@amaster.ai/client 1.1.2 → 1.1.3

package/dist/index.d.cts

@@ -9,7 +9,7 @@ export { WorkflowFile, WorkflowInputValue, WorkflowRunRequest, WorkflowRunRespon
 import { ASRClientConfig, ASRClient, ASRHttpClientConfig, ASRHttpClient } from '@amaster.ai/asr-client';
 export { ASRClient, ASRClientConfig, ASRHttpClient, ASRHttpClientConfig, ASRLanguage } from '@amaster.ai/asr-client';
 import { CopilotClient } from '@amaster.ai/copilot-client';
-export { Conversation, ConversationController, ConversationControllerOptions, ConversationControllerSnapshot, CopilotClient, Role as CopilotRole, ErrorMessage, FileContent, ImageContent, MessageContent, MessagesItem, TextContent, TextMessage, ThoughtMessage, ToolMessage, UIRenderMessage } from '@amaster.ai/copilot-client';
+export { Conversation, ConversationController, ConversationControllerOptions, ConversationControllerSnapshot, ConversationRequestState, ConversationRuntimeError, CopilotClient, Role as CopilotRole, ErrorMessage, FileContent, ImageContent, MessageContent, MessagesItem, TextContent, TextMessage, ThoughtMessage, ToolMessage, UIRenderMessage } from '@amaster.ai/copilot-client';
 import { FunctionClient } from '@amaster.ai/function-client';
 export { FunctionClient } from '@amaster.ai/function-client';
 import { TTSClientConfig, TTSClient } from '@amaster.ai/tts-client';

package/dist/index.d.ts

@@ -9,7 +9,7 @@ export { WorkflowFile, WorkflowInputValue, WorkflowRunRequest, WorkflowRunRespon
 import { ASRClientConfig, ASRClient, ASRHttpClientConfig, ASRHttpClient } from '@amaster.ai/asr-client';
 export { ASRClient, ASRClientConfig, ASRHttpClient, ASRHttpClientConfig, ASRLanguage } from '@amaster.ai/asr-client';
 import { CopilotClient } from '@amaster.ai/copilot-client';
-export { Conversation, ConversationController, ConversationControllerOptions, ConversationControllerSnapshot, CopilotClient, Role as CopilotRole, ErrorMessage, FileContent, ImageContent, MessageContent, MessagesItem, TextContent, TextMessage, ThoughtMessage, ToolMessage, UIRenderMessage } from '@amaster.ai/copilot-client';
+export { Conversation, ConversationController, ConversationControllerOptions, ConversationControllerSnapshot, ConversationRequestState, ConversationRuntimeError, CopilotClient, Role as CopilotRole, ErrorMessage, FileContent, ImageContent, MessageContent, MessagesItem, TextContent, TextMessage, ThoughtMessage, ToolMessage, UIRenderMessage } from '@amaster.ai/copilot-client';
 import { FunctionClient } from '@amaster.ai/function-client';
 export { FunctionClient } from '@amaster.ai/function-client';
 import { TTSClientConfig, TTSClient } from '@amaster.ai/tts-client';

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@amaster.ai/client",
-  "version": "1.1.2",
+  "version": "1.1.3",
   "description": "Unified API client for Amaster platform - All services in one package",
   "type": "module",
   "main": "./dist/index.cjs",
@@ -72,16 +72,16 @@
     "registry": "https://registry.npmjs.org/"
   },
   "dependencies": {
-    "@amaster.ai/bpm-client": "1.1.2",
-    "@amaster.ai/auth-client": "1.1.2",
-    "@amaster.ai/http-client": "1.1.2",
-    "@amaster.ai/asr-client": "1.1.2",
-    "@amaster.ai/s3-client": "1.1.2",
-    "@amaster.ai/copilot-client": "1.1.2",
-    "@amaster.ai/workflow-client": "1.1.2",
-    "@amaster.ai/entity-client": "1.1.2",
-    "@amaster.ai/function-client": "1.1.2",
-    "@amaster.ai/tts-client": "1.1.2"
+    "@amaster.ai/asr-client": "1.1.3",
+    "@amaster.ai/auth-client": "1.1.3",
+    "@amaster.ai/bpm-client": "1.1.3",
+    "@amaster.ai/copilot-client": "1.1.3",
+    "@amaster.ai/entity-client": "1.1.3",
+    "@amaster.ai/function-client": "1.1.3",
+    "@amaster.ai/http-client": "1.1.3",
+    "@amaster.ai/s3-client": "1.1.3",
+    "@amaster.ai/tts-client": "1.1.3",
+    "@amaster.ai/workflow-client": "1.1.3"
   },
   "peerDependencies": {
     "axios": "^1.11.0"

package/types/__tests__/type-checks.test-d.ts

@@ -27,6 +27,7 @@ describe('Type Tests', () => {
         data: { id: number; name: string } | null;
         error: ClientError | null;
         status: number;
+        success: boolean;
       }>();
     });
 
@@ -36,15 +37,21 @@ describe('Type Tests', () => {
       expectTypeOf<UserResult['data']>().toEqualTypeOf<User | null>();
     });
 
+    it('should have success field', () => {
+      type Result = ClientResult<unknown>;
+      
+      expectTypeOf<Result['success']>().toEqualTypeOf<boolean>();
+    });
   });
 
   describe('ClientError', () => {
     it('should have all required fields', () => {
       expectTypeOf<ClientError>().toMatchTypeOf<{
+        status: number;
         message: string;
-        status?: number;
         code?: string;
         details?: unknown;
+        timestamp?: string;
       }>();
     });
   });
@@ -87,29 +94,6 @@ describe('Type Tests', () => {
       expectTypeOf<AmasterClient>().toHaveProperty('setAccessToken');
       expectTypeOf<AmasterClient>().toHaveProperty('clearAuth');
     });
-
-    it('should expose the current auth client methods', () => {
-      expectTypeOf<AmasterClient['auth']>().toHaveProperty('getMiniProgramPhoneNumber');
-      expectTypeOf<AmasterClient['auth']>().toHaveProperty('loginWithMiniProgram');
-      expectTypeOf<AmasterClient['auth']>().toHaveProperty('handleOAuthCallback');
-      expectTypeOf<AmasterClient['auth']>().toHaveProperty('updateMe');
-      expectTypeOf<AmasterClient['auth']>().toHaveProperty('getSession');
-      expectTypeOf<AmasterClient['auth']>().toHaveProperty('getSessions');
-      expectTypeOf<AmasterClient['auth']>().toHaveProperty('revokeSession');
-      expectTypeOf<AmasterClient['auth']>().toHaveProperty('revokeAllSessions');
-      expectTypeOf<AmasterClient['auth']>().toHaveProperty('hasAnyPermission');
-      expectTypeOf<AmasterClient['auth']>().toHaveProperty('hasAllPermissions');
-    });
-
-    it('should expose the current downstream client methods', () => {
-      expectTypeOf<AmasterClient['entity']>().toHaveProperty('bulkUpdate');
-      expectTypeOf<AmasterClient['entity']>().toHaveProperty('bulkDelete');
-      expectTypeOf<AmasterClient['bpm']>().toHaveProperty('startProcess');
-      expectTypeOf<AmasterClient['workflow']>().toHaveProperty('run');
-      expectTypeOf<AmasterClient['copilot']>().toHaveProperty('createConversationController');
-      expectTypeOf<AmasterClient['function']>().toHaveProperty('invoke');
-      expectTypeOf<AmasterClient['s3']>().toHaveProperty('upload');
-    });
   });
 
   describe('LoginParams', () => {

package/types/auth/code-auth.d.ts

@@ -4,7 +4,7 @@
  * - SMS verification code login
  * - Send verification code
  * - Captcha verification
- *
+ * 
  * @module auth/code-auth
  */
 
@@ -18,24 +18,20 @@ import type { LoginResponse, SuccessResponse } from './password-auth';
  */
 export type CodeLoginType = 'email' | 'phone';
 
-/**
- * Send verification code type
- */
-export type SendCodeType = 'email' | 'phone';
-
 /**
  * Verification code login parameters
+ *
  */
 export interface CodeLoginParams {
   /** Login method (optional, auto-detected) */
   loginType?: CodeLoginType;
-
+  
   /** Email (required if using email code) */
   email?: string;
-
+  
   /** Phone (required if using phone code) */
   phone?: string;
-
+  
   /** Verification code received via email/SMS */
   code: string;
 }
@@ -45,11 +41,11 @@ export interface CodeLoginParams {
  */
 export interface SendCodeParams {
   /** Delivery method */
-  type: SendCodeType;
-
+  type: 'email' | 'phone';
+  
   /** Email address (required if type='email') */
   email?: string;
-
+  
   /** Phone number (required if type='phone') */
   phone?: string;
 }
@@ -60,19 +56,16 @@ export interface SendCodeParams {
 export interface CaptchaResponse {
   /** Unique captcha identifier */
   captchaId: string;
-
+  
   /** Base64 encoded captcha image */
   captchaImage: string;
-
-  /** Expiration time in seconds */
-  expiresIn: number;
 }
 
 // ==================== API ====================
 
 /**
  * Verification Code Authentication API
- *
+ * 
  * Methods for code-based authentication and verification.
  */
 export interface CodeAuthAPI {
@@ -83,27 +76,30 @@ export interface CodeAuthAPI {
    *
    * @param params - Email/phone and verification code
    * @returns User info and access token
+   *
    */
   loginWithCode(params: CodeLoginParams): Promise<ClientResult<LoginResponse>>;
 
   /**
    * Send verification code
-   *
+   * 
    * Sends a verification code to the specified email or phone.
    * Used for code login or account verification.
-   *
+   * 
    * @param params - Email or phone to send code to
    * @returns Success status
+   *
    */
   sendCode(params: SendCodeParams): Promise<ClientResult<SuccessResponse>>;
 
   /**
    * Get captcha image
-   *
+   * 
    * Retrieves a captcha challenge for verification.
    * Used during registration or sensitive operations.
-   *
+   * 
    * @returns Captcha ID and image (base64)
+   *
    */
   getCaptcha(): Promise<ClientResult<CaptchaResponse>>;
 }

package/types/auth/index.d.ts

@@ -1,22 +1,22 @@
 /**
  * Authentication module - provides user authentication and management capabilities.
- *
+ * 
  * This module exports all auth-related types for convenient importing:
- *
+ * 
  * @example
  * // Import specific types
  * import type { LoginParams, User, OAuthProvider } from '@amaster.ai/client/auth';
- *
+ * 
  * @example
  * // Import multiple types
- * import type {
- *   LoginParams,
+ * import type { 
+ *   LoginParams, 
  *   RegisterParams,
  *   User,
  *   Role,
- *   Permission
+ *   Permission 
  * } from '@amaster.ai/client/auth';
- *
+ * 
  * @module auth
  * @since 1.0.0
  */
@@ -28,118 +28,138 @@ export * from './user';
 export * from './password-auth';
 export * from './code-auth';
 export * from './oauth';
-export * from './permissions';
 export * from './profile';
-export * from './sessions';
 
 // Import for unified API
-import type { PasswordAuthAPI, RefreshTokenResponse, SuccessResponse } from './password-auth';
+import type { PasswordAuthAPI } from './password-auth';
 import type { CodeAuthAPI } from './code-auth';
 import type { OAuthAPI } from './oauth';
-import type { PermissionsAPI } from './permissions';
 import type { ProfileAPI } from './profile';
-import type { SessionsAPI } from './sessions';
 
-// ==================== Events ====================
+// ==================== Token Management ====================
 
 /**
- * Authentication lifecycle events
+ * Token refresh response
  */
-export type AuthEvent =
-  | 'login'
-  | 'logout'
-  | 'tokenExpired'
-  | 'tokenRefreshed'
-  | 'unauthorized';
+export interface RefreshTokenResponse {
+  /** New access token */
+  accessToken: string;
+  
+  /** Token expiration time in seconds */
+  expiresIn?: number;
+}
 
 /**
- * Event callback signature
+ * Generic success response
  */
-export type EventHandler = (...args: any[]) => void;
+export interface SuccessResponse {
+  /** Whether operation was successful */
+  success: boolean;
+  
+  /** Optional message */
+  message?: string;
+}
 
 // ==================== Unified Authentication API ====================
 
 /**
  * Complete Authentication Client API
- *
+ * 
  * Combines all authentication capabilities into a single interface.
  * All methods return a `ClientResult<T>` for consistent error handling.
+ *
  */
-export interface AuthClientAPI
+export interface AuthClientAPI 
   extends PasswordAuthAPI,
           CodeAuthAPI,
           OAuthAPI,
-          PermissionsAPI,
-          ProfileAPI,
-          SessionsAPI {
-
+          ProfileAPI {
+  
   /**
    * Logout current user
-   *
+   * 
    * Invalidates the current session and clears local authentication state.
    * All subsequent requests will be unauthenticated until login again.
-   *
+   * 
    * @returns Success status
+   *
    */
   logout(): Promise<ClientResult<SuccessResponse>>;
 
   /**
    * Refresh access token
-   *
+   * 
    * Obtains a new access token using the refresh token.
    * Note: Token refresh is handled automatically by the client.
    * This method is exposed for manual refresh scenarios.
-   *
+   * 
    * @returns New access token
+   *
    */
   refreshToken(): Promise<ClientResult<RefreshTokenResponse>>;
 
+  // ==================== Event Handling ====================
+
   /**
    * Subscribe to authentication events
-   *
+   * 
    * Available events:
    * - `login` - Fired after successful login, receives User object
    * - `logout` - Fired after logout
    * - `tokenExpired` - Fired when access token expires
    * - `tokenRefreshed` - Fired after token refresh, receives new token
    * - `unauthorized` - Fired on 401 response
-   *
+   * 
    * @param event - Event name to subscribe to
    * @param handler - Callback function
+   *
    */
-  on(event: AuthEvent, handler: EventHandler): void;
+  on(event: "login" | "logout" | "tokenExpired" | "tokenRefreshed" | "unauthorized", handler: (...args: unknown[]) => void): void;
 
   /**
    * Unsubscribe from authentication events
-   *
+   * 
    * @param event - Event name to unsubscribe from
    * @param handler - The same callback function that was passed to `on()`
-   */
-  off(event: AuthEvent, handler: EventHandler): void;
-
-  /**
-   * Check whether the current client has a stored access token.
    *
-   * @returns True when authenticated, false otherwise
    */
-  isAuthenticated(): boolean;
+  off(event: "login" | "logout" | "tokenExpired" | "tokenRefreshed" | "unauthorized", handler: (...args: unknown[]) => void): void;
 
+  // ==================== Permission Checks ====================
+  
   /**
-   * Get the current access token from local storage.
+   * Check if current user has a specific role (local check, fast)
+   * 
+   * Works for both authenticated and anonymous users.
+   * Checks against locally cached user roles.
+   * 
+   * @param roleCode - Role code to check (e.g., "admin", "user", "anonymous")
+   * @returns True if user has the role
    *
-   * @returns Access token string, or null when not authenticated
    */
-  getAccessToken(): string | null;
-
+  hasRole(roleCode: string): boolean;
+  
   /**
-   * Manually set the current access token.
+   * Check if current user has a specific permission (local check, fast)
+   * 
+   * Works for both authenticated and anonymous users.
+   * Checks against locally cached user permissions.
+   * 
+   * @param resource - Resource name (e.g., "user", "order")
+   * @param action - Action name (e.g., "read", "write", "delete")
+   * @returns True if user has the permission
    *
-   * @param token - JWT access token
    */
-  setAccessToken(token: string): void;
-
+  hasPermission(resource: string, action: string): boolean;
+  
   /**
-   * Clear all local authentication state, including token and cached user info.
+   * Check if current user is anonymous (not authenticated)
+   * 
+   * Convenience method equivalent to `hasRole('anonymous')`.
+   * Returns true if user has the 'anonymous' role.
+   * 
+   * @returns True if user is anonymous
+   *
    */
-  clearAuth(): void;
+  isAnonymous(): boolean;
 }

package/types/auth/oauth.d.ts

@@ -1,137 +1,143 @@
 /**
  *  * OAuth and social authentication including:
- * - Browser OAuth login
- * - OAuth callback handling
- * - WeChat Mini Program login
- * - OAuth account binding management
- *
+ * - GitHub OAuth
+ * - Google OAuth
+ * - WeChat OAuth (Web & Mini Program)
+ * - Generic OAuth flow
+ * 
  * @module auth/oauth
  */
 
 import type { ClientResult } from '../common';
-import type { LoginResponse, SuccessResponse } from './password-auth';
+import type { LoginResponse } from './password-auth';
 
 // ==================== OAuth Providers ====================
 
 /**
  * Supported OAuth providers
  */
-export type OAuthProvider =
-  | 'google'
+export type OAuthProvider = 
   | 'github'
+  | 'google'
   | 'wechat'
-  | 'wechat_mini'
-  | 'platform';
+  | 'wechat-miniprogram'
+  | 'gitlab'
+  | 'microsoft';
 
 /**
- * OAuth binding information for the current user
+ * OAuth login parameters
+ *
  */
-export interface OAuthBinding {
+export interface OAuthLoginParams {
   /** OAuth provider */
   provider: OAuthProvider;
-
-  /** Provider-specific user ID */
-  providerId: string;
-
-  /** OAuth account email */
-  email: string;
-
-  /** Display name from provider */
-  displayName: string;
-
-  /** Provider avatar URL */
-  avatarUrl: string | null;
-
-  /** Binding creation timestamp */
-  createdAt: string;
+  
+  /** Authorization code from OAuth callback */
+  code: string;
+  
+  /** Redirect URI used in the OAuth flow */
+  redirectUri?: string;
+  
+  /** State parameter for CSRF protection */
+  state?: string;
 }
 
-// ==================== WeChat Mini Program ====================
+/**
+ * Get OAuth URL parameters
+ */
+export interface GetOAuthUrlParams {
+  /** OAuth provider */
+  provider: OAuthProvider;
+  
+  /** Redirect URI after OAuth */
+  redirectUri: string;
+  
+  /** State parameter for CSRF protection */
+  state?: string;
+  
+  /** Additional scopes (provider-specific) */
+  scopes?: string[];
+}
 
 /**
- * WeChat Mini Program login parameters
+ * OAuth URL response
  */
-export interface MiniProgramLoginParams {
-  /** Code from `wx.login()` */
-  code: string;
+export interface OAuthUrlResponse {
+  /** Authorization URL to redirect user to */
+  authUrl: string;
+  
+  /** State parameter for verification */
+  state: string;
 }
 
+// ==================== WeChat Specific ====================
+
 /**
- * WeChat Mini Program phone number parameters
+ * WeChat Mini Program login parameters
+ *
  */
-export interface MiniProgramPhoneParams {
-  /** Code from `getPhoneNumber` button event */
+export interface WeChatMiniProgramLoginParams {
+  /** WeChat login code */
   code: string;
+  
+  /** User info from WeChat (optional) */
+  userInfo?: {
+    /** Encrypted user data */
+    encryptedData: string;
+    /** IV for decryption */
+    iv: string;
+  };
 }
 
 /**
- * WeChat Mini Program phone number response
+ * WeChat web OAuth parameters
  */
-export interface MiniProgramPhoneResponse {
-  /** Phone number with country code */
-  phone: string;
-
-  /** Whether the phone number is verified by WeChat */
-  phoneVerified: boolean;
+export interface WeChatWebLoginParams {
+  /** Authorization code from WeChat OAuth */
+  code: string;
+  
+  /** State parameter */
+  state?: string;
 }
 
 // ==================== API ====================
 
 /**
  * OAuth & Social Login API
- *
- * Methods for OAuth-based authentication and Mini Program login.
+ * 
+ * Methods for OAuth-based authentication.
  */
 export interface OAuthAPI {
   /**
-   * Redirect to OAuth provider for authentication
-   *
-   * @param provider - OAuth provider name
-   * @param redirectUrl - Optional post-login redirect target
-   */
-  loginWithOAuth(provider: OAuthProvider, redirectUrl?: string): void;
-
-  /**
-   * Handle OAuth callback on the current browser page
+   * Get OAuth authorization URL
+   * 
+   * Generates the URL to redirect users to for OAuth authentication.
+   * 
+   * @param params - OAuth provider and redirect URI
+   * @returns Authorization URL and state
    *
-   * Parses the callback hash, stores the access token, and returns the current user.
    */
-  handleOAuthCallback(): Promise<ClientResult<LoginResponse>>;
+  getOAuthUrl(params: GetOAuthUrlParams): Promise<ClientResult<OAuthUrlResponse>>;
 
   /**
-   * Login with WeChat Mini Program code
-   *
-   * @param code - Code returned by `wx.login()`
+   * Complete OAuth login
+   * 
+   * Exchanges the OAuth authorization code for access token and user info.
+   * 
+   * @param params - OAuth provider and authorization code
    * @returns User info and access token
-   */
-  loginWithMiniProgram(code: string): Promise<ClientResult<LoginResponse>>;
-
-  /**
-   * Get WeChat Mini Program user phone number
-   *
-   * Requires the user to authorize via a `getPhoneNumber` button.
-   *
-   * @param code - Code returned by the Mini Program phone-number event
-   * @returns Phone number info
-   */
-  getMiniProgramPhoneNumber(code: string): Promise<ClientResult<MiniProgramPhoneResponse>>;
-
-  /**
-   * Get OAuth accounts currently bound to the logged-in user
-   */
-  getOAuthBindings(): Promise<ClientResult<OAuthBinding[]>>;
-
-  /**
-   * Redirect to provider binding flow for the current user
    *
-   * @param provider - OAuth provider name
    */
-  bindOAuth(provider: OAuthProvider): void;
+  oauthLogin(params: OAuthLoginParams): Promise<ClientResult<LoginResponse>>;
 
   /**
-   * Unbind an OAuth account from the current user
+   * WeChat Mini Program login
+   * 
+   * Authenticates user in WeChat Mini Program environment.
+   * 
+   * @param params - WeChat login code
+   * @returns User info and access token
    *
-   * @param provider - OAuth provider name
    */
-  unbindOAuth(provider: OAuthProvider): Promise<ClientResult<SuccessResponse>>;
+  wechatMiniProgramLogin(params: WeChatMiniProgramLoginParams): Promise<ClientResult<LoginResponse>>;
 }