npm - @openbkn/bkn-sdk - Versions diffs - 0.1.1-alpha.1 → 0.1.1-alpha.3 - Mend

@openbkn/bkn-sdk 0.1.1-alpha.1 → 0.1.1-alpha.3

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (8) hide show

package/dist/{chunk-ADZ23DPF.js → chunk-APJNRHLS.js} +504 -375
package/dist/chunk-APJNRHLS.js.map +1 -0
package/dist/cli.js +284 -344
package/dist/cli.js.map +1 -1
package/dist/index.d.ts +81 -35
package/dist/index.js +1 -1
package/package.json +2 -2
package/dist/chunk-ADZ23DPF.js.map +0 -1

package/dist/index.d.ts CHANGED Viewed

@@ -14,11 +14,25 @@ interface ClientOptions {
     insecure?: boolean;
 }
 /** Fully resolved request context — every field is known. */
+interface RefreshableTokens {
+    accessToken: string;
+    refreshToken?: string;
+    idToken?: string;
+}
 interface RequestContext {
     baseUrl: string;
     token: string;
     businessDomain: string;
     insecure: boolean;
+    /**
+     * Stored-credential refresh: on a 401, swap the refresh token for a fresh
+     * access token, persist it, and retry once. Absent for explicit `--token`/env.
+     */
+    refresh?: {
+        refreshToken: string;
+        clientId?: string;
+        persist: (tokens: RefreshableTokens) => void;
+    };
 }
 declare const DEFAULT_BUSINESS_DOMAIN = "bd_public";
 /** Default list/query limits — see AGENTS.md conventions. */
@@ -112,42 +126,64 @@ interface AuditListOptions {
 }
 type MemberType = "user" | "department" | "group" | "app";
-/** Build / render a department hierarchy from flat ISF search entries. */
-interface OrgNode {
-    id: string;
-    name: string;
-    children: OrgNode[];
-}
 declare function admin(ctx: RequestContext): {
     orgList: (opts?: AdminListOptions) => Promise<unknown>;
     orgGet: (deptId: string) => Promise<unknown>;
-    orgMembers: (deptId: string, opts?: {
-        role?: string;
-        offset?: number;
-        limit?: number;
-    }) => Promise<unknown>;
-    orgTree: (role?: string) => Promise<OrgNode[]>;
-    orgCreate: (input: CreateOrgInput) => Promise<unknown>;
+    orgTree: (_role?: string) => Promise<unknown[]>;
+    orgMembers: (deptId: string, _opts?: unknown) => Promise<unknown>;
+    orgCreate: (input: CreateOrgInput) => Promise<{
+        id: string;
+    }>;
     orgUpdate: (deptId: string, input: UpdateOrgInput) => Promise<unknown>;
-    orgDelete: (deptId: string) => Promise<unknown>;
+    orgDelete: (deptId: string) => Promise<{
+        ok: true;
+    }>;
     userList: (opts?: AdminListOptions) => Promise<unknown>;
     userGet: (userId: string) => Promise<unknown>;
-    userRoles: (userId: string) => Promise<unknown>;
-    userCreate: (input: CreateUserInput) => Promise<unknown>;
+    userRoles: (userId: string) => Promise<{
+        roles: {
+            name: string;
+            id: string;
+        }[];
+    }>;
+    userCreate: (input: CreateUserInput) => Promise<{
+        id: string;
+    }>;
     userUpdate: (userId: string, input: UpdateUserInput) => Promise<unknown>;
-    userDelete: (userId: string) => Promise<unknown>;
-    userResetPassword: (userId: string, newPassword: string) => Promise<unknown>;
-    roleList: (opts?: ListRolesOptions) => Promise<unknown>;
+    userDelete: (userId: string) => Promise<{
+        ok: true;
+    }>;
+    userResetPassword: (userId: string, newPassword: string) => Promise<{
+        ok: true;
+    }>;
+    roleList: (_opts?: ListRolesOptions) => Promise<unknown>;
     roleGet: (roleId: string) => Promise<unknown>;
-    roleMembers: (roleId: string, opts?: {
-        keyword?: string;
-        limit?: number;
+    roleMembers: (roleId: string, _opts?: unknown) => Promise<{
+        members: {
+            account: string;
+            id: string;
+        }[];
+    }>;
+    addRoleMember: (roleId: string, id: string, _type?: MemberType) => Promise<{
+        ok: true;
+    }>;
+    removeRoleMember: (roleId: string, id: string, _type?: MemberType) => Promise<{
+        ok: true;
+    }>;
+    roleCreate: (name: string, description?: string) => Promise<{
+        id: string;
+    }>;
+    roleUpdate: (roleId: string, input: {
+        name?: string;
+        description?: string;
     }) => Promise<unknown>;
-    addRoleMember: (roleId: string, id: string, type?: MemberType) => Promise<unknown>;
-    removeRoleMember: (roleId: string, id: string, type?: MemberType) => Promise<unknown>;
-    auditList: (opts?: AuditListOptions) => Promise<unknown>;
+    roleDelete: (roleId: string) => Promise<{
+        ok: true;
+    }>;
+    rolePermission: (roleId: string, grant: boolean, resourceType: string, resourceId: string, operations: string[]) => Promise<{
+        ok: true;
+    }>;
+    auditList: (_opts?: AuditListOptions) => never;
 };
 interface ChatResult {
@@ -889,6 +925,8 @@ interface TokenConfig {
     expiresAt?: string;
     /** Skip TLS verification for this platform (saved by `auth login -k`). */
     tlsInsecure?: boolean;
+    /** Platform has no auth stack (no bkn-safe) — requests carry no token. */
+    noAuth?: boolean;
     /** Login name persisted at login time (fallback when JWT lacks claims). */
     username?: string;
     /** Human-readable name from userinfo. */
@@ -914,11 +952,19 @@ declare function attachToken(baseUrl: string, accessToken: string, opts?: {
     refreshToken?: string;
     idToken?: string;
     insecure?: boolean;
+    username?: string;
 }): {
     baseUrl: string;
     userId: string;
     username?: string;
 };
+/** Register a no-auth platform session (no token; the platform has no bkn-safe). */
+declare function attachNoAuth(baseUrl: string, opts?: {
+    insecure?: boolean;
+}): {
+    baseUrl: string;
+    noAuth: true;
+};
 interface AuthStatus {
     baseUrl?: string;
     userId?: string;
@@ -941,10 +987,14 @@ declare function listPlatforms(): PlatformListItem[];
 declare function use(baseUrl: string): void;
 declare function logout(): boolean;
 declare function deletePlatform(baseUrl: string, userId?: string): boolean;
-/** Switch the active user for a platform (token must already be saved). */
-declare function switchUser(baseUrl: string, userId: string): {
+/**
+ * Switch the active user for a platform. Accepts a stored user id OR a username
+ * (the account stored at login), so callers need not know the UUID.
+ */
+declare function switchUser(baseUrl: string, userOrName: string): {
     baseUrl: string;
     userId: string;
+    username?: string;
 };
 /** List saved user profiles for one platform. */
 declare function usersOf(baseUrl: string): PlatformUser[];
@@ -958,6 +1008,7 @@ declare function exportCreds(): {
 type auth_AuthStatus = AuthStatus;
 type auth_PlatformListItem = PlatformListItem;
+declare const auth_attachNoAuth: typeof attachNoAuth;
 declare const auth_attachToken: typeof attachToken;
 declare const auth_currentToken: typeof currentToken;
 declare const auth_deletePlatform: typeof deletePlatform;
@@ -972,14 +1023,9 @@ declare const auth_userIdFromToken: typeof userIdFromToken;
 declare const auth_usersOf: typeof usersOf;
 declare const auth_whoami: typeof whoami;
 declare namespace auth {
-  export { type auth_AuthStatus as AuthStatus, type auth_PlatformListItem as PlatformListItem, auth_attachToken as attachToken, auth_currentToken as currentToken, auth_deletePlatform as deletePlatform, auth_exportCreds as exportCreds, auth_hostOf as hostOf, auth_listPlatforms as listPlatforms, auth_logout as logout, auth_status as status, auth_switchUser as switchUser, auth_use as use, auth_userIdFromToken as userIdFromToken, auth_usersOf as usersOf, auth_whoami as whoami };
+  export { type auth_AuthStatus as AuthStatus, type auth_PlatformListItem as PlatformListItem, auth_attachNoAuth as attachNoAuth, auth_attachToken as attachToken, auth_currentToken as currentToken, auth_deletePlatform as deletePlatform, auth_exportCreds as exportCreds, auth_hostOf as hostOf, auth_listPlatforms as listPlatforms, auth_logout as logout, auth_status as status, auth_switchUser as switchUser, auth_use as use, auth_userIdFromToken as userIdFromToken, auth_usersOf as usersOf, auth_whoami as whoami };
 }
-/**
- * Thin fetch wrapper: explicit timeout, auth headers, JSON in/out, typed errors.
- * The single choke point for every backend call — resources build on this.
- */
 interface RequestInitEx {
     method?: string;
     /** JSON body — serialized and Content-Type set automatically. */

package/dist/index.js CHANGED Viewed

@@ -19,7 +19,7 @@ import {
   toolboxes,
   trace,
   vega
-} from "./chunk-ADZ23DPF.js";
+} from "./chunk-APJNRHLS.js";
 export {
   DEFAULT_BUSINESS_DOMAIN,
   DEFAULT_LIST_LIMIT,

package/package.json CHANGED Viewed

@@ -1,11 +1,11 @@
 {
   "name": "@openbkn/bkn-sdk",
-  "version": "0.1.1-alpha.1",
+  "version": "0.1.1-alpha.3",
   "description": "Unified TypeScript SDK + CLI for the BKN (Business Knowledge Network) platform.",
   "type": "module",
   "license": "Apache-2.0",
   "engines": {
-    "node": ">=22"
+    "node": ">=18"
   },
   "bin": {
     "openbkn": "./dist/cli.js"