Proxy to prebid server

.env.dev

@@ -1,6 +1,9 @@
 # [ad_server]
 TRUSTED_SERVER__AD_SERVER__AD_PARTNER_URL=http://127.0.0.1:10180
 
+# [publisher]
+TRUSTED_SERVER__PUBLISHER__ORIGIN_URL=http://localhost:9090
+
 # [synthetic]
 TRUSTED_SERVER__SYNTHETIC__COUNTER_STORE=counter_store
 TRUSTED_SERVER__SYNTHETIC__OPID_STORE=opid_store

.github/workflows/format.yml

@@ -6,9 +6,8 @@ on:
   pull_request:
     branches: [main]
 
-# Check formatting with rustfmt
 jobs:
-  format:
+  format-rust:
     name: cargo fmt
     runs-on: ubuntu-latest
     steps:
@@ -45,3 +44,33 @@ jobs:
       - name: Run cargo clipply
         run: cargo clippy --all-targets --all-features
 
+  format-typescript:
+    runs-on: ubuntu-latest
+    defaults:
+      run:
+        working-directory: crates/js/lib
+
+    steps:
+      - uses: actions/checkout@v4
+
+      - name: Retrieve Node.js version
+        id: node-version
+        working-directory: .
+        run: echo "node-version=$(grep '^nodejs ' .tool-versions | awk '{print $2}')" >> $GITHUB_OUTPUT
+        shell: bash
+
+      - name: Use Node.js
+        uses: actions/setup-node@v4
+        with:
+          node-version: ${{ steps.node-version.outputs.node-version }}
+          cache: 'npm'
+          cache-dependency-path: crates/js/lib/package.json
+
+      - name: Install dependencies
+        run: npm ci
+
+      - name: Run ESLint
+        run: npm run lint
+
+      - name: Run Prettier (check)
+        run: npm run format

.github/workflows/test.yml

@@ -7,7 +7,7 @@ on:
     branches: [main]
 
 jobs:
-  test:
+  test-rust:
     name: cargo test
     runs-on: ubuntu-latest
     steps:
@@ -37,8 +37,39 @@ jobs:
       - name: Add wasm32-wasi target
         run: rustup target add wasm32-wasip1
 
-      - name: Setup Viceroy
-        run: cargo install viceroy
+      - name: Setup Viceroy (from main since 0.14.3 is broken)
+        run: cargo install --git https://github.com/fastly/Viceroy viceroy
 
       - name: Run tests
         run: cargo test
+
+  test-typescript:
+    name: vitest
+    runs-on: ubuntu-latest
+    defaults:
+      run:
+        working-directory: crates/js/lib
+    steps:
+      - uses: actions/checkout@v4
+
+      - name: Retrieve Node.js version
+        id: node-version
+        working-directory: .
+        run: echo "node-version=$(grep '^nodejs ' .tool-versions | awk '{print $2}')" >> $GITHUB_OUTPUT
+        shell: bash
+
+      - name: Use Node.js
+        uses: actions/setup-node@v4
+        with:
+          node-version: ${{ steps.node-version.outputs.node-version }}
+          cache: 'npm'
+          cache-dependency-path: crates/js/lib/package.json
+
+      - name: Install dependencies
+        run: npm ci
+
+      - name: Build bundle
+        run: npm run build
+
+      - name: Run unit tests
+        run: npm test -- --run

.tool-versions

@@ -1,2 +1,3 @@
-fasltly 11.3.0
-rust 1.87.0
+fasltly 12.0.0
+rust 1.90.0
+nodejs 24.7.0

AGENTS.md

@@ -0,0 +1,117 @@
+# AGENTS.md
+
+Centralized guidelines for AI coding agents working in this repository. Review the
+common setup steps before executing tasks, then follow any assistant-specific
+instructions.
+
+## Common Setup
+
+- Always read the full coding standards at the start of a session:
+
+  ```bash
+  cat .agents/rules/*
+  ```
+
+- Use `cargo fmt`, `cargo clippy`, and `cargo test` where appropriate before
+  delivering code changes.
+- When work touches Fastly behavior or runtime configuration, review
+  `fastly.toml`, `trusted-server.toml`, and `.env.dev`.
+
+## Claude Code
+
+This section consolidates the guidance previously stored in `CLAUDE.md` for
+Claude Code (claude.ai/code).
+
+### Project Overview
+
+Rust-based edge computing application targeting Fastly Compute. Handles
+privacy-preserving synthetic ID generation, ad serving with GDPR compliance, and
+real-time bidding integration.
+
+### Key Commands
+
+#### Build & Development
+
+```bash
+# Standard build
+cargo build
+
+# Production build for Fastly
+cargo build --bin trusted-server-fastly --release --target wasm32-wasip1
+
+# Run locally with Fastly simulator
+fastly compute serve
+
+# Deploy to Fastly
+fastly compute publish
+```
+
+#### Testing & Quality
+
+```bash
+# Run tests (requires viceroy)
+cargo test
+
+# Install test runtime if needed
+cargo install viceroy
+
+# Format code
+cargo fmt
+
+# Lint with clippy
+cargo clippy --all-targets --all-features
+
+# Check compilation
+cargo check
+```
+
+### Architecture Overview
+
+#### Workspace Structure
+
+- **trusted-server-common**: Core library with shared functionality
+  - Synthetic ID generation (`src/synthetic.rs`)
+  - Cookie handling (`src/cookies.rs`)
+  - HTTP abstractions (`src/http_wrapper.rs`)
+  - GDPR consent management (`src/gdpr.rs`)
+- **trusted-server-fastly**: Fastly-specific implementation
+  - Main application entry point
+  - Fastly SDK integration
+  - Request/response handling
+
+### Key Design Patterns
+
+1. **RequestWrapper Trait**: Abstracts HTTP request handling to support different
+   backends.
+2. **Settings-Driven Config**: External configuration via `trusted-server.toml`.
+3. **Privacy-First**: All tracking requires GDPR consent checks.
+4. **HMAC-Based IDs**: Synthetic IDs generated using HMAC with configurable templates.
+
+### Configuration Files
+
+- `fastly.toml`: Fastly service configuration and build settings.
+- `trusted-server.toml`: Application settings (ad servers, KV stores, ID templates).
+- `rust-toolchain.toml`: Pins Rust version to 1.90.0.
+
+### Key Functionality Areas
+
+1. Synthetic ID generation using HMAC-based templates.
+2. Ad serving integrations (currently Equativ).
+3. GDPR consent handling and validation.
+4. Geolocation utilities (DMA code extraction).
+5. Prebid integration for real-time bidding flows.
+6. KV store usage for counters and domain mappings.
+
+### Testing Approach
+
+- Unit tests reside alongside source files under `#[cfg(test)]` modules.
+- Uses Viceroy for local Fastly Compute simulation.
+- GitHub Actions CI runs format and test workflows.
+
+### Important Notes
+
+- Target platform is WebAssembly (`wasm32-wasip1`).
+- Relies on Fastly KV stores for persistence.
+- Uses Handlebars templates for dynamic responses.
+- Emits detailed logs for edge debugging.
+- Follow conventional commit format (see `CONTRIBUTING.md`).

CHANGELOG.md

@@ -6,27 +6,7 @@ All notable changes to this project will be documented in this file.
 The format is based on [Keep a Changelog](https://keepachangelog.com/en/1.1.0/),
 and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0.html).
 
-## [Unreleased]
-
-### Added
-- for new features
-
-### Changed
--  for changes in existing functionality
-
-### Deprecated 
-- for soon-to-be removed features.
-
-### Removed 
-- for now removed features
-
-### Fixed
-- for any bug fixes
-
-### Security
-- in case of vulnerabilities
-
-## [Unreleased]
+## [1.1.0] - 2025-10-05
 
 ### Added
 - Added basic unit tests
@@ -36,20 +16,22 @@ and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0
 - Add more complete e2e GAM (Google Ad Manager) integration with request construction and ad serving capabilities
 - Add new partners.rs module for partner-specific configurations
 - Created comprehensive publisher IDs audit document identifying hardcoded values
+- Enabled first-party ad endpoints that rewrite creatives in first party domain
+- Added first-party end point to proxy Prebid auctions
+- Added Trusted Server TSJS SDK with bundled build, lint, and test tools for serving creatives in first-party domain
 
 ### Changed
-- Upgrade to rust 1.87.0
-- Upgrade to fastly-cli 11.3.0
+- Upgrade to rust 1.90.0
+- Upgrade to fastly-cli 12.0.0
 - Changed to use constants for headers
 - Changed to use log statements
 - Updated fastly.toml for local development
 - Changed to propagate server errors as HTTP errors
+- Reworked Fastly routing so first-party endpoints and synthetic cookies stay in sync
+- Added TypeScript CI lint, format, and test jobs for TSJS
 
 ### Fixed
-- Rebuild when `TRUSTED_SERVER__*` env variables change 
-
-### Fixed
-- Rebuild when `TRUSTED_SERVER__*` env variables change 
+- Rebuild when `TRUSTED_SERVER__*` env variables change
 
 ## [1.0.6] - 2025-05-29
 

CLAUDE.md

@@ -1,106 +1,4 @@
 # CLAUDE.md
 
-This file provides guidance to Claude Code (claude.ai/code) when working with code in this repository.
-
-## Project Overview
-
-This is a Rust-based edge computing application designed for Fastly Compute. It handles privacy-preserving synthetic ID generation, ad serving with GDPR compliance, and real-time bidding integration.
-
-## Key Commands
-
-### Build & Development
-```bash
-# Standard build
-cargo build
-
-# Production build for Fastly
-cargo build --bin trusted-server-fastly --release --target wasm32-wasip1
-
-# Run locally with Fastly simulator
-fastly compute serve
-
-# Deploy to Fastly
-fastly compute publish
-```
-
-### Testing & Quality
-```bash
-# Run tests (requires viceroy)
-cargo test
-
-# Install test runtime if needed
-cargo install viceroy
-
-# Format code
-cargo fmt
-
-# Lint with clippy
-cargo clippy --all-targets --all-features
-
-# Check compilation
-cargo check
-```
-
-## Architecture Overview
-
-### Workspace Structure
-- **trusted-server-common**: Core library with shared functionality
-  - Synthetic ID generation (`src/synthetic.rs`)
-  - Cookie handling (`src/cookies.rs`)
-  - HTTP abstractions (`src/http_wrapper.rs`)
-  - GDPR consent management (`src/gdpr.rs`)
-
-- **trusted-server-fastly**: Fastly-specific implementation
-  - Main application entry point
-  - Fastly SDK integration
-  - Request/response handling
-
-### Key Design Patterns
-1. **RequestWrapper Trait**: Abstracts HTTP request handling to support different backends
-2. **Settings-Driven Config**: External configuration via `trusted-server.toml`
-3. **Privacy-First**: All tracking requires GDPR consent checks
-4. **HMAC-Based IDs**: Synthetic IDs generated using HMAC with configurable templates
-
-### Configuration Files
-- `fastly.toml`: Fastly service configuration and build settings
-- `trusted-server.toml`: Application settings (ad servers, KV stores, ID templates)
-- `rust-toolchain.toml`: Pins Rust version to 1.87.0
-
-### Key Functionality Areas
-1. **Synthetic ID Generation**: Privacy-preserving user identification using HMAC
-2. **Ad Serving**: Integration with ad partners (currently Equativ)
-3. **GDPR Compliance**: Consent management via TCF strings
-4. **Geolocation**: DMA code extraction for targeted advertising
-5. **Prebid Integration**: Real-time bidding support
-6. **KV Store Usage**: Persistent storage for counters and domain mappings
-
-### Testing Approach
-- Unit tests embedded in source files using `#[cfg(test)]` modules
-- Uses Viceroy for local Fastly Compute simulation
-- GitHub Actions CI with test and format workflows
-
-### Important Notes
-- Target platform is WebAssembly (wasm32-wasip1)
-- Uses Fastly KV stores for persistence
-- Handlebars templating for dynamic responses
-- Comprehensive logging for edge debugging
-- Follow conventional commits format (see CONTRIBUTING.md)
-
-## Coding Standards Reference
-
-**IMPORTANT: I must ALWAYS read the full coding standards at the beginning of EACH session using this command:**
-
-```bash
-cat .cursor/rules/*
-```
-
-The rules in `.cursor/rules/*` contain detailed guidelines for:
-
-- Git commit conventions
-- Rust coding style (type system, async patterns, function arguments, etc.)
-- Documentation practices (structure, links, error documentation, etc.)
-- Error handling with error-stack
-- Testing strategy and assertions
-- Tracing and instrumentation
-
-These full guidelines contain critical nuances and details that cannot be summarized. Reading the complete rules is essential for ensuring code quality and consistency.
+Guidance for Claude Code has moved to `AGENTS.md`. Keep this stub for tooling that
+still expects `CLAUDE.md`, but refer to `AGENTS.md` for the canonical instructions.