@tambo-ai/typescript-sdk 0.77.0 → 0.78.0

package/CHANGELOG.md

@@ -1,5 +1,16 @@
 # Changelog
 
+## 0.78.0 (2025-11-25)
+
+Full Changelog: [v0.77.0...v0.78.0](https://github.com/tambo-ai/typescript-sdk/compare/v0.77.0...v0.78.0)
+
+### Features
+
+* **api:** api update ([659ae02](https://github.com/tambo-ai/typescript-sdk/commit/659ae02a5989cdc7fb08277549a47dc6e4a91a78))
+* **api:** manual updates ([c015153](https://github.com/tambo-ai/typescript-sdk/commit/c015153c77500c3b8fb54525be99977249125e22))
+* **api:** mcp updates ([151cb2b](https://github.com/tambo-ai/typescript-sdk/commit/151cb2b384f9a1ece32a5b615efd8788de17ff2b))
+* **api:** oops, fix mcp path ([a18f871](https://github.com/tambo-ai/typescript-sdk/commit/a18f8718ffcb0d38ee6b5d244abba2d70ee5a63d))
+
 ## 0.77.0 (2025-11-07)
 
 Full Changelog: [v0.76.0...v0.77.0](https://github.com/tambo-ai/typescript-sdk/compare/v0.76.0...v0.77.0)

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@tambo-ai/typescript-sdk",
-  "version": "0.77.0",
+  "version": "0.78.0",
   "description": "The official TypeScript library for the Tambo AI API",
   "author": "Tambo AI <dev-feedback@tambo.co>",
   "types": "./index.d.ts",

package/resources/beta/auth.d.mts

@@ -3,14 +3,16 @@ import { APIPromise } from "../../core/api-promise.mjs";
 import { RequestOptions } from "../../internal/request-options.mjs";
 export declare class Auth extends APIResource {
     /**
-     * Creates a JWT MCP access token using the project ID from the API key and a
-     * context key. The token expires in 15 minutes and can be used as a bearer token.
+     * Creates a JWT MCP access token for the project. If threadId is provided, the
+     * token will be bound to that thread. If threadId is omitted, a sessionless token
+     * will be created using the provided contextKey (or from Bearer token if not
+     * provided). Sessionless tokens can only access resources and prompts, not
+     * session-specific features. The token expires in 15 minutes and can be used as a
+     * bearer token.
      *
      * @example
      * ```ts
-     * const response = await client.beta.auth.getMcpToken({
-     *   threadId: 'thread-123',
-     * });
+     * const response = await client.beta.auth.getMcpToken();
      * ```
      */
     getMcpToken(body: AuthGetMcpTokenParams, options?: RequestOptions): APIPromise<AuthGetMcpTokenResponse>;
@@ -37,6 +39,16 @@ export declare class Auth extends APIResource {
  * MCP access token response
  */
 export interface AuthGetMcpTokenResponse {
+    /**
+     * Expiration time of the token in milliseconds since epoch. Only included when
+     * mcpAccessToken is present.
+     */
+    expiresAt?: number;
+    /**
+     * Whether the token is bound to a specific thread session. Only included when
+     * mcpAccessToken is present.
+     */
+    hasSession?: boolean;
     /**
      * JWT MCP access token to be used as bearer token. Only included when MCP servers
      * are configured for the project.
@@ -66,13 +78,15 @@ export interface AuthGetTokenResponse {
 }
 export interface AuthGetMcpTokenParams {
     /**
-     * Thread ID for the MCP access token
+     * Context key for sessionless MCP access tokens. If not provided, will be
+     * extracted from Bearer token.
      */
-    threadId: string;
+    contextKey?: string;
     /**
-     * Context key for the MCP access token
+     * Thread ID for the MCP access token. If provided, the token will be bound to this
+     * thread. If omitted, a sessionless token will be created.
      */
-    contextKey?: string;
+    threadId?: string;
 }
 export interface AuthGetTokenParams {
     /**

package/resources/beta/auth.d.mts.map

@@ -1 +1 @@
-{"version":3,"file":"auth.d.mts","sourceRoot":"","sources":["../../src/resources/beta/auth.ts"],"names":[],"mappings":"OAEO,EAAE,WAAW,EAAE;OACf,EAAE,UAAU,EAAE;OAEd,EAAE,cAAc,EAAE;AAEzB,qBAAa,IAAK,SAAQ,WAAW;IACnC;;;;;;;;;;OAUG;IACH,WAAW,CAAC,IAAI,EAAE,qBAAqB,EAAE,OAAO,CAAC,EAAE,cAAc,GAAG,UAAU,CAAC,uBAAuB,CAAC;IAIvG;;;;;;;;;;;;;;;;OAgBG;IACH,QAAQ,CAAC,IAAI,EAAE,kBAAkB,EAAE,OAAO,CAAC,EAAE,cAAc,GAAG,UAAU,CAAC,oBAAoB,CAAC;CAO/F;AAED;;GAEG;AACH,MAAM,WAAW,uBAAuB;IACtC;;;OAGG;IACH,cAAc,CAAC,EAAE,MAAM,CAAC;CACzB;AAED;;GAEG;AACH,MAAM,WAAW,oBAAoB;IACnC;;OAEG;IACH,YAAY,EAAE,MAAM,CAAC;IAErB;;OAEG;IACH,UAAU,EAAE,MAAM,CAAC;IAEnB;;OAEG;IACH,iBAAiB,EAAE,MAAM,CAAC;IAE1B;;OAEG;IACH,UAAU,EAAE,MAAM,CAAC;CACpB;AAED,MAAM,WAAW,qBAAqB;IACpC;;OAEG;IACH,QAAQ,EAAE,MAAM,CAAC;IAEjB;;OAEG;IACH,UAAU,CAAC,EAAE,MAAM,CAAC;CACrB;AAED,MAAM,WAAW,kBAAkB;IACjC;;OAEG;IACH,UAAU,EAAE,MAAM,CAAC;IAEnB;;OAEG;IACH,aAAa,EAAE,MAAM,CAAC;IAEtB;;;;OAIG;IACH,kBAAkB,EAAE,MAAM,CAAC;IAE3B;;OAEG;IACH,QAAQ,CAAC,EAAE,MAAM,CAAC;IAElB;;OAEG;IACH,KAAK,CAAC,EAAE,MAAM,CAAC;CAChB;AAED,MAAM,CAAC,OAAO,WAAW,IAAI,CAAC;IAC5B,OAAO,EACL,KAAK,uBAAuB,IAAI,uBAAuB,EACvD,KAAK,oBAAoB,IAAI,oBAAoB,EACjD,KAAK,qBAAqB,IAAI,qBAAqB,EACnD,KAAK,kBAAkB,IAAI,kBAAkB,GAC9C,CAAC;CACH"}
+{"version":3,"file":"auth.d.mts","sourceRoot":"","sources":["../../src/resources/beta/auth.ts"],"names":[],"mappings":"OAEO,EAAE,WAAW,EAAE;OACf,EAAE,UAAU,EAAE;OAEd,EAAE,cAAc,EAAE;AAEzB,qBAAa,IAAK,SAAQ,WAAW;IACnC;;;;;;;;;;;;OAYG;IACH,WAAW,CAAC,IAAI,EAAE,qBAAqB,EAAE,OAAO,CAAC,EAAE,cAAc,GAAG,UAAU,CAAC,uBAAuB,CAAC;IAIvG;;;;;;;;;;;;;;;;OAgBG;IACH,QAAQ,CAAC,IAAI,EAAE,kBAAkB,EAAE,OAAO,CAAC,EAAE,cAAc,GAAG,UAAU,CAAC,oBAAoB,CAAC;CAO/F;AAED;;GAEG;AACH,MAAM,WAAW,uBAAuB;IACtC;;;OAGG;IACH,SAAS,CAAC,EAAE,MAAM,CAAC;IAEnB;;;OAGG;IACH,UAAU,CAAC,EAAE,OAAO,CAAC;IAErB;;;OAGG;IACH,cAAc,CAAC,EAAE,MAAM,CAAC;CACzB;AAED;;GAEG;AACH,MAAM,WAAW,oBAAoB;IACnC;;OAEG;IACH,YAAY,EAAE,MAAM,CAAC;IAErB;;OAEG;IACH,UAAU,EAAE,MAAM,CAAC;IAEnB;;OAEG;IACH,iBAAiB,EAAE,MAAM,CAAC;IAE1B;;OAEG;IACH,UAAU,EAAE,MAAM,CAAC;CACpB;AAED,MAAM,WAAW,qBAAqB;IACpC;;;OAGG;IACH,UAAU,CAAC,EAAE,MAAM,CAAC;IAEpB;;;OAGG;IACH,QAAQ,CAAC,EAAE,MAAM,CAAC;CACnB;AAED,MAAM,WAAW,kBAAkB;IACjC;;OAEG;IACH,UAAU,EAAE,MAAM,CAAC;IAEnB;;OAEG;IACH,aAAa,EAAE,MAAM,CAAC;IAEtB;;;;OAIG;IACH,kBAAkB,EAAE,MAAM,CAAC;IAE3B;;OAEG;IACH,QAAQ,CAAC,EAAE,MAAM,CAAC;IAElB;;OAEG;IACH,KAAK,CAAC,EAAE,MAAM,CAAC;CAChB;AAED,MAAM,CAAC,OAAO,WAAW,IAAI,CAAC;IAC5B,OAAO,EACL,KAAK,uBAAuB,IAAI,uBAAuB,EACvD,KAAK,oBAAoB,IAAI,oBAAoB,EACjD,KAAK,qBAAqB,IAAI,qBAAqB,EACnD,KAAK,kBAAkB,IAAI,kBAAkB,GAC9C,CAAC;CACH"}

package/resources/beta/auth.d.ts

@@ -3,14 +3,16 @@ import { APIPromise } from "../../core/api-promise.js";
 import { RequestOptions } from "../../internal/request-options.js";
 export declare class Auth extends APIResource {
     /**
-     * Creates a JWT MCP access token using the project ID from the API key and a
-     * context key. The token expires in 15 minutes and can be used as a bearer token.
+     * Creates a JWT MCP access token for the project. If threadId is provided, the
+     * token will be bound to that thread. If threadId is omitted, a sessionless token
+     * will be created using the provided contextKey (or from Bearer token if not
+     * provided). Sessionless tokens can only access resources and prompts, not
+     * session-specific features. The token expires in 15 minutes and can be used as a
+     * bearer token.
      *
      * @example
      * ```ts
-     * const response = await client.beta.auth.getMcpToken({
-     *   threadId: 'thread-123',
-     * });
+     * const response = await client.beta.auth.getMcpToken();
      * ```
      */
     getMcpToken(body: AuthGetMcpTokenParams, options?: RequestOptions): APIPromise<AuthGetMcpTokenResponse>;
@@ -37,6 +39,16 @@ export declare class Auth extends APIResource {
  * MCP access token response
  */
 export interface AuthGetMcpTokenResponse {
+    /**
+     * Expiration time of the token in milliseconds since epoch. Only included when
+     * mcpAccessToken is present.
+     */
+    expiresAt?: number;
+    /**
+     * Whether the token is bound to a specific thread session. Only included when
+     * mcpAccessToken is present.
+     */
+    hasSession?: boolean;
     /**
      * JWT MCP access token to be used as bearer token. Only included when MCP servers
      * are configured for the project.
@@ -66,13 +78,15 @@ export interface AuthGetTokenResponse {
 }
 export interface AuthGetMcpTokenParams {
     /**
-     * Thread ID for the MCP access token
+     * Context key for sessionless MCP access tokens. If not provided, will be
+     * extracted from Bearer token.
      */
-    threadId: string;
+    contextKey?: string;
     /**
-     * Context key for the MCP access token
+     * Thread ID for the MCP access token. If provided, the token will be bound to this
+     * thread. If omitted, a sessionless token will be created.
      */
-    contextKey?: string;
+    threadId?: string;
 }
 export interface AuthGetTokenParams {
     /**

package/resources/beta/auth.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"auth.d.ts","sourceRoot":"","sources":["../../src/resources/beta/auth.ts"],"names":[],"mappings":"OAEO,EAAE,WAAW,EAAE;OACf,EAAE,UAAU,EAAE;OAEd,EAAE,cAAc,EAAE;AAEzB,qBAAa,IAAK,SAAQ,WAAW;IACnC;;;;;;;;;;OAUG;IACH,WAAW,CAAC,IAAI,EAAE,qBAAqB,EAAE,OAAO,CAAC,EAAE,cAAc,GAAG,UAAU,CAAC,uBAAuB,CAAC;IAIvG;;;;;;;;;;;;;;;;OAgBG;IACH,QAAQ,CAAC,IAAI,EAAE,kBAAkB,EAAE,OAAO,CAAC,EAAE,cAAc,GAAG,UAAU,CAAC,oBAAoB,CAAC;CAO/F;AAED;;GAEG;AACH,MAAM,WAAW,uBAAuB;IACtC;;;OAGG;IACH,cAAc,CAAC,EAAE,MAAM,CAAC;CACzB;AAED;;GAEG;AACH,MAAM,WAAW,oBAAoB;IACnC;;OAEG;IACH,YAAY,EAAE,MAAM,CAAC;IAErB;;OAEG;IACH,UAAU,EAAE,MAAM,CAAC;IAEnB;;OAEG;IACH,iBAAiB,EAAE,MAAM,CAAC;IAE1B;;OAEG;IACH,UAAU,EAAE,MAAM,CAAC;CACpB;AAED,MAAM,WAAW,qBAAqB;IACpC;;OAEG;IACH,QAAQ,EAAE,MAAM,CAAC;IAEjB;;OAEG;IACH,UAAU,CAAC,EAAE,MAAM,CAAC;CACrB;AAED,MAAM,WAAW,kBAAkB;IACjC;;OAEG;IACH,UAAU,EAAE,MAAM,CAAC;IAEnB;;OAEG;IACH,aAAa,EAAE,MAAM,CAAC;IAEtB;;;;OAIG;IACH,kBAAkB,EAAE,MAAM,CAAC;IAE3B;;OAEG;IACH,QAAQ,CAAC,EAAE,MAAM,CAAC;IAElB;;OAEG;IACH,KAAK,CAAC,EAAE,MAAM,CAAC;CAChB;AAED,MAAM,CAAC,OAAO,WAAW,IAAI,CAAC;IAC5B,OAAO,EACL,KAAK,uBAAuB,IAAI,uBAAuB,EACvD,KAAK,oBAAoB,IAAI,oBAAoB,EACjD,KAAK,qBAAqB,IAAI,qBAAqB,EACnD,KAAK,kBAAkB,IAAI,kBAAkB,GAC9C,CAAC;CACH"}
+{"version":3,"file":"auth.d.ts","sourceRoot":"","sources":["../../src/resources/beta/auth.ts"],"names":[],"mappings":"OAEO,EAAE,WAAW,EAAE;OACf,EAAE,UAAU,EAAE;OAEd,EAAE,cAAc,EAAE;AAEzB,qBAAa,IAAK,SAAQ,WAAW;IACnC;;;;;;;;;;;;OAYG;IACH,WAAW,CAAC,IAAI,EAAE,qBAAqB,EAAE,OAAO,CAAC,EAAE,cAAc,GAAG,UAAU,CAAC,uBAAuB,CAAC;IAIvG;;;;;;;;;;;;;;;;OAgBG;IACH,QAAQ,CAAC,IAAI,EAAE,kBAAkB,EAAE,OAAO,CAAC,EAAE,cAAc,GAAG,UAAU,CAAC,oBAAoB,CAAC;CAO/F;AAED;;GAEG;AACH,MAAM,WAAW,uBAAuB;IACtC;;;OAGG;IACH,SAAS,CAAC,EAAE,MAAM,CAAC;IAEnB;;;OAGG;IACH,UAAU,CAAC,EAAE,OAAO,CAAC;IAErB;;;OAGG;IACH,cAAc,CAAC,EAAE,MAAM,CAAC;CACzB;AAED;;GAEG;AACH,MAAM,WAAW,oBAAoB;IACnC;;OAEG;IACH,YAAY,EAAE,MAAM,CAAC;IAErB;;OAEG;IACH,UAAU,EAAE,MAAM,CAAC;IAEnB;;OAEG;IACH,iBAAiB,EAAE,MAAM,CAAC;IAE1B;;OAEG;IACH,UAAU,EAAE,MAAM,CAAC;CACpB;AAED,MAAM,WAAW,qBAAqB;IACpC;;;OAGG;IACH,UAAU,CAAC,EAAE,MAAM,CAAC;IAEpB;;;OAGG;IACH,QAAQ,CAAC,EAAE,MAAM,CAAC;CACnB;AAED,MAAM,WAAW,kBAAkB;IACjC;;OAEG;IACH,UAAU,EAAE,MAAM,CAAC;IAEnB;;OAEG;IACH,aAAa,EAAE,MAAM,CAAC;IAEtB;;;;OAIG;IACH,kBAAkB,EAAE,MAAM,CAAC;IAE3B;;OAEG;IACH,QAAQ,CAAC,EAAE,MAAM,CAAC;IAElB;;OAEG;IACH,KAAK,CAAC,EAAE,MAAM,CAAC;CAChB;AAED,MAAM,CAAC,OAAO,WAAW,IAAI,CAAC;IAC5B,OAAO,EACL,KAAK,uBAAuB,IAAI,uBAAuB,EACvD,KAAK,oBAAoB,IAAI,oBAAoB,EACjD,KAAK,qBAAqB,IAAI,qBAAqB,EACnD,KAAK,kBAAkB,IAAI,kBAAkB,GAC9C,CAAC;CACH"}

package/resources/beta/auth.js

@@ -6,18 +6,20 @@ const resource_1 = require("../../core/resource.js");
 const headers_1 = require("../../internal/headers.js");
 class Auth extends resource_1.APIResource {
     /**
-     * Creates a JWT MCP access token using the project ID from the API key and a
-     * context key. The token expires in 15 minutes and can be used as a bearer token.
+     * Creates a JWT MCP access token for the project. If threadId is provided, the
+     * token will be bound to that thread. If threadId is omitted, a sessionless token
+     * will be created using the provided contextKey (or from Bearer token if not
+     * provided). Sessionless tokens can only access resources and prompts, not
+     * session-specific features. The token expires in 15 minutes and can be used as a
+     * bearer token.
      *
      * @example
      * ```ts
-     * const response = await client.beta.auth.getMcpToken({
-     *   threadId: 'thread-123',
-     * });
+     * const response = await client.beta.auth.getMcpToken();
      * ```
      */
     getMcpToken(body, options) {
-        return this._client.post('/auth/mcp-access-token', { body, ...options });
+        return this._client.post('/auth/mcp/access-token', { body, ...options });
     }
     /**
      * Exchanges an OAuth subject token for a Tambo access token following RFC 6749 and

package/resources/beta/auth.js.map

@@ -1 +1 @@
-{"version":3,"file":"auth.js","sourceRoot":"","sources":["../../src/resources/beta/auth.ts"],"names":[],"mappings":";AAAA,sFAAsF;;;AAEtF,qDAAkD;AAElD,uDAAsD;AAGtD,MAAa,IAAK,SAAQ,sBAAW;IACnC;;;;;;;;;;OAUG;IACH,WAAW,CAAC,IAA2B,EAAE,OAAwB;QAC/D,OAAO,IAAI,CAAC,OAAO,CAAC,IAAI,CAAC,wBAAwB,EAAE,EAAE,IAAI,EAAE,GAAG,OAAO,EAAE,CAAC,CAAC;IAC3E,CAAC;IAED;;;;;;;;;;;;;;;;OAgBG;IACH,QAAQ,CAAC,IAAwB,EAAE,OAAwB;QACzD,OAAO,IAAI,CAAC,OAAO,CAAC,IAAI,CAAC,cAAc,EAAE;YACvC,IAAI;YACJ,GAAG,OAAO;YACV,OAAO,EAAE,IAAA,sBAAY,EAAC,CAAC,EAAE,cAAc,EAAE,mCAAmC,EAAE,EAAE,OAAO,EAAE,OAAO,CAAC,CAAC;SACnG,CAAC,CAAC;IACL,CAAC;CACF;AAxCD,oBAwCC"}
+{"version":3,"file":"auth.js","sourceRoot":"","sources":["../../src/resources/beta/auth.ts"],"names":[],"mappings":";AAAA,sFAAsF;;;AAEtF,qDAAkD;AAElD,uDAAsD;AAGtD,MAAa,IAAK,SAAQ,sBAAW;IACnC;;;;;;;;;;;;OAYG;IACH,WAAW,CAAC,IAA2B,EAAE,OAAwB;QAC/D,OAAO,IAAI,CAAC,OAAO,CAAC,IAAI,CAAC,wBAAwB,EAAE,EAAE,IAAI,EAAE,GAAG,OAAO,EAAE,CAAC,CAAC;IAC3E,CAAC;IAED;;;;;;;;;;;;;;;;OAgBG;IACH,QAAQ,CAAC,IAAwB,EAAE,OAAwB;QACzD,OAAO,IAAI,CAAC,OAAO,CAAC,IAAI,CAAC,cAAc,EAAE;YACvC,IAAI;YACJ,GAAG,OAAO;YACV,OAAO,EAAE,IAAA,sBAAY,EAAC,CAAC,EAAE,cAAc,EAAE,mCAAmC,EAAE,EAAE,OAAO,EAAE,OAAO,CAAC,CAAC;SACnG,CAAC,CAAC;IACL,CAAC;CACF;AA1CD,oBA0CC"}

package/resources/beta/auth.mjs

@@ -3,18 +3,20 @@ import { APIResource } from "../../core/resource.mjs";
 import { buildHeaders } from "../../internal/headers.mjs";
 export class Auth extends APIResource {
     /**
-     * Creates a JWT MCP access token using the project ID from the API key and a
-     * context key. The token expires in 15 minutes and can be used as a bearer token.
+     * Creates a JWT MCP access token for the project. If threadId is provided, the
+     * token will be bound to that thread. If threadId is omitted, a sessionless token
+     * will be created using the provided contextKey (or from Bearer token if not
+     * provided). Sessionless tokens can only access resources and prompts, not
+     * session-specific features. The token expires in 15 minutes and can be used as a
+     * bearer token.
      *
      * @example
      * ```ts
-     * const response = await client.beta.auth.getMcpToken({
-     *   threadId: 'thread-123',
-     * });
+     * const response = await client.beta.auth.getMcpToken();
      * ```
      */
     getMcpToken(body, options) {
-        return this._client.post('/auth/mcp-access-token', { body, ...options });
+        return this._client.post('/auth/mcp/access-token', { body, ...options });
     }
     /**
      * Exchanges an OAuth subject token for a Tambo access token following RFC 6749 and

package/resources/beta/auth.mjs.map

@@ -1 +1 @@
-{"version":3,"file":"auth.mjs","sourceRoot":"","sources":["../../src/resources/beta/auth.ts"],"names":[],"mappings":"AAAA,sFAAsF;OAE/E,EAAE,WAAW,EAAE;OAEf,EAAE,YAAY,EAAE;AAGvB,MAAM,OAAO,IAAK,SAAQ,WAAW;IACnC;;;;;;;;;;OAUG;IACH,WAAW,CAAC,IAA2B,EAAE,OAAwB;QAC/D,OAAO,IAAI,CAAC,OAAO,CAAC,IAAI,CAAC,wBAAwB,EAAE,EAAE,IAAI,EAAE,GAAG,OAAO,EAAE,CAAC,CAAC;IAC3E,CAAC;IAED;;;;;;;;;;;;;;;;OAgBG;IACH,QAAQ,CAAC,IAAwB,EAAE,OAAwB;QACzD,OAAO,IAAI,CAAC,OAAO,CAAC,IAAI,CAAC,cAAc,EAAE;YACvC,IAAI;YACJ,GAAG,OAAO;YACV,OAAO,EAAE,YAAY,CAAC,CAAC,EAAE,cAAc,EAAE,mCAAmC,EAAE,EAAE,OAAO,EAAE,OAAO,CAAC,CAAC;SACnG,CAAC,CAAC;IACL,CAAC;CACF"}
+{"version":3,"file":"auth.mjs","sourceRoot":"","sources":["../../src/resources/beta/auth.ts"],"names":[],"mappings":"AAAA,sFAAsF;OAE/E,EAAE,WAAW,EAAE;OAEf,EAAE,YAAY,EAAE;AAGvB,MAAM,OAAO,IAAK,SAAQ,WAAW;IACnC;;;;;;;;;;;;OAYG;IACH,WAAW,CAAC,IAA2B,EAAE,OAAwB;QAC/D,OAAO,IAAI,CAAC,OAAO,CAAC,IAAI,CAAC,wBAAwB,EAAE,EAAE,IAAI,EAAE,GAAG,OAAO,EAAE,CAAC,CAAC;IAC3E,CAAC;IAED;;;;;;;;;;;;;;;;OAgBG;IACH,QAAQ,CAAC,IAAwB,EAAE,OAAwB;QACzD,OAAO,IAAI,CAAC,OAAO,CAAC,IAAI,CAAC,cAAc,EAAE;YACvC,IAAI;YACJ,GAAG,OAAO;YACV,OAAO,EAAE,YAAY,CAAC,CAAC,EAAE,cAAc,EAAE,mCAAmC,EAAE,EAAE,OAAO,EAAE,OAAO,CAAC,CAAC;SACnG,CAAC,CAAC;IACL,CAAC;CACF"}

package/src/resources/beta/auth.ts

@@ -7,18 +7,20 @@ import { RequestOptions } from '../../internal/request-options';
 
 export class Auth extends APIResource {
   /**
-   * Creates a JWT MCP access token using the project ID from the API key and a
-   * context key. The token expires in 15 minutes and can be used as a bearer token.
+   * Creates a JWT MCP access token for the project. If threadId is provided, the
+   * token will be bound to that thread. If threadId is omitted, a sessionless token
+   * will be created using the provided contextKey (or from Bearer token if not
+   * provided). Sessionless tokens can only access resources and prompts, not
+   * session-specific features. The token expires in 15 minutes and can be used as a
+   * bearer token.
    *
    * @example
    * ```ts
-   * const response = await client.beta.auth.getMcpToken({
-   *   threadId: 'thread-123',
-   * });
+   * const response = await client.beta.auth.getMcpToken();
    * ```
    */
   getMcpToken(body: AuthGetMcpTokenParams, options?: RequestOptions): APIPromise<AuthGetMcpTokenResponse> {
-    return this._client.post('/auth/mcp-access-token', { body, ...options });
+    return this._client.post('/auth/mcp/access-token', { body, ...options });
   }
 
   /**
@@ -51,6 +53,18 @@ export class Auth extends APIResource {
  * MCP access token response
  */
 export interface AuthGetMcpTokenResponse {
+  /**
+   * Expiration time of the token in milliseconds since epoch. Only included when
+   * mcpAccessToken is present.
+   */
+  expiresAt?: number;
+
+  /**
+   * Whether the token is bound to a specific thread session. Only included when
+   * mcpAccessToken is present.
+   */
+  hasSession?: boolean;
+
   /**
    * JWT MCP access token to be used as bearer token. Only included when MCP servers
    * are configured for the project.
@@ -85,14 +99,16 @@ export interface AuthGetTokenResponse {
 
 export interface AuthGetMcpTokenParams {
   /**
-   * Thread ID for the MCP access token
+   * Context key for sessionless MCP access tokens. If not provided, will be
+   * extracted from Bearer token.
    */
-  threadId: string;
+  contextKey?: string;
 
   /**
-   * Context key for the MCP access token
+   * Thread ID for the MCP access token. If provided, the token will be bound to this
+   * thread. If omitted, a sessionless token will be created.
    */
-  contextKey?: string;
+  threadId?: string;
 }
 
 export interface AuthGetTokenParams {

package/src/version.ts

@@ -1 +1 @@
-export const VERSION = '0.77.0'; // x-release-please-version
+export const VERSION = '0.78.0'; // x-release-please-version

package/version.d.mts

@@ -1,2 +1,2 @@
-export declare const VERSION = "0.77.0";
+export declare const VERSION = "0.78.0";
 //# sourceMappingURL=version.d.mts.map

package/version.d.ts

@@ -1,2 +1,2 @@
-export declare const VERSION = "0.77.0";
+export declare const VERSION = "0.78.0";
 //# sourceMappingURL=version.d.ts.map

package/version.js

@@ -1,5 +1,5 @@
 "use strict";
 Object.defineProperty(exports, "__esModule", { value: true });
 exports.VERSION = void 0;
-exports.VERSION = '0.77.0'; // x-release-please-version
+exports.VERSION = '0.78.0'; // x-release-please-version
 //# sourceMappingURL=version.js.map

package/version.mjs

@@ -1,2 +1,2 @@
-export const VERSION = '0.77.0'; // x-release-please-version
+export const VERSION = '0.78.0'; // x-release-please-version
 //# sourceMappingURL=version.mjs.map