@toa.io/extensions.exposition 0.24.0-alpha.0 → 0.24.0-alpha.3

package/transpiled/directives/auth/Family.js

@@ -1,118 +0,0 @@
-"use strict";
-var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
-    if (k2 === undefined) k2 = k;
-    var desc = Object.getOwnPropertyDescriptor(m, k);
-    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
-      desc = { enumerable: true, get: function() { return m[k]; } };
-    }
-    Object.defineProperty(o, k2, desc);
-}) : (function(o, m, k, k2) {
-    if (k2 === undefined) k2 = k;
-    o[k2] = m[k];
-}));
-var __setModuleDefault = (this && this.__setModuleDefault) || (Object.create ? (function(o, v) {
-    Object.defineProperty(o, "default", { enumerable: true, value: v });
-}) : function(o, v) {
-    o["default"] = v;
-});
-var __importStar = (this && this.__importStar) || function (mod) {
-    if (mod && mod.__esModule) return mod;
-    var result = {};
-    if (mod != null) for (var k in mod) if (k !== "default" && Object.prototype.hasOwnProperty.call(mod, k)) __createBinding(result, mod, k);
-    __setModuleDefault(result, mod);
-    return result;
-};
-const matchacho_1 = require("matchacho");
-const http = __importStar(require("../../HTTP"));
-const Anonymous_1 = require("./Anonymous");
-const Id_1 = require("./Id");
-const Role_1 = require("./Role");
-const Rule_1 = require("./Rule");
-const Incept_1 = require("./Incept");
-const Echo_1 = require("./Echo");
-const split_1 = require("./split");
-const Scheme_1 = require("./Scheme");
-const schemes_1 = require("./schemes");
-class Authorization {
-    name = 'auth';
-    mandatory = true;
-    schemes = {};
-    discovery = {};
-    tokens = null;
-    bans = null;
-    create(name, value, remotes) {
-        const Class = CLASSES[name];
-        if (Class === undefined)
-            throw new Error(`Directive '${name}' is not provided by the '${this.name}' family.`);
-        for (const name of REMOTES)
-            this.discovery[name] ??= remotes.discover('identity', name);
-        return (0, matchacho_1.match)(Class, Role_1.Role, () => new Role_1.Role(value, this.discovery.roles), Rule_1.Rule, () => new Rule_1.Rule(value, this.create.bind(this)), Incept_1.Incept, () => new Incept_1.Incept(value, this.discovery), () => new Class(value));
-    }
-    async preflight(directives, input, parameters) {
-        const identity = await this.resolve(input.headers.authorization);
-        input.identity = identity;
-        for (const directive of directives) {
-            const allow = await directive.authorize(identity, input, parameters);
-            if (allow)
-                return directive.reply?.(identity) ?? null;
-        }
-        if (identity === null)
-            throw new http.Unauthorized();
-        else
-            throw new http.Forbidden();
-    }
-    async settle(directives, request, response) {
-        for (const directive of directives)
-            await directive.settle?.(request, response);
-        const identity = request.identity;
-        if (identity === null)
-            return;
-        if (identity.scheme === schemes_1.PRIMARY && !identity.refresh)
-            return;
-        // Role directive may have already set the value
-        if (identity.roles === undefined)
-            await Role_1.Role.set(identity, this.discovery.roles);
-        this.tokens ??= await this.discovery.tokens;
-        const token = await this.tokens.invoke('encrypt', { input: { identity } });
-        const authorization = `Token ${token}`;
-        if (response.headers === undefined)
-            response.headers = new Headers();
-        response.headers.set('authorization', authorization);
-    }
-    async resolve(authorization) {
-        if (authorization === undefined)
-            return null;
-        const [scheme, credentials] = (0, split_1.split)(authorization);
-        const provider = schemes_1.PROVIDERS[scheme];
-        if (!(provider in this.discovery))
-            throw new http.Unauthorized(`Unknown authentication scheme '${scheme}'.`);
-        this.schemes[scheme] ??= await this.discovery[provider];
-        const result = await this.schemes[scheme]
-            .invoke('authenticate', { input: credentials });
-        if (result instanceof Error)
-            return null;
-        const identity = result.identity;
-        if (scheme !== schemes_1.PRIMARY && await this.banned(identity))
-            throw new http.Unauthorized();
-        identity.scheme = scheme;
-        identity.refresh = result.refresh;
-        return identity;
-    }
-    async banned(identity) {
-        this.bans ??= await this.discovery.bans;
-        const ban = await this.bans.invoke('observe', { query: { id: identity.id } });
-        return ban.banned;
-    }
-}
-const CLASSES = {
-    anonymous: Anonymous_1.Anonymous,
-    id: Id_1.Id,
-    role: Role_1.Role,
-    rule: Rule_1.Rule,
-    incept: Incept_1.Incept,
-    scheme: Scheme_1.Scheme,
-    echo: Echo_1.Echo
-};
-const REMOTES = ['basic', 'tokens', 'roles', 'bans'];
-module.exports = new Authorization();
-//# sourceMappingURL=Family.js.map

package/transpiled/directives/auth/Family.js.map

@@ -1 +0,0 @@
-{"version":3,"file":"Family.js","sourceRoot":"","sources":["../../../source/directives/auth/Family.ts"],"names":[],"mappings":";;;;;;;;;;;;;;;;;;;;;;;;AAAA,yCAAiC;AACjC,iDAAkC;AAClC,2CAAuC;AACvC,6BAAyB;AACzB,iCAA6B;AAC7B,iCAA6B;AAC7B,qCAAiC;AACjC,iCAA6B;AAC7B,mCAA+B;AAC/B,qCAAiC;AACjC,uCAA8C;AAiB9C,MAAM,aAAa;IACD,IAAI,GAAW,MAAM,CAAA;IACrB,SAAS,GAAY,IAAI,CAAA;IAExB,OAAO,GAAG,EAAwB,CAAA;IAClC,SAAS,GAAG,EAA0B,CAAA;IAC/C,MAAM,GAAqB,IAAI,CAAA;IAC/B,IAAI,GAAqB,IAAI,CAAA;IAE9B,MAAM,CAAE,IAAY,EAAE,KAAU,EAAE,OAAgB;QACvD,MAAM,KAAK,GAAG,OAAO,CAAC,IAAI,CAAC,CAAA;QAE3B,IAAI,KAAK,KAAK,SAAS;YACrB,MAAM,IAAI,KAAK,CAAC,cAAc,IAAI,6BAA6B,IAAI,CAAC,IAAI,WAAW,CAAC,CAAA;QAEtF,KAAK,MAAM,IAAI,IAAI,OAAO;YACxB,IAAI,CAAC,SAAS,CAAC,IAAI,CAAC,KAAK,OAAO,CAAC,QAAQ,CAAC,UAAU,EAAE,IAAI,CAAC,CAAA;QAE7D,OAAO,IAAA,iBAAK,EAAC,KAAK,EAChB,WAAI,EAAE,GAAG,EAAE,CAAC,IAAI,WAAI,CAAC,KAAK,EAAE,IAAI,CAAC,SAAS,CAAC,KAAK,CAAC,EACjD,WAAI,EAAE,GAAG,EAAE,CAAC,IAAI,WAAI,CAAC,KAAK,EAAE,IAAI,CAAC,MAAM,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC,EACnD,eAAM,EAAE,GAAG,EAAE,CAAC,IAAI,eAAM,CAAC,KAAK,EAAE,IAAI,CAAC,SAAS,CAAC,EAC/C,GAAG,EAAE,CAAC,IAAI,KAAK,CAAC,KAAK,CAAC,CAAC,CAAA;IAC3B,CAAC;IAEM,KAAK,CAAC,SAAS,CACrB,UAAuB,EAAE,KAAY,EAAE,UAAuB;QAC7D,MAAM,QAAQ,GAAG,MAAM,IAAI,CAAC,OAAO,CAAC,KAAK,CAAC,OAAO,CAAC,aAAa,CAAC,CAAA;QAEhE,KAAK,CAAC,QAAQ,GAAG,QAAQ,CAAA;QAEzB,KAAK,MAAM,SAAS,IAAI,UAAU,EAAE;YAClC,MAAM,KAAK,GAAG,MAAM,SAAS,CAAC,SAAS,CAAC,QAAQ,EAAE,KAAK,EAAE,UAAU,CAAC,CAAA;YAEpE,IAAI,KAAK;gBACP,OAAO,SAAS,CAAC,KAAK,EAAE,CAAC,QAAQ,CAAC,IAAI,IAAI,CAAA;SAC7C;QAED,IAAI,QAAQ,KAAK,IAAI;YAAE,MAAM,IAAI,IAAI,CAAC,YAAY,EAAE,CAAA;;YAC/C,MAAM,IAAI,IAAI,CAAC,SAAS,EAAE,CAAA;IACjC,CAAC;IAEM,KAAK,CAAC,MAAM,CAClB,UAAuB,EAAE,OAAc,EAAE,QAA8B;QACtE,KAAK,MAAM,SAAS,IAAI,UAAU;YAChC,MAAM,SAAS,CAAC,MAAM,EAAE,CAAC,OAAO,EAAE,QAAQ,CAAC,CAAA;QAE7C,MAAM,QAAQ,GAAG,OAAO,CAAC,QAAQ,CAAA;QAEjC,IAAI,QAAQ,KAAK,IAAI;YACnB,OAAM;QAER,IAAI,QAAQ,CAAC,MAAM,KAAK,iBAAO,IAAI,CAAC,QAAQ,CAAC,OAAO;YAClD,OAAM;QAER,gDAAgD;QAChD,IAAI,QAAQ,CAAC,KAAK,KAAK,SAAS;YAC9B,MAAM,WAAI,CAAC,GAAG,CAAC,QAAQ,EAAE,IAAI,CAAC,SAAS,CAAC,KAAK,CAAC,CAAA;QAEhD,IAAI,CAAC,MAAM,KAAK,MAAM,IAAI,CAAC,SAAS,CAAC,MAAM,CAAA;QAE3C,MAAM,KAAK,GAAG,MAAM,IAAI,CAAC,MAAM,CAAC,MAAM,CAAS,SAAS,EAAE,EAAE,KAAK,EAAE,EAAE,QAAQ,EAAE,EAAE,CAAC,CAAA;QAClF,MAAM,aAAa,GAAG,SAAS,KAAK,EAAE,CAAA;QAEtC,IAAI,QAAQ,CAAC,OAAO,KAAK,SAAS;YAChC,QAAQ,CAAC,OAAO,GAAG,IAAI,OAAO,EAAE,CAAA;QAElC,QAAQ,CAAC,OAAO,CAAC,GAAG,CAAC,eAAe,EAAE,aAAa,CAAC,CAAA;IACtD,CAAC;IAEO,KAAK,CAAC,OAAO,CAAE,aAAiC;QACtD,IAAI,aAAa,KAAK,SAAS;YAC7B,OAAO,IAAI,CAAA;QAEb,MAAM,CAAC,MAAM,EAAE,WAAW,CAAC,GAAG,IAAA,aAAK,EAAC,aAAa,CAAC,CAAA;QAClD,MAAM,QAAQ,GAAG,mBAAS,CAAC,MAAM,CAAC,CAAA;QAElC,IAAI,CAAC,CAAC,QAAQ,IAAI,IAAI,CAAC,SAAS,CAAC;YAC/B,MAAM,IAAI,IAAI,CAAC,YAAY,CAAC,kCAAkC,MAAM,IAAI,CAAC,CAAA;QAE3E,IAAI,CAAC,OAAO,CAAC,MAAM,CAAC,KAAK,MAAM,IAAI,CAAC,SAAS,CAAC,QAAQ,CAAC,CAAA;QAEvD,MAAM,MAAM,GAAG,MAAM,IAAI,CAAC,OAAO,CAAC,MAAM,CAAC;aACtC,MAAM,CAAuB,cAAc,EAAE,EAAE,KAAK,EAAE,WAAW,EAAE,CAAC,CAAA;QAEvE,IAAI,MAAM,YAAY,KAAK;YACzB,OAAO,IAAI,CAAA;QAEb,MAAM,QAAQ,GAAG,MAAM,CAAC,QAAQ,CAAA;QAEhC,IAAI,MAAM,KAAK,iBAAO,IAAI,MAAM,IAAI,CAAC,MAAM,CAAC,QAAQ,CAAC;YACnD,MAAM,IAAI,IAAI,CAAC,YAAY,EAAE,CAAA;QAE/B,QAAQ,CAAC,MAAM,GAAG,MAAM,CAAA;QACxB,QAAQ,CAAC,OAAO,GAAG,MAAM,CAAC,OAAO,CAAA;QAEjC,OAAO,QAAQ,CAAA;IACjB,CAAC;IAEO,KAAK,CAAC,MAAM,CAAE,QAAkB;QACtC,IAAI,CAAC,IAAI,KAAK,MAAM,IAAI,CAAC,SAAS,CAAC,IAAI,CAAA;QAEvC,MAAM,GAAG,GAAG,MAAM,IAAI,CAAC,IAAI,CAAC,MAAM,CAAM,SAAS,EAAE,EAAE,KAAK,EAAE,EAAE,EAAE,EAAE,QAAQ,CAAC,EAAE,EAAE,EAAE,CAAC,CAAA;QAElF,OAAO,GAAG,CAAC,MAAM,CAAA;IACnB,CAAC;CACF;AAED,MAAM,OAAO,GAAkE;IAC7E,SAAS,EAAE,qBAAS;IACpB,EAAE,EAAE,OAAE;IACN,IAAI,EAAE,WAAI;IACV,IAAI,EAAE,WAAI;IACV,MAAM,EAAE,eAAM;IACd,MAAM,EAAE,eAAM;IACd,IAAI,EAAE,WAAI;CACX,CAAA;AAED,MAAM,OAAO,GAAa,CAAC,OAAO,EAAE,QAAQ,EAAE,OAAO,EAAE,MAAM,CAAC,CAAA;AAE9D,iBAAS,IAAI,aAAa,EAAE,CAAA"}

package/transpiled/directives/auth/Id.d.ts

@@ -1,7 +0,0 @@
-import { type Parameter } from '../../RTD';
-import { type Directive, type Identity } from './types';
-export declare class Id implements Directive {
-    private readonly parameter;
-    constructor(parameter: string);
-    authorize(identity: Identity | null, _: any, parameters: Parameter[]): boolean;
-}

package/transpiled/directives/auth/Id.js

@@ -1,17 +0,0 @@
-"use strict";
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.Id = void 0;
-class Id {
-    parameter;
-    constructor(parameter) {
-        this.parameter = parameter;
-    }
-    authorize(identity, _, parameters) {
-        if (identity === null)
-            return false;
-        const parameter = parameters.find((parameter) => parameter.name === this.parameter);
-        return parameter?.value === identity.id;
-    }
-}
-exports.Id = Id;
-//# sourceMappingURL=Id.js.map

package/transpiled/directives/auth/Id.js.map

@@ -1 +0,0 @@
-{"version":3,"file":"Id.js","sourceRoot":"","sources":["../../../source/directives/auth/Id.ts"],"names":[],"mappings":";;;AAGA,MAAa,EAAE;IACI,SAAS,CAAQ;IAElC,YAAoB,SAAiB;QACnC,IAAI,CAAC,SAAS,GAAG,SAAS,CAAA;IAC5B,CAAC;IAEM,SAAS,CAAE,QAAyB,EAAE,CAAM,EAAE,UAAuB;QAC1E,IAAI,QAAQ,KAAK,IAAI;YACnB,OAAO,KAAK,CAAA;QAEd,MAAM,SAAS,GAAG,UAAU,CAAC,IAAI,CAAC,CAAC,SAAS,EAAE,EAAE,CAAC,SAAS,CAAC,IAAI,KAAK,IAAI,CAAC,SAAS,CAAC,CAAA;QAEnF,OAAO,SAAS,EAAE,KAAK,KAAK,QAAQ,CAAC,EAAE,CAAA;IACzC,CAAC;CACF;AAfD,gBAeC"}

package/transpiled/directives/auth/Incept.d.ts

@@ -1,10 +0,0 @@
-import * as http from '../../HTTP';
-import { type Directive, type Discovery, type Identity, type Input } from './types';
-export declare class Incept implements Directive {
-    private readonly property;
-    private readonly discovery;
-    private readonly schemes;
-    constructor(property: string, discovery: Discovery);
-    authorize(identity: Identity | null, input: Input): boolean;
-    settle(request: Input, response: http.OutgoingMessage): Promise<void>;
-}

package/transpiled/directives/auth/Incept.js

@@ -1,58 +0,0 @@
-"use strict";
-var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
-    if (k2 === undefined) k2 = k;
-    var desc = Object.getOwnPropertyDescriptor(m, k);
-    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
-      desc = { enumerable: true, get: function() { return m[k]; } };
-    }
-    Object.defineProperty(o, k2, desc);
-}) : (function(o, m, k, k2) {
-    if (k2 === undefined) k2 = k;
-    o[k2] = m[k];
-}));
-var __setModuleDefault = (this && this.__setModuleDefault) || (Object.create ? (function(o, v) {
-    Object.defineProperty(o, "default", { enumerable: true, value: v });
-}) : function(o, v) {
-    o["default"] = v;
-});
-var __importStar = (this && this.__importStar) || function (mod) {
-    if (mod && mod.__esModule) return mod;
-    var result = {};
-    if (mod != null) for (var k in mod) if (k !== "default" && Object.prototype.hasOwnProperty.call(mod, k)) __createBinding(result, mod, k);
-    __setModuleDefault(result, mod);
-    return result;
-};
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.Incept = void 0;
-const http = __importStar(require("../../HTTP"));
-const split_1 = require("./split");
-const schemes_1 = require("./schemes");
-class Incept {
-    property;
-    discovery;
-    schemes = {};
-    constructor(property, discovery) {
-        this.property = property;
-        this.discovery = discovery;
-    }
-    authorize(identity, input) {
-        return identity === null && 'authorization' in input.headers;
-    }
-    async settle(request, response) {
-        const id = response.body?.[this.property];
-        if (id === undefined)
-            throw new http.Conflict('Identity inception has failed as the response body ' +
-                ` does not contain the '${this.property}' property.`);
-        const [scheme, credentials] = (0, split_1.split)(request.headers.authorization);
-        const provider = schemes_1.PROVIDERS[scheme];
-        this.schemes[scheme] ??= await this.discovery[provider];
-        const identity = await this.schemes[scheme]
-            .invoke('create', { input: { id, credentials } });
-        if (identity instanceof Error)
-            throw new http.Conflict(identity);
-        request.identity = identity;
-        request.identity.scheme = scheme;
-    }
-}
-exports.Incept = Incept;
-//# sourceMappingURL=Incept.js.map

package/transpiled/directives/auth/Incept.js.map

@@ -1 +0,0 @@
-{"version":3,"file":"Incept.js","sourceRoot":"","sources":["../../../source/directives/auth/Incept.ts"],"names":[],"mappings":";;;;;;;;;;;;;;;;;;;;;;;;;;AACA,iDAAkC;AAElC,mCAA+B;AAC/B,uCAAqC;AAErC,MAAa,MAAM;IACA,QAAQ,CAAQ;IAChB,SAAS,CAAW;IACpB,OAAO,GAAY,EAAwB,CAAA;IAE5D,YAAoB,QAAgB,EAAE,SAAoB;QACxD,IAAI,CAAC,QAAQ,GAAG,QAAQ,CAAA;QACxB,IAAI,CAAC,SAAS,GAAG,SAAS,CAAA;IAC5B,CAAC;IAEM,SAAS,CAAE,QAAyB,EAAE,KAAY;QACvD,OAAO,QAAQ,KAAK,IAAI,IAAI,eAAe,IAAI,KAAK,CAAC,OAAO,CAAA;IAC9D,CAAC;IAEM,KAAK,CAAC,MAAM,CAAE,OAAc,EAAE,QAA8B;QACjE,MAAM,EAAE,GAAG,QAAQ,CAAC,IAAI,EAAE,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAA;QAEzC,IAAI,EAAE,KAAK,SAAS;YAClB,MAAM,IAAI,IAAI,CAAC,QAAQ,CAAC,qDAAqD;gBAC3E,0BAA0B,IAAI,CAAC,QAAQ,aAAa,CAAC,CAAA;QAEzD,MAAM,CAAC,MAAM,EAAE,WAAW,CAAC,GAAG,IAAA,aAAK,EAAC,OAAO,CAAC,OAAO,CAAC,aAAuB,CAAC,CAAA;QAC5E,MAAM,QAAQ,GAAG,mBAAS,CAAC,MAAM,CAAC,CAAA;QAElC,IAAI,CAAC,OAAO,CAAC,MAAM,CAAC,KAAK,MAAM,IAAI,CAAC,SAAS,CAAC,QAAQ,CAAC,CAAA;QAEvD,MAAM,QAAQ,GAAG,MAAM,IAAI,CAAC,OAAO,CAAC,MAAM,CAAC;aACxC,MAAM,CAAkB,QAAQ,EAAE,EAAE,KAAK,EAAE,EAAE,EAAE,EAAE,WAAW,EAAE,EAAE,CAAC,CAAA;QAEpE,IAAI,QAAQ,YAAY,KAAK;YAC3B,MAAM,IAAI,IAAI,CAAC,QAAQ,CAAC,QAAQ,CAAC,CAAA;QAEnC,OAAO,CAAC,QAAQ,GAAG,QAAQ,CAAA;QAC3B,OAAO,CAAC,QAAQ,CAAC,MAAM,GAAG,MAAM,CAAA;IAClC,CAAC;CACF;AAnCD,wBAmCC"}

package/transpiled/directives/auth/Role.d.ts

@@ -1,11 +0,0 @@
-import { type Component } from '@toa.io/core';
-import { type Directive, type Identity } from './types';
-export declare class Role implements Directive {
-    static remote: Component | null;
-    private readonly roles;
-    private readonly discovery;
-    constructor(roles: string | string[], discovery: Promise<Component>);
-    static set(identity: Identity, discovery: Promise<Component>): Promise<void>;
-    authorize(identity: Identity | null): Promise<boolean>;
-    private match;
-}

package/transpiled/directives/auth/Role.js

@@ -1,44 +0,0 @@
-"use strict";
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.Role = void 0;
-class Role {
-    static remote = null;
-    roles;
-    discovery;
-    constructor(roles, discovery) {
-        this.roles = typeof roles === 'string' ? [roles] : roles;
-        this.discovery = discovery;
-    }
-    static async set(identity, discovery) {
-        this.remote ??= await discovery;
-        const query = { criteria: `identity==${identity.id}`, limit: 1024 };
-        const roles = await this.remote.invoke('list', { query });
-        identity.roles = roles;
-    }
-    async authorize(identity) {
-        if (identity === null)
-            return false;
-        await Role.set(identity, this.discovery);
-        if (identity.roles === undefined)
-            return false;
-        return this.match(identity.roles);
-    }
-    match(roles) {
-        for (const role of roles) {
-            const index = this.roles.findIndex((expected) => compare(expected, role));
-            if (index !== -1)
-                return true;
-        }
-        return false;
-    }
-}
-exports.Role = Role;
-function compare(expected, actual) {
-    const exp = expected.split(':');
-    const act = actual.split(':');
-    for (let i = 0; i < act.length; i++)
-        if (exp[i] !== act[i])
-            return false;
-    return true;
-}
-//# sourceMappingURL=Role.js.map

package/transpiled/directives/auth/Role.js.map

@@ -1 +0,0 @@
-{"version":3,"file":"Role.js","sourceRoot":"","sources":["../../../source/directives/auth/Role.ts"],"names":[],"mappings":";;;AAGA,MAAa,IAAI;IACR,MAAM,CAAC,MAAM,GAAqB,IAAI,CAAA;IAC5B,KAAK,CAAU;IACf,SAAS,CAAoB;IAE9C,YAAoB,KAAwB,EAAE,SAA6B;QACzE,IAAI,CAAC,KAAK,GAAG,OAAO,KAAK,KAAK,QAAQ,CAAC,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,KAAK,CAAA;QACxD,IAAI,CAAC,SAAS,GAAG,SAAS,CAAA;IAC5B,CAAC;IAEM,MAAM,CAAC,KAAK,CAAC,GAAG,CAAE,QAAkB,EAAE,SAA6B;QACxE,IAAI,CAAC,MAAM,KAAK,MAAM,SAAS,CAAA;QAE/B,MAAM,KAAK,GAAU,EAAE,QAAQ,EAAE,aAAa,QAAQ,CAAC,EAAE,EAAE,EAAE,KAAK,EAAE,IAAI,EAAE,CAAA;QAC1E,MAAM,KAAK,GAAa,MAAM,IAAI,CAAC,MAAM,CAAC,MAAM,CAAC,MAAM,EAAE,EAAE,KAAK,EAAE,CAAC,CAAA;QAEnE,QAAQ,CAAC,KAAK,GAAG,KAAK,CAAA;IACxB,CAAC;IAEM,KAAK,CAAC,SAAS,CAAE,QAAyB;QAC/C,IAAI,QAAQ,KAAK,IAAI;YACnB,OAAO,KAAK,CAAA;QAEd,MAAM,IAAI,CAAC,GAAG,CAAC,QAAQ,EAAE,IAAI,CAAC,SAAS,CAAC,CAAA;QAExC,IAAI,QAAQ,CAAC,KAAK,KAAK,SAAS;YAC9B,OAAO,KAAK,CAAA;QAEd,OAAO,IAAI,CAAC,KAAK,CAAC,QAAQ,CAAC,KAAK,CAAC,CAAA;IACnC,CAAC;IAEO,KAAK,CAAE,KAAe;QAC5B,KAAK,MAAM,IAAI,IAAI,KAAK,EAAE;YACxB,MAAM,KAAK,GAAG,IAAI,CAAC,KAAK,CAAC,SAAS,CAAC,CAAC,QAAQ,EAAE,EAAE,CAAC,OAAO,CAAC,QAAQ,EAAE,IAAI,CAAC,CAAC,CAAA;YAEzE,IAAI,KAAK,KAAK,CAAC,CAAC;gBACd,OAAO,IAAI,CAAA;SACd;QAED,OAAO,KAAK,CAAA;IACd,CAAC;;AAxCH,oBAyCC;AAED,SAAS,OAAO,CAAE,QAAgB,EAAE,MAAc;IAChD,MAAM,GAAG,GAAG,QAAQ,CAAC,KAAK,CAAC,GAAG,CAAC,CAAA;IAC/B,MAAM,GAAG,GAAG,MAAM,CAAC,KAAK,CAAC,GAAG,CAAC,CAAA;IAE7B,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,GAAG,CAAC,MAAM,EAAE,CAAC,EAAE;QACjC,IAAI,GAAG,CAAC,CAAC,CAAC,KAAK,GAAG,CAAC,CAAC,CAAC;YACnB,OAAO,KAAK,CAAA;IAEhB,OAAO,IAAI,CAAA;AACb,CAAC"}

package/transpiled/directives/auth/Rule.d.ts

@@ -1,9 +0,0 @@
-import { type Parameter } from '../../RTD';
-import { type Directive, type Identity } from './types';
-export declare class Rule implements Directive {
-    private readonly directives;
-    constructor(directives: Record<string, any>, create: Create);
-    authorize(identity: Identity | null, input: any, parameters: Parameter[]): Promise<boolean>;
-}
-type Create = (name: string, value: any, ...args: any[]) => Directive;
-export {};

package/transpiled/directives/auth/Rule.js

@@ -1,22 +0,0 @@
-"use strict";
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.Rule = void 0;
-class Rule {
-    directives = [];
-    constructor(directives, create) {
-        for (const [name, value] of Object.entries(directives)) {
-            const directive = create(name, value);
-            this.directives.push(directive);
-        }
-    }
-    async authorize(identity, input, parameters) {
-        for (const directive of this.directives) {
-            const authorized = await directive.authorize(identity, input, parameters);
-            if (!authorized)
-                return false;
-        }
-        return true;
-    }
-}
-exports.Rule = Rule;
-//# sourceMappingURL=Rule.js.map

package/transpiled/directives/auth/Rule.js.map

@@ -1 +0,0 @@
-{"version":3,"file":"Rule.js","sourceRoot":"","sources":["../../../source/directives/auth/Rule.ts"],"names":[],"mappings":";;;AAGA,MAAa,IAAI;IACE,UAAU,GAAgB,EAAE,CAAA;IAE7C,YAAoB,UAA+B,EAAE,MAAc;QACjE,KAAK,MAAM,CAAC,IAAI,EAAE,KAAK,CAAC,IAAI,MAAM,CAAC,OAAO,CAAC,UAAU,CAAC,EAAE;YACtD,MAAM,SAAS,GAAG,MAAM,CAAC,IAAI,EAAE,KAAK,CAAC,CAAA;YAErC,IAAI,CAAC,UAAU,CAAC,IAAI,CAAC,SAAS,CAAC,CAAA;SAChC;IACH,CAAC;IAEM,KAAK,CAAC,SAAS,CACrB,QAAyB,EAAE,KAAU,EAAE,UAAuB;QAC7D,KAAK,MAAM,SAAS,IAAI,IAAI,CAAC,UAAU,EAAE;YACvC,MAAM,UAAU,GAAG,MAAM,SAAS,CAAC,SAAS,CAAC,QAAQ,EAAE,KAAK,EAAE,UAAU,CAAC,CAAA;YAEzE,IAAI,CAAC,UAAU;gBACb,OAAO,KAAK,CAAA;SACf;QAED,OAAO,IAAI,CAAA;IACb,CAAC;CACF;AAtBD,oBAsBC"}

package/transpiled/directives/auth/Scheme.d.ts

@@ -1,7 +0,0 @@
-import { type Directive, type Identity, type Input } from './types';
-export declare class Scheme implements Directive {
-    private readonly scheme;
-    private readonly Scheme;
-    constructor(scheme: string);
-    authorize(_: Identity | null, input: Input): boolean;
-}

package/transpiled/directives/auth/Scheme.js

@@ -1,47 +0,0 @@
-"use strict";
-var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
-    if (k2 === undefined) k2 = k;
-    var desc = Object.getOwnPropertyDescriptor(m, k);
-    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
-      desc = { enumerable: true, get: function() { return m[k]; } };
-    }
-    Object.defineProperty(o, k2, desc);
-}) : (function(o, m, k, k2) {
-    if (k2 === undefined) k2 = k;
-    o[k2] = m[k];
-}));
-var __setModuleDefault = (this && this.__setModuleDefault) || (Object.create ? (function(o, v) {
-    Object.defineProperty(o, "default", { enumerable: true, value: v });
-}) : function(o, v) {
-    o["default"] = v;
-});
-var __importStar = (this && this.__importStar) || function (mod) {
-    if (mod && mod.__esModule) return mod;
-    var result = {};
-    if (mod != null) for (var k in mod) if (k !== "default" && Object.prototype.hasOwnProperty.call(mod, k)) __createBinding(result, mod, k);
-    __setModuleDefault(result, mod);
-    return result;
-};
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.Scheme = void 0;
-const http = __importStar(require("../../HTTP"));
-const split_1 = require("./split");
-class Scheme {
-    scheme;
-    Scheme;
-    constructor(scheme) {
-        this.scheme = scheme.toLowerCase();
-        this.Scheme = scheme[0].toUpperCase() + scheme.substring(1);
-    }
-    authorize(_, input) {
-        if (input.headers.authorization === undefined)
-            return false;
-        const [scheme] = (0, split_1.split)(input.headers.authorization);
-        if (scheme !== this.scheme)
-            throw new http.Forbidden(this.Scheme +
-                ' authentication scheme is required to access this resource.');
-        return false;
-    }
-}
-exports.Scheme = Scheme;
-//# sourceMappingURL=Scheme.js.map

package/transpiled/directives/auth/Scheme.js.map

@@ -1 +0,0 @@
-{"version":3,"file":"Scheme.js","sourceRoot":"","sources":["../../../source/directives/auth/Scheme.ts"],"names":[],"mappings":";;;;;;;;;;;;;;;;;;;;;;;;;;AAAA,iDAAkC;AAElC,mCAA+B;AAE/B,MAAa,MAAM;IACA,MAAM,CAAQ;IACd,MAAM,CAAQ;IAE/B,YAAoB,MAAc;QAChC,IAAI,CAAC,MAAM,GAAG,MAAM,CAAC,WAAW,EAAE,CAAA;QAClC,IAAI,CAAC,MAAM,GAAG,MAAM,CAAC,CAAC,CAAC,CAAC,WAAW,EAAE,GAAG,MAAM,CAAC,SAAS,CAAC,CAAC,CAAC,CAAA;IAC7D,CAAC;IAEM,SAAS,CAAE,CAAkB,EAAE,KAAY;QAChD,IAAI,KAAK,CAAC,OAAO,CAAC,aAAa,KAAK,SAAS;YAC3C,OAAO,KAAK,CAAA;QAEd,MAAM,CAAC,MAAM,CAAC,GAAG,IAAA,aAAK,EAAC,KAAK,CAAC,OAAO,CAAC,aAAa,CAAC,CAAA;QAEnD,IAAI,MAAM,KAAK,IAAI,CAAC,MAAM;YACxB,MAAM,IAAI,IAAI,CAAC,SAAS,CAAC,IAAI,CAAC,MAAM;gBAClC,6DAA6D,CAAC,CAAA;QAElE,OAAO,KAAK,CAAA;IACd,CAAC;CACF;AArBD,wBAqBC"}

package/transpiled/directives/auth/index.d.ts

@@ -1,2 +0,0 @@
-import Family from './Family';
-export = Family;

package/transpiled/directives/auth/index.js

@@ -1,7 +0,0 @@
-"use strict";
-var __importDefault = (this && this.__importDefault) || function (mod) {
-    return (mod && mod.__esModule) ? mod : { "default": mod };
-};
-const Family_1 = __importDefault(require("./Family"));
-module.exports = Family_1.default;
-//# sourceMappingURL=index.js.map

package/transpiled/directives/auth/index.js.map

@@ -1 +0,0 @@
-{"version":3,"file":"index.js","sourceRoot":"","sources":["../../../source/directives/auth/index.ts"],"names":[],"mappings":";;;;AAAA,sDAA6B;AAE7B,iBAAS,gBAAM,CAAA"}

package/transpiled/directives/auth/schemes.d.ts

@@ -1,3 +0,0 @@
-import { type Remote, type Scheme } from './types';
-export declare const PROVIDERS: Record<Scheme, Remote>;
-export declare const PRIMARY: Scheme;

package/transpiled/directives/auth/schemes.js

@@ -1,9 +0,0 @@
-"use strict";
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.PRIMARY = exports.PROVIDERS = void 0;
-exports.PROVIDERS = {
-    basic: 'basic',
-    token: 'tokens'
-};
-exports.PRIMARY = 'token';
-//# sourceMappingURL=schemes.js.map

package/transpiled/directives/auth/schemes.js.map

@@ -1 +0,0 @@
-{"version":3,"file":"schemes.js","sourceRoot":"","sources":["../../../source/directives/auth/schemes.ts"],"names":[],"mappings":";;;AAEa,QAAA,SAAS,GAA2B;IAC/C,KAAK,EAAE,OAAO;IACd,KAAK,EAAE,QAAQ;CAChB,CAAA;AAEY,QAAA,OAAO,GAAW,OAAO,CAAA"}

package/transpiled/directives/auth/split.d.ts

@@ -1,2 +0,0 @@
-import { type Scheme } from './types';
-export declare function split(authorization: string): [Scheme, string];

package/transpiled/directives/auth/split.js

@@ -1,38 +0,0 @@
-"use strict";
-var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
-    if (k2 === undefined) k2 = k;
-    var desc = Object.getOwnPropertyDescriptor(m, k);
-    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
-      desc = { enumerable: true, get: function() { return m[k]; } };
-    }
-    Object.defineProperty(o, k2, desc);
-}) : (function(o, m, k, k2) {
-    if (k2 === undefined) k2 = k;
-    o[k2] = m[k];
-}));
-var __setModuleDefault = (this && this.__setModuleDefault) || (Object.create ? (function(o, v) {
-    Object.defineProperty(o, "default", { enumerable: true, value: v });
-}) : function(o, v) {
-    o["default"] = v;
-});
-var __importStar = (this && this.__importStar) || function (mod) {
-    if (mod && mod.__esModule) return mod;
-    var result = {};
-    if (mod != null) for (var k in mod) if (k !== "default" && Object.prototype.hasOwnProperty.call(mod, k)) __createBinding(result, mod, k);
-    __setModuleDefault(result, mod);
-    return result;
-};
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.split = void 0;
-const http = __importStar(require("../../HTTP"));
-function split(authorization) {
-    const space = authorization.indexOf(' ');
-    if (space === -1)
-        throw new http.Unauthorized('Malformed authorization header.');
-    const Scheme = authorization.slice(0, space);
-    const scheme = Scheme.toLowerCase();
-    const value = authorization.slice(space + 1);
-    return [scheme, value];
-}
-exports.split = split;
-//# sourceMappingURL=split.js.map

package/transpiled/directives/auth/split.js.map

@@ -1 +0,0 @@
-{"version":3,"file":"split.js","sourceRoot":"","sources":["../../../source/directives/auth/split.ts"],"names":[],"mappings":";;;;;;;;;;;;;;;;;;;;;;;;;;AAAA,iDAAkC;AAGlC,SAAgB,KAAK,CAAE,aAAqB;IAC1C,MAAM,KAAK,GAAG,aAAa,CAAC,OAAO,CAAC,GAAG,CAAC,CAAA;IAExC,IAAI,KAAK,KAAK,CAAC,CAAC;QACd,MAAM,IAAI,IAAI,CAAC,YAAY,CAAC,iCAAiC,CAAC,CAAA;IAEhE,MAAM,MAAM,GAAG,aAAa,CAAC,KAAK,CAAC,CAAC,EAAE,KAAK,CAAC,CAAA;IAC5C,MAAM,MAAM,GAAG,MAAM,CAAC,WAAW,EAAY,CAAA;IAC7C,MAAM,KAAK,GAAG,aAAa,CAAC,KAAK,CAAC,KAAK,GAAG,CAAC,CAAC,CAAA;IAE5C,OAAO,CAAC,MAAM,EAAE,KAAK,CAAC,CAAA;AACxB,CAAC;AAXD,sBAWC"}

package/transpiled/directives/auth/types.d.ts

@@ -1,31 +0,0 @@
-import { type Component } from '@toa.io/core';
-import { type Maybe } from '@toa.io/types';
-import { type Parameter } from '../../RTD';
-import type * as http from '../../HTTP';
-import type * as directive from '../../Directive';
-export interface Directive {
-    authorize: (identity: Identity | null, input: Input, parameters: Parameter[]) => boolean | Promise<boolean>;
-    reply?: (identity: Identity | null) => http.OutgoingMessage;
-    settle?: (request: Input, response: http.OutgoingMessage) => Promise<void>;
-}
-export interface Identity {
-    readonly id: string;
-    scheme: string;
-    roles?: string[];
-    refresh: boolean;
-}
-export interface Extension {
-    identity: Identity | null;
-}
-export interface Ban {
-    banned: boolean;
-}
-export type Input = directive.Input & Extension;
-export type AuthenticationResult = Maybe<{
-    identity: Identity;
-    refresh: boolean;
-}>;
-export type Scheme = 'basic' | 'token';
-export type Remote = 'basic' | 'tokens' | 'roles' | 'bans';
-export type Discovery = Record<Remote, Promise<Component>>;
-export type Schemes = Record<Scheme, Component>;

package/transpiled/directives/auth/types.js

@@ -1,3 +0,0 @@
-"use strict";
-Object.defineProperty(exports, "__esModule", { value: true });
-//# sourceMappingURL=types.js.map

package/transpiled/directives/auth/types.js.map

@@ -1 +0,0 @@
-{"version":3,"file":"types.js","sourceRoot":"","sources":["../../../source/directives/auth/types.ts"],"names":[],"mappings":""}

package/transpiled/directives/cache/Control.d.ts

@@ -1,9 +0,0 @@
-import type { AuthenticatedRequest, Directive } from './types';
-export declare class Control implements Directive {
-    protected readonly value: string;
-    private cache;
-    constructor(value: string);
-    set(request: AuthenticatedRequest, headers: Headers): void;
-    protected resolve(request: AuthenticatedRequest): string;
-    private mask;
-}

package/transpiled/directives/cache/Control.js

@@ -1,42 +0,0 @@
-"use strict";
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.Control = void 0;
-const matchacho_1 = require("matchacho");
-class Control {
-    value;
-    cache = null;
-    constructor(value) {
-        this.value = value;
-    }
-    set(request, headers) {
-        if (!['GET', 'HEAD', 'OPTIONS'].includes(request.method))
-            return;
-        this.cache ??= this.resolve(request);
-        headers.set('cache-control', this.cache);
-    }
-    resolve(request) {
-        if (request.identity === null)
-            return this.value;
-        const directives = this.mask();
-        if ((directives & (PUBLIC | NO_CACHE)) === PUBLIC)
-            return 'no-cache, ' + this.value;
-        if ((directives & (PUBLIC | PRIVATE)) === 0)
-            return 'private, ' + this.value;
-        return this.value;
-    }
-    mask() {
-        const directives = this.value.match(DIRECTIVES_RX);
-        if (directives === null)
-            return 0;
-        let mask = 0;
-        for (const directive of directives)
-            mask |= (0, matchacho_1.match)(directive, 'private', PRIVATE, 'public', PUBLIC, 'no-cache', NO_CACHE, 0);
-        return mask;
-    }
-}
-exports.Control = Control;
-const DIRECTIVES_RX = /\b(private|public|no-cache)\b/ig;
-const PUBLIC = 1;
-const PRIVATE = 2;
-const NO_CACHE = 4;
-//# sourceMappingURL=Control.js.map

package/transpiled/directives/cache/Control.js.map

@@ -1 +0,0 @@
-{"version":3,"file":"Control.js","sourceRoot":"","sources":["../../../source/directives/cache/Control.ts"],"names":[],"mappings":";;;AAAA,yCAAiC;AAGjC,MAAa,OAAO;IACC,KAAK,CAAQ;IACxB,KAAK,GAAkB,IAAI,CAAA;IAEnC,YAAoB,KAAa;QAC/B,IAAI,CAAC,KAAK,GAAG,KAAK,CAAA;IACpB,CAAC;IAEM,GAAG,CAAE,OAA6B,EAAE,OAAgB;QACzD,IAAI,CAAC,CAAC,KAAK,EAAE,MAAM,EAAE,SAAS,CAAC,CAAC,QAAQ,CAAC,OAAO,CAAC,MAAM,CAAC;YACtD,OAAM;QAER,IAAI,CAAC,KAAK,KAAK,IAAI,CAAC,OAAO,CAAC,OAAO,CAAC,CAAA;QAEpC,OAAO,CAAC,GAAG,CAAC,eAAe,EAAE,IAAI,CAAC,KAAK,CAAC,CAAA;IAC1C,CAAC;IAES,OAAO,CAAE,OAA6B;QAC9C,IAAI,OAAO,CAAC,QAAQ,KAAK,IAAI;YAC3B,OAAO,IAAI,CAAC,KAAK,CAAA;QAEnB,MAAM,UAAU,GAAG,IAAI,CAAC,IAAI,EAAE,CAAA;QAE9B,IAAI,CAAC,UAAU,GAAG,CAAC,MAAM,GAAG,QAAQ,CAAC,CAAC,KAAK,MAAM;YAC/C,OAAO,YAAY,GAAG,IAAI,CAAC,KAAK,CAAA;QAElC,IAAI,CAAC,UAAU,GAAG,CAAC,MAAM,GAAG,OAAO,CAAC,CAAC,KAAK,CAAC;YACzC,OAAO,WAAW,GAAG,IAAI,CAAC,KAAK,CAAA;QAEjC,OAAO,IAAI,CAAC,KAAK,CAAA;IACnB,CAAC;IAEO,IAAI;QACV,MAAM,UAAU,GAAG,IAAI,CAAC,KAAK,CAAC,KAAK,CAAC,aAAa,CAAC,CAAA;QAElD,IAAI,UAAU,KAAK,IAAI;YACrB,OAAO,CAAC,CAAA;QAEV,IAAI,IAAI,GAAG,CAAC,CAAA;QAEZ,KAAK,MAAM,SAAS,IAAI,UAAU;YAChC,IAAI,IAAI,IAAA,iBAAK,EAAS,SAAS,EAC7B,SAAS,EAAE,OAAO,EAClB,QAAQ,EAAE,MAAM,EAChB,UAAU,EAAE,QAAQ,EACpB,CAAC,CAAC,CAAA;QAEN,OAAO,IAAI,CAAA;IACb,CAAC;CACF;AAjDD,0BAiDC;AAED,MAAM,aAAa,GAAG,iCAAiC,CAAA;AAEvD,MAAM,MAAM,GAAG,CAAC,CAAA;AAChB,MAAM,OAAO,GAAG,CAAC,CAAA;AACjB,MAAM,QAAQ,GAAG,CAAC,CAAA"}

package/transpiled/directives/cache/Exact.d.ts

@@ -1,4 +0,0 @@
-import { Control } from './Control';
-export declare class Exact extends Control {
-    protected resolve(): string;
-}

package/transpiled/directives/cache/Exact.js

@@ -1,11 +0,0 @@
-"use strict";
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.Exact = void 0;
-const Control_1 = require("./Control");
-class Exact extends Control_1.Control {
-    resolve() {
-        return this.value;
-    }
-}
-exports.Exact = Exact;
-//# sourceMappingURL=Exact.js.map

package/transpiled/directives/cache/Exact.js.map

@@ -1 +0,0 @@
-{"version":3,"file":"Exact.js","sourceRoot":"","sources":["../../../source/directives/cache/Exact.ts"],"names":[],"mappings":";;;AAAA,uCAAmC;AAEnC,MAAa,KAAM,SAAQ,iBAAO;IACb,OAAO;QACxB,OAAO,IAAI,CAAC,KAAK,CAAA;IACnB,CAAC;CACF;AAJD,sBAIC"}

package/transpiled/directives/cache/Family.d.ts

@@ -1,12 +0,0 @@
-import { type Input, type Output, type Family } from '../../Directive';
-import { type Directive } from './types';
-import type * as http from '../../HTTP';
-declare class Cache implements Family<Directive> {
-    readonly name: string;
-    readonly mandatory: boolean;
-    create(name: string, value: any): Directive;
-    preflight(): Output;
-    settle(directives: Directive[], request: Input, response: http.OutgoingMessage): Promise<void>;
-}
-declare const _default: Cache;
-export = _default;

package/transpiled/directives/cache/Family.js

@@ -1,26 +0,0 @@
-"use strict";
-const Control_1 = require("./Control");
-const Exact_1 = require("./Exact");
-class Cache {
-    name = 'cache';
-    mandatory = false;
-    create(name, value) {
-        const Class = constructors[name];
-        if (Class === undefined)
-            throw new Error(`Directive '${name}' is not provided by the '${this.name}' family.`);
-        return new Class(value);
-    }
-    preflight() {
-        return null;
-    }
-    async settle(directives, request, response) {
-        response.headers ??= new Headers();
-        directives[0]?.set(request, response.headers);
-    }
-}
-const constructors = {
-    control: Control_1.Control,
-    exact: Exact_1.Exact
-};
-module.exports = new Cache();
-//# sourceMappingURL=Family.js.map