@eide/foir-proto-ts 0.3.9 → 0.5.0

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@eide/foir-proto-ts",
-  "version": "0.3.9",
+  "version": "0.5.0",
   "type": "module",
   "exports": {
     "./analytics/v1/analytics_pb": "./src/analytics/v1/analytics_pb.js",
@@ -17,6 +17,7 @@
     "./identity/v1/identity_pb": "./src/identity/v1/identity_pb.js",
     "./identity/v1/identity_connect": "./src/identity/v1/identity_connect.js",
     "./integrations/v1/integrations_pb": "./src/integrations/v1/integrations_pb.js",
+    "./integrations/v1/integrations_connect": "./src/integrations/v1/integrations_connect.js",
     "./models/v1/models_pb": "./src/models/v1/models_pb.js",
     "./models/v1/models_connect": "./src/models/v1/models_connect.js",
     "./notifications/v1/notifications_pb": "./src/notifications/v1/notifications_pb.js",

package/src/integrations/v1/integrations_connect.d.ts

@@ -0,0 +1,67 @@
+// @generated by protoc-gen-connect-es v1.6.1 with parameter "import_extension=js"
+// @generated from file integrations/v1/integrations.proto (package integrations.v1, syntax proto3)
+/* eslint-disable */
+// @ts-nocheck
+
+import { GetIntegrationCredentialRequest, GetIntegrationCredentialResponse, IssueExchangeTicketRequest, IssueExchangeTicketResponse, WriteIntegrationCredentialRequest, WriteIntegrationCredentialResponse } from "./integrations_pbjs";
+import { MethodKind } from "@bufbuild/protobuf";
+
+/**
+ * @generated from service integrations.v1.IntegrationCredentialsService
+ */
+export declare const IntegrationCredentialsService: {
+  readonly typeName: "integrations.v1.IntegrationCredentialsService",
+  readonly methods: {
+    /**
+     * Return the plaintext credential for (project, integration). Requires
+     * the caller's capability set to include credentials:read for this
+     * integration. On success, updates last_read_at and emits an audit row.
+     *
+     * @generated from rpc integrations.v1.IntegrationCredentialsService.GetIntegrationCredential
+     */
+    readonly getIntegrationCredential: {
+      readonly name: "GetIntegrationCredential",
+      readonly I: typeof GetIntegrationCredentialRequest,
+      readonly O: typeof GetIntegrationCredentialResponse,
+      readonly kind: MethodKind.Unary,
+    },
+    /**
+     * Encrypt and store a credential for (project, integration). Overwrites
+     * any existing value. Requires the caller's capability set to include
+     * credentials:write for this integration. Emits an audit row of kind
+     * credential_write.
+     *
+     * @generated from rpc integrations.v1.IntegrationCredentialsService.WriteIntegrationCredential
+     */
+    readonly writeIntegrationCredential: {
+      readonly name: "WriteIntegrationCredential",
+      readonly I: typeof WriteIntegrationCredentialRequest,
+      readonly O: typeof WriteIntegrationCredentialResponse,
+      readonly kind: MethodKind.Unary,
+    },
+  }
+};
+
+/**
+ * @generated from service integrations.v1.IntegrationAuthService
+ */
+export declare const IntegrationAuthService: {
+  readonly typeName: "integrations.v1.IntegrationAuthService",
+  readonly methods: {
+    /**
+     * Create a single-use exchange ticket for the given (project, integration)
+     * with capability credentials:write. The admin caller must have
+     * TENANT_OWNER / PROJECT_ADMIN (or be a platform admin) for the target
+     * project. Emits an auth_events row of kind ticket_issue.
+     *
+     * @generated from rpc integrations.v1.IntegrationAuthService.IssueExchangeTicket
+     */
+    readonly issueExchangeTicket: {
+      readonly name: "IssueExchangeTicket",
+      readonly I: typeof IssueExchangeTicketRequest,
+      readonly O: typeof IssueExchangeTicketResponse,
+      readonly kind: MethodKind.Unary,
+    },
+  }
+};
+

package/src/integrations/v1/integrations_connect.js

@@ -0,0 +1,67 @@
+// @generated by protoc-gen-connect-es v1.6.1 with parameter "import_extension=js"
+// @generated from file integrations/v1/integrations.proto (package integrations.v1, syntax proto3)
+/* eslint-disable */
+// @ts-nocheck
+
+import { GetIntegrationCredentialRequest, GetIntegrationCredentialResponse, IssueExchangeTicketRequest, IssueExchangeTicketResponse, WriteIntegrationCredentialRequest, WriteIntegrationCredentialResponse } from "./integrations_pbjs";
+import { MethodKind } from "@bufbuild/protobuf";
+
+/**
+ * @generated from service integrations.v1.IntegrationCredentialsService
+ */
+export const IntegrationCredentialsService = {
+  typeName: "integrations.v1.IntegrationCredentialsService",
+  methods: {
+    /**
+     * Return the plaintext credential for (project, integration). Requires
+     * the caller's capability set to include credentials:read for this
+     * integration. On success, updates last_read_at and emits an audit row.
+     *
+     * @generated from rpc integrations.v1.IntegrationCredentialsService.GetIntegrationCredential
+     */
+    getIntegrationCredential: {
+      name: "GetIntegrationCredential",
+      I: GetIntegrationCredentialRequest,
+      O: GetIntegrationCredentialResponse,
+      kind: MethodKind.Unary,
+    },
+    /**
+     * Encrypt and store a credential for (project, integration). Overwrites
+     * any existing value. Requires the caller's capability set to include
+     * credentials:write for this integration. Emits an audit row of kind
+     * credential_write.
+     *
+     * @generated from rpc integrations.v1.IntegrationCredentialsService.WriteIntegrationCredential
+     */
+    writeIntegrationCredential: {
+      name: "WriteIntegrationCredential",
+      I: WriteIntegrationCredentialRequest,
+      O: WriteIntegrationCredentialResponse,
+      kind: MethodKind.Unary,
+    },
+  }
+};
+
+/**
+ * @generated from service integrations.v1.IntegrationAuthService
+ */
+export const IntegrationAuthService = {
+  typeName: "integrations.v1.IntegrationAuthService",
+  methods: {
+    /**
+     * Create a single-use exchange ticket for the given (project, integration)
+     * with capability credentials:write. The admin caller must have
+     * TENANT_OWNER / PROJECT_ADMIN (or be a platform admin) for the target
+     * project. Emits an auth_events row of kind ticket_issue.
+     *
+     * @generated from rpc integrations.v1.IntegrationAuthService.IssueExchangeTicket
+     */
+    issueExchangeTicket: {
+      name: "IssueExchangeTicket",
+      I: IssueExchangeTicketRequest,
+      O: IssueExchangeTicketResponse,
+      kind: MethodKind.Unary,
+    },
+  }
+};
+

package/src/integrations/v1/integrations_pb.d.ts

@@ -2,7 +2,7 @@
 // @generated from file integrations/v1/integrations.proto (package integrations.v1, syntax proto3)
 /* eslint-disable */
 
-import type { GenEnum, GenFile, GenMessage } from "@bufbuild/protobuf/codegenv2";
+import type { GenEnum, GenFile, GenMessage, GenService } from "@bufbuild/protobuf/codegenv2";
 import type { JsonObject, Message } from "@bufbuild/protobuf";
 import type { Timestamp } from "@bufbuild/protobuf/wkt";
 
@@ -368,6 +368,199 @@ export declare type ExtensionConfig = Message<"integrations.v1.ExtensionConfig">
  */
 export declare const ExtensionConfigSchema: GenMessage<ExtensionConfig>;
 
+/**
+ * A single credential slot for one (project, integration). The encrypted
+ * payload's plaintext shape is middleware-specific (Shopify OAuth token,
+ * Stripe API key, SSH keypair, etc.) — the platform treats it as opaque
+ * bytes and never parses it.
+ *
+ * @generated from message integrations.v1.IntegrationCredentialValue
+ */
+export declare type IntegrationCredentialValue = Message<"integrations.v1.IntegrationCredentialValue"> & {
+  /**
+   * Plaintext credential bytes. Populated on read responses (after successful
+   * capability check + decryption) and on write requests. NEVER populated on
+   * any other response.
+   *
+   * @generated from field: bytes value = 1;
+   */
+  value: Uint8Array;
+
+  /**
+   * Identifier of the key that encrypted this value at rest. Carried across
+   * the wire so rotation is possible without breaking old rows.
+   *
+   * @generated from field: string encryption_key_id = 2;
+   */
+  encryptionKeyId: string;
+
+  /**
+   * When the credential was last decrypted and returned to a caller. Updated
+   * on every successful GetIntegrationCredential call. Null if never read.
+   *
+   * @generated from field: optional google.protobuf.Timestamp last_read_at = 3;
+   */
+  lastReadAt?: Timestamp;
+
+  /**
+   * When the credential was last written. Null if never written.
+   *
+   * @generated from field: optional google.protobuf.Timestamp last_written_at = 4;
+   */
+  lastWrittenAt?: Timestamp;
+};
+
+/**
+ * Describes the message integrations.v1.IntegrationCredentialValue.
+ * Use `create(IntegrationCredentialValueSchema)` to create a new message.
+ */
+export declare const IntegrationCredentialValueSchema: GenMessage<IntegrationCredentialValue>;
+
+/**
+ * @generated from message integrations.v1.GetIntegrationCredentialRequest
+ */
+export declare type GetIntegrationCredentialRequest = Message<"integrations.v1.GetIntegrationCredentialRequest"> & {
+  /**
+   * @generated from field: string project_id = 1;
+   */
+  projectId: string;
+
+  /**
+   * @generated from field: string integration_name = 2;
+   */
+  integrationName: string;
+};
+
+/**
+ * Describes the message integrations.v1.GetIntegrationCredentialRequest.
+ * Use `create(GetIntegrationCredentialRequestSchema)` to create a new message.
+ */
+export declare const GetIntegrationCredentialRequestSchema: GenMessage<GetIntegrationCredentialRequest>;
+
+/**
+ * @generated from message integrations.v1.GetIntegrationCredentialResponse
+ */
+export declare type GetIntegrationCredentialResponse = Message<"integrations.v1.GetIntegrationCredentialResponse"> & {
+  /**
+   * @generated from field: integrations.v1.IntegrationCredentialValue credential = 1;
+   */
+  credential?: IntegrationCredentialValue;
+};
+
+/**
+ * Describes the message integrations.v1.GetIntegrationCredentialResponse.
+ * Use `create(GetIntegrationCredentialResponseSchema)` to create a new message.
+ */
+export declare const GetIntegrationCredentialResponseSchema: GenMessage<GetIntegrationCredentialResponse>;
+
+/**
+ * @generated from message integrations.v1.WriteIntegrationCredentialRequest
+ */
+export declare type WriteIntegrationCredentialRequest = Message<"integrations.v1.WriteIntegrationCredentialRequest"> & {
+  /**
+   * @generated from field: string project_id = 1;
+   */
+  projectId: string;
+
+  /**
+   * @generated from field: string integration_name = 2;
+   */
+  integrationName: string;
+
+  /**
+   * Plaintext bytes to encrypt and store. Replaces any existing value for
+   * this (project, integration).
+   *
+   * @generated from field: bytes value = 3;
+   */
+  value: Uint8Array;
+
+  /**
+   * Optional correlation context to include in the audit log entry
+   * (webhook delivery id, manual trigger id, admin action id, etc.).
+   *
+   * @generated from field: optional string context = 4;
+   */
+  context?: string;
+};
+
+/**
+ * Describes the message integrations.v1.WriteIntegrationCredentialRequest.
+ * Use `create(WriteIntegrationCredentialRequestSchema)` to create a new message.
+ */
+export declare const WriteIntegrationCredentialRequestSchema: GenMessage<WriteIntegrationCredentialRequest>;
+
+/**
+ * @generated from message integrations.v1.WriteIntegrationCredentialResponse
+ */
+export declare type WriteIntegrationCredentialResponse = Message<"integrations.v1.WriteIntegrationCredentialResponse"> & {
+  /**
+   * Metadata about the newly stored credential. Never includes the plaintext.
+   *
+   * @generated from field: string encryption_key_id = 1;
+   */
+  encryptionKeyId: string;
+
+  /**
+   * @generated from field: google.protobuf.Timestamp last_written_at = 2;
+   */
+  lastWrittenAt?: Timestamp;
+};
+
+/**
+ * Describes the message integrations.v1.WriteIntegrationCredentialResponse.
+ * Use `create(WriteIntegrationCredentialResponseSchema)` to create a new message.
+ */
+export declare const WriteIntegrationCredentialResponseSchema: GenMessage<WriteIntegrationCredentialResponse>;
+
+/**
+ * @generated from message integrations.v1.IssueExchangeTicketRequest
+ */
+export declare type IssueExchangeTicketRequest = Message<"integrations.v1.IssueExchangeTicketRequest"> & {
+  /**
+   * @generated from field: string project_id = 1;
+   */
+  projectId: string;
+
+  /**
+   * @generated from field: string integration_name = 2;
+   */
+  integrationName: string;
+};
+
+/**
+ * Describes the message integrations.v1.IssueExchangeTicketRequest.
+ * Use `create(IssueExchangeTicketRequestSchema)` to create a new message.
+ */
+export declare const IssueExchangeTicketRequestSchema: GenMessage<IssueExchangeTicketRequest>;
+
+/**
+ * @generated from message integrations.v1.IssueExchangeTicketResponse
+ */
+export declare type IssueExchangeTicketResponse = Message<"integrations.v1.IssueExchangeTicketResponse"> & {
+  /**
+   * Opaque single-use ticket id. Must be embedded in OAuth `state` and
+   * POSTed back by the middleware to /api/v1/auth/exchange-ticket.
+   *
+   * @generated from field: string ticket = 1;
+   */
+  ticket: string;
+
+  /**
+   * Absolute expiry (10 minutes from issue). After this point the ticket
+   * is rejected even if it has not yet been redeemed.
+   *
+   * @generated from field: google.protobuf.Timestamp expires_at = 2;
+   */
+  expiresAt?: Timestamp;
+};
+
+/**
+ * Describes the message integrations.v1.IssueExchangeTicketResponse.
+ * Use `create(IssueExchangeTicketResponseSchema)` to create a new message.
+ */
+export declare const IssueExchangeTicketResponseSchema: GenMessage<IssueExchangeTicketResponse>;
+
 /**
  * Credential strategies the middleware uses when talking to the external
  * service. Drives which authorization flow the admin UI renders.
@@ -506,3 +699,53 @@ export enum ExtensionTarget {
  */
 export declare const ExtensionTargetSchema: GenEnum<ExtensionTarget>;
 
+/**
+ * @generated from service integrations.v1.IntegrationCredentialsService
+ */
+export declare const IntegrationCredentialsService: GenService<{
+  /**
+   * Return the plaintext credential for (project, integration). Requires
+   * the caller's capability set to include credentials:read for this
+   * integration. On success, updates last_read_at and emits an audit row.
+   *
+   * @generated from rpc integrations.v1.IntegrationCredentialsService.GetIntegrationCredential
+   */
+  getIntegrationCredential: {
+    methodKind: "unary";
+    input: typeof GetIntegrationCredentialRequestSchema;
+    output: typeof GetIntegrationCredentialResponseSchema;
+  },
+  /**
+   * Encrypt and store a credential for (project, integration). Overwrites
+   * any existing value. Requires the caller's capability set to include
+   * credentials:write for this integration. Emits an audit row of kind
+   * credential_write.
+   *
+   * @generated from rpc integrations.v1.IntegrationCredentialsService.WriteIntegrationCredential
+   */
+  writeIntegrationCredential: {
+    methodKind: "unary";
+    input: typeof WriteIntegrationCredentialRequestSchema;
+    output: typeof WriteIntegrationCredentialResponseSchema;
+  },
+}>;
+
+/**
+ * @generated from service integrations.v1.IntegrationAuthService
+ */
+export declare const IntegrationAuthService: GenService<{
+  /**
+   * Create a single-use exchange ticket for the given (project, integration)
+   * with capability credentials:write. The admin caller must have
+   * TENANT_OWNER / PROJECT_ADMIN (or be a platform admin) for the target
+   * project. Emits an auth_events row of kind ticket_issue.
+   *
+   * @generated from rpc integrations.v1.IntegrationAuthService.IssueExchangeTicket
+   */
+  issueExchangeTicket: {
+    methodKind: "unary";
+    input: typeof IssueExchangeTicketRequestSchema;
+    output: typeof IssueExchangeTicketResponseSchema;
+  },
+}>;
+

package/src/integrations/v1/integrations_pb.js

@@ -2,14 +2,14 @@
 // @generated from file integrations/v1/integrations.proto (package integrations.v1, syntax proto3)
 /* eslint-disable */
 
-import { enumDesc, fileDesc, messageDesc, tsEnum } from "@bufbuild/protobuf/codegenv2";
+import { enumDesc, fileDesc, messageDesc, serviceDesc, tsEnum } from "@bufbuild/protobuf/codegenv2";
 import { file_google_protobuf_struct, file_google_protobuf_timestamp } from "@bufbuild/protobuf/wkt";
 
 /**
  * Describes the file integrations/v1/integrations.proto.
  */
 export const file_integrations_v1_integrations = /*@__PURE__*/
-  fileDesc("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", [file_google_protobuf_struct, file_google_protobuf_timestamp]);
+  fileDesc("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", [file_google_protobuf_struct, file_google_protobuf_timestamp]);
 
 /**
  * Describes the message integrations.v1.IntegrationMiddleware.
@@ -74,6 +74,55 @@ export const ExtensionPlacementSchema = /*@__PURE__*/
 export const ExtensionConfigSchema = /*@__PURE__*/
   messageDesc(file_integrations_v1_integrations, 8);
 
+/**
+ * Describes the message integrations.v1.IntegrationCredentialValue.
+ * Use `create(IntegrationCredentialValueSchema)` to create a new message.
+ */
+export const IntegrationCredentialValueSchema = /*@__PURE__*/
+  messageDesc(file_integrations_v1_integrations, 9);
+
+/**
+ * Describes the message integrations.v1.GetIntegrationCredentialRequest.
+ * Use `create(GetIntegrationCredentialRequestSchema)` to create a new message.
+ */
+export const GetIntegrationCredentialRequestSchema = /*@__PURE__*/
+  messageDesc(file_integrations_v1_integrations, 10);
+
+/**
+ * Describes the message integrations.v1.GetIntegrationCredentialResponse.
+ * Use `create(GetIntegrationCredentialResponseSchema)` to create a new message.
+ */
+export const GetIntegrationCredentialResponseSchema = /*@__PURE__*/
+  messageDesc(file_integrations_v1_integrations, 11);
+
+/**
+ * Describes the message integrations.v1.WriteIntegrationCredentialRequest.
+ * Use `create(WriteIntegrationCredentialRequestSchema)` to create a new message.
+ */
+export const WriteIntegrationCredentialRequestSchema = /*@__PURE__*/
+  messageDesc(file_integrations_v1_integrations, 12);
+
+/**
+ * Describes the message integrations.v1.WriteIntegrationCredentialResponse.
+ * Use `create(WriteIntegrationCredentialResponseSchema)` to create a new message.
+ */
+export const WriteIntegrationCredentialResponseSchema = /*@__PURE__*/
+  messageDesc(file_integrations_v1_integrations, 13);
+
+/**
+ * Describes the message integrations.v1.IssueExchangeTicketRequest.
+ * Use `create(IssueExchangeTicketRequestSchema)` to create a new message.
+ */
+export const IssueExchangeTicketRequestSchema = /*@__PURE__*/
+  messageDesc(file_integrations_v1_integrations, 14);
+
+/**
+ * Describes the message integrations.v1.IssueExchangeTicketResponse.
+ * Use `create(IssueExchangeTicketResponseSchema)` to create a new message.
+ */
+export const IssueExchangeTicketResponseSchema = /*@__PURE__*/
+  messageDesc(file_integrations_v1_integrations, 15);
+
 /**
  * Describes the enum integrations.v1.CredentialStrategy.
  */
@@ -130,3 +179,15 @@ export const ExtensionTargetSchema = /*@__PURE__*/
 export const ExtensionTarget = /*@__PURE__*/
   tsEnum(ExtensionTargetSchema);
 
+/**
+ * @generated from service integrations.v1.IntegrationCredentialsService
+ */
+export const IntegrationCredentialsService = /*@__PURE__*/
+  serviceDesc(file_integrations_v1_integrations, 0);
+
+/**
+ * @generated from service integrations.v1.IntegrationAuthService
+ */
+export const IntegrationAuthService = /*@__PURE__*/
+  serviceDesc(file_integrations_v1_integrations, 1);
+