npm - @playaos/api-client - Versions diffs - 0.1.0 - Mend

@playaos/api-client 0.1.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (8) hide show

package/README.md +74 -0
package/dist/applications-schema.d.ts +97 -0
package/dist/applications-schema.js +63 -0
package/dist/applications-schema.js.map +1 -0
package/dist/index.d.ts +246 -0
package/dist/index.js +188 -0
package/dist/index.js.map +1 -0
package/package.json +41 -0

package/README.md ADDED Viewed

@@ -0,0 +1,74 @@
+# @playaos/api-client
+Typed JavaScript/TypeScript client for the [PlayaOS](https://playaos.app) REST API.
+## Installation
+```bash
+npm install @playaos/api-client
+```
+## Quick start
+```typescript
+import { createClient } from "@playaos/api-client";
+const client = createClient({
+  baseUrl: "https://your-camp.playaos.app",
+  apiKey: "pk_live_...",
+});
+// List members
+const members = await client.members.list();
+// Filter by role
+const admins = await client.members.list({ role: "admin" });
+// Get a single member
+const member = await client.members.get("uuid-here");
+// List applications
+const pending = await client.applications.list({ status: "pending", year: 2025 });
+// List dues status
+const dues = await client.dues.list({ year: 2025 });
+// List shifts
+const shifts = await client.shifts.list({ publishedOnly: true, year: 2025 });
+// Get org config
+const org = await client.org.get();
+```
+## Authentication
+Generate an API key in **Admin → Settings → Developer**. Keys use the format `pk_live_*` and are scoped to specific resources.
+Required scopes per endpoint:
+| Endpoint | Scope |
+|----------|-------|
+| `members.list` / `members.get` | `members:read` |
+| `applications.list` | `applications:read` |
+| `dues.list` | `dues:read` |
+| `shifts.list` | `shifts:read` |
+| `org.get` | `org:read` |
+## Error handling
+```typescript
+import { ApiClientError } from "@playaos/api-client";
+try {
+  const member = await client.members.get("nonexistent-id");
+} catch (err) {
+  if (err instanceof ApiClientError) {
+    console.error(err.status, err.code, err.message);
+    // 404, "NOT_FOUND", "Member not found"
+  }
+}
+```
+## MCP server
+For AI agent access, use the companion [@playaos/mcp](https://www.npmjs.com/package/@playaos/mcp) package.

package/dist/applications-schema.d.ts ADDED Viewed

@@ -0,0 +1,97 @@
+import { z } from 'zod';
+declare const step0Schema: z.ZodObject<{
+    acknowledged_expectations: z.ZodLiteral<true>;
+}, z.core.$strip>;
+declare const step1Schema: z.ZodObject<{
+    first_name: z.ZodString;
+    last_name: z.ZodString;
+    email: z.ZodString;
+    phone: z.ZodString;
+    referral_code: z.ZodOptional<z.ZodString>;
+    socials: z.ZodOptional<z.ZodString>;
+    birthday: z.ZodString;
+    hometown: z.ZodString;
+}, z.core.$strip>;
+declare const step2Schema: z.ZodObject<{
+    how_heard: z.ZodString;
+    burning_man_before: z.ZodEnum<{
+        yes: "yes";
+        no: "no";
+    }>;
+    burning_man_years: z.ZodOptional<z.ZodString>;
+}, z.core.$strip>;
+declare const step3Schema: z.ZodObject<{
+    shelter_type: z.ZodEnum<{
+        joining_rv: "joining_rv";
+        bringing_rv: "bringing_rv";
+        shiftpod_tent: "shiftpod_tent";
+        car: "car";
+        truck: "truck";
+        van: "van";
+        unsure: "unsure";
+    }>;
+    shelter_mates: z.ZodOptional<z.ZodString>;
+    ticket_status: z.ZodEnum<{
+        unsure: "unsure";
+        looking: "looking";
+        have_ticket: "have_ticket";
+    }>;
+}, z.core.$strip>;
+declare const step4Schema: z.ZodObject<{
+    build_available: z.ZodBoolean;
+    build_skills: z.ZodOptional<z.ZodString>;
+    strike_available: z.ZodBoolean;
+    strike_help: z.ZodOptional<z.ZodString>;
+}, z.core.$strip>;
+declare const step5Schema: z.ZodObject<{
+    about_yourself: z.ZodString;
+    agrees_to_principles: z.ZodLiteral<true>;
+}, z.core.$strip>;
+declare const applicationSchema: z.ZodObject<{
+    acknowledged_expectations: z.ZodLiteral<true>;
+    first_name: z.ZodString;
+    last_name: z.ZodString;
+    email: z.ZodString;
+    phone: z.ZodString;
+    referral_code: z.ZodOptional<z.ZodString>;
+    socials: z.ZodOptional<z.ZodString>;
+    birthday: z.ZodString;
+    hometown: z.ZodString;
+    how_heard: z.ZodString;
+    burning_man_before: z.ZodEnum<{
+        yes: "yes";
+        no: "no";
+    }>;
+    burning_man_years: z.ZodOptional<z.ZodString>;
+    shelter_type: z.ZodEnum<{
+        joining_rv: "joining_rv";
+        bringing_rv: "bringing_rv";
+        shiftpod_tent: "shiftpod_tent";
+        car: "car";
+        truck: "truck";
+        van: "van";
+        unsure: "unsure";
+    }>;
+    ticket_status: z.ZodEnum<{
+        unsure: "unsure";
+        looking: "looking";
+        have_ticket: "have_ticket";
+    }>;
+    shelter_mates: z.ZodOptional<z.ZodString>;
+    build_available: z.ZodBoolean;
+    build_skills: z.ZodOptional<z.ZodString>;
+    strike_available: z.ZodBoolean;
+    strike_help: z.ZodOptional<z.ZodString>;
+    about_yourself: z.ZodString;
+    agrees_to_principles: z.ZodLiteral<true>;
+}, z.core.$strip>;
+type ApplicationFormData = z.infer<typeof applicationSchema>;
+type Step0Data = z.infer<typeof step0Schema>;
+type Step1Data = z.infer<typeof step1Schema>;
+type Step2Data = z.infer<typeof step2Schema>;
+type Step3Data = z.infer<typeof step3Schema>;
+type Step4Data = z.infer<typeof step4Schema>;
+type Step5Data = z.infer<typeof step5Schema>;
+export { type ApplicationFormData, type Step0Data, type Step1Data, type Step2Data, type Step3Data, type Step4Data, type Step5Data, applicationSchema, step0Schema, step1Schema, step2Schema, step3Schema, step4Schema, step5Schema };

package/dist/applications-schema.js ADDED Viewed

@@ -0,0 +1,63 @@
+// src/applications-schema.ts
+import { z } from "zod";
+var step0Schema = z.object({
+  acknowledged_expectations: z.literal(true, {
+    error: "Please acknowledge the expectations to continue"
+  })
+});
+var step1Schema = z.object({
+  first_name: z.string().min(1, "First name is required"),
+  last_name: z.string().min(1, "Last name is required"),
+  email: z.string().email("Invalid email address"),
+  phone: z.string().min(10, "Phone number is required"),
+  referral_code: z.string().optional(),
+  socials: z.string().optional(),
+  birthday: z.string().min(1, "Birthday is required"),
+  hometown: z.string().min(1, "Location is required")
+});
+var step2Schema = z.object({
+  how_heard: z.string().min(1, "Please tell us how you heard about us"),
+  burning_man_before: z.enum(["yes", "no"], { error: "Please select an option" }),
+  burning_man_years: z.string().optional()
+});
+var step3Schema = z.object({
+  shelter_type: z.enum(["joining_rv", "bringing_rv", "shiftpod_tent", "car", "truck", "van", "unsure"], {
+    error: "Please select a shelter type"
+  }),
+  shelter_mates: z.string().optional(),
+  ticket_status: z.enum(["looking", "have_ticket", "unsure"], { error: "Please select your ticket status" })
+});
+var step4Schema = z.object({
+  build_available: z.boolean(),
+  build_skills: z.string().optional(),
+  strike_available: z.boolean(),
+  strike_help: z.string().optional()
+}).refine((data) => !data.build_available || data.build_skills, {
+  message: "Please tell us about your build skills",
+  path: ["build_skills"]
+}).refine((data) => !data.strike_available || data.strike_help, {
+  message: "Please tell us how you can help with strike",
+  path: ["strike_help"]
+});
+var step5Schema = z.object({
+  about_yourself: z.string().min(50, "Please write at least 50 characters about yourself"),
+  agrees_to_principles: z.literal(true, { error: "You must agree to the 10 Principles" })
+});
+var applicationSchema = step0Schema.merge(step1Schema).merge(step2Schema).merge(step3Schema.omit({ shelter_mates: true })).extend({ shelter_mates: z.string().optional() }).merge(
+  z.object({
+    build_available: z.boolean(),
+    build_skills: z.string().optional(),
+    strike_available: z.boolean(),
+    strike_help: z.string().optional()
+  })
+).merge(step5Schema);
+export {
+  applicationSchema,
+  step0Schema,
+  step1Schema,
+  step2Schema,
+  step3Schema,
+  step4Schema,
+  step5Schema
+};
+//# sourceMappingURL=applications-schema.js.map

package/dist/applications-schema.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"sources":["../src/applications-schema.ts"],"sourcesContent":["import { z } from \"zod\";\n\n// Single source of truth for the apply-wizard form shape.\n// The portal apply flow and the @playaos/react <ApplicationForm> SDK both import\n// from here so the validation contract can never drift between them (PLA-483).\n// `ApplicationCreatePayload` in ./types.ts is the zod-free wire mirror; a type\n// equivalence test (applications-schema.test.ts) keeps the two locked together.\n\n// Per-step validation schemas\nexport const step0Schema = z.object({\n acknowledged_expectations: z.literal(true, {\n error: \"Please acknowledge the expectations to continue\",\n }),\n});\n\nexport const step1Schema = z.object({\n first_name: z.string().min(1, \"First name is required\"),\n last_name: z.string().min(1, \"Last name is required\"),\n email: z.string().email(\"Invalid email address\"),\n phone: z.string().min(10, \"Phone number is required\"),\n referral_code: z.string().optional(),\n socials: z.string().optional(),\n birthday: z.string().min(1, \"Birthday is required\"),\n hometown: z.string().min(1, \"Location is required\"),\n});\n\nexport const step2Schema = z.object({\n how_heard: z.string().min(1, \"Please tell us how you heard about us\"),\n burning_man_before: z.enum([\"yes\", \"no\"], { error: \"Please select an option\" }),\n burning_man_years: z.string().optional(),\n});\n\nexport const step3Schema = z.object({\n shelter_type: z.enum([\"joining_rv\", \"bringing_rv\", \"shiftpod_tent\", \"car\", \"truck\", \"van\", \"unsure\"], {\n error: \"Please select a shelter type\",\n }),\n shelter_mates: z.string().optional(),\n ticket_status: z.enum([\"looking\", \"have_ticket\", \"unsure\"], { error: \"Please select your ticket status\" }),\n});\n\nexport const step4Schema = z\n .object({\n build_available: z.boolean(),\n build_skills: z.string().optional(),\n strike_available: z.boolean(),\n strike_help: z.string().optional(),\n })\n .refine((data) => !data.build_available || data.build_skills, {\n message: \"Please tell us about your build skills\",\n path: [\"build_skills\"],\n })\n .refine((data) => !data.strike_available || data.strike_help, {\n message: \"Please tell us how you can help with strike\",\n path: [\"strike_help\"],\n });\n\nexport const step5Schema = z.object({\n about_yourself: z.string().min(50, \"Please write at least 50 characters about yourself\"),\n agrees_to_principles: z.literal(true, { error: \"You must agree to the 10 Principles\" }),\n});\n\n// Combined schema for full submission\nexport const applicationSchema = step0Schema\n .merge(step1Schema)\n .merge(step2Schema)\n .merge(step3Schema.omit({ shelter_mates: true }))\n .extend({ shelter_mates: z.string().optional() })\n .merge(\n z.object({\n build_available: z.boolean(),\n build_skills: z.string().optional(),\n strike_available: z.boolean(),\n strike_help: z.string().optional(),\n }),\n )\n .merge(step5Schema);\n\nexport type ApplicationFormData = z.infer<typeof applicationSchema>;\nexport type Step0Data = z.infer<typeof step0Schema>;\nexport type Step1Data = z.infer<typeof step1Schema>;\nexport type Step2Data = z.infer<typeof step2Schema>;\nexport type Step3Data = z.infer<typeof step3Schema>;\nexport type Step4Data = z.infer<typeof step4Schema>;\nexport type Step5Data = z.infer<typeof step5Schema>;\n"],"mappings":";AAAA,SAAS,SAAS;AASX,IAAM,cAAc,EAAE,OAAO;AAAA,EAClC,2BAA2B,EAAE,QAAQ,MAAM;AAAA,IACzC,OAAO;AAAA,EACT,CAAC;AACH,CAAC;AAEM,IAAM,cAAc,EAAE,OAAO;AAAA,EAClC,YAAY,EAAE,OAAO,EAAE,IAAI,GAAG,wBAAwB;AAAA,EACtD,WAAW,EAAE,OAAO,EAAE,IAAI,GAAG,uBAAuB;AAAA,EACpD,OAAO,EAAE,OAAO,EAAE,MAAM,uBAAuB;AAAA,EAC/C,OAAO,EAAE,OAAO,EAAE,IAAI,IAAI,0BAA0B;AAAA,EACpD,eAAe,EAAE,OAAO,EAAE,SAAS;AAAA,EACnC,SAAS,EAAE,OAAO,EAAE,SAAS;AAAA,EAC7B,UAAU,EAAE,OAAO,EAAE,IAAI,GAAG,sBAAsB;AAAA,EAClD,UAAU,EAAE,OAAO,EAAE,IAAI,GAAG,sBAAsB;AACpD,CAAC;AAEM,IAAM,cAAc,EAAE,OAAO;AAAA,EAClC,WAAW,EAAE,OAAO,EAAE,IAAI,GAAG,uCAAuC;AAAA,EACpE,oBAAoB,EAAE,KAAK,CAAC,OAAO,IAAI,GAAG,EAAE,OAAO,0BAA0B,CAAC;AAAA,EAC9E,mBAAmB,EAAE,OAAO,EAAE,SAAS;AACzC,CAAC;AAEM,IAAM,cAAc,EAAE,OAAO;AAAA,EAClC,cAAc,EAAE,KAAK,CAAC,cAAc,eAAe,iBAAiB,OAAO,SAAS,OAAO,QAAQ,GAAG;AAAA,IACpG,OAAO;AAAA,EACT,CAAC;AAAA,EACD,eAAe,EAAE,OAAO,EAAE,SAAS;AAAA,EACnC,eAAe,EAAE,KAAK,CAAC,WAAW,eAAe,QAAQ,GAAG,EAAE,OAAO,mCAAmC,CAAC;AAC3G,CAAC;AAEM,IAAM,cAAc,EACxB,OAAO;AAAA,EACN,iBAAiB,EAAE,QAAQ;AAAA,EAC3B,cAAc,EAAE,OAAO,EAAE,SAAS;AAAA,EAClC,kBAAkB,EAAE,QAAQ;AAAA,EAC5B,aAAa,EAAE,OAAO,EAAE,SAAS;AACnC,CAAC,EACA,OAAO,CAAC,SAAS,CAAC,KAAK,mBAAmB,KAAK,cAAc;AAAA,EAC5D,SAAS;AAAA,EACT,MAAM,CAAC,cAAc;AACvB,CAAC,EACA,OAAO,CAAC,SAAS,CAAC,KAAK,oBAAoB,KAAK,aAAa;AAAA,EAC5D,SAAS;AAAA,EACT,MAAM,CAAC,aAAa;AACtB,CAAC;AAEI,IAAM,cAAc,EAAE,OAAO;AAAA,EAClC,gBAAgB,EAAE,OAAO,EAAE,IAAI,IAAI,oDAAoD;AAAA,EACvF,sBAAsB,EAAE,QAAQ,MAAM,EAAE,OAAO,sCAAsC,CAAC;AACxF,CAAC;AAGM,IAAM,oBAAoB,YAC9B,MAAM,WAAW,EACjB,MAAM,WAAW,EACjB,MAAM,YAAY,KAAK,EAAE,eAAe,KAAK,CAAC,CAAC,EAC/C,OAAO,EAAE,eAAe,EAAE,OAAO,EAAE,SAAS,EAAE,CAAC,EAC/C;AAAA,EACC,EAAE,OAAO;AAAA,IACP,iBAAiB,EAAE,QAAQ;AAAA,IAC3B,cAAc,EAAE,OAAO,EAAE,SAAS;AAAA,IAClC,kBAAkB,EAAE,QAAQ;AAAA,IAC5B,aAAa,EAAE,OAAO,EAAE,SAAS;AAAA,EACnC,CAAC;AACH,EACC,MAAM,WAAW;","names":[]}

package/dist/index.d.ts ADDED Viewed

@@ -0,0 +1,246 @@
+declare class ApiClientError extends Error {
+    readonly status: number;
+    readonly code: string;
+    constructor(status: number, code: string, message: string);
+}
+interface Member {
+    id: string;
+    firstName: string;
+    lastName: string;
+    name: string | null;
+    email: string;
+    role: string | null;
+    status: string | null;
+    orgId: string;
+    createdAt: string | null;
+}
+interface Application {
+    id: string;
+    userId: string;
+    orgId: string;
+    status: string | null;
+    year: number;
+    createdAt: string | null;
+    updatedAt: string | null;
+}
+interface DuesStatus {
+    userId: string | null;
+    year: number | null;
+    paymentStatus: string | null;
+    amountOwed: string | null;
+    amountPaid: string | null;
+    balance: string | null;
+}
+interface ShiftSignup {
+    id: string;
+    userId: string;
+    status: string | null;
+    role: string | null;
+}
+interface ShiftType {
+    id: string;
+    name: string;
+    description: string | null;
+}
+interface Shift {
+    id: string;
+    orgId: string;
+    shiftDate: string;
+    year: number;
+    startTime: string | null;
+    endTime: string | null;
+    maxSlots: number | null;
+    isPublished: boolean | null;
+    shiftType: ShiftType | null;
+    shiftSignups: ShiftSignup[];
+}
+interface OrgConfig {
+    id: string;
+    name: string;
+    slug: string;
+    preset: string | null;
+    customDomain: string | null;
+    settings: Record<string, unknown> | null;
+    features: Record<string, unknown> | null;
+    plan: string | null;
+    logoUrl: string | null;
+}
+type ApplicationStatus = "draft" | "pending" | "invite_sent" | "interview_scheduled" | "interviewed" | "approved" | "waitlisted" | "rejected";
+type MemberRole = "member" | "admin" | "applicant" | "super_admin";
+interface PaymentPageResponse {
+    provider: "givebutter" | "crowded";
+    url: string;
+    modalSupported: boolean;
+}
+interface ApplicationCreatePayload {
+    acknowledged_expectations: true;
+    first_name: string;
+    last_name: string;
+    email: string;
+    phone: string;
+    referral_code?: string;
+    socials?: string;
+    birthday: string;
+    hometown: string;
+    how_heard: string;
+    burning_man_before: "yes" | "no";
+    burning_man_years?: string;
+    shelter_type: "joining_rv" | "bringing_rv" | "shiftpod_tent" | "car" | "truck" | "van" | "unsure";
+    shelter_mates?: string;
+    ticket_status: "looking" | "have_ticket" | "unsure";
+    build_available: boolean;
+    build_skills?: string;
+    strike_available: boolean;
+    strike_help?: string;
+    about_yourself: string;
+    agrees_to_principles: true;
+}
+interface ApplicationCreateResponse {
+    applicationId: string;
+    status: string;
+}
+interface ApplicationTransitionPayload {
+    to: ApplicationStatus;
+    rejectionReason?: string;
+}
+interface ApplicationTransitionResponse {
+    applicationId: string;
+    status: ApplicationStatus;
+}
+interface MemberCreatePayload {
+    firstName: string;
+    lastName: string;
+    email: string;
+    phone?: string | null;
+    role?: "member" | "admin" | "super_admin";
+    status?: string;
+}
+interface MemberCreateResponse {
+    profileId: string;
+}
+interface MemberUpdatePayload {
+    firstName?: string;
+    lastName?: string;
+    phone?: string | null;
+}
+interface MemberUpdateResponse {
+    profileId: string;
+}
+interface MemberDeactivateResponse {
+    profileId: string;
+    status: "inactive";
+}
+interface ClientOptions {
+    /** Base URL of the PlayaOS portal, e.g. https://your-camp.playaos.app */
+    baseUrl: string;
+    /** API key in the format pk_live_* */
+    apiKey: string;
+}
+declare class PlayaOSClient {
+    private readonly baseUrl;
+    private readonly apiKey;
+    constructor(opts: ClientOptions);
+    readonly members: {
+        list: (params?: {
+            role?: MemberRole;
+            status?: string;
+        }, opts?: {
+            signal?: AbortSignal;
+        }) => Promise<Member[]>;
+        get: (id: string, opts?: {
+            signal?: AbortSignal;
+        }) => Promise<Member>;
+    };
+    readonly applications: {
+        list: (params?: {
+            status?: ApplicationStatus;
+            year?: number;
+        }, opts?: {
+            signal?: AbortSignal;
+        }) => Promise<Application[]>;
+        create: (payload: ApplicationCreatePayload, opts?: {
+            accessToken?: string;
+            signal?: AbortSignal;
+        }) => Promise<ApplicationCreateResponse>;
+    };
+    readonly dues: {
+        list: (params?: {
+            userId?: string;
+            year?: number;
+        }, opts?: {
+            signal?: AbortSignal;
+        }) => Promise<DuesStatus[]>;
+    };
+    readonly shifts: {
+        list: (params?: {
+            year?: number;
+            fromDate?: string;
+            toDate?: string;
+            publishedOnly?: boolean;
+        }, opts?: {
+            signal?: AbortSignal;
+        }) => Promise<Shift[]>;
+    };
+    readonly org: {
+        get: (opts?: {
+            signal?: AbortSignal;
+        }) => Promise<OrgConfig>;
+    };
+    readonly payments: {
+        page: (memberId: string, duesCollectionId?: string, opts?: {
+            signal?: AbortSignal;
+        }) => Promise<PaymentPageResponse>;
+    };
+    readonly admin: {
+        applications: {
+            transition: (id: string, payload: ApplicationTransitionPayload, opts: {
+                accessToken: string;
+                signal?: AbortSignal;
+            }) => Promise<ApplicationTransitionResponse>;
+        };
+        members: {
+            create: (payload: MemberCreatePayload, opts: {
+                accessToken: string;
+                signal?: AbortSignal;
+            }) => Promise<MemberCreateResponse>;
+            update: (id: string, patch: MemberUpdatePayload, opts: {
+                accessToken: string;
+                signal?: AbortSignal;
+            }) => Promise<MemberUpdateResponse>;
+            deactivate: (id: string, opts: {
+                accessToken: string;
+                signal?: AbortSignal;
+            }) => Promise<MemberDeactivateResponse>;
+        };
+    };
+}
+/** Convenience factory — equivalent to `new PlayaOSClient(opts)`. */
+declare function createClient(opts: ClientOptions): PlayaOSClient;
+/**
+ * Server-side OAuth-code → ID-token exchange (PLA-573 T24).
+ *
+ * Used by camp sites' confidential-client backends to swap a one-time
+ * authorization code from the PlayaOS IdP for a short-lived ID token.
+ * Public/PKCE-only clients exchange directly from the browser via
+ * `usePlayaOSAuth` in `@playaos/react`; this helper exists for confidential
+ * clients that need to send the client_secret server-side.
+ */
+interface ExchangeParams {
+    authBaseUrl?: string;
+    code: string;
+    codeVerifier: string;
+    clientId: string;
+    clientSecret: string;
+    redirectUri: string;
+}
+interface ExchangeResult {
+    idToken: string;
+    expiresAt: string;
+    refreshToken: string;
+}
+declare function exchangeCode(params: ExchangeParams): Promise<ExchangeResult>;
+export { ApiClientError, type Application, type ApplicationCreatePayload, type ApplicationCreateResponse, type ApplicationStatus, type ApplicationTransitionPayload, type ApplicationTransitionResponse, type DuesStatus, type ExchangeParams, type ExchangeResult, type Member, type MemberCreatePayload, type MemberCreateResponse, type MemberDeactivateResponse, type MemberRole, type MemberUpdatePayload, type MemberUpdateResponse, type OrgConfig, type PaymentPageResponse, PlayaOSClient, type Shift, type ShiftSignup, type ShiftType, createClient, exchangeCode };

package/dist/index.js ADDED Viewed

@@ -0,0 +1,188 @@
+// src/error.ts
+var ApiClientError = class extends Error {
+  constructor(status, code, message) {
+    super(message);
+    this.status = status;
+    this.code = code;
+    this.name = "ApiClientError";
+  }
+  status;
+  code;
+};
+async function parseError(res) {
+  try {
+    const body = await res.json();
+    return new ApiClientError(res.status, body.code ?? "UNKNOWN", body.error ?? res.statusText);
+  } catch {
+    return new ApiClientError(res.status, "UNKNOWN", res.statusText);
+  }
+}
+// src/client.ts
+function buildUrl(base, path, params) {
+  const url = new URL(`${base}/api/v1${path}`);
+  if (params) {
+    for (const [k, v] of Object.entries(params)) {
+      if (v !== void 0 && v !== false) url.searchParams.set(k, String(v));
+    }
+  }
+  return url.toString();
+}
+function buildEmbedUrl(base, path) {
+  return `${base}/api/embed/v1${path}`;
+}
+async function request(url, apiKey, signal) {
+  const res = await fetch(url, {
+    headers: { Authorization: `Bearer ${apiKey}` },
+    signal
+  });
+  if (!res.ok) throw await parseError(res);
+  return res.json();
+}
+async function post(url, apiKey, body, signal) {
+  const res = await fetch(url, {
+    method: "POST",
+    headers: { Authorization: `Bearer ${apiKey}`, "Content-Type": "application/json" },
+    body: JSON.stringify(body),
+    signal
+  });
+  if (!res.ok) throw await parseError(res);
+  return res.json();
+}
+async function postEmbed(url, campKey, body, opts) {
+  const headers = {
+    "X-Camp-Key": campKey,
+    "Content-Type": "application/json"
+  };
+  if (opts?.accessToken) headers.Authorization = `Bearer ${opts.accessToken}`;
+  const res = await fetch(url, {
+    method: "POST",
+    headers,
+    body: JSON.stringify(body),
+    signal: opts?.signal
+  });
+  if (!res.ok) throw await parseError(res);
+  return res.json();
+}
+async function adminEmbed(method, url, accessToken, body, signal) {
+  const res = await fetch(url, {
+    method,
+    headers: { Authorization: `Bearer ${accessToken}`, "Content-Type": "application/json" },
+    body: JSON.stringify(body),
+    signal
+  });
+  if (!res.ok) throw await parseError(res);
+  return res.json();
+}
+var PlayaOSClient = class {
+  baseUrl;
+  apiKey;
+  constructor(opts) {
+    this.baseUrl = opts.baseUrl.replace(/\/$/, "");
+    this.apiKey = opts.apiKey;
+  }
+  members = {
+    list: (params, opts) => request(buildUrl(this.baseUrl, "/members", params), this.apiKey, opts?.signal),
+    get: (id, opts) => request(buildUrl(this.baseUrl, `/members/${encodeURIComponent(id)}`), this.apiKey, opts?.signal)
+  };
+  applications = {
+    list: (params, opts) => request(buildUrl(this.baseUrl, "/applications", params), this.apiKey, opts?.signal),
+    // Anonymous external-camp submission against POST /api/embed/v1/applications
+    // (PLA-481). Uses the X-Camp-Key header rather than Bearer auth. Pass
+    // `accessToken` to additionally send a PlayaOS IdP JWT (PLA-573 path) so
+    // the server trusts the verified profile claim and skips the email-based
+    // bootstrap.
+    create: (payload, opts) => postEmbed(buildEmbedUrl(this.baseUrl, "/applications"), this.apiKey, payload, opts)
+  };
+  dues = {
+    list: (params, opts) => request(buildUrl(this.baseUrl, "/dues", params), this.apiKey, opts?.signal)
+  };
+  shifts = {
+    list: (params, opts) => request(buildUrl(this.baseUrl, "/shifts", params), this.apiKey, opts?.signal)
+  };
+  org = {
+    get: (opts) => request(buildUrl(this.baseUrl, "/org"), this.apiKey, opts?.signal)
+  };
+  payments = {
+    page: (memberId, duesCollectionId, opts) => post(buildUrl(this.baseUrl, "/payments/page"), this.apiKey, { memberId, duesCollectionId }, opts?.signal)
+  };
+  // Admin write APIs (PLA-489). Each method requires `accessToken` — a Supabase
+  // JWT for a camp admin/super_admin. The org boundary is enforced server-side
+  // from the JWT claims; these endpoints do not use the X-Camp-Key.
+  admin = {
+    applications: {
+      transition: (id, payload, opts) => adminEmbed(
+        "PATCH",
+        buildEmbedUrl(this.baseUrl, `/admin/applications/${encodeURIComponent(id)}`),
+        opts.accessToken,
+        payload,
+        opts.signal
+      )
+    },
+    members: {
+      create: (payload, opts) => adminEmbed("POST", buildEmbedUrl(this.baseUrl, "/admin/members"), opts.accessToken, payload, opts.signal),
+      update: (id, patch, opts) => adminEmbed(
+        "PATCH",
+        buildEmbedUrl(this.baseUrl, `/admin/members/${encodeURIComponent(id)}`),
+        opts.accessToken,
+        patch,
+        opts.signal
+      ),
+      deactivate: (id, opts) => adminEmbed(
+        "PATCH",
+        buildEmbedUrl(this.baseUrl, `/admin/members/${encodeURIComponent(id)}`),
+        opts.accessToken,
+        { status: "inactive" },
+        opts.signal
+      )
+    }
+  };
+};
+function createClient(opts) {
+  return new PlayaOSClient(opts);
+}
+// src/exchange.ts
+async function exchangeCode(params) {
+  const base = params.authBaseUrl ?? "https://auth.playaos.app";
+  const res = await fetch(`${base}/api/auth/v1/exchange`, {
+    method: "POST",
+    headers: { "content-type": "application/json" },
+    body: JSON.stringify({
+      code: params.code,
+      code_verifier: params.codeVerifier,
+      client_id: params.clientId,
+      client_secret: params.clientSecret,
+      redirect_uri: params.redirectUri
+    })
+  });
+  let body;
+  try {
+    body = await res.json();
+  } catch {
+    throw new Error(`Exchange failed: non-JSON response (${res.status})`);
+  }
+  if (!res.ok) {
+    const errorReason = typeof body === "object" && body !== null && "error" in body && typeof body.error === "string" ? body.error : String(res.status);
+    throw new Error(`Exchange failed: ${errorReason}`);
+  }
+  if (typeof body !== "object" || body === null || !("idToken" in body) || typeof body.idToken !== "string" || !("expiresAt" in body) || typeof body.expiresAt !== "string") {
+    throw new Error("Exchange failed: malformed success response");
+  }
+  const refreshToken = "refreshToken" in body && typeof body.refreshToken === "string" ? body.refreshToken : void 0;
+  if (refreshToken === void 0) {
+    throw new Error("Exchange failed: missing refreshToken in confidential response");
+  }
+  return {
+    idToken: body.idToken,
+    expiresAt: body.expiresAt,
+    refreshToken
+  };
+}
+export {
+  ApiClientError,
+  PlayaOSClient,
+  createClient,
+  exchangeCode
+};
+//# sourceMappingURL=index.js.map

package/dist/index.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"sources":["../src/error.ts","../src/client.ts","../src/exchange.ts"],"sourcesContent":["export class ApiClientError extends Error {\n constructor(\n public readonly status: number,\n public readonly code: string,\n message: string,\n ) {\n super(message);\n this.name = \"ApiClientError\";\n }\n}\n\nexport async function parseError(res: Response): Promise<ApiClientError> {\n try {\n const body = (await res.json()) as { error?: string; code?: string };\n return new ApiClientError(res.status, body.code ?? \"UNKNOWN\", body.error ?? res.statusText);\n } catch {\n return new ApiClientError(res.status, \"UNKNOWN\", res.statusText);\n }\n}\n","import { type ApiClientError, parseError } from \"./error.js\";\nimport type {\n Application,\n ApplicationCreatePayload,\n ApplicationCreateResponse,\n ApplicationStatus,\n ApplicationTransitionPayload,\n ApplicationTransitionResponse,\n DuesStatus,\n Member,\n MemberCreatePayload,\n MemberCreateResponse,\n MemberDeactivateResponse,\n MemberRole,\n MemberUpdatePayload,\n MemberUpdateResponse,\n OrgConfig,\n PaymentPageResponse,\n Shift,\n} from \"./types.js\";\n\nexport type { ApiClientError };\n\ninterface ClientOptions {\n /** Base URL of the PlayaOS portal, e.g. https://your-camp.playaos.app */\n baseUrl: string;\n /** API key in the format pk_live_* */\n apiKey: string;\n}\n\nfunction buildUrl(base: string, path: string, params?: Record<string, string | number | boolean | undefined>): string {\n const url = new URL(`${base}/api/v1${path}`);\n if (params) {\n for (const [k, v] of Object.entries(params)) {\n // Skip undefined and false booleans — z.coerce.boolean() on the server uses Boolean(),\n // which treats any non-empty string (including \"false\") as true. Omitting a false boolean\n // param has the same effect as the server default (unfiltered).\n if (v !== undefined && v !== false) url.searchParams.set(k, String(v));\n }\n }\n return url.toString();\n}\n\nfunction buildEmbedUrl(base: string, path: string): string {\n return `${base}/api/embed/v1${path}`;\n}\n\nasync function request<T>(url: string, apiKey: string, signal?: AbortSignal): Promise<T> {\n const res = await fetch(url, {\n headers: { Authorization: `Bearer ${apiKey}` },\n signal,\n });\n if (!res.ok) throw await parseError(res);\n return res.json() as Promise<T>;\n}\n\nasync function post<T>(url: string, apiKey: string, body: unknown, signal?: AbortSignal): Promise<T> {\n const res = await fetch(url, {\n method: \"POST\",\n headers: { Authorization: `Bearer ${apiKey}`, \"Content-Type\": \"application/json\" },\n body: JSON.stringify(body),\n signal,\n });\n if (!res.ok) throw await parseError(res);\n return res.json() as Promise<T>;\n}\n\nasync function postEmbed<T>(\n url: string,\n campKey: string,\n body: unknown,\n opts?: { accessToken?: string; signal?: AbortSignal },\n): Promise<T> {\n const headers: Record<string, string> = {\n \"X-Camp-Key\": campKey,\n \"Content-Type\": \"application/json\",\n };\n if (opts?.accessToken) headers.Authorization = `Bearer ${opts.accessToken}`;\n const res = await fetch(url, {\n method: \"POST\",\n headers,\n body: JSON.stringify(body),\n signal: opts?.signal,\n });\n if (!res.ok) throw await parseError(res);\n return res.json() as Promise<T>;\n}\n\n/**\n * Admin write helper for /api/embed/v1/admin/* (PLA-489). Bearer-only: the\n * admin token is the sole credential (no X-Camp-Key — orgId comes from the JWT\n * claims server-side). `method` is POST for create, PATCH for transition/update/\n * deactivate.\n */\nasync function adminEmbed<T>(\n method: \"POST\" | \"PATCH\",\n url: string,\n accessToken: string,\n body: unknown,\n signal?: AbortSignal,\n): Promise<T> {\n const res = await fetch(url, {\n method,\n headers: { Authorization: `Bearer ${accessToken}`, \"Content-Type\": \"application/json\" },\n body: JSON.stringify(body),\n signal,\n });\n if (!res.ok) throw await parseError(res);\n return res.json() as Promise<T>;\n}\n\nexport class PlayaOSClient {\n private readonly baseUrl: string;\n private readonly apiKey: string;\n\n constructor(opts: ClientOptions) {\n this.baseUrl = opts.baseUrl.replace(/\\/$/, \"\");\n this.apiKey = opts.apiKey;\n }\n\n readonly members = {\n list: (params?: { role?: MemberRole; status?: string }, opts?: { signal?: AbortSignal }): Promise<Member[]> =>\n request(buildUrl(this.baseUrl, \"/members\", params), this.apiKey, opts?.signal),\n\n get: (id: string, opts?: { signal?: AbortSignal }): Promise<Member> =>\n request(buildUrl(this.baseUrl, `/members/${encodeURIComponent(id)}`), this.apiKey, opts?.signal),\n };\n\n readonly applications = {\n list: (\n params?: { status?: ApplicationStatus; year?: number },\n opts?: { signal?: AbortSignal },\n ): Promise<Application[]> => request(buildUrl(this.baseUrl, \"/applications\", params), this.apiKey, opts?.signal),\n\n // Anonymous external-camp submission against POST /api/embed/v1/applications\n // (PLA-481). Uses the X-Camp-Key header rather than Bearer auth. Pass\n // `accessToken` to additionally send a PlayaOS IdP JWT (PLA-573 path) so\n // the server trusts the verified profile claim and skips the email-based\n // bootstrap.\n create: (\n payload: ApplicationCreatePayload,\n opts?: { accessToken?: string; signal?: AbortSignal },\n ): Promise<ApplicationCreateResponse> =>\n postEmbed(buildEmbedUrl(this.baseUrl, \"/applications\"), this.apiKey, payload, opts),\n };\n\n readonly dues = {\n list: (params?: { userId?: string; year?: number }, opts?: { signal?: AbortSignal }): Promise<DuesStatus[]> =>\n request(buildUrl(this.baseUrl, \"/dues\", params), this.apiKey, opts?.signal),\n };\n\n readonly shifts = {\n list: (\n params?: { year?: number; fromDate?: string; toDate?: string; publishedOnly?: boolean },\n opts?: { signal?: AbortSignal },\n ): Promise<Shift[]> => request(buildUrl(this.baseUrl, \"/shifts\", params), this.apiKey, opts?.signal),\n };\n\n readonly org = {\n get: (opts?: { signal?: AbortSignal }): Promise<OrgConfig> =>\n request(buildUrl(this.baseUrl, \"/org\"), this.apiKey, opts?.signal),\n };\n\n readonly payments = {\n page: (\n memberId: string,\n duesCollectionId?: string,\n opts?: { signal?: AbortSignal },\n ): Promise<PaymentPageResponse> =>\n post(buildUrl(this.baseUrl, \"/payments/page\"), this.apiKey, { memberId, duesCollectionId }, opts?.signal),\n };\n\n // Admin write APIs (PLA-489). Each method requires `accessToken` — a Supabase\n // JWT for a camp admin/super_admin. The org boundary is enforced server-side\n // from the JWT claims; these endpoints do not use the X-Camp-Key.\n readonly admin = {\n applications: {\n transition: (\n id: string,\n payload: ApplicationTransitionPayload,\n opts: { accessToken: string; signal?: AbortSignal },\n ): Promise<ApplicationTransitionResponse> =>\n adminEmbed(\n \"PATCH\",\n buildEmbedUrl(this.baseUrl, `/admin/applications/${encodeURIComponent(id)}`),\n opts.accessToken,\n payload,\n opts.signal,\n ),\n },\n members: {\n create: (\n payload: MemberCreatePayload,\n opts: { accessToken: string; signal?: AbortSignal },\n ): Promise<MemberCreateResponse> =>\n adminEmbed(\"POST\", buildEmbedUrl(this.baseUrl, \"/admin/members\"), opts.accessToken, payload, opts.signal),\n\n update: (\n id: string,\n patch: MemberUpdatePayload,\n opts: { accessToken: string; signal?: AbortSignal },\n ): Promise<MemberUpdateResponse> =>\n adminEmbed(\n \"PATCH\",\n buildEmbedUrl(this.baseUrl, `/admin/members/${encodeURIComponent(id)}`),\n opts.accessToken,\n patch,\n opts.signal,\n ),\n\n deactivate: (\n id: string,\n opts: { accessToken: string; signal?: AbortSignal },\n ): Promise<MemberDeactivateResponse> =>\n adminEmbed(\n \"PATCH\",\n buildEmbedUrl(this.baseUrl, `/admin/members/${encodeURIComponent(id)}`),\n opts.accessToken,\n { status: \"inactive\" },\n opts.signal,\n ),\n },\n };\n}\n\n/** Convenience factory — equivalent to `new PlayaOSClient(opts)`. */\nexport function createClient(opts: ClientOptions): PlayaOSClient {\n return new PlayaOSClient(opts);\n}\n","/**\n * Server-side OAuth-code → ID-token exchange (PLA-573 T24).\n *\n * Used by camp sites' confidential-client backends to swap a one-time\n * authorization code from the PlayaOS IdP for a short-lived ID token.\n * Public/PKCE-only clients exchange directly from the browser via\n * `usePlayaOSAuth` in `@playaos/react`; this helper exists for confidential\n * clients that need to send the client_secret server-side.\n */\n\nexport interface ExchangeParams {\n authBaseUrl?: string;\n code: string;\n codeVerifier: string;\n clientId: string;\n clientSecret: string;\n redirectUri: string;\n}\n\nexport interface ExchangeResult {\n idToken: string;\n expiresAt: string;\n refreshToken: string;\n}\n\nexport async function exchangeCode(params: ExchangeParams): Promise<ExchangeResult> {\n const base = params.authBaseUrl ?? \"https://auth.playaos.app\";\n const res = await fetch(`${base}/api/auth/v1/exchange`, {\n method: \"POST\",\n headers: { \"content-type\": \"application/json\" },\n body: JSON.stringify({\n code: params.code,\n code_verifier: params.codeVerifier,\n client_id: params.clientId,\n client_secret: params.clientSecret,\n redirect_uri: params.redirectUri,\n }),\n });\n let body: unknown;\n try {\n body = await res.json();\n } catch {\n throw new Error(`Exchange failed: non-JSON response (${res.status})`);\n }\n\n if (!res.ok) {\n const errorReason =\n typeof body === \"object\" && body !== null && \"error\" in body && typeof body.error === \"string\"\n ? body.error\n : String(res.status);\n throw new Error(`Exchange failed: ${errorReason}`);\n }\n\n if (\n typeof body !== \"object\" ||\n body === null ||\n !(\"idToken\" in body) ||\n typeof body.idToken !== \"string\" ||\n !(\"expiresAt\" in body) ||\n typeof body.expiresAt !== \"string\"\n ) {\n throw new Error(\"Exchange failed: malformed success response\");\n }\n\n // refreshToken is optional in the response (public clients don't get one);\n // surface as undefined when absent. Result type's refreshToken is required\n // because exchangeCode is the confidential-client helper — keep it required\n // in the typed return but pull it defensively in case the server omits it.\n const refreshToken = \"refreshToken\" in body && typeof body.refreshToken === \"string\" ? body.refreshToken : undefined;\n\n if (refreshToken === undefined) {\n throw new Error(\"Exchange failed: missing refreshToken in confidential response\");\n }\n\n return {\n idToken: body.idToken,\n expiresAt: body.expiresAt,\n refreshToken,\n };\n}\n"],"mappings":";AAAO,IAAM,iBAAN,cAA6B,MAAM;AAAA,EACxC,YACkB,QACA,MAChB,SACA;AACA,UAAM,OAAO;AAJG;AACA;AAIhB,SAAK,OAAO;AAAA,EACd;AAAA,EANkB;AAAA,EACA;AAMpB;AAEA,eAAsB,WAAW,KAAwC;AACvE,MAAI;AACF,UAAM,OAAQ,MAAM,IAAI,KAAK;AAC7B,WAAO,IAAI,eAAe,IAAI,QAAQ,KAAK,QAAQ,WAAW,KAAK,SAAS,IAAI,UAAU;AAAA,EAC5F,QAAQ;AACN,WAAO,IAAI,eAAe,IAAI,QAAQ,WAAW,IAAI,UAAU;AAAA,EACjE;AACF;;;ACYA,SAAS,SAAS,MAAc,MAAc,QAAwE;AACpH,QAAM,MAAM,IAAI,IAAI,GAAG,IAAI,UAAU,IAAI,EAAE;AAC3C,MAAI,QAAQ;AACV,eAAW,CAAC,GAAG,CAAC,KAAK,OAAO,QAAQ,MAAM,GAAG;AAI3C,UAAI,MAAM,UAAa,MAAM,MAAO,KAAI,aAAa,IAAI,GAAG,OAAO,CAAC,CAAC;AAAA,IACvE;AAAA,EACF;AACA,SAAO,IAAI,SAAS;AACtB;AAEA,SAAS,cAAc,MAAc,MAAsB;AACzD,SAAO,GAAG,IAAI,gBAAgB,IAAI;AACpC;AAEA,eAAe,QAAW,KAAa,QAAgB,QAAkC;AACvF,QAAM,MAAM,MAAM,MAAM,KAAK;AAAA,IAC3B,SAAS,EAAE,eAAe,UAAU,MAAM,GAAG;AAAA,IAC7C;AAAA,EACF,CAAC;AACD,MAAI,CAAC,IAAI,GAAI,OAAM,MAAM,WAAW,GAAG;AACvC,SAAO,IAAI,KAAK;AAClB;AAEA,eAAe,KAAQ,KAAa,QAAgB,MAAe,QAAkC;AACnG,QAAM,MAAM,MAAM,MAAM,KAAK;AAAA,IAC3B,QAAQ;AAAA,IACR,SAAS,EAAE,eAAe,UAAU,MAAM,IAAI,gBAAgB,mBAAmB;AAAA,IACjF,MAAM,KAAK,UAAU,IAAI;AAAA,IACzB;AAAA,EACF,CAAC;AACD,MAAI,CAAC,IAAI,GAAI,OAAM,MAAM,WAAW,GAAG;AACvC,SAAO,IAAI,KAAK;AAClB;AAEA,eAAe,UACb,KACA,SACA,MACA,MACY;AACZ,QAAM,UAAkC;AAAA,IACtC,cAAc;AAAA,IACd,gBAAgB;AAAA,EAClB;AACA,MAAI,MAAM,YAAa,SAAQ,gBAAgB,UAAU,KAAK,WAAW;AACzE,QAAM,MAAM,MAAM,MAAM,KAAK;AAAA,IAC3B,QAAQ;AAAA,IACR;AAAA,IACA,MAAM,KAAK,UAAU,IAAI;AAAA,IACzB,QAAQ,MAAM;AAAA,EAChB,CAAC;AACD,MAAI,CAAC,IAAI,GAAI,OAAM,MAAM,WAAW,GAAG;AACvC,SAAO,IAAI,KAAK;AAClB;AAQA,eAAe,WACb,QACA,KACA,aACA,MACA,QACY;AACZ,QAAM,MAAM,MAAM,MAAM,KAAK;AAAA,IAC3B;AAAA,IACA,SAAS,EAAE,eAAe,UAAU,WAAW,IAAI,gBAAgB,mBAAmB;AAAA,IACtF,MAAM,KAAK,UAAU,IAAI;AAAA,IACzB;AAAA,EACF,CAAC;AACD,MAAI,CAAC,IAAI,GAAI,OAAM,MAAM,WAAW,GAAG;AACvC,SAAO,IAAI,KAAK;AAClB;AAEO,IAAM,gBAAN,MAAoB;AAAA,EACR;AAAA,EACA;AAAA,EAEjB,YAAY,MAAqB;AAC/B,SAAK,UAAU,KAAK,QAAQ,QAAQ,OAAO,EAAE;AAC7C,SAAK,SAAS,KAAK;AAAA,EACrB;AAAA,EAES,UAAU;AAAA,IACjB,MAAM,CAAC,QAAiD,SACtD,QAAQ,SAAS,KAAK,SAAS,YAAY,MAAM,GAAG,KAAK,QAAQ,MAAM,MAAM;AAAA,IAE/E,KAAK,CAAC,IAAY,SAChB,QAAQ,SAAS,KAAK,SAAS,YAAY,mBAAmB,EAAE,CAAC,EAAE,GAAG,KAAK,QAAQ,MAAM,MAAM;AAAA,EACnG;AAAA,EAES,eAAe;AAAA,IACtB,MAAM,CACJ,QACA,SAC2B,QAAQ,SAAS,KAAK,SAAS,iBAAiB,MAAM,GAAG,KAAK,QAAQ,MAAM,MAAM;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,IAO/G,QAAQ,CACN,SACA,SAEA,UAAU,cAAc,KAAK,SAAS,eAAe,GAAG,KAAK,QAAQ,SAAS,IAAI;AAAA,EACtF;AAAA,EAES,OAAO;AAAA,IACd,MAAM,CAAC,QAA6C,SAClD,QAAQ,SAAS,KAAK,SAAS,SAAS,MAAM,GAAG,KAAK,QAAQ,MAAM,MAAM;AAAA,EAC9E;AAAA,EAES,SAAS;AAAA,IAChB,MAAM,CACJ,QACA,SACqB,QAAQ,SAAS,KAAK,SAAS,WAAW,MAAM,GAAG,KAAK,QAAQ,MAAM,MAAM;AAAA,EACrG;AAAA,EAES,MAAM;AAAA,IACb,KAAK,CAAC,SACJ,QAAQ,SAAS,KAAK,SAAS,MAAM,GAAG,KAAK,QAAQ,MAAM,MAAM;AAAA,EACrE;AAAA,EAES,WAAW;AAAA,IAClB,MAAM,CACJ,UACA,kBACA,SAEA,KAAK,SAAS,KAAK,SAAS,gBAAgB,GAAG,KAAK,QAAQ,EAAE,UAAU,iBAAiB,GAAG,MAAM,MAAM;AAAA,EAC5G;AAAA;AAAA;AAAA;AAAA,EAKS,QAAQ;AAAA,IACf,cAAc;AAAA,MACZ,YAAY,CACV,IACA,SACA,SAEA;AAAA,QACE;AAAA,QACA,cAAc,KAAK,SAAS,uBAAuB,mBAAmB,EAAE,CAAC,EAAE;AAAA,QAC3E,KAAK;AAAA,QACL;AAAA,QACA,KAAK;AAAA,MACP;AAAA,IACJ;AAAA,IACA,SAAS;AAAA,MACP,QAAQ,CACN,SACA,SAEA,WAAW,QAAQ,cAAc,KAAK,SAAS,gBAAgB,GAAG,KAAK,aAAa,SAAS,KAAK,MAAM;AAAA,MAE1G,QAAQ,CACN,IACA,OACA,SAEA;AAAA,QACE;AAAA,QACA,cAAc,KAAK,SAAS,kBAAkB,mBAAmB,EAAE,CAAC,EAAE;AAAA,QACtE,KAAK;AAAA,QACL;AAAA,QACA,KAAK;AAAA,MACP;AAAA,MAEF,YAAY,CACV,IACA,SAEA;AAAA,QACE;AAAA,QACA,cAAc,KAAK,SAAS,kBAAkB,mBAAmB,EAAE,CAAC,EAAE;AAAA,QACtE,KAAK;AAAA,QACL,EAAE,QAAQ,WAAW;AAAA,QACrB,KAAK;AAAA,MACP;AAAA,IACJ;AAAA,EACF;AACF;AAGO,SAAS,aAAa,MAAoC;AAC/D,SAAO,IAAI,cAAc,IAAI;AAC/B;;;AC3MA,eAAsB,aAAa,QAAiD;AAClF,QAAM,OAAO,OAAO,eAAe;AACnC,QAAM,MAAM,MAAM,MAAM,GAAG,IAAI,yBAAyB;AAAA,IACtD,QAAQ;AAAA,IACR,SAAS,EAAE,gBAAgB,mBAAmB;AAAA,IAC9C,MAAM,KAAK,UAAU;AAAA,MACnB,MAAM,OAAO;AAAA,MACb,eAAe,OAAO;AAAA,MACtB,WAAW,OAAO;AAAA,MAClB,eAAe,OAAO;AAAA,MACtB,cAAc,OAAO;AAAA,IACvB,CAAC;AAAA,EACH,CAAC;AACD,MAAI;AACJ,MAAI;AACF,WAAO,MAAM,IAAI,KAAK;AAAA,EACxB,QAAQ;AACN,UAAM,IAAI,MAAM,uCAAuC,IAAI,MAAM,GAAG;AAAA,EACtE;AAEA,MAAI,CAAC,IAAI,IAAI;AACX,UAAM,cACJ,OAAO,SAAS,YAAY,SAAS,QAAQ,WAAW,QAAQ,OAAO,KAAK,UAAU,WAClF,KAAK,QACL,OAAO,IAAI,MAAM;AACvB,UAAM,IAAI,MAAM,oBAAoB,WAAW,EAAE;AAAA,EACnD;AAEA,MACE,OAAO,SAAS,YAChB,SAAS,QACT,EAAE,aAAa,SACf,OAAO,KAAK,YAAY,YACxB,EAAE,eAAe,SACjB,OAAO,KAAK,cAAc,UAC1B;AACA,UAAM,IAAI,MAAM,6CAA6C;AAAA,EAC/D;AAMA,QAAM,eAAe,kBAAkB,QAAQ,OAAO,KAAK,iBAAiB,WAAW,KAAK,eAAe;AAE3G,MAAI,iBAAiB,QAAW;AAC9B,UAAM,IAAI,MAAM,gEAAgE;AAAA,EAClF;AAEA,SAAO;AAAA,IACL,SAAS,KAAK;AAAA,IACd,WAAW,KAAK;AAAA,IAChB;AAAA,EACF;AACF;","names":[]}

package/package.json ADDED Viewed

@@ -0,0 +1,41 @@
+{
+  "name": "@playaos/api-client",
+  "version": "0.1.0",
+  "description": "Typed API client for PlayaOS — manage camp members, dues, shifts, and applications",
+  "type": "module",
+  "main": "./dist/index.js",
+  "types": "./dist/index.d.ts",
+  "exports": {
+    ".": {
+      "types": "./dist/index.d.ts",
+      "import": "./dist/index.js"
+    },
+    "./schemas": {
+      "types": "./dist/applications-schema.d.ts",
+      "import": "./dist/applications-schema.js"
+    }
+  },
+  "files": ["dist", "README.md"],
+  "scripts": {
+    "build": "tsup",
+    "dev": "tsup --watch",
+    "typecheck": "tsc --noEmit",
+    "test": "vitest run"
+  },
+  "keywords": ["playaos", "burning-man", "camp-management", "api-client"],
+  "license": "MIT",
+  "peerDependencies": {
+    "zod": "^4.4.3"
+  },
+  "peerDependenciesMeta": {
+    "zod": {
+      "optional": true
+    }
+  },
+  "devDependencies": {
+    "tsup": "^8.5.1",
+    "typescript": "^5.9.3",
+    "vitest": "^4.1.5",
+    "zod": "^4.4.3"
+  }
+}