@scalar/workspace-store 0.20.0 → 0.22.0

package/dist/helpers/unpack-proxy.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"unpack-proxy.d.ts","sourceRoot":"","sources":["../../src/helpers/unpack-proxy.ts"],"names":[],"mappings":"AAMA;;;GAGG;AACH,eAAO,MAAM,iBAAiB,GAAI,CAAC,EAAE,OAAO,CAAC,KAAG,CACsB,CAAA"}
+{"version":3,"file":"unpack-proxy.d.ts","sourceRoot":"","sources":["../../src/helpers/unpack-proxy.ts"],"names":[],"mappings":"AAMA;;;;;;;;;;;;;;GAcG;AACH,eAAO,MAAM,iBAAiB,GAAI,CAAC,EAAE,OAAO,CAAC,EAAE,YAAe;IAAE,KAAK,CAAC,EAAE,MAAM,GAAG,IAAI,CAAA;CAAO,KAAG,CAsE9F,CAAA"}

package/dist/helpers/unpack-proxy.js

@@ -2,7 +2,57 @@ import { getRaw } from "@scalar/json-magic/magic-proxy";
 import { toRaw } from "vue";
 import { unpackDetectChangesProxy } from "../helpers/detect-changes-proxy.js";
 import { unpackOverridesProxy } from "../helpers/overrides-proxy.js";
-const unpackProxyObject = (input) => unpackDetectChangesProxy(toRaw(getRaw(unpackOverridesProxy(input))));
+const unpackProxyObject = (input, { depth = 0 } = {}) => {
+  const dfs = (value, currentDepth = 0) => {
+    if (typeof value !== "object" || value === null) {
+      return value;
+    }
+    const raw = unpackDetectChangesProxy(toRaw(getRaw(unpackOverridesProxy(value))));
+    if (depth !== null && currentDepth >= depth) {
+      return raw;
+    }
+    if (currentDepth !== 0 && raw !== value) {
+      console.warn(
+        "%c\u26A0 Warning:%c You tried to assign a proxied object (depth: %d).\n%c\u{1F4A1} Tip:%c Pass a plain object instead \u2014 wrapping a proxy inside another proxy may cause weird bugs.\n%c\u{1F50D} Debug Info:%c The problematic value is shown below:",
+        // styles
+        "background: #fdd835; color: #000; font-weight: bold; padding: 2px 4px; border-radius: 3px;",
+        "color: inherit;",
+        currentDepth,
+        "color: #00bfa5; font-weight: bold;",
+        "color: inherit;",
+        "color: #03a9f4; font-weight: bold;",
+        "color: inherit;",
+        value,
+        input
+      );
+      console.groupCollapsed("%c\u{1F4DC} Proxy assignment trace", "color: #9c27b0; font-weight: bold;");
+      console.trace({ value, raw });
+      console.groupEnd();
+    }
+    Object.entries(raw).forEach(([key, value2]) => {
+      const propertyResult = dfs(value2, currentDepth + 1);
+      const result = Reflect.set(raw, key, propertyResult);
+      if (!result) {
+        console.warn(
+          '%c\u{1F6AB} Readonly Property Error:%c Failed to set property "%s" on object.\n%c\u{1F4A1} Tip:%c This property is readonly or non-configurable. You cannot unpack a readonly property \u2014 the value was not updated.\n%c\u{1F50D} Debug Info:%c Property: %s | Value: %o | Object: %o',
+          // styles
+          "background: #f44336; color: #fff; font-weight: bold; padding: 2px 4px; border-radius: 3px;",
+          "color: inherit;",
+          key,
+          "color: #00bfa5; font-weight: bold;",
+          "color: inherit;",
+          "color: #03a9f4; font-weight: bold;",
+          "color: inherit;",
+          key,
+          propertyResult,
+          raw
+        );
+      }
+    });
+    return raw;
+  };
+  return dfs(input);
+};
 export {
   unpackProxyObject
 };

package/dist/helpers/unpack-proxy.js.map

@@ -1,7 +1,7 @@
 {
   "version": 3,
   "sources": ["../../src/helpers/unpack-proxy.ts"],
-  "sourcesContent": ["import { getRaw } from '@scalar/json-magic/magic-proxy'\nimport { toRaw } from 'vue'\n\nimport { unpackDetectChangesProxy } from '@/helpers/detect-changes-proxy'\nimport { unpackOverridesProxy } from '@/helpers/overrides-proxy'\n\n/**\n * Unpacks special vue reactivity & override & detect-changes & magic proxy from an input object or array,\n * returning the \"raw\" plain object or array.\n */\nexport const unpackProxyObject = <T>(input: T): T =>\n  unpackDetectChangesProxy(toRaw(getRaw(unpackOverridesProxy(input))))\n"],
-  "mappings": "AAAA,SAAS,cAAc;AACvB,SAAS,aAAa;AAEtB,SAAS,gCAAgC;AACzC,SAAS,4BAA4B;AAM9B,MAAM,oBAAoB,CAAI,UACnC,yBAAyB,MAAM,OAAO,qBAAqB,KAAK,CAAC,CAAC,CAAC;",
-  "names": []
+  "sourcesContent": ["import { getRaw } from '@scalar/json-magic/magic-proxy'\nimport { toRaw } from 'vue'\n\nimport { unpackDetectChangesProxy } from '@/helpers/detect-changes-proxy'\nimport { unpackOverridesProxy } from '@/helpers/overrides-proxy'\n\n/**\n * Unpacks special vue reactivity & override & detect-changes & magic proxy from an input object or array,\n * returning the \"raw\" plain object or array.\n *\n * This function recursively traverses the input object or array, removing any proxies\n * (e.g. Vue reactivity proxies, magic proxies, override proxies, detect-changes proxies)\n * to obtain and return the underlying \"raw\" plain object or array.\n *\n * The recursion is controlled by the `depth` parameter. If `depth` is `null`, unlimited depth is allowed.\n * If a proxied object is detected and unwrapped at non-root level, a warning is logged.\n *\n * @param input - The object or array (possibly deeply nested or proxied) to recursively unwrap.\n * @param depth - Optional, limits recursion depth. `null` means unlimited depth (default is 1).\n * @returns - A plain object or array with all proxies removed up to the specified depth.\n */\nexport const unpackProxyObject = <T>(input: T, { depth = 0 }: { depth?: number | null } = {}): T => {\n  // Internal DFS helper to recursively strip all known proxies (Vue, overrides, detect-changes, magic proxies)\n  const dfs = (value: any, currentDepth: number = 0): any => {\n    // Base case: non-objects (primitives, null) are returned as-is\n    if (typeof value !== 'object' || value === null) {\n      return value\n    }\n\n    // Compose all the proxy unwraps in order\n    const raw = unpackDetectChangesProxy(toRaw(getRaw(unpackOverridesProxy(value))))\n\n    // If we have reached the maximum depth, return the value (potentially still partially proxied)\n    if (depth !== null && currentDepth >= depth) {\n      return raw\n    }\n\n    // Show a warning if a nested value was a proxy (usually undesired, can cause subtle bugs)\n    if (currentDepth !== 0 && raw !== value) {\n      console.warn(\n        '%c\u26A0 Warning:%c You tried to assign a proxied object (depth: %d).\\n' +\n          '%c\uD83D\uDCA1 Tip:%c Pass a plain object instead \u2014 wrapping a proxy inside another proxy may cause weird bugs.\\n' +\n          '%c\uD83D\uDD0D Debug Info:%c The problematic value is shown below:',\n        // styles\n        'background: #fdd835; color: #000; font-weight: bold; padding: 2px 4px; border-radius: 3px;',\n        'color: inherit;',\n        currentDepth,\n        'color: #00bfa5; font-weight: bold;',\n        'color: inherit;',\n        'color: #03a9f4; font-weight: bold;',\n        'color: inherit;',\n        value,\n        input,\n      )\n\n      // Collapsed trace group for cleaner output\n      console.groupCollapsed('%c\uD83D\uDCDC Proxy assignment trace', 'color: #9c27b0; font-weight: bold;')\n      console.trace({ value, raw })\n      console.groupEnd()\n    }\n\n    // Recursively process all properties/entries to make sure we are not assigning proxies directly,\n    // but are always assigning plain objects at any level.\n    Object.entries(raw).forEach(([key, value]) => {\n      const propertyResult = dfs(value, currentDepth + 1)\n      const result = Reflect.set(raw, key, propertyResult)\n\n      if (!result) {\n        console.warn(\n          '%c\uD83D\uDEAB Readonly Property Error:%c Failed to set property \"%s\" on object.\\n' +\n            '%c\uD83D\uDCA1 Tip:%c This property is readonly or non-configurable. You cannot unpack a readonly property \u2014 the value was not updated.\\n' +\n            '%c\uD83D\uDD0D Debug Info:%c Property: %s | Value: %o | Object: %o',\n          // styles\n          'background: #f44336; color: #fff; font-weight: bold; padding: 2px 4px; border-radius: 3px;',\n          'color: inherit;',\n          key,\n          'color: #00bfa5; font-weight: bold;',\n          'color: inherit;',\n          'color: #03a9f4; font-weight: bold;',\n          'color: inherit;',\n          key,\n          propertyResult,\n          raw,\n        )\n      }\n    })\n\n    return raw\n  }\n\n  return dfs(input)\n}\n"],
+  "mappings": "AAAA,SAAS,cAAc;AACvB,SAAS,aAAa;AAEtB,SAAS,gCAAgC;AACzC,SAAS,4BAA4B;AAiB9B,MAAM,oBAAoB,CAAI,OAAU,EAAE,QAAQ,EAAE,IAA+B,CAAC,MAAS;AAElG,QAAM,MAAM,CAAC,OAAY,eAAuB,MAAW;AAEzD,QAAI,OAAO,UAAU,YAAY,UAAU,MAAM;AAC/C,aAAO;AAAA,IACT;AAGA,UAAM,MAAM,yBAAyB,MAAM,OAAO,qBAAqB,KAAK,CAAC,CAAC,CAAC;AAG/E,QAAI,UAAU,QAAQ,gBAAgB,OAAO;AAC3C,aAAO;AAAA,IACT;AAGA,QAAI,iBAAiB,KAAK,QAAQ,OAAO;AACvC,cAAQ;AAAA,QACN;AAAA;AAAA,QAIA;AAAA,QACA;AAAA,QACA;AAAA,QACA;AAAA,QACA;AAAA,QACA;AAAA,QACA;AAAA,QACA;AAAA,QACA;AAAA,MACF;AAGA,cAAQ,eAAe,sCAA+B,oCAAoC;AAC1F,cAAQ,MAAM,EAAE,OAAO,IAAI,CAAC;AAC5B,cAAQ,SAAS;AAAA,IACnB;AAIA,WAAO,QAAQ,GAAG,EAAE,QAAQ,CAAC,CAAC,KAAKA,MAAK,MAAM;AAC5C,YAAM,iBAAiB,IAAIA,QAAO,eAAe,CAAC;AAClD,YAAM,SAAS,QAAQ,IAAI,KAAK,KAAK,cAAc;AAEnD,UAAI,CAAC,QAAQ;AACX,gBAAQ;AAAA,UACN;AAAA;AAAA,UAIA;AAAA,UACA;AAAA,UACA;AAAA,UACA;AAAA,UACA;AAAA,UACA;AAAA,UACA;AAAA,UACA;AAAA,UACA;AAAA,UACA;AAAA,QACF;AAAA,MACF;AAAA,IACF,CAAC;AAED,WAAO;AAAA,EACT;AAEA,SAAO,IAAI,KAAK;AAClB;",
+  "names": ["value"]
 }

package/dist/mutators/auth.d.ts

@@ -39,7 +39,7 @@ export type AuthMeta = {
  * })
  * ```
  */
-export declare const updateSelectedSecuritySchemes: (document: WorkspaceDocument | null, { selectedRequirements, newSchemes, meta }: AuthEvents["auth:update:selected-security-schemes"]) => void;
+export declare const updateSelectedSecuritySchemes: (document: WorkspaceDocument | null, { selectedRequirements, newSchemes, meta }: AuthEvents["auth:update:selected-security-schemes"]) => Promise<void>;
 /**
  * Updates a security scheme in the OpenAPI document's components object.
  * Handles updates for HTTP, API Key, and OAuth2 types, saving secret information and configuration for UI-auth flows.
@@ -63,7 +63,12 @@ export declare const updateSelectedSecuritySchemes: (document: WorkspaceDocument
  *   name: 'MyHttpAuth',
  * })
  */
-export declare const updateSecurityScheme: (document: WorkspaceDocument | null, { payload, name }: AuthEvents["auth:update:security-scheme"]) => import("../schemas/v3.1/strict/security-scheme.js").ApiKeyObject | import("../schemas/v3.1/strict/security-scheme.js").HttpObject | import("../schemas/v3.1/strict/security-scheme.js").OAuth2Object | import("../schemas/v3.1/strict/security-scheme.js").OpenIdConnectObject | undefined;
+export declare const updateSecurityScheme: (document: WorkspaceDocument | null, { payload, name }: AuthEvents["auth:update:security-scheme"]) => import("../schemas/v3.1/strict/security-scheme.js").ApiKeyObject | import("../schemas/v3.1/strict/security-scheme.js").HttpObject | import("../schemas/v3.1/strict/security-scheme.js").OAuth2Object | ({
+    description?: string;
+} & {
+    type: "openIdConnect";
+    openIdConnectUrl: string;
+}) | undefined;
 /**
  * Sets the selected authentication tab (scheme) index for the given OpenAPI document or operation.
  * - When on the document level, updates the 'selectedIndex' on the document's x-scalar-selected-security extension.

package/dist/mutators/auth.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"auth.d.ts","sourceRoot":"","sources":["../../src/mutators/auth.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,UAAU,EAAE,MAAM,mCAAmC,CAAA;AAEnE,OAAO,KAAK,EAAE,UAAU,EAAE,MAAM,2BAA2B,CAAA;AAI3D,OAAO,KAAK,EAAE,iBAAiB,EAAE,MAAM,WAAW,CAAA;AAGlD;;;;;;GAMG;AACH,MAAM,MAAM,QAAQ,GAChB;IACE,IAAI,EAAE,UAAU,CAAA;CACjB,GACD;IACE,IAAI,EAAE,WAAW,CAAA;IACjB,IAAI,EAAE,MAAM,CAAA;IACZ,MAAM,EAAE,UAAU,CAAA;CACnB,CAAA;AAEL;;;;;;;;;;;;;;;;;;;;;;;GAuBG;AACH,eAAO,MAAM,6BAA6B,GACxC,UAAU,iBAAiB,GAAG,IAAI,EAClC,4CAA4C,UAAU,CAAC,uCAAuC,CAAC,SA6EhG,CAAA;AAED;;;;;;;;;;;;;;;;;;;;;;GAsBG;AACH,eAAO,MAAM,oBAAoB,GAC/B,UAAU,iBAAiB,GAAG,IAAI,EAClC,mBAAmB,UAAU,CAAC,6BAA6B,CAAC,mRAc7D,CAAA;AAED;;;;;;;;;;;;;;;;;;;;;;;;;GAyBG;AACH,eAAO,MAAM,qBAAqB,GAChC,UAAU,iBAAiB,GAAG,IAAI,EAClC,iBAAiB,UAAU,CAAC,0BAA0B,CAAC,SA+BxD,CAAA;AAED;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GA+BG;AACH,eAAO,MAAM,oBAAoB,GAC/B,UAAU,iBAAiB,GAAG,IAAI,EAClC,4BAA4B,UAAU,CAAC,6BAA6B,CAAC,SAqCtE,CAAA;AAED;;;;;;;;;;;;;;;;;;GAkBG;AACH,eAAO,MAAM,oBAAoB,GAC/B,UAAU,iBAAiB,GAAG,IAAI,EAClC,WAAW,UAAU,CAAC,6BAA6B,CAAC,SA6DrD,CAAA"}
+{"version":3,"file":"auth.d.ts","sourceRoot":"","sources":["../../src/mutators/auth.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,UAAU,EAAE,MAAM,mCAAmC,CAAA;AAEnE,OAAO,KAAK,EAAE,UAAU,EAAE,MAAM,2BAA2B,CAAA;AAI3D,OAAO,KAAK,EAAE,iBAAiB,EAAE,MAAM,WAAW,CAAA;AAGlD;;;;;;GAMG;AACH,MAAM,MAAM,QAAQ,GAChB;IACE,IAAI,EAAE,UAAU,CAAA;CACjB,GACD;IACE,IAAI,EAAE,WAAW,CAAA;IACjB,IAAI,EAAE,MAAM,CAAA;IACZ,MAAM,EAAE,UAAU,CAAA;CACnB,CAAA;AAEL;;;;;;;;;;;;;;;;;;;;;;;GAuBG;AACH,eAAO,MAAM,6BAA6B,GACxC,UAAU,iBAAiB,GAAG,IAAI,EAClC,4CAA4C,UAAU,CAAC,uCAAuC,CAAC,kBA+EhG,CAAA;AAED;;;;;;;;;;;;;;;;;;;;;;GAsBG;AACH,eAAO,MAAM,oBAAoB,GAC/B,UAAU,iBAAiB,GAAG,IAAI,EAClC,mBAAmB,UAAU,CAAC,6BAA6B,CAAC;;;;;cAc7D,CAAA;AAED;;;;;;;;;;;;;;;;;;;;;;;;;GAyBG;AACH,eAAO,MAAM,qBAAqB,GAChC,UAAU,iBAAiB,GAAG,IAAI,EAClC,iBAAiB,UAAU,CAAC,0BAA0B,CAAC,SA+BxD,CAAA;AAED;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GA+BG;AACH,eAAO,MAAM,oBAAoB,GAC/B,UAAU,iBAAiB,GAAG,IAAI,EAClC,4BAA4B,UAAU,CAAC,6BAA6B,CAAC,SAqCtE,CAAA;AAED;;;;;;;;;;;;;;;;;;GAkBG;AACH,eAAO,MAAM,oBAAoB,GAC/B,UAAU,iBAAiB,GAAG,IAAI,EAClC,WAAW,UAAU,CAAC,6BAA6B,CAAC,SA6DrD,CAAA"}

package/dist/mutators/auth.js

@@ -1,7 +1,7 @@
 import { generateUniqueValue } from "../helpers/generate-unique-value.js";
 import { getResolvedRef } from "../helpers/get-resolved-ref.js";
 import { mergeObjects } from "../helpers/merge-object.js";
-const updateSelectedSecuritySchemes = (document, { selectedRequirements, newSchemes, meta }) => {
+const updateSelectedSecuritySchemes = async (document, { selectedRequirements, newSchemes, meta }) => {
   if (!document) {
     return;
   }
@@ -11,26 +11,29 @@ const updateSelectedSecuritySchemes = (document, { selectedRequirements, newSche
     }
     return getResolvedRef(document.paths?.[meta.path]?.[meta.method]);
   };
-  const createdSchemes = newSchemes.map((scheme) => {
-    const name = generateUniqueValue({
-      defaultValue: scheme.name,
-      validation: (value) => !document.components?.securitySchemes?.[value],
-      maxRetries: 100
-    });
-    if (!name) {
-      return;
-    }
-    if (!document.components) {
-      document.components = {};
-    }
-    if (!document.components.securitySchemes) {
-      document.components.securitySchemes = {};
-    }
-    document.components.securitySchemes[name] = scheme.scheme;
-    return {
-      [name]: []
-    };
-  }).filter(Boolean);
+  const createdSecurityRequirements = await Promise.all(
+    newSchemes.map(async (newScheme) => {
+      const uniqueSchemeName = await generateUniqueValue({
+        defaultValue: newScheme.name,
+        validation: (value) => !document.components?.securitySchemes?.[value],
+        maxRetries: 100
+      });
+      if (!uniqueSchemeName) {
+        return;
+      }
+      if (!document.components) {
+        document.components = {};
+      }
+      if (!document.components.securitySchemes) {
+        document.components.securitySchemes = {};
+      }
+      document.components.securitySchemes[uniqueSchemeName] = newScheme.scheme;
+      return {
+        [uniqueSchemeName]: []
+      };
+    })
+  );
+  const createdSchemes = createdSecurityRequirements.filter(Boolean);
   const target = getTarget();
   const newSelectedSecuritySchemes = [...selectedRequirements, ...createdSchemes];
   if (!target) {

package/dist/mutators/auth.js.map

@@ -1,7 +1,7 @@
 {
   "version": 3,
   "sources": ["../../src/mutators/auth.ts"],
-  "sourcesContent": ["import type { HttpMethod } from '@scalar/helpers/http/http-methods'\n\nimport type { AuthEvents } from '@/events/definitions/auth'\nimport { generateUniqueValue } from '@/helpers/generate-unique-value'\nimport { getResolvedRef } from '@/helpers/get-resolved-ref'\nimport { mergeObjects } from '@/helpers/merge-object'\nimport type { WorkspaceDocument } from '@/schemas'\nimport type { SecurityRequirementObject } from '@/schemas/v3.1/strict/security-requirement'\n\n/**\n * AuthMeta defines the meta information needed to specify whether the authentication operation\n * is being performed at the document level (entire API), or for a specific operation (specific path and method).\n *\n * - If type is 'document', the operation applies to the whole OpenAPI document.\n * - If type is 'operation', it targets a specific operation, identified by its path and method.\n */\nexport type AuthMeta =\n  | {\n      type: 'document'\n    }\n  | {\n      type: 'operation'\n      path: string\n      method: HttpMethod\n    }\n\n/**\n * Updates the selected security schemes for either the entire document or a specific operation.\n * - Adds newly created security schemes (if any) to the workspace document's components.\n * - Ensures that each new scheme name is unique within the document by using `generateUniqueValue`.\n * - Updates the `x-scalar-selected-security` property on the target (document or operation) to reflect the new set of selected security schemes.\n * - Corrects and maintains the selected index so it points to a valid security scheme.\n *\n * @param document - The workspace OpenAPI document to mutate (can be null, in which case nothing happens)\n * @param selectedSecuritySchemes - The current list of selected security scheme objects\n * @param create - Array of new schemes to create, each with a name and a scheme definition\n * @param meta - Location to update: whole document or a specific operation (`{ type: 'document' }` or `{ type: 'operation', path, method }`)\n *\n * Example usage:\n * ```\n * updateSelectedSecuritySchemes({\n *   document,\n *   selectedSecuritySchemes: [{ bearerAuth: [] }],\n *   create: [\n *     { name: 'ApiKeyAuth', scheme: { type: 'apiKey', in: 'header', name: 'X-API-Key' } }\n *   ],\n *   meta: { type: 'document' }\n * })\n * ```\n */\nexport const updateSelectedSecuritySchemes = (\n  document: WorkspaceDocument | null,\n  { selectedRequirements, newSchemes, meta }: AuthEvents['auth:update:selected-security-schemes'],\n) => {\n  if (!document) {\n    return\n  }\n\n  // Helper to get the target (whole document or a specific operation)\n  const getTarget = () => {\n    if (meta.type === 'document') {\n      return document\n    }\n\n    return getResolvedRef(document.paths?.[meta.path]?.[meta.method])\n  }\n\n  // Create any new security schemes required, ensuring unique names for the components\n  const createdSchemes = newSchemes\n    .map((scheme) => {\n      const name = generateUniqueValue({\n        defaultValue: scheme.name,\n        validation: (value) => !document.components?.securitySchemes?.[value],\n        maxRetries: 100,\n      })\n\n      if (!name) {\n        return\n      }\n\n      // Ensure components and securitySchemes exist\n      if (!document.components) {\n        document.components = {}\n      }\n      if (!document.components.securitySchemes) {\n        document.components.securitySchemes = {}\n      }\n\n      // Add the new security scheme definition\n      document.components.securitySchemes[name] = scheme.scheme\n\n      // Return an OpenAPI Security Requirement Object for this new scheme (empty scope array)\n      return {\n        [name]: [],\n      }\n    })\n    .filter(Boolean) as SecurityRequirementObject[]\n\n  const target = getTarget()\n\n  const newSelectedSecuritySchemes = [...selectedRequirements, ...createdSchemes]\n\n  // If the target (document/operation) doesn't exist, do nothing\n  if (!target) {\n    return\n  }\n\n  // Ensure the x-scalar-selected-security structure exists on the target\n  if (!target['x-scalar-selected-security']) {\n    target['x-scalar-selected-security'] = {\n      selectedIndex: -1,\n      selectedSchemes: [],\n    }\n  }\n\n  const selectedIndex = target['x-scalar-selected-security'].selectedIndex\n\n  // Update the schemes array\n  target['x-scalar-selected-security'].selectedSchemes = newSelectedSecuritySchemes\n\n  // Adjust selected index if there are schemes and the index is unset/invalid\n  if (newSelectedSecuritySchemes.length > 0 && selectedIndex < 0) {\n    target['x-scalar-selected-security'].selectedIndex = 0\n  }\n\n  // If the selected index is now out of bounds, select the last available\n  if (selectedIndex >= newSelectedSecuritySchemes.length) {\n    target['x-scalar-selected-security'].selectedIndex = newSelectedSecuritySchemes.length - 1\n  }\n}\n\n/**\n * Updates a security scheme in the OpenAPI document's components object.\n * Handles updates for HTTP, API Key, and OAuth2 types, saving secret information and configuration for UI-auth flows.\n *\n * @param document - The OpenAPI workspace document (can be null)\n * @param data - The update information, including type and payload\n * @param name - The name of the security scheme in document.components.securitySchemes\n *\n * Example usage:\n *\n * updateSecurityScheme({\n *   document,\n *   data: {\n *     type: 'http',\n *     payload: {\n *       username: 'user123',\n *       password: 'pw123',\n *       token: 'tokenval'\n *     }\n *   },\n *   name: 'MyHttpAuth',\n * })\n */\nexport const updateSecurityScheme = (\n  document: WorkspaceDocument | null,\n  { payload, name }: AuthEvents['auth:update:security-scheme'],\n) => {\n  const target = getResolvedRef(document?.components?.securitySchemes?.[name])\n  if (!target) {\n    console.error(`Security scheme ${name} not found`)\n    return\n  }\n\n  // Handle HTTP (basic, bearer, etc.)\n  if (target.type === payload.type) {\n    mergeObjects(target, payload)\n  }\n\n  return target\n}\n\n/**\n * Sets the selected authentication tab (scheme) index for the given OpenAPI document or operation.\n * - When on the document level, updates the 'selectedIndex' on the document's x-scalar-selected-security extension.\n * - When on an operation (endpoint) level, updates the 'selectedIndex' for that operation's x-scalar-selected-security.\n *\n * Also initializes the x-scalar-selected-security extension if it does not exist.\n *\n * @param document The OpenAPI document object (may be null)\n * @param index The index to set as selected\n * @param meta Context where the selection applies ('document' or specific operation)\n *\n * @example\n * // Document-level tab selection\n * updateSelectedAuthTab({\n *   document,\n *   index: 1,\n *   meta: { type: 'document' }\n * });\n *\n * // Operation-level tab selection (e.g., GET /pets)\n * updateSelectedAuthTab({\n *   document,\n *   index: 0,\n *   meta: { type: 'operation', path: '/pets', method: 'get' }\n * });\n */\nexport const updateSelectedAuthTab = (\n  document: WorkspaceDocument | null,\n  { index, meta }: AuthEvents['auth:update:active-index'],\n) => {\n  if (!document) {\n    return\n  }\n\n  // Determine the target object for setting the auth tab index:\n  // - Document/root level\n  // - Operation/endpoint level (if meta specifies operation)\n  const getTarget = () => {\n    if (meta.type === 'document') {\n      return document\n    }\n    return getResolvedRef(document.paths?.[meta.path]?.[meta.method])\n  }\n\n  const target = getTarget()\n  if (!target) {\n    return\n  }\n\n  // Ensure the 'x-scalar-selected-security' extension exists\n  if (!target['x-scalar-selected-security']) {\n    target['x-scalar-selected-security'] = {\n      selectedIndex: 0,\n      selectedSchemes: [],\n    }\n  }\n\n  // Set the selected auth tab index\n  target['x-scalar-selected-security'].selectedIndex = index\n}\n\n/**\n * Updates the scopes for a specific security requirement in the selected security schemes of\n * a document or operation.\n *\n * @param document - The OpenAPI WorkspaceDocument to update.\n * @param id - An array of scheme names that uniquely identifies the target security requirement.\n *             For example: ['OAuth', 'ApiKeyAuth']\n * @param name - The security scheme name to update scopes for (e.g., 'OAuth').\n * @param scopes - The new list of scopes to set. For example: ['read:pets', 'write:pets']\n * @param meta - The context specifying whether the update is at the document-level or operation-level.\n *\n * Example usage:\n * ```ts\n * // Suppose your document (or operation) x-scalar-selected-security looks like:\n * // \"x-scalar-selected-security\": {\n * //   selectedIndex: 0,\n * //   selectedSchemes: [\n * //     { \"OAuth\": [\"read:pets\"] },\n * //     { \"ApiKeyAuth\": [] }\n * //   ]\n * // }\n *\n * updateSelectedScopes({\n *   document,\n *   id: [\"OAuth\"],     // identifies the scheme object: { \"OAuth\": [...] }\n *   name: \"OAuth\",     // scheme name to update within this security requirement\n *   scopes: [\"write:pets\"], // new scopes array\n *   meta: { type: \"document\" }\n * })\n * // After, the first scheme becomes: { \"OAuth\": [\"write:pets\"] }\n * ```\n */\nexport const updateSelectedScopes = (\n  document: WorkspaceDocument | null,\n  { id, name, scopes, meta }: AuthEvents['auth:update:selected-scopes'],\n) => {\n  if (!document) {\n    return\n  }\n\n  // Determine the target object (document or the operation)\n  const getTarget = () => {\n    if (meta.type === 'document') {\n      return document\n    }\n    return getResolvedRef(document.paths?.[meta.path]?.[meta.method])\n  }\n\n  const target = getTarget()\n\n  if (!target) {\n    return\n  }\n\n  // Array of security requirement objects under x-scalar-selected-security\n  const selectedSchemes = target['x-scalar-selected-security']?.selectedSchemes\n\n  if (!selectedSchemes) {\n    return\n  }\n\n  // Find the security requirement that matches the given id (scheme key names)\n  // For example: if id = [\"OAuth\"], matches { OAuth: [...] }\n  const scheme = selectedSchemes.find((scheme) => JSON.stringify(Object.keys(scheme)) === JSON.stringify(id))\n\n  if (!scheme) {\n    return\n  }\n\n  // Set the scopes array for the named security scheme within the found security requirement\n  scheme[name] = scopes\n}\n\n/**\n * Deletes one or more security schemes from an OpenAPI WorkspaceDocument,\n * and removes all references to those schemes from selected security, document-level security,\n * and operation-level security/selected security (e.g., on paths).\n *\n * Example usage:\n *\n * ```ts\n * deleteSecurityScheme({\n *   document,                                // The OpenAPI document to update\n *   names: ['ApiKeyAuth', 'BearerAuth'],     // The names of security schemes you want to delete\n * });\n * ```\n *\n * After running this function:\n * - The named security schemes are removed from the components.securitySchemes section.\n * - All document-level and operation-level security entries referencing those schemes are removed.\n * - Any extended x-scalar-selected-security references to those schemes are also removed.\n */\nexport const deleteSecurityScheme = (\n  document: WorkspaceDocument | null,\n  { names }: AuthEvents['auth:delete:security-scheme'],\n) => {\n  if (!document) {\n    // Early exit if there is no document to modify\n    return\n  }\n\n  // Get the mutable reference to securitySchemes in components (may be a proxy/resolved reference)\n  const target = getResolvedRef(document.components?.securitySchemes)\n\n  if (!target) {\n    // If there are no security schemes to delete from, return early\n    return\n  }\n\n  // Remove each named security scheme from the components.securitySchemes object\n  names.forEach((name) => {\n    delete target[name]\n  })\n\n  // Function to remove any security requirement objects that reference given scheme names.\n  const filterSecuritySchemes = (schemes: SecurityRequirementObject[]) => {\n    // Remove schemes whose key is included in the `names` to be deleted.\n    return schemes.filter((scheme) => !names.some((name) => Object.keys(scheme).includes(name)))\n  }\n\n  // -- Remove from document-level `x-scalar-selected-security` extension, if present\n  if (document['x-scalar-selected-security']) {\n    const selectedSecurity = document['x-scalar-selected-security']\n    selectedSecurity.selectedSchemes = filterSecuritySchemes(selectedSecurity.selectedSchemes)\n  }\n\n  // -- Remove from document-level `security` property, if present\n  if (document['security']) {\n    document['security'] = filterSecuritySchemes(document['security'])\n  }\n\n  // -- For each path and operation, remove deleted security schemes from operation-level security and custom extension\n  Object.values(document.paths ?? {}).forEach((path) => {\n    Object.values(path).forEach((operation) => {\n      if (typeof operation !== 'object') {\n        // Ignore operations that are not objects (could be undefined)\n        return\n      }\n\n      // Get mutable reference for the operation (could resolve $ref proxies)\n      const resolvedOperation = getResolvedRef(operation)\n\n      // Remove from operation-level security array\n      if ('security' in resolvedOperation && resolvedOperation['security']) {\n        resolvedOperation['security'] = filterSecuritySchemes(resolvedOperation['security'])\n      }\n\n      // Remove from operation-level x-scalar-selected-security array\n      if ('x-scalar-selected-security' in resolvedOperation && resolvedOperation['x-scalar-selected-security']) {\n        resolvedOperation['x-scalar-selected-security'].selectedSchemes = filterSecuritySchemes(\n          resolvedOperation['x-scalar-selected-security'].selectedSchemes,\n        )\n      }\n    })\n  })\n}\n"],
-  "mappings": "AAGA,SAAS,2BAA2B;AACpC,SAAS,sBAAsB;AAC/B,SAAS,oBAAoB;AA6CtB,MAAM,gCAAgC,CAC3C,UACA,EAAE,sBAAsB,YAAY,KAAK,MACtC;AACH,MAAI,CAAC,UAAU;AACb;AAAA,EACF;AAGA,QAAM,YAAY,MAAM;AACtB,QAAI,KAAK,SAAS,YAAY;AAC5B,aAAO;AAAA,IACT;AAEA,WAAO,eAAe,SAAS,QAAQ,KAAK,IAAI,IAAI,KAAK,MAAM,CAAC;AAAA,EAClE;AAGA,QAAM,iBAAiB,WACpB,IAAI,CAAC,WAAW;AACf,UAAM,OAAO,oBAAoB;AAAA,MAC/B,cAAc,OAAO;AAAA,MACrB,YAAY,CAAC,UAAU,CAAC,SAAS,YAAY,kBAAkB,KAAK;AAAA,MACpE,YAAY;AAAA,IACd,CAAC;AAED,QAAI,CAAC,MAAM;AACT;AAAA,IACF;AAGA,QAAI,CAAC,SAAS,YAAY;AACxB,eAAS,aAAa,CAAC;AAAA,IACzB;AACA,QAAI,CAAC,SAAS,WAAW,iBAAiB;AACxC,eAAS,WAAW,kBAAkB,CAAC;AAAA,IACzC;AAGA,aAAS,WAAW,gBAAgB,IAAI,IAAI,OAAO;AAGnD,WAAO;AAAA,MACL,CAAC,IAAI,GAAG,CAAC;AAAA,IACX;AAAA,EACF,CAAC,EACA,OAAO,OAAO;AAEjB,QAAM,SAAS,UAAU;AAEzB,QAAM,6BAA6B,CAAC,GAAG,sBAAsB,GAAG,cAAc;AAG9E,MAAI,CAAC,QAAQ;AACX;AAAA,EACF;AAGA,MAAI,CAAC,OAAO,4BAA4B,GAAG;AACzC,WAAO,4BAA4B,IAAI;AAAA,MACrC,eAAe;AAAA,MACf,iBAAiB,CAAC;AAAA,IACpB;AAAA,EACF;AAEA,QAAM,gBAAgB,OAAO,4BAA4B,EAAE;AAG3D,SAAO,4BAA4B,EAAE,kBAAkB;AAGvD,MAAI,2BAA2B,SAAS,KAAK,gBAAgB,GAAG;AAC9D,WAAO,4BAA4B,EAAE,gBAAgB;AAAA,EACvD;AAGA,MAAI,iBAAiB,2BAA2B,QAAQ;AACtD,WAAO,4BAA4B,EAAE,gBAAgB,2BAA2B,SAAS;AAAA,EAC3F;AACF;AAyBO,MAAM,uBAAuB,CAClC,UACA,EAAE,SAAS,KAAK,MACb;AACH,QAAM,SAAS,eAAe,UAAU,YAAY,kBAAkB,IAAI,CAAC;AAC3E,MAAI,CAAC,QAAQ;AACX,YAAQ,MAAM,mBAAmB,IAAI,YAAY;AACjD;AAAA,EACF;AAGA,MAAI,OAAO,SAAS,QAAQ,MAAM;AAChC,iBAAa,QAAQ,OAAO;AAAA,EAC9B;AAEA,SAAO;AACT;AA4BO,MAAM,wBAAwB,CACnC,UACA,EAAE,OAAO,KAAK,MACX;AACH,MAAI,CAAC,UAAU;AACb;AAAA,EACF;AAKA,QAAM,YAAY,MAAM;AACtB,QAAI,KAAK,SAAS,YAAY;AAC5B,aAAO;AAAA,IACT;AACA,WAAO,eAAe,SAAS,QAAQ,KAAK,IAAI,IAAI,KAAK,MAAM,CAAC;AAAA,EAClE;AAEA,QAAM,SAAS,UAAU;AACzB,MAAI,CAAC,QAAQ;AACX;AAAA,EACF;AAGA,MAAI,CAAC,OAAO,4BAA4B,GAAG;AACzC,WAAO,4BAA4B,IAAI;AAAA,MACrC,eAAe;AAAA,MACf,iBAAiB,CAAC;AAAA,IACpB;AAAA,EACF;AAGA,SAAO,4BAA4B,EAAE,gBAAgB;AACvD;AAkCO,MAAM,uBAAuB,CAClC,UACA,EAAE,IAAI,MAAM,QAAQ,KAAK,MACtB;AACH,MAAI,CAAC,UAAU;AACb;AAAA,EACF;AAGA,QAAM,YAAY,MAAM;AACtB,QAAI,KAAK,SAAS,YAAY;AAC5B,aAAO;AAAA,IACT;AACA,WAAO,eAAe,SAAS,QAAQ,KAAK,IAAI,IAAI,KAAK,MAAM,CAAC;AAAA,EAClE;AAEA,QAAM,SAAS,UAAU;AAEzB,MAAI,CAAC,QAAQ;AACX;AAAA,EACF;AAGA,QAAM,kBAAkB,OAAO,4BAA4B,GAAG;AAE9D,MAAI,CAAC,iBAAiB;AACpB;AAAA,EACF;AAIA,QAAM,SAAS,gBAAgB,KAAK,CAACA,YAAW,KAAK,UAAU,OAAO,KAAKA,OAAM,CAAC,MAAM,KAAK,UAAU,EAAE,CAAC;AAE1G,MAAI,CAAC,QAAQ;AACX;AAAA,EACF;AAGA,SAAO,IAAI,IAAI;AACjB;AAqBO,MAAM,uBAAuB,CAClC,UACA,EAAE,MAAM,MACL;AACH,MAAI,CAAC,UAAU;AAEb;AAAA,EACF;AAGA,QAAM,SAAS,eAAe,SAAS,YAAY,eAAe;AAElE,MAAI,CAAC,QAAQ;AAEX;AAAA,EACF;AAGA,QAAM,QAAQ,CAAC,SAAS;AACtB,WAAO,OAAO,IAAI;AAAA,EACpB,CAAC;AAGD,QAAM,wBAAwB,CAAC,YAAyC;AAEtE,WAAO,QAAQ,OAAO,CAAC,WAAW,CAAC,MAAM,KAAK,CAAC,SAAS,OAAO,KAAK,MAAM,EAAE,SAAS,IAAI,CAAC,CAAC;AAAA,EAC7F;AAGA,MAAI,SAAS,4BAA4B,GAAG;AAC1C,UAAM,mBAAmB,SAAS,4BAA4B;AAC9D,qBAAiB,kBAAkB,sBAAsB,iBAAiB,eAAe;AAAA,EAC3F;AAGA,MAAI,SAAS,UAAU,GAAG;AACxB,aAAS,UAAU,IAAI,sBAAsB,SAAS,UAAU,CAAC;AAAA,EACnE;AAGA,SAAO,OAAO,SAAS,SAAS,CAAC,CAAC,EAAE,QAAQ,CAAC,SAAS;AACpD,WAAO,OAAO,IAAI,EAAE,QAAQ,CAAC,cAAc;AACzC,UAAI,OAAO,cAAc,UAAU;AAEjC;AAAA,MACF;AAGA,YAAM,oBAAoB,eAAe,SAAS;AAGlD,UAAI,cAAc,qBAAqB,kBAAkB,UAAU,GAAG;AACpE,0BAAkB,UAAU,IAAI,sBAAsB,kBAAkB,UAAU,CAAC;AAAA,MACrF;AAGA,UAAI,gCAAgC,qBAAqB,kBAAkB,4BAA4B,GAAG;AACxG,0BAAkB,4BAA4B,EAAE,kBAAkB;AAAA,UAChE,kBAAkB,4BAA4B,EAAE;AAAA,QAClD;AAAA,MACF;AAAA,IACF,CAAC;AAAA,EACH,CAAC;AACH;",
+  "sourcesContent": ["import type { HttpMethod } from '@scalar/helpers/http/http-methods'\n\nimport type { AuthEvents } from '@/events/definitions/auth'\nimport { generateUniqueValue } from '@/helpers/generate-unique-value'\nimport { getResolvedRef } from '@/helpers/get-resolved-ref'\nimport { mergeObjects } from '@/helpers/merge-object'\nimport type { WorkspaceDocument } from '@/schemas'\nimport type { SecurityRequirementObject } from '@/schemas/v3.1/strict/security-requirement'\n\n/**\n * AuthMeta defines the meta information needed to specify whether the authentication operation\n * is being performed at the document level (entire API), or for a specific operation (specific path and method).\n *\n * - If type is 'document', the operation applies to the whole OpenAPI document.\n * - If type is 'operation', it targets a specific operation, identified by its path and method.\n */\nexport type AuthMeta =\n  | {\n      type: 'document'\n    }\n  | {\n      type: 'operation'\n      path: string\n      method: HttpMethod\n    }\n\n/**\n * Updates the selected security schemes for either the entire document or a specific operation.\n * - Adds newly created security schemes (if any) to the workspace document's components.\n * - Ensures that each new scheme name is unique within the document by using `generateUniqueValue`.\n * - Updates the `x-scalar-selected-security` property on the target (document or operation) to reflect the new set of selected security schemes.\n * - Corrects and maintains the selected index so it points to a valid security scheme.\n *\n * @param document - The workspace OpenAPI document to mutate (can be null, in which case nothing happens)\n * @param selectedSecuritySchemes - The current list of selected security scheme objects\n * @param create - Array of new schemes to create, each with a name and a scheme definition\n * @param meta - Location to update: whole document or a specific operation (`{ type: 'document' }` or `{ type: 'operation', path, method }`)\n *\n * Example usage:\n * ```\n * updateSelectedSecuritySchemes({\n *   document,\n *   selectedSecuritySchemes: [{ bearerAuth: [] }],\n *   create: [\n *     { name: 'ApiKeyAuth', scheme: { type: 'apiKey', in: 'header', name: 'X-API-Key' } }\n *   ],\n *   meta: { type: 'document' }\n * })\n * ```\n */\nexport const updateSelectedSecuritySchemes = async (\n  document: WorkspaceDocument | null,\n  { selectedRequirements, newSchemes, meta }: AuthEvents['auth:update:selected-security-schemes'],\n) => {\n  if (!document) {\n    return\n  }\n\n  // Helper to get the target (whole document or a specific operation)\n  const getTarget = () => {\n    if (meta.type === 'document') {\n      return document\n    }\n\n    return getResolvedRef(document.paths?.[meta.path]?.[meta.method])\n  }\n\n  const createdSecurityRequirements = await Promise.all(\n    newSchemes.map(async (newScheme) => {\n      const uniqueSchemeName = await generateUniqueValue({\n        defaultValue: newScheme.name,\n        validation: (value) => !document.components?.securitySchemes?.[value],\n        maxRetries: 100,\n      })\n\n      if (!uniqueSchemeName) {\n        return\n      }\n\n      // Ensure components and securitySchemes exist\n      if (!document.components) {\n        document.components = {}\n      }\n      if (!document.components.securitySchemes) {\n        document.components.securitySchemes = {}\n      }\n\n      // Add the new security scheme definition\n      document.components.securitySchemes[uniqueSchemeName] = newScheme.scheme\n\n      // Return an OpenAPI Security Requirement Object for this new scheme (empty scope array)\n      return {\n        [uniqueSchemeName]: [],\n      }\n    }),\n  )\n\n  // Create any new security schemes required, ensuring unique names for the components\n  const createdSchemes = createdSecurityRequirements.filter(Boolean) as SecurityRequirementObject[]\n\n  const target = getTarget()\n\n  const newSelectedSecuritySchemes = [...selectedRequirements, ...createdSchemes]\n\n  // If the target (document/operation) doesn't exist, do nothing\n  if (!target) {\n    return\n  }\n\n  // Ensure the x-scalar-selected-security structure exists on the target\n  if (!target['x-scalar-selected-security']) {\n    target['x-scalar-selected-security'] = {\n      selectedIndex: -1,\n      selectedSchemes: [],\n    }\n  }\n\n  const selectedIndex = target['x-scalar-selected-security'].selectedIndex\n\n  // Update the schemes array\n  target['x-scalar-selected-security'].selectedSchemes = newSelectedSecuritySchemes\n\n  // Adjust selected index if there are schemes and the index is unset/invalid\n  if (newSelectedSecuritySchemes.length > 0 && selectedIndex < 0) {\n    target['x-scalar-selected-security'].selectedIndex = 0\n  }\n\n  // If the selected index is now out of bounds, select the last available\n  if (selectedIndex >= newSelectedSecuritySchemes.length) {\n    target['x-scalar-selected-security'].selectedIndex = newSelectedSecuritySchemes.length - 1\n  }\n}\n\n/**\n * Updates a security scheme in the OpenAPI document's components object.\n * Handles updates for HTTP, API Key, and OAuth2 types, saving secret information and configuration for UI-auth flows.\n *\n * @param document - The OpenAPI workspace document (can be null)\n * @param data - The update information, including type and payload\n * @param name - The name of the security scheme in document.components.securitySchemes\n *\n * Example usage:\n *\n * updateSecurityScheme({\n *   document,\n *   data: {\n *     type: 'http',\n *     payload: {\n *       username: 'user123',\n *       password: 'pw123',\n *       token: 'tokenval'\n *     }\n *   },\n *   name: 'MyHttpAuth',\n * })\n */\nexport const updateSecurityScheme = (\n  document: WorkspaceDocument | null,\n  { payload, name }: AuthEvents['auth:update:security-scheme'],\n) => {\n  const target = getResolvedRef(document?.components?.securitySchemes?.[name])\n  if (!target) {\n    console.error(`Security scheme ${name} not found`)\n    return\n  }\n\n  // Handle HTTP (basic, bearer, etc.)\n  if (target.type === payload.type) {\n    mergeObjects(target, payload)\n  }\n\n  return target\n}\n\n/**\n * Sets the selected authentication tab (scheme) index for the given OpenAPI document or operation.\n * - When on the document level, updates the 'selectedIndex' on the document's x-scalar-selected-security extension.\n * - When on an operation (endpoint) level, updates the 'selectedIndex' for that operation's x-scalar-selected-security.\n *\n * Also initializes the x-scalar-selected-security extension if it does not exist.\n *\n * @param document The OpenAPI document object (may be null)\n * @param index The index to set as selected\n * @param meta Context where the selection applies ('document' or specific operation)\n *\n * @example\n * // Document-level tab selection\n * updateSelectedAuthTab({\n *   document,\n *   index: 1,\n *   meta: { type: 'document' }\n * });\n *\n * // Operation-level tab selection (e.g., GET /pets)\n * updateSelectedAuthTab({\n *   document,\n *   index: 0,\n *   meta: { type: 'operation', path: '/pets', method: 'get' }\n * });\n */\nexport const updateSelectedAuthTab = (\n  document: WorkspaceDocument | null,\n  { index, meta }: AuthEvents['auth:update:active-index'],\n) => {\n  if (!document) {\n    return\n  }\n\n  // Determine the target object for setting the auth tab index:\n  // - Document/root level\n  // - Operation/endpoint level (if meta specifies operation)\n  const getTarget = () => {\n    if (meta.type === 'document') {\n      return document\n    }\n    return getResolvedRef(document.paths?.[meta.path]?.[meta.method])\n  }\n\n  const target = getTarget()\n  if (!target) {\n    return\n  }\n\n  // Ensure the 'x-scalar-selected-security' extension exists\n  if (!target['x-scalar-selected-security']) {\n    target['x-scalar-selected-security'] = {\n      selectedIndex: 0,\n      selectedSchemes: [],\n    }\n  }\n\n  // Set the selected auth tab index\n  target['x-scalar-selected-security'].selectedIndex = index\n}\n\n/**\n * Updates the scopes for a specific security requirement in the selected security schemes of\n * a document or operation.\n *\n * @param document - The OpenAPI WorkspaceDocument to update.\n * @param id - An array of scheme names that uniquely identifies the target security requirement.\n *             For example: ['OAuth', 'ApiKeyAuth']\n * @param name - The security scheme name to update scopes for (e.g., 'OAuth').\n * @param scopes - The new list of scopes to set. For example: ['read:pets', 'write:pets']\n * @param meta - The context specifying whether the update is at the document-level or operation-level.\n *\n * Example usage:\n * ```ts\n * // Suppose your document (or operation) x-scalar-selected-security looks like:\n * // \"x-scalar-selected-security\": {\n * //   selectedIndex: 0,\n * //   selectedSchemes: [\n * //     { \"OAuth\": [\"read:pets\"] },\n * //     { \"ApiKeyAuth\": [] }\n * //   ]\n * // }\n *\n * updateSelectedScopes({\n *   document,\n *   id: [\"OAuth\"],     // identifies the scheme object: { \"OAuth\": [...] }\n *   name: \"OAuth\",     // scheme name to update within this security requirement\n *   scopes: [\"write:pets\"], // new scopes array\n *   meta: { type: \"document\" }\n * })\n * // After, the first scheme becomes: { \"OAuth\": [\"write:pets\"] }\n * ```\n */\nexport const updateSelectedScopes = (\n  document: WorkspaceDocument | null,\n  { id, name, scopes, meta }: AuthEvents['auth:update:selected-scopes'],\n) => {\n  if (!document) {\n    return\n  }\n\n  // Determine the target object (document or the operation)\n  const getTarget = () => {\n    if (meta.type === 'document') {\n      return document\n    }\n    return getResolvedRef(document.paths?.[meta.path]?.[meta.method])\n  }\n\n  const target = getTarget()\n\n  if (!target) {\n    return\n  }\n\n  // Array of security requirement objects under x-scalar-selected-security\n  const selectedSchemes = target['x-scalar-selected-security']?.selectedSchemes\n\n  if (!selectedSchemes) {\n    return\n  }\n\n  // Find the security requirement that matches the given id (scheme key names)\n  // For example: if id = [\"OAuth\"], matches { OAuth: [...] }\n  const scheme = selectedSchemes.find((scheme) => JSON.stringify(Object.keys(scheme)) === JSON.stringify(id))\n\n  if (!scheme) {\n    return\n  }\n\n  // Set the scopes array for the named security scheme within the found security requirement\n  scheme[name] = scopes\n}\n\n/**\n * Deletes one or more security schemes from an OpenAPI WorkspaceDocument,\n * and removes all references to those schemes from selected security, document-level security,\n * and operation-level security/selected security (e.g., on paths).\n *\n * Example usage:\n *\n * ```ts\n * deleteSecurityScheme({\n *   document,                                // The OpenAPI document to update\n *   names: ['ApiKeyAuth', 'BearerAuth'],     // The names of security schemes you want to delete\n * });\n * ```\n *\n * After running this function:\n * - The named security schemes are removed from the components.securitySchemes section.\n * - All document-level and operation-level security entries referencing those schemes are removed.\n * - Any extended x-scalar-selected-security references to those schemes are also removed.\n */\nexport const deleteSecurityScheme = (\n  document: WorkspaceDocument | null,\n  { names }: AuthEvents['auth:delete:security-scheme'],\n) => {\n  if (!document) {\n    // Early exit if there is no document to modify\n    return\n  }\n\n  // Get the mutable reference to securitySchemes in components (may be a proxy/resolved reference)\n  const target = getResolvedRef(document.components?.securitySchemes)\n\n  if (!target) {\n    // If there are no security schemes to delete from, return early\n    return\n  }\n\n  // Remove each named security scheme from the components.securitySchemes object\n  names.forEach((name) => {\n    delete target[name]\n  })\n\n  // Function to remove any security requirement objects that reference given scheme names.\n  const filterSecuritySchemes = (schemes: SecurityRequirementObject[]) => {\n    // Remove schemes whose key is included in the `names` to be deleted.\n    return schemes.filter((scheme) => !names.some((name) => Object.keys(scheme).includes(name)))\n  }\n\n  // -- Remove from document-level `x-scalar-selected-security` extension, if present\n  if (document['x-scalar-selected-security']) {\n    const selectedSecurity = document['x-scalar-selected-security']\n    selectedSecurity.selectedSchemes = filterSecuritySchemes(selectedSecurity.selectedSchemes)\n  }\n\n  // -- Remove from document-level `security` property, if present\n  if (document['security']) {\n    document['security'] = filterSecuritySchemes(document['security'])\n  }\n\n  // -- For each path and operation, remove deleted security schemes from operation-level security and custom extension\n  Object.values(document.paths ?? {}).forEach((path) => {\n    Object.values(path).forEach((operation) => {\n      if (typeof operation !== 'object') {\n        // Ignore operations that are not objects (could be undefined)\n        return\n      }\n\n      // Get mutable reference for the operation (could resolve $ref proxies)\n      const resolvedOperation = getResolvedRef(operation)\n\n      // Remove from operation-level security array\n      if ('security' in resolvedOperation && resolvedOperation['security']) {\n        resolvedOperation['security'] = filterSecuritySchemes(resolvedOperation['security'])\n      }\n\n      // Remove from operation-level x-scalar-selected-security array\n      if ('x-scalar-selected-security' in resolvedOperation && resolvedOperation['x-scalar-selected-security']) {\n        resolvedOperation['x-scalar-selected-security'].selectedSchemes = filterSecuritySchemes(\n          resolvedOperation['x-scalar-selected-security'].selectedSchemes,\n        )\n      }\n    })\n  })\n}\n"],
+  "mappings": "AAGA,SAAS,2BAA2B;AACpC,SAAS,sBAAsB;AAC/B,SAAS,oBAAoB;AA6CtB,MAAM,gCAAgC,OAC3C,UACA,EAAE,sBAAsB,YAAY,KAAK,MACtC;AACH,MAAI,CAAC,UAAU;AACb;AAAA,EACF;AAGA,QAAM,YAAY,MAAM;AACtB,QAAI,KAAK,SAAS,YAAY;AAC5B,aAAO;AAAA,IACT;AAEA,WAAO,eAAe,SAAS,QAAQ,KAAK,IAAI,IAAI,KAAK,MAAM,CAAC;AAAA,EAClE;AAEA,QAAM,8BAA8B,MAAM,QAAQ;AAAA,IAChD,WAAW,IAAI,OAAO,cAAc;AAClC,YAAM,mBAAmB,MAAM,oBAAoB;AAAA,QACjD,cAAc,UAAU;AAAA,QACxB,YAAY,CAAC,UAAU,CAAC,SAAS,YAAY,kBAAkB,KAAK;AAAA,QACpE,YAAY;AAAA,MACd,CAAC;AAED,UAAI,CAAC,kBAAkB;AACrB;AAAA,MACF;AAGA,UAAI,CAAC,SAAS,YAAY;AACxB,iBAAS,aAAa,CAAC;AAAA,MACzB;AACA,UAAI,CAAC,SAAS,WAAW,iBAAiB;AACxC,iBAAS,WAAW,kBAAkB,CAAC;AAAA,MACzC;AAGA,eAAS,WAAW,gBAAgB,gBAAgB,IAAI,UAAU;AAGlE,aAAO;AAAA,QACL,CAAC,gBAAgB,GAAG,CAAC;AAAA,MACvB;AAAA,IACF,CAAC;AAAA,EACH;AAGA,QAAM,iBAAiB,4BAA4B,OAAO,OAAO;AAEjE,QAAM,SAAS,UAAU;AAEzB,QAAM,6BAA6B,CAAC,GAAG,sBAAsB,GAAG,cAAc;AAG9E,MAAI,CAAC,QAAQ;AACX;AAAA,EACF;AAGA,MAAI,CAAC,OAAO,4BAA4B,GAAG;AACzC,WAAO,4BAA4B,IAAI;AAAA,MACrC,eAAe;AAAA,MACf,iBAAiB,CAAC;AAAA,IACpB;AAAA,EACF;AAEA,QAAM,gBAAgB,OAAO,4BAA4B,EAAE;AAG3D,SAAO,4BAA4B,EAAE,kBAAkB;AAGvD,MAAI,2BAA2B,SAAS,KAAK,gBAAgB,GAAG;AAC9D,WAAO,4BAA4B,EAAE,gBAAgB;AAAA,EACvD;AAGA,MAAI,iBAAiB,2BAA2B,QAAQ;AACtD,WAAO,4BAA4B,EAAE,gBAAgB,2BAA2B,SAAS;AAAA,EAC3F;AACF;AAyBO,MAAM,uBAAuB,CAClC,UACA,EAAE,SAAS,KAAK,MACb;AACH,QAAM,SAAS,eAAe,UAAU,YAAY,kBAAkB,IAAI,CAAC;AAC3E,MAAI,CAAC,QAAQ;AACX,YAAQ,MAAM,mBAAmB,IAAI,YAAY;AACjD;AAAA,EACF;AAGA,MAAI,OAAO,SAAS,QAAQ,MAAM;AAChC,iBAAa,QAAQ,OAAO;AAAA,EAC9B;AAEA,SAAO;AACT;AA4BO,MAAM,wBAAwB,CACnC,UACA,EAAE,OAAO,KAAK,MACX;AACH,MAAI,CAAC,UAAU;AACb;AAAA,EACF;AAKA,QAAM,YAAY,MAAM;AACtB,QAAI,KAAK,SAAS,YAAY;AAC5B,aAAO;AAAA,IACT;AACA,WAAO,eAAe,SAAS,QAAQ,KAAK,IAAI,IAAI,KAAK,MAAM,CAAC;AAAA,EAClE;AAEA,QAAM,SAAS,UAAU;AACzB,MAAI,CAAC,QAAQ;AACX;AAAA,EACF;AAGA,MAAI,CAAC,OAAO,4BAA4B,GAAG;AACzC,WAAO,4BAA4B,IAAI;AAAA,MACrC,eAAe;AAAA,MACf,iBAAiB,CAAC;AAAA,IACpB;AAAA,EACF;AAGA,SAAO,4BAA4B,EAAE,gBAAgB;AACvD;AAkCO,MAAM,uBAAuB,CAClC,UACA,EAAE,IAAI,MAAM,QAAQ,KAAK,MACtB;AACH,MAAI,CAAC,UAAU;AACb;AAAA,EACF;AAGA,QAAM,YAAY,MAAM;AACtB,QAAI,KAAK,SAAS,YAAY;AAC5B,aAAO;AAAA,IACT;AACA,WAAO,eAAe,SAAS,QAAQ,KAAK,IAAI,IAAI,KAAK,MAAM,CAAC;AAAA,EAClE;AAEA,QAAM,SAAS,UAAU;AAEzB,MAAI,CAAC,QAAQ;AACX;AAAA,EACF;AAGA,QAAM,kBAAkB,OAAO,4BAA4B,GAAG;AAE9D,MAAI,CAAC,iBAAiB;AACpB;AAAA,EACF;AAIA,QAAM,SAAS,gBAAgB,KAAK,CAACA,YAAW,KAAK,UAAU,OAAO,KAAKA,OAAM,CAAC,MAAM,KAAK,UAAU,EAAE,CAAC;AAE1G,MAAI,CAAC,QAAQ;AACX;AAAA,EACF;AAGA,SAAO,IAAI,IAAI;AACjB;AAqBO,MAAM,uBAAuB,CAClC,UACA,EAAE,MAAM,MACL;AACH,MAAI,CAAC,UAAU;AAEb;AAAA,EACF;AAGA,QAAM,SAAS,eAAe,SAAS,YAAY,eAAe;AAElE,MAAI,CAAC,QAAQ;AAEX;AAAA,EACF;AAGA,QAAM,QAAQ,CAAC,SAAS;AACtB,WAAO,OAAO,IAAI;AAAA,EACpB,CAAC;AAGD,QAAM,wBAAwB,CAAC,YAAyC;AAEtE,WAAO,QAAQ,OAAO,CAAC,WAAW,CAAC,MAAM,KAAK,CAAC,SAAS,OAAO,KAAK,MAAM,EAAE,SAAS,IAAI,CAAC,CAAC;AAAA,EAC7F;AAGA,MAAI,SAAS,4BAA4B,GAAG;AAC1C,UAAM,mBAAmB,SAAS,4BAA4B;AAC9D,qBAAiB,kBAAkB,sBAAsB,iBAAiB,eAAe;AAAA,EAC3F;AAGA,MAAI,SAAS,UAAU,GAAG;AACxB,aAAS,UAAU,IAAI,sBAAsB,SAAS,UAAU,CAAC;AAAA,EACnE;AAGA,SAAO,OAAO,SAAS,SAAS,CAAC,CAAC,EAAE,QAAQ,CAAC,SAAS;AACpD,WAAO,OAAO,IAAI,EAAE,QAAQ,CAAC,cAAc;AACzC,UAAI,OAAO,cAAc,UAAU;AAEjC;AAAA,MACF;AAGA,YAAM,oBAAoB,eAAe,SAAS;AAGlD,UAAI,cAAc,qBAAqB,kBAAkB,UAAU,GAAG;AACpE,0BAAkB,UAAU,IAAI,sBAAsB,kBAAkB,UAAU,CAAC;AAAA,MACrF;AAGA,UAAI,gCAAgC,qBAAqB,kBAAkB,4BAA4B,GAAG;AACxG,0BAAkB,4BAA4B,EAAE,kBAAkB;AAAA,UAChE,kBAAkB,4BAA4B,EAAE;AAAA,QAClD;AAAA,MACF;AAAA,IACF,CAAC;AAAA,EACH,CAAC;AACH;",
   "names": ["scheme"]
 }

package/dist/mutators/cookie.d.ts

@@ -1,17 +1,25 @@
-import type { UnknownObject } from '../helpers/general.js';
-import type { XScalarClientConfigCookie, XScalarClientConfigCookies } from '../schemas/v3.1/strict/client-config-extensions/x-scalar-client-config-cookies.js';
+import type { CookieEvents } from '../events/definitions/cookie.js';
+import type { Workspace, WorkspaceDocument } from '../schemas.js';
+import { type XScalarCookie } from '../schemas/extensions/general/x-scalar-cookies.js';
 /**
- * Cookie mutators for managing client configuration cookies in OpenAPI documents.
- * Provides functions to add and delete cookies from the document's x-scalar-client-config-cookies extension.
+ * Adds OR updates a cookie to the document or workspace.
  *
- * @param store - The workspace store containing the documents
- * @param documentName - The name of the document to operate on
- * @returns Object containing addCookie and deleteCookie functions
+ * @param document - current document if available
+ * @param workspace - current workspace if available
+ * @param payload - The cookie configuration to add or update
+ * @param index - Optional index for updating an existing cookie
+ * @param collectionType - Whether this is for a document or workspace
+ * @returns the parsed cookie that was added or updated or undefined if the collection is not found
  */
-export declare const cookieMutators: (document?: UnknownObject & {
-    "x-scalar-client-config-cookies"?: XScalarClientConfigCookies;
-}) => {
-    addCookie: (cookie: XScalarClientConfigCookie) => boolean;
-    deleteCookie: (cookieName: string) => boolean;
-};
+export declare const upsertCookie: (collection: WorkspaceDocument | Workspace | null, { payload, index }: CookieEvents["cookie:upsert:cookie"]) => XScalarCookie | undefined;
+/**
+ * Deletes a cookie from the document or workspace by index.
+ *
+ * @param document - current document if available
+ * @param workspace - current workspace if available
+ * @param index - Index of the cookie to delete
+ * @param collectionType - Whether this is for a document or workspace
+ * @returns true if the cookie was deleted, false otherwise
+ */
+export declare const deleteCookie: (collection: WorkspaceDocument | Workspace | null, { index }: CookieEvents["cookie:delete:cookie"]) => boolean;
 //# sourceMappingURL=cookie.d.ts.map

package/dist/mutators/cookie.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"cookie.d.ts","sourceRoot":"","sources":["../../src/mutators/cookie.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,aAAa,EAAE,MAAM,mBAAmB,CAAA;AACtD,OAAO,KAAK,EACV,yBAAyB,EACzB,0BAA0B,EAC3B,MAAM,+EAA+E,CAAA;AAEtF;;;;;;;GAOG;AACH,eAAO,MAAM,cAAc,GACzB,WAAW,aAAa,GAAG;IAAE,gCAAgC,CAAC,EAAE,0BAA0B,CAAA;CAAE;wBAwBjE,yBAAyB;+BA+BlB,MAAM;CAazC,CAAA"}
+{"version":3,"file":"cookie.d.ts","sourceRoot":"","sources":["../../src/mutators/cookie.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,YAAY,EAAE,MAAM,6BAA6B,CAAA;AAC/D,OAAO,KAAK,EAAE,SAAS,EAAE,iBAAiB,EAAE,MAAM,WAAW,CAAA;AAC7D,OAAO,EAAE,KAAK,aAAa,EAAuB,MAAM,+CAA+C,CAAA;AAGvG;;;;;;;;;GASG;AACH,eAAO,MAAM,YAAY,GACvB,YAAY,iBAAiB,GAAG,SAAS,GAAG,IAAI,EAChD,oBAAoB,YAAY,CAAC,sBAAsB,CAAC,KACvD,aAAa,GAAG,SA8BlB,CAAA;AAED;;;;;;;;GAQG;AACH,eAAO,MAAM,YAAY,GACvB,YAAY,iBAAiB,GAAG,SAAS,GAAG,IAAI,EAChD,WAAW,YAAY,CAAC,sBAAsB,CAAC,KAC9C,OAWF,CAAA"}

package/dist/mutators/cookie.js

@@ -1,31 +1,39 @@
-const cookieMutators = (document) => {
-  const addCookie = (cookie) => {
-    if (!document) {
-      return false;
+import { xScalarCookieSchema } from "../schemas/extensions/general/x-scalar-cookies.js";
+import { coerceValue } from "../schemas/typebox-coerce.js";
+const upsertCookie = (collection, { payload, index }) => {
+  if (!collection) {
+    return;
+  }
+  if (!collection["x-scalar-cookies"]) {
+    collection["x-scalar-cookies"] = [];
+  }
+  if (index !== void 0) {
+    if (index < 0 || index >= collection["x-scalar-cookies"].length) {
+      return;
     }
-    if (!document["x-scalar-client-config-cookies"]) {
-      document["x-scalar-client-config-cookies"] = {};
-    }
-    if (document["x-scalar-client-config-cookies"][cookie.name]) {
-      console.warn(`Cookie with name "${cookie.name}" already exists in the document.`);
-      return false;
-    }
-    document["x-scalar-client-config-cookies"][cookie.name] = cookie;
-    return true;
-  };
-  const deleteCookie = (cookieName) => {
-    if (!document || !document["x-scalar-client-config-cookies"]) {
-      return false;
-    }
-    delete document["x-scalar-client-config-cookies"][cookieName];
-    return true;
-  };
-  return {
-    addCookie,
-    deleteCookie
-  };
+    const parsed2 = coerceValue(xScalarCookieSchema, {
+      ...collection["x-scalar-cookies"][index],
+      ...payload
+    });
+    collection["x-scalar-cookies"][index] = parsed2;
+    return parsed2;
+  }
+  const parsed = coerceValue(xScalarCookieSchema, payload);
+  collection["x-scalar-cookies"].push(parsed);
+  return parsed;
+};
+const deleteCookie = (collection, { index }) => {
+  if (!collection || !collection["x-scalar-cookies"]) {
+    return false;
+  }
+  if (index < 0 || index >= collection["x-scalar-cookies"].length) {
+    return false;
+  }
+  collection["x-scalar-cookies"].splice(index, 1);
+  return true;
 };
 export {
-  cookieMutators
+  deleteCookie,
+  upsertCookie
 };
 //# sourceMappingURL=cookie.js.map

package/dist/mutators/cookie.js.map

@@ -1,7 +1,7 @@
 {
   "version": 3,
   "sources": ["../../src/mutators/cookie.ts"],
-  "sourcesContent": ["import type { UnknownObject } from '@/helpers/general'\nimport type {\n  XScalarClientConfigCookie,\n  XScalarClientConfigCookies,\n} from '@/schemas/v3.1/strict/client-config-extensions/x-scalar-client-config-cookies'\n\n/**\n * Cookie mutators for managing client configuration cookies in OpenAPI documents.\n * Provides functions to add and delete cookies from the document's x-scalar-client-config-cookies extension.\n *\n * @param store - The workspace store containing the documents\n * @param documentName - The name of the document to operate on\n * @returns Object containing addCookie and deleteCookie functions\n */\nexport const cookieMutators = (\n  document?: UnknownObject & { 'x-scalar-client-config-cookies'?: XScalarClientConfigCookies },\n) => {\n  /**\n   * Adds a new cookie to the document's client configuration.\n   * If a cookie with the same name already exists, it will log a warning and return false.\n   *\n   * @param cookie - The cookie configuration to add\n   * @returns true if the cookie was added successfully, false if it already exists\n   *\n   * @example\n   * // Add a new authentication cookie\n   * const success = addCookie({\n   *   name: 'auth-token',\n   *   value: 'eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9...',\n   *   domain: '.example.com',\n   *   path: '/'\n   * })\n   *\n   * if (success) {\n   *   console.log('Cookie added successfully')\n   * } else {\n   *   console.log('Cookie already exists')\n   * }\n   */\n  const addCookie = (cookie: XScalarClientConfigCookie) => {\n    if (!document) {\n      return false\n    }\n\n    if (!document['x-scalar-client-config-cookies']) {\n      document['x-scalar-client-config-cookies'] = {}\n    }\n\n    if (document['x-scalar-client-config-cookies'][cookie.name]) {\n      console.warn(`Cookie with name \"${cookie.name}\" already exists in the document.`)\n      return false\n    }\n\n    document['x-scalar-client-config-cookies'][cookie.name] = cookie\n    return true\n  }\n\n  /**\n   * Removes a cookie from the document's x-scalar-client-config-cookies extension by its name.\n   * Returns false if the document or cookies object does not exist, otherwise deletes the cookie and returns true.\n   *\n   * @param cookieName - The name of the cookie to remove\n   *\n   * @example\n   * // Remove an authentication cookie\n   * deleteCookie('auth-token')\n   *\n   * // Remove a session cookie\n   * deleteCookie('session-id')\n   */\n  const deleteCookie = (cookieName: string) => {\n    if (!document || !document['x-scalar-client-config-cookies']) {\n      return false\n    }\n\n    delete document['x-scalar-client-config-cookies'][cookieName]\n    return true\n  }\n\n  return {\n    addCookie,\n    deleteCookie,\n  }\n}\n"],
-  "mappings": "AAcO,MAAM,iBAAiB,CAC5B,aACG;AAuBH,QAAM,YAAY,CAAC,WAAsC;AACvD,QAAI,CAAC,UAAU;AACb,aAAO;AAAA,IACT;AAEA,QAAI,CAAC,SAAS,gCAAgC,GAAG;AAC/C,eAAS,gCAAgC,IAAI,CAAC;AAAA,IAChD;AAEA,QAAI,SAAS,gCAAgC,EAAE,OAAO,IAAI,GAAG;AAC3D,cAAQ,KAAK,qBAAqB,OAAO,IAAI,mCAAmC;AAChF,aAAO;AAAA,IACT;AAEA,aAAS,gCAAgC,EAAE,OAAO,IAAI,IAAI;AAC1D,WAAO;AAAA,EACT;AAeA,QAAM,eAAe,CAAC,eAAuB;AAC3C,QAAI,CAAC,YAAY,CAAC,SAAS,gCAAgC,GAAG;AAC5D,aAAO;AAAA,IACT;AAEA,WAAO,SAAS,gCAAgC,EAAE,UAAU;AAC5D,WAAO;AAAA,EACT;AAEA,SAAO;AAAA,IACL;AAAA,IACA;AAAA,EACF;AACF;",
-  "names": []
+  "sourcesContent": ["import type { CookieEvents } from '@/events/definitions/cookie'\nimport type { Workspace, WorkspaceDocument } from '@/schemas'\nimport { type XScalarCookie, xScalarCookieSchema } from '@/schemas/extensions/general/x-scalar-cookies'\nimport { coerceValue } from '@/schemas/typebox-coerce'\n\n/**\n * Adds OR updates a cookie to the document or workspace.\n *\n * @param document - current document if available\n * @param workspace - current workspace if available\n * @param payload - The cookie configuration to add or update\n * @param index - Optional index for updating an existing cookie\n * @param collectionType - Whether this is for a document or workspace\n * @returns the parsed cookie that was added or updated or undefined if the collection is not found\n */\nexport const upsertCookie = (\n  collection: WorkspaceDocument | Workspace | null,\n  { payload, index }: CookieEvents['cookie:upsert:cookie'],\n): XScalarCookie | undefined => {\n  if (!collection) {\n    return\n  }\n\n  if (!collection['x-scalar-cookies']) {\n    collection['x-scalar-cookies'] = []\n  }\n\n  if (index !== undefined) {\n    // Update existing cookie at index\n    if (index < 0 || index >= collection['x-scalar-cookies'].length) {\n      return\n    }\n\n    // Ensure we parse the payload but keep the existing cookie data\n    const parsed = coerceValue(xScalarCookieSchema, {\n      ...collection['x-scalar-cookies'][index],\n      ...payload,\n    })\n\n    // Update\n    collection['x-scalar-cookies'][index] = parsed\n    return parsed\n  }\n\n  // Add new cookie\n  const parsed = coerceValue(xScalarCookieSchema, payload)\n  collection['x-scalar-cookies'].push(parsed)\n  return parsed\n}\n\n/**\n * Deletes a cookie from the document or workspace by index.\n *\n * @param document - current document if available\n * @param workspace - current workspace if available\n * @param index - Index of the cookie to delete\n * @param collectionType - Whether this is for a document or workspace\n * @returns true if the cookie was deleted, false otherwise\n */\nexport const deleteCookie = (\n  collection: WorkspaceDocument | Workspace | null,\n  { index }: CookieEvents['cookie:delete:cookie'],\n): boolean => {\n  if (!collection || !collection['x-scalar-cookies']) {\n    return false\n  }\n\n  if (index < 0 || index >= collection['x-scalar-cookies'].length) {\n    return false\n  }\n\n  collection['x-scalar-cookies'].splice(index, 1)\n  return true\n}\n"],
+  "mappings": "AAEA,SAA6B,2BAA2B;AACxD,SAAS,mBAAmB;AAYrB,MAAM,eAAe,CAC1B,YACA,EAAE,SAAS,MAAM,MACa;AAC9B,MAAI,CAAC,YAAY;AACf;AAAA,EACF;AAEA,MAAI,CAAC,WAAW,kBAAkB,GAAG;AACnC,eAAW,kBAAkB,IAAI,CAAC;AAAA,EACpC;AAEA,MAAI,UAAU,QAAW;AAEvB,QAAI,QAAQ,KAAK,SAAS,WAAW,kBAAkB,EAAE,QAAQ;AAC/D;AAAA,IACF;AAGA,UAAMA,UAAS,YAAY,qBAAqB;AAAA,MAC9C,GAAG,WAAW,kBAAkB,EAAE,KAAK;AAAA,MACvC,GAAG;AAAA,IACL,CAAC;AAGD,eAAW,kBAAkB,EAAE,KAAK,IAAIA;AACxC,WAAOA;AAAA,EACT;AAGA,QAAM,SAAS,YAAY,qBAAqB,OAAO;AACvD,aAAW,kBAAkB,EAAE,KAAK,MAAM;AAC1C,SAAO;AACT;AAWO,MAAM,eAAe,CAC1B,YACA,EAAE,MAAM,MACI;AACZ,MAAI,CAAC,cAAc,CAAC,WAAW,kBAAkB,GAAG;AAClD,WAAO;AAAA,EACT;AAEA,MAAI,QAAQ,KAAK,SAAS,WAAW,kBAAkB,EAAE,QAAQ;AAC/D,WAAO;AAAA,EACT;AAEA,aAAW,kBAAkB,EAAE,OAAO,OAAO,CAAC;AAC9C,SAAO;AACT;",
+  "names": ["parsed"]
 }

package/dist/mutators/document.d.ts

@@ -1,6 +1,16 @@
+import type { WorkspaceStore } from '../client.js';
+import type { DocumentEvents } from '../events/definitions/document.js';
 import type { WorkspaceDocument } from '../schemas.js';
 /**
- * Toggle use document security
+ * Toggle setting selected security schemes at the operation level
  */
-export declare const toggleDocumentSecurity: (document: WorkspaceDocument | null) => void;
+export declare const toggleSecurity: (document: WorkspaceDocument | null) => void;
+export declare const updateWatchMode: (document: WorkspaceDocument | null, watchMode: boolean) => void;
+/**
+ * Update the document icon and also update the corresponding sidebar entry
+ *
+ * Does not perform a sidebar rebuild for performance benefit
+ */
+export declare const updateDocumentIcon: (document: WorkspaceDocument | null, icon: string) => void;
+export declare const createEmptyDocument: (store: WorkspaceStore | null, payload: DocumentEvents["document:create:empty-document"]) => Promise<void>;
 //# sourceMappingURL=document.d.ts.map

package/dist/mutators/document.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"document.d.ts","sourceRoot":"","sources":["../../src/mutators/document.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,iBAAiB,EAAE,MAAM,WAAW,CAAA;AAElD;;GAEG;AACH,eAAO,MAAM,sBAAsB,GAAI,UAAU,iBAAiB,GAAG,IAAI,SAMxE,CAAA"}
+{"version":3,"file":"document.d.ts","sourceRoot":"","sources":["../../src/mutators/document.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,cAAc,EAAE,MAAM,UAAU,CAAA;AAC9C,OAAO,KAAK,EAAE,cAAc,EAAE,MAAM,+BAA+B,CAAA;AACnE,OAAO,KAAK,EAAE,iBAAiB,EAAE,MAAM,WAAW,CAAA;AAElD;;GAEG;AACH,eAAO,MAAM,cAAc,GAAI,UAAU,iBAAiB,GAAG,IAAI,SAMhE,CAAA;AAED,eAAO,MAAM,eAAe,GAAI,UAAU,iBAAiB,GAAG,IAAI,EAAE,WAAW,OAAO,SAMrF,CAAA;AAED;;;;GAIG;AACH,eAAO,MAAM,kBAAkB,GAAI,UAAU,iBAAiB,GAAG,IAAI,EAAE,MAAM,MAAM,SASlF,CAAA;AAED,eAAO,MAAM,mBAAmB,GAC9B,OAAO,cAAc,GAAG,IAAI,EAC5B,SAAS,cAAc,CAAC,gCAAgC,CAAC,kBA4B1D,CAAA"}

package/dist/mutators/document.js

@@ -1,10 +1,49 @@
-const toggleDocumentSecurity = (document) => {
+const toggleSecurity = (document) => {
   if (!document) {
     return;
   }
-  document["x-scalar-document-security"] = !document["x-scalar-document-security"];
+  document["x-scalar-set-operation-security"] = !document["x-scalar-set-operation-security"];
+};
+const updateWatchMode = (document, watchMode) => {
+  if (!document) {
+    return;
+  }
+  document["x-scalar-watch-mode"] = watchMode;
+};
+const updateDocumentIcon = (document, icon) => {
+  if (!document || !document["x-scalar-navigation"]) {
+    return;
+  }
+  document["x-scalar-icon"] = icon;
+  document["x-scalar-navigation"].icon = icon;
+};
+const createEmptyDocument = async (store, payload) => {
+  if (!store) {
+    return;
+  }
+  if (store.workspace.documents[payload.name]) {
+    payload.callback?.(false);
+    return;
+  }
+  await store.addDocument({
+    name: payload.name,
+    document: {
+      openapi: "3.1.0",
+      info: { title: payload.name, version: "1.0.0" },
+      paths: {
+        "/": {
+          get: {}
+        }
+      },
+      "x-scalar-icon": payload.icon
+    }
+  });
+  payload.callback?.(true);
 };
 export {
-  toggleDocumentSecurity
+  createEmptyDocument,
+  toggleSecurity,
+  updateDocumentIcon,
+  updateWatchMode
 };
 //# sourceMappingURL=document.js.map

package/dist/mutators/document.js.map

@@ -1,7 +1,7 @@
 {
   "version": 3,
   "sources": ["../../src/mutators/document.ts"],
-  "sourcesContent": ["import type { WorkspaceDocument } from '@/schemas'\n\n/**\n * Toggle use document security\n */\nexport const toggleDocumentSecurity = (document: WorkspaceDocument | null) => {\n  if (!document) {\n    return\n  }\n\n  document['x-scalar-document-security'] = !document['x-scalar-document-security']\n}\n"],
-  "mappings": "AAKO,MAAM,yBAAyB,CAAC,aAAuC;AAC5E,MAAI,CAAC,UAAU;AACb;AAAA,EACF;AAEA,WAAS,4BAA4B,IAAI,CAAC,SAAS,4BAA4B;AACjF;",
+  "sourcesContent": ["import type { WorkspaceStore } from '@/client'\nimport type { DocumentEvents } from '@/events/definitions/document'\nimport type { WorkspaceDocument } from '@/schemas'\n\n/**\n * Toggle setting selected security schemes at the operation level\n */\nexport const toggleSecurity = (document: WorkspaceDocument | null) => {\n  if (!document) {\n    return\n  }\n\n  document['x-scalar-set-operation-security'] = !document['x-scalar-set-operation-security']\n}\n\nexport const updateWatchMode = (document: WorkspaceDocument | null, watchMode: boolean) => {\n  if (!document) {\n    return\n  }\n\n  document['x-scalar-watch-mode'] = watchMode\n}\n\n/**\n * Update the document icon and also update the corresponding sidebar entry\n *\n * Does not perform a sidebar rebuild for performance benefit\n */\nexport const updateDocumentIcon = (document: WorkspaceDocument | null, icon: string) => {\n  if (!document || !document['x-scalar-navigation']) {\n    return\n  }\n\n  // Update the document icon\n  document['x-scalar-icon'] = icon\n  // Update the sidebar document icon\n  document['x-scalar-navigation'].icon = icon\n}\n\nexport const createEmptyDocument = async (\n  store: WorkspaceStore | null,\n  payload: DocumentEvents['document:create:empty-document'],\n) => {\n  if (!store) {\n    return\n  }\n\n  // Check if the document already exists\n  // name should be unique\n  if (store.workspace.documents[payload.name]) {\n    payload.callback?.(false)\n    return\n  }\n\n  await store.addDocument({\n    name: payload.name,\n    document: {\n      openapi: '3.1.0',\n      info: { title: payload.name, version: '1.0.0' },\n      paths: {\n        '/': {\n          get: {},\n        },\n      },\n      'x-scalar-icon': payload.icon,\n    },\n  })\n\n  payload.callback?.(true)\n}\n"],
+  "mappings": "AAOO,MAAM,iBAAiB,CAAC,aAAuC;AACpE,MAAI,CAAC,UAAU;AACb;AAAA,EACF;AAEA,WAAS,iCAAiC,IAAI,CAAC,SAAS,iCAAiC;AAC3F;AAEO,MAAM,kBAAkB,CAAC,UAAoC,cAAuB;AACzF,MAAI,CAAC,UAAU;AACb;AAAA,EACF;AAEA,WAAS,qBAAqB,IAAI;AACpC;AAOO,MAAM,qBAAqB,CAAC,UAAoC,SAAiB;AACtF,MAAI,CAAC,YAAY,CAAC,SAAS,qBAAqB,GAAG;AACjD;AAAA,EACF;AAGA,WAAS,eAAe,IAAI;AAE5B,WAAS,qBAAqB,EAAE,OAAO;AACzC;AAEO,MAAM,sBAAsB,OACjC,OACA,YACG;AACH,MAAI,CAAC,OAAO;AACV;AAAA,EACF;AAIA,MAAI,MAAM,UAAU,UAAU,QAAQ,IAAI,GAAG;AAC3C,YAAQ,WAAW,KAAK;AACxB;AAAA,EACF;AAEA,QAAM,MAAM,YAAY;AAAA,IACtB,MAAM,QAAQ;AAAA,IACd,UAAU;AAAA,MACR,SAAS;AAAA,MACT,MAAM,EAAE,OAAO,QAAQ,MAAM,SAAS,QAAQ;AAAA,MAC9C,OAAO;AAAA,QACL,KAAK;AAAA,UACH,KAAK,CAAC;AAAA,QACR;AAAA,MACF;AAAA,MACA,iBAAiB,QAAQ;AAAA,IAC3B;AAAA,EACF,CAAC;AAED,UAAQ,WAAW,IAAI;AACzB;",
   "names": []
 }

package/dist/mutators/index.d.ts

@@ -14,10 +14,6 @@ export declare function generateClientMutators(store: WorkspaceStore): {
      * Returns mutators for the workspace-level configuration.
      */
     workspace: () => {
-        cookieMutators: {
-            addCookie: (cookie: import("../schemas/v3.1/strict/client-config-extensions/x-scalar-client-config-cookies.js").XScalarClientConfigCookie) => boolean;
-            deleteCookie: (cookieName: string) => boolean;
-        };
         serverMutators: {
             addServer: (server: ServerObject) => boolean;
             deleteServer: (url: string) => boolean;
@@ -34,19 +30,24 @@ export declare function generateClientMutators(store: WorkspaceStore): {
     active: () => {
         requestMutators: {
             moveRequest: ({ source, destination, }: {
-                source: import("../mutators/request.js").OperationIdentifier;
-                destination: import("../mutators/request.js").OperationIdentifier;
+                source: {
+                    path: string;
+                    method: Exclude<import("@scalar/helpers/http/http-methods").HttpMethod, "head" | "options">;
+                };
+                destination: {
+                    path: string;
+                    method: Exclude<import("@scalar/helpers/http/http-methods").HttpMethod, "head" | "options">;
+                };
+            }) => boolean;
+            deleteRequest: ({ path, method }: {
+                path: string;
+                method: Exclude<import("@scalar/helpers/http/http-methods").HttpMethod, "head" | "options">;
             }) => boolean;
-            deleteRequest: ({ path, method }: import("../mutators/request.js").OperationIdentifier) => boolean;
         };
         securitySchemeMutators: {
             addSecurityScheme: (name: string, securityScheme: import("../schemas/v3.1/strict/openapi-document.js").SecuritySchemeObject) => boolean;
             deleteSecurityScheme: (name: string) => boolean;
         };
-        cookieMutators: {
-            addCookie: (cookie: import("../schemas/v3.1/strict/client-config-extensions/x-scalar-client-config-cookies.js").XScalarClientConfigCookie) => boolean;
-            deleteCookie: (cookieName: string) => boolean;
-        };
         serverMutators: {
             addServer: (server: ServerObject) => boolean;
             deleteServer: (url: string) => boolean;
@@ -60,19 +61,24 @@ export declare function generateClientMutators(store: WorkspaceStore): {
     doc: (name: string) => {
         requestMutators: {
             moveRequest: ({ source, destination, }: {
-                source: import("../mutators/request.js").OperationIdentifier;
-                destination: import("../mutators/request.js").OperationIdentifier;
+                source: {
+                    path: string;
+                    method: Exclude<import("@scalar/helpers/http/http-methods").HttpMethod, "head" | "options">;
+                };
+                destination: {
+                    path: string;
+                    method: Exclude<import("@scalar/helpers/http/http-methods").HttpMethod, "head" | "options">;
+                };
+            }) => boolean;
+            deleteRequest: ({ path, method }: {
+                path: string;
+                method: Exclude<import("@scalar/helpers/http/http-methods").HttpMethod, "head" | "options">;
             }) => boolean;
-            deleteRequest: ({ path, method }: import("../mutators/request.js").OperationIdentifier) => boolean;
         };
         securitySchemeMutators: {
             addSecurityScheme: (name: string, securityScheme: import("../schemas/v3.1/strict/openapi-document.js").SecuritySchemeObject) => boolean;
             deleteSecurityScheme: (name: string) => boolean;
         };
-        cookieMutators: {
-            addCookie: (cookie: import("../schemas/v3.1/strict/client-config-extensions/x-scalar-client-config-cookies.js").XScalarClientConfigCookie) => boolean;
-            deleteCookie: (cookieName: string) => boolean;
-        };
         serverMutators: {
             addServer: (server: ServerObject) => boolean;
             deleteServer: (url: string) => boolean;
@@ -80,8 +86,12 @@ export declare function generateClientMutators(store: WorkspaceStore): {
     };
 };
 export { type AuthMeta, deleteSecurityScheme, updateSecurityScheme, updateSelectedAuthTab, updateSelectedScopes, updateSelectedSecuritySchemes, } from './auth.js';
-export { toggleDocumentSecurity } from './document.js';
+export { deleteCookie, upsertCookie } from './cookie.js';
+export { createEmptyDocument, toggleSecurity, updateDocumentIcon, updateWatchMode } from './document.js';
 export { upsertEnvironment, upsertEnvironmentVariable, } from './environment.js';
-export { type OperationExampleMeta, type OperationMeta, addOperationParameter, addOperationRequestBodyFormRow, deleteAllOperationParameters, deleteOperationParameter, deleteOperationRequestBodyFormRow, updateOperationMethodDraft as updateOperationMethod, updateOperationParameter, updateOperationPathDraft as updateOperationPath, updateOperationRequestBodyContentType, updateOperationRequestBodyExample, updateOperationRequestBodyFormRow, updateOperationSummary, } from './operation.js';
+export { type OperationExampleMeta, type OperationMeta, addOperationParameter, addOperationRequestBodyFormRow, createOperation, deleteAllOperationParameters, deleteOperationParameter, deleteOperationRequestBodyFormRow, updateOperationMethod, updateOperationParameter, updateOperationPath, updateOperationRequestBodyContentType, updateOperationRequestBodyExample, updateOperationRequestBodyFormRow, updateOperationSummary, } from './operation.js';
 export { addServer, deleteServer, updateSelectedServer, updateServer, updateServerVariables, } from './server.js';
+export { addTab, closeOtherTabs, closeTab, focusLastTab, focusTab, navigateNextTab, navigatePreviousTab, updateTabs, } from './tabs.js';
+export { createTag } from './tag.js';
+export { updateActiveProxy, updateColorMode, updateTheme } from './workspace.js';
 //# sourceMappingURL=index.d.ts.map