@workos-inc/node 9.1.0 → 9.2.0

package/lib/{factory-B7cG7pDB.mjs → factory-CdcF5208.mjs}

@@ -405,15 +405,26 @@ const AUTHENTICATION_ERROR_CODES = new Set([
 	"mfa_verification",
 	"sso_required"
 ]);
+function parseAuthenticationErrorCode(value) {
+	if (typeof value !== "string") return;
+	if (!AUTHENTICATION_ERROR_CODES.has(value)) return;
+	return value;
+}
+function getAuthenticationErrorCode(data) {
+	return parseAuthenticationErrorCode(data.code) ?? parseAuthenticationErrorCode(data.error);
+}
 function isAuthenticationErrorData(data) {
-	return typeof data.code === "string" && AUTHENTICATION_ERROR_CODES.has(data.code);
+	return getAuthenticationErrorCode(data) !== void 0;
 }
 var AuthenticationException = class extends GenericServerException {
 	name = "AuthenticationException";
+	code;
 	pendingAuthenticationToken;
 	constructor(status, rawData, requestID) {
-		super(status, rawData.message, rawData, requestID);
+		const code = getAuthenticationErrorCode(rawData);
+		super(status, rawData.message ?? rawData.error_description, rawData, requestID);
 		this.rawData = rawData;
+		this.code = code;
 		this.pendingAuthenticationToken = rawData.pending_authentication_token;
 	}
 };
@@ -4776,6 +4787,7 @@ const serializeListMembershipsForResourceOptions = (options) => ({
 const deserializeRoleAssignment = (response) => ({
 	object: response.object,
 	id: response.id,
+	organizationMembershipId: response.organization_membership_id,
 	role: response.role,
 	resource: {
 		id: response.resource.id,
@@ -5052,7 +5064,7 @@ var Authorization = class {
 	* @throws {NotFoundException} 404
 	* @throws {UnprocessableEntityException} 422
 	*/
-	async updateRolePermissions(organizationId, slug, options) {
+	async setOrganizationRolePermissions(organizationId, slug, options) {
 		const { data } = await this.workos.put(`/authorization/organizations/${organizationId}/roles/${slug}/permissions`, { permissions: options.permissions });
 		return deserializeOrganizationRole(data);
 	}
@@ -5077,7 +5089,7 @@ var Authorization = class {
 	* @throws {NotFoundException} 404
 	* @throws {UnprocessableEntityException} 422
 	*/
-	async createRolePermission(organizationId, slug, options) {
+	async addOrganizationRolePermission(organizationId, slug, options) {
 		const { data } = await this.workos.post(`/authorization/organizations/${organizationId}/roles/${slug}/permissions`, { slug: options.permissionSlug });
 		return deserializeOrganizationRole(data);
 	}
@@ -5104,7 +5116,7 @@ var Authorization = class {
 	* @throws 403 response from the API.
 	* @throws {NotFoundException} 404
 	*/
-	async deleteRolePermission(organizationId, slug, options) {
+	async removeOrganizationRolePermission(organizationId, slug, options) {
 		await this.workos.delete(`/authorization/organizations/${organizationId}/roles/${slug}/permissions/${options.permissionSlug}`);
 	}
 	/**
@@ -5288,7 +5300,7 @@ var Authorization = class {
 	* @throws 403 response from the API.
 	* @throws {NotFoundException} 404
 	*/
-	async getOrganizationResource(options) {
+	async getResourceByExternalId(options) {
 		const { organizationId, resourceTypeSlug, externalId } = options;
 		const { data } = await this.workos.get(`/authorization/organizations/${organizationId}/resources/${resourceTypeSlug}/${externalId}`);
 		return deserializeAuthorizationResource(data);
@@ -5320,7 +5332,7 @@ var Authorization = class {
 	* @throws {ConflictException} 409
 	* @throws {UnprocessableEntityException} 422
 	*/
-	async updateOrganizationResource(options) {
+	async updateResourceByExternalId(options) {
 		const { organizationId, resourceTypeSlug, externalId } = options;
 		const { data } = await this.workos.patch(`/authorization/organizations/${organizationId}/resources/${resourceTypeSlug}/${externalId}`, serializeUpdateResourceByExternalIdOptions(options));
 		return deserializeAuthorizationResource(data);
@@ -5351,7 +5363,7 @@ var Authorization = class {
 	* @throws {NotFoundException} 404
 	* @throws {ConflictException} 409
 	*/
-	async deleteOrganizationResource(options) {
+	async deleteResourceByExternalId(options) {
 		const { organizationId, resourceTypeSlug, externalId, cascadeDelete } = options;
 		const query = cascadeDelete !== void 0 ? { cascade_delete: cascadeDelete.toString() } : void 0;
 		await this.workos.delete(`/authorization/organizations/${organizationId}/resources/${resourceTypeSlug}/${externalId}`, query);
@@ -5384,12 +5396,60 @@ var Authorization = class {
 	* @throws 403 response from the API.
 	* @throws {NotFoundException} 404
 	*/
-	async listOrganizationMembershipRoleAssignments(options) {
+	async listRoleAssignments(options) {
 		const { organizationMembershipId, ...queryOptions } = options;
 		const endpoint = `/authorization/organization_memberships/${organizationMembershipId}/role_assignments`;
 		return new AutoPaginatable(await fetchAndDeserialize(this.workos, endpoint, deserializeRoleAssignment, queryOptions), (params) => fetchAndDeserialize(this.workos, endpoint, deserializeRoleAssignment, params), queryOptions);
 	}
 	/**
+	* List role assignments for a resource
+	*
+	* List all role assignments granted on a resource. This returns every role assignment scoped to the resource, regardless of which organization membership received it.
+	* @param resourceId - The ID of the authorization resource.
+	*
+	* @example
+	* "authz_resource_01HXYZ123456789ABCDEFGHIJ"
+	*
+	* @param options - Pagination and filter options.
+	* @returns {Promise<AutoPaginatable<RoleAssignment>>}
+	* @throws 403 response from the API.
+	* @throws {NotFoundException} 404
+	*/
+	async listRoleAssignmentsForResource(options) {
+		const { resourceId, ...queryOptions } = options;
+		const endpoint = `/authorization/resources/${resourceId}/role_assignments`;
+		return new AutoPaginatable(await fetchAndDeserialize(this.workos, endpoint, deserializeRoleAssignment, queryOptions), (params) => fetchAndDeserialize(this.workos, endpoint, deserializeRoleAssignment, params), queryOptions);
+	}
+	/**
+	* List role assignments for a resource by external ID
+	*
+	* List all role assignments granted on a resource identified by its external ID, organization, and resource type. This returns every role assignment scoped to the resource, regardless of which organization membership received it.
+	* @param organizationId - The ID of the organization that owns the resource.
+	*
+	* @example
+	* "org_01EHZNVPK3SFK441A1RGBFSHRT"
+	*
+	* @param resourceTypeSlug - The slug of the resource type this resource belongs to.
+	*
+	* @example
+	* "project"
+	*
+	* @param externalId - An identifier you provide to reference the resource in your system.
+	*
+	* @example
+	* "proj-456"
+	*
+	* @param options - Pagination and filter options.
+	* @returns {Promise<AutoPaginatable<RoleAssignment>>}
+	* @throws 403 response from the API.
+	* @throws {NotFoundException} 404
+	*/
+	async listResourceRoleAssignments(options) {
+		const { organizationId, resourceTypeSlug, externalId, ...queryOptions } = options;
+		const endpoint = `/authorization/organizations/${organizationId}/resources/${resourceTypeSlug}/${externalId}/role_assignments`;
+		return new AutoPaginatable(await fetchAndDeserialize(this.workos, endpoint, deserializeRoleAssignment, queryOptions), (params) => fetchAndDeserialize(this.workos, endpoint, deserializeRoleAssignment, params), queryOptions);
+	}
+	/**
 	* Assign a role
 	*
 	* Assign a role to an organization membership on a specific resource.
@@ -5434,7 +5494,7 @@ var Authorization = class {
 	* @throws 403 response from the API.
 	* @throws {NotFoundException} 404
 	*/
-	async deleteOrganizationMembershipRoleAssignment(options) {
+	async removeRoleAssignment(options) {
 		await this.workos.delete(`/authorization/organization_memberships/${options.organizationMembershipId}/role_assignments/${options.roleAssignmentId}`);
 	}
 	/**
@@ -5455,7 +5515,7 @@ var Authorization = class {
 	* @throws {NotFoundException} 404
 	* @throws {UnprocessableEntityException} 422
 	*/
-	async listOrganizationMembershipResources(options) {
+	async listResourcesForMembership(options) {
 		const { organizationMembershipId } = options;
 		const endpoint = `/authorization/organization_memberships/${organizationMembershipId}/resources`;
 		const serializedOptions = serializeListResourcesForMembershipOptions(options);
@@ -5504,7 +5564,7 @@ var Authorization = class {
 	* @throws {NotFoundException} 404
 	* @throws {UnprocessableEntityException} 422
 	*/
-	async listResourceOrganizationMemberships(options) {
+	async listMembershipsForResourceByExternalId(options) {
 		const { organizationId, resourceTypeSlug, externalId } = options;
 		const endpoint = `/authorization/organizations/${organizationId}/resources/${resourceTypeSlug}/${externalId}/organization_memberships`;
 		const serializedOptions = serializeListMembershipsForResourceOptions(options);
@@ -5530,7 +5590,7 @@ var Authorization = class {
 	* @throws {NotFoundException} 404
 	* @throws {UnprocessableEntityException} 422
 	*/
-	async listResourcePermissions(options) {
+	async listEffectivePermissions(options) {
 		const { organizationMembershipId, resourceId } = options;
 		const endpoint = `/authorization/resources/${resourceId}/organization_memberships/${organizationMembershipId}/permissions`;
 		const serializedOptions = serializeListEffectivePermissionsOptions(options);
@@ -5547,8 +5607,8 @@ var Authorization = class {
 	* @throws {UnprocessableEntityException} 422
 	*/
 	async listEffectivePermissionsByExternalId(options) {
-		const { organizationMembershipId, organizationId, resourceTypeSlug, externalId } = options;
-		const endpoint = `/authorization/organizations/${organizationId}/resources/${resourceTypeSlug}/${externalId}/organization_memberships/${organizationMembershipId}/permissions`;
+		const { organizationMembershipId, resourceTypeSlug, externalId } = options;
+		const endpoint = `/authorization/organization_memberships/${organizationMembershipId}/resources/${resourceTypeSlug}/${externalId}/permissions`;
 		const serializedOptions = serializeListEffectivePermissionsOptions(options);
 		return new AutoPaginatable(await fetchAndDeserialize(this.workos, endpoint, deserializePermission, serializedOptions), (params) => fetchAndDeserialize(this.workos, endpoint, deserializePermission, params), serializedOptions);
 	}
@@ -5847,7 +5907,7 @@ function extractBunVersionFromUserAgent() {
 }
 //#endregion
 //#region package.json
-var version = "9.1.0";
+var version = "9.2.0";
 //#endregion
 //#region src/workos.ts
 const DEFAULT_HOSTNAME = "api.workos.com";
@@ -6137,14 +6197,14 @@ var WorkOS = class {
 					const retryAfter = headers.get("Retry-After");
 					throw new RateLimitExceededException(data.message, requestID, retryAfter ? Number(retryAfter) : null);
 				}
-				default: if (error || errorDescription) throw new OauthException(status, requestID, error, errorDescription, data);
+				default: if (isAuthenticationErrorData(data)) throw new AuthenticationException(status, data, requestID);
+				else if (error || errorDescription) throw new OauthException(status, requestID, error, errorDescription, data);
 				else if (code && errors) throw new BadRequestException({
 					code,
 					errors,
 					message,
 					requestID
 				});
-				else if (isAuthenticationErrorData(data)) throw new AuthenticationException(status, data, requestID);
 				else throw new GenericServerException(status, data.message, data, requestID);
 			}
 		}
@@ -6232,4 +6292,4 @@ function createWorkOS(options) {
 //#endregion
 export { FetchHttpClient as A, NoApiKeyProvidedException as C, isAuthenticationErrorData as D, AuthenticationException as E, GenericServerException as O, NotFoundException as S, BadRequestException as T, UnprocessableEntityException as _, DomainDataState as a, RateLimitExceededException as b, FeatureFlagsRuntimeClient as c, serializeRevokeSessionOptions as d, AuthenticateWithSessionCookieFailureReason as f, Actions as g, Webhooks as h, OrganizationDomainVerificationStrategy as i, SubtleCryptoProvider as j, ApiKeyRequiredException as k, CookieSession as l, PKCE as m, ConnectionType as n, GenerateLinkIntent as o, AutoPaginatable as p, OrganizationDomainState as r, WorkOS as s, createWorkOS as t, RefreshSessionFailureReason as u, UnauthorizedException as v, ConflictException as w, OauthException as x, SignatureVerificationException as y };
 
-//# sourceMappingURL=factory-B7cG7pDB.mjs.map
+//# sourceMappingURL=factory-CdcF5208.mjs.map