@vertz/ui-server 0.2.29 → 0.2.31

package/dist/index.d.ts

@@ -1,3 +1,308 @@
+import { IncomingMessage, ServerResponse } from "node:http";
+import { FontFallbackMetrics as FontFallbackMetrics3 } from "@vertz/ui";
+import { CompiledRoute, FontFallbackMetrics, Theme } from "@vertz/ui";
+import { SSRAuth as SSRAuth_jq1nwm } from "@vertz/ui/internals";
+interface SSRModule {
+	default?: () => unknown;
+	App?: () => unknown;
+	theme?: Theme;
+	/** Global CSS strings to include in every SSR response (e.g. resets, body styles). */
+	styles?: string[];
+	/**
+	* Return all CSS tracked by the bundled @vertz/ui instance.
+	* The Vite SSR build inlines @vertz/ui into the server bundle, creating
+	* a separate module instance from @vertz/ui-server's dependency. Without
+	* this, component CSS from module-level css() calls is invisible to the
+	* SSR renderer. Export `getInjectedCSS` from @vertz/ui in the app entry.
+	*/
+	getInjectedCSS?: () => string[];
+	/** Compiled routes exported from the app for build-time SSG with generateParams. */
+	routes?: CompiledRoute[];
+	/** Code-generated API client for manifest-driven zero-discovery prefetching. */
+	api?: Record<string, Record<string, (...args: unknown[]) => unknown>>;
+}
+interface SSRRenderResult {
+	html: string;
+	css: string;
+	ssrData: Array<{
+		key: string;
+		data: unknown;
+	}>;
+	/** Font preload link tags for injection into <head>. */
+	headTags: string;
+	/** Route patterns discovered by createRouter() during SSR (for build-time pre-rendering). */
+	discoveredRoutes?: string[];
+	/** Route patterns that matched the current URL (for per-route modulepreload). */
+	matchedRoutePatterns?: string[];
+	/** Set when ProtectedRoute writes a redirect during SSR. Server should return 302. */
+	redirect?: {
+		to: string;
+	};
+}
+interface SSRDiscoverResult {
+	resolved: Array<{
+		key: string;
+		data: unknown;
+	}>;
+	pending: string[];
+}
+/**
+* Render an SSR module to an HTML string with CSS and pre-fetched query data.
+*
+* Performs a two-pass render:
+* - Pass 1: Discovery — calls the app to trigger query() registrations, awaits them
+* - Pass 2: Render — calls the app again with data populated, renders to HTML
+*/
+declare function ssrRenderToString(module: SSRModule, url: string, options?: {
+	ssrTimeout?: number;
+	/** Pre-computed font fallback metrics (computed at server startup). */
+	fallbackMetrics?: Record<string, FontFallbackMetrics>;
+	/** Auth state resolved from session cookie. Passed to SSRRenderContext for AuthProvider. */
+	ssrAuth?: SSRAuth_jq1nwm;
+}): Promise<SSRRenderResult>;
+/**
+* Discover queries for a given URL without rendering.
+* Runs only Pass 1 (query registration + resolution), no Pass 2 render.
+* Used by the production handler to pre-fetch query data for client-side navigations.
+*/
+declare function ssrDiscoverQueries(module: SSRModule, url: string, options?: {
+	ssrTimeout?: number;
+}): Promise<SSRDiscoverResult>;
+import { FontFallbackMetrics as FontFallbackMetrics2 } from "@vertz/ui";
+import { SSRAuth } from "@vertz/ui/internals";
+import { ExtractedQuery } from "@vertz/ui-compiler";
+/**
+* SSR prefetch access rule evaluator.
+*
+* Evaluates serialized entity access rules against the current session
+* to determine whether a query should be prefetched during SSR.
+*
+* The serialized rules come from the prefetch manifest (generated at build time).
+* The session comes from the JWT decoded at request time.
+*/
+/**
+* Serialized access rule — the JSON-friendly format stored in the manifest.
+* Mirrors SerializedRule from @vertz/server/auth/rules but defined here
+* to avoid importing the server package into the SSR pipeline.
+*/
+type SerializedAccessRule = {
+	type: "public";
+} | {
+	type: "authenticated";
+} | {
+	type: "role";
+	roles: string[];
+} | {
+	type: "entitlement";
+	value: string;
+} | {
+	type: "where";
+	conditions: Record<string, unknown>;
+} | {
+	type: "all";
+	rules: SerializedAccessRule[];
+} | {
+	type: "any";
+	rules: SerializedAccessRule[];
+} | {
+	type: "fva";
+	maxAge: number;
+} | {
+	type: "deny";
+};
+/**
+* Minimal session shape needed for prefetch access evaluation.
+* Extracted from the JWT at SSR request time.
+*/
+type PrefetchSession = {
+	status: "authenticated";
+	roles?: string[];
+	entitlements?: Record<string, boolean>;
+	tenantId?: string;
+} | {
+	status: "unauthenticated";
+};
+/**
+* Minimal shape of an AccessSet for entitlement extraction.
+* Avoids importing @vertz/server types into the SSR pipeline.
+*/
+interface AccessSetLike {
+	entitlements: Record<string, {
+		allowed: boolean;
+	}>;
+}
+/**
+* Convert SSRAuth (from the JWT/session resolver) to PrefetchSession
+* for entity access evaluation during SSR prefetching.
+*
+* @param ssrAuth - Auth state from session resolver
+* @param accessSet - Access set from JWT acl claim (null = overflow, undefined = not configured)
+*/
+declare function toPrefetchSession(ssrAuth: {
+	status: string;
+	user?: {
+		role?: string;
+		[key: string]: unknown;
+	};
+} | undefined, accessSet?: AccessSetLike | null): PrefetchSession;
+/**
+* Evaluate a serialized access rule against the current session.
+*
+* Returns true if the query is eligible for prefetch (the user
+* likely has access), false if it should be skipped.
+*
+* Design rationale for specific rule types:
+* - `where` → true: row-level filter, not an access gate. The query
+*   always executes; it just returns fewer rows for non-owners.
+* - `fva` → optimistic for authenticated users: MFA freshness is
+*   enforced on the actual API call. If the check fails server-side,
+*   the query returns an error result.
+* - `deny` → false: explicitly denied operations are never prefetched.
+* - Unknown types → false: fail-secure. Don't prefetch if we can't
+*   evaluate the rule.
+*/
+declare function evaluateAccessRule(rule: SerializedAccessRule, session: PrefetchSession): boolean;
+/** Serialized entity access rules from the prefetch manifest. */
+type EntityAccessMap = Record<string, Partial<Record<string, SerializedAccessRule>>>;
+interface SSRPrefetchManifest {
+	/** Route patterns present in the manifest. */
+	routePatterns: string[];
+	/** Entity access rules keyed by entity name → operation → serialized rule. */
+	entityAccess?: EntityAccessMap;
+	/** Route entries with query binding metadata for zero-discovery prefetch. */
+	routeEntries?: Record<string, {
+		queries: ExtractedQuery[];
+	}>;
+}
+interface SSRSinglePassOptions {
+	ssrTimeout?: number;
+	/** Pre-computed font fallback metrics (computed at server startup). */
+	fallbackMetrics?: Record<string, FontFallbackMetrics2>;
+	/** Auth state resolved from session cookie. */
+	ssrAuth?: SSRAuth;
+	/** Set to false to fall back to two-pass rendering. Default: true. */
+	prefetch?: boolean;
+	/** Prefetch manifest for entity access filtering. */
+	manifest?: SSRPrefetchManifest;
+	/** Session data for access rule evaluation. */
+	prefetchSession?: PrefetchSession;
+}
+/**
+* Render an SSR module in a single pass via discovery-only execution.
+*
+* 1. Discovery: Run the app factory to capture query registrations (no stream render)
+* 2. Prefetch: Await all discovered queries with timeout
+* 3. Render: Create a fresh context with pre-populated cache, render once
+*
+* Falls back to two-pass (`ssrRenderToString`) when:
+* - `prefetch: false` is set
+* - A redirect is detected during discovery
+*/
+declare function ssrRenderSinglePass(module: SSRModule, url: string, options?: SSRSinglePassOptions): Promise<SSRRenderResult>;
+import { AccessSet } from "@vertz/ui/auth";
+interface SessionData {
+	user: {
+		id: string;
+		email: string;
+		role: string;
+		[key: string]: unknown;
+	};
+	/** Unix timestamp in milliseconds (JWT exp * 1000). */
+	expiresAt: number;
+}
+/** Resolved session data for SSR injection. */
+interface SSRSessionInfo {
+	session: SessionData;
+	/**
+	* Access set from JWT acl claim.
+	* - Present (object): inline access set (no overflow)
+	* - null: access control is configured but the set overflowed the JWT
+	* - undefined: access control is not configured
+	*/
+	accessSet?: AccessSet | null;
+}
+/**
+* Callback that extracts session data from a request.
+* Returns null when no valid session exists (expired, missing, or invalid cookie).
+*/
+type SessionResolver = (request: Request) => Promise<SSRSessionInfo | null>;
+/**
+* Serialize a session into a `<script>` tag that sets
+* `window.__VERTZ_SESSION__`.
+*
+* @param session - The session data to serialize
+* @param nonce - Optional CSP nonce for the script tag
+*/
+declare function createSessionScript(session: SessionData, nonce?: string): string;
+interface SSRHandlerOptions {
+	/** The loaded SSR module (import('./dist/server/index.js')) */
+	module: SSRModule;
+	/** HTML template string (contents of dist/client/index.html) */
+	template: string;
+	/** SSR timeout for queries (default: 300ms) */
+	ssrTimeout?: number;
+	/**
+	* Map of CSS asset URLs to their content for inlining.
+	* Replaces `<link rel="stylesheet" href="...">` tags with inline `<style>` tags.
+	* Eliminates extra network requests, preventing FOUC on slow connections.
+	*
+	* @example
+	* ```ts
+	* inlineCSS: { '/assets/vertz.css': await Bun.file('./dist/client/assets/vertz.css').text() }
+	* ```
+	*/
+	inlineCSS?: Record<string, string>;
+	/**
+	* CSP nonce to inject on all inline `<script>` tags emitted during SSR.
+	*
+	* When set, the SSR data hydration script will include `nonce="<value>"`
+	* so that strict Content-Security-Policy headers do not block it.
+	*/
+	nonce?: string;
+	/** Pre-computed font fallback metrics (computed at server startup). */
+	fallbackMetrics?: Record<string, FontFallbackMetrics3>;
+	/** Paths to inject as `<link rel="modulepreload">` in `<head>`. */
+	modulepreload?: string[];
+	/**
+	* Route chunk manifest for per-route modulepreload injection.
+	* When provided, only chunks for the matched route are preloaded instead of all chunks.
+	*/
+	routeChunkManifest?: {
+		routes: Record<string, string[]>;
+	};
+	/** Cache-Control header for HTML responses. Omit or undefined = no header (safe default). */
+	cacheControl?: string;
+	/**
+	* Resolves session data from request cookies for SSR injection.
+	* When provided, SSR HTML includes `window.__VERTZ_SESSION__` and
+	* optionally `window.__VERTZ_ACCESS_SET__` for instant auth hydration.
+	*/
+	sessionResolver?: SessionResolver;
+	/**
+	* Prefetch manifest for single-pass SSR optimization.
+	*
+	* When provided with route entries and an API client export, enables
+	* zero-discovery rendering — queries are prefetched from the manifest
+	* without executing the component tree, then a single render pass
+	* produces the HTML. Without a manifest, SSR still uses the single-pass
+	* discovery-then-render approach (cheaper than two-pass).
+	*/
+	manifest?: SSRPrefetchManifest;
+	/**
+	* Enable progressive HTML streaming. Default: false.
+	*
+	* When true, the Response body is a ReadableStream that sends `<head>`
+	* content (CSS, preloads, fonts) before `<body>` rendering is complete.
+	* This improves TTFB and FCP.
+	*
+	* Has no effect on zero-discovery routes (manifest with routeEntries),
+	* which always use buffered rendering.
+	*/
+	progressiveHTML?: boolean;
+}
+declare function createSSRHandler(options: SSRHandlerOptions): (request: Request) => Promise<Response>;
+type NodeHandlerOptions = SSRHandlerOptions;
+declare function createNodeHandler(options: NodeHandlerOptions): (req: IncomingMessage, res: ServerResponse) => void;
 import { FallbackFontName as FallbackFontName2, FontFallbackMetrics as FontFallbackMetrics7 } from "@vertz/ui";
 interface AotBuildComponentEntry {
 	tier: "static" | "data-driven" | "conditional" | "runtime-fallback";
@@ -93,7 +398,7 @@ declare function renderAssetTags(assets: AssetDescriptor[]): string;
 * Returns an empty string if the CSS is empty.
 */
 declare function inlineCriticalCss(css: string): string;
-import { FallbackFontName, FontDescriptor, FontFallbackMetrics } from "@vertz/ui";
+import { FallbackFontName, FontDescriptor, FontFallbackMetrics as FontFallbackMetrics4 } from "@vertz/ui";
 /**
 * Auto-detect which system font to use as fallback base.
 *
@@ -113,7 +418,7 @@ declare function detectFallbackFont(fallback: readonly string[]): FallbackFontNa
 * @param rootDir - Project root directory for resolving font file paths.
 * @returns Map of font key → computed fallback metrics.
 */
-declare function extractFontMetrics(fonts: Record<string, FontDescriptor>, rootDir: string): Promise<Record<string, FontFallbackMetrics>>;
+declare function extractFontMetrics(fonts: Record<string, FontDescriptor>, rootDir: string): Promise<Record<string, FontFallbackMetrics4>>;
 /**
 * Collector for `<head>` metadata during SSR.
 *
@@ -224,14 +529,14 @@ interface PageOptions {
 * ```
 */
 declare function renderPage(vnode: VNode, options?: PageOptions): Response;
-import { FontFallbackMetrics as FontFallbackMetrics2, Theme } from "@vertz/ui";
+import { FontFallbackMetrics as FontFallbackMetrics5, Theme as Theme2 } from "@vertz/ui";
 interface RenderToHTMLOptions<AppFn extends () => VNode> {
 	/** The app component function */
 	app: AppFn;
 	/** Request URL for SSR */
 	url: string;
 	/** Theme definition for CSS vars */
-	theme?: Theme;
+	theme?: Theme2;
 	/** Global CSS strings to inject */
 	styles?: string[];
 	/** HTML head configuration */
@@ -250,7 +555,7 @@ interface RenderToHTMLOptions<AppFn extends () => VNode> {
 	/** Container selector (default '#app') */
 	container?: string;
 	/** Pre-computed font fallback metrics (computed at server startup). */
-	fallbackMetrics?: Record<string, FontFallbackMetrics2>;
+	fallbackMetrics?: Record<string, FontFallbackMetrics5>;
 }
 interface RenderToHTMLStreamOptions<AppFn extends () => VNode> extends RenderToHTMLOptions<AppFn> {
 	/** CSP nonce for inline scripts */
@@ -293,134 +598,43 @@ declare function renderToHTMLStream<AppFn extends () => VNode>(options: RenderTo
 *   theme,
 *   styles: ['body { margin: 0; }'],
 *   head: { title: 'My App' }
-* });
-* ```
-*/
-declare function renderToHTML<AppFn extends () => VNode>(options: RenderToHTMLOptions<AppFn>): Promise<string>;
-/**
-* @deprecated Use the options-object overload: `renderToHTML({ app, url, ... })`
-*/
-declare function renderToHTML<AppFn extends () => VNode>(app: AppFn, options: RenderToHTMLOptions<AppFn>): Promise<string>;
-/**
-* Render a VNode tree to a `ReadableStream` of HTML chunks.
-*
-* This is the main SSR entry point. It walks the virtual tree, serializing
-* synchronous content immediately and deferring Suspense boundaries.
-*
-* Suspense boundaries emit:
-* 1. A `<div id="v-slot-N">fallback</div>` placeholder inline
-* 2. A `<template id="v-tmpl-N">resolved</template><script>...<\/script>` chunk
-*    appended after the main content once the async content resolves
-*
-* This enables out-of-order streaming: the browser can paint the fallback
-* immediately and swap in the resolved content when it arrives.
-*/
-declare function renderToStream(tree: VNode | string | RawHtml, options?: RenderToStreamOptions): ReadableStream<Uint8Array>;
-/** Reset the slot counter (for testing). */
-declare function resetSlotCounter(): void;
-/**
-* Create a Suspense slot placeholder.
-*
-* Wraps fallback content in a `<div id="v-slot-N">` so it can later
-* be replaced by the resolved async content via a template chunk.
-*
-* Returns the placeholder VNode and the assigned slot ID.
-*/
-declare function createSlotPlaceholder(fallback: VNode | string): VNode & {
-	_slotId: number;
-};
-/**
-* SSR prefetch access rule evaluator.
-*
-* Evaluates serialized entity access rules against the current session
-* to determine whether a query should be prefetched during SSR.
-*
-* The serialized rules come from the prefetch manifest (generated at build time).
-* The session comes from the JWT decoded at request time.
-*/
-/**
-* Serialized access rule — the JSON-friendly format stored in the manifest.
-* Mirrors SerializedRule from @vertz/server/auth/rules but defined here
-* to avoid importing the server package into the SSR pipeline.
-*/
-type SerializedAccessRule = {
-	type: "public";
-} | {
-	type: "authenticated";
-} | {
-	type: "role";
-	roles: string[];
-} | {
-	type: "entitlement";
-	value: string;
-} | {
-	type: "where";
-	conditions: Record<string, unknown>;
-} | {
-	type: "all";
-	rules: SerializedAccessRule[];
-} | {
-	type: "any";
-	rules: SerializedAccessRule[];
-} | {
-	type: "fva";
-	maxAge: number;
-} | {
-	type: "deny";
-};
-/**
-* Minimal session shape needed for prefetch access evaluation.
-* Extracted from the JWT at SSR request time.
+* });
+* ```
 */
-type PrefetchSession = {
-	status: "authenticated";
-	roles?: string[];
-	entitlements?: Record<string, boolean>;
-	tenantId?: string;
-} | {
-	status: "unauthenticated";
-};
+declare function renderToHTML<AppFn extends () => VNode>(options: RenderToHTMLOptions<AppFn>): Promise<string>;
 /**
-* Minimal shape of an AccessSet for entitlement extraction.
-* Avoids importing @vertz/server types into the SSR pipeline.
+* @deprecated Use the options-object overload: `renderToHTML({ app, url, ... })`
 */
-interface AccessSetLike {
-	entitlements: Record<string, {
-		allowed: boolean;
-	}>;
-}
+declare function renderToHTML<AppFn extends () => VNode>(app: AppFn, options: RenderToHTMLOptions<AppFn>): Promise<string>;
 /**
-* Convert SSRAuth (from the JWT/session resolver) to PrefetchSession
-* for entity access evaluation during SSR prefetching.
+* Render a VNode tree to a `ReadableStream` of HTML chunks.
 *
-* @param ssrAuth - Auth state from session resolver
-* @param accessSet - Access set from JWT acl claim (null = overflow, undefined = not configured)
+* This is the main SSR entry point. It walks the virtual tree, serializing
+* synchronous content immediately and deferring Suspense boundaries.
+*
+* Suspense boundaries emit:
+* 1. A `<div id="v-slot-N">fallback</div>` placeholder inline
+* 2. A `<template id="v-tmpl-N">resolved</template><script>...<\/script>` chunk
+*    appended after the main content once the async content resolves
+*
+* This enables out-of-order streaming: the browser can paint the fallback
+* immediately and swap in the resolved content when it arrives.
 */
-declare function toPrefetchSession(ssrAuth: {
-	status: string;
-	user?: {
-		role?: string;
-		[key: string]: unknown;
-	};
-} | undefined, accessSet?: AccessSetLike | null): PrefetchSession;
+declare function renderToStream(tree: VNode | string | RawHtml, options?: RenderToStreamOptions): ReadableStream<Uint8Array>;
+/** Reset the slot counter (for testing). */
+declare function resetSlotCounter(): void;
 /**
-* Evaluate a serialized access rule against the current session.
+* Create a Suspense slot placeholder.
 *
-* Returns true if the query is eligible for prefetch (the user
-* likely has access), false if it should be skipped.
+* Wraps fallback content in a `<div id="v-slot-N">` so it can later
+* be replaced by the resolved async content via a template chunk.
 *
-* Design rationale for specific rule types:
-* - `where` → true: row-level filter, not an access gate. The query
-*   always executes; it just returns fewer rows for non-owners.
-* - `fva` → optimistic for authenticated users: MFA freshness is
-*   enforced on the actual API call. If the check fails server-side,
-*   the query returns an error result.
-* - `deny` → false: explicitly denied operations are never prefetched.
-* - Unknown types → false: fail-secure. Don't prefetch if we can't
-*   evaluate the rule.
+* Returns the placeholder VNode and the assigned slot ID.
 */
-declare function evaluateAccessRule(rule: SerializedAccessRule, session: PrefetchSession): boolean;
-import { AccessSet } from "@vertz/ui/auth";
+declare function createSlotPlaceholder(fallback: VNode | string): VNode & {
+	_slotId: number;
+};
+import { AccessSet as AccessSet2 } from "@vertz/ui/auth";
 /**
 * Extract an AccessSet from a decoded JWT payload for SSR injection.
 *
@@ -431,7 +645,7 @@ import { AccessSet } from "@vertz/ui/auth";
 * @param jwtPayload - The decoded JWT payload (from verifyJWT)
 * @returns The AccessSet for SSR injection, or null
 */
-declare function getAccessSetForSSR(jwtPayload: Record<string, unknown> | null): AccessSet | null;
+declare function getAccessSetForSSR(jwtPayload: Record<string, unknown> | null): AccessSet2 | null;
 /**
 * Serialize an AccessSet into a `<script>` tag that sets
 * `window.__VERTZ_ACCESS_SET__`.
@@ -439,7 +653,7 @@ declare function getAccessSetForSSR(jwtPayload: Record<string, unknown> | null):
 * @param accessSet - The access set to serialize
 * @param nonce - Optional CSP nonce for the script tag
 */
-declare function createAccessSetScript(accessSet: AccessSet, nonce?: string): string;
+declare function createAccessSetScript(accessSet: AccessSet2, nonce?: string): string;
 import { RenderAdapter } from "@vertz/ui/internals";
 /**
 * Create an SSR adapter that uses in-memory SSR node classes.
@@ -552,116 +766,8 @@ interface AotManifestManager {
 	getDiagnostics(): AotDiagnostics;
 }
 declare function createAotManifestManager(options: AotManifestManagerOptions): AotManifestManager;
-import { FontFallbackMetrics as FontFallbackMetrics5 } from "@vertz/ui";
+import { FontFallbackMetrics as FontFallbackMetrics6 } from "@vertz/ui";
 import { SSRAuth as SSRAuth2 } from "@vertz/ui/internals";
-import { CompiledRoute, FontFallbackMetrics as FontFallbackMetrics3, Theme as Theme2 } from "@vertz/ui";
-import { SSRAuth as SSRAuth_jq1nwm } from "@vertz/ui/internals";
-interface SSRModule {
-	default?: () => unknown;
-	App?: () => unknown;
-	theme?: Theme2;
-	/** Global CSS strings to include in every SSR response (e.g. resets, body styles). */
-	styles?: string[];
-	/**
-	* Return all CSS tracked by the bundled @vertz/ui instance.
-	* The Vite SSR build inlines @vertz/ui into the server bundle, creating
-	* a separate module instance from @vertz/ui-server's dependency. Without
-	* this, component CSS from module-level css() calls is invisible to the
-	* SSR renderer. Export `getInjectedCSS` from @vertz/ui in the app entry.
-	*/
-	getInjectedCSS?: () => string[];
-	/** Compiled routes exported from the app for build-time SSG with generateParams. */
-	routes?: CompiledRoute[];
-	/** Code-generated API client for manifest-driven zero-discovery prefetching. */
-	api?: Record<string, Record<string, (...args: unknown[]) => unknown>>;
-}
-interface SSRRenderResult {
-	html: string;
-	css: string;
-	ssrData: Array<{
-		key: string;
-		data: unknown;
-	}>;
-	/** Font preload link tags for injection into <head>. */
-	headTags: string;
-	/** Route patterns discovered by createRouter() during SSR (for build-time pre-rendering). */
-	discoveredRoutes?: string[];
-	/** Route patterns that matched the current URL (for per-route modulepreload). */
-	matchedRoutePatterns?: string[];
-	/** Set when ProtectedRoute writes a redirect during SSR. Server should return 302. */
-	redirect?: {
-		to: string;
-	};
-}
-interface SSRDiscoverResult {
-	resolved: Array<{
-		key: string;
-		data: unknown;
-	}>;
-	pending: string[];
-}
-/**
-* Render an SSR module to an HTML string with CSS and pre-fetched query data.
-*
-* Performs a two-pass render:
-* - Pass 1: Discovery — calls the app to trigger query() registrations, awaits them
-* - Pass 2: Render — calls the app again with data populated, renders to HTML
-*/
-declare function ssrRenderToString(module: SSRModule, url: string, options?: {
-	ssrTimeout?: number;
-	/** Pre-computed font fallback metrics (computed at server startup). */
-	fallbackMetrics?: Record<string, FontFallbackMetrics3>;
-	/** Auth state resolved from session cookie. Passed to SSRRenderContext for AuthProvider. */
-	ssrAuth?: SSRAuth_jq1nwm;
-}): Promise<SSRRenderResult>;
-/**
-* Discover queries for a given URL without rendering.
-* Runs only Pass 1 (query registration + resolution), no Pass 2 render.
-* Used by the production handler to pre-fetch query data for client-side navigations.
-*/
-declare function ssrDiscoverQueries(module: SSRModule, url: string, options?: {
-	ssrTimeout?: number;
-}): Promise<SSRDiscoverResult>;
-import { FontFallbackMetrics as FontFallbackMetrics4 } from "@vertz/ui";
-import { SSRAuth } from "@vertz/ui/internals";
-import { ExtractedQuery } from "@vertz/ui-compiler";
-/** Serialized entity access rules from the prefetch manifest. */
-type EntityAccessMap = Record<string, Partial<Record<string, SerializedAccessRule>>>;
-interface SSRPrefetchManifest {
-	/** Route patterns present in the manifest. */
-	routePatterns: string[];
-	/** Entity access rules keyed by entity name → operation → serialized rule. */
-	entityAccess?: EntityAccessMap;
-	/** Route entries with query binding metadata for zero-discovery prefetch. */
-	routeEntries?: Record<string, {
-		queries: ExtractedQuery[];
-	}>;
-}
-interface SSRSinglePassOptions {
-	ssrTimeout?: number;
-	/** Pre-computed font fallback metrics (computed at server startup). */
-	fallbackMetrics?: Record<string, FontFallbackMetrics4>;
-	/** Auth state resolved from session cookie. */
-	ssrAuth?: SSRAuth;
-	/** Set to false to fall back to two-pass rendering. Default: true. */
-	prefetch?: boolean;
-	/** Prefetch manifest for entity access filtering. */
-	manifest?: SSRPrefetchManifest;
-	/** Session data for access rule evaluation. */
-	prefetchSession?: PrefetchSession;
-}
-/**
-* Render an SSR module in a single pass via discovery-only execution.
-*
-* 1. Discovery: Run the app factory to capture query registrations (no stream render)
-* 2. Prefetch: Await all discovered queries with timeout
-* 3. Render: Create a fresh context with pre-populated cache, render once
-*
-* Falls back to two-pass (`ssrRenderToString`) when:
-* - `prefetch: false` is set
-* - A redirect is detected during discovery
-*/
-declare function ssrRenderSinglePass(module: SSRModule, url: string, options?: SSRSinglePassOptions): Promise<SSRRenderResult>;
 /** Context passed to AOT render functions for accessing data and runtime holes. */
 interface SSRAotContext {
 	/** Pre-generated closures for runtime-rendered components. */
@@ -702,7 +808,7 @@ interface SSRRenderAotOptions {
 	/** SSR timeout in ms. */
 	ssrTimeout?: number;
 	/** Pre-computed font fallback metrics. */
-	fallbackMetrics?: Record<string, FontFallbackMetrics5>;
+	fallbackMetrics?: Record<string, FontFallbackMetrics6>;
 	/** Auth state resolved from session cookie. */
 	ssrAuth?: SSRAuth2;
 	/** Session data for access rule evaluation. */
@@ -821,88 +927,6 @@ declare function clearGlobalSSRTimeout(): void;
 * Returns undefined if not set or outside SSR context.
 */
 declare function getGlobalSSRTimeout(): number | undefined;
-import { FontFallbackMetrics as FontFallbackMetrics6 } from "@vertz/ui";
-import { AccessSet as AccessSet2 } from "@vertz/ui/auth";
-interface SessionData {
-	user: {
-		id: string;
-		email: string;
-		role: string;
-		[key: string]: unknown;
-	};
-	/** Unix timestamp in milliseconds (JWT exp * 1000). */
-	expiresAt: number;
-}
-/** Resolved session data for SSR injection. */
-interface SSRSessionInfo {
-	session: SessionData;
-	/**
-	* Access set from JWT acl claim.
-	* - Present (object): inline access set (no overflow)
-	* - null: access control is configured but the set overflowed the JWT
-	* - undefined: access control is not configured
-	*/
-	accessSet?: AccessSet2 | null;
-}
-/**
-* Callback that extracts session data from a request.
-* Returns null when no valid session exists (expired, missing, or invalid cookie).
-*/
-type SessionResolver = (request: Request) => Promise<SSRSessionInfo | null>;
-/**
-* Serialize a session into a `<script>` tag that sets
-* `window.__VERTZ_SESSION__`.
-*
-* @param session - The session data to serialize
-* @param nonce - Optional CSP nonce for the script tag
-*/
-declare function createSessionScript(session: SessionData, nonce?: string): string;
-interface SSRHandlerOptions {
-	/** The loaded SSR module (import('./dist/server/index.js')) */
-	module: SSRModule;
-	/** HTML template string (contents of dist/client/index.html) */
-	template: string;
-	/** SSR timeout for queries (default: 300ms) */
-	ssrTimeout?: number;
-	/**
-	* Map of CSS asset URLs to their content for inlining.
-	* Replaces `<link rel="stylesheet" href="...">` tags with inline `<style>` tags.
-	* Eliminates extra network requests, preventing FOUC on slow connections.
-	*
-	* @example
-	* ```ts
-	* inlineCSS: { '/assets/vertz.css': await Bun.file('./dist/client/assets/vertz.css').text() }
-	* ```
-	*/
-	inlineCSS?: Record<string, string>;
-	/**
-	* CSP nonce to inject on all inline `<script>` tags emitted during SSR.
-	*
-	* When set, the SSR data hydration script will include `nonce="<value>"`
-	* so that strict Content-Security-Policy headers do not block it.
-	*/
-	nonce?: string;
-	/** Pre-computed font fallback metrics (computed at server startup). */
-	fallbackMetrics?: Record<string, FontFallbackMetrics6>;
-	/** Paths to inject as `<link rel="modulepreload">` in `<head>`. */
-	modulepreload?: string[];
-	/**
-	* Route chunk manifest for per-route modulepreload injection.
-	* When provided, only chunks for the matched route are preloaded instead of all chunks.
-	*/
-	routeChunkManifest?: {
-		routes: Record<string, string[]>;
-	};
-	/** Cache-Control header for HTML responses. Omit or undefined = no header (safe default). */
-	cacheControl?: string;
-	/**
-	* Resolves session data from request cookies for SSR injection.
-	* When provided, SSR HTML includes `window.__VERTZ_SESSION__` and
-	* optionally `window.__VERTZ_ACCESS_SET__` for instant auth hydration.
-	*/
-	sessionResolver?: SessionResolver;
-}
-declare function createSSRHandler(options: SSRHandlerOptions): (request: Request) => Promise<Response>;
 interface GenerateSSRHtmlOptions {
 	appHtml: string;
 	css: string;
@@ -1034,4 +1058,4 @@ declare function collectStreamChunks(stream: ReadableStream<Uint8Array>): Promis
 * @param nonce - Optional CSP nonce to add to the inline script tag.
 */
 declare function createTemplateChunk(slotId: number, resolvedHtml: string, nonce?: string): string;
-export { wrapWithHydrationMarkers, toPrefetchSession, streamToString, ssrStorage, ssrRenderToString, ssrRenderSinglePass, ssrRenderAot, ssrDiscoverQueries, setGlobalSSRTimeout, serializeToHtml, safeSerialize, resetSlotCounter, renderToStream, renderToHTMLStream, renderToHTML, renderPage, renderHeadToHtml, renderAssetTags, registerSSRQuery, reconstructDescriptors, rawHtml, matchUrlToPatterns, isInSSR, isAotDebugEnabled, inlineCriticalCss, getStreamingRuntimeScript, getSSRUrl, getSSRQueries, getGlobalSSRTimeout, getAccessSetForSSR, generateSSRHtml, generateAotBuildManifest, extractFontMetrics, evaluateAccessRule, encodeChunk, detectFallbackFont, createTemplateChunk, createSlotPlaceholder, createSessionScript, createSSRHandler, createSSRDataChunk, createSSRAdapter, createPrefetchManifestManager, createHoles, createAotManifestManager, createAccessSetScript, collectStreamChunks, clearGlobalSSRTimeout, __ssr_style_object, __ssr_spread, __esc_attr, __esc, VNode, SessionResolver, SessionData, SerializedAccessRule, SSRSinglePassOptions, SSRSessionInfo, SSRRenderResult, SSRRenderAotOptions, SSRQueryEntry2 as SSRQueryEntry, SSRPrefetchManifest, SSRModule, SSRHandlerOptions, SSRDiscoverResult, SSRAotContext, RenderToStreamOptions, RenderToHTMLStreamOptions, RenderToHTMLOptions, ReconstructedDescriptor, RawHtml, PrefetchSession, PrefetchManifestSnapshot, PrefetchManifestManagerOptions, PrefetchManifestManager, PageOptions, MatchedRoute, HydrationOptions, HeadEntry, HeadCollector, GenerateSSRHtmlOptions, FontFallbackMetrics7 as FontFallbackMetrics, FallbackFontName2 as FallbackFontName, EntityAccessMap, AssetDescriptor, AotTier, AotRouteEntry, AotRenderFn, AotManifestSnapshot, AotManifestManagerOptions, AotManifestManager, AotManifest, AotDivergenceEntry, AotDiagnosticsSnapshot, AotDiagnostics, AotDevManifest, AotDevComponentEntry, AotComponentDiagnostic, AotBuildManifest, AotBuildComponentEntry };
+export { wrapWithHydrationMarkers, toPrefetchSession, streamToString, ssrStorage, ssrRenderToString, ssrRenderSinglePass, ssrRenderAot, ssrDiscoverQueries, setGlobalSSRTimeout, serializeToHtml, safeSerialize, resetSlotCounter, renderToStream, renderToHTMLStream, renderToHTML, renderPage, renderHeadToHtml, renderAssetTags, registerSSRQuery, reconstructDescriptors, rawHtml, matchUrlToPatterns, isInSSR, isAotDebugEnabled, inlineCriticalCss, getStreamingRuntimeScript, getSSRUrl, getSSRQueries, getGlobalSSRTimeout, getAccessSetForSSR, generateSSRHtml, generateAotBuildManifest, extractFontMetrics, evaluateAccessRule, encodeChunk, detectFallbackFont, createTemplateChunk, createSlotPlaceholder, createSessionScript, createSSRHandler, createSSRDataChunk, createSSRAdapter, createPrefetchManifestManager, createNodeHandler, createHoles, createAotManifestManager, createAccessSetScript, collectStreamChunks, clearGlobalSSRTimeout, __ssr_style_object, __ssr_spread, __esc_attr, __esc, VNode, SessionResolver, SessionData, SerializedAccessRule, SSRSinglePassOptions, SSRSessionInfo, SSRRenderResult, SSRRenderAotOptions, SSRQueryEntry2 as SSRQueryEntry, SSRPrefetchManifest, SSRModule, SSRHandlerOptions, SSRDiscoverResult, SSRAotContext, RenderToStreamOptions, RenderToHTMLStreamOptions, RenderToHTMLOptions, ReconstructedDescriptor, RawHtml, PrefetchSession, PrefetchManifestSnapshot, PrefetchManifestManagerOptions, PrefetchManifestManager, PageOptions, NodeHandlerOptions, MatchedRoute, HydrationOptions, HeadEntry, HeadCollector, GenerateSSRHtmlOptions, FontFallbackMetrics7 as FontFallbackMetrics, FallbackFontName2 as FallbackFontName, EntityAccessMap, AssetDescriptor, AotTier, AotRouteEntry, AotRenderFn, AotManifestSnapshot, AotManifestManagerOptions, AotManifestManager, AotManifest, AotDivergenceEntry, AotDiagnosticsSnapshot, AotDiagnostics, AotDevManifest, AotDevComponentEntry, AotComponentDiagnostic, AotBuildManifest, AotBuildComponentEntry };