@semiont/frontend 0.3.2 → 0.3.4

package/standalone/apps/frontend/.next/server/app/[locale]/admin/security/page.js

@@ -28,228 +28,12 @@ module.exports = require("next/dist/compiled/next-server/app-page.runtime.prod.j
 
 /***/ }),
 
-/***/ 19121:
-/***/ ((module) => {
-
-"use strict";
-module.exports = require("next/dist/server/app-render/action-async-storage.external.js");
-
-/***/ }),
-
-/***/ 19404:
-/***/ ((__unused_webpack_module, __webpack_exports__, __webpack_require__) => {
-
-"use strict";
-
-// EXPORTS
-__webpack_require__.d(__webpack_exports__, {
-  "default": () => (/* binding */ AdminSecurity)
-});
-
-// EXTERNAL MODULE: ../../node_modules/next/dist/server/route-modules/app-page/vendored/ssr/react-jsx-runtime.js
-var react_jsx_runtime = __webpack_require__(92692);
-// EXTERNAL MODULE: ../../node_modules/next/dist/server/route-modules/app-page/vendored/ssr/react.js
-var react = __webpack_require__(71277);
-// EXTERNAL MODULE: ../../node_modules/next-intl/dist/esm/production/react-client/index.js
-var react_client = __webpack_require__(56305);
-// EXTERNAL MODULE: __barrel_optimize__?names=Toolbar,useAdmin!=!../../packages/react-ui/dist/index.mjs
-var dist = __webpack_require__(31587);
-// EXTERNAL MODULE: ./src/components/toolbar/ToolbarPanels.tsx + 4 modules
-var ToolbarPanels = __webpack_require__(50436);
-// EXTERNAL MODULE: __barrel_optimize__?names=useEventSubscriptions,useLineNumbers,usePanelBrowse,useTheme!=!../../packages/react-ui/dist/index.mjs
-var react_ui_dist = __webpack_require__(56677);
-// EXTERNAL MODULE: ../../packages/react-ui/dist/index.mjs + 27 modules
-var packages_react_ui_dist = __webpack_require__(76552);
-;// __barrel_optimize__?names=AdminSecurityPage!=!../../packages/react-ui/dist/index.mjs
-
-
-;// ./src/app/[locale]/admin/security/client.tsx
-/* __next_internal_client_entry_do_not_use__ default auto */ 
-/**
- * Admin Security Client - Thin Next.js wrapper
- *
- * This component handles Next.js-specific concerns (translations, API calls, hooks)
- * and delegates rendering to the pure React AdminSecurityPage component.
- */ 
-
-
-
-
-
-function AdminSecurity() {
-    const t = (0,react_client/* useTranslations */.c)('AdminSecurity');
-    // Toolbar and settings state
-    const { activePanel } = (0,react_ui_dist/* usePanelBrowse */.ySJ)();
-    const { theme, setTheme } = (0,react_ui_dist/* useTheme */.DPo)();
-    const { showLineNumbers, toggleLineNumbers } = (0,react_ui_dist/* useLineNumbers */.cvF)();
-    // Handle theme change events
-    const handleThemeChanged = (0,react.useCallback)(({ theme })=>{
-        setTheme(theme);
-    }, [
-        setTheme
-    ]);
-    // Handle line numbers toggle events
-    const handleLineNumbersToggled = (0,react.useCallback)(()=>{
-        toggleLineNumbers();
-    }, [
-        toggleLineNumbers
-    ]);
-    (0,react_ui_dist/* useEventSubscriptions */.C$z)({
-        'settings:theme-changed': handleThemeChanged,
-        'settings:line-numbers-toggled': handleLineNumbersToggled
-    });
-    // Get OAuth configuration from API
-    const adminAPI = (0,dist/* useAdmin */.z8G)();
-    const { data: oauthConfig, isLoading: oauthLoading } = adminAPI.oauth.config.useQuery();
-    const allowedDomains = oauthConfig?.allowedDomains ?? [];
-    const providers = oauthConfig?.providers ?? [];
-    return /*#__PURE__*/ (0,react_jsx_runtime.jsx)(packages_react_ui_dist.AdminSecurityPage, {
-        providers: providers,
-        allowedDomains: allowedDomains,
-        isLoading: oauthLoading,
-        theme: theme,
-        showLineNumbers: showLineNumbers,
-        activePanel: activePanel,
-        translations: {
-            title: t('title'),
-            subtitle: t('subtitle'),
-            oauthProviders: t('oauthProviders'),
-            oauthProvidersDescription: t('oauthProvidersDescription'),
-            clientId: t('clientId'),
-            configured: t('configured'),
-            noProvidersConfigured: t('noProvidersConfigured'),
-            allowedDomains: t('allowedDomains'),
-            allowedDomainsDescription: t('allowedDomainsDescription'),
-            noDomainsConfigured: t('noDomainsConfigured'),
-            configManagementTitle: t('configManagementTitle'),
-            configManagementDescription: t('configManagementDescription'),
-            configLocalDev: t('configLocalDev'),
-            configCloudDeploy: t('configCloudDeploy'),
-            configCloudDeployCommand: t('configCloudDeployCommand'),
-            configCloudDeployEnd: t('configCloudDeployEnd'),
-            configAWS: t('configAWS')
-        },
-        ToolbarPanels: ToolbarPanels/* ToolbarPanels */.t,
-        Toolbar: dist/* Toolbar */.M7E
-    });
-}
-
-
-/***/ }),
-
-/***/ 19771:
-/***/ ((module) => {
-
-"use strict";
-module.exports = require("process");
-
-/***/ }),
-
-/***/ 22991:
-/***/ ((__unused_webpack_module, __unused_webpack_exports, __webpack_require__) => {
-
-Promise.resolve(/* import() eager */).then(__webpack_require__.bind(__webpack_require__, 48854));
-
-
-/***/ }),
-
-/***/ 26713:
-/***/ ((module) => {
-
-"use strict";
-module.exports = require("next/dist/shared/lib/router/utils/is-bot");
-
-/***/ }),
-
-/***/ 28354:
-/***/ ((module) => {
-
-"use strict";
-module.exports = require("util");
-
-/***/ }),
-
-/***/ 29294:
-/***/ ((module) => {
-
-"use strict";
-module.exports = require("next/dist/server/app-render/work-async-storage.external.js");
-
-/***/ }),
-
-/***/ 33873:
-/***/ ((module) => {
-
-"use strict";
-module.exports = require("path");
-
-/***/ }),
-
-/***/ 41025:
-/***/ ((module) => {
-
-"use strict";
-module.exports = require("next/dist/server/app-render/dynamic-access-async-storage.external.js");
-
-/***/ }),
-
-/***/ 43522:
+/***/ 12763:
 /***/ ((__unused_webpack_module, __webpack_exports__, __webpack_require__) => {
 
 "use strict";
 __webpack_require__.r(__webpack_exports__);
 /* harmony export */ __webpack_require__.d(__webpack_exports__, {
-/* harmony export */   "default": () => (/* binding */ AdminSecurityPage)
-/* harmony export */ });
-/* harmony import */ var react_jsx_runtime__WEBPACK_IMPORTED_MODULE_0__ = __webpack_require__(2474);
-/* harmony import */ var react_jsx_runtime__WEBPACK_IMPORTED_MODULE_0___default = /*#__PURE__*/__webpack_require__.n(react_jsx_runtime__WEBPACK_IMPORTED_MODULE_0__);
-/* harmony import */ var _client__WEBPACK_IMPORTED_MODULE_1__ = __webpack_require__(48854);
-
-
-// Authentication is handled by middleware.ts
-// Only authenticated admins can reach this page
-function AdminSecurityPage() {
-    return /*#__PURE__*/ (0,react_jsx_runtime__WEBPACK_IMPORTED_MODULE_0__.jsx)(_client__WEBPACK_IMPORTED_MODULE_1__["default"], {});
-}
-
-
-/***/ }),
-
-/***/ 43954:
-/***/ ((module) => {
-
-"use strict";
-module.exports = require("next/dist/shared/lib/router/utils/interception-routes");
-
-/***/ }),
-
-/***/ 48854:
-/***/ ((__unused_webpack_module, __webpack_exports__, __webpack_require__) => {
-
-"use strict";
-/* harmony export */ __webpack_require__.d(__webpack_exports__, {
-/* harmony export */   "default": () => (__WEBPACK_DEFAULT_EXPORT__)
-/* harmony export */ });
-/* harmony import */ var react_server_dom_webpack_server__WEBPACK_IMPORTED_MODULE_0__ = __webpack_require__(30274);
-/* harmony import */ var react_server_dom_webpack_server__WEBPACK_IMPORTED_MODULE_0___default = /*#__PURE__*/__webpack_require__.n(react_server_dom_webpack_server__WEBPACK_IMPORTED_MODULE_0__);
-// This file is generated by the Webpack next-flight-loader.
-
-/* harmony default export */ const __WEBPACK_DEFAULT_EXPORT__ = ((0,react_server_dom_webpack_server__WEBPACK_IMPORTED_MODULE_0__.registerClientReference)(
-function() { throw new Error("Attempted to call the default export of \"/home/runner/work/semiont/semiont/apps/frontend/src/app/[locale]/admin/security/client.tsx\" from the server, but it's on the client. It's not possible to invoke a client function from the server, it can only be rendered as a Component or passed to props of a Client Component."); },
-"/home/runner/work/semiont/semiont/apps/frontend/src/app/[locale]/admin/security/client.tsx",
-"default",
-));
-
-
-/***/ }),
-
-/***/ 51445:
-/***/ ((__unused_webpack_module, __webpack_exports__, __webpack_require__) => {
-
-"use strict";
-__webpack_require__.r(__webpack_exports__);
-/* harmony export */ __webpack_require__.d(__webpack_exports__, {
-/* harmony export */   GlobalError: () => (/* reexport safe */ _home_runner_work_semiont_semiont_apps_frontend_src_app_global_error_tsx__WEBPACK_IMPORTED_MODULE_25__["default"]),
 /* harmony export */   __next_app__: () => (/* binding */ __next_app__),
 /* harmony export */   handler: () => (/* binding */ handler),
 /* harmony export */   routeModule: () => (/* binding */ routeModule)
@@ -292,25 +76,30 @@ __webpack_require__.r(__webpack_exports__);
 /* harmony import */ var next_dist_lib_constants__WEBPACK_IMPORTED_MODULE_20__ = __webpack_require__(38038);
 /* harmony import */ var next_dist_lib_constants__WEBPACK_IMPORTED_MODULE_20___default = /*#__PURE__*/__webpack_require__.n(next_dist_lib_constants__WEBPACK_IMPORTED_MODULE_20__);
 /* harmony import */ var next_dist_server_stream_utils_encoded_tags__WEBPACK_IMPORTED_MODULE_21__ = __webpack_require__(29898);
-/* harmony import */ var next_dist_server_send_payload__WEBPACK_IMPORTED_MODULE_22__ = __webpack_require__(98798);
-/* harmony import */ var next_dist_server_send_payload__WEBPACK_IMPORTED_MODULE_22___default = /*#__PURE__*/__webpack_require__.n(next_dist_server_send_payload__WEBPACK_IMPORTED_MODULE_22__);
-/* harmony import */ var next_dist_shared_lib_no_fallback_error_external__WEBPACK_IMPORTED_MODULE_23__ = __webpack_require__(86439);
-/* harmony import */ var next_dist_shared_lib_no_fallback_error_external__WEBPACK_IMPORTED_MODULE_23___default = /*#__PURE__*/__webpack_require__.n(next_dist_shared_lib_no_fallback_error_external__WEBPACK_IMPORTED_MODULE_23__);
-/* harmony import */ var next_dist_shared_lib_size_limit__WEBPACK_IMPORTED_MODULE_24__ = __webpack_require__(77068);
-/* harmony import */ var next_dist_shared_lib_size_limit__WEBPACK_IMPORTED_MODULE_24___default = /*#__PURE__*/__webpack_require__.n(next_dist_shared_lib_size_limit__WEBPACK_IMPORTED_MODULE_24__);
-/* harmony import */ var _home_runner_work_semiont_semiont_apps_frontend_src_app_global_error_tsx__WEBPACK_IMPORTED_MODULE_25__ = __webpack_require__(56357);
-/* harmony import */ var next_dist_server_app_render_entry_base__WEBPACK_IMPORTED_MODULE_26__ = __webpack_require__(35402);
-/* harmony import */ var next_dist_server_app_render_entry_base__WEBPACK_IMPORTED_MODULE_26___default = /*#__PURE__*/__webpack_require__.n(next_dist_server_app_render_entry_base__WEBPACK_IMPORTED_MODULE_26__);
-/* harmony import */ var next_dist_client_components_redirect_status_code__WEBPACK_IMPORTED_MODULE_27__ = __webpack_require__(29059);
-/* harmony import */ var next_dist_client_components_redirect_status_code__WEBPACK_IMPORTED_MODULE_27___default = /*#__PURE__*/__webpack_require__.n(next_dist_client_components_redirect_status_code__WEBPACK_IMPORTED_MODULE_27__);
-/* harmony import */ var next_dist_shared_lib_invariant_error__WEBPACK_IMPORTED_MODULE_28__ = __webpack_require__(70722);
-/* harmony import */ var next_dist_shared_lib_invariant_error__WEBPACK_IMPORTED_MODULE_28___default = /*#__PURE__*/__webpack_require__.n(next_dist_shared_lib_invariant_error__WEBPACK_IMPORTED_MODULE_28__);
-/* harmony import */ var next_dist_lib_scheduler__WEBPACK_IMPORTED_MODULE_29__ = __webpack_require__(31182);
-/* harmony import */ var next_dist_lib_scheduler__WEBPACK_IMPORTED_MODULE_29___default = /*#__PURE__*/__webpack_require__.n(next_dist_lib_scheduler__WEBPACK_IMPORTED_MODULE_29__);
-/* harmony import */ var next_dist_shared_lib_router_utils_interception_routes__WEBPACK_IMPORTED_MODULE_30__ = __webpack_require__(43954);
-/* harmony import */ var next_dist_shared_lib_router_utils_interception_routes__WEBPACK_IMPORTED_MODULE_30___default = /*#__PURE__*/__webpack_require__.n(next_dist_shared_lib_router_utils_interception_routes__WEBPACK_IMPORTED_MODULE_30__);
+/* harmony import */ var next_dist_server_stream_utils_node_web_streams_helper__WEBPACK_IMPORTED_MODULE_22__ = __webpack_require__(62918);
+/* harmony import */ var next_dist_server_stream_utils_node_web_streams_helper__WEBPACK_IMPORTED_MODULE_22___default = /*#__PURE__*/__webpack_require__.n(next_dist_server_stream_utils_node_web_streams_helper__WEBPACK_IMPORTED_MODULE_22__);
+/* harmony import */ var next_dist_server_send_payload__WEBPACK_IMPORTED_MODULE_23__ = __webpack_require__(98798);
+/* harmony import */ var next_dist_server_send_payload__WEBPACK_IMPORTED_MODULE_23___default = /*#__PURE__*/__webpack_require__.n(next_dist_server_send_payload__WEBPACK_IMPORTED_MODULE_23__);
+/* harmony import */ var next_dist_shared_lib_no_fallback_error_external__WEBPACK_IMPORTED_MODULE_24__ = __webpack_require__(86439);
+/* harmony import */ var next_dist_shared_lib_no_fallback_error_external__WEBPACK_IMPORTED_MODULE_24___default = /*#__PURE__*/__webpack_require__.n(next_dist_shared_lib_no_fallback_error_external__WEBPACK_IMPORTED_MODULE_24__);
+/* harmony import */ var next_dist_shared_lib_size_limit__WEBPACK_IMPORTED_MODULE_25__ = __webpack_require__(77068);
+/* harmony import */ var next_dist_shared_lib_size_limit__WEBPACK_IMPORTED_MODULE_25___default = /*#__PURE__*/__webpack_require__.n(next_dist_shared_lib_size_limit__WEBPACK_IMPORTED_MODULE_25__);
+/* harmony import */ var next_dist_server_lib_postponed_request_body__WEBPACK_IMPORTED_MODULE_26__ = __webpack_require__(31214);
+/* harmony import */ var next_dist_server_lib_postponed_request_body__WEBPACK_IMPORTED_MODULE_26___default = /*#__PURE__*/__webpack_require__.n(next_dist_server_lib_postponed_request_body__WEBPACK_IMPORTED_MODULE_26__);
+/* harmony import */ var next_dist_server_app_render_entry_base__WEBPACK_IMPORTED_MODULE_27__ = __webpack_require__(35402);
+/* harmony import */ var next_dist_server_app_render_entry_base__WEBPACK_IMPORTED_MODULE_27___default = /*#__PURE__*/__webpack_require__.n(next_dist_server_app_render_entry_base__WEBPACK_IMPORTED_MODULE_27__);
+/* harmony import */ var next_dist_client_components_redirect_status_code__WEBPACK_IMPORTED_MODULE_28__ = __webpack_require__(29059);
+/* harmony import */ var next_dist_client_components_redirect_status_code__WEBPACK_IMPORTED_MODULE_28___default = /*#__PURE__*/__webpack_require__.n(next_dist_client_components_redirect_status_code__WEBPACK_IMPORTED_MODULE_28__);
+/* harmony import */ var next_dist_shared_lib_invariant_error__WEBPACK_IMPORTED_MODULE_29__ = __webpack_require__(70722);
+/* harmony import */ var next_dist_shared_lib_invariant_error__WEBPACK_IMPORTED_MODULE_29___default = /*#__PURE__*/__webpack_require__.n(next_dist_shared_lib_invariant_error__WEBPACK_IMPORTED_MODULE_29__);
+/* harmony import */ var next_dist_lib_scheduler__WEBPACK_IMPORTED_MODULE_30__ = __webpack_require__(31182);
+/* harmony import */ var next_dist_lib_scheduler__WEBPACK_IMPORTED_MODULE_30___default = /*#__PURE__*/__webpack_require__.n(next_dist_lib_scheduler__WEBPACK_IMPORTED_MODULE_30__);
+/* harmony import */ var next_dist_shared_lib_router_utils_interception_routes__WEBPACK_IMPORTED_MODULE_31__ = __webpack_require__(43954);
+/* harmony import */ var next_dist_shared_lib_router_utils_interception_routes__WEBPACK_IMPORTED_MODULE_31___default = /*#__PURE__*/__webpack_require__.n(next_dist_shared_lib_router_utils_interception_routes__WEBPACK_IMPORTED_MODULE_31__);
+/* harmony import */ var next_dist_shared_lib_router_utils_get_segment_param__WEBPACK_IMPORTED_MODULE_32__ = __webpack_require__(17891);
+/* harmony import */ var next_dist_shared_lib_router_utils_get_segment_param__WEBPACK_IMPORTED_MODULE_32___default = /*#__PURE__*/__webpack_require__.n(next_dist_shared_lib_router_utils_get_segment_param__WEBPACK_IMPORTED_MODULE_32__);
 /* harmony reexport (unknown) */ var __WEBPACK_REEXPORT_OBJECT__ = {};
-/* harmony reexport (unknown) */ for(const __WEBPACK_IMPORT_KEY__ in next_dist_server_app_render_entry_base__WEBPACK_IMPORTED_MODULE_26__) if(["default","GlobalError","__next_app__","routeModule","handler"].indexOf(__WEBPACK_IMPORT_KEY__) < 0) __WEBPACK_REEXPORT_OBJECT__[__WEBPACK_IMPORT_KEY__] = () => next_dist_server_app_render_entry_base__WEBPACK_IMPORTED_MODULE_26__[__WEBPACK_IMPORT_KEY__]
+/* harmony reexport (unknown) */ for(const __WEBPACK_IMPORT_KEY__ in next_dist_server_app_render_entry_base__WEBPACK_IMPORTED_MODULE_27__) if(["default","__next_app__","routeModule","handler"].indexOf(__WEBPACK_IMPORT_KEY__) < 0) __WEBPACK_REEXPORT_OBJECT__[__WEBPACK_IMPORT_KEY__] = () => next_dist_server_app_render_entry_base__WEBPACK_IMPORTED_MODULE_27__[__WEBPACK_IMPORT_KEY__]
 /* harmony reexport (unknown) */ __webpack_require__.d(__webpack_exports__, __WEBPACK_REEXPORT_OBJECT__);
 const module0 = () => Promise.resolve(/* import() eager */).then(__webpack_require__.bind(__webpack_require__, 95235));
 const module1 = () => Promise.resolve(/* import() eager */).then(__webpack_require__.bind(__webpack_require__, 25195));
@@ -319,9 +108,14 @@ const module3 = () => Promise.resolve(/* import() eager */).then(__webpack_requi
 const module4 = () => Promise.resolve(/* import() eager */).then(__webpack_require__.t.bind(__webpack_require__, 4253, 23));
 const module5 = () => Promise.resolve(/* import() eager */).then(__webpack_require__.t.bind(__webpack_require__, 49184, 23));
 const module6 = () => Promise.resolve(/* import() eager */).then(__webpack_require__.bind(__webpack_require__, 57149));
-const module7 = () => Promise.resolve(/* import() eager */).then(__webpack_require__.bind(__webpack_require__, 28310));
-const module8 = () => Promise.resolve(/* import() eager */).then(__webpack_require__.bind(__webpack_require__, 20706));
-const page9 = () => Promise.resolve(/* import() eager */).then(__webpack_require__.bind(__webpack_require__, 43522));
+const module7 = () => Promise.resolve(/* import() eager */).then(__webpack_require__.bind(__webpack_require__, 56357));
+const module8 = () => Promise.resolve(/* import() eager */).then(__webpack_require__.bind(__webpack_require__, 28310));
+const module9 = () => Promise.resolve(/* import() eager */).then(__webpack_require__.bind(__webpack_require__, 20706));
+const module10 = () => Promise.resolve(/* import() eager */).then(__webpack_require__.bind(__webpack_require__, 56357));
+const module11 = () => Promise.resolve(/* import() eager */).then(__webpack_require__.bind(__webpack_require__, 56357));
+const page12 = () => Promise.resolve(/* import() eager */).then(__webpack_require__.bind(__webpack_require__, 43522));
+
+
 
 
 
@@ -363,27 +157,32 @@ const tree = {
         'security',
         {
         children: ['__PAGE__', {}, {
-          page: [page9, "/home/runner/work/semiont/semiont/apps/frontend/src/app/[locale]/admin/security/page.tsx"],
+          page: [page12, "/home/runner/work/semiont/semiont/apps/frontend/src/app/[locale]/admin/security/page.tsx"],
           
         }]
       },
         {
+        'global-error': [module11, "/home/runner/work/semiont/semiont/apps/frontend/src/app/global-error.tsx"],
         
-        
-      }
+      },
+        []
       ]
       },
         {
-        'layout': [module8, "/home/runner/work/semiont/semiont/apps/frontend/src/app/[locale]/admin/layout.tsx"],
+        'layout': [module9, "/home/runner/work/semiont/semiont/apps/frontend/src/app/[locale]/admin/layout.tsx"],
+'global-error': [module10, "/home/runner/work/semiont/semiont/apps/frontend/src/app/global-error.tsx"],
         
-      }
+      },
+        []
       ]
       },
         {
         'layout': [module6, "/home/runner/work/semiont/semiont/apps/frontend/src/app/[locale]/layout.tsx"],
-'not-found': [module7, "/home/runner/work/semiont/semiont/apps/frontend/src/app/[locale]/not-found.tsx"],
+'global-error': [module7, "/home/runner/work/semiont/semiont/apps/frontend/src/app/global-error.tsx"],
+'not-found': [module8, "/home/runner/work/semiont/semiont/apps/frontend/src/app/[locale]/not-found.tsx"],
         
-      }
+      },
+        ["_not-found","_global-error","api"]
       ]
       },
         {
@@ -394,11 +193,10 @@ const tree = {
 'forbidden': [module4, "next/dist/client/components/builtin/forbidden.js"],
 'unauthorized': [module5, "next/dist/client/components/builtin/unauthorized.js"],
         
-      }
+      },
+        []
       ]
       }.children;
-
-
 const __next_app_require__ = __webpack_require__
 const __next_app_load_chunk__ = () => Promise.resolve()
 const __next_app__ = {
@@ -411,6 +209,7 @@ const __next_app__ = {
 
 
 
+
 // Create and export the route module that will be consumed.
 const routeModule = new next_dist_server_route_modules_app_page_module_compiled__WEBPACK_IMPORTED_MODULE_0__.AppPageRouteModule({
     definition: {
@@ -428,12 +227,53 @@ const routeModule = new next_dist_server_route_modules_app_page_module_compiled_
     distDir: ".next" || 0,
     relativeProjectDir:  false || ''
 });
+function buildDynamicSegmentPlaceholder(param) {
+    const { repeat, optional } = (0,next_dist_shared_lib_router_utils_get_segment_param__WEBPACK_IMPORTED_MODULE_32__.getParamProperties)(param.paramType);
+    if (optional) {
+        return `[[...${param.paramName}]]`;
+    }
+    if (repeat) {
+        return `[...${param.paramName}]`;
+    }
+    return `[${param.paramName}]`;
+}
+/**
+ * Builds the cache key for the most complete prerenderable shell we can derive
+ * from the shell that matched this request. Only params that can still be
+ * filled by `generateStaticParams` are substituted; fully dynamic params stay
+ * as placeholders so a request like `/c/foo` can complete `/[one]/[two]` into
+ * `/c/[two]` rather than `/c/foo`.
+ */ function buildCompletedShellCacheKey(fallbackPathname, remainingPrerenderableParams, params) {
+    const prerenderableParamsByName = new Map(remainingPrerenderableParams.map((param)=>[
+            param.paramName,
+            param
+        ]));
+    return fallbackPathname.split('/').map((segment)=>{
+        const segmentParam = (0,next_dist_shared_lib_router_utils_get_segment_param__WEBPACK_IMPORTED_MODULE_32__.getSegmentParam)(segment);
+        if (!segmentParam) {
+            return segment;
+        }
+        const remainingParam = prerenderableParamsByName.get(segmentParam.paramName);
+        if (!remainingParam) {
+            return segment;
+        }
+        const value = params == null ? void 0 : params[remainingParam.paramName];
+        if (!value) {
+            return segment;
+        }
+        const encodedValue = Array.isArray(value) ? value.map((item)=>encodeURIComponent(item)).join('/') : encodeURIComponent(value);
+        return segment.replace(buildDynamicSegmentPlaceholder(remainingParam), encodedValue);
+    }).join('/') || '/';
+}
 async function handler(req, res, ctx) {
-    var _this;
+    var _this, _prerenderManifest_routes_resolvedPathname, _prerenderInfo_fallbackRootParams, _prerenderInfo_fallbackRouteParams;
+    if (ctx.requestMeta) {
+        (0,next_dist_server_request_meta__WEBPACK_IMPORTED_MODULE_4__.setRequestMeta)(req, ctx.requestMeta);
+    }
     if (routeModule.isDev) {
         (0,next_dist_server_request_meta__WEBPACK_IMPORTED_MODULE_4__.addRequestMeta)(req, 'devRequestTimingInternalsEnd', process.hrtime.bigint());
     }
-    const isMinimalMode = Boolean( false || (0,next_dist_server_request_meta__WEBPACK_IMPORTED_MODULE_4__.getRequestMeta)(req, 'minimalMode'));
+    const isMinimalMode = Boolean((0,next_dist_server_request_meta__WEBPACK_IMPORTED_MODULE_4__.getRequestMeta)(req, 'minimalMode'));
     let srcPage = "/[locale]/admin/security/page";
     // turbopack doesn't normalize `/index` in the page name
     // so we need to to process dynamic routes properly
@@ -453,7 +293,7 @@ async function handler(req, res, ctx) {
         ctx.waitUntil == null ? void 0 : ctx.waitUntil.call(ctx, Promise.resolve());
         return null;
     }
-    const { buildId, query, params, pageIsDynamic, buildManifest, nextFontManifest, reactLoadableManifest, serverActionsManifest, clientReferenceManifest, subresourceIntegrityManifest, prerenderManifest, isDraftMode, resolvedPathname, revalidateOnlyGenerated, routerServerContext, nextConfig, parsedUrl, interceptionRoutePatterns, deploymentId } = prepareResult;
+    const { buildId, query, params, pageIsDynamic, buildManifest, nextFontManifest, reactLoadableManifest, serverActionsManifest, clientReferenceManifest, subresourceIntegrityManifest, prerenderManifest, isDraftMode, resolvedPathname, revalidateOnlyGenerated, routerServerContext, nextConfig, parsedUrl, interceptionRoutePatterns, deploymentId, clientAssetToken } = prepareResult;
     const normalizedSrcPage = (0,next_dist_shared_lib_router_utils_app_paths__WEBPACK_IMPORTED_MODULE_13__.normalizeAppPath)(srcPage);
     let { isOnDemandRevalidate } = prepareResult;
     // We use the resolvedPathname instead of the parsedUrl.pathname because it
@@ -463,7 +303,8 @@ async function handler(req, res, ctx) {
     // treat the pathname as dynamic. Currently, there's a bug in the PPR
     // implementation that incorrectly leaves %%drp placeholders in the output of
     // parallel routes. This is addressed with cacheComponents.
-    const prerenderInfo = nextConfig.experimental.ppr && !nextConfig.cacheComponents && (0,next_dist_shared_lib_router_utils_interception_routes__WEBPACK_IMPORTED_MODULE_30__.isInterceptionRouteAppPath)(resolvedPathname) ? null : routeModule.match(resolvedPathname, prerenderManifest);
+    const prerenderMatch = nextConfig.experimental.ppr && !nextConfig.cacheComponents && (0,next_dist_shared_lib_router_utils_interception_routes__WEBPACK_IMPORTED_MODULE_31__.isInterceptionRouteAppPath)(resolvedPathname) ? null : routeModule.match(resolvedPathname, prerenderManifest);
+    const prerenderInfo = (prerenderMatch == null ? void 0 : prerenderMatch.route) ?? null;
     const isPrerendered = !!prerenderManifest.routes[resolvedPathname];
     const userAgent = req.headers['user-agent'] || '';
     const botType = (0,next_dist_shared_lib_router_utils_is_bot__WEBPACK_IMPORTED_MODULE_16__.getBotType)(userAgent);
@@ -480,15 +321,65 @@ async function handler(req, res, ctx) {
    * If the route being rendered is an app page, and the ppr feature has been
    * enabled, then the given route _could_ support PPR.
    */ const couldSupportPPR = (0,next_dist_server_lib_experimental_ppr__WEBPACK_IMPORTED_MODULE_9__.checkIsAppPPREnabled)(nextConfig.experimental.ppr);
+    // Stash postponed state for server actions when in minimal mode.
+    // We extract it here so the RDC is available for the re-render after the action completes.
+    const resumeStateLengthHeader = req.headers[next_dist_lib_constants__WEBPACK_IMPORTED_MODULE_20__.NEXT_RESUME_STATE_LENGTH_HEADER];
+    if (!(0,next_dist_server_request_meta__WEBPACK_IMPORTED_MODULE_4__.getRequestMeta)(req, 'postponed') && isMinimalMode && couldSupportPPR && isPossibleServerAction && resumeStateLengthHeader && typeof resumeStateLengthHeader === 'string') {
+        const stateLength = parseInt(resumeStateLengthHeader, 10);
+        const { maxPostponedStateSize, maxPostponedStateSizeBytes } = (0,next_dist_server_lib_postponed_request_body__WEBPACK_IMPORTED_MODULE_26__.getMaxPostponedStateSize)(nextConfig.experimental.maxPostponedStateSize);
+        if (!isNaN(stateLength) && stateLength > 0) {
+            var _nextConfig_experimental_serverActions;
+            if (stateLength > maxPostponedStateSizeBytes) {
+                res.statusCode = 413;
+                res.end((0,next_dist_server_lib_postponed_request_body__WEBPACK_IMPORTED_MODULE_26__.getPostponedStateExceededErrorMessage)(maxPostponedStateSize));
+                ctx.waitUntil == null ? void 0 : ctx.waitUntil.call(ctx, Promise.resolve());
+                return null;
+            }
+            // Calculate max total body size to prevent buffering excessively large
+            // payloads before the action handler checks. We use stateLength (not
+            // maxPostponedStateSizeBytes) so the postponed state doesn't eat into
+            // the action body budget - it's already validated above.
+            const defaultActionBodySizeLimit = '1 MB';
+            const actionBodySizeLimit = ((_nextConfig_experimental_serverActions = nextConfig.experimental.serverActions) == null ? void 0 : _nextConfig_experimental_serverActions.bodySizeLimit) ?? defaultActionBodySizeLimit;
+            const actionBodySizeLimitBytes = actionBodySizeLimit !== defaultActionBodySizeLimit ? (__webpack_require__(32683).parse)(actionBodySizeLimit) : 1024 * 1024 // 1 MB
+            ;
+            const maxTotalBodySize = stateLength + actionBodySizeLimitBytes;
+            const fullBody = await (0,next_dist_server_lib_postponed_request_body__WEBPACK_IMPORTED_MODULE_26__.readBodyWithSizeLimit)(req, maxTotalBodySize);
+            if (fullBody === null) {
+                res.statusCode = 413;
+                res.end(`Request body exceeded limit. ` + `To configure the body size limit for Server Actions, see: https://nextjs.org/docs/app/api-reference/next-config-js/serverActions#bodysizelimit`);
+                ctx.waitUntil == null ? void 0 : ctx.waitUntil.call(ctx, Promise.resolve());
+                return null;
+            }
+            if (fullBody.length >= stateLength) {
+                // Extract postponed state from the beginning
+                const postponedState = fullBody.subarray(0, stateLength).toString('utf8');
+                (0,next_dist_server_request_meta__WEBPACK_IMPORTED_MODULE_4__.addRequestMeta)(req, 'postponed', postponedState);
+                // Store the remaining action body for the action handler
+                const actionBody = fullBody.subarray(stateLength);
+                (0,next_dist_server_request_meta__WEBPACK_IMPORTED_MODULE_4__.addRequestMeta)(req, 'actionBody', actionBody);
+            } else {
+                throw Object.defineProperty(new Error(`invariant: expected ${stateLength} bytes of postponed state but only received ${fullBody.length} bytes`), "__NEXT_ERROR_CODE", {
+                    value: "E979",
+                    enumerable: false,
+                    configurable: true
+                });
+            }
+        }
+    }
     if (!(0,next_dist_server_request_meta__WEBPACK_IMPORTED_MODULE_4__.getRequestMeta)(req, 'postponed') && couldSupportPPR && req.headers[next_dist_lib_constants__WEBPACK_IMPORTED_MODULE_20__.NEXT_RESUME_HEADER] === '1' && req.method === 'POST') {
+        const { maxPostponedStateSize, maxPostponedStateSizeBytes } = (0,next_dist_server_lib_postponed_request_body__WEBPACK_IMPORTED_MODULE_26__.getMaxPostponedStateSize)(nextConfig.experimental.maxPostponedStateSize);
         // Decode the postponed state from the request body, it will come as
         // an array of buffers, so collect them and then concat them to form
         // the string.
-        const body = [];
-        for await (const chunk of req){
-            body.push(chunk);
+        const body = await (0,next_dist_server_lib_postponed_request_body__WEBPACK_IMPORTED_MODULE_26__.readBodyWithSizeLimit)(req, maxPostponedStateSizeBytes);
+        if (body === null) {
+            res.statusCode = 413;
+            res.end((0,next_dist_server_lib_postponed_request_body__WEBPACK_IMPORTED_MODULE_26__.getPostponedStateExceededErrorMessage)(maxPostponedStateSize));
+            ctx.waitUntil == null ? void 0 : ctx.waitUntil.call(ctx, Promise.resolve());
+            return null;
         }
-        const postponed = Buffer.concat(body).toString('utf8');
+        const postponed = body.toString('utf8');
         (0,next_dist_server_request_meta__WEBPACK_IMPORTED_MODULE_4__.addRequestMeta)(req, 'postponed', postponed);
     }
     // When enabled, this will allow the use of the `?__nextppronly` query to
@@ -497,14 +388,29 @@ async function handler(req, res, ctx) {
     // When enabled, this will allow the use of the `?__nextppronly` query
     // to enable debugging of the fallback shell.
     const hasDebugFallbackShellQuery = hasDebugStaticShellQuery && query.__nextppronly === 'fallback';
+    // Whether the testing API is exposed (dev mode or explicit flag)
+    const exposeTestingApi = routeModule.isDev === true || nextConfig.experimental.exposeTestingApiInProductionBuild === true;
+    // Enable the Instant Navigation Testing API. Renders only the prefetched
+    // portion of the page, excluding dynamic content. This allows tests to
+    // assert on the prefetched UI state deterministically.
+    // - Header: Used for client-side navigations where we can set request headers
+    // - Cookie: Used for MPA navigations (page reload, full page load) where we
+    //   can't set request headers. Only applies to document requests (no RSC
+    //   header) - RSC requests should proceed normally even during a locked scope,
+    //   with blocking happening on the client side.
+    const isInstantNavigationTest = exposeTestingApi && (req.headers[next_dist_client_components_app_router_headers__WEBPACK_IMPORTED_MODULE_15__.NEXT_INSTANT_PREFETCH_HEADER] === '1' || req.headers[next_dist_client_components_app_router_headers__WEBPACK_IMPORTED_MODULE_15__.RSC_HEADER] === undefined && typeof req.headers.cookie === 'string' && req.headers.cookie.includes(next_dist_client_components_app_router_headers__WEBPACK_IMPORTED_MODULE_15__.NEXT_INSTANT_TEST_COOKIE + '='));
     // This page supports PPR if it is marked as being `PARTIALLY_STATIC` in the
     // prerender manifest and this is an app page.
-    const isRoutePPREnabled = couldSupportPPR && (((_this = prerenderManifest.routes[normalizedSrcPage] ?? prerenderManifest.dynamicRoutes[normalizedSrcPage]) == null ? void 0 : _this.renderingMode) === 'PARTIALLY_STATIC' || // Ideally we'd want to check the appConfig to see if this page has PPR
+    const isRoutePPREnabled = // When the instant navigation testing API is active, enable the PPR
+    // prerender path even without Cache Components. In dev mode without CC,
+    // static pages need this path to produce buffered segment data (the
+    // legacy prerender path hangs in dev mode).
+    (couldSupportPPR || isInstantNavigationTest) && (((_this = prerenderManifest.routes[normalizedSrcPage] ?? prerenderManifest.dynamicRoutes[normalizedSrcPage]) == null ? void 0 : _this.renderingMode) === 'PARTIALLY_STATIC' || // Ideally we'd want to check the appConfig to see if this page has PPR
     // enabled or not, but that would require plumbing the appConfig through
     // to the server during development. We assume that the page supports it
-    // but only during development.
-    hasDebugStaticShellQuery && (routeModule.isDev === true || (routerServerContext == null ? void 0 : routerServerContext.experimentalTestProxy) === true));
-    const isDebugStaticShell = hasDebugStaticShellQuery && isRoutePPREnabled;
+    // but only during development or when the testing API is exposed.
+    (hasDebugStaticShellQuery || isInstantNavigationTest) && (exposeTestingApi || (routerServerContext == null ? void 0 : routerServerContext.experimentalTestProxy) === true));
+    const isDebugStaticShell = (hasDebugStaticShellQuery || isInstantNavigationTest) && isRoutePPREnabled;
     // We should enable debugging dynamic accesses when the static shell
     // debugging has been enabled and we're also in development mode.
     const isDebugDynamicAccesses = isDebugStaticShell && routeModule.isDev === true;
@@ -516,7 +422,11 @@ async function handler(req, res, ctx) {
     // If PPR is enabled, and this is a RSC request (but not a prefetch), then
     // we can use this fact to only generate the flight data for the request
     // because we can't cache the HTML (as it's also dynamic).
-    let isDynamicRSCRequest = isRoutePPREnabled && isRSCRequest && !isPrefetchRSCRequest;
+    const staticPrefetchDataRoute = (_prerenderManifest_routes_resolvedPathname = prerenderManifest.routes[resolvedPathname]) == null ? void 0 : _prerenderManifest_routes_resolvedPathname.prefetchDataRoute;
+    let isDynamicRSCRequest = isRoutePPREnabled && isRSCRequest && !isPrefetchRSCRequest && // If generated at build time, treat the RSC request as static
+    // so we can serve the prebuilt .rsc without a dynamic render.
+    // Only do this for routes that have a concrete prefetchDataRoute.
+    !staticPrefetchDataRoute;
     // During a PPR revalidation, the RSC request is not dynamic if we do not have the postponed data.
     // We only attach the postponed data during a resume. If there's no postponed data, then it must be a revalidation.
     // This is to ensure that we don't bypass the cache during a revalidation.
@@ -532,10 +442,11 @@ async function handler(req, res, ctx) {
     // being true for a revalidate due to modifying the base-server this.renderOpts
     // when fixing this to correct logic it causes hydration issue since we set
     // serveStreamingMetadata to true during export
-    const serveStreamingMetadata = isHtmlBot && isRoutePPREnabled ? false : !userAgent ? true : (0,next_dist_server_lib_streaming_metadata__WEBPACK_IMPORTED_MODULE_12__.shouldServeStreamingMetadata)(userAgent, nextConfig.htmlLimitedBots);
-    const isSSG = Boolean((prerenderInfo || isPrerendered || prerenderManifest.routes[normalizedSrcPage]) && // If this is a html bot request and PPR is enabled, then we don't want
-    // to serve a static response.
-    !(isHtmlBot && isRoutePPREnabled));
+    const serveStreamingMetadata = botType && isRoutePPREnabled ? false : !userAgent ? true : (0,next_dist_server_lib_streaming_metadata__WEBPACK_IMPORTED_MODULE_12__.shouldServeStreamingMetadata)(userAgent, nextConfig.htmlLimitedBots);
+    const isSSG = Boolean((prerenderInfo || isPrerendered || prerenderManifest.routes[normalizedSrcPage]) && // If this is a bot request and PPR is enabled, then we don't want
+    // to serve a static response. This applies to both DOM bots (like Googlebot)
+    // and HTML-limited bots.
+    !(botType && isRoutePPREnabled));
     // When a page supports cacheComponents, we can support RDC for Navigations
     const supportsRDCForNavigations = isRoutePPREnabled && nextConfig.cacheComponents === true;
     // In development, we always want to generate dynamic HTML.
@@ -552,18 +463,37 @@ async function handler(req, res, ctx) {
     // RSC request, we'll pass the minimal postponed data to the render
     // which will trigger the `supportsDynamicResponse` to be true.
     isDynamicRSCRequest && !isMinimalMode : isDynamicRSCRequest);
-    // When html bots request PPR page, perform the full dynamic rendering.
-    const shouldWaitOnAllReady = isHtmlBot && isRoutePPREnabled;
+    // When bots request PPR page, perform the full dynamic rendering.
+    // This applies to both DOM bots (like Googlebot) and HTML-limited bots.
+    const shouldWaitOnAllReady = Boolean(botType) && isRoutePPREnabled;
+    const remainingPrerenderableParams = (prerenderInfo == null ? void 0 : prerenderInfo.remainingPrerenderableParams) ?? [];
+    const hasUnresolvedRootFallbackParams = (prerenderInfo == null ? void 0 : prerenderInfo.fallback) === null && (((_prerenderInfo_fallbackRootParams = prerenderInfo.fallbackRootParams) == null ? void 0 : _prerenderInfo_fallbackRootParams.length) ?? 0) > 0;
     let ssgCacheKey = null;
     if (!isDraftMode && isSSG && !supportsDynamicResponse && !isPossibleServerAction && !minimalPostponed && !isDynamicRSCRequest) {
-        ssgCacheKey = resolvedPathname;
+        // For normal SSG routes we cache by the fully resolved pathname. For
+        // partial fallbacks we instead derive the cache key from the shell
+        // that matched this request so `/prefix/[one]/[two]` can specialize into
+        // `/prefix/c/[two]` without promoting all the way to `/prefix/c/foo`.
+        const fallbackPathname = prerenderMatch ? typeof (prerenderInfo == null ? void 0 : prerenderInfo.fallback) === 'string' ? prerenderInfo.fallback : prerenderMatch.source : null;
+        if (nextConfig.experimental.partialFallbacks === true && fallbackPathname && (prerenderInfo == null ? void 0 : prerenderInfo.fallbackRouteParams) && !hasUnresolvedRootFallbackParams) {
+            if (remainingPrerenderableParams.length > 0) {
+                const completedShellCacheKey = buildCompletedShellCacheKey(fallbackPathname, remainingPrerenderableParams, params);
+                // If applying the current request params doesn't make the shell any
+                // more complete, then this shell is already at its most complete
+                // form and should remain shared rather than creating a new cache entry.
+                ssgCacheKey = completedShellCacheKey !== fallbackPathname ? completedShellCacheKey : null;
+            }
+        } else {
+            ssgCacheKey = resolvedPathname;
+        }
     }
     // the staticPathKey differs from ssgCacheKey since
     // ssgCacheKey is null in dev since we're always in "dynamic"
-    // mode in dev to bypass the cache, but we still need to honor
-    // dynamicParams = false in dev mode
+    // mode in dev to bypass the cache. It can also be null for partial
+    // fallback shells that should remain shared and must not create a
+    // param-specific ISR entry, but we still need to honor fallback handling.
     let staticPathKey = ssgCacheKey;
-    if (!staticPathKey && routeModule.isDev) {
+    if (!staticPathKey && (routeModule.isDev || isSSG && pageIsDynamic && (prerenderInfo == null ? void 0 : prerenderInfo.fallbackRouteParams))) {
         staticPathKey = resolvedPathname;
     }
     // If this is a request for an app path that should be statically generated
@@ -573,9 +503,8 @@ async function handler(req, res, ctx) {
         (0,next_dist_server_app_render_strip_flight_headers__WEBPACK_IMPORTED_MODULE_7__/* .stripFlightHeaders */ .d)(req.headers);
     }
     const ComponentMod = {
-        ...next_dist_server_app_render_entry_base__WEBPACK_IMPORTED_MODULE_26__,
+        ...next_dist_server_app_render_entry_base__WEBPACK_IMPORTED_MODULE_27__,
         tree,
-        GlobalError: _home_runner_work_semiont_semiont_apps_frontend_src_app_global_error_tsx__WEBPACK_IMPORTED_MODULE_25__["default"],
         handler,
         routeModule,
         __next_app__
@@ -593,6 +522,8 @@ async function handler(req, res, ctx) {
     const method = req.method || 'GET';
     const tracer = (0,next_dist_server_lib_trace_tracer__WEBPACK_IMPORTED_MODULE_3__.getTracer)();
     const activeSpan = tracer.getActiveScopeSpan();
+    const isWrappedByNextServer = Boolean(routerServerContext == null ? void 0 : routerServerContext.isWrappedByNextServer);
+    const remainingFallbackRouteParams = nextConfig.experimental.partialFallbacks === true && remainingPrerenderableParams.length > 0 ? (prerenderInfo == null ? void 0 : (_prerenderInfo_fallbackRouteParams = prerenderInfo.fallbackRouteParams) == null ? void 0 : _prerenderInfo_fallbackRouteParams.filter((param)=>!remainingPrerenderableParams.some((prerenderableParam)=>prerenderableParam.paramName === param.paramName))) ?? [] : [];
     const render404 = async ()=>{
         // TODO: should route-module itself handle rendering the 404
         if (routerServerContext == null ? void 0 : routerServerContext.render404) {
@@ -605,6 +536,7 @@ async function handler(req, res, ctx) {
     try {
         const varyHeader = routeModule.getVaryHeader(resolvedPathname, interceptionRoutePatterns);
         res.setHeader('Vary', varyHeader);
+        let parentSpan;
         const invokeRouteModule = async (span, context)=>{
             const nextReq = new next_dist_server_base_http_node__WEBPACK_IMPORTED_MODULE_8__.NodeNextRequest(req);
             const nextRes = new next_dist_server_base_http_node__WEBPACK_IMPORTED_MODULE_8__.NodeNextResponse(res);
@@ -632,19 +564,29 @@ async function handler(req, res, ctx) {
                         'next.span_name': name
                     });
                     span.updateName(name);
+                    // Propagate http.route to the parent span if one exists (e.g.
+                    // a platform-created HTTP span in adapter deployments).
+                    if (parentSpan && parentSpan !== span) {
+                        parentSpan.setAttribute('http.route', route);
+                        parentSpan.updateName(name);
+                    }
                 } else {
                     span.updateName(`${method} ${srcPage}`);
                 }
             });
         };
-        const incrementalCache = (0,next_dist_server_request_meta__WEBPACK_IMPORTED_MODULE_4__.getRequestMeta)(req, 'incrementalCache');
+        const incrementalCache = (0,next_dist_server_request_meta__WEBPACK_IMPORTED_MODULE_4__.getRequestMeta)(req, 'incrementalCache') || await routeModule.getIncrementalCache(req, nextConfig, prerenderManifest, isMinimalMode);
+        incrementalCache == null ? void 0 : incrementalCache.resetRequestCache();
+        globalThis.__incrementalCache = incrementalCache;
         const doRender = async ({ span, postponed, fallbackRouteParams, forceStaticRender })=>{
             const context = {
                 query,
                 params,
                 page: normalizedSrcPage,
                 sharedContext: {
-                    buildId
+                    buildId,
+                    deploymentId,
+                    clientAssetToken
                 },
                 serverComponentsHmrCache: (0,next_dist_server_request_meta__WEBPACK_IMPORTED_MODULE_4__.getRequestMeta)(req, 'serverComponentsHmrCache'),
                 fallbackRouteParams,
@@ -680,7 +622,6 @@ async function handler(req, res, ctx) {
                     trailingSlash: nextConfig.trailingSlash,
                     images: nextConfig.images,
                     previewProps: prerenderManifest.preview,
-                    deploymentId: deploymentId,
                     enableTainting: nextConfig.experimental.taint,
                     htmlLimitedBots: nextConfig.htmlLimitedBots,
                     reactMaxHeadersLength: nextConfig.reactMaxHeadersLength,
@@ -689,8 +630,9 @@ async function handler(req, res, ctx) {
                     cacheLifeProfiles: nextConfig.cacheLife,
                     basePath: nextConfig.basePath,
                     serverActions: nextConfig.experimental.serverActions,
+                    logServerFunctions: typeof nextConfig.logging === 'object' && Boolean(nextConfig.logging.serverFunctions),
                     ...isDebugStaticShell || isDebugDynamicAccesses || isDebugFallbackShell ? {
-                        nextExport: true,
+                        isBuildTimePrerendering: true,
                         supportsDynamicResponse: false,
                         isStaticGeneration: true,
                         isDebugDynamicAccesses: isDebugDynamicAccesses
@@ -701,11 +643,14 @@ async function handler(req, res, ctx) {
                         expireTime: nextConfig.expireTime,
                         staleTimes: nextConfig.experimental.staleTimes,
                         dynamicOnHover: Boolean(nextConfig.experimental.dynamicOnHover),
+                        optimisticRouting: Boolean(nextConfig.experimental.optimisticRouting),
                         inlineCss: Boolean(nextConfig.experimental.inlineCss),
+                        prefetchInlining: nextConfig.experimental.prefetchInlining ?? false,
                         authInterrupts: Boolean(nextConfig.experimental.authInterrupts),
+                        cachedNavigations: Boolean(nextConfig.experimental.cachedNavigations),
                         clientTraceMetadata: nextConfig.experimental.clientTraceMetadata || [],
                         clientParamParsingOrigins: nextConfig.experimental.clientParamParsingOrigins,
-                        maxPostponedStateSizeBytes: (0,next_dist_shared_lib_size_limit__WEBPACK_IMPORTED_MODULE_24__.parseMaxPostponedStateSize)(nextConfig.experimental.maxPostponedStateSize)
+                        maxPostponedStateSizeBytes: (0,next_dist_shared_lib_size_limit__WEBPACK_IMPORTED_MODULE_25__.parseMaxPostponedStateSize)(nextConfig.experimental.maxPostponedStateSize)
                     },
                     waitUntil: ctx.waitUntil,
                     onClose: (cb)=>{
@@ -713,15 +658,9 @@ async function handler(req, res, ctx) {
                     },
                     onAfterTaskError: ()=>{},
                     onInstrumentationRequestError: (error, _request, errorContext, silenceLog)=>routeModule.onRequestError(req, error, errorContext, silenceLog, routerServerContext),
-                    err: (0,next_dist_server_request_meta__WEBPACK_IMPORTED_MODULE_4__.getRequestMeta)(req, 'invokeError'),
-                    dev: routeModule.isDev
+                    err: (0,next_dist_server_request_meta__WEBPACK_IMPORTED_MODULE_4__.getRequestMeta)(req, 'invokeError')
                 }
             };
-            if (isDebugStaticShell || isDebugDynamicAccesses) {
-                context.renderOpts.nextExport = true;
-                context.renderOpts.supportsDynamicResponse = false;
-                context.renderOpts.isDebugDynamicAccesses = isDebugDynamicAccesses;
-            }
             // When we're revalidating in the background, we should not allow dynamic
             // responses.
             if (forceStaticRender) {
@@ -784,6 +723,16 @@ async function handler(req, res, ctx) {
             if (prerenderInfo) {
                 fallbackMode = (0,next_dist_lib_fallback__WEBPACK_IMPORTED_MODULE_18__.parseFallbackField)(prerenderInfo.fallback);
             }
+            if (nextConfig.experimental.partialFallbacks === true && (prerenderInfo == null ? void 0 : prerenderInfo.fallback) === null && !hasUnresolvedRootFallbackParams && remainingPrerenderableParams.length > 0) {
+                // Generic source shells without unresolved root params don't have a
+                // concrete fallback file of their own, so they're marked as blocking.
+                // When we can complete the shell into a more specific
+                // prerendered shell for this request, treat it like a prerender
+                // fallback so we can serve that shell instead of blocking on the full
+                // route. Root-param shells stay blocking, since unknown root branches
+                // should not inherit a shell from another generated branch.
+                fallbackMode = next_dist_lib_fallback__WEBPACK_IMPORTED_MODULE_18__.FallbackMode.PRERENDER;
+            }
             // When serving a HTML bot request, we want to serve a blocking render and
             // not the prerendered page. This ensures that the correct content is served
             // to the bot in the head.
@@ -808,10 +757,10 @@ async function handler(req, res, ctx) {
                 // getStaticPaths.
                 (isProduction || prerenderInfo) && // When fallback isn't present, abort this render so we 404
                 fallbackMode === next_dist_lib_fallback__WEBPACK_IMPORTED_MODULE_18__.FallbackMode.NOT_FOUND) {
-                    if (nextConfig.experimental.adapterPath) {
+                    if (nextConfig.adapterPath) {
                         return await render404();
                     }
-                    throw new next_dist_shared_lib_no_fallback_error_external__WEBPACK_IMPORTED_MODULE_23__.NoFallbackError();
+                    throw new next_dist_shared_lib_no_fallback_error_external__WEBPACK_IMPORTED_MODULE_24__.NoFallbackError();
                 }
                 // When cacheComponents is enabled, we can use the fallback
                 // response if the request is not a dynamic RSC request because the
@@ -820,10 +769,19 @@ async function handler(req, res, ctx) {
                 // contains param references, and therefore we can't use the fallback.
                 if (isRoutePPREnabled && (nextConfig.cacheComponents ? !isDynamicRSCRequest : !isRSCRequest)) {
                     const cacheKey = isProduction && typeof (prerenderInfo == null ? void 0 : prerenderInfo.fallback) === 'string' ? prerenderInfo.fallback : normalizedSrcPage;
-                    const fallbackRouteParams = // If we're in production and we have fallback route params, then we
-                    // can use the manifest fallback route params.
-                    isProduction && (prerenderInfo == null ? void 0 : prerenderInfo.fallbackRouteParams) ? (0,next_dist_server_request_fallback_params__WEBPACK_IMPORTED_MODULE_10__.createOpaqueFallbackRouteParams)(prerenderInfo.fallbackRouteParams) : // have to manually generate the fallback route params.
+                    const fallbackRouteParams = // In production or when debugging the static shell (e.g. instant
+                    // navigation testing), use the prerender manifest's fallback
+                    // route params which correctly identifies which params are
+                    // unknown. Note: in dev, this block is only entered for
+                    // non-prerendered URLs (guarded by the outer condition).
+                    (isProduction || isDebugStaticShell) && (prerenderInfo == null ? void 0 : prerenderInfo.fallbackRouteParams) ? (0,next_dist_server_request_fallback_params__WEBPACK_IMPORTED_MODULE_10__.createOpaqueFallbackRouteParams)(prerenderInfo.fallbackRouteParams) : // fallback (simulating the worst-case shell).
                     isDebugFallbackShell ? (0,next_dist_server_request_fallback_params__WEBPACK_IMPORTED_MODULE_10__.getFallbackRouteParams)(normalizedSrcPage, routeModule) : null;
+                    // When rendering a debug static shell, override the fallback
+                    // params on the request so that the staged rendering correctly
+                    // defers params that are not statically known.
+                    if (isDebugStaticShell && fallbackRouteParams) {
+                        (0,next_dist_server_request_meta__WEBPACK_IMPORTED_MODULE_4__.addRequestMeta)(req, 'fallbackParams', fallbackRouteParams);
+                    }
                     // We use the response cache here to handle the revalidation and
                     // management of the fallback shell.
                     const fallbackResponse = await routeModule.handleResponse({
@@ -839,8 +797,12 @@ async function handler(req, res, ctx) {
                                 // We pass `undefined` as rendering a fallback isn't resumed
                                 // here.
                                 postponed: undefined,
+                                // Always serve the shell that matched this request
+                                // immediately. If there are still prerenderable params left,
+                                // the background path below will complete the shell into a
+                                // more specific cache entry for later requests.
                                 fallbackRouteParams,
-                                forceStaticRender: false
+                                forceStaticRender: true
                             }),
                         waitUntil: ctx.waitUntil,
                         isMinimalMode
@@ -849,6 +811,39 @@ async function handler(req, res, ctx) {
                     if (fallbackResponse === null) return null;
                     // Otherwise, if we did get a fallback response, we should return it.
                     if (fallbackResponse) {
+                        if (!isMinimalMode && isRoutePPREnabled && // Match the build-time contract: only fallback shells that can
+                        // still be completed with prerenderable params should upgrade.
+                        remainingPrerenderableParams.length > 0 && nextConfig.experimental.partialFallbacks === true && ssgCacheKey && incrementalCache && !isOnDemandRevalidate && !isDebugFallbackShell && // The testing API relies on deterministic shell behavior, so
+                        // don't upgrade fallback shells in the background when it's
+                        // exposed.
+                        !exposeTestingApi && // Instant Navigation Testing API requests intentionally keep
+                        // the route in shell mode; don't upgrade these in background.
+                        !isInstantNavigationTest && // Avoid background revalidate during prefetches; this can trigger
+                        // static prerender errors that surface as 500s for the prefetch
+                        // request itself.
+                        !isPrefetchRSCRequest) {
+                            (0,next_dist_lib_scheduler__WEBPACK_IMPORTED_MODULE_30__.scheduleOnNextTick)(async ()=>{
+                                const responseCache = routeModule.getResponseCache(req);
+                                try {
+                                    // Only the params that were just specialized should be
+                                    // removed from the fallback render. Any remaining fallback
+                                    // params stay deferred so the revalidated result is a more
+                                    // specific shell (e.g. `/prefix/c/[two]`), not a fully
+                                    // concrete route (`/prefix/c/foo`).
+                                    await responseCache.revalidate(ssgCacheKey, incrementalCache, isRoutePPREnabled, false, (c)=>{
+                                        return doRender({
+                                            span: c.span,
+                                            postponed: undefined,
+                                            fallbackRouteParams: remainingFallbackRouteParams.length > 0 ? (0,next_dist_server_request_fallback_params__WEBPACK_IMPORTED_MODULE_10__.createOpaqueFallbackRouteParams)(remainingFallbackRouteParams) : null,
+                                            forceStaticRender: true
+                                        });
+                                    }, // We don't have a prior entry for this param-specific shell.
+                                    null, hasResolved, ctx.waitUntil);
+                                } catch (err) {
+                                    console.error('Error revalidating the page in the background', err);
+                                }
+                            });
+                        }
                         // Remove the cache control from the response to prevent it from being
                         // used in the surrounding cache.
                         delete fallbackResponse.cacheControl;
@@ -859,12 +854,15 @@ async function handler(req, res, ctx) {
             // Only requests that aren't revalidating can be resumed. If we have the
             // minimal postponed data, then we should resume the render with it.
             let postponed = !isOnDemandRevalidate && !isRevalidating && minimalPostponed ? minimalPostponed : undefined;
-            // If this is a dynamic RSC request, we should use the postponed data from
-            // the static render (if available). This ensures that we can utilize the
-            // resume data cache (RDC) from the static render to ensure that the data
-            // is consistent between the static and dynamic renders.
+            // If this is a dynamic RSC request or a server action request, we should
+            // use the postponed data from the static render (if available). This
+            // ensures that we can utilize the resume data cache (RDC) from the static
+            // render to ensure that the data is consistent between the static and
+            // dynamic renders (for navigations) or when re-rendering after a server
+            // action.
             if (// Only enable RDC for Navigations if the feature is enabled.
-            supportsRDCForNavigations && "nodejs" !== 'edge' && !isMinimalMode && incrementalCache && isDynamicRSCRequest && // We don't typically trigger an on-demand revalidation for dynamic RSC
+            supportsRDCForNavigations && "nodejs" !== 'edge' && !isMinimalMode && incrementalCache && // Include both dynamic RSC requests (navigations) and server actions
+            (isDynamicRSCRequest || isPossibleServerAction) && // We don't typically trigger an on-demand revalidation for dynamic RSC
             // requests, as we're typically revalidating the page in the background
             // instead. However, if the cache entry is stale, we should trigger a
             // background revalidation on dynamic RSC requests. This prevents us
@@ -889,7 +887,7 @@ async function handler(req, res, ctx) {
                     (incrementalCacheEntry.isStale === -1 || incrementalCacheEntry.isStale === true)) {
                         // We want to schedule this on the next tick to ensure that the
                         // render is not blocked on it.
-                        (0,next_dist_lib_scheduler__WEBPACK_IMPORTED_MODULE_29__.scheduleOnNextTick)(async ()=>{
+                        (0,next_dist_lib_scheduler__WEBPACK_IMPORTED_MODULE_30__.scheduleOnNextTick)(async ()=>{
                             const responseCache = routeModule.getResponseCache(req);
                             try {
                                 await responseCache.revalidate(resolvedPathname, incrementalCache, isRoutePPREnabled, false, (c)=>responseGenerator({
@@ -926,11 +924,21 @@ async function handler(req, res, ctx) {
                     }
                 };
             }
-            const fallbackRouteParams = // If we're in production and we have fallback route params, then we
-            // can use the manifest fallback route params if we need to render the
-            // fallback shell.
-            isProduction && (prerenderInfo == null ? void 0 : prerenderInfo.fallbackRouteParams) && (0,next_dist_server_request_meta__WEBPACK_IMPORTED_MODULE_4__.getRequestMeta)(req, 'renderFallbackShell') ? (0,next_dist_server_request_fallback_params__WEBPACK_IMPORTED_MODULE_10__.createOpaqueFallbackRouteParams)(prerenderInfo.fallbackRouteParams) : // manually generate the fallback route params.
-            isDebugFallbackShell ? (0,next_dist_server_request_fallback_params__WEBPACK_IMPORTED_MODULE_10__.getFallbackRouteParams)(normalizedSrcPage, routeModule) : null;
+            const fallbackRouteParams = // In production or when debugging the static shell for a
+            // non-prerendered URL, use the prerender manifest's fallback route
+            // params which correctly identifies which params are unknown.
+            (isProduction && (0,next_dist_server_request_meta__WEBPACK_IMPORTED_MODULE_4__.getRequestMeta)(req, 'renderFallbackShell') || isDebugStaticShell && !isPrerendered) && (prerenderInfo == null ? void 0 : prerenderInfo.fallbackRouteParams) ? (0,next_dist_server_request_fallback_params__WEBPACK_IMPORTED_MODULE_10__.createOpaqueFallbackRouteParams)(prerenderInfo.fallbackRouteParams) : isDebugFallbackShell ? (0,next_dist_server_request_fallback_params__WEBPACK_IMPORTED_MODULE_10__.getFallbackRouteParams)(normalizedSrcPage, routeModule) : null;
+            // For staged dynamic rendering (Cached Navigations) and debug static
+            // shell rendering, pass the fallback params via request meta so the
+            // RequestStore knows which params to defer. We don't pass them as
+            // fallbackRouteParams because that would replace actual param values
+            // with opaque placeholders during segment resolution.
+            if ((isProduction || isDebugStaticShell) && nextConfig.cacheComponents && !isPrerendered && (prerenderInfo == null ? void 0 : prerenderInfo.fallbackRouteParams)) {
+                const fallbackParams = (0,next_dist_server_request_fallback_params__WEBPACK_IMPORTED_MODULE_10__.createOpaqueFallbackRouteParams)(prerenderInfo.fallbackRouteParams);
+                if (fallbackParams) {
+                    (0,next_dist_server_request_meta__WEBPACK_IMPORTED_MODULE_4__.addRequestMeta)(req, 'fallbackParams', fallbackParams);
+                }
+            }
             // Perform the render.
             return doRender({
                 span,
@@ -961,7 +969,7 @@ async function handler(req, res, ctx) {
             }
             // In dev, we should not cache pages for any reason.
             if (routeModule.isDev) {
-                res.setHeader('Cache-Control', 'no-store, must-revalidate');
+                res.setHeader('Cache-Control', 'no-cache, must-revalidate');
             }
             if (!cacheEntry) {
                 if (ssgCacheKey) {
@@ -987,6 +995,16 @@ async function handler(req, res, ctx) {
                 });
             }
             const didPostpone = typeof cacheEntry.value.postponed === 'string';
+            // Set the build ID header for RSC navigation requests when deploymentId is configured. This
+            // corresponds with maybeAppendBuildIdToRSCPayload in app-render.tsx which omits the build ID
+            // from the RSC payload when deploymentId is set (relying on this header instead). Server
+            // actions are excluded here because action redirect responses get the deployment ID header
+            // from the pre-fetched redirect target (via createRedirectRenderResult in action-handler.ts
+            // which copies headers from the internal RSC fetch).
+            // For static prerenders served from CDN, routes-manifest.json adds a header.
+            if (isRSCRequest && !isPossibleServerAction && deploymentId) {
+                res.setHeader(next_dist_lib_constants__WEBPACK_IMPORTED_MODULE_20__.NEXT_NAV_DEPLOYMENT_ID_HEADER, deploymentId);
+            }
             if (isSSG && // We don't want to send a cache header for requests that contain dynamic
             // data. If this is a Dynamic RSC request or wasn't a Prefetch RSC
             // request, then we should set the cache header.
@@ -1047,7 +1065,7 @@ async function handler(req, res, ctx) {
                         };
                     } else {
                         cacheControl = {
-                            revalidate: next_dist_lib_constants__WEBPACK_IMPORTED_MODULE_20__.CACHE_ONE_YEAR,
+                            revalidate: next_dist_lib_constants__WEBPACK_IMPORTED_MODULE_20__.CACHE_ONE_YEAR_SECONDS,
                             expire: undefined
                         };
                     }
@@ -1075,7 +1093,7 @@ async function handler(req, res, ctx) {
                 const matchedSegment = cachedData.segmentData.get(segmentPrefetchHeader);
                 if (matchedSegment !== undefined) {
                     // Cache hit
-                    return (0,next_dist_server_send_payload__WEBPACK_IMPORTED_MODULE_22__.sendRenderResult)({
+                    return (0,next_dist_server_send_payload__WEBPACK_IMPORTED_MODULE_23__.sendRenderResult)({
                         req,
                         res,
                         generateEtags: nextConfig.generateEtags,
@@ -1091,7 +1109,7 @@ async function handler(req, res, ctx) {
                 // don't bother to respond with 404, because these requests are only
                 // issued as part of a prefetch.
                 res.statusCode = 204;
-                return (0,next_dist_server_send_payload__WEBPACK_IMPORTED_MODULE_22__.sendRenderResult)({
+                return (0,next_dist_server_send_payload__WEBPACK_IMPORTED_MODULE_23__.sendRenderResult)({
                     req,
                     res,
                     generateEtags: nextConfig.generateEtags,
@@ -1146,7 +1164,7 @@ async function handler(req, res, ctx) {
                 res.statusCode = cachedData.status;
             }
             // Redirect information is encoded in RSC payload, so we don't need to use redirect status codes
-            if (!isMinimalMode && cachedData.status && next_dist_client_components_redirect_status_code__WEBPACK_IMPORTED_MODULE_27__.RedirectStatusCode[cachedData.status] && isRSCRequest) {
+            if (!isMinimalMode && cachedData.status && next_dist_client_components_redirect_status_code__WEBPACK_IMPORTED_MODULE_28__.RedirectStatusCode[cachedData.status] && isRSCRequest) {
                 res.statusCode = 200;
             }
             // Mark that the request did postpone.
@@ -1164,7 +1182,7 @@ async function handler(req, res, ctx) {
                     if (cachedData.html.contentType !== next_dist_client_components_app_router_headers__WEBPACK_IMPORTED_MODULE_15__.RSC_CONTENT_TYPE_HEADER) {
                         if (nextConfig.cacheComponents) {
                             res.statusCode = 404;
-                            return (0,next_dist_server_send_payload__WEBPACK_IMPORTED_MODULE_22__.sendRenderResult)({
+                            return (0,next_dist_server_send_payload__WEBPACK_IMPORTED_MODULE_23__.sendRenderResult)({
                                 req,
                                 res,
                                 generateEtags: nextConfig.generateEtags,
@@ -1174,14 +1192,14 @@ async function handler(req, res, ctx) {
                             });
                         } else {
                             // Otherwise this case is not expected.
-                            throw Object.defineProperty(new next_dist_shared_lib_invariant_error__WEBPACK_IMPORTED_MODULE_28__.InvariantError(`Expected RSC response, got ${cachedData.html.contentType}`), "__NEXT_ERROR_CODE", {
+                            throw Object.defineProperty(new next_dist_shared_lib_invariant_error__WEBPACK_IMPORTED_MODULE_29__.InvariantError(`Expected RSC response, got ${cachedData.html.contentType}`), "__NEXT_ERROR_CODE", {
                                 value: "E789",
                                 enumerable: false,
                                 configurable: true
                             });
                         }
                     }
-                    return (0,next_dist_server_send_payload__WEBPACK_IMPORTED_MODULE_22__.sendRenderResult)({
+                    return (0,next_dist_server_send_payload__WEBPACK_IMPORTED_MODULE_23__.sendRenderResult)({
                         req,
                         res,
                         generateEtags: nextConfig.generateEtags,
@@ -1192,7 +1210,7 @@ async function handler(req, res, ctx) {
                 }
                 // As this isn't a prefetch request, we should serve the static flight
                 // data.
-                return (0,next_dist_server_send_payload__WEBPACK_IMPORTED_MODULE_22__.sendRenderResult)({
+                return (0,next_dist_server_send_payload__WEBPACK_IMPORTED_MODULE_23__.sendRenderResult)({
                     req,
                     res,
                     generateEtags: nextConfig.generateEtags,
@@ -1203,6 +1221,27 @@ async function handler(req, res, ctx) {
             }
             // This is a request for HTML data.
             const body = cachedData.html;
+            // Instant Navigation Testing API: serve the static shell with an
+            // injected script that sets self.__next_instant_test and kicks off a
+            // static RSC fetch for hydration. The transform stream also appends
+            // closing </body></html> tags so the browser can parse the full document.
+            // In dev mode, also inject self.__next_r so the HMR WebSocket and
+            // debug channel can initialize.
+            if (isInstantNavigationTest && isDebugStaticShell) {
+                const instantTestRequestId = routeModule.isDev === true ? crypto.randomUUID() : null;
+                body.pipeThrough((0,next_dist_server_stream_utils_node_web_streams_helper__WEBPACK_IMPORTED_MODULE_22__.createInstantTestScriptInsertionTransformStream)(instantTestRequestId));
+                return (0,next_dist_server_send_payload__WEBPACK_IMPORTED_MODULE_23__.sendRenderResult)({
+                    req,
+                    res,
+                    generateEtags: nextConfig.generateEtags,
+                    poweredByHeader: nextConfig.poweredByHeader,
+                    result: body,
+                    cacheControl: {
+                        revalidate: 0,
+                        expire: undefined
+                    }
+                });
+            }
             // If there's no postponed state, we should just serve the HTML. This
             // should also be the case for a resume request because it's completed
             // as a server render (rather than a static render).
@@ -1211,7 +1250,7 @@ async function handler(req, res, ctx) {
                 // that's between the static and dynamic parts so we can compare the
                 // chunks and add assertions.
                 if (false) {}
-                return (0,next_dist_server_send_payload__WEBPACK_IMPORTED_MODULE_22__.sendRenderResult)({
+                return (0,next_dist_server_send_payload__WEBPACK_IMPORTED_MODULE_23__.sendRenderResult)({
                     req,
                     res,
                     generateEtags: nextConfig.generateEtags,
@@ -1233,7 +1272,7 @@ async function handler(req, res, ctx) {
                         controller.close();
                     }
                 }));
-                return (0,next_dist_server_send_payload__WEBPACK_IMPORTED_MODULE_22__.sendRenderResult)({
+                return (0,next_dist_server_send_payload__WEBPACK_IMPORTED_MODULE_23__.sendRenderResult)({
                     req,
                     res,
                     generateEtags: nextConfig.generateEtags,
@@ -1290,7 +1329,7 @@ async function handler(req, res, ctx) {
                     console.error("couldn't abort transformer", e);
                 });
             });
-            return (0,next_dist_server_send_payload__WEBPACK_IMPORTED_MODULE_22__.sendRenderResult)({
+            return (0,next_dist_server_send_payload__WEBPACK_IMPORTED_MODULE_23__.sendRenderResult)({
                 req,
                 res,
                 generateEtags: nextConfig.generateEtags,
@@ -1307,9 +1346,10 @@ async function handler(req, res, ctx) {
         };
         // TODO: activeSpan code path is for when wrapped by
         // next-server can be removed when this is no longer used
-        if (activeSpan) {
+        if (isWrappedByNextServer && activeSpan) {
             await handleResponse(activeSpan);
         } else {
+            parentSpan = tracer.getActiveScopeSpan();
             return await tracer.withPropagatedContext(req.headers, ()=>tracer.trace(next_dist_server_lib_trace_constants__WEBPACK_IMPORTED_MODULE_5__.BaseServerSpan.handleRequest, {
                     spanName: `${method} ${srcPage}`,
                     kind: next_dist_server_lib_trace_tracer__WEBPACK_IMPORTED_MODULE_3__.SpanKind.SERVER,
@@ -1317,10 +1357,10 @@ async function handler(req, res, ctx) {
                         'http.method': method,
                         'http.target': req.url
                     }
-                }, handleResponse));
+                }, handleResponse), undefined, !isWrappedByNextServer);
         }
     } catch (err) {
-        if (!(err instanceof next_dist_shared_lib_no_fallback_error_external__WEBPACK_IMPORTED_MODULE_23__.NoFallbackError)) {
+        if (!(err instanceof next_dist_shared_lib_no_fallback_error_external__WEBPACK_IMPORTED_MODULE_24__.NoFallbackError)) {
             const silenceLog = false;
             await routeModule.onRequestError(req, err, {
                 routerKind: 'App Router',
@@ -1353,6 +1393,229 @@ async function handler(req, res, ctx) {
 //# sourceMappingURL=app-page.js.map
 
 
+/***/ }),
+
+/***/ 17891:
+/***/ ((module) => {
+
+"use strict";
+module.exports = require("next/dist/shared/lib/router/utils/get-segment-param");
+
+/***/ }),
+
+/***/ 19121:
+/***/ ((module) => {
+
+"use strict";
+module.exports = require("next/dist/server/app-render/action-async-storage.external.js");
+
+/***/ }),
+
+/***/ 19404:
+/***/ ((__unused_webpack_module, __webpack_exports__, __webpack_require__) => {
+
+"use strict";
+
+// EXPORTS
+__webpack_require__.d(__webpack_exports__, {
+  "default": () => (/* binding */ AdminSecurity)
+});
+
+// EXTERNAL MODULE: ../../node_modules/next/dist/server/route-modules/app-page/vendored/ssr/react-jsx-runtime.js
+var react_jsx_runtime = __webpack_require__(92692);
+// EXTERNAL MODULE: ../../node_modules/next/dist/server/route-modules/app-page/vendored/ssr/react.js
+var react = __webpack_require__(71277);
+// EXTERNAL MODULE: ../../node_modules/next-intl/dist/esm/production/react-client/index.js
+var react_client = __webpack_require__(56305);
+// EXTERNAL MODULE: __barrel_optimize__?names=Toolbar,useAdmin!=!../../packages/react-ui/dist/index.mjs
+var dist = __webpack_require__(31587);
+// EXTERNAL MODULE: ./src/components/toolbar/ToolbarPanels.tsx + 4 modules
+var ToolbarPanels = __webpack_require__(50436);
+// EXTERNAL MODULE: __barrel_optimize__?names=useEventSubscriptions,useLineNumbers,usePanelBrowse,useTheme!=!../../packages/react-ui/dist/index.mjs
+var react_ui_dist = __webpack_require__(56677);
+// EXTERNAL MODULE: ../../packages/react-ui/dist/index.mjs + 27 modules
+var packages_react_ui_dist = __webpack_require__(76552);
+;// __barrel_optimize__?names=AdminSecurityPage!=!../../packages/react-ui/dist/index.mjs
+
+
+;// ./src/app/[locale]/admin/security/client.tsx
+/* __next_internal_client_entry_do_not_use__ default auto */ 
+/**
+ * Admin Security Client - Thin Next.js wrapper
+ *
+ * This component handles Next.js-specific concerns (translations, API calls, hooks)
+ * and delegates rendering to the pure React AdminSecurityPage component.
+ */ 
+
+
+
+
+
+function AdminSecurity() {
+    const t = (0,react_client/* useTranslations */.c)('AdminSecurity');
+    // Toolbar and settings state
+    const { activePanel } = (0,react_ui_dist/* usePanelBrowse */.ySJ)();
+    const { theme, setTheme } = (0,react_ui_dist/* useTheme */.DPo)();
+    const { showLineNumbers, toggleLineNumbers } = (0,react_ui_dist/* useLineNumbers */.cvF)();
+    // Handle theme change events
+    const handleThemeChanged = (0,react.useCallback)(({ theme })=>{
+        setTheme(theme);
+    }, [
+        setTheme
+    ]);
+    // Handle line numbers toggle events
+    const handleLineNumbersToggled = (0,react.useCallback)(()=>{
+        toggleLineNumbers();
+    }, [
+        toggleLineNumbers
+    ]);
+    (0,react_ui_dist/* useEventSubscriptions */.C$z)({
+        'settings:theme-changed': handleThemeChanged,
+        'settings:line-numbers-toggled': handleLineNumbersToggled
+    });
+    // Get OAuth configuration from API
+    const adminAPI = (0,dist/* useAdmin */.z8G)();
+    const { data: oauthConfig, isLoading: oauthLoading } = adminAPI.oauth.config.useQuery();
+    const allowedDomains = oauthConfig?.allowedDomains ?? [];
+    const providers = oauthConfig?.providers ?? [];
+    return /*#__PURE__*/ (0,react_jsx_runtime.jsx)(packages_react_ui_dist.AdminSecurityPage, {
+        providers: providers,
+        allowedDomains: allowedDomains,
+        isLoading: oauthLoading,
+        theme: theme,
+        showLineNumbers: showLineNumbers,
+        activePanel: activePanel,
+        translations: {
+            title: t('title'),
+            subtitle: t('subtitle'),
+            oauthProviders: t('oauthProviders'),
+            oauthProvidersDescription: t('oauthProvidersDescription'),
+            clientId: t('clientId'),
+            configured: t('configured'),
+            noProvidersConfigured: t('noProvidersConfigured'),
+            allowedDomains: t('allowedDomains'),
+            allowedDomainsDescription: t('allowedDomainsDescription'),
+            noDomainsConfigured: t('noDomainsConfigured'),
+            configManagementTitle: t('configManagementTitle'),
+            configManagementDescription: t('configManagementDescription'),
+            configLocalDev: t('configLocalDev'),
+            configCloudDeploy: t('configCloudDeploy'),
+            configCloudDeployCommand: t('configCloudDeployCommand'),
+            configCloudDeployEnd: t('configCloudDeployEnd'),
+            configAWS: t('configAWS')
+        },
+        ToolbarPanels: ToolbarPanels/* ToolbarPanels */.t,
+        Toolbar: dist/* Toolbar */.M7E
+    });
+}
+
+
+/***/ }),
+
+/***/ 19771:
+/***/ ((module) => {
+
+"use strict";
+module.exports = require("process");
+
+/***/ }),
+
+/***/ 22991:
+/***/ ((__unused_webpack_module, __unused_webpack_exports, __webpack_require__) => {
+
+Promise.resolve(/* import() eager */).then(__webpack_require__.bind(__webpack_require__, 48854));
+
+
+/***/ }),
+
+/***/ 26713:
+/***/ ((module) => {
+
+"use strict";
+module.exports = require("next/dist/shared/lib/router/utils/is-bot");
+
+/***/ }),
+
+/***/ 28354:
+/***/ ((module) => {
+
+"use strict";
+module.exports = require("util");
+
+/***/ }),
+
+/***/ 29294:
+/***/ ((module) => {
+
+"use strict";
+module.exports = require("next/dist/server/app-render/work-async-storage.external.js");
+
+/***/ }),
+
+/***/ 33873:
+/***/ ((module) => {
+
+"use strict";
+module.exports = require("path");
+
+/***/ }),
+
+/***/ 41025:
+/***/ ((module) => {
+
+"use strict";
+module.exports = require("next/dist/server/app-render/dynamic-access-async-storage.external.js");
+
+/***/ }),
+
+/***/ 43522:
+/***/ ((__unused_webpack_module, __webpack_exports__, __webpack_require__) => {
+
+"use strict";
+__webpack_require__.r(__webpack_exports__);
+/* harmony export */ __webpack_require__.d(__webpack_exports__, {
+/* harmony export */   "default": () => (/* binding */ AdminSecurityPage)
+/* harmony export */ });
+/* harmony import */ var react_jsx_runtime__WEBPACK_IMPORTED_MODULE_0__ = __webpack_require__(2474);
+/* harmony import */ var react_jsx_runtime__WEBPACK_IMPORTED_MODULE_0___default = /*#__PURE__*/__webpack_require__.n(react_jsx_runtime__WEBPACK_IMPORTED_MODULE_0__);
+/* harmony import */ var _client__WEBPACK_IMPORTED_MODULE_1__ = __webpack_require__(48854);
+
+
+// Authentication is handled by middleware.ts
+// Only authenticated admins can reach this page
+function AdminSecurityPage() {
+    return /*#__PURE__*/ (0,react_jsx_runtime__WEBPACK_IMPORTED_MODULE_0__.jsx)(_client__WEBPACK_IMPORTED_MODULE_1__["default"], {});
+}
+
+
+/***/ }),
+
+/***/ 43954:
+/***/ ((module) => {
+
+"use strict";
+module.exports = require("next/dist/shared/lib/router/utils/interception-routes");
+
+/***/ }),
+
+/***/ 48854:
+/***/ ((__unused_webpack_module, __webpack_exports__, __webpack_require__) => {
+
+"use strict";
+/* harmony export */ __webpack_require__.d(__webpack_exports__, {
+/* harmony export */   "default": () => (__WEBPACK_DEFAULT_EXPORT__)
+/* harmony export */ });
+/* harmony import */ var react_server_dom_webpack_server__WEBPACK_IMPORTED_MODULE_0__ = __webpack_require__(30274);
+/* harmony import */ var react_server_dom_webpack_server__WEBPACK_IMPORTED_MODULE_0___default = /*#__PURE__*/__webpack_require__.n(react_server_dom_webpack_server__WEBPACK_IMPORTED_MODULE_0__);
+// This file is generated by the Webpack next-flight-loader.
+
+/* harmony default export */ const __WEBPACK_DEFAULT_EXPORT__ = ((0,react_server_dom_webpack_server__WEBPACK_IMPORTED_MODULE_0__.registerClientReference)(
+function() { throw new Error("Attempted to call the default export of \"/home/runner/work/semiont/semiont/apps/frontend/src/app/[locale]/admin/security/client.tsx\" from the server, but it's on the client. It's not possible to invoke a client function from the server, it can only be rendered as a Component or passed to props of a Client Component."); },
+"/home/runner/work/semiont/semiont/apps/frontend/src/app/[locale]/admin/security/client.tsx",
+"default",
+));
+
+
 /***/ }),
 
 /***/ 55511:
@@ -1418,7 +1681,7 @@ Promise.resolve(/* import() eager */).then(__webpack_require__.bind(__webpack_re
 var __webpack_require__ = require("../../../../webpack-runtime.js");
 __webpack_require__.C(exports);
 var __webpack_exec__ = (moduleId) => (__webpack_require__(__webpack_require__.s = moduleId))
-var __webpack_exports__ = __webpack_require__.X(0, [7246,4741,2628,7420,2617,3144,8255,9988,8394], () => (__webpack_exec__(51445)));
+var __webpack_exports__ = __webpack_require__.X(0, [8569,4741,9927,7420,2617,3144,8255,9988,8394], () => (__webpack_exec__(12763)));
 module.exports = __webpack_exports__;
 
 })();