Merge pull request #140 from auths-dev/dev-fixDoc404

docs: fix 404 on doc pages and automate gen-docs for cli

Author: bordumb

crates/xtask/src/gen_docs.rs

@@ -25,7 +25,6 @@ flowchart LR
 | `agent` | SSH agent daemon (`AgentCore`, `AgentHandle`, `AgentSession`) |
 | `error` | `AgentError` enum with `AuthsErrorInfo` trait for structured error codes |
 | `config` | `EnvironmentConfig` for reading keychain and path settings |
-| `keri_did` | KERI DID parsing and construction |
 | `pairing` | Ephemeral ECDH pairing protocol types |
 | `paths` | `auths_home()` and related path resolution |
 | `policy` | Policy evaluation types |
@@ -101,11 +100,12 @@ Platform-agnostic interface for storing and loading encrypted private keys. All
 
 ```rust
 pub trait KeyStorage: Send + Sync {
-    fn store_key(&self, alias: &KeyAlias, identity_did: &IdentityDID, encrypted_key_data: &[u8]) -> Result<(), AgentError>;
-    fn load_key(&self, alias: &KeyAlias) -> Result<(IdentityDID, Vec<u8>), AgentError>;
+    fn store_key(&self, alias: &KeyAlias, identity_did: &IdentityDID, role: KeyRole, encrypted_key_data: &[u8]) -> Result<(), AgentError>;
+    fn load_key(&self, alias: &KeyAlias) -> Result<(IdentityDID, KeyRole, Vec<u8>), AgentError>;
     fn delete_key(&self, alias: &KeyAlias) -> Result<(), AgentError>;
     fn list_aliases(&self) -> Result<Vec<KeyAlias>, AgentError>;
     fn list_aliases_for_identity(&self, identity_did: &IdentityDID) -> Result<Vec<KeyAlias>, AgentError>;
+    fn list_aliases_for_identity_with_role(&self, identity_did: &IdentityDID, role: KeyRole) -> Result<Vec<KeyAlias>, AgentError>;
     fn get_identity_for_alias(&self, alias: &KeyAlias) -> Result<IdentityDID, AgentError>;
     fn backend_name(&self) -> &'static str;
 }

docs/architecture/crates/auths-core.md

@@ -33,6 +33,11 @@ flowchart LR
 | `types` | Plain-old-data config structs for all SDK workflows |
 | `result` | Return types for SDK workflow functions |
 | `error` | Domain error types (`SetupError`, `DeviceError`, `RotationError`, etc.) |
+| `audit` | Audit event emission convenience for SDK operations |
+| `domains` | Domain services for specialized business logic |
+| `keys` | Key import and management operations |
+| `namespace_registry` | Namespace verifier adapter registry mapping ecosystems to implementations |
+| `oidc_jti_registry` | OIDC JWT ID (jti) registry for token replay detection |
 | `presentation` | HTML and structured report rendering |
 
 ## `AuthsContext` -- The Dependency Container
@@ -50,6 +55,7 @@ pub struct AuthsContext {
     pub attestation_source: Arc<dyn AttestationSource + Send + Sync>,
     pub passphrase_provider: Arc<dyn PassphraseProvider + Send + Sync>,
     pub uuid_provider: Arc<dyn UuidProvider + Send + Sync>,
+    pub agent_signing: Arc<dyn AgentSigningPort + Send + Sync>,
 }
 ```
 
@@ -69,7 +75,7 @@ pub struct AuthsContext {
 
 ### Builder Pattern
 
-`AuthsContext` uses a typestate builder to enforce compile-time correctness. The three required fields (`registry`, `key_storage`, `clock`) use typestate markers (`Missing` / `Set<T>`) so that `build()` is only callable once all three are set.
+`AuthsContext` uses a typestate builder to enforce compile-time correctness. The six required fields (`registry`, `key_storage`, `clock`, `identity_storage`, `attestation_sink`, `attestation_source`) use typestate markers (`Missing` / `Set<T>`) so that `build()` is only callable once all three are set.
 
 ```rust
 let ctx = AuthsContext::builder()

docs/architecture/crates/auths-sdk.md

@@ -10,9 +10,9 @@ flowchart BT
     CORE["auths-core"]
     ID["auths-id"]
     SDK["auths-sdk"]
-    VERIFIER --> CORE
-    VERIFIER --> ID
-    VERIFIER --> SDK
+    CORE --> VERIFIER
+    ID --> VERIFIER
+    SDK --> VERIFIER
 ```
 
 `auths-verifier` is a standalone crate at the bottom of the dependency graph. It provides signature verification, attestation types, DID types, KERI verification, and witness receipt validation. It is deliberately free of heavy dependencies like `git2`, platform keychains, or tokio (except when the `ffi` feature brings in a minimal tokio runtime).