@insforge/sdk 1.2.6 → 1.2.7

package/README.md

@@ -33,10 +33,10 @@ yarn add @insforge/sdk
 ### Initialize the Client
 
 ```javascript
-import { createClient } from '@insforge/sdk';
+import { createClient } from "@insforge/sdk";
 
 const insforge = createClient({
-  baseUrl: 'http://localhost:7130' // Your InsForge backend URL
+  baseUrl: "http://localhost:7130", // Your InsForge backend URL
 });
 ```
 
@@ -45,35 +45,35 @@ const insforge = createClient({
 ```javascript
 // Sign up a new user
 const { data, error } = await insforge.auth.signUp({
-  email: 'user@example.com',
-  password: 'securePassword123',
-  name: 'John Doe', // optional
-  redirectTo: 'http://localhost:3000/sign-in' // optional, recommended for link-based verification
+  email: "user@example.com",
+  password: "securePassword123",
+  name: "John Doe", // optional
+  redirectTo: "http://localhost:3000/sign-in", // optional, recommended for link-based verification
 });
 
 // Sign in with email/password
 const { data, error } = await insforge.auth.signInWithPassword({
-  email: 'user@example.com',
-  password: 'securePassword123'
+  email: "user@example.com",
+  password: "securePassword123",
 });
 
 // OAuth authentication (built-in or custom provider key)
 await insforge.auth.signInWithOAuth({
-  provider: 'google', // e.g. built-in: "google", custom: "auth0-acme"
-  redirectTo: 'http://localhost:3000/dashboard'
+  provider: "google", // e.g. built-in: "google", custom: "auth0-acme"
+  redirectTo: "http://localhost:3000/dashboard",
 });
 
 // Get current user (call this during browser app startup)
 const { data: currentUser } = await insforge.auth.getCurrentUser();
 
 // Get any user's profile by ID (public endpoint)
-const { data: profile, error } = await insforge.auth.getProfile('user-id-here');
+const { data: profile, error } = await insforge.auth.getProfile("user-id-here");
 
 // Update current user's profile (requires authentication)
 const { data: updatedProfile, error } = await insforge.auth.setProfile({
-  displayName: 'John Doe',
-  bio: 'Software developer',
-  avatarUrl: 'https://example.com/avatar.jpg'
+  displayName: "John Doe",
+  bio: "Software developer",
+  avatarUrl: "https://example.com/avatar.jpg",
 });
 
 // Sign out
@@ -85,37 +85,38 @@ await insforge.auth.signOut();
 ```javascript
 // Resend a verification email
 await insforge.auth.resendVerificationEmail({
-  email: 'user@example.com',
-  redirectTo: 'http://localhost:3000/sign-in' // optional, recommended for link-based verification
+  email: "user@example.com",
+  redirectTo: "http://localhost:3000/sign-in", // optional, recommended for link-based verification
 });
 
 // Verify email with a 6-digit code
 await insforge.auth.verifyEmail({
-  email: 'user@example.com',
-  otp: '123456'
+  email: "user@example.com",
+  otp: "123456",
 });
 
 // Send password reset email
 await insforge.auth.sendResetPasswordEmail({
-  email: 'user@example.com',
-  redirectTo: 'http://localhost:3000/reset-password' // optional, recommended for link-based reset
+  email: "user@example.com",
+  redirectTo: "http://localhost:3000/reset-password", // optional, recommended for link-based reset
 });
 
 // Code-based reset flow: exchange the code, then reset the password
 const { data: resetToken } = await insforge.auth.exchangeResetPasswordToken({
-  email: 'user@example.com',
-  code: '123456'
+  email: "user@example.com",
+  code: "123456",
 });
 
 if (resetToken) {
   await insforge.auth.resetPassword({
-    newPassword: 'newSecurePassword123',
-    otp: resetToken.token
+    newPassword: "newSecurePassword123",
+    otp: resetToken.token,
   });
 }
 ```
 
 For link-based verification and password reset, users click the emailed browser links:
+
 - `GET /api/auth/email/verify-link`
 - `GET /api/auth/email/reset-password-link`
 
@@ -130,28 +131,26 @@ Those backend endpoints validate the token first, then redirect the browser to y
 ```javascript
 // Insert data
 const { data, error } = await insforge.database
-  .from('posts')
-  .insert([
-    { title: 'My First Post', content: 'Hello World!' }
-  ]);
+  .from("posts")
+  .insert([{ title: "My First Post", content: "Hello World!" }]);
 
 // Query data
 const { data, error } = await insforge.database
-  .from('posts')
-  .select('*')
-  .eq('author_id', userId);
+  .from("posts")
+  .select("*")
+  .eq("author_id", userId);
 
 // Update data
 const { data, error } = await insforge.database
-  .from('posts')
-  .update({ title: 'Updated Title' })
-  .eq('id', postId);
+  .from("posts")
+  .update({ title: "Updated Title" })
+  .eq("id", postId);
 
 // Delete data
 const { data, error } = await insforge.database
-  .from('posts')
+  .from("posts")
   .delete()
-  .eq('id', postId);
+  .eq("id", postId);
 ```
 
 ### File Storage
@@ -159,32 +158,28 @@ const { data, error } = await insforge.database
 ```javascript
 // Upload a file
 const file = document.querySelector('input[type="file"]').files[0];
-const { data, error } = await insforge.storage
-  .from('avatars')
-  .upload(file);
+const { data, error } = await insforge.storage.from("avatars").upload(file);
 
 // Download a file
 const { data, error } = await insforge.storage
-  .from('avatars')
-  .download('user-avatar.png');
+  .from("avatars")
+  .download("user-avatar.png");
 
 // Delete a file
 const { data, error } = await insforge.storage
-  .from('avatars')
-  .remove(['user-avatar.png']);
+  .from("avatars")
+  .remove(["user-avatar.png"]);
 
 // List files
-const { data, error } = await insforge.storage
-  .from('avatars')
-  .list();
+const { data, error } = await insforge.storage.from("avatars").list();
 ```
 
 ### Edge Functions
 
 ```javascript
 // Invoke an edge function
-const { data, error } = await insforge.functions.invoke('my-function', {
-  body: { key: 'value' }
+const { data, error } = await insforge.functions.invoke("my-function", {
+  body: { key: "value" },
 });
 ```
 
@@ -192,13 +187,12 @@ const { data, error } = await insforge.functions.invoke('my-function', {
 
 ```javascript
 // Create and redirect to a Stripe Checkout Session
-const { data, error } = await insforge.payments.createCheckoutSession({
-  environment: 'test',
-  mode: 'payment',
-  lineItems: [{ stripePriceId: 'price_123', quantity: 1 }],
+const { data, error } = await insforge.payments.createCheckoutSession("test", {
+  mode: "payment",
+  lineItems: [{ stripePriceId: "price_123", quantity: 1 }],
   successUrl: `${window.location.origin}/success`,
   cancelUrl: `${window.location.origin}/pricing`,
-  idempotencyKey: 'cart_123'
+  idempotencyKey: "cart_123",
 });
 
 if (!error && data?.checkoutSession.url) {
@@ -206,25 +200,27 @@ if (!error && data?.checkoutSession.url) {
 }
 
 // Create a subscription checkout for an app billing subject
-const { data: subscriptionCheckout } = await insforge.payments.createCheckoutSession({
-  environment: 'test',
-  mode: 'subscription',
-  subject: { type: 'team', id: 'team_123' },
-  lineItems: [{ stripePriceId: 'price_monthly_123', quantity: 1 }],
-  successUrl: `${window.location.origin}/billing/success`,
-  cancelUrl: `${window.location.origin}/billing`
-});
+const { data: subscriptionCheckout } =
+  await insforge.payments.createCheckoutSession("test", {
+    mode: "subscription",
+    subject: { type: "team", id: "team_123" },
+    lineItems: [{ stripePriceId: "price_monthly_123", quantity: 1 }],
+    successUrl: `${window.location.origin}/billing/success`,
+    cancelUrl: `${window.location.origin}/billing`,
+  });
 
 if (subscriptionCheckout?.checkoutSession.url) {
   window.location.assign(subscriptionCheckout.checkoutSession.url);
 }
 
 // Let an authenticated customer manage their subscription in Stripe Billing Portal
-const { data: portal } = await insforge.payments.createCustomerPortalSession({
-  environment: 'test',
-  subject: { type: 'team', id: 'team_123' },
-  returnUrl: `${window.location.origin}/billing`
-});
+const { data: portal } = await insforge.payments.createCustomerPortalSession(
+  "test",
+  {
+    subject: { type: "team", id: "team_123" },
+    returnUrl: `${window.location.origin}/billing`,
+  },
+);
 
 if (portal?.customerPortalSession.url) {
   window.location.assign(portal.customerPortalSession.url);
@@ -236,14 +232,14 @@ if (portal?.customerPortalSession.url) {
 ```javascript
 // Generate text completion
 const { data, error } = await insforge.ai.completion({
-  model: 'gpt-3.5-turbo',
-  prompt: 'Write a hello world program'
+  model: "gpt-3.5-turbo",
+  prompt: "Write a hello world program",
 });
 
 // Analyze an image
 const { data, error } = await insforge.ai.vision({
-  imageUrl: 'https://example.com/image.jpg',
-  prompt: 'Describe this image'
+  imageUrl: "https://example.com/image.jpg",
+  prompt: "Describe this image",
 });
 ```
 
@@ -260,9 +256,9 @@ The SDK supports the following configuration options:
 
 ```javascript
 const insforge = createClient({
-  baseUrl: 'http://localhost:7130', // Your InsForge backend URL
-  anonKey: 'your-anon-key',         // Optional
-  isServerMode: false               // Optional (set true in SSR/server runtime)
+  baseUrl: "http://localhost:7130", // Your InsForge backend URL
+  anonKey: "your-anon-key", // Optional
+  isServerMode: false, // Optional (set true in SSR/server runtime)
 });
 ```
 
@@ -276,7 +272,7 @@ Read your access token from cookies in Next.js and pass it as `edgeFunctionToken
 Your app should write/update cookies itself after login/refresh.
 
 ```typescript
-import { createClient } from '@insforge/sdk';
+import { createClient } from "@insforge/sdk";
 const accessToken = /* read access token from request cookies */ null;
 
 const insforge = createClient({
@@ -291,15 +287,14 @@ const insforge = createClient({
 The SDK is written in TypeScript and provides full type definitions:
 
 ```typescript
-import { createClient, InsForgeClient } from '@insforge/sdk';
+import { createClient, InsForgeClient } from "@insforge/sdk";
 
 const insforge: InsForgeClient = createClient({
-  baseUrl: 'http://localhost:7130'
+  baseUrl: "http://localhost:7130",
 });
 
 // Type-safe API calls
-const response =
-  await insforge.auth.getCurrentUser();
+const response = await insforge.auth.getCurrentUser();
 ```
 
 ## Error Handling
@@ -320,6 +315,7 @@ if (error) {
 ## Browser Support
 
 The SDK works in all modern browsers that support:
+
 - ES6+ features
 - Fetch API
 - Cookies (for refresh token flow)

package/dist/index.d.mts

@@ -1,4 +1,4 @@
-import { UserSchema, CreateUserRequest, CreateUserResponse, CreateSessionRequest, CreateSessionResponse, OAuthProvidersSchema, RefreshSessionResponse, GetProfileResponse, SendVerificationEmailRequest, VerifyEmailRequest, VerifyEmailResponse, SendResetPasswordEmailRequest, ExchangeResetPasswordTokenRequest, ExchangeResetPasswordTokenResponse, ResetPasswordResponse, GetPublicAuthConfigResponse, StorageFileSchema, ListObjectsResponseSchema, ChatCompletionRequest, ImageGenerationRequest, EmbeddingsRequest, SubscribeResponse, SocketMessage, SendRawEmailRequest, SendEmailResponse, CreateCheckoutSessionRequest, CreateCheckoutSessionResponse, CreateCustomerPortalSessionRequest, CreateCustomerPortalSessionResponse } from '@insforge/shared-schemas';
+import { UserSchema, CreateUserRequest, CreateUserResponse, CreateSessionRequest, CreateSessionResponse, OAuthProvidersSchema, RefreshSessionResponse, GetProfileResponse, SendVerificationEmailRequest, VerifyEmailRequest, VerifyEmailResponse, SendResetPasswordEmailRequest, ExchangeResetPasswordTokenRequest, ExchangeResetPasswordTokenResponse, ResetPasswordResponse, GetPublicAuthConfigResponse, StorageFileSchema, ListObjectsResponseSchema, ChatCompletionRequest, ImageGenerationRequest, EmbeddingsRequest, SubscribeResponse, SocketMessage, SendRawEmailRequest, SendEmailResponse, StripeEnvironment, CreateCheckoutSessionBody, CreateCheckoutSessionResponse, CreateCustomerPortalSessionBody, CreateCustomerPortalSessionResponse } from '@insforge/shared-schemas';
 export { AuthErrorResponse, CreateSessionRequest, CreateUserRequest, RealtimeErrorPayload, SendRawEmailRequest as SendEmailOptions, SendEmailResponse, SocketMessage, SubscribeResponse, UserSchema } from '@insforge/shared-schemas';
 import * as _supabase_postgrest_js from '@supabase/postgrest-js';
 
@@ -993,8 +993,7 @@ declare class Payments {
      *
      * @example
      * ```typescript
-     * const { data, error } = await client.payments.createCheckoutSession({
-     *   environment: 'test',
+     * const { data, error } = await client.payments.createCheckoutSession('test', {
      *   mode: 'payment',
      *   lineItems: [{ stripePriceId: 'price_123', quantity: 1 }],
      *   successUrl: `${window.location.origin}/success`,
@@ -1006,11 +1005,11 @@ declare class Payments {
      * }
      * ```
      */
-    createCheckoutSession(request: CreateCheckoutSessionRequest): Promise<PaymentsResponse<CreateCheckoutSessionResponse>>;
+    createCheckoutSession(environment: StripeEnvironment, request: CreateCheckoutSessionBody): Promise<PaymentsResponse<CreateCheckoutSessionResponse>>;
     /**
      * Create a Stripe Billing Portal Session for a mapped billing subject.
      */
-    createCustomerPortalSession(request: CreateCustomerPortalSessionRequest): Promise<PaymentsResponse<CreateCustomerPortalSessionResponse>>;
+    createCustomerPortalSession(environment: StripeEnvironment, request: CreateCustomerPortalSessionBody): Promise<PaymentsResponse<CreateCustomerPortalSessionResponse>>;
 }
 
 /**
@@ -1079,6 +1078,30 @@ declare class InsForgeClient {
      * ```
      */
     getHttpClient(): HttpClient;
+    /**
+     * Set the access token used by every SDK surface. Updates both the HTTP
+     * client (database / storage / functions / AI / emails) and the realtime
+     * token manager (which fires `onTokenChange` to reconnect the WebSocket
+     * with the new bearer). Pass `null` to clear.
+     *
+     * Use this when an external auth provider (Better Auth, Clerk, Auth0,
+     * WorkOS, Kinde, Stytch, …) issues the JWT and you need to keep the
+     * long-lived InsForge client in sync. Without this, you'd have to call
+     * `client.getHttpClient().setAuthToken(token)` AND reach into the private
+     * `client.realtime.tokenManager.setAccessToken(token)` separately —
+     * forgetting the second one silently breaks realtime auth.
+     *
+     * @example
+     * ```typescript
+     * // Refresh a third-party-issued JWT periodically
+     * const { token } = await fetch('/api/insforge-token').then((r) => r.json());
+     * client.setAccessToken(token);
+     *
+     * // Sign-out
+     * client.setAccessToken(null);
+     * ```
+     */
+    setAccessToken(token: string | null): void;
 }
 
 /**

package/dist/index.d.ts

@@ -1,4 +1,4 @@
-import { UserSchema, CreateUserRequest, CreateUserResponse, CreateSessionRequest, CreateSessionResponse, OAuthProvidersSchema, RefreshSessionResponse, GetProfileResponse, SendVerificationEmailRequest, VerifyEmailRequest, VerifyEmailResponse, SendResetPasswordEmailRequest, ExchangeResetPasswordTokenRequest, ExchangeResetPasswordTokenResponse, ResetPasswordResponse, GetPublicAuthConfigResponse, StorageFileSchema, ListObjectsResponseSchema, ChatCompletionRequest, ImageGenerationRequest, EmbeddingsRequest, SubscribeResponse, SocketMessage, SendRawEmailRequest, SendEmailResponse, CreateCheckoutSessionRequest, CreateCheckoutSessionResponse, CreateCustomerPortalSessionRequest, CreateCustomerPortalSessionResponse } from '@insforge/shared-schemas';
+import { UserSchema, CreateUserRequest, CreateUserResponse, CreateSessionRequest, CreateSessionResponse, OAuthProvidersSchema, RefreshSessionResponse, GetProfileResponse, SendVerificationEmailRequest, VerifyEmailRequest, VerifyEmailResponse, SendResetPasswordEmailRequest, ExchangeResetPasswordTokenRequest, ExchangeResetPasswordTokenResponse, ResetPasswordResponse, GetPublicAuthConfigResponse, StorageFileSchema, ListObjectsResponseSchema, ChatCompletionRequest, ImageGenerationRequest, EmbeddingsRequest, SubscribeResponse, SocketMessage, SendRawEmailRequest, SendEmailResponse, StripeEnvironment, CreateCheckoutSessionBody, CreateCheckoutSessionResponse, CreateCustomerPortalSessionBody, CreateCustomerPortalSessionResponse } from '@insforge/shared-schemas';
 export { AuthErrorResponse, CreateSessionRequest, CreateUserRequest, RealtimeErrorPayload, SendRawEmailRequest as SendEmailOptions, SendEmailResponse, SocketMessage, SubscribeResponse, UserSchema } from '@insforge/shared-schemas';
 import * as _supabase_postgrest_js from '@supabase/postgrest-js';
 
@@ -993,8 +993,7 @@ declare class Payments {
      *
      * @example
      * ```typescript
-     * const { data, error } = await client.payments.createCheckoutSession({
-     *   environment: 'test',
+     * const { data, error } = await client.payments.createCheckoutSession('test', {
      *   mode: 'payment',
      *   lineItems: [{ stripePriceId: 'price_123', quantity: 1 }],
      *   successUrl: `${window.location.origin}/success`,
@@ -1006,11 +1005,11 @@ declare class Payments {
      * }
      * ```
      */
-    createCheckoutSession(request: CreateCheckoutSessionRequest): Promise<PaymentsResponse<CreateCheckoutSessionResponse>>;
+    createCheckoutSession(environment: StripeEnvironment, request: CreateCheckoutSessionBody): Promise<PaymentsResponse<CreateCheckoutSessionResponse>>;
     /**
      * Create a Stripe Billing Portal Session for a mapped billing subject.
      */
-    createCustomerPortalSession(request: CreateCustomerPortalSessionRequest): Promise<PaymentsResponse<CreateCustomerPortalSessionResponse>>;
+    createCustomerPortalSession(environment: StripeEnvironment, request: CreateCustomerPortalSessionBody): Promise<PaymentsResponse<CreateCustomerPortalSessionResponse>>;
 }
 
 /**
@@ -1079,6 +1078,30 @@ declare class InsForgeClient {
      * ```
      */
     getHttpClient(): HttpClient;
+    /**
+     * Set the access token used by every SDK surface. Updates both the HTTP
+     * client (database / storage / functions / AI / emails) and the realtime
+     * token manager (which fires `onTokenChange` to reconnect the WebSocket
+     * with the new bearer). Pass `null` to clear.
+     *
+     * Use this when an external auth provider (Better Auth, Clerk, Auth0,
+     * WorkOS, Kinde, Stytch, …) issues the JWT and you need to keep the
+     * long-lived InsForge client in sync. Without this, you'd have to call
+     * `client.getHttpClient().setAuthToken(token)` AND reach into the private
+     * `client.realtime.tokenManager.setAccessToken(token)` separately —
+     * forgetting the second one silently breaks realtime auth.
+     *
+     * @example
+     * ```typescript
+     * // Refresh a third-party-issued JWT periodically
+     * const { token } = await fetch('/api/insforge-token').then((r) => r.json());
+     * client.setAccessToken(token);
+     *
+     * // Sign-out
+     * client.setAccessToken(null);
+     * ```
+     */
+    setAccessToken(token: string | null): void;
 }
 
 /**

package/dist/index.js

@@ -2302,8 +2302,7 @@ var Payments = class {
    *
    * @example
    * ```typescript
-   * const { data, error } = await client.payments.createCheckoutSession({
-   *   environment: 'test',
+   * const { data, error } = await client.payments.createCheckoutSession('test', {
    *   mode: 'payment',
    *   lineItems: [{ stripePriceId: 'price_123', quantity: 1 }],
    *   successUrl: `${window.location.origin}/success`,
@@ -2315,10 +2314,10 @@ var Payments = class {
    * }
    * ```
    */
-  async createCheckoutSession(request) {
+  async createCheckoutSession(environment, request) {
     try {
       const data = await this.http.post(
-        "/api/payments/checkout-sessions",
+        `/api/payments/${encodeURIComponent(environment)}/checkout-sessions`,
         request,
         { idempotent: !!request.idempotencyKey }
       );
@@ -2333,10 +2332,10 @@ var Payments = class {
   /**
    * Create a Stripe Billing Portal Session for a mapped billing subject.
    */
-  async createCustomerPortalSession(request) {
+  async createCustomerPortalSession(environment, request) {
     try {
       const data = await this.http.post(
-        "/api/payments/customer-portal-sessions",
+        `/api/payments/${encodeURIComponent(environment)}/customer-portal-sessions`,
         request
       );
       return { data, error: null };
@@ -2386,6 +2385,37 @@ var InsForgeClient = class {
   getHttpClient() {
     return this.http;
   }
+  /**
+   * Set the access token used by every SDK surface. Updates both the HTTP
+   * client (database / storage / functions / AI / emails) and the realtime
+   * token manager (which fires `onTokenChange` to reconnect the WebSocket
+   * with the new bearer). Pass `null` to clear.
+   *
+   * Use this when an external auth provider (Better Auth, Clerk, Auth0,
+   * WorkOS, Kinde, Stytch, …) issues the JWT and you need to keep the
+   * long-lived InsForge client in sync. Without this, you'd have to call
+   * `client.getHttpClient().setAuthToken(token)` AND reach into the private
+   * `client.realtime.tokenManager.setAccessToken(token)` separately —
+   * forgetting the second one silently breaks realtime auth.
+   *
+   * @example
+   * ```typescript
+   * // Refresh a third-party-issued JWT periodically
+   * const { token } = await fetch('/api/insforge-token').then((r) => r.json());
+   * client.setAccessToken(token);
+   *
+   * // Sign-out
+   * client.setAccessToken(null);
+   * ```
+   */
+  setAccessToken(token) {
+    this.http.setAuthToken(token);
+    if (token === null) {
+      this.tokenManager.clearSession();
+    } else {
+      this.tokenManager.setAccessToken(token);
+    }
+  }
   /**
    * Future modules will be added here:
    * - database: Database operations