@prmichaelsen/remember-core 0.12.0 → 0.15.0

package/README.md

@@ -41,13 +41,14 @@ const results = await memoryService.search({
 | `@prmichaelsen/remember-core/types` | All type definitions and interfaces |
 | `@prmichaelsen/remember-core/services` | Service classes and input/output types |
 | `@prmichaelsen/remember-core/collections` | Composite IDs, tracking arrays, dot notation |
-| `@prmichaelsen/remember-core/constants` | Content types (41 types across 8 categories) |
+| `@prmichaelsen/remember-core/constants` | Content types (43 types across 11 categories) |
 | `@prmichaelsen/remember-core/config` | Environment config, debug levels |
 | `@prmichaelsen/remember-core/database/weaviate` | Weaviate client, schema, space collections |
 | `@prmichaelsen/remember-core/database/firestore` | Firestore init, path helpers |
 | `@prmichaelsen/remember-core/errors` | Typed errors (AppError, 8 subclasses) |
 | `@prmichaelsen/remember-core/utils` | Logger, filters, auth helpers, debug |
 | `@prmichaelsen/remember-core/testing` | Weaviate mock, test data generator |
+| `@prmichaelsen/remember-core/web` | Web SDK — use-case-oriented server-side functions |
 
 ## Core Services
 
@@ -61,10 +62,39 @@ const results = await memoryService.search({
 
 **ConfirmationTokenService** — Time-limited one-use tokens for sensitive operations (5-minute expiry).
 
+### Trust & Ghost System
+
+**TrustEnforcementService** — 5-tier content redaction (Full Access → Existence Only), query-level and prompt-level enforcement modes.
+
+**AccessControlService** — Per-memory access checks with 6-step resolution (self → ghost → block → trust → grant), trust escalation prevention, `canRevise()`/`canOverwrite()` permission resolution.
+
+**GhostConfigService** — Firestore-backed ghost persona configuration CRUD (trust levels, blocked users, enforcement mode).
+
+**EscalationService** — Trust penalty tracking and automatic blocking after repeated unauthorized access attempts.
+
+### Web SDK (`@prmichaelsen/remember-core/web`)
+
+Server-side, use-case-oriented functions that bundle multi-step business logic into single calls. 31 functions across 6 modules:
+
+- **Memories** (6) — CRUD + search with `Result<T>` responses
+- **Relationships** (4) — CRUD + search
+- **Spaces** (7) — publish/retract/revise auto-confirmed (no tokens), moderate, search, query
+- **Ghost/Trust** (8) — config, trust management, `searchAsGhost` (resolves trust internally)
+- **Profiles** (4) — compound operations (create+publish, search, retract, update+republish)
+- **Preferences** (2) — get/update
+
+```typescript
+import { createWebSDKContext, createAndPublishProfile, searchAsGhost } from '@prmichaelsen/remember-core/web';
+
+const ctx = createWebSDKContext({ userId, memoryService, spaceService, ... });
+const result = await createAndPublishProfile(ctx, { display_name: 'Jane', bio: 'Engineer' });
+if (result.ok) console.log(result.data.composite_id);
+```
+
 ## Testing
 
 ```bash
-npm test           # Unit tests (120 tests)
+npm test           # Unit tests (323 tests)
 npm run test:e2e   # Integration tests (22 tests)
 npm run typecheck  # Type checking
 npm run build      # TypeScript compilation
@@ -85,7 +115,7 @@ remember-core (this package)
   ├── database/      Weaviate + Firestore initialization
   ├── collections/   Weaviate collection utilities
   ├── utils/         Logger, filters, auth helpers
-  ├── services/      Business logic (5 service classes)
+  ├── services/      Business logic (5 core + 4 trust/ghost service modules)
   └── testing/       Mock infrastructure for consumers
 
 remember-mcp-server (consumer)

package/dist/services/access-control.service.d.ts

@@ -0,0 +1,140 @@
+/**
+ * Access control service — per-memory access checks with escalation prevention.
+ *
+ * In ghost mode (default), query-level filtering handles trust at the Weaviate layer.
+ * This service is needed for:
+ * 1. Trust escalation penalty tracking
+ * 2. Block management
+ * 3. Prompt/hybrid enforcement modes (per-memory access checks)
+ * 4. Future direct access tools
+ *
+ * Ported from remember-mcp/src/services/access-control.ts
+ */
+import type { Memory } from '../types/memory.types.js';
+import type { AccessResult } from '../types/access-result.types.js';
+import type { GhostConfig } from '../types/ghost-config.types.js';
+import type { WriteMode, UserCredentials } from '../types/auth.types.js';
+/** Block record for a specific (accessor, memory) pair */
+export interface MemoryBlock {
+    blocked_at: string;
+    reason: string;
+    attempt_count: number;
+}
+/** Attempt record for escalation tracking */
+export interface AttemptRecord {
+    count: number;
+    last_attempt_at: string;
+}
+/**
+ * Provider interface for GhostConfig lookups.
+ * In-memory stub included, Firestore implementation in ghost-config.service.ts.
+ */
+export interface GhostConfigProvider {
+    getGhostConfig(ownerUserId: string): Promise<GhostConfig | null>;
+}
+/**
+ * Provider interface for block and attempt tracking.
+ * In-memory stub included, Firestore implementation in escalation.service.ts.
+ */
+export interface EscalationStore {
+    getBlock(ownerUserId: string, accessorUserId: string, memoryId: string): Promise<MemoryBlock | null>;
+    setBlock(ownerUserId: string, accessorUserId: string, memoryId: string, block: MemoryBlock): Promise<void>;
+    removeBlock(ownerUserId: string, accessorUserId: string, memoryId: string): Promise<void>;
+    getAttempts(ownerUserId: string, accessorUserId: string, memoryId: string): Promise<AttemptRecord | null>;
+    incrementAttempts(ownerUserId: string, accessorUserId: string, memoryId: string): Promise<AttemptRecord>;
+}
+/** Stub GhostConfig provider — returns null (ghost not configured) */
+export declare class StubGhostConfigProvider implements GhostConfigProvider {
+    private configs;
+    getGhostConfig(ownerUserId: string): Promise<GhostConfig | null>;
+    /** Test helper: set a GhostConfig for a user */
+    setGhostConfig(ownerUserId: string, config: GhostConfig): void;
+}
+/** In-memory escalation store for development/testing */
+export declare class InMemoryEscalationStore implements EscalationStore {
+    private blocks;
+    private attempts;
+    private key;
+    getBlock(ownerUserId: string, accessorUserId: string, memoryId: string): Promise<MemoryBlock | null>;
+    setBlock(ownerUserId: string, accessorUserId: string, memoryId: string, block: MemoryBlock): Promise<void>;
+    removeBlock(ownerUserId: string, accessorUserId: string, memoryId: string): Promise<void>;
+    getAttempts(ownerUserId: string, accessorUserId: string, memoryId: string): Promise<AttemptRecord | null>;
+    incrementAttempts(ownerUserId: string, accessorUserId: string, memoryId: string): Promise<AttemptRecord>;
+}
+/** Trust penalty applied per failed access attempt (after repeated attempts) */
+export declare const TRUST_PENALTY = 0.1;
+/** Number of failed attempts before blocking */
+export declare const MAX_ATTEMPTS_BEFORE_BLOCK = 3;
+/**
+ * Check if an accessor has permission to access a specific memory.
+ *
+ * Flow:
+ * 1. Self-access → always granted (owner)
+ * 2. Ghost not enabled → no_permission
+ * 3. Accessor blocked by owner → no_permission
+ * 4. Memory-specific block → blocked
+ * 5. Insufficient trust → insufficient_trust (+ penalty on repeated attempts, possible block)
+ * 6. Sufficient trust → granted (trusted; trust 1.0 memories capped to existence-only by formatting layer)
+ */
+export declare function checkMemoryAccess(accessorUserId: string, memory: Memory, ghostConfigProvider: GhostConfigProvider, escalationStore: EscalationStore): Promise<AccessResult>;
+/**
+ * Handle an insufficient trust access attempt.
+ * Tracks attempts; applies -0.1 penalty on repeated attempts, blocks after 3.
+ */
+export declare function handleInsufficientTrust(ownerUserId: string, accessorUserId: string, memoryId: string, requiredTrust: number, actualTrust: number, escalationStore: EscalationStore): Promise<AccessResult>;
+/**
+ * Check if access to a specific memory is blocked.
+ */
+export declare function isMemoryBlocked(ownerUserId: string, accessorUserId: string, memoryId: string, escalationStore: EscalationStore): Promise<boolean>;
+/**
+ * Reset a memory-specific block (e.g., via grant_access).
+ */
+export declare function resetBlock(ownerUserId: string, accessorUserId: string, memoryId: string, escalationStore: EscalationStore): Promise<void>;
+/**
+ * Resolve the trust level for an accessor from GhostConfig.
+ *
+ * Priority: per_user_trust → default_public_trust → 0
+ *
+ * Note: "friend" vs "public" distinction will be determined by the calling
+ * context when friend list/social graph is available. For now, non-per_user
+ * accessors fall through to default_public_trust.
+ */
+export declare function resolveAccessorTrustLevel(ghostConfig: GhostConfig, accessorUserId: string): number;
+/**
+ * Format an AccessResult into a human-readable message.
+ */
+export declare function formatAccessResultMessage(result: AccessResult): string;
+/**
+ * Minimal type for published memory ACL fields used by permission resolution.
+ * Task 19 will add these to the Weaviate schema; this type covers the fields
+ * needed by canRevise/canOverwrite without coupling to the full schema.
+ */
+export interface PublishedMemoryACL {
+    author_id: string;
+    owner_id?: string | null;
+    write_mode?: WriteMode | null;
+    overwrite_allowed_ids?: string[];
+    group_ids?: string[];
+}
+/**
+ * Check if a user can revise (edit content of) a published memory.
+ *
+ * Resolution:
+ * - Owner always can revise
+ * - write_mode 'owner_only' (default): owner only
+ * - write_mode 'group_editors': users with can_revise permission in a shared group
+ * - write_mode 'anyone': any authenticated user
+ */
+export declare function canRevise(userId: string, memory: PublishedMemoryACL, credentialsFetcher?: () => Promise<UserCredentials>): Promise<boolean>;
+/**
+ * Check if a user can overwrite (replace/destructively edit) a published memory.
+ *
+ * Resolution:
+ * - Owner always can overwrite
+ * - Explicit per-memory grant via overwrite_allowed_ids
+ * - write_mode 'owner_only' (default): owner + overwrite_allowed_ids only
+ * - write_mode 'group_editors': users with can_overwrite permission in a shared group
+ * - write_mode 'anyone': any authenticated user
+ */
+export declare function canOverwrite(userId: string, memory: PublishedMemoryACL, credentialsFetcher?: () => Promise<UserCredentials>): Promise<boolean>;
+//# sourceMappingURL=access-control.service.d.ts.map

package/dist/services/access-control.service.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"access-control.service.d.ts","sourceRoot":"","sources":["../../src/services/access-control.service.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;GAWG;AAEH,OAAO,KAAK,EAAE,MAAM,EAAE,MAAM,0BAA0B,CAAC;AACvD,OAAO,KAAK,EAAE,YAAY,EAAE,MAAM,iCAAiC,CAAC;AACpE,OAAO,KAAK,EAAE,WAAW,EAAE,MAAM,gCAAgC,CAAC;AAClE,OAAO,KAAK,EAAE,SAAS,EAAE,eAAe,EAAE,MAAM,wBAAwB,CAAC;AAKzE,0DAA0D;AAC1D,MAAM,WAAW,WAAW;IAC1B,UAAU,EAAE,MAAM,CAAC;IACnB,MAAM,EAAE,MAAM,CAAC;IACf,aAAa,EAAE,MAAM,CAAC;CACvB;AAED,6CAA6C;AAC7C,MAAM,WAAW,aAAa;IAC5B,KAAK,EAAE,MAAM,CAAC;IACd,eAAe,EAAE,MAAM,CAAC;CACzB;AAED;;;GAGG;AACH,MAAM,WAAW,mBAAmB;IAClC,cAAc,CAAC,WAAW,EAAE,MAAM,GAAG,OAAO,CAAC,WAAW,GAAG,IAAI,CAAC,CAAC;CAClE;AAED;;;GAGG;AACH,MAAM,WAAW,eAAe;IAC9B,QAAQ,CAAC,WAAW,EAAE,MAAM,EAAE,cAAc,EAAE,MAAM,EAAE,QAAQ,EAAE,MAAM,GAAG,OAAO,CAAC,WAAW,GAAG,IAAI,CAAC,CAAC;IACrG,QAAQ,CAAC,WAAW,EAAE,MAAM,EAAE,cAAc,EAAE,MAAM,EAAE,QAAQ,EAAE,MAAM,EAAE,KAAK,EAAE,WAAW,GAAG,OAAO,CAAC,IAAI,CAAC,CAAC;IAC3G,WAAW,CAAC,WAAW,EAAE,MAAM,EAAE,cAAc,EAAE,MAAM,EAAE,QAAQ,EAAE,MAAM,GAAG,OAAO,CAAC,IAAI,CAAC,CAAC;IAC1F,WAAW,CAAC,WAAW,EAAE,MAAM,EAAE,cAAc,EAAE,MAAM,EAAE,QAAQ,EAAE,MAAM,GAAG,OAAO,CAAC,aAAa,GAAG,IAAI,CAAC,CAAC;IAC1G,iBAAiB,CAAC,WAAW,EAAE,MAAM,EAAE,cAAc,EAAE,MAAM,EAAE,QAAQ,EAAE,MAAM,GAAG,OAAO,CAAC,aAAa,CAAC,CAAC;CAC1G;AAID,sEAAsE;AACtE,qBAAa,uBAAwB,YAAW,mBAAmB;IACjE,OAAO,CAAC,OAAO,CAAuC;IAEhD,cAAc,CAAC,WAAW,EAAE,MAAM,GAAG,OAAO,CAAC,WAAW,GAAG,IAAI,CAAC;IAItE,gDAAgD;IAChD,cAAc,CAAC,WAAW,EAAE,MAAM,EAAE,MAAM,EAAE,WAAW,GAAG,IAAI;CAG/D;AAED,yDAAyD;AACzD,qBAAa,uBAAwB,YAAW,eAAe;IAC7D,OAAO,CAAC,MAAM,CAAuC;IACrD,OAAO,CAAC,QAAQ,CAAyC;IAEzD,OAAO,CAAC,GAAG;IAIL,QAAQ,CAAC,WAAW,EAAE,MAAM,EAAE,cAAc,EAAE,MAAM,EAAE,QAAQ,EAAE,MAAM,GAAG,OAAO,CAAC,WAAW,GAAG,IAAI,CAAC;IAIpG,QAAQ,CAAC,WAAW,EAAE,MAAM,EAAE,cAAc,EAAE,MAAM,EAAE,QAAQ,EAAE,MAAM,EAAE,KAAK,EAAE,WAAW,GAAG,OAAO,CAAC,IAAI,CAAC;IAI1G,WAAW,CAAC,WAAW,EAAE,MAAM,EAAE,cAAc,EAAE,MAAM,EAAE,QAAQ,EAAE,MAAM,GAAG,OAAO,CAAC,IAAI,CAAC;IAIzF,WAAW,CAAC,WAAW,EAAE,MAAM,EAAE,cAAc,EAAE,MAAM,EAAE,QAAQ,EAAE,MAAM,GAAG,OAAO,CAAC,aAAa,GAAG,IAAI,CAAC;IAIzG,iBAAiB,CAAC,WAAW,EAAE,MAAM,EAAE,cAAc,EAAE,MAAM,EAAE,QAAQ,EAAE,MAAM,GAAG,OAAO,CAAC,aAAa,CAAC;CAU/G;AAID,gFAAgF;AAChF,eAAO,MAAM,aAAa,MAAM,CAAC;AAEjC,gDAAgD;AAChD,eAAO,MAAM,yBAAyB,IAAI,CAAC;AAI3C;;;;;;;;;;GAUG;AACH,wBAAsB,iBAAiB,CACrC,cAAc,EAAE,MAAM,EACtB,MAAM,EAAE,MAAM,EACd,mBAAmB,EAAE,mBAAmB,EACxC,eAAe,EAAE,eAAe,GAC/B,OAAO,CAAC,YAAY,CAAC,CA6CvB;AAID;;;GAGG;AACH,wBAAsB,uBAAuB,CAC3C,WAAW,EAAE,MAAM,EACnB,cAAc,EAAE,MAAM,EACtB,QAAQ,EAAE,MAAM,EAChB,aAAa,EAAE,MAAM,EACrB,WAAW,EAAE,MAAM,EACnB,eAAe,EAAE,eAAe,GAC/B,OAAO,CAAC,YAAY,CAAC,CA0BvB;AAED;;GAEG;AACH,wBAAsB,eAAe,CACnC,WAAW,EAAE,MAAM,EACnB,cAAc,EAAE,MAAM,EACtB,QAAQ,EAAE,MAAM,EAChB,eAAe,EAAE,eAAe,GAC/B,OAAO,CAAC,OAAO,CAAC,CAGlB;AAED;;GAEG;AACH,wBAAsB,UAAU,CAC9B,WAAW,EAAE,MAAM,EACnB,cAAc,EAAE,MAAM,EACtB,QAAQ,EAAE,MAAM,EAChB,eAAe,EAAE,eAAe,GAC/B,OAAO,CAAC,IAAI,CAAC,CAEf;AAID;;;;;;;;GAQG;AACH,wBAAgB,yBAAyB,CAAC,WAAW,EAAE,WAAW,EAAE,cAAc,EAAE,MAAM,GAAG,MAAM,CAQlG;AAID;;GAEG;AACH,wBAAgB,yBAAyB,CAAC,MAAM,EAAE,YAAY,GAAG,MAAM,CAiBtE;AAID;;;;GAIG;AACH,MAAM,WAAW,kBAAkB;IACjC,SAAS,EAAE,MAAM,CAAC;IAClB,QAAQ,CAAC,EAAE,MAAM,GAAG,IAAI,CAAC;IACzB,UAAU,CAAC,EAAE,SAAS,GAAG,IAAI,CAAC;IAC9B,qBAAqB,CAAC,EAAE,MAAM,EAAE,CAAC;IACjC,SAAS,CAAC,EAAE,MAAM,EAAE,CAAC;CACtB;AAID;;;;;;;;GAQG;AACH,wBAAsB,SAAS,CAC7B,MAAM,EAAE,MAAM,EACd,MAAM,EAAE,kBAAkB,EAC1B,kBAAkB,CAAC,EAAE,MAAM,OAAO,CAAC,eAAe,CAAC,GAClD,OAAO,CAAC,OAAO,CAAC,CAqBlB;AAED;;;;;;;;;GASG;AACH,wBAAsB,YAAY,CAChC,MAAM,EAAE,MAAM,EACd,MAAM,EAAE,kBAAkB,EAC1B,kBAAkB,CAAC,EAAE,MAAM,OAAO,CAAC,eAAe,CAAC,GAClD,OAAO,CAAC,OAAO,CAAC,CAsBlB"}

package/dist/services/access-control.service.js

@@ -0,0 +1,257 @@
+/**
+ * Access control service — per-memory access checks with escalation prevention.
+ *
+ * In ghost mode (default), query-level filtering handles trust at the Weaviate layer.
+ * This service is needed for:
+ * 1. Trust escalation penalty tracking
+ * 2. Block management
+ * 3. Prompt/hybrid enforcement modes (per-memory access checks)
+ * 4. Future direct access tools
+ *
+ * Ported from remember-mcp/src/services/access-control.ts
+ */
+import { isTrustSufficient } from './trust-enforcement.service.js';
+// ─── In-Memory Implementations ────────────────────────────────────────────
+/** Stub GhostConfig provider — returns null (ghost not configured) */
+export class StubGhostConfigProvider {
+    configs = new Map();
+    async getGhostConfig(ownerUserId) {
+        return this.configs.get(ownerUserId) ?? null;
+    }
+    /** Test helper: set a GhostConfig for a user */
+    setGhostConfig(ownerUserId, config) {
+        this.configs.set(ownerUserId, config);
+    }
+}
+/** In-memory escalation store for development/testing */
+export class InMemoryEscalationStore {
+    blocks = new Map();
+    attempts = new Map();
+    key(ownerUserId, accessorUserId, memoryId) {
+        return `${ownerUserId}:${accessorUserId}:${memoryId}`;
+    }
+    async getBlock(ownerUserId, accessorUserId, memoryId) {
+        return this.blocks.get(this.key(ownerUserId, accessorUserId, memoryId)) ?? null;
+    }
+    async setBlock(ownerUserId, accessorUserId, memoryId, block) {
+        this.blocks.set(this.key(ownerUserId, accessorUserId, memoryId), block);
+    }
+    async removeBlock(ownerUserId, accessorUserId, memoryId) {
+        this.blocks.delete(this.key(ownerUserId, accessorUserId, memoryId));
+    }
+    async getAttempts(ownerUserId, accessorUserId, memoryId) {
+        return this.attempts.get(this.key(ownerUserId, accessorUserId, memoryId)) ?? null;
+    }
+    async incrementAttempts(ownerUserId, accessorUserId, memoryId) {
+        const k = this.key(ownerUserId, accessorUserId, memoryId);
+        const existing = this.attempts.get(k);
+        const record = {
+            count: (existing?.count ?? 0) + 1,
+            last_attempt_at: new Date().toISOString(),
+        };
+        this.attempts.set(k, record);
+        return record;
+    }
+}
+// ─── Constants ─────────────────────────────────────────────────────────────
+/** Trust penalty applied per failed access attempt (after repeated attempts) */
+export const TRUST_PENALTY = 0.1;
+/** Number of failed attempts before blocking */
+export const MAX_ATTEMPTS_BEFORE_BLOCK = 3;
+// ─── Core Access Control ───────────────────────────────────────────────────
+/**
+ * Check if an accessor has permission to access a specific memory.
+ *
+ * Flow:
+ * 1. Self-access → always granted (owner)
+ * 2. Ghost not enabled → no_permission
+ * 3. Accessor blocked by owner → no_permission
+ * 4. Memory-specific block → blocked
+ * 5. Insufficient trust → insufficient_trust (+ penalty on repeated attempts, possible block)
+ * 6. Sufficient trust → granted (trusted; trust 1.0 memories capped to existence-only by formatting layer)
+ */
+export async function checkMemoryAccess(accessorUserId, memory, ghostConfigProvider, escalationStore) {
+    const ownerUserId = memory.user_id;
+    const memoryId = memory.id;
+    // 1. Self-access always granted
+    if (accessorUserId === ownerUserId) {
+        return { status: 'granted', memory, access_level: 'owner' };
+    }
+    // 2. Check if ghost is enabled for owner
+    const ghostConfig = await ghostConfigProvider.getGhostConfig(ownerUserId);
+    if (!ghostConfig || !ghostConfig.enabled) {
+        return { status: 'no_permission', owner_user_id: ownerUserId, accessor_user_id: accessorUserId };
+    }
+    // 3. Check if accessor is user-wide blocked
+    if (ghostConfig.blocked_users.includes(accessorUserId)) {
+        return { status: 'no_permission', owner_user_id: ownerUserId, accessor_user_id: accessorUserId };
+    }
+    // 4. Check memory-specific block
+    const block = await escalationStore.getBlock(ownerUserId, accessorUserId, memoryId);
+    if (block) {
+        return {
+            status: 'blocked',
+            memory_id: memoryId,
+            reason: block.reason,
+            blocked_at: block.blocked_at,
+        };
+    }
+    // 5. Check trust level
+    const accessorTrust = resolveAccessorTrustLevel(ghostConfig, accessorUserId);
+    const memoryTrust = memory.trust;
+    if (!isTrustSufficient(memoryTrust, accessorTrust)) {
+        // Apply escalation
+        const result = await handleInsufficientTrust(ownerUserId, accessorUserId, memoryId, memoryTrust, accessorTrust, escalationStore);
+        return result;
+    }
+    // 6. All checks pass (trust 1.0 memories capped to existence-only by formatting layer)
+    return { status: 'granted', memory, access_level: 'trusted' };
+}
+// ─── Trust Escalation ──────────────────────────────────────────────────────
+/**
+ * Handle an insufficient trust access attempt.
+ * Tracks attempts; applies -0.1 penalty on repeated attempts, blocks after 3.
+ */
+export async function handleInsufficientTrust(ownerUserId, accessorUserId, memoryId, requiredTrust, actualTrust, escalationStore) {
+    const attempt = await escalationStore.incrementAttempts(ownerUserId, accessorUserId, memoryId);
+    // Block after MAX_ATTEMPTS_BEFORE_BLOCK
+    if (attempt.count >= MAX_ATTEMPTS_BEFORE_BLOCK) {
+        const block = {
+            blocked_at: new Date().toISOString(),
+            reason: `Access blocked after ${attempt.count} unauthorized attempts`,
+            attempt_count: attempt.count,
+        };
+        await escalationStore.setBlock(ownerUserId, accessorUserId, memoryId, block);
+        return {
+            status: 'blocked',
+            memory_id: memoryId,
+            reason: block.reason,
+            blocked_at: block.blocked_at,
+        };
+    }
+    return {
+        status: 'insufficient_trust',
+        memory_id: memoryId,
+        required_trust: requiredTrust,
+        actual_trust: Math.max(0, actualTrust - TRUST_PENALTY),
+        attempts_remaining: MAX_ATTEMPTS_BEFORE_BLOCK - attempt.count,
+    };
+}
+/**
+ * Check if access to a specific memory is blocked.
+ */
+export async function isMemoryBlocked(ownerUserId, accessorUserId, memoryId, escalationStore) {
+    const block = await escalationStore.getBlock(ownerUserId, accessorUserId, memoryId);
+    return block !== null;
+}
+/**
+ * Reset a memory-specific block (e.g., via grant_access).
+ */
+export async function resetBlock(ownerUserId, accessorUserId, memoryId, escalationStore) {
+    await escalationStore.removeBlock(ownerUserId, accessorUserId, memoryId);
+}
+// ─── Trust Resolution ──────────────────────────────────────────────────────
+/**
+ * Resolve the trust level for an accessor from GhostConfig.
+ *
+ * Priority: per_user_trust → default_public_trust → 0
+ *
+ * Note: "friend" vs "public" distinction will be determined by the calling
+ * context when friend list/social graph is available. For now, non-per_user
+ * accessors fall through to default_public_trust.
+ */
+export function resolveAccessorTrustLevel(ghostConfig, accessorUserId) {
+    // 1. Per-user override
+    if (accessorUserId in ghostConfig.per_user_trust) {
+        return ghostConfig.per_user_trust[accessorUserId];
+    }
+    // 2. Fall through to public trust (friend detection deferred)
+    return ghostConfig.default_public_trust ?? 0;
+}
+// ─── Message Formatting ───────────────────────────────────────────────────
+/**
+ * Format an AccessResult into a human-readable message.
+ */
+export function formatAccessResultMessage(result) {
+    switch (result.status) {
+        case 'granted':
+            return result.access_level === 'owner'
+                ? 'Access granted (owner).'
+                : 'Access granted (trusted).';
+        case 'insufficient_trust':
+            return `Insufficient trust level. Required: ${result.required_trust.toFixed(2)}, actual: ${result.actual_trust.toFixed(2)}. ${result.attempts_remaining} attempt(s) remaining before access is blocked.`;
+        case 'blocked':
+            return `Access blocked: ${result.reason}`;
+        case 'no_permission':
+            return 'No permission to access this user\'s memories.';
+        case 'not_found':
+            return `Memory ${result.memory_id} not found.`;
+        case 'deleted':
+            return `Memory ${result.memory_id} was deleted on ${result.deleted_at}.`;
+    }
+}
+// ─── Permission Resolution (Write ACL) ───────────────────────────────────
+/**
+ * Check if a user can revise (edit content of) a published memory.
+ *
+ * Resolution:
+ * - Owner always can revise
+ * - write_mode 'owner_only' (default): owner only
+ * - write_mode 'group_editors': users with can_revise permission in a shared group
+ * - write_mode 'anyone': any authenticated user
+ */
+export async function canRevise(userId, memory, credentialsFetcher) {
+    const owner = memory.owner_id ?? memory.author_id;
+    if (userId === owner)
+        return true;
+    const writeMode = memory.write_mode ?? 'owner_only';
+    switch (writeMode) {
+        case 'owner_only':
+            return false;
+        case 'group_editors': {
+            if (!credentialsFetcher)
+                return false;
+            const credentials = await credentialsFetcher();
+            return (memory.group_ids ?? []).some(gid => {
+                const membership = credentials.group_memberships.find(m => m.group_id === gid);
+                return membership?.permissions.can_revise === true;
+            });
+        }
+        case 'anyone':
+            return true;
+    }
+}
+/**
+ * Check if a user can overwrite (replace/destructively edit) a published memory.
+ *
+ * Resolution:
+ * - Owner always can overwrite
+ * - Explicit per-memory grant via overwrite_allowed_ids
+ * - write_mode 'owner_only' (default): owner + overwrite_allowed_ids only
+ * - write_mode 'group_editors': users with can_overwrite permission in a shared group
+ * - write_mode 'anyone': any authenticated user
+ */
+export async function canOverwrite(userId, memory, credentialsFetcher) {
+    const owner = memory.owner_id ?? memory.author_id;
+    if (userId === owner)
+        return true;
+    if ((memory.overwrite_allowed_ids ?? []).includes(userId))
+        return true;
+    const writeMode = memory.write_mode ?? 'owner_only';
+    switch (writeMode) {
+        case 'owner_only':
+            return false;
+        case 'group_editors': {
+            if (!credentialsFetcher)
+                return false;
+            const credentials = await credentialsFetcher();
+            return (memory.group_ids ?? []).some(gid => {
+                const membership = credentials.group_memberships.find(m => m.group_id === gid);
+                return membership?.permissions.can_overwrite === true;
+            });
+        }
+        case 'anyone':
+            return true;
+    }
+}
+//# sourceMappingURL=access-control.service.js.map

package/dist/services/access-control.service.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"access-control.service.js","sourceRoot":"","sources":["../../src/services/access-control.service.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;GAWG;AAMH,OAAO,EAAE,iBAAiB,EAAE,MAAM,gCAAgC,CAAC;AAqCnE,6EAA6E;AAE7E,sEAAsE;AACtE,MAAM,OAAO,uBAAuB;IAC1B,OAAO,GAA6B,IAAI,GAAG,EAAE,CAAC;IAEtD,KAAK,CAAC,cAAc,CAAC,WAAmB;QACtC,OAAO,IAAI,CAAC,OAAO,CAAC,GAAG,CAAC,WAAW,CAAC,IAAI,IAAI,CAAC;IAC/C,CAAC;IAED,gDAAgD;IAChD,cAAc,CAAC,WAAmB,EAAE,MAAmB;QACrD,IAAI,CAAC,OAAO,CAAC,GAAG,CAAC,WAAW,EAAE,MAAM,CAAC,CAAC;IACxC,CAAC;CACF;AAED,yDAAyD;AACzD,MAAM,OAAO,uBAAuB;IAC1B,MAAM,GAA6B,IAAI,GAAG,EAAE,CAAC;IAC7C,QAAQ,GAA+B,IAAI,GAAG,EAAE,CAAC;IAEjD,GAAG,CAAC,WAAmB,EAAE,cAAsB,EAAE,QAAgB;QACvE,OAAO,GAAG,WAAW,IAAI,cAAc,IAAI,QAAQ,EAAE,CAAC;IACxD,CAAC;IAED,KAAK,CAAC,QAAQ,CAAC,WAAmB,EAAE,cAAsB,EAAE,QAAgB;QAC1E,OAAO,IAAI,CAAC,MAAM,CAAC,GAAG,CAAC,IAAI,CAAC,GAAG,CAAC,WAAW,EAAE,cAAc,EAAE,QAAQ,CAAC,CAAC,IAAI,IAAI,CAAC;IAClF,CAAC;IAED,KAAK,CAAC,QAAQ,CAAC,WAAmB,EAAE,cAAsB,EAAE,QAAgB,EAAE,KAAkB;QAC9F,IAAI,CAAC,MAAM,CAAC,GAAG,CAAC,IAAI,CAAC,GAAG,CAAC,WAAW,EAAE,cAAc,EAAE,QAAQ,CAAC,EAAE,KAAK,CAAC,CAAC;IAC1E,CAAC;IAED,KAAK,CAAC,WAAW,CAAC,WAAmB,EAAE,cAAsB,EAAE,QAAgB;QAC7E,IAAI,CAAC,MAAM,CAAC,MAAM,CAAC,IAAI,CAAC,GAAG,CAAC,WAAW,EAAE,cAAc,EAAE,QAAQ,CAAC,CAAC,CAAC;IACtE,CAAC;IAED,KAAK,CAAC,WAAW,CAAC,WAAmB,EAAE,cAAsB,EAAE,QAAgB;QAC7E,OAAO,IAAI,CAAC,QAAQ,CAAC,GAAG,CAAC,IAAI,CAAC,GAAG,CAAC,WAAW,EAAE,cAAc,EAAE,QAAQ,CAAC,CAAC,IAAI,IAAI,CAAC;IACpF,CAAC;IAED,KAAK,CAAC,iBAAiB,CAAC,WAAmB,EAAE,cAAsB,EAAE,QAAgB;QACnF,MAAM,CAAC,GAAG,IAAI,CAAC,GAAG,CAAC,WAAW,EAAE,cAAc,EAAE,QAAQ,CAAC,CAAC;QAC1D,MAAM,QAAQ,GAAG,IAAI,CAAC,QAAQ,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC;QACtC,MAAM,MAAM,GAAkB;YAC5B,KAAK,EAAE,CAAC,QAAQ,EAAE,KAAK,IAAI,CAAC,CAAC,GAAG,CAAC;YACjC,eAAe,EAAE,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE;SAC1C,CAAC;QACF,IAAI,CAAC,QAAQ,CAAC,GAAG,CAAC,CAAC,EAAE,MAAM,CAAC,CAAC;QAC7B,OAAO,MAAM,CAAC;IAChB,CAAC;CACF;AAED,8EAA8E;AAE9E,gFAAgF;AAChF,MAAM,CAAC,MAAM,aAAa,GAAG,GAAG,CAAC;AAEjC,gDAAgD;AAChD,MAAM,CAAC,MAAM,yBAAyB,GAAG,CAAC,CAAC;AAE3C,8EAA8E;AAE9E;;;;;;;;;;GAUG;AACH,MAAM,CAAC,KAAK,UAAU,iBAAiB,CACrC,cAAsB,EACtB,MAAc,EACd,mBAAwC,EACxC,eAAgC;IAEhC,MAAM,WAAW,GAAG,MAAM,CAAC,OAAO,CAAC;IACnC,MAAM,QAAQ,GAAG,MAAM,CAAC,EAAE,CAAC;IAE3B,gCAAgC;IAChC,IAAI,cAAc,KAAK,WAAW,EAAE,CAAC;QACnC,OAAO,EAAE,MAAM,EAAE,SAAS,EAAE,MAAM,EAAE,YAAY,EAAE,OAAO,EAAE,CAAC;IAC9D,CAAC;IAED,yCAAyC;IACzC,MAAM,WAAW,GAAG,MAAM,mBAAmB,CAAC,cAAc,CAAC,WAAW,CAAC,CAAC;IAC1E,IAAI,CAAC,WAAW,IAAI,CAAC,WAAW,CAAC,OAAO,EAAE,CAAC;QACzC,OAAO,EAAE,MAAM,EAAE,eAAe,EAAE,aAAa,EAAE,WAAW,EAAE,gBAAgB,EAAE,cAAc,EAAE,CAAC;IACnG,CAAC;IAED,4CAA4C;IAC5C,IAAI,WAAW,CAAC,aAAa,CAAC,QAAQ,CAAC,cAAc,CAAC,EAAE,CAAC;QACvD,OAAO,EAAE,MAAM,EAAE,eAAe,EAAE,aAAa,EAAE,WAAW,EAAE,gBAAgB,EAAE,cAAc,EAAE,CAAC;IACnG,CAAC;IAED,iCAAiC;IACjC,MAAM,KAAK,GAAG,MAAM,eAAe,CAAC,QAAQ,CAAC,WAAW,EAAE,cAAc,EAAE,QAAQ,CAAC,CAAC;IACpF,IAAI,KAAK,EAAE,CAAC;QACV,OAAO;YACL,MAAM,EAAE,SAAS;YACjB,SAAS,EAAE,QAAQ;YACnB,MAAM,EAAE,KAAK,CAAC,MAAM;YACpB,UAAU,EAAE,KAAK,CAAC,UAAU;SAC7B,CAAC;IACJ,CAAC;IAED,uBAAuB;IACvB,MAAM,aAAa,GAAG,yBAAyB,CAAC,WAAW,EAAE,cAAc,CAAC,CAAC;IAC7E,MAAM,WAAW,GAAG,MAAM,CAAC,KAAK,CAAC;IAEjC,IAAI,CAAC,iBAAiB,CAAC,WAAW,EAAE,aAAa,CAAC,EAAE,CAAC;QACnD,mBAAmB;QACnB,MAAM,MAAM,GAAG,MAAM,uBAAuB,CAC1C,WAAW,EAAE,cAAc,EAAE,QAAQ,EAAE,WAAW,EAAE,aAAa,EAAE,eAAe,CACnF,CAAC;QACF,OAAO,MAAM,CAAC;IAChB,CAAC;IAED,uFAAuF;IACvF,OAAO,EAAE,MAAM,EAAE,SAAS,EAAE,MAAM,EAAE,YAAY,EAAE,SAAS,EAAE,CAAC;AAChE,CAAC;AAED,8EAA8E;AAE9E;;;GAGG;AACH,MAAM,CAAC,KAAK,UAAU,uBAAuB,CAC3C,WAAmB,EACnB,cAAsB,EACtB,QAAgB,EAChB,aAAqB,EACrB,WAAmB,EACnB,eAAgC;IAEhC,MAAM,OAAO,GAAG,MAAM,eAAe,CAAC,iBAAiB,CAAC,WAAW,EAAE,cAAc,EAAE,QAAQ,CAAC,CAAC;IAE/F,wCAAwC;IACxC,IAAI,OAAO,CAAC,KAAK,IAAI,yBAAyB,EAAE,CAAC;QAC/C,MAAM,KAAK,GAAgB;YACzB,UAAU,EAAE,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE;YACpC,MAAM,EAAE,wBAAwB,OAAO,CAAC,KAAK,wBAAwB;YACrE,aAAa,EAAE,OAAO,CAAC,KAAK;SAC7B,CAAC;QACF,MAAM,eAAe,CAAC,QAAQ,CAAC,WAAW,EAAE,cAAc,EAAE,QAAQ,EAAE,KAAK,CAAC,CAAC;QAC7E,OAAO;YACL,MAAM,EAAE,SAAS;YACjB,SAAS,EAAE,QAAQ;YACnB,MAAM,EAAE,KAAK,CAAC,MAAM;YACpB,UAAU,EAAE,KAAK,CAAC,UAAU;SAC7B,CAAC;IACJ,CAAC;IAED,OAAO;QACL,MAAM,EAAE,oBAAoB;QAC5B,SAAS,EAAE,QAAQ;QACnB,cAAc,EAAE,aAAa;QAC7B,YAAY,EAAE,IAAI,CAAC,GAAG,CAAC,CAAC,EAAE,WAAW,GAAG,aAAa,CAAC;QACtD,kBAAkB,EAAE,yBAAyB,GAAG,OAAO,CAAC,KAAK;KAC9D,CAAC;AACJ,CAAC;AAED;;GAEG;AACH,MAAM,CAAC,KAAK,UAAU,eAAe,CACnC,WAAmB,EACnB,cAAsB,EACtB,QAAgB,EAChB,eAAgC;IAEhC,MAAM,KAAK,GAAG,MAAM,eAAe,CAAC,QAAQ,CAAC,WAAW,EAAE,cAAc,EAAE,QAAQ,CAAC,CAAC;IACpF,OAAO,KAAK,KAAK,IAAI,CAAC;AACxB,CAAC;AAED;;GAEG;AACH,MAAM,CAAC,KAAK,UAAU,UAAU,CAC9B,WAAmB,EACnB,cAAsB,EACtB,QAAgB,EAChB,eAAgC;IAEhC,MAAM,eAAe,CAAC,WAAW,CAAC,WAAW,EAAE,cAAc,EAAE,QAAQ,CAAC,CAAC;AAC3E,CAAC;AAED,8EAA8E;AAE9E;;;;;;;;GAQG;AACH,MAAM,UAAU,yBAAyB,CAAC,WAAwB,EAAE,cAAsB;IACxF,uBAAuB;IACvB,IAAI,cAAc,IAAI,WAAW,CAAC,cAAc,EAAE,CAAC;QACjD,OAAO,WAAW,CAAC,cAAc,CAAC,cAAc,CAAC,CAAC;IACpD,CAAC;IAED,8DAA8D;IAC9D,OAAO,WAAW,CAAC,oBAAoB,IAAI,CAAC,CAAC;AAC/C,CAAC;AAED,6EAA6E;AAE7E;;GAEG;AACH,MAAM,UAAU,yBAAyB,CAAC,MAAoB;IAC5D,QAAQ,MAAM,CAAC,MAAM,EAAE,CAAC;QACtB,KAAK,SAAS;YACZ,OAAO,MAAM,CAAC,YAAY,KAAK,OAAO;gBACpC,CAAC,CAAC,yBAAyB;gBAC3B,CAAC,CAAC,2BAA2B,CAAC;QAClC,KAAK,oBAAoB;YACvB,OAAO,uCAAuC,MAAM,CAAC,cAAc,CAAC,OAAO,CAAC,CAAC,CAAC,aAAa,MAAM,CAAC,YAAY,CAAC,OAAO,CAAC,CAAC,CAAC,KAAK,MAAM,CAAC,kBAAkB,iDAAiD,CAAC;QAC3M,KAAK,SAAS;YACZ,OAAO,mBAAmB,MAAM,CAAC,MAAM,EAAE,CAAC;QAC5C,KAAK,eAAe;YAClB,OAAO,gDAAgD,CAAC;QAC1D,KAAK,WAAW;YACd,OAAO,UAAU,MAAM,CAAC,SAAS,aAAa,CAAC;QACjD,KAAK,SAAS;YACZ,OAAO,UAAU,MAAM,CAAC,SAAS,mBAAmB,MAAM,CAAC,UAAU,GAAG,CAAC;IAC7E,CAAC;AACH,CAAC;AAiBD,4EAA4E;AAE5E;;;;;;;;GAQG;AACH,MAAM,CAAC,KAAK,UAAU,SAAS,CAC7B,MAAc,EACd,MAA0B,EAC1B,kBAAmD;IAEnD,MAAM,KAAK,GAAG,MAAM,CAAC,QAAQ,IAAI,MAAM,CAAC,SAAS,CAAC;IAClD,IAAI,MAAM,KAAK,KAAK;QAAE,OAAO,IAAI,CAAC;IAElC,MAAM,SAAS,GAAG,MAAM,CAAC,UAAU,IAAI,YAAY,CAAC;IACpD,QAAQ,SAAS,EAAE,CAAC;QAClB,KAAK,YAAY;YACf,OAAO,KAAK,CAAC;QACf,KAAK,eAAe,CAAC,CAAC,CAAC;YACrB,IAAI,CAAC,kBAAkB;gBAAE,OAAO,KAAK,CAAC;YACtC,MAAM,WAAW,GAAG,MAAM,kBAAkB,EAAE,CAAC;YAC/C,OAAO,CAAC,MAAM,CAAC,SAAS,IAAI,EAAE,CAAC,CAAC,IAAI,CAAC,GAAG,CAAC,EAAE;gBACzC,MAAM,UAAU,GAAG,WAAW,CAAC,iBAAiB,CAAC,IAAI,CACnD,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,QAAQ,KAAK,GAAG,CACxB,CAAC;gBACF,OAAO,UAAU,EAAE,WAAW,CAAC,UAAU,KAAK,IAAI,CAAC;YACrD,CAAC,CAAC,CAAC;QACL,CAAC;QACD,KAAK,QAAQ;YACX,OAAO,IAAI,CAAC;IAChB,CAAC;AACH,CAAC;AAED;;;;;;;;;GASG;AACH,MAAM,CAAC,KAAK,UAAU,YAAY,CAChC,MAAc,EACd,MAA0B,EAC1B,kBAAmD;IAEnD,MAAM,KAAK,GAAG,MAAM,CAAC,QAAQ,IAAI,MAAM,CAAC,SAAS,CAAC;IAClD,IAAI,MAAM,KAAK,KAAK;QAAE,OAAO,IAAI,CAAC;IAClC,IAAI,CAAC,MAAM,CAAC,qBAAqB,IAAI,EAAE,CAAC,CAAC,QAAQ,CAAC,MAAM,CAAC;QAAE,OAAO,IAAI,CAAC;IAEvE,MAAM,SAAS,GAAG,MAAM,CAAC,UAAU,IAAI,YAAY,CAAC;IACpD,QAAQ,SAAS,EAAE,CAAC;QAClB,KAAK,YAAY;YACf,OAAO,KAAK,CAAC;QACf,KAAK,eAAe,CAAC,CAAC,CAAC;YACrB,IAAI,CAAC,kBAAkB;gBAAE,OAAO,KAAK,CAAC;YACtC,MAAM,WAAW,GAAG,MAAM,kBAAkB,EAAE,CAAC;YAC/C,OAAO,CAAC,MAAM,CAAC,SAAS,IAAI,EAAE,CAAC,CAAC,IAAI,CAAC,GAAG,CAAC,EAAE;gBACzC,MAAM,UAAU,GAAG,WAAW,CAAC,iBAAiB,CAAC,IAAI,CACnD,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,QAAQ,KAAK,GAAG,CACxB,CAAC;gBACF,OAAO,UAAU,EAAE,WAAW,CAAC,aAAa,KAAK,IAAI,CAAC;YACxD,CAAC,CAAC,CAAC;QACL,CAAC;QACD,KAAK,QAAQ;YACX,OAAO,IAAI,CAAC;IAChB,CAAC;AACH,CAAC"}

package/dist/services/escalation.service.d.ts

@@ -0,0 +1,25 @@
+/**
+ * Firestore-backed Escalation Store
+ *
+ * Persists trust escalation tracking (attempt counts, blocks) to Firestore.
+ * Replaces InMemoryEscalationStore for production use.
+ *
+ * Firestore path: {BASE}.users/{ownerUserId}/ghost_escalation/{accessorUserId}:{memoryId}
+ *
+ * Ported from remember-mcp/src/services/escalation.service.ts
+ */
+import type { Logger } from '../utils/logger.js';
+import type { EscalationStore, MemoryBlock, AttemptRecord } from './access-control.service.js';
+/**
+ * Firestore-backed escalation store for production use.
+ */
+export declare class FirestoreEscalationStore implements EscalationStore {
+    private logger?;
+    constructor(logger?: Logger | undefined);
+    getBlock(ownerUserId: string, accessorUserId: string, memoryId: string): Promise<MemoryBlock | null>;
+    setBlock(ownerUserId: string, accessorUserId: string, memoryId: string, block: MemoryBlock): Promise<void>;
+    removeBlock(ownerUserId: string, accessorUserId: string, memoryId: string): Promise<void>;
+    getAttempts(ownerUserId: string, accessorUserId: string, memoryId: string): Promise<AttemptRecord | null>;
+    incrementAttempts(ownerUserId: string, accessorUserId: string, memoryId: string): Promise<AttemptRecord>;
+}
+//# sourceMappingURL=escalation.service.d.ts.map

package/dist/services/escalation.service.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"escalation.service.d.ts","sourceRoot":"","sources":["../../src/services/escalation.service.ts"],"names":[],"mappings":"AAAA;;;;;;;;;GASG;AAIH,OAAO,KAAK,EAAE,MAAM,EAAE,MAAM,oBAAoB,CAAC;AACjD,OAAO,KAAK,EAAE,eAAe,EAAE,WAAW,EAAE,aAAa,EAAE,MAAM,6BAA6B,CAAC;AAmB/F;;GAEG;AACH,qBAAa,wBAAyB,YAAW,eAAe;IAClD,OAAO,CAAC,MAAM,CAAC;gBAAP,MAAM,CAAC,EAAE,MAAM,YAAA;IAE7B,QAAQ,CAAC,WAAW,EAAE,MAAM,EAAE,cAAc,EAAE,MAAM,EAAE,QAAQ,EAAE,MAAM,GAAG,OAAO,CAAC,WAAW,GAAG,IAAI,CAAC;IA4BpG,QAAQ,CAAC,WAAW,EAAE,MAAM,EAAE,cAAc,EAAE,MAAM,EAAE,QAAQ,EAAE,MAAM,EAAE,KAAK,EAAE,WAAW,GAAG,OAAO,CAAC,IAAI,CAAC;IAwB1G,WAAW,CAAC,WAAW,EAAE,MAAM,EAAE,cAAc,EAAE,MAAM,EAAE,QAAQ,EAAE,MAAM,GAAG,OAAO,CAAC,IAAI,CAAC;IAczF,WAAW,CAAC,WAAW,EAAE,MAAM,EAAE,cAAc,EAAE,MAAM,EAAE,QAAQ,EAAE,MAAM,GAAG,OAAO,CAAC,aAAa,GAAG,IAAI,CAAC;IA2BzG,iBAAiB,CAAC,WAAW,EAAE,MAAM,EAAE,cAAc,EAAE,MAAM,EAAE,QAAQ,EAAE,MAAM,GAAG,OAAO,CAAC,aAAa,CAAC;CAmB/G"}

package/dist/services/escalation.service.js

@@ -0,0 +1,119 @@
+/**
+ * Firestore-backed Escalation Store
+ *
+ * Persists trust escalation tracking (attempt counts, blocks) to Firestore.
+ * Replaces InMemoryEscalationStore for production use.
+ *
+ * Firestore path: {BASE}.users/{ownerUserId}/ghost_escalation/{accessorUserId}:{memoryId}
+ *
+ * Ported from remember-mcp/src/services/escalation.service.ts
+ */
+import { getDocument, setDocument, deleteDocument } from '../database/firestore/init.js';
+import { BASE } from '../database/firestore/paths.js';
+const SERVICE = 'EscalationService';
+/**
+ * Get Firestore collection path for escalation data.
+ */
+function getEscalationPath(ownerUserId) {
+    return `${BASE}.users/${ownerUserId}/ghost_escalation`;
+}
+/**
+ * Build a document ID from accessor and memory.
+ * Uses colon separator (safe in Firestore doc IDs).
+ */
+function docId(accessorUserId, memoryId) {
+    return `${accessorUserId}:${memoryId}`;
+}
+/**
+ * Firestore-backed escalation store for production use.
+ */
+export class FirestoreEscalationStore {
+    logger;
+    constructor(logger) {
+        this.logger = logger;
+    }
+    async getBlock(ownerUserId, accessorUserId, memoryId) {
+        try {
+            const doc = await getDocument(getEscalationPath(ownerUserId), docId(accessorUserId, memoryId));
+            if (!doc || !doc.blocked) {
+                return null;
+            }
+            return {
+                blocked_at: doc.blocked_at,
+                reason: doc.reason || 'Trust escalation limit reached',
+                attempt_count: doc.attempt_count || 0,
+            };
+        }
+        catch (error) {
+            this.logger?.error('Failed to get block', {
+                service: SERVICE,
+                ownerUserId,
+                accessorUserId,
+                memoryId,
+                error: error instanceof Error ? error.message : String(error),
+            });
+            return null;
+        }
+    }
+    async setBlock(ownerUserId, accessorUserId, memoryId, block) {
+        await setDocument(getEscalationPath(ownerUserId), docId(accessorUserId, memoryId), {
+            blocked: true,
+            blocked_at: block.blocked_at,
+            reason: block.reason,
+            attempt_count: block.attempt_count,
+            accessor_user_id: accessorUserId,
+            memory_id: memoryId,
+        }, { merge: true });
+        this.logger?.info('User blocked from memory', {
+            service: SERVICE,
+            ownerUserId,
+            accessorUserId,
+            memoryId,
+            reason: block.reason,
+        });
+    }
+    async removeBlock(ownerUserId, accessorUserId, memoryId) {
+        await deleteDocument(getEscalationPath(ownerUserId), docId(accessorUserId, memoryId));
+        this.logger?.info('Block removed', {
+            service: SERVICE,
+            ownerUserId,
+            accessorUserId,
+            memoryId,
+        });
+    }
+    async getAttempts(ownerUserId, accessorUserId, memoryId) {
+        try {
+            const doc = await getDocument(getEscalationPath(ownerUserId), docId(accessorUserId, memoryId));
+            if (!doc || doc.attempt_count === undefined) {
+                return null;
+            }
+            return {
+                count: doc.attempt_count,
+                last_attempt_at: doc.last_attempt_at,
+            };
+        }
+        catch (error) {
+            this.logger?.error('Failed to get attempts', {
+                service: SERVICE,
+                ownerUserId,
+                accessorUserId,
+                memoryId,
+                error: error instanceof Error ? error.message : String(error),
+            });
+            return null;
+        }
+    }
+    async incrementAttempts(ownerUserId, accessorUserId, memoryId) {
+        const existing = await this.getAttempts(ownerUserId, accessorUserId, memoryId);
+        const newCount = (existing?.count ?? 0) + 1;
+        const now = new Date().toISOString();
+        await setDocument(getEscalationPath(ownerUserId), docId(accessorUserId, memoryId), {
+            attempt_count: newCount,
+            last_attempt_at: now,
+            accessor_user_id: accessorUserId,
+            memory_id: memoryId,
+        }, { merge: true });
+        return { count: newCount, last_attempt_at: now };
+    }
+}
+//# sourceMappingURL=escalation.service.js.map

package/dist/services/escalation.service.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"escalation.service.js","sourceRoot":"","sources":["../../src/services/escalation.service.ts"],"names":[],"mappings":"AAAA;;;;;;;;;GASG;AAEH,OAAO,EAAE,WAAW,EAAE,WAAW,EAAE,cAAc,EAAE,MAAM,+BAA+B,CAAC;AACzF,OAAO,EAAE,IAAI,EAAE,MAAM,gCAAgC,CAAC;AAItD,MAAM,OAAO,GAAG,mBAAmB,CAAC;AAEpC;;GAEG;AACH,SAAS,iBAAiB,CAAC,WAAmB;IAC5C,OAAO,GAAG,IAAI,UAAU,WAAW,mBAAmB,CAAC;AACzD,CAAC;AAED;;;GAGG;AACH,SAAS,KAAK,CAAC,cAAsB,EAAE,QAAgB;IACrD,OAAO,GAAG,cAAc,IAAI,QAAQ,EAAE,CAAC;AACzC,CAAC;AAED;;GAEG;AACH,MAAM,OAAO,wBAAwB;IACf;IAApB,YAAoB,MAAe;QAAf,WAAM,GAAN,MAAM,CAAS;IAAG,CAAC;IAEvC,KAAK,CAAC,QAAQ,CAAC,WAAmB,EAAE,cAAsB,EAAE,QAAgB;QAC1E,IAAI,CAAC;YACH,MAAM,GAAG,GAAG,MAAM,WAAW,CAC3B,iBAAiB,CAAC,WAAW,CAAC,EAC9B,KAAK,CAAC,cAAc,EAAE,QAAQ,CAAC,CAChC,CAAC;YAEF,IAAI,CAAC,GAAG,IAAI,CAAC,GAAG,CAAC,OAAO,EAAE,CAAC;gBACzB,OAAO,IAAI,CAAC;YACd,CAAC;YAED,OAAO;gBACL,UAAU,EAAE,GAAG,CAAC,UAAU;gBAC1B,MAAM,EAAE,GAAG,CAAC,MAAM,IAAI,gCAAgC;gBACtD,aAAa,EAAE,GAAG,CAAC,aAAa,IAAI,CAAC;aACtC,CAAC;QACJ,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,IAAI,CAAC,MAAM,EAAE,KAAK,CAAC,qBAAqB,EAAE;gBACxC,OAAO,EAAE,OAAO;gBAChB,WAAW;gBACX,cAAc;gBACd,QAAQ;gBACR,KAAK,EAAE,KAAK,YAAY,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,KAAK,CAAC;aAC9D,CAAC,CAAC;YACH,OAAO,IAAI,CAAC;QACd,CAAC;IACH,CAAC;IAED,KAAK,CAAC,QAAQ,CAAC,WAAmB,EAAE,cAAsB,EAAE,QAAgB,EAAE,KAAkB;QAC9F,MAAM,WAAW,CACf,iBAAiB,CAAC,WAAW,CAAC,EAC9B,KAAK,CAAC,cAAc,EAAE,QAAQ,CAAC,EAC/B;YACE,OAAO,EAAE,IAAI;YACb,UAAU,EAAE,KAAK,CAAC,UAAU;YAC5B,MAAM,EAAE,KAAK,CAAC,MAAM;YACpB,aAAa,EAAE,KAAK,CAAC,aAAa;YAClC,gBAAgB,EAAE,cAAc;YAChC,SAAS,EAAE,QAAQ;SACpB,EACD,EAAE,KAAK,EAAE,IAAI,EAAE,CAChB,CAAC;QAEF,IAAI,CAAC,MAAM,EAAE,IAAI,CAAC,0BAA0B,EAAE;YAC5C,OAAO,EAAE,OAAO;YAChB,WAAW;YACX,cAAc;YACd,QAAQ;YACR,MAAM,EAAE,KAAK,CAAC,MAAM;SACrB,CAAC,CAAC;IACL,CAAC;IAED,KAAK,CAAC,WAAW,CAAC,WAAmB,EAAE,cAAsB,EAAE,QAAgB;QAC7E,MAAM,cAAc,CAClB,iBAAiB,CAAC,WAAW,CAAC,EAC9B,KAAK,CAAC,cAAc,EAAE,QAAQ,CAAC,CAChC,CAAC;QAEF,IAAI,CAAC,MAAM,EAAE,IAAI,CAAC,eAAe,EAAE;YACjC,OAAO,EAAE,OAAO;YAChB,WAAW;YACX,cAAc;YACd,QAAQ;SACT,CAAC,CAAC;IACL,CAAC;IAED,KAAK,CAAC,WAAW,CAAC,WAAmB,EAAE,cAAsB,EAAE,QAAgB;QAC7E,IAAI,CAAC;YACH,MAAM,GAAG,GAAG,MAAM,WAAW,CAC3B,iBAAiB,CAAC,WAAW,CAAC,EAC9B,KAAK,CAAC,cAAc,EAAE,QAAQ,CAAC,CAChC,CAAC;YAEF,IAAI,CAAC,GAAG,IAAI,GAAG,CAAC,aAAa,KAAK,SAAS,EAAE,CAAC;gBAC5C,OAAO,IAAI,CAAC;YACd,CAAC;YAED,OAAO;gBACL,KAAK,EAAE,GAAG,CAAC,aAAa;gBACxB,eAAe,EAAE,GAAG,CAAC,eAAe;aACrC,CAAC;QACJ,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,IAAI,CAAC,MAAM,EAAE,KAAK,CAAC,wBAAwB,EAAE;gBAC3C,OAAO,EAAE,OAAO;gBAChB,WAAW;gBACX,cAAc;gBACd,QAAQ;gBACR,KAAK,EAAE,KAAK,YAAY,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,KAAK,CAAC;aAC9D,CAAC,CAAC;YACH,OAAO,IAAI,CAAC;QACd,CAAC;IACH,CAAC;IAED,KAAK,CAAC,iBAAiB,CAAC,WAAmB,EAAE,cAAsB,EAAE,QAAgB;QACnF,MAAM,QAAQ,GAAG,MAAM,IAAI,CAAC,WAAW,CAAC,WAAW,EAAE,cAAc,EAAE,QAAQ,CAAC,CAAC;QAC/E,MAAM,QAAQ,GAAG,CAAC,QAAQ,EAAE,KAAK,IAAI,CAAC,CAAC,GAAG,CAAC,CAAC;QAC5C,MAAM,GAAG,GAAG,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE,CAAC;QAErC,MAAM,WAAW,CACf,iBAAiB,CAAC,WAAW,CAAC,EAC9B,KAAK,CAAC,cAAc,EAAE,QAAQ,CAAC,EAC/B;YACE,aAAa,EAAE,QAAQ;YACvB,eAAe,EAAE,GAAG;YACpB,gBAAgB,EAAE,cAAc;YAChC,SAAS,EAAE,QAAQ;SACpB,EACD,EAAE,KAAK,EAAE,IAAI,EAAE,CAChB,CAAC;QAEF,OAAO,EAAE,KAAK,EAAE,QAAQ,EAAE,eAAe,EAAE,GAAG,EAAE,CAAC;IACnD,CAAC;CACF"}