@scalekit-sdk/node 1.0.6 → 1.0.8

package/lib/scalekit.js

@@ -35,16 +35,20 @@ var __importDefault = (this && this.__importDefault) || function (mod) {
     return (mod && mod.__esModule) ? mod : { "default": mod };
 };
 Object.defineProperty(exports, "__esModule", { value: true });
+const crypto_1 = __importDefault(require("crypto"));
 const jose = __importStar(require("jose"));
 const qs_1 = __importDefault(require("qs"));
 const connect_1 = __importDefault(require("./connect"));
 const connection_1 = __importDefault(require("./connection"));
 const user_1 = require("./constants/user");
 const core_1 = __importDefault(require("./core"));
+const directory_1 = __importDefault(require("./directory"));
 const domain_1 = __importDefault(require("./domain"));
 const organization_1 = __importDefault(require("./organization"));
 const scalekit_1 = require("./types/scalekit");
 const authorizeEndpoint = "oauth/authorize";
+const WEBHOOK_TOLERANCE_IN_SECONDS = 5 * 60; // 5 minutes
+const WEBHOOK_SIGNATURE_VERSION = "v1";
 /**
  * To initiate scalekit
  * @param {string} envUrl The environment url
@@ -61,6 +65,7 @@ class ScalekitClient {
         this.organization = new organization_1.default(this.grpcConnect, this.coreClient);
         this.connection = new connection_1.default(this.grpcConnect, this.coreClient);
         this.domain = new domain_1.default(this.grpcConnect, this.coreClient);
+        this.directory = new directory_1.default(this.grpcConnect, this.coreClient);
     }
     /**
      * Returns the authorization url to initiate the authentication request.
@@ -118,6 +123,17 @@ class ScalekitClient {
             };
         });
     }
+    /**
+    * Get the idp initiated login claims
+    *
+    * @param {string} idpInitiatedLoginToken The idp_initiated_login query param from the URL
+    * @returns {object} Returns the idp initiated login claims
+    */
+    getIdpInitiatedLoginClaims(idpInitiatedLoginToken) {
+        return __awaiter(this, void 0, void 0, function* () {
+            return this.validateToken(idpInitiatedLoginToken);
+        });
+    }
     /**
      * Validates the access token.
      *
@@ -125,20 +141,98 @@ class ScalekitClient {
      * @return {Promise<boolean>} Returns true if the token is valid, false otherwise.
      */
     validateAccessToken(token) {
+        return __awaiter(this, void 0, void 0, function* () {
+            try {
+                yield this.validateToken(token);
+                return true;
+            }
+            catch (_) {
+                return false;
+            }
+        });
+    }
+    /**
+     * Verifies the payload of the webhook
+     *
+     * @param {string} secret The secret
+     * @param {Record<string, string>} headers The headers
+     * @param {string} payload The payload
+     * @return {boolean} Returns true if the payload is valid.
+     */
+    verifyWebhookPayload(secret, headers, payload) {
+        const webhookId = headers['webhook-id'];
+        const webhookTimestamp = headers['webhook-timestamp'];
+        const webhookSignature = headers['webhook-signature'];
+        if (!webhookId || !webhookTimestamp || !webhookSignature) {
+            throw new Error("Missing required headers");
+        }
+        const timestamp = this.verifyTimestamp(webhookTimestamp);
+        const data = `${webhookId}.${Math.floor(timestamp.getTime() / 1000)}.${payload}`;
+        const secretBytes = Buffer.from(secret.split("_")[1], 'base64');
+        const computedSignature = this.computeSignature(secretBytes, data);
+        const receivedSignatures = webhookSignature.split(" ");
+        for (const versionedSignature of receivedSignatures) {
+            const [version, signature] = versionedSignature.split(",");
+            if (version !== WEBHOOK_SIGNATURE_VERSION) {
+                continue;
+            }
+            if (crypto_1.default.timingSafeEqual(Buffer.from(signature, 'base64'), Buffer.from(computedSignature, 'base64'))) {
+                return true;
+            }
+        }
+        throw new Error("Invalid Signature");
+    }
+    /**
+     * Validate token
+     *
+     * @param {string} token The token to be validated
+     * @return {Promise<T>} Returns the payload of the token
+     */
+    validateToken(token) {
         return __awaiter(this, void 0, void 0, function* () {
             yield this.coreClient.getJwks();
-            const JWKS = jose.createLocalJWKSet({
+            const jwks = jose.createLocalJWKSet({
                 keys: this.coreClient.keys
             });
             try {
-                yield jose.jwtVerify(token, JWKS);
-                return true;
+                const { payload } = yield jose.jwtVerify(token, jwks);
+                return payload;
             }
-            catch (error) {
-                return false;
+            catch (_) {
+                throw new Error("Invalid token");
             }
         });
     }
+    /**
+     * Verify the timestamp
+     *
+     * @param {string} timestampStr The timestamp string
+     * @return {Date} Returns the timestamp
+     */
+    verifyTimestamp(timestampStr) {
+        const now = Math.floor(Date.now() / 1000);
+        const timestamp = parseInt(timestampStr, 10);
+        if (isNaN(timestamp)) {
+            throw new Error("Invalid timestamp");
+        }
+        if (now - timestamp > WEBHOOK_TOLERANCE_IN_SECONDS) {
+            throw new Error("Message timestamp too old");
+        }
+        if (timestamp > now + WEBHOOK_TOLERANCE_IN_SECONDS) {
+            throw new Error("Message timestamp too new");
+        }
+        return new Date(timestamp * 1000);
+    }
+    /**
+     * Compute the signature
+     *
+     * @param {Buffer} secretBytes The secret bytes
+     * @param {string} data The data to be signed
+     * @return {string} Returns the signature
+     */
+    computeSignature(secretBytes, data) {
+        return crypto_1.default.createHmac('sha256', secretBytes).update(data).digest('base64');
+    }
 }
 exports.default = ScalekitClient;
 //# sourceMappingURL=scalekit.js.map

package/lib/scalekit.js.map

@@ -1 +1 @@
-{"version":3,"file":"scalekit.js","sourceRoot":"","sources":["../src/scalekit.ts"],"names":[],"mappings":";;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;AAAA,2CAA6B;AAC7B,4CAA6B;AAC7B,wDAAoC;AACpC,8DAA4C;AAC5C,2CAAyD;AACzD,kDAAgC;AAChC,sDAAoC;AACpC,kEAAgD;AAChD,+CAAqH;AAGrH,MAAM,iBAAiB,GAAG,iBAAiB,CAAC;AAE5C;;;;;;;;EAQE;AACF,MAAqB,cAAc;IAMjC,YACE,MAAc,EACd,QAAgB,EAChB,YAAoB;QAEpB,IAAI,CAAC,UAAU,GAAG,IAAI,cAAU,CAC9B,MAAM,EACN,QAAQ,EACR,YAAY,CACb,CAAC;QACF,IAAI,CAAC,WAAW,GAAG,IAAI,iBAAW,CAChC,IAAI,CAAC,UAAU,CAChB,CAAC;QAEF,IAAI,CAAC,YAAY,GAAG,IAAI,sBAAkB,CACxC,IAAI,CAAC,WAAW,EAChB,IAAI,CAAC,UAAU,CAChB,CAAC;QACF,IAAI,CAAC,UAAU,GAAG,IAAI,oBAAgB,CACpC,IAAI,CAAC,WAAW,EAChB,IAAI,CAAC,UAAU,CAChB,CAAC;QACF,IAAI,CAAC,MAAM,GAAG,IAAI,gBAAY,CAC5B,IAAI,CAAC,WAAW,EAChB,IAAI,CAAC,UAAU,CAChB,CAAA;IACH,CAAC;IAED;;;;;;;;;;;;;;;;;;;OAmBG;IACH,mBAAmB,CACjB,WAAmB,EACnB,OAAiC;;QAEjC,MAAM,cAAc,GAA4B;YAC9C,MAAM,EAAE,CAAC,QAAQ,EAAE,SAAS,EAAE,OAAO,CAAC;SACvC,CAAA;QACD,OAAO,mCACF,cAAc,GACd,OAAO,CACX,CAAA;QACD,MAAM,EAAE,GAAG,YAAW,CAAC,SAAS,+IAC9B,aAAa,EAAE,MAAM,EACrB,SAAS,EAAE,IAAI,CAAC,UAAU,CAAC,QAAQ,EACnC,YAAY,EAAE,WAAW,EACzB,KAAK,EAAE,MAAA,OAAO,CAAC,MAAM,0CAAE,IAAI,CAAC,GAAG,CAAC,IAC7B,CAAC,OAAO,CAAC,KAAK,IAAI,EAAE,KAAK,EAAE,OAAO,CAAC,KAAK,EAAE,CAAC,GAC3C,CAAC,OAAO,CAAC,KAAK,IAAI,EAAE,KAAK,EAAE,OAAO,CAAC,KAAK,EAAE,CAAC,GAC3C,CAAC,OAAO,CAAC,SAAS,IAAI,EAAE,UAAU,EAAE,OAAO,CAAC,SAAS,EAAE,CAAC,GACxD,CAAC,OAAO,CAAC,UAAU,IAAI,EAAE,WAAW,EAAE,OAAO,CAAC,UAAU,EAAE,CAAC,GAC3D,CAAC,OAAO,CAAC,UAAU,IAAI,EAAE,MAAM,EAAE,OAAO,CAAC,UAAU,EAAE,CAAC,GACtD,CAAC,OAAO,CAAC,YAAY,IAAI,EAAE,aAAa,EAAE,OAAO,CAAC,YAAY,EAAE,CAAC,GACjE,CAAC,OAAO,CAAC,cAAc,IAAI,EAAE,eAAe,EAAE,OAAO,CAAC,cAAc,EAAE,CAAC,GACvE,CAAC,OAAO,CAAC,aAAa,IAAI,EAAE,cAAc,EAAE,OAAO,CAAC,aAAa,EAAE,CAAC,GACpE,CAAC,OAAO,CAAC,mBAAmB,IAAI,EAAE,qBAAqB,EAAE,OAAO,CAAC,mBAAmB,EAAE,CAAC,GACvF,CAAC,OAAO,CAAC,QAAQ,IAAI,EAAE,QAAQ,EAAE,OAAO,CAAC,QAAQ,EAAE,CAAC,EACvD,CAAA;QAEF,OAAO,GAAG,IAAI,CAAC,UAAU,CAAC,MAAM,IAAI,iBAAiB,IAAI,EAAE,EAAE,CAAA;IAC/D,CAAC;IAED;;;;;;;OAOG;IACG,oBAAoB,CACxB,IAAY,EACZ,WAAmB,EACnB,OAA+B;;YAE/B,MAAM,GAAG,GAAG,MAAM,IAAI,CAAC,UAAU,CAAC,YAAY,CAAC,YAAW,CAAC,SAAS,iBAClE,IAAI,EAAE,IAAI,EACV,YAAY,EAAE,WAAW,EACzB,UAAU,EAAE,oBAAS,CAAC,iBAAiB,EACvC,SAAS,EAAE,IAAI,CAAC,UAAU,CAAC,QAAQ,EACnC,aAAa,EAAE,IAAI,CAAC,UAAU,CAAC,YAAY,IACxC,CAAC,CAAA,OAAO,aAAP,OAAO,uBAAP,OAAO,CAAE,YAAY,KAAI,EAAE,aAAa,EAAE,OAAO,CAAC,YAAY,EAAE,CAAC,EACrE,CAAC,CAAA;YACH,MAAM,EAAE,QAAQ,EAAE,YAAY,EAAE,UAAU,EAAE,GAAG,GAAG,CAAC,IAAI,CAAC;YACxD,MAAM,MAAM,GAAG,IAAI,CAAC,SAAS,CAAe,QAAQ,CAAC,CAAC;YACtD,MAAM,IAAI,GAAS,EAAE,CAAC;YACtB,KAAK,MAAM,CAAC,CAAC,EAAE,CAAC,CAAC,IAAI,MAAM,CAAC,OAAO,CAAC,MAAM,CAAC,EAAE,CAAC;gBAC5C,IAAI,4BAAqB,CAAC,CAAC,CAAC,EAAE,CAAC;oBAC7B,IAAI,CAAC,4BAAqB,CAAC,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC;gBACrC,CAAC;YACH,CAAC;YAED,OAAO;gBACL,IAAI;gBACJ,OAAO,EAAE,QAAQ;gBACjB,WAAW,EAAE,YAAY;gBACzB,SAAS,EAAE,UAAU;aACtB,CAAA;QACH,CAAC;KAAA;IAED;;;;;OAKG;IACG,mBAAmB,CAAC,KAAa;;YACrC,MAAM,IAAI,CAAC,UAAU,CAAC,OAAO,EAAE,CAAC;YAChC,MAAM,IAAI,GAAG,IAAI,CAAC,iBAAiB,CAAC;gBAClC,IAAI,EAAE,IAAI,CAAC,UAAU,CAAC,IAAI;aAC3B,CAAC,CAAA;YACF,IAAI,CAAC;gBACH,MAAM,IAAI,CAAC,SAAS,CAAC,KAAK,EAAE,IAAI,CAAC,CAAC;gBAClC,OAAO,IAAI,CAAC;YACd,CAAC;YAAC,OAAO,KAAK,EAAE,CAAC;gBACf,OAAO,KAAK,CAAC;YACf,CAAC;QACH,CAAC;KAAA;CACF;AA7ID,iCA6IC"}
+{"version":3,"file":"scalekit.js","sourceRoot":"","sources":["../src/scalekit.ts"],"names":[],"mappings":";;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;AAAA,oDAA4B;AAC5B,2CAA6B;AAC7B,4CAA6B;AAC7B,wDAAoC;AACpC,8DAA4C;AAC5C,2CAAyD;AACzD,kDAAgC;AAChC,4DAA0C;AAC1C,sDAAoC;AACpC,kEAAgD;AAEhD,+CAAqH;AAErH,MAAM,iBAAiB,GAAG,iBAAiB,CAAC;AAC5C,MAAM,4BAA4B,GAAG,CAAC,GAAG,EAAE,CAAC,CAAC,YAAY;AACzD,MAAM,yBAAyB,GAAG,IAAI,CAAC;AAEvC;;;;;;;;EAQE;AACF,MAAqB,cAAc;IAOjC,YACE,MAAc,EACd,QAAgB,EAChB,YAAoB;QAEpB,IAAI,CAAC,UAAU,GAAG,IAAI,cAAU,CAC9B,MAAM,EACN,QAAQ,EACR,YAAY,CACb,CAAC;QACF,IAAI,CAAC,WAAW,GAAG,IAAI,iBAAW,CAChC,IAAI,CAAC,UAAU,CAChB,CAAC;QAEF,IAAI,CAAC,YAAY,GAAG,IAAI,sBAAkB,CACxC,IAAI,CAAC,WAAW,EAChB,IAAI,CAAC,UAAU,CAChB,CAAC;QACF,IAAI,CAAC,UAAU,GAAG,IAAI,oBAAgB,CACpC,IAAI,CAAC,WAAW,EAChB,IAAI,CAAC,UAAU,CAChB,CAAC;QACF,IAAI,CAAC,MAAM,GAAG,IAAI,gBAAY,CAC5B,IAAI,CAAC,WAAW,EAChB,IAAI,CAAC,UAAU,CAChB,CAAC;QACF,IAAI,CAAC,SAAS,GAAG,IAAI,mBAAe,CAClC,IAAI,CAAC,WAAW,EAChB,IAAI,CAAC,UAAU,CAChB,CAAC;IACJ,CAAC;IAED;;;;;;;;;;;;;;;;;;;OAmBG;IACH,mBAAmB,CACjB,WAAmB,EACnB,OAAiC;;QAEjC,MAAM,cAAc,GAA4B;YAC9C,MAAM,EAAE,CAAC,QAAQ,EAAE,SAAS,EAAE,OAAO,CAAC;SACvC,CAAA;QACD,OAAO,mCACF,cAAc,GACd,OAAO,CACX,CAAA;QACD,MAAM,EAAE,GAAG,YAAW,CAAC,SAAS,+IAC9B,aAAa,EAAE,MAAM,EACrB,SAAS,EAAE,IAAI,CAAC,UAAU,CAAC,QAAQ,EACnC,YAAY,EAAE,WAAW,EACzB,KAAK,EAAE,MAAA,OAAO,CAAC,MAAM,0CAAE,IAAI,CAAC,GAAG,CAAC,IAC7B,CAAC,OAAO,CAAC,KAAK,IAAI,EAAE,KAAK,EAAE,OAAO,CAAC,KAAK,EAAE,CAAC,GAC3C,CAAC,OAAO,CAAC,KAAK,IAAI,EAAE,KAAK,EAAE,OAAO,CAAC,KAAK,EAAE,CAAC,GAC3C,CAAC,OAAO,CAAC,SAAS,IAAI,EAAE,UAAU,EAAE,OAAO,CAAC,SAAS,EAAE,CAAC,GACxD,CAAC,OAAO,CAAC,UAAU,IAAI,EAAE,WAAW,EAAE,OAAO,CAAC,UAAU,EAAE,CAAC,GAC3D,CAAC,OAAO,CAAC,UAAU,IAAI,EAAE,MAAM,EAAE,OAAO,CAAC,UAAU,EAAE,CAAC,GACtD,CAAC,OAAO,CAAC,YAAY,IAAI,EAAE,aAAa,EAAE,OAAO,CAAC,YAAY,EAAE,CAAC,GACjE,CAAC,OAAO,CAAC,cAAc,IAAI,EAAE,eAAe,EAAE,OAAO,CAAC,cAAc,EAAE,CAAC,GACvE,CAAC,OAAO,CAAC,aAAa,IAAI,EAAE,cAAc,EAAE,OAAO,CAAC,aAAa,EAAE,CAAC,GACpE,CAAC,OAAO,CAAC,mBAAmB,IAAI,EAAE,qBAAqB,EAAE,OAAO,CAAC,mBAAmB,EAAE,CAAC,GACvF,CAAC,OAAO,CAAC,QAAQ,IAAI,EAAE,QAAQ,EAAE,OAAO,CAAC,QAAQ,EAAE,CAAC,EACvD,CAAA;QAEF,OAAO,GAAG,IAAI,CAAC,UAAU,CAAC,MAAM,IAAI,iBAAiB,IAAI,EAAE,EAAE,CAAA;IAC/D,CAAC;IAED;;;;;;;OAOG;IACG,oBAAoB,CACxB,IAAY,EACZ,WAAmB,EACnB,OAA+B;;YAE/B,MAAM,GAAG,GAAG,MAAM,IAAI,CAAC,UAAU,CAAC,YAAY,CAAC,YAAW,CAAC,SAAS,iBAClE,IAAI,EAAE,IAAI,EACV,YAAY,EAAE,WAAW,EACzB,UAAU,EAAE,oBAAS,CAAC,iBAAiB,EACvC,SAAS,EAAE,IAAI,CAAC,UAAU,CAAC,QAAQ,EACnC,aAAa,EAAE,IAAI,CAAC,UAAU,CAAC,YAAY,IACxC,CAAC,CAAA,OAAO,aAAP,OAAO,uBAAP,OAAO,CAAE,YAAY,KAAI,EAAE,aAAa,EAAE,OAAO,CAAC,YAAY,EAAE,CAAC,EACrE,CAAC,CAAA;YACH,MAAM,EAAE,QAAQ,EAAE,YAAY,EAAE,UAAU,EAAE,GAAG,GAAG,CAAC,IAAI,CAAC;YACxD,MAAM,MAAM,GAAG,IAAI,CAAC,SAAS,CAAe,QAAQ,CAAC,CAAC;YACtD,MAAM,IAAI,GAAS,EAAE,CAAC;YACtB,KAAK,MAAM,CAAC,CAAC,EAAE,CAAC,CAAC,IAAI,MAAM,CAAC,OAAO,CAAC,MAAM,CAAC,EAAE,CAAC;gBAC5C,IAAI,4BAAqB,CAAC,CAAC,CAAC,EAAE,CAAC;oBAC7B,IAAI,CAAC,4BAAqB,CAAC,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC;gBACrC,CAAC;YACH,CAAC;YAED,OAAO;gBACL,IAAI;gBACJ,OAAO,EAAE,QAAQ;gBACjB,WAAW,EAAE,YAAY;gBACzB,SAAS,EAAE,UAAU;aACtB,CAAA;QACH,CAAC;KAAA;IAED;;;;;MAKE;IACI,0BAA0B,CAAC,sBAA8B;;YAC7D,OAAO,IAAI,CAAC,aAAa,CAA0B,sBAAsB,CAAC,CAAC;QAC7E,CAAC;KAAA;IAED;;;;;OAKG;IACG,mBAAmB,CAAC,KAAa;;YACrC,IAAI,CAAC;gBACH,MAAM,IAAI,CAAC,aAAa,CAAC,KAAK,CAAC,CAAC;gBAChC,OAAO,IAAI,CAAC;YACd,CAAC;YAAC,OAAO,CAAC,EAAE,CAAC;gBACX,OAAO,KAAK,CAAC;YACf,CAAC;QACH,CAAC;KAAA;IAED;;;;;;;OAOG;IACH,oBAAoB,CAAC,MAAc,EAAE,OAA+B,EAAE,OAAe;QACnF,MAAM,SAAS,GAAG,OAAO,CAAC,YAAY,CAAC,CAAC;QACxC,MAAM,gBAAgB,GAAG,OAAO,CAAC,mBAAmB,CAAC,CAAC;QACtD,MAAM,gBAAgB,GAAG,OAAO,CAAC,mBAAmB,CAAC,CAAC;QACtD,IAAI,CAAC,SAAS,IAAI,CAAC,gBAAgB,IAAI,CAAC,gBAAgB,EAAE,CAAC;YACzD,MAAM,IAAI,KAAK,CAAC,0BAA0B,CAAC,CAAC;QAC9C,CAAC;QACD,MAAM,SAAS,GAAG,IAAI,CAAC,eAAe,CAAC,gBAAgB,CAAC,CAAC;QACzD,MAAM,IAAI,GAAG,GAAG,SAAS,IAAI,IAAI,CAAC,KAAK,CAAC,SAAS,CAAC,OAAO,EAAE,GAAG,IAAI,CAAC,IAAI,OAAO,EAAE,CAAC;QACjF,MAAM,WAAW,GAAG,MAAM,CAAC,IAAI,CAAC,MAAM,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,EAAE,QAAQ,CAAC,CAAC;QAChE,MAAM,iBAAiB,GAAG,IAAI,CAAC,gBAAgB,CAAC,WAAW,EAAE,IAAI,CAAC,CAAC;QACnE,MAAM,kBAAkB,GAAG,gBAAgB,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC;QACvD,KAAK,MAAM,kBAAkB,IAAI,kBAAkB,EAAE,CAAC;YACpD,MAAM,CAAC,OAAO,EAAE,SAAS,CAAC,GAAG,kBAAkB,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC;YAC3D,IAAI,OAAO,KAAK,yBAAyB,EAAE,CAAC;gBAC1C,SAAS;YACX,CAAC;YACD,IAAI,gBAAM,CAAC,eAAe,CAAC,MAAM,CAAC,IAAI,CAAC,SAAS,EAAE,QAAQ,CAAC,EAAE,MAAM,CAAC,IAAI,CAAC,iBAAiB,EAAE,QAAQ,CAAC,CAAC,EAAE,CAAC;gBACvG,OAAO,IAAI,CAAC;YACd,CAAC;QACH,CAAC;QAED,MAAM,IAAI,KAAK,CAAC,mBAAmB,CAAC,CAAC;IACvC,CAAC;IAED;;;;;OAKG;IACW,aAAa,CAAI,KAAa;;YAC1C,MAAM,IAAI,CAAC,UAAU,CAAC,OAAO,EAAE,CAAC;YAChC,MAAM,IAAI,GAAG,IAAI,CAAC,iBAAiB,CAAC;gBAClC,IAAI,EAAE,IAAI,CAAC,UAAU,CAAC,IAAI;aAC3B,CAAC,CAAA;YACF,IAAI,CAAC;gBACH,MAAM,EAAE,OAAO,EAAE,GAAG,MAAM,IAAI,CAAC,SAAS,CAAI,KAAK,EAAE,IAAI,CAAC,CAAC;gBACzD,OAAO,OAAO,CAAC;YACjB,CAAC;YAAC,OAAO,CAAC,EAAE,CAAC;gBACX,MAAM,IAAI,KAAK,CAAC,eAAe,CAAC,CAAC;YACnC,CAAC;QACH,CAAC;KAAA;IAED;;;;;OAKG;IACK,eAAe,CAAC,YAAoB;QAC1C,MAAM,GAAG,GAAG,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,GAAG,EAAE,GAAG,IAAI,CAAC,CAAC;QAC1C,MAAM,SAAS,GAAG,QAAQ,CAAC,YAAY,EAAE,EAAE,CAAC,CAAC;QAC7C,IAAI,KAAK,CAAC,SAAS,CAAC,EAAE,CAAC;YACrB,MAAM,IAAI,KAAK,CAAC,mBAAmB,CAAC,CAAC;QACvC,CAAC;QACD,IAAI,GAAG,GAAG,SAAS,GAAG,4BAA4B,EAAE,CAAC;YACnD,MAAM,IAAI,KAAK,CAAC,2BAA2B,CAAC,CAAC;QAC/C,CAAC;QACD,IAAI,SAAS,GAAG,GAAG,GAAG,4BAA4B,EAAE,CAAC;YACnD,MAAM,IAAI,KAAK,CAAC,2BAA2B,CAAC,CAAC;QAC/C,CAAC;QAED,OAAO,IAAI,IAAI,CAAC,SAAS,GAAG,IAAI,CAAC,CAAC;IACpC,CAAC;IAED;;;;;;OAMG;IACK,gBAAgB,CAAC,WAAmB,EAAE,IAAY;QACxD,OAAO,gBAAM,CAAC,UAAU,CAAC,QAAQ,EAAE,WAAW,CAAC,CAAC,MAAM,CAAC,IAAI,CAAC,CAAC,MAAM,CAAC,QAAQ,CAAC,CAAC;IAChF,CAAC;CACF;AA7OD,iCA6OC"}

package/lib/types/auth.d.ts

@@ -59,3 +59,9 @@ export type TokenResponse = {
     id_token: string;
     expires_in: number;
 };
+export type IdpInitiatedLoginClaims = {
+    connection_id: string;
+    organization_id: string;
+    login_hint: string;
+    relay_state?: string;
+};

package/lib/types/organization.d.ts

@@ -0,0 +1,7 @@
+export type OrganizationSettings = {
+    features: Feature[];
+};
+export type Feature = {
+    name: string;
+    enabled: boolean;
+};

package/lib/types/organization.js

@@ -0,0 +1,3 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+//# sourceMappingURL=organization.js.map

package/lib/types/organization.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"organization.js","sourceRoot":"","sources":["../../src/types/organization.ts"],"names":[],"mappings":""}

package/package.json

@@ -1,5 +1,5 @@
 {
-  "version": "1.0.6",
+  "version": "1.0.8",
   "name": "@scalekit-sdk/node",
   "description": "Official Scalekit Node SDK",
   "main": "lib/index.js",

package/src/core.ts

@@ -20,7 +20,7 @@ export default class CoreClient {
   public keys: JWK[] = [];
   public accessToken: string | null = null;
   public axios: Axios;
-  public sdkVersion = `Scalekit-Node/1.0.6`;
+  public sdkVersion = `Scalekit-Node/1.0.8`;
   public apiVersion = "20240430";
   public userAgent = `${this.sdkVersion} Node/${process.version} (${process.platform}; ${os.arch()})`;
   constructor(

package/src/directory.ts

@@ -0,0 +1,173 @@
+import { Timestamp } from '@bufbuild/protobuf';
+import { PromiseClient } from '@connectrpc/connect';
+import GrpcConnect from './connect';
+import CoreClient from './core';
+import { DirectoryService } from './pkg/grpc/scalekit/v1/directories/directories_connect';
+import {
+  GetDirectoryResponse,
+  Directory,
+  ListDirectoriesResponse,
+  ListDirectoryGroupsResponse,
+  ListDirectoryUsersResponse,
+  ToggleDirectoryResponse
+} from './pkg/grpc/scalekit/v1/directories/directories_pb';
+
+export default class DirectoryClient {
+  private client: PromiseClient<typeof DirectoryService>;
+  constructor(
+    private readonly grpcConncet: GrpcConnect,
+    private readonly coreClient: CoreClient
+  ) {
+    this.client = this.grpcConncet.createClient(DirectoryService);
+  }
+
+  /**
+   * List directories for an organization
+   * @param {string} organizationId The organization id
+   * @returns {Promise<ListDirectoriesResponse>} Returns the list of directories
+   */
+  async listDirectories(organizationId: string): Promise<ListDirectoriesResponse> {
+    return this.coreClient.connectExec(
+      this.client.listDirectories,
+      { organizationId }
+    )
+  }
+
+  /**
+   * Get a directory for an organization
+   * @param {string} organizationId The organization id
+   * @param {string} directoryId The directory id
+   * @returns {Promise<GetDirectoryResponse>} Returns the directory
+   */
+  async getDirectory(organizationId: string, directoryId: string): Promise<GetDirectoryResponse> {
+    return this.coreClient.connectExec(
+      this.client.getDirectory,
+      { organizationId, id: directoryId }
+    )
+  }
+
+  /**
+   * Get a directory for an organization
+   * @param {string} organizationId The organization id
+   * @returns {Promise<Directory>} Returns the directory
+   */
+  async getPrimaryDirectoryByOrganizationId(organizationId: string): Promise<Directory> {
+    const directories = await this.listDirectories(organizationId);
+    if (!directories || directories.directories.length === 0) {
+      return Promise.reject('directory does not exist for organization');
+    }
+
+    return directories.directories[0];
+  }
+
+  /**
+   * List users in a directory for an organization
+   * @param {string} organizationId The organization id
+   * @param {string} directoryId The directory id
+   * @param {object} options The options to list directory users
+   * @param {number} options.pageSize The page size
+   * @param {string} options.pageToken The page token
+   * @param {boolean} options.includeDetail Include detail
+   * @param {string} options.directoryGroupId The directory group id
+   * @param {string} options.updatedAfter The updated after
+   * @returns {Promise<ListDirectoryUsersResponse>} Returns the list of directory users
+   */
+  async listDirectoryUsers(
+    organizationId: string,
+    directoryId: string,
+    options?: {
+      pageSize?: number,
+      pageToken?: string,
+      includeDetail?: boolean,
+      directoryGroupId?: string,
+      updatedAfter?: string,
+    }
+  ): Promise<ListDirectoryUsersResponse> {
+    let requestOptions = {};
+    if (options) {
+      requestOptions = {
+        ...options,
+        ...(options.updatedAfter && {
+          updatedAfter: Timestamp.fromDate(new Date(options.updatedAfter))
+        })
+      }
+    }
+
+    return this.coreClient.connectExec(
+      this.client.listDirectoryUsers,
+      {
+        organizationId,
+        directoryId,
+        ...requestOptions,
+      }
+    )
+  }
+
+  /**
+   * List groups in a directory for an organization
+   * @param {string} organizationId The organization id
+   * @param {string} directoryId The directory id
+   * @param {object} options The options to list directory groups
+   * @param {number} options.pageSize The page size
+   * @param {string} options.pageToken The page token
+   * @param {boolean} options.includeDetail Include detail
+   * @param {string} options.updatedAfter The updated after
+   * @returns {Promise<ListDirectoryGroupsResponse>} Returns the list of directory groups
+   */
+  async listDirectoryGroups(
+    organizationId: string,
+    directoryId: string,
+    options?: {
+      pageSize?: number,
+      pageToken?: string,
+      includeDetail?: boolean,
+      updatedAfter?: string,
+    }
+  ): Promise<ListDirectoryGroupsResponse> {
+    let requestOptions = {};
+    if (options) {
+      requestOptions = {
+        ...options,
+        ...(options.updatedAfter && {
+          updatedAfter: Timestamp.fromDate(new Date(options.updatedAfter))
+        })
+      }
+    }
+
+    return this.coreClient.connectExec(
+      this.client.listDirectoryGroups,
+      {
+        organizationId,
+        directoryId,
+        ...requestOptions,
+      }
+    )
+  }
+
+  /**
+   * Enable a directory for an organization
+   * @param {string} organizationId The organization id
+   * @param {string} directoryId The directory id
+   * @returns {Promise<ToggleDirectoryResponse>} Returns the directory enable response
+   */
+  async enableDirectory(organizationId: string, directoryId: string): Promise<ToggleDirectoryResponse> {
+    return this.coreClient.connectExec(
+      this.client.enableDirectory,
+      { organizationId, id: directoryId }
+    )
+  }
+
+  /**
+   * Disable a directory for an organization
+   * @param {string} organizationId The organization id
+   * @param {string} directoryId The directory id
+   * @returns {Promise<ToggleDirectoryResponse>} Returns the directory disable response
+   */
+  async disableDirectory(organizationId: string, directoryId: string): Promise<ToggleDirectoryResponse> {
+    return this.coreClient.connectExec(
+      this.client.disableDirectory,
+      { organizationId, id: directoryId }
+    )
+  }
+}
+

package/src/index.ts

@@ -1,6 +1,7 @@
 import ScalekitClient from "./scalekit";
 
 export { ScalekitClient };
+export { ScalekitClient as Scalekit };
 export default ScalekitClient;
 
 export * from "./types/scalekit";

package/src/organization.ts

@@ -4,7 +4,7 @@ import GrpcConnect from './connect';
 import CoreClient from './core';
 import { OrganizationService } from './pkg/grpc/scalekit/v1/organizations/organizations_connect';
 import { CreateOrganizationResponse, GetOrganizationResponse, Link, ListOrganizationsResponse, UpdateOrganization, UpdateOrganizationResponse } from './pkg/grpc/scalekit/v1/organizations/organizations_pb';
-
+import { OrganizationSettings } from './types/organization';
 export default class OrganizationClient {
   private client: PromiseClient<typeof OrganizationService>;
   constructor(
@@ -172,5 +172,28 @@ export default class OrganizationClient {
       },
     )
   }
+
+  /**
+   * Update organization settings for an organization
+   * @param organizationId  The organization id
+   * @param settings The organization settings
+   * @returns {Promise<GetOrganizationResponse>} The updated organization
+   */
+  async updateOrganizationSettings(organizationId: string, settings: OrganizationSettings): Promise<GetOrganizationResponse> {
+    const request = {
+      id: organizationId,
+      settings: {
+        features: settings.features.map(feature => ({
+          name: feature.name,
+          enabled: feature.enabled
+        }))
+      }
+    }
+    
+    return this.coreClient.connectExec(
+      this.client.updateOrganizationSettings,
+      request,
+    )
+  }
 }
 

package/src/pkg/grpc/scalekit/v1/directories/directories_connect.ts

@@ -0,0 +1,125 @@
+// @generated by protoc-gen-connect-es v1.4.0 with parameter "target=ts"
+// @generated from file scalekit/v1/directories/directories.proto (package scalekit.v1.directories, syntax proto3)
+/* eslint-disable */
+// @ts-nocheck
+
+import { AssignRolesRequest, AssignRolesResponse, CreateDirectoryRequest, CreateDirectoryResponse, CreateDirectorySecretRequest, CreateDirectorySecretResponse, GetDirectoryRequest, GetDirectoryResponse, ListDirectoriesRequest, ListDirectoriesResponse, ListDirectoryGroupsRequest, ListDirectoryGroupsResponse, ListDirectoryUsersRequest, ListDirectoryUsersResponse, RegenerateDirectorySecretRequest, RegenerateDirectorySecretResponse, ToggleDirectoryRequest, ToggleDirectoryResponse, UpdateAttributesRequest, UpdateAttributesResponse, UpdateDirectoryRequest, UpdateDirectoryResponse } from "./directories_pb.js";
+import { MethodKind } from "@bufbuild/protobuf";
+
+/**
+ * @generated from service scalekit.v1.directories.DirectoryService
+ */
+export const DirectoryService = {
+  typeName: "scalekit.v1.directories.DirectoryService",
+  methods: {
+    /**
+     * @generated from rpc scalekit.v1.directories.DirectoryService.CreateDirectory
+     */
+    createDirectory: {
+      name: "CreateDirectory",
+      I: CreateDirectoryRequest,
+      O: CreateDirectoryResponse,
+      kind: MethodKind.Unary,
+    },
+    /**
+     * @generated from rpc scalekit.v1.directories.DirectoryService.UpdateDirectory
+     */
+    updateDirectory: {
+      name: "UpdateDirectory",
+      I: UpdateDirectoryRequest,
+      O: UpdateDirectoryResponse,
+      kind: MethodKind.Unary,
+    },
+    /**
+     * @generated from rpc scalekit.v1.directories.DirectoryService.AssignRoles
+     */
+    assignRoles: {
+      name: "AssignRoles",
+      I: AssignRolesRequest,
+      O: AssignRolesResponse,
+      kind: MethodKind.Unary,
+    },
+    /**
+     * @generated from rpc scalekit.v1.directories.DirectoryService.UpdateAttributes
+     */
+    updateAttributes: {
+      name: "UpdateAttributes",
+      I: UpdateAttributesRequest,
+      O: UpdateAttributesResponse,
+      kind: MethodKind.Unary,
+    },
+    /**
+     * @generated from rpc scalekit.v1.directories.DirectoryService.GetDirectory
+     */
+    getDirectory: {
+      name: "GetDirectory",
+      I: GetDirectoryRequest,
+      O: GetDirectoryResponse,
+      kind: MethodKind.Unary,
+    },
+    /**
+     * @generated from rpc scalekit.v1.directories.DirectoryService.ListDirectories
+     */
+    listDirectories: {
+      name: "ListDirectories",
+      I: ListDirectoriesRequest,
+      O: ListDirectoriesResponse,
+      kind: MethodKind.Unary,
+    },
+    /**
+     * @generated from rpc scalekit.v1.directories.DirectoryService.EnableDirectory
+     */
+    enableDirectory: {
+      name: "EnableDirectory",
+      I: ToggleDirectoryRequest,
+      O: ToggleDirectoryResponse,
+      kind: MethodKind.Unary,
+    },
+    /**
+     * @generated from rpc scalekit.v1.directories.DirectoryService.DisableDirectory
+     */
+    disableDirectory: {
+      name: "DisableDirectory",
+      I: ToggleDirectoryRequest,
+      O: ToggleDirectoryResponse,
+      kind: MethodKind.Unary,
+    },
+    /**
+     * @generated from rpc scalekit.v1.directories.DirectoryService.ListDirectoryUsers
+     */
+    listDirectoryUsers: {
+      name: "ListDirectoryUsers",
+      I: ListDirectoryUsersRequest,
+      O: ListDirectoryUsersResponse,
+      kind: MethodKind.Unary,
+    },
+    /**
+     * @generated from rpc scalekit.v1.directories.DirectoryService.ListDirectoryGroups
+     */
+    listDirectoryGroups: {
+      name: "ListDirectoryGroups",
+      I: ListDirectoryGroupsRequest,
+      O: ListDirectoryGroupsResponse,
+      kind: MethodKind.Unary,
+    },
+    /**
+     * @generated from rpc scalekit.v1.directories.DirectoryService.CreateDirectorySecret
+     */
+    createDirectorySecret: {
+      name: "CreateDirectorySecret",
+      I: CreateDirectorySecretRequest,
+      O: CreateDirectorySecretResponse,
+      kind: MethodKind.Unary,
+    },
+    /**
+     * @generated from rpc scalekit.v1.directories.DirectoryService.RegenerateDirectorySecret
+     */
+    regenerateDirectorySecret: {
+      name: "RegenerateDirectorySecret",
+      I: RegenerateDirectorySecretRequest,
+      O: RegenerateDirectorySecretResponse,
+      kind: MethodKind.Unary,
+    },
+  }
+} as const;
+