feat(I198): migrate to InvocationContext (lockstep) #1

Merged

buildagent merged 2 commits from feat/i198-invocation-context into main 2026-05-27 13:55:02 +02:00

Conversation 0 Commits 2 Files changed 14 +600 -1644

buildagent commented 2026-05-26 22:55:15 +02:00

Member

Copy link

Lockstep with h-dv/ixt#173 and h-dv/ixt-public#1 per spec doc/concept/21-invocation-context.md.

Summary

MIT crate, independent of ixt-core. Defines its own mirror types matching the new wire schema in ixt-public.

What changed

• src/types.rs:
  • DELETED: RequestContext, SecurityContext, SecurityLevel (pre-1.0, no compat shim per feedback_no_premature_compat).
  • ADDED: InvocationContext, ActorIdentity, ActorSubject, TokenRef, MessageTarget, metadata_keys — structurally identical to the runtime side.
  • SessionToken kept as a sibling (spec 21 §11.2: dispatched alongside the context, not inside it).
• src/conversions.rs: invocation_context_to/from_capnp + actor_identity_* + message_target_* replace the legacy converters.
• src/ffi.rs: deserialiser decodes module_capnp::invocation_context::Reader.
• IxtModule::handle(&InvocationContext, ...) everywhere.
• examples/auth_basic.rs + examples/auth_truststore_client.rs DELETED — taught the deleted SecurityLevel/SecurityContext model. Spec-21/22-aligned auth examples will land with I199.
• tests/module_interface_tests.rs: 5 new tests covering InvocationContext::anonymous, capability checks, wildcard semantics, TokenRef redaction, and metadata lookup.

Submodule

• Nested ixt-public submodule bumped to d1b377c422a164a6da7f903b16f6b50a5b6193c6 (PR #1 there).

Test plan

• CI green (Forgejo workflow)
• Locally validated as part of workspace check in h-dv/ixt PR #173

Merge order: h-dv/ixt-public#1 first, then this PR, then h-dv/ixt#173.

🤖 Generated with Claude Code

Lockstep with [h-dv/ixt#173](https://git.h-dv.de/h-dv/ixt/pulls/173) and [h-dv/ixt-public#1](https://git.h-dv.de/h-dv/ixt-public/pulls/1) per spec `doc/concept/21-invocation-context.md`. ## Summary MIT crate, independent of ixt-core. Defines its own mirror types matching the new wire schema in `ixt-public`. ## What changed - `src/types.rs`: - DELETED: `RequestContext`, `SecurityContext`, `SecurityLevel` (pre-1.0, no compat shim per `feedback_no_premature_compat`). - ADDED: `InvocationContext`, `ActorIdentity`, `ActorSubject`, `TokenRef`, `MessageTarget`, `metadata_keys` — structurally identical to the runtime side. - `SessionToken` kept as a sibling (spec 21 §11.2: dispatched alongside the context, not inside it). - `src/conversions.rs`: `invocation_context_to/from_capnp` + `actor_identity_*` + `message_target_*` replace the legacy converters. - `src/ffi.rs`: deserialiser decodes `module_capnp::invocation_context::Reader`. - `IxtModule::handle(&InvocationContext, ...)` everywhere. - `examples/auth_basic.rs` + `examples/auth_truststore_client.rs` DELETED — taught the deleted `SecurityLevel`/`SecurityContext` model. Spec-21/22-aligned auth examples will land with I199. - `tests/module_interface_tests.rs`: 5 new tests covering `InvocationContext::anonymous`, capability checks, wildcard semantics, `TokenRef` redaction, and metadata lookup. ## Submodule - Nested `ixt-public` submodule bumped to `d1b377c422a164a6da7f903b16f6b50a5b6193c6` (PR #1 there). ## Test plan - [ ] CI green (Forgejo workflow) - [ ] Locally validated as part of workspace check in `h-dv/ixt` PR #173 Merge order: `h-dv/ixt-public#1` first, then this PR, then `h-dv/ixt#173`. 🤖 Generated with [Claude Code](https://claude.com/claude-code)

buildagent added 2 commits 2026-05-26 22:55:15 +02:00

feat(I198): migrate ixt-sdk-rust to InvocationContext (spec 21) ... 2092e547e2

Lockstep with the ixt-public Cap'n Proto schema bump
(feat/i198-invocation-context) and the ixt-core wire migration on
branch feat/i198-invocation-context-lockstep.

Types (src/types.rs):
- Deleted: RequestContext, SecurityContext, SecurityLevel
  (pre-1.0, no compat shim per feedback_no_premature_compat).
- Added: InvocationContext, ActorIdentity, ActorSubject, TokenRef,
  MessageTarget, metadata_keys. Mirrors ixt_core::invocation::*.
- TokenRef Debug/Display always render <redacted> (spec 21 §7).
- SessionToken stays as a sibling type (spec 21 §11.2: dispatched
  alongside the context, never inside it).

Conversions (src/conversions.rs):
- Replaced request_context_to/from_capnp + security_context_* +
  security_level_* with invocation_context_to/from_capnp and the
  supporting actor_identity_* / message_target_* converters.
- token_ref bytes are projected onto the wire as opaque Data
  (spec 21 §7 — never raw token material).

FFI bridge (src/ffi.rs):
- Deserialiser now decodes module_capnp::invocation_context::Reader.

Macros (src/macros.rs):
- IxtModule trait signature is &InvocationContext.

Examples / tests:
- hello_module, async_init_demo, lifecycle_demo migrated.
- module_interface_tests: deleted SecurityContext/RequestContext tests;
  added InvocationContext / ActorIdentity / TokenRef coverage.
- auth_basic + auth_truststore_client examples DELETED — they taught
  the pre-spec-21 SecurityLevel/SecurityContext model that is gone.
  Spec-21/spec-22-aligned auth examples will return with I199.

Co-Authored-By: Claude Opus 4.7 <noreply@anthropic.com>

style(I198): rustfmt pass on ixt-sdk-rust migration ... 8f9665cab3

Pure formatting follow-up to the InvocationContext migration commit.

Co-Authored-By: Claude Opus 4.7 <noreply@anthropic.com>

dhoyer referenced this pull request from a commit 2026-05-26 22:56:20 +02:00

docs(I198): backlog sync — lockstep PR triad open

buildagent merged commit a2d1cff739 into main 2026-05-27 13:55:02 +02:00

buildagent referenced this pull request from a commit 2026-05-27 13:55:03 +02:00

Merge pull request 'feat(I198): migrate to InvocationContext (lockstep)' (#1) from feat/i198-invocation-context into main

dhoyer referenced this pull request from a commit 2026-05-27 13:55:38 +02:00

docs: backlog sync — I198 submodule PRs merged

buildagent referenced this pull request from a commit 2026-05-27 13:56:07 +02:00

Merge pull request 'feat(I198): InvocationContext unification — lockstep migration' (#173) from feat/i198-invocation-context-lockstep into main

dhoyer referenced this pull request from a commit 2026-05-27 13:57:18 +02:00

docs: backlog sync — I198 lockstep merged (3 repos)

Sign in to join this conversation.

Reviewers

No reviewers

Labels

Clear labels

  

Kind/Breaking

Breaking change that won't be backward compatible

  

Kind/Bug

Something is not working

  

Kind/Documentation

Documentation changes

  

Kind/Enhancement

Improve existing functionality

  

Kind/Feature

New functionality

  

Kind/Security

This is security issue

  

Kind/Testing

Issue or pull request related to testing

  

Priority

Critical

The priority is critical

  

Priority

High

The priority is high

  

Priority

Low

The priority is low

  

Priority

Medium

The priority is medium

  

Reviewed

Confirmed

Issue has been confirmed

  

Reviewed

Duplicate

This issue or pull request already exists

  

Reviewed

Invalid

Invalid issue

  

Reviewed

Won't Fix

This issue won't be fixed

  

Status

Abandoned

Somebody has started to work on this but abandoned work

  

Status

Blocked

Something is blocking this issue or pull request

  

Status

Need More Info

Feedback is required to reproduce issue or to continue work

No labels

Kind/Breaking

Kind/Bug

Kind/Documentation

Kind/Enhancement

Kind/Feature

Kind/Security

Kind/Testing

Priority

Critical

Priority

High

Priority

Low

Priority

Medium

Reviewed

Confirmed

Reviewed

Duplicate

Reviewed

Invalid

Reviewed

Won't Fix

Status

Abandoned

Status

Blocked

Status

Need More Info

Milestone

Clear milestone

No items

No milestone

Projects

Clear projects

No items

No project

Assignees

Clear assignees

No assignees

1 participant

Notifications

Subscribe

Due date

The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference

h-dv/ixt-sdk-rust!1

No description provided.