@keystrokehq/netsuite 0.1.0

package/dist/actions/list-vendor-payments.mjs

@@ -0,0 +1,34 @@
+import { action } from "../action.mjs";
+import { z } from "zod";
+//#region src/actions/list-vendor-payments.ts
+const NetsuiteListVendorPaymentsInput = z.object({
+	q: z.string().describe("Filter expression using N/query operators; e.g., 'amount BETWEEN 100 AND 500'. Logical AND/OR and parentheses supported. Wrap multi-word values in quotes.").optional(),
+	limit: z.number().int().describe("Maximum number of records per page (1–1000); default is 1000.").optional(),
+	offset: z.number().int().describe("Zero-based index of the first record in page; must be divisible by limit.").optional()
+}).describe("Query parameters for LIST_VENDOR_PAYMENTS:\n- q: optional filter expression using NetSuite query operators (AND/OR, parentheses).\n- limit: optional page size (1–1000; default is 1000).\n- offset: optional zero-based start index; if provided, must be divisible by limit.");
+const NetsuiteListVendorPayments_LinkSchema = z.object({
+	rel: z.string().describe("Navigation relation (self, next, prev, first, last)"),
+	href: z.string().describe("URL for the linked resource")
+});
+const NetsuiteListVendorPayments_VendorPaymentListItemSchema = z.object({
+	id: z.string().describe("Internal ID of the vendor payment record"),
+	links: z.array(NetsuiteListVendorPayments_LinkSchema).describe("HATEOAS link(s) for this vendor payment record")
+});
+const netsuiteListVendorPayments = action("NETSUITE_LIST_VENDOR_PAYMENTS", {
+	slug: "netsuite-list-vendor-payments",
+	name: "List Vendor Payments",
+	description: "Tool to list vendor payment records. Use when you need to retrieve vendor payments with optional filtering and pagination after establishing a valid NetSuite connection.",
+	input: NetsuiteListVendorPaymentsInput,
+	output: z.object({
+		count: z.number().int().describe("Number of items in this page").nullable().optional(),
+		items: z.array(NetsuiteListVendorPayments_VendorPaymentListItemSchema).describe("List of vendor payment result items"),
+		links: z.array(NetsuiteListVendorPayments_LinkSchema).describe("Paging navigation links"),
+		offset: z.number().int().describe("Offset used for this page").nullable().optional(),
+		hasMore: z.boolean().describe("True if additional pages exist").nullable().optional(),
+		totalResults: z.number().int().describe("Total number of matching records").nullable().optional()
+	})
+});
+//#endregion
+export { netsuiteListVendorPayments };
+
+//# sourceMappingURL=list-vendor-payments.mjs.map

package/dist/actions/list-vendor-payments.mjs.map

@@ -0,0 +1 @@
+{"version":3,"file":"list-vendor-payments.mjs","names":[],"sources":["../../src/actions/list-vendor-payments.ts"],"sourcesContent":["import { z } from \"zod\";\n\nimport { action } from \"../action\";\n\nexport const NetsuiteListVendorPaymentsInput: z.ZodTypeAny = z.object({\n  q: z.string().describe(\"Filter expression using N/query operators; e.g., 'amount BETWEEN 100 AND 500'. Logical AND/OR and parentheses supported. Wrap multi-word values in quotes.\").optional(),\n  limit: z.number().int().describe(\"Maximum number of records per page (1–1000); default is 1000.\").optional(),\n  offset: z.number().int().describe(\"Zero-based index of the first record in page; must be divisible by limit.\").optional(),\n}).describe(\"Query parameters for LIST_VENDOR_PAYMENTS:\\n- q: optional filter expression using NetSuite query operators (AND/OR, parentheses).\\n- limit: optional page size (1–1000; default is 1000).\\n- offset: optional zero-based start index; if provided, must be divisible by limit.\");\nconst NetsuiteListVendorPayments_LinkSchema: z.ZodTypeAny = z.object({\n  rel: z.string().describe(\"Navigation relation (self, next, prev, first, last)\"),\n  href: z.string().describe(\"URL for the linked resource\"),\n});\nconst NetsuiteListVendorPayments_VendorPaymentListItemSchema: z.ZodTypeAny = z.object({\n  id: z.string().describe(\"Internal ID of the vendor payment record\"),\n  links: z.array(NetsuiteListVendorPayments_LinkSchema).describe(\"HATEOAS link(s) for this vendor payment record\"),\n});\nexport const NetsuiteListVendorPaymentsOutput: z.ZodTypeAny = z.object({\n  count: z.number().int().describe(\"Number of items in this page\").nullable().optional(),\n  items: z.array(NetsuiteListVendorPayments_VendorPaymentListItemSchema).describe(\"List of vendor payment result items\"),\n  links: z.array(NetsuiteListVendorPayments_LinkSchema).describe(\"Paging navigation links\"),\n  offset: z.number().int().describe(\"Offset used for this page\").nullable().optional(),\n  hasMore: z.boolean().describe(\"True if additional pages exist\").nullable().optional(),\n  totalResults: z.number().int().describe(\"Total number of matching records\").nullable().optional(),\n});\n\nexport const netsuiteListVendorPayments = action(\"NETSUITE_LIST_VENDOR_PAYMENTS\", {\n  slug: \"netsuite-list-vendor-payments\",\n  name: \"List Vendor Payments\",\n  description: \"Tool to list vendor payment records. Use when you need to retrieve vendor payments with optional filtering and pagination after establishing a valid NetSuite connection.\",\n  input: NetsuiteListVendorPaymentsInput,\n  output: NetsuiteListVendorPaymentsOutput,\n});\n"],"mappings":";;;AAIA,MAAa,kCAAgD,EAAE,OAAO;CACpE,GAAG,EAAE,OAAO,CAAC,CAAC,SAAS,4JAA4J,CAAC,CAAC,SAAS;CAC9L,OAAO,EAAE,OAAO,CAAC,CAAC,IAAI,CAAC,CAAC,SAAS,+DAA+D,CAAC,CAAC,SAAS;CAC3G,QAAQ,EAAE,OAAO,CAAC,CAAC,IAAI,CAAC,CAAC,SAAS,2EAA2E,CAAC,CAAC,SAAS;AAC1H,CAAC,CAAC,CAAC,SAAS,gRAAgR;AAC5R,MAAM,wCAAsD,EAAE,OAAO;CACnE,KAAK,EAAE,OAAO,CAAC,CAAC,SAAS,qDAAqD;CAC9E,MAAM,EAAE,OAAO,CAAC,CAAC,SAAS,6BAA6B;AACzD,CAAC;AACD,MAAM,yDAAuE,EAAE,OAAO;CACpF,IAAI,EAAE,OAAO,CAAC,CAAC,SAAS,0CAA0C;CAClE,OAAO,EAAE,MAAM,qCAAqC,CAAC,CAAC,SAAS,gDAAgD;AACjH,CAAC;AAUD,MAAa,6BAA6B,OAAO,iCAAiC;CAChF,MAAM;CACN,MAAM;CACN,aAAa;CACb,OAAO;CACP,QAd4D,EAAE,OAAO;EACrE,OAAO,EAAE,OAAO,CAAC,CAAC,IAAI,CAAC,CAAC,SAAS,8BAA8B,CAAC,CAAC,SAAS,CAAC,CAAC,SAAS;EACrF,OAAO,EAAE,MAAM,sDAAsD,CAAC,CAAC,SAAS,qCAAqC;EACrH,OAAO,EAAE,MAAM,qCAAqC,CAAC,CAAC,SAAS,yBAAyB;EACxF,QAAQ,EAAE,OAAO,CAAC,CAAC,IAAI,CAAC,CAAC,SAAS,2BAA2B,CAAC,CAAC,SAAS,CAAC,CAAC,SAAS;EACnF,SAAS,EAAE,QAAQ,CAAC,CAAC,SAAS,gCAAgC,CAAC,CAAC,SAAS,CAAC,CAAC,SAAS;EACpF,cAAc,EAAE,OAAO,CAAC,CAAC,IAAI,CAAC,CAAC,SAAS,kCAAkC,CAAC,CAAC,SAAS,CAAC,CAAC,SAAS;CAClG,CAOU;AACV,CAAC"}

package/dist/actions/o-auth2-authorize-account-domain.cjs

@@ -0,0 +1,31 @@
+const require_action = require("../action.cjs");
+let zod = require("zod");
+//#region src/actions/o-auth2-authorize-account-domain.ts
+const NetsuiteOAuth2AuthorizeAccountDomainInput = zod.z.object({
+	scope: zod.z.string().describe("Space-delimited list of scopes. Allowed values: restlets, rest_webservices, suite_analytics, mcp; 'mcp' cannot be combined with others, and scopes must be enabled on the integration record."),
+	state: zod.z.string().describe("Opaque CSRF token (22-1024 printable ASCII), unique per flow").optional(),
+	prompt: zod.z.enum([
+		"none",
+		"login",
+		"consent",
+		"login consent",
+		"consent login"
+	]).describe("Controls user prompt behavior: 'none' (no prompt; not allowed with mcp), 'login' (account domain only), 'consent', 'login consent', or 'consent login'").optional(),
+	client_id: zod.z.string().describe("Integration record's client ID"),
+	redirect_uri: zod.z.string().describe("Redirect URI registered in the integration record (must match exactly)"),
+	response_type: zod.z.string().default("code").describe("Must be 'code' for the authorization code grant type").optional(),
+	code_challenge: zod.z.string().describe("PKCE code challenge (base64url-encoded SHA256 of the code_verifier). Required for public clients or when scope=mcp.").optional(),
+	code_challenge_method: zod.z.string().describe("Must be 'S256' when sending a code_challenge").optional()
+}).describe("Request model for constructing the OAuth2 authorization URL on account-specific NetSuite domain.");
+const NetsuiteOAuth2AuthorizeAccountDomainOutput = zod.z.object({ authorization_url: zod.z.string().describe("Full URL to redirect the user to for OAuth2 authorization") }).describe("Response model returning the full URL for starting the OAuth2 authorization flow.");
+const netsuiteOAuth2AuthorizeAccountDomain = require_action.action("NETSUITE_O_AUTH2_AUTHORIZE_ACCOUNT_DOMAIN", {
+	slug: "netsuite-o-auth2-authorize-account-domain",
+	name: "OAuth2 Authorize Account Domain",
+	description: "Tool to construct an OAuth2 authorization URL for a NetSuite account-specific domain. Use when initiating the OAuth2 authorization code flow.",
+	input: NetsuiteOAuth2AuthorizeAccountDomainInput,
+	output: NetsuiteOAuth2AuthorizeAccountDomainOutput
+});
+//#endregion
+exports.netsuiteOAuth2AuthorizeAccountDomain = netsuiteOAuth2AuthorizeAccountDomain;
+
+//# sourceMappingURL=o-auth2-authorize-account-domain.cjs.map

package/dist/actions/o-auth2-authorize-account-domain.cjs.map

@@ -0,0 +1 @@
+{"version":3,"file":"o-auth2-authorize-account-domain.cjs","names":["z","action"],"sources":["../../src/actions/o-auth2-authorize-account-domain.ts"],"sourcesContent":["import { z } from \"zod\";\n\nimport { action } from \"../action\";\n\nexport const NetsuiteOAuth2AuthorizeAccountDomainInput: z.ZodTypeAny = z.object({\n  scope: z.string().describe(\"Space-delimited list of scopes. Allowed values: restlets, rest_webservices, suite_analytics, mcp; 'mcp' cannot be combined with others, and scopes must be enabled on the integration record.\"),\n  state: z.string().describe(\"Opaque CSRF token (22-1024 printable ASCII), unique per flow\").optional(),\n  prompt: z.enum([\"none\", \"login\", \"consent\", \"login consent\", \"consent login\"]).describe(\"Controls user prompt behavior: 'none' (no prompt; not allowed with mcp), 'login' (account domain only), 'consent', 'login consent', or 'consent login'\").optional(),\n  client_id: z.string().describe(\"Integration record's client ID\"),\n  redirect_uri: z.string().describe(\"Redirect URI registered in the integration record (must match exactly)\"),\n  response_type: z.string().default(\"code\").describe(\"Must be 'code' for the authorization code grant type\").optional(),\n  code_challenge: z.string().describe(\"PKCE code challenge (base64url-encoded SHA256 of the code_verifier). Required for public clients or when scope=mcp.\").optional(),\n  code_challenge_method: z.string().describe(\"Must be 'S256' when sending a code_challenge\").optional(),\n}).describe(\"Request model for constructing the OAuth2 authorization URL on account-specific NetSuite domain.\");\nexport const NetsuiteOAuth2AuthorizeAccountDomainOutput: z.ZodTypeAny = z.object({\n  authorization_url: z.string().describe(\"Full URL to redirect the user to for OAuth2 authorization\"),\n}).describe(\"Response model returning the full URL for starting the OAuth2 authorization flow.\");\n\nexport const netsuiteOAuth2AuthorizeAccountDomain = action(\"NETSUITE_O_AUTH2_AUTHORIZE_ACCOUNT_DOMAIN\", {\n  slug: \"netsuite-o-auth2-authorize-account-domain\",\n  name: \"OAuth2 Authorize Account Domain\",\n  description: \"Tool to construct an OAuth2 authorization URL for a NetSuite account-specific domain. Use when initiating the OAuth2 authorization code flow.\",\n  input: NetsuiteOAuth2AuthorizeAccountDomainInput,\n  output: NetsuiteOAuth2AuthorizeAccountDomainOutput,\n});\n"],"mappings":";;;AAIA,MAAa,4CAA0DA,IAAAA,EAAE,OAAO;CAC9E,OAAOA,IAAAA,EAAE,OAAO,CAAC,CAAC,SAAS,+LAA+L;CAC1N,OAAOA,IAAAA,EAAE,OAAO,CAAC,CAAC,SAAS,8DAA8D,CAAC,CAAC,SAAS;CACpG,QAAQA,IAAAA,EAAE,KAAK;EAAC;EAAQ;EAAS;EAAW;EAAiB;CAAe,CAAC,CAAC,CAAC,SAAS,wJAAwJ,CAAC,CAAC,SAAS;CAC3P,WAAWA,IAAAA,EAAE,OAAO,CAAC,CAAC,SAAS,gCAAgC;CAC/D,cAAcA,IAAAA,EAAE,OAAO,CAAC,CAAC,SAAS,wEAAwE;CAC1G,eAAeA,IAAAA,EAAE,OAAO,CAAC,CAAC,QAAQ,MAAM,CAAC,CAAC,SAAS,sDAAsD,CAAC,CAAC,SAAS;CACpH,gBAAgBA,IAAAA,EAAE,OAAO,CAAC,CAAC,SAAS,qHAAqH,CAAC,CAAC,SAAS;CACpK,uBAAuBA,IAAAA,EAAE,OAAO,CAAC,CAAC,SAAS,8CAA8C,CAAC,CAAC,SAAS;AACtG,CAAC,CAAC,CAAC,SAAS,kGAAkG;AAC9G,MAAa,6CAA2DA,IAAAA,EAAE,OAAO,EAC/E,mBAAmBA,IAAAA,EAAE,OAAO,CAAC,CAAC,SAAS,2DAA2D,EACpG,CAAC,CAAC,CAAC,SAAS,mFAAmF;AAE/F,MAAa,uCAAuCC,eAAAA,OAAO,6CAA6C;CACtG,MAAM;CACN,MAAM;CACN,aAAa;CACb,OAAO;CACP,QAAQ;AACV,CAAC"}

package/dist/actions/o-auth2-authorize-account-domain.d.cts

@@ -0,0 +1,9 @@
+import { z } from "zod";
+
+//#region src/actions/o-auth2-authorize-account-domain.d.ts
+declare const NetsuiteOAuth2AuthorizeAccountDomainInput: z.ZodTypeAny;
+declare const NetsuiteOAuth2AuthorizeAccountDomainOutput: z.ZodTypeAny;
+declare const netsuiteOAuth2AuthorizeAccountDomain: import("@keystrokehq/action").WorkflowActionDefinition<unknown, unknown, import("@keystrokehq/shared").ResolvedCredentials<readonly [import("@keystrokehq/shared").Credential]>, readonly [import("@keystrokehq/shared").Credential]>;
+//#endregion
+export { netsuiteOAuth2AuthorizeAccountDomain };
+//# sourceMappingURL=o-auth2-authorize-account-domain.d.cts.map

package/dist/actions/o-auth2-authorize-account-domain.d.cts.map

@@ -0,0 +1 @@
+{"version":3,"file":"o-auth2-authorize-account-domain.d.cts","names":[],"sources":["../../src/actions/o-auth2-authorize-account-domain.ts"],"mappings":";;;cAIa,yCAAA,EAA2C,CAAA,CAAE,UASqD;AAAA,cAClG,0CAAA,EAA4C,CAAA,CAAE,UAEqC;AAAA,cAEnF,oCAAA,gCAAoC,wBAAA,iDAAA,mBAAA,yCAAA,UAAA,4CAAA,UAAA"}

package/dist/actions/o-auth2-authorize-account-domain.d.mts

@@ -0,0 +1,9 @@
+import { z } from "zod";
+
+//#region src/actions/o-auth2-authorize-account-domain.d.ts
+declare const NetsuiteOAuth2AuthorizeAccountDomainInput: z.ZodTypeAny;
+declare const NetsuiteOAuth2AuthorizeAccountDomainOutput: z.ZodTypeAny;
+declare const netsuiteOAuth2AuthorizeAccountDomain: import("@keystrokehq/action").WorkflowActionDefinition<unknown, unknown, import("@keystrokehq/shared").ResolvedCredentials<readonly [import("@keystrokehq/shared").Credential]>, readonly [import("@keystrokehq/shared").Credential]>;
+//#endregion
+export { netsuiteOAuth2AuthorizeAccountDomain };
+//# sourceMappingURL=o-auth2-authorize-account-domain.d.mts.map

package/dist/actions/o-auth2-authorize-account-domain.d.mts.map

@@ -0,0 +1 @@
+{"version":3,"file":"o-auth2-authorize-account-domain.d.mts","names":[],"sources":["../../src/actions/o-auth2-authorize-account-domain.ts"],"mappings":";;;cAIa,yCAAA,EAA2C,CAAA,CAAE,UASqD;AAAA,cAClG,0CAAA,EAA4C,CAAA,CAAE,UAEqC;AAAA,cAEnF,oCAAA,gCAAoC,wBAAA,iDAAA,mBAAA,yCAAA,UAAA,4CAAA,UAAA"}

package/dist/actions/o-auth2-authorize-account-domain.mjs

@@ -0,0 +1,28 @@
+import { action } from "../action.mjs";
+import { z } from "zod";
+const netsuiteOAuth2AuthorizeAccountDomain = action("NETSUITE_O_AUTH2_AUTHORIZE_ACCOUNT_DOMAIN", {
+	slug: "netsuite-o-auth2-authorize-account-domain",
+	name: "OAuth2 Authorize Account Domain",
+	description: "Tool to construct an OAuth2 authorization URL for a NetSuite account-specific domain. Use when initiating the OAuth2 authorization code flow.",
+	input: z.object({
+		scope: z.string().describe("Space-delimited list of scopes. Allowed values: restlets, rest_webservices, suite_analytics, mcp; 'mcp' cannot be combined with others, and scopes must be enabled on the integration record."),
+		state: z.string().describe("Opaque CSRF token (22-1024 printable ASCII), unique per flow").optional(),
+		prompt: z.enum([
+			"none",
+			"login",
+			"consent",
+			"login consent",
+			"consent login"
+		]).describe("Controls user prompt behavior: 'none' (no prompt; not allowed with mcp), 'login' (account domain only), 'consent', 'login consent', or 'consent login'").optional(),
+		client_id: z.string().describe("Integration record's client ID"),
+		redirect_uri: z.string().describe("Redirect URI registered in the integration record (must match exactly)"),
+		response_type: z.string().default("code").describe("Must be 'code' for the authorization code grant type").optional(),
+		code_challenge: z.string().describe("PKCE code challenge (base64url-encoded SHA256 of the code_verifier). Required for public clients or when scope=mcp.").optional(),
+		code_challenge_method: z.string().describe("Must be 'S256' when sending a code_challenge").optional()
+	}).describe("Request model for constructing the OAuth2 authorization URL on account-specific NetSuite domain."),
+	output: z.object({ authorization_url: z.string().describe("Full URL to redirect the user to for OAuth2 authorization") }).describe("Response model returning the full URL for starting the OAuth2 authorization flow.")
+});
+//#endregion
+export { netsuiteOAuth2AuthorizeAccountDomain };
+
+//# sourceMappingURL=o-auth2-authorize-account-domain.mjs.map

package/dist/actions/o-auth2-authorize-account-domain.mjs.map

@@ -0,0 +1 @@
+{"version":3,"file":"o-auth2-authorize-account-domain.mjs","names":[],"sources":["../../src/actions/o-auth2-authorize-account-domain.ts"],"sourcesContent":["import { z } from \"zod\";\n\nimport { action } from \"../action\";\n\nexport const NetsuiteOAuth2AuthorizeAccountDomainInput: z.ZodTypeAny = z.object({\n  scope: z.string().describe(\"Space-delimited list of scopes. Allowed values: restlets, rest_webservices, suite_analytics, mcp; 'mcp' cannot be combined with others, and scopes must be enabled on the integration record.\"),\n  state: z.string().describe(\"Opaque CSRF token (22-1024 printable ASCII), unique per flow\").optional(),\n  prompt: z.enum([\"none\", \"login\", \"consent\", \"login consent\", \"consent login\"]).describe(\"Controls user prompt behavior: 'none' (no prompt; not allowed with mcp), 'login' (account domain only), 'consent', 'login consent', or 'consent login'\").optional(),\n  client_id: z.string().describe(\"Integration record's client ID\"),\n  redirect_uri: z.string().describe(\"Redirect URI registered in the integration record (must match exactly)\"),\n  response_type: z.string().default(\"code\").describe(\"Must be 'code' for the authorization code grant type\").optional(),\n  code_challenge: z.string().describe(\"PKCE code challenge (base64url-encoded SHA256 of the code_verifier). Required for public clients or when scope=mcp.\").optional(),\n  code_challenge_method: z.string().describe(\"Must be 'S256' when sending a code_challenge\").optional(),\n}).describe(\"Request model for constructing the OAuth2 authorization URL on account-specific NetSuite domain.\");\nexport const NetsuiteOAuth2AuthorizeAccountDomainOutput: z.ZodTypeAny = z.object({\n  authorization_url: z.string().describe(\"Full URL to redirect the user to for OAuth2 authorization\"),\n}).describe(\"Response model returning the full URL for starting the OAuth2 authorization flow.\");\n\nexport const netsuiteOAuth2AuthorizeAccountDomain = action(\"NETSUITE_O_AUTH2_AUTHORIZE_ACCOUNT_DOMAIN\", {\n  slug: \"netsuite-o-auth2-authorize-account-domain\",\n  name: \"OAuth2 Authorize Account Domain\",\n  description: \"Tool to construct an OAuth2 authorization URL for a NetSuite account-specific domain. Use when initiating the OAuth2 authorization code flow.\",\n  input: NetsuiteOAuth2AuthorizeAccountDomainInput,\n  output: NetsuiteOAuth2AuthorizeAccountDomainOutput,\n});\n"],"mappings":";;AAkBA,MAAa,uCAAuC,OAAO,6CAA6C;CACtG,MAAM;CACN,MAAM;CACN,aAAa;CACb,OAlBqE,EAAE,OAAO;EAC9E,OAAO,EAAE,OAAO,CAAC,CAAC,SAAS,+LAA+L;EAC1N,OAAO,EAAE,OAAO,CAAC,CAAC,SAAS,8DAA8D,CAAC,CAAC,SAAS;EACpG,QAAQ,EAAE,KAAK;GAAC;GAAQ;GAAS;GAAW;GAAiB;EAAe,CAAC,CAAC,CAAC,SAAS,wJAAwJ,CAAC,CAAC,SAAS;EAC3P,WAAW,EAAE,OAAO,CAAC,CAAC,SAAS,gCAAgC;EAC/D,cAAc,EAAE,OAAO,CAAC,CAAC,SAAS,wEAAwE;EAC1G,eAAe,EAAE,OAAO,CAAC,CAAC,QAAQ,MAAM,CAAC,CAAC,SAAS,sDAAsD,CAAC,CAAC,SAAS;EACpH,gBAAgB,EAAE,OAAO,CAAC,CAAC,SAAS,qHAAqH,CAAC,CAAC,SAAS;EACpK,uBAAuB,EAAE,OAAO,CAAC,CAAC,SAAS,8CAA8C,CAAC,CAAC,SAAS;CACtG,CAAC,CAAC,CAAC,SAAS,kGASH;CACP,QATsE,EAAE,OAAO,EAC/E,mBAAmB,EAAE,OAAO,CAAC,CAAC,SAAS,2DAA2D,EACpG,CAAC,CAAC,CAAC,SAAS,mFAOF;AACV,CAAC"}

package/dist/actions/o-auth2-authorize-system-domain.cjs

@@ -0,0 +1,31 @@
+const require_action = require("../action.cjs");
+let zod = require("zod");
+//#region src/actions/o-auth2-authorize-system-domain.ts
+const NetsuiteOAuth2AuthorizeSystemDomainInput = zod.z.object({
+	nonce: zod.z.string().describe("Optional string to associate a user session with an ID token; max length 256 characters.").optional(),
+	scope: zod.z.string().describe("Space-separated list of OAuth2 scopes. Valid values are 'openid' and 'email'. Use 'openid email' for both, or either one individually."),
+	state: zod.z.string().describe("Opaque value to maintain state between request and callback; 22–1024 printable ASCII characters."),
+	prompt: zod.z.enum([
+		"none",
+		"login",
+		"consent",
+		"login consent"
+	]).describe("OAuth2 prompt behavior: 'none' (no consent screen), 'login' (force authentication), 'consent' (always show consent), or 'login consent' (both required).").optional(),
+	client_id: zod.z.string().describe("The integration record's client identifier."),
+	redirect_uri: zod.z.string().describe("The exact callback URI registered in the integration record; must match registration."),
+	response_type: zod.z.string().default("code").describe("OAuth2 response type. Must be 'code'.").optional(),
+	code_challenge: zod.z.string().describe("PKCE code challenge, required for public clients; base64url(SHA256(code_verifier)), 43–128 characters.").optional(),
+	code_challenge_method: zod.z.string().describe("Method to derive code_challenge; only 'S256' is supported.").optional()
+}).describe("Request model for starting an OAuth2 authorization code flow on the NetSuite system domain.");
+const NetsuiteOAuth2AuthorizeSystemDomainOutput = zod.z.object({ redirect_url: zod.z.string().describe("The NetSuite authorization URL where the user should be redirected to authenticate and authorize the application. After authorization, NetSuite redirects back to the redirect_uri with the authorization code or error.") }).describe("Response model containing the redirect URL for OAuth2 authorization.");
+const netsuiteOAuth2AuthorizeSystemDomain = require_action.action("NETSUITE_O_AUTH2_AUTHORIZE_SYSTEM_DOMAIN", {
+	slug: "netsuite-o-auth2-authorize-system-domain",
+	name: "OAuth2 Authorize System Domain",
+	description: "Initiates the OAuth2 authorization code flow using NetSuite's system domain endpoint. Returns the authorization URL where users should be redirected to authenticate and grant permissions. After user authorization, NetSuite redirects back to your redirect_uri with an authorization code. Use this when you don't know the specific NetSuite account ID or want to use the generic system domain.",
+	input: NetsuiteOAuth2AuthorizeSystemDomainInput,
+	output: NetsuiteOAuth2AuthorizeSystemDomainOutput
+});
+//#endregion
+exports.netsuiteOAuth2AuthorizeSystemDomain = netsuiteOAuth2AuthorizeSystemDomain;
+
+//# sourceMappingURL=o-auth2-authorize-system-domain.cjs.map

package/dist/actions/o-auth2-authorize-system-domain.cjs.map

@@ -0,0 +1 @@
+{"version":3,"file":"o-auth2-authorize-system-domain.cjs","names":["z","action"],"sources":["../../src/actions/o-auth2-authorize-system-domain.ts"],"sourcesContent":["import { z } from \"zod\";\n\nimport { action } from \"../action\";\n\nexport const NetsuiteOAuth2AuthorizeSystemDomainInput: z.ZodTypeAny = z.object({\n  nonce: z.string().describe(\"Optional string to associate a user session with an ID token; max length 256 characters.\").optional(),\n  scope: z.string().describe(\"Space-separated list of OAuth2 scopes. Valid values are 'openid' and 'email'. Use 'openid email' for both, or either one individually.\"),\n  state: z.string().describe(\"Opaque value to maintain state between request and callback; 22–1024 printable ASCII characters.\"),\n  prompt: z.enum([\"none\", \"login\", \"consent\", \"login consent\"]).describe(\"OAuth2 prompt behavior: 'none' (no consent screen), 'login' (force authentication), 'consent' (always show consent), or 'login consent' (both required).\").optional(),\n  client_id: z.string().describe(\"The integration record's client identifier.\"),\n  redirect_uri: z.string().describe(\"The exact callback URI registered in the integration record; must match registration.\"),\n  response_type: z.string().default(\"code\").describe(\"OAuth2 response type. Must be 'code'.\").optional(),\n  code_challenge: z.string().describe(\"PKCE code challenge, required for public clients; base64url(SHA256(code_verifier)), 43–128 characters.\").optional(),\n  code_challenge_method: z.string().describe(\"Method to derive code_challenge; only 'S256' is supported.\").optional(),\n}).describe(\"Request model for starting an OAuth2 authorization code flow on the NetSuite system domain.\");\nexport const NetsuiteOAuth2AuthorizeSystemDomainOutput: z.ZodTypeAny = z.object({\n  redirect_url: z.string().describe(\"The NetSuite authorization URL where the user should be redirected to authenticate and authorize the application. After authorization, NetSuite redirects back to the redirect_uri with the authorization code or error.\"),\n}).describe(\"Response model containing the redirect URL for OAuth2 authorization.\");\n\nexport const netsuiteOAuth2AuthorizeSystemDomain = action(\"NETSUITE_O_AUTH2_AUTHORIZE_SYSTEM_DOMAIN\", {\n  slug: \"netsuite-o-auth2-authorize-system-domain\",\n  name: \"OAuth2 Authorize System Domain\",\n  description: \"Initiates the OAuth2 authorization code flow using NetSuite's system domain endpoint. Returns the authorization URL where users should be redirected to authenticate and grant permissions. After user authorization, NetSuite redirects back to your redirect_uri with an authorization code. Use this when you don't know the specific NetSuite account ID or want to use the generic system domain.\",\n  input: NetsuiteOAuth2AuthorizeSystemDomainInput,\n  output: NetsuiteOAuth2AuthorizeSystemDomainOutput,\n});\n"],"mappings":";;;AAIA,MAAa,2CAAyDA,IAAAA,EAAE,OAAO;CAC7E,OAAOA,IAAAA,EAAE,OAAO,CAAC,CAAC,SAAS,0FAA0F,CAAC,CAAC,SAAS;CAChI,OAAOA,IAAAA,EAAE,OAAO,CAAC,CAAC,SAAS,wIAAwI;CACnK,OAAOA,IAAAA,EAAE,OAAO,CAAC,CAAC,SAAS,kGAAkG;CAC7H,QAAQA,IAAAA,EAAE,KAAK;EAAC;EAAQ;EAAS;EAAW;CAAe,CAAC,CAAC,CAAC,SAAS,0JAA0J,CAAC,CAAC,SAAS;CAC5O,WAAWA,IAAAA,EAAE,OAAO,CAAC,CAAC,SAAS,6CAA6C;CAC5E,cAAcA,IAAAA,EAAE,OAAO,CAAC,CAAC,SAAS,uFAAuF;CACzH,eAAeA,IAAAA,EAAE,OAAO,CAAC,CAAC,QAAQ,MAAM,CAAC,CAAC,SAAS,uCAAuC,CAAC,CAAC,SAAS;CACrG,gBAAgBA,IAAAA,EAAE,OAAO,CAAC,CAAC,SAAS,wGAAwG,CAAC,CAAC,SAAS;CACvJ,uBAAuBA,IAAAA,EAAE,OAAO,CAAC,CAAC,SAAS,4DAA4D,CAAC,CAAC,SAAS;AACpH,CAAC,CAAC,CAAC,SAAS,6FAA6F;AACzG,MAAa,4CAA0DA,IAAAA,EAAE,OAAO,EAC9E,cAAcA,IAAAA,EAAE,OAAO,CAAC,CAAC,SAAS,0NAA0N,EAC9P,CAAC,CAAC,CAAC,SAAS,sEAAsE;AAElF,MAAa,sCAAsCC,eAAAA,OAAO,4CAA4C;CACpG,MAAM;CACN,MAAM;CACN,aAAa;CACb,OAAO;CACP,QAAQ;AACV,CAAC"}

package/dist/actions/o-auth2-authorize-system-domain.d.cts

@@ -0,0 +1,9 @@
+import { z } from "zod";
+
+//#region src/actions/o-auth2-authorize-system-domain.d.ts
+declare const NetsuiteOAuth2AuthorizeSystemDomainInput: z.ZodTypeAny;
+declare const NetsuiteOAuth2AuthorizeSystemDomainOutput: z.ZodTypeAny;
+declare const netsuiteOAuth2AuthorizeSystemDomain: import("@keystrokehq/action").WorkflowActionDefinition<unknown, unknown, import("@keystrokehq/shared").ResolvedCredentials<readonly [import("@keystrokehq/shared").Credential]>, readonly [import("@keystrokehq/shared").Credential]>;
+//#endregion
+export { netsuiteOAuth2AuthorizeSystemDomain };
+//# sourceMappingURL=o-auth2-authorize-system-domain.d.cts.map

package/dist/actions/o-auth2-authorize-system-domain.d.cts.map

@@ -0,0 +1 @@
+{"version":3,"file":"o-auth2-authorize-system-domain.d.cts","names":[],"sources":["../../src/actions/o-auth2-authorize-system-domain.ts"],"mappings":";;;cAIa,wCAAA,EAA0C,CAAA,CAAE,UAUiD;AAAA,cAC7F,yCAAA,EAA2C,CAAA,CAAE,UAEyB;AAAA,cAEtE,mCAAA,gCAAmC,wBAAA,iDAAA,mBAAA,yCAAA,UAAA,4CAAA,UAAA"}

package/dist/actions/o-auth2-authorize-system-domain.d.mts

@@ -0,0 +1,9 @@
+import { z } from "zod";
+
+//#region src/actions/o-auth2-authorize-system-domain.d.ts
+declare const NetsuiteOAuth2AuthorizeSystemDomainInput: z.ZodTypeAny;
+declare const NetsuiteOAuth2AuthorizeSystemDomainOutput: z.ZodTypeAny;
+declare const netsuiteOAuth2AuthorizeSystemDomain: import("@keystrokehq/action").WorkflowActionDefinition<unknown, unknown, import("@keystrokehq/shared").ResolvedCredentials<readonly [import("@keystrokehq/shared").Credential]>, readonly [import("@keystrokehq/shared").Credential]>;
+//#endregion
+export { netsuiteOAuth2AuthorizeSystemDomain };
+//# sourceMappingURL=o-auth2-authorize-system-domain.d.mts.map

package/dist/actions/o-auth2-authorize-system-domain.d.mts.map

@@ -0,0 +1 @@
+{"version":3,"file":"o-auth2-authorize-system-domain.d.mts","names":[],"sources":["../../src/actions/o-auth2-authorize-system-domain.ts"],"mappings":";;;cAIa,wCAAA,EAA0C,CAAA,CAAE,UAUiD;AAAA,cAC7F,yCAAA,EAA2C,CAAA,CAAE,UAEyB;AAAA,cAEtE,mCAAA,gCAAmC,wBAAA,iDAAA,mBAAA,yCAAA,UAAA,4CAAA,UAAA"}

package/dist/actions/o-auth2-authorize-system-domain.mjs

@@ -0,0 +1,28 @@
+import { action } from "../action.mjs";
+import { z } from "zod";
+const netsuiteOAuth2AuthorizeSystemDomain = action("NETSUITE_O_AUTH2_AUTHORIZE_SYSTEM_DOMAIN", {
+	slug: "netsuite-o-auth2-authorize-system-domain",
+	name: "OAuth2 Authorize System Domain",
+	description: "Initiates the OAuth2 authorization code flow using NetSuite's system domain endpoint. Returns the authorization URL where users should be redirected to authenticate and grant permissions. After user authorization, NetSuite redirects back to your redirect_uri with an authorization code. Use this when you don't know the specific NetSuite account ID or want to use the generic system domain.",
+	input: z.object({
+		nonce: z.string().describe("Optional string to associate a user session with an ID token; max length 256 characters.").optional(),
+		scope: z.string().describe("Space-separated list of OAuth2 scopes. Valid values are 'openid' and 'email'. Use 'openid email' for both, or either one individually."),
+		state: z.string().describe("Opaque value to maintain state between request and callback; 22–1024 printable ASCII characters."),
+		prompt: z.enum([
+			"none",
+			"login",
+			"consent",
+			"login consent"
+		]).describe("OAuth2 prompt behavior: 'none' (no consent screen), 'login' (force authentication), 'consent' (always show consent), or 'login consent' (both required).").optional(),
+		client_id: z.string().describe("The integration record's client identifier."),
+		redirect_uri: z.string().describe("The exact callback URI registered in the integration record; must match registration."),
+		response_type: z.string().default("code").describe("OAuth2 response type. Must be 'code'.").optional(),
+		code_challenge: z.string().describe("PKCE code challenge, required for public clients; base64url(SHA256(code_verifier)), 43–128 characters.").optional(),
+		code_challenge_method: z.string().describe("Method to derive code_challenge; only 'S256' is supported.").optional()
+	}).describe("Request model for starting an OAuth2 authorization code flow on the NetSuite system domain."),
+	output: z.object({ redirect_url: z.string().describe("The NetSuite authorization URL where the user should be redirected to authenticate and authorize the application. After authorization, NetSuite redirects back to the redirect_uri with the authorization code or error.") }).describe("Response model containing the redirect URL for OAuth2 authorization.")
+});
+//#endregion
+export { netsuiteOAuth2AuthorizeSystemDomain };
+
+//# sourceMappingURL=o-auth2-authorize-system-domain.mjs.map

package/dist/actions/o-auth2-authorize-system-domain.mjs.map

@@ -0,0 +1 @@
+{"version":3,"file":"o-auth2-authorize-system-domain.mjs","names":[],"sources":["../../src/actions/o-auth2-authorize-system-domain.ts"],"sourcesContent":["import { z } from \"zod\";\n\nimport { action } from \"../action\";\n\nexport const NetsuiteOAuth2AuthorizeSystemDomainInput: z.ZodTypeAny = z.object({\n  nonce: z.string().describe(\"Optional string to associate a user session with an ID token; max length 256 characters.\").optional(),\n  scope: z.string().describe(\"Space-separated list of OAuth2 scopes. Valid values are 'openid' and 'email'. Use 'openid email' for both, or either one individually.\"),\n  state: z.string().describe(\"Opaque value to maintain state between request and callback; 22–1024 printable ASCII characters.\"),\n  prompt: z.enum([\"none\", \"login\", \"consent\", \"login consent\"]).describe(\"OAuth2 prompt behavior: 'none' (no consent screen), 'login' (force authentication), 'consent' (always show consent), or 'login consent' (both required).\").optional(),\n  client_id: z.string().describe(\"The integration record's client identifier.\"),\n  redirect_uri: z.string().describe(\"The exact callback URI registered in the integration record; must match registration.\"),\n  response_type: z.string().default(\"code\").describe(\"OAuth2 response type. Must be 'code'.\").optional(),\n  code_challenge: z.string().describe(\"PKCE code challenge, required for public clients; base64url(SHA256(code_verifier)), 43–128 characters.\").optional(),\n  code_challenge_method: z.string().describe(\"Method to derive code_challenge; only 'S256' is supported.\").optional(),\n}).describe(\"Request model for starting an OAuth2 authorization code flow on the NetSuite system domain.\");\nexport const NetsuiteOAuth2AuthorizeSystemDomainOutput: z.ZodTypeAny = z.object({\n  redirect_url: z.string().describe(\"The NetSuite authorization URL where the user should be redirected to authenticate and authorize the application. After authorization, NetSuite redirects back to the redirect_uri with the authorization code or error.\"),\n}).describe(\"Response model containing the redirect URL for OAuth2 authorization.\");\n\nexport const netsuiteOAuth2AuthorizeSystemDomain = action(\"NETSUITE_O_AUTH2_AUTHORIZE_SYSTEM_DOMAIN\", {\n  slug: \"netsuite-o-auth2-authorize-system-domain\",\n  name: \"OAuth2 Authorize System Domain\",\n  description: \"Initiates the OAuth2 authorization code flow using NetSuite's system domain endpoint. Returns the authorization URL where users should be redirected to authenticate and grant permissions. After user authorization, NetSuite redirects back to your redirect_uri with an authorization code. Use this when you don't know the specific NetSuite account ID or want to use the generic system domain.\",\n  input: NetsuiteOAuth2AuthorizeSystemDomainInput,\n  output: NetsuiteOAuth2AuthorizeSystemDomainOutput,\n});\n"],"mappings":";;AAmBA,MAAa,sCAAsC,OAAO,4CAA4C;CACpG,MAAM;CACN,MAAM;CACN,aAAa;CACb,OAnBoE,EAAE,OAAO;EAC7E,OAAO,EAAE,OAAO,CAAC,CAAC,SAAS,0FAA0F,CAAC,CAAC,SAAS;EAChI,OAAO,EAAE,OAAO,CAAC,CAAC,SAAS,wIAAwI;EACnK,OAAO,EAAE,OAAO,CAAC,CAAC,SAAS,kGAAkG;EAC7H,QAAQ,EAAE,KAAK;GAAC;GAAQ;GAAS;GAAW;EAAe,CAAC,CAAC,CAAC,SAAS,0JAA0J,CAAC,CAAC,SAAS;EAC5O,WAAW,EAAE,OAAO,CAAC,CAAC,SAAS,6CAA6C;EAC5E,cAAc,EAAE,OAAO,CAAC,CAAC,SAAS,uFAAuF;EACzH,eAAe,EAAE,OAAO,CAAC,CAAC,QAAQ,MAAM,CAAC,CAAC,SAAS,uCAAuC,CAAC,CAAC,SAAS;EACrG,gBAAgB,EAAE,OAAO,CAAC,CAAC,SAAS,wGAAwG,CAAC,CAAC,SAAS;EACvJ,uBAAuB,EAAE,OAAO,CAAC,CAAC,SAAS,4DAA4D,CAAC,CAAC,SAAS;CACpH,CAAC,CAAC,CAAC,SAAS,6FASH;CACP,QATqE,EAAE,OAAO,EAC9E,cAAc,EAAE,OAAO,CAAC,CAAC,SAAS,0NAA0N,EAC9P,CAAC,CAAC,CAAC,SAAS,sEAOF;AACV,CAAC"}

package/dist/actions/o-auth2-logout.cjs

@@ -0,0 +1,20 @@
+const require_action = require("../action.cjs");
+let zod = require("zod");
+//#region src/actions/o-auth2-logout.ts
+const NetsuiteOAuth2LogoutInput = zod.z.object({ id_token_hint: zod.z.string().describe("ID token to revoke; revokes its associated access and refresh tokens.") }).describe("Request model for revoking an ID token and its associated access and refresh tokens.");
+const NetsuiteOAuth2LogoutOutput = zod.z.object({
+	error: zod.z.string().describe("Error code or message if logout failed (e.g., 'invalid_token', 'unauthorized').").nullable().optional(),
+	success: zod.z.boolean().describe("True if the ID token and its related tokens were revoked successfully"),
+	status_code: zod.z.number().int().describe("HTTP status code from the logout endpoint (e.g., 200 for success, 400 for errors).").nullable().optional()
+}).describe("Response model indicating successful token revocation.");
+const netsuiteOAuth2Logout = require_action.action("NETSUITE_O_AUTH2_LOGOUT", {
+	slug: "netsuite-o-auth2-logout",
+	name: "OAuth2 Logout",
+	description: "Tool to revoke an ID token and its associated access and refresh tokens. Use when ending an OAuth2 session to ensure credentials are invalidated.",
+	input: NetsuiteOAuth2LogoutInput,
+	output: NetsuiteOAuth2LogoutOutput
+});
+//#endregion
+exports.netsuiteOAuth2Logout = netsuiteOAuth2Logout;
+
+//# sourceMappingURL=o-auth2-logout.cjs.map

package/dist/actions/o-auth2-logout.cjs.map

@@ -0,0 +1 @@
+{"version":3,"file":"o-auth2-logout.cjs","names":["z","action"],"sources":["../../src/actions/o-auth2-logout.ts"],"sourcesContent":["import { z } from \"zod\";\n\nimport { action } from \"../action\";\n\nexport const NetsuiteOAuth2LogoutInput: z.ZodTypeAny = z.object({\n  id_token_hint: z.string().describe(\"ID token to revoke; revokes its associated access and refresh tokens.\"),\n}).describe(\"Request model for revoking an ID token and its associated access and refresh tokens.\");\nexport const NetsuiteOAuth2LogoutOutput: z.ZodTypeAny = z.object({\n  error: z.string().describe(\"Error code or message if logout failed (e.g., 'invalid_token', 'unauthorized').\").nullable().optional(),\n  success: z.boolean().describe(\"True if the ID token and its related tokens were revoked successfully\"),\n  status_code: z.number().int().describe(\"HTTP status code from the logout endpoint (e.g., 200 for success, 400 for errors).\").nullable().optional(),\n}).describe(\"Response model indicating successful token revocation.\");\n\nexport const netsuiteOAuth2Logout = action(\"NETSUITE_O_AUTH2_LOGOUT\", {\n  slug: \"netsuite-o-auth2-logout\",\n  name: \"OAuth2 Logout\",\n  description: \"Tool to revoke an ID token and its associated access and refresh tokens. Use when ending an OAuth2 session to ensure credentials are invalidated.\",\n  input: NetsuiteOAuth2LogoutInput,\n  output: NetsuiteOAuth2LogoutOutput,\n});\n"],"mappings":";;;AAIA,MAAa,4BAA0CA,IAAAA,EAAE,OAAO,EAC9D,eAAeA,IAAAA,EAAE,OAAO,CAAC,CAAC,SAAS,uEAAuE,EAC5G,CAAC,CAAC,CAAC,SAAS,sFAAsF;AAClG,MAAa,6BAA2CA,IAAAA,EAAE,OAAO;CAC/D,OAAOA,IAAAA,EAAE,OAAO,CAAC,CAAC,SAAS,iFAAiF,CAAC,CAAC,SAAS,CAAC,CAAC,SAAS;CAClI,SAASA,IAAAA,EAAE,QAAQ,CAAC,CAAC,SAAS,uEAAuE;CACrG,aAAaA,IAAAA,EAAE,OAAO,CAAC,CAAC,IAAI,CAAC,CAAC,SAAS,oFAAoF,CAAC,CAAC,SAAS,CAAC,CAAC,SAAS;AACnJ,CAAC,CAAC,CAAC,SAAS,wDAAwD;AAEpE,MAAa,uBAAuBC,eAAAA,OAAO,2BAA2B;CACpE,MAAM;CACN,MAAM;CACN,aAAa;CACb,OAAO;CACP,QAAQ;AACV,CAAC"}

package/dist/actions/o-auth2-logout.d.cts

@@ -0,0 +1,9 @@
+import { z } from "zod";
+
+//#region src/actions/o-auth2-logout.d.ts
+declare const NetsuiteOAuth2LogoutInput: z.ZodTypeAny;
+declare const NetsuiteOAuth2LogoutOutput: z.ZodTypeAny;
+declare const netsuiteOAuth2Logout: import("@keystrokehq/action").WorkflowActionDefinition<unknown, unknown, import("@keystrokehq/shared").ResolvedCredentials<readonly [import("@keystrokehq/shared").Credential]>, readonly [import("@keystrokehq/shared").Credential]>;
+//#endregion
+export { netsuiteOAuth2Logout };
+//# sourceMappingURL=o-auth2-logout.d.cts.map

package/dist/actions/o-auth2-logout.d.cts.map

@@ -0,0 +1 @@
+{"version":3,"file":"o-auth2-logout.d.cts","names":[],"sources":["../../src/actions/o-auth2-logout.ts"],"mappings":";;;cAIa,yBAAA,EAA2B,CAAA,CAAE,UAEyD;AAAA,cACtF,0BAAA,EAA4B,CAAA,CAAE,UAI0B;AAAA,cAExD,oBAAA,gCAAoB,wBAAA,iDAAA,mBAAA,yCAAA,UAAA,4CAAA,UAAA"}

package/dist/actions/o-auth2-logout.d.mts

@@ -0,0 +1,9 @@
+import { z } from "zod";
+
+//#region src/actions/o-auth2-logout.d.ts
+declare const NetsuiteOAuth2LogoutInput: z.ZodTypeAny;
+declare const NetsuiteOAuth2LogoutOutput: z.ZodTypeAny;
+declare const netsuiteOAuth2Logout: import("@keystrokehq/action").WorkflowActionDefinition<unknown, unknown, import("@keystrokehq/shared").ResolvedCredentials<readonly [import("@keystrokehq/shared").Credential]>, readonly [import("@keystrokehq/shared").Credential]>;
+//#endregion
+export { netsuiteOAuth2Logout };
+//# sourceMappingURL=o-auth2-logout.d.mts.map

package/dist/actions/o-auth2-logout.d.mts.map

@@ -0,0 +1 @@
+{"version":3,"file":"o-auth2-logout.d.mts","names":[],"sources":["../../src/actions/o-auth2-logout.ts"],"mappings":";;;cAIa,yBAAA,EAA2B,CAAA,CAAE,UAEyD;AAAA,cACtF,0BAAA,EAA4B,CAAA,CAAE,UAI0B;AAAA,cAExD,oBAAA,gCAAoB,wBAAA,iDAAA,mBAAA,yCAAA,UAAA,4CAAA,UAAA"}

package/dist/actions/o-auth2-logout.mjs

@@ -0,0 +1,17 @@
+import { action } from "../action.mjs";
+import { z } from "zod";
+const netsuiteOAuth2Logout = action("NETSUITE_O_AUTH2_LOGOUT", {
+	slug: "netsuite-o-auth2-logout",
+	name: "OAuth2 Logout",
+	description: "Tool to revoke an ID token and its associated access and refresh tokens. Use when ending an OAuth2 session to ensure credentials are invalidated.",
+	input: z.object({ id_token_hint: z.string().describe("ID token to revoke; revokes its associated access and refresh tokens.") }).describe("Request model for revoking an ID token and its associated access and refresh tokens."),
+	output: z.object({
+		error: z.string().describe("Error code or message if logout failed (e.g., 'invalid_token', 'unauthorized').").nullable().optional(),
+		success: z.boolean().describe("True if the ID token and its related tokens were revoked successfully"),
+		status_code: z.number().int().describe("HTTP status code from the logout endpoint (e.g., 200 for success, 400 for errors).").nullable().optional()
+	}).describe("Response model indicating successful token revocation.")
+});
+//#endregion
+export { netsuiteOAuth2Logout };
+
+//# sourceMappingURL=o-auth2-logout.mjs.map

package/dist/actions/o-auth2-logout.mjs.map

@@ -0,0 +1 @@
+{"version":3,"file":"o-auth2-logout.mjs","names":[],"sources":["../../src/actions/o-auth2-logout.ts"],"sourcesContent":["import { z } from \"zod\";\n\nimport { action } from \"../action\";\n\nexport const NetsuiteOAuth2LogoutInput: z.ZodTypeAny = z.object({\n  id_token_hint: z.string().describe(\"ID token to revoke; revokes its associated access and refresh tokens.\"),\n}).describe(\"Request model for revoking an ID token and its associated access and refresh tokens.\");\nexport const NetsuiteOAuth2LogoutOutput: z.ZodTypeAny = z.object({\n  error: z.string().describe(\"Error code or message if logout failed (e.g., 'invalid_token', 'unauthorized').\").nullable().optional(),\n  success: z.boolean().describe(\"True if the ID token and its related tokens were revoked successfully\"),\n  status_code: z.number().int().describe(\"HTTP status code from the logout endpoint (e.g., 200 for success, 400 for errors).\").nullable().optional(),\n}).describe(\"Response model indicating successful token revocation.\");\n\nexport const netsuiteOAuth2Logout = action(\"NETSUITE_O_AUTH2_LOGOUT\", {\n  slug: \"netsuite-o-auth2-logout\",\n  name: \"OAuth2 Logout\",\n  description: \"Tool to revoke an ID token and its associated access and refresh tokens. Use when ending an OAuth2 session to ensure credentials are invalidated.\",\n  input: NetsuiteOAuth2LogoutInput,\n  output: NetsuiteOAuth2LogoutOutput,\n});\n"],"mappings":";;AAaA,MAAa,uBAAuB,OAAO,2BAA2B;CACpE,MAAM;CACN,MAAM;CACN,aAAa;CACb,OAbqD,EAAE,OAAO,EAC9D,eAAe,EAAE,OAAO,CAAC,CAAC,SAAS,uEAAuE,EAC5G,CAAC,CAAC,CAAC,SAAS,sFAWH;CACP,QAXsD,EAAE,OAAO;EAC/D,OAAO,EAAE,OAAO,CAAC,CAAC,SAAS,iFAAiF,CAAC,CAAC,SAAS,CAAC,CAAC,SAAS;EAClI,SAAS,EAAE,QAAQ,CAAC,CAAC,SAAS,uEAAuE;EACrG,aAAa,EAAE,OAAO,CAAC,CAAC,IAAI,CAAC,CAAC,SAAS,oFAAoF,CAAC,CAAC,SAAS,CAAC,CAAC,SAAS;CACnJ,CAAC,CAAC,CAAC,SAAS,wDAOF;AACV,CAAC"}

package/dist/actions/o-auth2-revoke-refresh-token.cjs

@@ -0,0 +1,23 @@
+const require_action = require("../action.cjs");
+let zod = require("zod");
+//#region src/actions/o-auth2-revoke-refresh-token.ts
+const NetsuiteOAuth2RevokeRefreshTokenInput = zod.z.object({
+	token: zod.z.string().describe("The OAuth2 refresh token (JWT format) to revoke. Once revoked, this token and its associated access tokens become invalid."),
+	client_id: zod.z.string().describe("OAuth2 client ID for public clients. When provided, skips Basic authentication and sends client_id in the request body instead. Leave empty for confidential clients that use metadata credentials.").optional()
+}).describe("Request parameters for revoking a NetSuite OAuth2 refresh token.\n\nSupports both confidential clients (with Basic auth from metadata) and public clients\n(with client_id in request body).");
+const NetsuiteOAuth2RevokeRefreshTokenOutput = zod.z.object({
+	error: zod.z.string().describe("Error code or message when revocation fails. Common values: 'invalid_request' (malformed token), 'invalid_client' (bad credentials), 'unsupported_token_type' (wrong token type).").nullable().optional(),
+	success: zod.z.boolean().describe("True if the refresh token was successfully revoked; False if revocation failed."),
+	status_code: zod.z.number().int().describe("HTTP status code from NetSuite's revocation endpoint. 200 indicates success, 400+ indicates an error condition.").nullable().optional()
+}).describe("Response indicating the result of the token revocation operation.\n\nOn success, returns success=True with status_code=200.\nOn failure, returns success=False with error details and the HTTP status code.");
+const netsuiteOAuth2RevokeRefreshToken = require_action.action("NETSUITE_O_AUTH2_REVOKE_REFRESH_TOKEN", {
+	slug: "netsuite-o-auth2-revoke-refresh-token",
+	name: "Revoke OAuth2 Refresh Token",
+	description: "Revokes a NetSuite OAuth2 refresh token and all associated access tokens, immediately invalidating them. Use this when: - A user logs out and you want to invalidate their session tokens - Credentials are compromised and need immediate revocation - Decommissioning an integration or removing access - Cleaning up test tokens after development Note: This is a destructive operation - revoked tokens cannot be reused.",
+	input: NetsuiteOAuth2RevokeRefreshTokenInput,
+	output: NetsuiteOAuth2RevokeRefreshTokenOutput
+});
+//#endregion
+exports.netsuiteOAuth2RevokeRefreshToken = netsuiteOAuth2RevokeRefreshToken;
+
+//# sourceMappingURL=o-auth2-revoke-refresh-token.cjs.map

package/dist/actions/o-auth2-revoke-refresh-token.cjs.map

@@ -0,0 +1 @@
+{"version":3,"file":"o-auth2-revoke-refresh-token.cjs","names":["z","action"],"sources":["../../src/actions/o-auth2-revoke-refresh-token.ts"],"sourcesContent":["import { z } from \"zod\";\n\nimport { action } from \"../action\";\n\nexport const NetsuiteOAuth2RevokeRefreshTokenInput: z.ZodTypeAny = z.object({\n  token: z.string().describe(\"The OAuth2 refresh token (JWT format) to revoke. Once revoked, this token and its associated access tokens become invalid.\"),\n  client_id: z.string().describe(\"OAuth2 client ID for public clients. When provided, skips Basic authentication and sends client_id in the request body instead. Leave empty for confidential clients that use metadata credentials.\").optional(),\n}).describe(\"Request parameters for revoking a NetSuite OAuth2 refresh token.\\n\\nSupports both confidential clients (with Basic auth from metadata) and public clients\\n(with client_id in request body).\");\nexport const NetsuiteOAuth2RevokeRefreshTokenOutput: z.ZodTypeAny = z.object({\n  error: z.string().describe(\"Error code or message when revocation fails. Common values: 'invalid_request' (malformed token), 'invalid_client' (bad credentials), 'unsupported_token_type' (wrong token type).\").nullable().optional(),\n  success: z.boolean().describe(\"True if the refresh token was successfully revoked; False if revocation failed.\"),\n  status_code: z.number().int().describe(\"HTTP status code from NetSuite's revocation endpoint. 200 indicates success, 400+ indicates an error condition.\").nullable().optional(),\n}).describe(\"Response indicating the result of the token revocation operation.\\n\\nOn success, returns success=True with status_code=200.\\nOn failure, returns success=False with error details and the HTTP status code.\");\n\nexport const netsuiteOAuth2RevokeRefreshToken = action(\"NETSUITE_O_AUTH2_REVOKE_REFRESH_TOKEN\", {\n  slug: \"netsuite-o-auth2-revoke-refresh-token\",\n  name: \"Revoke OAuth2 Refresh Token\",\n  description: \"Revokes a NetSuite OAuth2 refresh token and all associated access tokens, immediately invalidating them. Use this when: - A user logs out and you want to invalidate their session tokens - Credentials are compromised and need immediate revocation - Decommissioning an integration or removing access - Cleaning up test tokens after development Note: This is a destructive operation - revoked tokens cannot be reused.\",\n  input: NetsuiteOAuth2RevokeRefreshTokenInput,\n  output: NetsuiteOAuth2RevokeRefreshTokenOutput,\n});\n"],"mappings":";;;AAIA,MAAa,wCAAsDA,IAAAA,EAAE,OAAO;CAC1E,OAAOA,IAAAA,EAAE,OAAO,CAAC,CAAC,SAAS,4HAA4H;CACvJ,WAAWA,IAAAA,EAAE,OAAO,CAAC,CAAC,SAAS,qMAAqM,CAAC,CAAC,SAAS;AACjP,CAAC,CAAC,CAAC,SAAS,8LAA8L;AAC1M,MAAa,yCAAuDA,IAAAA,EAAE,OAAO;CAC3E,OAAOA,IAAAA,EAAE,OAAO,CAAC,CAAC,SAAS,mLAAmL,CAAC,CAAC,SAAS,CAAC,CAAC,SAAS;CACpO,SAASA,IAAAA,EAAE,QAAQ,CAAC,CAAC,SAAS,iFAAiF;CAC/G,aAAaA,IAAAA,EAAE,OAAO,CAAC,CAAC,IAAI,CAAC,CAAC,SAAS,iHAAiH,CAAC,CAAC,SAAS,CAAC,CAAC,SAAS;AAChL,CAAC,CAAC,CAAC,SAAS,6MAA6M;AAEzN,MAAa,mCAAmCC,eAAAA,OAAO,yCAAyC;CAC9F,MAAM;CACN,MAAM;CACN,aAAa;CACb,OAAO;CACP,QAAQ;AACV,CAAC"}

package/dist/actions/o-auth2-revoke-refresh-token.d.cts

@@ -0,0 +1,9 @@
+import { z } from "zod";
+
+//#region src/actions/o-auth2-revoke-refresh-token.d.ts
+declare const NetsuiteOAuth2RevokeRefreshTokenInput: z.ZodTypeAny;
+declare const NetsuiteOAuth2RevokeRefreshTokenOutput: z.ZodTypeAny;
+declare const netsuiteOAuth2RevokeRefreshToken: import("@keystrokehq/action").WorkflowActionDefinition<unknown, unknown, import("@keystrokehq/shared").ResolvedCredentials<readonly [import("@keystrokehq/shared").Credential]>, readonly [import("@keystrokehq/shared").Credential]>;
+//#endregion
+export { netsuiteOAuth2RevokeRefreshToken };
+//# sourceMappingURL=o-auth2-revoke-refresh-token.d.cts.map

package/dist/actions/o-auth2-revoke-refresh-token.d.cts.map

@@ -0,0 +1 @@
+{"version":3,"file":"o-auth2-revoke-refresh-token.d.cts","names":[],"sources":["../../src/actions/o-auth2-revoke-refresh-token.ts"],"mappings":";;;cAIa,qCAAA,EAAuC,CAAA,CAAE,UAGqJ;AAAA,cAC9L,sCAAA,EAAwC,CAAA,CAAE,UAImK;AAAA,cAE7M,gCAAA,gCAAgC,wBAAA,iDAAA,mBAAA,yCAAA,UAAA,4CAAA,UAAA"}

package/dist/actions/o-auth2-revoke-refresh-token.d.mts

@@ -0,0 +1,9 @@
+import { z } from "zod";
+
+//#region src/actions/o-auth2-revoke-refresh-token.d.ts
+declare const NetsuiteOAuth2RevokeRefreshTokenInput: z.ZodTypeAny;
+declare const NetsuiteOAuth2RevokeRefreshTokenOutput: z.ZodTypeAny;
+declare const netsuiteOAuth2RevokeRefreshToken: import("@keystrokehq/action").WorkflowActionDefinition<unknown, unknown, import("@keystrokehq/shared").ResolvedCredentials<readonly [import("@keystrokehq/shared").Credential]>, readonly [import("@keystrokehq/shared").Credential]>;
+//#endregion
+export { netsuiteOAuth2RevokeRefreshToken };
+//# sourceMappingURL=o-auth2-revoke-refresh-token.d.mts.map

package/dist/actions/o-auth2-revoke-refresh-token.d.mts.map

@@ -0,0 +1 @@
+{"version":3,"file":"o-auth2-revoke-refresh-token.d.mts","names":[],"sources":["../../src/actions/o-auth2-revoke-refresh-token.ts"],"mappings":";;;cAIa,qCAAA,EAAuC,CAAA,CAAE,UAGqJ;AAAA,cAC9L,sCAAA,EAAwC,CAAA,CAAE,UAImK;AAAA,cAE7M,gCAAA,gCAAgC,wBAAA,iDAAA,mBAAA,yCAAA,UAAA,4CAAA,UAAA"}

package/dist/actions/o-auth2-revoke-refresh-token.mjs

@@ -0,0 +1,20 @@
+import { action } from "../action.mjs";
+import { z } from "zod";
+const netsuiteOAuth2RevokeRefreshToken = action("NETSUITE_O_AUTH2_REVOKE_REFRESH_TOKEN", {
+	slug: "netsuite-o-auth2-revoke-refresh-token",
+	name: "Revoke OAuth2 Refresh Token",
+	description: "Revokes a NetSuite OAuth2 refresh token and all associated access tokens, immediately invalidating them. Use this when: - A user logs out and you want to invalidate their session tokens - Credentials are compromised and need immediate revocation - Decommissioning an integration or removing access - Cleaning up test tokens after development Note: This is a destructive operation - revoked tokens cannot be reused.",
+	input: z.object({
+		token: z.string().describe("The OAuth2 refresh token (JWT format) to revoke. Once revoked, this token and its associated access tokens become invalid."),
+		client_id: z.string().describe("OAuth2 client ID for public clients. When provided, skips Basic authentication and sends client_id in the request body instead. Leave empty for confidential clients that use metadata credentials.").optional()
+	}).describe("Request parameters for revoking a NetSuite OAuth2 refresh token.\n\nSupports both confidential clients (with Basic auth from metadata) and public clients\n(with client_id in request body)."),
+	output: z.object({
+		error: z.string().describe("Error code or message when revocation fails. Common values: 'invalid_request' (malformed token), 'invalid_client' (bad credentials), 'unsupported_token_type' (wrong token type).").nullable().optional(),
+		success: z.boolean().describe("True if the refresh token was successfully revoked; False if revocation failed."),
+		status_code: z.number().int().describe("HTTP status code from NetSuite's revocation endpoint. 200 indicates success, 400+ indicates an error condition.").nullable().optional()
+	}).describe("Response indicating the result of the token revocation operation.\n\nOn success, returns success=True with status_code=200.\nOn failure, returns success=False with error details and the HTTP status code.")
+});
+//#endregion
+export { netsuiteOAuth2RevokeRefreshToken };
+
+//# sourceMappingURL=o-auth2-revoke-refresh-token.mjs.map

package/dist/actions/o-auth2-revoke-refresh-token.mjs.map

@@ -0,0 +1 @@
+{"version":3,"file":"o-auth2-revoke-refresh-token.mjs","names":[],"sources":["../../src/actions/o-auth2-revoke-refresh-token.ts"],"sourcesContent":["import { z } from \"zod\";\n\nimport { action } from \"../action\";\n\nexport const NetsuiteOAuth2RevokeRefreshTokenInput: z.ZodTypeAny = z.object({\n  token: z.string().describe(\"The OAuth2 refresh token (JWT format) to revoke. Once revoked, this token and its associated access tokens become invalid.\"),\n  client_id: z.string().describe(\"OAuth2 client ID for public clients. When provided, skips Basic authentication and sends client_id in the request body instead. Leave empty for confidential clients that use metadata credentials.\").optional(),\n}).describe(\"Request parameters for revoking a NetSuite OAuth2 refresh token.\\n\\nSupports both confidential clients (with Basic auth from metadata) and public clients\\n(with client_id in request body).\");\nexport const NetsuiteOAuth2RevokeRefreshTokenOutput: z.ZodTypeAny = z.object({\n  error: z.string().describe(\"Error code or message when revocation fails. Common values: 'invalid_request' (malformed token), 'invalid_client' (bad credentials), 'unsupported_token_type' (wrong token type).\").nullable().optional(),\n  success: z.boolean().describe(\"True if the refresh token was successfully revoked; False if revocation failed.\"),\n  status_code: z.number().int().describe(\"HTTP status code from NetSuite's revocation endpoint. 200 indicates success, 400+ indicates an error condition.\").nullable().optional(),\n}).describe(\"Response indicating the result of the token revocation operation.\\n\\nOn success, returns success=True with status_code=200.\\nOn failure, returns success=False with error details and the HTTP status code.\");\n\nexport const netsuiteOAuth2RevokeRefreshToken = action(\"NETSUITE_O_AUTH2_REVOKE_REFRESH_TOKEN\", {\n  slug: \"netsuite-o-auth2-revoke-refresh-token\",\n  name: \"Revoke OAuth2 Refresh Token\",\n  description: \"Revokes a NetSuite OAuth2 refresh token and all associated access tokens, immediately invalidating them. Use this when: - A user logs out and you want to invalidate their session tokens - Credentials are compromised and need immediate revocation - Decommissioning an integration or removing access - Cleaning up test tokens after development Note: This is a destructive operation - revoked tokens cannot be reused.\",\n  input: NetsuiteOAuth2RevokeRefreshTokenInput,\n  output: NetsuiteOAuth2RevokeRefreshTokenOutput,\n});\n"],"mappings":";;AAcA,MAAa,mCAAmC,OAAO,yCAAyC;CAC9F,MAAM;CACN,MAAM;CACN,aAAa;CACb,OAdiE,EAAE,OAAO;EAC1E,OAAO,EAAE,OAAO,CAAC,CAAC,SAAS,4HAA4H;EACvJ,WAAW,EAAE,OAAO,CAAC,CAAC,SAAS,qMAAqM,CAAC,CAAC,SAAS;CACjP,CAAC,CAAC,CAAC,SAAS,8LAWH;CACP,QAXkE,EAAE,OAAO;EAC3E,OAAO,EAAE,OAAO,CAAC,CAAC,SAAS,mLAAmL,CAAC,CAAC,SAAS,CAAC,CAAC,SAAS;EACpO,SAAS,EAAE,QAAQ,CAAC,CAAC,SAAS,iFAAiF;EAC/G,aAAa,EAAE,OAAO,CAAC,CAAC,IAAI,CAAC,CAAC,SAAS,iHAAiH,CAAC,CAAC,SAAS,CAAC,CAAC,SAAS;CAChL,CAAC,CAAC,CAAC,SAAS,6MAOF;AACV,CAAC"}

package/dist/actions/o-auth2-token-authorization-code.cjs

@@ -0,0 +1,29 @@
+const require_action = require("../action.cjs");
+let zod = require("zod");
+//#region src/actions/o-auth2-token-authorization-code.ts
+const NetsuiteOAuth2TokenAuthorizationCodeInput = zod.z.object({
+	code: zod.z.string().describe("Authorization code received from the OAuth2 authorization endpoint callback. This code is single-use and expires quickly (typically within 5-10 minutes)."),
+	client_id: zod.z.string().describe("Client ID from the NetSuite integration record. Required only when client credentials are not provided in metadata (public client flow).").optional(),
+	grant_type: zod.z.string().default("authorization_code").describe("OAuth2 grant type. Always 'authorization_code' for this flow.").optional(),
+	redirect_uri: zod.z.string().describe("Redirect URI that must exactly match the one used in the authorization request and registered in the NetSuite integration record. Mismatches will cause the request to fail."),
+	code_verifier: zod.z.string().describe("PKCE code verifier (43-128 character random string) used to generate the code_challenge in the initial authorization request. Required for security.")
+}).describe("Request model for exchanging an OAuth2 authorization code for access and refresh tokens.\nUse this after the user completes authorization through the NetSuite OAuth2 flow.");
+const NetsuiteOAuth2TokenAuthorizationCodeOutput = zod.z.object({
+	error: zod.z.string().describe("OAuth2 error code when request fails. Common values: 'invalid_grant' (invalid/expired code), 'invalid_client' (bad credentials), 'invalid_request' (malformed request), 'unauthorized_client' (client not authorized).").nullable().optional(),
+	id_token: zod.z.string().describe("JWT ID token containing user identity claims (OpenID Connect). Valid for 3 hours. Optional, returned only for OpenID Connect flows.").nullable().optional(),
+	expires_in: zod.z.number().int().describe("Access token lifetime in seconds. Always 3600 (60 minutes) for NetSuite.").nullable().optional(),
+	token_type: zod.z.string().describe("Token type for API requests. Always 'bearer' (case-insensitive).").nullable().optional(),
+	access_token: zod.z.string().describe("JWT access token for authenticating NetSuite API requests. Valid for 60 minutes. Use in Authorization header as 'Bearer {access_token}'.").nullable().optional(),
+	refresh_token: zod.z.string().describe("JWT refresh token for obtaining new access tokens when they expire. Valid for 7 days by default (configurable in integration record). Store securely.").nullable().optional()
+}).describe("Response model for OAuth2 token exchange containing access tokens, refresh tokens, and error details.\nOn success, contains tokens for API authentication. On failure, contains error code.");
+const netsuiteOAuth2TokenAuthorizationCode = require_action.action("NETSUITE_O_AUTH2_TOKEN_AUTHORIZATION_CODE", {
+	slug: "netsuite-o-auth2-token-authorization-code",
+	name: "Exchange OAuth2 Authorization Code for Tokens",
+	description: "Exchange an OAuth2 authorization code for access and refresh tokens using the NetSuite token endpoint. This is the second step in the OAuth2 authorization code flow with PKCE: 1. User authorizes via OAuth2AuthorizeAccountDomain or OAuth2AuthorizeSystemDomain 2. User is redirected to your redirect_uri with authorization code 3. Use THIS action to exchange the code for tokens 4. Use access_token to make API requests, refresh_token to get new access tokens Supports both confidential clients (client secret in metadata) and public clients (no secret). PKCE (code_verifier) is required for security.",
+	input: NetsuiteOAuth2TokenAuthorizationCodeInput,
+	output: NetsuiteOAuth2TokenAuthorizationCodeOutput
+});
+//#endregion
+exports.netsuiteOAuth2TokenAuthorizationCode = netsuiteOAuth2TokenAuthorizationCode;
+
+//# sourceMappingURL=o-auth2-token-authorization-code.cjs.map

package/dist/actions/o-auth2-token-authorization-code.cjs.map

@@ -0,0 +1 @@
+{"version":3,"file":"o-auth2-token-authorization-code.cjs","names":["z","action"],"sources":["../../src/actions/o-auth2-token-authorization-code.ts"],"sourcesContent":["import { z } from \"zod\";\n\nimport { action } from \"../action\";\n\nexport const NetsuiteOAuth2TokenAuthorizationCodeInput: z.ZodTypeAny = z.object({\n  code: z.string().describe(\"Authorization code received from the OAuth2 authorization endpoint callback. This code is single-use and expires quickly (typically within 5-10 minutes).\"),\n  client_id: z.string().describe(\"Client ID from the NetSuite integration record. Required only when client credentials are not provided in metadata (public client flow).\").optional(),\n  grant_type: z.string().default(\"authorization_code\").describe(\"OAuth2 grant type. Always 'authorization_code' for this flow.\").optional(),\n  redirect_uri: z.string().describe(\"Redirect URI that must exactly match the one used in the authorization request and registered in the NetSuite integration record. Mismatches will cause the request to fail.\"),\n  code_verifier: z.string().describe(\"PKCE code verifier (43-128 character random string) used to generate the code_challenge in the initial authorization request. Required for security.\"),\n}).describe(\"Request model for exchanging an OAuth2 authorization code for access and refresh tokens.\\nUse this after the user completes authorization through the NetSuite OAuth2 flow.\");\nexport const NetsuiteOAuth2TokenAuthorizationCodeOutput: z.ZodTypeAny = z.object({\n  error: z.string().describe(\"OAuth2 error code when request fails. Common values: 'invalid_grant' (invalid/expired code), 'invalid_client' (bad credentials), 'invalid_request' (malformed request), 'unauthorized_client' (client not authorized).\").nullable().optional(),\n  id_token: z.string().describe(\"JWT ID token containing user identity claims (OpenID Connect). Valid for 3 hours. Optional, returned only for OpenID Connect flows.\").nullable().optional(),\n  expires_in: z.number().int().describe(\"Access token lifetime in seconds. Always 3600 (60 minutes) for NetSuite.\").nullable().optional(),\n  token_type: z.string().describe(\"Token type for API requests. Always 'bearer' (case-insensitive).\").nullable().optional(),\n  access_token: z.string().describe(\"JWT access token for authenticating NetSuite API requests. Valid for 60 minutes. Use in Authorization header as 'Bearer {access_token}'.\").nullable().optional(),\n  refresh_token: z.string().describe(\"JWT refresh token for obtaining new access tokens when they expire. Valid for 7 days by default (configurable in integration record). Store securely.\").nullable().optional(),\n}).describe(\"Response model for OAuth2 token exchange containing access tokens, refresh tokens, and error details.\\nOn success, contains tokens for API authentication. On failure, contains error code.\");\n\nexport const netsuiteOAuth2TokenAuthorizationCode = action(\"NETSUITE_O_AUTH2_TOKEN_AUTHORIZATION_CODE\", {\n  slug: \"netsuite-o-auth2-token-authorization-code\",\n  name: \"Exchange OAuth2 Authorization Code for Tokens\",\n  description: \"Exchange an OAuth2 authorization code for access and refresh tokens using the NetSuite token endpoint. This is the second step in the OAuth2 authorization code flow with PKCE: 1. User authorizes via OAuth2AuthorizeAccountDomain or OAuth2AuthorizeSystemDomain 2. User is redirected to your redirect_uri with authorization code 3. Use THIS action to exchange the code for tokens 4. Use access_token to make API requests, refresh_token to get new access tokens Supports both confidential clients (client secret in metadata) and public clients (no secret). PKCE (code_verifier) is required for security.\",\n  input: NetsuiteOAuth2TokenAuthorizationCodeInput,\n  output: NetsuiteOAuth2TokenAuthorizationCodeOutput,\n});\n"],"mappings":";;;AAIA,MAAa,4CAA0DA,IAAAA,EAAE,OAAO;CAC9E,MAAMA,IAAAA,EAAE,OAAO,CAAC,CAAC,SAAS,2JAA2J;CACrL,WAAWA,IAAAA,EAAE,OAAO,CAAC,CAAC,SAAS,0IAA0I,CAAC,CAAC,SAAS;CACpL,YAAYA,IAAAA,EAAE,OAAO,CAAC,CAAC,QAAQ,oBAAoB,CAAC,CAAC,SAAS,+DAA+D,CAAC,CAAC,SAAS;CACxI,cAAcA,IAAAA,EAAE,OAAO,CAAC,CAAC,SAAS,8KAA8K;CAChN,eAAeA,IAAAA,EAAE,OAAO,CAAC,CAAC,SAAS,sJAAsJ;AAC3L,CAAC,CAAC,CAAC,SAAS,6KAA6K;AACzL,MAAa,6CAA2DA,IAAAA,EAAE,OAAO;CAC/E,OAAOA,IAAAA,EAAE,OAAO,CAAC,CAAC,SAAS,wNAAwN,CAAC,CAAC,SAAS,CAAC,CAAC,SAAS;CACzQ,UAAUA,IAAAA,EAAE,OAAO,CAAC,CAAC,SAAS,qIAAqI,CAAC,CAAC,SAAS,CAAC,CAAC,SAAS;CACzL,YAAYA,IAAAA,EAAE,OAAO,CAAC,CAAC,IAAI,CAAC,CAAC,SAAS,0EAA0E,CAAC,CAAC,SAAS,CAAC,CAAC,SAAS;CACtI,YAAYA,IAAAA,EAAE,OAAO,CAAC,CAAC,SAAS,kEAAkE,CAAC,CAAC,SAAS,CAAC,CAAC,SAAS;CACxH,cAAcA,IAAAA,EAAE,OAAO,CAAC,CAAC,SAAS,0IAA0I,CAAC,CAAC,SAAS,CAAC,CAAC,SAAS;CAClM,eAAeA,IAAAA,EAAE,OAAO,CAAC,CAAC,SAAS,uJAAuJ,CAAC,CAAC,SAAS,CAAC,CAAC,SAAS;AAClN,CAAC,CAAC,CAAC,SAAS,6LAA6L;AAEzM,MAAa,uCAAuCC,eAAAA,OAAO,6CAA6C;CACtG,MAAM;CACN,MAAM;CACN,aAAa;CACb,OAAO;CACP,QAAQ;AACV,CAAC"}

package/dist/actions/o-auth2-token-authorization-code.d.cts

@@ -0,0 +1,9 @@
+import { z } from "zod";
+
+//#region src/actions/o-auth2-token-authorization-code.d.ts
+declare const NetsuiteOAuth2TokenAuthorizationCodeInput: z.ZodTypeAny;
+declare const NetsuiteOAuth2TokenAuthorizationCodeOutput: z.ZodTypeAny;
+declare const netsuiteOAuth2TokenAuthorizationCode: import("@keystrokehq/action").WorkflowActionDefinition<unknown, unknown, import("@keystrokehq/shared").ResolvedCredentials<readonly [import("@keystrokehq/shared").Credential]>, readonly [import("@keystrokehq/shared").Credential]>;
+//#endregion
+export { netsuiteOAuth2TokenAuthorizationCode };
+//# sourceMappingURL=o-auth2-token-authorization-code.d.cts.map

package/dist/actions/o-auth2-token-authorization-code.d.cts.map

@@ -0,0 +1 @@
+{"version":3,"file":"o-auth2-token-authorization-code.d.cts","names":[],"sources":["../../src/actions/o-auth2-token-authorization-code.ts"],"mappings":";;;cAIa,yCAAA,EAA2C,CAAA,CAAE,UAMgI;AAAA,cAC7K,0CAAA,EAA4C,CAAA,CAAE,UAO+I;AAAA,cAE7L,oCAAA,gCAAoC,wBAAA,iDAAA,mBAAA,yCAAA,UAAA,4CAAA,UAAA"}

package/dist/actions/o-auth2-token-authorization-code.d.mts

@@ -0,0 +1,9 @@
+import { z } from "zod";
+
+//#region src/actions/o-auth2-token-authorization-code.d.ts
+declare const NetsuiteOAuth2TokenAuthorizationCodeInput: z.ZodTypeAny;
+declare const NetsuiteOAuth2TokenAuthorizationCodeOutput: z.ZodTypeAny;
+declare const netsuiteOAuth2TokenAuthorizationCode: import("@keystrokehq/action").WorkflowActionDefinition<unknown, unknown, import("@keystrokehq/shared").ResolvedCredentials<readonly [import("@keystrokehq/shared").Credential]>, readonly [import("@keystrokehq/shared").Credential]>;
+//#endregion
+export { netsuiteOAuth2TokenAuthorizationCode };
+//# sourceMappingURL=o-auth2-token-authorization-code.d.mts.map

package/dist/actions/o-auth2-token-authorization-code.d.mts.map

@@ -0,0 +1 @@
+{"version":3,"file":"o-auth2-token-authorization-code.d.mts","names":[],"sources":["../../src/actions/o-auth2-token-authorization-code.ts"],"mappings":";;;cAIa,yCAAA,EAA2C,CAAA,CAAE,UAMgI;AAAA,cAC7K,0CAAA,EAA4C,CAAA,CAAE,UAO+I;AAAA,cAE7L,oCAAA,gCAAoC,wBAAA,iDAAA,mBAAA,yCAAA,UAAA,4CAAA,UAAA"}

package/dist/actions/o-auth2-token-authorization-code.mjs

@@ -0,0 +1,26 @@
+import { action } from "../action.mjs";
+import { z } from "zod";
+const netsuiteOAuth2TokenAuthorizationCode = action("NETSUITE_O_AUTH2_TOKEN_AUTHORIZATION_CODE", {
+	slug: "netsuite-o-auth2-token-authorization-code",
+	name: "Exchange OAuth2 Authorization Code for Tokens",
+	description: "Exchange an OAuth2 authorization code for access and refresh tokens using the NetSuite token endpoint. This is the second step in the OAuth2 authorization code flow with PKCE: 1. User authorizes via OAuth2AuthorizeAccountDomain or OAuth2AuthorizeSystemDomain 2. User is redirected to your redirect_uri with authorization code 3. Use THIS action to exchange the code for tokens 4. Use access_token to make API requests, refresh_token to get new access tokens Supports both confidential clients (client secret in metadata) and public clients (no secret). PKCE (code_verifier) is required for security.",
+	input: z.object({
+		code: z.string().describe("Authorization code received from the OAuth2 authorization endpoint callback. This code is single-use and expires quickly (typically within 5-10 minutes)."),
+		client_id: z.string().describe("Client ID from the NetSuite integration record. Required only when client credentials are not provided in metadata (public client flow).").optional(),
+		grant_type: z.string().default("authorization_code").describe("OAuth2 grant type. Always 'authorization_code' for this flow.").optional(),
+		redirect_uri: z.string().describe("Redirect URI that must exactly match the one used in the authorization request and registered in the NetSuite integration record. Mismatches will cause the request to fail."),
+		code_verifier: z.string().describe("PKCE code verifier (43-128 character random string) used to generate the code_challenge in the initial authorization request. Required for security.")
+	}).describe("Request model for exchanging an OAuth2 authorization code for access and refresh tokens.\nUse this after the user completes authorization through the NetSuite OAuth2 flow."),
+	output: z.object({
+		error: z.string().describe("OAuth2 error code when request fails. Common values: 'invalid_grant' (invalid/expired code), 'invalid_client' (bad credentials), 'invalid_request' (malformed request), 'unauthorized_client' (client not authorized).").nullable().optional(),
+		id_token: z.string().describe("JWT ID token containing user identity claims (OpenID Connect). Valid for 3 hours. Optional, returned only for OpenID Connect flows.").nullable().optional(),
+		expires_in: z.number().int().describe("Access token lifetime in seconds. Always 3600 (60 minutes) for NetSuite.").nullable().optional(),
+		token_type: z.string().describe("Token type for API requests. Always 'bearer' (case-insensitive).").nullable().optional(),
+		access_token: z.string().describe("JWT access token for authenticating NetSuite API requests. Valid for 60 minutes. Use in Authorization header as 'Bearer {access_token}'.").nullable().optional(),
+		refresh_token: z.string().describe("JWT refresh token for obtaining new access tokens when they expire. Valid for 7 days by default (configurable in integration record). Store securely.").nullable().optional()
+	}).describe("Response model for OAuth2 token exchange containing access tokens, refresh tokens, and error details.\nOn success, contains tokens for API authentication. On failure, contains error code.")
+});
+//#endregion
+export { netsuiteOAuth2TokenAuthorizationCode };
+
+//# sourceMappingURL=o-auth2-token-authorization-code.mjs.map

package/dist/actions/o-auth2-token-authorization-code.mjs.map

@@ -0,0 +1 @@
+{"version":3,"file":"o-auth2-token-authorization-code.mjs","names":[],"sources":["../../src/actions/o-auth2-token-authorization-code.ts"],"sourcesContent":["import { z } from \"zod\";\n\nimport { action } from \"../action\";\n\nexport const NetsuiteOAuth2TokenAuthorizationCodeInput: z.ZodTypeAny = z.object({\n  code: z.string().describe(\"Authorization code received from the OAuth2 authorization endpoint callback. This code is single-use and expires quickly (typically within 5-10 minutes).\"),\n  client_id: z.string().describe(\"Client ID from the NetSuite integration record. Required only when client credentials are not provided in metadata (public client flow).\").optional(),\n  grant_type: z.string().default(\"authorization_code\").describe(\"OAuth2 grant type. Always 'authorization_code' for this flow.\").optional(),\n  redirect_uri: z.string().describe(\"Redirect URI that must exactly match the one used in the authorization request and registered in the NetSuite integration record. Mismatches will cause the request to fail.\"),\n  code_verifier: z.string().describe(\"PKCE code verifier (43-128 character random string) used to generate the code_challenge in the initial authorization request. Required for security.\"),\n}).describe(\"Request model for exchanging an OAuth2 authorization code for access and refresh tokens.\\nUse this after the user completes authorization through the NetSuite OAuth2 flow.\");\nexport const NetsuiteOAuth2TokenAuthorizationCodeOutput: z.ZodTypeAny = z.object({\n  error: z.string().describe(\"OAuth2 error code when request fails. Common values: 'invalid_grant' (invalid/expired code), 'invalid_client' (bad credentials), 'invalid_request' (malformed request), 'unauthorized_client' (client not authorized).\").nullable().optional(),\n  id_token: z.string().describe(\"JWT ID token containing user identity claims (OpenID Connect). Valid for 3 hours. Optional, returned only for OpenID Connect flows.\").nullable().optional(),\n  expires_in: z.number().int().describe(\"Access token lifetime in seconds. Always 3600 (60 minutes) for NetSuite.\").nullable().optional(),\n  token_type: z.string().describe(\"Token type for API requests. Always 'bearer' (case-insensitive).\").nullable().optional(),\n  access_token: z.string().describe(\"JWT access token for authenticating NetSuite API requests. Valid for 60 minutes. Use in Authorization header as 'Bearer {access_token}'.\").nullable().optional(),\n  refresh_token: z.string().describe(\"JWT refresh token for obtaining new access tokens when they expire. Valid for 7 days by default (configurable in integration record). Store securely.\").nullable().optional(),\n}).describe(\"Response model for OAuth2 token exchange containing access tokens, refresh tokens, and error details.\\nOn success, contains tokens for API authentication. On failure, contains error code.\");\n\nexport const netsuiteOAuth2TokenAuthorizationCode = action(\"NETSUITE_O_AUTH2_TOKEN_AUTHORIZATION_CODE\", {\n  slug: \"netsuite-o-auth2-token-authorization-code\",\n  name: \"Exchange OAuth2 Authorization Code for Tokens\",\n  description: \"Exchange an OAuth2 authorization code for access and refresh tokens using the NetSuite token endpoint. This is the second step in the OAuth2 authorization code flow with PKCE: 1. User authorizes via OAuth2AuthorizeAccountDomain or OAuth2AuthorizeSystemDomain 2. User is redirected to your redirect_uri with authorization code 3. Use THIS action to exchange the code for tokens 4. Use access_token to make API requests, refresh_token to get new access tokens Supports both confidential clients (client secret in metadata) and public clients (no secret). PKCE (code_verifier) is required for security.\",\n  input: NetsuiteOAuth2TokenAuthorizationCodeInput,\n  output: NetsuiteOAuth2TokenAuthorizationCodeOutput,\n});\n"],"mappings":";;AAoBA,MAAa,uCAAuC,OAAO,6CAA6C;CACtG,MAAM;CACN,MAAM;CACN,aAAa;CACb,OApBqE,EAAE,OAAO;EAC9E,MAAM,EAAE,OAAO,CAAC,CAAC,SAAS,2JAA2J;EACrL,WAAW,EAAE,OAAO,CAAC,CAAC,SAAS,0IAA0I,CAAC,CAAC,SAAS;EACpL,YAAY,EAAE,OAAO,CAAC,CAAC,QAAQ,oBAAoB,CAAC,CAAC,SAAS,+DAA+D,CAAC,CAAC,SAAS;EACxI,cAAc,EAAE,OAAO,CAAC,CAAC,SAAS,8KAA8K;EAChN,eAAe,EAAE,OAAO,CAAC,CAAC,SAAS,sJAAsJ;CAC3L,CAAC,CAAC,CAAC,SAAS,6KAcH;CACP,QAdsE,EAAE,OAAO;EAC/E,OAAO,EAAE,OAAO,CAAC,CAAC,SAAS,wNAAwN,CAAC,CAAC,SAAS,CAAC,CAAC,SAAS;EACzQ,UAAU,EAAE,OAAO,CAAC,CAAC,SAAS,qIAAqI,CAAC,CAAC,SAAS,CAAC,CAAC,SAAS;EACzL,YAAY,EAAE,OAAO,CAAC,CAAC,IAAI,CAAC,CAAC,SAAS,0EAA0E,CAAC,CAAC,SAAS,CAAC,CAAC,SAAS;EACtI,YAAY,EAAE,OAAO,CAAC,CAAC,SAAS,kEAAkE,CAAC,CAAC,SAAS,CAAC,CAAC,SAAS;EACxH,cAAc,EAAE,OAAO,CAAC,CAAC,SAAS,0IAA0I,CAAC,CAAC,SAAS,CAAC,CAAC,SAAS;EAClM,eAAe,EAAE,OAAO,CAAC,CAAC,SAAS,uJAAuJ,CAAC,CAAC,SAAS,CAAC,CAAC,SAAS;CAClN,CAAC,CAAC,CAAC,SAAS,6LAOF;AACV,CAAC"}