@timber-js/app 0.1.3 → 0.1.5

package/src/search-params/create.ts

@@ -145,7 +145,7 @@ function getDefaultSerialized<T>(codec: SearchParamCodec<T>): string | null {
  * Create a SearchParamsDefinition from a codec map and optional URL key aliases.
  *
  * ```ts
- * import { createSearchParams, fromSchema } from '@timber/app/search-params'
+ * import { createSearchParams, fromSchema } from '@timber-js/app/search-params'
  * import { z } from 'zod/v4'
  *
  * export default createSearchParams({
@@ -290,11 +290,11 @@ function buildDefinition<T extends Record<string, unknown>>(
   // ---- useQueryStates ----
   // This is a placeholder that will be replaced by the client runtime.
   // At import time in a server context, calling this throws.
-  // The actual implementation wraps nuqs and lives in @timber/app/client.
+  // The actual implementation wraps nuqs and lives in @timber-js/app/client.
   function useQueryStates(_options?: QueryStatesOptions): [T, SetParams<T>] {
     throw new Error(
       'useQueryStates() can only be called in a client component. ' +
-        'Import from @timber/app/client instead.'
+        'Import from @timber-js/app/client instead.'
     );
   }
 

package/src/search-params/index.ts

@@ -1,4 +1,4 @@
-// @timber/app/search-params — Typed search params
+// @timber-js/app/search-params — Typed search params
 
 // Core types and factory
 export type {

package/src/server/action-client.ts

@@ -386,7 +386,7 @@ export function createActionClient<TCtx = Record<string, never>>(
  * @example
  * ```ts
  * 'use server'
- * import { validated } from '@timber/app/server'
+ * import { validated } from '@timber-js/app/server'
  * import { z } from 'zod'
  *
  * export const createTodo = validated(

package/src/server/asset-headers.ts

@@ -69,7 +69,7 @@ export function getAssetCacheControl(pathname: string): string {
  * Everything else (favicon.ico, robots.txt, etc.) gets a shorter cache.
  */
 export function generateHeadersFile(): string {
-  return `# Auto-generated by @timber/app — static asset cache headers.
+  return `# Auto-generated by @timber-js/app — static asset cache headers.
 # See design/25-production-deployments.md §"CDN / Edge Cache"
 
 /assets/*

package/src/server/dev-fetch-instrumentation.ts

@@ -0,0 +1,96 @@
+/**
+ * Dev-mode fetch instrumentation — patches globalThis.fetch to create OTEL
+ * spans for every fetch call, giving visibility into async data fetching
+ * in the dev request log tree.
+ *
+ * Only activated in dev mode — zero overhead in production.
+ *
+ * The spans are automatically children of the active OTEL context (e.g. a
+ * timber.page or timber.layout span), so they appear nested under the
+ * component that initiated the fetch in the dev log tree.
+ *
+ * Design ref: 17-logging.md §"Dev Logging", LOCAL-289
+ */
+
+import * as api from '@opentelemetry/api';
+
+export type DevFetchCleanup = () => void;
+
+/**
+ * Patch globalThis.fetch to wrap every call in an OTEL span.
+ *
+ * Returns a cleanup function that restores the original fetch.
+ * Only call this in dev mode.
+ */
+export function instrumentDevFetch(): DevFetchCleanup {
+  const originalFetch = globalThis.fetch;
+  const tracer = api.trace.getTracer('timber.js');
+
+  globalThis.fetch = async (input: RequestInfo | URL, init?: RequestInit): Promise<Response> => {
+    const { method, url } = extractFetchInfo(input, init);
+
+    return tracer.startActiveSpan(
+      'timber.fetch',
+      {
+        attributes: {
+          'http.request.method': method,
+          'http.url': url,
+        },
+      },
+      async (span) => {
+        try {
+          const response = await originalFetch(input, init);
+
+          span.setAttribute('http.response.status_code', response.status);
+
+          // Surface cache status from standard headers
+          const cacheStatus =
+            response.headers.get('X-Cache') ?? response.headers.get('CF-Cache-Status');
+          if (cacheStatus) {
+            span.setAttribute('timber.cache_status', cacheStatus);
+          }
+
+          span.setStatus({ code: api.SpanStatusCode.OK });
+          span.end();
+          return response;
+        } catch (error) {
+          span.setStatus({ code: api.SpanStatusCode.ERROR });
+          if (error instanceof Error) {
+            span.setAttribute('timber.fetch_error', error.message);
+            span.recordException(error);
+          }
+          span.end();
+          throw error;
+        }
+      }
+    );
+  };
+
+  return () => {
+    globalThis.fetch = originalFetch;
+  };
+}
+
+/**
+ * Extract method and URL from the various fetch() call signatures.
+ */
+function extractFetchInfo(
+  input: RequestInfo | URL,
+  init?: RequestInit
+): { method: string; url: string } {
+  let method = init?.method ?? 'GET';
+  let url: string;
+
+  if (input instanceof Request) {
+    url = input.url;
+    if (!init?.method) {
+      method = input.method;
+    }
+  } else if (input instanceof URL) {
+    url = input.toString();
+  } else {
+    url = input;
+  }
+
+  return { method: method.toUpperCase(), url };
+}

package/src/server/dev-logger.ts

@@ -107,6 +107,11 @@ function spanLabel(span: ReadableSpan): { label: string; env: string } {
       const route = attrs['timber.route'] ?? '/';
       return { label: `page ${route}`, env: 'rsc' };
     }
+    case 'timber.fetch': {
+      const fetchMethod = attrs['http.request.method'] ?? 'GET';
+      const fetchUrl = attrs['http.url'] ?? '';
+      return { label: `fetch ${fetchMethod} ${fetchUrl}`, env: 'fetch' };
+    }
     default:
       return { label: span.name, env: 'rsc' };
   }
@@ -282,6 +287,43 @@ export function formatSpanTree(spans: ReadableSpan[], config?: DevLoggerConfig):
   return lines.join('\n') + '\n';
 }
 
+/**
+ * Format a fetch span line with method, URL, timing, duration, and cache status.
+ *
+ * Output: `├─ fetch GET https://api.example.com/data  12ms → 89ms (77ms) [cache: HIT]`
+ */
+function formatFetchLine(
+  span: ReadableSpan,
+  prefix: string,
+  connector: string,
+  startMs: number,
+  endMs: number,
+  durationMs: number
+): string {
+  const method = String(span.attributes['http.request.method'] ?? 'GET');
+  const url = String(span.attributes['http.url'] ?? '');
+  const statusCode = span.attributes['http.response.status_code'] as number | undefined;
+  const cacheStatus = span.attributes['timber.cache_status'] as string | undefined;
+  const fetchError = span.attributes['timber.fetch_error'] as string | undefined;
+  const isError = span.status.code === 2; // SpanStatusCode.ERROR
+
+  let line = `${prefix}${connector} ${DIM}fetch ${method}${RESET} ${url}`;
+  line += `  ${DIM}${startMs}ms → ${endMs}ms (${durationMs}ms)${RESET}`;
+
+  if (cacheStatus) {
+    line += `  ${DIM}[cdn: ${cacheStatus}]${RESET}`;
+  }
+
+  if (isError) {
+    const errMsg = fetchError ? `: ${fetchError}` : '';
+    line += `  ${RED}ERROR${errMsg}${RESET}`;
+  } else if (statusCode && statusCode >= 400) {
+    line += `  ${YELLOW}${statusCode}${RESET}`;
+  }
+
+  return line;
+}
+
 /**
  * Format a single span tree node with children, timing, and annotations.
  */
@@ -301,6 +343,13 @@ function formatSpanNode(
   const durationMs = endMs - startMs;
   const isSlow = durationMs > slowPhaseMs;
 
+  // Fetch spans get special formatting: no env tag, duration in parens, cache status
+  if (node.span.name === 'timber.fetch') {
+    const fetchLine = formatFetchLine(node.span, prefix, connector, startMs, endMs, durationMs);
+    lines.push(fetchLine);
+    return;
+  }
+
   // Access results from span attributes
   const accessResult = node.span.attributes['timber.result'] as string | undefined;
 

package/src/server/form-flash.ts

@@ -60,7 +60,7 @@ const formFlashAls = new AsyncLocalStorage<FormFlashData>();
  *
  * ```tsx
  * // app/contact/page.tsx (server component)
- * import { getFormFlash } from '@timber/app/server'
+ * import { getFormFlash } from '@timber-js/app/server'
  *
  * export default function ContactPage() {
  *   const flash = getFormFlash()

package/src/server/index.ts

@@ -1,4 +1,4 @@
-// @timber/app/server — Server-side primitives
+// @timber-js/app/server — Server-side primitives
 // These are the primary imports for server components, middleware, and access files.
 
 export type { AccessContext } from './types';

package/src/server/primitives.ts

@@ -1,4 +1,4 @@
-// Server-side primitives: deny, redirect, redirectExternal, RenderError, waitUntil
+// Server-side primitives: deny, redirect, redirectExternal, RenderError, waitUntil, SsrStreamError
 //
 // These are the core runtime signals that components, middleware, and access gates
 // use to control request flow. See design/10-error-handling.md.
@@ -262,3 +262,26 @@ export function waitUntil(promise: Promise<unknown>, adapter: WaitUntilAdapter):
 export function _resetWaitUntilWarning(): void {
   _waitUntilWarned = false;
 }
+
+// ─── SsrStreamError ─────────────────────────────────────────────────────────
+
+/**
+ * Error thrown when SSR's renderToReadableStream fails due to an error
+ * in the decoded RSC stream (e.g., uncontained slot errors).
+ *
+ * The RSC entry checks for this error type in its catch block to avoid
+ * re-executing server components via renderDenyPage. Instead, it renders
+ * a bare deny/error page without layout wrapping.
+ *
+ * Defined in primitives.ts (not ssr-entry.ts) because ssr-entry.ts imports
+ * react-dom/server which cannot be loaded in the RSC environment.
+ */
+export class SsrStreamError extends Error {
+  constructor(
+    message: string,
+    public readonly cause: unknown
+  ) {
+    super(message);
+    this.name = 'SsrStreamError';
+  }
+}

package/src/server/request-context.ts

@@ -46,7 +46,13 @@ interface CookieEntry {
   options: CookieOptions;
 }
 
-const requestContextAls = new AsyncLocalStorage<RequestContextStore>();
+/** @internal */
+export const requestContextAls = new AsyncLocalStorage<RequestContextStore>();
+
+// No fallback needed — we use enterWith() instead of run() to ensure
+// the ALS context persists for the entire request lifecycle including
+// async stream consumption by React's renderToReadableStream.
+
 
 // ─── Cookie Signing Secrets ──────────────────────────────────────────────
 

package/src/server/route-element-builder.ts

@@ -23,10 +23,7 @@ import type { ManifestSegmentNode } from './route-matcher.js';
 import { resolveMetadata, renderMetadataToElements } from './metadata.js';
 import type { HeadElement as MetadataHeadElement } from './metadata.js';
 import type { Metadata } from './types.js';
-import {
-  METADATA_ROUTE_CONVENTIONS,
-  getMetadataRouteAutoLink,
-} from './metadata-routes.js';
+import { METADATA_ROUTE_CONVENTIONS, getMetadataRouteAutoLink } from './metadata-routes.js';
 import { DenySignal, RedirectSignal } from './primitives.js';
 import { AccessGate } from './access-gate.js';
 import { resolveSlotElement } from './slot-resolver.js';
@@ -155,7 +152,7 @@ export async function buildRouteElement(
     // Load page (leaf segment only)
     if (isLeaf && segment.page) {
       // Load and apply search-params.ts definition before rendering so
-      // searchParams() from @timber/app/server returns parsed typed values.
+      // searchParams() from @timber-js/app/server returns parsed typed values.
       if (segment.searchParams) {
         const spMod = (await segment.searchParams.load()) as {
           default?: SearchParamsDefinition<Record<string, unknown>>;

package/src/server/rsc-entry/index.ts

@@ -24,6 +24,7 @@ import buildManifest from 'virtual:timber-build-manifest';
 
 import { renderToReadableStream } from '@vitejs/plugin-rsc/rsc';
 
+import React, { createElement } from 'react';
 import { createPipeline } from '#/server/pipeline.js';
 import { initDevTracing } from '#/server/tracing.js';
 import type { PipelineConfig, RouteMatch, InterceptionContext } from '#/server/pipeline.js';
@@ -31,7 +32,7 @@ import { logRenderError } from '#/server/logger.js';
 import { resolveLogMode } from '#/server/dev-logger.js';
 import { createRouteMatcher, createMetadataRouteMatcher } from '#/server/route-matcher.js';
 import type { ManifestSegmentNode } from '#/server/route-matcher.js';
-import { DenySignal, RedirectSignal, RenderError } from '#/server/primitives.js';
+import { DenySignal, RedirectSignal, RenderError, SsrStreamError } from '#/server/primitives.js';
 import { buildClientScripts } from '#/server/html-injectors.js';
 import type { ClientBootstrapConfig } from '#/server/html-injectors.js';
 import { renderDenyPage, renderDenyPageAsRsc } from '#/server/deny-renderer.js';
@@ -125,6 +126,10 @@ async function createRequestHandler(manifest: typeof routeManifest, runtimeConfi
     const devLogMode = resolveLogMode();
     if (devLogMode !== 'quiet') {
       await initDevTracing({ mode: devLogMode, slowPhaseMs });
+      // Patch globalThis.fetch to create OTEL spans for fetch calls.
+      // Spans appear as children of the active component span in the dev log tree.
+      const { instrumentDevFetch } = await import('../dev-fetch-instrumentation.js');
+      instrumentDevFetch();
     }
   }
 
@@ -368,6 +373,7 @@ async function renderRoute(
   let redirectSignal: RedirectSignal | null = null;
   let renderError: { error: unknown; status: number } | null = null;
   let rscStream: ReadableStream<Uint8Array> | undefined;
+
   try {
     rscStream = renderToReadableStream(
       element,
@@ -671,6 +677,32 @@ async function renderRoute(
       return new Response(null, { status: 499 });
     }
 
+    // SsrStreamError: SSR's renderToReadableStream failed because the RSC
+    // stream contained an uncontained error (e.g., slot without error boundary).
+    // Render the deny/error page WITHOUT layout wrapping to avoid re-executing
+    // server components (which call headers()/cookies() and fail in SSR's
+    // separate ALS scope). See LOCAL-293.
+    if (ssrError instanceof SsrStreamError) {
+      const sig = redirectSignal as RedirectSignal | null;
+      if (sig) return buildRedirectResponse(_req, sig, responseHeaders);
+      if (denySignal) {
+        // Render deny page without layouts — pass empty layout list
+        return renderDenyPage(
+          denySignal, segments, [] as LayoutEntry[],
+          _req, match, responseHeaders, clientBootstrap, createDebugChannelSink, callSsr
+        );
+      }
+      const err = renderError as { error: unknown; status: number } | null;
+      if (err) {
+        return renderErrorPage(
+          err.error, err.status, segments, [] as LayoutEntry[],
+          _req, match, responseHeaders, clientBootstrap
+        );
+      }
+      // No captured signal — return bare 500
+      return new Response(null, { status: 500, headers: responseHeaders });
+    }
+
     // SSR shell rendering failed — the error was outside Suspense.
     // Check captured signals (redirect, deny, render error).
     const signalResponse = checkCapturedSignals();

package/src/server/slot-resolver.ts

@@ -20,6 +20,8 @@ import type { ManifestSegmentNode } from './route-matcher.js';
 import type { RouteMatch, InterceptionContext } from './pipeline.js';
 import { SlotAccessGate } from './access-gate.js';
 import { wrapSegmentWithErrorBoundaries } from './error-boundary-wrapper.js';
+import { TimberErrorBoundary } from '#/client/error-boundary.js';
+import SlotErrorFallback from '#/client/slot-error-fallback.js';
 
 type CreateElementFn = (...args: unknown[]) => React.ReactElement;
 
@@ -142,6 +144,18 @@ export async function resolveSlotElement(
       // Wrap with slot root's error boundaries (outermost)
       element = await wrapSegmentWithErrorBoundaries(slotNode, element, h);
 
+      // Catch-all error boundary: ensures slot errors NEVER propagate to the
+      // parent layout. Without this, a slot without error.tsx that throws
+      // causes SSR's renderToReadableStream to reject, triggering renderDenyPage
+      // which re-executes all layout server components (including headers() calls
+      // that fail in the SSR environment). The null fallback means the slot
+      // degrades to nothing — consistent with the slot access denial behavior.
+      // See design/02-rendering-pipeline.md §"Slot Access Failure = Graceful Degradation"
+      element = h(TimberErrorBoundary, {
+        fallbackComponent: SlotErrorFallback,
+        children: element,
+      });
+
       return element;
     }
   }
@@ -187,9 +201,14 @@ function findSlotMatch(slotNode: ManifestSegmentNode, match: RouteMatch): SlotMa
 
   // Find the parent segment that owns this slot by comparing urlPaths.
   // The slot's urlPath matches its parent's urlPath (slots don't add URL depth).
+  // Search BACKWARDS to find the deepest (last) matching segment. Multiple
+  // segments can share the same urlPath when route groups are involved (e.g.,
+  // Root urlPath='/' and (browse) urlPath='/'). The slot's parent is always
+  // the deepest one — searching forward would incorrectly pick the root,
+  // making remainingSegments too long and breaking slot matching.
   const slotUrlPath = slotNode.urlPath;
   let parentIndex = -1;
-  for (let i = 0; i < segments.length; i++) {
+  for (let i = segments.length - 1; i >= 0; i--) {
     if (segments[i].urlPath === slotUrlPath) {
       parentIndex = i;
       break;

package/src/server/ssr-entry.ts

@@ -18,6 +18,8 @@ import { createFromReadableStream } from '@vitejs/plugin-rsc/ssr';
 import { AsyncLocalStorage } from 'node:async_hooks';
 
 import { renderSsrStream, buildSsrResponse } from './ssr-render.js';
+import { formatSsrError } from './error-formatter.js';
+import { SsrStreamError } from './primitives.js';
 import { injectHead, injectRscPayload } from './html-injectors.js';
 import { withNuqsSsrAdapter } from './nuqs-ssr-provider.js';
 import { withSpan } from './tracing.js';
@@ -141,11 +143,25 @@ export async function handleSsr(
       // in the shell HTML. This executes immediately during parsing — even
       // while Suspense boundaries are still streaming — triggering module
       // loading via dynamic import() so hydration can start early.
-      const htmlStream = await renderSsrStream(wrappedElement, {
-        bootstrapScriptContent: navContext.bootstrapScriptContent || undefined,
-        deferSuspenseFor: navContext.deferSuspenseFor,
-        signal: navContext.signal,
-      });
+      let htmlStream: ReadableStream<Uint8Array>;
+      try {
+        htmlStream = await renderSsrStream(wrappedElement, {
+          bootstrapScriptContent: navContext.bootstrapScriptContent || undefined,
+          deferSuspenseFor: navContext.deferSuspenseFor,
+          signal: navContext.signal,
+        });
+      } catch (renderError) {
+        // SSR shell rendering failed — the RSC stream contained an error
+        // that wasn't caught by any error boundary in the decoded tree.
+        // Wrap in SsrStreamError so the RSC entry can handle it without
+        // re-executing server components via renderDenyPage.
+        // See LOCAL-293.
+        console.error('[timber] SSR shell failed from RSC stream error:', formatSsrError(renderError));
+        throw new SsrStreamError(
+          'SSR renderToReadableStream failed due to RSC stream error',
+          renderError
+        );
+      }
 
       // Inject metadata into <head>, then interleave RSC payload chunks
       // into the body as they arrive from the tee'd RSC stream.

package/src/shims/headers.ts

@@ -1,11 +1,9 @@
 /**
- * Shim: next/headers → timber request context
+ * Shim: next/headers → timber server
  *
- * Re-exports timber's ALS-backed headers() and cookies() for libraries
- * that import from next/headers. These are real implementations backed
- * by AsyncLocalStorage, not stubs.
- *
- * See design/14-ecosystem.md §"next/headers" for the full shim audit.
+ * Imports from @timber-js/app/server which Vite resolves to dist/server/index.js
+ * via native package.json exports. This ensures the same ALS singleton as the
+ * pipeline (both import from the same shared request-context chunk in dist/).
  */
 
-export { headers, cookies } from '#/server/request-context.js';
+export { headers, cookies } from '@timber-js/app/server';

package/src/shims/link.ts

@@ -1,5 +1,7 @@
+'use client';
+
 /**
- * Shim: next/link → @timber/app/client Link
+ * Shim: next/link → @timber-js/app/client Link
  *
  * Re-exports timber's Link component so libraries that import next/link
  * get the timber equivalent without modification.

package/src/shims/navigation.ts

@@ -1,23 +1,13 @@
 /**
  * Shim: next/navigation → timber navigation primitives
  *
- * Re-exports timber's navigation hooks and functions for libraries
- * that import from next/navigation. Covers the App Router API surface
- * used by ecosystem libraries (nuqs, next-intl, etc.).
- *
- * Note: nuqs imports next/navigation.js (with .js extension).
- * The timber-shims plugin strips .js before matching.
- *
- * Intentional divergences from Next.js:
- * - useRouter().replace() currently uses pushState (same as push) —
- *   timber's router doesn't distinguish push/replace yet.
- * - redirect() does not accept a RedirectType argument — timber
- *   always uses replace semantics for redirects.
- * - permanentRedirect() delegates to redirect(path, 308).
- * See design/14-ecosystem.md for the full shim audit.
+ * Client hooks use #/ source imports (individual files with 'use client' directives
+ * that the RSC plugin detects).
+ * Server functions use @timber-js/app/server (resolved to dist/ via native exports)
+ * for ALS singleton consistency.
  */
 
-// Hooks (client-side)
+// Hooks (client-side — must use source imports for RSC 'use client' detection)
 export { useParams } from '#/client/use-params.js';
 export { usePathname } from '#/client/use-pathname.js';
 export { useSearchParams } from '#/client/use-search-params.js';
@@ -27,5 +17,5 @@ export {
   useSelectedLayoutSegments,
 } from '#/client/use-selected-layout-segment.js';
 
-// Functions (server-side)
-export { redirect, permanentRedirect, notFound, RedirectType } from '#/server/primitives.js';
+// Functions (server-side — resolved to dist/ for ALS singleton consistency)
+export { redirect, permanentRedirect, notFound, RedirectType } from '@timber-js/app/server';

package/dist/_chunks/error-boundary-dj-WO5uq.js.map

@@ -1 +0,0 @@
-{"version":3,"file":"error-boundary-dj-WO5uq.js","names":[],"sources":["../../src/client/error-boundary.tsx"],"sourcesContent":["'use client';\n\n/**\n * Framework-injected React error boundary.\n *\n * Catches errors thrown by children and renders a fallback component\n * with the appropriate props based on error type:\n *   - DenySignal (4xx) → { status, dangerouslyPassData }\n *   - RenderError (5xx) → { error, digest, reset }\n *   - Unhandled error → { error, digest: null, reset }\n *\n * The `status` prop controls which errors this boundary catches:\n *   - Specific code (e.g. 403) → only that status\n *   - Category (400) → any 4xx\n *   - Category (500) → any 5xx\n *   - Omitted → catches everything (error.tsx behavior)\n *\n * See design/10-error-handling.md §\"Status-Code Files\"\n */\n\nimport { Component, createElement, type ReactNode } from 'react';\n\n// ─── Page Unload Detection ───────────────────────────────────────────────────\n// Track whether the page is being unloaded (user refreshed or navigated away).\n// When this is true, error boundaries suppress activation — the error is from\n// the aborted connection, not an application error.\nlet _isUnloading = false;\nif (typeof window !== 'undefined') {\n  window.addEventListener('beforeunload', () => {\n    _isUnloading = true;\n  });\n  window.addEventListener('pagehide', () => {\n    _isUnloading = true;\n  });\n}\n\n// ─── Digest Types ────────────────────────────────────────────────────────────\n\n/** Structured digest returned by RSC onError for DenySignal. */\ninterface DenyDigest {\n  type: 'deny';\n  status: number;\n  data: unknown;\n}\n\n/** Structured digest returned by RSC onError for RenderError. */\ninterface RenderErrorDigest {\n  type: 'render-error';\n  code: string;\n  data: unknown;\n  status: number;\n}\n\n/** Structured digest returned by RSC onError for RedirectSignal. */\ninterface RedirectDigest {\n  type: 'redirect';\n  location: string;\n  status: number;\n}\n\ntype ParsedDigest = DenyDigest | RenderErrorDigest | RedirectDigest;\n\n// ─── Props & State ───────────────────────────────────────────────────────────\n\nexport interface TimberErrorBoundaryProps {\n  /** The component to render when an error is caught. */\n  fallbackComponent: (...args: unknown[]) => ReactNode;\n  /**\n   * Status code filter. If set, only catches errors matching this status.\n   * 400 = any 4xx, 500 = any 5xx, specific number = exact match.\n   */\n  status?: number;\n  children: ReactNode;\n}\n\ninterface TimberErrorBoundaryState {\n  hasError: boolean;\n  error: Error | null;\n}\n\n// ─── Component ───────────────────────────────────────────────────────────────\n\nexport class TimberErrorBoundary extends Component<\n  TimberErrorBoundaryProps,\n  TimberErrorBoundaryState\n> {\n  constructor(props: TimberErrorBoundaryProps) {\n    super(props);\n    this.state = { hasError: false, error: null };\n  }\n\n  static getDerivedStateFromError(error: Error): TimberErrorBoundaryState {\n    // Suppress error boundaries during page unload (refresh/navigate away).\n    // The aborted connection causes React's streaming hydration to error,\n    // but the page is about to be replaced — showing an error boundary\n    // would be a jarring flash for the user.\n    if (_isUnloading) {\n      return { hasError: false, error: null };\n    }\n    return { hasError: true, error };\n  }\n\n  componentDidUpdate(prevProps: TimberErrorBoundaryProps): void {\n    // Reset error state when children change (e.g. client-side navigation).\n    // Without this, navigating from one error page to another keeps the\n    // stale error — getDerivedStateFromError doesn't re-fire for new children.\n    if (this.state.hasError && prevProps.children !== this.props.children) {\n      this.setState({ hasError: false, error: null });\n    }\n  }\n\n  /** Reset the error state so children re-render. */\n  private reset = () => {\n    this.setState({ hasError: false, error: null });\n  };\n\n  render(): ReactNode {\n    if (!this.state.hasError || !this.state.error) {\n      return this.props.children;\n    }\n\n    const error = this.state.error;\n    const parsed = parseDigest(error);\n\n    // RedirectSignal errors must propagate through all error boundaries\n    // so the SSR shell fails and the pipeline catch block can produce a\n    // proper HTTP redirect response. See design/04-authorization.md.\n    if (parsed?.type === 'redirect') {\n      throw error;\n    }\n\n    // If this boundary has a status filter, check whether the error matches.\n    // Non-matching errors re-throw so an outer boundary can catch them.\n    if (this.props.status != null) {\n      const errorStatus = getErrorStatus(parsed, error);\n      if (errorStatus == null || !statusMatches(this.props.status, errorStatus)) {\n        // Re-throw: this boundary doesn't handle this error.\n        throw error;\n      }\n    }\n\n    // Render the fallback component with the right props shape.\n    if (parsed?.type === 'deny') {\n      return createElement(this.props.fallbackComponent as never, {\n        status: parsed.status,\n        dangerouslyPassData: parsed.data,\n      });\n    }\n\n    // 5xx / RenderError / unhandled error\n    const digest =\n      parsed?.type === 'render-error' ? { code: parsed.code, data: parsed.data } : null;\n\n    return createElement(this.props.fallbackComponent as never, {\n      error,\n      digest,\n      reset: this.reset,\n    });\n  }\n}\n\n// ─── Helpers ─────────────────────────────────────────────────────────────────\n\n/**\n * Parse the structured digest from the error.\n * React sets `error.digest` from the string returned by RSC's onError.\n */\nfunction parseDigest(error: Error): ParsedDigest | null {\n  const raw = (error as { digest?: string }).digest;\n  if (typeof raw !== 'string') return null;\n  try {\n    const parsed = JSON.parse(raw);\n    if (parsed && typeof parsed === 'object' && typeof parsed.type === 'string') {\n      return parsed as ParsedDigest;\n    }\n  } catch {\n    // Not JSON — legacy or unknown digest format\n  }\n  return null;\n}\n\n/**\n * Extract the HTTP status code from a parsed digest or error message.\n * Falls back to message pattern matching for errors without a digest.\n */\nfunction getErrorStatus(parsed: ParsedDigest | null, error: Error): number | null {\n  if (parsed?.type === 'deny') return parsed.status;\n  if (parsed?.type === 'render-error') return parsed.status;\n  if (parsed?.type === 'redirect') return parsed.status;\n\n  // Fallback: parse DenySignal message pattern for errors that lost their digest\n  const match = error.message.match(/^Access denied with status (\\d+)$/);\n  if (match) return parseInt(match[1], 10);\n\n  // Unhandled errors are implicitly 500\n  return 500;\n}\n\n/**\n * Check whether an error's status matches the boundary's status filter.\n * Category markers (400, 500) match any status in that range.\n */\nfunction statusMatches(boundaryStatus: number, errorStatus: number): boolean {\n  // Category catch-all: 400 matches any 4xx, 500 matches any 5xx\n  if (boundaryStatus === 400) return errorStatus >= 400 && errorStatus <= 499;\n  if (boundaryStatus === 500) return errorStatus >= 500 && errorStatus <= 599;\n  // Exact match\n  return boundaryStatus === errorStatus;\n}\n"],"mappings":";;;;;;;;;;;;;;;;;;;AA0BA,IAAI,eAAe;AACnB,IAAI,OAAO,WAAW,aAAa;AACjC,QAAO,iBAAiB,sBAAsB;AAC5C,iBAAe;GACf;AACF,QAAO,iBAAiB,kBAAkB;AACxC,iBAAe;GACf;;AAiDJ,IAAa,sBAAb,cAAyC,UAGvC;CACA,YAAY,OAAiC;AAC3C,QAAM,MAAM;AACZ,OAAK,QAAQ;GAAE,UAAU;GAAO,OAAO;GAAM;;CAG/C,OAAO,yBAAyB,OAAwC;AAKtE,MAAI,aACF,QAAO;GAAE,UAAU;GAAO,OAAO;GAAM;AAEzC,SAAO;GAAE,UAAU;GAAM;GAAO;;CAGlC,mBAAmB,WAA2C;AAI5D,MAAI,KAAK,MAAM,YAAY,UAAU,aAAa,KAAK,MAAM,SAC3D,MAAK,SAAS;GAAE,UAAU;GAAO,OAAO;GAAM,CAAC;;;CAKnD,cAAsB;AACpB,OAAK,SAAS;GAAE,UAAU;GAAO,OAAO;GAAM,CAAC;;CAGjD,SAAoB;AAClB,MAAI,CAAC,KAAK,MAAM,YAAY,CAAC,KAAK,MAAM,MACtC,QAAO,KAAK,MAAM;EAGpB,MAAM,QAAQ,KAAK,MAAM;EACzB,MAAM,SAAS,YAAY,MAAM;AAKjC,MAAI,QAAQ,SAAS,WACnB,OAAM;AAKR,MAAI,KAAK,MAAM,UAAU,MAAM;GAC7B,MAAM,cAAc,eAAe,QAAQ,MAAM;AACjD,OAAI,eAAe,QAAQ,CAAC,cAAc,KAAK,MAAM,QAAQ,YAAY,CAEvE,OAAM;;AAKV,MAAI,QAAQ,SAAS,OACnB,QAAO,cAAc,KAAK,MAAM,mBAA4B;GAC1D,QAAQ,OAAO;GACf,qBAAqB,OAAO;GAC7B,CAAC;EAIJ,MAAM,SACJ,QAAQ,SAAS,iBAAiB;GAAE,MAAM,OAAO;GAAM,MAAM,OAAO;GAAM,GAAG;AAE/E,SAAO,cAAc,KAAK,MAAM,mBAA4B;GAC1D;GACA;GACA,OAAO,KAAK;GACb,CAAC;;;;;;;AAUN,SAAS,YAAY,OAAmC;CACtD,MAAM,MAAO,MAA8B;AAC3C,KAAI,OAAO,QAAQ,SAAU,QAAO;AACpC,KAAI;EACF,MAAM,SAAS,KAAK,MAAM,IAAI;AAC9B,MAAI,UAAU,OAAO,WAAW,YAAY,OAAO,OAAO,SAAS,SACjE,QAAO;SAEH;AAGR,QAAO;;;;;;AAOT,SAAS,eAAe,QAA6B,OAA6B;AAChF,KAAI,QAAQ,SAAS,OAAQ,QAAO,OAAO;AAC3C,KAAI,QAAQ,SAAS,eAAgB,QAAO,OAAO;AACnD,KAAI,QAAQ,SAAS,WAAY,QAAO,OAAO;CAG/C,MAAM,QAAQ,MAAM,QAAQ,MAAM,oCAAoC;AACtE,KAAI,MAAO,QAAO,SAAS,MAAM,IAAI,GAAG;AAGxC,QAAO;;;;;;AAOT,SAAS,cAAc,gBAAwB,aAA8B;AAE3E,KAAI,mBAAmB,IAAK,QAAO,eAAe,OAAO,eAAe;AACxE,KAAI,mBAAmB,IAAK,QAAO,eAAe,OAAO,eAAe;AAExE,QAAO,mBAAmB"}