auth0

import { ManagementClient as FernClient } from "../Client.js"; import * as core from "../core/index.js"; /** * All supported configuration options for the ManagementClient. * * @group Management API */ type ManagementClientConfig = ManagementClient.ManagementClientOptionsWithToken | ManagementClient.ManagementClientOptionsWithClientCredentials; export declare namespace ManagementClient { /** * Base configuration options for the Management Client. * Extends the Fern client options but excludes token and environment * as these are handled by our wrapper. * * @group Management API * @public */ interface ManagementClientOptions extends Omit<FernClient.Options, "token" | "environment" | "fetcher" | "baseUrl" | "fetch"> { /** Auth0 domain (e.g., 'your-tenant.auth0.com') */ domain: string; /** * API audience. Defaults to https://{domain}/api/v2/ * @defaultValue `https://{domain}/api/v2/` */ audience?: string; /** * Enable/disable telemetry. Defaults to true * @defaultValue true */ telemetry?: boolean; /** Custom client information for telemetry */ clientInfo?: { name: string; [key: string]: unknown; }; /** * Custom domain Header to use for whitelisted requests. * When provided, the Auth0-Custom-Domain header will be added automatically to supported endpoints. * This works seamlessly with custom fetchers - both the custom domain logic and your custom fetcher will be applied. */ withCustomDomainHeader?: string; } /** * Configuration for token-based authentication. * Use this when you already have a valid Management API token. * * @group Management API * @public * * @example Basic token configuration * ```typescript * const client = new ManagementClient({ * domain: 'your-tenant.auth0.com', * token: 'your-static-token' * }); * ``` * * @example Dynamic token with supplier function * ```typescript * const client = new ManagementClient({ * domain: 'your-tenant.auth0.com', * token: () => getAccessToken() // Function that returns a token * }); * ``` */ interface ManagementClientOptionsWithToken extends ManagementClientOptions { /** A function that returns the access token */ token: core.Supplier<string>; } /** * Configuration for client credentials authentication using client secret. * Use this for server-to-server authentication with a client secret. * * @group Management API * @public * * @example Using client secret * ```typescript * const client = new ManagementClient({ * domain: 'your-tenant.auth0.com', * clientId: 'your-client-id', * clientSecret: 'your-client-secret' * }); * ``` */ interface ManagementClientOptionsWithClientSecret extends ManagementClientOptions { /** Auth0 application client ID */ clientId: string; /** Auth0 application client secret */ clientSecret: string; /** Enable mTLS for token endpoint calls */ useMTLS?: boolean; } /** * Configuration for client credentials authentication using JWT assertion. * Use this for server-to-server authentication with a private key. * * @group Management API * @public * * @example Using client assertion * ```typescript * const client = new ManagementClient({ * domain: 'your-tenant.auth0.com', * clientId: 'your-client-id', * clientAssertionSigningKey: 'your-private-key' * }); * ``` */ interface ManagementClientOptionsWithClientAssertion extends ManagementClientOptions { /** Auth0 application client ID */ clientId: string; /** Private key for signing the client assertion JWT */ clientAssertionSigningKey: string; /** Algorithm for signing the client assertion. Defaults to RS256 */ clientAssertionSigningAlg?: string; /** Enable mTLS for token endpoint calls */ useMTLS?: boolean; } /** * Union type for client credentials authentication options. * Supports both client secret and client assertion methods. * * @group Management API */ type ManagementClientOptionsWithClientCredentials = ManagementClientOptionsWithClientSecret | ManagementClientOptionsWithClientAssertion; } /** * Auth0 Management API client wrapper. * * Provides a high-level interface to Auth0's Management API with automatic * token management, telemetry, and Auth0-specific configuration. * * @group Management API * @example Using client credentials (client secret) * ```typescript * const client = new ManagementClient({ * domain: 'your-tenant.auth0.com', * clientId: 'your-client-id', * clientSecret: 'your-client-secret' * }); * ``` * * @example Using client credentials (client assertion) * ```typescript * const client = new ManagementClient({ * domain: 'your-tenant.auth0.com', * clientId: 'your-client-id', * clientAssertionSigningKey: 'your-private-key' * }); * ``` * * @example Using existing token * ```typescript * const client = new ManagementClient({ * domain: 'your-tenant.auth0.com', * token: 'your-static-token' // or () => getAccessToken() * }); * ``` * * @example Using custom domain header * ```typescript * const client = new ManagementClient({ * domain: 'your-tenant.auth0.com', * clientId: 'your-client-id', * clientSecret: 'your-client-secret', * withCustomDomainHeader: 'auth.example.com' // Auto-applies to whitelisted endpoints * }); * ``` * * @example Using custom fetcher with custom domain header (they work together) * ```typescript * const client = new ManagementClient({ * domain: 'your-tenant.auth0.com', * clientId: 'your-client-id', * clientSecret: 'your-client-secret', * withCustomDomainHeader: 'auth.example.com', // Custom domain header logic * fetcher: async (args) => { * console.log('Making request:', args.url); // Custom logging * return fetch(args.url, { ...args }); // Custom fetch implementation * } * }); * ``` */ export declare class ManagementClient extends FernClient { /** * Creates a new Management API client instance. * * @param _options - Configuration options for the Management Client * @group Management API */ constructor(_options: ManagementClientConfig); } export {};