@workos-inc/node 7.60.0 → 7.62.0

package/lib/common/exceptions/parse-error.d.ts

@@ -0,0 +1,8 @@
+import { RequestException } from '../interfaces/request-exception.interface';
+export declare class ParseError extends Error implements RequestException {
+    readonly name = "ParseError";
+    readonly status = 500;
+    readonly rawBody: string;
+    readonly requestID: string;
+    constructor(message: string, rawBody: string, requestID: string);
+}

package/lib/common/exceptions/parse-error.js

@@ -0,0 +1,13 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.ParseError = void 0;
+class ParseError extends Error {
+    constructor(message, rawBody, requestID) {
+        super(message);
+        this.name = 'ParseError';
+        this.status = 500;
+        this.rawBody = rawBody;
+        this.requestID = requestID;
+    }
+}
+exports.ParseError = ParseError;

package/lib/user-management/fixtures/list-sessions.json

@@ -0,0 +1,22 @@
+{
+    "object": "list",
+    "data": [
+        {
+            "object": "session",
+            "id": "session_01K0T5TNC755C7FGRQFJRS4QK5",
+            "user_agent": "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36",
+            "ip_address": "192.168.65.1",
+            "user_id": "user_01K0T5T62NBSETXQD3NVGEA2RN",
+            "auth_method": "oauth",
+            "status": "active",
+            "expires_at": "2026-07-22T22:59:48.743Z",
+            "ended_at": null,
+            "created_at": "2025-07-23T04:59:48.738Z",
+            "updated_at": "2025-07-23T04:59:48.738Z"
+        }
+    ],
+    "list_metadata": {
+        "before": null,
+        "after": null
+    }
+}

package/lib/user-management/interfaces/index.d.ts

@@ -25,6 +25,7 @@ export * from './invitation.interface';
 export * from './list-auth-factors-options.interface';
 export * from './list-invitations-options.interface';
 export * from './list-organization-memberships-options.interface';
+export * from './list-sessions-options.interface';
 export * from './list-users-options.interface';
 export * from './magic-auth.interface';
 export * from './oauth-tokens.interface';

package/lib/user-management/interfaces/index.js

@@ -41,6 +41,7 @@ __exportStar(require("./invitation.interface"), exports);
 __exportStar(require("./list-auth-factors-options.interface"), exports);
 __exportStar(require("./list-invitations-options.interface"), exports);
 __exportStar(require("./list-organization-memberships-options.interface"), exports);
+__exportStar(require("./list-sessions-options.interface"), exports);
 __exportStar(require("./list-users-options.interface"), exports);
 __exportStar(require("./magic-auth.interface"), exports);
 __exportStar(require("./oauth-tokens.interface"), exports);

package/lib/user-management/interfaces/list-sessions-options.interface.d.ts

@@ -0,0 +1,5 @@
+import { PaginationOptions } from '../../common/interfaces/pagination-options.interface';
+export interface ListSessionsOptions extends PaginationOptions {
+}
+export interface SerializedListSessionsOptions extends PaginationOptions {
+}

package/lib/user-management/interfaces/list-sessions-options.interface.js

@@ -0,0 +1,2 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });

package/lib/user-management/interfaces/session.interface.d.ts

@@ -1,4 +1,6 @@
 import { Impersonator } from './impersonator.interface';
+export type AuthMethod = 'external_auth' | 'impersonation' | 'magic_code' | 'migrated_session' | 'oauth' | 'passkey' | 'password' | 'sso' | 'unknown';
+export type SessionStatus = 'active' | 'expired' | 'revoked';
 export interface Session {
     object: 'session';
     id: string;
@@ -7,6 +9,12 @@ export interface Session {
     userAgent: string | null;
     organizationId?: string;
     impersonator?: Impersonator;
+    authMethod: AuthMethod;
+    status: SessionStatus;
+    expiresAt: string;
+    endedAt: string | null;
+    createdAt: string;
+    updatedAt: string;
 }
 export interface SessionResponse {
     object: 'session';
@@ -16,4 +24,10 @@ export interface SessionResponse {
     user_agent: string | null;
     organization_id?: string;
     impersonator?: Impersonator;
+    auth_method: AuthMethod;
+    status: SessionStatus;
+    expires_at: string;
+    ended_at: string | null;
+    created_at: string;
+    updated_at: string;
 }

package/lib/user-management/serializers/index.d.ts

@@ -12,10 +12,12 @@ export * from './email-verification.serializer';
 export * from './enroll-auth-factor-options.serializer';
 export * from './factor.serializer';
 export * from './invitation.serializer';
+export * from './list-sessions-options.serializer';
 export * from './magic-auth.serializer';
 export * from './password-reset.serializer';
 export * from './reset-password-options.serializer';
 export * from './send-password-reset-email.serializer';
+export * from './session.serializer';
 export * from './create-user-options.serializer';
 export * from './send-magic-auth-code-options.serializer';
 export * from './update-user-options.serializer';

package/lib/user-management/serializers/index.js

@@ -28,10 +28,12 @@ __exportStar(require("./email-verification.serializer"), exports);
 __exportStar(require("./enroll-auth-factor-options.serializer"), exports);
 __exportStar(require("./factor.serializer"), exports);
 __exportStar(require("./invitation.serializer"), exports);
+__exportStar(require("./list-sessions-options.serializer"), exports);
 __exportStar(require("./magic-auth.serializer"), exports);
 __exportStar(require("./password-reset.serializer"), exports);
 __exportStar(require("./reset-password-options.serializer"), exports);
 __exportStar(require("./send-password-reset-email.serializer"), exports);
+__exportStar(require("./session.serializer"), exports);
 __exportStar(require("./create-user-options.serializer"), exports);
 __exportStar(require("./send-magic-auth-code-options.serializer"), exports);
 __exportStar(require("./update-user-options.serializer"), exports);

package/lib/user-management/serializers/list-sessions-options.serializer.d.ts

@@ -0,0 +1,2 @@
+import { ListSessionsOptions, SerializedListSessionsOptions } from '../interfaces/list-sessions-options.interface';
+export declare const serializeListSessionsOptions: (options: ListSessionsOptions) => SerializedListSessionsOptions;

package/lib/user-management/serializers/list-sessions-options.serializer.js

@@ -0,0 +1,5 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.serializeListSessionsOptions = void 0;
+const serializeListSessionsOptions = (options) => (Object.assign({}, options));
+exports.serializeListSessionsOptions = serializeListSessionsOptions;

package/lib/user-management/serializers/session.serializer.js

@@ -9,5 +9,11 @@ const deserializeSession = (session) => ({
     userAgent: session.user_agent,
     organizationId: session.organization_id,
     impersonator: session.impersonator,
+    authMethod: session.auth_method,
+    status: session.status,
+    expiresAt: session.expires_at,
+    endedAt: session.ended_at,
+    createdAt: session.created_at,
+    updatedAt: session.updated_at,
 });
 exports.deserializeSession = deserializeSession;

package/lib/user-management/session.d.ts

@@ -4,7 +4,7 @@ type RefreshOptions = {
     cookiePassword?: string;
     organizationId?: string;
 };
-export declare class Session {
+export declare class CookieSession {
     private jwks;
     private userManagement;
     private ironSessionProvider;

package/lib/user-management/session.js

@@ -9,11 +9,11 @@ var __awaiter = (this && this.__awaiter) || function (thisArg, _arguments, P, ge
     });
 };
 Object.defineProperty(exports, "__esModule", { value: true });
-exports.Session = void 0;
+exports.CookieSession = void 0;
 const jose_1 = require("jose");
 const oauth_exception_1 = require("../common/exceptions/oauth.exception");
 const interfaces_1 = require("./interfaces");
-class Session {
+class CookieSession {
     constructor(userManagement, sessionData, cookiePassword) {
         if (!cookiePassword) {
             throw new Error('cookiePassword is required');
@@ -180,4 +180,4 @@ class Session {
         });
     }
 }
-exports.Session = Session;
+exports.CookieSession = CookieSession;

package/lib/user-management/session.spec.js

@@ -64,7 +64,7 @@ describe('Session', () => {
                 sessionData: 'sessionData',
                 cookiePassword: 'cookiePassword',
             });
-            expect(session).toBeInstanceOf(session_1.Session);
+            expect(session).toBeInstanceOf(session_1.CookieSession);
         });
     });
     describe('authenticate', () => {

package/lib/user-management/user-management.d.ts

@@ -3,7 +3,7 @@ import { IronSessionProvider } from '../common/iron-session/iron-session-provide
 import { AutoPaginatable } from '../common/utils/pagination';
 import { Challenge } from '../mfa/interfaces';
 import { WorkOS } from '../workos';
-import { AuthenticateWithCodeOptions, AuthenticateWithCodeAndVerifierOptions, AuthenticateWithMagicAuthOptions, AuthenticateWithPasswordOptions, AuthenticateWithRefreshTokenOptions, AuthenticateWithTotpOptions, AuthenticationResponse, CreateMagicAuthOptions, CreatePasswordResetOptions, CreateUserOptions, EmailVerification, EnrollAuthFactorOptions, ListAuthFactorsOptions, ListUsersOptions, MagicAuth, PasswordReset, ResetPasswordOptions, SendMagicAuthCodeOptions, SendPasswordResetEmailOptions, SendVerificationEmailOptions, UpdateUserOptions, User, VerifyEmailOptions } from './interfaces';
+import { AuthenticateWithCodeOptions, AuthenticateWithCodeAndVerifierOptions, AuthenticateWithMagicAuthOptions, AuthenticateWithPasswordOptions, AuthenticateWithRefreshTokenOptions, AuthenticateWithTotpOptions, AuthenticationResponse, CreateMagicAuthOptions, CreatePasswordResetOptions, CreateUserOptions, EmailVerification, EnrollAuthFactorOptions, ListAuthFactorsOptions, ListSessionsOptions, ListUsersOptions, MagicAuth, PasswordReset, ResetPasswordOptions, SendMagicAuthCodeOptions, SendPasswordResetEmailOptions, SendVerificationEmailOptions, Session, UpdateUserOptions, User, VerifyEmailOptions } from './interfaces';
 import { AuthenticateWithEmailVerificationOptions } from './interfaces/authenticate-with-email-verification-options.interface';
 import { AuthenticateWithOrganizationSelectionOptions } from './interfaces/authenticate-with-organization-selection.interface';
 import { AuthenticateWithSessionCookieFailedResponse, AuthenticateWithSessionCookieOptions, AuthenticateWithSessionCookieSuccessResponse, SessionCookieData } from './interfaces/authenticate-with-session-cookie.interface';
@@ -20,7 +20,7 @@ import { RevokeSessionOptions } from './interfaces/revoke-session-options.interf
 import { SendInvitationOptions } from './interfaces/send-invitation-options.interface';
 import { SessionHandlerOptions } from './interfaces/session-handler-options.interface';
 import { UpdateOrganizationMembershipOptions } from './interfaces/update-organization-membership-options.interface';
-import { Session } from './session';
+import { CookieSession } from './session';
 export declare class UserManagement {
     private readonly workos;
     private _jwks;
@@ -39,7 +39,7 @@ export declare class UserManagement {
     loadSealedSession(options: {
         sessionData: string;
         cookiePassword: string;
-    }): Session;
+    }): CookieSession;
     getUser(userId: string): Promise<User>;
     getUserByExternalId(externalId: string): Promise<User>;
     listUsers(options?: ListUsersOptions): Promise<AutoPaginatable<User>>;
@@ -91,6 +91,7 @@ export declare class UserManagement {
         authenticationChallenge: Challenge;
     }>;
     listAuthFactors(options: ListAuthFactorsOptions): Promise<AutoPaginatable<Factor>>;
+    listSessions(userId: string, options?: ListSessionsOptions): Promise<AutoPaginatable<Session>>;
     deleteUser(userId: string): Promise<void>;
     getUserIdentities(userId: string): Promise<Identity[]>;
     getOrganizationMembership(organizationMembershipId: string): Promise<OrganizationMembership>;

package/lib/user-management/user-management.js

@@ -83,7 +83,7 @@ class UserManagement {
      * @returns The session class.
      */
     loadSealedSession(options) {
-        return new session_1.Session(this, options.sessionData, options.cookiePassword);
+        return new session_1.CookieSession(this, options.sessionData, options.cookiePassword);
     }
     getUser(userId) {
         return __awaiter(this, void 0, void 0, function* () {
@@ -434,6 +434,11 @@ class UserManagement {
             return new pagination_1.AutoPaginatable(yield (0, fetch_and_deserialize_1.fetchAndDeserialize)(this.workos, `/user_management/users/${userId}/auth_factors`, factor_serializer_1.deserializeFactor, restOfOptions), (params) => (0, fetch_and_deserialize_1.fetchAndDeserialize)(this.workos, `/user_management/users/${userId}/auth_factors`, factor_serializer_1.deserializeFactor, params), restOfOptions);
         });
     }
+    listSessions(userId, options) {
+        return __awaiter(this, void 0, void 0, function* () {
+            return new pagination_1.AutoPaginatable(yield (0, fetch_and_deserialize_1.fetchAndDeserialize)(this.workos, `/user_management/users/${userId}/sessions`, serializers_2.deserializeSession, options ? (0, serializers_2.serializeListSessionsOptions)(options) : undefined), (params) => (0, fetch_and_deserialize_1.fetchAndDeserialize)(this.workos, `/user_management/users/${userId}/sessions`, serializers_2.deserializeSession, params), options ? (0, serializers_2.serializeListSessionsOptions)(options) : undefined);
+        });
+    }
     deleteUser(userId) {
         return __awaiter(this, void 0, void 0, function* () {
             yield this.workos.delete(`/user_management/users/${userId}`);

package/lib/user-management/user-management.spec.js

@@ -44,6 +44,7 @@ const invitation_json_1 = __importDefault(require("./fixtures/invitation.json"))
 const list_factors_json_1 = __importDefault(require("./fixtures/list-factors.json"));
 const list_invitations_json_1 = __importDefault(require("./fixtures/list-invitations.json"));
 const list_organization_memberships_json_1 = __importDefault(require("./fixtures/list-organization-memberships.json"));
+const list_sessions_json_1 = __importDefault(require("./fixtures/list-sessions.json"));
 const list_users_json_1 = __importDefault(require("./fixtures/list-users.json"));
 const magic_auth_json_1 = __importDefault(require("./fixtures/magic_auth.json"));
 const organization_membership_json_1 = __importDefault(require("./fixtures/organization-membership.json"));
@@ -1297,6 +1298,35 @@ describe('UserManagement', () => {
             });
         }));
     });
+    describe('listSessions', () => {
+        it('sends a listSessions request', () => __awaiter(void 0, void 0, void 0, function* () {
+            (0, test_utils_1.fetchOnce)(list_sessions_json_1.default);
+            const resp = yield workos.userManagement.listSessions(userId);
+            expect((0, test_utils_1.fetchURL)()).toContain(`/user_management/users/${userId}/sessions`);
+            expect(resp).toMatchObject({
+                object: 'list',
+                data: [
+                    {
+                        object: 'session',
+                        id: 'session_01K0T5TNC755C7FGRQFJRS4QK5',
+                        userId: 'user_01K0T5T62NBSETXQD3NVGEA2RN',
+                        userAgent: 'Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36',
+                        ipAddress: '192.168.65.1',
+                        authMethod: 'oauth',
+                        status: 'active',
+                        expiresAt: '2026-07-22T22:59:48.743Z',
+                        endedAt: null,
+                        createdAt: '2025-07-23T04:59:48.738Z',
+                        updatedAt: '2025-07-23T04:59:48.738Z',
+                    },
+                ],
+                listMetadata: {
+                    before: null,
+                    after: null,
+                },
+            });
+        }));
+    });
     describe('deleteUser', () => {
         it('sends a deleteUser request', () => __awaiter(void 0, void 0, void 0, function* () {
             (0, test_utils_1.fetchOnce)();

package/lib/workos.d.ts

@@ -56,5 +56,6 @@ export declare class WorkOS {
     }>;
     delete(path: string, query?: any): Promise<void>;
     emitWarning(warning: string): void;
+    private handleParseError;
     private handleHttpError;
 }

package/lib/workos.js

@@ -31,7 +31,8 @@ const widgets_1 = require("./widgets/widgets");
 const actions_1 = require("./actions/actions");
 const vault_1 = require("./vault/vault");
 const conflict_exception_1 = require("./common/exceptions/conflict.exception");
-const VERSION = '7.60.0';
+const parse_error_1 = require("./common/exceptions/parse-error");
+const VERSION = '7.62.0';
 const DEFAULT_HOSTNAME = 'api.workos.com';
 const HEADER_AUTHORIZATION = 'Authorization';
 const HEADER_IDEMPOTENCY_KEY = 'Idempotency-Key';
@@ -115,17 +116,24 @@ class WorkOS {
             if (options.warrantToken) {
                 requestHeaders[HEADER_WARRANT_TOKEN] = options.warrantToken;
             }
+            let res;
             try {
-                const res = yield this.client.post(path, entity, {
+                res = yield this.client.post(path, entity, {
                     params: options.query,
                     headers: requestHeaders,
                 });
-                return { data: yield res.toJSON() };
             }
             catch (error) {
                 this.handleHttpError({ path, error });
                 throw error;
             }
+            try {
+                return { data: yield res.toJSON() };
+            }
+            catch (error) {
+                yield this.handleParseError(error, res);
+                throw error;
+            }
         });
     }
     get(path, options = {}) {
@@ -137,17 +145,24 @@ class WorkOS {
             if (options.warrantToken) {
                 requestHeaders[HEADER_WARRANT_TOKEN] = options.warrantToken;
             }
+            let res;
             try {
-                const res = yield this.client.get(path, {
+                res = yield this.client.get(path, {
                     params: options.query,
                     headers: requestHeaders,
                 });
-                return { data: yield res.toJSON() };
             }
             catch (error) {
                 this.handleHttpError({ path, error });
                 throw error;
             }
+            try {
+                return { data: yield res.toJSON() };
+            }
+            catch (error) {
+                yield this.handleParseError(error, res);
+                throw error;
+            }
         });
     }
     put(path, entity, options = {}) {
@@ -156,17 +171,24 @@ class WorkOS {
             if (options.idempotencyKey) {
                 requestHeaders[HEADER_IDEMPOTENCY_KEY] = options.idempotencyKey;
             }
+            let res;
             try {
-                const res = yield this.client.put(path, entity, {
+                res = yield this.client.put(path, entity, {
                     params: options.query,
                     headers: requestHeaders,
                 });
-                return { data: yield res.toJSON() };
             }
             catch (error) {
                 this.handleHttpError({ path, error });
                 throw error;
             }
+            try {
+                return { data: yield res.toJSON() };
+            }
+            catch (error) {
+                yield this.handleParseError(error, res);
+                throw error;
+            }
         });
     }
     delete(path, query) {
@@ -186,6 +208,17 @@ class WorkOS {
         // tslint:disable-next-line:no-console
         console.warn(`WorkOS: ${warning}`);
     }
+    handleParseError(error, res) {
+        var _a;
+        return __awaiter(this, void 0, void 0, function* () {
+            if (error instanceof SyntaxError) {
+                const rawResponse = res.getRawResponse();
+                const requestID = (_a = rawResponse.headers.get('X-Request-ID')) !== null && _a !== void 0 ? _a : '';
+                const rawBody = yield rawResponse.text();
+                throw new parse_error_1.ParseError(error.message, rawBody, requestID);
+            }
+        });
+    }
     handleHttpError({ path, error }) {
         var _a;
         if (!(error instanceof http_client_1.HttpClientError)) {

package/lib/workos.spec.js

@@ -16,6 +16,7 @@ const jest_fetch_mock_1 = __importDefault(require("jest-fetch-mock"));
 const test_utils_1 = require("./common/utils/test-utils");
 const promises_1 = __importDefault(require("fs/promises"));
 const exceptions_1 = require("./common/exceptions");
+const parse_error_1 = require("./common/exceptions/parse-error");
 const index_1 = require("./index");
 const index_worker_1 = require("./index.worker");
 const rate_limit_exceeded_exception_1 = require("./common/exceptions/rate-limit-exceeded.exception");
@@ -218,6 +219,70 @@ describe('WorkOS', () => {
                 expect((0, test_utils_1.fetchBody)({ raw: true })).toBe('');
             }));
         });
+        describe('when the api responds with invalid JSON', () => {
+            it('throws a ParseError', () => __awaiter(void 0, void 0, void 0, function* () {
+                const mockResponse = {
+                    ok: true,
+                    status: 200,
+                    headers: new Headers({
+                        'X-Request-ID': 'a-request-id',
+                        'content-type': 'application/json',
+                    }),
+                    text: () => Promise.resolve('invalid json{'),
+                    json: () => Promise.reject(new SyntaxError('Invalid JSON')),
+                };
+                jest_fetch_mock_1.default.mockResolvedValueOnce(mockResponse);
+                const workos = new index_1.WorkOS('sk_test_Sz3IQjepeSWaI4cMS4ms4sMuU');
+                const error = yield workos.post('/path', {}).catch((e) => e);
+                expect(error).toBeInstanceOf(parse_error_1.ParseError);
+                expect(error.rawBody).toBe('invalid json{');
+                expect(error.requestID).toBe('a-request-id');
+            }));
+        });
+    });
+    describe('get', () => {
+        describe('when the api responds with invalid JSON', () => {
+            it('throws a ParseError', () => __awaiter(void 0, void 0, void 0, function* () {
+                const mockResponse = {
+                    ok: true,
+                    status: 200,
+                    headers: new Headers({
+                        'X-Request-ID': 'a-request-id',
+                        'content-type': 'application/json',
+                    }),
+                    text: () => Promise.resolve('malformed json}'),
+                    json: () => Promise.reject(new SyntaxError('Invalid JSON')),
+                };
+                jest_fetch_mock_1.default.mockResolvedValueOnce(mockResponse);
+                const workos = new index_1.WorkOS('sk_test_Sz3IQjepeSWaI4cMS4ms4sMuU');
+                const error = yield workos.get('/path').catch((e) => e);
+                expect(error).toBeInstanceOf(parse_error_1.ParseError);
+                expect(error.rawBody).toBe('malformed json}');
+                expect(error.requestID).toBe('a-request-id');
+            }));
+        });
+    });
+    describe('put', () => {
+        describe('when the api responds with invalid JSON', () => {
+            it('throws a ParseError', () => __awaiter(void 0, void 0, void 0, function* () {
+                const mockResponse = {
+                    ok: true,
+                    status: 200,
+                    headers: new Headers({
+                        'X-Request-ID': 'a-request-id',
+                        'content-type': 'application/json',
+                    }),
+                    text: () => Promise.resolve('broken json['),
+                    json: () => Promise.reject(new SyntaxError('Invalid JSON')),
+                };
+                jest_fetch_mock_1.default.mockResolvedValueOnce(mockResponse);
+                const workos = new index_1.WorkOS('sk_test_Sz3IQjepeSWaI4cMS4ms4sMuU');
+                const error = yield workos.put('/path', {}).catch((e) => e);
+                expect(error).toBeInstanceOf(parse_error_1.ParseError);
+                expect(error.rawBody).toBe('broken json[');
+                expect(error.requestID).toBe('a-request-id');
+            }));
+        });
     });
     describe('when in an environment that does not support fetch', () => {
         const fetchFn = globalThis.fetch;

package/package.json

@@ -1,5 +1,5 @@
 {
-  "version": "7.60.0",
+  "version": "7.62.0",
   "name": "@workos-inc/node",
   "author": "WorkOS",
   "description": "A Node wrapper for the WorkOS API",