@slates-integrations/attio 0.2.0-rc.5

package/README.md

@@ -0,0 +1,11 @@
+# <img src="logo.webp" height="20"> Attio
+
+Manage a customizable CRM workspace including records, lists, notes, tasks, and comments. Create, read, update, delete, and search records across standard and custom objects (people, companies, deals). Upsert records using unique attributes to avoid duplicates. Organize records into lists (e.g., sales pipelines) and manage list entries. Create and manage notes attached to records, assign and complete tasks, and handle threaded comments. Configure the data model by defining custom objects and attributes. Access workspace member information, meeting data, and call recording transcripts. Subscribe to real-time webhook events for records, lists, notes, tasks, comments, and more.
+
+## License
+
+This integration is licensed under the [FSL-1.1](https://github.com/metorial/metorial-platform/blob/dev/LICENSE).
+
+<div align="center">
+  <sub>Built with ❤️ by <a href="https://metorial.com">Metorial</a></sub>
+</div>

package/docs/SPEC.md

@@ -0,0 +1,126 @@
+Now let me get the OAuth details and the full list of scopes.Now I have enough information to compile the specification. Let me note the key webhook event categories from the sidebar navigation: Call recording events, Comment events, List events, List attribute events, List entry events, Object attribute events, Note events, Note content events, Record events, Task events, Workspace member events. And Record events include: created, merged, updated, deleted.
+
+# Slates Specification for Attio
+
+## Overview
+
+Attio is a customizable, data-driven CRM platform. The public API allows you to manipulate records, lists, notes, tasks and more. It allows developers to build apps that read and write information to and from Attio workspaces, and subscribe to events in realtime using webhooks.
+
+## Authentication
+
+Attio supports two authentication methods:
+
+### 1. Access Tokens (API Keys)
+
+There are two ways to authenticate with Attio: access tokens, or OAuth. Access tokens are scoped to a single workspace, while OAuth is only required if you plan on publishing an integration.
+
+In order to generate an API key for your workspace, you must be an admin. From the dropdown beside your workspace name, click Workspace settings. Click the Developers tab. Click + New access token. Give your new access token a name. Set the appropriate Scopes for the token.
+
+Tokens do not expire, but can be deleted at any time.
+
+Your access token must be included in the Authorization header using the Bearer scheme. HTTP Basic Authentication is also supported (token as username, blank password) but Bearer is recommended.
+
+By default, new access tokens don't have any scopes configured. You'll need to specify the scopes you need, which varies depending on the endpoints you're hitting - for example, reading a record requires both the "object configuration" and "record" scopes.
+
+### 2. OAuth 2.0
+
+Attio supports OAuth 2.0 using the Authorization Code Grant Flow (RFC 6749 section 4.1).
+
+- **Authorization URL:** `https://app.attio.com/authorize`
+- **Token URL:** `https://app.attio.com/oauth/token`
+- Required parameters: `client_id`, `client_secret`, `redirect_uri`, `response_type=code`
+- The token exchange uses `grant_type=authorization_code` with `Content-Type: application/x-www-form-urlencoded`.
+
+For security reasons, new OAuth apps require publication approval before being usable across workspaces. While developing, your integration will be able to grant tokens for the workspace it is hosted in.
+
+### Scopes
+
+Scopes control access granularity. Known scopes include (based on API endpoint requirements): `object_configuration:read`, `record_permission:read`, `record:read`, `record:read-write`, `task:read`, `task:read-write`, `user_management:read`, `note:read`, `note:read-write`, `webhook:read`, `webhook:read-write`, `list:read`, `list:read-write`, `comment:read`, `comment:read-write`. Scopes are configured per token or per OAuth app.
+
+## Features
+
+### Record Management
+
+Manage CRM records across customizable objects (e.g., People, Companies, Deals, and custom objects). Create, read, update, delete, and search/filter records. Records support an "assert" operation (upsert) that matches on a unique attribute (e.g., email address) to create or update without duplicates.
+
+### Object & Attribute Configuration
+
+Define and manage the data model of your workspace. Create custom objects and configure attributes (fields) on objects or lists. Supports various attribute types including text, email, domain, select, multi-select, currency, status, phone, checkbox, number, and rating. Attributes can be archived.
+
+### Lists & Entries
+
+Lists allow organizing records into structured collections (e.g., sales pipelines, recruitment pipelines). Add records to lists as entries, manage entry attributes, and query entries with filters. Entries can be asserted (upserted) by parent record.
+
+### Notes
+
+Create and manage notes attached to records. Notes reference a parent object and record. Supports reading, creating, and deleting notes.
+
+### Tasks
+
+Create and manage tasks within the workspace. Tasks can be assigned to workspace members and linked to records. Supports creating, listing, updating, and completing tasks.
+
+### Comments & Threads
+
+Manage threaded comments on records, notes, or other entities. Create, read, and delete comments within threads.
+
+### Workspace Members
+
+Read information about members of the workspace, including their roles and details.
+
+### Meetings & Call Recordings
+
+Access meeting data and call recording information including transcripts.
+
+### Webhooks Management
+
+Programmatically create, list, update, and delete webhook subscriptions. Subscriptions support filters (e.g., filtering events by specific object or record).
+
+## Events
+
+Attio supports webhooks for real-time event subscriptions. Webhooks are created via the API with a target URL and a list of event subscriptions, which can include filters. Subscriptions can filter events by fields like `parent_object_id` using operators such as `equals`.
+
+The following webhook event categories are available:
+
+### Record Events
+
+Events for when records (people, companies, deals, custom objects) are created, updated, merged, or deleted. Update events include the specific attribute that changed.
+
+### List Events
+
+Events for when a list is created or updated (e.g., name or icon changes).
+
+### List Entry Events
+
+Events for when records are added to, updated within, or removed from lists.
+
+### List Attribute Events
+
+Events for changes to attribute definitions on lists.
+
+### Object Attribute Events
+
+Events for changes to attribute definitions on objects.
+
+### Note Events
+
+Events for when notes are created or updated. Note: body content updates do not currently trigger webhooks — this event is fired whenever the title of a note is modified. Body updates do not currently trigger webhooks.
+
+### Note Content Events
+
+Events related to note content changes (separate from title-level note events).
+
+### Task Events
+
+Events for when tasks are created, updated, or completed.
+
+### Comment Events
+
+Events for when comments are created, updated, or deleted.
+
+### Call Recording Events
+
+Events related to call recording activity.
+
+### Workspace Member Events
+
+Events for changes to workspace membership.

package/package.json

@@ -0,0 +1,18 @@
+{
+  "name": "@slates-integrations/attio",
+  "main": "src/index.ts",
+  "type": "module",
+  "scripts": {
+    "build": "bunx @vercel/ncc build src/index.ts -o dist -m -s",
+    "typecheck": "tsc --noEmit"
+  },
+  "dependencies": {
+    "@types/node": "^20",
+    "slates": "1.0.0-rc.10",
+    "zod": "^4.2"
+  },
+  "devDependencies": {
+    "typescript": "^5"
+  },
+  "version": "0.2.0-rc.5"
+}

package/slate.json

@@ -0,0 +1,21 @@
+{
+  "name": "@metorial/attio",
+  "description": "Manage a customizable CRM workspace including records, lists, notes, tasks, and comments. Create, read, update, delete, and search records across standard and custom objects (people, companies, deals). Upsert records using unique attributes to avoid duplicates. Organize records into lists (e.g., sales pipelines) and manage list entries. Create and manage notes attached to records, assign and complete tasks, and handle threaded comments. Configure the data model by defining custom objects and attributes. Access workspace member information, meeting data, and call recording transcripts. Subscribe to real-time webhook events for records, lists, notes, tasks, comments, and more.",
+  "categories": [
+    "crm-and-sales-tools",
+    "task-and-project-management"
+  ],
+  "skills": [
+    "create and manage records",
+    "search and filter records",
+    "manage lists and entries",
+    "create and delete notes",
+    "assign and complete tasks",
+    "manage threaded comments",
+    "configure objects and attributes",
+    "subscribe to webhook events",
+    "access call recordings",
+    "manage workspace members"
+  ],
+  "logoUrl": "https://provider-logos.metorial-cdn.com/attio.webp"
+}

package/src/auth.ts

@@ -0,0 +1,189 @@
+import { SlateAuth, createAxios } from 'slates';
+import { z } from 'zod';
+
+export let auth = SlateAuth.create()
+  .output(
+    z.object({
+      token: z.string()
+    })
+  )
+  .addOauth({
+    type: 'auth.oauth',
+    name: 'OAuth',
+    key: 'oauth',
+
+    scopes: [
+      {
+        title: 'Object Configuration (Read)',
+        description: 'Read object and attribute definitions',
+        scope: 'object_configuration:read'
+      },
+      {
+        title: 'Record Permission (Read)',
+        description: 'Read record-level permissions',
+        scope: 'record_permission:read'
+      },
+      {
+        title: 'Record Permission (Read/Write)',
+        description: 'Create, update, and delete records',
+        scope: 'record_permission:read-write'
+      },
+      {
+        title: 'Tasks (Read)',
+        description: 'Read tasks',
+        scope: 'task:read'
+      },
+      {
+        title: 'Tasks (Read/Write)',
+        description: 'Create, update, and delete tasks',
+        scope: 'task:read-write'
+      },
+      {
+        title: 'User Management (Read)',
+        description: 'Read workspace member information',
+        scope: 'user_management:read'
+      },
+      {
+        title: 'Notes (Read)',
+        description: 'Read notes',
+        scope: 'note:read'
+      },
+      {
+        title: 'Notes (Read/Write)',
+        description: 'Create and delete notes',
+        scope: 'note:read-write'
+      },
+      {
+        title: 'Webhooks (Read)',
+        description: 'Read webhook subscriptions',
+        scope: 'webhook:read'
+      },
+      {
+        title: 'Webhooks (Read/Write)',
+        description: 'Create, update, and delete webhook subscriptions',
+        scope: 'webhook:read-write'
+      },
+      {
+        title: 'List Configuration (Read)',
+        description: 'Read list definitions and configuration',
+        scope: 'list_configuration:read'
+      },
+      {
+        title: 'List Configuration (Read/Write)',
+        description: 'Create, update, and delete list definitions',
+        scope: 'list_configuration:read-write'
+      },
+      {
+        title: 'List Entries (Read)',
+        description: 'Read list entries',
+        scope: 'list_entry:read'
+      },
+      {
+        title: 'List Entries (Read/Write)',
+        description: 'Create, update, and delete list entries',
+        scope: 'list_entry:read-write'
+      },
+      {
+        title: 'Comments (Read)',
+        description: 'Read comments and threads',
+        scope: 'comment:read'
+      },
+      {
+        title: 'Comments (Read/Write)',
+        description: 'Create and delete comments',
+        scope: 'comment:read-write'
+      }
+    ],
+
+    getAuthorizationUrl: async ctx => {
+      let params = new URLSearchParams({
+        client_id: ctx.clientId,
+        redirect_uri: ctx.redirectUri,
+        response_type: 'code',
+        state: ctx.state
+      });
+
+      return {
+        url: `https://app.attio.com/authorize?${params.toString()}`
+      };
+    },
+
+    handleCallback: async ctx => {
+      let axios = createAxios();
+
+      let response = await axios.post(
+        'https://app.attio.com/oauth/token',
+        new URLSearchParams({
+          grant_type: 'authorization_code',
+          code: ctx.code,
+          redirect_uri: ctx.redirectUri,
+          client_id: ctx.clientId,
+          client_secret: ctx.clientSecret
+        }).toString(),
+        {
+          headers: {
+            'Content-Type': 'application/x-www-form-urlencoded'
+          }
+        }
+      );
+
+      return {
+        output: {
+          token: response.data.access_token
+        }
+      };
+    },
+
+    getProfile: async (ctx: any) => {
+      let axios = createAxios({
+        baseURL: 'https://api.attio.com',
+        headers: {
+          Authorization: `Bearer ${ctx.output.token}`
+        }
+      });
+
+      let response = await axios.get('/v2/self');
+
+      return {
+        profile: {
+          id: response.data.data?.id?.workspace_id,
+          name: response.data.data?.workspace?.name
+        }
+      };
+    }
+  })
+  .addTokenAuth({
+    type: 'auth.token',
+    name: 'Access Token',
+    key: 'access_token',
+
+    inputSchema: z.object({
+      token: z.string().describe('Attio API access token')
+    }),
+
+    getOutput: async ctx => {
+      return {
+        output: {
+          token: ctx.input.token
+        }
+      };
+    },
+
+    getProfile: async (ctx: any) => {
+      let axios = createAxios({
+        baseURL: 'https://api.attio.com',
+        headers: {
+          Authorization: `Bearer ${ctx.output.token}`
+        }
+      });
+
+      let response = await axios.get('/v2/self');
+
+      return {
+        profile: {
+          id: response.data.data?.id?.workspace_id,
+          name: response.data.data?.workspace?.name
+        }
+      };
+    }
+  });

package/src/config.ts

@@ -0,0 +1,4 @@
+import { SlateConfig } from 'slates';
+import { z } from 'zod';
+
+export let config = SlateConfig.create(z.object({}));

package/src/index.ts

@@ -0,0 +1,72 @@
+import { Slate } from 'slates';
+import { spec } from './spec';
+import {
+  getRecordTool,
+  createRecordTool,
+  updateRecordTool,
+  deleteRecordTool,
+  queryRecordsTool,
+  searchRecordsTool,
+  listObjectsTool,
+  listAttributesTool,
+  getListsTool,
+  addListEntryTool,
+  updateListEntryTool,
+  deleteListEntryTool,
+  queryListEntriesTool,
+  listNotesTool,
+  createNoteTool,
+  deleteNoteTool,
+  listTasksTool,
+  createTaskTool,
+  updateTaskTool,
+  deleteTaskTool,
+  createCommentTool,
+  getThreadTool,
+  deleteCommentTool,
+  listWorkspaceMembersTool
+} from './tools';
+import {
+  recordEventsTrigger,
+  listEntryEventsTrigger,
+  noteEventsTrigger,
+  taskEventsTrigger,
+  commentEventsTrigger
+} from './triggers';
+
+export let provider = Slate.create({
+  spec,
+  tools: [
+    getRecordTool,
+    createRecordTool,
+    updateRecordTool,
+    deleteRecordTool,
+    queryRecordsTool,
+    searchRecordsTool,
+    listObjectsTool,
+    listAttributesTool,
+    getListsTool,
+    addListEntryTool,
+    updateListEntryTool,
+    deleteListEntryTool,
+    queryListEntriesTool,
+    listNotesTool,
+    createNoteTool,
+    deleteNoteTool,
+    listTasksTool,
+    createTaskTool,
+    updateTaskTool,
+    deleteTaskTool,
+    createCommentTool,
+    getThreadTool,
+    deleteCommentTool,
+    listWorkspaceMembersTool
+  ],
+  triggers: [
+    recordEventsTrigger,
+    listEntryEventsTrigger,
+    noteEventsTrigger,
+    taskEventsTrigger,
+    commentEventsTrigger
+  ]
+});