authlete-test

Developer-friendly & type-safe Typescript SDK specifically catered to leverage authlete-test API.

[!IMPORTANT] This SDK is not yet ready for production use. To complete setup please follow the steps outlined in your workspace. Delete this section before > publishing to a package manager.

Summary

Authlete API Explorer:

Table of Contents

• authlete-test
  • SDK Installation
  • Requirements
  • SDK Example Usage
  • Authentication
  • Available Resources and Operations
  • Standalone functions
  • Retries
  • Error Handling
  • Server Selection
  • Custom HTTP Client
  • Debugging
• Development
  • Maturity
  • Contributions
• authlete-typescript-sdk-test

SDK Installation

The SDK can be installed with either npm, pnpm, bun or yarn package managers.

NPM

npm add authlete-test

PNPM

pnpm add authlete-test

Bun

bun add authlete-test

Yarn

yarn add authlete-test zod

# Note that Yarn does not install peer dependencies automatically. You will need
# to install zod as shown above.

[!NOTE] This package is published with CommonJS and ES Modules (ESM) support.

Requirements

For supported JavaScript runtimes, please consult RUNTIMES.md.

SDK Example Usage

Example

import { AuthleteTest } from "authlete-test";

const authleteTest = new AuthleteTest({
  security: {
    authlete: process.env["AUTHLETETEST_AUTHLETE"] ?? "",
  },
});

async function run() {
  const result = await authleteTest.serviceManagement.serviceGetApi({
    serviceId: "<id>",
  });

  console.log(result);
}

run();

Authentication

Per-Client Security Schemes

This SDK supports the following security schemes globally:

| Name | Type | Scheme | Environment Variable | | ---------- | ------ | ------------ | ----------------------- | | authlete | oauth2 | OAuth2 token | AUTHLETETEST_AUTHLETE | | bearer | http | HTTP Bearer | AUTHLETETEST_BEARER |

You can set the security parameters through the security optional parameter when initializing the SDK client instance. The selected scheme will be used by default to authenticate with the API for all operations that support it. For example:

import { AuthleteTest } from "authlete-test";

const authleteTest = new AuthleteTest({
  security: {
    authlete: process.env["AUTHLETETEST_AUTHLETE"] ?? "",
  },
});

async function run() {
  const result = await authleteTest.serviceManagement.serviceGetApi({
    serviceId: "<id>",
  });

  console.log(result);
}

run();

Available Resources and Operations

authorizationEndpoint

• authAuthorizationApi - Process Authorization Request
• authAuthorizationFailApi - Fail Authorization Request
• authAuthorizationIssueApi - Issue Authorization Response
• updateAuthorizationTicket - Update Ticket Information

ciba

• backchannelAuthenticationApi - Process Backchannel Authentication Request
• backchannelAuthenticationIssueApi - Issue Backchannel Authentication Response
• backchannelAuthenticationFailApi - Fail Backchannel Authentication Request
• backchannelAuthenticationCompleteApi - Complete Backchannel Authentication

clientManagement

• clientGetApi - Get Client
• clientGetListApi - List Clients
• clientCreateApi - Create Client
• clientUpdateApi - Update Client
• clientDeleteApi - Delete Client ⚡
• clientFlagUpdateApi - Update Client Lock
• clientSecretRefreshApi - Rotate Client Secret
• clientSecretUpdateApi - Update Client Secret
• clientAuthorizationGetListApi - Get Authorized Applications
• clientAuthorizationUpdateApi - Update Client Tokens
• clientAuthorizationDeleteApi - Delete Client Tokens
• clientGrantedScopesGetApi - Get Granted Scopes
• clientGrantedScopesDeleteApi - Delete Granted Scopes
• clientExtensionRequestablesScopesGetApi - Get Requestable Scopes
• clientExtensionRequestablesScopesUpdateApi - Update Requestable Scopes
• clientExtensionRequestablesScopesDeleteApi - Delete Requestable Scopes

deviceFlow

• deviceAuthorizationApi - Process Device Authorization Request
• deviceVerificationApi - Process Device Verification Request
• deviceCompleteApi - Complete Device Authorization

dynamicClientRegistration

• clientRegistrationApi - Register Client
• clientRegistrationGetApi - Get Client
• clientRegistrationUpdateApi - Update Client
• clientRegistrationDeleteApi - Delete Client

federationEndpoint

• federationConfigurationApi - Process Entity Configuration Request
• federationRegistrationApi - Process Federation Registration Request

grantManagementEndpoint

• grantMApi - Process Grant Management Request

hardwareSecurityKey

• hskCreateApi - Create Security Key
• hskDeleteApi - Delete Security Key
• hskGetApi - Get Security Key
• hskGetListApi - List Security Keys

introspectionEndpoint

• authIntrospectionApi - Process Introspection Request
• authIntrospectionStandardApi - Process OAuth 2.0 Introspection Request

joseObject

• joseVerifyApi - Verify JOSE

jwkSetEndpoint

• serviceJwksGetApi - Get JWK Set

nativeSSO

• nativeSsoApi - Native SSO Processing
• nativeSsoLogoutApi - Native SSO Logout Processing

pushedAuthorizationEndpoint

• pushedAuthReqApi - Process Pushed Authorization Request

revocationEndpoint

• authRevocationApi - Process Revocation Request

serviceManagement

• serviceGetApi - Get Service
• serviceGetListApi - List Services
• serviceCreateApi - Create Service
• serviceUpdateApi - Update Service
• serviceDeleteApi - Delete Service ⚡
• serviceConfigurationApi - Get Service Configuration

tokenEndpoint

• authTokenApi - Process Token Request
• authTokenFailApi - Fail Token Request
• authTokenIssueApi - Issue Token Response
• idtokenReissueApi - Reissue ID Token

tokenOperations

• authTokenGetListApi - List Issued Tokens
• authTokenCreateApi - Create Access Token
• authTokenUpdateApi - Update Access Token
• authTokenDeleteApi - Delete Access Token
• authTokenRevokeApi - Revoke Access Token

userInfoEndpoint

• authUserinfoApi - Process UserInfo Request
• authUserinfoIssueApi - Issue UserInfo Response

utilityEndpoints

• infoApi - Get Server Metadata
• miscEchoApi - Echo

verifiableCredentialIssuer

• vciMetadataApi - /api/{serviceId}/vci/metadata API
• vciJwtissuerApi - /api/{serviceId}/vci/jwtissuer API
• vciJwksApi - /api/{serviceId}/vci/jwks API
• vciOfferCreateApi - /api/{serviceId}/vci/offer/create API
• vciOfferInfoApi - /api/{serviceId}/vci/offer/info API
• vciSingleParseApi - /api/{serviceId}/vci/single/parse API
• vciSingleIssueApi - /api/{serviceId}/vci/single/issue API
• vciBatchParseApi - /api/{serviceId}/vci/batch/parse API
• vciBatchIssueApi - /api/{serviceId}/vci/batch/issue API
• vciDeferredParseApi - /api/{serviceId}/vci/deferred/parse API
• vciDeferredIssueApi - /api/{serviceId}/vci/deferred/issue API

Standalone functions

All the methods listed above are available as standalone functions. These functions are ideal for use in applications running in the browser, serverless runtimes or other environments where application bundle size is a primary concern. When using a bundler to build your application, all unused functionality will be either excluded from the final bundle or tree-shaken away.

To read more about standalone functions, check FUNCTIONS.md.

• authorizationEndpointAuthAuthorizationApi - Process Authorization Request
• authorizationEndpointAuthAuthorizationFailApi - Fail Authorization Request
• authorizationEndpointAuthAuthorizationIssueApi - Issue Authorization Response
• authorizationEndpointUpdateAuthorizationTicket - Update Ticket Information
• cibaBackchannelAuthenticationApi - Process Backchannel Authentication Request
• cibaBackchannelAuthenticationCompleteApi - Complete Backchannel Authentication
• cibaBackchannelAuthenticationFailApi - Fail Backchannel Authentication Request
• cibaBackchannelAuthenticationIssueApi - Issue Backchannel Authentication Response
• clientManagementClientAuthorizationDeleteApi - Delete Client Tokens
• clientManagementClientAuthorizationGetListApi - Get Authorized Applications
• clientManagementClientAuthorizationUpdateApi - Update Client Tokens
• clientManagementClientCreateApi - Create Client
• clientManagementClientDeleteApi - Delete Client ⚡
• clientManagementClientExtensionRequestablesScopesDeleteApi - Delete Requestable Scopes
• clientManagementClientExtensionRequestablesScopesGetApi - Get Requestable Scopes
• clientManagementClientExtensionRequestablesScopesUpdateApi - Update Requestable Scopes
• clientManagementClientFlagUpdateApi - Update Client Lock
• clientManagementClientGetApi - Get Client
• clientManagementClientGetListApi - List Clients
• clientManagementClientGrantedScopesDeleteApi - Delete Granted Scopes
• clientManagementClientGrantedScopesGetApi - Get Granted Scopes
• clientManagementClientSecretRefreshApi - Rotate Client Secret
• clientManagementClientSecretUpdateApi - Update Client Secret
• clientManagementClientUpdateApi - Update Client
• deviceFlowDeviceAuthorizationApi - Process Device Authorization Request
• deviceFlowDeviceCompleteApi - Complete Device Authorization
• deviceFlowDeviceVerificationApi - Process Device Verification Request
• dynamicClientRegistrationClientRegistrationApi - Register Client
• dynamicClientRegistrationClientRegistrationDeleteApi - Delete Client
• dynamicClientRegistrationClientRegistrationGetApi - Get Client
• dynamicClientRegistrationClientRegistrationUpdateApi - Update Client
• federationEndpointFederationConfigurationApi - Process Entity Configuration Request
• federationEndpointFederationRegistrationApi - Process Federation Registration Request
• grantManagementEndpointGrantMApi - Process Grant Management Request
• hardwareSecurityKeyHskCreateApi - Create Security Key
• hardwareSecurityKeyHskDeleteApi - Delete Security Key
• hardwareSecurityKeyHskGetApi - Get Security Key
• hardwareSecurityKeyHskGetListApi - List Security Keys
• introspectionEndpointAuthIntrospectionApi - Process Introspection Request
• introspectionEndpointAuthIntrospectionStandardApi - Process OAuth 2.0 Introspection Request
• joseObjectJoseVerifyApi - Verify JOSE
• jwkSetEndpointServiceJwksGetApi - Get JWK Set
• nativeSSONativeSSOApi - Native SSO Processing
• nativeSSONativeSSOLogoutApi - Native SSO Logout Processing
• pushedAuthorizationEndpointPushedAuthReqApi - Process Pushed Authorization Request
• revocationEndpointAuthRevocationApi - Process Revocation Request
• serviceManagementServiceConfigurationApi - Get Service Configuration
• serviceManagementServiceCreateApi - Create Service
• serviceManagementServiceDeleteApi - Delete Service ⚡
• serviceManagementServiceGetApi - Get Service
• serviceManagementServiceGetListApi - List Services
• serviceManagementServiceUpdateApi - Update Service
• tokenEndpointAuthTokenApi - Process Token Request
• tokenEndpointAuthTokenFailApi - Fail Token Request
• tokenEndpointAuthTokenIssueApi - Issue Token Response
• tokenEndpointIdtokenReissueApi - Reissue ID Token
• tokenOperationsAuthTokenCreateApi - Create Access Token
• tokenOperationsAuthTokenDeleteApi - Delete Access Token
• tokenOperationsAuthTokenGetListApi - List Issued Tokens
• tokenOperationsAuthTokenRevokeApi - Revoke Access Token
• tokenOperationsAuthTokenUpdateApi - Update Access Token
• userInfoEndpointAuthUserinfoApi - Process UserInfo Request
• userInfoEndpointAuthUserinfoIssueApi - Issue UserInfo Response
• utilityEndpointsInfoApi - Get Server Metadata
• utilityEndpointsMiscEchoApi - Echo
• verifiableCredentialIssuerVciBatchIssueApi - /api/{serviceId}/vci/batch/issue API
• verifiableCredentialIssuerVciBatchParseApi - /api/{serviceId}/vci/batch/parse API
• verifiableCredentialIssuerVciDeferredIssueApi - /api/{serviceId}/vci/deferred/issue API
• verifiableCredentialIssuerVciDeferredParseApi - /api/{serviceId}/vci/deferred/parse API
• verifiableCredentialIssuerVciJwksApi - /api/{serviceId}/vci/jwks API
• verifiableCredentialIssuerVciJwtissuerApi - /api/{serviceId}/vci/jwtissuer API
• verifiableCredentialIssuerVciMetadataApi - /api/{serviceId}/vci/metadata API
• verifiableCredentialIssuerVciOfferCreateApi - /api/{serviceId}/vci/offer/create API
• verifiableCredentialIssuerVciOfferInfoApi - /api/{serviceId}/vci/offer/info API
• verifiableCredentialIssuerVciSingleIssueApi - /api/{serviceId}/vci/single/issue API
• verifiableCredentialIssuerVciSingleParseApi - /api/{serviceId}/vci/single/parse API

Retries

Some of the endpoints in this SDK support retries. If you use the SDK without any configuration, it will fall back to the default retry strategy provided by the API. However, the default retry strategy can be overridden on a per-operation basis, or across the entire SDK.

To change the default retry strategy for a single API call, simply provide a retryConfig object to the call:

import { AuthleteTest } from "authlete-test";

const authleteTest = new AuthleteTest({
  security: {
    authlete: process.env["AUTHLETETEST_AUTHLETE"] ?? "",
  },
});

async function run() {
  const result = await authleteTest.serviceManagement.serviceGetApi({
    serviceId: "<id>",
  }, {
    retries: {
      strategy: "backoff",
      backoff: {
        initialInterval: 1,
        maxInterval: 50,
        exponent: 1.1,
        maxElapsedTime: 100,
      },
      retryConnectionErrors: false,
    },
  });

  console.log(result);
}

run();

If you'd like to override the default retry strategy for all operations that support retries, you can provide a retryConfig at SDK initialization:

import { AuthleteTest } from "authlete-test";

const authleteTest = new AuthleteTest({
  retryConfig: {
    strategy: "backoff",
    backoff: {
      initialInterval: 1,
      maxInterval: 50,
      exponent: 1.1,
      maxElapsedTime: 100,
    },
    retryConnectionErrors: false,
  },
  security: {
    authlete: process.env["AUTHLETETEST_AUTHLETE"] ?? "",
  },
});

async function run() {
  const result = await authleteTest.serviceManagement.serviceGetApi({
    serviceId: "<id>",
  });

  console.log(result);
}

run();

Error Handling

AuthleteTestError is the base class for all HTTP error responses. It has the following properties:

| Property | Type | Description | | ------------------- | ---------- | --------------------------------------------------------------------------------------- | | error.message | string | Error message | | error.statusCode | number | HTTP response status code eg 404 | | error.headers | Headers | HTTP response headers | | error.body | string | HTTP body. Can be empty string if no body is returned. | | error.rawResponse | Response | Raw HTTP response | | error.data$ | | Optional. Some errors may contain structured data. See Error Classes. |

Example

import { AuthleteTest } from "authlete-test";
import * as errors from "authlete-test/models/errors";

const authleteTest = new AuthleteTest({
  security: {
    authlete: process.env["AUTHLETETEST_AUTHLETE"] ?? "",
  },
});

async function run() {
  try {
    const result = await authleteTest.serviceManagement.serviceGetApi({
      serviceId: "<id>",
    });

    console.log(result);
  } catch (error) {
    // The base class for HTTP error responses
    if (error instanceof errors.AuthleteTestError) {
      console.log(error.message);
      console.log(error.statusCode);
      console.log(error.body);
      console.log(error.headers);

      // Depending on the method different errors may be thrown
      if (error instanceof errors.ResultError) {
        console.log(error.data$.resultCode); // string
        console.log(error.data$.resultMessage); // string
      }
    }
  }
}

run();

Error Classes

Primary errors:

• AuthleteTestError: The base class for HTTP error responses.
  • ResultError: . *

Network errors:

• ConnectionError: HTTP client was unable to make a request to a server.
• RequestTimeoutError: HTTP request timed out due to an AbortSignal signal.
• RequestAbortedError: HTTP request was aborted by the client.
• InvalidRequestError: Any input used to create a request is invalid.
• UnexpectedClientError: Unrecognised or unexpected error.

Inherit from AuthleteTestError:

• ResponseValidationError: Type mismatch between the data returned from the server and the structure expected by the SDK. See error.rawValue for the raw value and error.pretty() for a nicely formatted multi-line string.

* Check the method documentation to see if the error is applicable.

Server Selection

Select Server by Index

You can override the default server globally by passing a server index to the serverIdx: number optional parameter when initializing the SDK client instance. The selected server will then be used as the default on the operations that use it. This table lists the indexes associated with the available servers:

| # | Server | Description | | --- | ------------------------- | ------------------- | | 0 | https://us.authlete.com | 🇺🇸 US Cluster | | 1 | https://jp.authlete.com | 🇯🇵 Japan Cluster | | 2 | https://eu.authlete.com | 🇪🇺 Europe Cluster | | 3 | https://br.authlete.com | 🇧🇷 Brazil Cluster |

Example

import { AuthleteTest } from "authlete-test";

const authleteTest = new AuthleteTest({
  serverIdx: 3,
  security: {
    authlete: process.env["AUTHLETETEST_AUTHLETE"] ?? "",
  },
});

async function run() {
  const result = await authleteTest.serviceManagement.serviceGetApi({
    serviceId: "<id>",
  });

  console.log(result);
}

run();

Override Server URL Per-Client

The default server can also be overridden globally by passing a URL to the serverURL: string optional parameter when initializing the SDK client instance. For example:

import { AuthleteTest } from "authlete-test";

const authleteTest = new AuthleteTest({
  serverURL: "https://br.authlete.com",
  security: {
    authlete: process.env["AUTHLETETEST_AUTHLETE"] ?? "",
  },
});

async function run() {
  const result = await authleteTest.serviceManagement.serviceGetApi({
    serviceId: "<id>",
  });

  console.log(result);
}

run();

Custom HTTP Client

The TypeScript SDK makes API calls using an HTTPClient that wraps the native Fetch API. This client is a thin wrapper around fetch and provides the ability to attach hooks around the request lifecycle that can be used to modify the request or handle errors and response.

The HTTPClient constructor takes an optional fetcher argument that can be used to integrate a third-party HTTP client or when writing tests to mock out the HTTP client and feed in fixtures.

The following example shows how to use the "beforeRequest" hook to to add a custom header and a timeout to requests and how to use the "requestError" hook to log errors:

import { AuthleteTest } from "authlete-test";
import { HTTPClient } from "authlete-test/lib/http";

const httpClient = new HTTPClient({
  // fetcher takes a function that has the same signature as native `fetch`.
  fetcher: (request) => {
    return fetch(request);
  }
});

httpClient.addHook("beforeRequest", (request) => {
  const nextRequest = new Request(request, {
    signal: request.signal || AbortSignal.timeout(5000)
  });

  nextRequest.headers.set("x-custom-header", "custom value");

  return nextRequest;
});

httpClient.addHook("requestError", (error, request) => {
  console.group("Request Error");
  console.log("Reason:", `${error}`);
  console.log("Endpoint:", `${request.method} ${request.url}`);
  console.groupEnd();
});

const sdk = new AuthleteTest({ httpClient });

Debugging

You can setup your SDK to emit debug logs for SDK requests and responses.

You can pass a logger that matches console's interface as an SDK option.

[!WARNING] Beware that debug logging will reveal secrets, like API tokens in headers, in log messages printed to a console or files. It's recommended to use this feature only during local development and not in production.

import { AuthleteTest } from "authlete-test";

const sdk = new AuthleteTest({ debugLogger: console });

You can also enable a default debug logger by setting an environment variable AUTHLETETEST_DEBUG to true.

Development

Maturity

This SDK is in beta, and there may be breaking changes between versions without a major version update. Therefore, we recommend pinning usage to a specific package version. This way, you can install the same version each time without breaking changes unless you are intentionally looking for the latest version.

Contributions

While we value open-source contributions to this SDK, this library is generated programmatically. Any manual changes added to internal files will be overwritten on the next generation. We look forward to hearing your feedback. Feel free to open a PR or an issue with a proof of concept and we'll do our best to include it in a future release.

SDK Created by Speakeasy

authlete-typescript-sdk-test