@zincapp/znvault-cli 2.16.5 → 2.17.0

package/dist/lib/client/policies.js

@@ -0,0 +1,131 @@
+// Path: src/lib/client/policies.ts
+/**
+ * ABAC Policy management client
+ */
+import { HttpClient } from './http.js';
+export class PoliciesClient extends HttpClient {
+    async list(options) {
+        return this.request({
+            method: 'GET',
+            path: '/v1/policies',
+            query: {
+                tenantId: options?.tenantId,
+                enabled: options?.enabled,
+                effect: options?.effect,
+                search: options?.search,
+                page: options?.page,
+                pageSize: options?.pageSize ?? 100,
+            },
+        });
+    }
+    async getById(id) {
+        return this.request({
+            method: 'GET',
+            path: `/v1/policies/${id}`,
+        });
+    }
+    async create(data) {
+        return this.request({
+            method: 'POST',
+            path: '/v1/policies',
+            body: data,
+        });
+    }
+    async update(id, data) {
+        return this.request({
+            method: 'PATCH',
+            path: `/v1/policies/${id}`,
+            body: data,
+        });
+    }
+    async deleteById(id) {
+        await this.request({
+            method: 'DELETE',
+            path: `/v1/policies/${id}`,
+        });
+    }
+    async toggle(id, enabled) {
+        return this.request({
+            method: 'POST',
+            path: `/v1/policies/${id}/toggle`,
+            body: { enabled },
+        });
+    }
+    async validate(policy) {
+        return this.request({
+            method: 'POST',
+            path: '/v1/policies/validate',
+            body: policy,
+        });
+    }
+    async getAttachments(policyId) {
+        return this.request({
+            method: 'GET',
+            path: `/v1/policies/${policyId}/attachments`,
+        });
+    }
+    async attachToUser(policyId, userId) {
+        return this.request({
+            method: 'POST',
+            path: `/v1/policies/${policyId}/attach/user`,
+            body: { userId },
+        });
+    }
+    async attachToRole(policyId, roleId) {
+        return this.request({
+            method: 'POST',
+            path: `/v1/policies/${policyId}/attach/role`,
+            body: { roleId },
+        });
+    }
+    async detachFromUser(policyId, userId) {
+        return this.request({
+            method: 'DELETE',
+            path: `/v1/policies/${policyId}/attach/user/${userId}`,
+        });
+    }
+    async detachFromRole(policyId, roleId) {
+        return this.request({
+            method: 'DELETE',
+            path: `/v1/policies/${policyId}/attach/role/${roleId}`,
+        });
+    }
+    async getUserPolicies(userId) {
+        const response = await this.request({
+            method: 'GET',
+            path: `/v1/users/${userId}/policies`,
+        });
+        return response.policies;
+    }
+    async getRolePolicies(roleId) {
+        const response = await this.request({
+            method: 'GET',
+            path: `/v1/roles/${roleId}/policies`,
+        });
+        return response.policies;
+    }
+    async test(request) {
+        return this.request({
+            method: 'POST',
+            path: '/v1/policies/test',
+            body: request,
+        });
+    }
+}
+export class PermissionsClient extends HttpClient {
+    async list(category) {
+        return this.request({
+            method: 'GET',
+            path: '/v1/permissions',
+            query: category ? { category } : undefined,
+        });
+    }
+    async validate(permissions) {
+        return this.request({
+            method: 'POST',
+            path: '/v1/permissions/validate',
+            body: { permissions },
+        });
+    }
+}
+//# sourceMappingURL=policies.js.map

package/dist/lib/client/policies.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"policies.js","sourceRoot":"","sources":["../../../src/lib/client/policies.ts"],"names":[],"mappings":"AAAA,mCAAmC;AAEnC;;GAEG;AAEH,OAAO,EAAE,UAAU,EAAE,MAAM,WAAW,CAAC;AAiBvC,MAAM,OAAO,cAAe,SAAQ,UAAU;IAC5C,KAAK,CAAC,IAAI,CAAC,OAOV;QACC,OAAO,IAAI,CAAC,OAAO,CAAqB;YACtC,MAAM,EAAE,KAAK;YACb,IAAI,EAAE,cAAc;YACpB,KAAK,EAAE;gBACL,QAAQ,EAAE,OAAO,EAAE,QAAQ;gBAC3B,OAAO,EAAE,OAAO,EAAE,OAAO;gBACzB,MAAM,EAAE,OAAO,EAAE,MAAM;gBACvB,MAAM,EAAE,OAAO,EAAE,MAAM;gBACvB,IAAI,EAAE,OAAO,EAAE,IAAI;gBACnB,QAAQ,EAAE,OAAO,EAAE,QAAQ,IAAI,GAAG;aACnC;SACF,CAAC,CAAC;IACL,CAAC;IAED,KAAK,CAAC,OAAO,CAAC,EAAU;QACtB,OAAO,IAAI,CAAC,OAAO,CAAS;YAC1B,MAAM,EAAE,KAAK;YACb,IAAI,EAAE,gBAAgB,EAAE,EAAE;SAC3B,CAAC,CAAC;IACL,CAAC;IAED,KAAK,CAAC,MAAM,CAAC,IAAuB;QAClC,OAAO,IAAI,CAAC,OAAO,CAAS;YAC1B,MAAM,EAAE,MAAM;YACd,IAAI,EAAE,cAAc;YACpB,IAAI,EAAE,IAAI;SACX,CAAC,CAAC;IACL,CAAC;IAED,KAAK,CAAC,MAAM,CAAC,EAAU,EAAE,IAAuB;QAC9C,OAAO,IAAI,CAAC,OAAO,CAAS;YAC1B,MAAM,EAAE,OAAO;YACf,IAAI,EAAE,gBAAgB,EAAE,EAAE;YAC1B,IAAI,EAAE,IAAI;SACX,CAAC,CAAC;IACL,CAAC;IAED,KAAK,CAAC,UAAU,CAAC,EAAU;QACzB,MAAM,IAAI,CAAC,OAAO,CAAU;YAC1B,MAAM,EAAE,QAAQ;YAChB,IAAI,EAAE,gBAAgB,EAAE,EAAE;SAC3B,CAAC,CAAC;IACL,CAAC;IAED,KAAK,CAAC,MAAM,CAAC,EAAU,EAAE,OAAgB;QACvC,OAAO,IAAI,CAAC,OAAO,CAAS;YAC1B,MAAM,EAAE,MAAM;YACd,IAAI,EAAE,gBAAgB,EAAE,SAAS;YACjC,IAAI,EAAE,EAAE,OAAO,EAAE;SAClB,CAAC,CAAC;IACL,CAAC;IAED,KAAK,CAAC,QAAQ,CAAC,MAAyB;QACtC,OAAO,IAAI,CAAC,OAAO,CAAyB;YAC1C,MAAM,EAAE,MAAM;YACd,IAAI,EAAE,uBAAuB;YAC7B,IAAI,EAAE,MAAM;SACb,CAAC,CAAC;IACL,CAAC;IAED,KAAK,CAAC,cAAc,CAAC,QAAgB;QACnC,OAAO,IAAI,CAAC,OAAO,CAA4B;YAC7C,MAAM,EAAE,KAAK;YACb,IAAI,EAAE,gBAAgB,QAAQ,cAAc;SAC7C,CAAC,CAAC;IACL,CAAC;IAED,KAAK,CAAC,YAAY,CAAC,QAAgB,EAAE,MAAc;QACjD,OAAO,IAAI,CAAC,OAAO,CAAkB;YACnC,MAAM,EAAE,MAAM;YACd,IAAI,EAAE,gBAAgB,QAAQ,cAAc;YAC5C,IAAI,EAAE,EAAE,MAAM,EAAE;SACjB,CAAC,CAAC;IACL,CAAC;IAED,KAAK,CAAC,YAAY,CAAC,QAAgB,EAAE,MAAc;QACjD,OAAO,IAAI,CAAC,OAAO,CAAkB;YACnC,MAAM,EAAE,MAAM;YACd,IAAI,EAAE,gBAAgB,QAAQ,cAAc;YAC5C,IAAI,EAAE,EAAE,MAAM,EAAE;SACjB,CAAC,CAAC;IACL,CAAC;IAED,KAAK,CAAC,cAAc,CAAC,QAAgB,EAAE,MAAc;QACnD,OAAO,IAAI,CAAC,OAAO,CAAkB;YACnC,MAAM,EAAE,QAAQ;YAChB,IAAI,EAAE,gBAAgB,QAAQ,gBAAgB,MAAM,EAAE;SACvD,CAAC,CAAC;IACL,CAAC;IAED,KAAK,CAAC,cAAc,CAAC,QAAgB,EAAE,MAAc;QACnD,OAAO,IAAI,CAAC,OAAO,CAAkB;YACnC,MAAM,EAAE,QAAQ;YAChB,IAAI,EAAE,gBAAgB,QAAQ,gBAAgB,MAAM,EAAE;SACvD,CAAC,CAAC;IACL,CAAC;IAED,KAAK,CAAC,eAAe,CAAC,MAAc;QAClC,MAAM,QAAQ,GAAG,MAAM,IAAI,CAAC,OAAO,CAAyB;YAC1D,MAAM,EAAE,KAAK;YACb,IAAI,EAAE,aAAa,MAAM,WAAW;SACrC,CAAC,CAAC;QACH,OAAO,QAAQ,CAAC,QAAQ,CAAC;IAC3B,CAAC;IAED,KAAK,CAAC,eAAe,CAAC,MAAc;QAClC,MAAM,QAAQ,GAAG,MAAM,IAAI,CAAC,OAAO,CAAyB;YAC1D,MAAM,EAAE,KAAK;YACb,IAAI,EAAE,aAAa,MAAM,WAAW;SACrC,CAAC,CAAC;QACH,OAAO,QAAQ,CAAC,QAAQ,CAAC;IAC3B,CAAC;IAED,KAAK,CAAC,IAAI,CAAC,OAA0B;QACnC,OAAO,IAAI,CAAC,OAAO,CAAmB;YACpC,MAAM,EAAE,MAAM;YACd,IAAI,EAAE,mBAAmB;YACzB,IAAI,EAAE,OAAO;SACd,CAAC,CAAC;IACL,CAAC;CACF;AAED,MAAM,OAAO,iBAAkB,SAAQ,UAAU;IAC/C,KAAK,CAAC,IAAI,CAAC,QAAiB;QAC1B,OAAO,IAAI,CAAC,OAAO,CAAsB;YACvC,MAAM,EAAE,KAAK;YACb,IAAI,EAAE,iBAAiB;YACvB,KAAK,EAAE,QAAQ,CAAC,CAAC,CAAC,EAAE,QAAQ,EAAE,CAAC,CAAC,CAAC,SAAS;SAC3C,CAAC,CAAC;IACL,CAAC;IAED,KAAK,CAAC,QAAQ,CAAC,WAAqB;QAClC,OAAO,IAAI,CAAC,OAAO,CAA8B;YAC/C,MAAM,EAAE,MAAM;YACd,IAAI,EAAE,0BAA0B;YAChC,IAAI,EAAE,EAAE,WAAW,EAAE;SACtB,CAAC,CAAC;IACL,CAAC;CACF"}

package/dist/lib/client/tenants.d.ts

@@ -0,0 +1,29 @@
+/**
+ * Tenant management client
+ */
+import { HttpClient } from './http.js';
+import type { Tenant, TenantWithUsage, TenantUsage } from '../../types/index.js';
+export declare class TenantsClient extends HttpClient {
+    list(options?: {
+        status?: string;
+        withUsage?: boolean;
+    }): Promise<TenantWithUsage[]>;
+    create(data: {
+        id: string;
+        name: string;
+        maxSecrets?: number;
+        maxKmsKeys?: number;
+        contactEmail?: string;
+    }): Promise<Tenant>;
+    getById(id: string, withUsage?: boolean): Promise<TenantWithUsage>;
+    update(id: string, data: {
+        name?: string;
+        maxSecrets?: number;
+        maxKmsKeys?: number;
+        contactEmail?: string;
+        status?: 'active' | 'suspended';
+    }): Promise<Tenant>;
+    deleteById(id: string): Promise<void>;
+    getUsage(id: string): Promise<TenantUsage>;
+}
+//# sourceMappingURL=tenants.d.ts.map

package/dist/lib/client/tenants.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"tenants.d.ts","sourceRoot":"","sources":["../../../src/lib/client/tenants.ts"],"names":[],"mappings":"AAEA;;GAEG;AAEH,OAAO,EAAE,UAAU,EAAE,MAAM,WAAW,CAAC;AACvC,OAAO,KAAK,EACV,MAAM,EACN,eAAe,EACf,WAAW,EAEZ,MAAM,sBAAsB,CAAC;AAE9B,qBAAa,aAAc,SAAQ,UAAU;IACrC,IAAI,CAAC,OAAO,CAAC,EAAE;QACnB,MAAM,CAAC,EAAE,MAAM,CAAC;QAChB,SAAS,CAAC,EAAE,OAAO,CAAC;KACrB,GAAG,OAAO,CAAC,eAAe,EAAE,CAAC;IAaxB,MAAM,CAAC,IAAI,EAAE;QACjB,EAAE,EAAE,MAAM,CAAC;QACX,IAAI,EAAE,MAAM,CAAC;QACb,UAAU,CAAC,EAAE,MAAM,CAAC;QACpB,UAAU,CAAC,EAAE,MAAM,CAAC;QACpB,YAAY,CAAC,EAAE,MAAM,CAAC;KACvB,GAAG,OAAO,CAAC,MAAM,CAAC;IASb,OAAO,CAAC,EAAE,EAAE,MAAM,EAAE,SAAS,CAAC,EAAE,OAAO,GAAG,OAAO,CAAC,eAAe,CAAC;IASlE,MAAM,CAAC,EAAE,EAAE,MAAM,EAAE,IAAI,EAAE;QAC7B,IAAI,CAAC,EAAE,MAAM,CAAC;QACd,UAAU,CAAC,EAAE,MAAM,CAAC;QACpB,UAAU,CAAC,EAAE,MAAM,CAAC;QACpB,YAAY,CAAC,EAAE,MAAM,CAAC;QACtB,MAAM,CAAC,EAAE,QAAQ,GAAG,WAAW,CAAC;KACjC,GAAG,OAAO,CAAC,MAAM,CAAC;IASb,UAAU,CAAC,EAAE,EAAE,MAAM,GAAG,OAAO,CAAC,IAAI,CAAC;IAOrC,QAAQ,CAAC,EAAE,EAAE,MAAM,GAAG,OAAO,CAAC,WAAW,CAAC;CAMjD"}

package/dist/lib/client/tenants.js

@@ -0,0 +1,56 @@
+// Path: src/lib/client/tenants.ts
+/**
+ * Tenant management client
+ */
+import { HttpClient } from './http.js';
+export class TenantsClient extends HttpClient {
+    async list(options) {
+        const response = await this.request({
+            method: 'GET',
+            path: '/v1/tenants',
+            query: {
+                status: options?.status,
+                withUsage: options?.withUsage,
+                pageSize: 1000,
+            },
+        });
+        return response.items;
+    }
+    async create(data) {
+        const response = await this.request({
+            method: 'POST',
+            path: '/v1/tenants',
+            body: data,
+        });
+        return response.data;
+    }
+    async getById(id, withUsage) {
+        const response = await this.request({
+            method: 'GET',
+            path: `/v1/tenants/${id}`,
+            query: { withUsage },
+        });
+        return response.data;
+    }
+    async update(id, data) {
+        const response = await this.request({
+            method: 'PATCH',
+            path: `/v1/tenants/${id}`,
+            body: data,
+        });
+        return response.data;
+    }
+    async deleteById(id) {
+        await this.request({
+            method: 'DELETE',
+            path: `/v1/tenants/${id}`,
+        });
+    }
+    async getUsage(id) {
+        return this.request({
+            method: 'GET',
+            path: `/v1/tenants/${id}/usage`,
+        });
+    }
+}
+//# sourceMappingURL=tenants.js.map

package/dist/lib/client/tenants.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"tenants.js","sourceRoot":"","sources":["../../../src/lib/client/tenants.ts"],"names":[],"mappings":"AAAA,kCAAkC;AAElC;;GAEG;AAEH,OAAO,EAAE,UAAU,EAAE,MAAM,WAAW,CAAC;AAQvC,MAAM,OAAO,aAAc,SAAQ,UAAU;IAC3C,KAAK,CAAC,IAAI,CAAC,OAGV;QACC,MAAM,QAAQ,GAAG,MAAM,IAAI,CAAC,OAAO,CAAqC;YACtE,MAAM,EAAE,KAAK;YACb,IAAI,EAAE,aAAa;YACnB,KAAK,EAAE;gBACL,MAAM,EAAE,OAAO,EAAE,MAAM;gBACvB,SAAS,EAAE,OAAO,EAAE,SAAS;gBAC7B,QAAQ,EAAE,IAAI;aACf;SACF,CAAC,CAAC;QACH,OAAO,QAAQ,CAAC,KAAK,CAAC;IACxB,CAAC;IAED,KAAK,CAAC,MAAM,CAAC,IAMZ;QACC,MAAM,QAAQ,GAAG,MAAM,IAAI,CAAC,OAAO,CAAqC;YACtE,MAAM,EAAE,MAAM;YACd,IAAI,EAAE,aAAa;YACnB,IAAI,EAAE,IAAI;SACX,CAAC,CAAC;QACH,OAAO,QAAQ,CAAC,IAAI,CAAC;IACvB,CAAC;IAED,KAAK,CAAC,OAAO,CAAC,EAAU,EAAE,SAAmB;QAC3C,MAAM,QAAQ,GAAG,MAAM,IAAI,CAAC,OAAO,CAA8C;YAC/E,MAAM,EAAE,KAAK;YACb,IAAI,EAAE,eAAe,EAAE,EAAE;YACzB,KAAK,EAAE,EAAE,SAAS,EAAE;SACrB,CAAC,CAAC;QACH,OAAO,QAAQ,CAAC,IAAI,CAAC;IACvB,CAAC;IAED,KAAK,CAAC,MAAM,CAAC,EAAU,EAAE,IAMxB;QACC,MAAM,QAAQ,GAAG,MAAM,IAAI,CAAC,OAAO,CAAqC;YACtE,MAAM,EAAE,OAAO;YACf,IAAI,EAAE,eAAe,EAAE,EAAE;YACzB,IAAI,EAAE,IAAI;SACX,CAAC,CAAC;QACH,OAAO,QAAQ,CAAC,IAAI,CAAC;IACvB,CAAC;IAED,KAAK,CAAC,UAAU,CAAC,EAAU;QACzB,MAAM,IAAI,CAAC,OAAO,CAAU;YAC1B,MAAM,EAAE,QAAQ;YAChB,IAAI,EAAE,eAAe,EAAE,EAAE;SAC1B,CAAC,CAAC;IACL,CAAC;IAED,KAAK,CAAC,QAAQ,CAAC,EAAU;QACvB,OAAO,IAAI,CAAC,OAAO,CAAc;YAC/B,MAAM,EAAE,KAAK;YACb,IAAI,EAAE,eAAe,EAAE,QAAQ;SAChC,CAAC,CAAC;IACL,CAAC;CACF"}

package/dist/lib/client/types.d.ts

@@ -0,0 +1,45 @@
+/**
+ * Internal types for HTTP client module
+ */
+export interface RequestOptions {
+    method: 'GET' | 'POST' | 'PUT' | 'PATCH' | 'DELETE';
+    path: string;
+    body?: unknown;
+    query?: Record<string, string | number | boolean | undefined>;
+    skipAuth?: boolean;
+}
+export interface MessageResponse {
+    message: string;
+}
+export interface PermissionItem {
+    permission: string;
+    description: string;
+    category: string;
+}
+export interface PermissionsResponse {
+    permissions: PermissionItem[];
+    categories: string[];
+    total: number;
+}
+export interface ValidatePermissionsResponse {
+    valid: string[];
+    invalid: string[];
+    allValid: boolean;
+}
+export interface ValidatePolicyResponse {
+    valid: boolean;
+    errors?: string[];
+}
+export interface PolicyAttachmentsResponse {
+    users: import('../../types/index.js').PolicyAttachment[];
+    roles: import('../../types/index.js').PolicyAttachment[];
+}
+/**
+ * HTTP client configuration
+ */
+export interface ClientConfig {
+    baseUrl: string;
+    insecure: boolean;
+    timeout: number;
+}
+//# sourceMappingURL=types.d.ts.map

package/dist/lib/client/types.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"types.d.ts","sourceRoot":"","sources":["../../../src/lib/client/types.ts"],"names":[],"mappings":"AAEA;;GAEG;AAEH,MAAM,WAAW,cAAc;IAC7B,MAAM,EAAE,KAAK,GAAG,MAAM,GAAG,KAAK,GAAG,OAAO,GAAG,QAAQ,CAAC;IACpD,IAAI,EAAE,MAAM,CAAC;IACb,IAAI,CAAC,EAAE,OAAO,CAAC;IACf,KAAK,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,GAAG,MAAM,GAAG,OAAO,GAAG,SAAS,CAAC,CAAC;IAC9D,QAAQ,CAAC,EAAE,OAAO,CAAC;CACpB;AAED,MAAM,WAAW,eAAe;IAC9B,OAAO,EAAE,MAAM,CAAC;CACjB;AAED,MAAM,WAAW,cAAc;IAC7B,UAAU,EAAE,MAAM,CAAC;IACnB,WAAW,EAAE,MAAM,CAAC;IACpB,QAAQ,EAAE,MAAM,CAAC;CAClB;AAED,MAAM,WAAW,mBAAmB;IAClC,WAAW,EAAE,cAAc,EAAE,CAAC;IAC9B,UAAU,EAAE,MAAM,EAAE,CAAC;IACrB,KAAK,EAAE,MAAM,CAAC;CACf;AAED,MAAM,WAAW,2BAA2B;IAC1C,KAAK,EAAE,MAAM,EAAE,CAAC;IAChB,OAAO,EAAE,MAAM,EAAE,CAAC;IAClB,QAAQ,EAAE,OAAO,CAAC;CACnB;AAED,MAAM,WAAW,sBAAsB;IACrC,KAAK,EAAE,OAAO,CAAC;IACf,MAAM,CAAC,EAAE,MAAM,EAAE,CAAC;CACnB;AAED,MAAM,WAAW,yBAAyB;IACxC,KAAK,EAAE,OAAO,sBAAsB,EAAE,gBAAgB,EAAE,CAAC;IACzD,KAAK,EAAE,OAAO,sBAAsB,EAAE,gBAAgB,EAAE,CAAC;CAC1D;AAED;;GAEG;AACH,MAAM,WAAW,YAAY;IAC3B,OAAO,EAAE,MAAM,CAAC;IAChB,QAAQ,EAAE,OAAO,CAAC;IAClB,OAAO,EAAE,MAAM,CAAC;CACjB"}

package/dist/lib/client/types.js

@@ -0,0 +1,3 @@
+// Path: src/lib/client/types.ts
+export {};
+//# sourceMappingURL=types.js.map

package/dist/lib/client/types.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"types.js","sourceRoot":"","sources":["../../../src/lib/client/types.ts"],"names":[],"mappings":"AAAA,gCAAgC"}

package/dist/lib/client/users.d.ts

@@ -0,0 +1,44 @@
+/**
+ * User and superadmin management client
+ */
+import { HttpClient } from './http.js';
+import type { User, Superadmin } from '../../types/index.js';
+import type { MessageResponse } from './types.js';
+export declare class UsersClient extends HttpClient {
+    list(options?: {
+        tenantId?: string;
+        role?: string;
+        status?: string;
+    }): Promise<User[]>;
+    create(data: {
+        username: string;
+        password: string;
+        email?: string;
+        tenantId?: string;
+        role?: 'user' | 'admin';
+    }): Promise<User>;
+    getById(id: string): Promise<User>;
+    update(id: string, data: {
+        email?: string;
+        password?: string;
+        role?: 'user' | 'admin';
+        status?: 'active' | 'disabled';
+    }): Promise<User>;
+    deleteById(id: string): Promise<void>;
+    unlock(id: string): Promise<MessageResponse>;
+    resetPassword(id: string, newPassword: string): Promise<MessageResponse>;
+    disableTotp(id: string): Promise<MessageResponse>;
+}
+export declare class SuperadminsClient extends HttpClient {
+    list(): Promise<Superadmin[]>;
+    create(data: {
+        username: string;
+        password: string;
+        email?: string;
+    }): Promise<Superadmin>;
+    resetPassword(username: string, password: string): Promise<MessageResponse>;
+    unlock(username: string): Promise<MessageResponse>;
+    disable(username: string): Promise<MessageResponse>;
+    enable(username: string): Promise<MessageResponse>;
+}
+//# sourceMappingURL=users.d.ts.map

package/dist/lib/client/users.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"users.d.ts","sourceRoot":"","sources":["../../../src/lib/client/users.ts"],"names":[],"mappings":"AAEA;;GAEG;AAEH,OAAO,EAAE,UAAU,EAAE,MAAM,WAAW,CAAC;AACvC,OAAO,KAAK,EAAE,IAAI,EAAE,UAAU,EAAqB,MAAM,sBAAsB,CAAC;AAChF,OAAO,KAAK,EAAE,eAAe,EAAE,MAAM,YAAY,CAAC;AAElD,qBAAa,WAAY,SAAQ,UAAU;IACnC,IAAI,CAAC,OAAO,CAAC,EAAE;QACnB,QAAQ,CAAC,EAAE,MAAM,CAAC;QAClB,IAAI,CAAC,EAAE,MAAM,CAAC;QACd,MAAM,CAAC,EAAE,MAAM,CAAC;KACjB,GAAG,OAAO,CAAC,IAAI,EAAE,CAAC;IAcb,MAAM,CAAC,IAAI,EAAE;QACjB,QAAQ,EAAE,MAAM,CAAC;QACjB,QAAQ,EAAE,MAAM,CAAC;QACjB,KAAK,CAAC,EAAE,MAAM,CAAC;QACf,QAAQ,CAAC,EAAE,MAAM,CAAC;QAClB,IAAI,CAAC,EAAE,MAAM,GAAG,OAAO,CAAC;KACzB,GAAG,OAAO,CAAC,IAAI,CAAC;IAQX,OAAO,CAAC,EAAE,EAAE,MAAM,GAAG,OAAO,CAAC,IAAI,CAAC;IAOlC,MAAM,CAAC,EAAE,EAAE,MAAM,EAAE,IAAI,EAAE;QAC7B,KAAK,CAAC,EAAE,MAAM,CAAC;QACf,QAAQ,CAAC,EAAE,MAAM,CAAC;QAClB,IAAI,CAAC,EAAE,MAAM,GAAG,OAAO,CAAC;QACxB,MAAM,CAAC,EAAE,QAAQ,GAAG,UAAU,CAAC;KAChC,GAAG,OAAO,CAAC,IAAI,CAAC;IAQX,UAAU,CAAC,EAAE,EAAE,MAAM,GAAG,OAAO,CAAC,IAAI,CAAC;IAOrC,MAAM,CAAC,EAAE,EAAE,MAAM,GAAG,OAAO,CAAC,eAAe,CAAC;IAQ5C,aAAa,CAAC,EAAE,EAAE,MAAM,EAAE,WAAW,EAAE,MAAM,GAAG,OAAO,CAAC,eAAe,CAAC;IAQxE,WAAW,CAAC,EAAE,EAAE,MAAM,GAAG,OAAO,CAAC,eAAe,CAAC;CAMxD;AAED,qBAAa,iBAAkB,SAAQ,UAAU;IACzC,IAAI,IAAI,OAAO,CAAC,UAAU,EAAE,CAAC;IAgB7B,MAAM,CAAC,IAAI,EAAE;QACjB,QAAQ,EAAE,MAAM,CAAC;QACjB,QAAQ,EAAE,MAAM,CAAC;QACjB,KAAK,CAAC,EAAE,MAAM,CAAC;KAChB,GAAG,OAAO,CAAC,UAAU,CAAC;IAQjB,aAAa,CAAC,QAAQ,EAAE,MAAM,EAAE,QAAQ,EAAE,MAAM,GAAG,OAAO,CAAC,eAAe,CAAC;IAQ3E,MAAM,CAAC,QAAQ,EAAE,MAAM,GAAG,OAAO,CAAC,eAAe,CAAC;IAOlD,OAAO,CAAC,QAAQ,EAAE,MAAM,GAAG,OAAO,CAAC,eAAe,CAAC;IAOnD,MAAM,CAAC,QAAQ,EAAE,MAAM,GAAG,OAAO,CAAC,eAAe,CAAC;CAMzD"}

package/dist/lib/client/users.js

@@ -0,0 +1,116 @@
+// Path: src/lib/client/users.ts
+/**
+ * User and superadmin management client
+ */
+import { HttpClient } from './http.js';
+export class UsersClient extends HttpClient {
+    async list(options) {
+        const response = await this.request({
+            method: 'GET',
+            path: '/v1/users',
+            query: {
+                tenantId: options?.tenantId,
+                role: options?.role,
+                status: options?.status,
+                pageSize: 1000,
+            },
+        });
+        return response.items;
+    }
+    async create(data) {
+        return this.request({
+            method: 'POST',
+            path: '/v1/users',
+            body: data,
+        });
+    }
+    async getById(id) {
+        return this.request({
+            method: 'GET',
+            path: `/v1/users/${id}`,
+        });
+    }
+    async update(id, data) {
+        return this.request({
+            method: 'PUT',
+            path: `/v1/users/${id}`,
+            body: data,
+        });
+    }
+    async deleteById(id) {
+        await this.request({
+            method: 'DELETE',
+            path: `/v1/users/${id}`,
+        });
+    }
+    async unlock(id) {
+        return this.request({
+            method: 'PUT',
+            path: `/v1/users/${id}`,
+            body: { status: 'active', failedAttempts: 0, lockedUntil: null },
+        });
+    }
+    async resetPassword(id, newPassword) {
+        return this.request({
+            method: 'POST',
+            path: `/v1/users/${id}/reset-password`,
+            body: { newPassword },
+        });
+    }
+    async disableTotp(id) {
+        return this.request({
+            method: 'POST',
+            path: `/v1/users/${id}/totp/disable`,
+        });
+    }
+}
+export class SuperadminsClient extends HttpClient {
+    async list() {
+        const usersClient = new UsersClient();
+        const users = await usersClient.list({ role: 'superadmin' });
+        return users.map(u => ({
+            id: u.id,
+            username: u.username,
+            email: u.email,
+            status: u.status,
+            totpEnabled: u.totpEnabled,
+            failedAttempts: u.failedAttempts,
+            lockedUntil: u.lockedUntil,
+            lastLogin: u.lastLogin,
+            createdAt: u.createdAt,
+        }));
+    }
+    async create(data) {
+        return this.request({
+            method: 'POST',
+            path: '/v1/superadmins',
+            body: data,
+        });
+    }
+    async resetPassword(username, password) {
+        return this.request({
+            method: 'POST',
+            path: `/v1/superadmins/${username}/password`,
+            body: { password },
+        });
+    }
+    async unlock(username) {
+        return this.request({
+            method: 'POST',
+            path: `/v1/superadmins/${username}/unlock`,
+        });
+    }
+    async disable(username) {
+        return this.request({
+            method: 'POST',
+            path: `/v1/superadmins/${username}/disable`,
+        });
+    }
+    async enable(username) {
+        return this.request({
+            method: 'POST',
+            path: `/v1/superadmins/${username}/enable`,
+        });
+    }
+}
+//# sourceMappingURL=users.js.map

package/dist/lib/client/users.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"users.js","sourceRoot":"","sources":["../../../src/lib/client/users.ts"],"names":[],"mappings":"AAAA,gCAAgC;AAEhC;;GAEG;AAEH,OAAO,EAAE,UAAU,EAAE,MAAM,WAAW,CAAC;AAIvC,MAAM,OAAO,WAAY,SAAQ,UAAU;IACzC,KAAK,CAAC,IAAI,CAAC,OAIV;QACC,MAAM,QAAQ,GAAG,MAAM,IAAI,CAAC,OAAO,CAA0B;YAC3D,MAAM,EAAE,KAAK;YACb,IAAI,EAAE,WAAW;YACjB,KAAK,EAAE;gBACL,QAAQ,EAAE,OAAO,EAAE,QAAQ;gBAC3B,IAAI,EAAE,OAAO,EAAE,IAAI;gBACnB,MAAM,EAAE,OAAO,EAAE,MAAM;gBACvB,QAAQ,EAAE,IAAI;aACf;SACF,CAAC,CAAC;QACH,OAAO,QAAQ,CAAC,KAAK,CAAC;IACxB,CAAC;IAED,KAAK,CAAC,MAAM,CAAC,IAMZ;QACC,OAAO,IAAI,CAAC,OAAO,CAAO;YACxB,MAAM,EAAE,MAAM;YACd,IAAI,EAAE,WAAW;YACjB,IAAI,EAAE,IAAI;SACX,CAAC,CAAC;IACL,CAAC;IAED,KAAK,CAAC,OAAO,CAAC,EAAU;QACtB,OAAO,IAAI,CAAC,OAAO,CAAO;YACxB,MAAM,EAAE,KAAK;YACb,IAAI,EAAE,aAAa,EAAE,EAAE;SACxB,CAAC,CAAC;IACL,CAAC;IAED,KAAK,CAAC,MAAM,CAAC,EAAU,EAAE,IAKxB;QACC,OAAO,IAAI,CAAC,OAAO,CAAO;YACxB,MAAM,EAAE,KAAK;YACb,IAAI,EAAE,aAAa,EAAE,EAAE;YACvB,IAAI,EAAE,IAAI;SACX,CAAC,CAAC;IACL,CAAC;IAED,KAAK,CAAC,UAAU,CAAC,EAAU;QACzB,MAAM,IAAI,CAAC,OAAO,CAAU;YAC1B,MAAM,EAAE,QAAQ;YAChB,IAAI,EAAE,aAAa,EAAE,EAAE;SACxB,CAAC,CAAC;IACL,CAAC;IAED,KAAK,CAAC,MAAM,CAAC,EAAU;QACrB,OAAO,IAAI,CAAC,OAAO,CAAkB;YACnC,MAAM,EAAE,KAAK;YACb,IAAI,EAAE,aAAa,EAAE,EAAE;YACvB,IAAI,EAAE,EAAE,MAAM,EAAE,QAAQ,EAAE,cAAc,EAAE,CAAC,EAAE,WAAW,EAAE,IAAI,EAAE;SACjE,CAAC,CAAC;IACL,CAAC;IAED,KAAK,CAAC,aAAa,CAAC,EAAU,EAAE,WAAmB;QACjD,OAAO,IAAI,CAAC,OAAO,CAAkB;YACnC,MAAM,EAAE,MAAM;YACd,IAAI,EAAE,aAAa,EAAE,iBAAiB;YACtC,IAAI,EAAE,EAAE,WAAW,EAAE;SACtB,CAAC,CAAC;IACL,CAAC;IAED,KAAK,CAAC,WAAW,CAAC,EAAU;QAC1B,OAAO,IAAI,CAAC,OAAO,CAAkB;YACnC,MAAM,EAAE,MAAM;YACd,IAAI,EAAE,aAAa,EAAE,eAAe;SACrC,CAAC,CAAC;IACL,CAAC;CACF;AAED,MAAM,OAAO,iBAAkB,SAAQ,UAAU;IAC/C,KAAK,CAAC,IAAI;QACR,MAAM,WAAW,GAAG,IAAI,WAAW,EAAE,CAAC;QACtC,MAAM,KAAK,GAAG,MAAM,WAAW,CAAC,IAAI,CAAC,EAAE,IAAI,EAAE,YAAY,EAAE,CAAC,CAAC;QAC7D,OAAO,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC;YACrB,EAAE,EAAE,CAAC,CAAC,EAAE;YACR,QAAQ,EAAE,CAAC,CAAC,QAAQ;YACpB,KAAK,EAAE,CAAC,CAAC,KAAK;YACd,MAAM,EAAE,CAAC,CAAC,MAAM;YAChB,WAAW,EAAE,CAAC,CAAC,WAAW;YAC1B,cAAc,EAAE,CAAC,CAAC,cAAc;YAChC,WAAW,EAAE,CAAC,CAAC,WAAW;YAC1B,SAAS,EAAE,CAAC,CAAC,SAAS;YACtB,SAAS,EAAE,CAAC,CAAC,SAAS;SACvB,CAAC,CAAC,CAAC;IACN,CAAC;IAED,KAAK,CAAC,MAAM,CAAC,IAIZ;QACC,OAAO,IAAI,CAAC,OAAO,CAAa;YAC9B,MAAM,EAAE,MAAM;YACd,IAAI,EAAE,iBAAiB;YACvB,IAAI,EAAE,IAAI;SACX,CAAC,CAAC;IACL,CAAC;IAED,KAAK,CAAC,aAAa,CAAC,QAAgB,EAAE,QAAgB;QACpD,OAAO,IAAI,CAAC,OAAO,CAAkB;YACnC,MAAM,EAAE,MAAM;YACd,IAAI,EAAE,mBAAmB,QAAQ,WAAW;YAC5C,IAAI,EAAE,EAAE,QAAQ,EAAE;SACnB,CAAC,CAAC;IACL,CAAC;IAED,KAAK,CAAC,MAAM,CAAC,QAAgB;QAC3B,OAAO,IAAI,CAAC,OAAO,CAAkB;YACnC,MAAM,EAAE,MAAM;YACd,IAAI,EAAE,mBAAmB,QAAQ,SAAS;SAC3C,CAAC,CAAC;IACL,CAAC;IAED,KAAK,CAAC,OAAO,CAAC,QAAgB;QAC5B,OAAO,IAAI,CAAC,OAAO,CAAkB;YACnC,MAAM,EAAE,MAAM;YACd,IAAI,EAAE,mBAAmB,QAAQ,UAAU;SAC5C,CAAC,CAAC;IACL,CAAC;IAED,KAAK,CAAC,MAAM,CAAC,QAAgB;QAC3B,OAAO,IAAI,CAAC,OAAO,CAAkB;YACnC,MAAM,EAAE,MAAM;YACd,IAAI,EAAE,mBAAmB,QAAQ,SAAS;SAC3C,CAAC,CAAC;IACL,CAAC;CACF"}