@hearth-auth/node 0.0.1

package/dist/admin.d.ts

@@ -0,0 +1,83 @@
+/** §12 — AdminClient: management operations against the Hearth admin API. */
+export interface AdminClientConfig {
+    /** Root URL of the Hearth instance (no trailing slash). */
+    base_url: string;
+    /** ID of the realm to administer. */
+    realm_id: string;
+    /** A valid access token whose subject holds the `admin` role in the target realm. */
+    access_token: string;
+}
+export interface PageOptions {
+    limit?: number;
+    cursor?: string;
+}
+export interface PageResponse<T> {
+    items: T[];
+    next_cursor: string | null;
+}
+export declare class AdminClient {
+    private readonly baseUrl;
+    private readonly realmId;
+    private readonly accessToken;
+    constructor(config: AdminClientConfig);
+    private get authHeaders();
+    private buildUrl;
+    private request;
+    /** Create a new user in the realm. */
+    createUser(params: Record<string, unknown>): Promise<Record<string, unknown>>;
+    /** Get a user by ID. */
+    getUser(id: string): Promise<Record<string, unknown>>;
+    /** Update a user by ID. */
+    updateUser(id: string, params: Record<string, unknown>): Promise<Record<string, unknown>>;
+    /** Delete a user by ID. */
+    deleteUser(id: string): Promise<void>;
+    /** List users with optional pagination. */
+    listUsers(options?: PageOptions): Promise<PageResponse<Record<string, unknown>>>;
+    /** Create a new realm. */
+    createRealm(params: Record<string, unknown>): Promise<Record<string, unknown>>;
+    /** Get a realm by ID. */
+    getRealm(id: string): Promise<Record<string, unknown>>;
+    /** Update a realm by ID. */
+    updateRealm(id: string, params: Record<string, unknown>): Promise<Record<string, unknown>>;
+    /** Delete a realm by ID. */
+    deleteRealm(id: string): Promise<void>;
+    /** List realms with optional pagination. */
+    listRealms(options?: PageOptions): Promise<PageResponse<Record<string, unknown>>>;
+    /** Create an OAuth 2.0 client registration. */
+    createClient(params: Record<string, unknown>): Promise<Record<string, unknown>>;
+    /** Get an OAuth client by ID. */
+    getClient(id: string): Promise<Record<string, unknown>>;
+    /** Update an OAuth client by ID. */
+    updateClient(id: string, params: Record<string, unknown>): Promise<Record<string, unknown>>;
+    /** Delete an OAuth client by ID. */
+    deleteClient(id: string): Promise<void>;
+    /** List OAuth clients with optional pagination. */
+    listClients(options?: PageOptions): Promise<PageResponse<Record<string, unknown>>>;
+    /** Create a role in the realm. */
+    createRole(params: Record<string, unknown>): Promise<Record<string, unknown>>;
+    /** Get a role by ID. */
+    getRole(id: string): Promise<Record<string, unknown>>;
+    /** Update a role by ID. */
+    updateRole(id: string, params: Record<string, unknown>): Promise<Record<string, unknown>>;
+    /** Delete a role by ID. */
+    deleteRole(id: string): Promise<void>;
+    /** List roles with optional pagination. */
+    listRoles(options?: PageOptions): Promise<PageResponse<Record<string, unknown>>>;
+    /** Create a group in the realm. */
+    createGroup(params: Record<string, unknown>): Promise<Record<string, unknown>>;
+    /** Get a group by ID. */
+    getGroup(id: string): Promise<Record<string, unknown>>;
+    /** Update a group by ID. */
+    updateGroup(id: string, params: Record<string, unknown>): Promise<Record<string, unknown>>;
+    /** Delete a group by ID. */
+    deleteGroup(id: string): Promise<void>;
+    /** List groups with optional pagination. */
+    listGroups(options?: PageOptions): Promise<PageResponse<Record<string, unknown>>>;
+    /** Add a member to an organization. */
+    addOrgMember(orgId: string, params: Record<string, unknown>): Promise<Record<string, unknown>>;
+    /** List members of an organization. */
+    listOrgMembers(orgId: string, options?: PageOptions): Promise<PageResponse<Record<string, unknown>>>;
+    /** Remove a member from an organization. */
+    removeOrgMember(orgId: string, userId: string): Promise<void>;
+}
+//# sourceMappingURL=admin.d.ts.map

package/dist/admin.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"admin.d.ts","sourceRoot":"","sources":["../src/admin.ts"],"names":[],"mappings":"AAAA,6EAA6E;AAI7E,MAAM,WAAW,iBAAiB;IAChC,2DAA2D;IAC3D,QAAQ,EAAE,MAAM,CAAC;IACjB,qCAAqC;IACrC,QAAQ,EAAE,MAAM,CAAC;IACjB,qFAAqF;IACrF,YAAY,EAAE,MAAM,CAAC;CACtB;AAED,MAAM,WAAW,WAAW;IAC1B,KAAK,CAAC,EAAE,MAAM,CAAC;IACf,MAAM,CAAC,EAAE,MAAM,CAAC;CACjB;AAED,MAAM,WAAW,YAAY,CAAC,CAAC;IAC7B,KAAK,EAAE,CAAC,EAAE,CAAC;IACX,WAAW,EAAE,MAAM,GAAG,IAAI,CAAC;CAC5B;AAED,qBAAa,WAAW;IACtB,OAAO,CAAC,QAAQ,CAAC,OAAO,CAAS;IACjC,OAAO,CAAC,QAAQ,CAAC,OAAO,CAAS;IACjC,OAAO,CAAC,QAAQ,CAAC,WAAW,CAAS;gBAEzB,MAAM,EAAE,iBAAiB;IASrC,OAAO,KAAK,WAAW,GAMtB;IAED,OAAO,CAAC,QAAQ;YAOF,OAAO;IAyBrB,sCAAsC;IAChC,UAAU,CAAC,MAAM,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,GAAG,OAAO,CAAC,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;IAInF,wBAAwB;IAClB,OAAO,CAAC,EAAE,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;IAI3D,2BAA2B;IACrB,UAAU,CAAC,EAAE,EAAE,MAAM,EAAE,MAAM,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,GAAG,OAAO,CAAC,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;IAI/F,2BAA2B;IACrB,UAAU,CAAC,EAAE,EAAE,MAAM,GAAG,OAAO,CAAC,IAAI,CAAC;IAI3C,2CAA2C;IACrC,SAAS,CAAC,OAAO,CAAC,EAAE,WAAW,GAAG,OAAO,CAAC,YAAY,CAAC,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC,CAAC;IAOtF,0BAA0B;IACpB,WAAW,CAAC,MAAM,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,GAAG,OAAO,CAAC,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;IAIpF,yBAAyB;IACnB,QAAQ,CAAC,EAAE,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;IAI5D,4BAA4B;IACtB,WAAW,CAAC,EAAE,EAAE,MAAM,EAAE,MAAM,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,GAAG,OAAO,CAAC,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;IAIhG,4BAA4B;IACtB,WAAW,CAAC,EAAE,EAAE,MAAM,GAAG,OAAO,CAAC,IAAI,CAAC;IAI5C,4CAA4C;IACtC,UAAU,CAAC,OAAO,CAAC,EAAE,WAAW,GAAG,OAAO,CAAC,YAAY,CAAC,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC,CAAC;IAOvF,+CAA+C;IACzC,YAAY,CAAC,MAAM,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,GAAG,OAAO,CAAC,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;IAIrF,iCAAiC;IAC3B,SAAS,CAAC,EAAE,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;IAI7D,oCAAoC;IAC9B,YAAY,CAAC,EAAE,EAAE,MAAM,EAAE,MAAM,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,GAAG,OAAO,CAAC,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;IAIjG,oCAAoC;IAC9B,YAAY,CAAC,EAAE,EAAE,MAAM,GAAG,OAAO,CAAC,IAAI,CAAC;IAI7C,mDAAmD;IAC7C,WAAW,CAAC,OAAO,CAAC,EAAE,WAAW,GAAG,OAAO,CAAC,YAAY,CAAC,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC,CAAC;IAOxF,kCAAkC;IAC5B,UAAU,CAAC,MAAM,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,GAAG,OAAO,CAAC,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;IAInF,wBAAwB;IAClB,OAAO,CAAC,EAAE,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;IAI3D,2BAA2B;IACrB,UAAU,CAAC,EAAE,EAAE,MAAM,EAAE,MAAM,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,GAAG,OAAO,CAAC,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;IAI/F,2BAA2B;IACrB,UAAU,CAAC,EAAE,EAAE,MAAM,GAAG,OAAO,CAAC,IAAI,CAAC;IAI3C,2CAA2C;IACrC,SAAS,CAAC,OAAO,CAAC,EAAE,WAAW,GAAG,OAAO,CAAC,YAAY,CAAC,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC,CAAC;IAOtF,mCAAmC;IAC7B,WAAW,CAAC,MAAM,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,GAAG,OAAO,CAAC,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;IAIpF,yBAAyB;IACnB,QAAQ,CAAC,EAAE,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;IAI5D,4BAA4B;IACtB,WAAW,CAAC,EAAE,EAAE,MAAM,EAAE,MAAM,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,GAAG,OAAO,CAAC,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;IAIhG,4BAA4B;IACtB,WAAW,CAAC,EAAE,EAAE,MAAM,GAAG,OAAO,CAAC,IAAI,CAAC;IAI5C,4CAA4C;IACtC,UAAU,CAAC,OAAO,CAAC,EAAE,WAAW,GAAG,OAAO,CAAC,YAAY,CAAC,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC,CAAC;IAOvF,uCAAuC;IACjC,YAAY,CAAC,KAAK,EAAE,MAAM,EAAE,MAAM,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,GAAG,OAAO,CAAC,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;IAIpG,uCAAuC;IACjC,cAAc,CAAC,KAAK,EAAE,MAAM,EAAE,OAAO,CAAC,EAAE,WAAW,GAAG,OAAO,CAAC,YAAY,CAAC,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC,CAAC;IAM1G,4CAA4C;IACtC,eAAe,CAAC,KAAK,EAAE,MAAM,EAAE,MAAM,EAAE,MAAM,GAAG,OAAO,CAAC,IAAI,CAAC;CAGpE"}

package/dist/admin.js

@@ -0,0 +1,184 @@
+/** §12 — AdminClient: management operations against the Hearth admin API. */
+import { ConfigurationError, AdminHttpError } from "./errors.js";
+export class AdminClient {
+    baseUrl;
+    realmId;
+    accessToken;
+    constructor(config) {
+        if (!config.base_url)
+            throw new ConfigurationError("AdminClient: base_url is required");
+        if (!config.realm_id)
+            throw new ConfigurationError("AdminClient: realm_id is required");
+        if (!config.access_token)
+            throw new ConfigurationError("AdminClient: access_token is required");
+        this.baseUrl = config.base_url.replace(/\/$/, "");
+        this.realmId = config.realm_id;
+        this.accessToken = config.access_token;
+    }
+    get authHeaders() {
+        return {
+            "Authorization": `Bearer ${this.accessToken}`,
+            "X-Realm-ID": this.realmId,
+            "Content-Type": "application/json",
+        };
+    }
+    buildUrl(path, params) {
+        const url = new URL(`${this.baseUrl}${path}`);
+        if (params?.limit !== undefined)
+            url.searchParams.set("limit", String(params.limit));
+        if (params?.cursor !== undefined)
+            url.searchParams.set("cursor", params.cursor);
+        return url.toString();
+    }
+    async request(method, url, body) {
+        const init = {
+            method,
+            headers: this.authHeaders,
+        };
+        if (body !== undefined) {
+            init.body = JSON.stringify(body);
+        }
+        const res = await fetch(url, init);
+        if (!res.ok) {
+            let message = `Admin API error: HTTP ${res.status}`;
+            try {
+                const json = (await res.json());
+                if (json.error && typeof json.error === "string")
+                    message = json.error;
+            }
+            catch {
+                // ignore parse failure
+            }
+            throw new AdminHttpError(res.status, message);
+        }
+        if (res.status === 204)
+            return {};
+        return res.json();
+    }
+    // ── Users ──────────────────────────────────────────────────────────────────
+    /** Create a new user in the realm. */
+    async createUser(params) {
+        return this.request("POST", this.buildUrl("/admin/users"), params);
+    }
+    /** Get a user by ID. */
+    async getUser(id) {
+        return this.request("GET", this.buildUrl(`/admin/users/${id}`));
+    }
+    /** Update a user by ID. */
+    async updateUser(id, params) {
+        return this.request("PATCH", this.buildUrl(`/admin/users/${id}`), params);
+    }
+    /** Delete a user by ID. */
+    async deleteUser(id) {
+        await this.request("DELETE", this.buildUrl(`/admin/users/${id}`));
+    }
+    /** List users with optional pagination. */
+    async listUsers(options) {
+        const url = options ? this.buildUrl("/admin/users", options) : `${this.baseUrl}/admin/users`;
+        return this.request("GET", url);
+    }
+    // ── Realms ─────────────────────────────────────────────────────────────────
+    /** Create a new realm. */
+    async createRealm(params) {
+        return this.request("POST", this.buildUrl("/admin/realms"), params);
+    }
+    /** Get a realm by ID. */
+    async getRealm(id) {
+        return this.request("GET", this.buildUrl(`/admin/realms/${id}`));
+    }
+    /** Update a realm by ID. */
+    async updateRealm(id, params) {
+        return this.request("PATCH", this.buildUrl(`/admin/realms/${id}`), params);
+    }
+    /** Delete a realm by ID. */
+    async deleteRealm(id) {
+        await this.request("DELETE", this.buildUrl(`/admin/realms/${id}`));
+    }
+    /** List realms with optional pagination. */
+    async listRealms(options) {
+        const url = options ? this.buildUrl("/admin/realms", options) : `${this.baseUrl}/admin/realms`;
+        return this.request("GET", url);
+    }
+    // ── OAuth Clients ──────────────────────────────────────────────────────────
+    /** Create an OAuth 2.0 client registration. */
+    async createClient(params) {
+        return this.request("POST", this.buildUrl("/admin/clients"), params);
+    }
+    /** Get an OAuth client by ID. */
+    async getClient(id) {
+        return this.request("GET", this.buildUrl(`/admin/clients/${id}`));
+    }
+    /** Update an OAuth client by ID. */
+    async updateClient(id, params) {
+        return this.request("PATCH", this.buildUrl(`/admin/clients/${id}`), params);
+    }
+    /** Delete an OAuth client by ID. */
+    async deleteClient(id) {
+        await this.request("DELETE", this.buildUrl(`/admin/clients/${id}`));
+    }
+    /** List OAuth clients with optional pagination. */
+    async listClients(options) {
+        const url = options ? this.buildUrl("/admin/clients", options) : `${this.baseUrl}/admin/clients`;
+        return this.request("GET", url);
+    }
+    // ── Roles ──────────────────────────────────────────────────────────────────
+    /** Create a role in the realm. */
+    async createRole(params) {
+        return this.request("POST", this.buildUrl("/admin/roles"), params);
+    }
+    /** Get a role by ID. */
+    async getRole(id) {
+        return this.request("GET", this.buildUrl(`/admin/roles/${id}`));
+    }
+    /** Update a role by ID. */
+    async updateRole(id, params) {
+        return this.request("PATCH", this.buildUrl(`/admin/roles/${id}`), params);
+    }
+    /** Delete a role by ID. */
+    async deleteRole(id) {
+        await this.request("DELETE", this.buildUrl(`/admin/roles/${id}`));
+    }
+    /** List roles with optional pagination. */
+    async listRoles(options) {
+        const url = options ? this.buildUrl("/admin/roles", options) : `${this.baseUrl}/admin/roles`;
+        return this.request("GET", url);
+    }
+    // ── Groups ─────────────────────────────────────────────────────────────────
+    /** Create a group in the realm. */
+    async createGroup(params) {
+        return this.request("POST", this.buildUrl("/admin/groups"), params);
+    }
+    /** Get a group by ID. */
+    async getGroup(id) {
+        return this.request("GET", this.buildUrl(`/admin/groups/${id}`));
+    }
+    /** Update a group by ID. */
+    async updateGroup(id, params) {
+        return this.request("PATCH", this.buildUrl(`/admin/groups/${id}`), params);
+    }
+    /** Delete a group by ID. */
+    async deleteGroup(id) {
+        await this.request("DELETE", this.buildUrl(`/admin/groups/${id}`));
+    }
+    /** List groups with optional pagination. */
+    async listGroups(options) {
+        const url = options ? this.buildUrl("/admin/groups", options) : `${this.baseUrl}/admin/groups`;
+        return this.request("GET", url);
+    }
+    // ── Organization Memberships ───────────────────────────────────────────────
+    /** Add a member to an organization. */
+    async addOrgMember(orgId, params) {
+        return this.request("POST", this.buildUrl(`/admin/orgs/${orgId}/members`), params);
+    }
+    /** List members of an organization. */
+    async listOrgMembers(orgId, options) {
+        const path = `/admin/orgs/${orgId}/members`;
+        const url = options ? this.buildUrl(path, options) : `${this.baseUrl}${path}`;
+        return this.request("GET", url);
+    }
+    /** Remove a member from an organization. */
+    async removeOrgMember(orgId, userId) {
+        await this.request("DELETE", this.buildUrl(`/admin/orgs/${orgId}/members/${userId}`));
+    }
+}
+//# sourceMappingURL=admin.js.map

package/dist/admin.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"admin.js","sourceRoot":"","sources":["../src/admin.ts"],"names":[],"mappings":"AAAA,6EAA6E;AAE7E,OAAO,EAAE,kBAAkB,EAAE,cAAc,EAAE,MAAM,aAAa,CAAC;AAqBjE,MAAM,OAAO,WAAW;IACL,OAAO,CAAS;IAChB,OAAO,CAAS;IAChB,WAAW,CAAS;IAErC,YAAY,MAAyB;QACnC,IAAI,CAAC,MAAM,CAAC,QAAQ;YAAE,MAAM,IAAI,kBAAkB,CAAC,mCAAmC,CAAC,CAAC;QACxF,IAAI,CAAC,MAAM,CAAC,QAAQ;YAAE,MAAM,IAAI,kBAAkB,CAAC,mCAAmC,CAAC,CAAC;QACxF,IAAI,CAAC,MAAM,CAAC,YAAY;YAAE,MAAM,IAAI,kBAAkB,CAAC,uCAAuC,CAAC,CAAC;QAChG,IAAI,CAAC,OAAO,GAAG,MAAM,CAAC,QAAQ,CAAC,OAAO,CAAC,KAAK,EAAE,EAAE,CAAC,CAAC;QAClD,IAAI,CAAC,OAAO,GAAG,MAAM,CAAC,QAAQ,CAAC;QAC/B,IAAI,CAAC,WAAW,GAAG,MAAM,CAAC,YAAY,CAAC;IACzC,CAAC;IAED,IAAY,WAAW;QACrB,OAAO;YACL,eAAe,EAAE,UAAU,IAAI,CAAC,WAAW,EAAE;YAC7C,YAAY,EAAE,IAAI,CAAC,OAAO;YAC1B,cAAc,EAAE,kBAAkB;SACnC,CAAC;IACJ,CAAC;IAEO,QAAQ,CAAC,IAAY,EAAE,MAAoB;QACjD,MAAM,GAAG,GAAG,IAAI,GAAG,CAAC,GAAG,IAAI,CAAC,OAAO,GAAG,IAAI,EAAE,CAAC,CAAC;QAC9C,IAAI,MAAM,EAAE,KAAK,KAAK,SAAS;YAAE,GAAG,CAAC,YAAY,CAAC,GAAG,CAAC,OAAO,EAAE,MAAM,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC,CAAC;QACrF,IAAI,MAAM,EAAE,MAAM,KAAK,SAAS;YAAE,GAAG,CAAC,YAAY,CAAC,GAAG,CAAC,QAAQ,EAAE,MAAM,CAAC,MAAM,CAAC,CAAC;QAChF,OAAO,GAAG,CAAC,QAAQ,EAAE,CAAC;IACxB,CAAC;IAEO,KAAK,CAAC,OAAO,CAAI,MAAc,EAAE,GAAW,EAAE,IAAc;QAClE,MAAM,IAAI,GAAgB;YACxB,MAAM;YACN,OAAO,EAAE,IAAI,CAAC,WAAW;SAC1B,CAAC;QACF,IAAI,IAAI,KAAK,SAAS,EAAE,CAAC;YACvB,IAAI,CAAC,IAAI,GAAG,IAAI,CAAC,SAAS,CAAC,IAAI,CAAC,CAAC;QACnC,CAAC;QACD,MAAM,GAAG,GAAG,MAAM,KAAK,CAAC,GAAG,EAAE,IAAI,CAAC,CAAC;QACnC,IAAI,CAAC,GAAG,CAAC,EAAE,EAAE,CAAC;YACZ,IAAI,OAAO,GAAG,yBAAyB,GAAG,CAAC,MAAM,EAAE,CAAC;YACpD,IAAI,CAAC;gBACH,MAAM,IAAI,GAAG,CAAC,MAAM,GAAG,CAAC,IAAI,EAAE,CAA4B,CAAC;gBAC3D,IAAI,IAAI,CAAC,KAAK,IAAI,OAAO,IAAI,CAAC,KAAK,KAAK,QAAQ;oBAAE,OAAO,GAAG,IAAI,CAAC,KAAK,CAAC;YACzE,CAAC;YAAC,MAAM,CAAC;gBACP,uBAAuB;YACzB,CAAC;YACD,MAAM,IAAI,cAAc,CAAC,GAAG,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;QAChD,CAAC;QACD,IAAI,GAAG,CAAC,MAAM,KAAK,GAAG;YAAE,OAAO,EAAO,CAAC;QACvC,OAAO,GAAG,CAAC,IAAI,EAAgB,CAAC;IAClC,CAAC;IAED,8EAA8E;IAE9E,sCAAsC;IACtC,KAAK,CAAC,UAAU,CAAC,MAA+B;QAC9C,OAAO,IAAI,CAAC,OAAO,CAAC,MAAM,EAAE,IAAI,CAAC,QAAQ,CAAC,cAAc,CAAC,EAAE,MAAM,CAAC,CAAC;IACrE,CAAC;IAED,wBAAwB;IACxB,KAAK,CAAC,OAAO,CAAC,EAAU;QACtB,OAAO,IAAI,CAAC,OAAO,CAAC,KAAK,EAAE,IAAI,CAAC,QAAQ,CAAC,gBAAgB,EAAE,EAAE,CAAC,CAAC,CAAC;IAClE,CAAC;IAED,2BAA2B;IAC3B,KAAK,CAAC,UAAU,CAAC,EAAU,EAAE,MAA+B;QAC1D,OAAO,IAAI,CAAC,OAAO,CAAC,OAAO,EAAE,IAAI,CAAC,QAAQ,CAAC,gBAAgB,EAAE,EAAE,CAAC,EAAE,MAAM,CAAC,CAAC;IAC5E,CAAC;IAED,2BAA2B;IAC3B,KAAK,CAAC,UAAU,CAAC,EAAU;QACzB,MAAM,IAAI,CAAC,OAAO,CAAC,QAAQ,EAAE,IAAI,CAAC,QAAQ,CAAC,gBAAgB,EAAE,EAAE,CAAC,CAAC,CAAC;IACpE,CAAC;IAED,2CAA2C;IAC3C,KAAK,CAAC,SAAS,CAAC,OAAqB;QACnC,MAAM,GAAG,GAAG,OAAO,CAAC,CAAC,CAAC,IAAI,CAAC,QAAQ,CAAC,cAAc,EAAE,OAAO,CAAC,CAAC,CAAC,CAAC,GAAG,IAAI,CAAC,OAAO,cAAc,CAAC;QAC7F,OAAO,IAAI,CAAC,OAAO,CAAC,KAAK,EAAE,GAAG,CAAC,CAAC;IAClC,CAAC;IAED,8EAA8E;IAE9E,0BAA0B;IAC1B,KAAK,CAAC,WAAW,CAAC,MAA+B;QAC/C,OAAO,IAAI,CAAC,OAAO,CAAC,MAAM,EAAE,IAAI,CAAC,QAAQ,CAAC,eAAe,CAAC,EAAE,MAAM,CAAC,CAAC;IACtE,CAAC;IAED,yBAAyB;IACzB,KAAK,CAAC,QAAQ,CAAC,EAAU;QACvB,OAAO,IAAI,CAAC,OAAO,CAAC,KAAK,EAAE,IAAI,CAAC,QAAQ,CAAC,iBAAiB,EAAE,EAAE,CAAC,CAAC,CAAC;IACnE,CAAC;IAED,4BAA4B;IAC5B,KAAK,CAAC,WAAW,CAAC,EAAU,EAAE,MAA+B;QAC3D,OAAO,IAAI,CAAC,OAAO,CAAC,OAAO,EAAE,IAAI,CAAC,QAAQ,CAAC,iBAAiB,EAAE,EAAE,CAAC,EAAE,MAAM,CAAC,CAAC;IAC7E,CAAC;IAED,4BAA4B;IAC5B,KAAK,CAAC,WAAW,CAAC,EAAU;QAC1B,MAAM,IAAI,CAAC,OAAO,CAAC,QAAQ,EAAE,IAAI,CAAC,QAAQ,CAAC,iBAAiB,EAAE,EAAE,CAAC,CAAC,CAAC;IACrE,CAAC;IAED,4CAA4C;IAC5C,KAAK,CAAC,UAAU,CAAC,OAAqB;QACpC,MAAM,GAAG,GAAG,OAAO,CAAC,CAAC,CAAC,IAAI,CAAC,QAAQ,CAAC,eAAe,EAAE,OAAO,CAAC,CAAC,CAAC,CAAC,GAAG,IAAI,CAAC,OAAO,eAAe,CAAC;QAC/F,OAAO,IAAI,CAAC,OAAO,CAAC,KAAK,EAAE,GAAG,CAAC,CAAC;IAClC,CAAC;IAED,8EAA8E;IAE9E,+CAA+C;IAC/C,KAAK,CAAC,YAAY,CAAC,MAA+B;QAChD,OAAO,IAAI,CAAC,OAAO,CAAC,MAAM,EAAE,IAAI,CAAC,QAAQ,CAAC,gBAAgB,CAAC,EAAE,MAAM,CAAC,CAAC;IACvE,CAAC;IAED,iCAAiC;IACjC,KAAK,CAAC,SAAS,CAAC,EAAU;QACxB,OAAO,IAAI,CAAC,OAAO,CAAC,KAAK,EAAE,IAAI,CAAC,QAAQ,CAAC,kBAAkB,EAAE,EAAE,CAAC,CAAC,CAAC;IACpE,CAAC;IAED,oCAAoC;IACpC,KAAK,CAAC,YAAY,CAAC,EAAU,EAAE,MAA+B;QAC5D,OAAO,IAAI,CAAC,OAAO,CAAC,OAAO,EAAE,IAAI,CAAC,QAAQ,CAAC,kBAAkB,EAAE,EAAE,CAAC,EAAE,MAAM,CAAC,CAAC;IAC9E,CAAC;IAED,oCAAoC;IACpC,KAAK,CAAC,YAAY,CAAC,EAAU;QAC3B,MAAM,IAAI,CAAC,OAAO,CAAC,QAAQ,EAAE,IAAI,CAAC,QAAQ,CAAC,kBAAkB,EAAE,EAAE,CAAC,CAAC,CAAC;IACtE,CAAC;IAED,mDAAmD;IACnD,KAAK,CAAC,WAAW,CAAC,OAAqB;QACrC,MAAM,GAAG,GAAG,OAAO,CAAC,CAAC,CAAC,IAAI,CAAC,QAAQ,CAAC,gBAAgB,EAAE,OAAO,CAAC,CAAC,CAAC,CAAC,GAAG,IAAI,CAAC,OAAO,gBAAgB,CAAC;QACjG,OAAO,IAAI,CAAC,OAAO,CAAC,KAAK,EAAE,GAAG,CAAC,CAAC;IAClC,CAAC;IAED,8EAA8E;IAE9E,kCAAkC;IAClC,KAAK,CAAC,UAAU,CAAC,MAA+B;QAC9C,OAAO,IAAI,CAAC,OAAO,CAAC,MAAM,EAAE,IAAI,CAAC,QAAQ,CAAC,cAAc,CAAC,EAAE,MAAM,CAAC,CAAC;IACrE,CAAC;IAED,wBAAwB;IACxB,KAAK,CAAC,OAAO,CAAC,EAAU;QACtB,OAAO,IAAI,CAAC,OAAO,CAAC,KAAK,EAAE,IAAI,CAAC,QAAQ,CAAC,gBAAgB,EAAE,EAAE,CAAC,CAAC,CAAC;IAClE,CAAC;IAED,2BAA2B;IAC3B,KAAK,CAAC,UAAU,CAAC,EAAU,EAAE,MAA+B;QAC1D,OAAO,IAAI,CAAC,OAAO,CAAC,OAAO,EAAE,IAAI,CAAC,QAAQ,CAAC,gBAAgB,EAAE,EAAE,CAAC,EAAE,MAAM,CAAC,CAAC;IAC5E,CAAC;IAED,2BAA2B;IAC3B,KAAK,CAAC,UAAU,CAAC,EAAU;QACzB,MAAM,IAAI,CAAC,OAAO,CAAC,QAAQ,EAAE,IAAI,CAAC,QAAQ,CAAC,gBAAgB,EAAE,EAAE,CAAC,CAAC,CAAC;IACpE,CAAC;IAED,2CAA2C;IAC3C,KAAK,CAAC,SAAS,CAAC,OAAqB;QACnC,MAAM,GAAG,GAAG,OAAO,CAAC,CAAC,CAAC,IAAI,CAAC,QAAQ,CAAC,cAAc,EAAE,OAAO,CAAC,CAAC,CAAC,CAAC,GAAG,IAAI,CAAC,OAAO,cAAc,CAAC;QAC7F,OAAO,IAAI,CAAC,OAAO,CAAC,KAAK,EAAE,GAAG,CAAC,CAAC;IAClC,CAAC;IAED,8EAA8E;IAE9E,mCAAmC;IACnC,KAAK,CAAC,WAAW,CAAC,MAA+B;QAC/C,OAAO,IAAI,CAAC,OAAO,CAAC,MAAM,EAAE,IAAI,CAAC,QAAQ,CAAC,eAAe,CAAC,EAAE,MAAM,CAAC,CAAC;IACtE,CAAC;IAED,yBAAyB;IACzB,KAAK,CAAC,QAAQ,CAAC,EAAU;QACvB,OAAO,IAAI,CAAC,OAAO,CAAC,KAAK,EAAE,IAAI,CAAC,QAAQ,CAAC,iBAAiB,EAAE,EAAE,CAAC,CAAC,CAAC;IACnE,CAAC;IAED,4BAA4B;IAC5B,KAAK,CAAC,WAAW,CAAC,EAAU,EAAE,MAA+B;QAC3D,OAAO,IAAI,CAAC,OAAO,CAAC,OAAO,EAAE,IAAI,CAAC,QAAQ,CAAC,iBAAiB,EAAE,EAAE,CAAC,EAAE,MAAM,CAAC,CAAC;IAC7E,CAAC;IAED,4BAA4B;IAC5B,KAAK,CAAC,WAAW,CAAC,EAAU;QAC1B,MAAM,IAAI,CAAC,OAAO,CAAC,QAAQ,EAAE,IAAI,CAAC,QAAQ,CAAC,iBAAiB,EAAE,EAAE,CAAC,CAAC,CAAC;IACrE,CAAC;IAED,4CAA4C;IAC5C,KAAK,CAAC,UAAU,CAAC,OAAqB;QACpC,MAAM,GAAG,GAAG,OAAO,CAAC,CAAC,CAAC,IAAI,CAAC,QAAQ,CAAC,eAAe,EAAE,OAAO,CAAC,CAAC,CAAC,CAAC,GAAG,IAAI,CAAC,OAAO,eAAe,CAAC;QAC/F,OAAO,IAAI,CAAC,OAAO,CAAC,KAAK,EAAE,GAAG,CAAC,CAAC;IAClC,CAAC;IAED,8EAA8E;IAE9E,uCAAuC;IACvC,KAAK,CAAC,YAAY,CAAC,KAAa,EAAE,MAA+B;QAC/D,OAAO,IAAI,CAAC,OAAO,CAAC,MAAM,EAAE,IAAI,CAAC,QAAQ,CAAC,eAAe,KAAK,UAAU,CAAC,EAAE,MAAM,CAAC,CAAC;IACrF,CAAC;IAED,uCAAuC;IACvC,KAAK,CAAC,cAAc,CAAC,KAAa,EAAE,OAAqB;QACvD,MAAM,IAAI,GAAG,eAAe,KAAK,UAAU,CAAC;QAC5C,MAAM,GAAG,GAAG,OAAO,CAAC,CAAC,CAAC,IAAI,CAAC,QAAQ,CAAC,IAAI,EAAE,OAAO,CAAC,CAAC,CAAC,CAAC,GAAG,IAAI,CAAC,OAAO,GAAG,IAAI,EAAE,CAAC;QAC9E,OAAO,IAAI,CAAC,OAAO,CAAC,KAAK,EAAE,GAAG,CAAC,CAAC;IAClC,CAAC;IAED,4CAA4C;IAC5C,KAAK,CAAC,eAAe,CAAC,KAAa,EAAE,MAAc;QACjD,MAAM,IAAI,CAAC,OAAO,CAAC,QAAQ,EAAE,IAAI,CAAC,QAAQ,CAAC,eAAe,KAAK,YAAY,MAAM,EAAE,CAAC,CAAC,CAAC;IACxF,CAAC;CACF"}

package/dist/admin.test.d.ts

@@ -0,0 +1,2 @@
+export {};
+//# sourceMappingURL=admin.test.d.ts.map

package/dist/admin.test.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"admin.test.d.ts","sourceRoot":"","sources":["../src/admin.test.ts"],"names":[],"mappings":""}

package/dist/admin.test.js

@@ -0,0 +1,239 @@
+import { describe, it, expect, vi, beforeEach, afterEach } from "vitest";
+import { AdminClient } from "./admin.js";
+const BASE_ADMIN_CONFIG = {
+    base_url: "https://auth.example.com",
+    realm_id: "realm_abc123",
+    access_token: "admin-token-xyz",
+};
+function mockFetch(response, status = 200) {
+    return vi.fn().mockResolvedValue({
+        ok: status >= 200 && status < 300,
+        status,
+        json: async () => response,
+        text: async () => JSON.stringify(response),
+    });
+}
+describe("AdminClient — construction", () => {
+    it("can be instantiated with required params", () => {
+        const client = new AdminClient(BASE_ADMIN_CONFIG);
+        expect(client).toBeInstanceOf(AdminClient);
+    });
+    it("throws ConfigurationError when base_url is missing", () => {
+        expect(() => new AdminClient({ ...BASE_ADMIN_CONFIG, base_url: "" })).toThrow();
+    });
+    it("throws ConfigurationError when realm_id is missing", () => {
+        expect(() => new AdminClient({ ...BASE_ADMIN_CONFIG, realm_id: "" })).toThrow();
+    });
+    it("throws ConfigurationError when access_token is missing", () => {
+        expect(() => new AdminClient({ ...BASE_ADMIN_CONFIG, access_token: "" })).toThrow();
+    });
+});
+describe("AdminClient — Users CRUD", () => {
+    let client;
+    let fetchSpy;
+    beforeEach(() => {
+        client = new AdminClient(BASE_ADMIN_CONFIG);
+        fetchSpy = vi.fn();
+        vi.stubGlobal("fetch", fetchSpy);
+    });
+    afterEach(() => {
+        vi.unstubAllGlobals();
+    });
+    it("createUser sends POST /admin/users with correct headers", async () => {
+        fetchSpy.mockResolvedValue({ ok: true, status: 201, json: async () => ({ id: "usr_1", email: "alice@example.com" }) });
+        const result = await client.createUser({ email: "alice@example.com", password: "secret" });
+        expect(fetchSpy).toHaveBeenCalledOnce();
+        const [url, init] = fetchSpy.mock.calls[0];
+        expect(url).toBe("https://auth.example.com/admin/users");
+        expect(init.method).toBe("POST");
+        const headers = init.headers;
+        expect(headers["Authorization"]).toBe("Bearer admin-token-xyz");
+        expect(headers["X-Realm-ID"]).toBe("realm_abc123");
+        expect(result).toMatchObject({ id: "usr_1" });
+    });
+    it("getUser sends GET /admin/users/{id}", async () => {
+        fetchSpy.mockResolvedValue({ ok: true, status: 200, json: async () => ({ id: "usr_1", email: "alice@example.com" }) });
+        const result = await client.getUser("usr_1");
+        const [url, init] = fetchSpy.mock.calls[0];
+        expect(url).toBe("https://auth.example.com/admin/users/usr_1");
+        expect(init.method).toBe("GET");
+        expect(result).toMatchObject({ id: "usr_1" });
+    });
+    it("updateUser sends PATCH /admin/users/{id}", async () => {
+        fetchSpy.mockResolvedValue({ ok: true, status: 200, json: async () => ({ id: "usr_1", email: "newemail@example.com" }) });
+        await client.updateUser("usr_1", { email: "newemail@example.com" });
+        const [url, init] = fetchSpy.mock.calls[0];
+        expect(url).toBe("https://auth.example.com/admin/users/usr_1");
+        expect(init.method).toBe("PATCH");
+    });
+    it("deleteUser sends DELETE /admin/users/{id}", async () => {
+        fetchSpy.mockResolvedValue({ ok: true, status: 204, json: async () => ({}) });
+        await client.deleteUser("usr_1");
+        const [url, init] = fetchSpy.mock.calls[0];
+        expect(url).toBe("https://auth.example.com/admin/users/usr_1");
+        expect(init.method).toBe("DELETE");
+    });
+    it("listUsers sends GET /admin/users with pagination params", async () => {
+        fetchSpy.mockResolvedValue({ ok: true, status: 200, json: async () => ({ items: [], next_cursor: null }) });
+        const result = await client.listUsers({ limit: 10, cursor: "next-page-token" });
+        const [url] = fetchSpy.mock.calls[0];
+        expect(url).toContain("/admin/users");
+        expect(url).toContain("limit=10");
+        expect(url).toContain("cursor=next-page-token");
+        expect(result).toMatchObject({ items: [] });
+    });
+    it("listUsers without options omits pagination params", async () => {
+        fetchSpy.mockResolvedValue({ ok: true, status: 200, json: async () => ({ items: [], next_cursor: null }) });
+        await client.listUsers();
+        const [url] = fetchSpy.mock.calls[0];
+        expect(url).toBe("https://auth.example.com/admin/users");
+    });
+});
+describe("AdminClient — Realms CRUD", () => {
+    let client;
+    let fetchSpy;
+    beforeEach(() => {
+        client = new AdminClient(BASE_ADMIN_CONFIG);
+        fetchSpy = vi.fn();
+        vi.stubGlobal("fetch", fetchSpy);
+    });
+    afterEach(() => {
+        vi.unstubAllGlobals();
+    });
+    it("createRealm sends POST /admin/realms", async () => {
+        fetchSpy.mockResolvedValue({ ok: true, status: 201, json: async () => ({ id: "realm_new", name: "Test Realm" }) });
+        const result = await client.createRealm({ name: "Test Realm" });
+        const [url, init] = fetchSpy.mock.calls[0];
+        expect(url).toBe("https://auth.example.com/admin/realms");
+        expect(init.method).toBe("POST");
+        expect(result).toMatchObject({ id: "realm_new" });
+    });
+    it("getRealm sends GET /admin/realms/{id}", async () => {
+        fetchSpy.mockResolvedValue({ ok: true, status: 200, json: async () => ({ id: "realm_1" }) });
+        await client.getRealm("realm_1");
+        const [url] = fetchSpy.mock.calls[0];
+        expect(url).toBe("https://auth.example.com/admin/realms/realm_1");
+    });
+    it("updateRealm sends PATCH /admin/realms/{id}", async () => {
+        fetchSpy.mockResolvedValue({ ok: true, status: 200, json: async () => ({ id: "realm_1" }) });
+        await client.updateRealm("realm_1", { name: "Updated" });
+        const [url, init] = fetchSpy.mock.calls[0];
+        expect(url).toBe("https://auth.example.com/admin/realms/realm_1");
+        expect(init.method).toBe("PATCH");
+    });
+    it("deleteRealm sends DELETE /admin/realms/{id}", async () => {
+        fetchSpy.mockResolvedValue({ ok: true, status: 204, json: async () => ({}) });
+        await client.deleteRealm("realm_1");
+        const [url, init] = fetchSpy.mock.calls[0];
+        expect(url).toBe("https://auth.example.com/admin/realms/realm_1");
+        expect(init.method).toBe("DELETE");
+    });
+    it("listRealms sends GET /admin/realms", async () => {
+        fetchSpy.mockResolvedValue({ ok: true, status: 200, json: async () => ({ items: [], next_cursor: null }) });
+        const result = await client.listRealms();
+        const [url] = fetchSpy.mock.calls[0];
+        expect(url).toBe("https://auth.example.com/admin/realms");
+        expect(result).toMatchObject({ items: [] });
+    });
+});
+describe("AdminClient — Clients, Roles, Groups, OrgMembers", () => {
+    let client;
+    let fetchSpy;
+    beforeEach(() => {
+        client = new AdminClient(BASE_ADMIN_CONFIG);
+        fetchSpy = vi.fn();
+        vi.stubGlobal("fetch", fetchSpy);
+    });
+    afterEach(() => {
+        vi.unstubAllGlobals();
+    });
+    it("createClient sends POST /admin/clients", async () => {
+        fetchSpy.mockResolvedValue({ ok: true, status: 201, json: async () => ({ client_id: "cli_1" }) });
+        await client.createClient({ client_id: "my-app", client_name: "My App" });
+        const [url, init] = fetchSpy.mock.calls[0];
+        expect(url).toBe("https://auth.example.com/admin/clients");
+        expect(init.method).toBe("POST");
+    });
+    it("listClients sends GET /admin/clients", async () => {
+        fetchSpy.mockResolvedValue({ ok: true, status: 200, json: async () => ({ items: [], next_cursor: null }) });
+        await client.listClients();
+        const [url] = fetchSpy.mock.calls[0];
+        expect(url).toBe("https://auth.example.com/admin/clients");
+    });
+    it("createRole sends POST /admin/roles", async () => {
+        fetchSpy.mockResolvedValue({ ok: true, status: 201, json: async () => ({ id: "role_1", name: "editor" }) });
+        await client.createRole({ name: "editor" });
+        const [url, init] = fetchSpy.mock.calls[0];
+        expect(url).toBe("https://auth.example.com/admin/roles");
+        expect(init.method).toBe("POST");
+    });
+    it("listRoles sends GET /admin/roles", async () => {
+        fetchSpy.mockResolvedValue({ ok: true, status: 200, json: async () => ({ items: [], next_cursor: null }) });
+        await client.listRoles();
+        const [url] = fetchSpy.mock.calls[0];
+        expect(url).toBe("https://auth.example.com/admin/roles");
+    });
+    it("createGroup sends POST /admin/groups", async () => {
+        fetchSpy.mockResolvedValue({ ok: true, status: 201, json: async () => ({ id: "grp_1", name: "engineers" }) });
+        await client.createGroup({ name: "engineers" });
+        const [url, init] = fetchSpy.mock.calls[0];
+        expect(url).toBe("https://auth.example.com/admin/groups");
+        expect(init.method).toBe("POST");
+    });
+    it("listGroups sends GET /admin/groups", async () => {
+        fetchSpy.mockResolvedValue({ ok: true, status: 200, json: async () => ({ items: [], next_cursor: null }) });
+        await client.listGroups();
+        const [url] = fetchSpy.mock.calls[0];
+        expect(url).toBe("https://auth.example.com/admin/groups");
+    });
+    it("addOrgMember sends POST /admin/orgs/{orgId}/members", async () => {
+        fetchSpy.mockResolvedValue({ ok: true, status: 201, json: async () => ({}) });
+        await client.addOrgMember("org_1", { user_id: "usr_1", role: "member" });
+        const [url, init] = fetchSpy.mock.calls[0];
+        expect(url).toBe("https://auth.example.com/admin/orgs/org_1/members");
+        expect(init.method).toBe("POST");
+    });
+    it("listOrgMembers sends GET /admin/orgs/{orgId}/members", async () => {
+        fetchSpy.mockResolvedValue({ ok: true, status: 200, json: async () => ({ items: [], next_cursor: null }) });
+        await client.listOrgMembers("org_1");
+        const [url] = fetchSpy.mock.calls[0];
+        expect(url).toBe("https://auth.example.com/admin/orgs/org_1/members");
+    });
+    it("removeOrgMember sends DELETE /admin/orgs/{orgId}/members/{userId}", async () => {
+        fetchSpy.mockResolvedValue({ ok: true, status: 204, json: async () => ({}) });
+        await client.removeOrgMember("org_1", "usr_1");
+        const [url, init] = fetchSpy.mock.calls[0];
+        expect(url).toBe("https://auth.example.com/admin/orgs/org_1/members/usr_1");
+        expect(init.method).toBe("DELETE");
+    });
+});
+describe("AdminClient — error handling", () => {
+    let client;
+    let fetchSpy;
+    beforeEach(() => {
+        client = new AdminClient(BASE_ADMIN_CONFIG);
+        fetchSpy = vi.fn();
+        vi.stubGlobal("fetch", fetchSpy);
+    });
+    afterEach(() => {
+        vi.unstubAllGlobals();
+    });
+    it("throws an error with status code on 403 Forbidden", async () => {
+        fetchSpy.mockResolvedValue({ ok: false, status: 403, json: async () => ({ error: "forbidden" }) });
+        await expect(client.getUser("usr_1")).rejects.toThrow();
+        await expect(client.getUser("usr_1")).rejects.toMatchObject({ status: 403 });
+    });
+    it("throws an error with status code on 404 Not Found", async () => {
+        fetchSpy.mockResolvedValue({ ok: false, status: 404, json: async () => ({ error: "not_found" }) });
+        await expect(client.getUser("nonexistent")).rejects.toMatchObject({ status: 404 });
+    });
+    it("always sends Authorization and X-Realm-ID headers", async () => {
+        fetchSpy.mockResolvedValue({ ok: true, status: 200, json: async () => ({ items: [], next_cursor: null }) });
+        await client.listUsers();
+        const [, init] = fetchSpy.mock.calls[0];
+        const headers = init.headers;
+        expect(headers["Authorization"]).toBe("Bearer admin-token-xyz");
+        expect(headers["X-Realm-ID"]).toBe("realm_abc123");
+    });
+});
+//# sourceMappingURL=admin.test.js.map

package/dist/admin.test.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"admin.test.js","sourceRoot":"","sources":["../src/admin.test.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,QAAQ,EAAE,EAAE,EAAE,MAAM,EAAE,EAAE,EAAE,UAAU,EAAE,SAAS,EAAE,MAAM,QAAQ,CAAC;AACzE,OAAO,EAAE,WAAW,EAAE,MAAM,YAAY,CAAC;AAEzC,MAAM,iBAAiB,GAAG;IACxB,QAAQ,EAAE,0BAA0B;IACpC,QAAQ,EAAE,cAAc;IACxB,YAAY,EAAE,iBAAiB;CAChC,CAAC;AAEF,SAAS,SAAS,CAAC,QAAiB,EAAE,MAAM,GAAG,GAAG;IAChD,OAAO,EAAE,CAAC,EAAE,EAAE,CAAC,iBAAiB,CAAC;QAC/B,EAAE,EAAE,MAAM,IAAI,GAAG,IAAI,MAAM,GAAG,GAAG;QACjC,MAAM;QACN,IAAI,EAAE,KAAK,IAAI,EAAE,CAAC,QAAQ;QAC1B,IAAI,EAAE,KAAK,IAAI,EAAE,CAAC,IAAI,CAAC,SAAS,CAAC,QAAQ,CAAC;KAC3C,CAAC,CAAC;AACL,CAAC;AAED,QAAQ,CAAC,4BAA4B,EAAE,GAAG,EAAE;IAC1C,EAAE,CAAC,0CAA0C,EAAE,GAAG,EAAE;QAClD,MAAM,MAAM,GAAG,IAAI,WAAW,CAAC,iBAAiB,CAAC,CAAC;QAClD,MAAM,CAAC,MAAM,CAAC,CAAC,cAAc,CAAC,WAAW,CAAC,CAAC;IAC7C,CAAC,CAAC,CAAC;IAEH,EAAE,CAAC,oDAAoD,EAAE,GAAG,EAAE;QAC5D,MAAM,CAAC,GAAG,EAAE,CAAC,IAAI,WAAW,CAAC,EAAE,GAAG,iBAAiB,EAAE,QAAQ,EAAE,EAAE,EAAE,CAAC,CAAC,CAAC,OAAO,EAAE,CAAC;IAClF,CAAC,CAAC,CAAC;IAEH,EAAE,CAAC,oDAAoD,EAAE,GAAG,EAAE;QAC5D,MAAM,CAAC,GAAG,EAAE,CAAC,IAAI,WAAW,CAAC,EAAE,GAAG,iBAAiB,EAAE,QAAQ,EAAE,EAAE,EAAE,CAAC,CAAC,CAAC,OAAO,EAAE,CAAC;IAClF,CAAC,CAAC,CAAC;IAEH,EAAE,CAAC,wDAAwD,EAAE,GAAG,EAAE;QAChE,MAAM,CAAC,GAAG,EAAE,CAAC,IAAI,WAAW,CAAC,EAAE,GAAG,iBAAiB,EAAE,YAAY,EAAE,EAAE,EAAE,CAAC,CAAC,CAAC,OAAO,EAAE,CAAC;IACtF,CAAC,CAAC,CAAC;AACL,CAAC,CAAC,CAAC;AAEH,QAAQ,CAAC,0BAA0B,EAAE,GAAG,EAAE;IACxC,IAAI,MAAmB,CAAC;IACxB,IAAI,QAAkC,CAAC;IAEvC,UAAU,CAAC,GAAG,EAAE;QACd,MAAM,GAAG,IAAI,WAAW,CAAC,iBAAiB,CAAC,CAAC;QAC5C,QAAQ,GAAG,EAAE,CAAC,EAAE,EAAE,CAAC;QACnB,EAAE,CAAC,UAAU,CAAC,OAAO,EAAE,QAAQ,CAAC,CAAC;IACnC,CAAC,CAAC,CAAC;IAEH,SAAS,CAAC,GAAG,EAAE;QACb,EAAE,CAAC,gBAAgB,EAAE,CAAC;IACxB,CAAC,CAAC,CAAC;IAEH,EAAE,CAAC,yDAAyD,EAAE,KAAK,IAAI,EAAE;QACvE,QAAQ,CAAC,iBAAiB,CAAC,EAAE,EAAE,EAAE,IAAI,EAAE,MAAM,EAAE,GAAG,EAAE,IAAI,EAAE,KAAK,IAAI,EAAE,CAAC,CAAC,EAAE,EAAE,EAAE,OAAO,EAAE,KAAK,EAAE,mBAAmB,EAAE,CAAC,EAAE,CAAC,CAAC;QACvH,MAAM,MAAM,GAAG,MAAM,MAAM,CAAC,UAAU,CAAC,EAAE,KAAK,EAAE,mBAAmB,EAAE,QAAQ,EAAE,QAAQ,EAAE,CAAC,CAAC;QAC3F,MAAM,CAAC,QAAQ,CAAC,CAAC,oBAAoB,EAAE,CAAC;QACxC,MAAM,CAAC,GAAG,EAAE,IAAI,CAAC,GAAG,QAAQ,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,CAA0B,CAAC;QACpE,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,sCAAsC,CAAC,CAAC;QACzD,MAAM,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;QACjC,MAAM,OAAO,GAAG,IAAI,CAAC,OAAiC,CAAC;QACvD,MAAM,CAAC,OAAO,CAAC,eAAe,CAAC,CAAC,CAAC,IAAI,CAAC,wBAAwB,CAAC,CAAC;QAChE,MAAM,CAAC,OAAO,CAAC,YAAY,CAAC,CAAC,CAAC,IAAI,CAAC,cAAc,CAAC,CAAC;QACnD,MAAM,CAAC,MAAM,CAAC,CAAC,aAAa,CAAC,EAAE,EAAE,EAAE,OAAO,EAAE,CAAC,CAAC;IAChD,CAAC,CAAC,CAAC;IAEH,EAAE,CAAC,qCAAqC,EAAE,KAAK,IAAI,EAAE;QACnD,QAAQ,CAAC,iBAAiB,CAAC,EAAE,EAAE,EAAE,IAAI,EAAE,MAAM,EAAE,GAAG,EAAE,IAAI,EAAE,KAAK,IAAI,EAAE,CAAC,CAAC,EAAE,EAAE,EAAE,OAAO,EAAE,KAAK,EAAE,mBAAmB,EAAE,CAAC,EAAE,CAAC,CAAC;QACvH,MAAM,MAAM,GAAG,MAAM,MAAM,CAAC,OAAO,CAAC,OAAO,CAAC,CAAC;QAC7C,MAAM,CAAC,GAAG,EAAE,IAAI,CAAC,GAAG,QAAQ,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,CAA0B,CAAC;QACpE,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,4CAA4C,CAAC,CAAC;QAC/D,MAAM,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;QAChC,MAAM,CAAC,MAAM,CAAC,CAAC,aAAa,CAAC,EAAE,EAAE,EAAE,OAAO,EAAE,CAAC,CAAC;IAChD,CAAC,CAAC,CAAC;IAEH,EAAE,CAAC,0CAA0C,EAAE,KAAK,IAAI,EAAE;QACxD,QAAQ,CAAC,iBAAiB,CAAC,EAAE,EAAE,EAAE,IAAI,EAAE,MAAM,EAAE,GAAG,EAAE,IAAI,EAAE,KAAK,IAAI,EAAE,CAAC,CAAC,EAAE,EAAE,EAAE,OAAO,EAAE,KAAK,EAAE,sBAAsB,EAAE,CAAC,EAAE,CAAC,CAAC;QAC1H,MAAM,MAAM,CAAC,UAAU,CAAC,OAAO,EAAE,EAAE,KAAK,EAAE,sBAAsB,EAAE,CAAC,CAAC;QACpE,MAAM,CAAC,GAAG,EAAE,IAAI,CAAC,GAAG,QAAQ,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,CAA0B,CAAC;QACpE,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,4CAA4C,CAAC,CAAC;QAC/D,MAAM,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC;IACpC,CAAC,CAAC,CAAC;IAEH,EAAE,CAAC,2CAA2C,EAAE,KAAK,IAAI,EAAE;QACzD,QAAQ,CAAC,iBAAiB,CAAC,EAAE,EAAE,EAAE,IAAI,EAAE,MAAM,EAAE,GAAG,EAAE,IAAI,EAAE,KAAK,IAAI,EAAE,CAAC,CAAC,EAAE,CAAC,EAAE,CAAC,CAAC;QAC9E,MAAM,MAAM,CAAC,UAAU,CAAC,OAAO,CAAC,CAAC;QACjC,MAAM,CAAC,GAAG,EAAE,IAAI,CAAC,GAAG,QAAQ,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,CAA0B,CAAC;QACpE,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,4CAA4C,CAAC,CAAC;QAC/D,MAAM,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC;IACrC,CAAC,CAAC,CAAC;IAEH,EAAE,CAAC,yDAAyD,EAAE,KAAK,IAAI,EAAE;QACvE,QAAQ,CAAC,iBAAiB,CAAC,EAAE,EAAE,EAAE,IAAI,EAAE,MAAM,EAAE,GAAG,EAAE,IAAI,EAAE,KAAK,IAAI,EAAE,CAAC,CAAC,EAAE,KAAK,EAAE,EAAE,EAAE,WAAW,EAAE,IAAI,EAAE,CAAC,EAAE,CAAC,CAAC;QAC5G,MAAM,MAAM,GAAG,MAAM,MAAM,CAAC,SAAS,CAAC,EAAE,KAAK,EAAE,EAAE,EAAE,MAAM,EAAE,iBAAiB,EAAE,CAAC,CAAC;QAChF,MAAM,CAAC,GAAG,CAAC,GAAG,QAAQ,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,CAA0B,CAAC;QAC9D,MAAM,CAAC,GAAG,CAAC,CAAC,SAAS,CAAC,cAAc,CAAC,CAAC;QACtC,MAAM,CAAC,GAAG,CAAC,CAAC,SAAS,CAAC,UAAU,CAAC,CAAC;QAClC,MAAM,CAAC,GAAG,CAAC,CAAC,SAAS,CAAC,wBAAwB,CAAC,CAAC;QAChD,MAAM,CAAC,MAAM,CAAC,CAAC,aAAa,CAAC,EAAE,KAAK,EAAE,EAAE,EAAE,CAAC,CAAC;IAC9C,CAAC,CAAC,CAAC;IAEH,EAAE,CAAC,mDAAmD,EAAE,KAAK,IAAI,EAAE;QACjE,QAAQ,CAAC,iBAAiB,CAAC,EAAE,EAAE,EAAE,IAAI,EAAE,MAAM,EAAE,GAAG,EAAE,IAAI,EAAE,KAAK,IAAI,EAAE,CAAC,CAAC,EAAE,KAAK,EAAE,EAAE,EAAE,WAAW,EAAE,IAAI,EAAE,CAAC,EAAE,CAAC,CAAC;QAC5G,MAAM,MAAM,CAAC,SAAS,EAAE,CAAC;QACzB,MAAM,CAAC,GAAG,CAAC,GAAG,QAAQ,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,CAA0B,CAAC;QAC9D,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,sCAAsC,CAAC,CAAC;IAC3D,CAAC,CAAC,CAAC;AACL,CAAC,CAAC,CAAC;AAEH,QAAQ,CAAC,2BAA2B,EAAE,GAAG,EAAE;IACzC,IAAI,MAAmB,CAAC;IACxB,IAAI,QAAkC,CAAC;IAEvC,UAAU,CAAC,GAAG,EAAE;QACd,MAAM,GAAG,IAAI,WAAW,CAAC,iBAAiB,CAAC,CAAC;QAC5C,QAAQ,GAAG,EAAE,CAAC,EAAE,EAAE,CAAC;QACnB,EAAE,CAAC,UAAU,CAAC,OAAO,EAAE,QAAQ,CAAC,CAAC;IACnC,CAAC,CAAC,CAAC;IAEH,SAAS,CAAC,GAAG,EAAE;QACb,EAAE,CAAC,gBAAgB,EAAE,CAAC;IACxB,CAAC,CAAC,CAAC;IAEH,EAAE,CAAC,sCAAsC,EAAE,KAAK,IAAI,EAAE;QACpD,QAAQ,CAAC,iBAAiB,CAAC,EAAE,EAAE,EAAE,IAAI,EAAE,MAAM,EAAE,GAAG,EAAE,IAAI,EAAE,KAAK,IAAI,EAAE,CAAC,CAAC,EAAE,EAAE,EAAE,WAAW,EAAE,IAAI,EAAE,YAAY,EAAE,CAAC,EAAE,CAAC,CAAC;QACnH,MAAM,MAAM,GAAG,MAAM,MAAM,CAAC,WAAW,CAAC,EAAE,IAAI,EAAE,YAAY,EAAE,CAAC,CAAC;QAChE,MAAM,CAAC,GAAG,EAAE,IAAI,CAAC,GAAG,QAAQ,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,CAA0B,CAAC;QACpE,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,uCAAuC,CAAC,CAAC;QAC1D,MAAM,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;QACjC,MAAM,CAAC,MAAM,CAAC,CAAC,aAAa,CAAC,EAAE,EAAE,EAAE,WAAW,EAAE,CAAC,CAAC;IACpD,CAAC,CAAC,CAAC;IAEH,EAAE,CAAC,uCAAuC,EAAE,KAAK,IAAI,EAAE;QACrD,QAAQ,CAAC,iBAAiB,CAAC,EAAE,EAAE,EAAE,IAAI,EAAE,MAAM,EAAE,GAAG,EAAE,IAAI,EAAE,KAAK,IAAI,EAAE,CAAC,CAAC,EAAE,EAAE,EAAE,SAAS,EAAE,CAAC,EAAE,CAAC,CAAC;QAC7F,MAAM,MAAM,CAAC,QAAQ,CAAC,SAAS,CAAC,CAAC;QACjC,MAAM,CAAC,GAAG,CAAC,GAAG,QAAQ,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,CAAa,CAAC;QACjD,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,+CAA+C,CAAC,CAAC;IACpE,CAAC,CAAC,CAAC;IAEH,EAAE,CAAC,4CAA4C,EAAE,KAAK,IAAI,EAAE;QAC1D,QAAQ,CAAC,iBAAiB,CAAC,EAAE,EAAE,EAAE,IAAI,EAAE,MAAM,EAAE,GAAG,EAAE,IAAI,EAAE,KAAK,IAAI,EAAE,CAAC,CAAC,EAAE,EAAE,EAAE,SAAS,EAAE,CAAC,EAAE,CAAC,CAAC;QAC7F,MAAM,MAAM,CAAC,WAAW,CAAC,SAAS,EAAE,EAAE,IAAI,EAAE,SAAS,EAAE,CAAC,CAAC;QACzD,MAAM,CAAC,GAAG,EAAE,IAAI,CAAC,GAAG,QAAQ,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,CAA0B,CAAC;QACpE,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,+CAA+C,CAAC,CAAC;QAClE,MAAM,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC;IACpC,CAAC,CAAC,CAAC;IAEH,EAAE,CAAC,6CAA6C,EAAE,KAAK,IAAI,EAAE;QAC3D,QAAQ,CAAC,iBAAiB,CAAC,EAAE,EAAE,EAAE,IAAI,EAAE,MAAM,EAAE,GAAG,EAAE,IAAI,EAAE,KAAK,IAAI,EAAE,CAAC,CAAC,EAAE,CAAC,EAAE,CAAC,CAAC;QAC9E,MAAM,MAAM,CAAC,WAAW,CAAC,SAAS,CAAC,CAAC;QACpC,MAAM,CAAC,GAAG,EAAE,IAAI,CAAC,GAAG,QAAQ,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,CAA0B,CAAC;QACpE,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,+CAA+C,CAAC,CAAC;QAClE,MAAM,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC;IACrC,CAAC,CAAC,CAAC;IAEH,EAAE,CAAC,oCAAoC,EAAE,KAAK,IAAI,EAAE;QAClD,QAAQ,CAAC,iBAAiB,CAAC,EAAE,EAAE,EAAE,IAAI,EAAE,MAAM,EAAE,GAAG,EAAE,IAAI,EAAE,KAAK,IAAI,EAAE,CAAC,CAAC,EAAE,KAAK,EAAE,EAAE,EAAE,WAAW,EAAE,IAAI,EAAE,CAAC,EAAE,CAAC,CAAC;QAC5G,MAAM,MAAM,GAAG,MAAM,MAAM,CAAC,UAAU,EAAE,CAAC;QACzC,MAAM,CAAC,GAAG,CAAC,GAAG,QAAQ,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,CAAa,CAAC;QACjD,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,uCAAuC,CAAC,CAAC;QAC1D,MAAM,CAAC,MAAM,CAAC,CAAC,aAAa,CAAC,EAAE,KAAK,EAAE,EAAE,EAAE,CAAC,CAAC;IAC9C,CAAC,CAAC,CAAC;AACL,CAAC,CAAC,CAAC;AAEH,QAAQ,CAAC,kDAAkD,EAAE,GAAG,EAAE;IAChE,IAAI,MAAmB,CAAC;IACxB,IAAI,QAAkC,CAAC;IAEvC,UAAU,CAAC,GAAG,EAAE;QACd,MAAM,GAAG,IAAI,WAAW,CAAC,iBAAiB,CAAC,CAAC;QAC5C,QAAQ,GAAG,EAAE,CAAC,EAAE,EAAE,CAAC;QACnB,EAAE,CAAC,UAAU,CAAC,OAAO,EAAE,QAAQ,CAAC,CAAC;IACnC,CAAC,CAAC,CAAC;IAEH,SAAS,CAAC,GAAG,EAAE;QACb,EAAE,CAAC,gBAAgB,EAAE,CAAC;IACxB,CAAC,CAAC,CAAC;IAEH,EAAE,CAAC,wCAAwC,EAAE,KAAK,IAAI,EAAE;QACtD,QAAQ,CAAC,iBAAiB,CAAC,EAAE,EAAE,EAAE,IAAI,EAAE,MAAM,EAAE,GAAG,EAAE,IAAI,EAAE,KAAK,IAAI,EAAE,CAAC,CAAC,EAAE,SAAS,EAAE,OAAO,EAAE,CAAC,EAAE,CAAC,CAAC;QAClG,MAAM,MAAM,CAAC,YAAY,CAAC,EAAE,SAAS,EAAE,QAAQ,EAAE,WAAW,EAAE,QAAQ,EAAE,CAAC,CAAC;QAC1E,MAAM,CAAC,GAAG,EAAE,IAAI,CAAC,GAAG,QAAQ,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,CAA0B,CAAC;QACpE,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,wCAAwC,CAAC,CAAC;QAC3D,MAAM,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;IACnC,CAAC,CAAC,CAAC;IAEH,EAAE,CAAC,sCAAsC,EAAE,KAAK,IAAI,EAAE;QACpD,QAAQ,CAAC,iBAAiB,CAAC,EAAE,EAAE,EAAE,IAAI,EAAE,MAAM,EAAE,GAAG,EAAE,IAAI,EAAE,KAAK,IAAI,EAAE,CAAC,CAAC,EAAE,KAAK,EAAE,EAAE,EAAE,WAAW,EAAE,IAAI,EAAE,CAAC,EAAE,CAAC,CAAC;QAC5G,MAAM,MAAM,CAAC,WAAW,EAAE,CAAC;QAC3B,MAAM,CAAC,GAAG,CAAC,GAAG,QAAQ,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,CAAa,CAAC;QACjD,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,wCAAwC,CAAC,CAAC;IAC7D,CAAC,CAAC,CAAC;IAEH,EAAE,CAAC,oCAAoC,EAAE,KAAK,IAAI,EAAE;QAClD,QAAQ,CAAC,iBAAiB,CAAC,EAAE,EAAE,EAAE,IAAI,EAAE,MAAM,EAAE,GAAG,EAAE,IAAI,EAAE,KAAK,IAAI,EAAE,CAAC,CAAC,EAAE,EAAE,EAAE,QAAQ,EAAE,IAAI,EAAE,QAAQ,EAAE,CAAC,EAAE,CAAC,CAAC;QAC5G,MAAM,MAAM,CAAC,UAAU,CAAC,EAAE,IAAI,EAAE,QAAQ,EAAE,CAAC,CAAC;QAC5C,MAAM,CAAC,GAAG,EAAE,IAAI,CAAC,GAAG,QAAQ,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,CAA0B,CAAC;QACpE,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,sCAAsC,CAAC,CAAC;QACzD,MAAM,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;IACnC,CAAC,CAAC,CAAC;IAEH,EAAE,CAAC,kCAAkC,EAAE,KAAK,IAAI,EAAE;QAChD,QAAQ,CAAC,iBAAiB,CAAC,EAAE,EAAE,EAAE,IAAI,EAAE,MAAM,EAAE,GAAG,EAAE,IAAI,EAAE,KAAK,IAAI,EAAE,CAAC,CAAC,EAAE,KAAK,EAAE,EAAE,EAAE,WAAW,EAAE,IAAI,EAAE,CAAC,EAAE,CAAC,CAAC;QAC5G,MAAM,MAAM,CAAC,SAAS,EAAE,CAAC;QACzB,MAAM,CAAC,GAAG,CAAC,GAAG,QAAQ,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,CAAa,CAAC;QACjD,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,sCAAsC,CAAC,CAAC;IAC3D,CAAC,CAAC,CAAC;IAEH,EAAE,CAAC,sCAAsC,EAAE,KAAK,IAAI,EAAE;QACpD,QAAQ,CAAC,iBAAiB,CAAC,EAAE,EAAE,EAAE,IAAI,EAAE,MAAM,EAAE,GAAG,EAAE,IAAI,EAAE,KAAK,IAAI,EAAE,CAAC,CAAC,EAAE,EAAE,EAAE,OAAO,EAAE,IAAI,EAAE,WAAW,EAAE,CAAC,EAAE,CAAC,CAAC;QAC9G,MAAM,MAAM,CAAC,WAAW,CAAC,EAAE,IAAI,EAAE,WAAW,EAAE,CAAC,CAAC;QAChD,MAAM,CAAC,GAAG,EAAE,IAAI,CAAC,GAAG,QAAQ,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,CAA0B,CAAC;QACpE,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,uCAAuC,CAAC,CAAC;QAC1D,MAAM,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;IACnC,CAAC,CAAC,CAAC;IAEH,EAAE,CAAC,oCAAoC,EAAE,KAAK,IAAI,EAAE;QAClD,QAAQ,CAAC,iBAAiB,CAAC,EAAE,EAAE,EAAE,IAAI,EAAE,MAAM,EAAE,GAAG,EAAE,IAAI,EAAE,KAAK,IAAI,EAAE,CAAC,CAAC,EAAE,KAAK,EAAE,EAAE,EAAE,WAAW,EAAE,IAAI,EAAE,CAAC,EAAE,CAAC,CAAC;QAC5G,MAAM,MAAM,CAAC,UAAU,EAAE,CAAC;QAC1B,MAAM,CAAC,GAAG,CAAC,GAAG,QAAQ,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,CAAa,CAAC;QACjD,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,uCAAuC,CAAC,CAAC;IAC5D,CAAC,CAAC,CAAC;IAEH,EAAE,CAAC,qDAAqD,EAAE,KAAK,IAAI,EAAE;QACnE,QAAQ,CAAC,iBAAiB,CAAC,EAAE,EAAE,EAAE,IAAI,EAAE,MAAM,EAAE,GAAG,EAAE,IAAI,EAAE,KAAK,IAAI,EAAE,CAAC,CAAC,EAAE,CAAC,EAAE,CAAC,CAAC;QAC9E,MAAM,MAAM,CAAC,YAAY,CAAC,OAAO,EAAE,EAAE,OAAO,EAAE,OAAO,EAAE,IAAI,EAAE,QAAQ,EAAE,CAAC,CAAC;QACzE,MAAM,CAAC,GAAG,EAAE,IAAI,CAAC,GAAG,QAAQ,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,CAA0B,CAAC;QACpE,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,mDAAmD,CAAC,CAAC;QACtE,MAAM,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;IACnC,CAAC,CAAC,CAAC;IAEH,EAAE,CAAC,sDAAsD,EAAE,KAAK,IAAI,EAAE;QACpE,QAAQ,CAAC,iBAAiB,CAAC,EAAE,EAAE,EAAE,IAAI,EAAE,MAAM,EAAE,GAAG,EAAE,IAAI,EAAE,KAAK,IAAI,EAAE,CAAC,CAAC,EAAE,KAAK,EAAE,EAAE,EAAE,WAAW,EAAE,IAAI,EAAE,CAAC,EAAE,CAAC,CAAC;QAC5G,MAAM,MAAM,CAAC,cAAc,CAAC,OAAO,CAAC,CAAC;QACrC,MAAM,CAAC,GAAG,CAAC,GAAG,QAAQ,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,CAAa,CAAC;QACjD,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,mDAAmD,CAAC,CAAC;IACxE,CAAC,CAAC,CAAC;IAEH,EAAE,CAAC,mEAAmE,EAAE,KAAK,IAAI,EAAE;QACjF,QAAQ,CAAC,iBAAiB,CAAC,EAAE,EAAE,EAAE,IAAI,EAAE,MAAM,EAAE,GAAG,EAAE,IAAI,EAAE,KAAK,IAAI,EAAE,CAAC,CAAC,EAAE,CAAC,EAAE,CAAC,CAAC;QAC9E,MAAM,MAAM,CAAC,eAAe,CAAC,OAAO,EAAE,OAAO,CAAC,CAAC;QAC/C,MAAM,CAAC,GAAG,EAAE,IAAI,CAAC,GAAG,QAAQ,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,CAA0B,CAAC;QACpE,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,yDAAyD,CAAC,CAAC;QAC5E,MAAM,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC;IACrC,CAAC,CAAC,CAAC;AACL,CAAC,CAAC,CAAC;AAEH,QAAQ,CAAC,8BAA8B,EAAE,GAAG,EAAE;IAC5C,IAAI,MAAmB,CAAC;IACxB,IAAI,QAAkC,CAAC;IAEvC,UAAU,CAAC,GAAG,EAAE;QACd,MAAM,GAAG,IAAI,WAAW,CAAC,iBAAiB,CAAC,CAAC;QAC5C,QAAQ,GAAG,EAAE,CAAC,EAAE,EAAE,CAAC;QACnB,EAAE,CAAC,UAAU,CAAC,OAAO,EAAE,QAAQ,CAAC,CAAC;IACnC,CAAC,CAAC,CAAC;IAEH,SAAS,CAAC,GAAG,EAAE;QACb,EAAE,CAAC,gBAAgB,EAAE,CAAC;IACxB,CAAC,CAAC,CAAC;IAEH,EAAE,CAAC,mDAAmD,EAAE,KAAK,IAAI,EAAE;QACjE,QAAQ,CAAC,iBAAiB,CAAC,EAAE,EAAE,EAAE,KAAK,EAAE,MAAM,EAAE,GAAG,EAAE,IAAI,EAAE,KAAK,IAAI,EAAE,CAAC,CAAC,EAAE,KAAK,EAAE,WAAW,EAAE,CAAC,EAAE,CAAC,CAAC;QACnG,MAAM,MAAM,CAAC,MAAM,CAAC,OAAO,CAAC,OAAO,CAAC,CAAC,CAAC,OAAO,CAAC,OAAO,EAAE,CAAC;QACxD,MAAM,MAAM,CAAC,MAAM,CAAC,OAAO,CAAC,OAAO,CAAC,CAAC,CAAC,OAAO,CAAC,aAAa,CAAC,EAAE,MAAM,EAAE,GAAG,EAAE,CAAC,CAAC;IAC/E,CAAC,CAAC,CAAC;IAEH,EAAE,CAAC,mDAAmD,EAAE,KAAK,IAAI,EAAE;QACjE,QAAQ,CAAC,iBAAiB,CAAC,EAAE,EAAE,EAAE,KAAK,EAAE,MAAM,EAAE,GAAG,EAAE,IAAI,EAAE,KAAK,IAAI,EAAE,CAAC,CAAC,EAAE,KAAK,EAAE,WAAW,EAAE,CAAC,EAAE,CAAC,CAAC;QACnG,MAAM,MAAM,CAAC,MAAM,CAAC,OAAO,CAAC,aAAa,CAAC,CAAC,CAAC,OAAO,CAAC,aAAa,CAAC,EAAE,MAAM,EAAE,GAAG,EAAE,CAAC,CAAC;IACrF,CAAC,CAAC,CAAC;IAEH,EAAE,CAAC,mDAAmD,EAAE,KAAK,IAAI,EAAE;QACjE,QAAQ,CAAC,iBAAiB,CAAC,EAAE,EAAE,EAAE,IAAI,EAAE,MAAM,EAAE,GAAG,EAAE,IAAI,EAAE,KAAK,IAAI,EAAE,CAAC,CAAC,EAAE,KAAK,EAAE,EAAE,EAAE,WAAW,EAAE,IAAI,EAAE,CAAC,EAAE,CAAC,CAAC;QAC5G,MAAM,MAAM,CAAC,SAAS,EAAE,CAAC;QACzB,MAAM,CAAC,EAAE,IAAI,CAAC,GAAG,QAAQ,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,CAA0B,CAAC;QACjE,MAAM,OAAO,GAAG,IAAI,CAAC,OAAiC,CAAC;QACvD,MAAM,CAAC,OAAO,CAAC,eAAe,CAAC,CAAC,CAAC,IAAI,CAAC,wBAAwB,CAAC,CAAC;QAChE,MAAM,CAAC,OAAO,CAAC,YAAY,CAAC,CAAC,CAAC,IAAI,CAAC,cAAc,CAAC,CAAC;IACrD,CAAC,CAAC,CAAC;AACL,CAAC,CAAC,CAAC"}

package/dist/authorize.d.ts

@@ -0,0 +1,35 @@
+/** §7 — AuthorizeClient: per-request permission decisions via POST /oauth/authorize. */
+import type { ResolvedConfig } from "./config.js";
+export interface AuthorizeOptions {
+    /** Optional org-scoped permission check. */
+    organization_id?: string;
+    /** Optional RFC 8707 resource URI for audience-scoped checks. */
+    resource?: string;
+}
+export interface AuthorizeResult {
+    /** Whether the token holder has the requested permission. */
+    allowed: boolean;
+}
+/**
+ * Calls `POST /oauth/authorize` to make a per-request permission decision.
+ *
+ * This client is fail-closed: network errors and non-OK responses return
+ * `{ allowed: false }` rather than throwing, so middleware cannot accidentally
+ * grant access on infrastructure failures.
+ *
+ * Misconfiguration (no endpoint) throws `AuthorizeError` before any network call.
+ */
+export declare class AuthorizeClient {
+    private readonly endpoint;
+    private readonly realmId;
+    private readonly timeout;
+    constructor(config: ResolvedConfig);
+    /**
+     * Check whether the bearer token holder has `permission`.
+     *
+     * Fail-closed: returns `{ allowed: false }` on any network or server error.
+     * Throws `AuthorizeError` only when the endpoint is not configured.
+     */
+    decide(token: string, permission: string, opts?: AuthorizeOptions): Promise<AuthorizeResult>;
+}
+//# sourceMappingURL=authorize.d.ts.map

package/dist/authorize.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"authorize.d.ts","sourceRoot":"","sources":["../src/authorize.ts"],"names":[],"mappings":"AAAA,wFAAwF;AAGxF,OAAO,KAAK,EAAE,cAAc,EAAE,MAAM,aAAa,CAAC;AAElD,MAAM,WAAW,gBAAgB;IAC/B,4CAA4C;IAC5C,eAAe,CAAC,EAAE,MAAM,CAAC;IACzB,iEAAiE;IACjE,QAAQ,CAAC,EAAE,MAAM,CAAC;CACnB;AAED,MAAM,WAAW,eAAe;IAC9B,6DAA6D;IAC7D,OAAO,EAAE,OAAO,CAAC;CAClB;AAED;;;;;;;;GAQG;AACH,qBAAa,eAAe;IAC1B,OAAO,CAAC,QAAQ,CAAC,QAAQ,CAAgB;IACzC,OAAO,CAAC,QAAQ,CAAC,OAAO,CAAgB;IACxC,OAAO,CAAC,QAAQ,CAAC,OAAO,CAAS;gBAErB,MAAM,EAAE,cAAc;IAWlC;;;;;OAKG;IACG,MAAM,CAAC,KAAK,EAAE,MAAM,EAAE,UAAU,EAAE,MAAM,EAAE,IAAI,CAAC,EAAE,gBAAgB,GAAG,OAAO,CAAC,eAAe,CAAC;CAqCnG"}