npm - @toa.io/extensions.exposition - Versions diffs - 1.0.0-alpha.4 → 1.0.0-alpha.41 - Mend

@toa.io/extensions.exposition 1.0.0-alpha.4 → 1.0.0-alpha.41

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (398) hide show

package/components/context.toa.yaml +2 -2
package/components/identity.bans/manifest.toa.yaml +15 -7
package/components/identity.bans/operations/transit.d.ts +14 -0
package/components/identity.bans/operations/transit.js +11 -0
package/components/identity.bans/operations/transit.js.map +1 -0
package/components/identity.bans/operations/tsconfig.tsbuildinfo +1 -0
package/components/identity.bans/source/transit.ts +21 -0
package/components/identity.bans/tsconfig.json +9 -0
package/components/identity.basic/manifest.toa.yaml +22 -9
package/components/identity.basic/operations/authenticate.d.ts +5 -1
package/components/identity.basic/operations/authenticate.js +5 -2
package/components/identity.basic/operations/authenticate.js.map +1 -1
package/components/identity.basic/operations/incept.d.ts +12 -0
package/components/identity.basic/operations/incept.js +26 -0
package/components/identity.basic/operations/incept.js.map +1 -0
package/components/identity.basic/operations/transit.d.ts +4 -4
package/components/identity.basic/operations/transit.js +5 -3
package/components/identity.basic/operations/transit.js.map +1 -1
package/components/identity.basic/operations/tsconfig.tsbuildinfo +1 -1
package/components/identity.basic/operations/types.d.ts +8 -4
package/components/identity.basic/source/authenticate.ts +16 -5
package/components/identity.basic/source/incept.ts +38 -0
package/components/identity.basic/source/transit.ts +8 -6
package/components/identity.basic/source/types.ts +8 -4
package/components/identity.federation/manifest.toa.yaml +28 -22
package/components/identity.federation/operations/authenticate.d.ts +2 -2
package/components/identity.federation/operations/authenticate.js +3 -10
package/components/identity.federation/operations/authenticate.js.map +1 -1
package/components/identity.federation/operations/incept.d.ts +11 -0
package/components/identity.federation/operations/{create.js → incept.js} +6 -7
package/components/identity.federation/operations/incept.js.map +1 -0
package/components/identity.federation/operations/lib/jwt.d.ts +4 -5
package/components/identity.federation/operations/lib/jwt.js +3 -3
package/components/identity.federation/operations/lib/jwt.js.map +1 -1
package/components/identity.federation/operations/tsconfig.tsbuildinfo +1 -1
package/components/identity.federation/operations/types/configuration.d.ts +14 -0
package/components/identity.federation/operations/types/configuration.js +3 -0
package/components/identity.federation/operations/types/configuration.js.map +1 -0
package/components/identity.federation/operations/{types.d.ts → types/context.d.ts} +13 -6
package/components/identity.federation/operations/types/context.js +3 -0
package/components/identity.federation/operations/types/context.js.map +1 -0
package/components/identity.federation/operations/types/entity.d.ts +6 -0
package/components/identity.federation/operations/{types.js → types/entity.js} +1 -1
package/components/identity.federation/operations/types/entity.js.map +1 -0
package/components/identity.federation/operations/types/index.d.ts +3 -0
package/components/identity.federation/operations/types/index.js +20 -0
package/components/identity.federation/operations/types/index.js.map +1 -0
package/components/identity.federation/source/authenticate.ts +5 -18
package/components/identity.federation/source/{create.ts → incept.ts} +10 -9
package/components/identity.federation/source/lib/jwt.test.ts +2 -2
package/components/identity.federation/source/lib/jwt.ts +7 -8
package/components/identity.federation/source/types/configuration.ts +15 -0
package/components/identity.federation/source/{types.ts → types/context.ts} +15 -5
package/components/identity.federation/source/types/entity.ts +6 -0
package/components/identity.federation/source/types/index.ts +3 -0
package/components/identity.federation/tsconfig.json +2 -2
package/components/identity.roles/manifest.toa.yaml +18 -6
package/components/identity.roles/operations/grant.d.ts +10 -0
package/components/identity.roles/operations/grant.js +21 -0
package/components/identity.roles/operations/grant.js.map +1 -0
package/components/identity.roles/operations/lib/Entity.d.ts +5 -0
package/components/identity.roles/operations/lib/Entity.js +3 -0
package/components/identity.roles/operations/lib/Entity.js.map +1 -0
package/components/identity.roles/operations/list.d.ts +1 -4
package/components/identity.roles/operations/list.js.map +1 -1
package/components/identity.roles/operations/principal.d.ts +4 -6
package/components/identity.roles/operations/principal.js +6 -1
package/components/identity.roles/operations/principal.js.map +1 -1
package/components/identity.roles/operations/tsconfig.tsbuildinfo +1 -1
package/components/identity.roles/source/grant.ts +32 -0
package/components/identity.roles/source/lib/Entity.ts +5 -0
package/components/identity.roles/source/list.ts +2 -4
package/components/identity.roles/source/principal.ts +10 -8
package/components/identity.tokens/manifest.toa.yaml +19 -5
package/components/identity.tokens/operations/authenticate.d.ts +2 -2
package/components/identity.tokens/operations/authenticate.js +10 -4
package/components/identity.tokens/operations/authenticate.js.map +1 -1
package/components/identity.tokens/operations/decrypt.js +1 -0
package/components/identity.tokens/operations/decrypt.js.map +1 -1
package/components/identity.tokens/operations/encrypt.js +5 -1
package/components/identity.tokens/operations/encrypt.js.map +1 -1
package/components/identity.tokens/operations/tsconfig.tsbuildinfo +1 -1
package/components/identity.tokens/operations/types.d.ts +8 -2
package/components/identity.tokens/receivers/identity.bans.created.js +3 -0
package/components/identity.tokens/source/authenticate.test.ts +11 -4
package/components/identity.tokens/source/authenticate.ts +12 -5
package/components/identity.tokens/source/decrypt.test.ts +5 -3
package/components/identity.tokens/source/decrypt.ts +9 -8
package/components/identity.tokens/source/encrypt.test.ts +26 -2
package/components/identity.tokens/source/encrypt.ts +5 -1
package/components/identity.tokens/source/types.ts +9 -2
package/components/octets.storage/manifest.toa.yaml +0 -7
package/documentation/access.md +27 -16
package/documentation/authorities.md +53 -0
package/documentation/cache.md +8 -1
package/documentation/components.md +47 -22
package/documentation/identity.md +17 -22
package/documentation/io.md +56 -0
package/documentation/protocol.md +3 -0
package/documentation/query.md +17 -11
package/documentation/require.md +15 -0
package/documentation/tree.md +22 -4
package/documentation/vary.md +14 -14
package/features/access.feature +89 -47
package/features/annotation.feature +2 -0
package/features/authorities.basic.feature +141 -0
package/features/authorities.feature +32 -0
package/features/authorities.federation.feature +99 -0
package/features/authorities.tokens.feature +118 -0
package/features/body.feature +4 -0
package/features/cache.feature +112 -5
package/features/cors.feature +7 -2
package/features/debug.feature +34 -0
package/features/directives.feature +5 -0
package/features/dynamic.feature +18 -7
package/features/errors.feature +18 -4
package/features/etag.feature +18 -1
package/features/identity.bans.feature +137 -0
package/features/identity.basic.feature +142 -19
package/features/identity.feature +7 -2
package/features/identity.federation.feature +67 -14
package/features/identity.roles.feature +220 -4
package/features/identity.tokens.feature +57 -4
package/features/io.feature +205 -0
package/features/octets.entries.feature +10 -0
package/features/octets.feature +60 -64
package/features/octets.meta.feature +7 -3
package/features/octets.workflows.feature +14 -0
package/features/probes.feature +14 -0
package/features/{queries.feature → query.feature} +50 -3
package/features/require.feature +67 -0
package/features/response.feature +12 -3
package/features/routes.feature +25 -12
package/features/steps/Database.ts +17 -10
package/features/steps/Gateway.ts +23 -6
package/features/steps/IdP.ts +28 -23
package/features/steps/components/echo/manifest.toa.yaml +5 -1
package/features/steps/components/echo/operations/identity.js +7 -0
package/features/steps/components/pots/manifest.toa.yaml +2 -0
package/features/steps/components/users.properties/manifest.toa.yaml +2 -1
package/features/streams.feature +1 -0
package/features/timing.feature +27 -1
package/features/vary.feature +105 -3
package/package.json +12 -11
package/readme.md +19 -14
package/schemas/annotation.cos.yaml +1 -1
package/schemas/io/input.cos.yaml +3 -0
package/schemas/io/message.cos.yaml +5 -0
package/schemas/io/output.cos.yaml +5 -0
package/source/Annotation.ts +3 -3
package/source/Context.ts +6 -4
package/source/Directive.test.ts +4 -4
package/source/Directive.ts +11 -38
package/source/Endpoint.ts +43 -8
package/source/Factory.ts +11 -7
package/source/Gateway.ts +16 -44
package/source/HTTP/Context.ts +24 -2
package/source/HTTP/Server.ts +56 -43
package/source/HTTP/exceptions.ts +7 -1
package/source/HTTP/messages.test.ts +38 -2
package/source/HTTP/messages.ts +7 -3
package/source/Mapping.ts +6 -1
package/source/Query.test.ts +1 -1
package/source/Query.ts +35 -24
package/source/RTD/Context.ts +7 -10
package/source/RTD/Directives.ts +28 -4
package/source/RTD/Endpoint.ts +6 -4
package/source/RTD/Match.ts +2 -7
package/source/RTD/Method.ts +7 -13
package/source/RTD/Node.ts +13 -14
package/source/RTD/Tree.ts +17 -16
package/source/RTD/factory.ts +3 -6
package/source/Tenant.ts +0 -8
package/source/deployment.ts +32 -22
package/source/directives/auth/Authorization.ts +38 -19
package/source/directives/auth/Delegate.ts +42 -0
package/source/directives/auth/Incept.ts +3 -2
package/source/directives/auth/Role.test.ts +53 -6
package/source/directives/auth/Role.ts +22 -14
package/source/directives/auth/types.ts +1 -1
package/source/directives/cache/Cache.ts +15 -8
package/source/directives/cache/Control.ts +42 -16
package/source/directives/cors/CORS.ts +13 -7
package/source/directives/dev/Development.ts +4 -4
package/source/directives/index.ts +6 -4
package/source/directives/io/Directive.ts +11 -0
package/source/directives/io/IO.ts +43 -0
package/source/directives/io/Input.ts +50 -0
package/source/directives/io/Message.ts +1 -0
package/source/directives/io/Output.ts +69 -0
package/source/directives/io/index.ts +3 -0
package/source/directives/io/schemas.ts +12 -0
package/source/directives/octets/Context.ts +4 -3
package/source/directives/octets/Delete.ts +4 -2
package/source/directives/octets/Directive.ts +10 -0
package/source/directives/octets/Fetch.ts +4 -3
package/source/directives/octets/List.ts +4 -2
package/source/directives/octets/Octets.ts +6 -8
package/source/directives/octets/Store.ts +12 -4
package/source/directives/octets/Workflow.ts +10 -3
package/source/directives/octets/types.ts +0 -7
package/source/directives/require/Directive.ts +5 -0
package/source/directives/require/Headers.ts +20 -0
package/source/directives/require/Require.ts +28 -0
package/source/directives/require/index.ts +3 -0
package/source/directives/vary/Directive.ts +2 -1
package/source/directives/vary/Embed.ts +14 -8
package/source/directives/vary/Vary.ts +7 -5
package/source/directives/vary/embeddings/Authority.ts +8 -0
package/source/directives/vary/embeddings/Embedding.ts +2 -1
package/source/directives/vary/embeddings/Header.ts +8 -6
package/source/directives/vary/embeddings/Language.ts +1 -1
package/source/directives/vary/embeddings/Parameter.ts +14 -0
package/source/directives/vary/embeddings/index.ts +6 -4
package/source/exceptions.ts +22 -11
package/source/root.ts +5 -0
package/source/schemas.ts +1 -1
package/transpiled/Annotation.d.ts +3 -3
package/transpiled/Context.d.ts +6 -4
package/transpiled/Directive.d.ts +4 -17
package/transpiled/Directive.js +4 -7
package/transpiled/Directive.js.map +1 -1
package/transpiled/Endpoint.d.ts +5 -3
package/transpiled/Endpoint.js +30 -5
package/transpiled/Endpoint.js.map +1 -1
package/transpiled/Factory.js +9 -4
package/transpiled/Factory.js.map +1 -1
package/transpiled/Gateway.d.ts +1 -4
package/transpiled/Gateway.js +10 -26
package/transpiled/Gateway.js.map +1 -1
package/transpiled/HTTP/Context.d.ts +8 -1
package/transpiled/HTTP/Context.js +15 -2
package/transpiled/HTTP/Context.js.map +1 -1
package/transpiled/HTTP/Server.d.ts +13 -2
package/transpiled/HTTP/Server.js +41 -35
package/transpiled/HTTP/Server.js.map +1 -1
package/transpiled/HTTP/exceptions.d.ts +4 -1
package/transpiled/HTTP/exceptions.js +7 -1
package/transpiled/HTTP/exceptions.js.map +1 -1
package/transpiled/HTTP/messages.d.ts +1 -0
package/transpiled/HTTP/messages.js +9 -3
package/transpiled/HTTP/messages.js.map +1 -1
package/transpiled/Mapping.js +4 -1
package/transpiled/Mapping.js.map +1 -1
package/transpiled/Query.d.ts +1 -0
package/transpiled/Query.js +21 -20
package/transpiled/Query.js.map +1 -1
package/transpiled/RTD/Context.d.ts +7 -6
package/transpiled/RTD/Directives.d.ts +19 -4
package/transpiled/RTD/Endpoint.d.ts +6 -4
package/transpiled/RTD/Match.d.ts +2 -4
package/transpiled/RTD/Method.d.ts +7 -7
package/transpiled/RTD/Method.js.map +1 -1
package/transpiled/RTD/Node.d.ts +4 -6
package/transpiled/RTD/Node.js +2 -1
package/transpiled/RTD/Node.js.map +1 -1
package/transpiled/RTD/Tree.d.ts +6 -6
package/transpiled/RTD/Tree.js +4 -1
package/transpiled/RTD/Tree.js.map +1 -1
package/transpiled/RTD/factory.d.ts +2 -4
package/transpiled/RTD/factory.js +1 -1
package/transpiled/RTD/factory.js.map +1 -1
package/transpiled/Tenant.d.ts +0 -1
package/transpiled/Tenant.js +0 -6
package/transpiled/Tenant.js.map +1 -1
package/transpiled/deployment.d.ts +1 -1
package/transpiled/deployment.js +28 -20
package/transpiled/deployment.js.map +1 -1
package/transpiled/directives/auth/Authorization.d.ts +2 -3
package/transpiled/directives/auth/Authorization.js +26 -12
package/transpiled/directives/auth/Authorization.js.map +1 -1
package/transpiled/directives/auth/Delegate.d.ts +10 -0
package/transpiled/directives/auth/Delegate.js +34 -0
package/transpiled/directives/auth/Delegate.js.map +1 -0
package/transpiled/directives/auth/Incept.js +3 -2
package/transpiled/directives/auth/Incept.js.map +1 -1
package/transpiled/directives/auth/Role.d.ts +4 -1
package/transpiled/directives/auth/Role.js +20 -14
package/transpiled/directives/auth/Role.js.map +1 -1
package/transpiled/directives/cache/Cache.d.ts +5 -5
package/transpiled/directives/cache/Cache.js +10 -4
package/transpiled/directives/cache/Cache.js.map +1 -1
package/transpiled/directives/cache/Control.d.ts +2 -1
package/transpiled/directives/cache/Control.js +29 -12
package/transpiled/directives/cache/Control.js.map +1 -1
package/transpiled/directives/cors/CORS.d.ts +2 -3
package/transpiled/directives/cors/CORS.js +13 -7
package/transpiled/directives/cors/CORS.js.map +1 -1
package/transpiled/directives/dev/Development.d.ts +3 -3
package/transpiled/directives/dev/Development.js +1 -1
package/transpiled/directives/dev/Development.js.map +1 -1
package/transpiled/directives/index.d.ts +2 -2
package/transpiled/directives/index.js +5 -3
package/transpiled/directives/index.js.map +1 -1
package/transpiled/directives/io/Directive.d.ts +8 -0
package/transpiled/directives/io/Directive.js +3 -0
package/transpiled/directives/io/Directive.js.map +1 -0
package/transpiled/directives/io/IO.d.ts +9 -0
package/transpiled/directives/io/IO.js +33 -0
package/transpiled/directives/io/IO.js.map +1 -0
package/transpiled/directives/io/Input.d.ts +11 -0
package/transpiled/directives/{octets/Permute.js → io/Input.js} +33 -26
package/transpiled/directives/io/Input.js.map +1 -0
package/transpiled/directives/io/Message.d.ts +1 -0
package/transpiled/directives/io/Message.js +3 -0
package/transpiled/directives/io/Message.js.map +1 -0
package/transpiled/directives/io/Output.d.ts +13 -0
package/transpiled/directives/io/Output.js +76 -0
package/transpiled/directives/io/Output.js.map +1 -0
package/transpiled/directives/io/index.d.ts +2 -0
package/transpiled/directives/io/index.js +6 -0
package/transpiled/directives/io/index.js.map +1 -0
package/transpiled/directives/io/schemas.d.ts +7 -0
package/transpiled/directives/io/schemas.js +14 -0
package/transpiled/directives/io/schemas.js.map +1 -0
package/transpiled/directives/octets/Context.d.ts +3 -3
package/transpiled/directives/octets/Context.js +4 -2
package/transpiled/directives/octets/Context.js.map +1 -1
package/transpiled/directives/octets/Delete.d.ts +3 -2
package/transpiled/directives/octets/Delete.js +3 -1
package/transpiled/directives/octets/Delete.js.map +1 -1
package/transpiled/directives/octets/Directive.d.ts +8 -0
package/transpiled/directives/octets/Directive.js +8 -0
package/transpiled/directives/octets/Directive.js.map +1 -0
package/transpiled/directives/octets/Fetch.d.ts +3 -2
package/transpiled/directives/octets/Fetch.js +3 -1
package/transpiled/directives/octets/Fetch.js.map +1 -1
package/transpiled/directives/octets/List.d.ts +3 -2
package/transpiled/directives/octets/List.js +3 -1
package/transpiled/directives/octets/List.js.map +1 -1
package/transpiled/directives/octets/Octets.d.ts +4 -4
package/transpiled/directives/octets/Octets.js +2 -4
package/transpiled/directives/octets/Octets.js.map +1 -1
package/transpiled/directives/octets/Store.d.ts +3 -2
package/transpiled/directives/octets/Store.js +10 -3
package/transpiled/directives/octets/Store.js.map +1 -1
package/transpiled/directives/octets/Workflow.d.ts +3 -2
package/transpiled/directives/octets/Workflow.js +9 -2
package/transpiled/directives/octets/Workflow.js.map +1 -1
package/transpiled/directives/octets/types.d.ts +0 -5
package/transpiled/directives/require/Directive.d.ts +4 -0
package/transpiled/directives/require/Directive.js +3 -0
package/transpiled/directives/require/Directive.js.map +1 -0
package/transpiled/directives/require/Headers.d.ts +7 -0
package/transpiled/directives/require/Headers.js +19 -0
package/transpiled/directives/require/Headers.js.map +1 -0
package/transpiled/directives/require/Require.d.ts +9 -0
package/transpiled/directives/require/Require.js +27 -0
package/transpiled/directives/require/Require.js.map +1 -0
package/transpiled/directives/require/index.d.ts +2 -0
package/transpiled/directives/require/index.js +6 -0
package/transpiled/directives/require/index.js.map +1 -0
package/transpiled/directives/vary/Directive.d.ts +2 -1
package/transpiled/directives/vary/Embed.d.ts +2 -1
package/transpiled/directives/vary/Embed.js +8 -6
package/transpiled/directives/vary/Embed.js.map +1 -1
package/transpiled/directives/vary/Vary.d.ts +3 -3
package/transpiled/directives/vary/Vary.js +3 -3
package/transpiled/directives/vary/Vary.js.map +1 -1
package/transpiled/directives/vary/embeddings/Authority.d.ts +5 -0
package/transpiled/directives/vary/embeddings/Authority.js +10 -0
package/transpiled/directives/vary/embeddings/Authority.js.map +1 -0
package/transpiled/directives/vary/embeddings/Embedding.d.ts +2 -1
package/transpiled/directives/vary/embeddings/Header.js +8 -6
package/transpiled/directives/vary/embeddings/Header.js.map +1 -1
package/transpiled/directives/vary/embeddings/Language.js +1 -1
package/transpiled/directives/vary/embeddings/Language.js.map +1 -1
package/transpiled/directives/vary/embeddings/Parameter.d.ts +7 -0
package/transpiled/directives/vary/embeddings/Parameter.js +14 -0
package/transpiled/directives/vary/embeddings/Parameter.js.map +1 -0
package/transpiled/directives/vary/embeddings/index.d.ts +2 -2
package/transpiled/directives/vary/embeddings/index.js +8 -4
package/transpiled/directives/vary/embeddings/index.js.map +1 -1
package/transpiled/exceptions.d.ts +3 -2
package/transpiled/exceptions.js +13 -7
package/transpiled/exceptions.js.map +1 -1
package/transpiled/root.js +5 -0
package/transpiled/root.js.map +1 -1
package/transpiled/schemas.d.ts +1 -1
package/transpiled/schemas.js +2 -2
package/transpiled/schemas.js.map +1 -1
package/transpiled/tsconfig.tsbuildinfo +1 -1
package/components/identity.basic/operations/create.d.ts +0 -10
package/components/identity.basic/operations/create.js +0 -10
package/components/identity.basic/operations/create.js.map +0 -1
package/components/identity.basic/source/create.ts +0 -18
package/components/identity.federation/operations/create.d.ts +0 -10
package/components/identity.federation/operations/create.js.map +0 -1
package/components/identity.federation/operations/schemas.d.ts +0 -59
package/components/identity.federation/operations/schemas.js +0 -9
package/components/identity.federation/operations/schemas.js.map +0 -1
package/components/identity.federation/operations/types.js.map +0 -1
package/components/identity.federation/source/schemas.ts +0 -61
package/components/octets.storage/operations/permute.js +0 -7
package/source/HTTP/Server.test.ts +0 -126
package/source/directives/octets/Permute.ts +0 -43
package/transpiled/directives/octets/Permute.d.ts +0 -10
package/transpiled/directives/octets/Permute.js.map +0 -1

package/features/io.feature ADDED Viewed

@@ -0,0 +1,205 @@
+@security
+Feature: IO restrictions
+  Background:
+    Given the `pots` database contains:
+      | _id                              | title      | volume | temperature |
+      | 4c4759e6f9c74da989d64511df42d6f4 | First pot  | 100    | 80          |
+      | 99988d785d7d445cad45dbf8531f560b | Second pot | 200    | 30          |
+  Scenario: Output is omitted by default
+    Given the `pots` is running with the following manifest:
+      """yaml
+      exposition:
+        /:
+          GET: enumerate
+          /:id:
+            GET: observe
+      """
+    When the following request is received:
+      """
+      GET /pots/4c4759e6f9c74da989d64511df42d6f4/ HTTP/1.1
+      host: nex.toa.io
+      """
+    Then the following reply is sent:
+      """
+      200 OK
+      content-length: 0
+      """
+    When the following request is received:
+      """
+      GET /pots/ HTTP/1.1
+      host: nex.toa.io
+      accept: application/yaml
+      """
+    Then the following reply is sent:
+      """
+      200 OK
+      content-length: 0
+      """
+  Scenario: Output is omitted by intention
+    Given the `pots` is running with the following manifest:
+      """yaml
+      exposition:
+        /:id:
+          io:output: false
+          GET: observe
+      """
+    When the following request is received:
+      """
+      GET /pots/4c4759e6f9c74da989d64511df42d6f4/ HTTP/1.1
+      host: nex.toa.io
+      accept: application/yaml
+      """
+    Then the following reply is sent:
+      """
+      200 OK
+      content-length: 0
+      """
+  Scenario: Output permissions
+    Given the `pots` is running with the following manifest:
+      """yaml
+      exposition:
+        /:
+          io:output: [id, volume]
+          GET: enumerate
+          /:id:
+            GET: observe
+      """
+    When the following request is received:
+      """
+      GET /pots/4c4759e6f9c74da989d64511df42d6f4/ HTTP/1.1
+      host: nex.toa.io
+      accept: application/yaml
+      """
+    Then the following reply is sent:
+      """
+      200 OK
+      id: 4c4759e6f9c74da989d64511df42d6f4
+      volume: 100
+      """
+    And the reply does not contain:
+      """
+      title:
+      temperature:
+      """
+    When the following request is received:
+      """
+      GET /pots/ HTTP/1.1
+      host: nex.toa.io
+      accept: application/yaml
+      """
+    Then the following reply is sent:
+      """
+      200 OK
+      content-type: application/yaml
+      - id: 4c4759e6f9c74da989d64511df42d6f4
+        volume: 100
+      - id: 99988d785d7d445cad45dbf8531f560b
+        volume: 200
+      """
+    And the reply does not contain:
+      """
+      title:
+      temperature:
+      """
+  Scenario: Input is unrestricted by default
+    Given the `pots` is running with the following manifest:
+      """yaml
+      exposition:
+        /:
+          io:output: true
+          POST: create
+      """
+    When the following request is received:
+      """
+      POST /pots/ HTTP/1.1
+      host: nex.toa.io
+      accept: application/yaml
+      content-type: application/yaml
+      title: Hello
+      volume: 1.5
+      temperature: 80
+      """
+    Then the following reply is sent:
+      """
+      201 Created
+      title: Hello
+      volume: 1.5
+      temperature: 80
+      """
+  Scenario: Input permissions
+    Given the `pots` is running with the following manifest:
+      """yaml
+      exposition:
+        /:
+          io:input: [title, volume]
+          io:output: [id]
+          POST: create
+      """
+    When the following request is received:
+      """
+      POST /pots/ HTTP/1.1
+      host: nex.toa.io
+      accept: text/plain
+      content-type: application/yaml
+      title: Hello
+      volume: 1.5
+      temperature: 80
+      """
+    Then the following reply is sent:
+      """
+      400 Bad Request
+      Unexpected input: temperature
+      """
+    When the following request is received:
+      """
+      POST /pots/ HTTP/1.1
+      host: nex.toa.io
+      content-type: application/yaml
+      title: Hello
+      volume: 1.5
+      """
+    Then the following reply is sent:
+      """
+      201 Created
+      """
+  Scenario: IO shortcuts
+    Given the `pots` is running with the following manifest:
+      """yaml
+      exposition:
+        /:
+          input: [title, volume]
+          output: [id, title, volume]
+          POST: create
+      """
+    When the following request is received:
+      """
+      POST /pots/ HTTP/1.1
+      host: nex.toa.io
+      accept: application/yaml
+      content-type: application/yaml
+      title: Hello
+      volume: 1.5
+      """
+    Then the following reply is sent:
+      """
+      201 Created
+      id:
+      title: Hello
+      volume: 1.5
+      """

package/features/octets.entries.feature CHANGED Viewed

@@ -4,6 +4,7 @@ Feature: Accessing entries
     Given the annotation:
       """yaml
       /:
+        io:output: true
         auth:anonymous: true
         octets:context: octets
         POST:
@@ -17,6 +18,7 @@ Feature: Accessing entries
     When the stream of `lenna.ascii` is received with the following headers:
       """
       POST / HTTP/1.1
+      host: nex.toa.io
       content-type: application/octet-stream
       """
     Then the following reply is sent:
@@ -26,6 +28,7 @@ Feature: Accessing entries
     When the following request is received:
       """
       GET / HTTP/1.1
+      host: nex.toa.io
       accept: application/vnd.toa.octets.entries+yaml
       """
     Then the following reply is sent:
@@ -37,6 +40,7 @@ Feature: Accessing entries
     When the following request is received:
       """
       GET /10cf16b458f759e0d617f2f3d83599ff HTTP/1.1
+      host: nex.toa.io
       accept: text/vnd.toa.octets.entry+plain
       """
     Then the following reply is sent:
@@ -50,6 +54,7 @@ Feature: Accessing entries
     Given the annotation:
       """yaml
       /:
+        io:output: true
         auth:anonymous: true
         octets:context: octets
         POST:
@@ -65,18 +70,21 @@ Feature: Accessing entries
     When the stream of `lenna.ascii` is received with the following headers:
       """
       POST / HTTP/1.1
+      host: nex.toa.io
       accept: application/yaml
       content-type: application/octet-stream
       """
     And the stream of `lenna.png` is received with the following headers:
       """
       POST / HTTP/1.1
+      host: nex.toa.io
       accept: application/yaml
       content-type: application/octet-stream
       """
     When the following request is received:
       """
       GET / HTTP/1.1
+      host: nex.toa.io
       accept: application/yaml
       """
     Then the following reply is sent:
@@ -90,6 +98,7 @@ Feature: Accessing entries
     When the following request is received:
       """
       GET / HTTP/1.1
+      host: nex.toa.io
       accept: application/vnd.toa.octets.entries+yaml
       """
     Then the following reply is sent:
@@ -107,6 +116,7 @@ Feature: Accessing entries
     When the following request is received:
       """
       GET /10cf16b458f759e0d617f2f3d83599ff HTTP/1.1
+      host: nex.toa.io
       accept: application/vnd.toa.octets.entry+yaml
       """
     Then the following reply is sent:

package/features/octets.feature CHANGED Viewed

@@ -4,14 +4,13 @@ Feature: Octets directive family
     Given the annotation:
       """yaml
       /:
+        io:output: true
         auth:anonymous: true
         octets:context: octets
         POST:
           octets:store: ~
         GET:
           octets:list: ~
-        PUT:
-          octets:permute: ~
         /*:
           GET:
             octets:fetch: ~
@@ -32,12 +31,16 @@ Feature: Octets directive family
             POST:
               octets:store:
                 accept: image/*
+            /*:
+              GET:
+                octets:fetch: ~
       """
   Scenario: Basic storage operations
     When the stream of `lenna.ascii` is received with the following headers:
       """
       POST / HTTP/1.1
+      host: nex.toa.io
       accept: application/yaml
       content-type: application/octet-stream
       """
@@ -53,6 +56,7 @@ Feature: Octets directive family
     When the following request is received:
       """
       GET /10cf16b458f759e0d617f2f3d83599ff HTTP/1.1
+      host: nex.toa.io
       """
     Then the stream equals to `lenna.ascii` is sent with the following headers:
       """
@@ -64,6 +68,7 @@ Feature: Octets directive family
     When the following request is received:
       """
       GET /10cf16b458f759e0d617f2f3d83599ff HTTP/1.1
+      host: nex.toa.io
       if-none-match: ${{ ETAG }}
       """
     Then the following reply is sent:
@@ -73,6 +78,7 @@ Feature: Octets directive family
     When the following request is received:
       """
       GET / HTTP/1.1
+      host: nex.toa.io
       accept: application/yaml
       """
     Then the following reply is sent:
@@ -85,6 +91,7 @@ Feature: Octets directive family
     When the following request is received:
       """
       GET /10cf16b458f759e0d617f2f3d83599ff?foo=bar HTTP/1.1
+      host: nex.toa.io
       """
     Then the following reply is sent:
       """
@@ -93,6 +100,7 @@ Feature: Octets directive family
     When the following request is received:
       """
       DELETE /10cf16b458f759e0d617f2f3d83599ff HTTP/1.1
+      host: nex.toa.io
       """
     Then the following reply is sent:
       """
@@ -101,68 +109,18 @@ Feature: Octets directive family
     When the following request is received:
       """
       GET /10cf16b458f759e0d617f2f3d83599ff HTTP/1.1
+      host: nex.toa.io
       """
     Then the following reply is sent:
       """
       404 Not Found
       """
-  Scenario: Entries permutation
-    When the stream of `lenna.ascii` is received with the following headers:
-      """
-      POST / HTTP/1.1
-      accept: application/yaml
-      content-type: application/octet-stream
-      """
-    And the stream of `lenna.png` is received with the following headers:
-      """
-      POST / HTTP/1.1
-      accept: application/yaml
-      content-type: application/octet-stream
-      """
-    When the following request is received:
-      """
-      GET / HTTP/1.1
-      accept: application/yaml
-      """
-    Then the following reply is sent:
-      """
-      200 OK
-      content-type: application/yaml
-      - 10cf16b458f759e0d617f2f3d83599ff
-      - 814a0034f5549e957ee61360d87457e5
-      """
-    When the following request is received:
-      """
-      PUT / HTTP/1.1
-      content-type: application/yaml
-      - 814a0034f5549e957ee61360d87457e5
-      - 10cf16b458f759e0d617f2f3d83599ff
-      """
-    Then the following reply is sent:
-      """
-      204 No Content
-      """
-    When the following request is received:
-      """
-      GET / HTTP/1.1
-      accept: application/yaml
-      """
-    Then the following reply is sent:
-      """
-      200 OK
-      content-type: application/yaml
-      - 814a0034f5549e957ee61360d87457e5
-      - 10cf16b458f759e0d617f2f3d83599ff
-      """
   Scenario: Media type control
     When the stream of `lenna.png` is received with the following headers:
       """
       POST /media/jpeg-or-png/ HTTP/1.1
+      host: nex.toa.io
       content-type: image/jpeg
       """
     Then the following reply is sent:
@@ -172,6 +130,7 @@ Feature: Octets directive family
     When the stream of `lenna.png` is received with the following headers:
       """
       POST /media/jpeg/ HTTP/1.1
+      host: nex.toa.io
       """
     Then the following reply is sent:
       """
@@ -180,34 +139,66 @@ Feature: Octets directive family
     When the stream of `lenna.png` is received with the following headers:
       """
       POST /media/jpeg-or-png/ HTTP/1.1
+      host: nex.toa.io
       """
     Then the following reply is sent:
       """
       201 Created
       """
-  Scenario Outline: Receiving <format> images
-    When the stream of `sample.<format>` is received with the following headers:
+  Scenario Outline: Detecting `<type>`
+    When the stream of `sample.<ext>` is received with the following headers:
       """
       POST /media/images/ HTTP/1.1
+      host: nex.toa.io
+      accept: application/yaml
       """
     Then the following reply is sent:
       """
       201 Created
+      type: <type>
       """
     Examples:
-      | format |
-      | jpeg   |
-      | jxl    |
-      | gif    |
-      | heic   |
-      | avif   |
-      | webp   |
+      | ext  | type       |
+      | jpeg | image/jpeg |
+      | jxl  | image/jxl  |
+      | gif  | image/gif  |
+      | heic | image/heic |
+      | avif | image/avif |
+      | webp | image/webp |
+  Scenario: Accepting `image/svg+xml`
+    When the stream of `sample.svg` is received with the following headers:
+      """
+      POST /media/images/ HTTP/1.1
+      host: nex.toa.io
+      content-type: image/svg+xml
+      accept: application/yaml
+      """
+    Then the following reply is sent:
+      """
+      201 Created
+      type: image/svg+xml
+      """
+    Scenario: Rejection video/avi
+    When the stream of `sample.avi` is received with the following headers:
+      """
+      POST /media/images/ HTTP/1.1
+      host: nex.toa.io
+      """
+    Then the following reply is sent:
+      """
+      415 Unsupported Media Type
+      """
   Scenario: Fetching non-existent BLOB
     When the following request is received:
       """
       GET /whatever HTTP/1.1
+      host: nex.toa.io
       """
     Then the following reply is sent:
       """
@@ -218,12 +209,14 @@ Feature: Octets directive family
     When the stream of `lenna.ascii` is received with the following headers:
       """
       POST / HTTP/1.1
+      host: nex.toa.io
       accept: application/yaml
       content-type: application/octet-stream
       """
     And the following request is received:
       """
       GET /10cf16b458f759e0d617f2f3d83599ff/ HTTP/1.1
+      host: nex.toa.io
       accept: text/plain
       """
     Then the following reply is sent:
@@ -234,10 +227,11 @@ Feature: Octets directive family
       Trailing slash is redundant.
       """
-  Scenario: Original BLOLB is not accessible
+  Scenario: Original BLOB is not accessible
     Given the annotation:
       """yaml
       /:
+        io:output: true
         auth:anonymous: true
         octets:context: octets
         POST:
@@ -251,6 +245,7 @@ Feature: Octets directive family
     When the stream of `lenna.ascii` is received with the following headers:
       """
       POST / HTTP/1.1
+      host: nex.toa.io
       """
     Then the following reply is sent:
       """
@@ -259,6 +254,7 @@ Feature: Octets directive family
     When the following request is received:
       """
       GET /10cf16b458f759e0d617f2f3d83599ff HTTP/1.1
+      host: nex.toa.io
       accept: text/plain
       """
     Then the following reply is sent:

package/features/octets.meta.feature CHANGED Viewed

@@ -5,6 +5,7 @@ Feature: Octets `content-meta` header
     And the annotation:
       """yaml
       /:
+        io:output: true
         auth:anonymous: true
         octets:context: octets
         /*:
@@ -18,6 +19,7 @@ Feature: Octets `content-meta` header
     When the stream of `lenna.ascii` is received with the following headers:
       """
       POST /meta-header/ HTTP/1.1
+      host: nex.toa.io
       content-type: application/octet-stream
       content-meta: foo, bar=baz=1
       content-meta: baz=1
@@ -29,6 +31,7 @@ Feature: Octets `content-meta` header
     When the following request is received:
       """
       GET /meta-header/10cf16b458f759e0d617f2f3d83599ff HTTP/1.1
+      host: nex.toa.io
       accept: application/vnd.toa.octets.entry+yaml
       """
     Then the following reply is sent:
@@ -55,11 +58,12 @@ Feature: Octets `content-meta` header
     When the following request is received:
       """
       OPTIONS / HTTP/1.1
-      origin: http://example.com
+      host: nex.toa.io
+      origin: https://example.com
       """
     Then the following reply is sent:
       """
       204 No Content
-      access-control-allow-origin: http://example.com
-      access-control-allow-headers: accept, authorization, content-type, content-meta
+      access-control-allow-origin: https://example.com
+      access-control-allow-headers: accept, authorization, content-type, etag, if-match, if-none-match, content-meta
       """

package/features/octets.workflows.feature CHANGED Viewed

@@ -15,6 +15,7 @@ Feature: Octets storage workflows
               - add-baz: octets.tester.baz
               - diversify: octets.tester.diversify
         /*:
+          io:output: true
           GET:
             octets:fetch:
               meta: true
@@ -22,6 +23,7 @@ Feature: Octets storage workflows
     When the stream of `lenna.ascii` is received with the following headers:
       """
       POST / HTTP/1.1
+      host: nex.toa.io
       accept: application/yaml
       content-type: application/octet-stream
       """
@@ -48,6 +50,7 @@ Feature: Octets storage workflows
     When the following request is received:
       """
       GET /10cf16b458f759e0d617f2f3d83599ff HTTP/1.1
+      host: nex.toa.io
       accept: application/vnd.toa.octets.entry+yaml
       """
     Then the following reply is sent:
@@ -66,6 +69,7 @@ Feature: Octets storage workflows
     When the following request is received:
       """
       GET /10cf16b458f759e0d617f2f3d83599ff.hello.png HTTP/1.1
+      host: nex.toa.io
       """
     Then the stream equals to `lenna.png` is sent with the following headers:
       """
@@ -91,6 +95,7 @@ Feature: Octets storage workflows
     When the stream of `lenna.ascii` is received with the following headers:
       """
       POST / HTTP/1.1
+      host: nex.toa.io
       accept: application/yaml
       content-type: application/octet-stream
       """
@@ -133,6 +138,7 @@ Feature: Octets storage workflows
     When the stream of `lenna.ascii` is received with the following headers:
       """
       POST / HTTP/1.1
+      host: nex.toa.io
       content-type: application/octet-stream
       """
     Then the following reply is sent:
@@ -142,6 +148,7 @@ Feature: Octets storage workflows
     When the following request is received:
       """
       DELETE /10cf16b458f759e0d617f2f3d83599ff HTTP/1.1
+      host: nex.toa.io
       accept: application/yaml
       """
     Then the following reply is sent:
@@ -156,6 +163,7 @@ Feature: Octets storage workflows
     When the following request is received:
       """
       GET /10cf16b458f759e0d617f2f3d83599ff HTTP/1.1
+      host: nex.toa.io
       """
     Then the following reply is sent:
       """
@@ -182,6 +190,7 @@ Feature: Octets storage workflows
     When the stream of `lenna.ascii` is received with the following headers:
       """
       POST / HTTP/1.1
+      host: nex.toa.io
       content-type: application/octet-stream
       """
     Then the following reply is sent:
@@ -191,6 +200,7 @@ Feature: Octets storage workflows
     When the following request is received:
       """
       DELETE /10cf16b458f759e0d617f2f3d83599ff HTTP/1.1
+      host: nex.toa.io
       accept: application/yaml
       """
     Then the following reply is sent:
@@ -208,6 +218,7 @@ Feature: Octets storage workflows
     When the following request is received:
       """
       GET /10cf16b458f759e0d617f2f3d83599ff HTTP/1.1
+      host: nex.toa.io
       """
     Then the following reply is sent:
       """
@@ -230,6 +241,7 @@ Feature: Octets storage workflows
     When the stream of `lenna.ascii` is received with the following headers:
       """
       POST /hello/world/ HTTP/1.1
+      host: nex.toa.io
       accept: application/yaml
       content-type: application/octet-stream
       """
@@ -264,6 +276,7 @@ Feature: Octets storage workflows
     When the stream of `lenna.ascii` is received with the following headers:
       """
       POST / HTTP/1.1
+      host: nex.toa.io
       content-type: application/octet-stream
       """
     Then the following reply is sent:
@@ -273,6 +286,7 @@ Feature: Octets storage workflows
     When the following request is received:
       """
       DELETE /10cf16b458f759e0d617f2f3d83599ff HTTP/1.1
+      host: nex.toa.io
       accept: application/yaml
       """
     Then the following reply is sent:

package/features/probes.feature ADDED Viewed

@@ -0,0 +1,14 @@
+Feature: Probes
+  Scenario: Startup probe
+    Given the Gateway is running
+    And after 1 second
+    When the following request is received:
+      """
+      GET /.ready HTTP/1.1
+      """
+    Then the following reply is sent:
+      """
+      200 OK
+      cache-control: no-store
+      """