@azerothian/infisical 0.1.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (8) hide show
  1. package/README.md +1038 -0
  2. package/dist/index.d.mts +3973 -0
  3. package/dist/index.d.ts +3973 -0
  4. package/dist/index.js +2839 -0
  5. package/dist/index.js.map +1 -0
  6. package/dist/index.mjs +2738 -0
  7. package/dist/index.mjs.map +1 -0
  8. package/package.json +64 -0
package/dist/index.d.ts ADDED
@@ -0,0 +1,3973 @@
1
+ type AuthConfig = {
2
+ mode: "jwt";
3
+ token: string;
4
+ } | {
5
+ mode: "apiKey";
6
+ apiKey: string;
7
+ } | {
8
+ mode: "serviceToken";
9
+ serviceToken: string;
10
+ } | {
11
+ mode: "identityAccessToken";
12
+ accessToken: string;
13
+ };
14
+
15
+ interface LoginResponse {
16
+ accessToken: string;
17
+ expiresIn: number;
18
+ accessTokenMaxTTL: number;
19
+ tokenType: string;
20
+ }
21
+ interface RenewResult {
22
+ auth: AuthConfig;
23
+ expiresIn: number;
24
+ }
25
+ declare class AuthState {
26
+ private _auth;
27
+ private _expiresAt;
28
+ private _renewFn;
29
+ private _renewPromise;
30
+ setAuth(auth: AuthConfig, expiresIn?: number): void;
31
+ clearAuth(): void;
32
+ setRenewFn(fn: () => Promise<RenewResult>): void;
33
+ get current(): AuthConfig | null;
34
+ get isAuthenticated(): boolean;
35
+ get mode(): AuthConfig["mode"] | null;
36
+ get canRenew(): boolean;
37
+ forceRenew(): Promise<void>;
38
+ ensureValid(): Promise<void>;
39
+ private _renew;
40
+ }
41
+
42
+ type FetchFunction = (input: string | URL | Request, init?: RequestInit) => Promise<Response>;
43
+ interface HttpClientConfig {
44
+ baseUrl: string;
45
+ authState: AuthState;
46
+ fetch: FetchFunction;
47
+ timeout: number;
48
+ headers?: Record<string, string>;
49
+ }
50
+ declare class HttpClient {
51
+ private readonly config;
52
+ constructor(config: HttpClientConfig);
53
+ private request;
54
+ get<T>(path: string, query?: Record<string, unknown>): Promise<T>;
55
+ post<T>(path: string, body?: unknown, query?: Record<string, unknown>): Promise<T>;
56
+ postNoAuth<T>(path: string, body?: unknown, query?: Record<string, unknown>): Promise<T>;
57
+ put<T>(path: string, body?: unknown, query?: Record<string, unknown>): Promise<T>;
58
+ patch<T>(path: string, body?: unknown, query?: Record<string, unknown>): Promise<T>;
59
+ delete<T>(path: string, body?: unknown, query?: Record<string, unknown>): Promise<T>;
60
+ }
61
+
62
+ type AuthMode = "jwt" | "apiKey" | "serviceToken" | "identityAccessToken";
63
+ type ResourceCategory = "secrets" | "secretFolders" | "secretImports" | "projects" | "organizations" | "organizationIdentities" | "identities" | "identityAuth" | "identityAccessTokens" | "pki" | "kms" | "secretTags" | "appConnections" | "secretSyncs" | "integrationAuth" | "admin" | "orgAdmin" | "secretSharing" | "webhooks" | "users" | "mfa" | "mfaSessions" | "serviceTokens" | "password";
64
+ declare const RESOURCE_AUTH_MODES: Record<ResourceCategory, readonly AuthMode[]>;
65
+
66
+ declare abstract class BaseResource {
67
+ protected readonly http: HttpClient;
68
+ protected readonly authState: AuthState;
69
+ private readonly authCategory;
70
+ constructor(http: HttpClient, authState: AuthState, authCategory: ResourceCategory);
71
+ protected requireAuth(): void;
72
+ }
73
+
74
+ interface IdentityUniversalAuth {
75
+ id: string;
76
+ identityId: string;
77
+ clientId: string;
78
+ clientSecretTrustedIps: Array<{
79
+ ipAddress: string;
80
+ prefix?: number;
81
+ }>;
82
+ accessTokenTTL: number;
83
+ accessTokenMaxTTL: number;
84
+ accessTokenNumUsesLimit: number;
85
+ accessTokenTrustedIps: Array<{
86
+ ipAddress: string;
87
+ prefix?: number;
88
+ }>;
89
+ createdAt: string;
90
+ updatedAt: string;
91
+ }
92
+ interface UniversalAuthClientSecret {
93
+ id: string;
94
+ identityUniversalAuthId: string;
95
+ isClientSecretRevoked: boolean;
96
+ description: string;
97
+ clientSecretPrefix: string;
98
+ clientSecretNumUses: number;
99
+ clientSecretNumUsesLimit: number;
100
+ clientSecretTTL: number;
101
+ createdAt: string;
102
+ updatedAt: string;
103
+ }
104
+ interface LoginUniversalAuthParams {
105
+ clientId: string;
106
+ clientSecret: string;
107
+ }
108
+ interface LoginUniversalAuthResponse {
109
+ accessToken: string;
110
+ expiresIn: number;
111
+ accessTokenMaxTTL: number;
112
+ tokenType: string;
113
+ }
114
+ interface AttachUniversalAuthParams {
115
+ identityId: string;
116
+ clientSecretTrustedIps?: Array<{
117
+ ipAddress: string;
118
+ }>;
119
+ accessTokenTTL?: number;
120
+ accessTokenMaxTTL?: number;
121
+ accessTokenNumUsesLimit?: number;
122
+ accessTokenTrustedIps?: Array<{
123
+ ipAddress: string;
124
+ }>;
125
+ }
126
+ interface AttachUniversalAuthResponse {
127
+ identityUniversalAuth: IdentityUniversalAuth;
128
+ }
129
+ interface UpdateUniversalAuthParams {
130
+ identityId: string;
131
+ clientSecretTrustedIps?: Array<{
132
+ ipAddress: string;
133
+ }>;
134
+ accessTokenTTL?: number;
135
+ accessTokenMaxTTL?: number;
136
+ accessTokenNumUsesLimit?: number;
137
+ accessTokenTrustedIps?: Array<{
138
+ ipAddress: string;
139
+ }>;
140
+ }
141
+ interface UpdateUniversalAuthResponse {
142
+ identityUniversalAuth: IdentityUniversalAuth;
143
+ }
144
+ interface GetUniversalAuthParams {
145
+ identityId: string;
146
+ }
147
+ interface GetUniversalAuthResponse {
148
+ identityUniversalAuth: IdentityUniversalAuth;
149
+ }
150
+ interface RevokeUniversalAuthParams {
151
+ identityId: string;
152
+ }
153
+ interface RevokeUniversalAuthResponse {
154
+ identityUniversalAuth: IdentityUniversalAuth;
155
+ }
156
+ interface CreateUniversalAuthClientSecretParams {
157
+ identityId: string;
158
+ description?: string;
159
+ numUsesLimit?: number;
160
+ ttl?: number;
161
+ }
162
+ interface CreateUniversalAuthClientSecretResponse {
163
+ clientSecret: string;
164
+ clientSecretData: UniversalAuthClientSecret;
165
+ }
166
+ interface ListUniversalAuthClientSecretsParams {
167
+ identityId: string;
168
+ }
169
+ interface ListUniversalAuthClientSecretsResponse {
170
+ clientSecretData: UniversalAuthClientSecret[];
171
+ }
172
+ interface GetUniversalAuthClientSecretParams {
173
+ identityId: string;
174
+ clientSecretId: string;
175
+ }
176
+ interface GetUniversalAuthClientSecretResponse {
177
+ clientSecretData: UniversalAuthClientSecret;
178
+ }
179
+ interface RevokeUniversalAuthClientSecretParams {
180
+ identityId: string;
181
+ clientSecretId: string;
182
+ }
183
+ interface RevokeUniversalAuthClientSecretResponse {
184
+ clientSecretData: UniversalAuthClientSecret;
185
+ }
186
+
187
+ declare class IdentityUniversalAuthResource extends BaseResource {
188
+ constructor(http: HttpClient, authState: AuthState);
189
+ login(params: LoginUniversalAuthParams): Promise<LoginUniversalAuthResponse>;
190
+ attach(params: AttachUniversalAuthParams): Promise<AttachUniversalAuthResponse>;
191
+ update(params: UpdateUniversalAuthParams): Promise<UpdateUniversalAuthResponse>;
192
+ get(params: GetUniversalAuthParams): Promise<GetUniversalAuthResponse>;
193
+ revoke(params: RevokeUniversalAuthParams): Promise<RevokeUniversalAuthResponse>;
194
+ createClientSecret(params: CreateUniversalAuthClientSecretParams): Promise<CreateUniversalAuthClientSecretResponse>;
195
+ listClientSecrets(params: ListUniversalAuthClientSecretsParams): Promise<ListUniversalAuthClientSecretsResponse>;
196
+ getClientSecret(params: GetUniversalAuthClientSecretParams): Promise<GetUniversalAuthClientSecretResponse>;
197
+ revokeClientSecret(params: RevokeUniversalAuthClientSecretParams): Promise<RevokeUniversalAuthClientSecretResponse>;
198
+ }
199
+
200
+ interface IdentityTokenAuth {
201
+ id: string;
202
+ identityId: string;
203
+ accessTokenTTL: number;
204
+ accessTokenMaxTTL: number;
205
+ accessTokenNumUsesLimit: number;
206
+ accessTokenTrustedIps: Array<{
207
+ ipAddress: string;
208
+ prefix?: number;
209
+ }>;
210
+ createdAt: string;
211
+ updatedAt: string;
212
+ }
213
+ interface IdentityTokenAuthToken {
214
+ id: string;
215
+ identityTokenAuthId: string;
216
+ name: string;
217
+ isTokenRevoked: boolean;
218
+ createdAt: string;
219
+ updatedAt: string;
220
+ }
221
+ interface LoginTokenAuthParams {
222
+ identityId: string;
223
+ }
224
+ interface LoginTokenAuthResponse {
225
+ accessToken: string;
226
+ expiresIn: number;
227
+ accessTokenMaxTTL: number;
228
+ tokenType: string;
229
+ }
230
+ interface AttachTokenAuthParams {
231
+ identityId: string;
232
+ accessTokenTTL?: number;
233
+ accessTokenMaxTTL?: number;
234
+ accessTokenNumUsesLimit?: number;
235
+ accessTokenTrustedIps?: Array<{
236
+ ipAddress: string;
237
+ }>;
238
+ }
239
+ interface AttachTokenAuthResponse {
240
+ identityTokenAuth: IdentityTokenAuth;
241
+ }
242
+ interface UpdateTokenAuthParams {
243
+ identityId: string;
244
+ accessTokenTTL?: number;
245
+ accessTokenMaxTTL?: number;
246
+ accessTokenNumUsesLimit?: number;
247
+ accessTokenTrustedIps?: Array<{
248
+ ipAddress: string;
249
+ }>;
250
+ }
251
+ interface UpdateTokenAuthResponse {
252
+ identityTokenAuth: IdentityTokenAuth;
253
+ }
254
+ interface GetTokenAuthParams {
255
+ identityId: string;
256
+ }
257
+ interface GetTokenAuthResponse {
258
+ identityTokenAuth: IdentityTokenAuth;
259
+ }
260
+ interface RevokeTokenAuthParams {
261
+ identityId: string;
262
+ }
263
+ interface RevokeTokenAuthResponse {
264
+ identityTokenAuth: IdentityTokenAuth;
265
+ }
266
+ interface CreateTokenAuthTokenParams {
267
+ identityId: string;
268
+ name?: string;
269
+ }
270
+ interface CreateTokenAuthTokenResponse {
271
+ accessToken: string;
272
+ tokenData: IdentityTokenAuthToken;
273
+ }
274
+ interface ListTokenAuthTokensParams {
275
+ identityId: string;
276
+ offset?: number;
277
+ limit?: number;
278
+ }
279
+ interface ListTokenAuthTokensResponse {
280
+ tokens: IdentityTokenAuthToken[];
281
+ }
282
+ interface GetTokenAuthTokenParams {
283
+ identityId: string;
284
+ tokenId: string;
285
+ }
286
+ interface GetTokenAuthTokenResponse {
287
+ token: IdentityTokenAuthToken;
288
+ }
289
+ interface UpdateTokenAuthTokenParams {
290
+ identityId: string;
291
+ tokenId: string;
292
+ name?: string;
293
+ }
294
+ interface UpdateTokenAuthTokenResponse {
295
+ token: IdentityTokenAuthToken;
296
+ }
297
+ interface RevokeTokenAuthTokenParams {
298
+ identityId: string;
299
+ tokenId: string;
300
+ }
301
+ interface RevokeTokenAuthTokenResponse {
302
+ token: IdentityTokenAuthToken;
303
+ }
304
+
305
+ declare class IdentityTokenAuthResource extends BaseResource {
306
+ constructor(http: HttpClient, authState: AuthState);
307
+ login(params: LoginTokenAuthParams): Promise<LoginTokenAuthResponse>;
308
+ attach(params: AttachTokenAuthParams): Promise<AttachTokenAuthResponse>;
309
+ update(params: UpdateTokenAuthParams): Promise<UpdateTokenAuthResponse>;
310
+ get(params: GetTokenAuthParams): Promise<GetTokenAuthResponse>;
311
+ revoke(params: RevokeTokenAuthParams): Promise<RevokeTokenAuthResponse>;
312
+ createToken(params: CreateTokenAuthTokenParams): Promise<CreateTokenAuthTokenResponse>;
313
+ listTokens(params: ListTokenAuthTokensParams): Promise<ListTokenAuthTokensResponse>;
314
+ getToken(params: GetTokenAuthTokenParams): Promise<GetTokenAuthTokenResponse>;
315
+ updateToken(params: UpdateTokenAuthTokenParams): Promise<UpdateTokenAuthTokenResponse>;
316
+ revokeToken(params: RevokeTokenAuthTokenParams): Promise<RevokeTokenAuthTokenResponse>;
317
+ }
318
+
319
+ interface IdentityAwsAuth {
320
+ id: string;
321
+ identityId: string;
322
+ stsEndpoint: string;
323
+ allowedPrincipalArns: string;
324
+ allowedAccountIds: string;
325
+ accessTokenTTL: number;
326
+ accessTokenMaxTTL: number;
327
+ accessTokenNumUsesLimit: number;
328
+ accessTokenTrustedIps: Array<{
329
+ ipAddress: string;
330
+ prefix?: number;
331
+ }>;
332
+ createdAt: string;
333
+ updatedAt: string;
334
+ }
335
+ interface LoginAwsAuthParams {
336
+ identityId: string;
337
+ iamHttpRequestMethod: string;
338
+ iamRequestBody: string;
339
+ iamRequestHeaders: string;
340
+ }
341
+ interface LoginAwsAuthResponse {
342
+ accessToken: string;
343
+ expiresIn: number;
344
+ accessTokenMaxTTL: number;
345
+ tokenType: string;
346
+ }
347
+ interface AttachAwsAuthParams {
348
+ identityId: string;
349
+ stsEndpoint?: string;
350
+ allowedPrincipalArns?: string;
351
+ allowedAccountIds?: string;
352
+ accessTokenTTL?: number;
353
+ accessTokenMaxTTL?: number;
354
+ accessTokenNumUsesLimit?: number;
355
+ accessTokenTrustedIps?: Array<{
356
+ ipAddress: string;
357
+ }>;
358
+ }
359
+ interface AttachAwsAuthResponse {
360
+ identityAwsAuth: IdentityAwsAuth;
361
+ }
362
+ interface UpdateAwsAuthParams {
363
+ identityId: string;
364
+ stsEndpoint?: string;
365
+ allowedPrincipalArns?: string;
366
+ allowedAccountIds?: string;
367
+ accessTokenTTL?: number;
368
+ accessTokenMaxTTL?: number;
369
+ accessTokenNumUsesLimit?: number;
370
+ accessTokenTrustedIps?: Array<{
371
+ ipAddress: string;
372
+ }>;
373
+ }
374
+ interface UpdateAwsAuthResponse {
375
+ identityAwsAuth: IdentityAwsAuth;
376
+ }
377
+ interface GetAwsAuthParams {
378
+ identityId: string;
379
+ }
380
+ interface GetAwsAuthResponse {
381
+ identityAwsAuth: IdentityAwsAuth;
382
+ }
383
+ interface RevokeAwsAuthParams {
384
+ identityId: string;
385
+ }
386
+ interface RevokeAwsAuthResponse {
387
+ identityAwsAuth: IdentityAwsAuth;
388
+ }
389
+
390
+ declare class IdentityAwsAuthResource extends BaseResource {
391
+ constructor(http: HttpClient, authState: AuthState);
392
+ login(params: LoginAwsAuthParams): Promise<LoginAwsAuthResponse>;
393
+ attach(params: AttachAwsAuthParams): Promise<AttachAwsAuthResponse>;
394
+ update(params: UpdateAwsAuthParams): Promise<UpdateAwsAuthResponse>;
395
+ get(params: GetAwsAuthParams): Promise<GetAwsAuthResponse>;
396
+ revoke(params: RevokeAwsAuthParams): Promise<RevokeAwsAuthResponse>;
397
+ }
398
+
399
+ interface IdentityGcpAuth {
400
+ id: string;
401
+ identityId: string;
402
+ type: string;
403
+ allowedServiceAccounts: string;
404
+ allowedProjects: string;
405
+ allowedZones: string;
406
+ accessTokenTTL: number;
407
+ accessTokenMaxTTL: number;
408
+ accessTokenNumUsesLimit: number;
409
+ accessTokenTrustedIps: Array<{
410
+ ipAddress: string;
411
+ prefix?: number;
412
+ }>;
413
+ createdAt: string;
414
+ updatedAt: string;
415
+ }
416
+ interface LoginGcpAuthParams {
417
+ identityId: string;
418
+ jwt: string;
419
+ }
420
+ interface LoginGcpAuthResponse {
421
+ accessToken: string;
422
+ expiresIn: number;
423
+ accessTokenMaxTTL: number;
424
+ tokenType: string;
425
+ }
426
+ interface AttachGcpAuthParams {
427
+ identityId: string;
428
+ type?: string;
429
+ allowedServiceAccounts?: string;
430
+ allowedProjects?: string;
431
+ allowedZones?: string;
432
+ accessTokenTTL?: number;
433
+ accessTokenMaxTTL?: number;
434
+ accessTokenNumUsesLimit?: number;
435
+ accessTokenTrustedIps?: Array<{
436
+ ipAddress: string;
437
+ }>;
438
+ }
439
+ interface AttachGcpAuthResponse {
440
+ identityGcpAuth: IdentityGcpAuth;
441
+ }
442
+ interface UpdateGcpAuthParams {
443
+ identityId: string;
444
+ type?: string;
445
+ allowedServiceAccounts?: string;
446
+ allowedProjects?: string;
447
+ allowedZones?: string;
448
+ accessTokenTTL?: number;
449
+ accessTokenMaxTTL?: number;
450
+ accessTokenNumUsesLimit?: number;
451
+ accessTokenTrustedIps?: Array<{
452
+ ipAddress: string;
453
+ }>;
454
+ }
455
+ interface UpdateGcpAuthResponse {
456
+ identityGcpAuth: IdentityGcpAuth;
457
+ }
458
+ interface GetGcpAuthParams {
459
+ identityId: string;
460
+ }
461
+ interface GetGcpAuthResponse {
462
+ identityGcpAuth: IdentityGcpAuth;
463
+ }
464
+ interface RevokeGcpAuthParams {
465
+ identityId: string;
466
+ }
467
+ interface RevokeGcpAuthResponse {
468
+ identityGcpAuth: IdentityGcpAuth;
469
+ }
470
+
471
+ declare class IdentityGcpAuthResource extends BaseResource {
472
+ constructor(http: HttpClient, authState: AuthState);
473
+ login(params: LoginGcpAuthParams): Promise<LoginGcpAuthResponse>;
474
+ attach(params: AttachGcpAuthParams): Promise<AttachGcpAuthResponse>;
475
+ update(params: UpdateGcpAuthParams): Promise<UpdateGcpAuthResponse>;
476
+ get(params: GetGcpAuthParams): Promise<GetGcpAuthResponse>;
477
+ revoke(params: RevokeGcpAuthParams): Promise<RevokeGcpAuthResponse>;
478
+ }
479
+
480
+ interface IdentityAzureAuth {
481
+ id: string;
482
+ identityId: string;
483
+ tenantId: string;
484
+ resource: string;
485
+ allowedServicePrincipalIds: string;
486
+ accessTokenTTL: number;
487
+ accessTokenMaxTTL: number;
488
+ accessTokenNumUsesLimit: number;
489
+ accessTokenTrustedIps: Array<{
490
+ ipAddress: string;
491
+ prefix?: number;
492
+ }>;
493
+ createdAt: string;
494
+ updatedAt: string;
495
+ }
496
+ interface LoginAzureAuthParams {
497
+ identityId: string;
498
+ jwt: string;
499
+ }
500
+ interface LoginAzureAuthResponse {
501
+ accessToken: string;
502
+ expiresIn: number;
503
+ accessTokenMaxTTL: number;
504
+ tokenType: string;
505
+ }
506
+ interface AttachAzureAuthParams {
507
+ identityId: string;
508
+ tenantId?: string;
509
+ resource?: string;
510
+ allowedServicePrincipalIds?: string;
511
+ accessTokenTTL?: number;
512
+ accessTokenMaxTTL?: number;
513
+ accessTokenNumUsesLimit?: number;
514
+ accessTokenTrustedIps?: Array<{
515
+ ipAddress: string;
516
+ }>;
517
+ }
518
+ interface AttachAzureAuthResponse {
519
+ identityAzureAuth: IdentityAzureAuth;
520
+ }
521
+ interface UpdateAzureAuthParams {
522
+ identityId: string;
523
+ tenantId?: string;
524
+ resource?: string;
525
+ allowedServicePrincipalIds?: string;
526
+ accessTokenTTL?: number;
527
+ accessTokenMaxTTL?: number;
528
+ accessTokenNumUsesLimit?: number;
529
+ accessTokenTrustedIps?: Array<{
530
+ ipAddress: string;
531
+ }>;
532
+ }
533
+ interface UpdateAzureAuthResponse {
534
+ identityAzureAuth: IdentityAzureAuth;
535
+ }
536
+ interface GetAzureAuthParams {
537
+ identityId: string;
538
+ }
539
+ interface GetAzureAuthResponse {
540
+ identityAzureAuth: IdentityAzureAuth;
541
+ }
542
+ interface RevokeAzureAuthParams {
543
+ identityId: string;
544
+ }
545
+ interface RevokeAzureAuthResponse {
546
+ identityAzureAuth: IdentityAzureAuth;
547
+ }
548
+
549
+ declare class IdentityAzureAuthResource extends BaseResource {
550
+ constructor(http: HttpClient, authState: AuthState);
551
+ login(params: LoginAzureAuthParams): Promise<LoginAzureAuthResponse>;
552
+ attach(params: AttachAzureAuthParams): Promise<AttachAzureAuthResponse>;
553
+ update(params: UpdateAzureAuthParams): Promise<UpdateAzureAuthResponse>;
554
+ get(params: GetAzureAuthParams): Promise<GetAzureAuthResponse>;
555
+ revoke(params: RevokeAzureAuthParams): Promise<RevokeAzureAuthResponse>;
556
+ }
557
+
558
+ interface IdentityKubernetesAuth {
559
+ id: string;
560
+ identityId: string;
561
+ kubernetesHost: string;
562
+ caCert: string;
563
+ tokenReviewerJwt: string;
564
+ allowedNamespaces: string;
565
+ allowedNames: string;
566
+ allowedAudience: string;
567
+ accessTokenTTL: number;
568
+ accessTokenMaxTTL: number;
569
+ accessTokenNumUsesLimit: number;
570
+ accessTokenTrustedIps: Array<{
571
+ ipAddress: string;
572
+ prefix?: number;
573
+ }>;
574
+ createdAt: string;
575
+ updatedAt: string;
576
+ }
577
+ interface LoginKubernetesAuthParams {
578
+ identityId: string;
579
+ jwt: string;
580
+ }
581
+ interface LoginKubernetesAuthResponse {
582
+ accessToken: string;
583
+ expiresIn: number;
584
+ accessTokenMaxTTL: number;
585
+ tokenType: string;
586
+ }
587
+ interface AttachKubernetesAuthParams {
588
+ identityId: string;
589
+ kubernetesHost?: string;
590
+ caCert?: string;
591
+ tokenReviewerJwt?: string;
592
+ allowedNamespaces?: string;
593
+ allowedNames?: string;
594
+ allowedAudience?: string;
595
+ accessTokenTTL?: number;
596
+ accessTokenMaxTTL?: number;
597
+ accessTokenNumUsesLimit?: number;
598
+ accessTokenTrustedIps?: Array<{
599
+ ipAddress: string;
600
+ }>;
601
+ }
602
+ interface AttachKubernetesAuthResponse {
603
+ identityKubernetesAuth: IdentityKubernetesAuth;
604
+ }
605
+ interface UpdateKubernetesAuthParams {
606
+ identityId: string;
607
+ kubernetesHost?: string;
608
+ caCert?: string;
609
+ tokenReviewerJwt?: string;
610
+ allowedNamespaces?: string;
611
+ allowedNames?: string;
612
+ allowedAudience?: string;
613
+ accessTokenTTL?: number;
614
+ accessTokenMaxTTL?: number;
615
+ accessTokenNumUsesLimit?: number;
616
+ accessTokenTrustedIps?: Array<{
617
+ ipAddress: string;
618
+ }>;
619
+ }
620
+ interface UpdateKubernetesAuthResponse {
621
+ identityKubernetesAuth: IdentityKubernetesAuth;
622
+ }
623
+ interface GetKubernetesAuthParams {
624
+ identityId: string;
625
+ }
626
+ interface GetKubernetesAuthResponse {
627
+ identityKubernetesAuth: IdentityKubernetesAuth;
628
+ }
629
+ interface RevokeKubernetesAuthParams {
630
+ identityId: string;
631
+ }
632
+ interface RevokeKubernetesAuthResponse {
633
+ identityKubernetesAuth: IdentityKubernetesAuth;
634
+ }
635
+
636
+ declare class IdentityKubernetesAuthResource extends BaseResource {
637
+ constructor(http: HttpClient, authState: AuthState);
638
+ login(params: LoginKubernetesAuthParams): Promise<LoginKubernetesAuthResponse>;
639
+ attach(params: AttachKubernetesAuthParams): Promise<AttachKubernetesAuthResponse>;
640
+ update(params: UpdateKubernetesAuthParams): Promise<UpdateKubernetesAuthResponse>;
641
+ get(params: GetKubernetesAuthParams): Promise<GetKubernetesAuthResponse>;
642
+ revoke(params: RevokeKubernetesAuthParams): Promise<RevokeKubernetesAuthResponse>;
643
+ }
644
+
645
+ interface IdentityOidcAuth {
646
+ id: string;
647
+ identityId: string;
648
+ oidcDiscoveryUrl: string;
649
+ caCert: string;
650
+ boundIssuer: string;
651
+ boundAudiences: string;
652
+ boundClaims: Record<string, string>;
653
+ boundSubject: string;
654
+ accessTokenTTL: number;
655
+ accessTokenMaxTTL: number;
656
+ accessTokenNumUsesLimit: number;
657
+ accessTokenTrustedIps: Array<{
658
+ ipAddress: string;
659
+ prefix?: number;
660
+ }>;
661
+ createdAt: string;
662
+ updatedAt: string;
663
+ }
664
+ interface LoginOidcAuthParams {
665
+ identityId: string;
666
+ jwt: string;
667
+ }
668
+ interface LoginOidcAuthResponse {
669
+ accessToken: string;
670
+ expiresIn: number;
671
+ accessTokenMaxTTL: number;
672
+ tokenType: string;
673
+ }
674
+ interface AttachOidcAuthParams {
675
+ identityId: string;
676
+ oidcDiscoveryUrl?: string;
677
+ caCert?: string;
678
+ boundIssuer?: string;
679
+ boundAudiences?: string;
680
+ boundClaims?: Record<string, string>;
681
+ boundSubject?: string;
682
+ accessTokenTTL?: number;
683
+ accessTokenMaxTTL?: number;
684
+ accessTokenNumUsesLimit?: number;
685
+ accessTokenTrustedIps?: Array<{
686
+ ipAddress: string;
687
+ }>;
688
+ }
689
+ interface AttachOidcAuthResponse {
690
+ identityOidcAuth: IdentityOidcAuth;
691
+ }
692
+ interface UpdateOidcAuthParams {
693
+ identityId: string;
694
+ oidcDiscoveryUrl?: string;
695
+ caCert?: string;
696
+ boundIssuer?: string;
697
+ boundAudiences?: string;
698
+ boundClaims?: Record<string, string>;
699
+ boundSubject?: string;
700
+ accessTokenTTL?: number;
701
+ accessTokenMaxTTL?: number;
702
+ accessTokenNumUsesLimit?: number;
703
+ accessTokenTrustedIps?: Array<{
704
+ ipAddress: string;
705
+ }>;
706
+ }
707
+ interface UpdateOidcAuthResponse {
708
+ identityOidcAuth: IdentityOidcAuth;
709
+ }
710
+ interface GetOidcAuthParams {
711
+ identityId: string;
712
+ }
713
+ interface GetOidcAuthResponse {
714
+ identityOidcAuth: IdentityOidcAuth;
715
+ }
716
+ interface RevokeOidcAuthParams {
717
+ identityId: string;
718
+ }
719
+ interface RevokeOidcAuthResponse {
720
+ identityOidcAuth: IdentityOidcAuth;
721
+ }
722
+
723
+ declare class IdentityOidcAuthResource extends BaseResource {
724
+ constructor(http: HttpClient, authState: AuthState);
725
+ login(params: LoginOidcAuthParams): Promise<LoginOidcAuthResponse>;
726
+ attach(params: AttachOidcAuthParams): Promise<AttachOidcAuthResponse>;
727
+ update(params: UpdateOidcAuthParams): Promise<UpdateOidcAuthResponse>;
728
+ get(params: GetOidcAuthParams): Promise<GetOidcAuthResponse>;
729
+ revoke(params: RevokeOidcAuthParams): Promise<RevokeOidcAuthResponse>;
730
+ }
731
+
732
+ interface IdentityJwtAuth {
733
+ id: string;
734
+ identityId: string;
735
+ configurationType: string;
736
+ jwksUrl: string;
737
+ jwksCaCert: string;
738
+ publicKeys: string[];
739
+ boundIssuer: string;
740
+ boundAudiences: string;
741
+ boundClaims: Record<string, string>;
742
+ boundSubject: string;
743
+ accessTokenTTL: number;
744
+ accessTokenMaxTTL: number;
745
+ accessTokenNumUsesLimit: number;
746
+ accessTokenTrustedIps: Array<{
747
+ ipAddress: string;
748
+ prefix?: number;
749
+ }>;
750
+ createdAt: string;
751
+ updatedAt: string;
752
+ }
753
+ interface LoginJwtAuthParams {
754
+ identityId: string;
755
+ jwt: string;
756
+ }
757
+ interface LoginJwtAuthResponse {
758
+ accessToken: string;
759
+ expiresIn: number;
760
+ accessTokenMaxTTL: number;
761
+ tokenType: string;
762
+ }
763
+ interface AttachJwtAuthParams {
764
+ identityId: string;
765
+ configurationType?: string;
766
+ jwksUrl?: string;
767
+ jwksCaCert?: string;
768
+ publicKeys?: string[];
769
+ boundIssuer?: string;
770
+ boundAudiences?: string;
771
+ boundClaims?: Record<string, string>;
772
+ boundSubject?: string;
773
+ accessTokenTTL?: number;
774
+ accessTokenMaxTTL?: number;
775
+ accessTokenNumUsesLimit?: number;
776
+ accessTokenTrustedIps?: Array<{
777
+ ipAddress: string;
778
+ }>;
779
+ }
780
+ interface AttachJwtAuthResponse {
781
+ identityJwtAuth: IdentityJwtAuth;
782
+ }
783
+ interface UpdateJwtAuthParams {
784
+ identityId: string;
785
+ configurationType?: string;
786
+ jwksUrl?: string;
787
+ jwksCaCert?: string;
788
+ publicKeys?: string[];
789
+ boundIssuer?: string;
790
+ boundAudiences?: string;
791
+ boundClaims?: Record<string, string>;
792
+ boundSubject?: string;
793
+ accessTokenTTL?: number;
794
+ accessTokenMaxTTL?: number;
795
+ accessTokenNumUsesLimit?: number;
796
+ accessTokenTrustedIps?: Array<{
797
+ ipAddress: string;
798
+ }>;
799
+ }
800
+ interface UpdateJwtAuthResponse {
801
+ identityJwtAuth: IdentityJwtAuth;
802
+ }
803
+ interface GetJwtAuthParams {
804
+ identityId: string;
805
+ }
806
+ interface GetJwtAuthResponse {
807
+ identityJwtAuth: IdentityJwtAuth;
808
+ }
809
+ interface RevokeJwtAuthParams {
810
+ identityId: string;
811
+ }
812
+ interface RevokeJwtAuthResponse {
813
+ identityJwtAuth: IdentityJwtAuth;
814
+ }
815
+
816
+ declare class IdentityJwtAuthResource extends BaseResource {
817
+ constructor(http: HttpClient, authState: AuthState);
818
+ login(params: LoginJwtAuthParams): Promise<LoginJwtAuthResponse>;
819
+ attach(params: AttachJwtAuthParams): Promise<AttachJwtAuthResponse>;
820
+ update(params: UpdateJwtAuthParams): Promise<UpdateJwtAuthResponse>;
821
+ get(params: GetJwtAuthParams): Promise<GetJwtAuthResponse>;
822
+ revoke(params: RevokeJwtAuthParams): Promise<RevokeJwtAuthResponse>;
823
+ }
824
+
825
+ interface IdentityLdapAuth {
826
+ id: string;
827
+ identityId: string;
828
+ ldapConfigId: string;
829
+ allowedGroups: string;
830
+ allowedGroupsDN: string;
831
+ accessTokenTTL: number;
832
+ accessTokenMaxTTL: number;
833
+ accessTokenNumUsesLimit: number;
834
+ accessTokenTrustedIps: Array<{
835
+ ipAddress: string;
836
+ prefix?: number;
837
+ }>;
838
+ createdAt: string;
839
+ updatedAt: string;
840
+ }
841
+ interface LoginLdapAuthParams {
842
+ identityId: string;
843
+ username: string;
844
+ password: string;
845
+ ldapConfigId?: string;
846
+ }
847
+ interface LoginLdapAuthResponse {
848
+ accessToken: string;
849
+ expiresIn: number;
850
+ accessTokenMaxTTL: number;
851
+ tokenType: string;
852
+ }
853
+ interface AttachLdapAuthParams {
854
+ identityId: string;
855
+ ldapConfigId?: string;
856
+ allowedGroups?: string;
857
+ allowedGroupsDN?: string;
858
+ accessTokenTTL?: number;
859
+ accessTokenMaxTTL?: number;
860
+ accessTokenNumUsesLimit?: number;
861
+ accessTokenTrustedIps?: Array<{
862
+ ipAddress: string;
863
+ }>;
864
+ }
865
+ interface AttachLdapAuthResponse {
866
+ identityLdapAuth: IdentityLdapAuth;
867
+ }
868
+ interface UpdateLdapAuthParams {
869
+ identityId: string;
870
+ ldapConfigId?: string;
871
+ allowedGroups?: string;
872
+ allowedGroupsDN?: string;
873
+ accessTokenTTL?: number;
874
+ accessTokenMaxTTL?: number;
875
+ accessTokenNumUsesLimit?: number;
876
+ accessTokenTrustedIps?: Array<{
877
+ ipAddress: string;
878
+ }>;
879
+ }
880
+ interface UpdateLdapAuthResponse {
881
+ identityLdapAuth: IdentityLdapAuth;
882
+ }
883
+ interface GetLdapAuthParams {
884
+ identityId: string;
885
+ }
886
+ interface GetLdapAuthResponse {
887
+ identityLdapAuth: IdentityLdapAuth;
888
+ }
889
+ interface RevokeLdapAuthParams {
890
+ identityId: string;
891
+ }
892
+ interface RevokeLdapAuthResponse {
893
+ identityLdapAuth: IdentityLdapAuth;
894
+ }
895
+
896
+ declare class IdentityLdapAuthResource extends BaseResource {
897
+ constructor(http: HttpClient, authState: AuthState);
898
+ login(params: LoginLdapAuthParams): Promise<LoginLdapAuthResponse>;
899
+ attach(params: AttachLdapAuthParams): Promise<AttachLdapAuthResponse>;
900
+ update(params: UpdateLdapAuthParams): Promise<UpdateLdapAuthResponse>;
901
+ get(params: GetLdapAuthParams): Promise<GetLdapAuthResponse>;
902
+ revoke(params: RevokeLdapAuthParams): Promise<RevokeLdapAuthResponse>;
903
+ }
904
+
905
+ interface IdentityTlsCertAuth {
906
+ id: string;
907
+ identityId: string;
908
+ caCert: string;
909
+ allowedCommonNames: string;
910
+ allowedOrganizations: string;
911
+ accessTokenTTL: number;
912
+ accessTokenMaxTTL: number;
913
+ accessTokenNumUsesLimit: number;
914
+ accessTokenTrustedIps: Array<{
915
+ ipAddress: string;
916
+ prefix?: number;
917
+ }>;
918
+ createdAt: string;
919
+ updatedAt: string;
920
+ }
921
+ interface LoginTlsCertAuthParams {
922
+ identityId: string;
923
+ clientCertificate: string;
924
+ }
925
+ interface LoginTlsCertAuthResponse {
926
+ accessToken: string;
927
+ expiresIn: number;
928
+ accessTokenMaxTTL: number;
929
+ tokenType: string;
930
+ }
931
+ interface AttachTlsCertAuthParams {
932
+ identityId: string;
933
+ caCert?: string;
934
+ allowedCommonNames?: string;
935
+ allowedOrganizations?: string;
936
+ accessTokenTTL?: number;
937
+ accessTokenMaxTTL?: number;
938
+ accessTokenNumUsesLimit?: number;
939
+ accessTokenTrustedIps?: Array<{
940
+ ipAddress: string;
941
+ }>;
942
+ }
943
+ interface AttachTlsCertAuthResponse {
944
+ identityTlsCertAuth: IdentityTlsCertAuth;
945
+ }
946
+ interface UpdateTlsCertAuthParams {
947
+ identityId: string;
948
+ caCert?: string;
949
+ allowedCommonNames?: string;
950
+ allowedOrganizations?: string;
951
+ accessTokenTTL?: number;
952
+ accessTokenMaxTTL?: number;
953
+ accessTokenNumUsesLimit?: number;
954
+ accessTokenTrustedIps?: Array<{
955
+ ipAddress: string;
956
+ }>;
957
+ }
958
+ interface UpdateTlsCertAuthResponse {
959
+ identityTlsCertAuth: IdentityTlsCertAuth;
960
+ }
961
+ interface GetTlsCertAuthParams {
962
+ identityId: string;
963
+ }
964
+ interface GetTlsCertAuthResponse {
965
+ identityTlsCertAuth: IdentityTlsCertAuth;
966
+ }
967
+ interface RevokeTlsCertAuthParams {
968
+ identityId: string;
969
+ }
970
+ interface RevokeTlsCertAuthResponse {
971
+ identityTlsCertAuth: IdentityTlsCertAuth;
972
+ }
973
+
974
+ declare class IdentityTlsCertAuthResource extends BaseResource {
975
+ constructor(http: HttpClient, authState: AuthState);
976
+ login(params: LoginTlsCertAuthParams): Promise<LoginTlsCertAuthResponse>;
977
+ attach(params: AttachTlsCertAuthParams): Promise<AttachTlsCertAuthResponse>;
978
+ update(params: UpdateTlsCertAuthParams): Promise<UpdateTlsCertAuthResponse>;
979
+ get(params: GetTlsCertAuthParams): Promise<GetTlsCertAuthResponse>;
980
+ revoke(params: RevokeTlsCertAuthParams): Promise<RevokeTlsCertAuthResponse>;
981
+ }
982
+
983
+ interface IdentityOciAuth {
984
+ id: string;
985
+ identityId: string;
986
+ tenancyOcid: string;
987
+ allowedUserOcids: string;
988
+ allowedCompartmentOcids: string;
989
+ accessTokenTTL: number;
990
+ accessTokenMaxTTL: number;
991
+ accessTokenNumUsesLimit: number;
992
+ accessTokenTrustedIps: Array<{
993
+ ipAddress: string;
994
+ prefix?: number;
995
+ }>;
996
+ createdAt: string;
997
+ updatedAt: string;
998
+ }
999
+ interface LoginOciAuthParams {
1000
+ identityId: string;
1001
+ userOcid: string;
1002
+ requestHeaders: string;
1003
+ }
1004
+ interface LoginOciAuthResponse {
1005
+ accessToken: string;
1006
+ expiresIn: number;
1007
+ accessTokenMaxTTL: number;
1008
+ tokenType: string;
1009
+ }
1010
+ interface AttachOciAuthParams {
1011
+ identityId: string;
1012
+ tenancyOcid?: string;
1013
+ allowedUserOcids?: string;
1014
+ allowedCompartmentOcids?: string;
1015
+ accessTokenTTL?: number;
1016
+ accessTokenMaxTTL?: number;
1017
+ accessTokenNumUsesLimit?: number;
1018
+ accessTokenTrustedIps?: Array<{
1019
+ ipAddress: string;
1020
+ }>;
1021
+ }
1022
+ interface AttachOciAuthResponse {
1023
+ identityOciAuth: IdentityOciAuth;
1024
+ }
1025
+ interface UpdateOciAuthParams {
1026
+ identityId: string;
1027
+ tenancyOcid?: string;
1028
+ allowedUserOcids?: string;
1029
+ allowedCompartmentOcids?: string;
1030
+ accessTokenTTL?: number;
1031
+ accessTokenMaxTTL?: number;
1032
+ accessTokenNumUsesLimit?: number;
1033
+ accessTokenTrustedIps?: Array<{
1034
+ ipAddress: string;
1035
+ }>;
1036
+ }
1037
+ interface UpdateOciAuthResponse {
1038
+ identityOciAuth: IdentityOciAuth;
1039
+ }
1040
+ interface GetOciAuthParams {
1041
+ identityId: string;
1042
+ }
1043
+ interface GetOciAuthResponse {
1044
+ identityOciAuth: IdentityOciAuth;
1045
+ }
1046
+ interface RevokeOciAuthParams {
1047
+ identityId: string;
1048
+ }
1049
+ interface RevokeOciAuthResponse {
1050
+ identityOciAuth: IdentityOciAuth;
1051
+ }
1052
+
1053
+ declare class IdentityOciAuthResource extends BaseResource {
1054
+ constructor(http: HttpClient, authState: AuthState);
1055
+ login(params: LoginOciAuthParams): Promise<LoginOciAuthResponse>;
1056
+ attach(params: AttachOciAuthParams): Promise<AttachOciAuthResponse>;
1057
+ update(params: UpdateOciAuthParams): Promise<UpdateOciAuthResponse>;
1058
+ get(params: GetOciAuthParams): Promise<GetOciAuthResponse>;
1059
+ revoke(params: RevokeOciAuthParams): Promise<RevokeOciAuthResponse>;
1060
+ }
1061
+
1062
+ interface IdentityAlicloudAuth {
1063
+ id: string;
1064
+ identityId: string;
1065
+ allowedArns: string;
1066
+ allowedAccountIds: string;
1067
+ accessTokenTTL: number;
1068
+ accessTokenMaxTTL: number;
1069
+ accessTokenNumUsesLimit: number;
1070
+ accessTokenTrustedIps: Array<{
1071
+ ipAddress: string;
1072
+ prefix?: number;
1073
+ }>;
1074
+ createdAt: string;
1075
+ updatedAt: string;
1076
+ }
1077
+ interface LoginAlicloudAuthParams {
1078
+ identityId: string;
1079
+ stsToken: string;
1080
+ identityArn: string;
1081
+ }
1082
+ interface LoginAlicloudAuthResponse {
1083
+ accessToken: string;
1084
+ expiresIn: number;
1085
+ accessTokenMaxTTL: number;
1086
+ tokenType: string;
1087
+ }
1088
+ interface AttachAlicloudAuthParams {
1089
+ identityId: string;
1090
+ allowedArns?: string;
1091
+ allowedAccountIds?: string;
1092
+ accessTokenTTL?: number;
1093
+ accessTokenMaxTTL?: number;
1094
+ accessTokenNumUsesLimit?: number;
1095
+ accessTokenTrustedIps?: Array<{
1096
+ ipAddress: string;
1097
+ }>;
1098
+ }
1099
+ interface AttachAlicloudAuthResponse {
1100
+ identityAlicloudAuth: IdentityAlicloudAuth;
1101
+ }
1102
+ interface UpdateAlicloudAuthParams {
1103
+ identityId: string;
1104
+ allowedArns?: string;
1105
+ allowedAccountIds?: string;
1106
+ accessTokenTTL?: number;
1107
+ accessTokenMaxTTL?: number;
1108
+ accessTokenNumUsesLimit?: number;
1109
+ accessTokenTrustedIps?: Array<{
1110
+ ipAddress: string;
1111
+ }>;
1112
+ }
1113
+ interface UpdateAlicloudAuthResponse {
1114
+ identityAlicloudAuth: IdentityAlicloudAuth;
1115
+ }
1116
+ interface GetAlicloudAuthParams {
1117
+ identityId: string;
1118
+ }
1119
+ interface GetAlicloudAuthResponse {
1120
+ identityAlicloudAuth: IdentityAlicloudAuth;
1121
+ }
1122
+ interface RevokeAlicloudAuthParams {
1123
+ identityId: string;
1124
+ }
1125
+ interface RevokeAlicloudAuthResponse {
1126
+ identityAlicloudAuth: IdentityAlicloudAuth;
1127
+ }
1128
+
1129
+ declare class IdentityAlicloudAuthResource extends BaseResource {
1130
+ constructor(http: HttpClient, authState: AuthState);
1131
+ login(params: LoginAlicloudAuthParams): Promise<LoginAlicloudAuthResponse>;
1132
+ attach(params: AttachAlicloudAuthParams): Promise<AttachAlicloudAuthResponse>;
1133
+ update(params: UpdateAlicloudAuthParams): Promise<UpdateAlicloudAuthResponse>;
1134
+ get(params: GetAlicloudAuthParams): Promise<GetAlicloudAuthResponse>;
1135
+ revoke(params: RevokeAlicloudAuthParams): Promise<RevokeAlicloudAuthResponse>;
1136
+ }
1137
+
1138
+ type LoginParams = {
1139
+ universalAuth: LoginUniversalAuthParams;
1140
+ } | {
1141
+ tokenAuth: LoginTokenAuthParams;
1142
+ } | {
1143
+ awsAuth: LoginAwsAuthParams;
1144
+ } | {
1145
+ gcpAuth: LoginGcpAuthParams;
1146
+ } | {
1147
+ azureAuth: LoginAzureAuthParams;
1148
+ } | {
1149
+ kubernetesAuth: LoginKubernetesAuthParams;
1150
+ } | {
1151
+ oidcAuth: LoginOidcAuthParams;
1152
+ } | {
1153
+ jwtAuth: LoginJwtAuthParams;
1154
+ } | {
1155
+ ldapAuth: LoginLdapAuthParams;
1156
+ } | {
1157
+ tlsCertAuth: LoginTlsCertAuthParams;
1158
+ } | {
1159
+ ociAuth: LoginOciAuthParams;
1160
+ } | {
1161
+ alicloudAuth: LoginAlicloudAuthParams;
1162
+ };
1163
+ type LoginParamsOrFactory = LoginParams | (() => Promise<LoginParams> | LoginParams);
1164
+ interface IdentityAuthResources {
1165
+ universal: IdentityUniversalAuthResource;
1166
+ token: IdentityTokenAuthResource;
1167
+ aws: IdentityAwsAuthResource;
1168
+ gcp: IdentityGcpAuthResource;
1169
+ azure: IdentityAzureAuthResource;
1170
+ kubernetes: IdentityKubernetesAuthResource;
1171
+ oidc: IdentityOidcAuthResource;
1172
+ jwt: IdentityJwtAuthResource;
1173
+ ldap: IdentityLdapAuthResource;
1174
+ tlsCert: IdentityTlsCertAuthResource;
1175
+ oci: IdentityOciAuthResource;
1176
+ alicloud: IdentityAlicloudAuthResource;
1177
+ }
1178
+ declare class AuthManager {
1179
+ private readonly authState;
1180
+ private readonly resources;
1181
+ constructor(authState: AuthState, resources: IdentityAuthResources);
1182
+ login(params: LoginParams | (() => Promise<LoginParams> | LoginParams)): Promise<LoginResponse>;
1183
+ private resolveLoginFn;
1184
+ }
1185
+
1186
+ declare enum AuthMethod {
1187
+ EMAIL = "email",
1188
+ GOOGLE = "google",
1189
+ GITHUB = "github",
1190
+ GITLAB = "gitlab"
1191
+ }
1192
+ declare enum MfaMethod {
1193
+ EMAIL = "email",
1194
+ TOTP = "totp",
1195
+ WEBAUTHN = "webauthn"
1196
+ }
1197
+ declare enum OrgMembershipStatus {
1198
+ Accepted = "accepted",
1199
+ Invited = "invited"
1200
+ }
1201
+ declare enum OrgIdentityOrderBy {
1202
+ Name = "name"
1203
+ }
1204
+ declare enum OrderByDirection {
1205
+ ASC = "asc",
1206
+ DESC = "desc"
1207
+ }
1208
+ declare enum MfaSessionStatus {
1209
+ PENDING = "pending",
1210
+ VERIFIED = "verified",
1211
+ EXPIRED = "expired"
1212
+ }
1213
+ declare enum PkiAlertEventType {
1214
+ EXPIRING = "expiring"
1215
+ }
1216
+ declare enum PkiAlertChannelType {
1217
+ EMAIL = "email",
1218
+ WEBHOOK = "webhook",
1219
+ SLACK = "slack",
1220
+ PAGERDUTY = "pagerduty"
1221
+ }
1222
+ declare enum CertKeyUsage {
1223
+ DIGITAL_SIGNATURE = "digitalSignature",
1224
+ KEY_ENCIPHERMENT = "keyEncipherment",
1225
+ DATA_ENCIPHERMENT = "dataEncipherment",
1226
+ KEY_AGREEMENT = "keyAgreement",
1227
+ KEY_CERT_SIGN = "keyCertSign",
1228
+ CRL_SIGN = "cRLSign",
1229
+ NON_REPUDIATION = "nonRepudiation",
1230
+ ENCIPHER_ONLY = "encipherOnly",
1231
+ DECIPHER_ONLY = "decipherOnly"
1232
+ }
1233
+ declare enum CertExtendedKeyUsage {
1234
+ SERVER_AUTH = "serverAuth",
1235
+ CLIENT_AUTH = "clientAuth",
1236
+ CODE_SIGNING = "codeSigning",
1237
+ EMAIL_PROTECTION = "emailProtection",
1238
+ TIME_STAMPING = "timeStamping",
1239
+ OCSP_SIGNING = "ocspSigning"
1240
+ }
1241
+ declare enum CaType {
1242
+ INTERNAL = "internal",
1243
+ ACME = "acme",
1244
+ AZURE_AD_CS = "azure-ad-cs"
1245
+ }
1246
+ declare enum JwtSignatureAlgorithm {
1247
+ RS256 = "RS256",
1248
+ RS384 = "RS384",
1249
+ RS512 = "RS512",
1250
+ ES256 = "ES256",
1251
+ ES384 = "ES384",
1252
+ ES512 = "ES512",
1253
+ PS256 = "PS256",
1254
+ PS384 = "PS384",
1255
+ PS512 = "PS512",
1256
+ EdDSA = "EdDSA"
1257
+ }
1258
+
1259
+ interface ResendMfaTokenResponse {
1260
+ message: string;
1261
+ }
1262
+ interface CheckTotpResponse {
1263
+ isVerified: boolean;
1264
+ }
1265
+ interface CheckWebAuthnResponse {
1266
+ hasPasskeys: boolean;
1267
+ }
1268
+ interface VerifyMfaParams {
1269
+ mfaToken: string;
1270
+ mfaMethod?: MfaMethod;
1271
+ }
1272
+ interface VerifyMfaResponse {
1273
+ encryptionVersion?: number | null;
1274
+ protectedKey?: string | null;
1275
+ protectedKeyIV?: string | null;
1276
+ protectedKeyTag?: string | null;
1277
+ publicKey?: string | null;
1278
+ encryptedPrivateKey?: string | null;
1279
+ iv?: string | null;
1280
+ tag?: string | null;
1281
+ token: string;
1282
+ }
1283
+ interface VerifyMfaRecoveryCodeParams {
1284
+ recoveryCode: string;
1285
+ }
1286
+
1287
+ declare class MfaResource extends BaseResource {
1288
+ constructor(http: HttpClient, authState: AuthState);
1289
+ resendToken(): Promise<ResendMfaTokenResponse>;
1290
+ checkTotp(): Promise<CheckTotpResponse>;
1291
+ checkWebAuthn(): Promise<CheckWebAuthnResponse>;
1292
+ verify(params: VerifyMfaParams): Promise<VerifyMfaResponse>;
1293
+ verifyRecoveryCode(params: VerifyMfaRecoveryCodeParams): Promise<VerifyMfaResponse>;
1294
+ }
1295
+
1296
+ interface VerifyMfaSessionParams {
1297
+ mfaSessionId: string;
1298
+ mfaToken: string;
1299
+ mfaMethod: MfaMethod;
1300
+ }
1301
+ interface VerifyMfaSessionResponse {
1302
+ success: boolean;
1303
+ message: string;
1304
+ }
1305
+ interface GetMfaSessionStatusParams {
1306
+ mfaSessionId: string;
1307
+ }
1308
+ interface GetMfaSessionStatusResponse {
1309
+ status: MfaSessionStatus;
1310
+ mfaMethod: MfaMethod;
1311
+ }
1312
+
1313
+ declare class MfaSessionsResource extends BaseResource {
1314
+ constructor(http: HttpClient, authState: AuthState);
1315
+ verify(params: VerifyMfaSessionParams): Promise<VerifyMfaSessionResponse>;
1316
+ getStatus(params: GetMfaSessionStatusParams): Promise<GetMfaSessionStatusResponse>;
1317
+ }
1318
+
1319
+ interface User {
1320
+ id: string;
1321
+ email?: string | null;
1322
+ username: string;
1323
+ firstName?: string | null;
1324
+ lastName?: string | null;
1325
+ isEmailVerified?: boolean | null;
1326
+ authMethods?: string[] | null;
1327
+ isMfaEnabled: boolean;
1328
+ mfaMethods?: string[] | null;
1329
+ selectedMfaMethod?: string | null;
1330
+ devices?: unknown;
1331
+ createdAt: string;
1332
+ updatedAt: string;
1333
+ isGhost: boolean;
1334
+ isLocked?: boolean;
1335
+ consecutiveFailedMfaAttempts?: number;
1336
+ isAccepted?: boolean;
1337
+ }
1338
+ interface UserWithEncryptionKeys extends User {
1339
+ clientPublicKey?: string | null;
1340
+ serverPrivateKey?: string | null;
1341
+ encryptionVersion?: number | null;
1342
+ protectedKey?: string | null;
1343
+ protectedKeyIV?: string | null;
1344
+ protectedKeyTag?: string | null;
1345
+ publicKey?: string | null;
1346
+ encryptedPrivateKey?: string | null;
1347
+ iv?: string | null;
1348
+ tag?: string | null;
1349
+ salt?: string | null;
1350
+ verifier?: string | null;
1351
+ userId?: string | null;
1352
+ }
1353
+ interface Organization {
1354
+ id: string;
1355
+ name: string;
1356
+ slug: string;
1357
+ createdAt: string;
1358
+ updatedAt: string;
1359
+ }
1360
+ interface ApiKey {
1361
+ id: string;
1362
+ name: string;
1363
+ userId: string;
1364
+ lastUsed?: string | null;
1365
+ expiresAt?: string | null;
1366
+ createdAt: string;
1367
+ updatedAt: string;
1368
+ }
1369
+ interface AuthTokenSession {
1370
+ id: string;
1371
+ userId: string;
1372
+ ip?: string | null;
1373
+ userAgent?: string | null;
1374
+ accessVersion: number;
1375
+ refreshVersion: number;
1376
+ lastUsed: string;
1377
+ createdAt: string;
1378
+ updatedAt: string;
1379
+ orgId?: string | null;
1380
+ }
1381
+ interface SendEmailVerificationCodeParams {
1382
+ token: string;
1383
+ }
1384
+ interface VerifyEmailVerificationCodeParams {
1385
+ username: string;
1386
+ code: string;
1387
+ }
1388
+ interface UpdateMfaParams {
1389
+ isMfaEnabled?: boolean;
1390
+ selectedMfaMethod?: MfaMethod;
1391
+ }
1392
+ interface UpdateMfaResponse {
1393
+ user: User;
1394
+ }
1395
+ interface UpdateNameParams {
1396
+ firstName: string;
1397
+ lastName: string;
1398
+ }
1399
+ interface UpdateNameResponse {
1400
+ user: User;
1401
+ }
1402
+ interface UpdateAuthMethodsParams {
1403
+ authMethods: AuthMethod[];
1404
+ }
1405
+ interface UpdateAuthMethodsResponse {
1406
+ user: User;
1407
+ }
1408
+ interface RequestEmailChangeOtpParams {
1409
+ newEmail: string;
1410
+ }
1411
+ interface RequestEmailChangeOtpResponse {
1412
+ success: boolean;
1413
+ message: string;
1414
+ }
1415
+ interface UpdateEmailParams {
1416
+ newEmail: string;
1417
+ otpCode: string;
1418
+ }
1419
+ interface UpdateEmailResponse {
1420
+ user: User;
1421
+ }
1422
+ interface ListOrganizationsResponse {
1423
+ organizations: Organization[];
1424
+ }
1425
+ interface CreateApiKeyParams {
1426
+ name: string;
1427
+ expiresIn: number;
1428
+ }
1429
+ interface CreateApiKeyResponse {
1430
+ apiKey: string;
1431
+ apiKeyData: ApiKey;
1432
+ }
1433
+ interface DeleteApiKeyResponse {
1434
+ apiKeyData: ApiKey;
1435
+ }
1436
+ interface RevokeAllSessionsResponse {
1437
+ message: string;
1438
+ }
1439
+ interface RevokeSessionResponse {
1440
+ message: string;
1441
+ }
1442
+ interface GetMeResponse {
1443
+ user: UserWithEncryptionKeys;
1444
+ }
1445
+ interface DeleteMeResponse {
1446
+ user: User;
1447
+ }
1448
+
1449
+ declare class UsersResource extends BaseResource {
1450
+ constructor(http: HttpClient, authState: AuthState);
1451
+ sendEmailVerificationCode(params: SendEmailVerificationCodeParams): Promise<void>;
1452
+ verifyEmailVerificationCode(params: VerifyEmailVerificationCodeParams): Promise<void>;
1453
+ updateMfa(params: UpdateMfaParams): Promise<UpdateMfaResponse>;
1454
+ updateName(params: UpdateNameParams): Promise<UpdateNameResponse>;
1455
+ updateAuthMethods(params: UpdateAuthMethodsParams): Promise<UpdateAuthMethodsResponse>;
1456
+ requestEmailChangeOtp(params: RequestEmailChangeOtpParams): Promise<RequestEmailChangeOtpResponse>;
1457
+ updateEmail(params: UpdateEmailParams): Promise<UpdateEmailResponse>;
1458
+ listOrganizations(): Promise<ListOrganizationsResponse>;
1459
+ listApiKeys(): Promise<ApiKey[]>;
1460
+ createApiKey(params: CreateApiKeyParams): Promise<CreateApiKeyResponse>;
1461
+ deleteApiKey(apiKeyDataId: string): Promise<DeleteApiKeyResponse>;
1462
+ listSessions(): Promise<AuthTokenSession[]>;
1463
+ revokeAllSessions(): Promise<RevokeAllSessionsResponse>;
1464
+ revokeSession(sessionId: string): Promise<RevokeSessionResponse>;
1465
+ getMe(): Promise<GetMeResponse>;
1466
+ deleteMe(): Promise<DeleteMeResponse>;
1467
+ }
1468
+
1469
+ interface ResetPasswordParams {
1470
+ newPassword: string;
1471
+ }
1472
+ interface ResetPasswordAuthenticatedParams {
1473
+ oldPassword: string;
1474
+ newPassword: string;
1475
+ }
1476
+
1477
+ declare class PasswordResource extends BaseResource {
1478
+ constructor(http: HttpClient, authState: AuthState);
1479
+ reset(params: ResetPasswordParams): Promise<void>;
1480
+ resetAuthenticated(params: ResetPasswordAuthenticatedParams): Promise<void>;
1481
+ }
1482
+
1483
+ interface ServiceToken {
1484
+ id: string;
1485
+ name: string;
1486
+ projectId: string;
1487
+ userId?: string | null;
1488
+ scopes: Array<{
1489
+ environment: string;
1490
+ secretPath: string;
1491
+ }>;
1492
+ lastUsed?: string | null;
1493
+ expiresAt?: string | null;
1494
+ encryptedKey: string;
1495
+ iv: string;
1496
+ tag: string;
1497
+ secretHash: string;
1498
+ createdAt: string;
1499
+ updatedAt: string;
1500
+ }
1501
+ interface SanitizedServiceToken {
1502
+ id: string;
1503
+ name: string;
1504
+ projectId: string;
1505
+ userId?: string | null;
1506
+ scopes: Array<{
1507
+ environment: string;
1508
+ secretPath: string;
1509
+ }>;
1510
+ lastUsed?: string | null;
1511
+ expiresAt?: string | null;
1512
+ createdAt: string;
1513
+ updatedAt: string;
1514
+ }
1515
+ interface GetServiceTokenResponse extends ServiceToken {
1516
+ workspace: string;
1517
+ user: {
1518
+ id: string;
1519
+ username: string;
1520
+ email?: string | null;
1521
+ firstName?: string | null;
1522
+ lastName?: string | null;
1523
+ _id: string;
1524
+ __v: number;
1525
+ };
1526
+ _id: string;
1527
+ __v: number;
1528
+ }
1529
+ interface CreateServiceTokenParams {
1530
+ name: string;
1531
+ workspaceId: string;
1532
+ scopes: Array<{
1533
+ environment: string;
1534
+ secretPath: string;
1535
+ }>;
1536
+ encryptedKey: string;
1537
+ iv: string;
1538
+ tag: string;
1539
+ expiresIn: number | null;
1540
+ permissions: Array<"read" | "write">;
1541
+ }
1542
+ interface CreateServiceTokenResponse {
1543
+ serviceToken: string;
1544
+ serviceTokenData: SanitizedServiceToken;
1545
+ }
1546
+ interface DeleteServiceTokenResponse {
1547
+ serviceTokenData: SanitizedServiceToken;
1548
+ }
1549
+
1550
+ declare class ServiceTokensResource extends BaseResource {
1551
+ constructor(http: HttpClient, authState: AuthState);
1552
+ get(): Promise<GetServiceTokenResponse>;
1553
+ create(params: CreateServiceTokenParams): Promise<CreateServiceTokenResponse>;
1554
+ delete(serviceTokenId: string): Promise<DeleteServiceTokenResponse>;
1555
+ }
1556
+
1557
+ interface OrgMembership {
1558
+ id: string;
1559
+ orgId: string;
1560
+ userId: string;
1561
+ role: string;
1562
+ roleId?: string | null;
1563
+ status: OrgMembershipStatus;
1564
+ isActive: boolean;
1565
+ inviteEmail?: string | null;
1566
+ createdAt?: string;
1567
+ updatedAt?: string;
1568
+ }
1569
+ interface OrgMembershipUser {
1570
+ id: string;
1571
+ username: string;
1572
+ email?: string | null;
1573
+ isEmailVerified?: boolean | null;
1574
+ firstName?: string | null;
1575
+ lastName?: string | null;
1576
+ publicKey?: string | null;
1577
+ }
1578
+ interface OrgMembershipWithUser extends Omit<OrgMembership, "createdAt" | "updatedAt"> {
1579
+ user: OrgMembershipUser;
1580
+ }
1581
+ interface OrgProject {
1582
+ id: string;
1583
+ name: string;
1584
+ slug: string;
1585
+ organization: string;
1586
+ environments: Array<{
1587
+ name: string;
1588
+ slug: string;
1589
+ }>;
1590
+ }
1591
+ interface OrgMembershipMetadata {
1592
+ key: string;
1593
+ id: string;
1594
+ value: string;
1595
+ }
1596
+ interface DetailedOrgMembership extends Omit<OrgMembership, "createdAt" | "updatedAt"> {
1597
+ customRoleSlug?: string | null;
1598
+ metadata?: OrgMembershipMetadata[];
1599
+ user: OrgMembershipUser & {
1600
+ publicKey?: string | null;
1601
+ };
1602
+ }
1603
+ interface ProjectMembershipRole {
1604
+ id: string;
1605
+ role: string;
1606
+ customRoleId?: string | null;
1607
+ customRoleName?: string | null;
1608
+ customRoleSlug?: string | null;
1609
+ isTemporary: boolean;
1610
+ temporaryMode?: string | null;
1611
+ temporaryRange?: string | null;
1612
+ temporaryAccessStartTime?: string | null;
1613
+ temporaryAccessEndTime?: string | null;
1614
+ }
1615
+ interface ProjectMembership {
1616
+ id: string;
1617
+ projectId: string;
1618
+ userId: string;
1619
+ user: {
1620
+ id: string;
1621
+ email?: string | null;
1622
+ username: string;
1623
+ firstName?: string | null;
1624
+ lastName?: string | null;
1625
+ publicKey?: string | null;
1626
+ };
1627
+ project: {
1628
+ name: string;
1629
+ id: string;
1630
+ type: string;
1631
+ };
1632
+ roles: ProjectMembershipRole[];
1633
+ }
1634
+ interface OrgInfo {
1635
+ id: string;
1636
+ name: string;
1637
+ slug: string;
1638
+ createdAt: string;
1639
+ updatedAt: string;
1640
+ }
1641
+ interface ListMembershipsParams {
1642
+ orgId: string;
1643
+ }
1644
+ interface ListMembershipsResponse {
1645
+ users: OrgMembershipWithUser[];
1646
+ }
1647
+ interface ListOrgProjectsParams {
1648
+ orgId: string;
1649
+ }
1650
+ interface ListOrgProjectsResponse {
1651
+ workspaces: OrgProject[];
1652
+ }
1653
+ interface GetMembershipParams {
1654
+ orgId: string;
1655
+ membershipId: string;
1656
+ }
1657
+ interface GetMembershipResponse {
1658
+ membership: DetailedOrgMembership;
1659
+ }
1660
+ interface UpdateMembershipParams {
1661
+ orgId: string;
1662
+ membershipId: string;
1663
+ role?: string;
1664
+ isActive?: boolean;
1665
+ metadata?: Array<{
1666
+ key: string;
1667
+ value: string;
1668
+ }>;
1669
+ }
1670
+ interface UpdateMembershipResponse {
1671
+ membership: OrgMembership;
1672
+ }
1673
+ interface DeleteMembershipParams {
1674
+ orgId: string;
1675
+ membershipId: string;
1676
+ }
1677
+ interface DeleteMembershipResponse {
1678
+ membership: OrgMembership;
1679
+ }
1680
+ interface BulkDeleteMembershipsParams {
1681
+ orgId: string;
1682
+ membershipIds: string[];
1683
+ }
1684
+ interface BulkDeleteMembershipsResponse {
1685
+ memberships: OrgMembership[];
1686
+ }
1687
+ interface ListProjectMembershipsByOrgMembershipParams {
1688
+ orgId: string;
1689
+ membershipId: string;
1690
+ }
1691
+ interface ListProjectMembershipsByOrgMembershipResponse {
1692
+ memberships: ProjectMembership[];
1693
+ }
1694
+ interface CreateOrganizationParams {
1695
+ name: string;
1696
+ }
1697
+ interface CreateOrganizationResponse {
1698
+ organization: OrgInfo;
1699
+ }
1700
+ interface DeleteOrganizationParams {
1701
+ orgId: string;
1702
+ }
1703
+ interface DeleteOrganizationResponse {
1704
+ organization: OrgInfo;
1705
+ accessToken: string;
1706
+ }
1707
+ interface UpgradePrivilegeSystemResponse {
1708
+ organization: OrgInfo;
1709
+ }
1710
+
1711
+ declare class OrganizationsResource extends BaseResource {
1712
+ constructor(http: HttpClient, authState: AuthState);
1713
+ list(): Promise<ListOrganizationsResponse>;
1714
+ listMemberships(params: ListMembershipsParams): Promise<ListMembershipsResponse>;
1715
+ listProjects(params: ListOrgProjectsParams): Promise<ListOrgProjectsResponse>;
1716
+ getMembership(params: GetMembershipParams): Promise<GetMembershipResponse>;
1717
+ updateMembership(params: UpdateMembershipParams): Promise<UpdateMembershipResponse>;
1718
+ deleteMembership(params: DeleteMembershipParams): Promise<DeleteMembershipResponse>;
1719
+ bulkDeleteMemberships(params: BulkDeleteMembershipsParams): Promise<BulkDeleteMembershipsResponse>;
1720
+ listProjectMembershipsByOrgMembership(params: ListProjectMembershipsByOrgMembershipParams): Promise<ListProjectMembershipsByOrgMembershipResponse>;
1721
+ create(params: CreateOrganizationParams): Promise<CreateOrganizationResponse>;
1722
+ delete(params: DeleteOrganizationParams): Promise<DeleteOrganizationResponse>;
1723
+ upgradePrivilegeSystem(): Promise<UpgradePrivilegeSystemResponse>;
1724
+ }
1725
+
1726
+ interface IdentityOrgMembership {
1727
+ id: string;
1728
+ identityId: string;
1729
+ orgId: string;
1730
+ role: string;
1731
+ roleId?: string | null;
1732
+ createdAt: string;
1733
+ updatedAt: string;
1734
+ customRole?: {
1735
+ id: string;
1736
+ name: string;
1737
+ slug: string;
1738
+ permissions: unknown;
1739
+ description?: string | null;
1740
+ };
1741
+ identity: {
1742
+ id: string;
1743
+ name: string;
1744
+ orgId: string;
1745
+ authMethods: string[];
1746
+ };
1747
+ }
1748
+ interface ListIdentityMembershipsParams {
1749
+ orgId: string;
1750
+ offset?: number;
1751
+ limit?: number;
1752
+ orderBy?: OrgIdentityOrderBy;
1753
+ orderDirection?: OrderByDirection;
1754
+ search?: string;
1755
+ }
1756
+ interface ListIdentityMembershipsResponse {
1757
+ identityMemberships: IdentityOrgMembership[];
1758
+ totalCount: number;
1759
+ }
1760
+
1761
+ declare class OrganizationIdentitiesResource extends BaseResource {
1762
+ constructor(http: HttpClient, authState: AuthState);
1763
+ list(params: ListIdentityMembershipsParams): Promise<ListIdentityMembershipsResponse>;
1764
+ }
1765
+
1766
+ interface SecretFolder {
1767
+ id: string;
1768
+ name: string;
1769
+ envId: string;
1770
+ parentId?: string | null;
1771
+ isReserved?: boolean;
1772
+ description?: string | null;
1773
+ createdAt: string;
1774
+ updatedAt: string;
1775
+ }
1776
+ interface SecretFolderWithPath extends SecretFolder {
1777
+ path: string;
1778
+ }
1779
+ interface CreateSecretFolderParams {
1780
+ projectId: string;
1781
+ environment: string;
1782
+ name: string;
1783
+ path?: string;
1784
+ description?: string | null;
1785
+ }
1786
+ interface CreateSecretFolderResponse {
1787
+ folder: SecretFolderWithPath;
1788
+ }
1789
+ interface UpdateSecretFolderParams {
1790
+ folderId: string;
1791
+ projectId: string;
1792
+ environment: string;
1793
+ name: string;
1794
+ path?: string;
1795
+ description?: string | null;
1796
+ }
1797
+ interface UpdateSecretFolderResponse {
1798
+ folder: SecretFolderWithPath;
1799
+ }
1800
+ interface UpdateSecretFolderBatchItem {
1801
+ id: string;
1802
+ environment: string;
1803
+ name: string;
1804
+ path?: string;
1805
+ description?: string | null;
1806
+ }
1807
+ interface UpdateSecretFolderBatchParams {
1808
+ projectId: string;
1809
+ folders: UpdateSecretFolderBatchItem[];
1810
+ }
1811
+ interface UpdateSecretFolderBatchResponse {
1812
+ folders: SecretFolder[];
1813
+ }
1814
+ interface DeleteSecretFolderParams {
1815
+ folderIdOrName: string;
1816
+ projectId: string;
1817
+ environment: string;
1818
+ path?: string;
1819
+ forceDelete?: boolean;
1820
+ }
1821
+ interface DeleteSecretFolderResponse {
1822
+ folder: SecretFolder;
1823
+ }
1824
+ interface ListSecretFoldersParams {
1825
+ projectId: string;
1826
+ environment: string;
1827
+ path?: string;
1828
+ recursive?: boolean;
1829
+ lastSecretModified?: string;
1830
+ }
1831
+ interface SecretFolderWithRelativePath extends SecretFolder {
1832
+ relativePath?: string;
1833
+ }
1834
+ interface ListSecretFoldersResponse {
1835
+ folders: SecretFolderWithRelativePath[];
1836
+ }
1837
+ interface GetSecretFolderByIdParams {
1838
+ id: string;
1839
+ }
1840
+ interface SecretFolderDetailed extends SecretFolder {
1841
+ environment: {
1842
+ envId: string;
1843
+ envName: string;
1844
+ envSlug: string;
1845
+ };
1846
+ path: string;
1847
+ projectId: string;
1848
+ }
1849
+ interface GetSecretFolderByIdResponse {
1850
+ folder: SecretFolderDetailed;
1851
+ }
1852
+
1853
+ declare class SecretFoldersResource extends BaseResource {
1854
+ constructor(http: HttpClient, authState: AuthState);
1855
+ create(params: CreateSecretFolderParams): Promise<CreateSecretFolderResponse>;
1856
+ update(params: UpdateSecretFolderParams): Promise<UpdateSecretFolderResponse>;
1857
+ updateBatch(params: UpdateSecretFolderBatchParams): Promise<UpdateSecretFolderBatchResponse>;
1858
+ delete(params: DeleteSecretFolderParams): Promise<DeleteSecretFolderResponse>;
1859
+ list(params: ListSecretFoldersParams): Promise<ListSecretFoldersResponse>;
1860
+ getById(params: GetSecretFolderByIdParams): Promise<GetSecretFolderByIdResponse>;
1861
+ }
1862
+
1863
+ interface SecretImportEnv {
1864
+ name: string;
1865
+ slug: string;
1866
+ id: string;
1867
+ }
1868
+ interface SecretImport {
1869
+ id: string;
1870
+ folderId: string;
1871
+ importPath: string;
1872
+ importEnv: SecretImportEnv;
1873
+ position: number;
1874
+ isReplication?: boolean;
1875
+ isReplicationSuccess?: boolean | null;
1876
+ replicationStatus?: string | null;
1877
+ lastReplicated?: string | null;
1878
+ isReserved?: boolean;
1879
+ createdAt: string;
1880
+ updatedAt: string;
1881
+ }
1882
+ interface CreateSecretImportParams {
1883
+ projectId: string;
1884
+ environment: string;
1885
+ path?: string;
1886
+ import: {
1887
+ environment: string;
1888
+ path: string;
1889
+ };
1890
+ isReplication?: boolean;
1891
+ }
1892
+ interface CreateSecretImportResponse {
1893
+ message: string;
1894
+ secretImport: SecretImport;
1895
+ }
1896
+ interface UpdateSecretImportParams {
1897
+ secretImportId: string;
1898
+ projectId: string;
1899
+ environment: string;
1900
+ path?: string;
1901
+ import: {
1902
+ environment?: string;
1903
+ path?: string;
1904
+ position?: number;
1905
+ };
1906
+ }
1907
+ interface UpdateSecretImportResponse {
1908
+ message: string;
1909
+ secretImport: SecretImport;
1910
+ }
1911
+ interface DeleteSecretImportParams {
1912
+ secretImportId: string;
1913
+ projectId: string;
1914
+ environment: string;
1915
+ path?: string;
1916
+ }
1917
+ interface DeleteSecretImportResponse {
1918
+ message: string;
1919
+ secretImport: SecretImport;
1920
+ }
1921
+ interface ResyncReplicationParams {
1922
+ secretImportId: string;
1923
+ projectId: string;
1924
+ environment: string;
1925
+ path?: string;
1926
+ }
1927
+ interface ResyncReplicationResponse {
1928
+ message: string;
1929
+ }
1930
+ interface ListSecretImportsParams {
1931
+ projectId: string;
1932
+ environment: string;
1933
+ path?: string;
1934
+ }
1935
+ interface ListSecretImportsResponse {
1936
+ message: string;
1937
+ secretImports: SecretImport[];
1938
+ }
1939
+ interface GetSecretImportParams {
1940
+ secretImportId: string;
1941
+ }
1942
+ interface SecretImportDetailed extends SecretImport {
1943
+ environment: {
1944
+ id: string;
1945
+ name: string;
1946
+ slug: string;
1947
+ };
1948
+ projectId: string;
1949
+ secretPath: string;
1950
+ }
1951
+ interface GetSecretImportResponse {
1952
+ secretImport: SecretImportDetailed;
1953
+ }
1954
+ interface GetRawSecretsFromImportsParams {
1955
+ projectId: string;
1956
+ environment: string;
1957
+ path?: string;
1958
+ }
1959
+ interface RawSecret {
1960
+ id: string;
1961
+ version: number;
1962
+ type: string;
1963
+ secretKey: string;
1964
+ secretValue: string;
1965
+ secretComment?: string;
1966
+ secretReminderNote?: string | null;
1967
+ secretReminderRepeatDays?: number | null;
1968
+ skipMultilineEncoding?: boolean | null;
1969
+ metadata?: Record<string, string>;
1970
+ createdAt: string;
1971
+ updatedAt: string;
1972
+ }
1973
+ interface ImportedSecretGroup {
1974
+ secretPath: string;
1975
+ environment: string;
1976
+ environmentInfo: {
1977
+ id: string;
1978
+ name: string;
1979
+ slug: string;
1980
+ };
1981
+ folderId?: string;
1982
+ secrets: RawSecret[];
1983
+ }
1984
+ interface GetRawSecretsFromImportsResponse {
1985
+ secrets: ImportedSecretGroup[];
1986
+ }
1987
+
1988
+ declare class SecretImportsResource extends BaseResource {
1989
+ constructor(http: HttpClient, authState: AuthState);
1990
+ create(params: CreateSecretImportParams): Promise<CreateSecretImportResponse>;
1991
+ update(params: UpdateSecretImportParams): Promise<UpdateSecretImportResponse>;
1992
+ delete(params: DeleteSecretImportParams): Promise<DeleteSecretImportResponse>;
1993
+ resyncReplication(params: ResyncReplicationParams): Promise<ResyncReplicationResponse>;
1994
+ list(params: ListSecretImportsParams): Promise<ListSecretImportsResponse>;
1995
+ get(params: GetSecretImportParams): Promise<GetSecretImportResponse>;
1996
+ getRawSecrets(params: GetRawSecretsFromImportsParams): Promise<GetRawSecretsFromImportsResponse>;
1997
+ }
1998
+
1999
+ interface CertificateAuthority {
2000
+ id: string;
2001
+ type: string;
2002
+ name: string;
2003
+ projectId: string;
2004
+ status: string;
2005
+ createdAt: string;
2006
+ updatedAt: string;
2007
+ [key: string]: unknown;
2008
+ }
2009
+ interface ListCertificateAuthoritiesParams {
2010
+ projectId: string;
2011
+ }
2012
+ interface ListCertificateAuthoritiesResponse {
2013
+ certificateAuthorities: CertificateAuthority[];
2014
+ }
2015
+ interface GetCaParams {
2016
+ caId: string;
2017
+ }
2018
+ interface GetCaResponse {
2019
+ ca: CertificateAuthority;
2020
+ }
2021
+ interface CreateCaParams {
2022
+ projectSlug: string;
2023
+ type: string;
2024
+ friendlyName?: string;
2025
+ commonName: string;
2026
+ organization?: string;
2027
+ ou?: string;
2028
+ country?: string;
2029
+ province?: string;
2030
+ locality?: string;
2031
+ notBefore?: string;
2032
+ notAfter?: string;
2033
+ maxPathLength?: number;
2034
+ keyAlgorithm?: string;
2035
+ requireTemplateForIssuance?: boolean;
2036
+ }
2037
+ interface CreateCaResponse {
2038
+ ca: CertificateAuthority;
2039
+ }
2040
+ interface UpdateCaParams {
2041
+ caId: string;
2042
+ status?: string;
2043
+ requireTemplateForIssuance?: boolean;
2044
+ }
2045
+ interface UpdateCaResponse {
2046
+ ca: CertificateAuthority;
2047
+ }
2048
+ interface DeleteCaParams {
2049
+ caId: string;
2050
+ }
2051
+ interface DeleteCaResponse {
2052
+ ca: CertificateAuthority;
2053
+ }
2054
+ interface GetCaCsrParams {
2055
+ caId: string;
2056
+ }
2057
+ interface GetCaCsrResponse {
2058
+ csr: string;
2059
+ }
2060
+ interface GetCaCertificateParams {
2061
+ caId: string;
2062
+ }
2063
+ interface GetCaCertificateResponse {
2064
+ certificate: string;
2065
+ certificateChain: string;
2066
+ serialNumber: string;
2067
+ }
2068
+ interface ListCaCertificatesParams {
2069
+ caId: string;
2070
+ }
2071
+ interface CaCertificateEntry {
2072
+ certificate: string;
2073
+ certificateChain: string;
2074
+ serialNumber: string;
2075
+ version: number;
2076
+ }
2077
+ type ListCaCertificatesResponse = CaCertificateEntry[];
2078
+ interface GetCaCrlsParams {
2079
+ caId: string;
2080
+ }
2081
+ interface CaCrlEntry {
2082
+ id: string;
2083
+ crl: string;
2084
+ }
2085
+ type GetCaCrlsResponse = CaCrlEntry[];
2086
+ interface RenewCaParams {
2087
+ caId: string;
2088
+ type: string;
2089
+ notAfter: string;
2090
+ }
2091
+ interface RenewCaResponse {
2092
+ certificate: string;
2093
+ certificateChain: string;
2094
+ serialNumber: string;
2095
+ }
2096
+ interface SignIntermediateCaParams {
2097
+ caId: string;
2098
+ csr: string;
2099
+ notBefore?: string;
2100
+ notAfter: string;
2101
+ maxPathLength?: number;
2102
+ }
2103
+ interface SignIntermediateCaResponse {
2104
+ certificate: string;
2105
+ certificateChain: string;
2106
+ issuingCaCertificate: string;
2107
+ serialNumber: string;
2108
+ }
2109
+
2110
+ declare class PkiCaResource extends BaseResource {
2111
+ constructor(http: HttpClient, authState: AuthState);
2112
+ list(params: ListCertificateAuthoritiesParams): Promise<ListCertificateAuthoritiesResponse>;
2113
+ get(params: GetCaParams): Promise<GetCaResponse>;
2114
+ create(params: CreateCaParams): Promise<CreateCaResponse>;
2115
+ update(params: UpdateCaParams): Promise<UpdateCaResponse>;
2116
+ delete(params: DeleteCaParams): Promise<DeleteCaResponse>;
2117
+ getCsr(params: GetCaCsrParams): Promise<GetCaCsrResponse>;
2118
+ getCertificate(params: GetCaCertificateParams): Promise<GetCaCertificateResponse>;
2119
+ listCertificates(params: ListCaCertificatesParams): Promise<ListCaCertificatesResponse>;
2120
+ getCrls(params: GetCaCrlsParams): Promise<GetCaCrlsResponse>;
2121
+ renew(params: RenewCaParams): Promise<RenewCaResponse>;
2122
+ signIntermediate(params: SignIntermediateCaParams): Promise<SignIntermediateCaResponse>;
2123
+ }
2124
+
2125
+ interface CertificateTemplate {
2126
+ id: string;
2127
+ caId: string;
2128
+ name: string;
2129
+ commonName: string;
2130
+ subjectAlternativeName: string;
2131
+ ttl: string;
2132
+ projectId: string;
2133
+ keyUsages?: CertKeyUsage[];
2134
+ extendedKeyUsages?: CertExtendedKeyUsage[];
2135
+ createdAt: string;
2136
+ updatedAt: string;
2137
+ }
2138
+ interface CertificateTemplateWithCa extends CertificateTemplate {
2139
+ ca: {
2140
+ id: string;
2141
+ name: string;
2142
+ };
2143
+ }
2144
+ interface CreatePkiTemplateParams {
2145
+ name: string;
2146
+ caName: string;
2147
+ projectId: string;
2148
+ commonName: string;
2149
+ subjectAlternativeName: string;
2150
+ ttl: string;
2151
+ keyUsages?: CertKeyUsage[];
2152
+ extendedKeyUsages?: CertExtendedKeyUsage[];
2153
+ }
2154
+ interface CreatePkiTemplateResponse {
2155
+ certificateTemplate: CertificateTemplate;
2156
+ }
2157
+ interface UpdatePkiTemplateParams {
2158
+ templateName: string;
2159
+ name?: string;
2160
+ caName: string;
2161
+ projectId: string;
2162
+ commonName?: string;
2163
+ subjectAlternativeName?: string;
2164
+ ttl?: string;
2165
+ keyUsages?: CertKeyUsage[];
2166
+ extendedKeyUsages?: CertExtendedKeyUsage[];
2167
+ }
2168
+ interface UpdatePkiTemplateResponse {
2169
+ certificateTemplate: CertificateTemplate;
2170
+ }
2171
+ interface DeletePkiTemplateParams {
2172
+ templateName: string;
2173
+ projectId: string;
2174
+ }
2175
+ interface DeletePkiTemplateResponse {
2176
+ certificateTemplate: CertificateTemplate;
2177
+ }
2178
+ interface GetPkiTemplateParams {
2179
+ templateName: string;
2180
+ projectId: string;
2181
+ }
2182
+ interface GetPkiTemplateResponse {
2183
+ certificateTemplate: CertificateTemplateWithCa;
2184
+ }
2185
+ interface ListPkiTemplatesParams {
2186
+ projectId: string;
2187
+ limit?: number;
2188
+ offset?: number;
2189
+ }
2190
+ interface ListPkiTemplatesResponse {
2191
+ certificateTemplates: CertificateTemplateWithCa[];
2192
+ totalCount: number;
2193
+ }
2194
+ interface IssueCertificateParams {
2195
+ templateName: string;
2196
+ projectId: string;
2197
+ commonName: string;
2198
+ ttl: string;
2199
+ keyUsages?: CertKeyUsage[];
2200
+ extendedKeyUsages?: CertExtendedKeyUsage[];
2201
+ notBefore?: string;
2202
+ notAfter?: string;
2203
+ altNames?: string;
2204
+ }
2205
+ interface IssueCertificateResponse {
2206
+ certificate: string;
2207
+ issuingCaCertificate: string;
2208
+ certificateChain: string;
2209
+ privateKey: string;
2210
+ serialNumber: string;
2211
+ }
2212
+ interface SignCertificateParams {
2213
+ templateName: string;
2214
+ projectId: string;
2215
+ ttl: string;
2216
+ csr: string;
2217
+ }
2218
+ interface SignCertificateResponse {
2219
+ certificate: string;
2220
+ issuingCaCertificate: string;
2221
+ certificateChain: string;
2222
+ serialNumber: string;
2223
+ }
2224
+
2225
+ declare class PkiTemplatesResource extends BaseResource {
2226
+ constructor(http: HttpClient, authState: AuthState);
2227
+ create(params: CreatePkiTemplateParams): Promise<CreatePkiTemplateResponse>;
2228
+ update(params: UpdatePkiTemplateParams): Promise<UpdatePkiTemplateResponse>;
2229
+ delete(params: DeletePkiTemplateParams): Promise<DeletePkiTemplateResponse>;
2230
+ get(params: GetPkiTemplateParams): Promise<GetPkiTemplateResponse>;
2231
+ list(params: ListPkiTemplatesParams): Promise<ListPkiTemplatesResponse>;
2232
+ issueCertificate(params: IssueCertificateParams): Promise<IssueCertificateResponse>;
2233
+ signCertificate(params: SignCertificateParams): Promise<SignCertificateResponse>;
2234
+ }
2235
+
2236
+ interface PkiFilterRule {
2237
+ field: string;
2238
+ operator: string;
2239
+ value: string;
2240
+ }
2241
+ interface PkiAlertChannel {
2242
+ id: string;
2243
+ channelType: PkiAlertChannelType;
2244
+ config: Record<string, unknown>;
2245
+ enabled: boolean;
2246
+ createdAt: string;
2247
+ updatedAt: string;
2248
+ }
2249
+ interface PkiAlert {
2250
+ id: string;
2251
+ name: string;
2252
+ description: string | null;
2253
+ eventType: PkiAlertEventType;
2254
+ alertBefore: string;
2255
+ filters: PkiFilterRule[];
2256
+ enabled: boolean;
2257
+ projectId: string;
2258
+ channels: PkiAlertChannel[];
2259
+ createdAt: string;
2260
+ updatedAt: string;
2261
+ }
2262
+ interface PkiAlertCertificate {
2263
+ id: string;
2264
+ serialNumber: string;
2265
+ commonName: string;
2266
+ san: string[];
2267
+ profileName: string | null;
2268
+ enrollmentType: string | null;
2269
+ notBefore: string;
2270
+ notAfter: string;
2271
+ status: string;
2272
+ }
2273
+ interface CreatePkiAlertParams {
2274
+ projectId: string;
2275
+ name: string;
2276
+ description?: string | null;
2277
+ eventType: PkiAlertEventType;
2278
+ alertBefore: string;
2279
+ filters?: PkiFilterRule[];
2280
+ enabled?: boolean;
2281
+ channels?: Array<{
2282
+ channelType: PkiAlertChannelType;
2283
+ config: Record<string, unknown>;
2284
+ enabled?: boolean;
2285
+ }>;
2286
+ }
2287
+ interface CreatePkiAlertResponse {
2288
+ alert: PkiAlert;
2289
+ }
2290
+ interface ListPkiAlertsParams {
2291
+ projectId: string;
2292
+ search?: string;
2293
+ eventType?: PkiAlertEventType;
2294
+ enabled?: boolean;
2295
+ limit?: number;
2296
+ offset?: number;
2297
+ }
2298
+ interface ListPkiAlertsResponse {
2299
+ alerts: PkiAlert[];
2300
+ total: number;
2301
+ }
2302
+ interface GetPkiAlertParams {
2303
+ alertId: string;
2304
+ }
2305
+ interface GetPkiAlertResponse {
2306
+ alert: PkiAlert;
2307
+ }
2308
+ interface UpdatePkiAlertParams {
2309
+ alertId: string;
2310
+ name?: string;
2311
+ description?: string | null;
2312
+ eventType?: PkiAlertEventType;
2313
+ alertBefore?: string;
2314
+ filters?: PkiFilterRule[];
2315
+ enabled?: boolean;
2316
+ channels?: Array<{
2317
+ id?: string;
2318
+ channelType: PkiAlertChannelType;
2319
+ config: Record<string, unknown>;
2320
+ enabled?: boolean;
2321
+ }>;
2322
+ }
2323
+ interface UpdatePkiAlertResponse {
2324
+ alert: PkiAlert;
2325
+ }
2326
+ interface DeletePkiAlertParams {
2327
+ alertId: string;
2328
+ }
2329
+ interface DeletePkiAlertResponse {
2330
+ alert: PkiAlert;
2331
+ }
2332
+ interface ListPkiAlertCertificatesParams {
2333
+ alertId: string;
2334
+ limit?: number;
2335
+ offset?: number;
2336
+ }
2337
+ interface ListPkiAlertCertificatesResponse {
2338
+ certificates: PkiAlertCertificate[];
2339
+ total: number;
2340
+ }
2341
+ interface PreviewPkiAlertCertificatesParams {
2342
+ projectId: string;
2343
+ filters: PkiFilterRule[];
2344
+ alertBefore: string;
2345
+ limit?: number;
2346
+ offset?: number;
2347
+ }
2348
+ interface PreviewPkiAlertCertificatesResponse {
2349
+ certificates: PkiAlertCertificate[];
2350
+ total: number;
2351
+ }
2352
+
2353
+ declare class PkiAlertsResource extends BaseResource {
2354
+ constructor(http: HttpClient, authState: AuthState);
2355
+ create(params: CreatePkiAlertParams): Promise<CreatePkiAlertResponse>;
2356
+ list(params: ListPkiAlertsParams): Promise<ListPkiAlertsResponse>;
2357
+ get(params: GetPkiAlertParams): Promise<GetPkiAlertResponse>;
2358
+ update(params: UpdatePkiAlertParams): Promise<UpdatePkiAlertResponse>;
2359
+ delete(params: DeletePkiAlertParams): Promise<DeletePkiAlertResponse>;
2360
+ listCertificates(params: ListPkiAlertCertificatesParams): Promise<ListPkiAlertCertificatesResponse>;
2361
+ previewCertificates(params: PreviewPkiAlertCertificatesParams): Promise<PreviewPkiAlertCertificatesResponse>;
2362
+ }
2363
+
2364
+ interface Certificate {
2365
+ id: string;
2366
+ caId?: string | null;
2367
+ status: string;
2368
+ friendlyName?: string;
2369
+ commonName?: string;
2370
+ serialNumber?: string;
2371
+ notBefore?: string;
2372
+ notAfter?: string;
2373
+ keyAlgorithm?: string;
2374
+ createdAt: string;
2375
+ updatedAt: string;
2376
+ [key: string]: unknown;
2377
+ }
2378
+ interface CreateCertificateParams {
2379
+ profileId: string;
2380
+ csr?: string;
2381
+ attributes?: {
2382
+ commonName?: string;
2383
+ organization?: string;
2384
+ organizationalUnit?: string;
2385
+ country?: string;
2386
+ state?: string;
2387
+ locality?: string;
2388
+ keyUsages?: string[];
2389
+ extendedKeyUsages?: string[];
2390
+ altNames?: Array<{
2391
+ type: string;
2392
+ value: string;
2393
+ }>;
2394
+ signatureAlgorithm?: string;
2395
+ keyAlgorithm?: string;
2396
+ ttl?: string;
2397
+ notBefore?: string;
2398
+ notAfter?: string;
2399
+ basicConstraints?: {
2400
+ isCA: boolean;
2401
+ pathLength?: number;
2402
+ };
2403
+ };
2404
+ removeRootsFromChain?: boolean;
2405
+ }
2406
+ interface CreateCertificateResponse {
2407
+ certificate: {
2408
+ certificate: string;
2409
+ issuingCaCertificate: string;
2410
+ certificateChain: string;
2411
+ privateKey?: string;
2412
+ serialNumber: string;
2413
+ certificateId: string;
2414
+ } | null;
2415
+ certificateRequestId: string;
2416
+ status?: string;
2417
+ message?: string;
2418
+ }
2419
+ interface GetCertificateParams {
2420
+ certificateId: string;
2421
+ }
2422
+ interface GetCertificateResponse {
2423
+ certificate: Certificate & {
2424
+ subject?: {
2425
+ commonName?: string;
2426
+ organization?: string;
2427
+ organizationalUnit?: string;
2428
+ country?: string;
2429
+ state?: string;
2430
+ locality?: string;
2431
+ };
2432
+ fingerprints?: {
2433
+ sha256: string;
2434
+ sha1: string;
2435
+ };
2436
+ basicConstraints?: {
2437
+ isCA: boolean;
2438
+ pathLength?: number;
2439
+ };
2440
+ caName?: string | null;
2441
+ caType?: string | null;
2442
+ profileName?: string | null;
2443
+ };
2444
+ }
2445
+ interface GetCertificateBodyParams {
2446
+ certificateId: string;
2447
+ }
2448
+ interface GetCertificateBodyResponse {
2449
+ certificate: string;
2450
+ certificateChain: string | null;
2451
+ serialNumber: string;
2452
+ }
2453
+ interface GetCertificateBundleParams {
2454
+ certificateId: string;
2455
+ }
2456
+ interface GetCertificateBundleResponse {
2457
+ certificate: string;
2458
+ certificateChain: string | null;
2459
+ privateKey: string | null;
2460
+ serialNumber: string;
2461
+ }
2462
+ interface GetCertificatePrivateKeyParams {
2463
+ certificateId: string;
2464
+ }
2465
+ type GetCertificatePrivateKeyResponse = string;
2466
+ interface RenewCertificateParams {
2467
+ certificateId: string;
2468
+ removeRootsFromChain?: boolean;
2469
+ }
2470
+ interface RenewCertificateResponse {
2471
+ certificate: string;
2472
+ issuingCaCertificate: string;
2473
+ certificateChain: string;
2474
+ privateKey?: string;
2475
+ serialNumber: string;
2476
+ certificateId: string;
2477
+ certificateRequestId: string;
2478
+ }
2479
+ interface RevokeCertificateParams {
2480
+ certificateId: string;
2481
+ revocationReason: string;
2482
+ }
2483
+ interface RevokeCertificateResponse {
2484
+ message: string;
2485
+ serialNumber: string;
2486
+ revokedAt: string;
2487
+ }
2488
+ interface DeleteCertificateParams {
2489
+ certificateId: string;
2490
+ }
2491
+ interface DeleteCertificateResponse {
2492
+ certificate: Certificate;
2493
+ }
2494
+ interface UpdateCertificateConfigParams {
2495
+ certificateId: string;
2496
+ renewBeforeDays?: number;
2497
+ enableAutoRenewal?: boolean;
2498
+ }
2499
+ interface UpdateCertificateConfigResponse {
2500
+ message: string;
2501
+ renewBeforeDays?: number;
2502
+ }
2503
+
2504
+ declare class PkiCertificatesResource extends BaseResource {
2505
+ constructor(http: HttpClient, authState: AuthState);
2506
+ create(params: CreateCertificateParams): Promise<CreateCertificateResponse>;
2507
+ get(params: GetCertificateParams): Promise<GetCertificateResponse>;
2508
+ getBody(params: GetCertificateBodyParams): Promise<GetCertificateBodyResponse>;
2509
+ getBundle(params: GetCertificateBundleParams): Promise<GetCertificateBundleResponse>;
2510
+ getPrivateKey(params: GetCertificatePrivateKeyParams): Promise<GetCertificatePrivateKeyResponse>;
2511
+ renew(params: RenewCertificateParams): Promise<RenewCertificateResponse>;
2512
+ revoke(params: RevokeCertificateParams): Promise<RevokeCertificateResponse>;
2513
+ delete(params: DeleteCertificateParams): Promise<DeleteCertificateResponse>;
2514
+ updateConfig(params: UpdateCertificateConfigParams): Promise<UpdateCertificateConfigResponse>;
2515
+ }
2516
+
2517
+ interface SecretTag {
2518
+ id: string;
2519
+ slug: string;
2520
+ name: string;
2521
+ color?: string | null;
2522
+ createdAt: string;
2523
+ updatedAt: string;
2524
+ }
2525
+ interface ListSecretTagsParams {
2526
+ projectId: string;
2527
+ }
2528
+ interface ListSecretTagsResponse {
2529
+ tags: SecretTag[];
2530
+ }
2531
+ interface GetSecretTagByIdParams {
2532
+ projectId: string;
2533
+ tagId: string;
2534
+ }
2535
+ interface GetSecretTagByIdResponse {
2536
+ tag: SecretTag;
2537
+ }
2538
+ interface GetSecretTagBySlugParams {
2539
+ projectId: string;
2540
+ tagSlug: string;
2541
+ }
2542
+ interface GetSecretTagBySlugResponse {
2543
+ tag: SecretTag;
2544
+ }
2545
+ interface CreateSecretTagParams {
2546
+ projectId: string;
2547
+ slug: string;
2548
+ color: string;
2549
+ }
2550
+ interface CreateSecretTagResponse {
2551
+ tag: SecretTag;
2552
+ }
2553
+ interface UpdateSecretTagParams {
2554
+ projectId: string;
2555
+ tagId: string;
2556
+ slug: string;
2557
+ color: string;
2558
+ }
2559
+ interface UpdateSecretTagResponse {
2560
+ tag: SecretTag;
2561
+ }
2562
+ interface DeleteSecretTagParams {
2563
+ projectId: string;
2564
+ tagId: string;
2565
+ }
2566
+ interface DeleteSecretTagResponse {
2567
+ tag: SecretTag;
2568
+ }
2569
+
2570
+ declare class SecretTagsResource extends BaseResource {
2571
+ constructor(http: HttpClient, authState: AuthState);
2572
+ list(params: ListSecretTagsParams): Promise<ListSecretTagsResponse>;
2573
+ getById(params: GetSecretTagByIdParams): Promise<GetSecretTagByIdResponse>;
2574
+ getBySlug(params: GetSecretTagBySlugParams): Promise<GetSecretTagBySlugResponse>;
2575
+ create(params: CreateSecretTagParams): Promise<CreateSecretTagResponse>;
2576
+ update(params: UpdateSecretTagParams): Promise<UpdateSecretTagResponse>;
2577
+ delete(params: DeleteSecretTagParams): Promise<DeleteSecretTagResponse>;
2578
+ }
2579
+
2580
+ interface Identity {
2581
+ id: string;
2582
+ name: string;
2583
+ authMethod?: string | null;
2584
+ createdAt: string;
2585
+ updatedAt: string;
2586
+ }
2587
+ interface IdentityWithMetadata extends Identity {
2588
+ metadata?: Array<{
2589
+ key: string;
2590
+ value: string;
2591
+ }>;
2592
+ }
2593
+ interface IdentityProjectMembership {
2594
+ id: string;
2595
+ identityId: string;
2596
+ projectId: string;
2597
+ roles: Array<{
2598
+ id: string;
2599
+ role: string;
2600
+ customRoleId?: string | null;
2601
+ customRoleName?: string | null;
2602
+ customRoleSlug?: string | null;
2603
+ isTemporary: boolean;
2604
+ temporaryMode?: string | null;
2605
+ temporaryRange?: string | null;
2606
+ temporaryAccessStartTime?: string | null;
2607
+ temporaryAccessEndTime?: string | null;
2608
+ }>;
2609
+ project: {
2610
+ name: string;
2611
+ id: string;
2612
+ type: string;
2613
+ };
2614
+ identity: {
2615
+ id: string;
2616
+ name: string;
2617
+ authMethod?: string | null;
2618
+ };
2619
+ createdAt: string;
2620
+ updatedAt: string;
2621
+ }
2622
+ interface CreateIdentityParams {
2623
+ name: string;
2624
+ organizationId: string;
2625
+ role?: string;
2626
+ metadata?: Record<string, string>;
2627
+ }
2628
+ interface CreateIdentityResponse {
2629
+ identity: Identity;
2630
+ }
2631
+ interface UpdateIdentityParams {
2632
+ identityId: string;
2633
+ name?: string;
2634
+ role?: string;
2635
+ metadata?: Record<string, string>;
2636
+ }
2637
+ interface UpdateIdentityResponse {
2638
+ identity: Identity;
2639
+ }
2640
+ interface DeleteIdentityParams {
2641
+ identityId: string;
2642
+ }
2643
+ interface DeleteIdentityResponse {
2644
+ identity: Identity;
2645
+ }
2646
+ interface GetIdentityParams {
2647
+ identityId: string;
2648
+ }
2649
+ interface GetIdentityResponse {
2650
+ identity: IdentityWithMetadata;
2651
+ }
2652
+ interface ListIdentityProjectMembershipsParams {
2653
+ identityId: string;
2654
+ }
2655
+ interface ListIdentityProjectMembershipsResponse {
2656
+ identityMemberships: IdentityProjectMembership[];
2657
+ }
2658
+ interface SearchIdentitiesParams {
2659
+ organizationId: string;
2660
+ searchFilter?: string;
2661
+ offset?: number;
2662
+ limit?: number;
2663
+ orderBy?: string;
2664
+ orderDirection?: string;
2665
+ }
2666
+ interface SearchIdentitiesResponse {
2667
+ identities: IdentityWithMetadata[];
2668
+ totalCount: number;
2669
+ }
2670
+
2671
+ declare class IdentitiesResource extends BaseResource {
2672
+ constructor(http: HttpClient, authState: AuthState);
2673
+ create(params: CreateIdentityParams): Promise<CreateIdentityResponse>;
2674
+ update(params: UpdateIdentityParams): Promise<UpdateIdentityResponse>;
2675
+ delete(params: DeleteIdentityParams): Promise<DeleteIdentityResponse>;
2676
+ get(params: GetIdentityParams): Promise<GetIdentityResponse>;
2677
+ listProjectMemberships(params: ListIdentityProjectMembershipsParams): Promise<ListIdentityProjectMembershipsResponse>;
2678
+ search(params: SearchIdentitiesParams): Promise<SearchIdentitiesResponse>;
2679
+ }
2680
+
2681
+ interface RenewAccessTokenParams {
2682
+ accessToken: string;
2683
+ }
2684
+ interface RenewAccessTokenResponse {
2685
+ accessToken: string;
2686
+ expiresIn: number;
2687
+ accessTokenMaxTTL: number;
2688
+ tokenType: string;
2689
+ }
2690
+ interface RevokeAccessTokenParams {
2691
+ accessToken: string;
2692
+ }
2693
+ interface RevokeAccessTokenResponse {
2694
+ message: string;
2695
+ }
2696
+
2697
+ declare class IdentityAccessTokensResource extends BaseResource {
2698
+ constructor(http: HttpClient, authState: AuthState);
2699
+ renew(params: RenewAccessTokenParams): Promise<RenewAccessTokenResponse>;
2700
+ revoke(params: RevokeAccessTokenParams): Promise<RevokeAccessTokenResponse>;
2701
+ }
2702
+
2703
+ interface Project {
2704
+ id: string;
2705
+ name: string;
2706
+ slug: string;
2707
+ orgId: string;
2708
+ type: string;
2709
+ version: number;
2710
+ environments: Array<{
2711
+ id: string;
2712
+ name: string;
2713
+ slug: string;
2714
+ position: number;
2715
+ }>;
2716
+ createdAt: string;
2717
+ updatedAt: string;
2718
+ }
2719
+ interface ProjectMembershipEntry {
2720
+ id: string;
2721
+ userId: string;
2722
+ projectId: string;
2723
+ roles: Array<{
2724
+ id: string;
2725
+ role: string;
2726
+ customRoleId?: string | null;
2727
+ customRoleName?: string | null;
2728
+ customRoleSlug?: string | null;
2729
+ isTemporary: boolean;
2730
+ temporaryMode?: string | null;
2731
+ temporaryRange?: string | null;
2732
+ temporaryAccessStartTime?: string | null;
2733
+ temporaryAccessEndTime?: string | null;
2734
+ }>;
2735
+ user: {
2736
+ id: string;
2737
+ email?: string | null;
2738
+ username: string;
2739
+ firstName?: string | null;
2740
+ lastName?: string | null;
2741
+ };
2742
+ createdAt: string;
2743
+ updatedAt: string;
2744
+ }
2745
+ interface ProjectRole {
2746
+ id: string;
2747
+ name: string;
2748
+ slug: string;
2749
+ description?: string | null;
2750
+ permissions: unknown[];
2751
+ createdAt: string;
2752
+ updatedAt: string;
2753
+ }
2754
+ interface ProjectTag {
2755
+ id: string;
2756
+ name: string;
2757
+ slug: string;
2758
+ color?: string | null;
2759
+ createdAt: string;
2760
+ updatedAt: string;
2761
+ }
2762
+ interface GetProjectParams {
2763
+ projectId: string;
2764
+ }
2765
+ interface GetProjectResponse {
2766
+ workspace: Project;
2767
+ }
2768
+ interface UpdateProjectParams {
2769
+ projectId: string;
2770
+ name?: string;
2771
+ autoCapitalization?: boolean;
2772
+ }
2773
+ interface UpdateProjectResponse {
2774
+ workspace: Project;
2775
+ }
2776
+ interface DeleteProjectParams {
2777
+ projectId: string;
2778
+ }
2779
+ interface DeleteProjectResponse {
2780
+ workspace: Project;
2781
+ }
2782
+ interface ListProjectMembershipsParams {
2783
+ projectId: string;
2784
+ }
2785
+ interface ListProjectMembershipsResponse {
2786
+ memberships: ProjectMembershipEntry[];
2787
+ }
2788
+ interface ListProjectEnvironmentsParams {
2789
+ projectId: string;
2790
+ }
2791
+ interface ListProjectEnvironmentsResponse {
2792
+ environments: Array<{
2793
+ id: string;
2794
+ name: string;
2795
+ slug: string;
2796
+ position: number;
2797
+ }>;
2798
+ }
2799
+ interface CreateProjectEnvironmentParams {
2800
+ projectId: string;
2801
+ name: string;
2802
+ slug: string;
2803
+ position?: number;
2804
+ }
2805
+ interface CreateProjectEnvironmentResponse {
2806
+ environment: {
2807
+ id: string;
2808
+ name: string;
2809
+ slug: string;
2810
+ position: number;
2811
+ };
2812
+ }
2813
+ interface UpdateProjectEnvironmentParams {
2814
+ projectId: string;
2815
+ environmentId: string;
2816
+ name?: string;
2817
+ slug?: string;
2818
+ position?: number;
2819
+ }
2820
+ interface UpdateProjectEnvironmentResponse {
2821
+ environment: {
2822
+ id: string;
2823
+ name: string;
2824
+ slug: string;
2825
+ position: number;
2826
+ };
2827
+ }
2828
+ interface DeleteProjectEnvironmentParams {
2829
+ projectId: string;
2830
+ environmentId: string;
2831
+ }
2832
+ interface DeleteProjectEnvironmentResponse {
2833
+ environment: {
2834
+ id: string;
2835
+ name: string;
2836
+ slug: string;
2837
+ position: number;
2838
+ };
2839
+ }
2840
+ interface ListProjectRolesParams {
2841
+ projectId: string;
2842
+ }
2843
+ interface ListProjectRolesResponse {
2844
+ roles: ProjectRole[];
2845
+ }
2846
+ interface ListProjectTagsParams {
2847
+ projectId: string;
2848
+ }
2849
+ interface ListProjectTagsResponse {
2850
+ tags: ProjectTag[];
2851
+ }
2852
+ interface CreateProjectParams {
2853
+ projectName: string;
2854
+ projectDescription?: string;
2855
+ slug?: string;
2856
+ kmsKeyId?: string;
2857
+ template?: string;
2858
+ type?: string;
2859
+ shouldCreateDefaultEnvs?: boolean;
2860
+ hasDeleteProtection?: boolean;
2861
+ }
2862
+ interface CreateProjectResponse {
2863
+ project: Project & {
2864
+ _id: string;
2865
+ };
2866
+ }
2867
+ interface ListProjectsParams {
2868
+ includeRoles?: boolean;
2869
+ type?: string;
2870
+ }
2871
+ interface ListProjectsResponse {
2872
+ projects: Array<Project & {
2873
+ _id: string;
2874
+ }>;
2875
+ }
2876
+ interface GetProjectBySlugParams {
2877
+ slug: string;
2878
+ }
2879
+ interface GetProjectBySlugResponse extends Project {
2880
+ _id: string;
2881
+ }
2882
+
2883
+ declare class ProjectsResource extends BaseResource {
2884
+ constructor(http: HttpClient, authState: AuthState);
2885
+ create(params: CreateProjectParams): Promise<CreateProjectResponse>;
2886
+ list(params?: ListProjectsParams): Promise<ListProjectsResponse>;
2887
+ get(params: GetProjectParams): Promise<GetProjectResponse>;
2888
+ getBySlug(params: GetProjectBySlugParams): Promise<GetProjectBySlugResponse>;
2889
+ update(params: UpdateProjectParams): Promise<UpdateProjectResponse>;
2890
+ delete(params: DeleteProjectParams): Promise<DeleteProjectResponse>;
2891
+ listMemberships(params: ListProjectMembershipsParams): Promise<ListProjectMembershipsResponse>;
2892
+ listEnvironments(params: ListProjectEnvironmentsParams): Promise<ListProjectEnvironmentsResponse>;
2893
+ createEnvironment(params: CreateProjectEnvironmentParams): Promise<CreateProjectEnvironmentResponse>;
2894
+ updateEnvironment(params: UpdateProjectEnvironmentParams): Promise<UpdateProjectEnvironmentResponse>;
2895
+ deleteEnvironment(params: DeleteProjectEnvironmentParams): Promise<DeleteProjectEnvironmentResponse>;
2896
+ listRoles(params: ListProjectRolesParams): Promise<ListProjectRolesResponse>;
2897
+ listTags(params: ListProjectTagsParams): Promise<ListProjectTagsResponse>;
2898
+ }
2899
+
2900
+ interface Webhook {
2901
+ id: string;
2902
+ projectId: string;
2903
+ environment: string;
2904
+ secretPath: string;
2905
+ url: string;
2906
+ isDisabled: boolean;
2907
+ lastStatus?: string | null;
2908
+ lastRunErrorMessage?: string | null;
2909
+ createdAt: string;
2910
+ updatedAt: string;
2911
+ }
2912
+ interface CreateWebhookParams {
2913
+ projectId: string;
2914
+ environment: string;
2915
+ secretPath?: string;
2916
+ webhookUrl: string;
2917
+ webhookSecretKey?: string;
2918
+ }
2919
+ interface CreateWebhookResponse {
2920
+ webhook: Webhook;
2921
+ }
2922
+ interface UpdateWebhookParams {
2923
+ webhookId: string;
2924
+ isDisabled?: boolean;
2925
+ }
2926
+ interface UpdateWebhookResponse {
2927
+ webhook: Webhook;
2928
+ }
2929
+ interface DeleteWebhookParams {
2930
+ webhookId: string;
2931
+ }
2932
+ interface DeleteWebhookResponse {
2933
+ webhook: Webhook;
2934
+ }
2935
+ interface ListWebhooksParams {
2936
+ projectId: string;
2937
+ environment?: string;
2938
+ secretPath?: string;
2939
+ }
2940
+ interface ListWebhooksResponse {
2941
+ webhooks: Webhook[];
2942
+ }
2943
+ interface TestWebhookParams {
2944
+ webhookId: string;
2945
+ }
2946
+ interface TestWebhookResponse {
2947
+ webhook: Webhook;
2948
+ }
2949
+
2950
+ declare class WebhooksResource extends BaseResource {
2951
+ constructor(http: HttpClient, authState: AuthState);
2952
+ create(params: CreateWebhookParams): Promise<CreateWebhookResponse>;
2953
+ update(params: UpdateWebhookParams): Promise<UpdateWebhookResponse>;
2954
+ delete(params: DeleteWebhookParams): Promise<DeleteWebhookResponse>;
2955
+ list(params: ListWebhooksParams): Promise<ListWebhooksResponse>;
2956
+ test(params: TestWebhookParams): Promise<TestWebhookResponse>;
2957
+ }
2958
+
2959
+ interface SharedSecret {
2960
+ id: string;
2961
+ encryptedValue: string;
2962
+ iv: string;
2963
+ tag: string;
2964
+ hashedHex: string;
2965
+ expiresAt: string;
2966
+ expiresAfterViews?: number | null;
2967
+ accessType: string;
2968
+ orgId?: string | null;
2969
+ createdAt: string;
2970
+ updatedAt: string;
2971
+ }
2972
+ interface CreateSharedSecretParams {
2973
+ encryptedValue: string;
2974
+ iv: string;
2975
+ tag: string;
2976
+ hashedHex: string;
2977
+ expiresAt: string;
2978
+ expiresAfterViews?: number;
2979
+ accessType?: string;
2980
+ }
2981
+ interface CreateSharedSecretResponse {
2982
+ id: string;
2983
+ }
2984
+ interface GetSharedSecretParams {
2985
+ sharedSecretId: string;
2986
+ hashedHex: string;
2987
+ }
2988
+ interface GetSharedSecretResponse {
2989
+ encryptedValue: string;
2990
+ iv: string;
2991
+ tag: string;
2992
+ expiresAt: string;
2993
+ accessType: string;
2994
+ orgId?: string | null;
2995
+ }
2996
+ interface DeleteSharedSecretParams {
2997
+ sharedSecretId: string;
2998
+ }
2999
+ interface DeleteSharedSecretResponse {
3000
+ secret: SharedSecret;
3001
+ }
3002
+ interface ListSharedSecretsResponse {
3003
+ secrets: SharedSecret[];
3004
+ }
3005
+
3006
+ declare class SecretSharingResource extends BaseResource {
3007
+ constructor(http: HttpClient, authState: AuthState);
3008
+ create(params: CreateSharedSecretParams): Promise<CreateSharedSecretResponse>;
3009
+ get(params: GetSharedSecretParams): Promise<GetSharedSecretResponse>;
3010
+ delete(params: DeleteSharedSecretParams): Promise<DeleteSharedSecretResponse>;
3011
+ list(): Promise<ListSharedSecretsResponse>;
3012
+ }
3013
+
3014
+ interface SecretAccessEntry {
3015
+ allowedMembership: {
3016
+ id: string;
3017
+ userId: string;
3018
+ user: {
3019
+ id: string;
3020
+ email?: string | null;
3021
+ username: string;
3022
+ };
3023
+ } | null;
3024
+ allowedIdentity: {
3025
+ id: string;
3026
+ name: string;
3027
+ } | null;
3028
+ }
3029
+ interface GetSecretAccessListParams {
3030
+ secretName: string;
3031
+ projectId: string;
3032
+ environment: string;
3033
+ secretPath?: string;
3034
+ }
3035
+ interface GetSecretAccessListResponse {
3036
+ accessList: SecretAccessEntry[];
3037
+ }
3038
+ interface Secret {
3039
+ id: string;
3040
+ version: number;
3041
+ type: string;
3042
+ secretKey: string;
3043
+ secretValue: string;
3044
+ secretComment?: string;
3045
+ secretReminderNote?: string | null;
3046
+ secretReminderRepeatDays?: number | null;
3047
+ skipMultilineEncoding?: boolean;
3048
+ metadata?: Record<string, string>;
3049
+ createdAt: string;
3050
+ updatedAt: string;
3051
+ [key: string]: unknown;
3052
+ }
3053
+ interface SecretTagRef {
3054
+ id: string;
3055
+ slug: string;
3056
+ name: string;
3057
+ color?: string | null;
3058
+ }
3059
+ interface ListSecretsParams {
3060
+ projectId: string;
3061
+ environment: string;
3062
+ secretPath?: string;
3063
+ expandSecretReferences?: boolean;
3064
+ recursive?: boolean;
3065
+ include_imports?: boolean;
3066
+ tagSlugs?: string;
3067
+ viewSecretValue?: boolean;
3068
+ metadataFilter?: string;
3069
+ }
3070
+ interface ListSecretsResponse {
3071
+ secrets: Secret[];
3072
+ imports?: Array<{
3073
+ secretPath: string;
3074
+ environment: string;
3075
+ folderId?: string;
3076
+ secrets: Secret[];
3077
+ }>;
3078
+ }
3079
+ interface GetSecretByNameParams {
3080
+ secretName: string;
3081
+ projectId: string;
3082
+ environment: string;
3083
+ secretPath?: string;
3084
+ version?: number;
3085
+ type?: string;
3086
+ viewSecretValue?: boolean;
3087
+ expandSecretReferences?: boolean;
3088
+ include_imports?: boolean;
3089
+ }
3090
+ interface GetSecretByNameResponse {
3091
+ secret: Secret & {
3092
+ secretPath: string;
3093
+ tags?: SecretTagRef[];
3094
+ };
3095
+ }
3096
+ interface GetSecretByIdParams {
3097
+ secretId: string;
3098
+ }
3099
+ interface GetSecretByIdResponse {
3100
+ secret: Secret & {
3101
+ secretPath: string;
3102
+ tags?: SecretTagRef[];
3103
+ };
3104
+ }
3105
+ interface CreateSecretParams {
3106
+ secretName: string;
3107
+ projectId: string;
3108
+ environment: string;
3109
+ secretValue: string;
3110
+ secretPath?: string;
3111
+ secretComment?: string;
3112
+ tagIds?: string[];
3113
+ skipMultilineEncoding?: boolean;
3114
+ type?: string;
3115
+ secretReminderRepeatDays?: number | null;
3116
+ secretReminderNote?: string | null;
3117
+ secretMetadata?: Record<string, string>;
3118
+ }
3119
+ interface CreateSecretResponse {
3120
+ secret: Secret;
3121
+ }
3122
+ interface UpdateSecretParams {
3123
+ secretName: string;
3124
+ projectId: string;
3125
+ environment: string;
3126
+ secretValue?: string;
3127
+ secretPath?: string;
3128
+ skipMultilineEncoding?: boolean;
3129
+ type?: string;
3130
+ tagIds?: string[];
3131
+ metadata?: Record<string, string>;
3132
+ secretMetadata?: Record<string, string>;
3133
+ secretReminderNote?: string | null;
3134
+ secretReminderRepeatDays?: number | null;
3135
+ secretReminderRecipients?: string[];
3136
+ newSecretName?: string;
3137
+ secretComment?: string;
3138
+ }
3139
+ interface UpdateSecretResponse {
3140
+ secret: Secret;
3141
+ }
3142
+ interface DeleteSecretParams {
3143
+ secretName: string;
3144
+ projectId: string;
3145
+ environment: string;
3146
+ secretPath?: string;
3147
+ type?: string;
3148
+ }
3149
+ interface DeleteSecretResponse {
3150
+ secret: Secret;
3151
+ }
3152
+ interface BatchCreateSecretsParams {
3153
+ projectId: string;
3154
+ environment: string;
3155
+ secretPath?: string;
3156
+ secrets: Array<{
3157
+ secretKey: string;
3158
+ secretValue: string;
3159
+ secretComment?: string;
3160
+ skipMultilineEncoding?: boolean;
3161
+ metadata?: Record<string, string>;
3162
+ secretMetadata?: Record<string, string>;
3163
+ tagIds?: string[];
3164
+ }>;
3165
+ }
3166
+ interface BatchCreateSecretsResponse {
3167
+ secrets: Secret[];
3168
+ }
3169
+ interface BatchUpdateSecretsParams {
3170
+ projectId: string;
3171
+ environment: string;
3172
+ secretPath?: string;
3173
+ mode?: string;
3174
+ secrets: Array<{
3175
+ secretKey: string;
3176
+ secretValue?: string;
3177
+ secretPath?: string;
3178
+ secretComment?: string;
3179
+ skipMultilineEncoding?: boolean;
3180
+ newSecretName?: string;
3181
+ tagIds?: string[];
3182
+ secretReminderNote?: string | null;
3183
+ secretMetadata?: Record<string, string>;
3184
+ secretReminderRepeatDays?: number | null;
3185
+ }>;
3186
+ }
3187
+ interface BatchUpdateSecretsResponse {
3188
+ secrets: Secret[];
3189
+ }
3190
+ interface BatchDeleteSecretsParams {
3191
+ projectId: string;
3192
+ environment: string;
3193
+ secretPath?: string;
3194
+ secrets: Array<{
3195
+ secretKey: string;
3196
+ type?: string;
3197
+ }>;
3198
+ }
3199
+ interface BatchDeleteSecretsResponse {
3200
+ secrets: Secret[];
3201
+ }
3202
+ interface MoveSecretsParams {
3203
+ projectId: string;
3204
+ sourceEnvironment: string;
3205
+ sourceSecretPath?: string;
3206
+ destinationEnvironment: string;
3207
+ destinationSecretPath?: string;
3208
+ secretIds: string[];
3209
+ shouldOverwrite?: boolean;
3210
+ }
3211
+ interface MoveSecretsResponse {
3212
+ isSourceUpdated: boolean;
3213
+ isDestinationUpdated: boolean;
3214
+ }
3215
+
3216
+ declare class SecretsResource extends BaseResource {
3217
+ constructor(http: HttpClient, authState: AuthState);
3218
+ getAccessList(params: GetSecretAccessListParams): Promise<GetSecretAccessListResponse>;
3219
+ list(params: ListSecretsParams): Promise<ListSecretsResponse>;
3220
+ getByName(params: GetSecretByNameParams): Promise<GetSecretByNameResponse>;
3221
+ getById(params: GetSecretByIdParams): Promise<GetSecretByIdResponse>;
3222
+ create(params: CreateSecretParams): Promise<CreateSecretResponse>;
3223
+ update(params: UpdateSecretParams): Promise<UpdateSecretResponse>;
3224
+ delete(params: DeleteSecretParams): Promise<DeleteSecretResponse>;
3225
+ batchCreate(params: BatchCreateSecretsParams): Promise<BatchCreateSecretsResponse>;
3226
+ batchUpdate(params: BatchUpdateSecretsParams): Promise<BatchUpdateSecretsResponse>;
3227
+ batchDelete(params: BatchDeleteSecretsParams): Promise<BatchDeleteSecretsResponse>;
3228
+ move(params: MoveSecretsParams): Promise<MoveSecretsResponse>;
3229
+ }
3230
+
3231
+ interface KmsKey {
3232
+ id: string;
3233
+ name: string;
3234
+ description?: string | null;
3235
+ projectId: string;
3236
+ isDisabled: boolean;
3237
+ encryptionAlgorithm: string;
3238
+ version: number;
3239
+ createdAt: string;
3240
+ updatedAt: string;
3241
+ }
3242
+ interface CreateKmsKeyParams {
3243
+ projectId: string;
3244
+ name: string;
3245
+ description?: string;
3246
+ encryptionAlgorithm?: string;
3247
+ }
3248
+ interface CreateKmsKeyResponse {
3249
+ key: KmsKey;
3250
+ }
3251
+ interface UpdateKmsKeyParams {
3252
+ keyId: string;
3253
+ name?: string;
3254
+ description?: string;
3255
+ isDisabled?: boolean;
3256
+ }
3257
+ interface UpdateKmsKeyResponse {
3258
+ key: KmsKey;
3259
+ }
3260
+ interface DeleteKmsKeyParams {
3261
+ keyId: string;
3262
+ }
3263
+ interface DeleteKmsKeyResponse {
3264
+ key: KmsKey;
3265
+ }
3266
+ interface GetKmsKeyParams {
3267
+ keyId: string;
3268
+ }
3269
+ interface GetKmsKeyResponse {
3270
+ key: KmsKey;
3271
+ }
3272
+ interface ListKmsKeysParams {
3273
+ projectId: string;
3274
+ offset?: number;
3275
+ limit?: number;
3276
+ }
3277
+ interface ListKmsKeysResponse {
3278
+ keys: KmsKey[];
3279
+ totalCount: number;
3280
+ }
3281
+ interface KmsEncryptParams {
3282
+ keyId: string;
3283
+ plaintext: string;
3284
+ }
3285
+ interface KmsEncryptResponse {
3286
+ ciphertext: string;
3287
+ }
3288
+ interface KmsDecryptParams {
3289
+ keyId: string;
3290
+ ciphertext: string;
3291
+ }
3292
+ interface KmsDecryptResponse {
3293
+ plaintext: string;
3294
+ }
3295
+ interface GetKmsKeyByNameParams {
3296
+ keyName: string;
3297
+ projectId: string;
3298
+ }
3299
+ interface GetKmsKeyByNameResponse {
3300
+ key: KmsKey;
3301
+ }
3302
+ interface GetKmsPublicKeyParams {
3303
+ keyId: string;
3304
+ }
3305
+ interface GetKmsPublicKeyResponse {
3306
+ publicKey: string;
3307
+ }
3308
+ interface GetKmsPrivateKeyParams {
3309
+ keyId: string;
3310
+ }
3311
+ interface GetKmsPrivateKeyResponse {
3312
+ privateKey: string;
3313
+ }
3314
+ interface ListKmsSigningAlgorithmsParams {
3315
+ keyId: string;
3316
+ }
3317
+ interface ListKmsSigningAlgorithmsResponse {
3318
+ signingAlgorithms: string[];
3319
+ }
3320
+ interface KmsSignParams {
3321
+ keyId: string;
3322
+ signingAlgorithm: string;
3323
+ data: string;
3324
+ isDigest?: boolean;
3325
+ }
3326
+ interface KmsSignResponse {
3327
+ signature: string;
3328
+ keyId: string;
3329
+ signingAlgorithm: string;
3330
+ }
3331
+ interface KmsVerifyParams {
3332
+ keyId: string;
3333
+ data: string;
3334
+ signature: string;
3335
+ signingAlgorithm: string;
3336
+ isDigest?: boolean;
3337
+ }
3338
+ interface KmsVerifyResponse {
3339
+ signatureValid: boolean;
3340
+ keyId: string;
3341
+ signingAlgorithm: string;
3342
+ }
3343
+
3344
+ declare class KmsResource extends BaseResource {
3345
+ constructor(http: HttpClient, authState: AuthState);
3346
+ createKey(params: CreateKmsKeyParams): Promise<CreateKmsKeyResponse>;
3347
+ updateKey(params: UpdateKmsKeyParams): Promise<UpdateKmsKeyResponse>;
3348
+ deleteKey(params: DeleteKmsKeyParams): Promise<DeleteKmsKeyResponse>;
3349
+ getKey(params: GetKmsKeyParams): Promise<GetKmsKeyResponse>;
3350
+ listKeys(params: ListKmsKeysParams): Promise<ListKmsKeysResponse>;
3351
+ encrypt(params: KmsEncryptParams): Promise<KmsEncryptResponse>;
3352
+ decrypt(params: KmsDecryptParams): Promise<KmsDecryptResponse>;
3353
+ getKeyByName(params: GetKmsKeyByNameParams): Promise<GetKmsKeyByNameResponse>;
3354
+ getPublicKey(params: GetKmsPublicKeyParams): Promise<GetKmsPublicKeyResponse>;
3355
+ getPrivateKey(params: GetKmsPrivateKeyParams): Promise<GetKmsPrivateKeyResponse>;
3356
+ listSigningAlgorithms(params: ListKmsSigningAlgorithmsParams): Promise<ListKmsSigningAlgorithmsResponse>;
3357
+ sign(params: KmsSignParams): Promise<KmsSignResponse>;
3358
+ verify(params: KmsVerifyParams): Promise<KmsVerifyResponse>;
3359
+ }
3360
+
3361
+ interface IntegrationAuth {
3362
+ id: string;
3363
+ projectId: string;
3364
+ integration: string;
3365
+ teamId?: string | null;
3366
+ accountId?: string | null;
3367
+ url?: string | null;
3368
+ namespace?: string | null;
3369
+ metadata?: Record<string, unknown>;
3370
+ createdAt: string;
3371
+ updatedAt: string;
3372
+ }
3373
+ interface CreateIntegrationAuthParams {
3374
+ projectId: string;
3375
+ integration: string;
3376
+ accessId?: string;
3377
+ accessToken?: string;
3378
+ url?: string;
3379
+ namespace?: string;
3380
+ refreshToken?: string;
3381
+ }
3382
+ interface CreateIntegrationAuthResponse {
3383
+ integrationAuth: IntegrationAuth;
3384
+ }
3385
+ interface GetIntegrationAuthParams {
3386
+ integrationAuthId: string;
3387
+ }
3388
+ interface GetIntegrationAuthResponse {
3389
+ integrationAuth: IntegrationAuth;
3390
+ }
3391
+ interface DeleteIntegrationAuthParams {
3392
+ integrationAuthId: string;
3393
+ }
3394
+ interface DeleteIntegrationAuthResponse {
3395
+ integrationAuth: IntegrationAuth;
3396
+ }
3397
+ interface ListIntegrationAuthParams {
3398
+ projectId: string;
3399
+ }
3400
+ interface ListIntegrationAuthResponse {
3401
+ integrationAuths: IntegrationAuth[];
3402
+ }
3403
+
3404
+ declare class IntegrationAuthResource extends BaseResource {
3405
+ constructor(http: HttpClient, authState: AuthState);
3406
+ create(params: CreateIntegrationAuthParams): Promise<CreateIntegrationAuthResponse>;
3407
+ get(params: GetIntegrationAuthParams): Promise<GetIntegrationAuthResponse>;
3408
+ delete(params: DeleteIntegrationAuthParams): Promise<DeleteIntegrationAuthResponse>;
3409
+ list(params: ListIntegrationAuthParams): Promise<ListIntegrationAuthResponse>;
3410
+ }
3411
+
3412
+ interface AppConnection {
3413
+ id: string;
3414
+ name: string;
3415
+ description?: string | null;
3416
+ app: string;
3417
+ orgId: string;
3418
+ method: string;
3419
+ credentials: Record<string, unknown>;
3420
+ isPlatformManaged: boolean;
3421
+ version: number;
3422
+ createdAt: string;
3423
+ updatedAt: string;
3424
+ }
3425
+ interface CreateAppConnectionParams {
3426
+ app: string;
3427
+ name: string;
3428
+ description?: string;
3429
+ method: string;
3430
+ credentials: Record<string, unknown>;
3431
+ }
3432
+ interface CreateAppConnectionResponse {
3433
+ appConnection: AppConnection;
3434
+ }
3435
+ interface UpdateAppConnectionParams {
3436
+ app: string;
3437
+ connectionId: string;
3438
+ name?: string;
3439
+ description?: string;
3440
+ credentials?: Record<string, unknown>;
3441
+ }
3442
+ interface UpdateAppConnectionResponse {
3443
+ appConnection: AppConnection;
3444
+ }
3445
+ interface DeleteAppConnectionParams {
3446
+ app: string;
3447
+ connectionId: string;
3448
+ }
3449
+ interface DeleteAppConnectionResponse {
3450
+ appConnection: AppConnection;
3451
+ }
3452
+ interface GetAppConnectionParams {
3453
+ app: string;
3454
+ connectionId: string;
3455
+ }
3456
+ interface GetAppConnectionResponse {
3457
+ appConnection: AppConnection;
3458
+ }
3459
+ interface ListAppConnectionsParams {
3460
+ app: string;
3461
+ }
3462
+ interface ListAppConnectionsResponse {
3463
+ appConnections: AppConnection[];
3464
+ }
3465
+ interface GetAppConnectionByNameParams {
3466
+ app: string;
3467
+ connectionName: string;
3468
+ }
3469
+ interface GetAppConnectionByNameResponse {
3470
+ appConnection: AppConnection;
3471
+ }
3472
+ interface CheckAppConnectionAvailabilityParams {
3473
+ app: string;
3474
+ }
3475
+ interface CheckAppConnectionAvailabilityResponse {
3476
+ available: boolean;
3477
+ }
3478
+ interface ListAllAppConnectionsResponse {
3479
+ appConnections: AppConnection[];
3480
+ }
3481
+
3482
+ declare class AppConnectionsResource extends BaseResource {
3483
+ constructor(http: HttpClient, authState: AuthState);
3484
+ create(params: CreateAppConnectionParams): Promise<CreateAppConnectionResponse>;
3485
+ update(params: UpdateAppConnectionParams): Promise<UpdateAppConnectionResponse>;
3486
+ delete(params: DeleteAppConnectionParams): Promise<DeleteAppConnectionResponse>;
3487
+ get(params: GetAppConnectionParams): Promise<GetAppConnectionResponse>;
3488
+ list(params: ListAppConnectionsParams): Promise<ListAppConnectionsResponse>;
3489
+ getByName(params: GetAppConnectionByNameParams): Promise<GetAppConnectionByNameResponse>;
3490
+ checkAvailability(params: CheckAppConnectionAvailabilityParams): Promise<CheckAppConnectionAvailabilityResponse>;
3491
+ listAll(): Promise<ListAllAppConnectionsResponse>;
3492
+ }
3493
+
3494
+ interface SecretSync {
3495
+ id: string;
3496
+ name: string;
3497
+ description?: string | null;
3498
+ destination: string;
3499
+ projectId: string;
3500
+ sourceEnvironment: string;
3501
+ sourceSecretPath: string;
3502
+ connectionId: string;
3503
+ destinationConfig: Record<string, unknown>;
3504
+ syncOptions: Record<string, unknown>;
3505
+ isAutoSyncEnabled: boolean;
3506
+ lastSyncedAt?: string | null;
3507
+ syncStatus?: string | null;
3508
+ createdAt: string;
3509
+ updatedAt: string;
3510
+ }
3511
+ interface CreateSecretSyncParams {
3512
+ destination: string;
3513
+ name: string;
3514
+ description?: string;
3515
+ projectId: string;
3516
+ sourceEnvironment: string;
3517
+ sourceSecretPath: string;
3518
+ connectionId: string;
3519
+ destinationConfig: Record<string, unknown>;
3520
+ syncOptions?: Record<string, unknown>;
3521
+ isAutoSyncEnabled?: boolean;
3522
+ }
3523
+ interface CreateSecretSyncResponse {
3524
+ secretSync: SecretSync;
3525
+ }
3526
+ interface UpdateSecretSyncParams {
3527
+ destination: string;
3528
+ syncId: string;
3529
+ name?: string;
3530
+ description?: string;
3531
+ connectionId?: string;
3532
+ sourceEnvironment?: string;
3533
+ sourceSecretPath?: string;
3534
+ destinationConfig?: Record<string, unknown>;
3535
+ syncOptions?: Record<string, unknown>;
3536
+ isAutoSyncEnabled?: boolean;
3537
+ }
3538
+ interface UpdateSecretSyncResponse {
3539
+ secretSync: SecretSync;
3540
+ }
3541
+ interface DeleteSecretSyncParams {
3542
+ destination: string;
3543
+ syncId: string;
3544
+ removeSecrets?: boolean;
3545
+ }
3546
+ interface DeleteSecretSyncResponse {
3547
+ secretSync: SecretSync;
3548
+ }
3549
+ interface GetSecretSyncParams {
3550
+ destination: string;
3551
+ syncId: string;
3552
+ }
3553
+ interface GetSecretSyncResponse {
3554
+ secretSync: SecretSync;
3555
+ }
3556
+ interface ListSecretSyncsParams {
3557
+ destination: string;
3558
+ projectId: string;
3559
+ }
3560
+ interface ListSecretSyncsResponse {
3561
+ secretSyncs: SecretSync[];
3562
+ }
3563
+ interface TriggerSecretSyncParams {
3564
+ destination: string;
3565
+ syncId: string;
3566
+ }
3567
+ interface TriggerSecretSyncResponse {
3568
+ secretSync: SecretSync;
3569
+ }
3570
+ interface ImportSecretSyncParams {
3571
+ destination: string;
3572
+ syncId: string;
3573
+ }
3574
+ interface ImportSecretSyncResponse {
3575
+ secretSync: SecretSync;
3576
+ }
3577
+ interface RemoveSecretSyncSecretsParams {
3578
+ destination: string;
3579
+ syncId: string;
3580
+ }
3581
+ interface RemoveSecretSyncSecretsResponse {
3582
+ secretSync: SecretSync;
3583
+ }
3584
+ interface GetSecretSyncByNameParams {
3585
+ destination: string;
3586
+ syncName: string;
3587
+ }
3588
+ interface GetSecretSyncByNameResponse {
3589
+ secretSync: SecretSync;
3590
+ }
3591
+
3592
+ declare class SecretSyncsResource extends BaseResource {
3593
+ constructor(http: HttpClient, authState: AuthState);
3594
+ create(params: CreateSecretSyncParams): Promise<CreateSecretSyncResponse>;
3595
+ update(params: UpdateSecretSyncParams): Promise<UpdateSecretSyncResponse>;
3596
+ delete(params: DeleteSecretSyncParams): Promise<DeleteSecretSyncResponse>;
3597
+ get(params: GetSecretSyncParams): Promise<GetSecretSyncResponse>;
3598
+ list(params: ListSecretSyncsParams): Promise<ListSecretSyncsResponse>;
3599
+ trigger(params: TriggerSecretSyncParams): Promise<TriggerSecretSyncResponse>;
3600
+ importSecrets(params: ImportSecretSyncParams): Promise<ImportSecretSyncResponse>;
3601
+ removeSecrets(params: RemoveSecretSyncSecretsParams): Promise<RemoveSecretSyncSecretsResponse>;
3602
+ getByName(params: GetSecretSyncByNameParams): Promise<GetSecretSyncByNameResponse>;
3603
+ }
3604
+
3605
+ interface SuperAdminConfig {
3606
+ id?: string;
3607
+ initialized: boolean;
3608
+ allowSignUp: boolean;
3609
+ defaultAuthOrgId?: string | null;
3610
+ defaultAuthOrgSlug?: string | null;
3611
+ enabledLoginMethods?: string[];
3612
+ trustSamlEmails?: boolean;
3613
+ trustLdapEmails?: boolean;
3614
+ trustOidcEmails?: boolean;
3615
+ isSecretScanningDisabled?: boolean;
3616
+ instancerId?: string | null;
3617
+ projectLimit?: number;
3618
+ [key: string]: unknown;
3619
+ }
3620
+ interface BootstrapInstanceParams {
3621
+ email: string;
3622
+ password: string;
3623
+ organization: string;
3624
+ }
3625
+ interface BootstrapInstanceResponse {
3626
+ message: string;
3627
+ user: Record<string, unknown>;
3628
+ organization: Record<string, unknown>;
3629
+ identity: {
3630
+ credentials: {
3631
+ token: string;
3632
+ };
3633
+ };
3634
+ }
3635
+ interface AdminSignUpParams {
3636
+ email: string;
3637
+ password: string;
3638
+ firstName: string;
3639
+ lastName?: string;
3640
+ }
3641
+ interface AdminSignUpResponse {
3642
+ message: string;
3643
+ user: Record<string, unknown>;
3644
+ organization: Record<string, unknown>;
3645
+ token: string;
3646
+ new: boolean;
3647
+ }
3648
+ interface GetAdminConfigResponse {
3649
+ config: SuperAdminConfig;
3650
+ }
3651
+ interface UpdateAdminConfigParams {
3652
+ allowSignUp?: boolean;
3653
+ defaultAuthOrgId?: string | null;
3654
+ enabledLoginMethods?: string[];
3655
+ trustSamlEmails?: boolean;
3656
+ trustLdapEmails?: boolean;
3657
+ trustOidcEmails?: boolean;
3658
+ isSecretScanningDisabled?: boolean;
3659
+ projectLimit?: number;
3660
+ [key: string]: unknown;
3661
+ }
3662
+ interface UpdateAdminConfigResponse {
3663
+ config: SuperAdminConfig;
3664
+ }
3665
+ interface ListAdminUsersParams {
3666
+ searchTerm?: string;
3667
+ offset?: number;
3668
+ limit?: number;
3669
+ }
3670
+ interface ListAdminUsersResponse {
3671
+ users: Record<string, unknown>[];
3672
+ totalCount: number;
3673
+ }
3674
+ interface DeleteAdminUserParams {
3675
+ userId: string;
3676
+ }
3677
+ interface DeleteAdminUserResponse {
3678
+ user: Record<string, unknown>;
3679
+ }
3680
+ interface DeleteAdminUsersParams {
3681
+ userIds: string[];
3682
+ }
3683
+ interface DeleteAdminUsersResponse {
3684
+ users: Record<string, unknown>[];
3685
+ }
3686
+ interface GrantAdminAccessParams {
3687
+ userId: string;
3688
+ }
3689
+ interface GrantAdminAccessResponse {
3690
+ user: Record<string, unknown>;
3691
+ }
3692
+ interface RevokeAdminAccessParams {
3693
+ userId: string;
3694
+ }
3695
+ interface RevokeAdminAccessResponse {
3696
+ user: Record<string, unknown>;
3697
+ }
3698
+ interface ListAdminOrganizationsParams {
3699
+ searchTerm?: string;
3700
+ offset?: number;
3701
+ limit?: number;
3702
+ }
3703
+ interface ListAdminOrganizationsResponse {
3704
+ organizations: Record<string, unknown>[];
3705
+ totalCount: number;
3706
+ }
3707
+ interface CreateAdminOrganizationParams {
3708
+ name: string;
3709
+ inviteAdminEmails: string[];
3710
+ }
3711
+ interface CreateAdminOrganizationResponse {
3712
+ organization: Record<string, unknown>;
3713
+ }
3714
+ interface DeleteAdminOrganizationParams {
3715
+ organizationId: string;
3716
+ }
3717
+ interface DeleteAdminOrganizationResponse {
3718
+ organization: Record<string, unknown>;
3719
+ }
3720
+ interface DeleteAdminOrgMembershipParams {
3721
+ organizationId: string;
3722
+ membershipId: string;
3723
+ }
3724
+ interface DeleteAdminOrgMembershipResponse {
3725
+ membership: Record<string, unknown>;
3726
+ }
3727
+ interface ResendOrgInviteParams {
3728
+ organizationId: string;
3729
+ membershipId: string;
3730
+ }
3731
+ interface ResendOrgInviteResponse {
3732
+ membership: Record<string, unknown>;
3733
+ }
3734
+ interface JoinOrganizationParams {
3735
+ organizationId: string;
3736
+ }
3737
+ interface JoinOrganizationResponse {
3738
+ membership: Record<string, unknown>;
3739
+ }
3740
+ interface ListAdminIdentitiesParams {
3741
+ searchTerm?: string;
3742
+ offset?: number;
3743
+ limit?: number;
3744
+ }
3745
+ interface ListAdminIdentitiesResponse {
3746
+ identities: Record<string, unknown>[];
3747
+ totalCount: number;
3748
+ }
3749
+ interface GrantIdentitySuperAdminParams {
3750
+ identityId: string;
3751
+ }
3752
+ interface GrantIdentitySuperAdminResponse {
3753
+ identity: Record<string, unknown>;
3754
+ }
3755
+ interface RevokeIdentitySuperAdminParams {
3756
+ identityId: string;
3757
+ }
3758
+ interface RevokeIdentitySuperAdminResponse {
3759
+ identity: Record<string, unknown>;
3760
+ }
3761
+ interface GetAdminIntegrationsResponse {
3762
+ slack: Record<string, unknown>;
3763
+ microsoftTeams: Record<string, unknown>;
3764
+ githubAppConnection: Record<string, unknown>;
3765
+ }
3766
+ interface GetEncryptionStrategiesResponse {
3767
+ strategies: Array<{
3768
+ strategy: string;
3769
+ enabled: boolean;
3770
+ }>;
3771
+ }
3772
+ interface UpdateEncryptionStrategyParams {
3773
+ strategy: string;
3774
+ }
3775
+ interface UpdateEncryptionStrategyResponse {
3776
+ strategies: Array<{
3777
+ strategy: string;
3778
+ enabled: boolean;
3779
+ }>;
3780
+ }
3781
+ interface GetEnvOverridesResponse {
3782
+ overrides: Record<string, unknown>;
3783
+ }
3784
+ interface InvalidateCacheParams {
3785
+ type: "all" | "secrets";
3786
+ }
3787
+ interface InvalidateCacheResponse {
3788
+ message: string;
3789
+ }
3790
+ interface GetCacheStatusResponse {
3791
+ invalidating: boolean;
3792
+ }
3793
+ interface GenerateUsageReportResponse {
3794
+ csvContent: string;
3795
+ signature: string;
3796
+ filename: string;
3797
+ }
3798
+
3799
+ declare class AdminResource extends BaseResource {
3800
+ constructor(http: HttpClient, authState: AuthState);
3801
+ bootstrap(params: BootstrapInstanceParams): Promise<BootstrapInstanceResponse>;
3802
+ signup(params: AdminSignUpParams): Promise<AdminSignUpResponse>;
3803
+ getConfig(): Promise<GetAdminConfigResponse>;
3804
+ updateConfig(params: UpdateAdminConfigParams): Promise<UpdateAdminConfigResponse>;
3805
+ listUsers(params?: ListAdminUsersParams): Promise<ListAdminUsersResponse>;
3806
+ deleteUser(params: DeleteAdminUserParams): Promise<DeleteAdminUserResponse>;
3807
+ deleteUsers(params: DeleteAdminUsersParams): Promise<DeleteAdminUsersResponse>;
3808
+ grantAdminAccess(params: GrantAdminAccessParams): Promise<GrantAdminAccessResponse>;
3809
+ revokeAdminAccess(params: RevokeAdminAccessParams): Promise<RevokeAdminAccessResponse>;
3810
+ listOrganizations(params?: ListAdminOrganizationsParams): Promise<ListAdminOrganizationsResponse>;
3811
+ createOrganization(params: CreateAdminOrganizationParams): Promise<CreateAdminOrganizationResponse>;
3812
+ deleteOrganization(params: DeleteAdminOrganizationParams): Promise<DeleteAdminOrganizationResponse>;
3813
+ deleteOrgMembership(params: DeleteAdminOrgMembershipParams): Promise<DeleteAdminOrgMembershipResponse>;
3814
+ resendOrgInvite(params: ResendOrgInviteParams): Promise<ResendOrgInviteResponse>;
3815
+ joinOrganization(params: JoinOrganizationParams): Promise<JoinOrganizationResponse>;
3816
+ listIdentities(params?: ListAdminIdentitiesParams): Promise<ListAdminIdentitiesResponse>;
3817
+ grantIdentitySuperAdmin(params: GrantIdentitySuperAdminParams): Promise<GrantIdentitySuperAdminResponse>;
3818
+ revokeIdentitySuperAdmin(params: RevokeIdentitySuperAdminParams): Promise<RevokeIdentitySuperAdminResponse>;
3819
+ getIntegrations(): Promise<GetAdminIntegrationsResponse>;
3820
+ getEncryptionStrategies(): Promise<GetEncryptionStrategiesResponse>;
3821
+ updateEncryptionStrategy(params: UpdateEncryptionStrategyParams): Promise<UpdateEncryptionStrategyResponse>;
3822
+ getEnvOverrides(): Promise<GetEnvOverridesResponse>;
3823
+ invalidateCache(params: InvalidateCacheParams): Promise<InvalidateCacheResponse>;
3824
+ getCacheStatus(): Promise<GetCacheStatusResponse>;
3825
+ generateUsageReport(): Promise<GenerateUsageReportResponse>;
3826
+ }
3827
+
3828
+ interface ListOrgAdminProjectsParams {
3829
+ search?: string;
3830
+ offset?: number;
3831
+ limit?: number;
3832
+ }
3833
+ interface ListOrgAdminProjectsResponse {
3834
+ projects: Record<string, unknown>[];
3835
+ count: number;
3836
+ }
3837
+ interface GrantOrgAdminProjectAccessParams {
3838
+ projectId: string;
3839
+ }
3840
+ interface GrantOrgAdminProjectAccessResponse {
3841
+ membership: Record<string, unknown>;
3842
+ }
3843
+
3844
+ declare class OrgAdminResource extends BaseResource {
3845
+ constructor(http: HttpClient, authState: AuthState);
3846
+ listProjects(params?: ListOrgAdminProjectsParams): Promise<ListOrgAdminProjectsResponse>;
3847
+ grantProjectAccess(params: GrantOrgAdminProjectAccessParams): Promise<GrantOrgAdminProjectAccessResponse>;
3848
+ }
3849
+
3850
+ interface InfisicalClientConfig {
3851
+ baseUrl?: string;
3852
+ fetch?: FetchFunction;
3853
+ timeout?: number;
3854
+ headers?: Record<string, string>;
3855
+ }
3856
+ declare class InfisicalClient {
3857
+ readonly mfa: MfaResource;
3858
+ readonly mfaSessions: MfaSessionsResource;
3859
+ readonly users: UsersResource;
3860
+ readonly password: PasswordResource;
3861
+ readonly serviceTokens: ServiceTokensResource;
3862
+ readonly organizations: OrganizationsResource;
3863
+ readonly organizationIdentities: OrganizationIdentitiesResource;
3864
+ readonly secretFolders: SecretFoldersResource;
3865
+ readonly secretImports: SecretImportsResource;
3866
+ readonly pki: {
3867
+ readonly ca: PkiCaResource;
3868
+ readonly templates: PkiTemplatesResource;
3869
+ readonly alerts: PkiAlertsResource;
3870
+ readonly certificates: PkiCertificatesResource;
3871
+ };
3872
+ readonly secretTags: SecretTagsResource;
3873
+ readonly identities: IdentitiesResource;
3874
+ readonly identityAccessTokens: IdentityAccessTokensResource;
3875
+ readonly identityAuth: {
3876
+ readonly universal: IdentityUniversalAuthResource;
3877
+ readonly token: IdentityTokenAuthResource;
3878
+ readonly aws: IdentityAwsAuthResource;
3879
+ readonly gcp: IdentityGcpAuthResource;
3880
+ readonly azure: IdentityAzureAuthResource;
3881
+ readonly kubernetes: IdentityKubernetesAuthResource;
3882
+ readonly oidc: IdentityOidcAuthResource;
3883
+ readonly jwt: IdentityJwtAuthResource;
3884
+ readonly ldap: IdentityLdapAuthResource;
3885
+ readonly tlsCert: IdentityTlsCertAuthResource;
3886
+ readonly oci: IdentityOciAuthResource;
3887
+ readonly alicloud: IdentityAlicloudAuthResource;
3888
+ };
3889
+ readonly projects: ProjectsResource;
3890
+ readonly webhooks: WebhooksResource;
3891
+ readonly secretSharing: SecretSharingResource;
3892
+ readonly secrets: SecretsResource;
3893
+ readonly kms: KmsResource;
3894
+ readonly integrationAuth: IntegrationAuthResource;
3895
+ readonly appConnections: AppConnectionsResource;
3896
+ readonly secretSyncs: SecretSyncsResource;
3897
+ readonly admin: AdminResource;
3898
+ readonly orgAdmin: OrgAdminResource;
3899
+ private readonly _authState;
3900
+ private readonly _authManager;
3901
+ constructor(config?: InfisicalClientConfig);
3902
+ login(params: LoginParamsOrFactory): Promise<LoginResponse>;
3903
+ /**
3904
+ * Set a pre-existing identity access token directly (e.g., from external auth).
3905
+ * This bypasses the login flow and sets the token directly on the auth state.
3906
+ */
3907
+ setAccessToken(accessToken: string, expiresIn?: number, renewFn?: () => Promise<{
3908
+ accessToken: string;
3909
+ expiresIn: number;
3910
+ }>): void;
3911
+ /**
3912
+ * Set a pre-existing JWT token directly (e.g., from bootstrap or user login).
3913
+ * Use this for admin operations that require JWT auth mode.
3914
+ */
3915
+ setJwtToken(token: string, expiresIn?: number, renewFn?: () => Promise<{
3916
+ token: string;
3917
+ expiresIn: number;
3918
+ }>): void;
3919
+ get isAuthenticated(): boolean;
3920
+ get authMode(): AuthMode | null;
3921
+ logout(): void;
3922
+ }
3923
+
3924
+ declare class InfisicalApiError extends Error {
3925
+ readonly statusCode: number;
3926
+ readonly requestId?: string;
3927
+ readonly errorType?: string;
3928
+ readonly details?: unknown;
3929
+ constructor(message: string, options: {
3930
+ statusCode: number;
3931
+ requestId?: string;
3932
+ errorType?: string;
3933
+ details?: unknown;
3934
+ });
3935
+ }
3936
+ type ApiErrorOptions = Omit<ConstructorParameters<typeof InfisicalApiError>[1], "statusCode">;
3937
+ declare class BadRequestError extends InfisicalApiError {
3938
+ constructor(message: string, options?: ApiErrorOptions);
3939
+ }
3940
+ declare class UnauthorizedError extends InfisicalApiError {
3941
+ constructor(message: string, options?: ApiErrorOptions);
3942
+ }
3943
+ declare class ForbiddenError extends InfisicalApiError {
3944
+ constructor(message: string, options?: ApiErrorOptions);
3945
+ }
3946
+ declare class NotFoundError extends InfisicalApiError {
3947
+ constructor(message: string, options?: ApiErrorOptions);
3948
+ }
3949
+ declare class ValidationError extends InfisicalApiError {
3950
+ constructor(message: string, options?: ApiErrorOptions);
3951
+ }
3952
+ declare class RateLimitError extends InfisicalApiError {
3953
+ constructor(message: string, options?: ApiErrorOptions);
3954
+ }
3955
+ declare class InternalServerError extends InfisicalApiError {
3956
+ constructor(message: string, options?: ApiErrorOptions);
3957
+ }
3958
+ declare class AuthenticationError extends Error {
3959
+ readonly currentMode: string | null;
3960
+ readonly allowedModes: readonly string[];
3961
+ constructor(message: string, options: {
3962
+ currentMode: string | null;
3963
+ allowedModes: readonly string[];
3964
+ });
3965
+ }
3966
+ declare class InfisicalNetworkError extends Error {
3967
+ readonly cause?: Error;
3968
+ constructor(message: string, options?: {
3969
+ cause?: Error;
3970
+ });
3971
+ }
3972
+
3973
+ export { AdminResource, type AdminSignUpParams, type AdminSignUpResponse, type ApiKey, type AppConnection, AppConnectionsResource, type AttachAlicloudAuthParams, type AttachAlicloudAuthResponse, type AttachAwsAuthParams, type AttachAwsAuthResponse, type AttachAzureAuthParams, type AttachAzureAuthResponse, type AttachGcpAuthParams, type AttachGcpAuthResponse, type AttachJwtAuthParams, type AttachJwtAuthResponse, type AttachKubernetesAuthParams, type AttachKubernetesAuthResponse, type AttachLdapAuthParams, type AttachLdapAuthResponse, type AttachOciAuthParams, type AttachOciAuthResponse, type AttachOidcAuthParams, type AttachOidcAuthResponse, type AttachTlsCertAuthParams, type AttachTlsCertAuthResponse, type AttachTokenAuthParams, type AttachTokenAuthResponse, type AttachUniversalAuthParams, type AttachUniversalAuthResponse, type AuthConfig, AuthManager, AuthMethod, type AuthMode, AuthState, type AuthTokenSession, AuthenticationError, BadRequestError, type BatchCreateSecretsParams, type BatchCreateSecretsResponse, type BatchDeleteSecretsParams, type BatchDeleteSecretsResponse, type BatchUpdateSecretsParams, type BatchUpdateSecretsResponse, type BootstrapInstanceParams, type BootstrapInstanceResponse, type BulkDeleteMembershipsParams, type BulkDeleteMembershipsResponse, type CaCertificateEntry, type CaCrlEntry, CaType, CertExtendedKeyUsage, CertKeyUsage, type Certificate, type CertificateAuthority, type CertificateTemplate, type CertificateTemplateWithCa, type CheckAppConnectionAvailabilityParams, type CheckAppConnectionAvailabilityResponse, type CheckTotpResponse, type CheckWebAuthnResponse, type CreateAdminOrganizationParams, type CreateAdminOrganizationResponse, type CreateApiKeyParams, type CreateApiKeyResponse, type CreateAppConnectionParams, type CreateAppConnectionResponse, type CreateCaParams, type CreateCaResponse, type CreateCertificateParams, type CreateCertificateResponse, type CreateIdentityParams, type CreateIdentityResponse, type CreateIntegrationAuthParams, type CreateIntegrationAuthResponse, type CreateKmsKeyParams, type CreateKmsKeyResponse, type CreateOrganizationParams, type CreateOrganizationResponse, type CreatePkiAlertParams, type CreatePkiAlertResponse, type CreatePkiTemplateParams, type CreatePkiTemplateResponse, type CreateProjectEnvironmentParams, type CreateProjectEnvironmentResponse, type CreateProjectParams, type CreateProjectResponse, type CreateSecretFolderParams, type CreateSecretFolderResponse, type CreateSecretImportParams, type CreateSecretImportResponse, type CreateSecretParams, type CreateSecretResponse, type CreateSecretSyncParams, type CreateSecretSyncResponse, type CreateSecretTagParams, type CreateSecretTagResponse, type CreateServiceTokenParams, type CreateServiceTokenResponse, type CreateSharedSecretParams, type CreateSharedSecretResponse, type CreateTokenAuthTokenParams, type CreateTokenAuthTokenResponse, type CreateUniversalAuthClientSecretParams, type CreateUniversalAuthClientSecretResponse, type CreateWebhookParams, type CreateWebhookResponse, type DeleteAdminOrgMembershipParams, type DeleteAdminOrgMembershipResponse, type DeleteAdminOrganizationParams, type DeleteAdminOrganizationResponse, type DeleteAdminUserParams, type DeleteAdminUserResponse, type DeleteAdminUsersParams, type DeleteAdminUsersResponse, type DeleteApiKeyResponse, type DeleteAppConnectionParams, type DeleteAppConnectionResponse, type DeleteCaParams, type DeleteCaResponse, type DeleteCertificateParams, type DeleteCertificateResponse, type DeleteIdentityParams, type DeleteIdentityResponse, type DeleteIntegrationAuthParams, type DeleteIntegrationAuthResponse, type DeleteKmsKeyParams, type DeleteKmsKeyResponse, type DeleteMeResponse, type DeleteMembershipParams, type DeleteMembershipResponse, type DeleteOrganizationParams, type DeleteOrganizationResponse, type DeletePkiAlertParams, type DeletePkiAlertResponse, type DeletePkiTemplateParams, type DeletePkiTemplateResponse, type DeleteProjectEnvironmentParams, type DeleteProjectEnvironmentResponse, type DeleteProjectParams, type DeleteProjectResponse, type DeleteSecretFolderParams, type DeleteSecretFolderResponse, type DeleteSecretImportParams, type DeleteSecretImportResponse, type DeleteSecretParams, type DeleteSecretResponse, type DeleteSecretSyncParams, type DeleteSecretSyncResponse, type DeleteSecretTagParams, type DeleteSecretTagResponse, type DeleteServiceTokenResponse, type DeleteSharedSecretParams, type DeleteSharedSecretResponse, type DeleteWebhookParams, type DeleteWebhookResponse, type DetailedOrgMembership, type FetchFunction, ForbiddenError, type GenerateUsageReportResponse, type GetAdminConfigResponse, type GetAdminIntegrationsResponse, type GetAlicloudAuthParams, type GetAlicloudAuthResponse, type GetAppConnectionByNameParams, type GetAppConnectionByNameResponse, type GetAppConnectionParams, type GetAppConnectionResponse, type GetAwsAuthParams, type GetAwsAuthResponse, type GetAzureAuthParams, type GetAzureAuthResponse, type GetCaCertificateParams, type GetCaCertificateResponse, type GetCaCrlsParams, type GetCaCrlsResponse, type GetCaCsrParams, type GetCaCsrResponse, type GetCaParams, type GetCaResponse, type GetCacheStatusResponse, type GetCertificateBodyParams, type GetCertificateBodyResponse, type GetCertificateBundleParams, type GetCertificateBundleResponse, type GetCertificateParams, type GetCertificatePrivateKeyParams, type GetCertificatePrivateKeyResponse, type GetCertificateResponse, type GetEncryptionStrategiesResponse, type GetEnvOverridesResponse, type GetGcpAuthParams, type GetGcpAuthResponse, type GetIdentityParams, type GetIdentityResponse, type GetIntegrationAuthParams, type GetIntegrationAuthResponse, type GetJwtAuthParams, type GetJwtAuthResponse, type GetKmsKeyByNameParams, type GetKmsKeyByNameResponse, type GetKmsKeyParams, type GetKmsKeyResponse, type GetKmsPrivateKeyParams, type GetKmsPrivateKeyResponse, type GetKmsPublicKeyParams, type GetKmsPublicKeyResponse, type GetKubernetesAuthParams, type GetKubernetesAuthResponse, type GetLdapAuthParams, type GetLdapAuthResponse, type GetMeResponse, type GetMembershipParams, type GetMembershipResponse, type GetMfaSessionStatusParams, type GetMfaSessionStatusResponse, type GetOciAuthParams, type GetOciAuthResponse, type GetOidcAuthParams, type GetOidcAuthResponse, type GetPkiAlertParams, type GetPkiAlertResponse, type GetPkiTemplateParams, type GetPkiTemplateResponse, type GetProjectBySlugParams, type GetProjectBySlugResponse, type GetProjectParams, type GetProjectResponse, type GetRawSecretsFromImportsParams, type GetRawSecretsFromImportsResponse, type GetSecretAccessListParams, type GetSecretAccessListResponse, type GetSecretByIdParams, type GetSecretByIdResponse, type GetSecretByNameParams, type GetSecretByNameResponse, type GetSecretFolderByIdParams, type GetSecretFolderByIdResponse, type GetSecretImportParams, type GetSecretImportResponse, type GetSecretSyncByNameParams, type GetSecretSyncByNameResponse, type GetSecretSyncParams, type GetSecretSyncResponse, type GetSecretTagByIdParams, type GetSecretTagByIdResponse, type GetSecretTagBySlugParams, type GetSecretTagBySlugResponse, type GetServiceTokenResponse, type GetSharedSecretParams, type GetSharedSecretResponse, type GetTlsCertAuthParams, type GetTlsCertAuthResponse, type GetTokenAuthParams, type GetTokenAuthResponse, type GetTokenAuthTokenParams, type GetTokenAuthTokenResponse, type GetUniversalAuthClientSecretParams, type GetUniversalAuthClientSecretResponse, type GetUniversalAuthParams, type GetUniversalAuthResponse, type GrantAdminAccessParams, type GrantAdminAccessResponse, type GrantIdentitySuperAdminParams, type GrantIdentitySuperAdminResponse, type GrantOrgAdminProjectAccessParams, type GrantOrgAdminProjectAccessResponse, HttpClient, type HttpClientConfig, IdentitiesResource, type Identity, IdentityAccessTokensResource, type IdentityAlicloudAuth, IdentityAlicloudAuthResource, type IdentityAuthResources, type IdentityAwsAuth, IdentityAwsAuthResource, type IdentityAzureAuth, IdentityAzureAuthResource, type IdentityGcpAuth, IdentityGcpAuthResource, type IdentityJwtAuth, IdentityJwtAuthResource, type IdentityKubernetesAuth, IdentityKubernetesAuthResource, type IdentityLdapAuth, IdentityLdapAuthResource, type IdentityOciAuth, IdentityOciAuthResource, type IdentityOidcAuth, IdentityOidcAuthResource, type IdentityOrgMembership, type IdentityProjectMembership, type IdentityTlsCertAuth, IdentityTlsCertAuthResource, type IdentityTokenAuth, IdentityTokenAuthResource, type IdentityTokenAuthToken, type IdentityUniversalAuth, IdentityUniversalAuthResource, type IdentityWithMetadata, type ImportSecretSyncParams, type ImportSecretSyncResponse, type ImportedSecretGroup, InfisicalApiError, InfisicalClient, type InfisicalClientConfig, InfisicalNetworkError, type IntegrationAuth, IntegrationAuthResource, InternalServerError, type InvalidateCacheParams, type InvalidateCacheResponse, type IssueCertificateParams, type IssueCertificateResponse, type JoinOrganizationParams, type JoinOrganizationResponse, JwtSignatureAlgorithm, type KmsDecryptParams, type KmsDecryptResponse, type KmsEncryptParams, type KmsEncryptResponse, type KmsKey, KmsResource, type KmsSignParams, type KmsSignResponse, type KmsVerifyParams, type KmsVerifyResponse, type ListAdminIdentitiesParams, type ListAdminIdentitiesResponse, type ListAdminOrganizationsParams, type ListAdminOrganizationsResponse, type ListAdminUsersParams, type ListAdminUsersResponse, type ListAllAppConnectionsResponse, type ListAppConnectionsParams, type ListAppConnectionsResponse, type ListCaCertificatesParams, type ListCaCertificatesResponse, type ListCertificateAuthoritiesParams, type ListCertificateAuthoritiesResponse, type ListIdentityMembershipsParams, type ListIdentityMembershipsResponse, type ListIdentityProjectMembershipsParams, type ListIdentityProjectMembershipsResponse, type ListIntegrationAuthParams, type ListIntegrationAuthResponse, type ListKmsKeysParams, type ListKmsKeysResponse, type ListKmsSigningAlgorithmsParams, type ListKmsSigningAlgorithmsResponse, type ListMembershipsParams, type ListMembershipsResponse, type ListOrgAdminProjectsParams, type ListOrgAdminProjectsResponse, type ListOrgProjectsParams, type ListOrgProjectsResponse, type ListOrganizationsResponse, type ListPkiAlertCertificatesParams, type ListPkiAlertCertificatesResponse, type ListPkiAlertsParams, type ListPkiAlertsResponse, type ListPkiTemplatesParams, type ListPkiTemplatesResponse, type ListProjectEnvironmentsParams, type ListProjectEnvironmentsResponse, type ListProjectMembershipsByOrgMembershipParams, type ListProjectMembershipsByOrgMembershipResponse, type ListProjectMembershipsParams, type ListProjectMembershipsResponse, type ListProjectRolesParams, type ListProjectRolesResponse, type ListProjectTagsParams, type ListProjectTagsResponse, type ListProjectsParams, type ListProjectsResponse, type ListSecretFoldersParams, type ListSecretFoldersResponse, type ListSecretImportsParams, type ListSecretImportsResponse, type ListSecretSyncsParams, type ListSecretSyncsResponse, type ListSecretTagsParams, type ListSecretTagsResponse, type ListSecretsParams, type ListSecretsResponse, type ListSharedSecretsResponse, type ListTokenAuthTokensParams, type ListTokenAuthTokensResponse, type ListUniversalAuthClientSecretsParams, type ListUniversalAuthClientSecretsResponse, type ListWebhooksParams, type ListWebhooksResponse, type LoginAlicloudAuthParams, type LoginAlicloudAuthResponse, type LoginAwsAuthParams, type LoginAwsAuthResponse, type LoginAzureAuthParams, type LoginAzureAuthResponse, type LoginGcpAuthParams, type LoginGcpAuthResponse, type LoginJwtAuthParams, type LoginJwtAuthResponse, type LoginKubernetesAuthParams, type LoginKubernetesAuthResponse, type LoginLdapAuthParams, type LoginLdapAuthResponse, type LoginOciAuthParams, type LoginOciAuthResponse, type LoginOidcAuthParams, type LoginOidcAuthResponse, type LoginParams, type LoginParamsOrFactory, type LoginResponse, type LoginTlsCertAuthParams, type LoginTlsCertAuthResponse, type LoginTokenAuthParams, type LoginTokenAuthResponse, type LoginUniversalAuthParams, type LoginUniversalAuthResponse, MfaMethod, MfaResource, MfaSessionStatus, MfaSessionsResource, type MoveSecretsParams, type MoveSecretsResponse, NotFoundError, OrderByDirection, OrgAdminResource, OrgIdentityOrderBy, type OrgInfo, type OrgMembership, type OrgMembershipMetadata, OrgMembershipStatus, type OrgMembershipUser, type OrgMembershipWithUser, type OrgProject, type Organization, OrganizationIdentitiesResource, OrganizationsResource, PasswordResource, type PkiAlert, type PkiAlertCertificate, type PkiAlertChannel, PkiAlertChannelType, PkiAlertEventType, PkiAlertsResource, PkiCaResource, PkiCertificatesResource, type PkiFilterRule, PkiTemplatesResource, type PreviewPkiAlertCertificatesParams, type PreviewPkiAlertCertificatesResponse, type Project, type ProjectMembership, type ProjectMembershipEntry, type ProjectMembershipRole, type ProjectRole, type ProjectTag, ProjectsResource, RESOURCE_AUTH_MODES, RateLimitError, type RawSecret, type RemoveSecretSyncSecretsParams, type RemoveSecretSyncSecretsResponse, type RenewAccessTokenParams, type RenewAccessTokenResponse, type RenewCaParams, type RenewCaResponse, type RenewCertificateParams, type RenewCertificateResponse, type RenewResult, type RequestEmailChangeOtpParams, type RequestEmailChangeOtpResponse, type ResendMfaTokenResponse, type ResendOrgInviteParams, type ResendOrgInviteResponse, type ResetPasswordAuthenticatedParams, type ResetPasswordParams, type ResourceCategory, type ResyncReplicationParams, type ResyncReplicationResponse, type RevokeAccessTokenParams, type RevokeAccessTokenResponse, type RevokeAdminAccessParams, type RevokeAdminAccessResponse, type RevokeAlicloudAuthParams, type RevokeAlicloudAuthResponse, type RevokeAllSessionsResponse, type RevokeAwsAuthParams, type RevokeAwsAuthResponse, type RevokeAzureAuthParams, type RevokeAzureAuthResponse, type RevokeCertificateParams, type RevokeCertificateResponse, type RevokeGcpAuthParams, type RevokeGcpAuthResponse, type RevokeIdentitySuperAdminParams, type RevokeIdentitySuperAdminResponse, type RevokeJwtAuthParams, type RevokeJwtAuthResponse, type RevokeKubernetesAuthParams, type RevokeKubernetesAuthResponse, type RevokeLdapAuthParams, type RevokeLdapAuthResponse, type RevokeOciAuthParams, type RevokeOciAuthResponse, type RevokeOidcAuthParams, type RevokeOidcAuthResponse, type RevokeSessionResponse, type RevokeTlsCertAuthParams, type RevokeTlsCertAuthResponse, type RevokeTokenAuthParams, type RevokeTokenAuthResponse, type RevokeTokenAuthTokenParams, type RevokeTokenAuthTokenResponse, type RevokeUniversalAuthClientSecretParams, type RevokeUniversalAuthClientSecretResponse, type RevokeUniversalAuthParams, type RevokeUniversalAuthResponse, type SanitizedServiceToken, type SearchIdentitiesParams, type SearchIdentitiesResponse, type Secret, type SecretAccessEntry, type SecretFolder, type SecretFolderDetailed, type SecretFolderWithPath, type SecretFolderWithRelativePath, SecretFoldersResource, type SecretImport, type SecretImportDetailed, type SecretImportEnv, SecretImportsResource, SecretSharingResource, type SecretSync, SecretSyncsResource, type SecretTag, type SecretTagRef, SecretTagsResource, SecretsResource, type SendEmailVerificationCodeParams, type ServiceToken, ServiceTokensResource, type SharedSecret, type SignCertificateParams, type SignCertificateResponse, type SignIntermediateCaParams, type SignIntermediateCaResponse, type SuperAdminConfig, type TestWebhookParams, type TestWebhookResponse, type TriggerSecretSyncParams, type TriggerSecretSyncResponse, UnauthorizedError, type UniversalAuthClientSecret, type UpdateAdminConfigParams, type UpdateAdminConfigResponse, type UpdateAlicloudAuthParams, type UpdateAlicloudAuthResponse, type UpdateAppConnectionParams, type UpdateAppConnectionResponse, type UpdateAuthMethodsParams, type UpdateAuthMethodsResponse, type UpdateAwsAuthParams, type UpdateAwsAuthResponse, type UpdateAzureAuthParams, type UpdateAzureAuthResponse, type UpdateCaParams, type UpdateCaResponse, type UpdateCertificateConfigParams, type UpdateCertificateConfigResponse, type UpdateEmailParams, type UpdateEmailResponse, type UpdateEncryptionStrategyParams, type UpdateEncryptionStrategyResponse, type UpdateGcpAuthParams, type UpdateGcpAuthResponse, type UpdateIdentityParams, type UpdateIdentityResponse, type UpdateJwtAuthParams, type UpdateJwtAuthResponse, type UpdateKmsKeyParams, type UpdateKmsKeyResponse, type UpdateKubernetesAuthParams, type UpdateKubernetesAuthResponse, type UpdateLdapAuthParams, type UpdateLdapAuthResponse, type UpdateMembershipParams, type UpdateMembershipResponse, type UpdateMfaParams, type UpdateMfaResponse, type UpdateNameParams, type UpdateNameResponse, type UpdateOciAuthParams, type UpdateOciAuthResponse, type UpdateOidcAuthParams, type UpdateOidcAuthResponse, type UpdatePkiAlertParams, type UpdatePkiAlertResponse, type UpdatePkiTemplateParams, type UpdatePkiTemplateResponse, type UpdateProjectEnvironmentParams, type UpdateProjectEnvironmentResponse, type UpdateProjectParams, type UpdateProjectResponse, type UpdateSecretFolderBatchItem, type UpdateSecretFolderBatchParams, type UpdateSecretFolderBatchResponse, type UpdateSecretFolderParams, type UpdateSecretFolderResponse, type UpdateSecretImportParams, type UpdateSecretImportResponse, type UpdateSecretParams, type UpdateSecretResponse, type UpdateSecretSyncParams, type UpdateSecretSyncResponse, type UpdateSecretTagParams, type UpdateSecretTagResponse, type UpdateTlsCertAuthParams, type UpdateTlsCertAuthResponse, type UpdateTokenAuthParams, type UpdateTokenAuthResponse, type UpdateTokenAuthTokenParams, type UpdateTokenAuthTokenResponse, type UpdateUniversalAuthParams, type UpdateUniversalAuthResponse, type UpdateWebhookParams, type UpdateWebhookResponse, type UpgradePrivilegeSystemResponse, type User, type UserWithEncryptionKeys, UsersResource, ValidationError, type VerifyEmailVerificationCodeParams, type VerifyMfaParams, type VerifyMfaRecoveryCodeParams, type VerifyMfaResponse, type VerifyMfaSessionParams, type VerifyMfaSessionResponse, type Webhook, WebhooksResource };