { getProfile, registerProfile, } from '../profile/profile-registry.js';
 import { ROUTING_POLICY_FACTORY_BASE, RoutingPolicyFactory, } from './routing-policy.js';
 const logger = getLogger('naylence.fame.sentinel.routing_profile_factory');
 export const PROFILE_NAME_DEVELOPMENT = 'development';
@@ -34,13 +35,11 @@ const HYBRID_ONLY_PROFILE = {
     type: 'HybridPathRoutingPolicy',
     loadBalancingStrategy: { type: 'HRWLoadBalancingStrategy' },
 };
-const PROFILE_MAP = {
-    [PROFILE_NAME_DEVELOPMENT]: DEVELOPMENT_PROFILE,
-    [PROFILE_NAME_PRODUCTION]: PRODUCTION_PROFILE,
-    [PROFILE_NAME_BASIC]: BASIC_PROFILE,
-    [PROFILE_NAME_CAPABILITY_AWARE]: CAPABILITY_AWARE_PROFILE,
-    [PROFILE_NAME_HYBRID_ONLY]: HYBRID_ONLY_PROFILE,
-};
+registerProfile(ROUTING_POLICY_FACTORY_BASE, PROFILE_NAME_DEVELOPMENT, DEVELOPMENT_PROFILE, { source: 'routing-profile-factory' });
+registerProfile(ROUTING_POLICY_FACTORY_BASE, PROFILE_NAME_PRODUCTION, PRODUCTION_PROFILE, { source: 'routing-profile-factory' });
+registerProfile(ROUTING_POLICY_FACTORY_BASE, PROFILE_NAME_BASIC, BASIC_PROFILE, { source: 'routing-profile-factory' });
+registerProfile(ROUTING_POLICY_FACTORY_BASE, PROFILE_NAME_CAPABILITY_AWARE, CAPABILITY_AWARE_PROFILE, { source: 'routing-profile-factory' });
+registerProfile(ROUTING_POLICY_FACTORY_BASE, PROFILE_NAME_HYBRID_ONLY, HYBRID_ONLY_PROFILE, { source: 'routing-profile-factory' });
 export const FACTORY_META = {
     base: ROUTING_POLICY_FACTORY_BASE,
     key: 'RoutingProfile',
@@ -95,7 +94,7 @@ export class RoutingProfileFactory extends RoutingPolicyFactory {
         return undefined;
     }
     getProfileConfig(profile) {
-        const routingConfig = PROFILE_MAP[profile];
+        const routingConfig = getProfile(ROUTING_POLICY_FACTORY_BASE, profile);
         if (!routingConfig) {
             throw new Error('Unknown routing profile');
         }

package/dist/esm/naylence/fame/storage/storage-profile-factory.js

@@ -1,6 +1,7 @@
 import { z } from 'zod';
 import { createResource, Expressions, } from '@naylence/factory';
 import { StorageProviderFactory, registerStorageProviderFactory, STORAGE_PROVIDER_FACTORY_BASE_TYPE, } from './storage-provider-factory.js';
+import { getProfile, listProfiles, registerProfile, } from '../profile/profile-registry.js';
 const ENV_VAR_STORAGE_DB_DIRECTORY = 'FAME_STORAGE_DB_DIRECTORY';
 const ENV_VAR_STORAGE_MASTER_KEY = 'FAME_STORAGE_MASTER_KEY';
 const ENV_VAR_STORAGE_ENCRYPTED = 'FAME_STORAGE_ENCRYPTED';
@@ -37,18 +38,13 @@ const ENCRYPTED_SQLITE_PROFILE_CONFIG = {
     masterKey: Expressions.env(ENV_VAR_STORAGE_MASTER_KEY),
     isCached: true,
 };
-// Base profile map with browser-safe options
-const BASE_PROFILE_MAP = {
-    [PROFILE_NAME_MEMORY]: MEMORY_PROFILE_CONFIG,
-    [PROFILE_NAME_INDEXEDDB]: INDEXEDDB_PROFILE_CONFIG,
-};
-// Extended profile map - can be augmented by Node.js environment
-const PROFILE_MAP = {
-    ...BASE_PROFILE_MAP,
-};
+registerProfile(STORAGE_PROVIDER_FACTORY_BASE_TYPE, PROFILE_NAME_MEMORY, MEMORY_PROFILE_CONFIG, { source: 'storage-profile-factory' });
+registerProfile(STORAGE_PROVIDER_FACTORY_BASE_TYPE, PROFILE_NAME_INDEXEDDB, INDEXEDDB_PROFILE_CONFIG, { source: 'storage-profile-factory' });
 // Function to register additional profiles (used by Node.js build)
 export function registerStorageProfile(name, config) {
-    PROFILE_MAP[name] = config;
+    registerProfile(STORAGE_PROVIDER_FACTORY_BASE_TYPE, name, config, {
+        source: 'storage-profile-factory',
+    });
 }
 // Export the SQLite configs so they can be registered from node-index.ts
 export const SQLITE_PROFILES = {
@@ -67,9 +63,9 @@ export class StorageProfileFactory extends StorageProviderFactory {
             type: 'StorageProfile',
         });
         const profileName = (parsed.profile ?? PROFILE_NAME_MEMORY).toLowerCase();
-        const profileConfig = PROFILE_MAP[profileName];
+        const profileConfig = getProfile(STORAGE_PROVIDER_FACTORY_BASE_TYPE, profileName);
         if (!profileConfig) {
-            throw new Error(`Unknown storage profile '${profileName}'. Supported profiles: ${Object.keys(PROFILE_MAP).join(', ')}`);
+            throw new Error(`Unknown storage profile '${profileName}'. Supported profiles: ${listProfiles(STORAGE_PROVIDER_FACTORY_BASE_TYPE).join(', ')}`);
         }
         const createOptions = {
             ...options,

package/dist/esm/naylence/fame/telemetry/trace-emitter-profile-factory.js

@@ -1,6 +1,7 @@
 import { Expressions } from '@naylence/factory';
 import { getLogger } from '../util/logging.js';
 import { TRACE_EMITTER_FACTORY_BASE_TYPE, TraceEmitterFactory, } from './trace-emitter-factory.js';
+import { getProfile, registerProfile, } from '../profile/profile-registry.js';
 const logger = getLogger('naylence.fame.telemetry.trace_emitter_profile_factory');
 export const PROFILE_NAME_NOOP = 'noop';
 export const PROFILE_NAME_OPEN_TELEMETRY = 'open-telemetry';
@@ -13,10 +14,8 @@ const OPEN_TELEMETRY_PROFILE = {
     serviceName: Expressions.env(ENV_VAR_TELEMETRY_SERVICE_NAME, 'naylence-service'),
     headers: {},
 };
-const PROFILE_MAP = {
-    [PROFILE_NAME_NOOP]: NOOP_PROFILE,
-    [PROFILE_NAME_OPEN_TELEMETRY]: OPEN_TELEMETRY_PROFILE,
-};
+registerProfile(TRACE_EMITTER_FACTORY_BASE_TYPE, PROFILE_NAME_NOOP, NOOP_PROFILE, { source: 'trace-emitter-profile-factory' });
+registerProfile(TRACE_EMITTER_FACTORY_BASE_TYPE, PROFILE_NAME_OPEN_TELEMETRY, OPEN_TELEMETRY_PROFILE, { source: 'trace-emitter-profile-factory' });
 export const FACTORY_META = {
     base: TRACE_EMITTER_FACTORY_BASE_TYPE,
     key: 'TraceEmitterProfile',
@@ -85,13 +84,10 @@ function canonicalizeProfileName(value) {
     return PROFILE_ALIASES[normalized] ?? normalized;
 }
 function resolveProfileConfig(profileName) {
-    const profile = PROFILE_MAP[profileName];
+    const profile = getProfile(TRACE_EMITTER_FACTORY_BASE_TYPE, profileName);
     if (!profile) {
         throw new Error(`Unknown trace emitter profile: ${profileName}`);
     }
-    return deepClone(profile);
-}
-function deepClone(value) {
-    return JSON.parse(JSON.stringify(value));
+    return profile;
 }
 export default TraceEmitterProfileFactory;

package/dist/esm/runtime-isomorphic.js

@@ -14,6 +14,7 @@ export { VERSION } from './version.js';
 export * from './naylence/fame/errors/index.js';
 export * from './naylence/fame/util/index.js';
 export * from './naylence/fame/channel/index.js';
+export * from './naylence/fame/profile/index.js';
 // Storage providers that are safe for browsers (in-memory + IndexedDB)
 export * from './naylence/fame/storage/index.js';
 // Node lifecycle and context (Fame "Node" abstraction, not Node.js)

package/dist/esm/version.js

@@ -1,7 +1,7 @@
 // This file is auto-generated during build - do not edit manually
-// Generated from package.json version: 0.4.5
+// Generated from package.json version: 0.4.7
 /**
  * The package version, injected at build time.
  * @internal
  */
-export const VERSION = '0.4.5';
+export const VERSION = '0.4.7';