npm package discovery and stats viewer.

Discover Tips

  • General search

    [free text search, go nuts!]

  • Package details

    pkg:[package-name]

  • User packages

    @[username]

Sponsor

Optimize Toolset

I’ve always been into building performant and accessible sites, but lately I’ve been taking it extremely seriously. So much so that I’ve been building a tool to help me optimize and monitor the sites that I build to make sure that I’m making an attempt to offer the best experience to those who visit them. If you’re into performant, accessible and SEO friendly sites, you might like it too! You can check it out at Optimize Toolset.

About

Hi, 👋, I’m Ryan Hefner  and I built this site for me, and you! The goal of this site was to provide an easy way for me to check the stats on my npm packages, both for prioritizing issues and updates, and to give me a little kick in the pants to keep up on stuff.

As I was building it, I realized that I was actually using the tool to build the tool, and figured I might as well put this out there and hopefully others will find it to be a fast and useful way to search and browse npm packages as I have.

If you’re interested in other things I’m working on, follow me on Twitter or check out the open source projects I’ve been publishing on GitHub.

I am also working on a Twitter bot for this site to tweet the most popular, newest, random packages from npm. Please follow that account now and it will start sending out packages soon–ish.

Open Software & Tools

This site wouldn’t be possible without the immense generosity and tireless efforts from the people who make contributions to the world and share their work via open source initiatives. Thank you 🙏

© 2026 – Pkg Stats / Ryan Hefner

@zitadel/sdk

v4.1.2

Published

TODO

Vulnerabilities

Powered byPowered by Snyk
  • 0High
  • 0Medium
  • 0Low

Links

Git

Maintainers

cbuehlercbuehlermridangmridangeliobischofeliobischofffoffopeintnermaxpeintnermax

Keywords

Readme

Node.js SDK for Zitadel

This is the Zitadel Node.js SDK, designed to provide a convenient and idiomatic way to interact with the Zitadel APIs in Node.js. The SDK provides a seamless wrapping of the Zitadel API, making it easy to authenticate service users and perform API operations.

The SDK enables efficient integration with the Zitadel API, allowing you to manage resources and execute actions. However, it's important to note that this SDK is tailored for service users and is not intended for user authentication scenarios. It does not support authentication mechanisms like OAuth2, OIDC, or SAML for client applications, including web, mobile, or other environments. For these types of user authentication, you should use other libraries that are designed for the specific platform and authentication method.

Disclaimer: This SDK is not suitable for implementing user authentication. It does not handle authentication for client applications using OAuth2, OIDC, or SAML and should not be used for scenarios requiring such functionality. For those use cases, consider using other solutions that are designed for user authentication across various platforms like web, mobile, or other client environments.

[!IMPORTANT] Please be aware that this SDK is currently in an incubating stage. We are releasing it to the community to gather feedback and learn how it is being used. While you are welcome to use it, please note that the API and functionality may evolve based on community input. We encourage you to try it out and share your experiences, but advise caution when considering it for production environments as future updates may introduce changes.

Getting Started

Sign up for Zitadel

To use this SDK, you need a Zitadel account. Sign up at the official Zitadel website and obtain the necessary credentials to access the API.

Minimum Requirements

Ensure you have Node.js 20 or higher installed. You also need npm to install dependencies.

Using the SDK

Installation

Install the SDK by running one of the following commands:

npm install @zitadel/sdk

Authentication Methods

Your SDK offers three ways to authenticate with Zitadel. Each method has its own benefits—choose the one that fits your situation best.

1. Private Key JWT Authentication

What is it? You use a JSON Web Token (JWT) that you sign with a private key stored in a JSON file. This process creates a secure token.

When should you use it?

  • Best for production: It offers strong security.
  • Advanced control: You can adjust token settings like expiration.

How do you use it?

  1. Save your private key in a JSON file.
  2. Use the provided method to load this key and create a JWT-based authenticator.

Example:

import Zitadel, { ApiException } from '@zitadel/sdk';

const zitadel = await Zitadel.withPrivateKey(
  'https://example.us1.zitadel.cloud',
  'path/to/jwt-key.json',
);

try {
  const response = await zitadel.users.addHumanUser({
    userServiceAddHumanUserRequest: {
      username: 'john.doe',
      profile: {
        givenName: 'John',
        familyName: 'Doe',
      },
      email: {
        email: '[email protected]',
      },
    },
  });
  console.log('User created: ' + JSON.stringify(response, null, 2));
} catch (e) {
  if (e instanceof ApiException) {
    console.log('Error: ' + e.message);
  }
}

2. Client Credentials Grant

What is it? This method uses a client ID and client secret to get a secure access token, which is then used to authenticate.

When should you use it?

  • Simple and straightforward: Good for server-to-server communication.
  • Trusted environments: Use it when both servers are owned or trusted.

How do you use it?

  1. Provide your client ID and client secret.
  2. Build the authenticator

Example:

import Zitadel, { ApiException } from '@zitadel/sdk';

const zitadel = await Zitadel.withClientCredentials(
  'https://example.us1.zitadel.cloud',
  'id',
  'secret',
);

try {
  const response = await zitadel.users.addHumanUser({
    userServiceAddHumanUserRequest: {
      username: 'john.doe',
      profile: {
        givenName: 'John',
        familyName: 'Doe',
      },
      email: {
        email: '[email protected]',
      },
    },
  });
  console.log('User created: ' + JSON.stringify(response, null, 2));
} catch (e) {
  if (e instanceof ApiException) {
    console.log('Error: ' + e.message);
  }
}

3. Personal Access Tokens (PATs)

What is it? A Personal Access Token (PAT) is a pre-generated token that you can use to authenticate without exchanging credentials every time.

When should you use it?

  • Easy to use: Great for development or testing scenarios.
  • Quick setup: No need for dynamic token generation.

How do you use it?

  1. Obtain a valid personal access token from your account.
  2. Create the authenticator with: PersonalAccessTokenAuthenticator

Example:

import Zitadel, { ApiException } from '@zitadel/sdk';

const zitadel = Zitadel.withAccessToken(
  'https://example.us1.zitadel.cloud',
  'token',
);

try {
  const response = await zitadel.users.addHumanUser({
    userServiceAddHumanUserRequest: {
      username: 'john.doe',
      profile: {
        givenName: 'John',
        familyName: 'Doe',
      },
      email: {
        email: '[email protected]',
      },
    },
  });
  console.log('User created: ' + JSON.stringify(response, null, 2));
} catch (e) {
  if (e instanceof ApiException) {
    console.log('Error: ' + e.message);
  }
}

Choose the authentication method that best suits your needs based on your environment and security requirements. For more details, please refer to the Zitadel documentation on authenticating service users.

Advanced Configuration

The SDK provides a TransportOptions object that allows you to customise the underlying HTTP transport used for both OpenID discovery and API calls.

Disabling TLS Verification

In development or testing environments with self-signed certificates, you can disable TLS verification entirely:

import Zitadel from '@zitadel/sdk';

const zitadel = await Zitadel.withClientCredentials(
  'https://your-instance.zitadel.cloud',
  'client-id',
  'client-secret',
  { insecure: true },
);

Using a Custom CA Certificate

If your Zitadel instance uses a certificate signed by a private CA, you can provide the path to the CA certificate in PEM format:

import Zitadel from '@zitadel/sdk';

const zitadel = await Zitadel.withClientCredentials(
  'https://your-instance.zitadel.cloud',
  'client-id',
  'client-secret',
  { caCertPath: '/path/to/ca.pem' },
);

Custom Default Headers

You can attach default headers to every outgoing request. This is useful for custom routing or tracing headers:

import Zitadel from '@zitadel/sdk';

const zitadel = await Zitadel.withClientCredentials(
  'https://your-instance.zitadel.cloud',
  'client-id',
  'client-secret',
  { defaultHeaders: { 'X-Custom-Header': 'my-value' } },
);

Proxy Configuration

If your environment requires routing traffic through an HTTP proxy, you can specify the proxy URL. To authenticate with the proxy, embed the credentials directly in the URL:

import Zitadel from '@zitadel/sdk';

const zitadel = await Zitadel.withClientCredentials(
  'https://your-instance.zitadel.cloud',
  'client-id',
  'client-secret',
  { proxyUrl: 'http://user:pass@proxy:8080' },
);

Design and Dependencies

This SDK is designed to be lean and efficient, focusing on providing a streamlined way to interact with the Zitadel API. It relies on standard HTTP libraries for making requests, which ensures that the SDK integrates well with other libraries and provides flexibility in terms of request handling and error management.

Versioning

A key aspect of our strategy is that the SDK's major version is synchronized with the ZITADEL core project's major version to ensure compatibility. For a detailed explanation of this policy and our release schedule, please see our Versioning Guide.

Contributing

This repository is autogenerated. We do not accept direct contributions. Instead, please open an issue for any bugs or feature requests.

Reporting Issues

If you encounter any issues or have suggestions for improvements, please open an issue in the issue tracker. When reporting an issue, please provide the following information to help us address it more effectively:

  • A detailed description of the problem or feature request
  • Steps to reproduce the issue (if applicable)
  • Any relevant error messages or logs
  • Environment details (e.g., OS version, relevant configurations)

Support

If you need help setting up or configuring the SDK (or anything Zitadel), please head over to the Zitadel Community on Discord.

There are many helpful people in our Discord community who are ready to assist you.

Cloud and enterprise customers can additionally reach us privately via our support communication channels.

License

This SDK is distributed under the Apache 2.0 License.