@barndoor-ai/sdk 0.2.1 → 0.2.2

package/README.md

@@ -21,7 +21,7 @@ npm install @barndoor-ai/sdk
 ### Basic Usage
 
 ```typescript
-import { BarndoorSDK } from '@barndoor/sdk';
+import { BarndoorSDK } from '@barndoor-ai/sdk';
 
 // ① token known at construction time (unchanged)
 const sdk = new BarndoorSDK('https://your-org.mcp.barndoor.ai', {
@@ -53,7 +53,7 @@ For development and prototyping, use the interactive login helper:
 `loginInteractive()` builds an SDK *without* requiring `token` in the ctor—it internally calls `sdk.authenticate()` for you.
 
 ```typescript
-import { loginInteractive } from '@barndoor/sdk';
+import { loginInteractive } from '@barndoor-ai/sdk';
 
 // Automatically handles OAuth flow and token caching
 const sdk = await loginInteractive();
@@ -67,7 +67,7 @@ import {
   loginInteractive,
   ensureServerConnected,
   makeMcpConnectionParams
-} from '@barndoor/sdk';
+} from '@barndoor-ai/sdk';
 
 async function main() {
   // 1. Login (handles OAuth + caching)
@@ -242,7 +242,7 @@ import {
   ConnectionError,
   TokenError,
   ConfigurationError
-} from '@barndoor/sdk';
+} from '@barndoor-ai/sdk';
 
 try {
   await sdk.listServers();
@@ -265,7 +265,7 @@ The SDK works in both Node.js and browser environments:
 
 ```typescript
 // Browser usage
-import { BarndoorSDK } from '@barndoor/sdk';
+import { BarndoorSDK } from '@barndoor-ai/sdk';
 
 // Token storage uses localStorage in browsers
 const sdk = new BarndoorSDK('https://api.barndoor.ai', {
@@ -289,7 +289,7 @@ See the `examples/` directory for complete working examples:
 The SDK is written in TypeScript and includes full type definitions:
 
 ```typescript
-import { BarndoorSDK, ServerSummary } from '@barndoor/sdk';
+import { BarndoorSDK, ServerSummary } from '@barndoor-ai/sdk';
 
 const sdk = new BarndoorSDK('https://api.barndoor.ai', {
   token: 'your-token'

package/{src/auth/index.ts → dist/auth/index.d.ts}

@@ -4,23 +4,8 @@
  * This module provides a unified interface for authentication functionality,
  * including PKCE OAuth flows, token storage, and interactive login.
  */
-
 export { PKCEManager, startLocalCallbackServer } from './pkce';
-
-export {
-  getTokenStorage,
-  TokenManager,
-  loadUserToken,
-  saveUserToken,
-  clearCachedToken,
-  verifyJWTLocal,
-  JWTVerificationResult,
-  isTokenActive,
-  isTokenActiveWithRefresh,
-  validateToken,
-  setTokenLogger,
-} from './store';
-
-// Re-export types
+export { getTokenStorage, TokenManager, loadUserToken, saveUserToken, clearCachedToken, verifyJWTLocal, JWTVerificationResult, isTokenActive, isTokenActiveWithRefresh, validateToken, setTokenLogger, } from './store';
 export type { AuthorizationUrlParams, TokenExchangeParams, PKCEState } from './pkce';
 export type { TokenData } from './store';
+//# sourceMappingURL=index.d.ts.map

package/dist/auth/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/auth/index.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAEH,OAAO,EAAE,WAAW,EAAE,wBAAwB,EAAE,MAAM,QAAQ,CAAC;AAE/D,OAAO,EACL,eAAe,EACf,YAAY,EACZ,aAAa,EACb,aAAa,EACb,gBAAgB,EAChB,cAAc,EACd,qBAAqB,EACrB,aAAa,EACb,wBAAwB,EACxB,aAAa,EACb,cAAc,GACf,MAAM,SAAS,CAAC;AAGjB,YAAY,EAAE,sBAAsB,EAAE,mBAAmB,EAAE,SAAS,EAAE,MAAM,QAAQ,CAAC;AACrF,YAAY,EAAE,SAAS,EAAE,MAAM,SAAS,CAAC"}

package/dist/auth/pkce.d.ts

@@ -0,0 +1,92 @@
+/**
+ * PKCE (Proof Key for Code Exchange) implementation for OAuth 2.0.
+ *
+ * This module provides PKCE functionality that mirrors the Python SDK's
+ * auth.py implementation, supporting secure OAuth flows in both browser
+ * and Node.js environments.
+ */
+/**
+ * PKCE state data structure.
+ */
+export interface PKCEState {
+    /** Code verifier for PKCE flow */
+    codeVerifier: string;
+    /** Code challenge derived from verifier */
+    codeChallenge: string;
+    /** OAuth state parameter */
+    state: string;
+    /** Timestamp when state was created */
+    timestamp: number;
+}
+/**
+ * PKCE Manager class to handle state per instance instead of globally.
+ * This prevents race conditions in browser environments with multiple parallel login flows.
+ */
+export declare class PKCEManager {
+    private _codeVerifier;
+    private _currentState;
+    private readonly _logger;
+    /**
+     * Generate PKCE parameters and build authorization URL.
+     * @param params - Authorization parameters
+     * @returns Authorization URL
+     */
+    buildAuthorizationUrl({ domain, clientId, redirectUri, audience, scope, }: AuthorizationUrlParams): Promise<string>;
+    /**
+     * Exchange authorization code for tokens using stored PKCE state.
+     * @param params - Token exchange parameters
+     * @returns Token response
+     */
+    exchangeCodeForToken({ domain, clientId, code, redirectUri, clientSecret, }: TokenExchangeParams): Promise<unknown>;
+    /**
+     * Validate state parameter to prevent CSRF attacks.
+     * @param receivedState - State received from OAuth callback
+     * @returns True if state is valid
+     */
+    validateState(receivedState: string): boolean;
+    /**
+     * Clear PKCE state (for cleanup or error handling).
+     */
+    clearState(): void;
+    /**
+     * Get current PKCE state (for debugging/testing).
+     */
+    getState(): PKCEState | null;
+}
+/**
+ * Authorization URL parameters.
+ */
+export interface AuthorizationUrlParams {
+    /** Auth0 domain */
+    domain: string;
+    /** OAuth client ID */
+    clientId: string;
+    /** Redirect URI */
+    redirectUri: string;
+    /** API audience */
+    audience: string;
+    /** OAuth scopes */
+    scope?: string;
+}
+/**
+ * Token exchange parameters.
+ */
+export interface TokenExchangeParams {
+    /** Auth0 domain */
+    domain: string;
+    /** OAuth client ID */
+    clientId: string;
+    /** Authorization code */
+    code: string;
+    /** Redirect URI */
+    redirectUri: string;
+    /** Client secret (for backend flows) */
+    clientSecret?: string;
+}
+/**
+ * Start a local callback server for OAuth redirect (Node.js only).
+ * @param port - Port to listen on
+ * @returns [redirectUri, waiter] tuple
+ */
+export declare function startLocalCallbackServer(port?: number): [string, Promise<[string, string]>];
+//# sourceMappingURL=pkce.d.ts.map

package/dist/auth/pkce.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"pkce.d.ts","sourceRoot":"","sources":["../../src/auth/pkce.ts"],"names":[],"mappings":"AAAA;;;;;;GAMG;AASH;;GAEG;AACH,MAAM,WAAW,SAAS;IACxB,kCAAkC;IAClC,YAAY,EAAE,MAAM,CAAC;IACrB,2CAA2C;IAC3C,aAAa,EAAE,MAAM,CAAC;IACtB,4BAA4B;IAC5B,KAAK,EAAE,MAAM,CAAC;IACd,uCAAuC;IACvC,SAAS,EAAE,MAAM,CAAC;CACnB;AAED;;;GAGG;AACH,qBAAa,WAAW;IACtB,OAAO,CAAC,aAAa,CAAuB;IAC5C,OAAO,CAAC,aAAa,CAAuB;IAC5C,OAAO,CAAC,QAAQ,CAAC,OAAO,CAA8B;IAEtD;;;;OAIG;IACU,qBAAqB,CAAC,EACjC,MAAM,EACN,QAAQ,EACR,WAAW,EACX,QAAQ,EACR,KAA8B,GAC/B,EAAE,sBAAsB,GAAG,OAAO,CAAC,MAAM,CAAC;IAsB3C;;;;OAIG;IACU,oBAAoB,CAAC,EAChC,MAAM,EACN,QAAQ,EACR,IAAI,EACJ,WAAW,EACX,YAAY,GACb,EAAE,mBAAmB,GAAG,OAAO,CAAC,OAAO,CAAC;IA0DzC;;;;OAIG;IACI,aAAa,CAAC,aAAa,EAAE,MAAM,GAAG,OAAO;IAIpD;;OAEG;IACI,UAAU,IAAI,IAAI;IAKzB;;OAEG;IACI,QAAQ,IAAI,SAAS,GAAG,IAAI;CAWpC;AAmED;;GAEG;AACH,MAAM,WAAW,sBAAsB;IACrC,mBAAmB;IACnB,MAAM,EAAE,MAAM,CAAC;IACf,sBAAsB;IACtB,QAAQ,EAAE,MAAM,CAAC;IACjB,mBAAmB;IACnB,WAAW,EAAE,MAAM,CAAC;IACpB,mBAAmB;IACnB,QAAQ,EAAE,MAAM,CAAC;IACjB,mBAAmB;IACnB,KAAK,CAAC,EAAE,MAAM,CAAC;CAChB;AAED;;GAEG;AACH,MAAM,WAAW,mBAAmB;IAClC,mBAAmB;IACnB,MAAM,EAAE,MAAM,CAAC;IACf,sBAAsB;IACtB,QAAQ,EAAE,MAAM,CAAC;IACjB,yBAAyB;IACzB,IAAI,EAAE,MAAM,CAAC;IACb,mBAAmB;IACnB,WAAW,EAAE,MAAM,CAAC;IACpB,wCAAwC;IACxC,YAAY,CAAC,EAAE,MAAM,CAAC;CACvB;AAED;;;;GAIG;AACH,wBAAgB,wBAAwB,CAAC,IAAI,SAAQ,GAAG,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC,CAAC,CAsE1F"}

package/dist/auth/store.d.ts

@@ -0,0 +1,145 @@
+/**
+ * Token storage and management.
+ *
+ * This module provides token storage that works in both browser and Node.js
+ * environments, mirroring the Python SDK's auth_store functionality.
+ */
+import { Logger } from '../logging';
+/**
+ * Set a custom logger for the token management module.
+ * @deprecated Use setLogger from the main logging module instead
+ */
+export declare function setTokenLogger(_logger: Logger): void;
+/**
+ * Token data structure for storage.
+ */
+export interface TokenData {
+    /** Access token for API requests */
+    access_token: string;
+    /** Optional refresh token */
+    refresh_token?: string;
+    /** Token type (usually 'Bearer') */
+    token_type?: string;
+    /** Token expiration time in seconds */
+    expires_in?: number;
+    /** Token scope */
+    scope?: string;
+    /** Additional token properties */
+    [key: string]: unknown;
+}
+/**
+ * JWT verification result.
+ */
+export declare enum JWTVerificationResult {
+    VALID = "valid",
+    EXPIRED = "expired",
+    INVALID = "invalid"
+}
+/**
+ * Abstract base class for token storage.
+ */
+declare abstract class TokenStorage {
+    /**
+     * Load token data from storage.
+     * @returns Token data or null if not found
+     */
+    abstract loadToken(): Promise<TokenData | null>;
+    /**
+     * Save token data to storage.
+     * @param tokenData - Token data to save
+     */
+    abstract saveToken(tokenData: TokenData): Promise<void>;
+    /**
+     * Clear token data from storage.
+     */
+    abstract clearToken(): Promise<void>;
+}
+/**
+ * Get the appropriate token storage for the current environment.
+ * @returns Token storage instance
+ */
+export declare function getTokenStorage(): TokenStorage;
+/**
+ * Verify JWT locally using JWKS.
+ * @param token - JWT token to verify
+ * @param authDomain - Auth0 domain
+ * @param audience - Expected audience
+ * @returns Verification result
+ */
+export declare function verifyJWTLocal(token: string, authDomain: string, audience: string): Promise<JWTVerificationResult>;
+/**
+ * Token manager that handles storage, validation, and refresh.
+ */
+export declare class TokenManager {
+    /** Token storage instance */
+    private readonly storage;
+    /** Mutex to prevent concurrent refresh operations */
+    private readonly _refreshMutex;
+    /**
+     * Create a new TokenManager.
+     * @param _apiBaseUrl - Base URL for the API (currently unused)
+     */
+    constructor(_apiBaseUrl: string);
+    /**
+     * Get a valid token, refreshing if necessary.
+     * @returns Valid access token
+     */
+    getValidToken(): Promise<string>;
+    /**
+     * Check if token should be refreshed proactively.
+     * @private
+     */
+    private _shouldRefreshToken;
+    /**
+     * Validate token using fast-path local verification with remote fallback.
+     * @private
+     */
+    private _validateOrRefresh;
+    /**
+     * Validate token remotely using Auth0's userinfo endpoint.
+     * @private
+     */
+    private _isTokenValidRemote;
+    /**
+     * Refresh the access token using the refresh token.
+     * @private
+     */
+    private _refreshToken;
+}
+/**
+ * Load user token from storage.
+ * @returns User access token or null if not found
+ */
+export declare function loadUserToken(): Promise<string | null>;
+/**
+ * Save user token to storage.
+ * @param token - Token string or token data object
+ */
+export declare function saveUserToken(token: string | TokenData): Promise<void>;
+/**
+ * Clear cached token.
+ */
+export declare function clearCachedToken(): Promise<void>;
+/**
+ * Check if cached token is active without attempting refresh.
+ * @param apiBaseUrl - Base URL of the API (for compatibility, not used)
+ * @returns True if token is active
+ */
+export declare function isTokenActive(_apiBaseUrl?: string): Promise<boolean>;
+/**
+ * Check if cached token is active, attempting refresh if needed.
+ * @param apiBaseUrl - Base URL of the API (for compatibility, not used)
+ * @returns True if token is active or was successfully refreshed
+ */
+export declare function isTokenActiveWithRefresh(apiBaseUrl?: string): Promise<boolean>;
+/**
+ * Validate a token using fast-path local verification with remote fallback.
+ * @param token - The JWT token to validate
+ * @param apiBaseUrl - Base URL of the API (for compatibility, not used)
+ * @returns Dictionary with 'valid' key indicating if token is valid
+ */
+export declare function validateToken(token: string, _apiBaseUrl?: string): Promise<{
+    valid: boolean;
+}>;
+export {};
+//# sourceMappingURL=store.d.ts.map

package/dist/auth/store.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"store.d.ts","sourceRoot":"","sources":["../../src/auth/store.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAIH,OAAO,EAAsB,MAAM,EAAE,MAAM,YAAY,CAAC;AASxD;;;GAGG;AACH,wBAAgB,cAAc,CAAC,OAAO,EAAE,MAAM,GAAG,IAAI,CAGpD;AAqDD;;GAEG;AACH,MAAM,WAAW,SAAS;IACxB,oCAAoC;IACpC,YAAY,EAAE,MAAM,CAAC;IACrB,6BAA6B;IAC7B,aAAa,CAAC,EAAE,MAAM,CAAC;IACvB,oCAAoC;IACpC,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB,uCAAuC;IACvC,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB,kBAAkB;IAClB,KAAK,CAAC,EAAE,MAAM,CAAC;IACf,kCAAkC;IAClC,CAAC,GAAG,EAAE,MAAM,GAAG,OAAO,CAAC;CACxB;AAED;;GAEG;AACH,oBAAY,qBAAqB;IAC/B,KAAK,UAAU;IACf,OAAO,YAAY;IACnB,OAAO,YAAY;CACpB;AA4GD;;GAEG;AACH,uBAAe,YAAY;IACzB;;;OAGG;IACH,QAAQ,CAAC,SAAS,IAAI,OAAO,CAAC,SAAS,GAAG,IAAI,CAAC;IAE/C;;;OAGG;IACH,QAAQ,CAAC,SAAS,CAAC,SAAS,EAAE,SAAS,GAAG,OAAO,CAAC,IAAI,CAAC;IAEvD;;OAEG;IACH,QAAQ,CAAC,UAAU,IAAI,OAAO,CAAC,IAAI,CAAC;CACrC;AA+HD;;;GAGG;AACH,wBAAgB,eAAe,IAAI,YAAY,CAQ9C;AAED;;;;;;GAMG;AACH,wBAAsB,cAAc,CAClC,KAAK,EAAE,MAAM,EACb,UAAU,EAAE,MAAM,EAClB,QAAQ,EAAE,MAAM,GACf,OAAO,CAAC,qBAAqB,CAAC,CAqBhC;AAyCD;;GAEG;AACH,qBAAa,YAAY;IACvB,6BAA6B;IAC7B,OAAO,CAAC,QAAQ,CAAC,OAAO,CAAe;IACvC,qDAAqD;IACrD,OAAO,CAAC,QAAQ,CAAC,aAAa,CAAe;IAE7C;;;OAGG;gBACS,WAAW,EAAE,MAAM;IAI/B;;;OAGG;IACU,aAAa,IAAI,OAAO,CAAC,MAAM,CAAC;IA8B7C;;;OAGG;IACH,OAAO,CAAC,mBAAmB;IAW3B;;;OAGG;YACW,kBAAkB;IAgChC;;;OAGG;YACW,mBAAmB;IAoBjC;;;OAGG;YACW,aAAa;CA8F5B;AAID;;;GAGG;AACH,wBAAsB,aAAa,IAAI,OAAO,CAAC,MAAM,GAAG,IAAI,CAAC,CAQ5D;AAED;;;GAGG;AACH,wBAAsB,aAAa,CAAC,KAAK,EAAE,MAAM,GAAG,SAAS,GAAG,OAAO,CAAC,IAAI,CAAC,CAW5E;AAED;;GAEG;AACH,wBAAsB,gBAAgB,IAAI,OAAO,CAAC,IAAI,CAAC,CAGtD;AAED;;;;GAIG;AACH,wBAAsB,aAAa,CAAC,WAAW,CAAC,EAAE,MAAM,GAAG,OAAO,CAAC,OAAO,CAAC,CA2B1E;AAED;;;;GAIG;AACH,wBAAsB,wBAAwB,CAAC,UAAU,CAAC,EAAE,MAAM,GAAG,OAAO,CAAC,OAAO,CAAC,CASpF;AAED;;;;;GAKG;AACH,wBAAsB,aAAa,CACjC,KAAK,EAAE,MAAM,EACb,WAAW,CAAC,EAAE,MAAM,GACnB,OAAO,CAAC;IAAE,KAAK,EAAE,OAAO,CAAA;CAAE,CAAC,CAqC7B"}

package/dist/client.d.ts

@@ -0,0 +1,164 @@
+/**
+ * Main Barndoor SDK client.
+ *
+ * This module provides the primary BarndoorSDK class that mirrors the Python
+ * SDK's client.py functionality with 100% API compatibility.
+ */
+import { ServerSummary, ServerDetail } from './models';
+/**
+ * Configuration options for BarndoorSDK constructor.
+ */
+export interface BarndoorSDKOptions {
+    /** User JWT token (optional - can be set later via authenticate()) */
+    token?: string;
+    /** Whether to validate token on initialization */
+    validateTokenOnInit?: boolean;
+    /** Request timeout in seconds */
+    timeout?: number;
+    /** Maximum number of retries */
+    maxRetries?: number;
+}
+/**
+ * Options for ensureServerConnected method.
+ */
+export interface EnsureServerConnectedOptions {
+    /** Maximum seconds to wait for connection */
+    pollSeconds?: number;
+}
+/**
+ * Response from server connection initiation.
+ */
+export interface ConnectionInitiationResponse {
+    /** OAuth authorization URL */
+    auth_url?: string;
+    [key: string]: unknown;
+}
+/**
+ * Response from connection status check.
+ */
+export interface ConnectionStatusResponse {
+    /** Current connection status */
+    status: string;
+}
+/**
+ * Async client for interacting with the Barndoor Platform API.
+ *
+ * This SDK provides methods to:
+ * - Manage server connections and OAuth flows
+ * - List available MCP servers
+ * - Validate user tokens
+ *
+ * The client handles authentication automatically by including the user's
+ * JWT token in all requests.
+ */
+export declare class BarndoorSDK {
+    /** Base URL of the Barndoor API */
+    readonly base: string;
+    /** User JWT token */
+    private _token;
+    /** HTTP client instance */
+    private readonly _http;
+    /** Whether token has been validated */
+    private _tokenValidated;
+    /** Whether the SDK has been closed */
+    private _closed;
+    /** Scoped logger for this SDK instance */
+    private readonly _logger;
+    /**
+     * Create a new BarndoorSDK instance.
+     * @param apiBaseUrl - Base URL of the Barndoor API
+     * @param options - Configuration options (token is optional)
+     */
+    constructor(apiBaseUrl: string, options?: BarndoorSDKOptions);
+    /**
+     * Get the current token.
+     */
+    get token(): string;
+    /**
+     * Set authentication token for the SDK.
+     * @param token - JWT token to use for authentication
+     */
+    authenticate(token: string): Promise<void>;
+    /**
+     * Validate URL format.
+     * @private
+     */
+    private _validateUrl;
+    /**
+     * Validate token format.
+     * @private
+     */
+    private _validateToken;
+    /**
+     * Ensure the SDK hasn't been closed.
+     * @private
+     */
+    private _ensureNotClosed;
+    /**
+     * Make authenticated request with automatic token validation.
+     * @private
+     */
+    private _req;
+    /**
+     * Validate the cached token by making a test API call.
+     * @returns True if the token is valid
+     */
+    validateCachedToken(): Promise<boolean>;
+    /**
+     * Ensure token is valid, validating if necessary.
+     */
+    ensureValidToken(): Promise<void>;
+    /**
+     * List all MCP servers available to the caller's organization.
+     * @returns Array of server summaries
+     */
+    listServers(): Promise<ServerSummary[]>;
+    /**
+     * Get detailed information about a specific server.
+     * @param serverId - Server ID
+     * @returns Server details
+     */
+    getServer(serverId: string): Promise<ServerDetail>;
+    /**
+     * Initiate OAuth connection flow for a server.
+     * @param serverId - Server ID
+     * @param returnUrl - Optional return URL
+     * @returns Connection initiation response
+     */
+    initiateConnection(serverId: string, returnUrl?: string): Promise<ConnectionInitiationResponse>;
+    /**
+     * Get the user's connection status for a specific server.
+     * @param serverId - Server ID
+     * @returns Connection status
+     */
+    getConnectionStatus(serverId: string): Promise<string>;
+    /**
+     * Disconnect from a specific MCP server.
+     *
+     * This will remove the connection record and clean up any stored OAuth credentials.
+     * The user will need to reconnect to use this server again.
+     *
+     * @param serverId - Server ID or slug to disconnect from
+     */
+    disconnectServer(serverId: string): Promise<void>;
+    /**
+     * Validate server ID format.
+     * @private
+     */
+    private _validateServerId;
+    /**
+     * Close the SDK and clean up resources.
+     */
+    close(): Promise<void>;
+    /**
+     * Alias for close() to match Python SDK naming.
+     */
+    aclose(): Promise<void>;
+    /**
+     * Ensure a server is connected, initiating OAuth if needed.
+     * @param serverIdentifier - Server slug or provider name
+     * @param options - Options
+     */
+    ensureServerConnected(serverIdentifier: string, options?: EnsureServerConnectedOptions): Promise<void>;
+}
+//# sourceMappingURL=client.d.ts.map

package/dist/client.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"client.d.ts","sourceRoot":"","sources":["../src/client.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAGH,OAAO,EAAE,aAAa,EAAE,YAAY,EAAE,MAAM,UAAU,CAAC;AAOvD;;GAEG;AACH,MAAM,WAAW,kBAAkB;IACjC,sEAAsE;IACtE,KAAK,CAAC,EAAE,MAAM,CAAC;IACf,kDAAkD;IAClD,mBAAmB,CAAC,EAAE,OAAO,CAAC;IAC9B,iCAAiC;IACjC,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,gCAAgC;IAChC,UAAU,CAAC,EAAE,MAAM,CAAC;CACrB;AAsBD;;GAEG;AACH,MAAM,WAAW,4BAA4B;IAC3C,6CAA6C;IAC7C,WAAW,CAAC,EAAE,MAAM,CAAC;CACtB;AAED;;GAEG;AACH,MAAM,WAAW,4BAA4B;IAC3C,8BAA8B;IAC9B,QAAQ,CAAC,EAAE,MAAM,CAAC;IAClB,CAAC,GAAG,EAAE,MAAM,GAAG,OAAO,CAAC;CACxB;AAED;;GAEG;AACH,MAAM,WAAW,wBAAwB;IACvC,gCAAgC;IAChC,MAAM,EAAE,MAAM,CAAC;CAChB;AAED;;;;;;;;;;GAUG;AACH,qBAAa,WAAW;IACtB,mCAAmC;IACnC,SAAgB,IAAI,EAAE,MAAM,CAAC;IAC7B,qBAAqB;IACrB,OAAO,CAAC,MAAM,CAAgB;IAC9B,2BAA2B;IAC3B,OAAO,CAAC,QAAQ,CAAC,KAAK,CAAa;IACnC,uCAAuC;IACvC,OAAO,CAAC,eAAe,CAAU;IACjC,sCAAsC;IACtC,OAAO,CAAC,OAAO,CAAU;IACzB,0CAA0C;IAC1C,OAAO,CAAC,QAAQ,CAAC,OAAO,CAAgC;IAExD;;;;OAIG;gBACS,UAAU,EAAE,MAAM,EAAE,OAAO,GAAE,kBAAuB;IA2BhE;;OAEG;IACH,IAAW,KAAK,IAAI,MAAM,CAOzB;IAED;;;OAGG;IACU,YAAY,CAAC,KAAK,EAAE,MAAM,GAAG,OAAO,CAAC,IAAI,CAAC;IAUvD;;;OAGG;IACH,OAAO,CAAC,YAAY;IAapB;;;OAGG;IACH,OAAO,CAAC,cAAc;IActB;;;OAGG;IACH,OAAO,CAAC,gBAAgB;IAMxB;;;OAGG;YACW,IAAI;IAelB;;;OAGG;IACU,mBAAmB,IAAI,OAAO,CAAC,OAAO,CAAC;IAyBpD;;OAEG;IACU,gBAAgB,IAAI,OAAO,CAAC,IAAI,CAAC;IAqB9C;;;OAGG;IACU,WAAW,IAAI,OAAO,CAAC,aAAa,EAAE,CAAC;IAapD;;;;OAIG;IACU,SAAS,CAAC,QAAQ,EAAE,MAAM,GAAG,OAAO,CAAC,YAAY,CAAC;IAQ/D;;;;;OAKG;IACU,kBAAkB,CAC7B,QAAQ,EAAE,MAAM,EAChB,SAAS,CAAC,EAAE,MAAM,GACjB,OAAO,CAAC,4BAA4B,CAAC;IAiCxC;;;;OAIG;IACU,mBAAmB,CAAC,QAAQ,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC;IAWnE;;;;;;;OAOG;IACU,gBAAgB,CAAC,QAAQ,EAAE,MAAM,GAAG,OAAO,CAAC,IAAI,CAAC;IAkB9D;;;OAGG;IACH,OAAO,CAAC,iBAAiB;IAkBzB;;OAEG;IACU,KAAK,IAAI,OAAO,CAAC,IAAI,CAAC;IAOnC;;OAEG;IACU,MAAM,IAAI,OAAO,CAAC,IAAI,CAAC;IAIpC;;;;OAIG;IACU,qBAAqB,CAChC,gBAAgB,EAAE,MAAM,EACxB,OAAO,GAAE,4BAAiC,GACzC,OAAO,CAAC,IAAI,CAAC;CA4EjB"}

package/dist/config.d.ts

@@ -0,0 +1,144 @@
+/**
+ * Configuration management for the Barndoor SDK.
+ *
+ * This module provides unified configuration that mirrors the Python SDK's
+ * configuration system, supporting environment-specific defaults and
+ * dynamic organization ID substitution.
+ */
+/**
+ * Environment detection utilities
+ *
+ * Improved detection that works correctly under bundlers where process gets shimmed.
+ * We check for window first since that's the most reliable browser indicator.
+ */
+export declare const isBrowser: boolean;
+export declare const isNode: boolean;
+/**
+ * Browser window with optional ENV object for environment variables.
+ */
+declare global {
+    interface Window {
+        ENV?: Record<string, string>;
+    }
+}
+/**
+ * Configuration options for BarndoorConfig constructor.
+ */
+export interface BarndoorConfigOptions {
+    /** Auth0 domain */
+    authDomain?: string;
+    /** OAuth client ID */
+    clientId?: string;
+    /** OAuth client secret */
+    clientSecret?: string;
+    /** API audience identifier */
+    apiAudience?: string;
+    /** API base URL template */
+    apiBaseUrl?: string;
+    /** MCP base URL template */
+    mcpBaseUrl?: string;
+    /** Environment name */
+    environment?: string;
+    /** Whether to prompt for login */
+    promptForLogin?: boolean;
+    /** Whether to skip login in local environment */
+    skipLoginLocal?: boolean;
+}
+/**
+ * Unified configuration for the Barndoor SDK.
+ *
+ * Mirrors the Python SDK's BarndoorConfig class with environment-specific
+ * defaults and support for organization ID templating.
+ */
+export declare class BarndoorConfig {
+    /** Auth0 domain */
+    authDomain: string;
+    /** OAuth client ID */
+    clientId: string;
+    /** OAuth client secret */
+    clientSecret: string;
+    /** API audience identifier */
+    apiAudience: string;
+    /** API base URL template */
+    apiBaseUrl: string;
+    /** MCP base URL template */
+    mcpBaseUrl: string;
+    /** Environment name */
+    environment: string;
+    /** Whether to prompt for login */
+    promptForLogin: boolean;
+    /** Whether to skip login in local environment */
+    skipLoginLocal: boolean;
+    /**
+     * Create a new BarndoorConfig instance.
+     * @param options - Configuration options
+     */
+    constructor(options?: BarndoorConfigOptions);
+    /**
+     * Set environment-specific default URLs.
+     * @private
+     */
+    private _setEnvironmentDefaults;
+    /**
+     * Get static configuration (without organization ID substitution).
+     * @returns Static configuration instance
+     */
+    static getStaticConfig(): BarndoorConfig;
+    /**
+     * Get dynamic configuration with organization ID substituted.
+     * @param jwtToken - JWT token to extract organization ID from
+     * @param options - Configuration options
+     * @returns Dynamic configuration instance
+     */
+    static getDynamicConfig(jwtToken: string, options?: {
+        /** Whether to throw error for tokens without organization info */
+        requireOrganization?: boolean;
+        /** Fallback organization ID to use if none found in token */
+        fallbackOrganizationId?: string;
+    }): BarndoorConfig;
+    /**
+     * Validate the configuration.
+     * @throws ConfigurationError if configuration is invalid
+     */
+    validate(): void;
+}
+/**
+ * Result of organization ID extraction from JWT token.
+ */
+interface OrganizationExtractionResult {
+    /** Organization ID if found */
+    organizationId?: string;
+    /** Whether organization ID was found */
+    hasOrganization: boolean;
+    /** Error message if extraction failed */
+    error?: string;
+}
+/**
+ * Get static configuration instance.
+ * @returns Static configuration instance
+ */
+export declare function getStaticConfig(): BarndoorConfig;
+/**
+ * Get dynamic configuration with organization ID substituted.
+ * @param jwtToken - JWT token
+ * @param options - Configuration options
+ * @returns Dynamic configuration instance
+ */
+export declare function getDynamicConfig(jwtToken: string, options?: {
+    requireOrganization?: boolean;
+    fallbackOrganizationId?: string;
+}): BarndoorConfig;
+/**
+ * Check if a JWT token contains organization information.
+ * @param jwtToken - JWT token to check
+ * @returns Object with organization info and any error details
+ */
+export declare function checkTokenOrganization(jwtToken: string): OrganizationExtractionResult;
+/**
+ * Check if a JWT token has organization information (simple boolean check).
+ * @param jwtToken - JWT token to check
+ * @returns True if token contains organization information
+ */
+export declare function hasOrganizationInfo(jwtToken: string): boolean;
+export {};
+//# sourceMappingURL=config.d.ts.map

package/dist/config.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"config.d.ts","sourceRoot":"","sources":["../src/config.ts"],"names":[],"mappings":"AAAA;;;;;;GAMG;AAIH;;;;;GAKG;AACH,eAAO,MAAM,SAAS,EAAE,OACiD,CAAC;AAC1E,eAAO,MAAM,MAAM,EAAE,OAIU,CAAC;AAEhC;;GAEG;AACH,OAAO,CAAC,MAAM,CAAC;IACb,UAAU,MAAM;QACd,GAAG,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;KAC9B;CACF;AAED;;GAEG;AACH,MAAM,WAAW,qBAAqB;IACpC,mBAAmB;IACnB,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB,sBAAsB;IACtB,QAAQ,CAAC,EAAE,MAAM,CAAC;IAClB,0BAA0B;IAC1B,YAAY,CAAC,EAAE,MAAM,CAAC;IACtB,8BAA8B;IAC9B,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,4BAA4B;IAC5B,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB,4BAA4B;IAC5B,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB,uBAAuB;IACvB,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,kCAAkC;IAClC,cAAc,CAAC,EAAE,OAAO,CAAC;IACzB,iDAAiD;IACjD,cAAc,CAAC,EAAE,OAAO,CAAC;CAC1B;AAeD;;;;;GAKG;AACH,qBAAa,cAAc;IACzB,mBAAmB;IACZ,UAAU,EAAE,MAAM,CAAC;IAC1B,sBAAsB;IACf,QAAQ,EAAE,MAAM,CAAC;IACxB,0BAA0B;IACnB,YAAY,EAAE,MAAM,CAAC;IAC5B,8BAA8B;IACvB,WAAW,EAAE,MAAM,CAAC;IAC3B,4BAA4B;IACrB,UAAU,EAAE,MAAM,CAAC;IAC1B,4BAA4B;IACrB,UAAU,EAAE,MAAM,CAAC;IAC1B,uBAAuB;IAChB,WAAW,EAAE,MAAM,CAAC;IAC3B,kCAAkC;IAC3B,cAAc,EAAE,OAAO,CAAC;IAC/B,iDAAiD;IAC1C,cAAc,EAAE,OAAO,CAAC;IAE/B;;;OAGG;gBACS,OAAO,GAAE,qBAA0B;IAuB/C;;;OAGG;IACH,OAAO,CAAC,uBAAuB;IA8B/B;;;OAGG;WACW,eAAe,IAAI,cAAc;IAI/C;;;;;OAKG;WACW,gBAAgB,CAC5B,QAAQ,EAAE,MAAM,EAChB,OAAO,GAAE;QACP,kEAAkE;QAClE,mBAAmB,CAAC,EAAE,OAAO,CAAC;QAC9B,6DAA6D;QAC7D,sBAAsB,CAAC,EAAE,MAAM,CAAC;KAC5B,GACL,cAAc;IA4CjB;;;OAGG;IACI,QAAQ,IAAI,IAAI;CAiBxB;AA+BD;;GAEG;AACH,UAAU,4BAA4B;IACpC,+BAA+B;IAC/B,cAAc,CAAC,EAAE,MAAM,CAAC;IACxB,wCAAwC;IACxC,eAAe,EAAE,OAAO,CAAC;IACzB,yCAAyC;IACzC,KAAK,CAAC,EAAE,MAAM,CAAC;CAChB;AA4ED;;;GAGG;AACH,wBAAgB,eAAe,IAAI,cAAc,CAEhD;AAED;;;;;GAKG;AACH,wBAAgB,gBAAgB,CAC9B,QAAQ,EAAE,MAAM,EAChB,OAAO,CAAC,EAAE;IACR,mBAAmB,CAAC,EAAE,OAAO,CAAC;IAC9B,sBAAsB,CAAC,EAAE,MAAM,CAAC;CACjC,GACA,cAAc,CAEhB;AAED;;;;GAIG;AACH,wBAAgB,sBAAsB,CAAC,QAAQ,EAAE,MAAM,GAAG,4BAA4B,CAErF;AAED;;;;GAIG;AACH,wBAAgB,mBAAmB,CAAC,QAAQ,EAAE,MAAM,GAAG,OAAO,CAE7D"}