@fusebase/fusebase-gate-sdk 2.2.10-sdk.0 → 2.2.10-sdk.2

package/dist/apis/IsolatedStoresApi.d.ts

@@ -5,7 +5,7 @@
  * Domain: isolated-stores
  */
 import type { Client } from "../runtime/transport";
-import type { AdoptIsolatedStoreSqlMigrationBaselineRequestContract, AdoptIsolatedStoreSqlMigrationBaselineResponseContract, ApplyIsolatedStoreSqlMigrationsRequestContract, ApplyIsolatedStoreSqlMigrationsResponseContract, CreateIsolatedStoreCheckpointRequestContract, CreateIsolatedStoreCheckpointResponseContract, CreateIsolatedStoreRequestContract, CreateIsolatedStoreResponseContract, DeleteIsolatedStoreResponseContract, DeleteIsolatedStoreStageResponseContract, GetIsolatedStoreSqlMigrationStatusRequestContract, InitIsolatedStoreStageRequestContract, InitIsolatedStoreStageResponseContract, IsolatedStoreIdInPathRequired, IsolatedStoreListResponseContract, IsolatedStoreResponseContract, IsolatedStoreRevisionIdInPathRequired, IsolatedStoreRevisionListResponseContract, IsolatedStoreSqlBatchInsertRequestContract, IsolatedStoreSqlBatchInsertResponseContract, IsolatedStoreSqlCountRequestContract, IsolatedStoreSqlCountResponseContract, IsolatedStoreSqlDeleteRequestContract, IsolatedStoreSqlDeleteResponseContract, IsolatedStoreSqlDescribeTableResponseContract, IsolatedStoreSqlExecuteRequestContract, IsolatedStoreSqlExecuteResponseContract, IsolatedStoreSqlImportRequestContract, IsolatedStoreSqlImportResponseContract, IsolatedStoreSqlInsertRequestContract, IsolatedStoreSqlInsertResponseContract, IsolatedStoreSqlListTablesResponseContract, IsolatedStoreSqlMigrationStatusContract, IsolatedStoreSqlQueryRequestContract, IsolatedStoreSqlQueryResponseContract, IsolatedStoreSqlSchemaNameInQueryOptional, IsolatedStoreSqlSelectRequestContract, IsolatedStoreSqlSelectResponseContract, IsolatedStoreSqlStatsResponseContract, IsolatedStoreSqlTableNameInPathRequired, IsolatedStoreSqlUpdateRequestContract, IsolatedStoreSqlUpdateResponseContract, IsolatedStoreStageInPathRequired, IsolatedStoreStageListResponseContract, ListIsolatedStoresAliasLikeInQueryOptional, ListIsolatedStoresClientIdInQueryOptional, orgIdInPathRequired, RestoreIsolatedStoreRevisionResponseContract } from "../types";
+import type { AdoptIsolatedStoreSqlMigrationBaselineRequestContract, AdoptIsolatedStoreSqlMigrationBaselineResponseContract, ApplyIsolatedStoreSqlMigrationsRequestContract, ApplyIsolatedStoreSqlMigrationsResponseContract, CreateIsolatedStoreCheckpointRequestContract, CreateIsolatedStoreCheckpointResponseContract, CreateIsolatedStoreRequestContract, CreateIsolatedStoreResponseContract, DeleteIsolatedStoreResponseContract, DeleteIsolatedStoreStageResponseContract, GetIsolatedStoreSqlMigrationStatusRequestContract, GetOrIsolatedStoreRequestContract, GetOrIsolatedStoreResponseContract, InitIsolatedStoreStageRequestContract, InitIsolatedStoreStageResponseContract, IsolatedStoreIdInPathRequired, IsolatedStoreListResponseContract, IsolatedStoreResponseContract, IsolatedStoreRevisionIdInPathRequired, IsolatedStoreRevisionListResponseContract, IsolatedStoreSqlBatchInsertRequestContract, IsolatedStoreSqlBatchInsertResponseContract, IsolatedStoreSqlCountRequestContract, IsolatedStoreSqlCountResponseContract, IsolatedStoreSqlDeleteRequestContract, IsolatedStoreSqlDeleteResponseContract, IsolatedStoreSqlDescribeTableResponseContract, IsolatedStoreSqlExecuteRequestContract, IsolatedStoreSqlExecuteResponseContract, IsolatedStoreSqlImportRequestContract, IsolatedStoreSqlImportResponseContract, IsolatedStoreSqlInsertRequestContract, IsolatedStoreSqlInsertResponseContract, IsolatedStoreSqlListTablesResponseContract, IsolatedStoreSqlMigrationStatusContract, IsolatedStoreSqlQueryRequestContract, IsolatedStoreSqlQueryResponseContract, IsolatedStoreSqlSchemaNameInQueryOptional, IsolatedStoreSqlSelectRequestContract, IsolatedStoreSqlSelectResponseContract, IsolatedStoreSqlStatsResponseContract, IsolatedStoreSqlTableNameInPathRequired, IsolatedStoreSqlUpdateRequestContract, IsolatedStoreSqlUpdateResponseContract, IsolatedStoreStageInPathRequired, IsolatedStoreStageListResponseContract, ListIsolatedStoresAliasLikeInQueryOptional, ListIsolatedStoresClientIdInQueryOptional, orgIdInPathRequired, RestoreIsolatedStoreRevisionResponseContract } from "../types";
 export declare class IsolatedStoresApi {
     private client;
     constructor(client: Client);
@@ -186,6 +186,17 @@ export declare class IsolatedStoresApi {
         };
         headers?: Record<string, string>;
     }): Promise<IsolatedStoreSqlStatsResponseContract>;
+    /**
+     * Get or create isolated store
+     * Idempotent control-plane operation for app-owned stores. Resolves an existing store by org/client/alias or creates it. Optionally bootstraps target stage from a source org store/stage using checkpoint/restore.
+     */
+    getOrIsolatedStore(params: {
+        path: {
+            orgId: orgIdInPathRequired;
+        };
+        headers?: Record<string, string>;
+        body: GetOrIsolatedStoreRequestContract;
+    }): Promise<GetOrIsolatedStoreResponseContract>;
     /**
      * Import CSV or TSV rows
      * Imports CSV or TSV payloads into a postgres table using server-side COPY FROM STDIN. Use this bulk path for large seeds or migrations instead of repeated row inserts. Max UTF-8 payload size defaults to 64MiB (override ISOLATED_SQL_IMPORT_MAX_PAYLOAD_BYTES; hard cap 256MiB); split larger files across multiple calls.

package/dist/apis/IsolatedStoresApi.js

@@ -217,6 +217,21 @@ class IsolatedStoresApi {
             expectedContentType: "application/json",
         });
     }
+    /**
+     * Get or create isolated store
+     * Idempotent control-plane operation for app-owned stores. Resolves an existing store by org/client/alias or creates it. Optionally bootstraps target stage from a source org store/stage using checkpoint/restore.
+     */
+    async getOrIsolatedStore(params) {
+        return this.client.request({
+            method: "POST",
+            path: "/:orgId/isolated-stores/get-or",
+            pathParams: params.path,
+            headers: params.headers,
+            body: params.body,
+            opId: "getOrIsolatedStore",
+            expectedContentType: "application/json",
+        });
+    }
     /**
      * Import CSV or TSV rows
      * Imports CSV or TSV payloads into a postgres table using server-side COPY FROM STDIN. Use this bulk path for large seeds or migrations instead of repeated row inserts. Max UTF-8 payload size defaults to 64MiB (override ISOLATED_SQL_IMPORT_MAX_PAYLOAD_BYTES; hard cap 256MiB); split larger files across multiple calls.

package/dist/types/isolated-store/isolated-store.d.ts

@@ -367,6 +367,35 @@ export interface IsolatedStoreListResponseContract {
 export type ListIsolatedStoresClientIdInQueryOptional = string | null;
 /** Optional `aliasLike` query for `listIsolatedStores`; exact alias or glob (`*`, `?`). */
 export type ListIsolatedStoresAliasLikeInQueryOptional = string | null;
+export interface GetOrIsolatedStoreSourceContract {
+    orgId: string;
+    storeId?: string | null;
+    alias?: string | null;
+    stage: IsolatedStoreStageInPathRequired;
+    copyStrategy?: "checkpoint_restore" | null;
+}
+export interface GetOrIsolatedStoreRequestContract {
+    clientId: string;
+    alias: string;
+    storeType: IsolatedStoreTypeContract;
+    engine: IsolatedStoreEngineContract;
+    targetStage: IsolatedStoreStageInPathRequired;
+    source?: GetOrIsolatedStoreSourceContract | null;
+}
+export interface GetOrIsolatedStoreResponseContract {
+    created: boolean;
+    cloned: boolean;
+    store: IsolatedStoreContract;
+    stageInstance: IsolatedStoreStageInstanceContract;
+    source?: {
+        orgId: string;
+        storeId: string;
+        alias: string;
+        stage: IsolatedStoreStageInPathRequired;
+    } | null;
+    copiedFromRevision?: IsolatedStoreRevisionContract | null;
+    lineageMetadata?: Record<string, unknown> | null;
+}
 export interface IsolatedStoreResponseContract {
     store: IsolatedStoreContract;
 }

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@fusebase/fusebase-gate-sdk",
-  "version": "2.2.10-sdk.0",
+  "version": "2.2.10-sdk.2",
   "description": "TypeScript SDK for Fusebase Gate APIs - Generated from contract introspection",
   "main": "./dist/index.js",
   "types": "./dist/index.d.ts",

package/release-notes/2.2.10-sdk.2.md

@@ -0,0 +1,9 @@
+# Release Notes 2.2.10-sdk.2
+
+- Current ref: `HEAD`
+- Previous tag: `v2.2.10-sdk.2`
+- Generated at: 2026-04-22T13:21:20.139Z
+
+## Included Drafts
+
+- None

package/release-notes/latest.md

@@ -1,71 +1,9 @@
-# Release Notes 2.2.10-sdk.0
+# Release Notes 2.2.10-sdk.2
 
 - Current ref: `HEAD`
-- Previous tag: `v2.2.10-sdk.0`
-- Generated at: 2026-04-22T07:58:13.022Z
+- Previous tag: `v2.2.10-sdk.2`
+- Generated at: 2026-04-22T13:21:20.139Z
 
 ## Included Drafts
 
-- `docs/release-notes/2026-04-20-azure-file-upload-api.md` - 2026-04-20-azure-file-upload-api
-
-## Summary
-
-### 2026-04-20-azure-file-upload-api
-
-Added org-scoped file upload, read-url, and deletion endpoints for Azure Blob Storage direct transfers, then hardened the multipart token flow, moved container creation out of per-request runtime handling, and introduced public-vs-private file visibility with stable public asset URLs.
-
-
-## API / SDK Changes
-
-### 2026-04-20-azure-file-upload-api
-
-- Added `POST /:orgId/files/prepare-upload` to generate a short-lived SAS upload URL, blob `fileId`, required upload headers, expiration time, `visibility`, and an optional stable `publicUrl`.
-- Added `POST /:orgId/files/uploads/start` to start an explicit Azure block-blob multipart upload and return an opaque `uploadId`.
-- Added `POST /:orgId/files/uploads/:uploadId/complete` to commit the staged Azure block ids for a multipart upload and return the final file `visibility` plus optional `publicUrl`.
-- Added `POST /:orgId/files/download-url` to generate either a short-lived read-only SAS URL or a stable public URL for a previously uploaded org-scoped blob.
-- Added `DELETE /:orgId/files` to delete a previously prepared org-scoped blob by `fileId` in the request body, with optional `visibility` for public assets.
-- Added the generated `FilesApi` SDK surface for these operations.
-- Hardened multipart `uploadId` values so they are signed and expiring instead of plain base64 payloads.
-- Removed container creation from the request path; upload preparation now performs only blob-level work.
-- Added optional startup-time container initialization through `AZURE_STORAGE_CREATE_CONTAINER_ON_STARTUP`.
-- Added optional public file storage configuration through `AZURE_STORAGE_PUBLIC_CONTAINER` and `AZURE_STORAGE_PUBLIC_BASE_URL`.
-- Added Gate MCP guidance for file-upload flows and new `files.write` and `files.read` permissions.
-- Added Gate-side validation limits for file upload inputs and composed Azure blob paths so oversized names fail fast with clear `400` responses.
-
-
-## Consumer Impact
-
-### 2026-04-20-azure-file-upload-api
-
-- Clients should upload file bytes directly to Azure Blob Storage using the returned `uploadUrl`, `method`, and `headers`; Gate does not proxy file bytes.
-- Clients should download file bytes directly from Azure Blob Storage or the configured public asset origin using the returned `downloadUrl`; Gate does not proxy file bytes for reads either.
-- Multipart clients should stage blocks directly against the returned `uploadUrl`, keep the base64 block ids they used, and send those ids to `completeMultipartFileUpload`.
-- Treat multipart `uploadId` values as opaque short-lived server tokens. Clients must not decode, modify, or synthesize them.
-- Persist the returned `fileId` exactly as-is if the app needs to read or delete the blob later.
-- Persist the returned `visibility` as well when there is no separate file record yet; public reads and deletes rely on that value to resolve the correct storage container.
-- Use `visibility: "public"` on upload-start requests when the app needs a stable asset URL for long-lived embeds such as blog images or `<img src>` values.
-- Use `getFileDownloadUrl` with `access: "temporary"` for protected or expiring reads, and `access: "public"` for stable public URLs. `disposition: "attachment"` is only supported for temporary reads.
-- Upload preparation now rejects `filename` values longer than 255 characters, `folder` values longer than 512 characters, `contentType` values longer than 255 characters, and `fileId` values longer than Azure's 1,024-character blob-name limit.
-- Gate also rejects composed blob paths that exceed Azure naming limits or contain too many path segments for safe Azure Blob usage.
-- Runtime configuration now expects `AZURE_STORAGE_ACCOUNT_NAME` and can optionally use `AZURE_STORAGE_CONTAINER`, `AZURE_STORAGE_PUBLIC_CONTAINER`, `AZURE_STORAGE_PUBLIC_BASE_URL`, `AZURE_STORAGE_ACCOUNT_KEY`, `AZURE_STORAGE_UPLOAD_URL_TTL_SECONDS`, `AZURE_STORAGE_UPLOAD_ID_SECRET`, and `AZURE_STORAGE_CREATE_CONTAINER_ON_STARTUP`.
-- Preferred deployment model is a pre-created container from infrastructure. Startup-time container creation is opt-in for environments that intentionally grant container-management permissions.
-- Stable public URLs only work when the configured public container or CDN-backed base URL is actually publicly reachable; Gate does not probe public reachability per request.
-
-
-## Verification
-
-### 2026-04-20-azure-file-upload-api
-
-- `npm run build:sdk`
-- `npm run mcp:skills:generate`
-- `npm run mcp:skills:validate`
-- `npm test`
-- `npm run lint`
-
-
-## Follow-ups
-
-### 2026-04-20-azure-file-upload-api
-
-- Wire the new Azure storage env vars into the active Fusebase Gate Helm chart values and secrets once the deployment chart path and environment-specific account values are confirmed.
-- If the production environment supports Microsoft Entra or managed identity, prefer user delegation SAS over account-key SAS.
+- None

package/release-notes/2.2.10-sdk.0.md

@@ -1,71 +0,0 @@
-# Release Notes 2.2.10-sdk.0
-
-- Current ref: `HEAD`
-- Previous tag: `v2.2.10-sdk.0`
-- Generated at: 2026-04-22T07:58:13.022Z
-
-## Included Drafts
-
-- `docs/release-notes/2026-04-20-azure-file-upload-api.md` - 2026-04-20-azure-file-upload-api
-
-## Summary
-
-### 2026-04-20-azure-file-upload-api
-
-Added org-scoped file upload, read-url, and deletion endpoints for Azure Blob Storage direct transfers, then hardened the multipart token flow, moved container creation out of per-request runtime handling, and introduced public-vs-private file visibility with stable public asset URLs.
-
-
-## API / SDK Changes
-
-### 2026-04-20-azure-file-upload-api
-
-- Added `POST /:orgId/files/prepare-upload` to generate a short-lived SAS upload URL, blob `fileId`, required upload headers, expiration time, `visibility`, and an optional stable `publicUrl`.
-- Added `POST /:orgId/files/uploads/start` to start an explicit Azure block-blob multipart upload and return an opaque `uploadId`.
-- Added `POST /:orgId/files/uploads/:uploadId/complete` to commit the staged Azure block ids for a multipart upload and return the final file `visibility` plus optional `publicUrl`.
-- Added `POST /:orgId/files/download-url` to generate either a short-lived read-only SAS URL or a stable public URL for a previously uploaded org-scoped blob.
-- Added `DELETE /:orgId/files` to delete a previously prepared org-scoped blob by `fileId` in the request body, with optional `visibility` for public assets.
-- Added the generated `FilesApi` SDK surface for these operations.
-- Hardened multipart `uploadId` values so they are signed and expiring instead of plain base64 payloads.
-- Removed container creation from the request path; upload preparation now performs only blob-level work.
-- Added optional startup-time container initialization through `AZURE_STORAGE_CREATE_CONTAINER_ON_STARTUP`.
-- Added optional public file storage configuration through `AZURE_STORAGE_PUBLIC_CONTAINER` and `AZURE_STORAGE_PUBLIC_BASE_URL`.
-- Added Gate MCP guidance for file-upload flows and new `files.write` and `files.read` permissions.
-- Added Gate-side validation limits for file upload inputs and composed Azure blob paths so oversized names fail fast with clear `400` responses.
-
-
-## Consumer Impact
-
-### 2026-04-20-azure-file-upload-api
-
-- Clients should upload file bytes directly to Azure Blob Storage using the returned `uploadUrl`, `method`, and `headers`; Gate does not proxy file bytes.
-- Clients should download file bytes directly from Azure Blob Storage or the configured public asset origin using the returned `downloadUrl`; Gate does not proxy file bytes for reads either.
-- Multipart clients should stage blocks directly against the returned `uploadUrl`, keep the base64 block ids they used, and send those ids to `completeMultipartFileUpload`.
-- Treat multipart `uploadId` values as opaque short-lived server tokens. Clients must not decode, modify, or synthesize them.
-- Persist the returned `fileId` exactly as-is if the app needs to read or delete the blob later.
-- Persist the returned `visibility` as well when there is no separate file record yet; public reads and deletes rely on that value to resolve the correct storage container.
-- Use `visibility: "public"` on upload-start requests when the app needs a stable asset URL for long-lived embeds such as blog images or `<img src>` values.
-- Use `getFileDownloadUrl` with `access: "temporary"` for protected or expiring reads, and `access: "public"` for stable public URLs. `disposition: "attachment"` is only supported for temporary reads.
-- Upload preparation now rejects `filename` values longer than 255 characters, `folder` values longer than 512 characters, `contentType` values longer than 255 characters, and `fileId` values longer than Azure's 1,024-character blob-name limit.
-- Gate also rejects composed blob paths that exceed Azure naming limits or contain too many path segments for safe Azure Blob usage.
-- Runtime configuration now expects `AZURE_STORAGE_ACCOUNT_NAME` and can optionally use `AZURE_STORAGE_CONTAINER`, `AZURE_STORAGE_PUBLIC_CONTAINER`, `AZURE_STORAGE_PUBLIC_BASE_URL`, `AZURE_STORAGE_ACCOUNT_KEY`, `AZURE_STORAGE_UPLOAD_URL_TTL_SECONDS`, `AZURE_STORAGE_UPLOAD_ID_SECRET`, and `AZURE_STORAGE_CREATE_CONTAINER_ON_STARTUP`.
-- Preferred deployment model is a pre-created container from infrastructure. Startup-time container creation is opt-in for environments that intentionally grant container-management permissions.
-- Stable public URLs only work when the configured public container or CDN-backed base URL is actually publicly reachable; Gate does not probe public reachability per request.
-
-
-## Verification
-
-### 2026-04-20-azure-file-upload-api
-
-- `npm run build:sdk`
-- `npm run mcp:skills:generate`
-- `npm run mcp:skills:validate`
-- `npm test`
-- `npm run lint`
-
-
-## Follow-ups
-
-### 2026-04-20-azure-file-upload-api
-
-- Wire the new Azure storage env vars into the active Fusebase Gate Helm chart values and secrets once the deployment chart path and environment-specific account values are confirmed.
-- If the production environment supports Microsoft Entra or managed identity, prefer user delegation SAS over account-key SAS.