ory-client 1.22.38 → 1.22.39

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 7f4483445cbcfff449310f6eb616636ccc4b9db34fe91f59a66ce3c358647909
-  data.tar.gz: d6df9dc9487005190f07a4db92f43d2d30d010ad5e1564b180ebbd005c025231
+  metadata.gz: 5ef794fc80e0fe19460ed239522f44db814fff87a0bc7ebbee15e21c851de524
+  data.tar.gz: 6910d57513be78b768ffbafcde124c8aca25e04c43a55d13ebaea585fbdb3fc2
 SHA512:
-  metadata.gz: b4397b137fee8782136f56116ad2a516f0c9bbcae27aaddc59aa7b991de34c42e9c5f1b9388a0415d29e1da3f7999a32662e6c39a2cb39e8d959c1c3e6aa414e
-  data.tar.gz: fae18b082c1e71940b343f1177a94a4e5dea468953e442b2ccafcf2544204b03ae165c174aa0b4d9df45ac58df60890bc6a056748f2c4be1655a8320061af23a
+  metadata.gz: '09915268ba403133febac44f94155ad2ab5d87d1d7deefff8cbd6a234b301021010248fb3743f9afb53a82e5fc755816e71e66298e9644fce035652a635121a6'
+  data.tar.gz: e378e051d4cc3ad10d39b61f933c09f5e6b9558e2cea009c995a13e4f3af3dcb40cc0c37173e6621ed5e9ca4c627be7b56bd7e496e3a8e3d5959cf9bf9a5728a

data/Gemfile.lock

@@ -1,7 +1,7 @@
 PATH
   remote: .
   specs:
-    ory-client (1.22.38)
+    ory-client (1.22.39)
       typhoeus (~> 1.0, >= 1.0.1)
 
 GEM

data/README.md

@@ -26,8 +26,8 @@ This document describes the APIs available in the Ory Network. The APIs are avai
 
 This SDK is automatically generated by the [OpenAPI Generator](https://openapi-generator.tech) project:
 
-- API version: v1.22.38
-- Package version: v1.22.38
+- API version: v1.22.39
+- Package version: v1.22.39
 - Generator version: 7.17.0
 - Build package: org.openapitools.codegen.languages.RubyClientCodegen
 
@@ -44,16 +44,16 @@ gem build ory-client.gemspec
 Then either install the gem locally:
 
 ```shell
-gem install ./ory-client-v1.22.38.gem
+gem install ./ory-client-v1.22.39.gem
 ```
 
-(for development, run `gem install --dev ./ory-client-v1.22.38.gem` to install the development dependencies)
+(for development, run `gem install --dev ./ory-client-v1.22.39.gem` to install the development dependencies)
 
 or publish the gem to a gem hosting service, e.g. [RubyGems](https://rubygems.org/).
 
 Finally add this to the Gemfile:
 
-    gem 'ory-client', '~> v1.22.38'
+    gem 'ory-client', '~> v1.22.39'
 
 ### Install from Git
 
@@ -122,6 +122,7 @@ Class | Method | HTTP request | Description
 *OryClient::FrontendApi* | [**create_native_registration_flow**](docs/FrontendApi.md#create_native_registration_flow) | **GET** /self-service/registration/api | Create Registration Flow for Native Apps
 *OryClient::FrontendApi* | [**create_native_settings_flow**](docs/FrontendApi.md#create_native_settings_flow) | **GET** /self-service/settings/api | Create Settings Flow for Native Apps
 *OryClient::FrontendApi* | [**create_native_verification_flow**](docs/FrontendApi.md#create_native_verification_flow) | **GET** /self-service/verification/api | Create Verification Flow for Native Apps
+*OryClient::FrontendApi* | [**delete_test_login_flow**](docs/FrontendApi.md#delete_test_login_flow) | **DELETE** /self-service/login/test | Delete a test OIDC login flow
 *OryClient::FrontendApi* | [**disable_my_other_sessions**](docs/FrontendApi.md#disable_my_other_sessions) | **DELETE** /sessions | Disable my other sessions
 *OryClient::FrontendApi* | [**disable_my_session**](docs/FrontendApi.md#disable_my_session) | **DELETE** /sessions/{id} | Disable one of my sessions
 *OryClient::FrontendApi* | [**exchange_session_token**](docs/FrontendApi.md#exchange_session_token) | **GET** /sessions/token-exchange | Exchange Session Token
@@ -146,6 +147,7 @@ Class | Method | HTTP request | Description
 *OryClient::IdentityApi* | [**create_identity**](docs/IdentityApi.md#create_identity) | **POST** /admin/identities | Create an Identity
 *OryClient::IdentityApi* | [**create_recovery_code_for_identity**](docs/IdentityApi.md#create_recovery_code_for_identity) | **POST** /admin/recovery/code | Create a Recovery Code
 *OryClient::IdentityApi* | [**create_recovery_link_for_identity**](docs/IdentityApi.md#create_recovery_link_for_identity) | **POST** /admin/recovery/link | Create a Recovery Link
+*OryClient::IdentityApi* | [**create_test_login_flow**](docs/IdentityApi.md#create_test_login_flow) | **POST** /admin/test-login-flows | Create a test OIDC login flow
 *OryClient::IdentityApi* | [**delete_identity**](docs/IdentityApi.md#delete_identity) | **DELETE** /admin/identities/{id} | Delete an Identity
 *OryClient::IdentityApi* | [**delete_identity_credentials**](docs/IdentityApi.md#delete_identity_credentials) | **DELETE** /admin/identities/{id}/credentials/{type} | Delete a credential for a specific identity
 *OryClient::IdentityApi* | [**delete_identity_sessions**](docs/IdentityApi.md#delete_identity_sessions) | **DELETE** /admin/identities/{id}/sessions | Delete & Invalidate an Identity's Sessions
@@ -159,6 +161,7 @@ Class | Method | HTTP request | Description
 *OryClient::IdentityApi* | [**list_identity_schemas**](docs/IdentityApi.md#list_identity_schemas) | **GET** /schemas | Get all Identity Schemas
 *OryClient::IdentityApi* | [**list_identity_sessions**](docs/IdentityApi.md#list_identity_sessions) | **GET** /admin/identities/{id}/sessions | List an Identity's Sessions
 *OryClient::IdentityApi* | [**list_sessions**](docs/IdentityApi.md#list_sessions) | **GET** /admin/sessions | List All Sessions
+*OryClient::IdentityApi* | [**manage_sessions**](docs/IdentityApi.md#manage_sessions) | **POST** /admin/sessions | Manage sessions in bulk
 *OryClient::IdentityApi* | [**patch_identity**](docs/IdentityApi.md#patch_identity) | **PATCH** /admin/identities/{id} | Patch an Identity
 *OryClient::IdentityApi* | [**update_identity**](docs/IdentityApi.md#update_identity) | **PUT** /admin/identities/{id} | Update an Identity
 *OryClient::JwkApi* | [**create_json_web_key_set**](docs/JwkApi.md#create_json_web_key_set) | **POST** /admin/keys/{set} | Create JSON Web Key
@@ -306,6 +309,7 @@ Class | Method | HTTP request | Description
  - [OryClient::CreateRelationshipBody](docs/CreateRelationshipBody.md)
  - [OryClient::CreateSubscriptionBody](docs/CreateSubscriptionBody.md)
  - [OryClient::CreateSubscriptionCommon](docs/CreateSubscriptionCommon.md)
+ - [OryClient::CreateTestLoginFlowBody](docs/CreateTestLoginFlowBody.md)
  - [OryClient::CreateVerifiableCredentialRequestBody](docs/CreateVerifiableCredentialRequestBody.md)
  - [OryClient::CreateWorkspaceApiKeyBody](docs/CreateWorkspaceApiKeyBody.md)
  - [OryClient::CreateWorkspaceBody](docs/CreateWorkspaceBody.md)
@@ -316,6 +320,12 @@ Class | Method | HTTP request | Description
  - [OryClient::CustomDomain](docs/CustomDomain.md)
  - [OryClient::CustomerPortalAvailability](docs/CustomerPortalAvailability.md)
  - [OryClient::DeleteMySessionsCount](docs/DeleteMySessionsCount.md)
+ - [OryClient::DeviceAuthnAndroidAuthorizationList](docs/DeviceAuthnAndroidAuthorizationList.md)
+ - [OryClient::DeviceAuthnAndroidKeyDescription](docs/DeviceAuthnAndroidKeyDescription.md)
+ - [OryClient::DeviceAuthnAndroidRootOfTrust](docs/DeviceAuthnAndroidRootOfTrust.md)
+ - [OryClient::DeviceAuthnAttestation](docs/DeviceAuthnAttestation.md)
+ - [OryClient::DeviceAuthnIOSAttStmt](docs/DeviceAuthnIOSAttStmt.md)
+ - [OryClient::DeviceAuthnIOSAttestation](docs/DeviceAuthnIOSAttestation.md)
  - [OryClient::DeviceAuthnKey](docs/DeviceAuthnKey.md)
  - [OryClient::DeviceAuthorization](docs/DeviceAuthorization.md)
  - [OryClient::DeviceUserAuthRequest](docs/DeviceUserAuthRequest.md)
@@ -400,7 +410,13 @@ Class | Method | HTTP request | Description
  - [OryClient::ListWorkspaces](docs/ListWorkspaces.md)
  - [OryClient::LoginFlow](docs/LoginFlow.md)
  - [OryClient::LoginFlowState](docs/LoginFlowState.md)
+ - [OryClient::LoginFlowTestContext](docs/LoginFlowTestContext.md)
+ - [OryClient::LoginFlowTestDebugPayload](docs/LoginFlowTestDebugPayload.md)
+ - [OryClient::LoginFlowTestSchemaValidationError](docs/LoginFlowTestSchemaValidationError.md)
+ - [OryClient::LoginFlowTestStepError](docs/LoginFlowTestStepError.md)
  - [OryClient::LogoutFlow](docs/LogoutFlow.md)
+ - [OryClient::ManageSessionsBody](docs/ManageSessionsBody.md)
+ - [OryClient::ManageSessionsResponse](docs/ManageSessionsResponse.md)
  - [OryClient::ManagedIdentitySchema](docs/ManagedIdentitySchema.md)
  - [OryClient::ManagedIdentitySchemaValidationResult](docs/ManagedIdentitySchemaValidationResult.md)
  - [OryClient::MemberInvite](docs/MemberInvite.md)

data/docs/CreateTestLoginFlowBody.md

@@ -0,0 +1,18 @@
+# OryClient::CreateTestLoginFlowBody
+
+## Properties
+
+| Name | Type | Description | Notes |
+| ---- | ---- | ----------- | ----- |
+| **provider_id** | **String** | ID of the OIDC provider to test. Must match a provider configured on the project that serves this request. |  |
+
+## Example
+
+```ruby
+require 'ory-client'
+
+instance = OryClient::CreateTestLoginFlowBody.new(
+  provider_id: null
+)
+```
+

data/docs/DeviceAuthnAndroidAuthorizationList.md

@@ -0,0 +1,70 @@
+# OryClient::DeviceAuthnAndroidAuthorizationList
+
+## Properties
+
+| Name | Type | Description | Notes |
+| ---- | ---- | ----------- | ----- |
+| **active_date_time** | **Integer** |  | [optional] |
+| **algorithm** | **Integer** |  | [optional] |
+| **application_id** | **Array<Integer>** |  | [optional] |
+| **attestation_application_id** | **Array<Integer>** |  | [optional] |
+| **attestation_id_brand** | **Array<Integer>** |  | [optional] |
+| **attestation_id_device** | **Array<Integer>** |  | [optional] |
+| **attestation_id_imei** | **Array<Integer>** |  | [optional] |
+| **attestation_id_manufacturer** | **Array<Integer>** |  | [optional] |
+| **attestation_id_meid** | **Array<Integer>** |  | [optional] |
+| **attestation_id_model** | **Array<Integer>** |  | [optional] |
+| **attestation_id_product** | **Array<Integer>** |  | [optional] |
+| **attestation_id_serial** | **Array<Integer>** |  | [optional] |
+| **auth_timeout** | **Integer** |  | [optional] |
+| **boot_patch_level** | **Integer** |  | [optional] |
+| **creation_date_time** | **Integer** |  | [optional] |
+| **digest** | **Array<Integer>** |  | [optional] |
+| **ec_curve** | **Integer** |  | [optional] |
+| **key_size** | **Integer** |  | [optional] |
+| **origin** | **Integer** |  | [optional] |
+| **origination_expire_date_time** | **Integer** |  | [optional] |
+| **os_patch_level** | **Integer** |  | [optional] |
+| **os_version** | **Integer** |  | [optional] |
+| **purpose** | **Array<Integer>** |  | [optional] |
+| **root_of_trust** | [**DeviceAuthnAndroidRootOfTrust**](DeviceAuthnAndroidRootOfTrust.md) |  | [optional] |
+| **usage_expire_date_time** | **Integer** |  | [optional] |
+| **user_auth_type** | **Integer** |  | [optional] |
+| **vendor_patch_level** | **Integer** |  | [optional] |
+
+## Example
+
+```ruby
+require 'ory-client'
+
+instance = OryClient::DeviceAuthnAndroidAuthorizationList.new(
+  active_date_time: null,
+  algorithm: null,
+  application_id: null,
+  attestation_application_id: null,
+  attestation_id_brand: null,
+  attestation_id_device: null,
+  attestation_id_imei: null,
+  attestation_id_manufacturer: null,
+  attestation_id_meid: null,
+  attestation_id_model: null,
+  attestation_id_product: null,
+  attestation_id_serial: null,
+  auth_timeout: null,
+  boot_patch_level: null,
+  creation_date_time: null,
+  digest: null,
+  ec_curve: null,
+  key_size: null,
+  origin: null,
+  origination_expire_date_time: null,
+  os_patch_level: null,
+  os_version: null,
+  purpose: null,
+  root_of_trust: null,
+  usage_expire_date_time: null,
+  user_auth_type: null,
+  vendor_patch_level: null
+)
+```
+

data/docs/DeviceAuthnAndroidKeyDescription.md

@@ -0,0 +1,28 @@
+# OryClient::DeviceAuthnAndroidKeyDescription
+
+## Properties
+
+| Name | Type | Description | Notes |
+| ---- | ---- | ----------- | ----- |
+| **attestation_security_level** | **Integer** |  | [optional] |
+| **attestation_version** | **Integer** |  | [optional] |
+| **keymaster_security_level** | **Integer** |  | [optional] |
+| **keymaster_version** | **Integer** |  | [optional] |
+| **software_enforced** | [**DeviceAuthnAndroidAuthorizationList**](DeviceAuthnAndroidAuthorizationList.md) |  | [optional] |
+| **tee_enforced** | [**DeviceAuthnAndroidAuthorizationList**](DeviceAuthnAndroidAuthorizationList.md) |  | [optional] |
+
+## Example
+
+```ruby
+require 'ory-client'
+
+instance = OryClient::DeviceAuthnAndroidKeyDescription.new(
+  attestation_security_level: null,
+  attestation_version: null,
+  keymaster_security_level: null,
+  keymaster_version: null,
+  software_enforced: null,
+  tee_enforced: null
+)
+```
+

data/docs/DeviceAuthnAndroidRootOfTrust.md

@@ -0,0 +1,24 @@
+# OryClient::DeviceAuthnAndroidRootOfTrust
+
+## Properties
+
+| Name | Type | Description | Notes |
+| ---- | ---- | ----------- | ----- |
+| **device_locked** | **Boolean** |  | [optional] |
+| **verified_boot_hash** | **Array<Integer>** |  | [optional] |
+| **verified_boot_key** | **Array<Integer>** |  | [optional] |
+| **verified_boot_state** | **Integer** |  | [optional] |
+
+## Example
+
+```ruby
+require 'ory-client'
+
+instance = OryClient::DeviceAuthnAndroidRootOfTrust.new(
+  device_locked: null,
+  verified_boot_hash: null,
+  verified_boot_key: null,
+  verified_boot_state: null
+)
+```
+

data/docs/DeviceAuthnAttestation.md

@@ -0,0 +1,20 @@
+# OryClient::DeviceAuthnAttestation
+
+## Properties
+
+| Name | Type | Description | Notes |
+| ---- | ---- | ----------- | ----- |
+| **android** | [**DeviceAuthnAndroidKeyDescription**](DeviceAuthnAndroidKeyDescription.md) |  | [optional] |
+| **ios** | [**DeviceAuthnIOSAttestation**](DeviceAuthnIOSAttestation.md) |  | [optional] |
+
+## Example
+
+```ruby
+require 'ory-client'
+
+instance = OryClient::DeviceAuthnAttestation.new(
+  android: null,
+  ios: null
+)
+```
+

data/docs/DeviceAuthnIOSAttStmt.md

@@ -0,0 +1,18 @@
+# OryClient::DeviceAuthnIOSAttStmt
+
+## Properties
+
+| Name | Type | Description | Notes |
+| ---- | ---- | ----------- | ----- |
+| **x5c** | **Array<Array<Integer>>** | X5c is the leaf-first certificate chain encoded as base64(DER), per the JOSE convention defined in RFC 7515 §4.1.6. | [optional] |
+
+## Example
+
+```ruby
+require 'ory-client'
+
+instance = OryClient::DeviceAuthnIOSAttStmt.new(
+  x5c: null
+)
+```
+

data/docs/DeviceAuthnIOSAttestation.md

@@ -0,0 +1,22 @@
+# OryClient::DeviceAuthnIOSAttestation
+
+## Properties
+
+| Name | Type | Description | Notes |
+| ---- | ---- | ----------- | ----- |
+| **att_stmt** | [**DeviceAuthnIOSAttStmt**](DeviceAuthnIOSAttStmt.md) |  | [optional] |
+| **auth_data** | **Array<Integer>** |  | [optional] |
+| **fmt** | **String** |  | [optional] |
+
+## Example
+
+```ruby
+require 'ory-client'
+
+instance = OryClient::DeviceAuthnIOSAttestation.new(
+  att_stmt: null,
+  auth_data: null,
+  fmt: null
+)
+```
+

data/docs/DeviceAuthnKey.md

@@ -4,6 +4,7 @@
 
 | Name | Type | Description | Notes |
 | ---- | ---- | ----------- | ----- |
+| **attestation** | [**DeviceAuthnAttestation**](DeviceAuthnAttestation.md) |  | [optional] |
 | **client_key_id** | **String** | ClientKeyID is a client-chosen id for the key and is unique per identity. | [optional] |
 | **created_at** | **Time** | CreatedAt is the timestamp of when the key was created. Only used for troubleshooting/UI. | [optional] |
 | **device_name** | **String** | DeviceName is a human readable name for the device, helping the user to distinguish it from others. | [optional] |
@@ -18,6 +19,7 @@
 require 'ory-client'
 
 instance = OryClient::DeviceAuthnKey.new(
+  attestation: null,
   client_key_id: null,
   created_at: null,
   device_name: null,

data/docs/FrontendApi.md

@@ -16,6 +16,7 @@ All URIs are relative to *https://playground.projects.oryapis.com*
 | [**create_native_registration_flow**](FrontendApi.md#create_native_registration_flow) | **GET** /self-service/registration/api | Create Registration Flow for Native Apps |
 | [**create_native_settings_flow**](FrontendApi.md#create_native_settings_flow) | **GET** /self-service/settings/api | Create Settings Flow for Native Apps |
 | [**create_native_verification_flow**](FrontendApi.md#create_native_verification_flow) | **GET** /self-service/verification/api | Create Verification Flow for Native Apps |
+| [**delete_test_login_flow**](FrontendApi.md#delete_test_login_flow) | **DELETE** /self-service/login/test | Delete a test OIDC login flow |
 | [**disable_my_other_sessions**](FrontendApi.md#disable_my_other_sessions) | **DELETE** /sessions | Disable my other sessions |
 | [**disable_my_session**](FrontendApi.md#disable_my_session) | **DELETE** /sessions/{id} | Disable one of my sessions |
 | [**exchange_session_token**](FrontendApi.md#exchange_session_token) | **GET** /sessions/token-exchange | Exchange Session Token |
@@ -868,6 +869,73 @@ No authorization required
 - **Accept**: application/json
 
 
+## delete_test_login_flow
+
+> delete_test_login_flow(id, opts)
+
+Delete a test OIDC login flow
+
+Deletes a dry-run OIDC test login flow. A flow whose debug payload has been captured requires the HMAC cookie set by the OIDC callback; a flow still in the initial choose-method state is deletable with just the flow ID (it carries no PII, and the admin may want to abandon it).
+
+### Examples
+
+```ruby
+require 'time'
+require 'ory-client'
+
+api_instance = OryClient::FrontendApi.new
+id = 'id_example' # String | ID of the test login flow to delete.
+opts = {
+  cookie: 'cookie_example' # String | HTTP Cookies. A captured test flow requires the ory_kratos_test_flow cookie set by the OIDC callback; a flow still in the initial choose-method state does not.
+}
+
+begin
+  # Delete a test OIDC login flow
+  api_instance.delete_test_login_flow(id, opts)
+rescue OryClient::ApiError => e
+  puts "Error when calling FrontendApi->delete_test_login_flow: #{e}"
+end
+```
+
+#### Using the delete_test_login_flow_with_http_info variant
+
+This returns an Array which contains the response data (`nil` in this case), status code and headers.
+
+> <Array(nil, Integer, Hash)> delete_test_login_flow_with_http_info(id, opts)
+
+```ruby
+begin
+  # Delete a test OIDC login flow
+  data, status_code, headers = api_instance.delete_test_login_flow_with_http_info(id, opts)
+  p status_code # => 2xx
+  p headers # => { ... }
+  p data # => nil
+rescue OryClient::ApiError => e
+  puts "Error when calling FrontendApi->delete_test_login_flow_with_http_info: #{e}"
+end
+```
+
+### Parameters
+
+| Name | Type | Description | Notes |
+| ---- | ---- | ----------- | ----- |
+| **id** | **String** | ID of the test login flow to delete. |  |
+| **cookie** | **String** | HTTP Cookies. A captured test flow requires the ory_kratos_test_flow cookie set by the OIDC callback; a flow still in the initial choose-method state does not. | [optional] |
+
+### Return type
+
+nil (empty response body)
+
+### Authorization
+
+No authorization required
+
+### HTTP request headers
+
+- **Content-Type**: Not defined
+- **Accept**: application/json
+
+
 ## disable_my_other_sessions
 
 > <DeleteMySessionsCount> disable_my_other_sessions(opts)

data/docs/IdentityApi.md

@@ -8,6 +8,7 @@ All URIs are relative to *https://playground.projects.oryapis.com*
 | [**create_identity**](IdentityApi.md#create_identity) | **POST** /admin/identities | Create an Identity |
 | [**create_recovery_code_for_identity**](IdentityApi.md#create_recovery_code_for_identity) | **POST** /admin/recovery/code | Create a Recovery Code |
 | [**create_recovery_link_for_identity**](IdentityApi.md#create_recovery_link_for_identity) | **POST** /admin/recovery/link | Create a Recovery Link |
+| [**create_test_login_flow**](IdentityApi.md#create_test_login_flow) | **POST** /admin/test-login-flows | Create a test OIDC login flow |
 | [**delete_identity**](IdentityApi.md#delete_identity) | **DELETE** /admin/identities/{id} | Delete an Identity |
 | [**delete_identity_credentials**](IdentityApi.md#delete_identity_credentials) | **DELETE** /admin/identities/{id}/credentials/{type} | Delete a credential for a specific identity |
 | [**delete_identity_sessions**](IdentityApi.md#delete_identity_sessions) | **DELETE** /admin/identities/{id}/sessions | Delete & Invalidate an Identity's Sessions |
@@ -21,6 +22,7 @@ All URIs are relative to *https://playground.projects.oryapis.com*
 | [**list_identity_schemas**](IdentityApi.md#list_identity_schemas) | **GET** /schemas | Get all Identity Schemas |
 | [**list_identity_sessions**](IdentityApi.md#list_identity_sessions) | **GET** /admin/identities/{id}/sessions | List an Identity's Sessions |
 | [**list_sessions**](IdentityApi.md#list_sessions) | **GET** /admin/sessions | List All Sessions |
+| [**manage_sessions**](IdentityApi.md#manage_sessions) | **POST** /admin/sessions | Manage sessions in bulk |
 | [**patch_identity**](IdentityApi.md#patch_identity) | **PATCH** /admin/identities/{id} | Patch an Identity |
 | [**update_identity**](IdentityApi.md#update_identity) | **PUT** /admin/identities/{id} | Update an Identity |
 
@@ -311,6 +313,75 @@ end
 - **Accept**: application/json
 
 
+## create_test_login_flow
+
+> <LoginFlow> create_test_login_flow(create_test_login_flow_body)
+
+Create a test OIDC login flow
+
+Creates a dry-run OIDC test login flow pre-scoped to one provider. The returned flow carries a single-submit UI and a CSRF bearer token. No identity is persisted and no session is issued when the flow completes; the captured debug data is returned in the flow's test_context.
+
+### Examples
+
+```ruby
+require 'time'
+require 'ory-client'
+# setup authorization
+OryClient.configure do |config|
+  # Configure Bearer authorization: oryAccessToken
+  config.access_token = 'YOUR_BEARER_TOKEN'
+end
+
+api_instance = OryClient::IdentityApi.new
+create_test_login_flow_body = OryClient::CreateTestLoginFlowBody.new({provider_id: 'provider_id_example'}) # CreateTestLoginFlowBody | 
+
+begin
+  # Create a test OIDC login flow
+  result = api_instance.create_test_login_flow(create_test_login_flow_body)
+  p result
+rescue OryClient::ApiError => e
+  puts "Error when calling IdentityApi->create_test_login_flow: #{e}"
+end
+```
+
+#### Using the create_test_login_flow_with_http_info variant
+
+This returns an Array which contains the response data, status code and headers.
+
+> <Array(<LoginFlow>, Integer, Hash)> create_test_login_flow_with_http_info(create_test_login_flow_body)
+
+```ruby
+begin
+  # Create a test OIDC login flow
+  data, status_code, headers = api_instance.create_test_login_flow_with_http_info(create_test_login_flow_body)
+  p status_code # => 2xx
+  p headers # => { ... }
+  p data # => <LoginFlow>
+rescue OryClient::ApiError => e
+  puts "Error when calling IdentityApi->create_test_login_flow_with_http_info: #{e}"
+end
+```
+
+### Parameters
+
+| Name | Type | Description | Notes |
+| ---- | ---- | ----------- | ----- |
+| **create_test_login_flow_body** | [**CreateTestLoginFlowBody**](CreateTestLoginFlowBody.md) |  |  |
+
+### Return type
+
+[**LoginFlow**](LoginFlow.md)
+
+### Authorization
+
+[oryAccessToken](../README.md#oryAccessToken)
+
+### HTTP request headers
+
+- **Content-Type**: application/json
+- **Accept**: application/json
+
+
 ## delete_identity
 
 > delete_identity(id)
@@ -400,7 +471,7 @@ end
 
 api_instance = OryClient::IdentityApi.new
 id = 'id_example' # String | ID is the identity's ID.
-type = 'password' # String | Type is the type of credentials to delete. password CredentialsTypePassword oidc CredentialsTypeOIDC totp CredentialsTypeTOTP lookup_secret CredentialsTypeLookup webauthn CredentialsTypeWebAuthn code CredentialsTypeCodeAuth passkey CredentialsTypePasskey profile CredentialsTypeProfile saml CredentialsTypeSAML deviceauthn CredentialsTypeDeviceAuthn link_recovery CredentialsTypeRecoveryLink  CredentialsTypeRecoveryLink is a special credential type linked to the link strategy (recovery flow).  It is not used within the credentials object itself. code_recovery CredentialsTypeRecoveryCode
+type = 'password' # String | Type is the type of credentials to delete. password CredentialsTypePassword oidc CredentialsTypeOIDC totp CredentialsTypeTOTP lookup_secret CredentialsTypeLookup webauthn CredentialsTypeWebAuthn code CredentialsTypeCodeAuth passkey CredentialsTypePasskey profile CredentialsTypeProfile saml CredentialsTypeSAML deviceauthn CredentialsTypeDeviceAuthn identifier_first CredentialsTypeIdentifierFirst link_recovery CredentialsTypeRecoveryLink  CredentialsTypeRecoveryLink is a special credential type linked to the link strategy (recovery flow).  It is not used within the credentials object itself. code_recovery CredentialsTypeRecoveryCode
 opts = {
   identifier: 'identifier_example' # String | Identifier is the identifier of the OIDC/SAML credential to delete. Find the identifier by calling the `GET /admin/identities/{id}?include_credential={oidc,saml}` endpoint.
 }
@@ -436,7 +507,7 @@ end
 | Name | Type | Description | Notes |
 | ---- | ---- | ----------- | ----- |
 | **id** | **String** | ID is the identity&#39;s ID. |  |
-| **type** | **String** | Type is the type of credentials to delete. password CredentialsTypePassword oidc CredentialsTypeOIDC totp CredentialsTypeTOTP lookup_secret CredentialsTypeLookup webauthn CredentialsTypeWebAuthn code CredentialsTypeCodeAuth passkey CredentialsTypePasskey profile CredentialsTypeProfile saml CredentialsTypeSAML deviceauthn CredentialsTypeDeviceAuthn link_recovery CredentialsTypeRecoveryLink  CredentialsTypeRecoveryLink is a special credential type linked to the link strategy (recovery flow).  It is not used within the credentials object itself. code_recovery CredentialsTypeRecoveryCode |  |
+| **type** | **String** | Type is the type of credentials to delete. password CredentialsTypePassword oidc CredentialsTypeOIDC totp CredentialsTypeTOTP lookup_secret CredentialsTypeLookup webauthn CredentialsTypeWebAuthn code CredentialsTypeCodeAuth passkey CredentialsTypePasskey profile CredentialsTypeProfile saml CredentialsTypeSAML deviceauthn CredentialsTypeDeviceAuthn identifier_first CredentialsTypeIdentifierFirst link_recovery CredentialsTypeRecoveryLink  CredentialsTypeRecoveryLink is a special credential type linked to the link strategy (recovery flow).  It is not used within the credentials object itself. code_recovery CredentialsTypeRecoveryCode |  |
 | **identifier** | **String** | Identifier is the identifier of the OIDC/SAML credential to delete. Find the identifier by calling the &#x60;GET /admin/identities/{id}?include_credential&#x3D;{oidc,saml}&#x60; endpoint. | [optional] |
 
 ### Return type
@@ -1260,6 +1331,75 @@ end
 - **Accept**: application/json
 
 
+## manage_sessions
+
+> <ManageSessionsResponse> manage_sessions(manage_sessions_body)
+
+Manage sessions in bulk
+
+Disable or delete sessions for a list of identities or a list of sessions in a single call. The `action` field selects the operation:  `disable` — deactivate matching sessions (sets `active = false`, preserves audit data). `delete` — permanently delete matching sessions.  Exactly one of `identities` or `sessions` must be provided. To scope the operation to every session in the network, pass `identities: [\"*\"]`; the wildcard is not accepted in the `sessions` field. Up to 500 explicit IDs are accepted per call.  All requests return `200 OK` with `{processed, more}`. `processed` reports how many rows the call affected; for `disable` it counts only sessions that were active before the call. `more` is `true` only when a wildcard request reached the per-call batch limit and additional rows may remain; callers drain the network by re-issuing the same request while `more` is `true`. Explicit-IDs requests always return `more: false`.
+
+### Examples
+
+```ruby
+require 'time'
+require 'ory-client'
+# setup authorization
+OryClient.configure do |config|
+  # Configure Bearer authorization: oryAccessToken
+  config.access_token = 'YOUR_BEARER_TOKEN'
+end
+
+api_instance = OryClient::IdentityApi.new
+manage_sessions_body = OryClient::ManageSessionsBody.new({action: 'disable'}) # ManageSessionsBody | 
+
+begin
+  # Manage sessions in bulk
+  result = api_instance.manage_sessions(manage_sessions_body)
+  p result
+rescue OryClient::ApiError => e
+  puts "Error when calling IdentityApi->manage_sessions: #{e}"
+end
+```
+
+#### Using the manage_sessions_with_http_info variant
+
+This returns an Array which contains the response data, status code and headers.
+
+> <Array(<ManageSessionsResponse>, Integer, Hash)> manage_sessions_with_http_info(manage_sessions_body)
+
+```ruby
+begin
+  # Manage sessions in bulk
+  data, status_code, headers = api_instance.manage_sessions_with_http_info(manage_sessions_body)
+  p status_code # => 2xx
+  p headers # => { ... }
+  p data # => <ManageSessionsResponse>
+rescue OryClient::ApiError => e
+  puts "Error when calling IdentityApi->manage_sessions_with_http_info: #{e}"
+end
+```
+
+### Parameters
+
+| Name | Type | Description | Notes |
+| ---- | ---- | ----------- | ----- |
+| **manage_sessions_body** | [**ManageSessionsBody**](ManageSessionsBody.md) |  |  |
+
+### Return type
+
+[**ManageSessionsResponse**](ManageSessionsResponse.md)
+
+### Authorization
+
+[oryAccessToken](../README.md#oryAccessToken)
+
+### HTTP request headers
+
+- **Content-Type**: application/json
+- **Accept**: application/json
+
+
 ## patch_identity
 
 > <Identity> patch_identity(id, opts)

data/docs/IdentityCredentials.md

@@ -7,7 +7,7 @@
 | **config** | **Object** |  | [optional] |
 | **created_at** | **Time** | CreatedAt is a helper struct field for gobuffalo.pop. | [optional] |
 | **identifiers** | **Array<String>** | Identifiers represent a list of unique identifiers this credential type matches. | [optional] |
-| **type** | **String** | Type discriminates between different types of credentials. password CredentialsTypePassword oidc CredentialsTypeOIDC totp CredentialsTypeTOTP lookup_secret CredentialsTypeLookup webauthn CredentialsTypeWebAuthn code CredentialsTypeCodeAuth passkey CredentialsTypePasskey profile CredentialsTypeProfile saml CredentialsTypeSAML deviceauthn CredentialsTypeDeviceAuthn link_recovery CredentialsTypeRecoveryLink  CredentialsTypeRecoveryLink is a special credential type linked to the link strategy (recovery flow).  It is not used within the credentials object itself. code_recovery CredentialsTypeRecoveryCode | [optional] |
+| **type** | **String** | Type discriminates between different types of credentials. password CredentialsTypePassword oidc CredentialsTypeOIDC totp CredentialsTypeTOTP lookup_secret CredentialsTypeLookup webauthn CredentialsTypeWebAuthn code CredentialsTypeCodeAuth passkey CredentialsTypePasskey profile CredentialsTypeProfile saml CredentialsTypeSAML deviceauthn CredentialsTypeDeviceAuthn identifier_first CredentialsTypeIdentifierFirst link_recovery CredentialsTypeRecoveryLink  CredentialsTypeRecoveryLink is a special credential type linked to the link strategy (recovery flow).  It is not used within the credentials object itself. code_recovery CredentialsTypeRecoveryCode | [optional] |
 | **updated_at** | **Time** | UpdatedAt is a helper struct field for gobuffalo.pop. | [optional] |
 | **version** | **Integer** | Version refers to the version of the credential. Useful when changing the config schema. | [optional] |
 

data/docs/LoginFlow.md

@@ -4,7 +4,7 @@
 
 | Name | Type | Description | Notes |
 | ---- | ---- | ----------- | ----- |
-| **active** | **String** | The active login method  If set contains the login method used. If the flow is new, it is unset. password CredentialsTypePassword oidc CredentialsTypeOIDC totp CredentialsTypeTOTP lookup_secret CredentialsTypeLookup webauthn CredentialsTypeWebAuthn code CredentialsTypeCodeAuth passkey CredentialsTypePasskey profile CredentialsTypeProfile saml CredentialsTypeSAML deviceauthn CredentialsTypeDeviceAuthn link_recovery CredentialsTypeRecoveryLink  CredentialsTypeRecoveryLink is a special credential type linked to the link strategy (recovery flow).  It is not used within the credentials object itself. code_recovery CredentialsTypeRecoveryCode | [optional] |
+| **active** | **String** | The active login method  If set contains the login method used. If the flow is new, it is unset. password CredentialsTypePassword oidc CredentialsTypeOIDC totp CredentialsTypeTOTP lookup_secret CredentialsTypeLookup webauthn CredentialsTypeWebAuthn code CredentialsTypeCodeAuth passkey CredentialsTypePasskey profile CredentialsTypeProfile saml CredentialsTypeSAML deviceauthn CredentialsTypeDeviceAuthn identifier_first CredentialsTypeIdentifierFirst link_recovery CredentialsTypeRecoveryLink  CredentialsTypeRecoveryLink is a special credential type linked to the link strategy (recovery flow).  It is not used within the credentials object itself. code_recovery CredentialsTypeRecoveryCode | [optional] |
 | **created_at** | **Time** | CreatedAt is a helper struct field for gobuffalo.pop. | [optional] |
 | **expires_at** | **Time** | ExpiresAt is the time (UTC) when the flow expires. If the user still wishes to log in, a new flow has to be initiated. |  |
 | **id** | **String** | ID represents the flow's unique ID. When performing the login flow, this represents the id in the login UI's query parameter: http://<selfservice.flows.login.ui_url>/?flow=<flow_id> |  |
@@ -19,6 +19,7 @@
 | **return_to** | **String** | ReturnTo contains the requested return_to URL. | [optional] |
 | **session_token_exchange_code** | **String** | SessionTokenExchangeCode holds the secret code that the client can use to retrieve a session token after the login flow has been completed. This is only set if the client has requested a session token exchange code, and if the flow is of type \"api\", and only on creating the login flow. | [optional] |
 | **state** | **Object** | State represents the state of this request:  choose_method: ask the user to choose a method to sign in with sent_email: the email has been sent to the user passed_challenge: the request was successful and the login challenge was passed. |  |
+| **test_context** | [**LoginFlowTestContext**](LoginFlowTestContext.md) |  | [optional] |
 | **transient_payload** | **Object** | TransientPayload is used to pass data from the login to hooks and email templates | [optional] |
 | **type** | **String** | The flow type can either be `api` or `browser`. |  |
 | **ui** | [**UiContainer**](UiContainer.md) |  |  |
@@ -45,6 +46,7 @@ instance = OryClient::LoginFlow.new(
   return_to: null,
   session_token_exchange_code: null,
   state: null,
+  test_context: null,
   transient_payload: null,
   type: null,
   ui: null,