@onkernel/sdk 0.23.0 → 0.24.0

package/src/resources/agents/auth/auth.ts

@@ -12,6 +12,7 @@ import {
 } from './invocations';
 import { APIPromise } from '../../../core/api-promise';
 import { OffsetPagination, type OffsetPaginationParams, PagePromise } from '../../../core/pagination';
+import { buildHeaders } from '../../../internal/headers';
 import { RequestOptions } from '../../../internal/request-options';
 import { path } from '../../../internal/utils/path';
 
@@ -66,6 +67,42 @@ export class Auth extends APIResource {
   ): PagePromise<AuthAgentsOffsetPagination, AuthAgent> {
     return this._client.getAPIList('/agents/auth', OffsetPagination<AuthAgent>, { query, ...options });
   }
+
+  /**
+   * Deletes an auth agent and terminates its workflow. This will:
+   *
+   * - Soft delete the auth agent record
+   * - Gracefully terminate the agent's Temporal workflow
+   * - Cancel any in-progress invocations
+   *
+   * @example
+   * ```ts
+   * await client.agents.auth.delete('id');
+   * ```
+   */
+  delete(id: string, options?: RequestOptions): APIPromise<void> {
+    return this._client.delete(path`/agents/auth/${id}`, {
+      ...options,
+      headers: buildHeaders([{ Accept: '*/*' }, options?.headers]),
+    });
+  }
+
+  /**
+   * Triggers automatic re-authentication for an auth agent using stored credentials.
+   * Requires the auth agent to have a linked credential, stored selectors, and
+   * login_url. Returns immediately with status indicating whether re-auth was
+   * started.
+   *
+   * @example
+   * ```ts
+   * const reauthResponse = await client.agents.auth.reauth(
+   *   'id',
+   * );
+   * ```
+   */
+  reauth(id: string, options?: RequestOptions): APIPromise<ReauthResponse> {
+    return this._client.post(path`/agents/auth/${id}/reauth`, options);
+  }
 }
 
 export type AuthAgentsOffsetPagination = OffsetPagination<AuthAgent>;
@@ -196,6 +233,27 @@ export interface AuthAgent {
    */
   status: 'AUTHENTICATED' | 'NEEDS_AUTH';
 
+  /**
+   * Whether automatic re-authentication is possible (has credential_id, selectors,
+   * and login_url)
+   */
+  can_reauth?: boolean;
+
+  /**
+   * ID of the linked credential for automatic re-authentication
+   */
+  credential_id?: string;
+
+  /**
+   * Name of the linked credential for automatic re-authentication
+   */
+  credential_name?: string;
+
+  /**
+   * Whether this auth agent has stored selectors for deterministic re-authentication
+   */
+  has_selectors?: boolean;
+
   /**
    * When the last authentication check was performed
    */
@@ -216,6 +274,13 @@ export interface AuthAgentCreateRequest {
    */
   target_domain: string;
 
+  /**
+   * Optional name of an existing credential to use for this auth agent. If provided,
+   * the credential will be linked to the agent and its values will be used to
+   * auto-fill the login form on invocation.
+   */
+  credential_name?: string;
+
   /**
    * Optional login page URL. If provided, will be stored on the agent and used to
    * skip discovery in future invocations.
@@ -248,31 +313,62 @@ export interface AuthAgentInvocationCreateRequest {
    * ID of the auth agent to create an invocation for
    */
   auth_agent_id: string;
+
+  /**
+   * If provided, saves the submitted credentials under this name upon successful
+   * login. The credential will be linked to the auth agent for automatic
+   * re-authentication.
+   */
+  save_credential_as?: string;
 }
 
 /**
- * Response from creating an auth agent invocation
+ * Response when the agent is already authenticated.
  */
-export interface AuthAgentInvocationCreateResponse {
-  /**
-   * When the handoff code expires
-   */
-  expires_at: string;
+export type AuthAgentInvocationCreateResponse =
+  | AuthAgentInvocationCreateResponse.AuthAgentAlreadyAuthenticated
+  | AuthAgentInvocationCreateResponse.AuthAgentInvocationCreated;
 
+export namespace AuthAgentInvocationCreateResponse {
   /**
-   * One-time code for handoff
+   * Response when the agent is already authenticated.
    */
-  handoff_code: string;
+  export interface AuthAgentAlreadyAuthenticated {
+    /**
+     * Indicates the agent is already authenticated and no invocation was created.
+     */
+    status: 'already_authenticated';
+  }
 
   /**
-   * URL to redirect user to
+   * Response when a new invocation was created.
    */
-  hosted_url: string;
+  export interface AuthAgentInvocationCreated {
+    /**
+     * When the handoff code expires.
+     */
+    expires_at: string;
 
-  /**
-   * Unique identifier for the invocation
-   */
-  invocation_id: string;
+    /**
+     * One-time code for handoff.
+     */
+    handoff_code: string;
+
+    /**
+     * URL to redirect user to.
+     */
+    hosted_url: string;
+
+    /**
+     * Unique identifier for the invocation.
+     */
+    invocation_id: string;
+
+    /**
+     * Indicates an invocation was created.
+     */
+    status: 'invocation_created';
+  }
 }
 
 /**
@@ -310,6 +406,26 @@ export interface DiscoveredField {
   required?: boolean;
 }
 
+/**
+ * Response from triggering re-authentication
+ */
+export interface ReauthResponse {
+  /**
+   * Result of the re-authentication attempt
+   */
+  status: 'reauth_started' | 'already_authenticated' | 'cannot_reauth';
+
+  /**
+   * ID of the re-auth invocation if one was created
+   */
+  invocation_id?: string;
+
+  /**
+   * Human-readable description of the result
+   */
+  message?: string;
+}
+
 export interface AuthCreateParams {
   /**
    * Name of the profile to use for this auth agent
@@ -321,6 +437,13 @@ export interface AuthCreateParams {
    */
   target_domain: string;
 
+  /**
+   * Optional name of an existing credential to use for this auth agent. If provided,
+   * the credential will be linked to the agent and its values will be used to
+   * auto-fill the login form on invocation.
+   */
+  credential_name?: string;
+
   /**
    * Optional login page URL. If provided, will be stored on the agent and used to
    * skip discovery in future invocations.
@@ -369,6 +492,7 @@ export declare namespace Auth {
     type AuthAgentInvocationCreateRequest as AuthAgentInvocationCreateRequest,
     type AuthAgentInvocationCreateResponse as AuthAgentInvocationCreateResponse,
     type DiscoveredField as DiscoveredField,
+    type ReauthResponse as ReauthResponse,
     type AuthAgentsOffsetPagination as AuthAgentsOffsetPagination,
     type AuthCreateParams as AuthCreateParams,
     type AuthListParams as AuthListParams,

package/src/resources/agents/auth/index.ts

@@ -10,6 +10,7 @@ export {
   type AuthAgentInvocationCreateRequest,
   type AuthAgentInvocationCreateResponse,
   type DiscoveredField,
+  type ReauthResponse,
   type AuthCreateParams,
   type AuthListParams,
   type AuthAgentsOffsetPagination,

package/src/resources/agents/auth/invocations.ts

@@ -132,6 +132,13 @@ export interface InvocationCreateParams {
    * ID of the auth agent to create an invocation for
    */
   auth_agent_id: string;
+
+  /**
+   * If provided, saves the submitted credentials under this name upon successful
+   * login. The credential will be linked to the auth agent for automatic
+   * re-authentication.
+   */
+  save_credential_as?: string;
 }
 
 export interface InvocationDiscoverParams {

package/src/resources/agents/index.ts

@@ -11,6 +11,7 @@ export {
   type AuthAgentInvocationCreateRequest,
   type AuthAgentInvocationCreateResponse,
   type DiscoveredField,
+  type ReauthResponse,
   type AuthCreateParams,
   type AuthListParams,
   type AuthAgentsOffsetPagination,

package/src/resources/browser-pools.ts

@@ -162,7 +162,7 @@ export interface BrowserPool {
   /**
    * Configuration used to create all browsers in this pool
    */
-  browser_pool_config: BrowserPoolRequest;
+  browser_pool_config: BrowserPool.BrowserPoolConfig;
 
   /**
    * Timestamp when the browser pool was created
@@ -175,118 +175,79 @@ export interface BrowserPool {
   name?: string;
 }
 
-/**
- * Request body for acquiring a browser from the pool.
- */
-export interface BrowserPoolAcquireRequest {
-  /**
-   * Maximum number of seconds to wait for a browser to be available. Defaults to the
-   * calculated time it would take to fill the pool at the currently configured fill
-   * rate.
-   */
-  acquire_timeout_seconds?: number;
-}
-
-/**
- * Request body for releasing a browser back to the pool.
- */
-export interface BrowserPoolReleaseRequest {
-  /**
-   * Browser session ID to release back to the pool
-   */
-  session_id: string;
-
-  /**
-   * Whether to reuse the browser instance or destroy it and create a new one.
-   * Defaults to true.
-   */
-  reuse?: boolean;
-}
-
-/**
- * Parameters for creating a browser pool. All browsers in the pool will be created
- * with the same configuration.
- */
-export interface BrowserPoolRequest {
-  /**
-   * Number of browsers to create in the pool
-   */
-  size: number;
-
-  /**
-   * List of browser extensions to load into the session. Provide each by id or name.
-   */
-  extensions?: Array<Shared.BrowserExtension>;
-
-  /**
-   * Percentage of the pool to fill per minute. Defaults to 10%.
-   */
-  fill_rate_per_minute?: number;
-
-  /**
-   * If true, launches the browser using a headless image. Defaults to false.
-   */
-  headless?: boolean;
-
-  /**
-   * If true, launches the browser in kiosk mode to hide address bar and tabs in live
-   * view.
-   */
-  kiosk_mode?: boolean;
-
-  /**
-   * Optional name for the browser pool. Must be unique within the organization.
-   */
-  name?: string;
-
-  /**
-   * Profile selection for the browser session. Provide either id or name. If
-   * specified, the matching profile will be loaded into the browser session.
-   * Profiles must be created beforehand.
-   */
-  profile?: Shared.BrowserProfile;
-
+export namespace BrowserPool {
   /**
-   * Optional proxy to associate to the browser session. Must reference a proxy
-   * belonging to the caller's org.
-   */
-  proxy_id?: string;
-
-  /**
-   * If true, launches the browser in stealth mode to reduce detection by anti-bot
-   * mechanisms.
-   */
-  stealth?: boolean;
-
-  /**
-   * Default idle timeout in seconds for browsers acquired from this pool before they
-   * are destroyed. Defaults to 600 seconds if not specified
-   */
-  timeout_seconds?: number;
-
-  /**
-   * Initial browser window size in pixels with optional refresh rate. If omitted,
-   * image defaults apply (1920x1080@25). Only specific viewport configurations are
-   * supported. The server will reject unsupported combinations. Supported
-   * resolutions are: 2560x1440@10, 1920x1080@25, 1920x1200@25, 1440x900@25,
-   * 1024x768@60, 1200x800@60 If refresh_rate is not provided, it will be
-   * automatically determined from the width and height if they match a supported
-   * configuration exactly. Note: Higher resolutions may affect the responsiveness of
-   * live view browser
-   */
-  viewport?: Shared.BrowserViewport;
-}
-
-/**
- * Parameters for updating a browser pool. All browsers in the pool will be created
- * with the same configuration.
- */
-export interface BrowserPoolUpdateRequest extends BrowserPoolRequest {
-  /**
-   * Whether to discard all idle browsers and rebuild the pool immediately. Defaults
-   * to false.
+   * Configuration used to create all browsers in this pool
    */
-  discard_all_idle?: boolean;
+  export interface BrowserPoolConfig {
+    /**
+     * Number of browsers to create in the pool
+     */
+    size: number;
+
+    /**
+     * List of browser extensions to load into the session. Provide each by id or name.
+     */
+    extensions?: Array<Shared.BrowserExtension>;
+
+    /**
+     * Percentage of the pool to fill per minute. Defaults to 10%.
+     */
+    fill_rate_per_minute?: number;
+
+    /**
+     * If true, launches the browser using a headless image. Defaults to false.
+     */
+    headless?: boolean;
+
+    /**
+     * If true, launches the browser in kiosk mode to hide address bar and tabs in live
+     * view.
+     */
+    kiosk_mode?: boolean;
+
+    /**
+     * Optional name for the browser pool. Must be unique within the organization.
+     */
+    name?: string;
+
+    /**
+     * Profile selection for the browser session. Provide either id or name. If
+     * specified, the matching profile will be loaded into the browser session.
+     * Profiles must be created beforehand.
+     */
+    profile?: Shared.BrowserProfile;
+
+    /**
+     * Optional proxy to associate to the browser session. Must reference a proxy
+     * belonging to the caller's org.
+     */
+    proxy_id?: string;
+
+    /**
+     * If true, launches the browser in stealth mode to reduce detection by anti-bot
+     * mechanisms.
+     */
+    stealth?: boolean;
+
+    /**
+     * Default idle timeout in seconds for browsers acquired from this pool before they
+     * are destroyed. Defaults to 600 seconds if not specified
+     */
+    timeout_seconds?: number;
+
+    /**
+     * Initial browser window size in pixels with optional refresh rate. If omitted,
+     * image defaults apply (1920x1080@25). Only specific viewport configurations are
+     * supported. The server will reject unsupported combinations. Supported
+     * resolutions are: 2560x1440@10, 1920x1080@25, 1920x1200@25, 1440x900@25,
+     * 1024x768@60, 1200x800@60 If refresh_rate is not provided, it will be
+     * automatically determined from the width and height if they match a supported
+     * configuration exactly. Note: Higher resolutions may affect the responsiveness of
+     * live view browser
+     */
+    viewport?: Shared.BrowserViewport;
+  }
 }
 
 export type BrowserPoolListResponse = Array<BrowserPool>;
@@ -546,10 +507,6 @@ export interface BrowserPoolReleaseParams {
 export declare namespace BrowserPools {
   export {
     type BrowserPool as BrowserPool,
-    type BrowserPoolAcquireRequest as BrowserPoolAcquireRequest,
-    type BrowserPoolReleaseRequest as BrowserPoolReleaseRequest,
-    type BrowserPoolRequest as BrowserPoolRequest,
-    type BrowserPoolUpdateRequest as BrowserPoolUpdateRequest,
     type BrowserPoolListResponse as BrowserPoolListResponse,
     type BrowserPoolAcquireResponse as BrowserPoolAcquireResponse,
     type BrowserPoolCreateParams as BrowserPoolCreateParams,

package/src/resources/credentials.ts

@@ -0,0 +1,205 @@
+// File generated from our OpenAPI spec by Stainless. See CONTRIBUTING.md for details.
+
+import { APIResource } from '../core/resource';
+import { APIPromise } from '../core/api-promise';
+import { OffsetPagination, type OffsetPaginationParams, PagePromise } from '../core/pagination';
+import { buildHeaders } from '../internal/headers';
+import { RequestOptions } from '../internal/request-options';
+import { path } from '../internal/utils/path';
+
+export class Credentials extends APIResource {
+  /**
+   * Create a new credential for storing login information. Values are encrypted at
+   * rest.
+   *
+   * @example
+   * ```ts
+   * const credential = await client.credentials.create({
+   *   domain: 'netflix.com',
+   *   name: 'my-netflix-login',
+   *   values: {
+   *     username: 'user@example.com',
+   *     password: 'mysecretpassword',
+   *   },
+   * });
+   * ```
+   */
+  create(body: CredentialCreateParams, options?: RequestOptions): APIPromise<Credential> {
+    return this._client.post('/credentials', { body, ...options });
+  }
+
+  /**
+   * Retrieve a credential by its ID. Credential values are not returned.
+   *
+   * @example
+   * ```ts
+   * const credential = await client.credentials.retrieve('id');
+   * ```
+   */
+  retrieve(id: string, options?: RequestOptions): APIPromise<Credential> {
+    return this._client.get(path`/credentials/${id}`, options);
+  }
+
+  /**
+   * Update a credential's name or values. Values are encrypted at rest.
+   *
+   * @example
+   * ```ts
+   * const credential = await client.credentials.update('id');
+   * ```
+   */
+  update(id: string, body: CredentialUpdateParams, options?: RequestOptions): APIPromise<Credential> {
+    return this._client.patch(path`/credentials/${id}`, { body, ...options });
+  }
+
+  /**
+   * List credentials owned by the caller's organization. Credential values are not
+   * returned.
+   *
+   * @example
+   * ```ts
+   * // Automatically fetches more pages as needed.
+   * for await (const credential of client.credentials.list()) {
+   *   // ...
+   * }
+   * ```
+   */
+  list(
+    query: CredentialListParams | null | undefined = {},
+    options?: RequestOptions,
+  ): PagePromise<CredentialsOffsetPagination, Credential> {
+    return this._client.getAPIList('/credentials', OffsetPagination<Credential>, { query, ...options });
+  }
+
+  /**
+   * Delete a credential by its ID.
+   *
+   * @example
+   * ```ts
+   * await client.credentials.delete('id');
+   * ```
+   */
+  delete(id: string, options?: RequestOptions): APIPromise<void> {
+    return this._client.delete(path`/credentials/${id}`, {
+      ...options,
+      headers: buildHeaders([{ Accept: '*/*' }, options?.headers]),
+    });
+  }
+}
+
+export type CredentialsOffsetPagination = OffsetPagination<Credential>;
+
+/**
+ * Request to create a new credential
+ */
+export interface CreateCredentialRequest {
+  /**
+   * Target domain this credential is for
+   */
+  domain: string;
+
+  /**
+   * Unique name for the credential within the organization
+   */
+  name: string;
+
+  /**
+   * Field name to value mapping (e.g., username, password)
+   */
+  values: { [key: string]: string };
+}
+
+/**
+ * A stored credential for automatic re-authentication
+ */
+export interface Credential {
+  /**
+   * Unique identifier for the credential
+   */
+  id: string;
+
+  /**
+   * When the credential was created
+   */
+  created_at: string;
+
+  /**
+   * Target domain this credential is for
+   */
+  domain: string;
+
+  /**
+   * Unique name for the credential within the organization
+   */
+  name: string;
+
+  /**
+   * When the credential was last updated
+   */
+  updated_at: string;
+}
+
+/**
+ * Request to update an existing credential
+ */
+export interface UpdateCredentialRequest {
+  /**
+   * New name for the credential
+   */
+  name?: string;
+
+  /**
+   * Field name to value mapping (e.g., username, password). Replaces all existing
+   * values.
+   */
+  values?: { [key: string]: string };
+}
+
+export interface CredentialCreateParams {
+  /**
+   * Target domain this credential is for
+   */
+  domain: string;
+
+  /**
+   * Unique name for the credential within the organization
+   */
+  name: string;
+
+  /**
+   * Field name to value mapping (e.g., username, password)
+   */
+  values: { [key: string]: string };
+}
+
+export interface CredentialUpdateParams {
+  /**
+   * New name for the credential
+   */
+  name?: string;
+
+  /**
+   * Field name to value mapping (e.g., username, password). Replaces all existing
+   * values.
+   */
+  values?: { [key: string]: string };
+}
+
+export interface CredentialListParams extends OffsetPaginationParams {
+  /**
+   * Filter by domain
+   */
+  domain?: string;
+}
+
+export declare namespace Credentials {
+  export {
+    type CreateCredentialRequest as CreateCredentialRequest,
+    type Credential as Credential,
+    type UpdateCredentialRequest as UpdateCredentialRequest,
+    type CredentialsOffsetPagination as CredentialsOffsetPagination,
+    type CredentialCreateParams as CredentialCreateParams,
+    type CredentialUpdateParams as CredentialUpdateParams,
+    type CredentialListParams as CredentialListParams,
+  };
+}

package/src/resources/index.ts

@@ -11,10 +11,6 @@ export {
 export {
   BrowserPools,
   type BrowserPool,
-  type BrowserPoolAcquireRequest,
-  type BrowserPoolReleaseRequest,
-  type BrowserPoolRequest,
-  type BrowserPoolUpdateRequest,
   type BrowserPoolListResponse,
   type BrowserPoolAcquireResponse,
   type BrowserPoolCreateParams,
@@ -36,6 +32,16 @@ export {
   type BrowserLoadExtensionsParams,
   type BrowserListResponsesOffsetPagination,
 } from './browsers/browsers';
+export {
+  Credentials,
+  type CreateCredentialRequest,
+  type Credential,
+  type UpdateCredentialRequest,
+  type CredentialCreateParams,
+  type CredentialUpdateParams,
+  type CredentialListParams,
+  type CredentialsOffsetPagination,
+} from './credentials';
 export {
   Deployments,
   type DeploymentStateEvent,

package/src/version.ts

@@ -1 +1 @@
-export const VERSION = '0.23.0'; // x-release-please-version
+export const VERSION = '0.24.0'; // x-release-please-version

package/version.d.mts

@@ -1,2 +1,2 @@
-export declare const VERSION = "0.23.0";
+export declare const VERSION = "0.24.0";
 //# sourceMappingURL=version.d.mts.map

package/version.d.ts

@@ -1,2 +1,2 @@
-export declare const VERSION = "0.23.0";
+export declare const VERSION = "0.24.0";
 //# sourceMappingURL=version.d.ts.map