@delopay/sdk 0.3.3 → 0.5.0

package/dist/index.cjs

@@ -136,6 +136,30 @@ var AdminPortal = class {
       query: params
     });
   }
+  /**
+   * Retrieve a merchant account via the admin portal. Unlike
+   * `merchantAccounts.retrieve`, this route accepts an admin JWT (or admin API
+   * key) and does not require the JWT to be scoped to the target merchant.
+   */
+  async retrieveAccount(merchantId) {
+    return this.request("GET", `/admin-portal/accounts/${encodeURIComponent(merchantId)}`);
+  }
+  /**
+   * Update a merchant account via the admin portal. Authenticated via admin JWT
+   * or admin API key.
+   */
+  async updateAccount(merchantId, params) {
+    return this.request("POST", `/admin-portal/accounts/${encodeURIComponent(merchantId)}`, {
+      body: params
+    });
+  }
+  /**
+   * Delete a merchant account via the admin portal. Authenticated via admin JWT
+   * or admin API key.
+   */
+  async deleteAccount(merchantId) {
+    return this.request("DELETE", `/admin-portal/accounts/${encodeURIComponent(merchantId)}`);
+  }
 };
 
 // src/resources/apiKeys.ts
@@ -2070,31 +2094,29 @@ var Users = class {
     return this.request("POST", "/user/forgot_password", { body: params });
   }
   /**
-   * Reset a user's password using the email link token.
-   *
-   * The email link delivers an `EmailToken`, but `/user/reset_password` is
-   * gated by `SinglePurposeJWTAuth` which expects a different JWT type
-   * (`SinglePurposeToken`). The SDK hides this two-step dance:
+   * Commit a password reset.
    *
-   * 1. Exchange the EmailToken for a SinglePurposeToken at `/user/from_email`
-   *    (`crates/router/src/core/user.rs:2773`, no auth required).
-   * 2. Call `/user/reset_password` with the SinglePurposeToken as
-   *    `Authorization: Bearer` and the original EmailToken in the body —
-   *    the handler decodes body.token as an EmailToken to look up the user
-   *    (`crates/router/src/core/user.rs:687`).
-   *
-   * Callers just pass `{ password, token }` (the token from the URL).
+   * The caller is responsible for obtaining a `SinglePurposeToken` with
+   * `purpose: reset_password` via the email-token exchange + TOTP flow
+   * (see `fromEmail`, `beginTotp`, `updateTotp`/`verifyTotp`,
+   * `generateRecoveryCodes`, `terminate2fa`) and setting it on the client
+   * via `setJwtToken` before calling this method. `body.token` must still
+   * be the original `EmailToken` from the reset-link URL — the handler
+   * decodes it a second time to find the user
+   * (`delopay-backend/crates/router/src/core/user.rs:687`).
    */
   async resetPassword(params) {
-    const exchange = await this.request(
-      "POST",
-      "/user/from_email",
-      { body: { token: params.token } }
-    );
-    return this.request("POST", "/user/reset_password", {
-      body: { token: params.token, password: params.password },
-      headers: { Authorization: `Bearer ${exchange.token}` }
-    });
+    return this.request("POST", "/user/reset_password", { body: params });
+  }
+  /**
+   * Exchange an email-link token (`EmailToken`) for a single-purpose JWT
+   * that drives the next step of the flow (TOTP, verify email, accept
+   * invitation, etc.). No authentication required.
+   *
+   * The `token_type` in the response tells you which step to run next.
+   */
+  async fromEmail(params) {
+    return this.request("POST", "/user/from_email", { body: params });
   }
   async verifyEmail(params) {
     return this.request("POST", "/user/verify_email", { body: params });
@@ -2123,9 +2145,24 @@ var Users = class {
   async acceptInvitation(params) {
     return this.request("POST", "/user/user/invite/accept", { body: params });
   }
+  /**
+   * Start TOTP setup (or no-op if already set).
+   *
+   * Returns the QR-code payload when the user has no TOTP configured yet;
+   * returns `{ secret: null }` when the user is already set up (caller
+   * should then prompt for a 6-digit code and call `verifyTotp`).
+   *
+   * Requires `Authorization: Bearer <SPT{purpose:totp}>`.
+   */
   async beginTotp() {
     return this.request("GET", "/user/2fa/totp/begin");
   }
+  /**
+   * Verify a 6-digit TOTP code for a user whose TOTP is already set up.
+   * Marks the code as used in Redis so subsequent flow steps can advance.
+   *
+   * Requires `Authorization: Bearer <SPT{purpose:totp}>`.
+   */
   async verifyTotp(params) {
     return this.request("POST", "/user/2fa/totp/verify", { body: params });
   }
@@ -2192,13 +2229,29 @@ var Users = class {
   async check2faStatusV2() {
     return this.request("GET", "/user/2fa/v2");
   }
-  /** Update TOTP. `PUT /user/2fa/totp/verify` */
+  /**
+   * Finish first-time TOTP setup: commit the secret generated by `beginTotp`
+   * against a 6-digit code from the user's authenticator app.
+   *
+   * `PUT /user/2fa/totp/verify`. Requires `Authorization: Bearer <SPT{purpose:totp}>`.
+   */
   async updateTotp(params) {
     return this.request("PUT", "/user/2fa/totp/verify", { body: params });
   }
-  /** Terminate 2FA. `GET /user/2fa/terminate` */
-  async terminate2fa() {
-    return this.request("GET", "/user/2fa/terminate");
+  /**
+   * Complete the TOTP step and advance to the next flow stage (e.g.
+   * `reset_password`). Returns a fresh single-purpose token with the
+   * next `token_type`.
+   *
+   * `GET /user/2fa/terminate`. Requires `Authorization: Bearer <SPT{purpose:totp}>`.
+   */
+  async terminate2fa(query) {
+    if (query === void 0) {
+      return this.request("GET", "/user/2fa/terminate");
+    }
+    return this.request("GET", "/user/2fa/terminate", {
+      query
+    });
   }
   /** Create auth method. `POST /user/auth` */
   async createAuthMethod(params) {