@agent-os-sdk/client 0.1.1 → 0.1.2

package/src/modules/policies.ts

@@ -0,0 +1,258 @@
+/**
+ * Policies Module - Governance Rules
+ * 
+ * // MOCK - This module contains mock implementations for future features
+ * 
+ * Defines and evaluates policies that control agent behavior.
+ * Enables enterprise governance and compliance.
+ */
+
+import type { RawClient, APIResponse } from "../client/raw.js";
+
+// ============================================================================
+// Types
+// ============================================================================
+
+export type PolicyType = "allow" | "deny" | "require_approval" | "audit";
+export type PolicyScope = "tenant" | "workspace" | "agent" | "run";
+
+export interface Policy {
+    id: string;
+    name: string;
+    description?: string;
+    type: PolicyType;
+    scope: PolicyScope;
+    scope_id?: string;
+    conditions: PolicyCondition[];
+    actions: PolicyAction[];
+    priority: number;
+    enabled: boolean;
+    created_at: string;
+    updated_at: string;
+}
+
+export interface PolicyCondition {
+    field: string;
+    operator: "eq" | "neq" | "in" | "not_in" | "gt" | "lt" | "contains" | "regex";
+    value: unknown;
+}
+
+export interface PolicyAction {
+    type: "block" | "allow" | "require_approval" | "log" | "alert" | "modify";
+    config?: Record<string, unknown>;
+}
+
+export interface PolicyEvaluationInput {
+    action: string;
+    resource: string;
+    context: Record<string, unknown>;
+}
+
+export interface PolicyEvaluationResult {
+    allowed: boolean;
+    matched_policies: string[];
+    required_approvals: string[];
+    warnings: string[];
+    audit_entries: PolicyAuditEntry[];
+}
+
+export interface PolicyAuditEntry {
+    policy_id: string;
+    policy_name: string;
+    decision: "allow" | "deny" | "pending_approval";
+    reason: string;
+    evaluated_at: string;
+}
+
+export interface PolicyListResponse {
+    items: Policy[];
+    total: number;
+}
+
+// ============================================================================
+// Module
+// ============================================================================
+
+export class PoliciesModule {
+    constructor(private client: RawClient, private headers: () => Record<string, string>) { }
+
+    // MOCK - Simulated list
+    /**
+     * List all policies.
+     */
+    async list(params?: {
+        scope?: PolicyScope;
+        enabled?: boolean;
+    }): Promise<APIResponse<PolicyListResponse>> {
+        // MOCK - Returns simulated data
+        const mockPolicies: PolicyListResponse = {
+            items: [
+                {
+                    id: "policy_1",
+                    name: "Block External Email",
+                    description: "Prevent agents from sending external emails without approval",
+                    type: "require_approval",
+                    scope: "tenant",
+                    conditions: [
+                        { field: "action", operator: "eq", value: "send_email" },
+                        { field: "recipient.domain", operator: "not_in", value: ["company.com"] },
+                    ],
+                    actions: [
+                        { type: "require_approval", config: { approver_role: "admin" } },
+                    ],
+                    priority: 100,
+                    enabled: true,
+                    created_at: new Date(Date.now() - 86400000).toISOString(),
+                    updated_at: new Date().toISOString(),
+                },
+                {
+                    id: "policy_2",
+                    name: "Audit All Tool Calls",
+                    description: "Log all tool calls for compliance",
+                    type: "audit",
+                    scope: "tenant",
+                    conditions: [
+                        { field: "action", operator: "eq", value: "tool_call" },
+                    ],
+                    actions: [
+                        { type: "log" },
+                    ],
+                    priority: 50,
+                    enabled: true,
+                    created_at: new Date(Date.now() - 86400000).toISOString(),
+                    updated_at: new Date().toISOString(),
+                },
+            ],
+            total: 2,
+        };
+        return { data: mockPolicies, error: undefined, response: new Response() };
+    }
+
+    // MOCK - Simulated get
+    /**
+     * Get a policy by ID.
+     */
+    async get(policyId: string): Promise<APIResponse<Policy>> {
+        // MOCK - Returns simulated data
+        const mockPolicy: Policy = {
+            id: policyId,
+            name: "Block External Email",
+            description: "Prevent agents from sending external emails without approval",
+            type: "require_approval",
+            scope: "tenant",
+            conditions: [
+                { field: "action", operator: "eq", value: "send_email" },
+            ],
+            actions: [
+                { type: "require_approval" },
+            ],
+            priority: 100,
+            enabled: true,
+            created_at: new Date(Date.now() - 86400000).toISOString(),
+            updated_at: new Date().toISOString(),
+        };
+        return { data: mockPolicy, error: undefined, response: new Response() };
+    }
+
+    // MOCK - Simulated create
+    /**
+     * Create a new policy.
+     */
+    async create(body: {
+        name: string;
+        description?: string;
+        type: PolicyType;
+        scope: PolicyScope;
+        scope_id?: string;
+        conditions: PolicyCondition[];
+        actions: PolicyAction[];
+        priority?: number;
+    }): Promise<APIResponse<Policy>> {
+        // MOCK - Returns simulated data
+        const mockPolicy: Policy = {
+            id: `policy_${Date.now()}`,
+            name: body.name,
+            description: body.description,
+            type: body.type,
+            scope: body.scope,
+            scope_id: body.scope_id,
+            conditions: body.conditions,
+            actions: body.actions,
+            priority: body.priority || 50,
+            enabled: true,
+            created_at: new Date().toISOString(),
+            updated_at: new Date().toISOString(),
+        };
+        return { data: mockPolicy, error: undefined, response: new Response() };
+    }
+
+    // MOCK - Simulated update
+    /**
+     * Update a policy.
+     */
+    async update(policyId: string, body: Partial<Policy>): Promise<APIResponse<Policy>> {
+        // MOCK - Returns simulated data
+        const mockPolicy: Policy = {
+            id: policyId,
+            name: body.name || "Updated Policy",
+            type: body.type || "allow",
+            scope: body.scope || "tenant",
+            conditions: body.conditions || [],
+            actions: body.actions || [],
+            priority: body.priority || 50,
+            enabled: body.enabled ?? true,
+            created_at: new Date(Date.now() - 86400000).toISOString(),
+            updated_at: new Date().toISOString(),
+        };
+        return { data: mockPolicy, error: undefined, response: new Response() };
+    }
+
+    // MOCK - Simulated delete
+    /**
+     * Delete a policy.
+     */
+    async delete(policyId: string): Promise<APIResponse<void>> {
+        // MOCK - Returns success
+        return { data: undefined, error: undefined, response: new Response() };
+    }
+
+    // MOCK - Simulated evaluate
+    /**
+     * Evaluate policies against an action (simulation).
+     */
+    async evaluate(input: PolicyEvaluationInput): Promise<APIResponse<PolicyEvaluationResult>> {
+        // MOCK - Returns simulated evaluation
+        const mockResult: PolicyEvaluationResult = {
+            allowed: true,
+            matched_policies: ["policy_2"],
+            required_approvals: [],
+            warnings: [],
+            audit_entries: [
+                {
+                    policy_id: "policy_2",
+                    policy_name: "Audit All Tool Calls",
+                    decision: "allow",
+                    reason: "Action logged for audit",
+                    evaluated_at: new Date().toISOString(),
+                },
+            ],
+        };
+        return { data: mockResult, error: undefined, response: new Response() };
+    }
+
+    // MOCK - Simulated enforce
+    /**
+     * Enforce policies (apply to current context).
+     */
+    async enforce(runId: string): Promise<APIResponse<PolicyEvaluationResult>> {
+        // MOCK - Returns simulated enforcement
+        const mockResult: PolicyEvaluationResult = {
+            allowed: true,
+            matched_policies: [],
+            required_approvals: [],
+            warnings: [],
+            audit_entries: [],
+        };
+        return { data: mockResult, error: undefined, response: new Response() };
+    }
+}

package/src/modules/tenants.ts

@@ -24,6 +24,15 @@ export interface TenantListResponse {
 export class TenantsModule {
     constructor(private client: RawClient, private headers: () => Record<string, string>) { }
 
+    /**
+     * List all tenants the user has access to.
+     */
+    async list(): Promise<APIResponse<Tenant[]>> {
+        return this.client.GET<Tenant[]>("/v1/api/tenants", {
+            headers: this.headers(),
+        });
+    }
+
     /**
      * Get the current tenant.
      */