@zyphr-dev/node-sdk 0.1.10 → 0.1.14

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@zyphr-dev/node-sdk",
-  "version": "0.1.10",
+  "version": "0.1.14",
   "description": "Official Zyphr SDK for Node.js, React, and React Native",
   "type": "module",
   "main": "./dist/index.cjs",

package/src/client.ts

@@ -50,6 +50,10 @@ export interface ZyphrOptions {
   apiKey: string;
   /** Override the base API URL (defaults to https://api.zyphr.dev/v1) */
   baseUrl?: string;
+  /** Application public key (za_pub_*) for Auth-as-a-Service endpoints */
+  applicationKey?: string;
+  /** Application secret key (za_sec_*) for Auth-as-a-Service endpoints */
+  applicationSecret?: string;
 }
 
 /**
@@ -102,7 +106,12 @@ export class Zyphr {
   constructor(options: ZyphrOptions) {
     const config = new Configuration({
       basePath: options.baseUrl,
-      apiKey: () => options.apiKey,
+      apiKey: (name: string) => {
+        // Route application credential headers to the right keys
+        if (name === 'X-Application-Key' && options.applicationKey) return options.applicationKey;
+        if (name === 'X-Application-Secret' && options.applicationSecret) return options.applicationSecret;
+        return options.apiKey;
+      },
       middleware: [errorMiddleware],
     });
 
@@ -139,4 +148,25 @@ export class Zyphr {
       webauthn: new AuthWebAuthnApi(config),
     };
   }
+
+  /**
+   * Create request overrides that authenticate as an end user.
+   * Use this when calling profile, session, or MFA endpoints that
+   * require the end user's access token instead of the API key.
+   *
+   * @example
+   * ```ts
+   * const login = await zyphr.auth.login.loginEndUser({ ... });
+   * const token = login.data.tokens.access_token;
+   *
+   * const profile = await zyphr.auth.profile.getEndUser(
+   *   zyphr.asEndUser(token)
+   * );
+   * ```
+   */
+  asEndUser(accessToken: string): RequestInit {
+    return {
+      headers: { Authorization: `Bearer ${accessToken}` },
+    };
+  }
 }