npm - phenoml - Versions diffs - 6.4.0 → 7.0.0 - Mend

phenoml 6.4.0 → 7.0.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (36) hide show

package/dist/cjs/Client.js CHANGED Viewed

@@ -52,8 +52,8 @@ class phenomlClient {
         this._options = Object.assign(Object.assign({}, _options), { logging: core.logging.createLogger(_options === null || _options === void 0 ? void 0 : _options.logging), headers: (0, headers_js_1.mergeHeaders)({
                 "X-Fern-Language": "JavaScript",
                 "X-Fern-SDK-Name": "phenoml",
-                "X-Fern-SDK-Version": "6.4.0",
-                "User-Agent": "phenoml/6.4.0",
+                "X-Fern-SDK-Version": "7.0.0",
+                "User-Agent": "phenoml/7.0.0",
                 "X-Fern-Runtime": core.RUNTIME.type,
                 "X-Fern-Runtime-Version": core.RUNTIME.version,
             }, _options === null || _options === void 0 ? void 0 : _options.headers) });

package/dist/cjs/api/resources/fhirProvider/client/Client.d.ts CHANGED Viewed

@@ -68,7 +68,7 @@ export declare class FhirProvider {
     get(fhir_provider_id: string, requestOptions?: FhirProvider.RequestOptions): core.HttpResponsePromise<phenoml.fhirProvider.FhirProviderResponse>;
     private __get;
     /**
-     * Soft deletes a FHIR provider by setting is_active to false.
+     * Deletes a FHIR provider.
      *
      * Note: Sandbox providers cannot be deleted.
      *

package/dist/cjs/api/resources/fhirProvider/client/Client.js CHANGED Viewed

@@ -279,7 +279,7 @@ class FhirProvider {
         });
     }
     /**
-     * Soft deletes a FHIR provider by setting is_active to false.
+     * Deletes a FHIR provider.
      *
      * Note: Sandbox providers cannot be deleted.
      *

package/dist/cjs/api/resources/fhirProvider/client/requests/FhirProviderAddAuthConfigRequest.d.ts CHANGED Viewed

@@ -10,9 +10,9 @@ export interface FhirProviderAddAuthConfigRequest {
     /** OAuth client secret (required for client_secret and on_behalf_of auth methods) */
     client_secret?: string;
     service_account_key?: phenoml.fhirProvider.ServiceAccountKey;
-    /** Expiry time for JWT credentials (only applicable for JWT auth method) */
+    /** Expiry time for JWT credentials (only applicable for JWT auth method). If omitted, a default expiry is used. */
     credential_expiry?: string;
     role?: phenoml.fhirProvider.Role;
-    /** OAuth scopes to request. Cannot be specified with role. If neither role nor scopes are specified, the provider-specific default role will be used. You are solely responsible for ensuring the scopes are valid options for the provider being created or updated. */
+    /** OAuth scopes to request. Cannot be specified with role. If neither role nor scopes are specified, the provider-specific default role will be used. Only applicable to `client_secret`, `jwt`, and `on_behalf_of` auth methods; specifying scopes for other auth methods will return an error. Make sure the scopes you specify are appropriate for the auth config and provider you are using. */
     scopes?: string;
 }

package/dist/cjs/api/resources/fhirProvider/client/requests/FhirProviderCreateRequest.d.ts CHANGED Viewed

@@ -17,12 +17,14 @@ export interface FhirProviderCreateRequest {
     auth_method: phenoml.fhirProvider.AuthMethod;
     /** Base URL of the FHIR server */
     base_url: string;
-    /** OAuth client ID (required for most auth methods) */
+    /** OAuth client ID (required for jwt, client_secret, and on_behalf_of auth methods) */
     client_id?: string;
     /** OAuth client secret (required for client_secret and on_behalf_of auth methods) */
     client_secret?: string;
     service_account_key?: phenoml.fhirProvider.ServiceAccountKey;
+    /** Expiry time for JWT credentials (only applicable for JWT auth method). If omitted, a default expiry is used. */
+    credential_expiry?: string;
     role?: phenoml.fhirProvider.Role;
-    /** OAuth scopes to request. Cannot be specified with role. If neither role nor scopes are specified, the provider-specific default role will be used. You are solely responsible for ensuring the scopes are valid options for the provider being created or updated. */
+    /** OAuth scopes to request. Cannot be specified with role. If neither role nor scopes are specified, the provider-specific default role will be used. Only applicable to `client_secret`, `jwt`, and `on_behalf_of` auth methods; specifying scopes for other auth methods will return an error. Make sure the scopes you specify are appropriate for the auth config and provider you are using. */
     scopes?: string;
 }

package/dist/cjs/api/resources/fhirProvider/types/AuthMethod.d.ts CHANGED Viewed

@@ -1,4 +1,25 @@
-/** Authentication method for the FHIR provider. Only one authentication method can be used at a time, but these can be rotated on the FHIR Provider as needed. For the 'token_passthrough' authentication method, you must provide the token in the X-Phenoml-Fhir-Provider  header in the format {fhir_provider_id}:{oauth2_token}. For the 'on_behalf_of' authentication method, you must provide the Patient or Practitioner reference in the  X-Phenoml-On-Behalf-Of header in the format Patient/{uuid} or Practitioner/{uuid}. This only works for the medplum provider currently. More on the authentication headers and how to structure them can be found in the FHIR Proxy, Tools and Agent documentation. */
+/**
+ * Authentication method for the FHIR provider. Only one authentication method can be used at a time,
+ * but these can be rotated on the FHIR Provider as needed.
+ *
+ * **Scope behavior by auth method:**
+ * - `client_secret`, `jwt`, `on_behalf_of`: Scopes are included in the OAuth token request.
+ *   They can be configured using the `role` or `scopes` field. If neither is specified, provider-specific
+ *   default scopes derived from a default role are used.
+ * - `google_healthcare`: Uses a fixed Google Cloud Healthcare scope. Specifying `role` or `scopes` will
+ *   return an error.
+ * - `token_passthrough`: The caller provides their own bearer token via the X-Phenoml-Fhir-Provider header
+ *   as one or more comma-separated {fhir_provider_id}:{oauth2_token} pairs. Specifying `role` or `scopes`
+ *   will return an error.
+ * - `none`: No authentication is performed. Specifying `role` or `scopes` will return an error.
+ *
+ * For the `on_behalf_of` authentication method, you must also provide the Patient or Practitioner reference
+ * in the X-Phenoml-On-Behalf-Of header in the format Patient/{uuid} or Practitioner/{uuid}. This only works
+ * for the medplum provider currently.
+ *
+ * More on the authentication headers and how to structure them can be found in the FHIR Proxy, Tools and
+ * Agent documentation.
+ */
 export declare const AuthMethod: {
     readonly ClientSecret: "client_secret";
     readonly GoogleHealthcare: "google_healthcare";

package/dist/cjs/api/resources/fhirProvider/types/AuthMethod.js CHANGED Viewed

@@ -2,7 +2,28 @@
 // This file was auto-generated by Fern from our API Definition.
 Object.defineProperty(exports, "__esModule", { value: true });
 exports.AuthMethod = void 0;
-/** Authentication method for the FHIR provider. Only one authentication method can be used at a time, but these can be rotated on the FHIR Provider as needed. For the 'token_passthrough' authentication method, you must provide the token in the X-Phenoml-Fhir-Provider  header in the format {fhir_provider_id}:{oauth2_token}. For the 'on_behalf_of' authentication method, you must provide the Patient or Practitioner reference in the  X-Phenoml-On-Behalf-Of header in the format Patient/{uuid} or Practitioner/{uuid}. This only works for the medplum provider currently. More on the authentication headers and how to structure them can be found in the FHIR Proxy, Tools and Agent documentation. */
+/**
+ * Authentication method for the FHIR provider. Only one authentication method can be used at a time,
+ * but these can be rotated on the FHIR Provider as needed.
+ *
+ * **Scope behavior by auth method:**
+ * - `client_secret`, `jwt`, `on_behalf_of`: Scopes are included in the OAuth token request.
+ *   They can be configured using the `role` or `scopes` field. If neither is specified, provider-specific
+ *   default scopes derived from a default role are used.
+ * - `google_healthcare`: Uses a fixed Google Cloud Healthcare scope. Specifying `role` or `scopes` will
+ *   return an error.
+ * - `token_passthrough`: The caller provides their own bearer token via the X-Phenoml-Fhir-Provider header
+ *   as one or more comma-separated {fhir_provider_id}:{oauth2_token} pairs. Specifying `role` or `scopes`
+ *   will return an error.
+ * - `none`: No authentication is performed. Specifying `role` or `scopes` will return an error.
+ *
+ * For the `on_behalf_of` authentication method, you must also provide the Patient or Practitioner reference
+ * in the X-Phenoml-On-Behalf-Of header in the format Patient/{uuid} or Practitioner/{uuid}. This only works
+ * for the medplum provider currently.
+ *
+ * More on the authentication headers and how to structure them can be found in the FHIR Proxy, Tools and
+ * Agent documentation.
+ */
 exports.AuthMethod = {
     ClientSecret: "client_secret",
     GoogleHealthcare: "google_healthcare",

package/dist/cjs/api/resources/fhirProvider/types/FhirProviderSandboxInfo.d.ts CHANGED Viewed

@@ -10,6 +10,4 @@ export interface FhirProviderSandboxInfo {
     description?: string;
     /** Provider type (always "sandbox" for this schema) */
     provider?: "sandbox";
-    /** Whether the FHIR provider is active */
-    is_active?: boolean;
 }

package/dist/cjs/api/resources/fhirProvider/types/FhirProviderTemplate.d.ts CHANGED Viewed

@@ -13,8 +13,6 @@ export interface FhirProviderTemplate {
     client_id?: string;
     /** Map of authentication configurations (key is auth_config_id) */
     auth_configs?: Record<string, phenoml.fhirProvider.FhirProviderAuthConfig>;
-    /** Whether the FHIR provider is active */
-    is_active?: boolean;
     /** Timestamp when the provider was last updated */
     last_updated?: string;
 }

package/dist/cjs/api/resources/fhirProvider/types/Role.d.ts CHANGED Viewed

@@ -1,22 +1,23 @@
-/** Predefined role that specifies OAuth scopes. Cannot be specified with scopes. Available roles depend on the provider being created or updated. */
+/**
+ * Predefined access level that maps to provider-specific OAuth scopes.
+ * Cannot be specified together with `scopes`. Only applicable to
+ * `client_secret`, `jwt`, and `on_behalf_of` auth methods.
+ *
+ * The server resolves each role to the appropriate scopes for the provider:
+ * - `admin`: Full CRUD access (create, read, update, delete, search)
+ * - `read`: Read and search access only
+ * - `write`: Create, update, and delete access (no read)
+ *
+ * If neither `role` nor `scopes` is specified, the provider-specific default
+ * role is used (typically `read`; `admin` for Medplum/sandbox).
+ *
+ * Canvas does not support system-level roles — use `scopes` directly.
+ * Google Healthcare, HAPI, and `none`/`token_passthrough` auth methods
+ * do not use scopes at all.
+ */
 export declare const Role: {
-    readonly SmartV1Admin: "SmartV1Admin";
-    readonly SmartV1Read: "SmartV1Read";
-    readonly SmartV1Write: "SmartV1Write";
-    readonly SmartV2Admin: "SmartV2Admin";
-    readonly SmartV2Read: "SmartV2Read";
-    readonly SmartV2Write: "SmartV2Write";
-    readonly UscdiSmartV1Admin: "USCDISmartV1Admin";
-    readonly UscdiSmartV1Read: "USCDISmartV1Read";
-    readonly UscdiSmartV1Write: "USCDISmartV1Write";
-    readonly UscdiSmartV2Admin: "USCDISmartV2Admin";
-    readonly UscdiSmartV2Read: "USCDISmartV2Read";
-    readonly UscdiSmartV2Write: "USCDISmartV2Write";
-    readonly CernerSmartV1Admin: "CernerSmartV1Admin";
-    readonly CernerSmartV1Read: "CernerSmartV1Read";
-    readonly CernerSmartV1Write: "CernerSmartV1Write";
-    readonly CernerSmartV2Admin: "CernerSmartV2Admin";
-    readonly CernerSmartV2Read: "CernerSmartV2Read";
-    readonly CernerSmartV2Write: "CernerSmartV2Write";
+    readonly Admin: "admin";
+    readonly Read: "read";
+    readonly Write: "write";
 };
 export type Role = (typeof Role)[keyof typeof Role];

package/dist/cjs/api/resources/fhirProvider/types/Role.js CHANGED Viewed

@@ -2,24 +2,25 @@
 // This file was auto-generated by Fern from our API Definition.
 Object.defineProperty(exports, "__esModule", { value: true });
 exports.Role = void 0;
-/** Predefined role that specifies OAuth scopes. Cannot be specified with scopes. Available roles depend on the provider being created or updated. */
+/**
+ * Predefined access level that maps to provider-specific OAuth scopes.
+ * Cannot be specified together with `scopes`. Only applicable to
+ * `client_secret`, `jwt`, and `on_behalf_of` auth methods.
+ *
+ * The server resolves each role to the appropriate scopes for the provider:
+ * - `admin`: Full CRUD access (create, read, update, delete, search)
+ * - `read`: Read and search access only
+ * - `write`: Create, update, and delete access (no read)
+ *
+ * If neither `role` nor `scopes` is specified, the provider-specific default
+ * role is used (typically `read`; `admin` for Medplum/sandbox).
+ *
+ * Canvas does not support system-level roles — use `scopes` directly.
+ * Google Healthcare, HAPI, and `none`/`token_passthrough` auth methods
+ * do not use scopes at all.
+ */
 exports.Role = {
-    SmartV1Admin: "SmartV1Admin",
-    SmartV1Read: "SmartV1Read",
-    SmartV1Write: "SmartV1Write",
-    SmartV2Admin: "SmartV2Admin",
-    SmartV2Read: "SmartV2Read",
-    SmartV2Write: "SmartV2Write",
-    UscdiSmartV1Admin: "USCDISmartV1Admin",
-    UscdiSmartV1Read: "USCDISmartV1Read",
-    UscdiSmartV1Write: "USCDISmartV1Write",
-    UscdiSmartV2Admin: "USCDISmartV2Admin",
-    UscdiSmartV2Read: "USCDISmartV2Read",
-    UscdiSmartV2Write: "USCDISmartV2Write",
-    CernerSmartV1Admin: "CernerSmartV1Admin",
-    CernerSmartV1Read: "CernerSmartV1Read",
-    CernerSmartV1Write: "CernerSmartV1Write",
-    CernerSmartV2Admin: "CernerSmartV2Admin",
-    CernerSmartV2Read: "CernerSmartV2Read",
-    CernerSmartV2Write: "CernerSmartV2Write",
+    Admin: "admin",
+    Read: "read",
+    Write: "write",
 };

package/dist/cjs/api/resources/tools/types/McpServerResponse.d.ts CHANGED Viewed

@@ -19,7 +19,5 @@ export declare namespace McpServerResponse {
         description?: string;
         /** URL of the MCP server */
         mcp_server_url?: string;
-        /** Whether the MCP server is active */
-        is_active?: boolean;
     }
 }

package/dist/cjs/api/resources/tools/types/McpServerToolResponse.d.ts CHANGED Viewed

@@ -23,7 +23,5 @@ export declare namespace McpServerToolResponse {
         mcp_server_id?: string;
         /** URL of the MCP server */
         mcp_server_url?: string;
-        /** Whether the MCP server tool is active */
-        is_active?: boolean;
     }
 }

package/dist/cjs/core/fetcher/Fetcher.js CHANGED Viewed

@@ -156,11 +156,7 @@ function getHeaders(args) {
     return __awaiter(this, void 0, void 0, function* () {
         var _a;
         const newHeaders = new Headers_js_1.Headers();
-        newHeaders.set("Accept", args.responseType === "json" || args.responseType == null
-            ? "application/json"
-            : args.responseType === "text"
-                ? "text/plain"
-                : "*/*");
+        newHeaders.set("Accept", args.responseType === "json" ? "application/json" : args.responseType === "text" ? "text/plain" : "*/*");
         if (args.body !== undefined && args.contentType != null) {
             newHeaders.set("Content-Type", args.contentType);
         }

package/dist/cjs/core/stream/Stream.js CHANGED Viewed

@@ -55,7 +55,7 @@ class Stream {
     iterMessages() {
         return __asyncGenerator(this, arguments, function* iterMessages_1() {
             var _a, e_1, _b, _c;
-            const signal = this.controller.signal;
+            this.controller.signal;
             const stream = readableStreamAsyncIterable(this.stream);
             let buf = "";
             let prefixSeen = false;
@@ -64,9 +64,6 @@ class Stream {
                     _c = stream_1_1.value;
                     _d = false;
                     const chunk = _c;
-                    if (signal.aborted) {
-                        break;
-                    }
                     buf += this.decodeChunk(chunk);
                     let terminatorIndex;
                     while ((terminatorIndex = buf.indexOf(this.messageTerminator)) >= 0) {

package/dist/cjs/version.d.ts CHANGED Viewed

	@@ -1 +1 @@
1	- export declare const SDK_VERSION = "6.4.0";
1	+ export declare const SDK_VERSION = "7.0.0";

package/dist/cjs/version.js CHANGED Viewed

@@ -1,4 +1,4 @@
 "use strict";
 Object.defineProperty(exports, "__esModule", { value: true });
 exports.SDK_VERSION = void 0;
-exports.SDK_VERSION = "6.4.0";
+exports.SDK_VERSION = "7.0.0";

package/dist/esm/Client.mjs CHANGED Viewed

@@ -16,8 +16,8 @@ export class phenomlClient {
         this._options = Object.assign(Object.assign({}, _options), { logging: core.logging.createLogger(_options === null || _options === void 0 ? void 0 : _options.logging), headers: mergeHeaders({
                 "X-Fern-Language": "JavaScript",
                 "X-Fern-SDK-Name": "phenoml",
-                "X-Fern-SDK-Version": "6.4.0",
-                "User-Agent": "phenoml/6.4.0",
+                "X-Fern-SDK-Version": "7.0.0",
+                "User-Agent": "phenoml/7.0.0",
                 "X-Fern-Runtime": core.RUNTIME.type,
                 "X-Fern-Runtime-Version": core.RUNTIME.version,
             }, _options === null || _options === void 0 ? void 0 : _options.headers) });

package/dist/esm/api/resources/fhirProvider/client/Client.d.mts CHANGED Viewed

@@ -68,7 +68,7 @@ export declare class FhirProvider {
     get(fhir_provider_id: string, requestOptions?: FhirProvider.RequestOptions): core.HttpResponsePromise<phenoml.fhirProvider.FhirProviderResponse>;
     private __get;
     /**
-     * Soft deletes a FHIR provider by setting is_active to false.
+     * Deletes a FHIR provider.
      *
      * Note: Sandbox providers cannot be deleted.
      *

package/dist/esm/api/resources/fhirProvider/client/Client.mjs CHANGED Viewed

@@ -243,7 +243,7 @@ export class FhirProvider {
         });
     }
     /**
-     * Soft deletes a FHIR provider by setting is_active to false.
+     * Deletes a FHIR provider.
      *
      * Note: Sandbox providers cannot be deleted.
      *

package/dist/esm/api/resources/fhirProvider/client/requests/FhirProviderAddAuthConfigRequest.d.mts CHANGED Viewed

@@ -10,9 +10,9 @@ export interface FhirProviderAddAuthConfigRequest {
     /** OAuth client secret (required for client_secret and on_behalf_of auth methods) */
     client_secret?: string;
     service_account_key?: phenoml.fhirProvider.ServiceAccountKey;
-    /** Expiry time for JWT credentials (only applicable for JWT auth method) */
+    /** Expiry time for JWT credentials (only applicable for JWT auth method). If omitted, a default expiry is used. */
     credential_expiry?: string;
     role?: phenoml.fhirProvider.Role;
-    /** OAuth scopes to request. Cannot be specified with role. If neither role nor scopes are specified, the provider-specific default role will be used. You are solely responsible for ensuring the scopes are valid options for the provider being created or updated. */
+    /** OAuth scopes to request. Cannot be specified with role. If neither role nor scopes are specified, the provider-specific default role will be used. Only applicable to `client_secret`, `jwt`, and `on_behalf_of` auth methods; specifying scopes for other auth methods will return an error. Make sure the scopes you specify are appropriate for the auth config and provider you are using. */
     scopes?: string;
 }

package/dist/esm/api/resources/fhirProvider/client/requests/FhirProviderCreateRequest.d.mts CHANGED Viewed

@@ -17,12 +17,14 @@ export interface FhirProviderCreateRequest {
     auth_method: phenoml.fhirProvider.AuthMethod;
     /** Base URL of the FHIR server */
     base_url: string;
-    /** OAuth client ID (required for most auth methods) */
+    /** OAuth client ID (required for jwt, client_secret, and on_behalf_of auth methods) */
     client_id?: string;
     /** OAuth client secret (required for client_secret and on_behalf_of auth methods) */
     client_secret?: string;
     service_account_key?: phenoml.fhirProvider.ServiceAccountKey;
+    /** Expiry time for JWT credentials (only applicable for JWT auth method). If omitted, a default expiry is used. */
+    credential_expiry?: string;
     role?: phenoml.fhirProvider.Role;
-    /** OAuth scopes to request. Cannot be specified with role. If neither role nor scopes are specified, the provider-specific default role will be used. You are solely responsible for ensuring the scopes are valid options for the provider being created or updated. */
+    /** OAuth scopes to request. Cannot be specified with role. If neither role nor scopes are specified, the provider-specific default role will be used. Only applicable to `client_secret`, `jwt`, and `on_behalf_of` auth methods; specifying scopes for other auth methods will return an error. Make sure the scopes you specify are appropriate for the auth config and provider you are using. */
     scopes?: string;
 }

package/dist/esm/api/resources/fhirProvider/types/AuthMethod.d.mts CHANGED Viewed

@@ -1,4 +1,25 @@
-/** Authentication method for the FHIR provider. Only one authentication method can be used at a time, but these can be rotated on the FHIR Provider as needed. For the 'token_passthrough' authentication method, you must provide the token in the X-Phenoml-Fhir-Provider  header in the format {fhir_provider_id}:{oauth2_token}. For the 'on_behalf_of' authentication method, you must provide the Patient or Practitioner reference in the  X-Phenoml-On-Behalf-Of header in the format Patient/{uuid} or Practitioner/{uuid}. This only works for the medplum provider currently. More on the authentication headers and how to structure them can be found in the FHIR Proxy, Tools and Agent documentation. */
+/**
+ * Authentication method for the FHIR provider. Only one authentication method can be used at a time,
+ * but these can be rotated on the FHIR Provider as needed.
+ *
+ * **Scope behavior by auth method:**
+ * - `client_secret`, `jwt`, `on_behalf_of`: Scopes are included in the OAuth token request.
+ *   They can be configured using the `role` or `scopes` field. If neither is specified, provider-specific
+ *   default scopes derived from a default role are used.
+ * - `google_healthcare`: Uses a fixed Google Cloud Healthcare scope. Specifying `role` or `scopes` will
+ *   return an error.
+ * - `token_passthrough`: The caller provides their own bearer token via the X-Phenoml-Fhir-Provider header
+ *   as one or more comma-separated {fhir_provider_id}:{oauth2_token} pairs. Specifying `role` or `scopes`
+ *   will return an error.
+ * - `none`: No authentication is performed. Specifying `role` or `scopes` will return an error.
+ *
+ * For the `on_behalf_of` authentication method, you must also provide the Patient or Practitioner reference
+ * in the X-Phenoml-On-Behalf-Of header in the format Patient/{uuid} or Practitioner/{uuid}. This only works
+ * for the medplum provider currently.
+ *
+ * More on the authentication headers and how to structure them can be found in the FHIR Proxy, Tools and
+ * Agent documentation.
+ */
 export declare const AuthMethod: {
     readonly ClientSecret: "client_secret";
     readonly GoogleHealthcare: "google_healthcare";

package/dist/esm/api/resources/fhirProvider/types/AuthMethod.mjs CHANGED Viewed

@@ -1,5 +1,26 @@
 // This file was auto-generated by Fern from our API Definition.
-/** Authentication method for the FHIR provider. Only one authentication method can be used at a time, but these can be rotated on the FHIR Provider as needed. For the 'token_passthrough' authentication method, you must provide the token in the X-Phenoml-Fhir-Provider  header in the format {fhir_provider_id}:{oauth2_token}. For the 'on_behalf_of' authentication method, you must provide the Patient or Practitioner reference in the  X-Phenoml-On-Behalf-Of header in the format Patient/{uuid} or Practitioner/{uuid}. This only works for the medplum provider currently. More on the authentication headers and how to structure them can be found in the FHIR Proxy, Tools and Agent documentation. */
+/**
+ * Authentication method for the FHIR provider. Only one authentication method can be used at a time,
+ * but these can be rotated on the FHIR Provider as needed.
+ *
+ * **Scope behavior by auth method:**
+ * - `client_secret`, `jwt`, `on_behalf_of`: Scopes are included in the OAuth token request.
+ *   They can be configured using the `role` or `scopes` field. If neither is specified, provider-specific
+ *   default scopes derived from a default role are used.
+ * - `google_healthcare`: Uses a fixed Google Cloud Healthcare scope. Specifying `role` or `scopes` will
+ *   return an error.
+ * - `token_passthrough`: The caller provides their own bearer token via the X-Phenoml-Fhir-Provider header
+ *   as one or more comma-separated {fhir_provider_id}:{oauth2_token} pairs. Specifying `role` or `scopes`
+ *   will return an error.
+ * - `none`: No authentication is performed. Specifying `role` or `scopes` will return an error.
+ *
+ * For the `on_behalf_of` authentication method, you must also provide the Patient or Practitioner reference
+ * in the X-Phenoml-On-Behalf-Of header in the format Patient/{uuid} or Practitioner/{uuid}. This only works
+ * for the medplum provider currently.
+ *
+ * More on the authentication headers and how to structure them can be found in the FHIR Proxy, Tools and
+ * Agent documentation.
+ */
 export const AuthMethod = {
     ClientSecret: "client_secret",
     GoogleHealthcare: "google_healthcare",

package/dist/esm/api/resources/fhirProvider/types/FhirProviderSandboxInfo.d.mts CHANGED Viewed

@@ -10,6 +10,4 @@ export interface FhirProviderSandboxInfo {
     description?: string;
     /** Provider type (always "sandbox" for this schema) */
     provider?: "sandbox";
-    /** Whether the FHIR provider is active */
-    is_active?: boolean;
 }

package/dist/esm/api/resources/fhirProvider/types/FhirProviderTemplate.d.mts CHANGED Viewed

@@ -13,8 +13,6 @@ export interface FhirProviderTemplate {
     client_id?: string;
     /** Map of authentication configurations (key is auth_config_id) */
     auth_configs?: Record<string, phenoml.fhirProvider.FhirProviderAuthConfig>;
-    /** Whether the FHIR provider is active */
-    is_active?: boolean;
     /** Timestamp when the provider was last updated */
     last_updated?: string;
 }

package/dist/esm/api/resources/fhirProvider/types/Role.d.mts CHANGED Viewed

@@ -1,22 +1,23 @@
-/** Predefined role that specifies OAuth scopes. Cannot be specified with scopes. Available roles depend on the provider being created or updated. */
+/**
+ * Predefined access level that maps to provider-specific OAuth scopes.
+ * Cannot be specified together with `scopes`. Only applicable to
+ * `client_secret`, `jwt`, and `on_behalf_of` auth methods.
+ *
+ * The server resolves each role to the appropriate scopes for the provider:
+ * - `admin`: Full CRUD access (create, read, update, delete, search)
+ * - `read`: Read and search access only
+ * - `write`: Create, update, and delete access (no read)
+ *
+ * If neither `role` nor `scopes` is specified, the provider-specific default
+ * role is used (typically `read`; `admin` for Medplum/sandbox).
+ *
+ * Canvas does not support system-level roles — use `scopes` directly.
+ * Google Healthcare, HAPI, and `none`/`token_passthrough` auth methods
+ * do not use scopes at all.
+ */
 export declare const Role: {
-    readonly SmartV1Admin: "SmartV1Admin";
-    readonly SmartV1Read: "SmartV1Read";
-    readonly SmartV1Write: "SmartV1Write";
-    readonly SmartV2Admin: "SmartV2Admin";
-    readonly SmartV2Read: "SmartV2Read";
-    readonly SmartV2Write: "SmartV2Write";
-    readonly UscdiSmartV1Admin: "USCDISmartV1Admin";
-    readonly UscdiSmartV1Read: "USCDISmartV1Read";
-    readonly UscdiSmartV1Write: "USCDISmartV1Write";
-    readonly UscdiSmartV2Admin: "USCDISmartV2Admin";
-    readonly UscdiSmartV2Read: "USCDISmartV2Read";
-    readonly UscdiSmartV2Write: "USCDISmartV2Write";
-    readonly CernerSmartV1Admin: "CernerSmartV1Admin";
-    readonly CernerSmartV1Read: "CernerSmartV1Read";
-    readonly CernerSmartV1Write: "CernerSmartV1Write";
-    readonly CernerSmartV2Admin: "CernerSmartV2Admin";
-    readonly CernerSmartV2Read: "CernerSmartV2Read";
-    readonly CernerSmartV2Write: "CernerSmartV2Write";
+    readonly Admin: "admin";
+    readonly Read: "read";
+    readonly Write: "write";
 };
 export type Role = (typeof Role)[keyof typeof Role];

package/dist/esm/api/resources/fhirProvider/types/Role.mjs CHANGED Viewed

@@ -1,22 +1,23 @@
 // This file was auto-generated by Fern from our API Definition.
-/** Predefined role that specifies OAuth scopes. Cannot be specified with scopes. Available roles depend on the provider being created or updated. */
+/**
+ * Predefined access level that maps to provider-specific OAuth scopes.
+ * Cannot be specified together with `scopes`. Only applicable to
+ * `client_secret`, `jwt`, and `on_behalf_of` auth methods.
+ *
+ * The server resolves each role to the appropriate scopes for the provider:
+ * - `admin`: Full CRUD access (create, read, update, delete, search)
+ * - `read`: Read and search access only
+ * - `write`: Create, update, and delete access (no read)
+ *
+ * If neither `role` nor `scopes` is specified, the provider-specific default
+ * role is used (typically `read`; `admin` for Medplum/sandbox).
+ *
+ * Canvas does not support system-level roles — use `scopes` directly.
+ * Google Healthcare, HAPI, and `none`/`token_passthrough` auth methods
+ * do not use scopes at all.
+ */
 export const Role = {
-    SmartV1Admin: "SmartV1Admin",
-    SmartV1Read: "SmartV1Read",
-    SmartV1Write: "SmartV1Write",
-    SmartV2Admin: "SmartV2Admin",
-    SmartV2Read: "SmartV2Read",
-    SmartV2Write: "SmartV2Write",
-    UscdiSmartV1Admin: "USCDISmartV1Admin",
-    UscdiSmartV1Read: "USCDISmartV1Read",
-    UscdiSmartV1Write: "USCDISmartV1Write",
-    UscdiSmartV2Admin: "USCDISmartV2Admin",
-    UscdiSmartV2Read: "USCDISmartV2Read",
-    UscdiSmartV2Write: "USCDISmartV2Write",
-    CernerSmartV1Admin: "CernerSmartV1Admin",
-    CernerSmartV1Read: "CernerSmartV1Read",
-    CernerSmartV1Write: "CernerSmartV1Write",
-    CernerSmartV2Admin: "CernerSmartV2Admin",
-    CernerSmartV2Read: "CernerSmartV2Read",
-    CernerSmartV2Write: "CernerSmartV2Write",
+    Admin: "admin",
+    Read: "read",
+    Write: "write",
 };

package/dist/esm/api/resources/tools/types/McpServerResponse.d.mts CHANGED Viewed

@@ -19,7 +19,5 @@ export declare namespace McpServerResponse {
         description?: string;
         /** URL of the MCP server */
         mcp_server_url?: string;
-        /** Whether the MCP server is active */
-        is_active?: boolean;
     }
 }

package/dist/esm/api/resources/tools/types/McpServerToolResponse.d.mts CHANGED Viewed

@@ -23,7 +23,5 @@ export declare namespace McpServerToolResponse {
         mcp_server_id?: string;
         /** URL of the MCP server */
         mcp_server_url?: string;
-        /** Whether the MCP server tool is active */
-        is_active?: boolean;
     }
 }

package/dist/esm/core/fetcher/Fetcher.mjs CHANGED Viewed

@@ -152,11 +152,7 @@ function getHeaders(args) {
     return __awaiter(this, void 0, void 0, function* () {
         var _a;
         const newHeaders = new Headers();
-        newHeaders.set("Accept", args.responseType === "json" || args.responseType == null
-            ? "application/json"
-            : args.responseType === "text"
-                ? "text/plain"
-                : "*/*");
+        newHeaders.set("Accept", args.responseType === "json" ? "application/json" : args.responseType === "text" ? "text/plain" : "*/*");
         if (args.body !== undefined && args.contentType != null) {
             newHeaders.set("Content-Type", args.contentType);
         }

package/dist/esm/core/stream/Stream.mjs CHANGED Viewed

@@ -51,7 +51,7 @@ export class Stream {
     iterMessages() {
         return __asyncGenerator(this, arguments, function* iterMessages_1() {
             var _a, e_1, _b, _c;
-            const signal = this.controller.signal;
+            this.controller.signal;
             const stream = readableStreamAsyncIterable(this.stream);
             let buf = "";
             let prefixSeen = false;
@@ -60,9 +60,6 @@ export class Stream {
                     _c = stream_1_1.value;
                     _d = false;
                     const chunk = _c;
-                    if (signal.aborted) {
-                        break;
-                    }
                     buf += this.decodeChunk(chunk);
                     let terminatorIndex;
                     while ((terminatorIndex = buf.indexOf(this.messageTerminator)) >= 0) {

package/dist/esm/version.d.mts CHANGED Viewed

	@@ -1 +1 @@
1	- export declare const SDK_VERSION = "6.4.0";
1	+ export declare const SDK_VERSION = "7.0.0";

package/dist/esm/version.mjs CHANGED Viewed

	@@ -1 +1 @@
1	- export const SDK_VERSION = "6.4.0";
1	+ export const SDK_VERSION = "7.0.0";

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
     "name": "phenoml",
-    "version": "6.4.0",
+    "version": "7.0.0",
     "private": false,
     "repository": "github:PhenoML/phenoml-ts-sdk",
     "type": "commonjs",

package/reference.md CHANGED Viewed

@@ -2809,7 +2809,7 @@ await client.fhirProvider.get("fhir_provider_id");
 <dl>
 <dd>
-Soft deletes a FHIR provider by setting is_active to false.
+Deletes a FHIR provider.
 Note: Sandbox providers cannot be deleted.
 </dd>