@atcute/oauth-types 0.1.0

package/dist/schemas/jwks.d.ts

@@ -0,0 +1,242 @@
+import * as v from '@badrap/valita';
+/** JWKS (JSON Web Key Set) */
+export declare const jwksSchema: v.ObjectType<{
+    keys: v.Type<({
+        kid?: string | undefined;
+        use?: "enc" | "sig" | undefined;
+        key_ops?: ("decrypt" | "deriveBits" | "deriveKey" | "encrypt" | "sign" | "unwrapKey" | "verify" | "wrapKey")[] | undefined;
+        x5c?: string[] | undefined;
+        x5t?: string | undefined;
+        'x5t#S256'?: string | undefined;
+        x5u?: string | undefined;
+        ext?: boolean | undefined;
+        iat?: number | undefined;
+        exp?: number | undefined;
+        nbf?: number | undefined;
+        revoked?: {
+            revoked_at: number;
+            reason?: string | undefined;
+        } | undefined;
+        kty: "RSA";
+        alg?: "PS256" | "PS384" | "PS512" | "RS256" | "RS384" | "RS512" | undefined;
+        n: string;
+        e: string;
+        d?: string | undefined;
+        p?: string | undefined;
+        q?: string | undefined;
+        dp?: string | undefined;
+        dq?: string | undefined;
+        qi?: string | undefined;
+        oth?: {
+            r?: string | undefined;
+            d?: string | undefined;
+            t?: string | undefined;
+        }[] | undefined;
+    } | {
+        kid?: string | undefined;
+        use?: "enc" | "sig" | undefined;
+        key_ops?: ("decrypt" | "deriveBits" | "deriveKey" | "encrypt" | "sign" | "unwrapKey" | "verify" | "wrapKey")[] | undefined;
+        x5c?: string[] | undefined;
+        x5t?: string | undefined;
+        'x5t#S256'?: string | undefined;
+        x5u?: string | undefined;
+        ext?: boolean | undefined;
+        iat?: number | undefined;
+        exp?: number | undefined;
+        nbf?: number | undefined;
+        revoked?: {
+            revoked_at: number;
+            reason?: string | undefined;
+        } | undefined;
+        kty: "EC";
+        alg?: "ES256" | "ES384" | "ES512" | undefined;
+        crv: "P-256" | "P-384" | "P-521";
+        x: string;
+        y: string;
+        d?: string | undefined;
+    } | {
+        kid?: string | undefined;
+        use?: "enc" | "sig" | undefined;
+        key_ops?: ("decrypt" | "deriveBits" | "deriveKey" | "encrypt" | "sign" | "unwrapKey" | "verify" | "wrapKey")[] | undefined;
+        x5c?: string[] | undefined;
+        x5t?: string | undefined;
+        'x5t#S256'?: string | undefined;
+        x5u?: string | undefined;
+        ext?: boolean | undefined;
+        iat?: number | undefined;
+        exp?: number | undefined;
+        nbf?: number | undefined;
+        revoked?: {
+            revoked_at: number;
+            reason?: string | undefined;
+        } | undefined;
+        kty: "EC";
+        alg?: "ES256K" | undefined;
+        crv: "secp256k1";
+        x: string;
+        y: string;
+        d?: string | undefined;
+    } | {
+        kid?: string | undefined;
+        use?: "enc" | "sig" | undefined;
+        key_ops?: ("decrypt" | "deriveBits" | "deriveKey" | "encrypt" | "sign" | "unwrapKey" | "verify" | "wrapKey")[] | undefined;
+        x5c?: string[] | undefined;
+        x5t?: string | undefined;
+        'x5t#S256'?: string | undefined;
+        x5u?: string | undefined;
+        ext?: boolean | undefined;
+        iat?: number | undefined;
+        exp?: number | undefined;
+        nbf?: number | undefined;
+        revoked?: {
+            revoked_at: number;
+            reason?: string | undefined;
+        } | undefined;
+        kty: "OKP";
+        alg?: "EdDSA" | undefined;
+        crv: "Ed25519" | "Ed448";
+        x: string;
+        d?: string | undefined;
+    } | {
+        kid?: string | undefined;
+        use?: "enc" | "sig" | undefined;
+        key_ops?: ("decrypt" | "deriveBits" | "deriveKey" | "encrypt" | "sign" | "unwrapKey" | "verify" | "wrapKey")[] | undefined;
+        x5c?: string[] | undefined;
+        x5t?: string | undefined;
+        'x5t#S256'?: string | undefined;
+        x5u?: string | undefined;
+        ext?: boolean | undefined;
+        iat?: number | undefined;
+        exp?: number | undefined;
+        nbf?: number | undefined;
+        revoked?: {
+            revoked_at: number;
+            reason?: string | undefined;
+        } | undefined;
+        kty: "oct";
+        alg?: "HS256" | "HS384" | "HS512" | undefined;
+        k: string;
+    })[]>;
+}, undefined>;
+/** public JWKS (JSON Web Key Set with only public keys) */
+export declare const jwksPubSchema: v.ObjectType<{
+    keys: v.Type<({
+        kid?: string | undefined;
+        use?: "enc" | "sig" | undefined;
+        key_ops?: ("decrypt" | "deriveBits" | "deriveKey" | "encrypt" | "sign" | "unwrapKey" | "verify" | "wrapKey")[] | undefined;
+        x5c?: string[] | undefined;
+        x5t?: string | undefined;
+        'x5t#S256'?: string | undefined;
+        x5u?: string | undefined;
+        ext?: boolean | undefined;
+        iat?: number | undefined;
+        exp?: number | undefined;
+        nbf?: number | undefined;
+        revoked?: {
+            revoked_at: number;
+            reason?: string | undefined;
+        } | undefined;
+        kty: "RSA";
+        alg?: "PS256" | "PS384" | "PS512" | "RS256" | "RS384" | "RS512" | undefined;
+        n: string;
+        e: string;
+        d?: string | undefined;
+        p?: string | undefined;
+        q?: string | undefined;
+        dp?: string | undefined;
+        dq?: string | undefined;
+        qi?: string | undefined;
+        oth?: {
+            r?: string | undefined;
+            d?: string | undefined;
+            t?: string | undefined;
+        }[] | undefined;
+    } | {
+        kid?: string | undefined;
+        use?: "enc" | "sig" | undefined;
+        key_ops?: ("decrypt" | "deriveBits" | "deriveKey" | "encrypt" | "sign" | "unwrapKey" | "verify" | "wrapKey")[] | undefined;
+        x5c?: string[] | undefined;
+        x5t?: string | undefined;
+        'x5t#S256'?: string | undefined;
+        x5u?: string | undefined;
+        ext?: boolean | undefined;
+        iat?: number | undefined;
+        exp?: number | undefined;
+        nbf?: number | undefined;
+        revoked?: {
+            revoked_at: number;
+            reason?: string | undefined;
+        } | undefined;
+        kty: "EC";
+        alg?: "ES256" | "ES384" | "ES512" | undefined;
+        crv: "P-256" | "P-384" | "P-521";
+        x: string;
+        y: string;
+        d?: string | undefined;
+    } | {
+        kid?: string | undefined;
+        use?: "enc" | "sig" | undefined;
+        key_ops?: ("decrypt" | "deriveBits" | "deriveKey" | "encrypt" | "sign" | "unwrapKey" | "verify" | "wrapKey")[] | undefined;
+        x5c?: string[] | undefined;
+        x5t?: string | undefined;
+        'x5t#S256'?: string | undefined;
+        x5u?: string | undefined;
+        ext?: boolean | undefined;
+        iat?: number | undefined;
+        exp?: number | undefined;
+        nbf?: number | undefined;
+        revoked?: {
+            revoked_at: number;
+            reason?: string | undefined;
+        } | undefined;
+        kty: "EC";
+        alg?: "ES256K" | undefined;
+        crv: "secp256k1";
+        x: string;
+        y: string;
+        d?: string | undefined;
+    } | {
+        kid?: string | undefined;
+        use?: "enc" | "sig" | undefined;
+        key_ops?: ("decrypt" | "deriveBits" | "deriveKey" | "encrypt" | "sign" | "unwrapKey" | "verify" | "wrapKey")[] | undefined;
+        x5c?: string[] | undefined;
+        x5t?: string | undefined;
+        'x5t#S256'?: string | undefined;
+        x5u?: string | undefined;
+        ext?: boolean | undefined;
+        iat?: number | undefined;
+        exp?: number | undefined;
+        nbf?: number | undefined;
+        revoked?: {
+            revoked_at: number;
+            reason?: string | undefined;
+        } | undefined;
+        kty: "OKP";
+        alg?: "EdDSA" | undefined;
+        crv: "Ed25519" | "Ed448";
+        x: string;
+        d?: string | undefined;
+    } | {
+        kid?: string | undefined;
+        use?: "enc" | "sig" | undefined;
+        key_ops?: ("decrypt" | "deriveBits" | "deriveKey" | "encrypt" | "sign" | "unwrapKey" | "verify" | "wrapKey")[] | undefined;
+        x5c?: string[] | undefined;
+        x5t?: string | undefined;
+        'x5t#S256'?: string | undefined;
+        x5u?: string | undefined;
+        ext?: boolean | undefined;
+        iat?: number | undefined;
+        exp?: number | undefined;
+        nbf?: number | undefined;
+        revoked?: {
+            revoked_at: number;
+            reason?: string | undefined;
+        } | undefined;
+        kty: "oct";
+        alg?: "HS256" | "HS384" | "HS512" | undefined;
+        k: string;
+    })[]>;
+}, undefined>;
+export type Jwks = v.Infer<typeof jwksSchema>;
+export type JwksPub = v.Infer<typeof jwksPubSchema>;
+//# sourceMappingURL=jwks.d.ts.map

package/dist/schemas/jwks.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"jwks.d.ts","sourceRoot":"","sources":["../../lib/schemas/jwks.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,CAAC,MAAM,gBAAgB,CAAC;AAIpC,8BAA8B;AAC9B,eAAO,MAAM,UAAU;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;aAkBrB,CAAC;AAEH,2DAA2D;AAC3D,eAAO,MAAM,aAAa;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;aAexB,CAAC;AAEH,MAAM,MAAM,IAAI,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,UAAU,CAAC,CAAC;AAC9C,MAAM,MAAM,OAAO,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,aAAa,CAAC,CAAC"}

package/dist/schemas/jwks.js

@@ -0,0 +1,34 @@
+import * as v from '@badrap/valita';
+import { jwkPubSchema, jwkSchema } from './jwk.js';
+/** JWKS (JSON Web Key Set) */
+export const jwksSchema = v.object({
+    keys: v.array(v.unknown()).chain((input, options) => {
+        // implementations SHOULD ignore JWKs within a JWK Set that use "kty"
+        // values that are not understood, are missing required members, or
+        // have values out of the supported ranges.
+        const keys = [];
+        for (const item of input) {
+            const result = jwkSchema.try(item, options);
+            if (!result.ok) {
+                continue;
+            }
+            keys.push(result.value);
+        }
+        return v.ok(keys);
+    }),
+});
+/** public JWKS (JSON Web Key Set with only public keys) */
+export const jwksPubSchema = v.object({
+    keys: v.array(v.unknown()).chain((input, options) => {
+        const keys = [];
+        for (const item of input) {
+            const result = jwkPubSchema.try(item, options);
+            if (!result.ok) {
+                continue;
+            }
+            keys.push(result.value);
+        }
+        return v.ok(keys);
+    }),
+});
+//# sourceMappingURL=jwks.js.map

package/dist/schemas/jwks.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"jwks.js","sourceRoot":"","sources":["../../lib/schemas/jwks.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,CAAC,MAAM,gBAAgB,CAAC;AAEpC,OAAO,EAAE,YAAY,EAAE,SAAS,EAAyB,MAAM,UAAU,CAAC;AAE1E,8BAA8B;AAC9B,MAAM,CAAC,MAAM,UAAU,GAAG,CAAC,CAAC,MAAM,CAAC;IAClC,IAAI,EAAE,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,OAAO,EAAE,CAAC,CAAC,KAAK,CAAC,CAAC,KAAK,EAAE,OAAO,EAAE,EAAE,CAAC;QACpD,qEAAqE;QACrE,mEAAmE;QACnE,2CAA2C;QAC3C,MAAM,IAAI,GAAU,EAAE,CAAC;QAEvB,KAAK,MAAM,IAAI,IAAI,KAAK,EAAE,CAAC;YAC1B,MAAM,MAAM,GAAG,SAAS,CAAC,GAAG,CAAC,IAAI,EAAE,OAAO,CAAC,CAAC;YAC5C,IAAI,CAAC,MAAM,CAAC,EAAE,EAAE,CAAC;gBAChB,SAAS;YACV,CAAC;YAED,IAAI,CAAC,IAAI,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC;QACzB,CAAC;QAED,OAAO,CAAC,CAAC,EAAE,CAAC,IAAI,CAAC,CAAC;IAAA,CAClB,CAAC;CACF,CAAC,CAAC;AAEH,2DAA2D;AAC3D,MAAM,CAAC,MAAM,aAAa,GAAG,CAAC,CAAC,MAAM,CAAC;IACrC,IAAI,EAAE,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,OAAO,EAAE,CAAC,CAAC,KAAK,CAAC,CAAC,KAAK,EAAE,OAAO,EAAE,EAAE,CAAC;QACpD,MAAM,IAAI,GAAa,EAAE,CAAC;QAE1B,KAAK,MAAM,IAAI,IAAI,KAAK,EAAE,CAAC;YAC1B,MAAM,MAAM,GAAG,YAAY,CAAC,GAAG,CAAC,IAAI,EAAE,OAAO,CAAC,CAAC;YAC/C,IAAI,CAAC,MAAM,CAAC,EAAE,EAAE,CAAC;gBAChB,SAAS;YACV,CAAC;YAED,IAAI,CAAC,IAAI,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC;QACzB,CAAC;QAED,OAAO,CAAC,CAAC,EAAE,CAAC,IAAI,CAAC,CAAC;IAAA,CAClB,CAAC;CACF,CAAC,CAAC"}

package/dist/schemas/oauth-authorization-details.d.ts

@@ -0,0 +1,64 @@
+import * as v from '@badrap/valita';
+/**
+ * @see {@link https://datatracker.ietf.org/doc/html/rfc9396#section-2 | RFC 9396, Section 2}
+ */
+export declare const oauthAuthorizationDetailSchema: v.ObjectType<{
+    type: v.Type<string>;
+    /**
+     * an array of strings representing the location of the resource or RS. these
+     * strings are typically URIs identifying the location of the RS.
+     */
+    locations: v.Optional<string[]>;
+    /**
+     * an array of strings representing the kinds of actions to be taken at the
+     * resource.
+     */
+    actions: v.Optional<string[]>;
+    /**
+     * an array of strings representing the kinds of data being requested from the
+     * resource.
+     */
+    datatypes: v.Optional<string[]>;
+    /**
+     * a string identifier indicating a specific resource available at the API.
+     */
+    identifier: v.Optional<string>;
+    /**
+     * an array of strings representing the types or levels of privilege being
+     * requested at the resource.
+     */
+    privileges: v.Optional<string[]>;
+}, undefined>;
+export type OAuthAuthorizationDetail = v.Infer<typeof oauthAuthorizationDetailSchema>;
+/**
+ * @see {@link https://datatracker.ietf.org/doc/html/rfc9396#section-2 | RFC 9396, Section 2}
+ */
+export declare const oauthAuthorizationDetailsSchema: v.ArrayType<v.ObjectType<{
+    type: v.Type<string>;
+    /**
+     * an array of strings representing the location of the resource or RS. these
+     * strings are typically URIs identifying the location of the RS.
+     */
+    locations: v.Optional<string[]>;
+    /**
+     * an array of strings representing the kinds of actions to be taken at the
+     * resource.
+     */
+    actions: v.Optional<string[]>;
+    /**
+     * an array of strings representing the kinds of data being requested from the
+     * resource.
+     */
+    datatypes: v.Optional<string[]>;
+    /**
+     * a string identifier indicating a specific resource available at the API.
+     */
+    identifier: v.Optional<string>;
+    /**
+     * an array of strings representing the types or levels of privilege being
+     * requested at the resource.
+     */
+    privileges: v.Optional<string[]>;
+}, undefined>>;
+export type OAuthAuthorizationDetails = v.Infer<typeof oauthAuthorizationDetailsSchema>;
+//# sourceMappingURL=oauth-authorization-details.d.ts.map

package/dist/schemas/oauth-authorization-details.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"oauth-authorization-details.d.ts","sourceRoot":"","sources":["../../lib/schemas/oauth-authorization-details.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,CAAC,MAAM,gBAAgB,CAAC;AAIpC;;GAEG;AACH,eAAO,MAAM,8BAA8B;;IAE1C;;;OAGG;;IAEH;;;OAGG;;IAEH;;;OAGG;;IAEH;;OAEG;;IAEH;;;OAGG;;aAEF,CAAC;AAEH,MAAM,MAAM,wBAAwB,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,8BAA8B,CAAC,CAAC;AAEtF;;GAEG;AACH,eAAO,MAAM,+BAA+B;;IA/B3C;;;OAGG;;IAEH;;;OAGG;;IAEH;;;OAGG;;IAEH;;OAEG;;IAEH;;;OAGG;;cASkF,CAAC;AAEvF,MAAM,MAAM,yBAAyB,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,+BAA+B,CAAC,CAAC"}

package/dist/schemas/oauth-authorization-details.js

@@ -0,0 +1,37 @@
+import * as v from '@badrap/valita';
+import { urlSchema } from './uri.js';
+/**
+ * @see {@link https://datatracker.ietf.org/doc/html/rfc9396#section-2 | RFC 9396, Section 2}
+ */
+export const oauthAuthorizationDetailSchema = v.object({
+    type: v.string(),
+    /**
+     * an array of strings representing the location of the resource or RS. these
+     * strings are typically URIs identifying the location of the RS.
+     */
+    locations: v.array(urlSchema).optional(),
+    /**
+     * an array of strings representing the kinds of actions to be taken at the
+     * resource.
+     */
+    actions: v.array(v.string()).optional(),
+    /**
+     * an array of strings representing the kinds of data being requested from the
+     * resource.
+     */
+    datatypes: v.array(v.string()).optional(),
+    /**
+     * a string identifier indicating a specific resource available at the API.
+     */
+    identifier: v.string().optional(),
+    /**
+     * an array of strings representing the types or levels of privilege being
+     * requested at the resource.
+     */
+    privileges: v.array(v.string()).optional(),
+});
+/**
+ * @see {@link https://datatracker.ietf.org/doc/html/rfc9396#section-2 | RFC 9396, Section 2}
+ */
+export const oauthAuthorizationDetailsSchema = v.array(oauthAuthorizationDetailSchema);
+//# sourceMappingURL=oauth-authorization-details.js.map

package/dist/schemas/oauth-authorization-details.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"oauth-authorization-details.js","sourceRoot":"","sources":["../../lib/schemas/oauth-authorization-details.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,CAAC,MAAM,gBAAgB,CAAC;AAEpC,OAAO,EAAE,SAAS,EAAE,MAAM,UAAU,CAAC;AAErC;;GAEG;AACH,MAAM,CAAC,MAAM,8BAA8B,GAAG,CAAC,CAAC,MAAM,CAAC;IACtD,IAAI,EAAE,CAAC,CAAC,MAAM,EAAE;IAChB;;;OAGG;IACH,SAAS,EAAE,CAAC,CAAC,KAAK,CAAC,SAAS,CAAC,CAAC,QAAQ,EAAE;IACxC;;;OAGG;IACH,OAAO,EAAE,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,MAAM,EAAE,CAAC,CAAC,QAAQ,EAAE;IACvC;;;OAGG;IACH,SAAS,EAAE,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,MAAM,EAAE,CAAC,CAAC,QAAQ,EAAE;IACzC;;OAEG;IACH,UAAU,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;IACjC;;;OAGG;IACH,UAAU,EAAE,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,MAAM,EAAE,CAAC,CAAC,QAAQ,EAAE;CAC1C,CAAC,CAAC;AAIH;;GAEG;AACH,MAAM,CAAC,MAAM,+BAA+B,GAAG,CAAC,CAAC,KAAK,CAAC,8BAA8B,CAAC,CAAC"}

package/dist/schemas/oauth-authorization-server-metadata.d.ts

@@ -0,0 +1,96 @@
+import * as v from '@badrap/valita';
+/**
+ * @see {@link https://datatracker.ietf.org/doc/html/rfc8414}
+ */
+export declare const oauthAuthorizationServerMetadataSchema: v.ObjectType<{
+    issuer: v.Type<string>;
+    claims_supported: v.Optional<string[]>;
+    claims_locales_supported: v.Optional<string[]>;
+    claims_parameter_supported: v.Optional<boolean>;
+    request_parameter_supported: v.Optional<boolean>;
+    request_uri_parameter_supported: v.Optional<boolean>;
+    require_request_uri_registration: v.Optional<boolean>;
+    scopes_supported: v.Optional<string[]>;
+    subject_types_supported: v.Optional<string[]>;
+    response_types_supported: v.Optional<string[]>;
+    response_modes_supported: v.Optional<string[]>;
+    grant_types_supported: v.Optional<string[]>;
+    code_challenge_methods_supported: v.Optional<("S256" | "plain")[]>;
+    ui_locales_supported: v.Optional<string[]>;
+    id_token_signing_alg_values_supported: v.Optional<string[]>;
+    display_values_supported: v.Optional<string[]>;
+    prompt_values_supported: v.Optional<("consent" | "create" | "login" | "none" | "select_account")[]>;
+    request_object_signing_alg_values_supported: v.Optional<string[]>;
+    authorization_response_iss_parameter_supported: v.Optional<boolean>;
+    authorization_details_types_supported: v.Optional<string[]>;
+    request_object_encryption_alg_values_supported: v.Optional<string[]>;
+    request_object_encryption_enc_values_supported: v.Optional<string[]>;
+    jwks_uri: v.Optional<string>;
+    authorization_endpoint: v.Type<string>;
+    token_endpoint: v.Type<string>;
+    token_endpoint_auth_methods_supported: v.Optional<string[]>;
+    token_endpoint_auth_signing_alg_values_supported: v.Optional<string[]>;
+    revocation_endpoint: v.Optional<string>;
+    revocation_endpoint_auth_methods_supported: v.Optional<string[]>;
+    revocation_endpoint_auth_signing_alg_values_supported: v.Optional<string[]>;
+    introspection_endpoint: v.Optional<string>;
+    introspection_endpoint_auth_methods_supported: v.Optional<string[]>;
+    introspection_endpoint_auth_signing_alg_values_supported: v.Optional<string[]>;
+    pushed_authorization_request_endpoint: v.Optional<string>;
+    pushed_authorization_request_endpoint_auth_methods_supported: v.Optional<string[]>;
+    pushed_authorization_request_endpoint_auth_signing_alg_values_supported: v.Optional<string[]>;
+    require_pushed_authorization_requests: v.Optional<boolean>;
+    userinfo_endpoint: v.Optional<string>;
+    end_session_endpoint: v.Optional<string>;
+    registration_endpoint: v.Optional<string>;
+    dpop_signing_alg_values_supported: v.Optional<string[]>;
+    protected_resources: v.Optional<string[]>;
+    client_id_metadata_document_supported: v.Optional<boolean>;
+}, undefined>;
+export type OAuthAuthorizationServerMetadata = v.Infer<typeof oauthAuthorizationServerMetadataSchema>;
+export declare const oauthAuthorizationServerMetadataValidator: v.Type<{
+    issuer: string;
+    claims_supported?: string[] | undefined;
+    claims_locales_supported?: string[] | undefined;
+    claims_parameter_supported?: boolean | undefined;
+    request_parameter_supported?: boolean | undefined;
+    request_uri_parameter_supported?: boolean | undefined;
+    require_request_uri_registration?: boolean | undefined;
+    scopes_supported?: string[] | undefined;
+    subject_types_supported?: string[] | undefined;
+    response_types_supported?: string[] | undefined;
+    response_modes_supported?: string[] | undefined;
+    grant_types_supported?: string[] | undefined;
+    code_challenge_methods_supported?: ("S256" | "plain")[] | undefined;
+    ui_locales_supported?: string[] | undefined;
+    id_token_signing_alg_values_supported?: string[] | undefined;
+    display_values_supported?: string[] | undefined;
+    prompt_values_supported?: ("consent" | "create" | "login" | "none" | "select_account")[] | undefined;
+    request_object_signing_alg_values_supported?: string[] | undefined;
+    authorization_response_iss_parameter_supported?: boolean | undefined;
+    authorization_details_types_supported?: string[] | undefined;
+    request_object_encryption_alg_values_supported?: string[] | undefined;
+    request_object_encryption_enc_values_supported?: string[] | undefined;
+    jwks_uri?: string | undefined;
+    authorization_endpoint: string;
+    token_endpoint: string;
+    token_endpoint_auth_methods_supported?: string[] | undefined;
+    token_endpoint_auth_signing_alg_values_supported?: string[] | undefined;
+    revocation_endpoint?: string | undefined;
+    revocation_endpoint_auth_methods_supported?: string[] | undefined;
+    revocation_endpoint_auth_signing_alg_values_supported?: string[] | undefined;
+    introspection_endpoint?: string | undefined;
+    introspection_endpoint_auth_methods_supported?: string[] | undefined;
+    introspection_endpoint_auth_signing_alg_values_supported?: string[] | undefined;
+    pushed_authorization_request_endpoint?: string | undefined;
+    pushed_authorization_request_endpoint_auth_methods_supported?: string[] | undefined;
+    pushed_authorization_request_endpoint_auth_signing_alg_values_supported?: string[] | undefined;
+    require_pushed_authorization_requests?: boolean | undefined;
+    userinfo_endpoint?: string | undefined;
+    end_session_endpoint?: string | undefined;
+    registration_endpoint?: string | undefined;
+    dpop_signing_alg_values_supported?: string[] | undefined;
+    protected_resources?: string[] | undefined;
+    client_id_metadata_document_supported?: boolean | undefined;
+}>;
+//# sourceMappingURL=oauth-authorization-server-metadata.d.ts.map

package/dist/schemas/oauth-authorization-server-metadata.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"oauth-authorization-server-metadata.d.ts","sourceRoot":"","sources":["../../lib/schemas/oauth-authorization-server-metadata.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,CAAC,MAAM,gBAAgB,CAAC;AAOpC;;GAEG;AACH,eAAO,MAAM,sCAAsC;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;aA2DjD,CAAC;AAEH,MAAM,MAAM,gCAAgC,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,sCAAsC,CAAC,CAAC;AAEtG,eAAO,MAAM,yCAAyC;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;EA2BrD,CAAC"}

package/dist/schemas/oauth-authorization-server-metadata.js

@@ -0,0 +1,81 @@
+import * as v from '@badrap/valita';
+import { oauthCodeChallengeMethodSchema } from './oauth-code-challenge-method.js';
+import { oauthIssuerIdentifierSchema } from './oauth-issuer-identifier.js';
+import { oauthPromptSchema } from './oauth-prompt.js';
+import { webUriSchema } from './uri.js';
+/**
+ * @see {@link https://datatracker.ietf.org/doc/html/rfc8414}
+ */
+export const oauthAuthorizationServerMetadataSchema = v.object({
+    issuer: oauthIssuerIdentifierSchema,
+    claims_supported: v.array(v.string()).optional(),
+    claims_locales_supported: v.array(v.string()).optional(),
+    claims_parameter_supported: v.boolean().optional(),
+    request_parameter_supported: v.boolean().optional(),
+    request_uri_parameter_supported: v.boolean().optional(),
+    require_request_uri_registration: v.boolean().optional(),
+    scopes_supported: v.array(v.string()).optional(),
+    subject_types_supported: v.array(v.string()).optional(),
+    response_types_supported: v.array(v.string()).optional(),
+    response_modes_supported: v.array(v.string()).optional(),
+    grant_types_supported: v.array(v.string()).optional(),
+    code_challenge_methods_supported: v.array(oauthCodeChallengeMethodSchema).optional(),
+    ui_locales_supported: v.array(v.string()).optional(),
+    id_token_signing_alg_values_supported: v.array(v.string()).optional(),
+    display_values_supported: v.array(v.string()).optional(),
+    prompt_values_supported: v.array(oauthPromptSchema).optional(),
+    request_object_signing_alg_values_supported: v.array(v.string()).optional(),
+    authorization_response_iss_parameter_supported: v.boolean().optional(),
+    authorization_details_types_supported: v.array(v.string()).optional(),
+    request_object_encryption_alg_values_supported: v.array(v.string()).optional(),
+    request_object_encryption_enc_values_supported: v.array(v.string()).optional(),
+    jwks_uri: webUriSchema.optional(),
+    authorization_endpoint: webUriSchema,
+    token_endpoint: webUriSchema,
+    // https://www.rfc-editor.org/rfc/rfc8414.html#section-2
+    token_endpoint_auth_methods_supported: v.array(v.string()).optional(),
+    token_endpoint_auth_signing_alg_values_supported: v.array(v.string()).optional(),
+    revocation_endpoint: webUriSchema.optional(),
+    revocation_endpoint_auth_methods_supported: v.array(v.string()).optional(),
+    revocation_endpoint_auth_signing_alg_values_supported: v.array(v.string()).optional(),
+    introspection_endpoint: webUriSchema.optional(),
+    introspection_endpoint_auth_methods_supported: v.array(v.string()).optional(),
+    introspection_endpoint_auth_signing_alg_values_supported: v.array(v.string()).optional(),
+    pushed_authorization_request_endpoint: webUriSchema.optional(),
+    pushed_authorization_request_endpoint_auth_methods_supported: v.array(v.string()).optional(),
+    pushed_authorization_request_endpoint_auth_signing_alg_values_supported: v.array(v.string()).optional(),
+    require_pushed_authorization_requests: v.boolean().optional(),
+    userinfo_endpoint: webUriSchema.optional(),
+    end_session_endpoint: webUriSchema.optional(),
+    registration_endpoint: webUriSchema.optional(),
+    // https://datatracker.ietf.org/doc/html/rfc9449#section-5.1
+    dpop_signing_alg_values_supported: v.array(v.string()).optional(),
+    // https://www.rfc-editor.org/rfc/rfc9728.html#section-4
+    protected_resources: v.array(webUriSchema).optional(),
+    // https://www.ietf.org/archive/id/draft-ietf-oauth-client-id-metadata-document-00.html
+    client_id_metadata_document_supported: v.boolean().optional(),
+});
+export const oauthAuthorizationServerMetadataValidator = oauthAuthorizationServerMetadataSchema.chain((data) => {
+    if (data.require_pushed_authorization_requests && !data.pushed_authorization_request_endpoint) {
+        return v.err({
+            message: `"pushed_authorization_request_endpoint" required when "require_pushed_authorization_requests" is true`,
+            path: ['pushed_authorization_request_endpoint'],
+        });
+    }
+    if (data.response_types_supported && !data.response_types_supported.includes('code')) {
+        return v.err({
+            message: `response type "code" is required`,
+            path: ['response_types_supported'],
+        });
+    }
+    if (data.token_endpoint_auth_signing_alg_values_supported?.includes('none')) {
+        // https://openid.net/specs/openid-connect-discovery-1_0.html#rfc.section.3
+        // > The value `none` MUST NOT be used.
+        return v.err({
+            message: `client authentication method "none" is not allowed`,
+            path: ['token_endpoint_auth_signing_alg_values_supported'],
+        });
+    }
+    return v.ok(data);
+});
+//# sourceMappingURL=oauth-authorization-server-metadata.js.map

package/dist/schemas/oauth-authorization-server-metadata.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"oauth-authorization-server-metadata.js","sourceRoot":"","sources":["../../lib/schemas/oauth-authorization-server-metadata.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,CAAC,MAAM,gBAAgB,CAAC;AAEpC,OAAO,EAAE,8BAA8B,EAAE,MAAM,kCAAkC,CAAC;AAClF,OAAO,EAAE,2BAA2B,EAAE,MAAM,8BAA8B,CAAC;AAC3E,OAAO,EAAE,iBAAiB,EAAE,MAAM,mBAAmB,CAAC;AACtD,OAAO,EAAE,YAAY,EAAE,MAAM,UAAU,CAAC;AAExC;;GAEG;AACH,MAAM,CAAC,MAAM,sCAAsC,GAAG,CAAC,CAAC,MAAM,CAAC;IAC9D,MAAM,EAAE,2BAA2B;IAEnC,gBAAgB,EAAE,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,MAAM,EAAE,CAAC,CAAC,QAAQ,EAAE;IAChD,wBAAwB,EAAE,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,MAAM,EAAE,CAAC,CAAC,QAAQ,EAAE;IACxD,0BAA0B,EAAE,CAAC,CAAC,OAAO,EAAE,CAAC,QAAQ,EAAE;IAClD,2BAA2B,EAAE,CAAC,CAAC,OAAO,EAAE,CAAC,QAAQ,EAAE;IACnD,+BAA+B,EAAE,CAAC,CAAC,OAAO,EAAE,CAAC,QAAQ,EAAE;IACvD,gCAAgC,EAAE,CAAC,CAAC,OAAO,EAAE,CAAC,QAAQ,EAAE;IACxD,gBAAgB,EAAE,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,MAAM,EAAE,CAAC,CAAC,QAAQ,EAAE;IAChD,uBAAuB,EAAE,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,MAAM,EAAE,CAAC,CAAC,QAAQ,EAAE;IACvD,wBAAwB,EAAE,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,MAAM,EAAE,CAAC,CAAC,QAAQ,EAAE;IACxD,wBAAwB,EAAE,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,MAAM,EAAE,CAAC,CAAC,QAAQ,EAAE;IACxD,qBAAqB,EAAE,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,MAAM,EAAE,CAAC,CAAC,QAAQ,EAAE;IACrD,gCAAgC,EAAE,CAAC,CAAC,KAAK,CAAC,8BAA8B,CAAC,CAAC,QAAQ,EAAE;IACpF,oBAAoB,EAAE,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,MAAM,EAAE,CAAC,CAAC,QAAQ,EAAE;IACpD,qCAAqC,EAAE,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,MAAM,EAAE,CAAC,CAAC,QAAQ,EAAE;IACrE,wBAAwB,EAAE,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,MAAM,EAAE,CAAC,CAAC,QAAQ,EAAE;IACxD,uBAAuB,EAAE,CAAC,CAAC,KAAK,CAAC,iBAAiB,CAAC,CAAC,QAAQ,EAAE;IAC9D,2CAA2C,EAAE,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,MAAM,EAAE,CAAC,CAAC,QAAQ,EAAE;IAC3E,8CAA8C,EAAE,CAAC,CAAC,OAAO,EAAE,CAAC,QAAQ,EAAE;IACtE,qCAAqC,EAAE,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,MAAM,EAAE,CAAC,CAAC,QAAQ,EAAE;IACrE,8CAA8C,EAAE,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,MAAM,EAAE,CAAC,CAAC,QAAQ,EAAE;IAC9E,8CAA8C,EAAE,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,MAAM,EAAE,CAAC,CAAC,QAAQ,EAAE;IAE9E,QAAQ,EAAE,YAAY,CAAC,QAAQ,EAAE;IAEjC,sBAAsB,EAAE,YAAY;IAEpC,cAAc,EAAE,YAAY;IAC5B,wDAAwD;IACxD,qCAAqC,EAAE,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,MAAM,EAAE,CAAC,CAAC,QAAQ,EAAE;IACrE,gDAAgD,EAAE,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,MAAM,EAAE,CAAC,CAAC,QAAQ,EAAE;IAEhF,mBAAmB,EAAE,YAAY,CAAC,QAAQ,EAAE;IAC5C,0CAA0C,EAAE,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,MAAM,EAAE,CAAC,CAAC,QAAQ,EAAE;IAC1E,qDAAqD,EAAE,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,MAAM,EAAE,CAAC,CAAC,QAAQ,EAAE;IAErF,sBAAsB,EAAE,YAAY,CAAC,QAAQ,EAAE;IAC/C,6CAA6C,EAAE,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,MAAM,EAAE,CAAC,CAAC,QAAQ,EAAE;IAC7E,wDAAwD,EAAE,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,MAAM,EAAE,CAAC,CAAC,QAAQ,EAAE;IAExF,qCAAqC,EAAE,YAAY,CAAC,QAAQ,EAAE;IAC9D,4DAA4D,EAAE,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,MAAM,EAAE,CAAC,CAAC,QAAQ,EAAE;IAC5F,uEAAuE,EAAE,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,MAAM,EAAE,CAAC,CAAC,QAAQ,EAAE;IACvG,qCAAqC,EAAE,CAAC,CAAC,OAAO,EAAE,CAAC,QAAQ,EAAE;IAE7D,iBAAiB,EAAE,YAAY,CAAC,QAAQ,EAAE;IAC1C,oBAAoB,EAAE,YAAY,CAAC,QAAQ,EAAE;IAC7C,qBAAqB,EAAE,YAAY,CAAC,QAAQ,EAAE;IAE9C,4DAA4D;IAC5D,iCAAiC,EAAE,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,MAAM,EAAE,CAAC,CAAC,QAAQ,EAAE;IAEjE,wDAAwD;IACxD,mBAAmB,EAAE,CAAC,CAAC,KAAK,CAAC,YAAY,CAAC,CAAC,QAAQ,EAAE;IAErD,uFAAuF;IACvF,qCAAqC,EAAE,CAAC,CAAC,OAAO,EAAE,CAAC,QAAQ,EAAE;CAC7D,CAAC,CAAC;AAIH,MAAM,CAAC,MAAM,yCAAyC,GAAG,sCAAsC,CAAC,KAAK,CACpG,CAAC,IAAI,EAAE,EAAE,CAAC;IACT,IAAI,IAAI,CAAC,qCAAqC,IAAI,CAAC,IAAI,CAAC,qCAAqC,EAAE,CAAC;QAC/F,OAAO,CAAC,CAAC,GAAG,CAAC;YACZ,OAAO,EAAE,uGAAuG;YAChH,IAAI,EAAE,CAAC,uCAAuC,CAAC;SAC/C,CAAC,CAAC;IACJ,CAAC;IAED,IAAI,IAAI,CAAC,wBAAwB,IAAI,CAAC,IAAI,CAAC,wBAAwB,CAAC,QAAQ,CAAC,MAAM,CAAC,EAAE,CAAC;QACtF,OAAO,CAAC,CAAC,GAAG,CAAC;YACZ,OAAO,EAAE,kCAAkC;YAC3C,IAAI,EAAE,CAAC,0BAA0B,CAAC;SAClC,CAAC,CAAC;IACJ,CAAC;IAED,IAAI,IAAI,CAAC,gDAAgD,EAAE,QAAQ,CAAC,MAAM,CAAC,EAAE,CAAC;QAC7E,2EAA2E;QAC3E,uCAAuC;QACvC,OAAO,CAAC,CAAC,GAAG,CAAC;YACZ,OAAO,EAAE,oDAAoD;YAC7D,IAAI,EAAE,CAAC,kDAAkD,CAAC;SAC1D,CAAC,CAAC;IACJ,CAAC;IAED,OAAO,CAAC,CAAC,EAAE,CAAC,IAAI,CAAC,CAAC;AAAA,CAClB,CACD,CAAC"}

package/dist/schemas/oauth-client-id-discoverable.d.ts

@@ -0,0 +1,6 @@
+import * as v from '@badrap/valita';
+/**
+ * @see {@link https://www.ietf.org/archive/id/draft-ietf-oauth-client-id-metadata-document-00.html}
+ */
+export declare const oauthClientIdDiscoverableSchema: v.Type<string>;
+//# sourceMappingURL=oauth-client-id-discoverable.d.ts.map

package/dist/schemas/oauth-client-id-discoverable.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"oauth-client-id-discoverable.d.ts","sourceRoot":"","sources":["../../lib/schemas/oauth-client-id-discoverable.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,CAAC,MAAM,gBAAgB,CAAC;AAMpC;;GAEG;AACH,eAAO,MAAM,+BAA+B,gBA2C1C,CAAC"}

package/dist/schemas/oauth-client-id-discoverable.js

@@ -0,0 +1,43 @@
+import * as v from '@badrap/valita';
+import { oauthClientIdSchema } from './oauth-client-id.js';
+import { httpsUriSchema } from './uri.js';
+import { extractUrlPath, isHostnameIP } from './utils.js';
+/**
+ * @see {@link https://www.ietf.org/archive/id/draft-ietf-oauth-client-id-metadata-document-00.html}
+ */
+export const oauthClientIdDiscoverableSchema = v.string().chain((input, options) => {
+    // first validate as base client ID
+    const clientIdResult = oauthClientIdSchema.try(input, options);
+    if (!clientIdResult.ok) {
+        return clientIdResult;
+    }
+    // then validate as https URI
+    const httpsResult = httpsUriSchema.try(input, options);
+    if (!httpsResult.ok) {
+        return httpsResult;
+    }
+    const url = new URL(input);
+    if (url.username || url.password) {
+        return v.err(`client ID must not contain credentials`);
+    }
+    if (url.hash) {
+        return v.err(`client ID must not contain a fragment`);
+    }
+    if (url.pathname === '/') {
+        return v.err(`client ID must contain a path component (e.g. "/client-metadata.json")`);
+    }
+    if (url.pathname.endsWith('/')) {
+        return v.err(`client ID path must not end with a trailing slash`);
+    }
+    if (isHostnameIP(url.hostname)) {
+        return v.err(`client ID hostname must not be an IP address`);
+    }
+    // URL constructor normalizes the URL, so we extract the path manually to
+    // avoid normalization, then compare it to the normalized path to ensure
+    // that the URL does not contain path traversal or other unexpected characters
+    if (extractUrlPath(input) !== url.pathname) {
+        return v.err(`client ID must be in canonical form ("${url.href}", got "${input}")`);
+    }
+    return v.ok(input);
+});
+//# sourceMappingURL=oauth-client-id-discoverable.js.map

package/dist/schemas/oauth-client-id-discoverable.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"oauth-client-id-discoverable.js","sourceRoot":"","sources":["../../lib/schemas/oauth-client-id-discoverable.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,CAAC,MAAM,gBAAgB,CAAC;AAEpC,OAAO,EAAE,mBAAmB,EAAE,MAAM,sBAAsB,CAAC;AAC3D,OAAO,EAAE,cAAc,EAAE,MAAM,UAAU,CAAC;AAC1C,OAAO,EAAE,cAAc,EAAE,YAAY,EAAE,MAAM,YAAY,CAAC;AAE1D;;GAEG;AACH,MAAM,CAAC,MAAM,+BAA+B,GAAG,CAAC,CAAC,MAAM,EAAE,CAAC,KAAK,CAAC,CAAC,KAAK,EAAE,OAAO,EAAE,EAAE,CAAC;IACnF,mCAAmC;IACnC,MAAM,cAAc,GAAG,mBAAmB,CAAC,GAAG,CAAC,KAAK,EAAE,OAAO,CAAC,CAAC;IAC/D,IAAI,CAAC,cAAc,CAAC,EAAE,EAAE,CAAC;QACxB,OAAO,cAAc,CAAC;IACvB,CAAC;IAED,6BAA6B;IAC7B,MAAM,WAAW,GAAG,cAAc,CAAC,GAAG,CAAC,KAAK,EAAE,OAAO,CAAC,CAAC;IACvD,IAAI,CAAC,WAAW,CAAC,EAAE,EAAE,CAAC;QACrB,OAAO,WAAW,CAAC;IACpB,CAAC;IAED,MAAM,GAAG,GAAG,IAAI,GAAG,CAAC,KAAK,CAAC,CAAC;IAE3B,IAAI,GAAG,CAAC,QAAQ,IAAI,GAAG,CAAC,QAAQ,EAAE,CAAC;QAClC,OAAO,CAAC,CAAC,GAAG,CAAC,wCAAwC,CAAC,CAAC;IACxD,CAAC;IAED,IAAI,GAAG,CAAC,IAAI,EAAE,CAAC;QACd,OAAO,CAAC,CAAC,GAAG,CAAC,uCAAuC,CAAC,CAAC;IACvD,CAAC;IAED,IAAI,GAAG,CAAC,QAAQ,KAAK,GAAG,EAAE,CAAC;QAC1B,OAAO,CAAC,CAAC,GAAG,CAAC,wEAAwE,CAAC,CAAC;IACxF,CAAC;IAED,IAAI,GAAG,CAAC,QAAQ,CAAC,QAAQ,CAAC,GAAG,CAAC,EAAE,CAAC;QAChC,OAAO,CAAC,CAAC,GAAG,CAAC,mDAAmD,CAAC,CAAC;IACnE,CAAC;IAED,IAAI,YAAY,CAAC,GAAG,CAAC,QAAQ,CAAC,EAAE,CAAC;QAChC,OAAO,CAAC,CAAC,GAAG,CAAC,8CAA8C,CAAC,CAAC;IAC9D,CAAC;IAED,yEAAyE;IACzE,wEAAwE;IACxE,8EAA8E;IAC9E,IAAI,cAAc,CAAC,KAAK,CAAC,KAAK,GAAG,CAAC,QAAQ,EAAE,CAAC;QAC5C,OAAO,CAAC,CAAC,GAAG,CAAC,yCAAyC,GAAG,CAAC,IAAI,WAAW,KAAK,IAAI,CAAC,CAAC;IACrF,CAAC;IAED,OAAO,CAAC,CAAC,EAAE,CAAC,KAAK,CAAC,CAAC;AAAA,CACnB,CAAC,CAAC"}

package/dist/schemas/oauth-client-id.d.ts

@@ -0,0 +1,5 @@
+import * as v from '@badrap/valita';
+/** base OAuth client ID (any non-empty string) */
+export declare const oauthClientIdSchema: v.Type<string>;
+export type OAuthClientId = v.Infer<typeof oauthClientIdSchema>;
+//# sourceMappingURL=oauth-client-id.d.ts.map