@corti/sdk 0.7.0 → 0.8.0-rc.1

package/dist/cjs/custom/proxy/CustomProxyStream.js

@@ -0,0 +1,57 @@
+"use strict";
+/**
+ * Patch: Proxy-specific Stream wrapper that enforces `proxy` as required.
+ *
+ * Reuses the underlying CustomStream class to preserve the logic we added on top
+ * of generated sockets (e.g., sending configuration messages, handling responses).
+ */
+var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    var desc = Object.getOwnPropertyDescriptor(m, k);
+    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
+      desc = { enumerable: true, get: function() { return m[k]; } };
+    }
+    Object.defineProperty(o, k2, desc);
+}) : (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    o[k2] = m[k];
+}));
+var __setModuleDefault = (this && this.__setModuleDefault) || (Object.create ? (function(o, v) {
+    Object.defineProperty(o, "default", { enumerable: true, value: v });
+}) : function(o, v) {
+    o["default"] = v;
+});
+var __importStar = (this && this.__importStar) || (function () {
+    var ownKeys = function(o) {
+        ownKeys = Object.getOwnPropertyNames || function (o) {
+            var ar = [];
+            for (var k in o) if (Object.prototype.hasOwnProperty.call(o, k)) ar[ar.length] = k;
+            return ar;
+        };
+        return ownKeys(o);
+    };
+    return function (mod) {
+        if (mod && mod.__esModule) return mod;
+        var result = {};
+        if (mod != null) for (var k = ownKeys(mod), i = 0; i < k.length; i++) if (k[i] !== "default") __createBinding(result, mod, k[i]);
+        __setModuleDefault(result, mod);
+        return result;
+    };
+})();
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.CustomProxyStream = void 0;
+const environments = __importStar(require("../../environments.js"));
+const CustomStream_js_1 = require("../CustomStream.js");
+class CustomProxyStream {
+    constructor() {
+        this._stream = new CustomStream_js_1.Stream({
+            environment: environments.CortiEnvironment.Eu,
+            tenantName: "",
+        });
+    }
+    connect(args) {
+        // id is not used in proxy mode, but required by the underlying type
+        return this._stream.connect(Object.assign(Object.assign({}, args), { id: "" }));
+    }
+}
+exports.CustomProxyStream = CustomProxyStream;

package/dist/cjs/custom/proxy/CustomProxyTranscribe.d.ts

@@ -0,0 +1,24 @@
+/**
+ * Patch: Proxy-specific Transcribe wrapper that enforces `proxy` as required.
+ *
+ * Reuses the underlying CustomTranscribe class to preserve the logic we added on top
+ * of generated sockets (e.g., sending configuration messages, handling responses).
+ */
+import * as api from "../../api/index.js";
+import { TranscribeSocket } from "../CustomTranscribeSocket.js";
+export type ProxyOptions = {
+    url: string;
+    protocols?: string[];
+    queryParameters?: Record<string, string>;
+};
+export declare class CustomProxyTranscribe {
+    private _transcribe;
+    constructor();
+    connect(args: {
+        proxy: ProxyOptions;
+        configuration?: api.TranscribeConfig;
+        headers?: Record<string, string>;
+        debug?: boolean;
+        reconnectAttempts?: number;
+    }): Promise<TranscribeSocket>;
+}

package/dist/cjs/custom/proxy/CustomProxyTranscribe.js

@@ -0,0 +1,56 @@
+"use strict";
+/**
+ * Patch: Proxy-specific Transcribe wrapper that enforces `proxy` as required.
+ *
+ * Reuses the underlying CustomTranscribe class to preserve the logic we added on top
+ * of generated sockets (e.g., sending configuration messages, handling responses).
+ */
+var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    var desc = Object.getOwnPropertyDescriptor(m, k);
+    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
+      desc = { enumerable: true, get: function() { return m[k]; } };
+    }
+    Object.defineProperty(o, k2, desc);
+}) : (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    o[k2] = m[k];
+}));
+var __setModuleDefault = (this && this.__setModuleDefault) || (Object.create ? (function(o, v) {
+    Object.defineProperty(o, "default", { enumerable: true, value: v });
+}) : function(o, v) {
+    o["default"] = v;
+});
+var __importStar = (this && this.__importStar) || (function () {
+    var ownKeys = function(o) {
+        ownKeys = Object.getOwnPropertyNames || function (o) {
+            var ar = [];
+            for (var k in o) if (Object.prototype.hasOwnProperty.call(o, k)) ar[ar.length] = k;
+            return ar;
+        };
+        return ownKeys(o);
+    };
+    return function (mod) {
+        if (mod && mod.__esModule) return mod;
+        var result = {};
+        if (mod != null) for (var k = ownKeys(mod), i = 0; i < k.length; i++) if (k[i] !== "default") __createBinding(result, mod, k[i]);
+        __setModuleDefault(result, mod);
+        return result;
+    };
+})();
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.CustomProxyTranscribe = void 0;
+const environments = __importStar(require("../../environments.js"));
+const CustomTranscribe_js_1 = require("../CustomTranscribe.js");
+class CustomProxyTranscribe {
+    constructor() {
+        this._transcribe = new CustomTranscribe_js_1.Transcribe({
+            environment: environments.CortiEnvironment.Eu,
+            tenantName: "",
+        });
+    }
+    connect(args) {
+        return this._transcribe.connect(args);
+    }
+}
+exports.CustomProxyTranscribe = CustomProxyTranscribe;

package/dist/cjs/custom/utils/getEnvironmentFromString.d.ts

@@ -2,4 +2,4 @@ import * as core from "../../core/index.js";
 import * as environments from "../../environments.js";
 export type Environment = CortiInternalEnvironment | string;
 export type CortiInternalEnvironment = core.Supplier<environments.CortiEnvironment | environments.CortiEnvironmentUrls>;
-export declare function getEnvironment(environment: Environment): CortiInternalEnvironment;
+export declare function getEnvironment(environment?: Environment): CortiInternalEnvironment;

package/dist/cjs/custom/utils/getEnvironmentFromString.js

@@ -1,7 +1,7 @@
 "use strict";
 Object.defineProperty(exports, "__esModule", { value: true });
 exports.getEnvironment = getEnvironment;
-function getEnvironment(environment) {
+function getEnvironment(environment = "eu") {
     return typeof environment === "string"
         ? {
             base: `https://api.${environment}.corti.app/v2`,

package/dist/cjs/custom/utils/resolveClientOptions.js

@@ -48,7 +48,7 @@ const decodeToken_js_1 = require("./decodeToken.js");
 const index_js_1 = require("../../core/schemas/index.js");
 const getEnvironmentFromString_js_1 = require("./getEnvironmentFromString.js");
 function isClientCredentialsOptions(options) {
-    return "clientId" in options.auth;
+    return !!options.auth && "clientId" in options.auth;
 }
 function resolveClientOptions(options) {
     if (isClientCredentialsOptions(options)) {
@@ -57,9 +57,22 @@ function resolveClientOptions(options) {
             environment: options.environment,
         };
     }
-    if ("accessToken" in options.auth && options.auth.accessToken) {
-        const decoded = (0, decodeToken_js_1.decodeToken)(options.auth.accessToken);
-        if (!decoded) {
+    // When auth is not provided (baseUrl-only or environment-object scenario), use provided values or defaults
+    if (!options.auth) {
+        return {
+            tenantName: options.tenantName || "",
+            environment: options.environment || "",
+        };
+    }
+    if ("accessToken" in options.auth) {
+        const decoded = (0, decodeToken_js_1.decodeToken)(options.auth.accessToken || "");
+        /**
+         * Do not throw an error when we have some proxying:
+         *  baseUrl is set
+         *  or
+         *  environment is explicitly provided (not string-generated)
+         */
+        if (!decoded && !options.baseUrl && typeof options.environment !== "object") {
             throw new index_js_1.ParseError([
                 {
                     path: ["auth", "accessToken"],
@@ -68,8 +81,8 @@ function resolveClientOptions(options) {
             ]);
         }
         return {
-            tenantName: options.tenantName || decoded.tenantName,
-            environment: options.environment || decoded.environment,
+            tenantName: options.tenantName || (decoded === null || decoded === void 0 ? void 0 : decoded.tenantName) || "",
+            environment: options.environment || (decoded === null || decoded === void 0 ? void 0 : decoded.environment) || "",
         };
     }
     /**
@@ -82,10 +95,18 @@ function resolveClientOptions(options) {
             environment: options.environment,
         };
     }
+    // At this point, auth exists and has refreshAccessToken (BearerOptions without accessToken)
+    const auth = options.auth;
     const tokenResponsePromise = (() => __awaiter(this, void 0, void 0, function* () {
-        const tokenResponse = yield core.Supplier.get(options.auth.refreshAccessToken);
+        const tokenResponse = yield core.Supplier.get(auth.refreshAccessToken);
         const decoded = (0, decodeToken_js_1.decodeToken)(tokenResponse.accessToken);
-        if (!decoded) {
+        /**
+         * Do not throw an error when we have some proxying:
+         *  baseUrl is set
+         *  or
+         *  environment is explicitly provided (not string-generated)
+         */
+        if (!decoded && !options.baseUrl && typeof options.environment !== "object") {
             throw new index_js_1.ParseError([
                 {
                     path: ["auth", "refreshAccessToken"],
@@ -95,8 +116,8 @@ function resolveClientOptions(options) {
         }
         return {
             tokenResponse,
-            tenantName: decoded.tenantName,
-            environment: decoded.environment,
+            tenantName: (decoded === null || decoded === void 0 ? void 0 : decoded.tenantName) || "",
+            environment: (decoded === null || decoded === void 0 ? void 0 : decoded.environment) || "",
         };
     }))();
     return {

package/dist/cjs/custom/utils/tokenRequest.d.ts

@@ -7,5 +7,6 @@ export type TokenRequest = Corti.AuthGetTokenRequest & Partial<{
     codeVerifier: string;
     username: string;
     password: string;
+    scopes: string[];
 }>;
 export declare const buildTokenRequestBody: (request: TokenRequest) => URLSearchParams;

package/dist/cjs/custom/utils/tokenRequest.js

@@ -40,8 +40,11 @@ const buildTokenRequestBody = (request) => {
         unrecognizedObjectKeys: "strip",
         omitUndefined: true,
     });
+    // Build scope string: always include "openid", add any additional scopes
+    const allScopes = ["openid", ...(request.scopes || [])];
+    const scopeString = [...new Set(allScopes)].join(" ");
     const tokenRequestBody = {
-        scope: "openid",
+        scope: scopeString,
         grant_type: request.grantType || "client_credentials",
     };
     Object.entries(serializedRequest).forEach(([key, value]) => {

package/dist/cjs/environments.d.ts

@@ -10,13 +10,13 @@ export interface CortiEnvironmentUrls {
 export declare const CortiEnvironment: {
     readonly Eu: {
         readonly base: "https://api.eu.corti.app/v2";
-        readonly wss: "wss://api.eu.corti.app";
+        readonly wss: "wss://api.eu.corti.app/audio-bridge/v2";
         readonly login: "https://auth.eu.corti.app/realms";
         readonly agents: "https://api.eu.corti.app";
     };
     readonly Us: {
         readonly base: "https://api.us.corti.app/v2";
-        readonly wss: "wss://api.us.corti.app";
+        readonly wss: "wss://api.us.corti.app/audio-bridge/v2";
         readonly login: "https://auth.us.corti.app/realms";
         readonly agents: "https://api.us.corti.app";
     };

package/dist/cjs/environments.js

@@ -7,13 +7,13 @@ exports.CortiEnvironment = void 0;
 exports.CortiEnvironment = {
     Eu: {
         base: "https://api.eu.corti.app/v2",
-        wss: "wss://api.eu.corti.app",
+        wss: "wss://api.eu.corti.app/audio-bridge/v2",
         login: "https://auth.eu.corti.app/realms",
         agents: "https://api.eu.corti.app",
     },
     Us: {
         base: "https://api.us.corti.app/v2",
-        wss: "wss://api.us.corti.app",
+        wss: "wss://api.us.corti.app/audio-bridge/v2",
         login: "https://auth.us.corti.app/realms",
         agents: "https://api.us.corti.app",
     },

package/dist/cjs/index.d.ts

@@ -5,6 +5,10 @@ export * as serialization from "./serialization/index.js";
  * Patch: use custom CortiClient instead of the generated one.
  */
 export { CortiClient } from "./custom/CortiClient.js";
+/**
+ * Patch: lightweight proxy client with only WebSocket resources.
+ */
+export { CortiWebSocketProxyClient } from "./custom/CortiWebSocketProxyClient.js";
 export { CortiEnvironment, CortiEnvironmentUrls } from "./environments.js";
 /**
  * Patch: added new export to provide Authorization code flow support.

package/dist/cjs/index.js

@@ -33,7 +33,7 @@ var __importStar = (this && this.__importStar) || (function () {
     };
 })();
 Object.defineProperty(exports, "__esModule", { value: true });
-exports.CortiSDKError = exports.ParseError = exports.JsonError = exports.CortiAuth = exports.CortiEnvironment = exports.CortiClient = exports.serialization = exports.CortiTimeoutError = exports.CortiError = exports.Corti = void 0;
+exports.CortiSDKError = exports.ParseError = exports.JsonError = exports.CortiAuth = exports.CortiEnvironment = exports.CortiWebSocketProxyClient = exports.CortiClient = exports.serialization = exports.CortiTimeoutError = exports.CortiError = exports.Corti = void 0;
 exports.Corti = __importStar(require("./api/index.js"));
 var index_js_1 = require("./errors/index.js");
 Object.defineProperty(exports, "CortiError", { enumerable: true, get: function () { return index_js_1.CortiError; } });
@@ -44,6 +44,11 @@ exports.serialization = __importStar(require("./serialization/index.js"));
  */
 var CortiClient_js_1 = require("./custom/CortiClient.js");
 Object.defineProperty(exports, "CortiClient", { enumerable: true, get: function () { return CortiClient_js_1.CortiClient; } });
+/**
+ * Patch: lightweight proxy client with only WebSocket resources.
+ */
+var CortiWebSocketProxyClient_js_1 = require("./custom/CortiWebSocketProxyClient.js");
+Object.defineProperty(exports, "CortiWebSocketProxyClient", { enumerable: true, get: function () { return CortiWebSocketProxyClient_js_1.CortiWebSocketProxyClient; } });
 var environments_js_1 = require("./environments.js");
 Object.defineProperty(exports, "CortiEnvironment", { enumerable: true, get: function () { return environments_js_1.CortiEnvironment; } });
 /**

package/dist/cjs/serialization/types/AgentsMcpServerAuthorizationType.d.ts

@@ -6,5 +6,5 @@ import * as Corti from "../../api/index.js";
 import * as core from "../../core/index.js";
 export declare const AgentsMcpServerAuthorizationType: core.serialization.Schema<serializers.AgentsMcpServerAuthorizationType.Raw, Corti.AgentsMcpServerAuthorizationType>;
 export declare namespace AgentsMcpServerAuthorizationType {
-    type Raw = "none" | "oauth2.0" | "oauth2.1";
+    type Raw = "none" | "bearer" | "inherit" | "oauth2.0";
 }

package/dist/cjs/serialization/types/AgentsMcpServerAuthorizationType.js

@@ -38,4 +38,4 @@ var __importStar = (this && this.__importStar) || (function () {
 Object.defineProperty(exports, "__esModule", { value: true });
 exports.AgentsMcpServerAuthorizationType = void 0;
 const core = __importStar(require("../../core/index.js"));
-exports.AgentsMcpServerAuthorizationType = core.serialization.enum_(["none", "oauth2.0", "oauth2.1"]);
+exports.AgentsMcpServerAuthorizationType = core.serialization.enum_(["none", "bearer", "inherit", "oauth2.0"]);

package/dist/cjs/version.d.ts

@@ -1 +1 @@
-export declare const SDK_VERSION = "0.7.0";
+export declare const SDK_VERSION = "0.8.0-rc.1";

package/dist/cjs/version.js

@@ -1,4 +1,4 @@
 "use strict";
 Object.defineProperty(exports, "__esModule", { value: true });
 exports.SDK_VERSION = void 0;
-exports.SDK_VERSION = "0.7.0";
+exports.SDK_VERSION = "0.8.0-rc.1";

package/dist/esm/Client.mjs

@@ -28,8 +28,8 @@ export class CortiClient {
                 "Tenant-Name": _options === null || _options === void 0 ? void 0 : _options.tenantName,
                 "X-Fern-Language": "JavaScript",
                 "X-Fern-SDK-Name": "@corti/sdk",
-                "X-Fern-SDK-Version": "0.7.0",
-                "User-Agent": "@corti/sdk/0.7.0",
+                "X-Fern-SDK-Version": "0.8.0-rc.1",
+                "User-Agent": "@corti/sdk/0.8.0-rc.1",
                 "X-Fern-Runtime": core.RUNTIME.type,
                 "X-Fern-Runtime-Version": core.RUNTIME.version,
             }, _options === null || _options === void 0 ? void 0 : _options.headers) });

package/dist/esm/api/resources/stream/client/Client.mjs

@@ -25,7 +25,7 @@ export class Stream {
             _queryParams["token"] = token;
             let _headers = Object.assign({}, headers);
             const socket = new core.ReconnectingWebSocket({
-                url: core.url.join((_a = (yield core.Supplier.get(this._options["baseUrl"]))) !== null && _a !== void 0 ? _a : (yield core.Supplier.get(this._options["environment"])).wss, `/audio-bridge/v2/interactions/${encodeURIComponent(id)}/streams`),
+                url: core.url.join((_a = (yield core.Supplier.get(this._options["baseUrl"]))) !== null && _a !== void 0 ? _a : (yield core.Supplier.get(this._options["environment"])).wss, `/interactions/${encodeURIComponent(id)}/streams`),
                 protocols: [],
                 queryParameters: _queryParams,
                 headers: _headers,

package/dist/esm/api/resources/stream/client/Socket.mjs

@@ -85,7 +85,9 @@ export class StreamSocket {
     }
     sendAudio(message) {
         this.assertSocketIsOpen();
-        const jsonPayload = core.serialization.string().jsonOrThrow(message, {
+        const jsonPayload = core.serialization
+            .string()
+            .jsonOrThrow(message, {
             unrecognizedObjectKeys: "passthrough",
             allowUnrecognizedUnionMembers: true,
             allowUnrecognizedEnumValues: true,

package/dist/esm/api/resources/transcribe/client/Client.mjs

@@ -25,7 +25,7 @@ export class Transcribe {
             _queryParams["token"] = token;
             let _headers = Object.assign({}, headers);
             const socket = new core.ReconnectingWebSocket({
-                url: core.url.join((_a = (yield core.Supplier.get(this._options["baseUrl"]))) !== null && _a !== void 0 ? _a : (yield core.Supplier.get(this._options["environment"])).wss, "/audio-bridge/v2/transcribe"),
+                url: core.url.join((_a = (yield core.Supplier.get(this._options["baseUrl"]))) !== null && _a !== void 0 ? _a : (yield core.Supplier.get(this._options["environment"])).wss, "/transcribe"),
                 protocols: [],
                 queryParameters: _queryParams,
                 headers: _headers,

package/dist/esm/api/resources/transcribe/client/Socket.mjs

@@ -85,7 +85,9 @@ export class TranscribeSocket {
     }
     sendAudio(message) {
         this.assertSocketIsOpen();
-        const jsonPayload = core.serialization.string().jsonOrThrow(message, {
+        const jsonPayload = core.serialization
+            .string()
+            .jsonOrThrow(message, {
             unrecognizedObjectKeys: "passthrough",
             allowUnrecognizedUnionMembers: true,
             allowUnrecognizedEnumValues: true,

package/dist/esm/api/types/AgentsMcpServerAuthorizationType.d.mts

@@ -4,9 +4,10 @@
 /**
  * Type of authorization used by the MCP server.
  */
-export type AgentsMcpServerAuthorizationType = "none" | "oauth2.0" | "oauth2.1";
+export type AgentsMcpServerAuthorizationType = "none" | "bearer" | "inherit" | "oauth2.0";
 export declare const AgentsMcpServerAuthorizationType: {
     readonly None: "none";
+    readonly Bearer: "bearer";
+    readonly Inherit: "inherit";
     readonly Oauth20: "oauth2.0";
-    readonly Oauth21: "oauth2.1";
 };

package/dist/esm/api/types/AgentsMcpServerAuthorizationType.mjs

@@ -3,6 +3,7 @@
  */
 export const AgentsMcpServerAuthorizationType = {
     None: "none",
+    Bearer: "bearer",
+    Inherit: "inherit",
     Oauth20: "oauth2.0",
-    Oauth21: "oauth2.1",
 };

package/dist/esm/custom/CortiAuth.d.mts

@@ -14,7 +14,7 @@
 import { Auth as FernAuth } from "../api/resources/auth/client/Client.mjs";
 import * as core from "../core/index.mjs";
 import * as Corti from "../api/index.mjs";
-import * as environments from "../environments.mjs";
+import { Environment, CortiInternalEnvironment } from "./utils/getEnvironmentFromString.mjs";
 /**
  * Patch: added codeChallenge to the AuthorizationCodeClient interface to support PKCE flow
  */
@@ -22,6 +22,7 @@ interface AuthorizationCodeClient {
     clientId: string;
     redirectUri: string;
     codeChallenge?: string;
+    scopes?: string[];
 }
 /**
  * Patch: renamed AuthorizationCodeClient to AuthorizationCode as it can be used for both(server and client) flows
@@ -31,6 +32,7 @@ interface AuthorizationCode {
     clientSecret: string;
     redirectUri: string;
     code: string;
+    scopes?: string[];
 }
 /**
  * Patch: added type for AuthorizationPkce request
@@ -40,6 +42,7 @@ interface AuthorizationPkce {
     redirectUri: string;
     code: string;
     codeVerifier?: string;
+    scopes?: string[];
 }
 /**
  * Patch: added type for AuthorizationRopc request
@@ -48,6 +51,7 @@ interface AuthorizationRopcServer {
     clientId: string;
     username: string;
     password: string;
+    scopes?: string[];
 }
 interface AuthorizationRefreshServer {
     clientId: string;
@@ -56,34 +60,53 @@ interface AuthorizationRefreshServer {
      */
     clientSecret?: string;
     refreshToken: string;
+    scopes?: string[];
 }
 interface Options {
     skipRedirect?: boolean;
 }
-type AuthOptions = Omit<FernAuth.Options, "environment"> & {
-    environment: core.Supplier<environments.CortiEnvironment | environments.CortiEnvironmentUrls> | string;
+type AuthOptionsBase = Omit<FernAuth.Options, "environment" | "tenantName" | "baseUrl">;
+type AuthOptionsWithBaseUrl = AuthOptionsBase & {
+    baseUrl: core.Supplier<string>;
+    environment?: Environment;
+    tenantName?: core.Supplier<string>;
 };
+type AuthOptionsWithObjectEnvironment = AuthOptionsBase & {
+    baseUrl?: core.Supplier<string>;
+    environment: CortiInternalEnvironment;
+    tenantName?: core.Supplier<string>;
+};
+type AuthOptionsWithStringEnvironment = AuthOptionsBase & {
+    baseUrl?: core.Supplier<string>;
+    environment: string;
+    tenantName: core.Supplier<string>;
+};
+type AuthOptions = AuthOptionsWithBaseUrl | AuthOptionsWithObjectEnvironment | AuthOptionsWithStringEnvironment;
 export declare class Auth extends FernAuth {
     /**
      * Patch: use custom AuthOptions type to support string-based environment
+     * When baseUrl is provided, environment and tenantName become optional
      */
     constructor(_options: AuthOptions);
     /**
      * Patch: Generate PKCE authorization URL with automatic code verifier generation
      */
-    authorizePkceUrl({ clientId, redirectUri }: AuthorizationCodeClient, options?: Options): Promise<string>;
+    authorizePkceUrl({ clientId, redirectUri, scopes }: AuthorizationCodeClient, options?: Options): Promise<string>;
     /**
      * Patch: Get the stored PKCE code verifier
      */
     getCodeVerifier(): string | null;
     /**
      * Patch: called custom implementation this.__getToken_custom instead of this.__getToken
+     * Extended to support additional scopes
      */
-    getToken(request: Corti.AuthGetTokenRequest, requestOptions?: FernAuth.RequestOptions): core.HttpResponsePromise<Corti.GetTokenResponse>;
+    getToken(request: Corti.AuthGetTokenRequest & {
+        scopes?: string[];
+    }, requestOptions?: FernAuth.RequestOptions): core.HttpResponsePromise<Corti.GetTokenResponse>;
     /**
      * Patch: added method to get Authorization URL for Authorization code flow and PKCE flow
      */
-    authorizeURL({ clientId, redirectUri, codeChallenge }: AuthorizationCodeClient, options?: Options): Promise<string>;
+    authorizeURL({ clientId, redirectUri, codeChallenge, scopes }: AuthorizationCodeClient, options?: Options): Promise<string>;
     /**
      * Patch: calls __getToken_custom with additional fields to support Authorization code flow
      */

package/dist/esm/custom/CortiAuth.mjs

@@ -34,15 +34,16 @@ const CODE_VERIFIER_KEY = "corti_js_sdk_code_verifier";
 export class Auth extends FernAuth {
     /**
      * Patch: use custom AuthOptions type to support string-based environment
+     * When baseUrl is provided, environment and tenantName become optional
      */
     constructor(_options) {
-        super(Object.assign(Object.assign({}, _options), { environment: getEnvironment(_options.environment) }));
+        super(Object.assign(Object.assign({}, _options), { tenantName: _options.tenantName || "", environment: getEnvironment(_options.environment) }));
     }
     /**
      * Patch: Generate PKCE authorization URL with automatic code verifier generation
      */
     authorizePkceUrl(_a, options_1) {
-        return __awaiter(this, arguments, void 0, function* ({ clientId, redirectUri }, options) {
+        return __awaiter(this, arguments, void 0, function* ({ clientId, redirectUri, scopes }, options) {
             const codeVerifier = generateCodeVerifier();
             setLocalStorageItem(CODE_VERIFIER_KEY, codeVerifier);
             const codeChallenge = yield generateCodeChallenge(codeVerifier);
@@ -50,6 +51,7 @@ export class Auth extends FernAuth {
                 clientId,
                 redirectUri,
                 codeChallenge,
+                scopes,
             }, options);
         });
     }
@@ -61,6 +63,7 @@ export class Auth extends FernAuth {
     }
     /**
      * Patch: called custom implementation this.__getToken_custom instead of this.__getToken
+     * Extended to support additional scopes
      */
     getToken(request, requestOptions) {
         return core.HttpResponsePromise.fromPromise(this.__getToken_custom(request, requestOptions));
@@ -69,11 +72,14 @@ export class Auth extends FernAuth {
      * Patch: added method to get Authorization URL for Authorization code flow and PKCE flow
      */
     authorizeURL(_a, options_1) {
-        return __awaiter(this, arguments, void 0, function* ({ clientId, redirectUri, codeChallenge }, options) {
+        return __awaiter(this, arguments, void 0, function* ({ clientId, redirectUri, codeChallenge, scopes }, options) {
             var _b;
             const authUrl = new URL(core.url.join((_b = (yield core.Supplier.get(this._options.baseUrl))) !== null && _b !== void 0 ? _b : (yield core.Supplier.get(this._options.environment)).login, yield core.Supplier.get(this._options.tenantName), "protocol/openid-connect/auth"));
             authUrl.searchParams.set("response_type", "code");
-            authUrl.searchParams.set("scope", "openid profile");
+            // Build scope string: always include "openid profile", add any additional scopes
+            const allScopes = ["openid", "profile", ...(scopes || [])];
+            const scopeString = [...new Set(allScopes)].join(" ");
+            authUrl.searchParams.set("scope", scopeString);
             if (clientId !== undefined) {
                 authUrl.searchParams.set("client_id", clientId);
             }

package/dist/esm/custom/CortiClient.d.mts

@@ -40,6 +40,8 @@ export declare namespace CortiClient {
     interface BaseOptions {
         /** Additional headers to include in requests. */
         headers?: Record<string, string | core.Supplier<string | undefined> | undefined>;
+        /** Specify a custom URL to connect the client to. */
+        baseUrl?: core.Supplier<string>;
     }
     interface OptionsWithClientCredentials extends BaseOptions {
         /**
@@ -59,7 +61,18 @@ export declare namespace CortiClient {
         tenantName?: core.Supplier<string>;
         auth: BearerOptions;
     }
-    type Options = OptionsWithClientCredentials | OptionsWithBearerToken;
+    interface OptionsWithBaseUrl extends BaseOptions {
+        baseUrl: core.Supplier<string>;
+        environment?: Environment;
+        tenantName?: core.Supplier<string>;
+        auth?: ClientCredentials | BearerOptions;
+    }
+    interface OptionsWithObjectEnvironment extends BaseOptions {
+        environment: CortiInternalEnvironment;
+        tenantName?: core.Supplier<string>;
+        auth?: ClientCredentials | BearerOptions;
+    }
+    type Options = OptionsWithClientCredentials | OptionsWithBearerToken | OptionsWithBaseUrl | OptionsWithObjectEnvironment;
     /**
      * Patch:
      *  - renamed `Options` to `InternalOptions`
@@ -99,8 +112,9 @@ export declare class CortiClient {
     protected readonly _options: CortiClient.InternalOptions;
     /**
      * Patch: extended `_oauthTokenProvider` to support both `RefreshBearerProvider` and `OAuthTokenProvider` options
+     * Optional - not created when auth is not provided (proxying scenarios)
      */
-    private readonly _oauthTokenProvider;
+    private readonly _oauthTokenProvider?;
     protected _interactions: Interactions | undefined;
     protected _recordings: Recordings | undefined;
     protected _transcripts: Transcripts | undefined;