arcp-runtime 2.0.0

Reference runtime (server side) for the Agent Runtime Control Protocol (ARCP) — ARCPRuntime, job / session machinery, persistent store, auth validators, and the `arcp` CLI.
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53

//! Per-session bookkeeping owned by the runtime.

use arcp_core::ids::SessionId;
use arcp_core::messages::Capabilities;

/// Phase of the four-step handshake (RFC §8.1).
#[derive(Debug, Clone, Copy, PartialEq, Eq, Hash)]
pub enum HandshakePhase {
    /// `session.open` received; waiting for credential validation outcome.
    Opened,
    /// `session.challenge` sent; awaiting `session.authenticate`.
    Challenged,
    /// `session.accepted` sent; protocol traffic permitted.
    Accepted,
    /// Terminal: rejected or evicted.
    Closed,
}

/// Server-side bookkeeping for one session.
#[derive(Debug, Clone)]
pub struct SessionState {
    /// Session identifier.
    pub session_id: SessionId,
    /// Authenticated principal (set after `session.accepted`).
    pub principal: Option<String>,
    /// Negotiated capability set.
    pub capabilities: Capabilities,
    /// Current handshake phase.
    pub phase: HandshakePhase,
    /// Active challenge nonce (set during `Challenged`).
    pub active_challenge: Option<String>,
}

impl SessionState {
    /// Construct a new session in [`HandshakePhase::Opened`].
    #[must_use]
    pub const fn new(session_id: SessionId, capabilities: Capabilities) -> Self {
        Self {
            session_id,
            principal: None,
            capabilities,
            phase: HandshakePhase::Opened,
            active_challenge: None,
        }
    }

    /// True when the session has completed the handshake and may carry
    /// non-handshake protocol traffic.
    #[must_use]
    pub const fn is_accepted(&self) -> bool {
        matches!(self.phase, HandshakePhase::Accepted)
    }
}