@olane/o-server 0.8.13 → 0.8.14

package/dist/src/middleware/auth.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"auth.d.ts","sourceRoot":"","sources":["../../../src/middleware/auth.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,OAAO,EAAE,QAAQ,EAAE,YAAY,EAAE,MAAM,SAAS,CAAC;AAC1D,OAAO,EACL,oBAAoB,EACpB,QAAQ,EACT,MAAM,0CAA0C,CAAC;AAElD,OAAO,CAAC,MAAM,CAAC;IACb,UAAU,OAAO,CAAC;QAChB,UAAU,OAAO;YACf,IAAI,CAAC,EAAE,QAAQ,CAAC;SACjB;KACF;CACF;AAED,wBAAgB,cAAc,CAAC,YAAY,EAAE,oBAAoB,SAC5C,OAAO,OAAO,QAAQ,QAAQ,YAAY,mBAe9D"}
+{"version":3,"file":"auth.d.ts","sourceRoot":"","sources":["../../../src/middleware/auth.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,OAAO,EAAE,QAAQ,EAAE,YAAY,EAAE,MAAM,SAAS,CAAC;AAC1D,OAAO,EACL,oBAAoB,EACpB,QAAQ,EACT,MAAM,0CAA0C,CAAC;AAElD,OAAO,CAAC,MAAM,CAAC;IACb,UAAU,OAAO,CAAC;QAChB,UAAU,OAAO;YACf,IAAI,CAAC,EAAE,QAAQ,CAAC;SACjB;KACF;CACF;AAED,wBAAgB,cAAc,CAAC,YAAY,EAAE,oBAAoB,IACjD,KAAK,OAAO,EAAE,KAAK,QAAQ,EAAE,MAAM,YAAY,mBAe9D"}

package/dist/src/middleware/jwt-auth.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"jwt-auth.d.ts","sourceRoot":"","sources":["../../../src/middleware/jwt-auth.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,OAAO,EAAE,QAAQ,EAAE,YAAY,EAAE,MAAM,SAAS,CAAC;AAC1D,OAAO,GAAG,MAAM,cAAc,CAAC;AAI/B;;GAEG;AACH,MAAM,WAAW,SAAS;IACxB,uEAAuE;IACvE,MAAM,EAAE,WAAW,GAAG,QAAQ,CAAC;IAE/B,sEAAsE;IACtE,MAAM,CAAC,EAAE,MAAM,CAAC;IAEhB,0FAA0F;IAC1F,aAAa,CAAC,EAAE,MAAM,CAAC;IAEvB,6CAA6C;IAC7C,MAAM,CAAC,EAAE,MAAM,CAAC;IAEhB,+CAA+C;IAC/C,QAAQ,CAAC,EAAE,MAAM,CAAC;IAElB,qFAAqF;IACrF,UAAU,CAAC,EAAE,GAAG,CAAC,SAAS,EAAE,CAAC;IAE7B,oEAAoE;IACpE,cAAc,CAAC,EAAE,MAAM,CAAC;CACzB;AAED;;GAEG;AACH,MAAM,WAAW,UAAU;IACzB,GAAG,CAAC,EAAE,MAAM,CAAC;IACb,GAAG,CAAC,EAAE,MAAM,CAAC;IACb,GAAG,CAAC,EAAE,MAAM,GAAG,MAAM,EAAE,CAAC;IACxB,GAAG,CAAC,EAAE,MAAM,CAAC;IACb,GAAG,CAAC,EAAE,MAAM,CAAC;IACb,GAAG,CAAC,EAAE,MAAM,CAAC;IACb,CAAC,GAAG,EAAE,MAAM,GAAG,GAAG,CAAC;CACpB;AAGD,OAAO,CAAC,MAAM,CAAC;IACb,UAAU,OAAO,CAAC;QAChB,UAAU,OAAO;YACf,GAAG,CAAC,EAAE,UAAU,CAAC;SAClB;KACF;CACF;AAED;;;;;;;;;;;GAWG;AACH,wBAAgB,mBAAmB,CAAC,MAAM,EAAE,SAAS,SA4ChC,OAAO,OAAO,QAAQ,QAAQ,YAAY,mBAyG9D"}
+{"version":3,"file":"jwt-auth.d.ts","sourceRoot":"","sources":["../../../src/middleware/jwt-auth.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,OAAO,EAAE,QAAQ,EAAE,YAAY,EAAE,MAAM,SAAS,CAAC;AAC1D,OAAO,GAAG,MAAM,cAAc,CAAC;AAI/B;;GAEG;AACH,MAAM,WAAW,SAAS;IACxB,uEAAuE;IACvE,MAAM,EAAE,WAAW,GAAG,QAAQ,CAAC;IAE/B,sEAAsE;IACtE,MAAM,CAAC,EAAE,MAAM,CAAC;IAEhB,0FAA0F;IAC1F,aAAa,CAAC,EAAE,MAAM,CAAC;IAEvB,6CAA6C;IAC7C,MAAM,CAAC,EAAE,MAAM,CAAC;IAEhB,+CAA+C;IAC/C,QAAQ,CAAC,EAAE,MAAM,CAAC;IAElB,qFAAqF;IACrF,UAAU,CAAC,EAAE,GAAG,CAAC,SAAS,EAAE,CAAC;IAE7B,oEAAoE;IACpE,cAAc,CAAC,EAAE,MAAM,CAAC;CACzB;AAED;;GAEG;AACH,MAAM,WAAW,UAAU;IACzB,GAAG,CAAC,EAAE,MAAM,CAAC;IACb,GAAG,CAAC,EAAE,MAAM,CAAC;IACb,GAAG,CAAC,EAAE,MAAM,GAAG,MAAM,EAAE,CAAC;IACxB,GAAG,CAAC,EAAE,MAAM,CAAC;IACb,GAAG,CAAC,EAAE,MAAM,CAAC;IACb,GAAG,CAAC,EAAE,MAAM,CAAC;IACb,CAAC,GAAG,EAAE,MAAM,GAAG,GAAG,CAAC;CACpB;AAGD,OAAO,CAAC,MAAM,CAAC;IACb,UAAU,OAAO,CAAC;QAChB,UAAU,OAAO;YACf,GAAG,CAAC,EAAE,UAAU,CAAC;SAClB;KACF;CACF;AAED;;;;;;;;;;;GAWG;AACH,wBAAgB,mBAAmB,CAAC,MAAM,EAAE,SAAS,IA4CrC,KAAK,OAAO,EAAE,KAAK,QAAQ,EAAE,MAAM,YAAY,mBAyG9D"}

package/dist/src/o-server.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"o-server.d.ts","sourceRoot":"","sources":["../../src/o-server.ts"],"names":[],"mappings":"AAGA,OAAO,EACL,YAAY,EACZ,cAAc,EACf,MAAM,yCAAyC,CAAC;AAiBjD,wBAAgB,OAAO,CAAC,MAAM,EAAE,YAAY,GAAG,cAAc,CAoW5D"}
+{"version":3,"file":"o-server.d.ts","sourceRoot":"","sources":["../../src/o-server.ts"],"names":[],"mappings":"AAGA,OAAO,EACL,YAAY,EACZ,cAAc,EACf,MAAM,yCAAyC,CAAC;AAuBjD,wBAAgB,OAAO,CAAC,MAAM,EAAE,YAAY,GAAG,cAAc,CA4W5D"}

package/dist/src/o-server.js

@@ -4,7 +4,8 @@ import { errorHandler } from './middleware/error-handler.js';
 import { authMiddleware } from './middleware/auth.js';
 import { createJwtMiddleware } from './middleware/jwt-auth.js';
 import { ServerLogger } from './utils/logger.js';
-import { oAddress, oRequestContext } from '@olane/o-core';
+import { oAddress, oRequestContext, } from '@olane/o-core';
+import { randomUUID } from 'crypto';
 import { validateAddress, validateMethod, sanitizeParams, validateRequest, useRequestSchema, streamRequestSchema, } from './validation/index.js';
 export function oServer(config) {
     const { node, port = 3000, basePath = '/api/v1', cors: corsConfig, authenticate, jwtAuth, debug = false, } = config;
@@ -20,9 +21,7 @@ export function oServer(config) {
             return undefined;
         // Extract raw token from Authorization header
         const authHeader = req.headers.authorization;
-        const token = authHeader?.startsWith('Bearer ')
-            ? authHeader.slice(7)
-            : '';
+        const token = authHeader?.startsWith('Bearer ') ? authHeader.slice(7) : '';
         return {
             token,
             claims: req.jwt,
@@ -35,23 +34,23 @@ export function oServer(config) {
     function stripClientAuth(params) {
         if (!params || typeof params !== 'object')
             return params;
-        const { _auth, ...rest } = params;
+        const { _auth, _trace, ...rest } = params;
         return rest;
     }
     /**
-     * Deep-strip _auth from response data before sending to HTTP client.
-     * Prevents leaking tokens in response payloads.
+     * Deep-strip internal fields (_auth, _trace) from response data before
+     * sending to HTTP client. Prevents leaking tokens and trace metadata.
      */
-    function stripAuthFromResponse(obj) {
+    function stripInternalFields(obj) {
         if (obj === null || obj === undefined || typeof obj !== 'object')
             return obj;
         if (Array.isArray(obj))
-            return obj.map(stripAuthFromResponse);
+            return obj.map(stripInternalFields);
         const result = {};
         for (const key of Object.keys(obj)) {
-            if (key === '_auth')
+            if (key === '_auth' || key === '_trace')
                 continue;
-            result[key] = stripAuthFromResponse(obj[key]);
+            result[key] = stripInternalFields(obj[key]);
         }
         return result;
     }
@@ -109,13 +108,15 @@ export function oServer(config) {
                 : sanitizedParams;
             logger.debugLog(`Calling use with address ${addressStr}, method: ${method}`);
             const address = new oAddress(addressStr);
-            // Wrap in request context for AsyncLocalStorage propagation
-            const result = await (auth
-                ? oRequestContext.run({ auth }, () => node.use(address, { method, params: finalParams, id }))
-                : node.use(address, { method, params: finalParams, id }));
+            // Generate a short request ID for tracing across the call chain
+            const requestId = randomUUID().replace(/-/g, '').substring(0, 8);
+            const store = { requestId };
+            if (auth)
+                store.auth = auth;
+            const result = await oRequestContext.run(store, () => node.use(address, { method, params: finalParams, id }));
             const response = {
                 success: true,
-                data: stripAuthFromResponse(result.result),
+                data: stripInternalFields(result.result),
             };
             res.json(response);
         }
@@ -147,13 +148,15 @@ export function oServer(config) {
                 : sanitizedParams;
             logger.debugLog(`Calling method ${method} on ${addressParam} with params:`, sanitizedParams);
             const address = new oAddress(addressStr);
-            // Wrap in request context for AsyncLocalStorage propagation
-            const result = await (auth
-                ? oRequestContext.run({ auth }, () => node.use(address, { method, params: finalParams }))
-                : node.use(address, { method, params: finalParams }));
+            // Generate a short request ID for tracing across the call chain
+            const requestId = randomUUID().replace(/-/g, '').substring(0, 8);
+            const store = { requestId };
+            if (auth)
+                store.auth = auth;
+            const result = await oRequestContext.run(store, () => node.use(address, { method: method, params: finalParams }));
             const response = {
                 success: true,
-                data: stripAuthFromResponse(result.result),
+                data: stripInternalFields(result.result),
             };
             res.json(response);
         }
@@ -187,15 +190,18 @@ export function oServer(config) {
             res.setHeader('Cache-Control', 'no-cache');
             res.setHeader('Connection', 'keep-alive');
             const address = new oAddress(addressStr);
+            // Generate a short request ID for tracing across the call chain
+            const requestId = randomUUID().replace(/-/g, '').substring(0, 8);
+            const store = { requestId };
+            if (auth)
+                store.auth = auth;
             try {
                 // TODO: Implement actual streaming support when available
                 // For now, execute and return result
-                const result = await (auth
-                    ? oRequestContext.run({ auth }, () => node.use(address, { method, params: finalParams }))
-                    : node.use(address, { method, params: finalParams }));
+                const result = await oRequestContext.run(store, () => node.use(address, { method, params: finalParams }));
                 res.write(`data: ${JSON.stringify({
                     type: 'complete',
-                    result: stripAuthFromResponse(result.result),
+                    result: stripInternalFields(result.result),
                 })}\n\n`);
                 res.end();
             }

package/dist/src/validation/request-validator.d.ts

@@ -8,17 +8,7 @@ export declare const useRequestSchema: z.ZodObject<{
     method: z.ZodString;
     params: z.ZodOptional<z.ZodAny>;
     id: z.ZodOptional<z.ZodString>;
-}, "strip", z.ZodTypeAny, {
-    address: string;
-    method: string;
-    params?: any;
-    id?: string | undefined;
-}, {
-    address: string;
-    method: string;
-    params?: any;
-    id?: string | undefined;
-}>;
+}, z.core.$strip>;
 /**
  * Schema for POST /:address/:method endpoint
  * This endpoint accepts any body as params
@@ -32,15 +22,7 @@ export declare const streamRequestSchema: z.ZodObject<{
     address: z.ZodString;
     method: z.ZodString;
     params: z.ZodOptional<z.ZodAny>;
-}, "strip", z.ZodTypeAny, {
-    address: string;
-    method: string;
-    params?: any;
-}, {
-    address: string;
-    method: string;
-    params?: any;
-}>;
+}, z.core.$strip>;
 /**
  * Validates request data against a Zod schema
  *

package/dist/src/validation/request-validator.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"request-validator.d.ts","sourceRoot":"","sources":["../../../src/validation/request-validator.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,CAAC,EAAE,MAAM,KAAK,CAAC;AAGxB;;;GAGG;AACH,eAAO,MAAM,gBAAgB;;;;;;;;;;;;;;;EAK3B,CAAC;AAEH;;;GAGG;AACH,eAAO,MAAM,wBAAwB,UAAU,CAAC;AAEhD;;;GAGG;AACH,eAAO,MAAM,mBAAmB;;;;;;;;;;;;EAI9B,CAAC;AAEH;;;;;;;GAOG;AACH,wBAAgB,eAAe,CAAC,CAAC,EAAE,IAAI,EAAE,OAAO,EAAE,MAAM,EAAE,CAAC,CAAC,SAAS,CAAC,CAAC,CAAC,GAAG,CAAC,CAqB3E"}
+{"version":3,"file":"request-validator.d.ts","sourceRoot":"","sources":["../../../src/validation/request-validator.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,CAAC,EAAE,MAAM,KAAK,CAAC;AAGxB;;;GAGG;AACH,eAAO,MAAM,gBAAgB;;;;;iBAK3B,CAAC;AAEH;;;GAGG;AACH,eAAO,MAAM,wBAAwB,UAAU,CAAC;AAEhD;;;GAGG;AACH,eAAO,MAAM,mBAAmB;;;;iBAI9B,CAAC;AAEH;;;;;;;GAOG;AACH,wBAAgB,eAAe,CAAC,CAAC,EAAE,IAAI,EAAE,OAAO,EAAE,MAAM,EAAE,CAAC,CAAC,SAAS,CAAC,CAAC,CAAC,GAAG,CAAC,CAqB3E"}

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@olane/o-server",
-  "version": "0.8.13",
+  "version": "0.8.14",
   "type": "module",
   "main": "dist/src/index.js",
   "types": "dist/src/index.d.ts",
@@ -34,40 +34,40 @@
   "license": "(MIT OR Apache-2.0)",
   "description": "HTTP server entrypoint for Olane OS nodes - exposes node's 'use' functionality via REST API",
   "devDependencies": {
-    "@eslint/eslintrc": "^3.3.1",
-    "@eslint/js": "^9.29.0",
-    "@tsconfig/node20": "^20.1.6",
-    "@types/cors": "^2.8.17",
-    "@types/express": "^4.17.21",
+    "@eslint/eslintrc": "^3.3.4",
+    "@eslint/js": "^10.0.1",
+    "@tsconfig/node20": "^20.1.9",
+    "@types/cors": "^2.8.19",
+    "@types/express": "^5.0.6",
     "@types/jest": "^30.0.0",
     "@types/jsonwebtoken": "^9.0.10",
     "@types/mocha": "^10.0.10",
-    "@types/node": "^20.14.0",
+    "@types/node": "^25.3.0",
     "@types/supertest": "^6.0.3",
-    "@typescript-eslint/eslint-plugin": "^8.34.1",
-    "@typescript-eslint/parser": "^8.34.1",
-    "aegir": "^47.0.21",
-    "eslint": "^9.29.0",
-    "eslint-config-prettier": "^10.1.6",
-    "eslint-plugin-prettier": "^5.5.0",
-    "globals": "^16.2.0",
-    "jest": "^30.0.0",
-    "prettier": "^3.5.3",
+    "@typescript-eslint/eslint-plugin": "^8.56.1",
+    "@typescript-eslint/parser": "^8.56.1",
+    "aegir": "^47.0.26",
+    "eslint": "^10.0.2",
+    "eslint-config-prettier": "^10.1.8",
+    "eslint-plugin-prettier": "^5.5.5",
+    "globals": "^17.3.0",
+    "jest": "^30.2.0",
+    "prettier": "^3.8.1",
     "supertest": "^7.2.2",
-    "ts-jest": "^29.4.0",
+    "ts-jest": "^29.4.6",
     "ts-node": "^10.9.2",
     "tsconfig-paths": "^4.2.0",
-    "tsx": "^4.20.3",
-    "typescript": "5.4.5"
+    "tsx": "^4.21.0",
+    "typescript": "5.9.3"
   },
   "dependencies": {
-    "@olane/o-core": "0.8.13",
-    "cors": "^2.8.5",
-    "debug": "^4.4.1",
-    "dotenv": "^16.5.0",
-    "express": "^4.21.2",
+    "@olane/o-core": "0.8.14",
+    "cors": "^2.8.6",
+    "debug": "^4.4.3",
+    "dotenv": "^17.3.1",
+    "express": "^5.2.1",
     "jsonwebtoken": "^9.0.3",
-    "zod": "^3.25.76"
+    "zod": "^4.3.6"
   },
-  "gitHead": "23c3e99e1dfe069697b4df483ef93c3e0b2902f7"
+  "gitHead": "c7df897d10e7c8078255701043f1887e48ccdd84"
 }