@sitecore-content-sdk/core 0.2.0-beta.13 → 0.2.0-beta.14

package/dist/esm/tools/auth/index.js

@@ -0,0 +1,4 @@
+export { clientCredentialsFlow } from './flow';
+export { renewClientToken, renewAuthIfExpired, validateAuthInfo } from './renewal';
+export { getActiveTenant, setActiveTenant, clearActiveTenant } from './tenant-state';
+export { writeTenantAuthInfo, readTenantAuthInfo, deleteTenantAuthInfo, readTenantInfo, getAllTenantsInfo, writeTenantInfo, } from './tenant-store';

package/dist/esm/tools/auth/models.js

@@ -0,0 +1 @@
+export {};

package/dist/esm/tools/auth/renewal.js

@@ -0,0 +1,77 @@
+import { getActiveTenant, clearActiveTenant } from './tenant-state';
+import { clientCredentialsFlow } from './flow';
+import { writeTenantAuthInfo, readTenantAuthInfo, deleteTenantAuthInfo, readTenantInfo, } from './tenant-store';
+/**
+ * Validates whether a given auth config is still valid (i.e., not expired).
+ * @param {TenantAuth} authInfo - The tenant auth configuration.
+ * @returns True if the token is still valid, false if expired.
+ */
+export function validateAuthInfo(authInfo) {
+    const now = new Date();
+    const expiry = new Date(authInfo.expires_at);
+    return now < expiry;
+}
+/**
+ * Renews the token for a given tenant using stored credentials.
+ * @param {TenantAuth} authInfo - Current authentication info for the tenant.
+ * @param {TenantInfo} tenantInfo - Public metadata about the tenant (e.g., clientId).
+ * @returns Promise<void>
+ * @throws If credentials are missing or renewal fails.
+ */
+export async function renewClientToken(authInfo, tenantInfo) {
+    const result = await clientCredentialsFlow({
+        clientId: tenantInfo.clientId,
+        clientSecret: authInfo.clientSecret,
+        organizationId: tenantInfo.organizationId,
+        tenantId: tenantInfo.tenantId,
+        audience: tenantInfo.audience,
+        authority: tenantInfo.authority,
+        baseUrl: tenantInfo.baseUrl,
+    });
+    const tenantId = tenantInfo.tenantId;
+    await writeTenantAuthInfo(tenantId, {
+        clientSecret: authInfo.clientSecret,
+        access_token: result.data.access_token,
+        expires_in: result.data.expires_in,
+        expires_at: new Date(Date.now() + result.data.expires_in * 1000).toISOString(),
+    });
+    console.info(`\n Token for tenant ${tenantId} renewed.`);
+}
+/**
+ * Ensures a valid token exists, renews it if expired.
+ * Returns tenant context if successful, otherwise null.
+ */
+export async function renewAuthIfExpired() {
+    const tenantId = getActiveTenant();
+    if (!tenantId)
+        return null;
+    const authInfo = await readTenantAuthInfo(tenantId);
+    if (!authInfo)
+        return null;
+    const isValid = validateAuthInfo(authInfo);
+    if (isValid) {
+        return { tenantId };
+    }
+    const tenantInfo = await readTenantInfo(tenantId);
+    if (!tenantInfo)
+        return null;
+    console.info(`\n Token for tenant ${tenantId} is expired. Renewing...`);
+    try {
+        if (authInfo.clientSecret) {
+            await renewClientToken(authInfo, tenantInfo);
+        }
+        else {
+            // <TODO>: Implement Device auth token renewal.
+            throw new Error('\n Please use clientSecret for authentication.');
+        }
+        return { tenantId };
+    }
+    catch (err) {
+        console.error(`\n Failed to renew token for tenant '${tenantId}'`);
+        console.warn(`\n Cleaning up stale authentication data for tenant '${tenantId}'...`);
+        await deleteTenantAuthInfo(tenantId);
+        clearActiveTenant();
+        console.info('\n You will need to login again to re-authenticate.');
+        process.exit(1);
+    }
+}

package/dist/esm/tools/auth/tenant-state.js

@@ -0,0 +1,73 @@
+/* eslint-disable jsdoc/require-jsdoc */
+import * as fs from 'fs';
+import * as path from 'path';
+import * as os from 'os';
+const configDir = path.join(os.homedir(), '.sitecore', 'sitecore-tools');
+const settingsFile = path.join(configDir, 'settings.json');
+/**
+ * Gets the ID of the currently active tenant from settings.json.
+ * @returns The active tenant ID if present, otherwise null.
+ */
+export let getActiveTenant = _getActiveTenant;
+/**
+ * Clears the currently active tenant from settings.json by deleting the file.
+ */
+export let clearActiveTenant = _clearActiveTenant;
+// mock setup for unit tests to make sinon happy and mock-able with esbuild/tsx
+// https://sinonjs.org/how-to/typescript-swc/
+// This, plus the `_` names make the exports writable for sinon
+export const unitMocks = {
+    set clearActiveTenant(mockImplementation) {
+        clearActiveTenant = mockImplementation;
+    },
+    get clearActiveTenant() {
+        return _clearActiveTenant;
+    },
+    set getActiveTenant(mockImplementation) {
+        getActiveTenant = mockImplementation;
+    },
+    get getActiveTenant() {
+        return _getActiveTenant;
+    },
+};
+function _getActiveTenant() {
+    var _a;
+    if (!fs.existsSync(settingsFile)) {
+        return null;
+    }
+    try {
+        const content = fs.readFileSync(settingsFile, 'utf-8');
+        const data = JSON.parse(content);
+        return (_a = data.activeTenant) !== null && _a !== void 0 ? _a : null;
+    }
+    catch (error) {
+        console.error(`\n Failed to read active tenant: ${error.message}`);
+        return null;
+    }
+}
+/**
+ * Sets the currently active tenant by writing to settings.json.
+ * @param {string} tenantId - The tenant ID to set as active.
+ */
+export function setActiveTenant(tenantId) {
+    try {
+        if (!fs.existsSync(configDir)) {
+            fs.mkdirSync(configDir, { recursive: true });
+        }
+        const data = { activeTenant: tenantId };
+        fs.writeFileSync(settingsFile, JSON.stringify(data, null, 2));
+    }
+    catch (error) {
+        console.error(`\n Failed to set active tenant '${tenantId}': ${error.message}`);
+    }
+}
+function _clearActiveTenant() {
+    try {
+        if (fs.existsSync(settingsFile)) {
+            fs.unlinkSync(settingsFile);
+        }
+    }
+    catch (error) {
+        console.error(`\n Failed to clear active tenant: ${error.message}`);
+    }
+}

package/dist/esm/tools/auth/tenant-store.js

@@ -0,0 +1,206 @@
+/* eslint-disable jsdoc/require-jsdoc */
+import * as fs from 'fs';
+import * as path from 'path';
+import * as os from 'os';
+const CLAIMS = 'https://auth.sitecorecloud.io/claims';
+const rootDir = path.join(os.homedir(), '.sitecore', 'sitecore-tools');
+/**
+ * Decodes a JWT without verifying its signature.
+ * @param {string} token - The access token string.
+ * @returns Decoded payload object or null if invalid.
+ */
+export let decodeJwtPayload = _decodeJwtPayload;
+/**
+ * Write the authentication configuration for a tenant.
+ * @param {string} tenantId - The tenant ID.
+ * @param {TenantAuth} authInfo - The tenant's auth data.
+ */
+export let writeTenantAuthInfo = _writeTenantAuthInfo;
+/**
+ * Read the authentication configuration for a tenant.
+ * @param {string} tenantId - The tenant ID.
+ * @returns Parsed auth config or null if not found or failed to read.
+ */
+export let readTenantAuthInfo = _readTenantAuthInfo;
+/**
+ * Write the public metadata information for a tenant.
+ * @param {TenantInfo} info - The tenant info object.
+ */
+export let writeTenantInfo = _writeTenantInfo;
+/**
+ * Read the public metadata information for a tenant.
+ * @param {string} tenantId - The tenant ID.
+ * @returns Parsed tenant info or null if not found or failed to read.
+ */
+export let readTenantInfo = _readTenantInfo;
+/**
+ * Deletes the stored auth.json file for the given tenant.
+ * @param {string} tenantId - The tenant ID.
+ */
+export let deleteTenantAuthInfo = _deleteTenantAuthInfo;
+/**
+ * Scans the CLI root directory and returns all valid tenant infos.
+ * @returns A list of TenantInfo objects found in {tenant-id}/info.json files.
+ */
+export let getAllTenantsInfo = _getAllTenantsInfo;
+// mock setup for unit tests to make sinon happy and mock-able with esbuild/tsx
+// https://sinonjs.org/how-to/typescript-swc/
+// This, plus the `_` names make the exports writable for sinon
+export const unitMocks = {
+    set decodeJwtPayload(mockImplementation) {
+        decodeJwtPayload = mockImplementation;
+    },
+    get decodeJwtPayload() {
+        return _decodeJwtPayload;
+    },
+    set writeTenantAuthInfo(mockImplementation) {
+        writeTenantAuthInfo = mockImplementation;
+    },
+    get writeTenantAuthInfo() {
+        return _writeTenantAuthInfo;
+    },
+    set readTenantAuthInfo(mockImplementation) {
+        readTenantAuthInfo = mockImplementation;
+    },
+    get readTenantAuthInfo() {
+        return _readTenantAuthInfo;
+    },
+    set writeTenantInfo(mockImplementation) {
+        writeTenantInfo = mockImplementation;
+    },
+    get writeTenantInfo() {
+        return _writeTenantInfo;
+    },
+    set readTenantInfo(mockImplementation) {
+        readTenantInfo = mockImplementation;
+    },
+    get readTenantInfo() {
+        return _readTenantInfo;
+    },
+    set deleteTenantAuthInfo(mockImplementation) {
+        deleteTenantAuthInfo = mockImplementation;
+    },
+    get deleteTenantAuthInfo() {
+        return _deleteTenantAuthInfo;
+    },
+    set getAllTenantsInfo(mockImplementation) {
+        getAllTenantsInfo = mockImplementation;
+    },
+    get getAllTenantsInfo() {
+        return _getAllTenantsInfo;
+    },
+};
+/**
+ * Get the full path to the tenant-specific folder.
+ * @param {string} tenantId - The tenant ID.
+ * @returns The absolute path to the tenant directory.
+ */
+export function getTenantPath(tenantId) {
+    return path.join(rootDir, tenantId);
+}
+async function _writeTenantAuthInfo(tenantId, authInfo) {
+    try {
+        const dir = getTenantPath(tenantId);
+        fs.mkdirSync(dir, { recursive: true });
+        fs.writeFileSync(path.join(dir, 'auth.json'), JSON.stringify(authInfo, null, 2));
+    }
+    catch (error) {
+        console.error(`\n Failed to write auth.json for tenant '${tenantId}': ${error.message}`);
+    }
+}
+async function _readTenantAuthInfo(tenantId) {
+    const filePath = path.join(getTenantPath(tenantId), 'auth.json');
+    if (!fs.existsSync(filePath))
+        return null;
+    try {
+        const raw = fs.readFileSync(filePath, 'utf-8');
+        return JSON.parse(raw);
+    }
+    catch (error) {
+        console.error(`\n Failed to read auth.json for tenant '${tenantId}': ${error.message}`);
+        return null;
+    }
+}
+async function _writeTenantInfo(info) {
+    try {
+        const dir = getTenantPath(info.tenantId);
+        fs.mkdirSync(dir, { recursive: true });
+        fs.writeFileSync(path.join(dir, 'info.json'), JSON.stringify(info, null, 2));
+    }
+    catch (error) {
+        console.error(`\n Failed to write info.json for tenant '${info.tenantId}': ${error.message}`);
+    }
+}
+async function _readTenantInfo(tenantId) {
+    const infoFilePath = path.join(getTenantPath(tenantId), 'info.json');
+    if (!fs.existsSync(infoFilePath)) {
+        return null;
+    }
+    try {
+        const content = fs.readFileSync(infoFilePath, 'utf-8');
+        return JSON.parse(content);
+    }
+    catch (error) {
+        console.error(`\n Failed to read info.json for tenant '${tenantId}': ${error.message}`);
+        return null;
+    }
+}
+async function _deleteTenantAuthInfo(tenantId) {
+    const filePath = path.join(getTenantPath(tenantId), 'auth.json');
+    try {
+        if (fs.existsSync(filePath)) {
+            fs.unlinkSync(filePath);
+        }
+    }
+    catch (error) {
+        console.error(`\n Failed to delete auth.json for tenant '${tenantId}': ${error.message}`);
+    }
+}
+function _getAllTenantsInfo() {
+    if (!fs.existsSync(rootDir))
+        return [];
+    const subDirs = fs
+        .readdirSync(rootDir)
+        .filter((entry) => fs.statSync(path.join(rootDir, entry)).isDirectory());
+    const tenants = [];
+    for (const dir of subDirs) {
+        const infoPath = path.join(rootDir, dir, 'info.json');
+        if (fs.existsSync(infoPath)) {
+            try {
+                const content = fs.readFileSync(infoPath, 'utf-8');
+                const data = JSON.parse(content);
+                if (data.tenantId && data.tenantName && data.organizationId && data.clientId) {
+                    tenants.push({
+                        tenantId: data.tenantId,
+                        tenantName: data.tenantName,
+                        organizationId: data.organizationId,
+                        clientId: data.clientId,
+                        authority: data.authority,
+                        audience: data.audience,
+                        baseUrl: data.baseUrl,
+                    });
+                }
+            }
+            catch (error) {
+                console.error('\n Failed to read tenant info file', error.message);
+            }
+        }
+    }
+    return tenants;
+}
+function _decodeJwtPayload(token) {
+    try {
+        const base64Payload = token.split('.')[1];
+        const payload = Buffer.from(base64Payload, 'base64').toString('utf-8');
+        const decoded = JSON.parse(payload);
+        return {
+            tokenTenantId: decoded === null || decoded === void 0 ? void 0 : decoded[`${CLAIMS}/tenant_id`],
+            tokenOrgId: decoded === null || decoded === void 0 ? void 0 : decoded[`${CLAIMS}/org_id`],
+            tokenTenantName: decoded === null || decoded === void 0 ? void 0 : decoded[`${CLAIMS}/tenant_name`],
+        };
+    }
+    catch (error) {
+        console.error('\n Failed to decode access token:', error.message);
+        return null;
+    }
+}

package/dist/esm/tools/index.js

@@ -2,4 +2,6 @@ export { generateSites } from './generateSites';
 export { generateMetadata } from './generateMetadata';
 export { scaffoldComponent } from './scaffold';
 export * from './templating';
-export { fetchBearerToken } from './auth/fetch-bearer-token';
+export * from './auth/models';
+import * as auth from './auth';
+export { auth };

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@sitecore-content-sdk/core",
-  "version": "0.2.0-beta.13",
+  "version": "0.2.0-beta.14",
   "main": "dist/cjs/index.js",
   "module": "dist/esm/index.js",
   "sideEffects": false,
@@ -77,7 +77,7 @@
   },
   "description": "",
   "types": "types/index.d.ts",
-  "gitHead": "e8277ca3d2914ea4ad92f66711e43ebe55e0f135",
+  "gitHead": "7a86b92b3c3fd27c57067509613d3a99d3edc74f",
   "files": [
     "dist",
     "types",

package/types/constants.d.ts

@@ -5,5 +5,6 @@ export declare enum SitecoreTemplateId {
 export declare const siteNameError = "The siteName cannot be empty";
 export declare const SITECORE_EDGE_URL_DEFAULT = "https://edge-platform.sitecorecloud.io";
 export declare const HIDDEN_RENDERING_NAME = "Hidden Rendering";
-export declare const DEFAULT_SITECORE_AUTH_ENDPOINT = "https://auth.sitecorecloud.io/oauth/token";
+export declare const DEFAULT_SITECORE_AUTH_DOMAIN = "https://auth.sitecorecloud.io";
 export declare const DEFAULT_SITECORE_AUTH_AUDIENCE = "https://api.sitecorecloud.io";
+export declare const DEFAULT_SITECORE_AUTH_BASE_URL = "https://edge-platform.sitecorecloud.io/cs/api";

package/types/tools/auth/flow.d.ts

@@ -0,0 +1,27 @@
+import { TenantArgs } from './models';
+/**
+ * Performs the OAuth 2.0 client credentials flow to obtain a JWT access token
+ * from the Sitecore Identity Provider using the provided client credentials.
+ * @param {object} [args] - The arguments for client credentials flow
+ * @param {string} [args.clientId] - The client ID registered with Sitecore Identity
+ * @param {string} [args.clientSecret] - The client secret associated with the client ID
+ * @param {string} [args.organizationId] - The ID of the organization the client belongs to
+ * @param {string} [args.tenantId] - The tenant ID representing the specific Sitecore environment
+ * @param {string} [args.audience] - The API audience the token is intended for. Defaults to `constants.DEFAULT_SITECORE_AUTH_AUDIENCE`
+ * @param {string} [args.authority] - The auth server base URL. Defaults to `constants.DEFAULT_SITECORE_AUTH_DOMAIN`
+ * @param {string} [args.baseUrl] - The base URL for the API, used to construct the audience. Defaults to `constants.DEFAULT_SITECORE_AUTH_BASE_URL`
+ * @returns A Promise that resolves to the access token response (including access token, token type, expiry, etc.)
+ * @throws Will log and exit the process if the request fails or returns a non-OK status
+ */
+export declare let clientCredentialsFlow: typeof _clientCredentialsFlow;
+export declare const unitMocks: {
+    clientCredentialsFlow: typeof _clientCredentialsFlow;
+};
+declare function _clientCredentialsFlow({ clientId, clientSecret, organizationId, tenantId, audience, authority, baseUrl, }: TenantArgs): Promise<{
+    data: any;
+    tokenOrgId: any;
+    tokenTenantId: any;
+    tokenTenantName: any;
+    accessToken: any;
+}>;
+export {};

package/types/tools/auth/index.d.ts

@@ -0,0 +1,4 @@
+export { clientCredentialsFlow } from './flow';
+export { renewClientToken, renewAuthIfExpired, validateAuthInfo } from './renewal';
+export { getActiveTenant, setActiveTenant, clearActiveTenant } from './tenant-state';
+export { writeTenantAuthInfo, readTenantAuthInfo, deleteTenantAuthInfo, readTenantInfo, getAllTenantsInfo, writeTenantInfo, } from './tenant-store';

package/types/tools/auth/models.d.ts

@@ -0,0 +1,94 @@
+/**
+ * CLI arguments used for authentication and tenant identification.
+ */
+export interface TenantArgs {
+    /**
+     * OAuth2 client ID used to identify the application
+     */
+    clientId: string;
+    /**
+     * Client secret used for client credentials flow
+     */
+    clientSecret?: string;
+    /**
+     * Organization ID associated with the tenant
+     */
+    organizationId?: string;
+    /**
+     * Tenant ID used for scoping the login
+     */
+    tenantId?: string;
+    /**
+     * OAuth2 audience (e.g., API base URL the token is intended for)
+     */
+    audience?: string;
+    /**
+     * Auth authority/issuer URL (e.g., Sitecore identity endpoint)
+     */
+    authority?: string;
+    /**
+     * Base URL for the target Sitecore Content Management API
+     */
+    baseUrl?: string;
+}
+export interface TenantSettings {
+    /**
+     * Currently active tenant ID tracked by the CLI
+     */
+    activeTenant?: string;
+}
+/**
+ * Auth configuration stored per tenant for accessing Sitecore APIs.
+ */
+export interface TenantAuth {
+    /**
+     * Access token issued by the identity provider
+     */
+    access_token: string;
+    /**
+     * Token expiration duration in seconds
+     */
+    expires_in: number;
+    /**
+     * Exact ISO timestamp when the token expires
+     */
+    expires_at: string;
+    /**
+     * Secret used for client credentials flow and re-authenticate
+     */
+    clientSecret?: string;
+    refresh_token?: string;
+}
+/**
+ * Public metadata for a known tenant.
+ */
+export interface TenantInfo {
+    /**
+     * Unique ID of the tenant
+     */
+    tenantId: string;
+    /**
+     *  Human-readable name of the tenant
+     */
+    tenantName: string;
+    /**
+     * Organization ID the tenant belongs to
+     */
+    organizationId: string;
+    /**
+     * Client ID associated with this tenant's authentication
+     */
+    clientId: string;
+    /**
+     * OAuth2 audience (e.g., API base URL the token is intended for)
+     */
+    audience: string;
+    /**
+     * Auth authority/issuer URL (e.g., Sitecore identity endpoint)
+     */
+    authority: string;
+    /**
+     * Base URL for the target Sitecore Content Management API
+     */
+    baseUrl: string;
+}

package/types/tools/auth/renewal.d.ts

@@ -0,0 +1,22 @@
+import { TenantAuth, TenantInfo } from './models';
+/**
+ * Validates whether a given auth config is still valid (i.e., not expired).
+ * @param {TenantAuth} authInfo - The tenant auth configuration.
+ * @returns True if the token is still valid, false if expired.
+ */
+export declare function validateAuthInfo(authInfo: TenantAuth): boolean;
+/**
+ * Renews the token for a given tenant using stored credentials.
+ * @param {TenantAuth} authInfo - Current authentication info for the tenant.
+ * @param {TenantInfo} tenantInfo - Public metadata about the tenant (e.g., clientId).
+ * @returns Promise<void>
+ * @throws If credentials are missing or renewal fails.
+ */
+export declare function renewClientToken(authInfo: TenantAuth, tenantInfo: TenantInfo): Promise<void>;
+/**
+ * Ensures a valid token exists, renews it if expired.
+ * Returns tenant context if successful, otherwise null.
+ */
+export declare function renewAuthIfExpired(): Promise<{
+    tenantId: string;
+} | null>;

package/types/tools/auth/tenant-state.d.ts

@@ -0,0 +1,21 @@
+/**
+ * Gets the ID of the currently active tenant from settings.json.
+ * @returns The active tenant ID if present, otherwise null.
+ */
+export declare let getActiveTenant: typeof _getActiveTenant;
+/**
+ * Clears the currently active tenant from settings.json by deleting the file.
+ */
+export declare let clearActiveTenant: typeof _clearActiveTenant;
+export declare const unitMocks: {
+    clearActiveTenant: typeof _clearActiveTenant;
+    getActiveTenant: typeof _getActiveTenant;
+};
+declare function _getActiveTenant(): string | null;
+/**
+ * Sets the currently active tenant by writing to settings.json.
+ * @param {string} tenantId - The tenant ID to set as active.
+ */
+export declare function setActiveTenant(tenantId: string): void;
+declare function _clearActiveTenant(): void;
+export {};

package/types/tools/auth/tenant-store.d.ts

@@ -0,0 +1,63 @@
+import { TenantAuth, TenantInfo } from './models';
+/**
+ * Decodes a JWT without verifying its signature.
+ * @param {string} token - The access token string.
+ * @returns Decoded payload object or null if invalid.
+ */
+export declare let decodeJwtPayload: typeof _decodeJwtPayload;
+/**
+ * Write the authentication configuration for a tenant.
+ * @param {string} tenantId - The tenant ID.
+ * @param {TenantAuth} authInfo - The tenant's auth data.
+ */
+export declare let writeTenantAuthInfo: typeof _writeTenantAuthInfo;
+/**
+ * Read the authentication configuration for a tenant.
+ * @param {string} tenantId - The tenant ID.
+ * @returns Parsed auth config or null if not found or failed to read.
+ */
+export declare let readTenantAuthInfo: typeof _readTenantAuthInfo;
+/**
+ * Write the public metadata information for a tenant.
+ * @param {TenantInfo} info - The tenant info object.
+ */
+export declare let writeTenantInfo: typeof _writeTenantInfo;
+/**
+ * Read the public metadata information for a tenant.
+ * @param {string} tenantId - The tenant ID.
+ * @returns Parsed tenant info or null if not found or failed to read.
+ */
+export declare let readTenantInfo: typeof _readTenantInfo;
+/**
+ * Deletes the stored auth.json file for the given tenant.
+ * @param {string} tenantId - The tenant ID.
+ */
+export declare let deleteTenantAuthInfo: typeof _deleteTenantAuthInfo;
+/**
+ * Scans the CLI root directory and returns all valid tenant infos.
+ * @returns A list of TenantInfo objects found in {tenant-id}/info.json files.
+ */
+export declare let getAllTenantsInfo: typeof _getAllTenantsInfo;
+export declare const unitMocks: {
+    decodeJwtPayload: typeof _decodeJwtPayload;
+    writeTenantAuthInfo: typeof _writeTenantAuthInfo;
+    readTenantAuthInfo: typeof _readTenantAuthInfo;
+    writeTenantInfo: typeof _writeTenantInfo;
+    readTenantInfo: typeof _readTenantInfo;
+    deleteTenantAuthInfo: typeof _deleteTenantAuthInfo;
+    getAllTenantsInfo: typeof _getAllTenantsInfo;
+};
+/**
+ * Get the full path to the tenant-specific folder.
+ * @param {string} tenantId - The tenant ID.
+ * @returns The absolute path to the tenant directory.
+ */
+export declare function getTenantPath(tenantId: string): string;
+declare function _writeTenantAuthInfo(tenantId: string, authInfo: TenantAuth): Promise<void>;
+declare function _readTenantAuthInfo(tenantId: string): Promise<TenantAuth | null>;
+declare function _writeTenantInfo(info: TenantInfo): Promise<void>;
+declare function _readTenantInfo(tenantId: string): Promise<TenantInfo | null>;
+declare function _deleteTenantAuthInfo(tenantId: string): Promise<void>;
+declare function _getAllTenantsInfo(): TenantInfo[];
+declare function _decodeJwtPayload(token: string): Record<string, any> | null;
+export {};

package/types/tools/index.d.ts

@@ -2,4 +2,6 @@ export { generateSites, GenerateSitesConfig } from './generateSites';
 export { generateMetadata } from './generateMetadata';
 export { scaffoldComponent } from './scaffold';
 export * from './templating';
-export { fetchBearerToken } from './auth/fetch-bearer-token';
+export * from './auth/models';
+import * as auth from './auth';
+export { auth };