workos 0.11.2 → 0.12.0

package/dist/emulate/workos/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../../src/emulate/workos/index.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,WAAW,EAAE,MAAM,aAAa,CAAC;AAE1C,OAAO,EAAE,UAAU,EAAE,MAAM,kBAAkB,CAAC;AAC9C,OAAO,EAAE,cAAc,EAAoB,MAAM,YAAY,CAAC;AAC9D,OAAO,EAAE,kBAAkB,EAAE,MAAM,2BAA2B,CAAC;AAC/D,OAAO,EAAE,wBAAwB,EAAE,MAAM,kCAAkC,CAAC;AAC5E,OAAO,EAAE,gBAAgB,EAAE,MAAM,yBAAyB,CAAC;AAC3D,OAAO,EAAE,UAAU,EAAE,MAAM,mBAAmB,CAAC;AAC/C,OAAO,EAAE,uBAAuB,EAAE,MAAM,gCAAgC,CAAC;AACzE,OAAO,EAAE,mBAAmB,EAAE,MAAM,4BAA4B,CAAC;AACjE,OAAO,EAAE,eAAe,EAAE,MAAM,wBAAwB,CAAC;AACzD,OAAO,EAAE,gBAAgB,EAAE,MAAM,0BAA0B,CAAC;AAC5D,OAAO,EAAE,aAAa,EAAE,MAAM,sBAAsB,CAAC;AACrD,OAAO,EAAE,UAAU,EAAE,MAAM,kBAAkB,CAAC;AAC9C,OAAO,EAAE,gBAAgB,EAAE,MAAM,yBAAyB,CAAC;AAC3D,OAAO,EAAE,SAAS,EAAE,MAAM,iBAAiB,CAAC;AAC5C,OAAO,EAAE,UAAU,EAAE,MAAM,mBAAmB,CAAC;AAC/C,OAAO,EAAE,mBAAmB,EAAE,MAAM,6BAA6B,CAAC;AAClE,OAAO,EAAE,gBAAgB,EAAE,MAAM,yBAAyB,CAAC;AAC3D,OAAO,EAAE,YAAY,EAAE,MAAM,oBAAoB,CAAC;AAClD,OAAO,EAAE,iBAAiB,EAAE,MAAM,2BAA2B,CAAC;AAC9D,OAAO,EAAE,YAAY,EAAE,MAAM,qBAAqB,CAAC;AACnD,OAAO,EAAE,uBAAuB,EAAE,MAAM,iCAAiC,CAAC;AAC1E,OAAO,EAAE,6BAA6B,EAAE,MAAM,uCAAuC,CAAC;AACtF,OAAO,EAAE,0BAA0B,EAAE,MAAM,qCAAqC,CAAC;AACjF,OAAO,EAAE,2BAA2B,EAAE,MAAM,qCAAqC,CAAC;AAClF,OAAO,EAAE,wBAAwB,EAAE,MAAM,kCAAkC,CAAC;AAC5E,OAAO,EAAE,YAAY,EAAE,MAAM,oBAAoB,CAAC;AAClD,OAAO,EAAE,eAAe,EAAE,MAAM,wBAAwB,CAAC;AACzD,OAAO,EAAE,YAAY,EAAE,MAAM,sBAAsB,CAAC;AACpD,OAAO,EAAE,WAAW,EAAE,MAAM,mBAAmB,CAAC;AAChD,OAAO,EAAE,aAAa,EAAE,MAAM,qBAAqB,CAAC;AACpD,OAAO,EAAE,eAAe,EAAE,MAAM,yBAAyB,CAAC;AAC1D,OAAO,EAAE,cAAc,EAAE,MAAM,wBAAwB,CAAC;AACxD,OAAO,EAAE,iBAAiB,EAAE,MAAM,2BAA2B,CAAC;AAC9D,OAAO,EAAE,qBAAqB,EAAE,MAAM,+BAA+B,CAAC;AACtE,OAAO,EAAE,qBAAqB,EAAE,MAAM,+BAA+B,CAAC;AACtE,OAAO,EAAE,WAAW,EAAE,MAAM,oBAAoB,CAAC;AACjD,OAAO,EAAE,QAAQ,EAAE,MAAM,gBAAgB,CAAC;AAC1C,OAAO,EAAE,UAAU,EAAE,MAAM,EAAE,MAAM,gBAAgB,CAAC;AACpD,OAAO,EACL,yBAAyB,EACzB,YAAY,EACZ,SAAS,EACT,UAAU,EACV,kBAAkB,EAClB,gBAAgB,EAChB,gBAAgB,EAChB,aAAa,EACb,gBAAgB,EAChB,UAAU,EACV,gBAAgB,EAChB,eAAe,EACf,mBAAmB,EACnB,oBAAoB,EACpB,YAAY,GACb,MAAM,cAAc,CAAC;AAGtB,OAAO,EAAE,cAAc,EAAoB,MAAM,YAAY,CAAC;AAC9D,cAAc,eAAe,CAAC;AAyF9B,MAAM,UAAU,cAAc,CAAC,KAAY,EAAE,QAAgB,EAAE,MAAwB;IACrF,MAAM,EAAE,GAAG,cAAc,CAAC,KAAK,CAAC,CAAC;IAEjC,IAAI,MAAM,CAAC,KAAK,EAAE,CAAC;QACjB,KAAK,MAAM,UAAU,IAAI,MAAM,CAAC,KAAK,EAAE,CAAC;YACtC,EAAE,CAAC,KAAK,CAAC,MAAM,CAAC;gBACd,MAAM,EAAE,MAAM;gBACd,KAAK,EAAE,UAAU,CAAC,KAAK;gBACvB,UAAU,EAAE,UAAU,CAAC,UAAU,IAAI,IAAI;gBACzC,SAAS,EAAE,UAAU,CAAC,SAAS,IAAI,IAAI;gBACvC,cAAc,EAAE,UAAU,CAAC,cAAc,IAAI,KAAK;gBAClD,mBAAmB,EAAE,IAAI;gBACzB,eAAe,EAAE,IAAI;gBACrB,WAAW,EAAE,UAAU,CAAC,WAAW,IAAI,IAAI;gBAC3C,QAAQ,EAAE,UAAU,CAAC,QAAQ,IAAI,EAAE;gBACnC,MAAM,EAAE,IAAI;gBACZ,aAAa,EAAE,UAAU,CAAC,QAAQ,CAAC,CAAC,CAAC,YAAY,CAAC,UAAU,CAAC,QAAQ,CAAC,CAAC,CAAC,CAAC,IAAI;gBAC7E,YAAY,EAAE,UAAU,CAAC,YAAY,IAAI,IAAI;aAC9C,CAAC,CAAC;QACL,CAAC;IACH,CAAC;IAED,IAAI,MAAM,CAAC,aAAa,EAAE,CAAC;QACzB,KAAK,MAAM,SAAS,IAAI,MAAM,CAAC,aAAa,EAAE,CAAC;YAC7C,MAAM,GAAG,GAAG,EAAE,CAAC,aAAa,CAAC,MAAM,CAAC;gBAClC,MAAM,EAAE,cAAc;gBACtB,IAAI,EAAE,SAAS,CAAC,IAAI;gBACpB,WAAW,EAAE,SAAS,CAAC,WAAW,IAAI,IAAI;gBAC1C,QAAQ,EAAE,SAAS,CAAC,QAAQ,IAAI,EAAE;gBAClC,kBAAkB,EAAE,IAAI;aACzB,CAAC,CAAC;YAEH,IAAI,SAAS,CAAC,OAAO,EAAE,CAAC;gBACtB,KAAK,MAAM,EAAE,IAAI,SAAS,CAAC,OAAO,EAAE,CAAC;oBACnC,EAAE,CAAC,mBAAmB,CAAC,MAAM,CAAC;wBAC5B,MAAM,EAAE,qBAAqB;wBAC7B,eAAe,EAAE,GAAG,CAAC,EAAE;wBACvB,MAAM,EAAE,EAAE,CAAC,MAAM;wBACjB,KAAK,EAAE,EAAE,CAAC,KAAK,IAAI,SAAS;wBAC5B,qBAAqB,EAAE,QAAQ;wBAC/B,kBAAkB,EAAE,yBAAyB,EAAE;wBAC/C,mBAAmB,EAAE,eAAe;qBACrC,CAAC,CAAC;gBACL,CAAC;YACH,CAAC;YAED,IAAI,SAAS,CAAC,WAAW,EAAE,CAAC;gBAC1B,KAAK,MAAM,EAAE,IAAI,SAAS,CAAC,WAAW,EAAE,CAAC;oBACvC,EAAE,CAAC,uBAAuB,CAAC,MAAM,CAAC;wBAChC,MAAM,EAAE,yBAAyB;wBACjC,eAAe,EAAE,GAAG,CAAC,EAAE;wBACvB,OAAO,EAAE,EAAE,CAAC,OAAO;wBACnB,IAAI,EAAE,EAAE,IAAI,EAAE,EAAE,CAAC,IAAI,IAAI,QAAQ,EAAE;wBACnC,MAAM,EAAE,EAAE,CAAC,MAAM,IAAI,QAAQ;wBAC7B,WAAW,EAAE,IAAI;wBACjB,QAAQ,EAAE,EAAE;qBACb,CAAC,CAAC;gBACL,CAAC;YACH,CAAC;QACH,CAAC;IACH,CAAC;IAED,IAAI,MAAM,CAAC,WAAW,EAAE,CAAC;QACvB,KAAK,MAAM,UAAU,IAAI,MAAM,CAAC,WAAW,EAAE,CAAC;YAC5C,MAAM,GAAG,GAAG,EAAE,CAAC,aAAa,CAAC,SAAS,CAAC,MAAM,EAAE,UAAU,CAAC,YAAY,CAAC,CAAC;YACxE,IAAI,CAAC,GAAG;gBAAE,SAAS;YAEnB,MAAM,OAAO,GAAG,CAAC,UAAU,CAAC,OAAO,IAAI,EAAE,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC;gBACrD,MAAM,EAAE,mBAA4B;gBACpC,EAAE,EAAE,UAAU,CAAC,aAAa,CAAC;gBAC7B,MAAM,EAAE,CAAC;aACV,CAAC,CAAC,CAAC;YAEJ,MAAM,IAAI,GAAG,EAAE,CAAC,WAAW,CAAC,MAAM,CAAC;gBACjC,MAAM,EAAE,YAAY;gBACpB,eAAe,EAAE,GAAG,CAAC,EAAE;gBACvB,eAAe,EAAE,UAAU,CAAC,eAAe,IAAI,aAAa;gBAC5D,IAAI,EAAE,UAAU,CAAC,IAAI;gBACrB,KAAK,EAAE,UAAU,CAAC,KAAK,IAAI,QAAQ;gBACnC,OAAO;aACR,CAAC,CAAC;YAEH,IAAI,UAAU,CAAC,QAAQ,EAAE,CAAC;gBACxB,KAAK,MAAM,CAAC,IAAI,UAAU,CAAC,QAAQ,EAAE,CAAC;oBACpC,EAAE,CAAC,WAAW,CAAC,MAAM,CAAC;wBACpB,MAAM,EAAE,SAAS;wBACjB,aAAa,EAAE,IAAI,CAAC,EAAE;wBACtB,eAAe,EAAE,IAAI,CAAC,eAAe;wBACrC,eAAe,EAAE,GAAG,CAAC,EAAE;wBACvB,MAAM,EAAE,CAAC,CAAC,MAAM,IAAI,OAAO,UAAU,CAAC,KAAK,CAAC,EAAE;wBAC9C,KAAK,EAAE,CAAC,CAAC,KAAK;wBACd,UAAU,EAAE,CAAC,CAAC,UAAU,IAAI,IAAI;wBAChC,SAAS,EAAE,CAAC,CAAC,SAAS,IAAI,IAAI;wBAC9B,MAAM,EAAE,CAAC,CAAC,MAAM,IAAI,EAAE;wBACtB,cAAc,EAAE,EAAE,KAAK,EAAE,CAAC,CAAC,KAAK,EAAE;qBACnC,CAAC,CAAC;gBACL,CAAC;YACH,CAAC;QACH,CAAC;IACH,CAAC;IAED,IAAI,MAAM,CAAC,eAAe,EAAE,CAAC;QAC3B,KAAK,MAAM,EAAE,IAAI,MAAM,CAAC,eAAe,EAAE,CAAC;YACxC,EAAE,CAAC,eAAe,CAAC,MAAM,CAAC;gBACxB,MAAM,EAAE,iBAAiB;gBACzB,OAAO,EAAE,EAAE,CAAC,OAAO;gBACnB,QAAQ,EAAE,EAAE,CAAC,QAAQ;gBACrB,MAAM,EAAE,EAAE,CAAC,MAAM;gBACjB,MAAM,EAAE,EAAE,CAAC,MAAM,IAAI,WAAW;gBAChC,mBAAmB,EAAE,EAAE,CAAC,mBAAmB,IAAI,IAAI;aACpD,CAAC,CAAC;QACL,CAAC;IACH,CAAC;IAED,IAAI,MAAM,CAAC,WAAW,EAAE,CAAC;QACvB,KAAK,MAAM,UAAU,IAAI,MAAM,CAAC,WAAW,EAAE,CAAC;YAC5C,EAAE,CAAC,WAAW,CAAC,MAAM,CAAC;gBACpB,MAAM,EAAE,YAAY;gBACpB,IAAI,EAAE,UAAU,CAAC,IAAI;gBACrB,IAAI,EAAE,UAAU,CAAC,IAAI;gBACrB,WAAW,EAAE,UAAU,CAAC,WAAW,IAAI,IAAI;aAC5C,CAAC,CAAC;QACL,CAAC;IACH,CAAC;IAED,IAAI,MAAM,CAAC,KAAK,EAAE,CAAC;QACjB,KAAK,MAAM,UAAU,IAAI,MAAM,CAAC,KAAK,EAAE,CAAC;YACtC,MAAM,IAAI,GAAG,EAAE,CAAC,KAAK,CAAC,MAAM,CAAC;gBAC3B,MAAM,EAAE,MAAM;gBACd,IAAI,EAAE,UAAU,CAAC,IAAI;gBACrB,IAAI,EAAE,UAAU,CAAC,IAAI;gBACrB,WAAW,EAAE,UAAU,CAAC,WAAW,IAAI,IAAI;gBAC3C,IAAI,EAAE,UAAU,CAAC,IAAI,IAAI,iBAAiB;gBAC1C,eAAe,EAAE,UAAU,CAAC,eAAe,IAAI,IAAI;gBACnD,eAAe,EAAE,UAAU,CAAC,eAAe,IAAI,KAAK;gBACpD,QAAQ,EAAE,UAAU,CAAC,QAAQ,IAAI,CAAC;aACnC,CAAC,CAAC;YAEH,IAAI,UAAU,CAAC,WAAW,EAAE,CAAC;gBAC3B,KAAK,MAAM,QAAQ,IAAI,UAAU,CAAC,WAAW,EAAE,CAAC;oBAC9C,MAAM,IAAI,GAAG,EAAE,CAAC,WAAW,CAAC,SAAS,CAAC,MAAM,EAAE,QAAQ,CAAC,CAAC;oBACxD,IAAI,IAAI,EAAE,CAAC;wBACT,EAAE,CAAC,eAAe,CAAC,MAAM,CAAC,EAAE,OAAO,EAAE,IAAI,CAAC,EAAE,EAAE,aAAa,EAAE,IAAI,CAAC,EAAE,EAAE,CAAC,CAAC;oBAC1E,CAAC;gBACH,CAAC;YACH,CAAC;QACH,CAAC;IACH,CAAC;IAED,IAAI,MAAM,CAAC,WAAW,EAAE,CAAC;QACvB,KAAK,MAAM,SAAS,IAAI,MAAM,CAAC,WAAW,EAAE,CAAC;YAC3C,MAAM,KAAK,GAAG,yBAAyB,EAAE,CAAC;YAC1C,EAAE,CAAC,WAAW,CAAC,MAAM,CAAC;gBACpB,MAAM,EAAE,YAAY;gBACpB,KAAK,EAAE,SAAS,CAAC,KAAK;gBACtB,KAAK,EAAE,SAAS;gBAChB,KAAK;gBACL,qBAAqB,EAAE,GAAG,QAAQ,6CAA6C,KAAK,EAAE;gBACtF,eAAe,EAAE,SAAS,CAAC,eAAe,IAAI,IAAI;gBAClD,eAAe,EAAE,SAAS,CAAC,eAAe,IAAI,IAAI;gBAClD,SAAS,EAAE,SAAS,CAAC,SAAS,IAAI,IAAI;gBACtC,UAAU,EAAE,SAAS,CAAC,EAAE,GAAG,EAAE,CAAC;aAC/B,CAAC,CAAC;QACL,CAAC;IACH,CAAC;IAED,IAAI,MAAM,CAAC,gBAAgB,EAAE,CAAC;QAC5B,KAAK,MAAM,QAAQ,IAAI,MAAM,CAAC,gBAAgB,EAAE,CAAC;YAC/C,EAAE,CAAC,gBAAgB,CAAC,MAAM,CAAC;gBACzB,MAAM,EAAE,kBAAkB;gBAC1B,GAAG,EAAE,QAAQ,CAAC,GAAG;gBACjB,MAAM,EAAE,WAAW,CAAC,EAAE,CAAC,CAAC,QAAQ,CAAC,KAAK,CAAC;gBACvC,OAAO,EAAE,QAAQ,CAAC,OAAO,KAAK,KAAK;gBACnC,MAAM,EAAE,QAAQ,CAAC,MAAM,IAAI,EAAE;gBAC7B,WAAW,EAAE,IAAI;aAClB,CAAC,CAAC;QACL,CAAC;IACH,CAAC;AACH,CAAC;AAED,MAAM,CAAC,MAAM,YAAY,GAAkB;IACzC,IAAI,EAAE,QAAQ;IACd,QAAQ,CAAC,GAAiB;QACxB,kBAAkB,CAAC,GAAG,CAAC,CAAC;QACxB,wBAAwB,CAAC,GAAG,CAAC,CAAC;QAC9B,gBAAgB,CAAC,GAAG,CAAC,CAAC;QACtB,UAAU,CAAC,GAAG,CAAC,CAAC;QAChB,uBAAuB,CAAC,GAAG,CAAC,CAAC;QAC7B,mBAAmB,CAAC,GAAG,CAAC,CAAC;QACzB,eAAe,CAAC,GAAG,CAAC,CAAC;QACrB,gBAAgB,CAAC,GAAG,CAAC,CAAC;QACtB,mBAAmB,CAAC,GAAG,CAAC,CAAC;QACzB,aAAa,CAAC,GAAG,CAAC,CAAC;QACnB,UAAU,CAAC,GAAG,CAAC,CAAC;QAChB,gBAAgB,CAAC,GAAG,CAAC,CAAC;QACtB,SAAS,CAAC,GAAG,CAAC,CAAC;QACf,UAAU,CAAC,GAAG,CAAC,CAAC;QAChB,gBAAgB,CAAC,GAAG,CAAC,CAAC;QACtB,YAAY,CAAC,GAAG,CAAC,CAAC;QAClB,iBAAiB,CAAC,GAAG,CAAC,CAAC;QACvB,YAAY,CAAC,GAAG,CAAC,CAAC;QAClB,uBAAuB,CAAC,GAAG,CAAC,CAAC;QAC7B,6BAA6B,CAAC,GAAG,CAAC,CAAC;QACnC,0BAA0B,CAAC,GAAG,CAAC,CAAC;QAChC,2BAA2B,CAAC,GAAG,CAAC,CAAC;QACjC,wBAAwB,CAAC,GAAG,CAAC,CAAC;QAC9B,YAAY,CAAC,GAAG,CAAC,CAAC;QAClB,eAAe,CAAC,GAAG,CAAC,CAAC;QACrB,YAAY,CAAC,GAAG,CAAC,CAAC;QAClB,WAAW,CAAC,GAAG,CAAC,CAAC;QACjB,aAAa,CAAC,GAAG,CAAC,CAAC;QACnB,eAAe,CAAC,GAAG,CAAC,CAAC;QACrB,cAAc,CAAC,GAAG,CAAC,CAAC;QACpB,iBAAiB,CAAC,GAAG,CAAC,CAAC;QACvB,qBAAqB,CAAC,GAAG,CAAC,CAAC;QAC3B,qBAAqB,CAAC,GAAG,CAAC,CAAC;QAC3B,WAAW,CAAC,GAAG,CAAC,CAAC;QAEjB,8DAA8D;QAC9D,kFAAkF;QAClF,MAAM,QAAQ,GAAG,IAAI,QAAQ,CAAC,GAAG,CAAC,KAAK,CAAC,CAAC;QACzC,GAAG,CAAC,KAAK,CAAC,OAAO,CAAC,UAAU,CAAC,QAAQ,EAAE,QAAQ,CAAC,CAAC;QACjD,MAAM,EAAE,GAAG,cAAc,CAAC,GAAG,CAAC,KAAK,CAAC,CAAC;QAErC,EAAE,CAAC,KAAK,CAAC,QAAQ,CAAC;YAChB,QAAQ,EAAE,CAAC,CAAC,EAAE,EAAE,CAAC,QAAQ,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,MAAM,CAAC,WAAW,EAAE,IAAI,EAAE,UAAU,CAAC,CAAC,CAAC,EAAE,CAAC;YAClF,QAAQ,EAAE,CAAC,CAAC,EAAE,EAAE,CAAC,QAAQ,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,MAAM,CAAC,WAAW,EAAE,IAAI,EAAE,UAAU,CAAC,CAAC,CAAC,EAAE,CAAC;YAClF,QAAQ,EAAE,CAAC,CAAC,EAAE,EAAE,CAAC,QAAQ,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,MAAM,CAAC,WAAW,EAAE,IAAI,EAAE,UAAU,CAAC,CAAC,CAAC,EAAE,CAAC;SACnF,CAAC,CAAC;QACH,EAAE,CAAC,aAAa,CAAC,QAAQ,CAAC;YACxB,QAAQ,EAAE,CAAC,CAAC,EAAE,EAAE,CAAC,QAAQ,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,MAAM,CAAC,mBAAmB,EAAE,IAAI,EAAE,kBAAkB,CAAC,CAAC,EAAE,EAAE,CAAC,EAAE,CAAC;YACtG,QAAQ,EAAE,CAAC,CAAC,EAAE,EAAE,CAAC,QAAQ,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,MAAM,CAAC,mBAAmB,EAAE,IAAI,EAAE,kBAAkB,CAAC,CAAC,EAAE,EAAE,CAAC,EAAE,CAAC;YACtG,QAAQ,EAAE,CAAC,CAAC,EAAE,EAAE,CAAC,QAAQ,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,MAAM,CAAC,mBAAmB,EAAE,IAAI,EAAE,kBAAkB,CAAC,CAAC,EAAE,EAAE,CAAC,EAAE,CAAC;SACvG,CAAC,CAAC;QACH,EAAE,CAAC,mBAAmB,CAAC,QAAQ,CAAC;YAC9B,QAAQ,EAAE,CAAC,CAAC,EAAE,EAAE,CAAC,QAAQ,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,MAAM,CAAC,yBAAyB,EAAE,IAAI,EAAE,YAAY,CAAC,CAAC,CAAC,EAAE,CAAC;YAClG,QAAQ,EAAE,CAAC,CAAC,EAAE,EAAE,CACd,QAAQ,CAAC,IAAI,CAAC;gBACZ,KAAK,EAAE,CAAC,CAAC,KAAK,KAAK,UAAU,CAAC,CAAC,CAAC,MAAM,CAAC,0BAA0B,CAAC,CAAC,CAAC,MAAM,CAAC,yBAAyB;gBACpG,IAAI,EAAE,YAAY,CAAC,CAAC,CAAC;aACtB,CAAC;YACJ,QAAQ,EAAE,CAAC,CAAC,EAAE,EAAE,CAAC,QAAQ,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,MAAM,CAAC,yBAAyB,EAAE,IAAI,EAAE,YAAY,CAAC,CAAC,CAAC,EAAE,CAAC;SACnG,CAAC,CAAC;QACH,EAAE,CAAC,uBAAuB,CAAC,QAAQ,CAAC;YAClC,QAAQ,EAAE,CAAC,CAAC,EAAE,EAAE,CAAC,QAAQ,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,MAAM,CAAC,6BAA6B,EAAE,IAAI,EAAE,gBAAgB,CAAC,CAAC,CAAC,EAAE,CAAC;YAC1G,QAAQ,EAAE,CAAC,CAAC,EAAE,EAAE,CAAC,QAAQ,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,MAAM,CAAC,6BAA6B,EAAE,IAAI,EAAE,gBAAgB,CAAC,CAAC,CAAC,EAAE,CAAC;YAC1G,QAAQ,EAAE,CAAC,CAAC,EAAE,EAAE,CAAC,QAAQ,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,MAAM,CAAC,6BAA6B,EAAE,IAAI,EAAE,gBAAgB,CAAC,CAAC,CAAC,EAAE,CAAC;SAC3G,CAAC,CAAC;QACH,EAAE,CAAC,WAAW,CAAC,QAAQ,CAAC;YACtB,QAAQ,EAAE,CAAC,CAAC,EAAE,EAAE,CAAC,QAAQ,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,MAAM,CAAC,iBAAiB,EAAE,IAAI,EAAE,gBAAgB,CAAC,CAAC,CAAC,EAAE,CAAC;YAC9F,QAAQ,EAAE,CAAC,CAAC,EAAE,EAAE,CAAC,QAAQ,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,MAAM,CAAC,iBAAiB,EAAE,IAAI,EAAE,gBAAgB,CAAC,CAAC,CAAC,EAAE,CAAC;YAC9F,QAAQ,EAAE,CAAC,CAAC,EAAE,EAAE,CAAC,QAAQ,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,MAAM,CAAC,iBAAiB,EAAE,IAAI,EAAE,gBAAgB,CAAC,CAAC,CAAC,EAAE,CAAC;SAC/F,CAAC,CAAC;QACH,EAAE,CAAC,QAAQ,CAAC,QAAQ,CAAC;YACnB,QAAQ,EAAE,CAAC,CAAC,EAAE,EAAE,CAAC,QAAQ,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,MAAM,CAAC,cAAc,EAAE,IAAI,EAAE,aAAa,CAAC,CAAC,CAAC,EAAE,CAAC;YACxF,QAAQ,EAAE,CAAC,CAAC,EAAE,EAAE,CAAC,QAAQ,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,MAAM,CAAC,cAAc,EAAE,IAAI,EAAE,aAAa,CAAC,CAAC,CAAC,EAAE,CAAC;SACzF,CAAC,CAAC;QACH,EAAE,CAAC,WAAW,CAAC,QAAQ,CAAC;YACtB,QAAQ,EAAE,CAAC,CAAC,EAAE,EAAE,CAAC,QAAQ,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,MAAM,CAAC,iBAAiB,EAAE,IAAI,EAAE,gBAAgB,CAAC,CAAC,CAAC,EAAE,CAAC;SAC/F,CAAC,CAAC;QACH,EAAE,CAAC,KAAK,CAAC,QAAQ,CAAC;YAChB,QAAQ,EAAE,CAAC,CAAC,EAAE,EAAE,CAAC,QAAQ,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,MAAM,CAAC,WAAW,EAAE,IAAI,EAAE,UAAU,CAAC,CAAC,CAAC,EAAE,CAAC;YAClF,QAAQ,EAAE,CAAC,CAAC,EAAE,EAAE,CAAC,QAAQ,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,MAAM,CAAC,WAAW,EAAE,IAAI,EAAE,UAAU,CAAC,CAAC,CAAC,EAAE,CAAC;YAClF,QAAQ,EAAE,CAAC,CAAC,EAAE,EAAE,CAAC,QAAQ,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,MAAM,CAAC,WAAW,EAAE,IAAI,EAAE,UAAU,CAAC,CAAC,CAAC,EAAE,CAAC;SACnF,CAAC,CAAC;QACH,EAAE,CAAC,WAAW,CAAC,QAAQ,CAAC;YACtB,QAAQ,EAAE,CAAC,CAAC,EAAE,EAAE,CAAC,QAAQ,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,MAAM,CAAC,iBAAiB,EAAE,IAAI,EAAE,gBAAgB,CAAC,CAAC,CAAC,EAAE,CAAC;YAC9F,QAAQ,EAAE,CAAC,CAAC,EAAE,EAAE,CAAC,QAAQ,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,MAAM,CAAC,iBAAiB,EAAE,IAAI,EAAE,gBAAgB,CAAC,CAAC,CAAC,EAAE,CAAC;YAC9F,QAAQ,EAAE,CAAC,CAAC,EAAE,EAAE,CAAC,QAAQ,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,MAAM,CAAC,iBAAiB,EAAE,IAAI,EAAE,gBAAgB,CAAC,CAAC,CAAC,EAAE,CAAC;SAC/F,CAAC,CAAC;QACH,EAAE,CAAC,WAAW,CAAC,QAAQ,CAAC;YACtB,QAAQ,EAAE,CAAC,CAAC,EAAE,EAAE,CAAC,QAAQ,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,MAAM,CAAC,gBAAgB,EAAE,IAAI,EAAE,eAAe,CAAC,CAAC,CAAC,EAAE,CAAC;YAC5F,QAAQ,EAAE,CAAC,CAAC,EAAE,EAAE,CAAC,QAAQ,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,MAAM,CAAC,gBAAgB,EAAE,IAAI,EAAE,eAAe,CAAC,CAAC,CAAC,EAAE,CAAC;YAC5F,QAAQ,EAAE,CAAC,CAAC,EAAE,EAAE,CAAC,QAAQ,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,MAAM,CAAC,gBAAgB,EAAE,IAAI,EAAE,eAAe,CAAC,CAAC,CAAC,EAAE,CAAC;SAC7F,CAAC,CAAC;QACH,EAAE,CAAC,cAAc,CAAC,QAAQ,CAAC;YACzB,QAAQ,EAAE,CAAC,CAAC,EAAE,EAAE,CAAC,QAAQ,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,MAAM,CAAC,oBAAoB,EAAE,IAAI,EAAE,mBAAmB,CAAC,CAAC,CAAC,EAAE,CAAC;YACpG,QAAQ,EAAE,CAAC,CAAC,EAAE,EAAE,CAAC,QAAQ,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,MAAM,CAAC,oBAAoB,EAAE,IAAI,EAAE,mBAAmB,CAAC,CAAC,CAAC,EAAE,CAAC;YACpG,QAAQ,EAAE,CAAC,CAAC,EAAE,EAAE,CAAC,QAAQ,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,MAAM,CAAC,oBAAoB,EAAE,IAAI,EAAE,mBAAmB,CAAC,CAAC,CAAC,EAAE,CAAC;SACrG,CAAC,CAAC;QACH,EAAE,CAAC,eAAe,CAAC,QAAQ,CAAC;YAC1B,QAAQ,EAAE,CAAC,CAAC,EAAE,EAAE,CAAC,QAAQ,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,MAAM,CAAC,qBAAqB,EAAE,IAAI,EAAE,oBAAoB,CAAC,CAAC,CAAC,EAAE,CAAC;YACtG,QAAQ,EAAE,CAAC,CAAC,EAAE,EAAE,CAAC,QAAQ,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,MAAM,CAAC,qBAAqB,EAAE,IAAI,EAAE,oBAAoB,CAAC,CAAC,CAAC,EAAE,CAAC;YACtG,QAAQ,EAAE,CAAC,CAAC,EAAE,EAAE,CAAC,QAAQ,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,MAAM,CAAC,qBAAqB,EAAE,IAAI,EAAE,oBAAoB,CAAC,CAAC,CAAC,EAAE,CAAC;SACvG,CAAC,CAAC;QACH,EAAE,CAAC,gBAAgB,CAAC,QAAQ,CAAC;YAC3B,QAAQ,EAAE,GAAG,EAAE,CAAC,QAAQ,CAAC,YAAY,EAAE;YACvC,QAAQ,EAAE,GAAG,EAAE,CAAC,QAAQ,CAAC,YAAY,EAAE;YACvC,QAAQ,EAAE,GAAG,EAAE,CAAC,QAAQ,CAAC,YAAY,EAAE;SACxC,CAAC,CAAC;IACL,CAAC;IACD,IAAI,CAAC,MAAa,EAAE,QAAgB;QAClC,oEAAoE;IACtE,CAAC;CACF,CAAC;AAEF,eAAe,YAAY,CAAC","sourcesContent":["import { randomBytes } from 'node:crypto';\nimport type { ServicePlugin, Store, RouteContext } from '../core/index.js';\nimport { generateId } from '../core/index.js';\nimport { getWorkOSStore, type WorkOSStore } from './store.js';\nimport { organizationRoutes } from './routes/organizations.js';\nimport { organizationDomainRoutes } from './routes/organization-domains.js';\nimport { membershipRoutes } from './routes/memberships.js';\nimport { userRoutes } from './routes/users.js';\nimport { emailVerificationRoutes } from './routes/email-verification.js';\nimport { passwordResetRoutes } from './routes/password-reset.js';\nimport { magicAuthRoutes } from './routes/magic-auth.js';\nimport { authFactorRoutes } from './routes/auth-factors.js';\nimport { sessionRoutes } from './routes/sessions.js';\nimport { authRoutes } from './routes/auth.js';\nimport { connectionRoutes } from './routes/connections.js';\nimport { ssoRoutes } from './routes/sso.js';\nimport { pipeRoutes } from './routes/pipes.js';\nimport { authChallengeRoutes } from './routes/auth-challenges.js';\nimport { invitationRoutes } from './routes/invitations.js';\nimport { configRoutes } from './routes/config.js';\nimport { userFeatureRoutes } from './routes/user-features.js';\nimport { widgetRoutes } from './routes/widgets.js';\nimport { authorizationRoleRoutes } from './routes/authorization-roles.js';\nimport { authorizationPermissionRoutes } from './routes/authorization-permissions.js';\nimport { authorizationOrgRoleRoutes } from './routes/authorization-org-roles.js';\nimport { authorizationResourceRoutes } from './routes/authorization-resources.js';\nimport { authorizationCheckRoutes } from './routes/authorization-checks.js';\nimport { portalRoutes } from './routes/portal.js';\nimport { legacyMfaRoutes } from './routes/legacy-mfa.js';\nimport { apiKeyRoutes } from './routes/api-keys.js';\nimport { radarRoutes } from './routes/radar.js';\nimport { connectRoutes } from './routes/connect.js';\nimport { directoryRoutes } from './routes/directories.js';\nimport { auditLogRoutes } from './routes/audit-logs.js';\nimport { featureFlagRoutes } from './routes/feature-flags.js';\nimport { dataIntegrationRoutes } from './routes/data-integrations.js';\nimport { webhookEndpointRoutes } from './routes/webhook-endpoints.js';\nimport { eventRoutes } from './routes/events.js';\nimport { EventBus } from './event-bus.js';\nimport { STORE_KEYS, EVENTS } from './constants.js';\nimport {\n  generateVerificationToken,\n  hashPassword,\n  expiresIn,\n  formatUser,\n  formatOrganization,\n  formatMembership,\n  formatConnection,\n  formatSession,\n  formatInvitation,\n  formatRole,\n  formatPermission,\n  formatDirectory,\n  formatDirectoryUser,\n  formatDirectoryGroup,\n  formatDomain,\n} from './helpers.js';\nimport type { WorkOSConnectionType, PipeProvider, PipeConnectionStatus } from './entities.js';\n\nexport { getWorkOSStore, type WorkOSStore } from './store.js';\nexport * from './entities.js';\n\nexport interface WorkOSSeedOrganization {\n  name: string;\n  external_id?: string;\n  metadata?: Record<string, string>;\n  domains?: Array<{ domain: string; state?: 'verified' | 'pending' }>;\n  memberships?: Array<{\n    user_id: string;\n    role?: string;\n    status?: 'active' | 'inactive' | 'pending';\n  }>;\n}\n\nexport interface WorkOSSeedUser {\n  email: string;\n  first_name?: string;\n  last_name?: string;\n  password?: string;\n  email_verified?: boolean;\n  external_id?: string;\n  metadata?: Record<string, string>;\n  impersonator?: { email: string; reason: string };\n}\n\nexport interface WorkOSSeedConnection {\n  name: string;\n  connection_type?: WorkOSConnectionType;\n  organization: string;\n  state?: 'active' | 'inactive' | 'validating';\n  domains?: string[];\n  profiles?: Array<{\n    email: string;\n    first_name?: string;\n    last_name?: string;\n    idp_id?: string;\n    groups?: string[];\n  }>;\n}\n\nexport interface WorkOSSeedPipeConnection {\n  user_id: string;\n  provider: PipeProvider;\n  scopes: string[];\n  status?: PipeConnectionStatus;\n  external_account_id?: string;\n}\n\nexport interface WorkOSSeedInvitation {\n  email: string;\n  organization_id?: string;\n  inviter_user_id?: string;\n  role_slug?: string;\n}\n\nexport interface WorkOSSeedRole {\n  slug: string;\n  name: string;\n  description?: string;\n  type?: 'EnvironmentRole' | 'OrganizationRole';\n  organization_id?: string;\n  is_default_role?: boolean;\n  priority?: number;\n  permissions?: string[];\n}\n\nexport interface WorkOSSeedPermission {\n  slug: string;\n  name: string;\n  description?: string;\n}\n\nexport interface WorkOSSeedWebhookEndpoint {\n  url: string;\n  events?: string[];\n  enabled?: boolean;\n}\n\nexport interface WorkOSSeedConfig {\n  organizations?: WorkOSSeedOrganization[];\n  users?: WorkOSSeedUser[];\n  connections?: WorkOSSeedConnection[];\n  pipeConnections?: WorkOSSeedPipeConnection[];\n  invitations?: WorkOSSeedInvitation[];\n  roles?: WorkOSSeedRole[];\n  permissions?: WorkOSSeedPermission[];\n  webhookEndpoints?: WorkOSSeedWebhookEndpoint[];\n}\n\nexport function seedFromConfig(store: Store, _baseUrl: string, config: WorkOSSeedConfig): void {\n  const ws = getWorkOSStore(store);\n\n  if (config.users) {\n    for (const userConfig of config.users) {\n      ws.users.insert({\n        object: 'user',\n        email: userConfig.email,\n        first_name: userConfig.first_name ?? null,\n        last_name: userConfig.last_name ?? null,\n        email_verified: userConfig.email_verified ?? false,\n        profile_picture_url: null,\n        last_sign_in_at: null,\n        external_id: userConfig.external_id ?? null,\n        metadata: userConfig.metadata ?? {},\n        locale: null,\n        password_hash: userConfig.password ? hashPassword(userConfig.password) : null,\n        impersonator: userConfig.impersonator ?? null,\n      });\n    }\n  }\n\n  if (config.organizations) {\n    for (const orgConfig of config.organizations) {\n      const org = ws.organizations.insert({\n        object: 'organization',\n        name: orgConfig.name,\n        external_id: orgConfig.external_id ?? null,\n        metadata: orgConfig.metadata ?? {},\n        stripe_customer_id: null,\n      });\n\n      if (orgConfig.domains) {\n        for (const dd of orgConfig.domains) {\n          ws.organizationDomains.insert({\n            object: 'organization_domain',\n            organization_id: org.id,\n            domain: dd.domain,\n            state: dd.state ?? 'pending',\n            verification_strategy: 'manual',\n            verification_token: generateVerificationToken(),\n            verification_prefix: 'workos-verify',\n          });\n        }\n      }\n\n      if (orgConfig.memberships) {\n        for (const mm of orgConfig.memberships) {\n          ws.organizationMemberships.insert({\n            object: 'organization_membership',\n            organization_id: org.id,\n            user_id: mm.user_id,\n            role: { slug: mm.role ?? 'member' },\n            status: mm.status ?? 'active',\n            external_id: null,\n            metadata: {},\n          });\n        }\n      }\n    }\n  }\n\n  if (config.connections) {\n    for (const connConfig of config.connections) {\n      const org = ws.organizations.findOneBy('name', connConfig.organization);\n      if (!org) continue;\n\n      const domains = (connConfig.domains ?? []).map((d) => ({\n        object: 'connection_domain' as const,\n        id: generateId('conn_domain'),\n        domain: d,\n      }));\n\n      const conn = ws.connections.insert({\n        object: 'connection',\n        organization_id: org.id,\n        connection_type: connConfig.connection_type ?? 'GenericSAML',\n        name: connConfig.name,\n        state: connConfig.state ?? 'active',\n        domains,\n      });\n\n      if (connConfig.profiles) {\n        for (const p of connConfig.profiles) {\n          ws.ssoProfiles.insert({\n            object: 'profile',\n            connection_id: conn.id,\n            connection_type: conn.connection_type,\n            organization_id: org.id,\n            idp_id: p.idp_id ?? `idp_${generateId('usr')}`,\n            email: p.email,\n            first_name: p.first_name ?? null,\n            last_name: p.last_name ?? null,\n            groups: p.groups ?? [],\n            raw_attributes: { email: p.email },\n          });\n        }\n      }\n    }\n  }\n\n  if (config.pipeConnections) {\n    for (const pc of config.pipeConnections) {\n      ws.pipeConnections.insert({\n        object: 'pipe_connection',\n        user_id: pc.user_id,\n        provider: pc.provider,\n        scopes: pc.scopes,\n        status: pc.status ?? 'connected',\n        external_account_id: pc.external_account_id ?? null,\n      });\n    }\n  }\n\n  if (config.permissions) {\n    for (const permConfig of config.permissions) {\n      ws.permissions.insert({\n        object: 'permission',\n        slug: permConfig.slug,\n        name: permConfig.name,\n        description: permConfig.description ?? null,\n      });\n    }\n  }\n\n  if (config.roles) {\n    for (const roleConfig of config.roles) {\n      const role = ws.roles.insert({\n        object: 'role',\n        slug: roleConfig.slug,\n        name: roleConfig.name,\n        description: roleConfig.description ?? null,\n        type: roleConfig.type ?? 'EnvironmentRole',\n        organization_id: roleConfig.organization_id ?? null,\n        is_default_role: roleConfig.is_default_role ?? false,\n        priority: roleConfig.priority ?? 0,\n      });\n\n      if (roleConfig.permissions) {\n        for (const permSlug of roleConfig.permissions) {\n          const perm = ws.permissions.findOneBy('slug', permSlug);\n          if (perm) {\n            ws.rolePermissions.insert({ role_id: role.id, permission_id: perm.id });\n          }\n        }\n      }\n    }\n  }\n\n  if (config.invitations) {\n    for (const invConfig of config.invitations) {\n      const token = generateVerificationToken();\n      ws.invitations.insert({\n        object: 'invitation',\n        email: invConfig.email,\n        state: 'pending',\n        token,\n        accept_invitation_url: `${_baseUrl}/user_management/invitations/accept?token=${token}`,\n        organization_id: invConfig.organization_id ?? null,\n        inviter_user_id: invConfig.inviter_user_id ?? null,\n        role_slug: invConfig.role_slug ?? null,\n        expires_at: expiresIn(72 * 60),\n      });\n    }\n  }\n\n  if (config.webhookEndpoints) {\n    for (const whConfig of config.webhookEndpoints) {\n      ws.webhookEndpoints.insert({\n        object: 'webhook_endpoint',\n        url: whConfig.url,\n        secret: randomBytes(32).toString('hex'),\n        enabled: whConfig.enabled !== false,\n        events: whConfig.events ?? [],\n        description: null,\n      });\n    }\n  }\n}\n\nexport const workosPlugin: ServicePlugin = {\n  name: 'workos',\n  register(ctx: RouteContext): void {\n    organizationRoutes(ctx);\n    organizationDomainRoutes(ctx);\n    membershipRoutes(ctx);\n    userRoutes(ctx);\n    emailVerificationRoutes(ctx);\n    passwordResetRoutes(ctx);\n    magicAuthRoutes(ctx);\n    authFactorRoutes(ctx);\n    authChallengeRoutes(ctx);\n    sessionRoutes(ctx);\n    authRoutes(ctx);\n    connectionRoutes(ctx);\n    ssoRoutes(ctx);\n    pipeRoutes(ctx);\n    invitationRoutes(ctx);\n    configRoutes(ctx);\n    userFeatureRoutes(ctx);\n    widgetRoutes(ctx);\n    authorizationRoleRoutes(ctx);\n    authorizationPermissionRoutes(ctx);\n    authorizationOrgRoleRoutes(ctx);\n    authorizationResourceRoutes(ctx);\n    authorizationCheckRoutes(ctx);\n    portalRoutes(ctx);\n    legacyMfaRoutes(ctx);\n    apiKeyRoutes(ctx);\n    radarRoutes(ctx);\n    connectRoutes(ctx);\n    directoryRoutes(ctx);\n    auditLogRoutes(ctx);\n    featureFlagRoutes(ctx);\n    dataIntegrationRoutes(ctx);\n    webhookEndpointRoutes(ctx);\n    eventRoutes(ctx);\n\n    // Set up event bus with collection hooks (Option A from spec)\n    // Store on ctx.store for route-level access (hybrid Option A+B for action events)\n    const eventBus = new EventBus(ctx.store);\n    ctx.store.setData(STORE_KEYS.eventBus, eventBus);\n    const ws = getWorkOSStore(ctx.store);\n\n    ws.users.setHooks({\n      onInsert: (u) => eventBus.emit({ event: EVENTS.userCreated, data: formatUser(u) }),\n      onUpdate: (u) => eventBus.emit({ event: EVENTS.userUpdated, data: formatUser(u) }),\n      onDelete: (u) => eventBus.emit({ event: EVENTS.userDeleted, data: formatUser(u) }),\n    });\n    ws.organizations.setHooks({\n      onInsert: (o) => eventBus.emit({ event: EVENTS.organizationCreated, data: formatOrganization(o, ws) }),\n      onUpdate: (o) => eventBus.emit({ event: EVENTS.organizationUpdated, data: formatOrganization(o, ws) }),\n      onDelete: (o) => eventBus.emit({ event: EVENTS.organizationDeleted, data: formatOrganization(o, ws) }),\n    });\n    ws.organizationDomains.setHooks({\n      onInsert: (d) => eventBus.emit({ event: EVENTS.organizationDomainCreated, data: formatDomain(d) }),\n      onUpdate: (d) =>\n        eventBus.emit({\n          event: d.state === 'verified' ? EVENTS.organizationDomainVerified : EVENTS.organizationDomainUpdated,\n          data: formatDomain(d),\n        }),\n      onDelete: (d) => eventBus.emit({ event: EVENTS.organizationDomainDeleted, data: formatDomain(d) }),\n    });\n    ws.organizationMemberships.setHooks({\n      onInsert: (m) => eventBus.emit({ event: EVENTS.organizationMembershipCreated, data: formatMembership(m) }),\n      onUpdate: (m) => eventBus.emit({ event: EVENTS.organizationMembershipUpdated, data: formatMembership(m) }),\n      onDelete: (m) => eventBus.emit({ event: EVENTS.organizationMembershipDeleted, data: formatMembership(m) }),\n    });\n    ws.connections.setHooks({\n      onInsert: (c) => eventBus.emit({ event: EVENTS.connectionCreated, data: formatConnection(c) }),\n      onUpdate: (c) => eventBus.emit({ event: EVENTS.connectionUpdated, data: formatConnection(c) }),\n      onDelete: (c) => eventBus.emit({ event: EVENTS.connectionDeleted, data: formatConnection(c) }),\n    });\n    ws.sessions.setHooks({\n      onInsert: (s) => eventBus.emit({ event: EVENTS.sessionCreated, data: formatSession(s) }),\n      onDelete: (s) => eventBus.emit({ event: EVENTS.sessionRevoked, data: formatSession(s) }),\n    });\n    ws.invitations.setHooks({\n      onInsert: (i) => eventBus.emit({ event: EVENTS.invitationCreated, data: formatInvitation(i) }),\n    });\n    ws.roles.setHooks({\n      onInsert: (r) => eventBus.emit({ event: EVENTS.roleCreated, data: formatRole(r) }),\n      onUpdate: (r) => eventBus.emit({ event: EVENTS.roleUpdated, data: formatRole(r) }),\n      onDelete: (r) => eventBus.emit({ event: EVENTS.roleDeleted, data: formatRole(r) }),\n    });\n    ws.permissions.setHooks({\n      onInsert: (p) => eventBus.emit({ event: EVENTS.permissionCreated, data: formatPermission(p) }),\n      onUpdate: (p) => eventBus.emit({ event: EVENTS.permissionUpdated, data: formatPermission(p) }),\n      onDelete: (p) => eventBus.emit({ event: EVENTS.permissionDeleted, data: formatPermission(p) }),\n    });\n    ws.directories.setHooks({\n      onInsert: (d) => eventBus.emit({ event: EVENTS.directoryCreated, data: formatDirectory(d) }),\n      onUpdate: (d) => eventBus.emit({ event: EVENTS.directoryUpdated, data: formatDirectory(d) }),\n      onDelete: (d) => eventBus.emit({ event: EVENTS.directoryDeleted, data: formatDirectory(d) }),\n    });\n    ws.directoryUsers.setHooks({\n      onInsert: (u) => eventBus.emit({ event: EVENTS.directoryUserCreated, data: formatDirectoryUser(u) }),\n      onUpdate: (u) => eventBus.emit({ event: EVENTS.directoryUserUpdated, data: formatDirectoryUser(u) }),\n      onDelete: (u) => eventBus.emit({ event: EVENTS.directoryUserDeleted, data: formatDirectoryUser(u) }),\n    });\n    ws.directoryGroups.setHooks({\n      onInsert: (g) => eventBus.emit({ event: EVENTS.directoryGroupCreated, data: formatDirectoryGroup(g) }),\n      onUpdate: (g) => eventBus.emit({ event: EVENTS.directoryGroupUpdated, data: formatDirectoryGroup(g) }),\n      onDelete: (g) => eventBus.emit({ event: EVENTS.directoryGroupDeleted, data: formatDirectoryGroup(g) }),\n    });\n    ws.webhookEndpoints.setHooks({\n      onInsert: () => eventBus.rebuildIndex(),\n      onUpdate: () => eventBus.rebuildIndex(),\n      onDelete: () => eventBus.rebuildIndex(),\n    });\n  },\n  seed(_store: Store, _baseUrl: string): void {\n    // No default seed data — users provide their own via seedFromConfig\n  },\n};\n\nexport default workosPlugin;\n"]}

package/dist/emulate/workos/role-helpers.d.ts

@@ -0,0 +1,21 @@
+import type { Context } from 'hono';
+import { type RouteContext } from '../core/index.js';
+import type { WorkOSStore } from './store.js';
+import type { WorkOSRole, WorkOSPermission } from './entities.js';
+export declare function findEnvRole(ws: WorkOSStore, slug: string): WorkOSRole | undefined;
+export declare function findOrgRole(ws: WorkOSStore, orgId: string, slug: string): WorkOSRole | undefined;
+export declare function requireEnvRole(ws: WorkOSStore, slug: string): WorkOSRole;
+export declare function requireOrgRole(ws: WorkOSStore, orgId: string, slug: string): WorkOSRole;
+export declare function getRolePermissions(ws: WorkOSStore, roleId: string): WorkOSPermission[];
+export declare function replaceRolePermissions(ws: WorkOSStore, roleId: string, permissionSlugs: string[]): WorkOSPermission[];
+export interface RoleRouteConfig {
+    pathPrefix: string;
+    roleType: 'EnvironmentRole' | 'OrganizationRole';
+    requireRole: (ws: WorkOSStore, c: Context) => WorkOSRole;
+    findRole: (ws: WorkOSStore, c: Context, slug: string) => WorkOSRole | undefined;
+    listFilter: (c: Context) => (r: WorkOSRole) => boolean;
+    insertDefaults: (c: Context) => Partial<WorkOSRole>;
+    duplicateMessage: string;
+    validateBeforeCreate?: (ws: WorkOSStore, c: Context) => void;
+}
+export declare function registerRoleRoutes(ctx: RouteContext, config: RoleRouteConfig): void;

package/dist/emulate/workos/role-helpers.js

@@ -0,0 +1,130 @@
+import { notFound, validationError, parseJsonBody, parseListParams } from '../core/index.js';
+import { getWorkOSStore } from './store.js';
+import { formatRole, formatPermission, formatListResponse } from './helpers.js';
+export function findEnvRole(ws, slug) {
+    return ws.roles.findBy('slug', slug).find((r) => r.type === 'EnvironmentRole');
+}
+export function findOrgRole(ws, orgId, slug) {
+    return ws.roles.findBy('organization_id', orgId).find((r) => r.slug === slug && r.type === 'OrganizationRole');
+}
+export function requireEnvRole(ws, slug) {
+    const role = findEnvRole(ws, slug);
+    if (!role)
+        throw notFound('Role');
+    return role;
+}
+export function requireOrgRole(ws, orgId, slug) {
+    const role = findOrgRole(ws, orgId, slug);
+    if (!role)
+        throw notFound('Role');
+    return role;
+}
+export function getRolePermissions(ws, roleId) {
+    const rps = ws.rolePermissions.findBy('role_id', roleId);
+    return rps.map((rp) => ws.permissions.get(rp.permission_id)).filter(Boolean);
+}
+export function replaceRolePermissions(ws, roleId, permissionSlugs) {
+    // Delete existing
+    ws.rolePermissions.deleteBy('role_id', roleId);
+    // Insert new
+    for (const permSlug of permissionSlugs) {
+        const perm = ws.permissions.findOneBy('slug', permSlug);
+        if (!perm)
+            throw notFound('Permission');
+        ws.rolePermissions.insert({ role_id: roleId, permission_id: perm.id });
+    }
+    return getRolePermissions(ws, roleId);
+}
+export function registerRoleRoutes(ctx, config) {
+    const { app, store } = ctx;
+    const ws = getWorkOSStore(store);
+    const { pathPrefix } = config;
+    app.post(pathPrefix, async (c) => {
+        config.validateBeforeCreate?.(ws, c);
+        const body = await parseJsonBody(c);
+        const slug = body.slug;
+        const name = body.name;
+        if (!slug || typeof slug !== 'string') {
+            throw validationError('slug is required', [{ field: 'slug', code: 'required' }]);
+        }
+        if (!name || typeof name !== 'string') {
+            throw validationError('name is required', [{ field: 'name', code: 'required' }]);
+        }
+        const existing = config.findRole(ws, c, slug);
+        if (existing) {
+            throw validationError(config.duplicateMessage, [{ field: 'slug', code: 'duplicate' }]);
+        }
+        const defaults = config.insertDefaults(c);
+        const role = ws.roles.insert({
+            object: 'role',
+            slug,
+            name,
+            description: body.description ?? null,
+            type: config.roleType,
+            organization_id: defaults.organization_id ?? null,
+            is_default_role: Boolean(body.is_default_role),
+            priority: typeof body.priority === 'number' ? body.priority : 0,
+        });
+        return c.json(formatRole(role), 201);
+    });
+    app.get(pathPrefix, (c) => {
+        const url = new URL(c.req.url);
+        const params = parseListParams(url);
+        const result = ws.roles.list({
+            ...params,
+            filter: config.listFilter(c),
+        });
+        return c.json(formatListResponse(result, formatRole));
+    });
+    app.get(`${pathPrefix}/:slug`, (c) => {
+        const role = config.requireRole(ws, c);
+        return c.json(formatRole(role));
+    });
+    app.put(`${pathPrefix}/:slug`, async (c) => {
+        const role = config.requireRole(ws, c);
+        const body = await parseJsonBody(c);
+        const updates = {};
+        if ('name' in body)
+            updates.name = body.name;
+        if ('description' in body)
+            updates.description = body.description ?? null;
+        if ('is_default_role' in body)
+            updates.is_default_role = Boolean(body.is_default_role);
+        if ('priority' in body)
+            updates.priority = body.priority;
+        const updated = ws.roles.update(role.id, updates);
+        return c.json(formatRole(updated));
+    });
+    app.delete(`${pathPrefix}/:slug`, (c) => {
+        const role = config.requireRole(ws, c);
+        ws.rolePermissions.deleteBy('role_id', role.id);
+        ws.roleAssignments.deleteBy('role_id', role.id);
+        ws.roles.delete(role.id);
+        return c.body(null, 204);
+    });
+    // Role permissions management
+    app.get(`${pathPrefix}/:slug/permissions`, (c) => {
+        const role = config.requireRole(ws, c);
+        const permissions = getRolePermissions(ws, role.id);
+        return c.json({
+            object: 'list',
+            data: permissions.map((p) => formatPermission(p)),
+            list_metadata: { before: null, after: null },
+        });
+    });
+    app.post(`${pathPrefix}/:slug/permissions`, async (c) => {
+        const role = config.requireRole(ws, c);
+        const body = await parseJsonBody(c);
+        const permissionSlugs = body.permissions;
+        if (!Array.isArray(permissionSlugs)) {
+            throw validationError('permissions must be an array of slugs', [{ field: 'permissions', code: 'invalid' }]);
+        }
+        const permissions = replaceRolePermissions(ws, role.id, permissionSlugs);
+        return c.json({
+            object: 'list',
+            data: permissions.map((p) => formatPermission(p)),
+            list_metadata: { before: null, after: null },
+        });
+    });
+}
+//# sourceMappingURL=role-helpers.js.map

package/dist/emulate/workos/role-helpers.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"role-helpers.js","sourceRoot":"","sources":["../../../src/emulate/workos/role-helpers.ts"],"names":[],"mappings":"AACA,OAAO,EAAqB,QAAQ,EAAE,eAAe,EAAE,aAAa,EAAE,eAAe,EAAE,MAAM,kBAAkB,CAAC;AAGhH,OAAO,EAAE,cAAc,EAAE,MAAM,YAAY,CAAC;AAC5C,OAAO,EAAE,UAAU,EAAE,gBAAgB,EAAE,kBAAkB,EAAE,MAAM,cAAc,CAAC;AAEhF,MAAM,UAAU,WAAW,CAAC,EAAe,EAAE,IAAY;IACvD,OAAO,EAAE,CAAC,KAAK,CAAC,MAAM,CAAC,MAAM,EAAE,IAAI,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,IAAI,KAAK,iBAAiB,CAAC,CAAC;AACjF,CAAC;AAED,MAAM,UAAU,WAAW,CAAC,EAAe,EAAE,KAAa,EAAE,IAAY;IACtE,OAAO,EAAE,CAAC,KAAK,CAAC,MAAM,CAAC,iBAAiB,EAAE,KAAK,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,IAAI,KAAK,IAAI,IAAI,CAAC,CAAC,IAAI,KAAK,kBAAkB,CAAC,CAAC;AACjH,CAAC;AAED,MAAM,UAAU,cAAc,CAAC,EAAe,EAAE,IAAY;IAC1D,MAAM,IAAI,GAAG,WAAW,CAAC,EAAE,EAAE,IAAI,CAAC,CAAC;IACnC,IAAI,CAAC,IAAI;QAAE,MAAM,QAAQ,CAAC,MAAM,CAAC,CAAC;IAClC,OAAO,IAAI,CAAC;AACd,CAAC;AAED,MAAM,UAAU,cAAc,CAAC,EAAe,EAAE,KAAa,EAAE,IAAY;IACzE,MAAM,IAAI,GAAG,WAAW,CAAC,EAAE,EAAE,KAAK,EAAE,IAAI,CAAC,CAAC;IAC1C,IAAI,CAAC,IAAI;QAAE,MAAM,QAAQ,CAAC,MAAM,CAAC,CAAC;IAClC,OAAO,IAAI,CAAC;AACd,CAAC;AAED,MAAM,UAAU,kBAAkB,CAAC,EAAe,EAAE,MAAc;IAChE,MAAM,GAAG,GAAG,EAAE,CAAC,eAAe,CAAC,MAAM,CAAC,SAAS,EAAE,MAAM,CAAC,CAAC;IACzD,OAAO,GAAG,CAAC,GAAG,CAAC,CAAC,EAAE,EAAE,EAAE,CAAC,EAAE,CAAC,WAAW,CAAC,GAAG,CAAC,EAAE,CAAC,aAAa,CAAC,CAAC,CAAC,MAAM,CAAC,OAAO,CAAuB,CAAC;AACrG,CAAC;AAED,MAAM,UAAU,sBAAsB,CAAC,EAAe,EAAE,MAAc,EAAE,eAAyB;IAC/F,kBAAkB;IAClB,EAAE,CAAC,eAAe,CAAC,QAAQ,CAAC,SAAS,EAAE,MAAM,CAAC,CAAC;IAE/C,aAAa;IACb,KAAK,MAAM,QAAQ,IAAI,eAAe,EAAE,CAAC;QACvC,MAAM,IAAI,GAAG,EAAE,CAAC,WAAW,CAAC,SAAS,CAAC,MAAM,EAAE,QAAQ,CAAC,CAAC;QACxD,IAAI,CAAC,IAAI;YAAE,MAAM,QAAQ,CAAC,YAAY,CAAC,CAAC;QACxC,EAAE,CAAC,eAAe,CAAC,MAAM,CAAC,EAAE,OAAO,EAAE,MAAM,EAAE,aAAa,EAAE,IAAI,CAAC,EAAE,EAAE,CAAC,CAAC;IACzE,CAAC;IAED,OAAO,kBAAkB,CAAC,EAAE,EAAE,MAAM,CAAC,CAAC;AACxC,CAAC;AAaD,MAAM,UAAU,kBAAkB,CAAC,GAAiB,EAAE,MAAuB;IAC3E,MAAM,EAAE,GAAG,EAAE,KAAK,EAAE,GAAG,GAAG,CAAC;IAC3B,MAAM,EAAE,GAAG,cAAc,CAAC,KAAK,CAAC,CAAC;IACjC,MAAM,EAAE,UAAU,EAAE,GAAG,MAAM,CAAC;IAE9B,GAAG,CAAC,IAAI,CAAC,UAAU,EAAE,KAAK,EAAE,CAAC,EAAE,EAAE;QAC/B,MAAM,CAAC,oBAAoB,EAAE,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC;QAErC,MAAM,IAAI,GAAG,MAAM,aAAa,CAAC,CAAC,CAAC,CAAC;QACpC,MAAM,IAAI,GAAG,IAAI,CAAC,IAAc,CAAC;QACjC,MAAM,IAAI,GAAG,IAAI,CAAC,IAAc,CAAC;QAEjC,IAAI,CAAC,IAAI,IAAI,OAAO,IAAI,KAAK,QAAQ,EAAE,CAAC;YACtC,MAAM,eAAe,CAAC,kBAAkB,EAAE,CAAC,EAAE,KAAK,EAAE,MAAM,EAAE,IAAI,EAAE,UAAU,EAAE,CAAC,CAAC,CAAC;QACnF,CAAC;QACD,IAAI,CAAC,IAAI,IAAI,OAAO,IAAI,KAAK,QAAQ,EAAE,CAAC;YACtC,MAAM,eAAe,CAAC,kBAAkB,EAAE,CAAC,EAAE,KAAK,EAAE,MAAM,EAAE,IAAI,EAAE,UAAU,EAAE,CAAC,CAAC,CAAC;QACnF,CAAC;QAED,MAAM,QAAQ,GAAG,MAAM,CAAC,QAAQ,CAAC,EAAE,EAAE,CAAC,EAAE,IAAI,CAAC,CAAC;QAC9C,IAAI,QAAQ,EAAE,CAAC;YACb,MAAM,eAAe,CAAC,MAAM,CAAC,gBAAgB,EAAE,CAAC,EAAE,KAAK,EAAE,MAAM,EAAE,IAAI,EAAE,WAAW,EAAE,CAAC,CAAC,CAAC;QACzF,CAAC;QAED,MAAM,QAAQ,GAAG,MAAM,CAAC,cAAc,CAAC,CAAC,CAAC,CAAC;QAC1C,MAAM,IAAI,GAAG,EAAE,CAAC,KAAK,CAAC,MAAM,CAAC;YAC3B,MAAM,EAAE,MAAM;YACd,IAAI;YACJ,IAAI;YACJ,WAAW,EAAG,IAAI,CAAC,WAAsB,IAAI,IAAI;YACjD,IAAI,EAAE,MAAM,CAAC,QAAQ;YACrB,eAAe,EAAE,QAAQ,CAAC,eAAe,IAAI,IAAI;YACjD,eAAe,EAAE,OAAO,CAAC,IAAI,CAAC,eAAe,CAAC;YAC9C,QAAQ,EAAE,OAAO,IAAI,CAAC,QAAQ,KAAK,QAAQ,CAAC,CAAC,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC,CAAC,CAAC;SAChE,CAAC,CAAC;QAEH,OAAO,CAAC,CAAC,IAAI,CAAC,UAAU,CAAC,IAAI,CAAC,EAAE,GAAG,CAAC,CAAC;IACvC,CAAC,CAAC,CAAC;IAEH,GAAG,CAAC,GAAG,CAAC,UAAU,EAAE,CAAC,CAAC,EAAE,EAAE;QACxB,MAAM,GAAG,GAAG,IAAI,GAAG,CAAC,CAAC,CAAC,GAAG,CAAC,GAAG,CAAC,CAAC;QAC/B,MAAM,MAAM,GAAG,eAAe,CAAC,GAAG,CAAC,CAAC;QAEpC,MAAM,MAAM,GAAG,EAAE,CAAC,KAAK,CAAC,IAAI,CAAC;YAC3B,GAAG,MAAM;YACT,MAAM,EAAE,MAAM,CAAC,UAAU,CAAC,CAAC,CAAC;SAC7B,CAAC,CAAC;QAEH,OAAO,CAAC,CAAC,IAAI,CAAC,kBAAkB,CAAC,MAAM,EAAE,UAAU,CAAC,CAAC,CAAC;IACxD,CAAC,CAAC,CAAC;IAEH,GAAG,CAAC,GAAG,CAAC,GAAG,UAAU,QAAQ,EAAE,CAAC,CAAC,EAAE,EAAE;QACnC,MAAM,IAAI,GAAG,MAAM,CAAC,WAAW,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC;QACvC,OAAO,CAAC,CAAC,IAAI,CAAC,UAAU,CAAC,IAAI,CAAC,CAAC,CAAC;IAClC,CAAC,CAAC,CAAC;IAEH,GAAG,CAAC,GAAG,CAAC,GAAG,UAAU,QAAQ,EAAE,KAAK,EAAE,CAAC,EAAE,EAAE;QACzC,MAAM,IAAI,GAAG,MAAM,CAAC,WAAW,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC;QAEvC,MAAM,IAAI,GAAG,MAAM,aAAa,CAAC,CAAC,CAAC,CAAC;QACpC,MAAM,OAAO,GAA4B,EAAE,CAAC;QAC5C,IAAI,MAAM,IAAI,IAAI;YAAE,OAAO,CAAC,IAAI,GAAG,IAAI,CAAC,IAAI,CAAC;QAC7C,IAAI,aAAa,IAAI,IAAI;YAAE,OAAO,CAAC,WAAW,GAAG,IAAI,CAAC,WAAW,IAAI,IAAI,CAAC;QAC1E,IAAI,iBAAiB,IAAI,IAAI;YAAE,OAAO,CAAC,eAAe,GAAG,OAAO,CAAC,IAAI,CAAC,eAAe,CAAC,CAAC;QACvF,IAAI,UAAU,IAAI,IAAI;YAAE,OAAO,CAAC,QAAQ,GAAG,IAAI,CAAC,QAAQ,CAAC;QAEzD,MAAM,OAAO,GAAG,EAAE,CAAC,KAAK,CAAC,MAAM,CAAC,IAAI,CAAC,EAAE,EAAE,OAAO,CAAC,CAAC;QAClD,OAAO,CAAC,CAAC,IAAI,CAAC,UAAU,CAAC,OAAQ,CAAC,CAAC,CAAC;IACtC,CAAC,CAAC,CAAC;IAEH,GAAG,CAAC,MAAM,CAAC,GAAG,UAAU,QAAQ,EAAE,CAAC,CAAC,EAAE,EAAE;QACtC,MAAM,IAAI,GAAG,MAAM,CAAC,WAAW,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC;QAEvC,EAAE,CAAC,eAAe,CAAC,QAAQ,CAAC,SAAS,EAAE,IAAI,CAAC,EAAE,CAAC,CAAC;QAChD,EAAE,CAAC,eAAe,CAAC,QAAQ,CAAC,SAAS,EAAE,IAAI,CAAC,EAAE,CAAC,CAAC;QAEhD,EAAE,CAAC,KAAK,CAAC,MAAM,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;QACzB,OAAO,CAAC,CAAC,IAAI,CAAC,IAAI,EAAE,GAAG,CAAC,CAAC;IAC3B,CAAC,CAAC,CAAC;IAEH,8BAA8B;IAC9B,GAAG,CAAC,GAAG,CAAC,GAAG,UAAU,oBAAoB,EAAE,CAAC,CAAC,EAAE,EAAE;QAC/C,MAAM,IAAI,GAAG,MAAM,CAAC,WAAW,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC;QACvC,MAAM,WAAW,GAAG,kBAAkB,CAAC,EAAE,EAAE,IAAI,CAAC,EAAE,CAAC,CAAC;QAEpD,OAAO,CAAC,CAAC,IAAI,CAAC;YACZ,MAAM,EAAE,MAAM;YACd,IAAI,EAAE,WAAW,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,gBAAgB,CAAC,CAAC,CAAC,CAAC;YACjD,aAAa,EAAE,EAAE,MAAM,EAAE,IAAI,EAAE,KAAK,EAAE,IAAI,EAAE;SAC7C,CAAC,CAAC;IACL,CAAC,CAAC,CAAC;IAEH,GAAG,CAAC,IAAI,CAAC,GAAG,UAAU,oBAAoB,EAAE,KAAK,EAAE,CAAC,EAAE,EAAE;QACtD,MAAM,IAAI,GAAG,MAAM,CAAC,WAAW,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC;QAEvC,MAAM,IAAI,GAAG,MAAM,aAAa,CAAC,CAAC,CAAC,CAAC;QACpC,MAAM,eAAe,GAAG,IAAI,CAAC,WAAuB,CAAC;QACrD,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,eAAe,CAAC,EAAE,CAAC;YACpC,MAAM,eAAe,CAAC,uCAAuC,EAAE,CAAC,EAAE,KAAK,EAAE,aAAa,EAAE,IAAI,EAAE,SAAS,EAAE,CAAC,CAAC,CAAC;QAC9G,CAAC;QAED,MAAM,WAAW,GAAG,sBAAsB,CAAC,EAAE,EAAE,IAAI,CAAC,EAAE,EAAE,eAAe,CAAC,CAAC;QAEzE,OAAO,CAAC,CAAC,IAAI,CAAC;YACZ,MAAM,EAAE,MAAM;YACd,IAAI,EAAE,WAAW,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,gBAAgB,CAAC,CAAC,CAAC,CAAC;YACjD,aAAa,EAAE,EAAE,MAAM,EAAE,IAAI,EAAE,KAAK,EAAE,IAAI,EAAE;SAC7C,CAAC,CAAC;IACL,CAAC,CAAC,CAAC;AACL,CAAC","sourcesContent":["import type { Context } from 'hono';\nimport { type RouteContext, notFound, validationError, parseJsonBody, parseListParams } from '../core/index.js';\nimport type { WorkOSStore } from './store.js';\nimport type { WorkOSRole, WorkOSPermission } from './entities.js';\nimport { getWorkOSStore } from './store.js';\nimport { formatRole, formatPermission, formatListResponse } from './helpers.js';\n\nexport function findEnvRole(ws: WorkOSStore, slug: string): WorkOSRole | undefined {\n  return ws.roles.findBy('slug', slug).find((r) => r.type === 'EnvironmentRole');\n}\n\nexport function findOrgRole(ws: WorkOSStore, orgId: string, slug: string): WorkOSRole | undefined {\n  return ws.roles.findBy('organization_id', orgId).find((r) => r.slug === slug && r.type === 'OrganizationRole');\n}\n\nexport function requireEnvRole(ws: WorkOSStore, slug: string): WorkOSRole {\n  const role = findEnvRole(ws, slug);\n  if (!role) throw notFound('Role');\n  return role;\n}\n\nexport function requireOrgRole(ws: WorkOSStore, orgId: string, slug: string): WorkOSRole {\n  const role = findOrgRole(ws, orgId, slug);\n  if (!role) throw notFound('Role');\n  return role;\n}\n\nexport function getRolePermissions(ws: WorkOSStore, roleId: string): WorkOSPermission[] {\n  const rps = ws.rolePermissions.findBy('role_id', roleId);\n  return rps.map((rp) => ws.permissions.get(rp.permission_id)).filter(Boolean) as WorkOSPermission[];\n}\n\nexport function replaceRolePermissions(ws: WorkOSStore, roleId: string, permissionSlugs: string[]): WorkOSPermission[] {\n  // Delete existing\n  ws.rolePermissions.deleteBy('role_id', roleId);\n\n  // Insert new\n  for (const permSlug of permissionSlugs) {\n    const perm = ws.permissions.findOneBy('slug', permSlug);\n    if (!perm) throw notFound('Permission');\n    ws.rolePermissions.insert({ role_id: roleId, permission_id: perm.id });\n  }\n\n  return getRolePermissions(ws, roleId);\n}\n\nexport interface RoleRouteConfig {\n  pathPrefix: string;\n  roleType: 'EnvironmentRole' | 'OrganizationRole';\n  requireRole: (ws: WorkOSStore, c: Context) => WorkOSRole;\n  findRole: (ws: WorkOSStore, c: Context, slug: string) => WorkOSRole | undefined;\n  listFilter: (c: Context) => (r: WorkOSRole) => boolean;\n  insertDefaults: (c: Context) => Partial<WorkOSRole>;\n  duplicateMessage: string;\n  validateBeforeCreate?: (ws: WorkOSStore, c: Context) => void;\n}\n\nexport function registerRoleRoutes(ctx: RouteContext, config: RoleRouteConfig): void {\n  const { app, store } = ctx;\n  const ws = getWorkOSStore(store);\n  const { pathPrefix } = config;\n\n  app.post(pathPrefix, async (c) => {\n    config.validateBeforeCreate?.(ws, c);\n\n    const body = await parseJsonBody(c);\n    const slug = body.slug as string;\n    const name = body.name as string;\n\n    if (!slug || typeof slug !== 'string') {\n      throw validationError('slug is required', [{ field: 'slug', code: 'required' }]);\n    }\n    if (!name || typeof name !== 'string') {\n      throw validationError('name is required', [{ field: 'name', code: 'required' }]);\n    }\n\n    const existing = config.findRole(ws, c, slug);\n    if (existing) {\n      throw validationError(config.duplicateMessage, [{ field: 'slug', code: 'duplicate' }]);\n    }\n\n    const defaults = config.insertDefaults(c);\n    const role = ws.roles.insert({\n      object: 'role',\n      slug,\n      name,\n      description: (body.description as string) ?? null,\n      type: config.roleType,\n      organization_id: defaults.organization_id ?? null,\n      is_default_role: Boolean(body.is_default_role),\n      priority: typeof body.priority === 'number' ? body.priority : 0,\n    });\n\n    return c.json(formatRole(role), 201);\n  });\n\n  app.get(pathPrefix, (c) => {\n    const url = new URL(c.req.url);\n    const params = parseListParams(url);\n\n    const result = ws.roles.list({\n      ...params,\n      filter: config.listFilter(c),\n    });\n\n    return c.json(formatListResponse(result, formatRole));\n  });\n\n  app.get(`${pathPrefix}/:slug`, (c) => {\n    const role = config.requireRole(ws, c);\n    return c.json(formatRole(role));\n  });\n\n  app.put(`${pathPrefix}/:slug`, async (c) => {\n    const role = config.requireRole(ws, c);\n\n    const body = await parseJsonBody(c);\n    const updates: Record<string, unknown> = {};\n    if ('name' in body) updates.name = body.name;\n    if ('description' in body) updates.description = body.description ?? null;\n    if ('is_default_role' in body) updates.is_default_role = Boolean(body.is_default_role);\n    if ('priority' in body) updates.priority = body.priority;\n\n    const updated = ws.roles.update(role.id, updates);\n    return c.json(formatRole(updated!));\n  });\n\n  app.delete(`${pathPrefix}/:slug`, (c) => {\n    const role = config.requireRole(ws, c);\n\n    ws.rolePermissions.deleteBy('role_id', role.id);\n    ws.roleAssignments.deleteBy('role_id', role.id);\n\n    ws.roles.delete(role.id);\n    return c.body(null, 204);\n  });\n\n  // Role permissions management\n  app.get(`${pathPrefix}/:slug/permissions`, (c) => {\n    const role = config.requireRole(ws, c);\n    const permissions = getRolePermissions(ws, role.id);\n\n    return c.json({\n      object: 'list',\n      data: permissions.map((p) => formatPermission(p)),\n      list_metadata: { before: null, after: null },\n    });\n  });\n\n  app.post(`${pathPrefix}/:slug/permissions`, async (c) => {\n    const role = config.requireRole(ws, c);\n\n    const body = await parseJsonBody(c);\n    const permissionSlugs = body.permissions as string[];\n    if (!Array.isArray(permissionSlugs)) {\n      throw validationError('permissions must be an array of slugs', [{ field: 'permissions', code: 'invalid' }]);\n    }\n\n    const permissions = replaceRolePermissions(ws, role.id, permissionSlugs);\n\n    return c.json({\n      object: 'list',\n      data: permissions.map((p) => formatPermission(p)),\n      list_metadata: { before: null, after: null },\n    });\n  });\n}\n"]}

package/dist/emulate/workos/routes/api-keys.d.ts

@@ -0,0 +1,2 @@
+import { type RouteContext } from '../../core/index.js';
+export declare function apiKeyRoutes(ctx: RouteContext): void;

package/dist/emulate/workos/routes/api-keys.js

@@ -0,0 +1,32 @@
+import { notFound, parseJsonBody, parseListParams } from '../../core/index.js';
+import { getWorkOSStore } from '../store.js';
+import { formatApiKeyRecord, formatListResponse } from '../helpers.js';
+import { STORE_KEYS } from '../constants.js';
+export function apiKeyRoutes(ctx) {
+    const { app, store } = ctx;
+    const ws = getWorkOSStore(store);
+    // Validate an API key
+    app.post('/api_keys/validations', async (c) => {
+        const body = await parseJsonBody(c);
+        const key = body.key;
+        const apiKeyMap = store.getData(STORE_KEYS.apiKeyMap) ?? {};
+        const valid = !!key && key in apiKeyMap;
+        return c.json({ valid });
+    });
+    // Delete an API key record
+    app.delete('/api_keys/:id', (c) => {
+        const record = ws.apiKeyRecords.get(c.req.param('id'));
+        if (!record)
+            throw notFound('ApiKey');
+        ws.apiKeyRecords.delete(record.id);
+        return c.body(null, 204);
+    });
+    // List API keys for an organization
+    app.get('/organizations/:orgId/api_keys', (c) => {
+        const url = new URL(c.req.url);
+        const params = parseListParams(url);
+        const result = ws.apiKeyRecords.list({ ...params });
+        return c.json(formatListResponse(result, formatApiKeyRecord));
+    });
+}
+//# sourceMappingURL=api-keys.js.map

package/dist/emulate/workos/routes/api-keys.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"api-keys.js","sourceRoot":"","sources":["../../../../src/emulate/workos/routes/api-keys.ts"],"names":[],"mappings":"AAAA,OAAO,EAAqB,QAAQ,EAAE,aAAa,EAAE,eAAe,EAAE,MAAM,qBAAqB,CAAC;AAClG,OAAO,EAAE,cAAc,EAAE,MAAM,aAAa,CAAC;AAC7C,OAAO,EAAE,kBAAkB,EAAE,kBAAkB,EAAE,MAAM,eAAe,CAAC;AAEvE,OAAO,EAAE,UAAU,EAAE,MAAM,iBAAiB,CAAC;AAE7C,MAAM,UAAU,YAAY,CAAC,GAAiB;IAC5C,MAAM,EAAE,GAAG,EAAE,KAAK,EAAE,GAAG,GAAG,CAAC;IAC3B,MAAM,EAAE,GAAG,cAAc,CAAC,KAAK,CAAC,CAAC;IAEjC,sBAAsB;IACtB,GAAG,CAAC,IAAI,CAAC,uBAAuB,EAAE,KAAK,EAAE,CAAC,EAAE,EAAE;QAC5C,MAAM,IAAI,GAAG,MAAM,aAAa,CAAC,CAAC,CAAC,CAAC;QACpC,MAAM,GAAG,GAAG,IAAI,CAAC,GAAyB,CAAC;QAC3C,MAAM,SAAS,GAAG,KAAK,CAAC,OAAO,CAAY,UAAU,CAAC,SAAS,CAAC,IAAI,EAAE,CAAC;QACvE,MAAM,KAAK,GAAG,CAAC,CAAC,GAAG,IAAI,GAAG,IAAI,SAAS,CAAC;QACxC,OAAO,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,CAAC,CAAC;IAC3B,CAAC,CAAC,CAAC;IAEH,2BAA2B;IAC3B,GAAG,CAAC,MAAM,CAAC,eAAe,EAAE,CAAC,CAAC,EAAE,EAAE;QAChC,MAAM,MAAM,GAAG,EAAE,CAAC,aAAa,CAAC,GAAG,CAAC,CAAC,CAAC,GAAG,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC,CAAC;QACvD,IAAI,CAAC,MAAM;YAAE,MAAM,QAAQ,CAAC,QAAQ,CAAC,CAAC;QACtC,EAAE,CAAC,aAAa,CAAC,MAAM,CAAC,MAAM,CAAC,EAAE,CAAC,CAAC;QACnC,OAAO,CAAC,CAAC,IAAI,CAAC,IAAI,EAAE,GAAG,CAAC,CAAC;IAC3B,CAAC,CAAC,CAAC;IAEH,oCAAoC;IACpC,GAAG,CAAC,GAAG,CAAC,gCAAgC,EAAE,CAAC,CAAC,EAAE,EAAE;QAC9C,MAAM,GAAG,GAAG,IAAI,GAAG,CAAC,CAAC,CAAC,GAAG,CAAC,GAAG,CAAC,CAAC;QAC/B,MAAM,MAAM,GAAG,eAAe,CAAC,GAAG,CAAC,CAAC;QACpC,MAAM,MAAM,GAAG,EAAE,CAAC,aAAa,CAAC,IAAI,CAAC,EAAE,GAAG,MAAM,EAAE,CAAC,CAAC;QACpD,OAAO,CAAC,CAAC,IAAI,CAAC,kBAAkB,CAAC,MAAM,EAAE,kBAAkB,CAAC,CAAC,CAAC;IAChE,CAAC,CAAC,CAAC;AACL,CAAC","sourcesContent":["import { type RouteContext, notFound, parseJsonBody, parseListParams } from '../../core/index.js';\nimport { getWorkOSStore } from '../store.js';\nimport { formatApiKeyRecord, formatListResponse } from '../helpers.js';\nimport type { ApiKeyMap } from '../../core/index.js';\nimport { STORE_KEYS } from '../constants.js';\n\nexport function apiKeyRoutes(ctx: RouteContext): void {\n  const { app, store } = ctx;\n  const ws = getWorkOSStore(store);\n\n  // Validate an API key\n  app.post('/api_keys/validations', async (c) => {\n    const body = await parseJsonBody(c);\n    const key = body.key as string | undefined;\n    const apiKeyMap = store.getData<ApiKeyMap>(STORE_KEYS.apiKeyMap) ?? {};\n    const valid = !!key && key in apiKeyMap;\n    return c.json({ valid });\n  });\n\n  // Delete an API key record\n  app.delete('/api_keys/:id', (c) => {\n    const record = ws.apiKeyRecords.get(c.req.param('id'));\n    if (!record) throw notFound('ApiKey');\n    ws.apiKeyRecords.delete(record.id);\n    return c.body(null, 204);\n  });\n\n  // List API keys for an organization\n  app.get('/organizations/:orgId/api_keys', (c) => {\n    const url = new URL(c.req.url);\n    const params = parseListParams(url);\n    const result = ws.apiKeyRecords.list({ ...params });\n    return c.json(formatListResponse(result, formatApiKeyRecord));\n  });\n}\n"]}

package/dist/emulate/workos/routes/audit-logs.d.ts

@@ -0,0 +1,2 @@
+import { type RouteContext } from '../../core/index.js';
+export declare function auditLogRoutes(ctx: RouteContext): void;

package/dist/emulate/workos/routes/audit-logs.js

@@ -0,0 +1,104 @@
+import { notFound, parseJsonBody, validationError, parseListParams } from '../../core/index.js';
+import { getWorkOSStore } from '../store.js';
+import { formatAuditLogAction, formatAuditLogEvent, formatAuditLogExport, formatListResponse } from '../helpers.js';
+import { STORE_KEY_PREFIXES } from '../constants.js';
+export function auditLogRoutes(ctx) {
+    const { app, store } = ctx;
+    const ws = getWorkOSStore(store);
+    // List actions
+    app.get('/audit_logs/actions', (c) => {
+        const url = new URL(c.req.url);
+        const params = parseListParams(url);
+        const result = ws.auditLogActions.list({ ...params });
+        return c.json(formatListResponse(result, formatAuditLogAction));
+    });
+    // Create/update action schema
+    app.post('/audit_logs/actions/:actionName/schemas', async (c) => {
+        const actionName = c.req.param('actionName');
+        const body = await parseJsonBody(c);
+        // Upsert: find existing action or create new one
+        let action = ws.auditLogActions.findOneBy('name', actionName);
+        if (action) {
+            // Store schema in store data keyed by action name
+            store.setData(`${STORE_KEY_PREFIXES.auditSchema}${actionName}`, body);
+            return c.json(formatAuditLogAction(action));
+        }
+        action = ws.auditLogActions.insert({
+            object: 'audit_log_action',
+            name: actionName,
+            description: null,
+            condition: null,
+        });
+        store.setData(`${STORE_KEY_PREFIXES.auditSchema}${actionName}`, body);
+        return c.json(formatAuditLogAction(action), 201);
+    });
+    // Create audit log event
+    app.post('/audit_logs/events', async (c) => {
+        const body = await parseJsonBody(c);
+        const organizationId = body.organization_id;
+        if (!organizationId) {
+            throw validationError('organization_id is required', [{ field: 'organization_id', code: 'required' }]);
+        }
+        const actionBody = body.action;
+        if (!actionBody?.name) {
+            throw validationError('action.name is required', [{ field: 'action.name', code: 'required' }]);
+        }
+        const event = ws.auditLogEvents.insert({
+            object: 'audit_log_event',
+            organization_id: organizationId,
+            action: {
+                name: actionBody.name,
+                type: actionBody.type ?? 'C',
+                id: actionBody.id ?? actionBody.name,
+            },
+            actor: body.actor ?? {},
+            targets: body.targets ?? [],
+            metadata: body.metadata ?? null,
+            occurred_at: body.occurred_at ?? new Date().toISOString(),
+        });
+        return c.json(formatAuditLogEvent(event), 201);
+    });
+    // Create export (auto-transition to ready)
+    app.post('/audit_logs/exports', async (c) => {
+        const body = await parseJsonBody(c);
+        const organizationId = body.organization_id;
+        if (!organizationId) {
+            throw validationError('organization_id is required', [{ field: 'organization_id', code: 'required' }]);
+        }
+        const exp = ws.auditLogExports.insert({
+            object: 'audit_log_export',
+            organization_id: organizationId,
+            state: 'ready',
+            url: `https://emulator.workos.test/exports/audit_log_export_mock.csv`,
+            filters: body.filters ?? {},
+        });
+        return c.json(formatAuditLogExport(exp), 201);
+    });
+    // Get export
+    app.get('/audit_logs/exports/:id', (c) => {
+        const exp = ws.auditLogExports.get(c.req.param('id'));
+        if (!exp)
+            throw notFound('AuditLogExport');
+        return c.json(formatAuditLogExport(exp));
+    });
+    // Get org audit log configuration
+    app.get('/organizations/:id/audit_log_configuration', (c) => {
+        const orgId = c.req.param('id');
+        return c.json({
+            object: 'audit_log_configuration',
+            organization_id: orgId,
+            enabled: true,
+            retention_days: 365,
+        });
+    });
+    // Get org audit logs retention
+    app.get('/organizations/:id/audit_logs_retention', (c) => {
+        const orgId = c.req.param('id');
+        return c.json({
+            object: 'audit_logs_retention',
+            organization_id: orgId,
+            retention_days: 365,
+        });
+    });
+}
+//# sourceMappingURL=audit-logs.js.map

package/dist/emulate/workos/routes/audit-logs.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"audit-logs.js","sourceRoot":"","sources":["../../../../src/emulate/workos/routes/audit-logs.ts"],"names":[],"mappings":"AAAA,OAAO,EAAqB,QAAQ,EAAE,aAAa,EAAE,eAAe,EAAE,eAAe,EAAE,MAAM,qBAAqB,CAAC;AACnH,OAAO,EAAE,cAAc,EAAE,MAAM,aAAa,CAAC;AAC7C,OAAO,EAAE,oBAAoB,EAAE,mBAAmB,EAAE,oBAAoB,EAAE,kBAAkB,EAAE,MAAM,eAAe,CAAC;AACpH,OAAO,EAAE,kBAAkB,EAAE,MAAM,iBAAiB,CAAC;AAErD,MAAM,UAAU,cAAc,CAAC,GAAiB;IAC9C,MAAM,EAAE,GAAG,EAAE,KAAK,EAAE,GAAG,GAAG,CAAC;IAC3B,MAAM,EAAE,GAAG,cAAc,CAAC,KAAK,CAAC,CAAC;IAEjC,eAAe;IACf,GAAG,CAAC,GAAG,CAAC,qBAAqB,EAAE,CAAC,CAAC,EAAE,EAAE;QACnC,MAAM,GAAG,GAAG,IAAI,GAAG,CAAC,CAAC,CAAC,GAAG,CAAC,GAAG,CAAC,CAAC;QAC/B,MAAM,MAAM,GAAG,eAAe,CAAC,GAAG,CAAC,CAAC;QACpC,MAAM,MAAM,GAAG,EAAE,CAAC,eAAe,CAAC,IAAI,CAAC,EAAE,GAAG,MAAM,EAAE,CAAC,CAAC;QACtD,OAAO,CAAC,CAAC,IAAI,CAAC,kBAAkB,CAAC,MAAM,EAAE,oBAAoB,CAAC,CAAC,CAAC;IAClE,CAAC,CAAC,CAAC;IAEH,8BAA8B;IAC9B,GAAG,CAAC,IAAI,CAAC,yCAAyC,EAAE,KAAK,EAAE,CAAC,EAAE,EAAE;QAC9D,MAAM,UAAU,GAAG,CAAC,CAAC,GAAG,CAAC,KAAK,CAAC,YAAY,CAAC,CAAC;QAC7C,MAAM,IAAI,GAAG,MAAM,aAAa,CAAC,CAAC,CAAC,CAAC;QAEpC,iDAAiD;QACjD,IAAI,MAAM,GAAG,EAAE,CAAC,eAAe,CAAC,SAAS,CAAC,MAAM,EAAE,UAAU,CAAC,CAAC;QAC9D,IAAI,MAAM,EAAE,CAAC;YACX,kDAAkD;YAClD,KAAK,CAAC,OAAO,CAAC,GAAG,kBAAkB,CAAC,WAAW,GAAG,UAAU,EAAE,EAAE,IAAI,CAAC,CAAC;YACtE,OAAO,CAAC,CAAC,IAAI,CAAC,oBAAoB,CAAC,MAAM,CAAC,CAAC,CAAC;QAC9C,CAAC;QAED,MAAM,GAAG,EAAE,CAAC,eAAe,CAAC,MAAM,CAAC;YACjC,MAAM,EAAE,kBAAkB;YAC1B,IAAI,EAAE,UAAU;YAChB,WAAW,EAAE,IAAI;YACjB,SAAS,EAAE,IAAI;SAChB,CAAC,CAAC;QACH,KAAK,CAAC,OAAO,CAAC,GAAG,kBAAkB,CAAC,WAAW,GAAG,UAAU,EAAE,EAAE,IAAI,CAAC,CAAC;QACtE,OAAO,CAAC,CAAC,IAAI,CAAC,oBAAoB,CAAC,MAAM,CAAC,EAAE,GAAG,CAAC,CAAC;IACnD,CAAC,CAAC,CAAC;IAEH,yBAAyB;IACzB,GAAG,CAAC,IAAI,CAAC,oBAAoB,EAAE,KAAK,EAAE,CAAC,EAAE,EAAE;QACzC,MAAM,IAAI,GAAG,MAAM,aAAa,CAAC,CAAC,CAAC,CAAC;QACpC,MAAM,cAAc,GAAG,IAAI,CAAC,eAAqC,CAAC;QAClE,IAAI,CAAC,cAAc,EAAE,CAAC;YACpB,MAAM,eAAe,CAAC,6BAA6B,EAAE,CAAC,EAAE,KAAK,EAAE,iBAAiB,EAAE,IAAI,EAAE,UAAU,EAAE,CAAC,CAAC,CAAC;QACzG,CAAC;QAED,MAAM,UAAU,GAAG,IAAI,CAAC,MAA4C,CAAC;QACrE,IAAI,CAAC,UAAU,EAAE,IAAI,EAAE,CAAC;YACtB,MAAM,eAAe,CAAC,yBAAyB,EAAE,CAAC,EAAE,KAAK,EAAE,aAAa,EAAE,IAAI,EAAE,UAAU,EAAE,CAAC,CAAC,CAAC;QACjG,CAAC;QAED,MAAM,KAAK,GAAG,EAAE,CAAC,cAAc,CAAC,MAAM,CAAC;YACrC,MAAM,EAAE,iBAAiB;YACzB,eAAe,EAAE,cAAc;YAC/B,MAAM,EAAE;gBACN,IAAI,EAAE,UAAU,CAAC,IAAI;gBACrB,IAAI,EAAE,UAAU,CAAC,IAAI,IAAI,GAAG;gBAC5B,EAAE,EAAE,UAAU,CAAC,EAAE,IAAI,UAAU,CAAC,IAAI;aACrC;YACD,KAAK,EAAG,IAAI,CAAC,KAAiC,IAAI,EAAE;YACpD,OAAO,EAAG,IAAI,CAAC,OAA0C,IAAI,EAAE;YAC/D,QAAQ,EAAG,IAAI,CAAC,QAAoC,IAAI,IAAI;YAC5D,WAAW,EAAG,IAAI,CAAC,WAAsB,IAAI,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE;SACtE,CAAC,CAAC;QAEH,OAAO,CAAC,CAAC,IAAI,CAAC,mBAAmB,CAAC,KAAK,CAAC,EAAE,GAAG,CAAC,CAAC;IACjD,CAAC,CAAC,CAAC;IAEH,2CAA2C;IAC3C,GAAG,CAAC,IAAI,CAAC,qBAAqB,EAAE,KAAK,EAAE,CAAC,EAAE,EAAE;QAC1C,MAAM,IAAI,GAAG,MAAM,aAAa,CAAC,CAAC,CAAC,CAAC;QACpC,MAAM,cAAc,GAAG,IAAI,CAAC,eAAqC,CAAC;QAClE,IAAI,CAAC,cAAc,EAAE,CAAC;YACpB,MAAM,eAAe,CAAC,6BAA6B,EAAE,CAAC,EAAE,KAAK,EAAE,iBAAiB,EAAE,IAAI,EAAE,UAAU,EAAE,CAAC,CAAC,CAAC;QACzG,CAAC;QAED,MAAM,GAAG,GAAG,EAAE,CAAC,eAAe,CAAC,MAAM,CAAC;YACpC,MAAM,EAAE,kBAAkB;YAC1B,eAAe,EAAE,cAAc;YAC/B,KAAK,EAAE,OAAO;YACd,GAAG,EAAE,gEAAgE;YACrE,OAAO,EAAG,IAAI,CAAC,OAAmC,IAAI,EAAE;SACzD,CAAC,CAAC;QAEH,OAAO,CAAC,CAAC,IAAI,CAAC,oBAAoB,CAAC,GAAG,CAAC,EAAE,GAAG,CAAC,CAAC;IAChD,CAAC,CAAC,CAAC;IAEH,aAAa;IACb,GAAG,CAAC,GAAG,CAAC,yBAAyB,EAAE,CAAC,CAAC,EAAE,EAAE;QACvC,MAAM,GAAG,GAAG,EAAE,CAAC,eAAe,CAAC,GAAG,CAAC,CAAC,CAAC,GAAG,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC,CAAC;QACtD,IAAI,CAAC,GAAG;YAAE,MAAM,QAAQ,CAAC,gBAAgB,CAAC,CAAC;QAC3C,OAAO,CAAC,CAAC,IAAI,CAAC,oBAAoB,CAAC,GAAG,CAAC,CAAC,CAAC;IAC3C,CAAC,CAAC,CAAC;IAEH,kCAAkC;IAClC,GAAG,CAAC,GAAG,CAAC,4CAA4C,EAAE,CAAC,CAAC,EAAE,EAAE;QAC1D,MAAM,KAAK,GAAG,CAAC,CAAC,GAAG,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;QAChC,OAAO,CAAC,CAAC,IAAI,CAAC;YACZ,MAAM,EAAE,yBAAyB;YACjC,eAAe,EAAE,KAAK;YACtB,OAAO,EAAE,IAAI;YACb,cAAc,EAAE,GAAG;SACpB,CAAC,CAAC;IACL,CAAC,CAAC,CAAC;IAEH,+BAA+B;IAC/B,GAAG,CAAC,GAAG,CAAC,yCAAyC,EAAE,CAAC,CAAC,EAAE,EAAE;QACvD,MAAM,KAAK,GAAG,CAAC,CAAC,GAAG,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;QAChC,OAAO,CAAC,CAAC,IAAI,CAAC;YACZ,MAAM,EAAE,sBAAsB;YAC9B,eAAe,EAAE,KAAK;YACtB,cAAc,EAAE,GAAG;SACpB,CAAC,CAAC;IACL,CAAC,CAAC,CAAC;AACL,CAAC","sourcesContent":["import { type RouteContext, notFound, parseJsonBody, validationError, parseListParams } from '../../core/index.js';\nimport { getWorkOSStore } from '../store.js';\nimport { formatAuditLogAction, formatAuditLogEvent, formatAuditLogExport, formatListResponse } from '../helpers.js';\nimport { STORE_KEY_PREFIXES } from '../constants.js';\n\nexport function auditLogRoutes(ctx: RouteContext): void {\n  const { app, store } = ctx;\n  const ws = getWorkOSStore(store);\n\n  // List actions\n  app.get('/audit_logs/actions', (c) => {\n    const url = new URL(c.req.url);\n    const params = parseListParams(url);\n    const result = ws.auditLogActions.list({ ...params });\n    return c.json(formatListResponse(result, formatAuditLogAction));\n  });\n\n  // Create/update action schema\n  app.post('/audit_logs/actions/:actionName/schemas', async (c) => {\n    const actionName = c.req.param('actionName');\n    const body = await parseJsonBody(c);\n\n    // Upsert: find existing action or create new one\n    let action = ws.auditLogActions.findOneBy('name', actionName);\n    if (action) {\n      // Store schema in store data keyed by action name\n      store.setData(`${STORE_KEY_PREFIXES.auditSchema}${actionName}`, body);\n      return c.json(formatAuditLogAction(action));\n    }\n\n    action = ws.auditLogActions.insert({\n      object: 'audit_log_action',\n      name: actionName,\n      description: null,\n      condition: null,\n    });\n    store.setData(`${STORE_KEY_PREFIXES.auditSchema}${actionName}`, body);\n    return c.json(formatAuditLogAction(action), 201);\n  });\n\n  // Create audit log event\n  app.post('/audit_logs/events', async (c) => {\n    const body = await parseJsonBody(c);\n    const organizationId = body.organization_id as string | undefined;\n    if (!organizationId) {\n      throw validationError('organization_id is required', [{ field: 'organization_id', code: 'required' }]);\n    }\n\n    const actionBody = body.action as Record<string, string> | undefined;\n    if (!actionBody?.name) {\n      throw validationError('action.name is required', [{ field: 'action.name', code: 'required' }]);\n    }\n\n    const event = ws.auditLogEvents.insert({\n      object: 'audit_log_event',\n      organization_id: organizationId,\n      action: {\n        name: actionBody.name,\n        type: actionBody.type ?? 'C',\n        id: actionBody.id ?? actionBody.name,\n      },\n      actor: (body.actor as Record<string, unknown>) ?? {},\n      targets: (body.targets as Array<Record<string, unknown>>) ?? [],\n      metadata: (body.metadata as Record<string, unknown>) ?? null,\n      occurred_at: (body.occurred_at as string) ?? new Date().toISOString(),\n    });\n\n    return c.json(formatAuditLogEvent(event), 201);\n  });\n\n  // Create export (auto-transition to ready)\n  app.post('/audit_logs/exports', async (c) => {\n    const body = await parseJsonBody(c);\n    const organizationId = body.organization_id as string | undefined;\n    if (!organizationId) {\n      throw validationError('organization_id is required', [{ field: 'organization_id', code: 'required' }]);\n    }\n\n    const exp = ws.auditLogExports.insert({\n      object: 'audit_log_export',\n      organization_id: organizationId,\n      state: 'ready',\n      url: `https://emulator.workos.test/exports/audit_log_export_mock.csv`,\n      filters: (body.filters as Record<string, unknown>) ?? {},\n    });\n\n    return c.json(formatAuditLogExport(exp), 201);\n  });\n\n  // Get export\n  app.get('/audit_logs/exports/:id', (c) => {\n    const exp = ws.auditLogExports.get(c.req.param('id'));\n    if (!exp) throw notFound('AuditLogExport');\n    return c.json(formatAuditLogExport(exp));\n  });\n\n  // Get org audit log configuration\n  app.get('/organizations/:id/audit_log_configuration', (c) => {\n    const orgId = c.req.param('id');\n    return c.json({\n      object: 'audit_log_configuration',\n      organization_id: orgId,\n      enabled: true,\n      retention_days: 365,\n    });\n  });\n\n  // Get org audit logs retention\n  app.get('/organizations/:id/audit_logs_retention', (c) => {\n    const orgId = c.req.param('id');\n    return c.json({\n      object: 'audit_logs_retention',\n      organization_id: orgId,\n      retention_days: 365,\n    });\n  });\n}\n"]}

package/dist/emulate/workos/routes/auth-challenges.d.ts

@@ -0,0 +1,2 @@
+import { type RouteContext } from '../../core/index.js';
+export declare function authChallengeRoutes(ctx: RouteContext): void;

package/dist/emulate/workos/routes/auth-challenges.js

@@ -0,0 +1,51 @@
+import { notFound, parseJsonBody, WorkOSApiError } from '../../core/index.js';
+import { getWorkOSStore } from '../store.js';
+import { formatAuthChallenge, expiresIn, isExpired, generateCode } from '../helpers.js';
+export function authChallengeRoutes(ctx) {
+    const { app, store } = ctx;
+    const ws = getWorkOSStore(store);
+    app.post('/user_management/auth_factors/:id/challenges', async (c) => {
+        const factorId = c.req.param('id');
+        const factor = ws.authFactors.get(factorId);
+        if (!factor)
+            throw notFound('AuthenticationFactor');
+        const user = ws.users.get(factor.user_id);
+        if (!user)
+            throw notFound('User');
+        // Emulator generates a code and stores it for verification
+        const code = generateCode();
+        const challenge = ws.authChallenges.insert({
+            object: 'authentication_challenge',
+            user_id: user.id,
+            factor_id: factor.id,
+            expires_at: expiresIn(10),
+            code,
+        });
+        return c.json(formatAuthChallenge(challenge), 201);
+    });
+    app.post('/user_management/auth_challenges/:id/verify', async (c) => {
+        const challengeId = c.req.param('id');
+        const challenge = ws.authChallenges.get(challengeId);
+        if (!challenge)
+            throw notFound('AuthenticationChallenge');
+        if (isExpired(challenge.expires_at)) {
+            ws.authChallenges.delete(challenge.id);
+            throw new WorkOSApiError(400, 'Challenge has expired', 'expired_challenge');
+        }
+        const body = await parseJsonBody(c);
+        const code = body.code;
+        if (!code) {
+            throw new WorkOSApiError(400, 'code is required', 'invalid_request');
+        }
+        // In the emulator, accept the stored code or any 6-digit code for convenience
+        if (challenge.code && code !== challenge.code) {
+            throw new WorkOSApiError(400, 'Invalid one-time code', 'invalid_one_time_code');
+        }
+        ws.authChallenges.delete(challenge.id);
+        return c.json({
+            challenge: formatAuthChallenge(challenge),
+            valid: true,
+        });
+    });
+}
+//# sourceMappingURL=auth-challenges.js.map

package/dist/emulate/workos/routes/auth-challenges.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"auth-challenges.js","sourceRoot":"","sources":["../../../../src/emulate/workos/routes/auth-challenges.ts"],"names":[],"mappings":"AAAA,OAAO,EAAqB,QAAQ,EAAE,aAAa,EAAE,cAAc,EAAE,MAAM,qBAAqB,CAAC;AACjG,OAAO,EAAE,cAAc,EAAE,MAAM,aAAa,CAAC;AAC7C,OAAO,EAAE,mBAAmB,EAAE,SAAS,EAAE,SAAS,EAAE,YAAY,EAAE,MAAM,eAAe,CAAC;AAExF,MAAM,UAAU,mBAAmB,CAAC,GAAiB;IACnD,MAAM,EAAE,GAAG,EAAE,KAAK,EAAE,GAAG,GAAG,CAAC;IAC3B,MAAM,EAAE,GAAG,cAAc,CAAC,KAAK,CAAC,CAAC;IAEjC,GAAG,CAAC,IAAI,CAAC,8CAA8C,EAAE,KAAK,EAAE,CAAC,EAAE,EAAE;QACnE,MAAM,QAAQ,GAAG,CAAC,CAAC,GAAG,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;QACnC,MAAM,MAAM,GAAG,EAAE,CAAC,WAAW,CAAC,GAAG,CAAC,QAAQ,CAAC,CAAC;QAC5C,IAAI,CAAC,MAAM;YAAE,MAAM,QAAQ,CAAC,sBAAsB,CAAC,CAAC;QAEpD,MAAM,IAAI,GAAG,EAAE,CAAC,KAAK,CAAC,GAAG,CAAC,MAAM,CAAC,OAAO,CAAC,CAAC;QAC1C,IAAI,CAAC,IAAI;YAAE,MAAM,QAAQ,CAAC,MAAM,CAAC,CAAC;QAElC,2DAA2D;QAC3D,MAAM,IAAI,GAAG,YAAY,EAAE,CAAC;QAE5B,MAAM,SAAS,GAAG,EAAE,CAAC,cAAc,CAAC,MAAM,CAAC;YACzC,MAAM,EAAE,0BAA0B;YAClC,OAAO,EAAE,IAAI,CAAC,EAAE;YAChB,SAAS,EAAE,MAAM,CAAC,EAAE;YACpB,UAAU,EAAE,SAAS,CAAC,EAAE,CAAC;YACzB,IAAI;SACL,CAAC,CAAC;QAEH,OAAO,CAAC,CAAC,IAAI,CAAC,mBAAmB,CAAC,SAAS,CAAC,EAAE,GAAG,CAAC,CAAC;IACrD,CAAC,CAAC,CAAC;IAEH,GAAG,CAAC,IAAI,CAAC,6CAA6C,EAAE,KAAK,EAAE,CAAC,EAAE,EAAE;QAClE,MAAM,WAAW,GAAG,CAAC,CAAC,GAAG,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;QACtC,MAAM,SAAS,GAAG,EAAE,CAAC,cAAc,CAAC,GAAG,CAAC,WAAW,CAAC,CAAC;QACrD,IAAI,CAAC,SAAS;YAAE,MAAM,QAAQ,CAAC,yBAAyB,CAAC,CAAC;QAE1D,IAAI,SAAS,CAAC,SAAS,CAAC,UAAU,CAAC,EAAE,CAAC;YACpC,EAAE,CAAC,cAAc,CAAC,MAAM,CAAC,SAAS,CAAC,EAAE,CAAC,CAAC;YACvC,MAAM,IAAI,cAAc,CAAC,GAAG,EAAE,uBAAuB,EAAE,mBAAmB,CAAC,CAAC;QAC9E,CAAC;QAED,MAAM,IAAI,GAAG,MAAM,aAAa,CAAC,CAAC,CAAC,CAAC;QACpC,MAAM,IAAI,GAAG,IAAI,CAAC,IAAc,CAAC;QACjC,IAAI,CAAC,IAAI,EAAE,CAAC;YACV,MAAM,IAAI,cAAc,CAAC,GAAG,EAAE,kBAAkB,EAAE,iBAAiB,CAAC,CAAC;QACvE,CAAC;QAED,8EAA8E;QAC9E,IAAI,SAAS,CAAC,IAAI,IAAI,IAAI,KAAK,SAAS,CAAC,IAAI,EAAE,CAAC;YAC9C,MAAM,IAAI,cAAc,CAAC,GAAG,EAAE,uBAAuB,EAAE,uBAAuB,CAAC,CAAC;QAClF,CAAC;QAED,EAAE,CAAC,cAAc,CAAC,MAAM,CAAC,SAAS,CAAC,EAAE,CAAC,CAAC;QAEvC,OAAO,CAAC,CAAC,IAAI,CAAC;YACZ,SAAS,EAAE,mBAAmB,CAAC,SAAS,CAAC;YACzC,KAAK,EAAE,IAAI;SACZ,CAAC,CAAC;IACL,CAAC,CAAC,CAAC;AACL,CAAC","sourcesContent":["import { type RouteContext, notFound, parseJsonBody, WorkOSApiError } from '../../core/index.js';\nimport { getWorkOSStore } from '../store.js';\nimport { formatAuthChallenge, expiresIn, isExpired, generateCode } from '../helpers.js';\n\nexport function authChallengeRoutes(ctx: RouteContext): void {\n  const { app, store } = ctx;\n  const ws = getWorkOSStore(store);\n\n  app.post('/user_management/auth_factors/:id/challenges', async (c) => {\n    const factorId = c.req.param('id');\n    const factor = ws.authFactors.get(factorId);\n    if (!factor) throw notFound('AuthenticationFactor');\n\n    const user = ws.users.get(factor.user_id);\n    if (!user) throw notFound('User');\n\n    // Emulator generates a code and stores it for verification\n    const code = generateCode();\n\n    const challenge = ws.authChallenges.insert({\n      object: 'authentication_challenge',\n      user_id: user.id,\n      factor_id: factor.id,\n      expires_at: expiresIn(10),\n      code,\n    });\n\n    return c.json(formatAuthChallenge(challenge), 201);\n  });\n\n  app.post('/user_management/auth_challenges/:id/verify', async (c) => {\n    const challengeId = c.req.param('id');\n    const challenge = ws.authChallenges.get(challengeId);\n    if (!challenge) throw notFound('AuthenticationChallenge');\n\n    if (isExpired(challenge.expires_at)) {\n      ws.authChallenges.delete(challenge.id);\n      throw new WorkOSApiError(400, 'Challenge has expired', 'expired_challenge');\n    }\n\n    const body = await parseJsonBody(c);\n    const code = body.code as string;\n    if (!code) {\n      throw new WorkOSApiError(400, 'code is required', 'invalid_request');\n    }\n\n    // In the emulator, accept the stored code or any 6-digit code for convenience\n    if (challenge.code && code !== challenge.code) {\n      throw new WorkOSApiError(400, 'Invalid one-time code', 'invalid_one_time_code');\n    }\n\n    ws.authChallenges.delete(challenge.id);\n\n    return c.json({\n      challenge: formatAuthChallenge(challenge),\n      valid: true,\n    });\n  });\n}\n"]}

package/dist/emulate/workos/routes/auth-factors.d.ts

@@ -0,0 +1,2 @@
+import { type RouteContext } from '../../core/index.js';
+export declare function authFactorRoutes(ctx: RouteContext): void;

package/dist/emulate/workos/routes/auth-factors.js

@@ -0,0 +1,51 @@
+import { notFound, parseJsonBody } from '../../core/index.js';
+import { getWorkOSStore } from '../store.js';
+import { formatAuthFactor } from '../helpers.js';
+import { randomBytes } from 'node:crypto';
+export function authFactorRoutes(ctx) {
+    const { app, store } = ctx;
+    const ws = getWorkOSStore(store);
+    app.post('/user_management/users/:userlandUserId/auth_factors', async (c) => {
+        const userId = c.req.param('userlandUserId');
+        const user = ws.users.get(userId);
+        if (!user)
+            throw notFound('User');
+        const body = await parseJsonBody(c);
+        const type = body.type ?? 'totp';
+        const issuer = body.totp_issuer ?? 'WorkOS Emulator';
+        const secret = randomBytes(20).toString('hex').slice(0, 32).toUpperCase();
+        const uri = `otpauth://totp/${encodeURIComponent(issuer)}:${encodeURIComponent(user.email)}?secret=${secret}&issuer=${encodeURIComponent(issuer)}`;
+        const factor = ws.authFactors.insert({
+            object: 'authentication_factor',
+            user_id: user.id,
+            type: type,
+            totp: {
+                issuer,
+                user: user.email,
+                uri,
+            },
+        });
+        return c.json(formatAuthFactor(factor), 201);
+    });
+    app.get('/user_management/users/:userlandUserId/auth_factors', (c) => {
+        const userId = c.req.param('userlandUserId');
+        const user = ws.users.get(userId);
+        if (!user)
+            throw notFound('User');
+        const factors = ws.authFactors.findBy('user_id', user.id);
+        return c.json({
+            object: 'list',
+            data: factors.map(formatAuthFactor),
+            list_metadata: { before: null, after: null },
+        });
+    });
+    app.delete('/user_management/auth_factors/:id', (c) => {
+        const factorId = c.req.param('id');
+        const factor = ws.authFactors.get(factorId);
+        if (!factor)
+            throw notFound('AuthenticationFactor');
+        ws.authFactors.delete(factor.id);
+        return c.body(null, 204);
+    });
+}
+//# sourceMappingURL=auth-factors.js.map

package/dist/emulate/workos/routes/auth-factors.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"auth-factors.js","sourceRoot":"","sources":["../../../../src/emulate/workos/routes/auth-factors.ts"],"names":[],"mappings":"AAAA,OAAO,EAAqB,QAAQ,EAAE,aAAa,EAAE,MAAM,qBAAqB,CAAC;AACjF,OAAO,EAAE,cAAc,EAAE,MAAM,aAAa,CAAC;AAC7C,OAAO,EAAE,gBAAgB,EAAE,MAAM,eAAe,CAAC;AACjD,OAAO,EAAE,WAAW,EAAE,MAAM,aAAa,CAAC;AAE1C,MAAM,UAAU,gBAAgB,CAAC,GAAiB;IAChD,MAAM,EAAE,GAAG,EAAE,KAAK,EAAE,GAAG,GAAG,CAAC;IAC3B,MAAM,EAAE,GAAG,cAAc,CAAC,KAAK,CAAC,CAAC;IAEjC,GAAG,CAAC,IAAI,CAAC,qDAAqD,EAAE,KAAK,EAAE,CAAC,EAAE,EAAE;QAC1E,MAAM,MAAM,GAAG,CAAC,CAAC,GAAG,CAAC,KAAK,CAAC,gBAAgB,CAAC,CAAC;QAC7C,MAAM,IAAI,GAAG,EAAE,CAAC,KAAK,CAAC,GAAG,CAAC,MAAM,CAAC,CAAC;QAClC,IAAI,CAAC,IAAI;YAAE,MAAM,QAAQ,CAAC,MAAM,CAAC,CAAC;QAElC,MAAM,IAAI,GAAG,MAAM,aAAa,CAAC,CAAC,CAAC,CAAC;QACpC,MAAM,IAAI,GAAI,IAAI,CAAC,IAAe,IAAI,MAAM,CAAC;QAC7C,MAAM,MAAM,GAAI,IAAI,CAAC,WAAsB,IAAI,iBAAiB,CAAC;QACjE,MAAM,MAAM,GAAG,WAAW,CAAC,EAAE,CAAC,CAAC,QAAQ,CAAC,KAAK,CAAC,CAAC,KAAK,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,WAAW,EAAE,CAAC;QAC1E,MAAM,GAAG,GAAG,kBAAkB,kBAAkB,CAAC,MAAM,CAAC,IAAI,kBAAkB,CAAC,IAAI,CAAC,KAAK,CAAC,WAAW,MAAM,WAAW,kBAAkB,CAAC,MAAM,CAAC,EAAE,CAAC;QAEnJ,MAAM,MAAM,GAAG,EAAE,CAAC,WAAW,CAAC,MAAM,CAAC;YACnC,MAAM,EAAE,uBAAuB;YAC/B,OAAO,EAAE,IAAI,CAAC,EAAE;YAChB,IAAI,EAAE,IAAc;YACpB,IAAI,EAAE;gBACJ,MAAM;gBACN,IAAI,EAAE,IAAI,CAAC,KAAK;gBAChB,GAAG;aACJ;SACF,CAAC,CAAC;QAEH,OAAO,CAAC,CAAC,IAAI,CAAC,gBAAgB,CAAC,MAAM,CAAC,EAAE,GAAG,CAAC,CAAC;IAC/C,CAAC,CAAC,CAAC;IAEH,GAAG,CAAC,GAAG,CAAC,qDAAqD,EAAE,CAAC,CAAC,EAAE,EAAE;QACnE,MAAM,MAAM,GAAG,CAAC,CAAC,GAAG,CAAC,KAAK,CAAC,gBAAgB,CAAC,CAAC;QAC7C,MAAM,IAAI,GAAG,EAAE,CAAC,KAAK,CAAC,GAAG,CAAC,MAAM,CAAC,CAAC;QAClC,IAAI,CAAC,IAAI;YAAE,MAAM,QAAQ,CAAC,MAAM,CAAC,CAAC;QAElC,MAAM,OAAO,GAAG,EAAE,CAAC,WAAW,CAAC,MAAM,CAAC,SAAS,EAAE,IAAI,CAAC,EAAE,CAAC,CAAC;QAC1D,OAAO,CAAC,CAAC,IAAI,CAAC;YACZ,MAAM,EAAE,MAAM;YACd,IAAI,EAAE,OAAO,CAAC,GAAG,CAAC,gBAAgB,CAAC;YACnC,aAAa,EAAE,EAAE,MAAM,EAAE,IAAI,EAAE,KAAK,EAAE,IAAI,EAAE;SAC7C,CAAC,CAAC;IACL,CAAC,CAAC,CAAC;IAEH,GAAG,CAAC,MAAM,CAAC,mCAAmC,EAAE,CAAC,CAAC,EAAE,EAAE;QACpD,MAAM,QAAQ,GAAG,CAAC,CAAC,GAAG,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;QACnC,MAAM,MAAM,GAAG,EAAE,CAAC,WAAW,CAAC,GAAG,CAAC,QAAQ,CAAC,CAAC;QAC5C,IAAI,CAAC,MAAM;YAAE,MAAM,QAAQ,CAAC,sBAAsB,CAAC,CAAC;QAEpD,EAAE,CAAC,WAAW,CAAC,MAAM,CAAC,MAAM,CAAC,EAAE,CAAC,CAAC;QACjC,OAAO,CAAC,CAAC,IAAI,CAAC,IAAI,EAAE,GAAG,CAAC,CAAC;IAC3B,CAAC,CAAC,CAAC;AACL,CAAC","sourcesContent":["import { type RouteContext, notFound, parseJsonBody } from '../../core/index.js';\nimport { getWorkOSStore } from '../store.js';\nimport { formatAuthFactor } from '../helpers.js';\nimport { randomBytes } from 'node:crypto';\n\nexport function authFactorRoutes(ctx: RouteContext): void {\n  const { app, store } = ctx;\n  const ws = getWorkOSStore(store);\n\n  app.post('/user_management/users/:userlandUserId/auth_factors', async (c) => {\n    const userId = c.req.param('userlandUserId');\n    const user = ws.users.get(userId);\n    if (!user) throw notFound('User');\n\n    const body = await parseJsonBody(c);\n    const type = (body.type as string) ?? 'totp';\n    const issuer = (body.totp_issuer as string) ?? 'WorkOS Emulator';\n    const secret = randomBytes(20).toString('hex').slice(0, 32).toUpperCase();\n    const uri = `otpauth://totp/${encodeURIComponent(issuer)}:${encodeURIComponent(user.email)}?secret=${secret}&issuer=${encodeURIComponent(issuer)}`;\n\n    const factor = ws.authFactors.insert({\n      object: 'authentication_factor',\n      user_id: user.id,\n      type: type as 'totp',\n      totp: {\n        issuer,\n        user: user.email,\n        uri,\n      },\n    });\n\n    return c.json(formatAuthFactor(factor), 201);\n  });\n\n  app.get('/user_management/users/:userlandUserId/auth_factors', (c) => {\n    const userId = c.req.param('userlandUserId');\n    const user = ws.users.get(userId);\n    if (!user) throw notFound('User');\n\n    const factors = ws.authFactors.findBy('user_id', user.id);\n    return c.json({\n      object: 'list',\n      data: factors.map(formatAuthFactor),\n      list_metadata: { before: null, after: null },\n    });\n  });\n\n  app.delete('/user_management/auth_factors/:id', (c) => {\n    const factorId = c.req.param('id');\n    const factor = ws.authFactors.get(factorId);\n    if (!factor) throw notFound('AuthenticationFactor');\n\n    ws.authFactors.delete(factor.id);\n    return c.body(null, 204);\n  });\n}\n"]}

package/dist/emulate/workos/routes/auth.d.ts

@@ -0,0 +1,2 @@
+import { type RouteContext } from '../../core/index.js';
+export declare function authRoutes(ctx: RouteContext): void;