instar 1.3.574 → 1.3.576

package/dist/commands/server.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"server.d.ts","sourceRoot":"","sources":["../../src/commands/server.ts"],"names":[],"mappings":"AAAA;;;;;;;;GAQG;AAkCH,OAAO,EAAE,cAAc,EAAE,MAAM,2BAA2B,CAAC;AAS3D,OAAO,EAAE,eAAe,EAAiC,MAAM,iCAAiC,CAAC;AAuBjG,OAAO,EAAE,WAAW,EAAE,MAAM,0BAA0B,CAAC;AAGvD,OAAO,EAAE,YAAY,EAAE,MAAM,+BAA+B,CAAC;AAkH7D,OAAO,EAAE,WAAW,EAAE,MAAM,yBAAyB,CAAC;AAsBtD;;;;;;;;;;;;;;;;;GAiBG;AACH,wBAAgB,yBAAyB,CACvC,IAAI,EAAE,MAAM,EACZ,OAAO,EAAE,MAAM,EACf,gBAAgB,EAAE,MAAM,GAAG,IAAI,GAAG,SAAS,GAC1C,OAAO,CAUT;AAyID,UAAU,YAAY;IACpB,UAAU,CAAC,EAAE,OAAO,CAAC;IACrB,GAAG,CAAC,EAAE,MAAM,CAAC;IACb;2DACuD;IACvD,QAAQ,CAAC,EAAE,OAAO,CAAC;CACpB;AAg4CD,wBAAgB,mBAAmB,CACjC,QAAQ,EAAE,eAAe,EACzB,cAAc,EAAE,cAAc,EAC9B,YAAY,CAAC,EAAE,YAAY,EAC3B,WAAW,CAAC,EAAE,WAAW,EACzB,WAAW,CAAC,EAAE,WAAW,EACzB,iBAAiB,CAAC,EAAE,CAAC,OAAO,EAAE,MAAM,EAAE,IAAI,EAAE,MAAM,KAAK,OAAO,CAAC,OAAO,CAAC,EAGvE,UAAU,CAAC,EAAE,MAAM,OAAO,8BAA8B,EAAE,WAAW,GAAG,IAAI,EAK5E,qBAAqB,CAAC,EAAE,MAAM,OAAO,gCAAgC,EAAE,kBAAkB,GAAG,IAAI,EAKhG,mBAAmB,CAAC,EAAE,MAAM,MAAM,GAAG,IAAI,GAAG,SAAS,GACpD,IAAI,CA8eN;AA2lBD,wBAAsB,WAAW,CAAC,OAAO,EAAE,YAAY,GAAG,OAAO,CAAC,IAAI,CAAC,CAqsctE;AAED,wBAAsB,UAAU,CAAC,OAAO,EAAE;IAAE,GAAG,CAAC,EAAE,MAAM,CAAA;CAAE,GAAG,OAAO,CAAC,IAAI,CAAC,CAsDzE;AAED;;;;;;;;;;;GAWG;AACH,wBAAsB,aAAa,CAAC,OAAO,EAAE;IAAE,GAAG,CAAC,EAAE,MAAM,CAAA;CAAE,GAAG,OAAO,CAAC,IAAI,CAAC,CAuD5E"}
+{"version":3,"file":"server.d.ts","sourceRoot":"","sources":["../../src/commands/server.ts"],"names":[],"mappings":"AAAA;;;;;;;;GAQG;AAkCH,OAAO,EAAE,cAAc,EAAE,MAAM,2BAA2B,CAAC;AAS3D,OAAO,EAAE,eAAe,EAAiC,MAAM,iCAAiC,CAAC;AAuBjG,OAAO,EAAE,WAAW,EAAE,MAAM,0BAA0B,CAAC;AAGvD,OAAO,EAAE,YAAY,EAAE,MAAM,+BAA+B,CAAC;AAkH7D,OAAO,EAAE,WAAW,EAAE,MAAM,yBAAyB,CAAC;AAsBtD;;;;;;;;;;;;;;;;;GAiBG;AACH,wBAAgB,yBAAyB,CACvC,IAAI,EAAE,MAAM,EACZ,OAAO,EAAE,MAAM,EACf,gBAAgB,EAAE,MAAM,GAAG,IAAI,GAAG,SAAS,GAC1C,OAAO,CAUT;AAyID,UAAU,YAAY;IACpB,UAAU,CAAC,EAAE,OAAO,CAAC;IACrB,GAAG,CAAC,EAAE,MAAM,CAAC;IACb;2DACuD;IACvD,QAAQ,CAAC,EAAE,OAAO,CAAC;CACpB;AAg4CD,wBAAgB,mBAAmB,CACjC,QAAQ,EAAE,eAAe,EACzB,cAAc,EAAE,cAAc,EAC9B,YAAY,CAAC,EAAE,YAAY,EAC3B,WAAW,CAAC,EAAE,WAAW,EACzB,WAAW,CAAC,EAAE,WAAW,EACzB,iBAAiB,CAAC,EAAE,CAAC,OAAO,EAAE,MAAM,EAAE,IAAI,EAAE,MAAM,KAAK,OAAO,CAAC,OAAO,CAAC,EAGvE,UAAU,CAAC,EAAE,MAAM,OAAO,8BAA8B,EAAE,WAAW,GAAG,IAAI,EAK5E,qBAAqB,CAAC,EAAE,MAAM,OAAO,gCAAgC,EAAE,kBAAkB,GAAG,IAAI,EAKhG,mBAAmB,CAAC,EAAE,MAAM,MAAM,GAAG,IAAI,GAAG,SAAS,GACpD,IAAI,CA8eN;AA2lBD,wBAAsB,WAAW,CAAC,OAAO,EAAE,YAAY,GAAG,OAAO,CAAC,IAAI,CAAC,CAswctE;AAED,wBAAsB,UAAU,CAAC,OAAO,EAAE;IAAE,GAAG,CAAC,EAAE,MAAM,CAAA;CAAE,GAAG,OAAO,CAAC,IAAI,CAAC,CAsDzE;AAED;;;;;;;;;;;GAWG;AACH,wBAAsB,aAAa,CAAC,OAAO,EAAE;IAAE,GAAG,CAAC,EAAE,MAAM,CAAA;CAAE,GAAG,OAAO,CAAC,IAAI,CAAC,CAuD5E"}

package/dist/commands/server.js

@@ -3546,6 +3546,32 @@ export async function startServer(options) {
                 log: (event, detail) => console.log(pc.dim(`  [ws2-send] ${event} ${JSON.stringify(detail)}`)),
             });
         }
+        // WS2.6 SEND-SIDE: userRegistry (a PII kind). Unlike the seamed memory stores,
+        // there is NO single canonical UserManager — telegram (send-only + normal mode)
+        // and slack each construct their OWN long-lived instance against the same
+        // users.json. This shared attacher wires the journal-backed emitter to each so a
+        // user written on ANY in-process path replicates (upsertUser→persistUsers fires
+        // emitPut for every survivor; removeUser fires the channel-keyed emitDelete
+        // tombstone). Channel-keyed identity — the local userId NEVER crosses the wire.
+        // Dark by default ⇒ no-op. SECONDARY paths NOT covered by this in-process emitter
+        // (documented in the side-effects review): the Slack org-permission admin route
+        // (per-request UserManager in routes.ts, would need RouteContext plumbing) and
+        // the `instar user add` CLI (a separate process — the snapshot reads the journal,
+        // not users.json). REQ-M14: a replicated user record is NEVER authoritative for
+        // inbound-principal resolution — the local channel index always wins.
+        const _userReplStores = replicatedRecordEmitter
+            ? await import('../core/UserRegistryReplicatedStore.js')
+            : null;
+        const attachUserReplication = (um) => {
+            if (!replicatedRecordEmitter || !_userReplStores)
+                return;
+            const emitter = replicatedRecordEmitter;
+            const { USER_STORE_KEY, deriveUserRecordKey, buildUserRecordData, buildUserTombstoneData } = _userReplStores;
+            um.setUserReplicationEmitter({
+                emitPut: (rec) => emitter.emit(USER_STORE_KEY, deriveUserRecordKey(rec.channels), (hlc, origin, observed) => buildUserRecordData({ record: rec, hlc, origin, observed })),
+                emitDelete: (channels, deletedAt) => emitter.emit(USER_STORE_KEY, deriveUserRecordKey(channels), (hlc, origin, observed) => buildUserTombstoneData({ channels, hlc, origin, deletedAt, observed })),
+            });
+        };
         const selfStateSyncReceive = () => {
             const out = {};
             const stores = _stateSyncStoresResolved;
@@ -4940,6 +4966,7 @@ export async function startServer(options) {
             // "--no-telegram (registry-only) injection" branch and slash-commands
             // reached the AI session as plain chat text.
             const userManagerSendOnly = new UserManager(config.stateDir, config.users);
+            attachUserReplication(userManagerSendOnly); // WS2.6 send-side (dark by default)
             _fixDeps = { state, liveConfig, sessionManager, telegram, config };
             wireTelegramRouting(telegram, sessionManager, quotaTracker, topicMemory, userManagerSendOnly, (topicId, text) => handleFixCommand(topicId, text, _fixDeps), () => (collaborationSurfacer && conversationStore && telegram) ? { collaborationSurfacer, conversationStore, commitmentTracker, telegram, brief: briefDeps } : null, () => _agentServerRef?.getTopicOperatorStore() ?? null, () => state.get('agent-attention-topic'));
             wireTelegramCallbacks(telegram, sessionManager, state, quotaTracker, undefined, config.sessions.claudePath, topicMemory);
@@ -5057,6 +5084,7 @@ export async function startServer(options) {
             // "Account switcher + quota collector pipeline" section above.
             // Initialize persistent UserManager for user identity resolution (Gap 8)
             const userManager = new UserManager(config.stateDir, config.users);
+            attachUserReplication(userManager); // WS2.6 send-side (dark by default)
             // Fix command dependencies — populated later when subsystems initialize.
             // Uses a mutable ref so wireTelegramRouting can capture it in a closure now.
             _fixDeps = {
@@ -5479,6 +5507,7 @@ export async function startServer(options) {
                         // Own UserManager instance for verified-principal resolution (the
                         // Telegram-block userManager is out of scope here). Reads users.json.
                         const slackUserManager = new UserManager(config.stateDir, config.users);
+                        attachUserReplication(slackUserManager); // WS2.6 send-side (dark by default)
                         // ── Floor-action grants are read from the SIGNED Coordination Mandate ──
                         // A MandateStore reader over the SAME file + SAME HMAC sign/verify deps as
                         // the coordination engine in AgentServer (which is constructed later, so we
@@ -15912,6 +15941,25 @@ export async function startServer(options) {
         // wired before the server existed; from here on inbound binds use the
         // server's own store instance.
         _agentServerRef = server;
+        // ── WS2.6 SEND-SIDE: topicOperator (the THIRD PII kind) ──────────────
+        // The AUTHORITATIVE topic-operator writer is the AgentServer's OWN
+        // TopicOperatorStore (it constructs `this.topicOperatorStore` internally and
+        // binds it from the authenticated sender via setOperator). server.ts has no
+        // canonical instance of its own, so we attach the journal-backed emitter to the
+        // server's store here, right after the AgentServer exists. setOperator already
+        // fires emitPut on every real bind/rebind. PUT-ONLY BY CONSTRUCTION — a topic
+        // rebinds, never unbinds, so there is NO emitDelete path (the receive side
+        // resolves the latest binding by HLC). Dark by default
+        // (multiMachine.stateSync.topicOperator); off ⇒ no-op. A content name can never
+        // become an operator — only the platform-verified uid is emitted (Know Your
+        // Principal); a replicated record is NEVER authoritative for inbound resolution.
+        if (replicatedRecordEmitter) {
+            const _topicOpEmitter = replicatedRecordEmitter;
+            const { TOPIC_OPERATOR_STORE_KEY, deriveTopicOperatorRecordKey, buildTopicOperatorRecordData } = await import('../core/TopicOperatorReplicatedStore.js');
+            server.getTopicOperatorStore()?.setOperatorReplicationEmitter({
+                emitPut: (topicId, record) => _topicOpEmitter.emit(TOPIC_OPERATOR_STORE_KEY, deriveTopicOperatorRecordKey(topicId, record.uid), (hlc, origin, observed) => buildTopicOperatorRecordData({ topicId, record, hlc, origin, observed })),
+            });
+        }
         // ── WS5.3 (escalation-rides-topic) destination re-admit driver ──
         // Bound here (after the AgentServer exists) so it can reach the SAME
         // ModelSwapService the /sessions/:name/model-swap route uses. Re-admission