@timesheet/sdk 1.0.4 → 1.1.0

package/CHANGELOG.md

@@ -6,6 +6,69 @@ The format is based on [Keep a Changelog](https://keepachangelog.com/en/1.0.0/),
 and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0.html).
 
 
+## [1.1.0] - 2026-05-23
+
+### Added
+- Team member management on `TeamResource`:
+  - `addMember()`, `updateMember()`, `removeMember()`, `removeInvitedMember()`
+  - `batchAddMembers()` for bulk member registration
+  - `getMemberStatus()` for retrieving members with current activity status
+- Project member management on `ProjectResource`:
+  - `listMembers()`, `addMember()`, `getMember()`, `updateMember()`, `removeMember()`
+  - `updateMembers()` for full member-list replacement
+  - `batchAddMembers()` / `batchRemoveMembers()` for bulk operations
+- E-invoicing fields on `Document` and `DocumentUpdateRequest`:
+  - VAT/tax IDs, registration and bank details (BIC, IBAN)
+  - Reverse charge, cash discount, payment term, delivery and due dates
+  - Order, project, procurement and contract references, cost center
+  - Government invoice flag, original invoice references
+  - E-invoice type, currency and document type fields
+- QR code support on `Document` (`showQrCode`, `qrCodeType`, `qrCodeContent`, `qrCodeDescription`)
+- Payment status flags on `Document` (`fullyPaid`, `partiallyPaid`)
+- Absence file attachments: `fileName` and `fileUri` on `Absence`, `AbsenceCreateRequest`, `AbsenceUpdateRequest`
+- Absence documentation tracking: `documentationStatus`, `documentationDueDate`, `requestedByMember` on `Absence`
+- `ContractListParams.userId` and `ContractListParams.status` filters
+- Extracted shared `TeamPermission` and `ProjectPermission` interfaces
+- New types: `TeamMemberCreateRequest`, `TeamMemberUpdateRequest`, `TeamMemberProjectRegistration`, `MemberStatusParams`, `MemberStatusList`, `ProjectMemberCreateRequest`, `ProjectMemberUpdateRequest`, `ProjectMemberListParams`, `ProjectMemberList`, `ProjectRegistration`
+- `Project.titleAndClient` and `Project.salaryVisible` convenience fields
+- `DocumentListParams.organizationUnassigned` filter
+- `ProjectListParams.empty` filter
+- `TeamMemberListParams`: `withoutProjectMembers`, `userIds`, `withoutUserIds`
+- `ListParams.search` (free-text search) and `ListParams.offset` (result offset) for all list endpoints
+- `ApiClient.delete()` now accepts an optional request body for endpoints that support batch deletes
+- Additional fields on `Contract`: `employmentModelName`, `holidayCollectionName`
+
+### Changed
+- **BREAKING**: `AbsenceListParams` fields renamed from `startDateTime` / `endDateTime` to `startDate` / `endDate` to match the API
+- **BREAKING**: `Document` monetary fields are now serialized as `string` (BigDecimal) instead of `number`: `taskSubtotal`, `expenseSubtotal`, `subtotal`, `tax`, `taxValue`, `taxSecond`, `taxSecondValue`, `discount`, `discountValue`, `discountSecondValue`, `total`, `payment`
+- **BREAKING**: `TeamMember.uid` renamed to `TeamMember.id`; `user` field added for the linked user identifier
+- **BREAKING**: `ProjectMember.uid` renamed to `ProjectMember.id`; `user` field added for the linked user identifier
+- **BREAKING**: `TeamResource.getColleagues()` now returns `NavigablePage<Member>` instead of `NavigablePage<TeamMember>`
+- **BREAKING**: `Contract.userId` removed; use `Contract.member` to access the associated user
+- `Project.permission` and `Team.permission` now use the shared `TeamPermission` / `ProjectPermission` interfaces
+- `ExportResource.getFields()` `scope` parameter changed from `'all' | 'project' | 'team'` to `'project' | 'team' | 'task' | 'todo'` (defaults to `'task'`)
+- `Document.organization` (full `Organization` reference) now included alongside `organizationId`
+- `TodoResource.list()` updated to handle the bare-array response from `GET /v1/todos`
+
+### Removed
+- **BREAKING**: `ContractAmendment` and `ContractAmendmentCreateRequest` types removed
+- **BREAKING**: `ContractResource.listAmendments()` and `ContractResource.createAmendment()` removed
+- **BREAKING**: `ProjectListParams.statistics` removed (statistics are now always included)
+
+## [1.0.6] - 2026-01-27
+
+### Changed
+- Replaced `tsup` / `rollup` with `esbuild` for builds to resolve native binary installation issues
+- Type declarations are now emitted via `tsc` directly
+
+## [1.0.5] - 2026-01-27
+
+### Added
+- `EventResource` for real-time Server-Sent Events (SSE) streaming
+- File upload methods on `ExpenseResource` and `NoteResource` (`uploadFile()` and combined create-with-file helpers)
+- `ApiClient.postMultipart()` for `multipart/form-data` requests
+- `ApiClient.getBaseUrl()` and `ApiClient.getAuthHeaders()` to support SSE and custom transports
+
 ## [1.0.4] - 2026-01-04
 
 ### Added
@@ -100,7 +163,10 @@ and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0
 - Removed complex mocking in favor of simple validation tests
 - Updated GitHub Actions to use non-deprecated action versions
 
-[Unreleased]: https://github.com/timesheetIO/timesheet-typescript/compare/v1.0.4...HEAD
+[Unreleased]: https://github.com/timesheetIO/timesheet-typescript/compare/v1.1.0...HEAD
+[1.1.0]: https://github.com/timesheetIO/timesheet-typescript/compare/v1.0.6...v1.1.0
+[1.0.6]: https://github.com/timesheetIO/timesheet-typescript/compare/v1.0.4...v1.0.6
+[1.0.5]: https://github.com/timesheetIO/timesheet-typescript/compare/v1.0.4...v1.0.5
 [1.0.4]: https://github.com/timesheetIO/timesheet-typescript/compare/v1.0.3...v1.0.4
 [1.0.3]: https://github.com/timesheetIO/timesheet-typescript/compare/v1.0.2...v1.0.3
 [1.0.2]: https://github.com/timesheetIO/timesheet-typescript/compare/v1.0.1...v1.0.2

package/README.md

@@ -13,6 +13,8 @@ The official TypeScript SDK for the [Timesheet API](https://timesheet.io), provi
 - ✅ **Type-Safe** - Full TypeScript support with comprehensive types
 - ✅ **Modern Architecture** - Promise-based with async/await support
 - ✅ **Authentication** - Built-in API Key, OAuth2, and OAuth 2.1 (PKCE) with automatic discovery (RFC 8414)
+- ✅ **Real-Time Events** - Server-Sent Events (SSE) for live updates
+- ✅ **File Uploads** - Multipart uploads for expense receipts and note attachments
 - ✅ **Error Handling** - Typed exceptions for better error management
 - ✅ **Pagination** - Automatic pagination with async iterators
 - ✅ **Retry Logic** - Configurable retry with exponential backoff
@@ -225,22 +227,28 @@ const client = new TimesheetClient({
 All API resources are available through the client:
 
 ```typescript
-client.tasks         // Task management
-client.projects      // Project management
-client.tags          // Tag management
-client.teams         // Team management
-client.organizations // Organization settings
-client.timer         // Real-time time tracking
-client.rates         // Billing rates
-client.expenses      // Expense tracking
-client.notes         // Note attachments
-client.pauses        // Break time tracking
-client.documents     // Document generation
-client.webhooks      // Event notifications
-client.automations   // Time tracking automation
-client.todos         // Task management
-client.profile       // User profile
-client.settings      // User settings
+client.tasks             // Task management
+client.projects          // Project management (including project members)
+client.tags              // Tag management
+client.teams             // Team management (including team members)
+client.organizations     // Organization settings
+client.timer             // Real-time time tracking
+client.rates             // Billing rates
+client.expenses          // Expense tracking (with file upload)
+client.notes             // Note attachments (with file upload)
+client.pauses            // Break time tracking
+client.documents         // Document and invoice generation
+client.webhooks          // Webhook subscriptions
+client.automations       // Time tracking automation
+client.todos             // Todo management
+client.events            // Real-time SSE event streaming
+client.absences          // Absence requests and approvals
+client.absenceTypes      // Absence type configuration
+client.contracts         // Employment contracts
+client.contractTemplates // Contract templates
+client.profile           // User profile
+client.settings          // User settings
+client.reports           // Reports API (documents, tasks, expenses, notes, exports)
 ```
 
 ## Examples
@@ -315,6 +323,85 @@ const stoppedTimer = await client.timer.stop({
 });
 ```
 
+### Real-Time Events (SSE)
+
+Subscribe to live changes for tasks, projects, teams, and other entities via Server-Sent Events.
+
+```typescript
+const subscription = await client.events.subscribe({
+  onConnected: (connectionId) => {
+    console.log('Connected with ID:', connectionId);
+  },
+  onEvent: (event) => {
+    switch (event.event) {
+      case 'task.create':
+        console.log('New task:', event.item);
+        break;
+      case 'task.update':
+        console.log('Task updated:', event.item);
+        break;
+    }
+  },
+  onError: (error) => {
+    console.error('SSE error:', error);
+  },
+});
+
+// Check connection status
+const status = await client.events.getStatus();
+
+// Close when done
+subscription.close();
+```
+
+### File Uploads
+
+Attach receipts to expenses and files to notes via `multipart/form-data` uploads.
+
+```typescript
+// Upload a receipt to an existing expense
+await client.expenses.uploadFile('expense-id', {
+  file: fileBuffer,        // Buffer, Blob, or ReadableStream
+  filename: 'receipt.pdf',
+  contentType: 'application/pdf',
+});
+
+// Create a note with an attachment in one call
+const note = await client.notes.createWithFile({
+  taskId: 'task-id',
+  description: 'Meeting notes',
+  file: fileBuffer,
+  filename: 'notes.pdf',
+});
+```
+
+### Team and Project Members
+
+```typescript
+// Add a member to a team
+const teamMember = await client.teams.addMember('team-id', {
+  email: 'colleague@example.com',
+  permission: { role: 'manager' },
+});
+
+// Get team members with current activity status
+const status = await client.teams.getMemberStatus({
+  teamId: 'team-id',
+  status: 'running', // all | active | inactive | running | idle
+});
+
+// Add a member to a project
+await client.projects.addMember('project-id', {
+  userId: 'user-id',
+  permission: { role: 'member' },
+});
+
+// List project members
+const members = await client.projects.listMembers('project-id', {
+  status: 'active',
+});
+```
+
 ### Pagination
 
 ```typescript

package/dist/auth/ApiKeyAuth.d.ts

@@ -0,0 +1,13 @@
+import type { AxiosRequestConfig } from 'axios';
+import type { Authentication } from './Authentication';
+export declare class ApiKeyAuth implements Authentication {
+    private readonly apiKey;
+    constructor(apiKey: string);
+    private isValidFormat;
+    applyAuth(config: AxiosRequestConfig): void;
+    needsRefresh(): boolean;
+    refresh(): Promise<void>;
+    getAuthHeaders(): Promise<Record<string, string>>;
+    isValid(): boolean;
+}
+//# sourceMappingURL=ApiKeyAuth.d.ts.map

package/dist/auth/ApiKeyAuth.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"ApiKeyAuth.d.ts","sourceRoot":"","sources":["../../src/auth/ApiKeyAuth.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,kBAAkB,EAAE,MAAM,OAAO,CAAC;AAChD,OAAO,KAAK,EAAE,cAAc,EAAE,MAAM,kBAAkB,CAAC;AAQvD,qBAAa,UAAW,YAAW,cAAc;IACnC,OAAO,CAAC,QAAQ,CAAC,MAAM;gBAAN,MAAM,EAAE,MAAM;IAuB3C,OAAO,CAAC,aAAa;IAMrB,SAAS,CAAC,MAAM,EAAE,kBAAkB,GAAG,IAAI;IAO3C,YAAY,IAAI,OAAO;IAMjB,OAAO,IAAI,OAAO,CAAC,IAAI,CAAC;IAKxB,cAAc,IAAI,OAAO,CAAC,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;IAMvD,OAAO,IAAI,OAAO;CAOnB"}

package/dist/auth/Authentication.d.ts

@@ -0,0 +1,8 @@
+import type { AxiosRequestConfig } from 'axios';
+export interface Authentication {
+    applyAuth(config: AxiosRequestConfig): void;
+    needsRefresh(): boolean;
+    refresh(): Promise<void>;
+    getAuthHeaders(): Promise<Record<string, string>>;
+}
+//# sourceMappingURL=Authentication.d.ts.map

package/dist/auth/Authentication.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"Authentication.d.ts","sourceRoot":"","sources":["../../src/auth/Authentication.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,kBAAkB,EAAE,MAAM,OAAO,CAAC;AAKhD,MAAM,WAAW,cAAc;IAM7B,SAAS,CAAC,MAAM,EAAE,kBAAkB,GAAG,IAAI,CAAC;IAO5C,YAAY,IAAI,OAAO,CAAC;IAOxB,OAAO,IAAI,OAAO,CAAC,IAAI,CAAC,CAAC;IAKzB,cAAc,IAAI,OAAO,CAAC,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC,CAAC;CACnD"}

package/dist/auth/OAuth21Auth.d.ts

@@ -0,0 +1,53 @@
+import type { AxiosRequestConfig } from 'axios';
+import type { Authentication } from './Authentication';
+import { type CodeChallengeMethod, type PkceCodePair } from './pkce';
+export interface AuthorizationUrlOptions {
+    clientId: string;
+    redirectUri: string;
+    codeChallenge: string;
+    codeChallengeMethod?: CodeChallengeMethod;
+    state?: string;
+    scope?: string;
+    resource?: string;
+    authorizationEndpoint?: string;
+}
+export interface TokenExchangeOptions {
+    clientId: string;
+    clientSecret?: string;
+    authorizationCode: string;
+    redirectUri: string;
+    codeVerifier: string;
+    resource?: string;
+    tokenEndpoint?: string;
+}
+export interface OAuth21RefreshOptions {
+    clientId: string;
+    clientSecret?: string;
+    refreshToken: string;
+    resource?: string;
+    tokenEndpoint?: string;
+}
+export declare class OAuth21Auth implements Authentication {
+    private static readonly DEFAULT_TOKEN_ENDPOINT;
+    private static readonly DEFAULT_AUTH_ENDPOINT;
+    private accessToken;
+    private refreshToken?;
+    private readonly clientId?;
+    private readonly clientSecret?;
+    private readonly resource?;
+    private readonly tokenEndpoint;
+    private tokenExpiry?;
+    private refreshPromise?;
+    constructor(accessToken: string);
+    constructor(options: OAuth21RefreshOptions);
+    applyAuth(config: AxiosRequestConfig): void;
+    needsRefresh(): boolean;
+    refresh(): Promise<void>;
+    private performRefresh;
+    getAuthHeaders(): Promise<Record<string, string>>;
+    static fromAuthorizationCode(options: TokenExchangeOptions): Promise<OAuth21Auth>;
+    static buildAuthorizationUrl(options: AuthorizationUrlOptions): string;
+    static generatePkce(method?: CodeChallengeMethod): PkceCodePair;
+    private parseTokenExpiry;
+}
+//# sourceMappingURL=OAuth21Auth.d.ts.map

package/dist/auth/OAuth21Auth.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"OAuth21Auth.d.ts","sourceRoot":"","sources":["../../src/auth/OAuth21Auth.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,kBAAkB,EAAE,MAAM,OAAO,CAAC;AAGhD,OAAO,KAAK,EAAE,cAAc,EAAE,MAAM,kBAAkB,CAAC;AACvD,OAAO,EAGL,KAAK,mBAAmB,EACxB,KAAK,YAAY,EAClB,MAAM,QAAQ,CAAC;AAKhB,MAAM,WAAW,uBAAuB;IAEtC,QAAQ,EAAE,MAAM,CAAC;IAEjB,WAAW,EAAE,MAAM,CAAC;IAEpB,aAAa,EAAE,MAAM,CAAC;IAEtB,mBAAmB,CAAC,EAAE,mBAAmB,CAAC;IAE1C,KAAK,CAAC,EAAE,MAAM,CAAC;IAEf,KAAK,CAAC,EAAE,MAAM,CAAC;IAEf,QAAQ,CAAC,EAAE,MAAM,CAAC;IAElB,qBAAqB,CAAC,EAAE,MAAM,CAAC;CAChC;AAKD,MAAM,WAAW,oBAAoB;IAEnC,QAAQ,EAAE,MAAM,CAAC;IAEjB,YAAY,CAAC,EAAE,MAAM,CAAC;IAEtB,iBAAiB,EAAE,MAAM,CAAC;IAE1B,WAAW,EAAE,MAAM,CAAC;IAEpB,YAAY,EAAE,MAAM,CAAC;IAErB,QAAQ,CAAC,EAAE,MAAM,CAAC;IAElB,aAAa,CAAC,EAAE,MAAM,CAAC;CACxB;AAKD,MAAM,WAAW,qBAAqB;IAEpC,QAAQ,EAAE,MAAM,CAAC;IAEjB,YAAY,CAAC,EAAE,MAAM,CAAC;IAEtB,YAAY,EAAE,MAAM,CAAC;IAErB,QAAQ,CAAC,EAAE,MAAM,CAAC;IAElB,aAAa,CAAC,EAAE,MAAM,CAAC;CACxB;AAsDD,qBAAa,WAAY,YAAW,cAAc;IAChD,OAAO,CAAC,MAAM,CAAC,QAAQ,CAAC,sBAAsB,CAA2C;IACzF,OAAO,CAAC,MAAM,CAAC,QAAQ,CAAC,qBAAqB,CAA0C;IAEvF,OAAO,CAAC,WAAW,CAAS;IAC5B,OAAO,CAAC,YAAY,CAAC,CAAS;IAC9B,OAAO,CAAC,QAAQ,CAAC,QAAQ,CAAC,CAAS;IACnC,OAAO,CAAC,QAAQ,CAAC,YAAY,CAAC,CAAS;IACvC,OAAO,CAAC,QAAQ,CAAC,QAAQ,CAAC,CAAS;IACnC,OAAO,CAAC,QAAQ,CAAC,aAAa,CAAS;IACvC,OAAO,CAAC,WAAW,CAAC,CAAO;IAC3B,OAAO,CAAC,cAAc,CAAC,CAAgB;gBAQ3B,WAAW,EAAE,MAAM;gBAOnB,OAAO,EAAE,qBAAqB;IAoB1C,SAAS,CAAC,MAAM,EAAE,kBAAkB,GAAG,IAAI;IAO3C,YAAY,IAAI,OAAO;IAcjB,OAAO,IAAI,OAAO,CAAC,IAAI,CAAC;YAkBhB,cAAc;IAqCtB,cAAc,IAAI,OAAO,CAAC,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;WAkB1C,qBAAqB,CAAC,OAAO,EAAE,oBAAoB,GAAG,OAAO,CAAC,WAAW,CAAC;IAuEvF,MAAM,CAAC,qBAAqB,CAAC,OAAO,EAAE,uBAAuB,GAAG,MAAM;IA6DtE,MAAM,CAAC,YAAY,CAAC,MAAM,GAAE,mBAA4B,GAAG,YAAY;IAIvE,OAAO,CAAC,gBAAgB;CAkBzB"}

package/dist/auth/OAuth2Auth.d.ts

@@ -0,0 +1,22 @@
+import type { AxiosRequestConfig } from 'axios';
+import type { Authentication } from './Authentication';
+export declare class OAuth2Auth implements Authentication {
+    private static readonly TOKEN_ENDPOINT;
+    private accessToken;
+    private refreshToken?;
+    private readonly clientId?;
+    private readonly clientSecret?;
+    private tokenExpiry?;
+    private refreshPromise?;
+    constructor(accessToken: string);
+    constructor(clientId: string, clientSecret: string, refreshToken: string);
+    applyAuth(config: AxiosRequestConfig): void;
+    needsRefresh(): boolean;
+    refresh(): Promise<void>;
+    private performRefresh;
+    getAuthHeaders(): Promise<Record<string, string>>;
+    static fromAuthorizationCode(clientId: string, clientSecret: string, authorizationCode: string, redirectUri: string): Promise<OAuth2Auth>;
+    static buildAuthorizationUrl(clientId: string, redirectUri: string, state?: string): string;
+    private parseTokenExpiry;
+}
+//# sourceMappingURL=OAuth2Auth.d.ts.map

package/dist/auth/OAuth2Auth.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"OAuth2Auth.d.ts","sourceRoot":"","sources":["../../src/auth/OAuth2Auth.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,kBAAkB,EAAE,MAAM,OAAO,CAAC;AAGhD,OAAO,KAAK,EAAE,cAAc,EAAE,MAAM,kBAAkB,CAAC;AAOvD,qBAAa,UAAW,YAAW,cAAc;IAC/C,OAAO,CAAC,MAAM,CAAC,QAAQ,CAAC,cAAc,CAA2C;IAEjF,OAAO,CAAC,WAAW,CAAS;IAC5B,OAAO,CAAC,YAAY,CAAC,CAAS;IAC9B,OAAO,CAAC,QAAQ,CAAC,QAAQ,CAAC,CAAS;IACnC,OAAO,CAAC,QAAQ,CAAC,YAAY,CAAC,CAAS;IACvC,OAAO,CAAC,WAAW,CAAC,CAAO;IAC3B,OAAO,CAAC,cAAc,CAAC,CAAgB;gBAO3B,WAAW,EAAE,MAAM;gBASnB,QAAQ,EAAE,MAAM,EAAE,YAAY,EAAE,MAAM,EAAE,YAAY,EAAE,MAAM;IAiBxE,SAAS,CAAC,MAAM,EAAE,kBAAkB,GAAG,IAAI;IAO3C,YAAY,IAAI,OAAO;IAcjB,OAAO,IAAI,OAAO,CAAC,IAAI,CAAC;YAkBhB,cAAc;IAqCtB,cAAc,IAAI,OAAO,CAAC,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;WAoB1C,qBAAqB,CAChC,QAAQ,EAAE,MAAM,EAChB,YAAY,EAAE,MAAM,EACpB,iBAAiB,EAAE,MAAM,EACzB,WAAW,EAAE,MAAM,GAClB,OAAO,CAAC,UAAU,CAAC;IA+CtB,MAAM,CAAC,qBAAqB,CAAC,QAAQ,EAAE,MAAM,EAAE,WAAW,EAAE,MAAM,EAAE,KAAK,CAAC,EAAE,MAAM,GAAG,MAAM;IAc3F,OAAO,CAAC,gBAAgB;CAkBzB"}

package/dist/auth/OAuthDiscovery.d.ts

@@ -0,0 +1,30 @@
+import type { AuthorizationServerMetadata, OpenIdConfiguration, ProtectedResourceMetadata, OAuthDiscoveryResult } from './OAuthMetadata';
+export interface OAuthDiscoveryOptions {
+    cacheTtl?: number;
+    timeout?: number;
+    fetchOpenIdConfig?: boolean;
+    fetchProtectedResource?: boolean;
+}
+export declare class OAuthDiscovery {
+    private static readonly DEFAULT_CACHE_TTL;
+    private static readonly DEFAULT_TIMEOUT;
+    private readonly cache;
+    private readonly options;
+    constructor(options?: OAuthDiscoveryOptions);
+    discover(issuerUrl: string): Promise<OAuthDiscoveryResult>;
+    fetchAuthorizationServerMetadata(issuerUrl: string): Promise<AuthorizationServerMetadata>;
+    fetchOpenIdConfiguration(issuerUrl: string): Promise<OpenIdConfiguration>;
+    fetchProtectedResourceMetadata(resourceUrl: string): Promise<ProtectedResourceMetadata>;
+    clearCache(): void;
+    clearCacheForIssuer(issuerUrl: string): void;
+    isCached(issuerUrl: string): boolean;
+    private normalizeIssuerUrl;
+    private getCached;
+    private setCache;
+    private validateAuthorizationServerMetadata;
+    private validateOpenIdConfiguration;
+    private validateProtectedResourceMetadata;
+}
+export declare function getDefaultDiscovery(): OAuthDiscovery;
+export declare function discoverOAuth(issuerUrl: string, options?: OAuthDiscoveryOptions): Promise<OAuthDiscoveryResult>;
+//# sourceMappingURL=OAuthDiscovery.d.ts.map

package/dist/auth/OAuthDiscovery.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"OAuthDiscovery.d.ts","sourceRoot":"","sources":["../../src/auth/OAuthDiscovery.ts"],"names":[],"mappings":"AACA,OAAO,KAAK,EACV,2BAA2B,EAC3B,mBAAmB,EACnB,yBAAyB,EACzB,oBAAoB,EACrB,MAAM,iBAAiB,CAAC;AAKzB,MAAM,WAAW,qBAAqB;IAEpC,QAAQ,CAAC,EAAE,MAAM,CAAC;IAGlB,OAAO,CAAC,EAAE,MAAM,CAAC;IAGjB,iBAAiB,CAAC,EAAE,OAAO,CAAC;IAG5B,sBAAsB,CAAC,EAAE,OAAO,CAAC;CAClC;AA+BD,qBAAa,cAAc;IACzB,OAAO,CAAC,MAAM,CAAC,QAAQ,CAAC,iBAAiB,CAAkB;IAC3D,OAAO,CAAC,MAAM,CAAC,QAAQ,CAAC,eAAe,CAAS;IAEhD,OAAO,CAAC,QAAQ,CAAC,KAAK,CAAsC;IAC5D,OAAO,CAAC,QAAQ,CAAC,OAAO,CAAkC;gBAE9C,OAAO,GAAE,qBAA0B;IA0BzC,QAAQ,CAAC,SAAS,EAAE,MAAM,GAAG,OAAO,CAAC,oBAAoB,CAAC;IAgD1D,gCAAgC,CAAC,SAAS,EAAE,MAAM,GAAG,OAAO,CAAC,2BAA2B,CAAC;IAyBzF,wBAAwB,CAAC,SAAS,EAAE,MAAM,GAAG,OAAO,CAAC,mBAAmB,CAAC;IAyBzE,8BAA8B,CAAC,WAAW,EAAE,MAAM,GAAG,OAAO,CAAC,yBAAyB,CAAC;IAsB7F,UAAU,IAAI,IAAI;IAOlB,mBAAmB,CAAC,SAAS,EAAE,MAAM,GAAG,IAAI;IAO5C,QAAQ,CAAC,SAAS,EAAE,MAAM,GAAG,OAAO;IAKpC,OAAO,CAAC,kBAAkB;IAK1B,OAAO,CAAC,SAAS;IAcjB,OAAO,CAAC,QAAQ;IAKhB,OAAO,CAAC,mCAAmC;IAmB3C,OAAO,CAAC,2BAA2B;IAenC,OAAO,CAAC,iCAAiC;CAQ1C;AAUD,wBAAgB,mBAAmB,IAAI,cAAc,CAKpD;AAiBD,wBAAsB,aAAa,CACjC,SAAS,EAAE,MAAM,EACjB,OAAO,CAAC,EAAE,qBAAqB,GAC9B,OAAO,CAAC,oBAAoB,CAAC,CAG/B"}

package/dist/auth/OAuthMetadata.d.ts

@@ -0,0 +1,53 @@
+export interface AuthorizationServerMetadata {
+    issuer: string;
+    authorization_endpoint: string;
+    token_endpoint: string;
+    registration_endpoint?: string;
+    scopes_supported?: string[];
+    response_types_supported: string[];
+    grant_types_supported?: string[];
+    token_endpoint_auth_methods_supported?: string[];
+    code_challenge_methods_supported?: string[];
+    revocation_endpoint?: string;
+    revocation_endpoint_auth_methods_supported?: string[];
+    introspection_endpoint?: string;
+    introspection_endpoint_auth_methods_supported?: string[];
+    service_documentation?: string;
+}
+export interface ProtectedResourceMetadata {
+    resource: string;
+    authorization_servers: string[];
+    scopes_supported?: string[];
+    bearer_methods_supported?: string[];
+    resource_documentation?: string;
+    resource_signing_alg_values_supported?: string[];
+}
+export interface OpenIdConfiguration {
+    issuer: string;
+    authorization_endpoint: string;
+    token_endpoint: string;
+    userinfo_endpoint?: string;
+    jwks_uri: string;
+    registration_endpoint?: string;
+    scopes_supported?: string[];
+    response_types_supported: string[];
+    response_modes_supported?: string[];
+    grant_types_supported?: string[];
+    token_endpoint_auth_methods_supported?: string[];
+    token_endpoint_auth_signing_alg_values_supported?: string[];
+    service_documentation?: string;
+    ui_locales_supported?: string[];
+    op_policy_uri?: string;
+    op_tos_uri?: string;
+    revocation_endpoint?: string;
+    introspection_endpoint?: string;
+    code_challenge_methods_supported?: string[];
+}
+export interface OAuthDiscoveryResult {
+    issuer: string;
+    authorizationServer: AuthorizationServerMetadata;
+    protectedResource?: ProtectedResourceMetadata;
+    openIdConfiguration?: OpenIdConfiguration;
+    fetchedAt: Date;
+}
+//# sourceMappingURL=OAuthMetadata.d.ts.map

package/dist/auth/OAuthMetadata.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"OAuthMetadata.d.ts","sourceRoot":"","sources":["../../src/auth/OAuthMetadata.ts"],"names":[],"mappings":"AAWA,MAAM,WAAW,2BAA2B;IAE1C,MAAM,EAAE,MAAM,CAAC;IAGf,sBAAsB,EAAE,MAAM,CAAC;IAG/B,cAAc,EAAE,MAAM,CAAC;IAGvB,qBAAqB,CAAC,EAAE,MAAM,CAAC;IAG/B,gBAAgB,CAAC,EAAE,MAAM,EAAE,CAAC;IAG5B,wBAAwB,EAAE,MAAM,EAAE,CAAC;IAGnC,qBAAqB,CAAC,EAAE,MAAM,EAAE,CAAC;IAGjC,qCAAqC,CAAC,EAAE,MAAM,EAAE,CAAC;IAGjD,gCAAgC,CAAC,EAAE,MAAM,EAAE,CAAC;IAG5C,mBAAmB,CAAC,EAAE,MAAM,CAAC;IAG7B,0CAA0C,CAAC,EAAE,MAAM,EAAE,CAAC;IAGtD,sBAAsB,CAAC,EAAE,MAAM,CAAC;IAGhC,6CAA6C,CAAC,EAAE,MAAM,EAAE,CAAC;IAGzD,qBAAqB,CAAC,EAAE,MAAM,CAAC;CAChC;AAMD,MAAM,WAAW,yBAAyB;IAExC,QAAQ,EAAE,MAAM,CAAC;IAGjB,qBAAqB,EAAE,MAAM,EAAE,CAAC;IAGhC,gBAAgB,CAAC,EAAE,MAAM,EAAE,CAAC;IAG5B,wBAAwB,CAAC,EAAE,MAAM,EAAE,CAAC;IAGpC,sBAAsB,CAAC,EAAE,MAAM,CAAC;IAGhC,qCAAqC,CAAC,EAAE,MAAM,EAAE,CAAC;CAClD;AAMD,MAAM,WAAW,mBAAmB;IAElC,MAAM,EAAE,MAAM,CAAC;IAGf,sBAAsB,EAAE,MAAM,CAAC;IAG/B,cAAc,EAAE,MAAM,CAAC;IAGvB,iBAAiB,CAAC,EAAE,MAAM,CAAC;IAG3B,QAAQ,EAAE,MAAM,CAAC;IAGjB,qBAAqB,CAAC,EAAE,MAAM,CAAC;IAG/B,gBAAgB,CAAC,EAAE,MAAM,EAAE,CAAC;IAG5B,wBAAwB,EAAE,MAAM,EAAE,CAAC;IAGnC,wBAAwB,CAAC,EAAE,MAAM,EAAE,CAAC;IAGpC,qBAAqB,CAAC,EAAE,MAAM,EAAE,CAAC;IAGjC,qCAAqC,CAAC,EAAE,MAAM,EAAE,CAAC;IAGjD,gDAAgD,CAAC,EAAE,MAAM,EAAE,CAAC;IAG5D,qBAAqB,CAAC,EAAE,MAAM,CAAC;IAG/B,oBAAoB,CAAC,EAAE,MAAM,EAAE,CAAC;IAGhC,aAAa,CAAC,EAAE,MAAM,CAAC;IAGvB,UAAU,CAAC,EAAE,MAAM,CAAC;IAGpB,mBAAmB,CAAC,EAAE,MAAM,CAAC;IAG7B,sBAAsB,CAAC,EAAE,MAAM,CAAC;IAGhC,gCAAgC,CAAC,EAAE,MAAM,EAAE,CAAC;CAC7C;AAKD,MAAM,WAAW,oBAAoB;IAEnC,MAAM,EAAE,MAAM,CAAC;IAGf,mBAAmB,EAAE,2BAA2B,CAAC;IAGjD,iBAAiB,CAAC,EAAE,yBAAyB,CAAC;IAG9C,mBAAmB,CAAC,EAAE,mBAAmB,CAAC;IAG1C,SAAS,EAAE,IAAI,CAAC;CACjB"}

package/dist/auth/index.d.ts

@@ -0,0 +1,8 @@
+export * from './Authentication';
+export * from './ApiKeyAuth';
+export * from './OAuth2Auth';
+export * from './OAuth21Auth';
+export * from './pkce';
+export * from './OAuthMetadata';
+export * from './OAuthDiscovery';
+//# sourceMappingURL=index.d.ts.map

package/dist/auth/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/auth/index.ts"],"names":[],"mappings":"AAAA,cAAc,kBAAkB,CAAC;AACjC,cAAc,cAAc,CAAC;AAC7B,cAAc,cAAc,CAAC;AAC7B,cAAc,eAAe,CAAC;AAC9B,cAAc,QAAQ,CAAC;AACvB,cAAc,iBAAiB,CAAC;AAChC,cAAc,kBAAkB,CAAC"}

package/dist/auth/pkce.d.ts

@@ -0,0 +1,11 @@
+export type CodeChallengeMethod = 'S256' | 'plain';
+export interface PkceCodePair {
+    codeVerifier: string;
+    codeChallenge: string;
+    codeChallengeMethod: CodeChallengeMethod;
+}
+export declare function generateCodeVerifier(length?: number): string;
+export declare function generateCodeChallenge(codeVerifier: string, method?: CodeChallengeMethod): string;
+export declare function generatePkceCodePair(method?: CodeChallengeMethod, verifierLength?: number): PkceCodePair;
+export declare function isValidCodeVerifier(codeVerifier: string): boolean;
+//# sourceMappingURL=pkce.d.ts.map

package/dist/auth/pkce.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"pkce.d.ts","sourceRoot":"","sources":["../../src/auth/pkce.ts"],"names":[],"mappings":"AAYA,MAAM,MAAM,mBAAmB,GAAG,MAAM,GAAG,OAAO,CAAC;AAKnD,MAAM,WAAW,YAAY;IAE3B,YAAY,EAAE,MAAM,CAAC;IAErB,aAAa,EAAE,MAAM,CAAC;IAEtB,mBAAmB,EAAE,mBAAmB,CAAC;CAC1C;AAWD,wBAAgB,oBAAoB,CAAC,MAAM,GAAE,MAAW,GAAG,MAAM,CAQhE;AAeD,wBAAgB,qBAAqB,CACnC,YAAY,EAAE,MAAM,EACpB,MAAM,GAAE,mBAA4B,GACnC,MAAM,CAQR;AAgCD,wBAAgB,oBAAoB,CAClC,MAAM,GAAE,mBAA4B,EACpC,cAAc,GAAE,MAAW,GAC1B,YAAY,CASd;AAQD,wBAAgB,mBAAmB,CAAC,YAAY,EAAE,MAAM,GAAG,OAAO,CAQjE"}

package/dist/config/ClientConfig.d.ts

@@ -0,0 +1,10 @@
+import type { AxiosInstance } from 'axios';
+import type { Authentication } from '../auth/Authentication';
+import type { RetryConfig } from './RetryConfig';
+export interface ClientConfig {
+    baseUrl: string;
+    authentication: Authentication;
+    retryConfig: RetryConfig;
+    httpClient?: AxiosInstance;
+}
+//# sourceMappingURL=ClientConfig.d.ts.map

package/dist/config/ClientConfig.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"ClientConfig.d.ts","sourceRoot":"","sources":["../../src/config/ClientConfig.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,aAAa,EAAE,MAAM,OAAO,CAAC;AAC3C,OAAO,KAAK,EAAE,cAAc,EAAE,MAAM,wBAAwB,CAAC;AAC7D,OAAO,KAAK,EAAE,WAAW,EAAE,MAAM,eAAe,CAAC;AAKjD,MAAM,WAAW,YAAY;IAI3B,OAAO,EAAE,MAAM,CAAC;IAKhB,cAAc,EAAE,cAAc,CAAC;IAK/B,WAAW,EAAE,WAAW,CAAC;IAKzB,UAAU,CAAC,EAAE,aAAa,CAAC;CAC5B"}

package/dist/config/RetryConfig.d.ts

@@ -0,0 +1,17 @@
+export declare class RetryConfig {
+    readonly maxRetries: number;
+    readonly initialDelay: number;
+    readonly maxDelay: number;
+    readonly backoffMultiplier: number;
+    readonly retryableStatusCodes: number[];
+    constructor(options?: Partial<RetryConfigOptions>);
+    static default(): RetryConfig;
+}
+export interface RetryConfigOptions {
+    maxRetries: number;
+    initialDelay: number;
+    maxDelay: number;
+    backoffMultiplier: number;
+    retryableStatusCodes: number[];
+}
+//# sourceMappingURL=RetryConfig.d.ts.map

package/dist/config/RetryConfig.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"RetryConfig.d.ts","sourceRoot":"","sources":["../../src/config/RetryConfig.ts"],"names":[],"mappings":"AAGA,qBAAa,WAAW;IACtB,SAAgB,UAAU,EAAE,MAAM,CAAC;IACnC,SAAgB,YAAY,EAAE,MAAM,CAAC;IACrC,SAAgB,QAAQ,EAAE,MAAM,CAAC;IACjC,SAAgB,iBAAiB,EAAE,MAAM,CAAC;IAC1C,SAAgB,oBAAoB,EAAE,MAAM,EAAE,CAAC;gBAEnC,OAAO,GAAE,OAAO,CAAC,kBAAkB,CAAM;IAWrD,MAAM,CAAC,OAAO,IAAI,WAAW;CAG9B;AAKD,MAAM,WAAW,kBAAkB;IAKjC,UAAU,EAAE,MAAM,CAAC;IAMnB,YAAY,EAAE,MAAM,CAAC;IAMrB,QAAQ,EAAE,MAAM,CAAC;IAMjB,iBAAiB,EAAE,MAAM,CAAC;IAM1B,oBAAoB,EAAE,MAAM,EAAE,CAAC;CAChC"}

package/dist/config/index.d.ts

@@ -0,0 +1,3 @@
+export * from './ClientConfig';
+export * from './RetryConfig';
+//# sourceMappingURL=index.d.ts.map

package/dist/config/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/config/index.ts"],"names":[],"mappings":"AAAA,cAAc,gBAAgB,CAAC;AAC/B,cAAc,eAAe,CAAC"}

package/dist/exceptions/TimesheetApiError.d.ts

@@ -0,0 +1,7 @@
+export declare class TimesheetApiError extends Error {
+    readonly statusCode?: number;
+    readonly responseBody?: string;
+    readonly errorCode?: string;
+    constructor(message: string, statusCode?: number, responseBody?: string, errorCode?: string);
+}
+//# sourceMappingURL=TimesheetApiError.d.ts.map

package/dist/exceptions/TimesheetApiError.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"TimesheetApiError.d.ts","sourceRoot":"","sources":["../../src/exceptions/TimesheetApiError.ts"],"names":[],"mappings":"AAGA,qBAAa,iBAAkB,SAAQ,KAAK;IAC1C,SAAgB,UAAU,CAAC,EAAE,MAAM,CAAC;IACpC,SAAgB,YAAY,CAAC,EAAE,MAAM,CAAC;IACtC,SAAgB,SAAS,CAAC,EAAE,MAAM,CAAC;gBAUvB,OAAO,EAAE,MAAM,EAAE,UAAU,CAAC,EAAE,MAAM,EAAE,YAAY,CAAC,EAAE,MAAM,EAAE,SAAS,CAAC,EAAE,MAAM;CAmB5F"}

package/dist/exceptions/TimesheetAuthError.d.ts

@@ -0,0 +1,5 @@
+import { TimesheetApiError } from './TimesheetApiError';
+export declare class TimesheetAuthError extends TimesheetApiError {
+    constructor(message: string, statusCode?: number, responseBody?: string);
+}
+//# sourceMappingURL=TimesheetAuthError.d.ts.map

package/dist/exceptions/TimesheetAuthError.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"TimesheetAuthError.d.ts","sourceRoot":"","sources":["../../src/exceptions/TimesheetAuthError.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,iBAAiB,EAAE,MAAM,qBAAqB,CAAC;AAKxD,qBAAa,kBAAmB,SAAQ,iBAAiB;gBAQ3C,OAAO,EAAE,MAAM,EAAE,UAAU,GAAE,MAAY,EAAE,YAAY,CAAC,EAAE,MAAM;CAI7E"}

package/dist/exceptions/TimesheetRateLimitError.d.ts

@@ -0,0 +1,7 @@
+import { TimesheetApiError } from './TimesheetApiError';
+export declare class TimesheetRateLimitError extends TimesheetApiError {
+    readonly retryAfter?: string;
+    constructor(message: string, retryAfter?: string);
+    getRetryAfterDate(): Date | null;
+}
+//# sourceMappingURL=TimesheetRateLimitError.d.ts.map

package/dist/exceptions/TimesheetRateLimitError.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"TimesheetRateLimitError.d.ts","sourceRoot":"","sources":["../../src/exceptions/TimesheetRateLimitError.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,iBAAiB,EAAE,MAAM,qBAAqB,CAAC;AAKxD,qBAAa,uBAAwB,SAAQ,iBAAiB;IAC5D,SAAgB,UAAU,CAAC,EAAE,MAAM,CAAC;gBAQxB,OAAO,EAAE,MAAM,EAAE,UAAU,CAAC,EAAE,MAAM;IAWhD,iBAAiB,IAAI,IAAI,GAAG,IAAI;CAmBjC"}

package/dist/exceptions/index.d.ts

@@ -0,0 +1,4 @@
+export * from './TimesheetApiError';
+export * from './TimesheetAuthError';
+export * from './TimesheetRateLimitError';
+//# sourceMappingURL=index.d.ts.map

package/dist/exceptions/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/exceptions/index.ts"],"names":[],"mappings":"AAAA,cAAc,qBAAqB,CAAC;AACpC,cAAc,sBAAsB,CAAC;AACrC,cAAc,2BAA2B,CAAC"}

package/dist/http/ApiClient.d.ts

@@ -0,0 +1,18 @@
+/// <reference types="node" />
+import type { AxiosRequestConfig } from 'axios';
+import type { ClientConfig } from '../config';
+export declare class ApiClient {
+    private readonly config;
+    private readonly httpClient;
+    constructor(config: ClientConfig);
+    request<T>(config: AxiosRequestConfig): Promise<T>;
+    get<T, P = Record<string, unknown>>(path: string, params?: P): Promise<T>;
+    post<T, P = Record<string, unknown>>(path: string, data?: unknown, params?: P): Promise<T>;
+    put<T, P = Record<string, unknown>>(path: string, data?: unknown, params?: P): Promise<T>;
+    delete<T, P = Record<string, unknown>>(path: string, params?: P, data?: unknown): Promise<T>;
+    postMultipart<T>(path: string, formData: FormData): Promise<T>;
+    private sleep;
+    getBaseUrl(): string;
+    getAuthHeaders(): Promise<Record<string, string> | undefined>;
+}
+//# sourceMappingURL=ApiClient.d.ts.map

package/dist/http/ApiClient.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"ApiClient.d.ts","sourceRoot":"","sources":["../../src/http/ApiClient.ts"],"names":[],"mappings":";AAAA,OAAO,KAAK,EAAiB,kBAAkB,EAAE,MAAM,OAAO,CAAC;AAE/D,OAAO,KAAK,EAAE,YAAY,EAAE,MAAM,WAAW,CAAC;AAW9C,qBAAa,SAAS;IACpB,OAAO,CAAC,QAAQ,CAAC,MAAM,CAAe;IACtC,OAAO,CAAC,QAAQ,CAAC,UAAU,CAAgB;gBAE/B,MAAM,EAAE,YAAY;IAiC1B,OAAO,CAAC,CAAC,EAAE,MAAM,EAAE,kBAAkB,GAAG,OAAO,CAAC,CAAC,CAAC;IAoElD,GAAG,CAAC,CAAC,EAAE,CAAC,GAAG,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,EAAE,IAAI,EAAE,MAAM,EAAE,MAAM,CAAC,EAAE,CAAC,GAAG,OAAO,CAAC,CAAC,CAAC;IAWzE,IAAI,CAAC,CAAC,EAAE,CAAC,GAAG,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,EAAE,IAAI,EAAE,MAAM,EAAE,IAAI,CAAC,EAAE,OAAO,EAAE,MAAM,CAAC,EAAE,CAAC,GAAG,OAAO,CAAC,CAAC,CAAC;IAY1F,GAAG,CAAC,CAAC,EAAE,CAAC,GAAG,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,EAAE,IAAI,EAAE,MAAM,EAAE,IAAI,CAAC,EAAE,OAAO,EAAE,MAAM,CAAC,EAAE,CAAC,GAAG,OAAO,CAAC,CAAC,CAAC;IAazF,MAAM,CAAC,CAAC,EAAE,CAAC,GAAG,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,EACzC,IAAI,EAAE,MAAM,EACZ,MAAM,CAAC,EAAE,CAAC,EACV,IAAI,CAAC,EAAE,OAAO,GACb,OAAO,CAAC,CAAC,CAAC;IAcP,aAAa,CAAC,CAAC,EAAE,IAAI,EAAE,MAAM,EAAE,QAAQ,EAAE,QAAQ,GAAG,OAAO,CAAC,CAAC,CAAC;IAcpE,OAAO,CAAC,KAAK;IAOb,UAAU,IAAI,MAAM;IAQd,cAAc,IAAI,OAAO,CAAC,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,GAAG,SAAS,CAAC;CAMpE"}

package/dist/http/index.d.ts

@@ -0,0 +1,2 @@
+export * from './ApiClient';
+//# sourceMappingURL=index.d.ts.map

package/dist/http/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/http/index.ts"],"names":[],"mappings":"AAAA,cAAc,aAAa,CAAC"}