@flashbacktech/tsclient 0.4.68 → 0.4.70

package/dist/index.d.cts

@@ -939,6 +939,16 @@ declare class CredentialsClient {
      */
     createOrgNotify(body: Omit<CreateCredentialRequest, 'projectId' | 'workspaceId'>): Promise<Credential>;
     deleteOrgNotify(credentialId: string): Promise<SimpleKeysResponse>;
+    /**
+     * adminDeliver seeds a credential into ANOTHER org's project — the
+     * platform-admin delivery path for eval-sandbox credentials. The caller
+     * must be a platform admin; the target org comes from the path (no
+     * impersonation involved) and the audit event lands in the target org's
+     * trail. The server accepts cloud (storage-capable) providers only.
+     * Optional `metadata.expiresAt` (RFC3339) marks a time-bound credential
+     * so the tenant UI can badge the upcoming sandbox expiry.
+     */
+    adminDeliver(orgId: string, body: CreateCredentialRequest): Promise<Credential>;
     /**
      * providers fetches the server-side catalog. The tsclient ships its
      * own catalog mirror in ./providers.ts that the frontend can use
@@ -971,7 +981,7 @@ interface ChatScope {
     /** @deprecated Use `projectId`. Carried only to ease the cutover. */
     workspaceId?: string;
 }
-type ChatSessionSource = 'adhoc' | 'template';
+type ChatSessionSource = 'adhoc' | 'template' | 'mcp';
 type ChatMessageRole = 'user' | 'assistant' | 'system';
 /**
  * Status of a single chat turn (agent_chat_turns.status). The first four are

package/dist/index.d.ts

@@ -939,6 +939,16 @@ declare class CredentialsClient {
      */
     createOrgNotify(body: Omit<CreateCredentialRequest, 'projectId' | 'workspaceId'>): Promise<Credential>;
     deleteOrgNotify(credentialId: string): Promise<SimpleKeysResponse>;
+    /**
+     * adminDeliver seeds a credential into ANOTHER org's project — the
+     * platform-admin delivery path for eval-sandbox credentials. The caller
+     * must be a platform admin; the target org comes from the path (no
+     * impersonation involved) and the audit event lands in the target org's
+     * trail. The server accepts cloud (storage-capable) providers only.
+     * Optional `metadata.expiresAt` (RFC3339) marks a time-bound credential
+     * so the tenant UI can badge the upcoming sandbox expiry.
+     */
+    adminDeliver(orgId: string, body: CreateCredentialRequest): Promise<Credential>;
     /**
      * providers fetches the server-side catalog. The tsclient ships its
      * own catalog mirror in ./providers.ts that the frontend can use
@@ -971,7 +981,7 @@ interface ChatScope {
     /** @deprecated Use `projectId`. Carried only to ease the cutover. */
     workspaceId?: string;
 }
-type ChatSessionSource = 'adhoc' | 'template';
+type ChatSessionSource = 'adhoc' | 'template' | 'mcp';
 type ChatMessageRole = 'user' | 'assistant' | 'system';
 /**
  * Status of a single chat turn (agent_chat_turns.status). The first four are

package/dist/index.js

@@ -730,6 +730,24 @@ var CredentialsClient = class {
   deleteOrgNotify(credentialId) {
     return this.http.delete(`/credentials/org-notify/${credentialId}`);
   }
+  /**
+   * adminDeliver seeds a credential into ANOTHER org's project — the
+   * platform-admin delivery path for eval-sandbox credentials. The caller
+   * must be a platform admin; the target org comes from the path (no
+   * impersonation involved) and the audit event lands in the target org's
+   * trail. The server accepts cloud (storage-capable) providers only.
+   * Optional `metadata.expiresAt` (RFC3339) marks a time-bound credential
+   * so the tenant UI can badge the upcoming sandbox expiry.
+   */
+  async adminDeliver(orgId, body) {
+    const res = await this.http.post(
+      `/admin/orgs/${orgId}/credentials`,
+      { body }
+    );
+    const value = res.data ?? res.credential;
+    if (!value) throw new Error("adminDeliver response missing body.");
+    return value;
+  }
   /**
    * providers fetches the server-side catalog. The tsclient ships its
    * own catalog mirror in ./providers.ts that the frontend can use