api2key-base-sdk 0.1.1 → 0.1.3

package/README.md

@@ -1,181 +1,150 @@
 # api2key-base-sdk
 
-`api2key-base-sdk` 是一个面向子项目的 TypeScript SDK，用于调用 Api2Key API 对外提供的稳定 API。
+`api2key-base-sdk` 是当前唯一保留的 SDK 入口，统一承载基础平台能力、项目运行时能力和后台管理客户端。
 
-它的目标不是让业务项目直接依赖平台内部源码，而是通过统一的 SDK 边界，把公共能力沉淀为可复用、可发布、可升级的标准接入层。
+适合放进所有新项目作为默认基础依赖。
 
-## 这个包解决什么问题
+## 当前边界
 
-当你的系统采用“平台基座 + 独立业务项目”的架构时，业务项目通常都需要复用同一批公共能力，例如：
+当前统一暴露：
 
-1. 用户登录、注册、身份校验
-2. 项目商品与项目权限查询
-3. 支付下单与订单支付状态查询
-4. 积分余额、预扣、确认、取消、流水查询
-5. AI 模型列表与余额能力
+1. `auth`
+2. `credits`
+3. `apiKeys`
+4. `settings`
+5. `projects`
+6. `orders`
+7. `payment`
+8. `ai`
+9. `admin`
 
-如果每个子项目都自己手写请求逻辑，会很快出现以下问题：
+安装原则：
 
-1. 接口路径、请求头、鉴权方式在多个项目里重复维护
-2. 返回结构和错误处理不统一
-3. 平台接口一旦升级，多个子项目要分别修改
-4. 子项目容易误依赖平台内部实现，造成耦合失控
+1. 所有新项目默认只安装 `api2key-base-sdk`
+2. 后台项目也只安装 `api2key-base-sdk`
+3. 单项目私有逻辑优先留在本地 facade，而不是再拆新的 SDK 包
 
-这个 SDK 就是为了解决这些问题而存在。
+## 暴露的客户端
 
-## 设计目标
+当前 `api2key-base-sdk` 暴露以下客户端：
 
-1. 子项目只依赖稳定 API 协议，不依赖平台内部源码
-2. 公共能力通过统一客户端暴露，减少重复开发
-3. 平台服务和业务项目可以独立演进、独立部署
-4. 接口鉴权、错误处理、请求封装保持一致
+1. `auth`
+2. `credits`
+3. `apiKeys`
+4. `settings`
+5. `projects`
+6. `orders`
+7. `payment`
+8. `ai`
+9. `admin`
 
-## 适用场景
+### 1. `auth`
 
-这个包适合以下场景：
+负责稳定的用户认证能力。
 
-1. 你有一个独立部署的平台基座服务，对外暴露 `/api/v1` 稳定接口
-2. 你有多个独立部署的业务项目，需要复用平台提供的公共能力
-3. 你希望业务项目只关心自身业务逻辑，而不是重复实现认证、支付、积分、模型等底层接入
+当前主要方法：
 
-## 当前支持的能力
+1. `login(input)`
+2. `register(input)`
+3. `me(accessToken?)`
+4. `logout(accessToken?)`
 
-目前 SDK 已封装以下客户端：
+### 2. `credits`
 
-1. `auth`：认证与身份相关接口
-2. `projects`：项目商品、项目会员、项目权限相关接口
-3. `payment`：支付创建与支付状态查询接口
-4. `credits`：积分余额、流水、预扣、确认、取消、消费接口
-5. `ai`：AI 模型列表与 AI 余额接口
+负责稳定的积分账户与服务侧扣减能力。
 
-## 安装方式
+当前主要方法包括：
 
-```bash
-npm install api2key-base-sdk
-```
-
-## 使用前提
-
-1. Node.js 版本需要 `>=18`
-2. 平台服务已经对外提供稳定的 `/api/v1` 路由
-3. 你的业务项目可以拿到平台服务地址，以及所需的访问令牌或服务密钥
-
-## 快速开始
-
-```ts
-import { createPlatformAClient } from 'api2key-base-sdk';
-
-const platformA = createPlatformAClient({
-  baseUrl: process.env.PLATFORM_A_BASE_URL!,
-  getServiceSecret: () => process.env.PLATFORM_A_SERVICE_SECRET,
-  getProjectId: () => process.env.PLATFORM_A_PROJECT_ID,
-});
-
-const products = await platformA.projects.getProducts('project-b');
-```
-
-上面的示例做了三件事：
-
-1. 指定平台基座服务地址 `baseUrl`
-2. 提供服务间调用所需的密钥 `getServiceSecret`
-3. 提供当前业务项目标识 `getProjectId`
-
-然后就可以直接通过 `platformA.projects.getProducts('project-b')` 调用平台对外能力，而不需要在业务项目里重复拼接请求。
+1. `getBalance(accessToken?)`
+2. `getLedger(input)`（仅管理员账号可查询当前账户积分消耗流水，普通用户前台不应依赖）
+3. `spend(input)`
+4. `reserve(input)`
+5. `confirm(id)`
+6. `cancel(id)`
 
-## 创建客户端时可配置的内容
+### 3. `apiKeys`
 
-创建 SDK 客户端时，常见可配置项包括：
+负责用户 API Key 生命周期管理。
 
-1. `baseUrl`：平台服务地址
-2. `fetchImpl`：自定义 `fetch` 实现
-3. `defaultHeaders`：默认请求头
-4. `getAccessToken`：获取用户访问令牌
-5. `getServiceSecret`：获取服务间调用密钥
-6. `getProjectId`：获取当前项目标识
+### 4. `settings`
 
-这意味着同一个 SDK 既可以被前端服务端渲染层使用，也可以被后端业务服务使用。
+负责用户级设置的读取与更新。
 
-## 各客户端说明
+### 5. `projects / orders / payment / ai`
 
-### auth
+负责项目商品、会员、订单、支付、AI 等运行时能力。
 
-用于处理认证相关能力，例如：
+### 6. `admin`
 
-1. 登录
-2. 注册
-3. 获取当前用户信息
-4. 退出登录
+负责项目管理、产品管理、用户管理、会员管理、模型管理、后台积分操作等控制面能力。
 
-### projects
+## 适合哪些项目
 
-用于处理与项目维度相关的能力，例如：
+适合：
 
-1. 查询某个项目可售商品
-2. 查询当前用户在某个项目下的会员状态
-3. 查询当前用户的项目权限
+1. 所有新项目
+2. 只需要登录、积分、用户设置、API Key 的项目
+3. 需要一个长期稳定基础依赖的项目
 
-### payment
+适合同一个 SDK 内统一暴露所有共享客户端，但不适合把某个单项目专属兼容逻辑强行塞进共享包。
 
-用于统一支付流程接入，例如：
+## 安装
 
-1. 创建统一支付订单
-2. 查询支付状态
-
-### credits
-
-用于积分体系接入，例如：
-
-1. 查询余额
-2. 查询流水
-3. 预扣积分
-4. 确认扣减
-5. 取消预扣
-6. 直接消费积分
-
-### ai
+```bash
+npm install api2key-base-sdk
+```
 
-用于 AI 能力接入，例如：
+## 使用示例
 
-1. 获取当前可用模型列表
-2. 查询 AI 余额
+```ts
+import { createBasePlatformClient } from 'api2key-base-sdk';
 
-## 错误处理
+const baseClient = createBasePlatformClient({
+  baseUrl: process.env.API2KEY_BASE_URL!,
+  getAccessToken: () => process.env.ACCESS_TOKEN,
+  getServiceSecret: () => process.env.SERVICE_SECRET,
+});
 
-SDK 内部已经区分了两类错误：
+const me = await baseClient.auth.me();
+const credits = await baseClient.credits.getBalance();
 
-1. `PlatformApiError`：平台接口已返回响应，但返回的是业务错误或非成功状态
-2. `PlatformTransportError`：请求过程本身失败，例如网络异常、返回非 JSON、缺少必要密钥等
+const projectClient = createProjectPlatformClient({
+  baseUrl: process.env.API2KEY_BASE_URL!,
+  getAccessToken: () => process.env.ACCESS_TOKEN,
+  getProjectId: () => process.env.PROJECT_ID,
+});
 
-建议业务项目在接入时分别处理这两类错误，以便更容易定位问题。
+const adminClient = createAdminPlatformClient({
+  baseUrl: process.env.API2KEY_BASE_URL!,
+  getAccessToken: () => process.env.ADMIN_ACCESS_TOKEN,
+});
 
-## 为什么推荐通过 SDK 接入，而不是直接请求 API
+const products = await projectClient.projects.getCatalogProducts(process.env.PROJECT_ID!);
+const projects = await adminClient.admin.listProjects();
+```
 
-直接请求 API 并不是不能做，但从长期维护看，SDK 更合适：
+## 设计原则
 
-1. 路径、请求头、鉴权规则可以统一管理
-2. 返回结构可以统一抽象
-3. 错误处理语义更清晰
-4. 平台升级时只需要升级 SDK，而不是逐个修改业务项目
+1. 新项目默认只依赖这个包
+2. 共享客户端统一收敛在一个包里
+3. `api2key-base-api` 可以继续保持清晰的路由分层，而不需要在消费侧安装多个 SDK
 
-## 发布约定
+## Agent 约定
 
-当前包的发布约定如下：
+后续 agent 在处理需求时，默认把这个包视为“稳定基础层”。
 
-1. 包名为 `api2key-base-sdk`
-2. 通过 Git tag 触发自动发布
-3. tag 格式为 `v*`
-4. tag 里的版本号必须与 `package.json` 中的版本号一致
-5. GitHub Actions 优先建议使用 npm trusted publishing；如果使用 `NPM_TOKEN`，则必须是启用了 `Bypass 2FA` 的 npm granular publish token
+规则：
 
-例如当版本为 `0.1.0` 时，应推送：
+1. 如果需求属于共享客户端能力，优先在这里找
+2. 后端路由边界仍按 base/project/admin 区分，不要因为 SDK 合并而改乱 API 归属
+3. 如果新需求只服务单个项目，优先留在项目本地 facade
 
-```bash
-git tag v0.1.0
-git push origin v0.1.0
-```
+## 兼容说明
 
-## License
+当前仍保留 `createPlatformAClient` 作为过渡别名，它返回基础能力客户端。
 
-当前包元信息中的许可证仍为 `UNLICENSED`。
+建议新代码统一使用：
 
-如果你的目标是公开开源分发，请在正式发布前明确许可证类型，并补充对应的 `LICENSE` 文件。
+- `createBasePlatformClient`
+- `createProjectPlatformClient`
+- `createAdminPlatformClient`

package/dist/admin/client.d.ts

@@ -0,0 +1,159 @@
+import type { PlatformHttpClient } from '../core/client';
+import type { AdminConfigItem, AdminMembershipFilters, AdminMembershipRecord, AdminModelInput, AdminModelRecord, AdminOrderFilters, AdminOrderRecord, AdminProduct, AdminProductBackfillResult, AdminProductListResult, AdminProject, AdminProjectExportFormat, AdminUserCreditsSummary, AdminUserRecord, UpdateAdminUserInput } from '../core/types';
+export declare class AdminClient {
+    private readonly http;
+    constructor(http: PlatformHttpClient);
+    listProjects(accessToken?: string): Promise<{
+        projects: AdminProject[];
+    }>;
+    createProject(input: {
+        name: string;
+        slug: string;
+        description?: string;
+        logoUrl?: string;
+        settings?: Record<string, unknown>;
+    }, accessToken?: string): Promise<{
+        project: AdminProject;
+    }>;
+    updateProject(input: {
+        id: string;
+        name?: string;
+        description?: string;
+        logoUrl?: string;
+        status?: 'active' | 'inactive';
+        settings?: Record<string, unknown>;
+    }, accessToken?: string): Promise<null>;
+    deleteProject(id: string, accessToken?: string): Promise<null>;
+    exportProject(id: string, format?: AdminProjectExportFormat, accessToken?: string): Promise<unknown>;
+    listProducts(projectId?: string, accessToken?: string): Promise<AdminProductListResult>;
+    createProduct(input: Omit<AdminProduct, 'id'>, accessToken?: string): Promise<AdminProduct>;
+    updateProduct(input: AdminProduct, accessToken?: string): Promise<AdminProduct>;
+    deleteProduct(id: string, accessToken?: string): Promise<null>;
+    backfillProductsProject(input: {
+        projectId: string;
+        productIds?: string[];
+    }, accessToken?: string): Promise<AdminProductBackfillResult>;
+    listMemberships(filters?: AdminMembershipFilters, accessToken?: string): Promise<{
+        memberships: AdminMembershipRecord[];
+        unboundUsers: Array<{
+            id: string;
+            email: string;
+            name: string | null;
+            role: string;
+            status: string;
+            currentProject: {
+                id: string;
+                name: string;
+                slug: string;
+            } | null;
+            membershipCount: number;
+        }>;
+    }>;
+    createMembership(input: {
+        scopeType: 'project' | 'global';
+        userId?: string;
+        email?: string;
+        projectId?: string;
+        role?: string;
+        tier: string;
+        status?: 'active' | 'expired' | 'cancelled';
+        credits?: number;
+        startDate?: number | null;
+        endDate?: number | null;
+        autoRenew?: boolean;
+    }, accessToken?: string): Promise<{
+        membershipId: string;
+        scopeType: 'project' | 'global';
+    }>;
+    updateMembership(input: {
+        id: string;
+        scopeType: 'project' | 'global';
+        projectId?: string;
+        role?: string;
+        tier?: string;
+        status?: 'active' | 'expired' | 'cancelled';
+        credits?: number;
+        startDate?: number | null;
+        endDate?: number | null;
+        autoRenew?: boolean;
+    }, accessToken?: string): Promise<{
+        id: string;
+    }>;
+    deleteMembership(id: string, scopeType: 'project' | 'global', accessToken?: string): Promise<null>;
+    listUsers(filters?: {
+        search?: string;
+        projectId?: string;
+        status?: 'active' | 'disabled' | 'banned';
+        limit?: number;
+    }, accessToken?: string): Promise<{
+        users: AdminUserRecord[];
+    }>;
+    updateUser(input: UpdateAdminUserInput, accessToken?: string): Promise<{
+        userId: string;
+        name?: string | null;
+        status?: string;
+        projectId: string | null;
+        membershipTier?: string | null;
+        membershipStatus?: string | null;
+        membershipCredits?: number;
+        creditsBalance?: number;
+    }>;
+    updateUserProject(input: {
+        userId: string;
+        projectId?: string | null;
+    }, accessToken?: string): Promise<{
+        userId: string;
+        projectId: string | null;
+    }>;
+    deleteUsers(userIds: string[], accessToken?: string): Promise<{
+        deleted: Array<{
+            id: string;
+            email: string;
+        }>;
+        skipped: Array<{
+            id: string;
+            email?: string | null;
+            reason: string;
+        }>;
+    }>;
+    listOrders(filters?: AdminOrderFilters, accessToken?: string): Promise<{
+        orders: AdminOrderRecord[];
+    }>;
+    getConfig(accessToken?: string): Promise<{
+        configs: AdminConfigItem[];
+    }>;
+    updateConfig(input: {
+        key: string;
+        value: string;
+    }, accessToken?: string): Promise<AdminConfigItem>;
+    grantCredits(input: {
+        userId: string;
+        amount: number;
+        description?: string;
+        taskId?: string;
+    }, accessToken?: string): Promise<{
+        balanceAfter: number;
+        idempotent?: boolean;
+    }>;
+    getUserCredits(userId: string, accessToken?: string): Promise<AdminUserCreditsSummary>;
+    listManagedModels(accessToken?: string): Promise<{
+        models: AdminModelRecord[];
+        warning?: string | null;
+        schemaReady?: boolean;
+    }>;
+    createManagedModel(input: AdminModelInput, accessToken?: string): Promise<{
+        model: AdminModelRecord;
+    }>;
+    updateManagedModel(id: string, input: Partial<AdminModelInput>, accessToken?: string): Promise<{
+        model: AdminModelRecord;
+    }>;
+    deleteManagedModel(id: string, accessToken?: string): Promise<void>;
+    bulkDeleteManagedModels(ids: string[], accessToken?: string): Promise<{
+        deletedCount: number;
+    }>;
+    importManagedModels(input: AdminModelInput[], accessToken?: string): Promise<{
+        models: AdminModelRecord[];
+        count: number;
+    }>;
+    flushManagedModelCache(accessToken?: string): Promise<void>;
+}

package/dist/admin/client.js

@@ -0,0 +1,211 @@
+export class AdminClient {
+    constructor(http) {
+        this.http = http;
+    }
+    listProjects(accessToken) {
+        return this.http.request('/api/v1/admin/projects', { accessToken });
+    }
+    createProject(input, accessToken) {
+        return this.http.request('/api/v1/admin/projects', {
+            method: 'POST',
+            body: input,
+            accessToken,
+        });
+    }
+    updateProject(input, accessToken) {
+        return this.http.request('/api/v1/admin/projects', {
+            method: 'PUT',
+            body: input,
+            accessToken,
+        });
+    }
+    deleteProject(id, accessToken) {
+        return this.http.request('/api/v1/admin/projects', {
+            method: 'DELETE',
+            query: { id },
+            accessToken,
+        });
+    }
+    async exportProject(id, format = 'openapi', accessToken) {
+        const response = await this.http.requestRaw(`/api/v1/admin/projects/${id}/export`, {
+            query: { format },
+            accessToken,
+        });
+        if (!response.ok) {
+            const payload = await response.json().catch(() => null);
+            throw new Error(payload?.message ?? `Export failed with HTTP ${response.status}`);
+        }
+        const contentType = response.headers.get('Content-Type') ?? '';
+        if (contentType.includes('application/json')) {
+            return response.json();
+        }
+        return response.text();
+    }
+    listProducts(projectId, accessToken) {
+        return this.http.request('/api/v1/admin/products', {
+            query: { projectId },
+            accessToken,
+        });
+    }
+    createProduct(input, accessToken) {
+        return this.http.request('/api/v1/admin/products', {
+            method: 'POST',
+            body: input,
+            accessToken,
+        });
+    }
+    updateProduct(input, accessToken) {
+        return this.http.request('/api/v1/admin/products', {
+            method: 'PUT',
+            body: input,
+            accessToken,
+        });
+    }
+    deleteProduct(id, accessToken) {
+        return this.http.request('/api/v1/admin/products', {
+            method: 'DELETE',
+            query: { id },
+            accessToken,
+        });
+    }
+    backfillProductsProject(input, accessToken) {
+        return this.http.request('/api/v1/admin/products/backfill-project', {
+            method: 'POST',
+            body: input,
+            accessToken,
+        });
+    }
+    listMemberships(filters = {}, accessToken) {
+        return this.http.request('/api/v1/admin/memberships', {
+            query: {
+                scope: filters.scope,
+                projectId: filters.projectId,
+                status: filters.status,
+                tier: filters.tier,
+                search: filters.search,
+            },
+            accessToken,
+        });
+    }
+    createMembership(input, accessToken) {
+        return this.http.request('/api/v1/admin/memberships', {
+            method: 'POST',
+            body: input,
+            accessToken,
+        });
+    }
+    updateMembership(input, accessToken) {
+        return this.http.request('/api/v1/admin/memberships', {
+            method: 'PUT',
+            body: input,
+            accessToken,
+        });
+    }
+    deleteMembership(id, scopeType, accessToken) {
+        return this.http.request('/api/v1/admin/memberships', {
+            method: 'DELETE',
+            query: { id, scopeType },
+            accessToken,
+        });
+    }
+    listUsers(filters = {}, accessToken) {
+        return this.http.request('/api/v1/admin/users', {
+            query: filters,
+            accessToken,
+        });
+    }
+    updateUser(input, accessToken) {
+        return this.http.request('/api/v1/admin/users', {
+            method: 'PUT',
+            body: input,
+            accessToken,
+        });
+    }
+    updateUserProject(input, accessToken) {
+        return this.updateUser(input, accessToken);
+    }
+    deleteUsers(userIds, accessToken) {
+        return this.http.request('/api/v1/admin/users', {
+            method: 'DELETE',
+            body: { userIds },
+            accessToken,
+        });
+    }
+    listOrders(filters = {}, accessToken) {
+        return this.http.request('/api/v1/admin/orders', {
+            query: {
+                search: filters.search,
+                status: filters.status,
+                projectId: filters.projectId,
+                userId: filters.userId,
+                limit: filters.limit,
+            },
+            accessToken,
+        });
+    }
+    getConfig(accessToken) {
+        return this.http.request('/api/v1/admin/config', { accessToken });
+    }
+    updateConfig(input, accessToken) {
+        return this.http.request('/api/v1/admin/config', {
+            method: 'PUT',
+            body: input,
+            accessToken,
+        });
+    }
+    grantCredits(input, accessToken) {
+        return this.http.request('/api/v1/credits/admin/grant', {
+            method: 'POST',
+            body: input,
+            accessToken,
+        });
+    }
+    getUserCredits(userId, accessToken) {
+        return this.http.request(`/api/v1/credits/admin/users/${encodeURIComponent(userId)}`, {
+            accessToken,
+        });
+    }
+    listManagedModels(accessToken) {
+        return this.http.request('/api/v1/admin/models', { accessToken });
+    }
+    createManagedModel(input, accessToken) {
+        return this.http.request('/api/v1/admin/models', {
+            method: 'POST',
+            body: input,
+            accessToken,
+        });
+    }
+    updateManagedModel(id, input, accessToken) {
+        return this.http.request(`/api/v1/admin/models/${encodeURIComponent(id)}`, {
+            method: 'PUT',
+            body: input,
+            accessToken,
+        });
+    }
+    deleteManagedModel(id, accessToken) {
+        return this.http.request(`/api/v1/admin/models/${encodeURIComponent(id)}`, {
+            method: 'DELETE',
+            accessToken,
+        });
+    }
+    bulkDeleteManagedModels(ids, accessToken) {
+        return this.http.request('/api/v1/admin/models/delete', {
+            method: 'POST',
+            body: { ids },
+            accessToken,
+        });
+    }
+    importManagedModels(input, accessToken) {
+        return this.http.request('/api/v1/admin/models/import', {
+            method: 'POST',
+            body: input,
+            accessToken,
+        });
+    }
+    flushManagedModelCache(accessToken) {
+        return this.http.request('/api/v1/admin/models/cache/flush', {
+            method: 'POST',
+            accessToken,
+        });
+    }
+}

package/dist/auth/client.d.ts

@@ -6,6 +6,7 @@ export declare class AuthClient {
     login(input: {
         email: string;
         password: string;
+        projectId?: string;
     }): Promise<AuthSession>;
     register(input: {
         email: string;

package/dist/core/client.d.ts

@@ -4,5 +4,7 @@ export declare class PlatformHttpClient {
     private readonly fetchImpl;
     private readonly options;
     constructor(options: PlatformClientOptions);
+    private send;
     request<T>(path: string, requestOptions?: PlatformRequestOptions): Promise<T>;
+    requestRaw(path: string, requestOptions?: PlatformRequestOptions): Promise<Response>;
 }

package/dist/core/client.js

@@ -15,9 +15,10 @@ export class PlatformHttpClient {
     constructor(options) {
         this.options = options;
         this.baseUrl = options.baseUrl.replace(/\/+$/, '');
-        this.fetchImpl = options.fetchImpl ?? fetch;
+        const fetchImpl = options.fetchImpl ?? fetch;
+        this.fetchImpl = fetchImpl.bind(globalThis);
     }
-    async request(path, requestOptions = {}) {
+    async send(path, requestOptions = {}) {
         const headers = new Headers(this.options.defaultHeaders);
         headers.set('Content-Type', 'application/json');
         if (requestOptions.headers) {
@@ -53,16 +54,23 @@ export class PlatformHttpClient {
             const message = error instanceof Error ? error.message : 'Unknown transport error';
             throw new PlatformTransportError(message);
         }
+        return response;
+    }
+    async request(path, requestOptions = {}) {
+        const response = await this.send(path, requestOptions);
         let payload = null;
         try {
             payload = (await response.json());
         }
         catch {
-            throw new PlatformTransportError(`Platform API returned a non-JSON response for ${url}`);
+            throw new PlatformTransportError(`Platform API returned a non-JSON response for ${response.url}`);
         }
         if (!response.ok) {
             throw new PlatformApiError(payload.message, response.status, payload.code, payload.data);
         }
         return payload.data;
     }
+    async requestRaw(path, requestOptions = {}) {
+        return this.send(path, requestOptions);
+    }
 }

package/dist/core/types.d.ts

@@ -28,6 +28,27 @@ export interface AuthUser {
     avatar?: string | null;
     role: 'user' | 'admin' | 'super_admin';
     creditsBalance?: number;
+    projectId?: string | null;
+    projectName?: string | null;
+    projectSlug?: string | null;
+    membership?: {
+        tier: string;
+        power?: number;
+        endDate?: number | null;
+    } | null;
+    projectPermission?: {
+        id: string;
+        projectId: string;
+        projectName?: string | null;
+        projectSlug?: string | null;
+        role?: string | null;
+        tier?: string | null;
+        status?: string | null;
+        credits?: number;
+        startDate?: number | null;
+        endDate?: number | null;
+        autoRenew?: boolean;
+    } | null;
 }
 export interface AuthSession {
     user: AuthUser;
@@ -44,6 +65,8 @@ export interface ProjectSummary {
 export interface ProductSummary {
     id: string;
     projectId?: string | null;
+    projectName?: string | null;
+    projectSlug?: string | null;
     name: string;
     description?: string | null;
     price: number;
@@ -52,6 +75,9 @@ export interface ProductSummary {
     credits: number;
     tier: string;
     features: string[];
+    modelKeys?: string[];
+    models?: AiModelSummary[];
+    enabled?: boolean;
     sortOrder?: number;
 }
 export interface MembershipView {
@@ -82,6 +108,32 @@ export interface CreditsLedgerItem {
     description?: string | null;
     created_at: number;
 }
+export interface UserApiKeyRecord {
+    id: string;
+    name: string;
+    keyPrefix: string;
+    active: boolean;
+    lastUsedAt?: number | null;
+    createdAt: number;
+    updatedAt: number;
+}
+export interface UserApiKeySecret {
+    id: string;
+    name: string;
+    keyPrefix: string;
+    secret: string;
+    createdAt: number;
+}
+export interface UserSettingDefinition {
+    label: string;
+    description: string;
+    defaultValue: string;
+    maxLength: number;
+}
+export interface UserSettingsPayload {
+    settings: Record<string, string>;
+    definitions?: Record<string, UserSettingDefinition>;
+}
 export interface PaymentCreateResponse {
     paymentType: string;
     orderNo: string;
@@ -104,6 +156,22 @@ export interface PaymentQueryResponse {
         paidAt?: number | null;
     };
 }
+export interface OrderSummary {
+    id: string;
+    productId?: string;
+    orderNo: string;
+    amount: number;
+    status: string;
+    productName?: string;
+    productTier?: string;
+    paymentMethod?: string | null;
+    createdAt?: number;
+    paidAt?: number | null;
+}
+export interface OrderDetail extends OrderSummary {
+    paymentIntentId?: string | null;
+    productDescription?: string | null;
+}
 export interface AiModelSummary {
     key: string;
     id: string;
@@ -119,3 +187,212 @@ export interface AiModelSummary {
     outputPricing?: number;
     locked?: boolean;
 }
+export interface AdminProject {
+    id: string;
+    name: string;
+    slug: string;
+    description?: string | null;
+    logoUrl?: string | null;
+    status: 'active' | 'inactive';
+    settings?: Record<string, unknown> | null;
+    createdAt: number;
+    updatedAt: number;
+    stats?: {
+        productCount: number;
+        userCount: number;
+    };
+}
+export type AdminProjectExportFormat = 'openapi' | 'markdown';
+export interface AdminProduct {
+    id: string;
+    projectId?: string | null;
+    name: string;
+    description?: string | null;
+    price?: number;
+    discount_price?: number | null;
+    duration_days?: number;
+    credits?: number;
+    tier?: string;
+    features?: string[];
+    enabled?: boolean;
+    sort_order?: number;
+}
+export interface AdminMembershipRecord {
+    id: string;
+    scopeType: 'project' | 'global';
+    role: string;
+    tier: string;
+    status: string;
+    credits: number;
+    startDate?: number | null;
+    endDate?: number | null;
+    autoRenew: boolean;
+    createdAt: number;
+    updatedAt: number;
+    user: {
+        id: string;
+        email: string;
+        name?: string | null;
+        role: string;
+        status: string;
+    };
+    project: {
+        id: string;
+        name: string;
+        slug: string;
+        status: string;
+    } | null;
+}
+export interface AdminMembershipFilters {
+    scope?: 'project' | 'global';
+    projectId?: string;
+    status?: string;
+    tier?: string;
+    search?: string;
+}
+export interface AdminUserRecord {
+    id: string;
+    email: string;
+    name?: string | null;
+    role: string;
+    status: string;
+    createdAt: number;
+    updatedAt: number;
+    currentProject: {
+        id: string;
+        name: string;
+        slug: string;
+    } | null;
+    globalMembership: {
+        id: string;
+        tier: string | null;
+        status: string | null;
+        credits: number;
+        startDate?: number | null;
+        endDate?: number | null;
+        autoRenew: boolean;
+    } | null;
+    selectedProjectPermission: {
+        id: string;
+        role: string | null;
+        tier: string | null;
+        status: string | null;
+        credits: number;
+        startDate?: number | null;
+        endDate?: number | null;
+        autoRenew: boolean;
+        project: {
+            id: string;
+            name: string;
+            slug: string;
+        } | null;
+    } | null;
+    projectPermissionCount: number;
+    credits: {
+        balance: number;
+        reserved: number;
+        totalEarned: number;
+        totalSpent: number;
+    };
+}
+export interface AdminOrderRecord {
+    id: string;
+    orderNo: string;
+    amount: number;
+    currency: string;
+    status: string;
+    paymentMethod?: string | null;
+    paymentIntentId?: string | null;
+    createdAt: number;
+    updatedAt: number;
+    paidAt?: number | null;
+    product: {
+        id: string;
+        name: string;
+        tier?: string | null;
+    };
+    project: {
+        id: string;
+        name: string;
+        slug: string;
+    } | null;
+    user: {
+        id: string;
+        email: string;
+        name?: string | null;
+    };
+}
+export interface AdminOrderFilters {
+    search?: string;
+    status?: string;
+    projectId?: string;
+    userId?: string;
+    limit?: number;
+}
+export interface AdminConfigItem {
+    key: string;
+    value: string;
+    type?: string;
+    description?: string;
+    updated_at?: number;
+}
+export interface AdminUserCreditsSummary {
+    account: {
+        balance: number;
+        reserved: number;
+        total_earned: number;
+        total_spent: number;
+    };
+    recentLedger: CreditsLedgerItem[];
+}
+export interface AdminModelRecord {
+    id: string;
+    model_key: string;
+    model_id: string;
+    name: string;
+    provider: string;
+    model_type?: string | null;
+    min_tier?: string | null;
+    input_pricing: number;
+    output_pricing: number;
+    cache_ratio?: number | null;
+    enabled: number;
+    sort_order: number;
+    created_at?: number;
+    updated_at?: number;
+}
+export interface AdminModelInput {
+    model_key: string;
+    model_id: string;
+    name: string;
+    provider: string;
+    model_type?: string;
+    min_tier?: string;
+    input_pricing: number;
+    output_pricing: number;
+    cache_ratio?: number;
+    enabled?: number;
+    sort_order?: number;
+}
+export interface AdminProductListResult {
+    project: {
+        id: string;
+        name: string;
+        slug: string;
+        status: string;
+    } | null;
+    products: AdminProduct[];
+}
+export interface AdminProductBackfillResult {
+    updated: number;
+}
+export interface UpdateAdminUserInput {
+    userId: string;
+    name?: string | null;
+    status?: 'active' | 'disabled' | 'banned';
+    projectId?: string | null;
+    membershipTier?: string | null;
+    membershipStatus?: 'active' | 'expired' | 'cancelled';
+    membershipCredits?: number;
+    creditsBalance?: number;
+}

package/dist/index.d.ts

@@ -1,19 +1,39 @@
+import { AdminClient } from './admin/client';
+import { AiClient } from './ai/client';
+import { AuthClient } from './auth/client';
 import { PlatformHttpClient } from './core/client';
 import type { PlatformClientOptions } from './core/types';
-import { AuthClient } from './auth/client';
-import { ProjectsClient } from './projects/client';
 import { CreditsClient } from './credits/client';
+import { OrdersClient } from './orders/client';
 import { PaymentClient } from './payment/client';
-import { AiClient } from './ai/client';
+import { ProjectsClient } from './projects/client';
+import { UserApiKeysClient } from './user/api-keys-client';
+import { UserSettingsClient } from './user/settings-client';
 export * from './core/errors';
-export * from './core/types';
-export declare class PlatformAClient {
+export type { AdminConfigItem, AdminMembershipFilters, AdminMembershipRecord, AdminModelInput, AdminModelRecord, AdminOrderFilters, AdminOrderRecord, AdminProduct, AdminProductBackfillResult, AdminProductListResult, AdminProject, AdminProjectExportFormat, AdminUserCreditsSummary, AdminUserRecord, AiModelSummary, AuthSession, AuthUser, CreditsBalance, CreditsLedgerItem, MembershipView, OrderDetail, OrderSummary, PaymentCreateResponse, PaymentQueryResponse, PlatformClientOptions, PlatformEnvelope, PlatformRequestOptions, ProductSummary, ProjectSummary, UpdateAdminUserInput, UserApiKeyRecord, UserApiKeySecret, UserSettingDefinition, UserSettingsPayload, } from './core/types';
+export declare class BasePlatformClient {
     readonly http: PlatformHttpClient;
     readonly auth: AuthClient;
-    readonly projects: ProjectsClient;
     readonly credits: CreditsClient;
+    readonly apiKeys: UserApiKeysClient;
+    readonly settings: UserSettingsClient;
+    constructor(options: PlatformClientOptions);
+}
+export declare function createBasePlatformClient(options: PlatformClientOptions): BasePlatformClient;
+export declare class ProjectPlatformClient {
+    readonly http: PlatformHttpClient;
+    readonly projects: ProjectsClient;
+    readonly orders: OrdersClient;
     readonly payment: PaymentClient;
     readonly ai: AiClient;
     constructor(options: PlatformClientOptions);
 }
-export declare function createPlatformAClient(options: PlatformClientOptions): PlatformAClient;
+export declare function createProjectPlatformClient(options: PlatformClientOptions): ProjectPlatformClient;
+export declare class AdminPlatformClient {
+    readonly http: PlatformHttpClient;
+    readonly admin: AdminClient;
+    constructor(options: PlatformClientOptions);
+}
+export declare function createAdminPlatformClient(options: PlatformClientOptions): AdminPlatformClient;
+export { BasePlatformClient as PlatformAClient };
+export declare const createPlatformAClient: typeof createBasePlatformClient;

package/dist/index.js

@@ -1,21 +1,46 @@
-import { PlatformHttpClient } from './core/client';
+import { AdminClient } from './admin/client';
+import { AiClient } from './ai/client';
 import { AuthClient } from './auth/client';
-import { ProjectsClient } from './projects/client';
+import { PlatformHttpClient } from './core/client';
 import { CreditsClient } from './credits/client';
+import { OrdersClient } from './orders/client';
 import { PaymentClient } from './payment/client';
-import { AiClient } from './ai/client';
+import { ProjectsClient } from './projects/client';
+import { UserApiKeysClient } from './user/api-keys-client';
+import { UserSettingsClient } from './user/settings-client';
 export * from './core/errors';
-export * from './core/types';
-export class PlatformAClient {
+export class BasePlatformClient {
     constructor(options) {
         this.http = new PlatformHttpClient(options);
         this.auth = new AuthClient(this.http);
-        this.projects = new ProjectsClient(this.http);
         this.credits = new CreditsClient(this.http);
+        this.apiKeys = new UserApiKeysClient(this.http);
+        this.settings = new UserSettingsClient(this.http);
+    }
+}
+export function createBasePlatformClient(options) {
+    return new BasePlatformClient(options);
+}
+export class ProjectPlatformClient {
+    constructor(options) {
+        this.http = new PlatformHttpClient(options);
+        this.projects = new ProjectsClient(this.http);
+        this.orders = new OrdersClient(this.http);
         this.payment = new PaymentClient(this.http);
         this.ai = new AiClient(this.http);
     }
 }
-export function createPlatformAClient(options) {
-    return new PlatformAClient(options);
+export function createProjectPlatformClient(options) {
+    return new ProjectPlatformClient(options);
+}
+export class AdminPlatformClient {
+    constructor(options) {
+        this.http = new PlatformHttpClient(options);
+        this.admin = new AdminClient(this.http);
+    }
+}
+export function createAdminPlatformClient(options) {
+    return new AdminPlatformClient(options);
 }
+export { BasePlatformClient as PlatformAClient };
+export const createPlatformAClient = createBasePlatformClient;

package/dist/orders/client.d.ts

@@ -0,0 +1,16 @@
+import { PlatformHttpClient } from '../core/client';
+import type { OrderDetail, OrderSummary } from '../core/types';
+export declare class OrdersClient {
+    private readonly http;
+    constructor(http: PlatformHttpClient);
+    create(input: {
+        productId: string;
+        accessToken?: string;
+    }): Promise<OrderSummary>;
+    list(accessToken?: string): Promise<{
+        orders: OrderSummary[];
+    }>;
+    get(orderId: string, accessToken?: string): Promise<{
+        order: OrderDetail;
+    }>;
+}

package/dist/orders/client.js

@@ -0,0 +1,24 @@
+export class OrdersClient {
+    constructor(http) {
+        this.http = http;
+    }
+    create(input) {
+        return this.http.request('/api/v1/orders', {
+            method: 'POST',
+            accessToken: input.accessToken,
+            body: {
+                productId: input.productId,
+            },
+        });
+    }
+    list(accessToken) {
+        return this.http.request('/api/v1/orders', {
+            accessToken,
+        });
+    }
+    get(orderId, accessToken) {
+        return this.http.request(`/api/v1/orders/${orderId}`, {
+            accessToken,
+        });
+    }
+}

package/dist/projects/client.d.ts

@@ -1,5 +1,9 @@
 import { PlatformHttpClient } from '../core/client';
 import type { MembershipView, ProductSummary, ProjectSummary } from '../core/types';
+type MembershipRequestOptions = {
+    accessToken?: string;
+    headers?: Record<string, string>;
+};
 export declare class ProjectsClient {
     private readonly http;
     constructor(http: PlatformHttpClient);
@@ -8,7 +12,12 @@ export declare class ProjectsClient {
         products: ProductSummary[];
         total?: number;
     }>;
-    getMembership(projectId: string, accessToken?: string): Promise<{
+    getCatalogProducts(projectId: string): Promise<{
+        project: ProjectSummary | null;
+        products: ProductSummary[];
+        total?: number;
+    }>;
+    getMembership(projectId: string, options?: string | MembershipRequestOptions): Promise<{
         project: ProjectSummary;
         membership: MembershipView;
     }>;
@@ -20,3 +29,4 @@ export declare class ProjectsClient {
         permissions?: unknown[];
     }>;
 }
+export {};

package/dist/projects/client.js

@@ -5,8 +5,19 @@ export class ProjectsClient {
     getProducts(projectId) {
         return this.http.request(`/api/v1/projects/${projectId}/products`);
     }
-    getMembership(projectId, accessToken) {
-        return this.http.request(`/api/v1/projects/${projectId}/membership`, { accessToken });
+    getCatalogProducts(projectId) {
+        return this.http.request('/api/v1/products', {
+            query: { projectId },
+        });
+    }
+    getMembership(projectId, options) {
+        const normalizedOptions = typeof options === 'string'
+            ? { accessToken: options }
+            : (options ?? {});
+        return this.http.request(`/api/v1/projects/${projectId}/membership`, {
+            accessToken: normalizedOptions.accessToken,
+            headers: normalizedOptions.headers,
+        });
     }
     getPermissions(input) {
         return this.http.request('/api/v1/user/project-permissions', {

package/dist/user/api-keys-client.d.ts

@@ -0,0 +1,19 @@
+import { PlatformHttpClient } from '../core/client';
+import type { UserApiKeyRecord, UserApiKeySecret } from '../core/types';
+export declare class UserApiKeysClient {
+    private readonly http;
+    constructor(http: PlatformHttpClient);
+    list(accessToken?: string): Promise<{
+        keys: UserApiKeyRecord[];
+    }>;
+    create(input: {
+        name?: string;
+    }, accessToken?: string): Promise<{
+        key: UserApiKeySecret;
+    }>;
+    update(id: string, input: {
+        name?: string;
+        active?: boolean;
+    }, accessToken?: string): Promise<null>;
+    delete(id: string, accessToken?: string): Promise<null>;
+}

package/dist/user/api-keys-client.js

@@ -0,0 +1,30 @@
+export class UserApiKeysClient {
+    constructor(http) {
+        this.http = http;
+    }
+    list(accessToken) {
+        return this.http.request('/api/v1/user/api-keys', {
+            accessToken,
+        });
+    }
+    create(input, accessToken) {
+        return this.http.request('/api/v1/user/api-keys', {
+            method: 'POST',
+            accessToken,
+            body: input,
+        });
+    }
+    update(id, input, accessToken) {
+        return this.http.request(`/api/v1/user/api-keys/${encodeURIComponent(id)}`, {
+            method: 'PATCH',
+            accessToken,
+            body: input,
+        });
+    }
+    delete(id, accessToken) {
+        return this.http.request(`/api/v1/user/api-keys/${encodeURIComponent(id)}`, {
+            method: 'DELETE',
+            accessToken,
+        });
+    }
+}

package/dist/user/settings-client.d.ts

@@ -0,0 +1,11 @@
+import { PlatformHttpClient } from '../core/client';
+import type { UserSettingsPayload } from '../core/types';
+export declare class UserSettingsClient {
+    private readonly http;
+    constructor(http: PlatformHttpClient);
+    get(accessToken?: string): Promise<UserSettingsPayload>;
+    update(settings: Record<string, string | number | boolean>, accessToken?: string): Promise<{
+        updated: string[];
+        settings: Record<string, string>;
+    }>;
+}

package/dist/user/settings-client.js

@@ -0,0 +1,17 @@
+export class UserSettingsClient {
+    constructor(http) {
+        this.http = http;
+    }
+    get(accessToken) {
+        return this.http.request('/api/v1/user/settings', {
+            accessToken,
+        });
+    }
+    update(settings, accessToken) {
+        return this.http.request('/api/v1/user/settings', {
+            method: 'PUT',
+            accessToken,
+            body: settings,
+        });
+    }
+}

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "api2key-base-sdk",
-  "version": "0.1.1",
+  "version": "0.1.3",
   "description": "TypeScript SDK for consuming the Api2Key API stable APIs",
   "license": "UNLICENSED",
   "type": "module",