Fields

• pdPrivateBaseUrl :: Text

  The private upstream base URL; under passthrough, reads forward the client's credential.

• pdPublicBaseUrl :: Text

  The public upstream base URL; reads are anonymous (no client credential).

• pdMountBaseUrl :: Text

  The mount's externally-visible base URL, under which served dist.tarball URLs are rewritten so artifacts are fetched back through the gate.

• pdMirrorTarget :: Text

  The mount's mirror-target endpoint — where the demand-driven mirror worker publishes an approved artifact. Carried on the enqueued MirrorJob as its publish destination; the serve path never reads or writes it itself.

• pdRules :: [PrecededRule]

  The mount's resolved pure rule policy, evaluated against every public version.

• pdEffectfulRules :: [PrecededEffectfulRule]

  The mount's effectful rule policy (advisory lookups, per-version fetches), layered on the pure tier per Ecluse.Rules.Effectful. Empty when no effectful rule is configured, in which case the effectful tier is skipped and gating reduces exactly to the pure tier.

• pdTarballHostPolicy :: TarballHostPolicy

  Whether a tarball may be fetched from a dist.tarball host that differs from the upstream that served the packument (SameHostAsPackument by default, the secure reading of the host allowlist; relaxed to AnyAllowlistedHost by PROXY_RESPECT_UPSTREAM_TARBALL_HOST).

• pdAllowedInternalHosts :: LoweredHostSet

  The hosts deliberately opted in to the internal-range block when gating an honoured artifact location (tarballHostAllowed). This is the same per-host opt-in the guarded manager's resolved-IP recheck honours (see Ecluse.Security.Egress), carried here so the pure tarball-host gate and the connection-time recheck agree on which internal hosts are deliberate. Empty by default — the secure reading, matching the composition root's guarded manager.

• pdLimits :: Limits

  The response-bound budget enforced on every upstream metadata fetch and decode (PROXY_MAX_RESPONSE_BYTES/PROXY_MAX_VERSION_COUNT/PROXY_MAX_NESTING_DEPTH): the body-size, version-count, and JSON-nesting ceilings of Limits. The data plane reads the metadata body through boundedRead against maxBodyBytes, checks checkNestingDepth at the JSON-decode boundary, and checkVersionCount after projection; a breach degrades the contribution to nothing (the fail-closed parse-failure path), so a pathological upstream document is refused, never partially served (security.md invariant 4).

• pdInboundToken :: Maybe Secret

  The optional inbound token a client must present (PROXY_AUTH_TOKEN); Nothing leaves the edge open (the network layer guards it).

• pdNow :: IO UTCTime

  The wall-clock "now" for the rules' EvalContext. Injected so the time-sensitive age gate is deterministic under test.

• pdHelp :: Maybe HelpMessage

  The operator help message appended to every denial body, if configured.

• pdMinIntegrity :: MinIntegrity

  The minimum integrity algorithm a public version's digest must meet to be admitted (the global PROXY_MIN_PUBLIC_INTEGRITY floor, default SHA-256). The public gate refuses a version whose strongest digest is below this; the trusted private path never consults it (see Ecluse.Package.Integrity).

Fields

• bindingPrefix :: NonEmpty Text

  The leading path segments this mount is served under; never empty.

• bindingClassifier :: Classifier

  The ecosystem path grammar mapping this mount's native path to an Route.

• bindingPackumentDeps :: Maybe PackumentDeps

  The packument-serve dependencies, when wired; Nothing leaves the packument route recognised-but-unserved (the 501 stub).

• bindingRenderer :: MountRenderer

  This mount's renderer for error/denial bodies — the ecosystem surface an in-mount 403/404/501 is shaped into.

Fields

• ctxEnv :: Env

  The composition root — the handles, the shared HTTP manager, the caches, the logger.

• ctxMount :: MountBinding

  The mount the request matched, carrying its complete ecosystem wiring.

Fields

• unHandler :: ReaderT RequestCtx (KatipContextT IO) a