@nice-code/action 0.24.0 → 0.25.0

package/build/advanced/index.d.cts

@@ -1,52 +1,6 @@
-import { $t as IActionTransportInitialized, An as TransportConnection, Bn as IHandshakeEncryptionKeyMaterial, Bt as IActionWireFormat, Cn as TSendActionDataMethod, Ct as createHibernatableWsServerAdapter, Dn as TTransportStatusInfo, Dt as createConnectionStateStore, En as TTransportInitializationFinishedInfo, Et as IConnectionStateStoreOptions, Fn as EHandshakeMessageType, Hn as IServerHandshakeConfig, In as ESecurityLevel, Jn as decodeHandshakeMessage, Jt as createConnectorHandler, Kn as createServerHandshake, Ln as IClientHandshakeConfig, Mn as Transport, Nn as ISecureAcceptorHandlerOptions, O as TActionPayload_Any_JsonObject, On as TTransportStatusInfo_GetTransport_Output, Pn as createSecureAcceptorHandler, Qt as IActionTransportDef, Rt as IBinaryWireSessionOptions, Sn as TOnResolveIncomingResponseJson, St as IHibernatableWsServerAdapterOptions, Tn as TTransportCache, Tt as IConnectionAttachment, Un as THandshakeMessage, Ut as IExchangeCarrier, Vn as IHandshakeResult, Vt as IDuplexCarrier, Wn as createClientHandshake, Xt as ETransportShape, Yn as encodeHandshakeMessage, Yt as PeerLinkHandler, Zt as ETransportStatus, _n as TOnResolveAnyIncomingActionData, a as TAcceptorConnectionCaseFn, an as ITransportDispatchAction, bn as TOnResolveIncomingRequestJson, c as createAcceptorHandler, cn as ITransportRouteClientParams, dn as ITransportStatusInfo_Failed, en as IActionTransportReady, fn as ITransportStatusInfo_Initializing, gn as TGetTransportFn, hn as IUpdateActionRunConfig_Output, hr as IRuntimeCoordinate, i as TAcceptorCaseFn, in as ISecureClientConfig, jn as ITransportConnectionContext, kn as TUpdateActionRunConfig, l as ActionDomain, ln as ITransportRouteInfo, mn as ITransportStatusInfo_Unsupported, n as IAcceptorConnectionBinding, nn as IActionTransportReadyData_Methods, o as TActionChannelFormatMessage, on as ITransportMethod_SendActionData_Input, pn as ITransportStatusInfo_Ready, qt as ConnectorHandler, r as IAcceptorHandlerOptions, rn as IActionTransportResolvers, s as TActionConnectionEncoding, sn as ITransportRouteActionParams, t as AcceptorHandler, tn as IActionTransportReadyData_Base, u as ActionRuntime, un as ITransportStatusInfo_Base, vn as TOnResolveAnyIncomingActionData_Json, wn as TSendReturnDataMethod, wt as ConnectionStateStore, xn as TOnResolveIncomingResponse, xt as IDuplexConnectionRouter, yn as TOnResolveIncomingRequest, zn as IClientVerifyKeyResolver, zt as createBinaryWireSessionFactory } from "../AcceptorHandler-CxD0c1BE.cjs";
+import { An as TOnResolveIncomingResponseJson, At as IHibernatableWsServerAdapterOptions, B as decodeExchangeReply, Bn as Transport, Cn as IUpdateActionRunConfig_Output, Dn as TOnResolveIncomingRequest, En as TOnResolveAnyIncomingActionData_Json, Fn as TTransportStatusInfo, Ft as createConnectionStateStore, G as IExchangeAcceptorSecurity, Gn as IClientHandshakeConfig, H as encodeExchange, Hn as createSecureAcceptorHandler, In as TTransportStatusInfo_GetTransport_Output, Jn as IHandshakeEncryptionKeyMaterial, Jt as IActionWireFormat, Kt as IBinaryWireSessionOptions, Ln as TUpdateActionRunConfig, Mn as TSendReturnDataMethod, Mt as ConnectionStateStore, Nn as TTransportCache, Nt as IConnectionAttachment, On as TOnResolveIncomingRequestJson, Pn as TTransportInitializationFinishedInfo, Pt as IConnectionStateStoreOptions, Qn as createClientHandshake, R as TExchangeReply, Rn as TransportConnection, Sn as ITransportStatusInfo_Unsupported, Tn as TOnResolveAnyIncomingActionData, U as ExchangeAcceptor, Un as EHandshakeMessageType, V as decodeExchangeRequest, Vn as ISecureAcceptorHandlerOptions, W as IExchangeAcceptorConfig, Xn as IServerHandshakeConfig, Yn as IHandshakeResult, Yt as IDuplexCarrier, Zn as THandshakeMessage, Zt as IExchangeCarrier, _n as ITransportRouteInfo, a as TAcceptorConnectionCaseFn, an as ETransportStatus, bn as ITransportStatusInfo_Initializing, c as createAcceptorHandler, cn as IActionTransportReady, dn as IActionTransportResolvers, er as createServerHandshake, fn as ISecureClientConfig, gn as ITransportRouteClientParams, hn as ITransportRouteActionParams, i as TAcceptorCaseFn, in as ETransportShape, jn as TSendActionDataMethod, jt as createHibernatableWsServerAdapter, kn as TOnResolveIncomingResponse, kt as IDuplexConnectionRouter, l as ActionDomain, ln as IActionTransportReadyData_Base, mn as ITransportMethod_SendActionData_Input, n as IAcceptorConnectionBinding, nn as createConnectorHandler, nr as decodeHandshakeMessage, o as TActionChannelFormatMessage, on as IActionTransportDef, pn as ITransportDispatchAction, qt as createBinaryWireSessionFactory, r as IAcceptorHandlerOptions, rn as PeerLinkHandler, rr as encodeHandshakeMessage, s as TActionConnectionEncoding, sn as IActionTransportInitialized, t as AcceptorHandler, tn as ConnectorHandler, u as ActionRuntime, un as IActionTransportReadyData_Methods, vn as ITransportStatusInfo_Base, wn as TGetTransportFn, xn as ITransportStatusInfo_Ready, yn as ITransportStatusInfo_Failed, z as TExchangeRequest, zn as ITransportConnectionContext } from "../AcceptorHandler-CxPfZtIl.cjs";
 import { ClientCryptoKeyLink, TTypeAndId } from "@nice-code/util";
 
-//#region src/ActionRuntime/Transport/SecureSession/exchangeAcceptor.d.ts
-/** Acceptor secure config for the exchange (HTTP) endpoint — same identity an `AcceptorHandler` uses. */
-interface IExchangeAcceptorSecurity {
-  /** This acceptor's crypto identity (verify + exchange key pairs, optionally persisted). */
-  link: ClientCryptoKeyLink;
-  /** This acceptor's coordinate — its identity to clients during the handshake. */
-  localCoordinate: IRuntimeCoordinate;
-  /** Wire dictionary version; the handshake rejects a client on a mismatch. */
-  dictionaryVersion: string;
-  /** Accepted level(s) — a single level is strict, an array is a negotiable allowed set. */
-  securityLevel: ESecurityLevel | readonly ESecurityLevel[];
-  /** Trust decision for a client's verify key (defaults to in-memory TOFU inside the handshake). */
-  verifyKeyResolver?: IClientVerifyKeyResolver;
-}
-interface IExchangeAcceptorConfig {
-  security: IExchangeAcceptorSecurity;
-  /** The runtime that executes an inbound action wire and produces its result. */
-  runtime: ActionRuntime;
-}
-/**
- * Acceptor (accept-in) side of the secure exchange protocol — the HTTP counterpart to
- * {@link AcceptorSecureSession}. Each POST body is one {@link decodeExchangeRequest} envelope; the
- * acceptor drives the server handshake over the two `hs` POSTs (correlated by `hsid`, since stateless
- * requests can't rely on channel ordering), mints a session **token** on accept, and on every later `act`
- * POST resolves the session by token, decrypts the body (at `encrypted`), routes it through the runtime,
- * and returns the (encrypted) result inline as the reply.
- *
- * Sessions and in-flight handshakes are held in memory — fine for a single-instance server. (Surviving a
- * Durable-Object eviction would persist each token's `keyMaterial` and re-derive the key on a miss, the
- * same primitive `AcceptorSecureSession.rehydrate` uses; left as a follow-up.)
- */
-declare class ExchangeAcceptor {
-  private readonly _security;
-  private readonly _runtime;
-  private readonly _allowedLevels;
-  private readonly _noneAllowed;
-  private readonly _pendingHandshakes;
-  private readonly _sessions;
-  constructor(config: IExchangeAcceptorConfig);
-  /** Process one POST body (an exchange envelope), returning the reply body to send back. */
-  handlePost(body: string): Promise<string>;
-  private _handleHandshake;
-  private _handleAction;
-  private _err;
-}
-//#endregion
 //#region src/ActionRuntime/Handler/PeerLink/Acceptor/createActionFetchHandler.d.ts
 interface IActionFetchHandlerOptions {
   /**
@@ -291,54 +245,5 @@ declare class LinkTransport extends Transport<ETransportShape.duplex> {
   getRouteInfo(input: ITransportRouteActionParams): ITransportRouteInfo;
 }
 //#endregion
-//#region src/ActionRuntime/Transport/SecureSession/exchangeProtocol.d.ts
-/**
- * The application-level envelope for secure action traffic over an {@link IExchangeCarrier} (HTTP). An
- * exchange carrier only moves one request frame → one reply frame with no unsolicited push, so the
- * handshake and the per-action token + crypto all ride in this envelope (a JSON string body) rather than
- * on a persistent channel. The three security levels share it:
- *
- * - `none` — no handshake, no token: an `act` envelope carries the plaintext wire both ways.
- * - `authenticated` — a one-time handshake yields a session `token`; each later `act` carries it +
- *   the plaintext wire.
- * - `encrypted` — same, but the wire is AES-GCM ciphertext, base64 in the `c` field.
- *
- * The handshake runs as two `hs` exchanges (hello→welcome, prove→accept) correlated by a client-chosen
- * `hsid`, since stateless requests can't rely on channel ordering. The `accept` reply carries the token.
- */
-type TWireJson = TActionPayload_Any_JsonObject<any, any>;
-/** Connector → acceptor request envelope. */
-type TExchangeRequest = {
-  k: "hs";
-  hsid: string;
-  m: string;
-} | {
-  k: "act";
-  t?: string;
-  w: TWireJson;
-} | {
-  k: "act";
-  t?: string;
-  c: string;
-};
-/** Acceptor → connector reply envelope. */
-type TExchangeReply = {
-  k: "hs";
-  m: string;
-  t?: string;
-} | {
-  k: "act";
-  w: TWireJson;
-} | {
-  k: "act";
-  c: string;
-} | {
-  k: "err";
-  message: string;
-};
-declare function encodeExchange(envelope: TExchangeRequest | TExchangeReply): string;
-declare function decodeExchangeRequest(raw: string): TExchangeRequest | undefined;
-declare function decodeExchangeReply(raw: string): TExchangeReply | undefined;
-//#endregion
 export { AcceptorHandler, ConnectionStateStore, ConnectorHandler, EHandshakeMessageType, ETransportShape, ETransportStatus, ExchangeAcceptor, ExchangeTransport, type IAcceptorConnectionBinding, type IAcceptorHandlerOptions, type IActionFetchHandlerOptions, type IActionFrameCrypto, type IActionFrameCryptoConfig, IActionTransportDef, IActionTransportInitialized, IActionTransportReady, IActionTransportReadyData_Base, type IActionTransportReadyData_Exchange, type IActionTransportReadyData_Link, IActionTransportReadyData_Methods, IActionTransportResolvers, type IActionWireFormat, type IBinaryWireSessionOptions, type IClientHandshakeConfig, type IConnectionAttachment, type IConnectionStateStoreOptions, type IDuplexConnectionRouter, type IExchangeAcceptorConfig, type IExchangeAcceptorSecurity, type IExchangeTransportOptions, type IHandshakeEncryptionKeyMaterial, type IHandshakeResult, type IHibernatableWsServerAdapterOptions, type ILinkTransportOptions, type ISecureAcceptorHandlerOptions, ISecureClientConfig, type IServerHandshakeConfig, type ITransportConnectionContext, ITransportDispatchAction, ITransportMethod_SendActionData_Input, ITransportRouteActionParams, ITransportRouteClientParams, ITransportRouteInfo, ITransportStatusInfo_Base, ITransportStatusInfo_Failed, ITransportStatusInfo_Initializing, ITransportStatusInfo_Ready, ITransportStatusInfo_Unsupported, IUpdateActionRunConfig_Output, LinkTransport, PeerLinkHandler, type TAcceptorCaseFn, type TAcceptorConnectionCaseFn, type TActionChannelFormatMessage, type TActionConnectionEncoding, type TExchangeReply, type TExchangeRequest, TGetTransportFn, type THandshakeMessage, type TLinkFormatMessage, TOnResolveAnyIncomingActionData, TOnResolveAnyIncomingActionData_Json, TOnResolveIncomingRequest, TOnResolveIncomingRequestJson, TOnResolveIncomingResponse, TOnResolveIncomingResponseJson, TSendActionDataMethod, TSendReturnDataMethod, TTransportCache, TTransportInitializationFinishedInfo, TTransportStatusInfo, TTransportStatusInfo_GetTransport_Output, TUpdateActionRunConfig, Transport, createAcceptorHandler, createActionFetchHandler, createActionFrameCrypto, createBinaryWireAdapter, createBinaryWireSessionFactory, createClientHandshake, createConnectionStateStore, createConnectorHandler, createHibernatableWsServerAdapter, createSecureAcceptorHandler, createServerHandshake, decodeExchangeReply, decodeExchangeRequest, decodeHandshakeMessage, encodeExchange, encodeHandshakeMessage };
 //# sourceMappingURL=index.d.cts.map

package/build/advanced/index.d.mts

@@ -1,52 +1,6 @@
-import { $t as IActionTransportInitialized, An as TransportConnection, Bn as IHandshakeEncryptionKeyMaterial, Bt as IActionWireFormat, Cn as TSendActionDataMethod, Ct as createHibernatableWsServerAdapter, Dn as TTransportStatusInfo, Dt as createConnectionStateStore, En as TTransportInitializationFinishedInfo, Et as IConnectionStateStoreOptions, Fn as EHandshakeMessageType, Hn as IServerHandshakeConfig, In as ESecurityLevel, Jn as decodeHandshakeMessage, Jt as createConnectorHandler, Kn as createServerHandshake, Ln as IClientHandshakeConfig, Mn as Transport, Nn as ISecureAcceptorHandlerOptions, O as TActionPayload_Any_JsonObject, On as TTransportStatusInfo_GetTransport_Output, Pn as createSecureAcceptorHandler, Qt as IActionTransportDef, Rt as IBinaryWireSessionOptions, Sn as TOnResolveIncomingResponseJson, St as IHibernatableWsServerAdapterOptions, Tn as TTransportCache, Tt as IConnectionAttachment, Un as THandshakeMessage, Ut as IExchangeCarrier, Vn as IHandshakeResult, Vt as IDuplexCarrier, Wn as createClientHandshake, Xt as ETransportShape, Yn as encodeHandshakeMessage, Yt as PeerLinkHandler, Zt as ETransportStatus, _n as TOnResolveAnyIncomingActionData, a as TAcceptorConnectionCaseFn, an as ITransportDispatchAction, bn as TOnResolveIncomingRequestJson, c as createAcceptorHandler, cn as ITransportRouteClientParams, dn as ITransportStatusInfo_Failed, en as IActionTransportReady, fn as ITransportStatusInfo_Initializing, gn as TGetTransportFn, hn as IUpdateActionRunConfig_Output, hr as IRuntimeCoordinate, i as TAcceptorCaseFn, in as ISecureClientConfig, jn as ITransportConnectionContext, kn as TUpdateActionRunConfig, l as ActionDomain, ln as ITransportRouteInfo, mn as ITransportStatusInfo_Unsupported, n as IAcceptorConnectionBinding, nn as IActionTransportReadyData_Methods, o as TActionChannelFormatMessage, on as ITransportMethod_SendActionData_Input, pn as ITransportStatusInfo_Ready, qt as ConnectorHandler, r as IAcceptorHandlerOptions, rn as IActionTransportResolvers, s as TActionConnectionEncoding, sn as ITransportRouteActionParams, t as AcceptorHandler, tn as IActionTransportReadyData_Base, u as ActionRuntime, un as ITransportStatusInfo_Base, vn as TOnResolveAnyIncomingActionData_Json, wn as TSendReturnDataMethod, wt as ConnectionStateStore, xn as TOnResolveIncomingResponse, xt as IDuplexConnectionRouter, yn as TOnResolveIncomingRequest, zn as IClientVerifyKeyResolver, zt as createBinaryWireSessionFactory } from "../AcceptorHandler-11-QMdx2.mjs";
+import { An as TOnResolveIncomingResponseJson, At as IHibernatableWsServerAdapterOptions, B as decodeExchangeReply, Bn as Transport, Cn as IUpdateActionRunConfig_Output, Dn as TOnResolveIncomingRequest, En as TOnResolveAnyIncomingActionData_Json, Fn as TTransportStatusInfo, Ft as createConnectionStateStore, G as IExchangeAcceptorSecurity, Gn as IClientHandshakeConfig, H as encodeExchange, Hn as createSecureAcceptorHandler, In as TTransportStatusInfo_GetTransport_Output, Jn as IHandshakeEncryptionKeyMaterial, Jt as IActionWireFormat, Kt as IBinaryWireSessionOptions, Ln as TUpdateActionRunConfig, Mn as TSendReturnDataMethod, Mt as ConnectionStateStore, Nn as TTransportCache, Nt as IConnectionAttachment, On as TOnResolveIncomingRequestJson, Pn as TTransportInitializationFinishedInfo, Pt as IConnectionStateStoreOptions, Qn as createClientHandshake, R as TExchangeReply, Rn as TransportConnection, Sn as ITransportStatusInfo_Unsupported, Tn as TOnResolveAnyIncomingActionData, U as ExchangeAcceptor, Un as EHandshakeMessageType, V as decodeExchangeRequest, Vn as ISecureAcceptorHandlerOptions, W as IExchangeAcceptorConfig, Xn as IServerHandshakeConfig, Yn as IHandshakeResult, Yt as IDuplexCarrier, Zn as THandshakeMessage, Zt as IExchangeCarrier, _n as ITransportRouteInfo, a as TAcceptorConnectionCaseFn, an as ETransportStatus, bn as ITransportStatusInfo_Initializing, c as createAcceptorHandler, cn as IActionTransportReady, dn as IActionTransportResolvers, er as createServerHandshake, fn as ISecureClientConfig, gn as ITransportRouteClientParams, hn as ITransportRouteActionParams, i as TAcceptorCaseFn, in as ETransportShape, jn as TSendActionDataMethod, jt as createHibernatableWsServerAdapter, kn as TOnResolveIncomingResponse, kt as IDuplexConnectionRouter, l as ActionDomain, ln as IActionTransportReadyData_Base, mn as ITransportMethod_SendActionData_Input, n as IAcceptorConnectionBinding, nn as createConnectorHandler, nr as decodeHandshakeMessage, o as TActionChannelFormatMessage, on as IActionTransportDef, pn as ITransportDispatchAction, qt as createBinaryWireSessionFactory, r as IAcceptorHandlerOptions, rn as PeerLinkHandler, rr as encodeHandshakeMessage, s as TActionConnectionEncoding, sn as IActionTransportInitialized, t as AcceptorHandler, tn as ConnectorHandler, u as ActionRuntime, un as IActionTransportReadyData_Methods, vn as ITransportStatusInfo_Base, wn as TGetTransportFn, xn as ITransportStatusInfo_Ready, yn as ITransportStatusInfo_Failed, z as TExchangeRequest, zn as ITransportConnectionContext } from "../AcceptorHandler-BizUtq4u.mjs";
 import { ClientCryptoKeyLink, TTypeAndId } from "@nice-code/util";
 
-//#region src/ActionRuntime/Transport/SecureSession/exchangeAcceptor.d.ts
-/** Acceptor secure config for the exchange (HTTP) endpoint — same identity an `AcceptorHandler` uses. */
-interface IExchangeAcceptorSecurity {
-  /** This acceptor's crypto identity (verify + exchange key pairs, optionally persisted). */
-  link: ClientCryptoKeyLink;
-  /** This acceptor's coordinate — its identity to clients during the handshake. */
-  localCoordinate: IRuntimeCoordinate;
-  /** Wire dictionary version; the handshake rejects a client on a mismatch. */
-  dictionaryVersion: string;
-  /** Accepted level(s) — a single level is strict, an array is a negotiable allowed set. */
-  securityLevel: ESecurityLevel | readonly ESecurityLevel[];
-  /** Trust decision for a client's verify key (defaults to in-memory TOFU inside the handshake). */
-  verifyKeyResolver?: IClientVerifyKeyResolver;
-}
-interface IExchangeAcceptorConfig {
-  security: IExchangeAcceptorSecurity;
-  /** The runtime that executes an inbound action wire and produces its result. */
-  runtime: ActionRuntime;
-}
-/**
- * Acceptor (accept-in) side of the secure exchange protocol — the HTTP counterpart to
- * {@link AcceptorSecureSession}. Each POST body is one {@link decodeExchangeRequest} envelope; the
- * acceptor drives the server handshake over the two `hs` POSTs (correlated by `hsid`, since stateless
- * requests can't rely on channel ordering), mints a session **token** on accept, and on every later `act`
- * POST resolves the session by token, decrypts the body (at `encrypted`), routes it through the runtime,
- * and returns the (encrypted) result inline as the reply.
- *
- * Sessions and in-flight handshakes are held in memory — fine for a single-instance server. (Surviving a
- * Durable-Object eviction would persist each token's `keyMaterial` and re-derive the key on a miss, the
- * same primitive `AcceptorSecureSession.rehydrate` uses; left as a follow-up.)
- */
-declare class ExchangeAcceptor {
-  private readonly _security;
-  private readonly _runtime;
-  private readonly _allowedLevels;
-  private readonly _noneAllowed;
-  private readonly _pendingHandshakes;
-  private readonly _sessions;
-  constructor(config: IExchangeAcceptorConfig);
-  /** Process one POST body (an exchange envelope), returning the reply body to send back. */
-  handlePost(body: string): Promise<string>;
-  private _handleHandshake;
-  private _handleAction;
-  private _err;
-}
-//#endregion
 //#region src/ActionRuntime/Handler/PeerLink/Acceptor/createActionFetchHandler.d.ts
 interface IActionFetchHandlerOptions {
   /**
@@ -291,54 +245,5 @@ declare class LinkTransport extends Transport<ETransportShape.duplex> {
   getRouteInfo(input: ITransportRouteActionParams): ITransportRouteInfo;
 }
 //#endregion
-//#region src/ActionRuntime/Transport/SecureSession/exchangeProtocol.d.ts
-/**
- * The application-level envelope for secure action traffic over an {@link IExchangeCarrier} (HTTP). An
- * exchange carrier only moves one request frame → one reply frame with no unsolicited push, so the
- * handshake and the per-action token + crypto all ride in this envelope (a JSON string body) rather than
- * on a persistent channel. The three security levels share it:
- *
- * - `none` — no handshake, no token: an `act` envelope carries the plaintext wire both ways.
- * - `authenticated` — a one-time handshake yields a session `token`; each later `act` carries it +
- *   the plaintext wire.
- * - `encrypted` — same, but the wire is AES-GCM ciphertext, base64 in the `c` field.
- *
- * The handshake runs as two `hs` exchanges (hello→welcome, prove→accept) correlated by a client-chosen
- * `hsid`, since stateless requests can't rely on channel ordering. The `accept` reply carries the token.
- */
-type TWireJson = TActionPayload_Any_JsonObject<any, any>;
-/** Connector → acceptor request envelope. */
-type TExchangeRequest = {
-  k: "hs";
-  hsid: string;
-  m: string;
-} | {
-  k: "act";
-  t?: string;
-  w: TWireJson;
-} | {
-  k: "act";
-  t?: string;
-  c: string;
-};
-/** Acceptor → connector reply envelope. */
-type TExchangeReply = {
-  k: "hs";
-  m: string;
-  t?: string;
-} | {
-  k: "act";
-  w: TWireJson;
-} | {
-  k: "act";
-  c: string;
-} | {
-  k: "err";
-  message: string;
-};
-declare function encodeExchange(envelope: TExchangeRequest | TExchangeReply): string;
-declare function decodeExchangeRequest(raw: string): TExchangeRequest | undefined;
-declare function decodeExchangeReply(raw: string): TExchangeReply | undefined;
-//#endregion
 export { AcceptorHandler, ConnectionStateStore, ConnectorHandler, EHandshakeMessageType, ETransportShape, ETransportStatus, ExchangeAcceptor, ExchangeTransport, type IAcceptorConnectionBinding, type IAcceptorHandlerOptions, type IActionFetchHandlerOptions, type IActionFrameCrypto, type IActionFrameCryptoConfig, IActionTransportDef, IActionTransportInitialized, IActionTransportReady, IActionTransportReadyData_Base, type IActionTransportReadyData_Exchange, type IActionTransportReadyData_Link, IActionTransportReadyData_Methods, IActionTransportResolvers, type IActionWireFormat, type IBinaryWireSessionOptions, type IClientHandshakeConfig, type IConnectionAttachment, type IConnectionStateStoreOptions, type IDuplexConnectionRouter, type IExchangeAcceptorConfig, type IExchangeAcceptorSecurity, type IExchangeTransportOptions, type IHandshakeEncryptionKeyMaterial, type IHandshakeResult, type IHibernatableWsServerAdapterOptions, type ILinkTransportOptions, type ISecureAcceptorHandlerOptions, ISecureClientConfig, type IServerHandshakeConfig, type ITransportConnectionContext, ITransportDispatchAction, ITransportMethod_SendActionData_Input, ITransportRouteActionParams, ITransportRouteClientParams, ITransportRouteInfo, ITransportStatusInfo_Base, ITransportStatusInfo_Failed, ITransportStatusInfo_Initializing, ITransportStatusInfo_Ready, ITransportStatusInfo_Unsupported, IUpdateActionRunConfig_Output, LinkTransport, PeerLinkHandler, type TAcceptorCaseFn, type TAcceptorConnectionCaseFn, type TActionChannelFormatMessage, type TActionConnectionEncoding, type TExchangeReply, type TExchangeRequest, TGetTransportFn, type THandshakeMessage, type TLinkFormatMessage, TOnResolveAnyIncomingActionData, TOnResolveAnyIncomingActionData_Json, TOnResolveIncomingRequest, TOnResolveIncomingRequestJson, TOnResolveIncomingResponse, TOnResolveIncomingResponseJson, TSendActionDataMethod, TSendReturnDataMethod, TTransportCache, TTransportInitializationFinishedInfo, TTransportStatusInfo, TTransportStatusInfo_GetTransport_Output, TUpdateActionRunConfig, Transport, createAcceptorHandler, createActionFetchHandler, createActionFrameCrypto, createBinaryWireAdapter, createBinaryWireSessionFactory, createClientHandshake, createConnectionStateStore, createConnectorHandler, createHibernatableWsServerAdapter, createSecureAcceptorHandler, createServerHandshake, decodeExchangeReply, decodeExchangeRequest, decodeHandshakeMessage, encodeExchange, encodeHandshakeMessage };
 //# sourceMappingURL=index.d.mts.map

package/build/advanced/index.mjs

@@ -1,4 +1,4 @@
-import { A as encodeHandshakeMessage, C as EHandshakeMessageType, D as createServerHandshake, F as ConnectorHandler, I as createConnectorHandler, L as PeerLinkHandler, R as ETransportShape, T as createClientHandshake, _ as extractWirePayload, a as ExchangeAcceptor, b as createAcceptorHandler, c as decodeExchangeReply, d as Transport, f as createBinaryWireSessionFactory, g as buildActionRouteDictionary, h as assembleWireJson, i as createActionFetchHandler, k as decodeHandshakeMessage, l as decodeExchangeRequest, m as ReversePayloadType, n as ConnectionStateStore, o as LinkTransport, p as PayloadTypeToInt, r as createConnectionStateStore, s as ExchangeTransport, t as createHibernatableWsServerAdapter, u as encodeExchange, v as createSecureAcceptorHandler, x as createActionFrameCrypto, y as AcceptorHandler, z as ETransportStatus } from "../createHibernatableWsServerAdapter-C07RfUTH.mjs";
+import { A as encodeHandshakeMessage, C as EHandshakeMessageType, D as createServerHandshake, F as ConnectorHandler, I as createConnectorHandler, L as PeerLinkHandler, R as ETransportShape, T as createClientHandshake, _ as extractWirePayload, a as ExchangeAcceptor, b as createAcceptorHandler, c as decodeExchangeReply, d as Transport, f as createBinaryWireSessionFactory, g as buildActionRouteDictionary, h as assembleWireJson, i as createActionFetchHandler, k as decodeHandshakeMessage, l as decodeExchangeRequest, m as ReversePayloadType, n as ConnectionStateStore, o as LinkTransport, p as PayloadTypeToInt, r as createConnectionStateStore, s as ExchangeTransport, t as createHibernatableWsServerAdapter, u as encodeExchange, v as createSecureAcceptorHandler, x as createActionFrameCrypto, y as AcceptorHandler, z as ETransportStatus } from "../createHibernatableWsServerAdapter-BkjESd01.mjs";
 import { pack, unpack } from "msgpackr";
 //#region src/ActionRuntime/Transport/codec/createBinaryWireAdapter.ts
 /**

package/build/{createHibernatableWsServerAdapter-C07RfUTH.mjs → createHibernatableWsServerAdapter-BkjESd01.mjs}

@@ -1403,11 +1403,13 @@ var ActionRuntime = class {
 	* Used to locate the return-path channel for dispatching results back to the action origin.
 	* Returns `undefined` if no handler matches (score > 0 required, i.e. at least id must match).
 	*
-	* A handler that currently holds the origin's *live* connection always wins over a mere coordinate
-	* match — so with several duplex acceptors (e.g. WS + WebRTC) a result/push routes back over the carrier
-	* the client actually connected on, never a same-coordinate sibling that lacks the socket. Only when no
-	* handler owns a live connection do we fall back to the plain best-coordinate-score pick (the
-	* single-acceptor and connector-only cases, unchanged).
+	* A handler that currently holds the origin's *live* connection always wins, regardless of its
+	* coordinate score — owning the live socket bound to the origin's exact coordinate (set from the
+	* handshake) is a strictly more precise match than any env-level `peerClient` score. This lets one
+	* server accept clients of *several* envs over a single acceptor (a multi-role Durable Object): the
+	* result/push routes back over the carrier the client actually connected on even when the handler's
+	* `clientEnv` is unset or names a different env. Only when no handler owns a live connection do we fall
+	* back to the plain best-coordinate-score pick (the offline-return and connector-only cases).
 	*/
 	getReturnHandlerForOrigin(originClient) {
 		if (originClient.envId === "_unset_") return void 0;
@@ -1422,12 +1424,12 @@ var ActionRuntime = class {
 				bestScore = score;
 				bestHandler = handler;
 			}
-			if (score > bestOwnedScore && handler.ownsLiveConnectionFor(originClient)) {
+			if (handler.ownsLiveConnectionFor(originClient) && score > bestOwnedScore) {
 				bestOwnedScore = score;
 				bestOwnedHandler = handler;
 			}
 		}
-		if (bestOwnedHandler != null && bestOwnedScore > 0) return bestOwnedHandler;
+		if (bestOwnedHandler != null) return bestOwnedHandler;
 		return bestScore > 0 ? bestHandler : void 0;
 	}
 	resetRuntime() {
@@ -2170,7 +2172,7 @@ var AcceptorHandler = class extends PeerLinkHandler {
 	_codecByConn = /* @__PURE__ */ new Map();
 	_sessionByConn = /* @__PURE__ */ new Map();
 	constructor(options) {
-		super(options.clientEnv);
+		super(options.clientEnv ?? RuntimeCoordinate.unknown);
 		this._formatMessage = options.formatMessage;
 		this._createFormatMessage = options.createFormatMessage;
 		this._send = options.send;
@@ -3715,4 +3717,4 @@ function createHibernatableWsServerAdapter(options) {
 //#endregion
 export { ActionPayload_Request as $, encodeHandshakeMessage as A, EErrId_NiceTransport as B, EHandshakeMessageType as C, createServerHandshake as D, createInMemoryTofuVerifyKeyResolver as E, ConnectorHandler as F, ActionSchema as G, err_nice_external_client as H, createConnectorHandler as I, isActionPayload_Result_JsonObject as J, EActionResponseMode as K, PeerLinkHandler as L, ActionLocalHandler as M, createLocalHandler as N, createStorageTofuVerifyKeyResolver as O, ActionRuntime as P, RunningAction as Q, ETransportShape as R, decodeActionFrame as S, createClientHandshake as T, isActionPayload_Any_JsonObject as U, err_nice_transport as V, isActionPayload_Request_JsonObject as W, EErrId_NiceAction as X, isAction_Base_JsonObject as Y, err_nice_action as Z, extractWirePayload as _, ExchangeAcceptor as a, RuntimeCoordinate as at, createAcceptorHandler as b, decodeExchangeReply as c, Transport as d, ActionPayload_Result as et, createBinaryWireSessionFactory as f, buildActionRouteDictionary as g, assembleWireJson as h, createActionFetchHandler as i, ActionBase as it, runtimeLinkId as j, decodeHandshakeMessage as k, decodeExchangeRequest as l, ReversePayloadType as m, ConnectionStateStore as n, EActionProgressType as nt, LinkTransport as o, runtimeCoordinateToStringIds as ot, PayloadTypeToInt as p, actionSchema as q, createConnectionStateStore as r, ActionPayload as rt, ExchangeTransport as s, createHibernatableWsServerAdapter as t, EActionPayloadType as tt, encodeExchange as u, createSecureAcceptorHandler as v, ESecurityLevel as w, createActionFrameCrypto as x, AcceptorHandler as y, ETransportStatus as z };
 
-//# sourceMappingURL=createHibernatableWsServerAdapter-C07RfUTH.mjs.map
+//# sourceMappingURL=createHibernatableWsServerAdapter-BkjESd01.mjs.map