@aws/agentcore 0.3.0-preview.8.0 → 0.4.0

package/dist/schema/schemas/agentcore-project.d.ts

@@ -1,9 +1,9 @@
 import { EvaluationLevelSchema } from './primitives/evaluator';
-import { DEFAULT_STRATEGY_NAMESPACES, MemoryStrategySchema, MemoryStrategyTypeSchema } from './primitives/memory';
+import { DEFAULT_EPISODIC_REFLECTION_NAMESPACES, DEFAULT_STRATEGY_NAMESPACES, MemoryStrategySchema, MemoryStrategyTypeSchema } from './primitives/memory';
 import { PolicyEngineSchema } from './primitives/policy';
 import { TagsSchema } from './primitives/tags';
 import { z } from 'zod';
-export { DEFAULT_STRATEGY_NAMESPACES, MemoryStrategySchema, MemoryStrategyTypeSchema };
+export { DEFAULT_EPISODIC_REFLECTION_NAMESPACES, DEFAULT_STRATEGY_NAMESPACES, MemoryStrategySchema, MemoryStrategyTypeSchema, };
 export { EvaluationLevelSchema };
 export type { MemoryStrategy, MemoryStrategyType } from './primitives/memory';
 export type { OnlineEvalConfig } from './primitives/online-eval-config';
@@ -15,6 +15,10 @@ export type { Policy, PolicyEngine, ValidationMode } from './primitives/policy';
 export { PolicyEngineNameSchema, PolicyNameSchema, PolicySchema, ValidationModeSchema } from './primitives/policy';
 export { TagsSchema };
 export type { Tags } from './primitives/tags';
+export declare const ManagedBySchema: z.ZodDefault<z.ZodEnum<{
+    CDK: "CDK";
+}>>;
+export type ManagedBy = z.infer<typeof ManagedBySchema>;
 export type { AgentCoreGateway, AgentCoreGatewayTarget, AgentCoreMcpRuntimeTool } from './mcp';
 export { AgentCoreGatewaySchema, AgentCoreGatewayTargetSchema, AgentCoreMcpRuntimeToolSchema } from './mcp';
 export declare const ProjectNameSchema: z.ZodString;
@@ -22,7 +26,6 @@ export declare const MemoryTypeSchema: z.ZodLiteral<"AgentCoreMemory">;
 export type MemoryType = z.infer<typeof MemoryTypeSchema>;
 export declare const MemoryNameSchema: z.ZodString;
 export declare const MemorySchema: z.ZodObject<{
-    type: z.ZodLiteral<"AgentCoreMemory">;
     name: z.ZodString;
     eventExpiryDuration: z.ZodNumber;
     strategies: z.ZodDefault<z.ZodArray<z.ZodObject<{
@@ -30,10 +33,12 @@ export declare const MemorySchema: z.ZodObject<{
             SEMANTIC: "SEMANTIC";
             SUMMARIZATION: "SUMMARIZATION";
             USER_PREFERENCE: "USER_PREFERENCE";
+            EPISODIC: "EPISODIC";
         }>;
         name: z.ZodOptional<z.ZodString>;
         description: z.ZodOptional<z.ZodString>;
         namespaces: z.ZodOptional<z.ZodArray<z.ZodString>>;
+        reflectionNamespaces: z.ZodOptional<z.ZodArray<z.ZodString>>;
     }, z.core.$strip>>>;
     tags: z.ZodOptional<z.ZodRecord<z.ZodString, z.ZodString>>;
 }, z.core.$strip>;
@@ -45,14 +50,14 @@ export declare const CredentialTypeSchema: z.ZodEnum<{
 }>;
 export type CredentialType = z.infer<typeof CredentialTypeSchema>;
 export declare const ApiKeyCredentialSchema: z.ZodObject<{
-    type: z.ZodLiteral<"ApiKeyCredentialProvider">;
+    authorizerType: z.ZodLiteral<"ApiKeyCredentialProvider">;
     name: z.ZodString;
 }, z.core.$strip>;
 export type ApiKeyCredential = z.infer<typeof ApiKeyCredentialSchema>;
 export declare const OAuthCredentialSchema: z.ZodObject<{
-    type: z.ZodLiteral<"OAuthCredentialProvider">;
+    authorizerType: z.ZodLiteral<"OAuthCredentialProvider">;
     name: z.ZodString;
-    discoveryUrl: z.ZodString;
+    discoveryUrl: z.ZodOptional<z.ZodString>;
     scopes: z.ZodOptional<z.ZodArray<z.ZodString>>;
     vendor: z.ZodDefault<z.ZodString>;
     managed: z.ZodOptional<z.ZodBoolean>;
@@ -63,12 +68,12 @@ export declare const OAuthCredentialSchema: z.ZodObject<{
 }, z.core.$strip>;
 export type OAuthCredential = z.infer<typeof OAuthCredentialSchema>;
 export declare const CredentialSchema: z.ZodDiscriminatedUnion<[z.ZodObject<{
-    type: z.ZodLiteral<"ApiKeyCredentialProvider">;
+    authorizerType: z.ZodLiteral<"ApiKeyCredentialProvider">;
     name: z.ZodString;
 }, z.core.$strip>, z.ZodObject<{
-    type: z.ZodLiteral<"OAuthCredentialProvider">;
+    authorizerType: z.ZodLiteral<"OAuthCredentialProvider">;
     name: z.ZodString;
-    discoveryUrl: z.ZodString;
+    discoveryUrl: z.ZodOptional<z.ZodString>;
     scopes: z.ZodOptional<z.ZodArray<z.ZodString>>;
     vendor: z.ZodDefault<z.ZodString>;
     managed: z.ZodOptional<z.ZodBoolean>;
@@ -76,12 +81,11 @@ export declare const CredentialSchema: z.ZodDiscriminatedUnion<[z.ZodObject<{
         inbound: "inbound";
         outbound: "outbound";
     }>>;
-}, z.core.$strip>], "type">;
+}, z.core.$strip>], "authorizerType">;
 export type Credential = z.infer<typeof CredentialSchema>;
 export declare const EvaluatorTypeSchema: z.ZodLiteral<"CustomEvaluator">;
 export type EvaluatorType = z.infer<typeof EvaluatorTypeSchema>;
 export declare const EvaluatorSchema: z.ZodObject<{
-    type: z.ZodLiteral<"CustomEvaluator">;
     name: z.ZodString;
     level: z.ZodEnum<{
         SESSION: "SESSION";
@@ -110,11 +114,14 @@ export declare const EvaluatorSchema: z.ZodObject<{
 }, z.core.$strip>;
 export type Evaluator = z.infer<typeof EvaluatorSchema>;
 export declare const AgentCoreProjectSpecSchema: z.ZodObject<{
+    $schema: z.ZodOptional<z.ZodString>;
     name: z.ZodString;
     version: z.ZodNumber;
+    managedBy: z.ZodDefault<z.ZodEnum<{
+        CDK: "CDK";
+    }>>;
     tags: z.ZodOptional<z.ZodRecord<z.ZodString, z.ZodString>>;
-    agents: z.ZodDefault<z.ZodArray<z.ZodObject<{
-        type: z.ZodLiteral<"AgentCoreRuntime">;
+    runtimes: z.ZodDefault<z.ZodArray<z.ZodObject<{
         name: z.ZodString;
         build: z.ZodEnum<{
             CodeZip: "CodeZip";
@@ -147,22 +154,49 @@ export declare const AgentCoreProjectSpecSchema: z.ZodObject<{
         instrumentation: z.ZodOptional<z.ZodObject<{
             enableOtel: z.ZodDefault<z.ZodBoolean>;
         }, z.core.$strip>>;
-        modelProvider: z.ZodOptional<z.ZodEnum<{
-            Bedrock: "Bedrock";
-            Gemini: "Gemini";
-            OpenAI: "OpenAI";
-            Anthropic: "Anthropic";
-        }>>;
         protocol: z.ZodOptional<z.ZodEnum<{
             HTTP: "HTTP";
             MCP: "MCP";
             A2A: "A2A";
         }>>;
         requestHeaderAllowlist: z.ZodOptional<z.ZodArray<z.ZodString>>;
+        authorizerType: z.ZodOptional<z.ZodEnum<{
+            AWS_IAM: "AWS_IAM";
+            CUSTOM_JWT: "CUSTOM_JWT";
+        }>>;
+        authorizerConfiguration: z.ZodOptional<z.ZodObject<{
+            customJwtAuthorizer: z.ZodOptional<z.ZodObject<{
+                discoveryUrl: z.ZodString;
+                allowedAudience: z.ZodOptional<z.ZodArray<z.ZodString>>;
+                allowedClients: z.ZodOptional<z.ZodArray<z.ZodString>>;
+                allowedScopes: z.ZodOptional<z.ZodArray<z.ZodString>>;
+                customClaims: z.ZodOptional<z.ZodArray<z.ZodObject<{
+                    inboundTokenClaimName: z.ZodString;
+                    inboundTokenClaimValueType: z.ZodEnum<{
+                        STRING: "STRING";
+                        STRING_ARRAY: "STRING_ARRAY";
+                    }>;
+                    authorizingClaimMatchValue: z.ZodObject<{
+                        claimMatchOperator: z.ZodEnum<{
+                            EQUALS: "EQUALS";
+                            CONTAINS: "CONTAINS";
+                            CONTAINS_ANY: "CONTAINS_ANY";
+                        }>;
+                        claimMatchValue: z.ZodObject<{
+                            matchValueString: z.ZodOptional<z.ZodString>;
+                            matchValueStringList: z.ZodOptional<z.ZodArray<z.ZodString>>;
+                        }, z.core.$strip>;
+                    }, z.core.$strip>;
+                }, z.core.$strict>>>;
+            }, z.core.$strict>>;
+        }, z.core.$strip>>;
         tags: z.ZodOptional<z.ZodRecord<z.ZodString, z.ZodString>>;
+        lifecycleConfiguration: z.ZodOptional<z.ZodObject<{
+            idleRuntimeSessionTimeout: z.ZodOptional<z.ZodNumber>;
+            maxLifetime: z.ZodOptional<z.ZodNumber>;
+        }, z.core.$strip>>;
     }, z.core.$strip>>>;
     memories: z.ZodDefault<z.ZodArray<z.ZodObject<{
-        type: z.ZodLiteral<"AgentCoreMemory">;
         name: z.ZodString;
         eventExpiryDuration: z.ZodNumber;
         strategies: z.ZodDefault<z.ZodArray<z.ZodObject<{
@@ -170,20 +204,22 @@ export declare const AgentCoreProjectSpecSchema: z.ZodObject<{
                 SEMANTIC: "SEMANTIC";
                 SUMMARIZATION: "SUMMARIZATION";
                 USER_PREFERENCE: "USER_PREFERENCE";
+                EPISODIC: "EPISODIC";
             }>;
             name: z.ZodOptional<z.ZodString>;
             description: z.ZodOptional<z.ZodString>;
             namespaces: z.ZodOptional<z.ZodArray<z.ZodString>>;
+            reflectionNamespaces: z.ZodOptional<z.ZodArray<z.ZodString>>;
         }, z.core.$strip>>>;
         tags: z.ZodOptional<z.ZodRecord<z.ZodString, z.ZodString>>;
     }, z.core.$strip>>>;
     credentials: z.ZodDefault<z.ZodArray<z.ZodDiscriminatedUnion<[z.ZodObject<{
-        type: z.ZodLiteral<"ApiKeyCredentialProvider">;
+        authorizerType: z.ZodLiteral<"ApiKeyCredentialProvider">;
         name: z.ZodString;
     }, z.core.$strip>, z.ZodObject<{
-        type: z.ZodLiteral<"OAuthCredentialProvider">;
+        authorizerType: z.ZodLiteral<"OAuthCredentialProvider">;
         name: z.ZodString;
-        discoveryUrl: z.ZodString;
+        discoveryUrl: z.ZodOptional<z.ZodString>;
         scopes: z.ZodOptional<z.ZodArray<z.ZodString>>;
         vendor: z.ZodDefault<z.ZodString>;
         managed: z.ZodOptional<z.ZodBoolean>;
@@ -191,9 +227,8 @@ export declare const AgentCoreProjectSpecSchema: z.ZodObject<{
             inbound: "inbound";
             outbound: "outbound";
         }>>;
-    }, z.core.$strip>], "type">>>;
+    }, z.core.$strip>], "authorizerType">>>;
     evaluators: z.ZodDefault<z.ZodArray<z.ZodObject<{
-        type: z.ZodLiteral<"CustomEvaluator">;
         name: z.ZodString;
         level: z.ZodEnum<{
             SESSION: "SESSION";
@@ -221,7 +256,6 @@ export declare const AgentCoreProjectSpecSchema: z.ZodObject<{
         tags: z.ZodOptional<z.ZodRecord<z.ZodString, z.ZodString>>;
     }, z.core.$strip>>>;
     onlineEvalConfigs: z.ZodDefault<z.ZodArray<z.ZodObject<{
-        type: z.ZodLiteral<"OnlineEvaluationConfig">;
         name: z.ZodString;
         agent: z.ZodString;
         evaluators: z.ZodArray<z.ZodString>;
@@ -457,7 +491,7 @@ export declare const AgentCoreProjectSpecSchema: z.ZodObject<{
             }, z.core.$loose>>;
         }, z.core.$strict>;
         bindings: z.ZodOptional<z.ZodArray<z.ZodObject<{
-            agentName: z.ZodString;
+            runtimeName: z.ZodString;
             envVarName: z.ZodString;
         }, z.core.$strict>>>;
     }, z.core.$strict>>>;

package/dist/schema/schemas/agentcore-project.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"agentcore-project.d.ts","sourceRoot":"","sources":["../../../src/schema/schemas/agentcore-project.ts"],"names":[],"mappings":"AAWA,OAAO,EAAE,qBAAqB,EAA8C,MAAM,wBAAwB,CAAC;AAC3G,OAAO,EAAE,2BAA2B,EAAE,oBAAoB,EAAE,wBAAwB,EAAE,MAAM,qBAAqB,CAAC;AAElH,OAAO,EAAE,kBAAkB,EAAE,MAAM,qBAAqB,CAAC;AACzD,OAAO,EAAE,UAAU,EAAE,MAAM,mBAAmB,CAAC;AAE/C,OAAO,EAAE,CAAC,EAAE,MAAM,KAAK,CAAC;AAGxB,OAAO,EAAE,2BAA2B,EAAE,oBAAoB,EAAE,wBAAwB,EAAE,CAAC;AACvF,OAAO,EAAE,qBAAqB,EAAE,CAAC;AACjC,YAAY,EAAE,cAAc,EAAE,kBAAkB,EAAE,MAAM,qBAAqB,CAAC;AAC9E,YAAY,EAAE,gBAAgB,EAAE,MAAM,iCAAiC,CAAC;AACxE,OAAO,EAAE,sBAAsB,EAAE,0BAA0B,EAAE,MAAM,iCAAiC,CAAC;AACrG,YAAY,EAAE,eAAe,EAAE,eAAe,EAAE,iBAAiB,EAAE,WAAW,EAAE,MAAM,wBAAwB,CAAC;AAC/G,OAAO,EAAE,oBAAoB,EAAE,qBAAqB,EAAE,mBAAmB,EAAE,MAAM,wBAAwB,CAAC;AAC1G,OAAO,EAAE,kBAAkB,EAAE,CAAC;AAC9B,YAAY,EAAE,MAAM,EAAE,YAAY,EAAE,cAAc,EAAE,MAAM,qBAAqB,CAAC;AAChF,OAAO,EAAE,sBAAsB,EAAE,gBAAgB,EAAE,YAAY,EAAE,oBAAoB,EAAE,MAAM,qBAAqB,CAAC;AACnH,OAAO,EAAE,UAAU,EAAE,CAAC;AACtB,YAAY,EAAE,IAAI,EAAE,MAAM,mBAAmB,CAAC;AAG9C,YAAY,EAAE,gBAAgB,EAAE,sBAAsB,EAAE,uBAAuB,EAAE,MAAM,OAAO,CAAC;AAC/F,OAAO,EAAE,sBAAsB,EAAE,4BAA4B,EAAE,6BAA6B,EAAE,MAAM,OAAO,CAAC;AAM5G,eAAO,MAAM,iBAAiB,aAU1B,CAAC;AAML,eAAO,MAAM,gBAAgB,iCAA+B,CAAC;AAC7D,MAAM,MAAM,UAAU,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,gBAAgB,CAAC,CAAC;AAE1D,eAAO,MAAM,gBAAgB,aAO1B,CAAC;AAEJ,eAAO,MAAM,YAAY;;;;;;;;;;;;;;;iBAgBvB,CAAC;AAEH,MAAM,MAAM,MAAM,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,YAAY,CAAC,CAAC;AAMlD,eAAO,MAAM,oBAAoB,aAO9B,CAAC;AAEJ,eAAO,MAAM,oBAAoB;;;EAAkE,CAAC;AACpG,MAAM,MAAM,cAAc,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,oBAAoB,CAAC,CAAC;AAElE,eAAO,MAAM,sBAAsB;;;iBAGjC,CAAC;AAEH,MAAM,MAAM,gBAAgB,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,sBAAsB,CAAC,CAAC;AAEtE,eAAO,MAAM,qBAAqB;;;;;;;;;;;iBAahC,CAAC;AAEH,MAAM,MAAM,eAAe,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,qBAAqB,CAAC,CAAC;AAEpE,eAAO,MAAM,gBAAgB;;;;;;;;;;;;;;2BAAgF,CAAC;AAE9G,MAAM,MAAM,UAAU,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,gBAAgB,CAAC,CAAC;AAM1D,eAAO,MAAM,mBAAmB,iCAA+B,CAAC;AAChE,MAAM,MAAM,aAAa,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,mBAAmB,CAAC,CAAC;AAEhE,eAAO,MAAM,eAAe;;;;;;;;;;;;;;;;;;;;;;;;;;;iBAO1B,CAAC;AAEH,MAAM,MAAM,SAAS,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,eAAe,CAAC,CAAC;AASxD,eAAO,MAAM,0BAA0B;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;kBA6HnC,CAAC;AAEL,MAAM,MAAM,oBAAoB,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,0BAA0B,CAAC,CAAC"}
+{"version":3,"file":"agentcore-project.d.ts","sourceRoot":"","sources":["../../../src/schema/schemas/agentcore-project.ts"],"names":[],"mappings":"AAWA,OAAO,EAAE,qBAAqB,EAA8C,MAAM,wBAAwB,CAAC;AAC3G,OAAO,EACL,sCAAsC,EACtC,2BAA2B,EAC3B,oBAAoB,EACpB,wBAAwB,EACzB,MAAM,qBAAqB,CAAC;AAE7B,OAAO,EAAE,kBAAkB,EAAE,MAAM,qBAAqB,CAAC;AACzD,OAAO,EAAE,UAAU,EAAE,MAAM,mBAAmB,CAAC;AAE/C,OAAO,EAAE,CAAC,EAAE,MAAM,KAAK,CAAC;AAGxB,OAAO,EACL,sCAAsC,EACtC,2BAA2B,EAC3B,oBAAoB,EACpB,wBAAwB,GACzB,CAAC;AACF,OAAO,EAAE,qBAAqB,EAAE,CAAC;AACjC,YAAY,EAAE,cAAc,EAAE,kBAAkB,EAAE,MAAM,qBAAqB,CAAC;AAC9E,YAAY,EAAE,gBAAgB,EAAE,MAAM,iCAAiC,CAAC;AACxE,OAAO,EAAE,sBAAsB,EAAE,0BAA0B,EAAE,MAAM,iCAAiC,CAAC;AACrG,YAAY,EAAE,eAAe,EAAE,eAAe,EAAE,iBAAiB,EAAE,WAAW,EAAE,MAAM,wBAAwB,CAAC;AAC/G,OAAO,EAAE,oBAAoB,EAAE,qBAAqB,EAAE,mBAAmB,EAAE,MAAM,wBAAwB,CAAC;AAC1G,OAAO,EAAE,kBAAkB,EAAE,CAAC;AAC9B,YAAY,EAAE,MAAM,EAAE,YAAY,EAAE,cAAc,EAAE,MAAM,qBAAqB,CAAC;AAChF,OAAO,EAAE,sBAAsB,EAAE,gBAAgB,EAAE,YAAY,EAAE,oBAAoB,EAAE,MAAM,qBAAqB,CAAC;AACnH,OAAO,EAAE,UAAU,EAAE,CAAC;AACtB,YAAY,EAAE,IAAI,EAAE,MAAM,mBAAmB,CAAC;AAM9C,eAAO,MAAM,eAAe;;GAAiC,CAAC;AAC9D,MAAM,MAAM,SAAS,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,eAAe,CAAC,CAAC;AAGxD,YAAY,EAAE,gBAAgB,EAAE,sBAAsB,EAAE,uBAAuB,EAAE,MAAM,OAAO,CAAC;AAC/F,OAAO,EAAE,sBAAsB,EAAE,4BAA4B,EAAE,6BAA6B,EAAE,MAAM,OAAO,CAAC;AAQ5G,eAAO,MAAM,iBAAiB,aAU1B,CAAC;AAML,eAAO,MAAM,gBAAgB,iCAA+B,CAAC;AAC7D,MAAM,MAAM,UAAU,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,gBAAgB,CAAC,CAAC;AAI1D,eAAO,MAAM,gBAAgB,aAO1B,CAAC;AAEJ,eAAO,MAAM,YAAY;;;;;;;;;;;;;;;;iBAevB,CAAC;AAEH,MAAM,MAAM,MAAM,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,YAAY,CAAC,CAAC;AAOlD,eAAO,MAAM,oBAAoB,aAIiF,CAAC;AAEnH,eAAO,MAAM,oBAAoB;;;EAAkE,CAAC;AACpG,MAAM,MAAM,cAAc,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,oBAAoB,CAAC,CAAC;AAElE,eAAO,MAAM,sBAAsB;;;iBAGjC,CAAC;AAEH,MAAM,MAAM,gBAAgB,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,sBAAsB,CAAC,CAAC;AAEtE,eAAO,MAAM,qBAAqB;;;;;;;;;;;iBAahC,CAAC;AAEH,MAAM,MAAM,eAAe,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,qBAAqB,CAAC,CAAC;AAEpE,eAAO,MAAM,gBAAgB;;;;;;;;;;;;;;qCAA0F,CAAC;AAExH,MAAM,MAAM,UAAU,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,gBAAgB,CAAC,CAAC;AAM1D,eAAO,MAAM,mBAAmB,iCAA+B,CAAC;AAChE,MAAM,MAAM,aAAa,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,mBAAmB,CAAC,CAAC;AAEhE,eAAO,MAAM,eAAe;;;;;;;;;;;;;;;;;;;;;;;;;;iBAM1B,CAAC;AAEH,MAAM,MAAM,SAAS,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,eAAe,CAAC,CAAC;AASxD,eAAO,MAAM,0BAA0B;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;kBA+HnC,CAAC;AAEL,MAAM,MAAM,oBAAoB,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,0BAA0B,CAAC,CAAC"}

package/dist/schema/schemas/agentcore-project.js

@@ -1,6 +1,6 @@
 "use strict";
 Object.defineProperty(exports, "__esModule", { value: true });
-exports.AgentCoreProjectSpecSchema = exports.EvaluatorSchema = exports.EvaluatorTypeSchema = exports.CredentialSchema = exports.OAuthCredentialSchema = exports.ApiKeyCredentialSchema = exports.CredentialTypeSchema = exports.CredentialNameSchema = exports.MemorySchema = exports.MemoryNameSchema = exports.MemoryTypeSchema = exports.ProjectNameSchema = exports.AgentCoreMcpRuntimeToolSchema = exports.AgentCoreGatewayTargetSchema = exports.AgentCoreGatewaySchema = exports.TagsSchema = exports.ValidationModeSchema = exports.PolicySchema = exports.PolicyNameSchema = exports.PolicyEngineNameSchema = exports.PolicyEngineSchema = exports.EvaluatorNameSchema = exports.isValidBedrockModelId = exports.BedrockModelIdSchema = exports.OnlineEvalConfigNameSchema = exports.OnlineEvalConfigSchema = exports.EvaluationLevelSchema = exports.MemoryStrategyTypeSchema = exports.MemoryStrategySchema = exports.DEFAULT_STRATEGY_NAMESPACES = void 0;
+exports.AgentCoreProjectSpecSchema = exports.EvaluatorSchema = exports.EvaluatorTypeSchema = exports.CredentialSchema = exports.OAuthCredentialSchema = exports.ApiKeyCredentialSchema = exports.CredentialTypeSchema = exports.CredentialNameSchema = exports.MemorySchema = exports.MemoryNameSchema = exports.MemoryTypeSchema = exports.ProjectNameSchema = exports.AgentCoreMcpRuntimeToolSchema = exports.AgentCoreGatewayTargetSchema = exports.AgentCoreGatewaySchema = exports.ManagedBySchema = exports.TagsSchema = exports.ValidationModeSchema = exports.PolicySchema = exports.PolicyNameSchema = exports.PolicyEngineNameSchema = exports.PolicyEngineSchema = exports.EvaluatorNameSchema = exports.isValidBedrockModelId = exports.BedrockModelIdSchema = exports.OnlineEvalConfigNameSchema = exports.OnlineEvalConfigSchema = exports.EvaluationLevelSchema = exports.MemoryStrategyTypeSchema = exports.MemoryStrategySchema = exports.DEFAULT_STRATEGY_NAMESPACES = exports.DEFAULT_EPISODIC_REFLECTION_NAMESPACES = void 0;
 /**
  * AgentCore Project Schema - Resource-centric model
  *
@@ -15,6 +15,7 @@ const mcp_1 = require("./mcp");
 const evaluator_1 = require("./primitives/evaluator");
 Object.defineProperty(exports, "EvaluationLevelSchema", { enumerable: true, get: function () { return evaluator_1.EvaluationLevelSchema; } });
 const memory_1 = require("./primitives/memory");
+Object.defineProperty(exports, "DEFAULT_EPISODIC_REFLECTION_NAMESPACES", { enumerable: true, get: function () { return memory_1.DEFAULT_EPISODIC_REFLECTION_NAMESPACES; } });
 Object.defineProperty(exports, "DEFAULT_STRATEGY_NAMESPACES", { enumerable: true, get: function () { return memory_1.DEFAULT_STRATEGY_NAMESPACES; } });
 Object.defineProperty(exports, "MemoryStrategySchema", { enumerable: true, get: function () { return memory_1.MemoryStrategySchema; } });
 Object.defineProperty(exports, "MemoryStrategyTypeSchema", { enumerable: true, get: function () { return memory_1.MemoryStrategyTypeSchema; } });
@@ -37,6 +38,10 @@ Object.defineProperty(exports, "PolicyEngineNameSchema", { enumerable: true, get
 Object.defineProperty(exports, "PolicyNameSchema", { enumerable: true, get: function () { return policy_2.PolicyNameSchema; } });
 Object.defineProperty(exports, "PolicySchema", { enumerable: true, get: function () { return policy_2.PolicySchema; } });
 Object.defineProperty(exports, "ValidationModeSchema", { enumerable: true, get: function () { return policy_2.ValidationModeSchema; } });
+// ============================================================================
+// ManagedBy Schema
+// ============================================================================
+exports.ManagedBySchema = zod_1.z.enum(['CDK']).default('CDK');
 var mcp_2 = require("./mcp");
 Object.defineProperty(exports, "AgentCoreGatewaySchema", { enumerable: true, get: function () { return mcp_2.AgentCoreGatewaySchema; } });
 Object.defineProperty(exports, "AgentCoreGatewayTargetSchema", { enumerable: true, get: function () { return mcp_2.AgentCoreGatewayTargetSchema; } });
@@ -44,6 +49,8 @@ Object.defineProperty(exports, "AgentCoreMcpRuntimeToolSchema", { enumerable: tr
 // ============================================================================
 // Project Name Schema
 // ============================================================================
+// Project name is a CLI-only concept (combined with agent name to form the runtime name).
+// Max 23 so that projectName + "_" + agentName fits within the 48-char runtime name limit.
 exports.ProjectNameSchema = zod_1.z
     .string()
     .min(1, 'Project name is required')
@@ -56,13 +63,14 @@ exports.ProjectNameSchema = zod_1.z
 // Memory Schema
 // ============================================================================
 exports.MemoryTypeSchema = zod_1.z.literal('AgentCoreMemory');
+// Memory names follow the same constraints as agent runtime names.
+// https://docs.aws.amazon.com/bedrock-agentcore-control/latest/APIReference/API_CreateMemory.html
 exports.MemoryNameSchema = zod_1.z
     .string()
     .min(1, 'Name is required')
     .max(48)
     .regex(/^[a-zA-Z][a-zA-Z0-9_]{0,47}$/, 'Must begin with a letter and contain only alphanumeric characters and underscores (max 48 chars)');
 exports.MemorySchema = zod_1.z.object({
-    type: exports.MemoryTypeSchema,
     name: exports.MemoryNameSchema,
     eventExpiryDuration: zod_1.z.number().int().min(7).max(365),
     // Strategies array can be empty for short-term memory (just base memory with expiration)
@@ -76,21 +84,22 @@ exports.MemorySchema = zod_1.z.object({
 // ============================================================================
 // Credential Schema
 // ============================================================================
+// https://docs.aws.amazon.com/bedrock-agentcore-control/latest/APIReference/API_CreateApiKeyCredentialProvider.html
 exports.CredentialNameSchema = zod_1.z
     .string()
-    .min(3, 'Credential name must be at least 3 characters')
-    .max(255)
-    .regex(/^[A-Za-z0-9_.-]+$/, 'Must contain only alphanumeric characters, underscores, dots, and hyphens (3-255 chars)');
+    .min(1, 'Credential name is required')
+    .max(128, 'Credential name must be 128 characters or less')
+    .regex(/^[a-zA-Z0-9\-_]+$/, 'Must contain only alphanumeric characters, hyphens, and underscores (1-128 chars)');
 exports.CredentialTypeSchema = zod_1.z.enum(['ApiKeyCredentialProvider', 'OAuthCredentialProvider']);
 exports.ApiKeyCredentialSchema = zod_1.z.object({
-    type: zod_1.z.literal('ApiKeyCredentialProvider'),
+    authorizerType: zod_1.z.literal('ApiKeyCredentialProvider'),
     name: exports.CredentialNameSchema,
 });
 exports.OAuthCredentialSchema = zod_1.z.object({
-    type: zod_1.z.literal('OAuthCredentialProvider'),
+    authorizerType: zod_1.z.literal('OAuthCredentialProvider'),
     name: exports.CredentialNameSchema,
-    /** OIDC discovery URL for the OAuth provider */
-    discoveryUrl: zod_1.z.string().url(),
+    /** OIDC discovery URL for the OAuth provider (optional for imported providers that already exist in Identity service) */
+    discoveryUrl: zod_1.z.string().url().optional(),
     /** Scopes this credential provider supports */
     scopes: zod_1.z.array(zod_1.z.string()).optional(),
     /** Credential provider vendor type */
@@ -100,13 +109,12 @@ exports.OAuthCredentialSchema = zod_1.z.object({
     /** Whether this credential is used for inbound or outbound auth */
     usage: zod_1.z.enum(['inbound', 'outbound']).optional(),
 });
-exports.CredentialSchema = zod_1.z.discriminatedUnion('type', [exports.ApiKeyCredentialSchema, exports.OAuthCredentialSchema]);
+exports.CredentialSchema = zod_1.z.discriminatedUnion('authorizerType', [exports.ApiKeyCredentialSchema, exports.OAuthCredentialSchema]);
 // ============================================================================
 // Evaluator Schema
 // ============================================================================
 exports.EvaluatorTypeSchema = zod_1.z.literal('CustomEvaluator');
 exports.EvaluatorSchema = zod_1.z.object({
-    type: exports.EvaluatorTypeSchema,
     name: evaluator_1.EvaluatorNameSchema,
     level: evaluator_1.EvaluationLevelSchema,
     description: zod_1.z.string().optional(),
@@ -120,10 +128,12 @@ const BUILTIN_EVALUATOR_PREFIX = 'Builtin.';
 const ARN_PREFIX = 'arn:';
 exports.AgentCoreProjectSpecSchema = zod_1.z
     .object({
+    $schema: zod_1.z.string().optional(),
     name: exports.ProjectNameSchema,
-    version: zod_1.z.number().int(),
+    version: zod_1.z.number().int().min(1),
+    managedBy: exports.ManagedBySchema,
     tags: tags_1.TagsSchema.optional(),
-    agents: zod_1.z
+    runtimes: zod_1.z
         .array(agent_env_1.AgentEnvSpecSchema)
         .default([])
         .superRefine((0, zod_util_1.uniqueBy)(agent => agent.name, name => `Duplicate agent name: ${name}`)),
@@ -171,7 +181,7 @@ exports.AgentCoreProjectSpecSchema = zod_1.z
 })
     .strict()
     .superRefine((spec, ctx) => {
-    const agentNames = new Set(spec.agents.map(a => a.name));
+    const agentNames = new Set(spec.runtimes.map(a => a.name));
     const evaluatorNames = new Set(spec.evaluators.map(e => e.name));
     for (const config of spec.onlineEvalConfigs) {
         // Validate agent reference

package/dist/schema/schemas/agentcore-project.js.map

@@ -1 +1 @@
-{"version":3,"file":"agentcore-project.js","sourceRoot":"","sources":["../../../src/schema/schemas/agentcore-project.ts"],"names":[],"mappings":";;;AAAA;;;;;;;GAOG;AACH,4CAAqD;AACrD,2CAAiD;AACjD,+BAA4G;AAC5G,sDAA2G;AAUlG,sGAVA,iCAAqB,OAUA;AAT9B,gDAAkH;AAQzG,4GARA,oCAA2B,OAQA;AAAE,qGARA,6BAAoB,OAQA;AAAE,yGARA,iCAAwB,OAQA;AAPpF,wEAAyE;AACzE,gDAAyD;AAahD,mGAbA,2BAAkB,OAaA;AAZ3B,4CAA+C;AAetC,2FAfA,iBAAU,OAeA;AAdnB,yCAAsC;AACtC,6BAAwB;AAOxB,sEAAqG;AAA5F,4HAAA,sBAAsB,OAAA;AAAE,gIAAA,0BAA0B,OAAA;AAE3D,oDAA0G;AAAjG,iHAAA,oBAAoB,OAAA;AAAE,kHAAA,qBAAqB,OAAA;AAAE,gHAAA,mBAAmB,OAAA;AAGzE,8CAAmH;AAA1G,gHAAA,sBAAsB,OAAA;AAAE,0GAAA,gBAAgB,OAAA;AAAE,sGAAA,YAAY,OAAA;AAAE,8GAAA,oBAAoB,OAAA;AAMrF,6BAA4G;AAAnG,6GAAA,sBAAsB,OAAA;AAAE,mHAAA,4BAA4B,OAAA;AAAE,oHAAA,6BAA6B,OAAA;AAE5F,+EAA+E;AAC/E,sBAAsB;AACtB,+EAA+E;AAElE,QAAA,iBAAiB,GAAG,OAAC;KAC/B,MAAM,EAAE;KACR,GAAG,CAAC,CAAC,EAAE,0BAA0B,CAAC;KAClC,GAAG,CAAC,EAAE,EAAE,4CAA4C,CAAC;KACrD,KAAK,CACJ,6BAA6B,EAC7B,gFAAgF,CACjF;KACA,MAAM,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC,IAAA,iCAAqB,EAAC,IAAI,CAAC,EAAE;IAC5C,OAAO,EAAE,uFAAuF;CACjG,CAAC,CAAC;AAEL,+EAA+E;AAC/E,gBAAgB;AAChB,+EAA+E;AAElE,QAAA,gBAAgB,GAAG,OAAC,CAAC,OAAO,CAAC,iBAAiB,CAAC,CAAC;AAGhD,QAAA,gBAAgB,GAAG,OAAC;KAC9B,MAAM,EAAE;KACR,GAAG,CAAC,CAAC,EAAE,kBAAkB,CAAC;KAC1B,GAAG,CAAC,EAAE,CAAC;KACP,KAAK,CACJ,8BAA8B,EAC9B,kGAAkG,CACnG,CAAC;AAES,QAAA,YAAY,GAAG,OAAC,CAAC,MAAM,CAAC;IACnC,IAAI,EAAE,wBAAgB;IACtB,IAAI,EAAE,wBAAgB;IACtB,mBAAmB,EAAE,OAAC,CAAC,MAAM,EAAE,CAAC,GAAG,EAAE,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,GAAG,CAAC,GAAG,CAAC;IACrD,yFAAyF;IACzF,qFAAqF;IACrF,UAAU,EAAE,OAAC;SACV,KAAK,CAAC,6BAAoB,CAAC;SAC3B,OAAO,CAAC,EAAE,CAAC;SACX,WAAW,CACV,IAAA,mBAAQ,EACN,QAAQ,CAAC,EAAE,CAAC,QAAQ,CAAC,IAAI,EACzB,IAAI,CAAC,EAAE,CAAC,mCAAmC,IAAI,EAAE,CAClD,CACF;IACH,IAAI,EAAE,iBAAU,CAAC,QAAQ,EAAE;CAC5B,CAAC,CAAC;AAIH,+EAA+E;AAC/E,oBAAoB;AACpB,+EAA+E;AAElE,QAAA,oBAAoB,GAAG,OAAC;KAClC,MAAM,EAAE;KACR,GAAG,CAAC,CAAC,EAAE,+CAA+C,CAAC;KACvD,GAAG,CAAC,GAAG,CAAC;KACR,KAAK,CACJ,mBAAmB,EACnB,yFAAyF,CAC1F,CAAC;AAES,QAAA,oBAAoB,GAAG,OAAC,CAAC,IAAI,CAAC,CAAC,0BAA0B,EAAE,yBAAyB,CAAC,CAAC,CAAC;AAGvF,QAAA,sBAAsB,GAAG,OAAC,CAAC,MAAM,CAAC;IAC7C,IAAI,EAAE,OAAC,CAAC,OAAO,CAAC,0BAA0B,CAAC;IAC3C,IAAI,EAAE,4BAAoB;CAC3B,CAAC,CAAC;AAIU,QAAA,qBAAqB,GAAG,OAAC,CAAC,MAAM,CAAC;IAC5C,IAAI,EAAE,OAAC,CAAC,OAAO,CAAC,yBAAyB,CAAC;IAC1C,IAAI,EAAE,4BAAoB;IAC1B,gDAAgD;IAChD,YAAY,EAAE,OAAC,CAAC,MAAM,EAAE,CAAC,GAAG,EAAE;IAC9B,+CAA+C;IAC/C,MAAM,EAAE,OAAC,CAAC,KAAK,CAAC,OAAC,CAAC,MAAM,EAAE,CAAC,CAAC,QAAQ,EAAE;IACtC,sCAAsC;IACtC,MAAM,EAAE,OAAC,CAAC,MAAM,EAAE,CAAC,OAAO,CAAC,cAAc,CAAC;IAC1C,8FAA8F;IAC9F,OAAO,EAAE,OAAC,CAAC,OAAO,EAAE,CAAC,QAAQ,EAAE;IAC/B,mEAAmE;IACnE,KAAK,EAAE,OAAC,CAAC,IAAI,CAAC,CAAC,SAAS,EAAE,UAAU,CAAC,CAAC,CAAC,QAAQ,EAAE;CAClD,CAAC,CAAC;AAIU,QAAA,gBAAgB,GAAG,OAAC,CAAC,kBAAkB,CAAC,MAAM,EAAE,CAAC,8BAAsB,EAAE,6BAAqB,CAAC,CAAC,CAAC;AAI9G,+EAA+E;AAC/E,mBAAmB;AACnB,+EAA+E;AAElE,QAAA,mBAAmB,GAAG,OAAC,CAAC,OAAO,CAAC,iBAAiB,CAAC,CAAC;AAGnD,QAAA,eAAe,GAAG,OAAC,CAAC,MAAM,CAAC;IACtC,IAAI,EAAE,2BAAmB;IACzB,IAAI,EAAE,+BAAmB;IACzB,KAAK,EAAE,iCAAqB;IAC5B,WAAW,EAAE,OAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;IAClC,MAAM,EAAE,iCAAqB;IAC7B,IAAI,EAAE,iBAAU,CAAC,QAAQ,EAAE;CAC5B,CAAC,CAAC;AAIH,+EAA+E;AAC/E,6BAA6B;AAC7B,+EAA+E;AAE/E,MAAM,wBAAwB,GAAG,UAAU,CAAC;AAC5C,MAAM,UAAU,GAAG,MAAM,CAAC;AAEb,QAAA,0BAA0B,GAAG,OAAC;KACxC,MAAM,CAAC;IACN,IAAI,EAAE,yBAAiB;IACvB,OAAO,EAAE,OAAC,CAAC,MAAM,EAAE,CAAC,GAAG,EAAE;IACzB,IAAI,EAAE,iBAAU,CAAC,QAAQ,EAAE;IAE3B,MAAM,EAAE,OAAC;SACN,KAAK,CAAC,8BAAkB,CAAC;SACzB,OAAO,CAAC,EAAE,CAAC;SACX,WAAW,CACV,IAAA,mBAAQ,EACN,KAAK,CAAC,EAAE,CAAC,KAAK,CAAC,IAAI,EACnB,IAAI,CAAC,EAAE,CAAC,yBAAyB,IAAI,EAAE,CACxC,CACF;IAEH,QAAQ,EAAE,OAAC;SACR,KAAK,CAAC,oBAAY,CAAC;SACnB,OAAO,CAAC,EAAE,CAAC;SACX,WAAW,CACV,IAAA,mBAAQ,EACN,MAAM,CAAC,EAAE,CAAC,MAAM,CAAC,IAAI,EACrB,IAAI,CAAC,EAAE,CAAC,0BAA0B,IAAI,EAAE,CACzC,CACF;IAEH,WAAW,EAAE,OAAC;SACX,KAAK,CAAC,wBAAgB,CAAC;SACvB,OAAO,CAAC,EAAE,CAAC;SACX,WAAW,CACV,IAAA,mBAAQ,EACN,UAAU,CAAC,EAAE,CAAC,UAAU,CAAC,IAAI,EAC7B,IAAI,CAAC,EAAE,CAAC,8BAA8B,IAAI,EAAE,CAC7C,CACF;IAEH,UAAU,EAAE,OAAC;SACV,KAAK,CAAC,uBAAe,CAAC;SACtB,OAAO,CAAC,EAAE,CAAC;SACX,WAAW,CACV,IAAA,mBAAQ,EACN,SAAS,CAAC,EAAE,CAAC,SAAS,CAAC,IAAI,EAC3B,IAAI,CAAC,EAAE,CAAC,6BAA6B,IAAI,EAAE,CAC5C,CACF;IAEH,iBAAiB,EAAE,OAAC;SACjB,KAAK,CAAC,2CAAsB,CAAC;SAC7B,OAAO,CAAC,EAAE,CAAC;SACX,WAAW,CACV,IAAA,mBAAQ,EACN,MAAM,CAAC,EAAE,CAAC,MAAM,CAAC,IAAI,EACrB,IAAI,CAAC,EAAE,CAAC,sCAAsC,IAAI,EAAE,CACrD,CACF;IAEH,mDAAmD;IACnD,iBAAiB,EAAE,OAAC;SACjB,KAAK,CAAC,4BAAsB,CAAC;SAC7B,OAAO,CAAC,EAAE,CAAC;SACX,WAAW,CACV,IAAA,mBAAQ,EACN,OAAO,CAAC,EAAE,CAAC,OAAO,CAAC,IAAI,EACvB,IAAI,CAAC,EAAE,CAAC,2BAA2B,IAAI,EAAE,CAC1C,CACF;IAEH,eAAe,EAAE,OAAC;SACf,KAAK,CAAC,mCAA6B,CAAC;SACpC,QAAQ,EAAE;SACV,WAAW,CAAC,CAAC,KAAK,EAAE,GAAG,EAAE,EAAE;QAC1B,IAAI,CAAC,KAAK;YAAE,OAAO;QACnB,IAAA,mBAAQ,EACN,CAAC,IAAsB,EAAE,EAAE,CAAC,IAAI,CAAC,IAAI,EACrC,CAAC,IAAY,EAAE,EAAE,CAAC,oCAAoC,IAAI,EAAE,CAC7D,CAAC,KAAK,EAAE,GAAG,CAAC,CAAC;IAChB,CAAC,CAAC;IAEJ,iBAAiB,EAAE,OAAC;SACjB,KAAK,CAAC,kCAA4B,CAAC;SACnC,QAAQ,EAAE;SACV,WAAW,CAAC,CAAC,OAAO,EAAE,GAAG,EAAE,EAAE;QAC5B,IAAI,CAAC,OAAO;YAAE,OAAO;QACrB,IAAA,mBAAQ,EACN,CAAC,MAAwB,EAAE,EAAE,CAAC,MAAM,CAAC,IAAI,EACzC,CAAC,IAAY,EAAE,EAAE,CAAC,qCAAqC,IAAI,EAAE,CAC9D,CAAC,OAAO,EAAE,GAAG,CAAC,CAAC;IAClB,CAAC,CAAC;IAEJ,aAAa,EAAE,OAAC;SACb,KAAK,CAAC,2BAAkB,CAAC;SACzB,OAAO,CAAC,EAAE,CAAC;SACX,WAAW,CACV,IAAA,mBAAQ,EACN,MAAM,CAAC,EAAE,CAAC,MAAM,CAAC,IAAI,EACrB,IAAI,CAAC,EAAE,CAAC,iCAAiC,IAAI,EAAE,CAChD,CACF;CACJ,CAAC;KACD,MAAM,EAAE;KACR,WAAW,CAAC,CAAC,IAAI,EAAE,GAAG,EAAE,EAAE;IACzB,MAAM,UAAU,GAAG,IAAI,GAAG,CAAC,IAAI,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC;IACzD,MAAM,cAAc,GAAG,IAAI,GAAG,CAAC,IAAI,CAAC,UAAU,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC;IAEjE,KAAK,MAAM,MAAM,IAAI,IAAI,CAAC,iBAAiB,EAAE,CAAC;QAC5C,2BAA2B;QAC3B,IAAI,CAAC,UAAU,CAAC,GAAG,CAAC,MAAM,CAAC,KAAK,CAAC,EAAE,CAAC;YAClC,GAAG,CAAC,QAAQ,CAAC;gBACX,IAAI,EAAE,OAAC,CAAC,YAAY,CAAC,MAAM;gBAC3B,OAAO,EAAE,uBAAuB,MAAM,CAAC,IAAI,+BAA+B,MAAM,CAAC,KAAK,GAAG;aAC1F,CAAC,CAAC;QACL,CAAC;QAED,gCAAgC;QAChC,KAAK,MAAM,QAAQ,IAAI,MAAM,CAAC,UAAU,EAAE,CAAC;YACzC,mEAAmE;YACnE,IAAI,QAAQ,CAAC,UAAU,CAAC,wBAAwB,CAAC,IAAI,QAAQ,CAAC,UAAU,CAAC,UAAU,CAAC;gBAAE,SAAS;YAC/F,IAAI,CAAC,cAAc,CAAC,GAAG,CAAC,QAAQ,CAAC,EAAE,CAAC;gBAClC,GAAG,CAAC,QAAQ,CAAC;oBACX,IAAI,EAAE,OAAC,CAAC,YAAY,CAAC,MAAM;oBAC3B,OAAO,EAAE,uBAAuB,MAAM,CAAC,IAAI,mCAAmC,QAAQ,GAAG;iBAC1F,CAAC,CAAC;YACL,CAAC;QACH,CAAC;IACH,CAAC;AACH,CAAC,CAAC,CAAC"}
+{"version":3,"file":"agentcore-project.js","sourceRoot":"","sources":["../../../src/schema/schemas/agentcore-project.ts"],"names":[],"mappings":";;;AAAA;;;;;;;GAOG;AACH,4CAAqD;AACrD,2CAAiD;AACjD,+BAA4G;AAC5G,sDAA2G;AAoBlG,sGApBA,iCAAqB,OAoBA;AAnB9B,gDAK6B;AAS3B,uHAbA,+CAAsC,OAaA;AACtC,4GAbA,oCAA2B,OAaA;AAC3B,qGAbA,6BAAoB,OAaA;AACpB,yGAbA,iCAAwB,OAaA;AAX1B,wEAAyE;AACzE,gDAAyD;AAkBhD,mGAlBA,2BAAkB,OAkBA;AAjB3B,4CAA+C;AAoBtC,2FApBA,iBAAU,OAoBA;AAnBnB,yCAAsC;AACtC,6BAAwB;AAYxB,sEAAqG;AAA5F,4HAAA,sBAAsB,OAAA;AAAE,gIAAA,0BAA0B,OAAA;AAE3D,oDAA0G;AAAjG,iHAAA,oBAAoB,OAAA;AAAE,kHAAA,qBAAqB,OAAA;AAAE,gHAAA,mBAAmB,OAAA;AAGzE,8CAAmH;AAA1G,gHAAA,sBAAsB,OAAA;AAAE,0GAAA,gBAAgB,OAAA;AAAE,sGAAA,YAAY,OAAA;AAAE,8GAAA,oBAAoB,OAAA;AAIrF,+EAA+E;AAC/E,mBAAmB;AACnB,+EAA+E;AAElE,QAAA,eAAe,GAAG,OAAC,CAAC,IAAI,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,OAAO,CAAC,KAAK,CAAC,CAAC;AAK9D,6BAA4G;AAAnG,6GAAA,sBAAsB,OAAA;AAAE,mHAAA,4BAA4B,OAAA;AAAE,oHAAA,6BAA6B,OAAA;AAE5F,+EAA+E;AAC/E,sBAAsB;AACtB,+EAA+E;AAE/E,0FAA0F;AAC1F,2FAA2F;AAC9E,QAAA,iBAAiB,GAAG,OAAC;KAC/B,MAAM,EAAE;KACR,GAAG,CAAC,CAAC,EAAE,0BAA0B,CAAC;KAClC,GAAG,CAAC,EAAE,EAAE,4CAA4C,CAAC;KACrD,KAAK,CACJ,6BAA6B,EAC7B,gFAAgF,CACjF;KACA,MAAM,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC,IAAA,iCAAqB,EAAC,IAAI,CAAC,EAAE;IAC5C,OAAO,EAAE,uFAAuF;CACjG,CAAC,CAAC;AAEL,+EAA+E;AAC/E,gBAAgB;AAChB,+EAA+E;AAElE,QAAA,gBAAgB,GAAG,OAAC,CAAC,OAAO,CAAC,iBAAiB,CAAC,CAAC;AAG7D,mEAAmE;AACnE,kGAAkG;AACrF,QAAA,gBAAgB,GAAG,OAAC;KAC9B,MAAM,EAAE;KACR,GAAG,CAAC,CAAC,EAAE,kBAAkB,CAAC;KAC1B,GAAG,CAAC,EAAE,CAAC;KACP,KAAK,CACJ,8BAA8B,EAC9B,kGAAkG,CACnG,CAAC;AAES,QAAA,YAAY,GAAG,OAAC,CAAC,MAAM,CAAC;IACnC,IAAI,EAAE,wBAAgB;IACtB,mBAAmB,EAAE,OAAC,CAAC,MAAM,EAAE,CAAC,GAAG,EAAE,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,GAAG,CAAC,GAAG,CAAC;IACrD,yFAAyF;IACzF,qFAAqF;IACrF,UAAU,EAAE,OAAC;SACV,KAAK,CAAC,6BAAoB,CAAC;SAC3B,OAAO,CAAC,EAAE,CAAC;SACX,WAAW,CACV,IAAA,mBAAQ,EACN,QAAQ,CAAC,EAAE,CAAC,QAAQ,CAAC,IAAI,EACzB,IAAI,CAAC,EAAE,CAAC,mCAAmC,IAAI,EAAE,CAClD,CACF;IACH,IAAI,EAAE,iBAAU,CAAC,QAAQ,EAAE;CAC5B,CAAC,CAAC;AAIH,+EAA+E;AAC/E,oBAAoB;AACpB,+EAA+E;AAE/E,oHAAoH;AACvG,QAAA,oBAAoB,GAAG,OAAC;KAClC,MAAM,EAAE;KACR,GAAG,CAAC,CAAC,EAAE,6BAA6B,CAAC;KACrC,GAAG,CAAC,GAAG,EAAE,gDAAgD,CAAC;KAC1D,KAAK,CAAC,mBAAmB,EAAE,mFAAmF,CAAC,CAAC;AAEtG,QAAA,oBAAoB,GAAG,OAAC,CAAC,IAAI,CAAC,CAAC,0BAA0B,EAAE,yBAAyB,CAAC,CAAC,CAAC;AAGvF,QAAA,sBAAsB,GAAG,OAAC,CAAC,MAAM,CAAC;IAC7C,cAAc,EAAE,OAAC,CAAC,OAAO,CAAC,0BAA0B,CAAC;IACrD,IAAI,EAAE,4BAAoB;CAC3B,CAAC,CAAC;AAIU,QAAA,qBAAqB,GAAG,OAAC,CAAC,MAAM,CAAC;IAC5C,cAAc,EAAE,OAAC,CAAC,OAAO,CAAC,yBAAyB,CAAC;IACpD,IAAI,EAAE,4BAAoB;IAC1B,yHAAyH;IACzH,YAAY,EAAE,OAAC,CAAC,MAAM,EAAE,CAAC,GAAG,EAAE,CAAC,QAAQ,EAAE;IACzC,+CAA+C;IAC/C,MAAM,EAAE,OAAC,CAAC,KAAK,CAAC,OAAC,CAAC,MAAM,EAAE,CAAC,CAAC,QAAQ,EAAE;IACtC,sCAAsC;IACtC,MAAM,EAAE,OAAC,CAAC,MAAM,EAAE,CAAC,OAAO,CAAC,cAAc,CAAC;IAC1C,8FAA8F;IAC9F,OAAO,EAAE,OAAC,CAAC,OAAO,EAAE,CAAC,QAAQ,EAAE;IAC/B,mEAAmE;IACnE,KAAK,EAAE,OAAC,CAAC,IAAI,CAAC,CAAC,SAAS,EAAE,UAAU,CAAC,CAAC,CAAC,QAAQ,EAAE;CAClD,CAAC,CAAC;AAIU,QAAA,gBAAgB,GAAG,OAAC,CAAC,kBAAkB,CAAC,gBAAgB,EAAE,CAAC,8BAAsB,EAAE,6BAAqB,CAAC,CAAC,CAAC;AAIxH,+EAA+E;AAC/E,mBAAmB;AACnB,+EAA+E;AAElE,QAAA,mBAAmB,GAAG,OAAC,CAAC,OAAO,CAAC,iBAAiB,CAAC,CAAC;AAGnD,QAAA,eAAe,GAAG,OAAC,CAAC,MAAM,CAAC;IACtC,IAAI,EAAE,+BAAmB;IACzB,KAAK,EAAE,iCAAqB;IAC5B,WAAW,EAAE,OAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;IAClC,MAAM,EAAE,iCAAqB;IAC7B,IAAI,EAAE,iBAAU,CAAC,QAAQ,EAAE;CAC5B,CAAC,CAAC;AAIH,+EAA+E;AAC/E,6BAA6B;AAC7B,+EAA+E;AAE/E,MAAM,wBAAwB,GAAG,UAAU,CAAC;AAC5C,MAAM,UAAU,GAAG,MAAM,CAAC;AAEb,QAAA,0BAA0B,GAAG,OAAC;KACxC,MAAM,CAAC;IACN,OAAO,EAAE,OAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;IAC9B,IAAI,EAAE,yBAAiB;IACvB,OAAO,EAAE,OAAC,CAAC,MAAM,EAAE,CAAC,GAAG,EAAE,CAAC,GAAG,CAAC,CAAC,CAAC;IAChC,SAAS,EAAE,uBAAe;IAC1B,IAAI,EAAE,iBAAU,CAAC,QAAQ,EAAE;IAE3B,QAAQ,EAAE,OAAC;SACR,KAAK,CAAC,8BAAkB,CAAC;SACzB,OAAO,CAAC,EAAE,CAAC;SACX,WAAW,CACV,IAAA,mBAAQ,EACN,KAAK,CAAC,EAAE,CAAC,KAAK,CAAC,IAAI,EACnB,IAAI,CAAC,EAAE,CAAC,yBAAyB,IAAI,EAAE,CACxC,CACF;IAEH,QAAQ,EAAE,OAAC;SACR,KAAK,CAAC,oBAAY,CAAC;SACnB,OAAO,CAAC,EAAE,CAAC;SACX,WAAW,CACV,IAAA,mBAAQ,EACN,MAAM,CAAC,EAAE,CAAC,MAAM,CAAC,IAAI,EACrB,IAAI,CAAC,EAAE,CAAC,0BAA0B,IAAI,EAAE,CACzC,CACF;IAEH,WAAW,EAAE,OAAC;SACX,KAAK,CAAC,wBAAgB,CAAC;SACvB,OAAO,CAAC,EAAE,CAAC;SACX,WAAW,CACV,IAAA,mBAAQ,EACN,UAAU,CAAC,EAAE,CAAC,UAAU,CAAC,IAAI,EAC7B,IAAI,CAAC,EAAE,CAAC,8BAA8B,IAAI,EAAE,CAC7C,CACF;IAEH,UAAU,EAAE,OAAC;SACV,KAAK,CAAC,uBAAe,CAAC;SACtB,OAAO,CAAC,EAAE,CAAC;SACX,WAAW,CACV,IAAA,mBAAQ,EACN,SAAS,CAAC,EAAE,CAAC,SAAS,CAAC,IAAI,EAC3B,IAAI,CAAC,EAAE,CAAC,6BAA6B,IAAI,EAAE,CAC5C,CACF;IAEH,iBAAiB,EAAE,OAAC;SACjB,KAAK,CAAC,2CAAsB,CAAC;SAC7B,OAAO,CAAC,EAAE,CAAC;SACX,WAAW,CACV,IAAA,mBAAQ,EACN,MAAM,CAAC,EAAE,CAAC,MAAM,CAAC,IAAI,EACrB,IAAI,CAAC,EAAE,CAAC,sCAAsC,IAAI,EAAE,CACrD,CACF;IAEH,mDAAmD;IACnD,iBAAiB,EAAE,OAAC;SACjB,KAAK,CAAC,4BAAsB,CAAC;SAC7B,OAAO,CAAC,EAAE,CAAC;SACX,WAAW,CACV,IAAA,mBAAQ,EACN,OAAO,CAAC,EAAE,CAAC,OAAO,CAAC,IAAI,EACvB,IAAI,CAAC,EAAE,CAAC,2BAA2B,IAAI,EAAE,CAC1C,CACF;IAEH,eAAe,EAAE,OAAC;SACf,KAAK,CAAC,mCAA6B,CAAC;SACpC,QAAQ,EAAE;SACV,WAAW,CAAC,CAAC,KAAK,EAAE,GAAG,EAAE,EAAE;QAC1B,IAAI,CAAC,KAAK;YAAE,OAAO;QACnB,IAAA,mBAAQ,EACN,CAAC,IAAsB,EAAE,EAAE,CAAC,IAAI,CAAC,IAAI,EACrC,CAAC,IAAY,EAAE,EAAE,CAAC,oCAAoC,IAAI,EAAE,CAC7D,CAAC,KAAK,EAAE,GAAG,CAAC,CAAC;IAChB,CAAC,CAAC;IAEJ,iBAAiB,EAAE,OAAC;SACjB,KAAK,CAAC,kCAA4B,CAAC;SACnC,QAAQ,EAAE;SACV,WAAW,CAAC,CAAC,OAAO,EAAE,GAAG,EAAE,EAAE;QAC5B,IAAI,CAAC,OAAO;YAAE,OAAO;QACrB,IAAA,mBAAQ,EACN,CAAC,MAAwB,EAAE,EAAE,CAAC,MAAM,CAAC,IAAI,EACzC,CAAC,IAAY,EAAE,EAAE,CAAC,qCAAqC,IAAI,EAAE,CAC9D,CAAC,OAAO,EAAE,GAAG,CAAC,CAAC;IAClB,CAAC,CAAC;IAEJ,aAAa,EAAE,OAAC;SACb,KAAK,CAAC,2BAAkB,CAAC;SACzB,OAAO,CAAC,EAAE,CAAC;SACX,WAAW,CACV,IAAA,mBAAQ,EACN,MAAM,CAAC,EAAE,CAAC,MAAM,CAAC,IAAI,EACrB,IAAI,CAAC,EAAE,CAAC,iCAAiC,IAAI,EAAE,CAChD,CACF;CACJ,CAAC;KACD,MAAM,EAAE;KACR,WAAW,CAAC,CAAC,IAAI,EAAE,GAAG,EAAE,EAAE;IACzB,MAAM,UAAU,GAAG,IAAI,GAAG,CAAC,IAAI,CAAC,QAAQ,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC;IAC3D,MAAM,cAAc,GAAG,IAAI,GAAG,CAAC,IAAI,CAAC,UAAU,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC;IAEjE,KAAK,MAAM,MAAM,IAAI,IAAI,CAAC,iBAAiB,EAAE,CAAC;QAC5C,2BAA2B;QAC3B,IAAI,CAAC,UAAU,CAAC,GAAG,CAAC,MAAM,CAAC,KAAK,CAAC,EAAE,CAAC;YAClC,GAAG,CAAC,QAAQ,CAAC;gBACX,IAAI,EAAE,OAAC,CAAC,YAAY,CAAC,MAAM;gBAC3B,OAAO,EAAE,uBAAuB,MAAM,CAAC,IAAI,+BAA+B,MAAM,CAAC,KAAK,GAAG;aAC1F,CAAC,CAAC;QACL,CAAC;QAED,gCAAgC;QAChC,KAAK,MAAM,QAAQ,IAAI,MAAM,CAAC,UAAU,EAAE,CAAC;YACzC,mEAAmE;YACnE,IAAI,QAAQ,CAAC,UAAU,CAAC,wBAAwB,CAAC,IAAI,QAAQ,CAAC,UAAU,CAAC,UAAU,CAAC;gBAAE,SAAS;YAC/F,IAAI,CAAC,cAAc,CAAC,GAAG,CAAC,QAAQ,CAAC,EAAE,CAAC;gBAClC,GAAG,CAAC,QAAQ,CAAC;oBACX,IAAI,EAAE,OAAC,CAAC,YAAY,CAAC,MAAM;oBAC3B,OAAO,EAAE,uBAAuB,MAAM,CAAC,IAAI,mCAAmC,QAAQ,GAAG;iBAC1F,CAAC,CAAC;YACL,CAAC;QACH,CAAC;IACH,CAAC;AACH,CAAC,CAAC,CAAC"}

package/dist/schema/schemas/auth.d.ts

@@ -0,0 +1,140 @@
+import { z } from 'zod';
+export declare const GatewayAuthorizerTypeSchema: z.ZodEnum<{
+    NONE: "NONE";
+    AWS_IAM: "AWS_IAM";
+    CUSTOM_JWT: "CUSTOM_JWT";
+}>;
+export type GatewayAuthorizerType = z.infer<typeof GatewayAuthorizerTypeSchema>;
+export declare const RuntimeAuthorizerTypeSchema: z.ZodEnum<{
+    AWS_IAM: "AWS_IAM";
+    CUSTOM_JWT: "CUSTOM_JWT";
+}>;
+export type RuntimeAuthorizerType = z.infer<typeof RuntimeAuthorizerTypeSchema>;
+export declare const ClaimMatchOperatorSchema: z.ZodEnum<{
+    EQUALS: "EQUALS";
+    CONTAINS: "CONTAINS";
+    CONTAINS_ANY: "CONTAINS_ANY";
+}>;
+export type ClaimMatchOperator = z.infer<typeof ClaimMatchOperatorSchema>;
+export declare const ClaimMatchValueSchema: z.ZodObject<{
+    matchValueString: z.ZodOptional<z.ZodString>;
+    matchValueStringList: z.ZodOptional<z.ZodArray<z.ZodString>>;
+}, z.core.$strip>;
+export type ClaimMatchValue = z.infer<typeof ClaimMatchValueSchema>;
+export declare const InboundTokenClaimValueTypeSchema: z.ZodEnum<{
+    STRING: "STRING";
+    STRING_ARRAY: "STRING_ARRAY";
+}>;
+export type InboundTokenClaimValueType = z.infer<typeof InboundTokenClaimValueTypeSchema>;
+export declare const CustomClaimValidationSchema: z.ZodObject<{
+    inboundTokenClaimName: z.ZodString;
+    inboundTokenClaimValueType: z.ZodEnum<{
+        STRING: "STRING";
+        STRING_ARRAY: "STRING_ARRAY";
+    }>;
+    authorizingClaimMatchValue: z.ZodObject<{
+        claimMatchOperator: z.ZodEnum<{
+            EQUALS: "EQUALS";
+            CONTAINS: "CONTAINS";
+            CONTAINS_ANY: "CONTAINS_ANY";
+        }>;
+        claimMatchValue: z.ZodObject<{
+            matchValueString: z.ZodOptional<z.ZodString>;
+            matchValueStringList: z.ZodOptional<z.ZodArray<z.ZodString>>;
+        }, z.core.$strip>;
+    }, z.core.$strip>;
+}, z.core.$strict>;
+export type CustomClaimValidation = z.infer<typeof CustomClaimValidationSchema>;
+/**
+ * Custom JWT authorizer configuration.
+ * Used when authorizerType is 'CUSTOM_JWT'.
+ *
+ * At least one of allowedAudience, allowedClients, allowedScopes, or customClaims
+ * must be provided. Only discoveryUrl is unconditionally required.
+ */
+export declare const CustomJwtAuthorizerConfigSchema: z.ZodObject<{
+    discoveryUrl: z.ZodString;
+    allowedAudience: z.ZodOptional<z.ZodArray<z.ZodString>>;
+    allowedClients: z.ZodOptional<z.ZodArray<z.ZodString>>;
+    allowedScopes: z.ZodOptional<z.ZodArray<z.ZodString>>;
+    customClaims: z.ZodOptional<z.ZodArray<z.ZodObject<{
+        inboundTokenClaimName: z.ZodString;
+        inboundTokenClaimValueType: z.ZodEnum<{
+            STRING: "STRING";
+            STRING_ARRAY: "STRING_ARRAY";
+        }>;
+        authorizingClaimMatchValue: z.ZodObject<{
+            claimMatchOperator: z.ZodEnum<{
+                EQUALS: "EQUALS";
+                CONTAINS: "CONTAINS";
+                CONTAINS_ANY: "CONTAINS_ANY";
+            }>;
+            claimMatchValue: z.ZodObject<{
+                matchValueString: z.ZodOptional<z.ZodString>;
+                matchValueStringList: z.ZodOptional<z.ZodArray<z.ZodString>>;
+            }, z.core.$strip>;
+        }, z.core.$strip>;
+    }, z.core.$strict>>>;
+}, z.core.$strict>;
+export type CustomJwtAuthorizerConfig = z.infer<typeof CustomJwtAuthorizerConfigSchema>;
+/**
+ * Resource-agnostic authorizer configuration container.
+ * Used by both Gateway and Runtime resources.
+ */
+export declare const AuthorizerConfigSchema: z.ZodObject<{
+    customJwtAuthorizer: z.ZodOptional<z.ZodObject<{
+        discoveryUrl: z.ZodString;
+        allowedAudience: z.ZodOptional<z.ZodArray<z.ZodString>>;
+        allowedClients: z.ZodOptional<z.ZodArray<z.ZodString>>;
+        allowedScopes: z.ZodOptional<z.ZodArray<z.ZodString>>;
+        customClaims: z.ZodOptional<z.ZodArray<z.ZodObject<{
+            inboundTokenClaimName: z.ZodString;
+            inboundTokenClaimValueType: z.ZodEnum<{
+                STRING: "STRING";
+                STRING_ARRAY: "STRING_ARRAY";
+            }>;
+            authorizingClaimMatchValue: z.ZodObject<{
+                claimMatchOperator: z.ZodEnum<{
+                    EQUALS: "EQUALS";
+                    CONTAINS: "CONTAINS";
+                    CONTAINS_ANY: "CONTAINS_ANY";
+                }>;
+                claimMatchValue: z.ZodObject<{
+                    matchValueString: z.ZodOptional<z.ZodString>;
+                    matchValueStringList: z.ZodOptional<z.ZodArray<z.ZodString>>;
+                }, z.core.$strip>;
+            }, z.core.$strip>;
+        }, z.core.$strict>>>;
+    }, z.core.$strict>>;
+}, z.core.$strip>;
+export type AuthorizerConfig = z.infer<typeof AuthorizerConfigSchema>;
+/** @deprecated Use AuthorizerConfigSchema. Backwards-compatible alias for Gateway. */
+export declare const GatewayAuthorizerConfigSchema: z.ZodObject<{
+    customJwtAuthorizer: z.ZodOptional<z.ZodObject<{
+        discoveryUrl: z.ZodString;
+        allowedAudience: z.ZodOptional<z.ZodArray<z.ZodString>>;
+        allowedClients: z.ZodOptional<z.ZodArray<z.ZodString>>;
+        allowedScopes: z.ZodOptional<z.ZodArray<z.ZodString>>;
+        customClaims: z.ZodOptional<z.ZodArray<z.ZodObject<{
+            inboundTokenClaimName: z.ZodString;
+            inboundTokenClaimValueType: z.ZodEnum<{
+                STRING: "STRING";
+                STRING_ARRAY: "STRING_ARRAY";
+            }>;
+            authorizingClaimMatchValue: z.ZodObject<{
+                claimMatchOperator: z.ZodEnum<{
+                    EQUALS: "EQUALS";
+                    CONTAINS: "CONTAINS";
+                    CONTAINS_ANY: "CONTAINS_ANY";
+                }>;
+                claimMatchValue: z.ZodObject<{
+                    matchValueString: z.ZodOptional<z.ZodString>;
+                    matchValueStringList: z.ZodOptional<z.ZodArray<z.ZodString>>;
+                }, z.core.$strip>;
+            }, z.core.$strip>;
+        }, z.core.$strict>>>;
+    }, z.core.$strict>>;
+}, z.core.$strip>;
+/** @deprecated Use AuthorizerConfig. Backwards-compatible alias for Gateway. */
+export type GatewayAuthorizerConfig = AuthorizerConfig;
+//# sourceMappingURL=auth.d.ts.map

package/dist/schema/schemas/auth.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"auth.d.ts","sourceRoot":"","sources":["../../../src/schema/schemas/auth.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,CAAC,EAAE,MAAM,KAAK,CAAC;AAMxB,eAAO,MAAM,2BAA2B;;;;EAA4C,CAAC;AACrF,MAAM,MAAM,qBAAqB,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,2BAA2B,CAAC,CAAC;AAEhF,eAAO,MAAM,2BAA2B;;;EAAoC,CAAC;AAC7E,MAAM,MAAM,qBAAqB,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,2BAA2B,CAAC,CAAC;AA4BhF,eAAO,MAAM,wBAAwB;;;;EAAiD,CAAC;AACvF,MAAM,MAAM,kBAAkB,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,wBAAwB,CAAC,CAAC;AAE1E,eAAO,MAAM,qBAAqB;;;iBAmB9B,CAAC;AACL,MAAM,MAAM,eAAe,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,qBAAqB,CAAC,CAAC;AAEpE,eAAO,MAAM,gCAAgC;;;EAAqC,CAAC;AACnF,MAAM,MAAM,0BAA0B,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,gCAAgC,CAAC,CAAC;AAE1F,eAAO,MAAM,2BAA2B;;;;;;;;;;;;;;;;;kBAgB7B,CAAC;AACZ,MAAM,MAAM,qBAAqB,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,2BAA2B,CAAC,CAAC;AAIhF;;;;;;GAMG;AACH,eAAO,MAAM,+BAA+B;;;;;;;;;;;;;;;;;;;;;;;kBA0BxC,CAAC;AAEL,MAAM,MAAM,yBAAyB,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,+BAA+B,CAAC,CAAC;AAExF;;;GAGG;AACH,eAAO,MAAM,sBAAsB;;;;;;;;;;;;;;;;;;;;;;;;;iBAEjC,CAAC;AAEH,MAAM,MAAM,gBAAgB,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,sBAAsB,CAAC,CAAC;AAEtE,sFAAsF;AACtF,eAAO,MAAM,6BAA6B;;;;;;;;;;;;;;;;;;;;;;;;;iBAAyB,CAAC;AACpE,gFAAgF;AAChF,MAAM,MAAM,uBAAuB,GAAG,gBAAgB,CAAC"}

package/dist/schema/schemas/auth.js

@@ -0,0 +1,114 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.GatewayAuthorizerConfigSchema = exports.AuthorizerConfigSchema = exports.CustomJwtAuthorizerConfigSchema = exports.CustomClaimValidationSchema = exports.InboundTokenClaimValueTypeSchema = exports.ClaimMatchValueSchema = exports.ClaimMatchOperatorSchema = exports.RuntimeAuthorizerTypeSchema = exports.GatewayAuthorizerTypeSchema = void 0;
+const zod_1 = require("zod");
+// ============================================================================
+// Shared Authorization Schemas
+// ============================================================================
+exports.GatewayAuthorizerTypeSchema = zod_1.z.enum(['NONE', 'AWS_IAM', 'CUSTOM_JWT']);
+exports.RuntimeAuthorizerTypeSchema = zod_1.z.enum(['AWS_IAM', 'CUSTOM_JWT']);
+/** OIDC well-known configuration endpoint suffix (per OpenID Connect Discovery 1.0 spec) */
+const OIDC_WELL_KNOWN_SUFFIX = '/.well-known/openid-configuration';
+/**
+ * OIDC Discovery URL schema.
+ * Must be a valid URL ending with the standard OIDC well-known endpoint.
+ * @see https://openid.net/specs/openid-connect-discovery-1_0.html
+ */
+const OidcDiscoveryUrlSchema = zod_1.z
+    .string()
+    .url('Must be a valid URL')
+    .refine(url => url.startsWith('https://'), {
+    message: 'OIDC discovery URL must use HTTPS',
+})
+    .refine(url => url.endsWith(OIDC_WELL_KNOWN_SUFFIX), {
+    message: `OIDC discovery URL must end with '${OIDC_WELL_KNOWN_SUFFIX}'`,
+});
+// ── Custom Claims Schemas (matches CFN CustomClaimValidationType) ──
+// API-documented patterns (from ClaimMatchValueType and CustomClaimValidationType)
+const MATCH_VALUE_PATTERN = /^[A-Za-z0-9_.-]+$/;
+const CLAIM_NAME_PATTERN = /^[A-Za-z0-9_.:-]+$/;
+// Server-side reserved claim names (not regex-documented; API rejects these at deploy time)
+const RESERVED_CLAIM_NAMES = ['client_id'];
+exports.ClaimMatchOperatorSchema = zod_1.z.enum(['EQUALS', 'CONTAINS', 'CONTAINS_ANY']);
+exports.ClaimMatchValueSchema = zod_1.z
+    .object({
+    matchValueString: zod_1.z
+        .string()
+        .min(1)
+        .max(255)
+        .regex(MATCH_VALUE_PATTERN, 'Match value must match [A-Za-z0-9_.-]+')
+        .optional(),
+    matchValueStringList: zod_1.z
+        .array(zod_1.z.string().min(1).max(255).regex(MATCH_VALUE_PATTERN, 'Each match value must match [A-Za-z0-9_.-]+'))
+        .min(1)
+        .max(255)
+        .optional(),
+})
+    .refine(data => data.matchValueString !== undefined || data.matchValueStringList !== undefined, {
+    message: 'Either matchValueString or matchValueStringList must be provided',
+})
+    .refine(data => !(data.matchValueString !== undefined && data.matchValueStringList !== undefined), {
+    message: 'Only one of matchValueString or matchValueStringList may be provided',
+});
+exports.InboundTokenClaimValueTypeSchema = zod_1.z.enum(['STRING', 'STRING_ARRAY']);
+exports.CustomClaimValidationSchema = zod_1.z
+    .object({
+    inboundTokenClaimName: zod_1.z
+        .string()
+        .min(1)
+        .max(255)
+        .regex(CLAIM_NAME_PATTERN, 'Claim name must match [A-Za-z0-9_.-:]+')
+        .refine(name => !RESERVED_CLAIM_NAMES.includes(name), {
+        message: `Claim name cannot be a reserved name (${RESERVED_CLAIM_NAMES.join(', ')})`,
+    }),
+    inboundTokenClaimValueType: exports.InboundTokenClaimValueTypeSchema,
+    authorizingClaimMatchValue: zod_1.z.object({
+        claimMatchOperator: exports.ClaimMatchOperatorSchema,
+        claimMatchValue: exports.ClaimMatchValueSchema,
+    }),
+})
+    .strict();
+// ── Custom JWT Authorizer Configuration ──
+/**
+ * Custom JWT authorizer configuration.
+ * Used when authorizerType is 'CUSTOM_JWT'.
+ *
+ * At least one of allowedAudience, allowedClients, allowedScopes, or customClaims
+ * must be provided. Only discoveryUrl is unconditionally required.
+ */
+exports.CustomJwtAuthorizerConfigSchema = zod_1.z
+    .object({
+    /** OIDC discovery URL (e.g., https://cognito-idp.{region}.amazonaws.com/{userPoolId}/.well-known/openid-configuration) */
+    discoveryUrl: OidcDiscoveryUrlSchema,
+    /** List of allowed audiences (typically client IDs) */
+    allowedAudience: zod_1.z.array(zod_1.z.string().min(1)).optional(),
+    /** List of allowed client IDs */
+    allowedClients: zod_1.z.array(zod_1.z.string().min(1)).optional(),
+    /** List of allowed scopes */
+    allowedScopes: zod_1.z.array(zod_1.z.string().min(1)).optional(),
+    /** Custom claim validations */
+    customClaims: zod_1.z.array(exports.CustomClaimValidationSchema).min(1).optional(),
+})
+    .strict()
+    .superRefine((data, ctx) => {
+    const hasAudience = data.allowedAudience && data.allowedAudience.length > 0;
+    const hasClients = data.allowedClients && data.allowedClients.length > 0;
+    const hasScopes = data.allowedScopes && data.allowedScopes.length > 0;
+    const hasClaims = data.customClaims && data.customClaims.length > 0;
+    if (!hasAudience && !hasClients && !hasScopes && !hasClaims) {
+        ctx.addIssue({
+            code: zod_1.z.ZodIssueCode.custom,
+            message: 'At least one of allowedAudience, allowedClients, allowedScopes, or customClaims must be provided',
+        });
+    }
+});
+/**
+ * Resource-agnostic authorizer configuration container.
+ * Used by both Gateway and Runtime resources.
+ */
+exports.AuthorizerConfigSchema = zod_1.z.object({
+    customJwtAuthorizer: exports.CustomJwtAuthorizerConfigSchema.optional(),
+});
+/** @deprecated Use AuthorizerConfigSchema. Backwards-compatible alias for Gateway. */
+exports.GatewayAuthorizerConfigSchema = exports.AuthorizerConfigSchema;
+//# sourceMappingURL=auth.js.map