@scalar/workspace-store 0.20.0 → 0.21.0

package/dist/mutators/auth.js.map

@@ -1,7 +1,7 @@
 {
   "version": 3,
   "sources": ["../../src/mutators/auth.ts"],
-  "sourcesContent": ["import type { HttpMethod } from '@scalar/helpers/http/http-methods'\n\nimport type { AuthEvents } from '@/events/definitions/auth'\nimport { generateUniqueValue } from '@/helpers/generate-unique-value'\nimport { getResolvedRef } from '@/helpers/get-resolved-ref'\nimport { mergeObjects } from '@/helpers/merge-object'\nimport type { WorkspaceDocument } from '@/schemas'\nimport type { SecurityRequirementObject } from '@/schemas/v3.1/strict/security-requirement'\n\n/**\n * AuthMeta defines the meta information needed to specify whether the authentication operation\n * is being performed at the document level (entire API), or for a specific operation (specific path and method).\n *\n * - If type is 'document', the operation applies to the whole OpenAPI document.\n * - If type is 'operation', it targets a specific operation, identified by its path and method.\n */\nexport type AuthMeta =\n  | {\n      type: 'document'\n    }\n  | {\n      type: 'operation'\n      path: string\n      method: HttpMethod\n    }\n\n/**\n * Updates the selected security schemes for either the entire document or a specific operation.\n * - Adds newly created security schemes (if any) to the workspace document's components.\n * - Ensures that each new scheme name is unique within the document by using `generateUniqueValue`.\n * - Updates the `x-scalar-selected-security` property on the target (document or operation) to reflect the new set of selected security schemes.\n * - Corrects and maintains the selected index so it points to a valid security scheme.\n *\n * @param document - The workspace OpenAPI document to mutate (can be null, in which case nothing happens)\n * @param selectedSecuritySchemes - The current list of selected security scheme objects\n * @param create - Array of new schemes to create, each with a name and a scheme definition\n * @param meta - Location to update: whole document or a specific operation (`{ type: 'document' }` or `{ type: 'operation', path, method }`)\n *\n * Example usage:\n * ```\n * updateSelectedSecuritySchemes({\n *   document,\n *   selectedSecuritySchemes: [{ bearerAuth: [] }],\n *   create: [\n *     { name: 'ApiKeyAuth', scheme: { type: 'apiKey', in: 'header', name: 'X-API-Key' } }\n *   ],\n *   meta: { type: 'document' }\n * })\n * ```\n */\nexport const updateSelectedSecuritySchemes = (\n  document: WorkspaceDocument | null,\n  { selectedRequirements, newSchemes, meta }: AuthEvents['auth:update:selected-security-schemes'],\n) => {\n  if (!document) {\n    return\n  }\n\n  // Helper to get the target (whole document or a specific operation)\n  const getTarget = () => {\n    if (meta.type === 'document') {\n      return document\n    }\n\n    return getResolvedRef(document.paths?.[meta.path]?.[meta.method])\n  }\n\n  // Create any new security schemes required, ensuring unique names for the components\n  const createdSchemes = newSchemes\n    .map((scheme) => {\n      const name = generateUniqueValue({\n        defaultValue: scheme.name,\n        validation: (value) => !document.components?.securitySchemes?.[value],\n        maxRetries: 100,\n      })\n\n      if (!name) {\n        return\n      }\n\n      // Ensure components and securitySchemes exist\n      if (!document.components) {\n        document.components = {}\n      }\n      if (!document.components.securitySchemes) {\n        document.components.securitySchemes = {}\n      }\n\n      // Add the new security scheme definition\n      document.components.securitySchemes[name] = scheme.scheme\n\n      // Return an OpenAPI Security Requirement Object for this new scheme (empty scope array)\n      return {\n        [name]: [],\n      }\n    })\n    .filter(Boolean) as SecurityRequirementObject[]\n\n  const target = getTarget()\n\n  const newSelectedSecuritySchemes = [...selectedRequirements, ...createdSchemes]\n\n  // If the target (document/operation) doesn't exist, do nothing\n  if (!target) {\n    return\n  }\n\n  // Ensure the x-scalar-selected-security structure exists on the target\n  if (!target['x-scalar-selected-security']) {\n    target['x-scalar-selected-security'] = {\n      selectedIndex: -1,\n      selectedSchemes: [],\n    }\n  }\n\n  const selectedIndex = target['x-scalar-selected-security'].selectedIndex\n\n  // Update the schemes array\n  target['x-scalar-selected-security'].selectedSchemes = newSelectedSecuritySchemes\n\n  // Adjust selected index if there are schemes and the index is unset/invalid\n  if (newSelectedSecuritySchemes.length > 0 && selectedIndex < 0) {\n    target['x-scalar-selected-security'].selectedIndex = 0\n  }\n\n  // If the selected index is now out of bounds, select the last available\n  if (selectedIndex >= newSelectedSecuritySchemes.length) {\n    target['x-scalar-selected-security'].selectedIndex = newSelectedSecuritySchemes.length - 1\n  }\n}\n\n/**\n * Updates a security scheme in the OpenAPI document's components object.\n * Handles updates for HTTP, API Key, and OAuth2 types, saving secret information and configuration for UI-auth flows.\n *\n * @param document - The OpenAPI workspace document (can be null)\n * @param data - The update information, including type and payload\n * @param name - The name of the security scheme in document.components.securitySchemes\n *\n * Example usage:\n *\n * updateSecurityScheme({\n *   document,\n *   data: {\n *     type: 'http',\n *     payload: {\n *       username: 'user123',\n *       password: 'pw123',\n *       token: 'tokenval'\n *     }\n *   },\n *   name: 'MyHttpAuth',\n * })\n */\nexport const updateSecurityScheme = (\n  document: WorkspaceDocument | null,\n  { payload, name }: AuthEvents['auth:update:security-scheme'],\n) => {\n  const target = getResolvedRef(document?.components?.securitySchemes?.[name])\n  if (!target) {\n    console.error(`Security scheme ${name} not found`)\n    return\n  }\n\n  // Handle HTTP (basic, bearer, etc.)\n  if (target.type === payload.type) {\n    mergeObjects(target, payload)\n  }\n\n  return target\n}\n\n/**\n * Sets the selected authentication tab (scheme) index for the given OpenAPI document or operation.\n * - When on the document level, updates the 'selectedIndex' on the document's x-scalar-selected-security extension.\n * - When on an operation (endpoint) level, updates the 'selectedIndex' for that operation's x-scalar-selected-security.\n *\n * Also initializes the x-scalar-selected-security extension if it does not exist.\n *\n * @param document The OpenAPI document object (may be null)\n * @param index The index to set as selected\n * @param meta Context where the selection applies ('document' or specific operation)\n *\n * @example\n * // Document-level tab selection\n * updateSelectedAuthTab({\n *   document,\n *   index: 1,\n *   meta: { type: 'document' }\n * });\n *\n * // Operation-level tab selection (e.g., GET /pets)\n * updateSelectedAuthTab({\n *   document,\n *   index: 0,\n *   meta: { type: 'operation', path: '/pets', method: 'get' }\n * });\n */\nexport const updateSelectedAuthTab = (\n  document: WorkspaceDocument | null,\n  { index, meta }: AuthEvents['auth:update:active-index'],\n) => {\n  if (!document) {\n    return\n  }\n\n  // Determine the target object for setting the auth tab index:\n  // - Document/root level\n  // - Operation/endpoint level (if meta specifies operation)\n  const getTarget = () => {\n    if (meta.type === 'document') {\n      return document\n    }\n    return getResolvedRef(document.paths?.[meta.path]?.[meta.method])\n  }\n\n  const target = getTarget()\n  if (!target) {\n    return\n  }\n\n  // Ensure the 'x-scalar-selected-security' extension exists\n  if (!target['x-scalar-selected-security']) {\n    target['x-scalar-selected-security'] = {\n      selectedIndex: 0,\n      selectedSchemes: [],\n    }\n  }\n\n  // Set the selected auth tab index\n  target['x-scalar-selected-security'].selectedIndex = index\n}\n\n/**\n * Updates the scopes for a specific security requirement in the selected security schemes of\n * a document or operation.\n *\n * @param document - The OpenAPI WorkspaceDocument to update.\n * @param id - An array of scheme names that uniquely identifies the target security requirement.\n *             For example: ['OAuth', 'ApiKeyAuth']\n * @param name - The security scheme name to update scopes for (e.g., 'OAuth').\n * @param scopes - The new list of scopes to set. For example: ['read:pets', 'write:pets']\n * @param meta - The context specifying whether the update is at the document-level or operation-level.\n *\n * Example usage:\n * ```ts\n * // Suppose your document (or operation) x-scalar-selected-security looks like:\n * // \"x-scalar-selected-security\": {\n * //   selectedIndex: 0,\n * //   selectedSchemes: [\n * //     { \"OAuth\": [\"read:pets\"] },\n * //     { \"ApiKeyAuth\": [] }\n * //   ]\n * // }\n *\n * updateSelectedScopes({\n *   document,\n *   id: [\"OAuth\"],     // identifies the scheme object: { \"OAuth\": [...] }\n *   name: \"OAuth\",     // scheme name to update within this security requirement\n *   scopes: [\"write:pets\"], // new scopes array\n *   meta: { type: \"document\" }\n * })\n * // After, the first scheme becomes: { \"OAuth\": [\"write:pets\"] }\n * ```\n */\nexport const updateSelectedScopes = (\n  document: WorkspaceDocument | null,\n  { id, name, scopes, meta }: AuthEvents['auth:update:selected-scopes'],\n) => {\n  if (!document) {\n    return\n  }\n\n  // Determine the target object (document or the operation)\n  const getTarget = () => {\n    if (meta.type === 'document') {\n      return document\n    }\n    return getResolvedRef(document.paths?.[meta.path]?.[meta.method])\n  }\n\n  const target = getTarget()\n\n  if (!target) {\n    return\n  }\n\n  // Array of security requirement objects under x-scalar-selected-security\n  const selectedSchemes = target['x-scalar-selected-security']?.selectedSchemes\n\n  if (!selectedSchemes) {\n    return\n  }\n\n  // Find the security requirement that matches the given id (scheme key names)\n  // For example: if id = [\"OAuth\"], matches { OAuth: [...] }\n  const scheme = selectedSchemes.find((scheme) => JSON.stringify(Object.keys(scheme)) === JSON.stringify(id))\n\n  if (!scheme) {\n    return\n  }\n\n  // Set the scopes array for the named security scheme within the found security requirement\n  scheme[name] = scopes\n}\n\n/**\n * Deletes one or more security schemes from an OpenAPI WorkspaceDocument,\n * and removes all references to those schemes from selected security, document-level security,\n * and operation-level security/selected security (e.g., on paths).\n *\n * Example usage:\n *\n * ```ts\n * deleteSecurityScheme({\n *   document,                                // The OpenAPI document to update\n *   names: ['ApiKeyAuth', 'BearerAuth'],     // The names of security schemes you want to delete\n * });\n * ```\n *\n * After running this function:\n * - The named security schemes are removed from the components.securitySchemes section.\n * - All document-level and operation-level security entries referencing those schemes are removed.\n * - Any extended x-scalar-selected-security references to those schemes are also removed.\n */\nexport const deleteSecurityScheme = (\n  document: WorkspaceDocument | null,\n  { names }: AuthEvents['auth:delete:security-scheme'],\n) => {\n  if (!document) {\n    // Early exit if there is no document to modify\n    return\n  }\n\n  // Get the mutable reference to securitySchemes in components (may be a proxy/resolved reference)\n  const target = getResolvedRef(document.components?.securitySchemes)\n\n  if (!target) {\n    // If there are no security schemes to delete from, return early\n    return\n  }\n\n  // Remove each named security scheme from the components.securitySchemes object\n  names.forEach((name) => {\n    delete target[name]\n  })\n\n  // Function to remove any security requirement objects that reference given scheme names.\n  const filterSecuritySchemes = (schemes: SecurityRequirementObject[]) => {\n    // Remove schemes whose key is included in the `names` to be deleted.\n    return schemes.filter((scheme) => !names.some((name) => Object.keys(scheme).includes(name)))\n  }\n\n  // -- Remove from document-level `x-scalar-selected-security` extension, if present\n  if (document['x-scalar-selected-security']) {\n    const selectedSecurity = document['x-scalar-selected-security']\n    selectedSecurity.selectedSchemes = filterSecuritySchemes(selectedSecurity.selectedSchemes)\n  }\n\n  // -- Remove from document-level `security` property, if present\n  if (document['security']) {\n    document['security'] = filterSecuritySchemes(document['security'])\n  }\n\n  // -- For each path and operation, remove deleted security schemes from operation-level security and custom extension\n  Object.values(document.paths ?? {}).forEach((path) => {\n    Object.values(path).forEach((operation) => {\n      if (typeof operation !== 'object') {\n        // Ignore operations that are not objects (could be undefined)\n        return\n      }\n\n      // Get mutable reference for the operation (could resolve $ref proxies)\n      const resolvedOperation = getResolvedRef(operation)\n\n      // Remove from operation-level security array\n      if ('security' in resolvedOperation && resolvedOperation['security']) {\n        resolvedOperation['security'] = filterSecuritySchemes(resolvedOperation['security'])\n      }\n\n      // Remove from operation-level x-scalar-selected-security array\n      if ('x-scalar-selected-security' in resolvedOperation && resolvedOperation['x-scalar-selected-security']) {\n        resolvedOperation['x-scalar-selected-security'].selectedSchemes = filterSecuritySchemes(\n          resolvedOperation['x-scalar-selected-security'].selectedSchemes,\n        )\n      }\n    })\n  })\n}\n"],
-  "mappings": "AAGA,SAAS,2BAA2B;AACpC,SAAS,sBAAsB;AAC/B,SAAS,oBAAoB;AA6CtB,MAAM,gCAAgC,CAC3C,UACA,EAAE,sBAAsB,YAAY,KAAK,MACtC;AACH,MAAI,CAAC,UAAU;AACb;AAAA,EACF;AAGA,QAAM,YAAY,MAAM;AACtB,QAAI,KAAK,SAAS,YAAY;AAC5B,aAAO;AAAA,IACT;AAEA,WAAO,eAAe,SAAS,QAAQ,KAAK,IAAI,IAAI,KAAK,MAAM,CAAC;AAAA,EAClE;AAGA,QAAM,iBAAiB,WACpB,IAAI,CAAC,WAAW;AACf,UAAM,OAAO,oBAAoB;AAAA,MAC/B,cAAc,OAAO;AAAA,MACrB,YAAY,CAAC,UAAU,CAAC,SAAS,YAAY,kBAAkB,KAAK;AAAA,MACpE,YAAY;AAAA,IACd,CAAC;AAED,QAAI,CAAC,MAAM;AACT;AAAA,IACF;AAGA,QAAI,CAAC,SAAS,YAAY;AACxB,eAAS,aAAa,CAAC;AAAA,IACzB;AACA,QAAI,CAAC,SAAS,WAAW,iBAAiB;AACxC,eAAS,WAAW,kBAAkB,CAAC;AAAA,IACzC;AAGA,aAAS,WAAW,gBAAgB,IAAI,IAAI,OAAO;AAGnD,WAAO;AAAA,MACL,CAAC,IAAI,GAAG,CAAC;AAAA,IACX;AAAA,EACF,CAAC,EACA,OAAO,OAAO;AAEjB,QAAM,SAAS,UAAU;AAEzB,QAAM,6BAA6B,CAAC,GAAG,sBAAsB,GAAG,cAAc;AAG9E,MAAI,CAAC,QAAQ;AACX;AAAA,EACF;AAGA,MAAI,CAAC,OAAO,4BAA4B,GAAG;AACzC,WAAO,4BAA4B,IAAI;AAAA,MACrC,eAAe;AAAA,MACf,iBAAiB,CAAC;AAAA,IACpB;AAAA,EACF;AAEA,QAAM,gBAAgB,OAAO,4BAA4B,EAAE;AAG3D,SAAO,4BAA4B,EAAE,kBAAkB;AAGvD,MAAI,2BAA2B,SAAS,KAAK,gBAAgB,GAAG;AAC9D,WAAO,4BAA4B,EAAE,gBAAgB;AAAA,EACvD;AAGA,MAAI,iBAAiB,2BAA2B,QAAQ;AACtD,WAAO,4BAA4B,EAAE,gBAAgB,2BAA2B,SAAS;AAAA,EAC3F;AACF;AAyBO,MAAM,uBAAuB,CAClC,UACA,EAAE,SAAS,KAAK,MACb;AACH,QAAM,SAAS,eAAe,UAAU,YAAY,kBAAkB,IAAI,CAAC;AAC3E,MAAI,CAAC,QAAQ;AACX,YAAQ,MAAM,mBAAmB,IAAI,YAAY;AACjD;AAAA,EACF;AAGA,MAAI,OAAO,SAAS,QAAQ,MAAM;AAChC,iBAAa,QAAQ,OAAO;AAAA,EAC9B;AAEA,SAAO;AACT;AA4BO,MAAM,wBAAwB,CACnC,UACA,EAAE,OAAO,KAAK,MACX;AACH,MAAI,CAAC,UAAU;AACb;AAAA,EACF;AAKA,QAAM,YAAY,MAAM;AACtB,QAAI,KAAK,SAAS,YAAY;AAC5B,aAAO;AAAA,IACT;AACA,WAAO,eAAe,SAAS,QAAQ,KAAK,IAAI,IAAI,KAAK,MAAM,CAAC;AAAA,EAClE;AAEA,QAAM,SAAS,UAAU;AACzB,MAAI,CAAC,QAAQ;AACX;AAAA,EACF;AAGA,MAAI,CAAC,OAAO,4BAA4B,GAAG;AACzC,WAAO,4BAA4B,IAAI;AAAA,MACrC,eAAe;AAAA,MACf,iBAAiB,CAAC;AAAA,IACpB;AAAA,EACF;AAGA,SAAO,4BAA4B,EAAE,gBAAgB;AACvD;AAkCO,MAAM,uBAAuB,CAClC,UACA,EAAE,IAAI,MAAM,QAAQ,KAAK,MACtB;AACH,MAAI,CAAC,UAAU;AACb;AAAA,EACF;AAGA,QAAM,YAAY,MAAM;AACtB,QAAI,KAAK,SAAS,YAAY;AAC5B,aAAO;AAAA,IACT;AACA,WAAO,eAAe,SAAS,QAAQ,KAAK,IAAI,IAAI,KAAK,MAAM,CAAC;AAAA,EAClE;AAEA,QAAM,SAAS,UAAU;AAEzB,MAAI,CAAC,QAAQ;AACX;AAAA,EACF;AAGA,QAAM,kBAAkB,OAAO,4BAA4B,GAAG;AAE9D,MAAI,CAAC,iBAAiB;AACpB;AAAA,EACF;AAIA,QAAM,SAAS,gBAAgB,KAAK,CAACA,YAAW,KAAK,UAAU,OAAO,KAAKA,OAAM,CAAC,MAAM,KAAK,UAAU,EAAE,CAAC;AAE1G,MAAI,CAAC,QAAQ;AACX;AAAA,EACF;AAGA,SAAO,IAAI,IAAI;AACjB;AAqBO,MAAM,uBAAuB,CAClC,UACA,EAAE,MAAM,MACL;AACH,MAAI,CAAC,UAAU;AAEb;AAAA,EACF;AAGA,QAAM,SAAS,eAAe,SAAS,YAAY,eAAe;AAElE,MAAI,CAAC,QAAQ;AAEX;AAAA,EACF;AAGA,QAAM,QAAQ,CAAC,SAAS;AACtB,WAAO,OAAO,IAAI;AAAA,EACpB,CAAC;AAGD,QAAM,wBAAwB,CAAC,YAAyC;AAEtE,WAAO,QAAQ,OAAO,CAAC,WAAW,CAAC,MAAM,KAAK,CAAC,SAAS,OAAO,KAAK,MAAM,EAAE,SAAS,IAAI,CAAC,CAAC;AAAA,EAC7F;AAGA,MAAI,SAAS,4BAA4B,GAAG;AAC1C,UAAM,mBAAmB,SAAS,4BAA4B;AAC9D,qBAAiB,kBAAkB,sBAAsB,iBAAiB,eAAe;AAAA,EAC3F;AAGA,MAAI,SAAS,UAAU,GAAG;AACxB,aAAS,UAAU,IAAI,sBAAsB,SAAS,UAAU,CAAC;AAAA,EACnE;AAGA,SAAO,OAAO,SAAS,SAAS,CAAC,CAAC,EAAE,QAAQ,CAAC,SAAS;AACpD,WAAO,OAAO,IAAI,EAAE,QAAQ,CAAC,cAAc;AACzC,UAAI,OAAO,cAAc,UAAU;AAEjC;AAAA,MACF;AAGA,YAAM,oBAAoB,eAAe,SAAS;AAGlD,UAAI,cAAc,qBAAqB,kBAAkB,UAAU,GAAG;AACpE,0BAAkB,UAAU,IAAI,sBAAsB,kBAAkB,UAAU,CAAC;AAAA,MACrF;AAGA,UAAI,gCAAgC,qBAAqB,kBAAkB,4BAA4B,GAAG;AACxG,0BAAkB,4BAA4B,EAAE,kBAAkB;AAAA,UAChE,kBAAkB,4BAA4B,EAAE;AAAA,QAClD;AAAA,MACF;AAAA,IACF,CAAC;AAAA,EACH,CAAC;AACH;",
+  "sourcesContent": ["import type { HttpMethod } from '@scalar/helpers/http/http-methods'\n\nimport type { AuthEvents } from '@/events/definitions/auth'\nimport { generateUniqueValue } from '@/helpers/generate-unique-value'\nimport { getResolvedRef } from '@/helpers/get-resolved-ref'\nimport { mergeObjects } from '@/helpers/merge-object'\nimport type { WorkspaceDocument } from '@/schemas'\nimport type { SecurityRequirementObject } from '@/schemas/v3.1/strict/security-requirement'\n\n/**\n * AuthMeta defines the meta information needed to specify whether the authentication operation\n * is being performed at the document level (entire API), or for a specific operation (specific path and method).\n *\n * - If type is 'document', the operation applies to the whole OpenAPI document.\n * - If type is 'operation', it targets a specific operation, identified by its path and method.\n */\nexport type AuthMeta =\n  | {\n      type: 'document'\n    }\n  | {\n      type: 'operation'\n      path: string\n      method: HttpMethod\n    }\n\n/**\n * Updates the selected security schemes for either the entire document or a specific operation.\n * - Adds newly created security schemes (if any) to the workspace document's components.\n * - Ensures that each new scheme name is unique within the document by using `generateUniqueValue`.\n * - Updates the `x-scalar-selected-security` property on the target (document or operation) to reflect the new set of selected security schemes.\n * - Corrects and maintains the selected index so it points to a valid security scheme.\n *\n * @param document - The workspace OpenAPI document to mutate (can be null, in which case nothing happens)\n * @param selectedSecuritySchemes - The current list of selected security scheme objects\n * @param create - Array of new schemes to create, each with a name and a scheme definition\n * @param meta - Location to update: whole document or a specific operation (`{ type: 'document' }` or `{ type: 'operation', path, method }`)\n *\n * Example usage:\n * ```\n * updateSelectedSecuritySchemes({\n *   document,\n *   selectedSecuritySchemes: [{ bearerAuth: [] }],\n *   create: [\n *     { name: 'ApiKeyAuth', scheme: { type: 'apiKey', in: 'header', name: 'X-API-Key' } }\n *   ],\n *   meta: { type: 'document' }\n * })\n * ```\n */\nexport const updateSelectedSecuritySchemes = async (\n  document: WorkspaceDocument | null,\n  { selectedRequirements, newSchemes, meta }: AuthEvents['auth:update:selected-security-schemes'],\n) => {\n  if (!document) {\n    return\n  }\n\n  // Helper to get the target (whole document or a specific operation)\n  const getTarget = () => {\n    if (meta.type === 'document') {\n      return document\n    }\n\n    return getResolvedRef(document.paths?.[meta.path]?.[meta.method])\n  }\n\n  const createdSecurityRequirements = await Promise.all(\n    newSchemes.map(async (newScheme) => {\n      const uniqueSchemeName = await generateUniqueValue({\n        defaultValue: newScheme.name,\n        validation: (value) => !document.components?.securitySchemes?.[value],\n        maxRetries: 100,\n      })\n\n      if (!uniqueSchemeName) {\n        return\n      }\n\n      // Ensure components and securitySchemes exist\n      if (!document.components) {\n        document.components = {}\n      }\n      if (!document.components.securitySchemes) {\n        document.components.securitySchemes = {}\n      }\n\n      // Add the new security scheme definition\n      document.components.securitySchemes[uniqueSchemeName] = newScheme.scheme\n\n      // Return an OpenAPI Security Requirement Object for this new scheme (empty scope array)\n      return {\n        [uniqueSchemeName]: [],\n      }\n    }),\n  )\n\n  // Create any new security schemes required, ensuring unique names for the components\n  const createdSchemes = createdSecurityRequirements.filter(Boolean) as SecurityRequirementObject[]\n\n  const target = getTarget()\n\n  const newSelectedSecuritySchemes = [...selectedRequirements, ...createdSchemes]\n\n  // If the target (document/operation) doesn't exist, do nothing\n  if (!target) {\n    return\n  }\n\n  // Ensure the x-scalar-selected-security structure exists on the target\n  if (!target['x-scalar-selected-security']) {\n    target['x-scalar-selected-security'] = {\n      selectedIndex: -1,\n      selectedSchemes: [],\n    }\n  }\n\n  const selectedIndex = target['x-scalar-selected-security'].selectedIndex\n\n  // Update the schemes array\n  target['x-scalar-selected-security'].selectedSchemes = newSelectedSecuritySchemes\n\n  // Adjust selected index if there are schemes and the index is unset/invalid\n  if (newSelectedSecuritySchemes.length > 0 && selectedIndex < 0) {\n    target['x-scalar-selected-security'].selectedIndex = 0\n  }\n\n  // If the selected index is now out of bounds, select the last available\n  if (selectedIndex >= newSelectedSecuritySchemes.length) {\n    target['x-scalar-selected-security'].selectedIndex = newSelectedSecuritySchemes.length - 1\n  }\n}\n\n/**\n * Updates a security scheme in the OpenAPI document's components object.\n * Handles updates for HTTP, API Key, and OAuth2 types, saving secret information and configuration for UI-auth flows.\n *\n * @param document - The OpenAPI workspace document (can be null)\n * @param data - The update information, including type and payload\n * @param name - The name of the security scheme in document.components.securitySchemes\n *\n * Example usage:\n *\n * updateSecurityScheme({\n *   document,\n *   data: {\n *     type: 'http',\n *     payload: {\n *       username: 'user123',\n *       password: 'pw123',\n *       token: 'tokenval'\n *     }\n *   },\n *   name: 'MyHttpAuth',\n * })\n */\nexport const updateSecurityScheme = (\n  document: WorkspaceDocument | null,\n  { payload, name }: AuthEvents['auth:update:security-scheme'],\n) => {\n  const target = getResolvedRef(document?.components?.securitySchemes?.[name])\n  if (!target) {\n    console.error(`Security scheme ${name} not found`)\n    return\n  }\n\n  // Handle HTTP (basic, bearer, etc.)\n  if (target.type === payload.type) {\n    mergeObjects(target, payload)\n  }\n\n  return target\n}\n\n/**\n * Sets the selected authentication tab (scheme) index for the given OpenAPI document or operation.\n * - When on the document level, updates the 'selectedIndex' on the document's x-scalar-selected-security extension.\n * - When on an operation (endpoint) level, updates the 'selectedIndex' for that operation's x-scalar-selected-security.\n *\n * Also initializes the x-scalar-selected-security extension if it does not exist.\n *\n * @param document The OpenAPI document object (may be null)\n * @param index The index to set as selected\n * @param meta Context where the selection applies ('document' or specific operation)\n *\n * @example\n * // Document-level tab selection\n * updateSelectedAuthTab({\n *   document,\n *   index: 1,\n *   meta: { type: 'document' }\n * });\n *\n * // Operation-level tab selection (e.g., GET /pets)\n * updateSelectedAuthTab({\n *   document,\n *   index: 0,\n *   meta: { type: 'operation', path: '/pets', method: 'get' }\n * });\n */\nexport const updateSelectedAuthTab = (\n  document: WorkspaceDocument | null,\n  { index, meta }: AuthEvents['auth:update:active-index'],\n) => {\n  if (!document) {\n    return\n  }\n\n  // Determine the target object for setting the auth tab index:\n  // - Document/root level\n  // - Operation/endpoint level (if meta specifies operation)\n  const getTarget = () => {\n    if (meta.type === 'document') {\n      return document\n    }\n    return getResolvedRef(document.paths?.[meta.path]?.[meta.method])\n  }\n\n  const target = getTarget()\n  if (!target) {\n    return\n  }\n\n  // Ensure the 'x-scalar-selected-security' extension exists\n  if (!target['x-scalar-selected-security']) {\n    target['x-scalar-selected-security'] = {\n      selectedIndex: 0,\n      selectedSchemes: [],\n    }\n  }\n\n  // Set the selected auth tab index\n  target['x-scalar-selected-security'].selectedIndex = index\n}\n\n/**\n * Updates the scopes for a specific security requirement in the selected security schemes of\n * a document or operation.\n *\n * @param document - The OpenAPI WorkspaceDocument to update.\n * @param id - An array of scheme names that uniquely identifies the target security requirement.\n *             For example: ['OAuth', 'ApiKeyAuth']\n * @param name - The security scheme name to update scopes for (e.g., 'OAuth').\n * @param scopes - The new list of scopes to set. For example: ['read:pets', 'write:pets']\n * @param meta - The context specifying whether the update is at the document-level or operation-level.\n *\n * Example usage:\n * ```ts\n * // Suppose your document (or operation) x-scalar-selected-security looks like:\n * // \"x-scalar-selected-security\": {\n * //   selectedIndex: 0,\n * //   selectedSchemes: [\n * //     { \"OAuth\": [\"read:pets\"] },\n * //     { \"ApiKeyAuth\": [] }\n * //   ]\n * // }\n *\n * updateSelectedScopes({\n *   document,\n *   id: [\"OAuth\"],     // identifies the scheme object: { \"OAuth\": [...] }\n *   name: \"OAuth\",     // scheme name to update within this security requirement\n *   scopes: [\"write:pets\"], // new scopes array\n *   meta: { type: \"document\" }\n * })\n * // After, the first scheme becomes: { \"OAuth\": [\"write:pets\"] }\n * ```\n */\nexport const updateSelectedScopes = (\n  document: WorkspaceDocument | null,\n  { id, name, scopes, meta }: AuthEvents['auth:update:selected-scopes'],\n) => {\n  if (!document) {\n    return\n  }\n\n  // Determine the target object (document or the operation)\n  const getTarget = () => {\n    if (meta.type === 'document') {\n      return document\n    }\n    return getResolvedRef(document.paths?.[meta.path]?.[meta.method])\n  }\n\n  const target = getTarget()\n\n  if (!target) {\n    return\n  }\n\n  // Array of security requirement objects under x-scalar-selected-security\n  const selectedSchemes = target['x-scalar-selected-security']?.selectedSchemes\n\n  if (!selectedSchemes) {\n    return\n  }\n\n  // Find the security requirement that matches the given id (scheme key names)\n  // For example: if id = [\"OAuth\"], matches { OAuth: [...] }\n  const scheme = selectedSchemes.find((scheme) => JSON.stringify(Object.keys(scheme)) === JSON.stringify(id))\n\n  if (!scheme) {\n    return\n  }\n\n  // Set the scopes array for the named security scheme within the found security requirement\n  scheme[name] = scopes\n}\n\n/**\n * Deletes one or more security schemes from an OpenAPI WorkspaceDocument,\n * and removes all references to those schemes from selected security, document-level security,\n * and operation-level security/selected security (e.g., on paths).\n *\n * Example usage:\n *\n * ```ts\n * deleteSecurityScheme({\n *   document,                                // The OpenAPI document to update\n *   names: ['ApiKeyAuth', 'BearerAuth'],     // The names of security schemes you want to delete\n * });\n * ```\n *\n * After running this function:\n * - The named security schemes are removed from the components.securitySchemes section.\n * - All document-level and operation-level security entries referencing those schemes are removed.\n * - Any extended x-scalar-selected-security references to those schemes are also removed.\n */\nexport const deleteSecurityScheme = (\n  document: WorkspaceDocument | null,\n  { names }: AuthEvents['auth:delete:security-scheme'],\n) => {\n  if (!document) {\n    // Early exit if there is no document to modify\n    return\n  }\n\n  // Get the mutable reference to securitySchemes in components (may be a proxy/resolved reference)\n  const target = getResolvedRef(document.components?.securitySchemes)\n\n  if (!target) {\n    // If there are no security schemes to delete from, return early\n    return\n  }\n\n  // Remove each named security scheme from the components.securitySchemes object\n  names.forEach((name) => {\n    delete target[name]\n  })\n\n  // Function to remove any security requirement objects that reference given scheme names.\n  const filterSecuritySchemes = (schemes: SecurityRequirementObject[]) => {\n    // Remove schemes whose key is included in the `names` to be deleted.\n    return schemes.filter((scheme) => !names.some((name) => Object.keys(scheme).includes(name)))\n  }\n\n  // -- Remove from document-level `x-scalar-selected-security` extension, if present\n  if (document['x-scalar-selected-security']) {\n    const selectedSecurity = document['x-scalar-selected-security']\n    selectedSecurity.selectedSchemes = filterSecuritySchemes(selectedSecurity.selectedSchemes)\n  }\n\n  // -- Remove from document-level `security` property, if present\n  if (document['security']) {\n    document['security'] = filterSecuritySchemes(document['security'])\n  }\n\n  // -- For each path and operation, remove deleted security schemes from operation-level security and custom extension\n  Object.values(document.paths ?? {}).forEach((path) => {\n    Object.values(path).forEach((operation) => {\n      if (typeof operation !== 'object') {\n        // Ignore operations that are not objects (could be undefined)\n        return\n      }\n\n      // Get mutable reference for the operation (could resolve $ref proxies)\n      const resolvedOperation = getResolvedRef(operation)\n\n      // Remove from operation-level security array\n      if ('security' in resolvedOperation && resolvedOperation['security']) {\n        resolvedOperation['security'] = filterSecuritySchemes(resolvedOperation['security'])\n      }\n\n      // Remove from operation-level x-scalar-selected-security array\n      if ('x-scalar-selected-security' in resolvedOperation && resolvedOperation['x-scalar-selected-security']) {\n        resolvedOperation['x-scalar-selected-security'].selectedSchemes = filterSecuritySchemes(\n          resolvedOperation['x-scalar-selected-security'].selectedSchemes,\n        )\n      }\n    })\n  })\n}\n"],
+  "mappings": "AAGA,SAAS,2BAA2B;AACpC,SAAS,sBAAsB;AAC/B,SAAS,oBAAoB;AA6CtB,MAAM,gCAAgC,OAC3C,UACA,EAAE,sBAAsB,YAAY,KAAK,MACtC;AACH,MAAI,CAAC,UAAU;AACb;AAAA,EACF;AAGA,QAAM,YAAY,MAAM;AACtB,QAAI,KAAK,SAAS,YAAY;AAC5B,aAAO;AAAA,IACT;AAEA,WAAO,eAAe,SAAS,QAAQ,KAAK,IAAI,IAAI,KAAK,MAAM,CAAC;AAAA,EAClE;AAEA,QAAM,8BAA8B,MAAM,QAAQ;AAAA,IAChD,WAAW,IAAI,OAAO,cAAc;AAClC,YAAM,mBAAmB,MAAM,oBAAoB;AAAA,QACjD,cAAc,UAAU;AAAA,QACxB,YAAY,CAAC,UAAU,CAAC,SAAS,YAAY,kBAAkB,KAAK;AAAA,QACpE,YAAY;AAAA,MACd,CAAC;AAED,UAAI,CAAC,kBAAkB;AACrB;AAAA,MACF;AAGA,UAAI,CAAC,SAAS,YAAY;AACxB,iBAAS,aAAa,CAAC;AAAA,MACzB;AACA,UAAI,CAAC,SAAS,WAAW,iBAAiB;AACxC,iBAAS,WAAW,kBAAkB,CAAC;AAAA,MACzC;AAGA,eAAS,WAAW,gBAAgB,gBAAgB,IAAI,UAAU;AAGlE,aAAO;AAAA,QACL,CAAC,gBAAgB,GAAG,CAAC;AAAA,MACvB;AAAA,IACF,CAAC;AAAA,EACH;AAGA,QAAM,iBAAiB,4BAA4B,OAAO,OAAO;AAEjE,QAAM,SAAS,UAAU;AAEzB,QAAM,6BAA6B,CAAC,GAAG,sBAAsB,GAAG,cAAc;AAG9E,MAAI,CAAC,QAAQ;AACX;AAAA,EACF;AAGA,MAAI,CAAC,OAAO,4BAA4B,GAAG;AACzC,WAAO,4BAA4B,IAAI;AAAA,MACrC,eAAe;AAAA,MACf,iBAAiB,CAAC;AAAA,IACpB;AAAA,EACF;AAEA,QAAM,gBAAgB,OAAO,4BAA4B,EAAE;AAG3D,SAAO,4BAA4B,EAAE,kBAAkB;AAGvD,MAAI,2BAA2B,SAAS,KAAK,gBAAgB,GAAG;AAC9D,WAAO,4BAA4B,EAAE,gBAAgB;AAAA,EACvD;AAGA,MAAI,iBAAiB,2BAA2B,QAAQ;AACtD,WAAO,4BAA4B,EAAE,gBAAgB,2BAA2B,SAAS;AAAA,EAC3F;AACF;AAyBO,MAAM,uBAAuB,CAClC,UACA,EAAE,SAAS,KAAK,MACb;AACH,QAAM,SAAS,eAAe,UAAU,YAAY,kBAAkB,IAAI,CAAC;AAC3E,MAAI,CAAC,QAAQ;AACX,YAAQ,MAAM,mBAAmB,IAAI,YAAY;AACjD;AAAA,EACF;AAGA,MAAI,OAAO,SAAS,QAAQ,MAAM;AAChC,iBAAa,QAAQ,OAAO;AAAA,EAC9B;AAEA,SAAO;AACT;AA4BO,MAAM,wBAAwB,CACnC,UACA,EAAE,OAAO,KAAK,MACX;AACH,MAAI,CAAC,UAAU;AACb;AAAA,EACF;AAKA,QAAM,YAAY,MAAM;AACtB,QAAI,KAAK,SAAS,YAAY;AAC5B,aAAO;AAAA,IACT;AACA,WAAO,eAAe,SAAS,QAAQ,KAAK,IAAI,IAAI,KAAK,MAAM,CAAC;AAAA,EAClE;AAEA,QAAM,SAAS,UAAU;AACzB,MAAI,CAAC,QAAQ;AACX;AAAA,EACF;AAGA,MAAI,CAAC,OAAO,4BAA4B,GAAG;AACzC,WAAO,4BAA4B,IAAI;AAAA,MACrC,eAAe;AAAA,MACf,iBAAiB,CAAC;AAAA,IACpB;AAAA,EACF;AAGA,SAAO,4BAA4B,EAAE,gBAAgB;AACvD;AAkCO,MAAM,uBAAuB,CAClC,UACA,EAAE,IAAI,MAAM,QAAQ,KAAK,MACtB;AACH,MAAI,CAAC,UAAU;AACb;AAAA,EACF;AAGA,QAAM,YAAY,MAAM;AACtB,QAAI,KAAK,SAAS,YAAY;AAC5B,aAAO;AAAA,IACT;AACA,WAAO,eAAe,SAAS,QAAQ,KAAK,IAAI,IAAI,KAAK,MAAM,CAAC;AAAA,EAClE;AAEA,QAAM,SAAS,UAAU;AAEzB,MAAI,CAAC,QAAQ;AACX;AAAA,EACF;AAGA,QAAM,kBAAkB,OAAO,4BAA4B,GAAG;AAE9D,MAAI,CAAC,iBAAiB;AACpB;AAAA,EACF;AAIA,QAAM,SAAS,gBAAgB,KAAK,CAACA,YAAW,KAAK,UAAU,OAAO,KAAKA,OAAM,CAAC,MAAM,KAAK,UAAU,EAAE,CAAC;AAE1G,MAAI,CAAC,QAAQ;AACX;AAAA,EACF;AAGA,SAAO,IAAI,IAAI;AACjB;AAqBO,MAAM,uBAAuB,CAClC,UACA,EAAE,MAAM,MACL;AACH,MAAI,CAAC,UAAU;AAEb;AAAA,EACF;AAGA,QAAM,SAAS,eAAe,SAAS,YAAY,eAAe;AAElE,MAAI,CAAC,QAAQ;AAEX;AAAA,EACF;AAGA,QAAM,QAAQ,CAAC,SAAS;AACtB,WAAO,OAAO,IAAI;AAAA,EACpB,CAAC;AAGD,QAAM,wBAAwB,CAAC,YAAyC;AAEtE,WAAO,QAAQ,OAAO,CAAC,WAAW,CAAC,MAAM,KAAK,CAAC,SAAS,OAAO,KAAK,MAAM,EAAE,SAAS,IAAI,CAAC,CAAC;AAAA,EAC7F;AAGA,MAAI,SAAS,4BAA4B,GAAG;AAC1C,UAAM,mBAAmB,SAAS,4BAA4B;AAC9D,qBAAiB,kBAAkB,sBAAsB,iBAAiB,eAAe;AAAA,EAC3F;AAGA,MAAI,SAAS,UAAU,GAAG;AACxB,aAAS,UAAU,IAAI,sBAAsB,SAAS,UAAU,CAAC;AAAA,EACnE;AAGA,SAAO,OAAO,SAAS,SAAS,CAAC,CAAC,EAAE,QAAQ,CAAC,SAAS;AACpD,WAAO,OAAO,IAAI,EAAE,QAAQ,CAAC,cAAc;AACzC,UAAI,OAAO,cAAc,UAAU;AAEjC;AAAA,MACF;AAGA,YAAM,oBAAoB,eAAe,SAAS;AAGlD,UAAI,cAAc,qBAAqB,kBAAkB,UAAU,GAAG;AACpE,0BAAkB,UAAU,IAAI,sBAAsB,kBAAkB,UAAU,CAAC;AAAA,MACrF;AAGA,UAAI,gCAAgC,qBAAqB,kBAAkB,4BAA4B,GAAG;AACxG,0BAAkB,4BAA4B,EAAE,kBAAkB;AAAA,UAChE,kBAAkB,4BAA4B,EAAE;AAAA,QAClD;AAAA,MACF;AAAA,IACF,CAAC;AAAA,EACH,CAAC;AACH;",
   "names": ["scheme"]
 }

package/dist/mutators/cookie.d.ts

@@ -1,17 +1,25 @@
-import type { UnknownObject } from '../helpers/general.js';
-import type { XScalarClientConfigCookie, XScalarClientConfigCookies } from '../schemas/v3.1/strict/client-config-extensions/x-scalar-client-config-cookies.js';
+import type { CookieEvents } from '../events/definitions/cookie.js';
+import type { Workspace, WorkspaceDocument } from '../schemas.js';
+import { type XScalarCookie } from '../schemas/extensions/general/x-scalar-cookies.js';
 /**
- * Cookie mutators for managing client configuration cookies in OpenAPI documents.
- * Provides functions to add and delete cookies from the document's x-scalar-client-config-cookies extension.
+ * Adds OR updates a cookie to the document or workspace.
  *
- * @param store - The workspace store containing the documents
- * @param documentName - The name of the document to operate on
- * @returns Object containing addCookie and deleteCookie functions
+ * @param document - current document if available
+ * @param workspace - current workspace if available
+ * @param payload - The cookie configuration to add or update
+ * @param index - Optional index for updating an existing cookie
+ * @param collectionType - Whether this is for a document or workspace
+ * @returns the parsed cookie that was added or updated or undefined if the collection is not found
  */
-export declare const cookieMutators: (document?: UnknownObject & {
-    "x-scalar-client-config-cookies"?: XScalarClientConfigCookies;
-}) => {
-    addCookie: (cookie: XScalarClientConfigCookie) => boolean;
-    deleteCookie: (cookieName: string) => boolean;
-};
+export declare const upsertCookie: (collection: WorkspaceDocument | Workspace | null, { payload, index }: CookieEvents["cookie:upsert:cookie"]) => XScalarCookie | undefined;
+/**
+ * Deletes a cookie from the document or workspace by index.
+ *
+ * @param document - current document if available
+ * @param workspace - current workspace if available
+ * @param index - Index of the cookie to delete
+ * @param collectionType - Whether this is for a document or workspace
+ * @returns true if the cookie was deleted, false otherwise
+ */
+export declare const deleteCookie: (collection: WorkspaceDocument | Workspace | null, { index }: CookieEvents["cookie:delete:cookie"]) => boolean;
 //# sourceMappingURL=cookie.d.ts.map

package/dist/mutators/cookie.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"cookie.d.ts","sourceRoot":"","sources":["../../src/mutators/cookie.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,aAAa,EAAE,MAAM,mBAAmB,CAAA;AACtD,OAAO,KAAK,EACV,yBAAyB,EACzB,0BAA0B,EAC3B,MAAM,+EAA+E,CAAA;AAEtF;;;;;;;GAOG;AACH,eAAO,MAAM,cAAc,GACzB,WAAW,aAAa,GAAG;IAAE,gCAAgC,CAAC,EAAE,0BAA0B,CAAA;CAAE;wBAwBjE,yBAAyB;+BA+BlB,MAAM;CAazC,CAAA"}
+{"version":3,"file":"cookie.d.ts","sourceRoot":"","sources":["../../src/mutators/cookie.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,YAAY,EAAE,MAAM,6BAA6B,CAAA;AAC/D,OAAO,KAAK,EAAE,SAAS,EAAE,iBAAiB,EAAE,MAAM,WAAW,CAAA;AAC7D,OAAO,EAAE,KAAK,aAAa,EAAuB,MAAM,+CAA+C,CAAA;AAGvG;;;;;;;;;GASG;AACH,eAAO,MAAM,YAAY,GACvB,YAAY,iBAAiB,GAAG,SAAS,GAAG,IAAI,EAChD,oBAAoB,YAAY,CAAC,sBAAsB,CAAC,KACvD,aAAa,GAAG,SA8BlB,CAAA;AAED;;;;;;;;GAQG;AACH,eAAO,MAAM,YAAY,GACvB,YAAY,iBAAiB,GAAG,SAAS,GAAG,IAAI,EAChD,WAAW,YAAY,CAAC,sBAAsB,CAAC,KAC9C,OAWF,CAAA"}

package/dist/mutators/cookie.js

@@ -1,31 +1,39 @@
-const cookieMutators = (document) => {
-  const addCookie = (cookie) => {
-    if (!document) {
-      return false;
+import { xScalarCookieSchema } from "../schemas/extensions/general/x-scalar-cookies.js";
+import { coerceValue } from "../schemas/typebox-coerce.js";
+const upsertCookie = (collection, { payload, index }) => {
+  if (!collection) {
+    return;
+  }
+  if (!collection["x-scalar-cookies"]) {
+    collection["x-scalar-cookies"] = [];
+  }
+  if (index !== void 0) {
+    if (index < 0 || index >= collection["x-scalar-cookies"].length) {
+      return;
     }
-    if (!document["x-scalar-client-config-cookies"]) {
-      document["x-scalar-client-config-cookies"] = {};
-    }
-    if (document["x-scalar-client-config-cookies"][cookie.name]) {
-      console.warn(`Cookie with name "${cookie.name}" already exists in the document.`);
-      return false;
-    }
-    document["x-scalar-client-config-cookies"][cookie.name] = cookie;
-    return true;
-  };
-  const deleteCookie = (cookieName) => {
-    if (!document || !document["x-scalar-client-config-cookies"]) {
-      return false;
-    }
-    delete document["x-scalar-client-config-cookies"][cookieName];
-    return true;
-  };
-  return {
-    addCookie,
-    deleteCookie
-  };
+    const parsed2 = coerceValue(xScalarCookieSchema, {
+      ...collection["x-scalar-cookies"][index],
+      ...payload
+    });
+    collection["x-scalar-cookies"][index] = parsed2;
+    return parsed2;
+  }
+  const parsed = coerceValue(xScalarCookieSchema, payload);
+  collection["x-scalar-cookies"].push(parsed);
+  return parsed;
+};
+const deleteCookie = (collection, { index }) => {
+  if (!collection || !collection["x-scalar-cookies"]) {
+    return false;
+  }
+  if (index < 0 || index >= collection["x-scalar-cookies"].length) {
+    return false;
+  }
+  collection["x-scalar-cookies"].splice(index, 1);
+  return true;
 };
 export {
-  cookieMutators
+  deleteCookie,
+  upsertCookie
 };
 //# sourceMappingURL=cookie.js.map

package/dist/mutators/cookie.js.map

@@ -1,7 +1,7 @@
 {
   "version": 3,
   "sources": ["../../src/mutators/cookie.ts"],
-  "sourcesContent": ["import type { UnknownObject } from '@/helpers/general'\nimport type {\n  XScalarClientConfigCookie,\n  XScalarClientConfigCookies,\n} from '@/schemas/v3.1/strict/client-config-extensions/x-scalar-client-config-cookies'\n\n/**\n * Cookie mutators for managing client configuration cookies in OpenAPI documents.\n * Provides functions to add and delete cookies from the document's x-scalar-client-config-cookies extension.\n *\n * @param store - The workspace store containing the documents\n * @param documentName - The name of the document to operate on\n * @returns Object containing addCookie and deleteCookie functions\n */\nexport const cookieMutators = (\n  document?: UnknownObject & { 'x-scalar-client-config-cookies'?: XScalarClientConfigCookies },\n) => {\n  /**\n   * Adds a new cookie to the document's client configuration.\n   * If a cookie with the same name already exists, it will log a warning and return false.\n   *\n   * @param cookie - The cookie configuration to add\n   * @returns true if the cookie was added successfully, false if it already exists\n   *\n   * @example\n   * // Add a new authentication cookie\n   * const success = addCookie({\n   *   name: 'auth-token',\n   *   value: 'eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9...',\n   *   domain: '.example.com',\n   *   path: '/'\n   * })\n   *\n   * if (success) {\n   *   console.log('Cookie added successfully')\n   * } else {\n   *   console.log('Cookie already exists')\n   * }\n   */\n  const addCookie = (cookie: XScalarClientConfigCookie) => {\n    if (!document) {\n      return false\n    }\n\n    if (!document['x-scalar-client-config-cookies']) {\n      document['x-scalar-client-config-cookies'] = {}\n    }\n\n    if (document['x-scalar-client-config-cookies'][cookie.name]) {\n      console.warn(`Cookie with name \"${cookie.name}\" already exists in the document.`)\n      return false\n    }\n\n    document['x-scalar-client-config-cookies'][cookie.name] = cookie\n    return true\n  }\n\n  /**\n   * Removes a cookie from the document's x-scalar-client-config-cookies extension by its name.\n   * Returns false if the document or cookies object does not exist, otherwise deletes the cookie and returns true.\n   *\n   * @param cookieName - The name of the cookie to remove\n   *\n   * @example\n   * // Remove an authentication cookie\n   * deleteCookie('auth-token')\n   *\n   * // Remove a session cookie\n   * deleteCookie('session-id')\n   */\n  const deleteCookie = (cookieName: string) => {\n    if (!document || !document['x-scalar-client-config-cookies']) {\n      return false\n    }\n\n    delete document['x-scalar-client-config-cookies'][cookieName]\n    return true\n  }\n\n  return {\n    addCookie,\n    deleteCookie,\n  }\n}\n"],
-  "mappings": "AAcO,MAAM,iBAAiB,CAC5B,aACG;AAuBH,QAAM,YAAY,CAAC,WAAsC;AACvD,QAAI,CAAC,UAAU;AACb,aAAO;AAAA,IACT;AAEA,QAAI,CAAC,SAAS,gCAAgC,GAAG;AAC/C,eAAS,gCAAgC,IAAI,CAAC;AAAA,IAChD;AAEA,QAAI,SAAS,gCAAgC,EAAE,OAAO,IAAI,GAAG;AAC3D,cAAQ,KAAK,qBAAqB,OAAO,IAAI,mCAAmC;AAChF,aAAO;AAAA,IACT;AAEA,aAAS,gCAAgC,EAAE,OAAO,IAAI,IAAI;AAC1D,WAAO;AAAA,EACT;AAeA,QAAM,eAAe,CAAC,eAAuB;AAC3C,QAAI,CAAC,YAAY,CAAC,SAAS,gCAAgC,GAAG;AAC5D,aAAO;AAAA,IACT;AAEA,WAAO,SAAS,gCAAgC,EAAE,UAAU;AAC5D,WAAO;AAAA,EACT;AAEA,SAAO;AAAA,IACL;AAAA,IACA;AAAA,EACF;AACF;",
-  "names": []
+  "sourcesContent": ["import type { CookieEvents } from '@/events/definitions/cookie'\nimport type { Workspace, WorkspaceDocument } from '@/schemas'\nimport { type XScalarCookie, xScalarCookieSchema } from '@/schemas/extensions/general/x-scalar-cookies'\nimport { coerceValue } from '@/schemas/typebox-coerce'\n\n/**\n * Adds OR updates a cookie to the document or workspace.\n *\n * @param document - current document if available\n * @param workspace - current workspace if available\n * @param payload - The cookie configuration to add or update\n * @param index - Optional index for updating an existing cookie\n * @param collectionType - Whether this is for a document or workspace\n * @returns the parsed cookie that was added or updated or undefined if the collection is not found\n */\nexport const upsertCookie = (\n  collection: WorkspaceDocument | Workspace | null,\n  { payload, index }: CookieEvents['cookie:upsert:cookie'],\n): XScalarCookie | undefined => {\n  if (!collection) {\n    return\n  }\n\n  if (!collection['x-scalar-cookies']) {\n    collection['x-scalar-cookies'] = []\n  }\n\n  if (index !== undefined) {\n    // Update existing cookie at index\n    if (index < 0 || index >= collection['x-scalar-cookies'].length) {\n      return\n    }\n\n    // Ensure we parse the payload but keep the existing cookie data\n    const parsed = coerceValue(xScalarCookieSchema, {\n      ...collection['x-scalar-cookies'][index],\n      ...payload,\n    })\n\n    // Update\n    collection['x-scalar-cookies'][index] = parsed\n    return parsed\n  }\n\n  // Add new cookie\n  const parsed = coerceValue(xScalarCookieSchema, payload)\n  collection['x-scalar-cookies'].push(parsed)\n  return parsed\n}\n\n/**\n * Deletes a cookie from the document or workspace by index.\n *\n * @param document - current document if available\n * @param workspace - current workspace if available\n * @param index - Index of the cookie to delete\n * @param collectionType - Whether this is for a document or workspace\n * @returns true if the cookie was deleted, false otherwise\n */\nexport const deleteCookie = (\n  collection: WorkspaceDocument | Workspace | null,\n  { index }: CookieEvents['cookie:delete:cookie'],\n): boolean => {\n  if (!collection || !collection['x-scalar-cookies']) {\n    return false\n  }\n\n  if (index < 0 || index >= collection['x-scalar-cookies'].length) {\n    return false\n  }\n\n  collection['x-scalar-cookies'].splice(index, 1)\n  return true\n}\n"],
+  "mappings": "AAEA,SAA6B,2BAA2B;AACxD,SAAS,mBAAmB;AAYrB,MAAM,eAAe,CAC1B,YACA,EAAE,SAAS,MAAM,MACa;AAC9B,MAAI,CAAC,YAAY;AACf;AAAA,EACF;AAEA,MAAI,CAAC,WAAW,kBAAkB,GAAG;AACnC,eAAW,kBAAkB,IAAI,CAAC;AAAA,EACpC;AAEA,MAAI,UAAU,QAAW;AAEvB,QAAI,QAAQ,KAAK,SAAS,WAAW,kBAAkB,EAAE,QAAQ;AAC/D;AAAA,IACF;AAGA,UAAMA,UAAS,YAAY,qBAAqB;AAAA,MAC9C,GAAG,WAAW,kBAAkB,EAAE,KAAK;AAAA,MACvC,GAAG;AAAA,IACL,CAAC;AAGD,eAAW,kBAAkB,EAAE,KAAK,IAAIA;AACxC,WAAOA;AAAA,EACT;AAGA,QAAM,SAAS,YAAY,qBAAqB,OAAO;AACvD,aAAW,kBAAkB,EAAE,KAAK,MAAM;AAC1C,SAAO;AACT;AAWO,MAAM,eAAe,CAC1B,YACA,EAAE,MAAM,MACI;AACZ,MAAI,CAAC,cAAc,CAAC,WAAW,kBAAkB,GAAG;AAClD,WAAO;AAAA,EACT;AAEA,MAAI,QAAQ,KAAK,SAAS,WAAW,kBAAkB,EAAE,QAAQ;AAC/D,WAAO;AAAA,EACT;AAEA,aAAW,kBAAkB,EAAE,OAAO,OAAO,CAAC;AAC9C,SAAO;AACT;",
+  "names": ["parsed"]
 }

package/dist/mutators/document.d.ts

@@ -1,6 +1,13 @@
 import type { WorkspaceDocument } from '../schemas.js';
 /**
- * Toggle use document security
+ * Toggle setting selected security schemes at the operation level
  */
-export declare const toggleDocumentSecurity: (document: WorkspaceDocument | null) => void;
+export declare const toggleSecurity: (document: WorkspaceDocument | null) => void;
+export declare const updateWatchMode: (document: WorkspaceDocument | null, watchMode: boolean) => void;
+/**
+ * Update the document icon and also update the corresponding sidebar entry
+ *
+ * Does not perform a sidebar rebuild for performance benefit
+ */
+export declare const updateDocumentIcon: (document: WorkspaceDocument | null, icon: string) => void;
 //# sourceMappingURL=document.d.ts.map

package/dist/mutators/document.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"document.d.ts","sourceRoot":"","sources":["../../src/mutators/document.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,iBAAiB,EAAE,MAAM,WAAW,CAAA;AAElD;;GAEG;AACH,eAAO,MAAM,sBAAsB,GAAI,UAAU,iBAAiB,GAAG,IAAI,SAMxE,CAAA"}
+{"version":3,"file":"document.d.ts","sourceRoot":"","sources":["../../src/mutators/document.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,iBAAiB,EAAE,MAAM,WAAW,CAAA;AAElD;;GAEG;AACH,eAAO,MAAM,cAAc,GAAI,UAAU,iBAAiB,GAAG,IAAI,SAMhE,CAAA;AAED,eAAO,MAAM,eAAe,GAAI,UAAU,iBAAiB,GAAG,IAAI,EAAE,WAAW,OAAO,SAMrF,CAAA;AAED;;;;GAIG;AACH,eAAO,MAAM,kBAAkB,GAAI,UAAU,iBAAiB,GAAG,IAAI,EAAE,MAAM,MAAM,SASlF,CAAA"}

package/dist/mutators/document.js

@@ -1,10 +1,25 @@
-const toggleDocumentSecurity = (document) => {
+const toggleSecurity = (document) => {
   if (!document) {
     return;
   }
-  document["x-scalar-document-security"] = !document["x-scalar-document-security"];
+  document["x-scalar-set-operation-security"] = !document["x-scalar-set-operation-security"];
+};
+const updateWatchMode = (document, watchMode) => {
+  if (!document) {
+    return;
+  }
+  document["x-scalar-watch-mode"] = watchMode;
+};
+const updateDocumentIcon = (document, icon) => {
+  if (!document || !document["x-scalar-navigation"]) {
+    return;
+  }
+  document["x-scalar-icon"] = icon;
+  document["x-scalar-navigation"].icon = icon;
 };
 export {
-  toggleDocumentSecurity
+  toggleSecurity,
+  updateDocumentIcon,
+  updateWatchMode
 };
 //# sourceMappingURL=document.js.map

package/dist/mutators/document.js.map

@@ -1,7 +1,7 @@
 {
   "version": 3,
   "sources": ["../../src/mutators/document.ts"],
-  "sourcesContent": ["import type { WorkspaceDocument } from '@/schemas'\n\n/**\n * Toggle use document security\n */\nexport const toggleDocumentSecurity = (document: WorkspaceDocument | null) => {\n  if (!document) {\n    return\n  }\n\n  document['x-scalar-document-security'] = !document['x-scalar-document-security']\n}\n"],
-  "mappings": "AAKO,MAAM,yBAAyB,CAAC,aAAuC;AAC5E,MAAI,CAAC,UAAU;AACb;AAAA,EACF;AAEA,WAAS,4BAA4B,IAAI,CAAC,SAAS,4BAA4B;AACjF;",
+  "sourcesContent": ["import type { WorkspaceDocument } from '@/schemas'\n\n/**\n * Toggle setting selected security schemes at the operation level\n */\nexport const toggleSecurity = (document: WorkspaceDocument | null) => {\n  if (!document) {\n    return\n  }\n\n  document['x-scalar-set-operation-security'] = !document['x-scalar-set-operation-security']\n}\n\nexport const updateWatchMode = (document: WorkspaceDocument | null, watchMode: boolean) => {\n  if (!document) {\n    return\n  }\n\n  document['x-scalar-watch-mode'] = watchMode\n}\n\n/**\n * Update the document icon and also update the corresponding sidebar entry\n *\n * Does not perform a sidebar rebuild for performance benefit\n */\nexport const updateDocumentIcon = (document: WorkspaceDocument | null, icon: string) => {\n  if (!document || !document['x-scalar-navigation']) {\n    return\n  }\n\n  // Update the document icon\n  document['x-scalar-icon'] = icon\n  // Update the sidebar document icon\n  document['x-scalar-navigation'].icon = icon\n}\n"],
+  "mappings": "AAKO,MAAM,iBAAiB,CAAC,aAAuC;AACpE,MAAI,CAAC,UAAU;AACb;AAAA,EACF;AAEA,WAAS,iCAAiC,IAAI,CAAC,SAAS,iCAAiC;AAC3F;AAEO,MAAM,kBAAkB,CAAC,UAAoC,cAAuB;AACzF,MAAI,CAAC,UAAU;AACb;AAAA,EACF;AAEA,WAAS,qBAAqB,IAAI;AACpC;AAOO,MAAM,qBAAqB,CAAC,UAAoC,SAAiB;AACtF,MAAI,CAAC,YAAY,CAAC,SAAS,qBAAqB,GAAG;AACjD;AAAA,EACF;AAGA,WAAS,eAAe,IAAI;AAE5B,WAAS,qBAAqB,EAAE,OAAO;AACzC;",
   "names": []
 }

package/dist/mutators/index.d.ts

@@ -14,10 +14,6 @@ export declare function generateClientMutators(store: WorkspaceStore): {
      * Returns mutators for the workspace-level configuration.
      */
     workspace: () => {
-        cookieMutators: {
-            addCookie: (cookie: import("../schemas/v3.1/strict/client-config-extensions/x-scalar-client-config-cookies.js").XScalarClientConfigCookie) => boolean;
-            deleteCookie: (cookieName: string) => boolean;
-        };
         serverMutators: {
             addServer: (server: ServerObject) => boolean;
             deleteServer: (url: string) => boolean;
@@ -43,10 +39,6 @@ export declare function generateClientMutators(store: WorkspaceStore): {
             addSecurityScheme: (name: string, securityScheme: import("../schemas/v3.1/strict/openapi-document.js").SecuritySchemeObject) => boolean;
             deleteSecurityScheme: (name: string) => boolean;
         };
-        cookieMutators: {
-            addCookie: (cookie: import("../schemas/v3.1/strict/client-config-extensions/x-scalar-client-config-cookies.js").XScalarClientConfigCookie) => boolean;
-            deleteCookie: (cookieName: string) => boolean;
-        };
         serverMutators: {
             addServer: (server: ServerObject) => boolean;
             deleteServer: (url: string) => boolean;
@@ -69,10 +61,6 @@ export declare function generateClientMutators(store: WorkspaceStore): {
             addSecurityScheme: (name: string, securityScheme: import("../schemas/v3.1/strict/openapi-document.js").SecuritySchemeObject) => boolean;
             deleteSecurityScheme: (name: string) => boolean;
         };
-        cookieMutators: {
-            addCookie: (cookie: import("../schemas/v3.1/strict/client-config-extensions/x-scalar-client-config-cookies.js").XScalarClientConfigCookie) => boolean;
-            deleteCookie: (cookieName: string) => boolean;
-        };
         serverMutators: {
             addServer: (server: ServerObject) => boolean;
             deleteServer: (url: string) => boolean;
@@ -80,8 +68,10 @@ export declare function generateClientMutators(store: WorkspaceStore): {
     };
 };
 export { type AuthMeta, deleteSecurityScheme, updateSecurityScheme, updateSelectedAuthTab, updateSelectedScopes, updateSelectedSecuritySchemes, } from './auth.js';
-export { toggleDocumentSecurity } from './document.js';
+export { deleteCookie, upsertCookie } from './cookie.js';
+export { toggleSecurity, updateDocumentIcon, updateWatchMode } from './document.js';
 export { upsertEnvironment, upsertEnvironmentVariable, } from './environment.js';
-export { type OperationExampleMeta, type OperationMeta, addOperationParameter, addOperationRequestBodyFormRow, deleteAllOperationParameters, deleteOperationParameter, deleteOperationRequestBodyFormRow, updateOperationMethodDraft as updateOperationMethod, updateOperationParameter, updateOperationPathDraft as updateOperationPath, updateOperationRequestBodyContentType, updateOperationRequestBodyExample, updateOperationRequestBodyFormRow, updateOperationSummary, } from './operation.js';
+export { type OperationExampleMeta, type OperationMeta, addOperationParameter, addOperationRequestBodyFormRow, deleteAllOperationParameters, deleteOperationParameter, deleteOperationRequestBodyFormRow, updateOperationMethod, updateOperationParameter, updateOperationPath, updateOperationRequestBodyContentType, updateOperationRequestBodyExample, updateOperationRequestBodyFormRow, updateOperationSummary, } from './operation.js';
 export { addServer, deleteServer, updateSelectedServer, updateServer, updateServerVariables, } from './server.js';
+export { updateActiveProxy, updateColorMode, updateTheme } from './workspace.js';
 //# sourceMappingURL=index.d.ts.map

package/dist/mutators/index.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/mutators/index.ts"],"names":[],"mappings":"AAAA,2EAA2E;AAC3E,OAAO,KAAK,EAAE,cAAc,EAAE,MAAM,UAAU,CAAA;AAK9C,OAAO,KAAK,EAAE,YAAY,EAAE,MAAM,wCAAwC,CAAA;AAE1E;;;;;;;GAOG;AACH,wBAAgB,sBAAsB,CAAC,KAAK,EAAE,cAAc;IAqGxD;;OAEG;;;;;;;gCA1FwB,YAAY,KAAG,OAAO;gCAatB,MAAM,KAAG,OAAO;;;;;;;IA+E3C;;;OAGG;;;;;;;;;;;;;;;;;;gCA/FwB,YAAY,KAAG,OAAO;gCAatB,MAAM,KAAG,OAAO;;;IAqF3C;;;;OAIG;gBACS,MAAM;;;;;;;;;;;;;;;;;gCAvGS,YAAY,KAAG,OAAO;gCAatB,MAAM,KAAG,OAAO;;;EA4F9C;AAED,OAAO,EACL,KAAK,QAAQ,EACb,oBAAoB,EACpB,oBAAoB,EACpB,qBAAqB,EACrB,oBAAoB,EACpB,6BAA6B,GAC9B,MAAM,QAAQ,CAAA;AACf,OAAO,EAAE,sBAAsB,EAAE,MAAM,YAAY,CAAA;AACnD,OAAO,EACL,iBAAiB,EACjB,yBAAyB,GAC1B,MAAM,eAAe,CAAA;AACtB,OAAO,EACL,KAAK,oBAAoB,EACzB,KAAK,aAAa,EAClB,qBAAqB,EACrB,8BAA8B,EAC9B,4BAA4B,EAC5B,wBAAwB,EACxB,iCAAiC,EACjC,0BAA0B,IAAI,qBAAqB,EACnD,wBAAwB,EACxB,wBAAwB,IAAI,mBAAmB,EAC/C,qCAAqC,EACrC,iCAAiC,EACjC,iCAAiC,EACjC,sBAAsB,GACvB,MAAM,aAAa,CAAA;AACpB,OAAO,EACL,SAAS,EACT,YAAY,EACZ,oBAAoB,EACpB,YAAY,EACZ,qBAAqB,GACtB,MAAM,UAAU,CAAA"}
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/mutators/index.ts"],"names":[],"mappings":"AAAA,2EAA2E;AAC3E,OAAO,KAAK,EAAE,cAAc,EAAE,MAAM,UAAU,CAAA;AAI9C,OAAO,KAAK,EAAE,YAAY,EAAE,MAAM,wCAAwC,CAAA;AAE1E;;;;;;;GAOG;AACH,wBAAgB,sBAAsB,CAAC,KAAK,EAAE,cAAc;IAmGxD;;OAEG;;;gCAxFwB,YAAY,KAAG,OAAO;gCAatB,MAAM,KAAG,OAAO;;;;;;;IA6E3C;;;OAGG;;;;;;;;;;;;;;gCA7FwB,YAAY,KAAG,OAAO;gCAatB,MAAM,KAAG,OAAO;;;IAmF3C;;;;OAIG;gBACS,MAAM;;;;;;;;;;;;;gCArGS,YAAY,KAAG,OAAO;gCAatB,MAAM,KAAG,OAAO;;;EA0F9C;AAED,OAAO,EACL,KAAK,QAAQ,EACb,oBAAoB,EACpB,oBAAoB,EACpB,qBAAqB,EACrB,oBAAoB,EACpB,6BAA6B,GAC9B,MAAM,QAAQ,CAAA;AACf,OAAO,EAAE,YAAY,EAAE,YAAY,EAAE,MAAM,UAAU,CAAA;AACrD,OAAO,EAAE,cAAc,EAAE,kBAAkB,EAAE,eAAe,EAAE,MAAM,YAAY,CAAA;AAChF,OAAO,EACL,iBAAiB,EACjB,yBAAyB,GAC1B,MAAM,eAAe,CAAA;AACtB,OAAO,EACL,KAAK,oBAAoB,EACzB,KAAK,aAAa,EAClB,qBAAqB,EACrB,8BAA8B,EAC9B,4BAA4B,EAC5B,wBAAwB,EACxB,iCAAiC,EACjC,qBAAqB,EACrB,wBAAwB,EACxB,mBAAmB,EACnB,qCAAqC,EACrC,iCAAiC,EACjC,iCAAiC,EACjC,sBAAsB,GACvB,MAAM,aAAa,CAAA;AACpB,OAAO,EACL,SAAS,EACT,YAAY,EACZ,oBAAoB,EACpB,YAAY,EACZ,qBAAqB,GACtB,MAAM,UAAU,CAAA;AACjB,OAAO,EAAE,iBAAiB,EAAE,eAAe,EAAE,WAAW,EAAE,MAAM,aAAa,CAAA"}

package/dist/mutators/index.js

@@ -1,4 +1,3 @@
-import { cookieMutators } from "../mutators/cookie.js";
 import { getDocument } from "../mutators/helpers.js";
 import { requestMutators } from "../mutators/request.js";
 import { securitySchemeMutators } from "../mutators/security-schemes.js";
@@ -41,7 +40,6 @@ function generateClientMutators(store) {
     return {
       requestMutators: requestMutators(document),
       securitySchemeMutators: securitySchemeMutators(document?.components?.securitySchemes),
-      cookieMutators: cookieMutators(document),
       serverMutators: serverMutators(document?.servers)
     };
   };
@@ -54,7 +52,6 @@ function generateClientMutators(store) {
       store.workspace["x-scalar-client-config-security-schemes"] = {};
     }
     return {
-      cookieMutators: cookieMutators(store.workspace),
       serverMutators: serverMutators(store.workspace["x-scalar-client-config-servers"]),
       securitySchemeMutators: securitySchemeMutators(store.workspace["x-scalar-client-config-security-schemes"])
     };
@@ -84,7 +81,8 @@ import {
   updateSelectedScopes,
   updateSelectedSecuritySchemes
 } from "./auth.js";
-import { toggleDocumentSecurity } from "./document.js";
+import { deleteCookie, upsertCookie } from "./cookie.js";
+import { toggleSecurity, updateDocumentIcon, updateWatchMode } from "./document.js";
 import {
   upsertEnvironment,
   upsertEnvironmentVariable
@@ -95,9 +93,9 @@ import {
   deleteAllOperationParameters,
   deleteOperationParameter,
   deleteOperationRequestBodyFormRow,
-  updateOperationMethodDraft,
+  updateOperationMethod,
   updateOperationParameter,
-  updateOperationPathDraft,
+  updateOperationPath,
   updateOperationRequestBodyContentType,
   updateOperationRequestBodyExample,
   updateOperationRequestBodyFormRow,
@@ -110,20 +108,25 @@ import {
   updateServer,
   updateServerVariables
 } from "./server.js";
+import { updateActiveProxy, updateColorMode, updateTheme } from "./workspace.js";
 export {
   addOperationParameter,
   addOperationRequestBodyFormRow,
   addServer,
   deleteAllOperationParameters,
+  deleteCookie,
   deleteOperationParameter,
   deleteOperationRequestBodyFormRow,
   deleteSecurityScheme,
   deleteServer,
   generateClientMutators,
-  toggleDocumentSecurity,
-  updateOperationMethodDraft as updateOperationMethod,
+  toggleSecurity,
+  updateActiveProxy,
+  updateColorMode,
+  updateDocumentIcon,
+  updateOperationMethod,
   updateOperationParameter,
-  updateOperationPathDraft as updateOperationPath,
+  updateOperationPath,
   updateOperationRequestBodyContentType,
   updateOperationRequestBodyExample,
   updateOperationRequestBodyFormRow,
@@ -135,6 +138,9 @@ export {
   updateSelectedServer,
   updateServer,
   updateServerVariables,
+  updateTheme,
+  updateWatchMode,
+  upsertCookie,
   upsertEnvironment,
   upsertEnvironmentVariable
 };

package/dist/mutators/index.js.map

@@ -1,7 +1,7 @@
 {
   "version": 3,
   "sources": ["../../src/mutators/index.ts"],
-  "sourcesContent": ["/** biome-ignore-all lint/performance/noBarrelFile: Mutators entry point */\nimport type { WorkspaceStore } from '@/client'\nimport { cookieMutators } from '@/mutators/cookie'\nimport { getDocument } from '@/mutators/helpers'\nimport { requestMutators } from '@/mutators/request'\nimport { securitySchemeMutators } from '@/mutators/security-schemes'\nimport type { ServerObject } from '@/schemas/v3.1/strict/openapi-document'\n\n/**\n * Generates a set of mutators for managing OpenAPI document and workspace state.\n *\n * @deprecated use the individual mutators instead, this will be removed after we move fully to the new store\n *\n * @param store - The workspace store containing all documents and workspace-level data\n * @returns An object with mutators for the workspace, the active document, and any named document\n */\nexport function generateClientMutators(store: WorkspaceStore) {\n  /**\n   * Provides mutator functions for managing an array of OpenAPI ServerObject entries.\n   *\n   * @param target - The array of ServerObject to mutate. If not provided, mutators will be no-ops.\n   * @returns An object with addServer and deleteServer methods.\n   */\n  const serverMutators = (target?: ServerObject[]) => {\n    /**\n     * Adds a new ServerObject to the target array.\n     * @param server - The ServerObject to add.\n     * @returns true if the server was added, false if target is undefined.\n     */\n    const addServer = (server: ServerObject): boolean => {\n      if (!target) {\n        return false\n      }\n      target.push(server)\n      return true\n    }\n\n    /**\n     * Deletes a ServerObject at the specified index from the target array.\n     * @param index - The index of the server to delete.\n     * @returns true if the server was deleted, false if target is undefined.\n     */\n    const deleteServer = (url: string): boolean => {\n      if (!target) {\n        return false\n      }\n      const newTarget = [...target.filter((it) => it.url !== url)]\n      target.splice(0, target.length)\n      target.push(...newTarget)\n      return true\n    }\n\n    return {\n      addServer,\n      deleteServer,\n    }\n  }\n\n  /**\n   * Returns mutators for a specific document by name.\n   *\n   * @param documentName - The name of the document to get mutators for\n   * @returns An object containing mutators for requests, request examples, security schemes, environments, and cookies\n   */\n  const documentMutators = (documentName: string) => {\n    const document = getDocument(store, documentName)\n\n    if (document) {\n      // Make sure the document has a servers array\n      if (!document.servers) {\n        document.servers = []\n      }\n\n      // Make sure the document has the securitySchema object\n      if (!document.components) {\n        document.components = {}\n      }\n\n      if (!document.components.securitySchemes) {\n        document.components.securitySchemes = {}\n      }\n    }\n\n    return {\n      requestMutators: requestMutators(document),\n      securitySchemeMutators: securitySchemeMutators(document?.components?.securitySchemes),\n      cookieMutators: cookieMutators(document),\n      serverMutators: serverMutators(document?.servers),\n    }\n  }\n\n  /**\n   * Returns mutators for the workspace-level configuration.\n   *\n   * @returns An object containing mutators for environments and cookies at the workspace level\n   */\n  const workspaceMutators = () => {\n    const workspace = store.workspace\n\n    // Make sure the workspace has a servers array\n    if (!workspace['x-scalar-client-config-servers']) {\n      workspace['x-scalar-client-config-servers'] = []\n    }\n\n    // Make sure the workspace has the securitySchema object\n    if (!store.workspace['x-scalar-client-config-security-schemes']) {\n      store.workspace['x-scalar-client-config-security-schemes'] = {}\n    }\n\n    return {\n      cookieMutators: cookieMutators(store.workspace),\n      serverMutators: serverMutators(store.workspace['x-scalar-client-config-servers']),\n      securitySchemeMutators: securitySchemeMutators(store.workspace['x-scalar-client-config-security-schemes']),\n    }\n  }\n\n  return {\n    /**\n     * Returns mutators for the workspace-level configuration.\n     */\n    workspace: () => workspaceMutators(),\n    /**\n     * Returns mutators for the currently active document.\n     * Falls back to the first document if no active document is set.\n     */\n    active: () =>\n      documentMutators(store.workspace['x-scalar-active-document'] ?? Object.keys(store.workspace.documents)[0] ?? ''),\n    /**\n     * Returns mutators for a specific document by name.\n     *\n     * @param name - The name of the document\n     */\n    doc: (name: string) => documentMutators(name),\n  }\n}\n\nexport {\n  type AuthMeta,\n  deleteSecurityScheme,\n  updateSecurityScheme,\n  updateSelectedAuthTab,\n  updateSelectedScopes,\n  updateSelectedSecuritySchemes,\n} from './auth'\nexport { toggleDocumentSecurity } from './document'\nexport {\n  upsertEnvironment,\n  upsertEnvironmentVariable,\n} from './environment'\nexport {\n  type OperationExampleMeta,\n  type OperationMeta,\n  addOperationParameter,\n  addOperationRequestBodyFormRow,\n  deleteAllOperationParameters,\n  deleteOperationParameter,\n  deleteOperationRequestBodyFormRow,\n  updateOperationMethodDraft as updateOperationMethod,\n  updateOperationParameter,\n  updateOperationPathDraft as updateOperationPath,\n  updateOperationRequestBodyContentType,\n  updateOperationRequestBodyExample,\n  updateOperationRequestBodyFormRow,\n  updateOperationSummary,\n} from './operation'\nexport {\n  addServer,\n  deleteServer,\n  updateSelectedServer,\n  updateServer,\n  updateServerVariables,\n} from './server'\n"],
-  "mappings": "AAEA,SAAS,sBAAsB;AAC/B,SAAS,mBAAmB;AAC5B,SAAS,uBAAuB;AAChC,SAAS,8BAA8B;AAWhC,SAAS,uBAAuB,OAAuB;AAO5D,QAAM,iBAAiB,CAAC,WAA4B;AAMlD,UAAMA,aAAY,CAAC,WAAkC;AACnD,UAAI,CAAC,QAAQ;AACX,eAAO;AAAA,MACT;AACA,aAAO,KAAK,MAAM;AAClB,aAAO;AAAA,IACT;AAOA,UAAMC,gBAAe,CAAC,QAAyB;AAC7C,UAAI,CAAC,QAAQ;AACX,eAAO;AAAA,MACT;AACA,YAAM,YAAY,CAAC,GAAG,OAAO,OAAO,CAAC,OAAO,GAAG,QAAQ,GAAG,CAAC;AAC3D,aAAO,OAAO,GAAG,OAAO,MAAM;AAC9B,aAAO,KAAK,GAAG,SAAS;AACxB,aAAO;AAAA,IACT;AAEA,WAAO;AAAA,MACL,WAAAD;AAAA,MACA,cAAAC;AAAA,IACF;AAAA,EACF;AAQA,QAAM,mBAAmB,CAAC,iBAAyB;AACjD,UAAM,WAAW,YAAY,OAAO,YAAY;AAEhD,QAAI,UAAU;AAEZ,UAAI,CAAC,SAAS,SAAS;AACrB,iBAAS,UAAU,CAAC;AAAA,MACtB;AAGA,UAAI,CAAC,SAAS,YAAY;AACxB,iBAAS,aAAa,CAAC;AAAA,MACzB;AAEA,UAAI,CAAC,SAAS,WAAW,iBAAiB;AACxC,iBAAS,WAAW,kBAAkB,CAAC;AAAA,MACzC;AAAA,IACF;AAEA,WAAO;AAAA,MACL,iBAAiB,gBAAgB,QAAQ;AAAA,MACzC,wBAAwB,uBAAuB,UAAU,YAAY,eAAe;AAAA,MACpF,gBAAgB,eAAe,QAAQ;AAAA,MACvC,gBAAgB,eAAe,UAAU,OAAO;AAAA,IAClD;AAAA,EACF;AAOA,QAAM,oBAAoB,MAAM;AAC9B,UAAM,YAAY,MAAM;AAGxB,QAAI,CAAC,UAAU,gCAAgC,GAAG;AAChD,gBAAU,gCAAgC,IAAI,CAAC;AAAA,IACjD;AAGA,QAAI,CAAC,MAAM,UAAU,yCAAyC,GAAG;AAC/D,YAAM,UAAU,yCAAyC,IAAI,CAAC;AAAA,IAChE;AAEA,WAAO;AAAA,MACL,gBAAgB,eAAe,MAAM,SAAS;AAAA,MAC9C,gBAAgB,eAAe,MAAM,UAAU,gCAAgC,CAAC;AAAA,MAChF,wBAAwB,uBAAuB,MAAM,UAAU,yCAAyC,CAAC;AAAA,IAC3G;AAAA,EACF;AAEA,SAAO;AAAA;AAAA;AAAA;AAAA,IAIL,WAAW,MAAM,kBAAkB;AAAA;AAAA;AAAA;AAAA;AAAA,IAKnC,QAAQ,MACN,iBAAiB,MAAM,UAAU,0BAA0B,KAAK,OAAO,KAAK,MAAM,UAAU,SAAS,EAAE,CAAC,KAAK,EAAE;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,IAMjH,KAAK,CAAC,SAAiB,iBAAiB,IAAI;AAAA,EAC9C;AACF;AAEA;AAAA,EAEE;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,OACK;AACP,SAAS,8BAA8B;AACvC;AAAA,EACE;AAAA,EACA;AAAA,OACK;AACP;AAAA,EAGE;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EAC8B;AAAA,EAC9B;AAAA,EAC4B;AAAA,EAC5B;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,OACK;AACP;AAAA,EACE;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,OACK;",
+  "sourcesContent": ["/** biome-ignore-all lint/performance/noBarrelFile: Mutators entry point */\nimport type { WorkspaceStore } from '@/client'\nimport { getDocument } from '@/mutators/helpers'\nimport { requestMutators } from '@/mutators/request'\nimport { securitySchemeMutators } from '@/mutators/security-schemes'\nimport type { ServerObject } from '@/schemas/v3.1/strict/openapi-document'\n\n/**\n * Generates a set of mutators for managing OpenAPI document and workspace state.\n *\n * @deprecated use the individual mutators instead, this will be removed after we move fully to the new store\n *\n * @param store - The workspace store containing all documents and workspace-level data\n * @returns An object with mutators for the workspace, the active document, and any named document\n */\nexport function generateClientMutators(store: WorkspaceStore) {\n  /**\n   * Provides mutator functions for managing an array of OpenAPI ServerObject entries.\n   *\n   * @param target - The array of ServerObject to mutate. If not provided, mutators will be no-ops.\n   * @returns An object with addServer and deleteServer methods.\n   */\n  const serverMutators = (target?: ServerObject[]) => {\n    /**\n     * Adds a new ServerObject to the target array.\n     * @param server - The ServerObject to add.\n     * @returns true if the server was added, false if target is undefined.\n     */\n    const addServer = (server: ServerObject): boolean => {\n      if (!target) {\n        return false\n      }\n      target.push(server)\n      return true\n    }\n\n    /**\n     * Deletes a ServerObject at the specified index from the target array.\n     * @param index - The index of the server to delete.\n     * @returns true if the server was deleted, false if target is undefined.\n     */\n    const deleteServer = (url: string): boolean => {\n      if (!target) {\n        return false\n      }\n      const newTarget = [...target.filter((it) => it.url !== url)]\n      target.splice(0, target.length)\n      target.push(...newTarget)\n      return true\n    }\n\n    return {\n      addServer,\n      deleteServer,\n    }\n  }\n\n  /**\n   * Returns mutators for a specific document by name.\n   *\n   * @param documentName - The name of the document to get mutators for\n   * @returns An object containing mutators for requests, request examples, security schemes, environments, and cookies\n   */\n  const documentMutators = (documentName: string) => {\n    const document = getDocument(store, documentName)\n\n    if (document) {\n      // Make sure the document has a servers array\n      if (!document.servers) {\n        document.servers = []\n      }\n\n      // Make sure the document has the securitySchema object\n      if (!document.components) {\n        document.components = {}\n      }\n\n      if (!document.components.securitySchemes) {\n        document.components.securitySchemes = {}\n      }\n    }\n\n    return {\n      requestMutators: requestMutators(document),\n      securitySchemeMutators: securitySchemeMutators(document?.components?.securitySchemes),\n      serverMutators: serverMutators(document?.servers),\n    }\n  }\n\n  /**\n   * Returns mutators for the workspace-level configuration.\n   *\n   * @returns An object containing mutators for environments and cookies at the workspace level\n   */\n  const workspaceMutators = () => {\n    const workspace = store.workspace\n\n    // Make sure the workspace has a servers array\n    if (!workspace['x-scalar-client-config-servers']) {\n      workspace['x-scalar-client-config-servers'] = []\n    }\n\n    // Make sure the workspace has the securitySchema object\n    if (!store.workspace['x-scalar-client-config-security-schemes']) {\n      store.workspace['x-scalar-client-config-security-schemes'] = {}\n    }\n\n    return {\n      serverMutators: serverMutators(store.workspace['x-scalar-client-config-servers']),\n      securitySchemeMutators: securitySchemeMutators(store.workspace['x-scalar-client-config-security-schemes']),\n    }\n  }\n\n  return {\n    /**\n     * Returns mutators for the workspace-level configuration.\n     */\n    workspace: () => workspaceMutators(),\n    /**\n     * Returns mutators for the currently active document.\n     * Falls back to the first document if no active document is set.\n     */\n    active: () =>\n      documentMutators(store.workspace['x-scalar-active-document'] ?? Object.keys(store.workspace.documents)[0] ?? ''),\n    /**\n     * Returns mutators for a specific document by name.\n     *\n     * @param name - The name of the document\n     */\n    doc: (name: string) => documentMutators(name),\n  }\n}\n\nexport {\n  type AuthMeta,\n  deleteSecurityScheme,\n  updateSecurityScheme,\n  updateSelectedAuthTab,\n  updateSelectedScopes,\n  updateSelectedSecuritySchemes,\n} from './auth'\nexport { deleteCookie, upsertCookie } from './cookie'\nexport { toggleSecurity, updateDocumentIcon, updateWatchMode } from './document'\nexport {\n  upsertEnvironment,\n  upsertEnvironmentVariable,\n} from './environment'\nexport {\n  type OperationExampleMeta,\n  type OperationMeta,\n  addOperationParameter,\n  addOperationRequestBodyFormRow,\n  deleteAllOperationParameters,\n  deleteOperationParameter,\n  deleteOperationRequestBodyFormRow,\n  updateOperationMethod,\n  updateOperationParameter,\n  updateOperationPath,\n  updateOperationRequestBodyContentType,\n  updateOperationRequestBodyExample,\n  updateOperationRequestBodyFormRow,\n  updateOperationSummary,\n} from './operation'\nexport {\n  addServer,\n  deleteServer,\n  updateSelectedServer,\n  updateServer,\n  updateServerVariables,\n} from './server'\nexport { updateActiveProxy, updateColorMode, updateTheme } from './workspace'\n"],
+  "mappings": "AAEA,SAAS,mBAAmB;AAC5B,SAAS,uBAAuB;AAChC,SAAS,8BAA8B;AAWhC,SAAS,uBAAuB,OAAuB;AAO5D,QAAM,iBAAiB,CAAC,WAA4B;AAMlD,UAAMA,aAAY,CAAC,WAAkC;AACnD,UAAI,CAAC,QAAQ;AACX,eAAO;AAAA,MACT;AACA,aAAO,KAAK,MAAM;AAClB,aAAO;AAAA,IACT;AAOA,UAAMC,gBAAe,CAAC,QAAyB;AAC7C,UAAI,CAAC,QAAQ;AACX,eAAO;AAAA,MACT;AACA,YAAM,YAAY,CAAC,GAAG,OAAO,OAAO,CAAC,OAAO,GAAG,QAAQ,GAAG,CAAC;AAC3D,aAAO,OAAO,GAAG,OAAO,MAAM;AAC9B,aAAO,KAAK,GAAG,SAAS;AACxB,aAAO;AAAA,IACT;AAEA,WAAO;AAAA,MACL,WAAAD;AAAA,MACA,cAAAC;AAAA,IACF;AAAA,EACF;AAQA,QAAM,mBAAmB,CAAC,iBAAyB;AACjD,UAAM,WAAW,YAAY,OAAO,YAAY;AAEhD,QAAI,UAAU;AAEZ,UAAI,CAAC,SAAS,SAAS;AACrB,iBAAS,UAAU,CAAC;AAAA,MACtB;AAGA,UAAI,CAAC,SAAS,YAAY;AACxB,iBAAS,aAAa,CAAC;AAAA,MACzB;AAEA,UAAI,CAAC,SAAS,WAAW,iBAAiB;AACxC,iBAAS,WAAW,kBAAkB,CAAC;AAAA,MACzC;AAAA,IACF;AAEA,WAAO;AAAA,MACL,iBAAiB,gBAAgB,QAAQ;AAAA,MACzC,wBAAwB,uBAAuB,UAAU,YAAY,eAAe;AAAA,MACpF,gBAAgB,eAAe,UAAU,OAAO;AAAA,IAClD;AAAA,EACF;AAOA,QAAM,oBAAoB,MAAM;AAC9B,UAAM,YAAY,MAAM;AAGxB,QAAI,CAAC,UAAU,gCAAgC,GAAG;AAChD,gBAAU,gCAAgC,IAAI,CAAC;AAAA,IACjD;AAGA,QAAI,CAAC,MAAM,UAAU,yCAAyC,GAAG;AAC/D,YAAM,UAAU,yCAAyC,IAAI,CAAC;AAAA,IAChE;AAEA,WAAO;AAAA,MACL,gBAAgB,eAAe,MAAM,UAAU,gCAAgC,CAAC;AAAA,MAChF,wBAAwB,uBAAuB,MAAM,UAAU,yCAAyC,CAAC;AAAA,IAC3G;AAAA,EACF;AAEA,SAAO;AAAA;AAAA;AAAA;AAAA,IAIL,WAAW,MAAM,kBAAkB;AAAA;AAAA;AAAA;AAAA;AAAA,IAKnC,QAAQ,MACN,iBAAiB,MAAM,UAAU,0BAA0B,KAAK,OAAO,KAAK,MAAM,UAAU,SAAS,EAAE,CAAC,KAAK,EAAE;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,IAMjH,KAAK,CAAC,SAAiB,iBAAiB,IAAI;AAAA,EAC9C;AACF;AAEA;AAAA,EAEE;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,OACK;AACP,SAAS,cAAc,oBAAoB;AAC3C,SAAS,gBAAgB,oBAAoB,uBAAuB;AACpE;AAAA,EACE;AAAA,EACA;AAAA,OACK;AACP;AAAA,EAGE;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,OACK;AACP;AAAA,EACE;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,OACK;AACP,SAAS,mBAAmB,iBAAiB,mBAAmB;",
   "names": ["addServer", "deleteServer"]
 }