Module dotfile 

Dotfile allowlist (F2).

Rejects any inbound request whose path contains a component starting with . unless that component is explicitly allowlisted. Default allowlist mirrors JSS: .acl and .meta — the standard Solid metadata sidecars.

Upstream parity: JavaScriptSolidServer/src/server.js:265-281. Design context: docs/design/jss-parity/01-security-primitives-context.md.

Structs

DotfileAllowlist

Dotfile allowlist (aggregate root).

Enums

DotfileError

Reason a path was rejected.

DotfilePathError

Dotfile allowlist errors used by the row-115 free primitive.

Constants

DEFAULT_ALLOWED

Default allowlist entries. Matches JSS behaviour for standard Solid metadata sidecars and the IdP login endpoint (JSS commit 32c0db2).

ENV_DOTFILE_ALLOWLIST

Environment variable: comma-separated dotfile names permitted by the allowlist. Each entry may or may not include the leading .; the allowlist stores them normalised (leading . present).

Functions

is_path_allowed

Decide whether path may be served, purely by inspecting its segments. Returns Ok(()) when every segment is admissible.