@workos-inc/node 8.2.0 → 8.3.0

package/lib/widgets/interfaces/get-token.cjs

@@ -1,4 +1,4 @@
-const require_get_token = require('../../get-token-2lecb0Cy.cjs');
+const require_get_token = require('../../get-token-cdbfCycJ.cjs');
 
 exports.deserializeGetTokenResponse = require_get_token.deserializeGetTokenResponse;
 exports.serializeGetTokenOptions = require_get_token.serializeGetTokenOptions;

package/lib/widgets/widgets.cjs

@@ -1,3 +1,3 @@
-const require_widgets = require('../widgets-UYWIfPS5.cjs');
+const require_widgets = require('../widgets-BRJb0-Zr.cjs');
 
 exports.Widgets = require_widgets.Widgets;

package/lib/widgets/widgets.d.cts

@@ -1,2 +1,2 @@
-import { f as Widgets } from "../api-keys-4KSJ7vul.cjs";
+import { f as Widgets } from "../api-keys-CrR113By.cjs";
 export { Widgets };

package/lib/{widgets-UYWIfPS5.cjs → widgets-BRJb0-Zr.cjs}

@@ -1,4 +1,4 @@
-const require_get_token = require('./get-token-2lecb0Cy.cjs');
+const require_get_token = require('./get-token-cdbfCycJ.cjs');
 
 //#region src/widgets/widgets.ts
 var Widgets = class {
@@ -18,4 +18,4 @@ Object.defineProperty(exports, 'Widgets', {
     return Widgets;
   }
 });
-//# sourceMappingURL=widgets-UYWIfPS5.cjs.map
+//# sourceMappingURL=widgets-BRJb0-Zr.cjs.map

package/lib/{widgets-UYWIfPS5.cjs.map → widgets-BRJb0-Zr.cjs.map}

@@ -1 +1 @@
-{"version":3,"file":"widgets-UYWIfPS5.cjs","names":["workos: WorkOS","serializeGetTokenOptions","deserializeGetTokenResponse"],"sources":["../src/widgets/widgets.ts"],"sourcesContent":["import { WorkOS } from '../workos';\nimport {\n  deserializeGetTokenResponse,\n  GetTokenOptions,\n  GetTokenResponseResponse,\n  SerializedGetTokenOptions,\n  serializeGetTokenOptions,\n} from './interfaces/get-token';\n\nexport class Widgets {\n  constructor(private readonly workos: WorkOS) {}\n\n  async getToken(payload: GetTokenOptions): Promise<string> {\n    const { data } = await this.workos.post<\n      GetTokenResponseResponse,\n      SerializedGetTokenOptions\n    >('/widgets/token', serializeGetTokenOptions(payload));\n\n    return deserializeGetTokenResponse(data).token;\n  }\n}\n"],"mappings":";;;AASA,IAAa,UAAb,MAAqB;CACnB,YAAY,AAAiBA,QAAgB;EAAhB;;CAE7B,MAAM,SAAS,SAA2C;EACxD,MAAM,EAAE,SAAS,MAAM,KAAK,OAAO,KAGjC,kBAAkBC,2CAAyB,QAAQ,CAAC;AAEtD,SAAOC,8CAA4B,KAAK,CAAC"}
+{"version":3,"file":"widgets-BRJb0-Zr.cjs","names":["workos: WorkOS","serializeGetTokenOptions","deserializeGetTokenResponse"],"sources":["../src/widgets/widgets.ts"],"sourcesContent":["import { WorkOS } from '../workos';\nimport {\n  deserializeGetTokenResponse,\n  GetTokenOptions,\n  GetTokenResponseResponse,\n  SerializedGetTokenOptions,\n  serializeGetTokenOptions,\n} from './interfaces/get-token';\n\nexport class Widgets {\n  constructor(private readonly workos: WorkOS) {}\n\n  async getToken(payload: GetTokenOptions): Promise<string> {\n    const { data } = await this.workos.post<\n      GetTokenResponseResponse,\n      SerializedGetTokenOptions\n    >('/widgets/token', serializeGetTokenOptions(payload));\n\n    return deserializeGetTokenResponse(data).token;\n  }\n}\n"],"mappings":";;;AASA,IAAa,UAAb,MAAqB;CACnB,YAAY,AAAiBA,QAAgB;EAAhB;;CAE7B,MAAM,SAAS,SAA2C;EACxD,MAAM,EAAE,SAAS,MAAM,KAAK,OAAO,KAGjC,kBAAkBC,2CAAyB,QAAQ,CAAC;AAEtD,SAAOC,8CAA4B,KAAK,CAAC"}

package/lib/{workos-HBr0yoqZ.cjs → workos-CU67HvQn.cjs}

@@ -8,34 +8,34 @@ const require_unauthorized_exception = require('./unauthorized.exception-hTKkIjP
 const require_unprocessable_entity_exception = require('./unprocessable-entity.exception-BdCyQCYX.cjs');
 const require_pkce = require('./pkce-Bu_KcDMw.cjs');
 const require_api_keys = require('./api-keys-DpNACVjB.cjs');
-const require_directory_sync = require('./directory-sync-DKBetghA.cjs');
-const require_events = require('./events-lqbh0x1u.cjs');
-const require_organizations = require('./organizations-CqJIT1Q5.cjs');
-const require_organization_domains = require('./organization-domains-BRGEKO06.cjs');
-const require_passwordless = require('./passwordless-DEThp5fE.cjs');
-const require_pipes = require('./pipes-BACoDN0N.cjs');
-const require_portal = require('./portal-DeMgODuk.cjs');
-const require_sso = require('./sso-BGdbsFSR.cjs');
-const require_webhooks = require('./webhooks-CPFNC99w.cjs');
-const require_mfa = require('./mfa-BbisUIpM.cjs');
-const require_audit_logs = require('./audit-logs-CnDObwhP.cjs');
-const require_env = require('./env-CCN5u8Rv.cjs');
-const require_user_management = require('./user-management-DCbkjgk8.cjs');
-const require_fga = require('./fga-DDQcYlFx.cjs');
-const require_feature_flags = require('./feature-flags-w4M2jmZ4.cjs');
-const require_http_client = require('./http-client-8EHeTnVH.cjs');
-const require_subtle_crypto_provider = require('./subtle-crypto-provider-z15sJdtL.cjs');
-const require_parse_error = require('./parse-error-B7u-PJ1K.cjs');
-const require_fetch_client = require('./fetch-client-CP0ICYQG.cjs');
-const require_widgets = require('./widgets-UYWIfPS5.cjs');
-const require_actions = require('./actions-DuKUPx9Z.cjs');
-const require_authorization = require('./authorization-BQtSYdHQ.cjs');
+const require_directory_sync = require('./directory-sync-pnubY2JS.cjs');
+const require_events = require('./events-DUwPz2Dc.cjs');
+const require_organizations = require('./organizations-YJmyTBI7.cjs');
+const require_organization_domains = require('./organization-domains-DjSUcSTL.cjs');
+const require_passwordless = require('./passwordless-DTlsaF8V.cjs');
+const require_pipes = require('./pipes-CRAGN38U.cjs');
+const require_portal = require('./portal-BjIQRDuq.cjs');
+const require_sso = require('./sso-DgPiUuie.cjs');
+const require_webhooks = require('./webhooks-BNPP-kiP.cjs');
+const require_mfa = require('./mfa-sqTC0oK9.cjs');
+const require_audit_logs = require('./audit-logs-DiZN60g_.cjs');
+const require_env = require('./env-BRem2_1e.cjs');
+const require_user_management = require('./user-management-BiK0k4qR.cjs');
+const require_fga = require('./fga-DWvTVn5k.cjs');
+const require_feature_flags = require('./feature-flags-C-2fqPKn.cjs');
+const require_http_client = require('./http-client-J_x7lZuh.cjs');
+const require_subtle_crypto_provider = require('./subtle-crypto-provider-BMf63Lhz.cjs');
+const require_parse_error = require('./parse-error-DGjhb0xQ.cjs');
+const require_fetch_client = require('./fetch-client-CiqtLSDr.cjs');
+const require_widgets = require('./widgets-BRJb0-Zr.cjs');
+const require_actions = require('./actions-BQWfMHLW.cjs');
+const require_authorization = require('./authorization-CK0d-2Tg.cjs');
 const require_vault = require('./vault-DFZlnEty.cjs');
 const require_conflict_exception = require('./conflict.exception-4m45wGr8.cjs');
-const require_runtime_info = require('./runtime-info-CkgTBGi9.cjs');
+const require_runtime_info = require('./runtime-info-1sRVT3y-.cjs');
 
 //#region src/workos.ts
-const VERSION = "8.2.0";
+const VERSION = "8.3.0";
 const DEFAULT_HOSTNAME = "api.workos.com";
 const HEADER_AUTHORIZATION = "Authorization";
 const HEADER_IDEMPOTENCY_KEY = "Idempotency-Key";
@@ -329,4 +329,4 @@ Object.defineProperty(exports, 'WorkOS', {
     return WorkOS;
   }
 });
-//# sourceMappingURL=workos-HBr0yoqZ.cjs.map
+//# sourceMappingURL=workos-CU67HvQn.cjs.map

package/lib/{workos-HBr0yoqZ.cjs.map → workos-CU67HvQn.cjs.map}

@@ -1 +1 @@
-{"version":3,"file":"workos-HBr0yoqZ.cjs","names":["ApiKeys","AuditLogs","Authorization","DirectorySync","Events","FeatureFlags","FGA","Mfa","Organizations","OrganizationDomains","Passwordless","Pipes","Portal","SSO","Vault","Widgets","getEnv","protocol: string","apiHostname: string","port: number | undefined","PKCE","UserManagement","userAgent: string","getRuntimeInfo","Webhooks","Actions","SubtleCryptoProvider","headers: Record<string, string>","FetchHttpClient","ApiKeyRequiredException","requestHeaders: Record<string, string>","res: HttpClientResponseInterface","ParseError","HttpClientError","UnauthorizedException","ConflictException","UnprocessableEntityException","NotFoundException","RateLimitExceededException","error","OauthException","BadRequestException","GenericServerException"],"sources":["../src/workos.ts"],"sourcesContent":["import {\n  ApiKeyRequiredException,\n  GenericServerException,\n  NotFoundException,\n  UnauthorizedException,\n  UnprocessableEntityException,\n  OauthException,\n  RateLimitExceededException,\n} from './common/exceptions';\nimport { PKCE } from './pkce/pkce';\nimport {\n  GetOptions,\n  HttpClientResponseInterface,\n  PatchOptions,\n  PostOptions,\n  PutOptions,\n  WorkOSOptions,\n  WorkOSResponseError,\n} from './common/interfaces';\nimport { ApiKeys } from './api-keys/api-keys';\nimport { DirectorySync } from './directory-sync/directory-sync';\nimport { Events } from './events/events';\nimport { Organizations } from './organizations/organizations';\nimport { OrganizationDomains } from './organization-domains/organization-domains';\nimport { Passwordless } from './passwordless/passwordless';\nimport { Pipes } from './pipes/pipes';\nimport { Portal } from './portal/portal';\nimport { SSO } from './sso/sso';\nimport { Webhooks } from './webhooks/webhooks';\nimport { Mfa } from './mfa/mfa';\nimport { AuditLogs } from './audit-logs/audit-logs';\nimport { UserManagement } from './user-management/user-management';\nimport { FGA } from './fga/fga';\nimport { BadRequestException } from './common/exceptions/bad-request.exception';\nimport { FeatureFlags } from './feature-flags/feature-flags';\n\nimport { HttpClient, HttpClientError } from './common/net/http-client';\nimport { SubtleCryptoProvider } from './common/crypto/subtle-crypto-provider';\nimport { FetchHttpClient } from './common/net/fetch-client';\nimport { Widgets } from './widgets/widgets';\nimport { Actions } from './actions/actions';\nimport { Authorization } from './authorization/authorization';\nimport { Vault } from './vault/vault';\nimport { ConflictException } from './common/exceptions/conflict.exception';\nimport { CryptoProvider } from './common/crypto/crypto-provider';\nimport { ParseError } from './common/exceptions/parse-error';\nimport { getEnv } from './common/utils/env';\nimport { getRuntimeInfo } from './common/utils/runtime-info';\n\nconst VERSION = '8.2.0';\n\nconst DEFAULT_HOSTNAME = 'api.workos.com';\n\nconst HEADER_AUTHORIZATION = 'Authorization';\nconst HEADER_IDEMPOTENCY_KEY = 'Idempotency-Key';\nconst HEADER_WARRANT_TOKEN = 'Warrant-Token';\n\nexport class WorkOS {\n  readonly baseURL: string;\n  readonly client: HttpClient;\n  readonly clientId?: string;\n  readonly key?: string;\n  readonly options: WorkOSOptions;\n  readonly pkce: PKCE;\n\n  private readonly hasApiKey: boolean;\n\n  readonly actions: Actions;\n  readonly apiKeys = new ApiKeys(this);\n  readonly auditLogs = new AuditLogs(this);\n  readonly authorization = new Authorization(this);\n  readonly directorySync = new DirectorySync(this);\n  readonly events = new Events(this);\n  readonly featureFlags = new FeatureFlags(this);\n  readonly fga = new FGA(this);\n  readonly mfa = new Mfa(this);\n  readonly organizations = new Organizations(this);\n  readonly organizationDomains = new OrganizationDomains(this);\n  readonly passwordless = new Passwordless(this);\n  readonly pipes = new Pipes(this);\n  readonly portal = new Portal(this);\n  readonly sso = new SSO(this);\n  readonly userManagement: UserManagement;\n  readonly vault = new Vault(this);\n  readonly webhooks: Webhooks;\n  readonly widgets = new Widgets(this);\n\n  /**\n   * Create a new WorkOS client.\n   *\n   * @param keyOrOptions - API key string, or options object\n   * @param maybeOptions - Options when first argument is API key\n   *\n   * @example\n   * // Server-side with API key (string)\n   * const workos = new WorkOS('sk_...');\n   *\n   * @example\n   * // Server-side with API key (object)\n   * const workos = new WorkOS({ apiKey: 'sk_...', clientId: 'client_...' });\n   *\n   * @example\n   * // PKCE/public client (no API key)\n   * const workos = new WorkOS({ clientId: 'client_...' });\n   */\n  constructor(\n    keyOrOptions?: string | WorkOSOptions,\n    maybeOptions?: WorkOSOptions,\n  ) {\n    if (typeof keyOrOptions === 'object') {\n      this.key = keyOrOptions.apiKey;\n      this.options = keyOrOptions;\n    } else {\n      this.key = keyOrOptions;\n      this.options = maybeOptions ?? {};\n    }\n\n    if (!this.key) {\n      this.key = getEnv('WORKOS_API_KEY');\n    }\n\n    this.hasApiKey = !!this.key;\n\n    if (this.options.https === undefined) {\n      this.options.https = true;\n    }\n\n    this.clientId = this.options.clientId;\n    if (!this.clientId) {\n      this.clientId = getEnv('WORKOS_CLIENT_ID');\n    }\n\n    if (!this.hasApiKey && !this.clientId) {\n      throw new Error(\n        'WorkOS requires either an API key or a clientId. ' +\n          'For server-side: new WorkOS(\"sk_...\") or new WorkOS({ apiKey: \"sk_...\" }). ' +\n          'For PKCE/public clients: new WorkOS({ clientId: \"client_...\" })',\n      );\n    }\n\n    const protocol: string = this.options.https ? 'https' : 'http';\n    const apiHostname: string = this.options.apiHostname || DEFAULT_HOSTNAME;\n    const port: number | undefined = this.options.port;\n    this.baseURL = `${protocol}://${apiHostname}`;\n\n    if (port) {\n      this.baseURL = this.baseURL + `:${port}`;\n    }\n\n    this.pkce = new PKCE();\n\n    this.webhooks = this.createWebhookClient();\n    this.actions = this.createActionsClient();\n\n    // Must initialize UserManagement after baseURL is configured\n    this.userManagement = new UserManagement(this);\n\n    const userAgent = this.createUserAgent(this.options);\n\n    this.client = this.createHttpClient(this.options, userAgent);\n  }\n\n  private createUserAgent(options: WorkOSOptions): string {\n    let userAgent: string = `workos-node/${VERSION}`;\n\n    const { name: runtimeName, version: runtimeVersion } = getRuntimeInfo();\n    userAgent += ` (${runtimeName}${runtimeVersion ? `/${runtimeVersion}` : ''})`;\n\n    if (options.appInfo) {\n      const { name, version } = options.appInfo;\n      userAgent += ` ${name}: ${version}`;\n    }\n\n    return userAgent;\n  }\n\n  createWebhookClient() {\n    return new Webhooks(this.getCryptoProvider());\n  }\n\n  createActionsClient() {\n    return new Actions(this.getCryptoProvider());\n  }\n\n  getCryptoProvider(): CryptoProvider {\n    return new SubtleCryptoProvider();\n  }\n\n  createHttpClient(options: WorkOSOptions, userAgent: string) {\n    const headers: Record<string, string> = {\n      'User-Agent': userAgent,\n    };\n\n    const configHeaders = options.config?.headers;\n    if (\n      configHeaders &&\n      typeof configHeaders === 'object' &&\n      !Array.isArray(configHeaders) &&\n      !(configHeaders instanceof Headers)\n    ) {\n      Object.assign(headers, configHeaders);\n    }\n\n    if (this.key) {\n      headers['Authorization'] = `Bearer ${this.key}`;\n    }\n\n    return new FetchHttpClient(this.baseURL, {\n      ...options.config,\n      timeout: options.timeout,\n      headers,\n    }) as HttpClient;\n  }\n\n  get version() {\n    return VERSION;\n  }\n\n  /**\n   * Require API key for methods that need it.\n   * @param methodName - Name of the method requiring API key (for error message)\n   * @throws ApiKeyRequiredException if no API key was provided\n   */\n  requireApiKey(methodName: string): void {\n    if (!this.hasApiKey) {\n      throw new ApiKeyRequiredException(methodName);\n    }\n  }\n\n  async post<Result = any, Entity = any>(\n    path: string,\n    entity: Entity,\n    options: PostOptions = {},\n  ): Promise<{ data: Result }> {\n    if (!options.skipApiKeyCheck) {\n      this.requireApiKey(path);\n    }\n\n    const requestHeaders: Record<string, string> = {};\n\n    if (options.idempotencyKey) {\n      requestHeaders[HEADER_IDEMPOTENCY_KEY] = options.idempotencyKey;\n    }\n\n    if (options.warrantToken) {\n      requestHeaders[HEADER_WARRANT_TOKEN] = options.warrantToken;\n    }\n\n    let res: HttpClientResponseInterface;\n\n    try {\n      res = await this.client.post<Entity>(path, entity, {\n        params: options.query,\n        headers: requestHeaders,\n      });\n    } catch (error) {\n      this.handleHttpError({ path, error });\n      throw error;\n    }\n\n    try {\n      return { data: await res.toJSON() };\n    } catch (error) {\n      await this.handleParseError(error, res);\n      throw error;\n    }\n  }\n\n  async get<Result = any>(\n    path: string,\n    options: GetOptions = {},\n  ): Promise<{ data: Result }> {\n    if (!options.skipApiKeyCheck) {\n      this.requireApiKey(path);\n    }\n\n    const requestHeaders: Record<string, string> = {};\n\n    if (options.accessToken) {\n      requestHeaders[HEADER_AUTHORIZATION] = `Bearer ${options.accessToken}`;\n    }\n\n    if (options.warrantToken) {\n      requestHeaders[HEADER_WARRANT_TOKEN] = options.warrantToken;\n    }\n\n    let res: HttpClientResponseInterface;\n    try {\n      res = await this.client.get(path, {\n        params: options.query,\n        headers: requestHeaders,\n      });\n    } catch (error) {\n      this.handleHttpError({ path, error });\n\n      throw error;\n    }\n\n    try {\n      return { data: await res.toJSON() };\n    } catch (error) {\n      await this.handleParseError(error, res);\n      throw error;\n    }\n  }\n\n  async put<Result = any, Entity = any>(\n    path: string,\n    entity: Entity,\n    options: PutOptions = {},\n  ): Promise<{ data: Result }> {\n    if (!options.skipApiKeyCheck) {\n      this.requireApiKey(path);\n    }\n\n    const requestHeaders: Record<string, string> = {};\n\n    if (options.idempotencyKey) {\n      requestHeaders[HEADER_IDEMPOTENCY_KEY] = options.idempotencyKey;\n    }\n\n    let res: HttpClientResponseInterface;\n\n    try {\n      res = await this.client.put<Entity>(path, entity, {\n        params: options.query,\n        headers: requestHeaders,\n      });\n    } catch (error) {\n      this.handleHttpError({ path, error });\n\n      throw error;\n    }\n\n    try {\n      return { data: await res.toJSON() };\n    } catch (error) {\n      await this.handleParseError(error, res);\n      throw error;\n    }\n  }\n\n  async patch<Result = any, Entity = any>(\n    path: string,\n    entity: Entity,\n    options: PatchOptions = {},\n  ): Promise<{ data: Result }> {\n    if (!options.skipApiKeyCheck) {\n      this.requireApiKey(path);\n    }\n\n    const requestHeaders: Record<string, string> = {};\n\n    if (options.idempotencyKey) {\n      requestHeaders[HEADER_IDEMPOTENCY_KEY] = options.idempotencyKey;\n    }\n\n    let res: HttpClientResponseInterface;\n\n    try {\n      res = await this.client.patch<Entity>(path, entity, {\n        params: options.query,\n        headers: requestHeaders,\n      });\n    } catch (error) {\n      this.handleHttpError({ path, error });\n\n      throw error;\n    }\n\n    try {\n      return { data: await res.toJSON() };\n    } catch (error) {\n      await this.handleParseError(error, res);\n      throw error;\n    }\n  }\n\n  async delete(path: string, query?: any): Promise<void> {\n    this.requireApiKey(path);\n\n    try {\n      await this.client.delete(path, {\n        params: query,\n      });\n    } catch (error) {\n      this.handleHttpError({ path, error });\n\n      throw error;\n    }\n  }\n\n  emitWarning(warning: string) {\n    // tslint:disable-next-line:no-console\n    console.warn(`WorkOS: ${warning}`);\n  }\n\n  private async handleParseError(\n    error: unknown,\n    res: HttpClientResponseInterface,\n  ) {\n    if (error instanceof SyntaxError) {\n      const rawResponse = res.getRawResponse() as Response;\n      const requestID = rawResponse.headers.get('X-Request-ID') ?? '';\n      const rawStatus = rawResponse.status;\n      const rawBody = await rawResponse.text();\n      throw new ParseError({\n        message: error.message,\n        rawBody,\n        rawStatus,\n        requestID,\n      });\n    }\n  }\n\n  private handleHttpError({ path, error }: { path: string; error: unknown }) {\n    if (!(error instanceof HttpClientError)) {\n      throw new Error(`Unexpected error: ${error}`, { cause: error });\n    }\n\n    const { response } = error as HttpClientError<WorkOSResponseError>;\n\n    if (response) {\n      const { status, data, headers } = response;\n\n      const requestID = headers['X-Request-ID'] ?? '';\n      const {\n        code,\n        error_description: errorDescription,\n        error,\n        errors,\n        message,\n      } = data;\n\n      switch (status) {\n        case 401: {\n          throw new UnauthorizedException(requestID);\n        }\n        case 409: {\n          throw new ConflictException({ requestID, message, error });\n        }\n        case 422: {\n          throw new UnprocessableEntityException({\n            code,\n            errors,\n            message,\n            requestID,\n          });\n        }\n        case 404: {\n          throw new NotFoundException({\n            code,\n            message,\n            path,\n            requestID,\n          });\n        }\n        case 429: {\n          const retryAfter = headers.get('Retry-After');\n\n          throw new RateLimitExceededException(\n            data.message,\n            requestID,\n            retryAfter ? Number(retryAfter) : null,\n          );\n        }\n        default: {\n          if (error || errorDescription) {\n            throw new OauthException(\n              status,\n              requestID,\n              error,\n              errorDescription,\n              data,\n            );\n          } else if (code && errors) {\n            // Note: ideally this should be mapped directly with a `400` status code.\n            // However, this would break existing logic for the `OauthException` exception.\n            throw new BadRequestException({\n              code,\n              errors,\n              message,\n              requestID,\n            });\n          } else {\n            throw new GenericServerException(\n              status,\n              data.message,\n              data,\n              requestID,\n            );\n          }\n        }\n      }\n    }\n  }\n}\n"],"mappings":";;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;AAiDA,MAAM,UAAU;AAEhB,MAAM,mBAAmB;AAEzB,MAAM,uBAAuB;AAC7B,MAAM,yBAAyB;AAC/B,MAAM,uBAAuB;AAE7B,IAAa,SAAb,MAAoB;CAClB,AAAS;CACT,AAAS;CACT,AAAS;CACT,AAAS;CACT,AAAS;CACT,AAAS;CAET,AAAiB;CAEjB,AAAS;CACT,AAAS,UAAU,IAAIA,yBAAQ,KAAK;CACpC,AAAS,YAAY,IAAIC,6BAAU,KAAK;CACxC,AAAS,gBAAgB,IAAIC,oCAAc,KAAK;CAChD,AAAS,gBAAgB,IAAIC,qCAAc,KAAK;CAChD,AAAS,SAAS,IAAIC,sBAAO,KAAK;CAClC,AAAS,eAAe,IAAIC,mCAAa,KAAK;CAC9C,AAAS,MAAM,IAAIC,gBAAI,KAAK;CAC5B,AAAS,MAAM,IAAIC,gBAAI,KAAK;CAC5B,AAAS,gBAAgB,IAAIC,oCAAc,KAAK;CAChD,AAAS,sBAAsB,IAAIC,iDAAoB,KAAK;CAC5D,AAAS,eAAe,IAAIC,kCAAa,KAAK;CAC9C,AAAS,QAAQ,IAAIC,oBAAM,KAAK;CAChC,AAAS,SAAS,IAAIC,sBAAO,KAAK;CAClC,AAAS,MAAM,IAAIC,gBAAI,KAAK;CAC5B,AAAS;CACT,AAAS,QAAQ,IAAIC,oBAAM,KAAK;CAChC,AAAS;CACT,AAAS,UAAU,IAAIC,wBAAQ,KAAK;;;;;;;;;;;;;;;;;;;CAoBpC,YACE,cACA,cACA;AACA,MAAI,OAAO,iBAAiB,UAAU;AACpC,QAAK,MAAM,aAAa;AACxB,QAAK,UAAU;SACV;AACL,QAAK,MAAM;AACX,QAAK,UAAU,gBAAgB,EAAE;;AAGnC,MAAI,CAAC,KAAK,IACR,MAAK,MAAMC,mBAAO,iBAAiB;AAGrC,OAAK,YAAY,CAAC,CAAC,KAAK;AAExB,MAAI,KAAK,QAAQ,UAAU,OACzB,MAAK,QAAQ,QAAQ;AAGvB,OAAK,WAAW,KAAK,QAAQ;AAC7B,MAAI,CAAC,KAAK,SACR,MAAK,WAAWA,mBAAO,mBAAmB;AAG5C,MAAI,CAAC,KAAK,aAAa,CAAC,KAAK,SAC3B,OAAM,IAAI,MACR,oMAGD;EAGH,MAAMC,WAAmB,KAAK,QAAQ,QAAQ,UAAU;EACxD,MAAMC,cAAsB,KAAK,QAAQ,eAAe;EACxD,MAAMC,OAA2B,KAAK,QAAQ;AAC9C,OAAK,UAAU,GAAG,SAAS,KAAK;AAEhC,MAAI,KACF,MAAK,UAAU,KAAK,UAAU,IAAI;AAGpC,OAAK,OAAO,IAAIC,mBAAM;AAEtB,OAAK,WAAW,KAAK,qBAAqB;AAC1C,OAAK,UAAU,KAAK,qBAAqB;AAGzC,OAAK,iBAAiB,IAAIC,uCAAe,KAAK;EAE9C,MAAM,YAAY,KAAK,gBAAgB,KAAK,QAAQ;AAEpD,OAAK,SAAS,KAAK,iBAAiB,KAAK,SAAS,UAAU;;CAG9D,AAAQ,gBAAgB,SAAgC;EACtD,IAAIC,YAAoB,eAAe;EAEvC,MAAM,EAAE,MAAM,aAAa,SAAS,mBAAmBC,qCAAgB;AACvE,eAAa,KAAK,cAAc,iBAAiB,IAAI,mBAAmB,GAAG;AAE3E,MAAI,QAAQ,SAAS;GACnB,MAAM,EAAE,MAAM,YAAY,QAAQ;AAClC,gBAAa,IAAI,KAAK,IAAI;;AAG5B,SAAO;;CAGT,sBAAsB;AACpB,SAAO,IAAIC,0BAAS,KAAK,mBAAmB,CAAC;;CAG/C,sBAAsB;AACpB,SAAO,IAAIC,wBAAQ,KAAK,mBAAmB,CAAC;;CAG9C,oBAAoC;AAClC,SAAO,IAAIC,qDAAsB;;CAGnC,iBAAiB,SAAwB,WAAmB;EAC1D,MAAMC,UAAkC,EACtC,cAAc,WACf;EAED,MAAM,gBAAgB,QAAQ,QAAQ;AACtC,MACE,iBACA,OAAO,kBAAkB,YACzB,CAAC,MAAM,QAAQ,cAAc,IAC7B,EAAE,yBAAyB,SAE3B,QAAO,OAAO,SAAS,cAAc;AAGvC,MAAI,KAAK,IACP,SAAQ,mBAAmB,UAAU,KAAK;AAG5C,SAAO,IAAIC,qCAAgB,KAAK,SAAS;GACvC,GAAG,QAAQ;GACX,SAAS,QAAQ;GACjB;GACD,CAAC;;CAGJ,IAAI,UAAU;AACZ,SAAO;;;;;;;CAQT,cAAc,YAA0B;AACtC,MAAI,CAAC,KAAK,UACR,OAAM,IAAIC,2DAAwB,WAAW;;CAIjD,MAAM,KACJ,MACA,QACA,UAAuB,EAAE,EACE;AAC3B,MAAI,CAAC,QAAQ,gBACX,MAAK,cAAc,KAAK;EAG1B,MAAMC,iBAAyC,EAAE;AAEjD,MAAI,QAAQ,eACV,gBAAe,0BAA0B,QAAQ;AAGnD,MAAI,QAAQ,aACV,gBAAe,wBAAwB,QAAQ;EAGjD,IAAIC;AAEJ,MAAI;AACF,SAAM,MAAM,KAAK,OAAO,KAAa,MAAM,QAAQ;IACjD,QAAQ,QAAQ;IAChB,SAAS;IACV,CAAC;WACK,OAAO;AACd,QAAK,gBAAgB;IAAE;IAAM;IAAO,CAAC;AACrC,SAAM;;AAGR,MAAI;AACF,UAAO,EAAE,MAAM,MAAM,IAAI,QAAQ,EAAE;WAC5B,OAAO;AACd,SAAM,KAAK,iBAAiB,OAAO,IAAI;AACvC,SAAM;;;CAIV,MAAM,IACJ,MACA,UAAsB,EAAE,EACG;AAC3B,MAAI,CAAC,QAAQ,gBACX,MAAK,cAAc,KAAK;EAG1B,MAAMD,iBAAyC,EAAE;AAEjD,MAAI,QAAQ,YACV,gBAAe,wBAAwB,UAAU,QAAQ;AAG3D,MAAI,QAAQ,aACV,gBAAe,wBAAwB,QAAQ;EAGjD,IAAIC;AACJ,MAAI;AACF,SAAM,MAAM,KAAK,OAAO,IAAI,MAAM;IAChC,QAAQ,QAAQ;IAChB,SAAS;IACV,CAAC;WACK,OAAO;AACd,QAAK,gBAAgB;IAAE;IAAM;IAAO,CAAC;AAErC,SAAM;;AAGR,MAAI;AACF,UAAO,EAAE,MAAM,MAAM,IAAI,QAAQ,EAAE;WAC5B,OAAO;AACd,SAAM,KAAK,iBAAiB,OAAO,IAAI;AACvC,SAAM;;;CAIV,MAAM,IACJ,MACA,QACA,UAAsB,EAAE,EACG;AAC3B,MAAI,CAAC,QAAQ,gBACX,MAAK,cAAc,KAAK;EAG1B,MAAMD,iBAAyC,EAAE;AAEjD,MAAI,QAAQ,eACV,gBAAe,0BAA0B,QAAQ;EAGnD,IAAIC;AAEJ,MAAI;AACF,SAAM,MAAM,KAAK,OAAO,IAAY,MAAM,QAAQ;IAChD,QAAQ,QAAQ;IAChB,SAAS;IACV,CAAC;WACK,OAAO;AACd,QAAK,gBAAgB;IAAE;IAAM;IAAO,CAAC;AAErC,SAAM;;AAGR,MAAI;AACF,UAAO,EAAE,MAAM,MAAM,IAAI,QAAQ,EAAE;WAC5B,OAAO;AACd,SAAM,KAAK,iBAAiB,OAAO,IAAI;AACvC,SAAM;;;CAIV,MAAM,MACJ,MACA,QACA,UAAwB,EAAE,EACC;AAC3B,MAAI,CAAC,QAAQ,gBACX,MAAK,cAAc,KAAK;EAG1B,MAAMD,iBAAyC,EAAE;AAEjD,MAAI,QAAQ,eACV,gBAAe,0BAA0B,QAAQ;EAGnD,IAAIC;AAEJ,MAAI;AACF,SAAM,MAAM,KAAK,OAAO,MAAc,MAAM,QAAQ;IAClD,QAAQ,QAAQ;IAChB,SAAS;IACV,CAAC;WACK,OAAO;AACd,QAAK,gBAAgB;IAAE;IAAM;IAAO,CAAC;AAErC,SAAM;;AAGR,MAAI;AACF,UAAO,EAAE,MAAM,MAAM,IAAI,QAAQ,EAAE;WAC5B,OAAO;AACd,SAAM,KAAK,iBAAiB,OAAO,IAAI;AACvC,SAAM;;;CAIV,MAAM,OAAO,MAAc,OAA4B;AACrD,OAAK,cAAc,KAAK;AAExB,MAAI;AACF,SAAM,KAAK,OAAO,OAAO,MAAM,EAC7B,QAAQ,OACT,CAAC;WACK,OAAO;AACd,QAAK,gBAAgB;IAAE;IAAM;IAAO,CAAC;AAErC,SAAM;;;CAIV,YAAY,SAAiB;AAE3B,UAAQ,KAAK,WAAW,UAAU;;CAGpC,MAAc,iBACZ,OACA,KACA;AACA,MAAI,iBAAiB,aAAa;GAChC,MAAM,cAAc,IAAI,gBAAgB;GACxC,MAAM,YAAY,YAAY,QAAQ,IAAI,eAAe,IAAI;GAC7D,MAAM,YAAY,YAAY;GAC9B,MAAM,UAAU,MAAM,YAAY,MAAM;AACxC,SAAM,IAAIC,+BAAW;IACnB,SAAS,MAAM;IACf;IACA;IACA;IACD,CAAC;;;CAIN,AAAQ,gBAAgB,EAAE,MAAM,SAA2C;AACzE,MAAI,EAAE,iBAAiBC,qCACrB,OAAM,IAAI,MAAM,qBAAqB,SAAS,EAAE,OAAO,OAAO,CAAC;EAGjE,MAAM,EAAE,aAAa;AAErB,MAAI,UAAU;GACZ,MAAM,EAAE,QAAQ,MAAM,YAAY;GAElC,MAAM,YAAY,QAAQ,mBAAmB;GAC7C,MAAM,EACJ,MACA,mBAAmB,kBACnB,gBACA,QACA,YACE;AAEJ,WAAQ,QAAR;IACE,KAAK,IACH,OAAM,IAAIC,qDAAsB,UAAU;IAE5C,KAAK,IACH,OAAM,IAAIC,6CAAkB;KAAE;KAAW;KAAS;KAAO,CAAC;IAE5D,KAAK,IACH,OAAM,IAAIC,oEAA6B;KACrC;KACA;KACA;KACA;KACD,CAAC;IAEJ,KAAK,IACH,OAAM,IAAIC,8CAAkB;KAC1B;KACA;KACA;KACA;KACD,CAAC;IAEJ,KAAK,KAAK;KACR,MAAM,aAAa,QAAQ,IAAI,cAAc;AAE7C,WAAM,IAAIC,iEACR,KAAK,SACL,WACA,aAAa,OAAO,WAAW,GAAG,KACnC;;IAEH,QACE,KAAIC,WAAS,iBACX,OAAM,IAAIC,uCACR,QACA,WACAD,SACA,kBACA,KACD;aACQ,QAAQ,OAGjB,OAAM,IAAIE,kDAAoB;KAC5B;KACA;KACA;KACA;KACD,CAAC;QAEF,OAAM,IAAIC,wDACR,QACA,KAAK,SACL,MACA,UACD"}
+{"version":3,"file":"workos-CU67HvQn.cjs","names":["ApiKeys","AuditLogs","Authorization","DirectorySync","Events","FeatureFlags","FGA","Mfa","Organizations","OrganizationDomains","Passwordless","Pipes","Portal","SSO","Vault","Widgets","getEnv","protocol: string","apiHostname: string","port: number | undefined","PKCE","UserManagement","userAgent: string","getRuntimeInfo","Webhooks","Actions","SubtleCryptoProvider","headers: Record<string, string>","FetchHttpClient","ApiKeyRequiredException","requestHeaders: Record<string, string>","res: HttpClientResponseInterface","ParseError","HttpClientError","UnauthorizedException","ConflictException","UnprocessableEntityException","NotFoundException","RateLimitExceededException","error","OauthException","BadRequestException","GenericServerException"],"sources":["../src/workos.ts"],"sourcesContent":["import {\n  ApiKeyRequiredException,\n  GenericServerException,\n  NotFoundException,\n  UnauthorizedException,\n  UnprocessableEntityException,\n  OauthException,\n  RateLimitExceededException,\n} from './common/exceptions';\nimport { PKCE } from './pkce/pkce';\nimport {\n  GetOptions,\n  HttpClientResponseInterface,\n  PatchOptions,\n  PostOptions,\n  PutOptions,\n  WorkOSOptions,\n  WorkOSResponseError,\n} from './common/interfaces';\nimport { ApiKeys } from './api-keys/api-keys';\nimport { DirectorySync } from './directory-sync/directory-sync';\nimport { Events } from './events/events';\nimport { Organizations } from './organizations/organizations';\nimport { OrganizationDomains } from './organization-domains/organization-domains';\nimport { Passwordless } from './passwordless/passwordless';\nimport { Pipes } from './pipes/pipes';\nimport { Portal } from './portal/portal';\nimport { SSO } from './sso/sso';\nimport { Webhooks } from './webhooks/webhooks';\nimport { Mfa } from './mfa/mfa';\nimport { AuditLogs } from './audit-logs/audit-logs';\nimport { UserManagement } from './user-management/user-management';\nimport { FGA } from './fga/fga';\nimport { BadRequestException } from './common/exceptions/bad-request.exception';\nimport { FeatureFlags } from './feature-flags/feature-flags';\n\nimport { HttpClient, HttpClientError } from './common/net/http-client';\nimport { SubtleCryptoProvider } from './common/crypto/subtle-crypto-provider';\nimport { FetchHttpClient } from './common/net/fetch-client';\nimport { Widgets } from './widgets/widgets';\nimport { Actions } from './actions/actions';\nimport { Authorization } from './authorization/authorization';\nimport { Vault } from './vault/vault';\nimport { ConflictException } from './common/exceptions/conflict.exception';\nimport { CryptoProvider } from './common/crypto/crypto-provider';\nimport { ParseError } from './common/exceptions/parse-error';\nimport { getEnv } from './common/utils/env';\nimport { getRuntimeInfo } from './common/utils/runtime-info';\n\nconst VERSION = '8.3.0';\n\nconst DEFAULT_HOSTNAME = 'api.workos.com';\n\nconst HEADER_AUTHORIZATION = 'Authorization';\nconst HEADER_IDEMPOTENCY_KEY = 'Idempotency-Key';\nconst HEADER_WARRANT_TOKEN = 'Warrant-Token';\n\nexport class WorkOS {\n  readonly baseURL: string;\n  readonly client: HttpClient;\n  readonly clientId?: string;\n  readonly key?: string;\n  readonly options: WorkOSOptions;\n  readonly pkce: PKCE;\n\n  private readonly hasApiKey: boolean;\n\n  readonly actions: Actions;\n  readonly apiKeys = new ApiKeys(this);\n  readonly auditLogs = new AuditLogs(this);\n  readonly authorization = new Authorization(this);\n  readonly directorySync = new DirectorySync(this);\n  readonly events = new Events(this);\n  readonly featureFlags = new FeatureFlags(this);\n  readonly fga = new FGA(this);\n  readonly mfa = new Mfa(this);\n  readonly organizations = new Organizations(this);\n  readonly organizationDomains = new OrganizationDomains(this);\n  readonly passwordless = new Passwordless(this);\n  readonly pipes = new Pipes(this);\n  readonly portal = new Portal(this);\n  readonly sso = new SSO(this);\n  readonly userManagement: UserManagement;\n  readonly vault = new Vault(this);\n  readonly webhooks: Webhooks;\n  readonly widgets = new Widgets(this);\n\n  /**\n   * Create a new WorkOS client.\n   *\n   * @param keyOrOptions - API key string, or options object\n   * @param maybeOptions - Options when first argument is API key\n   *\n   * @example\n   * // Server-side with API key (string)\n   * const workos = new WorkOS('sk_...');\n   *\n   * @example\n   * // Server-side with API key (object)\n   * const workos = new WorkOS({ apiKey: 'sk_...', clientId: 'client_...' });\n   *\n   * @example\n   * // PKCE/public client (no API key)\n   * const workos = new WorkOS({ clientId: 'client_...' });\n   */\n  constructor(\n    keyOrOptions?: string | WorkOSOptions,\n    maybeOptions?: WorkOSOptions,\n  ) {\n    if (typeof keyOrOptions === 'object') {\n      this.key = keyOrOptions.apiKey;\n      this.options = keyOrOptions;\n    } else {\n      this.key = keyOrOptions;\n      this.options = maybeOptions ?? {};\n    }\n\n    if (!this.key) {\n      this.key = getEnv('WORKOS_API_KEY');\n    }\n\n    this.hasApiKey = !!this.key;\n\n    if (this.options.https === undefined) {\n      this.options.https = true;\n    }\n\n    this.clientId = this.options.clientId;\n    if (!this.clientId) {\n      this.clientId = getEnv('WORKOS_CLIENT_ID');\n    }\n\n    if (!this.hasApiKey && !this.clientId) {\n      throw new Error(\n        'WorkOS requires either an API key or a clientId. ' +\n          'For server-side: new WorkOS(\"sk_...\") or new WorkOS({ apiKey: \"sk_...\" }). ' +\n          'For PKCE/public clients: new WorkOS({ clientId: \"client_...\" })',\n      );\n    }\n\n    const protocol: string = this.options.https ? 'https' : 'http';\n    const apiHostname: string = this.options.apiHostname || DEFAULT_HOSTNAME;\n    const port: number | undefined = this.options.port;\n    this.baseURL = `${protocol}://${apiHostname}`;\n\n    if (port) {\n      this.baseURL = this.baseURL + `:${port}`;\n    }\n\n    this.pkce = new PKCE();\n\n    this.webhooks = this.createWebhookClient();\n    this.actions = this.createActionsClient();\n\n    // Must initialize UserManagement after baseURL is configured\n    this.userManagement = new UserManagement(this);\n\n    const userAgent = this.createUserAgent(this.options);\n\n    this.client = this.createHttpClient(this.options, userAgent);\n  }\n\n  private createUserAgent(options: WorkOSOptions): string {\n    let userAgent: string = `workos-node/${VERSION}`;\n\n    const { name: runtimeName, version: runtimeVersion } = getRuntimeInfo();\n    userAgent += ` (${runtimeName}${runtimeVersion ? `/${runtimeVersion}` : ''})`;\n\n    if (options.appInfo) {\n      const { name, version } = options.appInfo;\n      userAgent += ` ${name}: ${version}`;\n    }\n\n    return userAgent;\n  }\n\n  createWebhookClient() {\n    return new Webhooks(this.getCryptoProvider());\n  }\n\n  createActionsClient() {\n    return new Actions(this.getCryptoProvider());\n  }\n\n  getCryptoProvider(): CryptoProvider {\n    return new SubtleCryptoProvider();\n  }\n\n  createHttpClient(options: WorkOSOptions, userAgent: string) {\n    const headers: Record<string, string> = {\n      'User-Agent': userAgent,\n    };\n\n    const configHeaders = options.config?.headers;\n    if (\n      configHeaders &&\n      typeof configHeaders === 'object' &&\n      !Array.isArray(configHeaders) &&\n      !(configHeaders instanceof Headers)\n    ) {\n      Object.assign(headers, configHeaders);\n    }\n\n    if (this.key) {\n      headers['Authorization'] = `Bearer ${this.key}`;\n    }\n\n    return new FetchHttpClient(this.baseURL, {\n      ...options.config,\n      timeout: options.timeout,\n      headers,\n    }) as HttpClient;\n  }\n\n  get version() {\n    return VERSION;\n  }\n\n  /**\n   * Require API key for methods that need it.\n   * @param methodName - Name of the method requiring API key (for error message)\n   * @throws ApiKeyRequiredException if no API key was provided\n   */\n  requireApiKey(methodName: string): void {\n    if (!this.hasApiKey) {\n      throw new ApiKeyRequiredException(methodName);\n    }\n  }\n\n  async post<Result = any, Entity = any>(\n    path: string,\n    entity: Entity,\n    options: PostOptions = {},\n  ): Promise<{ data: Result }> {\n    if (!options.skipApiKeyCheck) {\n      this.requireApiKey(path);\n    }\n\n    const requestHeaders: Record<string, string> = {};\n\n    if (options.idempotencyKey) {\n      requestHeaders[HEADER_IDEMPOTENCY_KEY] = options.idempotencyKey;\n    }\n\n    if (options.warrantToken) {\n      requestHeaders[HEADER_WARRANT_TOKEN] = options.warrantToken;\n    }\n\n    let res: HttpClientResponseInterface;\n\n    try {\n      res = await this.client.post<Entity>(path, entity, {\n        params: options.query,\n        headers: requestHeaders,\n      });\n    } catch (error) {\n      this.handleHttpError({ path, error });\n      throw error;\n    }\n\n    try {\n      return { data: await res.toJSON() };\n    } catch (error) {\n      await this.handleParseError(error, res);\n      throw error;\n    }\n  }\n\n  async get<Result = any>(\n    path: string,\n    options: GetOptions = {},\n  ): Promise<{ data: Result }> {\n    if (!options.skipApiKeyCheck) {\n      this.requireApiKey(path);\n    }\n\n    const requestHeaders: Record<string, string> = {};\n\n    if (options.accessToken) {\n      requestHeaders[HEADER_AUTHORIZATION] = `Bearer ${options.accessToken}`;\n    }\n\n    if (options.warrantToken) {\n      requestHeaders[HEADER_WARRANT_TOKEN] = options.warrantToken;\n    }\n\n    let res: HttpClientResponseInterface;\n    try {\n      res = await this.client.get(path, {\n        params: options.query,\n        headers: requestHeaders,\n      });\n    } catch (error) {\n      this.handleHttpError({ path, error });\n\n      throw error;\n    }\n\n    try {\n      return { data: await res.toJSON() };\n    } catch (error) {\n      await this.handleParseError(error, res);\n      throw error;\n    }\n  }\n\n  async put<Result = any, Entity = any>(\n    path: string,\n    entity: Entity,\n    options: PutOptions = {},\n  ): Promise<{ data: Result }> {\n    if (!options.skipApiKeyCheck) {\n      this.requireApiKey(path);\n    }\n\n    const requestHeaders: Record<string, string> = {};\n\n    if (options.idempotencyKey) {\n      requestHeaders[HEADER_IDEMPOTENCY_KEY] = options.idempotencyKey;\n    }\n\n    let res: HttpClientResponseInterface;\n\n    try {\n      res = await this.client.put<Entity>(path, entity, {\n        params: options.query,\n        headers: requestHeaders,\n      });\n    } catch (error) {\n      this.handleHttpError({ path, error });\n\n      throw error;\n    }\n\n    try {\n      return { data: await res.toJSON() };\n    } catch (error) {\n      await this.handleParseError(error, res);\n      throw error;\n    }\n  }\n\n  async patch<Result = any, Entity = any>(\n    path: string,\n    entity: Entity,\n    options: PatchOptions = {},\n  ): Promise<{ data: Result }> {\n    if (!options.skipApiKeyCheck) {\n      this.requireApiKey(path);\n    }\n\n    const requestHeaders: Record<string, string> = {};\n\n    if (options.idempotencyKey) {\n      requestHeaders[HEADER_IDEMPOTENCY_KEY] = options.idempotencyKey;\n    }\n\n    let res: HttpClientResponseInterface;\n\n    try {\n      res = await this.client.patch<Entity>(path, entity, {\n        params: options.query,\n        headers: requestHeaders,\n      });\n    } catch (error) {\n      this.handleHttpError({ path, error });\n\n      throw error;\n    }\n\n    try {\n      return { data: await res.toJSON() };\n    } catch (error) {\n      await this.handleParseError(error, res);\n      throw error;\n    }\n  }\n\n  async delete(path: string, query?: any): Promise<void> {\n    this.requireApiKey(path);\n\n    try {\n      await this.client.delete(path, {\n        params: query,\n      });\n    } catch (error) {\n      this.handleHttpError({ path, error });\n\n      throw error;\n    }\n  }\n\n  emitWarning(warning: string) {\n    // tslint:disable-next-line:no-console\n    console.warn(`WorkOS: ${warning}`);\n  }\n\n  private async handleParseError(\n    error: unknown,\n    res: HttpClientResponseInterface,\n  ) {\n    if (error instanceof SyntaxError) {\n      const rawResponse = res.getRawResponse() as Response;\n      const requestID = rawResponse.headers.get('X-Request-ID') ?? '';\n      const rawStatus = rawResponse.status;\n      const rawBody = await rawResponse.text();\n      throw new ParseError({\n        message: error.message,\n        rawBody,\n        rawStatus,\n        requestID,\n      });\n    }\n  }\n\n  private handleHttpError({ path, error }: { path: string; error: unknown }) {\n    if (!(error instanceof HttpClientError)) {\n      throw new Error(`Unexpected error: ${error}`, { cause: error });\n    }\n\n    const { response } = error as HttpClientError<WorkOSResponseError>;\n\n    if (response) {\n      const { status, data, headers } = response;\n\n      const requestID = headers['X-Request-ID'] ?? '';\n      const {\n        code,\n        error_description: errorDescription,\n        error,\n        errors,\n        message,\n      } = data;\n\n      switch (status) {\n        case 401: {\n          throw new UnauthorizedException(requestID);\n        }\n        case 409: {\n          throw new ConflictException({ requestID, message, error });\n        }\n        case 422: {\n          throw new UnprocessableEntityException({\n            code,\n            errors,\n            message,\n            requestID,\n          });\n        }\n        case 404: {\n          throw new NotFoundException({\n            code,\n            message,\n            path,\n            requestID,\n          });\n        }\n        case 429: {\n          const retryAfter = headers.get('Retry-After');\n\n          throw new RateLimitExceededException(\n            data.message,\n            requestID,\n            retryAfter ? Number(retryAfter) : null,\n          );\n        }\n        default: {\n          if (error || errorDescription) {\n            throw new OauthException(\n              status,\n              requestID,\n              error,\n              errorDescription,\n              data,\n            );\n          } else if (code && errors) {\n            // Note: ideally this should be mapped directly with a `400` status code.\n            // However, this would break existing logic for the `OauthException` exception.\n            throw new BadRequestException({\n              code,\n              errors,\n              message,\n              requestID,\n            });\n          } else {\n            throw new GenericServerException(\n              status,\n              data.message,\n              data,\n              requestID,\n            );\n          }\n        }\n      }\n    }\n  }\n}\n"],"mappings":";;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;AAiDA,MAAM,UAAU;AAEhB,MAAM,mBAAmB;AAEzB,MAAM,uBAAuB;AAC7B,MAAM,yBAAyB;AAC/B,MAAM,uBAAuB;AAE7B,IAAa,SAAb,MAAoB;CAClB,AAAS;CACT,AAAS;CACT,AAAS;CACT,AAAS;CACT,AAAS;CACT,AAAS;CAET,AAAiB;CAEjB,AAAS;CACT,AAAS,UAAU,IAAIA,yBAAQ,KAAK;CACpC,AAAS,YAAY,IAAIC,6BAAU,KAAK;CACxC,AAAS,gBAAgB,IAAIC,oCAAc,KAAK;CAChD,AAAS,gBAAgB,IAAIC,qCAAc,KAAK;CAChD,AAAS,SAAS,IAAIC,sBAAO,KAAK;CAClC,AAAS,eAAe,IAAIC,mCAAa,KAAK;CAC9C,AAAS,MAAM,IAAIC,gBAAI,KAAK;CAC5B,AAAS,MAAM,IAAIC,gBAAI,KAAK;CAC5B,AAAS,gBAAgB,IAAIC,oCAAc,KAAK;CAChD,AAAS,sBAAsB,IAAIC,iDAAoB,KAAK;CAC5D,AAAS,eAAe,IAAIC,kCAAa,KAAK;CAC9C,AAAS,QAAQ,IAAIC,oBAAM,KAAK;CAChC,AAAS,SAAS,IAAIC,sBAAO,KAAK;CAClC,AAAS,MAAM,IAAIC,gBAAI,KAAK;CAC5B,AAAS;CACT,AAAS,QAAQ,IAAIC,oBAAM,KAAK;CAChC,AAAS;CACT,AAAS,UAAU,IAAIC,wBAAQ,KAAK;;;;;;;;;;;;;;;;;;;CAoBpC,YACE,cACA,cACA;AACA,MAAI,OAAO,iBAAiB,UAAU;AACpC,QAAK,MAAM,aAAa;AACxB,QAAK,UAAU;SACV;AACL,QAAK,MAAM;AACX,QAAK,UAAU,gBAAgB,EAAE;;AAGnC,MAAI,CAAC,KAAK,IACR,MAAK,MAAMC,mBAAO,iBAAiB;AAGrC,OAAK,YAAY,CAAC,CAAC,KAAK;AAExB,MAAI,KAAK,QAAQ,UAAU,OACzB,MAAK,QAAQ,QAAQ;AAGvB,OAAK,WAAW,KAAK,QAAQ;AAC7B,MAAI,CAAC,KAAK,SACR,MAAK,WAAWA,mBAAO,mBAAmB;AAG5C,MAAI,CAAC,KAAK,aAAa,CAAC,KAAK,SAC3B,OAAM,IAAI,MACR,oMAGD;EAGH,MAAMC,WAAmB,KAAK,QAAQ,QAAQ,UAAU;EACxD,MAAMC,cAAsB,KAAK,QAAQ,eAAe;EACxD,MAAMC,OAA2B,KAAK,QAAQ;AAC9C,OAAK,UAAU,GAAG,SAAS,KAAK;AAEhC,MAAI,KACF,MAAK,UAAU,KAAK,UAAU,IAAI;AAGpC,OAAK,OAAO,IAAIC,mBAAM;AAEtB,OAAK,WAAW,KAAK,qBAAqB;AAC1C,OAAK,UAAU,KAAK,qBAAqB;AAGzC,OAAK,iBAAiB,IAAIC,uCAAe,KAAK;EAE9C,MAAM,YAAY,KAAK,gBAAgB,KAAK,QAAQ;AAEpD,OAAK,SAAS,KAAK,iBAAiB,KAAK,SAAS,UAAU;;CAG9D,AAAQ,gBAAgB,SAAgC;EACtD,IAAIC,YAAoB,eAAe;EAEvC,MAAM,EAAE,MAAM,aAAa,SAAS,mBAAmBC,qCAAgB;AACvE,eAAa,KAAK,cAAc,iBAAiB,IAAI,mBAAmB,GAAG;AAE3E,MAAI,QAAQ,SAAS;GACnB,MAAM,EAAE,MAAM,YAAY,QAAQ;AAClC,gBAAa,IAAI,KAAK,IAAI;;AAG5B,SAAO;;CAGT,sBAAsB;AACpB,SAAO,IAAIC,0BAAS,KAAK,mBAAmB,CAAC;;CAG/C,sBAAsB;AACpB,SAAO,IAAIC,wBAAQ,KAAK,mBAAmB,CAAC;;CAG9C,oBAAoC;AAClC,SAAO,IAAIC,qDAAsB;;CAGnC,iBAAiB,SAAwB,WAAmB;EAC1D,MAAMC,UAAkC,EACtC,cAAc,WACf;EAED,MAAM,gBAAgB,QAAQ,QAAQ;AACtC,MACE,iBACA,OAAO,kBAAkB,YACzB,CAAC,MAAM,QAAQ,cAAc,IAC7B,EAAE,yBAAyB,SAE3B,QAAO,OAAO,SAAS,cAAc;AAGvC,MAAI,KAAK,IACP,SAAQ,mBAAmB,UAAU,KAAK;AAG5C,SAAO,IAAIC,qCAAgB,KAAK,SAAS;GACvC,GAAG,QAAQ;GACX,SAAS,QAAQ;GACjB;GACD,CAAC;;CAGJ,IAAI,UAAU;AACZ,SAAO;;;;;;;CAQT,cAAc,YAA0B;AACtC,MAAI,CAAC,KAAK,UACR,OAAM,IAAIC,2DAAwB,WAAW;;CAIjD,MAAM,KACJ,MACA,QACA,UAAuB,EAAE,EACE;AAC3B,MAAI,CAAC,QAAQ,gBACX,MAAK,cAAc,KAAK;EAG1B,MAAMC,iBAAyC,EAAE;AAEjD,MAAI,QAAQ,eACV,gBAAe,0BAA0B,QAAQ;AAGnD,MAAI,QAAQ,aACV,gBAAe,wBAAwB,QAAQ;EAGjD,IAAIC;AAEJ,MAAI;AACF,SAAM,MAAM,KAAK,OAAO,KAAa,MAAM,QAAQ;IACjD,QAAQ,QAAQ;IAChB,SAAS;IACV,CAAC;WACK,OAAO;AACd,QAAK,gBAAgB;IAAE;IAAM;IAAO,CAAC;AACrC,SAAM;;AAGR,MAAI;AACF,UAAO,EAAE,MAAM,MAAM,IAAI,QAAQ,EAAE;WAC5B,OAAO;AACd,SAAM,KAAK,iBAAiB,OAAO,IAAI;AACvC,SAAM;;;CAIV,MAAM,IACJ,MACA,UAAsB,EAAE,EACG;AAC3B,MAAI,CAAC,QAAQ,gBACX,MAAK,cAAc,KAAK;EAG1B,MAAMD,iBAAyC,EAAE;AAEjD,MAAI,QAAQ,YACV,gBAAe,wBAAwB,UAAU,QAAQ;AAG3D,MAAI,QAAQ,aACV,gBAAe,wBAAwB,QAAQ;EAGjD,IAAIC;AACJ,MAAI;AACF,SAAM,MAAM,KAAK,OAAO,IAAI,MAAM;IAChC,QAAQ,QAAQ;IAChB,SAAS;IACV,CAAC;WACK,OAAO;AACd,QAAK,gBAAgB;IAAE;IAAM;IAAO,CAAC;AAErC,SAAM;;AAGR,MAAI;AACF,UAAO,EAAE,MAAM,MAAM,IAAI,QAAQ,EAAE;WAC5B,OAAO;AACd,SAAM,KAAK,iBAAiB,OAAO,IAAI;AACvC,SAAM;;;CAIV,MAAM,IACJ,MACA,QACA,UAAsB,EAAE,EACG;AAC3B,MAAI,CAAC,QAAQ,gBACX,MAAK,cAAc,KAAK;EAG1B,MAAMD,iBAAyC,EAAE;AAEjD,MAAI,QAAQ,eACV,gBAAe,0BAA0B,QAAQ;EAGnD,IAAIC;AAEJ,MAAI;AACF,SAAM,MAAM,KAAK,OAAO,IAAY,MAAM,QAAQ;IAChD,QAAQ,QAAQ;IAChB,SAAS;IACV,CAAC;WACK,OAAO;AACd,QAAK,gBAAgB;IAAE;IAAM;IAAO,CAAC;AAErC,SAAM;;AAGR,MAAI;AACF,UAAO,EAAE,MAAM,MAAM,IAAI,QAAQ,EAAE;WAC5B,OAAO;AACd,SAAM,KAAK,iBAAiB,OAAO,IAAI;AACvC,SAAM;;;CAIV,MAAM,MACJ,MACA,QACA,UAAwB,EAAE,EACC;AAC3B,MAAI,CAAC,QAAQ,gBACX,MAAK,cAAc,KAAK;EAG1B,MAAMD,iBAAyC,EAAE;AAEjD,MAAI,QAAQ,eACV,gBAAe,0BAA0B,QAAQ;EAGnD,IAAIC;AAEJ,MAAI;AACF,SAAM,MAAM,KAAK,OAAO,MAAc,MAAM,QAAQ;IAClD,QAAQ,QAAQ;IAChB,SAAS;IACV,CAAC;WACK,OAAO;AACd,QAAK,gBAAgB;IAAE;IAAM;IAAO,CAAC;AAErC,SAAM;;AAGR,MAAI;AACF,UAAO,EAAE,MAAM,MAAM,IAAI,QAAQ,EAAE;WAC5B,OAAO;AACd,SAAM,KAAK,iBAAiB,OAAO,IAAI;AACvC,SAAM;;;CAIV,MAAM,OAAO,MAAc,OAA4B;AACrD,OAAK,cAAc,KAAK;AAExB,MAAI;AACF,SAAM,KAAK,OAAO,OAAO,MAAM,EAC7B,QAAQ,OACT,CAAC;WACK,OAAO;AACd,QAAK,gBAAgB;IAAE;IAAM;IAAO,CAAC;AAErC,SAAM;;;CAIV,YAAY,SAAiB;AAE3B,UAAQ,KAAK,WAAW,UAAU;;CAGpC,MAAc,iBACZ,OACA,KACA;AACA,MAAI,iBAAiB,aAAa;GAChC,MAAM,cAAc,IAAI,gBAAgB;GACxC,MAAM,YAAY,YAAY,QAAQ,IAAI,eAAe,IAAI;GAC7D,MAAM,YAAY,YAAY;GAC9B,MAAM,UAAU,MAAM,YAAY,MAAM;AACxC,SAAM,IAAIC,+BAAW;IACnB,SAAS,MAAM;IACf;IACA;IACA;IACD,CAAC;;;CAIN,AAAQ,gBAAgB,EAAE,MAAM,SAA2C;AACzE,MAAI,EAAE,iBAAiBC,qCACrB,OAAM,IAAI,MAAM,qBAAqB,SAAS,EAAE,OAAO,OAAO,CAAC;EAGjE,MAAM,EAAE,aAAa;AAErB,MAAI,UAAU;GACZ,MAAM,EAAE,QAAQ,MAAM,YAAY;GAElC,MAAM,YAAY,QAAQ,mBAAmB;GAC7C,MAAM,EACJ,MACA,mBAAmB,kBACnB,gBACA,QACA,YACE;AAEJ,WAAQ,QAAR;IACE,KAAK,IACH,OAAM,IAAIC,qDAAsB,UAAU;IAE5C,KAAK,IACH,OAAM,IAAIC,6CAAkB;KAAE;KAAW;KAAS;KAAO,CAAC;IAE5D,KAAK,IACH,OAAM,IAAIC,oEAA6B;KACrC;KACA;KACA;KACA;KACD,CAAC;IAEJ,KAAK,IACH,OAAM,IAAIC,8CAAkB;KAC1B;KACA;KACA;KACA;KACD,CAAC;IAEJ,KAAK,KAAK;KACR,MAAM,aAAa,QAAQ,IAAI,cAAc;AAE7C,WAAM,IAAIC,iEACR,KAAK,SACL,WACA,aAAa,OAAO,WAAW,GAAG,KACnC;;IAEH,QACE,KAAIC,WAAS,iBACX,OAAM,IAAIC,uCACR,QACA,WACAD,SACA,kBACA,KACD;aACQ,QAAQ,OAGjB,OAAM,IAAIE,kDAAoB;KAC5B;KACA;KACA;KACA;KACD,CAAC;QAEF,OAAM,IAAIC,wDACR,QACA,KAAK,SACL,MACA,UACD"}

package/lib/workos.cjs

@@ -1,7 +1,7 @@
-require('./jose-D4-VExnk.cjs');
-require('./session-BspC-lF9.cjs');
-require('./user-management-DCbkjgk8.cjs');
-require('./subtle-crypto-provider-z15sJdtL.cjs');
-const require_workos = require('./workos-HBr0yoqZ.cjs');
+require('./jose-B0lH7z8y.cjs');
+require('./session-D_vnUDl1.cjs');
+require('./user-management-BiK0k4qR.cjs');
+require('./subtle-crypto-provider-BMf63Lhz.cjs');
+const require_workos = require('./workos-CU67HvQn.cjs');
 
 exports.WorkOS = require_workos.WorkOS;

package/lib/workos.d.cts

@@ -1,2 +1,2 @@
-import { n as WorkOS } from "./api-keys-4KSJ7vul.cjs";
+import { n as WorkOS } from "./api-keys-CrR113By.cjs";
 export { WorkOS };

package/lib/workos.js

@@ -35,7 +35,7 @@ import { ConflictException } from "./common/exceptions/conflict.exception.js";
 import { getRuntimeInfo } from "./common/utils/runtime-info.js";
 
 //#region src/workos.ts
-const VERSION = "8.2.0";
+const VERSION = "8.3.0";
 const DEFAULT_HOSTNAME = "api.workos.com";
 const HEADER_AUTHORIZATION = "Authorization";
 const HEADER_IDEMPOTENCY_KEY = "Idempotency-Key";

package/lib/workos.js.map

@@ -1 +1 @@
-{"version":3,"file":"workos.js","names":["protocol: string","apiHostname: string","port: number | undefined","userAgent: string","headers: Record<string, string>","requestHeaders: Record<string, string>","res: HttpClientResponseInterface","error"],"sources":["../src/workos.ts"],"sourcesContent":["import {\n  ApiKeyRequiredException,\n  GenericServerException,\n  NotFoundException,\n  UnauthorizedException,\n  UnprocessableEntityException,\n  OauthException,\n  RateLimitExceededException,\n} from './common/exceptions';\nimport { PKCE } from './pkce/pkce';\nimport {\n  GetOptions,\n  HttpClientResponseInterface,\n  PatchOptions,\n  PostOptions,\n  PutOptions,\n  WorkOSOptions,\n  WorkOSResponseError,\n} from './common/interfaces';\nimport { ApiKeys } from './api-keys/api-keys';\nimport { DirectorySync } from './directory-sync/directory-sync';\nimport { Events } from './events/events';\nimport { Organizations } from './organizations/organizations';\nimport { OrganizationDomains } from './organization-domains/organization-domains';\nimport { Passwordless } from './passwordless/passwordless';\nimport { Pipes } from './pipes/pipes';\nimport { Portal } from './portal/portal';\nimport { SSO } from './sso/sso';\nimport { Webhooks } from './webhooks/webhooks';\nimport { Mfa } from './mfa/mfa';\nimport { AuditLogs } from './audit-logs/audit-logs';\nimport { UserManagement } from './user-management/user-management';\nimport { FGA } from './fga/fga';\nimport { BadRequestException } from './common/exceptions/bad-request.exception';\nimport { FeatureFlags } from './feature-flags/feature-flags';\n\nimport { HttpClient, HttpClientError } from './common/net/http-client';\nimport { SubtleCryptoProvider } from './common/crypto/subtle-crypto-provider';\nimport { FetchHttpClient } from './common/net/fetch-client';\nimport { Widgets } from './widgets/widgets';\nimport { Actions } from './actions/actions';\nimport { Authorization } from './authorization/authorization';\nimport { Vault } from './vault/vault';\nimport { ConflictException } from './common/exceptions/conflict.exception';\nimport { CryptoProvider } from './common/crypto/crypto-provider';\nimport { ParseError } from './common/exceptions/parse-error';\nimport { getEnv } from './common/utils/env';\nimport { getRuntimeInfo } from './common/utils/runtime-info';\n\nconst VERSION = '8.2.0';\n\nconst DEFAULT_HOSTNAME = 'api.workos.com';\n\nconst HEADER_AUTHORIZATION = 'Authorization';\nconst HEADER_IDEMPOTENCY_KEY = 'Idempotency-Key';\nconst HEADER_WARRANT_TOKEN = 'Warrant-Token';\n\nexport class WorkOS {\n  readonly baseURL: string;\n  readonly client: HttpClient;\n  readonly clientId?: string;\n  readonly key?: string;\n  readonly options: WorkOSOptions;\n  readonly pkce: PKCE;\n\n  private readonly hasApiKey: boolean;\n\n  readonly actions: Actions;\n  readonly apiKeys = new ApiKeys(this);\n  readonly auditLogs = new AuditLogs(this);\n  readonly authorization = new Authorization(this);\n  readonly directorySync = new DirectorySync(this);\n  readonly events = new Events(this);\n  readonly featureFlags = new FeatureFlags(this);\n  readonly fga = new FGA(this);\n  readonly mfa = new Mfa(this);\n  readonly organizations = new Organizations(this);\n  readonly organizationDomains = new OrganizationDomains(this);\n  readonly passwordless = new Passwordless(this);\n  readonly pipes = new Pipes(this);\n  readonly portal = new Portal(this);\n  readonly sso = new SSO(this);\n  readonly userManagement: UserManagement;\n  readonly vault = new Vault(this);\n  readonly webhooks: Webhooks;\n  readonly widgets = new Widgets(this);\n\n  /**\n   * Create a new WorkOS client.\n   *\n   * @param keyOrOptions - API key string, or options object\n   * @param maybeOptions - Options when first argument is API key\n   *\n   * @example\n   * // Server-side with API key (string)\n   * const workos = new WorkOS('sk_...');\n   *\n   * @example\n   * // Server-side with API key (object)\n   * const workos = new WorkOS({ apiKey: 'sk_...', clientId: 'client_...' });\n   *\n   * @example\n   * // PKCE/public client (no API key)\n   * const workos = new WorkOS({ clientId: 'client_...' });\n   */\n  constructor(\n    keyOrOptions?: string | WorkOSOptions,\n    maybeOptions?: WorkOSOptions,\n  ) {\n    if (typeof keyOrOptions === 'object') {\n      this.key = keyOrOptions.apiKey;\n      this.options = keyOrOptions;\n    } else {\n      this.key = keyOrOptions;\n      this.options = maybeOptions ?? {};\n    }\n\n    if (!this.key) {\n      this.key = getEnv('WORKOS_API_KEY');\n    }\n\n    this.hasApiKey = !!this.key;\n\n    if (this.options.https === undefined) {\n      this.options.https = true;\n    }\n\n    this.clientId = this.options.clientId;\n    if (!this.clientId) {\n      this.clientId = getEnv('WORKOS_CLIENT_ID');\n    }\n\n    if (!this.hasApiKey && !this.clientId) {\n      throw new Error(\n        'WorkOS requires either an API key or a clientId. ' +\n          'For server-side: new WorkOS(\"sk_...\") or new WorkOS({ apiKey: \"sk_...\" }). ' +\n          'For PKCE/public clients: new WorkOS({ clientId: \"client_...\" })',\n      );\n    }\n\n    const protocol: string = this.options.https ? 'https' : 'http';\n    const apiHostname: string = this.options.apiHostname || DEFAULT_HOSTNAME;\n    const port: number | undefined = this.options.port;\n    this.baseURL = `${protocol}://${apiHostname}`;\n\n    if (port) {\n      this.baseURL = this.baseURL + `:${port}`;\n    }\n\n    this.pkce = new PKCE();\n\n    this.webhooks = this.createWebhookClient();\n    this.actions = this.createActionsClient();\n\n    // Must initialize UserManagement after baseURL is configured\n    this.userManagement = new UserManagement(this);\n\n    const userAgent = this.createUserAgent(this.options);\n\n    this.client = this.createHttpClient(this.options, userAgent);\n  }\n\n  private createUserAgent(options: WorkOSOptions): string {\n    let userAgent: string = `workos-node/${VERSION}`;\n\n    const { name: runtimeName, version: runtimeVersion } = getRuntimeInfo();\n    userAgent += ` (${runtimeName}${runtimeVersion ? `/${runtimeVersion}` : ''})`;\n\n    if (options.appInfo) {\n      const { name, version } = options.appInfo;\n      userAgent += ` ${name}: ${version}`;\n    }\n\n    return userAgent;\n  }\n\n  createWebhookClient() {\n    return new Webhooks(this.getCryptoProvider());\n  }\n\n  createActionsClient() {\n    return new Actions(this.getCryptoProvider());\n  }\n\n  getCryptoProvider(): CryptoProvider {\n    return new SubtleCryptoProvider();\n  }\n\n  createHttpClient(options: WorkOSOptions, userAgent: string) {\n    const headers: Record<string, string> = {\n      'User-Agent': userAgent,\n    };\n\n    const configHeaders = options.config?.headers;\n    if (\n      configHeaders &&\n      typeof configHeaders === 'object' &&\n      !Array.isArray(configHeaders) &&\n      !(configHeaders instanceof Headers)\n    ) {\n      Object.assign(headers, configHeaders);\n    }\n\n    if (this.key) {\n      headers['Authorization'] = `Bearer ${this.key}`;\n    }\n\n    return new FetchHttpClient(this.baseURL, {\n      ...options.config,\n      timeout: options.timeout,\n      headers,\n    }) as HttpClient;\n  }\n\n  get version() {\n    return VERSION;\n  }\n\n  /**\n   * Require API key for methods that need it.\n   * @param methodName - Name of the method requiring API key (for error message)\n   * @throws ApiKeyRequiredException if no API key was provided\n   */\n  requireApiKey(methodName: string): void {\n    if (!this.hasApiKey) {\n      throw new ApiKeyRequiredException(methodName);\n    }\n  }\n\n  async post<Result = any, Entity = any>(\n    path: string,\n    entity: Entity,\n    options: PostOptions = {},\n  ): Promise<{ data: Result }> {\n    if (!options.skipApiKeyCheck) {\n      this.requireApiKey(path);\n    }\n\n    const requestHeaders: Record<string, string> = {};\n\n    if (options.idempotencyKey) {\n      requestHeaders[HEADER_IDEMPOTENCY_KEY] = options.idempotencyKey;\n    }\n\n    if (options.warrantToken) {\n      requestHeaders[HEADER_WARRANT_TOKEN] = options.warrantToken;\n    }\n\n    let res: HttpClientResponseInterface;\n\n    try {\n      res = await this.client.post<Entity>(path, entity, {\n        params: options.query,\n        headers: requestHeaders,\n      });\n    } catch (error) {\n      this.handleHttpError({ path, error });\n      throw error;\n    }\n\n    try {\n      return { data: await res.toJSON() };\n    } catch (error) {\n      await this.handleParseError(error, res);\n      throw error;\n    }\n  }\n\n  async get<Result = any>(\n    path: string,\n    options: GetOptions = {},\n  ): Promise<{ data: Result }> {\n    if (!options.skipApiKeyCheck) {\n      this.requireApiKey(path);\n    }\n\n    const requestHeaders: Record<string, string> = {};\n\n    if (options.accessToken) {\n      requestHeaders[HEADER_AUTHORIZATION] = `Bearer ${options.accessToken}`;\n    }\n\n    if (options.warrantToken) {\n      requestHeaders[HEADER_WARRANT_TOKEN] = options.warrantToken;\n    }\n\n    let res: HttpClientResponseInterface;\n    try {\n      res = await this.client.get(path, {\n        params: options.query,\n        headers: requestHeaders,\n      });\n    } catch (error) {\n      this.handleHttpError({ path, error });\n\n      throw error;\n    }\n\n    try {\n      return { data: await res.toJSON() };\n    } catch (error) {\n      await this.handleParseError(error, res);\n      throw error;\n    }\n  }\n\n  async put<Result = any, Entity = any>(\n    path: string,\n    entity: Entity,\n    options: PutOptions = {},\n  ): Promise<{ data: Result }> {\n    if (!options.skipApiKeyCheck) {\n      this.requireApiKey(path);\n    }\n\n    const requestHeaders: Record<string, string> = {};\n\n    if (options.idempotencyKey) {\n      requestHeaders[HEADER_IDEMPOTENCY_KEY] = options.idempotencyKey;\n    }\n\n    let res: HttpClientResponseInterface;\n\n    try {\n      res = await this.client.put<Entity>(path, entity, {\n        params: options.query,\n        headers: requestHeaders,\n      });\n    } catch (error) {\n      this.handleHttpError({ path, error });\n\n      throw error;\n    }\n\n    try {\n      return { data: await res.toJSON() };\n    } catch (error) {\n      await this.handleParseError(error, res);\n      throw error;\n    }\n  }\n\n  async patch<Result = any, Entity = any>(\n    path: string,\n    entity: Entity,\n    options: PatchOptions = {},\n  ): Promise<{ data: Result }> {\n    if (!options.skipApiKeyCheck) {\n      this.requireApiKey(path);\n    }\n\n    const requestHeaders: Record<string, string> = {};\n\n    if (options.idempotencyKey) {\n      requestHeaders[HEADER_IDEMPOTENCY_KEY] = options.idempotencyKey;\n    }\n\n    let res: HttpClientResponseInterface;\n\n    try {\n      res = await this.client.patch<Entity>(path, entity, {\n        params: options.query,\n        headers: requestHeaders,\n      });\n    } catch (error) {\n      this.handleHttpError({ path, error });\n\n      throw error;\n    }\n\n    try {\n      return { data: await res.toJSON() };\n    } catch (error) {\n      await this.handleParseError(error, res);\n      throw error;\n    }\n  }\n\n  async delete(path: string, query?: any): Promise<void> {\n    this.requireApiKey(path);\n\n    try {\n      await this.client.delete(path, {\n        params: query,\n      });\n    } catch (error) {\n      this.handleHttpError({ path, error });\n\n      throw error;\n    }\n  }\n\n  emitWarning(warning: string) {\n    // tslint:disable-next-line:no-console\n    console.warn(`WorkOS: ${warning}`);\n  }\n\n  private async handleParseError(\n    error: unknown,\n    res: HttpClientResponseInterface,\n  ) {\n    if (error instanceof SyntaxError) {\n      const rawResponse = res.getRawResponse() as Response;\n      const requestID = rawResponse.headers.get('X-Request-ID') ?? '';\n      const rawStatus = rawResponse.status;\n      const rawBody = await rawResponse.text();\n      throw new ParseError({\n        message: error.message,\n        rawBody,\n        rawStatus,\n        requestID,\n      });\n    }\n  }\n\n  private handleHttpError({ path, error }: { path: string; error: unknown }) {\n    if (!(error instanceof HttpClientError)) {\n      throw new Error(`Unexpected error: ${error}`, { cause: error });\n    }\n\n    const { response } = error as HttpClientError<WorkOSResponseError>;\n\n    if (response) {\n      const { status, data, headers } = response;\n\n      const requestID = headers['X-Request-ID'] ?? '';\n      const {\n        code,\n        error_description: errorDescription,\n        error,\n        errors,\n        message,\n      } = data;\n\n      switch (status) {\n        case 401: {\n          throw new UnauthorizedException(requestID);\n        }\n        case 409: {\n          throw new ConflictException({ requestID, message, error });\n        }\n        case 422: {\n          throw new UnprocessableEntityException({\n            code,\n            errors,\n            message,\n            requestID,\n          });\n        }\n        case 404: {\n          throw new NotFoundException({\n            code,\n            message,\n            path,\n            requestID,\n          });\n        }\n        case 429: {\n          const retryAfter = headers.get('Retry-After');\n\n          throw new RateLimitExceededException(\n            data.message,\n            requestID,\n            retryAfter ? Number(retryAfter) : null,\n          );\n        }\n        default: {\n          if (error || errorDescription) {\n            throw new OauthException(\n              status,\n              requestID,\n              error,\n              errorDescription,\n              data,\n            );\n          } else if (code && errors) {\n            // Note: ideally this should be mapped directly with a `400` status code.\n            // However, this would break existing logic for the `OauthException` exception.\n            throw new BadRequestException({\n              code,\n              errors,\n              message,\n              requestID,\n            });\n          } else {\n            throw new GenericServerException(\n              status,\n              data.message,\n              data,\n              requestID,\n            );\n          }\n        }\n      }\n    }\n  }\n}\n"],"mappings":";;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;AAiDA,MAAM,UAAU;AAEhB,MAAM,mBAAmB;AAEzB,MAAM,uBAAuB;AAC7B,MAAM,yBAAyB;AAC/B,MAAM,uBAAuB;AAE7B,IAAa,SAAb,MAAoB;CAClB,AAAS;CACT,AAAS;CACT,AAAS;CACT,AAAS;CACT,AAAS;CACT,AAAS;CAET,AAAiB;CAEjB,AAAS;CACT,AAAS,UAAU,IAAI,QAAQ,KAAK;CACpC,AAAS,YAAY,IAAI,UAAU,KAAK;CACxC,AAAS,gBAAgB,IAAI,cAAc,KAAK;CAChD,AAAS,gBAAgB,IAAI,cAAc,KAAK;CAChD,AAAS,SAAS,IAAI,OAAO,KAAK;CAClC,AAAS,eAAe,IAAI,aAAa,KAAK;CAC9C,AAAS,MAAM,IAAI,IAAI,KAAK;CAC5B,AAAS,MAAM,IAAI,IAAI,KAAK;CAC5B,AAAS,gBAAgB,IAAI,cAAc,KAAK;CAChD,AAAS,sBAAsB,IAAI,oBAAoB,KAAK;CAC5D,AAAS,eAAe,IAAI,aAAa,KAAK;CAC9C,AAAS,QAAQ,IAAI,MAAM,KAAK;CAChC,AAAS,SAAS,IAAI,OAAO,KAAK;CAClC,AAAS,MAAM,IAAI,IAAI,KAAK;CAC5B,AAAS;CACT,AAAS,QAAQ,IAAI,MAAM,KAAK;CAChC,AAAS;CACT,AAAS,UAAU,IAAI,QAAQ,KAAK;;;;;;;;;;;;;;;;;;;CAoBpC,YACE,cACA,cACA;AACA,MAAI,OAAO,iBAAiB,UAAU;AACpC,QAAK,MAAM,aAAa;AACxB,QAAK,UAAU;SACV;AACL,QAAK,MAAM;AACX,QAAK,UAAU,gBAAgB,EAAE;;AAGnC,MAAI,CAAC,KAAK,IACR,MAAK,MAAM,OAAO,iBAAiB;AAGrC,OAAK,YAAY,CAAC,CAAC,KAAK;AAExB,MAAI,KAAK,QAAQ,UAAU,OACzB,MAAK,QAAQ,QAAQ;AAGvB,OAAK,WAAW,KAAK,QAAQ;AAC7B,MAAI,CAAC,KAAK,SACR,MAAK,WAAW,OAAO,mBAAmB;AAG5C,MAAI,CAAC,KAAK,aAAa,CAAC,KAAK,SAC3B,OAAM,IAAI,MACR,oMAGD;EAGH,MAAMA,WAAmB,KAAK,QAAQ,QAAQ,UAAU;EACxD,MAAMC,cAAsB,KAAK,QAAQ,eAAe;EACxD,MAAMC,OAA2B,KAAK,QAAQ;AAC9C,OAAK,UAAU,GAAG,SAAS,KAAK;AAEhC,MAAI,KACF,MAAK,UAAU,KAAK,UAAU,IAAI;AAGpC,OAAK,OAAO,IAAI,MAAM;AAEtB,OAAK,WAAW,KAAK,qBAAqB;AAC1C,OAAK,UAAU,KAAK,qBAAqB;AAGzC,OAAK,iBAAiB,IAAI,eAAe,KAAK;EAE9C,MAAM,YAAY,KAAK,gBAAgB,KAAK,QAAQ;AAEpD,OAAK,SAAS,KAAK,iBAAiB,KAAK,SAAS,UAAU;;CAG9D,AAAQ,gBAAgB,SAAgC;EACtD,IAAIC,YAAoB,eAAe;EAEvC,MAAM,EAAE,MAAM,aAAa,SAAS,mBAAmB,gBAAgB;AACvE,eAAa,KAAK,cAAc,iBAAiB,IAAI,mBAAmB,GAAG;AAE3E,MAAI,QAAQ,SAAS;GACnB,MAAM,EAAE,MAAM,YAAY,QAAQ;AAClC,gBAAa,IAAI,KAAK,IAAI;;AAG5B,SAAO;;CAGT,sBAAsB;AACpB,SAAO,IAAI,SAAS,KAAK,mBAAmB,CAAC;;CAG/C,sBAAsB;AACpB,SAAO,IAAI,QAAQ,KAAK,mBAAmB,CAAC;;CAG9C,oBAAoC;AAClC,SAAO,IAAI,sBAAsB;;CAGnC,iBAAiB,SAAwB,WAAmB;EAC1D,MAAMC,UAAkC,EACtC,cAAc,WACf;EAED,MAAM,gBAAgB,QAAQ,QAAQ;AACtC,MACE,iBACA,OAAO,kBAAkB,YACzB,CAAC,MAAM,QAAQ,cAAc,IAC7B,EAAE,yBAAyB,SAE3B,QAAO,OAAO,SAAS,cAAc;AAGvC,MAAI,KAAK,IACP,SAAQ,mBAAmB,UAAU,KAAK;AAG5C,SAAO,IAAI,gBAAgB,KAAK,SAAS;GACvC,GAAG,QAAQ;GACX,SAAS,QAAQ;GACjB;GACD,CAAC;;CAGJ,IAAI,UAAU;AACZ,SAAO;;;;;;;CAQT,cAAc,YAA0B;AACtC,MAAI,CAAC,KAAK,UACR,OAAM,IAAI,wBAAwB,WAAW;;CAIjD,MAAM,KACJ,MACA,QACA,UAAuB,EAAE,EACE;AAC3B,MAAI,CAAC,QAAQ,gBACX,MAAK,cAAc,KAAK;EAG1B,MAAMC,iBAAyC,EAAE;AAEjD,MAAI,QAAQ,eACV,gBAAe,0BAA0B,QAAQ;AAGnD,MAAI,QAAQ,aACV,gBAAe,wBAAwB,QAAQ;EAGjD,IAAIC;AAEJ,MAAI;AACF,SAAM,MAAM,KAAK,OAAO,KAAa,MAAM,QAAQ;IACjD,QAAQ,QAAQ;IAChB,SAAS;IACV,CAAC;WACK,OAAO;AACd,QAAK,gBAAgB;IAAE;IAAM;IAAO,CAAC;AACrC,SAAM;;AAGR,MAAI;AACF,UAAO,EAAE,MAAM,MAAM,IAAI,QAAQ,EAAE;WAC5B,OAAO;AACd,SAAM,KAAK,iBAAiB,OAAO,IAAI;AACvC,SAAM;;;CAIV,MAAM,IACJ,MACA,UAAsB,EAAE,EACG;AAC3B,MAAI,CAAC,QAAQ,gBACX,MAAK,cAAc,KAAK;EAG1B,MAAMD,iBAAyC,EAAE;AAEjD,MAAI,QAAQ,YACV,gBAAe,wBAAwB,UAAU,QAAQ;AAG3D,MAAI,QAAQ,aACV,gBAAe,wBAAwB,QAAQ;EAGjD,IAAIC;AACJ,MAAI;AACF,SAAM,MAAM,KAAK,OAAO,IAAI,MAAM;IAChC,QAAQ,QAAQ;IAChB,SAAS;IACV,CAAC;WACK,OAAO;AACd,QAAK,gBAAgB;IAAE;IAAM;IAAO,CAAC;AAErC,SAAM;;AAGR,MAAI;AACF,UAAO,EAAE,MAAM,MAAM,IAAI,QAAQ,EAAE;WAC5B,OAAO;AACd,SAAM,KAAK,iBAAiB,OAAO,IAAI;AACvC,SAAM;;;CAIV,MAAM,IACJ,MACA,QACA,UAAsB,EAAE,EACG;AAC3B,MAAI,CAAC,QAAQ,gBACX,MAAK,cAAc,KAAK;EAG1B,MAAMD,iBAAyC,EAAE;AAEjD,MAAI,QAAQ,eACV,gBAAe,0BAA0B,QAAQ;EAGnD,IAAIC;AAEJ,MAAI;AACF,SAAM,MAAM,KAAK,OAAO,IAAY,MAAM,QAAQ;IAChD,QAAQ,QAAQ;IAChB,SAAS;IACV,CAAC;WACK,OAAO;AACd,QAAK,gBAAgB;IAAE;IAAM;IAAO,CAAC;AAErC,SAAM;;AAGR,MAAI;AACF,UAAO,EAAE,MAAM,MAAM,IAAI,QAAQ,EAAE;WAC5B,OAAO;AACd,SAAM,KAAK,iBAAiB,OAAO,IAAI;AACvC,SAAM;;;CAIV,MAAM,MACJ,MACA,QACA,UAAwB,EAAE,EACC;AAC3B,MAAI,CAAC,QAAQ,gBACX,MAAK,cAAc,KAAK;EAG1B,MAAMD,iBAAyC,EAAE;AAEjD,MAAI,QAAQ,eACV,gBAAe,0BAA0B,QAAQ;EAGnD,IAAIC;AAEJ,MAAI;AACF,SAAM,MAAM,KAAK,OAAO,MAAc,MAAM,QAAQ;IAClD,QAAQ,QAAQ;IAChB,SAAS;IACV,CAAC;WACK,OAAO;AACd,QAAK,gBAAgB;IAAE;IAAM;IAAO,CAAC;AAErC,SAAM;;AAGR,MAAI;AACF,UAAO,EAAE,MAAM,MAAM,IAAI,QAAQ,EAAE;WAC5B,OAAO;AACd,SAAM,KAAK,iBAAiB,OAAO,IAAI;AACvC,SAAM;;;CAIV,MAAM,OAAO,MAAc,OAA4B;AACrD,OAAK,cAAc,KAAK;AAExB,MAAI;AACF,SAAM,KAAK,OAAO,OAAO,MAAM,EAC7B,QAAQ,OACT,CAAC;WACK,OAAO;AACd,QAAK,gBAAgB;IAAE;IAAM;IAAO,CAAC;AAErC,SAAM;;;CAIV,YAAY,SAAiB;AAE3B,UAAQ,KAAK,WAAW,UAAU;;CAGpC,MAAc,iBACZ,OACA,KACA;AACA,MAAI,iBAAiB,aAAa;GAChC,MAAM,cAAc,IAAI,gBAAgB;GACxC,MAAM,YAAY,YAAY,QAAQ,IAAI,eAAe,IAAI;GAC7D,MAAM,YAAY,YAAY;GAC9B,MAAM,UAAU,MAAM,YAAY,MAAM;AACxC,SAAM,IAAI,WAAW;IACnB,SAAS,MAAM;IACf;IACA;IACA;IACD,CAAC;;;CAIN,AAAQ,gBAAgB,EAAE,MAAM,SAA2C;AACzE,MAAI,EAAE,iBAAiB,iBACrB,OAAM,IAAI,MAAM,qBAAqB,SAAS,EAAE,OAAO,OAAO,CAAC;EAGjE,MAAM,EAAE,aAAa;AAErB,MAAI,UAAU;GACZ,MAAM,EAAE,QAAQ,MAAM,YAAY;GAElC,MAAM,YAAY,QAAQ,mBAAmB;GAC7C,MAAM,EACJ,MACA,mBAAmB,kBACnB,gBACA,QACA,YACE;AAEJ,WAAQ,QAAR;IACE,KAAK,IACH,OAAM,IAAI,sBAAsB,UAAU;IAE5C,KAAK,IACH,OAAM,IAAI,kBAAkB;KAAE;KAAW;KAAS;KAAO,CAAC;IAE5D,KAAK,IACH,OAAM,IAAI,6BAA6B;KACrC;KACA;KACA;KACA;KACD,CAAC;IAEJ,KAAK,IACH,OAAM,IAAI,kBAAkB;KAC1B;KACA;KACA;KACA;KACD,CAAC;IAEJ,KAAK,KAAK;KACR,MAAM,aAAa,QAAQ,IAAI,cAAc;AAE7C,WAAM,IAAI,2BACR,KAAK,SACL,WACA,aAAa,OAAO,WAAW,GAAG,KACnC;;IAEH,QACE,KAAIC,WAAS,iBACX,OAAM,IAAI,eACR,QACA,WACAA,SACA,kBACA,KACD;aACQ,QAAQ,OAGjB,OAAM,IAAI,oBAAoB;KAC5B;KACA;KACA;KACA;KACD,CAAC;QAEF,OAAM,IAAI,uBACR,QACA,KAAK,SACL,MACA,UACD"}
+{"version":3,"file":"workos.js","names":["protocol: string","apiHostname: string","port: number | undefined","userAgent: string","headers: Record<string, string>","requestHeaders: Record<string, string>","res: HttpClientResponseInterface","error"],"sources":["../src/workos.ts"],"sourcesContent":["import {\n  ApiKeyRequiredException,\n  GenericServerException,\n  NotFoundException,\n  UnauthorizedException,\n  UnprocessableEntityException,\n  OauthException,\n  RateLimitExceededException,\n} from './common/exceptions';\nimport { PKCE } from './pkce/pkce';\nimport {\n  GetOptions,\n  HttpClientResponseInterface,\n  PatchOptions,\n  PostOptions,\n  PutOptions,\n  WorkOSOptions,\n  WorkOSResponseError,\n} from './common/interfaces';\nimport { ApiKeys } from './api-keys/api-keys';\nimport { DirectorySync } from './directory-sync/directory-sync';\nimport { Events } from './events/events';\nimport { Organizations } from './organizations/organizations';\nimport { OrganizationDomains } from './organization-domains/organization-domains';\nimport { Passwordless } from './passwordless/passwordless';\nimport { Pipes } from './pipes/pipes';\nimport { Portal } from './portal/portal';\nimport { SSO } from './sso/sso';\nimport { Webhooks } from './webhooks/webhooks';\nimport { Mfa } from './mfa/mfa';\nimport { AuditLogs } from './audit-logs/audit-logs';\nimport { UserManagement } from './user-management/user-management';\nimport { FGA } from './fga/fga';\nimport { BadRequestException } from './common/exceptions/bad-request.exception';\nimport { FeatureFlags } from './feature-flags/feature-flags';\n\nimport { HttpClient, HttpClientError } from './common/net/http-client';\nimport { SubtleCryptoProvider } from './common/crypto/subtle-crypto-provider';\nimport { FetchHttpClient } from './common/net/fetch-client';\nimport { Widgets } from './widgets/widgets';\nimport { Actions } from './actions/actions';\nimport { Authorization } from './authorization/authorization';\nimport { Vault } from './vault/vault';\nimport { ConflictException } from './common/exceptions/conflict.exception';\nimport { CryptoProvider } from './common/crypto/crypto-provider';\nimport { ParseError } from './common/exceptions/parse-error';\nimport { getEnv } from './common/utils/env';\nimport { getRuntimeInfo } from './common/utils/runtime-info';\n\nconst VERSION = '8.3.0';\n\nconst DEFAULT_HOSTNAME = 'api.workos.com';\n\nconst HEADER_AUTHORIZATION = 'Authorization';\nconst HEADER_IDEMPOTENCY_KEY = 'Idempotency-Key';\nconst HEADER_WARRANT_TOKEN = 'Warrant-Token';\n\nexport class WorkOS {\n  readonly baseURL: string;\n  readonly client: HttpClient;\n  readonly clientId?: string;\n  readonly key?: string;\n  readonly options: WorkOSOptions;\n  readonly pkce: PKCE;\n\n  private readonly hasApiKey: boolean;\n\n  readonly actions: Actions;\n  readonly apiKeys = new ApiKeys(this);\n  readonly auditLogs = new AuditLogs(this);\n  readonly authorization = new Authorization(this);\n  readonly directorySync = new DirectorySync(this);\n  readonly events = new Events(this);\n  readonly featureFlags = new FeatureFlags(this);\n  readonly fga = new FGA(this);\n  readonly mfa = new Mfa(this);\n  readonly organizations = new Organizations(this);\n  readonly organizationDomains = new OrganizationDomains(this);\n  readonly passwordless = new Passwordless(this);\n  readonly pipes = new Pipes(this);\n  readonly portal = new Portal(this);\n  readonly sso = new SSO(this);\n  readonly userManagement: UserManagement;\n  readonly vault = new Vault(this);\n  readonly webhooks: Webhooks;\n  readonly widgets = new Widgets(this);\n\n  /**\n   * Create a new WorkOS client.\n   *\n   * @param keyOrOptions - API key string, or options object\n   * @param maybeOptions - Options when first argument is API key\n   *\n   * @example\n   * // Server-side with API key (string)\n   * const workos = new WorkOS('sk_...');\n   *\n   * @example\n   * // Server-side with API key (object)\n   * const workos = new WorkOS({ apiKey: 'sk_...', clientId: 'client_...' });\n   *\n   * @example\n   * // PKCE/public client (no API key)\n   * const workos = new WorkOS({ clientId: 'client_...' });\n   */\n  constructor(\n    keyOrOptions?: string | WorkOSOptions,\n    maybeOptions?: WorkOSOptions,\n  ) {\n    if (typeof keyOrOptions === 'object') {\n      this.key = keyOrOptions.apiKey;\n      this.options = keyOrOptions;\n    } else {\n      this.key = keyOrOptions;\n      this.options = maybeOptions ?? {};\n    }\n\n    if (!this.key) {\n      this.key = getEnv('WORKOS_API_KEY');\n    }\n\n    this.hasApiKey = !!this.key;\n\n    if (this.options.https === undefined) {\n      this.options.https = true;\n    }\n\n    this.clientId = this.options.clientId;\n    if (!this.clientId) {\n      this.clientId = getEnv('WORKOS_CLIENT_ID');\n    }\n\n    if (!this.hasApiKey && !this.clientId) {\n      throw new Error(\n        'WorkOS requires either an API key or a clientId. ' +\n          'For server-side: new WorkOS(\"sk_...\") or new WorkOS({ apiKey: \"sk_...\" }). ' +\n          'For PKCE/public clients: new WorkOS({ clientId: \"client_...\" })',\n      );\n    }\n\n    const protocol: string = this.options.https ? 'https' : 'http';\n    const apiHostname: string = this.options.apiHostname || DEFAULT_HOSTNAME;\n    const port: number | undefined = this.options.port;\n    this.baseURL = `${protocol}://${apiHostname}`;\n\n    if (port) {\n      this.baseURL = this.baseURL + `:${port}`;\n    }\n\n    this.pkce = new PKCE();\n\n    this.webhooks = this.createWebhookClient();\n    this.actions = this.createActionsClient();\n\n    // Must initialize UserManagement after baseURL is configured\n    this.userManagement = new UserManagement(this);\n\n    const userAgent = this.createUserAgent(this.options);\n\n    this.client = this.createHttpClient(this.options, userAgent);\n  }\n\n  private createUserAgent(options: WorkOSOptions): string {\n    let userAgent: string = `workos-node/${VERSION}`;\n\n    const { name: runtimeName, version: runtimeVersion } = getRuntimeInfo();\n    userAgent += ` (${runtimeName}${runtimeVersion ? `/${runtimeVersion}` : ''})`;\n\n    if (options.appInfo) {\n      const { name, version } = options.appInfo;\n      userAgent += ` ${name}: ${version}`;\n    }\n\n    return userAgent;\n  }\n\n  createWebhookClient() {\n    return new Webhooks(this.getCryptoProvider());\n  }\n\n  createActionsClient() {\n    return new Actions(this.getCryptoProvider());\n  }\n\n  getCryptoProvider(): CryptoProvider {\n    return new SubtleCryptoProvider();\n  }\n\n  createHttpClient(options: WorkOSOptions, userAgent: string) {\n    const headers: Record<string, string> = {\n      'User-Agent': userAgent,\n    };\n\n    const configHeaders = options.config?.headers;\n    if (\n      configHeaders &&\n      typeof configHeaders === 'object' &&\n      !Array.isArray(configHeaders) &&\n      !(configHeaders instanceof Headers)\n    ) {\n      Object.assign(headers, configHeaders);\n    }\n\n    if (this.key) {\n      headers['Authorization'] = `Bearer ${this.key}`;\n    }\n\n    return new FetchHttpClient(this.baseURL, {\n      ...options.config,\n      timeout: options.timeout,\n      headers,\n    }) as HttpClient;\n  }\n\n  get version() {\n    return VERSION;\n  }\n\n  /**\n   * Require API key for methods that need it.\n   * @param methodName - Name of the method requiring API key (for error message)\n   * @throws ApiKeyRequiredException if no API key was provided\n   */\n  requireApiKey(methodName: string): void {\n    if (!this.hasApiKey) {\n      throw new ApiKeyRequiredException(methodName);\n    }\n  }\n\n  async post<Result = any, Entity = any>(\n    path: string,\n    entity: Entity,\n    options: PostOptions = {},\n  ): Promise<{ data: Result }> {\n    if (!options.skipApiKeyCheck) {\n      this.requireApiKey(path);\n    }\n\n    const requestHeaders: Record<string, string> = {};\n\n    if (options.idempotencyKey) {\n      requestHeaders[HEADER_IDEMPOTENCY_KEY] = options.idempotencyKey;\n    }\n\n    if (options.warrantToken) {\n      requestHeaders[HEADER_WARRANT_TOKEN] = options.warrantToken;\n    }\n\n    let res: HttpClientResponseInterface;\n\n    try {\n      res = await this.client.post<Entity>(path, entity, {\n        params: options.query,\n        headers: requestHeaders,\n      });\n    } catch (error) {\n      this.handleHttpError({ path, error });\n      throw error;\n    }\n\n    try {\n      return { data: await res.toJSON() };\n    } catch (error) {\n      await this.handleParseError(error, res);\n      throw error;\n    }\n  }\n\n  async get<Result = any>(\n    path: string,\n    options: GetOptions = {},\n  ): Promise<{ data: Result }> {\n    if (!options.skipApiKeyCheck) {\n      this.requireApiKey(path);\n    }\n\n    const requestHeaders: Record<string, string> = {};\n\n    if (options.accessToken) {\n      requestHeaders[HEADER_AUTHORIZATION] = `Bearer ${options.accessToken}`;\n    }\n\n    if (options.warrantToken) {\n      requestHeaders[HEADER_WARRANT_TOKEN] = options.warrantToken;\n    }\n\n    let res: HttpClientResponseInterface;\n    try {\n      res = await this.client.get(path, {\n        params: options.query,\n        headers: requestHeaders,\n      });\n    } catch (error) {\n      this.handleHttpError({ path, error });\n\n      throw error;\n    }\n\n    try {\n      return { data: await res.toJSON() };\n    } catch (error) {\n      await this.handleParseError(error, res);\n      throw error;\n    }\n  }\n\n  async put<Result = any, Entity = any>(\n    path: string,\n    entity: Entity,\n    options: PutOptions = {},\n  ): Promise<{ data: Result }> {\n    if (!options.skipApiKeyCheck) {\n      this.requireApiKey(path);\n    }\n\n    const requestHeaders: Record<string, string> = {};\n\n    if (options.idempotencyKey) {\n      requestHeaders[HEADER_IDEMPOTENCY_KEY] = options.idempotencyKey;\n    }\n\n    let res: HttpClientResponseInterface;\n\n    try {\n      res = await this.client.put<Entity>(path, entity, {\n        params: options.query,\n        headers: requestHeaders,\n      });\n    } catch (error) {\n      this.handleHttpError({ path, error });\n\n      throw error;\n    }\n\n    try {\n      return { data: await res.toJSON() };\n    } catch (error) {\n      await this.handleParseError(error, res);\n      throw error;\n    }\n  }\n\n  async patch<Result = any, Entity = any>(\n    path: string,\n    entity: Entity,\n    options: PatchOptions = {},\n  ): Promise<{ data: Result }> {\n    if (!options.skipApiKeyCheck) {\n      this.requireApiKey(path);\n    }\n\n    const requestHeaders: Record<string, string> = {};\n\n    if (options.idempotencyKey) {\n      requestHeaders[HEADER_IDEMPOTENCY_KEY] = options.idempotencyKey;\n    }\n\n    let res: HttpClientResponseInterface;\n\n    try {\n      res = await this.client.patch<Entity>(path, entity, {\n        params: options.query,\n        headers: requestHeaders,\n      });\n    } catch (error) {\n      this.handleHttpError({ path, error });\n\n      throw error;\n    }\n\n    try {\n      return { data: await res.toJSON() };\n    } catch (error) {\n      await this.handleParseError(error, res);\n      throw error;\n    }\n  }\n\n  async delete(path: string, query?: any): Promise<void> {\n    this.requireApiKey(path);\n\n    try {\n      await this.client.delete(path, {\n        params: query,\n      });\n    } catch (error) {\n      this.handleHttpError({ path, error });\n\n      throw error;\n    }\n  }\n\n  emitWarning(warning: string) {\n    // tslint:disable-next-line:no-console\n    console.warn(`WorkOS: ${warning}`);\n  }\n\n  private async handleParseError(\n    error: unknown,\n    res: HttpClientResponseInterface,\n  ) {\n    if (error instanceof SyntaxError) {\n      const rawResponse = res.getRawResponse() as Response;\n      const requestID = rawResponse.headers.get('X-Request-ID') ?? '';\n      const rawStatus = rawResponse.status;\n      const rawBody = await rawResponse.text();\n      throw new ParseError({\n        message: error.message,\n        rawBody,\n        rawStatus,\n        requestID,\n      });\n    }\n  }\n\n  private handleHttpError({ path, error }: { path: string; error: unknown }) {\n    if (!(error instanceof HttpClientError)) {\n      throw new Error(`Unexpected error: ${error}`, { cause: error });\n    }\n\n    const { response } = error as HttpClientError<WorkOSResponseError>;\n\n    if (response) {\n      const { status, data, headers } = response;\n\n      const requestID = headers['X-Request-ID'] ?? '';\n      const {\n        code,\n        error_description: errorDescription,\n        error,\n        errors,\n        message,\n      } = data;\n\n      switch (status) {\n        case 401: {\n          throw new UnauthorizedException(requestID);\n        }\n        case 409: {\n          throw new ConflictException({ requestID, message, error });\n        }\n        case 422: {\n          throw new UnprocessableEntityException({\n            code,\n            errors,\n            message,\n            requestID,\n          });\n        }\n        case 404: {\n          throw new NotFoundException({\n            code,\n            message,\n            path,\n            requestID,\n          });\n        }\n        case 429: {\n          const retryAfter = headers.get('Retry-After');\n\n          throw new RateLimitExceededException(\n            data.message,\n            requestID,\n            retryAfter ? Number(retryAfter) : null,\n          );\n        }\n        default: {\n          if (error || errorDescription) {\n            throw new OauthException(\n              status,\n              requestID,\n              error,\n              errorDescription,\n              data,\n            );\n          } else if (code && errors) {\n            // Note: ideally this should be mapped directly with a `400` status code.\n            // However, this would break existing logic for the `OauthException` exception.\n            throw new BadRequestException({\n              code,\n              errors,\n              message,\n              requestID,\n            });\n          } else {\n            throw new GenericServerException(\n              status,\n              data.message,\n              data,\n              requestID,\n            );\n          }\n        }\n      }\n    }\n  }\n}\n"],"mappings":";;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;AAiDA,MAAM,UAAU;AAEhB,MAAM,mBAAmB;AAEzB,MAAM,uBAAuB;AAC7B,MAAM,yBAAyB;AAC/B,MAAM,uBAAuB;AAE7B,IAAa,SAAb,MAAoB;CAClB,AAAS;CACT,AAAS;CACT,AAAS;CACT,AAAS;CACT,AAAS;CACT,AAAS;CAET,AAAiB;CAEjB,AAAS;CACT,AAAS,UAAU,IAAI,QAAQ,KAAK;CACpC,AAAS,YAAY,IAAI,UAAU,KAAK;CACxC,AAAS,gBAAgB,IAAI,cAAc,KAAK;CAChD,AAAS,gBAAgB,IAAI,cAAc,KAAK;CAChD,AAAS,SAAS,IAAI,OAAO,KAAK;CAClC,AAAS,eAAe,IAAI,aAAa,KAAK;CAC9C,AAAS,MAAM,IAAI,IAAI,KAAK;CAC5B,AAAS,MAAM,IAAI,IAAI,KAAK;CAC5B,AAAS,gBAAgB,IAAI,cAAc,KAAK;CAChD,AAAS,sBAAsB,IAAI,oBAAoB,KAAK;CAC5D,AAAS,eAAe,IAAI,aAAa,KAAK;CAC9C,AAAS,QAAQ,IAAI,MAAM,KAAK;CAChC,AAAS,SAAS,IAAI,OAAO,KAAK;CAClC,AAAS,MAAM,IAAI,IAAI,KAAK;CAC5B,AAAS;CACT,AAAS,QAAQ,IAAI,MAAM,KAAK;CAChC,AAAS;CACT,AAAS,UAAU,IAAI,QAAQ,KAAK;;;;;;;;;;;;;;;;;;;CAoBpC,YACE,cACA,cACA;AACA,MAAI,OAAO,iBAAiB,UAAU;AACpC,QAAK,MAAM,aAAa;AACxB,QAAK,UAAU;SACV;AACL,QAAK,MAAM;AACX,QAAK,UAAU,gBAAgB,EAAE;;AAGnC,MAAI,CAAC,KAAK,IACR,MAAK,MAAM,OAAO,iBAAiB;AAGrC,OAAK,YAAY,CAAC,CAAC,KAAK;AAExB,MAAI,KAAK,QAAQ,UAAU,OACzB,MAAK,QAAQ,QAAQ;AAGvB,OAAK,WAAW,KAAK,QAAQ;AAC7B,MAAI,CAAC,KAAK,SACR,MAAK,WAAW,OAAO,mBAAmB;AAG5C,MAAI,CAAC,KAAK,aAAa,CAAC,KAAK,SAC3B,OAAM,IAAI,MACR,oMAGD;EAGH,MAAMA,WAAmB,KAAK,QAAQ,QAAQ,UAAU;EACxD,MAAMC,cAAsB,KAAK,QAAQ,eAAe;EACxD,MAAMC,OAA2B,KAAK,QAAQ;AAC9C,OAAK,UAAU,GAAG,SAAS,KAAK;AAEhC,MAAI,KACF,MAAK,UAAU,KAAK,UAAU,IAAI;AAGpC,OAAK,OAAO,IAAI,MAAM;AAEtB,OAAK,WAAW,KAAK,qBAAqB;AAC1C,OAAK,UAAU,KAAK,qBAAqB;AAGzC,OAAK,iBAAiB,IAAI,eAAe,KAAK;EAE9C,MAAM,YAAY,KAAK,gBAAgB,KAAK,QAAQ;AAEpD,OAAK,SAAS,KAAK,iBAAiB,KAAK,SAAS,UAAU;;CAG9D,AAAQ,gBAAgB,SAAgC;EACtD,IAAIC,YAAoB,eAAe;EAEvC,MAAM,EAAE,MAAM,aAAa,SAAS,mBAAmB,gBAAgB;AACvE,eAAa,KAAK,cAAc,iBAAiB,IAAI,mBAAmB,GAAG;AAE3E,MAAI,QAAQ,SAAS;GACnB,MAAM,EAAE,MAAM,YAAY,QAAQ;AAClC,gBAAa,IAAI,KAAK,IAAI;;AAG5B,SAAO;;CAGT,sBAAsB;AACpB,SAAO,IAAI,SAAS,KAAK,mBAAmB,CAAC;;CAG/C,sBAAsB;AACpB,SAAO,IAAI,QAAQ,KAAK,mBAAmB,CAAC;;CAG9C,oBAAoC;AAClC,SAAO,IAAI,sBAAsB;;CAGnC,iBAAiB,SAAwB,WAAmB;EAC1D,MAAMC,UAAkC,EACtC,cAAc,WACf;EAED,MAAM,gBAAgB,QAAQ,QAAQ;AACtC,MACE,iBACA,OAAO,kBAAkB,YACzB,CAAC,MAAM,QAAQ,cAAc,IAC7B,EAAE,yBAAyB,SAE3B,QAAO,OAAO,SAAS,cAAc;AAGvC,MAAI,KAAK,IACP,SAAQ,mBAAmB,UAAU,KAAK;AAG5C,SAAO,IAAI,gBAAgB,KAAK,SAAS;GACvC,GAAG,QAAQ;GACX,SAAS,QAAQ;GACjB;GACD,CAAC;;CAGJ,IAAI,UAAU;AACZ,SAAO;;;;;;;CAQT,cAAc,YAA0B;AACtC,MAAI,CAAC,KAAK,UACR,OAAM,IAAI,wBAAwB,WAAW;;CAIjD,MAAM,KACJ,MACA,QACA,UAAuB,EAAE,EACE;AAC3B,MAAI,CAAC,QAAQ,gBACX,MAAK,cAAc,KAAK;EAG1B,MAAMC,iBAAyC,EAAE;AAEjD,MAAI,QAAQ,eACV,gBAAe,0BAA0B,QAAQ;AAGnD,MAAI,QAAQ,aACV,gBAAe,wBAAwB,QAAQ;EAGjD,IAAIC;AAEJ,MAAI;AACF,SAAM,MAAM,KAAK,OAAO,KAAa,MAAM,QAAQ;IACjD,QAAQ,QAAQ;IAChB,SAAS;IACV,CAAC;WACK,OAAO;AACd,QAAK,gBAAgB;IAAE;IAAM;IAAO,CAAC;AACrC,SAAM;;AAGR,MAAI;AACF,UAAO,EAAE,MAAM,MAAM,IAAI,QAAQ,EAAE;WAC5B,OAAO;AACd,SAAM,KAAK,iBAAiB,OAAO,IAAI;AACvC,SAAM;;;CAIV,MAAM,IACJ,MACA,UAAsB,EAAE,EACG;AAC3B,MAAI,CAAC,QAAQ,gBACX,MAAK,cAAc,KAAK;EAG1B,MAAMD,iBAAyC,EAAE;AAEjD,MAAI,QAAQ,YACV,gBAAe,wBAAwB,UAAU,QAAQ;AAG3D,MAAI,QAAQ,aACV,gBAAe,wBAAwB,QAAQ;EAGjD,IAAIC;AACJ,MAAI;AACF,SAAM,MAAM,KAAK,OAAO,IAAI,MAAM;IAChC,QAAQ,QAAQ;IAChB,SAAS;IACV,CAAC;WACK,OAAO;AACd,QAAK,gBAAgB;IAAE;IAAM;IAAO,CAAC;AAErC,SAAM;;AAGR,MAAI;AACF,UAAO,EAAE,MAAM,MAAM,IAAI,QAAQ,EAAE;WAC5B,OAAO;AACd,SAAM,KAAK,iBAAiB,OAAO,IAAI;AACvC,SAAM;;;CAIV,MAAM,IACJ,MACA,QACA,UAAsB,EAAE,EACG;AAC3B,MAAI,CAAC,QAAQ,gBACX,MAAK,cAAc,KAAK;EAG1B,MAAMD,iBAAyC,EAAE;AAEjD,MAAI,QAAQ,eACV,gBAAe,0BAA0B,QAAQ;EAGnD,IAAIC;AAEJ,MAAI;AACF,SAAM,MAAM,KAAK,OAAO,IAAY,MAAM,QAAQ;IAChD,QAAQ,QAAQ;IAChB,SAAS;IACV,CAAC;WACK,OAAO;AACd,QAAK,gBAAgB;IAAE;IAAM;IAAO,CAAC;AAErC,SAAM;;AAGR,MAAI;AACF,UAAO,EAAE,MAAM,MAAM,IAAI,QAAQ,EAAE;WAC5B,OAAO;AACd,SAAM,KAAK,iBAAiB,OAAO,IAAI;AACvC,SAAM;;;CAIV,MAAM,MACJ,MACA,QACA,UAAwB,EAAE,EACC;AAC3B,MAAI,CAAC,QAAQ,gBACX,MAAK,cAAc,KAAK;EAG1B,MAAMD,iBAAyC,EAAE;AAEjD,MAAI,QAAQ,eACV,gBAAe,0BAA0B,QAAQ;EAGnD,IAAIC;AAEJ,MAAI;AACF,SAAM,MAAM,KAAK,OAAO,MAAc,MAAM,QAAQ;IAClD,QAAQ,QAAQ;IAChB,SAAS;IACV,CAAC;WACK,OAAO;AACd,QAAK,gBAAgB;IAAE;IAAM;IAAO,CAAC;AAErC,SAAM;;AAGR,MAAI;AACF,UAAO,EAAE,MAAM,MAAM,IAAI,QAAQ,EAAE;WAC5B,OAAO;AACd,SAAM,KAAK,iBAAiB,OAAO,IAAI;AACvC,SAAM;;;CAIV,MAAM,OAAO,MAAc,OAA4B;AACrD,OAAK,cAAc,KAAK;AAExB,MAAI;AACF,SAAM,KAAK,OAAO,OAAO,MAAM,EAC7B,QAAQ,OACT,CAAC;WACK,OAAO;AACd,QAAK,gBAAgB;IAAE;IAAM;IAAO,CAAC;AAErC,SAAM;;;CAIV,YAAY,SAAiB;AAE3B,UAAQ,KAAK,WAAW,UAAU;;CAGpC,MAAc,iBACZ,OACA,KACA;AACA,MAAI,iBAAiB,aAAa;GAChC,MAAM,cAAc,IAAI,gBAAgB;GACxC,MAAM,YAAY,YAAY,QAAQ,IAAI,eAAe,IAAI;GAC7D,MAAM,YAAY,YAAY;GAC9B,MAAM,UAAU,MAAM,YAAY,MAAM;AACxC,SAAM,IAAI,WAAW;IACnB,SAAS,MAAM;IACf;IACA;IACA;IACD,CAAC;;;CAIN,AAAQ,gBAAgB,EAAE,MAAM,SAA2C;AACzE,MAAI,EAAE,iBAAiB,iBACrB,OAAM,IAAI,MAAM,qBAAqB,SAAS,EAAE,OAAO,OAAO,CAAC;EAGjE,MAAM,EAAE,aAAa;AAErB,MAAI,UAAU;GACZ,MAAM,EAAE,QAAQ,MAAM,YAAY;GAElC,MAAM,YAAY,QAAQ,mBAAmB;GAC7C,MAAM,EACJ,MACA,mBAAmB,kBACnB,gBACA,QACA,YACE;AAEJ,WAAQ,QAAR;IACE,KAAK,IACH,OAAM,IAAI,sBAAsB,UAAU;IAE5C,KAAK,IACH,OAAM,IAAI,kBAAkB;KAAE;KAAW;KAAS;KAAO,CAAC;IAE5D,KAAK,IACH,OAAM,IAAI,6BAA6B;KACrC;KACA;KACA;KACA;KACD,CAAC;IAEJ,KAAK,IACH,OAAM,IAAI,kBAAkB;KAC1B;KACA;KACA;KACA;KACD,CAAC;IAEJ,KAAK,KAAK;KACR,MAAM,aAAa,QAAQ,IAAI,cAAc;AAE7C,WAAM,IAAI,2BACR,KAAK,SACL,WACA,aAAa,OAAO,WAAW,GAAG,KACnC;;IAEH,QACE,KAAIC,WAAS,iBACX,OAAM,IAAI,eACR,QACA,WACAA,SACA,kBACA,KACD;aACQ,QAAQ,OAGjB,OAAM,IAAI,oBAAoB;KAC5B;KACA;KACA;KACA;KACD,CAAC;QAEF,OAAM,IAAI,uBACR,QACA,KAAK,SACL,MACA,UACD"}

package/lib/{write-warrant-options.serializer-CJo81yBS.cjs → write-warrant-options.serializer-BuW_6XA_.cjs}

@@ -1,4 +1,4 @@
-const require_interface_check = require('./interface-check-CTSXH7TS.cjs');
+const require_interface_check = require('./interface-check-jNs7TVqZ.cjs');
 
 //#region src/fga/serializers/write-warrant-options.serializer.ts
 const serializeWriteWarrantOptions = (warrant) => ({
@@ -23,4 +23,4 @@ Object.defineProperty(exports, 'serializeWriteWarrantOptions', {
     return serializeWriteWarrantOptions;
   }
 });
-//# sourceMappingURL=write-warrant-options.serializer-CJo81yBS.cjs.map
+//# sourceMappingURL=write-warrant-options.serializer-BuW_6XA_.cjs.map

package/lib/{write-warrant-options.serializer-CJo81yBS.cjs.map → write-warrant-options.serializer-BuW_6XA_.cjs.map}

@@ -1 +1 @@
-{"version":3,"file":"write-warrant-options.serializer-CJo81yBS.cjs","names":["isResourceInterface","isSubject"],"sources":["../src/fga/serializers/write-warrant-options.serializer.ts"],"sourcesContent":["import {\n  SerializedWriteWarrantOptions,\n  WriteWarrantOptions,\n} from '../interfaces';\nimport { isSubject, isResourceInterface } from '../utils/interface-check';\n\nexport const serializeWriteWarrantOptions = (\n  warrant: WriteWarrantOptions,\n): SerializedWriteWarrantOptions => ({\n  op: warrant.op,\n  resource_type: isResourceInterface(warrant.resource)\n    ? warrant.resource.getResourceType()\n    : warrant.resource.resourceType,\n  resource_id: isResourceInterface(warrant.resource)\n    ? warrant.resource.getResourceId()\n    : warrant.resource.resourceId\n      ? warrant.resource.resourceId\n      : '',\n  relation: warrant.relation,\n  subject: isSubject(warrant.subject)\n    ? {\n        resource_type: warrant.subject.resourceType,\n        resource_id: warrant.subject.resourceId,\n      }\n    : {\n        resource_type: warrant.subject.getResourceType(),\n        resource_id: warrant.subject.getResourceId(),\n      },\n  policy: warrant.policy,\n});\n"],"mappings":";;;AAMA,MAAa,gCACX,aACmC;CACnC,IAAI,QAAQ;CACZ,eAAeA,4CAAoB,QAAQ,SAAS,GAChD,QAAQ,SAAS,iBAAiB,GAClC,QAAQ,SAAS;CACrB,aAAaA,4CAAoB,QAAQ,SAAS,GAC9C,QAAQ,SAAS,eAAe,GAChC,QAAQ,SAAS,aACf,QAAQ,SAAS,aACjB;CACN,UAAU,QAAQ;CAClB,SAASC,kCAAU,QAAQ,QAAQ,GAC/B;EACE,eAAe,QAAQ,QAAQ;EAC/B,aAAa,QAAQ,QAAQ;EAC9B,GACD;EACE,eAAe,QAAQ,QAAQ,iBAAiB;EAChD,aAAa,QAAQ,QAAQ,eAAe;EAC7C;CACL,QAAQ,QAAQ;CACjB"}
+{"version":3,"file":"write-warrant-options.serializer-BuW_6XA_.cjs","names":["isResourceInterface","isSubject"],"sources":["../src/fga/serializers/write-warrant-options.serializer.ts"],"sourcesContent":["import {\n  SerializedWriteWarrantOptions,\n  WriteWarrantOptions,\n} from '../interfaces';\nimport { isSubject, isResourceInterface } from '../utils/interface-check';\n\nexport const serializeWriteWarrantOptions = (\n  warrant: WriteWarrantOptions,\n): SerializedWriteWarrantOptions => ({\n  op: warrant.op,\n  resource_type: isResourceInterface(warrant.resource)\n    ? warrant.resource.getResourceType()\n    : warrant.resource.resourceType,\n  resource_id: isResourceInterface(warrant.resource)\n    ? warrant.resource.getResourceId()\n    : warrant.resource.resourceId\n      ? warrant.resource.resourceId\n      : '',\n  relation: warrant.relation,\n  subject: isSubject(warrant.subject)\n    ? {\n        resource_type: warrant.subject.resourceType,\n        resource_id: warrant.subject.resourceId,\n      }\n    : {\n        resource_type: warrant.subject.getResourceType(),\n        resource_id: warrant.subject.getResourceId(),\n      },\n  policy: warrant.policy,\n});\n"],"mappings":";;;AAMA,MAAa,gCACX,aACmC;CACnC,IAAI,QAAQ;CACZ,eAAeA,4CAAoB,QAAQ,SAAS,GAChD,QAAQ,SAAS,iBAAiB,GAClC,QAAQ,SAAS;CACrB,aAAaA,4CAAoB,QAAQ,SAAS,GAC9C,QAAQ,SAAS,eAAe,GAChC,QAAQ,SAAS,aACf,QAAQ,SAAS,aACjB;CACN,UAAU,QAAQ;CAClB,SAASC,kCAAU,QAAQ,QAAQ,GAC/B;EACE,eAAe,QAAQ,QAAQ;EAC/B,aAAa,QAAQ,QAAQ;EAC9B,GACD;EACE,eAAe,QAAQ,QAAQ,iBAAiB;EAChD,aAAa,QAAQ,QAAQ,eAAe;EAC7C;CACL,QAAQ,QAAQ;CACjB"}

package/package.json

@@ -1,5 +1,5 @@
 {
-  "version": "8.2.0",
+  "version": "8.3.0",
   "name": "@workos-inc/node",
   "author": "WorkOS",
   "description": "A Node wrapper for the WorkOS API",

package/lib/event.serializer-B2GuXosD.cjs.map

@@ -1 +0,0 @@
-{"version":3,"file":"event.serializer-B2GuXosD.cjs","names":["eventBase: EventBase","deserializeAuthenticationEvent","deserializeAuthenticationRadarRiskDetectedEvent","deserializeConnection","deserializeEventDirectory","deserializeDeletedEventDirectory","deserializeDirectoryGroup","deserializeUpdatedEventDirectoryGroup","deserializeDirectoryUser","deserializeUpdatedEventDirectoryUser","deserializeEmailVerificationEvent","deserializeInvitationEvent","deserializeMagicAuthEvent","deserializePasswordResetEvent","deserializeUser","deserializeOrganizationMembership","deserializeRoleEvent","deserializeSession","deserializeOrganization","deserializeOrganizationDomain","deserializeApiKey"],"sources":["../src/common/serializers/event.serializer.ts"],"sourcesContent":["import {\n  deserializeDeletedEventDirectory,\n  deserializeDirectoryUser,\n  deserializeEventDirectory,\n  deserializeDirectoryGroup,\n  deserializeUpdatedEventDirectoryGroup,\n  deserializeUpdatedEventDirectoryUser,\n} from '../../directory-sync/serializers';\nimport { deserializeOrganization } from '../../organizations/serializers';\nimport { deserializeConnection } from '../../sso/serializers';\nimport {\n  deserializeAuthenticationEvent,\n  deserializeEmailVerificationEvent,\n  deserializeInvitationEvent,\n  deserializeMagicAuthEvent,\n  deserializePasswordResetEvent,\n  deserializeUser,\n} from '../../user-management/serializers';\nimport { deserializeOrganizationDomain } from '../../organization-domains/serializers/organization-domain.serializer';\nimport { deserializeOrganizationMembership } from '../../user-management/serializers/organization-membership.serializer';\nimport { deserializeRoleEvent } from '../../user-management/serializers/role.serializer';\nimport { deserializeSession } from '../../user-management/serializers/session.serializer';\nimport { Event, EventBase, EventResponse } from '../interfaces';\nimport { deserializeAuthenticationRadarRiskDetectedEvent } from '../../user-management/serializers/authentication-radar-risk-event-serializer';\nimport { deserializeApiKey } from '../../api-keys/serializers/api-key.serializer';\n\nexport const deserializeEvent = (event: EventResponse): Event => {\n  const eventBase: EventBase = {\n    id: event.id,\n    createdAt: event.created_at,\n    context: event.context,\n  };\n\n  switch (event.event) {\n    case 'authentication.email_verification_succeeded':\n    case 'authentication.magic_auth_failed':\n    case 'authentication.magic_auth_succeeded':\n    case 'authentication.mfa_succeeded':\n    case 'authentication.oauth_failed':\n    case 'authentication.oauth_succeeded':\n    case 'authentication.passkey_failed':\n    case 'authentication.passkey_succeeded':\n    case 'authentication.password_failed':\n    case 'authentication.password_succeeded':\n    case 'authentication.sso_failed':\n    case 'authentication.sso_succeeded':\n      return {\n        ...eventBase,\n        event: event.event,\n        data: deserializeAuthenticationEvent(event.data),\n      };\n    case 'authentication.radar_risk_detected':\n      return {\n        ...eventBase,\n        event: event.event,\n        data: deserializeAuthenticationRadarRiskDetectedEvent(event.data),\n      };\n    case 'connection.activated':\n    case 'connection.deactivated':\n    case 'connection.deleted':\n      return {\n        ...eventBase,\n        event: event.event,\n        data: deserializeConnection(event.data),\n      };\n    case 'dsync.activated':\n      return {\n        ...eventBase,\n        event: event.event,\n        data: deserializeEventDirectory(event.data),\n      };\n    case 'dsync.deleted':\n      return {\n        ...eventBase,\n        event: event.event,\n        data: deserializeDeletedEventDirectory(event.data),\n      };\n    case 'dsync.group.created':\n    case 'dsync.group.deleted':\n      return {\n        ...eventBase,\n        event: event.event,\n        data: deserializeDirectoryGroup(event.data),\n      };\n    case 'dsync.group.updated':\n      return {\n        ...eventBase,\n        event: event.event,\n        data: deserializeUpdatedEventDirectoryGroup(event.data),\n      };\n    case 'dsync.group.user_added':\n    case 'dsync.group.user_removed':\n      return {\n        ...eventBase,\n        event: event.event,\n        data: {\n          directoryId: event.data.directory_id,\n          user: deserializeDirectoryUser(event.data.user),\n          group: deserializeDirectoryGroup(event.data.group),\n        },\n      };\n    case 'dsync.user.created':\n    case 'dsync.user.deleted':\n      return {\n        ...eventBase,\n        event: event.event,\n        data: deserializeDirectoryUser(event.data),\n      };\n    case 'dsync.user.updated':\n      return {\n        ...eventBase,\n        event: event.event,\n        data: deserializeUpdatedEventDirectoryUser(event.data),\n      };\n    case 'email_verification.created':\n      return {\n        ...eventBase,\n        event: event.event,\n        data: deserializeEmailVerificationEvent(event.data),\n      };\n    case 'invitation.accepted':\n    case 'invitation.created':\n    case 'invitation.revoked':\n    case 'invitation.resent':\n      return {\n        ...eventBase,\n        event: event.event,\n        data: deserializeInvitationEvent(event.data),\n      };\n    case 'magic_auth.created':\n      return {\n        ...eventBase,\n        event: event.event,\n        data: deserializeMagicAuthEvent(event.data),\n      };\n    case 'password_reset.created':\n    case 'password_reset.succeeded':\n      return {\n        ...eventBase,\n        event: event.event,\n        data: deserializePasswordResetEvent(event.data),\n      };\n    case 'user.created':\n    case 'user.updated':\n    case 'user.deleted':\n      return {\n        ...eventBase,\n        event: event.event,\n        data: deserializeUser(event.data),\n      };\n    case 'organization_membership.created':\n    case 'organization_membership.deleted':\n    case 'organization_membership.updated':\n      return {\n        ...eventBase,\n        event: event.event,\n        data: deserializeOrganizationMembership(event.data),\n      };\n    case 'role.created':\n    case 'role.deleted':\n    case 'role.updated':\n      return {\n        ...eventBase,\n        event: event.event,\n        data: deserializeRoleEvent(event.data),\n      };\n    case 'session.created':\n    case 'session.revoked':\n      return {\n        ...eventBase,\n        event: event.event,\n        data: deserializeSession(event.data),\n      };\n    case 'organization.created':\n    case 'organization.updated':\n    case 'organization.deleted':\n      return {\n        ...eventBase,\n        event: event.event,\n        data: deserializeOrganization(event.data),\n      };\n    case 'organization_domain.verified':\n    case 'organization_domain.verification_failed':\n    case 'organization_domain.created':\n    case 'organization_domain.updated':\n    case 'organization_domain.deleted':\n      return {\n        ...eventBase,\n        event: event.event,\n        data: deserializeOrganizationDomain(event.data),\n      };\n    case 'api_key.created':\n    case 'api_key.deleted':\n      return {\n        ...eventBase,\n        event: event.event,\n        data: deserializeApiKey(event.data),\n      };\n  }\n};\n"],"mappings":";;;;;;;;;;;;;;;;;;;AA0BA,MAAa,oBAAoB,UAAgC;CAC/D,MAAMA,YAAuB;EAC3B,IAAI,MAAM;EACV,WAAW,MAAM;EACjB,SAAS,MAAM;EAChB;AAED,SAAQ,MAAM,OAAd;EACE,KAAK;EACL,KAAK;EACL,KAAK;EACL,KAAK;EACL,KAAK;EACL,KAAK;EACL,KAAK;EACL,KAAK;EACL,KAAK;EACL,KAAK;EACL,KAAK;EACL,KAAK,+BACH,QAAO;GACL,GAAG;GACH,OAAO,MAAM;GACb,MAAMC,uEAA+B,MAAM,KAAK;GACjD;EACH,KAAK,qCACH,QAAO;GACL,GAAG;GACH,OAAO,MAAM;GACb,MAAMC,mGAAgD,MAAM,KAAK;GAClE;EACH,KAAK;EACL,KAAK;EACL,KAAK,qBACH,QAAO;GACL,GAAG;GACH,OAAO,MAAM;GACb,MAAMC,oDAAsB,MAAM,KAAK;GACxC;EACH,KAAK,kBACH,QAAO;GACL,GAAG;GACH,OAAO,MAAM;GACb,MAAMC,uDAA0B,MAAM,KAAK;GAC5C;EACH,KAAK,gBACH,QAAO;GACL,GAAG;GACH,OAAO,MAAM;GACb,MAAMC,8DAAiC,MAAM,KAAK;GACnD;EACH,KAAK;EACL,KAAK,sBACH,QAAO;GACL,GAAG;GACH,OAAO,MAAM;GACb,MAAMC,6DAA0B,MAAM,KAAK;GAC5C;EACH,KAAK,sBACH,QAAO;GACL,GAAG;GACH,OAAO,MAAM;GACb,MAAMC,yEAAsC,MAAM,KAAK;GACxD;EACH,KAAK;EACL,KAAK,2BACH,QAAO;GACL,GAAG;GACH,OAAO,MAAM;GACb,MAAM;IACJ,aAAa,MAAM,KAAK;IACxB,MAAMC,2DAAyB,MAAM,KAAK,KAAK;IAC/C,OAAOF,6DAA0B,MAAM,KAAK,MAAM;IACnD;GACF;EACH,KAAK;EACL,KAAK,qBACH,QAAO;GACL,GAAG;GACH,OAAO,MAAM;GACb,MAAME,2DAAyB,MAAM,KAAK;GAC3C;EACH,KAAK,qBACH,QAAO;GACL,GAAG;GACH,OAAO,MAAM;GACb,MAAMC,uEAAqC,MAAM,KAAK;GACvD;EACH,KAAK,6BACH,QAAO;GACL,GAAG;GACH,OAAO,MAAM;GACb,MAAMC,wEAAkC,MAAM,KAAK;GACpD;EACH,KAAK;EACL,KAAK;EACL,KAAK;EACL,KAAK,oBACH,QAAO;GACL,GAAG;GACH,OAAO,MAAM;GACb,MAAMC,yDAA2B,MAAM,KAAK;GAC7C;EACH,KAAK,qBACH,QAAO;GACL,GAAG;GACH,OAAO,MAAM;GACb,MAAMC,wDAA0B,MAAM,KAAK;GAC5C;EACH,KAAK;EACL,KAAK,2BACH,QAAO;GACL,GAAG;GACH,OAAO,MAAM;GACb,MAAMC,gEAA8B,MAAM,KAAK;GAChD;EACH,KAAK;EACL,KAAK;EACL,KAAK,eACH,QAAO;GACL,GAAG;GACH,OAAO,MAAM;GACb,MAAMC,wCAAgB,MAAM,KAAK;GAClC;EACH,KAAK;EACL,KAAK;EACL,KAAK,kCACH,QAAO;GACL,GAAG;GACH,OAAO,MAAM;GACb,MAAMC,6EAAkC,MAAM,KAAK;GACpD;EACH,KAAK;EACL,KAAK;EACL,KAAK,eACH,QAAO;GACL,GAAG;GACH,OAAO,MAAM;GACb,MAAMC,6CAAqB,MAAM,KAAK;GACvC;EACH,KAAK;EACL,KAAK,kBACH,QAAO;GACL,GAAG;GACH,OAAO,MAAM;GACb,MAAMC,8CAAmB,MAAM,KAAK;GACrC;EACH,KAAK;EACL,KAAK;EACL,KAAK,uBACH,QAAO;GACL,GAAG;GACH,OAAO,MAAM;GACb,MAAMC,wDAAwB,MAAM,KAAK;GAC1C;EACH,KAAK;EACL,KAAK;EACL,KAAK;EACL,KAAK;EACL,KAAK,8BACH,QAAO;GACL,GAAG;GACH,OAAO,MAAM;GACb,MAAMC,qEAA8B,MAAM,KAAK;GAChD;EACH,KAAK;EACL,KAAK,kBACH,QAAO;GACL,GAAG;GACH,OAAO,MAAM;GACb,MAAMC,6CAAkB,MAAM,KAAK;GACpC"}