@babelforce/manager-sdk 0.38.0 → 0.40.0
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/CHANGELOG.md +19 -0
- package/README.md +7 -3
- package/dist/index.d.ts +995 -67
- package/dist/index.js +92 -3
- package/package.json +1 -1
package/CHANGELOG.md
CHANGED
|
@@ -3,6 +3,25 @@
|
|
|
3
3
|
All notable changes to `@babelforce/manager-sdk` are documented here. This project adheres to
|
|
4
4
|
[Semantic Versioning](https://semver.org/).
|
|
5
5
|
|
|
6
|
+
## 0.40.0
|
|
7
|
+
|
|
8
|
+
- Added first-class **Authorization Code + PKCE** (RFC 7636) support: a new `refreshToken` auth mode
|
|
9
|
+
(transparent refresh with refresh-token rotation) plus the helpers `pkceChallenge`,
|
|
10
|
+
`buildAuthorizeUrl`, `authorizationCodeGrant`, and `refreshTokenGrant`. `clientCredentialsGrant` is
|
|
11
|
+
now exported too. `TokenResponse` gained an optional `refresh_token`.
|
|
12
|
+
- Consolidated the docs: the OAuth guide is merged into a single **Authentication** guide (overview +
|
|
13
|
+
one section per flow + when-to-use). Client credentials is documented with a security-review/limited-
|
|
14
|
+
availability caveat.
|
|
15
|
+
|
|
16
|
+
## 0.39.0
|
|
17
|
+
|
|
18
|
+
- Refreshed the vendored manager API spec (richer endpoint descriptions/examples) and regenerated
|
|
19
|
+
the client. No operations added or removed — coverage stays at 397/397.
|
|
20
|
+
- Schema corrections carried over from the refresh: the routing `number` field is now typed as a
|
|
21
|
+
phone-number reference (it previously aliased the application schema), agent-outbound telephony
|
|
22
|
+
settings have their own request-data type, and session-variable bodies are typed as string→value
|
|
23
|
+
maps.
|
|
24
|
+
|
|
6
25
|
## 0.38.0
|
|
7
26
|
|
|
8
27
|
- **BREAKING:** Removed the `apiKey` auth mode (the `X-Auth-Access-Id` / `X-Auth-Access-Token`
|
package/README.md
CHANGED
|
@@ -37,10 +37,14 @@ await mgr.users.enable(["new.user@acme.com"]);
|
|
|
37
37
|
|
|
38
38
|
### Authentication
|
|
39
39
|
|
|
40
|
-
- `{ kind: "
|
|
41
|
-
|
|
40
|
+
- `{ kind: "refreshToken", refreshToken, clientId }` — a refresh token from the Authorization Code +
|
|
41
|
+
PKCE flow (helpers: `pkceChallenge`, `buildAuthorizeUrl`, `authorizationCodeGrant`); transparent
|
|
42
|
+
refresh with rotation. Best for apps acting on behalf of a user.
|
|
43
|
+
- `{ kind: "clientCredentials", clientId, clientSecret }` — OAuth2 client_credentials grant with
|
|
44
|
+
transparent refresh, for server-to-server use (credential issuance is in security review — see the
|
|
45
|
+
[Authentication guide](https://babelforce.github.io/manager-sdk/guides/authentication)).
|
|
42
46
|
- `{ kind: "bearer", token }` — a token you already hold.
|
|
43
|
-
- `{ kind: "password", user, pass }` — OAuth2 password grant with transparent refresh.
|
|
47
|
+
- `{ kind: "password", user, pass }` — OAuth2 password grant (legacy) with transparent refresh.
|
|
44
48
|
|
|
45
49
|
### Errors
|
|
46
50
|
|