XOpat — Managing the Viewer Storage

xOpat exposes one unified IO pipeline (window.IO_PIPELINE, also at APPLICATION_CONTEXT.io) that subsumes:

bundle export/import (whole-set serialize/deserialize),
per-element CRUD (Create/Read/Update/Delete),
key/value storage (sync cache & cookies, async data).

For the full architecture and admin-side guide see IO_PIPELINE.md. This file is the storage-focused quick reference.

Out of the box

By default, the viewer allows sharing data via:

URL exports — carry over only the explicit session storage; cached storages (cache, cookies) are turned off when viewed.
FILE / HTML exports — contain the full viewer data as-is, driven by IO_PIPELINE.flushBundleExport(). Owners that declared a bundle-export capability and have no admin override land in the legacy post-data sink (the HTML form), so the existing session-share semantics are preserved.

Sync key-value storage (`kv:cache`, `kv:cookies`)

Plugins and modules get sync per-element accessors automatically:

this.cache.set("autoOpen", true);
const value = this.cache.get("autoOpen", false);

this.cookies.set("token", "...");
this.cookies.with({ expires: 7 }).set("session", "...");   // builder for cookie attrs

Both delegate to IO_PIPELINE.kv(this.uid, "kv:cache") (or "kv:cookies"). Default drivers are local-storage and cookies. The empty-string id of legacy XOpatStorage.Cache({ id: "" }) is now the conventional "core" owner.

Async key-value storage (`kv:data`)

await this.data.set("draft", largePayload);
const draft = await this.data.get("draft");

Default driver: post-data (writes into the legacy POST_DATA bucket so the session HTML export still picks it up). Admins can rebind to http-rest (HttpClient-backed) for server persistence.

Custom namespaces

Declare a custom KV namespace in include.json and use it directly:

"io": {
  "capabilities": [{ "id": "kv:drafts", "kind": "kv" }]
}

const drafts = IO_PIPELINE.kv(this.uid, "kv:drafts");
drafts.set("page-1", payload);

Drivers

A KV driver is any object satisfying the localStorage interface (getItem/setItem/removeItem/key/length/clear). Drivers self-describe sync vs. async, shared vs. owned (shared drivers get auto-prefixed keys to prevent collisions across owners), and optional context-aware mode.

Built-in drivers (registered at boot):

local-storage (sync) — window.localStorage
session-storage (sync) — window.sessionStorage
cookies (sync) — js-cookie wrapper, with memory fallback
memory (sync) — in-process Map
post-data (async) — POST_DATA bucket (preserves legacy session export shape)
http-rest (async) — HttpClient-backed; per-deployment overrides in ENV.client.io.sinkOverrides

IO_PIPELINE.registerKVDriver({
  id: "indexeddb",
  mode: "async",
  shared: true,
  async getItem(k) { /* … */ },
  async setItem(k, v) { /* … */ },
  // … rest of localStorage interface
});

Admin redirection

Bindings live in ENV.client.io:

{
  "bindings": {
    "core": {
      "kv:cache":   ["local-storage"],          // also the default
      "kv:cookies": ["cookies"]
    },
    "plugin.playground": {
      "kv:cache":   ["http-rest:playground"]    // route this plugin's drafts elsewhere
    }
  },
  "sinkOverrides": {
    "http-rest:playground": { "proxy": "cerit", "baseURL": "/api/v1/drafts" }
  }
}

Resolution order for kv:*:

Admin disabled → no-op.
bindings[ownerId][capabilityId] → that exact list.
include.json io.defaultBindings[capabilityId] → that list.
Inherit from core if the admin set one (the "redirect everything" knob).
Built-in fallback per namespace.

A capability bound to multiple drivers mirror-writes; reads consult them in order.

Sync ↔ async safety

this.cache and this.cookies are sync. If an admin binds them to an async driver, handle construction throws IOError listing the offending drivers. Use kv:data (async by contract) for asynchronous backends.

Direct driver inheritance — base classes

Custom drivers may extend the base classes for type compatibility, but it is not required (any localStorage-shaped object works):

import { XOpatStorage } from "./store";
class MyDriver extends XOpatStorage.Storage { /* sync */ }
class MyAsyncDriver extends XOpatStorage.AsyncStorage { /* async */ }
class MyCookieDriver extends XOpatStorage.CookieStorage { /* with .with(opts) */ }

Bootstrap exception

The app's session-recovery payload (__xopat_session__ in sessionStorage) is the one storage flow not routed through the pipeline — it must be readable before initXOpatLoader runs. Plugins/modules wanting admin-routable session-scoped storage should use IO_PIPELINE.kv(uid, "kv:session") instead.

Out of the box​

Sync key-value storage (kv:cache, kv:cookies)​

Async key-value storage (kv:data)​

Custom namespaces​

Drivers​

Admin redirection​

Sync ↔ async safety​

Direct driver inheritance — base classes​

Bootstrap exception​