@authhero/widget 0.32.32 → 0.32.33

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (5) hide show
  1. package/dist/authhero-widget/index.esm.js +1 -1
  2. package/dist/cjs/index.cjs.js +1 -1
  3. package/dist/components/index.js +1 -1
  4. package/dist/esm/index.js +1 -1
  5. package/package.json +2 -2
package/dist/esm/index.js CHANGED
@@ -19455,7 +19455,7 @@ function requireAdapterInterfaces () {
19455
19455
  if (hasRequiredAdapterInterfaces) return adapterInterfaces;
19456
19456
  hasRequiredAdapterInterfaces = 1;
19457
19457
  (function (exports) {
19458
- Object.defineProperty(exports,Symbol.toStringTag,{value:`Module`});let e=require$$0;var t=e.z.object({created_at:e.z.string(),updated_at:e.z.string()}),n=e.z.object({id:e.z.string(),version:e.z.string().optional()}),r=e.z.object({name:e.z.string(),version:e.z.string()}),i=e.z.object({name:e.z.string(),value:e.z.string().optional()}),a=e.z.object({name:e.z.string().max(255),code:e.z.string().max(1e5),supported_triggers:e.z.array(n).optional(),runtime:e.z.string().max(50).optional(),dependencies:e.z.array(r).optional(),secrets:e.z.array(i).optional(),is_system:e.z.boolean().optional(),inherit:e.z.boolean().optional()}),o=a.partial().extend({status:e.z.enum([`draft`,`built`]).optional(),deployed_at:e.z.string().optional()}),ee=a.extend({id:e.z.string(),tenant_id:e.z.string(),status:e.z.enum([`draft`,`built`]).default(`built`),deployed_at:e.z.string().optional(),secrets:e.z.array(e.z.object({name:e.z.string(),value:e.z.string().optional()})).optional()}).extend(t.shape),s=e.z.string(),c=e.z.enum([`unspecified`,`pending`,`final`,`partial`,`canceled`,`suspended`]),l=e.z.object({id:e.z.string(),msg:e.z.string(),url:e.z.string().optional()}),te=e.z.object({action_name:e.z.string(),error:l.nullable(),started_at:e.z.string(),ended_at:e.z.string()}),ne=e.z.object({level:e.z.enum([`log`,`info`,`warn`,`error`,`debug`]),message:e.z.string()}),re=e.z.array(e.z.object({action_name:e.z.string(),lines:e.z.array(ne)})),ie=e.z.object({id:e.z.string(),tenant_id:e.z.string(),trigger_id:s,status:c,results:e.z.array(te),logs:re.optional(),created_at:e.z.string(),updated_at:e.z.string()}),ae=ie.omit({tenant_id:true,created_at:true,updated_at:true}),oe=e.z.object({action_id:e.z.string(),code:e.z.string().max(1e5),runtime:e.z.string().max(50).optional(),dependencies:e.z.array(r).optional(),secrets:e.z.array(i).optional(),supported_triggers:e.z.array(n).optional(),deployed:e.z.boolean().default(true)}),se=oe.extend({id:e.z.string(),tenant_id:e.z.string(),number:e.z.number().int()}).extend(t.shape),ce=e.z.enum([`user_action`,`admin_action`,`system`,`api`]),le=e.z.object({type:e.z.enum([`user`,`admin`,`system`,`api_key`,`client_credentials`]),id:e.z.string().optional(),email:e.z.string().optional(),org_id:e.z.string().optional(),org_name:e.z.string().optional(),scopes:e.z.array(e.z.string()).optional(),client_id:e.z.string().optional()}),ue=e.z.object({type:e.z.string(),id:e.z.string(),before:e.z.record(e.z.string(),e.z.unknown()).optional(),after:e.z.record(e.z.string(),e.z.unknown()).optional(),diff:e.z.record(e.z.string(),e.z.object({old:e.z.unknown(),new:e.z.unknown()})).optional()}),de=e.z.object({method:e.z.string(),path:e.z.string(),query:e.z.record(e.z.string(),e.z.string()).optional(),body:e.z.unknown().optional(),ip:e.z.string(),user_agent:e.z.string().optional(),correlation_id:e.z.string().optional()}),fe=e.z.object({status_code:e.z.number(),body:e.z.unknown().optional()}),pe=e.z.object({country_code:e.z.string(),city_name:e.z.string(),latitude:e.z.string(),longitude:e.z.string(),time_zone:e.z.string(),continent_code:e.z.string()}),me=e.z.object({name:e.z.string(),version:e.z.string(),env:e.z.record(e.z.string(),e.z.string()).optional()}),he=e.z.object({tenant_id:e.z.string(),event_type:e.z.string(),log_type:e.z.string(),description:e.z.string().optional(),category:ce,actor:le,target:ue,request:de,response:fe.optional(),connection:e.z.string().optional(),strategy:e.z.string().optional(),strategy_type:e.z.string().optional(),audience:e.z.string().optional(),scope:e.z.string().optional(),location:pe.optional(),auth0_client:me.optional(),hostname:e.z.string(),is_mobile:e.z.boolean().optional(),timestamp:e.z.string()}),ge=he.extend({id:e.z.string()}),_e=e.z.enum([`AUTH0`,`EMAIL`,`REDIRECT`]),ve=e.z.enum([`CREATE_USER`,`GET_USER`,`UPDATE_USER`,`SEND_REQUEST`,`SEND_EMAIL`]),ye=e.z.enum([`VERIFY_EMAIL`]),be=e.z.object({require_mx_record:e.z.boolean().optional(),block_aliases:e.z.boolean().optional(),block_free_emails:e.z.boolean().optional(),block_disposable_emails:e.z.boolean().optional(),blocklist:e.z.array(e.z.string()).optional(),allowlist:e.z.array(e.z.string()).optional()}),xe=e.z.object({id:e.z.string(),alias:e.z.string().max(100).optional(),type:e.z.literal(`AUTH0`),action:e.z.literal(`UPDATE_USER`),allow_failure:e.z.boolean().optional(),mask_output:e.z.boolean().optional(),params:e.z.object({connection_id:e.z.string().optional(),user_id:e.z.string(),changes:e.z.record(e.z.string(),e.z.any())})}),Se=e.z.object({id:e.z.string(),alias:e.z.string().max(100).optional(),type:e.z.literal(`EMAIL`),action:e.z.literal(`VERIFY_EMAIL`),allow_failure:e.z.boolean().optional(),mask_output:e.z.boolean().optional(),params:e.z.object({email:e.z.string(),rules:be.optional()})}),u=e.z.enum([`change-email`,`account`,`custom`]),d=e.z.object({id:e.z.string(),alias:e.z.string().max(100).optional(),type:e.z.literal(`REDIRECT`),action:e.z.literal(`REDIRECT_USER`),allow_failure:e.z.boolean().optional(),mask_output:e.z.boolean().optional(),params:e.z.object({target:u.openapi({description:`The predefined target to redirect to, or 'custom' for a custom URL`}),custom_url:e.z.string().optional().openapi({description:`Custom URL to redirect to when target is 'custom'`})})}),f=e.z.union([xe,Se,d]),p=e.z.object({name:e.z.string().min(1).max(150).openapi({description:`The name of the flow`}),actions:e.z.array(f).optional().default([]).openapi({description:`The list of actions to execute in sequence`})}),Ce=p.extend(t.shape).extend({id:e.z.string().openapi({description:`Unique identifier for the flow`,example:`af_12tMpdJ3iek7svMyZkSh5M`})}),we=e.z.object({page:e.z.string().min(0).optional().default(`0`).transform(e=>parseInt(e,10)).openapi({description:`The page number where 0 is the first page`}),per_page:e.z.string().min(1).optional().default(`10`).transform(e=>parseInt(e,10)).openapi({description:`The number of items per page`}),include_totals:e.z.string().optional().default(`false`).transform(e=>e===`true`).openapi({description:`If the total number of items should be included in the response`}),sort:e.z.string().regex(/^.+:(-1|1)$/).optional().openapi({description:`A property that should have the format 'string:-1' or 'string:1'`}),q:e.z.string().optional().openapi({description:`A lucene query string used to filter the results`})}),Te=e.z.object({start:e.z.number(),limit:e.z.number(),length:e.z.number(),total:e.z.number().optional()}),m=e.z.object({email:e.z.string().optional(),email_verified:e.z.boolean().optional(),name:e.z.string().optional(),username:e.z.string().optional(),given_name:e.z.string().optional(),phone_number:e.z.string().optional(),phone_verified:e.z.boolean().optional(),family_name:e.z.string().optional()}).catchall(e.z.any()),h=e.z.object({connection:e.z.string(),user_id:e.z.string(),provider:e.z.string(),isSocial:e.z.boolean(),email:e.z.string().optional(),email_verified:e.z.boolean().optional(),phone_number:e.z.string().optional(),phone_verified:e.z.boolean().optional(),username:e.z.string().optional(),access_token:e.z.string().optional(),access_token_secret:e.z.string().optional(),refresh_token:e.z.string().optional(),profileData:m.optional()}),g=e.z.object({formatted:e.z.string().optional(),street_address:e.z.string().optional(),locality:e.z.string().optional(),region:e.z.string().optional(),postal_code:e.z.string().optional(),country:e.z.string().optional()}).optional(),_=e.z.object({email:e.z.string().transform(e=>e.toLowerCase()).optional(),username:e.z.string().refine(e=>!e.includes(`@`),{message:`Usernames must not contain "@". Use the email field for email addresses.`}).optional(),phone_number:e.z.string().optional(),phone_verified:e.z.boolean().optional(),given_name:e.z.string().optional(),family_name:e.z.string().optional(),nickname:e.z.string().optional(),name:e.z.string().optional(),picture:e.z.string().optional(),locale:e.z.string().optional(),linked_to:e.z.string().optional(),profileData:e.z.string().optional(),user_id:e.z.string().optional(),app_metadata:e.z.any().default({}).optional(),user_metadata:e.z.any().default({}).optional(),middle_name:e.z.string().optional(),preferred_username:e.z.string().optional(),profile:e.z.string().optional(),website:e.z.string().optional(),gender:e.z.string().optional(),birthdate:e.z.string().optional(),zoneinfo:e.z.string().optional(),address:g}),v=_.extend({email_verified:e.z.boolean().default(false),verify_email:e.z.boolean().optional(),last_ip:e.z.string().optional(),last_login:e.z.string().optional(),user_id:e.z.string().optional(),provider:e.z.string().optional(),connection:e.z.string(),is_social:e.z.boolean().optional(),registration_completed_at:e.z.string().optional(),password:e.z.object({hash:e.z.string(),algorithm:e.z.string()}).optional()}),y=v.omit({password:true}).extend(t.shape).extend({user_id:e.z.string(),provider:e.z.string(),is_social:e.z.boolean(),email:e.z.string().optional(),login_count:e.z.number().default(0),identities:e.z.array(h).optional()}),Ee=y.omit({registration_completed_at:true}),De=_.extend({login_count:e.z.number(),multifactor:e.z.array(e.z.string()).optional(),last_ip:e.z.string().optional(),last_login:e.z.string().optional(),user_id:e.z.string()}).catchall(e.z.any()),Oe=`useandom-26T198340PX75pxJACKVERYMINDBUSHWOLF_GQZbfghjklqvwyzrict`,ke=(e=21)=>{let t=``,n=crypto.getRandomValues(new Uint8Array(e|=0));for(;e--;)t+=Oe[n[e]&63];return t},b=e.z.object({client_id:e.z.string().optional().openapi({description:`ID of this client. Generated server-side if omitted (Auth0 behavior).`}),name:e.z.string().min(1).openapi({description:`Name of this client (min length: 1 character, does not allow < or >).`}),description:e.z.string().max(140).optional().openapi({description:`Free text description of this client (max length: 140 characters).`}),global:e.z.boolean().default(false).openapi({description:`Whether this is your global 'All Applications' client representing legacy tenant settings (true) or a regular client (false).`}),client_secret:e.z.string().default(()=>ke()).optional().openapi({description:`Client secret (which you must not make public).`}),app_type:e.z.enum([`native`,`spa`,`regular_web`,`non_interactive`,`resource_server`,`express_configuration`,`rms`,`box`,`cloudbees`,`concur`,`dropbox`,`mscrm`,`echosign`,`egnyte`,`newrelic`,`office365`,`salesforce`,`sentry`,`sharepoint`,`slack`,`springcm`,`zendesk`,`zoom`,`sso_integration`,`oag`]).default(`regular_web`).optional().openapi({description:`The type of application this client represents`}),logo_uri:e.z.string().url().optional().openapi({description:`URL of the logo to display for this client. Recommended size is 150x150 pixels.`}),is_first_party:e.z.boolean().default(false).openapi({description:`Whether this client a first party client (true) or not (false).`}),oidc_conformant:e.z.boolean().default(true).openapi({description:`Whether this client conforms to strict OIDC specifications (true) or uses legacy features (false).`}),auth0_conformant:e.z.boolean().default(true).openapi({description:`Whether this client follows Auth0-compatible behavior (true) or strict OIDC behavior (false). When true, profile/email claims are included in the ID token when scopes are requested. When false, these claims are only available from the userinfo endpoint (strict OIDC 5.4 compliance).`}),callbacks:e.z.array(e.z.string()).default([]).optional().openapi({description:`Comma-separated list of URLs whitelisted for Auth0 to use as a callback to the client after authentication.`}),allowed_origins:e.z.array(e.z.string()).default([]).optional().openapi({description:`Comma-separated list of URLs allowed to make requests from JavaScript to Auth0 API (typically used with CORS). By default, all your callback URLs will be allowed. This field allows you to enter other origins if necessary. You can also use wildcards at the subdomain level (e.g., https://*.contoso.com). Query strings and hash information are not taken into account when validating these URLs.`}),web_origins:e.z.array(e.z.string()).default([]).optional().openapi({description:`Comma-separated list of allowed origins for use with Cross-Origin Authentication, Device Flow, and web message response mode.`}),client_aliases:e.z.array(e.z.string()).default([]).optional().openapi({description:`List of audiences/realms for SAML protocol. Used by the wsfed addon.`}),allowed_clients:e.z.array(e.z.string()).default([]).optional().openapi({description:`List of allow clients and API ids that are allowed to make delegation requests. Empty means all all your clients are allowed.`}),connections:e.z.array(e.z.string()).default([]).optional().openapi({description:`List of connection IDs enabled for this client. The order determines the display order on the login page.`}),allowed_logout_urls:e.z.array(e.z.string()).default([]).optional().openapi({description:`Comma-separated list of URLs that are valid to redirect to after logout from Auth0. Wildcards are allowed for subdomains.`}),session_transfer:e.z.record(e.z.string(),e.z.any()).default({}).optional().openapi({description:`Native to Web SSO Configuration`}),oidc_logout:e.z.record(e.z.string(),e.z.any()).default({}).optional().openapi({description:`Configuration for OIDC backchannel logout`}),grant_types:e.z.array(e.z.string()).default([]).optional().openapi({description:`List of grant types supported for this application. Can include authorization_code, implicit, refresh_token, client_credentials, password, http://auth0.com/oauth/grant-type/password-realm, http://auth0.com/oauth/grant-type/mfa-oob, http://auth0.com/oauth/grant-type/mfa-otp, http://auth0.com/oauth/grant-type/mfa-recovery-code, urn:openid:params:grant-type:ciba, and urn:ietf:params:oauth:grant-type:device_code.`}),jwt_configuration:e.z.record(e.z.string(),e.z.any()).default({}).optional().openapi({description:`Configuration related to JWTs for the client.`}),signing_keys:e.z.array(e.z.record(e.z.string(),e.z.any())).default([]).optional().openapi({description:`Signing certificates associated with this client.`}),encryption_key:e.z.record(e.z.string(),e.z.any()).default({}).optional().openapi({description:`Encryption used for WsFed responses with this client.`}),sso:e.z.boolean().default(false).openapi({description:`Applies only to SSO clients and determines whether Auth0 will handle Single Sign On (true) or whether the Identity Provider will (false).`}),sso_disabled:e.z.boolean().default(false).openapi({description:`Whether Single Sign On is disabled for this client. When true, existing SSO sessions will not be reused and users must authenticate every time.`}),cross_origin_authentication:e.z.boolean().default(false).openapi({description:`Whether this client can be used to make cross-origin authentication requests (true) or it is not allowed to make such requests (false).`}),cross_origin_loc:e.z.string().url().optional().openapi({description:`URL of the location in your site where the cross origin verification takes place for the cross-origin auth flow when performing Auth in your own domain instead of Auth0 hosted login page.`}),custom_login_page_on:e.z.boolean().default(false).openapi({description:`Whether a custom login page is to be used (true) or the default provided login page (false).`}),custom_login_page:e.z.string().optional().openapi({description:`The content (HTML, CSS, JS) of the custom login page.`}),custom_login_page_preview:e.z.string().optional().openapi({description:`The content (HTML, CSS, JS) of the custom login page. (Used on Previews)`}),form_template:e.z.string().optional().openapi({description:`HTML form template to be used for WS-Federation.`}),addons:e.z.record(e.z.string(),e.z.any()).default({}).optional().openapi({description:`Addons enabled for this client and their associated configurations.`}),token_endpoint_auth_method:e.z.enum([`none`,`client_secret_post`,`client_secret_basic`,`client_secret_jwt`,`private_key_jwt`]).default(`client_secret_basic`).optional().openapi({description:"Defines the requested authentication method for the token endpoint. `none` (public client), `client_secret_post` / `client_secret_basic` (HTTP POST / Basic), `client_secret_jwt` (RFC 7523 HMAC assertion using client_secret), or `private_key_jwt` (RFC 7523 asymmetric assertion verified against the client's `jwks` / `jwks_uri`)."}),client_metadata:e.z.record(e.z.string(),e.z.string().max(255)).default({}).optional().openapi({description:`Metadata associated with the client, in the form of an object with string values (max 255 chars). Maximum of 10 metadata properties allowed. Field names (max 255 chars) are alphanumeric and may only include the following special characters: :,-+=_*?"/()<>@ [Tab][Space]`}),hide_sign_up_disabled_error:e.z.boolean().default(false).optional().openapi({description:"Enumeration-safe variant of the connection-level `disable_signup` flag. When a signup is blocked by the password connection and this is true, the identifier screen does not reveal that an email is unknown — it advances to the OTP/password challenge as if the account existed and fails at credential check. Mitigates email enumeration at the cost of UX: users without an account see a generic credential failure instead of an explicit signup-disabled message."}),mobile:e.z.record(e.z.string(),e.z.any()).default({}).optional().openapi({description:`Additional configuration for native mobile apps.`}),initiate_login_uri:e.z.string().url().optional().openapi({description:`Initiate login uri, must be https`}),native_social_login:e.z.record(e.z.string(),e.z.any()).default({}).optional(),refresh_token:e.z.object({rotation_type:e.z.enum([`rotating`,`non-rotating`]).optional().openapi({description:`Whether refresh tokens for this client are rotated on every exchange (Auth0 'rotating' behavior) or kept stable (legacy non-rotating). Defaults to 'non-rotating' when unset.`}),leeway:e.z.number().int().min(0).max(600).optional().openapi({description:`Seconds after a parent token's first rotation during which presenting it again still mints a fresh sibling child instead of triggering reuse-detection. Defaults to 30s when unset.`}),expiration_type:e.z.enum([`expiring`,`non-expiring`]).optional().openapi({description:`Auth0-compatible: whether refresh tokens expire.`}),token_lifetime:e.z.number().int().min(0).optional().openapi({description:`Auth0-compatible: refresh-token absolute lifetime in seconds.`}),infinite_token_lifetime:e.z.boolean().optional().openapi({description:`Auth0-compatible: when true, refresh tokens have no absolute expiry.`}),idle_token_lifetime:e.z.number().int().min(0).optional().openapi({description:`Auth0-compatible: refresh-token idle (sliding) lifetime in seconds.`}),infinite_idle_token_lifetime:e.z.boolean().optional().openapi({description:`Auth0-compatible: when true, refresh tokens have no idle expiry.`})}).default({}).optional().openapi({description:`Refresh token configuration`}),default_organization:e.z.record(e.z.string(),e.z.any()).default({}).optional().openapi({description:`Defines the default Organization ID and flows`}),organization_usage:e.z.enum([`deny`,`allow`,`require`]).default(`deny`).optional().openapi({description:`Defines how to proceed during an authentication transaction with regards an organization. Can be deny (default), allow or require.`}),organization_require_behavior:e.z.enum([`no_prompt`,`pre_login_prompt`,`post_login_prompt`]).default(`no_prompt`).optional().openapi({description:`Defines how to proceed during an authentication transaction when client.organization_usage: 'require'. Can be no_prompt (default), pre_login_prompt or post_login_prompt. post_login_prompt requires oidc_conformant: true.`}),client_authentication_methods:e.z.record(e.z.string(),e.z.any()).default({}).optional().openapi({description:`Defines client authentication methods.`}),require_pushed_authorization_requests:e.z.boolean().default(false).openapi({description:`Makes the use of Pushed Authorization Requests mandatory for this client`}),require_proof_of_possession:e.z.boolean().default(false).openapi({description:`Makes the use of Proof-of-Possession mandatory for this client`}),signed_request_object:e.z.record(e.z.string(),e.z.any()).default({}).optional().openapi({description:`JWT-secured Authorization Requests (JAR) settings.`}),compliance_level:e.z.enum([`none`,`fapi1_adv_pkj_par`,`fapi1_adv_mtls_par`,`fapi2_sp_pkj_mtls`,`fapi2_sp_mtls_mtls`]).optional().openapi({description:`Defines the compliance level for this client, which may restrict it's capabilities`}),par_request_expiry:e.z.number().optional().openapi({description:`Specifies how long, in seconds, a Pushed Authorization Request URI remains valid`}),token_quota:e.z.record(e.z.string(),e.z.any()).default({}).optional(),owner_user_id:e.z.string().optional().openapi({description:`User ID of the consenting user when this client was created via IAT-gated Dynamic Client Registration. NULL for clients created via the Management API or open DCR.`}),registration_type:e.z.enum([`manual`,`open_dcr`,`iat_dcr`]).optional().openapi({description:"Provenance of this client. `manual` = Management API; `open_dcr` = RFC 7591 without IAT; `iat_dcr` = RFC 7591 with an Initial Access Token."}),registration_metadata:e.z.record(e.z.string(),e.z.any()).default({}).optional().openapi({description:"Arbitrary metadata captured at Dynamic Client Registration time that isn't a first-class client field (e.g. integration_type, domain). Also stores `iat_constraints` for clients created via IAT so RFC 7592 PUT can enforce field immutability."}),user_linking_mode:e.z.enum([`builtin`,`off`]).optional().openapi({description:"Per-client override for the built-in email-based user-linking path. `builtin` runs the legacy in-process linking at user creation/email update. `off` disables the legacy path; linking only happens if the tenant has enabled the `account-linking` template hook. When unset, the service-level `userLinkingMode` default applies."})}),Ae=e.z.object({created_at:e.z.string(),updated_at:e.z.string()}).extend(b.shape).extend({client_id:e.z.string()}),x=e.z.object({client_id:e.z.string().min(1).openapi({description:`ID of the client.`}),audience:e.z.string().min(1).openapi({description:`The audience (API identifier) of this client grant.`}),scope:e.z.array(e.z.string()).optional().openapi({description:`Scopes allowed for this client grant.`}),organization_usage:e.z.enum([`deny`,`allow`,`require`]).optional().openapi({description:`Defines whether organizations can be used with client credentials exchanges for this grant.`}),allow_any_organization:e.z.boolean().optional().openapi({description:`If enabled, any organization can be used with this grant. If disabled (default), the grant must be explicitly assigned to the desired organizations.`}),is_system:e.z.boolean().optional().openapi({description:`If enabled, this grant is a special grant created by Auth0. It cannot be modified or deleted directly.`}),subject_type:e.z.enum([`client`,`user`]).optional().openapi({description:`The type of application access the client grant allows. Use of this field is subject to the applicable Free Trial terms in Okta's Master Subscription Agreement.`}),authorization_details_types:e.z.array(e.z.string()).optional().openapi({description:`Types of authorization_details allowed for this client grant. Use of this field is subject to the applicable Free Trial terms in Okta's Master Subscription Agreement.`})}),S=e.z.object({id:e.z.string().openapi({description:`ID of the client grant.`})}).extend(x.shape).extend({created_at:e.z.string().optional(),updated_at:e.z.string().optional()}),je=e.z.array(S),C=e.z.enum([`iat`,`rat`]),w=e.z.object({id:e.z.string(),token_hash:e.z.string(),type:C,client_id:e.z.string().optional(),sub:e.z.string().optional(),constraints:e.z.record(e.z.string(),e.z.unknown()).optional(),single_use:e.z.boolean().default(false),expires_at:e.z.string().optional()}),Me=e.z.object({created_at:e.z.string(),used_at:e.z.string().optional(),revoked_at:e.z.string().optional()}).extend(w.shape),T=e.z.object({x:e.z.number(),y:e.z.number()}),E=function(e){return e.RICH_TEXT=`RICH_TEXT`,e.NEXT_BUTTON=`NEXT_BUTTON`,e.BACK_BUTTON=`BACK_BUTTON`,e.SUBMIT_BUTTON=`SUBMIT_BUTTON`,e.DIVIDER=`DIVIDER`,e.TEXT=`TEXT`,e.EMAIL=`EMAIL`,e.PASSWORD=`PASSWORD`,e.NUMBER=`NUMBER`,e.PHONE=`PHONE`,e.DATE=`DATE`,e.CHECKBOX=`CHECKBOX`,e.RADIO=`RADIO`,e.SELECT=`SELECT`,e.HIDDEN=`HIDDEN`,e.LEGAL=`LEGAL`,e}({}),D=function(e){return e.BLOCK=`BLOCK`,e.FIELD=`FIELD`,e}({}),O=e.z.object({id:e.z.string(),category:e.z.nativeEnum(D),type:e.z.nativeEnum(E)}),k=O.extend({category:e.z.literal(`BLOCK`),type:e.z.literal(`RICH_TEXT`),config:e.z.object({content:e.z.string()}).passthrough()}),A=O.extend({category:e.z.literal(`BLOCK`),type:e.z.union([e.z.literal(`NEXT_BUTTON`),e.z.literal(`BACK_BUTTON`),e.z.literal(`SUBMIT_BUTTON`)]),config:e.z.object({text:e.z.string()}).passthrough()}),j=O.extend({category:e.z.literal(`FIELD`),type:e.z.literal(`LEGAL`),required:e.z.boolean().optional(),sensitive:e.z.boolean().optional(),config:e.z.object({text:e.z.string()}).passthrough()}),M=O.extend({category:e.z.literal(`FIELD`),type:e.z.union([e.z.literal(`TEXT`),e.z.literal(`EMAIL`),e.z.literal(`PASSWORD`),e.z.literal(`NUMBER`),e.z.literal(`PHONE`),e.z.literal(`DATE`),e.z.literal(`CHECKBOX`),e.z.literal(`RADIO`),e.z.literal(`SELECT`),e.z.literal(`HIDDEN`)]),required:e.z.boolean().optional(),sensitive:e.z.boolean().optional(),config:e.z.object({label:e.z.string().optional(),placeholder:e.z.string().optional()}).passthrough()}),N=e.z.object({id:e.z.string(),category:e.z.string(),type:e.z.string()}).passthrough(),P=e.z.union([k,A,j,M,N]),Ne=function(e){return e.STEP=`STEP`,e.FLOW=`FLOW`,e.CONDITION=`CONDITION`,e.ACTION=`ACTION`,e}({}),F=e.z.object({id:e.z.string(),type:e.z.literal(`STEP`),coordinates:T,alias:e.z.string().optional(),config:e.z.object({components:e.z.array(P),next_node:e.z.string()}).passthrough()}),I=e.z.object({id:e.z.string(),type:e.z.literal(`FLOW`),coordinates:T,alias:e.z.string().optional(),config:e.z.object({flow_id:e.z.string(),next_node:e.z.string()})}),L=e.z.object({id:e.z.string(),type:e.z.literal(`ACTION`),coordinates:T,alias:e.z.string().optional(),config:e.z.object({action_type:e.z.enum([`REDIRECT`]).openapi({description:`The type of action to perform`}),target:e.z.enum([`change-email`,`account`,`custom`]).openapi({description:`The predefined target to redirect to`}),custom_url:e.z.string().optional().openapi({description:`Custom URL when target is 'custom'`}),next_node:e.z.string().openapi({description:`The next node to navigate to after action (for non-redirect actions)`})}).passthrough()}),R=e.z.object({id:e.z.string(),type:e.z.string(),coordinates:T}).passthrough(),z=e.z.union([F,I,L,R]),Pe=e.z.object({next_node:e.z.string(),coordinates:T}).passthrough(),Fe=e.z.object({resume_flow:e.z.boolean().optional(),coordinates:T}).passthrough(),Ie=e.z.object({id:e.z.string(),name:e.z.string(),languages:e.z.object({primary:e.z.string()}).passthrough(),nodes:e.z.array(z),start:Pe,ending:Fe,created_at:e.z.string(),updated_at:e.z.string(),links:e.z.object({sdkSrc:e.z.string().optional(),sdk_src:e.z.string().optional()}).passthrough()}).passthrough(),Le=Ie.omit({id:true,created_at:true,updated_at:true}),Re=function(e){return e.TOKEN=`token`,e.ID_TOKEN=`id_token`,e.TOKEN_ID_TOKEN=`id_token token`,e.CODE=`code`,e.CODE_ID_TOKEN=`code id_token`,e.CODE_TOKEN=`code token`,e.CODE_ID_TOKEN_TOKEN=`code id_token token`,e}({}),ze=function(e){return e.QUERY=`query`,e.FRAGMENT=`fragment`,e.FORM_POST=`form_post`,e.WEB_MESSAGE=`web_message`,e.SAML_POST=`saml_post`,e}({}),Be=function(e){return e.S256=`S256`,e.Plain=`plain`,e}({}),Ve=e.z.union([e.z.null(),e.z.object({essential:e.z.boolean().optional(),value:e.z.unknown().optional(),values:e.z.array(e.z.unknown()).optional()})]).nullable(),He=e.z.object({userinfo:e.z.record(e.z.string(),Ve).optional(),id_token:e.z.record(e.z.string(),Ve).optional()}),Ue=e.z.object({client_id:e.z.string(),act_as:e.z.string().optional(),response_type:e.z.nativeEnum(Re).optional(),response_mode:e.z.nativeEnum(ze).optional(),redirect_uri:e.z.string().optional(),audience:e.z.string().optional(),organization:e.z.string().optional(),state:e.z.string().optional(),nonce:e.z.string().optional(),scope:e.z.string().optional(),prompt:e.z.string().optional(),code_challenge_method:e.z.nativeEnum(Be).optional(),code_challenge:e.z.string().optional(),username:e.z.string().optional(),ui_locales:e.z.string().optional(),max_age:e.z.number().optional(),acr_values:e.z.string().optional(),claims:He.optional(),vendor_id:e.z.string().optional()}),We=e.z.object({colors:e.z.object({primary:e.z.string(),page_background:e.z.union([e.z.string(),e.z.object({type:e.z.string().optional(),start:e.z.string().optional(),end:e.z.string().optional(),angle_deg:e.z.number().optional()})]).optional()}).optional(),logo_url:e.z.string().optional(),favicon_url:e.z.string().optional(),powered_by_logo_url:e.z.string().optional(),font:e.z.object({url:e.z.string()}).optional(),dark_mode:e.z.enum([`dark`,`light`,`auto`]).optional()}),Ge=e.z.enum([`password_reset`,`email_verification`,`otp`,`mfa_otp`,`authorization_code`,`oauth2_state`,`ticket`]),Ke=e.z.object({code_id:e.z.string().openapi({description:`The code that will be used in for instance an email verification flow`}),login_id:e.z.string().openapi({description:`The id of the login session that the code is connected to`}),connection_id:e.z.string().optional().openapi({description:`The connection that the code is connected to`}),code_type:Ge,code_verifier:e.z.string().optional().openapi({description:`The code verifier used in PKCE in outbound flows`}),code_challenge:e.z.string().optional().openapi({description:`The code challenge used in PKCE in outbound flows`}),code_challenge_method:e.z.enum([`plain`,`S256`]).optional().openapi({description:`The code challenge method used in PKCE in outbound flows`}),redirect_uri:e.z.string().optional().openapi({description:`The redirect URI associated with the code`}),otp:e.z.string().optional().openapi({description:`The one-time password value for OTP-based flows`}),nonce:e.z.string().optional().openapi({description:`The nonce value used for security in OIDC flows`}),state:e.z.string().optional().openapi({description:`The state parameter used for CSRF protection in OAuth flows`}),expires_at:e.z.string(),used_at:e.z.string().optional(),user_id:e.z.string().optional()}),qe=Ke.extend({created_at:e.z.string()}),Je=e.z.object({kid:e.z.string().optional(),team_id:e.z.string().optional(),realms:e.z.string().optional(),authentication_method:e.z.string().optional(),client_id:e.z.string().optional(),client_secret:e.z.string().optional(),app_secret:e.z.string().optional(),scope:e.z.string().optional(),authorization_endpoint:e.z.string().optional(),token_endpoint:e.z.string().optional(),userinfo_endpoint:e.z.string().optional(),jwks_uri:e.z.string().optional(),discovery_url:e.z.string().optional(),issuer:e.z.string().optional(),token_endpoint_auth_method:e.z.enum([`client_secret_basic`,`client_secret_post`]).optional(),provider:e.z.string().optional(),from:e.z.string().optional(),twilio_sid:e.z.string().optional(),twilio_token:e.z.string().optional(),icon_url:e.z.string().optional(),domain_aliases:e.z.array(e.z.string()).optional(),callback_url:e.z.string().url().optional(),passwordPolicy:e.z.enum([`none`,`low`,`fair`,`good`,`excellent`]).optional(),password_complexity_options:e.z.object({min_length:e.z.number().optional()}).optional(),password_history:e.z.object({enable:e.z.boolean().optional(),size:e.z.number().optional()}).optional(),password_no_personal_info:e.z.object({enable:e.z.boolean().optional()}).optional(),password_dictionary:e.z.object({enable:e.z.boolean().optional(),dictionary:e.z.array(e.z.string()).optional()}).optional(),disable_signup:e.z.boolean().optional(),brute_force_protection:e.z.boolean().optional(),import_mode:e.z.boolean().optional(),configuration:e.z.object({token_endpoint:e.z.string().optional(),userinfo_endpoint:e.z.string().optional(),client_id:e.z.string().optional(),client_secret:e.z.string().optional(),realm:e.z.string().optional()}).optional(),attributes:e.z.object({email:e.z.object({identifier:e.z.object({active:e.z.boolean().optional()}).optional(),signup:e.z.object({status:e.z.enum([`required`,`optional`,`disabled`]).optional(),verification:e.z.object({active:e.z.boolean().optional()}).optional()}).optional(),validation:e.z.object({allowed:e.z.boolean().optional()}).optional(),unique:e.z.boolean().optional(),profile_required:e.z.boolean().optional(),verification_method:e.z.enum([`link`,`code`]).optional()}).optional(),username:e.z.object({identifier:e.z.object({active:e.z.boolean().optional()}).optional(),signup:e.z.object({status:e.z.enum([`required`,`optional`,`disabled`]).optional()}).optional(),validation:e.z.object({max_length:e.z.number().optional(),min_length:e.z.number().optional(),allowed_types:e.z.object({email:e.z.boolean().optional(),phone_number:e.z.boolean().optional()}).optional()}).optional(),profile_required:e.z.boolean().optional()}).optional(),phone_number:e.z.object({identifier:e.z.object({active:e.z.boolean().optional()}).optional(),signup:e.z.object({status:e.z.enum([`required`,`optional`,`disabled`]).optional()}).optional()}).optional()}).optional(),authentication_methods:e.z.object({password:e.z.object({enabled:e.z.boolean().optional()}).optional(),passkey:e.z.object({enabled:e.z.boolean().optional()}).optional()}).optional(),passkey_options:e.z.object({challenge_ui:e.z.enum([`both`,`autofill`,`button`]).optional(),local_enrollment_enabled:e.z.boolean().optional(),progressive_enrollment_enabled:e.z.boolean().optional()}).optional(),requires_username:e.z.boolean().optional(),validation:e.z.object({username:e.z.object({min:e.z.number().optional(),max:e.z.number().optional()}).optional()}).optional(),set_user_root_attributes:e.z.enum([`on_each_login`,`on_first_login`,`never_on_login`]).optional()});function B(e){if(e!==null){if(Array.isArray(e))return e.filter(e=>e!==null).map(B);if(e&&typeof e==`object`){let t={};for(let[n,r]of Object.entries(e))r!==null&&(t[n]=B(r));return t}return e}}var Ye=e.z.object({id:e.z.string().optional(),name:e.z.string(),display_name:e.z.string().optional(),strategy:e.z.string(),options:e.z.preprocess(e=>e===null?{}:B(e),Je).default({}),enabled_clients:e.z.array(e.z.string()).default([]).optional(),response_type:e.z.custom().optional(),response_mode:e.z.custom().optional(),is_domain_connection:e.z.boolean().optional(),show_as_button:e.z.boolean().optional(),metadata:e.z.record(e.z.string(),e.z.any()).optional(),is_system:e.z.boolean().optional()}),Xe=e.z.object({id:e.z.string(),created_at:e.z.string().transform(e=>e===null?``:e),updated_at:e.z.string().transform(e=>e===null?``:e)}).extend(Ye.shape),Ze=e.z.object({domain:e.z.string(),custom_domain_id:e.z.string().optional(),type:e.z.enum([`auth0_managed_certs`,`self_managed_certs`]),verification_method:e.z.enum([`txt`]).optional(),tls_policy:e.z.enum([`recommended`]).optional(),custom_client_ip_header:e.z.enum([`true-client-ip`,`cf-connecting-ip`,`x-forwarded-for`,`x-azure-clientip`,`null`]).optional(),domain_metadata:e.z.record(e.z.string(),e.z.string().max(255)).optional()}),Qe=e.z.discriminatedUnion(`name`,[e.z.object({name:e.z.literal(`txt`),record:e.z.string(),domain:e.z.string()}),e.z.object({name:e.z.literal(`http`),http_body:e.z.string(),http_url:e.z.string()})]),$e=Ze.extend({custom_domain_id:e.z.string(),primary:e.z.boolean(),status:e.z.enum([`disabled`,`pending`,`pending_verification`,`ready`]),origin_domain_name:e.z.string().optional(),verification:e.z.object({methods:e.z.array(Qe)}).optional(),tls_policy:e.z.string().optional()}),et=$e.extend({tenant_id:e.z.string()}),V=e.z.object({id:e.z.string(),order:e.z.number().optional(),visible:e.z.boolean().optional().default(true)}),H=V.extend({category:e.z.literal(`BLOCK`).optional()}),tt=H.extend({type:e.z.literal(`DIVIDER`),config:e.z.object({text:e.z.string().optional()}).optional()}),nt=H.extend({type:e.z.literal(`HTML`),config:e.z.object({content:e.z.string().optional()}).optional()}),rt=H.extend({type:e.z.literal(`IMAGE`),config:e.z.object({src:e.z.string().optional(),alt:e.z.string().optional(),width:e.z.number().optional(),height:e.z.number().optional()}).optional()}),it=H.extend({type:e.z.literal(`JUMP_BUTTON`),config:e.z.object({text:e.z.string().optional(),target_step:e.z.string().optional()})}),at=H.extend({type:e.z.literal(`RESEND_BUTTON`),config:e.z.object({text:e.z.string().optional(),resend_action:e.z.string().optional()})}),ot=H.extend({type:e.z.literal(`NEXT_BUTTON`),config:e.z.object({text:e.z.string().optional()})}),st=H.extend({type:e.z.literal(`PREVIOUS_BUTTON`),config:e.z.object({text:e.z.string().optional()})}),ct=H.extend({type:e.z.literal(`RICH_TEXT`),config:e.z.object({content:e.z.string().optional()}).optional()}),U=V.extend({category:e.z.literal(`WIDGET`).optional(),label:e.z.string().min(1).optional(),hint:e.z.string().min(1).max(500).optional(),required:e.z.boolean().optional(),sensitive:e.z.boolean().optional()}),lt=U.extend({type:e.z.literal(`AUTH0_VERIFIABLE_CREDENTIALS`),config:e.z.object({credential_type:e.z.string().optional()})}),ut=U.extend({type:e.z.literal(`GMAPS_ADDRESS`),config:e.z.object({api_key:e.z.string().optional()})}),dt=U.extend({type:e.z.literal(`RECAPTCHA`),config:e.z.object({site_key:e.z.string().optional()})}),W=V.extend({category:e.z.literal(`FIELD`).optional(),label:e.z.string().min(1).optional(),hint:e.z.string().min(1).max(500).optional(),messages:e.z.array(e.z.object({id:e.z.number().optional(),text:e.z.string(),type:e.z.enum([`info`,`error`,`success`,`warning`])})).optional(),required:e.z.boolean().optional(),sensitive:e.z.boolean().optional()}),ft=W.extend({type:e.z.literal(`BOOLEAN`),config:e.z.object({default_value:e.z.boolean().optional()}).optional()}),pt=W.extend({type:e.z.literal(`CARDS`),config:e.z.object({options:e.z.array(e.z.object({value:e.z.string(),label:e.z.string(),description:e.z.string().optional(),image:e.z.string().optional()})).optional(),multi_select:e.z.boolean().optional()}).optional()}),mt=W.extend({type:e.z.literal(`CHOICE`),config:e.z.object({options:e.z.array(e.z.object({value:e.z.string(),label:e.z.string()})).optional(),display:e.z.enum([`radio`,`checkbox`]).optional(),multiple:e.z.boolean().optional(),default_value:e.z.union([e.z.string(),e.z.array(e.z.string())]).optional()}).optional()}),ht=W.extend({type:e.z.literal(`CUSTOM`),config:e.z.object({component:e.z.string().optional(),props:e.z.record(e.z.string(),e.z.any()).optional(),schema:e.z.record(e.z.string(),e.z.any()).optional(),code:e.z.string().optional()})}),gt=W.extend({type:e.z.literal(`DATE`),config:e.z.object({format:e.z.string().optional(),min:e.z.string().optional(),max:e.z.string().optional(),default_value:e.z.string().optional()}).optional()}),_t=W.extend({type:e.z.literal(`DROPDOWN`),config:e.z.object({options:e.z.array(e.z.object({value:e.z.string(),label:e.z.string()})).optional(),placeholder:e.z.string().optional(),searchable:e.z.boolean().optional(),multiple:e.z.boolean().optional(),default_value:e.z.union([e.z.string(),e.z.array(e.z.string())]).optional()}).optional()}),vt=W.extend({type:e.z.literal(`EMAIL`),config:e.z.object({placeholder:e.z.string().optional(),default_value:e.z.string().optional()}).optional()}),yt=W.extend({type:e.z.literal(`FILE`),config:e.z.object({accept:e.z.string().optional(),max_size:e.z.number().optional(),multiple:e.z.boolean().optional()}).optional()}),bt=W.extend({type:e.z.literal(`LEGAL`),config:e.z.object({text:e.z.string(),html:e.z.boolean().optional()}).optional()}),xt=W.extend({type:e.z.literal(`NUMBER`),config:e.z.object({placeholder:e.z.string().optional(),min:e.z.number().optional(),max:e.z.number().optional(),step:e.z.number().optional(),default_value:e.z.string().optional()}).optional()}),St=W.extend({type:e.z.literal(`PASSWORD`),config:e.z.object({placeholder:e.z.string().optional(),min_length:e.z.number().optional(),show_toggle:e.z.boolean().optional(),forgot_password_link:e.z.string().optional(),default_value:e.z.string().optional()}).optional()}),Ct=W.extend({type:e.z.literal(`PAYMENT`),config:e.z.object({provider:e.z.string().optional(),currency:e.z.string().optional()}).optional()}),wt=W.extend({type:e.z.literal(`SOCIAL`),config:e.z.object({providers:e.z.array(e.z.string()).optional(),provider_details:e.z.array(e.z.object({name:e.z.string(),strategy:e.z.string().optional(),display_name:e.z.string().optional(),icon_url:e.z.string().optional(),href:e.z.string().optional()})).optional()}).optional()}),Tt=W.extend({type:e.z.literal(`TEL`),config:e.z.object({placeholder:e.z.string().optional(),default_country:e.z.string().optional(),default_value:e.z.string().optional(),allow_email:e.z.boolean().optional()}).optional()}),Et=W.extend({type:e.z.literal(`TEXT`),config:e.z.object({placeholder:e.z.string().optional(),multiline:e.z.boolean().optional(),max_length:e.z.number().optional(),default_value:e.z.string().optional()}).optional()}),Dt=W.extend({type:e.z.literal(`COUNTRY`),config:e.z.object({placeholder:e.z.string().optional(),default_value:e.z.string().optional()}).optional()}),Ot=W.extend({type:e.z.literal(`URL`),config:e.z.object({placeholder:e.z.string().optional(),default_value:e.z.string().optional()}).optional()}),kt=e.z.discriminatedUnion(`type`,[tt,nt,rt,it,at,ot,st,ct]),At=e.z.discriminatedUnion(`type`,[lt,ut,dt]),jt=e.z.discriminatedUnion(`type`,[ft,pt,mt,Dt,ht,gt,_t,vt,yt,bt,xt,St,Ct,wt,Tt,Et,Ot]),G=e.z.union([kt,At,jt]),Mt=new Set([`BOOLEAN`,`CARDS`,`CHOICE`,`COUNTRY`,`DATE`,`DROPDOWN`,`EMAIL`,`LEGAL`,`NUMBER`,`PASSWORD`,`TEL`,`TEXT`,`URL`]),Nt=e.z.object({id:e.z.string(),type:e.z.literal(`submit`),label:e.z.string(),className:e.z.string().optional(),disabled:e.z.boolean().optional().default(false),order:e.z.number().optional(),visible:e.z.boolean().optional().default(true),customizations:e.z.record(e.z.string(),e.z.any()).optional()}),K=e.z.object({x:e.z.number(),y:e.z.number()}),Pt=e.z.object({id:e.z.string(),type:e.z.literal(`FLOW`),coordinates:K,alias:e.z.string().min(1).max(150).optional(),config:e.z.object({flow_id:e.z.string().max(30),next_node:e.z.string().optional()})}),Ft=e.z.object({id:e.z.string(),type:e.z.literal(`ROUTER`),coordinates:K,alias:e.z.string().min(1).max(150),config:e.z.object({rules:e.z.array(e.z.object({id:e.z.string(),alias:e.z.string().min(1).max(150).optional(),condition:e.z.any(),next_node:e.z.string()})),fallback:e.z.string()})}),It=e.z.object({id:e.z.string(),type:e.z.literal(`STEP`),coordinates:K,alias:e.z.string().min(1).max(150).optional(),config:e.z.object({components:e.z.array(G),next_node:e.z.string().optional()})}),Lt=e.z.discriminatedUnion(`type`,[Pt,Ft,It]),Rt=e.z.object({name:e.z.string().openapi({description:`The name of the form`}),messages:e.z.object({errors:e.z.record(e.z.string(),e.z.any()).optional(),custom:e.z.record(e.z.string(),e.z.any()).optional()}).optional(),languages:e.z.object({primary:e.z.string().optional(),default:e.z.string().optional()}).optional(),translations:e.z.record(e.z.string(),e.z.any()).optional(),nodes:e.z.array(Lt).optional(),start:e.z.object({hidden_fields:e.z.array(e.z.object({key:e.z.string(),value:e.z.string()})).optional(),next_node:e.z.string().optional(),coordinates:K.optional()}).optional(),ending:e.z.object({redirection:e.z.object({delay:e.z.number().optional(),target:e.z.string().optional()}).optional(),after_submit:e.z.object({flow_id:e.z.string().optional()}).optional(),coordinates:K.optional(),resume_flow:e.z.boolean().optional()}).optional(),style:e.z.object({css:e.z.string().optional()}).optional(),links:e.z.object({sdkSrc:e.z.string().optional(),sdk_src:e.z.string().optional()}).optional()}).openapi({description:`Schema for flow-based forms (matches Auth0 Forms structure)`}),zt=t.extend(Rt.shape).extend({id:e.z.string()}),Bt=e.z.object({id:e.z.number().optional(),text:e.z.string(),type:e.z.enum([`info`,`error`,`success`,`warning`])}),Vt=e.z.object({id:e.z.string().optional(),text:e.z.string(),href:e.z.string(),linkText:e.z.string().optional()}),Ht=e.z.object({name:e.z.string().optional(),action:e.z.string(),method:e.z.enum([`POST`,`GET`]),title:e.z.string().optional(),description:e.z.string().optional(),components:e.z.array(G),messages:e.z.array(Bt).optional(),links:e.z.array(Vt).optional(),footer:e.z.string().optional()});function Ut(e){return e.category===`BLOCK`}function Wt(e){return e.category===`WIDGET`}function Gt(e){return e.category===`FIELD`}var Kt=e.z.enum([`pre-user-registration`,`post-user-registration`,`post-user-login`,`post-user-update`,`validate-registration-username`,`pre-user-deletion`,`post-user-deletion`]),qt=e.z.enum([`pre-user-registration`,`post-user-registration`,`post-user-login`,`validate-registration-username`,`pre-user-deletion`,`post-user-deletion`]),Jt=e.z.enum([`post-user-login`,`post-user-registration`,`post-user-update`,`credentials-exchange`]),Yt=e.z.enum([`post-user-login`,`credentials-exchange`,`pre-user-registration`,`post-user-registration`]),q=e.z.enum([`ensure-username`,`set-preferred-username`,`account-linking`]),Xt={"ensure-username":{name:`Ensure Username`,description:`Automatically assigns a username to users who sign in without one. Creates a linked username account for social/email users.`,trigger_ids:[`post-user-login`]},"set-preferred-username":{name:`Set Preferred Username`,description:`Sets the preferred_username claim on tokens based on the username from the primary or linked user.`,trigger_ids:[`credentials-exchange`]},"account-linking":{name:`Account Linking`,description:`Links a user to an existing primary account with the same verified email. Idempotent — safe to run on every login, registration, and email update.`,trigger_ids:[`post-user-login`,`post-user-registration`,`post-user-update`]}},J={enabled:e.z.boolean().default(false),synchronous:e.z.boolean().default(false),priority:e.z.number().optional(),hook_id:e.z.string().optional(),metadata:e.z.record(e.z.string(),e.z.unknown()).optional()},Zt=e.z.object({...J,trigger_id:Kt,url:e.z.string()}),Qt=e.z.object({...J,trigger_id:qt,form_id:e.z.string()}),$t=e.z.object({...J,trigger_id:Jt,template_id:q}),en=e.z.object({...J,trigger_id:Yt,code_id:e.z.string()}),tn=e.z.union([Zt,Qt,$t,en]),nn=e.z.object({...J,trigger_id:Kt}).extend(t.shape).extend({hook_id:e.z.string(),url:e.z.string()}),rn=e.z.object({...J,trigger_id:qt}).extend(t.shape).extend({hook_id:e.z.string(),form_id:e.z.string()}),an=e.z.object({...J,trigger_id:Jt}).extend(t.shape).extend({hook_id:e.z.string(),template_id:q}),on=e.z.object({...J,trigger_id:Yt}).extend(t.shape).extend({hook_id:e.z.string(),code_id:e.z.string()}),sn=e.z.union([nn,rn,an,on]),cn=e.z.object({code:e.z.string().max(1e5),secrets:e.z.record(e.z.string(),e.z.string()).optional()}),ln=cn.extend({id:e.z.string(),tenant_id:e.z.string()}).extend(t.shape),un=e.z.object({name:e.z.string().optional()}),dn=e.z.object({email:e.z.string().optional()}),Y=e.z.object({id:e.z.string().optional(),organization_id:e.z.string().max(50),inviter:un,invitee:dn,invitation_url:e.z.string().url(),client_id:e.z.string(),connection_id:e.z.string().optional(),app_metadata:e.z.record(e.z.string(),e.z.any()).default({}).optional(),user_metadata:e.z.record(e.z.string(),e.z.any()).default({}).optional(),ttl_sec:e.z.number().int().max(2592e3).default(604800).optional(),roles:e.z.array(e.z.string()).default([]).optional(),send_invitation_email:e.z.boolean().default(true).optional()}),fn=e.z.object({id:e.z.string(),organization_id:e.z.string().max(50),created_at:e.z.string().datetime(),expires_at:e.z.string().datetime(),ticket_id:e.z.string().optional()}).extend(Y.omit({id:true}).shape),pn=e.z.object({alg:e.z.enum([`RS256`,`RS384`,`RS512`,`ES256`,`ES384`,`ES512`,`HS256`,`HS384`,`HS512`]),kid:e.z.string(),kty:e.z.enum([`RSA`,`EC`,`oct`]),use:e.z.enum([`sig`,`enc`]).optional(),n:e.z.string().optional(),e:e.z.string().optional(),crv:e.z.string().optional(),x:e.z.string().optional(),y:e.z.string().optional(),x5t:e.z.string().optional(),x5c:e.z.array(e.z.string()).optional()}).superRefine((t,n)=>{if(t.kty===`RSA`)for(let r of [`n`,`e`])t[r]||n.addIssue({code:e.z.ZodIssueCode.custom,path:[r],message:`RSA JWK is missing required member '${r}'`});else if(t.kty===`EC`)for(let r of [`crv`,`x`,`y`])t[r]||n.addIssue({code:e.z.ZodIssueCode.custom,path:[r],message:`EC JWK is missing required member '${r}'`});}),mn=e.z.object({keys:e.z.array(pn)}),hn=e.z.object({issuer:e.z.string(),authorization_endpoint:e.z.string(),token_endpoint:e.z.string(),userinfo_endpoint:e.z.string(),jwks_uri:e.z.string(),registration_endpoint:e.z.string().optional(),revocation_endpoint:e.z.string(),end_session_endpoint:e.z.string().optional(),scopes_supported:e.z.array(e.z.string()),response_types_supported:e.z.array(e.z.string()),grant_types_supported:e.z.array(e.z.string()).optional(),code_challenge_methods_supported:e.z.array(e.z.string()),response_modes_supported:e.z.array(e.z.string()),subject_types_supported:e.z.array(e.z.string()),id_token_signing_alg_values_supported:e.z.array(e.z.string()),token_endpoint_auth_methods_supported:e.z.array(e.z.string()),claims_supported:e.z.array(e.z.string()),request_uri_parameter_supported:e.z.boolean(),request_parameter_supported:e.z.boolean(),claims_parameter_supported:e.z.boolean().optional(),request_object_signing_alg_values_supported:e.z.array(e.z.string()).optional(),token_endpoint_auth_signing_alg_values_supported:e.z.array(e.z.string()),client_id_metadata_document_supported:e.z.boolean().optional()}),gn=function(e){return e.PENDING=`pending`,e.AUTHENTICATED=`authenticated`,e.AWAITING_EMAIL_VERIFICATION=`awaiting_email_verification`,e.AWAITING_MFA=`awaiting_mfa`,e.AWAITING_HOOK=`awaiting_hook`,e.AWAITING_CONTINUATION=`awaiting_continuation`,e.COMPLETED=`completed`,e.FAILED=`failed`,e.EXPIRED=`expired`,e}({}),_n=e.z.nativeEnum(gn),vn=e.z.object({strategy:e.z.string(),strategy_type:e.z.string()}),yn=e.z.object({csrf_token:e.z.string(),auth0Client:e.z.string().optional(),authParams:Ue,expires_at:e.z.string(),deleted_at:e.z.string().optional(),ip:e.z.string().optional(),useragent:e.z.string().optional(),session_id:e.z.string().optional(),authorization_url:e.z.string().optional(),state:_n.optional().default(`pending`),state_data:e.z.string().optional(),failure_reason:e.z.string().optional(),user_id:e.z.string().optional(),auth_connection:e.z.string().optional(),auth_strategy:vn.optional(),authenticated_at:e.z.string().optional()}).openapi({description:`This represents a login sesion`}),bn=yn.extend({id:e.z.string().openapi({description:`This is is used as the state in the universal login`}),created_at:e.z.string(),updated_at:e.z.string()}),X={ACLS_SUMMARY:`acls_summary`,ACTIONS_EXECUTION_FAILED:`actions_execution_failed`,API_LIMIT:`api_limit`,API_LIMIT_WARNING:`api_limit_warning`,APPI:`appi`,CIBA_EXCHANGE_FAILED:`ciba_exchange_failed`,CIBA_EXCHANGE_SUCCEEDED:`ciba_exchange_succeeded`,CIBA_START_FAILED:`ciba_start_failed`,CIBA_START_SUCCEEDED:`ciba_start_succeeded`,CODE_LINK_SENT:`cls`,CODE_SENT:`cs`,DEPRECATION_NOTICE:`depnote`,FAILED_LOGIN:`f`,FAILED_BY_CONNECTOR:`fc`,FAILED_CHANGE_EMAIL:`fce`,FAILED_BY_CORS:`fco`,FAILED_CROSS_ORIGIN_AUTHENTICATION:`fcoa`,FAILED_CHANGE_PASSWORD:`fcp`,FAILED_POST_CHANGE_PASSWORD_HOOK:`fcph`,FAILED_CHANGE_PHONE_NUMBER:`fcpn`,FAILED_CHANGE_PASSWORD_REQUEST:`fcpr`,FAILED_CONNECTOR_PROVISIONING:`fcpro`,FAILED_CHANGE_USERNAME:`fcu`,FAILED_DELEGATION:`fd`,FAILED_DEVICE_ACTIVATION:`fdeac`,FAILED_DEVICE_AUTHORIZATION_REQUEST:`fdeaz`,USER_CANCELED_DEVICE_CONFIRMATION:`fdecc`,FAILED_USER_DELETION:`fdu`,FAILED_EXCHANGE_AUTHORIZATION_CODE_FOR_ACCESS_TOKEN:`feacft`,FAILED_EXCHANGE_ACCESS_TOKEN_FOR_CLIENT_CREDENTIALS:`feccft`,FAILED_EXCHANGE_CUSTOM_TOKEN:`fecte`,FAILED_EXCHANGE_DEVICE_CODE_FOR_ACCESS_TOKEN:`fede`,FAILED_FEDERATED_LOGOUT:`federated_logout_failed`,FAILED_EXCHANGE_NATIVE_SOCIAL_LOGIN:`fens`,FAILED_EXCHANGE_PASSWORD_OOB_FOR_ACCESS_TOKEN:`feoobft`,FAILED_EXCHANGE_PASSWORD_OTP_FOR_ACCESS_TOKEN:`feotpft`,FAILED_EXCHANGE_PASSWORD_FOR_ACCESS_TOKEN:`fepft`,FAILED_EXCHANGE_PASSWORDLESS_OTP_FOR_ACCESS_TOKEN:`fepotpft`,FAILED_EXCHANGE_PASSWORD_MFA_RECOVERY_FOR_ACCESS_TOKEN:`fercft`,FAILED_EXCHANGE_ROTATING_REFRESH_TOKEN:`ferrt`,FAILED_EXCHANGE_REFRESH_TOKEN_FOR_ACCESS_TOKEN:`fertft`,FAILED_HOOK:`fh`,FAILED_IMPERSONATION:`fimp`,FAILED_INVITE_ACCEPT:`fi`,FAILED_LOGOUT:`flo`,FLOWS_EXECUTION_COMPLETED:`flows_execution_completed`,FLOWS_EXECUTION_FAILED:`flows_execution_failed`,FAILED_SENDING_NOTIFICATION:`fn`,FORMS_SUBMISSION_FAILED:`forms_submission_failed`,FORMS_SUBMISSION_SUCCEEDED:`forms_submission_succeeded`,FAILED_LOGIN_INCORRECT_PASSWORD:`fp`,FAILED_PUSHED_AUTHORIZATION_REQUEST:`fpar`,FAILED_POST_USER_REGISTRATION_HOOK:`fpurh`,FAILED_SIGNUP:`fs`,FAILED_SILENT_AUTH:`fsa`,FAILED_LOGIN_INVALID_EMAIL_USERNAME:`fu`,FAILED_USERS_IMPORT:`fui`,FAILED_VERIFICATION_EMAIL:`fv`,FAILED_VERIFICATION_EMAIL_REQUEST:`fvr`,EMAIL_VERIFICATION_CONFIRMED:`gd_auth_email_verification`,EMAIL_VERIFICATION_FAILED:`gd_auth_fail_email_verification`,MFA_AUTH_FAILED:`gd_auth_failed`,MFA_AUTH_REJECTED:`gd_auth_rejected`,MFA_AUTH_SUCCESS:`gd_auth_succeed`,MFA_ENROLLMENT_COMPLETE:`gd_enrollment_complete`,TOO_MANY_MFA_FAILURES:`gd_otp_rate_limit_exceed`,MFA_RECOVERY_FAILED:`gd_recovery_failed`,MFA_RECOVERY_RATE_LIMIT_EXCEED:`gd_recovery_rate_limit_exceed`,MFA_RECOVERY_SUCCESS:`gd_recovery_succeed`,MFA_EMAIL_SENT:`gd_send_email`,EMAIL_VERIFICATION_SENT:`gd_send_email_verification`,EMAIL_VERIFICATION_SEND_FAILURE:`gd_send_email_verification_failure`,PUSH_NOTIFICATION_SENT:`gd_send_pn`,ERROR_SENDING_MFA_PUSH_NOTIFICATION:`gd_send_pn_failure`,MFA_SMS_SENT:`gd_send_sms`,ERROR_SENDING_MFA_SMS:`gd_send_sms_failure`,MFA_VOICE_CALL_SUCCESS:`gd_send_voice`,MFA_VOICE_CALL_FAILED:`gd_send_voice_failure`,SECOND_FACTOR_STARTED:`gd_start_auth`,MFA_ENROLL_STARTED:`gd_start_enroll`,MFA_ENROLLMENT_FAILED:`gd_start_enroll_failed`,GUARDIAN_TENANT_UPDATE:`gd_tenant_update`,UNENROLL_DEVICE_ACCOUNT:`gd_unenroll`,UPDATE_DEVICE_ACCOUNT:`gd_update_device_account`,WEBAUTHN_CHALLENGE_FAILED:`gd_webauthn_challenge_failed`,WEBAUTHN_ENROLLMENT_FAILED:`gd_webauthn_enrollment_failed`,FAILED_KMS_API_OPERATION:`kms_key_management_failure`,SUCCESS_KMS_API_OPERATION:`kms_key_management_success`,KMS_KEY_STATE_CHANGED:`kms_key_state_changed`,TOO_MANY_CALLS_TO_DELEGATION:`limit_delegation`,BLOCKED_IP_ADDRESS:`limit_mu`,BLOCKED_ACCOUNT_IP:`limit_sul`,BLOCKED_ACCOUNT_EMAIL:`limit_wc`,INFORMATION:`i`,MFA_REQUIRED:`mfar`,MANAGEMENT_API_READ_OPERATION:`mgmt_api_read`,FAILED_AUTHENTICATION_METHOD_OPERATION_MY_ACCOUNT:`my_account_authentication_method_failed`,SUCCESSFUL_AUTHENTICATION_METHOD_OPERATION_MY_ACCOUNT:`my_account_authentication_method_succeeded`,FAILED_OIDC_BACKCHANNEL_LOGOUT:`oidc_backchannel_logout_failed`,SUCCESSFUL_OIDC_BACKCHANNEL_LOGOUT:`oidc_backchannel_logout_succeeded`,ORGANIZATION_MEMBER_ADDED:`organization_member_added`,PASSKEY_CHALLENGE_FAILED:`passkey_challenge_failed`,PASSKEY_CHALLENGE_STARTED:`passkey_challenge_started`,PRE_LOGIN_ASSESSMENT:`pla`,BREACHED_PASSWORD:`pwd_leak`,BREACHED_PASSWORD_ON_RESET:`reset_pwd_leak`,SUCCESS_RESOURCE_CLEANUP:`resource_cleanup`,RICH_CONSENTS_ACCESS_ERROR:`rich_consents_access_error`,SUCCESS_LOGIN:`s`,SUCCESS_API_OPERATION:`sapi`,FAILED_API_OPERATION:`fapi`,SUCCESS_CHANGE_EMAIL:`sce`,SUCCESS_CROSS_ORIGIN_AUTHENTICATION:`scoa`,SUCCESS_CHANGE_PASSWORD:`scp`,SUCCESS_CHANGE_PHONE_NUMBER:`scpn`,SUCCESS_CHANGE_PASSWORD_REQUEST:`scpr`,SUCCESS_CHANGE_USERNAME:`scu`,SUCCESS_CREDENTIAL_VALIDATION:`scv`,SUCCESS_DELEGATION:`sd`,SUCCESS_USER_DELETION:`sdu`,SUCCESS_EXCHANGE_AUTHORIZATION_CODE_FOR_ACCESS_TOKEN:`seacft`,SUCCESS_EXCHANGE_ACCESS_TOKEN_FOR_CLIENT_CREDENTIALS:`seccft`,SUCCESS_EXCHANGE_CUSTOM_TOKEN:`secte`,SUCCESS_EXCHANGE_DEVICE_CODE_FOR_ACCESS_TOKEN:`sede`,SUCCESS_EXCHANGE_NATIVE_SOCIAL_LOGIN:`sens`,SUCCESS_EXCHANGE_PASSWORD_OOB_FOR_ACCESS_TOKEN:`seoobft`,SUCCESS_EXCHANGE_PASSWORD_OTP_FOR_ACCESS_TOKEN:`seotpft`,SUCCESS_EXCHANGE_PASSWORDLESS_OTP_FOR_ACCESS_TOKEN:`sepotpft`,SUCCESS_EXCHANGE_PASSWORD_FOR_ACCESS_TOKEN:`sepft`,SUCCESS_EXCHANGE_PASSKEY_OOB_FOR_ACCESS_TOKEN:`sepkoobft`,SUCCESS_EXCHANGE_PASSKEY_OTP_FOR_ACCESS_TOKEN:`sepkotpft`,SUCCESS_EXCHANGE_PASSKEY_MFA_RECOVERY_FOR_ACCESS_TOKEN:`sepkrcft`,SUCCESS_EXCHANGE_PASSWORD_MFA_RECOVERY_FOR_ACCESS_TOKEN:`sercft`,SUCCESS_EXCHANGE_REFRESH_TOKEN_FOR_ACCESS_TOKEN:`sertft`,SUCCESS_IMPERSONATION:`simp`,SUCCESSFULLY_ACCEPTED_USER_INVITE:`si`,BREACHED_PASSWORD_ON_SIGNUP:`signup_pwd_leak`,SUCCESS_LOGOUT:`slo`,SUCCESS_HOOK:`sh`,SUCCESS_PASSWORD_MIGRATION:`spm`,SUCCESS_REVOCATION:`srrt`,SUCCESS_SIGNUP:`ss`,FAILED_SS_SSO_OPERATION:`ss_sso_failure`,INFORMATION_FROM_SS_SSO_OPERATION:`ss_sso_info`,SUCCESS_SS_SSO_OPERATION:`ss_sso_success`,SUCCESS_SILENT_AUTH:`ssa`,SUCCESSFUL_SCIM_OPERATION:`sscim`,SUCCESSFULLY_IMPORTED_USERS:`sui`,SUCCESS_VERIFICATION_EMAIL:`sv`,SUCCESS_VERIFICATION_EMAIL_REQUEST:`svr`,MAX_AMOUNT_OF_AUTHENTICATORS:`too_many_records`,USER_LOGIN_BLOCK_RELEASED:`ublkdu`,FAILED_UNIVERSAL_LOGOUT:`universal_logout_failed`,SUCCESSFUL_UNIVERSAL_LOGOUT:`universal_logout_succeeded`,WARNING_DURING_LOGIN:`w`,WARNING_SENDING_NOTIFICATION:`wn`,WARNING_USER_MANAGEMENT:`wum`},xn=e.z.string().refine(e=>Object.values(X).includes(e),{message:`Invalid log type`}),Sn={[X.ACLS_SUMMARY]:`ACLs Summary`,[X.ACTIONS_EXECUTION_FAILED]:`Actions Execution Failed`,[X.API_LIMIT]:`API Rate Limit Reached`,[X.API_LIMIT_WARNING]:`API Rate Limit Warning`,[X.APPI]:`API Operation`,[X.CIBA_EXCHANGE_FAILED]:`CIBA Exchange Failed`,[X.CIBA_EXCHANGE_SUCCEEDED]:`CIBA Exchange Succeeded`,[X.CIBA_START_FAILED]:`CIBA Start Failed`,[X.CIBA_START_SUCCEEDED]:`CIBA Start Succeeded`,[X.CODE_LINK_SENT]:`Code/Link Sent`,[X.CODE_SENT]:`Code Sent`,[X.DEPRECATION_NOTICE]:`Deprecation Notice`,[X.FAILED_LOGIN]:`Failed Login`,[X.FAILED_BY_CONNECTOR]:`Failed by Connector`,[X.FAILED_CHANGE_EMAIL]:`Failed Change Email`,[X.FAILED_BY_CORS]:`Failed by CORS`,[X.FAILED_CROSS_ORIGIN_AUTHENTICATION]:`Failed Cross Origin Authentication`,[X.FAILED_CHANGE_PASSWORD]:`Failed Change Password`,[X.FAILED_POST_CHANGE_PASSWORD_HOOK]:`Failed Post-Change Password Hook`,[X.FAILED_CHANGE_PHONE_NUMBER]:`Failed Change Phone Number`,[X.FAILED_CHANGE_PASSWORD_REQUEST]:`Failed Change Password Request`,[X.FAILED_CONNECTOR_PROVISIONING]:`Failed Connector Provisioning`,[X.FAILED_CHANGE_USERNAME]:`Failed Change Username`,[X.FAILED_DELEGATION]:`Failed Delegation`,[X.FAILED_DEVICE_ACTIVATION]:`Failed Device Activation`,[X.FAILED_DEVICE_AUTHORIZATION_REQUEST]:`Failed Device Authorization Request`,[X.USER_CANCELED_DEVICE_CONFIRMATION]:`User Canceled Device Confirmation`,[X.FAILED_USER_DELETION]:`Failed User Deletion`,[X.FAILED_EXCHANGE_AUTHORIZATION_CODE_FOR_ACCESS_TOKEN]:`Failed Exchange Authorization Code for Access Token`,[X.FAILED_EXCHANGE_ACCESS_TOKEN_FOR_CLIENT_CREDENTIALS]:`Failed Exchange Access Token for Client Credentials`,[X.FAILED_EXCHANGE_CUSTOM_TOKEN]:`Failed Exchange Custom Token`,[X.FAILED_EXCHANGE_DEVICE_CODE_FOR_ACCESS_TOKEN]:`Failed Exchange Device Code for Access Token`,[X.FAILED_FEDERATED_LOGOUT]:`Failed Federated Logout`,[X.FAILED_EXCHANGE_NATIVE_SOCIAL_LOGIN]:`Failed Exchange Native Social Login`,[X.FAILED_EXCHANGE_PASSWORD_OOB_FOR_ACCESS_TOKEN]:`Failed Exchange Password OOB for Access Token`,[X.FAILED_EXCHANGE_PASSWORD_OTP_FOR_ACCESS_TOKEN]:`Failed Exchange Password OTP for Access Token`,[X.FAILED_EXCHANGE_PASSWORD_FOR_ACCESS_TOKEN]:`Failed Exchange Password for Access Token`,[X.FAILED_EXCHANGE_PASSWORDLESS_OTP_FOR_ACCESS_TOKEN]:`Failed Exchange Passwordless OTP for Access Token`,[X.FAILED_EXCHANGE_PASSWORD_MFA_RECOVERY_FOR_ACCESS_TOKEN]:`Failed Exchange Password MFA Recovery for Access Token`,[X.FAILED_EXCHANGE_ROTATING_REFRESH_TOKEN]:`Failed Exchange Rotating Refresh Token`,[X.FAILED_EXCHANGE_REFRESH_TOKEN_FOR_ACCESS_TOKEN]:`Failed Exchange Refresh Token for Access Token`,[X.FAILED_HOOK]:`Failed Hook`,[X.FAILED_IMPERSONATION]:`Failed Impersonation`,[X.FAILED_INVITE_ACCEPT]:`Failed Invite Accept`,[X.FAILED_LOGOUT]:`Failed Logout`,[X.FLOWS_EXECUTION_COMPLETED]:`Flows Execution Completed`,[X.FLOWS_EXECUTION_FAILED]:`Flows Execution Failed`,[X.FAILED_SENDING_NOTIFICATION]:`Failed Sending Notification`,[X.FORMS_SUBMISSION_FAILED]:`Forms Submission Failed`,[X.FORMS_SUBMISSION_SUCCEEDED]:`Forms Submission Succeeded`,[X.FAILED_LOGIN_INCORRECT_PASSWORD]:`Failed Login - Incorrect Password`,[X.FAILED_PUSHED_AUTHORIZATION_REQUEST]:`Failed Pushed Authorization Request`,[X.FAILED_POST_USER_REGISTRATION_HOOK]:`Failed Post-User Registration Hook`,[X.FAILED_SIGNUP]:`Failed Signup`,[X.FAILED_SILENT_AUTH]:`Failed Silent Auth`,[X.FAILED_LOGIN_INVALID_EMAIL_USERNAME]:`Failed Login - Invalid Email/Username`,[X.FAILED_USERS_IMPORT]:`Failed Users Import`,[X.FAILED_VERIFICATION_EMAIL]:`Failed Verification Email`,[X.FAILED_VERIFICATION_EMAIL_REQUEST]:`Failed Verification Email Request`,[X.EMAIL_VERIFICATION_CONFIRMED]:`Email Verification Confirmed`,[X.EMAIL_VERIFICATION_FAILED]:`Email Verification Failed`,[X.MFA_AUTH_FAILED]:`MFA Auth Failed`,[X.MFA_AUTH_REJECTED]:`MFA Auth Rejected`,[X.MFA_AUTH_SUCCESS]:`MFA Auth Success`,[X.MFA_ENROLLMENT_COMPLETE]:`MFA Enrollment Complete`,[X.TOO_MANY_MFA_FAILURES]:`Too Many MFA Failures`,[X.MFA_RECOVERY_FAILED]:`MFA Recovery Failed`,[X.MFA_RECOVERY_RATE_LIMIT_EXCEED]:`MFA Recovery Rate Limit Exceeded`,[X.MFA_RECOVERY_SUCCESS]:`MFA Recovery Success`,[X.MFA_EMAIL_SENT]:`MFA Email Sent`,[X.EMAIL_VERIFICATION_SENT]:`Email Verification Sent`,[X.EMAIL_VERIFICATION_SEND_FAILURE]:`Email Verification Send Failure`,[X.PUSH_NOTIFICATION_SENT]:`Push Notification Sent`,[X.ERROR_SENDING_MFA_PUSH_NOTIFICATION]:`Error Sending MFA Push Notification`,[X.MFA_SMS_SENT]:`MFA SMS Sent`,[X.ERROR_SENDING_MFA_SMS]:`Error Sending MFA SMS`,[X.MFA_VOICE_CALL_SUCCESS]:`MFA Voice Call Success`,[X.MFA_VOICE_CALL_FAILED]:`MFA Voice Call Failed`,[X.SECOND_FACTOR_STARTED]:`Second Factor Started`,[X.MFA_ENROLL_STARTED]:`MFA Enroll Started`,[X.MFA_ENROLLMENT_FAILED]:`MFA Enrollment Failed`,[X.GUARDIAN_TENANT_UPDATE]:`Guardian Tenant Update`,[X.UNENROLL_DEVICE_ACCOUNT]:`Unenroll Device Account`,[X.UPDATE_DEVICE_ACCOUNT]:`Update Device Account`,[X.WEBAUTHN_CHALLENGE_FAILED]:`WebAuthn Challenge Failed`,[X.WEBAUTHN_ENROLLMENT_FAILED]:`WebAuthn Enrollment Failed`,[X.FAILED_KMS_API_OPERATION]:`Failed KMS API Operation`,[X.SUCCESS_KMS_API_OPERATION]:`Success KMS API Operation`,[X.KMS_KEY_STATE_CHANGED]:`KMS Key State Changed`,[X.TOO_MANY_CALLS_TO_DELEGATION]:`Too Many Calls to Delegation`,[X.BLOCKED_IP_ADDRESS]:`Blocked IP Address`,[X.BLOCKED_ACCOUNT_IP]:`Blocked Account (IP)`,[X.BLOCKED_ACCOUNT_EMAIL]:`Blocked Account (Email)`,[X.INFORMATION]:`Information`,[X.MFA_REQUIRED]:`MFA Required`,[X.MANAGEMENT_API_READ_OPERATION]:`Management API Read Operation`,[X.FAILED_AUTHENTICATION_METHOD_OPERATION_MY_ACCOUNT]:`Failed Authentication Method Operation (My Account)`,[X.SUCCESSFUL_AUTHENTICATION_METHOD_OPERATION_MY_ACCOUNT]:`Successful Authentication Method Operation (My Account)`,[X.FAILED_OIDC_BACKCHANNEL_LOGOUT]:`Failed OIDC Backchannel Logout`,[X.SUCCESSFUL_OIDC_BACKCHANNEL_LOGOUT]:`Successful OIDC Backchannel Logout`,[X.ORGANIZATION_MEMBER_ADDED]:`Organization Member Added`,[X.PASSKEY_CHALLENGE_FAILED]:`Passkey Challenge Failed`,[X.PASSKEY_CHALLENGE_STARTED]:`Passkey Challenge Started`,[X.PRE_LOGIN_ASSESSMENT]:`Pre-Login Assessment`,[X.BREACHED_PASSWORD]:`Breached Password`,[X.BREACHED_PASSWORD_ON_RESET]:`Breached Password on Reset`,[X.SUCCESS_RESOURCE_CLEANUP]:`Success Resource Cleanup`,[X.RICH_CONSENTS_ACCESS_ERROR]:`Rich Consents Access Error`,[X.SUCCESS_LOGIN]:`Success Login`,[X.SUCCESS_API_OPERATION]:`Success API Operation`,[X.FAILED_API_OPERATION]:`Failed API Operation`,[X.SUCCESS_CHANGE_EMAIL]:`Success Change Email`,[X.SUCCESS_CROSS_ORIGIN_AUTHENTICATION]:`Success Cross Origin Authentication`,[X.SUCCESS_CHANGE_PASSWORD]:`Success Change Password`,[X.SUCCESS_CHANGE_PHONE_NUMBER]:`Success Change Phone Number`,[X.SUCCESS_CHANGE_PASSWORD_REQUEST]:`Success Change Password Request`,[X.SUCCESS_CHANGE_USERNAME]:`Success Change Username`,[X.SUCCESS_CREDENTIAL_VALIDATION]:`Success Credential Validation`,[X.SUCCESS_DELEGATION]:`Success Delegation`,[X.SUCCESS_USER_DELETION]:`Success User Deletion`,[X.SUCCESS_EXCHANGE_AUTHORIZATION_CODE_FOR_ACCESS_TOKEN]:`Success Exchange Authorization Code for Access Token`,[X.SUCCESS_EXCHANGE_ACCESS_TOKEN_FOR_CLIENT_CREDENTIALS]:`Success Exchange Access Token for Client Credentials`,[X.SUCCESS_EXCHANGE_CUSTOM_TOKEN]:`Success Exchange Custom Token`,[X.SUCCESS_EXCHANGE_DEVICE_CODE_FOR_ACCESS_TOKEN]:`Success Exchange Device Code for Access Token`,[X.SUCCESS_EXCHANGE_NATIVE_SOCIAL_LOGIN]:`Success Exchange Native Social Login`,[X.SUCCESS_EXCHANGE_PASSWORD_OOB_FOR_ACCESS_TOKEN]:`Success Exchange Password OOB for Access Token`,[X.SUCCESS_EXCHANGE_PASSWORD_OTP_FOR_ACCESS_TOKEN]:`Success Exchange Password OTP for Access Token`,[X.SUCCESS_EXCHANGE_PASSWORDLESS_OTP_FOR_ACCESS_TOKEN]:`Success Exchange Passwordless OTP for Access Token`,[X.SUCCESS_EXCHANGE_PASSWORD_FOR_ACCESS_TOKEN]:`Success Exchange Password for Access Token`,[X.SUCCESS_EXCHANGE_PASSKEY_OOB_FOR_ACCESS_TOKEN]:`Success Exchange Passkey OOB for Access Token`,[X.SUCCESS_EXCHANGE_PASSKEY_OTP_FOR_ACCESS_TOKEN]:`Success Exchange Passkey OTP for Access Token`,[X.SUCCESS_EXCHANGE_PASSKEY_MFA_RECOVERY_FOR_ACCESS_TOKEN]:`Success Exchange Passkey MFA Recovery for Access Token`,[X.SUCCESS_EXCHANGE_PASSWORD_MFA_RECOVERY_FOR_ACCESS_TOKEN]:`Success Exchange Password MFA Recovery for Access Token`,[X.SUCCESS_EXCHANGE_REFRESH_TOKEN_FOR_ACCESS_TOKEN]:`Success Exchange Refresh Token for Access Token`,[X.SUCCESS_IMPERSONATION]:`Success Impersonation`,[X.SUCCESSFULLY_ACCEPTED_USER_INVITE]:`Successfully Accepted User Invite`,[X.BREACHED_PASSWORD_ON_SIGNUP]:`Breached Password on Signup`,[X.SUCCESS_LOGOUT]:`Success Logout`,[X.SUCCESS_HOOK]:`Success Hook`,[X.SUCCESS_PASSWORD_MIGRATION]:`Success Password Migration`,[X.SUCCESS_REVOCATION]:`Success Revocation`,[X.SUCCESS_SIGNUP]:`Success Signup`,[X.FAILED_SS_SSO_OPERATION]:`Failed SS SSO Operation`,[X.INFORMATION_FROM_SS_SSO_OPERATION]:`Information from SS SSO Operation`,[X.SUCCESS_SS_SSO_OPERATION]:`Success SS SSO Operation`,[X.SUCCESS_SILENT_AUTH]:`Success Silent Auth`,[X.SUCCESSFUL_SCIM_OPERATION]:`Successful SCIM Operation`,[X.SUCCESSFULLY_IMPORTED_USERS]:`Successfully Imported Users`,[X.SUCCESS_VERIFICATION_EMAIL]:`Success Verification Email`,[X.SUCCESS_VERIFICATION_EMAIL_REQUEST]:`Success Verification Email Request`,[X.MAX_AMOUNT_OF_AUTHENTICATORS]:`Max Amount of Authenticators`,[X.USER_LOGIN_BLOCK_RELEASED]:`User Login Block Released`,[X.FAILED_UNIVERSAL_LOGOUT]:`Failed Universal Logout`,[X.SUCCESSFUL_UNIVERSAL_LOGOUT]:`Successful Universal Logout`,[X.WARNING_DURING_LOGIN]:`Warning During Login`,[X.WARNING_SENDING_NOTIFICATION]:`Warning Sending Notification`,[X.WARNING_USER_MANAGEMENT]:`Warning User Management`},Cn=(()=>{let e={};for(let[t,n]of Object.entries(X))t.startsWith(`SUCCESS_`)||t.startsWith(`SUCCESSFUL_`)||t.startsWith(`SUCCESSFULLY_`)||t.endsWith(`_SUCCEEDED`)||t.endsWith(`_COMPLETED`)?e[n]=`success`:t.startsWith(`FAILED_`)||t.startsWith(`ERROR_`)||t.startsWith(`BREACHED_`)||t.startsWith(`BLOCKED_`)||t===`MFA_AUTH_FAILED`||t===`MFA_AUTH_REJECTED`||t===`MFA_RECOVERY_FAILED`||t===`MFA_ENROLLMENT_FAILED`||t===`EMAIL_VERIFICATION_FAILED`||t===`WEBAUTHN_CHALLENGE_FAILED`||t===`WEBAUTHN_ENROLLMENT_FAILED`||t===`PASSKEY_CHALLENGE_FAILED`||t===`FLOWS_EXECUTION_FAILED`||t===`FORMS_SUBMISSION_FAILED`||t===`CIBA_EXCHANGE_FAILED`||t===`CIBA_START_FAILED`||t===`ACTIONS_EXECUTION_FAILED`||t===`RICH_CONSENTS_ACCESS_ERROR`||t===`USER_CANCELED_DEVICE_CONFIRMATION`||t===`TOO_MANY_MFA_FAILURES`||t===`MFA_RECOVERY_RATE_LIMIT_EXCEED`||t===`API_LIMIT`||t===`MAX_AMOUNT_OF_AUTHENTICATORS`?e[n]=`failure`:t.startsWith(`WARNING_`)||t===`API_LIMIT_WARNING`||t===`DEPRECATION_NOTICE`||t===`PRE_LOGIN_ASSESSMENT`?e[n]=`warning`:t===`CODE_SENT`||t===`CODE_LINK_SENT`||t===`MFA_EMAIL_SENT`||t===`MFA_SMS_SENT`||t===`EMAIL_VERIFICATION_SENT`||t===`PUSH_NOTIFICATION_SENT`?e[n]=`code_sent`:t===`INFORMATION`||t===`INFORMATION_FROM_SS_SSO_OPERATION`||t===`MANAGEMENT_API_READ_OPERATION`||t===`APPI`||t===`ACLS_SUMMARY`||t===`ORGANIZATION_MEMBER_ADDED`?e[n]=`info`:e[n]=`other`;return e})();function wn(e){return Sn[e]??e}function Tn(e){return Cn[e]??`other`}var En=e.z.object({name:e.z.string(),version:e.z.string(),env:e.z.object({node:e.z.string().optional()}).optional()}),Dn=e.z.object({country_code:e.z.string().length(2),city_name:e.z.string(),latitude:e.z.string(),longitude:e.z.string(),time_zone:e.z.string(),continent_code:e.z.string()}),On=e.z.object({type:xn,date:e.z.string(),description:e.z.string().optional(),ip:e.z.string().optional(),user_agent:e.z.string().optional(),details:e.z.any().optional(),isMobile:e.z.boolean(),user_id:e.z.string().optional(),user_name:e.z.string().optional(),connection:e.z.string().optional(),connection_id:e.z.string().optional(),client_id:e.z.string().optional(),client_name:e.z.string().optional(),audience:e.z.string().optional(),scope:e.z.string().optional(),strategy:e.z.string().optional(),strategy_type:e.z.string().optional(),hostname:e.z.string().optional(),auth0_client:En.optional(),log_id:e.z.string().optional(),location_info:Dn.optional()}),kn=On.extend({log_id:e.z.string()}),An=e.z.enum([`http`,`eventbridge`,`eventgrid`,`splunk`,`datadog`,`sumo`]),Z=e.z.enum([`active`,`paused`,`suspended`]),jn=e.z.object({type:e.z.string(),name:e.z.string()}),Mn=e.z.object({name:e.z.string(),type:An,status:Z.optional(),sink:e.z.record(e.z.string(),e.z.unknown()),filters:e.z.array(jn).optional(),isPriority:e.z.boolean().optional()}),Nn=Mn.extend({id:e.z.string(),status:Z,created_at:e.z.string().optional(),updated_at:e.z.string().optional()}),Pn=e.z.enum([`auth0`,`cognito`,`okta`,`oidc`]),Fn=e.z.object({domain:e.z.string(),client_id:e.z.string(),client_secret:e.z.string(),audience:e.z.string().optional(),scope:e.z.string().optional()}),In=e.z.object({id:e.z.string().optional(),name:e.z.string(),provider:Pn,connection:e.z.string(),enabled:e.z.boolean().default(true),credentials:Fn}),Ln=e.z.object({id:e.z.string(),created_at:e.z.string(),updated_at:e.z.string()}).extend(In.shape),Rn=e.z.object({enabled:e.z.boolean().optional(),shields:e.z.array(e.z.string()).optional(),admin_notification_frequency:e.z.array(e.z.string()).optional(),method:e.z.string().optional(),stage:e.z.object({"pre-user-registration":e.z.object({shields:e.z.array(e.z.string()).optional()}).optional(),"pre-change-password":e.z.object({shields:e.z.array(e.z.string()).optional()}).optional()}).optional()}),zn=e.z.object({enabled:e.z.boolean().optional(),shields:e.z.array(e.z.string()).optional(),allowlist:e.z.array(e.z.string()).optional(),mode:e.z.string().optional(),max_attempts:e.z.number().optional()}),Bn=e.z.object({enabled:e.z.boolean().optional(),shields:e.z.array(e.z.string()).optional(),allowlist:e.z.array(e.z.string()).optional(),stage:e.z.object({"pre-login":e.z.object({max_attempts:e.z.number().optional(),rate:e.z.number().optional()}).optional(),"pre-user-registration":e.z.object({max_attempts:e.z.number().optional(),rate:e.z.number().optional()}).optional()}).optional()}),Vn=e.z.object({breached_password_detection:Rn.optional(),brute_force_protection:zn.optional(),suspicious_ip_throttling:Bn.optional()}),Hn=e.z.object({id:e.z.string().optional(),user_id:e.z.string(),password:e.z.string(),algorithm:e.z.enum([`bcrypt`,`argon2id`]).default(`argon2id`),is_current:e.z.boolean().default(true)}),Un=Hn.extend({id:e.z.string(),created_at:e.z.string(),updated_at:e.z.string()}),Wn=e.z.object({initial_user_agent:e.z.string().describe(`First user agent of the device from which this user logged in`),initial_ip:e.z.string().describe(`First IP address associated with this session`),initial_asn:e.z.string().describe(`First autonomous system number associated with this session`),last_user_agent:e.z.string().describe(`Last user agent of the device from which this user logged in`),last_ip:e.z.string().describe(`Last IP address from which this user logged in`),last_asn:e.z.string().describe(`Last autonomous system number from which this user logged in`)}),Gn=e.z.object({id:e.z.string(),revoked_at:e.z.string().optional(),used_at:e.z.string().optional(),user_id:e.z.string().describe(`The user ID associated with the session`),expires_at:e.z.string().optional(),login_session_id:e.z.string(),idle_expires_at:e.z.string().optional(),device:Wn.describe(`Metadata related to the device used in the session`),clients:e.z.array(e.z.string()).describe(`List of client details for the session`)}),Kn=e.z.object({created_at:e.z.string(),updated_at:e.z.string(),authenticated_at:e.z.string(),last_interaction_at:e.z.string()}).extend(Gn.shape),qn=e.z.object({kid:e.z.string().openapi({description:`The key id of the signing key`}),tenant_id:e.z.string().optional().openapi({description:`The tenant the key belongs to. Omitted means the key is shared / control-plane scoped.`}),cert:e.z.string().openapi({description:`The public certificate of the signing key`}),fingerprint:e.z.string().openapi({description:`The cert fingerprint`}),thumbprint:e.z.string().openapi({description:`The cert thumbprint`}),pkcs7:e.z.string().optional().openapi({description:`The private key in pkcs7 format`}),current:e.z.boolean().optional().openapi({description:`True if the key is the current key`}),next:e.z.boolean().optional().openapi({description:`True if the key is the next key`}),previous:e.z.boolean().optional().openapi({description:`True if the key is the previous key`}),current_since:e.z.string().optional().openapi({description:`The date and time when the key became the current key`}),current_until:e.z.string().optional().openapi({description:`The date and time when the current key was rotated`}),revoked:e.z.boolean().optional().openapi({description:`True if the key is revoked`}),revoked_at:e.z.string().optional().openapi({description:`The date and time when the key was revoked`}),connection:e.z.string().optional().openapi({description:`The connection identifier associated with the key`}),type:e.z.enum([`jwt_signing`,`saml_encryption`]).openapi({description:`The type of the signing key`})}),Jn=e.z.object({id:e.z.string().optional(),audience:e.z.string(),friendly_name:e.z.string(),picture_url:e.z.string().optional(),support_email:e.z.string().optional(),support_url:e.z.string().optional(),sender_email:e.z.string().email(),sender_name:e.z.string(),session_lifetime:e.z.number().optional(),idle_session_lifetime:e.z.number().optional(),ephemeral_session_lifetime:e.z.number().optional(),idle_ephemeral_session_lifetime:e.z.number().optional(),session_cookie:e.z.object({mode:e.z.enum([`persistent`,`non-persistent`]).optional()}).optional(),allowed_logout_urls:e.z.array(e.z.string()).optional(),default_redirection_uri:e.z.string().optional(),default_client_id:e.z.string().optional(),enabled_locales:e.z.array(e.z.string()).optional(),default_directory:e.z.string().optional(),error_page:e.z.object({html:e.z.string().optional(),show_log_link:e.z.boolean().optional(),url:e.z.string().optional()}).nullish(),flags:e.z.object({allow_changing_enable_sso:e.z.boolean().optional(),allow_legacy_delegation_grant_types:e.z.boolean().optional(),allow_legacy_ro_grant_types:e.z.boolean().optional(),allow_legacy_tokeninfo_endpoint:e.z.boolean().optional(),change_pwd_flow_v1:e.z.boolean().optional(),client_id_metadata_document_registration:e.z.boolean().optional(),custom_domains_provisioning:e.z.boolean().optional(),dashboard_insights_view:e.z.boolean().optional(),dashboard_log_streams_next:e.z.boolean().optional(),disable_clickjack_protection_headers:e.z.boolean().optional(),disable_fields_map_fix:e.z.boolean().optional(),disable_impersonation:e.z.boolean().optional(),disable_management_api_sms_obfuscation:e.z.boolean().optional(),enable_adfs_waad_email_verification:e.z.boolean().optional(),enable_apis_section:e.z.boolean().optional(),enable_client_connections:e.z.boolean().optional(),enable_custom_domain_in_emails:e.z.boolean().optional(),enable_dynamic_client_registration:e.z.boolean().optional(),dcr_require_initial_access_token:e.z.boolean().optional(),dcr_allowed_grant_types:e.z.array(e.z.string()).optional(),allow_http_return_to:e.z.array(e.z.string().refine(e=>{try{let t=new URL(e);return t.protocol===`http:`&&(t.pathname===``||t.pathname===`/`)&&!t.search&&!t.hash&&e===t.origin}catch{return false}},{message:`must be a fully-qualified http origin (scheme + host + port, no path)`})).optional(),enable_idtoken_api2:e.z.boolean().optional(),enable_legacy_logs_search_v2:e.z.boolean().optional(),enable_legacy_profile:e.z.boolean().optional(),enable_pipeline2:e.z.boolean().optional(),enable_public_signup_user_exists_error:e.z.boolean().optional(),enable_sso:e.z.boolean().optional(),enforce_client_authentication_on_passwordless_start:e.z.boolean().optional(),genai_trial:e.z.boolean().optional(),improved_signup_bot_detection_in_classic:e.z.boolean().optional(),mfa_show_factor_list_on_enrollment:e.z.boolean().optional(),no_disclose_enterprise_connections:e.z.boolean().optional(),remove_alg_from_jwks:e.z.boolean().optional(),revoke_refresh_token_grant:e.z.boolean().optional(),trust_azure_adfs_email_verified_connection_property:e.z.boolean().optional(),use_scope_descriptions_for_consent:e.z.boolean().optional(),inherit_global_permissions_in_organizations:e.z.boolean().optional(),restrict_undefined_scopes:e.z.boolean().optional()}).optional(),sandbox_version:e.z.string().optional(),legacy_sandbox_version:e.z.string().optional(),sandbox_versions_available:e.z.array(e.z.string()).optional(),change_password:e.z.object({enabled:e.z.boolean().optional(),html:e.z.string().optional()}).optional(),guardian_mfa_page:e.z.object({enabled:e.z.boolean().optional(),html:e.z.string().optional()}).optional(),device_flow:e.z.object({charset:e.z.enum([`base20`,`digits`]).optional(),mask:e.z.string().max(20).optional()}).optional(),default_token_quota:e.z.object({clients:e.z.object({client_credentials:e.z.record(e.z.string(),e.z.any()).optional()}).optional(),organizations:e.z.object({client_credentials:e.z.record(e.z.string(),e.z.any()).optional()}).optional()}).nullish(),default_audience:e.z.string().optional(),default_organization:e.z.string().optional(),sessions:e.z.object({oidc_logout_prompt_enabled:e.z.boolean().optional()}).optional(),oidc_logout:e.z.object({rp_logout_end_session_endpoint_discovery:e.z.boolean().optional()}).optional(),allow_organization_name_in_authentication_api:e.z.boolean().optional(),customize_mfa_in_postlogin_action:e.z.boolean().optional(),acr_values_supported:e.z.array(e.z.string()).optional(),mtls:e.z.object({enable_endpoint_aliases:e.z.boolean().optional()}).nullish(),pushed_authorization_requests_supported:e.z.boolean().optional(),authorization_response_iss_parameter_supported:e.z.boolean().optional(),attack_protection:Vn.optional(),mfa:e.z.object({policy:e.z.enum([`never`,`always`]).default(`never`).optional(),factors:e.z.object({sms:e.z.boolean().default(false),otp:e.z.boolean().default(false),email:e.z.boolean().default(false),push_notification:e.z.boolean().default(false),webauthn_roaming:e.z.boolean().default(false),webauthn_platform:e.z.boolean().default(false),recovery_code:e.z.boolean().default(false),duo:e.z.boolean().default(false)}).optional(),sms_provider:e.z.object({provider:e.z.enum([`twilio`,`vonage`,`aws_sns`,`phone_message_hook`]).optional()}).optional(),twilio:e.z.object({sid:e.z.string().optional(),auth_token:e.z.string().optional(),from:e.z.string().optional(),messaging_service_sid:e.z.string().optional()}).optional(),phone_message:e.z.object({message:e.z.string().optional()}).optional()}).optional()}),Yn=e.z.object({created_at:e.z.string().nullable().transform(e=>e??``),updated_at:e.z.string().nullable().transform(e=>e??``)}).extend(Jn.shape).extend({id:e.z.string(),is_control_plane:e.z.boolean().optional()}),Xn=function(e){return e.RefreshToken=`refresh_token`,e.AuthorizationCode=`authorization_code`,e.ClientCredential=`client_credentials`,e.Passwordless=`passwordless`,e.Password=`password`,e.OTP=`http://auth0.com/oauth/grant-type/passwordless/otp`,e}({}),Zn=e.z.object({access_token:e.z.string(),id_token:e.z.string().optional(),scope:e.z.string().optional(),state:e.z.string().optional(),refresh_token:e.z.string().optional(),token_type:e.z.string(),expires_in:e.z.number()});e.z.object({code:e.z.string(),state:e.z.string().optional()});var Qn=e.z.object({button_border_radius:e.z.number(),button_border_weight:e.z.number(),buttons_style:e.z.enum([`pill`,`rounded`,`sharp`]),input_border_radius:e.z.number(),input_border_weight:e.z.number(),inputs_style:e.z.enum([`pill`,`rounded`,`sharp`]),show_widget_shadow:e.z.boolean(),widget_border_weight:e.z.number(),widget_corner_radius:e.z.number()}),$n=e.z.object({base_focus_color:e.z.string(),base_hover_color:e.z.string(),body_text:e.z.string(),captcha_widget_theme:e.z.enum([`auto`,`dark`,`light`]),error:e.z.string(),header:e.z.string(),icons:e.z.string(),input_background:e.z.string(),input_border:e.z.string(),input_filled_text:e.z.string(),input_labels_placeholders:e.z.string(),links_focused_components:e.z.string(),primary_button:e.z.string(),primary_button_label:e.z.string(),secondary_button_border:e.z.string(),secondary_button_label:e.z.string(),success:e.z.string(),widget_background:e.z.string(),widget_border:e.z.string()}),Q=e.z.object({bold:e.z.boolean(),size:e.z.number()}),er=e.z.object({body_text:Q,buttons_text:Q,font_url:e.z.string(),input_labels:Q,links:Q,links_style:e.z.enum([`normal`,`underlined`]),reference_text_size:e.z.number(),subtitle:Q,title:Q}),tr=e.z.object({background_color:e.z.string(),background_image_url:e.z.string(),page_layout:e.z.enum([`center`,`left`,`right`]),logo_placement:e.z.enum([`widget`,`chip`,`none`]).optional()}),nr=e.z.object({header_text_alignment:e.z.enum([`center`,`left`,`right`]),logo_height:e.z.number(),logo_position:e.z.enum([`center`,`left`,`none`,`right`]),logo_url:e.z.string(),social_buttons_layout:e.z.enum([`bottom`,`top`])}),rr=e.z.object({borders:Qn,colors:$n,displayName:e.z.string(),fonts:er,page_background:tr,widget:nr}),ir=rr.extend({themeId:e.z.string()}),ar=e.z.object({universal_login_experience:e.z.enum([`new`,`classic`]).default(`new`),identifier_first:e.z.boolean().default(true),password_first:e.z.boolean().default(false),webauthn_platform_first_factor:e.z.boolean()}),or=e.z.object({hosts:e.z.array(e.z.string()).optional(),methods:e.z.array(e.z.string()).optional(),path:e.z.string().default(`/*`),headers:e.z.record(e.z.string(),e.z.string()).optional(),query:e.z.record(e.z.string(),e.z.string()).optional()}),sr=e.z.object({type:e.z.string(),options:e.z.record(e.z.string(),e.z.unknown()).default({})}),$=e.z.object({custom_domain_id:e.z.string(),priority:e.z.number().int().default(100),match:or,handlers:e.z.array(sr).min(1)}),cr=$.extend({id:e.z.string(),tenant_id:e.z.string(),created_at:e.z.string(),updated_at:e.z.string()}),lr=$.partial().omit({custom_domain_id:true}),ur=e.z.object({name:e.z.string(),enabled:e.z.boolean().optional().default(true),default_from_address:e.z.string().optional(),credentials:e.z.record(e.z.string(),e.z.unknown()),settings:e.z.object({}).optional()}),dr=e.z.enum([`verify_email`,`verify_email_by_code`,`reset_email`,`reset_email_by_code`,`welcome_email`,`blocked_account`,`stolen_credentials`,`enrollment_email`,`mfa_oob_code`,`change_password`,`password_reset`,`user_invitation`]),fr=e.z.object({template:dr,body:e.z.string(),from:e.z.string(),subject:e.z.string(),syntax:e.z.literal(`liquid`).default(`liquid`),resultUrl:e.z.string().optional(),urlLifetimeInSeconds:e.z.number().int().nonnegative().optional(),includeEmailInRedirect:e.z.boolean().default(false),enabled:e.z.boolean().default(true)}),pr=e.z.object({id:e.z.string(),login_id:e.z.string(),user_id:e.z.string(),client_id:e.z.string(),expires_at:e.z.string().optional(),idle_expires_at:e.z.string().optional(),last_exchanged_at:e.z.string().optional(),device:Wn,resource_servers:e.z.array(e.z.object({audience:e.z.string(),scopes:e.z.string()})),rotating:e.z.boolean(),token_lookup:e.z.string().optional(),token_hash:e.z.string().optional(),family_id:e.z.string().optional(),rotated_to:e.z.string().optional(),rotated_at:e.z.string().optional()}),mr=pr.extend({created_at:e.z.string(),revoked_at:e.z.string().optional()}),hr=e.z.object({to:e.z.string(),message:e.z.string()}),gr=e.z.object({name:e.z.string(),options:e.z.object({})}),_r=e.z.object({value:e.z.string(),description:e.z.string().optional()}),vr=e.z.object({token_dialect:e.z.enum([`access_token`,`access_token_authz`]).optional(),enforce_policies:e.z.boolean().optional(),allow_skipping_userinfo:e.z.boolean().optional(),skip_userinfo:e.z.boolean().optional(),persist_client_authorization:e.z.boolean().optional(),enable_introspection_endpoint:e.z.boolean().optional(),mtls:e.z.object({bound_access_tokens:e.z.boolean().optional()}).optional()}),yr=e.z.object({id:e.z.string().optional(),name:e.z.string(),identifier:e.z.string(),scopes:e.z.array(_r).optional(),signing_alg:e.z.string().optional(),signing_secret:e.z.string().optional(),token_lifetime:e.z.number().default(86400),token_lifetime_for_web:e.z.number().default(7200),skip_consent_for_verifiable_first_party_clients:e.z.boolean().optional(),allow_offline_access:e.z.boolean().optional(),verificationKey:e.z.string().optional(),options:vr.optional(),is_system:e.z.boolean().optional(),metadata:e.z.record(e.z.string(),e.z.any()).optional()}),br=yr.extend({created_at:e.z.string().optional(),updated_at:e.z.string().optional()}),xr=e.z.array(br),Sr=e.z.object({role_id:e.z.string(),resource_server_identifier:e.z.string(),permission_name:e.z.string()}),Cr=Sr.extend({created_at:e.z.string()}),wr=e.z.array(Cr),Tr=e.z.object({user_id:e.z.string(),resource_server_identifier:e.z.string(),permission_name:e.z.string(),organization_id:e.z.string().optional()}),Er=Tr.extend({tenant_id:e.z.string(),created_at:e.z.string().optional()}),Dr=e.z.array(Er),Or=e.z.object({user_id:e.z.string(),resource_server_identifier:e.z.string(),resource_server_name:e.z.string(),permission_name:e.z.string(),description:e.z.string().nullable().optional(),created_at:e.z.string().optional(),organization_id:e.z.string().optional()}),kr=e.z.array(Or),Ar=e.z.object({user_id:e.z.string(),role_id:e.z.string(),organization_id:e.z.string().optional()}),jr=Ar.extend({tenant_id:e.z.string(),created_at:e.z.string().optional()}),Mr=e.z.array(jr),Nr=e.z.object({id:e.z.string().optional().openapi({description:`The unique identifier of the role. If not provided, one will be generated.`}),name:e.z.string().min(1).max(50).openapi({description:`The name of the role. Cannot include '<' or '>'`}),description:e.z.string().max(255).optional().openapi({description:`The description of the role`}),is_system:e.z.boolean().optional(),metadata:e.z.record(e.z.string(),e.z.any()).optional().openapi({description:`Metadata associated with the role. Can be used to control sync behavior in multi-tenancy scenarios.`})}),Pr=Nr.extend({id:e.z.string().openapi({description:`The unique identifier of the role`}),created_at:e.z.string().optional(),updated_at:e.z.string().optional()}),Fr=e.z.array(Pr),Ir=e.z.object({logo_url:e.z.string().optional().openapi({description:`URL of the organization's logo`}),colors:e.z.object({primary:e.z.string().optional().openapi({description:`Primary color in hex format (e.g., #FF0000)`}),page_background:e.z.string().optional().openapi({description:`Page background color in hex format (e.g., #FFFFFF)`})}).optional()}).optional(),Lr=e.z.object({connection_id:e.z.string().openapi({description:`ID of the connection`}),assign_membership_on_login:e.z.boolean().default(false).openapi({description:`Whether to assign membership to the organization on login`}),show_as_button:e.z.boolean().default(true).openapi({description:`Whether to show this connection as a button in the login screen`}),is_signup_enabled:e.z.boolean().default(true).openapi({description:`Whether signup is enabled for this connection`})}),Rr=e.z.object({client_credentials:e.z.object({enforce:e.z.boolean().default(false).openapi({description:`Whether to enforce token quota limits`}),per_day:e.z.number().min(0).default(0).openapi({description:`Maximum tokens per day (0 = unlimited)`}),per_hour:e.z.number().min(0).default(0).openapi({description:`Maximum tokens per hour (0 = unlimited)`})}).optional()}).optional(),zr=e.z.object({id:e.z.string().optional(),name:e.z.string().min(1).regex(/^[a-z0-9_-]+$/,{message:`Organization name must be lowercase and can only contain letters, numbers, hyphens, and underscores`}).openapi({description:`The name of the organization. Must be lowercase and can only contain letters, numbers, hyphens, and underscores.`}),display_name:e.z.string().optional().openapi({description:`The display name of the organization`}),branding:Ir,metadata:e.z.record(e.z.string(),e.z.any()).default({}).optional().openapi({description:`Custom metadata for the organization`}),enabled_connections:e.z.array(Lr).default([]).optional().openapi({description:`List of enabled connections for the organization`}),token_quota:Rr}),Br=zr.extend(t.shape).extend({id:e.z.string(),name:e.z.string().min(1).openapi({description:`The name of the organization`})}),Vr=e.z.object({connection_id:e.z.string().openapi({description:`ID of the tenant-level connection to enable for the org.`}),assign_membership_on_login:e.z.boolean().optional().default(false),show_as_button:e.z.boolean().optional().default(true),is_signup_enabled:e.z.boolean().optional().default(true)}),Hr=Vr.extend({connection:e.z.object({name:e.z.string().optional(),strategy:e.z.string().optional()}).optional(),created_at:e.z.string().optional(),updated_at:e.z.string().optional()}),Ur=e.z.array(Hr),Wr=e.z.object({user_id:e.z.string().openapi({description:`ID of the user`}),organization_id:e.z.string().openapi({description:`ID of the organization`})}),Gr=Wr.extend(t.shape).extend({id:e.z.string()}),Kr=e.z.object({idle_session_lifetime:e.z.number().default(72),session_lifetime:e.z.number().default(168),session_cookie:e.z.object({mode:e.z.enum([`persistent`,`non-persistent`]).optional()}).optional(),enable_client_connections:e.z.boolean().optional(),default_redirection_uri:e.z.string().optional(),enabled_locales:e.z.array(e.z.string()).optional(),default_directory:e.z.string().optional(),error_page:e.z.object({html:e.z.string().optional(),show_log_link:e.z.boolean().optional(),url:e.z.string().optional()}).optional(),flags:e.z.object({allow_legacy_delegation_grant_types:e.z.boolean().optional(),allow_legacy_ro_grant_types:e.z.boolean().optional(),allow_legacy_tokeninfo_endpoint:e.z.boolean().optional(),disable_clickjack_protection_headers:e.z.boolean().optional(),enable_apis_section:e.z.boolean().optional(),enable_client_connections:e.z.boolean().optional(),enable_custom_domain_in_emails:e.z.boolean().optional(),enable_dynamic_client_registration:e.z.boolean().optional(),enable_idtoken_api2:e.z.boolean().optional(),enable_legacy_logs_search_v2:e.z.boolean().optional(),enable_legacy_profile:e.z.boolean().optional(),enable_pipeline2:e.z.boolean().optional(),enable_public_signup_user_exists_error:e.z.boolean().optional(),use_scope_descriptions_for_consent:e.z.boolean().optional(),disable_management_api_sms_obfuscation:e.z.boolean().optional(),enable_adfs_waad_email_verification:e.z.boolean().optional(),revoke_refresh_token_grant:e.z.boolean().optional(),dashboard_log_streams_next:e.z.boolean().optional(),dashboard_insights_view:e.z.boolean().optional(),disable_fields_map_fix:e.z.boolean().optional(),mfa_show_factor_list_on_enrollment:e.z.boolean().optional()}).optional(),friendly_name:e.z.string().optional(),picture_url:e.z.string().optional(),support_email:e.z.string().optional(),support_url:e.z.string().optional(),sandbox_version:e.z.string().optional(),sandbox_versions_available:e.z.array(e.z.string()).optional(),change_password:e.z.object({enabled:e.z.boolean(),html:e.z.string()}).optional(),guardian_mfa_page:e.z.object({enabled:e.z.boolean(),html:e.z.string()}).optional(),default_audience:e.z.string().optional(),default_organization:e.z.string().optional(),sessions:e.z.object({oidc_logout_prompt_enabled:e.z.boolean().optional()}).optional(),mfa:e.z.object({policy:e.z.enum([`never`,`always`]).default(`never`).optional(),factors:e.z.object({sms:e.z.boolean().default(false),otp:e.z.boolean().default(false),email:e.z.boolean().default(false),push_notification:e.z.boolean().default(false),webauthn_roaming:e.z.boolean().default(false),webauthn_platform:e.z.boolean().default(false),recovery_code:e.z.boolean().default(false),duo:e.z.boolean().default(false)}).optional(),sms_provider:e.z.object({provider:e.z.enum([`twilio`,`vonage`,`aws_sns`,`phone_message_hook`]).optional()}).optional(),twilio:e.z.object({sid:e.z.string().optional(),auth_token:e.z.string().optional(),from:e.z.string().optional(),messaging_service_sid:e.z.string().optional()}).optional(),phone_message:e.z.object({message:e.z.string().optional()}).optional()}).optional()}),qr=e.z.object({date:e.z.string().openapi({description:`Date these events occurred in ISO 8601 format`,example:`2025-12-19`}),logins:e.z.number().openapi({description:`Number of logins on this date`,example:150}),signups:e.z.number().openapi({description:`Number of signups on this date`,example:25}),leaked_passwords:e.z.number().openapi({description:`Number of breached-password detections on this date (subscription required)`,example:0}),updated_at:e.z.string().openapi({description:`Date and time this stats entry was last updated in ISO 8601 format`,example:`2025-12-19T10:30:00.000Z`}),created_at:e.z.string().openapi({description:`Approximate date and time the first event occurred in ISO 8601 format`,example:`2025-12-19T00:00:00.000Z`})}),Jr=e.z.number().openapi({description:`Number of active users in the last 30 days`,example:1234}),Yr=e.z.enum([`active-users`,`logins`,`signups`,`refresh-tokens`,`sessions`]),Xr=e.z.enum([`hour`,`day`,`week`,`month`]),Zr=e.z.enum([`time`,`connection`,`client_id`,`user_type`,`event`]),Qr=e.z.enum([`password`,`social`,`passwordless`,`enterprise`]),$r=e.z.object({name:e.z.string(),type:e.z.string()}),ei=e.z.object({elapsed:e.z.number(),rows_read:e.z.number().optional(),bytes_read:e.z.number().optional()}),ti=e.z.object({meta:e.z.array($r),data:e.z.array(e.z.record(e.z.string(),e.z.any())),rows:e.z.number(),rows_before_limit_at_least:e.z.number().optional(),statistics:ei.optional()}),ni=e.z.enum(`login.login-id.login-password.signup.signup-id.signup-password.reset-password.consent.mfa.mfa-push.mfa-otp.mfa-voice.mfa-phone.mfa-webauthn.mfa-email.mfa-recovery-code.status.device-flow.email-verification.email-otp-challenge.organizations.invitation.common.passkeys.captcha.custom-form.login-passwordless.mfa-login-options`.split(`.`)),ri=e.z.record(e.z.string(),e.z.record(e.z.string(),e.z.string())).openapi({type:`object`,additionalProperties:{type:`object`,additionalProperties:{type:`string`}}}),ii=e.z.object({prompt:ni,language:e.z.string(),custom_text:ri}),ai={EMAIL:`email`,SMS:`sms`,USERNAME_PASSWORD:`Username-Password-Authentication`,GOOGLE_OAUTH2:`google-oauth2`,APPLE:`apple`,FACEBOOK:`facebook`,GITHUB:`github`,MICROSOFT:`microsoft`,VIPPS:`vipps`,OIDC:`oidc`,OAUTH2:`oauth2`,SAMLP:`samlp`,WAAD:`waad`,ADFS:`adfs`},oi={DATABASE:`database`,SOCIAL:`social`,PASSWORDLESS:`passwordless`},si=e.z.enum([`phone`,`totp`,`email`,`push`,`webauthn-roaming`,`webauthn-platform`,`passkey`]),ci=e.z.object({user_id:e.z.string(),type:si,phone_number:e.z.string().optional(),totp_secret:e.z.string().optional(),credential_id:e.z.string().optional(),public_key:e.z.string().optional(),sign_count:e.z.number().int().nonnegative().optional(),credential_backed_up:e.z.boolean().optional(),transports:e.z.array(e.z.string()).optional(),friendly_name:e.z.string().optional(),confirmed:e.z.boolean().default(false)});function li(t,n){t.type===`phone`&&!t.phone_number&&n.addIssue({code:e.z.ZodIssueCode.custom,message:`phone_number is required when type is 'phone'`,path:[`phone_number`]}),t.type===`totp`&&!t.totp_secret&&n.addIssue({code:e.z.ZodIssueCode.custom,message:`totp_secret is required when type is 'totp'`,path:[`totp_secret`]}),[`webauthn-roaming`,`webauthn-platform`,`passkey`].includes(t.type)&&(t.credential_id||n.addIssue({code:e.z.ZodIssueCode.custom,message:`credential_id is required when type is '${t.type}'`,path:[`credential_id`]}),t.public_key||n.addIssue({code:e.z.ZodIssueCode.custom,message:`public_key is required when type is '${t.type}'`,path:[`public_key`]}));}var ui=ci.superRefine(li),di=ci.extend({id:e.z.string(),created_at:e.z.string(),updated_at:e.z.string()}).superRefine(li);function fi(e){let[t,n]=e.split(`|`);if(!t||!n)throw Error(`Invalid user_id: ${e}`);return {connection:t,id:n}}function pi(e){let{primary:t,secondaries:n,syncMethods:r=[`create`,`rawCreate`,`update`,`remove`,`delete`,`set`]}=e;return new Proxy(t,{get(e,t){if(typeof t==`symbol`)return e[t];let i=e[t];return typeof i==`function`?r.includes(t)?async(...r)=>{let a=await i.apply(e,r),o=[];for(let e of n){let n=e.adapter[t];if(typeof n!=`function`)continue;let i=(async()=>{try{await n.apply(e.adapter,r);}catch(n){try{e.onError?e.onError(n,t,r):console.error(`Passthrough adapter: secondary write failed for ${t}:`,n);}catch(e){console.error(`Passthrough adapter: onError handler threw for ${t}:`,e);}}})();e.blocking&&o.push(i);}return o.length>0&&await Promise.all(o),a}:i.bind(e):i}})}function mi(e){return e}function hi(e){let t=e?.options;if(!t)return {usernameIdentifierActive:false,emailIdentifierActive:true,usernameMinLength:1,usernameMaxLength:15};let n=t.attributes;return n?{usernameIdentifierActive:n.username?.identifier?.active===true,emailIdentifierActive:n.email?.identifier?.active!==false,usernameMinLength:n.username?.validation?.min_length??1,usernameMaxLength:n.username?.validation?.max_length??15}:{usernameIdentifierActive:t.requires_username===true,emailIdentifierActive:true,usernameMinLength:t.validation?.username?.min??1,usernameMaxLength:t.validation?.username?.max??15}}function gi(e){return typeof e==`object`&&!!e&&!Array.isArray(e)}exports.Auth0ActionEnum=ve,exports.Auth0Client=En,exports.AuthorizationResponseMode=ze,exports.AuthorizationResponseType=Re,exports.CodeChallengeMethod=Be,exports.ComponentCategory=D,exports.ComponentType=E,exports.EmailActionEnum=ye,exports.FORM_FIELD_TYPES=Mt,exports.FlowActionTypeEnum=_e,exports.GrantType=Xn,exports.LocationInfo=Dn,exports.LogTypes=X,exports.LoginSessionState=gn,exports.NodeType=Ne,exports.RedirectTargetEnum=u,exports.Strategy=ai,exports.StrategyType=oi,exports.actionDependencySchema=r,exports.actionExecutionErrorSchema=l,exports.actionExecutionInsertSchema=ae,exports.actionExecutionLogEntrySchema=ne,exports.actionExecutionLogsSchema=re,exports.actionExecutionResultSchema=te,exports.actionExecutionSchema=ie,exports.actionExecutionStatusSchema=c,exports.actionExecutionTriggerIdSchema=s,exports.actionInsertSchema=a,exports.actionNodeSchema=L,exports.actionSchema=ee,exports.actionSecretSchema=i,exports.actionTriggerSchema=n,exports.actionUpdateSchema=o,exports.actionVersionInsertSchema=oe,exports.actionVersionSchema=se,exports.activeUsersResponseSchema=Jr,exports.actorSchema=le,exports.addressSchema=g,exports.analyticsColumnMetaSchema=$r,exports.analyticsGroupBySchema=Zr,exports.analyticsIntervalSchema=Xr,exports.analyticsQueryResponseSchema=ti,exports.analyticsResourceSchema=Yr,exports.analyticsStatisticsSchema=ei,exports.analyticsUserTypeSchema=Qr,exports.attackProtectionSchema=Vn,exports.auditCategorySchema=ce,exports.auditEventInsertSchema=he,exports.auditEventSchema=ge,exports.auth0ClientSchema=me,exports.auth0FlowInsertSchema=Le,exports.auth0FlowSchema=Ie,exports.auth0QuerySchema=we,exports.auth0UpdateUserActionSchema=xe,exports.auth0UserResponseSchema=Ee,exports.authParamsSchema=Ue,exports.authenticationMethodInsertSchema=ui,exports.authenticationMethodSchema=di,exports.authenticationMethodTypeSchema=si,exports.baseUserSchema=_,exports.blockComponentSchema=kt,exports.bordersSchema=Qn,exports.brandingSchema=We,exports.breachedPasswordDetectionSchema=Rn,exports.bruteForceProtectionSchema=zn,exports.buttonComponentSchema=A,exports.claimsRequestSchema=He,exports.clientGrantInsertSchema=x,exports.clientGrantListSchema=je,exports.clientGrantSchema=S,exports.clientInsertSchema=b,exports.clientRegistrationTokenInsertSchema=w,exports.clientRegistrationTokenSchema=Me,exports.clientRegistrationTokenTypeSchema=C,exports.clientSchema=Ae,exports.codeInsertSchema=Ke,exports.codeSchema=qe,exports.codeTypeSchema=Ge,exports.colorsSchema=$n,exports.componentMessageSchema=Bt,exports.componentSchema=P,exports.connectionInsertSchema=Ye,exports.connectionOptionsSchema=Je,exports.connectionSchema=Xe,exports.coordinatesSchema=T,exports.createPassthroughAdapter=pi,exports.createWriteOnlyAdapter=mi,exports.customDomainInsertSchema=Ze,exports.customDomainSchema=$e,exports.customDomainWithTenantIdSchema=et,exports.customTextEntrySchema=ii,exports.customTextSchema=ri,exports.dailyStatsSchema=qr,exports.emailProviderSchema=ur,exports.emailTemplateNameSchema=dr,exports.emailTemplateSchema=fr,exports.emailVerificationRulesSchema=be,exports.emailVerifyActionSchema=Se,exports.endingSchema=Fe,exports.fieldComponentSchema=jt,exports.flowActionStepSchema=f,exports.flowInsertSchema=p,exports.flowSchema=Ce,exports.flowsFieldComponentSchema=M,exports.flowsFlowNodeSchema=I,exports.flowsStepNodeSchema=F,exports.fontDetailsSchema=Q,exports.fontsSchema=er,exports.formControlSchema=Nt,exports.formInsertSchema=Rt,exports.formNodeComponentDefinition=G,exports.formNodeSchema=Lt,exports.formSchema=zt,exports.genericComponentSchema=N,exports.genericNodeSchema=R,exports.getConnectionIdentifierConfig=hi,exports.getLogTypeCategory=Tn,exports.getLogTypeDescription=wn,exports.handlerConfigSchema=sr,exports.hookCodeInsertSchema=cn,exports.hookCodeSchema=ln,exports.hookInsertSchema=tn,exports.hookSchema=sn,exports.hookTemplateId=q,exports.hookTemplates=Xt,exports.identitySchema=h,exports.inviteInsertSchema=Y,exports.inviteSchema=fn,exports.inviteeSchema=dn,exports.inviterSchema=un,exports.isBlockComponent=Ut,exports.isFieldComponent=Gt,exports.isPlainObject=gi,exports.isWidgetComponent=Wt,exports.jwksKeySchema=mn,exports.jwksSchema=pn,exports.legalComponentSchema=j,exports.locationInfoSchema=pe,exports.logInsertSchema=On,exports.logSchema=kn,exports.logStreamFilterSchema=jn,exports.logStreamInsertSchema=Mn,exports.logStreamSchema=Nn,exports.logStreamStatusSchema=Z,exports.logStreamTypeSchema=An,exports.logTypeCategories=Cn,exports.logTypeDescriptions=Sn,exports.loginSessionAuthStrategySchema=vn,exports.loginSessionInsertSchema=yn,exports.loginSessionSchema=bn,exports.loginSessionStateSchema=_n,exports.matchSchema=or,exports.migrationProviderTypeSchema=Pn,exports.migrationSourceCredentialsSchema=Fn,exports.migrationSourceInsertSchema=In,exports.migrationSourceSchema=Ln,exports.nodeSchema=z,exports.openIDConfigurationSchema=hn,exports.organizationBrandingSchema=Ir,exports.organizationConnectionInsertSchema=Vr,exports.organizationConnectionListSchema=Ur,exports.organizationConnectionSchema=Hr,exports.organizationEnabledConnectionSchema=Lr,exports.organizationInsertSchema=zr,exports.organizationSchema=Br,exports.organizationTokenQuotaSchema=Rr,exports.pageBackgroundSchema=tr,exports.parseUserId=fi,exports.passwordInsertSchema=Hn,exports.passwordSchema=Un,exports.profileDataSchema=m,exports.promptScreenSchema=ni,exports.promptSettingSchema=ar,exports.proxyRouteInsertSchema=$,exports.proxyRouteSchema=cr,exports.proxyRouteUpdateSchema=lr,exports.redirectActionSchema=d,exports.refreshTokenInsertSchema=pr,exports.refreshTokenSchema=mr,exports.requestContextSchema=de,exports.resourceServerInsertSchema=yr,exports.resourceServerListSchema=xr,exports.resourceServerOptionsSchema=vr,exports.resourceServerSchema=br,exports.resourceServerScopeSchema=_r,exports.responseContextSchema=fe,exports.richTextComponentSchema=k,exports.roleInsertSchema=Nr,exports.roleListSchema=Fr,exports.rolePermissionInsertSchema=Sr,exports.rolePermissionListSchema=wr,exports.rolePermissionSchema=Cr,exports.roleSchema=Pr,exports.screenLinkSchema=Vt,exports.sessionInsertSchema=Gn,exports.sessionSchema=Kn,exports.signingKeySchema=qn,exports.smsProviderSchema=gr,exports.smsSendParamsSchema=hr,exports.startSchema=Pe,exports.suspiciousIpThrottlingSchema=Bn,exports.targetSchema=ue,exports.tenantInsertSchema=Jn,exports.tenantSchema=Yn,exports.tenantSettingsSchema=Kr,exports.themeInsertSchema=rr,exports.themeSchema=ir,exports.tokenResponseSchema=Zn,exports.totalsSchema=Te,exports.uiScreenSchema=Ht,exports.userInsertSchema=v,exports.userOrganizationInsertSchema=Wr,exports.userOrganizationSchema=Gr,exports.userPermissionInsertSchema=Tr,exports.userPermissionListSchema=Dr,exports.userPermissionSchema=Er,exports.userPermissionWithDetailsListSchema=kr,exports.userPermissionWithDetailsSchema=Or,exports.userResponseSchema=De,exports.userRoleInsertSchema=Ar,exports.userRoleListSchema=Mr,exports.userRoleSchema=jr,exports.userSchema=y,exports.verificationMethodsSchema=Qe,exports.widgetComponentSchema=At,exports.widgetSchema=nr;
19458
+ Object.defineProperty(exports,Symbol.toStringTag,{value:`Module`});let e=require$$0;var t=e.z.object({created_at:e.z.string(),updated_at:e.z.string()}),n=e.z.object({id:e.z.string(),version:e.z.string().optional()}),r=e.z.object({name:e.z.string(),version:e.z.string()}),i=e.z.object({name:e.z.string(),value:e.z.string().optional()}),a=e.z.object({name:e.z.string().max(255),code:e.z.string().max(1e5),supported_triggers:e.z.array(n).optional(),runtime:e.z.string().max(50).optional(),dependencies:e.z.array(r).optional(),secrets:e.z.array(i).optional(),is_system:e.z.boolean().optional(),inherit:e.z.boolean().optional()}),o=a.partial().extend({status:e.z.enum([`draft`,`built`]).optional(),deployed_at:e.z.string().optional()}),ee=a.extend({id:e.z.string(),tenant_id:e.z.string(),status:e.z.enum([`draft`,`built`]).default(`built`),deployed_at:e.z.string().optional(),secrets:e.z.array(e.z.object({name:e.z.string(),value:e.z.string().optional()})).optional()}).extend(t.shape),s=e.z.string(),c=e.z.enum([`unspecified`,`pending`,`final`,`partial`,`canceled`,`suspended`]),l=e.z.object({id:e.z.string(),msg:e.z.string(),url:e.z.string().optional()}),te=e.z.object({action_name:e.z.string(),error:l.nullable(),started_at:e.z.string(),ended_at:e.z.string()}),ne=e.z.object({level:e.z.enum([`log`,`info`,`warn`,`error`,`debug`]),message:e.z.string()}),re=e.z.array(e.z.object({action_name:e.z.string(),lines:e.z.array(ne)})),ie=e.z.object({id:e.z.string(),tenant_id:e.z.string(),trigger_id:s,status:c,results:e.z.array(te),logs:re.optional(),created_at:e.z.string(),updated_at:e.z.string()}),ae=ie.omit({tenant_id:true,created_at:true,updated_at:true}),u=e.z.object({action_id:e.z.string(),code:e.z.string().max(1e5),runtime:e.z.string().max(50).optional(),dependencies:e.z.array(r).optional(),secrets:e.z.array(i).optional(),supported_triggers:e.z.array(n).optional(),deployed:e.z.boolean().default(true)}),oe=u.extend({id:e.z.string(),tenant_id:e.z.string(),number:e.z.number().int()}).extend(t.shape),se=e.z.enum([`user_action`,`admin_action`,`system`,`api`]),ce=e.z.object({type:e.z.enum([`user`,`admin`,`system`,`api_key`,`client_credentials`]),id:e.z.string().optional(),email:e.z.string().optional(),org_id:e.z.string().optional(),org_name:e.z.string().optional(),scopes:e.z.array(e.z.string()).optional(),client_id:e.z.string().optional()}),le=e.z.object({type:e.z.string(),id:e.z.string(),before:e.z.record(e.z.string(),e.z.unknown()).optional(),after:e.z.record(e.z.string(),e.z.unknown()).optional(),diff:e.z.record(e.z.string(),e.z.object({old:e.z.unknown(),new:e.z.unknown()})).optional()}),ue=e.z.object({method:e.z.string(),path:e.z.string(),query:e.z.record(e.z.string(),e.z.string()).optional(),body:e.z.unknown().optional(),ip:e.z.string(),user_agent:e.z.string().optional(),correlation_id:e.z.string().optional()}),de=e.z.object({status_code:e.z.number(),body:e.z.unknown().optional()}),fe=e.z.object({country_code:e.z.string(),city_name:e.z.string(),latitude:e.z.string(),longitude:e.z.string(),time_zone:e.z.string(),continent_code:e.z.string()}),d=e.z.object({name:e.z.string(),version:e.z.string(),env:e.z.record(e.z.string(),e.z.string()).optional()}),f=e.z.object({tenant_id:e.z.string(),event_type:e.z.string(),log_type:e.z.string(),description:e.z.string().optional(),category:se,actor:ce,target:le,request:ue,response:de.optional(),connection:e.z.string().optional(),strategy:e.z.string().optional(),strategy_type:e.z.string().optional(),audience:e.z.string().optional(),scope:e.z.string().optional(),location:fe.optional(),auth0_client:d.optional(),hostname:e.z.string(),is_mobile:e.z.boolean().optional(),timestamp:e.z.string()}),pe=f.extend({id:e.z.string()}),me=e.z.enum([`AUTH0`,`EMAIL`,`REDIRECT`]),he=e.z.enum([`CREATE_USER`,`GET_USER`,`UPDATE_USER`,`SEND_REQUEST`,`SEND_EMAIL`]),ge=e.z.enum([`VERIFY_EMAIL`]),p=e.z.object({require_mx_record:e.z.boolean().optional(),block_aliases:e.z.boolean().optional(),block_free_emails:e.z.boolean().optional(),block_disposable_emails:e.z.boolean().optional(),blocklist:e.z.array(e.z.string()).optional(),allowlist:e.z.array(e.z.string()).optional()}),m=e.z.object({id:e.z.string(),alias:e.z.string().max(100).optional(),type:e.z.literal(`AUTH0`),action:e.z.literal(`UPDATE_USER`),allow_failure:e.z.boolean().optional(),mask_output:e.z.boolean().optional(),params:e.z.object({connection_id:e.z.string().optional(),user_id:e.z.string(),changes:e.z.record(e.z.string(),e.z.any())})}),h=e.z.object({id:e.z.string(),alias:e.z.string().max(100).optional(),type:e.z.literal(`EMAIL`),action:e.z.literal(`VERIFY_EMAIL`),allow_failure:e.z.boolean().optional(),mask_output:e.z.boolean().optional(),params:e.z.object({email:e.z.string(),rules:p.optional()})}),g=e.z.enum([`change-email`,`account`,`custom`]),_=e.z.object({id:e.z.string(),alias:e.z.string().max(100).optional(),type:e.z.literal(`REDIRECT`),action:e.z.literal(`REDIRECT_USER`),allow_failure:e.z.boolean().optional(),mask_output:e.z.boolean().optional(),params:e.z.object({target:g.openapi({description:`The predefined target to redirect to, or 'custom' for a custom URL`}),custom_url:e.z.string().optional().openapi({description:`Custom URL to redirect to when target is 'custom'`})})}),v=e.z.union([m,h,_]),y=e.z.object({name:e.z.string().min(1).max(150).openapi({description:`The name of the flow`}),actions:e.z.array(v).optional().default([]).openapi({description:`The list of actions to execute in sequence`})}),_e=y.extend(t.shape).extend({id:e.z.string().openapi({description:`Unique identifier for the flow`,example:`af_12tMpdJ3iek7svMyZkSh5M`})}),ve=e.z.object({page:e.z.string().min(0).optional().default(`0`).transform(e=>parseInt(e,10)).openapi({description:`The page number where 0 is the first page`}),per_page:e.z.string().min(1).optional().default(`10`).transform(e=>parseInt(e,10)).openapi({description:`The number of items per page`}),include_totals:e.z.string().optional().default(`false`).transform(e=>e===`true`).openapi({description:`If the total number of items should be included in the response`}),sort:e.z.string().regex(/^.+:(-1|1)$/).optional().openapi({description:`A property that should have the format 'string:-1' or 'string:1'`}),q:e.z.string().optional().openapi({description:`A lucene query string used to filter the results`})}),ye=e.z.object({start:e.z.number(),limit:e.z.number(),length:e.z.number(),total:e.z.number().optional()}),be=e.z.object({email:e.z.string().optional(),email_verified:e.z.boolean().optional(),name:e.z.string().optional(),username:e.z.string().optional(),given_name:e.z.string().optional(),phone_number:e.z.string().optional(),phone_verified:e.z.boolean().optional(),family_name:e.z.string().optional()}).catchall(e.z.any()),b=e.z.object({connection:e.z.string(),user_id:e.z.string(),provider:e.z.string(),isSocial:e.z.boolean(),email:e.z.string().optional(),email_verified:e.z.boolean().optional(),phone_number:e.z.string().optional(),phone_verified:e.z.boolean().optional(),username:e.z.string().optional(),access_token:e.z.string().optional(),access_token_secret:e.z.string().optional(),refresh_token:e.z.string().optional(),profileData:be.optional()}),x=e.z.object({formatted:e.z.string().optional(),street_address:e.z.string().optional(),locality:e.z.string().optional(),region:e.z.string().optional(),postal_code:e.z.string().optional(),country:e.z.string().optional()}).optional(),S=e.z.object({email:e.z.string().transform(e=>e.toLowerCase()).optional(),username:e.z.string().refine(e=>!e.includes(`@`),{message:`Usernames must not contain "@". Use the email field for email addresses.`}).optional(),phone_number:e.z.string().optional(),phone_verified:e.z.boolean().optional(),given_name:e.z.string().optional(),family_name:e.z.string().optional(),nickname:e.z.string().optional(),name:e.z.string().optional(),picture:e.z.string().optional(),locale:e.z.string().optional(),linked_to:e.z.string().optional(),profileData:e.z.string().optional(),user_id:e.z.string().optional(),app_metadata:e.z.any().default({}).optional(),user_metadata:e.z.any().default({}).optional(),middle_name:e.z.string().optional(),preferred_username:e.z.string().optional(),profile:e.z.string().optional(),website:e.z.string().optional(),gender:e.z.string().optional(),birthdate:e.z.string().optional(),zoneinfo:e.z.string().optional(),address:x}),C=S.extend({email_verified:e.z.boolean().default(false),verify_email:e.z.boolean().optional(),last_ip:e.z.string().optional(),last_login:e.z.string().optional(),user_id:e.z.string().optional(),provider:e.z.string().optional(),connection:e.z.string(),is_social:e.z.boolean().optional(),registration_completed_at:e.z.string().optional(),password:e.z.object({hash:e.z.string(),algorithm:e.z.string()}).optional()}),w=C.omit({password:true}).extend(t.shape).extend({user_id:e.z.string(),provider:e.z.string(),is_social:e.z.boolean(),email:e.z.string().optional(),login_count:e.z.number().default(0),identities:e.z.array(b).optional()}),xe=w.omit({registration_completed_at:true}),Se=S.extend({login_count:e.z.number(),multifactor:e.z.array(e.z.string()).optional(),last_ip:e.z.string().optional(),last_login:e.z.string().optional(),user_id:e.z.string()}).catchall(e.z.any()),Ce=`useandom-26T198340PX75pxJACKVERYMINDBUSHWOLF_GQZbfghjklqvwyzrict`,we=(e=21)=>{let t=``,n=crypto.getRandomValues(new Uint8Array(e|=0));for(;e--;)t+=Ce[n[e]&63];return t},T=e.z.object({client_id:e.z.string().optional().openapi({description:`ID of this client. Generated server-side if omitted (Auth0 behavior).`}),name:e.z.string().min(1).openapi({description:`Name of this client (min length: 1 character, does not allow < or >).`}),description:e.z.string().max(140).optional().openapi({description:`Free text description of this client (max length: 140 characters).`}),global:e.z.boolean().default(false).openapi({description:`Whether this is your global 'All Applications' client representing legacy tenant settings (true) or a regular client (false).`}),client_secret:e.z.string().default(()=>we()).optional().openapi({description:`Client secret (which you must not make public).`}),app_type:e.z.enum([`native`,`spa`,`regular_web`,`non_interactive`,`resource_server`,`express_configuration`,`rms`,`box`,`cloudbees`,`concur`,`dropbox`,`mscrm`,`echosign`,`egnyte`,`newrelic`,`office365`,`salesforce`,`sentry`,`sharepoint`,`slack`,`springcm`,`zendesk`,`zoom`,`sso_integration`,`oag`]).default(`regular_web`).optional().openapi({description:`The type of application this client represents`}),logo_uri:e.z.string().url().optional().openapi({description:`URL of the logo to display for this client. Recommended size is 150x150 pixels.`}),is_first_party:e.z.boolean().default(false).openapi({description:`Whether this client a first party client (true) or not (false).`}),oidc_conformant:e.z.boolean().default(true).openapi({description:`Whether this client conforms to strict OIDC specifications (true) or uses legacy features (false).`}),auth0_conformant:e.z.boolean().default(true).openapi({description:`Whether this client follows Auth0-compatible behavior (true) or strict OIDC behavior (false). When true, profile/email claims are included in the ID token when scopes are requested. When false, these claims are only available from the userinfo endpoint (strict OIDC 5.4 compliance).`}),callbacks:e.z.array(e.z.string()).default([]).optional().openapi({description:`Comma-separated list of URLs whitelisted for Auth0 to use as a callback to the client after authentication.`}),allowed_origins:e.z.array(e.z.string()).default([]).optional().openapi({description:`Comma-separated list of URLs allowed to make requests from JavaScript to Auth0 API (typically used with CORS). By default, all your callback URLs will be allowed. This field allows you to enter other origins if necessary. You can also use wildcards at the subdomain level (e.g., https://*.contoso.com). Query strings and hash information are not taken into account when validating these URLs.`}),web_origins:e.z.array(e.z.string()).default([]).optional().openapi({description:`Comma-separated list of allowed origins for use with Cross-Origin Authentication, Device Flow, and web message response mode.`}),client_aliases:e.z.array(e.z.string()).default([]).optional().openapi({description:`List of audiences/realms for SAML protocol. Used by the wsfed addon.`}),allowed_clients:e.z.array(e.z.string()).default([]).optional().openapi({description:`List of allow clients and API ids that are allowed to make delegation requests. Empty means all all your clients are allowed.`}),connections:e.z.array(e.z.string()).default([]).optional().openapi({description:`List of connection IDs enabled for this client. The order determines the display order on the login page.`}),allowed_logout_urls:e.z.array(e.z.string()).default([]).optional().openapi({description:`Comma-separated list of URLs that are valid to redirect to after logout from Auth0. Wildcards are allowed for subdomains.`}),session_transfer:e.z.record(e.z.string(),e.z.any()).default({}).optional().openapi({description:`Native to Web SSO Configuration`}),oidc_logout:e.z.record(e.z.string(),e.z.any()).default({}).optional().openapi({description:`Configuration for OIDC backchannel logout`}),grant_types:e.z.array(e.z.string()).default([]).optional().openapi({description:`List of grant types supported for this application. Can include authorization_code, implicit, refresh_token, client_credentials, password, http://auth0.com/oauth/grant-type/password-realm, http://auth0.com/oauth/grant-type/mfa-oob, http://auth0.com/oauth/grant-type/mfa-otp, http://auth0.com/oauth/grant-type/mfa-recovery-code, urn:openid:params:grant-type:ciba, and urn:ietf:params:oauth:grant-type:device_code.`}),jwt_configuration:e.z.record(e.z.string(),e.z.any()).default({}).optional().openapi({description:`Configuration related to JWTs for the client.`}),signing_keys:e.z.array(e.z.record(e.z.string(),e.z.any())).default([]).optional().openapi({description:`Signing certificates associated with this client.`}),encryption_key:e.z.record(e.z.string(),e.z.any()).default({}).optional().openapi({description:`Encryption used for WsFed responses with this client.`}),sso:e.z.boolean().default(false).openapi({description:`Applies only to SSO clients and determines whether Auth0 will handle Single Sign On (true) or whether the Identity Provider will (false).`}),sso_disabled:e.z.boolean().default(false).openapi({description:`Whether Single Sign On is disabled for this client. When true, existing SSO sessions will not be reused and users must authenticate every time.`}),cross_origin_authentication:e.z.boolean().default(false).openapi({description:`Whether this client can be used to make cross-origin authentication requests (true) or it is not allowed to make such requests (false).`}),cross_origin_loc:e.z.string().url().optional().openapi({description:`URL of the location in your site where the cross origin verification takes place for the cross-origin auth flow when performing Auth in your own domain instead of Auth0 hosted login page.`}),custom_login_page_on:e.z.boolean().default(false).openapi({description:`Whether a custom login page is to be used (true) or the default provided login page (false).`}),custom_login_page:e.z.string().optional().openapi({description:`The content (HTML, CSS, JS) of the custom login page.`}),custom_login_page_preview:e.z.string().optional().openapi({description:`The content (HTML, CSS, JS) of the custom login page. (Used on Previews)`}),form_template:e.z.string().optional().openapi({description:`HTML form template to be used for WS-Federation.`}),addons:e.z.record(e.z.string(),e.z.any()).default({}).optional().openapi({description:`Addons enabled for this client and their associated configurations.`}),token_endpoint_auth_method:e.z.enum([`none`,`client_secret_post`,`client_secret_basic`,`client_secret_jwt`,`private_key_jwt`]).default(`client_secret_basic`).optional().openapi({description:"Defines the requested authentication method for the token endpoint. `none` (public client), `client_secret_post` / `client_secret_basic` (HTTP POST / Basic), `client_secret_jwt` (RFC 7523 HMAC assertion using client_secret), or `private_key_jwt` (RFC 7523 asymmetric assertion verified against the client's `jwks` / `jwks_uri`)."}),client_metadata:e.z.record(e.z.string(),e.z.string().max(255)).default({}).optional().openapi({description:`Metadata associated with the client, in the form of an object with string values (max 255 chars). Maximum of 10 metadata properties allowed. Field names (max 255 chars) are alphanumeric and may only include the following special characters: :,-+=_*?"/()<>@ [Tab][Space]`}),hide_sign_up_disabled_error:e.z.boolean().default(false).optional().openapi({description:"Enumeration-safe variant of the connection-level `disable_signup` flag. When a signup is blocked by the password connection and this is true, the identifier screen does not reveal that an email is unknown — it advances to the OTP/password challenge as if the account existed and fails at credential check. Mitigates email enumeration at the cost of UX: users without an account see a generic credential failure instead of an explicit signup-disabled message."}),mobile:e.z.record(e.z.string(),e.z.any()).default({}).optional().openapi({description:`Additional configuration for native mobile apps.`}),initiate_login_uri:e.z.string().url().optional().openapi({description:`Initiate login uri, must be https`}),native_social_login:e.z.record(e.z.string(),e.z.any()).default({}).optional(),refresh_token:e.z.object({rotation_type:e.z.enum([`rotating`,`non-rotating`]).optional().openapi({description:`Whether refresh tokens for this client are rotated on every exchange (Auth0 'rotating' behavior) or kept stable (legacy non-rotating). Defaults to 'non-rotating' when unset.`}),leeway:e.z.number().int().min(0).max(600).optional().openapi({description:`Seconds after a parent token's first rotation during which presenting it again still mints a fresh sibling child instead of triggering reuse-detection. Defaults to 30s when unset.`}),expiration_type:e.z.enum([`expiring`,`non-expiring`]).optional().openapi({description:`Auth0-compatible: whether refresh tokens expire.`}),token_lifetime:e.z.number().int().min(0).optional().openapi({description:`Auth0-compatible: refresh-token absolute lifetime in seconds.`}),infinite_token_lifetime:e.z.boolean().optional().openapi({description:`Auth0-compatible: when true, refresh tokens have no absolute expiry.`}),idle_token_lifetime:e.z.number().int().min(0).optional().openapi({description:`Auth0-compatible: refresh-token idle (sliding) lifetime in seconds.`}),infinite_idle_token_lifetime:e.z.boolean().optional().openapi({description:`Auth0-compatible: when true, refresh tokens have no idle expiry.`})}).default({}).optional().openapi({description:`Refresh token configuration`}),default_organization:e.z.record(e.z.string(),e.z.any()).default({}).optional().openapi({description:`Defines the default Organization ID and flows`}),organization_usage:e.z.enum([`deny`,`allow`,`require`]).default(`deny`).optional().openapi({description:`Defines how to proceed during an authentication transaction with regards an organization. Can be deny (default), allow or require.`}),organization_require_behavior:e.z.enum([`no_prompt`,`pre_login_prompt`,`post_login_prompt`]).default(`no_prompt`).optional().openapi({description:`Defines how to proceed during an authentication transaction when client.organization_usage: 'require'. Can be no_prompt (default), pre_login_prompt or post_login_prompt. post_login_prompt requires oidc_conformant: true.`}),client_authentication_methods:e.z.record(e.z.string(),e.z.any()).default({}).optional().openapi({description:`Defines client authentication methods.`}),require_pushed_authorization_requests:e.z.boolean().default(false).openapi({description:`Makes the use of Pushed Authorization Requests mandatory for this client`}),require_proof_of_possession:e.z.boolean().default(false).openapi({description:`Makes the use of Proof-of-Possession mandatory for this client`}),signed_request_object:e.z.record(e.z.string(),e.z.any()).default({}).optional().openapi({description:`JWT-secured Authorization Requests (JAR) settings.`}),compliance_level:e.z.enum([`none`,`fapi1_adv_pkj_par`,`fapi1_adv_mtls_par`,`fapi2_sp_pkj_mtls`,`fapi2_sp_mtls_mtls`]).optional().openapi({description:`Defines the compliance level for this client, which may restrict it's capabilities`}),par_request_expiry:e.z.number().optional().openapi({description:`Specifies how long, in seconds, a Pushed Authorization Request URI remains valid`}),token_quota:e.z.record(e.z.string(),e.z.any()).default({}).optional(),owner_user_id:e.z.string().optional().openapi({description:`User ID of the consenting user when this client was created via IAT-gated Dynamic Client Registration. NULL for clients created via the Management API or open DCR.`}),registration_type:e.z.enum([`manual`,`open_dcr`,`iat_dcr`]).optional().openapi({description:"Provenance of this client. `manual` = Management API; `open_dcr` = RFC 7591 without IAT; `iat_dcr` = RFC 7591 with an Initial Access Token."}),registration_metadata:e.z.record(e.z.string(),e.z.any()).default({}).optional().openapi({description:"Arbitrary metadata captured at Dynamic Client Registration time that isn't a first-class client field (e.g. integration_type, domain). Also stores `iat_constraints` for clients created via IAT so RFC 7592 PUT can enforce field immutability."}),user_linking_mode:e.z.enum([`builtin`,`off`]).optional().openapi({description:"Per-client override for the built-in email-based user-linking path. `builtin` runs the legacy in-process linking at user creation/email update. `off` disables the legacy path; linking only happens if the tenant has enabled the `account-linking` template hook. When unset, the service-level `userLinkingMode` default applies."})}),Te=e.z.object({created_at:e.z.string(),updated_at:e.z.string()}).extend(T.shape).extend({client_id:e.z.string()}),E=e.z.object({client_id:e.z.string().min(1).openapi({description:`ID of the client.`}),audience:e.z.string().min(1).openapi({description:`The audience (API identifier) of this client grant.`}),scope:e.z.array(e.z.string()).optional().openapi({description:`Scopes allowed for this client grant.`}),organization_usage:e.z.enum([`deny`,`allow`,`require`]).optional().openapi({description:`Defines whether organizations can be used with client credentials exchanges for this grant.`}),allow_any_organization:e.z.boolean().optional().openapi({description:`If enabled, any organization can be used with this grant. If disabled (default), the grant must be explicitly assigned to the desired organizations.`}),is_system:e.z.boolean().optional().openapi({description:`If enabled, this grant is a special grant created by Auth0. It cannot be modified or deleted directly.`}),subject_type:e.z.enum([`client`,`user`]).optional().openapi({description:`The type of application access the client grant allows. Use of this field is subject to the applicable Free Trial terms in Okta's Master Subscription Agreement.`}),authorization_details_types:e.z.array(e.z.string()).optional().openapi({description:`Types of authorization_details allowed for this client grant. Use of this field is subject to the applicable Free Trial terms in Okta's Master Subscription Agreement.`})}),D=e.z.object({id:e.z.string().openapi({description:`ID of the client grant.`})}).extend(E.shape).extend({created_at:e.z.string().optional(),updated_at:e.z.string().optional()}),Ee=e.z.array(D),O=e.z.enum([`iat`,`rat`]),k=e.z.object({id:e.z.string(),token_hash:e.z.string(),type:O,client_id:e.z.string().optional(),sub:e.z.string().optional(),constraints:e.z.record(e.z.string(),e.z.unknown()).optional(),single_use:e.z.boolean().default(false),expires_at:e.z.string().optional()}),De=e.z.object({created_at:e.z.string(),used_at:e.z.string().optional(),revoked_at:e.z.string().optional()}).extend(k.shape),A=e.z.object({x:e.z.number(),y:e.z.number()}),j=function(e){return e.RICH_TEXT=`RICH_TEXT`,e.NEXT_BUTTON=`NEXT_BUTTON`,e.BACK_BUTTON=`BACK_BUTTON`,e.SUBMIT_BUTTON=`SUBMIT_BUTTON`,e.DIVIDER=`DIVIDER`,e.TEXT=`TEXT`,e.EMAIL=`EMAIL`,e.PASSWORD=`PASSWORD`,e.NUMBER=`NUMBER`,e.PHONE=`PHONE`,e.DATE=`DATE`,e.CHECKBOX=`CHECKBOX`,e.RADIO=`RADIO`,e.SELECT=`SELECT`,e.HIDDEN=`HIDDEN`,e.LEGAL=`LEGAL`,e}({}),M=function(e){return e.BLOCK=`BLOCK`,e.FIELD=`FIELD`,e}({}),N=e.z.object({id:e.z.string(),category:e.z.nativeEnum(M),type:e.z.nativeEnum(j)}),P=N.extend({category:e.z.literal(`BLOCK`),type:e.z.literal(`RICH_TEXT`),config:e.z.object({content:e.z.string()}).passthrough()}),F=N.extend({category:e.z.literal(`BLOCK`),type:e.z.union([e.z.literal(`NEXT_BUTTON`),e.z.literal(`BACK_BUTTON`),e.z.literal(`SUBMIT_BUTTON`)]),config:e.z.object({text:e.z.string()}).passthrough()}),I=N.extend({category:e.z.literal(`FIELD`),type:e.z.literal(`LEGAL`),required:e.z.boolean().optional(),sensitive:e.z.boolean().optional(),config:e.z.object({text:e.z.string()}).passthrough()}),L=N.extend({category:e.z.literal(`FIELD`),type:e.z.union([e.z.literal(`TEXT`),e.z.literal(`EMAIL`),e.z.literal(`PASSWORD`),e.z.literal(`NUMBER`),e.z.literal(`PHONE`),e.z.literal(`DATE`),e.z.literal(`CHECKBOX`),e.z.literal(`RADIO`),e.z.literal(`SELECT`),e.z.literal(`HIDDEN`)]),required:e.z.boolean().optional(),sensitive:e.z.boolean().optional(),config:e.z.object({label:e.z.string().optional(),placeholder:e.z.string().optional()}).passthrough()}),R=e.z.object({id:e.z.string(),category:e.z.string(),type:e.z.string()}).passthrough(),z=e.z.union([P,F,I,L,R]),Oe=function(e){return e.STEP=`STEP`,e.FLOW=`FLOW`,e.CONDITION=`CONDITION`,e.ACTION=`ACTION`,e}({}),B=e.z.object({id:e.z.string(),type:e.z.literal(`STEP`),coordinates:A,alias:e.z.string().optional(),config:e.z.object({components:e.z.array(z),next_node:e.z.string()}).passthrough()}),ke=e.z.object({id:e.z.string(),type:e.z.literal(`FLOW`),coordinates:A,alias:e.z.string().optional(),config:e.z.object({flow_id:e.z.string(),next_node:e.z.string()})}),Ae=e.z.object({id:e.z.string(),type:e.z.literal(`ACTION`),coordinates:A,alias:e.z.string().optional(),config:e.z.object({action_type:e.z.enum([`REDIRECT`]).openapi({description:`The type of action to perform`}),target:e.z.enum([`change-email`,`account`,`custom`]).openapi({description:`The predefined target to redirect to`}),custom_url:e.z.string().optional().openapi({description:`Custom URL when target is 'custom'`}),next_node:e.z.string().openapi({description:`The next node to navigate to after action (for non-redirect actions)`})}).passthrough()}),je=e.z.object({id:e.z.string(),type:e.z.string(),coordinates:A}).passthrough(),Me=e.z.union([B,ke,Ae,je]),Ne=e.z.object({next_node:e.z.string(),coordinates:A}).passthrough(),Pe=e.z.object({resume_flow:e.z.boolean().optional(),coordinates:A}).passthrough(),Fe=e.z.object({id:e.z.string(),name:e.z.string(),languages:e.z.object({primary:e.z.string()}).passthrough(),nodes:e.z.array(Me),start:Ne,ending:Pe,created_at:e.z.string(),updated_at:e.z.string(),links:e.z.object({sdkSrc:e.z.string().optional(),sdk_src:e.z.string().optional()}).passthrough()}).passthrough(),Ie=Fe.omit({id:true,created_at:true,updated_at:true}),Le=function(e){return e.TOKEN=`token`,e.ID_TOKEN=`id_token`,e.TOKEN_ID_TOKEN=`id_token token`,e.CODE=`code`,e.CODE_ID_TOKEN=`code id_token`,e.CODE_TOKEN=`code token`,e.CODE_ID_TOKEN_TOKEN=`code id_token token`,e}({}),Re=function(e){return e.QUERY=`query`,e.FRAGMENT=`fragment`,e.FORM_POST=`form_post`,e.WEB_MESSAGE=`web_message`,e.SAML_POST=`saml_post`,e}({}),ze=function(e){return e.S256=`S256`,e.Plain=`plain`,e}({}),Be=e.z.union([e.z.null(),e.z.object({essential:e.z.boolean().optional(),value:e.z.unknown().optional(),values:e.z.array(e.z.unknown()).optional()})]).nullable(),Ve=e.z.object({userinfo:e.z.record(e.z.string(),Be).optional(),id_token:e.z.record(e.z.string(),Be).optional()}),He=e.z.object({client_id:e.z.string(),act_as:e.z.string().optional(),response_type:e.z.nativeEnum(Le).optional(),response_mode:e.z.nativeEnum(Re).optional(),redirect_uri:e.z.string().optional(),audience:e.z.string().optional(),organization:e.z.string().optional(),state:e.z.string().optional(),nonce:e.z.string().optional(),scope:e.z.string().optional(),prompt:e.z.string().optional(),code_challenge_method:e.z.nativeEnum(ze).optional(),code_challenge:e.z.string().optional(),username:e.z.string().optional(),ui_locales:e.z.string().optional(),max_age:e.z.number().optional(),acr_values:e.z.string().optional(),claims:Ve.optional(),vendor_id:e.z.string().optional()}),Ue=e.z.object({colors:e.z.object({primary:e.z.string(),page_background:e.z.union([e.z.string(),e.z.object({type:e.z.string().optional(),start:e.z.string().optional(),end:e.z.string().optional(),angle_deg:e.z.number().optional()})]).optional()}).optional(),logo_url:e.z.string().optional(),favicon_url:e.z.string().optional(),powered_by_logo_url:e.z.string().optional(),font:e.z.object({url:e.z.string()}).optional(),dark_mode:e.z.enum([`dark`,`light`,`auto`]).optional()}),We=e.z.enum([`password_reset`,`email_verification`,`otp`,`mfa_otp`,`authorization_code`,`oauth2_state`,`ticket`]),Ge=e.z.object({code_id:e.z.string().openapi({description:`The code that will be used in for instance an email verification flow`}),login_id:e.z.string().openapi({description:`The id of the login session that the code is connected to`}),connection_id:e.z.string().optional().openapi({description:`The connection that the code is connected to`}),code_type:We,code_verifier:e.z.string().optional().openapi({description:`The code verifier used in PKCE in outbound flows`}),code_challenge:e.z.string().optional().openapi({description:`The code challenge used in PKCE in outbound flows`}),code_challenge_method:e.z.enum([`plain`,`S256`]).optional().openapi({description:`The code challenge method used in PKCE in outbound flows`}),redirect_uri:e.z.string().optional().openapi({description:`The redirect URI associated with the code`}),otp:e.z.string().optional().openapi({description:`The one-time password value for OTP-based flows`}),nonce:e.z.string().optional().openapi({description:`The nonce value used for security in OIDC flows`}),state:e.z.string().optional().openapi({description:`The state parameter used for CSRF protection in OAuth flows`}),expires_at:e.z.string(),used_at:e.z.string().optional(),user_id:e.z.string().optional()}),Ke=Ge.extend({created_at:e.z.string()}),qe=e.z.object({kid:e.z.string().optional(),team_id:e.z.string().optional(),realms:e.z.string().optional(),authentication_method:e.z.string().optional(),client_id:e.z.string().optional(),client_secret:e.z.string().optional(),app_secret:e.z.string().optional(),scope:e.z.string().optional(),authorization_endpoint:e.z.string().optional(),token_endpoint:e.z.string().optional(),userinfo_endpoint:e.z.string().optional(),jwks_uri:e.z.string().optional(),discovery_url:e.z.string().optional(),issuer:e.z.string().optional(),token_endpoint_auth_method:e.z.enum([`client_secret_basic`,`client_secret_post`]).optional(),provider:e.z.string().optional(),from:e.z.string().optional(),twilio_sid:e.z.string().optional(),twilio_token:e.z.string().optional(),icon_url:e.z.string().optional(),domain_aliases:e.z.array(e.z.string()).optional(),callback_url:e.z.string().url().optional(),passwordPolicy:e.z.enum([`none`,`low`,`fair`,`good`,`excellent`]).optional(),password_complexity_options:e.z.object({min_length:e.z.number().optional()}).optional(),password_history:e.z.object({enable:e.z.boolean().optional(),size:e.z.number().optional()}).optional(),password_no_personal_info:e.z.object({enable:e.z.boolean().optional()}).optional(),password_dictionary:e.z.object({enable:e.z.boolean().optional(),dictionary:e.z.array(e.z.string()).optional()}).optional(),disable_signup:e.z.boolean().optional(),brute_force_protection:e.z.boolean().optional(),import_mode:e.z.boolean().optional(),configuration:e.z.object({token_endpoint:e.z.string().optional(),userinfo_endpoint:e.z.string().optional(),client_id:e.z.string().optional(),client_secret:e.z.string().optional(),realm:e.z.string().optional()}).optional(),attributes:e.z.object({email:e.z.object({identifier:e.z.object({active:e.z.boolean().optional()}).optional(),signup:e.z.object({status:e.z.enum([`required`,`optional`,`disabled`]).optional(),verification:e.z.object({active:e.z.boolean().optional()}).optional()}).optional(),validation:e.z.object({allowed:e.z.boolean().optional()}).optional(),unique:e.z.boolean().optional(),profile_required:e.z.boolean().optional(),verification_method:e.z.enum([`link`,`code`]).optional()}).optional(),username:e.z.object({identifier:e.z.object({active:e.z.boolean().optional()}).optional(),signup:e.z.object({status:e.z.enum([`required`,`optional`,`disabled`]).optional()}).optional(),validation:e.z.object({max_length:e.z.number().optional(),min_length:e.z.number().optional(),allowed_types:e.z.object({email:e.z.boolean().optional(),phone_number:e.z.boolean().optional()}).optional()}).optional(),profile_required:e.z.boolean().optional()}).optional(),phone_number:e.z.object({identifier:e.z.object({active:e.z.boolean().optional()}).optional(),signup:e.z.object({status:e.z.enum([`required`,`optional`,`disabled`]).optional()}).optional()}).optional()}).optional(),authentication_methods:e.z.object({password:e.z.object({enabled:e.z.boolean().optional()}).optional(),passkey:e.z.object({enabled:e.z.boolean().optional()}).optional()}).optional(),passkey_options:e.z.object({challenge_ui:e.z.enum([`both`,`autofill`,`button`]).optional(),local_enrollment_enabled:e.z.boolean().optional(),progressive_enrollment_enabled:e.z.boolean().optional()}).optional(),requires_username:e.z.boolean().optional(),validation:e.z.object({username:e.z.object({min:e.z.number().optional(),max:e.z.number().optional()}).optional()}).optional(),set_user_root_attributes:e.z.enum([`on_each_login`,`on_first_login`,`never_on_login`]).optional()});function V(e){if(e!==null){if(Array.isArray(e))return e.filter(e=>e!==null).map(V);if(e&&typeof e==`object`){let t={};for(let[n,r]of Object.entries(e))r!==null&&(t[n]=V(r));return t}return e}}var Je=e.z.object({id:e.z.string().optional(),name:e.z.string(),display_name:e.z.string().optional(),strategy:e.z.string(),options:e.z.preprocess(e=>e===null?{}:V(e),qe).default({}),enabled_clients:e.z.array(e.z.string()).default([]).optional(),response_type:e.z.custom().optional(),response_mode:e.z.custom().optional(),is_domain_connection:e.z.boolean().optional(),show_as_button:e.z.boolean().optional(),metadata:e.z.record(e.z.string(),e.z.any()).optional(),is_system:e.z.boolean().optional()}),Ye=e.z.object({id:e.z.string(),created_at:e.z.string().transform(e=>e===null?``:e),updated_at:e.z.string().transform(e=>e===null?``:e)}).extend(Je.shape),Xe=e.z.object({domain:e.z.string(),custom_domain_id:e.z.string().optional(),type:e.z.enum([`auth0_managed_certs`,`self_managed_certs`]),verification_method:e.z.enum([`txt`]).optional(),tls_policy:e.z.enum([`recommended`]).optional(),custom_client_ip_header:e.z.enum([`true-client-ip`,`cf-connecting-ip`,`x-forwarded-for`,`x-azure-clientip`,`null`]).optional(),domain_metadata:e.z.record(e.z.string(),e.z.string().max(255)).optional()}),Ze=e.z.discriminatedUnion(`name`,[e.z.object({name:e.z.literal(`txt`),record:e.z.string(),domain:e.z.string()}),e.z.object({name:e.z.literal(`http`),http_body:e.z.string(),http_url:e.z.string()})]),Qe=Xe.extend({custom_domain_id:e.z.string(),primary:e.z.boolean(),status:e.z.enum([`disabled`,`pending`,`pending_verification`,`ready`]),origin_domain_name:e.z.string().optional(),verification:e.z.object({methods:e.z.array(Ze)}).optional(),tls_policy:e.z.string().optional()}),$e=Qe.extend({tenant_id:e.z.string()}),et=e.z.object({certificate:e.z.string().regex(/^-----BEGIN CERTIFICATE-----[\s\S]+-----END CERTIFICATE-----\s*$/,`must be PEM-encoded; include the full certificate chain in leaf-first order`),private_key:e.z.string().regex(/-----BEGIN (RSA |EC |ENCRYPTED )?PRIVATE KEY-----[\s\S]+-----END \1PRIVATE KEY-----\s*$/,`must be a PEM-encoded private key`)}),H=e.z.object({id:e.z.string(),order:e.z.number().optional(),visible:e.z.boolean().optional().default(true)}),U=H.extend({category:e.z.literal(`BLOCK`).optional()}),tt=U.extend({type:e.z.literal(`DIVIDER`),config:e.z.object({text:e.z.string().optional()}).optional()}),nt=U.extend({type:e.z.literal(`HTML`),config:e.z.object({content:e.z.string().optional()}).optional()}),rt=U.extend({type:e.z.literal(`IMAGE`),config:e.z.object({src:e.z.string().optional(),alt:e.z.string().optional(),width:e.z.number().optional(),height:e.z.number().optional()}).optional()}),it=U.extend({type:e.z.literal(`JUMP_BUTTON`),config:e.z.object({text:e.z.string().optional(),target_step:e.z.string().optional()})}),at=U.extend({type:e.z.literal(`RESEND_BUTTON`),config:e.z.object({text:e.z.string().optional(),resend_action:e.z.string().optional()})}),ot=U.extend({type:e.z.literal(`NEXT_BUTTON`),config:e.z.object({text:e.z.string().optional()})}),st=U.extend({type:e.z.literal(`PREVIOUS_BUTTON`),config:e.z.object({text:e.z.string().optional()})}),ct=U.extend({type:e.z.literal(`RICH_TEXT`),config:e.z.object({content:e.z.string().optional()}).optional()}),W=H.extend({category:e.z.literal(`WIDGET`).optional(),label:e.z.string().min(1).optional(),hint:e.z.string().min(1).max(500).optional(),required:e.z.boolean().optional(),sensitive:e.z.boolean().optional()}),lt=W.extend({type:e.z.literal(`AUTH0_VERIFIABLE_CREDENTIALS`),config:e.z.object({credential_type:e.z.string().optional()})}),ut=W.extend({type:e.z.literal(`GMAPS_ADDRESS`),config:e.z.object({api_key:e.z.string().optional()})}),dt=W.extend({type:e.z.literal(`RECAPTCHA`),config:e.z.object({site_key:e.z.string().optional()})}),G=H.extend({category:e.z.literal(`FIELD`).optional(),label:e.z.string().min(1).optional(),hint:e.z.string().min(1).max(500).optional(),messages:e.z.array(e.z.object({id:e.z.number().optional(),text:e.z.string(),type:e.z.enum([`info`,`error`,`success`,`warning`])})).optional(),required:e.z.boolean().optional(),sensitive:e.z.boolean().optional()}),ft=G.extend({type:e.z.literal(`BOOLEAN`),config:e.z.object({default_value:e.z.boolean().optional()}).optional()}),pt=G.extend({type:e.z.literal(`CARDS`),config:e.z.object({options:e.z.array(e.z.object({value:e.z.string(),label:e.z.string(),description:e.z.string().optional(),image:e.z.string().optional()})).optional(),multi_select:e.z.boolean().optional()}).optional()}),mt=G.extend({type:e.z.literal(`CHOICE`),config:e.z.object({options:e.z.array(e.z.object({value:e.z.string(),label:e.z.string()})).optional(),display:e.z.enum([`radio`,`checkbox`]).optional(),multiple:e.z.boolean().optional(),default_value:e.z.union([e.z.string(),e.z.array(e.z.string())]).optional()}).optional()}),ht=G.extend({type:e.z.literal(`CUSTOM`),config:e.z.object({component:e.z.string().optional(),props:e.z.record(e.z.string(),e.z.any()).optional(),schema:e.z.record(e.z.string(),e.z.any()).optional(),code:e.z.string().optional()})}),gt=G.extend({type:e.z.literal(`DATE`),config:e.z.object({format:e.z.string().optional(),min:e.z.string().optional(),max:e.z.string().optional(),default_value:e.z.string().optional()}).optional()}),_t=G.extend({type:e.z.literal(`DROPDOWN`),config:e.z.object({options:e.z.array(e.z.object({value:e.z.string(),label:e.z.string()})).optional(),placeholder:e.z.string().optional(),searchable:e.z.boolean().optional(),multiple:e.z.boolean().optional(),default_value:e.z.union([e.z.string(),e.z.array(e.z.string())]).optional()}).optional()}),vt=G.extend({type:e.z.literal(`EMAIL`),config:e.z.object({placeholder:e.z.string().optional(),default_value:e.z.string().optional()}).optional()}),yt=G.extend({type:e.z.literal(`FILE`),config:e.z.object({accept:e.z.string().optional(),max_size:e.z.number().optional(),multiple:e.z.boolean().optional()}).optional()}),bt=G.extend({type:e.z.literal(`LEGAL`),config:e.z.object({text:e.z.string(),html:e.z.boolean().optional()}).optional()}),xt=G.extend({type:e.z.literal(`NUMBER`),config:e.z.object({placeholder:e.z.string().optional(),min:e.z.number().optional(),max:e.z.number().optional(),step:e.z.number().optional(),default_value:e.z.string().optional()}).optional()}),St=G.extend({type:e.z.literal(`PASSWORD`),config:e.z.object({placeholder:e.z.string().optional(),min_length:e.z.number().optional(),show_toggle:e.z.boolean().optional(),forgot_password_link:e.z.string().optional(),default_value:e.z.string().optional()}).optional()}),Ct=G.extend({type:e.z.literal(`PAYMENT`),config:e.z.object({provider:e.z.string().optional(),currency:e.z.string().optional()}).optional()}),wt=G.extend({type:e.z.literal(`SOCIAL`),config:e.z.object({providers:e.z.array(e.z.string()).optional(),provider_details:e.z.array(e.z.object({name:e.z.string(),strategy:e.z.string().optional(),display_name:e.z.string().optional(),icon_url:e.z.string().optional(),href:e.z.string().optional()})).optional()}).optional()}),Tt=G.extend({type:e.z.literal(`TEL`),config:e.z.object({placeholder:e.z.string().optional(),default_country:e.z.string().optional(),default_value:e.z.string().optional(),allow_email:e.z.boolean().optional()}).optional()}),Et=G.extend({type:e.z.literal(`TEXT`),config:e.z.object({placeholder:e.z.string().optional(),multiline:e.z.boolean().optional(),max_length:e.z.number().optional(),default_value:e.z.string().optional()}).optional()}),Dt=G.extend({type:e.z.literal(`COUNTRY`),config:e.z.object({placeholder:e.z.string().optional(),default_value:e.z.string().optional()}).optional()}),Ot=G.extend({type:e.z.literal(`URL`),config:e.z.object({placeholder:e.z.string().optional(),default_value:e.z.string().optional()}).optional()}),kt=e.z.discriminatedUnion(`type`,[tt,nt,rt,it,at,ot,st,ct]),At=e.z.discriminatedUnion(`type`,[lt,ut,dt]),jt=e.z.discriminatedUnion(`type`,[ft,pt,mt,Dt,ht,gt,_t,vt,yt,bt,xt,St,Ct,wt,Tt,Et,Ot]),K=e.z.union([kt,At,jt]),Mt=new Set([`BOOLEAN`,`CARDS`,`CHOICE`,`COUNTRY`,`DATE`,`DROPDOWN`,`EMAIL`,`LEGAL`,`NUMBER`,`PASSWORD`,`TEL`,`TEXT`,`URL`]),Nt=e.z.object({id:e.z.string(),type:e.z.literal(`submit`),label:e.z.string(),className:e.z.string().optional(),disabled:e.z.boolean().optional().default(false),order:e.z.number().optional(),visible:e.z.boolean().optional().default(true),customizations:e.z.record(e.z.string(),e.z.any()).optional()}),q=e.z.object({x:e.z.number(),y:e.z.number()}),Pt=e.z.object({id:e.z.string(),type:e.z.literal(`FLOW`),coordinates:q,alias:e.z.string().min(1).max(150).optional(),config:e.z.object({flow_id:e.z.string().max(30),next_node:e.z.string().optional()})}),Ft=e.z.object({id:e.z.string(),type:e.z.literal(`ROUTER`),coordinates:q,alias:e.z.string().min(1).max(150),config:e.z.object({rules:e.z.array(e.z.object({id:e.z.string(),alias:e.z.string().min(1).max(150).optional(),condition:e.z.any(),next_node:e.z.string()})),fallback:e.z.string()})}),It=e.z.object({id:e.z.string(),type:e.z.literal(`STEP`),coordinates:q,alias:e.z.string().min(1).max(150).optional(),config:e.z.object({components:e.z.array(K),next_node:e.z.string().optional()})}),Lt=e.z.discriminatedUnion(`type`,[Pt,Ft,It]),Rt=e.z.object({name:e.z.string().openapi({description:`The name of the form`}),messages:e.z.object({errors:e.z.record(e.z.string(),e.z.any()).optional(),custom:e.z.record(e.z.string(),e.z.any()).optional()}).optional(),languages:e.z.object({primary:e.z.string().optional(),default:e.z.string().optional()}).optional(),translations:e.z.record(e.z.string(),e.z.any()).optional(),nodes:e.z.array(Lt).optional(),start:e.z.object({hidden_fields:e.z.array(e.z.object({key:e.z.string(),value:e.z.string()})).optional(),next_node:e.z.string().optional(),coordinates:q.optional()}).optional(),ending:e.z.object({redirection:e.z.object({delay:e.z.number().optional(),target:e.z.string().optional()}).optional(),after_submit:e.z.object({flow_id:e.z.string().optional()}).optional(),coordinates:q.optional(),resume_flow:e.z.boolean().optional()}).optional(),style:e.z.object({css:e.z.string().optional()}).optional(),links:e.z.object({sdkSrc:e.z.string().optional(),sdk_src:e.z.string().optional()}).optional()}).openapi({description:`Schema for flow-based forms (matches Auth0 Forms structure)`}),zt=t.extend(Rt.shape).extend({id:e.z.string()}),Bt=e.z.object({id:e.z.number().optional(),text:e.z.string(),type:e.z.enum([`info`,`error`,`success`,`warning`])}),Vt=e.z.object({id:e.z.string().optional(),text:e.z.string(),href:e.z.string(),linkText:e.z.string().optional()}),Ht=e.z.object({name:e.z.string().optional(),action:e.z.string(),method:e.z.enum([`POST`,`GET`]),title:e.z.string().optional(),description:e.z.string().optional(),components:e.z.array(K),messages:e.z.array(Bt).optional(),links:e.z.array(Vt).optional(),footer:e.z.string().optional()});function Ut(e){return e.category===`BLOCK`}function Wt(e){return e.category===`WIDGET`}function Gt(e){return e.category===`FIELD`}var Kt=e.z.enum([`pre-user-registration`,`post-user-registration`,`post-user-login`,`post-user-update`,`validate-registration-username`,`pre-user-deletion`,`post-user-deletion`]),qt=e.z.enum([`pre-user-registration`,`post-user-registration`,`post-user-login`,`validate-registration-username`,`pre-user-deletion`,`post-user-deletion`]),Jt=e.z.enum([`post-user-login`,`post-user-registration`,`post-user-update`,`credentials-exchange`]),Yt=e.z.enum([`post-user-login`,`credentials-exchange`,`pre-user-registration`,`post-user-registration`]),J=e.z.enum([`ensure-username`,`set-preferred-username`,`account-linking`]),Xt={"ensure-username":{name:`Ensure Username`,description:`Automatically assigns a username to users who sign in without one. Creates a linked username account for social/email users.`,trigger_ids:[`post-user-login`]},"set-preferred-username":{name:`Set Preferred Username`,description:`Sets the preferred_username claim on tokens based on the username from the primary or linked user.`,trigger_ids:[`credentials-exchange`]},"account-linking":{name:`Account Linking`,description:`Links a user to an existing primary account with the same verified email. Idempotent — safe to run on every login, registration, and email update.`,trigger_ids:[`post-user-login`,`post-user-registration`,`post-user-update`]}},Y={enabled:e.z.boolean().default(false),synchronous:e.z.boolean().default(false),priority:e.z.number().optional(),hook_id:e.z.string().optional(),metadata:e.z.record(e.z.string(),e.z.unknown()).optional()},Zt=e.z.object({...Y,trigger_id:Kt,url:e.z.string()}),Qt=e.z.object({...Y,trigger_id:qt,form_id:e.z.string()}),$t=e.z.object({...Y,trigger_id:Jt,template_id:J}),en=e.z.object({...Y,trigger_id:Yt,code_id:e.z.string()}),tn=e.z.union([Zt,Qt,$t,en]),nn=e.z.object({...Y,trigger_id:Kt}).extend(t.shape).extend({hook_id:e.z.string(),url:e.z.string()}),rn=e.z.object({...Y,trigger_id:qt}).extend(t.shape).extend({hook_id:e.z.string(),form_id:e.z.string()}),an=e.z.object({...Y,trigger_id:Jt}).extend(t.shape).extend({hook_id:e.z.string(),template_id:J}),on=e.z.object({...Y,trigger_id:Yt}).extend(t.shape).extend({hook_id:e.z.string(),code_id:e.z.string()}),sn=e.z.union([nn,rn,an,on]),cn=e.z.object({code:e.z.string().max(1e5),secrets:e.z.record(e.z.string(),e.z.string()).optional()}),ln=cn.extend({id:e.z.string(),tenant_id:e.z.string()}).extend(t.shape),un=e.z.object({name:e.z.string().optional()}),dn=e.z.object({email:e.z.string().optional()}),fn=e.z.object({id:e.z.string().optional(),organization_id:e.z.string().max(50),inviter:un,invitee:dn,invitation_url:e.z.string().url(),client_id:e.z.string(),connection_id:e.z.string().optional(),app_metadata:e.z.record(e.z.string(),e.z.any()).default({}).optional(),user_metadata:e.z.record(e.z.string(),e.z.any()).default({}).optional(),ttl_sec:e.z.number().int().max(2592e3).default(604800).optional(),roles:e.z.array(e.z.string()).default([]).optional(),send_invitation_email:e.z.boolean().default(true).optional()}),pn=e.z.object({id:e.z.string(),organization_id:e.z.string().max(50),created_at:e.z.string().datetime(),expires_at:e.z.string().datetime(),ticket_id:e.z.string().optional()}).extend(fn.omit({id:true}).shape),mn=e.z.object({alg:e.z.enum([`RS256`,`RS384`,`RS512`,`ES256`,`ES384`,`ES512`,`HS256`,`HS384`,`HS512`]),kid:e.z.string(),kty:e.z.enum([`RSA`,`EC`,`oct`]),use:e.z.enum([`sig`,`enc`]).optional(),n:e.z.string().optional(),e:e.z.string().optional(),crv:e.z.string().optional(),x:e.z.string().optional(),y:e.z.string().optional(),x5t:e.z.string().optional(),x5c:e.z.array(e.z.string()).optional()}).superRefine((t,n)=>{if(t.kty===`RSA`)for(let r of [`n`,`e`])t[r]||n.addIssue({code:e.z.ZodIssueCode.custom,path:[r],message:`RSA JWK is missing required member '${r}'`});else if(t.kty===`EC`)for(let r of [`crv`,`x`,`y`])t[r]||n.addIssue({code:e.z.ZodIssueCode.custom,path:[r],message:`EC JWK is missing required member '${r}'`});}),hn=e.z.object({keys:e.z.array(mn)}),gn=e.z.object({issuer:e.z.string(),authorization_endpoint:e.z.string(),token_endpoint:e.z.string(),userinfo_endpoint:e.z.string(),jwks_uri:e.z.string(),registration_endpoint:e.z.string().optional(),revocation_endpoint:e.z.string(),end_session_endpoint:e.z.string().optional(),scopes_supported:e.z.array(e.z.string()),response_types_supported:e.z.array(e.z.string()),grant_types_supported:e.z.array(e.z.string()).optional(),code_challenge_methods_supported:e.z.array(e.z.string()),response_modes_supported:e.z.array(e.z.string()),subject_types_supported:e.z.array(e.z.string()),id_token_signing_alg_values_supported:e.z.array(e.z.string()),token_endpoint_auth_methods_supported:e.z.array(e.z.string()),claims_supported:e.z.array(e.z.string()),request_uri_parameter_supported:e.z.boolean(),request_parameter_supported:e.z.boolean(),claims_parameter_supported:e.z.boolean().optional(),request_object_signing_alg_values_supported:e.z.array(e.z.string()).optional(),token_endpoint_auth_signing_alg_values_supported:e.z.array(e.z.string()),client_id_metadata_document_supported:e.z.boolean().optional()}),_n=function(e){return e.PENDING=`pending`,e.AUTHENTICATED=`authenticated`,e.AWAITING_EMAIL_VERIFICATION=`awaiting_email_verification`,e.AWAITING_MFA=`awaiting_mfa`,e.AWAITING_HOOK=`awaiting_hook`,e.AWAITING_CONTINUATION=`awaiting_continuation`,e.COMPLETED=`completed`,e.FAILED=`failed`,e.EXPIRED=`expired`,e}({}),vn=e.z.nativeEnum(_n),yn=e.z.object({strategy:e.z.string(),strategy_type:e.z.string()}),bn=e.z.object({csrf_token:e.z.string(),auth0Client:e.z.string().optional(),authParams:He,expires_at:e.z.string(),deleted_at:e.z.string().optional(),ip:e.z.string().optional(),useragent:e.z.string().optional(),session_id:e.z.string().optional(),authorization_url:e.z.string().optional(),state:vn.optional().default(`pending`),state_data:e.z.string().optional(),failure_reason:e.z.string().optional(),user_id:e.z.string().optional(),auth_connection:e.z.string().optional(),auth_strategy:yn.optional(),authenticated_at:e.z.string().optional()}).openapi({description:`This represents a login sesion`}),xn=bn.extend({id:e.z.string().openapi({description:`This is is used as the state in the universal login`}),created_at:e.z.string(),updated_at:e.z.string()}),X={ACLS_SUMMARY:`acls_summary`,ACTIONS_EXECUTION_FAILED:`actions_execution_failed`,API_LIMIT:`api_limit`,API_LIMIT_WARNING:`api_limit_warning`,APPI:`appi`,CIBA_EXCHANGE_FAILED:`ciba_exchange_failed`,CIBA_EXCHANGE_SUCCEEDED:`ciba_exchange_succeeded`,CIBA_START_FAILED:`ciba_start_failed`,CIBA_START_SUCCEEDED:`ciba_start_succeeded`,CODE_LINK_SENT:`cls`,CODE_SENT:`cs`,DEPRECATION_NOTICE:`depnote`,FAILED_LOGIN:`f`,FAILED_BY_CONNECTOR:`fc`,FAILED_CHANGE_EMAIL:`fce`,FAILED_BY_CORS:`fco`,FAILED_CROSS_ORIGIN_AUTHENTICATION:`fcoa`,FAILED_CHANGE_PASSWORD:`fcp`,FAILED_POST_CHANGE_PASSWORD_HOOK:`fcph`,FAILED_CHANGE_PHONE_NUMBER:`fcpn`,FAILED_CHANGE_PASSWORD_REQUEST:`fcpr`,FAILED_CONNECTOR_PROVISIONING:`fcpro`,FAILED_CHANGE_USERNAME:`fcu`,FAILED_DELEGATION:`fd`,FAILED_DEVICE_ACTIVATION:`fdeac`,FAILED_DEVICE_AUTHORIZATION_REQUEST:`fdeaz`,USER_CANCELED_DEVICE_CONFIRMATION:`fdecc`,FAILED_USER_DELETION:`fdu`,FAILED_EXCHANGE_AUTHORIZATION_CODE_FOR_ACCESS_TOKEN:`feacft`,FAILED_EXCHANGE_ACCESS_TOKEN_FOR_CLIENT_CREDENTIALS:`feccft`,FAILED_EXCHANGE_CUSTOM_TOKEN:`fecte`,FAILED_EXCHANGE_DEVICE_CODE_FOR_ACCESS_TOKEN:`fede`,FAILED_FEDERATED_LOGOUT:`federated_logout_failed`,FAILED_EXCHANGE_NATIVE_SOCIAL_LOGIN:`fens`,FAILED_EXCHANGE_PASSWORD_OOB_FOR_ACCESS_TOKEN:`feoobft`,FAILED_EXCHANGE_PASSWORD_OTP_FOR_ACCESS_TOKEN:`feotpft`,FAILED_EXCHANGE_PASSWORD_FOR_ACCESS_TOKEN:`fepft`,FAILED_EXCHANGE_PASSWORDLESS_OTP_FOR_ACCESS_TOKEN:`fepotpft`,FAILED_EXCHANGE_PASSWORD_MFA_RECOVERY_FOR_ACCESS_TOKEN:`fercft`,FAILED_EXCHANGE_ROTATING_REFRESH_TOKEN:`ferrt`,FAILED_EXCHANGE_REFRESH_TOKEN_FOR_ACCESS_TOKEN:`fertft`,FAILED_HOOK:`fh`,FAILED_IMPERSONATION:`fimp`,FAILED_INVITE_ACCEPT:`fi`,FAILED_LOGOUT:`flo`,FLOWS_EXECUTION_COMPLETED:`flows_execution_completed`,FLOWS_EXECUTION_FAILED:`flows_execution_failed`,FAILED_SENDING_NOTIFICATION:`fn`,FORMS_SUBMISSION_FAILED:`forms_submission_failed`,FORMS_SUBMISSION_SUCCEEDED:`forms_submission_succeeded`,FAILED_LOGIN_INCORRECT_PASSWORD:`fp`,FAILED_PUSHED_AUTHORIZATION_REQUEST:`fpar`,FAILED_POST_USER_REGISTRATION_HOOK:`fpurh`,FAILED_SIGNUP:`fs`,FAILED_SILENT_AUTH:`fsa`,FAILED_LOGIN_INVALID_EMAIL_USERNAME:`fu`,FAILED_USERS_IMPORT:`fui`,FAILED_VERIFICATION_EMAIL:`fv`,FAILED_VERIFICATION_EMAIL_REQUEST:`fvr`,EMAIL_VERIFICATION_CONFIRMED:`gd_auth_email_verification`,EMAIL_VERIFICATION_FAILED:`gd_auth_fail_email_verification`,MFA_AUTH_FAILED:`gd_auth_failed`,MFA_AUTH_REJECTED:`gd_auth_rejected`,MFA_AUTH_SUCCESS:`gd_auth_succeed`,MFA_ENROLLMENT_COMPLETE:`gd_enrollment_complete`,TOO_MANY_MFA_FAILURES:`gd_otp_rate_limit_exceed`,MFA_RECOVERY_FAILED:`gd_recovery_failed`,MFA_RECOVERY_RATE_LIMIT_EXCEED:`gd_recovery_rate_limit_exceed`,MFA_RECOVERY_SUCCESS:`gd_recovery_succeed`,MFA_EMAIL_SENT:`gd_send_email`,EMAIL_VERIFICATION_SENT:`gd_send_email_verification`,EMAIL_VERIFICATION_SEND_FAILURE:`gd_send_email_verification_failure`,PUSH_NOTIFICATION_SENT:`gd_send_pn`,ERROR_SENDING_MFA_PUSH_NOTIFICATION:`gd_send_pn_failure`,MFA_SMS_SENT:`gd_send_sms`,ERROR_SENDING_MFA_SMS:`gd_send_sms_failure`,MFA_VOICE_CALL_SUCCESS:`gd_send_voice`,MFA_VOICE_CALL_FAILED:`gd_send_voice_failure`,SECOND_FACTOR_STARTED:`gd_start_auth`,MFA_ENROLL_STARTED:`gd_start_enroll`,MFA_ENROLLMENT_FAILED:`gd_start_enroll_failed`,GUARDIAN_TENANT_UPDATE:`gd_tenant_update`,UNENROLL_DEVICE_ACCOUNT:`gd_unenroll`,UPDATE_DEVICE_ACCOUNT:`gd_update_device_account`,WEBAUTHN_CHALLENGE_FAILED:`gd_webauthn_challenge_failed`,WEBAUTHN_ENROLLMENT_FAILED:`gd_webauthn_enrollment_failed`,FAILED_KMS_API_OPERATION:`kms_key_management_failure`,SUCCESS_KMS_API_OPERATION:`kms_key_management_success`,KMS_KEY_STATE_CHANGED:`kms_key_state_changed`,TOO_MANY_CALLS_TO_DELEGATION:`limit_delegation`,BLOCKED_IP_ADDRESS:`limit_mu`,BLOCKED_ACCOUNT_IP:`limit_sul`,BLOCKED_ACCOUNT_EMAIL:`limit_wc`,INFORMATION:`i`,MFA_REQUIRED:`mfar`,MANAGEMENT_API_READ_OPERATION:`mgmt_api_read`,FAILED_AUTHENTICATION_METHOD_OPERATION_MY_ACCOUNT:`my_account_authentication_method_failed`,SUCCESSFUL_AUTHENTICATION_METHOD_OPERATION_MY_ACCOUNT:`my_account_authentication_method_succeeded`,FAILED_OIDC_BACKCHANNEL_LOGOUT:`oidc_backchannel_logout_failed`,SUCCESSFUL_OIDC_BACKCHANNEL_LOGOUT:`oidc_backchannel_logout_succeeded`,ORGANIZATION_MEMBER_ADDED:`organization_member_added`,PASSKEY_CHALLENGE_FAILED:`passkey_challenge_failed`,PASSKEY_CHALLENGE_STARTED:`passkey_challenge_started`,PRE_LOGIN_ASSESSMENT:`pla`,BREACHED_PASSWORD:`pwd_leak`,BREACHED_PASSWORD_ON_RESET:`reset_pwd_leak`,SUCCESS_RESOURCE_CLEANUP:`resource_cleanup`,RICH_CONSENTS_ACCESS_ERROR:`rich_consents_access_error`,SUCCESS_LOGIN:`s`,SUCCESS_API_OPERATION:`sapi`,FAILED_API_OPERATION:`fapi`,SUCCESS_CHANGE_EMAIL:`sce`,SUCCESS_CROSS_ORIGIN_AUTHENTICATION:`scoa`,SUCCESS_CHANGE_PASSWORD:`scp`,SUCCESS_CHANGE_PHONE_NUMBER:`scpn`,SUCCESS_CHANGE_PASSWORD_REQUEST:`scpr`,SUCCESS_CHANGE_USERNAME:`scu`,SUCCESS_CREDENTIAL_VALIDATION:`scv`,SUCCESS_DELEGATION:`sd`,SUCCESS_USER_DELETION:`sdu`,SUCCESS_EXCHANGE_AUTHORIZATION_CODE_FOR_ACCESS_TOKEN:`seacft`,SUCCESS_EXCHANGE_ACCESS_TOKEN_FOR_CLIENT_CREDENTIALS:`seccft`,SUCCESS_EXCHANGE_CUSTOM_TOKEN:`secte`,SUCCESS_EXCHANGE_DEVICE_CODE_FOR_ACCESS_TOKEN:`sede`,SUCCESS_EXCHANGE_NATIVE_SOCIAL_LOGIN:`sens`,SUCCESS_EXCHANGE_PASSWORD_OOB_FOR_ACCESS_TOKEN:`seoobft`,SUCCESS_EXCHANGE_PASSWORD_OTP_FOR_ACCESS_TOKEN:`seotpft`,SUCCESS_EXCHANGE_PASSWORDLESS_OTP_FOR_ACCESS_TOKEN:`sepotpft`,SUCCESS_EXCHANGE_PASSWORD_FOR_ACCESS_TOKEN:`sepft`,SUCCESS_EXCHANGE_PASSKEY_OOB_FOR_ACCESS_TOKEN:`sepkoobft`,SUCCESS_EXCHANGE_PASSKEY_OTP_FOR_ACCESS_TOKEN:`sepkotpft`,SUCCESS_EXCHANGE_PASSKEY_MFA_RECOVERY_FOR_ACCESS_TOKEN:`sepkrcft`,SUCCESS_EXCHANGE_PASSWORD_MFA_RECOVERY_FOR_ACCESS_TOKEN:`sercft`,SUCCESS_EXCHANGE_REFRESH_TOKEN_FOR_ACCESS_TOKEN:`sertft`,SUCCESS_IMPERSONATION:`simp`,SUCCESSFULLY_ACCEPTED_USER_INVITE:`si`,BREACHED_PASSWORD_ON_SIGNUP:`signup_pwd_leak`,SUCCESS_LOGOUT:`slo`,SUCCESS_HOOK:`sh`,SUCCESS_PASSWORD_MIGRATION:`spm`,SUCCESS_REVOCATION:`srrt`,SUCCESS_SIGNUP:`ss`,FAILED_SS_SSO_OPERATION:`ss_sso_failure`,INFORMATION_FROM_SS_SSO_OPERATION:`ss_sso_info`,SUCCESS_SS_SSO_OPERATION:`ss_sso_success`,SUCCESS_SILENT_AUTH:`ssa`,SUCCESSFUL_SCIM_OPERATION:`sscim`,SUCCESSFULLY_IMPORTED_USERS:`sui`,SUCCESS_VERIFICATION_EMAIL:`sv`,SUCCESS_VERIFICATION_EMAIL_REQUEST:`svr`,MAX_AMOUNT_OF_AUTHENTICATORS:`too_many_records`,USER_LOGIN_BLOCK_RELEASED:`ublkdu`,FAILED_UNIVERSAL_LOGOUT:`universal_logout_failed`,SUCCESSFUL_UNIVERSAL_LOGOUT:`universal_logout_succeeded`,WARNING_DURING_LOGIN:`w`,WARNING_SENDING_NOTIFICATION:`wn`,WARNING_USER_MANAGEMENT:`wum`},Sn=e.z.string().refine(e=>Object.values(X).includes(e),{message:`Invalid log type`}),Cn={[X.ACLS_SUMMARY]:`ACLs Summary`,[X.ACTIONS_EXECUTION_FAILED]:`Actions Execution Failed`,[X.API_LIMIT]:`API Rate Limit Reached`,[X.API_LIMIT_WARNING]:`API Rate Limit Warning`,[X.APPI]:`API Operation`,[X.CIBA_EXCHANGE_FAILED]:`CIBA Exchange Failed`,[X.CIBA_EXCHANGE_SUCCEEDED]:`CIBA Exchange Succeeded`,[X.CIBA_START_FAILED]:`CIBA Start Failed`,[X.CIBA_START_SUCCEEDED]:`CIBA Start Succeeded`,[X.CODE_LINK_SENT]:`Code/Link Sent`,[X.CODE_SENT]:`Code Sent`,[X.DEPRECATION_NOTICE]:`Deprecation Notice`,[X.FAILED_LOGIN]:`Failed Login`,[X.FAILED_BY_CONNECTOR]:`Failed by Connector`,[X.FAILED_CHANGE_EMAIL]:`Failed Change Email`,[X.FAILED_BY_CORS]:`Failed by CORS`,[X.FAILED_CROSS_ORIGIN_AUTHENTICATION]:`Failed Cross Origin Authentication`,[X.FAILED_CHANGE_PASSWORD]:`Failed Change Password`,[X.FAILED_POST_CHANGE_PASSWORD_HOOK]:`Failed Post-Change Password Hook`,[X.FAILED_CHANGE_PHONE_NUMBER]:`Failed Change Phone Number`,[X.FAILED_CHANGE_PASSWORD_REQUEST]:`Failed Change Password Request`,[X.FAILED_CONNECTOR_PROVISIONING]:`Failed Connector Provisioning`,[X.FAILED_CHANGE_USERNAME]:`Failed Change Username`,[X.FAILED_DELEGATION]:`Failed Delegation`,[X.FAILED_DEVICE_ACTIVATION]:`Failed Device Activation`,[X.FAILED_DEVICE_AUTHORIZATION_REQUEST]:`Failed Device Authorization Request`,[X.USER_CANCELED_DEVICE_CONFIRMATION]:`User Canceled Device Confirmation`,[X.FAILED_USER_DELETION]:`Failed User Deletion`,[X.FAILED_EXCHANGE_AUTHORIZATION_CODE_FOR_ACCESS_TOKEN]:`Failed Exchange Authorization Code for Access Token`,[X.FAILED_EXCHANGE_ACCESS_TOKEN_FOR_CLIENT_CREDENTIALS]:`Failed Exchange Access Token for Client Credentials`,[X.FAILED_EXCHANGE_CUSTOM_TOKEN]:`Failed Exchange Custom Token`,[X.FAILED_EXCHANGE_DEVICE_CODE_FOR_ACCESS_TOKEN]:`Failed Exchange Device Code for Access Token`,[X.FAILED_FEDERATED_LOGOUT]:`Failed Federated Logout`,[X.FAILED_EXCHANGE_NATIVE_SOCIAL_LOGIN]:`Failed Exchange Native Social Login`,[X.FAILED_EXCHANGE_PASSWORD_OOB_FOR_ACCESS_TOKEN]:`Failed Exchange Password OOB for Access Token`,[X.FAILED_EXCHANGE_PASSWORD_OTP_FOR_ACCESS_TOKEN]:`Failed Exchange Password OTP for Access Token`,[X.FAILED_EXCHANGE_PASSWORD_FOR_ACCESS_TOKEN]:`Failed Exchange Password for Access Token`,[X.FAILED_EXCHANGE_PASSWORDLESS_OTP_FOR_ACCESS_TOKEN]:`Failed Exchange Passwordless OTP for Access Token`,[X.FAILED_EXCHANGE_PASSWORD_MFA_RECOVERY_FOR_ACCESS_TOKEN]:`Failed Exchange Password MFA Recovery for Access Token`,[X.FAILED_EXCHANGE_ROTATING_REFRESH_TOKEN]:`Failed Exchange Rotating Refresh Token`,[X.FAILED_EXCHANGE_REFRESH_TOKEN_FOR_ACCESS_TOKEN]:`Failed Exchange Refresh Token for Access Token`,[X.FAILED_HOOK]:`Failed Hook`,[X.FAILED_IMPERSONATION]:`Failed Impersonation`,[X.FAILED_INVITE_ACCEPT]:`Failed Invite Accept`,[X.FAILED_LOGOUT]:`Failed Logout`,[X.FLOWS_EXECUTION_COMPLETED]:`Flows Execution Completed`,[X.FLOWS_EXECUTION_FAILED]:`Flows Execution Failed`,[X.FAILED_SENDING_NOTIFICATION]:`Failed Sending Notification`,[X.FORMS_SUBMISSION_FAILED]:`Forms Submission Failed`,[X.FORMS_SUBMISSION_SUCCEEDED]:`Forms Submission Succeeded`,[X.FAILED_LOGIN_INCORRECT_PASSWORD]:`Failed Login - Incorrect Password`,[X.FAILED_PUSHED_AUTHORIZATION_REQUEST]:`Failed Pushed Authorization Request`,[X.FAILED_POST_USER_REGISTRATION_HOOK]:`Failed Post-User Registration Hook`,[X.FAILED_SIGNUP]:`Failed Signup`,[X.FAILED_SILENT_AUTH]:`Failed Silent Auth`,[X.FAILED_LOGIN_INVALID_EMAIL_USERNAME]:`Failed Login - Invalid Email/Username`,[X.FAILED_USERS_IMPORT]:`Failed Users Import`,[X.FAILED_VERIFICATION_EMAIL]:`Failed Verification Email`,[X.FAILED_VERIFICATION_EMAIL_REQUEST]:`Failed Verification Email Request`,[X.EMAIL_VERIFICATION_CONFIRMED]:`Email Verification Confirmed`,[X.EMAIL_VERIFICATION_FAILED]:`Email Verification Failed`,[X.MFA_AUTH_FAILED]:`MFA Auth Failed`,[X.MFA_AUTH_REJECTED]:`MFA Auth Rejected`,[X.MFA_AUTH_SUCCESS]:`MFA Auth Success`,[X.MFA_ENROLLMENT_COMPLETE]:`MFA Enrollment Complete`,[X.TOO_MANY_MFA_FAILURES]:`Too Many MFA Failures`,[X.MFA_RECOVERY_FAILED]:`MFA Recovery Failed`,[X.MFA_RECOVERY_RATE_LIMIT_EXCEED]:`MFA Recovery Rate Limit Exceeded`,[X.MFA_RECOVERY_SUCCESS]:`MFA Recovery Success`,[X.MFA_EMAIL_SENT]:`MFA Email Sent`,[X.EMAIL_VERIFICATION_SENT]:`Email Verification Sent`,[X.EMAIL_VERIFICATION_SEND_FAILURE]:`Email Verification Send Failure`,[X.PUSH_NOTIFICATION_SENT]:`Push Notification Sent`,[X.ERROR_SENDING_MFA_PUSH_NOTIFICATION]:`Error Sending MFA Push Notification`,[X.MFA_SMS_SENT]:`MFA SMS Sent`,[X.ERROR_SENDING_MFA_SMS]:`Error Sending MFA SMS`,[X.MFA_VOICE_CALL_SUCCESS]:`MFA Voice Call Success`,[X.MFA_VOICE_CALL_FAILED]:`MFA Voice Call Failed`,[X.SECOND_FACTOR_STARTED]:`Second Factor Started`,[X.MFA_ENROLL_STARTED]:`MFA Enroll Started`,[X.MFA_ENROLLMENT_FAILED]:`MFA Enrollment Failed`,[X.GUARDIAN_TENANT_UPDATE]:`Guardian Tenant Update`,[X.UNENROLL_DEVICE_ACCOUNT]:`Unenroll Device Account`,[X.UPDATE_DEVICE_ACCOUNT]:`Update Device Account`,[X.WEBAUTHN_CHALLENGE_FAILED]:`WebAuthn Challenge Failed`,[X.WEBAUTHN_ENROLLMENT_FAILED]:`WebAuthn Enrollment Failed`,[X.FAILED_KMS_API_OPERATION]:`Failed KMS API Operation`,[X.SUCCESS_KMS_API_OPERATION]:`Success KMS API Operation`,[X.KMS_KEY_STATE_CHANGED]:`KMS Key State Changed`,[X.TOO_MANY_CALLS_TO_DELEGATION]:`Too Many Calls to Delegation`,[X.BLOCKED_IP_ADDRESS]:`Blocked IP Address`,[X.BLOCKED_ACCOUNT_IP]:`Blocked Account (IP)`,[X.BLOCKED_ACCOUNT_EMAIL]:`Blocked Account (Email)`,[X.INFORMATION]:`Information`,[X.MFA_REQUIRED]:`MFA Required`,[X.MANAGEMENT_API_READ_OPERATION]:`Management API Read Operation`,[X.FAILED_AUTHENTICATION_METHOD_OPERATION_MY_ACCOUNT]:`Failed Authentication Method Operation (My Account)`,[X.SUCCESSFUL_AUTHENTICATION_METHOD_OPERATION_MY_ACCOUNT]:`Successful Authentication Method Operation (My Account)`,[X.FAILED_OIDC_BACKCHANNEL_LOGOUT]:`Failed OIDC Backchannel Logout`,[X.SUCCESSFUL_OIDC_BACKCHANNEL_LOGOUT]:`Successful OIDC Backchannel Logout`,[X.ORGANIZATION_MEMBER_ADDED]:`Organization Member Added`,[X.PASSKEY_CHALLENGE_FAILED]:`Passkey Challenge Failed`,[X.PASSKEY_CHALLENGE_STARTED]:`Passkey Challenge Started`,[X.PRE_LOGIN_ASSESSMENT]:`Pre-Login Assessment`,[X.BREACHED_PASSWORD]:`Breached Password`,[X.BREACHED_PASSWORD_ON_RESET]:`Breached Password on Reset`,[X.SUCCESS_RESOURCE_CLEANUP]:`Success Resource Cleanup`,[X.RICH_CONSENTS_ACCESS_ERROR]:`Rich Consents Access Error`,[X.SUCCESS_LOGIN]:`Success Login`,[X.SUCCESS_API_OPERATION]:`Success API Operation`,[X.FAILED_API_OPERATION]:`Failed API Operation`,[X.SUCCESS_CHANGE_EMAIL]:`Success Change Email`,[X.SUCCESS_CROSS_ORIGIN_AUTHENTICATION]:`Success Cross Origin Authentication`,[X.SUCCESS_CHANGE_PASSWORD]:`Success Change Password`,[X.SUCCESS_CHANGE_PHONE_NUMBER]:`Success Change Phone Number`,[X.SUCCESS_CHANGE_PASSWORD_REQUEST]:`Success Change Password Request`,[X.SUCCESS_CHANGE_USERNAME]:`Success Change Username`,[X.SUCCESS_CREDENTIAL_VALIDATION]:`Success Credential Validation`,[X.SUCCESS_DELEGATION]:`Success Delegation`,[X.SUCCESS_USER_DELETION]:`Success User Deletion`,[X.SUCCESS_EXCHANGE_AUTHORIZATION_CODE_FOR_ACCESS_TOKEN]:`Success Exchange Authorization Code for Access Token`,[X.SUCCESS_EXCHANGE_ACCESS_TOKEN_FOR_CLIENT_CREDENTIALS]:`Success Exchange Access Token for Client Credentials`,[X.SUCCESS_EXCHANGE_CUSTOM_TOKEN]:`Success Exchange Custom Token`,[X.SUCCESS_EXCHANGE_DEVICE_CODE_FOR_ACCESS_TOKEN]:`Success Exchange Device Code for Access Token`,[X.SUCCESS_EXCHANGE_NATIVE_SOCIAL_LOGIN]:`Success Exchange Native Social Login`,[X.SUCCESS_EXCHANGE_PASSWORD_OOB_FOR_ACCESS_TOKEN]:`Success Exchange Password OOB for Access Token`,[X.SUCCESS_EXCHANGE_PASSWORD_OTP_FOR_ACCESS_TOKEN]:`Success Exchange Password OTP for Access Token`,[X.SUCCESS_EXCHANGE_PASSWORDLESS_OTP_FOR_ACCESS_TOKEN]:`Success Exchange Passwordless OTP for Access Token`,[X.SUCCESS_EXCHANGE_PASSWORD_FOR_ACCESS_TOKEN]:`Success Exchange Password for Access Token`,[X.SUCCESS_EXCHANGE_PASSKEY_OOB_FOR_ACCESS_TOKEN]:`Success Exchange Passkey OOB for Access Token`,[X.SUCCESS_EXCHANGE_PASSKEY_OTP_FOR_ACCESS_TOKEN]:`Success Exchange Passkey OTP for Access Token`,[X.SUCCESS_EXCHANGE_PASSKEY_MFA_RECOVERY_FOR_ACCESS_TOKEN]:`Success Exchange Passkey MFA Recovery for Access Token`,[X.SUCCESS_EXCHANGE_PASSWORD_MFA_RECOVERY_FOR_ACCESS_TOKEN]:`Success Exchange Password MFA Recovery for Access Token`,[X.SUCCESS_EXCHANGE_REFRESH_TOKEN_FOR_ACCESS_TOKEN]:`Success Exchange Refresh Token for Access Token`,[X.SUCCESS_IMPERSONATION]:`Success Impersonation`,[X.SUCCESSFULLY_ACCEPTED_USER_INVITE]:`Successfully Accepted User Invite`,[X.BREACHED_PASSWORD_ON_SIGNUP]:`Breached Password on Signup`,[X.SUCCESS_LOGOUT]:`Success Logout`,[X.SUCCESS_HOOK]:`Success Hook`,[X.SUCCESS_PASSWORD_MIGRATION]:`Success Password Migration`,[X.SUCCESS_REVOCATION]:`Success Revocation`,[X.SUCCESS_SIGNUP]:`Success Signup`,[X.FAILED_SS_SSO_OPERATION]:`Failed SS SSO Operation`,[X.INFORMATION_FROM_SS_SSO_OPERATION]:`Information from SS SSO Operation`,[X.SUCCESS_SS_SSO_OPERATION]:`Success SS SSO Operation`,[X.SUCCESS_SILENT_AUTH]:`Success Silent Auth`,[X.SUCCESSFUL_SCIM_OPERATION]:`Successful SCIM Operation`,[X.SUCCESSFULLY_IMPORTED_USERS]:`Successfully Imported Users`,[X.SUCCESS_VERIFICATION_EMAIL]:`Success Verification Email`,[X.SUCCESS_VERIFICATION_EMAIL_REQUEST]:`Success Verification Email Request`,[X.MAX_AMOUNT_OF_AUTHENTICATORS]:`Max Amount of Authenticators`,[X.USER_LOGIN_BLOCK_RELEASED]:`User Login Block Released`,[X.FAILED_UNIVERSAL_LOGOUT]:`Failed Universal Logout`,[X.SUCCESSFUL_UNIVERSAL_LOGOUT]:`Successful Universal Logout`,[X.WARNING_DURING_LOGIN]:`Warning During Login`,[X.WARNING_SENDING_NOTIFICATION]:`Warning Sending Notification`,[X.WARNING_USER_MANAGEMENT]:`Warning User Management`},wn=(()=>{let e={};for(let[t,n]of Object.entries(X))t.startsWith(`SUCCESS_`)||t.startsWith(`SUCCESSFUL_`)||t.startsWith(`SUCCESSFULLY_`)||t.endsWith(`_SUCCEEDED`)||t.endsWith(`_COMPLETED`)?e[n]=`success`:t.startsWith(`FAILED_`)||t.startsWith(`ERROR_`)||t.startsWith(`BREACHED_`)||t.startsWith(`BLOCKED_`)||t===`MFA_AUTH_FAILED`||t===`MFA_AUTH_REJECTED`||t===`MFA_RECOVERY_FAILED`||t===`MFA_ENROLLMENT_FAILED`||t===`EMAIL_VERIFICATION_FAILED`||t===`WEBAUTHN_CHALLENGE_FAILED`||t===`WEBAUTHN_ENROLLMENT_FAILED`||t===`PASSKEY_CHALLENGE_FAILED`||t===`FLOWS_EXECUTION_FAILED`||t===`FORMS_SUBMISSION_FAILED`||t===`CIBA_EXCHANGE_FAILED`||t===`CIBA_START_FAILED`||t===`ACTIONS_EXECUTION_FAILED`||t===`RICH_CONSENTS_ACCESS_ERROR`||t===`USER_CANCELED_DEVICE_CONFIRMATION`||t===`TOO_MANY_MFA_FAILURES`||t===`MFA_RECOVERY_RATE_LIMIT_EXCEED`||t===`API_LIMIT`||t===`MAX_AMOUNT_OF_AUTHENTICATORS`?e[n]=`failure`:t.startsWith(`WARNING_`)||t===`API_LIMIT_WARNING`||t===`DEPRECATION_NOTICE`||t===`PRE_LOGIN_ASSESSMENT`?e[n]=`warning`:t===`CODE_SENT`||t===`CODE_LINK_SENT`||t===`MFA_EMAIL_SENT`||t===`MFA_SMS_SENT`||t===`EMAIL_VERIFICATION_SENT`||t===`PUSH_NOTIFICATION_SENT`?e[n]=`code_sent`:t===`INFORMATION`||t===`INFORMATION_FROM_SS_SSO_OPERATION`||t===`MANAGEMENT_API_READ_OPERATION`||t===`APPI`||t===`ACLS_SUMMARY`||t===`ORGANIZATION_MEMBER_ADDED`?e[n]=`info`:e[n]=`other`;return e})();function Tn(e){return Cn[e]??e}function En(e){return wn[e]??`other`}var Dn=e.z.object({name:e.z.string(),version:e.z.string(),env:e.z.object({node:e.z.string().optional()}).optional()}),On=e.z.object({country_code:e.z.string().length(2),city_name:e.z.string(),latitude:e.z.string(),longitude:e.z.string(),time_zone:e.z.string(),continent_code:e.z.string()}),kn=e.z.object({type:Sn,date:e.z.string(),description:e.z.string().optional(),ip:e.z.string().optional(),user_agent:e.z.string().optional(),details:e.z.any().optional(),isMobile:e.z.boolean(),user_id:e.z.string().optional(),user_name:e.z.string().optional(),connection:e.z.string().optional(),connection_id:e.z.string().optional(),client_id:e.z.string().optional(),client_name:e.z.string().optional(),audience:e.z.string().optional(),scope:e.z.string().optional(),strategy:e.z.string().optional(),strategy_type:e.z.string().optional(),hostname:e.z.string().optional(),auth0_client:Dn.optional(),log_id:e.z.string().optional(),location_info:On.optional()}),An=kn.extend({log_id:e.z.string()}),jn=e.z.enum([`http`,`eventbridge`,`eventgrid`,`splunk`,`datadog`,`sumo`]),Z=e.z.enum([`active`,`paused`,`suspended`]),Mn=e.z.object({type:e.z.string(),name:e.z.string()}),Nn=e.z.object({name:e.z.string(),type:jn,status:Z.optional(),sink:e.z.record(e.z.string(),e.z.unknown()),filters:e.z.array(Mn).optional(),isPriority:e.z.boolean().optional()}),Pn=Nn.extend({id:e.z.string(),status:Z,created_at:e.z.string().optional(),updated_at:e.z.string().optional()}),Fn=e.z.enum([`auth0`,`cognito`,`okta`,`oidc`]),In=e.z.object({domain:e.z.string(),client_id:e.z.string(),client_secret:e.z.string(),audience:e.z.string().optional(),scope:e.z.string().optional()}),Ln=e.z.object({id:e.z.string().optional(),name:e.z.string(),provider:Fn,connection:e.z.string(),enabled:e.z.boolean().default(true),credentials:In}),Rn=e.z.object({id:e.z.string(),created_at:e.z.string(),updated_at:e.z.string()}).extend(Ln.shape),zn=e.z.object({enabled:e.z.boolean().optional(),shields:e.z.array(e.z.string()).optional(),admin_notification_frequency:e.z.array(e.z.string()).optional(),method:e.z.string().optional(),stage:e.z.object({"pre-user-registration":e.z.object({shields:e.z.array(e.z.string()).optional()}).optional(),"pre-change-password":e.z.object({shields:e.z.array(e.z.string()).optional()}).optional()}).optional()}),Bn=e.z.object({enabled:e.z.boolean().optional(),shields:e.z.array(e.z.string()).optional(),allowlist:e.z.array(e.z.string()).optional(),mode:e.z.string().optional(),max_attempts:e.z.number().optional()}),Vn=e.z.object({enabled:e.z.boolean().optional(),shields:e.z.array(e.z.string()).optional(),allowlist:e.z.array(e.z.string()).optional(),stage:e.z.object({"pre-login":e.z.object({max_attempts:e.z.number().optional(),rate:e.z.number().optional()}).optional(),"pre-user-registration":e.z.object({max_attempts:e.z.number().optional(),rate:e.z.number().optional()}).optional()}).optional()}),Hn=e.z.object({breached_password_detection:zn.optional(),brute_force_protection:Bn.optional(),suspicious_ip_throttling:Vn.optional()}),Un=e.z.object({id:e.z.string().optional(),user_id:e.z.string(),password:e.z.string(),algorithm:e.z.enum([`bcrypt`,`argon2id`]).default(`argon2id`),is_current:e.z.boolean().default(true)}),Wn=Un.extend({id:e.z.string(),created_at:e.z.string(),updated_at:e.z.string()}),Gn=e.z.object({initial_user_agent:e.z.string().describe(`First user agent of the device from which this user logged in`),initial_ip:e.z.string().describe(`First IP address associated with this session`),initial_asn:e.z.string().describe(`First autonomous system number associated with this session`),last_user_agent:e.z.string().describe(`Last user agent of the device from which this user logged in`),last_ip:e.z.string().describe(`Last IP address from which this user logged in`),last_asn:e.z.string().describe(`Last autonomous system number from which this user logged in`)}),Kn=e.z.object({id:e.z.string(),revoked_at:e.z.string().optional(),used_at:e.z.string().optional(),user_id:e.z.string().describe(`The user ID associated with the session`),expires_at:e.z.string().optional(),login_session_id:e.z.string(),idle_expires_at:e.z.string().optional(),device:Gn.describe(`Metadata related to the device used in the session`),clients:e.z.array(e.z.string()).describe(`List of client details for the session`)}),qn=e.z.object({created_at:e.z.string(),updated_at:e.z.string(),authenticated_at:e.z.string(),last_interaction_at:e.z.string()}).extend(Kn.shape),Jn=e.z.object({kid:e.z.string().openapi({description:`The key id of the signing key`}),tenant_id:e.z.string().optional().openapi({description:`The tenant the key belongs to. Omitted means the key is shared / control-plane scoped.`}),cert:e.z.string().openapi({description:`The public certificate of the signing key`}),fingerprint:e.z.string().openapi({description:`The cert fingerprint`}),thumbprint:e.z.string().openapi({description:`The cert thumbprint`}),pkcs7:e.z.string().optional().openapi({description:`The private key in pkcs7 format`}),current:e.z.boolean().optional().openapi({description:`True if the key is the current key`}),next:e.z.boolean().optional().openapi({description:`True if the key is the next key`}),previous:e.z.boolean().optional().openapi({description:`True if the key is the previous key`}),current_since:e.z.string().optional().openapi({description:`The date and time when the key became the current key`}),current_until:e.z.string().optional().openapi({description:`The date and time when the current key was rotated`}),revoked:e.z.boolean().optional().openapi({description:`True if the key is revoked`}),revoked_at:e.z.string().optional().openapi({description:`The date and time when the key was revoked`}),connection:e.z.string().optional().openapi({description:`The connection identifier associated with the key`}),type:e.z.enum([`jwt_signing`,`saml_encryption`]).openapi({description:`The type of the signing key`})}),Yn=e.z.object({id:e.z.string().optional(),audience:e.z.string(),friendly_name:e.z.string(),picture_url:e.z.string().optional(),support_email:e.z.string().optional(),support_url:e.z.string().optional(),sender_email:e.z.string().email(),sender_name:e.z.string(),session_lifetime:e.z.number().optional(),idle_session_lifetime:e.z.number().optional(),ephemeral_session_lifetime:e.z.number().optional(),idle_ephemeral_session_lifetime:e.z.number().optional(),session_cookie:e.z.object({mode:e.z.enum([`persistent`,`non-persistent`]).optional()}).optional(),allowed_logout_urls:e.z.array(e.z.string()).optional(),default_redirection_uri:e.z.string().optional(),default_client_id:e.z.string().optional(),enabled_locales:e.z.array(e.z.string()).optional(),default_directory:e.z.string().optional(),error_page:e.z.object({html:e.z.string().optional(),show_log_link:e.z.boolean().optional(),url:e.z.string().optional()}).nullish(),flags:e.z.object({allow_changing_enable_sso:e.z.boolean().optional(),allow_legacy_delegation_grant_types:e.z.boolean().optional(),allow_legacy_ro_grant_types:e.z.boolean().optional(),allow_legacy_tokeninfo_endpoint:e.z.boolean().optional(),change_pwd_flow_v1:e.z.boolean().optional(),client_id_metadata_document_registration:e.z.boolean().optional(),custom_domains_provisioning:e.z.boolean().optional(),dashboard_insights_view:e.z.boolean().optional(),dashboard_log_streams_next:e.z.boolean().optional(),disable_clickjack_protection_headers:e.z.boolean().optional(),disable_fields_map_fix:e.z.boolean().optional(),disable_impersonation:e.z.boolean().optional(),disable_management_api_sms_obfuscation:e.z.boolean().optional(),enable_adfs_waad_email_verification:e.z.boolean().optional(),enable_apis_section:e.z.boolean().optional(),enable_client_connections:e.z.boolean().optional(),enable_custom_domain_in_emails:e.z.boolean().optional(),enable_dynamic_client_registration:e.z.boolean().optional(),dcr_require_initial_access_token:e.z.boolean().optional(),dcr_allowed_grant_types:e.z.array(e.z.string()).optional(),allow_http_return_to:e.z.array(e.z.string().refine(e=>{try{let t=new URL(e);return t.protocol===`http:`&&(t.pathname===``||t.pathname===`/`)&&!t.search&&!t.hash&&e===t.origin}catch{return false}},{message:`must be a fully-qualified http origin (scheme + host + port, no path)`})).optional(),enable_idtoken_api2:e.z.boolean().optional(),enable_legacy_logs_search_v2:e.z.boolean().optional(),enable_legacy_profile:e.z.boolean().optional(),enable_pipeline2:e.z.boolean().optional(),enable_public_signup_user_exists_error:e.z.boolean().optional(),enable_sso:e.z.boolean().optional(),enforce_client_authentication_on_passwordless_start:e.z.boolean().optional(),genai_trial:e.z.boolean().optional(),improved_signup_bot_detection_in_classic:e.z.boolean().optional(),mfa_show_factor_list_on_enrollment:e.z.boolean().optional(),no_disclose_enterprise_connections:e.z.boolean().optional(),remove_alg_from_jwks:e.z.boolean().optional(),revoke_refresh_token_grant:e.z.boolean().optional(),trust_azure_adfs_email_verified_connection_property:e.z.boolean().optional(),use_scope_descriptions_for_consent:e.z.boolean().optional(),inherit_global_permissions_in_organizations:e.z.boolean().optional(),restrict_undefined_scopes:e.z.boolean().optional()}).optional(),sandbox_version:e.z.string().optional(),legacy_sandbox_version:e.z.string().optional(),sandbox_versions_available:e.z.array(e.z.string()).optional(),change_password:e.z.object({enabled:e.z.boolean().optional(),html:e.z.string().optional()}).optional(),guardian_mfa_page:e.z.object({enabled:e.z.boolean().optional(),html:e.z.string().optional()}).optional(),device_flow:e.z.object({charset:e.z.enum([`base20`,`digits`]).optional(),mask:e.z.string().max(20).optional()}).optional(),default_token_quota:e.z.object({clients:e.z.object({client_credentials:e.z.record(e.z.string(),e.z.any()).optional()}).optional(),organizations:e.z.object({client_credentials:e.z.record(e.z.string(),e.z.any()).optional()}).optional()}).nullish(),default_audience:e.z.string().optional(),default_organization:e.z.string().optional(),sessions:e.z.object({oidc_logout_prompt_enabled:e.z.boolean().optional()}).optional(),oidc_logout:e.z.object({rp_logout_end_session_endpoint_discovery:e.z.boolean().optional()}).optional(),allow_organization_name_in_authentication_api:e.z.boolean().optional(),customize_mfa_in_postlogin_action:e.z.boolean().optional(),acr_values_supported:e.z.array(e.z.string()).optional(),mtls:e.z.object({enable_endpoint_aliases:e.z.boolean().optional()}).nullish(),pushed_authorization_requests_supported:e.z.boolean().optional(),authorization_response_iss_parameter_supported:e.z.boolean().optional(),attack_protection:Hn.optional(),mfa:e.z.object({policy:e.z.enum([`never`,`always`]).default(`never`).optional(),factors:e.z.object({sms:e.z.boolean().default(false),otp:e.z.boolean().default(false),email:e.z.boolean().default(false),push_notification:e.z.boolean().default(false),webauthn_roaming:e.z.boolean().default(false),webauthn_platform:e.z.boolean().default(false),recovery_code:e.z.boolean().default(false),duo:e.z.boolean().default(false)}).optional(),sms_provider:e.z.object({provider:e.z.enum([`twilio`,`vonage`,`aws_sns`,`phone_message_hook`]).optional()}).optional(),twilio:e.z.object({sid:e.z.string().optional(),auth_token:e.z.string().optional(),from:e.z.string().optional(),messaging_service_sid:e.z.string().optional()}).optional(),phone_message:e.z.object({message:e.z.string().optional()}).optional()}).optional()}),Xn=e.z.object({created_at:e.z.string().nullable().transform(e=>e??``),updated_at:e.z.string().nullable().transform(e=>e??``)}).extend(Yn.shape).extend({id:e.z.string(),is_control_plane:e.z.boolean().optional()}),Zn=function(e){return e.RefreshToken=`refresh_token`,e.AuthorizationCode=`authorization_code`,e.ClientCredential=`client_credentials`,e.Passwordless=`passwordless`,e.Password=`password`,e.OTP=`http://auth0.com/oauth/grant-type/passwordless/otp`,e}({}),Qn=e.z.object({access_token:e.z.string(),id_token:e.z.string().optional(),scope:e.z.string().optional(),state:e.z.string().optional(),refresh_token:e.z.string().optional(),token_type:e.z.string(),expires_in:e.z.number()});e.z.object({code:e.z.string(),state:e.z.string().optional()});var $n=e.z.object({button_border_radius:e.z.number(),button_border_weight:e.z.number(),buttons_style:e.z.enum([`pill`,`rounded`,`sharp`]),input_border_radius:e.z.number(),input_border_weight:e.z.number(),inputs_style:e.z.enum([`pill`,`rounded`,`sharp`]),show_widget_shadow:e.z.boolean(),widget_border_weight:e.z.number(),widget_corner_radius:e.z.number()}),er=e.z.object({base_focus_color:e.z.string(),base_hover_color:e.z.string(),body_text:e.z.string(),captcha_widget_theme:e.z.enum([`auto`,`dark`,`light`]),error:e.z.string(),header:e.z.string(),icons:e.z.string(),input_background:e.z.string(),input_border:e.z.string(),input_filled_text:e.z.string(),input_labels_placeholders:e.z.string(),links_focused_components:e.z.string(),primary_button:e.z.string(),primary_button_label:e.z.string(),secondary_button_border:e.z.string(),secondary_button_label:e.z.string(),success:e.z.string(),widget_background:e.z.string(),widget_border:e.z.string()}),Q=e.z.object({bold:e.z.boolean(),size:e.z.number()}),tr=e.z.object({body_text:Q,buttons_text:Q,font_url:e.z.string(),input_labels:Q,links:Q,links_style:e.z.enum([`normal`,`underlined`]),reference_text_size:e.z.number(),subtitle:Q,title:Q}),nr=e.z.object({background_color:e.z.string(),background_image_url:e.z.string(),page_layout:e.z.enum([`center`,`left`,`right`]),logo_placement:e.z.enum([`widget`,`chip`,`none`]).optional()}),rr=e.z.object({header_text_alignment:e.z.enum([`center`,`left`,`right`]),logo_height:e.z.number(),logo_position:e.z.enum([`center`,`left`,`none`,`right`]),logo_url:e.z.string(),social_buttons_layout:e.z.enum([`bottom`,`top`])}),ir=e.z.object({borders:$n,colors:er,displayName:e.z.string(),fonts:tr,page_background:nr,widget:rr}),ar=ir.extend({themeId:e.z.string()}),or=e.z.object({universal_login_experience:e.z.enum([`new`,`classic`]).default(`new`),identifier_first:e.z.boolean().default(true),password_first:e.z.boolean().default(false),webauthn_platform_first_factor:e.z.boolean()}),sr=e.z.object({hosts:e.z.array(e.z.string()).optional(),methods:e.z.array(e.z.string()).optional(),path:e.z.string().default(`/*`),headers:e.z.record(e.z.string(),e.z.string()).optional(),query:e.z.record(e.z.string(),e.z.string()).optional()}),cr=e.z.object({type:e.z.string(),options:e.z.record(e.z.string(),e.z.unknown()).default({})}),$=e.z.object({custom_domain_id:e.z.string(),priority:e.z.number().int().default(100),match:sr,handlers:e.z.array(cr).min(1)}),lr=$.extend({id:e.z.string(),tenant_id:e.z.string(),created_at:e.z.string(),updated_at:e.z.string()}),ur=$.partial().omit({custom_domain_id:true}),dr=e.z.object({name:e.z.string(),enabled:e.z.boolean().optional().default(true),default_from_address:e.z.string().optional(),credentials:e.z.record(e.z.string(),e.z.unknown()),settings:e.z.object({}).optional()}),fr=e.z.enum([`verify_email`,`verify_email_by_code`,`reset_email`,`reset_email_by_code`,`welcome_email`,`blocked_account`,`stolen_credentials`,`enrollment_email`,`mfa_oob_code`,`change_password`,`password_reset`,`user_invitation`]),pr=e.z.object({template:fr,body:e.z.string(),from:e.z.string(),subject:e.z.string(),syntax:e.z.literal(`liquid`).default(`liquid`),resultUrl:e.z.string().optional(),urlLifetimeInSeconds:e.z.number().int().nonnegative().optional(),includeEmailInRedirect:e.z.boolean().default(false),enabled:e.z.boolean().default(true)}),mr=e.z.object({id:e.z.string(),login_id:e.z.string(),user_id:e.z.string(),client_id:e.z.string(),expires_at:e.z.string().optional(),idle_expires_at:e.z.string().optional(),last_exchanged_at:e.z.string().optional(),device:Gn,resource_servers:e.z.array(e.z.object({audience:e.z.string(),scopes:e.z.string()})),rotating:e.z.boolean(),token_lookup:e.z.string().optional(),token_hash:e.z.string().optional(),family_id:e.z.string().optional(),rotated_to:e.z.string().optional(),rotated_at:e.z.string().optional()}),hr=mr.extend({created_at:e.z.string(),revoked_at:e.z.string().optional()}),gr=e.z.object({to:e.z.string(),message:e.z.string()}),_r=e.z.object({name:e.z.string(),options:e.z.object({})}),vr=e.z.object({value:e.z.string(),description:e.z.string().optional()}),yr=e.z.object({token_dialect:e.z.enum([`access_token`,`access_token_authz`]).optional(),enforce_policies:e.z.boolean().optional(),allow_skipping_userinfo:e.z.boolean().optional(),skip_userinfo:e.z.boolean().optional(),persist_client_authorization:e.z.boolean().optional(),enable_introspection_endpoint:e.z.boolean().optional(),mtls:e.z.object({bound_access_tokens:e.z.boolean().optional()}).optional()}),br=e.z.object({id:e.z.string().optional(),name:e.z.string(),identifier:e.z.string(),scopes:e.z.array(vr).optional(),signing_alg:e.z.string().optional(),signing_secret:e.z.string().optional(),token_lifetime:e.z.number().default(86400),token_lifetime_for_web:e.z.number().default(7200),skip_consent_for_verifiable_first_party_clients:e.z.boolean().optional(),allow_offline_access:e.z.boolean().optional(),verificationKey:e.z.string().optional(),options:yr.optional(),is_system:e.z.boolean().optional(),metadata:e.z.record(e.z.string(),e.z.any()).optional()}),xr=br.extend({created_at:e.z.string().optional(),updated_at:e.z.string().optional()}),Sr=e.z.array(xr),Cr=e.z.object({role_id:e.z.string(),resource_server_identifier:e.z.string(),permission_name:e.z.string()}),wr=Cr.extend({created_at:e.z.string()}),Tr=e.z.array(wr),Er=e.z.object({user_id:e.z.string(),resource_server_identifier:e.z.string(),permission_name:e.z.string(),organization_id:e.z.string().optional()}),Dr=Er.extend({tenant_id:e.z.string(),created_at:e.z.string().optional()}),Or=e.z.array(Dr),kr=e.z.object({user_id:e.z.string(),resource_server_identifier:e.z.string(),resource_server_name:e.z.string(),permission_name:e.z.string(),description:e.z.string().nullable().optional(),created_at:e.z.string().optional(),organization_id:e.z.string().optional()}),Ar=e.z.array(kr),jr=e.z.object({user_id:e.z.string(),role_id:e.z.string(),organization_id:e.z.string().optional()}),Mr=jr.extend({tenant_id:e.z.string(),created_at:e.z.string().optional()}),Nr=e.z.array(Mr),Pr=e.z.object({id:e.z.string().optional().openapi({description:`The unique identifier of the role. If not provided, one will be generated.`}),name:e.z.string().min(1).max(50).openapi({description:`The name of the role. Cannot include '<' or '>'`}),description:e.z.string().max(255).optional().openapi({description:`The description of the role`}),is_system:e.z.boolean().optional(),metadata:e.z.record(e.z.string(),e.z.any()).optional().openapi({description:`Metadata associated with the role. Can be used to control sync behavior in multi-tenancy scenarios.`})}),Fr=Pr.extend({id:e.z.string().openapi({description:`The unique identifier of the role`}),created_at:e.z.string().optional(),updated_at:e.z.string().optional()}),Ir=e.z.array(Fr),Lr=e.z.object({logo_url:e.z.string().optional().openapi({description:`URL of the organization's logo`}),colors:e.z.object({primary:e.z.string().optional().openapi({description:`Primary color in hex format (e.g., #FF0000)`}),page_background:e.z.string().optional().openapi({description:`Page background color in hex format (e.g., #FFFFFF)`})}).optional()}).optional(),Rr=e.z.object({connection_id:e.z.string().openapi({description:`ID of the connection`}),assign_membership_on_login:e.z.boolean().default(false).openapi({description:`Whether to assign membership to the organization on login`}),show_as_button:e.z.boolean().default(true).openapi({description:`Whether to show this connection as a button in the login screen`}),is_signup_enabled:e.z.boolean().default(true).openapi({description:`Whether signup is enabled for this connection`})}),zr=e.z.object({client_credentials:e.z.object({enforce:e.z.boolean().default(false).openapi({description:`Whether to enforce token quota limits`}),per_day:e.z.number().min(0).default(0).openapi({description:`Maximum tokens per day (0 = unlimited)`}),per_hour:e.z.number().min(0).default(0).openapi({description:`Maximum tokens per hour (0 = unlimited)`})}).optional()}).optional(),Br=e.z.object({id:e.z.string().optional(),name:e.z.string().min(1).regex(/^[a-z0-9_-]+$/,{message:`Organization name must be lowercase and can only contain letters, numbers, hyphens, and underscores`}).openapi({description:`The name of the organization. Must be lowercase and can only contain letters, numbers, hyphens, and underscores.`}),display_name:e.z.string().optional().openapi({description:`The display name of the organization`}),branding:Lr,metadata:e.z.record(e.z.string(),e.z.any()).default({}).optional().openapi({description:`Custom metadata for the organization`}),enabled_connections:e.z.array(Rr).default([]).optional().openapi({description:`List of enabled connections for the organization`}),token_quota:zr}),Vr=Br.extend(t.shape).extend({id:e.z.string(),name:e.z.string().min(1).openapi({description:`The name of the organization`})}),Hr=e.z.object({connection_id:e.z.string().openapi({description:`ID of the tenant-level connection to enable for the org.`}),assign_membership_on_login:e.z.boolean().optional().default(false),show_as_button:e.z.boolean().optional().default(true),is_signup_enabled:e.z.boolean().optional().default(true)}),Ur=Hr.extend({connection:e.z.object({name:e.z.string().optional(),strategy:e.z.string().optional()}).optional(),created_at:e.z.string().optional(),updated_at:e.z.string().optional()}),Wr=e.z.array(Ur),Gr=e.z.object({user_id:e.z.string().openapi({description:`ID of the user`}),organization_id:e.z.string().openapi({description:`ID of the organization`})}),Kr=Gr.extend(t.shape).extend({id:e.z.string()}),qr=e.z.object({idle_session_lifetime:e.z.number().default(72),session_lifetime:e.z.number().default(168),session_cookie:e.z.object({mode:e.z.enum([`persistent`,`non-persistent`]).optional()}).optional(),enable_client_connections:e.z.boolean().optional(),default_redirection_uri:e.z.string().optional(),enabled_locales:e.z.array(e.z.string()).optional(),default_directory:e.z.string().optional(),error_page:e.z.object({html:e.z.string().optional(),show_log_link:e.z.boolean().optional(),url:e.z.string().optional()}).optional(),flags:e.z.object({allow_legacy_delegation_grant_types:e.z.boolean().optional(),allow_legacy_ro_grant_types:e.z.boolean().optional(),allow_legacy_tokeninfo_endpoint:e.z.boolean().optional(),disable_clickjack_protection_headers:e.z.boolean().optional(),enable_apis_section:e.z.boolean().optional(),enable_client_connections:e.z.boolean().optional(),enable_custom_domain_in_emails:e.z.boolean().optional(),enable_dynamic_client_registration:e.z.boolean().optional(),enable_idtoken_api2:e.z.boolean().optional(),enable_legacy_logs_search_v2:e.z.boolean().optional(),enable_legacy_profile:e.z.boolean().optional(),enable_pipeline2:e.z.boolean().optional(),enable_public_signup_user_exists_error:e.z.boolean().optional(),use_scope_descriptions_for_consent:e.z.boolean().optional(),disable_management_api_sms_obfuscation:e.z.boolean().optional(),enable_adfs_waad_email_verification:e.z.boolean().optional(),revoke_refresh_token_grant:e.z.boolean().optional(),dashboard_log_streams_next:e.z.boolean().optional(),dashboard_insights_view:e.z.boolean().optional(),disable_fields_map_fix:e.z.boolean().optional(),mfa_show_factor_list_on_enrollment:e.z.boolean().optional()}).optional(),friendly_name:e.z.string().optional(),picture_url:e.z.string().optional(),support_email:e.z.string().optional(),support_url:e.z.string().optional(),sandbox_version:e.z.string().optional(),sandbox_versions_available:e.z.array(e.z.string()).optional(),change_password:e.z.object({enabled:e.z.boolean(),html:e.z.string()}).optional(),guardian_mfa_page:e.z.object({enabled:e.z.boolean(),html:e.z.string()}).optional(),default_audience:e.z.string().optional(),default_organization:e.z.string().optional(),sessions:e.z.object({oidc_logout_prompt_enabled:e.z.boolean().optional()}).optional(),mfa:e.z.object({policy:e.z.enum([`never`,`always`]).default(`never`).optional(),factors:e.z.object({sms:e.z.boolean().default(false),otp:e.z.boolean().default(false),email:e.z.boolean().default(false),push_notification:e.z.boolean().default(false),webauthn_roaming:e.z.boolean().default(false),webauthn_platform:e.z.boolean().default(false),recovery_code:e.z.boolean().default(false),duo:e.z.boolean().default(false)}).optional(),sms_provider:e.z.object({provider:e.z.enum([`twilio`,`vonage`,`aws_sns`,`phone_message_hook`]).optional()}).optional(),twilio:e.z.object({sid:e.z.string().optional(),auth_token:e.z.string().optional(),from:e.z.string().optional(),messaging_service_sid:e.z.string().optional()}).optional(),phone_message:e.z.object({message:e.z.string().optional()}).optional()}).optional()}),Jr=e.z.object({date:e.z.string().openapi({description:`Date these events occurred in ISO 8601 format`,example:`2025-12-19`}),logins:e.z.number().openapi({description:`Number of logins on this date`,example:150}),signups:e.z.number().openapi({description:`Number of signups on this date`,example:25}),leaked_passwords:e.z.number().openapi({description:`Number of breached-password detections on this date (subscription required)`,example:0}),updated_at:e.z.string().openapi({description:`Date and time this stats entry was last updated in ISO 8601 format`,example:`2025-12-19T10:30:00.000Z`}),created_at:e.z.string().openapi({description:`Approximate date and time the first event occurred in ISO 8601 format`,example:`2025-12-19T00:00:00.000Z`})}),Yr=e.z.number().openapi({description:`Number of active users in the last 30 days`,example:1234}),Xr=e.z.enum([`active-users`,`logins`,`signups`,`refresh-tokens`,`sessions`]),Zr=e.z.enum([`hour`,`day`,`week`,`month`]),Qr=e.z.enum([`time`,`connection`,`client_id`,`user_type`,`event`]),$r=e.z.enum([`password`,`social`,`passwordless`,`enterprise`]),ei=e.z.object({name:e.z.string(),type:e.z.string()}),ti=e.z.object({elapsed:e.z.number(),rows_read:e.z.number().optional(),bytes_read:e.z.number().optional()}),ni=e.z.object({meta:e.z.array(ei),data:e.z.array(e.z.record(e.z.string(),e.z.any())),rows:e.z.number(),rows_before_limit_at_least:e.z.number().optional(),statistics:ti.optional()}),ri=e.z.enum(`login.login-id.login-password.signup.signup-id.signup-password.reset-password.consent.mfa.mfa-push.mfa-otp.mfa-voice.mfa-phone.mfa-webauthn.mfa-email.mfa-recovery-code.status.device-flow.email-verification.email-otp-challenge.organizations.invitation.common.passkeys.captcha.custom-form.login-passwordless.mfa-login-options`.split(`.`)),ii=e.z.record(e.z.string(),e.z.record(e.z.string(),e.z.string())).openapi({type:`object`,additionalProperties:{type:`object`,additionalProperties:{type:`string`}}}),ai=e.z.object({prompt:ri,language:e.z.string(),custom_text:ii}),oi={EMAIL:`email`,SMS:`sms`,USERNAME_PASSWORD:`Username-Password-Authentication`,GOOGLE_OAUTH2:`google-oauth2`,APPLE:`apple`,FACEBOOK:`facebook`,GITHUB:`github`,MICROSOFT:`microsoft`,VIPPS:`vipps`,OIDC:`oidc`,OAUTH2:`oauth2`,SAMLP:`samlp`,WAAD:`waad`,ADFS:`adfs`},si={DATABASE:`database`,SOCIAL:`social`,PASSWORDLESS:`passwordless`},ci=e.z.enum([`phone`,`totp`,`email`,`push`,`webauthn-roaming`,`webauthn-platform`,`passkey`]),li=e.z.object({user_id:e.z.string(),type:ci,phone_number:e.z.string().optional(),totp_secret:e.z.string().optional(),credential_id:e.z.string().optional(),public_key:e.z.string().optional(),sign_count:e.z.number().int().nonnegative().optional(),credential_backed_up:e.z.boolean().optional(),transports:e.z.array(e.z.string()).optional(),friendly_name:e.z.string().optional(),confirmed:e.z.boolean().default(false)});function ui(t,n){t.type===`phone`&&!t.phone_number&&n.addIssue({code:e.z.ZodIssueCode.custom,message:`phone_number is required when type is 'phone'`,path:[`phone_number`]}),t.type===`totp`&&!t.totp_secret&&n.addIssue({code:e.z.ZodIssueCode.custom,message:`totp_secret is required when type is 'totp'`,path:[`totp_secret`]}),[`webauthn-roaming`,`webauthn-platform`,`passkey`].includes(t.type)&&(t.credential_id||n.addIssue({code:e.z.ZodIssueCode.custom,message:`credential_id is required when type is '${t.type}'`,path:[`credential_id`]}),t.public_key||n.addIssue({code:e.z.ZodIssueCode.custom,message:`public_key is required when type is '${t.type}'`,path:[`public_key`]}));}var di=li.superRefine(ui),fi=li.extend({id:e.z.string(),created_at:e.z.string(),updated_at:e.z.string()}).superRefine(ui);function pi(e){let[t,n]=e.split(`|`);if(!t||!n)throw Error(`Invalid user_id: ${e}`);return {connection:t,id:n}}function mi(e){let{primary:t,secondaries:n,syncMethods:r=[`create`,`rawCreate`,`update`,`remove`,`delete`,`set`]}=e;return new Proxy(t,{get(e,t){if(typeof t==`symbol`)return e[t];let i=e[t];return typeof i==`function`?r.includes(t)?async(...r)=>{let a=await i.apply(e,r),o=[];for(let e of n){let n=e.adapter[t];if(typeof n!=`function`)continue;let i=(async()=>{try{await n.apply(e.adapter,r);}catch(n){try{e.onError?e.onError(n,t,r):console.error(`Passthrough adapter: secondary write failed for ${t}:`,n);}catch(e){console.error(`Passthrough adapter: onError handler threw for ${t}:`,e);}}})();e.blocking&&o.push(i);}return o.length>0&&await Promise.all(o),a}:i.bind(e):i}})}function hi(e){return e}function gi(e){let t=e?.options;if(!t)return {usernameIdentifierActive:false,emailIdentifierActive:true,usernameMinLength:1,usernameMaxLength:15};let n=t.attributes;return n?{usernameIdentifierActive:n.username?.identifier?.active===true,emailIdentifierActive:n.email?.identifier?.active!==false,usernameMinLength:n.username?.validation?.min_length??1,usernameMaxLength:n.username?.validation?.max_length??15}:{usernameIdentifierActive:t.requires_username===true,emailIdentifierActive:true,usernameMinLength:t.validation?.username?.min??1,usernameMaxLength:t.validation?.username?.max??15}}function _i(e){return typeof e==`object`&&!!e&&!Array.isArray(e)}exports.Auth0ActionEnum=he,exports.Auth0Client=Dn,exports.AuthorizationResponseMode=Re,exports.AuthorizationResponseType=Le,exports.CodeChallengeMethod=ze,exports.ComponentCategory=M,exports.ComponentType=j,exports.EmailActionEnum=ge,exports.FORM_FIELD_TYPES=Mt,exports.FlowActionTypeEnum=me,exports.GrantType=Zn,exports.LocationInfo=On,exports.LogTypes=X,exports.LoginSessionState=_n,exports.NodeType=Oe,exports.RedirectTargetEnum=g,exports.Strategy=oi,exports.StrategyType=si,exports.actionDependencySchema=r,exports.actionExecutionErrorSchema=l,exports.actionExecutionInsertSchema=ae,exports.actionExecutionLogEntrySchema=ne,exports.actionExecutionLogsSchema=re,exports.actionExecutionResultSchema=te,exports.actionExecutionSchema=ie,exports.actionExecutionStatusSchema=c,exports.actionExecutionTriggerIdSchema=s,exports.actionInsertSchema=a,exports.actionNodeSchema=Ae,exports.actionSchema=ee,exports.actionSecretSchema=i,exports.actionTriggerSchema=n,exports.actionUpdateSchema=o,exports.actionVersionInsertSchema=u,exports.actionVersionSchema=oe,exports.activeUsersResponseSchema=Yr,exports.actorSchema=ce,exports.addressSchema=x,exports.analyticsColumnMetaSchema=ei,exports.analyticsGroupBySchema=Qr,exports.analyticsIntervalSchema=Zr,exports.analyticsQueryResponseSchema=ni,exports.analyticsResourceSchema=Xr,exports.analyticsStatisticsSchema=ti,exports.analyticsUserTypeSchema=$r,exports.attackProtectionSchema=Hn,exports.auditCategorySchema=se,exports.auditEventInsertSchema=f,exports.auditEventSchema=pe,exports.auth0ClientSchema=d,exports.auth0FlowInsertSchema=Ie,exports.auth0FlowSchema=Fe,exports.auth0QuerySchema=ve,exports.auth0UpdateUserActionSchema=m,exports.auth0UserResponseSchema=xe,exports.authParamsSchema=He,exports.authenticationMethodInsertSchema=di,exports.authenticationMethodSchema=fi,exports.authenticationMethodTypeSchema=ci,exports.baseUserSchema=S,exports.blockComponentSchema=kt,exports.bordersSchema=$n,exports.brandingSchema=Ue,exports.breachedPasswordDetectionSchema=zn,exports.bruteForceProtectionSchema=Bn,exports.buttonComponentSchema=F,exports.claimsRequestSchema=Ve,exports.clientGrantInsertSchema=E,exports.clientGrantListSchema=Ee,exports.clientGrantSchema=D,exports.clientInsertSchema=T,exports.clientRegistrationTokenInsertSchema=k,exports.clientRegistrationTokenSchema=De,exports.clientRegistrationTokenTypeSchema=O,exports.clientSchema=Te,exports.codeInsertSchema=Ge,exports.codeSchema=Ke,exports.codeTypeSchema=We,exports.colorsSchema=er,exports.componentMessageSchema=Bt,exports.componentSchema=z,exports.connectionInsertSchema=Je,exports.connectionOptionsSchema=qe,exports.connectionSchema=Ye,exports.coordinatesSchema=A,exports.createPassthroughAdapter=mi,exports.createWriteOnlyAdapter=hi,exports.customDomainCertificateUploadSchema=et,exports.customDomainInsertSchema=Xe,exports.customDomainSchema=Qe,exports.customDomainWithTenantIdSchema=$e,exports.customTextEntrySchema=ai,exports.customTextSchema=ii,exports.dailyStatsSchema=Jr,exports.emailProviderSchema=dr,exports.emailTemplateNameSchema=fr,exports.emailTemplateSchema=pr,exports.emailVerificationRulesSchema=p,exports.emailVerifyActionSchema=h,exports.endingSchema=Pe,exports.fieldComponentSchema=jt,exports.flowActionStepSchema=v,exports.flowInsertSchema=y,exports.flowSchema=_e,exports.flowsFieldComponentSchema=L,exports.flowsFlowNodeSchema=ke,exports.flowsStepNodeSchema=B,exports.fontDetailsSchema=Q,exports.fontsSchema=tr,exports.formControlSchema=Nt,exports.formInsertSchema=Rt,exports.formNodeComponentDefinition=K,exports.formNodeSchema=Lt,exports.formSchema=zt,exports.genericComponentSchema=R,exports.genericNodeSchema=je,exports.getConnectionIdentifierConfig=gi,exports.getLogTypeCategory=En,exports.getLogTypeDescription=Tn,exports.handlerConfigSchema=cr,exports.hookCodeInsertSchema=cn,exports.hookCodeSchema=ln,exports.hookInsertSchema=tn,exports.hookSchema=sn,exports.hookTemplateId=J,exports.hookTemplates=Xt,exports.identitySchema=b,exports.inviteInsertSchema=fn,exports.inviteSchema=pn,exports.inviteeSchema=dn,exports.inviterSchema=un,exports.isBlockComponent=Ut,exports.isFieldComponent=Gt,exports.isPlainObject=_i,exports.isWidgetComponent=Wt,exports.jwksKeySchema=hn,exports.jwksSchema=mn,exports.legalComponentSchema=I,exports.locationInfoSchema=fe,exports.logInsertSchema=kn,exports.logSchema=An,exports.logStreamFilterSchema=Mn,exports.logStreamInsertSchema=Nn,exports.logStreamSchema=Pn,exports.logStreamStatusSchema=Z,exports.logStreamTypeSchema=jn,exports.logTypeCategories=wn,exports.logTypeDescriptions=Cn,exports.loginSessionAuthStrategySchema=yn,exports.loginSessionInsertSchema=bn,exports.loginSessionSchema=xn,exports.loginSessionStateSchema=vn,exports.matchSchema=sr,exports.migrationProviderTypeSchema=Fn,exports.migrationSourceCredentialsSchema=In,exports.migrationSourceInsertSchema=Ln,exports.migrationSourceSchema=Rn,exports.nodeSchema=Me,exports.openIDConfigurationSchema=gn,exports.organizationBrandingSchema=Lr,exports.organizationConnectionInsertSchema=Hr,exports.organizationConnectionListSchema=Wr,exports.organizationConnectionSchema=Ur,exports.organizationEnabledConnectionSchema=Rr,exports.organizationInsertSchema=Br,exports.organizationSchema=Vr,exports.organizationTokenQuotaSchema=zr,exports.pageBackgroundSchema=nr,exports.parseUserId=pi,exports.passwordInsertSchema=Un,exports.passwordSchema=Wn,exports.profileDataSchema=be,exports.promptScreenSchema=ri,exports.promptSettingSchema=or,exports.proxyRouteInsertSchema=$,exports.proxyRouteSchema=lr,exports.proxyRouteUpdateSchema=ur,exports.redirectActionSchema=_,exports.refreshTokenInsertSchema=mr,exports.refreshTokenSchema=hr,exports.requestContextSchema=ue,exports.resourceServerInsertSchema=br,exports.resourceServerListSchema=Sr,exports.resourceServerOptionsSchema=yr,exports.resourceServerSchema=xr,exports.resourceServerScopeSchema=vr,exports.responseContextSchema=de,exports.richTextComponentSchema=P,exports.roleInsertSchema=Pr,exports.roleListSchema=Ir,exports.rolePermissionInsertSchema=Cr,exports.rolePermissionListSchema=Tr,exports.rolePermissionSchema=wr,exports.roleSchema=Fr,exports.screenLinkSchema=Vt,exports.sessionInsertSchema=Kn,exports.sessionSchema=qn,exports.signingKeySchema=Jn,exports.smsProviderSchema=_r,exports.smsSendParamsSchema=gr,exports.startSchema=Ne,exports.suspiciousIpThrottlingSchema=Vn,exports.targetSchema=le,exports.tenantInsertSchema=Yn,exports.tenantSchema=Xn,exports.tenantSettingsSchema=qr,exports.themeInsertSchema=ir,exports.themeSchema=ar,exports.tokenResponseSchema=Qn,exports.totalsSchema=ye,exports.uiScreenSchema=Ht,exports.userInsertSchema=C,exports.userOrganizationInsertSchema=Gr,exports.userOrganizationSchema=Kr,exports.userPermissionInsertSchema=Er,exports.userPermissionListSchema=Or,exports.userPermissionSchema=Dr,exports.userPermissionWithDetailsListSchema=Ar,exports.userPermissionWithDetailsSchema=kr,exports.userResponseSchema=Se,exports.userRoleInsertSchema=jr,exports.userRoleListSchema=Nr,exports.userRoleSchema=Mr,exports.userSchema=w,exports.verificationMethodsSchema=Ze,exports.widgetComponentSchema=At,exports.widgetSchema=rr;
19459
19459
  } (adapterInterfaces));
19460
19460
  return adapterInterfaces;
19461
19461
  }
package/package.json CHANGED
@@ -1,6 +1,6 @@
1
1
  {
2
2
  "name": "@authhero/widget",
3
- "version": "0.32.32",
3
+ "version": "0.32.33",
4
4
  "description": "Server-Driven UI widget for AuthHero authentication flows",
5
5
  "repository": {
6
6
  "type": "git",
@@ -38,7 +38,7 @@
38
38
  },
39
39
  "dependencies": {
40
40
  "country-list": "^2.4.1",
41
- "@authhero/adapter-interfaces": "2.9.1"
41
+ "@authhero/adapter-interfaces": "2.10.0"
42
42
  },
43
43
  "devDependencies": {
44
44
  "@hono/node-server": "^1.19.14",