@egain/ai-agent-sdk 0.1.0

package/dist/core/auth/AnonymousAuthStrategy.d.ts

@@ -0,0 +1,87 @@
+import { AuthStrategy, AuthStrategyInitializeOptions } from './AuthStrategy.js';
+import { CacheStorageType } from '../api/CacheAdapter.js';
+/**
+ * Cache configuration for AnonymousAuthStrategy
+ */
+export interface AnonymousAuthCacheConfig {
+    /**
+     * Whether caching is enabled
+     * @default true
+     */
+    enabled?: boolean;
+    /**
+     * Storage type: 'local' (localStorage), 'session' (sessionStorage), or 'memory'
+     * @default 'session'
+     */
+    storageType?: CacheStorageType;
+    /**
+     * Prefix for cache keys
+     * @default 'egain_aiagent_auth_metadata_'
+     */
+    keyPrefix?: string;
+    /**
+     * Time-to-live in milliseconds
+     * @default 300000 (5 minutes)
+     */
+    ttl?: number;
+}
+/**
+ * Configuration for anonymous authentication strategy
+ */
+export interface AnonymousAuthConfig {
+    /**
+     * Cache configuration for metadata
+     */
+    cache?: AnonymousAuthCacheConfig;
+}
+/**
+ * Anonymous authentication strategy
+ * No authentication required - user remains anonymous
+ */
+export declare class AnonymousAuthStrategy implements AuthStrategy {
+    #private;
+    private readonly config?;
+    /**
+     * Buffer time in milliseconds to refresh token before it expires
+     * This prevents using a token that's about to expire
+     */
+    static readonly TOKEN_EXPIRY_BUFFER_MS: number;
+    constructor(config?: AnonymousAuthConfig | undefined);
+    /**
+     * Initialize the anonymous authentication strategy
+     */
+    initialize(options?: AuthStrategyInitializeOptions): Promise<void>;
+    /**
+     * Clears all cached metadata entries
+     */
+    clearMetadataCache(): void;
+    private getUserSpecificMetaData;
+    /**
+     * Authenticate the anonymous user
+     */
+    authenticate(): Promise<void>;
+    /**
+     * Check if the user is currently authenticated
+     */
+    isAuthenticated(): boolean;
+    /**
+     * Get authentication token for anonymous user
+     * Returns cached token if valid, otherwise fetches a new one
+     * Token is cached with TTL based on expires_in from the token response
+     */
+    getToken(): Promise<string | null>;
+    /**
+     * Clear the cached token
+     * Forces a new token to be fetched on next getToken() call
+     */
+    clearTokenCache(): void;
+    /**
+     * Cleanup resources
+     */
+    cleanup(): Promise<void>;
+    /**
+     * Get deployment information a given domain
+     */
+    getDeploymentInfo(domain: string): Promise<any>;
+}
+//# sourceMappingURL=AnonymousAuthStrategy.d.ts.map

package/dist/core/auth/AnonymousAuthStrategy.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"AnonymousAuthStrategy.d.ts","sourceRoot":"","sources":["../../../src/core/auth/AnonymousAuthStrategy.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,YAAY,EAA8B,6BAA6B,EAAE,MAAM,mBAAmB,CAAC;AAC5G,OAAO,EAEH,gBAAgB,EAEnB,MAAM,wBAAwB,CAAC;AAEhC;;GAEG;AACH,MAAM,WAAW,wBAAwB;IACrC;;;OAGG;IACH,OAAO,CAAC,EAAE,OAAO,CAAC;IAElB;;;OAGG;IACH,WAAW,CAAC,EAAE,gBAAgB,CAAC;IAE/B;;;OAGG;IACH,SAAS,CAAC,EAAE,MAAM,CAAC;IAEnB;;;OAGG;IACH,GAAG,CAAC,EAAE,MAAM,CAAC;CAChB;AAED;;GAEG;AACH,MAAM,WAAW,mBAAmB;IAChC;;OAEG;IACH,KAAK,CAAC,EAAE,wBAAwB,CAAC;CACpC;AAyBD;;;GAGG;AACH,qBAAa,qBAAsB,YAAW,YAAY;;IAoB1C,OAAO,CAAC,QAAQ,CAAC,MAAM,CAAC;IANpC;;;OAGG;IACH,MAAM,CAAC,QAAQ,CAAC,sBAAsB,SAAa;gBAEtB,MAAM,CAAC,iCAAqB;IAiBzD;;OAEG;IACG,UAAU,CAAC,OAAO,CAAC,EAAE,6BAA6B,GAAG,OAAO,CAAC,IAAI,CAAC;IAiDxE;;OAEG;IACH,kBAAkB,IAAI,IAAI;YAMZ,uBAAuB;IA4BrC;;OAEG;IACG,YAAY,IAAI,OAAO,CAAC,IAAI,CAAC;IAUnC;;OAEG;IACH,eAAe,IAAI,OAAO;IA8C1B;;;;OAIG;IACG,QAAQ,IAAI,OAAO,CAAC,MAAM,GAAG,IAAI,CAAC;IAmExC;;;OAGG;IACH,eAAe,IAAI,IAAI;IAMvB;;OAEG;IACG,OAAO,IAAI,OAAO,CAAC,IAAI,CAAC;IAO9B;;OAEG;IACG,iBAAiB,CAAC,MAAM,EAAE,MAAM,GAAG,OAAO,CAAC,GAAG,CAAC;CASxD"}

package/dist/core/auth/AnonymousAuthStrategy.js

@@ -0,0 +1,257 @@
+var __classPrivateFieldSet = (this && this.__classPrivateFieldSet) || function (receiver, state, value, kind, f) {
+    if (kind === "m") throw new TypeError("Private method is not writable");
+    if (kind === "a" && !f) throw new TypeError("Private accessor was defined without a setter");
+    if (typeof state === "function" ? receiver !== state || !f : !state.has(receiver)) throw new TypeError("Cannot write private member to an object whose class did not declare it");
+    return (kind === "a" ? f.call(receiver, value) : f ? f.value = value : state.set(receiver, value)), value;
+};
+var __classPrivateFieldGet = (this && this.__classPrivateFieldGet) || function (receiver, state, kind, f) {
+    if (kind === "a" && !f) throw new TypeError("Private accessor was defined without a getter");
+    if (typeof state === "function" ? receiver !== state || !f : !state.has(receiver)) throw new TypeError("Cannot read private member from an object whose class did not declare it");
+    return kind === "m" ? f : kind === "a" ? f.call(receiver) : f ? f.value : state.get(receiver);
+};
+var _AnonymousAuthStrategy_instances, _a, _AnonymousAuthStrategy_isInitialized, _AnonymousAuthStrategy_isAuthenticated, _AnonymousAuthStrategy_postAuthentication, _AnonymousAuthStrategy_deploymentInfo, _AnonymousAuthStrategy_scopes, _AnonymousAuthStrategy_cacheEnabled, _AnonymousAuthStrategy_cacheAdapter, _AnonymousAuthStrategy_cacheKeyPrefix, _AnonymousAuthStrategy_cacheTtl, _AnonymousAuthStrategy_getFromCache, _AnonymousAuthStrategy_setInCache, _AnonymousAuthStrategy_getTokenCacheKey, _AnonymousAuthStrategy_getCachedToken, _AnonymousAuthStrategy_isTokenValid;
+import { createCacheAdapter, } from '../api/CacheAdapter.js';
+/**
+ * Default cache TTL (5 minutes)
+ */
+const DEFAULT_CACHE_TTL = 5 * 60 * 1000;
+/**
+ * Default cache key prefix for metadata
+ */
+const DEFAULT_CACHE_KEY_PREFIX = 'egain_aiagent_auth_';
+/**
+ * Cache key suffix for anonymous token (will be combined with the key prefix)
+ */
+const ANONYMOUS_TOKEN_CACHE_KEY_SUFFIX = 'anonymous_token';
+/**
+ * Anonymous authentication strategy
+ * No authentication required - user remains anonymous
+ */
+export class AnonymousAuthStrategy {
+    constructor(config) {
+        _AnonymousAuthStrategy_instances.add(this);
+        this.config = config;
+        _AnonymousAuthStrategy_isInitialized.set(this, false);
+        _AnonymousAuthStrategy_isAuthenticated.set(this, false);
+        _AnonymousAuthStrategy_postAuthentication.set(this, void 0);
+        _AnonymousAuthStrategy_deploymentInfo.set(this, void 0);
+        _AnonymousAuthStrategy_scopes.set(this, void 0);
+        // Cache related properties
+        _AnonymousAuthStrategy_cacheEnabled.set(this, void 0);
+        _AnonymousAuthStrategy_cacheAdapter.set(this, void 0);
+        _AnonymousAuthStrategy_cacheKeyPrefix.set(this, void 0);
+        _AnonymousAuthStrategy_cacheTtl.set(this, void 0);
+        // Initialize cache settings
+        const cacheConfig = config?.cache || {};
+        __classPrivateFieldSet(this, _AnonymousAuthStrategy_cacheEnabled, cacheConfig.enabled !== false, "f");
+        __classPrivateFieldSet(this, _AnonymousAuthStrategy_cacheKeyPrefix, cacheConfig.keyPrefix || DEFAULT_CACHE_KEY_PREFIX, "f");
+        __classPrivateFieldSet(this, _AnonymousAuthStrategy_cacheTtl, cacheConfig.ttl || DEFAULT_CACHE_TTL, "f");
+        // Create cache adapter if caching is enabled
+        if (__classPrivateFieldGet(this, _AnonymousAuthStrategy_cacheEnabled, "f")) {
+            __classPrivateFieldSet(this, _AnonymousAuthStrategy_cacheAdapter, createCacheAdapter(cacheConfig.storageType || 'session'), "f");
+        }
+        else {
+            __classPrivateFieldSet(this, _AnonymousAuthStrategy_cacheAdapter, null, "f");
+        }
+    }
+    /**
+     * Initialize the anonymous authentication strategy
+     */
+    async initialize(options) {
+        __classPrivateFieldSet(this, _AnonymousAuthStrategy_postAuthentication, options?.postAuthentication, "f");
+        __classPrivateFieldSet(this, _AnonymousAuthStrategy_deploymentInfo, options?.deploymentInfo, "f");
+        __classPrivateFieldSet(this, _AnonymousAuthStrategy_isInitialized, true, "f");
+        __classPrivateFieldSet(this, _AnonymousAuthStrategy_scopes, options?.scopes || [], "f");
+    }
+    /**
+     * Clears all cached metadata entries
+     */
+    clearMetadataCache() {
+        if (__classPrivateFieldGet(this, _AnonymousAuthStrategy_cacheAdapter, "f")) {
+            __classPrivateFieldGet(this, _AnonymousAuthStrategy_cacheAdapter, "f").clear(__classPrivateFieldGet(this, _AnonymousAuthStrategy_cacheKeyPrefix, "f"));
+        }
+    }
+    async getUserSpecificMetaData(userType, metaData, isAuthenticated) {
+        let metaDataDetailURL;
+        if ((userType === "agent" && metaData.intClientId)
+            || (userType === "customer" && metaData.extClientId && isAuthenticated)) {
+            metaDataDetailURL = "https://" + metaData.apiDomain + "/core/authmgr/v3/metadata/tenant/" + metaData.tenantId;
+        }
+        else if (userType === "customer" && !isAuthenticated) {
+            metaDataDetailURL = "https://" + metaData.apiDomain + "/core/authmgr/v3/metadata/deployment";
+        }
+        if (metaDataDetailURL) {
+            // Check cache first
+            const cacheKey = `${__classPrivateFieldGet(this, _AnonymousAuthStrategy_cacheKeyPrefix, "f")}metadata:${userType}:${metaData.apiDomain}:${metaData.tenantId || 'deployment'}:${isAuthenticated}`;
+            const cached = __classPrivateFieldGet(this, _AnonymousAuthStrategy_instances, "m", _AnonymousAuthStrategy_getFromCache).call(this, cacheKey);
+            if (cached) {
+                return cached;
+            }
+            // Fetch from API
+            const metaDataDetailResponse = await fetch(metaDataDetailURL);
+            const result = await metaDataDetailResponse.json();
+            // Cache the result
+            __classPrivateFieldGet(this, _AnonymousAuthStrategy_instances, "m", _AnonymousAuthStrategy_setInCache).call(this, cacheKey, result);
+            return result;
+        }
+    }
+    /**
+     * Authenticate the anonymous user
+     */
+    async authenticate() {
+        // TODO: Implement authentication logic
+        __classPrivateFieldSet(this, _AnonymousAuthStrategy_isAuthenticated, true, "f");
+        const token = await this.getToken();
+        // Call postAuthentication callback after authentication completes
+        if (__classPrivateFieldGet(this, _AnonymousAuthStrategy_postAuthentication, "f")) {
+            await __classPrivateFieldGet(this, _AnonymousAuthStrategy_postAuthentication, "f").call(this, token);
+        }
+    }
+    /**
+     * Check if the user is currently authenticated
+     */
+    isAuthenticated() {
+        return __classPrivateFieldGet(this, _AnonymousAuthStrategy_isAuthenticated, "f");
+    }
+    /**
+     * Get authentication token for anonymous user
+     * Returns cached token if valid, otherwise fetches a new one
+     * Token is cached with TTL based on expires_in from the token response
+     */
+    async getToken() {
+        // Return cached token if still valid
+        const cachedToken = __classPrivateFieldGet(this, _AnonymousAuthStrategy_instances, "m", _AnonymousAuthStrategy_getCachedToken).call(this);
+        if (__classPrivateFieldGet(this, _AnonymousAuthStrategy_instances, "m", _AnonymousAuthStrategy_isTokenValid).call(this) && cachedToken) {
+            return cachedToken.accessToken;
+        }
+        const metaData = await this.getUserSpecificMetaData("customer", __classPrivateFieldGet(this, _AnonymousAuthStrategy_deploymentInfo, "f"), false);
+        if (metaData) {
+            const tenantId = __classPrivateFieldGet(this, _AnonymousAuthStrategy_deploymentInfo, "f")?.tenantId;
+            const anoymousTokenURL = metaData?.authenticationDetails?.oAuthAnonymousCustomer[0]?.accessTokenURL?.replace("<DOMAIN_NAME>", tenantId);
+            const scopePrefix = metaData?.authenticationDetails?.apiPermissionPrefix;
+            const scopesRequired = (__classPrivateFieldGet(this, _AnonymousAuthStrategy_scopes, "f") || []).map((scope) => scopePrefix + scope);
+            let body = {
+                client_id: "clientId",
+                client_secret: "clientSecret",
+                grant_type: "client_credentials",
+                scope: scopesRequired.join(" ")
+            };
+            const encodedBody = Object.keys(body)
+                .map((key) => {
+                return encodeURIComponent(key) + "=" + encodeURIComponent(body[key]);
+            })
+                .join("&");
+            const options = {
+                method: "POST",
+                headers: {
+                    "content-type": "application/x-www-form-urlencoded",
+                    Accept: "application/json",
+                },
+                body: encodedBody,
+            };
+            const response = await fetch(anoymousTokenURL, options);
+            const anonymousTokenObject = await response.json();
+            if (anonymousTokenObject?.access_token) {
+                // Cache the token with TTL from expires_in (in seconds)
+                // Falls back to default cache TTL if expires_in is not provided
+                const expiresInMs = anonymousTokenObject.expires_in
+                    ? anonymousTokenObject.expires_in * 1000
+                    : __classPrivateFieldGet(this, _AnonymousAuthStrategy_cacheTtl, "f");
+                const tokenEntry = {
+                    accessToken: anonymousTokenObject.access_token,
+                    expiresAt: Date.now() + expiresInMs,
+                };
+                // Store in cache adapter using the same prefix as metadata
+                if (__classPrivateFieldGet(this, _AnonymousAuthStrategy_cacheEnabled, "f") && __classPrivateFieldGet(this, _AnonymousAuthStrategy_cacheAdapter, "f")) {
+                    __classPrivateFieldGet(this, _AnonymousAuthStrategy_cacheAdapter, "f").set(__classPrivateFieldGet(this, _AnonymousAuthStrategy_instances, "m", _AnonymousAuthStrategy_getTokenCacheKey).call(this), {
+                        value: tokenEntry,
+                        timestamp: Date.now(),
+                    });
+                }
+                return anonymousTokenObject.access_token;
+            }
+        }
+        return null;
+    }
+    /**
+     * Clear the cached token
+     * Forces a new token to be fetched on next getToken() call
+     */
+    clearTokenCache() {
+        if (__classPrivateFieldGet(this, _AnonymousAuthStrategy_cacheAdapter, "f")) {
+            __classPrivateFieldGet(this, _AnonymousAuthStrategy_cacheAdapter, "f").delete(__classPrivateFieldGet(this, _AnonymousAuthStrategy_instances, "m", _AnonymousAuthStrategy_getTokenCacheKey).call(this));
+        }
+    }
+    /**
+     * Cleanup resources
+     */
+    async cleanup() {
+        // Clear the token cache
+        this.clearTokenCache();
+        // Clear metadata cache
+        this.clearMetadataCache();
+    }
+    /**
+     * Get deployment information a given domain
+     */
+    async getDeploymentInfo(domain) {
+        // TODO: Implement deployment information retrieval logic
+        return {
+            domainHint: domain,
+            apiDomain: domain,
+            nextRoute: domain,
+            metaData: domain,
+        };
+    }
+}
+_a = AnonymousAuthStrategy, _AnonymousAuthStrategy_isInitialized = new WeakMap(), _AnonymousAuthStrategy_isAuthenticated = new WeakMap(), _AnonymousAuthStrategy_postAuthentication = new WeakMap(), _AnonymousAuthStrategy_deploymentInfo = new WeakMap(), _AnonymousAuthStrategy_scopes = new WeakMap(), _AnonymousAuthStrategy_cacheEnabled = new WeakMap(), _AnonymousAuthStrategy_cacheAdapter = new WeakMap(), _AnonymousAuthStrategy_cacheKeyPrefix = new WeakMap(), _AnonymousAuthStrategy_cacheTtl = new WeakMap(), _AnonymousAuthStrategy_instances = new WeakSet(), _AnonymousAuthStrategy_getFromCache = function _AnonymousAuthStrategy_getFromCache(key) {
+    if (!__classPrivateFieldGet(this, _AnonymousAuthStrategy_cacheEnabled, "f") || !__classPrivateFieldGet(this, _AnonymousAuthStrategy_cacheAdapter, "f")) {
+        return null;
+    }
+    const entry = __classPrivateFieldGet(this, _AnonymousAuthStrategy_cacheAdapter, "f").get(key);
+    if (!entry) {
+        return null;
+    }
+    // Check if entry has expired
+    const now = Date.now();
+    if (now - entry.timestamp > __classPrivateFieldGet(this, _AnonymousAuthStrategy_cacheTtl, "f")) {
+        // Entry expired, remove it
+        __classPrivateFieldGet(this, _AnonymousAuthStrategy_cacheAdapter, "f").delete(key);
+        return null;
+    }
+    return entry.value;
+}, _AnonymousAuthStrategy_setInCache = function _AnonymousAuthStrategy_setInCache(key, value) {
+    if (!__classPrivateFieldGet(this, _AnonymousAuthStrategy_cacheEnabled, "f") || !__classPrivateFieldGet(this, _AnonymousAuthStrategy_cacheAdapter, "f")) {
+        return;
+    }
+    __classPrivateFieldGet(this, _AnonymousAuthStrategy_cacheAdapter, "f").set(key, {
+        value,
+        timestamp: Date.now(),
+    });
+}, _AnonymousAuthStrategy_getTokenCacheKey = function _AnonymousAuthStrategy_getTokenCacheKey() {
+    const tenantId = __classPrivateFieldGet(this, _AnonymousAuthStrategy_deploymentInfo, "f")?.tenantId || 'tenantId';
+    return `${__classPrivateFieldGet(this, _AnonymousAuthStrategy_cacheKeyPrefix, "f")}${tenantId}:${ANONYMOUS_TOKEN_CACHE_KEY_SUFFIX}`;
+}, _AnonymousAuthStrategy_getCachedToken = function _AnonymousAuthStrategy_getCachedToken() {
+    if (!__classPrivateFieldGet(this, _AnonymousAuthStrategy_cacheEnabled, "f") || !__classPrivateFieldGet(this, _AnonymousAuthStrategy_cacheAdapter, "f")) {
+        return null;
+    }
+    const entry = __classPrivateFieldGet(this, _AnonymousAuthStrategy_cacheAdapter, "f").get(__classPrivateFieldGet(this, _AnonymousAuthStrategy_instances, "m", _AnonymousAuthStrategy_getTokenCacheKey).call(this));
+    if (!entry) {
+        return null;
+    }
+    return entry.value;
+}, _AnonymousAuthStrategy_isTokenValid = function _AnonymousAuthStrategy_isTokenValid() {
+    const cachedToken = __classPrivateFieldGet(this, _AnonymousAuthStrategy_instances, "m", _AnonymousAuthStrategy_getCachedToken).call(this);
+    if (!cachedToken) {
+        return false;
+    }
+    const now = Date.now();
+    // Check if token will expire within the buffer time
+    return cachedToken.expiresAt - _a.TOKEN_EXPIRY_BUFFER_MS > now;
+};
+/**
+ * Buffer time in milliseconds to refresh token before it expires
+ * This prevents using a token that's about to expire
+ */
+AnonymousAuthStrategy.TOKEN_EXPIRY_BUFFER_MS = 60 * 1000; // 1 minute
+//# sourceMappingURL=AnonymousAuthStrategy.js.map

package/dist/core/auth/AnonymousAuthStrategy.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"AnonymousAuthStrategy.js","sourceRoot":"","sources":["../../../src/core/auth/AnonymousAuthStrategy.ts"],"names":[],"mappings":";;;;;;;;;;;;AACA,OAAO,EAGH,kBAAkB,GACrB,MAAM,wBAAwB,CAAC;AAyChC;;GAEG;AACH,MAAM,iBAAiB,GAAG,CAAC,GAAG,EAAE,GAAG,IAAI,CAAC;AAExC;;GAEG;AACH,MAAM,wBAAwB,GAAG,qBAAqB,CAAC;AAEvD;;GAEG;AACH,MAAM,gCAAgC,GAAG,iBAAiB,CAAC;AAU3D;;;GAGG;AACH,MAAM,OAAO,qBAAqB;IAoB9B,YAA6B,MAA4B;;QAA5B,WAAM,GAAN,MAAM,CAAsB;QAlBzD,+CAA0B,KAAK,EAAC;QAChC,iDAA4B,KAAK,EAAC;QAClC,4DAAiD;QACjD,wDAAsB;QACtB,gDAAmB;QAEnB,2BAA2B;QAC3B,sDAAuB;QACvB,sDAAmC;QACnC,wDAAwB;QACxB,kDAAkB;QASd,4BAA4B;QAC5B,MAAM,WAAW,GAAG,MAAM,EAAE,KAAK,IAAI,EAAE,CAAC;QACxC,uBAAA,IAAI,uCAAiB,WAAW,CAAC,OAAO,KAAK,KAAK,MAAA,CAAC;QACnD,uBAAA,IAAI,yCAAmB,WAAW,CAAC,SAAS,IAAI,wBAAwB,MAAA,CAAC;QACzE,uBAAA,IAAI,mCAAa,WAAW,CAAC,GAAG,IAAI,iBAAiB,MAAA,CAAC;QAEtD,6CAA6C;QAC7C,IAAI,uBAAA,IAAI,2CAAc,EAAE,CAAC;YACrB,uBAAA,IAAI,uCAAiB,kBAAkB,CACnC,WAAW,CAAC,WAAW,IAAI,SAAS,CACvC,MAAA,CAAC;QACN,CAAC;aAAM,CAAC;YACJ,uBAAA,IAAI,uCAAiB,IAAI,MAAA,CAAC;QAC9B,CAAC;IACL,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,UAAU,CAAC,OAAuC;QACpD,uBAAA,IAAI,6CAAuB,OAAO,EAAE,kBAAkB,MAAA,CAAC;QACvD,uBAAA,IAAI,yCAAmB,OAAO,EAAE,cAAc,MAAA,CAAC;QAC/C,uBAAA,IAAI,wCAAkB,IAAI,MAAA,CAAC;QAC3B,uBAAA,IAAI,iCAAW,OAAO,EAAE,MAAM,IAAI,EAAE,MAAA,CAAC;IACzC,CAAC;IA4CD;;OAEG;IACH,kBAAkB;QACd,IAAI,uBAAA,IAAI,2CAAc,EAAE,CAAC;YACrB,uBAAA,IAAI,2CAAc,CAAC,KAAK,CAAC,uBAAA,IAAI,6CAAgB,CAAC,CAAC;QACnD,CAAC;IACL,CAAC;IAEO,KAAK,CAAC,uBAAuB,CAAC,QAAgB,EAAE,QAAa,EAAE,eAAwB;QAC3F,IAAI,iBAAiB,CAAC;QACtB,IAAI,CAAC,QAAQ,KAAK,OAAO,IAAI,QAAQ,CAAC,WAAW,CAAC;eAC3C,CAAC,QAAQ,KAAK,UAAU,IAAI,QAAQ,CAAC,WAAW,IAAI,eAAe,CAAC,EAAE,CAAC;YAC1E,iBAAiB,GAAG,UAAU,GAAG,QAAQ,CAAC,SAAS,GAAG,mCAAmC,GAAG,QAAQ,CAAC,QAAQ,CAAA;QACjH,CAAC;aAAM,IAAI,QAAQ,KAAK,UAAU,IAAI,CAAC,eAAe,EAAE,CAAC;YACrD,iBAAiB,GAAG,UAAU,GAAG,QAAQ,CAAC,SAAS,GAAG,sCAAsC,CAAA;QAChG,CAAC;QAED,IAAI,iBAAiB,EAAE,CAAC;YACpB,oBAAoB;YACpB,MAAM,QAAQ,GAAG,GAAG,uBAAA,IAAI,6CAAgB,YAAY,QAAQ,IAAI,QAAQ,CAAC,SAAS,IAAI,QAAQ,CAAC,QAAQ,IAAI,YAAY,IAAI,eAAe,EAAE,CAAC;YAC7I,MAAM,MAAM,GAAG,uBAAA,IAAI,6EAAc,MAAlB,IAAI,EAAoB,QAAQ,CAAC,CAAC;YACjD,IAAI,MAAM,EAAE,CAAC;gBACT,OAAO,MAAM,CAAC;YAClB,CAAC;YAED,iBAAiB;YACjB,MAAM,sBAAsB,GAAG,MAAM,KAAK,CAAC,iBAAiB,CAAC,CAAC;YAC9D,MAAM,MAAM,GAAG,MAAM,sBAAsB,CAAC,IAAI,EAAE,CAAC;YAEnD,mBAAmB;YACnB,uBAAA,IAAI,2EAAY,MAAhB,IAAI,EAAa,QAAQ,EAAE,MAAM,CAAC,CAAC;YAEnC,OAAO,MAAM,CAAC;QAClB,CAAC;IACL,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,YAAY;QACd,uCAAuC;QACvC,uBAAA,IAAI,0CAAoB,IAAI,MAAA,CAAC;QAC7B,MAAM,KAAK,GAAG,MAAM,IAAI,CAAC,QAAQ,EAAE,CAAC;QACpC,kEAAkE;QAClE,IAAI,uBAAA,IAAI,iDAAoB,EAAE,CAAC;YAC3B,MAAM,uBAAA,IAAI,iDAAoB,MAAxB,IAAI,EAAqB,KAAK,CAAC,CAAC;QAC1C,CAAC;IACL,CAAC;IAED;;OAEG;IACH,eAAe;QACX,OAAO,uBAAA,IAAI,8CAAiB,CAAC;IACjC,CAAC;IA4CD;;;;OAIG;IACH,KAAK,CAAC,QAAQ;QACV,qCAAqC;QACrC,MAAM,WAAW,GAAG,uBAAA,IAAI,+EAAgB,MAApB,IAAI,CAAkB,CAAC;QAC3C,IAAI,uBAAA,IAAI,6EAAc,MAAlB,IAAI,CAAgB,IAAI,WAAW,EAAE,CAAC;YACtC,OAAO,WAAW,CAAC,WAAW,CAAC;QACnC,CAAC;QAED,MAAM,QAAQ,GAAG,MAAM,IAAI,CAAC,uBAAuB,CAAC,UAAU,EAAE,uBAAA,IAAI,6CAAgB,EAAE,KAAK,CAAC,CAAC;QAC7F,IAAI,QAAQ,EAAE,CAAC;YACX,MAAM,QAAQ,GAAG,uBAAA,IAAI,6CAAgB,EAAE,QAAQ,CAAC;YAEhD,MAAM,gBAAgB,GAAG,QAAQ,EAAE,qBAAqB,EAAE,sBAAsB,CAAC,CAAC,CAAC,EAAE,cAAc,EAAE,OAAO,CACxG,eAAe,EACf,QAAQ,CACX,CAAC;YAEF,MAAM,WAAW,GAAG,QAAQ,EAAE,qBAAqB,EAAE,mBAAmB,CAAC;YACzE,MAAM,cAAc,GAAG,CAAC,uBAAA,IAAI,qCAAQ,IAAI,EAAE,CAAC,CAAC,GAAG,CAAC,CAAC,KAAK,EAAE,EAAE,CAAC,WAAW,GAAG,KAAK,CAAC,CAAC;YAChF,IAAI,IAAI,GAAG;gBACP,SAAS,EAAE,UAAU;gBACrB,aAAa,EAAE,cAAc;gBAC7B,UAAU,EAAE,oBAAoB;gBAChC,KAAK,EAAE,cAAc,CAAC,IAAI,CAAC,GAAG,CAAC;aAClC,CAAC;YACF,MAAM,WAAW,GAAG,MAAM,CAAC,IAAI,CAAC,IAAI,CAAC;iBAChC,GAAG,CAAC,CAAC,GAAG,EAAE,EAAE;gBACT,OAAO,kBAAkB,CAAC,GAAG,CAAC,GAAG,GAAG,GAAG,kBAAkB,CAAC,IAAI,CAAC,GAAwB,CAAC,CAAC,CAAC;YAC9F,CAAC,CAAC;iBACD,IAAI,CAAC,GAAG,CAAC,CAAC;YACf,MAAM,OAAO,GAAG;gBACZ,MAAM,EAAE,MAAM;gBACd,OAAO,EAAE;oBACL,cAAc,EAAE,mCAAmC;oBACnD,MAAM,EAAE,kBAAkB;iBAC7B;gBACD,IAAI,EAAE,WAAW;aACpB,CAAC;YAEF,MAAM,QAAQ,GAAG,MAAM,KAAK,CAAC,gBAAgB,EAAE,OAAO,CAAC,CAAC;YACxD,MAAM,oBAAoB,GAAG,MAAM,QAAQ,CAAC,IAAI,EAAE,CAAC;YAEnD,IAAI,oBAAoB,EAAE,YAAY,EAAE,CAAC;gBACrC,wDAAwD;gBACxD,gEAAgE;gBAChE,MAAM,WAAW,GAAG,oBAAoB,CAAC,UAAU;oBAC/C,CAAC,CAAC,oBAAoB,CAAC,UAAU,GAAG,IAAI;oBACxC,CAAC,CAAC,uBAAA,IAAI,uCAAU,CAAC;gBAErB,MAAM,UAAU,GAAgB;oBAC5B,WAAW,EAAE,oBAAoB,CAAC,YAAY;oBAC9C,SAAS,EAAE,IAAI,CAAC,GAAG,EAAE,GAAG,WAAW;iBACtC,CAAC;gBAEF,2DAA2D;gBAC3D,IAAI,uBAAA,IAAI,2CAAc,IAAI,uBAAA,IAAI,2CAAc,EAAE,CAAC;oBAC3C,uBAAA,IAAI,2CAAc,CAAC,GAAG,CAAC,uBAAA,IAAI,iFAAkB,MAAtB,IAAI,CAAoB,EAAE;wBAC7C,KAAK,EAAE,UAAU;wBACjB,SAAS,EAAE,IAAI,CAAC,GAAG,EAAE;qBACxB,CAAC,CAAC;gBACP,CAAC;gBAED,OAAO,oBAAoB,CAAC,YAAY,CAAC;YAC7C,CAAC;QACL,CAAC;QACD,OAAO,IAAI,CAAC;IAChB,CAAC;IAED;;;OAGG;IACH,eAAe;QACX,IAAI,uBAAA,IAAI,2CAAc,EAAE,CAAC;YACrB,uBAAA,IAAI,2CAAc,CAAC,MAAM,CAAC,uBAAA,IAAI,iFAAkB,MAAtB,IAAI,CAAoB,CAAC,CAAC;QACxD,CAAC;IACL,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,OAAO;QACT,wBAAwB;QACxB,IAAI,CAAC,eAAe,EAAE,CAAC;QACvB,uBAAuB;QACvB,IAAI,CAAC,kBAAkB,EAAE,CAAC;IAC9B,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,iBAAiB,CAAC,MAAc;QAClC,yDAAyD;QACzD,OAAO;YACH,UAAU,EAAE,MAAM;YAClB,SAAS,EAAE,MAAM;YACjB,SAAS,EAAE,MAAM;YACjB,QAAQ,EAAE,MAAM;SACnB,CAAC;IACN,CAAC;;koBA/OgB,GAAW;IACxB,IAAI,CAAC,uBAAA,IAAI,2CAAc,IAAI,CAAC,uBAAA,IAAI,2CAAc,EAAE,CAAC;QAC7C,OAAO,IAAI,CAAC;IAChB,CAAC;IAED,MAAM,KAAK,GAAG,uBAAA,IAAI,2CAAc,CAAC,GAAG,CAAI,GAAG,CAAC,CAAC;IAC7C,IAAI,CAAC,KAAK,EAAE,CAAC;QACT,OAAO,IAAI,CAAC;IAChB,CAAC;IAED,6BAA6B;IAC7B,MAAM,GAAG,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC;IACvB,IAAI,GAAG,GAAG,KAAK,CAAC,SAAS,GAAG,uBAAA,IAAI,uCAAU,EAAE,CAAC;QACzC,2BAA2B;QAC3B,uBAAA,IAAI,2CAAc,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC;QAC/B,OAAO,IAAI,CAAC;IAChB,CAAC;IAED,OAAO,KAAK,CAAC,KAAK,CAAC;AACvB,CAAC,iFAOc,GAAW,EAAE,KAAQ;IAChC,IAAI,CAAC,uBAAA,IAAI,2CAAc,IAAI,CAAC,uBAAA,IAAI,2CAAc,EAAE,CAAC;QAC7C,OAAO;IACX,CAAC;IAED,uBAAA,IAAI,2CAAc,CAAC,GAAG,CAAC,GAAG,EAAE;QACxB,KAAK;QACL,SAAS,EAAE,IAAI,CAAC,GAAG,EAAE;KACxB,CAAC,CAAC;AACP,CAAC;IAiEG,MAAM,QAAQ,GAAG,uBAAA,IAAI,6CAAgB,EAAE,QAAQ,IAAI,UAAU,CAAC;IAC9D,OAAO,GAAG,uBAAA,IAAI,6CAAgB,GAAG,QAAQ,IAAI,gCAAgC,EAAE,CAAC;AACpF,CAAC;IAOG,IAAI,CAAC,uBAAA,IAAI,2CAAc,IAAI,CAAC,uBAAA,IAAI,2CAAc,EAAE,CAAC;QAC7C,OAAO,IAAI,CAAC;IAChB,CAAC;IAED,MAAM,KAAK,GAAG,uBAAA,IAAI,2CAAc,CAAC,GAAG,CAAc,uBAAA,IAAI,iFAAkB,MAAtB,IAAI,CAAoB,CAAC,CAAC;IAC5E,IAAI,CAAC,KAAK,EAAE,CAAC;QACT,OAAO,IAAI,CAAC;IAChB,CAAC;IAED,OAAO,KAAK,CAAC,KAAK,CAAC;AACvB,CAAC;IAOG,MAAM,WAAW,GAAG,uBAAA,IAAI,+EAAgB,MAApB,IAAI,CAAkB,CAAC;IAC3C,IAAI,CAAC,WAAW,EAAE,CAAC;QACf,OAAO,KAAK,CAAC;IACjB,CAAC;IAED,MAAM,GAAG,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC;IACvB,oDAAoD;IACpD,OAAO,WAAW,CAAC,SAAS,GAAG,EAAqB,CAAC,sBAAsB,GAAG,GAAG,CAAC;AACtF,CAAC;AA5KD;;;GAGG;AACa,4CAAsB,GAAG,EAAE,GAAG,IAAI,AAAZ,CAAa,CAAC,WAAW"}

package/dist/core/auth/AuthProvider.d.ts

@@ -0,0 +1,13 @@
+/**
+ * Authentication provider interface
+ * Implement this interface to provide custom authentication mechanisms
+ */
+export interface AuthProvider {
+    /**
+     * Get an authentication token
+     * This method may be called multiple times, so implementations should
+     * handle token refresh if needed
+     */
+    getToken(): Promise<string | null>;
+}
+//# sourceMappingURL=AuthProvider.d.ts.map

package/dist/core/auth/AuthProvider.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"AuthProvider.d.ts","sourceRoot":"","sources":["../../../src/core/auth/AuthProvider.ts"],"names":[],"mappings":"AAAA;;;GAGG;AACH,MAAM,WAAW,YAAY;IAC3B;;;;OAIG;IACH,QAAQ,IAAI,OAAO,CAAC,MAAM,GAAG,IAAI,CAAC,CAAC;CACpC"}

package/dist/core/auth/AuthProvider.js

@@ -0,0 +1,2 @@
+export {};
+//# sourceMappingURL=AuthProvider.js.map

package/dist/core/auth/AuthProvider.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"AuthProvider.js","sourceRoot":"","sources":["../../../src/core/auth/AuthProvider.ts"],"names":[],"mappings":""}

package/dist/core/auth/AuthStrategy.d.ts

@@ -0,0 +1,74 @@
+import { AuthProvider } from './AuthProvider.js';
+/**
+ * Callback function called after authentication is complete
+ * This is called after authenticate() completes successfully
+ * @param result The authentication result (e.g., token, auth data) of any type
+ */
+export type PostAuthenticationCallback = (result: any) => void | Promise<void>;
+/**
+ * Options for initializing an authentication strategy
+ */
+export interface AuthServiceInitializeOptions {
+    /**
+     * The scopes for the authentication strategy
+     */
+    scopes?: string[];
+    /**
+     * The deployment information for the authentication strategy
+     */
+    deploymentInfo?: any;
+    /**
+     * Callback to be called after authentication completes
+     */
+    postAuthentication?: PostAuthenticationCallback;
+    /**
+     * The user type for the authentication strategy
+     * Used to determine scopes - 'customer' adds core.customermgr.read scope
+     */
+    userType?: 'agent' | 'customer';
+}
+/**
+ * Options for initializing an authentication strategy
+ */
+export interface AuthStrategyInitializeOptions {
+    /**
+     * The deployment information for the authentication strategy
+     */
+    deploymentInfo: any;
+    /**
+     * The scopes for the authentication strategy
+     */
+    scopes?: string[];
+    /**
+     * Callback to be called after authentication completes
+     */
+    postAuthentication?: PostAuthenticationCallback;
+}
+/**
+ * Base interface for authentication strategies
+ * All authentication strategies must implement this interface
+ */
+export interface AuthStrategy extends AuthProvider {
+    /**
+     * Initialize the authentication strategy
+     * This method sets up the strategy but does not perform authentication
+     * Called when the strategy is set on the agent
+     * @param options Initialize options including postAuthentication callback
+     */
+    initialize(options?: AuthStrategyInitializeOptions): Promise<void>;
+    /**
+     * Authenticate the user
+     * This method performs the actual authentication flow
+     * The postAuthentication callback registered during initialize() will be called after authentication completes
+     */
+    authenticate(): Promise<void>;
+    /**
+     * Cleanup resources when the strategy is no longer needed
+     */
+    cleanup?(): Promise<void>;
+    /**
+     * Get the domain for authentication
+     */
+    getDomain?(): string;
+}
+//# sourceMappingURL=AuthStrategy.d.ts.map

package/dist/core/auth/AuthStrategy.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"AuthStrategy.d.ts","sourceRoot":"","sources":["../../../src/core/auth/AuthStrategy.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,YAAY,EAAE,MAAM,mBAAmB,CAAC;AAEjD;;;;GAIG;AACH,MAAM,MAAM,0BAA0B,GAAG,CAAC,MAAM,EAAE,GAAG,KAAK,IAAI,GAAG,OAAO,CAAC,IAAI,CAAC,CAAC;AAE/E;;GAEG;AACH,MAAM,WAAW,4BAA4B;IACzC;;OAEG;IACH,MAAM,CAAC,EAAE,MAAM,EAAE,CAAC;IAClB;;OAEG;IACH,cAAc,CAAC,EAAE,GAAG,CAAC;IAErB;;OAEG;IACH,kBAAkB,CAAC,EAAE,0BAA0B,CAAC;IAEhD;;;OAGG;IACH,QAAQ,CAAC,EAAE,OAAO,GAAG,UAAU,CAAC;CACnC;AAED;;GAEG;AACH,MAAM,WAAW,6BAA6B;IAC1C;;OAEG;IACH,cAAc,EAAE,GAAG,CAAC;IACpB;;OAEG;IACH,MAAM,CAAC,EAAE,MAAM,EAAE,CAAC;IAClB;;OAEG;IACH,kBAAkB,CAAC,EAAE,0BAA0B,CAAC;CACnD;AAED;;;GAGG;AACH,MAAM,WAAW,YAAa,SAAQ,YAAY;IAE9C;;;;;OAKG;IACH,UAAU,CAAC,OAAO,CAAC,EAAE,6BAA6B,GAAG,OAAO,CAAC,IAAI,CAAC,CAAC;IAEnE;;;;OAIG;IACH,YAAY,IAAI,OAAO,CAAC,IAAI,CAAC,CAAC;IAE9B;;OAEG;IACH,OAAO,CAAC,IAAI,OAAO,CAAC,IAAI,CAAC,CAAC;IAE1B;;OAEG;IACH,SAAS,CAAC,IAAI,MAAM,CAAC;CACxB"}

package/dist/core/auth/AuthStrategy.js

@@ -0,0 +1,2 @@
+export {};
+//# sourceMappingURL=AuthStrategy.js.map

package/dist/core/auth/AuthStrategy.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"AuthStrategy.js","sourceRoot":"","sources":["../../../src/core/auth/AuthStrategy.ts"],"names":[],"mappings":""}