@winwinmbs/portal-api 1.0.0

package/dist/index.js

@@ -0,0 +1,2144 @@
+"use strict";
+var __create = Object.create;
+var __defProp = Object.defineProperty;
+var __getOwnPropDesc = Object.getOwnPropertyDescriptor;
+var __getOwnPropNames = Object.getOwnPropertyNames;
+var __getProtoOf = Object.getPrototypeOf;
+var __hasOwnProp = Object.prototype.hasOwnProperty;
+var __export = (target, all) => {
+  for (var name in all)
+    __defProp(target, name, { get: all[name], enumerable: true });
+};
+var __copyProps = (to, from, except, desc) => {
+  if (from && typeof from === "object" || typeof from === "function") {
+    for (let key of __getOwnPropNames(from))
+      if (!__hasOwnProp.call(to, key) && key !== except)
+        __defProp(to, key, { get: () => from[key], enumerable: !(desc = __getOwnPropDesc(from, key)) || desc.enumerable });
+  }
+  return to;
+};
+var __toESM = (mod, isNodeMode, target) => (target = mod != null ? __create(__getProtoOf(mod)) : {}, __copyProps(
+  // If the importer is in node compatibility mode or this is not an ESM
+  // file that has been converted to a CommonJS file using a Babel-
+  // compatible transform (i.e. "__esModule" has not been set), then set
+  // "default" to the CommonJS "module.exports" for node compatibility.
+  isNodeMode || !mod || !mod.__esModule ? __defProp(target, "default", { value: mod, enumerable: true }) : target,
+  mod
+));
+var __toCommonJS = (mod) => __copyProps(__defProp({}, "__esModule", { value: true }), mod);
+
+// src/index.ts
+var index_exports = {};
+__export(index_exports, {
+  ActorType: () => ActorType,
+  EmailAPI: () => EmailAPI,
+  EventCategory: () => EventCategory,
+  EventLogApi: () => EventLogApi,
+  EventOutcome: () => EventOutcome,
+  EventRiskLevel: () => EventRiskLevel,
+  EventSeverity: () => EventSeverity,
+  FilesAPI: () => FilesAPI,
+  HealthAPI: () => HealthAPI,
+  LineAPI: () => LineAPI,
+  OrganizationAPI: () => OrganizationAPI,
+  OrganizationType: () => OrganizationType,
+  OtpAPI: () => OtpAPI,
+  PermissionAPI: () => PermissionAPI,
+  PermissionCategoryAPI: () => PermissionCategoryAPI,
+  PortalApiClient: () => PortalApiClient,
+  RoleAPI: () => RoleAPI,
+  SystemConfigAPI: () => SystemConfigAPI,
+  TodoAPI: () => TodoAPI,
+  TodoPriority: () => TodoPriority,
+  UserAPI: () => UserAPI,
+  WebhookAPI: () => WebhookAPI,
+  WorkflowAPI: () => WorkflowAPI
+});
+module.exports = __toCommonJS(index_exports);
+
+// src/portal-api-client.ts
+var import_axios = __toESM(require("axios"));
+
+// src/api/health.api.ts
+var HealthAPI = class {
+  constructor(axios2) {
+    this.axios = axios2;
+  }
+  /**
+   * Check API health
+   */
+  async check() {
+    const response = await this.axios.get("/health");
+    return response.data;
+  }
+  /**
+   * Validate if API key is still active
+   */
+  async validateApiKey() {
+    try {
+      await this.check();
+      return true;
+    } catch (error) {
+      return false;
+    }
+  }
+};
+
+// src/utils/logger.ts
+var Logger = class {
+  constructor() {
+    this.config = {
+      enabled: true,
+      logLevel: typeof process !== "undefined" && process.env?.NODE_ENV === "production" ? "warn" : "debug"
+    };
+  }
+  shouldLog(level) {
+    if (!this.config.enabled) return false;
+    const levels = ["debug", "info", "warn", "error"];
+    const currentLevelIndex = levels.indexOf(this.config.logLevel);
+    const messageLevelIndex = levels.indexOf(level);
+    return messageLevelIndex >= currentLevelIndex;
+  }
+  debug(...args) {
+    if (this.shouldLog("debug")) {
+      console.log("[AuthClient]", ...args);
+    }
+  }
+  info(...args) {
+    if (this.shouldLog("info")) {
+      console.log("[AuthClient]", ...args);
+    }
+  }
+  warn(...args) {
+    if (this.shouldLog("warn")) {
+      console.warn("[AuthClient]", ...args);
+    }
+  }
+  error(...args) {
+    if (this.shouldLog("error")) {
+      console.error("[AuthClient]", ...args);
+    }
+  }
+  /**
+   * อัพเดท logging config
+   *
+   * @param config - Partial config เพื่อ merge กับ config ปัจจุบัน
+   */
+  setConfig(config) {
+    this.config = { ...this.config, ...config };
+  }
+  /**
+   * ตรวจสอบว่า logging เปิดอยู่หรือไม่
+   */
+  isEnabled() {
+    return this.config.enabled;
+  }
+  /**
+   * ดู log level ปัจจุบัน
+   */
+  getLogLevel() {
+    return this.config.logLevel;
+  }
+};
+var logger = new Logger();
+
+// src/api/system-config.api.ts
+var SystemConfigAPI = class {
+  constructor(axios2) {
+    this.axios = axios2;
+  }
+  /**
+   * GET /system-configs/categories/:category
+   * ดึง configs ตาม category - ส่ง object ที่รวมทุก key เป็น { key1: value1, key2: value2 }
+   */
+  async getByCategory(category) {
+    const response = await this.axios.get(
+      `/system-configs/categories/${category}`
+    );
+    logger.debug("SystemConfigAPI getByCategory response:", response.data.data);
+    return response.data.data;
+  }
+  /**
+   * GET /system-configs/categories/:category/:key
+   * ดึง config value ตรงๆ (API returns config.value directly, NOT the full SystemConfig row)
+   */
+  async getByCategoryAndKey(category, key) {
+    const response = await this.axios.get(`/system-configs/categories/${category}/${key}`);
+    logger.debug("SystemConfigAPI getByCategoryAndKey response:", response.data.data);
+    return response.data.data;
+  }
+  async get(category, key) {
+    if (key) {
+      return await this.getByCategoryAndKey(category, key);
+    }
+    return await this.getByCategory(category);
+  }
+  /**
+   * GET /system-configs/categories/security/session_management
+   * ดึง Session Management configuration (convenience method)
+   */
+  async getSessionManagement() {
+    return this.get("security", "session_management");
+  }
+  /**
+   * GET /system-configs/categories/security/jwt
+   * ดึง Security JWT configuration (convenience method)
+   */
+  async getSecurityJwt() {
+    return this.get("security", "jwt");
+  }
+};
+
+// src/api/files.api.ts
+var FilesAPI = class {
+  constructor(axios2) {
+    this.axios = axios2;
+  }
+  /**
+   * POST /files - อัปโหลดไฟล์ใหม่
+   * Supports both authenticated and anonymous uploads
+   */
+  async upload(formData) {
+    const response = await this.axios.post("/files", formData, {
+      headers: {
+        "Content-Type": "multipart/form-data"
+      }
+    });
+    return response.data.data;
+  }
+  /**
+   * GET /files/:id - ดูข้อมูลไฟล์
+   * Public access (supports both authenticated and anonymous)
+   */
+  async getById(id) {
+    const response = await this.axios.get(`/files/${id}`);
+    return response.data.data;
+  }
+  /**
+   * GET /files/:id/content - ดึง file content (รูปภาพ, เอกสาร)
+   * Returns the actual file content or redirects to cloud storage URL
+   * Public access based on file.is_public flag
+   */
+  getContentUrl(id) {
+    const baseURL = this.axios.defaults.baseURL || "";
+    return `${baseURL}/files/${id}/content`;
+  }
+  /**
+   * PUT /files/:id - อัปเดตข้อมูลไฟล์
+   * Requires authentication
+   */
+  async update(id, updateData) {
+    const response = await this.axios.put(`/files/${id}`, updateData);
+    return response.data.data;
+  }
+  /**
+   * DELETE /files/:id - ลบไฟล์
+   * Requires authentication
+   */
+  async delete(id) {
+    const response = await this.axios.delete(`/files/${id}`);
+    return response.data.data;
+  }
+  /**
+   * POST /files/search - ค้นหาไฟล์แบบ advanced
+   * Public access (supports both authenticated and anonymous)
+   */
+  async search(searchParams) {
+    const response = await this.axios.post("/files/search", searchParams || {});
+    return response.data.data;
+  }
+  /**
+   * DELETE /files/bulk - ลบไฟล์หลายไฟล์
+   * Requires authentication
+   */
+  async bulkDelete(ids) {
+    const response = await this.axios.delete("/files/bulk", {
+      data: { ids }
+    });
+    return response.data.data;
+  }
+};
+
+// src/api/event-log.api.ts
+var EventLogApi = class {
+  constructor(axios2) {
+    this.axios = axios2;
+  }
+  /**
+   * Log event to centralized event log system
+   */
+  async logEvent(eventData) {
+    const response = await this.axios.post("/event-logs", eventData);
+    return response.data.data;
+  }
+  /**
+   * Batch log multiple events (for performance)
+   */
+  async logEvents(events) {
+    const response = await this.axios.post("/event-logs/batch", {
+      events
+    });
+    return response.data.data;
+  }
+};
+
+// src/api/line.api.ts
+var LineAPI = class {
+  constructor(axios2) {
+    this.axios = axios2;
+  }
+  /**
+   * ส่งข้อความ text ไปยัง user
+   *
+   * @example
+   * ```typescript
+   * const result = await authClient.line.sendTextMessage({
+   *   userId: 'user-123',
+   *   message: 'สวัสดีครับ! ยินดีต้อนรับ'
+   * });
+   * ```
+   */
+  async sendTextMessage(request) {
+    const response = await this.axios.post("/line/send-text", request);
+    return response.data;
+  }
+  /**
+   * ส่ง sticker ไปยัง user
+   *
+   * @example
+   * ```typescript
+   * const result = await authClient.line.sendSticker({
+   *   userId: 'user-123',
+   *   packageId: '11537',
+   *   stickerId: '52002734'
+   * });
+   * ```
+   */
+  async sendSticker(request) {
+    const response = await this.axios.post("/line/send-sticker", request);
+    return response.data;
+  }
+  /**
+   * ส่งรูปภาพไปยัง user
+   *
+   * @example
+   * ```typescript
+   * const result = await authClient.line.sendImage({
+   *   userId: 'user-123',
+   *   originalContentUrl: 'https://example.com/image.jpg',
+   *   previewImageUrl: 'https://example.com/preview.jpg'
+   * });
+   * ```
+   */
+  async sendImage(request) {
+    const response = await this.axios.post("/line/send-image", request);
+    return response.data;
+  }
+  /**
+   * ส่งหลายข้อความพร้อมกัน (สูงสุด 5 ข้อความ)
+   *
+   * @example
+   * ```typescript
+   * const result = await authClient.line.sendMessages({
+   *   userId: 'user-123',
+   *   messages: [
+   *     { type: 'text', text: 'ข้อความแรก' },
+   *     { type: 'sticker', packageId: '11537', stickerId: '52002734' },
+   *     { type: 'text', text: 'ข้อความสุดท้าย' }
+   *   ]
+   * });
+   * ```
+   */
+  async sendMessages(request) {
+    const response = await this.axios.post("/line/send-messages", request);
+    return response.data;
+  }
+  /**
+   * ส่ง notification แบบ high-level (มี title, icon และ action URL)
+   *
+   * @example
+   * ```typescript
+   * const result = await authClient.line.sendNotification({
+   *   userId: 'user-123',
+   *   title: 'งานใหม่ได้รับมอบหมาย',
+   *   message: 'คุณได้รับมอบหมายงาน: ทำรายงานประจำเดือน',
+   *   type: 'info',
+   *   action_url: 'https://app.example.com/tasks/123',
+   *   priority: 'high'
+   * });
+   * ```
+   */
+  async sendNotification(request) {
+    const response = await this.axios.post("/line/send-notification", request);
+    return response.data;
+  }
+  /**
+   * ตรวจสอบว่า user สามารถรับข้อความ LINE ได้หรือไม่
+   *
+   * @example
+   * ```typescript
+   * const result = await authClient.line.checkMessagingAvailability('user-123');
+   * if (result.data?.canReceiveMessages) {
+   *   console.log('User can receive LINE messages');
+   * }
+   * ```
+   */
+  async checkMessagingAvailability(userId) {
+    const response = await this.axios.get(`/line/messaging-availability/${userId}`);
+    return response.data;
+  }
+};
+
+// src/api/todo.api.ts
+var TodoAPI = class {
+  constructor(axios2) {
+    this.axios = axios2;
+  }
+  /**
+   * Create a new todo
+   *
+   * @example
+   * ```typescript
+   * const todo = await authClient.todo.create({
+   *   title: "ซื้อของใช้ในบ้าน",
+   *   priority: TodoPriority.NORMAL,
+   *   user_id: "user123e4567-e89b-12d3-a456-426614174000",
+   *   description: "ซื้อน้ำยาล้างจาน, กระดาษทิชชู่, แชมพู",
+   *   due_date: new Date("2024-01-20T17:00:00Z"),
+   *   category: "shopping",
+   *   labels: ["บ้าน", "จำเป็น"],
+   *   is_send_notification: true
+   * });
+   * ```
+   */
+  async create(todoData) {
+    const response = await this.axios.post("/todos", todoData);
+    return response.data.data;
+  }
+};
+
+// src/api/user.api.ts
+var UserAPI = class {
+  constructor(axios2) {
+    this.axios = axios2;
+  }
+  /**
+   * Search users with pagination and filters
+   *
+   * @example
+   * ```typescript
+   * const result = await authClient.user.search({
+   *   search: "สมชาย",
+   *   page: 1,
+   *   limit: 20,
+   *   sort_by: "created_at",
+   *   sort_order: "desc",
+   *   advanced: {
+   *     status: "active",
+   *     department_id: "dept-123"
+   *   }
+   * });
+   *
+   * // Access paginated data
+   * console.log(result.data); // User[]
+   * console.log(result.pagination.total); // Total count
+   * console.log(result.pagination.has_next); // Has next page
+   * ```
+   */
+  async search(params) {
+    const response = await this.axios.post("/users/search", params || {});
+    return response.data;
+  }
+  /**
+   * Get user by ID
+   *
+   * @example
+   * ```typescript
+   * const user = await authClient.user.get("user-123");
+   * ```
+   */
+  async get(userId) {
+    const response = await this.axios.get(`/users/${userId}`);
+    return response.data.data;
+  }
+  /**
+   * Create a new user
+   *
+   * @description ถ้าไม่ระบุ password ระบบจะ auto generate และส่ง reset password link ไปทางอีเมล
+   * ถ้าระบุ password ระบบจะใช้ password ที่ส่งมาและส่ง welcome email พร้อม login link
+   *
+   * @example
+   * ```typescript
+   * // กรณีที่มี password - ระบบจะส่ง welcome email พร้อม login link
+   * const newUser = await authClient.user.create({
+   *   email: "user@example.com",
+   *   first_name: "สมชาย",
+   *   last_name: "ใจดี",
+   *   password: "SecurePassword123!",
+   *   code: "USR-2024-001",
+   *   role_ids: ["role-123", "role-456"] // Optional: assign roles immediately
+   * });
+   * ```
+   *
+   * @example
+   * ```typescript
+   * // กรณีที่ไม่มี password - ระบบจะ auto generate และส่ง welcome email พร้อม reset password link
+   * const newUser = await authClient.user.create({
+   *   email: "user@example.com",
+   *   first_name: "สมชาย",
+   *   last_name: "ใจดี",
+   *   code: "USR-2024-002"
+   * });
+   * ```
+   */
+  async create(userData) {
+    const response = await this.axios.post("/users", userData);
+    return response.data.data;
+  }
+  /**
+   * Update user
+   *
+   * @example
+   * ```typescript
+   * const updatedUser = await authClient.user.update("user-123", {
+   *   first_name: "สมชาย",
+   *   last_name: "ใจดีมาก",
+   *   phone_number: "+66812345678",
+   *   role_ids: ["role-123", "role-456"] // Optional: replace all roles
+   * });
+   * ```
+   */
+  async update(userId, userData) {
+    const response = await this.axios.put(`/users/${userId}`, userData);
+    return response.data.data;
+  }
+  /**
+   * Delete user
+   *
+   * @example
+   * ```typescript
+   * await authClient.user.delete("user-123");
+   * ```
+   */
+  async delete(userId) {
+    await this.axios.delete(`/users/${userId}`);
+  }
+  // ==========================================================================
+  // Position Assignment
+  // ==========================================================================
+  /**
+   * Get user positions
+   *
+   * @description ดึงรายการตำแหน่งทั้งหมดของผู้ใช้
+   *
+   * @example
+   * ```typescript
+   * const positions = await authClient.user.getPositions("user-123");
+   * const primaryPosition = positions.find(p => p.is_primary);
+   * ```
+   */
+  async getPositions(userId) {
+    const response = await this.axios.get(`/users/${userId}/positions`);
+    return response.data.data || [];
+  }
+  /**
+   * Assign positions to user
+   *
+   * @description มอบหมายตำแหน่งให้ผู้ใช้ รองรับการมอบหมายหลายตำแหน่งพร้อมกัน
+   *
+   * @example
+   * ```typescript
+   * // Replace mode (default) - ทับตำแหน่งเดิมทั้งหมด
+   * const result = await authClient.user.assignPositions("user-123", {
+   *   positions: [
+   *     { position_id: "pos-001", is_primary: true },
+   *     { position_id: "pos-002", is_primary: false }
+   *   ],
+   *   mode: "replace"
+   * });
+   *
+   * // Add mode - เพิ่มตำแหน่งใหม่โดยไม่ลบของเดิม
+   * const result = await authClient.user.assignPositions("user-123", {
+   *   positions: [
+   *     { position_id: "pos-003", is_primary: false }
+   *   ],
+   *   mode: "add"
+   * });
+   * ```
+   */
+  async assignPositions(userId, data) {
+    const response = await this.axios.post(`/users/${userId}/positions`, data);
+    return response.data.data;
+  }
+  /**
+   * Unassign positions from user
+   *
+   * @description ยกเลิกตำแหน่งจากผู้ใช้
+   *
+   * @example
+   * ```typescript
+   * const result = await authClient.user.unassignPositions("user-123", ["pos-001", "pos-002"]);
+   * ```
+   */
+  async unassignPositions(userId, positionIds) {
+    const response = await this.axios.delete(`/users/${userId}/positions`, {
+      data: { ids: positionIds }
+    });
+    return response.data.data;
+  }
+  // ==========================================================================
+  // Role Assignment
+  // ==========================================================================
+  /**
+   * Get user roles
+   *
+   * @description ดึงรายการบทบาททั้งหมดของผู้ใช้
+   *
+   * @example
+   * ```typescript
+   * const roles = await authClient.user.getRoles("user-123");
+   * console.log(roles.map(r => r.name)); // ["Admin", "Manager"]
+   * ```
+   */
+  async getRoles(userId) {
+    const response = await this.axios.get(`/users/${userId}/roles`);
+    return response.data.data || [];
+  }
+  /**
+   * Assign roles to user
+   *
+   * @description มอบหมายบทบาทให้ผู้ใช้ (แทนที่บทบาทเดิมทั้งหมด)
+   *
+   * @example
+   * ```typescript
+   * const result = await authClient.user.assignRoles("user-123", ["role-001", "role-002"]);
+   * ```
+   */
+  async assignRoles(userId, roleIds) {
+    const response = await this.axios.post(`/users/${userId}/roles`, {
+      ids: roleIds
+    });
+    return response.data.data;
+  }
+  /**
+   * Unassign roles from user
+   *
+   * @description ยกเลิกบทบาทจากผู้ใช้
+   *
+   * @example
+   * ```typescript
+   * const result = await authClient.user.unassignRoles("user-123", ["role-001"]);
+   * ```
+   */
+  async unassignRoles(userId, roleIds) {
+    const response = await this.axios.delete(`/users/${userId}/roles`, {
+      data: { ids: roleIds }
+    });
+    return response.data.data;
+  }
+  // ==========================================================================
+  // Sync Operations
+  // ==========================================================================
+  /**
+   * Sync users for external applications
+   *
+   * @description ดึงข้อมูลผู้ใช้แบบ paginated สำหรับ sync operations
+   * ใช้สำหรับ external applications ที่ต้องการ sync user data
+   * ต้องใช้ API Key authentication
+   *
+   * @example
+   * ```typescript
+   * // Sync all users (first page)
+   * const result = await authClient.user.sync({
+   *   page: 1,
+   *   page_size: 100
+   * });
+   *
+   * // Sync users updated after specific date
+   * const updatedUsers = await authClient.user.sync({
+   *   page: 1,
+   *   page_size: 100,
+   *   updated_after: new Date('2024-01-01')
+   * });
+   *
+   * // Access paginated data
+   * console.log(result.data); // UserSyncResponse[]
+   * console.log(result.pagination.total); // Total count
+   * console.log(result.pagination.has_next); // Has next page
+   * ```
+   */
+  async sync(params) {
+    const queryParams = {};
+    if (params?.page !== void 0) {
+      queryParams.page = params.page.toString();
+    }
+    if (params?.page_size !== void 0) {
+      queryParams.page_size = params.page_size.toString();
+    }
+    if (params?.updated_after) {
+      const updatedAfter = params.updated_after instanceof Date ? params.updated_after.toISOString() : params.updated_after;
+      queryParams.updated_after = updatedAfter;
+    }
+    const queryString = new URLSearchParams(queryParams).toString();
+    const url = `/users/sync${queryString ? `?${queryString}` : ""}`;
+    const response = await this.axios.get(url);
+    return response.data;
+  }
+};
+
+// src/api/otp.api.ts
+var OtpAPI = class {
+  constructor(axios2) {
+    this.axios = axios2;
+  }
+  /**
+   * Send OTP to recipient (SMS or Email)
+   *
+   * @example
+   * ```typescript
+   * // Send SMS OTP
+   * const result = await authClient.otp.sendOTP({
+   *   method: 'sms',
+   *   recipient: '0812345678',
+   *   context: 'login'
+   * });
+   *
+   * console.log('OTP ID:', result.otp_id); // UUID
+   * console.log('Ref Code:', result.ref_code); // OTP-XXXXXX (for tracking)
+   * console.log('Expires at:', result.expires_at);
+   *
+   * // Send Email OTP
+   * const result = await authClient.otp.sendOTP({
+   *   method: 'email',
+   *   recipient: 'user@example.com',
+   *   context: 'verification'
+   * });
+   * ```
+   */
+  async sendOTP(request) {
+    const response = await this.axios.post("/otp/send", request);
+    return response.data.data;
+  }
+  /**
+   * Verify OTP code
+   *
+   * @example
+   * ```typescript
+   * const result = await authClient.otp.verifyOTP({
+   *   otp_id: '123e4567-e89b-12d3-a456-426614174000',
+   *   code: '123456'
+   * });
+   *
+   * if (result.verified) {
+   *   console.log('OTP verified successfully');
+   * }
+   * ```
+   */
+  async verifyOTP(request) {
+    const response = await this.axios.post("/otp/verify", request);
+    return response.data.data;
+  }
+};
+
+// src/api/email.api.ts
+var EmailAPI = class {
+  constructor(axios2) {
+    this.axios = axios2;
+  }
+  /**
+   * Send email (auto-detect Template Mode or Raw HTML Mode)
+   *
+   * @param request - SendEmailRequest
+   * @returns SendEmailResponse
+   *
+   * @example
+   * ```typescript
+   * // Template Mode
+   * const result = await authClient.email.sendEmail({
+   *   template_code: 'welcome_email',
+   *   template_data: { userName: 'John' },
+   *   recipient_email: 'user@example.com'
+   * });
+   *
+   * // Raw HTML Mode
+   * const result = await authClient.email.sendEmail({
+   *   html_body: '<h1>Hello</h1>',
+   *   subject: 'Welcome',
+   *   recipient_email: 'user@example.com'
+   * });
+   * ```
+   */
+  async sendEmail(request) {
+    const response = await this.axios.post("/send", request);
+    return response.data.data;
+  }
+  /**
+   * Send email with template (Template Mode - convenience method)
+   *
+   * @param templateCode - Template code from database
+   * @param templateData - Template data for rendering
+   * @param recipient - Email address or user ID
+   * @param options - Additional options (cc, bcc, attachments, etc.)
+   * @returns SendEmailResponse
+   *
+   * @example
+   * ```typescript
+   * const result = await authClient.email.sendEmailWithTemplate(
+   *   'welcome_email',
+   *   {
+   *     userName: 'สมชาย ใจดี',
+   *     activationLink: 'https://app.com/activate?token=xxx'
+   *   },
+   *   'user@example.com',
+   *   {
+   *     recipient_name: 'สมชาย ใจดี',
+   *     language: 'th',
+   *     cc: ['manager@example.com'],
+   *     attachments: [
+   *       {
+   *         filename: 'welcome.pdf',
+   *         href: 'https://storage.azure.com/container/welcome.pdf' // URL จาก cloud storage
+   *       }
+   *     ]
+   *   }
+   * );
+   * ```
+   */
+  async sendEmailWithTemplate(templateCode, templateData, recipient, options) {
+    const request = {
+      template_code: templateCode,
+      template_data: templateData,
+      ...options?.language && { language: options.language },
+      ...options?.subject && { subject: options.subject },
+      ...recipient.includes("@") ? { recipient_email: recipient } : { recipient_id: recipient },
+      ...options?.recipient_name && { recipient_name: options.recipient_name },
+      ...options?.cc && { cc: options.cc },
+      ...options?.bcc && { bcc: options.bcc },
+      ...options?.attachments && { attachments: options.attachments },
+      ...options?.priority && { priority: options.priority },
+      ...options?.scheduled_at && { scheduled_at: options.scheduled_at },
+      ...options?.source && { source: options.source },
+      ...options?.related_entity_id && { related_entity_id: options.related_entity_id },
+      ...options?.related_entity_type && { related_entity_type: options.related_entity_type }
+    };
+    return this.sendEmail(request);
+  }
+  /**
+   * Send email with raw HTML (Raw HTML Mode - convenience method)
+   *
+   * @param htmlBody - HTML content
+   * @param subject - Email subject
+   * @param recipient - Email address or user ID
+   * @param options - Additional options (text_body, cc, bcc, attachments, etc.)
+   * @returns SendEmailResponse
+   *
+   * @example
+   * ```typescript
+   * const result = await authClient.email.sendRawEmail(
+   *   '<h1>ยินดีต้อนรับ</h1><p>ขอบคุณที่สมัครสมาชิก</p>',
+   *   'ยินดีต้อนรับสู่ระบบ',
+   *   'user@example.com',
+   *   {
+   *     recipient_name: 'สมชาย ใจดี',
+   *     text_body: 'ยินดีต้อนรับ ขอบคุณที่สมัครสมาชิก',
+   *     cc: ['manager@example.com'],
+   *     bcc: ['archive@example.com'],
+   *     attachments: [
+   *       {
+   *         filename: 'document.pdf',
+   *         href: 'https://api.example.com/files/123e4567-e89b-12d3-a456-426614174000/content' // URL จาก File API
+   *       }
+   *     ]
+   *   }
+   * );
+   * ```
+   */
+  async sendRawEmail(htmlBody, subject, recipient, options) {
+    const request = {
+      html_body: htmlBody,
+      subject,
+      ...recipient.includes("@") ? { recipient_email: recipient } : { recipient_id: recipient },
+      ...options?.recipient_name && { recipient_name: options.recipient_name },
+      ...options?.text_body && { text_body: options.text_body },
+      ...options?.cc && { cc: options.cc },
+      ...options?.bcc && { bcc: options.bcc },
+      ...options?.attachments && { attachments: options.attachments },
+      ...options?.priority && { priority: options.priority },
+      ...options?.scheduled_at && { scheduled_at: options.scheduled_at },
+      ...options?.source && { source: options.source },
+      ...options?.related_entity_id && { related_entity_id: options.related_entity_id },
+      ...options?.related_entity_type && { related_entity_type: options.related_entity_type }
+    };
+    return this.sendEmail(request);
+  }
+};
+
+// src/api/workflow.api.ts
+var WorkflowAPI = class {
+  constructor(axios2) {
+    this.axios = axios2;
+  }
+  /**
+   * Get workflow instance by ID
+   *
+   * @example
+   * ```typescript
+   * const instance = await authClient.workflow.getInstance("wf-inst-123");
+   * ```
+   */
+  async getInstance(instanceId) {
+    const response = await this.axios.get(`/workflow-instances/${instanceId}`);
+    return response.data.data;
+  }
+  /**
+   * Create a new workflow instance
+   *
+   * @example
+   * ```typescript
+   * const instance = await authClient.workflow.createInstance({
+   *   workflow_definition_id: "wf-def-123",
+   *   document_id: "doc-123",
+   *   document_type: "purchase_request",
+   *   document_title: "ขอซื้อคอมพิวเตอร์",
+   *   priority: "high",
+   *   position_id: "pos-123",
+   *   form_data: {
+   *     amount: 150000,
+   *     items: ["Laptop", "Monitor"]
+   *   },
+   *   user_id: "user-123"
+   * });
+   * ```
+   */
+  async createInstance(instanceData) {
+    const response = await this.axios.post("/workflow-instances", instanceData);
+    return response.data.data;
+  }
+  /**
+   * Update workflow instance
+   *
+   * @example
+   * ```typescript
+   * const updatedInstance = await authClient.workflow.updateInstance("wf-inst-123", {
+   *   document_title: "ขอซื้อคอมพิวเตอร์ (แก้ไข)",
+   *   priority: "urgent"
+   * });
+   * ```
+   */
+  async updateInstance(instanceId, instanceData) {
+    const response = await this.axios.put(
+      `/workflow-instances/${instanceId}`,
+      instanceData
+    );
+    return response.data.data;
+  }
+  /**
+   * Search workflow instances with pagination and filters
+   *
+   * @example
+   * ```typescript
+   * const result = await authClient.workflow.searchInstances({
+   *   search: "ขอซื้อ",
+   *   page: 1,
+   *   limit: 20,
+   *   sort_by: "created_at",
+   *   sort_order: "desc",
+   *   filters: {
+   *     status: ["running", "pending"],
+   *     priority: ["high", "urgent"]
+   *   }
+   * });
+   *
+   * // Access paginated data
+   * console.log(result.data); // WorkflowInstance[]
+   * console.log(result.pagination.total); // Total count
+   * console.log(result.pagination.has_next); // Has next page
+   * ```
+   */
+  async searchInstances(params) {
+    const response = await this.axios.post(
+      "/workflow-instances/search",
+      params || {}
+    );
+    return response.data;
+  }
+  /**
+   * Get workflow task by ID
+   *
+   * @example
+   * ```typescript
+   * const task = await authClient.workflow.getTask("task-123");
+   * ```
+   */
+  async getTask(taskId) {
+    const response = await this.axios.get(`/workflow-tasks/${taskId}`);
+    return response.data.data;
+  }
+  /**
+   * Get user tasks with pagination and filters
+   *
+   * @example
+   * ```typescript
+   * const result = await authClient.workflow.getUserTasks({
+   *   status: ["assigned", "in_progress"],
+   *   priority: ["high"],
+   *   page: 1,
+   *   limit: 20
+   * });
+   *
+   * // Access paginated data
+   * console.log(result.data); // WorkflowTask[]
+   * console.log(result.pagination.total); // Total count
+   * ```
+   */
+  async getUserTasks(params) {
+    const queryParams = {};
+    if (params?.status) {
+      queryParams.status = params.status.join(",");
+    }
+    if (params?.priority) {
+      queryParams.priority = params.priority.join(",");
+    }
+    if (params?.workflow_instance_id) {
+      queryParams.workflow_instance_id = params.workflow_instance_id;
+    }
+    if (params?.assigned_to) {
+      queryParams.assigned_to = params.assigned_to;
+    }
+    if (params?.page !== void 0) {
+      queryParams.page = params.page.toString();
+    }
+    if (params?.limit !== void 0) {
+      queryParams.limit = params.limit.toString();
+    }
+    if (params?.sort_by) {
+      queryParams.sort_by = params.sort_by;
+    }
+    if (params?.sort_order) {
+      queryParams.sort_order = params.sort_order;
+    }
+    const queryString = new URLSearchParams(queryParams).toString();
+    const url = `/workflow-tasks${queryString ? `?${queryString}` : ""}`;
+    const response = await this.axios.get(url);
+    return response.data;
+  }
+  /**
+   * Perform action on workflow task (approve, reject, delegate, escalate, etc.)
+   *
+   * @example
+   * ```typescript
+   * // Approve task
+   * const result = await authClient.workflow.performTaskAction("task-123", {
+   *   action_key: "approve",
+   *   comments: "อนุมัติตามขั้นตอน"
+   * });
+   *
+   * // Reject task
+   * const result = await authClient.workflow.performTaskAction("task-123", {
+   *   action_key: "reject",
+   *   comments: "ไม่ผ่านตามเงื่อนไข",
+   *   reason: "งบประมาณไม่เพียงพอ"
+   * });
+   *
+   * // Delegate task
+   * const result = await authClient.workflow.performTaskAction("task-123", {
+   *   action_key: "delegate",
+   *   delegate_to_user_id: "user-456",
+   *   comments: "มอบหมายให้ผู้จัดการพิจารณา"
+   * });
+   * ```
+   */
+  async performTaskAction(taskId, actionData) {
+    const response = await this.axios.post(`/workflow-tasks/${taskId}/actions`, actionData);
+    return response.data.data;
+  }
+  /**
+   * Get workflow definition by ID
+   *
+   * @example
+   * ```typescript
+   * const definition = await authClient.workflow.getDefinition("wf-def-123");
+   * ```
+   */
+  async getDefinition(definitionId) {
+    const response = await this.axios.get(`/workflow-definitions/${definitionId}`);
+    return response.data.data;
+  }
+  /**
+   * Search workflow definitions with pagination and filters
+   *
+   * @example
+   * ```typescript
+   * const result = await authClient.workflow.searchDefinitions({
+   *   search: "อนุมัติ",
+   *   page: 1,
+   *   limit: 20,
+   *   filters: {
+   *     status: ["active"]
+   *   }
+   * });
+   *
+   * // Access paginated data
+   * console.log(result.data); // WorkflowDefinition[]
+   * console.log(result.pagination.total); // Total count
+   * ```
+   */
+  async searchDefinitions(params) {
+    const response = await this.axios.post(
+      "/workflow-definitions/search",
+      params || {}
+    );
+    return response.data;
+  }
+};
+
+// src/api/organization.api.ts
+var OrganizationAPI = class {
+  constructor(axios2) {
+    this.axios = axios2;
+  }
+  /**
+   * Search organizations with pagination and filters
+   */
+  async search(params) {
+    const response = await this.axios.post("/organizations/search", params || {});
+    return response.data;
+  }
+  /**
+   * Get organization by ID
+   */
+  async get(id) {
+    const response = await this.axios.get(`/organizations/${id}`);
+    return response.data.data;
+  }
+  /**
+   * Find organization by code
+   *
+   * @description ค้นหาองค์กรด้วย code ที่ unique
+   *
+   * @example
+   * ```typescript
+   * const org = await authClient.organization.findByCode("WIN-CORP");
+   * if (org) {
+   *   console.log(org.name); // "บริษัท วิน คอร์ปอเรชั่น จำกัด"
+   * }
+   * ```
+   */
+  async findByCode(code) {
+    const response = await this.axios.get(`/organizations/code/${code}`);
+    return response.data.data || null;
+  }
+  /**
+   * Create a new organization
+   */
+  async create(data) {
+    const response = await this.axios.post("/organizations", data);
+    return response.data.data;
+  }
+  /**
+   * Bulk create organizations (เร็วกว่า loop create ทีละรายการ)
+   *
+   * @description สร้างองค์กรหลายรายการในครั้งเดียว ต้องเรียง parent ก่อน child
+   * หรือระบุ id ให้ parent เพื่อให้ child อ้างอิง parent_id ได้
+   *
+   * @example
+   * ```typescript
+   * const result = await authClient.organization.bulkCreate({
+   *   organizations: [
+   *     { name: "Group A", code: "GRP-A", type: "group", id: "uuid-1" },
+   *     { name: "Company 1", code: "CO-1", type: "company", parent_id: "uuid-1", id: "uuid-2" },
+   *     { name: "Dept IT", code: "IT", type: "department", parent_id: "uuid-2" },
+   *   ],
+   * });
+   * console.log(result.created); // 3
+   * ```
+   */
+  async bulkCreate(data) {
+    const response = await this.axios.post(
+      "/organizations/bulk-create",
+      data
+    );
+    return response.data.data;
+  }
+  /**
+   * Update organization
+   */
+  async update(id, data) {
+    const response = await this.axios.put(`/organizations/${id}`, data);
+    return response.data.data;
+  }
+  /**
+   * Delete organization
+   */
+  async delete(id) {
+    const response = await this.axios.delete(`/organizations/${id}`);
+    return !!response.data.success;
+  }
+  /**
+   * Get organization users
+   * @param includeDescendants If true, returns users from all descendant organizations recursively
+   */
+  async getUsers(id, includeDescendants = false) {
+    const params = includeDescendants ? { includeDescendants: "true" } : {};
+    const response = await this.axios.get(`/organizations/${id}/users`, { params });
+    return response.data.data || [];
+  }
+  /**
+   * Get ancestors (parent organizations at all levels)
+   */
+  async getAncestors(id, includeRoot = true) {
+    const params = { includeRoot: String(includeRoot) };
+    const response = await this.axios.get(`/organizations/${id}/ancestors`, { params });
+    return response.data.data || [];
+  }
+  /**
+   * Get immediate supervisor/parent organization
+   */
+  async getDirectSupervisor(id) {
+    const response = await this.axios.get(`/organizations/${id}/supervisor`);
+    return response.data.data || null;
+  }
+  /**
+   * Get full path from root to organization
+   */
+  async getPath(id) {
+    const response = await this.axios.get(`/organizations/${id}/path`);
+    return response.data.data || [];
+  }
+  /**
+   * Get reporting line (hierarchical and functional)
+   */
+  async getReportingLine(id) {
+    const response = await this.axios.get(`/organizations/${id}/reporting-line`);
+    return response.data.data;
+  }
+  /**
+   * Get sibling organizations (same parent)
+   */
+  async getSiblings(id, includeSelf = false) {
+    const params = { includeSelf: String(includeSelf) };
+    const response = await this.axios.get(`/organizations/${id}/siblings`, { params });
+    return response.data.data || [];
+  }
+  /**
+   * Get organization level
+   */
+  async getLevel(id) {
+    const response = await this.axios.get(`/organizations/${id}/level`);
+    return response.data.data;
+  }
+  /**
+   * Get lowest common ancestor of two organizations
+   */
+  async getCommonAncestor(orgA, orgB) {
+    const params = { orgA, orgB };
+    const response = await this.axios.get("/organizations/common-ancestor", {
+      params
+    });
+    return response.data.data || null;
+  }
+  /**
+   * Check if an organization is an ancestor of another
+   */
+  async isAncestorOf(ancestorId, descendantId) {
+    const params = { ancestorId, descendantId };
+    const response = await this.axios.get("/organizations/check-ancestor", { params });
+    return !!response.data.data;
+  }
+  // ==========================================================================
+  // Hierarchy Tree
+  // ==========================================================================
+  /**
+   * Get organization hierarchy
+   *
+   * @description ดึง hierarchy tree ขององค์กรทั้งหมด หรือเริ่มจาก root ที่ระบุ
+   *
+   * @param rootId - Optional root organization ID. ถ้าไม่ระบุจะดึง hierarchy ทั้งหมด
+   *
+   * @example
+   * ```typescript
+   * // ดึง hierarchy ทั้งหมด
+   * const hierarchy = await authClient.organization.getHierarchy();
+   *
+   * // ดึง hierarchy จาก root ที่ระบุ
+   * const hierarchy = await authClient.organization.getHierarchy("org-root-123");
+   * ```
+   */
+  async getHierarchy(rootId) {
+    const params = rootId ? { rootId } : {};
+    const response = await this.axios.get("/organizations/hierarchy", { params });
+    return response.data.data || [];
+  }
+  /**
+   * Get organization tree (with departments and positions)
+   *
+   * @description ดึงโครงสร้าง tree ขององค์กร รวม departments, positions และ user assignments
+   *
+   * @example
+   * ```typescript
+   * const tree = await authClient.organization.getTree("org-123");
+   * console.log(tree.children); // departments & positions
+   * console.log(tree.total_users); // จำนวนผู้ใช้ทั้งหมด
+   * ```
+   */
+  async getTree(id) {
+    const response = await this.axios.get(`/organizations/${id}/tree`);
+    return response.data.data;
+  }
+  /**
+   * Get direct children of organization
+   *
+   * @description ดึงองค์กรลูกตรง (direct children) ขององค์กรที่ระบุ
+   *
+   * @example
+   * ```typescript
+   * const children = await authClient.organization.getChildren("org-123");
+   * ```
+   */
+  async getChildren(id) {
+    const response = await this.axios.get(`/organizations/${id}/children`);
+    return response.data.data || [];
+  }
+  /**
+   * Get sub-organizations
+   *
+   * @description ดึง sub-organizations ขององค์กรที่ระบุ
+   *
+   * @example
+   * ```typescript
+   * const subOrgs = await authClient.organization.getSubOrganizations("org-123");
+   * ```
+   */
+  async getSubOrganizations(id) {
+    const response = await this.axios.get(`/organizations/${id}/sub-organizations`);
+    return response.data.data || [];
+  }
+  /**
+   * Get positions under organization
+   *
+   * @description ดึงรายการตำแหน่ง (position nodes) ทั้งหมดภายใต้องค์กรที่ระบุ
+   *
+   * @example
+   * ```typescript
+   * const positions = await authClient.organization.getPositions("org-123");
+   * console.log(positions.map(p => p.name)); // ["Senior Developer", "Team Lead", ...]
+   * ```
+   */
+  async getPositions(id) {
+    const response = await this.axios.get(`/organizations/${id}/positions`);
+    return response.data.data || [];
+  }
+  // ==========================================================================
+  // Status Management
+  // ==========================================================================
+  /**
+   * Activate organization
+   *
+   * @description เปิดใช้งานองค์กร
+   *
+   * @example
+   * ```typescript
+   * await authClient.organization.activate("org-123");
+   * ```
+   */
+  async activate(id) {
+    const response = await this.axios.patch(`/organizations/${id}/activate`);
+    return !!response.data.data;
+  }
+  /**
+   * Deactivate organization
+   *
+   * @description ปิดใช้งานองค์กร
+   *
+   * @example
+   * ```typescript
+   * await authClient.organization.deactivate("org-123");
+   * ```
+   */
+  async deactivate(id) {
+    const response = await this.axios.patch(`/organizations/${id}/deactivate`);
+    return !!response.data.data;
+  }
+  // ==========================================================================
+  // Bulk Operations
+  // ==========================================================================
+  /**
+   * Bulk activate organizations
+   *
+   * @description เปิดใช้งานหลายองค์กรพร้อมกัน
+   *
+   * @example
+   * ```typescript
+   * const result = await authClient.organization.bulkActivate(["org-1", "org-2", "org-3"]);
+   * console.log(result.success_count); // 3
+   * ```
+   */
+  async bulkActivate(ids) {
+    const response = await this.axios.post("/organizations/bulk-activate", {
+      ids
+    });
+    return response.data.data;
+  }
+  /**
+   * Bulk deactivate organizations
+   *
+   * @description ปิดใช้งานหลายองค์กรพร้อมกัน
+   *
+   * @example
+   * ```typescript
+   * const result = await authClient.organization.bulkDeactivate(["org-1", "org-2"]);
+   * console.log(result.success_count); // 2
+   * ```
+   */
+  async bulkDeactivate(ids) {
+    const response = await this.axios.post("/organizations/bulk-deactivate", {
+      ids
+    });
+    return response.data.data;
+  }
+  /**
+   * Bulk delete organizations
+   *
+   * @description ลบหลายองค์กรพร้อมกัน
+   *
+   * @example
+   * ```typescript
+   * const result = await authClient.organization.bulkDelete(["org-1", "org-2"]);
+   * console.log(result.success_count); // 2
+   * ```
+   */
+  async bulkDelete(ids) {
+    const response = await this.axios.post("/organizations/bulk-delete", {
+      ids
+    });
+    return response.data.data;
+  }
+  /**
+   * Clear all organization data
+   *
+   * @description ลบข้อมูลองค์กรทั้งหมด รวมถึง:
+   * - user_position_assignment (เอาข้อมูล position ออกจาก user)
+   * - organization_closure
+   * - organization (company, department, position)
+   * - Nullify organization/position references ใน workflow และ document tables
+   *
+   * รองรับทั้ง JWT และ API Key authentication (สำหรับเรียกจากระบบอื่น)
+   *
+   * @example
+   * ```typescript
+   * const result = await authClient.organization.clearAll();
+   * console.log(result.organizations_deleted); // จำนวนองค์กรที่ลบ
+   * console.log(result.user_position_assignments_deleted); // จำนวน position assignment ที่ลบ
+   * ```
+   */
+  async clearAll() {
+    const response = await this.axios.post("/organizations/clear-all");
+    return response.data.data;
+  }
+  /**
+   * Rebuild all organization data (รวมทุก fix ในครั้งเดียว)
+   *
+   * @description ใช้หลัง clear-all + create เพื่อให้ข้อมูลครบถ้วน:
+   * 1. fix organization_id ตาม hierarchy
+   * 2. reload organization_closure สำหรับทุก company
+   * 3. reload report_to_position
+   *
+   * @example
+   * ```typescript
+   * await authClient.organization.clearAll();
+   * // ... create organizations ...
+   * const result = await authClient.organization.rebuildAll();
+   * console.log(result.organization_ids_fixed, result.closure_companies_processed);
+   * ```
+   */
+  async rebuildAll() {
+    const response = await this.axios.post("/organizations/rebuild-all");
+    return response.data.data;
+  }
+  // ==========================================================================
+  // Hierarchy Operations
+  // ==========================================================================
+  /**
+   * Duplicate organization (copy)
+   *
+   * @description คัดลอกองค์กรและ children ทั้งหมด สร้าง organization ใหม่พร้อม hierarchy fields และ closure records
+   *
+   * @example
+   * ```typescript
+   * const duplicated = await authClient.organization.duplicate("org-123");
+   * console.log(duplicated.id); // new organization ID
+   * ```
+   */
+  async duplicate(id) {
+    const response = await this.axios.post(`/organizations/${id}/duplicate`);
+    return response.data.data;
+  }
+  /**
+   * Move organization to new parent
+   *
+   * @description ย้ายองค์กรไปอยู่ภายใต้ parent ใหม่ อัพเดท hierarchy fields และ closure table อัตโนมัติ
+   * ส่ง `null` เพื่อย้ายไปเป็น root level
+   *
+   * @example
+   * ```typescript
+   * // ย้ายไปอยู่ภายใต้ parent ใหม่
+   * await authClient.organization.move("org-123", { new_parent_id: "org-456" });
+   *
+   * // ย้ายไปเป็น root level
+   * await authClient.organization.move("org-123", { new_parent_id: null });
+   * ```
+   */
+  async move(id, data) {
+    const response = await this.axios.patch(`/organizations/${id}/move`, data);
+    return !!response.data.success;
+  }
+};
+
+// src/api/role.api.ts
+var RoleAPI = class {
+  constructor(axios2) {
+    this.axios = axios2;
+  }
+  // ==========================================================================
+  // CRUD Operations
+  // ==========================================================================
+  /**
+   * Search roles with pagination and filters
+   *
+   * @example
+   * ```typescript
+   * const result = await authClient.role.search({
+   *   search: "Admin",
+   *   page: 1,
+   *   limit: 20,
+   *   sort_by: "created_at",
+   *   sort_order: "desc"
+   * });
+   * ```
+   */
+  async search(params) {
+    const response = await this.axios.post("/roles/search", params || {});
+    return response.data;
+  }
+  /**
+   * Get role by ID
+   *
+   * @example
+   * ```typescript
+   * const role = await authClient.role.get("role-123");
+   * ```
+   */
+  async get(roleId) {
+    const response = await this.axios.get(`/roles/${roleId}`);
+    return response.data.data;
+  }
+  /**
+   * Create a new role
+   *
+   * @example
+   * ```typescript
+   * const newRole = await authClient.role.create({
+   *   name: "ผู้ดูแลระบบ",
+   *   code: "ADMIN",
+   *   description: "บทบาทสำหรับผู้ดูแลระบบ"
+   * });
+   * ```
+   */
+  async create(data) {
+    const response = await this.axios.post("/roles", data);
+    return response.data.data;
+  }
+  /**
+   * Update role
+   *
+   * @example
+   * ```typescript
+   * const updatedRole = await authClient.role.update("role-123", {
+   *   name: "ผู้ดูแลระบบหลัก",
+   *   description: "บทบาทสำหรับผู้ดูแลระบบหลัก"
+   * });
+   * ```
+   */
+  async update(roleId, data) {
+    const response = await this.axios.put(`/roles/${roleId}`, data);
+    return response.data.data;
+  }
+  /**
+   * Clear all roles for current application (hard delete)
+   *
+   * @description ลบบทบาททั้งหมดตาม application_id จาก RequestContext (API key/context)
+   * ใช้สำหรับ migrate - ไม่ใช้ DTO, ดึง application_id จาก context อัตโนมัติ
+   *
+   * @example
+   * ```typescript
+   * const result = await authClient.role.clear();
+   * console.log(result.roles_deleted, result.role_permissions_deleted);
+   * ```
+   */
+  async clear() {
+    const response = await this.axios.post("/roles/clear");
+    return response.data.data;
+  }
+  /**
+   * Delete role
+   *
+   * @example
+   * ```typescript
+   * await authClient.role.delete("role-123");
+   * ```
+   */
+  async delete(roleId) {
+    const response = await this.axios.delete(`/roles/${roleId}`);
+    return !!response.data.success;
+  }
+  // ==========================================================================
+  // Status Management
+  // ==========================================================================
+  /**
+   * Activate role
+   *
+   * @example
+   * ```typescript
+   * await authClient.role.activate("role-123");
+   * ```
+   */
+  async activate(roleId) {
+    const response = await this.axios.patch(`/roles/${roleId}/activate`);
+    return !!response.data.data;
+  }
+  /**
+   * Deactivate role
+   *
+   * @example
+   * ```typescript
+   * await authClient.role.deactivate("role-123");
+   * ```
+   */
+  async deactivate(roleId) {
+    const response = await this.axios.patch(`/roles/${roleId}/deactivate`);
+    return !!response.data.data;
+  }
+  // ==========================================================================
+  // User Assignment
+  // ==========================================================================
+  /**
+   * Get role users
+   *
+   * @description ดึงรายการผู้ใช้ทั้งหมดที่มีบทบาทนี้
+   *
+   * @example
+   * ```typescript
+   * const users = await authClient.role.getUsers("role-123");
+   * console.log(users.map(u => u.email));
+   * ```
+   */
+  async getUsers(roleId) {
+    const response = await this.axios.get(`/roles/${roleId}/users`);
+    return response.data.data || [];
+  }
+  /**
+   * Assign users to role
+   *
+   * @description มอบหมายผู้ใช้ให้บทบาท (เพิ่มเข้าไป ไม่ลบของเดิม)
+   *
+   * @example
+   * ```typescript
+   * await authClient.role.assignUsers("role-123", ["user-001", "user-002"]);
+   * ```
+   */
+  async assignUsers(roleId, userIds) {
+    const response = await this.axios.post(`/roles/${roleId}/users`, {
+      ids: userIds
+    });
+    return !!response.data.success;
+  }
+  /**
+   * Unassign users from role
+   *
+   * @description ยกเลิกผู้ใช้จากบทบาท
+   *
+   * @example
+   * ```typescript
+   * await authClient.role.unassignUsers("role-123", ["user-001"]);
+   * ```
+   */
+  async unassignUsers(roleId, userIds) {
+    const response = await this.axios.delete(`/roles/${roleId}/users`, {
+      data: { ids: userIds }
+    });
+    return !!response.data.success;
+  }
+  // ==========================================================================
+  // Permission Assignment
+  // ==========================================================================
+  /**
+   * Get role permissions
+   *
+   * @description ดึงรายการสิทธิ์ทั้งหมดของบทบาท
+   *
+   * @example
+   * ```typescript
+   * const permissions = await authClient.role.getPermissions("role-123");
+   * ```
+   */
+  async getPermissions(roleId) {
+    const response = await this.axios.get(`/roles/${roleId}/permissions`);
+    return response.data.data || [];
+  }
+  /**
+   * Assign permissions to role
+   *
+   * @description มอบหมายสิทธิ์ให้บทบาท
+   *
+   * @example
+   * ```typescript
+   * await authClient.role.assignPermissions("role-123", ["perm-001", "perm-002"]);
+   * ```
+   */
+  async assignPermissions(roleId, permissionIds) {
+    const response = await this.axios.post(`/roles/${roleId}/permissions`, {
+      ids: permissionIds
+    });
+    return !!response.data.success;
+  }
+  /**
+   * Unassign permissions from role
+   *
+   * @description ยกเลิกสิทธิ์จากบทบาท
+   *
+   * @example
+   * ```typescript
+   * await authClient.role.unassignPermissions("role-123", ["perm-001"]);
+   * ```
+   */
+  async unassignPermissions(roleId, permissionIds) {
+    const response = await this.axios.delete(`/roles/${roleId}/permissions`, {
+      data: { ids: permissionIds }
+    });
+    return !!response.data.success;
+  }
+};
+
+// src/api/permission.api.ts
+var PermissionAPI = class {
+  constructor(axios2) {
+    this.axios = axios2;
+  }
+  /**
+   * Clear all permissions for current application (hard delete)
+   *
+   * @description ลบสิทธิ์ทั้งหมดตาม application_id จาก RequestContext (API key/context)
+   * ใช้สำหรับ migrate - ไม่ใช้ DTO, ดึง application_id จาก context อัตโนมัติ
+   *
+   * @example
+   * ```typescript
+   * const result = await authClient.permission.clear();
+   * console.log(result.permissions_deleted, result.role_permissions_deleted);
+   * ```
+   */
+  async clear() {
+    const response = await this.axios.post("/permissions/clear");
+    return response.data.data;
+  }
+  /**
+   * Search permissions with pagination and filters
+   */
+  async search(params) {
+    const response = await this.axios.post("/permissions/search", params || {});
+    return response.data;
+  }
+  /**
+   * Get permission by ID
+   */
+  async get(id) {
+    const response = await this.axios.get(`/permissions/${id}`);
+    return response.data.data ?? null;
+  }
+  /**
+   * Create a new permission
+   */
+  async create(data) {
+    const response = await this.axios.post("/permissions", data);
+    return response.data.data;
+  }
+  /**
+   * Bulk create permissions ในครั้งเดียว
+   *
+   * @description สร้างสิทธิ์หลายรายการในครั้งเดียว ทุก permission ต้องมี category_id ที่มีอยู่แล้วในระบบ
+   *
+   * @example
+   * ```typescript
+   * const result = await authClient.permission.bulkCreate({
+   *   permissions: [
+   *     { category_id: "cat-uuid", name: "Create", key: "create", description: "..." },
+   *     { category_id: "cat-uuid", name: "Read", key: "read", description: "..." },
+   *   ],
+   * });
+   * console.log(result.created); // 2
+   * ```
+   */
+  async bulkCreate(data) {
+    const response = await this.axios.post("/permissions/bulk-create", data);
+    return response.data.data;
+  }
+  /**
+   * Update permission
+   */
+  async update(id, data) {
+    const response = await this.axios.put(`/permissions/${id}`, data);
+    return response.data.data;
+  }
+  /**
+   * Delete permission
+   */
+  async delete(id) {
+    const response = await this.axios.delete(`/permissions/${id}`);
+    return !!response.data.success;
+  }
+  /**
+   * Activate permission
+   */
+  async activate(id) {
+    const response = await this.axios.patch(`/permissions/${id}/activate`);
+    return !!response.data.data;
+  }
+  /**
+   * Deactivate permission
+   */
+  async deactivate(id) {
+    const response = await this.axios.patch(`/permissions/${id}/deactivate`);
+    return !!response.data.data;
+  }
+};
+
+// src/api/permission-category.api.ts
+var PermissionCategoryAPI = class {
+  constructor(axios2) {
+    this.axios = axios2;
+  }
+  /**
+   * Clear all permission categories for current application (hard delete)
+   *
+   * @description ลบหมวดหมู่สิทธิ์ทั้งหมดตาม application_id จาก RequestContext (API key/context)
+   * ใช้สำหรับ migrate - ไม่ใช้ DTO, ดึง application_id จาก context อัตโนมัติ
+   *
+   * @example
+   * ```typescript
+   * const result = await authClient.permissionCategory.clear();
+   * console.log(result.permission_categories_deleted, result.permissions_deleted);
+   * ```
+   */
+  async clear() {
+    const response = await this.axios.post(
+      "/permission-categories/clear"
+    );
+    return response.data.data;
+  }
+  /**
+   * Search permission categories with pagination and filters
+   */
+  async search(params) {
+    const response = await this.axios.post(
+      "/permission-categories/search",
+      params || {}
+    );
+    return response.data;
+  }
+  /**
+   * Get permission category by ID
+   */
+  async get(id) {
+    const response = await this.axios.get(`/permission-categories/${id}`);
+    return response.data.data;
+  }
+  /**
+   * Create a new permission category (พร้อม permissions ได้)
+   *
+   * @note application_id ไม่ต้องส่งเมื่อเรียกจาก app context - API จะ inject อัตโนมัติ
+   */
+  async create(data) {
+    const response = await this.axios.post("/permission-categories", data);
+    return response.data.data;
+  }
+  /**
+   * Bulk create permission categories พร้อม permissions ในครั้งเดียว
+   *
+   * @description สร้างหมวดหมู่สิทธิ์หลายรายการพร้อม permissions ในครั้งเดียว
+   * ต้องเรียง parent ก่อน child หรือระบุ id ให้ parent เพื่อให้ child อ้างอิง parent_id ได้
+   *
+   * @note application_id ไม่ต้องส่ง - API จะ inject อัตโนมัติจาก API key หรือ RequestContextService
+   *
+   * @example
+   * ```typescript
+   * // เรียกจาก app context (API key) - application_id จะถูก inject อัตโนมัติ
+   * const result = await authClient.permissionCategory.bulkCreate({
+   *   permission_categories: [
+   *     {
+   *       id: "cat-users",
+   *       key: "users",
+   *       name: "User Management",
+   *       resource: "users",
+   *       permissions: [
+   *         { name: "Create User", key: "create", description: "..." },
+   *         { name: "Read User", key: "read", description: "..." },
+   *       ],
+   *     },
+   *     {
+   *       key: "user_profile",
+   *       name: "User Profile",
+   *       parent_id: "cat-users",
+   *       permissions: [{ name: "Edit Profile", key: "edit", description: "..." }],
+   *     },
+   *   ],
+   * });
+   * console.log(result.created); // 2
+   * ```
+   */
+  async bulkCreate(data) {
+    const response = await this.axios.post(
+      "/permission-categories/bulk-create",
+      data
+    );
+    return response.data.data;
+  }
+  /**
+   * Update permission category
+   */
+  async update(id, data) {
+    const response = await this.axios.put(`/permission-categories/${id}`, data);
+    return response.data.data;
+  }
+  /**
+   * Delete permission category
+   */
+  async delete(id) {
+    const response = await this.axios.delete(`/permission-categories/${id}`);
+    return !!response.data.success;
+  }
+};
+
+// src/api/webhook.api.ts
+var WebhookAPI = class {
+  constructor(axios2) {
+    this.axios = axios2;
+  }
+  /**
+   * ส่ง webhook request ผ่าน proxy endpoint
+   *
+   * @description
+   * - ส่ง webhook request ไปยัง external URL ผ่านระบบ proxy
+   * - ระบบจะสร้าง webhook_log และยิง webhook ออกไปให้
+   * - รองรับ retry mechanism อัตโนมัติ
+   * - ส่ง async: true เพื่อยิงทันทีและรับ result (http_status, response_body) ใน response
+   *
+   * @example
+   * ```typescript
+   * // ส่ง webhook request (โหมดปกติ - ได้ webhook_log_id กลับมา แล้วค่อย getStatus ตรวจสอบ)
+   * const result = await authClient.webhook.proxy({
+   *   webhook_url: 'https://api.example.com/webhooks/users',
+   *   event_type: 'user.created',
+   *   payload: {
+   *     data: { id: 'user-123', email: 'user@example.com' },
+   *     object: 'event',
+   *     type: 'user.created'
+   *   },
+   *   headers: { 'Authorization': 'Bearer token' },
+   *   secret: 'webhook-secret',
+   *   timeout_ms: 30000,
+   *   max_retries: 3
+   * });
+   * console.log('Webhook Log ID:', result.webhook_log_id);
+   *
+   * // โหมด async: true - ยิงทันทีและได้ result กลับใน response (ไม่ต้อง getStatus)
+   * const resultAsync = await authClient.webhook.proxy({
+   *   webhook_url: 'https://api.example.com/webhooks/users',
+   *   event_type: 'user.created',
+   *   payload: { data: { id: 'user-123' }, object: 'event', type: 'user.created' },
+   *   async: true
+   * });
+   * if (resultAsync.status === 'success') {
+   *   console.log('HTTP Status:', resultAsync.http_status);
+   *   console.log('Response Body:', resultAsync.response_body);
+   *   console.log('Execution Time:', resultAsync.execution_time_ms, 'ms');
+   * } else {
+   *   console.error('Failed:', resultAsync.error_message);
+   * }
+   * ```
+   */
+  async proxy(request) {
+    const response = await this.axios.post("/webhook-proxy", request);
+    return response.data.data;
+  }
+  /**
+   * ดึง webhook log detail ตาม ID
+   *
+   * @description
+   * - ดึงข้อมูล webhook log ตาม ID ที่ส่งกลับมาจาก proxy()
+   * - แสดง status, response, error message, และข้อมูลอื่นๆ
+   * - สามารถดึงได้เฉพาะ webhook logs ของ application ที่ authenticate อยู่เท่านั้น
+   *
+   * @example
+   * ```typescript
+   * // ดึง webhook log detail
+   * const log = await authClient.webhook.getStatus('log-123e4567-e89b-12d3-a456-426614174000');
+   *
+   * console.log('Status:', log.status); // 'success', 'failed', 'pending', 'retrying'
+   * console.log('HTTP Status:', log.http_status); // 200, 404, 500, etc.
+   * console.log('Response Body:', log.response_body);
+   * console.log('Error:', log.error_message);
+   * console.log('Execution Time:', log.execution_time_ms, 'ms');
+   * console.log('Retry Count:', log.retry_count);
+   *
+   * // ตรวจสอบว่า webhook สำเร็จหรือไม่
+   * if (log.status === 'success') {
+   *   console.log('Webhook delivered successfully!');
+   * } else if (log.status === 'failed') {
+   *   console.error('Webhook failed:', log.error_message);
+   * }
+   * ```
+   */
+  async getStatus(webhookLogId) {
+    const response = await this.axios.get(`/webhook-proxy/${webhookLogId}`);
+    return response.data.data;
+  }
+};
+
+// src/portal-api-client.ts
+var PortalApiClient = class {
+  constructor(config) {
+    this.axios = import_axios.default.create({
+      baseURL: config.apiUrl,
+      timeout: config.timeout ?? 3e4,
+      withCredentials: true
+    });
+    this.axios.interceptors.request.use((cfg) => {
+      const token = config.getToken();
+      if (token) cfg.headers.Authorization = `Bearer ${token}`;
+      if (config.apiKey) cfg.headers["X-API-Key"] = config.apiKey;
+      return cfg;
+    });
+    this.email = new EmailAPI(this.axios);
+    this.eventLog = new EventLogApi(this.axios);
+    this.files = new FilesAPI(this.axios);
+    this.health = new HealthAPI(this.axios);
+    this.line = new LineAPI(this.axios);
+    this.organization = new OrganizationAPI(this.axios);
+    this.otp = new OtpAPI(this.axios);
+    this.permission = new PermissionAPI(this.axios);
+    this.permissionCategory = new PermissionCategoryAPI(this.axios);
+    this.role = new RoleAPI(this.axios);
+    this.systemConfig = new SystemConfigAPI(this.axios);
+    this.todo = new TodoAPI(this.axios);
+    this.user = new UserAPI(this.axios);
+    this.webhook = new WebhookAPI(this.axios);
+    this.workflow = new WorkflowAPI(this.axios);
+  }
+  get(url, config) {
+    return this.axios.get(url, config);
+  }
+  post(url, data, config) {
+    return this.axios.post(url, data, config);
+  }
+  put(url, data, config) {
+    return this.axios.put(url, data, config);
+  }
+  patch(url, data, config) {
+    return this.axios.patch(url, data, config);
+  }
+  delete(url, config) {
+    return this.axios.delete(url, config);
+  }
+};
+
+// ../../shared/src/enums/common.enums.ts
+var OrganizationType = /* @__PURE__ */ ((OrganizationType2) => {
+  OrganizationType2["GROUP"] = "group";
+  OrganizationType2["COMPANY"] = "company";
+  OrganizationType2["BRANCH"] = "branch";
+  OrganizationType2["DIVISION"] = "division";
+  OrganizationType2["DEPARTMENT"] = "department";
+  OrganizationType2["SECTION"] = "section";
+  OrganizationType2["TEAM"] = "team";
+  OrganizationType2["POSITION"] = "position";
+  return OrganizationType2;
+})(OrganizationType || {});
+
+// ../../shared/src/enums/event-log.enums.ts
+var EventSeverity = /* @__PURE__ */ ((EventSeverity2) => {
+  EventSeverity2["DEBUG"] = "debug";
+  EventSeverity2["INFO"] = "info";
+  EventSeverity2["WARNING"] = "warning";
+  EventSeverity2["ERROR"] = "error";
+  EventSeverity2["CRITICAL"] = "critical";
+  return EventSeverity2;
+})(EventSeverity || {});
+var EventOutcome = /* @__PURE__ */ ((EventOutcome2) => {
+  EventOutcome2["SUCCESS"] = "success";
+  EventOutcome2["FAILURE"] = "failure";
+  EventOutcome2["PARTIAL"] = "partial";
+  EventOutcome2["UNKNOWN"] = "unknown";
+  return EventOutcome2;
+})(EventOutcome || {});
+var EventCategory = /* @__PURE__ */ ((EventCategory2) => {
+  EventCategory2["AUTHENTICATION"] = "authentication";
+  EventCategory2["AUTHORIZATION"] = "authorization";
+  EventCategory2["DATA_ACCESS"] = "data_access";
+  EventCategory2["SECURITY"] = "security";
+  EventCategory2["BUSINESS"] = "business";
+  EventCategory2["TECHNICAL"] = "technical";
+  EventCategory2["COMPLIANCE"] = "compliance";
+  EventCategory2["ISO27001_AUDIT"] = "iso27001_audit";
+  return EventCategory2;
+})(EventCategory || {});
+var EventRiskLevel = /* @__PURE__ */ ((EventRiskLevel2) => {
+  EventRiskLevel2["NONE"] = "none";
+  EventRiskLevel2["LOW"] = "low";
+  EventRiskLevel2["MEDIUM"] = "medium";
+  EventRiskLevel2["HIGH"] = "high";
+  EventRiskLevel2["CRITICAL"] = "critical";
+  return EventRiskLevel2;
+})(EventRiskLevel || {});
+var ActorType = /* @__PURE__ */ ((ActorType2) => {
+  ActorType2["USER"] = "user";
+  ActorType2["SYSTEM"] = "system";
+  ActorType2["SERVICE"] = "service";
+  ActorType2["API_CLIENT"] = "api_client";
+  ActorType2["SCHEDULER"] = "scheduler";
+  ActorType2["WEBHOOK"] = "webhook";
+  return ActorType2;
+})(ActorType || {});
+
+// ../../shared/src/enums/todo.enums.ts
+var TodoPriority = /* @__PURE__ */ ((TodoPriority2) => {
+  TodoPriority2["LOW"] = "low";
+  TodoPriority2["NORMAL"] = "normal";
+  TodoPriority2["HIGH"] = "high";
+  return TodoPriority2;
+})(TodoPriority || {});
+// Annotate the CommonJS export names for ESM import in node:
+0 && (module.exports = {
+  ActorType,
+  EmailAPI,
+  EventCategory,
+  EventLogApi,
+  EventOutcome,
+  EventRiskLevel,
+  EventSeverity,
+  FilesAPI,
+  HealthAPI,
+  LineAPI,
+  OrganizationAPI,
+  OrganizationType,
+  OtpAPI,
+  PermissionAPI,
+  PermissionCategoryAPI,
+  PortalApiClient,
+  RoleAPI,
+  SystemConfigAPI,
+  TodoAPI,
+  TodoPriority,
+  UserAPI,
+  WebhookAPI,
+  WorkflowAPI
+});
+//# sourceMappingURL=index.js.map