🚀 DAY 5 OF LAUNCH WEEK: Introducing Socket Firewall Enterprise.Learn more →
Socket
Book a DemoInstallSign in
Socket
Book a DemoInstallSign in

@sinch/sdk-client

Package Overview
Dependencies
Maintainers
2
Versions
11
Alerts
File Explorer

Advanced tools

License
Socket logo

Install Socket

Detect and block malicious and high-risk dependencies

Install

@sinch/sdk-client

Core services related to interacting with Sinch API

latest
npmnpm
Version
1.3.0
Version published
Weekly downloads
4K
57.1%
Maintainers
2
Weekly downloads
 
Created
Source

Sinch Http Client for Node.js

This package contains the HTTP client used by the Sinch SDK client. It uses 2 third-party dependencies:

  • node-fetch to send requests.
  • form-data to manage "multipart/form-data" streams.

There are 5 folders in this package:

  • api: it defines the interface for an Api, an ApiClient and for ApiClientOptions.
  • client: it contains the fetch implementation for the ApiClient. This implementation handles the refresh of the JWT for the APIs which support this authentication method.
  • domain: it contains some Sinch-specific interfaces and enums used at domain level for authentication and region definition.
  • plugins: calling an API can be seen as a straighforward operation as it's "just" about sending an HTTP request to a server and reading the response. And this is was the ApiClient does. However, all APIs don't behave the same and this is why we have introduced the request and response plugins:
    • request plugins will modify the request: for the moment, they are all about adding some headers (for authentication, for tracking the SDK usage).
    • response plugins will modify the response, e.g.: response content is checked and transformed into an exception if the content is empty.
  • utils: it contains some utility methods that are used by the API SDKs, such as the methods to validate headers are valid in a callback event request, or a method to convert text to hexadecimal for a UDH header

Architecture

High level architecture

Installation

With NPM

npm install @sinch/sdk-client

With Yarn

yarn add @sinch/sdk-client

Usage

In this section, we'll see how to implement the Api interface and how to use the ApiFetchClient to call the API endpoint.

Api interface

export class MyExampleApi implements Api {
    public readonly apiName = 'MyExampleApi';
    public readonly client: ApiClient;

    constructor(apiClient: ApiClient) {
        this.client = apiClient;
    }

    public async myApiOperation(): Promise<Response> {
        // Define the API endpoint
        const url = `${this.client.apiClientOptions.basePath}/myDomain`;
        // Build the request options: you can use the method 'prepareOptions' from the apiClient 
        // that will apply the request plugins onto the default built options
        const requestOptions: RequestOptions = await this.client.prepareOptions(...);
        // Send the request and apply the response plugins
        return this.client.processCall<Response>({
            url,
            requestOptions,
            apiName: this.apiName,
        });
    }
}

ApiFetchClient instantiation

const apiClientOptions: ApiClientOptions = {
  basePath: 'https://my-example-api-server.com',
  requestPlugins: [
    // Add here the plugins that will be executed before the request is sent
  ],
  responsePlugins: [
    // Add here the plugins that will be executed after the response is received and parsed
  ]
}

// Instantiate the API Client
const apiClient = new ApiFetchClient(apiClientOptions);

API class instantiation

// Once the API Client is intantiated, it can be given as a parameter to your API
const myApi = new MyExampleApi(apiClient);

// The API operations can now be invoked
const myResponse = await myApi.myApiOperation();

Plugins

Request plugins

Plugin nameDescription
additional-headersAdds multiple headers to a request.
api-tokenUsed for the SMS API with servicePlanId. It adds an Authorization header with the value of the API token as a Bearer.
basic-authenticationAlternative to the oauth2 plugin: less secure and to be used for prototyping only. It adds an Authorization header to the request to perform a Basic authentication.
oauth2Used by all the APIs that supports the projectId authentication scheme. If no token is available, it will make a query to the Sinch authentication server to get a new one, valid for 1 hour. Once a token is available, it will add a Authorization header to the request with the value fo the token as Bearer.
signingUsed by the Verification and Voice APIs: it adds an Authorization header containing the signature of the request.
versionAdd a user-agent header containing information such as the SDK version and the Node.js process version.
Added by default to the ApiFetchClient
x-timestampAdd the current date in ISO format in the x-timesstamp header (used by the signing plugin).

Response plugins

Plugin nameDescription
exceptionCheck the response content and converts it into an error if empty or if the status is not ok.
Added by default to the ApiFetchClient
timezonePatch some response properties which are identified as returned without a timezone by the server

Contact

Developer Experience team: devexp@sinch.com

FAQs

Package last updated on 13 Aug 2025

Did you know?

Socket

Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.

Install

Related posts

10 npm Typosquatted Packages Deploy Multi-Stage Credential Harvester

Research

/

Security News

10 npm Typosquatted Packages Deploy Multi-Stage Credential Harvester

Socket researchers found 10 typosquatted npm packages that auto-run on install, show fake CAPTCHAs, fingerprint by IP, and deploy a credential stealer.

By Kush Pandya  -  Oct 28, 2025