npm - @tinycloud/sdk-core - Versions diffs - 2.1.0 → 2.2.0-beta.1 - Mend

@tinycloud/sdk-core 2.1.0 → 2.2.0-beta.1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (7) hide show

package/dist/index.d.cts CHANGED Viewed

@@ -206,8 +206,8 @@ interface IENSResolver {
 interface PermissionEntry {
     /** Service namespace, e.g. "tinycloud.kv", "tinycloud.sql", "tinycloud.duckdb", "tinycloud.capabilities". */
     service: string;
-    /** "default" for the user's personal space, or a specific space id. */
-    space: string;
+    /** Space name or full space URI. Defaults to "applications" inside manifests. */
+    space?: string;
     /**
      * Service-specific path.
      * - tinycloud.kv: hierarchical prefix. "/" = all, "foo/" = prefix match, "foo" = exact key
@@ -226,23 +226,8 @@ interface PermissionEntry {
     skipPrefix?: boolean;
     /** Per-entry expiry override, ms-format. */
     expiry?: string;
-}
-/**
- * A pre-declared delegation that will be included in the main SIWE recap as
- * an additional audience.
- */
-interface ManifestDelegation {
-    /** DID of the delegate (e.g. a backend's wallet DID). */
-    to: string;
-    /** Informational display name. Optional. */
-    name?: string;
-    /** Expiry override for this delegation, ms-format. Optional. */
-    expiry?: string;
-    /**
-     * Permissions to delegate. Same shape as the top-level `permissions`, and
-     * the manifest prefix is inherited identically (unless `skipPrefix: true`).
-     */
-    permissions: PermissionEntry[];
+    /** User/agent-facing context for why this permission is requested. */
+    description?: string;
 }
 /**
  * The valid values for `Manifest.defaults`.
@@ -261,22 +246,26 @@ type ManifestDefaults = boolean | "admin" | "all";
  */
 interface Manifest {
     /** Schema version. Optional, defaults to 1. */
-    version?: number;
-    /** Bundle identifier — reverse DNS. Required. */
-    id: string;
+    manifest_version?: 1;
+    /** Application identifier / namespace prefix. Required. */
+    app_id: string;
     /** Display name. Required. */
     name: string;
-    /** One-line description. Optional. */
+    /** Description of what the app or delegate does. Optional. */
     description?: string;
+    /** DID of this manifest's delegate target. Optional. Required only for delegation materialization. */
+    did?: string;
     /** URL to app icon. Optional. */
     icon?: string;
     /** App version string. Optional. */
     appVersion?: string;
     /** Default expiry for permissions. ms-format ("30d", "2h", "1y"). Default "30d". */
     expiry?: string;
+    /** Space name or full space URI. Optional, defaults to "applications". */
+    space?: string;
     /**
      * Path prefix auto-prepended to permission paths. Optional, defaults to
-     * `id`. Set to `""` to disable entirely. Individual permissions can opt
+     * `app_id`. Set to `""` to disable entirely. Individual permissions can opt
      * out with `skipPrefix: true`.
      */
     prefix?: string;
@@ -292,8 +281,6 @@ interface Manifest {
      * DuckDB (opt-in), or `skipPrefix: true` entries.
      */
     permissions?: PermissionEntry[];
-    /** Pre-delegations to other DIDs at sign-in. */
-    delegations?: ManifestDelegation[];
 }
 /**
  * A resolved permission entry with fully-expanded paths and action URNs.
@@ -303,7 +290,7 @@ interface Manifest {
 interface ResourceCapability {
     /** Long-form service, e.g. "tinycloud.kv". */
     service: string;
-    /** Space id — "default" stays as-is here; the caller resolves it to a full SpaceId at sign-in time. */
+    /** Space name or URI. Short names are resolved to full SpaceIds at sign-in time. */
     space: string;
     /** Path with the manifest prefix applied (or skipped per `skipPrefix`). */
     path: string;
@@ -311,6 +298,8 @@ interface ResourceCapability {
     actions: string[];
     /** Per-entry expiry override in milliseconds. */
     expiryMs?: number;
+    /** User/agent-facing context copied from the source permission entry. */
+    description?: string;
 }
 /**
  * A resolved delegation entry with fully-expanded permissions.
@@ -330,17 +319,47 @@ interface ResolvedDelegate {
  * ready to drive the SIWE recap.
  */
 interface ResolvedCapabilities {
-    /** Bundle identifier copied from manifest.id. */
-    id: string;
+    /** Application identifier copied from manifest.app_id. */
+    app_id: string;
+    /** Delegate DID copied from manifest.did, when present. */
+    did?: string;
+    /** Effective default space for this manifest. */
+    space: string;
     /** All session-key resources with paths fully resolved (prefix applied). */
     resources: ResourceCapability[];
     /** Default expiry for the session, in milliseconds. */
     expiryMs: number;
     /** Whether to include the public-space companion. */
     includePublicSpace: boolean;
-    /** Additional delegate targets with resolved paths. */
+    /** Delegate targets derived from manifests that declare `did`. */
     additionalDelegates: ResolvedDelegate[];
 }
+interface ManifestRegistryRecord {
+    /** KV key inside the account space. */
+    key: string;
+    /** App id this record describes. */
+    app_id: string;
+    /** Latest manifest payloads composed for this app id. */
+    manifests: Manifest[];
+}
+interface ComposeManifestOptions {
+    /** Include implicit account-space registry permissions. Default true. */
+    includeAccountRegistryPermissions?: boolean;
+}
+interface ComposedManifestRequest {
+    /** Validated manifests that were composed. */
+    manifests: Manifest[];
+    /** Full permission union requested from the user in one SIWE. */
+    resources: ResourceCapability[];
+    /** Delegations that can be materialized after sign-in. */
+    delegationTargets: ResolvedDelegate[];
+    /** Account-space registry records to write after successful sign-in. */
+    registryRecords: ManifestRegistryRecord[];
+    /** Effective session expiry, using the longest composed manifest expiry. */
+    expiryMs: number;
+    /** Whether to include the public-space companion behavior. */
+    includePublicSpace: boolean;
+}
 /**
  * Thrown when the manifest fails validation (missing id/name, bad expiry,
  * empty actions on a permission, etc).
@@ -357,6 +376,14 @@ declare const DEFAULT_EXPIRY = "30d";
  * Default `defaults` value when the manifest omits it. Spec: standard tier.
  */
 declare const DEFAULT_DEFAULTS: ManifestDefaults;
+/** Default manifest schema version. */
+declare const DEFAULT_MANIFEST_VERSION = 1;
+/** Default space for manifest-declared app data. */
+declare const DEFAULT_MANIFEST_SPACE = "applications";
+/** Account-space name used for installed-application registry records. */
+declare const ACCOUNT_REGISTRY_SPACE = "account";
+/** Account-space KV prefix used for installed-application registry records. */
+declare const ACCOUNT_REGISTRY_PATH = "applications/";
 /**
  * Known services and their short-form (recap URI) names. The TinyCloud
  * node encodes the recap resource URI with the short service name, while
@@ -423,13 +450,19 @@ declare function normalizeDefaults(value: Manifest["defaults"] | undefined): Man
  * expiries. Pure function — does no I/O.
  *
  * Resolution semantics (spec):
- * - `prefix` defaults to `id`; set to `""` to disable prefix application entirely.
+ * - `prefix` defaults to `app_id`; set to `""` to disable prefix application entirely.
+ * - `space` defaults to `applications`; per-permission `space` overrides it.
  * - `defaults` defaults to `true` (standard tier); unknown string values fall back to `true`.
  * - Per-entry expiry overrides per-delegation overrides manifest > `DEFAULT_EXPIRY`.
  * - Default entries use `skipPrefix: false` so they inherit the manifest prefix.
- * - Prefix inheritance applies identically to `permissions` and `delegations[*].permissions`.
  */
 declare function resolveManifest(input: Manifest): ResolvedCapabilities;
+/**
+ * Compose one or more manifests into the single capability request that should
+ * be signed. Fetching manifests is intentionally out of band; callers pass the
+ * already-loaded manifest objects.
+ */
+declare function composeManifestRequest(inputs: readonly Manifest[], options?: ComposeManifestOptions): ComposedManifestRequest;
 /**
  * The shape `prepareSession` and the multi-resource `createDelegation` WASM
  * export both accept:
@@ -449,6 +482,14 @@ declare function resolveManifest(input: Manifest): ResolvedCapabilities;
  * for both so one manifest drives both sides.
  */
 type AbilitiesMap = Record<string, Record<string, string[]>>;
+/**
+ * Per-space abilities map accepted by the newer WASM session config:
+ *
+ * ```
+ * { [spaceIdOrName]: { [shortService]: { [path]: [fullUrnAction, ...] } } }
+ * ```
+ */
+type SpaceAbilitiesMap = Record<string, AbilitiesMap>;
 /**
  * Convert a list of {@link ResourceCapability} entries (manifest
  * long-form service, full-URN actions) into the {@link AbilitiesMap}
@@ -466,6 +507,12 @@ type AbilitiesMap = Record<string, Record<string, string[]>>;
  * normalize before calling.
  */
 declare function resourceCapabilitiesToAbilitiesMap(resources: readonly ResourceCapability[]): AbilitiesMap;
+/**
+ * Group resolved capabilities by `space`, then convert each group into a WASM
+ * abilities map. Short space names are left as-is here; platform layers that
+ * know the wallet address and chain id turn them into full SpaceIds.
+ */
+declare function resourceCapabilitiesToSpaceAbilitiesMap(resources: readonly ResourceCapability[]): SpaceAbilitiesMap;
 /**
  * Build the {@link AbilitiesMap} that a session should be signed with,
  * given a {@link ResolvedCapabilities} (i.e. the output of
@@ -1140,8 +1187,8 @@ declare const KeyInfoSchema: z.ZodObject<{
     priority: z.ZodNumber;
 }, "strip", z.ZodTypeAny, {
     type: "session" | "main" | "ingested";
-    id: string;
     did: string;
+    id: string;
     priority: number;
     jwk?: {
         kty: string;
@@ -1158,8 +1205,8 @@ declare const KeyInfoSchema: z.ZodObject<{
     } | undefined;
 }, {
     type: "session" | "main" | "ingested";
-    id: string;
     did: string;
+    id: string;
     priority: number;
     jwk?: {
         kty: string;
@@ -1351,8 +1398,8 @@ declare const CapabilityEntrySchema: z.ZodObject<{
         priority: z.ZodNumber;
     }, "strip", z.ZodTypeAny, {
         type: "session" | "main" | "ingested";
-        id: string;
         did: string;
+        id: string;
         priority: number;
         jwk?: {
             kty: string;
@@ -1369,8 +1416,8 @@ declare const CapabilityEntrySchema: z.ZodObject<{
         } | undefined;
     }, {
         type: "session" | "main" | "ingested";
-        id: string;
         did: string;
+        id: string;
         priority: number;
         jwk?: {
             kty: string;
@@ -1444,8 +1491,8 @@ declare const CapabilityEntrySchema: z.ZodObject<{
 }, "strip", z.ZodTypeAny, {
     keys: {
         type: "session" | "main" | "ingested";
-        id: string;
         did: string;
+        id: string;
         priority: number;
         jwk?: {
             kty: string;
@@ -1481,8 +1528,8 @@ declare const CapabilityEntrySchema: z.ZodObject<{
 }, {
     keys: {
         type: "session" | "main" | "ingested";
-        id: string;
         did: string;
+        id: string;
         priority: number;
         jwk?: {
             kty: string;
@@ -2088,8 +2135,8 @@ declare const ShareLinkSchema: z.ZodObject<{
     };
     token: string;
     schema: "base64" | "compact" | "ipfs";
-    expiresAt?: Date | undefined;
     description?: string | undefined;
+    expiresAt?: Date | undefined;
 }, {
     url: string;
     delegation: {
@@ -2108,8 +2155,8 @@ declare const ShareLinkSchema: z.ZodObject<{
     };
     token: string;
     schema: "base64" | "compact" | "ipfs";
-    expiresAt?: Date | undefined;
     description?: string | undefined;
+    expiresAt?: Date | undefined;
 }>;
 type ShareLink = z.infer<typeof ShareLinkSchema>;
 type ShareLinkData<T = unknown> = {
@@ -2166,15 +2213,15 @@ declare const GenerateShareParamsSchema: z.ZodObject<{
     path: string;
     actions?: string[] | undefined;
     expiry?: Date | undefined;
-    schema?: "base64" | "compact" | "ipfs" | undefined;
     description?: string | undefined;
+    schema?: "base64" | "compact" | "ipfs" | undefined;
     baseUrl?: string | undefined;
 }, {
     path: string;
     actions?: string[] | undefined;
     expiry?: Date | undefined;
-    schema?: "base64" | "compact" | "ipfs" | undefined;
     description?: string | undefined;
+    schema?: "base64" | "compact" | "ipfs" | undefined;
     baseUrl?: string | undefined;
 }>;
 type GenerateShareParams = z.infer<typeof GenerateShareParamsSchema>;
@@ -4390,4 +4437,4 @@ interface NodeInfo {
 }
 declare function checkNodeInfo(host: string, sdkProtocol: number, fetchFn?: typeof globalThis.fetch): Promise<NodeInfo>;
-export { type AbilitiesMap, AutoApproveSpaceCreationHandler, type AutoRejectStrategy, type AutoSignStrategy, type Bytes, type CallbackStrategy, type CapabilityEntry, CapabilityKeyRegistry, type CapabilityKeyRegistryErrorCode, CapabilityKeyRegistryErrorCodes, type ClientSession, ClientSessionSchema, type CreateDelegationFunction, type CreateDelegationParams, type CreateDelegationWasmParams, type CreateDelegationWasmResult, DEFAULT_DEFAULTS, DEFAULT_EXPIRY, type DelegatedResource, type Delegation, type DelegationApiResponse, type DelegationChain, type DelegationChainV2, type DelegationDirection, type DelegationError, type DelegationErrorCode, DelegationErrorCodes, type DelegationFilters, DelegationManager, type DelegationManagerConfig, type DelegationRecord, type Result as DelegationResult, type EncodedShareData, type EnsData, EnsDataSchema, type EventEmitterStrategy, type Extension, type GenerateShareParams, type ICapabilityKeyRegistry, type IENSResolver, type INotificationHandler, type ISessionManager, type ISessionStorage, type ISharingService, type ISigner, type ISpace, type ISpaceCreationHandler, type ISpaceScopedDelegations, type ISpaceScopedSharing, type ISpaceService, type IUserAuthorization, type IWasmBindings, type IngestOptions, type JWK, type KeyInfo, type KeyProvider, type KeyType, type Manifest, type ManifestDefaults, type ManifestDelegation, ManifestValidationError, type NodeInfo, type ParseRecapFromSiwe, type PartialSiweMessage, type PermissionEntry, PermissionNotInManifestError, type PersistedSessionData, type PersistedTinyCloudSession, ProtocolMismatchError, type ReceiveOptions, type ResolvedCapabilities, type ResolvedDelegate, type ResourceCapability, SERVICE_LONG_TO_SHORT, SERVICE_SHORT_TO_LONG, type ServerHost, SessionExpiredError, type ShareAccess, type ShareLink, type ShareLinkData, type ShareSchema, SharingService, type SharingServiceConfig, type SignCallback, type SignInOptions, type SignRequest, type SignResponse, type SignStrategy, SilentNotificationHandler, type SiweConfig, SiweConfigSchema, Space, type SpaceConfig, type SpaceCreationContext, type SpaceDelegationParams, type SpaceErrorCode, SpaceErrorCodes, type SpaceHostResult, type SpaceInfo, type SpaceOwnership, SpaceService, type SpaceServiceConfig, type StoredDelegationChain, type SubsetCheckResult, TinyCloud, type TinyCloudConfig, type TinyCloudSession, UnsupportedFeatureError, type UserAuthorizationConfig, type ValidationError, VersionCheckError, type WasmRecapEntry, activateSessionWithHost, applyPrefix, buildSpaceUri, checkNodeInfo, createCapabilityKeyRegistry, createSharingService, createSpaceService, defaultSignStrategy, defaultSpaceCreationHandler, expandActionShortNames, fetchPeerId, isCapabilitySubset, loadManifest, makePublicSpaceId, manifestAbilitiesUnion, normalizeDefaults, parseExpiry, parseRecapCapabilities, parseSpaceUri, resolveManifest, resourceCapabilitiesToAbilitiesMap, submitHostDelegation, validateClientSession, validateManifest, validatePersistedSessionData };
+export { ACCOUNT_REGISTRY_PATH, ACCOUNT_REGISTRY_SPACE, type AbilitiesMap, AutoApproveSpaceCreationHandler, type AutoRejectStrategy, type AutoSignStrategy, type Bytes, type CallbackStrategy, type CapabilityEntry, CapabilityKeyRegistry, type CapabilityKeyRegistryErrorCode, CapabilityKeyRegistryErrorCodes, type ClientSession, ClientSessionSchema, type ComposeManifestOptions, type ComposedManifestRequest, type CreateDelegationFunction, type CreateDelegationParams, type CreateDelegationWasmParams, type CreateDelegationWasmResult, DEFAULT_DEFAULTS, DEFAULT_EXPIRY, DEFAULT_MANIFEST_SPACE, DEFAULT_MANIFEST_VERSION, type DelegatedResource, type Delegation, type DelegationApiResponse, type DelegationChain, type DelegationChainV2, type DelegationDirection, type DelegationError, type DelegationErrorCode, DelegationErrorCodes, type DelegationFilters, DelegationManager, type DelegationManagerConfig, type DelegationRecord, type Result as DelegationResult, type EncodedShareData, type EnsData, EnsDataSchema, type EventEmitterStrategy, type Extension, type GenerateShareParams, type ICapabilityKeyRegistry, type IENSResolver, type INotificationHandler, type ISessionManager, type ISessionStorage, type ISharingService, type ISigner, type ISpace, type ISpaceCreationHandler, type ISpaceScopedDelegations, type ISpaceScopedSharing, type ISpaceService, type IUserAuthorization, type IWasmBindings, type IngestOptions, type JWK, type KeyInfo, type KeyProvider, type KeyType, type Manifest, type ManifestDefaults, type ManifestRegistryRecord, ManifestValidationError, type NodeInfo, type ParseRecapFromSiwe, type PartialSiweMessage, type PermissionEntry, PermissionNotInManifestError, type PersistedSessionData, type PersistedTinyCloudSession, ProtocolMismatchError, type ReceiveOptions, type ResolvedCapabilities, type ResolvedDelegate, type ResourceCapability, SERVICE_LONG_TO_SHORT, SERVICE_SHORT_TO_LONG, type ServerHost, SessionExpiredError, type ShareAccess, type ShareLink, type ShareLinkData, type ShareSchema, SharingService, type SharingServiceConfig, type SignCallback, type SignInOptions, type SignRequest, type SignResponse, type SignStrategy, SilentNotificationHandler, type SiweConfig, SiweConfigSchema, Space, type SpaceAbilitiesMap, type SpaceConfig, type SpaceCreationContext, type SpaceDelegationParams, type SpaceErrorCode, SpaceErrorCodes, type SpaceHostResult, type SpaceInfo, type SpaceOwnership, SpaceService, type SpaceServiceConfig, type StoredDelegationChain, type SubsetCheckResult, TinyCloud, type TinyCloudConfig, type TinyCloudSession, UnsupportedFeatureError, type UserAuthorizationConfig, type ValidationError, VersionCheckError, type WasmRecapEntry, activateSessionWithHost, applyPrefix, buildSpaceUri, checkNodeInfo, composeManifestRequest, createCapabilityKeyRegistry, createSharingService, createSpaceService, defaultSignStrategy, defaultSpaceCreationHandler, expandActionShortNames, fetchPeerId, isCapabilitySubset, loadManifest, makePublicSpaceId, manifestAbilitiesUnion, normalizeDefaults, parseExpiry, parseRecapCapabilities, parseSpaceUri, resolveManifest, resourceCapabilitiesToAbilitiesMap, resourceCapabilitiesToSpaceAbilitiesMap, submitHostDelegation, validateClientSession, validateManifest, validatePersistedSessionData };

package/dist/index.d.ts CHANGED Viewed

@@ -206,8 +206,8 @@ interface IENSResolver {
 interface PermissionEntry {
     /** Service namespace, e.g. "tinycloud.kv", "tinycloud.sql", "tinycloud.duckdb", "tinycloud.capabilities". */
     service: string;
-    /** "default" for the user's personal space, or a specific space id. */
-    space: string;
+    /** Space name or full space URI. Defaults to "applications" inside manifests. */
+    space?: string;
     /**
      * Service-specific path.
      * - tinycloud.kv: hierarchical prefix. "/" = all, "foo/" = prefix match, "foo" = exact key
@@ -226,23 +226,8 @@ interface PermissionEntry {
     skipPrefix?: boolean;
     /** Per-entry expiry override, ms-format. */
     expiry?: string;
-}
-/**
- * A pre-declared delegation that will be included in the main SIWE recap as
- * an additional audience.
- */
-interface ManifestDelegation {
-    /** DID of the delegate (e.g. a backend's wallet DID). */
-    to: string;
-    /** Informational display name. Optional. */
-    name?: string;
-    /** Expiry override for this delegation, ms-format. Optional. */
-    expiry?: string;
-    /**
-     * Permissions to delegate. Same shape as the top-level `permissions`, and
-     * the manifest prefix is inherited identically (unless `skipPrefix: true`).
-     */
-    permissions: PermissionEntry[];
+    /** User/agent-facing context for why this permission is requested. */
+    description?: string;
 }
 /**
  * The valid values for `Manifest.defaults`.
@@ -261,22 +246,26 @@ type ManifestDefaults = boolean | "admin" | "all";
  */
 interface Manifest {
     /** Schema version. Optional, defaults to 1. */
-    version?: number;
-    /** Bundle identifier — reverse DNS. Required. */
-    id: string;
+    manifest_version?: 1;
+    /** Application identifier / namespace prefix. Required. */
+    app_id: string;
     /** Display name. Required. */
     name: string;
-    /** One-line description. Optional. */
+    /** Description of what the app or delegate does. Optional. */
     description?: string;
+    /** DID of this manifest's delegate target. Optional. Required only for delegation materialization. */
+    did?: string;
     /** URL to app icon. Optional. */
     icon?: string;
     /** App version string. Optional. */
     appVersion?: string;
     /** Default expiry for permissions. ms-format ("30d", "2h", "1y"). Default "30d". */
     expiry?: string;
+    /** Space name or full space URI. Optional, defaults to "applications". */
+    space?: string;
     /**
      * Path prefix auto-prepended to permission paths. Optional, defaults to
-     * `id`. Set to `""` to disable entirely. Individual permissions can opt
+     * `app_id`. Set to `""` to disable entirely. Individual permissions can opt
      * out with `skipPrefix: true`.
      */
     prefix?: string;
@@ -292,8 +281,6 @@ interface Manifest {
      * DuckDB (opt-in), or `skipPrefix: true` entries.
      */
     permissions?: PermissionEntry[];
-    /** Pre-delegations to other DIDs at sign-in. */
-    delegations?: ManifestDelegation[];
 }
 /**
  * A resolved permission entry with fully-expanded paths and action URNs.
@@ -303,7 +290,7 @@ interface Manifest {
 interface ResourceCapability {
     /** Long-form service, e.g. "tinycloud.kv". */
     service: string;
-    /** Space id — "default" stays as-is here; the caller resolves it to a full SpaceId at sign-in time. */
+    /** Space name or URI. Short names are resolved to full SpaceIds at sign-in time. */
     space: string;
     /** Path with the manifest prefix applied (or skipped per `skipPrefix`). */
     path: string;
@@ -311,6 +298,8 @@ interface ResourceCapability {
     actions: string[];
     /** Per-entry expiry override in milliseconds. */
     expiryMs?: number;
+    /** User/agent-facing context copied from the source permission entry. */
+    description?: string;
 }
 /**
  * A resolved delegation entry with fully-expanded permissions.
@@ -330,17 +319,47 @@ interface ResolvedDelegate {
  * ready to drive the SIWE recap.
  */
 interface ResolvedCapabilities {
-    /** Bundle identifier copied from manifest.id. */
-    id: string;
+    /** Application identifier copied from manifest.app_id. */
+    app_id: string;
+    /** Delegate DID copied from manifest.did, when present. */
+    did?: string;
+    /** Effective default space for this manifest. */
+    space: string;
     /** All session-key resources with paths fully resolved (prefix applied). */
     resources: ResourceCapability[];
     /** Default expiry for the session, in milliseconds. */
     expiryMs: number;
     /** Whether to include the public-space companion. */
     includePublicSpace: boolean;
-    /** Additional delegate targets with resolved paths. */
+    /** Delegate targets derived from manifests that declare `did`. */
     additionalDelegates: ResolvedDelegate[];
 }
+interface ManifestRegistryRecord {
+    /** KV key inside the account space. */
+    key: string;
+    /** App id this record describes. */
+    app_id: string;
+    /** Latest manifest payloads composed for this app id. */
+    manifests: Manifest[];
+}
+interface ComposeManifestOptions {
+    /** Include implicit account-space registry permissions. Default true. */
+    includeAccountRegistryPermissions?: boolean;
+}
+interface ComposedManifestRequest {
+    /** Validated manifests that were composed. */
+    manifests: Manifest[];
+    /** Full permission union requested from the user in one SIWE. */
+    resources: ResourceCapability[];
+    /** Delegations that can be materialized after sign-in. */
+    delegationTargets: ResolvedDelegate[];
+    /** Account-space registry records to write after successful sign-in. */
+    registryRecords: ManifestRegistryRecord[];
+    /** Effective session expiry, using the longest composed manifest expiry. */
+    expiryMs: number;
+    /** Whether to include the public-space companion behavior. */
+    includePublicSpace: boolean;
+}
 /**
  * Thrown when the manifest fails validation (missing id/name, bad expiry,
  * empty actions on a permission, etc).
@@ -357,6 +376,14 @@ declare const DEFAULT_EXPIRY = "30d";
  * Default `defaults` value when the manifest omits it. Spec: standard tier.
  */
 declare const DEFAULT_DEFAULTS: ManifestDefaults;
+/** Default manifest schema version. */
+declare const DEFAULT_MANIFEST_VERSION = 1;
+/** Default space for manifest-declared app data. */
+declare const DEFAULT_MANIFEST_SPACE = "applications";
+/** Account-space name used for installed-application registry records. */
+declare const ACCOUNT_REGISTRY_SPACE = "account";
+/** Account-space KV prefix used for installed-application registry records. */
+declare const ACCOUNT_REGISTRY_PATH = "applications/";
 /**
  * Known services and their short-form (recap URI) names. The TinyCloud
  * node encodes the recap resource URI with the short service name, while
@@ -423,13 +450,19 @@ declare function normalizeDefaults(value: Manifest["defaults"] | undefined): Man
  * expiries. Pure function — does no I/O.
  *
  * Resolution semantics (spec):
- * - `prefix` defaults to `id`; set to `""` to disable prefix application entirely.
+ * - `prefix` defaults to `app_id`; set to `""` to disable prefix application entirely.
+ * - `space` defaults to `applications`; per-permission `space` overrides it.
  * - `defaults` defaults to `true` (standard tier); unknown string values fall back to `true`.
  * - Per-entry expiry overrides per-delegation overrides manifest > `DEFAULT_EXPIRY`.
  * - Default entries use `skipPrefix: false` so they inherit the manifest prefix.
- * - Prefix inheritance applies identically to `permissions` and `delegations[*].permissions`.
  */
 declare function resolveManifest(input: Manifest): ResolvedCapabilities;
+/**
+ * Compose one or more manifests into the single capability request that should
+ * be signed. Fetching manifests is intentionally out of band; callers pass the
+ * already-loaded manifest objects.
+ */
+declare function composeManifestRequest(inputs: readonly Manifest[], options?: ComposeManifestOptions): ComposedManifestRequest;
 /**
  * The shape `prepareSession` and the multi-resource `createDelegation` WASM
  * export both accept:
@@ -449,6 +482,14 @@ declare function resolveManifest(input: Manifest): ResolvedCapabilities;
  * for both so one manifest drives both sides.
  */
 type AbilitiesMap = Record<string, Record<string, string[]>>;
+/**
+ * Per-space abilities map accepted by the newer WASM session config:
+ *
+ * ```
+ * { [spaceIdOrName]: { [shortService]: { [path]: [fullUrnAction, ...] } } }
+ * ```
+ */
+type SpaceAbilitiesMap = Record<string, AbilitiesMap>;
 /**
  * Convert a list of {@link ResourceCapability} entries (manifest
  * long-form service, full-URN actions) into the {@link AbilitiesMap}
@@ -466,6 +507,12 @@ type AbilitiesMap = Record<string, Record<string, string[]>>;
  * normalize before calling.
  */
 declare function resourceCapabilitiesToAbilitiesMap(resources: readonly ResourceCapability[]): AbilitiesMap;
+/**
+ * Group resolved capabilities by `space`, then convert each group into a WASM
+ * abilities map. Short space names are left as-is here; platform layers that
+ * know the wallet address and chain id turn them into full SpaceIds.
+ */
+declare function resourceCapabilitiesToSpaceAbilitiesMap(resources: readonly ResourceCapability[]): SpaceAbilitiesMap;
 /**
  * Build the {@link AbilitiesMap} that a session should be signed with,
  * given a {@link ResolvedCapabilities} (i.e. the output of
@@ -1140,8 +1187,8 @@ declare const KeyInfoSchema: z.ZodObject<{
     priority: z.ZodNumber;
 }, "strip", z.ZodTypeAny, {
     type: "session" | "main" | "ingested";
-    id: string;
     did: string;
+    id: string;
     priority: number;
     jwk?: {
         kty: string;
@@ -1158,8 +1205,8 @@ declare const KeyInfoSchema: z.ZodObject<{
     } | undefined;
 }, {
     type: "session" | "main" | "ingested";
-    id: string;
     did: string;
+    id: string;
     priority: number;
     jwk?: {
         kty: string;
@@ -1351,8 +1398,8 @@ declare const CapabilityEntrySchema: z.ZodObject<{
         priority: z.ZodNumber;
     }, "strip", z.ZodTypeAny, {
         type: "session" | "main" | "ingested";
-        id: string;
         did: string;
+        id: string;
         priority: number;
         jwk?: {
             kty: string;
@@ -1369,8 +1416,8 @@ declare const CapabilityEntrySchema: z.ZodObject<{
         } | undefined;
     }, {
         type: "session" | "main" | "ingested";
-        id: string;
         did: string;
+        id: string;
         priority: number;
         jwk?: {
             kty: string;
@@ -1444,8 +1491,8 @@ declare const CapabilityEntrySchema: z.ZodObject<{
 }, "strip", z.ZodTypeAny, {
     keys: {
         type: "session" | "main" | "ingested";
-        id: string;
         did: string;
+        id: string;
         priority: number;
         jwk?: {
             kty: string;
@@ -1481,8 +1528,8 @@ declare const CapabilityEntrySchema: z.ZodObject<{
 }, {
     keys: {
         type: "session" | "main" | "ingested";
-        id: string;
         did: string;
+        id: string;
         priority: number;
         jwk?: {
             kty: string;
@@ -2088,8 +2135,8 @@ declare const ShareLinkSchema: z.ZodObject<{
     };
     token: string;
     schema: "base64" | "compact" | "ipfs";
-    expiresAt?: Date | undefined;
     description?: string | undefined;
+    expiresAt?: Date | undefined;
 }, {
     url: string;
     delegation: {
@@ -2108,8 +2155,8 @@ declare const ShareLinkSchema: z.ZodObject<{
     };
     token: string;
     schema: "base64" | "compact" | "ipfs";
-    expiresAt?: Date | undefined;
     description?: string | undefined;
+    expiresAt?: Date | undefined;
 }>;
 type ShareLink = z.infer<typeof ShareLinkSchema>;
 type ShareLinkData<T = unknown> = {
@@ -2166,15 +2213,15 @@ declare const GenerateShareParamsSchema: z.ZodObject<{
     path: string;
     actions?: string[] | undefined;
     expiry?: Date | undefined;
-    schema?: "base64" | "compact" | "ipfs" | undefined;
     description?: string | undefined;
+    schema?: "base64" | "compact" | "ipfs" | undefined;
     baseUrl?: string | undefined;
 }, {
     path: string;
     actions?: string[] | undefined;
     expiry?: Date | undefined;
-    schema?: "base64" | "compact" | "ipfs" | undefined;
     description?: string | undefined;
+    schema?: "base64" | "compact" | "ipfs" | undefined;
     baseUrl?: string | undefined;
 }>;
 type GenerateShareParams = z.infer<typeof GenerateShareParamsSchema>;
@@ -4390,4 +4437,4 @@ interface NodeInfo {
 }
 declare function checkNodeInfo(host: string, sdkProtocol: number, fetchFn?: typeof globalThis.fetch): Promise<NodeInfo>;
-export { type AbilitiesMap, AutoApproveSpaceCreationHandler, type AutoRejectStrategy, type AutoSignStrategy, type Bytes, type CallbackStrategy, type CapabilityEntry, CapabilityKeyRegistry, type CapabilityKeyRegistryErrorCode, CapabilityKeyRegistryErrorCodes, type ClientSession, ClientSessionSchema, type CreateDelegationFunction, type CreateDelegationParams, type CreateDelegationWasmParams, type CreateDelegationWasmResult, DEFAULT_DEFAULTS, DEFAULT_EXPIRY, type DelegatedResource, type Delegation, type DelegationApiResponse, type DelegationChain, type DelegationChainV2, type DelegationDirection, type DelegationError, type DelegationErrorCode, DelegationErrorCodes, type DelegationFilters, DelegationManager, type DelegationManagerConfig, type DelegationRecord, type Result as DelegationResult, type EncodedShareData, type EnsData, EnsDataSchema, type EventEmitterStrategy, type Extension, type GenerateShareParams, type ICapabilityKeyRegistry, type IENSResolver, type INotificationHandler, type ISessionManager, type ISessionStorage, type ISharingService, type ISigner, type ISpace, type ISpaceCreationHandler, type ISpaceScopedDelegations, type ISpaceScopedSharing, type ISpaceService, type IUserAuthorization, type IWasmBindings, type IngestOptions, type JWK, type KeyInfo, type KeyProvider, type KeyType, type Manifest, type ManifestDefaults, type ManifestDelegation, ManifestValidationError, type NodeInfo, type ParseRecapFromSiwe, type PartialSiweMessage, type PermissionEntry, PermissionNotInManifestError, type PersistedSessionData, type PersistedTinyCloudSession, ProtocolMismatchError, type ReceiveOptions, type ResolvedCapabilities, type ResolvedDelegate, type ResourceCapability, SERVICE_LONG_TO_SHORT, SERVICE_SHORT_TO_LONG, type ServerHost, SessionExpiredError, type ShareAccess, type ShareLink, type ShareLinkData, type ShareSchema, SharingService, type SharingServiceConfig, type SignCallback, type SignInOptions, type SignRequest, type SignResponse, type SignStrategy, SilentNotificationHandler, type SiweConfig, SiweConfigSchema, Space, type SpaceConfig, type SpaceCreationContext, type SpaceDelegationParams, type SpaceErrorCode, SpaceErrorCodes, type SpaceHostResult, type SpaceInfo, type SpaceOwnership, SpaceService, type SpaceServiceConfig, type StoredDelegationChain, type SubsetCheckResult, TinyCloud, type TinyCloudConfig, type TinyCloudSession, UnsupportedFeatureError, type UserAuthorizationConfig, type ValidationError, VersionCheckError, type WasmRecapEntry, activateSessionWithHost, applyPrefix, buildSpaceUri, checkNodeInfo, createCapabilityKeyRegistry, createSharingService, createSpaceService, defaultSignStrategy, defaultSpaceCreationHandler, expandActionShortNames, fetchPeerId, isCapabilitySubset, loadManifest, makePublicSpaceId, manifestAbilitiesUnion, normalizeDefaults, parseExpiry, parseRecapCapabilities, parseSpaceUri, resolveManifest, resourceCapabilitiesToAbilitiesMap, submitHostDelegation, validateClientSession, validateManifest, validatePersistedSessionData };
+export { ACCOUNT_REGISTRY_PATH, ACCOUNT_REGISTRY_SPACE, type AbilitiesMap, AutoApproveSpaceCreationHandler, type AutoRejectStrategy, type AutoSignStrategy, type Bytes, type CallbackStrategy, type CapabilityEntry, CapabilityKeyRegistry, type CapabilityKeyRegistryErrorCode, CapabilityKeyRegistryErrorCodes, type ClientSession, ClientSessionSchema, type ComposeManifestOptions, type ComposedManifestRequest, type CreateDelegationFunction, type CreateDelegationParams, type CreateDelegationWasmParams, type CreateDelegationWasmResult, DEFAULT_DEFAULTS, DEFAULT_EXPIRY, DEFAULT_MANIFEST_SPACE, DEFAULT_MANIFEST_VERSION, type DelegatedResource, type Delegation, type DelegationApiResponse, type DelegationChain, type DelegationChainV2, type DelegationDirection, type DelegationError, type DelegationErrorCode, DelegationErrorCodes, type DelegationFilters, DelegationManager, type DelegationManagerConfig, type DelegationRecord, type Result as DelegationResult, type EncodedShareData, type EnsData, EnsDataSchema, type EventEmitterStrategy, type Extension, type GenerateShareParams, type ICapabilityKeyRegistry, type IENSResolver, type INotificationHandler, type ISessionManager, type ISessionStorage, type ISharingService, type ISigner, type ISpace, type ISpaceCreationHandler, type ISpaceScopedDelegations, type ISpaceScopedSharing, type ISpaceService, type IUserAuthorization, type IWasmBindings, type IngestOptions, type JWK, type KeyInfo, type KeyProvider, type KeyType, type Manifest, type ManifestDefaults, type ManifestRegistryRecord, ManifestValidationError, type NodeInfo, type ParseRecapFromSiwe, type PartialSiweMessage, type PermissionEntry, PermissionNotInManifestError, type PersistedSessionData, type PersistedTinyCloudSession, ProtocolMismatchError, type ReceiveOptions, type ResolvedCapabilities, type ResolvedDelegate, type ResourceCapability, SERVICE_LONG_TO_SHORT, SERVICE_SHORT_TO_LONG, type ServerHost, SessionExpiredError, type ShareAccess, type ShareLink, type ShareLinkData, type ShareSchema, SharingService, type SharingServiceConfig, type SignCallback, type SignInOptions, type SignRequest, type SignResponse, type SignStrategy, SilentNotificationHandler, type SiweConfig, SiweConfigSchema, Space, type SpaceAbilitiesMap, type SpaceConfig, type SpaceCreationContext, type SpaceDelegationParams, type SpaceErrorCode, SpaceErrorCodes, type SpaceHostResult, type SpaceInfo, type SpaceOwnership, SpaceService, type SpaceServiceConfig, type StoredDelegationChain, type SubsetCheckResult, TinyCloud, type TinyCloudConfig, type TinyCloudSession, UnsupportedFeatureError, type UserAuthorizationConfig, type ValidationError, VersionCheckError, type WasmRecapEntry, activateSessionWithHost, applyPrefix, buildSpaceUri, checkNodeInfo, composeManifestRequest, createCapabilityKeyRegistry, createSharingService, createSpaceService, defaultSignStrategy, defaultSpaceCreationHandler, expandActionShortNames, fetchPeerId, isCapabilitySubset, loadManifest, makePublicSpaceId, manifestAbilitiesUnion, normalizeDefaults, parseExpiry, parseRecapCapabilities, parseSpaceUri, resolveManifest, resourceCapabilitiesToAbilitiesMap, resourceCapabilitiesToSpaceAbilitiesMap, submitHostDelegation, validateClientSession, validateManifest, validatePersistedSessionData };