@korala/api-client 1.0.0

package/README.md

@@ -0,0 +1,122 @@
+# @korala/api-client
+
+TypeScript API client for the [Korala](https://korala.ai) document signing platform.
+
+## Installation
+
+```bash
+npm install @korala/api-client
+```
+
+## Authentication
+
+Korala uses HMAC signature authentication. You'll need an API key ID and secret from your [Korala dashboard](https://korala.ai).
+
+```typescript
+import { KoralaClient } from '@korala/api-client';
+
+const client = new KoralaClient({
+  apiKeyId: 'your-api-key-id',
+  apiSecret: 'your-api-secret',
+  baseUrl: 'https://api.korala.ai/api/v1', // optional, defaults to production
+});
+```
+
+## Usage
+
+### Create and send a document
+
+```typescript
+// Upload a PDF
+const { documentId, uploadUrl } = await client.documents.createUploadUrl({
+  fileName: 'contract.pdf',
+  contentType: 'application/pdf',
+});
+
+// Upload the file to the presigned URL
+await fetch(uploadUrl, { method: 'PUT', body: pdfBuffer });
+
+// Confirm the upload
+await client.documents.confirmUpload(documentId);
+
+// Add a signer
+const signer = await client.signers.create(documentId, {
+  name: 'John Doe',
+  email: 'john@example.com',
+});
+
+// Add a signature field
+await client.fields.create(documentId, {
+  signerId: signer.id,
+  fieldType: 'signature',
+  pageNumber: 1,
+  xPosition: 100,
+  yPosition: 500,
+  width: 200,
+  height: 50,
+});
+
+// Send for signing
+await client.documents.send(documentId);
+```
+
+### Create a document from a template
+
+```typescript
+const document = await client.templates.createDocument(templateId, {
+  name: 'Sales Agreement - Acme Corp',
+  signers: {
+    buyer: { name: 'Jane Smith', email: 'jane@acme.com' },
+  },
+  variables: {
+    company_name: 'Acme Corporation',
+    contract_date: '2026-03-16',
+  },
+});
+```
+
+### Bulk sign (countersign)
+
+Sign multiple documents at once using a saved signature:
+
+```typescript
+// Create a saved signature for the signer
+await client.signatures.create({
+  email: 'ceo@company.com',
+  name: 'Jane Smith',
+  signatureImageUrl: 'https://example.com/signature.png',
+  isDefault: true,
+});
+
+// Bulk sign all pending documents
+const result = await client.documents.bulkSign({
+  documentIds: ['doc-1', 'doc-2', 'doc-3'],
+  signerEmail: 'ceo@company.com',
+});
+
+console.log(`${result.signed} signed, ${result.failed} failed`);
+```
+
+### Webhooks
+
+```typescript
+const webhook = await client.webhooks.create({
+  url: 'https://your-app.com/webhooks/korala',
+  events: ['document.completed', 'document.signed'],
+});
+```
+
+## API Reference
+
+| Resource | Methods |
+|----------|---------|
+| `client.documents` | `createUploadUrl`, `confirmUpload`, `list`, `get`, `send`, `void`, `getAuditTrail`, `bulkSign` |
+| `client.signers` | `list`, `create` |
+| `client.fields` | `list`, `create`, `update`, `delete` |
+| `client.signatures` | `list`, `get`, `create`, `delete` |
+| `client.templates` | `list`, `get`, `createDocument`, `generate` |
+| `client.webhooks` | `list`, `get`, `create`, `update`, `delete` |
+
+## License
+
+MIT

package/dist/client.d.ts

@@ -0,0 +1,23 @@
+import { DocumentsResource } from './resources/documents.js';
+import { FieldsResource } from './resources/fields.js';
+import { SignaturesResource } from './resources/signatures.js';
+import { SignersResource } from './resources/signers.js';
+import { TemplatesResource } from './resources/templates.js';
+import { WebhooksResource } from './resources/webhooks.js';
+export interface KoralaClientConfig {
+    apiKeyId: string;
+    apiSecret: string;
+    baseUrl?: string;
+    timeout?: number;
+}
+export declare class KoralaClient {
+    readonly documents: DocumentsResource;
+    readonly signers: SignersResource;
+    readonly fields: FieldsResource;
+    readonly signatures: SignaturesResource;
+    readonly templates: TemplatesResource;
+    readonly webhooks: WebhooksResource;
+    private readonly http;
+    constructor(config: KoralaClientConfig);
+}
+//# sourceMappingURL=client.d.ts.map

package/dist/client.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"client.d.ts","sourceRoot":"","sources":["../src/client.ts"],"names":[],"mappings":"AACA,OAAO,EAAE,iBAAiB,EAAE,MAAM,0BAA0B,CAAC;AAC7D,OAAO,EAAE,cAAc,EAAE,MAAM,uBAAuB,CAAC;AACvD,OAAO,EAAE,kBAAkB,EAAE,MAAM,2BAA2B,CAAC;AAC/D,OAAO,EAAE,eAAe,EAAE,MAAM,wBAAwB,CAAC;AACzD,OAAO,EAAE,iBAAiB,EAAE,MAAM,0BAA0B,CAAC;AAC7D,OAAO,EAAE,gBAAgB,EAAE,MAAM,yBAAyB,CAAC;AAE3D,MAAM,WAAW,kBAAkB;IACjC,QAAQ,EAAE,MAAM,CAAC;IACjB,SAAS,EAAE,MAAM,CAAC;IAClB,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,OAAO,CAAC,EAAE,MAAM,CAAC;CAClB;AAKD,qBAAa,YAAY;IACvB,SAAgB,SAAS,EAAE,iBAAiB,CAAC;IAC7C,SAAgB,OAAO,EAAE,eAAe,CAAC;IACzC,SAAgB,MAAM,EAAE,cAAc,CAAC;IACvC,SAAgB,UAAU,EAAE,kBAAkB,CAAC;IAC/C,SAAgB,SAAS,EAAE,iBAAiB,CAAC;IAC7C,SAAgB,QAAQ,EAAE,gBAAgB,CAAC;IAE3C,OAAO,CAAC,QAAQ,CAAC,IAAI,CAAa;gBAEtB,MAAM,EAAE,kBAAkB;CAevC"}

package/dist/client.js

@@ -0,0 +1,36 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.KoralaClient = void 0;
+const http_js_1 = require("./http.js");
+const documents_js_1 = require("./resources/documents.js");
+const fields_js_1 = require("./resources/fields.js");
+const signatures_js_1 = require("./resources/signatures.js");
+const signers_js_1 = require("./resources/signers.js");
+const templates_js_1 = require("./resources/templates.js");
+const webhooks_js_1 = require("./resources/webhooks.js");
+const DEFAULT_BASE_URL = 'https://api.korala.ai/api/v1';
+const DEFAULT_TIMEOUT = 30000;
+class KoralaClient {
+    documents;
+    signers;
+    fields;
+    signatures;
+    templates;
+    webhooks;
+    http;
+    constructor(config) {
+        this.http = new http_js_1.HttpClient({
+            apiKeyId: config.apiKeyId,
+            apiSecret: config.apiSecret,
+            baseUrl: config.baseUrl ?? DEFAULT_BASE_URL,
+            timeout: config.timeout ?? DEFAULT_TIMEOUT,
+        });
+        this.documents = new documents_js_1.DocumentsResource(this.http);
+        this.signers = new signers_js_1.SignersResource(this.http);
+        this.fields = new fields_js_1.FieldsResource(this.http);
+        this.signatures = new signatures_js_1.SignaturesResource(this.http);
+        this.templates = new templates_js_1.TemplatesResource(this.http);
+        this.webhooks = new webhooks_js_1.WebhooksResource(this.http);
+    }
+}
+exports.KoralaClient = KoralaClient;

package/dist/errors.d.ts

@@ -0,0 +1,14 @@
+export declare class KoralaError extends Error {
+    readonly status: number;
+    readonly code?: string | undefined;
+    constructor(status: number, message: string, code?: string | undefined);
+}
+export interface ValidationError {
+    field: string;
+    message: string;
+}
+export declare class KoralaValidationError extends KoralaError {
+    readonly errors: ValidationError[];
+    constructor(message: string, errors: ValidationError[]);
+}
+//# sourceMappingURL=errors.d.ts.map

package/dist/errors.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"errors.d.ts","sourceRoot":"","sources":["../src/errors.ts"],"names":[],"mappings":"AAAA,qBAAa,WAAY,SAAQ,KAAK;aAElB,MAAM,EAAE,MAAM;aAEd,IAAI,CAAC,EAAE,MAAM;gBAFb,MAAM,EAAE,MAAM,EAC9B,OAAO,EAAE,MAAM,EACC,IAAI,CAAC,EAAE,MAAM,YAAA;CAKhC;AAED,MAAM,WAAW,eAAe;IAC9B,KAAK,EAAE,MAAM,CAAC;IACd,OAAO,EAAE,MAAM,CAAC;CACjB;AAED,qBAAa,qBAAsB,SAAQ,WAAW;aAGlC,MAAM,EAAE,eAAe,EAAE;gBADzC,OAAO,EAAE,MAAM,EACC,MAAM,EAAE,eAAe,EAAE;CAK5C"}

package/dist/errors.js

@@ -0,0 +1,23 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.KoralaValidationError = exports.KoralaError = void 0;
+class KoralaError extends Error {
+    status;
+    code;
+    constructor(status, message, code) {
+        super(message);
+        this.status = status;
+        this.code = code;
+        this.name = 'KoralaError';
+    }
+}
+exports.KoralaError = KoralaError;
+class KoralaValidationError extends KoralaError {
+    errors;
+    constructor(message, errors) {
+        super(400, message, 'validation_error');
+        this.errors = errors;
+        this.name = 'KoralaValidationError';
+    }
+}
+exports.KoralaValidationError = KoralaValidationError;

package/dist/http.d.ts

@@ -0,0 +1,18 @@
+export interface HttpClientConfig {
+    apiKeyId: string;
+    apiSecret: string;
+    baseUrl: string;
+    timeout: number;
+}
+export declare class HttpClient {
+    private readonly config;
+    private readonly hashedSecret;
+    constructor(config: HttpClientConfig);
+    request<T>(method: string, path: string, body?: unknown): Promise<T>;
+    private handleError;
+    get<T>(path: string): Promise<T>;
+    post<T>(path: string, body?: unknown): Promise<T>;
+    patch<T>(path: string, body?: unknown): Promise<T>;
+    delete<T>(path: string): Promise<T>;
+}
+//# sourceMappingURL=http.d.ts.map

package/dist/http.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"http.d.ts","sourceRoot":"","sources":["../src/http.ts"],"names":[],"mappings":"AAIA,MAAM,WAAW,gBAAgB;IAC/B,QAAQ,EAAE,MAAM,CAAC;IACjB,SAAS,EAAE,MAAM,CAAC;IAClB,OAAO,EAAE,MAAM,CAAC;IAChB,OAAO,EAAE,MAAM,CAAC;CACjB;AAED,qBAAa,UAAU;IAGT,OAAO,CAAC,QAAQ,CAAC,MAAM;IAFnC,OAAO,CAAC,QAAQ,CAAC,YAAY,CAAS;gBAET,MAAM,EAAE,gBAAgB;IAK/C,OAAO,CAAC,CAAC,EAAE,MAAM,EAAE,MAAM,EAAE,IAAI,EAAE,MAAM,EAAE,IAAI,CAAC,EAAE,OAAO,GAAG,OAAO,CAAC,CAAC,CAAC;YAkE5D,WAAW;IAmCzB,GAAG,CAAC,CAAC,EAAE,IAAI,EAAE,MAAM,GAAG,OAAO,CAAC,CAAC,CAAC;IAIhC,IAAI,CAAC,CAAC,EAAE,IAAI,EAAE,MAAM,EAAE,IAAI,CAAC,EAAE,OAAO,GAAG,OAAO,CAAC,CAAC,CAAC;IAIjD,KAAK,CAAC,CAAC,EAAE,IAAI,EAAE,MAAM,EAAE,IAAI,CAAC,EAAE,OAAO,GAAG,OAAO,CAAC,CAAC,CAAC;IAIlD,MAAM,CAAC,CAAC,EAAE,IAAI,EAAE,MAAM,GAAG,OAAO,CAAC,CAAC,CAAC;CAGpC"}

package/dist/http.js

@@ -0,0 +1,100 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.HttpClient = void 0;
+const auth_1 = require("@korala/auth");
+const internal_1 = require("@korala/auth/internal");
+const errors_js_1 = require("./errors.js");
+class HttpClient {
+    config;
+    hashedSecret;
+    constructor(config) {
+        this.config = config;
+        // Hash the secret to match how the server stores and verifies signatures
+        this.hashedSecret = (0, internal_1.hashSecret)(config.apiSecret);
+    }
+    async request(method, path, body) {
+        const url = `${this.config.baseUrl}${path}`;
+        const bodyString = body ? JSON.stringify(body) : undefined;
+        // Extract the path from baseUrl to get the full API path for signing
+        const baseUrlPath = new URL(this.config.baseUrl).pathname;
+        const fullPath = `${baseUrlPath}${path}`;
+        const authHeaders = (0, auth_1.signRequest)({ method, path: fullPath, body: bodyString }, this.config.apiKeyId, this.hashedSecret);
+        const headers = {
+            ...authHeaders,
+        };
+        // Only set Content-Type if there's a body
+        if (bodyString) {
+            headers['Content-Type'] = 'application/json';
+        }
+        const controller = new AbortController();
+        const timeoutId = setTimeout(() => controller.abort(), this.config.timeout);
+        try {
+            const response = await fetch(url, {
+                method,
+                headers,
+                body: bodyString,
+                signal: controller.signal,
+            });
+            clearTimeout(timeoutId);
+            if (!response.ok) {
+                await this.handleError(response);
+            }
+            // Handle empty responses (e.g., 204 No Content)
+            const text = await response.text();
+            if (!text) {
+                return undefined;
+            }
+            return JSON.parse(text);
+        }
+        catch (error) {
+            clearTimeout(timeoutId);
+            if (error instanceof errors_js_1.KoralaError) {
+                throw error;
+            }
+            if (error instanceof Error && error.name === 'AbortError') {
+                throw new errors_js_1.KoralaError(0, 'Request timeout', 'timeout');
+            }
+            throw new errors_js_1.KoralaError(0, error instanceof Error ? error.message : 'Unknown error', 'network_error');
+        }
+    }
+    async handleError(response) {
+        let errorData = {};
+        try {
+            const text = await response.text();
+            if (text) {
+                errorData = JSON.parse(text);
+            }
+        }
+        catch {
+            // Ignore JSON parse errors
+        }
+        const message = errorData.message || errorData.error || response.statusText;
+        // Check for validation errors
+        if (response.status === 400 && Array.isArray(errorData.errors)) {
+            throw new errors_js_1.KoralaValidationError(message, errorData.errors.map((e) => {
+                if (typeof e === 'object' && e !== null) {
+                    const err = e;
+                    return {
+                        field: String(err.field || err.property || 'unknown'),
+                        message: String(err.message || err.constraints || 'Invalid'),
+                    };
+                }
+                return { field: 'unknown', message: String(e) };
+            }));
+        }
+        throw new errors_js_1.KoralaError(response.status, message);
+    }
+    get(path) {
+        return this.request('GET', path);
+    }
+    post(path, body) {
+        return this.request('POST', path, body);
+    }
+    patch(path, body) {
+        return this.request('PATCH', path, body);
+    }
+    delete(path) {
+        return this.request('DELETE', path);
+    }
+}
+exports.HttpClient = HttpClient;

package/dist/index.d.ts

@@ -0,0 +1,8 @@
+export type { AddFieldDto, AddSignerDto, AuditEventDto, CreateDocumentFromTemplateDto, CreateSignerRoleDto, CreateTemplateDto, CreateTemplateFieldDto, CreateTemplateUploadUrlDto, CreateUploadUrlDto, CreateWebhookDto, DocumentDto, FieldDto, GenerateDocumentDto, GeneratedDocumentDto, SignerDto, TemplateDto, TemplateFieldDto, TemplateSignerRoleDto, TemplateUploadUrlResponseDto, TemplateWithDetailsDto, UpdateSignerRoleDto, UpdateTemplateDto, UpdateTemplateFieldDto, UpdateWebhookDto, UploadUrlResponseDto, WebhookDeliveryDto, WebhookDto, WebhookWithSecretDto, } from '@korala/public-dtos';
+export { AuthMethod, DocumentStatus, FieldType, SignerRole, SignerStatus, WebhookDeliveryStatus, WebhookEventType, } from '@korala/public-dtos';
+export { KoralaClient, type KoralaClientConfig } from './client.js';
+export type { ValidationError } from './errors.js';
+export { KoralaError, KoralaValidationError } from './errors.js';
+export type { VerifyWebhookOptions } from './webhooks/verify.js';
+export { verifyWebhookSignature } from './webhooks/verify.js';
+//# sourceMappingURL=index.d.ts.map

package/dist/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AAGA,YAAY,EAEV,WAAW,EAEX,YAAY,EACZ,aAAa,EAEb,6BAA6B,EAC7B,mBAAmB,EACnB,iBAAiB,EACjB,sBAAsB,EACtB,0BAA0B,EAE1B,kBAAkB,EAElB,gBAAgB,EAChB,WAAW,EACX,QAAQ,EACR,mBAAmB,EACnB,oBAAoB,EACpB,SAAS,EACT,WAAW,EACX,gBAAgB,EAChB,qBAAqB,EACrB,4BAA4B,EAC5B,sBAAsB,EACtB,mBAAmB,EACnB,iBAAiB,EACjB,sBAAsB,EACtB,gBAAgB,EAChB,oBAAoB,EACpB,kBAAkB,EAClB,UAAU,EACV,oBAAoB,GACrB,MAAM,qBAAqB,CAAC;AAE7B,OAAO,EACL,UAAU,EACV,cAAc,EACd,SAAS,EACT,UAAU,EACV,YAAY,EACZ,qBAAqB,EACrB,gBAAgB,GACjB,MAAM,qBAAqB,CAAC;AAC7B,OAAO,EAAE,YAAY,EAAE,KAAK,kBAAkB,EAAE,MAAM,aAAa,CAAC;AACpE,YAAY,EAAE,eAAe,EAAE,MAAM,aAAa,CAAC;AAEnD,OAAO,EAAE,WAAW,EAAE,qBAAqB,EAAE,MAAM,aAAa,CAAC;AACjE,YAAY,EAAE,oBAAoB,EAAE,MAAM,sBAAsB,CAAC;AAEjE,OAAO,EAAE,sBAAsB,EAAE,MAAM,sBAAsB,CAAC"}

package/dist/index.js

@@ -0,0 +1,22 @@
+"use strict";
+// Client
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.verifyWebhookSignature = exports.KoralaValidationError = exports.KoralaError = exports.KoralaClient = exports.WebhookEventType = exports.WebhookDeliveryStatus = exports.SignerStatus = exports.SignerRole = exports.FieldType = exports.DocumentStatus = exports.AuthMethod = void 0;
+// Re-export enums as values (not just types)
+var public_dtos_1 = require("@korala/public-dtos");
+Object.defineProperty(exports, "AuthMethod", { enumerable: true, get: function () { return public_dtos_1.AuthMethod; } });
+Object.defineProperty(exports, "DocumentStatus", { enumerable: true, get: function () { return public_dtos_1.DocumentStatus; } });
+Object.defineProperty(exports, "FieldType", { enumerable: true, get: function () { return public_dtos_1.FieldType; } });
+Object.defineProperty(exports, "SignerRole", { enumerable: true, get: function () { return public_dtos_1.SignerRole; } });
+Object.defineProperty(exports, "SignerStatus", { enumerable: true, get: function () { return public_dtos_1.SignerStatus; } });
+Object.defineProperty(exports, "WebhookDeliveryStatus", { enumerable: true, get: function () { return public_dtos_1.WebhookDeliveryStatus; } });
+Object.defineProperty(exports, "WebhookEventType", { enumerable: true, get: function () { return public_dtos_1.WebhookEventType; } });
+var client_js_1 = require("./client.js");
+Object.defineProperty(exports, "KoralaClient", { enumerable: true, get: function () { return client_js_1.KoralaClient; } });
+// Errors
+var errors_js_1 = require("./errors.js");
+Object.defineProperty(exports, "KoralaError", { enumerable: true, get: function () { return errors_js_1.KoralaError; } });
+Object.defineProperty(exports, "KoralaValidationError", { enumerable: true, get: function () { return errors_js_1.KoralaValidationError; } });
+// Webhook verification
+var verify_js_1 = require("./webhooks/verify.js");
+Object.defineProperty(exports, "verifyWebhookSignature", { enumerable: true, get: function () { return verify_js_1.verifyWebhookSignature; } });

package/dist/resources/documents.d.ts

@@ -0,0 +1,17 @@
+import type { AuditEventDto, BulkSignRequestDto, BulkSignResponseDto, CreateUploadUrlDto, DocumentDto, UploadUrlResponseDto } from '@korala/public-dtos';
+import type { HttpClient } from '../http.js';
+export declare class DocumentsResource {
+    private readonly http;
+    constructor(http: HttpClient);
+    createUploadUrl(data: CreateUploadUrlDto): Promise<UploadUrlResponseDto>;
+    confirmUpload(documentId: string): Promise<DocumentDto>;
+    list(): Promise<DocumentDto[]>;
+    get(documentId: string): Promise<DocumentDto>;
+    send(documentId: string, options?: {
+        suppressNotifications?: boolean;
+    }): Promise<DocumentDto>;
+    void(documentId: string): Promise<DocumentDto>;
+    getAuditTrail(documentId: string): Promise<AuditEventDto[]>;
+    bulkSign(data: BulkSignRequestDto): Promise<BulkSignResponseDto>;
+}
+//# sourceMappingURL=documents.d.ts.map

package/dist/resources/documents.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"documents.d.ts","sourceRoot":"","sources":["../../src/resources/documents.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EACV,aAAa,EACb,kBAAkB,EAClB,mBAAmB,EACnB,kBAAkB,EAClB,WAAW,EACX,oBAAoB,EACrB,MAAM,qBAAqB,CAAC;AAC7B,OAAO,KAAK,EAAE,UAAU,EAAE,MAAM,YAAY,CAAC;AAE7C,qBAAa,iBAAiB;IAChB,OAAO,CAAC,QAAQ,CAAC,IAAI;gBAAJ,IAAI,EAAE,UAAU;IAE7C,eAAe,CAAC,IAAI,EAAE,kBAAkB,GAAG,OAAO,CAAC,oBAAoB,CAAC;IAIxE,aAAa,CAAC,UAAU,EAAE,MAAM,GAAG,OAAO,CAAC,WAAW,CAAC;IAIvD,IAAI,IAAI,OAAO,CAAC,WAAW,EAAE,CAAC;IAI9B,GAAG,CAAC,UAAU,EAAE,MAAM,GAAG,OAAO,CAAC,WAAW,CAAC;IAI7C,IAAI,CACF,UAAU,EAAE,MAAM,EAClB,OAAO,CAAC,EAAE;QAAE,qBAAqB,CAAC,EAAE,OAAO,CAAA;KAAE,GAC5C,OAAO,CAAC,WAAW,CAAC;IAOvB,IAAI,CAAC,UAAU,EAAE,MAAM,GAAG,OAAO,CAAC,WAAW,CAAC;IAI9C,aAAa,CAAC,UAAU,EAAE,MAAM,GAAG,OAAO,CAAC,aAAa,EAAE,CAAC;IAM3D,QAAQ,CAAC,IAAI,EAAE,kBAAkB,GAAG,OAAO,CAAC,mBAAmB,CAAC;CAGjE"}

package/dist/resources/documents.js

@@ -0,0 +1,34 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.DocumentsResource = void 0;
+class DocumentsResource {
+    http;
+    constructor(http) {
+        this.http = http;
+    }
+    createUploadUrl(data) {
+        return this.http.post('/documents/upload-url', data);
+    }
+    confirmUpload(documentId) {
+        return this.http.post(`/documents/${documentId}/confirm`);
+    }
+    list() {
+        return this.http.get('/documents');
+    }
+    get(documentId) {
+        return this.http.get(`/documents/${documentId}`);
+    }
+    send(documentId, options) {
+        return this.http.post(`/documents/${documentId}/send`, options);
+    }
+    void(documentId) {
+        return this.http.post(`/documents/${documentId}/void`);
+    }
+    getAuditTrail(documentId) {
+        return this.http.get(`/documents/${documentId}/audit-trail`);
+    }
+    bulkSign(data) {
+        return this.http.post('/documents/bulk-sign', data);
+    }
+}
+exports.DocumentsResource = DocumentsResource;

package/dist/resources/fields.d.ts

@@ -0,0 +1,10 @@
+import type { AddFieldDto, FieldDto } from '@korala/public-dtos';
+import type { HttpClient } from '../http.js';
+export declare class FieldsResource {
+    private readonly http;
+    constructor(http: HttpClient);
+    create(documentId: string, data: AddFieldDto): Promise<FieldDto>;
+    list(documentId: string): Promise<FieldDto[]>;
+    delete(documentId: string, fieldId: string): Promise<void>;
+}
+//# sourceMappingURL=fields.d.ts.map

package/dist/resources/fields.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"fields.d.ts","sourceRoot":"","sources":["../../src/resources/fields.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,WAAW,EAAE,QAAQ,EAAE,MAAM,qBAAqB,CAAC;AACjE,OAAO,KAAK,EAAE,UAAU,EAAE,MAAM,YAAY,CAAC;AAE7C,qBAAa,cAAc;IACb,OAAO,CAAC,QAAQ,CAAC,IAAI;gBAAJ,IAAI,EAAE,UAAU;IAE7C,MAAM,CAAC,UAAU,EAAE,MAAM,EAAE,IAAI,EAAE,WAAW,GAAG,OAAO,CAAC,QAAQ,CAAC;IAIhE,IAAI,CAAC,UAAU,EAAE,MAAM,GAAG,OAAO,CAAC,QAAQ,EAAE,CAAC;IAI7C,MAAM,CAAC,UAAU,EAAE,MAAM,EAAE,OAAO,EAAE,MAAM,GAAG,OAAO,CAAC,IAAI,CAAC;CAG3D"}

package/dist/resources/fields.js

@@ -0,0 +1,19 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.FieldsResource = void 0;
+class FieldsResource {
+    http;
+    constructor(http) {
+        this.http = http;
+    }
+    create(documentId, data) {
+        return this.http.post(`/documents/${documentId}/fields`, data);
+    }
+    list(documentId) {
+        return this.http.get(`/documents/${documentId}/fields`);
+    }
+    delete(documentId, fieldId) {
+        return this.http.delete(`/documents/${documentId}/fields/${fieldId}`);
+    }
+}
+exports.FieldsResource = FieldsResource;

package/dist/resources/signatures.d.ts

@@ -0,0 +1,13 @@
+import type { CreateSavedSignatureDto, SavedSignatureDto } from '@korala/public-dtos';
+import type { HttpClient } from '../http.js';
+export declare class SignaturesResource {
+    private readonly http;
+    constructor(http: HttpClient);
+    create(data: CreateSavedSignatureDto): Promise<SavedSignatureDto>;
+    list(params?: {
+        email?: string;
+    }): Promise<SavedSignatureDto[]>;
+    get(id: string): Promise<SavedSignatureDto>;
+    delete(id: string): Promise<void>;
+}
+//# sourceMappingURL=signatures.d.ts.map

package/dist/resources/signatures.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"signatures.d.ts","sourceRoot":"","sources":["../../src/resources/signatures.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EACV,uBAAuB,EACvB,iBAAiB,EAClB,MAAM,qBAAqB,CAAC;AAC7B,OAAO,KAAK,EAAE,UAAU,EAAE,MAAM,YAAY,CAAC;AAE7C,qBAAa,kBAAkB;IACjB,OAAO,CAAC,QAAQ,CAAC,IAAI;gBAAJ,IAAI,EAAE,UAAU;IAE7C,MAAM,CAAC,IAAI,EAAE,uBAAuB,GAAG,OAAO,CAAC,iBAAiB,CAAC;IAIjE,IAAI,CAAC,MAAM,CAAC,EAAE;QAAE,KAAK,CAAC,EAAE,MAAM,CAAA;KAAE,GAAG,OAAO,CAAC,iBAAiB,EAAE,CAAC;IAO/D,GAAG,CAAC,EAAE,EAAE,MAAM,GAAG,OAAO,CAAC,iBAAiB,CAAC;IAI3C,MAAM,CAAC,EAAE,EAAE,MAAM,GAAG,OAAO,CAAC,IAAI,CAAC;CAGlC"}

package/dist/resources/signatures.js

@@ -0,0 +1,25 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.SignaturesResource = void 0;
+class SignaturesResource {
+    http;
+    constructor(http) {
+        this.http = http;
+    }
+    create(data) {
+        return this.http.post('/signatures', data);
+    }
+    list(params) {
+        const query = params?.email
+            ? `?email=${encodeURIComponent(params.email)}`
+            : '';
+        return this.http.get(`/signatures${query}`);
+    }
+    get(id) {
+        return this.http.get(`/signatures/${id}`);
+    }
+    delete(id) {
+        return this.http.delete(`/signatures/${id}`);
+    }
+}
+exports.SignaturesResource = SignaturesResource;

package/dist/resources/signers.d.ts

@@ -0,0 +1,10 @@
+import type { AddSignerDto, SignerDto } from '@korala/public-dtos';
+import type { HttpClient } from '../http.js';
+export declare class SignersResource {
+    private readonly http;
+    constructor(http: HttpClient);
+    create(documentId: string, data: AddSignerDto): Promise<SignerDto>;
+    list(documentId: string): Promise<SignerDto[]>;
+    delete(documentId: string, signerId: string): Promise<void>;
+}
+//# sourceMappingURL=signers.d.ts.map

package/dist/resources/signers.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"signers.d.ts","sourceRoot":"","sources":["../../src/resources/signers.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,YAAY,EAAE,SAAS,EAAE,MAAM,qBAAqB,CAAC;AACnE,OAAO,KAAK,EAAE,UAAU,EAAE,MAAM,YAAY,CAAC;AAE7C,qBAAa,eAAe;IACd,OAAO,CAAC,QAAQ,CAAC,IAAI;gBAAJ,IAAI,EAAE,UAAU;IAE7C,MAAM,CAAC,UAAU,EAAE,MAAM,EAAE,IAAI,EAAE,YAAY,GAAG,OAAO,CAAC,SAAS,CAAC;IAIlE,IAAI,CAAC,UAAU,EAAE,MAAM,GAAG,OAAO,CAAC,SAAS,EAAE,CAAC;IAI9C,MAAM,CAAC,UAAU,EAAE,MAAM,EAAE,QAAQ,EAAE,MAAM,GAAG,OAAO,CAAC,IAAI,CAAC;CAK5D"}

package/dist/resources/signers.js

@@ -0,0 +1,19 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.SignersResource = void 0;
+class SignersResource {
+    http;
+    constructor(http) {
+        this.http = http;
+    }
+    create(documentId, data) {
+        return this.http.post(`/documents/${documentId}/signers`, data);
+    }
+    list(documentId) {
+        return this.http.get(`/documents/${documentId}/signers`);
+    }
+    delete(documentId, signerId) {
+        return this.http.delete(`/documents/${documentId}/signers/${signerId}`);
+    }
+}
+exports.SignersResource = SignersResource;

package/dist/resources/templates.d.ts

@@ -0,0 +1,24 @@
+import type { CreateDocumentFromTemplateDto, CreateSignerRoleDto, CreateTemplateDto, CreateTemplateFieldDto, CreateTemplateUploadUrlDto, DetectedMergeFieldDto, DocumentDto, GenerateDocumentDto, GeneratedDocumentDto, TemplateDto, TemplateFieldDto, TemplateSignerRoleDto, TemplateUploadUrlResponseDto, TemplateWithDetailsDto, UpdateSignerRoleDto, UpdateTemplateDto, UpdateTemplateFieldDto } from '@korala/public-dtos';
+import type { HttpClient } from '../http.js';
+export declare class TemplatesResource {
+    private readonly http;
+    constructor(http: HttpClient);
+    createUploadUrl(data: CreateTemplateUploadUrlDto): Promise<TemplateUploadUrlResponseDto>;
+    confirmUpload(templateId: string, data: CreateTemplateDto): Promise<TemplateDto>;
+    list(): Promise<TemplateDto[]>;
+    get(templateId: string): Promise<TemplateWithDetailsDto>;
+    update(templateId: string, data: UpdateTemplateDto): Promise<TemplateDto>;
+    delete(templateId: string): Promise<void>;
+    addSignerRole(templateId: string, data: CreateSignerRoleDto): Promise<TemplateSignerRoleDto>;
+    getSignerRoles(templateId: string): Promise<TemplateSignerRoleDto[]>;
+    updateSignerRole(templateId: string, roleId: string, data: UpdateSignerRoleDto): Promise<TemplateSignerRoleDto>;
+    deleteSignerRole(templateId: string, roleId: string): Promise<void>;
+    addField(templateId: string, data: CreateTemplateFieldDto): Promise<TemplateFieldDto>;
+    getFields(templateId: string): Promise<TemplateFieldDto[]>;
+    updateField(templateId: string, fieldId: string, data: UpdateTemplateFieldDto): Promise<TemplateFieldDto>;
+    deleteField(templateId: string, fieldId: string): Promise<void>;
+    getMergeFields(templateId: string): Promise<DetectedMergeFieldDto[]>;
+    createDocument(templateId: string, data: CreateDocumentFromTemplateDto): Promise<DocumentDto>;
+    generate(templateId: string, data?: GenerateDocumentDto): Promise<GeneratedDocumentDto>;
+}
+//# sourceMappingURL=templates.d.ts.map

package/dist/resources/templates.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"templates.d.ts","sourceRoot":"","sources":["../../src/resources/templates.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EACV,6BAA6B,EAC7B,mBAAmB,EACnB,iBAAiB,EACjB,sBAAsB,EACtB,0BAA0B,EAC1B,qBAAqB,EACrB,WAAW,EACX,mBAAmB,EACnB,oBAAoB,EACpB,WAAW,EACX,gBAAgB,EAChB,qBAAqB,EACrB,4BAA4B,EAC5B,sBAAsB,EACtB,mBAAmB,EACnB,iBAAiB,EACjB,sBAAsB,EACvB,MAAM,qBAAqB,CAAC;AAC7B,OAAO,KAAK,EAAE,UAAU,EAAE,MAAM,YAAY,CAAC;AAE7C,qBAAa,iBAAiB;IAChB,OAAO,CAAC,QAAQ,CAAC,IAAI;gBAAJ,IAAI,EAAE,UAAU;IAI7C,eAAe,CACb,IAAI,EAAE,0BAA0B,GAC/B,OAAO,CAAC,4BAA4B,CAAC;IAOxC,aAAa,CACX,UAAU,EAAE,MAAM,EAClB,IAAI,EAAE,iBAAiB,GACtB,OAAO,CAAC,WAAW,CAAC;IAOvB,IAAI,IAAI,OAAO,CAAC,WAAW,EAAE,CAAC;IAI9B,GAAG,CAAC,UAAU,EAAE,MAAM,GAAG,OAAO,CAAC,sBAAsB,CAAC;IAIxD,MAAM,CAAC,UAAU,EAAE,MAAM,EAAE,IAAI,EAAE,iBAAiB,GAAG,OAAO,CAAC,WAAW,CAAC;IAIzE,MAAM,CAAC,UAAU,EAAE,MAAM,GAAG,OAAO,CAAC,IAAI,CAAC;IAMzC,aAAa,CACX,UAAU,EAAE,MAAM,EAClB,IAAI,EAAE,mBAAmB,GACxB,OAAO,CAAC,qBAAqB,CAAC;IAOjC,cAAc,CAAC,UAAU,EAAE,MAAM,GAAG,OAAO,CAAC,qBAAqB,EAAE,CAAC;IAMpE,gBAAgB,CACd,UAAU,EAAE,MAAM,EAClB,MAAM,EAAE,MAAM,EACd,IAAI,EAAE,mBAAmB,GACxB,OAAO,CAAC,qBAAqB,CAAC;IAOjC,gBAAgB,CAAC,UAAU,EAAE,MAAM,EAAE,MAAM,EAAE,MAAM,GAAG,OAAO,CAAC,IAAI,CAAC;IAMnE,QAAQ,CACN,UAAU,EAAE,MAAM,EAClB,IAAI,EAAE,sBAAsB,GAC3B,OAAO,CAAC,gBAAgB,CAAC;IAO5B,SAAS,CAAC,UAAU,EAAE,MAAM,GAAG,OAAO,CAAC,gBAAgB,EAAE,CAAC;IAI1D,WAAW,CACT,UAAU,EAAE,MAAM,EAClB,OAAO,EAAE,MAAM,EACf,IAAI,EAAE,sBAAsB,GAC3B,OAAO,CAAC,gBAAgB,CAAC;IAO5B,WAAW,CAAC,UAAU,EAAE,MAAM,EAAE,OAAO,EAAE,MAAM,GAAG,OAAO,CAAC,IAAI,CAAC;IAM/D,cAAc,CAAC,UAAU,EAAE,MAAM,GAAG,OAAO,CAAC,qBAAqB,EAAE,CAAC;IAQpE,cAAc,CACZ,UAAU,EAAE,MAAM,EAClB,IAAI,EAAE,6BAA6B,GAClC,OAAO,CAAC,WAAW,CAAC;IASvB,QAAQ,CACN,UAAU,EAAE,MAAM,EAClB,IAAI,GAAE,mBAAwB,GAC7B,OAAO,CAAC,oBAAoB,CAAC;CAMjC"}

package/dist/resources/templates.js

@@ -0,0 +1,67 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.TemplatesResource = void 0;
+class TemplatesResource {
+    http;
+    constructor(http) {
+        this.http = http;
+    }
+    // Template CRUD
+    createUploadUrl(data) {
+        return this.http.post('/templates/upload-url', data);
+    }
+    confirmUpload(templateId, data) {
+        return this.http.post(`/templates/${templateId}/confirm`, data);
+    }
+    list() {
+        return this.http.get('/templates');
+    }
+    get(templateId) {
+        return this.http.get(`/templates/${templateId}`);
+    }
+    update(templateId, data) {
+        return this.http.patch(`/templates/${templateId}`, data);
+    }
+    delete(templateId) {
+        return this.http.delete(`/templates/${templateId}`);
+    }
+    // Signer Roles
+    addSignerRole(templateId, data) {
+        return this.http.post(`/templates/${templateId}/signer-roles`, data);
+    }
+    getSignerRoles(templateId) {
+        return this.http.get(`/templates/${templateId}/signer-roles`);
+    }
+    updateSignerRole(templateId, roleId, data) {
+        return this.http.patch(`/templates/${templateId}/signer-roles/${roleId}`, data);
+    }
+    deleteSignerRole(templateId, roleId) {
+        return this.http.delete(`/templates/${templateId}/signer-roles/${roleId}`);
+    }
+    // Fields
+    addField(templateId, data) {
+        return this.http.post(`/templates/${templateId}/fields`, data);
+    }
+    getFields(templateId) {
+        return this.http.get(`/templates/${templateId}/fields`);
+    }
+    updateField(templateId, fieldId, data) {
+        return this.http.patch(`/templates/${templateId}/fields/${fieldId}`, data);
+    }
+    deleteField(templateId, fieldId) {
+        return this.http.delete(`/templates/${templateId}/fields/${fieldId}`);
+    }
+    // Merge Fields (DOCX templates)
+    getMergeFields(templateId) {
+        return this.http.get(`/templates/${templateId}/merge-fields`);
+    }
+    // Create document from template
+    createDocument(templateId, data) {
+        return this.http.post(`/templates/${templateId}/create-document`, data);
+    }
+    // Generate PDF from template (no signing workflow)
+    generate(templateId, data = {}) {
+        return this.http.post(`/templates/${templateId}/generate`, data);
+    }
+}
+exports.TemplatesResource = TemplatesResource;

package/dist/resources/webhooks.d.ts

@@ -0,0 +1,14 @@
+import type { CreateWebhookDto, UpdateWebhookDto, WebhookDeliveryDto, WebhookDto, WebhookWithSecretDto } from '@korala/public-dtos';
+import type { HttpClient } from '../http.js';
+export declare class WebhooksResource {
+    private readonly http;
+    constructor(http: HttpClient);
+    create(data: CreateWebhookDto): Promise<WebhookWithSecretDto>;
+    list(): Promise<WebhookDto[]>;
+    get(webhookId: string): Promise<WebhookDto>;
+    update(webhookId: string, data: UpdateWebhookDto): Promise<WebhookDto>;
+    delete(webhookId: string): Promise<void>;
+    getDeliveries(webhookId: string): Promise<WebhookDeliveryDto[]>;
+    sendTestEvent(webhookId: string): Promise<WebhookDeliveryDto>;
+}
+//# sourceMappingURL=webhooks.d.ts.map

package/dist/resources/webhooks.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"webhooks.d.ts","sourceRoot":"","sources":["../../src/resources/webhooks.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EACV,gBAAgB,EAChB,gBAAgB,EAChB,kBAAkB,EAClB,UAAU,EACV,oBAAoB,EACrB,MAAM,qBAAqB,CAAC;AAC7B,OAAO,KAAK,EAAE,UAAU,EAAE,MAAM,YAAY,CAAC;AAE7C,qBAAa,gBAAgB;IACf,OAAO,CAAC,QAAQ,CAAC,IAAI;gBAAJ,IAAI,EAAE,UAAU;IAE7C,MAAM,CAAC,IAAI,EAAE,gBAAgB,GAAG,OAAO,CAAC,oBAAoB,CAAC;IAI7D,IAAI,IAAI,OAAO,CAAC,UAAU,EAAE,CAAC;IAI7B,GAAG,CAAC,SAAS,EAAE,MAAM,GAAG,OAAO,CAAC,UAAU,CAAC;IAI3C,MAAM,CAAC,SAAS,EAAE,MAAM,EAAE,IAAI,EAAE,gBAAgB,GAAG,OAAO,CAAC,UAAU,CAAC;IAItE,MAAM,CAAC,SAAS,EAAE,MAAM,GAAG,OAAO,CAAC,IAAI,CAAC;IAIxC,aAAa,CAAC,SAAS,EAAE,MAAM,GAAG,OAAO,CAAC,kBAAkB,EAAE,CAAC;IAM/D,aAAa,CAAC,SAAS,EAAE,MAAM,GAAG,OAAO,CAAC,kBAAkB,CAAC;CAG9D"}

package/dist/resources/webhooks.js

@@ -0,0 +1,31 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.WebhooksResource = void 0;
+class WebhooksResource {
+    http;
+    constructor(http) {
+        this.http = http;
+    }
+    create(data) {
+        return this.http.post('/webhooks', data);
+    }
+    list() {
+        return this.http.get('/webhooks');
+    }
+    get(webhookId) {
+        return this.http.get(`/webhooks/${webhookId}`);
+    }
+    update(webhookId, data) {
+        return this.http.patch(`/webhooks/${webhookId}`, data);
+    }
+    delete(webhookId) {
+        return this.http.delete(`/webhooks/${webhookId}`);
+    }
+    getDeliveries(webhookId) {
+        return this.http.get(`/webhooks/${webhookId}/deliveries`);
+    }
+    sendTestEvent(webhookId) {
+        return this.http.post(`/webhooks/${webhookId}/test`);
+    }
+}
+exports.WebhooksResource = WebhooksResource;

package/dist/webhooks/verify.d.ts

@@ -0,0 +1,8 @@
+export interface VerifyWebhookOptions {
+    secret: string;
+    signature: string;
+    timestamp: string;
+    body: string;
+}
+export declare function verifyWebhookSignature(options: VerifyWebhookOptions): boolean;
+//# sourceMappingURL=verify.d.ts.map

package/dist/webhooks/verify.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"verify.d.ts","sourceRoot":"","sources":["../../src/webhooks/verify.ts"],"names":[],"mappings":"AAEA,MAAM,WAAW,oBAAoB;IACnC,MAAM,EAAE,MAAM,CAAC;IACf,SAAS,EAAE,MAAM,CAAC;IAClB,SAAS,EAAE,MAAM,CAAC;IAClB,IAAI,EAAE,MAAM,CAAC;CACd;AAED,wBAAgB,sBAAsB,CAAC,OAAO,EAAE,oBAAoB,GAAG,OAAO,CAO7E"}

package/dist/webhooks/verify.js

@@ -0,0 +1,7 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.verifyWebhookSignature = verifyWebhookSignature;
+const auth_1 = require("@korala/auth");
+function verifyWebhookSignature(options) {
+    return (0, auth_1.verifyWebhookSignature)(options.body, options.timestamp, options.signature, options.secret);
+}

package/package.json

@@ -0,0 +1,51 @@
+{
+  "name": "@korala/api-client",
+  "version": "1.0.0",
+  "description": "TypeScript API client for Korala document signing API",
+  "license": "MIT",
+  "repository": {
+    "type": "git",
+    "url": "git+https://github.com/korala-ai/korala.git",
+    "directory": "packages/api-client"
+  },
+  "main": "./dist/index.js",
+  "types": "./dist/index.d.ts",
+  "exports": {
+    ".": {
+      "types": "./dist/index.d.ts",
+      "import": "./dist/index.js",
+      "default": "./dist/index.js"
+    }
+  },
+  "files": [
+    "dist",
+    "README.md"
+  ],
+  "publishConfig": {
+    "access": "public"
+  },
+  "keywords": [
+    "korala",
+    "document-signing",
+    "e-signature",
+    "pdf-signing",
+    "api-client",
+    "typescript"
+  ],
+  "dependencies": {
+    "@korala/auth": "^1.0.0",
+    "@korala/public-dtos": "^1.0.0"
+  },
+  "devDependencies": {
+    "typescript": "^5.9.3"
+  },
+  "engines": {
+    "node": ">=20.0"
+  },
+  "scripts": {
+    "build": "tsc",
+    "dev": "tsc --watch",
+    "typecheck": "tsc --noEmit",
+    "check": "biome check --write ."
+  }
+}