aa5167835e
Three remaining Phase 1 P1 deliverables: 1. Dockerfile — multi-stage build (builder + production), node:18-alpine, non-root USER node, .dockerignore excluding secrets and dev artifacts 2. AGNTCY alignment docs (docs/agntcy/) — README and alignment.md mapping all 6 AGNTCY domains to AgentIdP features with Phase 2/3 pending items noted 3. Node.js SDK (@sentryagent/idp-sdk) — TypeScript strict, zero any, native fetch (Node 18+), TokenManager with 60s auto-refresh, service clients for all 14 endpoints (agents, credentials, tokens, audit), AgentIdPError typed error hierarchy, full README All three changes tracked under openspec/changes/ with tasks marked complete. Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
551 B
551 B
ADDED Requirements
Requirement: AgentIdPClient class exists and handles auth transparently
The SDK SHALL provide an AgentIdPClient class that accepts baseUrl, clientId, and clientSecret in its constructor and manages token acquisition and refresh automatically. Callers never handle tokens directly.
Requirement: TokenManager caches and refreshes tokens
The SDK SHALL cache the access token in memory and re-issue it via POST /token when it is expired or within 60 seconds of expiry. Token refresh is transparent to the caller.