npm - @peac/transport-grpc - Versions diffs - 0.12.6 - Mend

@peac/transport-grpc 0.12.6

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (29) hide show

package/.turbo/turbo-build.log +25 -0
package/.turbo/turbo-test.log +15 -0
package/LICENSE +190 -0
package/README.md +110 -0
package/dist/a2a-carrier.d.ts +71 -0
package/dist/a2a-carrier.d.ts.map +1 -0
package/dist/index.cjs +324 -0
package/dist/index.cjs.map +1 -0
package/dist/index.d.ts +137 -0
package/dist/index.d.ts.map +1 -0
package/dist/index.js +297 -0
package/dist/index.js.map +1 -0
package/dist/index.mjs +304 -0
package/dist/index.mjs.map +1 -0
package/dist/metadata.d.ts +42 -0
package/dist/metadata.d.ts.map +1 -0
package/package.json +60 -0
package/src/a2a-carrier.ts +158 -0
package/src/index.d.ts.map +1 -0
package/src/index.js.map +1 -0
package/src/index.ts +313 -0
package/src/metadata.ts +85 -0
package/tests/a2a-carrier.test.ts +208 -0
package/tests/status-parity.test.ts +361 -0
package/tsconfig.json +11 -0
package/tsup.config.ts +19 -0
package/vitest.config.d.ts.map +1 -0
package/vitest.config.js.map +1 -0
package/vitest.config.ts +9 -0

package/dist/index.js ADDED Viewed

@@ -0,0 +1,297 @@
+"use strict";
+/**
+ * PEAC gRPC Transport Layer
+ *
+ * Provides gRPC binding for PEAC receipts with StatusCode parity to HTTP.
+ *
+ * Status code mapping follows these semantics:
+ * - INVALID_ARGUMENT (3): Malformed request (HTTP 400)
+ * - UNAUTHENTICATED (16): Authentication required (HTTP 401)
+ * - FAILED_PRECONDITION (9): Payment required (HTTP 402)
+ * - PERMISSION_DENIED (7): Not authorized (HTTP 403)
+ * - ABORTED (10): Conflict/replay detected (HTTP 409)
+ * - INTERNAL (13): Server error (HTTP 500)
+ *
+ * @packageDocumentation
+ */
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.GrpcStatusName = exports.GrpcMetadataKeys = exports.PEAC_ERROR_TO_GRPC = exports.GrpcStatus = exports.GRPC_TRANSPORT_VERSION = void 0;
+exports.httpStatusToGrpc = httpStatusToGrpc;
+exports.grpcStatusToHttp = grpcStatusToHttp;
+exports.peacErrorToGrpc = peacErrorToGrpc;
+exports.createGrpcError = createGrpcError;
+exports.extractReceiptFromMetadata = extractReceiptFromMetadata;
+exports.addReceiptToMetadata = addReceiptToMetadata;
+exports.createSuccessResult = createSuccessResult;
+exports.createFailureResult = createFailureResult;
+exports.getStatusName = getStatusName;
+exports.GRPC_TRANSPORT_VERSION = '0.9.20';
+/**
+ * gRPC status codes.
+ * @see https://grpc.io/docs/guides/status-codes/
+ */
+exports.GrpcStatus = {
+    /** Success */
+    OK: 0,
+    /** Operation was cancelled */
+    CANCELLED: 1,
+    /** Unknown error */
+    UNKNOWN: 2,
+    /** Client specified invalid argument */
+    INVALID_ARGUMENT: 3,
+    /** Deadline expired before operation completed */
+    DEADLINE_EXCEEDED: 4,
+    /** Requested entity not found */
+    NOT_FOUND: 5,
+    /** Entity already exists */
+    ALREADY_EXISTS: 6,
+    /** Caller lacks permission */
+    PERMISSION_DENIED: 7,
+    /** Resource exhausted */
+    RESOURCE_EXHAUSTED: 8,
+    /** Operation rejected due to precondition */
+    FAILED_PRECONDITION: 9,
+    /** Operation aborted (conflict) */
+    ABORTED: 10,
+    /** Value out of range */
+    OUT_OF_RANGE: 11,
+    /** Operation not implemented */
+    UNIMPLEMENTED: 12,
+    /** Internal error */
+    INTERNAL: 13,
+    /** Service unavailable */
+    UNAVAILABLE: 14,
+    /** Data loss */
+    DATA_LOSS: 15,
+    /** Not authenticated */
+    UNAUTHENTICATED: 16,
+};
+/**
+ * Map HTTP status code to gRPC status code.
+ *
+ * Mapping semantics:
+ * - 400 Bad Request -> INVALID_ARGUMENT (malformed)
+ * - 401 Unauthorized -> UNAUTHENTICATED (auth required)
+ * - 402 Payment Required -> FAILED_PRECONDITION (payment needed)
+ * - 403 Forbidden -> PERMISSION_DENIED (not authorized)
+ * - 409 Conflict -> ABORTED (replay detected)
+ * - 500 Internal Server Error -> INTERNAL
+ * - Other 4xx -> INVALID_ARGUMENT
+ * - Other 5xx -> INTERNAL
+ */
+function httpStatusToGrpc(httpStatus) {
+    switch (httpStatus) {
+        case 200:
+        case 201:
+        case 204:
+            return exports.GrpcStatus.OK;
+        case 400:
+            return exports.GrpcStatus.INVALID_ARGUMENT;
+        case 401:
+            return exports.GrpcStatus.UNAUTHENTICATED;
+        case 402:
+            return exports.GrpcStatus.FAILED_PRECONDITION;
+        case 403:
+            return exports.GrpcStatus.PERMISSION_DENIED;
+        case 404:
+            return exports.GrpcStatus.NOT_FOUND;
+        case 409:
+            return exports.GrpcStatus.ABORTED;
+        case 429:
+            return exports.GrpcStatus.RESOURCE_EXHAUSTED;
+        case 499:
+            return exports.GrpcStatus.CANCELLED;
+        case 500:
+            return exports.GrpcStatus.INTERNAL;
+        case 501:
+            return exports.GrpcStatus.UNIMPLEMENTED;
+        case 503:
+            return exports.GrpcStatus.UNAVAILABLE;
+        case 504:
+            return exports.GrpcStatus.DEADLINE_EXCEEDED;
+        default:
+            if (httpStatus >= 400 && httpStatus < 500) {
+                return exports.GrpcStatus.INVALID_ARGUMENT;
+            }
+            if (httpStatus >= 500) {
+                return exports.GrpcStatus.INTERNAL;
+            }
+            return exports.GrpcStatus.OK;
+    }
+}
+/**
+ * Map gRPC status code to HTTP status code.
+ *
+ * Inverse of httpStatusToGrpc for response translation.
+ */
+function grpcStatusToHttp(grpcStatus) {
+    switch (grpcStatus) {
+        case exports.GrpcStatus.OK:
+            return 200;
+        case exports.GrpcStatus.CANCELLED:
+            return 499;
+        case exports.GrpcStatus.UNKNOWN:
+            return 500;
+        case exports.GrpcStatus.INVALID_ARGUMENT:
+            return 400;
+        case exports.GrpcStatus.DEADLINE_EXCEEDED:
+            return 504;
+        case exports.GrpcStatus.NOT_FOUND:
+            return 404;
+        case exports.GrpcStatus.ALREADY_EXISTS:
+            return 409;
+        case exports.GrpcStatus.PERMISSION_DENIED:
+            return 403;
+        case exports.GrpcStatus.RESOURCE_EXHAUSTED:
+            return 429;
+        case exports.GrpcStatus.FAILED_PRECONDITION:
+            return 402;
+        case exports.GrpcStatus.ABORTED:
+            return 409;
+        case exports.GrpcStatus.OUT_OF_RANGE:
+            return 400;
+        case exports.GrpcStatus.UNIMPLEMENTED:
+            return 501;
+        case exports.GrpcStatus.INTERNAL:
+            return 500;
+        case exports.GrpcStatus.UNAVAILABLE:
+            return 503;
+        case exports.GrpcStatus.DATA_LOSS:
+            return 500;
+        case exports.GrpcStatus.UNAUTHENTICATED:
+            return 401;
+        default:
+            return 500;
+    }
+}
+/**
+ * PEAC error code to gRPC status mapping.
+ *
+ * Maps canonical PEAC error codes to appropriate gRPC status codes.
+ */
+exports.PEAC_ERROR_TO_GRPC = {
+    // 402 Payment Required -> FAILED_PRECONDITION
+    E_RECEIPT_MISSING: exports.GrpcStatus.FAILED_PRECONDITION,
+    E_RECEIPT_INVALID: exports.GrpcStatus.FAILED_PRECONDITION,
+    E_RECEIPT_EXPIRED: exports.GrpcStatus.FAILED_PRECONDITION,
+    // 401 Unauthenticated -> UNAUTHENTICATED
+    E_TAP_SIGNATURE_MISSING: exports.GrpcStatus.UNAUTHENTICATED,
+    E_TAP_SIGNATURE_INVALID: exports.GrpcStatus.UNAUTHENTICATED,
+    E_TAP_TIME_INVALID: exports.GrpcStatus.UNAUTHENTICATED,
+    E_TAP_KEY_NOT_FOUND: exports.GrpcStatus.UNAUTHENTICATED,
+    E_TAP_REPLAY_PROTECTION_REQUIRED: exports.GrpcStatus.UNAUTHENTICATED,
+    // 400 Bad Request -> INVALID_ARGUMENT
+    E_TAP_WINDOW_TOO_LARGE: exports.GrpcStatus.INVALID_ARGUMENT,
+    E_TAP_TAG_UNKNOWN: exports.GrpcStatus.INVALID_ARGUMENT,
+    E_TAP_ALGORITHM_INVALID: exports.GrpcStatus.INVALID_ARGUMENT,
+    // 403 Forbidden -> PERMISSION_DENIED
+    E_ISSUER_NOT_ALLOWED: exports.GrpcStatus.PERMISSION_DENIED,
+    // 409 Conflict -> ABORTED
+    E_TAP_NONCE_REPLAY: exports.GrpcStatus.ABORTED,
+    // 500 Internal -> INTERNAL
+    E_CONFIG_ISSUER_ALLOWLIST_REQUIRED: exports.GrpcStatus.INTERNAL,
+    E_INTERNAL_ERROR: exports.GrpcStatus.INTERNAL,
+};
+/**
+ * Get gRPC status for a PEAC error code.
+ */
+function peacErrorToGrpc(errorCode) {
+    return exports.PEAC_ERROR_TO_GRPC[errorCode] ?? exports.GrpcStatus.INTERNAL;
+}
+/**
+ * Create a gRPC error from a PEAC error code.
+ */
+function createGrpcError(peacCode, message, details) {
+    return {
+        code: peacErrorToGrpc(peacCode),
+        message,
+        peacCode,
+        details,
+    };
+}
+/**
+ * gRPC metadata keys for PEAC transport.
+ */
+exports.GrpcMetadataKeys = {
+    /** PEAC receipt in metadata */
+    RECEIPT: 'peac-receipt',
+    /** PEAC receipt type */
+    RECEIPT_TYPE: 'peac-receipt-type',
+    /** TAP signature */
+    TAP_SIGNATURE: 'peac-tap-signature',
+    /** TAP signature input */
+    TAP_SIGNATURE_INPUT: 'peac-tap-signature-input',
+    /** PEAC error code in trailer */
+    ERROR_CODE: 'peac-error-code',
+    /** Request ID for tracing */
+    REQUEST_ID: 'peac-request-id',
+};
+/**
+ * Extract PEAC receipt from gRPC metadata.
+ */
+function extractReceiptFromMetadata(metadata) {
+    const receipt = metadata[exports.GrpcMetadataKeys.RECEIPT];
+    if (typeof receipt === 'string') {
+        return receipt;
+    }
+    if (Array.isArray(receipt) && receipt.length > 0) {
+        return receipt[0];
+    }
+    return null;
+}
+/**
+ * Add PEAC receipt to gRPC metadata.
+ */
+function addReceiptToMetadata(metadata, receiptJws) {
+    metadata[exports.GrpcMetadataKeys.RECEIPT] = receiptJws;
+    metadata[exports.GrpcMetadataKeys.RECEIPT_TYPE] = 'peac-receipt/0.1';
+}
+/**
+ * Create a successful verification result.
+ */
+function createSuccessResult(receiptId) {
+    return {
+        ok: true,
+        status: exports.GrpcStatus.OK,
+        receiptId,
+    };
+}
+/**
+ * Create a failed verification result.
+ */
+function createFailureResult(error) {
+    return {
+        ok: false,
+        status: error.code,
+        error,
+    };
+}
+/**
+ * Status code name mapping for debugging.
+ */
+exports.GrpcStatusName = {
+    [exports.GrpcStatus.OK]: 'OK',
+    [exports.GrpcStatus.CANCELLED]: 'CANCELLED',
+    [exports.GrpcStatus.UNKNOWN]: 'UNKNOWN',
+    [exports.GrpcStatus.INVALID_ARGUMENT]: 'INVALID_ARGUMENT',
+    [exports.GrpcStatus.DEADLINE_EXCEEDED]: 'DEADLINE_EXCEEDED',
+    [exports.GrpcStatus.NOT_FOUND]: 'NOT_FOUND',
+    [exports.GrpcStatus.ALREADY_EXISTS]: 'ALREADY_EXISTS',
+    [exports.GrpcStatus.PERMISSION_DENIED]: 'PERMISSION_DENIED',
+    [exports.GrpcStatus.RESOURCE_EXHAUSTED]: 'RESOURCE_EXHAUSTED',
+    [exports.GrpcStatus.FAILED_PRECONDITION]: 'FAILED_PRECONDITION',
+    [exports.GrpcStatus.ABORTED]: 'ABORTED',
+    [exports.GrpcStatus.OUT_OF_RANGE]: 'OUT_OF_RANGE',
+    [exports.GrpcStatus.UNIMPLEMENTED]: 'UNIMPLEMENTED',
+    [exports.GrpcStatus.INTERNAL]: 'INTERNAL',
+    [exports.GrpcStatus.UNAVAILABLE]: 'UNAVAILABLE',
+    [exports.GrpcStatus.DATA_LOSS]: 'DATA_LOSS',
+    [exports.GrpcStatus.UNAUTHENTICATED]: 'UNAUTHENTICATED',
+};
+/**
+ * Get human-readable name for a gRPC status code.
+ */
+function getStatusName(code) {
+    return exports.GrpcStatusName[code] ?? 'UNKNOWN';
+}
+//# sourceMappingURL=index.js.map

package/dist/index.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"index.js","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":";AAAA;;;;;;;;;;;;;;GAcG;;;AA4DH,4CAuCC;AAOD,4CAuCC;AAuCD,0CAEC;AAmBD,0CAOC;AAuBD,gEAWC;AAKD,oDAMC;AAmBD,kDAMC;AAKD,kDAMC;AA4BD,sCAEC;AAjUY,QAAA,sBAAsB,GAAG,QAAiB,CAAC;AAExD;;;GAGG;AACU,QAAA,UAAU,GAAG;IACxB,cAAc;IACd,EAAE,EAAE,CAAC;IACL,8BAA8B;IAC9B,SAAS,EAAE,CAAC;IACZ,oBAAoB;IACpB,OAAO,EAAE,CAAC;IACV,wCAAwC;IACxC,gBAAgB,EAAE,CAAC;IACnB,kDAAkD;IAClD,iBAAiB,EAAE,CAAC;IACpB,iCAAiC;IACjC,SAAS,EAAE,CAAC;IACZ,4BAA4B;IAC5B,cAAc,EAAE,CAAC;IACjB,8BAA8B;IAC9B,iBAAiB,EAAE,CAAC;IACpB,yBAAyB;IACzB,kBAAkB,EAAE,CAAC;IACrB,6CAA6C;IAC7C,mBAAmB,EAAE,CAAC;IACtB,mCAAmC;IACnC,OAAO,EAAE,EAAE;IACX,yBAAyB;IACzB,YAAY,EAAE,EAAE;IAChB,gCAAgC;IAChC,aAAa,EAAE,EAAE;IACjB,qBAAqB;IACrB,QAAQ,EAAE,EAAE;IACZ,0BAA0B;IAC1B,WAAW,EAAE,EAAE;IACf,gBAAgB;IAChB,SAAS,EAAE,EAAE;IACb,wBAAwB;IACxB,eAAe,EAAE,EAAE;CACX,CAAC;AAIX;;;;;;;;;;;;GAYG;AACH,SAAgB,gBAAgB,CAAC,UAAkB;IACjD,QAAQ,UAAU,EAAE,CAAC;QACnB,KAAK,GAAG,CAAC;QACT,KAAK,GAAG,CAAC;QACT,KAAK,GAAG;YACN,OAAO,kBAAU,CAAC,EAAE,CAAC;QACvB,KAAK,GAAG;YACN,OAAO,kBAAU,CAAC,gBAAgB,CAAC;QACrC,KAAK,GAAG;YACN,OAAO,kBAAU,CAAC,eAAe,CAAC;QACpC,KAAK,GAAG;YACN,OAAO,kBAAU,CAAC,mBAAmB,CAAC;QACxC,KAAK,GAAG;YACN,OAAO,kBAAU,CAAC,iBAAiB,CAAC;QACtC,KAAK,GAAG;YACN,OAAO,kBAAU,CAAC,SAAS,CAAC;QAC9B,KAAK,GAAG;YACN,OAAO,kBAAU,CAAC,OAAO,CAAC;QAC5B,KAAK,GAAG;YACN,OAAO,kBAAU,CAAC,kBAAkB,CAAC;QACvC,KAAK,GAAG;YACN,OAAO,kBAAU,CAAC,SAAS,CAAC;QAC9B,KAAK,GAAG;YACN,OAAO,kBAAU,CAAC,QAAQ,CAAC;QAC7B,KAAK,GAAG;YACN,OAAO,kBAAU,CAAC,aAAa,CAAC;QAClC,KAAK,GAAG;YACN,OAAO,kBAAU,CAAC,WAAW,CAAC;QAChC,KAAK,GAAG;YACN,OAAO,kBAAU,CAAC,iBAAiB,CAAC;QACtC;YACE,IAAI,UAAU,IAAI,GAAG,IAAI,UAAU,GAAG,GAAG,EAAE,CAAC;gBAC1C,OAAO,kBAAU,CAAC,gBAAgB,CAAC;YACrC,CAAC;YACD,IAAI,UAAU,IAAI,GAAG,EAAE,CAAC;gBACtB,OAAO,kBAAU,CAAC,QAAQ,CAAC;YAC7B,CAAC;YACD,OAAO,kBAAU,CAAC,EAAE,CAAC;IACzB,CAAC;AACH,CAAC;AAED;;;;GAIG;AACH,SAAgB,gBAAgB,CAAC,UAA0B;IACzD,QAAQ,UAAU,EAAE,CAAC;QACnB,KAAK,kBAAU,CAAC,EAAE;YAChB,OAAO,GAAG,CAAC;QACb,KAAK,kBAAU,CAAC,SAAS;YACvB,OAAO,GAAG,CAAC;QACb,KAAK,kBAAU,CAAC,OAAO;YACrB,OAAO,GAAG,CAAC;QACb,KAAK,kBAAU,CAAC,gBAAgB;YAC9B,OAAO,GAAG,CAAC;QACb,KAAK,kBAAU,CAAC,iBAAiB;YAC/B,OAAO,GAAG,CAAC;QACb,KAAK,kBAAU,CAAC,SAAS;YACvB,OAAO,GAAG,CAAC;QACb,KAAK,kBAAU,CAAC,cAAc;YAC5B,OAAO,GAAG,CAAC;QACb,KAAK,kBAAU,CAAC,iBAAiB;YAC/B,OAAO,GAAG,CAAC;QACb,KAAK,kBAAU,CAAC,kBAAkB;YAChC,OAAO,GAAG,CAAC;QACb,KAAK,kBAAU,CAAC,mBAAmB;YACjC,OAAO,GAAG,CAAC;QACb,KAAK,kBAAU,CAAC,OAAO;YACrB,OAAO,GAAG,CAAC;QACb,KAAK,kBAAU,CAAC,YAAY;YAC1B,OAAO,GAAG,CAAC;QACb,KAAK,kBAAU,CAAC,aAAa;YAC3B,OAAO,GAAG,CAAC;QACb,KAAK,kBAAU,CAAC,QAAQ;YACtB,OAAO,GAAG,CAAC;QACb,KAAK,kBAAU,CAAC,WAAW;YACzB,OAAO,GAAG,CAAC;QACb,KAAK,kBAAU,CAAC,SAAS;YACvB,OAAO,GAAG,CAAC;QACb,KAAK,kBAAU,CAAC,eAAe;YAC7B,OAAO,GAAG,CAAC;QACb;YACE,OAAO,GAAG,CAAC;IACf,CAAC;AACH,CAAC;AAED;;;;GAIG;AACU,QAAA,kBAAkB,GAAmC;IAChE,8CAA8C;IAC9C,iBAAiB,EAAE,kBAAU,CAAC,mBAAmB;IACjD,iBAAiB,EAAE,kBAAU,CAAC,mBAAmB;IACjD,iBAAiB,EAAE,kBAAU,CAAC,mBAAmB;IAEjD,yCAAyC;IACzC,uBAAuB,EAAE,kBAAU,CAAC,eAAe;IACnD,uBAAuB,EAAE,kBAAU,CAAC,eAAe;IACnD,kBAAkB,EAAE,kBAAU,CAAC,eAAe;IAC9C,mBAAmB,EAAE,kBAAU,CAAC,eAAe;IAC/C,gCAAgC,EAAE,kBAAU,CAAC,eAAe;IAE5D,sCAAsC;IACtC,sBAAsB,EAAE,kBAAU,CAAC,gBAAgB;IACnD,iBAAiB,EAAE,kBAAU,CAAC,gBAAgB;IAC9C,uBAAuB,EAAE,kBAAU,CAAC,gBAAgB;IAEpD,qCAAqC;IACrC,oBAAoB,EAAE,kBAAU,CAAC,iBAAiB;IAElD,0BAA0B;IAC1B,kBAAkB,EAAE,kBAAU,CAAC,OAAO;IAEtC,2BAA2B;IAC3B,kCAAkC,EAAE,kBAAU,CAAC,QAAQ;IACvD,gBAAgB,EAAE,kBAAU,CAAC,QAAQ;CACtC,CAAC;AAEF;;GAEG;AACH,SAAgB,eAAe,CAAC,SAAiB;IAC/C,OAAO,0BAAkB,CAAC,SAAS,CAAC,IAAI,kBAAU,CAAC,QAAQ,CAAC;AAC9D,CAAC;AAgBD;;GAEG;AACH,SAAgB,eAAe,CAAC,QAAgB,EAAE,OAAe,EAAE,OAAiB;IAClF,OAAO;QACL,IAAI,EAAE,eAAe,CAAC,QAAQ,CAAC;QAC/B,OAAO;QACP,QAAQ;QACR,OAAO;KACR,CAAC;AACJ,CAAC;AAED;;GAEG;AACU,QAAA,gBAAgB,GAAG;IAC9B,+BAA+B;IAC/B,OAAO,EAAE,cAAc;IACvB,wBAAwB;IACxB,YAAY,EAAE,mBAAmB;IACjC,oBAAoB;IACpB,aAAa,EAAE,oBAAoB;IACnC,0BAA0B;IAC1B,mBAAmB,EAAE,0BAA0B;IAC/C,iCAAiC;IACjC,UAAU,EAAE,iBAAiB;IAC7B,6BAA6B;IAC7B,UAAU,EAAE,iBAAiB;CACrB,CAAC;AAEX;;GAEG;AACH,SAAgB,0BAA0B,CACxC,QAAuD;IAEvD,MAAM,OAAO,GAAG,QAAQ,CAAC,wBAAgB,CAAC,OAAO,CAAC,CAAC;IACnD,IAAI,OAAO,OAAO,KAAK,QAAQ,EAAE,CAAC;QAChC,OAAO,OAAO,CAAC;IACjB,CAAC;IACD,IAAI,KAAK,CAAC,OAAO,CAAC,OAAO,CAAC,IAAI,OAAO,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;QACjD,OAAO,OAAO,CAAC,CAAC,CAAC,CAAC;IACpB,CAAC;IACD,OAAO,IAAI,CAAC;AACd,CAAC;AAED;;GAEG;AACH,SAAgB,oBAAoB,CAClC,QAA2C,EAC3C,UAAkB;IAElB,QAAQ,CAAC,wBAAgB,CAAC,OAAO,CAAC,GAAG,UAAU,CAAC;IAChD,QAAQ,CAAC,wBAAgB,CAAC,YAAY,CAAC,GAAG,kBAAkB,CAAC;AAC/D,CAAC;AAgBD;;GAEG;AACH,SAAgB,mBAAmB,CAAC,SAAkB;IACpD,OAAO;QACL,EAAE,EAAE,IAAI;QACR,MAAM,EAAE,kBAAU,CAAC,EAAE;QACrB,SAAS;KACV,CAAC;AACJ,CAAC;AAED;;GAEG;AACH,SAAgB,mBAAmB,CAAC,KAAgB;IAClD,OAAO;QACL,EAAE,EAAE,KAAK;QACT,MAAM,EAAE,KAAK,CAAC,IAAI;QAClB,KAAK;KACN,CAAC;AACJ,CAAC;AAED;;GAEG;AACU,QAAA,cAAc,GAAmC;IAC5D,CAAC,kBAAU,CAAC,EAAE,CAAC,EAAE,IAAI;IACrB,CAAC,kBAAU,CAAC,SAAS,CAAC,EAAE,WAAW;IACnC,CAAC,kBAAU,CAAC,OAAO,CAAC,EAAE,SAAS;IAC/B,CAAC,kBAAU,CAAC,gBAAgB,CAAC,EAAE,kBAAkB;IACjD,CAAC,kBAAU,CAAC,iBAAiB,CAAC,EAAE,mBAAmB;IACnD,CAAC,kBAAU,CAAC,SAAS,CAAC,EAAE,WAAW;IACnC,CAAC,kBAAU,CAAC,cAAc,CAAC,EAAE,gBAAgB;IAC7C,CAAC,kBAAU,CAAC,iBAAiB,CAAC,EAAE,mBAAmB;IACnD,CAAC,kBAAU,CAAC,kBAAkB,CAAC,EAAE,oBAAoB;IACrD,CAAC,kBAAU,CAAC,mBAAmB,CAAC,EAAE,qBAAqB;IACvD,CAAC,kBAAU,CAAC,OAAO,CAAC,EAAE,SAAS;IAC/B,CAAC,kBAAU,CAAC,YAAY,CAAC,EAAE,cAAc;IACzC,CAAC,kBAAU,CAAC,aAAa,CAAC,EAAE,eAAe;IAC3C,CAAC,kBAAU,CAAC,QAAQ,CAAC,EAAE,UAAU;IACjC,CAAC,kBAAU,CAAC,WAAW,CAAC,EAAE,aAAa;IACvC,CAAC,kBAAU,CAAC,SAAS,CAAC,EAAE,WAAW;IACnC,CAAC,kBAAU,CAAC,eAAe,CAAC,EAAE,iBAAiB;CAChD,CAAC;AAEF;;GAEG;AACH,SAAgB,aAAa,CAAC,IAAoB;IAChD,OAAO,sBAAc,CAAC,IAAI,CAAC,IAAI,SAAS,CAAC;AAC3C,CAAC"}

package/dist/index.mjs ADDED Viewed

@@ -0,0 +1,304 @@
+import { WIRE_02_JWS_TYP } from '@peac/kernel';
+import { createHash } from 'crypto';
+import { validateCarrierConstraints } from '@peac/schema';
+// src/metadata.ts
+var GrpcMetadataKeys = {
+  /** PEAC receipt in metadata */
+  RECEIPT: "peac-receipt",
+  /** PEAC receipt type */
+  RECEIPT_TYPE: "peac-receipt-type",
+  /** TAP signature */
+  TAP_SIGNATURE: "peac-tap-signature",
+  /** TAP signature input */
+  TAP_SIGNATURE_INPUT: "peac-tap-signature-input",
+  /** PEAC error code in trailer */
+  ERROR_CODE: "peac-error-code",
+  /** Request ID for tracing */
+  REQUEST_ID: "peac-request-id"
+};
+function extractReceiptFromMetadata(metadata) {
+  const receipt = metadata[GrpcMetadataKeys.RECEIPT];
+  if (typeof receipt === "string") {
+    return receipt;
+  }
+  if (Array.isArray(receipt) && receipt.length > 0) {
+    return receipt[0];
+  }
+  return null;
+}
+function extractReceiptTypeFromMetadata(metadata) {
+  const typ = metadata[GrpcMetadataKeys.RECEIPT_TYPE];
+  if (typeof typ === "string") {
+    return typ;
+  }
+  if (Array.isArray(typ) && typ.length > 0) {
+    return typ[0];
+  }
+  return null;
+}
+function addReceiptToMetadata(metadata, receiptJws, receiptType = WIRE_02_JWS_TYP) {
+  metadata[GrpcMetadataKeys.RECEIPT] = receiptJws;
+  metadata[GrpcMetadataKeys.RECEIPT_TYPE] = receiptType;
+}
+var GRPC_MAX_CARRIER_SIZE = 8192;
+var BINARY_SUFFIX = "-bin";
+var A2AGrpcCarrierAdapter = class {
+  /**
+   * Extract PEAC evidence carrier from gRPC metadata.
+   *
+   * Computes the real SHA-256 receipt_ref from the JWS bytes using
+   * Node's synchronous crypto.createHash (server-first package).
+   * Rejects binary metadata keys (gRPC `-bin` suffix convention).
+   *
+   * @returns Extracted carrier with computed receipt_ref, or null if absent
+   */
+  extract(input) {
+    const binaryReceiptKey = GrpcMetadataKeys.RECEIPT + BINARY_SUFFIX;
+    if (binaryReceiptKey in input) {
+      return null;
+    }
+    const receiptJws = extractReceiptFromMetadata(input);
+    if (!receiptJws) return null;
+    const digest = createHash("sha256").update(receiptJws).digest("hex");
+    const receiptRef = `sha256:${digest}`;
+    const carrier = {
+      receipt_ref: receiptRef,
+      receipt_jws: receiptJws
+    };
+    return {
+      receipts: [carrier],
+      meta: createGrpcCarrierMeta()
+    };
+  }
+  attach(output, carriers, meta) {
+    if (carriers.length === 0) return output;
+    const carrier = carriers[0];
+    const effectiveMeta = meta ?? createGrpcCarrierMeta();
+    const result = this.validateConstraints(carrier, effectiveMeta);
+    if (!result.valid) {
+      throw new Error(`Carrier constraint violation: ${result.violations.join("; ")}`);
+    }
+    if (carrier.receipt_jws) {
+      addReceiptToMetadata(output, carrier.receipt_jws);
+    }
+    return output;
+  }
+  validateConstraints(carrier, meta) {
+    return validateCarrierConstraints(carrier, meta);
+  }
+};
+function createGrpcCarrierMeta(overrides) {
+  return {
+    transport: "grpc",
+    format: "embed",
+    max_size: GRPC_MAX_CARRIER_SIZE,
+    ...overrides
+  };
+}
+function validateOwnMetadataKeys() {
+  const ASCII_KEY_REGEX = /^[a-z0-9_-]+$/;
+  const RESERVED_PREFIX = "grpc-";
+  const invalid = [];
+  for (const key of Object.values(GrpcMetadataKeys)) {
+    if (!ASCII_KEY_REGEX.test(key)) {
+      invalid.push(key);
+    } else if (key.startsWith(RESERVED_PREFIX)) {
+      invalid.push(key);
+    }
+  }
+  return invalid;
+}
+// src/index.ts
+var GRPC_TRANSPORT_VERSION = "0.12.6";
+var GrpcStatus = {
+  /** Success */
+  OK: 0,
+  /** Operation was cancelled */
+  CANCELLED: 1,
+  /** Unknown error */
+  UNKNOWN: 2,
+  /** Client specified invalid argument */
+  INVALID_ARGUMENT: 3,
+  /** Deadline expired before operation completed */
+  DEADLINE_EXCEEDED: 4,
+  /** Requested entity not found */
+  NOT_FOUND: 5,
+  /** Entity already exists */
+  ALREADY_EXISTS: 6,
+  /** Caller lacks permission */
+  PERMISSION_DENIED: 7,
+  /** Resource exhausted */
+  RESOURCE_EXHAUSTED: 8,
+  /** Operation rejected due to precondition */
+  FAILED_PRECONDITION: 9,
+  /** Operation aborted (conflict) */
+  ABORTED: 10,
+  /** Value out of range */
+  OUT_OF_RANGE: 11,
+  /** Operation not implemented */
+  UNIMPLEMENTED: 12,
+  /** Internal error */
+  INTERNAL: 13,
+  /** Service unavailable */
+  UNAVAILABLE: 14,
+  /** Data loss */
+  DATA_LOSS: 15,
+  /** Not authenticated */
+  UNAUTHENTICATED: 16
+};
+function httpStatusToGrpc(httpStatus) {
+  switch (httpStatus) {
+    case 200:
+    case 201:
+    case 204:
+      return GrpcStatus.OK;
+    case 400:
+      return GrpcStatus.INVALID_ARGUMENT;
+    case 401:
+      return GrpcStatus.UNAUTHENTICATED;
+    case 402:
+      return GrpcStatus.FAILED_PRECONDITION;
+    case 403:
+      return GrpcStatus.PERMISSION_DENIED;
+    case 404:
+      return GrpcStatus.NOT_FOUND;
+    case 409:
+      return GrpcStatus.ABORTED;
+    case 429:
+      return GrpcStatus.RESOURCE_EXHAUSTED;
+    case 499:
+      return GrpcStatus.CANCELLED;
+    case 500:
+      return GrpcStatus.INTERNAL;
+    case 501:
+      return GrpcStatus.UNIMPLEMENTED;
+    case 503:
+      return GrpcStatus.UNAVAILABLE;
+    case 504:
+      return GrpcStatus.DEADLINE_EXCEEDED;
+    default:
+      if (httpStatus >= 400 && httpStatus < 500) {
+        return GrpcStatus.INVALID_ARGUMENT;
+      }
+      if (httpStatus >= 500) {
+        return GrpcStatus.INTERNAL;
+      }
+      return GrpcStatus.OK;
+  }
+}
+function grpcStatusToHttp(grpcStatus) {
+  switch (grpcStatus) {
+    case GrpcStatus.OK:
+      return 200;
+    case GrpcStatus.CANCELLED:
+      return 499;
+    case GrpcStatus.UNKNOWN:
+      return 500;
+    case GrpcStatus.INVALID_ARGUMENT:
+      return 400;
+    case GrpcStatus.DEADLINE_EXCEEDED:
+      return 504;
+    case GrpcStatus.NOT_FOUND:
+      return 404;
+    case GrpcStatus.ALREADY_EXISTS:
+      return 409;
+    case GrpcStatus.PERMISSION_DENIED:
+      return 403;
+    case GrpcStatus.RESOURCE_EXHAUSTED:
+      return 429;
+    case GrpcStatus.FAILED_PRECONDITION:
+      return 402;
+    case GrpcStatus.ABORTED:
+      return 409;
+    case GrpcStatus.OUT_OF_RANGE:
+      return 400;
+    case GrpcStatus.UNIMPLEMENTED:
+      return 501;
+    case GrpcStatus.INTERNAL:
+      return 500;
+    case GrpcStatus.UNAVAILABLE:
+      return 503;
+    case GrpcStatus.DATA_LOSS:
+      return 500;
+    case GrpcStatus.UNAUTHENTICATED:
+      return 401;
+    default:
+      return 500;
+  }
+}
+var PEAC_ERROR_TO_GRPC = {
+  // 402 Payment Required -> FAILED_PRECONDITION
+  E_RECEIPT_MISSING: GrpcStatus.FAILED_PRECONDITION,
+  E_RECEIPT_INVALID: GrpcStatus.FAILED_PRECONDITION,
+  E_RECEIPT_EXPIRED: GrpcStatus.FAILED_PRECONDITION,
+  // 401 Unauthenticated -> UNAUTHENTICATED
+  E_TAP_SIGNATURE_MISSING: GrpcStatus.UNAUTHENTICATED,
+  E_TAP_SIGNATURE_INVALID: GrpcStatus.UNAUTHENTICATED,
+  E_TAP_TIME_INVALID: GrpcStatus.UNAUTHENTICATED,
+  E_TAP_KEY_NOT_FOUND: GrpcStatus.UNAUTHENTICATED,
+  E_TAP_REPLAY_PROTECTION_REQUIRED: GrpcStatus.UNAUTHENTICATED,
+  // 400 Bad Request -> INVALID_ARGUMENT
+  E_TAP_WINDOW_TOO_LARGE: GrpcStatus.INVALID_ARGUMENT,
+  E_TAP_TAG_UNKNOWN: GrpcStatus.INVALID_ARGUMENT,
+  E_TAP_ALGORITHM_INVALID: GrpcStatus.INVALID_ARGUMENT,
+  // 403 Forbidden -> PERMISSION_DENIED
+  E_ISSUER_NOT_ALLOWED: GrpcStatus.PERMISSION_DENIED,
+  // 409 Conflict -> ABORTED
+  E_TAP_NONCE_REPLAY: GrpcStatus.ABORTED,
+  // 500 Internal -> INTERNAL
+  E_CONFIG_ISSUER_ALLOWLIST_REQUIRED: GrpcStatus.INTERNAL,
+  E_INTERNAL_ERROR: GrpcStatus.INTERNAL
+};
+function peacErrorToGrpc(errorCode) {
+  return PEAC_ERROR_TO_GRPC[errorCode] ?? GrpcStatus.INTERNAL;
+}
+function createGrpcError(peacCode, message, details) {
+  return {
+    code: peacErrorToGrpc(peacCode),
+    message,
+    peacCode,
+    details
+  };
+}
+function createSuccessResult(receiptId) {
+  return {
+    ok: true,
+    status: GrpcStatus.OK,
+    receiptId
+  };
+}
+function createFailureResult(error) {
+  return {
+    ok: false,
+    status: error.code,
+    error
+  };
+}
+var GrpcStatusName = {
+  [GrpcStatus.OK]: "OK",
+  [GrpcStatus.CANCELLED]: "CANCELLED",
+  [GrpcStatus.UNKNOWN]: "UNKNOWN",
+  [GrpcStatus.INVALID_ARGUMENT]: "INVALID_ARGUMENT",
+  [GrpcStatus.DEADLINE_EXCEEDED]: "DEADLINE_EXCEEDED",
+  [GrpcStatus.NOT_FOUND]: "NOT_FOUND",
+  [GrpcStatus.ALREADY_EXISTS]: "ALREADY_EXISTS",
+  [GrpcStatus.PERMISSION_DENIED]: "PERMISSION_DENIED",
+  [GrpcStatus.RESOURCE_EXHAUSTED]: "RESOURCE_EXHAUSTED",
+  [GrpcStatus.FAILED_PRECONDITION]: "FAILED_PRECONDITION",
+  [GrpcStatus.ABORTED]: "ABORTED",
+  [GrpcStatus.OUT_OF_RANGE]: "OUT_OF_RANGE",
+  [GrpcStatus.UNIMPLEMENTED]: "UNIMPLEMENTED",
+  [GrpcStatus.INTERNAL]: "INTERNAL",
+  [GrpcStatus.UNAVAILABLE]: "UNAVAILABLE",
+  [GrpcStatus.DATA_LOSS]: "DATA_LOSS",
+  [GrpcStatus.UNAUTHENTICATED]: "UNAUTHENTICATED"
+};
+function getStatusName(code) {
+  return GrpcStatusName[code] ?? "UNKNOWN";
+}
+export { A2AGrpcCarrierAdapter, GRPC_MAX_CARRIER_SIZE, GRPC_TRANSPORT_VERSION, GrpcMetadataKeys, GrpcStatus, GrpcStatusName, PEAC_ERROR_TO_GRPC, addReceiptToMetadata, createFailureResult, createGrpcCarrierMeta, createGrpcError, createSuccessResult, extractReceiptFromMetadata, extractReceiptTypeFromMetadata, getStatusName, grpcStatusToHttp, httpStatusToGrpc, peacErrorToGrpc, validateOwnMetadataKeys };
+//# sourceMappingURL=index.mjs.map
+//# sourceMappingURL=index.mjs.map

package/dist/index.mjs.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"sources":["../src/metadata.ts","../src/a2a-carrier.ts","../src/index.ts"],"names":[],"mappings":";;;;;AAuBO,IAAM,gBAAA,GAAmB;AAAA;AAAA,EAE9B,OAAA,EAAS,cAAA;AAAA;AAAA,EAET,YAAA,EAAc,mBAAA;AAAA;AAAA,EAEd,aAAA,EAAe,oBAAA;AAAA;AAAA,EAEf,mBAAA,EAAqB,0BAAA;AAAA;AAAA,EAErB,UAAA,EAAY,iBAAA;AAAA;AAAA,EAEZ,UAAA,EAAY;AACd;AASO,SAAS,2BAA2B,QAAA,EAA2C;AACpF,EAAA,MAAM,OAAA,GAAU,QAAA,CAAS,gBAAA,CAAiB,OAAO,CAAA;AACjD,EAAA,IAAI,OAAO,YAAY,QAAA,EAAU;AAC/B,IAAA,OAAO,OAAA;AAAA,EACT;AACA,EAAA,IAAI,MAAM,OAAA,CAAQ,OAAO,CAAA,IAAK,OAAA,CAAQ,SAAS,CAAA,EAAG;AAChD,IAAA,OAAO,QAAQ,CAAC,CAAA;AAAA,EAClB;AACA,EAAA,OAAO,IAAA;AACT;AAKO,SAAS,+BAA+B,QAAA,EAA2C;AACxF,EAAA,MAAM,GAAA,GAAM,QAAA,CAAS,gBAAA,CAAiB,YAAY,CAAA;AAClD,EAAA,IAAI,OAAO,QAAQ,QAAA,EAAU;AAC3B,IAAA,OAAO,GAAA;AAAA,EACT;AACA,EAAA,IAAI,MAAM,OAAA,CAAQ,GAAG,CAAA,IAAK,GAAA,CAAI,SAAS,CAAA,EAAG;AACxC,IAAA,OAAO,IAAI,CAAC,CAAA;AAAA,EACd;AACA,EAAA,OAAO,IAAA;AACT;AASO,SAAS,oBAAA,CACd,QAAA,EACA,UAAA,EACA,WAAA,GAAsB,eAAA,EAChB;AACN,EAAA,QAAA,CAAS,gBAAA,CAAiB,OAAO,CAAA,GAAI,UAAA;AACrC,EAAA,QAAA,CAAS,gBAAA,CAAiB,YAAY,CAAA,GAAI,WAAA;AAC5C;AC5CO,IAAM,qBAAA,GAAwB;AAGrC,IAAM,aAAA,GAAgB,MAAA;AAef,IAAM,wBAAN,MAA0F;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAU/F,QAAQ,KAAA,EAAwF;AAE9F,IAAA,MAAM,gBAAA,GAAmB,iBAAiB,OAAA,GAAU,aAAA;AACpD,IAAA,IAAI,oBAAoB,KAAA,EAAO;AAC7B,MAAA,OAAO,IAAA;AAAA,IACT;AAEA,IAAA,MAAM,UAAA,GAAa,2BAA2B,KAAK,CAAA;AACnD,IAAA,IAAI,CAAC,YAAY,OAAO,IAAA;AAExB,IAAA,MAAM,MAAA,GAAS,WAAW,QAAQ,CAAA,CAAE,OAAO,UAAU,CAAA,CAAE,OAAO,KAAK,CAAA;AACnE,IAAA,MAAM,UAAA,GAAa,UAAU,MAAM,CAAA,CAAA;AAEnC,IAAA,MAAM,OAAA,GAA+B;AAAA,MACnC,WAAA,EAAa,UAAA;AAAA,MACb,WAAA,EAAa;AAAA,KACf;AAEA,IAAA,OAAO;AAAA,MACL,QAAA,EAAU,CAAC,OAAO,CAAA;AAAA,MAClB,MAAM,qBAAA;AAAsB,KAC9B;AAAA,EACF;AAAA,EAEA,MAAA,CACE,MAAA,EACA,QAAA,EACA,IAAA,EACkB;AAClB,IAAA,IAAI,QAAA,CAAS,MAAA,KAAW,CAAA,EAAG,OAAO,MAAA;AAElC,IAAA,MAAM,OAAA,GAAU,SAAS,CAAC,CAAA;AAC1B,IAAA,MAAM,aAAA,GAAgB,QAAQ,qBAAA,EAAsB;AACpD,IAAA,MAAM,MAAA,GAAS,IAAA,CAAK,mBAAA,CAAoB,OAAA,EAAS,aAAa,CAAA;AAC9D,IAAA,IAAI,CAAC,OAAO,KAAA,EAAO;AACjB,MAAA,MAAM,IAAI,MAAM,CAAA,8BAAA,EAAiC,MAAA,CAAO,WAAW,IAAA,CAAK,IAAI,CAAC,CAAA,CAAE,CAAA;AAAA,IACjF;AAEA,IAAA,IAAI,QAAQ,WAAA,EAAa;AACvB,MAAA,oBAAA,CAAqB,MAAA,EAA6C,QAAQ,WAAW,CAAA;AAAA,IACvF;AAEA,IAAA,OAAO,MAAA;AAAA,EACT;AAAA,EAEA,mBAAA,CAAoB,SAA8B,IAAA,EAA4C;AAC5F,IAAA,OAAO,0BAAA,CAA2B,SAAS,IAAI,CAAA;AAAA,EACjD;AACF;AAQO,SAAS,sBAAsB,SAAA,EAA+C;AACnF,EAAA,OAAO;AAAA,IACL,SAAA,EAAW,MAAA;AAAA,IACX,MAAA,EAAQ,OAAA;AAAA,IACR,QAAA,EAAU,qBAAA;AAAA,IACV,GAAG;AAAA,GACL;AACF;AAcO,SAAS,uBAAA,GAAoC;AAClD,EAAA,MAAM,eAAA,GAAkB,eAAA;AACxB,EAAA,MAAM,eAAA,GAAkB,OAAA;AACxB,EAAA,MAAM,UAAoB,EAAC;AAC3B,EAAA,KAAA,MAAW,GAAA,IAAO,MAAA,CAAO,MAAA,CAAO,gBAAgB,CAAA,EAAG;AACjD,IAAA,IAAI,CAAC,eAAA,CAAgB,IAAA,CAAK,GAAG,CAAA,EAAG;AAC9B,MAAA,OAAA,CAAQ,KAAK,GAAG,CAAA;AAAA,IAClB,CAAA,MAAA,IAAW,GAAA,CAAI,UAAA,CAAW,eAAe,CAAA,EAAG;AAC1C,MAAA,OAAA,CAAQ,KAAK,GAAG,CAAA;AAAA,IAClB;AAAA,EACF;AACA,EAAA,OAAO,OAAA;AACT;;;AC7IO,IAAM,sBAAA,GAAyB;AAe/B,IAAM,UAAA,GAAa;AAAA;AAAA,EAExB,EAAA,EAAI,CAAA;AAAA;AAAA,EAEJ,SAAA,EAAW,CAAA;AAAA;AAAA,EAEX,OAAA,EAAS,CAAA;AAAA;AAAA,EAET,gBAAA,EAAkB,CAAA;AAAA;AAAA,EAElB,iBAAA,EAAmB,CAAA;AAAA;AAAA,EAEnB,SAAA,EAAW,CAAA;AAAA;AAAA,EAEX,cAAA,EAAgB,CAAA;AAAA;AAAA,EAEhB,iBAAA,EAAmB,CAAA;AAAA;AAAA,EAEnB,kBAAA,EAAoB,CAAA;AAAA;AAAA,EAEpB,mBAAA,EAAqB,CAAA;AAAA;AAAA,EAErB,OAAA,EAAS,EAAA;AAAA;AAAA,EAET,YAAA,EAAc,EAAA;AAAA;AAAA,EAEd,aAAA,EAAe,EAAA;AAAA;AAAA,EAEf,QAAA,EAAU,EAAA;AAAA;AAAA,EAEV,WAAA,EAAa,EAAA;AAAA;AAAA,EAEb,SAAA,EAAW,EAAA;AAAA;AAAA,EAEX,eAAA,EAAiB;AACnB;AAiBO,SAAS,iBAAiB,UAAA,EAAoC;AACnE,EAAA,QAAQ,UAAA;AAAY,IAClB,KAAK,GAAA;AAAA,IACL,KAAK,GAAA;AAAA,IACL,KAAK,GAAA;AACH,MAAA,OAAO,UAAA,CAAW,EAAA;AAAA,IACpB,KAAK,GAAA;AACH,MAAA,OAAO,UAAA,CAAW,gBAAA;AAAA,IACpB,KAAK,GAAA;AACH,MAAA,OAAO,UAAA,CAAW,eAAA;AAAA,IACpB,KAAK,GAAA;AACH,MAAA,OAAO,UAAA,CAAW,mBAAA;AAAA,IACpB,KAAK,GAAA;AACH,MAAA,OAAO,UAAA,CAAW,iBAAA;AAAA,IACpB,KAAK,GAAA;AACH,MAAA,OAAO,UAAA,CAAW,SAAA;AAAA,IACpB,KAAK,GAAA;AACH,MAAA,OAAO,UAAA,CAAW,OAAA;AAAA,IACpB,KAAK,GAAA;AACH,MAAA,OAAO,UAAA,CAAW,kBAAA;AAAA,IACpB,KAAK,GAAA;AACH,MAAA,OAAO,UAAA,CAAW,SAAA;AAAA,IACpB,KAAK,GAAA;AACH,MAAA,OAAO,UAAA,CAAW,QAAA;AAAA,IACpB,KAAK,GAAA;AACH,MAAA,OAAO,UAAA,CAAW,aAAA;AAAA,IACpB,KAAK,GAAA;AACH,MAAA,OAAO,UAAA,CAAW,WAAA;AAAA,IACpB,KAAK,GAAA;AACH,MAAA,OAAO,UAAA,CAAW,iBAAA;AAAA,IACpB;AACE,MAAA,IAAI,UAAA,IAAc,GAAA,IAAO,UAAA,GAAa,GAAA,EAAK;AACzC,QAAA,OAAO,UAAA,CAAW,gBAAA;AAAA,MACpB;AACA,MAAA,IAAI,cAAc,GAAA,EAAK;AACrB,QAAA,OAAO,UAAA,CAAW,QAAA;AAAA,MACpB;AACA,MAAA,OAAO,UAAA,CAAW,EAAA;AAAA;AAExB;AAOO,SAAS,iBAAiB,UAAA,EAAoC;AACnE,EAAA,QAAQ,UAAA;AAAY,IAClB,KAAK,UAAA,CAAW,EAAA;AACd,MAAA,OAAO,GAAA;AAAA,IACT,KAAK,UAAA,CAAW,SAAA;AACd,MAAA,OAAO,GAAA;AAAA,IACT,KAAK,UAAA,CAAW,OAAA;AACd,MAAA,OAAO,GAAA;AAAA,IACT,KAAK,UAAA,CAAW,gBAAA;AACd,MAAA,OAAO,GAAA;AAAA,IACT,KAAK,UAAA,CAAW,iBAAA;AACd,MAAA,OAAO,GAAA;AAAA,IACT,KAAK,UAAA,CAAW,SAAA;AACd,MAAA,OAAO,GAAA;AAAA,IACT,KAAK,UAAA,CAAW,cAAA;AACd,MAAA,OAAO,GAAA;AAAA,IACT,KAAK,UAAA,CAAW,iBAAA;AACd,MAAA,OAAO,GAAA;AAAA,IACT,KAAK,UAAA,CAAW,kBAAA;AACd,MAAA,OAAO,GAAA;AAAA,IACT,KAAK,UAAA,CAAW,mBAAA;AACd,MAAA,OAAO,GAAA;AAAA,IACT,KAAK,UAAA,CAAW,OAAA;AACd,MAAA,OAAO,GAAA;AAAA,IACT,KAAK,UAAA,CAAW,YAAA;AACd,MAAA,OAAO,GAAA;AAAA,IACT,KAAK,UAAA,CAAW,aAAA;AACd,MAAA,OAAO,GAAA;AAAA,IACT,KAAK,UAAA,CAAW,QAAA;AACd,MAAA,OAAO,GAAA;AAAA,IACT,KAAK,UAAA,CAAW,WAAA;AACd,MAAA,OAAO,GAAA;AAAA,IACT,KAAK,UAAA,CAAW,SAAA;AACd,MAAA,OAAO,GAAA;AAAA,IACT,KAAK,UAAA,CAAW,eAAA;AACd,MAAA,OAAO,GAAA;AAAA,IACT;AACE,MAAA,OAAO,GAAA;AAAA;AAEb;AAOO,IAAM,kBAAA,GAAqD;AAAA;AAAA,EAEhE,mBAAmB,UAAA,CAAW,mBAAA;AAAA,EAC9B,mBAAmB,UAAA,CAAW,mBAAA;AAAA,EAC9B,mBAAmB,UAAA,CAAW,mBAAA;AAAA;AAAA,EAG9B,yBAAyB,UAAA,CAAW,eAAA;AAAA,EACpC,yBAAyB,UAAA,CAAW,eAAA;AAAA,EACpC,oBAAoB,UAAA,CAAW,eAAA;AAAA,EAC/B,qBAAqB,UAAA,CAAW,eAAA;AAAA,EAChC,kCAAkC,UAAA,CAAW,eAAA;AAAA;AAAA,EAG7C,wBAAwB,UAAA,CAAW,gBAAA;AAAA,EACnC,mBAAmB,UAAA,CAAW,gBAAA;AAAA,EAC9B,yBAAyB,UAAA,CAAW,gBAAA;AAAA;AAAA,EAGpC,sBAAsB,UAAA,CAAW,iBAAA;AAAA;AAAA,EAGjC,oBAAoB,UAAA,CAAW,OAAA;AAAA;AAAA,EAG/B,oCAAoC,UAAA,CAAW,QAAA;AAAA,EAC/C,kBAAkB,UAAA,CAAW;AAC/B;AAKO,SAAS,gBAAgB,SAAA,EAAmC;AACjE,EAAA,OAAO,kBAAA,CAAmB,SAAS,CAAA,IAAK,UAAA,CAAW,QAAA;AACrD;AAmBO,SAAS,eAAA,CAAgB,QAAA,EAAkB,OAAA,EAAiB,OAAA,EAA8B;AAC/F,EAAA,OAAO;AAAA,IACL,IAAA,EAAM,gBAAgB,QAAQ,CAAA;AAAA,IAC9B,OAAA;AAAA,IACA,QAAA;AAAA,IACA;AAAA,GACF;AACF;AAmBO,SAAS,oBAAoB,SAAA,EAA4C;AAC9E,EAAA,OAAO;AAAA,IACL,EAAA,EAAI,IAAA;AAAA,IACJ,QAAQ,UAAA,CAAW,EAAA;AAAA,IACnB;AAAA,GACF;AACF;AAKO,SAAS,oBAAoB,KAAA,EAA0C;AAC5E,EAAA,OAAO;AAAA,IACL,EAAA,EAAI,KAAA;AAAA,IACJ,QAAQ,KAAA,CAAM,IAAA;AAAA,IACd;AAAA,GACF;AACF;AAKO,IAAM,cAAA,GAAiD;AAAA,EAC5D,CAAC,UAAA,CAAW,EAAE,GAAG,IAAA;AAAA,EACjB,CAAC,UAAA,CAAW,SAAS,GAAG,WAAA;AAAA,EACxB,CAAC,UAAA,CAAW,OAAO,GAAG,SAAA;AAAA,EACtB,CAAC,UAAA,CAAW,gBAAgB,GAAG,kBAAA;AAAA,EAC/B,CAAC,UAAA,CAAW,iBAAiB,GAAG,mBAAA;AAAA,EAChC,CAAC,UAAA,CAAW,SAAS,GAAG,WAAA;AAAA,EACxB,CAAC,UAAA,CAAW,cAAc,GAAG,gBAAA;AAAA,EAC7B,CAAC,UAAA,CAAW,iBAAiB,GAAG,mBAAA;AAAA,EAChC,CAAC,UAAA,CAAW,kBAAkB,GAAG,oBAAA;AAAA,EACjC,CAAC,UAAA,CAAW,mBAAmB,GAAG,qBAAA;AAAA,EAClC,CAAC,UAAA,CAAW,OAAO,GAAG,SAAA;AAAA,EACtB,CAAC,UAAA,CAAW,YAAY,GAAG,cAAA;AAAA,EAC3B,CAAC,UAAA,CAAW,aAAa,GAAG,eAAA;AAAA,EAC5B,CAAC,UAAA,CAAW,QAAQ,GAAG,UAAA;AAAA,EACvB,CAAC,UAAA,CAAW,WAAW,GAAG,aAAA;AAAA,EAC1B,CAAC,UAAA,CAAW,SAAS,GAAG,WAAA;AAAA,EACxB,CAAC,UAAA,CAAW,eAAe,GAAG;AAChC;AAKO,SAAS,cAAc,IAAA,EAA8B;AAC1D,EAAA,OAAO,cAAA,CAAe,IAAI,CAAA,IAAK,SAAA;AACjC","file":"index.mjs","sourcesContent":["/**\n * gRPC metadata keys, types, and helpers for PEAC transport.\n *\n * Extracted to a separate module to avoid circular imports between\n * index.ts and a2a-carrier.ts.\n */\n\nimport { WIRE_02_JWS_TYP } from '@peac/kernel';\n\n// ---------------------------------------------------------------------------\n// Types\n// ---------------------------------------------------------------------------\n\n/** gRPC metadata shape for PEAC carrier operations */\nexport type GrpcMetadataLike = Record<string, string | string[] | undefined>;\n\n// ---------------------------------------------------------------------------\n// Constants\n// ---------------------------------------------------------------------------\n\n/**\n * gRPC metadata keys for PEAC transport.\n */\nexport const GrpcMetadataKeys = {\n /** PEAC receipt in metadata */\n RECEIPT: 'peac-receipt',\n /** PEAC receipt type */\n RECEIPT_TYPE: 'peac-receipt-type',\n /** TAP signature */\n TAP_SIGNATURE: 'peac-tap-signature',\n /** TAP signature input */\n TAP_SIGNATURE_INPUT: 'peac-tap-signature-input',\n /** PEAC error code in trailer */\n ERROR_CODE: 'peac-error-code',\n /** Request ID for tracing */\n REQUEST_ID: 'peac-request-id',\n} as const;\n\n// ---------------------------------------------------------------------------\n// Helpers\n// ---------------------------------------------------------------------------\n\n/**\n * Extract PEAC receipt from gRPC metadata.\n */\nexport function extractReceiptFromMetadata(metadata: GrpcMetadataLike): string | null {\n const receipt = metadata[GrpcMetadataKeys.RECEIPT];\n if (typeof receipt === 'string') {\n return receipt;\n }\n if (Array.isArray(receipt) && receipt.length > 0) {\n return receipt[0];\n }\n return null;\n}\n\n/**\n * Extract receipt type from gRPC metadata.\n */\nexport function extractReceiptTypeFromMetadata(metadata: GrpcMetadataLike): string | null {\n const typ = metadata[GrpcMetadataKeys.RECEIPT_TYPE];\n if (typeof typ === 'string') {\n return typ;\n }\n if (Array.isArray(typ) && typ.length > 0) {\n return typ[0];\n }\n return null;\n}\n\n/**\n * Add PEAC receipt to gRPC metadata.\n *\n * @param metadata - gRPC metadata object to modify\n * @param receiptJws - Compact JWS of the signed receipt\n * @param receiptType - Receipt typ value (defaults to Wire 0.2 `interaction-record+jwt`)\n */\nexport function addReceiptToMetadata(\n metadata: Record<string, string | string[]>,\n receiptJws: string,\n receiptType: string = WIRE_02_JWS_TYP\n): void {\n metadata[GrpcMetadataKeys.RECEIPT] = receiptJws;\n metadata[GrpcMetadataKeys.RECEIPT_TYPE] = receiptType;\n}\n","/**\n * gRPC CarrierAdapter for A2A transport.\n *\n * Implements the PEAC CarrierAdapter interface for gRPC metadata,\n * enabling receipt attach/extract via gRPC metadata keys. Pure TS\n * with no @grpc/grpc-js dependency; consumers bring their own gRPC.\n *\n * Size default: 8 KiB. gRPC metadata rides in HTTP/2 headers where\n * servers commonly enforce an 8 KiB limit. For larger receipts, use\n * reference mode (receipt_url) or negotiate a higher limit with the\n * gRPC server configuration.\n */\n\nimport { createHash } from 'node:crypto';\n\nimport type {\n CarrierAdapter,\n PeacEvidenceCarrier,\n CarrierMeta,\n CarrierValidationResult,\n ReceiptRef,\n} from '@peac/kernel';\nimport { validateCarrierConstraints } from '@peac/schema';\n\nimport { GrpcMetadataKeys, extractReceiptFromMetadata, addReceiptToMetadata } from './metadata.js';\nimport type { GrpcMetadataLike } from './metadata.js';\n\n// ---------------------------------------------------------------------------\n// Constants\n// ---------------------------------------------------------------------------\n\n/**\n * Default maximum carrier size for gRPC metadata (8 KiB).\n *\n * gRPC metadata is carried in HTTP/2 headers. Official gRPC guidance\n * warns that servers may limit request headers, with a common default\n * of 8 KiB. This is a conservative interoperability-safe default.\n * Consumers with known larger server limits can override via\n * `createGrpcCarrierMeta({ max_size: ... })`.\n */\nexport const GRPC_MAX_CARRIER_SIZE = 8_192;\n\n/** Binary metadata key suffix per gRPC convention */\nconst BINARY_SUFFIX = '-bin';\n\n// ---------------------------------------------------------------------------\n// Public API\n// ---------------------------------------------------------------------------\n\n/**\n * CarrierAdapter for gRPC metadata transport.\n *\n * Reads and writes PEAC evidence carriers via `GrpcMetadataKeys.RECEIPT`\n * and `GrpcMetadataKeys.RECEIPT_TYPE` metadata entries.\n *\n * `extract()` computes the real SHA-256 receipt_ref synchronously\n * using Node's `crypto.createHash` (server-first package).\n */\nexport class A2AGrpcCarrierAdapter implements CarrierAdapter<GrpcMetadataLike, GrpcMetadataLike> {\n /**\n * Extract PEAC evidence carrier from gRPC metadata.\n *\n * Computes the real SHA-256 receipt_ref from the JWS bytes using\n * Node's synchronous crypto.createHash (server-first package).\n * Rejects binary metadata keys (gRPC `-bin` suffix convention).\n *\n * @returns Extracted carrier with computed receipt_ref, or null if absent\n */\n extract(input: GrpcMetadataLike): { receipts: PeacEvidenceCarrier[]; meta: CarrierMeta } | null {\n // Reject binary-encoded PEAC receipt metadata\n const binaryReceiptKey = GrpcMetadataKeys.RECEIPT + BINARY_SUFFIX;\n if (binaryReceiptKey in input) {\n return null;\n }\n\n const receiptJws = extractReceiptFromMetadata(input);\n if (!receiptJws) return null;\n\n const digest = createHash('sha256').update(receiptJws).digest('hex');\n const receiptRef = `sha256:${digest}` as ReceiptRef;\n\n const carrier: PeacEvidenceCarrier = {\n receipt_ref: receiptRef,\n receipt_jws: receiptJws,\n };\n\n return {\n receipts: [carrier],\n meta: createGrpcCarrierMeta(),\n };\n }\n\n attach(\n output: GrpcMetadataLike,\n carriers: PeacEvidenceCarrier[],\n meta?: CarrierMeta\n ): GrpcMetadataLike {\n if (carriers.length === 0) return output;\n\n const carrier = carriers[0];\n const effectiveMeta = meta ?? createGrpcCarrierMeta();\n const result = this.validateConstraints(carrier, effectiveMeta);\n if (!result.valid) {\n throw new Error(`Carrier constraint violation: ${result.violations.join('; ')}`);\n }\n\n if (carrier.receipt_jws) {\n addReceiptToMetadata(output as Record<string, string | string[]>, carrier.receipt_jws);\n }\n\n return output;\n }\n\n validateConstraints(carrier: PeacEvidenceCarrier, meta: CarrierMeta): CarrierValidationResult {\n return validateCarrierConstraints(carrier, meta);\n }\n}\n\n/**\n * Create default CarrierMeta for gRPC transport.\n *\n * Default max_size is 8 KiB (HTTP/2 header budget). Override for\n * environments with known larger server limits.\n */\nexport function createGrpcCarrierMeta(overrides?: Partial<CarrierMeta>): CarrierMeta {\n return {\n transport: 'grpc',\n format: 'embed',\n max_size: GRPC_MAX_CARRIER_SIZE,\n ...overrides,\n };\n}\n\n/**\n * Validate that the package's own PEAC metadata key constants are ASCII-safe\n * and do not use the reserved `grpc-` prefix.\n *\n * This is a repo-level invariant check, not an inbound metadata validator.\n * It verifies that all keys defined in `GrpcMetadataKeys` use only\n * lowercase ASCII letters, digits, hyphens, and underscores per\n * gRPC metadata key requirements, and that none start with the\n * reserved `grpc-` prefix.\n *\n * @returns Array of invalid keys (empty if all valid)\n */\nexport function validateOwnMetadataKeys(): string[] {\n const ASCII_KEY_REGEX = /^[a-z0-9_-]+$/;\n const RESERVED_PREFIX = 'grpc-';\n const invalid: string[] = [];\n for (const key of Object.values(GrpcMetadataKeys)) {\n if (!ASCII_KEY_REGEX.test(key)) {\n invalid.push(key);\n } else if (key.startsWith(RESERVED_PREFIX)) {\n invalid.push(key);\n }\n }\n return invalid;\n}\n","/**\n * PEAC gRPC Transport Layer\n *\n * Provides gRPC binding for PEAC receipts with StatusCode parity to HTTP.\n *\n * Status code mapping follows these semantics:\n * - INVALID_ARGUMENT (3): Malformed request (HTTP 400)\n * - UNAUTHENTICATED (16): Authentication required (HTTP 401)\n * - FAILED_PRECONDITION (9): Payment required (HTTP 402)\n * - PERMISSION_DENIED (7): Not authorized (HTTP 403)\n * - ABORTED (10): Conflict/replay detected (HTTP 409)\n * - INTERNAL (13): Server error (HTTP 500)\n *\n * @packageDocumentation\n */\n\nexport const GRPC_TRANSPORT_VERSION = '0.12.6' as const;\n\n// Metadata keys, types, and helpers (shared with a2a-carrier.ts)\nexport {\n GrpcMetadataKeys,\n extractReceiptFromMetadata,\n extractReceiptTypeFromMetadata,\n addReceiptToMetadata,\n} from './metadata.js';\nexport type { GrpcMetadataLike } from './metadata.js';\n\n/**\n * gRPC status codes.\n * @see https://grpc.io/docs/guides/status-codes/\n */\nexport const GrpcStatus = {\n /** Success */\n OK: 0,\n /** Operation was cancelled */\n CANCELLED: 1,\n /** Unknown error */\n UNKNOWN: 2,\n /** Client specified invalid argument */\n INVALID_ARGUMENT: 3,\n /** Deadline expired before operation completed */\n DEADLINE_EXCEEDED: 4,\n /** Requested entity not found */\n NOT_FOUND: 5,\n /** Entity already exists */\n ALREADY_EXISTS: 6,\n /** Caller lacks permission */\n PERMISSION_DENIED: 7,\n /** Resource exhausted */\n RESOURCE_EXHAUSTED: 8,\n /** Operation rejected due to precondition */\n FAILED_PRECONDITION: 9,\n /** Operation aborted (conflict) */\n ABORTED: 10,\n /** Value out of range */\n OUT_OF_RANGE: 11,\n /** Operation not implemented */\n UNIMPLEMENTED: 12,\n /** Internal error */\n INTERNAL: 13,\n /** Service unavailable */\n UNAVAILABLE: 14,\n /** Data loss */\n DATA_LOSS: 15,\n /** Not authenticated */\n UNAUTHENTICATED: 16,\n} as const;\n\nexport type GrpcStatusCode = (typeof GrpcStatus)[keyof typeof GrpcStatus];\n\n/**\n * Map HTTP status code to gRPC status code.\n *\n * Mapping semantics:\n * - 400 Bad Request -> INVALID_ARGUMENT (malformed)\n * - 401 Unauthorized -> UNAUTHENTICATED (auth required)\n * - 402 Payment Required -> FAILED_PRECONDITION (payment needed)\n * - 403 Forbidden -> PERMISSION_DENIED (not authorized)\n * - 409 Conflict -> ABORTED (replay detected)\n * - 500 Internal Server Error -> INTERNAL\n * - Other 4xx -> INVALID_ARGUMENT\n * - Other 5xx -> INTERNAL\n */\nexport function httpStatusToGrpc(httpStatus: number): GrpcStatusCode {\n switch (httpStatus) {\n case 200:\n case 201:\n case 204:\n return GrpcStatus.OK;\n case 400:\n return GrpcStatus.INVALID_ARGUMENT;\n case 401:\n return GrpcStatus.UNAUTHENTICATED;\n case 402:\n return GrpcStatus.FAILED_PRECONDITION;\n case 403:\n return GrpcStatus.PERMISSION_DENIED;\n case 404:\n return GrpcStatus.NOT_FOUND;\n case 409:\n return GrpcStatus.ABORTED;\n case 429:\n return GrpcStatus.RESOURCE_EXHAUSTED;\n case 499:\n return GrpcStatus.CANCELLED;\n case 500:\n return GrpcStatus.INTERNAL;\n case 501:\n return GrpcStatus.UNIMPLEMENTED;\n case 503:\n return GrpcStatus.UNAVAILABLE;\n case 504:\n return GrpcStatus.DEADLINE_EXCEEDED;\n default:\n if (httpStatus >= 400 && httpStatus < 500) {\n return GrpcStatus.INVALID_ARGUMENT;\n }\n if (httpStatus >= 500) {\n return GrpcStatus.INTERNAL;\n }\n return GrpcStatus.OK;\n }\n}\n\n/**\n * Map gRPC status code to HTTP status code.\n *\n * Inverse of httpStatusToGrpc for response translation.\n */\nexport function grpcStatusToHttp(grpcStatus: GrpcStatusCode): number {\n switch (grpcStatus) {\n case GrpcStatus.OK:\n return 200;\n case GrpcStatus.CANCELLED:\n return 499;\n case GrpcStatus.UNKNOWN:\n return 500;\n case GrpcStatus.INVALID_ARGUMENT:\n return 400;\n case GrpcStatus.DEADLINE_EXCEEDED:\n return 504;\n case GrpcStatus.NOT_FOUND:\n return 404;\n case GrpcStatus.ALREADY_EXISTS:\n return 409;\n case GrpcStatus.PERMISSION_DENIED:\n return 403;\n case GrpcStatus.RESOURCE_EXHAUSTED:\n return 429;\n case GrpcStatus.FAILED_PRECONDITION:\n return 402;\n case GrpcStatus.ABORTED:\n return 409;\n case GrpcStatus.OUT_OF_RANGE:\n return 400;\n case GrpcStatus.UNIMPLEMENTED:\n return 501;\n case GrpcStatus.INTERNAL:\n return 500;\n case GrpcStatus.UNAVAILABLE:\n return 503;\n case GrpcStatus.DATA_LOSS:\n return 500;\n case GrpcStatus.UNAUTHENTICATED:\n return 401;\n default:\n return 500;\n }\n}\n\n/**\n * PEAC error code to gRPC status mapping.\n *\n * Maps canonical PEAC error codes to appropriate gRPC status codes.\n */\nexport const PEAC_ERROR_TO_GRPC: Record<string, GrpcStatusCode> = {\n // 402 Payment Required -> FAILED_PRECONDITION\n E_RECEIPT_MISSING: GrpcStatus.FAILED_PRECONDITION,\n E_RECEIPT_INVALID: GrpcStatus.FAILED_PRECONDITION,\n E_RECEIPT_EXPIRED: GrpcStatus.FAILED_PRECONDITION,\n\n // 401 Unauthenticated -> UNAUTHENTICATED\n E_TAP_SIGNATURE_MISSING: GrpcStatus.UNAUTHENTICATED,\n E_TAP_SIGNATURE_INVALID: GrpcStatus.UNAUTHENTICATED,\n E_TAP_TIME_INVALID: GrpcStatus.UNAUTHENTICATED,\n E_TAP_KEY_NOT_FOUND: GrpcStatus.UNAUTHENTICATED,\n E_TAP_REPLAY_PROTECTION_REQUIRED: GrpcStatus.UNAUTHENTICATED,\n\n // 400 Bad Request -> INVALID_ARGUMENT\n E_TAP_WINDOW_TOO_LARGE: GrpcStatus.INVALID_ARGUMENT,\n E_TAP_TAG_UNKNOWN: GrpcStatus.INVALID_ARGUMENT,\n E_TAP_ALGORITHM_INVALID: GrpcStatus.INVALID_ARGUMENT,\n\n // 403 Forbidden -> PERMISSION_DENIED\n E_ISSUER_NOT_ALLOWED: GrpcStatus.PERMISSION_DENIED,\n\n // 409 Conflict -> ABORTED\n E_TAP_NONCE_REPLAY: GrpcStatus.ABORTED,\n\n // 500 Internal -> INTERNAL\n E_CONFIG_ISSUER_ALLOWLIST_REQUIRED: GrpcStatus.INTERNAL,\n E_INTERNAL_ERROR: GrpcStatus.INTERNAL,\n};\n\n/**\n * Get gRPC status for a PEAC error code.\n */\nexport function peacErrorToGrpc(errorCode: string): GrpcStatusCode {\n return PEAC_ERROR_TO_GRPC[errorCode] ?? GrpcStatus.INTERNAL;\n}\n\n/**\n * gRPC error with status code.\n */\nexport interface GrpcError {\n /** gRPC status code */\n code: GrpcStatusCode;\n /** Error message */\n message: string;\n /** PEAC error code (if applicable) */\n peacCode?: string;\n /** Additional error details */\n details?: unknown;\n}\n\n/**\n * Create a gRPC error from a PEAC error code.\n */\nexport function createGrpcError(peacCode: string, message: string, details?: unknown): GrpcError {\n return {\n code: peacErrorToGrpc(peacCode),\n message,\n peacCode,\n details,\n };\n}\n\n/**\n * gRPC verification result.\n */\nexport interface GrpcVerificationResult {\n /** Whether verification succeeded */\n ok: boolean;\n /** gRPC status code */\n status: GrpcStatusCode;\n /** Error if verification failed */\n error?: GrpcError;\n /** Receipt ID if verification succeeded */\n receiptId?: string;\n}\n\n/**\n * Create a successful verification result.\n */\nexport function createSuccessResult(receiptId?: string): GrpcVerificationResult {\n return {\n ok: true,\n status: GrpcStatus.OK,\n receiptId,\n };\n}\n\n/**\n * Create a failed verification result.\n */\nexport function createFailureResult(error: GrpcError): GrpcVerificationResult {\n return {\n ok: false,\n status: error.code,\n error,\n };\n}\n\n/**\n * Status code name mapping for debugging.\n */\nexport const GrpcStatusName: Record<GrpcStatusCode, string> = {\n [GrpcStatus.OK]: 'OK',\n [GrpcStatus.CANCELLED]: 'CANCELLED',\n [GrpcStatus.UNKNOWN]: 'UNKNOWN',\n [GrpcStatus.INVALID_ARGUMENT]: 'INVALID_ARGUMENT',\n [GrpcStatus.DEADLINE_EXCEEDED]: 'DEADLINE_EXCEEDED',\n [GrpcStatus.NOT_FOUND]: 'NOT_FOUND',\n [GrpcStatus.ALREADY_EXISTS]: 'ALREADY_EXISTS',\n [GrpcStatus.PERMISSION_DENIED]: 'PERMISSION_DENIED',\n [GrpcStatus.RESOURCE_EXHAUSTED]: 'RESOURCE_EXHAUSTED',\n [GrpcStatus.FAILED_PRECONDITION]: 'FAILED_PRECONDITION',\n [GrpcStatus.ABORTED]: 'ABORTED',\n [GrpcStatus.OUT_OF_RANGE]: 'OUT_OF_RANGE',\n [GrpcStatus.UNIMPLEMENTED]: 'UNIMPLEMENTED',\n [GrpcStatus.INTERNAL]: 'INTERNAL',\n [GrpcStatus.UNAVAILABLE]: 'UNAVAILABLE',\n [GrpcStatus.DATA_LOSS]: 'DATA_LOSS',\n [GrpcStatus.UNAUTHENTICATED]: 'UNAUTHENTICATED',\n};\n\n/**\n * Get human-readable name for a gRPC status code.\n */\nexport function getStatusName(code: GrpcStatusCode): string {\n return GrpcStatusName[code] ?? 'UNKNOWN';\n}\n\n// ---------------------------------------------------------------------------\n// Carrier adapter re-exports\n// ---------------------------------------------------------------------------\n\nexport {\n A2AGrpcCarrierAdapter,\n createGrpcCarrierMeta,\n validateOwnMetadataKeys,\n GRPC_MAX_CARRIER_SIZE,\n} from './a2a-carrier.js';\n"]}