npm - @atproto/oauth-provider - Versions diffs - 0.6.5 → 0.7.0 - Mend

@atproto/oauth-provider 0.6.5 → 0.7.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (465) hide show

package/CHANGELOG.md +46 -0
package/dist/access-token/access-token-mode.d.ts +5 -0
package/dist/access-token/access-token-mode.d.ts.map +1 -0
package/dist/access-token/access-token-mode.js +9 -0
package/dist/access-token/access-token-mode.js.map +1 -0
package/dist/account/account-manager.d.ts +13 -7
package/dist/account/account-manager.d.ts.map +1 -1
package/dist/account/account-manager.js +69 -52
package/dist/account/account-manager.js.map +1 -1
package/dist/account/account-store.d.ts +88 -77
package/dist/account/account-store.d.ts.map +1 -1
package/dist/account/account-store.js +24 -73
package/dist/account/account-store.js.map +1 -1
package/dist/account/sign-in-data.d.ts +4 -13
package/dist/account/sign-in-data.d.ts.map +1 -1
package/dist/account/sign-in-data.js +9 -9
package/dist/account/sign-in-data.js.map +1 -1
package/dist/account/sign-up-input.d.ts +4 -5
package/dist/account/sign-up-input.d.ts.map +1 -1
package/dist/account/sign-up-input.js +13 -3
package/dist/account/sign-up-input.js.map +1 -1
package/dist/client/client-manager.d.ts +4 -1
package/dist/client/client-manager.d.ts.map +1 -1
package/dist/client/client-manager.js +13 -1
package/dist/client/client-manager.js.map +1 -1
package/dist/client/client-store.d.ts +1 -1
package/dist/client/client-store.d.ts.map +1 -1
package/dist/constants.d.ts +5 -1
package/dist/constants.d.ts.map +1 -1
package/dist/constants.js +6 -2
package/dist/constants.js.map +1 -1
package/dist/customization/branding.d.ts +54 -0
package/dist/customization/branding.d.ts.map +1 -0
package/dist/customization/branding.js +13 -0
package/dist/customization/branding.js.map +1 -0
package/dist/customization/build-customization-css.d.ts +3 -0
package/dist/customization/build-customization-css.d.ts.map +1 -0
package/dist/customization/build-customization-css.js +27 -0
package/dist/customization/build-customization-css.js.map +1 -0
package/dist/customization/build-customization-data.d.ts +4 -0
package/dist/customization/build-customization-data.d.ts.map +1 -0
package/dist/customization/build-customization-data.js +18 -0
package/dist/customization/build-customization-data.js.map +1 -0
package/dist/customization/colors.d.ts +7 -0
package/dist/customization/colors.d.ts.map +1 -0
package/dist/customization/colors.js +27 -0
package/dist/customization/colors.js.map +1 -0
package/dist/customization/customization.d.ts +129 -0
package/dist/customization/customization.d.ts.map +1 -0
package/dist/customization/customization.js +26 -0
package/dist/customization/customization.js.map +1 -0
package/dist/customization/links.d.ts +26 -0
package/dist/customization/links.d.ts.map +1 -0
package/dist/customization/links.js +12 -0
package/dist/customization/links.js.map +1 -0
package/dist/device/device-id.d.ts +1 -0
package/dist/device/device-id.d.ts.map +1 -1
package/dist/device/device-id.js +4 -0
package/dist/device/device-id.js.map +1 -1
package/dist/device/device-manager.d.ts +6 -36
package/dist/device/device-manager.d.ts.map +1 -1
package/dist/device/device-manager.js +49 -43
package/dist/device/device-manager.js.map +1 -1
package/dist/device/device-store.d.ts +1 -0
package/dist/device/device-store.d.ts.map +1 -1
package/dist/device/device-store.js.map +1 -1
package/dist/dpop/dpop-manager.d.ts +3 -3
package/dist/dpop/dpop-nonce.d.ts +3 -3
package/dist/dpop/dpop-nonce.d.ts.map +1 -1
package/dist/errors/access-denied-error.d.ts +4 -3
package/dist/errors/access-denied-error.d.ts.map +1 -1
package/dist/errors/access-denied-error.js +5 -6
package/dist/errors/access-denied-error.js.map +1 -1
package/dist/{output/build-error-payload.d.ts → errors/error-parser.d.ts} +1 -1
package/dist/errors/error-parser.d.ts.map +1 -0
package/dist/{output/build-error-payload.js → errors/error-parser.js} +2 -2
package/dist/errors/error-parser.js.map +1 -0
package/dist/errors/invalid-grant-error.d.ts +1 -0
package/dist/errors/invalid-grant-error.d.ts.map +1 -1
package/dist/errors/invalid-grant-error.js +5 -0
package/dist/errors/invalid-grant-error.js.map +1 -1
package/dist/errors/login-required-error.d.ts +1 -0
package/dist/errors/login-required-error.d.ts.map +1 -1
package/dist/errors/login-required-error.js +5 -0
package/dist/errors/login-required-error.js.map +1 -1
package/dist/index.d.ts +1 -0
package/dist/index.d.ts.map +1 -1
package/dist/index.js +1 -0
package/dist/index.js.map +1 -1
package/dist/lib/html/build-document.d.ts +2 -2
package/dist/lib/html/build-document.d.ts.map +1 -1
package/dist/lib/html/build-document.js +4 -0
package/dist/lib/html/build-document.js.map +1 -1
package/dist/lib/html/hydration-data.d.ts +4 -0
package/dist/lib/html/hydration-data.d.ts.map +1 -0
package/dist/{output/backend-data.js → lib/html/hydration-data.js} +8 -8
package/dist/lib/html/hydration-data.js.map +1 -0
package/dist/lib/html/tags.d.ts +1 -1
package/dist/lib/html/tags.d.ts.map +1 -1
package/dist/lib/html/tags.js +1 -1
package/dist/lib/html/tags.js.map +1 -1
package/dist/lib/http/accept.d.ts +2 -2
package/dist/lib/http/accept.d.ts.map +1 -1
package/dist/lib/http/accept.js +1 -1
package/dist/lib/http/accept.js.map +1 -1
package/dist/lib/http/context.d.ts +2 -4
package/dist/lib/http/context.d.ts.map +1 -1
package/dist/lib/http/context.js +29 -4
package/dist/lib/http/context.js.map +1 -1
package/dist/lib/http/headers.d.ts +3 -0
package/dist/lib/http/headers.d.ts.map +1 -0
package/dist/lib/http/headers.js +14 -0
package/dist/lib/http/headers.js.map +1 -0
package/dist/lib/http/index.d.ts +1 -0
package/dist/lib/http/index.d.ts.map +1 -1
package/dist/lib/http/index.js +1 -0
package/dist/lib/http/index.js.map +1 -1
package/dist/lib/http/middleware.d.ts +1 -1
package/dist/lib/http/middleware.d.ts.map +1 -1
package/dist/lib/http/middleware.js +8 -24
package/dist/lib/http/middleware.js.map +1 -1
package/dist/lib/http/parser.d.ts +3 -3
package/dist/lib/http/parser.d.ts.map +1 -1
package/dist/lib/http/request.d.ts +13 -9
package/dist/lib/http/request.d.ts.map +1 -1
package/dist/lib/http/request.js +27 -49
package/dist/lib/http/request.js.map +1 -1
package/dist/lib/http/response.d.ts +6 -2
package/dist/lib/http/response.d.ts.map +1 -1
package/dist/lib/http/response.js +31 -11
package/dist/lib/http/response.js.map +1 -1
package/dist/lib/http/route.d.ts +3 -3
package/dist/lib/http/route.d.ts.map +1 -1
package/dist/lib/http/route.js +1 -1
package/dist/lib/http/route.js.map +1 -1
package/dist/lib/http/router.d.ts +12 -11
package/dist/lib/http/router.d.ts.map +1 -1
package/dist/lib/http/router.js +26 -34
package/dist/lib/http/router.js.map +1 -1
package/dist/lib/http/security-headers.js +1 -1
package/dist/lib/http/security-headers.js.map +1 -1
package/dist/lib/http/stream.d.ts +3 -3
package/dist/lib/http/stream.d.ts.map +1 -1
package/dist/lib/http/types.d.ts +1 -1
package/dist/lib/http/types.d.ts.map +1 -1
package/dist/lib/send-web-page.d.ts +8 -0
package/dist/lib/send-web-page.d.ts.map +1 -0
package/dist/{output → lib}/send-web-page.js +9 -7
package/dist/lib/send-web-page.js.map +1 -0
package/dist/lib/util/authorization-header.d.ts.map +1 -1
package/dist/lib/util/color.d.ts +32 -0
package/dist/lib/util/color.d.ts.map +1 -0
package/dist/lib/util/color.js +116 -0
package/dist/lib/util/color.js.map +1 -0
package/dist/lib/util/crypto.d.ts +1 -0
package/dist/lib/util/crypto.d.ts.map +1 -1
package/dist/lib/util/crypto.js +8 -3
package/dist/lib/util/crypto.js.map +1 -1
package/dist/lib/util/function.d.ts +1 -0
package/dist/lib/util/function.d.ts.map +1 -1
package/dist/lib/util/function.js +12 -0
package/dist/lib/util/function.js.map +1 -1
package/dist/lib/util/locale.d.ts +20 -0
package/dist/lib/util/locale.d.ts.map +1 -0
package/dist/lib/util/locale.js +14 -0
package/dist/lib/util/locale.js.map +1 -0
package/dist/lib/util/time.d.ts +1 -1
package/dist/lib/util/time.d.ts.map +1 -1
package/dist/lib/util/time.js +1 -1
package/dist/lib/util/time.js.map +1 -1
package/dist/lib/util/type.d.ts +22 -0
package/dist/lib/util/type.d.ts.map +1 -1
package/dist/lib/util/type.js.map +1 -1
package/dist/lib/util/ui8.d.ts +4 -0
package/dist/lib/util/ui8.d.ts.map +1 -0
package/dist/lib/util/ui8.js +17 -0
package/dist/lib/util/ui8.js.map +1 -0
package/dist/lib/util/zod-error.d.ts +2 -0
package/dist/lib/util/zod-error.d.ts.map +1 -0
package/dist/lib/util/zod-error.js +16 -0
package/dist/lib/util/zod-error.js.map +1 -0
package/dist/oauth-errors.d.ts +22 -22
package/dist/oauth-errors.d.ts.map +1 -1
package/dist/oauth-errors.js +37 -45
package/dist/oauth-errors.js.map +1 -1
package/dist/oauth-hooks.d.ts +11 -23
package/dist/oauth-hooks.d.ts.map +1 -1
package/dist/oauth-hooks.js.map +1 -1
package/dist/oauth-middleware.d.ts +12 -0
package/dist/oauth-middleware.d.ts.map +1 -0
package/dist/oauth-middleware.js +32 -0
package/dist/oauth-middleware.js.map +1 -0
package/dist/oauth-provider.d.ts +109 -113
package/dist/oauth-provider.d.ts.map +1 -1
package/dist/oauth-provider.js +124 -542
package/dist/oauth-provider.js.map +1 -1
package/dist/oauth-verifier.d.ts +7 -26
package/dist/oauth-verifier.d.ts.map +1 -1
package/dist/oauth-verifier.js +6 -16
package/dist/oauth-verifier.js.map +1 -1
package/dist/request/code.d.ts.map +1 -1
package/dist/request/request-data.d.ts +2 -4
package/dist/request/request-data.d.ts.map +1 -1
package/dist/request/request-data.js.map +1 -1
package/dist/request/request-manager.d.ts +4 -2
package/dist/request/request-manager.d.ts.map +1 -1
package/dist/request/request-manager.js +9 -8
package/dist/request/request-manager.js.map +1 -1
package/dist/request/request-store.d.ts +6 -0
package/dist/request/request-store.d.ts.map +1 -1
package/dist/request/request-store.js +3 -1
package/dist/request/request-store.js.map +1 -1
package/dist/result/authorization-redirect-parameters.d.ts +18 -0
package/dist/result/authorization-redirect-parameters.d.ts.map +1 -0
package/dist/result/authorization-redirect-parameters.js +3 -0
package/dist/result/authorization-redirect-parameters.js.map +1 -0
package/dist/result/authorization-result-authorize-page.d.ts +13 -0
package/dist/result/authorization-result-authorize-page.d.ts.map +1 -0
package/dist/result/authorization-result-authorize-page.js +3 -0
package/dist/result/authorization-result-authorize-page.js.map +1 -0
package/dist/result/authorization-result-redirect.d.ts +8 -0
package/dist/result/authorization-result-redirect.d.ts.map +1 -0
package/dist/result/authorization-result-redirect.js +3 -0
package/dist/result/authorization-result-redirect.js.map +1 -0
package/dist/router/assets/assets-manifest.d.ts +10 -0
package/dist/router/assets/assets-manifest.d.ts.map +1 -0
package/dist/router/assets/assets-manifest.js +77 -0
package/dist/router/assets/assets-manifest.js.map +1 -0
package/dist/router/assets/assets.d.ts +16 -0
package/dist/router/assets/assets.d.ts.map +1 -0
package/dist/router/assets/assets.js +43 -0
package/dist/router/assets/assets.js.map +1 -0
package/dist/router/assets/csrf.d.ts +4 -0
package/dist/router/assets/csrf.d.ts.map +1 -0
package/dist/router/assets/csrf.js +51 -0
package/dist/router/assets/csrf.js.map +1 -0
package/dist/router/assets/send-account-page.d.ts +7 -0
package/dist/router/assets/send-account-page.d.ts.map +1 -0
package/dist/router/assets/send-account-page.js +34 -0
package/dist/router/assets/send-account-page.js.map +1 -0
package/dist/router/assets/send-authorization-page.d.ts +5 -0
package/dist/router/assets/send-authorization-page.d.ts.map +1 -0
package/dist/router/assets/send-authorization-page.js +49 -0
package/dist/router/assets/send-authorization-page.js.map +1 -0
package/dist/router/assets/send-error-page.d.ts +4 -0
package/dist/router/assets/send-error-page.d.ts.map +1 -0
package/dist/router/assets/send-error-page.js +34 -0
package/dist/router/assets/send-error-page.js.map +1 -0
package/dist/router/create-account-page-middleware.d.ts +6 -0
package/dist/router/create-account-page-middleware.d.ts.map +1 -0
package/dist/router/create-account-page-middleware.js +39 -0
package/dist/router/create-account-page-middleware.js.map +1 -0
package/dist/router/create-api-middleware.d.ts +8 -0
package/dist/router/create-api-middleware.d.ts.map +1 -0
package/dist/router/create-api-middleware.js +501 -0
package/dist/router/create-api-middleware.js.map +1 -0
package/dist/router/create-authorization-page-middleware.d.ts +6 -0
package/dist/router/create-authorization-page-middleware.d.ts.map +1 -0
package/dist/router/create-authorization-page-middleware.js +104 -0
package/dist/router/create-authorization-page-middleware.js.map +1 -0
package/dist/router/create-oauth-middleware.d.ts +6 -0
package/dist/router/create-oauth-middleware.d.ts.map +1 -0
package/dist/router/create-oauth-middleware.js +142 -0
package/dist/router/create-oauth-middleware.js.map +1 -0
package/dist/router/error-handler.d.ts +3 -0
package/dist/router/error-handler.d.ts.map +1 -0
package/dist/{account/account.js → router/error-handler.js} +1 -1
package/dist/router/error-handler.js.map +1 -0
package/dist/router/middleware-options.d.ts +6 -0
package/dist/router/middleware-options.d.ts.map +1 -0
package/dist/router/middleware-options.js +3 -0
package/dist/router/middleware-options.js.map +1 -0
package/dist/router/send-redirect.d.ts +16 -0
package/dist/router/send-redirect.d.ts.map +1 -0
package/dist/{output/send-authorize-redirect.js → router/send-redirect.js} +40 -24
package/dist/router/send-redirect.js.map +1 -0
package/dist/{token/token-claims.d.ts → signer/api-token-payload.d.ts} +237 -232
package/dist/signer/api-token-payload.d.ts.map +1 -0
package/dist/signer/api-token-payload.js +17 -0
package/dist/signer/api-token-payload.js.map +1 -0
package/dist/signer/signed-token-payload.d.ts +164 -159
package/dist/signer/signed-token-payload.d.ts.map +1 -1
package/dist/signer/signed-token-payload.js +10 -16
package/dist/signer/signed-token-payload.js.map +1 -1
package/dist/signer/signer.d.ts +42 -11246
package/dist/signer/signer.d.ts.map +1 -1
package/dist/signer/signer.js +30 -15
package/dist/signer/signer.js.map +1 -1
package/dist/token/refresh-token.d.ts.map +1 -1
package/dist/token/token-data.d.ts +1 -1
package/dist/token/token-data.d.ts.map +1 -1
package/dist/token/token-id.d.ts.map +1 -1
package/dist/token/token-manager.d.ts +28 -26
package/dist/token/token-manager.d.ts.map +1 -1
package/dist/token/token-manager.js +138 -196
package/dist/token/token-manager.js.map +1 -1
package/dist/token/token-store.d.ts +4 -4
package/dist/token/token-store.d.ts.map +1 -1
package/dist/token/token-store.js +1 -0
package/dist/token/token-store.js.map +1 -1
package/dist/token/verify-token-claims.d.ts +3 -3
package/dist/token/verify-token-claims.d.ts.map +1 -1
package/dist/token/verify-token-claims.js +1 -1
package/dist/token/verify-token-claims.js.map +1 -1
package/dist/types/email-otp.d.ts +3 -0
package/dist/types/email-otp.d.ts.map +1 -0
package/dist/types/email-otp.js +6 -0
package/dist/types/email-otp.js.map +1 -0
package/dist/types/email.d.ts +3 -0
package/dist/types/email.d.ts.map +1 -0
package/dist/types/email.js +29 -0
package/dist/types/email.js.map +1 -0
package/dist/types/handle.d.ts +3 -0
package/dist/types/handle.d.ts.map +1 -0
package/dist/types/handle.js +22 -0
package/dist/types/handle.js.map +1 -0
package/dist/types/invite-code.d.ts +4 -0
package/dist/types/invite-code.d.ts.map +1 -0
package/dist/types/invite-code.js +6 -0
package/dist/types/invite-code.js.map +1 -0
package/dist/types/password.d.ts +4 -0
package/dist/types/password.d.ts.map +1 -0
package/dist/types/password.js +7 -0
package/dist/types/password.js.map +1 -0
package/package.json +11 -8
package/src/access-token/access-token-mode.ts +4 -0
package/src/account/account-manager.ts +105 -75
package/src/account/account-store.ts +118 -114
package/src/account/sign-in-data.ts +10 -10
package/src/account/sign-up-input.ts +13 -4
package/src/client/client-manager.ts +34 -2
package/src/client/client-store.ts +1 -1
package/src/constants.ts +6 -1
package/src/customization/branding.ts +12 -0
package/src/customization/build-customization-css.ts +30 -0
package/src/customization/build-customization-data.ts +22 -0
package/src/customization/colors.ts +30 -0
package/src/customization/customization.ts +25 -0
package/src/customization/links.ts +10 -0
package/src/device/device-id.ts +5 -0
package/src/device/device-manager.ts +76 -66
package/src/device/device-store.ts +2 -0
package/src/errors/access-denied-error.ts +24 -17
package/src/{output/build-error-payload.ts → errors/error-parser.ts} +1 -1
package/src/errors/invalid-grant-error.ts +5 -0
package/src/errors/login-required-error.ts +10 -0
package/src/index.ts +1 -0
package/src/lib/html/build-document.ts +6 -4
package/src/{output/backend-data.ts → lib/html/hydration-data.ts} +7 -5
package/src/lib/html/tags.ts +2 -2
package/src/lib/http/accept.ts +3 -3
package/src/lib/http/context.ts +41 -10
package/src/lib/http/headers.ts +15 -0
package/src/lib/http/index.ts +1 -0
package/src/lib/http/middleware.ts +8 -23
package/src/lib/http/request.ts +40 -75
package/src/lib/http/response.ts +39 -15
package/src/lib/http/route.ts +8 -5
package/src/lib/http/router.ts +40 -46
package/src/lib/http/security-headers.ts +1 -1
package/src/lib/http/types.ts +1 -6
package/src/{output → lib}/send-web-page.ts +10 -9
package/src/lib/util/color.ts +132 -0
package/src/lib/util/crypto.ts +9 -4
package/src/lib/util/function.ts +14 -0
package/src/lib/util/locale.ts +18 -0
package/src/lib/util/time.ts +3 -4
package/src/lib/util/type.ts +24 -0
package/src/lib/util/ui8.ts +14 -0
package/src/lib/util/zod-error.ts +14 -0
package/src/oauth-errors.ts +22 -22
package/src/oauth-hooks.ts +11 -24
package/src/oauth-middleware.ts +53 -0
package/src/oauth-provider.ts +290 -1061
package/src/oauth-verifier.ts +9 -55
package/src/request/request-data.ts +5 -4
package/src/request/request-manager.ts +11 -11
package/src/request/request-store.ts +7 -0
package/src/result/authorization-redirect-parameters.ts +24 -0
package/src/result/authorization-result-authorize-page.ts +14 -0
package/src/result/authorization-result-redirect.ts +8 -0
package/src/router/assets/assets-manifest.ts +108 -0
package/src/router/assets/assets.ts +54 -0
package/src/router/assets/csrf.ts +63 -0
package/src/router/assets/send-account-page.ts +43 -0
package/src/router/assets/send-authorization-page.ts +62 -0
package/src/router/assets/send-error-page.ts +42 -0
package/src/router/create-account-page-middleware.ts +69 -0
package/src/router/create-api-middleware.ts +814 -0
package/src/router/create-authorization-page-middleware.ts +173 -0
package/src/router/create-oauth-middleware.ts +247 -0
package/src/router/error-handler.ts +6 -0
package/src/router/middleware-options.ts +9 -0
package/src/router/send-redirect.ts +142 -0
package/src/signer/api-token-payload.ts +18 -0
package/src/signer/signed-token-payload.ts +18 -28
package/src/signer/signer.ts +49 -34
package/src/token/token-data.ts +1 -1
package/src/token/token-manager.ts +190 -239
package/src/token/token-store.ts +6 -4
package/src/token/verify-token-claims.ts +4 -4
package/src/types/email-otp.ts +3 -0
package/src/types/email.ts +26 -0
package/src/types/handle.ts +18 -0
package/src/types/invite-code.ts +4 -0
package/src/types/password.ts +4 -0
package/tsconfig.build.tsbuildinfo +1 -0
package/tsconfig.json +1 -1
package/dist/access-token/access-token-type.d.ts +0 -6
package/dist/access-token/access-token-type.d.ts.map +0 -1
package/dist/access-token/access-token-type.js +0 -10
package/dist/access-token/access-token-type.js.map +0 -1
package/dist/account/account.d.ts +0 -2
package/dist/account/account.d.ts.map +0 -1
package/dist/account/account.js.map +0 -1
package/dist/assets/assets-middleware.d.ts +0 -5
package/dist/assets/assets-middleware.d.ts.map +0 -1
package/dist/assets/assets-middleware.js +0 -41
package/dist/assets/assets-middleware.js.map +0 -1
package/dist/lib/locale.d.ts +0 -15
package/dist/lib/locale.d.ts.map +0 -1
package/dist/lib/locale.js +0 -17
package/dist/lib/locale.js.map +0 -1
package/dist/output/backend-data.d.ts +0 -4
package/dist/output/backend-data.d.ts.map +0 -1
package/dist/output/backend-data.js.map +0 -1
package/dist/output/build-authorize-data.d.ts +0 -29
package/dist/output/build-authorize-data.d.ts.map +0 -1
package/dist/output/build-authorize-data.js +0 -21
package/dist/output/build-authorize-data.js.map +0 -1
package/dist/output/build-customization-data.d.ts +0 -234
package/dist/output/build-customization-data.d.ts.map +0 -1
package/dist/output/build-customization-data.js +0 -174
package/dist/output/build-customization-data.js.map +0 -1
package/dist/output/build-error-data.d.ts +0 -3
package/dist/output/build-error-data.d.ts.map +0 -1
package/dist/output/build-error-data.js +0 -10
package/dist/output/build-error-data.js.map +0 -1
package/dist/output/build-error-payload.d.ts.map +0 -1
package/dist/output/build-error-payload.js.map +0 -1
package/dist/output/output-manager.d.ts +0 -28
package/dist/output/output-manager.d.ts.map +0 -1
package/dist/output/output-manager.js +0 -134
package/dist/output/output-manager.js.map +0 -1
package/dist/output/send-authorize-redirect.d.ts +0 -25
package/dist/output/send-authorize-redirect.d.ts.map +0 -1
package/dist/output/send-authorize-redirect.js.map +0 -1
package/dist/output/send-web-page.d.ts +0 -8
package/dist/output/send-web-page.d.ts.map +0 -1
package/dist/output/send-web-page.js.map +0 -1
package/dist/token/token-claims.d.ts.map +0 -1
package/dist/token/token-claims.js +0 -27
package/dist/token/token-claims.js.map +0 -1
package/src/access-token/access-token-type.ts +0 -5
package/src/account/account.ts +0 -1
package/src/assets/assets-middleware.ts +0 -44
package/src/lib/locale.ts +0 -21
package/src/output/build-authorize-data.ts +0 -53
package/src/output/build-customization-data.ts +0 -217
package/src/output/build-error-data.ts +0 -8
package/src/output/output-manager.ts +0 -188
package/src/output/send-authorize-redirect.ts +0 -137
package/src/token/token-claims.ts +0 -30
package/tsconfig.backend.tsbuildinfo +0 -1
/package/{tsconfig.backend.json → tsconfig.build.json} +0 -0

package/dist/{token/token-claims.d.ts → signer/api-token-payload.d.ts} RENAMED Viewed

@@ -1,93 +1,19 @@
 import { z } from 'zod';
-import { Simplify } from '../lib/util/type.js';
-export declare const tokenClaimsSchema: z.ZodIntersection<z.ZodObject<{
-    iat: z.ZodNumber;
-    aud: z.ZodUnion<[z.ZodString, z.ZodArray<z.ZodString, "atleastone">]>;
-    exp: z.ZodNumber;
-}, "passthrough", z.ZodTypeAny, z.objectOutputType<{
-    iat: z.ZodNumber;
-    aud: z.ZodUnion<[z.ZodString, z.ZodArray<z.ZodString, "atleastone">]>;
-    exp: z.ZodNumber;
-}, z.ZodTypeAny, "passthrough">, z.objectInputType<{
-    iat: z.ZodNumber;
-    aud: z.ZodUnion<[z.ZodString, z.ZodArray<z.ZodString, "atleastone">]>;
-    exp: z.ZodNumber;
-}, z.ZodTypeAny, "passthrough">>, z.ZodObject<z.objectUtil.extendShape<{
-    nonce: z.ZodOptional<z.ZodOptional<z.ZodString>>;
-    client_id: z.ZodOptional<z.ZodOptional<z.ZodString>>;
-    scope: z.ZodOptional<z.ZodOptional<z.ZodString>>;
-    authorization_details: z.ZodOptional<z.ZodOptional<z.ZodArray<z.ZodObject<{
-        type: z.ZodString;
-        locations: z.ZodOptional<z.ZodArray<z.ZodString, "many">>;
-        actions: z.ZodOptional<z.ZodArray<z.ZodString, "many">>;
-        datatypes: z.ZodOptional<z.ZodArray<z.ZodString, "many">>;
-        identifier: z.ZodOptional<z.ZodString>;
-        privileges: z.ZodOptional<z.ZodArray<z.ZodString, "many">>;
-    }, "passthrough", z.ZodTypeAny, z.objectOutputType<{
-        type: z.ZodString;
-        locations: z.ZodOptional<z.ZodArray<z.ZodString, "many">>;
-        actions: z.ZodOptional<z.ZodArray<z.ZodString, "many">>;
-        datatypes: z.ZodOptional<z.ZodArray<z.ZodString, "many">>;
-        identifier: z.ZodOptional<z.ZodString>;
-        privileges: z.ZodOptional<z.ZodArray<z.ZodString, "many">>;
-    }, z.ZodTypeAny, "passthrough">, z.objectInputType<{
-        type: z.ZodString;
-        locations: z.ZodOptional<z.ZodArray<z.ZodString, "many">>;
-        actions: z.ZodOptional<z.ZodArray<z.ZodString, "many">>;
-        datatypes: z.ZodOptional<z.ZodArray<z.ZodString, "many">>;
-        identifier: z.ZodOptional<z.ZodString>;
-        privileges: z.ZodOptional<z.ZodArray<z.ZodString, "many">>;
-    }, z.ZodTypeAny, "passthrough">>, "many">>>;
-    email: z.ZodOptional<z.ZodOptional<z.ZodString>>;
-    auth_time: z.ZodOptional<z.ZodOptional<z.ZodNumber>>;
-    acr: z.ZodOptional<z.ZodOptional<z.ZodString>>;
-    name: z.ZodOptional<z.ZodOptional<z.ZodString>>;
-    family_name: z.ZodOptional<z.ZodOptional<z.ZodString>>;
-    given_name: z.ZodOptional<z.ZodOptional<z.ZodString>>;
-    middle_name: z.ZodOptional<z.ZodOptional<z.ZodString>>;
-    nickname: z.ZodOptional<z.ZodOptional<z.ZodString>>;
-    preferred_username: z.ZodOptional<z.ZodOptional<z.ZodString>>;
-    gender: z.ZodOptional<z.ZodOptional<z.ZodString>>;
-    picture: z.ZodOptional<z.ZodOptional<z.ZodString>>;
-    profile: z.ZodOptional<z.ZodOptional<z.ZodString>>;
-    website: z.ZodOptional<z.ZodOptional<z.ZodString>>;
-    birthdate: z.ZodOptional<z.ZodOptional<z.ZodString>>;
-    zoneinfo: z.ZodOptional<z.ZodOptional<z.ZodString>>;
-    locale: z.ZodOptional<z.ZodOptional<z.ZodString>>;
-    updated_at: z.ZodOptional<z.ZodOptional<z.ZodNumber>>;
-    email_verified: z.ZodOptional<z.ZodOptional<z.ZodBoolean>>;
-    phone_number: z.ZodOptional<z.ZodOptional<z.ZodString>>;
-    phone_number_verified: z.ZodOptional<z.ZodOptional<z.ZodBoolean>>;
-    address: z.ZodOptional<z.ZodOptional<z.ZodObject<{
-        formatted: z.ZodOptional<z.ZodString>;
-        street_address: z.ZodOptional<z.ZodString>;
-        locality: z.ZodOptional<z.ZodString>;
-        region: z.ZodOptional<z.ZodString>;
-        postal_code: z.ZodOptional<z.ZodString>;
-        country: z.ZodOptional<z.ZodString>;
-    }, "strip", z.ZodTypeAny, {
-        formatted?: string | undefined;
-        street_address?: string | undefined;
-        locality?: string | undefined;
-        region?: string | undefined;
-        postal_code?: string | undefined;
-        country?: string | undefined;
-    }, {
-        formatted?: string | undefined;
-        street_address?: string | undefined;
-        locality?: string | undefined;
-        region?: string | undefined;
-        postal_code?: string | undefined;
-        country?: string | undefined;
-    }>>>;
-    htm: z.ZodOptional<z.ZodOptional<z.ZodString>>;
-    htu: z.ZodOptional<z.ZodOptional<z.ZodString>>;
-    ath: z.ZodOptional<z.ZodOptional<z.ZodString>>;
-    sub: z.ZodOptional<z.ZodOptional<z.ZodString>>;
-    nbf: z.ZodOptional<z.ZodOptional<z.ZodNumber>>;
-    azp: z.ZodOptional<z.ZodOptional<z.ZodString>>;
-    amr: z.ZodOptional<z.ZodOptional<z.ZodArray<z.ZodString, "many">>>;
-    cnf: z.ZodOptional<z.ZodOptional<z.ZodObject<{
+export declare const apiTokenPayloadSchema: z.ZodObject<z.objectUtil.extendShape<{
+    iss: z.ZodOptional<z.ZodString>;
+    aud: z.ZodOptional<z.ZodUnion<[z.ZodString, z.ZodArray<z.ZodString, "atleastone">]>>;
+    sub: z.ZodOptional<z.ZodString>;
+    exp: z.ZodOptional<z.ZodNumber>;
+    nbf: z.ZodOptional<z.ZodNumber>;
+    iat: z.ZodOptional<z.ZodNumber>;
+    jti: z.ZodOptional<z.ZodString>;
+    htm: z.ZodOptional<z.ZodString>;
+    htu: z.ZodOptional<z.ZodString>;
+    ath: z.ZodOptional<z.ZodString>;
+    acr: z.ZodOptional<z.ZodString>;
+    azp: z.ZodOptional<z.ZodString>;
+    amr: z.ZodOptional<z.ZodArray<z.ZodString, "many">>;
+    cnf: z.ZodOptional<z.ZodObject<{
         kid: z.ZodOptional<z.ZodString>;
         jwk: z.ZodOptional<z.ZodEffects<z.ZodEffects<z.ZodEffects<z.ZodEffects<z.ZodUnion<[z.ZodObject<z.objectUtil.extendShape<{
             kty: z.ZodString;
@@ -1159,11 +1085,11 @@ export declare const tokenClaimsSchema: z.ZodIntersection<z.ZodObject<{
         jwe: z.ZodOptional<z.ZodString>;
         jku: z.ZodOptional<z.ZodString>;
         jkt: z.ZodOptional<z.ZodString>;
-        'x5t#S256': z.ZodOptional<z.ZodString>;
+        "x5t#S256": z.ZodOptional<z.ZodString>;
         osc: z.ZodOptional<z.ZodString>;
     }, "strip", z.ZodTypeAny, {
         kid?: string | undefined;
-        'x5t#S256'?: string | undefined;
+        "x5t#S256"?: string | undefined;
         jku?: string | undefined;
         jwk?: {
             kty: "RSA";
@@ -1266,7 +1192,7 @@ export declare const tokenClaimsSchema: z.ZodIntersection<z.ZodObject<{
         osc?: string | undefined;
     }, {
         kid?: string | undefined;
-        'x5t#S256'?: string | undefined;
+        "x5t#S256"?: string | undefined;
         jku?: string | undefined;
         jwk?: {
             kty: "RSA";
@@ -1367,60 +1293,33 @@ export declare const tokenClaimsSchema: z.ZodIntersection<z.ZodObject<{
         jwe?: string | undefined;
         jkt?: string | undefined;
         osc?: string | undefined;
-    }>>>;
-    at_hash: z.ZodOptional<z.ZodOptional<z.ZodString>>;
-    c_hash: z.ZodOptional<z.ZodOptional<z.ZodString>>;
-    s_hash: z.ZodOptional<z.ZodOptional<z.ZodString>>;
-}, {
-    sub: z.ZodString;
-    client_id: z.ZodString;
-}>, "passthrough", z.ZodTypeAny, z.objectOutputType<z.objectUtil.extendShape<{
-    nonce: z.ZodOptional<z.ZodOptional<z.ZodString>>;
-    client_id: z.ZodOptional<z.ZodOptional<z.ZodString>>;
-    scope: z.ZodOptional<z.ZodOptional<z.ZodString>>;
-    authorization_details: z.ZodOptional<z.ZodOptional<z.ZodArray<z.ZodObject<{
-        type: z.ZodString;
-        locations: z.ZodOptional<z.ZodArray<z.ZodString, "many">>;
-        actions: z.ZodOptional<z.ZodArray<z.ZodString, "many">>;
-        datatypes: z.ZodOptional<z.ZodArray<z.ZodString, "many">>;
-        identifier: z.ZodOptional<z.ZodString>;
-        privileges: z.ZodOptional<z.ZodArray<z.ZodString, "many">>;
-    }, "passthrough", z.ZodTypeAny, z.objectOutputType<{
-        type: z.ZodString;
-        locations: z.ZodOptional<z.ZodArray<z.ZodString, "many">>;
-        actions: z.ZodOptional<z.ZodArray<z.ZodString, "many">>;
-        datatypes: z.ZodOptional<z.ZodArray<z.ZodString, "many">>;
-        identifier: z.ZodOptional<z.ZodString>;
-        privileges: z.ZodOptional<z.ZodArray<z.ZodString, "many">>;
-    }, z.ZodTypeAny, "passthrough">, z.objectInputType<{
-        type: z.ZodString;
-        locations: z.ZodOptional<z.ZodArray<z.ZodString, "many">>;
-        actions: z.ZodOptional<z.ZodArray<z.ZodString, "many">>;
-        datatypes: z.ZodOptional<z.ZodArray<z.ZodString, "many">>;
-        identifier: z.ZodOptional<z.ZodString>;
-        privileges: z.ZodOptional<z.ZodArray<z.ZodString, "many">>;
-    }, z.ZodTypeAny, "passthrough">>, "many">>>;
-    email: z.ZodOptional<z.ZodOptional<z.ZodString>>;
-    auth_time: z.ZodOptional<z.ZodOptional<z.ZodNumber>>;
-    acr: z.ZodOptional<z.ZodOptional<z.ZodString>>;
-    name: z.ZodOptional<z.ZodOptional<z.ZodString>>;
-    family_name: z.ZodOptional<z.ZodOptional<z.ZodString>>;
-    given_name: z.ZodOptional<z.ZodOptional<z.ZodString>>;
-    middle_name: z.ZodOptional<z.ZodOptional<z.ZodString>>;
-    nickname: z.ZodOptional<z.ZodOptional<z.ZodString>>;
-    preferred_username: z.ZodOptional<z.ZodOptional<z.ZodString>>;
-    gender: z.ZodOptional<z.ZodOptional<z.ZodString>>;
-    picture: z.ZodOptional<z.ZodOptional<z.ZodString>>;
-    profile: z.ZodOptional<z.ZodOptional<z.ZodString>>;
-    website: z.ZodOptional<z.ZodOptional<z.ZodString>>;
-    birthdate: z.ZodOptional<z.ZodOptional<z.ZodString>>;
-    zoneinfo: z.ZodOptional<z.ZodOptional<z.ZodString>>;
-    locale: z.ZodOptional<z.ZodOptional<z.ZodString>>;
-    updated_at: z.ZodOptional<z.ZodOptional<z.ZodNumber>>;
-    email_verified: z.ZodOptional<z.ZodOptional<z.ZodBoolean>>;
-    phone_number: z.ZodOptional<z.ZodOptional<z.ZodString>>;
-    phone_number_verified: z.ZodOptional<z.ZodOptional<z.ZodBoolean>>;
-    address: z.ZodOptional<z.ZodOptional<z.ZodObject<{
+    }>>;
+    client_id: z.ZodOptional<z.ZodString>;
+    scope: z.ZodOptional<z.ZodString>;
+    nonce: z.ZodOptional<z.ZodString>;
+    at_hash: z.ZodOptional<z.ZodString>;
+    c_hash: z.ZodOptional<z.ZodString>;
+    s_hash: z.ZodOptional<z.ZodString>;
+    auth_time: z.ZodOptional<z.ZodNumber>;
+    name: z.ZodOptional<z.ZodString>;
+    family_name: z.ZodOptional<z.ZodString>;
+    given_name: z.ZodOptional<z.ZodString>;
+    middle_name: z.ZodOptional<z.ZodString>;
+    nickname: z.ZodOptional<z.ZodString>;
+    preferred_username: z.ZodOptional<z.ZodString>;
+    gender: z.ZodOptional<z.ZodString>;
+    picture: z.ZodOptional<z.ZodString>;
+    profile: z.ZodOptional<z.ZodString>;
+    website: z.ZodOptional<z.ZodString>;
+    birthdate: z.ZodOptional<z.ZodString>;
+    zoneinfo: z.ZodOptional<z.ZodString>;
+    locale: z.ZodOptional<z.ZodString>;
+    updated_at: z.ZodOptional<z.ZodNumber>;
+    email: z.ZodOptional<z.ZodString>;
+    email_verified: z.ZodOptional<z.ZodBoolean>;
+    phone_number: z.ZodOptional<z.ZodString>;
+    phone_number_verified: z.ZodOptional<z.ZodBoolean>;
+    address: z.ZodOptional<z.ZodObject<{
         formatted: z.ZodOptional<z.ZodString>;
         street_address: z.ZodOptional<z.ZodString>;
         locality: z.ZodOptional<z.ZodString>;
@@ -1441,15 +1340,48 @@ export declare const tokenClaimsSchema: z.ZodIntersection<z.ZodObject<{
         region?: string | undefined;
         postal_code?: string | undefined;
         country?: string | undefined;
-    }>>>;
-    htm: z.ZodOptional<z.ZodOptional<z.ZodString>>;
-    htu: z.ZodOptional<z.ZodOptional<z.ZodString>>;
-    ath: z.ZodOptional<z.ZodOptional<z.ZodString>>;
-    sub: z.ZodOptional<z.ZodOptional<z.ZodString>>;
-    nbf: z.ZodOptional<z.ZodOptional<z.ZodNumber>>;
-    azp: z.ZodOptional<z.ZodOptional<z.ZodString>>;
-    amr: z.ZodOptional<z.ZodOptional<z.ZodArray<z.ZodString, "many">>>;
-    cnf: z.ZodOptional<z.ZodOptional<z.ZodObject<{
+    }>>;
+    authorization_details: z.ZodOptional<z.ZodArray<z.ZodObject<{
+        type: z.ZodString;
+        locations: z.ZodOptional<z.ZodArray<z.ZodString, "many">>;
+        actions: z.ZodOptional<z.ZodArray<z.ZodString, "many">>;
+        datatypes: z.ZodOptional<z.ZodArray<z.ZodString, "many">>;
+        identifier: z.ZodOptional<z.ZodString>;
+        privileges: z.ZodOptional<z.ZodArray<z.ZodString, "many">>;
+    }, "passthrough", z.ZodTypeAny, z.objectOutputType<{
+        type: z.ZodString;
+        locations: z.ZodOptional<z.ZodArray<z.ZodString, "many">>;
+        actions: z.ZodOptional<z.ZodArray<z.ZodString, "many">>;
+        datatypes: z.ZodOptional<z.ZodArray<z.ZodString, "many">>;
+        identifier: z.ZodOptional<z.ZodString>;
+        privileges: z.ZodOptional<z.ZodArray<z.ZodString, "many">>;
+    }, z.ZodTypeAny, "passthrough">, z.objectInputType<{
+        type: z.ZodString;
+        locations: z.ZodOptional<z.ZodArray<z.ZodString, "many">>;
+        actions: z.ZodOptional<z.ZodArray<z.ZodString, "many">>;
+        datatypes: z.ZodOptional<z.ZodArray<z.ZodString, "many">>;
+        identifier: z.ZodOptional<z.ZodString>;
+        privileges: z.ZodOptional<z.ZodArray<z.ZodString, "many">>;
+    }, z.ZodTypeAny, "passthrough">>, "many">>;
+}, {
+    sub: z.ZodString;
+    deviceId: z.ZodEffects<z.ZodString, `dev-${string}`, string>;
+    requestUri: z.ZodOptional<z.ZodEffects<z.ZodString, `urn:ietf:params:oauth:request_uri:req-${string}`, string>>;
+}>, "passthrough", z.ZodTypeAny, z.objectOutputType<z.objectUtil.extendShape<{
+    iss: z.ZodOptional<z.ZodString>;
+    aud: z.ZodOptional<z.ZodUnion<[z.ZodString, z.ZodArray<z.ZodString, "atleastone">]>>;
+    sub: z.ZodOptional<z.ZodString>;
+    exp: z.ZodOptional<z.ZodNumber>;
+    nbf: z.ZodOptional<z.ZodNumber>;
+    iat: z.ZodOptional<z.ZodNumber>;
+    jti: z.ZodOptional<z.ZodString>;
+    htm: z.ZodOptional<z.ZodString>;
+    htu: z.ZodOptional<z.ZodString>;
+    ath: z.ZodOptional<z.ZodString>;
+    acr: z.ZodOptional<z.ZodString>;
+    azp: z.ZodOptional<z.ZodString>;
+    amr: z.ZodOptional<z.ZodArray<z.ZodString, "many">>;
+    cnf: z.ZodOptional<z.ZodObject<{
         kid: z.ZodOptional<z.ZodString>;
         jwk: z.ZodOptional<z.ZodEffects<z.ZodEffects<z.ZodEffects<z.ZodEffects<z.ZodUnion<[z.ZodObject<z.objectUtil.extendShape<{
             kty: z.ZodString;
@@ -2521,11 +2453,11 @@ export declare const tokenClaimsSchema: z.ZodIntersection<z.ZodObject<{
         jwe: z.ZodOptional<z.ZodString>;
         jku: z.ZodOptional<z.ZodString>;
         jkt: z.ZodOptional<z.ZodString>;
-        'x5t#S256': z.ZodOptional<z.ZodString>;
+        "x5t#S256": z.ZodOptional<z.ZodString>;
         osc: z.ZodOptional<z.ZodString>;
     }, "strip", z.ZodTypeAny, {
         kid?: string | undefined;
-        'x5t#S256'?: string | undefined;
+        "x5t#S256"?: string | undefined;
         jku?: string | undefined;
         jwk?: {
             kty: "RSA";
@@ -2628,7 +2560,7 @@ export declare const tokenClaimsSchema: z.ZodIntersection<z.ZodObject<{
         osc?: string | undefined;
     }, {
         kid?: string | undefined;
-        'x5t#S256'?: string | undefined;
+        "x5t#S256"?: string | undefined;
         jku?: string | undefined;
         jwk?: {
             kty: "RSA";
@@ -2729,60 +2661,33 @@ export declare const tokenClaimsSchema: z.ZodIntersection<z.ZodObject<{
         jwe?: string | undefined;
         jkt?: string | undefined;
         osc?: string | undefined;
-    }>>>;
-    at_hash: z.ZodOptional<z.ZodOptional<z.ZodString>>;
-    c_hash: z.ZodOptional<z.ZodOptional<z.ZodString>>;
-    s_hash: z.ZodOptional<z.ZodOptional<z.ZodString>>;
-}, {
-    sub: z.ZodString;
-    client_id: z.ZodString;
-}>, z.ZodTypeAny, "passthrough">, z.objectInputType<z.objectUtil.extendShape<{
-    nonce: z.ZodOptional<z.ZodOptional<z.ZodString>>;
-    client_id: z.ZodOptional<z.ZodOptional<z.ZodString>>;
-    scope: z.ZodOptional<z.ZodOptional<z.ZodString>>;
-    authorization_details: z.ZodOptional<z.ZodOptional<z.ZodArray<z.ZodObject<{
-        type: z.ZodString;
-        locations: z.ZodOptional<z.ZodArray<z.ZodString, "many">>;
-        actions: z.ZodOptional<z.ZodArray<z.ZodString, "many">>;
-        datatypes: z.ZodOptional<z.ZodArray<z.ZodString, "many">>;
-        identifier: z.ZodOptional<z.ZodString>;
-        privileges: z.ZodOptional<z.ZodArray<z.ZodString, "many">>;
-    }, "passthrough", z.ZodTypeAny, z.objectOutputType<{
-        type: z.ZodString;
-        locations: z.ZodOptional<z.ZodArray<z.ZodString, "many">>;
-        actions: z.ZodOptional<z.ZodArray<z.ZodString, "many">>;
-        datatypes: z.ZodOptional<z.ZodArray<z.ZodString, "many">>;
-        identifier: z.ZodOptional<z.ZodString>;
-        privileges: z.ZodOptional<z.ZodArray<z.ZodString, "many">>;
-    }, z.ZodTypeAny, "passthrough">, z.objectInputType<{
-        type: z.ZodString;
-        locations: z.ZodOptional<z.ZodArray<z.ZodString, "many">>;
-        actions: z.ZodOptional<z.ZodArray<z.ZodString, "many">>;
-        datatypes: z.ZodOptional<z.ZodArray<z.ZodString, "many">>;
-        identifier: z.ZodOptional<z.ZodString>;
-        privileges: z.ZodOptional<z.ZodArray<z.ZodString, "many">>;
-    }, z.ZodTypeAny, "passthrough">>, "many">>>;
-    email: z.ZodOptional<z.ZodOptional<z.ZodString>>;
-    auth_time: z.ZodOptional<z.ZodOptional<z.ZodNumber>>;
-    acr: z.ZodOptional<z.ZodOptional<z.ZodString>>;
-    name: z.ZodOptional<z.ZodOptional<z.ZodString>>;
-    family_name: z.ZodOptional<z.ZodOptional<z.ZodString>>;
-    given_name: z.ZodOptional<z.ZodOptional<z.ZodString>>;
-    middle_name: z.ZodOptional<z.ZodOptional<z.ZodString>>;
-    nickname: z.ZodOptional<z.ZodOptional<z.ZodString>>;
-    preferred_username: z.ZodOptional<z.ZodOptional<z.ZodString>>;
-    gender: z.ZodOptional<z.ZodOptional<z.ZodString>>;
-    picture: z.ZodOptional<z.ZodOptional<z.ZodString>>;
-    profile: z.ZodOptional<z.ZodOptional<z.ZodString>>;
-    website: z.ZodOptional<z.ZodOptional<z.ZodString>>;
-    birthdate: z.ZodOptional<z.ZodOptional<z.ZodString>>;
-    zoneinfo: z.ZodOptional<z.ZodOptional<z.ZodString>>;
-    locale: z.ZodOptional<z.ZodOptional<z.ZodString>>;
-    updated_at: z.ZodOptional<z.ZodOptional<z.ZodNumber>>;
-    email_verified: z.ZodOptional<z.ZodOptional<z.ZodBoolean>>;
-    phone_number: z.ZodOptional<z.ZodOptional<z.ZodString>>;
-    phone_number_verified: z.ZodOptional<z.ZodOptional<z.ZodBoolean>>;
-    address: z.ZodOptional<z.ZodOptional<z.ZodObject<{
+    }>>;
+    client_id: z.ZodOptional<z.ZodString>;
+    scope: z.ZodOptional<z.ZodString>;
+    nonce: z.ZodOptional<z.ZodString>;
+    at_hash: z.ZodOptional<z.ZodString>;
+    c_hash: z.ZodOptional<z.ZodString>;
+    s_hash: z.ZodOptional<z.ZodString>;
+    auth_time: z.ZodOptional<z.ZodNumber>;
+    name: z.ZodOptional<z.ZodString>;
+    family_name: z.ZodOptional<z.ZodString>;
+    given_name: z.ZodOptional<z.ZodString>;
+    middle_name: z.ZodOptional<z.ZodString>;
+    nickname: z.ZodOptional<z.ZodString>;
+    preferred_username: z.ZodOptional<z.ZodString>;
+    gender: z.ZodOptional<z.ZodString>;
+    picture: z.ZodOptional<z.ZodString>;
+    profile: z.ZodOptional<z.ZodString>;
+    website: z.ZodOptional<z.ZodString>;
+    birthdate: z.ZodOptional<z.ZodString>;
+    zoneinfo: z.ZodOptional<z.ZodString>;
+    locale: z.ZodOptional<z.ZodString>;
+    updated_at: z.ZodOptional<z.ZodNumber>;
+    email: z.ZodOptional<z.ZodString>;
+    email_verified: z.ZodOptional<z.ZodBoolean>;
+    phone_number: z.ZodOptional<z.ZodString>;
+    phone_number_verified: z.ZodOptional<z.ZodBoolean>;
+    address: z.ZodOptional<z.ZodObject<{
         formatted: z.ZodOptional<z.ZodString>;
         street_address: z.ZodOptional<z.ZodString>;
         locality: z.ZodOptional<z.ZodString>;
@@ -2803,15 +2708,48 @@ export declare const tokenClaimsSchema: z.ZodIntersection<z.ZodObject<{
         region?: string | undefined;
         postal_code?: string | undefined;
         country?: string | undefined;
-    }>>>;
-    htm: z.ZodOptional<z.ZodOptional<z.ZodString>>;
-    htu: z.ZodOptional<z.ZodOptional<z.ZodString>>;
-    ath: z.ZodOptional<z.ZodOptional<z.ZodString>>;
-    sub: z.ZodOptional<z.ZodOptional<z.ZodString>>;
-    nbf: z.ZodOptional<z.ZodOptional<z.ZodNumber>>;
-    azp: z.ZodOptional<z.ZodOptional<z.ZodString>>;
-    amr: z.ZodOptional<z.ZodOptional<z.ZodArray<z.ZodString, "many">>>;
-    cnf: z.ZodOptional<z.ZodOptional<z.ZodObject<{
+    }>>;
+    authorization_details: z.ZodOptional<z.ZodArray<z.ZodObject<{
+        type: z.ZodString;
+        locations: z.ZodOptional<z.ZodArray<z.ZodString, "many">>;
+        actions: z.ZodOptional<z.ZodArray<z.ZodString, "many">>;
+        datatypes: z.ZodOptional<z.ZodArray<z.ZodString, "many">>;
+        identifier: z.ZodOptional<z.ZodString>;
+        privileges: z.ZodOptional<z.ZodArray<z.ZodString, "many">>;
+    }, "passthrough", z.ZodTypeAny, z.objectOutputType<{
+        type: z.ZodString;
+        locations: z.ZodOptional<z.ZodArray<z.ZodString, "many">>;
+        actions: z.ZodOptional<z.ZodArray<z.ZodString, "many">>;
+        datatypes: z.ZodOptional<z.ZodArray<z.ZodString, "many">>;
+        identifier: z.ZodOptional<z.ZodString>;
+        privileges: z.ZodOptional<z.ZodArray<z.ZodString, "many">>;
+    }, z.ZodTypeAny, "passthrough">, z.objectInputType<{
+        type: z.ZodString;
+        locations: z.ZodOptional<z.ZodArray<z.ZodString, "many">>;
+        actions: z.ZodOptional<z.ZodArray<z.ZodString, "many">>;
+        datatypes: z.ZodOptional<z.ZodArray<z.ZodString, "many">>;
+        identifier: z.ZodOptional<z.ZodString>;
+        privileges: z.ZodOptional<z.ZodArray<z.ZodString, "many">>;
+    }, z.ZodTypeAny, "passthrough">>, "many">>;
+}, {
+    sub: z.ZodString;
+    deviceId: z.ZodEffects<z.ZodString, `dev-${string}`, string>;
+    requestUri: z.ZodOptional<z.ZodEffects<z.ZodString, `urn:ietf:params:oauth:request_uri:req-${string}`, string>>;
+}>, z.ZodTypeAny, "passthrough">, z.objectInputType<z.objectUtil.extendShape<{
+    iss: z.ZodOptional<z.ZodString>;
+    aud: z.ZodOptional<z.ZodUnion<[z.ZodString, z.ZodArray<z.ZodString, "atleastone">]>>;
+    sub: z.ZodOptional<z.ZodString>;
+    exp: z.ZodOptional<z.ZodNumber>;
+    nbf: z.ZodOptional<z.ZodNumber>;
+    iat: z.ZodOptional<z.ZodNumber>;
+    jti: z.ZodOptional<z.ZodString>;
+    htm: z.ZodOptional<z.ZodString>;
+    htu: z.ZodOptional<z.ZodString>;
+    ath: z.ZodOptional<z.ZodString>;
+    acr: z.ZodOptional<z.ZodString>;
+    azp: z.ZodOptional<z.ZodString>;
+    amr: z.ZodOptional<z.ZodArray<z.ZodString, "many">>;
+    cnf: z.ZodOptional<z.ZodObject<{
         kid: z.ZodOptional<z.ZodString>;
         jwk: z.ZodOptional<z.ZodEffects<z.ZodEffects<z.ZodEffects<z.ZodEffects<z.ZodUnion<[z.ZodObject<z.objectUtil.extendShape<{
             kty: z.ZodString;
@@ -3883,11 +3821,11 @@ export declare const tokenClaimsSchema: z.ZodIntersection<z.ZodObject<{
         jwe: z.ZodOptional<z.ZodString>;
         jku: z.ZodOptional<z.ZodString>;
         jkt: z.ZodOptional<z.ZodString>;
-        'x5t#S256': z.ZodOptional<z.ZodString>;
+        "x5t#S256": z.ZodOptional<z.ZodString>;
         osc: z.ZodOptional<z.ZodString>;
     }, "strip", z.ZodTypeAny, {
         kid?: string | undefined;
-        'x5t#S256'?: string | undefined;
+        "x5t#S256"?: string | undefined;
         jku?: string | undefined;
         jwk?: {
             kty: "RSA";
@@ -3990,7 +3928,7 @@ export declare const tokenClaimsSchema: z.ZodIntersection<z.ZodObject<{
         osc?: string | undefined;
     }, {
         kid?: string | undefined;
-        'x5t#S256'?: string | undefined;
+        "x5t#S256"?: string | undefined;
         jku?: string | undefined;
         jwk?: {
             kty: "RSA";
@@ -4091,13 +4029,80 @@ export declare const tokenClaimsSchema: z.ZodIntersection<z.ZodObject<{
         jwe?: string | undefined;
         jkt?: string | undefined;
         osc?: string | undefined;
-    }>>>;
-    at_hash: z.ZodOptional<z.ZodOptional<z.ZodString>>;
-    c_hash: z.ZodOptional<z.ZodOptional<z.ZodString>>;
-    s_hash: z.ZodOptional<z.ZodOptional<z.ZodString>>;
+    }>>;
+    client_id: z.ZodOptional<z.ZodString>;
+    scope: z.ZodOptional<z.ZodString>;
+    nonce: z.ZodOptional<z.ZodString>;
+    at_hash: z.ZodOptional<z.ZodString>;
+    c_hash: z.ZodOptional<z.ZodString>;
+    s_hash: z.ZodOptional<z.ZodString>;
+    auth_time: z.ZodOptional<z.ZodNumber>;
+    name: z.ZodOptional<z.ZodString>;
+    family_name: z.ZodOptional<z.ZodString>;
+    given_name: z.ZodOptional<z.ZodString>;
+    middle_name: z.ZodOptional<z.ZodString>;
+    nickname: z.ZodOptional<z.ZodString>;
+    preferred_username: z.ZodOptional<z.ZodString>;
+    gender: z.ZodOptional<z.ZodString>;
+    picture: z.ZodOptional<z.ZodString>;
+    profile: z.ZodOptional<z.ZodString>;
+    website: z.ZodOptional<z.ZodString>;
+    birthdate: z.ZodOptional<z.ZodString>;
+    zoneinfo: z.ZodOptional<z.ZodString>;
+    locale: z.ZodOptional<z.ZodString>;
+    updated_at: z.ZodOptional<z.ZodNumber>;
+    email: z.ZodOptional<z.ZodString>;
+    email_verified: z.ZodOptional<z.ZodBoolean>;
+    phone_number: z.ZodOptional<z.ZodString>;
+    phone_number_verified: z.ZodOptional<z.ZodBoolean>;
+    address: z.ZodOptional<z.ZodObject<{
+        formatted: z.ZodOptional<z.ZodString>;
+        street_address: z.ZodOptional<z.ZodString>;
+        locality: z.ZodOptional<z.ZodString>;
+        region: z.ZodOptional<z.ZodString>;
+        postal_code: z.ZodOptional<z.ZodString>;
+        country: z.ZodOptional<z.ZodString>;
+    }, "strip", z.ZodTypeAny, {
+        formatted?: string | undefined;
+        street_address?: string | undefined;
+        locality?: string | undefined;
+        region?: string | undefined;
+        postal_code?: string | undefined;
+        country?: string | undefined;
+    }, {
+        formatted?: string | undefined;
+        street_address?: string | undefined;
+        locality?: string | undefined;
+        region?: string | undefined;
+        postal_code?: string | undefined;
+        country?: string | undefined;
+    }>>;
+    authorization_details: z.ZodOptional<z.ZodArray<z.ZodObject<{
+        type: z.ZodString;
+        locations: z.ZodOptional<z.ZodArray<z.ZodString, "many">>;
+        actions: z.ZodOptional<z.ZodArray<z.ZodString, "many">>;
+        datatypes: z.ZodOptional<z.ZodArray<z.ZodString, "many">>;
+        identifier: z.ZodOptional<z.ZodString>;
+        privileges: z.ZodOptional<z.ZodArray<z.ZodString, "many">>;
+    }, "passthrough", z.ZodTypeAny, z.objectOutputType<{
+        type: z.ZodString;
+        locations: z.ZodOptional<z.ZodArray<z.ZodString, "many">>;
+        actions: z.ZodOptional<z.ZodArray<z.ZodString, "many">>;
+        datatypes: z.ZodOptional<z.ZodArray<z.ZodString, "many">>;
+        identifier: z.ZodOptional<z.ZodString>;
+        privileges: z.ZodOptional<z.ZodArray<z.ZodString, "many">>;
+    }, z.ZodTypeAny, "passthrough">, z.objectInputType<{
+        type: z.ZodString;
+        locations: z.ZodOptional<z.ZodArray<z.ZodString, "many">>;
+        actions: z.ZodOptional<z.ZodArray<z.ZodString, "many">>;
+        datatypes: z.ZodOptional<z.ZodArray<z.ZodString, "many">>;
+        identifier: z.ZodOptional<z.ZodString>;
+        privileges: z.ZodOptional<z.ZodArray<z.ZodString, "many">>;
+    }, z.ZodTypeAny, "passthrough">>, "many">>;
 }, {
     sub: z.ZodString;
-    client_id: z.ZodString;
-}>, z.ZodTypeAny, "passthrough">>>;
-export type TokenClaims = Simplify<z.infer<typeof tokenClaimsSchema>>;
-//# sourceMappingURL=token-claims.d.ts.map
+    deviceId: z.ZodEffects<z.ZodString, `dev-${string}`, string>;
+    requestUri: z.ZodOptional<z.ZodEffects<z.ZodString, `urn:ietf:params:oauth:request_uri:req-${string}`, string>>;
+}>, z.ZodTypeAny, "passthrough">>;
+export type ApiTokenPayload = z.infer<typeof apiTokenPayloadSchema>;
+//# sourceMappingURL=api-token-payload.d.ts.map