npm - @powerhousedao/reactor-api - Versions diffs - 6.2.0-dev.3 → 6.2.0-dev.5 - Mend

@powerhousedao/reactor-api 6.2.0-dev.3 → 6.2.0-dev.5

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (10) hide show

package/README.md +0 -2
package/dist/index.d.mts +37 -144
package/dist/index.d.mts.map +1 -1
package/dist/index.mjs +102 -278
package/dist/index.mjs.map +1 -1
package/dist/src/packages/vite-loader.mjs +1 -1
package/dist/{utils-BFkbSO_H.mjs → utils-CtC8sjRo.mjs} +115 -34
package/dist/utils-CtC8sjRo.mjs.map +1 -0
package/package.json +13 -13
package/dist/utils-BFkbSO_H.mjs.map +0 -1

package/README.md CHANGED Viewed

@@ -73,8 +73,6 @@ type Options = {
   packages?: string[];
   auth?: {
     enabled: boolean;
-    guests: string[];
-    users: string[];
     admins: string[];
   };
   https?:

package/dist/index.d.mts CHANGED Viewed

@@ -352,72 +352,32 @@ declare class DocumentPermissionService {
 }
 //#endregion
 //#region src/services/authorization.service.d.ts
+declare const AuthorizationPolicy: {
+  readonly OPEN: "OPEN";
+  readonly ADMIN_ONLY: "ADMIN_ONLY";
+  readonly DOCUMENT_PERMISSIONS: "DOCUMENT_PERMISSIONS";
+};
+type AuthorizationPolicy = (typeof AuthorizationPolicy)[keyof typeof AuthorizationPolicy];
 interface AuthorizationConfig {
   admins: string[];
   defaultProtection: boolean;
+  policy: AuthorizationPolicy;
 }
 /**
- * Central authorization service — single source of truth for all permission checks.
+ * Single source of truth for every permission decision. Always present (never
+ * null) so callers branch on data, not on the existence of a service.
  *
- * Authorization model:
- * 1. Supreme admin (ADMINS env) → ALLOW ALL
- * 2. Is document protected?
- *    a. NOT protected:
- *       - READ: anyone (even anonymous) → ALLOW
- *       - WRITE: authenticated user → ALLOW
- *    b. PROTECTED:
- *       - READ: requires explicit READ/WRITE/ADMIN grant (direct or via group/parent)
- *       - WRITE: requires explicit WRITE/ADMIN grant (direct or via group/parent)
- * 3. Operation restricted? → Check OperationUserPermission
- * 4. Document owner = implicit ADMIN
- * 5. Drive protected = all children effectively protected
+ * The policy selects an implementation once at boot:
+ * - OPEN: authentication disabled — everyone (incl. anonymous) is allowed.
+ * - ADMIN_ONLY: authentication on, document permissions off — only ADMINS.
+ * - DOCUMENT_PERMISSIONS: the full per-document protection + grant model.
  */
-declare class AuthorizationService {
-  private readonly documentPermissionService;
+interface IAuthorizationService {
   readonly config: AuthorizationConfig;
-  constructor(documentPermissionService: DocumentPermissionService, config: AuthorizationConfig);
-  /**
-   * Check if a user is a supreme admin (from ADMINS env var).
-   */
   isSupremeAdmin(userAddress?: string): boolean;
-  /**
-   * Check if a user can read a document.
-   *
-   * - Supreme admin → yes
-   * - Not protected → anyone can read (even anonymous)
-   * - Protected → requires READ/WRITE/ADMIN grant (direct, group, or parent inheritance)
-   * - Owner → yes (implicit ADMIN)
-   */
   canRead(documentId: string, userAddress?: string, getParentIds?: GetParentIdsFn): Promise<boolean>;
-  /**
-   * Check if a user can write to a document.
-   *
-   * - Supreme admin → yes
-   * - Not protected → anyone can write (even anonymous)
-   * - Protected → requires authentication + WRITE/ADMIN grant
-   * - Owner → yes (implicit ADMIN)
-   */
   canWrite(documentId: string, userAddress?: string, getParentIds?: GetParentIdsFn): Promise<boolean>;
-  /**
-   * Check if a user can manage a document (change permissions, protection, transfer ownership).
-   *
-   * - Supreme admin → yes
-   * - Owner → yes
-   * - Has ADMIN grant → yes
-   */
-  canManage(documentId: string, userAddress?: string, _getParentIds?: GetParentIdsFn): Promise<boolean>;
-  /**
-   * Check if a user can execute a specific operation.
-   * If the operation is not restricted, falls through to the standard write check.
-   * If the operation is restricted, requires an explicit OperationUserPermission grant.
-   */
-  canExecuteOperation(documentId: string, operationType: string, userAddress?: string, getParentIds?: GetParentIdsFn): Promise<boolean>;
-  /**
-   * Combined check for mutations: can the user write + execute the operation?
-   * This enables READ-only users with operation grants to execute specific operations.
-   * For restricted operations, only the operation grant is checked (bypasses write check),
-   * allowing READ-only users with an explicit operation grant to execute that operation.
-   */
+  canManage(documentId: string, userAddress?: string, getParentIds?: GetParentIdsFn): Promise<boolean>;
   canMutate(documentId: string, operationType: string, userAddress?: string, getParentIds?: GetParentIdsFn): Promise<boolean>;
 }
 //#endregion
@@ -428,14 +388,11 @@ type Context = {
   document?: PHDocument;
   headers: IncomingHttpHeaders;
   db: unknown;
-  isAdmin?: (address: string) => boolean;
   user?: {
     address: string;
     chainId: number;
     networkId: string;
   };
-  documentPermissionService?: DocumentPermissionService;
-  authorizationService?: AuthorizationService;
 };
 type ISubgraph = {
   name: string;
@@ -454,7 +411,7 @@ type SubgraphArgs = {
   graphqlManager: GraphQLManager$1;
   syncManager: ISyncManager;
   documentPermissionService?: DocumentPermissionService;
-  authorizationService?: AuthorizationService;
+  authorizationService: IAuthorizationService;
   path?: string;
 };
 type GqlSigner = {
@@ -525,15 +482,15 @@ declare class BaseSubgraph implements ISubgraph$1 {
   relationalDb: IRelationalDb;
   syncManager: ISyncManager;
   documentPermissionService?: DocumentPermissionService;
-  authorizationService?: AuthorizationService;
+  authorizationService: IAuthorizationService;
   constructor(args: SubgraphArgs$1);
   onSetup(): Promise<void>;
   protected getParentIdsFn(): GetParentIdsFn;
-  protected hasGlobalAdminAccess(ctx: Context): boolean;
   protected canReadDocument(documentId: string, ctx: Context): Promise<boolean>;
   protected assertCanRead(documentId: string, ctx: Context): Promise<void>;
   protected assertCanWrite(documentId: string, ctx: Context): Promise<void>;
   protected assertCanExecuteOperation(documentId: string, operationType: string, ctx: Context): Promise<void>;
+  protected assertCanCreate(ctx: Context): void;
 }
 //#endregion
 //#region src/graphql/analytics-subgraph.d.ts
@@ -676,7 +633,6 @@ declare class AuthSubgraph extends BaseSubgraph {
         user?: {
           address: string;
         };
-        isAdmin?: (address: string) => boolean;
       }) => Promise<DocumentProtectionInfo>;
       transferDocumentOwnership: (_parent: unknown, args: {
         documentId: string;
@@ -685,7 +641,6 @@ declare class AuthSubgraph extends BaseSubgraph {
         user?: {
           address: string;
         };
-        isAdmin?: (address: string) => boolean;
       }) => Promise<DocumentProtectionInfo>;
       grantDocumentPermission: (_parent: unknown, args: {
         documentId: string;
@@ -695,7 +650,6 @@ declare class AuthSubgraph extends BaseSubgraph {
         user?: {
           address: string;
         };
-        isAdmin?: (address: string) => boolean;
       }) => Promise<{
         documentId: string;
         userAddress: string;
@@ -711,7 +665,6 @@ declare class AuthSubgraph extends BaseSubgraph {
         user?: {
           address: string;
         };
-        isAdmin?: (address: string) => boolean;
       }) => Promise<boolean>;
       createGroup: (_parent: unknown, args: {
         name: string;
@@ -736,7 +689,6 @@ declare class AuthSubgraph extends BaseSubgraph {
         user?: {
           address: string;
         };
-        isAdmin?: (address: string) => boolean;
       }) => Promise<DocumentGroupPermission>;
       revokeGroupPermission: (_parent: unknown, args: {
         documentId: string;
@@ -745,7 +697,6 @@ declare class AuthSubgraph extends BaseSubgraph {
         user?: {
           address: string;
         };
-        isAdmin?: (address: string) => boolean;
       }) => Promise<boolean>;
       grantOperationPermission: (_parent: unknown, args: {
         documentId: string;
@@ -755,7 +706,6 @@ declare class AuthSubgraph extends BaseSubgraph {
         user?: {
           address: string;
         };
-        isAdmin?: (address: string) => boolean;
       }) => Promise<OperationUserPermission>;
       revokeOperationPermission: (_parent: unknown, args: {
         documentId: string;
@@ -765,7 +715,6 @@ declare class AuthSubgraph extends BaseSubgraph {
         user?: {
           address: string;
         };
-        isAdmin?: (address: string) => boolean;
       }) => Promise<boolean>;
       grantGroupOperationPermission: (_parent: unknown, args: {
         documentId: string;
@@ -775,7 +724,6 @@ declare class AuthSubgraph extends BaseSubgraph {
         user?: {
           address: string;
         };
-        isAdmin?: (address: string) => boolean;
       }) => Promise<OperationGroupPermission>;
       revokeGroupOperationPermission: (_parent: unknown, args: {
         documentId: string;
@@ -785,7 +733,6 @@ declare class AuthSubgraph extends BaseSubgraph {
         user?: {
           address: string;
         };
-        isAdmin?: (address: string) => boolean;
       }) => Promise<boolean>;
     };
     Group: {
@@ -811,7 +758,6 @@ declare class AuthSubgraph extends BaseSubgraph {
 interface AuthConfig {
   enabled: boolean;
   admins: string[];
-  cacheTtl?: number;
   skipCredentialVerification?: boolean;
 }
 interface User {
@@ -842,24 +788,6 @@ declare class AuthService {
    * Extract user information from verification result
    */
   private extractUserFromVerification;
-  /**
-   * Get additional context fields for GraphQL
-   */
-  getAdditionalContextFields(): {
-    isAdmin: (address: string) => boolean;
-  };
-  /**
-   * Get user context for GraphQL
-   */
-  getUserContext(user?: User): {
-    user?: undefined;
-  } | {
-    user: {
-      address: string;
-      chainId: number;
-      networkId: string;
-    };
-  };
   /**
    * Verify that the credential still exists on the Renown API
    */
@@ -1020,7 +948,6 @@ declare class GraphQLManager {
   private readonly documentPermissionService?;
   private readonly featureFlags;
   private readonly port;
-  private readonly authorizationService?;
   private initialized;
   private coreSubgraphsMap;
   private contextFields;
@@ -1037,7 +964,8 @@ declare class GraphQLManager {
    * it for reactor-drive parents.
    */
   readonly reactorDriveClient?: IDriveClient;
-  constructor(path: string, httpServer: http.Server, wsServer: WebSocketServer, reactorClient: IReactorClient, relationalDb: IRelationalDb, analyticsStore: IAnalyticsStore, syncManager: ISyncManager, logger: ILogger, httpAdapter: IHttpAdapter, gatewayAdapter: IGatewayAdapter<Context$1>, authConfig?: AuthConfig | undefined, documentPermissionService?: DocumentPermissionService | undefined, featureFlags?: GraphqlManagerFeatureFlags, port?: number, authorizationService?: AuthorizationService | undefined, reactorDriveClient?: IDriveClient);
+  private readonly authorizationService;
+  constructor(path: string, httpServer: http.Server, wsServer: WebSocketServer, reactorClient: IReactorClient, relationalDb: IRelationalDb, analyticsStore: IAnalyticsStore, syncManager: ISyncManager, logger: ILogger, httpAdapter: IHttpAdapter, gatewayAdapter: IGatewayAdapter<Context$1>, authConfig?: AuthConfig | undefined, documentPermissionService?: DocumentPermissionService | undefined, featureFlags?: GraphqlManagerFeatureFlags, port?: number, authorizationService?: IAuthorizationService, reactorDriveClient?: IDriveClient);
   init(coreSubgraphs: SubgraphClass$1[], authMiddleware?: AuthFetchMiddleware): Promise<void>;
   /**
    * Regenerate document model subgraphs when models are dynamically loaded.
@@ -1053,6 +981,12 @@ declare class GraphQLManager {
    * Get the base path used for subgraph registration.
    */
   getBasePath(): string;
+  /**
+   * Get the authorization service shared with subgraphs. Use this when
+   * constructing a subgraph instance externally for
+   * {@link registerSubgraphInstance}.
+   */
+  getAuthorizationService(): IAuthorizationService;
   registerSubgraph(subgraph: SubgraphClass$1, supergraph?: string, core?: boolean): Promise<ISubgraph$1>;
   updateRouter: (immediate?: boolean) => Promise<void>;
   private _updateRouter;
@@ -1091,6 +1025,10 @@ interface IReactorProcessorHostModule extends IProcessorHostModule {
   client: IReactorClient;
   attachments: IAttachmentClient;
 }
+type ReadinessGate = {
+  isReady: () => boolean;
+  markReady: () => void;
+};
 type API = {
   httpAdapter: IHttpAdapter;
   graphqlManager: GraphQLManager$1;
@@ -1323,7 +1261,6 @@ type Scalars = {
   };
 };
 type Action = {
-  readonly attachments?: Maybe<ReadonlyArray<Attachment>>;
   readonly context?: Maybe<ActionContext>;
   readonly id: Scalars["String"]["output"];
   readonly input: Scalars["JSONObject"]["output"];
@@ -1338,7 +1275,6 @@ type ActionContextInput = {
   readonly signer?: InputMaybe<ReactorSignerInput>;
 };
 type ActionInput = {
-  readonly attachments?: InputMaybe<ReadonlyArray<AttachmentInput>>;
   readonly context?: InputMaybe<ActionContextInput>;
   readonly id: Scalars["String"]["input"];
   readonly input: Scalars["JSONObject"]["input"];
@@ -1346,20 +1282,6 @@ type ActionInput = {
   readonly timestampUtcMs: Scalars["String"]["input"];
   readonly type: Scalars["String"]["input"];
 };
-type Attachment = {
-  readonly data: Scalars["String"]["output"];
-  readonly extension?: Maybe<Scalars["String"]["output"]>;
-  readonly fileName?: Maybe<Scalars["String"]["output"]>;
-  readonly hash: Scalars["String"]["output"];
-  readonly mimeType: Scalars["String"]["output"];
-};
-type AttachmentInput = {
-  readonly data: Scalars["String"]["input"];
-  readonly extension?: InputMaybe<Scalars["String"]["input"]>;
-  readonly fileName?: InputMaybe<Scalars["String"]["input"]>;
-  readonly hash: Scalars["String"]["input"];
-  readonly mimeType: Scalars["String"]["input"];
-};
 type ChannelMeta = {
   readonly id: Scalars["String"]["output"];
 };
@@ -1840,13 +1762,6 @@ type GetDocumentWithOperationsQuery = {
             readonly timestampUtcMs: string;
             readonly input: NonNullable<unknown>;
             readonly scope: string;
-            readonly attachments?: ReadonlyArray<{
-              readonly data: string;
-              readonly mimeType: string;
-              readonly hash: string;
-              readonly extension?: string | null | undefined;
-              readonly fileName?: string | null | undefined;
-            }> | null | undefined;
             readonly context?: {
               readonly signer?: {
                 readonly signatures: ReadonlyArray<string>;
@@ -1974,13 +1889,6 @@ type GetDocumentOperationsQuery = {
         readonly timestampUtcMs: string;
         readonly input: NonNullable<unknown>;
         readonly scope: string;
-        readonly attachments?: ReadonlyArray<{
-          readonly data: string;
-          readonly mimeType: string;
-          readonly hash: string;
-          readonly extension?: string | null | undefined;
-          readonly fileName?: string | null | undefined;
-        }> | null | undefined;
         readonly context?: {
           readonly signer?: {
             readonly signatures: ReadonlyArray<string>;
@@ -2278,13 +2186,6 @@ type PollSyncEnvelopesQuery = {
             readonly timestampUtcMs: string;
             readonly input: NonNullable<unknown>;
             readonly scope: string;
-            readonly attachments?: ReadonlyArray<{
-              readonly data: string;
-              readonly mimeType: string;
-              readonly hash: string;
-              readonly extension?: string | null | undefined;
-              readonly fileName?: string | null | undefined;
-            }> | null | undefined;
             readonly context?: {
               readonly signer?: {
                 readonly signatures: ReadonlyArray<string>;
@@ -2365,8 +2266,6 @@ type ResolversTypes = ResolversObject<{
   ActionContext: ResolverTypeWrapper<ActionContext>;
   ActionContextInput: ActionContextInput;
   ActionInput: ActionInput;
-  Attachment: ResolverTypeWrapper<Attachment>;
-  AttachmentInput: AttachmentInput;
   Boolean: ResolverTypeWrapper<Scalars["Boolean"]["output"]>;
   ChannelMeta: ResolverTypeWrapper<ChannelMeta>;
   ChannelMetaInput: ChannelMetaInput;
@@ -2425,8 +2324,6 @@ type ResolversParentTypes = ResolversObject<{
   ActionContext: ActionContext;
   ActionContextInput: ActionContextInput;
   ActionInput: ActionInput;
-  Attachment: Attachment;
-  AttachmentInput: AttachmentInput;
   Boolean: Scalars["Boolean"]["output"];
   ChannelMeta: ChannelMeta;
   ChannelMetaInput: ChannelMetaInput;
@@ -2477,7 +2374,6 @@ type ResolversParentTypes = ResolversObject<{
   ViewFilterInput: ViewFilterInput;
 }>;
 type ActionResolvers<ContextType = Context, ParentType extends ResolversParentTypes["Action"] = ResolversParentTypes["Action"]> = ResolversObject<{
-  attachments?: Resolver<Maybe<ReadonlyArray<ResolversTypes["Attachment"]>>, ParentType, ContextType>;
   context?: Resolver<Maybe<ResolversTypes["ActionContext"]>, ParentType, ContextType>;
   id?: Resolver<ResolversTypes["String"], ParentType, ContextType>;
   input?: Resolver<ResolversTypes["JSONObject"], ParentType, ContextType>;
@@ -2488,13 +2384,6 @@ type ActionResolvers<ContextType = Context, ParentType extends ResolversParentTy
 type ActionContextResolvers<ContextType = Context, ParentType extends ResolversParentTypes["ActionContext"] = ResolversParentTypes["ActionContext"]> = ResolversObject<{
   signer?: Resolver<Maybe<ResolversTypes["ReactorSigner"]>, ParentType, ContextType>;
 }>;
-type AttachmentResolvers<ContextType = Context, ParentType extends ResolversParentTypes["Attachment"] = ResolversParentTypes["Attachment"]> = ResolversObject<{
-  data?: Resolver<ResolversTypes["String"], ParentType, ContextType>;
-  extension?: Resolver<Maybe<ResolversTypes["String"]>, ParentType, ContextType>;
-  fileName?: Resolver<Maybe<ResolversTypes["String"]>, ParentType, ContextType>;
-  hash?: Resolver<ResolversTypes["String"], ParentType, ContextType>;
-  mimeType?: Resolver<ResolversTypes["String"], ParentType, ContextType>;
-}>;
 type ChannelMetaResolvers<ContextType = Context, ParentType extends ResolversParentTypes["ChannelMeta"] = ResolversParentTypes["ChannelMeta"]> = ResolversObject<{
   id?: Resolver<ResolversTypes["String"], ParentType, ContextType>;
 }>;
@@ -2676,7 +2565,6 @@ type TouchChannelResultResolvers<ContextType = Context, ParentType extends Resol
 type Resolvers<ContextType = Context> = ResolversObject<{
   Action?: ActionResolvers<ContextType>;
   ActionContext?: ActionContextResolvers<ContextType>;
-  Attachment?: AttachmentResolvers<ContextType>;
   ChannelMeta?: ChannelMetaResolvers<ContextType>;
   DateTime?: GraphQLScalarType;
   DeadLetterInfo?: DeadLetterInfoResolvers<ContextType>;
@@ -2716,7 +2604,6 @@ declare const PropagationModeSchema: z$1.ZodEnum<typeof PropagationMode>;
 declare const SyncEnvelopeTypeSchema: z$1.ZodEnum<typeof SyncEnvelopeType>;
 declare function ActionContextInputSchema(): z$1.ZodObject<Properties<ActionContextInput>>;
 declare function ActionInputSchema(): z$1.ZodObject<Properties<ActionInput>>;
-declare function AttachmentInputSchema(): z$1.ZodObject<Properties<AttachmentInput>>;
 declare function ChannelMetaInputSchema(): z$1.ZodObject<Properties<ChannelMetaInput>>;
 declare function DocumentOperationsFilterInputSchema(): z$1.ZodObject<Properties<DocumentOperationsFilterInput>>;
 declare function OperationContextInputSchema(): z$1.ZodObject<Properties<OperationContextInput>>;
@@ -3054,6 +2941,11 @@ type Options = {
   attachmentStoragePath?: string;
 };
 type ProcessorInitializer = ProcessorFactoryBuilder;
+/**
+ * Doc-perms require auth: with auth off no `user` is ever resolved, so every
+ * authorization check fails closed. Refuse to boot rather than run broken.
+ */
+declare function assertAuthRequiredForDocumentPermissions(authEnabled: boolean, documentPermissionsRequested: boolean): void;
 /**
  * Initializes and starts the API server using an initializer function.
  * This function first loads packages to get document models, then calls the initializer function
@@ -3077,6 +2969,7 @@ declare function initializeAndStartAPI(clientInitializer: (documentModels: Docum
   client: IReactorClient;
   syncManager: ISyncManager;
   documentModelRegistry: IDocumentModelRegistry;
+  readiness: ReadinessGate;
 }>;
 //#endregion
 //#region src/utils/create-schema.d.ts
@@ -3112,5 +3005,5 @@ interface DocumentModelSchemaOptions {
  */
 declare function generateDocumentModelSchema(documentModel: DocumentModelGlobalState$1, options?: DocumentModelSchemaOptions): DocumentNode;
 //#endregion
-export { ADMIN_USERS, API, Action, ActionContext, ActionContextInput, ActionContextInputSchema, ActionContextResolvers, ActionInput, ActionInputSchema, ActionResolvers, AddRelationshipDocument, AddRelationshipMutation, AddRelationshipMutationVariables, AnalyticsSubgraph, Attachment, AttachmentInput, AttachmentInputSchema, AttachmentResolvers, AuthConfig, AuthContext, AuthFetchMiddleware, AuthService, AuthSubgraph, BaseSubgraph, ChannelMeta, ChannelMetaInput, ChannelMetaInputSchema, ChannelMetaResolvers, ClientInitializerResult, Context, CreateDocumentDocument, CreateDocumentMutation, CreateDocumentMutationVariables, CreateEmptyDocumentDocument, CreateEmptyDocumentMutation, CreateEmptyDocumentMutationVariables, DateTimeScalarConfig, DbClient, DeadLetterInfo, DeadLetterInfoResolvers, DeleteDocumentDocument, DeleteDocumentMutation, DeleteDocumentMutationVariables, DeleteDocumentsDocument, DeleteDocumentsMutation, DeleteDocumentsMutationVariables, DirectiveResolverFn, DocumentChangeContext, DocumentChangeContextResolvers, DocumentChangeEvent, DocumentChangeEventResolvers, DocumentChangeType, DocumentChangeTypeSchema, DocumentChangesDocument, DocumentChangesSubscription, DocumentChangesSubscriptionVariables, DocumentGroupPermissionEntry, DocumentGroupPermissionTable, DocumentModelGlobalState, DocumentModelGlobalStateResolvers, DocumentModelResultPage, DocumentModelResultPageResolvers, DocumentModelSchemaOptions, DocumentOperationsFilterInput, DocumentOperationsFilterInputSchema, DocumentPermissionConfig, DocumentPermissionDatabase, DocumentPermissionEntry, DocumentPermissionLevel, DocumentPermissionService, DocumentPermissionTable, DocumentProtectionTable, DocumentWithChildren, DocumentWithChildrenResolvers, Exact, FetchHandler, FindDocumentsDocument, FindDocumentsQuery, FindDocumentsQueryVariables, GatewayAdapterType, GatewayContextFactory, GetDocumentDocument, GetDocumentIncomingRelationshipsDocument, GetDocumentIncomingRelationshipsQuery, GetDocumentIncomingRelationshipsQueryVariables, GetDocumentModelsDocument, GetDocumentModelsQuery, GetDocumentModelsQueryVariables, GetDocumentOperationsDocument, GetDocumentOperationsQuery, GetDocumentOperationsQueryVariables, GetDocumentOutgoingRelationshipsDocument, GetDocumentOutgoingRelationshipsQuery, GetDocumentOutgoingRelationshipsQueryVariables, GetDocumentQuery, GetDocumentQueryVariables, GetDocumentWithOperationsDocument, GetDocumentWithOperationsQuery, GetDocumentWithOperationsQueryVariables, GetJobStatusDocument, GetJobStatusQuery, GetJobStatusQueryVariables, GetParentIdsFn, GqlDocument, GqlDriveDocument, GqlOperation, GqlOperationContext, GqlSigner, GqlSignerApp, GqlSignerUser, GraphQLManager, GraphqlManagerFeatureFlags, Group, GroupTable, HttpAdapterSetup, HttpAdapterType, HttpDocumentModelLoader, HttpPackageLoader, HttpPackageLoaderLogger, HttpPackageLoaderOptions, IGatewayAdapter, IHttpAdapter, type IPackageLoader, type IPackageLoaderOptions, IPackageStorage, IReactorProcessorHostModule, ISubgraph, ImportPackageLoader, InMemoryPackageStorage, Incremental, InputMaybe, InstallPackageResult, InstalledPackageInfo, IsTypeOfResolverFn, JobChangeEvent, JobChangeEventResolvers, JobChangesDocument, JobChangesSubscription, JobChangesSubscriptionVariables, JobInfo, JobInfoResolvers, JsonObjectScalarConfig, MakeEmpty, MakeMaybe, MakeOptional, Maybe, MoveRelationshipDocument, MoveRelationshipMutation, MoveRelationshipMutationVariables, MoveRelationshipResult, MoveRelationshipResultResolvers, MutateDocumentAsyncDocument, MutateDocumentAsyncMutation, MutateDocumentAsyncMutationVariables, MutateDocumentDocument, MutateDocumentMutation, MutateDocumentMutationVariables, Mutation, MutationAddRelationshipArgs, MutationCreateDocumentArgs, MutationCreateEmptyDocumentArgs, MutationDeleteDocumentArgs, MutationDeleteDocumentsArgs, MutationMoveRelationshipArgs, MutationMutateDocumentArgs, MutationMutateDocumentAsyncArgs, MutationPushSyncEnvelopesArgs, MutationRemoveRelationshipArgs, MutationRenameDocumentArgs, MutationResolvers, MutationSetPreferredEditorArgs, MutationTouchChannelArgs, NextResolverFn, OperationContext, OperationContextInput, OperationContextInputSchema, OperationContextResolvers, OperationGroupPermissionEntry, OperationGroupPermissionTable, OperationInput, OperationInputSchema, OperationUserPermissionEntry, OperationUserPermissionTable, OperationWithContext, OperationWithContextInput, OperationWithContextInputSchema, OperationWithContextResolvers, OperationsFilterInput, OperationsFilterInputSchema, PackageManagementService, PackageManagementServiceOptions, PackageManager, PackagesSubgraph, type PackagesSubgraphArgs, PagingInput, PagingInputSchema, type ParsedDriveUrl, PgliteFactory, PhDocument, PhDocumentFieldsFragment, PhDocumentFieldsFragmentDoc, PhDocumentOperationsArgs, PhDocumentResolvers, PhDocumentResultPage, PhDocumentResultPageResolvers, PollSyncEnvelopesDocument, PollSyncEnvelopesQuery, PollSyncEnvelopesQueryVariables, PollSyncEnvelopesResult, PollSyncEnvelopesResultResolvers, Processor, ProcessorDriveFactory, ProcessorFactoryBuilder, PropagationMode, PropagationModeSchema, PushSyncEnvelopesDocument, PushSyncEnvelopesMutation, PushSyncEnvelopesMutationVariables, Query, QueryDocumentArgs, QueryDocumentIncomingRelationshipsArgs, QueryDocumentModelsArgs, QueryDocumentOperationsArgs, QueryDocumentOutgoingRelationshipsArgs, QueryFindDocumentsArgs, QueryJobStatusArgs, QueryPollSyncEnvelopesArgs, QueryResolvers, ReactorModule, ReactorOperation, ReactorOperationResolvers, ReactorOperationResultPage, ReactorOperationResultPageResolvers, ReactorSigner, ReactorSignerApp, ReactorSignerAppInput, ReactorSignerAppInputSchema, ReactorSignerAppResolvers, ReactorSignerInput, ReactorSignerInputSchema, ReactorSignerResolvers, ReactorSignerUser, ReactorSignerUserInput, ReactorSignerUserInputSchema, ReactorSignerUserResolvers, ReactorSubgraph, RemoteCursor, RemoteCursorInput, RemoteCursorInputSchema, RemoteCursorResolvers, RemoteFilterInput, RemoteFilterInputSchema, RemoveRelationshipDocument, RemoveRelationshipMutation, RemoveRelationshipMutationVariables, RenameDocumentDocument, RenameDocumentMutation, RenameDocumentMutationVariables, Requester, RequireFields, Resolver, ResolverFn, ResolverTypeWrapper, ResolverWithResolve, Resolvers, ResolversObject, ResolversParentTypes, ResolversTypes, Revision, RevisionResolvers, Scalars, Sdk, SearchFilterInput, SearchFilterInputSchema, SetPreferredEditorDocument, SetPreferredEditorMutation, SetPreferredEditorMutationVariables, SubgraphArgs, SubgraphClass, SubgraphDefinition, Subscription, SubscriptionDocumentChangesArgs, SubscriptionJobChangesArgs, SubscriptionObject, SubscriptionResolveFn, SubscriptionResolver, SubscriptionResolverObject, SubscriptionResolvers, SubscriptionSubscribeFn, SubscriptionSubscriberObject, SyncEnvelope, SyncEnvelopeInput, SyncEnvelopeInputSchema, SyncEnvelopeResolvers, SyncEnvelopeType, SyncEnvelopeTypeSchema, SystemSubgraph, TlsOptions, TouchChannelDocument, TouchChannelInput, TouchChannelInputSchema, TouchChannelMutation, TouchChannelMutationVariables, TouchChannelResult, TouchChannelResultResolvers, TypeResolveFn, User, UserGroupTable, ViewFilterInput, ViewFilterInputSchema, WithIndex, WsContextFactory, WsDisposer, buildGraphQlDocument, buildGraphQlDriveDocument, buildGraphqlOperation, buildGraphqlOperations, buildSubgraphSchemaModule, createAuthFetchMiddleware, createGatewayAdapter, createHttpAdapter, createMergedSchema, createReactorGraphQLClient, createSchema, definedNonNullAnySchema, driveIdFromUrl, extractSubgraphsFromModule, generateDocumentModelSchema, getAuthContext, getDbClient, getDocumentModelSchemaName, getDocumentModelTypeDefs, getGitHash, getGitUrl, getSdk, getUniqueDocumentModels, getVersion, initAnalyticsStoreSql, initializeAndStartAPI, isDefinedNonNullAny, isExpectedLoaderMiss, isSubgraphClass, parseDriveUrl, renderGraphqlPlayground };
+export { ADMIN_USERS, API, Action, ActionContext, ActionContextInput, ActionContextInputSchema, ActionContextResolvers, ActionInput, ActionInputSchema, ActionResolvers, AddRelationshipDocument, AddRelationshipMutation, AddRelationshipMutationVariables, AnalyticsSubgraph, AuthConfig, AuthContext, AuthFetchMiddleware, AuthService, AuthSubgraph, BaseSubgraph, ChannelMeta, ChannelMetaInput, ChannelMetaInputSchema, ChannelMetaResolvers, ClientInitializerResult, Context, CreateDocumentDocument, CreateDocumentMutation, CreateDocumentMutationVariables, CreateEmptyDocumentDocument, CreateEmptyDocumentMutation, CreateEmptyDocumentMutationVariables, DateTimeScalarConfig, DbClient, DeadLetterInfo, DeadLetterInfoResolvers, DeleteDocumentDocument, DeleteDocumentMutation, DeleteDocumentMutationVariables, DeleteDocumentsDocument, DeleteDocumentsMutation, DeleteDocumentsMutationVariables, DirectiveResolverFn, DocumentChangeContext, DocumentChangeContextResolvers, DocumentChangeEvent, DocumentChangeEventResolvers, DocumentChangeType, DocumentChangeTypeSchema, DocumentChangesDocument, DocumentChangesSubscription, DocumentChangesSubscriptionVariables, DocumentGroupPermissionEntry, DocumentGroupPermissionTable, DocumentModelGlobalState, DocumentModelGlobalStateResolvers, DocumentModelResultPage, DocumentModelResultPageResolvers, DocumentModelSchemaOptions, DocumentOperationsFilterInput, DocumentOperationsFilterInputSchema, DocumentPermissionConfig, DocumentPermissionDatabase, DocumentPermissionEntry, DocumentPermissionLevel, DocumentPermissionService, DocumentPermissionTable, DocumentProtectionTable, DocumentWithChildren, DocumentWithChildrenResolvers, Exact, FetchHandler, FindDocumentsDocument, FindDocumentsQuery, FindDocumentsQueryVariables, GatewayAdapterType, GatewayContextFactory, GetDocumentDocument, GetDocumentIncomingRelationshipsDocument, GetDocumentIncomingRelationshipsQuery, GetDocumentIncomingRelationshipsQueryVariables, GetDocumentModelsDocument, GetDocumentModelsQuery, GetDocumentModelsQueryVariables, GetDocumentOperationsDocument, GetDocumentOperationsQuery, GetDocumentOperationsQueryVariables, GetDocumentOutgoingRelationshipsDocument, GetDocumentOutgoingRelationshipsQuery, GetDocumentOutgoingRelationshipsQueryVariables, GetDocumentQuery, GetDocumentQueryVariables, GetDocumentWithOperationsDocument, GetDocumentWithOperationsQuery, GetDocumentWithOperationsQueryVariables, GetJobStatusDocument, GetJobStatusQuery, GetJobStatusQueryVariables, GetParentIdsFn, GqlDocument, GqlDriveDocument, GqlOperation, GqlOperationContext, GqlSigner, GqlSignerApp, GqlSignerUser, GraphQLManager, GraphqlManagerFeatureFlags, Group, GroupTable, HttpAdapterSetup, HttpAdapterType, HttpDocumentModelLoader, HttpPackageLoader, HttpPackageLoaderLogger, HttpPackageLoaderOptions, IGatewayAdapter, IHttpAdapter, type IPackageLoader, type IPackageLoaderOptions, IPackageStorage, IReactorProcessorHostModule, ISubgraph, ImportPackageLoader, InMemoryPackageStorage, Incremental, InputMaybe, InstallPackageResult, InstalledPackageInfo, IsTypeOfResolverFn, JobChangeEvent, JobChangeEventResolvers, JobChangesDocument, JobChangesSubscription, JobChangesSubscriptionVariables, JobInfo, JobInfoResolvers, JsonObjectScalarConfig, MakeEmpty, MakeMaybe, MakeOptional, Maybe, MoveRelationshipDocument, MoveRelationshipMutation, MoveRelationshipMutationVariables, MoveRelationshipResult, MoveRelationshipResultResolvers, MutateDocumentAsyncDocument, MutateDocumentAsyncMutation, MutateDocumentAsyncMutationVariables, MutateDocumentDocument, MutateDocumentMutation, MutateDocumentMutationVariables, Mutation, MutationAddRelationshipArgs, MutationCreateDocumentArgs, MutationCreateEmptyDocumentArgs, MutationDeleteDocumentArgs, MutationDeleteDocumentsArgs, MutationMoveRelationshipArgs, MutationMutateDocumentArgs, MutationMutateDocumentAsyncArgs, MutationPushSyncEnvelopesArgs, MutationRemoveRelationshipArgs, MutationRenameDocumentArgs, MutationResolvers, MutationSetPreferredEditorArgs, MutationTouchChannelArgs, NextResolverFn, OperationContext, OperationContextInput, OperationContextInputSchema, OperationContextResolvers, OperationGroupPermissionEntry, OperationGroupPermissionTable, OperationInput, OperationInputSchema, OperationUserPermissionEntry, OperationUserPermissionTable, OperationWithContext, OperationWithContextInput, OperationWithContextInputSchema, OperationWithContextResolvers, OperationsFilterInput, OperationsFilterInputSchema, PackageManagementService, PackageManagementServiceOptions, PackageManager, PackagesSubgraph, type PackagesSubgraphArgs, PagingInput, PagingInputSchema, type ParsedDriveUrl, PgliteFactory, PhDocument, PhDocumentFieldsFragment, PhDocumentFieldsFragmentDoc, PhDocumentOperationsArgs, PhDocumentResolvers, PhDocumentResultPage, PhDocumentResultPageResolvers, PollSyncEnvelopesDocument, PollSyncEnvelopesQuery, PollSyncEnvelopesQueryVariables, PollSyncEnvelopesResult, PollSyncEnvelopesResultResolvers, Processor, ProcessorDriveFactory, ProcessorFactoryBuilder, PropagationMode, PropagationModeSchema, PushSyncEnvelopesDocument, PushSyncEnvelopesMutation, PushSyncEnvelopesMutationVariables, Query, QueryDocumentArgs, QueryDocumentIncomingRelationshipsArgs, QueryDocumentModelsArgs, QueryDocumentOperationsArgs, QueryDocumentOutgoingRelationshipsArgs, QueryFindDocumentsArgs, QueryJobStatusArgs, QueryPollSyncEnvelopesArgs, QueryResolvers, ReactorModule, ReactorOperation, ReactorOperationResolvers, ReactorOperationResultPage, ReactorOperationResultPageResolvers, ReactorSigner, ReactorSignerApp, ReactorSignerAppInput, ReactorSignerAppInputSchema, ReactorSignerAppResolvers, ReactorSignerInput, ReactorSignerInputSchema, ReactorSignerResolvers, ReactorSignerUser, ReactorSignerUserInput, ReactorSignerUserInputSchema, ReactorSignerUserResolvers, ReactorSubgraph, ReadinessGate, RemoteCursor, RemoteCursorInput, RemoteCursorInputSchema, RemoteCursorResolvers, RemoteFilterInput, RemoteFilterInputSchema, RemoveRelationshipDocument, RemoveRelationshipMutation, RemoveRelationshipMutationVariables, RenameDocumentDocument, RenameDocumentMutation, RenameDocumentMutationVariables, Requester, RequireFields, Resolver, ResolverFn, ResolverTypeWrapper, ResolverWithResolve, Resolvers, ResolversObject, ResolversParentTypes, ResolversTypes, Revision, RevisionResolvers, Scalars, Sdk, SearchFilterInput, SearchFilterInputSchema, SetPreferredEditorDocument, SetPreferredEditorMutation, SetPreferredEditorMutationVariables, SubgraphArgs, SubgraphClass, SubgraphDefinition, Subscription, SubscriptionDocumentChangesArgs, SubscriptionJobChangesArgs, SubscriptionObject, SubscriptionResolveFn, SubscriptionResolver, SubscriptionResolverObject, SubscriptionResolvers, SubscriptionSubscribeFn, SubscriptionSubscriberObject, SyncEnvelope, SyncEnvelopeInput, SyncEnvelopeInputSchema, SyncEnvelopeResolvers, SyncEnvelopeType, SyncEnvelopeTypeSchema, SystemSubgraph, TlsOptions, TouchChannelDocument, TouchChannelInput, TouchChannelInputSchema, TouchChannelMutation, TouchChannelMutationVariables, TouchChannelResult, TouchChannelResultResolvers, TypeResolveFn, User, UserGroupTable, ViewFilterInput, ViewFilterInputSchema, WithIndex, WsContextFactory, WsDisposer, assertAuthRequiredForDocumentPermissions, buildGraphQlDocument, buildGraphQlDriveDocument, buildGraphqlOperation, buildGraphqlOperations, buildSubgraphSchemaModule, createAuthFetchMiddleware, createGatewayAdapter, createHttpAdapter, createMergedSchema, createReactorGraphQLClient, createSchema, definedNonNullAnySchema, driveIdFromUrl, extractSubgraphsFromModule, generateDocumentModelSchema, getAuthContext, getDbClient, getDocumentModelSchemaName, getDocumentModelTypeDefs, getGitHash, getGitUrl, getSdk, getUniqueDocumentModels, getVersion, initAnalyticsStoreSql, initializeAndStartAPI, isDefinedNonNullAny, isExpectedLoaderMiss, isSubgraphClass, parseDriveUrl, renderGraphqlPlayground };
 //# sourceMappingURL=index.d.mts.map