npm - @elding/sdk - Versions diffs - 0.1.0 - Mend

@elding/sdk 0.1.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (9) hide show

package/dist/api.d.ts ADDED Viewed

	@@ -0,0 +1,2 @@
1	+ export declare function exchangeToken(refreshToken: string): Promise<string>;
2	+ export declare function fetchSecrets(accessToken: string, setId: string): Promise<Record<string, string>>;

package/dist/api.js ADDED Viewed

@@ -0,0 +1,38 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.exchangeToken = exchangeToken;
+exports.fetchSecrets = fetchSecrets;
+const BASE_URL = process.env.ELDING_API_URL ?? "https://app.elding.io";
+async function exchangeToken(refreshToken) {
+    const res = await fetch(`${BASE_URL}/api/cli/auth/token`, {
+        method: "POST",
+        headers: { "Content-Type": "application/json" },
+        body: JSON.stringify({ refreshToken }),
+    });
+    const body = (await res.json());
+    if (!body.success || !body.accessToken)
+        throw new Error(body.error ?? "Échec d'authentification Elding");
+    return body.accessToken;
+}
+async function fetchSecrets(accessToken, setId) {
+    const res = await fetch(`${BASE_URL}/api/cli/secrets?setId=${encodeURIComponent(setId)}`, {
+        headers: { Authorization: `Bearer ${accessToken}` },
+    });
+    const body = (await res.json());
+    if (!body.success || !body.secrets || typeof body.secrets !== "object")
+        throw new Error(body.error ?? `Erreur ${res.status}`);
+    return sanitizeSecrets(body.secrets);
+}
+const DANGEROUS_KEYS = new Set(["__proto__", "constructor", "prototype"]);
+// Filtre les paires clé/valeur string sûres — évite injection d'objets ou pollution de prototype
+function sanitizeSecrets(raw) {
+    const out = Object.create(null);
+    for (const [name, value] of Object.entries(raw)) {
+        if (DANGEROUS_KEYS.has(name))
+            continue;
+        if (typeof value !== "string")
+            continue;
+        out[name] = value;
+    }
+    return out;
+}

package/dist/client.d.ts ADDED Viewed

@@ -0,0 +1,14 @@
+export type ClientOptions = {
+    setId?: string;
+    refreshToken?: string;
+    envFallback?: boolean;
+};
+export declare class EldingClient {
+    private secrets;
+    private envFallback;
+    private constructor();
+    static create(options?: ClientOptions): Promise<EldingClient>;
+    secret(name: string): string;
+    secretOrUndefined(name: string): string | undefined;
+    all(): Record<string, string>;
+}

package/dist/client.js ADDED Viewed

@@ -0,0 +1,54 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.EldingClient = void 0;
+const config_js_1 = require("./config.js");
+const api_js_1 = require("./api.js");
+class EldingClient {
+    secrets;
+    envFallback;
+    constructor(secrets, envFallback) {
+        this.secrets = secrets;
+        this.envFallback = envFallback;
+    }
+    static async create(options = {}) {
+        // 1. Resolve setId
+        const setId = options.setId ?? (0, config_js_1.readProjectConfig)()?.setId;
+        if (!setId)
+            throw new Error("[elding] setId introuvable. Lancez `elding init` ou passez setId en option.");
+        // 2. Resolve refresh token
+        const refreshToken = options.refreshToken ?? (0, config_js_1.readGlobalConfig)()?.refreshToken;
+        if (!refreshToken)
+            throw new Error("[elding] Token introuvable. Lancez `elding login` ou passez refreshToken en option.");
+        // 3. Fetch secrets
+        const accessToken = await (0, api_js_1.exchangeToken)(refreshToken);
+        const secrets = await (0, api_js_1.fetchSecrets)(accessToken, setId);
+        return new EldingClient(secrets, options.envFallback ?? true);
+    }
+    secret(name) {
+        const value = this.secrets[name];
+        if (value !== undefined)
+            return value;
+        if (this.envFallback) {
+            const envValue = process.env[name];
+            if (envValue !== undefined)
+                return envValue;
+        }
+        throw new Error(`[elding] Secret "${name}" introuvable dans le set.`);
+    }
+    // Returns undefined instead of throwing
+    secretOrUndefined(name) {
+        try {
+            return this.secret(name);
+        }
+        catch {
+            return undefined;
+        }
+    }
+    // Returns all secrets as a plain object (e.g. to spread into a config)
+    all() {
+        if (this.envFallback)
+            return { ...process.env, ...this.secrets };
+        return { ...this.secrets };
+    }
+}
+exports.EldingClient = EldingClient;

package/dist/config.d.ts ADDED Viewed

@@ -0,0 +1,9 @@
+export type EldingConfig = {
+    refreshToken: string;
+};
+export type ProjectConfig = {
+    setId: string;
+    setName: string;
+};
+export declare function readGlobalConfig(): EldingConfig | null;
+export declare function readProjectConfig(): ProjectConfig | null;

package/dist/config.js ADDED Viewed

@@ -0,0 +1,27 @@
+"use strict";
+var __importDefault = (this && this.__importDefault) || function (mod) {
+    return (mod && mod.__esModule) ? mod : { "default": mod };
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.readGlobalConfig = readGlobalConfig;
+exports.readProjectConfig = readProjectConfig;
+const fs_1 = __importDefault(require("fs"));
+const os_1 = __importDefault(require("os"));
+const path_1 = __importDefault(require("path"));
+function readGlobalConfig() {
+    try {
+        const file = path_1.default.join(os_1.default.homedir(), ".elding", "config.json");
+        return JSON.parse(fs_1.default.readFileSync(file, "utf-8"));
+    }
+    catch {
+        return null;
+    }
+}
+function readProjectConfig() {
+    try {
+        return JSON.parse(fs_1.default.readFileSync(".elding.json", "utf-8"));
+    }
+    catch {
+        return null;
+    }
+}

package/dist/index.d.ts ADDED Viewed

@@ -0,0 +1,14 @@
+import { EldingClient, type ClientOptions } from "./client.js";
+export { EldingClient };
+export type { ClientOptions };
+/**
+ * Crée un client Elding et charge tous les secrets du set configuré.
+ *
+ * @example
+ * const elding = await client();
+ * const key = elding.secret("OPENAI_API_KEY");
+ *
+ * @example avec options
+ * const elding = await client({ setId: "xxx", refreshToken: "eld_rt_..." });
+ */
+export declare function client(options?: ClientOptions): Promise<EldingClient>;

package/dist/index.js ADDED Viewed

@@ -0,0 +1,19 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.EldingClient = void 0;
+exports.client = client;
+const client_js_1 = require("./client.js");
+Object.defineProperty(exports, "EldingClient", { enumerable: true, get: function () { return client_js_1.EldingClient; } });
+/**
+ * Crée un client Elding et charge tous les secrets du set configuré.
+ *
+ * @example
+ * const elding = await client();
+ * const key = elding.secret("OPENAI_API_KEY");
+ *
+ * @example avec options
+ * const elding = await client({ setId: "xxx", refreshToken: "eld_rt_..." });
+ */
+async function client(options) {
+    return client_js_1.EldingClient.create(options);
+}

package/package.json ADDED Viewed

@@ -0,0 +1,26 @@
+{
+  "name": "@elding/sdk",
+  "version": "0.1.0",
+  "description": "Elding SDK — accès aux secrets depuis le code, zéro .env",
+  "main": "./dist/index.js",
+  "types": "./dist/index.d.ts",
+  "files": [
+    "dist"
+  ],
+  "publishConfig": {
+    "access": "public"
+  },
+  "scripts": {
+    "build": "tsc",
+    "dev": "tsc --watch",
+    "prepublishOnly": "npm run build"
+  },
+  "devDependencies": {
+    "@types/node": "^22.0.0",
+    "typescript": "^5.5.0"
+  },
+  "engines": {
+    "node": ">=18"
+  },
+  "license": "MIT"
+}