@sitecore-content-sdk/cli 0.2.0-beta.13 → 0.2.0-beta.15

package/dist/cjs/utils/auth/tenant-store.js

@@ -1,212 +0,0 @@
-"use strict";
-var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
-    if (k2 === undefined) k2 = k;
-    var desc = Object.getOwnPropertyDescriptor(m, k);
-    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
-      desc = { enumerable: true, get: function() { return m[k]; } };
-    }
-    Object.defineProperty(o, k2, desc);
-}) : (function(o, m, k, k2) {
-    if (k2 === undefined) k2 = k;
-    o[k2] = m[k];
-}));
-var __setModuleDefault = (this && this.__setModuleDefault) || (Object.create ? (function(o, v) {
-    Object.defineProperty(o, "default", { enumerable: true, value: v });
-}) : function(o, v) {
-    o["default"] = v;
-});
-var __importStar = (this && this.__importStar) || (function () {
-    var ownKeys = function(o) {
-        ownKeys = Object.getOwnPropertyNames || function (o) {
-            var ar = [];
-            for (var k in o) if (Object.prototype.hasOwnProperty.call(o, k)) ar[ar.length] = k;
-            return ar;
-        };
-        return ownKeys(o);
-    };
-    return function (mod) {
-        if (mod && mod.__esModule) return mod;
-        var result = {};
-        if (mod != null) for (var k = ownKeys(mod), i = 0; i < k.length; i++) if (k[i] !== "default") __createBinding(result, mod, k[i]);
-        __setModuleDefault(result, mod);
-        return result;
-    };
-})();
-var __awaiter = (this && this.__awaiter) || function (thisArg, _arguments, P, generator) {
-    function adopt(value) { return value instanceof P ? value : new P(function (resolve) { resolve(value); }); }
-    return new (P || (P = Promise))(function (resolve, reject) {
-        function fulfilled(value) { try { step(generator.next(value)); } catch (e) { reject(e); } }
-        function rejected(value) { try { step(generator["throw"](value)); } catch (e) { reject(e); } }
-        function step(result) { result.done ? resolve(result.value) : adopt(result.value).then(fulfilled, rejected); }
-        step((generator = generator.apply(thisArg, _arguments || [])).next());
-    });
-};
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.writeTenantAuthInfo = writeTenantAuthInfo;
-exports.readTenantAuthInfo = readTenantAuthInfo;
-exports.writeTenantInfo = writeTenantInfo;
-exports.readTenantInfo = readTenantInfo;
-exports.deleteTenantAuthInfo = deleteTenantAuthInfo;
-exports.getAllTenantsInfo = getAllTenantsInfo;
-exports.decodeJwtPayload = decodeJwtPayload;
-const fs = __importStar(require("fs"));
-const path = __importStar(require("path"));
-const os = __importStar(require("os"));
-const CLAIMS = 'https://auth.sitecorecloud.io/claims';
-const rootDir = path.join(os.homedir(), '.sitecore', 'sitecore-tools');
-/**
- * Get the full path to the tenant-specific folder.
- * @param {string} tenantId - The tenant ID.
- * @returns The absolute path to the tenant directory.
- */
-function getTenantPath(tenantId) {
-    return path.join(rootDir, tenantId);
-}
-/**
- * Write the authentication configuration for a tenant.
- * @param {string} tenantId - The tenant ID.
- * @param {TenantAuth} authInfo - The tenant's auth data.
- */
-function writeTenantAuthInfo(tenantId, authInfo) {
-    return __awaiter(this, void 0, void 0, function* () {
-        try {
-            const dir = getTenantPath(tenantId);
-            fs.mkdirSync(dir, { recursive: true });
-            fs.writeFileSync(path.join(dir, 'auth.json'), JSON.stringify(authInfo, null, 2));
-        }
-        catch (error) {
-            console.error(`\n Failed to write auth.json for tenant '${tenantId}': ${error.message}`);
-        }
-    });
-}
-/**
- * Read the authentication configuration for a tenant.
- * @param {string} tenantId - The tenant ID.
- * @returns Parsed auth config or null if not found or failed to read.
- */
-function readTenantAuthInfo(tenantId) {
-    return __awaiter(this, void 0, void 0, function* () {
-        const filePath = path.join(getTenantPath(tenantId), 'auth.json');
-        if (!fs.existsSync(filePath))
-            return null;
-        try {
-            const raw = fs.readFileSync(filePath, 'utf-8');
-            return JSON.parse(raw);
-        }
-        catch (error) {
-            console.error(`\n Failed to read auth.json for tenant '${tenantId}': ${error.message}`);
-            return null;
-        }
-    });
-}
-/**
- * Write the public metadata information for a tenant.
- * @param {TenantInfo} info - The tenant info object.
- */
-function writeTenantInfo(info) {
-    return __awaiter(this, void 0, void 0, function* () {
-        try {
-            const dir = getTenantPath(info.tenantId);
-            fs.mkdirSync(dir, { recursive: true });
-            fs.writeFileSync(path.join(dir, 'info.json'), JSON.stringify(info, null, 2));
-        }
-        catch (error) {
-            console.error(`\n Failed to write info.json for tenant '${info.tenantId}': ${error.message}`);
-        }
-    });
-}
-/**
- * Read the public metadata information for a tenant.
- * @param {string} tenantId - The tenant ID.
- * @returns Parsed tenant info or null if not found or failed to read.
- */
-function readTenantInfo(tenantId) {
-    return __awaiter(this, void 0, void 0, function* () {
-        const infoFilePath = path.join(getTenantPath(tenantId), 'info.json');
-        if (!fs.existsSync(infoFilePath)) {
-            return null;
-        }
-        try {
-            const content = fs.readFileSync(infoFilePath, 'utf-8');
-            return JSON.parse(content);
-        }
-        catch (error) {
-            console.error(`\n Failed to read info.json for tenant '${tenantId}': ${error.message}`);
-            return null;
-        }
-    });
-}
-/**
- * Deletes the stored auth.json file for the given tenant.
- * @param {string} tenantId - The tenant ID.
- */
-function deleteTenantAuthInfo(tenantId) {
-    return __awaiter(this, void 0, void 0, function* () {
-        const filePath = path.join(getTenantPath(tenantId), 'auth.json');
-        try {
-            if (fs.existsSync(filePath)) {
-                fs.unlinkSync(filePath);
-            }
-        }
-        catch (error) {
-            console.error(`\n Failed to delete auth.json for tenant '${tenantId}': ${error.message}`);
-        }
-    });
-}
-/**
- * Scans the CLI root directory and returns all valid tenant infos.
- * @returns A list of TenantInfo objects found in {tenant-id}/info.json files.
- */
-function getAllTenantsInfo() {
-    if (!fs.existsSync(rootDir))
-        return [];
-    const subDirs = fs
-        .readdirSync(rootDir)
-        .filter((entry) => fs.statSync(path.join(rootDir, entry)).isDirectory());
-    const tenants = [];
-    for (const dir of subDirs) {
-        const infoPath = path.join(rootDir, dir, 'info.json');
-        if (fs.existsSync(infoPath)) {
-            try {
-                const content = fs.readFileSync(infoPath, 'utf-8');
-                const data = JSON.parse(content);
-                if (data.tenantId && data.tenantName && data.organizationId && data.clientId) {
-                    tenants.push({
-                        tenantId: data.tenantId,
-                        tenantName: data.tenantName,
-                        organizationId: data.organizationId,
-                        clientId: data.clientId,
-                        authority: data.authority,
-                        audience: data.audience,
-                        baseUrl: data.baseUrl,
-                    });
-                }
-            }
-            catch (error) {
-                console.error('\n Failed to read tenant info file', error.message);
-            }
-        }
-    }
-    return tenants;
-}
-/**
- * Decodes a JWT without verifying its signature.
- * @param {string} token - The access token string.
- * @returns Decoded payload object or null if invalid.
- */
-function decodeJwtPayload(token) {
-    try {
-        const base64Payload = token.split('.')[1];
-        const payload = Buffer.from(base64Payload, 'base64').toString('utf-8');
-        const decoded = JSON.parse(payload);
-        return {
-            tokenTenantId: decoded === null || decoded === void 0 ? void 0 : decoded[`${CLAIMS}/tenant_id`],
-            tokenOrgId: decoded === null || decoded === void 0 ? void 0 : decoded[`${CLAIMS}/org_id`],
-            tokenTenantName: decoded === null || decoded === void 0 ? void 0 : decoded[`${CLAIMS}/tenant_name`],
-        };
-    }
-    catch (error) {
-        console.error('\n Failed to decode access token:', error.message);
-        return null;
-    }
-}

package/dist/esm/scripts/auth/models.js

@@ -1 +0,0 @@
-export {};

package/dist/esm/utils/auth/flow.js

@@ -1,68 +0,0 @@
-var __awaiter = (this && this.__awaiter) || function (thisArg, _arguments, P, generator) {
-    function adopt(value) { return value instanceof P ? value : new P(function (resolve) { resolve(value); }); }
-    return new (P || (P = Promise))(function (resolve, reject) {
-        function fulfilled(value) { try { step(generator.next(value)); } catch (e) { reject(e); } }
-        function rejected(value) { try { step(generator["throw"](value)); } catch (e) { reject(e); } }
-        function step(result) { result.done ? resolve(result.value) : adopt(result.value).then(fulfilled, rejected); }
-        step((generator = generator.apply(thisArg, _arguments || [])).next());
-    });
-};
-import { decodeJwtPayload } from './tenant-store';
-export const AUTH0_DOMAIN = 'https://auth.sitecorecloud.io';
-export const AUDIENCE = 'https://api.sitecorecloud.io';
-export const BASE_URL = 'https://edge-platform.sitecorecloud.io/cs/api';
-const GRANT_TYPE = 'client_credentials';
-/**
- * Performs the OAuth 2.0 client credentials flow to obtain a JWT access token
- * from the Sitecore Identity Provider using the provided client credentials.
- * @param {object} [args] - The arguments for client credentials flow
- * @param {string} [args.clientId] - The client ID registered with Sitecore Identity
- * @param {string} [args.clientSecret] - The client secret associated with the client ID
- * @param {string} [args.organizationId] - The ID of the organization the client belongs to
- * @param {string} [args.tenantId] - The tenant ID representing the specific Sitecore environment
- * @param {string} [args.audience] - The API audience the token is intended for. Defaults to `AUDIENCE`
- * @param {string} [args.authority] - The auth server base URL. Defaults to `AUTH0_DOMAIN`
- * @param {string} [args.baseUrl] - The base URL for the API, used to construct the audience
- * @returns A Promise that resolves to the access token response (including access token, token type, expiry, etc.)
- * @throws Will log and exit the process if the request fails or returns a non-OK status
- */
-export function clientCredentialsFlow(_a) {
-    return __awaiter(this, arguments, void 0, function* ({ clientId, clientSecret, organizationId, tenantId, audience = AUDIENCE, authority = AUTH0_DOMAIN, baseUrl = BASE_URL, }) {
-        const params = new URLSearchParams({
-            client_id: clientId,
-            client_secret: clientSecret !== null && clientSecret !== void 0 ? clientSecret : '',
-            organization_id: organizationId !== null && organizationId !== void 0 ? organizationId : '',
-            tenant_id: tenantId !== null && tenantId !== void 0 ? tenantId : '',
-            audience,
-            grant_type: GRANT_TYPE,
-            baseUrl: baseUrl !== null && baseUrl !== void 0 ? baseUrl : '',
-        });
-        try {
-            const response = yield fetch(`${authority}/oauth/token`, {
-                method: 'POST',
-                headers: { 'Content-Type': 'application/x-www-form-urlencoded' },
-                body: params.toString(),
-            });
-            const data = yield response.json();
-            if (!response.ok) {
-                throw new Error(data.error_description || data.error || 'Error during client credentials flow');
-            }
-            const decodedPayload = decodeJwtPayload(data.access_token) || {};
-            if (!(decodedPayload === null || decodedPayload === void 0 ? void 0 : decodedPayload.tokenTenantId) || !decodedPayload.tokenOrgId) {
-                throw new Error('\n Token is missing required claims tenant_id or org_id.');
-            }
-            const { tokenTenantId, tokenOrgId, tokenTenantName } = decodedPayload;
-            if (tenantId && tenantId !== tokenTenantId) {
-                throw new Error('\n Mismatch: Provided tenant ID does not match claims tenant ID.');
-            }
-            if (organizationId && organizationId !== tokenOrgId) {
-                throw new Error('\n Mismatch: Provided organization ID does not match claims organization ID.');
-            }
-            return { data, tokenOrgId, tokenTenantId, tokenTenantName };
-        }
-        catch (error) {
-            console.error('\n Error during client credentials flow:', error instanceof Error ? error.message : error);
-            throw error;
-        }
-    });
-}

package/dist/esm/utils/auth/renewal.js

@@ -1,90 +0,0 @@
-var __awaiter = (this && this.__awaiter) || function (thisArg, _arguments, P, generator) {
-    function adopt(value) { return value instanceof P ? value : new P(function (resolve) { resolve(value); }); }
-    return new (P || (P = Promise))(function (resolve, reject) {
-        function fulfilled(value) { try { step(generator.next(value)); } catch (e) { reject(e); } }
-        function rejected(value) { try { step(generator["throw"](value)); } catch (e) { reject(e); } }
-        function step(result) { result.done ? resolve(result.value) : adopt(result.value).then(fulfilled, rejected); }
-        step((generator = generator.apply(thisArg, _arguments || [])).next());
-    });
-};
-import { getActiveTenant, clearActiveTenant } from './tenant-state';
-import { clientCredentialsFlow } from './flow';
-import { writeTenantAuthInfo, readTenantAuthInfo, deleteTenantAuthInfo, readTenantInfo, } from './tenant-store';
-/**
- * Validates whether a given auth config is still valid (i.e., not expired).
- * @param {TenantAuth} authInfo - The tenant auth configuration.
- * @returns True if the token is still valid, false if expired.
- */
-export function validateAuthInfo(authInfo) {
-    const now = new Date();
-    const expiry = new Date(authInfo.expires_at);
-    return now < expiry;
-}
-/**
- * Renews the token for a given tenant using stored credentials.
- * @param {TenantAuth} authInfo - Current authentication info for the tenant.
- * @param {TenantInfo} tenantInfo - Public metadata about the tenant (e.g., clientId).
- * @returns Promise<void>
- * @throws If credentials are missing or renewal fails.
- */
-export function renewClientToken(authInfo, tenantInfo) {
-    return __awaiter(this, void 0, void 0, function* () {
-        const result = yield clientCredentialsFlow({
-            clientId: tenantInfo.clientId,
-            clientSecret: authInfo.clientSecret,
-            organizationId: tenantInfo.organizationId,
-            tenantId: tenantInfo.tenantId,
-            audience: tenantInfo.audience,
-            authority: tenantInfo.authority,
-            baseUrl: tenantInfo.baseUrl,
-        });
-        const tenantId = tenantInfo.tenantId;
-        yield writeTenantAuthInfo(tenantId, {
-            clientSecret: authInfo.clientSecret,
-            access_token: result.data.access_token,
-            expires_in: result.data.expires_in,
-            expires_at: new Date(Date.now() + result.data.expires_in * 1000).toISOString(),
-        });
-        console.info(`\n Token for tenant ${tenantId} renewed.`);
-    });
-}
-/**
- * Ensures a valid token exists, renews it if expired.
- * Returns tenant context if successful, otherwise null.
- */
-export function renewAuthIfExpired() {
-    return __awaiter(this, void 0, void 0, function* () {
-        const tenantId = getActiveTenant();
-        if (!tenantId)
-            return null;
-        const authInfo = yield readTenantAuthInfo(tenantId);
-        if (!authInfo)
-            return null;
-        const isValid = validateAuthInfo(authInfo);
-        if (isValid) {
-            return { tenantId };
-        }
-        const tenantInfo = yield readTenantInfo(tenantId);
-        if (!tenantInfo)
-            return null;
-        console.info(`\n Token for tenant ${tenantId} is expired. Renewing...`);
-        try {
-            if (authInfo.clientSecret) {
-                yield renewClientToken(authInfo, tenantInfo);
-            }
-            else {
-                // <TODO>: Implement Device auth token renewal.
-                throw new Error('\n Please use clientSecret for authentication.');
-            }
-            return { tenantId };
-        }
-        catch (err) {
-            console.error(`\n Failed to renew token for tenant '${tenantId}'`);
-            console.warn(`\n Cleaning up stale authentication data for tenant '${tenantId}'...`);
-            yield deleteTenantAuthInfo(tenantId);
-            clearActiveTenant();
-            console.info('\n You will need to login again to re-authenticate.');
-            process.exit(1);
-        }
-    });
-}

package/dist/esm/utils/auth/tenant-state.js

@@ -1,53 +0,0 @@
-import * as fs from 'fs';
-import * as path from 'path';
-import * as os from 'os';
-const configDir = path.join(os.homedir(), '.sitecore', 'sitecore-tools');
-const settingsFile = path.join(configDir, 'settings.json');
-/**
- * Gets the ID of the currently active tenant from settings.json.
- * @returns The active tenant ID if present, otherwise null.
- */
-export function getActiveTenant() {
-    var _a;
-    if (!fs.existsSync(settingsFile)) {
-        return null;
-    }
-    try {
-        const content = fs.readFileSync(settingsFile, 'utf-8');
-        const data = JSON.parse(content);
-        return (_a = data.activeTenant) !== null && _a !== void 0 ? _a : null;
-    }
-    catch (error) {
-        console.error(`\n Failed to read active tenant: ${error.message}`);
-        return null;
-    }
-}
-/**
- * Sets the currently active tenant by writing to settings.json.
- * @param {string} tenantId - The tenant ID to set as active.
- */
-export function setActiveTenant(tenantId) {
-    try {
-        if (!fs.existsSync(configDir)) {
-            fs.mkdirSync(configDir, { recursive: true });
-        }
-        const data = { activeTenant: tenantId };
-        fs.writeFileSync(settingsFile, JSON.stringify(data, null, 2));
-    }
-    catch (error) {
-        console.error(`\n Failed to set active tenant '${tenantId}': ${error.message}`);
-    }
-}
-/**
- * Clears the currently active tenant from settings.json by deleting the file.
- */
-export function clearActiveTenant() {
-    try {
-        if (fs.existsSync(settingsFile)) {
-            fs.unlinkSync(settingsFile);
-        }
-    }
-    catch (error) {
-        console.error(`\n Failed to clear active tenant: ${error.message}`);
-    }
-}

package/dist/esm/utils/auth/tenant-store.js

@@ -1,170 +0,0 @@
-var __awaiter = (this && this.__awaiter) || function (thisArg, _arguments, P, generator) {
-    function adopt(value) { return value instanceof P ? value : new P(function (resolve) { resolve(value); }); }
-    return new (P || (P = Promise))(function (resolve, reject) {
-        function fulfilled(value) { try { step(generator.next(value)); } catch (e) { reject(e); } }
-        function rejected(value) { try { step(generator["throw"](value)); } catch (e) { reject(e); } }
-        function step(result) { result.done ? resolve(result.value) : adopt(result.value).then(fulfilled, rejected); }
-        step((generator = generator.apply(thisArg, _arguments || [])).next());
-    });
-};
-import * as fs from 'fs';
-import * as path from 'path';
-import * as os from 'os';
-const CLAIMS = 'https://auth.sitecorecloud.io/claims';
-const rootDir = path.join(os.homedir(), '.sitecore', 'sitecore-tools');
-/**
- * Get the full path to the tenant-specific folder.
- * @param {string} tenantId - The tenant ID.
- * @returns The absolute path to the tenant directory.
- */
-function getTenantPath(tenantId) {
-    return path.join(rootDir, tenantId);
-}
-/**
- * Write the authentication configuration for a tenant.
- * @param {string} tenantId - The tenant ID.
- * @param {TenantAuth} authInfo - The tenant's auth data.
- */
-export function writeTenantAuthInfo(tenantId, authInfo) {
-    return __awaiter(this, void 0, void 0, function* () {
-        try {
-            const dir = getTenantPath(tenantId);
-            fs.mkdirSync(dir, { recursive: true });
-            fs.writeFileSync(path.join(dir, 'auth.json'), JSON.stringify(authInfo, null, 2));
-        }
-        catch (error) {
-            console.error(`\n Failed to write auth.json for tenant '${tenantId}': ${error.message}`);
-        }
-    });
-}
-/**
- * Read the authentication configuration for a tenant.
- * @param {string} tenantId - The tenant ID.
- * @returns Parsed auth config or null if not found or failed to read.
- */
-export function readTenantAuthInfo(tenantId) {
-    return __awaiter(this, void 0, void 0, function* () {
-        const filePath = path.join(getTenantPath(tenantId), 'auth.json');
-        if (!fs.existsSync(filePath))
-            return null;
-        try {
-            const raw = fs.readFileSync(filePath, 'utf-8');
-            return JSON.parse(raw);
-        }
-        catch (error) {
-            console.error(`\n Failed to read auth.json for tenant '${tenantId}': ${error.message}`);
-            return null;
-        }
-    });
-}
-/**
- * Write the public metadata information for a tenant.
- * @param {TenantInfo} info - The tenant info object.
- */
-export function writeTenantInfo(info) {
-    return __awaiter(this, void 0, void 0, function* () {
-        try {
-            const dir = getTenantPath(info.tenantId);
-            fs.mkdirSync(dir, { recursive: true });
-            fs.writeFileSync(path.join(dir, 'info.json'), JSON.stringify(info, null, 2));
-        }
-        catch (error) {
-            console.error(`\n Failed to write info.json for tenant '${info.tenantId}': ${error.message}`);
-        }
-    });
-}
-/**
- * Read the public metadata information for a tenant.
- * @param {string} tenantId - The tenant ID.
- * @returns Parsed tenant info or null if not found or failed to read.
- */
-export function readTenantInfo(tenantId) {
-    return __awaiter(this, void 0, void 0, function* () {
-        const infoFilePath = path.join(getTenantPath(tenantId), 'info.json');
-        if (!fs.existsSync(infoFilePath)) {
-            return null;
-        }
-        try {
-            const content = fs.readFileSync(infoFilePath, 'utf-8');
-            return JSON.parse(content);
-        }
-        catch (error) {
-            console.error(`\n Failed to read info.json for tenant '${tenantId}': ${error.message}`);
-            return null;
-        }
-    });
-}
-/**
- * Deletes the stored auth.json file for the given tenant.
- * @param {string} tenantId - The tenant ID.
- */
-export function deleteTenantAuthInfo(tenantId) {
-    return __awaiter(this, void 0, void 0, function* () {
-        const filePath = path.join(getTenantPath(tenantId), 'auth.json');
-        try {
-            if (fs.existsSync(filePath)) {
-                fs.unlinkSync(filePath);
-            }
-        }
-        catch (error) {
-            console.error(`\n Failed to delete auth.json for tenant '${tenantId}': ${error.message}`);
-        }
-    });
-}
-/**
- * Scans the CLI root directory and returns all valid tenant infos.
- * @returns A list of TenantInfo objects found in {tenant-id}/info.json files.
- */
-export function getAllTenantsInfo() {
-    if (!fs.existsSync(rootDir))
-        return [];
-    const subDirs = fs
-        .readdirSync(rootDir)
-        .filter((entry) => fs.statSync(path.join(rootDir, entry)).isDirectory());
-    const tenants = [];
-    for (const dir of subDirs) {
-        const infoPath = path.join(rootDir, dir, 'info.json');
-        if (fs.existsSync(infoPath)) {
-            try {
-                const content = fs.readFileSync(infoPath, 'utf-8');
-                const data = JSON.parse(content);
-                if (data.tenantId && data.tenantName && data.organizationId && data.clientId) {
-                    tenants.push({
-                        tenantId: data.tenantId,
-                        tenantName: data.tenantName,
-                        organizationId: data.organizationId,
-                        clientId: data.clientId,
-                        authority: data.authority,
-                        audience: data.audience,
-                        baseUrl: data.baseUrl,
-                    });
-                }
-            }
-            catch (error) {
-                console.error('\n Failed to read tenant info file', error.message);
-            }
-        }
-    }
-    return tenants;
-}
-/**
- * Decodes a JWT without verifying its signature.
- * @param {string} token - The access token string.
- * @returns Decoded payload object or null if invalid.
- */
-export function decodeJwtPayload(token) {
-    try {
-        const base64Payload = token.split('.')[1];
-        const payload = Buffer.from(base64Payload, 'base64').toString('utf-8');
-        const decoded = JSON.parse(payload);
-        return {
-            tokenTenantId: decoded === null || decoded === void 0 ? void 0 : decoded[`${CLAIMS}/tenant_id`],
-            tokenOrgId: decoded === null || decoded === void 0 ? void 0 : decoded[`${CLAIMS}/org_id`],
-            tokenTenantName: decoded === null || decoded === void 0 ? void 0 : decoded[`${CLAIMS}/tenant_name`],
-        };
-    }
-    catch (error) {
-        console.error('\n Failed to decode access token:', error.message);
-        return null;
-    }
-}

package/types/scripts/auth/models.d.ts

@@ -1,94 +0,0 @@
-/**
- * CLI arguments used for authentication and tenant identification.
- */
-export interface TenantArgs {
-    /**
-     * OAuth2 client ID used to identify the application
-     */
-    clientId: string;
-    /**
-     * Client secret used for client credentials flow
-     */
-    clientSecret?: string;
-    /**
-     * Organization ID associated with the tenant
-     */
-    organizationId?: string;
-    /**
-     * Tenant ID used for scoping the login
-     */
-    tenantId?: string;
-    /**
-     * OAuth2 audience (e.g., API base URL the token is intended for)
-     */
-    audience?: string;
-    /**
-     * Auth authority/issuer URL (e.g., Sitecore identity endpoint)
-     */
-    authority?: string;
-    /**
-     * Base URL for the target Sitecore Content Management API
-     */
-    baseUrl?: string;
-}
-export interface TenantSettings {
-    /**
-     * Currently active tenant ID tracked by the CLI
-     */
-    activeTenant?: string;
-}
-/**
- * Auth configuration stored per tenant for accessing Sitecore APIs.
- */
-export interface TenantAuth {
-    /**
-     * Access token issued by the identity provider
-     */
-    access_token: string;
-    /**
-     * Token expiration duration in seconds
-     */
-    expires_in: number;
-    /**
-     * Exact ISO timestamp when the token expires
-     */
-    expires_at: string;
-    /**
-     * Secret used for client credentials flow and re-authenticate
-     */
-    clientSecret?: string;
-    refresh_token?: string;
-}
-/**
- * Public metadata for a known tenant.
- */
-export interface TenantInfo {
-    /**
-     * Unique ID of the tenant
-     */
-    tenantId: string;
-    /**
-     *  Human-readable name of the tenant
-     */
-    tenantName: string;
-    /**
-     * Organization ID the tenant belongs to
-     */
-    organizationId: string;
-    /**
-     * Client ID associated with this tenant's authentication
-     */
-    clientId: string;
-    /**
-     * OAuth2 audience (e.g., API base URL the token is intended for)
-     */
-    audience: string;
-    /**
-     * Auth authority/issuer URL (e.g., Sitecore identity endpoint)
-     */
-    authority: string;
-    /**
-     * Base URL for the target Sitecore Content Management API
-     */
-    baseUrl: string;
-}