npm - @authhero/adapter-interfaces - Versions diffs - 0.110.0 → 0.112.0 - Mend

@authhero/adapter-interfaces 0.110.0 → 0.112.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (4) hide show

package/dist/adapter-interfaces.cjs +1 -1
package/dist/adapter-interfaces.d.ts +928 -16
package/dist/adapter-interfaces.mjs +377 -332
package/package.json +1 -1

package/dist/adapter-interfaces.mjs CHANGED Viewed

@@ -2,13 +2,13 @@ import { z as e } from "@hono/zod-openapi";
 const i = e.object({
   created_at: e.string(),
   updated_at: e.string()
-}), pt = e.enum(["AUTH0", "EMAIL"]), dt = e.enum([
+}), ut = e.enum(["AUTH0", "EMAIL", "REDIRECT"]), mt = e.enum([
   "CREATE_USER",
   "GET_USER",
   "UPDATE_USER",
   "SEND_REQUEST",
   "SEND_EMAIL"
-]), gt = e.enum(["VERIFY_EMAIL"]), U = e.object({
+]), ht = e.enum(["VERIFY_EMAIL"]), k = e.object({
   require_mx_record: e.boolean().optional(),
   block_aliases: e.boolean().optional(),
   block_free_emails: e.boolean().optional(),
@@ -36,26 +36,42 @@ const i = e.object({
   mask_output: e.boolean().optional(),
   params: e.object({
     email: e.string(),
-    rules: U.optional()
+    rules: k.optional()
   })
-}), x = e.union([
+}), x = e.enum(["change-email", "account", "custom"]), P = e.object({
+  id: e.string(),
+  alias: e.string().max(100).optional(),
+  type: e.literal("REDIRECT"),
+  action: e.literal("REDIRECT_USER"),
+  allow_failure: e.boolean().optional(),
+  mask_output: e.boolean().optional(),
+  params: e.object({
+    target: x.openapi({
+      description: "The predefined target to redirect to, or 'custom' for a custom URL"
+    }),
+    custom_url: e.string().optional().openapi({
+      description: "Custom URL to redirect to when target is 'custom'"
+    })
+  })
+}), M = e.union([
   F,
-  v
-]), P = e.object({
+  v,
+  P
+]), H = e.object({
   name: e.string().min(1).max(150).openapi({
     description: "The name of the flow"
   }),
   // Actions is an array of action steps (Auth0 stores as JSON blob)
-  actions: e.array(x).optional().default([]).openapi({
+  actions: e.array(M).optional().default([]).openapi({
     description: "The list of actions to execute in sequence"
   })
-}), ut = P.extend({
+}), bt = H.extend({
   ...i.shape,
   id: e.string().openapi({
     description: "Unique identifier for the flow",
     example: "af_12tMpdJ3iek7svMyZkSh5M"
   })
-}), mt = e.object({
+}), ft = e.object({
   page: e.string().min(0).optional().default("0").transform((t) => parseInt(t, 10)).openapi({
     description: "The page number where 0 is the first page"
   }),
@@ -71,11 +87,11 @@ const i = e.object({
   q: e.string().optional().openapi({
     description: "A lucene query string used to filter the results"
   })
-}), ht = e.object({
+}), Et = e.object({
   start: e.number(),
   limit: e.number(),
   length: e.number()
-}), M = e.object({
+}), G = e.object({
   email: e.string().optional(),
   email_verified: e.boolean().optional(),
   name: e.string().optional(),
@@ -84,7 +100,7 @@ const i = e.object({
   phone_number: e.string().optional(),
   phone_verified: e.boolean().optional(),
   family_name: e.string().optional()
-}).catchall(e.any()), H = e.object({
+}).catchall(e.any()), K = e.object({
   connection: e.string(),
   user_id: e.string(),
   provider: e.string(),
@@ -92,7 +108,7 @@ const i = e.object({
   access_token: e.string().optional(),
   access_token_secret: e.string().optional(),
   refresh_token: e.string().optional(),
-  profileData: M.optional()
+  profileData: G.optional()
 }), E = e.object({
   email: e.string().optional().transform((t) => t && t.toLowerCase()),
   username: e.string().optional(),
@@ -108,7 +124,7 @@ const i = e.object({
   user_id: e.string().optional(),
   app_metadata: e.any().default({}).optional(),
   user_metadata: e.any().default({}).optional()
-}), G = E.extend({
+}), B = E.extend({
   email_verified: e.boolean().default(!1),
   verify_email: e.boolean().optional(),
   last_ip: e.string().optional(),
@@ -117,29 +133,29 @@ const i = e.object({
   provider: e.string().optional(),
   connection: e.string(),
   is_social: e.boolean().optional()
-}), K = e.object({
-  ...G.shape,
+}), z = e.object({
+  ...B.shape,
   ...i.shape,
   user_id: e.string(),
   provider: e.string(),
   is_social: e.boolean(),
   email: e.string().optional(),
   login_count: e.number().default(0),
-  identities: e.array(H).optional()
-}), bt = K, ft = E.extend({
+  identities: e.array(K).optional()
+}), St = z, At = E.extend({
   login_count: e.number(),
   multifactor: e.array(e.string()).optional(),
   last_ip: e.string().optional(),
   last_login: e.string().optional(),
   user_id: e.string()
-}).catchall(e.any()), B = "useandom-26T198340PX75pxJACKVERYMINDBUSHWOLF_GQZbfghjklqvwyzrict";
-let z = (t = 21) => {
+}).catchall(e.any()), W = "useandom-26T198340PX75pxJACKVERYMINDBUSHWOLF_GQZbfghjklqvwyzrict";
+let X = (t = 21) => {
   let n = "", a = crypto.getRandomValues(new Uint8Array(t |= 0));
   for (; t--; )
-    n += B[a[t] & 63];
+    n += W[a[t] & 63];
   return n;
 };
-const W = e.object({
+const V = e.object({
   client_id: e.string().openapi({
     description: "ID of this client."
   }),
@@ -152,7 +168,7 @@ const W = e.object({
   global: e.boolean().default(!1).openapi({
     description: "Whether this is your global 'All Applications' client representing legacy tenant settings (true) or a regular client (false)."
   }),
-  client_secret: e.string().default(() => z()).optional().openapi({
+  client_secret: e.string().default(() => X()).optional().openapi({
     description: "Client secret (which you must not make public)."
   }),
   app_type: e.enum([
@@ -309,11 +325,11 @@ const W = e.object({
     description: "Specifies how long, in seconds, a Pushed Authorization Request URI remains valid"
   }),
   token_quota: e.record(e.any()).default({}).optional()
-}), X = e.object({
+}), q = e.object({
   created_at: e.string(),
   updated_at: e.string(),
-  ...W.shape
-}), V = e.object({
+  ...V.shape
+}), Y = e.object({
   client_id: e.string().min(1).openapi({
     description: "ID of the client."
   }),
@@ -338,14 +354,14 @@ const W = e.object({
   authorization_details_types: e.array(e.string()).optional().openapi({
     description: "Types of authorization_details allowed for this client grant. Use of this field is subject to the applicable Free Trial terms in Okta's Master Subscription Agreement."
   })
-}), q = e.object({
+}), Q = e.object({
   id: e.string().openapi({
     description: "ID of the client grant."
   }),
-  ...V.shape,
+  ...Y.shape,
   created_at: e.string().optional(),
   updated_at: e.string().optional()
-}), Et = e.array(q), c = e.object({
+}), It = e.array(Q), r = e.object({
   x: e.number(),
   y: e.number()
 });
@@ -354,7 +370,7 @@ const d = e.object({
   id: e.string(),
   category: e.nativeEnum(A),
   type: e.nativeEnum(S)
-}), Y = d.extend({
+}), J = d.extend({
   category: e.literal(
     "BLOCK"
     /* BLOCK */
@@ -366,7 +382,7 @@ const d = e.object({
   config: e.object({
     content: e.string()
   }).passthrough()
-}), Q = d.extend({
+}), Z = d.extend({
   category: e.literal(
     "BLOCK"
     /* BLOCK */
@@ -388,7 +404,7 @@ const d = e.object({
   config: e.object({
     text: e.string()
   }).passthrough()
-}), J = d.extend({
+}), $ = d.extend({
   category: e.literal(
     "FIELD"
     /* FIELD */
@@ -402,7 +418,7 @@ const d = e.object({
   config: e.object({
     text: e.string()
   }).passthrough()
-}), Z = d.extend({
+}), ee = d.extend({
   category: e.literal(
     "FIELD"
     /* FIELD */
@@ -455,78 +471,101 @@ const d = e.object({
     label: e.string().optional(),
     placeholder: e.string().optional()
   }).passthrough()
-}), $ = e.object({
+}), te = e.object({
   id: e.string(),
   category: e.string(),
   type: e.string()
-}).passthrough(), ee = e.union([
-  Y,
-  Q,
+}).passthrough(), oe = e.union([
   J,
   Z,
-  $
+  $,
+  ee,
+  te
 ]);
-var te = /* @__PURE__ */ ((t) => (t.STEP = "STEP", t.FLOW = "FLOW", t.CONDITION = "CONDITION", t.ACTION = "ACTION", t))(te || {});
-const oe = e.object({
+var ne = /* @__PURE__ */ ((t) => (t.STEP = "STEP", t.FLOW = "FLOW", t.CONDITION = "CONDITION", t.ACTION = "ACTION", t))(ne || {});
+const ie = e.object({
   id: e.string(),
   type: e.literal(
     "STEP"
     /* STEP */
   ),
-  coordinates: c,
+  coordinates: r,
   alias: e.string().optional(),
   config: e.object({
-    components: e.array(ee),
+    components: e.array(oe),
     next_node: e.string()
   }).passthrough()
-}), ne = e.object({
+}), ae = e.object({
   id: e.string(),
   type: e.literal(
     "FLOW"
     /* FLOW */
   ),
-  coordinates: c,
+  coordinates: r,
   alias: e.string().optional(),
   config: e.object({
     flow_id: e.string(),
     next_node: e.string()
   })
-}), ie = e.object({
+}), se = e.object({
+  id: e.string(),
+  type: e.literal(
+    "ACTION"
+    /* ACTION */
+  ),
+  coordinates: r,
+  alias: e.string().optional(),
+  config: e.object({
+    action_type: e.enum(["REDIRECT"]).openapi({
+      description: "The type of action to perform"
+    }),
+    target: e.enum(["change-email", "account", "custom"]).openapi({
+      description: "The predefined target to redirect to"
+    }),
+    custom_url: e.string().optional().openapi({
+      description: "Custom URL when target is 'custom'"
+    }),
+    next_node: e.string().openapi({
+      description: "The next node to navigate to after action (for non-redirect actions)"
+    })
+  }).passthrough()
+}), re = e.object({
   id: e.string(),
   type: e.string(),
-  coordinates: c
-}).passthrough(), ae = e.union([
-  oe,
-  ne,
-  ie
-]), se = e.object({
+  coordinates: r
+}).passthrough(), le = e.union([
+  ie,
+  ae,
+  se,
+  re
+]), ce = e.object({
   next_node: e.string(),
-  coordinates: c
-}).passthrough(), re = e.object({
+  coordinates: r
+}).passthrough(), pe = e.object({
   resume_flow: e.boolean().optional(),
-  coordinates: c
-}).passthrough(), le = e.object({
+  coordinates: r
+}).passthrough(), _e = e.object({
   id: e.string(),
   name: e.string(),
   languages: e.object({
     primary: e.string()
   }).passthrough(),
-  nodes: e.array(ae),
-  start: se,
-  ending: re,
+  nodes: e.array(le),
+  start: ce,
+  ending: pe,
   created_at: e.string(),
   updated_at: e.string(),
   links: e.object({
     sdkSrc: e.string().optional(),
     sdk_src: e.string().optional()
   }).passthrough()
-}).passthrough(), St = le.omit({
+}).passthrough(), Ct = _e.omit({
   id: !0,
   created_at: !0,
   updated_at: !0
 });
 var I = /* @__PURE__ */ ((t) => (t.TOKEN = "token", t.TOKEN_ID_TOKEN = "token id_token", t.CODE = "code", t))(I || {}), C = /* @__PURE__ */ ((t) => (t.QUERY = "query", t.FRAGMENT = "fragment", t.FORM_POST = "form_post", t.WEB_MESSAGE = "web_message", t.SAML_POST = "saml_post", t))(C || {}), O = /* @__PURE__ */ ((t) => (t.S256 = "S256", t.Plain = "plain", t))(O || {});
-const ce = e.object({
+const de = e.object({
   client_id: e.string(),
   act_as: e.string().optional(),
   response_type: e.nativeEnum(I).optional(),
@@ -544,7 +583,7 @@ const ce = e.object({
   ui_locales: e.string().optional(),
   // The following fields are not available in Auth0
   vendor_id: e.string().optional()
-}), At = e.object({
+}), Ot = e.object({
   colors: e.object({
     primary: e.string(),
     page_background: e.object({
@@ -560,7 +599,7 @@ const ce = e.object({
   font: e.object({
     url: e.string()
   }).optional()
-}), _e = e.object({
+}), ge = e.object({
   kid: e.string().optional(),
   team_id: e.string().optional(),
   realms: e.string().optional(),
@@ -580,23 +619,24 @@ const ce = e.object({
   twilio_sid: e.string().optional(),
   twilio_token: e.string().optional(),
   icon_url: e.string().optional()
-}), pe = e.object({
+}), ue = e.object({
   id: e.string().optional(),
   name: e.string(),
   display_name: e.string().optional(),
   strategy: e.string(),
-  options: _e.default({}),
+  options: ge.default({}),
   enabled_clients: e.array(e.string()).default([]).optional(),
   response_type: e.custom().optional(),
   response_mode: e.custom().optional(),
   is_domain_connection: e.boolean().optional(),
   show_as_button: e.boolean().optional(),
-  metadata: e.record(e.any()).optional()
-}), de = e.object({
+  metadata: e.record(e.any()).optional(),
+  is_system: e.boolean().optional()
+}), me = e.object({
   id: e.string(),
   created_at: e.string().transform((t) => t === null ? "" : t),
   updated_at: e.string().transform((t) => t === null ? "" : t)
-}).extend(pe.shape), ge = e.object({
+}).extend(ue.shape), he = e.object({
   id: e.string().optional(),
   // Basic settings
   audience: e.string(),
@@ -716,23 +756,23 @@ const ce = e.object({
   // Authorization settings
   pushed_authorization_requests_supported: e.boolean().optional(),
   authorization_response_iss_parameter_supported: e.boolean().optional()
-}), ue = e.object({
+}), be = e.object({
   created_at: e.string().nullable().transform((t) => t ?? ""),
   updated_at: e.string().nullable().transform((t) => t ?? ""),
-  ...ge.shape,
+  ...he.shape,
   id: e.string()
-}), It = e.object({
-  ...X.shape,
-  tenant: ue,
-  connections: e.array(de)
-}), me = e.enum([
+}), yt = e.object({
+  ...q.shape,
+  tenant: be,
+  connections: e.array(me)
+}), fe = e.enum([
   "password_reset",
   "email_verification",
   "otp",
   "authorization_code",
   "oauth2_state",
   "ticket"
-]), he = e.object({
+]), Ee = e.object({
   code_id: e.string().openapi({
     description: "The code that will be used in for instance an email verification flow"
   }),
@@ -742,7 +782,7 @@ const ce = e.object({
   connection_id: e.string().optional().openapi({
     description: "The connection that the code is connected to"
   }),
-  code_type: me,
+  code_type: fe,
   code_verifier: e.string().optional().openapi({
     description: "The code verifier used in PKCE in outbound flows"
   }),
@@ -764,10 +804,10 @@ const ce = e.object({
   expires_at: e.string(),
   used_at: e.string().optional(),
   user_id: e.string().optional()
-}), Ct = e.object({
-  ...he.shape,
+}), Tt = e.object({
+  ...Ee.shape,
   created_at: e.string()
-}), be = e.object({
+}), Se = e.object({
   domain: e.string(),
   custom_domain_id: e.string().optional(),
   type: e.enum(["auth0_managed_certs", "self_managed_certs"]),
@@ -781,23 +821,23 @@ const ce = e.object({
     "null"
   ]).optional(),
   domain_metadata: e.record(e.string().max(255)).optional()
-}), fe = e.object({
+}), Ae = e.object({
   name: e.literal("txt"),
   record: e.string(),
   domain: e.string()
-}), Ee = e.object({
-  ...be.shape,
+}), Ie = e.object({
+  ...Se.shape,
   custom_domain_id: e.string(),
   primary: e.boolean(),
   status: e.enum(["disabled", "pending", "pending_verification", "ready"]),
   origin_domain_name: e.string().optional(),
   verification: e.object({
-    methods: e.array(fe)
+    methods: e.array(Ae)
   }).optional(),
   tls_policy: e.string().optional()
-}), Ot = Ee.extend({
+}), Nt = Ie.extend({
   tenant_id: e.string()
-}), yt = e.object({
+}), Rt = e.object({
   id: e.string(),
   type: e.literal("submit"),
   label: e.string(),
@@ -812,25 +852,25 @@ const ce = e.object({
   visible: e.boolean().optional().default(!0)
 }), f = y.extend({
   category: e.literal("BLOCK").optional()
-}), l = y.extend({
+}), c = y.extend({
   category: e.literal("FIELD").optional(),
   required: e.boolean().optional(),
   sensitive: e.boolean().optional()
-}), Se = e.discriminatedUnion("type", [
+}), Ce = e.discriminatedUnion("type", [
   f.extend({
     type: e.literal("RICH_TEXT"),
     config: e.object({
       content: e.string()
     })
   }),
-  l.omit({ sensitive: !0 }).extend({
+  c.omit({ sensitive: !0 }).extend({
     type: e.literal("LEGAL"),
     config: e.object({
       text: e.string(),
       html: e.boolean().optional()
     })
   }),
-  l.extend({
+  c.extend({
     type: e.literal("TEXT"),
     config: e.object({
       placeholder: e.string().optional(),
@@ -843,21 +883,21 @@ const ce = e.object({
       text: e.string().optional()
     })
   }),
-  l.extend({
+  c.extend({
     type: e.literal("EMAIL"),
     config: e.object({
       label: e.string().optional(),
       placeholder: e.string().optional()
     })
   }),
-  l.extend({
+  c.extend({
     type: e.literal("NUMBER"),
     config: e.object({
       label: e.string().optional(),
       placeholder: e.string().optional()
     })
   }),
-  l.extend({
+  c.extend({
     type: e.literal("PHONE"),
     config: e.object({
       label: e.string().optional(),
@@ -865,7 +905,7 @@ const ce = e.object({
     })
   })
   // Add more component types as needed
-]), Ae = e.object({
+]), Oe = e.object({
   name: e.string().openapi({
     description: "The name of the form"
   }),
@@ -916,7 +956,7 @@ const ce = e.object({
         coordinates: e.object({ x: e.number(), y: e.number() }),
         alias: e.string().min(1).max(150).optional(),
         config: e.object({
-          components: e.array(Se),
+          components: e.array(Ce),
           next_node: e.string().optional()
         })
       })
@@ -939,9 +979,9 @@ const ce = e.object({
   style: e.object({ css: e.string().optional() }).optional()
 }).openapi({
   description: "Schema for flow-based forms (matches new JSON structure)"
-}), Tt = e.object({
+}), Lt = e.object({
   ...i.shape,
-  ...Ae.shape,
+  ...Oe.shape,
   id: e.string()
 }), T = e.enum([
   "pre-user-registration",
@@ -963,37 +1003,37 @@ const ce = e.object({
   synchronous: e.boolean().default(!1),
   priority: e.number().optional(),
   hook_id: e.string().optional()
-}, Ie = e.object({
+}, ye = e.object({
   ...g,
   trigger_id: T,
   url: e.string()
-}), Ce = e.object({
+}), Te = e.object({
   ...g,
   trigger_id: N,
   form_id: e.string()
-}), Nt = e.union([
-  Ie,
-  Ce
-]), Oe = e.object({
+}), Dt = e.union([
+  ye,
+  Te
+]), Ne = e.object({
   ...g,
   trigger_id: T,
   ...i.shape,
   hook_id: e.string(),
   url: e.string()
-}), ye = e.object({
+}), Re = e.object({
   ...g,
   trigger_id: N,
   ...i.shape,
   hook_id: e.string(),
   form_id: e.string()
-}), Rt = e.union([Oe, ye]), Te = e.object({
+}), wt = e.union([Ne, Re]), Le = e.object({
   name: e.string().optional()
-}), Ne = e.object({
+}), De = e.object({
   email: e.string().optional()
-}), Re = e.object({
+}), we = e.object({
   organization_id: e.string().max(50),
-  inviter: Te,
-  invitee: Ne,
+  inviter: Le,
+  invitee: De,
   invitation_url: e.string().url(),
   client_id: e.string(),
   connection_id: e.string().optional(),
@@ -1002,13 +1042,13 @@ const ce = e.object({
   ttl_sec: e.number().int().max(2592e3).default(604800).optional(),
   roles: e.array(e.string()).default([]).optional(),
   send_invitation_email: e.boolean().default(!0).optional()
-}), Lt = e.object({
+}), jt = e.object({
   id: e.string(),
   organization_id: e.string().max(50),
   created_at: e.string().datetime(),
   expires_at: e.string().datetime(),
   ticket_id: e.string().optional()
-}).extend(Re.shape), Le = e.object({
+}).extend(we.shape), je = e.object({
   alg: e.enum([
     "RS256",
     "RS384",
@@ -1027,9 +1067,9 @@ const ce = e.object({
   x5t: e.string().optional(),
   x5c: e.array(e.string()).optional(),
   use: e.enum(["sig", "enc"]).optional()
-}), Dt = e.object({
-  keys: e.array(Le)
-}), wt = e.object({
+}), Ut = e.object({
+  keys: e.array(je)
+}), kt = e.object({
   issuer: e.string(),
   authorization_endpoint: e.string(),
   token_endpoint: e.string(),
@@ -1050,10 +1090,10 @@ const ce = e.object({
   request_uri_parameter_supported: e.boolean(),
   request_parameter_supported: e.boolean(),
   token_endpoint_auth_signing_alg_values_supported: e.array(e.string())
-}), De = e.object({
+}), Ue = e.object({
   csrf_token: e.string(),
   auth0Client: e.string().optional(),
-  authParams: ce,
+  authParams: de,
   expires_at: e.string(),
   deleted_at: e.string().optional(),
   ip: e.string().optional(),
@@ -1063,14 +1103,14 @@ const ce = e.object({
   login_completed: e.boolean().optional().default(!1)
 }).openapi({
   description: "This represents a login sesion"
-}), jt = e.object({
-  ...De.shape,
+}), Ft = e.object({
+  ...Ue.shape,
   id: e.string().openapi({
     description: "This is is used as the state in the universal login"
   }),
   created_at: e.string(),
   updated_at: e.string()
-}), we = {
+}), ke = {
   // Network & System
   ACLS_SUMMARY: "acls_summary",
   ACTIONS_EXECUTION_FAILED: "actions_execution_failed",
@@ -1237,24 +1277,24 @@ const ce = e.object({
   WARNING_DURING_LOGIN: "w",
   WARNING_SENDING_NOTIFICATION: "wn",
   WARNING_USER_MANAGEMENT: "wum"
-}, je = e.string().refine(
-  (t) => Object.values(we).includes(t),
+}, Fe = e.string().refine(
+  (t) => Object.values(ke).includes(t),
   { message: "Invalid log type" }
-), ke = e.object({
+), ve = e.object({
   name: e.string(),
   version: e.string(),
   env: e.object({
     node: e.string().optional()
   }).optional()
-}), Ue = e.object({
+}), xe = e.object({
   country_code: e.string().length(2),
   city_name: e.string(),
   latitude: e.string(),
   longitude: e.string(),
   time_zone: e.string(),
   continent_code: e.string()
-}), Fe = e.object({
-  type: je,
+}), Pe = e.object({
+  type: Fe,
   date: e.string(),
   description: e.string().optional(),
   ip: e.string().optional(),
@@ -1273,19 +1313,19 @@ const ce = e.object({
   strategy: e.string().optional(),
   strategy_type: e.string().optional(),
   hostname: e.string().optional(),
-  auth0_client: ke.optional(),
+  auth0_client: ve.optional(),
   log_id: e.string().optional(),
-  location_info: Ue.optional()
-}), kt = e.object({
-  ...Fe.shape,
+  location_info: xe.optional()
+}), vt = e.object({
+  ...Pe.shape,
   log_id: e.string()
-}), ve = e.object({
+}), Me = e.object({
   id: e.string().optional(),
   user_id: e.string(),
   password: e.string(),
   algorithm: e.enum(["bcrypt", "argon2id"]).default("argon2id"),
   is_current: e.boolean().default(!0)
-}), Ut = ve.extend({
+}), xt = Me.extend({
   id: e.string(),
   created_at: e.string(),
   updated_at: e.string()
@@ -1296,7 +1336,7 @@ const ce = e.object({
   last_user_agent: e.string().describe("Last user agent of the device from which this user logged in"),
   last_ip: e.string().describe("Last IP address from which this user logged in"),
   last_asn: e.string().describe("Last autonomous system number from which this user logged in")
-}), xe = e.object({
+}), He = e.object({
   id: e.string(),
   revoked_at: e.string().optional(),
   used_at: e.string().optional(),
@@ -1308,13 +1348,13 @@ const ce = e.object({
     "Metadata related to the device used in the session"
   ),
   clients: e.array(e.string()).describe("List of client details for the session")
-}), Ft = e.object({
+}), Pt = e.object({
   created_at: e.string(),
   updated_at: e.string(),
   authenticated_at: e.string(),
   last_interaction_at: e.string(),
-  ...xe.shape
-}), vt = e.object({
+  ...He.shape
+}), Mt = e.object({
   kid: e.string().openapi({ description: "The key id of the signing key" }),
   cert: e.string().openapi({ description: "The public certificate of the signing key" }),
   fingerprint: e.string().openapi({ description: "The cert fingerprint" }),
@@ -1340,8 +1380,8 @@ const ce = e.object({
     description: "The type of the signing key"
   })
 });
-var Pe = /* @__PURE__ */ ((t) => (t.RefreshToken = "refresh_token", t.AuthorizationCode = "authorization_code", t.ClientCredential = "client_credentials", t.Passwordless = "passwordless", t.Password = "password", t.OTP = "http://auth0.com/oauth/grant-type/passwordless/otp", t))(Pe || {});
-const xt = e.object({
+var Ge = /* @__PURE__ */ ((t) => (t.RefreshToken = "refresh_token", t.AuthorizationCode = "authorization_code", t.ClientCredential = "client_credentials", t.Passwordless = "passwordless", t.Password = "password", t.OTP = "http://auth0.com/oauth/grant-type/passwordless/otp", t))(Ge || {});
+const Ht = e.object({
   access_token: e.string(),
   id_token: e.string().optional(),
   scope: e.string().optional(),
@@ -1354,7 +1394,7 @@ e.object({
   code: e.string(),
   state: e.string().optional()
 });
-const Me = e.object({
+const Ke = e.object({
   button_border_radius: e.number(),
   button_border_weight: e.number(),
   buttons_style: e.enum(["pill", "rounded", "sharp"]),
@@ -1364,7 +1404,7 @@ const Me = e.object({
   show_widget_shadow: e.boolean(),
   widget_border_weight: e.number(),
   widget_corner_radius: e.number()
-}), He = e.object({
+}), Be = e.object({
   base_focus_color: e.string(),
   base_hover_color: e.string(),
   body_text: e.string(),
@@ -1387,7 +1427,7 @@ const Me = e.object({
 }), s = e.object({
   bold: e.boolean(),
   size: e.number()
-}), Ge = e.object({
+}), ze = e.object({
   body_text: s,
   buttons_text: s,
   font_url: e.string(),
@@ -1397,31 +1437,31 @@ const Me = e.object({
   reference_text_size: e.number(),
   subtitle: s,
   title: s
-}), Ke = e.object({
+}), We = e.object({
   background_color: e.string(),
   background_image_url: e.string(),
   page_layout: e.enum(["center", "left", "right"])
-}), Be = e.object({
+}), Xe = e.object({
   header_text_alignment: e.enum(["center", "left", "right"]),
   logo_height: e.number(),
   logo_position: e.enum(["center", "left", "none", "right"]),
   logo_url: e.string(),
   social_buttons_layout: e.enum(["bottom", "top"])
-}), ze = e.object({
-  borders: Me,
-  colors: He,
+}), Ve = e.object({
+  borders: Ke,
+  colors: Be,
   displayName: e.string(),
-  fonts: Ge,
-  page_background: Ke,
-  widget: Be
-}), Pt = ze.extend({
+  fonts: ze,
+  page_background: We,
+  widget: Xe
+}), Gt = Ve.extend({
   themeId: e.string()
-}), Mt = e.object({
+}), Kt = e.object({
   universal_login_experience: e.enum(["new", "classic"]).default("new"),
   identifier_first: e.boolean().default(!0),
   password_first: e.boolean().default(!1),
   webauthn_platform_first_factor: e.boolean()
-}), Ht = e.object({
+}), Bt = e.object({
   name: e.string(),
   enabled: e.boolean().optional().default(!0),
   default_from_address: e.string().optional(),
@@ -1451,7 +1491,7 @@ const Me = e.object({
     })
   ]),
   settings: e.object({}).optional()
-}), We = e.object({
+}), qe = e.object({
   // The actual refresh token value (primary key).
   id: e.string(),
   // Link to the session record
@@ -1472,21 +1512,21 @@ const Me = e.object({
     })
   ),
   rotating: e.boolean()
-}), Gt = e.object({
+}), zt = e.object({
   // When the refresh token record was created.
   created_at: e.string(),
   // Spread in the rest of the refresh token properties.
-  ...We.shape
-}), Kt = e.object({
+  ...qe.shape
+}), Wt = e.object({
   to: e.string(),
   message: e.string()
-}), Bt = e.object({
+}), Xt = e.object({
   name: e.string(),
   options: e.object({})
-}), Xe = e.object({
+}), Ye = e.object({
   value: e.string(),
   description: e.string().optional()
-}), Ve = e.object({
+}), Qe = e.object({
   token_dialect: e.enum(["access_token", "access_token_authz"]).optional(),
   enforce_policies: e.boolean().optional(),
   allow_skipping_userinfo: e.boolean().optional(),
@@ -1496,10 +1536,10 @@ const Me = e.object({
   mtls: e.object({
     bound_access_tokens: e.boolean().optional()
   }).optional()
-}), qe = e.object({
+}), Je = e.object({
   name: e.string(),
   identifier: e.string(),
-  scopes: e.array(Xe).optional(),
+  scopes: e.array(Ye).optional(),
   signing_alg: e.string().optional(),
   signing_secret: e.string().optional(),
   token_lifetime: e.number().optional(),
@@ -1507,29 +1547,30 @@ const Me = e.object({
   skip_consent_for_verifiable_first_party_clients: e.boolean().optional(),
   allow_offline_access: e.boolean().optional(),
   verificationKey: e.string().optional(),
-  options: Ve.optional()
-}), Ye = e.object({
+  options: Qe.optional(),
+  is_system: e.boolean().optional()
+}), Ze = e.object({
   id: e.string().optional(),
-  ...qe.shape,
+  ...Je.shape,
   created_at: e.string().optional(),
   updated_at: e.string().optional()
-}), zt = e.array(Ye), Qe = e.object({
+}), Vt = e.array(Ze), $e = e.object({
   role_id: e.string(),
   resource_server_identifier: e.string(),
   permission_name: e.string()
-}), Je = e.object({
-  ...Qe.shape,
+}), et = e.object({
+  ...$e.shape,
   created_at: e.string()
-}), Wt = e.array(Je), Ze = e.object({
+}), qt = e.array(et), tt = e.object({
   user_id: e.string(),
   resource_server_identifier: e.string(),
   permission_name: e.string(),
   organization_id: e.string().optional()
-}), $e = e.object({
-  ...Ze.shape,
+}), ot = e.object({
+  ...tt.shape,
   tenant_id: e.string(),
   created_at: e.string().optional()
-}), Xt = e.array($e), et = e.object({
+}), Yt = e.array(ot), nt = e.object({
   user_id: e.string(),
   resource_server_identifier: e.string(),
   resource_server_name: e.string(),
@@ -1537,31 +1578,32 @@ const Me = e.object({
   description: e.string().nullable().optional(),
   created_at: e.string().optional(),
   organization_id: e.string().optional()
-}), Vt = e.array(
-  et
-), tt = e.object({
+}), Qt = e.array(
+  nt
+), it = e.object({
   user_id: e.string(),
   role_id: e.string(),
   organization_id: e.string().optional()
-}), ot = e.object({
-  ...tt.shape,
+}), at = e.object({
+  ...it.shape,
   tenant_id: e.string(),
   created_at: e.string().optional()
-}), qt = e.array(ot), nt = e.object({
+}), Jt = e.array(at), st = e.object({
   name: e.string().min(1).max(50).openapi({
     description: "The name of the role. Cannot include '<' or '>'"
   }),
   description: e.string().max(255).optional().openapi({
     description: "The description of the role"
-  })
-}), it = e.object({
+  }),
+  is_system: e.boolean().optional()
+}), rt = e.object({
   id: e.string().openapi({
     description: "The unique identifier of the role"
   }),
-  ...nt.shape,
+  ...st.shape,
   created_at: e.string().optional(),
   updated_at: e.string().optional()
-}), Yt = e.array(it), at = e.object({
+}), Zt = e.array(rt), lt = e.object({
   logo_url: e.string().optional().openapi({
     description: "URL of the organization's logo"
   }),
@@ -1573,7 +1615,7 @@ const Me = e.object({
       description: "Page background color in hex format (e.g., #FFFFFF)"
     })
   }).optional()
-}).optional(), st = e.object({
+}).optional(), ct = e.object({
   connection_id: e.string().openapi({
     description: "ID of the connection"
   }),
@@ -1586,7 +1628,7 @@ const Me = e.object({
   is_signup_enabled: e.boolean().default(!0).openapi({
     description: "Whether signup is enabled for this connection"
   })
-}), rt = e.object({
+}), pt = e.object({
   client_credentials: e.object({
     enforce: e.boolean().default(!1).openapi({
       description: "Whether to enforce token quota limits"
@@ -1598,7 +1640,7 @@ const Me = e.object({
       description: "Maximum tokens per hour (0 = unlimited)"
     })
   }).optional()
-}).optional(), lt = e.object({
+}).optional(), _t = e.object({
   id: e.string().optional(),
   name: e.string().min(1).openapi({
     description: "The name of the organization"
@@ -1606,30 +1648,30 @@ const Me = e.object({
   display_name: e.string().optional().openapi({
     description: "The display name of the organization"
   }),
-  branding: at,
+  branding: lt,
   metadata: e.record(e.any()).default({}).optional().openapi({
     description: "Custom metadata for the organization"
   }),
-  enabled_connections: e.array(st).default([]).optional().openapi({
+  enabled_connections: e.array(ct).default([]).optional().openapi({
     description: "List of enabled connections for the organization"
   }),
-  token_quota: rt
-}), Qt = e.object({
-  ...lt.shape,
+  token_quota: pt
+}), $t = e.object({
+  ..._t.shape,
   ...i.shape,
   id: e.string()
-}), ct = e.object({
+}), dt = e.object({
   user_id: e.string().openapi({
     description: "ID of the user"
   }),
   organization_id: e.string().openapi({
     description: "ID of the organization"
   })
-}), Jt = e.object({
-  ...ct.shape,
+}), eo = e.object({
+  ...dt.shape,
   ...i.shape,
   id: e.string()
-}), Zt = e.object({
+}), to = e.object({
   // Session settings
   idle_session_lifetime: e.number().optional(),
   session_lifetime: e.number().optional(),
@@ -1698,7 +1740,7 @@ const Me = e.object({
   sessions: e.object({
     oidc_logout_prompt_enabled: e.boolean().optional()
   }).optional()
-}), $t = e.object({
+}), oo = e.object({
   date: e.string().openapi({
     description: "Date these events occurred in ISO 8601 format",
     example: "2025-12-19"
@@ -1723,191 +1765,194 @@ const Me = e.object({
     description: "Approximate date and time the first event occurred in ISO 8601 format",
     example: "2025-12-19T00:00:00.000Z"
   })
-}), eo = e.number().openapi({
+}), no = e.number().openapi({
   description: "Number of active users in the last 30 days",
   example: 1234
 });
-function to(t) {
+function io(t) {
   const [n, a] = t.split("|");
   if (!n || !a)
     throw new Error(`Invalid user_id: ${t}`);
   return { connection: n, id: a };
 }
-function oo(t) {
+function ao(t) {
   const {
     primary: n,
     secondaries: a,
     syncMethods: L = ["create", "update", "remove", "delete", "set"]
   } = t, D = {
-    get(_, o) {
+    get(p, o) {
       if (typeof o == "symbol")
-        return _[o];
-      const p = _[o];
-      return typeof p != "function" ? p : L.includes(o) ? async (...u) => {
-        const w = await p.apply(_, u), m = [];
-        for (const r of a) {
-          const h = r.adapter[o];
+        return p[o];
+      const _ = p[o];
+      return typeof _ != "function" ? _ : L.includes(o) ? async (...u) => {
+        const w = await _.apply(p, u), m = [];
+        for (const l of a) {
+          const h = l.adapter[o];
           if (typeof h != "function")
             continue;
           const j = (async () => {
             try {
-              await h.apply(r.adapter, u);
+              await h.apply(l.adapter, u);
             } catch (b) {
               try {
-                r.onError ? r.onError(b, o, u) : console.error(
+                l.onError ? l.onError(b, o, u) : console.error(
                   `Passthrough adapter: secondary write failed for ${o}:`,
                   b
                 );
-              } catch (k) {
+              } catch (U) {
                 console.error(
                   `Passthrough adapter: onError handler threw for ${o}:`,
-                  k
+                  U
                 );
               }
             }
           })();
-          r.blocking && m.push(j);
+          l.blocking && m.push(j);
         }
         return m.length > 0 && await Promise.all(m), w;
-      } : p.bind(_);
+      } : _.bind(p);
     }
   };
   return new Proxy(n, D);
 }
-function no(t) {
+function so(t) {
   return t;
 }
 export {
-  dt as Auth0ActionEnum,
-  ke as Auth0Client,
+  mt as Auth0ActionEnum,
+  ve as Auth0Client,
   C as AuthorizationResponseMode,
   I as AuthorizationResponseType,
   O as CodeChallengeMethod,
   A as ComponentCategory,
   S as ComponentType,
-  gt as EmailActionEnum,
-  pt as FlowActionTypeEnum,
-  Pe as GrantType,
-  Ue as LocationInfo,
-  we as LogTypes,
-  te as NodeType,
-  eo as activeUsersResponseSchema,
-  St as auth0FlowInsertSchema,
-  le as auth0FlowSchema,
-  mt as auth0QuerySchema,
+  ht as EmailActionEnum,
+  ut as FlowActionTypeEnum,
+  Ge as GrantType,
+  xe as LocationInfo,
+  ke as LogTypes,
+  ne as NodeType,
+  x as RedirectTargetEnum,
+  se as actionNodeSchema,
+  no as activeUsersResponseSchema,
+  Ct as auth0FlowInsertSchema,
+  _e as auth0FlowSchema,
+  ft as auth0QuerySchema,
   F as auth0UpdateUserActionSchema,
-  bt as auth0UserResponseSchema,
-  ce as authParamsSchema,
+  St as auth0UserResponseSchema,
+  de as authParamsSchema,
   E as baseUserSchema,
-  Me as bordersSchema,
-  At as brandingSchema,
-  Q as buttonComponentSchema,
-  V as clientGrantInsertSchema,
-  Et as clientGrantListSchema,
-  q as clientGrantSchema,
-  W as clientInsertSchema,
-  X as clientSchema,
-  he as codeInsertSchema,
-  Ct as codeSchema,
-  me as codeTypeSchema,
-  He as colorsSchema,
-  ee as componentSchema,
-  pe as connectionInsertSchema,
-  _e as connectionOptionsSchema,
-  de as connectionSchema,
-  c as coordinatesSchema,
-  oo as createPassthroughAdapter,
-  no as createWriteOnlyAdapter,
-  be as customDomainInsertSchema,
-  Ee as customDomainSchema,
-  Ot as customDomainWithTenantIdSchema,
-  $t as dailyStatsSchema,
-  Ht as emailProviderSchema,
-  U as emailVerificationRulesSchema,
+  Ke as bordersSchema,
+  Ot as brandingSchema,
+  Z as buttonComponentSchema,
+  Y as clientGrantInsertSchema,
+  It as clientGrantListSchema,
+  Q as clientGrantSchema,
+  V as clientInsertSchema,
+  q as clientSchema,
+  Ee as codeInsertSchema,
+  Tt as codeSchema,
+  fe as codeTypeSchema,
+  Be as colorsSchema,
+  oe as componentSchema,
+  ue as connectionInsertSchema,
+  ge as connectionOptionsSchema,
+  me as connectionSchema,
+  r as coordinatesSchema,
+  ao as createPassthroughAdapter,
+  so as createWriteOnlyAdapter,
+  Se as customDomainInsertSchema,
+  Ie as customDomainSchema,
+  Nt as customDomainWithTenantIdSchema,
+  oo as dailyStatsSchema,
+  Bt as emailProviderSchema,
+  k as emailVerificationRulesSchema,
   v as emailVerifyActionSchema,
-  re as endingSchema,
-  Z as fieldComponentSchema,
-  x as flowActionStepSchema,
-  P as flowInsertSchema,
-  ne as flowNodeSchema,
-  ut as flowSchema,
+  pe as endingSchema,
+  ee as fieldComponentSchema,
+  M as flowActionStepSchema,
+  H as flowInsertSchema,
+  ae as flowNodeSchema,
+  bt as flowSchema,
   s as fontDetailsSchema,
-  Ge as fontsSchema,
-  yt as formControlSchema,
-  Ae as formInsertSchema,
-  Se as formNodeComponentDefinition,
-  Tt as formSchema,
-  $ as genericComponentSchema,
-  ie as genericNodeSchema,
-  Nt as hookInsertSchema,
-  Rt as hookSchema,
-  H as identitySchema,
-  Re as inviteInsertSchema,
-  Lt as inviteSchema,
-  Ne as inviteeSchema,
-  Te as inviterSchema,
-  Dt as jwksKeySchema,
-  Le as jwksSchema,
-  It as legacyClientSchema,
-  J as legalComponentSchema,
-  Fe as logInsertSchema,
-  kt as logSchema,
-  De as loginSessionInsertSchema,
-  jt as loginSessionSchema,
-  ae as nodeSchema,
-  wt as openIDConfigurationSchema,
-  at as organizationBrandingSchema,
-  st as organizationEnabledConnectionSchema,
-  lt as organizationInsertSchema,
-  Qt as organizationSchema,
-  rt as organizationTokenQuotaSchema,
-  Ke as pageBackgroundSchema,
-  to as parseUserId,
-  ve as passwordInsertSchema,
-  Ut as passwordSchema,
-  M as profileDataSchema,
-  Mt as promptSettingSchema,
-  We as refreshTokenInsertSchema,
-  Gt as refreshTokenSchema,
-  qe as resourceServerInsertSchema,
-  zt as resourceServerListSchema,
-  Ve as resourceServerOptionsSchema,
-  Ye as resourceServerSchema,
-  Xe as resourceServerScopeSchema,
-  Y as richTextComponentSchema,
-  nt as roleInsertSchema,
-  Yt as roleListSchema,
-  Qe as rolePermissionInsertSchema,
-  Wt as rolePermissionListSchema,
-  Je as rolePermissionSchema,
-  it as roleSchema,
-  xe as sessionInsertSchema,
-  Ft as sessionSchema,
-  vt as signingKeySchema,
-  Bt as smsProviderSchema,
-  Kt as smsSendParamsSchema,
-  se as startSchema,
-  oe as stepNodeSchema,
-  ge as tenantInsertSchema,
-  ue as tenantSchema,
-  Zt as tenantSettingsSchema,
-  ze as themeInsertSchema,
-  Pt as themeSchema,
-  xt as tokenResponseSchema,
-  ht as totalsSchema,
-  G as userInsertSchema,
-  ct as userOrganizationInsertSchema,
-  Jt as userOrganizationSchema,
-  Ze as userPermissionInsertSchema,
-  Xt as userPermissionListSchema,
-  $e as userPermissionSchema,
-  Vt as userPermissionWithDetailsListSchema,
-  et as userPermissionWithDetailsSchema,
-  ft as userResponseSchema,
-  tt as userRoleInsertSchema,
-  qt as userRoleListSchema,
-  ot as userRoleSchema,
-  K as userSchema,
-  fe as verificationMethodsSchema,
-  Be as widgetSchema
+  ze as fontsSchema,
+  Rt as formControlSchema,
+  Oe as formInsertSchema,
+  Ce as formNodeComponentDefinition,
+  Lt as formSchema,
+  te as genericComponentSchema,
+  re as genericNodeSchema,
+  Dt as hookInsertSchema,
+  wt as hookSchema,
+  K as identitySchema,
+  we as inviteInsertSchema,
+  jt as inviteSchema,
+  De as inviteeSchema,
+  Le as inviterSchema,
+  Ut as jwksKeySchema,
+  je as jwksSchema,
+  yt as legacyClientSchema,
+  $ as legalComponentSchema,
+  Pe as logInsertSchema,
+  vt as logSchema,
+  Ue as loginSessionInsertSchema,
+  Ft as loginSessionSchema,
+  le as nodeSchema,
+  kt as openIDConfigurationSchema,
+  lt as organizationBrandingSchema,
+  ct as organizationEnabledConnectionSchema,
+  _t as organizationInsertSchema,
+  $t as organizationSchema,
+  pt as organizationTokenQuotaSchema,
+  We as pageBackgroundSchema,
+  io as parseUserId,
+  Me as passwordInsertSchema,
+  xt as passwordSchema,
+  G as profileDataSchema,
+  Kt as promptSettingSchema,
+  P as redirectActionSchema,
+  qe as refreshTokenInsertSchema,
+  zt as refreshTokenSchema,
+  Je as resourceServerInsertSchema,
+  Vt as resourceServerListSchema,
+  Qe as resourceServerOptionsSchema,
+  Ze as resourceServerSchema,
+  Ye as resourceServerScopeSchema,
+  J as richTextComponentSchema,
+  st as roleInsertSchema,
+  Zt as roleListSchema,
+  $e as rolePermissionInsertSchema,
+  qt as rolePermissionListSchema,
+  et as rolePermissionSchema,
+  rt as roleSchema,
+  He as sessionInsertSchema,
+  Pt as sessionSchema,
+  Mt as signingKeySchema,
+  Xt as smsProviderSchema,
+  Wt as smsSendParamsSchema,
+  ce as startSchema,
+  ie as stepNodeSchema,
+  he as tenantInsertSchema,
+  be as tenantSchema,
+  to as tenantSettingsSchema,
+  Ve as themeInsertSchema,
+  Gt as themeSchema,
+  Ht as tokenResponseSchema,
+  Et as totalsSchema,
+  B as userInsertSchema,
+  dt as userOrganizationInsertSchema,
+  eo as userOrganizationSchema,
+  tt as userPermissionInsertSchema,
+  Yt as userPermissionListSchema,
+  ot as userPermissionSchema,
+  Qt as userPermissionWithDetailsListSchema,
+  nt as userPermissionWithDetailsSchema,
+  At as userResponseSchema,
+  it as userRoleInsertSchema,
+  Jt as userRoleListSchema,
+  at as userRoleSchema,
+  z as userSchema,
+  Ae as verificationMethodsSchema,
+  Xe as widgetSchema
 };