npm - @authhero/adapter-interfaces - Versions diffs - 0.135.0 → 0.136.0 - Mend

@authhero/adapter-interfaces 0.135.0 → 0.136.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (4) hide show

package/dist/adapter-interfaces.cjs +1 -1
package/dist/adapter-interfaces.d.ts +716 -30
package/dist/adapter-interfaces.mjs +520 -459
package/package.json +1 -1

package/dist/adapter-interfaces.mjs CHANGED Viewed

@@ -1,21 +1,21 @@
 import { z as e } from "@hono/zod-openapi";
-const p = e.object({
+const s = e.object({
   created_at: e.string(),
   updated_at: e.string()
-}), at = e.enum(["AUTH0", "EMAIL", "REDIRECT"]), st = e.enum([
+}), pt = e.enum(["AUTH0", "EMAIL", "REDIRECT"]), ct = e.enum([
   "CREATE_USER",
   "GET_USER",
   "UPDATE_USER",
   "SEND_REQUEST",
   "SEND_EMAIL"
-]), rt = e.enum(["VERIFY_EMAIL"]), B = e.object({
+]), _t = e.enum(["VERIFY_EMAIL"]), K = e.object({
   require_mx_record: e.boolean().optional(),
   block_aliases: e.boolean().optional(),
   block_free_emails: e.boolean().optional(),
   block_disposable_emails: e.boolean().optional(),
   blocklist: e.array(e.string()).optional(),
   allowlist: e.array(e.string()).optional()
-}), W = e.object({
+}), z = e.object({
   id: e.string(),
   alias: e.string().max(100).optional(),
   type: e.literal("AUTH0"),
@@ -27,7 +27,7 @@ const p = e.object({
     user_id: e.string(),
     changes: e.record(e.string(), e.any())
   })
-}), K = e.object({
+}), X = e.object({
   id: e.string(),
   alias: e.string().max(100).optional(),
   type: e.literal("EMAIL"),
@@ -36,9 +36,9 @@ const p = e.object({
   mask_output: e.boolean().optional(),
   params: e.object({
     email: e.string(),
-    rules: B.optional()
+    rules: K.optional()
   })
-}), z = e.enum(["change-email", "account", "custom"]), X = e.object({
+}), q = e.enum(["change-email", "account", "custom"]), V = e.object({
   id: e.string(),
   alias: e.string().max(100).optional(),
   type: e.literal("REDIRECT"),
@@ -46,32 +46,32 @@ const p = e.object({
   allow_failure: e.boolean().optional(),
   mask_output: e.boolean().optional(),
   params: e.object({
-    target: z.openapi({
+    target: q.openapi({
       description: "The predefined target to redirect to, or 'custom' for a custom URL"
     }),
     custom_url: e.string().optional().openapi({
       description: "Custom URL to redirect to when target is 'custom'"
     })
   })
-}), V = e.union([
-  W,
-  K,
-  X
-]), q = e.object({
+}), Y = e.union([
+  z,
+  X,
+  V
+]), Q = e.object({
   name: e.string().min(1).max(150).openapi({
     description: "The name of the flow"
   }),
   // Actions is an array of action steps (Auth0 stores as JSON blob)
-  actions: e.array(V).optional().default([]).openapi({
+  actions: e.array(Y).optional().default([]).openapi({
     description: "The list of actions to execute in sequence"
   })
-}), lt = q.extend({
-  ...p.shape,
+}), dt = Q.extend({
+  ...s.shape,
   id: e.string().openapi({
     description: "Unique identifier for the flow",
     example: "af_12tMpdJ3iek7svMyZkSh5M"
   })
-}), ct = e.object({
+}), gt = e.object({
   page: e.string().min(0).optional().default("0").transform((o) => parseInt(o, 10)).openapi({
     description: "The page number where 0 is the first page"
   }),
@@ -87,12 +87,12 @@ const p = e.object({
   q: e.string().optional().openapi({
     description: "A lucene query string used to filter the results"
   })
-}), pt = e.object({
+}), ut = e.object({
   start: e.number(),
   limit: e.number(),
   length: e.number(),
   total: e.number().optional()
-}), Y = e.object({
+}), J = e.object({
   email: e.string().optional(),
   email_verified: e.boolean().optional(),
   name: e.string().optional(),
@@ -101,7 +101,7 @@ const p = e.object({
   phone_number: e.string().optional(),
   phone_verified: e.boolean().optional(),
   family_name: e.string().optional()
-}).catchall(e.any()), Q = e.object({
+}).catchall(e.any()), Z = e.object({
   connection: e.string(),
   user_id: e.string(),
   provider: e.string(),
@@ -109,8 +109,8 @@ const p = e.object({
   access_token: e.string().optional(),
   access_token_secret: e.string().optional(),
   refresh_token: e.string().optional(),
-  profileData: Y.optional()
-}), J = e.object({
+  profileData: J.optional()
+}), $ = e.object({
   formatted: e.string().optional(),
   // Full mailing address
   street_address: e.string().optional(),
@@ -155,8 +155,8 @@ const p = e.object({
   zoneinfo: e.string().optional(),
   // e.g., "Europe/Paris"
   // OIDC address claim (OIDC Core 5.1.1)
-  address: J
-}), Z = N.extend({
+  address: $
+}), ee = N.extend({
   email_verified: e.boolean().default(!1),
   verify_email: e.boolean().optional(),
   last_ip: e.string().optional(),
@@ -171,29 +171,29 @@ const p = e.object({
     hash: e.string(),
     algorithm: e.string()
   }).optional()
-}), $ = e.object({
-  ...Z.omit({ password: !0 }).shape,
-  ...p.shape,
+}), oe = e.object({
+  ...ee.omit({ password: !0 }).shape,
+  ...s.shape,
   user_id: e.string(),
   provider: e.string(),
   is_social: e.boolean(),
   email: e.string().optional(),
   login_count: e.number().default(0),
-  identities: e.array(Q).optional()
-}), _t = $, dt = N.extend({
+  identities: e.array(Z).optional()
+}), mt = oe, ht = N.extend({
   login_count: e.number(),
   multifactor: e.array(e.string()).optional(),
   last_ip: e.string().optional(),
   last_login: e.string().optional(),
   user_id: e.string()
-}).catchall(e.any()), ee = "useandom-26T198340PX75pxJACKVERYMINDBUSHWOLF_GQZbfghjklqvwyzrict";
-let oe = (o = 21) => {
+}).catchall(e.any()), te = "useandom-26T198340PX75pxJACKVERYMINDBUSHWOLF_GQZbfghjklqvwyzrict";
+let ne = (o = 21) => {
   let n = "", i = crypto.getRandomValues(new Uint8Array(o |= 0));
   for (; o--; )
-    n += ee[i[o] & 63];
+    n += te[i[o] & 63];
   return n;
 };
-const te = e.object({
+const ie = e.object({
   client_id: e.string().openapi({
     description: "ID of this client."
   }),
@@ -206,7 +206,7 @@ const te = e.object({
   global: e.boolean().default(!1).openapi({
     description: "Whether this is your global 'All Applications' client representing legacy tenant settings (true) or a regular client (false)."
   }),
-  client_secret: e.string().default(() => oe()).optional().openapi({
+  client_secret: e.string().default(() => ne()).optional().openapi({
     description: "Client secret (which you must not make public)."
   }),
   app_type: e.enum([
@@ -366,11 +366,11 @@ const te = e.object({
     description: "Specifies how long, in seconds, a Pushed Authorization Request URI remains valid"
   }),
   token_quota: e.record(e.any()).default({}).optional()
-}), gt = e.object({
+}), bt = e.object({
   created_at: e.string(),
   updated_at: e.string(),
-  ...te.shape
-}), ne = e.object({
+  ...ie.shape
+}), ae = e.object({
   client_id: e.string().min(1).openapi({
     description: "ID of the client."
   }),
@@ -395,23 +395,23 @@ const te = e.object({
   authorization_details_types: e.array(e.string()).optional().openapi({
     description: "Types of authorization_details allowed for this client grant. Use of this field is subject to the applicable Free Trial terms in Okta's Master Subscription Agreement."
   })
-}), ie = e.object({
+}), re = e.object({
   id: e.string().openapi({
     description: "ID of the client grant."
   }),
-  ...ne.shape,
+  ...ae.shape,
   created_at: e.string().optional(),
   updated_at: e.string().optional()
-}), ut = e.array(ie), u = e.object({
+}), ft = e.array(re), u = e.object({
   x: e.number(),
   y: e.number()
 });
-var R = /* @__PURE__ */ ((o) => (o.RICH_TEXT = "RICH_TEXT", o.NEXT_BUTTON = "NEXT_BUTTON", o.BACK_BUTTON = "BACK_BUTTON", o.SUBMIT_BUTTON = "SUBMIT_BUTTON", o.DIVIDER = "DIVIDER", o.TEXT = "TEXT", o.EMAIL = "EMAIL", o.PASSWORD = "PASSWORD", o.NUMBER = "NUMBER", o.PHONE = "PHONE", o.DATE = "DATE", o.CHECKBOX = "CHECKBOX", o.RADIO = "RADIO", o.SELECT = "SELECT", o.HIDDEN = "HIDDEN", o.LEGAL = "LEGAL", o))(R || {}), w = /* @__PURE__ */ ((o) => (o.BLOCK = "BLOCK", o.FIELD = "FIELD", o))(w || {});
-const I = e.object({
+var R = /* @__PURE__ */ ((o) => (o.RICH_TEXT = "RICH_TEXT", o.NEXT_BUTTON = "NEXT_BUTTON", o.BACK_BUTTON = "BACK_BUTTON", o.SUBMIT_BUTTON = "SUBMIT_BUTTON", o.DIVIDER = "DIVIDER", o.TEXT = "TEXT", o.EMAIL = "EMAIL", o.PASSWORD = "PASSWORD", o.NUMBER = "NUMBER", o.PHONE = "PHONE", o.DATE = "DATE", o.CHECKBOX = "CHECKBOX", o.RADIO = "RADIO", o.SELECT = "SELECT", o.HIDDEN = "HIDDEN", o.LEGAL = "LEGAL", o))(R || {}), j = /* @__PURE__ */ ((o) => (o.BLOCK = "BLOCK", o.FIELD = "FIELD", o))(j || {});
+const y = e.object({
   id: e.string(),
-  category: e.nativeEnum(w),
+  category: e.nativeEnum(j),
   type: e.nativeEnum(R)
-}), ae = I.extend({
+}), se = y.extend({
   category: e.literal(
     "BLOCK"
     /* BLOCK */
@@ -423,7 +423,7 @@ const I = e.object({
   config: e.object({
     content: e.string()
   }).passthrough()
-}), se = I.extend({
+}), le = y.extend({
   category: e.literal(
     "BLOCK"
     /* BLOCK */
@@ -445,7 +445,7 @@ const I = e.object({
   config: e.object({
     text: e.string()
   }).passthrough()
-}), re = I.extend({
+}), pe = y.extend({
   category: e.literal(
     "FIELD"
     /* FIELD */
@@ -459,7 +459,7 @@ const I = e.object({
   config: e.object({
     text: e.string()
   }).passthrough()
-}), le = I.extend({
+}), ce = y.extend({
   category: e.literal(
     "FIELD"
     /* FIELD */
@@ -512,19 +512,19 @@ const I = e.object({
     label: e.string().optional(),
     placeholder: e.string().optional()
   }).passthrough()
-}), ce = e.object({
+}), _e = e.object({
   id: e.string(),
   category: e.string(),
   type: e.string()
-}).passthrough(), pe = e.union([
-  ae,
+}).passthrough(), de = e.union([
   se,
-  re,
   le,
-  ce
+  pe,
+  ce,
+  _e
 ]);
-var _e = /* @__PURE__ */ ((o) => (o.STEP = "STEP", o.FLOW = "FLOW", o.CONDITION = "CONDITION", o.ACTION = "ACTION", o))(_e || {});
-const de = e.object({
+var ge = /* @__PURE__ */ ((o) => (o.STEP = "STEP", o.FLOW = "FLOW", o.CONDITION = "CONDITION", o.ACTION = "ACTION", o))(ge || {});
+const ue = e.object({
   id: e.string(),
   type: e.literal(
     "STEP"
@@ -533,10 +533,10 @@ const de = e.object({
   coordinates: u,
   alias: e.string().optional(),
   config: e.object({
-    components: e.array(pe),
+    components: e.array(de),
     next_node: e.string()
   }).passthrough()
-}), ge = e.object({
+}), me = e.object({
   id: e.string(),
   type: e.literal(
     "FLOW"
@@ -548,7 +548,7 @@ const de = e.object({
     flow_id: e.string(),
     next_node: e.string()
   })
-}), ue = e.object({
+}), he = e.object({
   id: e.string(),
   type: e.literal(
     "ACTION"
@@ -570,47 +570,47 @@ const de = e.object({
       description: "The next node to navigate to after action (for non-redirect actions)"
     })
   }).passthrough()
-}), me = e.object({
+}), be = e.object({
   id: e.string(),
   type: e.string(),
   coordinates: u
-}).passthrough(), he = e.union([
-  de,
-  ge,
+}).passthrough(), fe = e.union([
   ue,
-  me
-]), be = e.object({
+  me,
+  he,
+  be
+]), Ee = e.object({
   next_node: e.string(),
   coordinates: u
-}).passthrough(), fe = e.object({
+}).passthrough(), Se = e.object({
   resume_flow: e.boolean().optional(),
   coordinates: u
-}).passthrough(), Ee = e.object({
+}).passthrough(), Ae = e.object({
   id: e.string(),
   name: e.string(),
   languages: e.object({
     primary: e.string()
   }).passthrough(),
-  nodes: e.array(he),
-  start: be,
-  ending: fe,
+  nodes: e.array(fe),
+  start: Ee,
+  ending: Se,
   created_at: e.string(),
   updated_at: e.string(),
   links: e.object({
     sdkSrc: e.string().optional(),
     sdk_src: e.string().optional()
   }).passthrough()
-}).passthrough(), mt = Ee.omit({
+}).passthrough(), Et = Ae.omit({
   id: !0,
   created_at: !0,
   updated_at: !0
 });
-var D = /* @__PURE__ */ ((o) => (o.TOKEN = "token", o.ID_TOKEN = "id_token", o.TOKEN_ID_TOKEN = "token id_token", o.CODE = "code", o))(D || {}), j = /* @__PURE__ */ ((o) => (o.QUERY = "query", o.FRAGMENT = "fragment", o.FORM_POST = "form_post", o.WEB_MESSAGE = "web_message", o.SAML_POST = "saml_post", o))(j || {}), L = /* @__PURE__ */ ((o) => (o.S256 = "S256", o.Plain = "plain", o))(L || {});
-const Se = e.object({
+var w = /* @__PURE__ */ ((o) => (o.TOKEN = "token", o.ID_TOKEN = "id_token", o.TOKEN_ID_TOKEN = "token id_token", o.CODE = "code", o))(w || {}), D = /* @__PURE__ */ ((o) => (o.QUERY = "query", o.FRAGMENT = "fragment", o.FORM_POST = "form_post", o.WEB_MESSAGE = "web_message", o.SAML_POST = "saml_post", o))(D || {}), L = /* @__PURE__ */ ((o) => (o.S256 = "S256", o.Plain = "plain", o))(L || {});
+const Ie = e.object({
   client_id: e.string(),
   act_as: e.string().optional(),
-  response_type: e.nativeEnum(D).optional(),
-  response_mode: e.nativeEnum(j).optional(),
+  response_type: e.nativeEnum(w).optional(),
+  response_mode: e.nativeEnum(D).optional(),
   redirect_uri: e.string().optional(),
   audience: e.string().optional(),
   organization: e.string().optional(),
@@ -630,7 +630,7 @@ const Se = e.object({
   acr_values: e.string().optional(),
   // The following fields are not available in Auth0
   vendor_id: e.string().optional()
-}), ht = e.object({
+}), St = e.object({
   colors: e.object({
     primary: e.string(),
     page_background: e.object({
@@ -646,14 +646,14 @@ const Se = e.object({
   font: e.object({
     url: e.string()
   }).optional()
-}), Ae = e.enum([
+}), ye = e.enum([
   "password_reset",
   "email_verification",
   "otp",
   "authorization_code",
   "oauth2_state",
   "ticket"
-]), Ie = e.object({
+]), Ce = e.object({
   code_id: e.string().openapi({
     description: "The code that will be used in for instance an email verification flow"
   }),
@@ -663,7 +663,7 @@ const Se = e.object({
   connection_id: e.string().optional().openapi({
     description: "The connection that the code is connected to"
   }),
-  code_type: Ae,
+  code_type: ye,
   code_verifier: e.string().optional().openapi({
     description: "The code verifier used in PKCE in outbound flows"
   }),
@@ -685,10 +685,10 @@ const Se = e.object({
   expires_at: e.string(),
   used_at: e.string().optional(),
   user_id: e.string().optional()
-}), bt = e.object({
-  ...Ie.shape,
+}), At = e.object({
+  ...Ce.shape,
   created_at: e.string()
-}), Ce = e.object({
+}), Te = e.object({
   kid: e.string().optional(),
   team_id: e.string().optional(),
   realms: e.string().optional(),
@@ -744,7 +744,10 @@ const Se = e.object({
       }).optional(),
       validation: e.object({
         allowed: e.boolean().optional()
-      }).optional()
+      }).optional(),
+      unique: e.boolean().optional(),
+      profile_required: e.boolean().optional(),
+      verification_method: e.enum(["link", "code"]).optional()
     }).optional(),
     username: e.object({
       identifier: e.object({
@@ -760,9 +763,33 @@ const Se = e.object({
           email: e.boolean().optional(),
           phone_number: e.boolean().optional()
         }).optional()
+      }).optional(),
+      profile_required: e.boolean().optional()
+    }).optional(),
+    phone_number: e.object({
+      identifier: e.object({
+        active: e.boolean().optional()
+      }).optional(),
+      signup: e.object({
+        status: e.enum(["required", "optional", "disabled"]).optional()
       }).optional()
     }).optional()
   }).optional(),
+  // Authentication methods for Username-Password-Authentication connections
+  authentication_methods: e.object({
+    password: e.object({
+      enabled: e.boolean().optional()
+    }).optional(),
+    passkey: e.object({
+      enabled: e.boolean().optional()
+    }).optional()
+  }).optional(),
+  // Passkey options for Username-Password-Authentication connections
+  passkey_options: e.object({
+    challenge_ui: e.enum(["both", "autofill", "button"]).optional(),
+    local_enrollment_enabled: e.boolean().optional(),
+    progressive_enrollment_enabled: e.boolean().optional()
+  }).optional(),
   // Legacy username options (deprecated, use attributes instead)
   requires_username: e.boolean().optional(),
   validation: e.object({
@@ -771,12 +798,12 @@ const Se = e.object({
       max: e.number().optional()
     }).optional()
   }).optional()
-}), ye = e.object({
+}), Oe = e.object({
   id: e.string().optional(),
   name: e.string(),
   display_name: e.string().optional(),
   strategy: e.string(),
-  options: Ce.default({}),
+  options: Te.default({}),
   enabled_clients: e.array(e.string()).default([]).optional(),
   response_type: e.custom().optional(),
   response_mode: e.custom().optional(),
@@ -784,11 +811,11 @@ const Se = e.object({
   show_as_button: e.boolean().optional(),
   metadata: e.record(e.any()).optional(),
   is_system: e.boolean().optional()
-}), ft = e.object({
+}), It = e.object({
   id: e.string(),
   created_at: e.string().transform((o) => o === null ? "" : o),
   updated_at: e.string().transform((o) => o === null ? "" : o)
-}).extend(ye.shape), Oe = e.object({
+}).extend(Oe.shape), Ne = e.object({
   domain: e.string(),
   custom_domain_id: e.string().optional(),
   type: e.enum(["auth0_managed_certs", "self_managed_certs"]),
@@ -802,37 +829,37 @@ const Se = e.object({
     "null"
   ]).optional(),
   domain_metadata: e.record(e.string().max(255)).optional()
-}), Te = e.object({
+}), Re = e.object({
   name: e.literal("txt"),
   record: e.string(),
   domain: e.string()
-}), Ne = e.object({
-  ...Oe.shape,
+}), je = e.object({
+  ...Ne.shape,
   custom_domain_id: e.string(),
   primary: e.boolean(),
   status: e.enum(["disabled", "pending", "pending_verification", "ready"]),
   origin_domain_name: e.string().optional(),
   verification: e.object({
-    methods: e.array(Te)
+    methods: e.array(Re)
   }).optional(),
   tls_policy: e.string().optional()
-}), Et = Ne.extend({
+}), yt = je.extend({
   tenant_id: e.string()
-}), y = e.object({
+}), C = e.object({
   id: e.string(),
   order: e.number().optional(),
   visible: e.boolean().optional().default(!0)
-}), r = y.extend({
+}), l = C.extend({
   category: e.literal("BLOCK").optional()
-}), Re = r.extend({
+}), we = l.extend({
   type: e.literal("DIVIDER"),
   config: e.object({}).optional()
-}), we = r.extend({
+}), De = l.extend({
   type: e.literal("HTML"),
   config: e.object({
     content: e.string().optional()
   }).optional()
-}), De = r.extend({
+}), Le = l.extend({
   type: e.literal("IMAGE"),
   config: e.object({
     src: e.string().optional(),
@@ -840,66 +867,66 @@ const Se = e.object({
     width: e.number().optional(),
     height: e.number().optional()
   }).optional()
-}), je = r.extend({
+}), ve = l.extend({
   type: e.literal("JUMP_BUTTON"),
   config: e.object({
     text: e.string().optional(),
     target_step: e.string().optional()
   })
-}), Le = r.extend({
+}), ke = l.extend({
   type: e.literal("RESEND_BUTTON"),
   config: e.object({
     text: e.string().optional(),
     resend_action: e.string().optional()
   })
-}), ve = r.extend({
+}), Ue = l.extend({
   type: e.literal("NEXT_BUTTON"),
   config: e.object({
     text: e.string().optional()
   })
-}), ke = r.extend({
+}), Fe = l.extend({
   type: e.literal("PREVIOUS_BUTTON"),
   config: e.object({
     text: e.string().optional()
   })
-}), Ue = r.extend({
+}), xe = l.extend({
   type: e.literal("RICH_TEXT"),
   config: e.object({
     content: e.string().optional()
   }).optional()
-}), O = y.extend({
+}), T = C.extend({
   category: e.literal("WIDGET").optional(),
   label: e.string().min(1).optional(),
   hint: e.string().min(1).max(500).optional(),
   required: e.boolean().optional(),
   sensitive: e.boolean().optional()
-}), Fe = O.extend({
+}), Pe = T.extend({
   type: e.literal("AUTH0_VERIFIABLE_CREDENTIALS"),
   config: e.object({
     credential_type: e.string().optional()
   })
-}), xe = O.extend({
+}), Me = T.extend({
   type: e.literal("GMAPS_ADDRESS"),
   config: e.object({
     api_key: e.string().optional()
   })
-}), Pe = O.extend({
+}), He = T.extend({
   type: e.literal("RECAPTCHA"),
   config: e.object({
     site_key: e.string().optional()
   })
-}), t = y.extend({
+}), t = C.extend({
   category: e.literal("FIELD").optional(),
   label: e.string().min(1).optional(),
   hint: e.string().min(1).max(500).optional(),
   required: e.boolean().optional(),
   sensitive: e.boolean().optional()
-}), Me = t.extend({
+}), Ge = t.extend({
   type: e.literal("BOOLEAN"),
   config: e.object({
     default_value: e.boolean().optional()
   }).optional()
-}), He = t.extend({
+}), Be = t.extend({
   type: e.literal("CARDS"),
   config: e.object({
     options: e.array(
@@ -912,7 +939,7 @@ const Se = e.object({
     ).optional(),
     multi_select: e.boolean().optional()
   }).optional()
-}), Ge = t.extend({
+}), We = t.extend({
   type: e.literal("CHOICE"),
   config: e.object({
     options: e.array(
@@ -925,7 +952,7 @@ const Se = e.object({
     multiple: e.boolean().optional(),
     default_value: e.union([e.string(), e.array(e.string())]).optional()
   }).optional()
-}), Be = t.extend({
+}), Ke = t.extend({
   type: e.literal("CUSTOM"),
   config: e.object({
     component: e.string().optional(),
@@ -933,7 +960,7 @@ const Se = e.object({
     schema: e.record(e.any()).optional(),
     code: e.string().optional()
   })
-}), We = t.extend({
+}), ze = t.extend({
   type: e.literal("DATE"),
   config: e.object({
     format: e.string().optional(),
@@ -941,7 +968,7 @@ const Se = e.object({
     max: e.string().optional(),
     default_value: e.string().optional()
   }).optional()
-}), Ke = t.extend({
+}), Xe = t.extend({
   type: e.literal("DROPDOWN"),
   config: e.object({
     options: e.array(
@@ -955,26 +982,26 @@ const Se = e.object({
     multiple: e.boolean().optional(),
     default_value: e.union([e.string(), e.array(e.string())]).optional()
   }).optional()
-}), ze = t.extend({
+}), qe = t.extend({
   type: e.literal("EMAIL"),
   config: e.object({
     placeholder: e.string().optional(),
     default_value: e.string().optional()
   }).optional()
-}), Xe = t.extend({
+}), Ve = t.extend({
   type: e.literal("FILE"),
   config: e.object({
     accept: e.string().optional(),
     max_size: e.number().optional(),
     multiple: e.boolean().optional()
   }).optional()
-}), Ve = t.extend({
+}), Ye = t.extend({
   type: e.literal("LEGAL"),
   config: e.object({
     text: e.string(),
     html: e.boolean().optional()
   }).optional()
-}), qe = t.extend({
+}), Qe = t.extend({
   type: e.literal("NUMBER"),
   config: e.object({
     placeholder: e.string().optional(),
@@ -983,7 +1010,7 @@ const Se = e.object({
     step: e.number().optional(),
     default_value: e.string().optional()
   }).optional()
-}), Ye = t.extend({
+}), Je = t.extend({
   type: e.literal("PASSWORD"),
   config: e.object({
     placeholder: e.string().optional(),
@@ -992,13 +1019,13 @@ const Se = e.object({
     forgot_password_link: e.string().optional(),
     default_value: e.string().optional()
   }).optional()
-}), Qe = t.extend({
+}), Ze = t.extend({
   type: e.literal("PAYMENT"),
   config: e.object({
     provider: e.string().optional(),
     currency: e.string().optional()
   }).optional()
-}), Je = t.extend({
+}), $e = t.extend({
   type: e.literal("SOCIAL"),
   config: e.object({
     providers: e.array(e.string()).optional(),
@@ -1012,14 +1039,14 @@ const Se = e.object({
       })
     ).optional()
   }).optional()
-}), Ze = t.extend({
+}), eo = t.extend({
   type: e.literal("TEL"),
   config: e.object({
     placeholder: e.string().optional(),
     default_country: e.string().optional(),
     default_value: e.string().optional()
   }).optional()
-}), $e = t.extend({
+}), oo = t.extend({
   type: e.literal("TEXT"),
   config: e.object({
     placeholder: e.string().optional(),
@@ -1027,47 +1054,47 @@ const Se = e.object({
     max_length: e.number().optional(),
     default_value: e.string().optional()
   }).optional()
-}), eo = t.extend({
+}), to = t.extend({
   type: e.literal("URL"),
   config: e.object({
     placeholder: e.string().optional(),
     default_value: e.string().optional()
   }).optional()
-}), oo = e.discriminatedUnion("type", [
-  Re,
+}), no = e.discriminatedUnion("type", [
   we,
   De,
-  je,
   Le,
   ve,
   ke,
-  Ue
-]), to = e.discriminatedUnion("type", [
+  Ue,
   Fe,
-  xe,
-  Pe
-]), no = e.discriminatedUnion("type", [
+  xe
+]), io = e.discriminatedUnion("type", [
+  Pe,
   Me,
-  He,
+  He
+]), ao = e.discriminatedUnion("type", [
   Ge,
   Be,
   We,
   Ke,
   ze,
   Xe,
-  Ve,
   qe,
+  Ve,
   Ye,
   Qe,
   Je,
   Ze,
   $e,
-  eo
-]), v = e.union([
+  eo,
   oo,
-  to,
-  no
-]), St = /* @__PURE__ */ new Set([
+  to
+]), v = e.union([
+  no,
+  io,
+  ao
+]), Ct = /* @__PURE__ */ new Set([
   "BOOLEAN",
   "CARDS",
   "CHOICE",
@@ -1080,7 +1107,7 @@ const Se = e.object({
   "TEL",
   "TEXT",
   "URL"
-]), At = e.object({
+]), Tt = e.object({
   id: e.string(),
   type: e.literal("submit"),
   label: e.string(),
@@ -1089,22 +1116,22 @@ const Se = e.object({
   order: e.number().optional(),
   visible: e.boolean().optional().default(!0),
   customizations: e.record(e.string(), e.any()).optional()
-}), b = e.object({
+}), f = e.object({
   x: e.number(),
   y: e.number()
-}), io = e.object({
+}), ro = e.object({
   id: e.string(),
   type: e.literal("FLOW"),
-  coordinates: b,
+  coordinates: f,
   alias: e.string().min(1).max(150).optional(),
   config: e.object({
     flow_id: e.string().max(30),
     next_node: e.string().optional()
   })
-}), ao = e.object({
+}), so = e.object({
   id: e.string(),
   type: e.literal("ROUTER"),
-  coordinates: b,
+  coordinates: f,
   alias: e.string().min(1).max(150),
   config: e.object({
     rules: e.array(
@@ -1117,20 +1144,20 @@ const Se = e.object({
     ),
     fallback: e.string()
   })
-}), so = e.object({
+}), lo = e.object({
   id: e.string(),
   type: e.literal("STEP"),
-  coordinates: b,
+  coordinates: f,
   alias: e.string().min(1).max(150).optional(),
   config: e.object({
     components: e.array(v),
     next_node: e.string().optional()
   })
-}), ro = e.discriminatedUnion("type", [
-  io,
-  ao,
-  so
-]), lo = e.object({
+}), po = e.discriminatedUnion("type", [
+  ro,
+  so,
+  lo
+]), co = e.object({
   name: e.string().openapi({
     description: "The name of the form"
   }),
@@ -1143,11 +1170,11 @@ const Se = e.object({
     default: e.string().optional()
   }).optional(),
   translations: e.record(e.string(), e.any()).optional(),
-  nodes: e.array(ro).optional(),
+  nodes: e.array(po).optional(),
   start: e.object({
     hidden_fields: e.array(e.object({ key: e.string(), value: e.string() })).optional(),
     next_node: e.string().optional(),
-    coordinates: b.optional()
+    coordinates: f.optional()
   }).optional(),
   ending: e.object({
     redirection: e.object({
@@ -1155,7 +1182,7 @@ const Se = e.object({
       target: e.string().optional()
     }).optional(),
     after_submit: e.object({ flow_id: e.string().optional() }).optional(),
-    coordinates: b.optional(),
+    coordinates: f.optional(),
     resume_flow: e.boolean().optional()
   }).optional(),
   style: e.object({ css: e.string().optional() }).optional(),
@@ -1165,20 +1192,20 @@ const Se = e.object({
   }).optional()
 }).openapi({
   description: "Schema for flow-based forms (matches Auth0 Forms structure)"
-}), It = e.object({
-  ...p.shape,
-  ...lo.shape,
+}), Ot = e.object({
+  ...s.shape,
+  ...co.shape,
   id: e.string()
-}), co = e.object({
+}), _o = e.object({
   id: e.number().optional(),
   text: e.string(),
   type: e.enum(["info", "error", "success", "warning"])
-}), po = e.object({
+}), go = e.object({
   id: e.string().optional(),
   text: e.string(),
   href: e.string(),
   linkText: e.string().optional()
-}), Ct = e.object({
+}), Nt = e.object({
   /** Screen identifier for CSS targeting (e.g., 'identifier', 'enter-password', 'signup') */
   name: e.string().optional(),
   action: e.string(),
@@ -1186,18 +1213,18 @@ const Se = e.object({
   title: e.string().optional(),
   description: e.string().optional(),
   components: e.array(v),
-  messages: e.array(co).optional(),
-  links: e.array(po).optional(),
+  messages: e.array(_o).optional(),
+  links: e.array(go).optional(),
   /** Footer HTML content displayed at the very bottom of the widget (e.g., terms and conditions) */
   footer: e.string().optional()
 });
-function yt(o) {
+function Rt(o) {
   return o.category === "BLOCK";
 }
-function Ot(o) {
+function jt(o) {
   return o.category === "WIDGET";
 }
-function Tt(o) {
+function wt(o) {
   return o.category === "FIELD";
 }
 const k = e.enum([
@@ -1215,42 +1242,74 @@ const k = e.enum([
   "validate-registration-username",
   "pre-user-deletion",
   "post-user-deletion"
-]), C = {
+]), F = e.enum([
+  "post-user-login",
+  "credentials-exchange"
+]), x = e.enum([
+  "ensure-username",
+  "set-preferred-username"
+]), Dt = {
+  "ensure-username": {
+    name: "Ensure Username",
+    description: "Automatically assigns a username to users who sign in without one. Creates a linked username account for social/email users.",
+    trigger_id: "post-user-login"
+  },
+  "set-preferred-username": {
+    name: "Set Preferred Username",
+    description: "Sets the preferred_username claim on tokens based on the username from the primary or linked user.",
+    trigger_id: "credentials-exchange"
+  }
+}, m = {
   enabled: e.boolean().default(!1),
   synchronous: e.boolean().default(!1),
   priority: e.number().optional(),
   hook_id: e.string().optional()
-}, _o = e.object({
-  ...C,
+}, uo = e.object({
+  ...m,
   trigger_id: k,
   url: e.string()
-}), go = e.object({
-  ...C,
+}), mo = e.object({
+  ...m,
   trigger_id: U,
   form_id: e.string()
-}), Nt = e.union([
-  _o,
-  go
-]), uo = e.object({
-  ...C,
+}), ho = e.object({
+  ...m,
+  trigger_id: F,
+  template_id: x
+}), Lt = e.union([
+  uo,
+  mo,
+  ho
+]), bo = e.object({
+  ...m,
   trigger_id: k,
-  ...p.shape,
+  ...s.shape,
   hook_id: e.string(),
   url: e.string()
-}), mo = e.object({
-  ...C,
+}), fo = e.object({
+  ...m,
   trigger_id: U,
-  ...p.shape,
+  ...s.shape,
   hook_id: e.string(),
   form_id: e.string()
-}), Rt = e.union([uo, mo]), ho = e.object({
+}), Eo = e.object({
+  ...m,
+  trigger_id: F,
+  ...s.shape,
+  hook_id: e.string(),
+  template_id: x
+}), vt = e.union([
+  bo,
+  fo,
+  Eo
+]), So = e.object({
   name: e.string().optional()
-}), bo = e.object({
+}), Ao = e.object({
   email: e.string().optional()
-}), fo = e.object({
+}), Io = e.object({
   organization_id: e.string().max(50),
-  inviter: ho,
-  invitee: bo,
+  inviter: So,
+  invitee: Ao,
   invitation_url: e.string().url(),
   client_id: e.string(),
   connection_id: e.string().optional(),
@@ -1259,13 +1318,13 @@ const k = e.enum([
   ttl_sec: e.number().int().max(2592e3).default(604800).optional(),
   roles: e.array(e.string()).default([]).optional(),
   send_invitation_email: e.boolean().default(!0).optional()
-}), wt = e.object({
+}), kt = e.object({
   id: e.string(),
   organization_id: e.string().max(50),
   created_at: e.string().datetime(),
   expires_at: e.string().datetime(),
   ticket_id: e.string().optional()
-}).extend(fo.shape), Eo = e.object({
+}).extend(Io.shape), yo = e.object({
   alg: e.enum([
     "RS256",
     "RS384",
@@ -1284,9 +1343,9 @@ const k = e.enum([
   x5t: e.string().optional(),
   x5c: e.array(e.string()).optional(),
   use: e.enum(["sig", "enc"]).optional()
-}), Dt = e.object({
-  keys: e.array(Eo)
-}), jt = e.object({
+}), Ut = e.object({
+  keys: e.array(yo)
+}), Ft = e.object({
   issuer: e.string(),
   authorization_endpoint: e.string(),
   token_endpoint: e.string(),
@@ -1308,18 +1367,18 @@ const k = e.enum([
   request_parameter_supported: e.boolean(),
   token_endpoint_auth_signing_alg_values_supported: e.array(e.string())
 });
-var F = /* @__PURE__ */ ((o) => (o.PENDING = "pending", o.AUTHENTICATED = "authenticated", o.AWAITING_EMAIL_VERIFICATION = "awaiting_email_verification", o.AWAITING_HOOK = "awaiting_hook", o.AWAITING_CONTINUATION = "awaiting_continuation", o.COMPLETED = "completed", o.FAILED = "failed", o.EXPIRED = "expired", o))(F || {});
-const So = e.nativeEnum(F), Ao = e.object({
+var P = /* @__PURE__ */ ((o) => (o.PENDING = "pending", o.AUTHENTICATED = "authenticated", o.AWAITING_EMAIL_VERIFICATION = "awaiting_email_verification", o.AWAITING_HOOK = "awaiting_hook", o.AWAITING_CONTINUATION = "awaiting_continuation", o.COMPLETED = "completed", o.FAILED = "failed", o.EXPIRED = "expired", o))(P || {});
+const Co = e.nativeEnum(P), To = e.object({
   csrf_token: e.string(),
   auth0Client: e.string().optional(),
-  authParams: Se,
+  authParams: Ie,
   expires_at: e.string(),
   deleted_at: e.string().optional(),
   ip: e.string().optional(),
   useragent: e.string().optional(),
   session_id: e.string().optional(),
   authorization_url: e.string().optional(),
-  state: So.optional().default(
+  state: Co.optional().default(
     "pending"
     /* PENDING */
   ),
@@ -1330,14 +1389,14 @@ const So = e.nativeEnum(F), Ao = e.object({
   // Set once user is authenticated
 }).openapi({
   description: "This represents a login sesion"
-}), Lt = e.object({
-  ...Ao.shape,
+}), xt = e.object({
+  ...To.shape,
   id: e.string().openapi({
     description: "This is is used as the state in the universal login"
   }),
   created_at: e.string(),
   updated_at: e.string()
-}), Io = {
+}), Oo = {
   // Network & System
   ACLS_SUMMARY: "acls_summary",
   ACTIONS_EXECUTION_FAILED: "actions_execution_failed",
@@ -1508,24 +1567,24 @@ const So = e.nativeEnum(F), Ao = e.object({
   WARNING_DURING_LOGIN: "w",
   WARNING_SENDING_NOTIFICATION: "wn",
   WARNING_USER_MANAGEMENT: "wum"
-}, Co = e.string().refine(
-  (o) => Object.values(Io).includes(o),
+}, No = e.string().refine(
+  (o) => Object.values(Oo).includes(o),
   { message: "Invalid log type" }
-), yo = e.object({
+), Ro = e.object({
   name: e.string(),
   version: e.string(),
   env: e.object({
     node: e.string().optional()
   }).optional()
-}), Oo = e.object({
+}), jo = e.object({
   country_code: e.string().length(2),
   city_name: e.string(),
   latitude: e.string(),
   longitude: e.string(),
   time_zone: e.string(),
   continent_code: e.string()
-}), To = e.object({
-  type: Co,
+}), wo = e.object({
+  type: No,
   date: e.string(),
   description: e.string().optional(),
   ip: e.string().optional(),
@@ -1544,30 +1603,30 @@ const So = e.nativeEnum(F), Ao = e.object({
   strategy: e.string().optional(),
   strategy_type: e.string().optional(),
   hostname: e.string().optional(),
-  auth0_client: yo.optional(),
+  auth0_client: Ro.optional(),
   log_id: e.string().optional(),
-  location_info: Oo.optional()
-}), vt = e.object({
-  ...To.shape,
+  location_info: jo.optional()
+}), Pt = e.object({
+  ...wo.shape,
   log_id: e.string()
-}), No = e.object({
+}), Do = e.object({
   id: e.string().optional(),
   user_id: e.string(),
   password: e.string(),
   algorithm: e.enum(["bcrypt", "argon2id"]).default("argon2id"),
   is_current: e.boolean().default(!0)
-}), kt = No.extend({
+}), Mt = Do.extend({
   id: e.string(),
   created_at: e.string(),
   updated_at: e.string()
-}), x = e.object({
+}), M = e.object({
   initial_user_agent: e.string().describe("First user agent of the device from which this user logged in"),
   initial_ip: e.string().describe("First IP address associated with this session"),
   initial_asn: e.string().describe("First autonomous system number associated with this session"),
   last_user_agent: e.string().describe("Last user agent of the device from which this user logged in"),
   last_ip: e.string().describe("Last IP address from which this user logged in"),
   last_asn: e.string().describe("Last autonomous system number from which this user logged in")
-}), Ro = e.object({
+}), Lo = e.object({
   id: e.string(),
   revoked_at: e.string().optional(),
   used_at: e.string().optional(),
@@ -1575,17 +1634,17 @@ const So = e.nativeEnum(F), Ao = e.object({
   expires_at: e.string().optional(),
   login_session_id: e.string(),
   idle_expires_at: e.string().optional(),
-  device: x.describe(
+  device: M.describe(
     "Metadata related to the device used in the session"
   ),
   clients: e.array(e.string()).describe("List of client details for the session")
-}), Ut = e.object({
+}), Ht = e.object({
   created_at: e.string(),
   updated_at: e.string(),
   authenticated_at: e.string(),
   last_interaction_at: e.string(),
-  ...Ro.shape
-}), Ft = e.object({
+  ...Lo.shape
+}), Gt = e.object({
   kid: e.string().openapi({ description: "The key id of the signing key" }),
   cert: e.string().openapi({ description: "The public certificate of the signing key" }),
   fingerprint: e.string().openapi({ description: "The cert fingerprint" }),
@@ -1610,7 +1669,7 @@ const So = e.nativeEnum(F), Ao = e.object({
   type: e.enum(["jwt_signing", "saml_encryption"]).openapi({
     description: "The type of the signing key"
   })
-}), wo = e.object({
+}), vo = e.object({
   id: e.string().optional(),
   // Basic settings
   audience: e.string(),
@@ -1763,14 +1822,14 @@ const So = e.nativeEnum(F), Ao = e.object({
       message: e.string().optional()
     }).optional()
   }).optional()
-}), xt = e.object({
+}), Bt = e.object({
   created_at: e.string().nullable().transform((o) => o ?? ""),
   updated_at: e.string().nullable().transform((o) => o ?? ""),
-  ...wo.shape,
+  ...vo.shape,
   id: e.string()
 });
-var Do = /* @__PURE__ */ ((o) => (o.RefreshToken = "refresh_token", o.AuthorizationCode = "authorization_code", o.ClientCredential = "client_credentials", o.Passwordless = "passwordless", o.Password = "password", o.OTP = "http://auth0.com/oauth/grant-type/passwordless/otp", o))(Do || {});
-const Pt = e.object({
+var ko = /* @__PURE__ */ ((o) => (o.RefreshToken = "refresh_token", o.AuthorizationCode = "authorization_code", o.ClientCredential = "client_credentials", o.Passwordless = "passwordless", o.Password = "password", o.OTP = "http://auth0.com/oauth/grant-type/passwordless/otp", o))(ko || {});
+const Wt = e.object({
   access_token: e.string(),
   id_token: e.string().optional(),
   scope: e.string().optional(),
@@ -1783,7 +1842,7 @@ e.object({
   code: e.string(),
   state: e.string().optional()
 });
-const jo = e.object({
+const Uo = e.object({
   button_border_radius: e.number(),
   button_border_weight: e.number(),
   buttons_style: e.enum(["pill", "rounded", "sharp"]),
@@ -1793,7 +1852,7 @@ const jo = e.object({
   show_widget_shadow: e.boolean(),
   widget_border_weight: e.number(),
   widget_corner_radius: e.number()
-}), Lo = e.object({
+}), Fo = e.object({
   base_focus_color: e.string(),
   base_hover_color: e.string(),
   body_text: e.string(),
@@ -1816,7 +1875,7 @@ const jo = e.object({
 }), g = e.object({
   bold: e.boolean(),
   size: e.number()
-}), vo = e.object({
+}), xo = e.object({
   body_text: g,
   buttons_text: g,
   font_url: e.string(),
@@ -1826,31 +1885,31 @@ const jo = e.object({
   reference_text_size: e.number(),
   subtitle: g,
   title: g
-}), ko = e.object({
+}), Po = e.object({
   background_color: e.string(),
   background_image_url: e.string(),
   page_layout: e.enum(["center", "left", "right"])
-}), Uo = e.object({
+}), Mo = e.object({
   header_text_alignment: e.enum(["center", "left", "right"]),
   logo_height: e.number(),
   logo_position: e.enum(["center", "left", "none", "right"]),
   logo_url: e.string(),
   social_buttons_layout: e.enum(["bottom", "top"])
-}), Fo = e.object({
-  borders: jo,
-  colors: Lo,
+}), Ho = e.object({
+  borders: Uo,
+  colors: Fo,
   displayName: e.string(),
-  fonts: vo,
-  page_background: ko,
-  widget: Uo
-}), Mt = Fo.extend({
+  fonts: xo,
+  page_background: Po,
+  widget: Mo
+}), Kt = Ho.extend({
   themeId: e.string()
-}), Ht = e.object({
+}), zt = e.object({
   universal_login_experience: e.enum(["new", "classic"]).default("new"),
   identifier_first: e.boolean().default(!0),
   password_first: e.boolean().default(!1),
   webauthn_platform_first_factor: e.boolean()
-}), Gt = e.object({
+}), Xt = e.object({
   name: e.string(),
   enabled: e.boolean().optional().default(!0),
   default_from_address: e.string().optional(),
@@ -1880,7 +1939,7 @@ const jo = e.object({
     })
   ]),
   settings: e.object({}).optional()
-}), xo = e.object({
+}), Go = e.object({
   // The actual refresh token value (primary key).
   id: e.string(),
   // Link to the session record
@@ -1893,7 +1952,7 @@ const jo = e.object({
   idle_expires_at: e.string().optional(),
   // When the token was last used.
   last_exchanged_at: e.string().optional(),
-  device: x,
+  device: M,
   resource_servers: e.array(
     e.object({
       audience: e.string(),
@@ -1901,21 +1960,21 @@ const jo = e.object({
     })
   ),
   rotating: e.boolean()
-}), Bt = e.object({
+}), qt = e.object({
   // When the refresh token record was created.
   created_at: e.string(),
   // Spread in the rest of the refresh token properties.
-  ...xo.shape
-}), Wt = e.object({
+  ...Go.shape
+}), Vt = e.object({
   to: e.string(),
   message: e.string()
-}), Kt = e.object({
+}), Yt = e.object({
   name: e.string(),
   options: e.object({})
-}), Po = e.object({
+}), Bo = e.object({
   value: e.string(),
   description: e.string().optional()
-}), Mo = e.object({
+}), Wo = e.object({
   token_dialect: e.enum(["access_token", "access_token_authz"]).optional(),
   enforce_policies: e.boolean().optional(),
   allow_skipping_userinfo: e.boolean().optional(),
@@ -1925,11 +1984,11 @@ const jo = e.object({
   mtls: e.object({
     bound_access_tokens: e.boolean().optional()
   }).optional()
-}), Ho = e.object({
+}), Ko = e.object({
   id: e.string().optional(),
   name: e.string(),
   identifier: e.string(),
-  scopes: e.array(Po).optional(),
+  scopes: e.array(Bo).optional(),
   signing_alg: e.string().optional(),
   signing_secret: e.string().optional(),
   token_lifetime: e.number().optional(),
@@ -1937,30 +1996,30 @@ const jo = e.object({
   skip_consent_for_verifiable_first_party_clients: e.boolean().optional(),
   allow_offline_access: e.boolean().optional(),
   verificationKey: e.string().optional(),
-  options: Mo.optional(),
+  options: Wo.optional(),
   is_system: e.boolean().optional(),
   metadata: e.record(e.any()).optional()
-}), Go = e.object({
-  ...Ho.shape,
+}), zo = e.object({
+  ...Ko.shape,
   created_at: e.string().optional(),
   updated_at: e.string().optional()
-}), zt = e.array(Go), Bo = e.object({
+}), Qt = e.array(zo), Xo = e.object({
   role_id: e.string(),
   resource_server_identifier: e.string(),
   permission_name: e.string()
-}), Wo = e.object({
-  ...Bo.shape,
+}), qo = e.object({
+  ...Xo.shape,
   created_at: e.string()
-}), Xt = e.array(Wo), Ko = e.object({
+}), Jt = e.array(qo), Vo = e.object({
   user_id: e.string(),
   resource_server_identifier: e.string(),
   permission_name: e.string(),
   organization_id: e.string().optional()
-}), zo = e.object({
-  ...Ko.shape,
+}), Yo = e.object({
+  ...Vo.shape,
   tenant_id: e.string(),
   created_at: e.string().optional()
-}), Vt = e.array(zo), Xo = e.object({
+}), Zt = e.array(Yo), Qo = e.object({
   user_id: e.string(),
   resource_server_identifier: e.string(),
   resource_server_name: e.string(),
@@ -1968,17 +2027,17 @@ const jo = e.object({
   description: e.string().nullable().optional(),
   created_at: e.string().optional(),
   organization_id: e.string().optional()
-}), qt = e.array(
-  Xo
-), Vo = e.object({
+}), $t = e.array(
+  Qo
+), Jo = e.object({
   user_id: e.string(),
   role_id: e.string(),
   organization_id: e.string().optional()
-}), qo = e.object({
-  ...Vo.shape,
+}), Zo = e.object({
+  ...Jo.shape,
   tenant_id: e.string(),
   created_at: e.string().optional()
-}), Yt = e.array(qo), Yo = e.object({
+}), en = e.array(Zo), $o = e.object({
   id: e.string().optional().openapi({
     description: "The unique identifier of the role. If not provided, one will be generated."
   }),
@@ -1992,13 +2051,13 @@ const jo = e.object({
   metadata: e.record(e.any()).optional().openapi({
     description: "Metadata associated with the role. Can be used to control sync behavior in multi-tenancy scenarios."
   })
-}), Qo = Yo.extend({
+}), et = $o.extend({
   id: e.string().openapi({
     description: "The unique identifier of the role"
   }),
   created_at: e.string().optional(),
   updated_at: e.string().optional()
-}), Qt = e.array(Qo), Jo = e.object({
+}), on = e.array(et), ot = e.object({
   logo_url: e.string().optional().openapi({
     description: "URL of the organization's logo"
   }),
@@ -2010,7 +2069,7 @@ const jo = e.object({
       description: "Page background color in hex format (e.g., #FFFFFF)"
     })
   }).optional()
-}).optional(), Zo = e.object({
+}).optional(), tt = e.object({
   connection_id: e.string().openapi({
     description: "ID of the connection"
   }),
@@ -2023,7 +2082,7 @@ const jo = e.object({
   is_signup_enabled: e.boolean().default(!0).openapi({
     description: "Whether signup is enabled for this connection"
   })
-}), $o = e.object({
+}), nt = e.object({
   client_credentials: e.object({
     enforce: e.boolean().default(!1).openapi({
       description: "Whether to enforce token quota limits"
@@ -2035,7 +2094,7 @@ const jo = e.object({
       description: "Maximum tokens per hour (0 = unlimited)"
     })
   }).optional()
-}).optional(), et = e.object({
+}).optional(), it = e.object({
   id: e.string().optional(),
   name: e.string().min(1).regex(/^[a-z0-9_-]+$/, {
     message: "Organization name must be lowercase and can only contain letters, numbers, hyphens, and underscores"
@@ -2045,34 +2104,34 @@ const jo = e.object({
   display_name: e.string().optional().openapi({
     description: "The display name of the organization"
   }),
-  branding: Jo,
+  branding: ot,
   metadata: e.record(e.any()).default({}).optional().openapi({
     description: "Custom metadata for the organization"
   }),
-  enabled_connections: e.array(Zo).default([]).optional().openapi({
+  enabled_connections: e.array(tt).default([]).optional().openapi({
     description: "List of enabled connections for the organization"
   }),
-  token_quota: $o
-}), Jt = e.object({
-  ...et.shape,
-  ...p.shape,
+  token_quota: nt
+}), tn = e.object({
+  ...it.shape,
+  ...s.shape,
   id: e.string(),
   // Override name to be lenient when reading from database (to support existing uppercase names)
   name: e.string().min(1).openapi({
     description: "The name of the organization"
   })
-}), ot = e.object({
+}), at = e.object({
   user_id: e.string().openapi({
     description: "ID of the user"
   }),
   organization_id: e.string().openapi({
     description: "ID of the organization"
   })
-}), Zt = e.object({
-  ...ot.shape,
-  ...p.shape,
+}), nn = e.object({
+  ...at.shape,
+  ...s.shape,
   id: e.string()
-}), $t = e.object({
+}), an = e.object({
   // Session settings
   idle_session_lifetime: e.number().optional(),
   session_lifetime: e.number().optional(),
@@ -2170,7 +2229,7 @@ const jo = e.object({
       message: e.string().optional()
     }).optional()
   }).optional()
-}), en = e.object({
+}), rn = e.object({
   date: e.string().openapi({
     description: "Date these events occurred in ISO 8601 format",
     example: "2025-12-19"
@@ -2195,10 +2254,10 @@ const jo = e.object({
     description: "Approximate date and time the first event occurred in ISO 8601 format",
     example: "2025-12-19T00:00:00.000Z"
   })
-}), on = e.number().openapi({
+}), sn = e.number().openapi({
   description: "Number of active users in the last 30 days",
   example: 1234
-}), tt = e.enum([
+}), rt = e.enum([
   "login",
   "login-id",
   "login-password",
@@ -2226,66 +2285,66 @@ const jo = e.object({
   "passkeys",
   "captcha",
   "custom-form"
-]), nt = e.record(e.string(), e.string()).openapi({
+]), st = e.record(e.string(), e.string()).openapi({
   type: "object",
   additionalProperties: { type: "string" }
-}), tn = e.object({
-  prompt: tt,
+}), ln = e.object({
+  prompt: rt,
   language: e.string(),
-  custom_text: nt
+  custom_text: st
 });
-function nn(o) {
+function pn(o) {
   const [n, i] = o.split("|");
   if (!n || !i)
     throw new Error(`Invalid user_id: ${o}`);
   return { connection: n, id: i };
 }
-function an(o) {
+function cn(o) {
   const {
     primary: n,
     secondaries: i,
-    syncMethods: T = ["create", "update", "remove", "delete", "set"]
-  } = o, f = {
-    get(l, a) {
+    syncMethods: O = ["create", "update", "remove", "delete", "set"]
+  } = o, E = {
+    get(p, a) {
       if (typeof a == "symbol")
-        return l[a];
-      const c = l[a];
-      return typeof c != "function" ? c : T.includes(a) ? async (..._) => {
-        const E = await c.apply(l, _), d = [];
-        for (const s of i) {
-          const m = s.adapter[a];
-          if (typeof m != "function")
+        return p[a];
+      const c = p[a];
+      return typeof c != "function" ? c : O.includes(a) ? async (..._) => {
+        const S = await c.apply(p, _), d = [];
+        for (const r of i) {
+          const h = r.adapter[a];
+          if (typeof h != "function")
             continue;
-          const S = (async () => {
+          const A = (async () => {
             try {
-              await m.apply(s.adapter, _);
-            } catch (h) {
+              await h.apply(r.adapter, _);
+            } catch (b) {
               try {
-                s.onError ? s.onError(h, a, _) : console.error(
+                r.onError ? r.onError(b, a, _) : console.error(
                   `Passthrough adapter: secondary write failed for ${a}:`,
-                  h
+                  b
                 );
-              } catch (A) {
+              } catch (I) {
                 console.error(
                   `Passthrough adapter: onError handler threw for ${a}:`,
-                  A
+                  I
                 );
               }
             }
           })();
-          s.blocking && d.push(S);
+          r.blocking && d.push(A);
         }
-        return d.length > 0 && await Promise.all(d), E;
-      } : c.bind(l);
+        return d.length > 0 && await Promise.all(d), S;
+      } : c.bind(p);
     }
   };
-  return new Proxy(n, f);
+  return new Proxy(n, E);
 }
-function sn(o) {
+function _n(o) {
   return o;
 }
-function rn(o) {
-  var f, l, a, c, _, E, d, s, m, S, h, A;
+function dn(o) {
+  var E, p, a, c, _, S, d, r, h, A, b, I;
   const n = o == null ? void 0 : o.options;
   if (!n)
     return {
@@ -2296,172 +2355,174 @@ function rn(o) {
     };
   const i = n.attributes;
   if (i) {
-    const P = ((l = (f = i.username) == null ? void 0 : f.identifier) == null ? void 0 : l.active) === !0, M = ((c = (a = i.email) == null ? void 0 : a.identifier) == null ? void 0 : c.active) !== !1, H = ((E = (_ = i.username) == null ? void 0 : _.validation) == null ? void 0 : E.min_length) ?? 1, G = ((s = (d = i.username) == null ? void 0 : d.validation) == null ? void 0 : s.max_length) ?? 15;
+    const H = ((p = (E = i.username) == null ? void 0 : E.identifier) == null ? void 0 : p.active) === !0, G = ((c = (a = i.email) == null ? void 0 : a.identifier) == null ? void 0 : c.active) !== !1, B = ((S = (_ = i.username) == null ? void 0 : _.validation) == null ? void 0 : S.min_length) ?? 1, W = ((r = (d = i.username) == null ? void 0 : d.validation) == null ? void 0 : r.max_length) ?? 15;
     return {
-      usernameIdentifierActive: P,
-      emailIdentifierActive: M,
-      usernameMinLength: H,
-      usernameMaxLength: G
+      usernameIdentifierActive: H,
+      emailIdentifierActive: G,
+      usernameMinLength: B,
+      usernameMaxLength: W
     };
   }
   return {
     usernameIdentifierActive: n.requires_username === !0,
     emailIdentifierActive: !0,
-    usernameMinLength: ((S = (m = n.validation) == null ? void 0 : m.username) == null ? void 0 : S.min) ?? 1,
-    usernameMaxLength: ((A = (h = n.validation) == null ? void 0 : h.username) == null ? void 0 : A.max) ?? 15
+    usernameMinLength: ((A = (h = n.validation) == null ? void 0 : h.username) == null ? void 0 : A.min) ?? 1,
+    usernameMaxLength: ((I = (b = n.validation) == null ? void 0 : b.username) == null ? void 0 : I.max) ?? 15
   };
 }
 export {
-  st as Auth0ActionEnum,
-  yo as Auth0Client,
-  j as AuthorizationResponseMode,
-  D as AuthorizationResponseType,
+  ct as Auth0ActionEnum,
+  Ro as Auth0Client,
+  D as AuthorizationResponseMode,
+  w as AuthorizationResponseType,
   L as CodeChallengeMethod,
-  w as ComponentCategory,
+  j as ComponentCategory,
   R as ComponentType,
-  rt as EmailActionEnum,
-  St as FORM_FIELD_TYPES,
-  at as FlowActionTypeEnum,
-  Do as GrantType,
-  Oo as LocationInfo,
-  Io as LogTypes,
-  F as LoginSessionState,
-  _e as NodeType,
-  z as RedirectTargetEnum,
-  ue as actionNodeSchema,
-  on as activeUsersResponseSchema,
-  J as addressSchema,
-  mt as auth0FlowInsertSchema,
-  Ee as auth0FlowSchema,
-  ct as auth0QuerySchema,
-  W as auth0UpdateUserActionSchema,
-  _t as auth0UserResponseSchema,
-  Se as authParamsSchema,
+  _t as EmailActionEnum,
+  Ct as FORM_FIELD_TYPES,
+  pt as FlowActionTypeEnum,
+  ko as GrantType,
+  jo as LocationInfo,
+  Oo as LogTypes,
+  P as LoginSessionState,
+  ge as NodeType,
+  q as RedirectTargetEnum,
+  he as actionNodeSchema,
+  sn as activeUsersResponseSchema,
+  $ as addressSchema,
+  Et as auth0FlowInsertSchema,
+  Ae as auth0FlowSchema,
+  gt as auth0QuerySchema,
+  z as auth0UpdateUserActionSchema,
+  mt as auth0UserResponseSchema,
+  Ie as authParamsSchema,
   N as baseUserSchema,
-  oo as blockComponentSchema,
-  jo as bordersSchema,
-  ht as brandingSchema,
-  se as buttonComponentSchema,
-  ne as clientGrantInsertSchema,
-  ut as clientGrantListSchema,
-  ie as clientGrantSchema,
-  te as clientInsertSchema,
-  gt as clientSchema,
-  Ie as codeInsertSchema,
-  bt as codeSchema,
-  Ae as codeTypeSchema,
-  Lo as colorsSchema,
-  co as componentMessageSchema,
-  pe as componentSchema,
-  ye as connectionInsertSchema,
-  Ce as connectionOptionsSchema,
-  ft as connectionSchema,
+  no as blockComponentSchema,
+  Uo as bordersSchema,
+  St as brandingSchema,
+  le as buttonComponentSchema,
+  ae as clientGrantInsertSchema,
+  ft as clientGrantListSchema,
+  re as clientGrantSchema,
+  ie as clientInsertSchema,
+  bt as clientSchema,
+  Ce as codeInsertSchema,
+  At as codeSchema,
+  ye as codeTypeSchema,
+  Fo as colorsSchema,
+  _o as componentMessageSchema,
+  de as componentSchema,
+  Oe as connectionInsertSchema,
+  Te as connectionOptionsSchema,
+  It as connectionSchema,
   u as coordinatesSchema,
-  an as createPassthroughAdapter,
-  sn as createWriteOnlyAdapter,
-  Oe as customDomainInsertSchema,
-  Ne as customDomainSchema,
-  Et as customDomainWithTenantIdSchema,
-  tn as customTextEntrySchema,
-  nt as customTextSchema,
-  en as dailyStatsSchema,
-  Gt as emailProviderSchema,
-  B as emailVerificationRulesSchema,
-  K as emailVerifyActionSchema,
-  fe as endingSchema,
-  no as fieldComponentSchema,
-  V as flowActionStepSchema,
-  q as flowInsertSchema,
-  lt as flowSchema,
-  le as flowsFieldComponentSchema,
-  ge as flowsFlowNodeSchema,
-  de as flowsStepNodeSchema,
+  cn as createPassthroughAdapter,
+  _n as createWriteOnlyAdapter,
+  Ne as customDomainInsertSchema,
+  je as customDomainSchema,
+  yt as customDomainWithTenantIdSchema,
+  ln as customTextEntrySchema,
+  st as customTextSchema,
+  rn as dailyStatsSchema,
+  Xt as emailProviderSchema,
+  K as emailVerificationRulesSchema,
+  X as emailVerifyActionSchema,
+  Se as endingSchema,
+  ao as fieldComponentSchema,
+  Y as flowActionStepSchema,
+  Q as flowInsertSchema,
+  dt as flowSchema,
+  ce as flowsFieldComponentSchema,
+  me as flowsFlowNodeSchema,
+  ue as flowsStepNodeSchema,
   g as fontDetailsSchema,
-  vo as fontsSchema,
-  At as formControlSchema,
-  lo as formInsertSchema,
+  xo as fontsSchema,
+  Tt as formControlSchema,
+  co as formInsertSchema,
   v as formNodeComponentDefinition,
-  ro as formNodeSchema,
-  It as formSchema,
-  ce as genericComponentSchema,
-  me as genericNodeSchema,
-  rn as getConnectionIdentifierConfig,
-  Nt as hookInsertSchema,
-  Rt as hookSchema,
-  Q as identitySchema,
-  fo as inviteInsertSchema,
-  wt as inviteSchema,
-  bo as inviteeSchema,
-  ho as inviterSchema,
-  yt as isBlockComponent,
-  Tt as isFieldComponent,
-  Ot as isWidgetComponent,
-  Dt as jwksKeySchema,
-  Eo as jwksSchema,
-  re as legalComponentSchema,
-  To as logInsertSchema,
-  vt as logSchema,
-  Ao as loginSessionInsertSchema,
-  Lt as loginSessionSchema,
-  So as loginSessionStateSchema,
-  he as nodeSchema,
-  jt as openIDConfigurationSchema,
-  Jo as organizationBrandingSchema,
-  Zo as organizationEnabledConnectionSchema,
-  et as organizationInsertSchema,
-  Jt as organizationSchema,
-  $o as organizationTokenQuotaSchema,
-  ko as pageBackgroundSchema,
-  nn as parseUserId,
-  No as passwordInsertSchema,
-  kt as passwordSchema,
-  Y as profileDataSchema,
-  tt as promptScreenSchema,
-  Ht as promptSettingSchema,
-  X as redirectActionSchema,
-  xo as refreshTokenInsertSchema,
-  Bt as refreshTokenSchema,
-  Ho as resourceServerInsertSchema,
-  zt as resourceServerListSchema,
-  Mo as resourceServerOptionsSchema,
-  Go as resourceServerSchema,
-  Po as resourceServerScopeSchema,
-  ae as richTextComponentSchema,
-  Yo as roleInsertSchema,
-  Qt as roleListSchema,
-  Bo as rolePermissionInsertSchema,
-  Xt as rolePermissionListSchema,
-  Wo as rolePermissionSchema,
-  Qo as roleSchema,
-  po as screenLinkSchema,
-  Ro as sessionInsertSchema,
-  Ut as sessionSchema,
-  Ft as signingKeySchema,
-  Kt as smsProviderSchema,
-  Wt as smsSendParamsSchema,
-  be as startSchema,
-  wo as tenantInsertSchema,
-  xt as tenantSchema,
-  $t as tenantSettingsSchema,
-  Fo as themeInsertSchema,
-  Mt as themeSchema,
-  Pt as tokenResponseSchema,
-  pt as totalsSchema,
-  Ct as uiScreenSchema,
-  Z as userInsertSchema,
-  ot as userOrganizationInsertSchema,
-  Zt as userOrganizationSchema,
-  Ko as userPermissionInsertSchema,
-  Vt as userPermissionListSchema,
-  zo as userPermissionSchema,
-  qt as userPermissionWithDetailsListSchema,
-  Xo as userPermissionWithDetailsSchema,
-  dt as userResponseSchema,
-  Vo as userRoleInsertSchema,
-  Yt as userRoleListSchema,
-  qo as userRoleSchema,
-  $ as userSchema,
-  Te as verificationMethodsSchema,
-  to as widgetComponentSchema,
-  Uo as widgetSchema
+  po as formNodeSchema,
+  Ot as formSchema,
+  _e as genericComponentSchema,
+  be as genericNodeSchema,
+  dn as getConnectionIdentifierConfig,
+  Lt as hookInsertSchema,
+  vt as hookSchema,
+  x as hookTemplateId,
+  Dt as hookTemplates,
+  Z as identitySchema,
+  Io as inviteInsertSchema,
+  kt as inviteSchema,
+  Ao as inviteeSchema,
+  So as inviterSchema,
+  Rt as isBlockComponent,
+  wt as isFieldComponent,
+  jt as isWidgetComponent,
+  Ut as jwksKeySchema,
+  yo as jwksSchema,
+  pe as legalComponentSchema,
+  wo as logInsertSchema,
+  Pt as logSchema,
+  To as loginSessionInsertSchema,
+  xt as loginSessionSchema,
+  Co as loginSessionStateSchema,
+  fe as nodeSchema,
+  Ft as openIDConfigurationSchema,
+  ot as organizationBrandingSchema,
+  tt as organizationEnabledConnectionSchema,
+  it as organizationInsertSchema,
+  tn as organizationSchema,
+  nt as organizationTokenQuotaSchema,
+  Po as pageBackgroundSchema,
+  pn as parseUserId,
+  Do as passwordInsertSchema,
+  Mt as passwordSchema,
+  J as profileDataSchema,
+  rt as promptScreenSchema,
+  zt as promptSettingSchema,
+  V as redirectActionSchema,
+  Go as refreshTokenInsertSchema,
+  qt as refreshTokenSchema,
+  Ko as resourceServerInsertSchema,
+  Qt as resourceServerListSchema,
+  Wo as resourceServerOptionsSchema,
+  zo as resourceServerSchema,
+  Bo as resourceServerScopeSchema,
+  se as richTextComponentSchema,
+  $o as roleInsertSchema,
+  on as roleListSchema,
+  Xo as rolePermissionInsertSchema,
+  Jt as rolePermissionListSchema,
+  qo as rolePermissionSchema,
+  et as roleSchema,
+  go as screenLinkSchema,
+  Lo as sessionInsertSchema,
+  Ht as sessionSchema,
+  Gt as signingKeySchema,
+  Yt as smsProviderSchema,
+  Vt as smsSendParamsSchema,
+  Ee as startSchema,
+  vo as tenantInsertSchema,
+  Bt as tenantSchema,
+  an as tenantSettingsSchema,
+  Ho as themeInsertSchema,
+  Kt as themeSchema,
+  Wt as tokenResponseSchema,
+  ut as totalsSchema,
+  Nt as uiScreenSchema,
+  ee as userInsertSchema,
+  at as userOrganizationInsertSchema,
+  nn as userOrganizationSchema,
+  Vo as userPermissionInsertSchema,
+  Zt as userPermissionListSchema,
+  Yo as userPermissionSchema,
+  $t as userPermissionWithDetailsListSchema,
+  Qo as userPermissionWithDetailsSchema,
+  ht as userResponseSchema,
+  Jo as userRoleInsertSchema,
+  en as userRoleListSchema,
+  Zo as userRoleSchema,
+  oe as userSchema,
+  Re as verificationMethodsSchema,
+  io as widgetComponentSchema,
+  Mo as widgetSchema
 };