dominus-sdk-nodejs 1.0.0

package/README.md

@@ -0,0 +1,408 @@
+# CB Dominus SDK for Node.js
+
+**TypeScript SDK for the Dominus Orchestrator Platform**
+
+A unified, async-first TypeScript SDK providing seamless access to all Dominus backend services including secrets management, database operations, caching, file storage, authentication, schema management, and structured logging.
+
+## Features
+
+- **Namespace-based API** - Intuitive access via `dominus.db`, `dominus.redis`, `dominus.files`, etc.
+- **Async/Await** - Built for modern async TypeScript/JavaScript applications
+- **Automatic JWT Management** - Token minting, caching, and refresh handled transparently
+- **Resilience Built-in** - Circuit breaker, exponential backoff, and retry logic
+- **Typed Errors** - Specific error classes for different failure modes
+- **Secure by Default** - Client-side password hashing, audit trail support
+- **Server-Side Only** - Designed for Next.js API routes, Express, and other Node.js backends
+
+## Quick Start
+
+```typescript
+import { dominus } from 'dominus-sdk-nodejs';
+
+// Set your token (or use DOMINUS_TOKEN environment variable)
+process.env.DOMINUS_TOKEN = "your-psk-token";
+
+// Secrets
+const dbUrl = await dominus.secrets.get("DATABASE_URL");
+
+// Database queries
+const users = await dominus.db.query("users", { filters: { status: "active" } });
+
+// Redis caching
+await dominus.redis.set("session:123", { user: "john" }, { ttl: 3600 });
+
+// File storage
+const result = await dominus.files.upload(buffer, "report.pdf", { category: "reports" });
+
+// Structured logging
+await dominus.logs.info("User logged in", { user_id: "123" });
+```
+
+## Installation
+
+```bash
+npm install dominus-sdk-nodejs
+```
+
+Or add directly from GitHub:
+
+```bash
+npm install github:carebridgesystems/cb-dominus-sdk-nodejs
+```
+
+## Requirements
+
+- Node.js 18+ (uses native fetch)
+- TypeScript 5.0+ (optional, but recommended)
+
+## Namespaces
+
+| Namespace | Service | Purpose |
+|-----------|---------|---------|
+| `dominus.secrets` | Warden | Secrets management |
+| `dominus.db` | Scribe | Database CRUD operations |
+| `dominus.redis` | Whisperer | Redis caching |
+| `dominus.files` | Archivist | Object storage (B2) |
+| `dominus.auth` | Guardian | Authentication & authorization |
+| `dominus.ddl` | Smith | Schema DDL & migrations |
+| `dominus.logs` | Herald | Structured logging |
+| `dominus.portal` | Portal | User auth & sessions |
+| `dominus.courier` | Courier | Email delivery (Postmark) |
+| `dominus.open` | Scribe | Direct database access |
+| `dominus.health` | Health | Service health checks |
+
+## Usage Examples
+
+### Secrets Management
+
+```typescript
+// Get a secret
+const value = await dominus.secrets.get("API_KEY");
+
+// Create or update
+await dominus.secrets.upsert("API_KEY", "new-value", "Updated API key");
+
+// List secrets with prefix
+const secrets = await dominus.secrets.list("DB_");
+
+// Delete
+await dominus.secrets.delete("OLD_KEY");
+
+// Root-level shortcuts
+const dbUrl = await dominus.get("DATABASE_URL");
+await dominus.upsert("KEY", "value");
+```
+
+### Database Operations
+
+```typescript
+// List tables
+const tables = await dominus.db.tables();
+const tenantTables = await dominus.db.tables("tenant_acme");
+
+// Query with filters and pagination
+const users = await dominus.db.query("users", {
+  filters: { status: "active", role: ["admin", "manager"] },
+  sortBy: "created_at",
+  sortOrder: "DESC",
+  limit: 50,
+  offset: 0
+});
+
+// Insert
+const user = await dominus.db.insert("users", {
+  email: "john@example.com",
+  name: "John Doe"
+});
+
+// Update
+await dominus.db.update("users", { status: "inactive" }, { id: userId });
+
+// Delete
+await dominus.db.delete("users", { id: userId });
+
+// Secure table access (requires audit reason)
+const patients = await dominus.db.query("patients", {
+  schema: "tenant_acme",
+  reason: "Reviewing records for appointment #123",
+  actor: "dr.smith"
+});
+```
+
+### Redis Caching
+
+```typescript
+// Key-value operations
+await dominus.redis.set("user:123", { name: "John" }, { ttl: 3600 });
+const value = await dominus.redis.get("user:123");
+
+// Distributed locks
+const acquired = await dominus.redis.setnx("lock:job", "worker-1", { ttl: 60 });
+if (acquired) {
+  try {
+    // Do exclusive work
+  } finally {
+    await dominus.redis.delete("lock:job");
+  }
+}
+
+// Counters
+await dominus.redis.incr("page:views", 1);
+
+// Hash operations
+await dominus.redis.hset("user:123", "email", "john@example.com", { ttl: 3600 });
+const email = await dominus.redis.hget("user:123", "email");
+```
+
+### File Storage
+
+```typescript
+import { readFileSync } from 'fs';
+
+// Upload file
+const data = readFileSync("report.pdf");
+const result = await dominus.files.upload(data, "report.pdf", {
+  category: "reports",
+  contentType: "application/pdf"
+});
+
+// Get download URL
+const download = await dominus.files.download({ id: result.id });
+console.log(download.download_url);
+
+// List files
+const files = await dominus.files.list({ category: "reports", prefix: "2025/" });
+
+// Delete file
+await dominus.files.delete({ id: result.id });
+```
+
+### Structured Logging
+
+```typescript
+// Simple logging (auto-captures file and function)
+await dominus.logs.info("User logged in", { user_id: "123" });
+await dominus.logs.error("Payment failed", { order_id: "456" });
+
+// With category
+await dominus.logs.info("Cache hit", { key: "user:123" }, "cache");
+
+// With exception
+try {
+  riskyOperation();
+} catch (error) {
+  await dominus.logs.error("Operation failed", {}, { exception: error as Error });
+}
+
+// Query logs
+const errors = await dominus.logs.query({ level: "error", limit: 100 });
+```
+
+### Authentication
+
+```typescript
+// User management
+const user = await dominus.auth.addUser({
+  username: "john",
+  password: "secure-password",
+  email: "john@example.com"
+});
+
+// Role management
+const role = await dominus.auth.addRole({
+  name: "Editor",
+  scopeSlugs: ["read", "write", "publish"]
+});
+
+// List users
+const users = await dominus.auth.listUsers();
+```
+
+### Schema Management (DDL)
+
+```typescript
+// Create table
+await dominus.ddl.createTable("orders", [
+  { name: "id", type: "UUID", constraints: ["PRIMARY KEY"] },
+  { name: "user_id", type: "UUID", constraints: ["NOT NULL"] },
+  { name: "total", type: "DECIMAL(10,2)" },
+  { name: "created_at", type: "TIMESTAMPTZ", default: "NOW()" }
+]);
+
+// Add column
+await dominus.ddl.addColumn("orders", {
+  name: "status",
+  type: "VARCHAR(50)",
+  default: "'pending'"
+});
+
+// Provision tenant schema
+await dominus.ddl.provisionTenantFromCategory("customer_acme", "healthcare");
+```
+
+### User Authentication (Portal)
+
+```typescript
+// User login
+const session = await dominus.portal.login(
+  "john@example.com",
+  "secret123",
+  "tenant-uuid"
+);
+
+// Get current user
+const me = await dominus.portal.me();
+
+// Get navigation (access-filtered)
+const nav = await dominus.portal.getNavigation();
+
+// Profile & preferences
+await dominus.portal.updatePreferences({
+  theme: "dark",
+  timezone: "America/New_York"
+});
+
+// Logout
+await dominus.portal.logout();
+```
+
+### Email Delivery (Courier)
+
+```typescript
+// Send email via Postmark template
+const result = await dominus.courier.send(
+  "welcome",
+  "user@example.com",
+  "noreply@myapp.com",
+  { name: "John", product_name: "My App" }
+);
+
+// Convenience methods
+await dominus.courier.sendPasswordReset(
+  "user@example.com",
+  "noreply@myapp.com",
+  {
+    name: "John",
+    resetUrl: "https://myapp.com/reset?token=abc",
+    productName: "My App"
+  }
+);
+```
+
+## Error Handling
+
+```typescript
+import {
+  dominus,
+  DominusError,
+  AuthenticationError,
+  AuthorizationError,
+  NotFoundError,
+  ValidationError,
+  SecureTableError,
+} from '@carebridge/dominus-sdk';
+
+try {
+  const user = await dominus.auth.getUser("invalid-id");
+} catch (error) {
+  if (error instanceof NotFoundError) {
+    console.log(`User not found: ${error.message}`);
+  } else if (error instanceof SecureTableError) {
+    console.log("Secure table requires 'reason' and 'actor' parameters");
+  } else if (error instanceof DominusError) {
+    console.log(`Error ${error.statusCode}: ${error.message}`);
+    if (error.details) {
+      console.log(`Details: ${JSON.stringify(error.details)}`);
+    }
+  }
+}
+```
+
+### Error Types
+
+| Error | Status | Description |
+|-------|--------|-------------|
+| `AuthenticationError` | 401 | Invalid or missing token |
+| `AuthorizationError` | 403 | Insufficient permissions |
+| `NotFoundError` | 404 | Resource not found |
+| `ValidationError` | 400 | Invalid request data |
+| `ConflictError` | 409 | Duplicate or version conflict |
+| `ServiceError` | 5xx | Backend service error |
+| `SecureTableError` | 403 | Missing reason for secure table |
+| `ConnectionError` | - | Network connection failed |
+| `TimeoutError` | 504 | Request timed out |
+
+## Configuration
+
+### Environment Variables
+
+```bash
+# Required: PSK token for authentication
+export DOMINUS_TOKEN="your-psk-token"
+```
+
+### Token Resolution
+
+The SDK resolves the authentication token from the `DOMINUS_TOKEN` environment variable.
+
+## Architecture
+
+```
+┌─────────────────┐
+│  Your App       │
+│  (Next.js API)  │
+└────────┬────────┘
+         │ await dominus.db.query(...)
+         ▼
+┌─────────────────┐
+│  Dominus SDK    │  ← JWT caching, circuit breaker, retries
+│  (this package) │
+└────────┬────────┘
+         │ HTTPS (base64-encoded JSON)
+         ▼
+┌─────────────────────────────────┐
+│  Dominus Orchestrator           │
+│  (Cloud Run FastAPI backend)    │
+│                                 │
+│  ┌─────────┬─────────┬────────┐ │
+│  │ Warden  │Guardian │Archivist│ │
+│  │ Scribe  │ Smith   │Whisperer│ │
+│  │ Herald  │ Portal  │ Courier │ │
+│  └─────────┴─────────┴────────┘ │
+└─────────────────────────────────┘
+```
+
+## Next.js Integration
+
+```typescript
+// app/api/users/route.ts
+import { dominus } from 'dominus-sdk-nodejs';
+import { NextRequest, NextResponse } from 'next/server';
+
+export async function GET(request: NextRequest) {
+  try {
+    const users = await dominus.db.query("users", {
+      filters: { status: "active" },
+      limit: 50
+    });
+    return NextResponse.json(users);
+  } catch (error) {
+    return NextResponse.json(
+      { error: "Failed to fetch users" },
+      { status: 500 }
+    );
+  }
+}
+```
+
+## Dependencies
+
+- `bcryptjs` - Password hashing
+
+## Version
+
+**v1.0.0** - Initial release with full namespace API
+
+## License
+
+Proprietary - CareBridge Systems

package/dist/index.d.ts

@@ -0,0 +1,114 @@
+/**
+ * CB Dominus SDK for Node.js
+ *
+ * Ultra-flat async SDK for CareBridge Services.
+ *
+ * Usage:
+ *     import { dominus } from 'dominus-sdk-nodejs';
+ *
+ *     // Secrets
+ *     const value = await dominus.secrets.get("DB_URL");
+ *     await dominus.secrets.upsert("KEY", "value");
+ *
+ *     // Database
+ *     const tables = await dominus.db.tables();
+ *     const users = await dominus.db.query("users", { filters: { status: "active" } });
+ *     await dominus.db.insert("users", { name: "John" });
+ *
+ *     // Redis
+ *     await dominus.redis.set("key", "value", { ttl: 3600 });
+ *     const cached = await dominus.redis.get("key");
+ *
+ *     // Files
+ *     const result = await dominus.files.upload(buffer, "report.pdf", { category: "reports" });
+ *     const download = await dominus.files.download({ id: result.id });
+ *
+ *     // Auth
+ *     const users = await dominus.auth.listUsers();
+ *     await dominus.auth.addUser({ username: "john", password: "secret" });
+ *
+ *     // DDL
+ *     await dominus.ddl.createTable("orders", [{ name: "id", type: "UUID" }]);
+ *
+ *     // Logs
+ *     await dominus.logs.info("User logged in", { user_id: "123" });
+ *
+ *     // Portal
+ *     const session = await dominus.portal.login("user@example.com", "password", "tenant-id");
+ *
+ *     // Courier
+ *     await dominus.courier.sendWelcome("user@example.com", "noreply@app.com", { name: "John", productName: "MyApp" });
+ *
+ *     // Open
+ *     const dsn = await dominus.open.dsn();
+ *
+ *     // Health
+ *     const status = await dominus.health.check();
+ *
+ * Configuration:
+ *     Set DOMINUS_TOKEN environment variable with your PSK token.
+ */
+import { SecretsNamespace } from './namespaces/secrets.js';
+import { DbNamespace } from './namespaces/db.js';
+import { RedisNamespace } from './namespaces/redis.js';
+import { FilesNamespace } from './namespaces/files.js';
+import { AuthNamespace } from './namespaces/auth.js';
+import { DdlNamespace } from './namespaces/ddl.js';
+import { LogsNamespace } from './namespaces/logs.js';
+import { PortalNamespace } from './namespaces/portal.js';
+import { CourierNamespace } from './namespaces/courier.js';
+import { OpenNamespace } from './namespaces/open.js';
+import { HealthNamespace } from './namespaces/health.js';
+export { DominusError, AuthenticationError, AuthorizationError, NotFoundError, ValidationError, ConflictError, ServiceError, ConnectionError, TimeoutError, SecureTableError, } from './lib/errors.js';
+export type { DominusClient } from './lib/client.js';
+export type { Secret, UpsertResult } from './namespaces/secrets.js';
+export type { QueryOptions, QueryResult, TableInfo, ColumnInfo } from './namespaces/db.js';
+export type { SetResult, GetResult, ListResult as RedisListResult, SetnxResult, IncrResult, HsetResult, HgetallResult } from './namespaces/redis.js';
+export type { UploadResult, DownloadResult, FetchResult, ListResult, FileInfo } from './namespaces/files.js';
+export type { ColumnDefinition } from './namespaces/ddl.js';
+export type { LogContext, LogEntry, BatchResult } from './namespaces/logs.js';
+export type { Session } from './namespaces/portal.js';
+export type { SendResult } from './namespaces/courier.js';
+export type { HealthStatus } from './namespaces/health.js';
+/**
+ * Main Dominus SDK class.
+ *
+ * Provides namespace-based access to all Dominus services.
+ */
+export declare class Dominus {
+    private _client;
+    /** Secrets management (Warden) */
+    readonly secrets: SecretsNamespace;
+    /** Database CRUD operations (Scribe) */
+    readonly db: DbNamespace;
+    /** Redis caching operations (Whisperer) */
+    readonly redis: RedisNamespace;
+    /** File storage operations (Archivist) */
+    readonly files: FilesNamespace;
+    /** Authentication & authorization (Guardian) */
+    readonly auth: AuthNamespace;
+    /** Schema DDL & migrations (Smith) */
+    readonly ddl: DdlNamespace;
+    /** Structured logging (Herald) */
+    readonly logs: LogsNamespace;
+    /** User authentication & sessions (Portal) */
+    readonly portal: PortalNamespace;
+    /** Email delivery (Courier) */
+    readonly courier: CourierNamespace;
+    /** Direct database access (Scribe Open) */
+    readonly open: OpenNamespace;
+    /** Health checks */
+    readonly health: HealthNamespace;
+    constructor();
+    /**
+     * Get a secret value (shortcut for dominus.secrets.get).
+     */
+    get(key: string): Promise<unknown>;
+    /**
+     * Create or update a secret (shortcut for dominus.secrets.upsert).
+     */
+    upsert(key: string, value: string, comment?: string): Promise<import("./namespaces/secrets.js").UpsertResult>;
+}
+export declare const dominus: Dominus;
+export default dominus;
+//# sourceMappingURL=index.d.ts.map

package/dist/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GAiDG;AAGH,OAAO,EAAE,gBAAgB,EAAE,MAAM,yBAAyB,CAAC;AAC3D,OAAO,EAAE,WAAW,EAAE,MAAM,oBAAoB,CAAC;AACjD,OAAO,EAAE,cAAc,EAAE,MAAM,uBAAuB,CAAC;AACvD,OAAO,EAAE,cAAc,EAAE,MAAM,uBAAuB,CAAC;AACvD,OAAO,EAAE,aAAa,EAAE,MAAM,sBAAsB,CAAC;AACrD,OAAO,EAAE,YAAY,EAAE,MAAM,qBAAqB,CAAC;AACnD,OAAO,EAAE,aAAa,EAAE,MAAM,sBAAsB,CAAC;AACrD,OAAO,EAAE,eAAe,EAAE,MAAM,wBAAwB,CAAC;AACzD,OAAO,EAAE,gBAAgB,EAAE,MAAM,yBAAyB,CAAC;AAC3D,OAAO,EAAE,aAAa,EAAE,MAAM,sBAAsB,CAAC;AACrD,OAAO,EAAE,eAAe,EAAE,MAAM,wBAAwB,CAAC;AAGzD,OAAO,EACL,YAAY,EACZ,mBAAmB,EACnB,kBAAkB,EAClB,aAAa,EACb,eAAe,EACf,aAAa,EACb,YAAY,EACZ,eAAe,EACf,YAAY,EACZ,gBAAgB,GACjB,MAAM,iBAAiB,CAAC;AAGzB,YAAY,EAAE,aAAa,EAAE,MAAM,iBAAiB,CAAC;AACrD,YAAY,EAAE,MAAM,EAAE,YAAY,EAAE,MAAM,yBAAyB,CAAC;AACpE,YAAY,EAAE,YAAY,EAAE,WAAW,EAAE,SAAS,EAAE,UAAU,EAAE,MAAM,oBAAoB,CAAC;AAC3F,YAAY,EAAE,SAAS,EAAE,SAAS,EAAE,UAAU,IAAI,eAAe,EAAE,WAAW,EAAE,UAAU,EAAE,UAAU,EAAE,aAAa,EAAE,MAAM,uBAAuB,CAAC;AACrJ,YAAY,EAAE,YAAY,EAAE,cAAc,EAAE,WAAW,EAAE,UAAU,EAAE,QAAQ,EAAE,MAAM,uBAAuB,CAAC;AAC7G,YAAY,EAAE,gBAAgB,EAAE,MAAM,qBAAqB,CAAC;AAC5D,YAAY,EAAE,UAAU,EAAE,QAAQ,EAAE,WAAW,EAAE,MAAM,sBAAsB,CAAC;AAC9E,YAAY,EAAE,OAAO,EAAE,MAAM,wBAAwB,CAAC;AACtD,YAAY,EAAE,UAAU,EAAE,MAAM,yBAAyB,CAAC;AAC1D,YAAY,EAAE,YAAY,EAAE,MAAM,wBAAwB,CAAC;AAE3D;;;;GAIG;AACH,qBAAa,OAAO;IAClB,OAAO,CAAC,OAAO,CAAgB;IAE/B,kCAAkC;IAClC,SAAgB,OAAO,EAAE,gBAAgB,CAAC;IAE1C,wCAAwC;IACxC,SAAgB,EAAE,EAAE,WAAW,CAAC;IAEhC,2CAA2C;IAC3C,SAAgB,KAAK,EAAE,cAAc,CAAC;IAEtC,0CAA0C;IAC1C,SAAgB,KAAK,EAAE,cAAc,CAAC;IAEtC,gDAAgD;IAChD,SAAgB,IAAI,EAAE,aAAa,CAAC;IAEpC,sCAAsC;IACtC,SAAgB,GAAG,EAAE,YAAY,CAAC;IAElC,kCAAkC;IAClC,SAAgB,IAAI,EAAE,aAAa,CAAC;IAEpC,8CAA8C;IAC9C,SAAgB,MAAM,EAAE,eAAe,CAAC;IAExC,+BAA+B;IAC/B,SAAgB,OAAO,EAAE,gBAAgB,CAAC;IAE1C,2CAA2C;IAC3C,SAAgB,IAAI,EAAE,aAAa,CAAC;IAEpC,oBAAoB;IACpB,SAAgB,MAAM,EAAE,eAAe,CAAC;;IAuBxC;;OAEG;IACG,GAAG,CAAC,GAAG,EAAE,MAAM,GAAG,OAAO,CAAC,OAAO,CAAC;IAIxC;;OAEG;IACG,MAAM,CAAC,GAAG,EAAE,MAAM,EAAE,KAAK,EAAE,MAAM,EAAE,OAAO,CAAC,EAAE,MAAM;CAG1D;AAGD,eAAO,MAAM,OAAO,SAAgB,CAAC;AAGrC,eAAe,OAAO,CAAC"}

package/dist/index.js

@@ -0,0 +1,129 @@
+/**
+ * CB Dominus SDK for Node.js
+ *
+ * Ultra-flat async SDK for CareBridge Services.
+ *
+ * Usage:
+ *     import { dominus } from 'dominus-sdk-nodejs';
+ *
+ *     // Secrets
+ *     const value = await dominus.secrets.get("DB_URL");
+ *     await dominus.secrets.upsert("KEY", "value");
+ *
+ *     // Database
+ *     const tables = await dominus.db.tables();
+ *     const users = await dominus.db.query("users", { filters: { status: "active" } });
+ *     await dominus.db.insert("users", { name: "John" });
+ *
+ *     // Redis
+ *     await dominus.redis.set("key", "value", { ttl: 3600 });
+ *     const cached = await dominus.redis.get("key");
+ *
+ *     // Files
+ *     const result = await dominus.files.upload(buffer, "report.pdf", { category: "reports" });
+ *     const download = await dominus.files.download({ id: result.id });
+ *
+ *     // Auth
+ *     const users = await dominus.auth.listUsers();
+ *     await dominus.auth.addUser({ username: "john", password: "secret" });
+ *
+ *     // DDL
+ *     await dominus.ddl.createTable("orders", [{ name: "id", type: "UUID" }]);
+ *
+ *     // Logs
+ *     await dominus.logs.info("User logged in", { user_id: "123" });
+ *
+ *     // Portal
+ *     const session = await dominus.portal.login("user@example.com", "password", "tenant-id");
+ *
+ *     // Courier
+ *     await dominus.courier.sendWelcome("user@example.com", "noreply@app.com", { name: "John", productName: "MyApp" });
+ *
+ *     // Open
+ *     const dsn = await dominus.open.dsn();
+ *
+ *     // Health
+ *     const status = await dominus.health.check();
+ *
+ * Configuration:
+ *     Set DOMINUS_TOKEN environment variable with your PSK token.
+ */
+import { getClient } from './lib/client.js';
+import { SecretsNamespace } from './namespaces/secrets.js';
+import { DbNamespace } from './namespaces/db.js';
+import { RedisNamespace } from './namespaces/redis.js';
+import { FilesNamespace } from './namespaces/files.js';
+import { AuthNamespace } from './namespaces/auth.js';
+import { DdlNamespace } from './namespaces/ddl.js';
+import { LogsNamespace } from './namespaces/logs.js';
+import { PortalNamespace } from './namespaces/portal.js';
+import { CourierNamespace } from './namespaces/courier.js';
+import { OpenNamespace } from './namespaces/open.js';
+import { HealthNamespace } from './namespaces/health.js';
+// Re-export errors for consumers
+export { DominusError, AuthenticationError, AuthorizationError, NotFoundError, ValidationError, ConflictError, ServiceError, ConnectionError, TimeoutError, SecureTableError, } from './lib/errors.js';
+/**
+ * Main Dominus SDK class.
+ *
+ * Provides namespace-based access to all Dominus services.
+ */
+export class Dominus {
+    _client;
+    /** Secrets management (Warden) */
+    secrets;
+    /** Database CRUD operations (Scribe) */
+    db;
+    /** Redis caching operations (Whisperer) */
+    redis;
+    /** File storage operations (Archivist) */
+    files;
+    /** Authentication & authorization (Guardian) */
+    auth;
+    /** Schema DDL & migrations (Smith) */
+    ddl;
+    /** Structured logging (Herald) */
+    logs;
+    /** User authentication & sessions (Portal) */
+    portal;
+    /** Email delivery (Courier) */
+    courier;
+    /** Direct database access (Scribe Open) */
+    open;
+    /** Health checks */
+    health;
+    constructor() {
+        this._client = getClient();
+        // Initialize all namespaces
+        this.secrets = new SecretsNamespace(this._client);
+        this.db = new DbNamespace(this._client);
+        this.redis = new RedisNamespace(this._client);
+        this.files = new FilesNamespace(this._client);
+        this.auth = new AuthNamespace(this._client);
+        this.ddl = new DdlNamespace(this._client);
+        this.logs = new LogsNamespace(this._client);
+        this.portal = new PortalNamespace(this._client);
+        this.courier = new CourierNamespace(this._client);
+        this.open = new OpenNamespace(this._client);
+        this.health = new HealthNamespace(this._client);
+    }
+    // ========================================
+    // ROOT-LEVEL SHORTCUTS (convenience)
+    // ========================================
+    /**
+     * Get a secret value (shortcut for dominus.secrets.get).
+     */
+    async get(key) {
+        return this.secrets.get(key);
+    }
+    /**
+     * Create or update a secret (shortcut for dominus.secrets.upsert).
+     */
+    async upsert(key, value, comment) {
+        return this.secrets.upsert(key, value, comment);
+    }
+}
+// Create and export singleton instance
+export const dominus = new Dominus();
+// Default export for ESM compatibility
+export default dominus;
+//# sourceMappingURL=index.js.map

package/dist/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GAiDG;AAEH,OAAO,EAAE,SAAS,EAAiB,MAAM,iBAAiB,CAAC;AAC3D,OAAO,EAAE,gBAAgB,EAAE,MAAM,yBAAyB,CAAC;AAC3D,OAAO,EAAE,WAAW,EAAE,MAAM,oBAAoB,CAAC;AACjD,OAAO,EAAE,cAAc,EAAE,MAAM,uBAAuB,CAAC;AACvD,OAAO,EAAE,cAAc,EAAE,MAAM,uBAAuB,CAAC;AACvD,OAAO,EAAE,aAAa,EAAE,MAAM,sBAAsB,CAAC;AACrD,OAAO,EAAE,YAAY,EAAE,MAAM,qBAAqB,CAAC;AACnD,OAAO,EAAE,aAAa,EAAE,MAAM,sBAAsB,CAAC;AACrD,OAAO,EAAE,eAAe,EAAE,MAAM,wBAAwB,CAAC;AACzD,OAAO,EAAE,gBAAgB,EAAE,MAAM,yBAAyB,CAAC;AAC3D,OAAO,EAAE,aAAa,EAAE,MAAM,sBAAsB,CAAC;AACrD,OAAO,EAAE,eAAe,EAAE,MAAM,wBAAwB,CAAC;AAEzD,iCAAiC;AACjC,OAAO,EACL,YAAY,EACZ,mBAAmB,EACnB,kBAAkB,EAClB,aAAa,EACb,eAAe,EACf,aAAa,EACb,YAAY,EACZ,eAAe,EACf,YAAY,EACZ,gBAAgB,GACjB,MAAM,iBAAiB,CAAC;AAczB;;;;GAIG;AACH,MAAM,OAAO,OAAO;IACV,OAAO,CAAgB;IAE/B,kCAAkC;IAClB,OAAO,CAAmB;IAE1C,wCAAwC;IACxB,EAAE,CAAc;IAEhC,2CAA2C;IAC3B,KAAK,CAAiB;IAEtC,0CAA0C;IAC1B,KAAK,CAAiB;IAEtC,gDAAgD;IAChC,IAAI,CAAgB;IAEpC,sCAAsC;IACtB,GAAG,CAAe;IAElC,kCAAkC;IAClB,IAAI,CAAgB;IAEpC,8CAA8C;IAC9B,MAAM,CAAkB;IAExC,+BAA+B;IACf,OAAO,CAAmB;IAE1C,2CAA2C;IAC3B,IAAI,CAAgB;IAEpC,oBAAoB;IACJ,MAAM,CAAkB;IAExC;QACE,IAAI,CAAC,OAAO,GAAG,SAAS,EAAE,CAAC;QAE3B,4BAA4B;QAC5B,IAAI,CAAC,OAAO,GAAG,IAAI,gBAAgB,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC;QAClD,IAAI,CAAC,EAAE,GAAG,IAAI,WAAW,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC;QACxC,IAAI,CAAC,KAAK,GAAG,IAAI,cAAc,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC;QAC9C,IAAI,CAAC,KAAK,GAAG,IAAI,cAAc,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC;QAC9C,IAAI,CAAC,IAAI,GAAG,IAAI,aAAa,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC;QAC5C,IAAI,CAAC,GAAG,GAAG,IAAI,YAAY,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC;QAC1C,IAAI,CAAC,IAAI,GAAG,IAAI,aAAa,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC;QAC5C,IAAI,CAAC,MAAM,GAAG,IAAI,eAAe,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC;QAChD,IAAI,CAAC,OAAO,GAAG,IAAI,gBAAgB,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC;QAClD,IAAI,CAAC,IAAI,GAAG,IAAI,aAAa,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC;QAC5C,IAAI,CAAC,MAAM,GAAG,IAAI,eAAe,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC;IAClD,CAAC;IAED,2CAA2C;IAC3C,qCAAqC;IACrC,2CAA2C;IAE3C;;OAEG;IACH,KAAK,CAAC,GAAG,CAAC,GAAW;QACnB,OAAO,IAAI,CAAC,OAAO,CAAC,GAAG,CAAC,GAAG,CAAC,CAAC;IAC/B,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,MAAM,CAAC,GAAW,EAAE,KAAa,EAAE,OAAgB;QACvD,OAAO,IAAI,CAAC,OAAO,CAAC,MAAM,CAAC,GAAG,EAAE,KAAK,EAAE,OAAO,CAAC,CAAC;IAClD,CAAC;CACF;AAED,uCAAuC;AACvC,MAAM,CAAC,MAAM,OAAO,GAAG,IAAI,OAAO,EAAE,CAAC;AAErC,uCAAuC;AACvC,eAAe,OAAO,CAAC"}

package/dist/lib/client.d.ts

@@ -0,0 +1,32 @@
+/**
+ * Core HTTP Client for Dominus SDK
+ *
+ * Handles JWT management, base64 encoding/decoding, retries, and circuit breaker.
+ */
+export interface RequestOptions {
+    endpoint: string;
+    method?: 'GET' | 'POST' | 'PUT' | 'DELETE';
+    body?: Record<string, unknown>;
+}
+/**
+ * Main Dominus client class
+ */
+export declare class DominusClient {
+    private token;
+    private baseUrl;
+    constructor(hardcodedToken?: string);
+    /**
+     * Validate token on first use
+     */
+    private validate;
+    /**
+     * Make an authenticated request to the orchestrator
+     */
+    request<T = unknown>(options: RequestOptions): Promise<T>;
+    /**
+     * Health check endpoint
+     */
+    healthCheck(): Promise<Record<string, unknown>>;
+}
+export declare function getClient(hardcodedToken?: string): DominusClient;
+//# sourceMappingURL=client.d.ts.map