@kadoa/node-sdk 0.22.0 → 0.23.0

package/dist/index.mjs

@@ -6201,7 +6201,7 @@ process.env.KADOA_WSS_NEO_API_URI ?? "wss://events.kadoa.com/events/ws";
 var REALTIME_API_URI = process.env.KADOA_REALTIME_API_URI ?? "https://realtime.kadoa.com";
 
 // src/version.ts
-var SDK_VERSION = "0.22.0";
+var SDK_VERSION = "0.23.0";
 var SDK_NAME = "kadoa-node-sdk";
 var SDK_LANGUAGE = "node";
 
@@ -7176,11 +7176,27 @@ function createNotificationDomain(params) {
 // src/client/kadoa-client.ts
 var KadoaClient = class {
   constructor(config) {
+    if (!config.apiKey && !config.bearerToken) {
+      throw new KadoaSdkException(
+        "Either apiKey or bearerToken must be provided",
+        { code: "VALIDATION_ERROR" }
+      );
+    }
     this._baseUrl = config.baseUrl ?? PUBLIC_API_URI;
-    this._apiKey = config.apiKey;
+    this._apiKey = config.apiKey ?? "";
+    this._bearerToken = config.bearerToken;
     const timeout = config.timeout ?? 3e4;
     const headers = createSdkHeaders();
     this._axiosInstance = createAxiosInstance({ timeout, headers });
+    this._axiosInstance.interceptors.request.use((reqConfig) => {
+      if (this._bearerToken) {
+        if (!reqConfig.headers["Authorization"]) {
+          reqConfig.headers["Authorization"] = `Bearer ${this._bearerToken}`;
+        }
+        delete reqConfig.headers["x-api-key"];
+      }
+      return reqConfig;
+    });
     this.apis = new ApiRegistry(
       this._apiKey,
       this._baseUrl,
@@ -7218,11 +7234,19 @@ var KadoaClient = class {
   /**
    * Get the API key
    *
-   * @returns The API key
+   * @returns The API key (empty string when using Bearer auth)
    */
   get apiKey() {
     return this._apiKey;
   }
+  /**
+   * Update the Bearer token used for authentication.
+   * Call this after a Supabase JWT refresh so that subsequent requests
+   * use the new token.
+   */
+  setBearerToken(token) {
+    this._bearerToken = token;
+  }
   /**
    * Get the realtime connection (if enabled)
    */
@@ -7246,6 +7270,12 @@ var KadoaClient = class {
    * @returns The Realtime instance
    */
   async connectRealtime(options) {
+    if (!this._apiKey) {
+      throw new KadoaSdkException(
+        "Realtime requires an API key. Bearer-only auth is not supported for WebSocket connections.",
+        { code: "VALIDATION_ERROR" }
+      );
+    }
     if (!this._realtime) {
       this._realtime = new Realtime({ apiKey: this._apiKey, ...options });
       await this._realtime.connect();
@@ -7281,6 +7311,42 @@ var KadoaClient = class {
       realtimeConnected: this.isRealtimeConnected()
     };
   }
+  /**
+   * List all teams accessible to the authenticated user.
+   *
+   * When called with a Bearer token (Supabase JWT), returns all teams the
+   * human user belongs to. Without it, falls back to x-api-key auth which
+   * only returns teams the service account (API key) belongs to.
+   */
+  async listTeams(opts) {
+    const headers = opts?.bearerToken ? { Authorization: `Bearer ${opts.bearerToken}` } : void 0;
+    const response = await this._axiosInstance.get("/v5/user", {
+      baseURL: this._baseUrl,
+      ...headers && { headers }
+    });
+    return response.data?.teams ?? [];
+  }
+  /**
+   * Switch the active team for this session.
+   *
+   * Calls `POST /v5/auth/active-team` which updates the server-side
+   * session→team mapping. Subsequent requests with the same JWT are
+   * automatically scoped to the new team — no token refresh needed.
+   *
+   * @param teamId - The team ID to switch to (must be a team the user belongs to)
+   */
+  async setActiveTeam(teamId) {
+    if (!teamId?.trim()) {
+      throw new KadoaSdkException("teamId is required", {
+        code: "VALIDATION_ERROR"
+      });
+    }
+    await this._axiosInstance.post(
+      "/v5/auth/active-team",
+      { teamId },
+      { baseURL: this._baseUrl }
+    );
+  }
   /**
    * Dispose of the client and clean up resources
    */