workos 0.11.2 → 0.12.0-beta.1

package/dist/emulate/workos/routes/legacy-mfa.js

@@ -0,0 +1,75 @@
+import { notFound, parseJsonBody, WorkOSApiError } from '../../core/index.js';
+import { getWorkOSStore } from '../store.js';
+import { formatAuthFactor, formatAuthChallenge, expiresIn, isExpired, generateCode } from '../helpers.js';
+import { randomBytes } from 'node:crypto';
+export function legacyMfaRoutes(ctx) {
+    const { app, store } = ctx;
+    const ws = getWorkOSStore(store);
+    // Enroll factor (legacy path — not tied to user management users)
+    app.post('/auth/factors/enroll', async (c) => {
+        const body = await parseJsonBody(c);
+        const type = body.type ?? 'totp';
+        const issuer = body.totp_issuer ?? 'WorkOS Emulator';
+        const totpUser = body.totp_user ?? 'legacy@emulator';
+        const secret = randomBytes(20).toString('hex').slice(0, 32).toUpperCase();
+        const uri = `otpauth://totp/${encodeURIComponent(issuer)}:${encodeURIComponent(totpUser)}?secret=${secret}&issuer=${encodeURIComponent(issuer)}`;
+        const factor = ws.authFactors.insert({
+            object: 'authentication_factor',
+            user_id: 'legacy',
+            type: type,
+            totp: { issuer, user: totpUser, uri },
+        });
+        return c.json(formatAuthFactor(factor), 201);
+    });
+    // Get factor
+    app.get('/auth/factors/:id', (c) => {
+        const factor = ws.authFactors.get(c.req.param('id'));
+        if (!factor)
+            throw notFound('AuthenticationFactor');
+        return c.json(formatAuthFactor(factor));
+    });
+    // Delete factor
+    app.delete('/auth/factors/:id', (c) => {
+        const factor = ws.authFactors.get(c.req.param('id'));
+        if (!factor)
+            throw notFound('AuthenticationFactor');
+        ws.authFactors.delete(factor.id);
+        return c.body(null, 204);
+    });
+    // Create challenge
+    app.post('/auth/factors/:id/challenge', async (c) => {
+        const factor = ws.authFactors.get(c.req.param('id'));
+        if (!factor)
+            throw notFound('AuthenticationFactor');
+        const code = generateCode();
+        const challenge = ws.authChallenges.insert({
+            object: 'authentication_challenge',
+            user_id: factor.user_id,
+            factor_id: factor.id,
+            expires_at: expiresIn(10),
+            code,
+        });
+        return c.json(formatAuthChallenge(challenge), 201);
+    });
+    // Verify challenge
+    app.post('/auth/challenges/:id/verify', async (c) => {
+        const challenge = ws.authChallenges.get(c.req.param('id'));
+        if (!challenge)
+            throw notFound('AuthenticationChallenge');
+        if (isExpired(challenge.expires_at)) {
+            ws.authChallenges.delete(challenge.id);
+            throw new WorkOSApiError(400, 'Challenge has expired', 'expired_challenge');
+        }
+        const body = await parseJsonBody(c);
+        const code = body.code;
+        if (!code) {
+            throw new WorkOSApiError(400, 'code is required', 'invalid_request');
+        }
+        if (challenge.code && code !== challenge.code) {
+            throw new WorkOSApiError(400, 'Invalid one-time code', 'invalid_one_time_code');
+        }
+        ws.authChallenges.delete(challenge.id);
+        return c.json({ challenge: formatAuthChallenge(challenge), valid: true });
+    });
+}
+//# sourceMappingURL=legacy-mfa.js.map

package/dist/emulate/workos/routes/legacy-mfa.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"legacy-mfa.js","sourceRoot":"","sources":["../../../../src/emulate/workos/routes/legacy-mfa.ts"],"names":[],"mappings":"AAAA,OAAO,EAAqB,QAAQ,EAAE,aAAa,EAAE,cAAc,EAAE,MAAM,qBAAqB,CAAC;AACjG,OAAO,EAAE,cAAc,EAAE,MAAM,aAAa,CAAC;AAC7C,OAAO,EAAE,gBAAgB,EAAE,mBAAmB,EAAE,SAAS,EAAE,SAAS,EAAE,YAAY,EAAE,MAAM,eAAe,CAAC;AAC1G,OAAO,EAAE,WAAW,EAAE,MAAM,aAAa,CAAC;AAE1C,MAAM,UAAU,eAAe,CAAC,GAAiB;IAC/C,MAAM,EAAE,GAAG,EAAE,KAAK,EAAE,GAAG,GAAG,CAAC;IAC3B,MAAM,EAAE,GAAG,cAAc,CAAC,KAAK,CAAC,CAAC;IAEjC,kEAAkE;IAClE,GAAG,CAAC,IAAI,CAAC,sBAAsB,EAAE,KAAK,EAAE,CAAC,EAAE,EAAE;QAC3C,MAAM,IAAI,GAAG,MAAM,aAAa,CAAC,CAAC,CAAC,CAAC;QACpC,MAAM,IAAI,GAAI,IAAI,CAAC,IAAe,IAAI,MAAM,CAAC;QAC7C,MAAM,MAAM,GAAI,IAAI,CAAC,WAAsB,IAAI,iBAAiB,CAAC;QACjE,MAAM,QAAQ,GAAI,IAAI,CAAC,SAAoB,IAAI,iBAAiB,CAAC;QACjE,MAAM,MAAM,GAAG,WAAW,CAAC,EAAE,CAAC,CAAC,QAAQ,CAAC,KAAK,CAAC,CAAC,KAAK,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,WAAW,EAAE,CAAC;QAC1E,MAAM,GAAG,GAAG,kBAAkB,kBAAkB,CAAC,MAAM,CAAC,IAAI,kBAAkB,CAAC,QAAQ,CAAC,WAAW,MAAM,WAAW,kBAAkB,CAAC,MAAM,CAAC,EAAE,CAAC;QAEjJ,MAAM,MAAM,GAAG,EAAE,CAAC,WAAW,CAAC,MAAM,CAAC;YACnC,MAAM,EAAE,uBAAuB;YAC/B,OAAO,EAAE,QAAQ;YACjB,IAAI,EAAE,IAAc;YACpB,IAAI,EAAE,EAAE,MAAM,EAAE,IAAI,EAAE,QAAQ,EAAE,GAAG,EAAE;SACtC,CAAC,CAAC;QAEH,OAAO,CAAC,CAAC,IAAI,CAAC,gBAAgB,CAAC,MAAM,CAAC,EAAE,GAAG,CAAC,CAAC;IAC/C,CAAC,CAAC,CAAC;IAEH,aAAa;IACb,GAAG,CAAC,GAAG,CAAC,mBAAmB,EAAE,CAAC,CAAC,EAAE,EAAE;QACjC,MAAM,MAAM,GAAG,EAAE,CAAC,WAAW,CAAC,GAAG,CAAC,CAAC,CAAC,GAAG,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC,CAAC;QACrD,IAAI,CAAC,MAAM;YAAE,MAAM,QAAQ,CAAC,sBAAsB,CAAC,CAAC;QACpD,OAAO,CAAC,CAAC,IAAI,CAAC,gBAAgB,CAAC,MAAM,CAAC,CAAC,CAAC;IAC1C,CAAC,CAAC,CAAC;IAEH,gBAAgB;IAChB,GAAG,CAAC,MAAM,CAAC,mBAAmB,EAAE,CAAC,CAAC,EAAE,EAAE;QACpC,MAAM,MAAM,GAAG,EAAE,CAAC,WAAW,CAAC,GAAG,CAAC,CAAC,CAAC,GAAG,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC,CAAC;QACrD,IAAI,CAAC,MAAM;YAAE,MAAM,QAAQ,CAAC,sBAAsB,CAAC,CAAC;QACpD,EAAE,CAAC,WAAW,CAAC,MAAM,CAAC,MAAM,CAAC,EAAE,CAAC,CAAC;QACjC,OAAO,CAAC,CAAC,IAAI,CAAC,IAAI,EAAE,GAAG,CAAC,CAAC;IAC3B,CAAC,CAAC,CAAC;IAEH,mBAAmB;IACnB,GAAG,CAAC,IAAI,CAAC,6BAA6B,EAAE,KAAK,EAAE,CAAC,EAAE,EAAE;QAClD,MAAM,MAAM,GAAG,EAAE,CAAC,WAAW,CAAC,GAAG,CAAC,CAAC,CAAC,GAAG,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC,CAAC;QACrD,IAAI,CAAC,MAAM;YAAE,MAAM,QAAQ,CAAC,sBAAsB,CAAC,CAAC;QAEpD,MAAM,IAAI,GAAG,YAAY,EAAE,CAAC;QAC5B,MAAM,SAAS,GAAG,EAAE,CAAC,cAAc,CAAC,MAAM,CAAC;YACzC,MAAM,EAAE,0BAA0B;YAClC,OAAO,EAAE,MAAM,CAAC,OAAO;YACvB,SAAS,EAAE,MAAM,CAAC,EAAE;YACpB,UAAU,EAAE,SAAS,CAAC,EAAE,CAAC;YACzB,IAAI;SACL,CAAC,CAAC;QAEH,OAAO,CAAC,CAAC,IAAI,CAAC,mBAAmB,CAAC,SAAS,CAAC,EAAE,GAAG,CAAC,CAAC;IACrD,CAAC,CAAC,CAAC;IAEH,mBAAmB;IACnB,GAAG,CAAC,IAAI,CAAC,6BAA6B,EAAE,KAAK,EAAE,CAAC,EAAE,EAAE;QAClD,MAAM,SAAS,GAAG,EAAE,CAAC,cAAc,CAAC,GAAG,CAAC,CAAC,CAAC,GAAG,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC,CAAC;QAC3D,IAAI,CAAC,SAAS;YAAE,MAAM,QAAQ,CAAC,yBAAyB,CAAC,CAAC;QAE1D,IAAI,SAAS,CAAC,SAAS,CAAC,UAAU,CAAC,EAAE,CAAC;YACpC,EAAE,CAAC,cAAc,CAAC,MAAM,CAAC,SAAS,CAAC,EAAE,CAAC,CAAC;YACvC,MAAM,IAAI,cAAc,CAAC,GAAG,EAAE,uBAAuB,EAAE,mBAAmB,CAAC,CAAC;QAC9E,CAAC;QAED,MAAM,IAAI,GAAG,MAAM,aAAa,CAAC,CAAC,CAAC,CAAC;QACpC,MAAM,IAAI,GAAG,IAAI,CAAC,IAAc,CAAC;QACjC,IAAI,CAAC,IAAI,EAAE,CAAC;YACV,MAAM,IAAI,cAAc,CAAC,GAAG,EAAE,kBAAkB,EAAE,iBAAiB,CAAC,CAAC;QACvE,CAAC;QACD,IAAI,SAAS,CAAC,IAAI,IAAI,IAAI,KAAK,SAAS,CAAC,IAAI,EAAE,CAAC;YAC9C,MAAM,IAAI,cAAc,CAAC,GAAG,EAAE,uBAAuB,EAAE,uBAAuB,CAAC,CAAC;QAClF,CAAC;QAED,EAAE,CAAC,cAAc,CAAC,MAAM,CAAC,SAAS,CAAC,EAAE,CAAC,CAAC;QACvC,OAAO,CAAC,CAAC,IAAI,CAAC,EAAE,SAAS,EAAE,mBAAmB,CAAC,SAAS,CAAC,EAAE,KAAK,EAAE,IAAI,EAAE,CAAC,CAAC;IAC5E,CAAC,CAAC,CAAC;AACL,CAAC","sourcesContent":["import { type RouteContext, notFound, parseJsonBody, WorkOSApiError } from '../../core/index.js';\nimport { getWorkOSStore } from '../store.js';\nimport { formatAuthFactor, formatAuthChallenge, expiresIn, isExpired, generateCode } from '../helpers.js';\nimport { randomBytes } from 'node:crypto';\n\nexport function legacyMfaRoutes(ctx: RouteContext): void {\n  const { app, store } = ctx;\n  const ws = getWorkOSStore(store);\n\n  // Enroll factor (legacy path — not tied to user management users)\n  app.post('/auth/factors/enroll', async (c) => {\n    const body = await parseJsonBody(c);\n    const type = (body.type as string) ?? 'totp';\n    const issuer = (body.totp_issuer as string) ?? 'WorkOS Emulator';\n    const totpUser = (body.totp_user as string) ?? 'legacy@emulator';\n    const secret = randomBytes(20).toString('hex').slice(0, 32).toUpperCase();\n    const uri = `otpauth://totp/${encodeURIComponent(issuer)}:${encodeURIComponent(totpUser)}?secret=${secret}&issuer=${encodeURIComponent(issuer)}`;\n\n    const factor = ws.authFactors.insert({\n      object: 'authentication_factor',\n      user_id: 'legacy',\n      type: type as 'totp',\n      totp: { issuer, user: totpUser, uri },\n    });\n\n    return c.json(formatAuthFactor(factor), 201);\n  });\n\n  // Get factor\n  app.get('/auth/factors/:id', (c) => {\n    const factor = ws.authFactors.get(c.req.param('id'));\n    if (!factor) throw notFound('AuthenticationFactor');\n    return c.json(formatAuthFactor(factor));\n  });\n\n  // Delete factor\n  app.delete('/auth/factors/:id', (c) => {\n    const factor = ws.authFactors.get(c.req.param('id'));\n    if (!factor) throw notFound('AuthenticationFactor');\n    ws.authFactors.delete(factor.id);\n    return c.body(null, 204);\n  });\n\n  // Create challenge\n  app.post('/auth/factors/:id/challenge', async (c) => {\n    const factor = ws.authFactors.get(c.req.param('id'));\n    if (!factor) throw notFound('AuthenticationFactor');\n\n    const code = generateCode();\n    const challenge = ws.authChallenges.insert({\n      object: 'authentication_challenge',\n      user_id: factor.user_id,\n      factor_id: factor.id,\n      expires_at: expiresIn(10),\n      code,\n    });\n\n    return c.json(formatAuthChallenge(challenge), 201);\n  });\n\n  // Verify challenge\n  app.post('/auth/challenges/:id/verify', async (c) => {\n    const challenge = ws.authChallenges.get(c.req.param('id'));\n    if (!challenge) throw notFound('AuthenticationChallenge');\n\n    if (isExpired(challenge.expires_at)) {\n      ws.authChallenges.delete(challenge.id);\n      throw new WorkOSApiError(400, 'Challenge has expired', 'expired_challenge');\n    }\n\n    const body = await parseJsonBody(c);\n    const code = body.code as string;\n    if (!code) {\n      throw new WorkOSApiError(400, 'code is required', 'invalid_request');\n    }\n    if (challenge.code && code !== challenge.code) {\n      throw new WorkOSApiError(400, 'Invalid one-time code', 'invalid_one_time_code');\n    }\n\n    ws.authChallenges.delete(challenge.id);\n    return c.json({ challenge: formatAuthChallenge(challenge), valid: true });\n  });\n}\n"]}

package/dist/emulate/workos/routes/magic-auth.d.ts

@@ -0,0 +1,2 @@
+import { type RouteContext } from '../../core/index.js';
+export declare function magicAuthRoutes(ctx: RouteContext): void;

package/dist/emulate/workos/routes/magic-auth.js

@@ -0,0 +1,32 @@
+import { notFound, parseJsonBody, WorkOSApiError } from '../../core/index.js';
+import { getWorkOSStore } from '../store.js';
+import { formatMagicAuth, generateCode, expiresIn } from '../helpers.js';
+export function magicAuthRoutes(ctx) {
+    const { app, store } = ctx;
+    const ws = getWorkOSStore(store);
+    app.get('/user_management/magic_auth/:id', (c) => {
+        const ma = ws.magicAuths.get(c.req.param('id'));
+        if (!ma)
+            throw notFound('Magic Auth');
+        return c.json(formatMagicAuth(ma));
+    });
+    app.post('/user_management/magic_auth', async (c) => {
+        const body = await parseJsonBody(c);
+        const email = body.email;
+        if (!email) {
+            throw new WorkOSApiError(400, 'email is required', 'invalid_request');
+        }
+        const user = ws.users.findOneBy('email', email);
+        if (!user)
+            throw notFound('User');
+        const ma = ws.magicAuths.insert({
+            object: 'magic_auth',
+            user_id: user.id,
+            email: user.email,
+            code: generateCode(),
+            expires_at: expiresIn(10),
+        });
+        return c.json(formatMagicAuth(ma), 201);
+    });
+}
+//# sourceMappingURL=magic-auth.js.map

package/dist/emulate/workos/routes/magic-auth.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"magic-auth.js","sourceRoot":"","sources":["../../../../src/emulate/workos/routes/magic-auth.ts"],"names":[],"mappings":"AAAA,OAAO,EAAqB,QAAQ,EAAE,aAAa,EAAE,cAAc,EAAE,MAAM,qBAAqB,CAAC;AACjG,OAAO,EAAE,cAAc,EAAE,MAAM,aAAa,CAAC;AAC7C,OAAO,EAAE,eAAe,EAAE,YAAY,EAAE,SAAS,EAAE,MAAM,eAAe,CAAC;AAEzE,MAAM,UAAU,eAAe,CAAC,GAAiB;IAC/C,MAAM,EAAE,GAAG,EAAE,KAAK,EAAE,GAAG,GAAG,CAAC;IAC3B,MAAM,EAAE,GAAG,cAAc,CAAC,KAAK,CAAC,CAAC;IAEjC,GAAG,CAAC,GAAG,CAAC,iCAAiC,EAAE,CAAC,CAAC,EAAE,EAAE;QAC/C,MAAM,EAAE,GAAG,EAAE,CAAC,UAAU,CAAC,GAAG,CAAC,CAAC,CAAC,GAAG,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC,CAAC;QAChD,IAAI,CAAC,EAAE;YAAE,MAAM,QAAQ,CAAC,YAAY,CAAC,CAAC;QACtC,OAAO,CAAC,CAAC,IAAI,CAAC,eAAe,CAAC,EAAE,CAAC,CAAC,CAAC;IACrC,CAAC,CAAC,CAAC;IAEH,GAAG,CAAC,IAAI,CAAC,6BAA6B,EAAE,KAAK,EAAE,CAAC,EAAE,EAAE;QAClD,MAAM,IAAI,GAAG,MAAM,aAAa,CAAC,CAAC,CAAC,CAAC;QACpC,MAAM,KAAK,GAAG,IAAI,CAAC,KAA2B,CAAC;QAC/C,IAAI,CAAC,KAAK,EAAE,CAAC;YACX,MAAM,IAAI,cAAc,CAAC,GAAG,EAAE,mBAAmB,EAAE,iBAAiB,CAAC,CAAC;QACxE,CAAC;QAED,MAAM,IAAI,GAAG,EAAE,CAAC,KAAK,CAAC,SAAS,CAAC,OAAO,EAAE,KAAK,CAAC,CAAC;QAChD,IAAI,CAAC,IAAI;YAAE,MAAM,QAAQ,CAAC,MAAM,CAAC,CAAC;QAElC,MAAM,EAAE,GAAG,EAAE,CAAC,UAAU,CAAC,MAAM,CAAC;YAC9B,MAAM,EAAE,YAAY;YACpB,OAAO,EAAE,IAAI,CAAC,EAAE;YAChB,KAAK,EAAE,IAAI,CAAC,KAAK;YACjB,IAAI,EAAE,YAAY,EAAE;YACpB,UAAU,EAAE,SAAS,CAAC,EAAE,CAAC;SAC1B,CAAC,CAAC;QAEH,OAAO,CAAC,CAAC,IAAI,CAAC,eAAe,CAAC,EAAE,CAAC,EAAE,GAAG,CAAC,CAAC;IAC1C,CAAC,CAAC,CAAC;AACL,CAAC","sourcesContent":["import { type RouteContext, notFound, parseJsonBody, WorkOSApiError } from '../../core/index.js';\nimport { getWorkOSStore } from '../store.js';\nimport { formatMagicAuth, generateCode, expiresIn } from '../helpers.js';\n\nexport function magicAuthRoutes(ctx: RouteContext): void {\n  const { app, store } = ctx;\n  const ws = getWorkOSStore(store);\n\n  app.get('/user_management/magic_auth/:id', (c) => {\n    const ma = ws.magicAuths.get(c.req.param('id'));\n    if (!ma) throw notFound('Magic Auth');\n    return c.json(formatMagicAuth(ma));\n  });\n\n  app.post('/user_management/magic_auth', async (c) => {\n    const body = await parseJsonBody(c);\n    const email = body.email as string | undefined;\n    if (!email) {\n      throw new WorkOSApiError(400, 'email is required', 'invalid_request');\n    }\n\n    const user = ws.users.findOneBy('email', email);\n    if (!user) throw notFound('User');\n\n    const ma = ws.magicAuths.insert({\n      object: 'magic_auth',\n      user_id: user.id,\n      email: user.email,\n      code: generateCode(),\n      expires_at: expiresIn(10),\n    });\n\n    return c.json(formatMagicAuth(ma), 201);\n  });\n}\n"]}

package/dist/emulate/workos/routes/memberships.d.ts

@@ -0,0 +1,2 @@
+import { type RouteContext } from '../../core/index.js';
+export declare function membershipRoutes(ctx: RouteContext): void;

package/dist/emulate/workos/routes/memberships.js

@@ -0,0 +1,118 @@
+import { notFound, validationError, parseJsonBody, WorkOSApiError } from '../../core/index.js';
+import { getWorkOSStore } from '../store.js';
+import { formatMembership, parseListParams } from '../helpers.js';
+export function membershipRoutes(ctx) {
+    const { app, store } = ctx;
+    const ws = getWorkOSStore(store);
+    app.post('/user_management/organization_memberships', async (c) => {
+        const body = await parseJsonBody(c);
+        const organizationId = body.organization_id;
+        const userId = body.user_id;
+        if (!organizationId) {
+            throw validationError('organization_id is required', [{ field: 'organization_id', code: 'required' }]);
+        }
+        if (!userId) {
+            throw validationError('user_id is required', [{ field: 'user_id', code: 'required' }]);
+        }
+        const org = ws.organizations.get(organizationId);
+        if (!org)
+            throw notFound('Organization');
+        const existing = ws.organizationMemberships
+            .findBy('organization_id', organizationId)
+            .find((m) => m.user_id === userId && m.status !== 'inactive');
+        if (existing) {
+            throw new WorkOSApiError(409, 'Membership already exists', 'conflict');
+        }
+        const roleSlug = body.role_slug ?? 'member';
+        const membership = ws.organizationMemberships.insert({
+            object: 'organization_membership',
+            organization_id: organizationId,
+            user_id: userId,
+            role: { slug: roleSlug },
+            status: 'active',
+            external_id: body.external_id ?? null,
+            metadata: body.metadata ?? {},
+        });
+        return c.json(formatMembership(membership), 201);
+    });
+    app.get('/user_management/organization_memberships', (c) => {
+        const url = new URL(c.req.url);
+        const params = parseListParams(url);
+        const orgFilter = url.searchParams.get('organization_id') ?? undefined;
+        const userFilter = url.searchParams.get('user_id') ?? undefined;
+        const statusesParam = url.searchParams.getAll('statuses[]');
+        const result = ws.organizationMemberships.list({
+            ...params,
+            filter: (m) => {
+                if (orgFilter && m.organization_id !== orgFilter)
+                    return false;
+                if (userFilter && m.user_id !== userFilter)
+                    return false;
+                if (statusesParam.length > 0 && !statusesParam.includes(m.status))
+                    return false;
+                return true;
+            },
+        });
+        return c.json({
+            object: 'list',
+            data: result.data.map(formatMembership),
+            list_metadata: result.list_metadata,
+        });
+    });
+    app.get('/user_management/organization_memberships/:id', (c) => {
+        const m = ws.organizationMemberships.get(c.req.param('id'));
+        if (!m)
+            throw notFound('Organization Membership');
+        return c.json(formatMembership(m));
+    });
+    app.put('/user_management/organization_memberships/:id', async (c) => {
+        const m = ws.organizationMemberships.get(c.req.param('id'));
+        if (!m)
+            throw notFound('Organization Membership');
+        const body = await parseJsonBody(c);
+        const updates = {};
+        if ('role_slug' in body) {
+            updates.role = { slug: body.role_slug };
+        }
+        if ('external_id' in body) {
+            updates.external_id = body.external_id ?? null;
+        }
+        if ('metadata' in body) {
+            updates.metadata = body.metadata ?? {};
+        }
+        const updated = ws.organizationMemberships.update(m.id, updates);
+        return c.json(formatMembership(updated));
+    });
+    app.delete('/user_management/organization_memberships/:id', (c) => {
+        const m = ws.organizationMemberships.get(c.req.param('id'));
+        if (!m)
+            throw notFound('Organization Membership');
+        ws.organizationMemberships.delete(m.id);
+        return c.body(null, 204);
+    });
+    app.put('/user_management/organization_memberships/:id/deactivate', (c) => {
+        const m = ws.organizationMemberships.get(c.req.param('id'));
+        if (!m)
+            throw notFound('Organization Membership');
+        if (m.status === 'inactive') {
+            throw validationError('Membership is already inactive');
+        }
+        const updated = ws.organizationMemberships.update(m.id, {
+            status: 'inactive',
+        });
+        return c.json(formatMembership(updated));
+    });
+    app.put('/user_management/organization_memberships/:id/reactivate', (c) => {
+        const m = ws.organizationMemberships.get(c.req.param('id'));
+        if (!m)
+            throw notFound('Organization Membership');
+        if (m.status === 'active') {
+            throw validationError('Membership is already active');
+        }
+        const updated = ws.organizationMemberships.update(m.id, {
+            status: 'active',
+        });
+        return c.json(formatMembership(updated));
+    });
+}
+//# sourceMappingURL=memberships.js.map

package/dist/emulate/workos/routes/memberships.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"memberships.js","sourceRoot":"","sources":["../../../../src/emulate/workos/routes/memberships.ts"],"names":[],"mappings":"AAAA,OAAO,EAAqB,QAAQ,EAAE,eAAe,EAAE,aAAa,EAAE,cAAc,EAAE,MAAM,qBAAqB,CAAC;AAClH,OAAO,EAAE,cAAc,EAAE,MAAM,aAAa,CAAC;AAC7C,OAAO,EAAE,gBAAgB,EAAE,eAAe,EAAE,MAAM,eAAe,CAAC;AAElE,MAAM,UAAU,gBAAgB,CAAC,GAAiB;IAChD,MAAM,EAAE,GAAG,EAAE,KAAK,EAAE,GAAG,GAAG,CAAC;IAC3B,MAAM,EAAE,GAAG,cAAc,CAAC,KAAK,CAAC,CAAC;IAEjC,GAAG,CAAC,IAAI,CAAC,2CAA2C,EAAE,KAAK,EAAE,CAAC,EAAE,EAAE;QAChE,MAAM,IAAI,GAAG,MAAM,aAAa,CAAC,CAAC,CAAC,CAAC;QACpC,MAAM,cAAc,GAAG,IAAI,CAAC,eAAqC,CAAC;QAClE,MAAM,MAAM,GAAG,IAAI,CAAC,OAA6B,CAAC;QAElD,IAAI,CAAC,cAAc,EAAE,CAAC;YACpB,MAAM,eAAe,CAAC,6BAA6B,EAAE,CAAC,EAAE,KAAK,EAAE,iBAAiB,EAAE,IAAI,EAAE,UAAU,EAAE,CAAC,CAAC,CAAC;QACzG,CAAC;QACD,IAAI,CAAC,MAAM,EAAE,CAAC;YACZ,MAAM,eAAe,CAAC,qBAAqB,EAAE,CAAC,EAAE,KAAK,EAAE,SAAS,EAAE,IAAI,EAAE,UAAU,EAAE,CAAC,CAAC,CAAC;QACzF,CAAC;QAED,MAAM,GAAG,GAAG,EAAE,CAAC,aAAa,CAAC,GAAG,CAAC,cAAc,CAAC,CAAC;QACjD,IAAI,CAAC,GAAG;YAAE,MAAM,QAAQ,CAAC,cAAc,CAAC,CAAC;QAEzC,MAAM,QAAQ,GAAG,EAAE,CAAC,uBAAuB;aACxC,MAAM,CAAC,iBAAiB,EAAE,cAAc,CAAC;aACzC,IAAI,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,OAAO,KAAK,MAAM,IAAI,CAAC,CAAC,MAAM,KAAK,UAAU,CAAC,CAAC;QAChE,IAAI,QAAQ,EAAE,CAAC;YACb,MAAM,IAAI,cAAc,CAAC,GAAG,EAAE,2BAA2B,EAAE,UAAU,CAAC,CAAC;QACzE,CAAC;QAED,MAAM,QAAQ,GAAI,IAAI,CAAC,SAAoB,IAAI,QAAQ,CAAC;QAExD,MAAM,UAAU,GAAG,EAAE,CAAC,uBAAuB,CAAC,MAAM,CAAC;YACnD,MAAM,EAAE,yBAAyB;YACjC,eAAe,EAAE,cAAc;YAC/B,OAAO,EAAE,MAAM;YACf,IAAI,EAAE,EAAE,IAAI,EAAE,QAAQ,EAAE;YACxB,MAAM,EAAE,QAAQ;YAChB,WAAW,EAAG,IAAI,CAAC,WAAsB,IAAI,IAAI;YACjD,QAAQ,EAAG,IAAI,CAAC,QAAmC,IAAI,EAAE;SAC1D,CAAC,CAAC;QAEH,OAAO,CAAC,CAAC,IAAI,CAAC,gBAAgB,CAAC,UAAU,CAAC,EAAE,GAAG,CAAC,CAAC;IACnD,CAAC,CAAC,CAAC;IAEH,GAAG,CAAC,GAAG,CAAC,2CAA2C,EAAE,CAAC,CAAC,EAAE,EAAE;QACzD,MAAM,GAAG,GAAG,IAAI,GAAG,CAAC,CAAC,CAAC,GAAG,CAAC,GAAG,CAAC,CAAC;QAC/B,MAAM,MAAM,GAAG,eAAe,CAAC,GAAG,CAAC,CAAC;QACpC,MAAM,SAAS,GAAG,GAAG,CAAC,YAAY,CAAC,GAAG,CAAC,iBAAiB,CAAC,IAAI,SAAS,CAAC;QACvE,MAAM,UAAU,GAAG,GAAG,CAAC,YAAY,CAAC,GAAG,CAAC,SAAS,CAAC,IAAI,SAAS,CAAC;QAChE,MAAM,aAAa,GAAG,GAAG,CAAC,YAAY,CAAC,MAAM,CAAC,YAAY,CAAC,CAAC;QAE5D,MAAM,MAAM,GAAG,EAAE,CAAC,uBAAuB,CAAC,IAAI,CAAC;YAC7C,GAAG,MAAM;YACT,MAAM,EAAE,CAAC,CAAC,EAAE,EAAE;gBACZ,IAAI,SAAS,IAAI,CAAC,CAAC,eAAe,KAAK,SAAS;oBAAE,OAAO,KAAK,CAAC;gBAC/D,IAAI,UAAU,IAAI,CAAC,CAAC,OAAO,KAAK,UAAU;oBAAE,OAAO,KAAK,CAAC;gBACzD,IAAI,aAAa,CAAC,MAAM,GAAG,CAAC,IAAI,CAAC,aAAa,CAAC,QAAQ,CAAC,CAAC,CAAC,MAAM,CAAC;oBAAE,OAAO,KAAK,CAAC;gBAChF,OAAO,IAAI,CAAC;YACd,CAAC;SACF,CAAC,CAAC;QAEH,OAAO,CAAC,CAAC,IAAI,CAAC;YACZ,MAAM,EAAE,MAAM;YACd,IAAI,EAAE,MAAM,CAAC,IAAI,CAAC,GAAG,CAAC,gBAAgB,CAAC;YACvC,aAAa,EAAE,MAAM,CAAC,aAAa;SACpC,CAAC,CAAC;IACL,CAAC,CAAC,CAAC;IAEH,GAAG,CAAC,GAAG,CAAC,+CAA+C,EAAE,CAAC,CAAC,EAAE,EAAE;QAC7D,MAAM,CAAC,GAAG,EAAE,CAAC,uBAAuB,CAAC,GAAG,CAAC,CAAC,CAAC,GAAG,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC,CAAC;QAC5D,IAAI,CAAC,CAAC;YAAE,MAAM,QAAQ,CAAC,yBAAyB,CAAC,CAAC;QAClD,OAAO,CAAC,CAAC,IAAI,CAAC,gBAAgB,CAAC,CAAC,CAAC,CAAC,CAAC;IACrC,CAAC,CAAC,CAAC;IAEH,GAAG,CAAC,GAAG,CAAC,+CAA+C,EAAE,KAAK,EAAE,CAAC,EAAE,EAAE;QACnE,MAAM,CAAC,GAAG,EAAE,CAAC,uBAAuB,CAAC,GAAG,CAAC,CAAC,CAAC,GAAG,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC,CAAC;QAC5D,IAAI,CAAC,CAAC;YAAE,MAAM,QAAQ,CAAC,yBAAyB,CAAC,CAAC;QAElD,MAAM,IAAI,GAAG,MAAM,aAAa,CAAC,CAAC,CAAC,CAAC;QACpC,MAAM,OAAO,GAA4B,EAAE,CAAC;QAE5C,IAAI,WAAW,IAAI,IAAI,EAAE,CAAC;YACxB,OAAO,CAAC,IAAI,GAAG,EAAE,IAAI,EAAE,IAAI,CAAC,SAAmB,EAAE,CAAC;QACpD,CAAC;QACD,IAAI,aAAa,IAAI,IAAI,EAAE,CAAC;YAC1B,OAAO,CAAC,WAAW,GAAG,IAAI,CAAC,WAAW,IAAI,IAAI,CAAC;QACjD,CAAC;QACD,IAAI,UAAU,IAAI,IAAI,EAAE,CAAC;YACvB,OAAO,CAAC,QAAQ,GAAG,IAAI,CAAC,QAAQ,IAAI,EAAE,CAAC;QACzC,CAAC;QAED,MAAM,OAAO,GAAG,EAAE,CAAC,uBAAuB,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,OAAO,CAAC,CAAC;QACjE,OAAO,CAAC,CAAC,IAAI,CAAC,gBAAgB,CAAC,OAAQ,CAAC,CAAC,CAAC;IAC5C,CAAC,CAAC,CAAC;IAEH,GAAG,CAAC,MAAM,CAAC,+CAA+C,EAAE,CAAC,CAAC,EAAE,EAAE;QAChE,MAAM,CAAC,GAAG,EAAE,CAAC,uBAAuB,CAAC,GAAG,CAAC,CAAC,CAAC,GAAG,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC,CAAC;QAC5D,IAAI,CAAC,CAAC;YAAE,MAAM,QAAQ,CAAC,yBAAyB,CAAC,CAAC;QAClD,EAAE,CAAC,uBAAuB,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC;QACxC,OAAO,CAAC,CAAC,IAAI,CAAC,IAAI,EAAE,GAAG,CAAC,CAAC;IAC3B,CAAC,CAAC,CAAC;IAEH,GAAG,CAAC,GAAG,CAAC,0DAA0D,EAAE,CAAC,CAAC,EAAE,EAAE;QACxE,MAAM,CAAC,GAAG,EAAE,CAAC,uBAAuB,CAAC,GAAG,CAAC,CAAC,CAAC,GAAG,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC,CAAC;QAC5D,IAAI,CAAC,CAAC;YAAE,MAAM,QAAQ,CAAC,yBAAyB,CAAC,CAAC;QAClD,IAAI,CAAC,CAAC,MAAM,KAAK,UAAU,EAAE,CAAC;YAC5B,MAAM,eAAe,CAAC,gCAAgC,CAAC,CAAC;QAC1D,CAAC;QACD,MAAM,OAAO,GAAG,EAAE,CAAC,uBAAuB,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE;YACtD,MAAM,EAAE,UAAU;SACnB,CAAC,CAAC;QACH,OAAO,CAAC,CAAC,IAAI,CAAC,gBAAgB,CAAC,OAAQ,CAAC,CAAC,CAAC;IAC5C,CAAC,CAAC,CAAC;IAEH,GAAG,CAAC,GAAG,CAAC,0DAA0D,EAAE,CAAC,CAAC,EAAE,EAAE;QACxE,MAAM,CAAC,GAAG,EAAE,CAAC,uBAAuB,CAAC,GAAG,CAAC,CAAC,CAAC,GAAG,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC,CAAC;QAC5D,IAAI,CAAC,CAAC;YAAE,MAAM,QAAQ,CAAC,yBAAyB,CAAC,CAAC;QAClD,IAAI,CAAC,CAAC,MAAM,KAAK,QAAQ,EAAE,CAAC;YAC1B,MAAM,eAAe,CAAC,8BAA8B,CAAC,CAAC;QACxD,CAAC;QACD,MAAM,OAAO,GAAG,EAAE,CAAC,uBAAuB,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE;YACtD,MAAM,EAAE,QAAQ;SACjB,CAAC,CAAC;QACH,OAAO,CAAC,CAAC,IAAI,CAAC,gBAAgB,CAAC,OAAQ,CAAC,CAAC,CAAC;IAC5C,CAAC,CAAC,CAAC;AACL,CAAC","sourcesContent":["import { type RouteContext, notFound, validationError, parseJsonBody, WorkOSApiError } from '../../core/index.js';\nimport { getWorkOSStore } from '../store.js';\nimport { formatMembership, parseListParams } from '../helpers.js';\n\nexport function membershipRoutes(ctx: RouteContext): void {\n  const { app, store } = ctx;\n  const ws = getWorkOSStore(store);\n\n  app.post('/user_management/organization_memberships', async (c) => {\n    const body = await parseJsonBody(c);\n    const organizationId = body.organization_id as string | undefined;\n    const userId = body.user_id as string | undefined;\n\n    if (!organizationId) {\n      throw validationError('organization_id is required', [{ field: 'organization_id', code: 'required' }]);\n    }\n    if (!userId) {\n      throw validationError('user_id is required', [{ field: 'user_id', code: 'required' }]);\n    }\n\n    const org = ws.organizations.get(organizationId);\n    if (!org) throw notFound('Organization');\n\n    const existing = ws.organizationMemberships\n      .findBy('organization_id', organizationId)\n      .find((m) => m.user_id === userId && m.status !== 'inactive');\n    if (existing) {\n      throw new WorkOSApiError(409, 'Membership already exists', 'conflict');\n    }\n\n    const roleSlug = (body.role_slug as string) ?? 'member';\n\n    const membership = ws.organizationMemberships.insert({\n      object: 'organization_membership',\n      organization_id: organizationId,\n      user_id: userId,\n      role: { slug: roleSlug },\n      status: 'active',\n      external_id: (body.external_id as string) ?? null,\n      metadata: (body.metadata as Record<string, string>) ?? {},\n    });\n\n    return c.json(formatMembership(membership), 201);\n  });\n\n  app.get('/user_management/organization_memberships', (c) => {\n    const url = new URL(c.req.url);\n    const params = parseListParams(url);\n    const orgFilter = url.searchParams.get('organization_id') ?? undefined;\n    const userFilter = url.searchParams.get('user_id') ?? undefined;\n    const statusesParam = url.searchParams.getAll('statuses[]');\n\n    const result = ws.organizationMemberships.list({\n      ...params,\n      filter: (m) => {\n        if (orgFilter && m.organization_id !== orgFilter) return false;\n        if (userFilter && m.user_id !== userFilter) return false;\n        if (statusesParam.length > 0 && !statusesParam.includes(m.status)) return false;\n        return true;\n      },\n    });\n\n    return c.json({\n      object: 'list',\n      data: result.data.map(formatMembership),\n      list_metadata: result.list_metadata,\n    });\n  });\n\n  app.get('/user_management/organization_memberships/:id', (c) => {\n    const m = ws.organizationMemberships.get(c.req.param('id'));\n    if (!m) throw notFound('Organization Membership');\n    return c.json(formatMembership(m));\n  });\n\n  app.put('/user_management/organization_memberships/:id', async (c) => {\n    const m = ws.organizationMemberships.get(c.req.param('id'));\n    if (!m) throw notFound('Organization Membership');\n\n    const body = await parseJsonBody(c);\n    const updates: Record<string, unknown> = {};\n\n    if ('role_slug' in body) {\n      updates.role = { slug: body.role_slug as string };\n    }\n    if ('external_id' in body) {\n      updates.external_id = body.external_id ?? null;\n    }\n    if ('metadata' in body) {\n      updates.metadata = body.metadata ?? {};\n    }\n\n    const updated = ws.organizationMemberships.update(m.id, updates);\n    return c.json(formatMembership(updated!));\n  });\n\n  app.delete('/user_management/organization_memberships/:id', (c) => {\n    const m = ws.organizationMemberships.get(c.req.param('id'));\n    if (!m) throw notFound('Organization Membership');\n    ws.organizationMemberships.delete(m.id);\n    return c.body(null, 204);\n  });\n\n  app.put('/user_management/organization_memberships/:id/deactivate', (c) => {\n    const m = ws.organizationMemberships.get(c.req.param('id'));\n    if (!m) throw notFound('Organization Membership');\n    if (m.status === 'inactive') {\n      throw validationError('Membership is already inactive');\n    }\n    const updated = ws.organizationMemberships.update(m.id, {\n      status: 'inactive',\n    });\n    return c.json(formatMembership(updated!));\n  });\n\n  app.put('/user_management/organization_memberships/:id/reactivate', (c) => {\n    const m = ws.organizationMemberships.get(c.req.param('id'));\n    if (!m) throw notFound('Organization Membership');\n    if (m.status === 'active') {\n      throw validationError('Membership is already active');\n    }\n    const updated = ws.organizationMemberships.update(m.id, {\n      status: 'active',\n    });\n    return c.json(formatMembership(updated!));\n  });\n}\n"]}

package/dist/emulate/workos/routes/organization-domains.d.ts

@@ -0,0 +1,2 @@
+import { type RouteContext } from '../../core/index.js';
+export declare function organizationDomainRoutes(ctx: RouteContext): void;

package/dist/emulate/workos/routes/organization-domains.js

@@ -0,0 +1,58 @@
+import { notFound, validationError, parseJsonBody, WorkOSApiError } from '../../core/index.js';
+import { getWorkOSStore } from '../store.js';
+import { formatDomain, generateVerificationToken } from '../helpers.js';
+export function organizationDomainRoutes(ctx) {
+    const { app, store } = ctx;
+    const ws = getWorkOSStore(store);
+    app.post('/organization_domains', async (c) => {
+        const body = await parseJsonBody(c);
+        const organizationId = body.organization_id;
+        const domain = body.domain;
+        if (!organizationId) {
+            throw validationError('organization_id is required', [{ field: 'organization_id', code: 'required' }]);
+        }
+        if (!domain) {
+            throw validationError('domain is required', [{ field: 'domain', code: 'required' }]);
+        }
+        const org = ws.organizations.get(organizationId);
+        if (!org)
+            throw notFound('Organization');
+        const existing = ws.organizationDomains.findBy('organization_id', organizationId).find((d) => d.domain === domain);
+        if (existing) {
+            throw new WorkOSApiError(409, 'Domain already exists for this organization', 'conflict');
+        }
+        const domainEntity = ws.organizationDomains.insert({
+            object: 'organization_domain',
+            organization_id: organizationId,
+            domain,
+            state: 'pending',
+            verification_strategy: body.verification_strategy ?? 'manual',
+            verification_token: generateVerificationToken(),
+            verification_prefix: 'workos-verify',
+        });
+        return c.json(formatDomain(domainEntity), 201);
+    });
+    app.get('/organization_domains/:id', (c) => {
+        const domain = ws.organizationDomains.get(c.req.param('id'));
+        if (!domain)
+            throw notFound('Organization Domain');
+        return c.json(formatDomain(domain));
+    });
+    app.delete('/organization_domains/:id', (c) => {
+        const domain = ws.organizationDomains.get(c.req.param('id'));
+        if (!domain)
+            throw notFound('Organization Domain');
+        ws.organizationDomains.delete(domain.id);
+        return c.body(null, 204);
+    });
+    app.post('/organization_domains/:id/verify', (c) => {
+        const domain = ws.organizationDomains.get(c.req.param('id'));
+        if (!domain)
+            throw notFound('Organization Domain');
+        const updated = ws.organizationDomains.update(domain.id, {
+            state: 'verified',
+        });
+        return c.json(formatDomain(updated));
+    });
+}
+//# sourceMappingURL=organization-domains.js.map

package/dist/emulate/workos/routes/organization-domains.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"organization-domains.js","sourceRoot":"","sources":["../../../../src/emulate/workos/routes/organization-domains.ts"],"names":[],"mappings":"AAAA,OAAO,EAAqB,QAAQ,EAAE,eAAe,EAAE,aAAa,EAAE,cAAc,EAAE,MAAM,qBAAqB,CAAC;AAClH,OAAO,EAAE,cAAc,EAAE,MAAM,aAAa,CAAC;AAC7C,OAAO,EAAE,YAAY,EAAE,yBAAyB,EAAE,MAAM,eAAe,CAAC;AAExE,MAAM,UAAU,wBAAwB,CAAC,GAAiB;IACxD,MAAM,EAAE,GAAG,EAAE,KAAK,EAAE,GAAG,GAAG,CAAC;IAC3B,MAAM,EAAE,GAAG,cAAc,CAAC,KAAK,CAAC,CAAC;IAEjC,GAAG,CAAC,IAAI,CAAC,uBAAuB,EAAE,KAAK,EAAE,CAAC,EAAE,EAAE;QAC5C,MAAM,IAAI,GAAG,MAAM,aAAa,CAAC,CAAC,CAAC,CAAC;QACpC,MAAM,cAAc,GAAG,IAAI,CAAC,eAAqC,CAAC;QAClE,MAAM,MAAM,GAAG,IAAI,CAAC,MAA4B,CAAC;QAEjD,IAAI,CAAC,cAAc,EAAE,CAAC;YACpB,MAAM,eAAe,CAAC,6BAA6B,EAAE,CAAC,EAAE,KAAK,EAAE,iBAAiB,EAAE,IAAI,EAAE,UAAU,EAAE,CAAC,CAAC,CAAC;QACzG,CAAC;QACD,IAAI,CAAC,MAAM,EAAE,CAAC;YACZ,MAAM,eAAe,CAAC,oBAAoB,EAAE,CAAC,EAAE,KAAK,EAAE,QAAQ,EAAE,IAAI,EAAE,UAAU,EAAE,CAAC,CAAC,CAAC;QACvF,CAAC;QAED,MAAM,GAAG,GAAG,EAAE,CAAC,aAAa,CAAC,GAAG,CAAC,cAAc,CAAC,CAAC;QACjD,IAAI,CAAC,GAAG;YAAE,MAAM,QAAQ,CAAC,cAAc,CAAC,CAAC;QAEzC,MAAM,QAAQ,GAAG,EAAE,CAAC,mBAAmB,CAAC,MAAM,CAAC,iBAAiB,EAAE,cAAc,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,MAAM,KAAK,MAAM,CAAC,CAAC;QACnH,IAAI,QAAQ,EAAE,CAAC;YACb,MAAM,IAAI,cAAc,CAAC,GAAG,EAAE,6CAA6C,EAAE,UAAU,CAAC,CAAC;QAC3F,CAAC;QAED,MAAM,YAAY,GAAG,EAAE,CAAC,mBAAmB,CAAC,MAAM,CAAC;YACjD,MAAM,EAAE,qBAAqB;YAC7B,eAAe,EAAE,cAAc;YAC/B,MAAM;YACN,KAAK,EAAE,SAAS;YAChB,qBAAqB,EAAG,IAAI,CAAC,qBAA0C,IAAI,QAAQ;YACnF,kBAAkB,EAAE,yBAAyB,EAAE;YAC/C,mBAAmB,EAAE,eAAe;SACrC,CAAC,CAAC;QAEH,OAAO,CAAC,CAAC,IAAI,CAAC,YAAY,CAAC,YAAY,CAAC,EAAE,GAAG,CAAC,CAAC;IACjD,CAAC,CAAC,CAAC;IAEH,GAAG,CAAC,GAAG,CAAC,2BAA2B,EAAE,CAAC,CAAC,EAAE,EAAE;QACzC,MAAM,MAAM,GAAG,EAAE,CAAC,mBAAmB,CAAC,GAAG,CAAC,CAAC,CAAC,GAAG,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC,CAAC;QAC7D,IAAI,CAAC,MAAM;YAAE,MAAM,QAAQ,CAAC,qBAAqB,CAAC,CAAC;QACnD,OAAO,CAAC,CAAC,IAAI,CAAC,YAAY,CAAC,MAAM,CAAC,CAAC,CAAC;IACtC,CAAC,CAAC,CAAC;IAEH,GAAG,CAAC,MAAM,CAAC,2BAA2B,EAAE,CAAC,CAAC,EAAE,EAAE;QAC5C,MAAM,MAAM,GAAG,EAAE,CAAC,mBAAmB,CAAC,GAAG,CAAC,CAAC,CAAC,GAAG,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC,CAAC;QAC7D,IAAI,CAAC,MAAM;YAAE,MAAM,QAAQ,CAAC,qBAAqB,CAAC,CAAC;QACnD,EAAE,CAAC,mBAAmB,CAAC,MAAM,CAAC,MAAM,CAAC,EAAE,CAAC,CAAC;QACzC,OAAO,CAAC,CAAC,IAAI,CAAC,IAAI,EAAE,GAAG,CAAC,CAAC;IAC3B,CAAC,CAAC,CAAC;IAEH,GAAG,CAAC,IAAI,CAAC,kCAAkC,EAAE,CAAC,CAAC,EAAE,EAAE;QACjD,MAAM,MAAM,GAAG,EAAE,CAAC,mBAAmB,CAAC,GAAG,CAAC,CAAC,CAAC,GAAG,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC,CAAC;QAC7D,IAAI,CAAC,MAAM;YAAE,MAAM,QAAQ,CAAC,qBAAqB,CAAC,CAAC;QAEnD,MAAM,OAAO,GAAG,EAAE,CAAC,mBAAmB,CAAC,MAAM,CAAC,MAAM,CAAC,EAAE,EAAE;YACvD,KAAK,EAAE,UAAU;SAClB,CAAC,CAAC;QACH,OAAO,CAAC,CAAC,IAAI,CAAC,YAAY,CAAC,OAAQ,CAAC,CAAC,CAAC;IACxC,CAAC,CAAC,CAAC;AACL,CAAC","sourcesContent":["import { type RouteContext, notFound, validationError, parseJsonBody, WorkOSApiError } from '../../core/index.js';\nimport { getWorkOSStore } from '../store.js';\nimport { formatDomain, generateVerificationToken } from '../helpers.js';\n\nexport function organizationDomainRoutes(ctx: RouteContext): void {\n  const { app, store } = ctx;\n  const ws = getWorkOSStore(store);\n\n  app.post('/organization_domains', async (c) => {\n    const body = await parseJsonBody(c);\n    const organizationId = body.organization_id as string | undefined;\n    const domain = body.domain as string | undefined;\n\n    if (!organizationId) {\n      throw validationError('organization_id is required', [{ field: 'organization_id', code: 'required' }]);\n    }\n    if (!domain) {\n      throw validationError('domain is required', [{ field: 'domain', code: 'required' }]);\n    }\n\n    const org = ws.organizations.get(organizationId);\n    if (!org) throw notFound('Organization');\n\n    const existing = ws.organizationDomains.findBy('organization_id', organizationId).find((d) => d.domain === domain);\n    if (existing) {\n      throw new WorkOSApiError(409, 'Domain already exists for this organization', 'conflict');\n    }\n\n    const domainEntity = ws.organizationDomains.insert({\n      object: 'organization_domain',\n      organization_id: organizationId,\n      domain,\n      state: 'pending',\n      verification_strategy: (body.verification_strategy as 'manual' | 'dns') ?? 'manual',\n      verification_token: generateVerificationToken(),\n      verification_prefix: 'workos-verify',\n    });\n\n    return c.json(formatDomain(domainEntity), 201);\n  });\n\n  app.get('/organization_domains/:id', (c) => {\n    const domain = ws.organizationDomains.get(c.req.param('id'));\n    if (!domain) throw notFound('Organization Domain');\n    return c.json(formatDomain(domain));\n  });\n\n  app.delete('/organization_domains/:id', (c) => {\n    const domain = ws.organizationDomains.get(c.req.param('id'));\n    if (!domain) throw notFound('Organization Domain');\n    ws.organizationDomains.delete(domain.id);\n    return c.body(null, 204);\n  });\n\n  app.post('/organization_domains/:id/verify', (c) => {\n    const domain = ws.organizationDomains.get(c.req.param('id'));\n    if (!domain) throw notFound('Organization Domain');\n\n    const updated = ws.organizationDomains.update(domain.id, {\n      state: 'verified',\n    });\n    return c.json(formatDomain(updated!));\n  });\n}\n"]}

package/dist/emulate/workos/routes/organizations.d.ts

@@ -0,0 +1,2 @@
+import { type RouteContext } from '../../core/index.js';
+export declare function organizationRoutes(ctx: RouteContext): void;

package/dist/emulate/workos/routes/organizations.js

@@ -0,0 +1,133 @@
+import { notFound, validationError, parseJsonBody } from '../../core/index.js';
+import { getWorkOSStore } from '../store.js';
+import { formatOrganization, generateVerificationToken, parseListParams } from '../helpers.js';
+export function organizationRoutes(ctx) {
+    const { app, store } = ctx;
+    const ws = getWorkOSStore(store);
+    app.post('/organizations', async (c) => {
+        const body = await parseJsonBody(c);
+        const name = body.name;
+        if (!name || typeof name !== 'string' || name.trim().length === 0) {
+            throw validationError('Name is required', [{ field: 'name', code: 'required' }]);
+        }
+        const org = ws.organizations.insert({
+            object: 'organization',
+            name: name.trim(),
+            external_id: body.external_id ?? null,
+            metadata: body.metadata ?? {},
+            stripe_customer_id: null,
+        });
+        const domainData = body.domain_data;
+        if (domainData && Array.isArray(domainData)) {
+            for (const dd of domainData) {
+                ws.organizationDomains.insert({
+                    object: 'organization_domain',
+                    organization_id: org.id,
+                    domain: dd.domain,
+                    state: dd.state === 'verified' ? 'verified' : 'pending',
+                    verification_strategy: 'manual',
+                    verification_token: generateVerificationToken(),
+                    verification_prefix: 'workos-verify',
+                });
+            }
+        }
+        return c.json(formatOrganization(org, ws), 201);
+    });
+    app.get('/organizations', (c) => {
+        const url = new URL(c.req.url);
+        const params = parseListParams(url);
+        const nameFilter = url.searchParams.get('name') ?? undefined;
+        const domainsFilter = url.searchParams.get('domains') ?? undefined;
+        const result = ws.organizations.list({
+            ...params,
+            filter: (org) => {
+                if (nameFilter && !org.name.toLowerCase().includes(nameFilter.toLowerCase())) {
+                    return false;
+                }
+                if (domainsFilter) {
+                    const orgDomains = ws.organizationDomains.findBy('organization_id', org.id);
+                    if (!orgDomains.some((d) => d.domain === domainsFilter)) {
+                        return false;
+                    }
+                }
+                return true;
+            },
+        });
+        return c.json({
+            object: 'list',
+            data: result.data.map((org) => formatOrganization(org, ws)),
+            list_metadata: result.list_metadata,
+        });
+    });
+    app.get('/organizations/:id', (c) => {
+        const org = ws.organizations.get(c.req.param('id'));
+        if (!org)
+            throw notFound('Organization');
+        return c.json(formatOrganization(org, ws));
+    });
+    app.get('/organizations/external_id/:external_id', (c) => {
+        const org = ws.organizations.findOneBy('external_id', c.req.param('external_id'));
+        if (!org)
+            throw notFound('Organization');
+        return c.json(formatOrganization(org, ws));
+    });
+    app.put('/organizations/:id', async (c) => {
+        const org = ws.organizations.get(c.req.param('id'));
+        if (!org)
+            throw notFound('Organization');
+        const body = await parseJsonBody(c);
+        const updates = {};
+        if ('name' in body) {
+            if (!body.name || typeof body.name !== 'string' || body.name.trim().length === 0) {
+                throw validationError('Name is required', [{ field: 'name', code: 'required' }]);
+            }
+            updates.name = body.name.trim();
+        }
+        if ('external_id' in body)
+            updates.external_id = body.external_id ?? null;
+        if ('metadata' in body)
+            updates.metadata = body.metadata ?? {};
+        if ('domain_data' in body && Array.isArray(body.domain_data)) {
+            const existing = ws.organizationDomains.findBy('organization_id', org.id);
+            const incoming = body.domain_data;
+            const incomingDomains = new Set(incoming.map((d) => d.domain));
+            for (const d of existing) {
+                if (!incomingDomains.has(d.domain)) {
+                    ws.organizationDomains.delete(d.id);
+                }
+            }
+            const existingDomains = new Set(existing.map((d) => d.domain));
+            for (const dd of incoming) {
+                if (!existingDomains.has(dd.domain)) {
+                    ws.organizationDomains.insert({
+                        object: 'organization_domain',
+                        organization_id: org.id,
+                        domain: dd.domain,
+                        state: dd.state === 'verified' ? 'verified' : 'pending',
+                        verification_strategy: 'manual',
+                        verification_token: generateVerificationToken(),
+                        verification_prefix: 'workos-verify',
+                    });
+                }
+            }
+        }
+        const updated = ws.organizations.update(org.id, updates);
+        return c.json(formatOrganization(updated, ws));
+    });
+    app.delete('/organizations/:id', (c) => {
+        const org = ws.organizations.get(c.req.param('id'));
+        if (!org)
+            throw notFound('Organization');
+        const domains = ws.organizationDomains.findBy('organization_id', org.id);
+        for (const d of domains) {
+            ws.organizationDomains.delete(d.id);
+        }
+        const memberships = ws.organizationMemberships.findBy('organization_id', org.id);
+        for (const m of memberships) {
+            ws.organizationMemberships.delete(m.id);
+        }
+        ws.organizations.delete(org.id);
+        return c.body(null, 204);
+    });
+}
+//# sourceMappingURL=organizations.js.map

package/dist/emulate/workos/routes/organizations.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"organizations.js","sourceRoot":"","sources":["../../../../src/emulate/workos/routes/organizations.ts"],"names":[],"mappings":"AAAA,OAAO,EAAqB,QAAQ,EAAE,eAAe,EAAE,aAAa,EAAE,MAAM,qBAAqB,CAAC;AAClG,OAAO,EAAE,cAAc,EAAE,MAAM,aAAa,CAAC;AAC7C,OAAO,EAAE,kBAAkB,EAAE,yBAAyB,EAAE,eAAe,EAAE,MAAM,eAAe,CAAC;AAE/F,MAAM,UAAU,kBAAkB,CAAC,GAAiB;IAClD,MAAM,EAAE,GAAG,EAAE,KAAK,EAAE,GAAG,GAAG,CAAC;IAC3B,MAAM,EAAE,GAAG,cAAc,CAAC,KAAK,CAAC,CAAC;IAEjC,GAAG,CAAC,IAAI,CAAC,gBAAgB,EAAE,KAAK,EAAE,CAAC,EAAE,EAAE;QACrC,MAAM,IAAI,GAAG,MAAM,aAAa,CAAC,CAAC,CAAC,CAAC;QACpC,MAAM,IAAI,GAAG,IAAI,CAAC,IAA0B,CAAC;QAC7C,IAAI,CAAC,IAAI,IAAI,OAAO,IAAI,KAAK,QAAQ,IAAI,IAAI,CAAC,IAAI,EAAE,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;YAClE,MAAM,eAAe,CAAC,kBAAkB,EAAE,CAAC,EAAE,KAAK,EAAE,MAAM,EAAE,IAAI,EAAE,UAAU,EAAE,CAAC,CAAC,CAAC;QACnF,CAAC;QAED,MAAM,GAAG,GAAG,EAAE,CAAC,aAAa,CAAC,MAAM,CAAC;YAClC,MAAM,EAAE,cAAc;YACtB,IAAI,EAAE,IAAI,CAAC,IAAI,EAAE;YACjB,WAAW,EAAG,IAAI,CAAC,WAAsB,IAAI,IAAI;YACjD,QAAQ,EAAG,IAAI,CAAC,QAAmC,IAAI,EAAE;YACzD,kBAAkB,EAAE,IAAI;SACzB,CAAC,CAAC;QAEH,MAAM,UAAU,GAAG,IAAI,CAAC,WAAoE,CAAC;QAC7F,IAAI,UAAU,IAAI,KAAK,CAAC,OAAO,CAAC,UAAU,CAAC,EAAE,CAAC;YAC5C,KAAK,MAAM,EAAE,IAAI,UAAU,EAAE,CAAC;gBAC5B,EAAE,CAAC,mBAAmB,CAAC,MAAM,CAAC;oBAC5B,MAAM,EAAE,qBAAqB;oBAC7B,eAAe,EAAE,GAAG,CAAC,EAAE;oBACvB,MAAM,EAAE,EAAE,CAAC,MAAM;oBACjB,KAAK,EAAE,EAAE,CAAC,KAAK,KAAK,UAAU,CAAC,CAAC,CAAC,UAAU,CAAC,CAAC,CAAC,SAAS;oBACvD,qBAAqB,EAAE,QAAQ;oBAC/B,kBAAkB,EAAE,yBAAyB,EAAE;oBAC/C,mBAAmB,EAAE,eAAe;iBACrC,CAAC,CAAC;YACL,CAAC;QACH,CAAC;QAED,OAAO,CAAC,CAAC,IAAI,CAAC,kBAAkB,CAAC,GAAG,EAAE,EAAE,CAAC,EAAE,GAAG,CAAC,CAAC;IAClD,CAAC,CAAC,CAAC;IAEH,GAAG,CAAC,GAAG,CAAC,gBAAgB,EAAE,CAAC,CAAC,EAAE,EAAE;QAC9B,MAAM,GAAG,GAAG,IAAI,GAAG,CAAC,CAAC,CAAC,GAAG,CAAC,GAAG,CAAC,CAAC;QAC/B,MAAM,MAAM,GAAG,eAAe,CAAC,GAAG,CAAC,CAAC;QACpC,MAAM,UAAU,GAAG,GAAG,CAAC,YAAY,CAAC,GAAG,CAAC,MAAM,CAAC,IAAI,SAAS,CAAC;QAC7D,MAAM,aAAa,GAAG,GAAG,CAAC,YAAY,CAAC,GAAG,CAAC,SAAS,CAAC,IAAI,SAAS,CAAC;QAEnE,MAAM,MAAM,GAAG,EAAE,CAAC,aAAa,CAAC,IAAI,CAAC;YACnC,GAAG,MAAM;YACT,MAAM,EAAE,CAAC,GAAG,EAAE,EAAE;gBACd,IAAI,UAAU,IAAI,CAAC,GAAG,CAAC,IAAI,CAAC,WAAW,EAAE,CAAC,QAAQ,CAAC,UAAU,CAAC,WAAW,EAAE,CAAC,EAAE,CAAC;oBAC7E,OAAO,KAAK,CAAC;gBACf,CAAC;gBACD,IAAI,aAAa,EAAE,CAAC;oBAClB,MAAM,UAAU,GAAG,EAAE,CAAC,mBAAmB,CAAC,MAAM,CAAC,iBAAiB,EAAE,GAAG,CAAC,EAAE,CAAC,CAAC;oBAC5E,IAAI,CAAC,UAAU,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,MAAM,KAAK,aAAa,CAAC,EAAE,CAAC;wBACxD,OAAO,KAAK,CAAC;oBACf,CAAC;gBACH,CAAC;gBACD,OAAO,IAAI,CAAC;YACd,CAAC;SACF,CAAC,CAAC;QAEH,OAAO,CAAC,CAAC,IAAI,CAAC;YACZ,MAAM,EAAE,MAAM;YACd,IAAI,EAAE,MAAM,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC,GAAG,EAAE,EAAE,CAAC,kBAAkB,CAAC,GAAG,EAAE,EAAE,CAAC,CAAC;YAC3D,aAAa,EAAE,MAAM,CAAC,aAAa;SACpC,CAAC,CAAC;IACL,CAAC,CAAC,CAAC;IAEH,GAAG,CAAC,GAAG,CAAC,oBAAoB,EAAE,CAAC,CAAC,EAAE,EAAE;QAClC,MAAM,GAAG,GAAG,EAAE,CAAC,aAAa,CAAC,GAAG,CAAC,CAAC,CAAC,GAAG,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC,CAAC;QACpD,IAAI,CAAC,GAAG;YAAE,MAAM,QAAQ,CAAC,cAAc,CAAC,CAAC;QACzC,OAAO,CAAC,CAAC,IAAI,CAAC,kBAAkB,CAAC,GAAG,EAAE,EAAE,CAAC,CAAC,CAAC;IAC7C,CAAC,CAAC,CAAC;IAEH,GAAG,CAAC,GAAG,CAAC,yCAAyC,EAAE,CAAC,CAAC,EAAE,EAAE;QACvD,MAAM,GAAG,GAAG,EAAE,CAAC,aAAa,CAAC,SAAS,CAAC,aAAa,EAAE,CAAC,CAAC,GAAG,CAAC,KAAK,CAAC,aAAa,CAAC,CAAC,CAAC;QAClF,IAAI,CAAC,GAAG;YAAE,MAAM,QAAQ,CAAC,cAAc,CAAC,CAAC;QACzC,OAAO,CAAC,CAAC,IAAI,CAAC,kBAAkB,CAAC,GAAG,EAAE,EAAE,CAAC,CAAC,CAAC;IAC7C,CAAC,CAAC,CAAC;IAEH,GAAG,CAAC,GAAG,CAAC,oBAAoB,EAAE,KAAK,EAAE,CAAC,EAAE,EAAE;QACxC,MAAM,GAAG,GAAG,EAAE,CAAC,aAAa,CAAC,GAAG,CAAC,CAAC,CAAC,GAAG,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC,CAAC;QACpD,IAAI,CAAC,GAAG;YAAE,MAAM,QAAQ,CAAC,cAAc,CAAC,CAAC;QAEzC,MAAM,IAAI,GAAG,MAAM,aAAa,CAAC,CAAC,CAAC,CAAC;QACpC,MAAM,OAAO,GAA4B,EAAE,CAAC;QAE5C,IAAI,MAAM,IAAI,IAAI,EAAE,CAAC;YACnB,IAAI,CAAC,IAAI,CAAC,IAAI,IAAI,OAAO,IAAI,CAAC,IAAI,KAAK,QAAQ,IAAK,IAAI,CAAC,IAAe,CAAC,IAAI,EAAE,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;gBAC7F,MAAM,eAAe,CAAC,kBAAkB,EAAE,CAAC,EAAE,KAAK,EAAE,MAAM,EAAE,IAAI,EAAE,UAAU,EAAE,CAAC,CAAC,CAAC;YACnF,CAAC;YACD,OAAO,CAAC,IAAI,GAAI,IAAI,CAAC,IAAe,CAAC,IAAI,EAAE,CAAC;QAC9C,CAAC;QACD,IAAI,aAAa,IAAI,IAAI;YAAE,OAAO,CAAC,WAAW,GAAG,IAAI,CAAC,WAAW,IAAI,IAAI,CAAC;QAC1E,IAAI,UAAU,IAAI,IAAI;YAAE,OAAO,CAAC,QAAQ,GAAG,IAAI,CAAC,QAAQ,IAAI,EAAE,CAAC;QAE/D,IAAI,aAAa,IAAI,IAAI,IAAI,KAAK,CAAC,OAAO,CAAC,IAAI,CAAC,WAAW,CAAC,EAAE,CAAC;YAC7D,MAAM,QAAQ,GAAG,EAAE,CAAC,mBAAmB,CAAC,MAAM,CAAC,iBAAiB,EAAE,GAAG,CAAC,EAAE,CAAC,CAAC;YAC1E,MAAM,QAAQ,GAAG,IAAI,CAAC,WAAwD,CAAC;YAC/E,MAAM,eAAe,GAAG,IAAI,GAAG,CAAC,QAAQ,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC;YAE/D,KAAK,MAAM,CAAC,IAAI,QAAQ,EAAE,CAAC;gBACzB,IAAI,CAAC,eAAe,CAAC,GAAG,CAAC,CAAC,CAAC,MAAM,CAAC,EAAE,CAAC;oBACnC,EAAE,CAAC,mBAAmB,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC;gBACtC,CAAC;YACH,CAAC;YAED,MAAM,eAAe,GAAG,IAAI,GAAG,CAAC,QAAQ,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC;YAC/D,KAAK,MAAM,EAAE,IAAI,QAAQ,EAAE,CAAC;gBAC1B,IAAI,CAAC,eAAe,CAAC,GAAG,CAAC,EAAE,CAAC,MAAM,CAAC,EAAE,CAAC;oBACpC,EAAE,CAAC,mBAAmB,CAAC,MAAM,CAAC;wBAC5B,MAAM,EAAE,qBAAqB;wBAC7B,eAAe,EAAE,GAAG,CAAC,EAAE;wBACvB,MAAM,EAAE,EAAE,CAAC,MAAM;wBACjB,KAAK,EAAE,EAAE,CAAC,KAAK,KAAK,UAAU,CAAC,CAAC,CAAC,UAAU,CAAC,CAAC,CAAC,SAAS;wBACvD,qBAAqB,EAAE,QAAQ;wBAC/B,kBAAkB,EAAE,yBAAyB,EAAE;wBAC/C,mBAAmB,EAAE,eAAe;qBACrC,CAAC,CAAC;gBACL,CAAC;YACH,CAAC;QACH,CAAC;QAED,MAAM,OAAO,GAAG,EAAE,CAAC,aAAa,CAAC,MAAM,CAAC,GAAG,CAAC,EAAE,EAAE,OAAO,CAAC,CAAC;QACzD,OAAO,CAAC,CAAC,IAAI,CAAC,kBAAkB,CAAC,OAAQ,EAAE,EAAE,CAAC,CAAC,CAAC;IAClD,CAAC,CAAC,CAAC;IAEH,GAAG,CAAC,MAAM,CAAC,oBAAoB,EAAE,CAAC,CAAC,EAAE,EAAE;QACrC,MAAM,GAAG,GAAG,EAAE,CAAC,aAAa,CAAC,GAAG,CAAC,CAAC,CAAC,GAAG,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC,CAAC;QACpD,IAAI,CAAC,GAAG;YAAE,MAAM,QAAQ,CAAC,cAAc,CAAC,CAAC;QAEzC,MAAM,OAAO,GAAG,EAAE,CAAC,mBAAmB,CAAC,MAAM,CAAC,iBAAiB,EAAE,GAAG,CAAC,EAAE,CAAC,CAAC;QACzE,KAAK,MAAM,CAAC,IAAI,OAAO,EAAE,CAAC;YACxB,EAAE,CAAC,mBAAmB,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC;QACtC,CAAC;QAED,MAAM,WAAW,GAAG,EAAE,CAAC,uBAAuB,CAAC,MAAM,CAAC,iBAAiB,EAAE,GAAG,CAAC,EAAE,CAAC,CAAC;QACjF,KAAK,MAAM,CAAC,IAAI,WAAW,EAAE,CAAC;YAC5B,EAAE,CAAC,uBAAuB,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC;QAC1C,CAAC;QAED,EAAE,CAAC,aAAa,CAAC,MAAM,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC;QAChC,OAAO,CAAC,CAAC,IAAI,CAAC,IAAI,EAAE,GAAG,CAAC,CAAC;IAC3B,CAAC,CAAC,CAAC;AACL,CAAC","sourcesContent":["import { type RouteContext, notFound, validationError, parseJsonBody } from '../../core/index.js';\nimport { getWorkOSStore } from '../store.js';\nimport { formatOrganization, generateVerificationToken, parseListParams } from '../helpers.js';\n\nexport function organizationRoutes(ctx: RouteContext): void {\n  const { app, store } = ctx;\n  const ws = getWorkOSStore(store);\n\n  app.post('/organizations', async (c) => {\n    const body = await parseJsonBody(c);\n    const name = body.name as string | undefined;\n    if (!name || typeof name !== 'string' || name.trim().length === 0) {\n      throw validationError('Name is required', [{ field: 'name', code: 'required' }]);\n    }\n\n    const org = ws.organizations.insert({\n      object: 'organization',\n      name: name.trim(),\n      external_id: (body.external_id as string) ?? null,\n      metadata: (body.metadata as Record<string, string>) ?? {},\n      stripe_customer_id: null,\n    });\n\n    const domainData = body.domain_data as Array<{ domain: string; state?: string }> | undefined;\n    if (domainData && Array.isArray(domainData)) {\n      for (const dd of domainData) {\n        ws.organizationDomains.insert({\n          object: 'organization_domain',\n          organization_id: org.id,\n          domain: dd.domain,\n          state: dd.state === 'verified' ? 'verified' : 'pending',\n          verification_strategy: 'manual',\n          verification_token: generateVerificationToken(),\n          verification_prefix: 'workos-verify',\n        });\n      }\n    }\n\n    return c.json(formatOrganization(org, ws), 201);\n  });\n\n  app.get('/organizations', (c) => {\n    const url = new URL(c.req.url);\n    const params = parseListParams(url);\n    const nameFilter = url.searchParams.get('name') ?? undefined;\n    const domainsFilter = url.searchParams.get('domains') ?? undefined;\n\n    const result = ws.organizations.list({\n      ...params,\n      filter: (org) => {\n        if (nameFilter && !org.name.toLowerCase().includes(nameFilter.toLowerCase())) {\n          return false;\n        }\n        if (domainsFilter) {\n          const orgDomains = ws.organizationDomains.findBy('organization_id', org.id);\n          if (!orgDomains.some((d) => d.domain === domainsFilter)) {\n            return false;\n          }\n        }\n        return true;\n      },\n    });\n\n    return c.json({\n      object: 'list',\n      data: result.data.map((org) => formatOrganization(org, ws)),\n      list_metadata: result.list_metadata,\n    });\n  });\n\n  app.get('/organizations/:id', (c) => {\n    const org = ws.organizations.get(c.req.param('id'));\n    if (!org) throw notFound('Organization');\n    return c.json(formatOrganization(org, ws));\n  });\n\n  app.get('/organizations/external_id/:external_id', (c) => {\n    const org = ws.organizations.findOneBy('external_id', c.req.param('external_id'));\n    if (!org) throw notFound('Organization');\n    return c.json(formatOrganization(org, ws));\n  });\n\n  app.put('/organizations/:id', async (c) => {\n    const org = ws.organizations.get(c.req.param('id'));\n    if (!org) throw notFound('Organization');\n\n    const body = await parseJsonBody(c);\n    const updates: Record<string, unknown> = {};\n\n    if ('name' in body) {\n      if (!body.name || typeof body.name !== 'string' || (body.name as string).trim().length === 0) {\n        throw validationError('Name is required', [{ field: 'name', code: 'required' }]);\n      }\n      updates.name = (body.name as string).trim();\n    }\n    if ('external_id' in body) updates.external_id = body.external_id ?? null;\n    if ('metadata' in body) updates.metadata = body.metadata ?? {};\n\n    if ('domain_data' in body && Array.isArray(body.domain_data)) {\n      const existing = ws.organizationDomains.findBy('organization_id', org.id);\n      const incoming = body.domain_data as Array<{ domain: string; state?: string }>;\n      const incomingDomains = new Set(incoming.map((d) => d.domain));\n\n      for (const d of existing) {\n        if (!incomingDomains.has(d.domain)) {\n          ws.organizationDomains.delete(d.id);\n        }\n      }\n\n      const existingDomains = new Set(existing.map((d) => d.domain));\n      for (const dd of incoming) {\n        if (!existingDomains.has(dd.domain)) {\n          ws.organizationDomains.insert({\n            object: 'organization_domain',\n            organization_id: org.id,\n            domain: dd.domain,\n            state: dd.state === 'verified' ? 'verified' : 'pending',\n            verification_strategy: 'manual',\n            verification_token: generateVerificationToken(),\n            verification_prefix: 'workos-verify',\n          });\n        }\n      }\n    }\n\n    const updated = ws.organizations.update(org.id, updates);\n    return c.json(formatOrganization(updated!, ws));\n  });\n\n  app.delete('/organizations/:id', (c) => {\n    const org = ws.organizations.get(c.req.param('id'));\n    if (!org) throw notFound('Organization');\n\n    const domains = ws.organizationDomains.findBy('organization_id', org.id);\n    for (const d of domains) {\n      ws.organizationDomains.delete(d.id);\n    }\n\n    const memberships = ws.organizationMemberships.findBy('organization_id', org.id);\n    for (const m of memberships) {\n      ws.organizationMemberships.delete(m.id);\n    }\n\n    ws.organizations.delete(org.id);\n    return c.body(null, 204);\n  });\n}\n"]}

package/dist/emulate/workos/routes/password-reset.d.ts

@@ -0,0 +1,2 @@
+import { type RouteContext } from '../../core/index.js';
+export declare function passwordResetRoutes(ctx: RouteContext): void;

package/dist/emulate/workos/routes/password-reset.js

@@ -0,0 +1,61 @@
+import { notFound, parseJsonBody, WorkOSApiError } from '../../core/index.js';
+import { getWorkOSStore } from '../store.js';
+import { formatPasswordReset, generateVerificationToken, hashPassword, expiresIn, isExpired } from '../helpers.js';
+export function passwordResetRoutes(ctx) {
+    const { app, store } = ctx;
+    const ws = getWorkOSStore(store);
+    app.get('/user_management/password_reset/:id', (c) => {
+        const pr = ws.passwordResets.get(c.req.param('id'));
+        if (!pr)
+            throw notFound('Password Reset');
+        return c.json(formatPasswordReset(pr));
+    });
+    app.post('/user_management/password_reset', async (c) => {
+        const body = await parseJsonBody(c);
+        const email = body.email;
+        if (!email) {
+            throw new WorkOSApiError(400, 'email is required', 'invalid_request');
+        }
+        const user = ws.users.findOneBy('email', email);
+        if (!user)
+            throw notFound('User');
+        const pr = ws.passwordResets.insert({
+            object: 'password_reset',
+            user_id: user.id,
+            email: user.email,
+            token: generateVerificationToken(),
+            expires_at: expiresIn(60),
+        });
+        return c.json(formatPasswordReset(pr), 201);
+    });
+    app.post('/user_management/password_reset/confirm', async (c) => {
+        const body = await parseJsonBody(c);
+        const token = body.token;
+        const newPassword = body.new_password;
+        if (!token) {
+            throw new WorkOSApiError(400, 'token is required', 'invalid_request');
+        }
+        if (!newPassword) {
+            throw new WorkOSApiError(400, 'new_password is required', 'invalid_request');
+        }
+        const resets = ws.passwordResets.all();
+        const pr = resets.find((r) => r.token === token);
+        if (!pr) {
+            throw new WorkOSApiError(400, 'Invalid token', 'invalid_token');
+        }
+        if (isExpired(pr.expires_at)) {
+            throw new WorkOSApiError(400, 'Token has expired', 'expired_token');
+        }
+        const user = ws.users.get(pr.user_id);
+        if (!user) {
+            ws.passwordResets.delete(pr.id);
+            throw notFound('User');
+        }
+        ws.users.update(pr.user_id, {
+            password_hash: hashPassword(newPassword),
+        });
+        ws.passwordResets.delete(pr.id);
+        return c.json({ user: { object: 'user', id: user.id, email: user.email } });
+    });
+}
+//# sourceMappingURL=password-reset.js.map

package/dist/emulate/workos/routes/password-reset.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"password-reset.js","sourceRoot":"","sources":["../../../../src/emulate/workos/routes/password-reset.ts"],"names":[],"mappings":"AAAA,OAAO,EAAqB,QAAQ,EAAE,aAAa,EAAE,cAAc,EAAE,MAAM,qBAAqB,CAAC;AACjG,OAAO,EAAE,cAAc,EAAE,MAAM,aAAa,CAAC;AAC7C,OAAO,EAAE,mBAAmB,EAAE,yBAAyB,EAAE,YAAY,EAAE,SAAS,EAAE,SAAS,EAAE,MAAM,eAAe,CAAC;AAEnH,MAAM,UAAU,mBAAmB,CAAC,GAAiB;IACnD,MAAM,EAAE,GAAG,EAAE,KAAK,EAAE,GAAG,GAAG,CAAC;IAC3B,MAAM,EAAE,GAAG,cAAc,CAAC,KAAK,CAAC,CAAC;IAEjC,GAAG,CAAC,GAAG,CAAC,qCAAqC,EAAE,CAAC,CAAC,EAAE,EAAE;QACnD,MAAM,EAAE,GAAG,EAAE,CAAC,cAAc,CAAC,GAAG,CAAC,CAAC,CAAC,GAAG,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC,CAAC;QACpD,IAAI,CAAC,EAAE;YAAE,MAAM,QAAQ,CAAC,gBAAgB,CAAC,CAAC;QAC1C,OAAO,CAAC,CAAC,IAAI,CAAC,mBAAmB,CAAC,EAAE,CAAC,CAAC,CAAC;IACzC,CAAC,CAAC,CAAC;IAEH,GAAG,CAAC,IAAI,CAAC,iCAAiC,EAAE,KAAK,EAAE,CAAC,EAAE,EAAE;QACtD,MAAM,IAAI,GAAG,MAAM,aAAa,CAAC,CAAC,CAAC,CAAC;QACpC,MAAM,KAAK,GAAG,IAAI,CAAC,KAA2B,CAAC;QAC/C,IAAI,CAAC,KAAK,EAAE,CAAC;YACX,MAAM,IAAI,cAAc,CAAC,GAAG,EAAE,mBAAmB,EAAE,iBAAiB,CAAC,CAAC;QACxE,CAAC;QAED,MAAM,IAAI,GAAG,EAAE,CAAC,KAAK,CAAC,SAAS,CAAC,OAAO,EAAE,KAAK,CAAC,CAAC;QAChD,IAAI,CAAC,IAAI;YAAE,MAAM,QAAQ,CAAC,MAAM,CAAC,CAAC;QAElC,MAAM,EAAE,GAAG,EAAE,CAAC,cAAc,CAAC,MAAM,CAAC;YAClC,MAAM,EAAE,gBAAgB;YACxB,OAAO,EAAE,IAAI,CAAC,EAAE;YAChB,KAAK,EAAE,IAAI,CAAC,KAAK;YACjB,KAAK,EAAE,yBAAyB,EAAE;YAClC,UAAU,EAAE,SAAS,CAAC,EAAE,CAAC;SAC1B,CAAC,CAAC;QAEH,OAAO,CAAC,CAAC,IAAI,CAAC,mBAAmB,CAAC,EAAE,CAAC,EAAE,GAAG,CAAC,CAAC;IAC9C,CAAC,CAAC,CAAC;IAEH,GAAG,CAAC,IAAI,CAAC,yCAAyC,EAAE,KAAK,EAAE,CAAC,EAAE,EAAE;QAC9D,MAAM,IAAI,GAAG,MAAM,aAAa,CAAC,CAAC,CAAC,CAAC;QACpC,MAAM,KAAK,GAAG,IAAI,CAAC,KAA2B,CAAC;QAC/C,MAAM,WAAW,GAAG,IAAI,CAAC,YAAkC,CAAC;QAE5D,IAAI,CAAC,KAAK,EAAE,CAAC;YACX,MAAM,IAAI,cAAc,CAAC,GAAG,EAAE,mBAAmB,EAAE,iBAAiB,CAAC,CAAC;QACxE,CAAC;QACD,IAAI,CAAC,WAAW,EAAE,CAAC;YACjB,MAAM,IAAI,cAAc,CAAC,GAAG,EAAE,0BAA0B,EAAE,iBAAiB,CAAC,CAAC;QAC/E,CAAC;QAED,MAAM,MAAM,GAAG,EAAE,CAAC,cAAc,CAAC,GAAG,EAAE,CAAC;QACvC,MAAM,EAAE,GAAG,MAAM,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,KAAK,KAAK,KAAK,CAAC,CAAC;QACjD,IAAI,CAAC,EAAE,EAAE,CAAC;YACR,MAAM,IAAI,cAAc,CAAC,GAAG,EAAE,eAAe,EAAE,eAAe,CAAC,CAAC;QAClE,CAAC;QACD,IAAI,SAAS,CAAC,EAAE,CAAC,UAAU,CAAC,EAAE,CAAC;YAC7B,MAAM,IAAI,cAAc,CAAC,GAAG,EAAE,mBAAmB,EAAE,eAAe,CAAC,CAAC;QACtE,CAAC;QAED,MAAM,IAAI,GAAG,EAAE,CAAC,KAAK,CAAC,GAAG,CAAC,EAAE,CAAC,OAAO,CAAC,CAAC;QACtC,IAAI,CAAC,IAAI,EAAE,CAAC;YACV,EAAE,CAAC,cAAc,CAAC,MAAM,CAAC,EAAE,CAAC,EAAE,CAAC,CAAC;YAChC,MAAM,QAAQ,CAAC,MAAM,CAAC,CAAC;QACzB,CAAC;QAED,EAAE,CAAC,KAAK,CAAC,MAAM,CAAC,EAAE,CAAC,OAAO,EAAE;YAC1B,aAAa,EAAE,YAAY,CAAC,WAAW,CAAC;SACzC,CAAC,CAAC;QACH,EAAE,CAAC,cAAc,CAAC,MAAM,CAAC,EAAE,CAAC,EAAE,CAAC,CAAC;QAEhC,OAAO,CAAC,CAAC,IAAI,CAAC,EAAE,IAAI,EAAE,EAAE,MAAM,EAAE,MAAM,EAAE,EAAE,EAAE,IAAI,CAAC,EAAE,EAAE,KAAK,EAAE,IAAI,CAAC,KAAK,EAAE,EAAE,CAAC,CAAC;IAC9E,CAAC,CAAC,CAAC;AACL,CAAC","sourcesContent":["import { type RouteContext, notFound, parseJsonBody, WorkOSApiError } from '../../core/index.js';\nimport { getWorkOSStore } from '../store.js';\nimport { formatPasswordReset, generateVerificationToken, hashPassword, expiresIn, isExpired } from '../helpers.js';\n\nexport function passwordResetRoutes(ctx: RouteContext): void {\n  const { app, store } = ctx;\n  const ws = getWorkOSStore(store);\n\n  app.get('/user_management/password_reset/:id', (c) => {\n    const pr = ws.passwordResets.get(c.req.param('id'));\n    if (!pr) throw notFound('Password Reset');\n    return c.json(formatPasswordReset(pr));\n  });\n\n  app.post('/user_management/password_reset', async (c) => {\n    const body = await parseJsonBody(c);\n    const email = body.email as string | undefined;\n    if (!email) {\n      throw new WorkOSApiError(400, 'email is required', 'invalid_request');\n    }\n\n    const user = ws.users.findOneBy('email', email);\n    if (!user) throw notFound('User');\n\n    const pr = ws.passwordResets.insert({\n      object: 'password_reset',\n      user_id: user.id,\n      email: user.email,\n      token: generateVerificationToken(),\n      expires_at: expiresIn(60),\n    });\n\n    return c.json(formatPasswordReset(pr), 201);\n  });\n\n  app.post('/user_management/password_reset/confirm', async (c) => {\n    const body = await parseJsonBody(c);\n    const token = body.token as string | undefined;\n    const newPassword = body.new_password as string | undefined;\n\n    if (!token) {\n      throw new WorkOSApiError(400, 'token is required', 'invalid_request');\n    }\n    if (!newPassword) {\n      throw new WorkOSApiError(400, 'new_password is required', 'invalid_request');\n    }\n\n    const resets = ws.passwordResets.all();\n    const pr = resets.find((r) => r.token === token);\n    if (!pr) {\n      throw new WorkOSApiError(400, 'Invalid token', 'invalid_token');\n    }\n    if (isExpired(pr.expires_at)) {\n      throw new WorkOSApiError(400, 'Token has expired', 'expired_token');\n    }\n\n    const user = ws.users.get(pr.user_id);\n    if (!user) {\n      ws.passwordResets.delete(pr.id);\n      throw notFound('User');\n    }\n\n    ws.users.update(pr.user_id, {\n      password_hash: hashPassword(newPassword),\n    });\n    ws.passwordResets.delete(pr.id);\n\n    return c.json({ user: { object: 'user', id: user.id, email: user.email } });\n  });\n}\n"]}

package/dist/emulate/workos/routes/pipes.d.ts

@@ -0,0 +1,2 @@
+import { type RouteContext } from '../../core/index.js';
+export declare function pipeRoutes(ctx: RouteContext): void;