authlete_ruby_test 0.0.1.beta

data/lib/authlete/models/components/token_response.rb

@@ -0,0 +1,333 @@
+# Code generated by Speakeasy (https://speakeasy.com). DO NOT EDIT.
+
+# typed: true
+# frozen_string_literal: true
+
+
+module Authlete
+  module Models
+    module Components
+    
+
+      class TokenResponse
+        extend T::Sig
+        include Crystalline::MetadataFields
+
+        # The code which represents the result of the API call.
+        field :result_code, Crystalline::Nilable.new(::String), { 'format_json': { 'letter_case': ::Authlete::Utils.field_name('resultCode') } }
+        # A short message which explains the result of the API call.
+        field :result_message, Crystalline::Nilable.new(::String), { 'format_json': { 'letter_case': ::Authlete::Utils.field_name('resultMessage') } }
+        # The next action that the authorization server implementation should take.
+        field :action, Crystalline::Nilable.new(Models::Components::TokenResponseAction), { 'format_json': { 'letter_case': ::Authlete::Utils.field_name('action'), 'decoder': Utils.enum_from_string(Models::Components::TokenResponseAction, true) } }
+        # The content that the authorization server implementation is to return to the client application.
+        # Its format varies depending on the value of `action` parameter.
+        # 
+        field :response_content, Crystalline::Nilable.new(::String), { 'format_json': { 'letter_case': ::Authlete::Utils.field_name('responseContent') } }
+        # The value of `username` request parameter in the token request.
+        # The client application must specify username when it uses [Resource Owner Password Grant](https://datatracker.ietf.org/doc/html/rfc6749#section-4.3).
+        # In other words, when the value of `grant_type` request parameter is `password`, `username` request parameter must come along.
+        # 
+        # This parameter has a value only if the value of `grant_type` request parameter is `password` and the token request is valid.
+        # 
+        field :username, Crystalline::Nilable.new(::String), { 'format_json': { 'letter_case': ::Authlete::Utils.field_name('username') } }
+        # The value of `password` request parameter in the token request.
+        # The client application must specify password when it uses [Resource Owner Password Grant](https://datatracker.ietf.org/doc/html/rfc6749#section-4.3).
+        # In other words, when the value of `grant_type` request parameter is `password`, `password` request parameter must come along.
+        # 
+        # This parameter has a value only if the value of `grant_type` request parameter is `password` and the token request is valid.
+        # 
+        field :password, Crystalline::Nilable.new(::String), { 'format_json': { 'letter_case': ::Authlete::Utils.field_name('password') } }
+        # The ticket which is necessary to call Authlete's `/auth/token/fail` API or `/auth/token/issue` API.
+        # 
+        # This parameter has a value only if the value of `grant_type` request parameter is `password` and the token request is valid.
+        # 
+        field :ticket, Crystalline::Nilable.new(::String), { 'format_json': { 'letter_case': ::Authlete::Utils.field_name('ticket') } }
+        # The newly issued access token.
+        field :access_token, Crystalline::Nilable.new(::String), { 'format_json': { 'letter_case': ::Authlete::Utils.field_name('accessToken') } }
+        # The datetime at which the newly issued access token will expire.
+        # The value is represented in milliseconds since the Unix epoch (1970-01-01).
+        # 
+        field :access_token_expires_at, Crystalline::Nilable.new(::Integer), { 'format_json': { 'letter_case': ::Authlete::Utils.field_name('accessTokenExpiresAt') } }
+        # The duration of the newly issued access token in seconds.
+        field :access_token_duration, Crystalline::Nilable.new(::Integer), { 'format_json': { 'letter_case': ::Authlete::Utils.field_name('accessTokenDuration') } }
+        # The newly issued refresh token.
+        field :refresh_token, Crystalline::Nilable.new(::String), { 'format_json': { 'letter_case': ::Authlete::Utils.field_name('refreshToken') } }
+        # The datetime at which the newly issued refresh token will expire.
+        # The value is represented in milliseconds since the Unix epoch (1970-01-01).
+        # 
+        field :refresh_token_expires_at, Crystalline::Nilable.new(::Integer), { 'format_json': { 'letter_case': ::Authlete::Utils.field_name('refreshTokenExpiresAt') } }
+        # The duration of the newly issued refresh token in seconds.
+        field :refresh_token_duration, Crystalline::Nilable.new(::Integer), { 'format_json': { 'letter_case': ::Authlete::Utils.field_name('refreshTokenDuration') } }
+        # The newly issued ID token. Note that an ID token is issued from a token endpoint only when the `response_type` request parameter
+        # of the authorization request to an authorization endpoint has contained `code` and the `scope` request parameter has contained `openid`.
+        # 
+        field :id_token, Crystalline::Nilable.new(::String), { 'format_json': { 'letter_case': ::Authlete::Utils.field_name('idToken') } }
+        # The grant type of the token request.
+        field :grant_type, Crystalline::Nilable.new(::String), { 'format_json': { 'letter_case': ::Authlete::Utils.field_name('grantType') } }
+        # The client ID.
+        field :client_id, Crystalline::Nilable.new(::Integer), { 'format_json': { 'letter_case': ::Authlete::Utils.field_name('clientId') } }
+        # The client ID alias when the token request was made. If the client did not have an alias, this parameter is `null`.
+        # Also, if the token request was invalid and it failed to identify a client, this parameter is `null`.
+        # 
+        field :client_id_alias, Crystalline::Nilable.new(::String), { 'format_json': { 'letter_case': ::Authlete::Utils.field_name('clientIdAlias') } }
+        # The flag which indicates whether the client ID alias was used when the token request was made.
+        # `true` if the client ID alias was used when the token request was made.
+        # 
+        field :client_id_alias_used, Crystalline::Nilable.new(Crystalline::Boolean.new), { 'format_json': { 'letter_case': ::Authlete::Utils.field_name('clientIdAliasUsed') } }
+        # The subject (= resource owner's ID) of the access token.
+        # Even if an access token has been issued by the call of `/api/auth/token` API, this parameter is `null` if the flow of the token request was
+        # [Client Credentials Flow](https://datatracker.ietf.org/doc/html/rfc6749#section-4.4) (`grant_type=client_credentials`) because it means the access token
+        # is not associated with any specific end-user.
+        # 
+        field :subject, Crystalline::Nilable.new(::String), { 'format_json': { 'letter_case': ::Authlete::Utils.field_name('subject') } }
+        # The scopes covered by the access token.
+        field :scopes, Crystalline::Nilable.new(Crystalline::Array.new(::String)), { 'format_json': { 'letter_case': ::Authlete::Utils.field_name('scopes') } }
+        # The extra properties associated with the access token.
+        # This parameter is `null` when no extra property is associated with the issued access token.
+        # 
+        field :properties, Crystalline::Nilable.new(Crystalline::Array.new(Models::Components::Property)), { 'format_json': { 'letter_case': ::Authlete::Utils.field_name('properties') } }
+        # The newly issued access token in JWT format. If the authorization server is configured
+        # to issue JWT-based access tokens (= if the service's `accessTokenSignAlg` value is a
+        # non-null value), a JWT-based access token is issued along with the original random-string
+        # one.
+        # 
+        field :jwt_access_token, Crystalline::Nilable.new(::String), { 'format_json': { 'letter_case': ::Authlete::Utils.field_name('jwtAccessToken') } }
+        # The resources specified by the `resource` request parameters in the token request.
+        # See "Resource Indicators for OAuth 2.0" for details.
+        # 
+        field :resources, Crystalline::Nilable.new(Crystalline::Array.new(::String)), { 'format_json': { 'letter_case': ::Authlete::Utils.field_name('resources') } }
+        # The target resources of the access token being issued. See "Resource Indicators for OAuth 2.0" for details.
+        # 
+        field :access_token_resources, Crystalline::Nilable.new(Crystalline::Array.new(::String)), { 'format_json': { 'letter_case': ::Authlete::Utils.field_name('accessTokenResources') } }
+        # The authorization details. This represents the value of the `authorization_details`
+        # request parameter in the preceding device authorization request which is defined in
+        # "OAuth 2.0 Rich Authorization Requests".
+        # 
+        field :authorization_details, Crystalline::Nilable.new(Models::Components::AuthzDetails), { 'format_json': { 'letter_case': ::Authlete::Utils.field_name('authorizationDetails') } }
+        # The attributes of this service that the client application belongs to.
+        # 
+        field :service_attributes, Crystalline::Nilable.new(Crystalline::Array.new(Models::Components::Pair)), { 'format_json': { 'letter_case': ::Authlete::Utils.field_name('serviceAttributes') } }
+        # The attributes of the client.
+        # 
+        field :client_attributes, Crystalline::Nilable.new(Crystalline::Array.new(Models::Components::Pair)), { 'format_json': { 'letter_case': ::Authlete::Utils.field_name('clientAttributes') } }
+        # The client authentication method that was performed at the token endpoint.
+        # 
+        field :client_auth_method, Crystalline::Nilable.new(::String), { 'format_json': { 'letter_case': ::Authlete::Utils.field_name('clientAuthMethod') } }
+        # the value of the `grant_id` request parameter of the device authorization request.
+        # 
+        # The `grant_id` request parameter is defined in
+        # [Grant Management for OAuth 2.0](https://openid.net/specs/fapi-grant-management.html)
+        # , which is supported by Authlete 2.3 and newer versions.
+        # 
+        field :grant_id, Crystalline::Nilable.new(::String), { 'format_json': { 'letter_case': ::Authlete::Utils.field_name('grantId') } }
+        # The audiences on the token exchange request
+        # 
+        field :audiences, Crystalline::Nilable.new(Crystalline::Array.new(::String)), { 'format_json': { 'letter_case': ::Authlete::Utils.field_name('audiences') } }
+        # The token type identifier used in OAuth 2.0 Token Exchange (RFC 8693).
+        # The API returns short codes (enum constant names) in response fields.
+        # 
+        field :requested_token_type, Crystalline::Nilable.new(Models::Components::TokenType), { 'format_json': { 'letter_case': ::Authlete::Utils.field_name('requestedTokenType'), 'decoder': Utils.enum_from_string(Models::Components::TokenType, true) } }
+
+        field :subject_token, Crystalline::Nilable.new(::String), { 'format_json': { 'letter_case': ::Authlete::Utils.field_name('subjectToken') } }
+        # The token type identifier used in OAuth 2.0 Token Exchange (RFC 8693).
+        # The API returns short codes (enum constant names) in response fields.
+        # 
+        field :subject_token_type, Crystalline::Nilable.new(Models::Components::TokenType), { 'format_json': { 'letter_case': ::Authlete::Utils.field_name('subjectTokenType'), 'decoder': Utils.enum_from_string(Models::Components::TokenType, true) } }
+
+        field :subject_token_info, Crystalline::Nilable.new(Models::Components::TokenInfo), { 'format_json': { 'letter_case': ::Authlete::Utils.field_name('subjectTokenInfo') } }
+
+        field :actor_token, Crystalline::Nilable.new(::String), { 'format_json': { 'letter_case': ::Authlete::Utils.field_name('actorToken') } }
+        # The token type identifier used in OAuth 2.0 Token Exchange (RFC 8693).
+        # The API returns short codes (enum constant names) in response fields.
+        # 
+        field :actor_token_type, Crystalline::Nilable.new(Models::Components::TokenType), { 'format_json': { 'letter_case': ::Authlete::Utils.field_name('actorTokenType'), 'decoder': Utils.enum_from_string(Models::Components::TokenType, true) } }
+
+        field :actor_token_info, Crystalline::Nilable.new(Models::Components::TokenInfo), { 'format_json': { 'letter_case': ::Authlete::Utils.field_name('actorTokenInfo') } }
+        # For RFC 7523 JSON Web Token (JWT) Profile for OAuth 2.0 Client Authentication and Authorization Grants
+        # 
+        field :assertion, Crystalline::Nilable.new(::String), { 'format_json': { 'letter_case': ::Authlete::Utils.field_name('assertion') } }
+        # Indicate whether the previous refresh token that had been kept in the database for a short time was used
+        # 
+        field :previous_refresh_token_used, Crystalline::Nilable.new(Crystalline::Boolean.new), { 'format_json': { 'letter_case': ::Authlete::Utils.field_name('previousRefreshTokenUsed') } }
+        # The entity ID of the client.
+        # 
+        field :client_entity_id, Crystalline::Nilable.new(::String), { 'format_json': { 'letter_case': ::Authlete::Utils.field_name('clientEntityId') } }
+        # Flag which indicates whether the entity ID of the client was used when the request for the access token was made.
+        # 
+        field :client_entity_id_used, Crystalline::Nilable.new(Crystalline::Boolean.new), { 'format_json': { 'letter_case': ::Authlete::Utils.field_name('clientEntityIdUsed') } }
+        # Duration of the `c_nonce` in seconds.
+        # 
+        field :cnonce_duration, Crystalline::Nilable.new(::Integer), { 'format_json': { 'letter_case': ::Authlete::Utils.field_name('cnonceDuration') } }
+        # Get the expected nonce value for DPoP proof JWT, which should be used
+        # as the value of the `DPoP-Nonce` HTTP header.
+        # 
+        field :dpop_nonce, Crystalline::Nilable.new(::String), { 'format_json': { 'letter_case': ::Authlete::Utils.field_name('dpopNonce') } }
+        # Get the `c_nonce`.
+        # 
+        field :cnonce, Crystalline::Nilable.new(::String), { 'format_json': { 'letter_case': ::Authlete::Utils.field_name('cnonce') } }
+        # Get the time at which the `c_nonce` expires in milliseconds since
+        # the Unix epoch (1970-01-01).
+        # 
+        field :cnonce_expires_at, Crystalline::Nilable.new(::Integer), { 'format_json': { 'letter_case': ::Authlete::Utils.field_name('cnonceExpiresAt') } }
+        # Get the names of the claims that the authorization request (which resulted
+        # in generation of the access token) requested to be embedded in ID tokens.
+        # 
+        field :requested_id_token_claims, Crystalline::Nilable.new(Crystalline::Array.new(::String)), { 'format_json': { 'letter_case': ::Authlete::Utils.field_name('requestedIdTokenClaims') } }
+        # Scopes associated with the refresh token.
+        # 
+        field :refresh_token_scopes, Crystalline::Nilable.new(Crystalline::Array.new(::String)), { 'format_json': { 'letter_case': ::Authlete::Utils.field_name('refreshTokenScopes') } }
+        # The session ID, which is the ID of the user's authentication session, associated with a newly
+        # created access token.
+        # 
+        field :session_id, Crystalline::Nilable.new(::String), { 'format_json': { 'letter_case': ::Authlete::Utils.field_name('sessionId') } }
+        # If the response from the `/auth/token` API contains the `deviceSecret` parameter, its value should
+        # be used as the value of this `deviceSecret` request parameter to the `/nativesso` API. The authorization
+        # server may choose to issue a new device secret; in that case, it is free to generate a new device
+        # secret and specify the new value.
+        # 
+        # If the response from the `/auth/token` API does not contain the `deviceSecret` parameter, or
+        # if its value is invalid, the authorization server must generate a new device secret and specify
+        # it in the deviceSecret parameter to the `/nativesso` API.
+        # 
+        # The specified value is used as the value of the `device_secret` property in the token response.
+        # 
+        field :device_secret, Crystalline::Nilable.new(::String), { 'format_json': { 'letter_case': ::Authlete::Utils.field_name('deviceSecret') } }
+        # The authorization server should compute the hash value of the device secret based on its own logic
+        # and specify the computed hash as the value of this `deviceSecretHash` request parameter to the
+        # `/nativesso` API.
+        # 
+        # When the `deviceSecretHash` parameter is omitted, the implementation of the `/nativesso` API
+        # generates the device secret hash by computing the SHA-256 hash of the device secret and encoding
+        # it with base64url. Note that this hash computation logic is not a rule defined in the Native SSO
+        # specification; rather, it is Authlete-specific fallback logic used when the `deviceSecretHash`
+        # parameter is omitted.
+        # 
+        field :device_secret_hash, Crystalline::Nilable.new(::String), { 'format_json': { 'letter_case': ::Authlete::Utils.field_name('deviceSecretHash') } }
+        # The location of the client's metadata document that was used to resolve client metadata.
+        # 
+        # This property is set when client metadata was retrieved via the [OAuth Client ID Metadata Document](https://datatracker.ietf.org/doc/draft-ietf-oauth-client-id-metadata-document/) (CIMD) mechanism.
+        # 
+        field :metadata_document_location, Crystalline::Nilable.new(::String), { 'format_json': { 'letter_case': ::Authlete::Utils.field_name('metadataDocumentLocation') } }
+        # Flag indicating whether a metadata document was used to resolve client metadata for this request.
+        # 
+        # When `true`, the client metadata was retrieved via the CIMD mechanism rather than from the Authlete database.
+        # 
+        field :metadata_document_used, Crystalline::Nilable.new(Crystalline::Boolean.new), { 'format_json': { 'letter_case': ::Authlete::Utils.field_name('metadataDocumentUsed') } }
+
+        sig { params(result_code: T.nilable(::String), result_message: T.nilable(::String), action: T.nilable(Models::Components::TokenResponseAction), response_content: T.nilable(::String), username: T.nilable(::String), password: T.nilable(::String), ticket: T.nilable(::String), access_token: T.nilable(::String), access_token_expires_at: T.nilable(::Integer), access_token_duration: T.nilable(::Integer), refresh_token: T.nilable(::String), refresh_token_expires_at: T.nilable(::Integer), refresh_token_duration: T.nilable(::Integer), id_token: T.nilable(::String), grant_type: T.nilable(::String), client_id: T.nilable(::Integer), client_id_alias: T.nilable(::String), client_id_alias_used: T.nilable(T::Boolean), subject: T.nilable(::String), scopes: T.nilable(T::Array[::String]), properties: T.nilable(T::Array[Models::Components::Property]), jwt_access_token: T.nilable(::String), resources: T.nilable(T::Array[::String]), access_token_resources: T.nilable(T::Array[::String]), authorization_details: T.nilable(Models::Components::AuthzDetails), service_attributes: T.nilable(T::Array[Models::Components::Pair]), client_attributes: T.nilable(T::Array[Models::Components::Pair]), client_auth_method: T.nilable(::String), grant_id: T.nilable(::String), audiences: T.nilable(T::Array[::String]), requested_token_type: T.nilable(Models::Components::TokenType), subject_token: T.nilable(::String), subject_token_type: T.nilable(Models::Components::TokenType), subject_token_info: T.nilable(Models::Components::TokenInfo), actor_token: T.nilable(::String), actor_token_type: T.nilable(Models::Components::TokenType), actor_token_info: T.nilable(Models::Components::TokenInfo), assertion: T.nilable(::String), previous_refresh_token_used: T.nilable(T::Boolean), client_entity_id: T.nilable(::String), client_entity_id_used: T.nilable(T::Boolean), cnonce_duration: T.nilable(::Integer), dpop_nonce: T.nilable(::String), cnonce: T.nilable(::String), cnonce_expires_at: T.nilable(::Integer), requested_id_token_claims: T.nilable(T::Array[::String]), refresh_token_scopes: T.nilable(T::Array[::String]), session_id: T.nilable(::String), device_secret: T.nilable(::String), device_secret_hash: T.nilable(::String), metadata_document_location: T.nilable(::String), metadata_document_used: T.nilable(T::Boolean)).void }
+        def initialize(result_code: nil, result_message: nil, action: nil, response_content: nil, username: nil, password: nil, ticket: nil, access_token: nil, access_token_expires_at: nil, access_token_duration: nil, refresh_token: nil, refresh_token_expires_at: nil, refresh_token_duration: nil, id_token: nil, grant_type: nil, client_id: nil, client_id_alias: nil, client_id_alias_used: nil, subject: nil, scopes: nil, properties: nil, jwt_access_token: nil, resources: nil, access_token_resources: nil, authorization_details: nil, service_attributes: nil, client_attributes: nil, client_auth_method: nil, grant_id: nil, audiences: nil, requested_token_type: nil, subject_token: nil, subject_token_type: nil, subject_token_info: nil, actor_token: nil, actor_token_type: nil, actor_token_info: nil, assertion: nil, previous_refresh_token_used: nil, client_entity_id: nil, client_entity_id_used: nil, cnonce_duration: nil, dpop_nonce: nil, cnonce: nil, cnonce_expires_at: nil, requested_id_token_claims: nil, refresh_token_scopes: nil, session_id: nil, device_secret: nil, device_secret_hash: nil, metadata_document_location: nil, metadata_document_used: nil)
+          @result_code = result_code
+          @result_message = result_message
+          @action = action
+          @response_content = response_content
+          @username = username
+          @password = password
+          @ticket = ticket
+          @access_token = access_token
+          @access_token_expires_at = access_token_expires_at
+          @access_token_duration = access_token_duration
+          @refresh_token = refresh_token
+          @refresh_token_expires_at = refresh_token_expires_at
+          @refresh_token_duration = refresh_token_duration
+          @id_token = id_token
+          @grant_type = grant_type
+          @client_id = client_id
+          @client_id_alias = client_id_alias
+          @client_id_alias_used = client_id_alias_used
+          @subject = subject
+          @scopes = scopes
+          @properties = properties
+          @jwt_access_token = jwt_access_token
+          @resources = resources
+          @access_token_resources = access_token_resources
+          @authorization_details = authorization_details
+          @service_attributes = service_attributes
+          @client_attributes = client_attributes
+          @client_auth_method = client_auth_method
+          @grant_id = grant_id
+          @audiences = audiences
+          @requested_token_type = requested_token_type
+          @subject_token = subject_token
+          @subject_token_type = subject_token_type
+          @subject_token_info = subject_token_info
+          @actor_token = actor_token
+          @actor_token_type = actor_token_type
+          @actor_token_info = actor_token_info
+          @assertion = assertion
+          @previous_refresh_token_used = previous_refresh_token_used
+          @client_entity_id = client_entity_id
+          @client_entity_id_used = client_entity_id_used
+          @cnonce_duration = cnonce_duration
+          @dpop_nonce = dpop_nonce
+          @cnonce = cnonce
+          @cnonce_expires_at = cnonce_expires_at
+          @requested_id_token_claims = requested_id_token_claims
+          @refresh_token_scopes = refresh_token_scopes
+          @session_id = session_id
+          @device_secret = device_secret
+          @device_secret_hash = device_secret_hash
+          @metadata_document_location = metadata_document_location
+          @metadata_document_used = metadata_document_used
+        end
+
+        sig { params(other: T.untyped).returns(T::Boolean) }
+        def ==(other)
+          return false unless other.is_a? self.class
+          return false unless @result_code == other.result_code
+          return false unless @result_message == other.result_message
+          return false unless @action == other.action
+          return false unless @response_content == other.response_content
+          return false unless @username == other.username
+          return false unless @password == other.password
+          return false unless @ticket == other.ticket
+          return false unless @access_token == other.access_token
+          return false unless @access_token_expires_at == other.access_token_expires_at
+          return false unless @access_token_duration == other.access_token_duration
+          return false unless @refresh_token == other.refresh_token
+          return false unless @refresh_token_expires_at == other.refresh_token_expires_at
+          return false unless @refresh_token_duration == other.refresh_token_duration
+          return false unless @id_token == other.id_token
+          return false unless @grant_type == other.grant_type
+          return false unless @client_id == other.client_id
+          return false unless @client_id_alias == other.client_id_alias
+          return false unless @client_id_alias_used == other.client_id_alias_used
+          return false unless @subject == other.subject
+          return false unless @scopes == other.scopes
+          return false unless @properties == other.properties
+          return false unless @jwt_access_token == other.jwt_access_token
+          return false unless @resources == other.resources
+          return false unless @access_token_resources == other.access_token_resources
+          return false unless @authorization_details == other.authorization_details
+          return false unless @service_attributes == other.service_attributes
+          return false unless @client_attributes == other.client_attributes
+          return false unless @client_auth_method == other.client_auth_method
+          return false unless @grant_id == other.grant_id
+          return false unless @audiences == other.audiences
+          return false unless @requested_token_type == other.requested_token_type
+          return false unless @subject_token == other.subject_token
+          return false unless @subject_token_type == other.subject_token_type
+          return false unless @subject_token_info == other.subject_token_info
+          return false unless @actor_token == other.actor_token
+          return false unless @actor_token_type == other.actor_token_type
+          return false unless @actor_token_info == other.actor_token_info
+          return false unless @assertion == other.assertion
+          return false unless @previous_refresh_token_used == other.previous_refresh_token_used
+          return false unless @client_entity_id == other.client_entity_id
+          return false unless @client_entity_id_used == other.client_entity_id_used
+          return false unless @cnonce_duration == other.cnonce_duration
+          return false unless @dpop_nonce == other.dpop_nonce
+          return false unless @cnonce == other.cnonce
+          return false unless @cnonce_expires_at == other.cnonce_expires_at
+          return false unless @requested_id_token_claims == other.requested_id_token_claims
+          return false unless @refresh_token_scopes == other.refresh_token_scopes
+          return false unless @session_id == other.session_id
+          return false unless @device_secret == other.device_secret
+          return false unless @device_secret_hash == other.device_secret_hash
+          return false unless @metadata_document_location == other.metadata_document_location
+          return false unless @metadata_document_used == other.metadata_document_used
+          true
+        end
+      end
+    end
+  end
+end

data/lib/authlete/models/components/token_response.rbi

@@ -0,0 +1,115 @@
+# typed: true
+# frozen_string_literal: true
+
+
+class Authlete::Models::Components::TokenResponse
+  extend ::Crystalline::MetadataFields::ClassMethods
+end
+
+
+class Authlete::Models::Components::TokenResponse
+  def result_code(); end
+  def result_code=(str_); end
+  def result_message(); end
+  def result_message=(str_); end
+  def action(); end
+  def action=(str_); end
+  def response_content(); end
+  def response_content=(str_); end
+  def username(); end
+  def username=(str_); end
+  def password(); end
+  def password=(str_); end
+  def ticket(); end
+  def ticket=(str_); end
+  def access_token(); end
+  def access_token=(str_); end
+  def access_token_expires_at(); end
+  def access_token_expires_at=(str_); end
+  def access_token_duration(); end
+  def access_token_duration=(str_); end
+  def refresh_token(); end
+  def refresh_token=(str_); end
+  def refresh_token_expires_at(); end
+  def refresh_token_expires_at=(str_); end
+  def refresh_token_duration(); end
+  def refresh_token_duration=(str_); end
+  def id_token(); end
+  def id_token=(str_); end
+  def grant_type(); end
+  def grant_type=(str_); end
+  def client_id(); end
+  def client_id=(str_); end
+  def client_id_alias(); end
+  def client_id_alias=(str_); end
+  def client_id_alias_used(); end
+  def client_id_alias_used=(str_); end
+  def subject(); end
+  def subject=(str_); end
+  def scopes(); end
+  def scopes=(str_); end
+  def properties(); end
+  def properties=(str_); end
+  def jwt_access_token(); end
+  def jwt_access_token=(str_); end
+  def resources(); end
+  def resources=(str_); end
+  def access_token_resources(); end
+  def access_token_resources=(str_); end
+  def authorization_details(); end
+  def authorization_details=(str_); end
+  def service_attributes(); end
+  def service_attributes=(str_); end
+  def client_attributes(); end
+  def client_attributes=(str_); end
+  def client_auth_method(); end
+  def client_auth_method=(str_); end
+  def grant_id(); end
+  def grant_id=(str_); end
+  def audiences(); end
+  def audiences=(str_); end
+  def requested_token_type(); end
+  def requested_token_type=(str_); end
+  def subject_token(); end
+  def subject_token=(str_); end
+  def subject_token_type(); end
+  def subject_token_type=(str_); end
+  def subject_token_info(); end
+  def subject_token_info=(str_); end
+  def actor_token(); end
+  def actor_token=(str_); end
+  def actor_token_type(); end
+  def actor_token_type=(str_); end
+  def actor_token_info(); end
+  def actor_token_info=(str_); end
+  def assertion(); end
+  def assertion=(str_); end
+  def previous_refresh_token_used(); end
+  def previous_refresh_token_used=(str_); end
+  def client_entity_id(); end
+  def client_entity_id=(str_); end
+  def client_entity_id_used(); end
+  def client_entity_id_used=(str_); end
+  def cnonce_duration(); end
+  def cnonce_duration=(str_); end
+  def dpop_nonce(); end
+  def dpop_nonce=(str_); end
+  def cnonce(); end
+  def cnonce=(str_); end
+  def cnonce_expires_at(); end
+  def cnonce_expires_at=(str_); end
+  def requested_id_token_claims(); end
+  def requested_id_token_claims=(str_); end
+  def refresh_token_scopes(); end
+  def refresh_token_scopes=(str_); end
+  def session_id(); end
+  def session_id=(str_); end
+  def device_secret(); end
+  def device_secret=(str_); end
+  def device_secret_hash(); end
+  def device_secret_hash=(str_); end
+  def metadata_document_location(); end
+  def metadata_document_location=(str_); end
+  def metadata_document_used(); end
+  def metadata_document_used=(str_); end
+end

data/lib/authlete/models/components/token_response_action.rb

@@ -0,0 +1,27 @@
+# Code generated by Speakeasy (https://speakeasy.com). DO NOT EDIT.
+
+# typed: true
+# frozen_string_literal: true
+
+
+module Authlete
+  module Models
+    module Components
+    
+      # TokenResponseAction - The next action that the authorization server implementation should take.
+      class TokenResponseAction < T::Enum
+
+
+        enums do
+          INTERNAL_SERVER_ERROR = new('INTERNAL_SERVER_ERROR')
+          INVALID_CLIENT = new('INVALID_CLIENT')
+          BAD_REQUEST = new('BAD_REQUEST')
+          PASSWORD = new('PASSWORD')
+          OK = new('OK')
+          TOKEN_EXCHANGE = new('TOKEN_EXCHANGE')
+          JWT_BEARER = new('JWT_BEARER')
+        end
+      end
+    end
+  end
+end

data/lib/authlete/models/components/token_response_action.rbi

@@ -0,0 +1,11 @@
+# typed: true
+# frozen_string_literal: true
+
+
+class Authlete::Models::Components::TokenResponseAction
+  extend ::Crystalline::MetadataFields::ClassMethods
+end
+
+
+class Authlete::Models::Components::TokenResponseAction
+end

data/lib/authlete/models/components/token_revoke_request.rb

@@ -0,0 +1,56 @@
+# Code generated by Speakeasy (https://speakeasy.com). DO NOT EDIT.
+
+# typed: true
+# frozen_string_literal: true
+
+
+module Authlete
+  module Models
+    module Components
+    
+
+      class TokenRevokeRequest
+        extend T::Sig
+        include Crystalline::MetadataFields
+
+        # The identifier of an access token to revoke
+        # 
+        # The hash of an access token is recognized as an identifier as well as the access token itself.
+        # 
+        field :access_token_identifier, Crystalline::Nilable.new(::String), { 'format_json': { 'letter_case': ::Authlete::Utils.field_name('accessTokenIdentifier') }, 'form': { 'field_name': 'accessTokenIdentifier' } }
+        # The identifier of a refresh token to revoke.
+        # 
+        # The hash of a refresh token is recognized as an identifier as well as the refresh token itself.
+        # 
+        field :refresh_token_identifier, Crystalline::Nilable.new(::String), { 'format_json': { 'letter_case': ::Authlete::Utils.field_name('refreshTokenIdentifier') }, 'form': { 'field_name': 'refreshTokenIdentifier' } }
+        # The client ID of the access token to be revoked.
+        # 
+        # Both the numeric client ID and the alias are recognized as an identifier
+        # of a client.
+        # 
+        field :client_identifier, Crystalline::Nilable.new(::String), { 'format_json': { 'letter_case': ::Authlete::Utils.field_name('clientIdentifier') }, 'form': { 'field_name': 'clientIdentifier' } }
+        # The subject of a resource owner.
+        # 
+        field :subject, Crystalline::Nilable.new(::String), { 'format_json': { 'letter_case': ::Authlete::Utils.field_name('subject') }, 'form': { 'field_name': 'subject' } }
+
+        sig { params(access_token_identifier: T.nilable(::String), refresh_token_identifier: T.nilable(::String), client_identifier: T.nilable(::String), subject: T.nilable(::String)).void }
+        def initialize(access_token_identifier: nil, refresh_token_identifier: nil, client_identifier: nil, subject: nil)
+          @access_token_identifier = access_token_identifier
+          @refresh_token_identifier = refresh_token_identifier
+          @client_identifier = client_identifier
+          @subject = subject
+        end
+
+        sig { params(other: T.untyped).returns(T::Boolean) }
+        def ==(other)
+          return false unless other.is_a? self.class
+          return false unless @access_token_identifier == other.access_token_identifier
+          return false unless @refresh_token_identifier == other.refresh_token_identifier
+          return false unless @client_identifier == other.client_identifier
+          return false unless @subject == other.subject
+          true
+        end
+      end
+    end
+  end
+end

data/lib/authlete/models/components/token_revoke_request.rbi

@@ -0,0 +1,19 @@
+# typed: true
+# frozen_string_literal: true
+
+
+class Authlete::Models::Components::TokenRevokeRequest
+  extend ::Crystalline::MetadataFields::ClassMethods
+end
+
+
+class Authlete::Models::Components::TokenRevokeRequest
+  def access_token_identifier(); end
+  def access_token_identifier=(str_); end
+  def refresh_token_identifier(); end
+  def refresh_token_identifier=(str_); end
+  def client_identifier(); end
+  def client_identifier=(str_); end
+  def subject(); end
+  def subject=(str_); end
+end

data/lib/authlete/models/components/token_revoke_response.rb

@@ -0,0 +1,41 @@
+# Code generated by Speakeasy (https://speakeasy.com). DO NOT EDIT.
+
+# typed: true
+# frozen_string_literal: true
+
+
+module Authlete
+  module Models
+    module Components
+    
+
+      class TokenRevokeResponse
+        extend T::Sig
+        include Crystalline::MetadataFields
+
+        # The code which represents the result of the API call.
+        field :result_code, Crystalline::Nilable.new(::String), { 'format_json': { 'letter_case': ::Authlete::Utils.field_name('resultCode') } }
+        # A short message which explains the result of the API call.
+        field :result_message, Crystalline::Nilable.new(::String), { 'format_json': { 'letter_case': ::Authlete::Utils.field_name('resultMessage') } }
+        # The number of tokens revoked
+        field :count, Crystalline::Nilable.new(::Integer), { 'format_json': { 'letter_case': ::Authlete::Utils.field_name('count') } }
+
+        sig { params(result_code: T.nilable(::String), result_message: T.nilable(::String), count: T.nilable(::Integer)).void }
+        def initialize(result_code: nil, result_message: nil, count: nil)
+          @result_code = result_code
+          @result_message = result_message
+          @count = count
+        end
+
+        sig { params(other: T.untyped).returns(T::Boolean) }
+        def ==(other)
+          return false unless other.is_a? self.class
+          return false unless @result_code == other.result_code
+          return false unless @result_message == other.result_message
+          return false unless @count == other.count
+          true
+        end
+      end
+    end
+  end
+end

data/lib/authlete/models/components/token_revoke_response.rbi

@@ -0,0 +1,17 @@
+# typed: true
+# frozen_string_literal: true
+
+
+class Authlete::Models::Components::TokenRevokeResponse
+  extend ::Crystalline::MetadataFields::ClassMethods
+end
+
+
+class Authlete::Models::Components::TokenRevokeResponse
+  def result_code(); end
+  def result_code=(str_); end
+  def result_message(); end
+  def result_message=(str_); end
+  def count(); end
+  def count=(str_); end
+end