npm - @witnium-tech/witniumchain - Versions diffs - 0.6.2 → 0.8.0 - Mend

@witnium-tech/witniumchain 0.6.2 → 0.8.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (7) hide show

package/dist/index.js CHANGED Viewed

@@ -121,6 +121,8 @@ var WitniumchainClient = class {
   oauth;
   /** MFA self-management. Accessed as `client.mfa.totp.*` and `client.mfa.recoveryCodes.*`. */
   mfa;
+  /** Session-cookie team management (org-admin only). `client.orgUsers.*`. */
+  orgUsers;
   constructor(config) {
     if (!config.baseUrl) {
       throw new Error("WitniumchainClient: baseUrl is required");
@@ -129,12 +131,13 @@ var WitniumchainClient = class {
     this.baseUrl = config.baseUrl.replace(/\/$/, "");
     this.chainBaseUrl = config.chainBaseUrl?.replace(/\/$/, "");
     this.timeout = config.timeout ?? 3e4;
-    this.fetchImpl = config.fetch ?? globalThis.fetch;
-    if (!this.fetchImpl) {
+    const resolvedFetch = config.fetch ?? (globalThis.fetch ? globalThis.fetch.bind(globalThis) : void 0);
+    if (!resolvedFetch) {
       throw new Error(
         "WitniumchainClient: no fetch implementation available. Pass `config.fetch`."
       );
     }
+    this.fetchImpl = resolvedFetch;
     this.accessToken = config.accessToken;
     this.oauthClientId = config.oauthClientId;
     this.verifierStorage = config.verifierStorage;
@@ -143,6 +146,7 @@ var WitniumchainClient = class {
     this.keys = new SigningKeys(this);
     this.oauth = new OauthNamespace(this);
     this.mfa = new MfaNamespace(this);
+    this.orgUsers = new OrgMembers(this);
   }
   /**
    * Convenience alias for {@link getAccount} — returns the authenticated
@@ -170,6 +174,53 @@ var WitniumchainClient = class {
   createOrg(body) {
     return this.req("POST", "/v1/orgs", { auth: "Public", body });
   }
+  // ── Team management (session-cookie; org-admin only) ──────────────────────
+  // Backing methods for the `orgUsers` namespace. All resolve the caller's
+  // org + org-admin role server-side from the session — no orgId in the path.
+  listMembers() {
+    return this.req("GET", "/v1/orgs/me/members", { auth: "SessionCookie" });
+  }
+  inviteMember(body) {
+    return this.req("POST", "/v1/orgs/me/members/invite", {
+      auth: "SessionCookie",
+      body
+    });
+  }
+  suspendMember(userId) {
+    return this.req(
+      "POST",
+      `/v1/orgs/me/members/${encodeURIComponent(userId)}/suspend`,
+      { auth: "SessionCookie" }
+    );
+  }
+  unsuspendMember(userId) {
+    return this.req(
+      "POST",
+      `/v1/orgs/me/members/${encodeURIComponent(userId)}/unsuspend`,
+      { auth: "SessionCookie" }
+    );
+  }
+  setMemberRole(userId, body) {
+    return this.req(
+      "PUT",
+      `/v1/orgs/me/members/${encodeURIComponent(userId)}/role`,
+      { auth: "SessionCookie", body }
+    );
+  }
+  removeMember(userId) {
+    return this.req(
+      "DELETE",
+      `/v1/orgs/me/members/${encodeURIComponent(userId)}`,
+      { auth: "SessionCookie" }
+    );
+  }
+  resendMemberInvite(userId) {
+    return this.req(
+      "POST",
+      `/v1/orgs/me/members/${encodeURIComponent(userId)}/resend-invite`,
+      { auth: "SessionCookie" }
+    );
+  }
   verifyEmail(token) {
     return this.req("GET", "/v1/auth/verify", {
       auth: "Public",
@@ -1242,6 +1293,40 @@ var MfaNamespace = class {
     this.recoveryCodes = new MfaRecoveryCodes(client);
   }
 };
+var OrgMembers = class {
+  constructor(client) {
+    this.client = client;
+  }
+  client;
+  /** List the caller's org members (role, suspendedAt, isOwner, keys). */
+  list() {
+    return this.client.listMembers();
+  }
+  /** Invite a member by email (default role `member`). */
+  invite(body) {
+    return this.client.inviteMember(body);
+  }
+  /** Suspend a member (reversible). The owner cannot be suspended. */
+  suspend(userId) {
+    return this.client.suspendMember(userId);
+  }
+  /** Lift a member's suspension. */
+  unsuspend(userId) {
+    return this.client.unsuspendMember(userId);
+  }
+  /** Set a member's role. Refuses to demote the owner. */
+  setRole(userId, role) {
+    return this.client.setMemberRole(userId, { role });
+  }
+  /** Remove a member (terminal; revokes their delegated keys). Owner protected. */
+  remove(userId) {
+    return this.client.removeMember(userId);
+  }
+  /** Re-mint an email-verify token for a pending member. */
+  resendInvite(userId) {
+    return this.client.resendMemberInvite(userId);
+  }
+};
 var MfaTotp = class {
   constructor(client) {
     this.client = client;
@@ -1394,7 +1479,7 @@ var WitniumchainChainAdminClient = class {
     this.adminToken = config.adminToken;
     this.adminTokenProvider = config.adminTokenProvider;
     this.timeout = config.timeout ?? 3e4;
-    this.fetchImpl = config.fetch ?? globalThis.fetch;
+    this.fetchImpl = config.fetch ?? globalThis.fetch.bind(globalThis);
   }
   async deployContract(body) {
     return this.req("POST", "/v5/contracts/deploy", body);
@@ -1515,12 +1600,58 @@ var OrgUsers = class {
   }
 };
+// src/owner-ops.ts
+var OWNER_OP = {
+  addSigningKey: 1,
+  revokeSigningKey: 2,
+  pause: 3,
+  unpause: 4
+};
+function build(op, contractAddress, nonce, payload = {}) {
+  if (!/^0x[0-9a-fA-F]{40}$/.test(contractAddress)) {
+    throw new Error("contractAddress must be 0x + 40 hex chars");
+  }
+  if (!Number.isInteger(nonce) || nonce < 0) {
+    throw new Error("nonce must be a non-negative integer");
+  }
+  return JSON.stringify({
+    op,
+    contract: contractAddress.toLowerCase(),
+    nonce,
+    ...payload
+  });
+}
+function buildPausePayload(args) {
+  return build(OWNER_OP.pause, args.contractAddress, args.nonce);
+}
+function buildUnpausePayload(args) {
+  return build(OWNER_OP.unpause, args.contractAddress, args.nonce);
+}
+function buildAddSigningKeyPayload(args) {
+  if (!/^[0-9a-fA-F]{64}$/.test(args.newKey)) {
+    throw new Error("newKey must be 64 hex chars (no 0x)");
+  }
+  return build(OWNER_OP.addSigningKey, args.contractAddress, args.nonce, {
+    newKey: args.newKey
+  });
+}
+function buildRevokeSigningKeyPayload(args) {
+  if (!/^[0-9a-fA-F]{64}$/.test(args.key)) {
+    throw new Error("key must be 64 hex chars (no 0x)");
+  }
+  return build(OWNER_OP.revokeSigningKey, args.contractAddress, args.nonce, {
+    key: args.key
+  });
+}
 exports.DelegatedKeys = DelegatedKeys;
 exports.MfaNamespace = MfaNamespace;
 exports.MfaRecoveryCodes = MfaRecoveryCodes;
 exports.MfaTotp = MfaTotp;
+exports.OWNER_OP = OWNER_OP;
 exports.OauthNamespace = OauthNamespace;
 exports.OauthSessions = OauthSessions;
+exports.OrgMembers = OrgMembers;
 exports.OrgUsers = OrgUsers;
 exports.SigningKeys = SigningKeys;
 exports.Subscriptions = Subscriptions;
@@ -1529,6 +1660,10 @@ exports.WitniumchainApiError = WitniumchainApiError;
 exports.WitniumchainChainAdminClient = WitniumchainChainAdminClient;
 exports.WitniumchainClient = WitniumchainClient;
 exports.WitniumchainOrgClient = WitniumchainOrgClient;
+exports.buildAddSigningKeyPayload = buildAddSigningKeyPayload;
+exports.buildPausePayload = buildPausePayload;
+exports.buildRevokeSigningKeyPayload = buildRevokeSigningKeyPayload;
+exports.buildUnpausePayload = buildUnpausePayload;
 exports.defaultVerifierStorage = defaultVerifierStorage;
 //# sourceMappingURL=index.js.map
 //# sourceMappingURL=index.js.map