@bitwarden/sdk-internal 0.2.0-main.417 → 0.2.0-main.419

package/node/bitwarden_wasm_internal.d.ts

@@ -1,16 +1,5 @@
 /* tslint:disable */
 /* eslint-disable */
-/**
- * Generate a new SSH key pair
- *
- * # Arguments
- * - `key_algorithm` - The algorithm to use for the key pair
- *
- * # Returns
- * - `Ok(SshKey)` if the key was successfully generated
- * - `Err(KeyGenerationError)` if the key could not be generated
- */
-export function generate_ssh_key(key_algorithm: KeyAlgorithm): SshKeyView;
 /**
  * Convert a PCKS8 or OpenSSH encrypted or unencrypted private key
  * to an OpenSSH private key with public key and fingerprint
@@ -27,6 +16,17 @@ export function generate_ssh_key(key_algorithm: KeyAlgorithm): SshKeyView;
  * - `Err(UnsupportedKeyType)` if the key type is not supported
  */
 export function import_ssh_key(imported_key: string, password?: string | null): SshKeyView;
+/**
+ * Generate a new SSH key pair
+ *
+ * # Arguments
+ * - `key_algorithm` - The algorithm to use for the key pair
+ *
+ * # Returns
+ * - `Ok(SshKey)` if the key was successfully generated
+ * - `Err(KeyGenerationError)` if the key could not be generated
+ */
+export function generate_ssh_key(key_algorithm: KeyAlgorithm): SshKeyView;
 export function init_sdk(log_level?: LogLevel | null): void;
 /**
  * Sends a DiscoverRequest to the specified destination and returns the response.
@@ -180,32 +180,29 @@ export interface TokenProvider {
   get_access_token(): Promise<string | undefined>;
 }
 
-/**
- * Active feature flags for the SDK.
- */
-export interface FeatureFlags extends Map<string, boolean> {}
-
 export interface Repositories {
   cipher: Repository<Cipher> | null;
   folder: Repository<Folder> | null;
 }
 
+/**
+ * Active feature flags for the SDK.
+ */
+export interface FeatureFlags extends Map<string, boolean> {}
+
 export interface IndexedDbConfiguration {
   db_name: string;
 }
 
 /**
- * Credentials for getting a send access token using an email and OTP.
+ * Credentials for sending an OTP to the user\'s email address.
+ * This is used when the send requires email verification with an OTP.
  */
-export interface SendEmailOtpCredentials {
+export interface SendEmailCredentials {
   /**
    * The email address to which the OTP will be sent.
    */
   email: string;
-  /**
-   * The one-time password (OTP) that the user has received via email.
-   */
-  otp: string;
 }
 
 /**
@@ -221,24 +218,19 @@ export interface SendPasswordCredentials {
 }
 
 /**
- * Credentials for sending an OTP to the user\'s email address.
- * This is used when the send requires email verification with an OTP.
+ * Credentials for getting a send access token using an email and OTP.
  */
-export interface SendEmailCredentials {
+export interface SendEmailOtpCredentials {
   /**
    * The email address to which the OTP will be sent.
    */
   email: string;
+  /**
+   * The one-time password (OTP) that the user has received via email.
+   */
+  otp: string;
 }
 
-/**
- * The credentials used for send access requests.
- */
-export type SendAccessCredentials =
-  | SendPasswordCredentials
-  | SendEmailOtpCredentials
-  | SendEmailCredentials;
-
 /**
  * A request structure for requesting a send access token from the API.
  */
@@ -254,12 +246,22 @@ export interface SendAccessTokenRequest {
 }
 
 /**
- * Represents errors that can occur when requesting a send access token.
- * It includes expected and unexpected API errors.
+ * The credentials used for send access requests.
  */
-export type SendAccessTokenError =
-  | { kind: "unexpected"; data: UnexpectedIdentityError }
-  | { kind: "expected"; data: SendAccessTokenApiErrorResponse };
+export type SendAccessCredentials =
+  | SendPasswordCredentials
+  | SendEmailOtpCredentials
+  | SendEmailCredentials;
+
+/**
+ * Any unexpected error that occurs when making requests to identity. This could be
+ * local/transport/decoding failure from the HTTP client (DNS/TLS/connect/read timeout,
+ * connection reset, or JSON decode failure on a success response) or non-2xx response with an
+ * unexpected body or status. Used when decoding the server\'s error payload into
+ * `SendAccessTokenApiErrorResponse` fails, or for 5xx responses where no structured error is
+ * available.
+ */
+export type UnexpectedIdentityError = string;
 
 /**
  * A send access token which can be used to access a send.
@@ -276,24 +278,12 @@ export interface SendAccessTokenResponse {
 }
 
 /**
- * Any unexpected error that occurs when making requests to identity. This could be
- * local/transport/decoding failure from the HTTP client (DNS/TLS/connect/read timeout,
- * connection reset, or JSON decode failure on a success response) or non-2xx response with an
- * unexpected body or status. Used when decoding the server\'s error payload into
- * `SendAccessTokenApiErrorResponse` fails, or for 5xx responses where no structured error is
- * available.
- */
-export type UnexpectedIdentityError = string;
-
-/**
- * Invalid request errors - typically due to missing parameters.
+ * Represents errors that can occur when requesting a send access token.
+ * It includes expected and unexpected API errors.
  */
-export type SendAccessTokenInvalidRequestError =
-  | "send_id_required"
-  | "password_hash_b64_required"
-  | "email_required"
-  | "email_and_otp_required_otp_sent"
-  | "unknown";
+export type SendAccessTokenError =
+  | { kind: "unexpected"; data: UnexpectedIdentityError }
+  | { kind: "expected"; data: SendAccessTokenApiErrorResponse };
 
 /**
  * Invalid grant errors - typically due to invalid credentials.
@@ -327,38 +317,48 @@ export type SendAccessTokenApiErrorResponse =
   | { error: "invalid_target"; error_description?: string };
 
 /**
- * Type of collection
+ * Invalid request errors - typically due to missing parameters.
  */
-export type CollectionType = "SharedCollection" | "DefaultUserCollection";
+export type SendAccessTokenInvalidRequestError =
+  | "send_id_required"
+  | "password_hash_b64_required"
+  | "email_required"
+  | "email_and_otp_required_otp_sent"
+  | "unknown";
 
-export interface CollectionView {
+export interface Collection {
   id: CollectionId | undefined;
   organizationId: OrganizationId;
-  name: string;
+  name: EncString;
   externalId: string | undefined;
   hidePasswords: boolean;
   readOnly: boolean;
   manage: boolean;
+  defaultUserCollectionEmail: string | undefined;
   type: CollectionType;
 }
 
-export interface Collection {
+/**
+ * Type of collection
+ */
+export type CollectionType = "SharedCollection" | "DefaultUserCollection";
+
+/**
+ * NewType wrapper for `CollectionId`
+ */
+export type CollectionId = Tagged<Uuid, "CollectionId">;
+
+export interface CollectionView {
   id: CollectionId | undefined;
   organizationId: OrganizationId;
-  name: EncString;
+  name: string;
   externalId: string | undefined;
   hidePasswords: boolean;
   readOnly: boolean;
   manage: boolean;
-  defaultUserCollectionEmail: string | undefined;
   type: CollectionType;
 }
 
-/**
- * NewType wrapper for `CollectionId`
- */
-export type CollectionId = Tagged<Uuid, "CollectionId">;
-
 export interface CollectionDecryptError extends Error {
   name: "CollectionDecryptError";
   variant: "Crypto";
@@ -368,6 +368,15 @@ export function isCollectionDecryptError(error: any): error is CollectionDecrypt
 
 export type SignedSecurityState = string;
 
+/**
+ * Represents the data required to authenticate with the master password.
+ */
+export interface MasterPasswordAuthenticationData {
+  kdf: Kdf;
+  salt: string;
+  masterPasswordAuthenticationHash: B64;
+}
+
 /**
  * Represents the data required to unlock with the master password.
  */
@@ -398,15 +407,6 @@ export interface MasterPasswordError extends Error {
 
 export function isMasterPasswordError(error: any): error is MasterPasswordError;
 
-/**
- * Represents the data required to authenticate with the master password.
- */
-export interface MasterPasswordAuthenticationData {
-  kdf: Kdf;
-  salt: string;
-  masterPasswordAuthenticationHash: B64;
-}
-
 export interface AccountCryptographyInitializationError extends Error {
   name: "AccountCryptographyInitializationError";
   variant:
@@ -438,68 +438,39 @@ export type WrappedAccountCryptographicState =
     };
 
 /**
- * Request for migrating an account from password to key connector.
+ * Response for `verify_asymmetric_keys`.
  */
-export interface DeriveKeyConnectorRequest {
-  /**
-   * Encrypted user key, used to validate the master key
-   */
-  userKeyEncrypted: EncString;
-  /**
-   * The user\'s master password
-   */
-  password: string;
+export interface VerifyAsymmetricKeysResponse {
   /**
-   * The KDF parameters used to derive the master key
+   * Whether the user\'s private key was decryptable by the user key.
    */
-  kdf: Kdf;
+  privateKeyDecryptable: boolean;
   /**
-   * The user\'s email address
+   * Whether the user\'s private key was a valid RSA key and matched the public key provided.
    */
-  email: string;
+  validPrivateKey: boolean;
 }
 
 /**
  * Request for deriving a pin protected user key
  */
-export interface DerivePinKeyResponse {
+export interface EnrollPinResponse {
   /**
    * [UserKey] protected by PIN
    */
-  pinProtectedUserKey: EncString;
+  pinProtectedUserKeyEnvelope: PasswordProtectedKeyEnvelope;
   /**
    * PIN protected by [UserKey]
    */
-  encryptedPin: EncString;
+  userKeyEncryptedPin: EncString;
 }
 
-/**
- * Response from the `make_key_pair` function
- */
-export interface MakeKeyPairResponse {
-  /**
-   * The user\'s public key
-   */
-  userPublicKey: B64;
-  /**
-   * User\'s private key, encrypted with the user key
-   */
-  userKeyEncryptedPrivateKey: EncString;
+export interface DeriveKeyConnectorError extends Error {
+  name: "DeriveKeyConnectorError";
+  variant: "WrongPassword" | "Crypto";
 }
 
-/**
- * Response for `verify_asymmetric_keys`.
- */
-export interface VerifyAsymmetricKeysResponse {
-  /**
-   * Whether the user\'s private key was decryptable by the user key.
-   */
-  privateKeyDecryptable: boolean;
-  /**
-   * Whether the user\'s private key was a valid RSA key and matched the public key provided.
-   */
-  validPrivateKey: boolean;
-}
+export function isDeriveKeyConnectorError(error: any): error is DeriveKeyConnectorError;
 
 export interface EnrollAdminPasswordResetError extends Error {
   name: "EnrollAdminPasswordResetError";
@@ -508,27 +479,6 @@ export interface EnrollAdminPasswordResetError extends Error {
 
 export function isEnrollAdminPasswordResetError(error: any): error is EnrollAdminPasswordResetError;
 
-export interface CryptoClientError extends Error {
-  name: "CryptoClientError";
-  variant: "NotAuthenticated" | "Crypto" | "InvalidKdfSettings" | "PasswordProtectedKeyEnvelope";
-}
-
-export function isCryptoClientError(error: any): error is CryptoClientError;
-
-/**
- * Request for deriving a pin protected user key
- */
-export interface EnrollPinResponse {
-  /**
-   * [UserKey] protected by PIN
-   */
-  pinProtectedUserKeyEnvelope: PasswordProtectedKeyEnvelope;
-  /**
-   * PIN protected by [UserKey]
-   */
-  userKeyEncryptedPin: EncString;
-}
-
 /**
  * State used for initializing the user cryptographic state.
  */
@@ -557,53 +507,58 @@ export interface InitUserCryptoRequest {
 }
 
 /**
- * Request for `verify_asymmetric_keys`.
- */
-export interface VerifyAsymmetricKeysRequest {
-  /**
-   * The user\'s user key
-   */
-  userKey: B64;
-  /**
-   * The user\'s public key
-   */
-  userPublicKey: B64;
-  /**
-   * User\'s private key, encrypted with the user key
-   */
-  userKeyEncryptedPrivateKey: EncString;
-}
-
-/**
- * Response from the `make_update_password` function
+ * The crypto method used to initialize the user cryptographic state.
  */
-export interface UpdatePasswordResponse {
-  /**
-   * Hash of the new password
-   */
-  passwordHash: B64;
-  /**
-   * User key, encrypted with the new password
-   */
-  newKey: EncString;
+export type InitUserCryptoMethod =
+  | { password: { password: string; user_key: EncString } }
+  | { masterPasswordUnlock: { password: string; master_password_unlock: MasterPasswordUnlockData } }
+  | { decryptedKey: { decrypted_user_key: string } }
+  | { pin: { pin: string; pin_protected_user_key: EncString } }
+  | { pinEnvelope: { pin: string; pin_protected_user_key_envelope: PasswordProtectedKeyEnvelope } }
+  | { authRequest: { request_private_key: B64; method: AuthRequestMethod } }
+  | {
+      deviceKey: {
+        device_key: string;
+        protected_device_private_key: EncString;
+        device_protected_user_key: UnsignedSharedKey;
+      };
+    }
+  | { keyConnector: { master_key: B64; user_key: EncString } };
+
+export interface CryptoClientError extends Error {
+  name: "CryptoClientError";
+  variant: "NotAuthenticated" | "Crypto" | "InvalidKdfSettings" | "PasswordProtectedKeyEnvelope";
 }
 
+export function isCryptoClientError(error: any): error is CryptoClientError;
+
 /**
- * Represents the request to initialize the user\'s organizational cryptographic state.
+ * Response from the `make_key_pair` function
  */
-export interface InitOrgCryptoRequest {
+export interface MakeKeyPairResponse {
   /**
-   * The encryption keys for all the organizations the user is a part of
+   * The user\'s public key
    */
-  organizationKeys: Map<OrganizationId, UnsignedSharedKey>;
+  userPublicKey: B64;
+  /**
+   * User\'s private key, encrypted with the user key
+   */
+  userKeyEncryptedPrivateKey: EncString;
 }
 
 /**
- * Auth requests supports multiple initialization methods.
+ * Response from the `make_update_password` function
  */
-export type AuthRequestMethod =
-  | { userKey: { protected_user_key: UnsignedSharedKey } }
-  | { masterKey: { protected_master_key: UnsignedSharedKey; auth_request_key: EncString } };
+export interface UpdatePasswordResponse {
+  /**
+   * Hash of the new password
+   */
+  passwordHash: B64;
+  /**
+   * User key, encrypted with the new password
+   */
+  newKey: EncString;
+}
 
 /**
  * Response from the `update_kdf` function
@@ -623,32 +578,6 @@ export interface UpdateKdfResponse {
   oldMasterPasswordAuthenticationData: MasterPasswordAuthenticationData;
 }
 
-export interface DeriveKeyConnectorError extends Error {
-  name: "DeriveKeyConnectorError";
-  variant: "WrongPassword" | "Crypto";
-}
-
-export function isDeriveKeyConnectorError(error: any): error is DeriveKeyConnectorError;
-
-/**
- * The crypto method used to initialize the user cryptographic state.
- */
-export type InitUserCryptoMethod =
-  | { password: { password: string; user_key: EncString } }
-  | { masterPasswordUnlock: { password: string; master_password_unlock: MasterPasswordUnlockData } }
-  | { decryptedKey: { decrypted_user_key: string } }
-  | { pin: { pin: string; pin_protected_user_key: EncString } }
-  | { pinEnvelope: { pin: string; pin_protected_user_key_envelope: PasswordProtectedKeyEnvelope } }
-  | { authRequest: { request_private_key: B64; method: AuthRequestMethod } }
-  | {
-      deviceKey: {
-        device_key: string;
-        protected_device_private_key: EncString;
-        device_protected_user_key: UnsignedSharedKey;
-      };
-    }
-  | { keyConnector: { master_key: B64; user_key: EncString } };
-
 /**
  * Response for the `make_keys_for_user_crypto_v2`, containing a set of keys for a user
  */
@@ -687,6 +616,77 @@ export interface UserCryptoV2KeysResponse {
   securityVersion: number;
 }
 
+/**
+ * Auth requests supports multiple initialization methods.
+ */
+export type AuthRequestMethod =
+  | { userKey: { protected_user_key: UnsignedSharedKey } }
+  | { masterKey: { protected_master_key: UnsignedSharedKey; auth_request_key: EncString } };
+
+/**
+ * Request for deriving a pin protected user key
+ */
+export interface DerivePinKeyResponse {
+  /**
+   * [UserKey] protected by PIN
+   */
+  pinProtectedUserKey: EncString;
+  /**
+   * PIN protected by [UserKey]
+   */
+  encryptedPin: EncString;
+}
+
+/**
+ * Represents the request to initialize the user\'s organizational cryptographic state.
+ */
+export interface InitOrgCryptoRequest {
+  /**
+   * The encryption keys for all the organizations the user is a part of
+   */
+  organizationKeys: Map<OrganizationId, UnsignedSharedKey>;
+}
+
+/**
+ * Request for migrating an account from password to key connector.
+ */
+export interface DeriveKeyConnectorRequest {
+  /**
+   * Encrypted user key, used to validate the master key
+   */
+  userKeyEncrypted: EncString;
+  /**
+   * The user\'s master password
+   */
+  password: string;
+  /**
+   * The KDF parameters used to derive the master key
+   */
+  kdf: Kdf;
+  /**
+   * The user\'s email address
+   */
+  email: string;
+}
+
+/**
+ * Request for `verify_asymmetric_keys`.
+ */
+export interface VerifyAsymmetricKeysRequest {
+  /**
+   * The user\'s user key
+   */
+  userKey: B64;
+  /**
+   * The user\'s public key
+   */
+  userPublicKey: B64;
+  /**
+   * User\'s private key, encrypted with the user key
+   */
+  userKeyEncryptedPrivateKey: EncString;
+}
+
 /**
  * NewType wrapper for `OrganizationId`
  */
@@ -963,12 +963,7 @@ export interface PasswordGeneratorRequest {
   minSpecial: number | undefined;
 }
 
-export interface UsernameError extends Error {
-  name: "UsernameError";
-  variant: "InvalidApiKey" | "Unknown" | "ResponseContent" | "Reqwest";
-}
-
-export function isUsernameError(error: any): error is UsernameError;
+export type AppendType = "random" | { websiteName: { website: string } };
 
 export type UsernameGeneratorRequest =
   | { word: { capitalize: boolean; include_number: boolean } }
@@ -976,7 +971,12 @@ export type UsernameGeneratorRequest =
   | { catchall: { type: AppendType; domain: string } }
   | { forwarded: { service: ForwarderServiceType; website: string | undefined } };
 
-export type AppendType = "random" | { websiteName: { website: string } };
+export interface UsernameError extends Error {
+  name: "UsernameError";
+  variant: "InvalidApiKey" | "Unknown" | "ResponseContent" | "Reqwest";
+}
+
+export function isUsernameError(error: any): error is UsernameError;
 
 /**
  * Configures the email forwarding service to use.
@@ -998,6 +998,13 @@ export interface RequestError extends Error {
 
 export function isRequestError(error: any): error is RequestError;
 
+export interface TypedReceiveError extends Error {
+  name: "TypedReceiveError";
+  variant: "Channel" | "Timeout" | "Cancelled" | "Typing";
+}
+
+export function isTypedReceiveError(error: any): error is TypedReceiveError;
+
 export interface SubscribeError extends Error {
   name: "SubscribeError";
   variant: "NotStarted";
@@ -1012,29 +1019,22 @@ export interface ReceiveError extends Error {
 
 export function isReceiveError(error: any): error is ReceiveError;
 
-export interface TypedReceiveError extends Error {
-  name: "TypedReceiveError";
-  variant: "Channel" | "Timeout" | "Cancelled" | "Typing";
-}
-
-export function isTypedReceiveError(error: any): error is TypedReceiveError;
-
 export interface IpcCommunicationBackendSender {
   send(message: OutgoingMessage): Promise<void>;
 }
 
-export interface DeserializeError extends Error {
-  name: "DeserializeError";
-}
-
-export function isDeserializeError(error: any): error is DeserializeError;
-
 export interface ChannelError extends Error {
   name: "ChannelError";
 }
 
 export function isChannelError(error: any): error is ChannelError;
 
+export interface DeserializeError extends Error {
+  name: "DeserializeError";
+}
+
+export function isDeserializeError(error: any): error is DeserializeError;
+
 export interface IpcSessionRepository {
   get(endpoint: Endpoint): Promise<any | undefined>;
   save(endpoint: Endpoint, session: any): Promise<void>;
@@ -1103,31 +1103,17 @@ export interface CipherRiskError extends Error {
 export function isCipherRiskError(error: any): error is CipherRiskError;
 
 /**
- * Risk evaluation result for a single cipher.
+ * Result of checking password exposure via HIBP API.
  */
-export interface CipherRiskResult {
-  /**
-   * Cipher ID matching the input CipherLoginDetails.
-   */
-  id: CipherId;
-  /**
-   * Password strength score from 0 (weakest) to 4 (strongest).
-   * Calculated using zxcvbn with cipher-specific context.
-   */
-  password_strength: number;
-  /**
-   * Result of checking password exposure via HIBP API.
-   * - `NotChecked`: check_exposed was false, or password was empty
-   * - `Found(n)`: Successfully checked, found in n breaches
-   * - `Error(msg)`: HIBP API request failed for this cipher with the given error message
-   */
-  exposed_result: ExposedPasswordResult;
-  /**
-   * Number of times this password appears in the provided password_map.
-   * None if not found or if no password_map was provided.
-   */
-  reuse_count: number | undefined;
-}
+export type ExposedPasswordResult =
+  | { type: "NotChecked" }
+  | { type: "Found"; value: number }
+  | { type: "Error"; value: string };
+
+/**
+ * Password reuse map wrapper for WASM compatibility.
+ */
+export type PasswordReuseMap = Record<string, number>;
 
 /**
  * Options for configuring risk computation.
@@ -1169,42 +1155,56 @@ export interface CipherLoginDetails {
 }
 
 /**
- * Password reuse map wrapper for WASM compatibility.
- */
-export type PasswordReuseMap = Record<string, number>;
-
-/**
- * Result of checking password exposure via HIBP API.
+ * Risk evaluation result for a single cipher.
  */
-export type ExposedPasswordResult =
-  | { type: "NotChecked" }
-  | { type: "Found"; value: number }
-  | { type: "Error"; value: string };
-
-export interface PasswordHistory {
-  password: EncString;
-  lastUsedDate: DateTime<Utc>;
-}
-
-export interface PasswordHistoryView {
-  password: string;
-  lastUsedDate: DateTime<Utc>;
-}
-
-export interface AncestorMap {
-  ancestors: Map<CollectionId, string>;
-}
-
-export interface TotpError extends Error {
-  name: "TotpError";
-  variant: "InvalidOtpauth" | "MissingSecret" | "Crypto";
-}
-
-export function isTotpError(error: any): error is TotpError;
-
-export interface TotpResponse {
+export interface CipherRiskResult {
   /**
-   * Generated TOTP code
+   * Cipher ID matching the input CipherLoginDetails.
+   */
+  id: CipherId;
+  /**
+   * Password strength score from 0 (weakest) to 4 (strongest).
+   * Calculated using zxcvbn with cipher-specific context.
+   */
+  password_strength: number;
+  /**
+   * Result of checking password exposure via HIBP API.
+   * - `NotChecked`: check_exposed was false, or password was empty
+   * - `Found(n)`: Successfully checked, found in n breaches
+   * - `Error(msg)`: HIBP API request failed for this cipher with the given error message
+   */
+  exposed_result: ExposedPasswordResult;
+  /**
+   * Number of times this password appears in the provided password_map.
+   * None if not found or if no password_map was provided.
+   */
+  reuse_count: number | undefined;
+}
+
+export interface PasswordHistoryView {
+  password: string;
+  lastUsedDate: DateTime<Utc>;
+}
+
+export interface PasswordHistory {
+  password: EncString;
+  lastUsedDate: DateTime<Utc>;
+}
+
+export interface AncestorMap {
+  ancestors: Map<CollectionId, string>;
+}
+
+export interface TotpError extends Error {
+  name: "TotpError";
+  variant: "InvalidOtpauth" | "MissingSecret" | "Crypto";
+}
+
+export function isTotpError(error: any): error is TotpError;
+
+export interface TotpResponse {
+  /**
+   * Generated TOTP code
    */
   code: string;
   /**
@@ -1271,11 +1271,11 @@ export interface LocalDataView {
   lastLaunched: DateTime<Utc> | undefined;
 }
 
-export interface SecureNoteView {
+export interface SecureNote {
   type: SecureNoteType;
 }
 
-export interface SecureNote {
+export interface SecureNoteView {
   type: SecureNoteType;
 }
 
@@ -1320,13 +1320,6 @@ export interface CipherEditRequest {
   key: EncString | undefined;
 }
 
-export interface CreateCipherError extends Error {
-  name: "CreateCipherError";
-  variant: "Crypto" | "Api" | "VaultParse" | "MissingField" | "NotAuthenticated" | "Repository";
-}
-
-export function isCreateCipherError(error: any): error is CreateCipherError;
-
 /**
  * Request to add a cipher.
  */
@@ -1341,6 +1334,13 @@ export interface CipherCreateRequest {
   fields: FieldView[];
 }
 
+export interface CreateCipherError extends Error {
+  name: "CreateCipherError";
+  variant: "Crypto" | "Api" | "VaultParse" | "MissingField" | "NotAuthenticated" | "Repository";
+}
+
+export function isCreateCipherError(error: any): error is CreateCipherError;
+
 /**
  * Represents the inner data of a cipher view.
  */
@@ -1370,15 +1370,6 @@ export interface CipherPermissions {
   restore: boolean;
 }
 
-export interface CardView {
-  cardholderName: string | undefined;
-  expMonth: string | undefined;
-  expYear: string | undefined;
-  code: string | undefined;
-  brand: string | undefined;
-  number: string | undefined;
-}
-
 export interface Card {
   cardholderName: EncString | undefined;
   expMonth: EncString | undefined;
@@ -1398,6 +1389,15 @@ export interface CardListView {
   brand: string | undefined;
 }
 
+export interface CardView {
+  cardholderName: string | undefined;
+  expMonth: string | undefined;
+  expYear: string | undefined;
+  code: string | undefined;
+  brand: string | undefined;
+  number: string | undefined;
+}
+
 export interface FieldView {
   name: string | undefined;
   value: string | undefined;
@@ -1412,23 +1412,36 @@ export interface Field {
   linkedId: LinkedIdType | undefined;
 }
 
+export interface LoginListView {
+  fido2Credentials: Fido2CredentialListView[] | undefined;
+  hasFido2: boolean;
+  username: string | undefined;
+  /**
+   * The TOTP key is not decrypted. Useable as is with [`crate::generate_totp_cipher_view`].
+   */
+  totp: EncString | undefined;
+  uris: LoginUriView[] | undefined;
+}
+
 export interface LoginUriView {
   uri: string | undefined;
   match: UriMatchType | undefined;
   uriChecksum: string | undefined;
 }
 
-export interface Fido2CredentialNewView {
+export interface Fido2CredentialFullView {
   credentialId: string;
   keyType: string;
   keyAlgorithm: string;
   keyCurve: string;
+  keyValue: string;
   rpId: string;
   userHandle: string | undefined;
   userName: string | undefined;
   counter: string;
   rpName: string | undefined;
   userDisplayName: string | undefined;
+  discoverable: string;
   creationDate: DateTime<Utc>;
 }
 
@@ -1442,38 +1455,6 @@ export interface Login {
   fido2Credentials: Fido2Credential[] | undefined;
 }
 
-export interface Fido2CredentialFullView {
-  credentialId: string;
-  keyType: string;
-  keyAlgorithm: string;
-  keyCurve: string;
-  keyValue: string;
-  rpId: string;
-  userHandle: string | undefined;
-  userName: string | undefined;
-  counter: string;
-  rpName: string | undefined;
-  userDisplayName: string | undefined;
-  discoverable: string;
-  creationDate: DateTime<Utc>;
-}
-
-export interface LoginView {
-  username: string | undefined;
-  password: string | undefined;
-  passwordRevisionDate: DateTime<Utc> | undefined;
-  uris: LoginUriView[] | undefined;
-  totp: string | undefined;
-  autofillOnPageLoad: boolean | undefined;
-  fido2Credentials: Fido2Credential[] | undefined;
-}
-
-export interface LoginUri {
-  uri: EncString | undefined;
-  match: UriMatchType | undefined;
-  uriChecksum: EncString | undefined;
-}
-
 export interface Fido2Credential {
   credentialId: EncString;
   keyType: EncString;
@@ -1490,133 +1471,59 @@ export interface Fido2Credential {
   creationDate: DateTime<Utc>;
 }
 
-export interface LoginListView {
-  fido2Credentials: Fido2CredentialListView[] | undefined;
-  hasFido2: boolean;
+export interface Fido2CredentialListView {
+  credentialId: string;
+  rpId: string;
+  userHandle: string | undefined;
+  userName: string | undefined;
+  userDisplayName: string | undefined;
+  counter: string;
+}
+
+export interface LoginView {
   username: string | undefined;
-  /**
-   * The TOTP key is not decrypted. Useable as is with [`crate::generate_totp_cipher_view`].
-   */
-  totp: EncString | undefined;
+  password: string | undefined;
+  passwordRevisionDate: DateTime<Utc> | undefined;
   uris: LoginUriView[] | undefined;
+  totp: string | undefined;
+  autofillOnPageLoad: boolean | undefined;
+  fido2Credentials: Fido2Credential[] | undefined;
 }
 
-export interface Fido2CredentialView {
+export interface Fido2CredentialNewView {
   credentialId: string;
   keyType: string;
   keyAlgorithm: string;
   keyCurve: string;
-  keyValue: EncString;
   rpId: string;
   userHandle: string | undefined;
   userName: string | undefined;
   counter: string;
   rpName: string | undefined;
   userDisplayName: string | undefined;
-  discoverable: string;
   creationDate: DateTime<Utc>;
 }
 
-export interface Fido2CredentialListView {
+export interface Fido2CredentialView {
   credentialId: string;
+  keyType: string;
+  keyAlgorithm: string;
+  keyCurve: string;
+  keyValue: EncString;
   rpId: string;
   userHandle: string | undefined;
   userName: string | undefined;
-  userDisplayName: string | undefined;
   counter: string;
-}
-
-export interface CipherListView {
-  id: CipherId | undefined;
-  organizationId: OrganizationId | undefined;
-  folderId: FolderId | undefined;
-  collectionIds: CollectionId[];
-  /**
-   * Temporary, required to support calculating TOTP from CipherListView.
-   */
-  key: EncString | undefined;
-  name: string;
-  subtitle: string;
-  type: CipherListViewType;
-  favorite: boolean;
-  reprompt: CipherRepromptType;
-  organizationUseTotp: boolean;
-  edit: boolean;
-  permissions: CipherPermissions | undefined;
-  viewPassword: boolean;
-  /**
-   * The number of attachments
-   */
-  attachments: number;
-  /**
-   * Indicates if the cipher has old attachments that need to be re-uploaded
-   */
-  hasOldAttachments: boolean;
-  creationDate: DateTime<Utc>;
-  deletedDate: DateTime<Utc> | undefined;
-  revisionDate: DateTime<Utc>;
-  archivedDate: DateTime<Utc> | undefined;
-  /**
-   * Hints for the presentation layer for which fields can be copied.
-   */
-  copyableFields: CopyableCipherFields[];
-  localData: LocalDataView | undefined;
-}
-
-export interface CipherView {
-  id: CipherId | undefined;
-  organizationId: OrganizationId | undefined;
-  folderId: FolderId | undefined;
-  collectionIds: CollectionId[];
-  /**
-   * Temporary, required to support re-encrypting existing items.
-   */
-  key: EncString | undefined;
-  name: string;
-  notes: string | undefined;
-  type: CipherType;
-  login: LoginView | undefined;
-  identity: IdentityView | undefined;
-  card: CardView | undefined;
-  secureNote: SecureNoteView | undefined;
-  sshKey: SshKeyView | undefined;
-  favorite: boolean;
-  reprompt: CipherRepromptType;
-  organizationUseTotp: boolean;
-  edit: boolean;
-  permissions: CipherPermissions | undefined;
-  viewPassword: boolean;
-  localData: LocalDataView | undefined;
-  attachments: AttachmentView[] | undefined;
-  fields: FieldView[] | undefined;
-  passwordHistory: PasswordHistoryView[] | undefined;
+  rpName: string | undefined;
+  userDisplayName: string | undefined;
+  discoverable: string;
   creationDate: DateTime<Utc>;
-  deletedDate: DateTime<Utc> | undefined;
-  revisionDate: DateTime<Utc>;
-  archivedDate: DateTime<Utc> | undefined;
 }
 
-/**
- * NewType wrapper for `CipherId`
- */
-export type CipherId = Tagged<Uuid, "CipherId">;
-
-/**
- * Represents the result of decrypting a list of ciphers.
- *
- * This struct contains two vectors: `successes` and `failures`.
- * `successes` contains the decrypted `CipherListView` objects,
- * while `failures` contains the original `Cipher` objects that failed to decrypt.
- */
-export interface DecryptCipherListResult {
-  /**
-   * The decrypted `CipherListView` objects.
-   */
-  successes: CipherListView[];
-  /**
-   * The original `Cipher` objects that failed to decrypt.
-   */
-  failures: Cipher[];
+export interface LoginUri {
+  uri: EncString | undefined;
+  match: UriMatchType | undefined;
+  uriChecksum: EncString | undefined;
 }
 
 /**
@@ -1635,15 +1542,6 @@ export type CopyableCipherFields =
   | "SshKey"
   | "SecureNotes";
 
-export interface EncryptionContext {
-  /**
-   * The Id of the user that encrypted the cipher. It should always represent a UserId, even for
-   * Organization-owned ciphers
-   */
-  encryptedFor: UserId;
-  cipher: Cipher;
-}
-
 export interface Cipher {
   id: CipherId | undefined;
   organizationId: OrganizationId | undefined;
@@ -1704,19 +1602,106 @@ export interface CipherError extends Error {
 
 export function isCipherError(error: any): error is CipherError;
 
-export interface SshKeyView {
+export interface EncryptionContext {
   /**
-   * SSH private key (ed25519/rsa) in unencrypted openssh private key format [OpenSSH private key](https://github.com/openssh/openssh-portable/blob/master/PROTOCOL.key)
+   * The Id of the user that encrypted the cipher. It should always represent a UserId, even for
+   * Organization-owned ciphers
    */
-  privateKey: string;
+  encryptedFor: UserId;
+  cipher: Cipher;
+}
+
+export interface CipherListView {
+  id: CipherId | undefined;
+  organizationId: OrganizationId | undefined;
+  folderId: FolderId | undefined;
+  collectionIds: CollectionId[];
   /**
-   * SSH public key (ed25519/rsa) according to [RFC4253](https://datatracker.ietf.org/doc/html/rfc4253#section-6.6)
+   * Temporary, required to support calculating TOTP from CipherListView.
    */
-  publicKey: string;
+  key: EncString | undefined;
+  name: string;
+  subtitle: string;
+  type: CipherListViewType;
+  favorite: boolean;
+  reprompt: CipherRepromptType;
+  organizationUseTotp: boolean;
+  edit: boolean;
+  permissions: CipherPermissions | undefined;
+  viewPassword: boolean;
   /**
-   * SSH fingerprint using SHA256 in the format: `SHA256:BASE64_ENCODED_FINGERPRINT`
+   * The number of attachments
    */
-  fingerprint: string;
+  attachments: number;
+  /**
+   * Indicates if the cipher has old attachments that need to be re-uploaded
+   */
+  hasOldAttachments: boolean;
+  creationDate: DateTime<Utc>;
+  deletedDate: DateTime<Utc> | undefined;
+  revisionDate: DateTime<Utc>;
+  archivedDate: DateTime<Utc> | undefined;
+  /**
+   * Hints for the presentation layer for which fields can be copied.
+   */
+  copyableFields: CopyableCipherFields[];
+  localData: LocalDataView | undefined;
+}
+
+/**
+ * Represents the result of decrypting a list of ciphers.
+ *
+ * This struct contains two vectors: `successes` and `failures`.
+ * `successes` contains the decrypted `CipherListView` objects,
+ * while `failures` contains the original `Cipher` objects that failed to decrypt.
+ */
+export interface DecryptCipherListResult {
+  /**
+   * The decrypted `CipherListView` objects.
+   */
+  successes: CipherListView[];
+  /**
+   * The original `Cipher` objects that failed to decrypt.
+   */
+  failures: Cipher[];
+}
+
+/**
+ * NewType wrapper for `CipherId`
+ */
+export type CipherId = Tagged<Uuid, "CipherId">;
+
+export interface CipherView {
+  id: CipherId | undefined;
+  organizationId: OrganizationId | undefined;
+  folderId: FolderId | undefined;
+  collectionIds: CollectionId[];
+  /**
+   * Temporary, required to support re-encrypting existing items.
+   */
+  key: EncString | undefined;
+  name: string;
+  notes: string | undefined;
+  type: CipherType;
+  login: LoginView | undefined;
+  identity: IdentityView | undefined;
+  card: CardView | undefined;
+  secureNote: SecureNoteView | undefined;
+  sshKey: SshKeyView | undefined;
+  favorite: boolean;
+  reprompt: CipherRepromptType;
+  organizationUseTotp: boolean;
+  edit: boolean;
+  permissions: CipherPermissions | undefined;
+  viewPassword: boolean;
+  localData: LocalDataView | undefined;
+  attachments: AttachmentView[] | undefined;
+  fields: FieldView[] | undefined;
+  passwordHistory: PasswordHistoryView[] | undefined;
+  creationDate: DateTime<Utc>;
+  deletedDate: DateTime<Utc> | undefined;
+  revisionDate: DateTime<Utc>;
+  archivedDate: DateTime<Utc> | undefined;
 }
 
 export interface SshKey {
@@ -1734,25 +1719,19 @@ export interface SshKey {
   fingerprint: EncString;
 }
 
-export interface IdentityView {
-  title: string | undefined;
-  firstName: string | undefined;
-  middleName: string | undefined;
-  lastName: string | undefined;
-  address1: string | undefined;
-  address2: string | undefined;
-  address3: string | undefined;
-  city: string | undefined;
-  state: string | undefined;
-  postalCode: string | undefined;
-  country: string | undefined;
-  company: string | undefined;
-  email: string | undefined;
-  phone: string | undefined;
-  ssn: string | undefined;
-  username: string | undefined;
-  passportNumber: string | undefined;
-  licenseNumber: string | undefined;
+export interface SshKeyView {
+  /**
+   * SSH private key (ed25519/rsa) in unencrypted openssh private key format [OpenSSH private key](https://github.com/openssh/openssh-portable/blob/master/PROTOCOL.key)
+   */
+  privateKey: string;
+  /**
+   * SSH public key (ed25519/rsa) according to [RFC4253](https://datatracker.ietf.org/doc/html/rfc4253#section-6.6)
+   */
+  publicKey: string;
+  /**
+   * SSH fingerprint using SHA256 in the format: `SHA256:BASE64_ENCODED_FINGERPRINT`
+   */
+  fingerprint: string;
 }
 
 export interface Identity {
@@ -1776,8 +1755,35 @@ export interface Identity {
   licenseNumber: EncString | undefined;
 }
 
+export interface IdentityView {
+  title: string | undefined;
+  firstName: string | undefined;
+  middleName: string | undefined;
+  lastName: string | undefined;
+  address1: string | undefined;
+  address2: string | undefined;
+  address3: string | undefined;
+  city: string | undefined;
+  state: string | undefined;
+  postalCode: string | undefined;
+  country: string | undefined;
+  company: string | undefined;
+  email: string | undefined;
+  phone: string | undefined;
+  ssn: string | undefined;
+  username: string | undefined;
+  passportNumber: string | undefined;
+  licenseNumber: string | undefined;
+}
+
 export type LinkedIdType = LoginLinkedIdType | CardLinkedIdType | IdentityLinkedIdType;
 
+export interface FolderView {
+  id: FolderId | undefined;
+  name: string;
+  revisionDate: DateTime<Utc>;
+}
+
 /**
  * NewType wrapper for `FolderId`
  */
@@ -1789,12 +1795,6 @@ export interface Folder {
   revisionDate: DateTime<Utc>;
 }
 
-export interface FolderView {
-  id: FolderId | undefined;
-  name: string;
-  revisionDate: DateTime<Utc>;
-}
-
 export interface EditFolderError extends Error {
   name: "EditFolderError";
   variant: