@llmops/sdk 0.1.1 → 0.1.2-beta.2

package/dist/express.d.cts

@@ -1,3 +1,3 @@
-import "./index-fafxrrPF.cjs";
-import { t as createLLMOpsMiddleware } from "./index-UQjBf1t7.cjs";
+import "./index-B4kndBdY.cjs";
+import { t as createLLMOpsMiddleware } from "./index-DuwhMev_.cjs";
 export { createLLMOpsMiddleware };

package/dist/express.d.mts

@@ -1,3 +1,3 @@
-import "./index-BFiKnXi1.mjs";
-import { t as createLLMOpsMiddleware } from "./index-BL6HTepw.mjs";
+import "./index-DHPNzRoF.mjs";
+import { t as createLLMOpsMiddleware } from "./index-C80aPeNg.mjs";
 export { createLLMOpsMiddleware };

package/dist/hono.d.cts

@@ -1,4 +1,4 @@
-import { t as LLMOpsClient } from "./index-fafxrrPF.cjs";
+import { t as LLMOpsClient } from "./index-B4kndBdY.cjs";
 import { MiddlewareHandler } from "hono";
 
 //#region src/lib/hono/index.d.ts

package/dist/hono.d.mts

@@ -1,4 +1,4 @@
-import { t as LLMOpsClient } from "./index-BFiKnXi1.mjs";
+import { t as LLMOpsClient } from "./index-DHPNzRoF.mjs";
 import { MiddlewareHandler } from "hono";
 
 //#region src/lib/hono/index.d.ts

package/dist/index-B4kndBdY.d.cts

@@ -0,0 +1,277 @@
+import { AuthConfig, BasicAuthConfig, LLMOpsConfig } from "@llmops/core";
+
+//#region src/lib/auth/client.d.ts
+
+/**
+ * Auth Client - Extensible authentication client for LLMOps
+ *
+ * Open source: BasicAuthClient with limited functionality
+ * Enterprise: Can extend with full user management, RBAC, SSO, etc.
+ */
+/**
+ * User representation
+ */
+interface User {
+  id: string;
+  email: string;
+  name: string;
+  role: string | null;
+  emailVerified: boolean;
+  image: string | null;
+  banned: boolean | null;
+  banReason: string | null;
+  createdAt: Date;
+  updatedAt: Date;
+}
+/**
+ * Session representation
+ */
+interface Session {
+  id: string;
+  userId: string;
+  expiresAt: Date;
+  createdAt: Date;
+}
+/**
+ * Permission check result
+ */
+interface Permission {
+  resource: string;
+  action: string;
+  allowed: boolean;
+}
+/**
+ * Pagination options
+ */
+interface PaginationOptions {
+  limit?: number;
+  offset?: number;
+}
+/**
+ * Paginated response
+ */
+interface PaginatedResponse<T> {
+  data: T[];
+  total: number;
+  limit: number;
+  offset: number;
+}
+/**
+ * Base auth client interface
+ * All auth implementations must implement this interface
+ */
+interface AuthClient {
+  /**
+   * The type of auth client
+   */
+  readonly type: string;
+  /**
+   * Get the current session
+   * @returns Current session or null if not authenticated
+   */
+  getSession(): Promise<Session | null>;
+  /**
+   * Get the current authenticated user
+   * @returns Current user or null if not authenticated
+   */
+  getCurrentUser(): Promise<User | null>;
+  /**
+   * Check if currently authenticated
+   */
+  isAuthenticated(): Promise<boolean>;
+  /**
+   * Get a user by ID
+   * @param userId - The user ID
+   */
+  getUser(userId: string): Promise<User | null>;
+  /**
+   * List all users (paginated)
+   * @param options - Pagination options
+   */
+  listUsers(options?: PaginationOptions): Promise<PaginatedResponse<User>>;
+  /**
+   * Create a new user
+   * @param data - User data
+   */
+  createUser(data: {
+    email: string;
+    name: string;
+    password: string;
+    role?: string;
+  }): Promise<User>;
+  /**
+   * Update a user
+   * @param userId - The user ID
+   * @param data - Fields to update
+   */
+  updateUser(userId: string, data: Partial<Pick<User, 'name' | 'email' | 'role' | 'image'>>): Promise<User>;
+  /**
+   * Delete a user
+   * @param userId - The user ID
+   */
+  deleteUser(userId: string): Promise<void>;
+  /**
+   * Get user's role
+   * @param userId - The user ID (optional, defaults to current user)
+   */
+  getRole(userId?: string): Promise<string | null>;
+  /**
+   * Set user's role
+   * @param userId - The user ID
+   * @param role - The role to set
+   */
+  setRole(userId: string, role: string): Promise<void>;
+  /**
+   * Check if user has permission
+   * @param permission - Permission to check (e.g., { resource: 'configs', action: 'create' })
+   * @param userId - The user ID (optional, defaults to current user)
+   */
+  hasPermission(permission: {
+    resource: string;
+    action: string;
+  }, userId?: string): Promise<boolean>;
+  /**
+   * Get all permissions for a user
+   * @param userId - The user ID (optional, defaults to current user)
+   */
+  getPermissions(userId?: string): Promise<Permission[]>;
+  /**
+   * Ban a user
+   * @param userId - The user ID
+   * @param reason - Optional ban reason
+   * @param expiresAt - Optional expiration date
+   */
+  banUser(userId: string, reason?: string, expiresAt?: Date): Promise<void>;
+  /**
+   * Unban a user
+   * @param userId - The user ID
+   */
+  unbanUser(userId: string): Promise<void>;
+  /**
+   * List all sessions for a user
+   * @param userId - The user ID
+   */
+  listUserSessions(userId: string): Promise<Session[]>;
+  /**
+   * Revoke a specific session
+   * @param sessionId - The session ID
+   */
+  revokeSession(sessionId: string): Promise<void>;
+  /**
+   * Revoke all sessions for a user
+   * @param userId - The user ID
+   */
+  revokeAllSessions(userId: string): Promise<void>;
+}
+/**
+ * Error thrown when a feature is not available in the current auth implementation
+ */
+declare class AuthFeatureNotAvailableError extends Error {
+  constructor(feature: string, authType: string);
+}
+//#endregion
+//#region src/lib/auth/basic-client.d.ts
+/**
+ * Basic auth client - minimal implementation
+ *
+ * Basic auth is stateless HTTP authentication, so most user management
+ * features are not available. This client provides stub implementations
+ * that throw helpful errors pointing users to the enterprise version.
+ */
+declare class BasicAuthClient implements AuthClient {
+  readonly type = "basic";
+  private config;
+  private authenticated;
+  constructor(config: BasicAuthConfig$1);
+  /**
+   * Set authentication status (called after successful basic auth)
+   */
+  setAuthenticated(status: boolean): void;
+  getSession(): Promise<Session | null>;
+  getCurrentUser(): Promise<User | null>;
+  isAuthenticated(): Promise<boolean>;
+  getUser(_userId: string): Promise<User | null>;
+  listUsers(_options?: PaginationOptions): Promise<PaginatedResponse<User>>;
+  createUser(_data: {
+    email: string;
+    name: string;
+    password: string;
+    role?: string;
+  }): Promise<User>;
+  updateUser(_userId: string, _data: Partial<Pick<User, 'name' | 'email' | 'role' | 'image'>>): Promise<User>;
+  deleteUser(_userId: string): Promise<void>;
+  getRole(_userId?: string): Promise<string | null>;
+  setRole(_userId: string, _role: string): Promise<void>;
+  hasPermission(_permission: {
+    resource: string;
+    action: string;
+  }, _userId?: string): Promise<boolean>;
+  getPermissions(_userId?: string): Promise<Permission[]>;
+  banUser(_userId: string, _reason?: string, _expiresAt?: Date): Promise<void>;
+  unbanUser(_userId: string): Promise<void>;
+  listUserSessions(_userId: string): Promise<Session[]>;
+  revokeSession(_sessionId: string): Promise<void>;
+  revokeAllSessions(_userId: string): Promise<void>;
+}
+/**
+ * Create a basic auth client
+ */
+declare function createBasicAuthClient(config: BasicAuthConfig$1): BasicAuthClient;
+//#endregion
+//#region src/lib/auth/index.d.ts
+type AuthConfig$1 = AuthConfig;
+type BasicAuthConfig$1 = BasicAuthConfig;
+/**
+ * Options for basic authentication
+ */
+interface BasicAuthOptions {
+  /**
+   * Default username for basic auth
+   * @example "admin@example.com"
+   */
+  username: string;
+  /**
+   * Default password for basic auth
+   * Should be changed in production!
+   */
+  password: string;
+}
+/**
+ * Create a basic auth configuration
+ *
+ * @example
+ * ```typescript
+ * import { llmops, basicAuth } from '@llmops/sdk';
+ *
+ * const client = llmops({
+ *   database: pool,
+ *   basePath: '/llmops',
+ *   providers: { openai: { apiKey: '...' } },
+ *   auth: basicAuth({
+ *     username: 'admin@example.com',
+ *     password: 'secure-password',
+ *   }),
+ * });
+ * ```
+ */
+declare function basicAuth(options: BasicAuthOptions): BasicAuthConfig$1;
+//#endregion
+//#region src/client/index.d.ts
+type LLMOpsClient = {
+  handler: (request: Request) => Promise<Response>;
+  config: LLMOpsConfig;
+  /**
+   * Auth client for managing authentication
+   *
+   * For basic auth (open source):
+   * - isAuthenticated(), hasPermission() work
+   * - User management methods throw AuthFeatureNotAvailableError
+   *
+   * For enterprise auth:
+   * - All methods available (user CRUD, RBAC, sessions, banning)
+   */
+  authClient: AuthClient;
+};
+declare const createLLMOps: (config: LLMOpsConfig) => LLMOpsClient;
+//#endregion
+export { BasicAuthOptions as a, createBasicAuthClient as c, PaginatedResponse as d, PaginationOptions as f, User as h, BasicAuthConfig$1 as i, AuthClient as l, Session as m, createLLMOps as n, basicAuth as o, Permission as p, AuthConfig$1 as r, BasicAuthClient as s, LLMOpsClient as t, AuthFeatureNotAvailableError as u };

package/dist/{index-BL6HTepw.d.mts → index-C80aPeNg.d.mts}

@@ -1,4 +1,4 @@
-import { t as LLMOpsClient } from "./index-BFiKnXi1.mjs";
+import { t as LLMOpsClient } from "./index-DHPNzRoF.mjs";
 import { NextFunction, Request, Response } from "express";
 
 //#region src/lib/express/index.d.ts

package/dist/index-DHPNzRoF.d.mts

@@ -0,0 +1,277 @@
+import { AuthConfig, BasicAuthConfig, LLMOpsConfig } from "@llmops/core";
+
+//#region src/lib/auth/client.d.ts
+
+/**
+ * Auth Client - Extensible authentication client for LLMOps
+ *
+ * Open source: BasicAuthClient with limited functionality
+ * Enterprise: Can extend with full user management, RBAC, SSO, etc.
+ */
+/**
+ * User representation
+ */
+interface User {
+  id: string;
+  email: string;
+  name: string;
+  role: string | null;
+  emailVerified: boolean;
+  image: string | null;
+  banned: boolean | null;
+  banReason: string | null;
+  createdAt: Date;
+  updatedAt: Date;
+}
+/**
+ * Session representation
+ */
+interface Session {
+  id: string;
+  userId: string;
+  expiresAt: Date;
+  createdAt: Date;
+}
+/**
+ * Permission check result
+ */
+interface Permission {
+  resource: string;
+  action: string;
+  allowed: boolean;
+}
+/**
+ * Pagination options
+ */
+interface PaginationOptions {
+  limit?: number;
+  offset?: number;
+}
+/**
+ * Paginated response
+ */
+interface PaginatedResponse<T> {
+  data: T[];
+  total: number;
+  limit: number;
+  offset: number;
+}
+/**
+ * Base auth client interface
+ * All auth implementations must implement this interface
+ */
+interface AuthClient {
+  /**
+   * The type of auth client
+   */
+  readonly type: string;
+  /**
+   * Get the current session
+   * @returns Current session or null if not authenticated
+   */
+  getSession(): Promise<Session | null>;
+  /**
+   * Get the current authenticated user
+   * @returns Current user or null if not authenticated
+   */
+  getCurrentUser(): Promise<User | null>;
+  /**
+   * Check if currently authenticated
+   */
+  isAuthenticated(): Promise<boolean>;
+  /**
+   * Get a user by ID
+   * @param userId - The user ID
+   */
+  getUser(userId: string): Promise<User | null>;
+  /**
+   * List all users (paginated)
+   * @param options - Pagination options
+   */
+  listUsers(options?: PaginationOptions): Promise<PaginatedResponse<User>>;
+  /**
+   * Create a new user
+   * @param data - User data
+   */
+  createUser(data: {
+    email: string;
+    name: string;
+    password: string;
+    role?: string;
+  }): Promise<User>;
+  /**
+   * Update a user
+   * @param userId - The user ID
+   * @param data - Fields to update
+   */
+  updateUser(userId: string, data: Partial<Pick<User, 'name' | 'email' | 'role' | 'image'>>): Promise<User>;
+  /**
+   * Delete a user
+   * @param userId - The user ID
+   */
+  deleteUser(userId: string): Promise<void>;
+  /**
+   * Get user's role
+   * @param userId - The user ID (optional, defaults to current user)
+   */
+  getRole(userId?: string): Promise<string | null>;
+  /**
+   * Set user's role
+   * @param userId - The user ID
+   * @param role - The role to set
+   */
+  setRole(userId: string, role: string): Promise<void>;
+  /**
+   * Check if user has permission
+   * @param permission - Permission to check (e.g., { resource: 'configs', action: 'create' })
+   * @param userId - The user ID (optional, defaults to current user)
+   */
+  hasPermission(permission: {
+    resource: string;
+    action: string;
+  }, userId?: string): Promise<boolean>;
+  /**
+   * Get all permissions for a user
+   * @param userId - The user ID (optional, defaults to current user)
+   */
+  getPermissions(userId?: string): Promise<Permission[]>;
+  /**
+   * Ban a user
+   * @param userId - The user ID
+   * @param reason - Optional ban reason
+   * @param expiresAt - Optional expiration date
+   */
+  banUser(userId: string, reason?: string, expiresAt?: Date): Promise<void>;
+  /**
+   * Unban a user
+   * @param userId - The user ID
+   */
+  unbanUser(userId: string): Promise<void>;
+  /**
+   * List all sessions for a user
+   * @param userId - The user ID
+   */
+  listUserSessions(userId: string): Promise<Session[]>;
+  /**
+   * Revoke a specific session
+   * @param sessionId - The session ID
+   */
+  revokeSession(sessionId: string): Promise<void>;
+  /**
+   * Revoke all sessions for a user
+   * @param userId - The user ID
+   */
+  revokeAllSessions(userId: string): Promise<void>;
+}
+/**
+ * Error thrown when a feature is not available in the current auth implementation
+ */
+declare class AuthFeatureNotAvailableError extends Error {
+  constructor(feature: string, authType: string);
+}
+//#endregion
+//#region src/lib/auth/basic-client.d.ts
+/**
+ * Basic auth client - minimal implementation
+ *
+ * Basic auth is stateless HTTP authentication, so most user management
+ * features are not available. This client provides stub implementations
+ * that throw helpful errors pointing users to the enterprise version.
+ */
+declare class BasicAuthClient implements AuthClient {
+  readonly type = "basic";
+  private config;
+  private authenticated;
+  constructor(config: BasicAuthConfig$1);
+  /**
+   * Set authentication status (called after successful basic auth)
+   */
+  setAuthenticated(status: boolean): void;
+  getSession(): Promise<Session | null>;
+  getCurrentUser(): Promise<User | null>;
+  isAuthenticated(): Promise<boolean>;
+  getUser(_userId: string): Promise<User | null>;
+  listUsers(_options?: PaginationOptions): Promise<PaginatedResponse<User>>;
+  createUser(_data: {
+    email: string;
+    name: string;
+    password: string;
+    role?: string;
+  }): Promise<User>;
+  updateUser(_userId: string, _data: Partial<Pick<User, 'name' | 'email' | 'role' | 'image'>>): Promise<User>;
+  deleteUser(_userId: string): Promise<void>;
+  getRole(_userId?: string): Promise<string | null>;
+  setRole(_userId: string, _role: string): Promise<void>;
+  hasPermission(_permission: {
+    resource: string;
+    action: string;
+  }, _userId?: string): Promise<boolean>;
+  getPermissions(_userId?: string): Promise<Permission[]>;
+  banUser(_userId: string, _reason?: string, _expiresAt?: Date): Promise<void>;
+  unbanUser(_userId: string): Promise<void>;
+  listUserSessions(_userId: string): Promise<Session[]>;
+  revokeSession(_sessionId: string): Promise<void>;
+  revokeAllSessions(_userId: string): Promise<void>;
+}
+/**
+ * Create a basic auth client
+ */
+declare function createBasicAuthClient(config: BasicAuthConfig$1): BasicAuthClient;
+//#endregion
+//#region src/lib/auth/index.d.ts
+type AuthConfig$1 = AuthConfig;
+type BasicAuthConfig$1 = BasicAuthConfig;
+/**
+ * Options for basic authentication
+ */
+interface BasicAuthOptions {
+  /**
+   * Default username for basic auth
+   * @example "admin@example.com"
+   */
+  username: string;
+  /**
+   * Default password for basic auth
+   * Should be changed in production!
+   */
+  password: string;
+}
+/**
+ * Create a basic auth configuration
+ *
+ * @example
+ * ```typescript
+ * import { llmops, basicAuth } from '@llmops/sdk';
+ *
+ * const client = llmops({
+ *   database: pool,
+ *   basePath: '/llmops',
+ *   providers: { openai: { apiKey: '...' } },
+ *   auth: basicAuth({
+ *     username: 'admin@example.com',
+ *     password: 'secure-password',
+ *   }),
+ * });
+ * ```
+ */
+declare function basicAuth(options: BasicAuthOptions): BasicAuthConfig$1;
+//#endregion
+//#region src/client/index.d.ts
+type LLMOpsClient = {
+  handler: (request: Request) => Promise<Response>;
+  config: LLMOpsConfig;
+  /**
+   * Auth client for managing authentication
+   *
+   * For basic auth (open source):
+   * - isAuthenticated(), hasPermission() work
+   * - User management methods throw AuthFeatureNotAvailableError
+   *
+   * For enterprise auth:
+   * - All methods available (user CRUD, RBAC, sessions, banning)
+   */
+  authClient: AuthClient;
+};
+declare const createLLMOps: (config: LLMOpsConfig) => LLMOpsClient;
+//#endregion
+export { BasicAuthOptions as a, createBasicAuthClient as c, PaginatedResponse as d, PaginationOptions as f, User as h, BasicAuthConfig$1 as i, AuthClient as l, Session as m, createLLMOps as n, basicAuth as o, Permission as p, AuthConfig$1 as r, BasicAuthClient as s, LLMOpsClient as t, AuthFeatureNotAvailableError as u };

package/dist/{index-UQjBf1t7.d.cts → index-DuwhMev_.d.cts}

@@ -1,4 +1,4 @@
-import { t as LLMOpsClient } from "./index-fafxrrPF.cjs";
+import { t as LLMOpsClient } from "./index-B4kndBdY.cjs";
 import { NextFunction, Request, Response } from "express";
 
 //#region src/lib/express/index.d.ts

package/dist/index.cjs

@@ -2,15 +2,179 @@ const require_express = require('./express-B-wbCza5.cjs');
 require("@llmops/core");
 let __llmops_app = require("@llmops/app");
 
+//#region src/lib/auth/client.ts
+/**
+* Error thrown when a feature is not available in the current auth implementation
+*/
+var AuthFeatureNotAvailableError = class extends Error {
+	constructor(feature, authType) {
+		super(`The "${feature}" feature is not available with "${authType}" auth. Upgrade to @llmops/enterprise for full auth functionality.`);
+		this.name = "AuthFeatureNotAvailableError";
+	}
+};
+
+//#endregion
+//#region src/lib/auth/basic-client.ts
+/**
+* Basic auth client - minimal implementation
+*
+* Basic auth is stateless HTTP authentication, so most user management
+* features are not available. This client provides stub implementations
+* that throw helpful errors pointing users to the enterprise version.
+*/
+var BasicAuthClient = class {
+	type = "basic";
+	config;
+	authenticated = false;
+	constructor(config) {
+		this.config = config;
+	}
+	/**
+	* Set authentication status (called after successful basic auth)
+	*/
+	setAuthenticated(status) {
+		this.authenticated = status;
+	}
+	async getSession() {
+		if (!this.authenticated) return null;
+		return {
+			id: "basic-auth-session",
+			userId: "basic-auth-user",
+			expiresAt: new Date(Date.now() + 1440 * 60 * 1e3),
+			createdAt: /* @__PURE__ */ new Date()
+		};
+	}
+	async getCurrentUser() {
+		if (!this.authenticated) return null;
+		return {
+			id: "basic-auth-user",
+			email: this.config.defaultUser,
+			name: "Admin",
+			role: "admin",
+			emailVerified: true,
+			image: null,
+			banned: false,
+			banReason: null,
+			createdAt: /* @__PURE__ */ new Date(),
+			updatedAt: /* @__PURE__ */ new Date()
+		};
+	}
+	async isAuthenticated() {
+		return this.authenticated;
+	}
+	async getUser(_userId) {
+		throw new AuthFeatureNotAvailableError("getUser", this.type);
+	}
+	async listUsers(_options) {
+		throw new AuthFeatureNotAvailableError("listUsers", this.type);
+	}
+	async createUser(_data) {
+		throw new AuthFeatureNotAvailableError("createUser", this.type);
+	}
+	async updateUser(_userId, _data) {
+		throw new AuthFeatureNotAvailableError("updateUser", this.type);
+	}
+	async deleteUser(_userId) {
+		throw new AuthFeatureNotAvailableError("deleteUser", this.type);
+	}
+	async getRole(_userId) {
+		if (this.authenticated) return "admin";
+		return null;
+	}
+	async setRole(_userId, _role) {
+		throw new AuthFeatureNotAvailableError("setRole", this.type);
+	}
+	async hasPermission(_permission, _userId) {
+		return this.authenticated;
+	}
+	async getPermissions(_userId) {
+		if (!this.authenticated) return [];
+		return [{
+			resource: "*",
+			action: "*",
+			allowed: true
+		}];
+	}
+	async banUser(_userId, _reason, _expiresAt) {
+		throw new AuthFeatureNotAvailableError("banUser", this.type);
+	}
+	async unbanUser(_userId) {
+		throw new AuthFeatureNotAvailableError("unbanUser", this.type);
+	}
+	async listUserSessions(_userId) {
+		throw new AuthFeatureNotAvailableError("listUserSessions", this.type);
+	}
+	async revokeSession(_sessionId) {
+		throw new AuthFeatureNotAvailableError("revokeSession", this.type);
+	}
+	async revokeAllSessions(_userId) {
+		throw new AuthFeatureNotAvailableError("revokeAllSessions", this.type);
+	}
+};
+/**
+* Create a basic auth client
+*/
+function createBasicAuthClient(config) {
+	return new BasicAuthClient(config);
+}
+
+//#endregion
+//#region src/lib/auth/index.ts
+/**
+* Create a basic auth configuration
+*
+* @example
+* ```typescript
+* import { llmops, basicAuth } from '@llmops/sdk';
+*
+* const client = llmops({
+*   database: pool,
+*   basePath: '/llmops',
+*   providers: { openai: { apiKey: '...' } },
+*   auth: basicAuth({
+*     username: 'admin@example.com',
+*     password: 'secure-password',
+*   }),
+* });
+* ```
+*/
+function basicAuth(options) {
+	if (!options.username || options.username.length === 0) throw new Error("basicAuth: username is required");
+	if (!options.password || options.password.length === 0) throw new Error("basicAuth: password is required");
+	return Object.freeze({
+		type: "basic",
+		defaultUser: options.username,
+		defaultPassword: options.password
+	});
+}
+
+//#endregion
 //#region src/client/index.ts
+/**
+* Create an auth client based on the auth config type
+*/
+function createAuthClient(auth) {
+	if (auth.type === "basic" && typeof auth.defaultUser === "string" && typeof auth.defaultPassword === "string") return new BasicAuthClient({
+		type: "basic",
+		defaultUser: auth.defaultUser,
+		defaultPassword: auth.defaultPassword
+	});
+	throw new Error(`Unknown auth type "${auth.type}". Use basicAuth() from @llmops/sdk or upgrade to @llmops/enterprise for advanced auth.`);
+}
 const createLLMOps = (config) => {
 	const { app } = (0, __llmops_app.createApp)(config);
+	const authClient = createAuthClient(config.auth);
 	return {
 		handler: async (req) => app.fetch(req, void 0, void 0),
-		config: Object.freeze(config)
+		config: Object.freeze(config),
+		authClient
 	};
 };
 
 //#endregion
+exports.AuthFeatureNotAvailableError = AuthFeatureNotAvailableError;
+exports.BasicAuthClient = BasicAuthClient;
+exports.basicAuth = basicAuth;
+exports.createBasicAuthClient = createBasicAuthClient;
 exports.createLLMOpsMiddleware = require_express.createLLMOpsMiddleware;
 exports.llmops = createLLMOps;

package/dist/index.d.cts

@@ -1,3 +1,3 @@
-import { n as createLLMOps } from "./index-fafxrrPF.cjs";
-import { t as createLLMOpsMiddleware } from "./index-UQjBf1t7.cjs";
-export { createLLMOpsMiddleware, createLLMOps as llmops };
+import { a as BasicAuthOptions, c as createBasicAuthClient, d as PaginatedResponse, f as PaginationOptions, h as User, i as BasicAuthConfig, l as AuthClient, m as Session, n as createLLMOps, o as basicAuth, p as Permission, r as AuthConfig, s as BasicAuthClient, u as AuthFeatureNotAvailableError } from "./index-B4kndBdY.cjs";
+import { t as createLLMOpsMiddleware } from "./index-DuwhMev_.cjs";
+export { AuthClient, AuthConfig, AuthFeatureNotAvailableError, BasicAuthClient, BasicAuthConfig, BasicAuthOptions, PaginatedResponse, PaginationOptions, Permission, Session, User, basicAuth, createBasicAuthClient, createLLMOpsMiddleware, createLLMOps as llmops };

package/dist/index.d.mts

@@ -1,3 +1,3 @@
-import { n as createLLMOps } from "./index-BFiKnXi1.mjs";
-import { t as createLLMOpsMiddleware } from "./index-BL6HTepw.mjs";
-export { createLLMOpsMiddleware, createLLMOps as llmops };
+import { a as BasicAuthOptions, c as createBasicAuthClient, d as PaginatedResponse, f as PaginationOptions, h as User, i as BasicAuthConfig, l as AuthClient, m as Session, n as createLLMOps, o as basicAuth, p as Permission, r as AuthConfig, s as BasicAuthClient, u as AuthFeatureNotAvailableError } from "./index-DHPNzRoF.mjs";
+import { t as createLLMOpsMiddleware } from "./index-C80aPeNg.mjs";
+export { AuthClient, AuthConfig, AuthFeatureNotAvailableError, BasicAuthClient, BasicAuthConfig, BasicAuthOptions, PaginatedResponse, PaginationOptions, Permission, Session, User, basicAuth, createBasicAuthClient, createLLMOpsMiddleware, createLLMOps as llmops };

package/dist/index.mjs

@@ -2,14 +2,174 @@ import { t as createLLMOpsMiddleware } from "./express-BXdOPP-q.mjs";
 import "@llmops/core";
 import { createApp } from "@llmops/app";
 
+//#region src/lib/auth/client.ts
+/**
+* Error thrown when a feature is not available in the current auth implementation
+*/
+var AuthFeatureNotAvailableError = class extends Error {
+	constructor(feature, authType) {
+		super(`The "${feature}" feature is not available with "${authType}" auth. Upgrade to @llmops/enterprise for full auth functionality.`);
+		this.name = "AuthFeatureNotAvailableError";
+	}
+};
+
+//#endregion
+//#region src/lib/auth/basic-client.ts
+/**
+* Basic auth client - minimal implementation
+*
+* Basic auth is stateless HTTP authentication, so most user management
+* features are not available. This client provides stub implementations
+* that throw helpful errors pointing users to the enterprise version.
+*/
+var BasicAuthClient = class {
+	type = "basic";
+	config;
+	authenticated = false;
+	constructor(config) {
+		this.config = config;
+	}
+	/**
+	* Set authentication status (called after successful basic auth)
+	*/
+	setAuthenticated(status) {
+		this.authenticated = status;
+	}
+	async getSession() {
+		if (!this.authenticated) return null;
+		return {
+			id: "basic-auth-session",
+			userId: "basic-auth-user",
+			expiresAt: new Date(Date.now() + 1440 * 60 * 1e3),
+			createdAt: /* @__PURE__ */ new Date()
+		};
+	}
+	async getCurrentUser() {
+		if (!this.authenticated) return null;
+		return {
+			id: "basic-auth-user",
+			email: this.config.defaultUser,
+			name: "Admin",
+			role: "admin",
+			emailVerified: true,
+			image: null,
+			banned: false,
+			banReason: null,
+			createdAt: /* @__PURE__ */ new Date(),
+			updatedAt: /* @__PURE__ */ new Date()
+		};
+	}
+	async isAuthenticated() {
+		return this.authenticated;
+	}
+	async getUser(_userId) {
+		throw new AuthFeatureNotAvailableError("getUser", this.type);
+	}
+	async listUsers(_options) {
+		throw new AuthFeatureNotAvailableError("listUsers", this.type);
+	}
+	async createUser(_data) {
+		throw new AuthFeatureNotAvailableError("createUser", this.type);
+	}
+	async updateUser(_userId, _data) {
+		throw new AuthFeatureNotAvailableError("updateUser", this.type);
+	}
+	async deleteUser(_userId) {
+		throw new AuthFeatureNotAvailableError("deleteUser", this.type);
+	}
+	async getRole(_userId) {
+		if (this.authenticated) return "admin";
+		return null;
+	}
+	async setRole(_userId, _role) {
+		throw new AuthFeatureNotAvailableError("setRole", this.type);
+	}
+	async hasPermission(_permission, _userId) {
+		return this.authenticated;
+	}
+	async getPermissions(_userId) {
+		if (!this.authenticated) return [];
+		return [{
+			resource: "*",
+			action: "*",
+			allowed: true
+		}];
+	}
+	async banUser(_userId, _reason, _expiresAt) {
+		throw new AuthFeatureNotAvailableError("banUser", this.type);
+	}
+	async unbanUser(_userId) {
+		throw new AuthFeatureNotAvailableError("unbanUser", this.type);
+	}
+	async listUserSessions(_userId) {
+		throw new AuthFeatureNotAvailableError("listUserSessions", this.type);
+	}
+	async revokeSession(_sessionId) {
+		throw new AuthFeatureNotAvailableError("revokeSession", this.type);
+	}
+	async revokeAllSessions(_userId) {
+		throw new AuthFeatureNotAvailableError("revokeAllSessions", this.type);
+	}
+};
+/**
+* Create a basic auth client
+*/
+function createBasicAuthClient(config) {
+	return new BasicAuthClient(config);
+}
+
+//#endregion
+//#region src/lib/auth/index.ts
+/**
+* Create a basic auth configuration
+*
+* @example
+* ```typescript
+* import { llmops, basicAuth } from '@llmops/sdk';
+*
+* const client = llmops({
+*   database: pool,
+*   basePath: '/llmops',
+*   providers: { openai: { apiKey: '...' } },
+*   auth: basicAuth({
+*     username: 'admin@example.com',
+*     password: 'secure-password',
+*   }),
+* });
+* ```
+*/
+function basicAuth(options) {
+	if (!options.username || options.username.length === 0) throw new Error("basicAuth: username is required");
+	if (!options.password || options.password.length === 0) throw new Error("basicAuth: password is required");
+	return Object.freeze({
+		type: "basic",
+		defaultUser: options.username,
+		defaultPassword: options.password
+	});
+}
+
+//#endregion
 //#region src/client/index.ts
+/**
+* Create an auth client based on the auth config type
+*/
+function createAuthClient(auth) {
+	if (auth.type === "basic" && typeof auth.defaultUser === "string" && typeof auth.defaultPassword === "string") return new BasicAuthClient({
+		type: "basic",
+		defaultUser: auth.defaultUser,
+		defaultPassword: auth.defaultPassword
+	});
+	throw new Error(`Unknown auth type "${auth.type}". Use basicAuth() from @llmops/sdk or upgrade to @llmops/enterprise for advanced auth.`);
+}
 const createLLMOps = (config) => {
 	const { app } = createApp(config);
+	const authClient = createAuthClient(config.auth);
 	return {
 		handler: async (req) => app.fetch(req, void 0, void 0),
-		config: Object.freeze(config)
+		config: Object.freeze(config),
+		authClient
 	};
 };
 
 //#endregion
-export { createLLMOpsMiddleware, createLLMOps as llmops };
+export { AuthFeatureNotAvailableError, BasicAuthClient, basicAuth, createBasicAuthClient, createLLMOpsMiddleware, createLLMOps as llmops };

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@llmops/sdk",
-  "version": "0.1.1",
+  "version": "0.1.2-beta.2",
   "description": "An LLMOps toolkit for TypeScript applications",
   "type": "module",
   "license": "Apache-2.0",
@@ -57,8 +57,8 @@
     "access": "public"
   },
   "dependencies": {
-    "@llmops/app": "^0.1.1",
-    "@llmops/core": "^0.1.1"
+    "@llmops/app": "^0.1.2-beta.2",
+    "@llmops/core": "^0.1.2-beta.2"
   },
   "devDependencies": {
     "@types/express": "^5.0.6",

package/dist/index-BFiKnXi1.d.mts

@@ -1,10 +0,0 @@
-import { LLMOpsConfig } from "@llmops/core";
-
-//#region src/client/index.d.ts
-type LLMOpsClient = {
-  handler: (request: Request) => Promise<Response>;
-  config: LLMOpsConfig;
-};
-declare const createLLMOps: (config: LLMOpsConfig) => LLMOpsClient;
-//#endregion
-export { createLLMOps as n, LLMOpsClient as t };

package/dist/index-fafxrrPF.d.cts

@@ -1,10 +0,0 @@
-import { LLMOpsConfig } from "@llmops/core";
-
-//#region src/client/index.d.ts
-type LLMOpsClient = {
-  handler: (request: Request) => Promise<Response>;
-  config: LLMOpsConfig;
-};
-declare const createLLMOps: (config: LLMOpsConfig) => LLMOpsClient;
-//#endregion
-export { createLLMOps as n, LLMOpsClient as t };