society-protocol 1.0.0

package/dist/persona/capabilities.js

@@ -0,0 +1,224 @@
+import crypto from 'crypto';
+import { ulid } from 'ulid';
+function base64urlEncode(input) {
+    return Buffer.from(input, 'utf8').toString('base64url');
+}
+function base64urlDecode(input) {
+    return Buffer.from(input, 'base64url').toString('utf8');
+}
+function safeSplitToken(token) {
+    const parts = token.split('.');
+    if (parts.length !== 2)
+        return null;
+    return [parts[0], parts[1]];
+}
+export class PersonaCapabilityManager {
+    storage;
+    signingSecret;
+    constructor(storage, secret) {
+        this.storage = storage;
+        this.signingSecret =
+            secret ||
+                process.env.SOCIETY_PERSONA_CAP_SECRET ||
+                crypto.createHash('sha256').update(`persona:${process.pid}:${Date.now()}`).digest('hex');
+    }
+    issue(input) {
+        const now = Date.now();
+        const id = `cap_${ulid()}`;
+        const expiresAt = input.caveats.expiresAt;
+        const payload = {
+            id,
+            vaultId: input.vaultId,
+            serviceDid: input.serviceDid,
+            scope: input.scope,
+            caveats: input.caveats,
+            issuedAt: now,
+            expiresAt,
+        };
+        const payloadEncoded = base64urlEncode(JSON.stringify(payload));
+        const sig = this.sign(payloadEncoded);
+        const token = `${payloadEncoded}.${sig}`;
+        const tokenHash = this.hashToken(token);
+        this.storage.savePersonaCapability?.({
+            id,
+            vaultId: input.vaultId,
+            serviceDid: input.serviceDid,
+            scope: input.scope,
+            caveats: input.caveats,
+            tokenHash,
+            status: 'active',
+            issuedAt: now,
+            expiresAt,
+        });
+        return {
+            id,
+            vaultId: input.vaultId,
+            serviceDid: input.serviceDid,
+            scope: input.scope,
+            caveats: input.caveats,
+            token,
+            status: 'active',
+            issuedAt: now,
+            expiresAt,
+        };
+    }
+    attenuate(tokenId, caveatsPatch) {
+        const parent = this.storage.getPersonaCapability?.(tokenId);
+        if (!parent) {
+            throw new Error(`Parent capability not found: ${tokenId}`);
+        }
+        if (parent.status !== 'active') {
+            throw new Error(`Parent capability is not active: ${tokenId}`);
+        }
+        const nextCaveats = this.attenuateCaveats(parent.caveats, caveatsPatch);
+        const now = Date.now();
+        const id = `cap_${ulid()}`;
+        const payload = {
+            id,
+            vaultId: parent.vaultId,
+            serviceDid: parent.serviceDid,
+            scope: parent.scope,
+            caveats: nextCaveats,
+            issuedAt: now,
+            expiresAt: nextCaveats.expiresAt,
+            parentTokenId: parent.id,
+        };
+        const payloadEncoded = base64urlEncode(JSON.stringify(payload));
+        const sig = this.sign(payloadEncoded);
+        const token = `${payloadEncoded}.${sig}`;
+        const tokenHash = this.hashToken(token);
+        this.storage.savePersonaCapability?.({
+            id,
+            vaultId: parent.vaultId,
+            serviceDid: parent.serviceDid,
+            scope: parent.scope,
+            caveats: nextCaveats,
+            tokenHash,
+            status: 'active',
+            issuedAt: now,
+            expiresAt: nextCaveats.expiresAt,
+            parentTokenId: parent.id,
+        });
+        return {
+            id,
+            vaultId: parent.vaultId,
+            serviceDid: parent.serviceDid,
+            scope: parent.scope,
+            caveats: nextCaveats,
+            token,
+            status: 'active',
+            issuedAt: now,
+            expiresAt: nextCaveats.expiresAt,
+            parentTokenId: parent.id,
+        };
+    }
+    revoke(tokenId, reason) {
+        this.storage.updatePersonaCapabilityStatus?.(tokenId, 'revoked', reason, Date.now());
+    }
+    validate(input) {
+        const split = safeSplitToken(input.token);
+        if (!split)
+            return { allowed: false, reason: 'Malformed token' };
+        const [payloadEncoded, sig] = split;
+        if (this.sign(payloadEncoded) !== sig) {
+            return { allowed: false, reason: 'Invalid signature' };
+        }
+        let payload;
+        try {
+            payload = JSON.parse(base64urlDecode(payloadEncoded));
+        }
+        catch {
+            return { allowed: false, reason: 'Invalid payload' };
+        }
+        const tokenHash = this.hashToken(input.token);
+        const stored = this.storage.getPersonaCapabilityByHash?.(tokenHash);
+        if (!stored) {
+            return { allowed: false, reason: 'Capability not found' };
+        }
+        if (stored.status !== 'active') {
+            return { allowed: false, reason: `Capability ${stored.status}` };
+        }
+        const now = Date.now();
+        if (payload.caveats.startsAt && now < payload.caveats.startsAt) {
+            return { allowed: false, reason: 'Capability not active yet' };
+        }
+        if (payload.expiresAt && now > payload.expiresAt) {
+            this.storage.updatePersonaCapabilityStatus?.(stored.id, 'expired', 'expired', now);
+            return { allowed: false, reason: 'Capability expired' };
+        }
+        if (payload.caveats.operations?.length && !payload.caveats.operations.includes(input.operation)) {
+            return { allowed: false, reason: 'Operation not allowed' };
+        }
+        if (input.domain && payload.caveats.domains?.length) {
+            const domains = payload.caveats.domains;
+            if (!domains.includes(input.domain)) {
+                return { allowed: false, reason: 'Domain not allowed' };
+            }
+        }
+        if (input.resource && payload.caveats.resources?.length) {
+            const allowed = payload.caveats.resources.some((r) => input.resource?.startsWith(r));
+            if (!allowed) {
+                return { allowed: false, reason: 'Resource not allowed' };
+            }
+        }
+        return {
+            allowed: true,
+            capability: {
+                id: stored.id,
+                vaultId: stored.vaultId,
+                serviceDid: stored.serviceDid,
+                scope: stored.scope,
+                caveats: stored.caveats,
+                token: input.token,
+                status: stored.status,
+                issuedAt: stored.issuedAt,
+                expiresAt: stored.expiresAt,
+                revokedAt: stored.revokedAt,
+                parentTokenId: stored.parentTokenId,
+            },
+        };
+    }
+    sign(payload) {
+        return crypto.createHmac('sha256', this.signingSecret).update(payload).digest('base64url');
+    }
+    hashToken(token) {
+        return crypto.createHash('sha256').update(token).digest('hex');
+    }
+    attenuateCaveats(parent, patch) {
+        const out = { ...parent };
+        if (patch.domains) {
+            out.domains = parent.domains?.length
+                ? parent.domains.filter((d) => patch.domains.includes(d))
+                : [...patch.domains];
+        }
+        if (patch.operations) {
+            out.operations = parent.operations?.length
+                ? parent.operations.filter((op) => patch.operations.includes(op))
+                : [...patch.operations];
+        }
+        if (patch.resources) {
+            out.resources = parent.resources?.length
+                ? parent.resources.filter((resource) => patch.resources.some((candidate) => resource.startsWith(candidate) || candidate.startsWith(resource)))
+                : [...patch.resources];
+        }
+        if (patch.limit !== undefined) {
+            out.limit = parent.limit !== undefined ? Math.min(parent.limit, patch.limit) : patch.limit;
+        }
+        if (patch.startsAt !== undefined) {
+            out.startsAt = parent.startsAt !== undefined ? Math.max(parent.startsAt, patch.startsAt) : patch.startsAt;
+        }
+        if (patch.expiresAt !== undefined) {
+            out.expiresAt = parent.expiresAt !== undefined ? Math.min(parent.expiresAt, patch.expiresAt) : patch.expiresAt;
+        }
+        if (patch.appendOnly !== undefined) {
+            out.appendOnly = parent.appendOnly || patch.appendOnly;
+        }
+        if (patch.requireProofs) {
+            out.requireProofs = parent.requireProofs?.length
+                ? parent.requireProofs.filter((proof) => patch.requireProofs.includes(proof))
+                : [...patch.requireProofs];
+        }
+        return out;
+    }
+}
+//# sourceMappingURL=capabilities.js.map

package/dist/persona/capabilities.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"capabilities.js","sourceRoot":"","sources":["../../src/persona/capabilities.ts"],"names":[],"mappings":"AAAA,OAAO,MAAM,MAAM,QAAQ,CAAC;AAC5B,OAAO,EAAE,IAAI,EAAE,MAAM,MAAM,CAAC;AAsB5B,SAAS,eAAe,CAAC,KAAa;IAClC,OAAO,MAAM,CAAC,IAAI,CAAC,KAAK,EAAE,MAAM,CAAC,CAAC,QAAQ,CAAC,WAAW,CAAC,CAAC;AAC5D,CAAC;AAED,SAAS,eAAe,CAAC,KAAa;IAClC,OAAO,MAAM,CAAC,IAAI,CAAC,KAAK,EAAE,WAAW,CAAC,CAAC,QAAQ,CAAC,MAAM,CAAC,CAAC;AAC5D,CAAC;AAED,SAAS,cAAc,CAAC,KAAa;IACjC,MAAM,KAAK,GAAG,KAAK,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC;IAC/B,IAAI,KAAK,CAAC,MAAM,KAAK,CAAC;QAAE,OAAO,IAAI,CAAC;IACpC,OAAO,CAAC,KAAK,CAAC,CAAC,CAAC,EAAE,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC;AAChC,CAAC;AAED,MAAM,OAAO,wBAAwB;IAGb;IAFZ,aAAa,CAAS;IAE9B,YAAoB,OAAgB,EAAE,MAAe;QAAjC,YAAO,GAAP,OAAO,CAAS;QAChC,IAAI,CAAC,aAAa;YACd,MAAM;gBACN,OAAO,CAAC,GAAG,CAAC,0BAA0B;gBACtC,MAAM,CAAC,UAAU,CAAC,QAAQ,CAAC,CAAC,MAAM,CAAC,WAAW,OAAO,CAAC,GAAG,IAAI,IAAI,CAAC,GAAG,EAAE,EAAE,CAAC,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC;IACjG,CAAC;IAED,KAAK,CAAC,KAAiD;QACnD,MAAM,GAAG,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC;QACvB,MAAM,EAAE,GAAG,OAAO,IAAI,EAAE,EAAE,CAAC;QAC3B,MAAM,SAAS,GAAG,KAAK,CAAC,OAAO,CAAC,SAAS,CAAC;QAE1C,MAAM,OAAO,GAAiB;YAC1B,EAAE;YACF,OAAO,EAAE,KAAK,CAAC,OAAO;YACtB,UAAU,EAAE,KAAK,CAAC,UAAU;YAC5B,KAAK,EAAE,KAAK,CAAC,KAAK;YAClB,OAAO,EAAE,KAAK,CAAC,OAAO;YACtB,QAAQ,EAAE,GAAG;YACb,SAAS;SACZ,CAAC;QAEF,MAAM,cAAc,GAAG,eAAe,CAAC,IAAI,CAAC,SAAS,CAAC,OAAO,CAAC,CAAC,CAAC;QAChE,MAAM,GAAG,GAAG,IAAI,CAAC,IAAI,CAAC,cAAc,CAAC,CAAC;QACtC,MAAM,KAAK,GAAG,GAAG,cAAc,IAAI,GAAG,EAAE,CAAC;QACzC,MAAM,SAAS,GAAG,IAAI,CAAC,SAAS,CAAC,KAAK,CAAC,CAAC;QAExC,IAAI,CAAC,OAAO,CAAC,qBAAqB,EAAE,CAAC;YACjC,EAAE;YACF,OAAO,EAAE,KAAK,CAAC,OAAO;YACtB,UAAU,EAAE,KAAK,CAAC,UAAU;YAC5B,KAAK,EAAE,KAAK,CAAC,KAAK;YAClB,OAAO,EAAE,KAAK,CAAC,OAA6C;YAC5D,SAAS;YACT,MAAM,EAAE,QAAQ;YAChB,QAAQ,EAAE,GAAG;YACb,SAAS;SACZ,CAAC,CAAC;QAEH,OAAO;YACH,EAAE;YACF,OAAO,EAAE,KAAK,CAAC,OAAO;YACtB,UAAU,EAAE,KAAK,CAAC,UAAU;YAC5B,KAAK,EAAE,KAAK,CAAC,KAAK;YAClB,OAAO,EAAE,KAAK,CAAC,OAAO;YACtB,KAAK;YACL,MAAM,EAAE,QAAQ;YAChB,QAAQ,EAAE,GAAG;YACb,SAAS;SACZ,CAAC;IACN,CAAC;IAED,SAAS,CAAC,OAAe,EAAE,YAAwC;QAC/D,MAAM,MAAM,GAAG,IAAI,CAAC,OAAO,CAAC,oBAAoB,EAAE,CAAC,OAAO,CAAC,CAAC;QAC5D,IAAI,CAAC,MAAM,EAAE,CAAC;YACV,MAAM,IAAI,KAAK,CAAC,gCAAgC,OAAO,EAAE,CAAC,CAAC;QAC/D,CAAC;QACD,IAAI,MAAM,CAAC,MAAM,KAAK,QAAQ,EAAE,CAAC;YAC7B,MAAM,IAAI,KAAK,CAAC,oCAAoC,OAAO,EAAE,CAAC,CAAC;QACnE,CAAC;QAED,MAAM,WAAW,GAAG,IAAI,CAAC,gBAAgB,CAAC,MAAM,CAAC,OAAO,EAAE,YAAY,CAAC,CAAC;QACxE,MAAM,GAAG,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC;QACvB,MAAM,EAAE,GAAG,OAAO,IAAI,EAAE,EAAE,CAAC;QAC3B,MAAM,OAAO,GAAiB;YAC1B,EAAE;YACF,OAAO,EAAE,MAAM,CAAC,OAAO;YACvB,UAAU,EAAE,MAAM,CAAC,UAAU;YAC7B,KAAK,EAAE,MAAM,CAAC,KAAK;YACnB,OAAO,EAAE,WAAW;YACpB,QAAQ,EAAE,GAAG;YACb,SAAS,EAAE,WAAW,CAAC,SAAS;YAChC,aAAa,EAAE,MAAM,CAAC,EAAE;SAC3B,CAAC;QAEF,MAAM,cAAc,GAAG,eAAe,CAAC,IAAI,CAAC,SAAS,CAAC,OAAO,CAAC,CAAC,CAAC;QAChE,MAAM,GAAG,GAAG,IAAI,CAAC,IAAI,CAAC,cAAc,CAAC,CAAC;QACtC,MAAM,KAAK,GAAG,GAAG,cAAc,IAAI,GAAG,EAAE,CAAC;QACzC,MAAM,SAAS,GAAG,IAAI,CAAC,SAAS,CAAC,KAAK,CAAC,CAAC;QAExC,IAAI,CAAC,OAAO,CAAC,qBAAqB,EAAE,CAAC;YACjC,EAAE;YACF,OAAO,EAAE,MAAM,CAAC,OAAO;YACvB,UAAU,EAAE,MAAM,CAAC,UAAU;YAC7B,KAAK,EAAE,MAAM,CAAC,KAAK;YACnB,OAAO,EAAE,WAAiD;YAC1D,SAAS;YACT,MAAM,EAAE,QAAQ;YAChB,QAAQ,EAAE,GAAG;YACb,SAAS,EAAE,WAAW,CAAC,SAAS;YAChC,aAAa,EAAE,MAAM,CAAC,EAAE;SAC3B,CAAC,CAAC;QAEH,OAAO;YACH,EAAE;YACF,OAAO,EAAE,MAAM,CAAC,OAAO;YACvB,UAAU,EAAE,MAAM,CAAC,UAAU;YAC7B,KAAK,EAAE,MAAM,CAAC,KAAK;YACnB,OAAO,EAAE,WAAW;YACpB,KAAK;YACL,MAAM,EAAE,QAAQ;YAChB,QAAQ,EAAE,GAAG;YACb,SAAS,EAAE,WAAW,CAAC,SAAS;YAChC,aAAa,EAAE,MAAM,CAAC,EAAE;SAC3B,CAAC;IACN,CAAC;IAED,MAAM,CAAC,OAAe,EAAE,MAAc;QAClC,IAAI,CAAC,OAAO,CAAC,6BAA6B,EAAE,CAAC,OAAO,EAAE,SAAS,EAAE,MAAM,EAAE,IAAI,CAAC,GAAG,EAAE,CAAC,CAAC;IACzF,CAAC;IAED,QAAQ,CAAC,KAAgC;QACrC,MAAM,KAAK,GAAG,cAAc,CAAC,KAAK,CAAC,KAAK,CAAC,CAAC;QAC1C,IAAI,CAAC,KAAK;YAAE,OAAO,EAAE,OAAO,EAAE,KAAK,EAAE,MAAM,EAAE,iBAAiB,EAAE,CAAC;QAEjE,MAAM,CAAC,cAAc,EAAE,GAAG,CAAC,GAAG,KAAK,CAAC;QACpC,IAAI,IAAI,CAAC,IAAI,CAAC,cAAc,CAAC,KAAK,GAAG,EAAE,CAAC;YACpC,OAAO,EAAE,OAAO,EAAE,KAAK,EAAE,MAAM,EAAE,mBAAmB,EAAE,CAAC;QAC3D,CAAC;QAED,IAAI,OAAqB,CAAC;QAC1B,IAAI,CAAC;YACD,OAAO,GAAG,IAAI,CAAC,KAAK,CAAC,eAAe,CAAC,cAAc,CAAC,CAAC,CAAC;QAC1D,CAAC;QAAC,MAAM,CAAC;YACL,OAAO,EAAE,OAAO,EAAE,KAAK,EAAE,MAAM,EAAE,iBAAiB,EAAE,CAAC;QACzD,CAAC;QAED,MAAM,SAAS,GAAG,IAAI,CAAC,SAAS,CAAC,KAAK,CAAC,KAAK,CAAC,CAAC;QAC9C,MAAM,MAAM,GAAG,IAAI,CAAC,OAAO,CAAC,0BAA0B,EAAE,CAAC,SAAS,CAAC,CAAC;QACpE,IAAI,CAAC,MAAM,EAAE,CAAC;YACV,OAAO,EAAE,OAAO,EAAE,KAAK,EAAE,MAAM,EAAE,sBAAsB,EAAE,CAAC;QAC9D,CAAC;QAED,IAAI,MAAM,CAAC,MAAM,KAAK,QAAQ,EAAE,CAAC;YAC7B,OAAO,EAAE,OAAO,EAAE,KAAK,EAAE,MAAM,EAAE,cAAc,MAAM,CAAC,MAAM,EAAE,EAAE,CAAC;QACrE,CAAC;QAED,MAAM,GAAG,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC;QACvB,IAAI,OAAO,CAAC,OAAO,CAAC,QAAQ,IAAI,GAAG,GAAG,OAAO,CAAC,OAAO,CAAC,QAAQ,EAAE,CAAC;YAC7D,OAAO,EAAE,OAAO,EAAE,KAAK,EAAE,MAAM,EAAE,2BAA2B,EAAE,CAAC;QACnE,CAAC;QACD,IAAI,OAAO,CAAC,SAAS,IAAI,GAAG,GAAG,OAAO,CAAC,SAAS,EAAE,CAAC;YAC/C,IAAI,CAAC,OAAO,CAAC,6BAA6B,EAAE,CAAC,MAAM,CAAC,EAAE,EAAE,SAAS,EAAE,SAAS,EAAE,GAAG,CAAC,CAAC;YACnF,OAAO,EAAE,OAAO,EAAE,KAAK,EAAE,MAAM,EAAE,oBAAoB,EAAE,CAAC;QAC5D,CAAC;QAED,IAAI,OAAO,CAAC,OAAO,CAAC,UAAU,EAAE,MAAM,IAAI,CAAC,OAAO,CAAC,OAAO,CAAC,UAAU,CAAC,QAAQ,CAAC,KAAK,CAAC,SAAS,CAAC,EAAE,CAAC;YAC9F,OAAO,EAAE,OAAO,EAAE,KAAK,EAAE,MAAM,EAAE,uBAAuB,EAAE,CAAC;QAC/D,CAAC;QAED,IAAI,KAAK,CAAC,MAAM,IAAI,OAAO,CAAC,OAAO,CAAC,OAAO,EAAE,MAAM,EAAE,CAAC;YAClD,MAAM,OAAO,GAAG,OAAO,CAAC,OAAO,CAAC,OAA0B,CAAC;YAC3D,IAAI,CAAC,OAAO,CAAC,QAAQ,CAAC,KAAK,CAAC,MAAM,CAAC,EAAE,CAAC;gBAClC,OAAO,EAAE,OAAO,EAAE,KAAK,EAAE,MAAM,EAAE,oBAAoB,EAAE,CAAC;YAC5D,CAAC;QACL,CAAC;QAED,IAAI,KAAK,CAAC,QAAQ,IAAI,OAAO,CAAC,OAAO,CAAC,SAAS,EAAE,MAAM,EAAE,CAAC;YACtD,MAAM,OAAO,GAAG,OAAO,CAAC,OAAO,CAAC,SAAS,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,KAAK,CAAC,QAAQ,EAAE,UAAU,CAAC,CAAC,CAAC,CAAC,CAAC;YACrF,IAAI,CAAC,OAAO,EAAE,CAAC;gBACX,OAAO,EAAE,OAAO,EAAE,KAAK,EAAE,MAAM,EAAE,sBAAsB,EAAE,CAAC;YAC9D,CAAC;QACL,CAAC;QAED,OAAO;YACH,OAAO,EAAE,IAAI;YACb,UAAU,EAAE;gBACR,EAAE,EAAE,MAAM,CAAC,EAAE;gBACb,OAAO,EAAE,MAAM,CAAC,OAAO;gBACvB,UAAU,EAAE,MAAM,CAAC,UAAU;gBAC7B,KAAK,EAAE,MAAM,CAAC,KAAK;gBACnB,OAAO,EAAE,MAAM,CAAC,OAAO;gBACvB,KAAK,EAAE,KAAK,CAAC,KAAK;gBAClB,MAAM,EAAE,MAAM,CAAC,MAAM;gBACrB,QAAQ,EAAE,MAAM,CAAC,QAAQ;gBACzB,SAAS,EAAE,MAAM,CAAC,SAAS;gBAC3B,SAAS,EAAE,MAAM,CAAC,SAAS;gBAC3B,aAAa,EAAE,MAAM,CAAC,aAAa;aACtC;SACJ,CAAC;IACN,CAAC;IAEO,IAAI,CAAC,OAAe;QACxB,OAAO,MAAM,CAAC,UAAU,CAAC,QAAQ,EAAE,IAAI,CAAC,aAAa,CAAC,CAAC,MAAM,CAAC,OAAO,CAAC,CAAC,MAAM,CAAC,WAAW,CAAC,CAAC;IAC/F,CAAC;IAEO,SAAS,CAAC,KAAa;QAC3B,OAAO,MAAM,CAAC,UAAU,CAAC,QAAQ,CAAC,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC;IACnE,CAAC;IAEO,gBAAgB,CAAC,MAAyB,EAAE,KAAiC;QACjF,MAAM,GAAG,GAAsB,EAAE,GAAG,MAAM,EAAE,CAAC;QAC7C,IAAI,KAAK,CAAC,OAAO,EAAE,CAAC;YAChB,GAAG,CAAC,OAAO,GAAG,MAAM,CAAC,OAAO,EAAE,MAAM;gBAChC,CAAC,CAAC,MAAM,CAAC,OAAO,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,KAAK,CAAC,OAAQ,CAAC,QAAQ,CAAC,CAAC,CAAC,CAAC;gBAC1D,CAAC,CAAC,CAAC,GAAG,KAAK,CAAC,OAAO,CAAC,CAAC;QAC7B,CAAC;QACD,IAAI,KAAK,CAAC,UAAU,EAAE,CAAC;YACnB,GAAG,CAAC,UAAU,GAAG,MAAM,CAAC,UAAU,EAAE,MAAM;gBACtC,CAAC,CAAC,MAAM,CAAC,UAAU,CAAC,MAAM,CAAC,CAAC,EAAE,EAAE,EAAE,CAAC,KAAK,CAAC,UAAW,CAAC,QAAQ,CAAC,EAAE,CAAC,CAAC;gBAClE,CAAC,CAAC,CAAC,GAAG,KAAK,CAAC,UAAU,CAAC,CAAC;QAChC,CAAC;QACD,IAAI,KAAK,CAAC,SAAS,EAAE,CAAC;YAClB,GAAG,CAAC,SAAS,GAAG,MAAM,CAAC,SAAS,EAAE,MAAM;gBACpC,CAAC,CAAC,MAAM,CAAC,SAAS,CAAC,MAAM,CAAC,CAAC,QAAQ,EAAE,EAAE,CACnC,KAAK,CAAC,SAAU,CAAC,IAAI,CAAC,CAAC,SAAS,EAAE,EAAE,CAAC,QAAQ,CAAC,UAAU,CAAC,SAAS,CAAC,IAAI,SAAS,CAAC,UAAU,CAAC,QAAQ,CAAC,CAAC,CACzG;gBACD,CAAC,CAAC,CAAC,GAAG,KAAK,CAAC,SAAS,CAAC,CAAC;QAC/B,CAAC;QACD,IAAI,KAAK,CAAC,KAAK,KAAK,SAAS,EAAE,CAAC;YAC5B,GAAG,CAAC,KAAK,GAAG,MAAM,CAAC,KAAK,KAAK,SAAS,CAAC,CAAC,CAAC,IAAI,CAAC,GAAG,CAAC,MAAM,CAAC,KAAK,EAAE,KAAK,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,KAAK,CAAC,KAAK,CAAC;QAC/F,CAAC;QACD,IAAI,KAAK,CAAC,QAAQ,KAAK,SAAS,EAAE,CAAC;YAC/B,GAAG,CAAC,QAAQ,GAAG,MAAM,CAAC,QAAQ,KAAK,SAAS,CAAC,CAAC,CAAC,IAAI,CAAC,GAAG,CAAC,MAAM,CAAC,QAAQ,EAAE,KAAK,CAAC,QAAQ,CAAC,CAAC,CAAC,CAAC,KAAK,CAAC,QAAQ,CAAC;QAC9G,CAAC;QACD,IAAI,KAAK,CAAC,SAAS,KAAK,SAAS,EAAE,CAAC;YAChC,GAAG,CAAC,SAAS,GAAG,MAAM,CAAC,SAAS,KAAK,SAAS,CAAC,CAAC,CAAC,IAAI,CAAC,GAAG,CAAC,MAAM,CAAC,SAAS,EAAE,KAAK,CAAC,SAAS,CAAC,CAAC,CAAC,CAAC,KAAK,CAAC,SAAS,CAAC;QACnH,CAAC;QACD,IAAI,KAAK,CAAC,UAAU,KAAK,SAAS,EAAE,CAAC;YACjC,GAAG,CAAC,UAAU,GAAG,MAAM,CAAC,UAAU,IAAI,KAAK,CAAC,UAAU,CAAC;QAC3D,CAAC;QACD,IAAI,KAAK,CAAC,aAAa,EAAE,CAAC;YACtB,GAAG,CAAC,aAAa,GAAG,MAAM,CAAC,aAAa,EAAE,MAAM;gBAC5C,CAAC,CAAC,MAAM,CAAC,aAAa,CAAC,MAAM,CAAC,CAAC,KAAK,EAAE,EAAE,CAAC,KAAK,CAAC,aAAc,CAAC,QAAQ,CAAC,KAAK,CAAC,CAAC;gBAC9E,CAAC,CAAC,CAAC,GAAG,KAAK,CAAC,aAAa,CAAC,CAAC;QACnC,CAAC;QACD,OAAO,GAAG,CAAC;IACf,CAAC;CACJ"}

package/dist/persona/domains.d.ts

@@ -0,0 +1,22 @@
+import type { PersonaDomain, PersonaRedactionOperation } from './types.js';
+interface DomainPamuPolicy {
+    shortTermWindow: number;
+    emaAlpha: number;
+    promoteThreshold: number;
+}
+export interface DomainPolicy {
+    name: PersonaDomain;
+    sensitive: boolean;
+    defaultPrivacy: 'private' | 'federation' | 'public';
+    retentionDays: number;
+    allowShare: boolean;
+    redactFields: string[];
+    redactionByOperation: Record<PersonaRedactionOperation, string[]>;
+    pamu: DomainPamuPolicy;
+}
+export declare const DOMAIN_POLICIES: Record<PersonaDomain, DomainPolicy>;
+export declare function getDomainPolicy(domain: PersonaDomain): DomainPolicy;
+export declare function redactByDomain<T extends Record<string, any>>(domain: PersonaDomain, data: T): T;
+export declare function redactByDomainOperation<T extends Record<string, any>>(domain: PersonaDomain, data: T, operation: PersonaRedactionOperation): T;
+export {};
+//# sourceMappingURL=domains.d.ts.map

package/dist/persona/domains.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"domains.d.ts","sourceRoot":"","sources":["../../src/persona/domains.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,aAAa,EAAE,yBAAyB,EAAE,MAAM,YAAY,CAAC;AAE3E,UAAU,gBAAgB;IACtB,eAAe,EAAE,MAAM,CAAC;IACxB,QAAQ,EAAE,MAAM,CAAC;IACjB,gBAAgB,EAAE,MAAM,CAAC;CAC5B;AAED,MAAM,WAAW,YAAY;IACzB,IAAI,EAAE,aAAa,CAAC;IACpB,SAAS,EAAE,OAAO,CAAC;IACnB,cAAc,EAAE,SAAS,GAAG,YAAY,GAAG,QAAQ,CAAC;IACpD,aAAa,EAAE,MAAM,CAAC;IACtB,UAAU,EAAE,OAAO,CAAC;IACpB,YAAY,EAAE,MAAM,EAAE,CAAC;IACvB,oBAAoB,EAAE,MAAM,CAAC,yBAAyB,EAAE,MAAM,EAAE,CAAC,CAAC;IAClE,IAAI,EAAE,gBAAgB,CAAC;CAC1B;AAED,eAAO,MAAM,eAAe,EAAE,MAAM,CAAC,aAAa,EAAE,YAAY,CA6I/D,CAAC;AAEF,wBAAgB,eAAe,CAAC,MAAM,EAAE,aAAa,GAAG,YAAY,CAEnE;AAED,wBAAgB,cAAc,CAAC,CAAC,SAAS,MAAM,CAAC,MAAM,EAAE,GAAG,CAAC,EAAE,MAAM,EAAE,aAAa,EAAE,IAAI,EAAE,CAAC,GAAG,CAAC,CAE/F;AAED,wBAAgB,uBAAuB,CAAC,CAAC,SAAS,MAAM,CAAC,MAAM,EAAE,GAAG,CAAC,EACjE,MAAM,EAAE,aAAa,EACrB,IAAI,EAAE,CAAC,EACP,SAAS,EAAE,yBAAyB,GACrC,CAAC,CA0BH"}

package/dist/persona/domains.js

@@ -0,0 +1,176 @@
+export const DOMAIN_POLICIES = {
+    health: {
+        name: 'health',
+        sensitive: true,
+        defaultPrivacy: 'private',
+        retentionDays: 3650,
+        allowShare: true,
+        redactFields: ['content', 'metadata.diagnosis', 'metadata.biometric'],
+        redactionByOperation: {
+            read: ['metadata.biometric'],
+            share: ['content', 'metadata.diagnosis', 'metadata.biometric'],
+            export: ['content', 'metadata.diagnosis', 'metadata.biometric', 'metadata.patientId'],
+        },
+        pamu: { shortTermWindow: 80, emaAlpha: 0.2, promoteThreshold: 2 },
+    },
+    work: {
+        name: 'work',
+        sensitive: false,
+        defaultPrivacy: 'federation',
+        retentionDays: 3650,
+        allowShare: true,
+        redactFields: [],
+        redactionByOperation: {
+            read: [],
+            share: [],
+            export: [],
+        },
+        pamu: { shortTermWindow: 60, emaAlpha: 0.18, promoteThreshold: 2 },
+    },
+    social: {
+        name: 'social',
+        sensitive: false,
+        defaultPrivacy: 'federation',
+        retentionDays: 3650,
+        allowShare: true,
+        redactFields: [],
+        redactionByOperation: {
+            read: [],
+            share: [],
+            export: [],
+        },
+        pamu: { shortTermWindow: 60, emaAlpha: 0.15, promoteThreshold: 3 },
+    },
+    family: {
+        name: 'family',
+        sensitive: true,
+        defaultPrivacy: 'private',
+        retentionDays: 3650,
+        allowShare: true,
+        redactFields: ['content', 'metadata.children', 'metadata.address'],
+        redactionByOperation: {
+            read: ['metadata.address'],
+            share: ['content', 'metadata.children', 'metadata.address'],
+            export: ['content', 'metadata.children', 'metadata.address'],
+        },
+        pamu: { shortTermWindow: 70, emaAlpha: 0.16, promoteThreshold: 2 },
+    },
+    finance: {
+        name: 'finance',
+        sensitive: true,
+        defaultPrivacy: 'private',
+        retentionDays: 3650,
+        allowShare: false,
+        redactFields: ['content', 'metadata.account', 'metadata.balance', 'metadata.card'],
+        redactionByOperation: {
+            read: ['metadata.account', 'metadata.card'],
+            share: ['content', 'metadata.account', 'metadata.balance', 'metadata.card'],
+            export: ['content', 'metadata.account', 'metadata.balance', 'metadata.card', 'metadata.iban'],
+        },
+        pamu: { shortTermWindow: 90, emaAlpha: 0.12, promoteThreshold: 2 },
+    },
+    learning: {
+        name: 'learning',
+        sensitive: false,
+        defaultPrivacy: 'federation',
+        retentionDays: 3650,
+        allowShare: true,
+        redactFields: [],
+        redactionByOperation: {
+            read: [],
+            share: [],
+            export: [],
+        },
+        pamu: { shortTermWindow: 55, emaAlpha: 0.2, promoteThreshold: 2 },
+    },
+    travel: {
+        name: 'travel',
+        sensitive: true,
+        defaultPrivacy: 'private',
+        retentionDays: 3650,
+        allowShare: true,
+        redactFields: ['metadata.passport', 'metadata.location'],
+        redactionByOperation: {
+            read: ['metadata.passport'],
+            share: ['metadata.passport', 'metadata.location'],
+            export: ['metadata.passport', 'metadata.location', 'content'],
+        },
+        pamu: { shortTermWindow: 50, emaAlpha: 0.15, promoteThreshold: 3 },
+    },
+    identity: {
+        name: 'identity',
+        sensitive: true,
+        defaultPrivacy: 'private',
+        retentionDays: 3650,
+        allowShare: true,
+        redactFields: ['content', 'metadata.document', 'metadata.birthdate'],
+        redactionByOperation: {
+            read: ['metadata.document'],
+            share: ['content', 'metadata.document', 'metadata.birthdate'],
+            export: ['content', 'metadata.document', 'metadata.birthdate', 'metadata.nationalId'],
+        },
+        pamu: { shortTermWindow: 100, emaAlpha: 0.1, promoteThreshold: 2 },
+    },
+    preferences: {
+        name: 'preferences',
+        sensitive: false,
+        defaultPrivacy: 'federation',
+        retentionDays: 3650,
+        allowShare: true,
+        redactFields: [],
+        redactionByOperation: {
+            read: [],
+            share: [],
+            export: [],
+        },
+        pamu: { shortTermWindow: 45, emaAlpha: 0.25, promoteThreshold: 2 },
+    },
+    general: {
+        name: 'general',
+        sensitive: false,
+        defaultPrivacy: 'federation',
+        retentionDays: 3650,
+        allowShare: true,
+        redactFields: [],
+        redactionByOperation: {
+            read: [],
+            share: [],
+            export: [],
+        },
+        pamu: { shortTermWindow: 50, emaAlpha: 0.15, promoteThreshold: 3 },
+    },
+};
+export function getDomainPolicy(domain) {
+    return DOMAIN_POLICIES[domain] || DOMAIN_POLICIES.general;
+}
+export function redactByDomain(domain, data) {
+    return redactByDomainOperation(domain, data, 'share');
+}
+export function redactByDomainOperation(domain, data, operation) {
+    const policy = getDomainPolicy(domain);
+    const redactionFields = policy.redactionByOperation[operation] || policy.redactFields || [];
+    if (!policy.sensitive || redactionFields.length === 0) {
+        return data;
+    }
+    const clone = { ...data };
+    for (const field of redactionFields) {
+        const parts = field.split('.');
+        if (parts.length === 1) {
+            if (parts[0] in clone)
+                clone[parts[0]] = '[REDACTED]';
+            continue;
+        }
+        let cursor = clone;
+        for (let i = 0; i < parts.length - 1; i++) {
+            cursor = cursor?.[parts[i]];
+            if (!cursor || typeof cursor !== 'object')
+                break;
+        }
+        const leaf = parts[parts.length - 1];
+        if (cursor && typeof cursor === 'object' && leaf in cursor) {
+            cursor[leaf] = '[REDACTED]';
+        }
+    }
+    return clone;
+}
+//# sourceMappingURL=domains.js.map

package/dist/persona/domains.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"domains.js","sourceRoot":"","sources":["../../src/persona/domains.ts"],"names":[],"mappings":"AAmBA,MAAM,CAAC,MAAM,eAAe,GAAwC;IAChE,MAAM,EAAE;QACJ,IAAI,EAAE,QAAQ;QACd,SAAS,EAAE,IAAI;QACf,cAAc,EAAE,SAAS;QACzB,aAAa,EAAE,IAAI;QACnB,UAAU,EAAE,IAAI;QAChB,YAAY,EAAE,CAAC,SAAS,EAAE,oBAAoB,EAAE,oBAAoB,CAAC;QACrE,oBAAoB,EAAE;YAClB,IAAI,EAAE,CAAC,oBAAoB,CAAC;YAC5B,KAAK,EAAE,CAAC,SAAS,EAAE,oBAAoB,EAAE,oBAAoB,CAAC;YAC9D,MAAM,EAAE,CAAC,SAAS,EAAE,oBAAoB,EAAE,oBAAoB,EAAE,oBAAoB,CAAC;SACxF;QACD,IAAI,EAAE,EAAE,eAAe,EAAE,EAAE,EAAE,QAAQ,EAAE,GAAG,EAAE,gBAAgB,EAAE,CAAC,EAAE;KACpE;IACD,IAAI,EAAE;QACF,IAAI,EAAE,MAAM;QACZ,SAAS,EAAE,KAAK;QAChB,cAAc,EAAE,YAAY;QAC5B,aAAa,EAAE,IAAI;QACnB,UAAU,EAAE,IAAI;QAChB,YAAY,EAAE,EAAE;QAChB,oBAAoB,EAAE;YAClB,IAAI,EAAE,EAAE;YACR,KAAK,EAAE,EAAE;YACT,MAAM,EAAE,EAAE;SACb;QACD,IAAI,EAAE,EAAE,eAAe,EAAE,EAAE,EAAE,QAAQ,EAAE,IAAI,EAAE,gBAAgB,EAAE,CAAC,EAAE;KACrE;IACD,MAAM,EAAE;QACJ,IAAI,EAAE,QAAQ;QACd,SAAS,EAAE,KAAK;QAChB,cAAc,EAAE,YAAY;QAC5B,aAAa,EAAE,IAAI;QACnB,UAAU,EAAE,IAAI;QAChB,YAAY,EAAE,EAAE;QAChB,oBAAoB,EAAE;YAClB,IAAI,EAAE,EAAE;YACR,KAAK,EAAE,EAAE;YACT,MAAM,EAAE,EAAE;SACb;QACD,IAAI,EAAE,EAAE,eAAe,EAAE,EAAE,EAAE,QAAQ,EAAE,IAAI,EAAE,gBAAgB,EAAE,CAAC,EAAE;KACrE;IACD,MAAM,EAAE;QACJ,IAAI,EAAE,QAAQ;QACd,SAAS,EAAE,IAAI;QACf,cAAc,EAAE,SAAS;QACzB,aAAa,EAAE,IAAI;QACnB,UAAU,EAAE,IAAI;QAChB,YAAY,EAAE,CAAC,SAAS,EAAE,mBAAmB,EAAE,kBAAkB,CAAC;QAClE,oBAAoB,EAAE;YAClB,IAAI,EAAE,CAAC,kBAAkB,CAAC;YAC1B,KAAK,EAAE,CAAC,SAAS,EAAE,mBAAmB,EAAE,kBAAkB,CAAC;YAC3D,MAAM,EAAE,CAAC,SAAS,EAAE,mBAAmB,EAAE,kBAAkB,CAAC;SAC/D;QACD,IAAI,EAAE,EAAE,eAAe,EAAE,EAAE,EAAE,QAAQ,EAAE,IAAI,EAAE,gBAAgB,EAAE,CAAC,EAAE;KACrE;IACD,OAAO,EAAE;QACL,IAAI,EAAE,SAAS;QACf,SAAS,EAAE,IAAI;QACf,cAAc,EAAE,SAAS;QACzB,aAAa,EAAE,IAAI;QACnB,UAAU,EAAE,KAAK;QACjB,YAAY,EAAE,CAAC,SAAS,EAAE,kBAAkB,EAAE,kBAAkB,EAAE,eAAe,CAAC;QAClF,oBAAoB,EAAE;YAClB,IAAI,EAAE,CAAC,kBAAkB,EAAE,eAAe,CAAC;YAC3C,KAAK,EAAE,CAAC,SAAS,EAAE,kBAAkB,EAAE,kBAAkB,EAAE,eAAe,CAAC;YAC3E,MAAM,EAAE,CAAC,SAAS,EAAE,kBAAkB,EAAE,kBAAkB,EAAE,eAAe,EAAE,eAAe,CAAC;SAChG;QACD,IAAI,EAAE,EAAE,eAAe,EAAE,EAAE,EAAE,QAAQ,EAAE,IAAI,EAAE,gBAAgB,EAAE,CAAC,EAAE;KACrE;IACD,QAAQ,EAAE;QACN,IAAI,EAAE,UAAU;QAChB,SAAS,EAAE,KAAK;QAChB,cAAc,EAAE,YAAY;QAC5B,aAAa,EAAE,IAAI;QACnB,UAAU,EAAE,IAAI;QAChB,YAAY,EAAE,EAAE;QAChB,oBAAoB,EAAE;YAClB,IAAI,EAAE,EAAE;YACR,KAAK,EAAE,EAAE;YACT,MAAM,EAAE,EAAE;SACb;QACD,IAAI,EAAE,EAAE,eAAe,EAAE,EAAE,EAAE,QAAQ,EAAE,GAAG,EAAE,gBAAgB,EAAE,CAAC,EAAE;KACpE;IACD,MAAM,EAAE;QACJ,IAAI,EAAE,QAAQ;QACd,SAAS,EAAE,IAAI;QACf,cAAc,EAAE,SAAS;QACzB,aAAa,EAAE,IAAI;QACnB,UAAU,EAAE,IAAI;QAChB,YAAY,EAAE,CAAC,mBAAmB,EAAE,mBAAmB,CAAC;QACxD,oBAAoB,EAAE;YAClB,IAAI,EAAE,CAAC,mBAAmB,CAAC;YAC3B,KAAK,EAAE,CAAC,mBAAmB,EAAE,mBAAmB,CAAC;YACjD,MAAM,EAAE,CAAC,mBAAmB,EAAE,mBAAmB,EAAE,SAAS,CAAC;SAChE;QACD,IAAI,EAAE,EAAE,eAAe,EAAE,EAAE,EAAE,QAAQ,EAAE,IAAI,EAAE,gBAAgB,EAAE,CAAC,EAAE;KACrE;IACD,QAAQ,EAAE;QACN,IAAI,EAAE,UAAU;QAChB,SAAS,EAAE,IAAI;QACf,cAAc,EAAE,SAAS;QACzB,aAAa,EAAE,IAAI;QACnB,UAAU,EAAE,IAAI;QAChB,YAAY,EAAE,CAAC,SAAS,EAAE,mBAAmB,EAAE,oBAAoB,CAAC;QACpE,oBAAoB,EAAE;YAClB,IAAI,EAAE,CAAC,mBAAmB,CAAC;YAC3B,KAAK,EAAE,CAAC,SAAS,EAAE,mBAAmB,EAAE,oBAAoB,CAAC;YAC7D,MAAM,EAAE,CAAC,SAAS,EAAE,mBAAmB,EAAE,oBAAoB,EAAE,qBAAqB,CAAC;SACxF;QACD,IAAI,EAAE,EAAE,eAAe,EAAE,GAAG,EAAE,QAAQ,EAAE,GAAG,EAAE,gBAAgB,EAAE,CAAC,EAAE;KACrE;IACD,WAAW,EAAE;QACT,IAAI,EAAE,aAAa;QACnB,SAAS,EAAE,KAAK;QAChB,cAAc,EAAE,YAAY;QAC5B,aAAa,EAAE,IAAI;QACnB,UAAU,EAAE,IAAI;QAChB,YAAY,EAAE,EAAE;QAChB,oBAAoB,EAAE;YAClB,IAAI,EAAE,EAAE;YACR,KAAK,EAAE,EAAE;YACT,MAAM,EAAE,EAAE;SACb;QACD,IAAI,EAAE,EAAE,eAAe,EAAE,EAAE,EAAE,QAAQ,EAAE,IAAI,EAAE,gBAAgB,EAAE,CAAC,EAAE;KACrE;IACD,OAAO,EAAE;QACL,IAAI,EAAE,SAAS;QACf,SAAS,EAAE,KAAK;QAChB,cAAc,EAAE,YAAY;QAC5B,aAAa,EAAE,IAAI;QACnB,UAAU,EAAE,IAAI;QAChB,YAAY,EAAE,EAAE;QAChB,oBAAoB,EAAE;YAClB,IAAI,EAAE,EAAE;YACR,KAAK,EAAE,EAAE;YACT,MAAM,EAAE,EAAE;SACb;QACD,IAAI,EAAE,EAAE,eAAe,EAAE,EAAE,EAAE,QAAQ,EAAE,IAAI,EAAE,gBAAgB,EAAE,CAAC,EAAE;KACrE;CACJ,CAAC;AAEF,MAAM,UAAU,eAAe,CAAC,MAAqB;IACjD,OAAO,eAAe,CAAC,MAAM,CAAC,IAAI,eAAe,CAAC,OAAO,CAAC;AAC9D,CAAC;AAED,MAAM,UAAU,cAAc,CAAgC,MAAqB,EAAE,IAAO;IACxF,OAAO,uBAAuB,CAAC,MAAM,EAAE,IAAI,EAAE,OAAO,CAAC,CAAC;AAC1D,CAAC;AAED,MAAM,UAAU,uBAAuB,CACnC,MAAqB,EACrB,IAAO,EACP,SAAoC;IAEpC,MAAM,MAAM,GAAG,eAAe,CAAC,MAAM,CAAC,CAAC;IACvC,MAAM,eAAe,GAAG,MAAM,CAAC,oBAAoB,CAAC,SAAS,CAAC,IAAI,MAAM,CAAC,YAAY,IAAI,EAAE,CAAC;IAC5F,IAAI,CAAC,MAAM,CAAC,SAAS,IAAI,eAAe,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;QACpD,OAAO,IAAI,CAAC;IAChB,CAAC;IAED,MAAM,KAAK,GAAwB,EAAE,GAAG,IAAI,EAAE,CAAC;IAC/C,KAAK,MAAM,KAAK,IAAI,eAAe,EAAE,CAAC;QAClC,MAAM,KAAK,GAAG,KAAK,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC;QAC/B,IAAI,KAAK,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;YACrB,IAAI,KAAK,CAAC,CAAC,CAAC,IAAI,KAAK;gBAAE,KAAK,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,GAAG,YAAY,CAAC;YACtD,SAAS;QACb,CAAC;QACD,IAAI,MAAM,GAAQ,KAAK,CAAC;QACxB,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,KAAK,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC,EAAE,EAAE,CAAC;YACxC,MAAM,GAAG,MAAM,EAAE,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC;YAC5B,IAAI,CAAC,MAAM,IAAI,OAAO,MAAM,KAAK,QAAQ;gBAAE,MAAM;QACrD,CAAC;QACD,MAAM,IAAI,GAAG,KAAK,CAAC,KAAK,CAAC,MAAM,GAAG,CAAC,CAAC,CAAC;QACrC,IAAI,MAAM,IAAI,OAAO,MAAM,KAAK,QAAQ,IAAI,IAAI,IAAI,MAAM,EAAE,CAAC;YACzD,MAAM,CAAC,IAAI,CAAC,GAAG,YAAY,CAAC;QAChC,CAAC;IACL,CAAC;IAED,OAAO,KAAU,CAAC;AACtB,CAAC"}

package/dist/persona/embeddings.d.ts

@@ -0,0 +1,40 @@
+export interface EmbeddingServiceConfig {
+    modelId?: string;
+    dim?: number;
+    onnxModelPath?: string;
+    onnxVocabPath?: string;
+    maxTokens?: number;
+    onnxSession?: any;
+    tokenizer?: {
+        encode(text: string, maxTokens: number): {
+            inputIds: number[];
+            attentionMask: number[];
+            tokenTypeIds: number[];
+        };
+    };
+}
+export interface EmbeddingResult {
+    vector: number[];
+    model: string;
+    dim: number;
+    runtime: 'onnx' | 'fallback-hash';
+}
+export declare class PersonaEmbeddingService {
+    private readonly dim;
+    private readonly modelId;
+    private readonly onnxModelPath?;
+    private readonly onnxVocabPath?;
+    private readonly maxTokens;
+    private onnxSession;
+    private ort;
+    private tokenizer;
+    private initialized;
+    constructor(config?: EmbeddingServiceConfig);
+    embedText(text: string): Promise<EmbeddingResult>;
+    private ensureInitialized;
+    private resolveVocabPath;
+    private makeIntTensor;
+    private embedWithOnnx;
+}
+export declare function vectorToJson(vector: number[]): string;
+//# sourceMappingURL=embeddings.d.ts.map

package/dist/persona/embeddings.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"embeddings.d.ts","sourceRoot":"","sources":["../../src/persona/embeddings.ts"],"names":[],"mappings":"AA0BA,MAAM,WAAW,sBAAsB;IACnC,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,GAAG,CAAC,EAAE,MAAM,CAAC;IACb,aAAa,CAAC,EAAE,MAAM,CAAC;IACvB,aAAa,CAAC,EAAE,MAAM,CAAC;IACvB,SAAS,CAAC,EAAE,MAAM,CAAC;IACnB,WAAW,CAAC,EAAE,GAAG,CAAC;IAClB,SAAS,CAAC,EAAE;QACR,MAAM,CAAC,IAAI,EAAE,MAAM,EAAE,SAAS,EAAE,MAAM,GAAG;YACrC,QAAQ,EAAE,MAAM,EAAE,CAAC;YACnB,aAAa,EAAE,MAAM,EAAE,CAAC;YACxB,YAAY,EAAE,MAAM,EAAE,CAAC;SAC1B,CAAC;KACL,CAAC;CACL;AAED,MAAM,WAAW,eAAe;IAC5B,MAAM,EAAE,MAAM,EAAE,CAAC;IACjB,KAAK,EAAE,MAAM,CAAC;IACd,GAAG,EAAE,MAAM,CAAC;IACZ,OAAO,EAAE,MAAM,GAAG,eAAe,CAAC;CACrC;AAED,qBAAa,uBAAuB;IAChC,OAAO,CAAC,QAAQ,CAAC,GAAG,CAAS;IAC7B,OAAO,CAAC,QAAQ,CAAC,OAAO,CAAS;IACjC,OAAO,CAAC,QAAQ,CAAC,aAAa,CAAC,CAAS;IACxC,OAAO,CAAC,QAAQ,CAAC,aAAa,CAAC,CAAS;IACxC,OAAO,CAAC,QAAQ,CAAC,SAAS,CAAS;IACnC,OAAO,CAAC,WAAW,CAAoB;IACvC,OAAO,CAAC,GAAG,CAAoB;IAC/B,OAAO,CAAC,SAAS,CAQC;IAClB,OAAO,CAAC,WAAW,CAAS;gBAEhB,MAAM,GAAE,sBAA2B;IAUzC,SAAS,CAAC,IAAI,EAAE,MAAM,GAAG,OAAO,CAAC,eAAe,CAAC;YA2BzC,iBAAiB;IAmC/B,OAAO,CAAC,gBAAgB;IAUxB,OAAO,CAAC,aAAa;YAeP,aAAa;CA+B9B;AAED,wBAAgB,YAAY,CAAC,MAAM,EAAE,MAAM,EAAE,GAAG,MAAM,CAErD"}