@kard-financial/sdk 12.3.0 → 13.0.0

package/dist/esm/auth/OAuthAuthProvider.d.mts

@@ -1,23 +1,45 @@
 import type { BaseClientOptions } from "../BaseClient.mjs";
 import * as core from "../core/index.mjs";
-export declare namespace OAuthAuthProvider {
-    interface Options extends BaseClientOptions {
-    }
-}
+declare const CLIENT_ID_PARAM: "clientId";
+declare const CLIENT_SECRET_PARAM: "clientSecret";
+declare const TOKEN_PARAM: "token";
 export declare class OAuthAuthProvider implements core.AuthProvider {
-    private readonly BUFFER_IN_MINUTES;
-    private readonly _clientId;
-    private readonly _clientSecret;
-    private readonly _authClient;
-    private _accessToken;
-    private _expiresAt;
-    private _refreshPromise;
-    constructor(options: OAuthAuthProvider.Options);
-    static canCreate(options: OAuthAuthProvider.Options): boolean;
-    getAuthRequest(arg?: {
+    private readonly options;
+    private readonly authClient;
+    private accessToken;
+    private expiresAt;
+    private refreshPromise;
+    constructor(options: OAuthAuthProvider.Options & OAuthAuthProvider.ClientCredentials);
+    static canCreate(options?: Partial<OAuthAuthProvider.ClientCredentials & BaseClientOptions>): boolean;
+    private clientIdSupplier;
+    private clientSecretSupplier;
+    getAuthRequest({ endpointMetadata, }?: {
         endpointMetadata?: core.EndpointMetadata;
     }): Promise<core.AuthRequest>;
     private getToken;
     private refresh;
     private getExpiresAt;
 }
+export declare class OAuthTokenOverrideAuthProvider implements core.AuthProvider {
+    private readonly options;
+    constructor(options: OAuthAuthProvider.TokenOverride);
+    static canCreate(options?: Partial<OAuthAuthProvider.TokenOverride & BaseClientOptions>): options is OAuthAuthProvider.TokenOverride;
+    getAuthRequest({ endpointMetadata, }?: {
+        endpointMetadata?: core.EndpointMetadata;
+    }): Promise<core.AuthRequest>;
+}
+export declare namespace OAuthAuthProvider {
+    const AUTH_SCHEME: "OAuthScheme";
+    const AUTH_CONFIG_ERROR_MESSAGE: string;
+    type ClientCredentials = {
+        [CLIENT_ID_PARAM]?: core.Supplier<string> | undefined;
+        [CLIENT_SECRET_PARAM]?: core.Supplier<string> | undefined;
+    };
+    type TokenOverride = {
+        [TOKEN_PARAM]: core.Supplier<string>;
+    };
+    type AuthOptions = ClientCredentials | TokenOverride;
+    type Options = BaseClientOptions & AuthOptions;
+    function createInstance(options: Options): core.AuthProvider;
+}
+export {};

package/dist/esm/auth/OAuthAuthProvider.mjs

@@ -11,22 +11,61 @@ var __awaiter = (this && this.__awaiter) || function (thisArg, _arguments, P, ge
 import { AuthClient } from "../api/resources/auth/client/Client.mjs";
 import * as core from "../core/index.mjs";
 import * as errors from "../errors/index.mjs";
+const CLIENT_ID_PARAM = "clientId";
+const CLIENT_SECRET_PARAM = "clientSecret";
+const TOKEN_PARAM = "token";
+const ENV_CLIENT_ID = "KARD_CLIENT_ID";
+const ENV_CLIENT_SECRET = "KARD_CLIENT_SECRET";
+const CLIENT_ID_REQUIRED_ERROR_MESSAGE = `${CLIENT_ID_PARAM} is required; either pass it as an argument or set the ${ENV_CLIENT_ID} environment variable`;
+const CLIENT_SECRET_REQUIRED_ERROR_MESSAGE = `${CLIENT_SECRET_PARAM} is required; either pass it as an argument or set the ${ENV_CLIENT_SECRET} environment variable`;
+const TOKEN_PARAM_REQUIRED_ERROR_MESSAGE = `${TOKEN_PARAM} is required. Please provide it in options.`;
+const BUFFER_IN_MINUTES = 2;
 export class OAuthAuthProvider {
     constructor(options) {
-        this.BUFFER_IN_MINUTES = 2;
-        this._clientId = options.clientId;
-        this._clientSecret = options.clientSecret;
-        this._authClient = new AuthClient(options);
-        this._expiresAt = new Date();
+        this.options = options;
+        this.authClient = new AuthClient(options);
+        this.expiresAt = new Date();
     }
     static canCreate(options) {
         var _a, _b;
-        return ((options.clientId != null || ((_a = process.env) === null || _a === void 0 ? void 0 : _a.KARD_CLIENT_ID) != null) &&
-            (options.clientSecret != null || ((_b = process.env) === null || _b === void 0 ? void 0 : _b.KARD_CLIENT_SECRET) != null));
+        return (((options === null || options === void 0 ? void 0 : options[CLIENT_ID_PARAM]) != null || ((_a = process.env) === null || _a === void 0 ? void 0 : _a[ENV_CLIENT_ID]) != null) &&
+            ((options === null || options === void 0 ? void 0 : options[CLIENT_SECRET_PARAM]) != null || ((_b = process.env) === null || _b === void 0 ? void 0 : _b[ENV_CLIENT_SECRET]) != null));
     }
-    getAuthRequest(arg) {
-        return __awaiter(this, void 0, void 0, function* () {
-            const token = yield this.getToken(arg);
+    clientIdSupplier() {
+        return __awaiter(this, arguments, void 0, function* ({ endpointMetadata, } = {}) {
+            var _a;
+            const supplier = this.options[CLIENT_ID_PARAM];
+            if (supplier != null) {
+                return core.EndpointSupplier.get(supplier, { endpointMetadata });
+            }
+            const envClientId = (_a = process.env) === null || _a === void 0 ? void 0 : _a[ENV_CLIENT_ID];
+            if (envClientId != null) {
+                return envClientId;
+            }
+            throw new errors.KardApiError({
+                message: CLIENT_ID_REQUIRED_ERROR_MESSAGE,
+            });
+        });
+    }
+    clientSecretSupplier() {
+        return __awaiter(this, arguments, void 0, function* ({ endpointMetadata, } = {}) {
+            var _a;
+            const supplier = this.options[CLIENT_SECRET_PARAM];
+            if (supplier != null) {
+                return core.EndpointSupplier.get(supplier, { endpointMetadata });
+            }
+            const envClientSecret = (_a = process.env) === null || _a === void 0 ? void 0 : _a[ENV_CLIENT_SECRET];
+            if (envClientSecret != null) {
+                return envClientSecret;
+            }
+            throw new errors.KardApiError({
+                message: CLIENT_SECRET_REQUIRED_ERROR_MESSAGE,
+            });
+        });
+    }
+    getAuthRequest() {
+        return __awaiter(this, arguments, void 0, function* ({ endpointMetadata, } = {}) {
+            const token = yield this.getToken({ endpointMetadata });
             return {
                 headers: {
                     Authorization: `Bearer ${token}`,
@@ -34,48 +73,37 @@ export class OAuthAuthProvider {
             };
         });
     }
-    getToken(arg) {
-        return __awaiter(this, void 0, void 0, function* () {
-            if (this._accessToken && this._expiresAt > new Date()) {
-                return this._accessToken;
+    getToken() {
+        return __awaiter(this, arguments, void 0, function* ({ endpointMetadata } = {}) {
+            if (this.accessToken && this.expiresAt > new Date()) {
+                return this.accessToken;
             }
             // If a refresh is already in progress, return the existing promise
-            if (this._refreshPromise != null) {
-                return this._refreshPromise;
+            if (this.refreshPromise != null) {
+                return this.refreshPromise;
             }
-            return this.refresh(arg);
+            return this.refresh({ endpointMetadata });
         });
     }
-    refresh(_arg) {
-        return __awaiter(this, void 0, void 0, function* () {
-            this._refreshPromise = (() => __awaiter(this, void 0, void 0, function* () {
-                var _a, _b, _c, _d;
+    refresh() {
+        return __awaiter(this, arguments, void 0, function* ({ endpointMetadata } = {}) {
+            this.refreshPromise = (() => __awaiter(this, void 0, void 0, function* () {
                 try {
-                    const clientId = (_a = (yield core.Supplier.get(this._clientId))) !== null && _a !== void 0 ? _a : (_b = process.env) === null || _b === void 0 ? void 0 : _b.KARD_CLIENT_ID;
-                    if (clientId == null) {
-                        throw new errors.KardApiError({
-                            message: "clientId is required; either pass it as an argument or set the KARD_CLIENT_ID environment variable",
-                        });
-                    }
-                    const clientSecret = (_c = (yield core.Supplier.get(this._clientSecret))) !== null && _c !== void 0 ? _c : (_d = process.env) === null || _d === void 0 ? void 0 : _d.KARD_CLIENT_SECRET;
-                    if (clientSecret == null) {
-                        throw new errors.KardApiError({
-                            message: "clientSecret is required; either pass it as an argument or set the KARD_CLIENT_SECRET environment variable",
-                        });
-                    }
-                    const tokenResponse = yield this._authClient.getToken({
+                    const clientId = yield this.clientIdSupplier({ endpointMetadata });
+                    const clientSecret = yield this.clientSecretSupplier({ endpointMetadata });
+                    const tokenResponse = yield this.authClient.getToken({
                         client_id: clientId,
                         client_secret: clientSecret,
                     });
-                    this._accessToken = tokenResponse.access_token;
-                    this._expiresAt = this.getExpiresAt(tokenResponse.expires_in, this.BUFFER_IN_MINUTES);
-                    return this._accessToken;
+                    this.accessToken = tokenResponse.access_token;
+                    this.expiresAt = this.getExpiresAt(tokenResponse.expires_in, BUFFER_IN_MINUTES);
+                    return this.accessToken;
                 }
                 finally {
-                    this._refreshPromise = undefined;
+                    this.refreshPromise = undefined;
                 }
             }))();
-            return this._refreshPromise;
+            return this.refreshPromise;
         });
     }
     getExpiresAt(expiresInSeconds, bufferInMinutes) {
@@ -83,3 +111,42 @@ export class OAuthAuthProvider {
         return new Date(now.getTime() + expiresInSeconds * 1000 - bufferInMinutes * 60 * 1000);
     }
 }
+export class OAuthTokenOverrideAuthProvider {
+    constructor(options) {
+        this.options = options;
+    }
+    static canCreate(options) {
+        return (options === null || options === void 0 ? void 0 : options[TOKEN_PARAM]) != null;
+    }
+    getAuthRequest() {
+        return __awaiter(this, arguments, void 0, function* ({ endpointMetadata, } = {}) {
+            const token = this.options[TOKEN_PARAM];
+            if (token == null) {
+                throw new errors.KardApiError({
+                    message: TOKEN_PARAM_REQUIRED_ERROR_MESSAGE,
+                });
+            }
+            return {
+                headers: {
+                    Authorization: `Bearer ${yield core.EndpointSupplier.get(token, { endpointMetadata })}`,
+                },
+            };
+        });
+    }
+}
+(function (OAuthAuthProvider) {
+    OAuthAuthProvider.AUTH_SCHEME = "OAuthScheme";
+    OAuthAuthProvider.AUTH_CONFIG_ERROR_MESSAGE = `Insufficient options to create OAuthAuthProvider. Please provide either '${CLIENT_ID_PARAM}' or '${ENV_CLIENT_ID}' env var and '${CLIENT_SECRET_PARAM}' or '${ENV_CLIENT_SECRET}' env var, or ${TOKEN_PARAM}.`;
+    function createInstance(options) {
+        if (OAuthTokenOverrideAuthProvider.canCreate(options)) {
+            return new OAuthTokenOverrideAuthProvider(options);
+        }
+        else if (OAuthAuthProvider.canCreate(options)) {
+            return new OAuthAuthProvider(options);
+        }
+        throw new errors.KardApiError({
+            message: OAuthAuthProvider.AUTH_CONFIG_ERROR_MESSAGE,
+        });
+    }
+    OAuthAuthProvider.createInstance = createInstance;
+})(OAuthAuthProvider || (OAuthAuthProvider = {}));

package/dist/esm/core/auth/BasicAuth.d.mts

@@ -1,6 +1,6 @@
 export interface BasicAuth {
-    username: string;
-    password: string;
+    username?: string;
+    password?: string;
 }
 export declare const BasicAuth: {
     toAuthorizationHeader: (basicAuth: BasicAuth | undefined) => string | undefined;

package/dist/esm/core/auth/BasicAuth.mjs

@@ -2,10 +2,16 @@ import { base64Decode, base64Encode } from "../base64.mjs";
 const BASIC_AUTH_HEADER_PREFIX = /^Basic /i;
 export const BasicAuth = {
     toAuthorizationHeader: (basicAuth) => {
+        var _a, _b;
         if (basicAuth == null) {
             return undefined;
         }
-        const token = base64Encode(`${basicAuth.username}:${basicAuth.password}`);
+        const username = (_a = basicAuth.username) !== null && _a !== void 0 ? _a : "";
+        const password = (_b = basicAuth.password) !== null && _b !== void 0 ? _b : "";
+        if (username === "" && password === "") {
+            return undefined;
+        }
+        const token = base64Encode(`${username}:${password}`);
         return `Basic ${token}`;
     },
     fromAuthorizationHeader: (header) => {

package/dist/esm/core/fetcher/BinaryResponse.d.mts

@@ -14,6 +14,6 @@ export type BinaryResponse = {
      * [MDN Reference](https://developer.mozilla.org/docs/Web/API/Request/bytes)
      * Some versions of the Fetch API may not support this method.
      */
-    bytes?(): ReturnType<Response["bytes"]>;
+    bytes?(): Promise<Uint8Array>;
 };
 export declare function getBinaryResponse(response: Response): BinaryResponse;

package/dist/esm/core/fetcher/EndpointSupplier.d.mts

@@ -1,12 +1,12 @@
 import type { EndpointMetadata } from "./EndpointMetadata.mjs";
 import type { Supplier } from "./Supplier.mjs";
 type EndpointSupplierFn<T> = (arg: {
-    endpointMetadata: EndpointMetadata;
+    endpointMetadata?: EndpointMetadata;
 }) => T | Promise<T>;
 export type EndpointSupplier<T> = Supplier<T> | EndpointSupplierFn<T>;
 export declare const EndpointSupplier: {
     get: <T>(supplier: EndpointSupplier<T>, arg: {
-        endpointMetadata: EndpointMetadata;
+        endpointMetadata?: EndpointMetadata;
     }) => Promise<T>;
 };
 export {};

package/dist/esm/core/fetcher/Fetcher.d.mts

@@ -1,14 +1,13 @@
 import { type LogConfig, type Logger } from "../logging/logger.mjs";
 import type { APIResponse } from "./APIResponse.mjs";
 import type { EndpointMetadata } from "./EndpointMetadata.mjs";
-import { EndpointSupplier } from "./EndpointSupplier.mjs";
 export type FetchFunction = <R = unknown>(args: Fetcher.Args) => Promise<APIResponse<R, Fetcher.Error>>;
 export declare namespace Fetcher {
     interface Args {
         url: string;
         method: string;
         contentType?: string;
-        headers?: Record<string, string | EndpointSupplier<string | null | undefined> | null | undefined>;
+        headers?: Record<string, unknown>;
         queryParameters?: Record<string, unknown>;
         body?: unknown;
         timeoutMs?: number;
@@ -39,10 +38,12 @@ export declare namespace Fetcher {
     }
     interface TimeoutError {
         reason: "timeout";
+        cause?: unknown;
     }
     interface UnknownError {
         reason: "unknown";
         errorMessage: string;
+        cause?: unknown;
     }
 }
 export declare function fetcherImpl<R = unknown>(args: Fetcher.Args): Promise<APIResponse<R, Fetcher.Error>>;

package/dist/esm/core/fetcher/Fetcher.mjs

@@ -152,7 +152,13 @@ function getHeaders(args) {
     return __awaiter(this, void 0, void 0, function* () {
         var _a;
         const newHeaders = new Headers();
-        newHeaders.set("Accept", args.responseType === "json" ? "application/json" : args.responseType === "text" ? "text/plain" : "*/*");
+        newHeaders.set("Accept", args.responseType === "json"
+            ? "application/json"
+            : args.responseType === "text"
+                ? "text/plain"
+                : args.responseType === "sse"
+                    ? "text/event-stream"
+                    : "*/*");
         if (args.body !== undefined && args.contentType != null) {
             newHeaders.set("Content-Type", args.contentType);
         }
@@ -196,7 +202,7 @@ export function fetcherImpl(args) {
         }
         try {
             const response = yield requestWithRetries(() => __awaiter(this, void 0, void 0, function* () {
-                return makeRequest(fetchFn, url, args.method, headers, requestBody, args.timeoutMs, args.abortSignal, args.withCredentials, args.duplex);
+                return makeRequest(fetchFn, url, args.method, headers, requestBody, args.timeoutMs, args.abortSignal, args.withCredentials, args.duplex, args.responseType === "streaming" || args.responseType === "sse");
             }), args.maxRetries);
             if (response.status >= 200 && response.status < 400) {
                 if (logger.isDebug()) {
@@ -251,6 +257,7 @@ export function fetcherImpl(args) {
                     error: {
                         reason: "unknown",
                         errorMessage: "The user aborted a request",
+                        cause: error,
                     },
                     rawResponse: abortRawResponse,
                 };
@@ -268,6 +275,7 @@ export function fetcherImpl(args) {
                     ok: false,
                     error: {
                         reason: "timeout",
+                        cause: error,
                     },
                     rawResponse: abortRawResponse,
                 };
@@ -286,6 +294,7 @@ export function fetcherImpl(args) {
                     error: {
                         reason: "unknown",
                         errorMessage: error.message,
+                        cause: error,
                     },
                     rawResponse: unknownRawResponse,
                 };
@@ -303,6 +312,7 @@ export function fetcherImpl(args) {
                 error: {
                     reason: "unknown",
                     errorMessage: toJson(error),
+                    cause: error,
                 },
                 rawResponse: unknownRawResponse,
             };

package/dist/esm/core/fetcher/index.d.mts

@@ -6,6 +6,8 @@ export type { Fetcher, FetchFunction } from "./Fetcher.mjs";
 export { fetcher } from "./Fetcher.mjs";
 export { getHeader } from "./getHeader.mjs";
 export { HttpResponsePromise } from "./HttpResponsePromise.mjs";
+export type { PassthroughRequest } from "./makePassthroughRequest.mjs";
+export { makePassthroughRequest } from "./makePassthroughRequest.mjs";
 export type { RawResponse, WithRawResponse } from "./RawResponse.mjs";
 export { abortRawResponse, toRawResponse, unknownRawResponse } from "./RawResponse.mjs";
 export { Supplier } from "./Supplier.mjs";

package/dist/esm/core/fetcher/index.mjs

@@ -2,5 +2,6 @@ export { EndpointSupplier } from "./EndpointSupplier.mjs";
 export { fetcher } from "./Fetcher.mjs";
 export { getHeader } from "./getHeader.mjs";
 export { HttpResponsePromise } from "./HttpResponsePromise.mjs";
+export { makePassthroughRequest } from "./makePassthroughRequest.mjs";
 export { abortRawResponse, toRawResponse, unknownRawResponse } from "./RawResponse.mjs";
 export { Supplier } from "./Supplier.mjs";

package/dist/esm/core/fetcher/makePassthroughRequest.d.mts

@@ -0,0 +1,49 @@
+import { type LogConfig, type Logger } from "../logging/logger.mjs";
+import { Supplier } from "./Supplier.mjs";
+export declare namespace PassthroughRequest {
+    /**
+     * Per-request options that can override the SDK client defaults.
+     */
+    interface RequestOptions {
+        /** Override the default timeout for this request (in seconds). */
+        timeoutInSeconds?: number;
+        /** Override the default number of retries for this request. */
+        maxRetries?: number;
+        /** Additional headers to include in this request. */
+        headers?: Record<string, string>;
+        /** Abort signal for this request. */
+        abortSignal?: AbortSignal;
+    }
+    /**
+     * SDK client configuration used by the passthrough fetch method.
+     */
+    interface ClientOptions {
+        /** The base URL or environment for the client. */
+        environment?: Supplier<string>;
+        /** Override the base URL. */
+        baseUrl?: Supplier<string>;
+        /** Default headers to include in requests. */
+        headers?: Record<string, unknown>;
+        /** Default maximum time to wait for a response in seconds. */
+        timeoutInSeconds?: number;
+        /** Default number of times to retry the request. Defaults to 2. */
+        maxRetries?: number;
+        /** A custom fetch function. */
+        fetch?: typeof fetch;
+        /** Logging configuration. */
+        logging?: LogConfig | Logger;
+        /** A function that returns auth headers. */
+        getAuthHeaders?: () => Promise<Record<string, string>>;
+    }
+}
+/**
+ * Makes a passthrough HTTP request using the SDK's configuration (auth, retry, logging, etc.)
+ * while mimicking the standard `fetch` API.
+ *
+ * @param input - The URL, path, or Request object. If a relative path, it will be resolved against the configured base URL.
+ * @param init - Standard RequestInit options (method, headers, body, signal, etc.)
+ * @param clientOptions - SDK client options (auth, default headers, logging, etc.)
+ * @param requestOptions - Per-request overrides (timeout, retries, extra headers, abort signal).
+ * @returns A standard Response object.
+ */
+export declare function makePassthroughRequest(input: Request | string | URL, init: RequestInit | undefined, clientOptions: PassthroughRequest.ClientOptions, requestOptions?: PassthroughRequest.RequestOptions): Promise<Response>;

package/dist/esm/core/fetcher/makePassthroughRequest.mjs

@@ -0,0 +1,132 @@
+var __awaiter = (this && this.__awaiter) || function (thisArg, _arguments, P, generator) {
+    function adopt(value) { return value instanceof P ? value : new P(function (resolve) { resolve(value); }); }
+    return new (P || (P = Promise))(function (resolve, reject) {
+        function fulfilled(value) { try { step(generator.next(value)); } catch (e) { reject(e); } }
+        function rejected(value) { try { step(generator["throw"](value)); } catch (e) { reject(e); } }
+        function step(result) { result.done ? resolve(result.value) : adopt(result.value).then(fulfilled, rejected); }
+        step((generator = generator.apply(thisArg, _arguments || [])).next());
+    });
+};
+import { createLogger } from "../logging/logger.mjs";
+import { join } from "../url/join.mjs";
+import { EndpointSupplier } from "./EndpointSupplier.mjs";
+import { getFetchFn } from "./getFetchFn.mjs";
+import { makeRequest } from "./makeRequest.mjs";
+import { requestWithRetries } from "./requestWithRetries.mjs";
+import { Supplier } from "./Supplier.mjs";
+/**
+ * Makes a passthrough HTTP request using the SDK's configuration (auth, retry, logging, etc.)
+ * while mimicking the standard `fetch` API.
+ *
+ * @param input - The URL, path, or Request object. If a relative path, it will be resolved against the configured base URL.
+ * @param init - Standard RequestInit options (method, headers, body, signal, etc.)
+ * @param clientOptions - SDK client options (auth, default headers, logging, etc.)
+ * @param requestOptions - Per-request overrides (timeout, retries, extra headers, abort signal).
+ * @returns A standard Response object.
+ */
+export function makePassthroughRequest(input, init, clientOptions, requestOptions) {
+    return __awaiter(this, void 0, void 0, function* () {
+        var _a, _b, _c, _d, _e, _f, _g;
+        const logger = createLogger(clientOptions.logging);
+        // Extract URL and default init properties from Request object if provided
+        let url;
+        let effectiveInit = init;
+        if (input instanceof Request) {
+            url = input.url;
+            // If no explicit init provided, extract properties from the Request object
+            if (init == null) {
+                effectiveInit = {
+                    method: input.method,
+                    headers: Object.fromEntries(input.headers.entries()),
+                    body: input.body,
+                    signal: input.signal,
+                    credentials: input.credentials,
+                    cache: input.cache,
+                    redirect: input.redirect,
+                    referrer: input.referrer,
+                    integrity: input.integrity,
+                    mode: input.mode,
+                };
+            }
+        }
+        else {
+            url = input instanceof URL ? input.toString() : input;
+        }
+        // Resolve the base URL
+        const baseUrl = (_a = (clientOptions.baseUrl != null ? yield Supplier.get(clientOptions.baseUrl) : undefined)) !== null && _a !== void 0 ? _a : (clientOptions.environment != null ? yield Supplier.get(clientOptions.environment) : undefined);
+        // Determine the full URL
+        let fullUrl;
+        if (url.startsWith("http://") || url.startsWith("https://")) {
+            fullUrl = url;
+        }
+        else if (baseUrl != null) {
+            fullUrl = join(baseUrl, url);
+        }
+        else {
+            fullUrl = url;
+        }
+        // Merge headers: SDK default headers -> auth headers -> user-provided headers
+        const mergedHeaders = {};
+        // Apply SDK default headers (resolve suppliers)
+        if (clientOptions.headers != null) {
+            for (const [key, value] of Object.entries(clientOptions.headers)) {
+                const resolved = yield EndpointSupplier.get(value, { endpointMetadata: {} });
+                if (resolved != null) {
+                    mergedHeaders[key.toLowerCase()] = `${resolved}`;
+                }
+            }
+        }
+        // Apply auth headers
+        if (clientOptions.getAuthHeaders != null) {
+            const authHeaders = yield clientOptions.getAuthHeaders();
+            for (const [key, value] of Object.entries(authHeaders)) {
+                mergedHeaders[key.toLowerCase()] = value;
+            }
+        }
+        // Apply user-provided headers from init
+        if ((effectiveInit === null || effectiveInit === void 0 ? void 0 : effectiveInit.headers) != null) {
+            const initHeaders = effectiveInit.headers instanceof Headers
+                ? Object.fromEntries(effectiveInit.headers.entries())
+                : Array.isArray(effectiveInit.headers)
+                    ? Object.fromEntries(effectiveInit.headers)
+                    : effectiveInit.headers;
+            for (const [key, value] of Object.entries(initHeaders)) {
+                if (value != null) {
+                    mergedHeaders[key.toLowerCase()] = value;
+                }
+            }
+        }
+        // Apply per-request option headers (highest priority)
+        if ((requestOptions === null || requestOptions === void 0 ? void 0 : requestOptions.headers) != null) {
+            for (const [key, value] of Object.entries(requestOptions.headers)) {
+                mergedHeaders[key.toLowerCase()] = value;
+            }
+        }
+        const method = (_b = effectiveInit === null || effectiveInit === void 0 ? void 0 : effectiveInit.method) !== null && _b !== void 0 ? _b : "GET";
+        const body = effectiveInit === null || effectiveInit === void 0 ? void 0 : effectiveInit.body;
+        const timeoutInSeconds = (_c = requestOptions === null || requestOptions === void 0 ? void 0 : requestOptions.timeoutInSeconds) !== null && _c !== void 0 ? _c : clientOptions.timeoutInSeconds;
+        const timeoutMs = timeoutInSeconds != null ? timeoutInSeconds * 1000 : undefined;
+        const maxRetries = (_d = requestOptions === null || requestOptions === void 0 ? void 0 : requestOptions.maxRetries) !== null && _d !== void 0 ? _d : clientOptions.maxRetries;
+        const abortSignal = (_f = (_e = requestOptions === null || requestOptions === void 0 ? void 0 : requestOptions.abortSignal) !== null && _e !== void 0 ? _e : effectiveInit === null || effectiveInit === void 0 ? void 0 : effectiveInit.signal) !== null && _f !== void 0 ? _f : undefined;
+        const fetchFn = (_g = clientOptions.fetch) !== null && _g !== void 0 ? _g : (yield getFetchFn());
+        if (logger.isDebug()) {
+            logger.debug("Making passthrough HTTP request", {
+                method,
+                url: fullUrl,
+                hasBody: body != null,
+            });
+        }
+        const response = yield requestWithRetries(() => __awaiter(this, void 0, void 0, function* () {
+            return makeRequest(fetchFn, fullUrl, method, mergedHeaders, body !== null && body !== void 0 ? body : undefined, timeoutMs, abortSignal, (effectiveInit === null || effectiveInit === void 0 ? void 0 : effectiveInit.credentials) === "include", undefined, // duplex
+            false);
+        }), maxRetries);
+        if (logger.isDebug()) {
+            logger.debug("Passthrough HTTP request completed", {
+                method,
+                url: fullUrl,
+                statusCode: response.status,
+            });
+        }
+        return response;
+    });
+}

package/dist/esm/core/fetcher/makeRequest.d.mts

@@ -1 +1,6 @@
-export declare const makeRequest: (fetchFn: (url: string, init: RequestInit) => Promise<Response>, url: string, method: string, headers: Headers | Record<string, string>, requestBody: BodyInit | undefined, timeoutMs?: number, abortSignal?: AbortSignal, withCredentials?: boolean, duplex?: "half") => Promise<Response>;
+export declare function isCacheNoStoreSupported(): boolean;
+/**
+ * Reset the cached result of `isCacheNoStoreSupported`. Exposed for testing only.
+ */
+export declare function resetCacheNoStoreSupported(): void;
+export declare const makeRequest: (fetchFn: (url: string, init: RequestInit) => Promise<Response>, url: string, method: string, headers: Headers | Record<string, string>, requestBody: BodyInit | undefined, timeoutMs?: number, abortSignal?: AbortSignal, withCredentials?: boolean, duplex?: "half", disableCache?: boolean) => Promise<Response>;

package/dist/esm/core/fetcher/makeRequest.mjs

@@ -8,7 +8,32 @@ var __awaiter = (this && this.__awaiter) || function (thisArg, _arguments, P, ge
     });
 };
 import { anySignal, getTimeoutSignal } from "./signals.mjs";
-export const makeRequest = (fetchFn, url, method, headers, requestBody, timeoutMs, abortSignal, withCredentials, duplex) => __awaiter(void 0, void 0, void 0, function* () {
+/**
+ * Cached result of checking whether the current runtime supports
+ * the `cache` option in `Request`. Some runtimes (e.g. Cloudflare Workers)
+ * throw a TypeError when this option is used.
+ */
+let _cacheNoStoreSupported;
+export function isCacheNoStoreSupported() {
+    if (_cacheNoStoreSupported != null) {
+        return _cacheNoStoreSupported;
+    }
+    try {
+        new Request("http://localhost", { cache: "no-store" });
+        _cacheNoStoreSupported = true;
+    }
+    catch (_a) {
+        _cacheNoStoreSupported = false;
+    }
+    return _cacheNoStoreSupported;
+}
+/**
+ * Reset the cached result of `isCacheNoStoreSupported`. Exposed for testing only.
+ */
+export function resetCacheNoStoreSupported() {
+    _cacheNoStoreSupported = undefined;
+}
+export const makeRequest = (fetchFn, url, method, headers, requestBody, timeoutMs, abortSignal, withCredentials, duplex, disableCache) => __awaiter(void 0, void 0, void 0, function* () {
     const signals = [];
     let timeoutAbortId;
     if (timeoutMs != null) {
@@ -20,15 +45,9 @@ export const makeRequest = (fetchFn, url, method, headers, requestBody, timeoutM
         signals.push(abortSignal);
     }
     const newSignals = anySignal(signals);
-    const response = yield fetchFn(url, {
-        method: method,
-        headers,
-        body: requestBody,
-        signal: newSignals,
-        credentials: withCredentials ? "include" : undefined,
+    const response = yield fetchFn(url, Object.assign({ method: method, headers, body: requestBody, signal: newSignals, credentials: withCredentials ? "include" : undefined, 
         // @ts-ignore
-        duplex,
-    });
+        duplex }, (disableCache && isCacheNoStoreSupported() ? { cache: "no-store" } : {})));
     if (timeoutAbortId != null) {
         clearTimeout(timeoutAbortId);
     }

package/dist/esm/core/headers.d.mts

@@ -1,2 +1,2 @@
-export declare function mergeHeaders<THeaderValue>(...headersArray: (Record<string, THeaderValue> | null | undefined)[]): Record<string, string | THeaderValue>;
-export declare function mergeOnlyDefinedHeaders<THeaderValue>(...headersArray: (Record<string, THeaderValue> | null | undefined)[]): Record<string, THeaderValue>;
+export declare function mergeHeaders(...headersArray: (Record<string, unknown> | null | undefined)[]): Record<string, unknown>;
+export declare function mergeOnlyDefinedHeaders(...headersArray: (Record<string, unknown> | null | undefined)[]): Record<string, unknown>;