npm - @alter-ai/alter-sdk - Versions diffs - 0.2.0 → 0.2.2 - Mend

@alter-ai/alter-sdk 0.2.0 → 0.2.2

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (6) hide show

package/dist/index.js CHANGED Viewed

@@ -144,6 +144,87 @@ var TokenResponse = class _TokenResponse {
     return this.toString();
   }
 };
+var ConnectionInfo = class {
+  id;
+  providerId;
+  attributes;
+  scopes;
+  accountIdentifier;
+  accountDisplayName;
+  status;
+  expiresAt;
+  createdAt;
+  lastUsedAt;
+  constructor(data) {
+    this.id = data.id;
+    this.providerId = data.provider_id;
+    this.attributes = data.attributes ?? {};
+    this.scopes = data.scopes ?? [];
+    this.accountIdentifier = data.account_identifier ?? null;
+    this.accountDisplayName = data.account_display_name ?? null;
+    this.status = data.status;
+    this.expiresAt = data.expires_at ?? null;
+    this.createdAt = data.created_at;
+    this.lastUsedAt = data.last_used_at ?? null;
+    Object.freeze(this);
+  }
+  toJSON() {
+    return {
+      id: this.id,
+      provider_id: this.providerId,
+      attributes: this.attributes,
+      scopes: this.scopes,
+      account_identifier: this.accountIdentifier,
+      account_display_name: this.accountDisplayName,
+      status: this.status,
+      expires_at: this.expiresAt,
+      created_at: this.createdAt,
+      last_used_at: this.lastUsedAt
+    };
+  }
+  toString() {
+    return `ConnectionInfo(id=${this.id}, provider=${this.providerId}, status=${this.status})`;
+  }
+};
+var ConnectSession = class {
+  sessionToken;
+  connectUrl;
+  expiresIn;
+  expiresAt;
+  constructor(data) {
+    this.sessionToken = data.session_token;
+    this.connectUrl = data.connect_url;
+    this.expiresIn = data.expires_in;
+    this.expiresAt = data.expires_at;
+    Object.freeze(this);
+  }
+  toJSON() {
+    return {
+      session_token: this.sessionToken,
+      connect_url: this.connectUrl,
+      expires_in: this.expiresIn,
+      expires_at: this.expiresAt
+    };
+  }
+  toString() {
+    return `ConnectSession(url=${this.connectUrl}, expires_in=${this.expiresIn})`;
+  }
+};
+var ConnectionListResult = class {
+  connections;
+  total;
+  limit;
+  offset;
+  hasMore;
+  constructor(data) {
+    this.connections = data.connections;
+    this.total = data.total;
+    this.limit = data.limit;
+    this.offset = data.offset;
+    this.hasMore = data.has_more;
+    Object.freeze(this);
+  }
+};
 var SENSITIVE_HEADERS = /* @__PURE__ */ new Set([
   "authorization",
   "cookie",
@@ -238,7 +319,7 @@ function _extractAccessToken(token) {
   return value;
 }
 var _fetch;
-var SDK_VERSION = "0.2.0";
+var SDK_VERSION = "0.2.2";
 var SDK_USER_AGENT = `alter-sdk-node/${SDK_VERSION}`;
 var VALID_ACTOR_TYPES = ["ai_agent", "mcp_server"];
 var HTTP_FORBIDDEN = 403;
@@ -334,7 +415,6 @@ var AlterVault = class _AlterVault {
   // Public readonly properties (frozen by Object.freeze)
   // ━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━
   baseUrl;
-  enableAuditLogging;
   /** Actor tracking configuration (readonly, not secret) */
   #actorType;
   #actorIdentifier;
@@ -362,7 +442,6 @@ var AlterVault = class _AlterVault {
       /\/+$/,
       ""
     );
-    this.enableAuditLogging = options.enableAuditLogging ?? true;
     const timeoutMs = options.timeout ?? 3e4;
     this.#actorType = options.actorType;
     this.#actorIdentifier = options.actorIdentifier;
@@ -591,7 +670,7 @@ var AlterVault = class _AlterVault {
    * This is a private method. Tokens are NEVER exposed to developers.
    * Use request() instead, which handles tokens internally.
    */
-  async #getToken(providerId, attributes, reason, runId, threadId, toolCallId) {
+  async #getToken(providerId, attributes, reason, requestMetadata, runId, threadId, toolCallId) {
     const actorHeaders = this.#getActorRequestHeaders(
       runId,
       threadId,
@@ -603,7 +682,8 @@ var AlterVault = class _AlterVault {
         json: {
           provider_id: providerId,
           attributes,
-          reason: reason ?? null
+          reason: reason ?? null,
+          request: requestMetadata ?? null
         },
         headers: actorHeaders
       });
@@ -640,9 +720,6 @@ var AlterVault = class _AlterVault {
    * if audit logging fails.
    */
   async #logApiCall(params) {
-    if (!this.enableAuditLogging) {
-      return;
-    }
     try {
       const auditLog = new APICallAuditLog({
         connectionId: params.connectionId,
@@ -727,7 +804,7 @@ var AlterVault = class _AlterVault {
    * 1. Fetches an OAuth token from Alter backend (never exposed)
    * 2. Injects the token as a Bearer header
    * 3. Calls the provider API
-   * 4. Logs the call for audit (if enabled, fire-and-forget)
+   * 4. Logs the call for audit (fire-and-forget)
    * 5. Returns the raw response
    */
   async request(provider, method, url, options) {
@@ -783,6 +860,7 @@ var AlterVault = class _AlterVault {
       providerStr,
       options.user,
       options.reason,
+      { method: methodStr, url },
       options.runId,
       options.threadId,
       options.toolCallId
@@ -863,6 +941,112 @@ var AlterVault = class _AlterVault {
     }
     return response;
   }
+  /**
+   * List OAuth connections for this app.
+   *
+   * Returns paginated connection metadata (no tokens).
+   * Useful for discovering which services a user has connected.
+   */
+  async listConnections(options) {
+    if (this.#closed) {
+      throw new AlterSDKError(
+        "SDK instance has been closed. Create a new AlterVault instance to make requests."
+      );
+    }
+    const actorHeaders = this.#getActorRequestHeaders();
+    let response;
+    try {
+      response = await this.#alterClient.post("/oauth/connections/list", {
+        json: {
+          provider_id: options?.providerId ?? null,
+          limit: options?.limit ?? 100,
+          offset: options?.offset ?? 0
+        },
+        headers: actorHeaders
+      });
+    } catch (error) {
+      if (_AlterVault.#isTimeoutOrAbortError(error)) {
+        throw new TimeoutError(
+          `Request to Alter Vault backend timed out: ${error instanceof Error ? error.message : String(error)}`,
+          { base_url: this.baseUrl }
+        );
+      }
+      if (error instanceof TypeError) {
+        throw new NetworkError(
+          `Failed to connect to Alter Vault backend: ${error.message}`,
+          { base_url: this.baseUrl }
+        );
+      }
+      throw new AlterSDKError(
+        `Failed to list connections: ${error instanceof Error ? error.message : String(error)}`
+      );
+    }
+    this.#cacheActorIdFromResponse(response);
+    await this.#handleErrorResponse(response);
+    const data = await response.json();
+    const connections = data.connections.map(
+      (c) => new ConnectionInfo(
+        c
+      )
+    );
+    return new ConnectionListResult({
+      connections,
+      total: data.total,
+      limit: data.limit,
+      offset: data.offset,
+      has_more: data.has_more
+    });
+  }
+  /**
+   * Create a Connect session for initiating OAuth flows.
+   *
+   * Returns a URL the user can open in their browser to authorize access.
+   */
+  async createConnectSession(options) {
+    if (this.#closed) {
+      throw new AlterSDKError(
+        "SDK instance has been closed. Create a new AlterVault instance to make requests."
+      );
+    }
+    if (!options.endUser?.id) {
+      throw new AlterSDKError("endUser.id is required");
+    }
+    const actorHeaders = this.#getActorRequestHeaders();
+    let response;
+    try {
+      response = await this.#alterClient.post("/oauth/connect/session", {
+        json: {
+          end_user: options.endUser,
+          attributes: options.attributes ?? null,
+          allowed_providers: options.allowedProviders ?? null,
+          return_url: options.returnUrl ?? null,
+          allowed_origin: options.allowedOrigin ?? null,
+          metadata: options.metadata ?? null
+        },
+        headers: actorHeaders
+      });
+    } catch (error) {
+      if (_AlterVault.#isTimeoutOrAbortError(error)) {
+        throw new TimeoutError(
+          `Request to Alter Vault backend timed out: ${error instanceof Error ? error.message : String(error)}`,
+          { base_url: this.baseUrl }
+        );
+      }
+      if (error instanceof TypeError) {
+        throw new NetworkError(
+          `Failed to connect to Alter Vault backend: ${error.message}`,
+          { base_url: this.baseUrl }
+        );
+      }
+      throw new AlterSDKError(
+        `Failed to create connect session: ${error instanceof Error ? error.message : String(error)}`
+      );
+    }
+    this.#cacheActorIdFromResponse(response);
+    await this.#handleErrorResponse(response);
+    const data = await response.json();
+    return new ConnectSession(data);
+  }
   /**
    * Close HTTP clients and release resources.
    * Waits for any pending audit tasks before closing.
@@ -910,6 +1094,9 @@ export {
   APICallAuditLog,
   AlterSDKError,
   AlterVault,
+  ConnectSession,
+  ConnectionInfo,
+  ConnectionListResult,
   ConnectionNotFoundError,
   HttpMethod,
   NetworkError,

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "@alter-ai/alter-sdk",
-  "version": "0.2.0",
+  "version": "0.2.2",
   "description": "Official TypeScript SDK for Alter Vault — OAuth token management with policy enforcement",
   "type": "module",
   "main": "dist/index.cjs",