@omnikit-ai/sdk 2.0.3 → 2.0.5

package/dist/index.d.mts

@@ -884,6 +884,24 @@ interface OmnikitClient {
      * @returns Response from the function
      */
     invokeFunction(functionName: string, body?: Record<string, any>): Promise<any>;
+    /**
+     * Get a secret value at runtime (for backend functions).
+     *
+     * This method securely fetches secrets from the Omnikit API using the app's API key.
+     * Use this in Supabase Edge Functions instead of storing secrets in Supabase's
+     * environment variables to ensure proper isolation between apps.
+     *
+     * @example
+     * ```typescript
+     * const stripeKey = await omnikit.getSecret('STRIPE_SECRET_KEY');
+     * const stripe = new Stripe(stripeKey);
+     * ```
+     *
+     * @param secretName - Name of the secret to retrieve
+     * @returns The decrypted secret value
+     * @throws Error if the secret is not found or API key is invalid
+     */
+    getSecret(secretName: string): Promise<string>;
 }
 /**
  * Request options for makeRequest
@@ -1244,7 +1262,8 @@ declare class APIClient implements OmnikitClient {
      */
     ensureInitialized(): Promise<void>;
     /**
-     * Initialize SDK by fetching app schema and integration endpoints
+     * Initialize SDK by fetching app schema (for collections and metadata)
+     * Services use static mappings - no schema fetch needed
      * This happens automatically on first use - no need to call explicitly
      */
     private initialize;
@@ -1369,6 +1388,31 @@ declare class APIClient implements OmnikitClient {
      * @throws Error if the function invocation fails
      */
     invokeFunction(functionName: string, body?: Record<string, any>): Promise<any>;
+    /**
+     * Get a secret value at runtime (for backend functions).
+     *
+     * This method securely fetches secrets from the Omnikit API using the app's API key.
+     * Use this in Supabase Edge Functions instead of storing secrets in Supabase's
+     * environment variables to ensure proper isolation between apps.
+     *
+     * @example
+     * ```typescript
+     * // In a backend function (Deno Edge Function)
+     * const omnikit = createClient({
+     *   appId: __OMNIKIT_APP_ID__,
+     *   serverUrl: __OMNIKIT_API_URL__,
+     *   apiKey: __OMNIKIT_API_KEY__,
+     * });
+     *
+     * const stripeKey = await omnikit.getSecret('STRIPE_SECRET_KEY');
+     * const stripe = new Stripe(stripeKey);
+     * ```
+     *
+     * @param secretName - Name of the secret to retrieve
+     * @returns The decrypted secret value
+     * @throws Error if the secret is not found or API key is invalid
+     */
+    getSecret(secretName: string): Promise<string>;
 }
 /**
  * Factory function to create an Omnikit client

package/dist/index.d.ts

@@ -884,6 +884,24 @@ interface OmnikitClient {
      * @returns Response from the function
      */
     invokeFunction(functionName: string, body?: Record<string, any>): Promise<any>;
+    /**
+     * Get a secret value at runtime (for backend functions).
+     *
+     * This method securely fetches secrets from the Omnikit API using the app's API key.
+     * Use this in Supabase Edge Functions instead of storing secrets in Supabase's
+     * environment variables to ensure proper isolation between apps.
+     *
+     * @example
+     * ```typescript
+     * const stripeKey = await omnikit.getSecret('STRIPE_SECRET_KEY');
+     * const stripe = new Stripe(stripeKey);
+     * ```
+     *
+     * @param secretName - Name of the secret to retrieve
+     * @returns The decrypted secret value
+     * @throws Error if the secret is not found or API key is invalid
+     */
+    getSecret(secretName: string): Promise<string>;
 }
 /**
  * Request options for makeRequest
@@ -1244,7 +1262,8 @@ declare class APIClient implements OmnikitClient {
      */
     ensureInitialized(): Promise<void>;
     /**
-     * Initialize SDK by fetching app schema and integration endpoints
+     * Initialize SDK by fetching app schema (for collections and metadata)
+     * Services use static mappings - no schema fetch needed
      * This happens automatically on first use - no need to call explicitly
      */
     private initialize;
@@ -1369,6 +1388,31 @@ declare class APIClient implements OmnikitClient {
      * @throws Error if the function invocation fails
      */
     invokeFunction(functionName: string, body?: Record<string, any>): Promise<any>;
+    /**
+     * Get a secret value at runtime (for backend functions).
+     *
+     * This method securely fetches secrets from the Omnikit API using the app's API key.
+     * Use this in Supabase Edge Functions instead of storing secrets in Supabase's
+     * environment variables to ensure proper isolation between apps.
+     *
+     * @example
+     * ```typescript
+     * // In a backend function (Deno Edge Function)
+     * const omnikit = createClient({
+     *   appId: __OMNIKIT_APP_ID__,
+     *   serverUrl: __OMNIKIT_API_URL__,
+     *   apiKey: __OMNIKIT_API_KEY__,
+     * });
+     *
+     * const stripeKey = await omnikit.getSecret('STRIPE_SECRET_KEY');
+     * const stripe = new Stripe(stripeKey);
+     * ```
+     *
+     * @param secretName - Name of the secret to retrieve
+     * @returns The decrypted secret value
+     * @throws Error if the secret is not found or API key is invalid
+     */
+    getSecret(secretName: string): Promise<string>;
 }
 /**
  * Factory function to create an Omnikit client

package/dist/index.js

@@ -1148,15 +1148,57 @@ Example: await ${collectionName}.list({ limit: 100, sort: '-created_at' })`,
                 return client.streamLLMResponse(params);
               }
             }
+            let response;
             const method = client._services[serviceName];
-            if (!method) {
-              throw new OmnikitError(
-                `Service '${serviceName}' not found. Available services: ${Object.keys(client._services).join(", ")}`,
-                404,
-                "SERVICE_NOT_FOUND"
+            if (method) {
+              response = await method(params, useServiceToken);
+            } else {
+              const servicePathMap = {
+                "SendEmail": "email/send",
+                "InvokeLLM": "llm/invoke",
+                "GenerateImage": "image/generate",
+                "GenerateSpeech": "speech/generate",
+                "GenerateVideo": "video/generate",
+                "ExtractData": "extract/data",
+                "SendSMS": "sms/send",
+                "UploadFile": "storage/upload",
+                "UploadPrivateFile": "storage/upload-private",
+                "CreateFileSignedUrl": "storage/signed-url"
+              };
+              const servicePath = servicePathMap[serviceName];
+              if (!servicePath) {
+                throw new OmnikitError(
+                  `Service '${serviceName}' not found. Known services: ${Object.keys(servicePathMap).join(", ")}`,
+                  404,
+                  "SERVICE_NOT_FOUND"
+                );
+              }
+              const headers = {
+                "Content-Type": "application/json"
+              };
+              if (client._apiKey) {
+                headers["X-API-Key"] = client._apiKey;
+              } else if (client.userToken) {
+                headers["Authorization"] = `Bearer ${client.userToken}`;
+              }
+              const fetchResponse = await fetch(
+                `${client.baseUrl}/apps/${client.appId}/integrations/${servicePath}`,
+                {
+                  method: "POST",
+                  headers,
+                  body: JSON.stringify(params || {})
+                }
               );
+              if (!fetchResponse.ok) {
+                const error = await fetchResponse.json().catch(() => ({}));
+                throw new OmnikitError(
+                  error.detail || `Service call failed: ${fetchResponse.statusText}`,
+                  fetchResponse.status,
+                  "SERVICE_CALL_FAILED"
+                );
+              }
+              response = await fetchResponse.json();
             }
-            const response = await method(params, useServiceToken);
             if (response && response.async && response.job_id) {
               if (asyncOptions?.returnJobId) {
                 return response;
@@ -1253,16 +1295,14 @@ Example: await ${collectionName}.list({ limit: 100, sort: '-created_at' })`,
     this.initPromise = null;
   }
   /**
-   * Initialize SDK by fetching app schema and integration endpoints
+   * Initialize SDK by fetching app schema (for collections and metadata)
+   * Services use static mappings - no schema fetch needed
    * This happens automatically on first use - no need to call explicitly
    */
   async initialize() {
     if (this.initialized) return;
     try {
-      const [appSchema, integrationSchema] = await Promise.all([
-        this.fetchAppSchema(),
-        this.fetchIntegrationSchema()
-      ]);
+      const appSchema = await this.fetchAppSchema();
       if (appSchema.app) {
         this.updateMetadataCache({
           name: appSchema.app.name,
@@ -1275,11 +1315,6 @@ Example: await ${collectionName}.list({ limit: 100, sort: '-created_at' })`,
       if (appSchema.entities) {
         this.createCollections(appSchema.entities);
       }
-      if (integrationSchema && "services" in integrationSchema) {
-        this.createServicesFromSchema(integrationSchema);
-      } else if (integrationSchema && "installed_packages" in integrationSchema) {
-        this.createIntegrationsFromSchema(integrationSchema);
-      }
       this.initialized = true;
     } catch (error) {
       console.error("Failed to initialize Omnikit SDK:", error);
@@ -2077,6 +2112,59 @@ Example: await ${collectionName}.list({ limit: 100, sort: '-created_at' })`,
     }
     return response;
   }
+  /**
+   * Get a secret value at runtime (for backend functions).
+   *
+   * This method securely fetches secrets from the Omnikit API using the app's API key.
+   * Use this in Supabase Edge Functions instead of storing secrets in Supabase's
+   * environment variables to ensure proper isolation between apps.
+   *
+   * @example
+   * ```typescript
+   * // In a backend function (Deno Edge Function)
+   * const omnikit = createClient({
+   *   appId: __OMNIKIT_APP_ID__,
+   *   serverUrl: __OMNIKIT_API_URL__,
+   *   apiKey: __OMNIKIT_API_KEY__,
+   * });
+   *
+   * const stripeKey = await omnikit.getSecret('STRIPE_SECRET_KEY');
+   * const stripe = new Stripe(stripeKey);
+   * ```
+   *
+   * @param secretName - Name of the secret to retrieve
+   * @returns The decrypted secret value
+   * @throws Error if the secret is not found or API key is invalid
+   */
+  async getSecret(secretName) {
+    if (!this._apiKey) {
+      throw new OmnikitError(
+        "API key is required to fetch secrets. Provide apiKey in config.",
+        403,
+        "API_KEY_REQUIRED"
+      );
+    }
+    const response = await fetch(
+      `${this.baseUrl}/apps/${this.appId}/secrets/${secretName}/value`,
+      {
+        method: "GET",
+        headers: {
+          "X-API-Key": this._apiKey,
+          "Content-Type": "application/json"
+        }
+      }
+    );
+    if (!response.ok) {
+      const error = await response.json().catch(() => ({}));
+      throw new OmnikitError(
+        error.detail || `Failed to fetch secret: ${response.statusText}`,
+        response.status,
+        "SECRET_FETCH_FAILED"
+      );
+    }
+    const data = await response.json();
+    return data.value;
+  }
 };
 function createClient(config) {
   return new APIClient(config);