npm - @bitwarden/commercial-sdk-internal - Versions diffs - 0.2.0-main.486 → 0.2.0-main.488 - Mend

@bitwarden/commercial-sdk-internal 0.2.0-main.486 → 0.2.0-main.488

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (10) hide show

package/bitwarden_wasm_internal.d.ts +472 -470
package/bitwarden_wasm_internal_bg.js +62 -62
package/bitwarden_wasm_internal_bg.wasm +0 -0
package/bitwarden_wasm_internal_bg.wasm.d.ts +6 -6
package/bitwarden_wasm_internal_bg.wasm.js +1 -1
package/node/bitwarden_wasm_internal.d.ts +472 -470
package/node/bitwarden_wasm_internal.js +64 -64
package/node/bitwarden_wasm_internal_bg.wasm +0 -0
package/node/bitwarden_wasm_internal_bg.wasm.d.ts +7 -7
package/package.json +1 -1

package/node/bitwarden_wasm_internal.d.ts CHANGED Viewed

@@ -180,6 +180,10 @@ export interface TokenProvider {
   get_access_token(): Promise<string | undefined>;
 }
+export interface IndexedDbConfiguration {
+  db_name: string;
+}
 export interface Repositories {
   cipher: Repository<Cipher> | null;
   folder: Repository<Folder> | null;
@@ -190,22 +194,6 @@ export interface Repositories {
  */
 export interface FeatureFlags extends Map<string, boolean> {}
-export interface IndexedDbConfiguration {
-  db_name: string;
-}
-/**
- * Credentials for sending password secured access requests.
- * Clone auto implements the standard lib\'s Clone trait, allowing us to create copies of this
- * struct.
- */
-export interface SendPasswordCredentials {
-  /**
-   * A Base64-encoded hash of the password protecting the send.
-   */
-  passwordHashB64: string;
-}
 /**
  * Credentials for getting a send access token using an email and OTP.
  */
@@ -220,6 +208,14 @@ export interface SendEmailOtpCredentials {
   otp: string;
 }
+/**
+ * The credentials used for send access requests.
+ */
+export type SendAccessCredentials =
+  | SendPasswordCredentials
+  | SendEmailOtpCredentials
+  | SendEmailCredentials;
 /**
  * Credentials for sending an OTP to the user\'s email address.
  * This is used when the send requires email verification with an OTP.
@@ -231,6 +227,18 @@ export interface SendEmailCredentials {
   email: string;
 }
+/**
+ * Credentials for sending password secured access requests.
+ * Clone auto implements the standard lib\'s Clone trait, allowing us to create copies of this
+ * struct.
+ */
+export interface SendPasswordCredentials {
+  /**
+   * A Base64-encoded hash of the password protecting the send.
+   */
+  passwordHashB64: string;
+}
 /**
  * A request structure for requesting a send access token from the API.
  */
@@ -245,14 +253,6 @@ export interface SendAccessTokenRequest {
   sendAccessCredentials?: SendAccessCredentials;
 }
-/**
- * The credentials used for send access requests.
- */
-export type SendAccessCredentials =
-  | SendPasswordCredentials
-  | SendEmailOtpCredentials
-  | SendEmailCredentials;
 /**
  * Any unexpected error that occurs when making requests to identity. This could be
  * local/transport/decoding failure from the HTTP client (DNS/TLS/connect/read timeout,
@@ -263,14 +263,6 @@ export type SendAccessCredentials =
  */
 export type UnexpectedIdentityError = string;
-/**
- * Represents errors that can occur when requesting a send access token.
- * It includes expected and unexpected API errors.
- */
-export type SendAccessTokenError =
-  | { kind: "unexpected"; data: UnexpectedIdentityError }
-  | { kind: "expected"; data: SendAccessTokenApiErrorResponse };
 /**
  * A send access token which can be used to access a send.
  */
@@ -285,6 +277,35 @@ export interface SendAccessTokenResponse {
   expiresAt: number;
 }
+/**
+ * Represents errors that can occur when requesting a send access token.
+ * It includes expected and unexpected API errors.
+ */
+export type SendAccessTokenError =
+  | { kind: "unexpected"; data: UnexpectedIdentityError }
+  | { kind: "expected"; data: SendAccessTokenApiErrorResponse };
+/**
+ * Invalid request errors - typically due to missing parameters.
+ */
+export type SendAccessTokenInvalidRequestError =
+  | "send_id_required"
+  | "password_hash_b64_required"
+  | "email_required"
+  | "email_and_otp_required_otp_sent"
+  | "unknown";
+/**
+ * Invalid grant errors - typically due to invalid credentials.
+ */
+export type SendAccessTokenInvalidGrantError =
+  | "send_id_invalid"
+  | "password_hash_b64_invalid"
+  | "email_invalid"
+  | "otp_invalid"
+  | "otp_generation_failed"
+  | "unknown";
 /**
  * Represents the possible, expected errors that can occur when requesting a send access token.
  */
@@ -306,67 +327,41 @@ export type SendAccessTokenApiErrorResponse =
   | { error: "invalid_target"; error_description?: string };
 /**
- * Invalid grant errors - typically due to invalid credentials.
- */
-export type SendAccessTokenInvalidGrantError =
-  | "send_id_invalid"
-  | "password_hash_b64_invalid"
-  | "email_invalid"
-  | "otp_invalid"
-  | "otp_generation_failed"
-  | "unknown";
-/**
- * Invalid request errors - typically due to missing parameters.
- */
-export type SendAccessTokenInvalidRequestError =
-  | "send_id_required"
-  | "password_hash_b64_required"
-  | "email_required"
-  | "email_and_otp_required_otp_sent"
-  | "unknown";
-/**
- * Request parameters for TDE (Trusted Device Encryption) registration.
+ * Result of JIT master password registration process.
  */
-export interface TdeRegistrationRequest {
-  /**
-   * Organization ID to enroll in
-   */
-  org_id: OrganizationId;
-  /**
-   * Organization\'s public key for encrypting the reset password key. This should be verified by
-   * the client and not verifying may compromise the security of the user\'s account.
-   */
-  org_public_key: B64;
+export interface JitMasterPasswordRegistrationResponse {
   /**
-   * User ID for the account being initialized
+   * The account cryptographic state of the user
    */
-  user_id: UserId;
+  account_cryptographic_state: WrappedAccountCryptographicState;
   /**
-   * Device identifier for TDE enrollment
+   * The master password unlock data
    */
-  device_identifier: string;
+  master_password_unlock: MasterPasswordUnlockData;
   /**
-   * Whether to trust this device for TDE
+   * The decrypted user key.
    */
-  trust_device: boolean;
+  user_key: B64;
 }
 /**
- * Result of JIT master password registration process.
+ * Result of Key Connector registration process.
  */
-export interface JitMasterPasswordRegistrationResponse {
+export interface KeyConnectorRegistrationResult {
   /**
-   * The account cryptographic state of the user
+   * The account cryptographic state of the user.
    */
   account_cryptographic_state: WrappedAccountCryptographicState;
   /**
-   * The master password unlock data
+   * The key connector key used for unlocking.
    */
-  master_password_unlock: MasterPasswordUnlockData;
+  key_connector_key: B64;
   /**
-   * The decrypted user key.
+   * The encrypted user key, wrapped with the key connector key.
+   */
+  key_connector_key_wrapped_user_key: EncString;
+  /**
+   * The decrypted user key. This can be used to get the consuming client to an unlocked state.
    */
   user_key: B64;
 }
@@ -410,53 +405,69 @@ export interface JitMasterPasswordRegistrationRequest {
   reset_password_enroll: boolean;
 }
+export interface RegistrationError extends Error {
+  name: "RegistrationError";
+  variant: "KeyConnectorApi" | "Api" | "Crypto";
+}
+export function isRegistrationError(error: any): error is RegistrationError;
 /**
- * Result of TDE registration process.
+ * Request parameters for TDE (Trusted Device Encryption) registration.
  */
-export interface TdeRegistrationResponse {
+export interface TdeRegistrationRequest {
   /**
-   * The account cryptographic state of the user
+   * Organization ID to enroll in
    */
-  account_cryptographic_state: WrappedAccountCryptographicState;
+  org_id: OrganizationId;
   /**
-   * The device key
+   * Organization\'s public key for encrypting the reset password key. This should be verified by
+   * the client and not verifying may compromise the security of the user\'s account.
    */
-  device_key: B64;
+  org_public_key: B64;
   /**
-   * The decrypted user key. This can be used to get the consuming client to an unlocked state.
+   * User ID for the account being initialized
    */
-  user_key: B64;
+  user_id: UserId;
+  /**
+   * Device identifier for TDE enrollment
+   */
+  device_identifier: string;
+  /**
+   * Whether to trust this device for TDE
+   */
+  trust_device: boolean;
 }
 /**
- * Result of Key Connector registration process.
+ * Result of TDE registration process.
  */
-export interface KeyConnectorRegistrationResult {
+export interface TdeRegistrationResponse {
   /**
-   * The account cryptographic state of the user.
+   * The account cryptographic state of the user
    */
   account_cryptographic_state: WrappedAccountCryptographicState;
   /**
-   * The key connector key used for unlocking.
-   */
-  key_connector_key: B64;
-  /**
-   * The encrypted user key, wrapped with the key connector key.
+   * The device key
    */
-  key_connector_key_wrapped_user_key: EncString;
+  device_key: B64;
   /**
    * The decrypted user key. This can be used to get the consuming client to an unlocked state.
    */
   user_key: B64;
 }
-export interface RegistrationError extends Error {
-  name: "RegistrationError";
-  variant: "KeyConnectorApi" | "Api" | "Crypto";
+export interface CollectionView {
+  id: CollectionId | undefined;
+  organizationId: OrganizationId;
+  name: string;
+  externalId: string | undefined;
+  hidePasswords: boolean;
+  readOnly: boolean;
+  manage: boolean;
+  type: CollectionType;
 }
-export function isRegistrationError(error: any): error is RegistrationError;
 export interface Collection {
   id: CollectionId | undefined;
   organizationId: OrganizationId;
@@ -469,26 +480,15 @@ export interface Collection {
   type: CollectionType;
 }
-/**
- * Type of collection
- */
-export type CollectionType = "SharedCollection" | "DefaultUserCollection";
 /**
  * NewType wrapper for `CollectionId`
  */
 export type CollectionId = Tagged<Uuid, "CollectionId">;
-export interface CollectionView {
-  id: CollectionId | undefined;
-  organizationId: OrganizationId;
-  name: string;
-  externalId: string | undefined;
-  hidePasswords: boolean;
-  readOnly: boolean;
-  manage: boolean;
-  type: CollectionType;
-}
+/**
+ * Type of collection
+ */
+export type CollectionType = "SharedCollection" | "DefaultUserCollection";
 export interface CollectionDecryptError extends Error {
   name: "CollectionDecryptError";
@@ -554,6 +554,13 @@ export function isAccountCryptographyInitializationError(
   error: any,
 ): error is AccountCryptographyInitializationError;
+export interface RotateCryptographyStateError extends Error {
+  name: "RotateCryptographyStateError";
+  variant: "KeyMissing" | "InvalidData";
+}
+export function isRotateCryptographyStateError(error: any): error is RotateCryptographyStateError;
 /**
  * Any keys / cryptographic protection \"downstream\" from the account symmetric key (user key).
  * Private keys are protected by the user key.
@@ -569,26 +576,12 @@ export type WrappedAccountCryptographicState =
       };
     };
-export interface RotateCryptographyStateError extends Error {
-  name: "RotateCryptographyStateError";
-  variant: "KeyMissing" | "InvalidData";
-}
-export function isRotateCryptographyStateError(error: any): error is RotateCryptographyStateError;
 /**
- * Response from the `make_update_password` function
+ * Auth requests supports multiple initialization methods.
  */
-export interface UpdatePasswordResponse {
-  /**
-   * Hash of the new password
-   */
-  passwordHash: B64;
-  /**
-   * User key, encrypted with the new password
-   */
-  newKey: EncString;
-}
+export type AuthRequestMethod =
+  | { userKey: { protected_user_key: UnsignedSharedKey } }
+  | { masterKey: { protected_master_key: UnsignedSharedKey; auth_request_key: EncString } };
 /**
  * Request for `verify_asymmetric_keys`.
@@ -609,50 +602,58 @@ export interface VerifyAsymmetricKeysRequest {
 }
 /**
- * State used for initializing the user cryptographic state.
+ * Response for `verify_asymmetric_keys`.
  */
-export interface InitUserCryptoRequest {
-  /**
-   * The user\'s ID.
-   */
-  userId: UserId | undefined;
-  /**
-   * The user\'s KDF parameters, as received from the prelogin request
-   */
-  kdfParams: Kdf;
-  /**
-   * The user\'s email address
-   */
-  email: string;
+export interface VerifyAsymmetricKeysResponse {
   /**
-   * The user\'s account cryptographic state, containing their signature and
-   * public-key-encryption keys, along with the signed security state, protected by the user key
+   * Whether the user\'s private key was decryptable by the user key.
    */
-  accountCryptographicState: WrappedAccountCryptographicState;
+  privateKeyDecryptable: boolean;
   /**
-   * The method to decrypt the user\'s account symmetric key (user key)
+   * Whether the user\'s private key was a valid RSA key and matched the public key provided.
    */
-  method: InitUserCryptoMethod;
+  validPrivateKey: boolean;
 }
+export interface DeriveKeyConnectorError extends Error {
+  name: "DeriveKeyConnectorError";
+  variant: "WrongPassword" | "Crypto";
+}
+export function isDeriveKeyConnectorError(error: any): error is DeriveKeyConnectorError;
 /**
- * Response from the `update_kdf` function
+ * Response from the `make_update_password` function
  */
-export interface UpdateKdfResponse {
-  /**
-   * The authentication data for the new KDF setting
-   */
-  masterPasswordAuthenticationData: MasterPasswordAuthenticationData;
+export interface UpdatePasswordResponse {
   /**
-   * The unlock data for the new KDF setting
+   * Hash of the new password
    */
-  masterPasswordUnlockData: MasterPasswordUnlockData;
+  passwordHash: B64;
   /**
-   * The authentication data for the KDF setting prior to the change
+   * User key, encrypted with the new password
    */
-  oldMasterPasswordAuthenticationData: MasterPasswordAuthenticationData;
+  newKey: EncString;
+}
+export interface MakeKeysError extends Error {
+  name: "MakeKeysError";
+  variant:
+    | "AccountCryptographyInitialization"
+    | "MasterPasswordDerivation"
+    | "RequestModelCreation"
+    | "Crypto";
 }
+export function isMakeKeysError(error: any): error is MakeKeysError;
+export interface EnrollAdminPasswordResetError extends Error {
+  name: "EnrollAdminPasswordResetError";
+  variant: "Crypto";
+}
+export function isEnrollAdminPasswordResetError(error: any): error is EnrollAdminPasswordResetError;
 /**
  * The crypto method used to initialize the user cryptographic state.
  */
@@ -671,6 +672,41 @@ export type InitUserCryptoMethod =
     }
   | { keyConnector: { master_key: B64; user_key: EncString } };
+export interface CryptoClientError extends Error {
+  name: "CryptoClientError";
+  variant: "NotAuthenticated" | "Crypto" | "InvalidKdfSettings" | "PasswordProtectedKeyEnvelope";
+}
+export function isCryptoClientError(error: any): error is CryptoClientError;
+/**
+ * Request for deriving a pin protected user key
+ */
+export interface DerivePinKeyResponse {
+  /**
+   * [UserKey] protected by PIN
+   */
+  pinProtectedUserKey: EncString;
+  /**
+   * PIN protected by [UserKey]
+   */
+  encryptedPin: EncString;
+}
+/**
+ * Request for deriving a pin protected user key
+ */
+export interface EnrollPinResponse {
+  /**
+   * [UserKey] protected by PIN
+   */
+  pinProtectedUserKeyEnvelope: PasswordProtectedKeyEnvelope;
+  /**
+   * PIN protected by [UserKey]
+   */
+  userKeyEncryptedPin: EncString;
+}
 /**
  * Response for the `make_keys_for_user_crypto_v2`, containing a set of keys for a user
  */
@@ -709,46 +745,22 @@ export interface UserCryptoV2KeysResponse {
   securityVersion: number;
 }
-export interface DeriveKeyConnectorError extends Error {
-  name: "DeriveKeyConnectorError";
-  variant: "WrongPassword" | "Crypto";
-}
-export function isDeriveKeyConnectorError(error: any): error is DeriveKeyConnectorError;
 /**
- * Request for deriving a pin protected user key
+ * Response from the `update_kdf` function
  */
-export interface DerivePinKeyResponse {
-  /**
-   * [UserKey] protected by PIN
-   */
-  pinProtectedUserKey: EncString;
+export interface UpdateKdfResponse {
   /**
-   * PIN protected by [UserKey]
+   * The authentication data for the new KDF setting
    */
-  encryptedPin: EncString;
-}
-export interface CryptoClientError extends Error {
-  name: "CryptoClientError";
-  variant: "NotAuthenticated" | "Crypto" | "InvalidKdfSettings" | "PasswordProtectedKeyEnvelope";
-}
-export function isCryptoClientError(error: any): error is CryptoClientError;
-/**
- * Request for deriving a pin protected user key
- */
-export interface EnrollPinResponse {
+  masterPasswordAuthenticationData: MasterPasswordAuthenticationData;
   /**
-   * [UserKey] protected by PIN
+   * The unlock data for the new KDF setting
    */
-  pinProtectedUserKeyEnvelope: PasswordProtectedKeyEnvelope;
+  masterPasswordUnlockData: MasterPasswordUnlockData;
   /**
-   * PIN protected by [UserKey]
+   * The authentication data for the KDF setting prior to the change
    */
-  userKeyEncryptedPin: EncString;
+  oldMasterPasswordAuthenticationData: MasterPasswordAuthenticationData;
 }
 /**
@@ -773,45 +785,6 @@ export interface DeriveKeyConnectorRequest {
   email: string;
 }
-export interface MakeKeysError extends Error {
-  name: "MakeKeysError";
-  variant:
-    | "AccountCryptographyInitialization"
-    | "MasterPasswordDerivation"
-    | "RequestModelCreation"
-    | "Crypto";
-}
-export function isMakeKeysError(error: any): error is MakeKeysError;
-/**
- * Response for `verify_asymmetric_keys`.
- */
-export interface VerifyAsymmetricKeysResponse {
-  /**
-   * Whether the user\'s private key was decryptable by the user key.
-   */
-  privateKeyDecryptable: boolean;
-  /**
-   * Whether the user\'s private key was a valid RSA key and matched the public key provided.
-   */
-  validPrivateKey: boolean;
-}
-export interface EnrollAdminPasswordResetError extends Error {
-  name: "EnrollAdminPasswordResetError";
-  variant: "Crypto";
-}
-export function isEnrollAdminPasswordResetError(error: any): error is EnrollAdminPasswordResetError;
-/**
- * Auth requests supports multiple initialization methods.
- */
-export type AuthRequestMethod =
-  | { userKey: { protected_user_key: UnsignedSharedKey } }
-  | { masterKey: { protected_master_key: UnsignedSharedKey; auth_request_key: EncString } };
 /**
  * Response from the `make_key_pair` function
  */
@@ -837,15 +810,42 @@ export interface InitOrgCryptoRequest {
 }
 /**
- * NewType wrapper for `UserId`
+ * State used for initializing the user cryptographic state.
  */
-export type UserId = Tagged<Uuid, "UserId">;
+export interface InitUserCryptoRequest {
+  /**
+   * The user\'s ID.
+   */
+  userId: UserId | undefined;
+  /**
+   * The user\'s KDF parameters, as received from the prelogin request
+   */
+  kdfParams: Kdf;
+  /**
+   * The user\'s email address
+   */
+  email: string;
+  /**
+   * The user\'s account cryptographic state, containing their signature and
+   * public-key-encryption keys, along with the signed security state, protected by the user key
+   */
+  accountCryptographicState: WrappedAccountCryptographicState;
+  /**
+   * The method to decrypt the user\'s account symmetric key (user key)
+   */
+  method: InitUserCryptoMethod;
+}
 /**
  * NewType wrapper for `OrganizationId`
  */
 export type OrganizationId = Tagged<Uuid, "OrganizationId">;
+/**
+ * NewType wrapper for `UserId`
+ */
+export type UserId = Tagged<Uuid, "UserId">;
 export interface StatefulCryptoError extends Error {
   name: "StatefulCryptoError";
   variant: "MissingSecurityState" | "WrongAccountCryptoVersion" | "Crypto";
@@ -998,6 +998,8 @@ export interface RotateableKeySet {
   encryptedDecapsulationKey: EncString;
 }
+export type PublicKey = Tagged<string, "PublicKey">;
 /**
  * Key Derivation Function for Bitwarden Account
  *
@@ -1109,6 +1111,13 @@ export interface PassphraseGeneratorRequest {
   includeNumber: boolean;
 }
+export interface PasswordError extends Error {
+  name: "PasswordError";
+  variant: "NoCharacterSetEnabled" | "InvalidLength";
+}
+export function isPasswordError(error: any): error is PasswordError;
 /**
  * Password generator request options.
  */
@@ -1161,12 +1170,18 @@ export interface PasswordGeneratorRequest {
   minSpecial: number | undefined;
 }
-export interface PasswordError extends Error {
-  name: "PasswordError";
-  variant: "NoCharacterSetEnabled" | "InvalidLength";
+export interface UsernameError extends Error {
+  name: "UsernameError";
+  variant: "InvalidApiKey" | "Unknown" | "ResponseContent" | "Reqwest";
 }
-export function isPasswordError(error: any): error is PasswordError;
+export function isUsernameError(error: any): error is UsernameError;
+export type UsernameGeneratorRequest =
+  | { word: { capitalize: boolean; include_number: boolean } }
+  | { subaddress: { type: AppendType; email: string } }
+  | { catchall: { type: AppendType; domain: string } }
+  | { forwarded: { service: ForwarderServiceType; website: string | undefined } };
 /**
  * Configures the email forwarding service to use.
@@ -1181,21 +1196,8 @@ export type ForwarderServiceType =
   | { forwardEmail: { api_token: string; domain: string } }
   | { simpleLogin: { api_key: string; base_url: string } };
-export interface UsernameError extends Error {
-  name: "UsernameError";
-  variant: "InvalidApiKey" | "Unknown" | "ResponseContent" | "Reqwest";
-}
-export function isUsernameError(error: any): error is UsernameError;
 export type AppendType = "random" | { websiteName: { website: string } };
-export type UsernameGeneratorRequest =
-  | { word: { capitalize: boolean; include_number: boolean } }
-  | { subaddress: { type: AppendType; email: string } }
-  | { catchall: { type: AppendType; domain: string } }
-  | { forwarded: { service: ForwarderServiceType; website: string | undefined } };
 export interface ReceiveError extends Error {
   name: "ReceiveError";
   variant: "Channel" | "Timeout" | "Cancelled";
@@ -1257,13 +1259,6 @@ export type Endpoint =
   | "DesktopRenderer"
   | "DesktopMain";
-export interface KeyGenerationError extends Error {
-  name: "KeyGenerationError";
-  variant: "KeyGeneration" | "KeyConversion";
-}
-export function isKeyGenerationError(error: any): error is KeyGenerationError;
 export interface SshKeyExportError extends Error {
   name: "SshKeyExportError";
   variant: "KeyConversion";
@@ -1271,10 +1266,17 @@ export interface SshKeyExportError extends Error {
 export function isSshKeyExportError(error: any): error is SshKeyExportError;
-export interface SshKeyImportError extends Error {
-  name: "SshKeyImportError";
-  variant: "Parsing" | "PasswordRequired" | "WrongPassword" | "UnsupportedKeyType";
-}
+export interface KeyGenerationError extends Error {
+  name: "KeyGenerationError";
+  variant: "KeyGeneration" | "KeyConversion";
+}
+export function isKeyGenerationError(error: any): error is KeyGenerationError;
+export interface SshKeyImportError extends Error {
+  name: "SshKeyImportError";
+  variant: "Parsing" | "PasswordRequired" | "WrongPassword" | "UnsupportedKeyType";
+}
 export function isSshKeyImportError(error: any): error is SshKeyImportError;
@@ -1307,14 +1309,6 @@ export interface CipherRiskError extends Error {
 export function isCipherRiskError(error: any): error is CipherRiskError;
-/**
- * Result of checking password exposure via HIBP API.
- */
-export type ExposedPasswordResult =
-  | { type: "NotChecked" }
-  | { type: "Found"; value: number }
-  | { type: "Error"; value: string };
 /**
  * Password reuse map wrapper for WASM compatibility.
  */
@@ -1386,6 +1380,14 @@ export interface CipherRiskOptions {
   hibpBaseUrl?: string | undefined;
 }
+/**
+ * Result of checking password exposure via HIBP API.
+ */
+export type ExposedPasswordResult =
+  | { type: "NotChecked" }
+  | { type: "Found"; value: number }
+  | { type: "Error"; value: string };
 export interface PasswordHistoryView {
   password: string;
   lastUsedDate: DateTime<Utc>;
@@ -1432,18 +1434,6 @@ export interface DecryptError extends Error {
 export function isDecryptError(error: any): error is DecryptError;
-export interface Attachment {
-  id: string | undefined;
-  url: string | undefined;
-  size: string | undefined;
-  /**
-   * Readable size, ex: \"4.2 KB\" or \"1.43 GB\
-   */
-  sizeName: string | undefined;
-  fileName: EncString | undefined;
-  key: EncString | undefined;
-}
 export interface AttachmentView {
   id: string | undefined;
   url: string | undefined;
@@ -1466,12 +1456,24 @@ export interface AttachmentView {
   decryptedKey: string | undefined;
 }
-export interface LocalData {
+export interface Attachment {
+  id: string | undefined;
+  url: string | undefined;
+  size: string | undefined;
+  /**
+   * Readable size, ex: \"4.2 KB\" or \"1.43 GB\
+   */
+  sizeName: string | undefined;
+  fileName: EncString | undefined;
+  key: EncString | undefined;
+}
+export interface LocalDataView {
   lastUsedDate: DateTime<Utc> | undefined;
   lastLaunched: DateTime<Utc> | undefined;
 }
-export interface LocalDataView {
+export interface LocalData {
   lastUsedDate: DateTime<Utc> | undefined;
   lastLaunched: DateTime<Utc> | undefined;
 }
@@ -1571,6 +1573,13 @@ export interface RestoreCipherAdminError extends Error {
 export function isRestoreCipherAdminError(error: any): error is RestoreCipherAdminError;
+export interface CreateCipherError extends Error {
+  name: "CreateCipherError";
+  variant: "Crypto" | "Api" | "VaultParse" | "MissingField" | "NotAuthenticated" | "Repository";
+}
+export function isCreateCipherError(error: any): error is CreateCipherError;
 /**
  * Request to add a cipher.
  */
@@ -1586,13 +1595,6 @@ export interface CipherCreateRequest {
   fields: FieldView[];
 }
-export interface CreateCipherError extends Error {
-  name: "CreateCipherError";
-  variant: "Crypto" | "Api" | "VaultParse" | "MissingField" | "NotAuthenticated" | "Repository";
-}
-export function isCreateCipherError(error: any): error is CreateCipherError;
 export interface DeleteCipherError extends Error {
   name: "DeleteCipherError";
   variant: "Api" | "Repository";
@@ -1617,13 +1619,6 @@ export type CipherViewType =
   | { secureNote: SecureNoteView }
   | { sshKey: SshKeyView };
-export interface EncryptFileError extends Error {
-  name: "EncryptFileError";
-  variant: "Encrypt" | "Io";
-}
-export function isEncryptFileError(error: any): error is EncryptFileError;
 export interface DecryptFileError extends Error {
   name: "DecryptFileError";
   variant: "Decrypt" | "Io";
@@ -1631,18 +1626,25 @@ export interface DecryptFileError extends Error {
 export function isDecryptFileError(error: any): error is DecryptFileError;
+export interface EncryptFileError extends Error {
+  name: "EncryptFileError";
+  variant: "Encrypt" | "Io";
+}
+export function isEncryptFileError(error: any): error is EncryptFileError;
 export interface CipherPermissions {
   delete: boolean;
   restore: boolean;
 }
-export interface CardView {
-  cardholderName: string | undefined;
-  expMonth: string | undefined;
-  expYear: string | undefined;
-  code: string | undefined;
-  brand: string | undefined;
-  number: string | undefined;
+export interface Card {
+  cardholderName: EncString | undefined;
+  expMonth: EncString | undefined;
+  expYear: EncString | undefined;
+  code: EncString | undefined;
+  brand: EncString | undefined;
+  number: EncString | undefined;
 }
 /**
@@ -1655,13 +1657,20 @@ export interface CardListView {
   brand: string | undefined;
 }
-export interface Card {
-  cardholderName: EncString | undefined;
-  expMonth: EncString | undefined;
-  expYear: EncString | undefined;
-  code: EncString | undefined;
-  brand: EncString | undefined;
-  number: EncString | undefined;
+export interface CardView {
+  cardholderName: string | undefined;
+  expMonth: string | undefined;
+  expYear: string | undefined;
+  code: string | undefined;
+  brand: string | undefined;
+  number: string | undefined;
+}
+export interface FieldView {
+  name: string | undefined;
+  value: string | undefined;
+  type: FieldType;
+  linkedId: LinkedIdType | undefined;
 }
 export interface Field {
@@ -1671,59 +1680,47 @@ export interface Field {
   linkedId: LinkedIdType | undefined;
 }
-export interface FieldView {
-  name: string | undefined;
-  value: string | undefined;
-  type: FieldType;
-  linkedId: LinkedIdType | undefined;
+export interface Login {
+  username: EncString | undefined;
+  password: EncString | undefined;
+  passwordRevisionDate: DateTime<Utc> | undefined;
+  uris: LoginUri[] | undefined;
+  totp: EncString | undefined;
+  autofillOnPageLoad: boolean | undefined;
+  fido2Credentials: Fido2Credential[] | undefined;
 }
-export interface Fido2CredentialFullView {
+export interface Fido2CredentialListView {
   credentialId: string;
-  keyType: string;
-  keyAlgorithm: string;
-  keyCurve: string;
-  keyValue: string;
   rpId: string;
   userHandle: string | undefined;
   userName: string | undefined;
-  counter: string;
-  rpName: string | undefined;
   userDisplayName: string | undefined;
-  discoverable: string;
-  creationDate: DateTime<Utc>;
+  counter: string;
 }
-export interface Fido2CredentialNewView {
+export interface LoginUri {
+  uri: EncString | undefined;
+  match: UriMatchType | undefined;
+  uriChecksum: EncString | undefined;
+}
+export interface Fido2CredentialView {
   credentialId: string;
   keyType: string;
   keyAlgorithm: string;
   keyCurve: string;
+  keyValue: EncString;
   rpId: string;
   userHandle: string | undefined;
   userName: string | undefined;
   counter: string;
   rpName: string | undefined;
   userDisplayName: string | undefined;
+  discoverable: string;
   creationDate: DateTime<Utc>;
 }
-export interface Login {
-  username: EncString | undefined;
-  password: EncString | undefined;
-  passwordRevisionDate: DateTime<Utc> | undefined;
-  uris: LoginUri[] | undefined;
-  totp: EncString | undefined;
-  autofillOnPageLoad: boolean | undefined;
-  fido2Credentials: Fido2Credential[] | undefined;
-}
-export interface LoginUriView {
-  uri: string | undefined;
-  match: UriMatchType | undefined;
-  uriChecksum: string | undefined;
-}
 export interface LoginView {
   username: string | undefined;
   password: string | undefined;
@@ -1734,46 +1731,40 @@ export interface LoginView {
   fido2Credentials: Fido2Credential[] | undefined;
 }
-export interface LoginListView {
-  fido2Credentials: Fido2CredentialListView[] | undefined;
-  hasFido2: boolean;
-  username: string | undefined;
-  /**
-   * The TOTP key is not decrypted. Useable as is with [`crate::generate_totp_cipher_view`].
-   */
-  totp: EncString | undefined;
-  uris: LoginUriView[] | undefined;
-}
-export interface Fido2CredentialView {
+export interface Fido2CredentialNewView {
   credentialId: string;
   keyType: string;
   keyAlgorithm: string;
   keyCurve: string;
-  keyValue: EncString;
   rpId: string;
   userHandle: string | undefined;
   userName: string | undefined;
   counter: string;
   rpName: string | undefined;
   userDisplayName: string | undefined;
-  discoverable: string;
   creationDate: DateTime<Utc>;
 }
-export interface LoginUri {
-  uri: EncString | undefined;
+export interface LoginUriView {
+  uri: string | undefined;
   match: UriMatchType | undefined;
-  uriChecksum: EncString | undefined;
+  uriChecksum: string | undefined;
 }
-export interface Fido2CredentialListView {
+export interface Fido2CredentialFullView {
   credentialId: string;
+  keyType: string;
+  keyAlgorithm: string;
+  keyCurve: string;
+  keyValue: string;
   rpId: string;
   userHandle: string | undefined;
   userName: string | undefined;
-  userDisplayName: string | undefined;
   counter: string;
+  rpName: string | undefined;
+  userDisplayName: string | undefined;
+  discoverable: string;
+  creationDate: DateTime<Utc>;
 }
 export interface Fido2Credential {
@@ -1792,6 +1783,39 @@ export interface Fido2Credential {
   creationDate: DateTime<Utc>;
 }
+export interface LoginListView {
+  fido2Credentials: Fido2CredentialListView[] | undefined;
+  hasFido2: boolean;
+  username: string | undefined;
+  /**
+   * The TOTP key is not decrypted. Useable as is with [`crate::generate_totp_cipher_view`].
+   */
+  totp: EncString | undefined;
+  uris: LoginUriView[] | undefined;
+}
+export interface CipherError extends Error {
+  name: "CipherError";
+  variant:
+    | "MissingField"
+    | "Crypto"
+    | "Decrypt"
+    | "Encrypt"
+    | "AttachmentsWithoutKeys"
+    | "OrganizationAlreadySet"
+    | "Repository"
+    | "Chrono"
+    | "SerdeJson"
+    | "Api";
+}
+export function isCipherError(error: any): error is CipherError;
+/**
+ * NewType wrapper for `CipherId`
+ */
+export type CipherId = Tagged<Uuid, "CipherId">;
 export interface Cipher {
   id: CipherId | undefined;
   organizationId: OrganizationId | undefined;
@@ -1827,78 +1851,6 @@ export interface Cipher {
   data: string | undefined;
 }
-/**
- * Represents the result of decrypting a list of ciphers.
- *
- * This struct contains two vectors: `successes` and `failures`.
- * `successes` contains the decrypted `CipherListView` objects,
- * while `failures` contains the original `Cipher` objects that failed to decrypt.
- */
-export interface DecryptCipherListResult {
-  /**
-   * The decrypted `CipherListView` objects.
-   */
-  successes: CipherListView[];
-  /**
-   * The original `Cipher` objects that failed to decrypt.
-   */
-  failures: Cipher[];
-}
-export interface CipherError extends Error {
-  name: "CipherError";
-  variant:
-    | "MissingField"
-    | "Crypto"
-    | "Decrypt"
-    | "Encrypt"
-    | "AttachmentsWithoutKeys"
-    | "OrganizationAlreadySet"
-    | "Repository"
-    | "Chrono"
-    | "SerdeJson"
-    | "Api";
-}
-export function isCipherError(error: any): error is CipherError;
-/**
- * NewType wrapper for `CipherId`
- */
-export type CipherId = Tagged<Uuid, "CipherId">;
-/**
- * Available fields on a cipher and can be copied from a the list view in the UI.
- */
-export type CopyableCipherFields =
-  | "LoginUsername"
-  | "LoginPassword"
-  | "LoginTotp"
-  | "CardNumber"
-  | "CardSecurityCode"
-  | "IdentityUsername"
-  | "IdentityEmail"
-  | "IdentityPhone"
-  | "IdentityAddress"
-  | "SshKey"
-  | "SecureNotes";
-export interface EncryptionContext {
-  /**
-   * The Id of the user that encrypted the cipher. It should always represent a UserId, even for
-   * Organization-owned ciphers
-   */
-  encryptedFor: UserId;
-  cipher: Cipher;
-}
-export type CipherListViewType =
-  | { login: LoginListView }
-  | "secureNote"
-  | { card: CardListView }
-  | "identity"
-  | "sshKey";
 export interface CipherView {
   id: CipherId | undefined;
   organizationId: OrganizationId | undefined;
@@ -1932,6 +1884,31 @@ export interface CipherView {
   archivedDate: DateTime<Utc> | undefined;
 }
+/**
+ * Available fields on a cipher and can be copied from a the list view in the UI.
+ */
+export type CopyableCipherFields =
+  | "LoginUsername"
+  | "LoginPassword"
+  | "LoginTotp"
+  | "CardNumber"
+  | "CardSecurityCode"
+  | "IdentityUsername"
+  | "IdentityEmail"
+  | "IdentityPhone"
+  | "IdentityAddress"
+  | "SshKey"
+  | "SecureNotes";
+export interface EncryptionContext {
+  /**
+   * The Id of the user that encrypted the cipher. It should always represent a UserId, even for
+   * Organization-owned ciphers
+   */
+  encryptedFor: UserId;
+  cipher: Cipher;
+}
 export interface CipherListView {
   id: CipherId | undefined;
   organizationId: OrganizationId | undefined;
@@ -1969,21 +1946,31 @@ export interface CipherListView {
   localData: LocalDataView | undefined;
 }
-export interface SshKeyView {
-  /**
-   * SSH private key (ed25519/rsa) in unencrypted openssh private key format [OpenSSH private key](https://github.com/openssh/openssh-portable/blob/master/PROTOCOL.key)
-   */
-  privateKey: string;
+/**
+ * Represents the result of decrypting a list of ciphers.
+ *
+ * This struct contains two vectors: `successes` and `failures`.
+ * `successes` contains the decrypted `CipherListView` objects,
+ * while `failures` contains the original `Cipher` objects that failed to decrypt.
+ */
+export interface DecryptCipherListResult {
   /**
-   * SSH public key (ed25519/rsa) according to [RFC4253](https://datatracker.ietf.org/doc/html/rfc4253#section-6.6)
+   * The decrypted `CipherListView` objects.
    */
-  publicKey: string;
+  successes: CipherListView[];
   /**
-   * SSH fingerprint using SHA256 in the format: `SHA256:BASE64_ENCODED_FINGERPRINT`
+   * The original `Cipher` objects that failed to decrypt.
    */
-  fingerprint: string;
+  failures: Cipher[];
 }
+export type CipherListViewType =
+  | { login: LoginListView }
+  | "secureNote"
+  | { card: CardListView }
+  | "identity"
+  | "sshKey";
 export interface SshKey {
   /**
    * SSH private key (ed25519/rsa) in unencrypted openssh private key format [OpenSSH private key](https://github.com/openssh/openssh-portable/blob/master/PROTOCOL.key)
@@ -1999,25 +1986,19 @@ export interface SshKey {
   fingerprint: EncString;
 }
-export interface IdentityView {
-  title: string | undefined;
-  firstName: string | undefined;
-  middleName: string | undefined;
-  lastName: string | undefined;
-  address1: string | undefined;
-  address2: string | undefined;
-  address3: string | undefined;
-  city: string | undefined;
-  state: string | undefined;
-  postalCode: string | undefined;
-  country: string | undefined;
-  company: string | undefined;
-  email: string | undefined;
-  phone: string | undefined;
-  ssn: string | undefined;
-  username: string | undefined;
-  passportNumber: string | undefined;
-  licenseNumber: string | undefined;
+export interface SshKeyView {
+  /**
+   * SSH private key (ed25519/rsa) in unencrypted openssh private key format [OpenSSH private key](https://github.com/openssh/openssh-portable/blob/master/PROTOCOL.key)
+   */
+  privateKey: string;
+  /**
+   * SSH public key (ed25519/rsa) according to [RFC4253](https://datatracker.ietf.org/doc/html/rfc4253#section-6.6)
+   */
+  publicKey: string;
+  /**
+   * SSH fingerprint using SHA256 in the format: `SHA256:BASE64_ENCODED_FINGERPRINT`
+   */
+  fingerprint: string;
 }
 export interface Identity {
@@ -2041,25 +2022,46 @@ export interface Identity {
   licenseNumber: EncString | undefined;
 }
-export type LinkedIdType = LoginLinkedIdType | CardLinkedIdType | IdentityLinkedIdType;
+export interface IdentityView {
+  title: string | undefined;
+  firstName: string | undefined;
+  middleName: string | undefined;
+  lastName: string | undefined;
+  address1: string | undefined;
+  address2: string | undefined;
+  address3: string | undefined;
+  city: string | undefined;
+  state: string | undefined;
+  postalCode: string | undefined;
+  country: string | undefined;
+  company: string | undefined;
+  email: string | undefined;
+  phone: string | undefined;
+  ssn: string | undefined;
+  username: string | undefined;
+  passportNumber: string | undefined;
+  licenseNumber: string | undefined;
+}
-/**
- * NewType wrapper for `FolderId`
- */
-export type FolderId = Tagged<Uuid, "FolderId">;
+export type LinkedIdType = LoginLinkedIdType | CardLinkedIdType | IdentityLinkedIdType;
-export interface FolderView {
+export interface Folder {
   id: FolderId | undefined;
-  name: string;
+  name: EncString;
   revisionDate: DateTime<Utc>;
 }
-export interface Folder {
+export interface FolderView {
   id: FolderId | undefined;
-  name: EncString;
+  name: string;
   revisionDate: DateTime<Utc>;
 }
+/**
+ * NewType wrapper for `FolderId`
+ */
+export type FolderId = Tagged<Uuid, "FolderId">;
 export interface EditFolderError extends Error {
   name: "EditFolderError";
   variant: