@workos-inc/node 8.0.0-rc.9 → 8.1.0

package/lib/access-token.interface-CRaRBZsU.d.cts

@@ -0,0 +1,18 @@
+//#region src/pipes/interfaces/access-token.interface.d.ts
+interface AccessToken {
+  object: 'access_token';
+  accessToken: string;
+  expiresAt: Date | null;
+  scopes: string[];
+  missingScopes: string[];
+}
+interface SerializedAccessToken {
+  object: 'access_token';
+  access_token: string;
+  expires_at: string | null;
+  scopes: string[];
+  missing_scopes: string[];
+}
+//#endregion
+export { SerializedAccessToken as n, AccessToken as t };
+//# sourceMappingURL=access-token.interface-CRaRBZsU.d.cts.map

package/lib/access-token.serializer-BTB3otha.cjs

@@ -0,0 +1,20 @@
+
+//#region src/pipes/serializers/access-token.serializer.ts
+function deserializeAccessToken(serialized) {
+	return {
+		object: "access_token",
+		accessToken: serialized.access_token,
+		expiresAt: serialized.expires_at ? new Date(Date.parse(serialized.expires_at)) : null,
+		scopes: serialized.scopes,
+		missingScopes: serialized.missing_scopes
+	};
+}
+
+//#endregion
+Object.defineProperty(exports, 'deserializeAccessToken', {
+  enumerable: true,
+  get: function () {
+    return deserializeAccessToken;
+  }
+});
+//# sourceMappingURL=access-token.serializer-BTB3otha.cjs.map

package/lib/access-token.serializer-BTB3otha.cjs.map

@@ -0,0 +1 @@
+{"version":3,"file":"access-token.serializer-BTB3otha.cjs","names":[],"sources":["../src/pipes/serializers/access-token.serializer.ts"],"sourcesContent":["import {\n  AccessToken,\n  SerializedAccessToken,\n} from '../interfaces/access-token.interface';\n\nexport function deserializeAccessToken(\n  serialized: SerializedAccessToken,\n): AccessToken {\n  return {\n    object: 'access_token',\n    accessToken: serialized.access_token,\n    expiresAt: serialized.expires_at\n      ? new Date(Date.parse(serialized.expires_at))\n      : null,\n    scopes: serialized.scopes,\n    missingScopes: serialized.missing_scopes,\n  };\n}\n"],"mappings":";;AAKA,SAAgB,uBACd,YACa;AACb,QAAO;EACL,QAAQ;EACR,aAAa,WAAW;EACxB,WAAW,WAAW,aAClB,IAAI,KAAK,KAAK,MAAM,WAAW,WAAW,CAAC,GAC3C;EACJ,QAAQ,WAAW;EACnB,eAAe,WAAW;EAC3B"}

package/lib/action.interface-DuyarN1t.d.cts

@@ -0,0 +1,63 @@
+import { n as UserResponse, t as User } from "./user.interface-SwAIYLNB.cjs";
+import { i as InvitationResponse, t as Invitation } from "./invitation.interface-zxREPPZu.cjs";
+import { n as OrganizationMembershipResponse, t as OrganizationMembership } from "./organization-membership.interface-NCcAKBR2.cjs";
+import { n as OrganizationResponse, t as Organization } from "./organization.interface-CdjQyAEW.cjs";
+
+//#region src/actions/interfaces/action.interface.d.ts
+interface AuthenticationActionContext {
+  id: string;
+  object: 'authentication_action_context';
+  user: User;
+  organization?: Organization;
+  organizationMembership?: OrganizationMembership;
+  ipAddress?: string;
+  userAgent?: string;
+  deviceFingerprint?: string;
+  issuer?: string;
+}
+interface UserData {
+  object: 'user_data';
+  email: string;
+  firstName: string;
+  lastName: string;
+}
+interface UserRegistrationActionContext {
+  id: string;
+  object: 'user_registration_action_context';
+  userData: UserData;
+  invitation?: Invitation;
+  ipAddress?: string;
+  userAgent?: string;
+  deviceFingerprint?: string;
+}
+type ActionContext = AuthenticationActionContext | UserRegistrationActionContext;
+interface AuthenticationActionPayload {
+  id: string;
+  object: 'authentication_action_context';
+  user: UserResponse;
+  organization?: OrganizationResponse;
+  organization_membership?: OrganizationMembershipResponse;
+  ip_address?: string;
+  user_agent?: string;
+  device_fingerprint?: string;
+  issuer?: string;
+}
+interface UserDataPayload {
+  object: 'user_data';
+  email: string;
+  first_name: string;
+  last_name: string;
+}
+interface UserRegistrationActionPayload {
+  id: string;
+  object: 'user_registration_action_context';
+  user_data: UserDataPayload;
+  invitation?: InvitationResponse;
+  ip_address?: string;
+  user_agent?: string;
+  device_fingerprint?: string;
+}
+type ActionPayload = AuthenticationActionPayload | UserRegistrationActionPayload;
+//#endregion
+export { UserRegistrationActionPayload as a, UserDataPayload as i, ActionPayload as n, UserData as r, ActionContext as t };
+//# sourceMappingURL=action.interface-DuyarN1t.d.cts.map

package/lib/action.serializer-BGWv6ab1.cjs

@@ -0,0 +1,47 @@
+const require_organization_serializer = require('./organization.serializer-DM6Xkk2V.cjs');
+const require_user_serializer = require('./user.serializer-Y5EM8MeK.cjs');
+const require_invitation_serializer = require('./invitation.serializer-BEVUkLP9.cjs');
+const require_organization_membership_serializer = require('./organization-membership.serializer-DVtJVaRT.cjs');
+
+//#region src/actions/serializers/action.serializer.ts
+const deserializeUserData = (userData) => {
+	return {
+		object: userData.object,
+		email: userData.email,
+		firstName: userData.first_name,
+		lastName: userData.last_name
+	};
+};
+const deserializeAction = (actionPayload) => {
+	switch (actionPayload.object) {
+		case "user_registration_action_context": return {
+			id: actionPayload.id,
+			object: actionPayload.object,
+			userData: deserializeUserData(actionPayload.user_data),
+			invitation: actionPayload.invitation ? require_invitation_serializer.deserializeInvitation(actionPayload.invitation) : void 0,
+			ipAddress: actionPayload.ip_address,
+			userAgent: actionPayload.user_agent,
+			deviceFingerprint: actionPayload.device_fingerprint
+		};
+		case "authentication_action_context": return {
+			id: actionPayload.id,
+			object: actionPayload.object,
+			user: require_user_serializer.deserializeUser(actionPayload.user),
+			organization: actionPayload.organization ? require_organization_serializer.deserializeOrganization(actionPayload.organization) : void 0,
+			organizationMembership: actionPayload.organization_membership ? require_organization_membership_serializer.deserializeOrganizationMembership(actionPayload.organization_membership) : void 0,
+			ipAddress: actionPayload.ip_address,
+			userAgent: actionPayload.user_agent,
+			deviceFingerprint: actionPayload.device_fingerprint,
+			issuer: actionPayload.issuer
+		};
+	}
+};
+
+//#endregion
+Object.defineProperty(exports, 'deserializeAction', {
+  enumerable: true,
+  get: function () {
+    return deserializeAction;
+  }
+});
+//# sourceMappingURL=action.serializer-BGWv6ab1.cjs.map

package/lib/action.serializer-BGWv6ab1.cjs.map

@@ -0,0 +1 @@
+{"version":3,"file":"action.serializer-BGWv6ab1.cjs","names":["deserializeInvitation","deserializeUser","deserializeOrganization","deserializeOrganizationMembership"],"sources":["../src/actions/serializers/action.serializer.ts"],"sourcesContent":["import { deserializeOrganization } from '../../organizations/serializers/organization.serializer';\nimport {\n  deserializeInvitation,\n  deserializeUser,\n} from '../../user-management/serializers';\nimport { deserializeOrganizationMembership } from '../../user-management/serializers/organization-membership.serializer';\nimport {\n  ActionContext,\n  ActionPayload,\n  UserData,\n  UserDataPayload,\n} from '../interfaces/action.interface';\n\nconst deserializeUserData = (userData: UserDataPayload): UserData => {\n  return {\n    object: userData.object,\n    email: userData.email,\n    firstName: userData.first_name,\n    lastName: userData.last_name,\n  };\n};\n\nexport const deserializeAction = (\n  actionPayload: ActionPayload,\n): ActionContext => {\n  switch (actionPayload.object) {\n    case 'user_registration_action_context':\n      return {\n        id: actionPayload.id,\n        object: actionPayload.object,\n        userData: deserializeUserData(actionPayload.user_data),\n        invitation: actionPayload.invitation\n          ? deserializeInvitation(actionPayload.invitation)\n          : undefined,\n\n        ipAddress: actionPayload.ip_address,\n        userAgent: actionPayload.user_agent,\n        deviceFingerprint: actionPayload.device_fingerprint,\n      };\n    case 'authentication_action_context':\n      return {\n        id: actionPayload.id,\n        object: actionPayload.object,\n        user: deserializeUser(actionPayload.user),\n        organization: actionPayload.organization\n          ? deserializeOrganization(actionPayload.organization)\n          : undefined,\n        organizationMembership: actionPayload.organization_membership\n          ? deserializeOrganizationMembership(\n              actionPayload.organization_membership,\n            )\n          : undefined,\n        ipAddress: actionPayload.ip_address,\n        userAgent: actionPayload.user_agent,\n        deviceFingerprint: actionPayload.device_fingerprint,\n        issuer: actionPayload.issuer,\n      };\n  }\n};\n"],"mappings":";;;;;;AAaA,MAAM,uBAAuB,aAAwC;AACnE,QAAO;EACL,QAAQ,SAAS;EACjB,OAAO,SAAS;EAChB,WAAW,SAAS;EACpB,UAAU,SAAS;EACpB;;AAGH,MAAa,qBACX,kBACkB;AAClB,SAAQ,cAAc,QAAtB;EACE,KAAK,mCACH,QAAO;GACL,IAAI,cAAc;GAClB,QAAQ,cAAc;GACtB,UAAU,oBAAoB,cAAc,UAAU;GACtD,YAAY,cAAc,aACtBA,oDAAsB,cAAc,WAAW,GAC/C;GAEJ,WAAW,cAAc;GACzB,WAAW,cAAc;GACzB,mBAAmB,cAAc;GAClC;EACH,KAAK,gCACH,QAAO;GACL,IAAI,cAAc;GAClB,QAAQ,cAAc;GACtB,MAAMC,wCAAgB,cAAc,KAAK;GACzC,cAAc,cAAc,eACxBC,wDAAwB,cAAc,aAAa,GACnD;GACJ,wBAAwB,cAAc,0BAClCC,6EACE,cAAc,wBACf,GACD;GACJ,WAAW,cAAc;GACzB,WAAW,cAAc;GACzB,mBAAmB,cAAc;GACjC,QAAQ,cAAc;GACvB"}

package/lib/actions/actions.cjs

@@ -1,53 +1,3 @@
-const require_common_crypto_signature_provider = require('../common/crypto/signature-provider.cjs');
-const require_common_utils_unreachable = require('../common/utils/unreachable.cjs');
-const require_actions_serializers_action_serializer = require('./serializers/action.serializer.cjs');
+const require_actions = require('../actions-DuKUPx9Z.cjs');
 
-//#region src/actions/actions.ts
-var Actions = class {
-	signatureProvider;
-	constructor(cryptoProvider) {
-		this.signatureProvider = new require_common_crypto_signature_provider.SignatureProvider(cryptoProvider);
-	}
-	get computeSignature() {
-		return this.signatureProvider.computeSignature.bind(this.signatureProvider);
-	}
-	get verifyHeader() {
-		return this.signatureProvider.verifyHeader.bind(this.signatureProvider);
-	}
-	serializeType(type) {
-		switch (type) {
-			case "authentication": return "authentication_action_response";
-			case "user_registration": return "user_registration_action_response";
-			default: return require_common_utils_unreachable.unreachable(type);
-		}
-	}
-	async signResponse(data, secret) {
-		let errorMessage;
-		const { verdict, type } = data;
-		if (verdict === "Deny" && data.errorMessage) errorMessage = data.errorMessage;
-		const responsePayload = {
-			timestamp: Date.now(),
-			verdict,
-			...verdict === "Deny" && data.errorMessage && { error_message: errorMessage }
-		};
-		return {
-			object: this.serializeType(type),
-			payload: responsePayload,
-			signature: await this.computeSignature(responsePayload.timestamp, responsePayload, secret)
-		};
-	}
-	async constructAction({ payload, sigHeader, secret, tolerance = 3e4 }) {
-		const options = {
-			payload,
-			sigHeader,
-			secret,
-			tolerance
-		};
-		await this.verifyHeader(options);
-		return require_actions_serializers_action_serializer.deserializeAction(payload);
-	}
-};
-
-//#endregion
-exports.Actions = Actions;
-//# sourceMappingURL=actions.cjs.map
+exports.Actions = require_actions.Actions;

package/lib/actions/actions.d.cts

@@ -1,41 +1,2 @@
-import { CryptoProvider } from "../common/crypto/crypto-provider.cjs";
-import { ActionContext } from "./interfaces/action.interface.cjs";
-import { AuthenticationActionResponseData, ResponsePayload, UserRegistrationActionResponseData } from "./interfaces/response-payload.interface.cjs";
-
-//#region src/actions/actions.d.ts
-declare class Actions {
-  private signatureProvider;
-  constructor(cryptoProvider: CryptoProvider);
-  private get computeSignature();
-  get verifyHeader(): ({
-    payload,
-    sigHeader,
-    secret,
-    tolerance
-  }: {
-    payload: any;
-    sigHeader: string;
-    secret: string;
-    tolerance?: number;
-  }) => Promise<boolean>;
-  serializeType(type: AuthenticationActionResponseData['type'] | UserRegistrationActionResponseData['type']): "authentication_action_response" | "user_registration_action_response";
-  signResponse(data: AuthenticationActionResponseData | UserRegistrationActionResponseData, secret: string): Promise<{
-    object: string;
-    payload: ResponsePayload;
-    signature: string;
-  }>;
-  constructAction({
-    payload,
-    sigHeader,
-    secret,
-    tolerance
-  }: {
-    payload: unknown;
-    sigHeader: string;
-    secret: string;
-    tolerance?: number;
-  }): Promise<ActionContext>;
-}
-//#endregion
-export { Actions };
-//# sourceMappingURL=actions.d.cts.map
+import { t as Actions } from "../actions-DTMrvfa0.cjs";
+export { Actions };

package/lib/actions/interfaces/action.interface.d.cts

@@ -1,63 +1,2 @@
-import { User, UserResponse } from "../../user-management/interfaces/user.interface.cjs";
-import { Invitation, InvitationResponse } from "../../user-management/interfaces/invitation.interface.cjs";
-import { OrganizationMembership, OrganizationMembershipResponse } from "../../user-management/interfaces/organization-membership.interface.cjs";
-import { Organization, OrganizationResponse } from "../../organizations/interfaces/organization.interface.cjs";
-
-//#region src/actions/interfaces/action.interface.d.ts
-interface AuthenticationActionContext {
-  id: string;
-  object: 'authentication_action_context';
-  user: User;
-  organization?: Organization;
-  organizationMembership?: OrganizationMembership;
-  ipAddress?: string;
-  userAgent?: string;
-  deviceFingerprint?: string;
-  issuer?: string;
-}
-interface UserData {
-  object: 'user_data';
-  email: string;
-  firstName: string;
-  lastName: string;
-}
-interface UserRegistrationActionContext {
-  id: string;
-  object: 'user_registration_action_context';
-  userData: UserData;
-  invitation?: Invitation;
-  ipAddress?: string;
-  userAgent?: string;
-  deviceFingerprint?: string;
-}
-type ActionContext = AuthenticationActionContext | UserRegistrationActionContext;
-interface AuthenticationActionPayload {
-  id: string;
-  object: 'authentication_action_context';
-  user: UserResponse;
-  organization?: OrganizationResponse;
-  organization_membership?: OrganizationMembershipResponse;
-  ip_address?: string;
-  user_agent?: string;
-  device_fingerprint?: string;
-  issuer?: string;
-}
-interface UserDataPayload {
-  object: 'user_data';
-  email: string;
-  first_name: string;
-  last_name: string;
-}
-interface UserRegistrationActionPayload {
-  id: string;
-  object: 'user_registration_action_context';
-  user_data: UserDataPayload;
-  invitation?: InvitationResponse;
-  ip_address?: string;
-  user_agent?: string;
-  device_fingerprint?: string;
-}
-type ActionPayload = AuthenticationActionPayload | UserRegistrationActionPayload;
-//#endregion
-export { ActionContext, ActionPayload, UserData, UserDataPayload, UserRegistrationActionPayload };
-//# sourceMappingURL=action.interface.d.cts.map
+import { a as UserRegistrationActionPayload, i as UserDataPayload, n as ActionPayload, r as UserData, t as ActionContext } from "../../action.interface-DuyarN1t.cjs";
+export { ActionContext, ActionPayload, UserData, UserDataPayload, UserRegistrationActionPayload };

package/lib/actions/interfaces/index.d.cts

@@ -1,3 +1,3 @@
-import { ActionContext, ActionPayload, UserData, UserDataPayload, UserRegistrationActionPayload } from "./action.interface.cjs";
-import { AuthenticationActionResponseData, ResponsePayload, UserRegistrationActionResponseData } from "./response-payload.interface.cjs";
+import { a as UserRegistrationActionPayload, i as UserDataPayload, n as ActionPayload, r as UserData, t as ActionContext } from "../../action.interface-DuyarN1t.cjs";
+import { n as ResponsePayload, r as UserRegistrationActionResponseData, t as AuthenticationActionResponseData } from "../../response-payload.interface-CC6ym1hG.cjs";
 export { ActionContext, ActionPayload, AuthenticationActionResponseData, ResponsePayload, UserData, UserDataPayload, UserRegistrationActionPayload, UserRegistrationActionResponseData };

package/lib/actions/interfaces/response-payload.interface.d.cts

@@ -1,26 +1,2 @@
-//#region src/actions/interfaces/response-payload.interface.d.ts
-interface ResponsePayload {
-  timestamp: number;
-  verdict?: 'Allow' | 'Deny';
-  errorMessage?: string;
-}
-interface AllowResponseData {
-  verdict: 'Allow';
-}
-interface DenyResponseData {
-  verdict: 'Deny';
-  errorMessage?: string;
-}
-type AuthenticationActionResponseData = (AllowResponseData & {
-  type: 'authentication';
-}) | (DenyResponseData & {
-  type: 'authentication';
-});
-type UserRegistrationActionResponseData = (AllowResponseData & {
-  type: 'user_registration';
-}) | (DenyResponseData & {
-  type: 'user_registration';
-});
-//#endregion
-export { AuthenticationActionResponseData, ResponsePayload, UserRegistrationActionResponseData };
-//# sourceMappingURL=response-payload.interface.d.cts.map
+import { n as ResponsePayload, r as UserRegistrationActionResponseData, t as AuthenticationActionResponseData } from "../../response-payload.interface-CC6ym1hG.cjs";
+export { AuthenticationActionResponseData, ResponsePayload, UserRegistrationActionResponseData };

package/lib/actions/serializers/action.serializer.cjs

@@ -1,42 +1,3 @@
-const require_organizations_serializers_organization_serializer = require('../../organizations/serializers/organization.serializer.cjs');
-const require_user_management_serializers_user_serializer = require('../../user-management/serializers/user.serializer.cjs');
-const require_user_management_serializers_invitation_serializer = require('../../user-management/serializers/invitation.serializer.cjs');
-const require_user_management_serializers_organization_membership_serializer = require('../../user-management/serializers/organization-membership.serializer.cjs');
+const require_action_serializer = require('../../action.serializer-BGWv6ab1.cjs');
 
-//#region src/actions/serializers/action.serializer.ts
-const deserializeUserData = (userData) => {
-	return {
-		object: userData.object,
-		email: userData.email,
-		firstName: userData.first_name,
-		lastName: userData.last_name
-	};
-};
-const deserializeAction = (actionPayload) => {
-	switch (actionPayload.object) {
-		case "user_registration_action_context": return {
-			id: actionPayload.id,
-			object: actionPayload.object,
-			userData: deserializeUserData(actionPayload.user_data),
-			invitation: actionPayload.invitation ? require_user_management_serializers_invitation_serializer.deserializeInvitation(actionPayload.invitation) : void 0,
-			ipAddress: actionPayload.ip_address,
-			userAgent: actionPayload.user_agent,
-			deviceFingerprint: actionPayload.device_fingerprint
-		};
-		case "authentication_action_context": return {
-			id: actionPayload.id,
-			object: actionPayload.object,
-			user: require_user_management_serializers_user_serializer.deserializeUser(actionPayload.user),
-			organization: actionPayload.organization ? require_organizations_serializers_organization_serializer.deserializeOrganization(actionPayload.organization) : void 0,
-			organizationMembership: actionPayload.organization_membership ? require_user_management_serializers_organization_membership_serializer.deserializeOrganizationMembership(actionPayload.organization_membership) : void 0,
-			ipAddress: actionPayload.ip_address,
-			userAgent: actionPayload.user_agent,
-			deviceFingerprint: actionPayload.device_fingerprint,
-			issuer: actionPayload.issuer
-		};
-	}
-};
-
-//#endregion
-exports.deserializeAction = deserializeAction;
-//# sourceMappingURL=action.serializer.cjs.map
+exports.deserializeAction = require_action_serializer.deserializeAction;

package/lib/actions/serializers/action.serializer.d.cts

@@ -1,4 +1,4 @@
-import { ActionContext, ActionPayload } from "../interfaces/action.interface.cjs";
+import { n as ActionPayload, t as ActionContext } from "../../action.interface-DuyarN1t.cjs";
 
 //#region src/actions/serializers/action.serializer.d.ts
 declare const deserializeAction: (actionPayload: ActionPayload) => ActionContext;

package/lib/actions-DTMrvfa0.d.cts

@@ -0,0 +1,41 @@
+import { t as CryptoProvider } from "./crypto-provider-CIbAgUc-.cjs";
+import { t as ActionContext } from "./action.interface-DuyarN1t.cjs";
+import { n as ResponsePayload, r as UserRegistrationActionResponseData, t as AuthenticationActionResponseData } from "./response-payload.interface-CC6ym1hG.cjs";
+
+//#region src/actions/actions.d.ts
+declare class Actions {
+  private signatureProvider;
+  constructor(cryptoProvider: CryptoProvider);
+  private get computeSignature();
+  get verifyHeader(): ({
+    payload,
+    sigHeader,
+    secret,
+    tolerance
+  }: {
+    payload: any;
+    sigHeader: string;
+    secret: string;
+    tolerance?: number;
+  }) => Promise<boolean>;
+  serializeType(type: AuthenticationActionResponseData['type'] | UserRegistrationActionResponseData['type']): "authentication_action_response" | "user_registration_action_response";
+  signResponse(data: AuthenticationActionResponseData | UserRegistrationActionResponseData, secret: string): Promise<{
+    object: string;
+    payload: ResponsePayload;
+    signature: string;
+  }>;
+  constructAction({
+    payload,
+    sigHeader,
+    secret,
+    tolerance
+  }: {
+    payload: unknown;
+    sigHeader: string;
+    secret: string;
+    tolerance?: number;
+  }): Promise<ActionContext>;
+}
+//#endregion
+export { Actions as t };
+//# sourceMappingURL=actions-DTMrvfa0.d.cts.map

package/lib/actions-DuKUPx9Z.cjs

@@ -0,0 +1,58 @@
+const require_signature_provider = require('./signature-provider-Dx4cy5vI.cjs');
+const require_unreachable = require('./unreachable-HIg8NPjR.cjs');
+const require_action_serializer = require('./action.serializer-BGWv6ab1.cjs');
+
+//#region src/actions/actions.ts
+var Actions = class {
+	signatureProvider;
+	constructor(cryptoProvider) {
+		this.signatureProvider = new require_signature_provider.SignatureProvider(cryptoProvider);
+	}
+	get computeSignature() {
+		return this.signatureProvider.computeSignature.bind(this.signatureProvider);
+	}
+	get verifyHeader() {
+		return this.signatureProvider.verifyHeader.bind(this.signatureProvider);
+	}
+	serializeType(type) {
+		switch (type) {
+			case "authentication": return "authentication_action_response";
+			case "user_registration": return "user_registration_action_response";
+			default: return require_unreachable.unreachable(type);
+		}
+	}
+	async signResponse(data, secret) {
+		let errorMessage;
+		const { verdict, type } = data;
+		if (verdict === "Deny" && data.errorMessage) errorMessage = data.errorMessage;
+		const responsePayload = {
+			timestamp: Date.now(),
+			verdict,
+			...verdict === "Deny" && data.errorMessage && { error_message: errorMessage }
+		};
+		return {
+			object: this.serializeType(type),
+			payload: responsePayload,
+			signature: await this.computeSignature(responsePayload.timestamp, responsePayload, secret)
+		};
+	}
+	async constructAction({ payload, sigHeader, secret, tolerance = 3e4 }) {
+		const options = {
+			payload,
+			sigHeader,
+			secret,
+			tolerance
+		};
+		await this.verifyHeader(options);
+		return require_action_serializer.deserializeAction(payload);
+	}
+};
+
+//#endregion
+Object.defineProperty(exports, 'Actions', {
+  enumerable: true,
+  get: function () {
+    return Actions;
+  }
+});
+//# sourceMappingURL=actions-DuKUPx9Z.cjs.map

package/lib/actions-DuKUPx9Z.cjs.map

@@ -0,0 +1 @@
+{"version":3,"file":"actions-DuKUPx9Z.cjs","names":["SignatureProvider","unreachable","errorMessage: string | undefined","responsePayload: ResponsePayload","deserializeAction"],"sources":["../src/actions/actions.ts"],"sourcesContent":["import { CryptoProvider } from '../common/crypto/crypto-provider';\nimport { SignatureProvider } from '../common/crypto/signature-provider';\nimport { unreachable } from '../common/utils/unreachable';\nimport { ActionContext, ActionPayload } from './interfaces/action.interface';\nimport {\n  AuthenticationActionResponseData,\n  ResponsePayload,\n  UserRegistrationActionResponseData,\n} from './interfaces/response-payload.interface';\nimport { deserializeAction } from './serializers/action.serializer';\n\nexport class Actions {\n  private signatureProvider: SignatureProvider;\n\n  constructor(cryptoProvider: CryptoProvider) {\n    this.signatureProvider = new SignatureProvider(cryptoProvider);\n  }\n\n  private get computeSignature() {\n    return this.signatureProvider.computeSignature.bind(this.signatureProvider);\n  }\n\n  get verifyHeader() {\n    return this.signatureProvider.verifyHeader.bind(this.signatureProvider);\n  }\n\n  serializeType(\n    type:\n      | AuthenticationActionResponseData['type']\n      | UserRegistrationActionResponseData['type'],\n  ) {\n    switch (type) {\n      case 'authentication':\n        return 'authentication_action_response';\n      case 'user_registration':\n        return 'user_registration_action_response';\n      default:\n        return unreachable(type);\n    }\n  }\n\n  async signResponse(\n    data: AuthenticationActionResponseData | UserRegistrationActionResponseData,\n    secret: string,\n  ) {\n    let errorMessage: string | undefined;\n    const { verdict, type } = data;\n\n    if (verdict === 'Deny' && data.errorMessage) {\n      errorMessage = data.errorMessage;\n    }\n\n    const responsePayload: ResponsePayload = {\n      timestamp: Date.now(),\n      verdict,\n      ...(verdict === 'Deny' &&\n        data.errorMessage && { error_message: errorMessage }),\n    };\n\n    const response = {\n      object: this.serializeType(type),\n      payload: responsePayload,\n      signature: await this.computeSignature(\n        responsePayload.timestamp,\n        responsePayload,\n        secret,\n      ),\n    };\n\n    return response;\n  }\n\n  async constructAction({\n    payload,\n    sigHeader,\n    secret,\n    tolerance = 30000,\n  }: {\n    payload: unknown;\n    sigHeader: string;\n    secret: string;\n    tolerance?: number;\n  }): Promise<ActionContext> {\n    const options = { payload, sigHeader, secret, tolerance };\n    await this.verifyHeader(options);\n\n    return deserializeAction(payload as ActionPayload);\n  }\n}\n"],"mappings":";;;;;AAWA,IAAa,UAAb,MAAqB;CACnB,AAAQ;CAER,YAAY,gBAAgC;AAC1C,OAAK,oBAAoB,IAAIA,6CAAkB,eAAe;;CAGhE,IAAY,mBAAmB;AAC7B,SAAO,KAAK,kBAAkB,iBAAiB,KAAK,KAAK,kBAAkB;;CAG7E,IAAI,eAAe;AACjB,SAAO,KAAK,kBAAkB,aAAa,KAAK,KAAK,kBAAkB;;CAGzE,cACE,MAGA;AACA,UAAQ,MAAR;GACE,KAAK,iBACH,QAAO;GACT,KAAK,oBACH,QAAO;GACT,QACE,QAAOC,gCAAY,KAAK;;;CAI9B,MAAM,aACJ,MACA,QACA;EACA,IAAIC;EACJ,MAAM,EAAE,SAAS,SAAS;AAE1B,MAAI,YAAY,UAAU,KAAK,aAC7B,gBAAe,KAAK;EAGtB,MAAMC,kBAAmC;GACvC,WAAW,KAAK,KAAK;GACrB;GACA,GAAI,YAAY,UACd,KAAK,gBAAgB,EAAE,eAAe,cAAc;GACvD;AAYD,SAViB;GACf,QAAQ,KAAK,cAAc,KAAK;GAChC,SAAS;GACT,WAAW,MAAM,KAAK,iBACpB,gBAAgB,WAChB,iBACA,OACD;GACF;;CAKH,MAAM,gBAAgB,EACpB,SACA,WACA,QACA,YAAY,OAMa;EACzB,MAAM,UAAU;GAAE;GAAS;GAAW;GAAQ;GAAW;AACzD,QAAM,KAAK,aAAa,QAAQ;AAEhC,SAAOC,4CAAkB,QAAyB"}

package/lib/add-flag-target-options.interface-CSZH3Ukq.d.cts

@@ -0,0 +1,8 @@
+//#region src/feature-flags/interfaces/add-flag-target-options.interface.d.ts
+interface AddFlagTargetOptions {
+  slug: string;
+  targetId: string;
+}
+//#endregion
+export { AddFlagTargetOptions as t };
+//# sourceMappingURL=add-flag-target-options.interface-CSZH3Ukq.d.cts.map

package/lib/api-key-required.exception-B3Qy27bt.d.cts

@@ -0,0 +1,10 @@
+//#region src/common/exceptions/api-key-required.exception.d.ts
+declare class ApiKeyRequiredException extends Error {
+  readonly status = 403;
+  readonly name = "ApiKeyRequiredException";
+  readonly path: string;
+  constructor(path: string);
+}
+//#endregion
+export { ApiKeyRequiredException as t };
+//# sourceMappingURL=api-key-required.exception-B3Qy27bt.d.cts.map

package/lib/api-key-required.exception-hy_QT4YB.cjs

@@ -0,0 +1,20 @@
+
+//#region src/common/exceptions/api-key-required.exception.ts
+var ApiKeyRequiredException = class extends Error {
+	status = 403;
+	name = "ApiKeyRequiredException";
+	path;
+	constructor(path) {
+		super(`API key required for "${path}". For server-side apps, initialize with: new WorkOS("sk_..."). For browser/mobile/CLI apps, use authenticateWithCodeAndVerifier() and authenticateWithRefreshToken() which work without an API key.`);
+		this.path = path;
+	}
+};
+
+//#endregion
+Object.defineProperty(exports, 'ApiKeyRequiredException', {
+  enumerable: true,
+  get: function () {
+    return ApiKeyRequiredException;
+  }
+});
+//# sourceMappingURL=api-key-required.exception-hy_QT4YB.cjs.map

package/lib/api-key-required.exception-hy_QT4YB.cjs.map

@@ -0,0 +1 @@
+{"version":3,"file":"api-key-required.exception-hy_QT4YB.cjs","names":[],"sources":["../src/common/exceptions/api-key-required.exception.ts"],"sourcesContent":["export class ApiKeyRequiredException extends Error {\n  readonly status = 403;\n  readonly name = 'ApiKeyRequiredException';\n  readonly path: string;\n\n  constructor(path: string) {\n    super(\n      `API key required for \"${path}\". ` +\n        `For server-side apps, initialize with: new WorkOS(\"sk_...\"). ` +\n        `For browser/mobile/CLI apps, use authenticateWithCodeAndVerifier() and authenticateWithRefreshToken() which work without an API key.`,\n    );\n    this.path = path;\n  }\n}\n"],"mappings":";;AAAA,IAAa,0BAAb,cAA6C,MAAM;CACjD,AAAS,SAAS;CAClB,AAAS,OAAO;CAChB,AAAS;CAET,YAAY,MAAc;AACxB,QACE,yBAAyB,KAAK,sMAG/B;AACD,OAAK,OAAO"}

package/lib/api-key.interface-Bc1XdCvA.d.cts

@@ -0,0 +1,32 @@
+//#region src/api-keys/interfaces/api-key.interface.d.ts
+interface ApiKey {
+  object: 'api_key';
+  id: string;
+  owner: {
+    type: 'organization';
+    id: string;
+  };
+  name: string;
+  obfuscatedValue: string;
+  lastUsedAt: string | null;
+  permissions: string[];
+  createdAt: string;
+  updatedAt: string;
+}
+interface SerializedApiKey {
+  object: 'api_key';
+  id: string;
+  owner: {
+    type: 'organization';
+    id: string;
+  };
+  name: string;
+  obfuscated_value: string;
+  last_used_at: string | null;
+  permissions: string[];
+  created_at: string;
+  updated_at: string;
+}
+//#endregion
+export { SerializedApiKey as n, ApiKey as t };
+//# sourceMappingURL=api-key.interface-Bc1XdCvA.d.cts.map

package/lib/api-key.serializer-384tUKDU.cjs

@@ -0,0 +1,24 @@
+
+//#region src/api-keys/serializers/api-key.serializer.ts
+function deserializeApiKey(apiKey) {
+	return {
+		object: apiKey.object,
+		id: apiKey.id,
+		owner: apiKey.owner,
+		name: apiKey.name,
+		obfuscatedValue: apiKey.obfuscated_value,
+		lastUsedAt: apiKey.last_used_at,
+		permissions: apiKey.permissions,
+		createdAt: apiKey.created_at,
+		updatedAt: apiKey.updated_at
+	};
+}
+
+//#endregion
+Object.defineProperty(exports, 'deserializeApiKey', {
+  enumerable: true,
+  get: function () {
+    return deserializeApiKey;
+  }
+});
+//# sourceMappingURL=api-key.serializer-384tUKDU.cjs.map

package/lib/api-key.serializer-384tUKDU.cjs.map

@@ -0,0 +1 @@
+{"version":3,"file":"api-key.serializer-384tUKDU.cjs","names":[],"sources":["../src/api-keys/serializers/api-key.serializer.ts"],"sourcesContent":["import { ApiKey, SerializedApiKey } from '../interfaces/api-key.interface';\n\nexport function deserializeApiKey(apiKey: SerializedApiKey): ApiKey {\n  return {\n    object: apiKey.object,\n    id: apiKey.id,\n    owner: apiKey.owner,\n    name: apiKey.name,\n    obfuscatedValue: apiKey.obfuscated_value,\n    lastUsedAt: apiKey.last_used_at,\n    permissions: apiKey.permissions,\n    createdAt: apiKey.created_at,\n    updatedAt: apiKey.updated_at,\n  };\n}\n"],"mappings":";;AAEA,SAAgB,kBAAkB,QAAkC;AAClE,QAAO;EACL,QAAQ,OAAO;EACf,IAAI,OAAO;EACX,OAAO,OAAO;EACd,MAAM,OAAO;EACb,iBAAiB,OAAO;EACxB,YAAY,OAAO;EACnB,aAAa,OAAO;EACpB,WAAW,OAAO;EAClB,WAAW,OAAO;EACnB"}

package/lib/api-key.serializer-CFSEdidV.d.cts

@@ -0,0 +1,7 @@
+import { n as SerializedApiKey, t as ApiKey } from "./api-key.interface-Bc1XdCvA.cjs";
+
+//#region src/api-keys/serializers/api-key.serializer.d.ts
+declare function deserializeApiKey(apiKey: SerializedApiKey): ApiKey;
+//#endregion
+export { deserializeApiKey as t };
+//# sourceMappingURL=api-key.serializer-CFSEdidV.d.cts.map