@workos-inc/node 7.76.0 → 7.79.2

package/lib/pipes/pipes.js

@@ -0,0 +1,37 @@
+"use strict";
+var __awaiter = (this && this.__awaiter) || function (thisArg, _arguments, P, generator) {
+    function adopt(value) { return value instanceof P ? value : new P(function (resolve) { resolve(value); }); }
+    return new (P || (P = Promise))(function (resolve, reject) {
+        function fulfilled(value) { try { step(generator.next(value)); } catch (e) { reject(e); } }
+        function rejected(value) { try { step(generator["throw"](value)); } catch (e) { reject(e); } }
+        function step(result) { result.done ? resolve(result.value) : adopt(result.value).then(fulfilled, rejected); }
+        step((generator = generator.apply(thisArg, _arguments || [])).next());
+    });
+};
+var __rest = (this && this.__rest) || function (s, e) {
+    var t = {};
+    for (var p in s) if (Object.prototype.hasOwnProperty.call(s, p) && e.indexOf(p) < 0)
+        t[p] = s[p];
+    if (s != null && typeof Object.getOwnPropertySymbols === "function")
+        for (var i = 0, p = Object.getOwnPropertySymbols(s); i < p.length; i++) {
+            if (e.indexOf(p[i]) < 0 && Object.prototype.propertyIsEnumerable.call(s, p[i]))
+                t[p[i]] = s[p[i]];
+        }
+    return t;
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.Pipes = void 0;
+const get_access_token_serializer_1 = require("./serializers/get-access-token.serializer");
+class Pipes {
+    constructor(workos) {
+        this.workos = workos;
+    }
+    getAccessToken(_a) {
+        var { provider } = _a, options = __rest(_a, ["provider"]);
+        return __awaiter(this, void 0, void 0, function* () {
+            const { data } = yield this.workos.post(`data-integrations/${provider}/token`, (0, get_access_token_serializer_1.serializeGetAccessTokenOptions)(options));
+            return (0, get_access_token_serializer_1.deserializeGetAccessTokenResponse)(data);
+        });
+    }
+}
+exports.Pipes = Pipes;

package/lib/pipes/pipes.spec.d.ts

@@ -0,0 +1 @@
+export {};

package/lib/pipes/pipes.spec.js

@@ -0,0 +1,109 @@
+"use strict";
+var __awaiter = (this && this.__awaiter) || function (thisArg, _arguments, P, generator) {
+    function adopt(value) { return value instanceof P ? value : new P(function (resolve) { resolve(value); }); }
+    return new (P || (P = Promise))(function (resolve, reject) {
+        function fulfilled(value) { try { step(generator.next(value)); } catch (e) { reject(e); } }
+        function rejected(value) { try { step(generator["throw"](value)); } catch (e) { reject(e); } }
+        function step(result) { result.done ? resolve(result.value) : adopt(result.value).then(fulfilled, rejected); }
+        step((generator = generator.apply(thisArg, _arguments || [])).next());
+    });
+};
+var __importDefault = (this && this.__importDefault) || function (mod) {
+    return (mod && mod.__esModule) ? mod : { "default": mod };
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+const jest_fetch_mock_1 = __importDefault(require("jest-fetch-mock"));
+const test_utils_1 = require("../common/utils/test-utils");
+const workos_1 = require("../workos");
+const get_access_token_success_json_1 = __importDefault(require("./fixtures/get-access-token-success.json"));
+const get_access_token_no_expiry_json_1 = __importDefault(require("./fixtures/get-access-token-no-expiry.json"));
+const get_access_token_not_installed_json_1 = __importDefault(require("./fixtures/get-access-token-not-installed.json"));
+const get_access_token_needs_reauth_json_1 = __importDefault(require("./fixtures/get-access-token-needs-reauth.json"));
+describe('Pipes', () => {
+    let workos;
+    beforeAll(() => {
+        workos = new workos_1.WorkOS('sk_test_Sz3IQjepeSWaI4cMS4ms4sMuU', {
+            apiHostname: 'api.workos.test',
+            clientId: 'proj_123',
+        });
+    });
+    beforeEach(() => jest_fetch_mock_1.default.resetMocks());
+    describe('getAccessToken', () => {
+        it('returns access token with expiry date', () => __awaiter(void 0, void 0, void 0, function* () {
+            (0, test_utils_1.fetchOnce)(get_access_token_success_json_1.default);
+            const response = yield workos.pipes.getAccessToken({
+                provider: 'test-provider',
+                userId: 'user_123',
+                organizationId: 'org_456',
+            });
+            expect((0, test_utils_1.fetchURL)()).toContain('/data-integrations/test-provider/token');
+            expect((0, test_utils_1.fetchBody)()).toEqual({
+                user_id: 'user_123',
+                organization_id: 'org_456',
+            });
+            expect(response).toEqual({
+                active: true,
+                accessToken: {
+                    object: 'access_token',
+                    accessToken: 'test_access_token_123',
+                    expiresAt: new Date('2025-10-18T12:00:00.000Z'),
+                    scopes: ['read:users', 'write:users'],
+                    missingScopes: [],
+                },
+            });
+        }));
+        it('returns access token without expiry date', () => __awaiter(void 0, void 0, void 0, function* () {
+            (0, test_utils_1.fetchOnce)(get_access_token_no_expiry_json_1.default);
+            const response = yield workos.pipes.getAccessToken({
+                provider: 'test-provider',
+                userId: 'user_789',
+            });
+            expect((0, test_utils_1.fetchURL)()).toContain('/data-integrations/test-provider/token');
+            expect((0, test_utils_1.fetchBody)()).toEqual({
+                user_id: 'user_789',
+                organization_id: undefined,
+            });
+            expect(response).toEqual({
+                active: true,
+                accessToken: {
+                    object: 'access_token',
+                    accessToken: 'test_access_token_456',
+                    expiresAt: null,
+                    scopes: ['read:data'],
+                    missingScopes: ['write:data'],
+                },
+            });
+        }));
+        it('returns not_installed failure when integration is not installed', () => __awaiter(void 0, void 0, void 0, function* () {
+            (0, test_utils_1.fetchOnce)(get_access_token_not_installed_json_1.default);
+            const response = yield workos.pipes.getAccessToken({
+                provider: 'test-provider',
+                userId: 'user_123',
+            });
+            expect((0, test_utils_1.fetchURL)()).toContain('/data-integrations/test-provider/token');
+            expect(response).toEqual({
+                active: false,
+                error: 'not_installed',
+            });
+        }));
+        it('returns needs_reauthorization failure when token needs refresh', () => __awaiter(void 0, void 0, void 0, function* () {
+            (0, test_utils_1.fetchOnce)(get_access_token_needs_reauth_json_1.default);
+            const response = yield workos.pipes.getAccessToken({
+                provider: 'test-provider',
+                userId: 'user_123',
+            });
+            expect((0, test_utils_1.fetchURL)()).toContain('/data-integrations/test-provider/token');
+            expect(response).toEqual({
+                active: false,
+                error: 'needs_reauthorization',
+            });
+        }));
+        it('throws error for server errors', () => __awaiter(void 0, void 0, void 0, function* () {
+            (0, test_utils_1.fetchOnce)({ message: 'Internal Server Error' }, { status: 500 });
+            yield expect(workos.pipes.getAccessToken({
+                provider: 'test-provider',
+                userId: 'user_123',
+            })).rejects.toThrow();
+        }));
+    });
+});

package/lib/pipes/serializers/access-token.serializer.d.ts

@@ -0,0 +1,2 @@
+import { AccessToken, SerializedAccessToken } from '../interfaces/access-token.interface';
+export declare function deserializeAccessToken(serialized: SerializedAccessToken): AccessToken;

package/lib/pipes/serializers/access-token.serializer.js

@@ -0,0 +1,15 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.deserializeAccessToken = void 0;
+function deserializeAccessToken(serialized) {
+    return {
+        object: 'access_token',
+        accessToken: serialized.access_token,
+        expiresAt: serialized.expires_at
+            ? new Date(Date.parse(serialized.expires_at))
+            : null,
+        scopes: serialized.scopes,
+        missingScopes: serialized.missing_scopes,
+    };
+}
+exports.deserializeAccessToken = deserializeAccessToken;

package/lib/pipes/serializers/get-access-token.serializer.d.ts

@@ -0,0 +1,3 @@
+import { GetAccessTokenOptions, GetAccessTokenResponse, SerializedGetAccessTokenOptions, SerializedGetAccessTokenResponse } from '../interfaces/get-access-token.interface';
+export declare function serializeGetAccessTokenOptions(options: GetAccessTokenOptions): SerializedGetAccessTokenOptions;
+export declare function deserializeGetAccessTokenResponse(response: SerializedGetAccessTokenResponse): GetAccessTokenResponse;

package/lib/pipes/serializers/get-access-token.serializer.js

@@ -0,0 +1,24 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.deserializeGetAccessTokenResponse = exports.serializeGetAccessTokenOptions = void 0;
+const access_token_serializer_1 = require("./access-token.serializer");
+function serializeGetAccessTokenOptions(options) {
+    return {
+        user_id: options.userId,
+        organization_id: options.organizationId,
+    };
+}
+exports.serializeGetAccessTokenOptions = serializeGetAccessTokenOptions;
+function deserializeGetAccessTokenResponse(response) {
+    if (response.active) {
+        return {
+            active: true,
+            accessToken: (0, access_token_serializer_1.deserializeAccessToken)(response.access_token),
+        };
+    }
+    return {
+        active: false,
+        error: response.error,
+    };
+}
+exports.deserializeGetAccessTokenResponse = deserializeGetAccessTokenResponse;

package/lib/user-management/fixtures/list-user-feature-flags.json

@@ -7,6 +7,9 @@
             "name": "Advanced Dashboard",
             "slug": "advanced-dashboard",
             "description": "Enable advanced dashboard features",
+            "tags": ["ui"],
+            "enabled": true,
+            "default_value": false,
             "created_at": "2024-01-01T00:00:00.000Z",
             "updated_at": "2024-01-01T00:00:00.000Z"
         },
@@ -15,7 +18,10 @@
             "id": "flag_01EHQMYV6MBK39QC5PZXHY59C6",
             "name": "Beta Features",
             "slug": "beta-features",
-            "description": null,
+            "description": "",
+            "tags": [],
+            "enabled": false,
+            "default_value": false,
             "created_at": "2024-01-01T00:00:00.000Z",
             "updated_at": "2024-01-01T00:00:00.000Z"
         },
@@ -25,6 +31,9 @@
             "name": "Premium Support",
             "slug": "premium-support",
             "description": "Access to premium support features",
+            "tags": ["dev-support"],
+            "enabled": false,
+            "default_value": true,
             "created_at": "2024-01-01T00:00:00.000Z",
             "updated_at": "2024-01-01T00:00:00.000Z"
         }

package/lib/user-management/interfaces/authenticate-with-session-cookie.interface.d.ts

@@ -14,7 +14,7 @@ export interface AccessToken {
     entitlements?: string[];
     feature_flags?: string[];
 }
-export type SessionCookieData = Pick<AuthenticationResponse, 'accessToken' | 'impersonator' | 'organizationId' | 'refreshToken' | 'user'>;
+export type SessionCookieData = Pick<AuthenticationResponse, 'accessToken' | 'authenticationMethod' | 'impersonator' | 'organizationId' | 'refreshToken' | 'user'>;
 export declare enum AuthenticateWithSessionCookieFailureReason {
     INVALID_JWT = "invalid_jwt",
     INVALID_SESSION_COOKIE = "invalid_session_cookie",
@@ -26,6 +26,8 @@ export type AuthenticateWithSessionCookieFailedResponse = {
 };
 export type AuthenticateWithSessionCookieSuccessResponse = {
     authenticated: true;
+    accessToken: string;
+    authenticationMethod: AuthenticationResponse['authenticationMethod'];
     sessionId: string;
     organizationId?: string;
     role?: string;
@@ -35,5 +37,4 @@ export type AuthenticateWithSessionCookieSuccessResponse = {
     featureFlags?: string[];
     user: User;
     impersonator?: Impersonator;
-    accessToken: string;
 };

package/lib/user-management/session.js

@@ -72,6 +72,7 @@ class CookieSession {
                 entitlements,
                 featureFlags,
                 user: session.user,
+                authenticationMethod: session.authenticationMethod,
                 impersonator: session.impersonator,
                 accessToken: session.accessToken,
             };
@@ -122,6 +123,7 @@ class CookieSession {
                     authenticated: true,
                     sealedSession: authenticationResponse.sealedSession,
                     session: authenticationResponse,
+                    authenticationMethod: authenticationResponse.authenticationMethod,
                     sessionId,
                     organizationId,
                     role,

package/lib/user-management/user-management.js

@@ -30,11 +30,11 @@ const oauth_exception_1 = require("../common/exceptions/oauth.exception");
 const fetch_and_deserialize_1 = require("../common/utils/fetch-and-deserialize");
 const pagination_1 = require("../common/utils/pagination");
 const serializers_1 = require("../mfa/serializers");
-const feature_flag_serializer_1 = require("../feature-flags/serializers/feature-flag.serializer");
+const serializers_2 = require("../feature-flags/serializers");
 const authenticate_with_session_cookie_interface_1 = require("./interfaces/authenticate-with-session-cookie.interface");
 const refresh_and_seal_session_data_interface_1 = require("./interfaces/refresh-and-seal-session-data.interface");
 const revoke_session_options_interface_1 = require("./interfaces/revoke-session-options.interface");
-const serializers_2 = require("./serializers");
+const serializers_3 = require("./serializers");
 const authenticate_with_email_verification_serializer_1 = require("./serializers/authenticate-with-email-verification.serializer");
 const authenticate_with_organization_selection_options_serializer_1 = require("./serializers/authenticate-with-organization-selection-options.serializer");
 const create_organization_membership_options_serializer_1 = require("./serializers/create-organization-membership-options.serializer");
@@ -89,32 +89,32 @@ class UserManagement {
     getUser(userId) {
         return __awaiter(this, void 0, void 0, function* () {
             const { data } = yield this.workos.get(`/user_management/users/${userId}`);
-            return (0, serializers_2.deserializeUser)(data);
+            return (0, serializers_3.deserializeUser)(data);
         });
     }
     getUserByExternalId(externalId) {
         return __awaiter(this, void 0, void 0, function* () {
             const { data } = yield this.workos.get(`/user_management/users/external_id/${externalId}`);
-            return (0, serializers_2.deserializeUser)(data);
+            return (0, serializers_3.deserializeUser)(data);
         });
     }
     listUsers(options) {
         return __awaiter(this, void 0, void 0, function* () {
-            return new pagination_1.AutoPaginatable(yield (0, fetch_and_deserialize_1.fetchAndDeserialize)(this.workos, '/user_management/users', serializers_2.deserializeUser, options ? (0, list_users_options_serializer_1.serializeListUsersOptions)(options) : undefined), (params) => (0, fetch_and_deserialize_1.fetchAndDeserialize)(this.workos, '/user_management/users', serializers_2.deserializeUser, params), options ? (0, list_users_options_serializer_1.serializeListUsersOptions)(options) : undefined);
+            return new pagination_1.AutoPaginatable(yield (0, fetch_and_deserialize_1.fetchAndDeserialize)(this.workos, '/user_management/users', serializers_3.deserializeUser, options ? (0, list_users_options_serializer_1.serializeListUsersOptions)(options) : undefined), (params) => (0, fetch_and_deserialize_1.fetchAndDeserialize)(this.workos, '/user_management/users', serializers_3.deserializeUser, params), options ? (0, list_users_options_serializer_1.serializeListUsersOptions)(options) : undefined);
         });
     }
     createUser(payload) {
         return __awaiter(this, void 0, void 0, function* () {
-            const { data } = yield this.workos.post('/user_management/users', (0, serializers_2.serializeCreateUserOptions)(payload));
-            return (0, serializers_2.deserializeUser)(data);
+            const { data } = yield this.workos.post('/user_management/users', (0, serializers_3.serializeCreateUserOptions)(payload));
+            return (0, serializers_3.deserializeUser)(data);
         });
     }
     authenticateWithMagicAuth(payload) {
         return __awaiter(this, void 0, void 0, function* () {
             const { session } = payload, remainingPayload = __rest(payload, ["session"]);
-            const { data } = yield this.workos.post('/user_management/authenticate', (0, serializers_2.serializeAuthenticateWithMagicAuthOptions)(Object.assign(Object.assign({}, remainingPayload), { clientSecret: this.workos.key })));
+            const { data } = yield this.workos.post('/user_management/authenticate', (0, serializers_3.serializeAuthenticateWithMagicAuthOptions)(Object.assign(Object.assign({}, remainingPayload), { clientSecret: this.workos.key })));
             return this.prepareAuthenticationResponse({
-                authenticationResponse: (0, serializers_2.deserializeAuthenticationResponse)(data),
+                authenticationResponse: (0, serializers_3.deserializeAuthenticationResponse)(data),
                 session,
             });
         });
@@ -122,9 +122,9 @@ class UserManagement {
     authenticateWithPassword(payload) {
         return __awaiter(this, void 0, void 0, function* () {
             const { session } = payload, remainingPayload = __rest(payload, ["session"]);
-            const { data } = yield this.workos.post('/user_management/authenticate', (0, serializers_2.serializeAuthenticateWithPasswordOptions)(Object.assign(Object.assign({}, remainingPayload), { clientSecret: this.workos.key })));
+            const { data } = yield this.workos.post('/user_management/authenticate', (0, serializers_3.serializeAuthenticateWithPasswordOptions)(Object.assign(Object.assign({}, remainingPayload), { clientSecret: this.workos.key })));
             return this.prepareAuthenticationResponse({
-                authenticationResponse: (0, serializers_2.deserializeAuthenticationResponse)(data),
+                authenticationResponse: (0, serializers_3.deserializeAuthenticationResponse)(data),
                 session,
             });
         });
@@ -132,9 +132,9 @@ class UserManagement {
     authenticateWithCode(payload) {
         return __awaiter(this, void 0, void 0, function* () {
             const { session } = payload, remainingPayload = __rest(payload, ["session"]);
-            const { data } = yield this.workos.post('/user_management/authenticate', (0, serializers_2.serializeAuthenticateWithCodeOptions)(Object.assign(Object.assign({}, remainingPayload), { clientSecret: this.workos.key })));
+            const { data } = yield this.workos.post('/user_management/authenticate', (0, serializers_3.serializeAuthenticateWithCodeOptions)(Object.assign(Object.assign({}, remainingPayload), { clientSecret: this.workos.key })));
             return this.prepareAuthenticationResponse({
-                authenticationResponse: (0, serializers_2.deserializeAuthenticationResponse)(data),
+                authenticationResponse: (0, serializers_3.deserializeAuthenticationResponse)(data),
                 session,
             });
         });
@@ -142,9 +142,9 @@ class UserManagement {
     authenticateWithCodeAndVerifier(payload) {
         return __awaiter(this, void 0, void 0, function* () {
             const { session } = payload, remainingPayload = __rest(payload, ["session"]);
-            const { data } = yield this.workos.post('/user_management/authenticate', (0, serializers_2.serializeAuthenticateWithCodeAndVerifierOptions)(remainingPayload));
+            const { data } = yield this.workos.post('/user_management/authenticate', (0, serializers_3.serializeAuthenticateWithCodeAndVerifierOptions)(remainingPayload));
             return this.prepareAuthenticationResponse({
-                authenticationResponse: (0, serializers_2.deserializeAuthenticationResponse)(data),
+                authenticationResponse: (0, serializers_3.deserializeAuthenticationResponse)(data),
                 session,
             });
         });
@@ -152,9 +152,9 @@ class UserManagement {
     authenticateWithRefreshToken(payload) {
         return __awaiter(this, void 0, void 0, function* () {
             const { session } = payload, remainingPayload = __rest(payload, ["session"]);
-            const { data } = yield this.workos.post('/user_management/authenticate', (0, serializers_2.serializeAuthenticateWithRefreshTokenOptions)(Object.assign(Object.assign({}, remainingPayload), { clientSecret: this.workos.key })));
+            const { data } = yield this.workos.post('/user_management/authenticate', (0, serializers_3.serializeAuthenticateWithRefreshTokenOptions)(Object.assign(Object.assign({}, remainingPayload), { clientSecret: this.workos.key })));
             return this.prepareAuthenticationResponse({
-                authenticationResponse: (0, serializers_2.deserializeAuthenticationResponse)(data),
+                authenticationResponse: (0, serializers_3.deserializeAuthenticationResponse)(data),
                 session,
             });
         });
@@ -162,9 +162,9 @@ class UserManagement {
     authenticateWithTotp(payload) {
         return __awaiter(this, void 0, void 0, function* () {
             const { session } = payload, remainingPayload = __rest(payload, ["session"]);
-            const { data } = yield this.workos.post('/user_management/authenticate', (0, serializers_2.serializeAuthenticateWithTotpOptions)(Object.assign(Object.assign({}, remainingPayload), { clientSecret: this.workos.key })));
+            const { data } = yield this.workos.post('/user_management/authenticate', (0, serializers_3.serializeAuthenticateWithTotpOptions)(Object.assign(Object.assign({}, remainingPayload), { clientSecret: this.workos.key })));
             return this.prepareAuthenticationResponse({
-                authenticationResponse: (0, serializers_2.deserializeAuthenticationResponse)(data),
+                authenticationResponse: (0, serializers_3.deserializeAuthenticationResponse)(data),
                 session,
             });
         });
@@ -174,7 +174,7 @@ class UserManagement {
             const { session } = payload, remainingPayload = __rest(payload, ["session"]);
             const { data } = yield this.workos.post('/user_management/authenticate', (0, authenticate_with_email_verification_serializer_1.serializeAuthenticateWithEmailVerificationOptions)(Object.assign(Object.assign({}, remainingPayload), { clientSecret: this.workos.key })));
             return this.prepareAuthenticationResponse({
-                authenticationResponse: (0, serializers_2.deserializeAuthenticationResponse)(data),
+                authenticationResponse: (0, serializers_3.deserializeAuthenticationResponse)(data),
                 session,
             });
         });
@@ -184,7 +184,7 @@ class UserManagement {
             const { session } = payload, remainingPayload = __rest(payload, ["session"]);
             const { data } = yield this.workos.post('/user_management/authenticate', (0, authenticate_with_organization_selection_options_serializer_1.serializeAuthenticateWithOrganizationSelectionOptions)(Object.assign(Object.assign({}, remainingPayload), { clientSecret: this.workos.key })));
             return this.prepareAuthenticationResponse({
-                authenticationResponse: (0, serializers_2.deserializeAuthenticationResponse)(data),
+                authenticationResponse: (0, serializers_3.deserializeAuthenticationResponse)(data),
                 session,
             });
         });
@@ -230,6 +230,7 @@ class UserManagement {
                 entitlements,
                 featureFlags,
                 accessToken: session.accessToken,
+                authenticationMethod: session.authenticationMethod,
             };
         });
     }
@@ -328,6 +329,7 @@ class UserManagement {
                 user: authenticationResponse.user,
                 accessToken: authenticationResponse.accessToken,
                 refreshToken: authenticationResponse.refreshToken,
+                authenticationMethod: authenticationResponse.authenticationMethod,
                 impersonator: authenticationResponse.impersonator,
             };
             return this.ironSessionProvider.sealData(sessionData, {
@@ -351,25 +353,25 @@ class UserManagement {
     getEmailVerification(emailVerificationId) {
         return __awaiter(this, void 0, void 0, function* () {
             const { data } = yield this.workos.get(`/user_management/email_verification/${emailVerificationId}`);
-            return (0, serializers_2.deserializeEmailVerification)(data);
+            return (0, serializers_3.deserializeEmailVerification)(data);
         });
     }
     sendVerificationEmail({ userId, }) {
         return __awaiter(this, void 0, void 0, function* () {
             const { data } = yield this.workos.post(`/user_management/users/${userId}/email_verification/send`, {});
-            return { user: (0, serializers_2.deserializeUser)(data.user) };
+            return { user: (0, serializers_3.deserializeUser)(data.user) };
         });
     }
     getMagicAuth(magicAuthId) {
         return __awaiter(this, void 0, void 0, function* () {
             const { data } = yield this.workos.get(`/user_management/magic_auth/${magicAuthId}`);
-            return (0, serializers_2.deserializeMagicAuth)(data);
+            return (0, serializers_3.deserializeMagicAuth)(data);
         });
     }
     createMagicAuth(options) {
         return __awaiter(this, void 0, void 0, function* () {
-            const { data } = yield this.workos.post('/user_management/magic_auth', (0, serializers_2.serializeCreateMagicAuthOptions)(Object.assign({}, options)));
-            return (0, serializers_2.deserializeMagicAuth)(data);
+            const { data } = yield this.workos.post('/user_management/magic_auth', (0, serializers_3.serializeCreateMagicAuthOptions)(Object.assign({}, options)));
+            return (0, serializers_3.deserializeMagicAuth)(data);
         });
     }
     /**
@@ -378,7 +380,7 @@ class UserManagement {
      */
     sendMagicAuthCode(options) {
         return __awaiter(this, void 0, void 0, function* () {
-            yield this.workos.post('/user_management/magic_auth/send', (0, serializers_2.serializeSendMagicAuthCodeOptions)(options));
+            yield this.workos.post('/user_management/magic_auth/send', (0, serializers_3.serializeSendMagicAuthCodeOptions)(options));
         });
     }
     verifyEmail({ code, userId, }) {
@@ -386,19 +388,19 @@ class UserManagement {
             const { data } = yield this.workos.post(`/user_management/users/${userId}/email_verification/confirm`, {
                 code,
             });
-            return { user: (0, serializers_2.deserializeUser)(data.user) };
+            return { user: (0, serializers_3.deserializeUser)(data.user) };
         });
     }
     getPasswordReset(passwordResetId) {
         return __awaiter(this, void 0, void 0, function* () {
             const { data } = yield this.workos.get(`/user_management/password_reset/${passwordResetId}`);
-            return (0, serializers_2.deserializePasswordReset)(data);
+            return (0, serializers_3.deserializePasswordReset)(data);
         });
     }
     createPasswordReset(options) {
         return __awaiter(this, void 0, void 0, function* () {
-            const { data } = yield this.workos.post('/user_management/password_reset', (0, serializers_2.serializeCreatePasswordResetOptions)(Object.assign({}, options)));
-            return (0, serializers_2.deserializePasswordReset)(data);
+            const { data } = yield this.workos.post('/user_management/password_reset', (0, serializers_3.serializeCreatePasswordResetOptions)(Object.assign({}, options)));
+            return (0, serializers_3.deserializePasswordReset)(data);
         });
     }
     /**
@@ -406,26 +408,26 @@ class UserManagement {
      */
     sendPasswordResetEmail(payload) {
         return __awaiter(this, void 0, void 0, function* () {
-            yield this.workos.post('/user_management/password_reset/send', (0, serializers_2.serializeSendPasswordResetEmailOptions)(payload));
+            yield this.workos.post('/user_management/password_reset/send', (0, serializers_3.serializeSendPasswordResetEmailOptions)(payload));
         });
     }
     resetPassword(payload) {
         return __awaiter(this, void 0, void 0, function* () {
-            const { data } = yield this.workos.post('/user_management/password_reset/confirm', (0, serializers_2.serializeResetPasswordOptions)(payload));
-            return { user: (0, serializers_2.deserializeUser)(data.user) };
+            const { data } = yield this.workos.post('/user_management/password_reset/confirm', (0, serializers_3.serializeResetPasswordOptions)(payload));
+            return { user: (0, serializers_3.deserializeUser)(data.user) };
         });
     }
     updateUser(payload) {
         return __awaiter(this, void 0, void 0, function* () {
-            const { data } = yield this.workos.put(`/user_management/users/${payload.userId}`, (0, serializers_2.serializeUpdateUserOptions)(payload));
-            return (0, serializers_2.deserializeUser)(data);
+            const { data } = yield this.workos.put(`/user_management/users/${payload.userId}`, (0, serializers_3.serializeUpdateUserOptions)(payload));
+            return (0, serializers_3.deserializeUser)(data);
         });
     }
     enrollAuthFactor(payload) {
         return __awaiter(this, void 0, void 0, function* () {
-            const { data } = yield this.workos.post(`/user_management/users/${payload.userId}/auth_factors`, (0, serializers_2.serializeEnrollAuthFactorOptions)(payload));
+            const { data } = yield this.workos.post(`/user_management/users/${payload.userId}/auth_factors`, (0, serializers_3.serializeEnrollAuthFactorOptions)(payload));
             return {
-                authenticationFactor: (0, serializers_2.deserializeFactorWithSecrets)(data.authentication_factor),
+                authenticationFactor: (0, serializers_3.deserializeFactorWithSecrets)(data.authentication_factor),
                 authenticationChallenge: (0, serializers_1.deserializeChallenge)(data.authentication_challenge),
             };
         });
@@ -439,12 +441,12 @@ class UserManagement {
     listUserFeatureFlags(options) {
         return __awaiter(this, void 0, void 0, function* () {
             const { userId } = options, paginationOptions = __rest(options, ["userId"]);
-            return new pagination_1.AutoPaginatable(yield (0, fetch_and_deserialize_1.fetchAndDeserialize)(this.workos, `/user_management/users/${userId}/feature-flags`, feature_flag_serializer_1.deserializeFeatureFlag, paginationOptions), (params) => (0, fetch_and_deserialize_1.fetchAndDeserialize)(this.workos, `/user_management/users/${userId}/feature-flags`, feature_flag_serializer_1.deserializeFeatureFlag, params), paginationOptions);
+            return new pagination_1.AutoPaginatable(yield (0, fetch_and_deserialize_1.fetchAndDeserialize)(this.workos, `/user_management/users/${userId}/feature-flags`, serializers_2.deserializeFeatureFlag, paginationOptions), (params) => (0, fetch_and_deserialize_1.fetchAndDeserialize)(this.workos, `/user_management/users/${userId}/feature-flags`, serializers_2.deserializeFeatureFlag, params), paginationOptions);
         });
     }
     listSessions(userId, options) {
         return __awaiter(this, void 0, void 0, function* () {
-            return new pagination_1.AutoPaginatable(yield (0, fetch_and_deserialize_1.fetchAndDeserialize)(this.workos, `/user_management/users/${userId}/sessions`, serializers_2.deserializeSession, options ? (0, serializers_2.serializeListSessionsOptions)(options) : undefined), (params) => (0, fetch_and_deserialize_1.fetchAndDeserialize)(this.workos, `/user_management/users/${userId}/sessions`, serializers_2.deserializeSession, params), options ? (0, serializers_2.serializeListSessionsOptions)(options) : undefined);
+            return new pagination_1.AutoPaginatable(yield (0, fetch_and_deserialize_1.fetchAndDeserialize)(this.workos, `/user_management/users/${userId}/sessions`, serializers_3.deserializeSession, options ? (0, serializers_3.serializeListSessionsOptions)(options) : undefined), (params) => (0, fetch_and_deserialize_1.fetchAndDeserialize)(this.workos, `/user_management/users/${userId}/sessions`, serializers_3.deserializeSession, params), options ? (0, serializers_3.serializeListSessionsOptions)(options) : undefined);
         });
     }
     deleteUser(userId) {

package/lib/user-management/user-management.spec.js

@@ -1364,6 +1364,9 @@ describe('UserManagement', () => {
                     name: 'Advanced Dashboard',
                     slug: 'advanced-dashboard',
                     description: 'Enable advanced dashboard features',
+                    tags: ['ui'],
+                    enabled: true,
+                    defaultValue: false,
                     createdAt: '2024-01-01T00:00:00.000Z',
                     updatedAt: '2024-01-01T00:00:00.000Z',
                 },
@@ -1372,7 +1375,10 @@ describe('UserManagement', () => {
                     id: 'flag_01EHQMYV6MBK39QC5PZXHY59C6',
                     name: 'Beta Features',
                     slug: 'beta-features',
-                    description: null,
+                    description: '',
+                    tags: [],
+                    enabled: false,
+                    defaultValue: false,
                     createdAt: '2024-01-01T00:00:00.000Z',
                     updatedAt: '2024-01-01T00:00:00.000Z',
                 },
@@ -1382,6 +1388,9 @@ describe('UserManagement', () => {
                     name: 'Premium Support',
                     slug: 'premium-support',
                     description: 'Access to premium support features',
+                    tags: ['dev-support'],
+                    enabled: false,
+                    defaultValue: true,
                     createdAt: '2024-01-01T00:00:00.000Z',
                     updatedAt: '2024-01-01T00:00:00.000Z',
                 },

package/lib/vault/vault-live-test.spec.js

@@ -69,6 +69,35 @@ describe.skip('Vault Live Test', () => {
                 metadata: expectedMetadata,
             });
         }));
+        it('Reads objects by name', () => __awaiter(void 0, void 0, void 0, function* () {
+            const objectName = `${objectPrefix}-nazca`;
+            const newObject = yield workos.vault.createObject({
+                name: objectName,
+                value: 'Suri 10-15 micron',
+                context: { fiber: 'Alpalca' },
+            });
+            const expectedMetadata = {
+                id: expect.any(String),
+                context: {
+                    fiber: 'Alpalca',
+                },
+                environmentId: expect.any(String),
+                keyId: expect.any(String),
+                updatedAt: expect.any(Date),
+                updatedBy: {
+                    id: expect.any(String),
+                    name: expect.any(String),
+                },
+                versionId: expect.any(String),
+            };
+            const objectValue = yield workos.vault.readObjectByName(objectName);
+            expect(objectValue).toStrictEqual({
+                id: newObject.id,
+                name: objectName,
+                value: 'Suri 10-15 micron',
+                metadata: expectedMetadata,
+            });
+        }));
         it('Fails to create objects with the same name', () => __awaiter(void 0, void 0, void 0, function* () {
             const objectName = `${objectPrefix}-lima`;
             yield workos.vault.createObject({
@@ -153,7 +182,7 @@ describe.skip('Vault Live Test', () => {
             const newObject = yield workos.vault.createObject({
                 name: objectName,
                 value: 'Qiviut 11-13 micron',
-                context: { fiber: 'Musk Ox' },
+                context: { fiber: 'MuskOx' },
             });
             const objectDescription = yield workos.vault.describeObject({
                 id: newObject.id,
@@ -161,7 +190,7 @@ describe.skip('Vault Live Test', () => {
             const expectedMetadata = {
                 id: expect.any(String),
                 context: {
-                    fiber: 'Musk Ox',
+                    fiber: 'MuskOx',
                 },
                 environmentId: expect.any(String),
                 keyId: expect.any(String),
@@ -188,7 +217,7 @@ describe.skip('Vault Live Test', () => {
                 yield workos.vault.createObject({
                     name: objectName,
                     value: 'Qiviut 11-13 micron',
-                    context: { fiber: 'Musk Ox' },
+                    context: { fiber: 'MuskOx' },
                 });
                 objectNames.push(objectName);
             }
@@ -254,7 +283,7 @@ describe.skip('Vault Live Test', () => {
             const keyContext = { everything: 'everywhere' };
             const aad = 'seq1';
             const encrypted = yield workos.vault.encrypt(data, keyContext, aad);
-            yield expect(() => workos.vault.decrypt(encrypted)).rejects.toThrow('unable to authenticate data');
+            yield expect(() => workos.vault.decrypt(encrypted)).rejects.toThrow('The operation failed for an operation-specific reason');
         }));
     });
 });