npm - @authhero/kysely-adapter - Versions diffs - 10.32.0 → 10.34.0 - Mend

@authhero/kysely-adapter 10.32.0 → 10.34.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (4) hide show

package/dist/kysely-adapter.cjs +1 -1
package/dist/kysely-adapter.d.ts +240 -275
package/dist/kysely-adapter.mjs +1327 -1198
package/package.json +3 -3

package/dist/kysely-adapter.d.ts CHANGED Viewed

@@ -5540,62 +5540,41 @@ declare const resourceServerInsertSchema: z.ZodObject<{
 		}, {
 			bound_access_tokens?: boolean | undefined;
 		}>>;
-	}, "passthrough", z.ZodTypeAny, z.objectOutputType<{
-		token_dialect: z.ZodOptional<z.ZodEnum<[
-			"access_token",
-			"access_token_authz"
-		]>>;
-		enforce_policies: z.ZodOptional<z.ZodBoolean>;
-		allow_skipping_userinfo: z.ZodOptional<z.ZodBoolean>;
-		skip_userinfo: z.ZodOptional<z.ZodBoolean>;
-		persist_client_authorization: z.ZodOptional<z.ZodBoolean>;
-		enable_introspection_endpoint: z.ZodOptional<z.ZodBoolean>;
-		mtls: z.ZodOptional<z.ZodObject<{
-			bound_access_tokens: z.ZodOptional<z.ZodBoolean>;
-		}, "strip", z.ZodTypeAny, {
-			bound_access_tokens?: boolean | undefined;
-		}, {
-			bound_access_tokens?: boolean | undefined;
-		}>>;
-	}, z.ZodTypeAny, "passthrough">, z.objectInputType<{
-		token_dialect: z.ZodOptional<z.ZodEnum<[
-			"access_token",
-			"access_token_authz"
-		]>>;
-		enforce_policies: z.ZodOptional<z.ZodBoolean>;
-		allow_skipping_userinfo: z.ZodOptional<z.ZodBoolean>;
-		skip_userinfo: z.ZodOptional<z.ZodBoolean>;
-		persist_client_authorization: z.ZodOptional<z.ZodBoolean>;
-		enable_introspection_endpoint: z.ZodOptional<z.ZodBoolean>;
-		mtls: z.ZodOptional<z.ZodObject<{
-			bound_access_tokens: z.ZodOptional<z.ZodBoolean>;
-		}, "strip", z.ZodTypeAny, {
+	}, "strip", z.ZodTypeAny, {
+		token_dialect?: "access_token" | "access_token_authz" | undefined;
+		enforce_policies?: boolean | undefined;
+		allow_skipping_userinfo?: boolean | undefined;
+		skip_userinfo?: boolean | undefined;
+		persist_client_authorization?: boolean | undefined;
+		enable_introspection_endpoint?: boolean | undefined;
+		mtls?: {
 			bound_access_tokens?: boolean | undefined;
-		}, {
+		} | undefined;
+	}, {
+		token_dialect?: "access_token" | "access_token_authz" | undefined;
+		enforce_policies?: boolean | undefined;
+		allow_skipping_userinfo?: boolean | undefined;
+		skip_userinfo?: boolean | undefined;
+		persist_client_authorization?: boolean | undefined;
+		enable_introspection_endpoint?: boolean | undefined;
+		mtls?: {
 			bound_access_tokens?: boolean | undefined;
-		}>>;
-	}, z.ZodTypeAny, "passthrough">>>;
+		} | undefined;
+	}>>;
 }, "strip", z.ZodTypeAny, {
 	name: string;
 	identifier: string;
-	options?: z.objectOutputType<{
-		token_dialect: z.ZodOptional<z.ZodEnum<[
-			"access_token",
-			"access_token_authz"
-		]>>;
-		enforce_policies: z.ZodOptional<z.ZodBoolean>;
-		allow_skipping_userinfo: z.ZodOptional<z.ZodBoolean>;
-		skip_userinfo: z.ZodOptional<z.ZodBoolean>;
-		persist_client_authorization: z.ZodOptional<z.ZodBoolean>;
-		enable_introspection_endpoint: z.ZodOptional<z.ZodBoolean>;
-		mtls: z.ZodOptional<z.ZodObject<{
-			bound_access_tokens: z.ZodOptional<z.ZodBoolean>;
-		}, "strip", z.ZodTypeAny, {
-			bound_access_tokens?: boolean | undefined;
-		}, {
+	options?: {
+		token_dialect?: "access_token" | "access_token_authz" | undefined;
+		enforce_policies?: boolean | undefined;
+		allow_skipping_userinfo?: boolean | undefined;
+		skip_userinfo?: boolean | undefined;
+		persist_client_authorization?: boolean | undefined;
+		enable_introspection_endpoint?: boolean | undefined;
+		mtls?: {
 			bound_access_tokens?: boolean | undefined;
-		}>>;
-	}, z.ZodTypeAny, "passthrough"> | undefined;
+		} | undefined;
+	} | undefined;
 	scopes?: {
 		value: string;
 		description?: string | undefined;
@@ -5610,24 +5589,17 @@ declare const resourceServerInsertSchema: z.ZodObject<{
 }, {
 	name: string;
 	identifier: string;
-	options?: z.objectInputType<{
-		token_dialect: z.ZodOptional<z.ZodEnum<[
-			"access_token",
-			"access_token_authz"
-		]>>;
-		enforce_policies: z.ZodOptional<z.ZodBoolean>;
-		allow_skipping_userinfo: z.ZodOptional<z.ZodBoolean>;
-		skip_userinfo: z.ZodOptional<z.ZodBoolean>;
-		persist_client_authorization: z.ZodOptional<z.ZodBoolean>;
-		enable_introspection_endpoint: z.ZodOptional<z.ZodBoolean>;
-		mtls: z.ZodOptional<z.ZodObject<{
-			bound_access_tokens: z.ZodOptional<z.ZodBoolean>;
-		}, "strip", z.ZodTypeAny, {
-			bound_access_tokens?: boolean | undefined;
-		}, {
+	options?: {
+		token_dialect?: "access_token" | "access_token_authz" | undefined;
+		enforce_policies?: boolean | undefined;
+		allow_skipping_userinfo?: boolean | undefined;
+		skip_userinfo?: boolean | undefined;
+		persist_client_authorization?: boolean | undefined;
+		enable_introspection_endpoint?: boolean | undefined;
+		mtls?: {
 			bound_access_tokens?: boolean | undefined;
-		}>>;
-	}, z.ZodTypeAny, "passthrough"> | undefined;
+		} | undefined;
+	} | undefined;
 	scopes?: {
 		value: string;
 		description?: string | undefined;
@@ -5642,6 +5614,8 @@ declare const resourceServerInsertSchema: z.ZodObject<{
 }>;
 export type ResourceServerInsert = z.input<typeof resourceServerInsertSchema>;
 declare const resourceServerSchema: z.ZodObject<{
+	created_at: z.ZodOptional<z.ZodString>;
+	updated_at: z.ZodOptional<z.ZodString>;
 	name: z.ZodString;
 	identifier: z.ZodString;
 	scopes: z.ZodOptional<z.ZodArray<z.ZodObject<{
@@ -5678,63 +5652,44 @@ declare const resourceServerSchema: z.ZodObject<{
 		}, {
 			bound_access_tokens?: boolean | undefined;
 		}>>;
-	}, "passthrough", z.ZodTypeAny, z.objectOutputType<{
-		token_dialect: z.ZodOptional<z.ZodEnum<[
-			"access_token",
-			"access_token_authz"
-		]>>;
-		enforce_policies: z.ZodOptional<z.ZodBoolean>;
-		allow_skipping_userinfo: z.ZodOptional<z.ZodBoolean>;
-		skip_userinfo: z.ZodOptional<z.ZodBoolean>;
-		persist_client_authorization: z.ZodOptional<z.ZodBoolean>;
-		enable_introspection_endpoint: z.ZodOptional<z.ZodBoolean>;
-		mtls: z.ZodOptional<z.ZodObject<{
-			bound_access_tokens: z.ZodOptional<z.ZodBoolean>;
-		}, "strip", z.ZodTypeAny, {
-			bound_access_tokens?: boolean | undefined;
-		}, {
-			bound_access_tokens?: boolean | undefined;
-		}>>;
-	}, z.ZodTypeAny, "passthrough">, z.objectInputType<{
-		token_dialect: z.ZodOptional<z.ZodEnum<[
-			"access_token",
-			"access_token_authz"
-		]>>;
-		enforce_policies: z.ZodOptional<z.ZodBoolean>;
-		allow_skipping_userinfo: z.ZodOptional<z.ZodBoolean>;
-		skip_userinfo: z.ZodOptional<z.ZodBoolean>;
-		persist_client_authorization: z.ZodOptional<z.ZodBoolean>;
-		enable_introspection_endpoint: z.ZodOptional<z.ZodBoolean>;
-		mtls: z.ZodOptional<z.ZodObject<{
-			bound_access_tokens: z.ZodOptional<z.ZodBoolean>;
-		}, "strip", z.ZodTypeAny, {
+	}, "strip", z.ZodTypeAny, {
+		token_dialect?: "access_token" | "access_token_authz" | undefined;
+		enforce_policies?: boolean | undefined;
+		allow_skipping_userinfo?: boolean | undefined;
+		skip_userinfo?: boolean | undefined;
+		persist_client_authorization?: boolean | undefined;
+		enable_introspection_endpoint?: boolean | undefined;
+		mtls?: {
 			bound_access_tokens?: boolean | undefined;
-		}, {
+		} | undefined;
+	}, {
+		token_dialect?: "access_token" | "access_token_authz" | undefined;
+		enforce_policies?: boolean | undefined;
+		allow_skipping_userinfo?: boolean | undefined;
+		skip_userinfo?: boolean | undefined;
+		persist_client_authorization?: boolean | undefined;
+		enable_introspection_endpoint?: boolean | undefined;
+		mtls?: {
 			bound_access_tokens?: boolean | undefined;
-		}>>;
-	}, z.ZodTypeAny, "passthrough">>>;
+		} | undefined;
+	}>>;
 	id: z.ZodOptional<z.ZodString>;
 }, "strip", z.ZodTypeAny, {
 	name: string;
 	identifier: string;
-	options?: z.objectOutputType<{
-		token_dialect: z.ZodOptional<z.ZodEnum<[
-			"access_token",
-			"access_token_authz"
-		]>>;
-		enforce_policies: z.ZodOptional<z.ZodBoolean>;
-		allow_skipping_userinfo: z.ZodOptional<z.ZodBoolean>;
-		skip_userinfo: z.ZodOptional<z.ZodBoolean>;
-		persist_client_authorization: z.ZodOptional<z.ZodBoolean>;
-		enable_introspection_endpoint: z.ZodOptional<z.ZodBoolean>;
-		mtls: z.ZodOptional<z.ZodObject<{
-			bound_access_tokens: z.ZodOptional<z.ZodBoolean>;
-		}, "strip", z.ZodTypeAny, {
-			bound_access_tokens?: boolean | undefined;
-		}, {
+	options?: {
+		token_dialect?: "access_token" | "access_token_authz" | undefined;
+		enforce_policies?: boolean | undefined;
+		allow_skipping_userinfo?: boolean | undefined;
+		skip_userinfo?: boolean | undefined;
+		persist_client_authorization?: boolean | undefined;
+		enable_introspection_endpoint?: boolean | undefined;
+		mtls?: {
 			bound_access_tokens?: boolean | undefined;
-		}>>;
-	}, z.ZodTypeAny, "passthrough"> | undefined;
+		} | undefined;
+	} | undefined;
+	created_at?: string | undefined;
+	updated_at?: string | undefined;
 	id?: string | undefined;
 	scopes?: {
 		value: string;
@@ -5750,24 +5705,19 @@ declare const resourceServerSchema: z.ZodObject<{
 }, {
 	name: string;
 	identifier: string;
-	options?: z.objectInputType<{
-		token_dialect: z.ZodOptional<z.ZodEnum<[
-			"access_token",
-			"access_token_authz"
-		]>>;
-		enforce_policies: z.ZodOptional<z.ZodBoolean>;
-		allow_skipping_userinfo: z.ZodOptional<z.ZodBoolean>;
-		skip_userinfo: z.ZodOptional<z.ZodBoolean>;
-		persist_client_authorization: z.ZodOptional<z.ZodBoolean>;
-		enable_introspection_endpoint: z.ZodOptional<z.ZodBoolean>;
-		mtls: z.ZodOptional<z.ZodObject<{
-			bound_access_tokens: z.ZodOptional<z.ZodBoolean>;
-		}, "strip", z.ZodTypeAny, {
-			bound_access_tokens?: boolean | undefined;
-		}, {
+	options?: {
+		token_dialect?: "access_token" | "access_token_authz" | undefined;
+		enforce_policies?: boolean | undefined;
+		allow_skipping_userinfo?: boolean | undefined;
+		skip_userinfo?: boolean | undefined;
+		persist_client_authorization?: boolean | undefined;
+		enable_introspection_endpoint?: boolean | undefined;
+		mtls?: {
 			bound_access_tokens?: boolean | undefined;
-		}>>;
-	}, z.ZodTypeAny, "passthrough"> | undefined;
+		} | undefined;
+	} | undefined;
+	created_at?: string | undefined;
+	updated_at?: string | undefined;
 	id?: string | undefined;
 	scopes?: {
 		value: string;
@@ -5782,112 +5732,111 @@ declare const resourceServerSchema: z.ZodObject<{
 	verificationKey?: string | undefined;
 }>;
 export type ResourceServer = z.infer<typeof resourceServerSchema>;
-declare const permissionSchema: z.ZodObject<{
+declare const rolePermissionInsertSchema: z.ZodObject<{
+	role_id: z.ZodString;
+	resource_server_identifier: z.ZodString;
 	permission_name: z.ZodString;
-	description: z.ZodOptional<z.ZodNullable<z.ZodString>>;
+}, "strip", z.ZodTypeAny, {
+	role_id: string;
+	resource_server_identifier: string;
+	permission_name: string;
+}, {
+	role_id: string;
+	resource_server_identifier: string;
+	permission_name: string;
+}>;
+export type RolePermissionInsert = z.infer<typeof rolePermissionInsertSchema>;
+declare const rolePermissionWithDetailsListSchema: z.ZodArray<z.ZodObject<{
+	role_id: z.ZodString;
 	resource_server_identifier: z.ZodString;
 	resource_server_name: z.ZodString;
-	sources: z.ZodOptional<z.ZodArray<z.ZodObject<{
-		source_id: z.ZodOptional<z.ZodString>;
-		source_name: z.ZodOptional<z.ZodString>;
-		source_type: z.ZodOptional<z.ZodString>;
-	}, "passthrough", z.ZodTypeAny, z.objectOutputType<{
-		source_id: z.ZodOptional<z.ZodString>;
-		source_name: z.ZodOptional<z.ZodString>;
-		source_type: z.ZodOptional<z.ZodString>;
-	}, z.ZodTypeAny, "passthrough">, z.objectInputType<{
-		source_id: z.ZodOptional<z.ZodString>;
-		source_name: z.ZodOptional<z.ZodString>;
-		source_type: z.ZodOptional<z.ZodString>;
-	}, z.ZodTypeAny, "passthrough">>, "many">>;
-}, "passthrough", z.ZodTypeAny, z.objectOutputType<{
 	permission_name: z.ZodString;
 	description: z.ZodOptional<z.ZodNullable<z.ZodString>>;
+	created_at: z.ZodOptional<z.ZodString>;
+}, "strip", z.ZodTypeAny, {
+	role_id: string;
+	resource_server_identifier: string;
+	permission_name: string;
+	resource_server_name: string;
+	description?: string | null | undefined;
+	created_at?: string | undefined;
+}, {
+	role_id: string;
+	resource_server_identifier: string;
+	permission_name: string;
+	resource_server_name: string;
+	description?: string | null | undefined;
+	created_at?: string | undefined;
+}>, "many">;
+export type RolePermissionWithDetailsList = z.infer<typeof rolePermissionWithDetailsListSchema>;
+declare const userPermissionInsertSchema: z.ZodObject<{
+	user_id: z.ZodString;
 	resource_server_identifier: z.ZodString;
-	resource_server_name: z.ZodString;
-	sources: z.ZodOptional<z.ZodArray<z.ZodObject<{
-		source_id: z.ZodOptional<z.ZodString>;
-		source_name: z.ZodOptional<z.ZodString>;
-		source_type: z.ZodOptional<z.ZodString>;
-	}, "passthrough", z.ZodTypeAny, z.objectOutputType<{
-		source_id: z.ZodOptional<z.ZodString>;
-		source_name: z.ZodOptional<z.ZodString>;
-		source_type: z.ZodOptional<z.ZodString>;
-	}, z.ZodTypeAny, "passthrough">, z.objectInputType<{
-		source_id: z.ZodOptional<z.ZodString>;
-		source_name: z.ZodOptional<z.ZodString>;
-		source_type: z.ZodOptional<z.ZodString>;
-	}, z.ZodTypeAny, "passthrough">>, "many">>;
-}, z.ZodTypeAny, "passthrough">, z.objectInputType<{
 	permission_name: z.ZodString;
-	description: z.ZodOptional<z.ZodNullable<z.ZodString>>;
+}, "strip", z.ZodTypeAny, {
+	user_id: string;
+	resource_server_identifier: string;
+	permission_name: string;
+}, {
+	user_id: string;
+	resource_server_identifier: string;
+	permission_name: string;
+}>;
+export type UserPermissionInsert = z.infer<typeof userPermissionInsertSchema>;
+declare const userPermissionWithDetailsListSchema: z.ZodArray<z.ZodObject<{
+	user_id: z.ZodString;
 	resource_server_identifier: z.ZodString;
 	resource_server_name: z.ZodString;
-	sources: z.ZodOptional<z.ZodArray<z.ZodObject<{
-		source_id: z.ZodOptional<z.ZodString>;
-		source_name: z.ZodOptional<z.ZodString>;
-		source_type: z.ZodOptional<z.ZodString>;
-	}, "passthrough", z.ZodTypeAny, z.objectOutputType<{
-		source_id: z.ZodOptional<z.ZodString>;
-		source_name: z.ZodOptional<z.ZodString>;
-		source_type: z.ZodOptional<z.ZodString>;
-	}, z.ZodTypeAny, "passthrough">, z.objectInputType<{
-		source_id: z.ZodOptional<z.ZodString>;
-		source_name: z.ZodOptional<z.ZodString>;
-		source_type: z.ZodOptional<z.ZodString>;
-	}, z.ZodTypeAny, "passthrough">>, "many">>;
-}, z.ZodTypeAny, "passthrough">>;
-export type Permission = z.infer<typeof permissionSchema>;
-export type PermissionInsert = z.input<typeof permissionSchema>;
-declare const ruleInsertSchema: z.ZodObject<{
+	permission_name: z.ZodString;
+	description: z.ZodOptional<z.ZodNullable<z.ZodString>>;
+	created_at: z.ZodOptional<z.ZodString>;
+}, "strip", z.ZodTypeAny, {
+	user_id: string;
+	resource_server_identifier: string;
+	permission_name: string;
+	resource_server_name: string;
+	description?: string | null | undefined;
+	created_at?: string | undefined;
+}, {
+	user_id: string;
+	resource_server_identifier: string;
+	permission_name: string;
+	resource_server_name: string;
+	description?: string | null | undefined;
+	created_at?: string | undefined;
+}>, "many">;
+export type UserPermissionWithDetailsList = z.infer<typeof userPermissionWithDetailsListSchema>;
+declare const roleInsertSchema: z.ZodObject<{
 	name: z.ZodString;
-	script: z.ZodString;
-	order: z.ZodOptional<z.ZodNumber>;
-	enabled: z.ZodOptional<z.ZodBoolean>;
-	stage: z.ZodOptional<z.ZodString>;
+	description: z.ZodOptional<z.ZodString>;
 }, "strip", z.ZodTypeAny, {
 	name: string;
-	script: string;
-	enabled?: boolean | undefined;
-	order?: number | undefined;
-	stage?: string | undefined;
+	description?: string | undefined;
 }, {
 	name: string;
-	script: string;
-	enabled?: boolean | undefined;
-	order?: number | undefined;
-	stage?: string | undefined;
+	description?: string | undefined;
 }>;
-export type RuleInsert = z.input<typeof ruleInsertSchema>;
-declare const ruleSchema: z.ZodObject<{
-	name: z.ZodString;
-	script: z.ZodString;
-	order: z.ZodOptional<z.ZodNumber>;
-	enabled: z.ZodOptional<z.ZodBoolean>;
-	stage: z.ZodOptional<z.ZodString>;
-	id: z.ZodString;
-	created_at: z.ZodOptional<z.ZodString>;
-	updated_at: z.ZodOptional<z.ZodString>;
-}, "passthrough", z.ZodTypeAny, z.objectOutputType<{
-	name: z.ZodString;
-	script: z.ZodString;
-	order: z.ZodOptional<z.ZodNumber>;
-	enabled: z.ZodOptional<z.ZodBoolean>;
-	stage: z.ZodOptional<z.ZodString>;
-	id: z.ZodString;
+declare const roleSchema: z.ZodObject<{
 	created_at: z.ZodOptional<z.ZodString>;
 	updated_at: z.ZodOptional<z.ZodString>;
-}, z.ZodTypeAny, "passthrough">, z.objectInputType<{
 	name: z.ZodString;
-	script: z.ZodString;
-	order: z.ZodOptional<z.ZodNumber>;
-	enabled: z.ZodOptional<z.ZodBoolean>;
-	stage: z.ZodOptional<z.ZodString>;
+	description: z.ZodOptional<z.ZodString>;
 	id: z.ZodString;
-	created_at: z.ZodOptional<z.ZodString>;
-	updated_at: z.ZodOptional<z.ZodString>;
-}, z.ZodTypeAny, "passthrough">>;
-export type Rule = z.infer<typeof ruleSchema>;
+}, "strip", z.ZodTypeAny, {
+	name: string;
+	id: string;
+	description?: string | undefined;
+	created_at?: string | undefined;
+	updated_at?: string | undefined;
+}, {
+	name: string;
+	id: string;
+	description?: string | undefined;
+	created_at?: string | undefined;
+	updated_at?: string | undefined;
+}>;
+export type Role = z.infer<typeof roleSchema>;
+export type RoleInsert = z.infer<typeof roleInsertSchema>;
 export interface ListCodesResponse extends Totals {
 	codes: Code[];
 }
@@ -6050,25 +5999,29 @@ export interface ResourceServersAdapter {
 	update(tenant_id: string, id: string, resourceServer: Partial<ResourceServerInsert>): Promise<boolean>;
 	remove(tenant_id: string, id: string): Promise<boolean>;
 }
-export interface ListRulesResponse extends Totals {
-	rules: Rule[];
+export interface RolePermissionsAdapter {
+	assign(tenant_id: string, role_id: string, permissions: RolePermissionInsert[]): Promise<boolean>;
+	remove(tenant_id: string, role_id: string, permissions: Pick<RolePermissionInsert, "resource_server_identifier" | "permission_name">[]): Promise<boolean>;
+	list(tenant_id: string, role_id: string, params?: ListParams): Promise<RolePermissionWithDetailsList>;
 }
-export interface RulesAdapter {
-	create(tenant_id: string, rule: RuleInsert): Promise<Rule>;
-	get(tenant_id: string, rule_id: string): Promise<Rule | null>;
-	list(tenant_id: string, params?: ListParams): Promise<ListRulesResponse>;
-	update(tenant_id: string, rule_id: string, rule: Partial<RuleInsert>): Promise<boolean>;
-	remove(tenant_id: string, rule_id: string): Promise<boolean>;
+export interface UserPermissionsAdapter {
+	assign(tenant_id: string, user_id: string, permissions: UserPermissionInsert[]): Promise<boolean>;
+	remove(tenant_id: string, user_id: string, permissions: Pick<UserPermissionInsert, "resource_server_identifier" | "permission_name">[]): Promise<boolean>;
+	list(tenant_id: string, user_id: string, params?: ListParams): Promise<UserPermissionWithDetailsList>;
 }
-export interface ListPermissionsResponse extends Totals {
-	permissions: Permission[];
+export interface ListRolesResponse {
+	roles: Role[];
+	totals?: Totals;
+	start: number;
+	limit: number;
+	length: number;
 }
-export interface PermissionsAdapter {
-	create(tenant_id: string, permission: PermissionInsert): Promise<Permission>;
-	get(tenant_id: string, permission_id: string): Promise<Permission | null>;
-	list(tenant_id: string, params?: ListParams): Promise<ListPermissionsResponse>;
-	update(tenant_id: string, permission_id: string, permission: Partial<PermissionInsert>): Promise<boolean>;
-	remove(tenant_id: string, permission_id: string): Promise<boolean>;
+export interface RolesAdapter {
+	create(tenantId: string, role: RoleInsert): Promise<Role>;
+	get(tenantId: string, roleId: string): Promise<Role | null>;
+	list(tenantId: string, params?: ListParams): Promise<ListRolesResponse>;
+	update(tenantId: string, roleId: string, updates: Partial<Role>): Promise<boolean>;
+	remove(tenantId: string, roleId: string): Promise<boolean>;
 }
 export interface DataAdapters {
 	applications: ApplicationsAdapter;
@@ -6087,8 +6040,9 @@ export interface DataAdapters {
 	promptSettings: PromptSettingsAdapter;
 	refreshTokens: RefreshTokensAdapter;
 	resourceServers: ResourceServersAdapter;
-	rules: RulesAdapter;
-	permissions: PermissionsAdapter;
+	rolePermissions: RolePermissionsAdapter;
+	userPermissions: UserPermissionsAdapter;
+	roles: RolesAdapter;
 	sessions: SessionsAdapter;
 	tenants: TenantsDataAdapter;
 	themes: ThemesAdapter;
@@ -6765,6 +6719,8 @@ declare const sqlResourceServerSchema: z.ZodObject<Omit<{
 	skip_consent_for_verifiable_first_party_clients: z.ZodOptional<z.ZodNumber>;
 	allow_offline_access: z.ZodOptional<z.ZodNumber>;
 	verification_key: z.ZodOptional<z.ZodString>;
+	created_at: z.ZodString;
+	updated_at: z.ZodString;
 	name: z.ZodString;
 	identifier: z.ZodString;
 	signing_alg: z.ZodOptional<z.ZodString>;
@@ -6777,6 +6733,8 @@ declare const sqlResourceServerSchema: z.ZodObject<Omit<{
 	options: string;
 	tenant_id: string;
 	name: string;
+	created_at: string;
+	updated_at: string;
 	scopes: string;
 	identifier: string;
 	id?: string | undefined;
@@ -6790,6 +6748,8 @@ declare const sqlResourceServerSchema: z.ZodObject<Omit<{
 }, {
 	tenant_id: string;
 	name: string;
+	created_at: string;
+	updated_at: string;
 	identifier: string;
 	options?: string | undefined;
 	id?: string | undefined;
@@ -6802,61 +6762,65 @@ declare const sqlResourceServerSchema: z.ZodObject<Omit<{
 	token_lifetime?: number | undefined;
 	token_lifetime_for_web?: number | undefined;
 }>;
-declare const sqlRuleSchema: z.ZodObject<{
+declare const sqlRoleSchema: z.ZodObject<{
 	tenant_id: z.ZodString;
-	enabled: z.ZodOptional<z.ZodNumber>;
+	created_at: z.ZodString;
+	updated_at: z.ZodString;
 	name: z.ZodString;
-	script: z.ZodString;
-	order: z.ZodOptional<z.ZodNumber>;
-	stage: z.ZodOptional<z.ZodString>;
+	description: z.ZodOptional<z.ZodString>;
 	id: z.ZodString;
-	created_at: z.ZodOptional<z.ZodString>;
-	updated_at: z.ZodOptional<z.ZodString>;
 }, "strip", z.ZodTypeAny, {
 	tenant_id: string;
 	id: string;
 	name: string;
-	script: string;
-	enabled?: number | undefined;
-	created_at?: string | undefined;
-	updated_at?: string | undefined;
-	order?: number | undefined;
-	stage?: string | undefined;
+	created_at: string;
+	updated_at: string;
+	description?: string | undefined;
 }, {
 	tenant_id: string;
 	id: string;
 	name: string;
-	script: string;
-	enabled?: number | undefined;
-	created_at?: string | undefined;
-	updated_at?: string | undefined;
-	order?: number | undefined;
-	stage?: string | undefined;
+	created_at: string;
+	updated_at: string;
+	description?: string | undefined;
 }>;
-declare const sqlPermissionSchema: z.ZodObject<{
+declare const sqlRolePermissionSchema: z.ZodObject<{
 	tenant_id: z.ZodString;
-	sources: z.ZodOptional<z.ZodString>;
-	permission_name: z.ZodString;
-	description: z.ZodOptional<z.ZodNullable<z.ZodString>>;
+	role_id: z.ZodString;
 	resource_server_identifier: z.ZodString;
-	resource_server_name: z.ZodString;
-	id: z.ZodString;
+	permission_name: z.ZodString;
+	created_at: z.ZodString;
 }, "strip", z.ZodTypeAny, {
 	tenant_id: string;
-	id: string;
-	permission_name: string;
+	created_at: string;
+	role_id: string;
 	resource_server_identifier: string;
-	resource_server_name: string;
-	description?: string | null | undefined;
-	sources?: string | undefined;
+	permission_name: string;
 }, {
 	tenant_id: string;
-	id: string;
+	created_at: string;
+	role_id: string;
+	resource_server_identifier: string;
 	permission_name: string;
+}>;
+declare const sqlUserPermissionSchema: z.ZodObject<{
+	tenant_id: z.ZodString;
+	user_id: z.ZodString;
+	resource_server_identifier: z.ZodString;
+	permission_name: z.ZodString;
+	created_at: z.ZodString;
+}, "strip", z.ZodTypeAny, {
+	tenant_id: string;
+	created_at: string;
+	user_id: string;
 	resource_server_identifier: string;
-	resource_server_name: string;
-	description?: string | null | undefined;
-	sources?: string | undefined;
+	permission_name: string;
+}, {
+	tenant_id: string;
+	created_at: string;
+	user_id: string;
+	resource_server_identifier: string;
+	permission_name: string;
 }>;
 export interface Database {
 	applications: z.infer<typeof sqlApplicationSchema>;
@@ -6884,8 +6848,9 @@ export interface Database {
 	tenants: Tenant;
 	themes: z.infer<typeof sqlThemeSchema>;
 	resource_servers: z.infer<typeof sqlResourceServerSchema>;
-	rules: z.infer<typeof sqlRuleSchema>;
-	permissions: z.infer<typeof sqlPermissionSchema>;
+	role_permissions: z.infer<typeof sqlRolePermissionSchema>;
+	user_permissions: z.infer<typeof sqlUserPermissionSchema>;
+	roles: z.infer<typeof sqlRoleSchema>;
 }
 export declare function migrateToLatest(db: Kysely<Database>, debug?: boolean): Promise<void>;
 export declare function migrateDown(db: Kysely<Database>): Promise<void>;