ory-client 1.1.7 → 1.1.11

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 3220c03c7533332e6bf59db8ad49712d0c533c82817a167c9f9f0e0071591842
-  data.tar.gz: 712e748f255f57f82da80c2bfde037d2c14ebe71824a25a224afad6cbf0b5ac2
+  metadata.gz: 1320524cac0ccf5e3f72b88d990a65c7bd5e72c5d906c39706a996913a11bab3
+  data.tar.gz: 50b33b0ac12a9ca6d5be4ef57ea7d20c03724ddebafab3dd2ade22cebe8858f3
 SHA512:
-  metadata.gz: 2dfc4b741152bdc214340afd8abf7fe62d1937fc2db53dd2e1104d3a9de0f22fcc2260608bb475fba5678046f6f26650eacef2e4de474fd74f12207361db3c6c
-  data.tar.gz: 3c89fadcb42414a08909dd7501c0481cddeefca57387817f364a8eeca2a91b12d10e58a55e989cf225226372d18ef561e46e1387b5dbb31cc326baf71b795567
+  metadata.gz: 35c86964325f04126cab90e9c586b3afe9986a7b85b3156cb39c3b5e7d5c638a81beddb46925e998c4ee6ff0f93f8e211a70a75eeb31c48c2197d5c8919a63ec
+  data.tar.gz: 06d3e3f33de69737370b825e9d3b4fd0338728c59911e403f9e12a031d7054ee3608c536aead7d5195d26c762c50bcf793377d7f5cbe3d676694a989339f1673

data/Gemfile.lock

@@ -1,7 +1,7 @@
 PATH
   remote: .
   specs:
-    ory-client (1.1.7)
+    ory-client (1.1.11)
       typhoeus (~> 1.0, >= 1.0.1)
 
 GEM
@@ -17,7 +17,7 @@ GEM
     jaro_winkler (1.5.4)
     method_source (1.0.0)
     parallel (1.22.1)
-    parser (3.2.0.0)
+    parser (3.2.1.0)
       ast (~> 2.4.1)
     pry (0.13.1)
       coderay (~> 1.1)
@@ -33,7 +33,7 @@ GEM
       rspec-core (~> 3.12.0)
       rspec-expectations (~> 3.12.0)
       rspec-mocks (~> 3.12.0)
-    rspec-core (3.12.0)
+    rspec-core (3.12.1)
       rspec-support (~> 3.12.0)
     rspec-expectations (3.12.2)
       diff-lcs (>= 1.2.0, < 2.0)
@@ -51,7 +51,7 @@ GEM
       ruby-progressbar (~> 1.7)
       unicode-display_width (>= 1.4.0, < 1.6)
     ruby-progressbar (1.11.0)
-    stringio (3.0.4)
+    stringio (3.0.5)
     typhoeus (1.4.0)
       ethon (>= 0.9.0)
     unicode-display_width (1.5.0)

data/README.md

@@ -8,8 +8,8 @@ with a valid Personal Access Token. Public APIs are mostly used in browsers.
 
 This SDK is automatically generated by the [OpenAPI Generator](https://openapi-generator.tech) project:
 
-- API version: v1.1.7
-- Package version: v1.1.7
+- API version: v1.1.11
+- Package version: v1.1.11
 - Build package: org.openapitools.codegen.languages.RubyClientCodegen
 
 ## Installation
@@ -25,16 +25,16 @@ gem build ory-client.gemspec
 Then either install the gem locally:
 
 ```shell
-gem install ./ory-client-v1.1.7.gem
+gem install ./ory-client-v1.1.11.gem
 ```
 
-(for development, run `gem install --dev ./ory-client-v1.1.7.gem` to install the development dependencies)
+(for development, run `gem install --dev ./ory-client-v1.1.11.gem` to install the development dependencies)
 
 or publish the gem to a gem hosting service, e.g. [RubyGems](https://rubygems.org/).
 
 Finally add this to the Gemfile:
 
-    gem 'ory-client', '~> v1.1.7'
+    gem 'ory-client', '~> v1.1.11'
 
 ### Install from Git
 
@@ -118,6 +118,7 @@ Class | Method | HTTP request | Description
 *OryClient::IdentityApi* | [**create_recovery_code_for_identity**](docs/IdentityApi.md#create_recovery_code_for_identity) | **POST** /admin/recovery/code | Create a Recovery Code
 *OryClient::IdentityApi* | [**create_recovery_link_for_identity**](docs/IdentityApi.md#create_recovery_link_for_identity) | **POST** /admin/recovery/link | Create a Recovery Link
 *OryClient::IdentityApi* | [**delete_identity**](docs/IdentityApi.md#delete_identity) | **DELETE** /admin/identities/{id} | Delete an Identity
+*OryClient::IdentityApi* | [**delete_identity_credentials**](docs/IdentityApi.md#delete_identity_credentials) | **DELETE** /admin/identities/{id}/credentials/{type} | Delete a credential for a specific identity
 *OryClient::IdentityApi* | [**delete_identity_sessions**](docs/IdentityApi.md#delete_identity_sessions) | **DELETE** /admin/identities/{id}/sessions | Delete & Invalidate an Identity's Sessions
 *OryClient::IdentityApi* | [**disable_session**](docs/IdentityApi.md#disable_session) | **DELETE** /admin/sessions/{id} | Deactivate a Session
 *OryClient::IdentityApi* | [**extend_session**](docs/IdentityApi.md#extend_session) | **PATCH** /admin/sessions/{id}/extend | Extend a Session

data/docs/FrontendApi.md

@@ -258,7 +258,8 @@ require 'ory-client'
 api_instance = OryClient::FrontendApi.new
 opts = {
   return_to: 'return_to_example', # String | The URL to return the browser to after the flow was completed.
-  login_challenge: 'login_challenge_example' # String | Ory OAuth 2.0 Login Challenge.  If set will cooperate with Ory OAuth2 and OpenID to act as an OAuth2 server / OpenID Provider.  The value for this parameter comes from `login_challenge` URL Query parameter sent to your application (e.g. `/registration?login_challenge=abcde`).  This feature is compatible with Ory Hydra when not running on the Ory Network.
+  login_challenge: 'login_challenge_example', # String | Ory OAuth 2.0 Login Challenge.  If set will cooperate with Ory OAuth2 and OpenID to act as an OAuth2 server / OpenID Provider.  The value for this parameter comes from `login_challenge` URL Query parameter sent to your application (e.g. `/registration?login_challenge=abcde`).  This feature is compatible with Ory Hydra when not running on the Ory Network.
+  after_verification_return_to: 'after_verification_return_to_example' # String | The URL to return the browser to after the verification flow was completed.  After the registration flow is completed, the user will be sent a verification email. Upon completing the verification flow, this URL will be used to override the default `selfservice.flows.verification.after.default_redirect_to` value.
 }
 
 begin
@@ -294,6 +295,7 @@ end
 | ---- | ---- | ----------- | ----- |
 | **return_to** | **String** | The URL to return the browser to after the flow was completed. | [optional] |
 | **login_challenge** | **String** | Ory OAuth 2.0 Login Challenge.  If set will cooperate with Ory OAuth2 and OpenID to act as an OAuth2 server / OpenID Provider.  The value for this parameter comes from `login_challenge` URL Query parameter sent to your application (e.g. `/registration?login_challenge=abcde`).  This feature is compatible with Ory Hydra when not running on the Ory Network. | [optional] |
+| **after_verification_return_to** | **String** | The URL to return the browser to after the verification flow was completed.  After the registration flow is completed, the user will be sent a verification email. Upon completing the verification flow, this URL will be used to override the default `selfservice.flows.verification.after.default_redirect_to` value. | [optional] |
 
 ### Return type
 

data/docs/IdentityApi.md

@@ -8,6 +8,7 @@ All URIs are relative to *https://playground.projects.oryapis.com*
 | [**create_recovery_code_for_identity**](IdentityApi.md#create_recovery_code_for_identity) | **POST** /admin/recovery/code | Create a Recovery Code |
 | [**create_recovery_link_for_identity**](IdentityApi.md#create_recovery_link_for_identity) | **POST** /admin/recovery/link | Create a Recovery Link |
 | [**delete_identity**](IdentityApi.md#delete_identity) | **DELETE** /admin/identities/{id} | Delete an Identity |
+| [**delete_identity_credentials**](IdentityApi.md#delete_identity_credentials) | **DELETE** /admin/identities/{id}/credentials/{type} | Delete a credential for a specific identity |
 | [**delete_identity_sessions**](IdentityApi.md#delete_identity_sessions) | **DELETE** /admin/identities/{id}/sessions | Delete & Invalidate an Identity's Sessions |
 | [**disable_session**](IdentityApi.md#disable_session) | **DELETE** /admin/sessions/{id} | Deactivate a Session |
 | [**extend_session**](IdentityApi.md#extend_session) | **PATCH** /admin/sessions/{id}/extend | Extend a Session |
@@ -303,6 +304,77 @@ nil (empty response body)
 - **Accept**: application/json
 
 
+## delete_identity_credentials
+
+> <Identity> delete_identity_credentials(id, type)
+
+Delete a credential for a specific identity
+
+Delete an [identity](https://www.ory.sh/docs/kratos/concepts/identity-user-model) credential by its type You can only delete second factor (aal2) credentials.
+
+### Examples
+
+```ruby
+require 'time'
+require 'ory-client'
+# setup authorization
+OryClient.configure do |config|
+  # Configure Bearer authorization: oryAccessToken
+  config.access_token = 'YOUR_BEARER_TOKEN'
+end
+
+api_instance = OryClient::IdentityApi.new
+id = 'id_example' # String | ID is the identity's ID.
+type = 'totp' # String | Type is the credential's Type. One of totp, webauthn, lookup
+
+begin
+  # Delete a credential for a specific identity
+  result = api_instance.delete_identity_credentials(id, type)
+  p result
+rescue OryClient::ApiError => e
+  puts "Error when calling IdentityApi->delete_identity_credentials: #{e}"
+end
+```
+
+#### Using the delete_identity_credentials_with_http_info variant
+
+This returns an Array which contains the response data, status code and headers.
+
+> <Array(<Identity>, Integer, Hash)> delete_identity_credentials_with_http_info(id, type)
+
+```ruby
+begin
+  # Delete a credential for a specific identity
+  data, status_code, headers = api_instance.delete_identity_credentials_with_http_info(id, type)
+  p status_code # => 2xx
+  p headers # => { ... }
+  p data # => <Identity>
+rescue OryClient::ApiError => e
+  puts "Error when calling IdentityApi->delete_identity_credentials_with_http_info: #{e}"
+end
+```
+
+### Parameters
+
+| Name | Type | Description | Notes |
+| ---- | ---- | ----------- | ----- |
+| **id** | **String** | ID is the identity&#39;s ID. |  |
+| **type** | **String** | Type is the credential&#39;s Type. One of totp, webauthn, lookup |  |
+
+### Return type
+
+[**Identity**](Identity.md)
+
+### Authorization
+
+[oryAccessToken](../README.md#oryAccessToken)
+
+### HTTP request headers
+
+- **Content-Type**: Not defined
+- **Accept**: application/json
+
+
 ## delete_identity_sessions
 
 > delete_identity_sessions(id)
@@ -740,7 +812,8 @@ end
 api_instance = OryClient::IdentityApi.new
 opts = {
   per_page: 789, # Integer | Items per Page  This is the number of items per page.
-  page: 789 # Integer | Pagination Page  This value is currently an integer, but it is not sequential. The value is not the page number, but a reference. The next page can be any number and some numbers might return an empty list.  For example, page 2 might not follow after page 1. And even if page 3 and 5 exist, but page 4 might not exist.
+  page: 789, # Integer | Pagination Page  This value is currently an integer, but it is not sequential. The value is not the page number, but a reference. The next page can be any number and some numbers might return an empty list.  For example, page 2 might not follow after page 1. And even if page 3 and 5 exist, but page 4 might not exist.
+  identifier: 'identifier_example' # String | Identifier  This query parameter can be used to lookup an identity using its identifier. For example - an email address
 }
 
 begin
@@ -776,6 +849,7 @@ end
 | ---- | ---- | ----------- | ----- |
 | **per_page** | **Integer** | Items per Page  This is the number of items per page. | [optional][default to 250] |
 | **page** | **Integer** | Pagination Page  This value is currently an integer, but it is not sequential. The value is not the page number, but a reference. The next page can be any number and some numbers might return an empty list.  For example, page 2 might not follow after page 1. And even if page 3 and 5 exist, but page 4 might not exist. | [optional][default to 1] |
+| **identifier** | **String** | Identifier  This query parameter can be used to lookup an identity using its identifier. For example - an email address | [optional] |
 
 ### Return type
 
@@ -1035,7 +1109,7 @@ end
 api_instance = OryClient::IdentityApi.new
 id = 'id_example' # String | ID must be set to the ID of identity you want to update
 opts = {
-  json_patch: [OryClient::JsonPatch.new({op: 'add', path: '/services/identity/config/smtp/from_name'})] # Array<JsonPatch> | 
+  json_patch: [OryClient::JsonPatch.new({op: 'add', path: '/name'})] # Array<JsonPatch> | 
 }
 
 begin

data/docs/JsonPatch.md

@@ -5,9 +5,9 @@
 | Name | Type | Description | Notes |
 | ---- | ---- | ----------- | ----- |
 | **from** | **String** | This field is used together with operation \"move\" and uses JSON Pointer notation.  Learn more [about JSON Pointers](https://datatracker.ietf.org/doc/html/rfc6901#section-5). | [optional] |
-| **op** | **String** | The JSON Patch operation |  |
-| **path** | **String** | The JSON Pointer to the target key |  |
-| **value** | **Object** | The value to be used. Only available for `add` and `replace` operations. | [optional] |
+| **op** | **String** | The operation to be performed. One of \"add\", \"remove\", \"replace\", \"move\", \"copy\", or \"test\". |  |
+| **path** | **String** | The path to the target path. Uses JSON pointer notation.  Learn more [about JSON Pointers](https://datatracker.ietf.org/doc/html/rfc6901#section-5). |  |
+| **value** | **Object** | The value to be used within the operations.  Learn more [about JSON Pointers](https://datatracker.ietf.org/doc/html/rfc6901#section-5). | [optional] |
 
 ## Example
 
@@ -17,7 +17,7 @@ require 'ory-client'
 instance = OryClient::JsonPatch.new(
   from: /name,
   op: replace,
-  path: /services/identity/config/smtp/from_name,
+  path: /name,
   value: foobar
 )
 ```

data/docs/NormalizedProjectRevision.md

@@ -5,15 +5,15 @@
 | Name | Type | Description | Notes |
 | ---- | ---- | ----------- | ----- |
 | **created_at** | **Time** | The Project's Revision Creation Date | [optional][readonly] |
+| **hydra_oauth2_allowed_top_level_claims** | **Array<String>** |  | [optional] |
 | **hydra_oauth2_client_credentials_default_grant_allowed_scope** | **Boolean** | Automatically grant authorized OAuth2 Scope in OAuth2 Client Credentials Flow.  Each OAuth2 Client is allowed to request a predefined OAuth2 Scope (for example `read write`). If this option is enabled, the full scope is automatically granted when performing the OAuth2 Client Credentials flow.  If disabled, the OAuth2 Client has to request the scope in the OAuth2 request by providing the `scope` query parameter.  Setting this option to true is common if you need compatibility with MITREid.  This governs the \"oauth2.client_credentials.default_grant_allowed_scope\" setting. | [optional] |
+| **hydra_oauth2_exclude_not_before_claim** | **Boolean** | Set to true if you want to exclude claim `nbf (not before)` part of access token.  This governs the \"oauth2.exclude_not_before_claim\" setting. | [optional] |
 | **hydra_oauth2_grant_jwt_iat_optional** | **Boolean** | Configures if the issued at (`iat`) claim is required in the JSON Web Token (JWT) Profile for OAuth 2.0 Client Authentication and Authorization Grants (RFC7523).  If set to `false`, the `iat` claim is required. Set this value to `true` only after careful consideration.  This governs the \"oauth2.grant.jwt.iat_optional\" setting. | [optional] |
 | **hydra_oauth2_grant_jwt_jti_optional** | **Boolean** | Configures if the JSON Web Token ID (`jti`) claim is required in the JSON Web Token (JWT) Profile for OAuth 2.0 Client Authentication and Authorization Grants (RFC7523).  If set to `false`, the `jti` claim is required. Set this value to `true` only after careful consideration.  This governs the \"oauth2.grant.jwt.jti_optional\" setting. | [optional] |
 | **hydra_oauth2_grant_jwt_max_ttl** | **String** | Configures what the maximum age of a JWT assertion used in the JSON Web Token (JWT) Profile for OAuth 2.0 Client Authentication and Authorization Grants (RFC7523) can be.  This feature uses the `exp` claim and `iat` claim to calculate assertion age. Assertions exceeding the max age will be denied.  Useful as a safety measure and recommended to keep below 720h.  This governs the \"oauth2.grant.jwt.max_ttl\" setting. | [optional][default to '720h'] |
 | **hydra_oauth2_pkce_enforced** | **Boolean** | Configures whether PKCE should be enforced for all OAuth2 Clients.  This governs the \"oauth2.pkce.enforced\" setting. | [optional] |
 | **hydra_oauth2_pkce_enforced_for_public_clients** | **Boolean** | Configures whether PKCE should be enforced for OAuth2 Clients without a client secret (public clients).  This governs the \"oauth2.pkce.enforced_for_public_clients\" setting. | [optional] |
 | **hydra_oauth2_refresh_token_hook** | **String** | Sets the Refresh Token Hook Endpoint. If set this endpoint will be called during the OAuth2 Token Refresh grant update the OAuth2 Access Token claims.  This governs the \"oauth2.refresh_token_hook\" setting. | [optional] |
-| **hydra_oauth2_session_allowed_top_level_claims** | **Array<String>** |  | [optional] |
-| **hydra_oauth2_session_exclude_not_before_claim** | **Boolean** | Set to true if you want to exclude claim `nbf (not before)` part of access token.  This governs the \"oauth2.session.exclude_not_before_claim\" setting. | [optional] |
 | **hydra_oidc_dynamic_client_registration_default_scope** | **Array<String>** |  | [optional] |
 | **hydra_oidc_dynamic_client_registration_enabled** | **Boolean** | Configures OpenID Connect Dynamic Client Registration.  This governs the \"oidc.dynamic_client_registration.enabled\" setting. | [optional] |
 | **hydra_oidc_subject_identifiers_pairwise_salt** | **String** | Configures OpenID Connect Discovery and overwrites the pairwise algorithm  This governs the \"oidc.subject_identifiers.pairwise_salt\" setting. | [optional] |
@@ -26,8 +26,8 @@
 | **hydra_serve_cookies_same_site_mode** | **String** | Configures the Ory Hydra Cookie Same Site Mode  This governs the \"serve.cookies.same_site_mode\" setting. | [optional] |
 | **hydra_serve_public_cors_allowed_origins** | **Array<String>** |  | [optional] |
 | **hydra_serve_public_cors_enabled** | **Boolean** | Configures the Ory Hydra CORS Settings  This governs the \"serve.public.cors.enabled\" setting. | [optional] |
-| **hydra_strategies_access_token** | **String** | Defines access token type. jwt is a bad idea, see https://www.ory.sh/docs/hydra/advanced#json-web-tokens  This governs the \"strategies.access_token\" setting. opaque OAUTH2_ACCESS_TOKEN_STRATEGY_OPAQUE jwt OAUTH2_ACCESS_TOKEN_STRATEGY_JWT | [optional][default to 'opaque'] |
-| **hydra_strategies_scope** | **String** | Defines how scopes are matched. For more details have a look at https://github.com/ory/fosite#scopes  This governs the \"strategies.scope\" setting. exact OAUTH2_SCOPE_STRATEGY_EXACT wildcard OAUTH2_SCOPE_STRATEGY_WILDCARD | [optional][default to 'wildcard'] |
+| **hydra_strategies_access_token** | **String** | Defines access token type. jwt is a bad idea, see https://www.ory.sh/docs/hydra/advanced#json-web-tokens  This governs the \"strategies.access_token\" setting. opaque Oauth2AccessTokenStrategyOpaque jwt Oauth2AccessTokenStrategyJwt | [optional][default to 'opaque'] |
+| **hydra_strategies_scope** | **String** | Defines how scopes are matched. For more details have a look at https://github.com/ory/fosite#scopes  This governs the \"strategies.scope\" setting. exact Oauth2ScopeStrategyExact wildcard Oauth2ScopeStrategyWildcard | [optional][default to 'wildcard'] |
 | **hydra_ttl_access_token** | **String** | This governs the \"ttl.access_token\" setting. | [optional][default to '30m'] |
 | **hydra_ttl_auth_code** | **String** | Configures how long refresh tokens are valid.  Set to -1 for refresh tokens to never expire. This is not recommended!  This governs the \"ttl.auth_code\" setting. | [optional][default to '720h'] |
 | **hydra_ttl_id_token** | **String** | This governs the \"ttl.id_token\" setting. | [optional][default to '30m'] |
@@ -102,7 +102,7 @@
 | **kratos_selfservice_flows_recovery_enabled** | **Boolean** | Configures the Ory Kratos Recovery Enabled Setting  This governs the \"selfservice.flows.recovery.enabled\" setting. | [optional] |
 | **kratos_selfservice_flows_recovery_lifespan** | **String** | Configures the Ory Kratos Recovery Lifespan  This governs the \"selfservice.flows.recovery.lifespan\" setting. | [optional] |
 | **kratos_selfservice_flows_recovery_ui_url** | **String** | Configures the Ory Kratos Recovery UI URL  This governs the \"selfservice.flows.recovery.ui_url\" setting. | [optional] |
-| **kratos_selfservice_flows_recovery_use** | **String** | Configures the Ory Kratos Recovery strategy to use (\"link\" or \"code\")  This governs the \"selfservice.flows.recovery.use\" setting. | [optional] |
+| **kratos_selfservice_flows_recovery_use** | **String** | Configures the Ory Kratos Recovery strategy to use (\"link\" or \"code\")  This governs the \"selfservice.flows.recovery.use\" setting. link SelfServiceMessageVerificationStrategyLink code SelfServiceMessageVerificationStrategyCode | [optional] |
 | **kratos_selfservice_flows_registration_after_default_browser_return_url** | **String** | Configures the Ory Kratos Registration Default Return URL  This governs the \"selfservice.flows.registration.after.default_browser_return_url\" setting. | [optional] |
 | **kratos_selfservice_flows_registration_after_oidc_default_browser_return_url** | **String** | Configures the Ory Kratos Registration After OIDC Default Return URL  This governs the \"selfservice.flows.registration.after.oidc.default_browser_return_url\" setting. | [optional] |
 | **kratos_selfservice_flows_registration_after_password_default_browser_return_url** | **String** | Configures the Ory Kratos Registration After Password Default Return URL  This governs the \"selfservice.flows.registration.after.password.default_browser_return_url\" setting. | [optional] |
@@ -121,7 +121,7 @@
 | **kratos_selfservice_flows_verification_enabled** | **Boolean** | Configures the Ory Kratos Verification Enabled Setting  This governs the \"selfservice.flows.verification.enabled\" setting. | [optional] |
 | **kratos_selfservice_flows_verification_lifespan** | **String** | Configures the Ory Kratos Verification Lifespan  This governs the \"selfservice.flows.verification.lifespan\" setting. | [optional] |
 | **kratos_selfservice_flows_verification_ui_url** | **String** | Configures the Ory Kratos Verification UI URL  This governs the \"selfservice.flows.verification.ui_url\" setting. | [optional] |
-| **kratos_selfservice_flows_verification_use** | **String** | Configures the Ory Kratos Strategy to use for Verification  This governs the \"selfservice.flows.verification.use\" setting. | [optional] |
+| **kratos_selfservice_flows_verification_use** | **String** | Configures the Ory Kratos Strategy to use for Verification  This governs the \"selfservice.flows.verification.use\" setting. link SelfServiceMessageVerificationStrategyLink code SelfServiceMessageVerificationStrategyCode | [optional] |
 | **kratos_selfservice_methods_code_config_lifespan** | **String** | Configures the Ory Kratos Code Method's lifespan  This governs the \"selfservice.methods.code.config.lifespan\" setting. | [optional] |
 | **kratos_selfservice_methods_code_enabled** | **Boolean** | Configures whether Ory Kratos Code Method is enabled  This governs the \"selfservice.methods.code.enabled\" setting. | [optional] |
 | **kratos_selfservice_methods_link_config_base_url** | **String** | Configures the Base URL which Recovery, Verification, and Login Links Point to  It is recommended to leave this value empty. It will be appropriately configured to the best matching domain (e.g. when using custom domains) automatically.  This governs the \"selfservice.methods.link.config.base_url\" setting. | [optional] |
@@ -162,15 +162,15 @@ require 'ory-client'
 
 instance = OryClient::NormalizedProjectRevision.new(
   created_at: null,
+  hydra_oauth2_allowed_top_level_claims: null,
   hydra_oauth2_client_credentials_default_grant_allowed_scope: null,
+  hydra_oauth2_exclude_not_before_claim: null,
   hydra_oauth2_grant_jwt_iat_optional: null,
   hydra_oauth2_grant_jwt_jti_optional: null,
   hydra_oauth2_grant_jwt_max_ttl: 30m,
   hydra_oauth2_pkce_enforced: null,
   hydra_oauth2_pkce_enforced_for_public_clients: null,
   hydra_oauth2_refresh_token_hook: null,
-  hydra_oauth2_session_allowed_top_level_claims: null,
-  hydra_oauth2_session_exclude_not_before_claim: null,
   hydra_oidc_dynamic_client_registration_default_scope: null,
   hydra_oidc_dynamic_client_registration_enabled: null,
   hydra_oidc_subject_identifiers_pairwise_salt: null,

data/docs/NormalizedProjectRevisionHook.md

@@ -20,6 +20,7 @@
 | **web_hook_config_can_interrupt** | **Boolean** | If enabled allows the web hook to interrupt / abort the self-service flow. It only applies to certain flows (registration/verification/login/settings) and requires a valid response format. | [optional] |
 | **web_hook_config_method** | **String** | The HTTP method to use (GET, POST, etc) for the Web-Hook | [optional] |
 | **web_hook_config_response_ignore** | **Boolean** | Whether to ignore the Web Hook response | [optional] |
+| **web_hook_config_response_parse** | **Boolean** | Whether to parse the Web Hook response | [optional] |
 | **web_hook_config_url** | **String** | The URL the Web-Hook should call | [optional] |
 
 ## Example
@@ -44,6 +45,7 @@ instance = OryClient::NormalizedProjectRevisionHook.new(
   web_hook_config_can_interrupt: null,
   web_hook_config_method: POST,
   web_hook_config_response_ignore: null,
+  web_hook_config_response_parse: null,
   web_hook_config_url: https://www.example.org/web-hook-listener
 )
 ```

data/docs/NormalizedProjectRevisionThirdPartyProvider.md

@@ -21,6 +21,7 @@
 | **provider_id** | **String** | ID is the provider's ID | [optional] |
 | **requested_claims** | **Object** |  | [optional] |
 | **scope** | **Array<String>** |  | [optional] |
+| **subject_source** | **String** |  | [optional] |
 | **token_url** | **String** | TokenURL is the token url, typically something like: https://example.org/oauth2/token  Should only be used when the OAuth2 / OpenID Connect server is not supporting OpenID Connect Discovery and when `provider` is set to `generic`. | [optional] |
 | **updated_at** | **Time** | Last Time Project's Revision was Updated | [optional][readonly] |
 
@@ -47,6 +48,7 @@ instance = OryClient::NormalizedProjectRevisionThirdPartyProvider.new(
   provider_id: null,
   requested_claims: null,
   scope: null,
+  subject_source: null,
   token_url: https://www.googleapis.com/oauth2/v4/token,
   updated_at: null
 )

data/docs/OAuth2Api.md

@@ -1334,7 +1334,7 @@ end
 
 api_instance = OryClient::OAuth2Api.new
 id = 'id_example' # String | The id of the OAuth 2.0 Client.
-json_patch = [OryClient::JsonPatch.new({op: 'add', path: '/services/identity/config/smtp/from_name'})] # Array<JsonPatch> | OAuth 2.0 Client JSON Patch Body
+json_patch = [OryClient::JsonPatch.new({op: 'add', path: '/name'})] # Array<JsonPatch> | OAuth 2.0 Client JSON Patch Body
 
 begin
   # Patch OAuth 2.0 Client

data/docs/ProjectApi.md

@@ -594,7 +594,7 @@ end
 api_instance = OryClient::ProjectApi.new
 project_id = 'project_id_example' # String | Project ID  The project's ID.
 opts = {
-  json_patch: [OryClient::JsonPatch.new({op: 'add', path: '/services/identity/config/smtp/from_name'})] # Array<JsonPatch> | 
+  json_patch: [OryClient::JsonPatch.new({op: 'add', path: '/name'})] # Array<JsonPatch> | 
 }
 
 begin

data/lib/ory-client/api/courier_api.rb

@@ -3,7 +3,7 @@
 
 #Documentation for all public and administrative Ory APIs. Administrative APIs can only be accessed with a valid Personal Access Token. Public APIs are mostly used in browsers. 
 
-The version of the OpenAPI document: v1.1.7
+The version of the OpenAPI document: v1.1.11
 Contact: support@ory.sh
 Generated by: https://openapi-generator.tech
 OpenAPI Generator version: 6.0.1

data/lib/ory-client/api/frontend_api.rb

@@ -3,7 +3,7 @@
 
 #Documentation for all public and administrative Ory APIs. Administrative APIs can only be accessed with a valid Personal Access Token. Public APIs are mostly used in browsers. 
 
-The version of the OpenAPI document: v1.1.7
+The version of the OpenAPI document: v1.1.11
 Contact: support@ory.sh
 Generated by: https://openapi-generator.tech
 OpenAPI Generator version: 6.0.1
@@ -216,6 +216,7 @@ module OryClient
     # @param [Hash] opts the optional parameters
     # @option opts [String] :return_to The URL to return the browser to after the flow was completed.
     # @option opts [String] :login_challenge Ory OAuth 2.0 Login Challenge.  If set will cooperate with Ory OAuth2 and OpenID to act as an OAuth2 server / OpenID Provider.  The value for this parameter comes from `login_challenge` URL Query parameter sent to your application (e.g. `/registration?login_challenge=abcde`).  This feature is compatible with Ory Hydra when not running on the Ory Network.
+    # @option opts [String] :after_verification_return_to The URL to return the browser to after the verification flow was completed.  After the registration flow is completed, the user will be sent a verification email. Upon completing the verification flow, this URL will be used to override the default `selfservice.flows.verification.after.default_redirect_to` value.
     # @return [RegistrationFlow]
     def create_browser_registration_flow(opts = {})
       data, _status_code, _headers = create_browser_registration_flow_with_http_info(opts)
@@ -227,6 +228,7 @@ module OryClient
     # @param [Hash] opts the optional parameters
     # @option opts [String] :return_to The URL to return the browser to after the flow was completed.
     # @option opts [String] :login_challenge Ory OAuth 2.0 Login Challenge.  If set will cooperate with Ory OAuth2 and OpenID to act as an OAuth2 server / OpenID Provider.  The value for this parameter comes from `login_challenge` URL Query parameter sent to your application (e.g. `/registration?login_challenge=abcde`).  This feature is compatible with Ory Hydra when not running on the Ory Network.
+    # @option opts [String] :after_verification_return_to The URL to return the browser to after the verification flow was completed.  After the registration flow is completed, the user will be sent a verification email. Upon completing the verification flow, this URL will be used to override the default `selfservice.flows.verification.after.default_redirect_to` value.
     # @return [Array<(RegistrationFlow, Integer, Hash)>] RegistrationFlow data, response status code and response headers
     def create_browser_registration_flow_with_http_info(opts = {})
       if @api_client.config.debugging
@@ -239,6 +241,7 @@ module OryClient
       query_params = opts[:query_params] || {}
       query_params[:'return_to'] = opts[:'return_to'] if !opts[:'return_to'].nil?
       query_params[:'login_challenge'] = opts[:'login_challenge'] if !opts[:'login_challenge'].nil?
+      query_params[:'after_verification_return_to'] = opts[:'after_verification_return_to'] if !opts[:'after_verification_return_to'].nil?
 
       # header parameters
       header_params = opts[:header_params] || {}

data/lib/ory-client/api/identity_api.rb

@@ -3,7 +3,7 @@
 
 #Documentation for all public and administrative Ory APIs. Administrative APIs can only be accessed with a valid Personal Access Token. Public APIs are mostly used in browsers. 
 
-The version of the OpenAPI document: v1.1.7
+The version of the OpenAPI document: v1.1.11
 Contact: support@ory.sh
 Generated by: https://openapi-generator.tech
 OpenAPI Generator version: 6.0.1
@@ -274,6 +274,80 @@ module OryClient
       return data, status_code, headers
     end
 
+    # Delete a credential for a specific identity
+    # Delete an [identity](https://www.ory.sh/docs/kratos/concepts/identity-user-model) credential by its type You can only delete second factor (aal2) credentials.
+    # @param id [String] ID is the identity's ID.
+    # @param type [String] Type is the credential's Type. One of totp, webauthn, lookup
+    # @param [Hash] opts the optional parameters
+    # @return [Identity]
+    def delete_identity_credentials(id, type, opts = {})
+      data, _status_code, _headers = delete_identity_credentials_with_http_info(id, type, opts)
+      data
+    end
+
+    # Delete a credential for a specific identity
+    # Delete an [identity](https://www.ory.sh/docs/kratos/concepts/identity-user-model) credential by its type You can only delete second factor (aal2) credentials.
+    # @param id [String] ID is the identity's ID.
+    # @param type [String] Type is the credential's Type. One of totp, webauthn, lookup
+    # @param [Hash] opts the optional parameters
+    # @return [Array<(Identity, Integer, Hash)>] Identity data, response status code and response headers
+    def delete_identity_credentials_with_http_info(id, type, opts = {})
+      if @api_client.config.debugging
+        @api_client.config.logger.debug 'Calling API: IdentityApi.delete_identity_credentials ...'
+      end
+      # verify the required parameter 'id' is set
+      if @api_client.config.client_side_validation && id.nil?
+        fail ArgumentError, "Missing the required parameter 'id' when calling IdentityApi.delete_identity_credentials"
+      end
+      # verify the required parameter 'type' is set
+      if @api_client.config.client_side_validation && type.nil?
+        fail ArgumentError, "Missing the required parameter 'type' when calling IdentityApi.delete_identity_credentials"
+      end
+      # verify enum value
+      allowable_values = ["totp", "webauthn", "lookup"]
+      if @api_client.config.client_side_validation && !allowable_values.include?(type)
+        fail ArgumentError, "invalid value for \"type\", must be one of #{allowable_values}"
+      end
+      # resource path
+      local_var_path = '/admin/identities/{id}/credentials/{type}'.sub('{' + 'id' + '}', CGI.escape(id.to_s)).sub('{' + 'type' + '}', CGI.escape(type.to_s))
+
+      # query parameters
+      query_params = opts[:query_params] || {}
+
+      # header parameters
+      header_params = opts[:header_params] || {}
+      # HTTP header 'Accept' (if needed)
+      header_params['Accept'] = @api_client.select_header_accept(['application/json'])
+
+      # form parameters
+      form_params = opts[:form_params] || {}
+
+      # http body (model)
+      post_body = opts[:debug_body]
+
+      # return_type
+      return_type = opts[:debug_return_type] || 'Identity'
+
+      # auth_names
+      auth_names = opts[:debug_auth_names] || ['oryAccessToken']
+
+      new_options = opts.merge(
+        :operation => :"IdentityApi.delete_identity_credentials",
+        :header_params => header_params,
+        :query_params => query_params,
+        :form_params => form_params,
+        :body => post_body,
+        :auth_names => auth_names,
+        :return_type => return_type
+      )
+
+      data, status_code, headers = @api_client.call_api(:DELETE, local_var_path, new_options)
+      if @api_client.config.debugging
+        @api_client.config.logger.debug "API called: IdentityApi#delete_identity_credentials\nData: #{data.inspect}\nStatus code: #{status_code}\nHeaders: #{headers}"
+      end
+      return data, status_code, headers
+    end
+
     # Delete & Invalidate an Identity's Sessions
     # Calling this endpoint irrecoverably and permanently deletes and invalidates all sessions that belong to the given Identity.
     # @param id [String] ID is the identity&#39;s ID.
@@ -667,6 +741,7 @@ module OryClient
     # @param [Hash] opts the optional parameters
     # @option opts [Integer] :per_page Items per Page  This is the number of items per page. (default to 250)
     # @option opts [Integer] :page Pagination Page  This value is currently an integer, but it is not sequential. The value is not the page number, but a reference. The next page can be any number and some numbers might return an empty list.  For example, page 2 might not follow after page 1. And even if page 3 and 5 exist, but page 4 might not exist. (default to 1)
+    # @option opts [String] :identifier Identifier  This query parameter can be used to lookup an identity using its identifier. For example - an email address
     # @return [Array<Identity>]
     def list_identities(opts = {})
       data, _status_code, _headers = list_identities_with_http_info(opts)
@@ -678,6 +753,7 @@ module OryClient
     # @param [Hash] opts the optional parameters
     # @option opts [Integer] :per_page Items per Page  This is the number of items per page. (default to 250)
     # @option opts [Integer] :page Pagination Page  This value is currently an integer, but it is not sequential. The value is not the page number, but a reference. The next page can be any number and some numbers might return an empty list.  For example, page 2 might not follow after page 1. And even if page 3 and 5 exist, but page 4 might not exist. (default to 1)
+    # @option opts [String] :identifier Identifier  This query parameter can be used to lookup an identity using its identifier. For example - an email address
     # @return [Array<(Array<Identity>, Integer, Hash)>] Array<Identity> data, response status code and response headers
     def list_identities_with_http_info(opts = {})
       if @api_client.config.debugging
@@ -702,6 +778,7 @@ module OryClient
       query_params = opts[:query_params] || {}
       query_params[:'per_page'] = opts[:'per_page'] if !opts[:'per_page'].nil?
       query_params[:'page'] = opts[:'page'] if !opts[:'page'].nil?
+      query_params[:'identifier'] = opts[:'identifier'] if !opts[:'identifier'].nil?
 
       # header parameters
       header_params = opts[:header_params] || {}

data/lib/ory-client/api/jwk_api.rb

@@ -3,7 +3,7 @@
 
 #Documentation for all public and administrative Ory APIs. Administrative APIs can only be accessed with a valid Personal Access Token. Public APIs are mostly used in browsers. 
 
-The version of the OpenAPI document: v1.1.7
+The version of the OpenAPI document: v1.1.11
 Contact: support@ory.sh
 Generated by: https://openapi-generator.tech
 OpenAPI Generator version: 6.0.1

data/lib/ory-client/api/metadata_api.rb

@@ -3,7 +3,7 @@
 
 #Documentation for all public and administrative Ory APIs. Administrative APIs can only be accessed with a valid Personal Access Token. Public APIs are mostly used in browsers. 
 
-The version of the OpenAPI document: v1.1.7
+The version of the OpenAPI document: v1.1.11
 Contact: support@ory.sh
 Generated by: https://openapi-generator.tech
 OpenAPI Generator version: 6.0.1

data/lib/ory-client/api/o_auth2_api.rb

@@ -3,7 +3,7 @@
 
 #Documentation for all public and administrative Ory APIs. Administrative APIs can only be accessed with a valid Personal Access Token. Public APIs are mostly used in browsers. 
 
-The version of the OpenAPI document: v1.1.7
+The version of the OpenAPI document: v1.1.11
 Contact: support@ory.sh
 Generated by: https://openapi-generator.tech
 OpenAPI Generator version: 6.0.1

data/lib/ory-client/api/oidc_api.rb

@@ -3,7 +3,7 @@
 
 #Documentation for all public and administrative Ory APIs. Administrative APIs can only be accessed with a valid Personal Access Token. Public APIs are mostly used in browsers. 
 
-The version of the OpenAPI document: v1.1.7
+The version of the OpenAPI document: v1.1.11
 Contact: support@ory.sh
 Generated by: https://openapi-generator.tech
 OpenAPI Generator version: 6.0.1

data/lib/ory-client/api/permission_api.rb

@@ -3,7 +3,7 @@
 
 #Documentation for all public and administrative Ory APIs. Administrative APIs can only be accessed with a valid Personal Access Token. Public APIs are mostly used in browsers. 
 
-The version of the OpenAPI document: v1.1.7
+The version of the OpenAPI document: v1.1.11
 Contact: support@ory.sh
 Generated by: https://openapi-generator.tech
 OpenAPI Generator version: 6.0.1

data/lib/ory-client/api/project_api.rb

@@ -3,7 +3,7 @@
 
 #Documentation for all public and administrative Ory APIs. Administrative APIs can only be accessed with a valid Personal Access Token. Public APIs are mostly used in browsers. 
 
-The version of the OpenAPI document: v1.1.7
+The version of the OpenAPI document: v1.1.11
 Contact: support@ory.sh
 Generated by: https://openapi-generator.tech
 OpenAPI Generator version: 6.0.1

data/lib/ory-client/api/relationship_api.rb

@@ -3,7 +3,7 @@
 
 #Documentation for all public and administrative Ory APIs. Administrative APIs can only be accessed with a valid Personal Access Token. Public APIs are mostly used in browsers. 
 
-The version of the OpenAPI document: v1.1.7
+The version of the OpenAPI document: v1.1.11
 Contact: support@ory.sh
 Generated by: https://openapi-generator.tech
 OpenAPI Generator version: 6.0.1

data/lib/ory-client/api/wellknown_api.rb

@@ -3,7 +3,7 @@
 
 #Documentation for all public and administrative Ory APIs. Administrative APIs can only be accessed with a valid Personal Access Token. Public APIs are mostly used in browsers. 
 
-The version of the OpenAPI document: v1.1.7
+The version of the OpenAPI document: v1.1.11
 Contact: support@ory.sh
 Generated by: https://openapi-generator.tech
 OpenAPI Generator version: 6.0.1

data/lib/ory-client/api_client.rb

@@ -3,7 +3,7 @@
 
 #Documentation for all public and administrative Ory APIs. Administrative APIs can only be accessed with a valid Personal Access Token. Public APIs are mostly used in browsers. 
 
-The version of the OpenAPI document: v1.1.7
+The version of the OpenAPI document: v1.1.11
 Contact: support@ory.sh
 Generated by: https://openapi-generator.tech
 OpenAPI Generator version: 6.0.1

data/lib/ory-client/api_error.rb

@@ -3,7 +3,7 @@
 
 #Documentation for all public and administrative Ory APIs. Administrative APIs can only be accessed with a valid Personal Access Token. Public APIs are mostly used in browsers. 
 
-The version of the OpenAPI document: v1.1.7
+The version of the OpenAPI document: v1.1.11
 Contact: support@ory.sh
 Generated by: https://openapi-generator.tech
 OpenAPI Generator version: 6.0.1