@peac/schema 0.9.18

package/README.md

@@ -0,0 +1,23 @@
+# @peac/schema
+
+PEAC Protocol JSON schemas, OpenAPI specs, and TypeScript types
+
+## Installation
+
+```bash
+pnpm add @peac/schema
+```
+
+## Documentation
+
+See [peacprotocol.org](https://peacprotocol.org) for full documentation.
+
+## License
+
+Apache-2.0
+
+---
+
+PEAC Protocol is an open source project stewarded by Originary and community contributors.
+
+[Originary](https://www.originary.xyz) | [Docs](https://peacprotocol.org) | [GitHub](https://github.com/peacprotocol/peac)

package/dist/constants.d.ts

@@ -0,0 +1,28 @@
+/**
+ * Wire format constants - FROZEN
+ *
+ * These constants are now sourced from @peac/kernel
+ * (normative source: specs/kernel/constants.json)
+ */
+/**
+ * Wire format version - FROZEN at 0.9 with v1.0-equivalent semantics
+ * Will flip to 1.0 at GA (Week 12)
+ */
+export declare const PEAC_WIRE_TYP: "peac.receipt/0.9";
+/**
+ * Signature algorithm - FROZEN forever
+ */
+export declare const PEAC_ALG: "EdDSA";
+/**
+ * Canonical header name
+ */
+export declare const PEAC_RECEIPT_HEADER: "PEAC-Receipt";
+/**
+ * Discovery file path
+ */
+export declare const PEAC_DISCOVERY_PATH: "/.well-known/peac.txt";
+/**
+ * Maximum discovery file size (20 lines × ~100 chars/line)
+ */
+export declare const PEAC_DISCOVERY_MAX_BYTES: 2000;
+//# sourceMappingURL=constants.d.ts.map

package/dist/constants.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"constants.d.ts","sourceRoot":"","sources":["../src/constants.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAIH;;;GAGG;AACH,eAAO,MAAM,aAAa,oBAAY,CAAC;AAEvC;;GAEG;AACH,eAAO,MAAM,QAAQ,SAAqB,CAAC;AAE3C;;GAEG;AACH,eAAO,MAAM,mBAAmB,gBAAkB,CAAC;AAEnD;;GAEG;AACH,eAAO,MAAM,mBAAmB,yBAAyB,CAAC;AAE1D;;GAEG;AACH,eAAO,MAAM,wBAAwB,EAAG,IAAa,CAAC"}

package/dist/constants.js

@@ -0,0 +1,32 @@
+"use strict";
+/**
+ * Wire format constants - FROZEN
+ *
+ * These constants are now sourced from @peac/kernel
+ * (normative source: specs/kernel/constants.json)
+ */
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.PEAC_DISCOVERY_MAX_BYTES = exports.PEAC_DISCOVERY_PATH = exports.PEAC_RECEIPT_HEADER = exports.PEAC_ALG = exports.PEAC_WIRE_TYP = void 0;
+const kernel_1 = require("@peac/kernel");
+/**
+ * Wire format version - FROZEN at 0.9 with v1.0-equivalent semantics
+ * Will flip to 1.0 at GA (Week 12)
+ */
+exports.PEAC_WIRE_TYP = kernel_1.WIRE_TYPE;
+/**
+ * Signature algorithm - FROZEN forever
+ */
+exports.PEAC_ALG = kernel_1.ALGORITHMS.default;
+/**
+ * Canonical header name
+ */
+exports.PEAC_RECEIPT_HEADER = kernel_1.HEADERS.receipt;
+/**
+ * Discovery file path
+ */
+exports.PEAC_DISCOVERY_PATH = kernel_1.DISCOVERY.manifestPath;
+/**
+ * Maximum discovery file size (20 lines × ~100 chars/line)
+ */
+exports.PEAC_DISCOVERY_MAX_BYTES = 2000;
+//# sourceMappingURL=constants.js.map

package/dist/constants.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"constants.js","sourceRoot":"","sources":["../src/constants.ts"],"names":[],"mappings":";AAAA;;;;;GAKG;;;AAEH,yCAAyE;AAEzE;;;GAGG;AACU,QAAA,aAAa,GAAG,kBAAS,CAAC;AAEvC;;GAEG;AACU,QAAA,QAAQ,GAAG,mBAAU,CAAC,OAAO,CAAC;AAE3C;;GAEG;AACU,QAAA,mBAAmB,GAAG,gBAAO,CAAC,OAAO,CAAC;AAEnD;;GAEG;AACU,QAAA,mBAAmB,GAAG,kBAAS,CAAC,YAAY,CAAC;AAE1D;;GAEG;AACU,QAAA,wBAAwB,GAAG,IAAa,CAAC"}

package/dist/control.d.ts

@@ -0,0 +1,155 @@
+/**
+ * PEAC Control Abstraction Layer (CAL) Types
+ *
+ * Composable governance for multi-party authorization.
+ * Supports TAP, AP2, and custom control engines.
+ */
+/**
+ * Control decision type
+ */
+export type ControlDecision = 'allow' | 'deny' | 'review';
+/**
+ * Control purpose - what the access is for
+ *
+ * Used to map RSL, Content Signals, and other policy dialects
+ * to a normalized purpose for receipts.
+ *
+ * Well-known purposes:
+ * - "crawl": Web crawling/scraping
+ * - "index": Search engine indexing
+ * - "train": AI/ML model training
+ * - "inference": AI/ML inference/generation
+ * - "ai_input": RAG/grounding (using content as input to AI) [v0.9.17+, RSL alignment]
+ * - "ai_index": AI-powered search/indexing [v0.9.18+, RSL 1.0 alignment]
+ * - "search": Traditional search indexing [v0.9.17+, RSL alignment]
+ *
+ * Note: RSL 1.0 uses "ai-index" (not "ai-search"). PEAC maps RSL "ai-index" to
+ * "ai_index". Previous versions used "ai_search" which has been removed.
+ *
+ * @see https://rslstandard.org/rsl for RSL 1.0 specification
+ */
+export type ControlPurpose = 'crawl' | 'index' | 'train' | 'inference' | 'ai_input' | 'ai_index' | 'search';
+/**
+ * Control licensing mode - how access is licensed
+ *
+ * Used to capture the commercial arrangement for access.
+ *
+ * Well-known modes:
+ * - "subscription": Access via active subscription
+ * - "pay_per_crawl": Per-crawl payment
+ * - "pay_per_inference": Per-inference payment
+ */
+export type ControlLicensingMode = 'subscription' | 'pay_per_crawl' | 'pay_per_inference';
+/**
+ * Composable control block - multi-party governance
+ *
+ * Structure:
+ * - chain: Ordered list of control decisions from different engines
+ * - decision: Final decision (MUST be consistent with chain)
+ * - combinator: Logic for combining chain results
+ *
+ * v0.9.x semantics:
+ * - combinator is always "any_can_veto"
+ * - If any step has result: "deny", decision MUST be "deny"
+ * - If all steps have result: "allow", decision MUST be "allow"
+ * - If any step has result: "review" and none "deny", decision MAY be "review"
+ */
+export interface ControlBlock {
+    /** Chain of control decisions (length >= 1) */
+    chain: ControlStep[];
+    /** Final decision (MUST be consistent with chain) */
+    decision: ControlDecision;
+    /** Combinator logic (v0.9: only "any_can_veto") */
+    combinator?: 'any_can_veto';
+}
+/**
+ * Single control step in governance chain
+ *
+ * Represents one control engine's decision in a multi-party
+ * governance flow. Examples:
+ * - Visa TAP mandate decision
+ * - Spend control limit check
+ * - Google AP2 mandate authorization
+ * - Merchant/platform policy enforcement
+ * - Payment fraud check
+ */
+export interface ControlStep {
+    /**
+     * Control engine identifier
+     *
+     * Well-known engines:
+     * - "spend-control-service" - Spend control mandate engine
+     * - "visa-tap" - Visa Trusted Agent Protocol
+     * - "google-ap2" - Google Agent Protocol v2
+     * - "risk-engine" - Risk scoring
+     * - "merchant-policy" - Merchant-specific policy
+     * - "platform-policy" - Platform governance
+     * - "custom" - Custom engine
+     */
+    engine: string;
+    /** Engine version (optional, for tracking) */
+    version?: string;
+    /** Policy ID within engine (engine-specific identifier) */
+    policy_id?: string;
+    /** Decision from this step */
+    result: ControlDecision;
+    /** Human-readable reason for decision */
+    reason?: string;
+    /**
+     * Purpose of this access (v0.9.16+)
+     *
+     * Normalized from RSL, Content Signals, ai.txt, etc.
+     * Used to capture what the access is for.
+     */
+    purpose?: ControlPurpose;
+    /**
+     * Licensing mode for this access (v0.9.16+)
+     *
+     * Captures the commercial arrangement.
+     */
+    licensing_mode?: ControlLicensingMode;
+    /**
+     * Scope of this control step (v0.9.16+)
+     *
+     * URI pattern(s) or resource identifier(s) this step applies to.
+     * Can be a single scope or multiple scopes.
+     *
+     * Examples:
+     * - "https://example.com/api/*"
+     * - ["https://example.com/docs/*", "https://example.com/blog/*"]
+     */
+    scope?: string | string[];
+    /**
+     * Limits snapshot at time of decision
+     *
+     * Engine-specific structure capturing the state of limits/rules
+     * that were evaluated. Examples:
+     * - Spending limits (per-transaction, daily, weekly)
+     * - Usage quotas
+     * - Rate limits
+     * - Authorization scopes
+     */
+    limits_snapshot?: unknown;
+    /**
+     * Reference to external evidence (URL or ID)
+     *
+     * Link to detailed evidence stored by the control engine.
+     * Examples:
+     * - Visa TAP evidence URL
+     * - Fraud report URL
+     * - Internal audit log ID
+     */
+    evidence_ref?: string;
+}
+/**
+ * Control validation result
+ */
+export interface ControlValidationResult {
+    /** Whether control chain is valid */
+    valid: boolean;
+    /** Validation error if invalid */
+    error?: string;
+    /** Decision is consistent with chain */
+    consistent: boolean;
+}
+//# sourceMappingURL=control.d.ts.map

package/dist/control.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"control.d.ts","sourceRoot":"","sources":["../src/control.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAEH;;GAEG;AACH,MAAM,MAAM,eAAe,GAAG,OAAO,GAAG,MAAM,GAAG,QAAQ,CAAC;AAE1D;;;;;;;;;;;;;;;;;;;GAmBG;AACH,MAAM,MAAM,cAAc,GACtB,OAAO,GACP,OAAO,GACP,OAAO,GACP,WAAW,GACX,UAAU,GACV,UAAU,GACV,QAAQ,CAAC;AAEb;;;;;;;;;GASG;AACH,MAAM,MAAM,oBAAoB,GAAG,cAAc,GAAG,eAAe,GAAG,mBAAmB,CAAC;AAE1F;;;;;;;;;;;;;GAaG;AACH,MAAM,WAAW,YAAY;IAC3B,+CAA+C;IAC/C,KAAK,EAAE,WAAW,EAAE,CAAC;IAErB,qDAAqD;IACrD,QAAQ,EAAE,eAAe,CAAC;IAE1B,mDAAmD;IACnD,UAAU,CAAC,EAAE,cAAc,CAAC;CAC7B;AAED;;;;;;;;;;GAUG;AACH,MAAM,WAAW,WAAW;IAC1B;;;;;;;;;;;OAWG;IACH,MAAM,EAAE,MAAM,CAAC;IAEf,8CAA8C;IAC9C,OAAO,CAAC,EAAE,MAAM,CAAC;IAEjB,2DAA2D;IAC3D,SAAS,CAAC,EAAE,MAAM,CAAC;IAEnB,8BAA8B;IAC9B,MAAM,EAAE,eAAe,CAAC;IAExB,yCAAyC;IACzC,MAAM,CAAC,EAAE,MAAM,CAAC;IAEhB;;;;;OAKG;IACH,OAAO,CAAC,EAAE,cAAc,CAAC;IAEzB;;;;OAIG;IACH,cAAc,CAAC,EAAE,oBAAoB,CAAC;IAEtC;;;;;;;;;OASG;IACH,KAAK,CAAC,EAAE,MAAM,GAAG,MAAM,EAAE,CAAC;IAE1B;;;;;;;;;OASG;IACH,eAAe,CAAC,EAAE,OAAO,CAAC;IAE1B;;;;;;;;OAQG;IACH,YAAY,CAAC,EAAE,MAAM,CAAC;CACvB;AAED;;GAEG;AACH,MAAM,WAAW,uBAAuB;IACtC,qCAAqC;IACrC,KAAK,EAAE,OAAO,CAAC;IAEf,kCAAkC;IAClC,KAAK,CAAC,EAAE,MAAM,CAAC;IAEf,wCAAwC;IACxC,UAAU,EAAE,OAAO,CAAC;CACrB"}

package/dist/control.js

@@ -0,0 +1,9 @@
+"use strict";
+/**
+ * PEAC Control Abstraction Layer (CAL) Types
+ *
+ * Composable governance for multi-party authorization.
+ * Supports TAP, AP2, and custom control engines.
+ */
+Object.defineProperty(exports, "__esModule", { value: true });
+//# sourceMappingURL=control.js.map

package/dist/control.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"control.js","sourceRoot":"","sources":["../src/control.ts"],"names":[],"mappings":";AAAA;;;;;GAKG"}

package/dist/envelope.d.ts

@@ -0,0 +1,62 @@
+/**
+ * PEAC Envelope Types (v0.9.15+)
+ *
+ * These types match the normative JSON Schema (PEAC-RECEIPT-SCHEMA-v0.9.json).
+ * The envelope is the canonical structure for PEAC receipts.
+ */
+import type { ControlBlock } from './control';
+import type { PaymentEvidence, AttestationEvidence } from './evidence';
+import type { SubjectProfileSnapshot } from './subject';
+/**
+ * Authentication and Authorization Context
+ */
+export interface AuthContext {
+    iss: string;
+    aud: string;
+    sub: string;
+    iat: number;
+    exp?: number;
+    rid: string;
+    policy_hash: string;
+    policy_uri: string;
+    control?: ControlBlock;
+    enforcement?: EnforcementContext;
+    binding?: TransportBinding;
+    ctx?: ContextMetadata;
+    /** Subject profile snapshot for policy evaluation (v0.9.17+) */
+    subject_snapshot?: SubjectProfileSnapshot;
+}
+export interface EnforcementContext {
+    method: string;
+    details?: Record<string, unknown>;
+}
+export interface TransportBinding {
+    transport: string;
+    method: string;
+    evidence?: Record<string, unknown>;
+}
+export interface ContextMetadata {
+    resource?: string;
+    method?: string;
+    [key: string]: unknown;
+}
+export interface EvidenceBlock {
+    payment?: PaymentEvidence;
+    attestation?: AttestationEvidence;
+    payments?: PaymentEvidence[];
+}
+export interface MetadataBlock {
+    redactions?: string[];
+    privacy_budget?: Record<string, unknown>;
+    debug?: Record<string, unknown>;
+    [key: string]: unknown;
+}
+/**
+ * PEAC Envelope - normative structure for v0.9.15+
+ */
+export interface PEACEnvelope {
+    auth: AuthContext;
+    evidence?: EvidenceBlock;
+    meta?: MetadataBlock;
+}
+//# sourceMappingURL=envelope.d.ts.map

package/dist/envelope.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"envelope.d.ts","sourceRoot":"","sources":["../src/envelope.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAEH,OAAO,KAAK,EAAE,YAAY,EAAE,MAAM,WAAW,CAAC;AAC9C,OAAO,KAAK,EAAE,eAAe,EAAE,mBAAmB,EAAE,MAAM,YAAY,CAAC;AACvE,OAAO,KAAK,EAAE,sBAAsB,EAAE,MAAM,WAAW,CAAC;AAExD;;GAEG;AACH,MAAM,WAAW,WAAW;IAC1B,GAAG,EAAE,MAAM,CAAC;IACZ,GAAG,EAAE,MAAM,CAAC;IACZ,GAAG,EAAE,MAAM,CAAC;IACZ,GAAG,EAAE,MAAM,CAAC;IACZ,GAAG,CAAC,EAAE,MAAM,CAAC;IACb,GAAG,EAAE,MAAM,CAAC;IACZ,WAAW,EAAE,MAAM,CAAC;IACpB,UAAU,EAAE,MAAM,CAAC;IACnB,OAAO,CAAC,EAAE,YAAY,CAAC;IACvB,WAAW,CAAC,EAAE,kBAAkB,CAAC;IACjC,OAAO,CAAC,EAAE,gBAAgB,CAAC;IAC3B,GAAG,CAAC,EAAE,eAAe,CAAC;IACtB,gEAAgE;IAChE,gBAAgB,CAAC,EAAE,sBAAsB,CAAC;CAC3C;AAED,MAAM,WAAW,kBAAkB;IACjC,MAAM,EAAE,MAAM,CAAC;IACf,OAAO,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;CACnC;AAED,MAAM,WAAW,gBAAgB;IAC/B,SAAS,EAAE,MAAM,CAAC;IAClB,MAAM,EAAE,MAAM,CAAC;IACf,QAAQ,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;CACpC;AAED,MAAM,WAAW,eAAe;IAC9B,QAAQ,CAAC,EAAE,MAAM,CAAC;IAClB,MAAM,CAAC,EAAE,MAAM,CAAC;IAChB,CAAC,GAAG,EAAE,MAAM,GAAG,OAAO,CAAC;CACxB;AAED,MAAM,WAAW,aAAa;IAC5B,OAAO,CAAC,EAAE,eAAe,CAAC;IAC1B,WAAW,CAAC,EAAE,mBAAmB,CAAC;IAClC,QAAQ,CAAC,EAAE,eAAe,EAAE,CAAC;CAC9B;AAED,MAAM,WAAW,aAAa;IAC5B,UAAU,CAAC,EAAE,MAAM,EAAE,CAAC;IACtB,cAAc,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;IACzC,KAAK,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;IAChC,CAAC,GAAG,EAAE,MAAM,GAAG,OAAO,CAAC;CACxB;AAED;;GAEG;AACH,MAAM,WAAW,YAAY;IAC3B,IAAI,EAAE,WAAW,CAAC;IAClB,QAAQ,CAAC,EAAE,aAAa,CAAC;IACzB,IAAI,CAAC,EAAE,aAAa,CAAC;CACtB"}

package/dist/envelope.js

@@ -0,0 +1,9 @@
+"use strict";
+/**
+ * PEAC Envelope Types (v0.9.15+)
+ *
+ * These types match the normative JSON Schema (PEAC-RECEIPT-SCHEMA-v0.9.json).
+ * The envelope is the canonical structure for PEAC receipts.
+ */
+Object.defineProperty(exports, "__esModule", { value: true });
+//# sourceMappingURL=envelope.js.map

package/dist/envelope.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"envelope.js","sourceRoot":"","sources":["../src/envelope.ts"],"names":[],"mappings":";AAAA;;;;;GAKG"}

package/dist/errors.d.ts

@@ -0,0 +1,134 @@
+/**
+ * PEAC Structured Error Model
+ *
+ * Standardized error responses for protocol failures.
+ * See docs/specs/ERRORS.md for complete error registry.
+ */
+/**
+ * Error category - broad classification of error type
+ */
+export type ErrorCategory = 'validation' | 'security' | 'network' | 'authorization' | 'rate_limit' | 'internal';
+/**
+ * Error severity
+ */
+export type ErrorSeverity = 'error' | 'warning';
+/**
+ * Structured PEAC error
+ *
+ * Provides machine-readable error information with:
+ * - Stable error codes
+ * - Category classification
+ * - Retryability hints
+ * - Remediation guidance
+ */
+export interface PEACError {
+    /**
+     * Error code
+     *
+     * Stable identifier for this error type.
+     * See docs/specs/ERRORS.md for registry.
+     *
+     * Examples:
+     * - "E_CONTROL_REQUIRED"
+     * - "E_INVALID_SIGNATURE"
+     * - "E_SSRF_BLOCKED"
+     * - "E_DPOP_REPLAY"
+     */
+    code: string;
+    /**
+     * Error category
+     *
+     * Broad classification for programmatic handling.
+     */
+    category: ErrorCategory;
+    /**
+     * Error severity
+     *
+     * - "error": Operation failed, cannot proceed
+     * - "warning": Operation succeeded but with caveats
+     */
+    severity: ErrorSeverity;
+    /**
+     * Whether the operation is retryable
+     *
+     * - true: Client should retry (network, rate limit, transient)
+     * - false: Client should not retry (validation, security, permanent)
+     */
+    retryable: boolean;
+    /**
+     * Suggested HTTP status code
+     *
+     * Maps error to appropriate HTTP response code.
+     * Examples:
+     * - 400: Validation errors
+     * - 401: Signature/authentication failures
+     * - 403: Authorization/control denials
+     * - 429: Rate limit exceeded
+     * - 502: Network failures (JWKS fetch, etc.)
+     */
+    http_status?: number;
+    /**
+     * JSON Pointer (RFC 6901) to problematic field
+     *
+     * Identifies the specific field that caused the error.
+     * Examples:
+     * - "/auth/control" - Missing control block
+     * - "/evidence/payment/amount" - Invalid amount
+     * - "/auth/control/chain/0/result" - Invalid result value
+     */
+    pointer?: string;
+    /**
+     * Human-readable remediation guidance
+     *
+     * Short hint for fixing the error.
+     * Examples:
+     * - "Add control{} block when payment{} is present"
+     * - "Ensure JWS signature is valid"
+     * - "Retry after 60 seconds"
+     */
+    remediation?: string;
+    /**
+     * Implementation-specific error details
+     *
+     * Additional context for debugging.
+     * Structure varies by error code.
+     */
+    details?: unknown;
+}
+/**
+ * Error code registry
+ *
+ * Well-known error codes. See docs/specs/ERRORS.md for complete list.
+ */
+export declare const ERROR_CODES: {
+    readonly E_CONTROL_REQUIRED: "E_CONTROL_REQUIRED";
+    readonly E_INVALID_ENVELOPE: "E_INVALID_ENVELOPE";
+    readonly E_INVALID_CONTROL_CHAIN: "E_INVALID_CONTROL_CHAIN";
+    readonly E_INVALID_PAYMENT: "E_INVALID_PAYMENT";
+    readonly E_INVALID_POLICY_HASH: "E_INVALID_POLICY_HASH";
+    readonly E_EXPIRED_RECEIPT: "E_EXPIRED_RECEIPT";
+    readonly E_INVALID_SIGNATURE: "E_INVALID_SIGNATURE";
+    readonly E_SSRF_BLOCKED: "E_SSRF_BLOCKED";
+    readonly E_DPOP_REPLAY: "E_DPOP_REPLAY";
+    readonly E_DPOP_INVALID: "E_DPOP_INVALID";
+    readonly E_CONTROL_DENIED: "E_CONTROL_DENIED";
+    readonly E_JWKS_FETCH_FAILED: "E_JWKS_FETCH_FAILED";
+    readonly E_POLICY_FETCH_FAILED: "E_POLICY_FETCH_FAILED";
+    readonly E_NETWORK_ERROR: "E_NETWORK_ERROR";
+    readonly E_RATE_LIMIT: "E_RATE_LIMIT";
+    readonly E_INTERNAL_ERROR: "E_INTERNAL_ERROR";
+};
+/**
+ * Error code type
+ */
+export type ErrorCode = (typeof ERROR_CODES)[keyof typeof ERROR_CODES];
+/**
+ * Helper to create a structured error
+ */
+export declare function createPEACError(code: ErrorCode, category: ErrorCategory, severity: ErrorSeverity, retryable: boolean, options?: {
+    http_status?: number;
+    pointer?: string;
+    remediation?: string;
+    details?: unknown;
+}): PEACError;
+//# sourceMappingURL=errors.d.ts.map

package/dist/errors.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"errors.d.ts","sourceRoot":"","sources":["../src/errors.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAEH;;GAEG;AACH,MAAM,MAAM,aAAa,GACrB,YAAY,GACZ,UAAU,GACV,SAAS,GACT,eAAe,GACf,YAAY,GACZ,UAAU,CAAC;AAEf;;GAEG;AACH,MAAM,MAAM,aAAa,GAAG,OAAO,GAAG,SAAS,CAAC;AAEhD;;;;;;;;GAQG;AACH,MAAM,WAAW,SAAS;IACxB;;;;;;;;;;;OAWG;IACH,IAAI,EAAE,MAAM,CAAC;IAEb;;;;OAIG;IACH,QAAQ,EAAE,aAAa,CAAC;IAExB;;;;;OAKG;IACH,QAAQ,EAAE,aAAa,CAAC;IAExB;;;;;OAKG;IACH,SAAS,EAAE,OAAO,CAAC;IAEnB;;;;;;;;;;OAUG;IACH,WAAW,CAAC,EAAE,MAAM,CAAC;IAErB;;;;;;;;OAQG;IACH,OAAO,CAAC,EAAE,MAAM,CAAC;IAEjB;;;;;;;;OAQG;IACH,WAAW,CAAC,EAAE,MAAM,CAAC;IAErB;;;;;OAKG;IACH,OAAO,CAAC,EAAE,OAAO,CAAC;CACnB;AAED;;;;GAIG;AACH,eAAO,MAAM,WAAW;;;;;;;;;;;;;;;;;CA0Bd,CAAC;AAEX;;GAEG;AACH,MAAM,MAAM,SAAS,GAAG,CAAC,OAAO,WAAW,CAAC,CAAC,MAAM,OAAO,WAAW,CAAC,CAAC;AAEvE;;GAEG;AACH,wBAAgB,eAAe,CAC7B,IAAI,EAAE,SAAS,EACf,QAAQ,EAAE,aAAa,EACvB,QAAQ,EAAE,aAAa,EACvB,SAAS,EAAE,OAAO,EAClB,OAAO,CAAC,EAAE;IACR,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,OAAO,CAAC,EAAE,OAAO,CAAC;CACnB,GACA,SAAS,CAQX"}

package/dist/errors.js

@@ -0,0 +1,51 @@
+"use strict";
+/**
+ * PEAC Structured Error Model
+ *
+ * Standardized error responses for protocol failures.
+ * See docs/specs/ERRORS.md for complete error registry.
+ */
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.ERROR_CODES = void 0;
+exports.createPEACError = createPEACError;
+/**
+ * Error code registry
+ *
+ * Well-known error codes. See docs/specs/ERRORS.md for complete list.
+ */
+exports.ERROR_CODES = {
+    // Validation errors (400)
+    E_CONTROL_REQUIRED: 'E_CONTROL_REQUIRED',
+    E_INVALID_ENVELOPE: 'E_INVALID_ENVELOPE',
+    E_INVALID_CONTROL_CHAIN: 'E_INVALID_CONTROL_CHAIN',
+    E_INVALID_PAYMENT: 'E_INVALID_PAYMENT',
+    E_INVALID_POLICY_HASH: 'E_INVALID_POLICY_HASH',
+    E_EXPIRED_RECEIPT: 'E_EXPIRED_RECEIPT',
+    // Security errors (401/403)
+    E_INVALID_SIGNATURE: 'E_INVALID_SIGNATURE',
+    E_SSRF_BLOCKED: 'E_SSRF_BLOCKED',
+    E_DPOP_REPLAY: 'E_DPOP_REPLAY',
+    E_DPOP_INVALID: 'E_DPOP_INVALID',
+    E_CONTROL_DENIED: 'E_CONTROL_DENIED',
+    // Network errors (502/503)
+    E_JWKS_FETCH_FAILED: 'E_JWKS_FETCH_FAILED',
+    E_POLICY_FETCH_FAILED: 'E_POLICY_FETCH_FAILED',
+    E_NETWORK_ERROR: 'E_NETWORK_ERROR',
+    // Rate limit errors (429)
+    E_RATE_LIMIT: 'E_RATE_LIMIT',
+    // Internal errors (500)
+    E_INTERNAL_ERROR: 'E_INTERNAL_ERROR',
+};
+/**
+ * Helper to create a structured error
+ */
+function createPEACError(code, category, severity, retryable, options) {
+    return {
+        code,
+        category,
+        severity,
+        retryable,
+        ...options,
+    };
+}
+//# sourceMappingURL=errors.js.map

package/dist/errors.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"errors.js","sourceRoot":"","sources":["../src/errors.ts"],"names":[],"mappings":";AAAA;;;;;GAKG;;;AAsJH,0CAmBC;AA5DD;;;;GAIG;AACU,QAAA,WAAW,GAAG;IACzB,0BAA0B;IAC1B,kBAAkB,EAAE,oBAAoB;IACxC,kBAAkB,EAAE,oBAAoB;IACxC,uBAAuB,EAAE,yBAAyB;IAClD,iBAAiB,EAAE,mBAAmB;IACtC,qBAAqB,EAAE,uBAAuB;IAC9C,iBAAiB,EAAE,mBAAmB;IAEtC,4BAA4B;IAC5B,mBAAmB,EAAE,qBAAqB;IAC1C,cAAc,EAAE,gBAAgB;IAChC,aAAa,EAAE,eAAe;IAC9B,cAAc,EAAE,gBAAgB;IAChC,gBAAgB,EAAE,kBAAkB;IAEpC,2BAA2B;IAC3B,mBAAmB,EAAE,qBAAqB;IAC1C,qBAAqB,EAAE,uBAAuB;IAC9C,eAAe,EAAE,iBAAiB;IAElC,0BAA0B;IAC1B,YAAY,EAAE,cAAc;IAE5B,wBAAwB;IACxB,gBAAgB,EAAE,kBAAkB;CAC5B,CAAC;AAOX;;GAEG;AACH,SAAgB,eAAe,CAC7B,IAAe,EACf,QAAuB,EACvB,QAAuB,EACvB,SAAkB,EAClB,OAKC;IAED,OAAO;QACL,IAAI;QACJ,QAAQ;QACR,QAAQ;QACR,SAAS;QACT,GAAG,OAAO;KACX,CAAC;AACJ,CAAC"}