fix(sds): align organization and collaborator operations with SDS API contracts

- Add creatorDid parameter to organization.create endpoint
- Change organization.list response parsing from repositories to organizations field
- Update accessType values from owner|collaborator to owner|shared|none
- Add permission string array parser for collaborator.list endpoint
- Update type definitions to match actual SDS API response formats

Author: bitbeckers

packages/lexicon/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@hypercerts-org/lexicon",
-  "version": "0.3.0",
+  "version": "0.4.0",
   "description": "ATProto lexicon definitions and TypeScript types for the Hypercerts protocol",
   "type": "module",
   "main": "dist/index.cjs",

packages/sdk-core/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@hypercerts-org/sdk-core",
-  "version": "0.3.0",
+  "version": "0.4.0",
   "description": "Framework-agnostic ATProto SDK core for authentication, repository operations, and lexicon management",
   "main": "dist/index.cjs",
   "repository": {

packages/sdk-core/src/core/types.ts

@@ -185,9 +185,10 @@ export const OrganizationSchema = z.object({
   /**
    * How the current user relates to this organization.
    * - `"owner"`: User created or owns the organization
-   * - `"collaborator"`: User was invited to collaborate
+   * - `"shared"`: User was invited to collaborate (has permissions)
+   * - `"none"`: User has no access to this organization
    */
-  accessType: z.enum(["owner", "collaborator"]),
+  accessType: z.enum(["owner", "shared", "none"]),
 });
 
 /**

packages/sdk-core/src/repository/CollaboratorOperationsImpl.ts

@@ -107,6 +107,27 @@ export class CollaboratorOperationsImpl implements CollaboratorOperations {
     return "viewer";
   }
 
+  /**
+   * Converts a permission string array to a permissions object.
+   *
+   * The SDS API returns permissions as an array of strings (e.g., ["read", "create"]).
+   * This method converts them to the boolean flag format used by the SDK.
+   *
+   * @param permissionArray - Array of permission strings from SDS API
+   * @returns Permission flags object
+   * @internal
+   */
+  private parsePermissions(permissionArray: string[]): CollaboratorPermissions {
+    return {
+      read: permissionArray.includes("read"),
+      create: permissionArray.includes("create"),
+      update: permissionArray.includes("update"),
+      delete: permissionArray.includes("delete"),
+      admin: permissionArray.includes("admin"),
+      owner: permissionArray.includes("owner"),
+    };
+  }
+
   /**
    * Grants repository access to a user.
    *
@@ -225,18 +246,21 @@ export class CollaboratorOperationsImpl implements CollaboratorOperations {
     return (data.collaborators || []).map(
       (c: {
         userDid: string;
-        permissions: CollaboratorPermissions;
+        permissions: string[]; // SDS API returns string array
         grantedBy: string;
         grantedAt: string;
         revokedAt?: string;
-      }) => ({
-        userDid: c.userDid,
-        role: this.permissionsToRole(c.permissions),
-        permissions: c.permissions,
-        grantedBy: c.grantedBy,
-        grantedAt: c.grantedAt,
-        revokedAt: c.revokedAt,
-      }),
+      }) => {
+        const permissions = this.parsePermissions(c.permissions);
+        return {
+          userDid: c.userDid,
+          role: this.permissionsToRole(permissions),
+          permissions: permissions,
+          grantedBy: c.grantedBy,
+          grantedAt: c.grantedAt,
+          revokedAt: c.revokedAt,
+        };
+      },
     );
   }
 

packages/sdk-core/src/repository/OrganizationOperationsImpl.ts

@@ -109,10 +109,18 @@ export class OrganizationOperationsImpl implements OrganizationOperations {
    * ```
    */
   async create(params: { name: string; description?: string; handle?: string }): Promise<OrganizationInfo> {
+    const userDid = this.session.did || this.session.sub;
+    if (!userDid) {
+      throw new NetworkError("No authenticated user found");
+    }
+
     const response = await this.session.fetchHandler(`${this.serverUrl}/xrpc/com.sds.organization.create`, {
       method: "POST",
       headers: { "Content-Type": "application/json" },
-      body: JSON.stringify(params),
+      body: JSON.stringify({
+        ...params,
+        creatorDid: userDid,
+      }),
     });
 
     if (!response.ok) {
@@ -126,8 +134,15 @@ export class OrganizationOperationsImpl implements OrganizationOperations {
       name: data.name,
       description: data.description,
       createdAt: data.createdAt || new Date().toISOString(),
-      accessType: "owner",
-      permissions: { read: true, create: true, update: true, delete: true, admin: true, owner: true },
+      accessType: data.accessType || "owner",
+      permissions: data.permissions || {
+        read: true,
+        create: true,
+        update: true,
+        delete: true,
+        admin: true,
+        owner: true,
+      },
     };
   }
 
@@ -202,8 +217,13 @@ export class OrganizationOperationsImpl implements OrganizationOperations {
    * ```
    */
   async list(): Promise<OrganizationInfo[]> {
+    const userDid = this.session.did || this.session.sub;
+    if (!userDid) {
+      throw new NetworkError("No authenticated user found");
+    }
+
     const response = await this.session.fetchHandler(
-      `${this.serverUrl}/xrpc/com.sds.organization.list?userDid=${encodeURIComponent(this.session.did || this.session.sub)}`,
+      `${this.serverUrl}/xrpc/com.sds.organization.list?userDid=${encodeURIComponent(userDid)}`,
       { method: "GET" },
     );
 
@@ -212,20 +232,21 @@ export class OrganizationOperationsImpl implements OrganizationOperations {
     }
 
     const data = await response.json();
-    return (data.repositories || []).map(
+    return (data.organizations || []).map(
       (r: {
         did: string;
         handle: string;
         name: string;
         description?: string;
-        accessType: "owner" | "collaborator";
+        createdAt?: string;
+        accessType: "owner" | "shared" | "none";
         permissions: CollaboratorPermissions;
       }) => ({
         did: r.did,
         handle: r.handle,
         name: r.name,
         description: r.description,
-        createdAt: new Date().toISOString(), // SDS may not return this
+        createdAt: r.createdAt || new Date().toISOString(),
         accessType: r.accessType,
         permissions: r.permissions,
       }),

packages/sdk-core/src/repository/types.ts

@@ -85,7 +85,7 @@ export interface OrganizationInfo {
   name: string;
   description?: string;
   createdAt: string;
-  accessType: "owner" | "collaborator";
+  accessType: "owner" | "shared" | "none";
   permissions: CollaboratorPermissions;
   collaboratorCount?: number;
   profile?: {

packages/sdk-react/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@hypercerts-org/sdk-react",
-  "version": "0.3.0",
+  "version": "0.4.0",
   "description": "React hooks and components for the Hypercerts ATProto SDK",
   "type": "module",
   "main": "dist/index.cjs",