@barndoor-ai/sdk 1.0.2 → 1.2.0

package/dist/auth/clientCredentials.d.ts

@@ -0,0 +1,67 @@
+/**
+ * OAuth 2.0 client-credentials (machine-to-machine) grant support.
+ *
+ * Mirrors the Python SDK's `get_client_credentials_token` /
+ * `get_client_credentials_token_async` helpers (PR #78).
+ */
+/**
+ * Parameters for the client-credentials grant.
+ */
+export interface ClientCredentialsParams {
+    /** OAuth client ID for a Barndoor M2M application. */
+    clientId: string;
+    /** OAuth client secret. */
+    clientSecret: string;
+    /** API audience identifier (e.g., `https://barndoor.ai/`). */
+    audience: string;
+    /**
+     * OIDC issuer URL. Preferred over `domain`; OIDC discovery is used to
+     * locate the token endpoint.
+     */
+    issuer?: string;
+    /**
+     * Legacy auth domain (POSTs directly to `https://{domain}/oauth/token`).
+     * Provide either `issuer` or `domain`.
+     */
+    domain?: string;
+    /** Request timeout in milliseconds (default: 15000). */
+    timeoutMs?: number;
+}
+/**
+ * Resolve the token endpoint and form body for a client-credentials grant.
+ * @internal
+ */
+export declare function _resolveClientCredentialsRequest(params: ClientCredentialsParams): Promise<{
+    tokenEndpoint: string;
+    body: URLSearchParams;
+}>;
+/**
+ * Perform the OAuth 2.0 client-credentials grant against the auth server
+ * and return the issued access token.
+ *
+ * Suitable for headless / machine-to-machine use cases where no interactive
+ * user is available. The token is returned directly without caching; for
+ * a ready-to-use SDK instance with automatic refresh, prefer
+ * {@link BarndoorSDK.fromClientCredentials}.
+ *
+ * @example
+ * ```ts
+ * const token = await getClientCredentialsToken({
+ *   clientId: process.env.BARNDOOR_M2M_CLIENT_ID!,
+ *   clientSecret: process.env.BARNDOOR_M2M_CLIENT_SECRET!,
+ *   audience: 'https://barndoor.ai/',
+ *   issuer: 'https://auth.barndoor.ai/realms/barndoor',
+ * });
+ * ```
+ */
+export declare function getClientCredentialsToken(params: ClientCredentialsParams): Promise<string>;
+/**
+ * Return true if the given JWT's `exp` claim is within `skewSeconds` of now.
+ *
+ * Tokens that cannot be parsed or have no `exp` claim are treated as
+ * already expired so callers err on the side of refreshing.
+ *
+ * @internal
+ */
+export declare function _tokenNearExpiry(token: string, skewSeconds: number): boolean;
+//# sourceMappingURL=clientCredentials.d.ts.map

package/dist/auth/clientCredentials.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"clientCredentials.d.ts","sourceRoot":"","sources":["../../src/auth/clientCredentials.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAQH;;GAEG;AACH,MAAM,WAAW,uBAAuB;IACtC,sDAAsD;IACtD,QAAQ,EAAE,MAAM,CAAC;IACjB,2BAA2B;IAC3B,YAAY,EAAE,MAAM,CAAC;IACrB,8DAA8D;IAC9D,QAAQ,EAAE,MAAM,CAAC;IACjB;;;OAGG;IACH,MAAM,CAAC,EAAE,MAAM,CAAC;IAChB;;;OAGG;IACH,MAAM,CAAC,EAAE,MAAM,CAAC;IAChB,wDAAwD;IACxD,SAAS,CAAC,EAAE,MAAM,CAAC;CACpB;AAED;;;GAGG;AACH,wBAAsB,gCAAgC,CACpD,MAAM,EAAE,uBAAuB,GAC9B,OAAO,CAAC;IAAE,aAAa,EAAE,MAAM,CAAC;IAAC,IAAI,EAAE,eAAe,CAAA;CAAE,CAAC,CAqB3D;AAED;;;;;;;;;;;;;;;;;;GAkBG;AACH,wBAAsB,yBAAyB,CAAC,MAAM,EAAE,uBAAuB,GAAG,OAAO,CAAC,MAAM,CAAC,CA6ChG;AAED;;;;;;;GAOG;AACH,wBAAgB,gBAAgB,CAAC,KAAK,EAAE,MAAM,EAAE,WAAW,EAAE,MAAM,GAAG,OAAO,CAyB5E"}

package/dist/auth/index.d.ts

@@ -5,6 +5,8 @@
  * including PKCE OAuth flows, token storage, and interactive login.
  */
 export { PKCEManager, startLocalCallbackServer } from './pkce';
+export { getClientCredentialsToken, _tokenNearExpiry } from './clientCredentials';
+export type { ClientCredentialsParams } from './clientCredentials';
 export { getTokenStorage, TokenManager, loadUserToken, saveUserToken, clearCachedToken, verifyJWTLocal, JWTVerificationResult, isTokenActive, isTokenActiveWithRefresh, validateToken, setTokenLogger, getOidcConfig, clearOidcConfigCache, } from './store';
 export type { OidcConfig } from './store';
 export type { AuthorizationUrlParams, TokenExchangeParams, PKCEState } from './pkce';

package/dist/auth/index.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/auth/index.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAEH,OAAO,EAAE,WAAW,EAAE,wBAAwB,EAAE,MAAM,QAAQ,CAAC;AAE/D,OAAO,EACL,eAAe,EACf,YAAY,EACZ,aAAa,EACb,aAAa,EACb,gBAAgB,EAChB,cAAc,EACd,qBAAqB,EACrB,aAAa,EACb,wBAAwB,EACxB,aAAa,EACb,cAAc,EACd,aAAa,EACb,oBAAoB,GACrB,MAAM,SAAS,CAAC;AAGjB,YAAY,EAAE,UAAU,EAAE,MAAM,SAAS,CAAC;AAG1C,YAAY,EAAE,sBAAsB,EAAE,mBAAmB,EAAE,SAAS,EAAE,MAAM,QAAQ,CAAC;AACrF,YAAY,EAAE,SAAS,EAAE,MAAM,SAAS,CAAC"}
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/auth/index.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAEH,OAAO,EAAE,WAAW,EAAE,wBAAwB,EAAE,MAAM,QAAQ,CAAC;AAE/D,OAAO,EAAE,yBAAyB,EAAE,gBAAgB,EAAE,MAAM,qBAAqB,CAAC;AAClF,YAAY,EAAE,uBAAuB,EAAE,MAAM,qBAAqB,CAAC;AAEnE,OAAO,EACL,eAAe,EACf,YAAY,EACZ,aAAa,EACb,aAAa,EACb,gBAAgB,EAChB,cAAc,EACd,qBAAqB,EACrB,aAAa,EACb,wBAAwB,EACxB,aAAa,EACb,cAAc,EACd,aAAa,EACb,oBAAoB,GACrB,MAAM,SAAS,CAAC;AAGjB,YAAY,EAAE,UAAU,EAAE,MAAM,SAAS,CAAC;AAG1C,YAAY,EAAE,sBAAsB,EAAE,mBAAmB,EAAE,SAAS,EAAE,MAAM,QAAQ,CAAC;AACrF,YAAY,EAAE,SAAS,EAAE,MAAM,SAAS,CAAC"}

package/dist/auth/store.d.ts

@@ -20,7 +20,7 @@ export interface OidcConfig {
  * Fetch and cache OIDC configuration from the issuer's discovery endpoint.
  *
  * @param issuer - The OIDC issuer URL (e.g., https://auth.barndoor.ai or
- *                 https://auth.barndoordev.com/realms/barndoor)
+ *                 https://auth.barndoor.ai/realms/barndoor)
  * @returns OIDC configuration containing endpoints like token_endpoint, jwks_uri, etc.
  */
 export declare function getOidcConfig(issuer: string): Promise<OidcConfig>;

package/dist/client.d.ts

@@ -5,6 +5,7 @@
  * SDK's client.py functionality with 100% API compatibility.
  */
 import { ServerSummary, ServerDetail } from './models';
+import { ClientCredentialsParams } from './auth/clientCredentials';
 /**
  * Configuration options for BarndoorSDK constructor.
  */
@@ -40,6 +41,15 @@ export interface ConnectionStatusResponse {
     /** Current connection status */
     status: string;
 }
+/**
+ * Options for {@link BarndoorSDK.fromClientCredentials}.
+ */
+export interface FromClientCredentialsOptions extends ClientCredentialsParams {
+    /** Request timeout in seconds for API calls (default: 30). */
+    timeout?: number;
+    /** Maximum number of retries for API calls (default: 3). */
+    maxRetries?: number;
+}
 /**
  * Async client for interacting with the Barndoor Platform API.
  *
@@ -62,6 +72,8 @@ export declare class BarndoorSDK {
     private _tokenValidated;
     /** Whether the SDK has been closed */
     private _closed;
+    /** Cached client-credentials parameters for automatic token refresh. */
+    private _credentials;
     /** Scoped logger for this SDK instance */
     private readonly _logger;
     /**
@@ -70,6 +82,30 @@ export declare class BarndoorSDK {
      * @param options - Configuration options (token is optional)
      */
     constructor(apiBaseUrl: string, options?: BarndoorSDKOptions);
+    /**
+     * Build a {@link BarndoorSDK} authenticated via the OAuth 2.0
+     * client-credentials (machine-to-machine) grant.
+     *
+     * Performs the grant against the Barndoor auth server and returns a
+     * ready-to-use SDK instance. The credentials are retained on the
+     * instance so the access token can be refreshed automatically when it
+     * nears expiry or when the API responds with 401.
+     *
+     * @example
+     * ```ts
+     * const sdk = await BarndoorSDK.fromClientCredentials(
+     *   'https://api.barndoor.host',
+     *   {
+     *     clientId: process.env.BARNDOOR_M2M_CLIENT_ID!,
+     *     clientSecret: process.env.BARNDOOR_M2M_CLIENT_SECRET!,
+     *     audience: 'https://barndoor.ai/',
+     *     issuer: 'https://auth.barndoor.ai/realms/barndoor',
+     *   }
+     * );
+     * const servers = await sdk.listServers();
+     * ```
+     */
+    static fromClientCredentials(apiBaseUrl: string, options: FromClientCredentialsOptions): Promise<BarndoorSDK>;
     /**
      * Get the current token.
      */
@@ -99,6 +135,18 @@ export declare class BarndoorSDK {
      * @private
      */
     private _req;
+    /**
+     * Refresh the M2M access token if it is near expiry.
+     *
+     * No-op for SDK instances not created via {@link BarndoorSDK.fromClientCredentials}.
+     * @private
+     */
+    private _maybeRefreshM2MToken;
+    /**
+     * Unconditionally fetch a fresh M2M token using stored credentials.
+     * @private
+     */
+    private _refreshM2MToken;
     /**
      * Validate the cached token by making a test API call.
      * @returns True if the token is valid
@@ -152,6 +200,56 @@ export declare class BarndoorSDK {
      * @private
      */
     private _isUuid;
+    /**
+     * List policies with pagination and filtering.
+     * @param page - Page number for pagination (default: 1)
+     * @param limit - Number of items per page (default: 10)
+     * @param filters - Additional query parameters for filtering
+     * @returns Paginated response containing policies
+     */
+    listPolicies(page?: number, limit?: number, filters?: Record<string, any>): Promise<any>;
+    /**
+     * Get detailed information about a specific policy.
+     * @param policyId - Unique identifier of the policy
+     * @returns Policy details
+     */
+    getPolicy(policyId: string): Promise<any>;
+    /**
+     * Create a new policy.
+     * @param policyData - Policy configuration data
+     * @returns Created policy details
+     */
+    createPolicy(policyData: any): Promise<any>;
+    /**
+     * Update an existing policy.
+     * @param policyId - Unique identifier of the policy to update
+     * @param policyData - Updated policy configuration data
+     * @returns Updated policy details
+     */
+    updatePolicy(policyId: string, policyData: any): Promise<any>;
+    /**
+     * Clone an existing policy.
+     * @param policyId - Unique identifier of the policy to clone
+     * @param newName - Name for the cloned policy
+     * @returns Cloned policy details
+     */
+    clonePolicy(policyId: string, newName: string): Promise<any>;
+    /**
+     * Validate policy configuration.
+     * @param validationData - Policy data to validate
+     * @returns Validation result
+     */
+    validatePolicy(validationData: any): Promise<any>;
+    /**
+     * Get summary of all policies.
+     * @returns Policy summary information
+     */
+    getPolicySummary(): Promise<any>;
+    /**
+     * Get available filter definitions for policies.
+     * @returns Available filter categories and options
+     */
+    getPolicyFilterDefinitions(): Promise<any>;
     /**
      * Close the SDK and clean up resources.
      */

package/dist/client.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"client.d.ts","sourceRoot":"","sources":["../src/client.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAGH,OAAO,EAAE,aAAa,EAAE,YAAY,EAAE,MAAM,UAAU,CAAC;AAQvD;;GAEG;AACH,MAAM,WAAW,kBAAkB;IACjC,sEAAsE;IACtE,KAAK,CAAC,EAAE,MAAM,CAAC;IACf,kDAAkD;IAClD,mBAAmB,CAAC,EAAE,OAAO,CAAC;IAC9B,iCAAiC;IACjC,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,gCAAgC;IAChC,UAAU,CAAC,EAAE,MAAM,CAAC;CACrB;AAsBD;;GAEG;AACH,MAAM,WAAW,4BAA4B;IAC3C,6CAA6C;IAC7C,WAAW,CAAC,EAAE,MAAM,CAAC;CACtB;AAED;;GAEG;AACH,MAAM,WAAW,4BAA4B;IAC3C,8BAA8B;IAC9B,QAAQ,CAAC,EAAE,MAAM,CAAC;IAClB,CAAC,GAAG,EAAE,MAAM,GAAG,OAAO,CAAC;CACxB;AAED;;GAEG;AACH,MAAM,WAAW,wBAAwB;IACvC,gCAAgC;IAChC,MAAM,EAAE,MAAM,CAAC;CAChB;AAED;;;;;;;;;;GAUG;AACH,qBAAa,WAAW;IACtB,mCAAmC;IACnC,SAAgB,IAAI,EAAE,MAAM,CAAC;IAC7B,qBAAqB;IACrB,OAAO,CAAC,MAAM,CAAgB;IAC9B,2BAA2B;IAC3B,OAAO,CAAC,QAAQ,CAAC,KAAK,CAAa;IACnC,uCAAuC;IACvC,OAAO,CAAC,eAAe,CAAU;IACjC,sCAAsC;IACtC,OAAO,CAAC,OAAO,CAAU;IACzB,0CAA0C;IAC1C,OAAO,CAAC,QAAQ,CAAC,OAAO,CAAgC;IAExD;;;;OAIG;gBACS,UAAU,EAAE,MAAM,EAAE,OAAO,GAAE,kBAAuB;IA2BhE;;OAEG;IACH,IAAW,KAAK,IAAI,MAAM,CAOzB;IAED;;;OAGG;IACU,YAAY,CAAC,KAAK,EAAE,MAAM,GAAG,OAAO,CAAC,IAAI,CAAC;IAUvD;;;OAGG;IACH,OAAO,CAAC,YAAY;IAapB;;;OAGG;IACH,OAAO,CAAC,cAAc;IActB;;;OAGG;IACH,OAAO,CAAC,gBAAgB;IAMxB;;;OAGG;YACW,IAAI;IAelB;;;OAGG;IACU,mBAAmB,IAAI,OAAO,CAAC,OAAO,CAAC;IAqCpD;;OAEG;IACU,gBAAgB,IAAI,OAAO,CAAC,IAAI,CAAC;IA4B9C;;;;OAIG;IACU,WAAW,IAAI,OAAO,CAAC,aAAa,EAAE,CAAC;IA0BpD;;;;OAIG;IACU,SAAS,CAAC,QAAQ,EAAE,MAAM,GAAG,OAAO,CAAC,YAAY,CAAC;IAY/D;;;;;OAKG;IACU,kBAAkB,CAC7B,QAAQ,EAAE,MAAM,EAChB,SAAS,CAAC,EAAE,MAAM,GACjB,OAAO,CAAC,4BAA4B,CAAC;IAqCxC;;;;OAIG;IACU,mBAAmB,CAAC,QAAQ,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC;IAYnE;;;;;;;OAOG;IACU,gBAAgB,CAAC,QAAQ,EAAE,MAAM,GAAG,OAAO,CAAC,IAAI,CAAC;IAsB9D;;;OAGG;IACH,OAAO,CAAC,iBAAiB;IAkBzB;;;OAGG;IACH,OAAO,CAAC,OAAO;IAKf;;OAEG;IACU,KAAK,IAAI,OAAO,CAAC,IAAI,CAAC;IAOnC;;OAEG;IACU,MAAM,IAAI,OAAO,CAAC,IAAI,CAAC;IAIpC;;;;OAIG;IACU,qBAAqB,CAChC,gBAAgB,EAAE,MAAM,EACxB,OAAO,GAAE,4BAAiC,GACzC,OAAO,CAAC,IAAI,CAAC;CA4EjB"}
+{"version":3,"file":"client.d.ts","sourceRoot":"","sources":["../src/client.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAGH,OAAO,EAAE,aAAa,EAAE,YAAY,EAAE,MAAM,UAAU,CAAC;AAIvD,OAAO,EACL,uBAAuB,EAGxB,MAAM,0BAA0B,CAAC;AAQlC;;GAEG;AACH,MAAM,WAAW,kBAAkB;IACjC,sEAAsE;IACtE,KAAK,CAAC,EAAE,MAAM,CAAC;IACf,kDAAkD;IAClD,mBAAmB,CAAC,EAAE,OAAO,CAAC;IAC9B,iCAAiC;IACjC,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,gCAAgC;IAChC,UAAU,CAAC,EAAE,MAAM,CAAC;CACrB;AAsBD;;GAEG;AACH,MAAM,WAAW,4BAA4B;IAC3C,6CAA6C;IAC7C,WAAW,CAAC,EAAE,MAAM,CAAC;CACtB;AAED;;GAEG;AACH,MAAM,WAAW,4BAA4B;IAC3C,8BAA8B;IAC9B,QAAQ,CAAC,EAAE,MAAM,CAAC;IAClB,CAAC,GAAG,EAAE,MAAM,GAAG,OAAO,CAAC;CACxB;AAED;;GAEG;AACH,MAAM,WAAW,wBAAwB;IACvC,gCAAgC;IAChC,MAAM,EAAE,MAAM,CAAC;CAChB;AAED;;GAEG;AACH,MAAM,WAAW,4BAA6B,SAAQ,uBAAuB;IAC3E,8DAA8D;IAC9D,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,4DAA4D;IAC5D,UAAU,CAAC,EAAE,MAAM,CAAC;CACrB;AAED;;;;;;;;;;GAUG;AACH,qBAAa,WAAW;IACtB,mCAAmC;IACnC,SAAgB,IAAI,EAAE,MAAM,CAAC;IAC7B,qBAAqB;IACrB,OAAO,CAAC,MAAM,CAAgB;IAC9B,2BAA2B;IAC3B,OAAO,CAAC,QAAQ,CAAC,KAAK,CAAa;IACnC,uCAAuC;IACvC,OAAO,CAAC,eAAe,CAAU;IACjC,sCAAsC;IACtC,OAAO,CAAC,OAAO,CAAU;IACzB,wEAAwE;IACxE,OAAO,CAAC,YAAY,CAAwC;IAC5D,0CAA0C;IAC1C,OAAO,CAAC,QAAQ,CAAC,OAAO,CAAgC;IAExD;;;;OAIG;gBACS,UAAU,EAAE,MAAM,EAAE,OAAO,GAAE,kBAAuB;IA2BhE;;;;;;;;;;;;;;;;;;;;;;OAsBG;WACiB,qBAAqB,CACvC,UAAU,EAAE,MAAM,EAClB,OAAO,EAAE,4BAA4B,GACpC,OAAO,CAAC,WAAW,CAAC;IAiBvB;;OAEG;IACH,IAAW,KAAK,IAAI,MAAM,CAOzB;IAED;;;OAGG;IACU,YAAY,CAAC,KAAK,EAAE,MAAM,GAAG,OAAO,CAAC,IAAI,CAAC;IAUvD;;;OAGG;IACH,OAAO,CAAC,YAAY;IAapB;;;OAGG;IACH,OAAO,CAAC,cAAc;IActB;;;OAGG;IACH,OAAO,CAAC,gBAAgB;IAMxB;;;OAGG;YACW,IAAI;IA6BlB;;;;;OAKG;YACW,qBAAqB;IAWnC;;;OAGG;YACW,gBAAgB;IAU9B;;;OAGG;IACU,mBAAmB,IAAI,OAAO,CAAC,OAAO,CAAC;IAqCpD;;OAEG;IACU,gBAAgB,IAAI,OAAO,CAAC,IAAI,CAAC;IA4B9C;;;;OAIG;IACU,WAAW,IAAI,OAAO,CAAC,aAAa,EAAE,CAAC;IA0BpD;;;;OAIG;IACU,SAAS,CAAC,QAAQ,EAAE,MAAM,GAAG,OAAO,CAAC,YAAY,CAAC;IAY/D;;;;;OAKG;IACU,kBAAkB,CAC7B,QAAQ,EAAE,MAAM,EAChB,SAAS,CAAC,EAAE,MAAM,GACjB,OAAO,CAAC,4BAA4B,CAAC;IAqCxC;;;;OAIG;IACU,mBAAmB,CAAC,QAAQ,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC;IAYnE;;;;;;;OAOG;IACU,gBAAgB,CAAC,QAAQ,EAAE,MAAM,GAAG,OAAO,CAAC,IAAI,CAAC;IAsB9D;;;OAGG;IACH,OAAO,CAAC,iBAAiB;IAkBzB;;;OAGG;IACH,OAAO,CAAC,OAAO;IAOf;;;;;;OAMG;IACU,YAAY,CAAC,IAAI,SAAI,EAAE,KAAK,SAAK,EAAE,OAAO,GAAE,MAAM,CAAC,MAAM,EAAE,GAAG,CAAM,GAAG,OAAO,CAAC,GAAG,CAAC;IAahG;;;;OAIG;IACU,SAAS,CAAC,QAAQ,EAAE,MAAM,GAAG,OAAO,CAAC,GAAG,CAAC;IAYtD;;;;OAIG;IACU,YAAY,CAAC,UAAU,EAAE,GAAG,GAAG,OAAO,CAAC,GAAG,CAAC;IASxD;;;;;OAKG;IACU,YAAY,CAAC,QAAQ,EAAE,MAAM,EAAE,UAAU,EAAE,GAAG,GAAG,OAAO,CAAC,GAAG,CAAC;IAe1E;;;;;OAKG;IACU,WAAW,CAAC,QAAQ,EAAE,MAAM,EAAE,OAAO,EAAE,MAAM,GAAG,OAAO,CAAC,GAAG,CAAC;IAezE;;;;OAIG;IACU,cAAc,CAAC,cAAc,EAAE,GAAG,GAAG,OAAO,CAAC,GAAG,CAAC;IAS9D;;;OAGG;IACU,gBAAgB,IAAI,OAAO,CAAC,GAAG,CAAC;IAK7C;;;OAGG;IACU,0BAA0B,IAAI,OAAO,CAAC,GAAG,CAAC;IAKvD;;OAEG;IACU,KAAK,IAAI,OAAO,CAAC,IAAI,CAAC;IAOnC;;OAEG;IACU,MAAM,IAAI,OAAO,CAAC,IAAI,CAAC;IAIpC;;;;OAIG;IACU,qBAAqB,CAChC,gBAAgB,EAAE,MAAM,EACxB,OAAO,GAAE,4BAAiC,GACzC,OAAO,CAAC,IAAI,CAAC;CA4EjB"}

package/dist/index.d.ts

@@ -28,11 +28,12 @@
  * ```
  */
 export { BarndoorSDK } from './client';
+export type { FromClientCredentialsOptions } from './client';
 export { BarndoorError, AuthenticationError, TokenError, TokenExpiredError, TokenValidationError, ConnectionError, HTTPError, ServerNotFoundError, OAuthError, ConfigurationError, TimeoutError, } from './exceptions';
 export { ServerSummary, ServerDetail, AgentToken } from './models';
 export { loginInteractive, ensureServerConnected, makeMcpConnectionParams, makeMcpClient, } from './quickstart';
-export { PKCEManager, startLocalCallbackServer, loadUserToken, saveUserToken, clearCachedToken, setTokenLogger, verifyJWTLocal, JWTVerificationResult, isTokenActive, isTokenActiveWithRefresh, validateToken, TokenManager, getOidcConfig, clearOidcConfigCache, } from './auth';
-export type { OidcConfig } from './auth';
+export { PKCEManager, startLocalCallbackServer, loadUserToken, saveUserToken, clearCachedToken, setTokenLogger, verifyJWTLocal, JWTVerificationResult, isTokenActive, isTokenActiveWithRefresh, validateToken, TokenManager, getOidcConfig, clearOidcConfigCache, getClientCredentialsToken, } from './auth';
+export type { OidcConfig, ClientCredentialsParams } from './auth';
 export { AUTH_CONFIG, BarndoorConfig, getStaticConfig, getDynamicConfig, checkTokenOrganization, hasOrganizationInfo, isBrowser, isNode, } from './config';
 export { setLogger, getLogger, createScopedLogger, debug, info, warn, error } from './logging';
 export type { Logger } from './logging';

package/dist/index.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;;;;;;;;;;;;;GA4BG;AAGH,OAAO,EAAE,WAAW,EAAE,MAAM,UAAU,CAAC;AAGvC,OAAO,EACL,aAAa,EACb,mBAAmB,EACnB,UAAU,EACV,iBAAiB,EACjB,oBAAoB,EACpB,eAAe,EACf,SAAS,EACT,mBAAmB,EACnB,UAAU,EACV,kBAAkB,EAClB,YAAY,GACb,MAAM,cAAc,CAAC;AAGtB,OAAO,EAAE,aAAa,EAAE,YAAY,EAAE,UAAU,EAAE,MAAM,UAAU,CAAC;AAGnE,OAAO,EACL,gBAAgB,EAChB,qBAAqB,EACrB,uBAAuB,EACvB,aAAa,GACd,MAAM,cAAc,CAAC;AAGtB,OAAO,EACL,WAAW,EACX,wBAAwB,EACxB,aAAa,EACb,aAAa,EACb,gBAAgB,EAChB,cAAc,EACd,cAAc,EACd,qBAAqB,EACrB,aAAa,EACb,wBAAwB,EACxB,aAAa,EACb,YAAY,EACZ,aAAa,EACb,oBAAoB,GACrB,MAAM,QAAQ,CAAC;AAChB,YAAY,EAAE,UAAU,EAAE,MAAM,QAAQ,CAAC;AAGzC,OAAO,EACL,WAAW,EACX,cAAc,EACd,eAAe,EACf,gBAAgB,EAChB,sBAAsB,EACtB,mBAAmB,EACnB,SAAS,EACT,MAAM,GACP,MAAM,UAAU,CAAC;AAGlB,OAAO,EAAE,SAAS,EAAE,SAAS,EAAE,kBAAkB,EAAE,KAAK,EAAE,IAAI,EAAE,IAAI,EAAE,KAAK,EAAE,MAAM,WAAW,CAAC;AAC/F,YAAY,EAAE,MAAM,EAAE,MAAM,WAAW,CAAC;AAGxC,OAAO,EAAE,OAAO,EAAE,MAAM,WAAW,CAAC"}
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;;;;;;;;;;;;;GA4BG;AAGH,OAAO,EAAE,WAAW,EAAE,MAAM,UAAU,CAAC;AACvC,YAAY,EAAE,4BAA4B,EAAE,MAAM,UAAU,CAAC;AAG7D,OAAO,EACL,aAAa,EACb,mBAAmB,EACnB,UAAU,EACV,iBAAiB,EACjB,oBAAoB,EACpB,eAAe,EACf,SAAS,EACT,mBAAmB,EACnB,UAAU,EACV,kBAAkB,EAClB,YAAY,GACb,MAAM,cAAc,CAAC;AAGtB,OAAO,EAAE,aAAa,EAAE,YAAY,EAAE,UAAU,EAAE,MAAM,UAAU,CAAC;AAGnE,OAAO,EACL,gBAAgB,EAChB,qBAAqB,EACrB,uBAAuB,EACvB,aAAa,GACd,MAAM,cAAc,CAAC;AAGtB,OAAO,EACL,WAAW,EACX,wBAAwB,EACxB,aAAa,EACb,aAAa,EACb,gBAAgB,EAChB,cAAc,EACd,cAAc,EACd,qBAAqB,EACrB,aAAa,EACb,wBAAwB,EACxB,aAAa,EACb,YAAY,EACZ,aAAa,EACb,oBAAoB,EACpB,yBAAyB,GAC1B,MAAM,QAAQ,CAAC;AAChB,YAAY,EAAE,UAAU,EAAE,uBAAuB,EAAE,MAAM,QAAQ,CAAC;AAGlE,OAAO,EACL,WAAW,EACX,cAAc,EACd,eAAe,EACf,gBAAgB,EAChB,sBAAsB,EACtB,mBAAmB,EACnB,SAAS,EACT,MAAM,GACP,MAAM,UAAU,CAAC;AAGlB,OAAO,EAAE,SAAS,EAAE,SAAS,EAAE,kBAAkB,EAAE,KAAK,EAAE,IAAI,EAAE,IAAI,EAAE,KAAK,EAAE,MAAM,WAAW,CAAC;AAC/F,YAAY,EAAE,MAAM,EAAE,MAAM,WAAW,CAAC;AAGxC,OAAO,EAAE,OAAO,EAAE,MAAM,WAAW,CAAC"}