ibm-cloud-sdk-core 5.0.1 → 5.1.0

package/ibm-cloud-sdk-core.d.ts

@@ -7,24 +7,21 @@ import { OutgoingHttpHeaders } from 'http';
 import { Stream } from 'stream';
 
 /**
- * Checks for at least one of two elements being defined.
+ * Checks for at least one of the given elements being defined.
  *
- * @param a - the first object
- * @param b - the second object
- * @returns true if a or b is defined; false if both are undefined
+ * @param args - The spread of arguments to check
+ * @returns true if one or more are defined; false if all are undefined
  */
-export declare function atLeastOne(a: any, b: any): boolean;
+export declare function atLeastOne(...args: any): boolean;
 
 /**
- * Verifies that both properties are not specified.
+ * Verifies that no more than one of the given elements are defined.
+ * Returns true if one or none are defined, and false otherwise.
  *
- * @param a - The first object
- * @param b - The second object
- *
- * @returns  false if a and b are both defined, true otherwise
-
+ * @param args - The spread of arguments to check
+ * @returns  false if more than one elements are defined, true otherwise
  */
-export declare function atMostOne(a: any, b: any): boolean;
+export declare function atMostOne(...args: any): boolean;
 
 /**
  * The request object containing the headers property that
@@ -49,6 +46,7 @@ export declare class Authenticator implements AuthenticatorInterface {
     static AUTHTYPE_BASIC: string;
     static AUTHTYPE_BEARERTOKEN: string;
     static AUTHTYPE_IAM: string;
+    static AUTHTYPE_IAM_ASSUME: string;
     static AUTHTYPE_CONTAINER: string;
     static AUTHTYPE_CP4D: string;
     static AUTHTYPE_NOAUTH: string;
@@ -384,7 +382,7 @@ export declare class CloudPakForDataAuthenticator extends TokenRequestBasedAuthe
 }
 
 /**
- * (C) Copyright IBM Corp. 2019, 2022.
+ * (C) Copyright IBM Corp. 2019, 2024.
  *
  * Licensed under the Apache License, Version 2.0 (the "License");
  * you may not use this file except in compliance with the License.
@@ -478,6 +476,12 @@ export declare class ContainerAuthenticator extends IamRequestBasedAuthenticator
      * @returns a string that indicates the authenticator's type
      */
     authenticationType(): string;
+    /**
+     * Return the most recently stored refresh token.
+     *
+     * @returns the refresh token string
+     */
+    getRefreshToken(): string;
 }
 
 /**
@@ -525,6 +529,12 @@ export declare class ContainerTokenManager extends IamRequestBasedTokenManager {
      * @param iamProfileId - the ID of the IAM trusted profile
      */
     setIamProfileId(iamProfileId: string): void;
+    /**
+     * Returns the most recently stored refresh token.
+     *
+     * @returns the refresh token
+     */
+    getRefreshToken(): string;
     /**
      * Request an IAM token using a compute resource token.
      */
@@ -687,6 +697,126 @@ export declare function getNewLogger(moduleName: string): SDKLogger;
  */
 export declare function getQueryParam(urlStr: string, param: string): string;
 
+/**
+ * The IamAssumeAuthenticator obtains an IAM access token using the IAM "get-token"
+ * operation's "assume" grant type. The authenticator obtains an initial IAM access
+ * token from a user-supplied apikey, then exchanges this initial IAM access token
+ * for another IAM access token that has "assumed the identity" of the specified
+ * trusted profile.
+ *
+ * The bearer token will be sent as an Authorization header in the form:
+ *
+ *      Authorization: Bearer \<bearer-token\>
+ */
+export declare class IamAssumeAuthenticator extends IamRequestBasedAuthenticatorImmutable {
+    protected tokenManager: IamAssumeTokenManager;
+    /**
+     *
+     * Create a new IamAssumeAuthenticator instance.
+     *
+     * @param options - Configuration options for IAM authentication.
+     * This should be an object containing these fields:
+     * - apikey: (required) the IAM api key for initial token request
+     * - iamProfileId: (optional) the ID of the trusted profile to use
+     * - iamProfileCrn: (optional) the CRN of the trusted profile to use
+     * - iamProfileName: (optional) the name of the trusted profile to use (must be specified with iamAccountId)
+     * - iamAccountId: (optional) the ID of the account the trusted profile is in (must be specified with iamProfileName)
+     * - url: (optional) the endpoint URL for the token service
+     * - disableSslVerification: (optional) a flag that indicates whether verification of the token server's SSL certificate
+     * should be disabled or not
+     * - headers: (optional) a set of HTTP headers to be sent with each request to the token service
+     * - clientId: (optional) the "clientId" and "clientSecret" fields are used to form a Basic
+     * Authorization header to be included in each request to the token service
+     * - clientSecret: (optional) the "clientId" and "clientSecret" fields are used to form a Basic
+     * Authorization header to be included in each request to the token service
+     * - scope: (optional) the "scope" parameter to use when fetching the bearer token from the token service
+     *
+     * @throws Error: the configuration options are not valid.
+     */
+    constructor(options: Options_14);
+    /**
+     * Returns the authenticator's type ('iamAssume').
+     *
+     * @returns a string that indicates the authenticator's type
+     */
+    authenticationType(): string;
+}
+
+/**
+ * The IamAssumeTokenManager takes an api key, along with trusted profile information, and performs
+ * the necessary interactions with the IAM token service to obtain and store a suitable bearer token
+ * that "assumes" the identify of the trusted profile.
+ */
+export declare class IamAssumeTokenManager extends IamRequestBasedTokenManager {
+    protected requiredOptions: string[];
+    private iamProfileId;
+    private iamProfileCrn;
+    private iamProfileName;
+    private iamAccountId;
+    private iamDelegate;
+    /**
+     *
+     * Create a new IamAssumeTokenManager instance.
+     *
+     * @param options - Configuration options.
+     * This should be an object containing these fields:
+     * - apikey: (required) the IAM api key
+     * - iamProfileId: (optional) the ID of the trusted profile to use
+     * - iamProfileCrn: (optional) the CRN of the trusted profile to use
+     * - iamProfileName: (optional) the name of the trusted profile to use (must be specified with iamAccountId)
+     * - iamAccountId: (optional) the ID of the account the trusted profile is in (must be specified with iamProfileName)
+     * - url: (optional) the endpoint URL for the IAM token service (default value: "https://iam.cloud.ibm.com")
+     * - disableSslVerification: (optional) a flag that indicates whether verification of the token server's SSL certificate
+     * should be disabled or not
+     * - headers: (optional) a set of HTTP headers to be sent with each request to the token service
+     * - clientId: (optional) the "clientId" and "clientSecret" fields are used to form a Basic
+     * Authorization header to be included in each request to the token service
+     * - clientSecret: (optional) the "clientId" and "clientSecret" fields are used to form a Basic
+     * Authorization header to be included in each request to the token service
+     * - scope: (optional) the "scope" parameter to use when fetching the bearer token from the token service
+     *
+     * @throws Error: the configuration options are not valid.
+     */
+    constructor(options: Options_13);
+    /**
+     * Request an IAM token using a standard access token and a trusted profile.
+     */
+    protected requestToken(): Promise<any>;
+    /**
+     * Extend this method from the parent class to erase the refresh token from
+     * the class - we do not want to expose it for IAM Assume authentication.
+     *
+     * @param tokenResponse - the response object from JWT service request
+     */
+    protected saveTokenInfo(tokenResponse: any): void;
+    /**
+     * Sets the IAM "scope" value.
+     * This value is sent as the "scope" form parameter in the IAM delegate request.
+     *
+     * @param scope - a space-separated string that contains one or more scope names
+     */
+    setScope(scope: string): void;
+    /**
+     * Sets the IAM "clientId" and "clientSecret" values for the IAM delegate.
+     *
+     * @param clientId - the client id.
+     * @param clientSecret - the client secret.
+     */
+    setClientIdAndSecret(clientId: string, clientSecret: string): void;
+    /**
+     * Sets the "disableSslVerification" property for the IAM delegate.
+     *
+     * @param value - the new value for the disableSslVerification property
+     */
+    setDisableSslVerification(value: boolean): void;
+    /**
+     * Sets the headers to be included in the IAM delegate's requests.
+     *
+     * @param headers - the set of headers to send with each request to the token server
+     */
+    setHeaders(headers: OutgoingHttpHeaders): void;
+}
+
 /**
  * The IamAuthenticator will use the user-supplied `apikey`
  * value to obtain a bearer token from a token server.  When the bearer token
@@ -728,6 +858,12 @@ export declare class IamAuthenticator extends IamRequestBasedAuthenticator {
      * @returns a string that indicates the authenticator's type
      */
     authenticationType(): string;
+    /**
+     * Return the most recently stored refresh token.
+     *
+     * @returns the refresh token string
+     */
+    getRefreshToken(): string;
 }
 
 /**
@@ -735,14 +871,49 @@ export declare class IamAuthenticator extends IamRequestBasedAuthenticator {
  * for authenticators that interact with the IAM token service. This authenticator
  * is not meant for use on its own.
  */
-export declare class IamRequestBasedAuthenticator extends TokenRequestBasedAuthenticator {
+export declare class IamRequestBasedAuthenticator extends IamRequestBasedAuthenticatorImmutable {
+    /**
+     * Setter for the mutually inclusive "clientId" and the "clientSecret" fields.
+     * @param clientId - the "clientId" value used to form a Basic Authorization header for IAM token requests
+     * @param clientSecret - the "clientSecret" value used to form a Basic Authorization header for IAM token requests
+     */
+    setClientIdAndSecret(clientId: string, clientSecret: string): void;
+    /**
+     * Setter for the "scope" parameter to use when fetching the bearer token from the IAM token server.
+     * @param scope - (optional) a space-separated string that specifies one or more scopes to be
+     * associated with IAM token requests
+     */
+    setScope(scope: string): void;
+    /**
+     * Set the flag that indicates whether verification of the server's SSL
+     * certificate should be disabled or not.
+     *
+     * @param value - a flag that indicates whether verification of the
+     *   token server's SSL certificate should be disabled or not.
+     */
+    setDisableSslVerification(value: boolean): void;
+    /**
+     * Set headers.
+     *
+     * @param headers - a set of HTTP headers to be sent with each outbound token server request.
+     * Overwrites previous default headers.
+     */
+    setHeaders(headers: OutgoingHttpHeaders): void;
+}
+
+/**
+ * The IamRequestBasedAuthenticatorImmutable provides shared configuration and functionality
+ * for authenticators that interact with the IAM token service. This authenticator
+ * is not meant for use on its own.
+ */
+declare class IamRequestBasedAuthenticatorImmutable extends TokenRequestBasedAuthenticatorImmutable {
     protected tokenManager: IamRequestBasedTokenManager;
     protected clientId: string;
     protected clientSecret: string;
     protected scope: string;
     /**
      *
-     * Create a new IamRequestBasedAuthenticator instance.
+     * Create a new IamRequestBasedAuthenticatorImmutable instance.
      *
      * @param options - Configuration options for IAM authentication.
      * This should be an object containing these fields:
@@ -759,24 +930,6 @@ export declare class IamRequestBasedAuthenticator extends TokenRequestBasedAuthe
      * @throws Error: the configuration options are not valid.
      */
     constructor(options: IamRequestOptions_2);
-    /**
-     * Setter for the mutually inclusive "clientId" and the "clientSecret" fields.
-     * @param clientId - the "clientId" value used to form a Basic Authorization header for IAM token requests
-     * @param clientSecret - the "clientSecret" value used to form a Basic Authorization header for IAM token requests
-     */
-    setClientIdAndSecret(clientId: string, clientSecret: string): void;
-    /**
-     * Setter for the "scope" parameter to use when fetching the bearer token from the IAM token server.
-     * @param scope - (optional) a space-separated string that specifies one or more scopes to be
-     * associated with IAM token requests
-     */
-    setScope(scope: string): void;
-    /**
-     * Return the most recently stored refresh token.
-     *
-     * @returns the refresh token string
-     */
-    getRefreshToken(): string;
 }
 
 /**
@@ -787,9 +940,9 @@ export declare class IamRequestBasedAuthenticator extends TokenRequestBasedAuthe
  * class be extended with specific implementations.
  */
 export declare class IamRequestBasedTokenManager extends JwtTokenManager {
-    private clientId;
-    private clientSecret;
-    private scope;
+    protected clientId: string;
+    protected clientSecret: string;
+    protected scope: string;
     protected refreshToken: string;
     protected formData: any;
     /**
@@ -829,12 +982,6 @@ export declare class IamRequestBasedTokenManager extends JwtTokenManager {
      * @param clientSecret - the client secret.
      */
     setClientIdAndSecret(clientId: string, clientSecret: string): void;
-    /**
-     * Returns the most recently stored refresh token.
-     *
-     * @returns the refresh token
-     */
-    getRefreshToken(): string;
     /**
      * Extend this method from the parent class to extract the refresh token from
      * the request and save it.
@@ -886,8 +1033,8 @@ declare interface IamRequestOptions_2 extends BaseOptions {
 }
 
 /**
- * The IAMTokenManager takes an api key and performs the necessary interactions with
- * the IAM token service to obtain and store a suitable bearer token. Additionally, the IAMTokenManager
+ * The IamTokenManager takes an api key and performs the necessary interactions with
+ * the IAM token service to obtain and store a suitable bearer token. Additionally, the IamTokenManager
  * will retrieve bearer tokens via basic auth using a supplied "clientId" and "clientSecret" pair.
  */
 export declare class IamTokenManager extends IamRequestBasedTokenManager {
@@ -913,6 +1060,12 @@ export declare class IamTokenManager extends IamRequestBasedTokenManager {
      * @throws Error: the configuration options are not valid.
      */
     constructor(options: Options_5);
+    /**
+     * Returns the most recently stored refresh token.
+     *
+     * @returns the refresh token
+     */
+    getRefreshToken(): string;
 }
 
 export declare function isEmptyObject(obj: any): boolean;
@@ -1049,16 +1202,14 @@ export declare class NoAuthAuthenticator extends Authenticator {
 }
 
 /**
- * Checks for only one of two elements being defined.
- * Returns true if a is defined and b is undefined,
- * or vice versa. Returns false if both are defined
- * or both are undefined.
+ * Checks that exactly one of the arguments provided is defined.
+ * Returns true if one argument is defined. Returns false if no
+ * argument are defined or if 2 or more are defined.
  *
- * @param a - The first object
- * @param b - The second object
- * @returns true if and only if exactly one of a or b is defined
+ * @param args - The spread of arguments to check
+ * @returns true if and only if exactly one argument is defined
  */
-export declare function onlyOne(a: any, b: any): boolean;
+export declare function onlyOne(...args: any): boolean;
 
 /** Configuration options for basic authentication. */
 declare type Options = {
@@ -1094,6 +1245,37 @@ declare interface Options_12 extends BaseOptions {
     url: string;
 }
 
+/** Configuration options for IAM Assume token retrieval. */
+declare interface Options_13 extends IamRequestOptions {
+    apikey: string;
+    iamProfileId?: string;
+    iamProfileCrn?: string;
+    iamProfileName?: string;
+    iamAccountId?: string;
+}
+
+/** Configuration options for IAM Assume authentication. */
+declare interface Options_14 extends IamRequestOptions_2 {
+    /** The IAM api key */
+    apikey: string;
+    /**
+     * Specify exactly one of [iamProfileId, iamProfileCrn, or iamProfileName] to
+     * identify the trusted profile whose identity should be used. If iamProfileId
+     * or iamProfileCrn is used, the trusted profile must exist in the same account.
+     * If and only if iamProfileName is used, then iamAccountId must also be
+     * specified to indicate the account that contains the trusted profile.
+     */
+    iamProfileId?: string;
+    iamProfileCrn?: string;
+    iamProfileName?: string;
+    /**
+     * If and only if iamProfileName is used to specify the trusted profile, then
+     * iamAccountId must also be specified to indicate the account that contains
+     * the trusted profile.
+     */
+    iamAccountId?: string;
+}
+
 /** Configuration options for bearer authentication. */
 declare type Options_2 = {
     /** The bearer token to be added to requests. */
@@ -1230,6 +1412,42 @@ declare class RequestWrapper {
     private retryInterceptorId;
     private raxConfig;
     constructor(axiosOptions?: any);
+    /**
+     * Formats the specified Axios request for debug logging.
+     * @param request - the request to be logged
+     * @returns the string representation of the request
+     */
+    private formatAxiosRequest;
+    /**
+     * Formats the specified Axios response for debug logging.
+     * @param response - the response to be logged
+     * @returns the string representation of the response
+     */
+    private formatAxiosResponse;
+    /**
+     * Formats the specified Axios error for debug logging.
+     * @param error - the error to be logged
+     * @returns the string representation of the error
+     */
+    private formatAxiosError;
+    /**
+     * Formats 'headers' to be included in the debug output
+     * like this:
+     *    Accept: application/json
+     *    Content-Type: application/json
+     *    My-Header: my-value
+     *    ...
+     * @param headers - the headers associated with an Axios request or response
+     * @returns the formatted output to be included in the HTTP message traces
+     */
+    private formatAxiosHeaders;
+    /**
+     * Formats 'body' (either a string or object/array) to be included in the debug output
+     *
+     * @param body - a string, object or array that contains the request or response body
+     * @returns the formatted output to be included in the HTTP message traces
+     */
+    private formatAxiosBody;
     setCompressRequestData(setting: boolean): void;
     /**
      * Creates the request.
@@ -1251,6 +1469,12 @@ declare class RequestWrapper {
     private static getRaxConfig;
     enableRetries(retryOptions?: RetryOptions): void;
     disableRetries(): void;
+    /**
+     * Returns true iff the previously-failed request contained in "error" should be retried.
+     * @param error - an AxiosError instance that contains a previously-failed request
+     * @returns true iff the request should be retried
+     */
+    private static retryPolicy;
     private gzipRequestBody;
 }
 
@@ -1404,22 +1628,7 @@ export declare type TokenManagerOptions = {
  *
  *      Authorization: Bearer \<bearer-token\>
  */
-export declare class TokenRequestBasedAuthenticator extends Authenticator {
-    protected tokenManager: JwtTokenManager;
-    protected url: string;
-    protected headers: OutgoingHttpHeaders;
-    protected disableSslVerification: boolean;
-    /**
-     * Create a new TokenRequestBasedAuthenticator instance with an internal JwtTokenManager.
-     *
-     * @param options - Configuration options.
-     * This should be an object containing these fields:
-     * - url: (optional) the endpoint URL for the token service
-     * - disableSslVerification: (optional) a flag that indicates whether verification of the token server's SSL certificate
-     * should be disabled or not
-     * - headers: (optional) a set of HTTP headers to be sent with each request to the token service
-     */
-    constructor(options: BaseOptions);
+export declare class TokenRequestBasedAuthenticator extends TokenRequestBasedAuthenticatorImmutable {
     /**
      * Set the flag that indicates whether verification of the server's SSL
      * certificate should be disabled or not.
@@ -1435,6 +1644,35 @@ export declare class TokenRequestBasedAuthenticator extends Authenticator {
      * Overwrites previous default headers.
      */
     setHeaders(headers: OutgoingHttpHeaders): void;
+}
+
+/**
+ * Class for common functionality shared by token-request authenticators.
+ * Token-request authenticators use token managers to retrieve, store,
+ * and refresh tokens. Not intended to be used as stand-alone authenticator,
+ * but as base class to authenticators that have their own token manager
+ * implementations.
+ *
+ * The token will be added as an Authorization header in the form:
+ *
+ *      Authorization: Bearer \<bearer-token\>
+ */
+declare class TokenRequestBasedAuthenticatorImmutable extends Authenticator {
+    protected tokenManager: JwtTokenManager;
+    protected url: string;
+    protected headers: OutgoingHttpHeaders;
+    protected disableSslVerification: boolean;
+    /**
+     * Create a new TokenRequestBasedAuthenticatorImmutable instance with an internal JwtTokenManager.
+     *
+     * @param options - Configuration options.
+     * This should be an object containing these fields:
+     * - url: (optional) the endpoint URL for the token service
+     * - disableSslVerification: (optional) a flag that indicates whether verification of the token server's SSL certificate
+     * should be disabled or not
+     * - headers: (optional) a set of HTTP headers to be sent with each request to the token service
+     */
+    constructor(options: BaseOptions);
     /**
      * Adds bearer token information to "requestOptions". The bearer token information
      * will be set in the Authorization property of "requestOptions.headers" in the form:

package/lib/base-service.js

@@ -107,6 +107,7 @@ var BaseService = /** @class */ (function () {
     BaseService.prototype.setServiceUrl = function (url) {
         if (url) {
             this.baseOptions.serviceUrl = (0, helper_1.stripTrailingSlash)(url);
+            logger_1.default.debug("Set service URL: ".concat(this.baseOptions.serviceUrl));
         }
     };
     /**
@@ -181,6 +182,7 @@ var BaseService = /** @class */ (function () {
      * configuration.
      */
     BaseService.prototype.configureService = function (serviceName) {
+        logger_1.default.debug("Configuring BaseService instance with service name: ".concat(serviceName));
         if (!serviceName) {
             var err = 'Error configuring service. Service name is required.';
             logger_1.default.error(err);

package/lib/private-helpers.d.ts

@@ -0,0 +1,22 @@
+/**
+ * (C) Copyright IBM Corp. 2024.
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *      http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+/**
+ * Redacts secrets found in "input" so that the resulting string
+ * is suitable for debug logging.
+ * @param input - the string that potentially contains secrets
+ * @returns the input string with secrets replaced with "[redacted]"
+ */
+export declare function redactSecrets(input: string): string;

package/lib/private-helpers.js

@@ -0,0 +1,62 @@
+"use strict";
+/**
+ * (C) Copyright IBM Corp. 2024.
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *      http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.redactSecrets = void 0;
+// Keywords that should be redacted.
+var redactedKeywords = [
+    'apikey',
+    'api_key',
+    'passcode',
+    'password',
+    'token',
+    'aadClientId',
+    'aadClientSecret',
+    'auth',
+    'auth_provider_x509_cert_url',
+    'auth_uri',
+    'client_email',
+    'client_id',
+    'client_x509_cert_url',
+    'key',
+    'project_id',
+    'secret',
+    'subscriptionId',
+    'tenantId',
+    'thumbprint',
+    'token_uri',
+];
+var redactedTokens = redactedKeywords.join('|');
+// Pre-compiled regular expressions used by redactSecrets().
+var reAuthHeader = new RegExp("^(Authorization|X-Auth\\S*): .*$", 'gim');
+var rePropertySetting = new RegExp("(".concat(redactedTokens, ")=[^&]*(&|$)"), 'gi');
+var reJsonField = new RegExp("\"([^\"]*(".concat(redactedTokens, ")[^\"_]*)\":\\s*\"[^\\,]*\""), 'gi');
+// RedactSecrets() returns the input string with secrets redacted.
+/**
+ * Redacts secrets found in "input" so that the resulting string
+ * is suitable for debug logging.
+ * @param input - the string that potentially contains secrets
+ * @returns the input string with secrets replaced with "[redacted]"
+ */
+function redactSecrets(input) {
+    var redacted = '[redacted]';
+    var redactedString = input;
+    redactedString = redactedString.replace(reAuthHeader, "$1: ".concat(redacted));
+    redactedString = redactedString.replace(rePropertySetting, "$1=".concat(redacted, "$2"));
+    redactedString = redactedString.replace(reJsonField, "\"$1\":\"".concat(redacted, "\""));
+    return redactedString;
+}
+exports.redactSecrets = redactSecrets;

package/lib/request-wrapper.d.ts

@@ -1,5 +1,5 @@
 /**
- * (C) Copyright IBM Corp. 2014, 2023.
+ * (C) Copyright IBM Corp. 2014, 2024.
  *
  * Licensed under the Apache License, Version 2.0 (the "License");
  * you may not use this file except in compliance with the License.
@@ -33,6 +33,42 @@ export declare class RequestWrapper {
     private retryInterceptorId;
     private raxConfig;
     constructor(axiosOptions?: any);
+    /**
+     * Formats the specified Axios request for debug logging.
+     * @param request - the request to be logged
+     * @returns the string representation of the request
+     */
+    private formatAxiosRequest;
+    /**
+     * Formats the specified Axios response for debug logging.
+     * @param response - the response to be logged
+     * @returns the string representation of the response
+     */
+    private formatAxiosResponse;
+    /**
+     * Formats the specified Axios error for debug logging.
+     * @param error - the error to be logged
+     * @returns the string representation of the error
+     */
+    private formatAxiosError;
+    /**
+     * Formats 'headers' to be included in the debug output
+     * like this:
+     *    Accept: application/json
+     *    Content-Type: application/json
+     *    My-Header: my-value
+     *    ...
+     * @param headers - the headers associated with an Axios request or response
+     * @returns the formatted output to be included in the HTTP message traces
+     */
+    private formatAxiosHeaders;
+    /**
+     * Formats 'body' (either a string or object/array) to be included in the debug output
+     *
+     * @param body - a string, object or array that contains the request or response body
+     * @returns the formatted output to be included in the HTTP message traces
+     */
+    private formatAxiosBody;
     setCompressRequestData(setting: boolean): void;
     /**
      * Creates the request.
@@ -54,5 +90,11 @@ export declare class RequestWrapper {
     private static getRaxConfig;
     enableRetries(retryOptions?: RetryOptions): void;
     disableRetries(): void;
+    /**
+     * Returns true iff the previously-failed request contained in "error" should be retried.
+     * @param error - an AxiosError instance that contains a previously-failed request
+     * @returns true iff the request should be retried
+     */
+    private static retryPolicy;
     private gzipRequestBody;
 }