+3 -5

.tangled/workflows/deploy-docs.yml

··· 6 6 7 7 dependencies: 8 8 nixpkgs: 9 9 - - nodejs 10 10 - - coreutils 9 9 + - bun 11 10 - curl 12 11 13 12 environment: 14 14 - # Use DID directly to avoid handle-resolution issues in CI. 15 13 WISP_DID: "did:plc:mkqt76xvfgxuemlwlx6ruc3w" 16 14 WISP_SITE_NAME: "docs" 17 15 18 16 steps: 19 19 - - name: build docs site 17 17 + - name: build site 20 18 command: | 21 21 - node ./scripts/build-wisp-docs.mjs 19 19 + bun ./scripts/build-site.mjs 22 20 23 21 - name: deploy docs to wisp 24 22 command: |

+15

.tangled/workflows/publish-docs.yml

··· 1 1 + when: 2 2 + - event: push 3 3 + tag: "v*" 4 4 + 5 5 + engine: nixery 6 6 + 7 7 + dependencies: 8 8 + nixpkgs: 9 9 + - zig 10 10 + 11 11 + steps: 12 12 + - name: build and publish docs to ATProto 13 13 + command: | 14 14 + zig build 15 15 + ./zig-out/bin/publish-docs

+10 -72

CHANGELOG.md

··· 1 1 # changelog 2 2 3 3 - ## 0.1.0 3 3 + ## 0.1.2 4 4 + 5 5 + - `extractAt` now logs diagnostic info on parse failures (enable with `.zat` debug scope) 6 6 + 7 7 + ## 0.1.1 4 8 5 5 - first feature release. adds protocol-level enums for firehose consumption. 9 9 + - xrpc client sets `Content-Type: application/json` for POST requests 10 10 + - docs published as `site.standard.document` records on tag releases 6 11 7 7 - ### what's new 12 12 + ## 0.1.0 8 13 9 9 - **sync types** - enums from `com.atproto.sync.subscribeRepos` lexicon: 14 14 + sync types for firehose consumption: 10 15 11 16 - `CommitAction` - `.create`, `.update`, `.delete` 12 17 - `EventKind` - `.commit`, `.sync`, `.identity`, `.account`, `.info` 13 18 - `AccountStatus` - `.takendown`, `.suspended`, `.deleted`, `.deactivated`, `.desynchronized`, `.throttled` 14 19 15 15 - these integrate with zig's `std.json` for automatic parsing. define struct fields as enums instead of strings, and get exhaustive switch checking. 16 16 - 17 17 - ### migration 18 18 - 19 19 - if you're currently doing string comparisons: 20 20 - 21 21 - ```zig 22 22 - // before: string comparisons everywhere 23 23 - const TapRecord = struct { 24 24 - action: []const u8, 25 25 - collection: []const u8, 26 26 - // ... 27 27 - }; 28 28 - 29 29 - if (mem.eql(u8, rec.action, "create") or mem.eql(u8, rec.action, "update")) { 30 30 - // handle upsert 31 31 - } else if (mem.eql(u8, rec.action, "delete")) { 32 32 - // handle delete 33 33 - } 34 34 - ``` 35 35 - 36 36 - switch to enum fields: 37 37 - 38 38 - ```zig 39 39 - // after: type-safe enums 40 40 - const TapRecord = struct { 41 41 - action: zat.CommitAction, // parsed automatically by std.json 42 42 - collection: []const u8, 43 43 - // ... 44 44 - }; 45 45 - 46 46 - switch (rec.action) { 47 47 - .create, .update => processUpsert(rec), 48 48 - .delete => processDelete(rec), 49 49 - } 50 50 - ``` 51 51 - 52 52 - the compiler enforces exhaustive handling - if AT Protocol adds a new action, your code won't compile until you handle it. 53 53 - 54 54 - **this is backwards compatible.** your existing code continues to work. adopt the new types when you're ready. 55 55 - 56 56 - ### library overview 57 57 - 58 58 - zat provides zig primitives for AT Protocol: 59 59 - 60 60 - | feature | description | 61 61 - |---------|-------------| 62 62 - | string primitives | `Tid`, `Did`, `Handle`, `Nsid`, `Rkey`, `AtUri` - parsing and validation | 63 63 - | did resolution | resolve `did:plc` and `did:web` to documents | 64 64 - | handle resolution | resolve handles to DIDs via HTTP well-known | 65 65 - | xrpc client | call AT Protocol endpoints (queries and procedures) | 66 66 - | sync types | enums for firehose consumption | 67 67 - | json helpers | navigate nested json without verbose if-chains | 68 68 - | jwt verification | verify service auth tokens (ES256, ES256K) | 69 69 - | multibase/multicodec | decode public keys from DID documents | 70 70 - 71 71 - ### install 72 72 - 73 73 - ```bash 74 74 - zig fetch --save https://tangled.sh/zzstoatzz.io/zat/archive/main 75 75 - ``` 76 76 - 77 77 - ```zig 78 78 - // build.zig 79 79 - const zat = b.dependency("zat", .{}).module("zat"); 80 80 - exe.root_module.addImport("zat", zat); 81 81 - ``` 20 20 + these integrate with `std.json` for automatic parsing. 82 21 83 22 ## 0.0.2 84 23 ··· 87 26 88 27 ## 0.0.1 89 28 90 90 - - initial release 91 29 - string primitives (Tid, Did, Handle, Nsid, Rkey, AtUri) 92 30 - did/handle resolution 93 31 - json helpers

+15

CONTRIBUTING.md

··· 1 1 + # contributing 2 2 + 3 3 + ## before committing 4 4 + 5 5 + ```sh 6 6 + just fmt 7 7 + ``` 8 8 + 9 9 + or without just: 10 10 + 11 11 + ```sh 12 12 + zig fmt . 13 13 + ``` 14 14 + 15 15 + CI runs `zig fmt --check .` and will fail on unformatted code.

+16 -3

README.md

··· 1 1 - # zat 1 1 + # [zat](https://zat.dev) 2 2 + 3 3 + AT Protocol building blocks for zig. 4 4 + 5 5 + <details> 6 6 + <summary><strong>this readme is an ATProto record</strong></summary> 7 7 + 8 8 + → [view in zat.dev's repository](https://at-me.zzstoatzz.io/view?handle=zat.dev) 2 9 3 3 - zig primitives for AT Protocol. 10 10 + zat publishes these docs as [`site.standard.document`](https://standard.site) records, signed by its DID. 11 11 + 12 12 + </details> 4 13 5 14 ## install 6 15 7 16 ```bash 8 8 - zig fetch --save https://tangled.sh/zzstoatzz.io/zat/archive/main 17 17 + zig fetch --save https://tangled.sh/zat.dev/zat/archive/main 9 18 ``` 10 19 11 20 then in `build.zig`: ··· 185 194 ## license 186 195 187 196 MIT 197 197 + 198 198 + --- 199 199 + 200 200 + [roadmap](docs/roadmap.md) · [changelog](CHANGELOG.md)

+12

build.zig

··· 15 15 16 16 const test_step = b.step("test", "run unit tests"); 17 17 test_step.dependOn(&run_tests.step); 18 18 + 19 19 + // publish-docs script (uses zat to publish docs to ATProto) 20 20 + const publish_docs = b.addExecutable(.{ 21 21 + .name = "publish-docs", 22 22 + .root_module = b.createModule(.{ 23 23 + .root_source_file = b.path("scripts/publish-docs.zig"), 24 24 + .target = target, 25 25 + .optimize = optimize, 26 26 + .imports = &.{.{ .name = "zat", .module = mod }}, 27 27 + }), 28 28 + }); 29 29 + b.installArtifact(publish_docs); 18 30 }

+35

devlog/001-self-publishing-docs.md

··· 1 1 + # zat publishes its own docs to ATProto 2 2 + 3 3 + zat uses itself to publish these docs as `site.standard.document` records. here's how. 4 4 + 5 5 + ## the idea 6 6 + 7 7 + i'm working on [search for leaflet](https://leaflet-search.pages.dev/) and more generally, search for [standard.site](https://standard.site/) records. many are [currently thinking about how to facilitate better idea sharing on atproto right now](https://bsky.app/profile/eugenevinitsky.bsky.social/post/3mbpqpylv3s2e). 8 8 + 9 9 + this is me doing a rep of shipping a "standard.site", so i know what i'll be searching through, and to better understand why blogging platforms choose their schema extensions etc for i start indexing/searching their record types. 10 10 + 11 11 + ## what we built 12 12 + 13 13 + a zig script ([`scripts/publish-docs.zig`](https://tangled.sh/zat.dev/zat/tree/main/scripts/publish-docs.zig)) that: 14 14 + 15 15 + 1. authenticates with the PDS via `com.atproto.server.createSession` 16 16 + 2. creates a `site.standard.publication` record 17 17 + 3. publishes each doc as a `site.standard.document` pointing to that publication 18 18 + 4. uses deterministic TIDs so records get the same rkey every time (idempotent updates) 19 19 + 20 20 + ## the mechanics 21 21 + 22 22 + ### TIDs 23 23 + 24 24 + timestamp identifiers. base32-sortable. we use a fixed base timestamp with incrementing clock_id so each doc gets a stable rkey: 25 25 + 26 26 + ```zig 27 27 + const pub_tid = zat.Tid.fromTimestamp(1704067200000000, 0); // publication 28 28 + const doc_tid = zat.Tid.fromTimestamp(1704067200000000, i + 1); // docs get 1, 2, 3... 29 29 + ``` 30 30 + 31 31 + ### CI 32 32 + 33 33 + [`.tangled/workflows/publish-docs.yml`](https://tangled.sh/zat.dev/zat/tree/main/.tangled/workflows/publish-docs.yml) triggers on `v*` tags. tag a release, docs publish automatically. 34 34 + 35 35 + `putRecord` with the same rkey overwrites, so the CI job overwrites `standard.site` records when you cut a tag.

+102

docs/archive/plan-expanded.md

··· 1 1 + # archived: expanded plan (partially implemented) 2 2 + 3 3 + This file is preserved for context/history. Current direction lives in `docs/roadmap.md`. 4 4 + 5 5 + # zat - expanded scope 6 6 + 7 7 + the initial release delivered string primitives (Tid, Did, Handle, Nsid, Rkey, AtUri). this plan expands toward a usable AT Protocol sdk. 8 8 + 9 9 + ## motivation 10 10 + 11 11 + real-world usage shows repeated implementations of: 12 12 + - DID resolution (plc.directory lookups, did:web fetches) 13 13 + - JWT parsing and signature verification 14 14 + - ECDSA verification (P256, secp256k1) 15 15 + - base58/base64url decoding 16 16 + - XRPC calls with manual json navigation 17 17 + 18 18 + this is shared infrastructure across any atproto app. zat can absorb it incrementally. 19 19 + 20 20 + ## next: did resolution 21 21 + 22 22 + ```zig 23 23 + pub const DidResolver = struct { 24 24 + /// resolve a did to its document 25 25 + pub fn resolve(self: *DidResolver, did: Did) !DidDocument 26 26 + 27 27 + /// resolve did:plc via plc.directory 28 28 + fn resolvePlc(self: *DidResolver, id: []const u8) !DidDocument 29 29 + 30 30 + /// resolve did:web via .well-known 31 31 + fn resolveWeb(self: *DidResolver, domain: []const u8) !DidDocument 32 32 + }; 33 33 + 34 34 + pub const DidDocument = struct { 35 35 + id: Did, 36 36 + also_known_as: [][]const u8, // handles 37 37 + verification_methods: []VerificationMethod, 38 38 + services: []Service, 39 39 + 40 40 + pub fn pdsEndpoint(self: DidDocument) ?[]const u8 41 41 + pub fn handle(self: DidDocument) ?[]const u8 42 42 + }; 43 43 + ``` 44 44 + 45 45 + ## next: cid (content identifiers) 46 46 + 47 47 + ```zig 48 48 + pub const Cid = struct { 49 49 + raw: []const u8, 50 50 + 51 51 + pub fn parse(s: []const u8) ?Cid 52 52 + pub fn version(self: Cid) u8 53 53 + pub fn codec(self: Cid) u64 54 54 + pub fn hash(self: Cid) []const u8 55 55 + }; 56 56 + ``` 57 57 + 58 58 + ## later: xrpc client 59 59 + 60 60 + ```zig 61 61 + pub const XrpcClient = struct { 62 62 + pds: []const u8, 63 63 + access_token: ?[]const u8, 64 64 + 65 65 + pub fn query(self: *XrpcClient, nsid: Nsid, params: anytype) !JsonValue 66 66 + pub fn procedure(self: *XrpcClient, nsid: Nsid, input: anytype) !JsonValue 67 67 + }; 68 68 + ``` 69 69 + 70 70 + ## later: jwt verification 71 71 + 72 72 + ```zig 73 73 + pub const Jwt = struct { 74 74 + header: JwtHeader, 75 75 + payload: JwtPayload, 76 76 + signature: []const u8, 77 77 + 78 78 + pub fn parse(token: []const u8) ?Jwt 79 79 + pub fn verify(self: Jwt, public_key: PublicKey) bool 80 80 + }; 81 81 + ``` 82 82 + 83 83 + ## out of scope 84 84 + 85 85 + - lexicon codegen (separate project) 86 86 + - session management / token refresh (app-specific) 87 87 + - jetstream client (websocket.zig + json is enough) 88 88 + - application frameworks (too opinionated) 89 89 + 90 90 + ## design principles 91 91 + 92 92 + 1. **layered** - each piece usable independently (use Did without DidResolver) 93 93 + 2. **explicit** - no hidden allocations, pass allocators where needed 94 94 + 3. **borrowing** - parse returns slices into input where possible 95 95 + 4. **fallible** - return errors/optionals, don't panic 96 96 + 5. **protocol-focused** - AT Protocol primitives, not app-specific features 97 97 + 98 98 + ## open questions 99 99 + 100 100 + - should DidResolver cache? or leave that to caller? 101 101 + - should XrpcClient handle auth refresh? or just expose tokens? 102 102 + - how to handle json parsing without imposing a specific json library?

+192

docs/archive/plan-initial.md

··· 1 1 + # archived: initial plan (out of date) 2 2 + 3 3 + This file is preserved for context/history. Current direction lives in `docs/roadmap.md`. 4 4 + 5 5 + # zat - zig atproto primitives 6 6 + 7 7 + low-level building blocks for atproto applications in zig. not a full sdk - just the pieces that everyone reimplements. 8 8 + 9 9 + ## philosophy 10 10 + 11 11 + from studying the wishlists: the pain is real, but the suggested solutions often over-engineer. we want: 12 12 + 13 13 + 1. **primitives, not frameworks** - types and parsers, not http clients or feed scaffolds 14 14 + 2. **layered design** - each piece usable independently 15 15 + 3. **zig idioms** - explicit buffers, comptime validation, no hidden allocations 16 16 + 4. **minimal scope** - solve the repeated pain, not every possible need 17 17 + 18 18 + ## scope 19 19 + 20 20 + ### in scope (v0.1) 21 21 + 22 22 + **tid** - timestamp identifiers 23 23 + - parse tid string to timestamp (microseconds) 24 24 + - generate tid from timestamp 25 25 + - extract clock id 26 26 + - comptime validation of format 27 27 + 28 28 + **at-uri** - `at://did:plc:xyz/collection/rkey` 29 29 + - parse to components (did, collection, rkey) 30 30 + - construct from components 31 31 + - validation 32 32 + 33 33 + **did** - decentralized identifiers 34 34 + - parse did:plc and did:web 35 35 + - validate format 36 36 + - type-safe wrapper (not just `[]const u8`) 37 37 + 38 38 + ### maybe v0.2 39 39 + 40 40 + **facets** - extract links/mentions/tags from post records 41 41 + - given a json value with `text` and `facets`, extract urls 42 42 + - byte-offset handling for utf-8 43 43 + 44 44 + **cid** - content identifiers 45 45 + - parse cid strings 46 46 + - validate format 47 47 + 48 48 + ### out of scope (for now) 49 49 + 50 50 + - lexicon codegen (too big, could be its own project) 51 51 + - xrpc client (std.http.Client is fine) 52 52 + - session management (app-specific) 53 53 + - jetstream client (websocket.zig exists, just wire it) 54 54 + - feed generator framework (each feed is unique) 55 55 + - did resolution (requires http, out of primitive scope) 56 56 + 57 57 + ## design 58 58 + 59 59 + ### tid.zig 60 60 + 61 61 + ```zig 62 62 + pub const Tid = struct { 63 63 + raw: [13]u8, 64 64 + 65 65 + /// parse a tid string. returns null if invalid. 66 66 + pub fn parse(s: []const u8) ?Tid 67 67 + 68 68 + /// timestamp in microseconds since unix epoch 69 69 + pub fn timestamp(self: Tid) u64 70 70 + 71 71 + /// clock identifier (lower 10 bits) 72 72 + pub fn clockId(self: Tid) u10 73 73 + 74 74 + /// generate tid for current time 75 75 + pub fn now() Tid 76 76 + 77 77 + /// generate tid for specific timestamp 78 78 + pub fn fromTimestamp(ts: u64, clock_id: u10) Tid 79 79 + 80 80 + /// format to string 81 81 + pub fn format(self: Tid, buf: *[13]u8) void 82 82 + }; 83 83 + ``` 84 84 + 85 85 + encoding: base32-sortable (chars `234567abcdefghijklmnopqrstuvwxyz`), 13 chars, first 11 encode 53-bit timestamp, last 2 encode 10-bit clock id. 86 86 + 87 87 + ### at_uri.zig 88 88 + 89 89 + ```zig 90 90 + pub const AtUri = struct { 91 91 + /// the full uri string (borrowed, not owned) 92 92 + raw: []const u8, 93 93 + 94 94 + /// offsets into raw for each component 95 95 + did_end: usize, 96 96 + collection_end: usize, 97 97 + 98 98 + pub fn parse(s: []const u8) ?AtUri 99 99 + 100 100 + pub fn did(self: AtUri) []const u8 101 101 + pub fn collection(self: AtUri) []const u8 102 102 + pub fn rkey(self: AtUri) []const u8 103 103 + 104 104 + /// construct a new uri. caller owns the buffer. 105 105 + pub fn format( 106 106 + buf: []u8, 107 107 + did: []const u8, 108 108 + collection: []const u8, 109 109 + rkey: []const u8, 110 110 + ) ?[]const u8 111 111 + }; 112 112 + ``` 113 113 + 114 114 + ### did.zig 115 115 + 116 116 + ```zig 117 117 + pub const Did = union(enum) { 118 118 + plc: [24]u8, // the identifier after "did:plc:" 119 119 + web: []const u8, // the domain after "did:web:" 120 120 + 121 121 + pub fn parse(s: []const u8) ?Did 122 122 + 123 123 + /// format to string 124 124 + pub fn format(self: Did, buf: []u8) ?[]const u8 125 125 + 126 126 + /// check if this is a plc did 127 127 + pub fn isPlc(self: Did) bool 128 128 + }; 129 129 + ``` 130 130 + 131 131 + ## structure 132 132 + 133 133 + ``` 134 134 + zat/ 135 135 + ├── build.zig 136 136 + ├── build.zig.zon 137 137 + ├── src/ 138 138 + │ ├── root.zig # public API (stable exports) 139 139 + │ ├── internal.zig # internal API (experimental) 140 140 + │ └── internal/ 141 141 + │ ├── tid.zig 142 142 + │ ├── at_uri.zig 143 143 + │ └── did.zig 144 144 + └── docs/ 145 145 + └── plan.md 146 146 + ``` 147 147 + 148 148 + ## internal → public promotion 149 149 + 150 150 + new features start in `internal` where we can iterate freely. when an API stabilizes: 151 151 + 152 152 + ```zig 153 153 + // in root.zig, uncomment to promote: 154 154 + pub const Tid = internal.Tid; 155 155 + ``` 156 156 + 157 157 + users who need bleeding-edge access can always use: 158 158 + 159 159 + ```zig 160 160 + const zat = @import("zat"); 161 161 + const tid = zat.internal.Tid.parse("..."); 162 162 + ``` 163 163 + 164 164 + this pattern exists indefinitely - even after 1.0, new experimental features start in internal. 165 165 + 166 166 + ## decisions 167 167 + 168 168 + ### why not typed lexicons? 169 169 + 170 170 + codegen from lexicon json is a big project on its own. the core pain (json navigation) can be partially addressed by documenting patterns, and the sdk should work regardless of how people parse json. 171 171 + 172 172 + ### why not an http client wrapper? 173 173 + 174 174 + zig 0.15's `std.http.Client` with `Io.Writer.Allocating` works well. wrapping it doesn't add much value. the real pain is around auth token refresh and rate limiting - those are better solved at the application level where retry logic is domain-specific. 175 175 + 176 176 + ### why not websocket/jetstream? 177 177 + 178 178 + websocket.zig already exists and works well. the jetstream protocol is simple json messages. a thin wrapper doesn't justify a dependency. 179 179 + 180 180 + ### borrowing vs owning 181 181 + 182 182 + for parse operations, we borrow slices into the input rather than allocating. callers who need owned data can dupe. this matches zig's explicit memory style. 183 183 + 184 184 + ## next steps 185 185 + 186 186 + 1. ~~implement tid.zig with tests~~ done 187 187 + 2. ~~implement at_uri.zig with tests~~ done 188 188 + 3. ~~implement did.zig with tests~~ done 189 189 + 4. ~~wire up build.zig as a module~~ done 190 190 + 5. try using it in find-bufo or music-atmosphere-feed to validate the api 191 191 + 6. iterate on internal APIs based on real usage 192 192 + 7. promote stable APIs to root.zig

-98

docs/plan-expanded.md

··· 1 1 - # zat - expanded scope 2 2 - 3 3 - the initial release delivered string primitives (Tid, Did, Handle, Nsid, Rkey, AtUri). this plan expands toward a usable AT Protocol sdk. 4 4 - 5 5 - ## motivation 6 6 - 7 7 - real-world usage shows repeated implementations of: 8 8 - - DID resolution (plc.directory lookups, did:web fetches) 9 9 - - JWT parsing and signature verification 10 10 - - ECDSA verification (P256, secp256k1) 11 11 - - base58/base64url decoding 12 12 - - XRPC calls with manual json navigation 13 13 - 14 14 - this is shared infrastructure across any atproto app. zat can absorb it incrementally. 15 15 - 16 16 - ## next: did resolution 17 17 - 18 18 - ```zig 19 19 - pub const DidResolver = struct { 20 20 - /// resolve a did to its document 21 21 - pub fn resolve(self: *DidResolver, did: Did) !DidDocument 22 22 - 23 23 - /// resolve did:plc via plc.directory 24 24 - fn resolvePlc(self: *DidResolver, id: []const u8) !DidDocument 25 25 - 26 26 - /// resolve did:web via .well-known 27 27 - fn resolveWeb(self: *DidResolver, domain: []const u8) !DidDocument 28 28 - }; 29 29 - 30 30 - pub const DidDocument = struct { 31 31 - id: Did, 32 32 - also_known_as: [][]const u8, // handles 33 33 - verification_methods: []VerificationMethod, 34 34 - services: []Service, 35 35 - 36 36 - pub fn pdsEndpoint(self: DidDocument) ?[]const u8 37 37 - pub fn handle(self: DidDocument) ?[]const u8 38 38 - }; 39 39 - ``` 40 40 - 41 41 - ## next: cid (content identifiers) 42 42 - 43 43 - ```zig 44 44 - pub const Cid = struct { 45 45 - raw: []const u8, 46 46 - 47 47 - pub fn parse(s: []const u8) ?Cid 48 48 - pub fn version(self: Cid) u8 49 49 - pub fn codec(self: Cid) u64 50 50 - pub fn hash(self: Cid) []const u8 51 51 - }; 52 52 - ``` 53 53 - 54 54 - ## later: xrpc client 55 55 - 56 56 - ```zig 57 57 - pub const XrpcClient = struct { 58 58 - pds: []const u8, 59 59 - access_token: ?[]const u8, 60 60 - 61 61 - pub fn query(self: *XrpcClient, nsid: Nsid, params: anytype) !JsonValue 62 62 - pub fn procedure(self: *XrpcClient, nsid: Nsid, input: anytype) !JsonValue 63 63 - }; 64 64 - ``` 65 65 - 66 66 - ## later: jwt verification 67 67 - 68 68 - ```zig 69 69 - pub const Jwt = struct { 70 70 - header: JwtHeader, 71 71 - payload: JwtPayload, 72 72 - signature: []const u8, 73 73 - 74 74 - pub fn parse(token: []const u8) ?Jwt 75 75 - pub fn verify(self: Jwt, public_key: PublicKey) bool 76 76 - }; 77 77 - ``` 78 78 - 79 79 - ## out of scope 80 80 - 81 81 - - lexicon codegen (separate project) 82 82 - - session management / token refresh (app-specific) 83 83 - - jetstream client (websocket.zig + json is enough) 84 84 - - application frameworks (too opinionated) 85 85 - 86 86 - ## design principles 87 87 - 88 88 - 1. **layered** - each piece usable independently (use Did without DidResolver) 89 89 - 2. **explicit** - no hidden allocations, pass allocators where needed 90 90 - 3. **borrowing** - parse returns slices into input where possible 91 91 - 4. **fallible** - return errors/optionals, don't panic 92 92 - 5. **protocol-focused** - AT Protocol primitives, not app-specific features 93 93 - 94 94 - ## open questions 95 95 - 96 96 - - should DidResolver cache? or leave that to caller? 97 97 - - should XrpcClient handle auth refresh? or just expose tokens? 98 98 - - how to handle json parsing without imposing a specific json library?

-188

docs/plan-initial.md

··· 1 1 - # zat - zig atproto primitives 2 2 - 3 3 - low-level building blocks for atproto applications in zig. not a full sdk - just the pieces that everyone reimplements. 4 4 - 5 5 - ## philosophy 6 6 - 7 7 - from studying the wishlists: the pain is real, but the suggested solutions often over-engineer. we want: 8 8 - 9 9 - 1. **primitives, not frameworks** - types and parsers, not http clients or feed scaffolds 10 10 - 2. **layered design** - each piece usable independently 11 11 - 3. **zig idioms** - explicit buffers, comptime validation, no hidden allocations 12 12 - 4. **minimal scope** - solve the repeated pain, not every possible need 13 13 - 14 14 - ## scope 15 15 - 16 16 - ### in scope (v0.1) 17 17 - 18 18 - **tid** - timestamp identifiers 19 19 - - parse tid string to timestamp (microseconds) 20 20 - - generate tid from timestamp 21 21 - - extract clock id 22 22 - - comptime validation of format 23 23 - 24 24 - **at-uri** - `at://did:plc:xyz/collection/rkey` 25 25 - - parse to components (did, collection, rkey) 26 26 - - construct from components 27 27 - - validation 28 28 - 29 29 - **did** - decentralized identifiers 30 30 - - parse did:plc and did:web 31 31 - - validate format 32 32 - - type-safe wrapper (not just `[]const u8`) 33 33 - 34 34 - ### maybe v0.2 35 35 - 36 36 - **facets** - extract links/mentions/tags from post records 37 37 - - given a json value with `text` and `facets`, extract urls 38 38 - - byte-offset handling for utf-8 39 39 - 40 40 - **cid** - content identifiers 41 41 - - parse cid strings 42 42 - - validate format 43 43 - 44 44 - ### out of scope (for now) 45 45 - 46 46 - - lexicon codegen (too big, could be its own project) 47 47 - - xrpc client (std.http.Client is fine) 48 48 - - session management (app-specific) 49 49 - - jetstream client (websocket.zig exists, just wire it) 50 50 - - feed generator framework (each feed is unique) 51 51 - - did resolution (requires http, out of primitive scope) 52 52 - 53 53 - ## design 54 54 - 55 55 - ### tid.zig 56 56 - 57 57 - ```zig 58 58 - pub const Tid = struct { 59 59 - raw: [13]u8, 60 60 - 61 61 - /// parse a tid string. returns null if invalid. 62 62 - pub fn parse(s: []const u8) ?Tid 63 63 - 64 64 - /// timestamp in microseconds since unix epoch 65 65 - pub fn timestamp(self: Tid) u64 66 66 - 67 67 - /// clock identifier (lower 10 bits) 68 68 - pub fn clockId(self: Tid) u10 69 69 - 70 70 - /// generate tid for current time 71 71 - pub fn now() Tid 72 72 - 73 73 - /// generate tid for specific timestamp 74 74 - pub fn fromTimestamp(ts: u64, clock_id: u10) Tid 75 75 - 76 76 - /// format to string 77 77 - pub fn format(self: Tid, buf: *[13]u8) void 78 78 - }; 79 79 - ``` 80 80 - 81 81 - encoding: base32-sortable (chars `234567abcdefghijklmnopqrstuvwxyz`), 13 chars, first 11 encode 53-bit timestamp, last 2 encode 10-bit clock id. 82 82 - 83 83 - ### at_uri.zig 84 84 - 85 85 - ```zig 86 86 - pub const AtUri = struct { 87 87 - /// the full uri string (borrowed, not owned) 88 88 - raw: []const u8, 89 89 - 90 90 - /// offsets into raw for each component 91 91 - did_end: usize, 92 92 - collection_end: usize, 93 93 - 94 94 - pub fn parse(s: []const u8) ?AtUri 95 95 - 96 96 - pub fn did(self: AtUri) []const u8 97 97 - pub fn collection(self: AtUri) []const u8 98 98 - pub fn rkey(self: AtUri) []const u8 99 99 - 100 100 - /// construct a new uri. caller owns the buffer. 101 101 - pub fn format( 102 102 - buf: []u8, 103 103 - did: []const u8, 104 104 - collection: []const u8, 105 105 - rkey: []const u8, 106 106 - ) ?[]const u8 107 107 - }; 108 108 - ``` 109 109 - 110 110 - ### did.zig 111 111 - 112 112 - ```zig 113 113 - pub const Did = union(enum) { 114 114 - plc: [24]u8, // the identifier after "did:plc:" 115 115 - web: []const u8, // the domain after "did:web:" 116 116 - 117 117 - pub fn parse(s: []const u8) ?Did 118 118 - 119 119 - /// format to string 120 120 - pub fn format(self: Did, buf: []u8) ?[]const u8 121 121 - 122 122 - /// check if this is a plc did 123 123 - pub fn isPlc(self: Did) bool 124 124 - }; 125 125 - ``` 126 126 - 127 127 - ## structure 128 128 - 129 129 - ``` 130 130 - zat/ 131 131 - ├── build.zig 132 132 - ├── build.zig.zon 133 133 - ├── src/ 134 134 - │ ├── root.zig # public API (stable exports) 135 135 - │ ├── internal.zig # internal API (experimental) 136 136 - │ └── internal/ 137 137 - │ ├── tid.zig 138 138 - │ ├── at_uri.zig 139 139 - │ └── did.zig 140 140 - └── docs/ 141 141 - └── plan.md 142 142 - ``` 143 143 - 144 144 - ## internal → public promotion 145 145 - 146 146 - new features start in `internal` where we can iterate freely. when an API stabilizes: 147 147 - 148 148 - ```zig 149 149 - // in root.zig, uncomment to promote: 150 150 - pub const Tid = internal.Tid; 151 151 - ``` 152 152 - 153 153 - users who need bleeding-edge access can always use: 154 154 - 155 155 - ```zig 156 156 - const zat = @import("zat"); 157 157 - const tid = zat.internal.Tid.parse("..."); 158 158 - ``` 159 159 - 160 160 - this pattern exists indefinitely - even after 1.0, new experimental features start in internal. 161 161 - 162 162 - ## decisions 163 163 - 164 164 - ### why not typed lexicons? 165 165 - 166 166 - codegen from lexicon json is a big project on its own. the core pain (json navigation) can be partially addressed by documenting patterns, and the sdk should work regardless of how people parse json. 167 167 - 168 168 - ### why not an http client wrapper? 169 169 - 170 170 - zig 0.15's `std.http.Client` with `Io.Writer.Allocating` works well. wrapping it doesn't add much value. the real pain is around auth token refresh and rate limiting - those are better solved at the application level where retry logic is domain-specific. 171 171 - 172 172 - ### why not websocket/jetstream? 173 173 - 174 174 - websocket.zig already exists and works well. the jetstream protocol is simple json messages. a thin wrapper doesn't justify a dependency. 175 175 - 176 176 - ### borrowing vs owning 177 177 - 178 178 - for parse operations, we borrow slices into the input rather than allocating. callers who need owned data can dupe. this matches zig's explicit memory style. 179 179 - 180 180 - ## next steps 181 181 - 182 182 - 1. ~~implement tid.zig with tests~~ done 183 183 - 2. ~~implement at_uri.zig with tests~~ done 184 184 - 3. ~~implement did.zig with tests~~ done 185 185 - 4. ~~wire up build.zig as a module~~ done 186 186 - 5. try using it in find-bufo or music-atmosphere-feed to validate the api 187 187 - 6. iterate on internal APIs based on real usage 188 188 - 7. promote stable APIs to root.zig

+40

docs/roadmap.md

··· 1 1 + # roadmap 2 2 + 3 3 + zat started as a small set of string primitives for AT Protocol - the types everyone reimplements (`Tid`, `Did`, `Handle`, `Nsid`, `Rkey`, `AtUri`). the scope grew based on real usage. 4 4 + 5 5 + ## history 6 6 + 7 7 + **initial scope** - string primitives with parsing and validation. the philosophy: primitives not frameworks, layered design, zig idioms, minimal scope. 8 8 + 9 9 + **what grew from usage:** 10 10 + - DID resolution was originally "out of scope" - real projects needed it, so `DidResolver` and `DidDocument` got added 11 11 + - XRPC client and JSON helpers - same story 12 12 + - JWT verification for service auth 13 13 + - handle resolution via HTTP well-known 14 14 + - handle resolution via DNS-over-HTTP (community contribution) 15 15 + - sync types for firehose consumption (`CommitAction`, `EventKind`, `AccountStatus`) 16 16 + 17 17 + this pattern - start minimal, expand based on real pain - continues. 18 18 + 19 19 + ## now 20 20 + 21 21 + use zat in real projects. let usage drive what's next. 22 22 + 23 23 + the primitives are reasonably complete. what's missing will show up when people build things. until then, no speculative features. 24 24 + 25 25 + ## maybe later 26 26 + 27 27 + these stay out of scope unless real demand emerges: 28 28 + 29 29 + - lexicon codegen - probably a separate project 30 30 + - higher-level clients/frameworks - too opinionated 31 31 + - token refresh/session management - app-specific 32 32 + - feed generator scaffolding - each feed is unique 33 33 + 34 34 + ## non-goals 35 35 + 36 36 + zat is not trying to be: 37 37 + 38 38 + - a "one true SDK" that does everything 39 39 + - an opinionated app framework 40 40 + - a replacement for understanding the protocol

+17

justfile

··· 1 1 + # zat 2 2 + 3 3 + # show available commands 4 4 + default: 5 5 + @just --list 6 6 + 7 7 + # format code 8 8 + fmt: 9 9 + zig fmt . 10 10 + 11 11 + # check formatting (CI) 12 12 + check: 13 13 + zig fmt --check . 14 14 + 15 15 + # run tests 16 16 + test: 17 17 + zig build test

+215

scripts/build-site.mjs

··· 1 1 + import { 2 2 + readdir, 3 3 + readFile, 4 4 + mkdir, 5 5 + rm, 6 6 + cp, 7 7 + writeFile, 8 8 + access, 9 9 + } from "node:fs/promises"; 10 10 + import path from "node:path"; 11 11 + import { execFile } from "node:child_process"; 12 12 + import { promisify } from "node:util"; 13 13 + 14 14 + const repoRoot = path.resolve(new URL("..", import.meta.url).pathname); 15 15 + const docsDir = path.join(repoRoot, "docs"); 16 16 + const devlogDir = path.join(repoRoot, "devlog"); 17 17 + const siteSrcDir = path.join(repoRoot, "site"); 18 18 + const outDir = path.join(repoRoot, "site-out"); 19 19 + const outDocsDir = path.join(outDir, "docs"); 20 20 + 21 21 + const execFileAsync = promisify(execFile); 22 22 + 23 23 + async function exists(filePath) { 24 24 + try { 25 25 + await access(filePath); 26 26 + return true; 27 27 + } catch { 28 28 + return false; 29 29 + } 30 30 + } 31 31 + 32 32 + function isMarkdown(filePath) { 33 33 + return filePath.toLowerCase().endsWith(".md"); 34 34 + } 35 35 + 36 36 + async function listMarkdownFiles(dir, prefix = "") { 37 37 + const entries = await readdir(dir, { withFileTypes: true }); 38 38 + const out = []; 39 39 + for (const e of entries) { 40 40 + if (e.name.startsWith(".")) continue; 41 41 + const rel = path.join(prefix, e.name); 42 42 + const abs = path.join(dir, e.name); 43 43 + if (e.isDirectory()) { 44 44 + out.push(...(await listMarkdownFiles(abs, rel))); 45 45 + } else if (e.isFile() && isMarkdown(e.name)) { 46 46 + out.push(rel.replaceAll(path.sep, "/")); 47 47 + } 48 48 + } 49 49 + return out.sort((a, b) => a.localeCompare(b)); 50 50 + } 51 51 + 52 52 + function titleFromMarkdown(md, fallback) { 53 53 + const lines = md.split(/\r?\n/); 54 54 + for (const line of lines) { 55 55 + const m = /^#\s+(.+)\s*$/.exec(line); 56 56 + if (m) return m[1].trim(); 57 57 + } 58 58 + return fallback.replace(/\.md$/i, ""); 59 59 + } 60 60 + 61 61 + function normalizeTitle(title) { 62 62 + let t = String(title || "").trim(); 63 63 + // Strip markdown links: [text](url) -> text 64 64 + t = t.replace(/\[([^\]]+)\]\([^)]+\)/g, "$1"); 65 65 + // If pages follow a "zat - ..." style, drop the redundant prefix in the nav. 66 66 + t = t.replace(/^zat\s*-\s*/i, ""); 67 67 + // Cheaply capitalize (keeps the rest as-authored). 68 68 + if (t.length) t = t[0].toUpperCase() + t.slice(1); 69 69 + return t; 70 70 + } 71 71 + 72 72 + async function getBuildId() { 73 73 + try { 74 74 + const { stdout } = await execFileAsync("git", ["rev-parse", "HEAD"], { 75 75 + cwd: repoRoot, 76 76 + }); 77 77 + const full = String(stdout || "").trim(); 78 78 + if (full) return full.slice(0, 12); 79 79 + } catch { 80 80 + // ignore 81 81 + } 82 82 + return String(Date.now()); 83 83 + } 84 84 + 85 85 + async function main() { 86 86 + await rm(outDir, { recursive: true, force: true }); 87 87 + await mkdir(outDir, { recursive: true }); 88 88 + 89 89 + // Copy static site shell 90 90 + await cp(siteSrcDir, outDir, { recursive: true }); 91 91 + 92 92 + // Cache-bust immutable assets on Wisp by appending a per-commit query string. 93 93 + const buildId = await getBuildId(); 94 94 + const outIndex = path.join(outDir, "index.html"); 95 95 + if (await exists(outIndex)) { 96 96 + let html = await readFile(outIndex, "utf8"); 97 97 + html = html.replaceAll('href="./style.css"', `href="./style.css?v=${buildId}"`); 98 98 + html = html.replaceAll( 99 99 + 'src="./vendor/marked.min.js"', 100 100 + `src="./vendor/marked.min.js?v=${buildId}"`, 101 101 + ); 102 102 + html = html.replaceAll( 103 103 + 'src="./app.js"', 104 104 + `src="./app.js?v=${buildId}"`, 105 105 + ); 106 106 + html = html.replaceAll( 107 107 + 'href="./favicon.svg"', 108 108 + `href="./favicon.svg?v=${buildId}"`, 109 109 + ); 110 110 + await writeFile(outIndex, html, "utf8"); 111 111 + } 112 112 + 113 113 + // Copy docs 114 114 + await mkdir(outDocsDir, { recursive: true }); 115 115 + 116 116 + const pages = []; 117 117 + 118 118 + // Prefer an explicit docs homepage if present; otherwise use repo README as index. 119 119 + const docsIndex = path.join(docsDir, "index.md"); 120 120 + if (!(await exists(docsIndex))) { 121 121 + const readme = path.join(repoRoot, "README.md"); 122 122 + if (await exists(readme)) { 123 123 + let md = await readFile(readme, "utf8"); 124 124 + // Strip docs/ prefix from links since we're now inside the docs context. 125 125 + md = md.replace(/\]\(docs\//g, "]("); 126 126 + await writeFile(path.join(outDocsDir, "index.md"), md, "utf8"); 127 127 + pages.push({ 128 128 + path: "index.md", 129 129 + title: normalizeTitle(titleFromMarkdown(md, "index.md")), 130 130 + }); 131 131 + } 132 132 + } 133 133 + 134 134 + const changelog = path.join(repoRoot, "CHANGELOG.md"); 135 135 + const docsChangelog = path.join(docsDir, "changelog.md"); 136 136 + if ((await exists(changelog)) && !(await exists(docsChangelog))) { 137 137 + const md = await readFile(changelog, "utf8"); 138 138 + await writeFile(path.join(outDocsDir, "changelog.md"), md, "utf8"); 139 139 + pages.push({ 140 140 + path: "changelog.md", 141 141 + title: normalizeTitle(titleFromMarkdown(md, "changelog.md")), 142 142 + }); 143 143 + } 144 144 + 145 145 + const mdFiles = (await exists(docsDir)) ? await listMarkdownFiles(docsDir) : []; 146 146 + 147 147 + // Copy all markdown under docs/ (including archives), but only include non-archive 148 148 + // paths in the sidebar manifest. 149 149 + for (const rel of mdFiles) { 150 150 + const src = path.join(docsDir, rel); 151 151 + const dst = path.join(outDocsDir, rel); 152 152 + await mkdir(path.dirname(dst), { recursive: true }); 153 153 + await cp(src, dst); 154 154 + 155 155 + const md = await readFile(src, "utf8"); 156 156 + if (!rel.startsWith("archive/")) { 157 157 + pages.push({ path: rel, title: normalizeTitle(titleFromMarkdown(md, rel)) }); 158 158 + } 159 159 + } 160 160 + 161 161 + // Copy devlog files to docs/devlog/ and generate an index 162 162 + const devlogFiles = (await exists(devlogDir)) ? await listMarkdownFiles(devlogDir) : []; 163 163 + const devlogEntries = []; 164 164 + 165 165 + for (const rel of devlogFiles) { 166 166 + const src = path.join(devlogDir, rel); 167 167 + const dst = path.join(outDocsDir, "devlog", rel); 168 168 + await mkdir(path.dirname(dst), { recursive: true }); 169 169 + await cp(src, dst); 170 170 + 171 171 + const md = await readFile(src, "utf8"); 172 172 + devlogEntries.push({ 173 173 + path: `devlog/${rel}`, 174 174 + title: titleFromMarkdown(md, rel), 175 175 + }); 176 176 + } 177 177 + 178 178 + // Generate devlog index listing all entries (newest first by filename) 179 179 + if (devlogEntries.length > 0) { 180 180 + devlogEntries.sort((a, b) => b.path.localeCompare(a.path)); 181 181 + const indexMd = [ 182 182 + "# devlog", 183 183 + "", 184 184 + ...devlogEntries.map((e) => `- [${e.title}](${e.path})`), 185 185 + "", 186 186 + ].join("\n"); 187 187 + await writeFile(path.join(outDocsDir, "devlog", "index.md"), indexMd, "utf8"); 188 188 + } 189 189 + 190 190 + // Stable nav order: README homepage, then roadmap, then changelog, then the rest. 191 191 + pages.sort((a, b) => { 192 192 + const order = (p) => { 193 193 + if (p === "index.md") return 0; 194 194 + if (p === "roadmap.md") return 1; 195 195 + if (p === "changelog.md") return 2; 196 196 + return 3; 197 197 + }; 198 198 + const ao = order(a.path); 199 199 + const bo = order(b.path); 200 200 + if (ao !== bo) return ao - bo; 201 201 + return a.title.localeCompare(b.title); 202 202 + }); 203 203 + 204 204 + await writeFile( 205 205 + path.join(outDir, "manifest.json"), 206 206 + JSON.stringify({ pages }, null, 2) + "\n", 207 207 + "utf8", 208 208 + ); 209 209 + 210 210 + process.stdout.write( 211 211 + `Built Wisp docs site: ${pages.length} markdown file(s) -> ${outDir}\n`, 212 212 + ); 213 213 + } 214 214 + 215 215 + await main();

-151

scripts/build-wisp-docs.mjs

··· 1 1 - import { 2 2 - readdir, 3 3 - readFile, 4 4 - mkdir, 5 5 - rm, 6 6 - cp, 7 7 - writeFile, 8 8 - access, 9 9 - } from "node:fs/promises"; 10 10 - import path from "node:path"; 11 11 - import { execFile } from "node:child_process"; 12 12 - import { promisify } from "node:util"; 13 13 - 14 14 - const repoRoot = path.resolve(new URL("..", import.meta.url).pathname); 15 15 - const docsDir = path.join(repoRoot, "docs"); 16 16 - const siteSrcDir = path.join(repoRoot, "site"); 17 17 - const outDir = path.join(repoRoot, "site-out"); 18 18 - const outDocsDir = path.join(outDir, "docs"); 19 19 - 20 20 - const execFileAsync = promisify(execFile); 21 21 - 22 22 - async function exists(filePath) { 23 23 - try { 24 24 - await access(filePath); 25 25 - return true; 26 26 - } catch { 27 27 - return false; 28 28 - } 29 29 - } 30 30 - 31 31 - function isMarkdown(filePath) { 32 32 - return filePath.toLowerCase().endsWith(".md"); 33 33 - } 34 34 - 35 35 - async function listMarkdownFiles(dir, prefix = "") { 36 36 - const entries = await readdir(dir, { withFileTypes: true }); 37 37 - const out = []; 38 38 - for (const e of entries) { 39 39 - if (e.name.startsWith(".")) continue; 40 40 - const rel = path.join(prefix, e.name); 41 41 - const abs = path.join(dir, e.name); 42 42 - if (e.isDirectory()) { 43 43 - out.push(...(await listMarkdownFiles(abs, rel))); 44 44 - } else if (e.isFile() && isMarkdown(e.name)) { 45 45 - out.push(rel.replaceAll(path.sep, "/")); 46 46 - } 47 47 - } 48 48 - return out.sort((a, b) => a.localeCompare(b)); 49 49 - } 50 50 - 51 51 - function titleFromMarkdown(md, fallback) { 52 52 - const lines = md.split(/\r?\n/); 53 53 - for (const line of lines) { 54 54 - const m = /^#\s+(.+)\s*$/.exec(line); 55 55 - if (m) return m[1].trim(); 56 56 - } 57 57 - return fallback.replace(/\.md$/i, ""); 58 58 - } 59 59 - 60 60 - async function getBuildId() { 61 61 - try { 62 62 - const { stdout } = await execFileAsync("git", ["rev-parse", "HEAD"], { 63 63 - cwd: repoRoot, 64 64 - }); 65 65 - const full = String(stdout || "").trim(); 66 66 - if (full) return full.slice(0, 12); 67 67 - } catch { 68 68 - // ignore 69 69 - } 70 70 - return String(Date.now()); 71 71 - } 72 72 - 73 73 - async function main() { 74 74 - await rm(outDir, { recursive: true, force: true }); 75 75 - await mkdir(outDir, { recursive: true }); 76 76 - 77 77 - // Copy static site shell 78 78 - await cp(siteSrcDir, outDir, { recursive: true }); 79 79 - 80 80 - // Cache-bust immutable assets on Wisp by appending a per-commit query string. 81 81 - const buildId = await getBuildId(); 82 82 - const outIndex = path.join(outDir, "index.html"); 83 83 - if (await exists(outIndex)) { 84 84 - let html = await readFile(outIndex, "utf8"); 85 85 - html = html.replaceAll('href="./style.css"', `href="./style.css?v=${buildId}"`); 86 86 - html = html.replaceAll( 87 87 - 'src="./vendor/marked.min.js"', 88 88 - `src="./vendor/marked.min.js?v=${buildId}"`, 89 89 - ); 90 90 - html = html.replaceAll( 91 91 - 'src="./app.js"', 92 92 - `src="./app.js?v=${buildId}"`, 93 93 - ); 94 94 - html = html.replaceAll( 95 95 - 'href="./favicon.svg"', 96 96 - `href="./favicon.svg?v=${buildId}"`, 97 97 - ); 98 98 - await writeFile(outIndex, html, "utf8"); 99 99 - } 100 100 - 101 101 - // Copy docs 102 102 - await mkdir(outDocsDir, { recursive: true }); 103 103 - 104 104 - const pages = []; 105 105 - 106 106 - // Prefer an explicit docs homepage if present; otherwise use repo README as index. 107 107 - const docsIndex = path.join(docsDir, "index.md"); 108 108 - if (!(await exists(docsIndex))) { 109 109 - const readme = path.join(repoRoot, "README.md"); 110 110 - if (await exists(readme)) { 111 111 - const md = await readFile(readme, "utf8"); 112 112 - await writeFile(path.join(outDocsDir, "index.md"), md, "utf8"); 113 113 - pages.push({ path: "index.md", title: titleFromMarkdown(md, "index.md") }); 114 114 - } 115 115 - } 116 116 - 117 117 - const changelog = path.join(repoRoot, "CHANGELOG.md"); 118 118 - const docsChangelog = path.join(docsDir, "changelog.md"); 119 119 - if ((await exists(changelog)) && !(await exists(docsChangelog))) { 120 120 - const md = await readFile(changelog, "utf8"); 121 121 - await writeFile(path.join(outDocsDir, "changelog.md"), md, "utf8"); 122 122 - pages.push({ 123 123 - path: "changelog.md", 124 124 - title: titleFromMarkdown(md, "changelog.md"), 125 125 - }); 126 126 - } 127 127 - 128 128 - const mdFiles = (await exists(docsDir)) ? await listMarkdownFiles(docsDir) : []; 129 129 - 130 130 - for (const rel of mdFiles) { 131 131 - const src = path.join(docsDir, rel); 132 132 - const dst = path.join(outDocsDir, rel); 133 133 - await mkdir(path.dirname(dst), { recursive: true }); 134 134 - await cp(src, dst); 135 135 - 136 136 - const md = await readFile(src, "utf8"); 137 137 - pages.push({ path: rel, title: titleFromMarkdown(md, rel) }); 138 138 - } 139 139 - 140 140 - await writeFile( 141 141 - path.join(outDir, "manifest.json"), 142 142 - JSON.stringify({ pages }, null, 2) + "\n", 143 143 - "utf8", 144 144 - ); 145 145 - 146 146 - process.stdout.write( 147 147 - `Built Wisp docs site: ${pages.length} markdown file(s) -> ${outDir}\n`, 148 148 - ); 149 149 - } 150 150 - 151 151 - await main();

+263

scripts/publish-docs.zig

··· 1 1 + const std = @import("std"); 2 2 + const zat = @import("zat"); 3 3 + 4 4 + const Allocator = std.mem.Allocator; 5 5 + 6 6 + const DocEntry = struct { path: []const u8, file: []const u8 }; 7 7 + 8 8 + /// docs to publish as site.standard.document records 9 9 + const docs = [_]DocEntry{ 10 10 + .{ .path = "/", .file = "README.md" }, 11 11 + .{ .path = "/roadmap", .file = "docs/roadmap.md" }, 12 12 + .{ .path = "/changelog", .file = "CHANGELOG.md" }, 13 13 + }; 14 14 + 15 15 + /// devlog entries 16 16 + const devlog = [_]DocEntry{ 17 17 + .{ .path = "/devlog/001", .file = "devlog/001-self-publishing-docs.md" }, 18 18 + }; 19 19 + 20 20 + pub fn main() !void { 21 21 + // use page_allocator for CLI tool - OS reclaims on exit 22 22 + const allocator = std.heap.page_allocator; 23 23 + 24 24 + const handle = "zat.dev"; 25 25 + 26 26 + const password = std.posix.getenv("ATPROTO_PASSWORD") orelse { 27 27 + std.debug.print("error: ATPROTO_PASSWORD not set\n", .{}); 28 28 + return error.MissingEnv; 29 29 + }; 30 30 + 31 31 + const pds = std.posix.getenv("ATPROTO_PDS") orelse "https://bsky.social"; 32 32 + 33 33 + var client = zat.XrpcClient.init(allocator, pds); 34 34 + defer client.deinit(); 35 35 + 36 36 + const session = try createSession(&client, allocator, handle, password); 37 37 + defer { 38 38 + allocator.free(session.did); 39 39 + allocator.free(session.access_token); 40 40 + } 41 41 + 42 42 + std.debug.print("authenticated as {s}\n", .{session.did}); 43 43 + client.setAuth(session.access_token); 44 44 + 45 45 + // generate TID for publication (fixed timestamp for deterministic rkey) 46 46 + // using 2024-01-01 00:00:00 UTC as base timestamp (1704067200 seconds = 1704067200000000 microseconds) 47 47 + const pub_tid = zat.Tid.fromTimestamp(1704067200000000, 0); 48 48 + const pub_record = Publication{ 49 49 + .url = "https://zat.dev", 50 50 + .name = "zat", 51 51 + .description = "AT Protocol building blocks for zig", 52 52 + }; 53 53 + 54 54 + try putRecord(&client, allocator, session.did, "site.standard.publication", pub_tid.str(), pub_record); 55 55 + std.debug.print("created publication: at://{s}/site.standard.publication/{s}\n", .{ session.did, pub_tid.str() }); 56 56 + 57 57 + var pub_uri_buf: std.ArrayList(u8) = .empty; 58 58 + defer pub_uri_buf.deinit(allocator); 59 59 + try pub_uri_buf.print(allocator, "at://{s}/site.standard.publication/{s}", .{ session.did, pub_tid.str() }); 60 60 + const pub_uri = pub_uri_buf.items; 61 61 + 62 62 + // publish each doc with deterministic TIDs (same base timestamp, incrementing clock_id) 63 63 + const now = timestamp(); 64 64 + 65 65 + for (docs, 0..) |doc, i| { 66 66 + const content = std.fs.cwd().readFileAlloc(allocator, doc.file, 1024 * 1024) catch |err| { 67 67 + std.debug.print("warning: could not read {s}: {}\n", .{ doc.file, err }); 68 68 + continue; 69 69 + }; 70 70 + defer allocator.free(content); 71 71 + 72 72 + const title = extractTitle(content) orelse doc.file; 73 73 + const tid = zat.Tid.fromTimestamp(1704067200000000, @intCast(i + 1)); // clock_id 1, 2, 3... 74 74 + 75 75 + const doc_record = Document{ 76 76 + .site = pub_uri, 77 77 + .title = title, 78 78 + .path = doc.path, 79 79 + .textContent = content, 80 80 + .publishedAt = &now, 81 81 + }; 82 82 + 83 83 + try putRecord(&client, allocator, session.did, "site.standard.document", tid.str(), doc_record); 84 84 + std.debug.print("published: {s} -> at://{s}/site.standard.document/{s}\n", .{ doc.file, session.did, tid.str() }); 85 85 + } 86 86 + 87 87 + // devlog publication (clock_id 100 to separate from docs) 88 88 + const devlog_tid = zat.Tid.fromTimestamp(1704067200000000, 100); 89 89 + const devlog_pub = Publication{ 90 90 + .url = "https://zat.dev", 91 91 + .name = "zat devlog", 92 92 + .description = "building zat in public", 93 93 + }; 94 94 + 95 95 + try putRecord(&client, allocator, session.did, "site.standard.publication", devlog_tid.str(), devlog_pub); 96 96 + std.debug.print("created publication: at://{s}/site.standard.publication/{s}\n", .{ session.did, devlog_tid.str() }); 97 97 + 98 98 + var devlog_uri_buf: std.ArrayList(u8) = .empty; 99 99 + defer devlog_uri_buf.deinit(allocator); 100 100 + try devlog_uri_buf.print(allocator, "at://{s}/site.standard.publication/{s}", .{ session.did, devlog_tid.str() }); 101 101 + const devlog_uri = devlog_uri_buf.items; 102 102 + 103 103 + // publish devlog entries (clock_id 101, 102, ...) 104 104 + for (devlog, 0..) |entry, i| { 105 105 + const content = std.fs.cwd().readFileAlloc(allocator, entry.file, 1024 * 1024) catch |err| { 106 106 + std.debug.print("warning: could not read {s}: {}\n", .{ entry.file, err }); 107 107 + continue; 108 108 + }; 109 109 + defer allocator.free(content); 110 110 + 111 111 + const title = extractTitle(content) orelse entry.file; 112 112 + const tid = zat.Tid.fromTimestamp(1704067200000000, @intCast(101 + i)); 113 113 + 114 114 + const doc_record = Document{ 115 115 + .site = devlog_uri, 116 116 + .title = title, 117 117 + .path = entry.path, 118 118 + .textContent = content, 119 119 + .publishedAt = &now, 120 120 + }; 121 121 + 122 122 + try putRecord(&client, allocator, session.did, "site.standard.document", tid.str(), doc_record); 123 123 + std.debug.print("published: {s} -> at://{s}/site.standard.document/{s}\n", .{ entry.file, session.did, tid.str() }); 124 124 + } 125 125 + 126 126 + std.debug.print("done\n", .{}); 127 127 + } 128 128 + 129 129 + const Publication = struct { 130 130 + @"$type": []const u8 = "site.standard.publication", 131 131 + url: []const u8, 132 132 + name: []const u8, 133 133 + description: ?[]const u8 = null, 134 134 + }; 135 135 + 136 136 + const Document = struct { 137 137 + @"$type": []const u8 = "site.standard.document", 138 138 + site: []const u8, 139 139 + title: []const u8, 140 140 + path: ?[]const u8 = null, 141 141 + textContent: ?[]const u8 = null, 142 142 + publishedAt: []const u8, 143 143 + }; 144 144 + 145 145 + const Session = struct { 146 146 + did: []const u8, 147 147 + access_token: []const u8, 148 148 + }; 149 149 + 150 150 + fn createSession(client: *zat.XrpcClient, allocator: Allocator, handle: []const u8, password: []const u8) !Session { 151 151 + const CreateSessionInput = struct { 152 152 + identifier: []const u8, 153 153 + password: []const u8, 154 154 + }; 155 155 + 156 156 + var buf: std.ArrayList(u8) = .empty; 157 157 + defer buf.deinit(allocator); 158 158 + try buf.print(allocator, "{f}", .{std.json.fmt(CreateSessionInput{ 159 159 + .identifier = handle, 160 160 + .password = password, 161 161 + }, .{})}); 162 162 + 163 163 + const nsid = zat.Nsid.parse("com.atproto.server.createSession").?; 164 164 + var response = try client.procedure(nsid, buf.items); 165 165 + defer response.deinit(); 166 166 + 167 167 + if (!response.ok()) { 168 168 + std.debug.print("createSession failed: {s}\n", .{response.body}); 169 169 + return error.AuthFailed; 170 170 + } 171 171 + 172 172 + var parsed = try response.json(); 173 173 + defer parsed.deinit(); 174 174 + 175 175 + const did = zat.json.getString(parsed.value, "did") orelse return error.MissingDid; 176 176 + const token = zat.json.getString(parsed.value, "accessJwt") orelse return error.MissingToken; 177 177 + 178 178 + return .{ 179 179 + .did = try allocator.dupe(u8, did), 180 180 + .access_token = try allocator.dupe(u8, token), 181 181 + }; 182 182 + } 183 183 + 184 184 + fn putRecord(client: *zat.XrpcClient, allocator: Allocator, repo: []const u8, collection: []const u8, rkey: []const u8, record: anytype) !void { 185 185 + // serialize record to json 186 186 + var record_buf: std.ArrayList(u8) = .empty; 187 187 + defer record_buf.deinit(allocator); 188 188 + try record_buf.print(allocator, "{f}", .{std.json.fmt(record, .{})}); 189 189 + 190 190 + // build request body 191 191 + var body: std.ArrayList(u8) = .empty; 192 192 + defer body.deinit(allocator); 193 193 + 194 194 + try body.appendSlice(allocator, "{\"repo\":\""); 195 195 + try body.appendSlice(allocator, repo); 196 196 + try body.appendSlice(allocator, "\",\"collection\":\""); 197 197 + try body.appendSlice(allocator, collection); 198 198 + try body.appendSlice(allocator, "\",\"rkey\":\""); 199 199 + try body.appendSlice(allocator, rkey); 200 200 + try body.appendSlice(allocator, "\",\"record\":"); 201 201 + try body.appendSlice(allocator, record_buf.items); 202 202 + try body.append(allocator, '}'); 203 203 + 204 204 + const nsid = zat.Nsid.parse("com.atproto.repo.putRecord").?; 205 205 + var response = try client.procedure(nsid, body.items); 206 206 + defer response.deinit(); 207 207 + 208 208 + if (!response.ok()) { 209 209 + std.debug.print("putRecord failed: {s}\n", .{response.body}); 210 210 + return error.PutFailed; 211 211 + } 212 212 + } 213 213 + 214 214 + fn extractTitle(content: []const u8) ?[]const u8 { 215 215 + var lines = std.mem.splitScalar(u8, content, '\n'); 216 216 + while (lines.next()) |line| { 217 217 + const trimmed = std.mem.trim(u8, line, " \t\r"); 218 218 + if (trimmed.len > 2 and trimmed[0] == '#' and trimmed[1] == ' ') { 219 219 + var title = trimmed[2..]; 220 220 + // strip markdown link: [text](url) -> text 221 221 + if (std.mem.indexOf(u8, title, "](")) |bracket| { 222 222 + if (title[0] == '[') { 223 223 + title = title[1..bracket]; 224 224 + } 225 225 + } 226 226 + return title; 227 227 + } 228 228 + } 229 229 + return null; 230 230 + } 231 231 + 232 232 + fn timestamp() [20]u8 { 233 233 + const epoch_seconds = std.time.timestamp(); 234 234 + const days: i32 = @intCast(@divFloor(epoch_seconds, std.time.s_per_day)); 235 235 + const day_secs: u32 = @intCast(@mod(epoch_seconds, std.time.s_per_day)); 236 236 + 237 237 + // calculate year/month/day from days since epoch (1970-01-01) 238 238 + var y: i32 = 1970; 239 239 + var remaining = days; 240 240 + while (true) { 241 241 + const year_days: i32 = if (@mod(y, 4) == 0 and (@mod(y, 100) != 0 or @mod(y, 400) == 0)) 366 else 365; 242 242 + if (remaining < year_days) break; 243 243 + remaining -= year_days; 244 244 + y += 1; 245 245 + } 246 246 + 247 247 + const is_leap = @mod(y, 4) == 0 and (@mod(y, 100) != 0 or @mod(y, 400) == 0); 248 248 + const month_days = [12]u8{ 31, if (is_leap) 29 else 28, 31, 30, 31, 30, 31, 31, 30, 31, 30, 31 }; 249 249 + var m: usize = 0; 250 250 + while (m < 12 and remaining >= month_days[m]) : (m += 1) { 251 251 + remaining -= month_days[m]; 252 252 + } 253 253 + 254 254 + const hours = day_secs / 3600; 255 255 + const mins = (day_secs % 3600) / 60; 256 256 + const secs = day_secs % 60; 257 257 + 258 258 + var buf: [20]u8 = undefined; 259 259 + _ = std.fmt.bufPrint(&buf, "{d:0>4}-{d:0>2}-{d:0>2}T{d:0>2}:{d:0>2}:{d:0>2}Z", .{ 260 260 + @as(u32, @intCast(y)), @as(u32, @intCast(m + 1)), @as(u32, @intCast(remaining + 1)), hours, mins, secs, 261 261 + }) catch unreachable; 262 262 + return buf; 263 263 + }

+20 -1

site/app.js

··· 1 1 const navEl = document.getElementById("nav"); 2 2 const contentEl = document.getElementById("content"); 3 3 + const menuToggle = document.querySelector(".menu-toggle"); 4 4 + const sidebar = document.querySelector(".sidebar"); 5 5 + const overlay = document.querySelector(".overlay"); 6 6 + 7 7 + function toggleMenu(open) { 8 8 + const isOpen = open ?? !sidebar.classList.contains("open"); 9 9 + sidebar.classList.toggle("open", isOpen); 10 10 + overlay?.classList.toggle("open", isOpen); 11 11 + menuToggle?.setAttribute("aria-expanded", isOpen); 12 12 + document.body.style.overflow = isOpen ? "hidden" : ""; 13 13 + } 14 14 + 15 15 + menuToggle?.addEventListener("click", () => toggleMenu()); 16 16 + overlay?.addEventListener("click", () => toggleMenu(false)); 17 17 + 18 18 + // Close menu when nav link clicked (mobile) 19 19 + navEl?.addEventListener("click", (e) => { 20 20 + if (e.target.closest("a")) toggleMenu(false); 21 21 + }); 3 22 4 23 const buildId = new URL(import.meta.url).searchParams.get("v") || ""; 5 24 ··· 120 139 } 121 140 122 141 try { 123 123 - const md = await fetchText(`./docs/${encodeURIComponent(activePath)}`); 142 142 + const md = await fetchText(`./docs/${activePath}`); 124 143 const html = globalThis.marked.parse(md); 125 144 contentEl.innerHTML = html; 126 145

+8 -8

site/index.html

··· 11 11 <body> 12 12 <div class="app"> 13 13 <header class="header"> 14 14 + <button class="menu-toggle" aria-label="Toggle navigation" aria-expanded="false"> 15 15 + <span></span> 16 16 + </button> 14 17 <a class="brand" href="./">zat.dev</a> 15 15 - <a 16 16 - class="header-link" 17 17 - href="https://tangled.org/zzstoatzz.io/zat" 18 18 - target="_blank" 19 19 - rel="noopener noreferrer" 20 20 - > 21 21 - repo 22 22 - </a> 18 18 + <div class="header-links"> 19 19 + <a class="header-link" href="#devlog/index.md">devlog</a> 20 20 + <a class="header-link" href="https://tangled.sh/zat.dev/zat" target="_blank" rel="noopener noreferrer">repo</a> 21 21 + </div> 23 22 </header> 24 23 24 24 + <div class="overlay"></div> 25 25 <div class="layout"> 26 26 <nav class="sidebar"> 27 27 <div id="nav" class="nav"></div>

+202 -60

site/style.css

··· 10 10 --shadow: rgba(0, 0, 0, 0.35); 11 11 --max: 900px; 12 12 --radius: 12px; 13 13 + --gutter: 16px; 13 14 --mono: ui-monospace, SFMono-Regular, Menlo, Monaco, Consolas, "Liberation Mono", 14 15 "Courier New", monospace; 15 16 --sans: ui-sans-serif, system-ui, -apple-system, Segoe UI, Roboto, Helvetica, ··· 27 28 --codebg: rgba(0, 0, 0, 0.04); 28 29 --shadow: rgba(0, 0, 0, 0.08); 29 30 } 31 31 + } 32 32 + 33 33 + * { 34 34 + box-sizing: border-box; 30 35 } 31 36 32 37 html, ··· 49 54 text-decoration: underline; 50 55 } 51 56 57 57 + /* App shell */ 52 58 .app { 53 59 min-height: 100%; 54 60 display: flex; 55 61 flex-direction: column; 56 62 } 57 63 64 64 + /* Header */ 58 65 .header { 59 66 position: sticky; 60 67 top: 0; 61 61 - z-index: 5; 68 68 + z-index: 20; 62 69 display: flex; 63 63 - gap: 12px; 64 70 align-items: center; 65 65 - padding: 12px 16px; 71 71 + gap: 12px; 72 72 + padding: 12px var(--gutter); 66 73 border-bottom: 1px solid var(--border); 67 74 background: color-mix(in srgb, var(--panel) 92%, transparent); 68 75 backdrop-filter: blur(10px); 69 76 } 70 77 78 78 + .menu-toggle { 79 79 + display: none; 80 80 + align-items: center; 81 81 + justify-content: center; 82 82 + width: 36px; 83 83 + height: 36px; 84 84 + padding: 0; 85 85 + background: transparent; 86 86 + border: 1px solid var(--border); 87 87 + border-radius: 8px; 88 88 + cursor: pointer; 89 89 + flex-shrink: 0; 90 90 + } 91 91 + .menu-toggle span { 92 92 + display: block; 93 93 + width: 16px; 94 94 + height: 2px; 95 95 + background: var(--text); 96 96 + border-radius: 1px; 97 97 + position: relative; 98 98 + } 99 99 + .menu-toggle span::before, 100 100 + .menu-toggle span::after { 101 101 + content: ""; 102 102 + position: absolute; 103 103 + left: 0; 104 104 + width: 16px; 105 105 + height: 2px; 106 106 + background: var(--text); 107 107 + border-radius: 1px; 108 108 + transition: transform 0.2s; 109 109 + } 110 110 + .menu-toggle span::before { 111 111 + top: -5px; 112 112 + } 113 113 + .menu-toggle span::after { 114 114 + top: 5px; 115 115 + } 116 116 + .menu-toggle[aria-expanded="true"] span { 117 117 + background: transparent; 118 118 + } 119 119 + .menu-toggle[aria-expanded="true"] span::before { 120 120 + transform: translateY(5px) rotate(45deg); 121 121 + } 122 122 + .menu-toggle[aria-expanded="true"] span::after { 123 123 + transform: translateY(-5px) rotate(-45deg); 124 124 + } 125 125 + 71 126 .brand { 72 127 font-weight: 700; 73 73 - letter-spacing: 0.2px; 74 74 - padding: 6px 10px; 75 75 - border-radius: 10px; 128 128 + font-size: 15px; 129 129 + color: var(--text); 130 130 + padding: 6px 0; 76 131 } 77 132 .brand:hover { 78 78 - background: color-mix(in srgb, var(--codebg) 70%, transparent); 79 133 text-decoration: none; 134 134 + opacity: 0.8; 135 135 + } 136 136 + 137 137 + .header-links { 138 138 + display: flex; 139 139 + gap: 8px; 140 140 + margin-left: auto; 80 141 } 81 142 82 143 .header-link { 83 83 - margin-left: auto; 84 84 - padding: 8px 10px; 85 85 - border-radius: 10px; 144 144 + padding: 6px 12px; 145 145 + font-size: 14px; 146 146 + border-radius: 8px; 86 147 border: 1px solid var(--border); 87 148 color: var(--text); 88 88 - opacity: 0.9; 89 149 } 90 150 .header-link:hover { 91 91 - background: color-mix(in srgb, var(--codebg) 70%, transparent); 151 151 + background: var(--codebg); 92 152 text-decoration: none; 93 93 - opacity: 1; 94 153 } 95 154 155 155 + /* Overlay */ 156 156 + .overlay { 157 157 + display: none; 158 158 + position: fixed; 159 159 + inset: 0; 160 160 + z-index: 15; 161 161 + background: rgba(0, 0, 0, 0.5); 162 162 + } 163 163 + .overlay.open { 164 164 + display: block; 165 165 + } 166 166 + 167 167 + /* Layout */ 96 168 .layout { 97 97 - display: grid; 98 98 - grid-template-columns: 280px 1fr; 99 99 - gap: 16px; 100 100 - padding: 16px; 169 169 + display: flex; 170 170 + gap: var(--gutter); 171 171 + padding: var(--gutter); 101 172 flex: 1; 102 102 - } 103 103 - 104 104 - @media (max-width: 980px) { 105 105 - .layout { 106 106 - grid-template-columns: 1fr; 107 107 - } 108 108 - .sidebar { 109 109 - position: relative; 110 110 - top: auto; 111 111 - max-height: none; 112 112 - } 173 173 + max-width: 1200px; 174 174 + margin: 0 auto; 175 175 + width: 100%; 113 176 } 114 177 178 178 + /* Sidebar */ 115 179 .sidebar { 180 180 + width: 240px; 181 181 + flex-shrink: 0; 116 182 position: sticky; 117 117 - top: 64px; 118 118 - align-self: start; 119 119 - max-height: calc(100vh - 84px); 120 120 - overflow: auto; 183 183 + top: 72px; 184 184 + align-self: flex-start; 185 185 + max-height: calc(100vh - 88px); 186 186 + overflow-y: auto; 121 187 border: 1px solid var(--border); 122 188 border-radius: var(--radius); 123 189 background: var(--panel); 124 124 - box-shadow: 0 12px 40px var(--shadow); 125 190 } 126 191 127 192 .nav { ··· 133 198 134 199 .nav a { 135 200 display: block; 136 136 - padding: 8px 10px; 137 137 - border-radius: 10px; 201 201 + padding: 10px 12px; 202 202 + border-radius: 8px; 138 203 color: var(--text); 139 139 - opacity: 0.9; 204 204 + font-size: 14px; 140 205 } 141 206 .nav a:hover { 142 142 - background: color-mix(in srgb, var(--codebg) 70%, transparent); 207 207 + background: var(--codebg); 143 208 text-decoration: none; 144 209 } 145 210 .nav a[aria-current="page"] { 146 146 - background: color-mix(in srgb, var(--link) 14%, var(--codebg)); 147 147 - border: 1px solid color-mix(in srgb, var(--link) 20%, var(--border)); 211 211 + background: color-mix(in srgb, var(--link) 15%, transparent); 148 212 } 149 213 214 214 + /* Main content */ 150 215 .main { 151 151 - display: flex; 152 152 - justify-content: center; 216 216 + flex: 1; 217 217 + min-width: 0; 153 218 } 154 219 155 220 .content { 156 156 - width: min(var(--max), 100%); 157 221 border: 1px solid var(--border); 158 222 border-radius: var(--radius); 159 223 background: var(--panel); 160 160 - box-shadow: 0 12px 40px var(--shadow); 161 224 padding: 24px; 162 225 } 163 226 227 227 + /* Footer */ 164 228 .site-footer { 165 165 - display: flex; 166 166 - justify-content: center; 167 167 - padding: 12px 16px; 229 229 + padding: 16px var(--gutter); 230 230 + text-align: center; 168 231 border-top: 1px solid var(--border); 169 169 - background: var(--panel); 170 232 } 171 233 172 234 .footer-link { 173 235 font-size: 13px; 174 236 color: var(--muted); 175 175 - padding: 6px 10px; 176 176 - border-radius: 10px; 177 177 - border: 1px solid transparent; 178 237 } 179 238 .footer-link:hover { 180 239 color: var(--text); 181 181 - background: color-mix(in srgb, var(--codebg) 70%, transparent); 182 182 - border-color: var(--border); 183 240 text-decoration: none; 184 241 } 185 242 243 243 + /* Content typography */ 186 244 .content h1, 187 245 .content h2, 188 246 .content h3 { 189 189 - scroll-margin-top: 84px; 247 247 + scroll-margin-top: 80px; 190 248 } 191 249 192 250 .content h1 { 193 251 margin-top: 0; 194 194 - font-size: 34px; 252 252 + font-size: 28px; 253 253 + } 254 254 + 255 255 + .content h2 { 256 256 + font-size: 20px; 257 257 + margin-top: 32px; 258 258 + } 259 259 + 260 260 + .content h3 { 261 261 + font-size: 16px; 262 262 + margin-top: 24px; 195 263 } 196 264 197 265 .content p, 198 266 .content li { 199 199 - line-height: 1.6; 267 267 + line-height: 1.65; 200 268 } 201 269 202 270 .content code { 203 271 font-family: var(--mono); 204 204 - font-size: 0.95em; 272 272 + font-size: 0.9em; 205 273 background: var(--codebg); 206 274 padding: 2px 6px; 207 207 - border-radius: 8px; 275 275 + border-radius: 6px; 208 276 } 209 277 210 278 .content pre { 211 211 - overflow: auto; 212 212 - padding: 14px 16px; 213 213 - border-radius: 12px; 279 279 + overflow-x: auto; 280 280 + padding: 16px; 281 281 + border-radius: 10px; 214 282 background: var(--codebg); 215 283 border: 1px solid var(--border); 284 284 + font-size: 14px; 285 285 + line-height: 1.5; 216 286 } 217 287 218 288 .content pre code { ··· 220 290 padding: 0; 221 291 } 222 292 293 293 + .content details { 294 294 + margin: 16px 0; 295 295 + } 296 296 + 297 297 + .content details summary { 298 298 + cursor: pointer; 299 299 + padding: 8px 0; 300 300 + } 301 301 + 223 302 .empty { 224 303 color: var(--muted); 225 304 } 305 305 + 306 306 + /* Mobile */ 307 307 + @media (max-width: 768px) { 308 308 + :root { 309 309 + --gutter: 16px; 310 310 + } 311 311 + 312 312 + .menu-toggle { 313 313 + display: flex; 314 314 + } 315 315 + 316 316 + .layout { 317 317 + flex-direction: column; 318 318 + } 319 319 + 320 320 + .sidebar { 321 321 + position: fixed; 322 322 + top: 0; 323 323 + left: 0; 324 324 + bottom: 0; 325 325 + width: 280px; 326 326 + max-width: 80vw; 327 327 + z-index: 16; 328 328 + border: none; 329 329 + border-radius: 0; 330 330 + border-right: 1px solid var(--border); 331 331 + max-height: none; 332 332 + padding-top: 60px; 333 333 + transform: translateX(-100%); 334 334 + transition: transform 0.2s ease-out; 335 335 + } 336 336 + 337 337 + .sidebar.open { 338 338 + transform: translateX(0); 339 339 + } 340 340 + 341 341 + .nav { 342 342 + padding: 12px; 343 343 + } 344 344 + 345 345 + .nav a { 346 346 + padding: 12px 14px; 347 347 + font-size: 15px; 348 348 + } 349 349 + 350 350 + .content { 351 351 + padding: 20px; 352 352 + border-radius: 10px; 353 353 + } 354 354 + 355 355 + .content h1 { 356 356 + font-size: 24px; 357 357 + } 358 358 + 359 359 + .content h2 { 360 360 + font-size: 18px; 361 361 + } 362 362 + 363 363 + .content pre { 364 364 + font-size: 13px; 365 365 + padding: 14px; 366 366 + } 367 367 + }

+141 -3

src/internal/handle_resolver.zig

··· 15 15 pub const HandleResolver = struct { 16 16 allocator: std.mem.Allocator, 17 17 http_client: std.http.Client, 18 18 + doh_endpoint: []const u8, 18 19 19 20 pub fn init(allocator: std.mem.Allocator) HandleResolver { 20 21 return .{ 21 22 .allocator = allocator, 22 23 .http_client = .{ .allocator = allocator }, 24 24 + .doh_endpoint = "https://cloudflare-dns.com/dns-query", 23 25 }; 24 26 } 25 27 ··· 29 31 30 32 /// resolve a handle to a DID via HTTP well-known 31 33 pub fn resolve(self: *HandleResolver, handle: Handle) ![]const u8 { 32 32 - return try self.resolveHttp(handle); 34 34 + if (self.resolveHttp(handle)) |did| { 35 35 + return did; 36 36 + } else |_| { 37 37 + return try self.resolveDns(handle); 38 38 + } 33 39 } 34 40 35 41 /// resolve via HTTP at https://{handle}/.well-known/atproto-did ··· 63 69 64 70 return try self.allocator.dupe(u8, did_str); 65 71 } 72 72 + 73 73 + /// resolve via DoH default: https://cloudflare-dns.com/dns-query 74 74 + pub fn resolveDns(self: *HandleResolver, handle: Handle) ![]const u8 { 75 75 + const dns_name = try std.fmt.allocPrint( 76 76 + self.allocator, 77 77 + "_atproto.{s}", 78 78 + .{handle.str()}, 79 79 + ); 80 80 + defer self.allocator.free(dns_name); 81 81 + 82 82 + const url = try std.fmt.allocPrint( 83 83 + self.allocator, 84 84 + "{s}?name={s}&type=TXT", 85 85 + .{ self.doh_endpoint, dns_name }, 86 86 + ); 87 87 + defer self.allocator.free(url); 88 88 + 89 89 + var aw: std.io.Writer.Allocating = .init(self.allocator); 90 90 + defer aw.deinit(); 91 91 + 92 92 + const result = self.http_client.fetch(.{ 93 93 + .location = .{ .url = url }, 94 94 + .extra_headers = &.{ 95 95 + .{ .name = "accept", .value = "application/dns-json" }, 96 96 + }, 97 97 + .response_writer = &aw.writer, 98 98 + }) catch return error.DnsResolutionFailed; 99 99 + 100 100 + if (result.status != .ok) { 101 101 + return error.DnsResolutionFailed; 102 102 + } 103 103 + 104 104 + const response_body = aw.toArrayList().items; 105 105 + const parsed = std.json.parseFromSlice( 106 106 + DnsResponse, 107 107 + self.allocator, 108 108 + response_body, 109 109 + .{}, 110 110 + ) catch return error.InvalidDnsResponse; 111 111 + defer parsed.deinit(); 112 112 + 113 113 + const dns_response = parsed.value; 114 114 + if (dns_response.Answer == null or dns_response.Answer.?.len == 0) { 115 115 + return error.NoDnsRecordsFound; 116 116 + } 117 117 + 118 118 + for (dns_response.Answer.?) |answer| { 119 119 + const data = answer.data orelse continue; 120 120 + const did_str = extractDidFromTxt(data) orelse continue; 121 121 + 122 122 + if (Did.parse(did_str) != null) { 123 123 + return try self.allocator.dupe(u8, did_str); 124 124 + } 125 125 + } 126 126 + 127 127 + return error.NoValidDidFound; 128 128 + } 129 129 + }; 130 130 + 131 131 + fn extractDidFromTxt(txt_data: []const u8) ?[]const u8 { 132 132 + var data = txt_data; 133 133 + if (data.len >= 2 and data[0] == '"' and data[data.len - 1] == '"') { 134 134 + data = data[1 .. data.len - 1]; 135 135 + } 136 136 + 137 137 + const prefix = "did="; 138 138 + if (std.mem.startsWith(u8, data, prefix)) { 139 139 + return data[prefix.len..]; 140 140 + } 141 141 + 142 142 + return null; 143 143 + } 144 144 + 145 145 + const DnsResponse = struct { 146 146 + Status: i32, 147 147 + TC: bool, 148 148 + RD: bool, 149 149 + RA: bool, 150 150 + AD: bool, 151 151 + CD: bool, 152 152 + Question: ?[]Question = null, 153 153 + Answer: ?[]Answer = null, 154 154 + }; 155 155 + 156 156 + const Question = struct { 157 157 + name: []const u8, 158 158 + type: i32, 159 159 + }; 160 160 + 161 161 + const Answer = struct { 162 162 + name: []const u8, 163 163 + type: i32, 164 164 + TTL: i32, 165 165 + data: ?[]const u8 = null, 66 166 }; 67 167 68 168 // === integration tests === 69 169 // these actually hit the network - run with: zig test src/internal/handle_resolver.zig 70 170 71 71 - test "resolve handle - integration" { 171 171 + test "resolve handle (http) - integration" { 72 172 // use arena for http client internals that may leak 73 173 var arena = std.heap.ArenaAllocator.init(std.testing.allocator); 74 174 defer arena.deinit(); ··· 78 178 79 179 // resolve a known handle that has .well-known/atproto-did 80 180 const handle = Handle.parse("jay.bsky.social") orelse return error.InvalidHandle; 81 81 - const did = resolver.resolve(handle) catch |err| { 181 181 + const did = resolver.resolveHttp(handle) catch |err| { 82 182 // network errors are ok in CI without network access 83 183 std.debug.print("network error (expected in some CI): {}\n", .{err}); 84 184 return; ··· 88 188 try std.testing.expect(Did.parse(did) != null); 89 189 try std.testing.expect(std.mem.startsWith(u8, did, "did:plc:")); 90 190 } 191 191 + 192 192 + test "resolve handle (dns over http) - integration" { 193 193 + var arena = std.heap.ArenaAllocator.init(std.testing.allocator); 194 194 + defer arena.deinit(); 195 195 + 196 196 + var resolver = HandleResolver.init(arena.allocator()); 197 197 + defer resolver.deinit(); 198 198 + 199 199 + const handle = Handle.parse("seiso.moe") orelse return error.InvalidHandle; 200 200 + const did = resolver.resolveDns(handle) catch |err| { 201 201 + // network errors are ok in CI without network access 202 202 + std.debug.print("network error (expected in some CI): {}\n", .{err}); 203 203 + return; 204 204 + }; 205 205 + 206 206 + // should be a valid DID 207 207 + try std.testing.expect(Did.parse(did) != null); 208 208 + try std.testing.expect(std.mem.startsWith(u8, did, "did:")); 209 209 + } 210 210 + 211 211 + test "resolve handle - integration" { 212 212 + var arena = std.heap.ArenaAllocator.init(std.testing.allocator); 213 213 + defer arena.deinit(); 214 214 + 215 215 + var resolver = HandleResolver.init(arena.allocator()); 216 216 + defer resolver.deinit(); 217 217 + 218 218 + const handle = Handle.parse("jay.bsky.social") orelse return error.InvalidHandle; 219 219 + const did = resolver.resolve(handle) catch |err| { 220 220 + // network errors are ok in CI without network access 221 221 + std.debug.print("network error (expected in some CI): {}\n", .{err}); 222 222 + return; 223 223 + }; 224 224 + 225 225 + // should be a valid DID 226 226 + try std.testing.expect(Did.parse(did) != null); 227 227 + try std.testing.expect(std.mem.startsWith(u8, did, "did:")); 228 228 + }

+107 -3

src/internal/json.zig

··· 6 6 //! two approaches: 7 7 //! - runtime paths: getString(value, "embed.external.uri") - for dynamic paths 8 8 //! - comptime paths: extractAt(T, alloc, value, .{"embed", "external"}) - for static paths with type safety 9 9 + //! 10 10 + //! debug logging: 11 11 + //! enable with `pub const std_options = .{ .log_scope_levels = &.{.{ .scope = .zat, .level = .debug }} };` 9 12 10 13 const std = @import("std"); 14 14 + const log = std.log.scoped(.zat); 11 15 12 16 /// navigate a json value by dot-separated path 13 17 /// returns null if any segment is missing or wrong type ··· 92 96 /// extract a typed struct from a nested path 93 97 /// uses comptime tuple for path segments - no runtime string parsing 94 98 /// leverages std.json.parseFromValueLeaky for type-safe extraction 99 99 + /// 100 100 + /// on failure, logs diagnostic info when debug logging is enabled for .zat scope 95 101 pub fn extractAt( 96 102 comptime T: type, 97 103 allocator: std.mem.Allocator, ··· 101 107 var current = value; 102 108 inline for (path) |segment| { 103 109 current = switch (current) { 104 104 - .object => |obj| obj.get(segment) orelse return error.MissingField, 105 105 - else => return error.UnexpectedToken, 110 110 + .object => |obj| obj.get(segment) orelse { 111 111 + log.debug("extractAt: missing field \"{s}\" in path {any}, expected {s}", .{ 112 112 + segment, 113 113 + path, 114 114 + @typeName(T), 115 115 + }); 116 116 + return error.MissingField; 117 117 + }, 118 118 + else => { 119 119 + log.debug("extractAt: expected object at \"{s}\" in path {any}, got {s}", .{ 120 120 + segment, 121 121 + path, 122 122 + @tagName(current), 123 123 + }); 124 124 + return error.UnexpectedToken; 125 125 + }, 106 126 }; 107 127 } 108 108 - return std.json.parseFromValueLeaky(T, allocator, current, .{}); 128 128 + return std.json.parseFromValueLeaky(T, allocator, current, .{ .ignore_unknown_fields = true }) catch |err| { 129 129 + log.debug("extractAt: parse failed for {s} at path {any}: {s} (json type: {s})", .{ 130 130 + @typeName(T), 131 131 + path, 132 132 + @errorName(err), 133 133 + @tagName(current), 134 134 + }); 135 135 + return err; 136 136 + }; 109 137 } 110 138 111 139 /// extract a typed value, returning null if path doesn't exist ··· 278 306 const missing = extractAtOptional(Thing, arena.allocator(), parsed.value, .{"missing"}); 279 307 try std.testing.expect(missing == null); 280 308 } 309 309 + 310 310 + test "extractAt logs diagnostic on enum parse failure" { 311 311 + // simulates the issue: unknown enum value from external API 312 312 + const json_str = 313 313 + \\{"op": {"action": "archive", "path": "app.bsky.feed.post/abc"}} 314 314 + ; 315 315 + var arena = std.heap.ArenaAllocator.init(std.testing.allocator); 316 316 + defer arena.deinit(); 317 317 + 318 318 + const parsed = try std.json.parseFromSlice(std.json.Value, arena.allocator(), json_str, .{}); 319 319 + 320 320 + const Action = enum { create, update, delete }; 321 321 + const Op = struct { 322 322 + action: Action, 323 323 + path: []const u8, 324 324 + }; 325 325 + 326 326 + // "archive" is not a valid Action variant - this should fail 327 327 + // with debug logging enabled, you'd see: 328 328 + // debug(zat): extractAt: parse failed for json.Op at path { "op" }: InvalidEnumTag (json type: object) 329 329 + const result = extractAtOptional(Op, arena.allocator(), parsed.value, .{"op"}); 330 330 + try std.testing.expect(result == null); 331 331 + } 332 332 + 333 333 + test "extractAt logs diagnostic on missing field" { 334 334 + const json_str = 335 335 + \\{"data": {"name": "test"}} 336 336 + ; 337 337 + var arena = std.heap.ArenaAllocator.init(std.testing.allocator); 338 338 + defer arena.deinit(); 339 339 + 340 340 + const parsed = try std.json.parseFromSlice(std.json.Value, arena.allocator(), json_str, .{}); 341 341 + 342 342 + const Thing = struct { value: i64 }; 343 343 + 344 344 + // path "data.missing" doesn't exist 345 345 + // with debug logging enabled, you'd see: 346 346 + // debug(zat): extractAt: missing field "missing" in path { "data", "missing" }, expected json.Thing 347 347 + const result = extractAtOptional(Thing, arena.allocator(), parsed.value, .{ "data", "missing" }); 348 348 + try std.testing.expect(result == null); 349 349 + } 350 350 + 351 351 + test "extractAt ignores unknown fields" { 352 352 + // real-world case: TAP messages have extra fields (live, rev, cid) that we don't need 353 353 + const json_str = 354 354 + \\{ 355 355 + \\ "record": { 356 356 + \\ "live": true, 357 357 + \\ "did": "did:plc:abc123", 358 358 + \\ "rev": "3mbspmpaidl2a", 359 359 + \\ "collection": "pub.leaflet.document", 360 360 + \\ "rkey": "xyz789", 361 361 + \\ "action": "create", 362 362 + \\ "cid": "bafyreitest" 363 363 + \\ } 364 364 + \\} 365 365 + ; 366 366 + var arena = std.heap.ArenaAllocator.init(std.testing.allocator); 367 367 + defer arena.deinit(); 368 368 + 369 369 + const parsed = try std.json.parseFromSlice(std.json.Value, arena.allocator(), json_str, .{}); 370 370 + 371 371 + // only extract the fields we care about 372 372 + const Record = struct { 373 373 + collection: []const u8, 374 374 + action: []const u8, 375 375 + did: []const u8, 376 376 + rkey: []const u8, 377 377 + }; 378 378 + 379 379 + const rec = try extractAt(Record, arena.allocator(), parsed.value, .{"record"}); 380 380 + try std.testing.expectEqualStrings("pub.leaflet.document", rec.collection); 381 381 + try std.testing.expectEqualStrings("create", rec.action); 382 382 + try std.testing.expectEqualStrings("did:plc:abc123", rec.did); 383 383 + try std.testing.expectEqualStrings("xyz789", rec.rkey); 384 384 + }

+5 -1

src/internal/xrpc.zig

··· 18 18 /// bearer token for authenticated requests 19 19 access_token: ?[]const u8 = null, 20 20 21 21 + /// atproto JWTs are ~1KB; buffer needs room for "Bearer " prefix 22 22 + const max_auth_header_len = 2048; 23 23 + 21 24 pub fn init(allocator: std.mem.Allocator, host: []const u8) XrpcClient { 22 25 return .{ 23 26 .allocator = allocator, ··· 89 92 // https://github.com/ziglang/zig/issues/25021 90 93 var extra_headers: std.http.Client.Request.Headers = .{ 91 94 .accept_encoding = .{ .override = "identity" }, 95 95 + .content_type = if (body != null) .{ .override = "application/json" } else .default, 92 96 }; 93 93 - var auth_header_buf: [256]u8 = undefined; 97 97 + var auth_header_buf: [max_auth_header_len]u8 = undefined; 94 98 if (self.access_token) |token| { 95 99 const auth_value = try std.fmt.bufPrint(&auth_header_buf, "Bearer {s}", .{token}); 96 100 extra_headers.authorization = .{ .override = auth_value };