@bitwarden/sdk-internal 0.2.0-main.420 → 0.2.0-main.422

package/bitwarden_wasm_internal.d.ts

@@ -1,5 +1,16 @@
 /* tslint:disable */
 /* eslint-disable */
+/**
+ * Generate a new SSH key pair
+ *
+ * # Arguments
+ * - `key_algorithm` - The algorithm to use for the key pair
+ *
+ * # Returns
+ * - `Ok(SshKey)` if the key was successfully generated
+ * - `Err(KeyGenerationError)` if the key could not be generated
+ */
+export function generate_ssh_key(key_algorithm: KeyAlgorithm): SshKeyView;
 /**
  * Convert a PCKS8 or OpenSSH encrypted or unencrypted private key
  * to an OpenSSH private key with public key and fingerprint
@@ -16,17 +27,6 @@
  * - `Err(UnsupportedKeyType)` if the key type is not supported
  */
 export function import_ssh_key(imported_key: string, password?: string | null): SshKeyView;
-/**
- * Generate a new SSH key pair
- *
- * # Arguments
- * - `key_algorithm` - The algorithm to use for the key pair
- *
- * # Returns
- * - `Ok(SshKey)` if the key was successfully generated
- * - `Err(KeyGenerationError)` if the key could not be generated
- */
-export function generate_ssh_key(key_algorithm: KeyAlgorithm): SshKeyView;
 export function init_sdk(log_level?: LogLevel | null): void;
 /**
  * Sends a DiscoverRequest to the specified destination and returns the response.
@@ -180,55 +180,43 @@ export interface TokenProvider {
   get_access_token(): Promise<string | undefined>;
 }
 
-export interface Repositories {
-  cipher: Repository<Cipher> | null;
-  folder: Repository<Folder> | null;
-}
-
 /**
  * Active feature flags for the SDK.
  */
 export interface FeatureFlags extends Map<string, boolean> {}
 
+export interface Repositories {
+  cipher: Repository<Cipher> | null;
+  folder: Repository<Folder> | null;
+}
+
 export interface IndexedDbConfiguration {
   db_name: string;
 }
 
 /**
- * Credentials for sending an OTP to the user\'s email address.
- * This is used when the send requires email verification with an OTP.
+ * Credentials for getting a send access token using an email and OTP.
  */
-export interface SendEmailCredentials {
+export interface SendEmailOtpCredentials {
   /**
    * The email address to which the OTP will be sent.
    */
   email: string;
-}
-
-/**
- * Credentials for sending password secured access requests.
- * Clone auto implements the standard lib\'s Clone trait, allowing us to create copies of this
- * struct.
- */
-export interface SendPasswordCredentials {
   /**
-   * A Base64-encoded hash of the password protecting the send.
+   * The one-time password (OTP) that the user has received via email.
    */
-  passwordHashB64: string;
+  otp: string;
 }
 
 /**
- * Credentials for getting a send access token using an email and OTP.
+ * Credentials for sending an OTP to the user\'s email address.
+ * This is used when the send requires email verification with an OTP.
  */
-export interface SendEmailOtpCredentials {
+export interface SendEmailCredentials {
   /**
    * The email address to which the OTP will be sent.
    */
   email: string;
-  /**
-   * The one-time password (OTP) that the user has received via email.
-   */
-  otp: string;
 }
 
 /**
@@ -245,6 +233,18 @@ export interface SendAccessTokenRequest {
   sendAccessCredentials?: SendAccessCredentials;
 }
 
+/**
+ * Credentials for sending password secured access requests.
+ * Clone auto implements the standard lib\'s Clone trait, allowing us to create copies of this
+ * struct.
+ */
+export interface SendPasswordCredentials {
+  /**
+   * A Base64-encoded hash of the password protecting the send.
+   */
+  passwordHashB64: string;
+}
+
 /**
  * The credentials used for send access requests.
  */
@@ -296,6 +296,16 @@ export type SendAccessTokenInvalidGrantError =
   | "otp_generation_failed"
   | "unknown";
 
+/**
+ * Invalid request errors - typically due to missing parameters.
+ */
+export type SendAccessTokenInvalidRequestError =
+  | "send_id_required"
+  | "password_hash_b64_required"
+  | "email_required"
+  | "email_and_otp_required_otp_sent"
+  | "unknown";
+
 /**
  * Represents the possible, expected errors that can occur when requesting a send access token.
  */
@@ -317,48 +327,38 @@ export type SendAccessTokenApiErrorResponse =
   | { error: "invalid_target"; error_description?: string };
 
 /**
- * Invalid request errors - typically due to missing parameters.
+ * Type of collection
  */
-export type SendAccessTokenInvalidRequestError =
-  | "send_id_required"
-  | "password_hash_b64_required"
-  | "email_required"
-  | "email_and_otp_required_otp_sent"
-  | "unknown";
+export type CollectionType = "SharedCollection" | "DefaultUserCollection";
 
-export interface Collection {
+export interface CollectionView {
   id: CollectionId | undefined;
   organizationId: OrganizationId;
-  name: EncString;
+  name: string;
   externalId: string | undefined;
   hidePasswords: boolean;
   readOnly: boolean;
   manage: boolean;
-  defaultUserCollectionEmail: string | undefined;
   type: CollectionType;
 }
 
-/**
- * Type of collection
- */
-export type CollectionType = "SharedCollection" | "DefaultUserCollection";
-
-/**
- * NewType wrapper for `CollectionId`
- */
-export type CollectionId = Tagged<Uuid, "CollectionId">;
-
-export interface CollectionView {
+export interface Collection {
   id: CollectionId | undefined;
   organizationId: OrganizationId;
-  name: string;
+  name: EncString;
   externalId: string | undefined;
   hidePasswords: boolean;
   readOnly: boolean;
   manage: boolean;
+  defaultUserCollectionEmail: string | undefined;
   type: CollectionType;
 }
 
+/**
+ * NewType wrapper for `CollectionId`
+ */
+export type CollectionId = Tagged<Uuid, "CollectionId">;
+
 export interface CollectionDecryptError extends Error {
   name: "CollectionDecryptError";
   variant: "Crypto";
@@ -368,15 +368,18 @@ export function isCollectionDecryptError(error: any): error is CollectionDecrypt
 
 export type SignedSecurityState = string;
 
-/**
- * Represents the data required to authenticate with the master password.
- */
-export interface MasterPasswordAuthenticationData {
-  kdf: Kdf;
-  salt: string;
-  masterPasswordAuthenticationHash: B64;
+export interface MasterPasswordError extends Error {
+  name: "MasterPasswordError";
+  variant:
+    | "EncryptionKeyMalformed"
+    | "KdfMalformed"
+    | "InvalidKdfConfiguration"
+    | "MissingField"
+    | "Crypto";
 }
 
+export function isMasterPasswordError(error: any): error is MasterPasswordError;
+
 /**
  * Represents the data required to unlock with the master password.
  */
@@ -395,17 +398,29 @@ export interface MasterPasswordUnlockData {
   salt: string;
 }
 
-export interface MasterPasswordError extends Error {
-  name: "MasterPasswordError";
-  variant:
-    | "EncryptionKeyMalformed"
-    | "KdfMalformed"
-    | "InvalidKdfConfiguration"
-    | "MissingField"
-    | "Crypto";
+/**
+ * Represents the data required to authenticate with the master password.
+ */
+export interface MasterPasswordAuthenticationData {
+  kdf: Kdf;
+  salt: string;
+  masterPasswordAuthenticationHash: B64;
 }
 
-export function isMasterPasswordError(error: any): error is MasterPasswordError;
+/**
+ * Any keys / cryptographic protection \"downstream\" from the account symmetric key (user key).
+ * Private keys are protected by the user key.
+ */
+export type WrappedAccountCryptographicState =
+  | { V1: { private_key: EncString } }
+  | {
+      V2: {
+        private_key: EncString;
+        signed_public_key: SignedPublicKey | undefined;
+        signing_key: EncString;
+        security_state: SignedSecurityState;
+      };
+    };
 
 export interface AccountCryptographyInitializationError extends Error {
   name: "AccountCryptographyInitializationError";
@@ -422,20 +437,12 @@ export function isAccountCryptographyInitializationError(
   error: any,
 ): error is AccountCryptographyInitializationError;
 
-/**
- * Any keys / cryptographic protection \"downstream\" from the account symmetric key (user key).
- * Private keys are protected by the user key.
- */
-export type WrappedAccountCryptographicState =
-  | { V1: { private_key: EncString } }
-  | {
-      V2: {
-        private_key: EncString;
-        signed_public_key: SignedPublicKey | undefined;
-        signing_key: EncString;
-        security_state: SignedSecurityState;
-      };
-    };
+export interface CryptoClientError extends Error {
+  name: "CryptoClientError";
+  variant: "NotAuthenticated" | "Crypto" | "InvalidKdfSettings" | "PasswordProtectedKeyEnvelope";
+}
+
+export function isCryptoClientError(error: any): error is CryptoClientError;
 
 /**
  * Response for `verify_asymmetric_keys`.
@@ -465,45 +472,46 @@ export interface EnrollPinResponse {
   userKeyEncryptedPin: EncString;
 }
 
-export interface DeriveKeyConnectorError extends Error {
-  name: "DeriveKeyConnectorError";
-  variant: "WrongPassword" | "Crypto";
-}
-
-export function isDeriveKeyConnectorError(error: any): error is DeriveKeyConnectorError;
-
-export interface EnrollAdminPasswordResetError extends Error {
-  name: "EnrollAdminPasswordResetError";
-  variant: "Crypto";
-}
-
-export function isEnrollAdminPasswordResetError(error: any): error is EnrollAdminPasswordResetError;
-
 /**
- * State used for initializing the user cryptographic state.
+ * Request for `verify_asymmetric_keys`.
  */
-export interface InitUserCryptoRequest {
+export interface VerifyAsymmetricKeysRequest {
   /**
-   * The user\'s ID.
+   * The user\'s user key
    */
-  userId: UserId | undefined;
+  userKey: B64;
   /**
-   * The user\'s KDF parameters, as received from the prelogin request
+   * The user\'s public key
    */
-  kdfParams: Kdf;
+  userPublicKey: B64;
   /**
-   * The user\'s email address
+   * User\'s private key, encrypted with the user key
    */
-  email: string;
+  userKeyEncryptedPrivateKey: EncString;
+}
+
+/**
+ * Represents the request to initialize the user\'s organizational cryptographic state.
+ */
+export interface InitOrgCryptoRequest {
   /**
-   * The user\'s account cryptographic state, containing their signature and
-   * public-key-encryption keys, along with the signed security state, protected by the user key
+   * The encryption keys for all the organizations the user is a part of
    */
-  accountCryptographicState: WrappedAccountCryptographicState;
+  organizationKeys: Map<OrganizationId, UnsignedSharedKey>;
+}
+
+/**
+ * Response from the `make_update_password` function
+ */
+export interface UpdatePasswordResponse {
   /**
-   * The method to decrypt the user\'s account symmetric key (user key)
+   * Hash of the new password
    */
-  method: InitUserCryptoMethod;
+  passwordHash: B64;
+  /**
+   * User key, encrypted with the new password
+   */
+  newKey: EncString;
 }
 
 /**
@@ -525,41 +533,90 @@ export type InitUserCryptoMethod =
     }
   | { keyConnector: { master_key: B64; user_key: EncString } };
 
-export interface CryptoClientError extends Error {
-  name: "CryptoClientError";
-  variant: "NotAuthenticated" | "Crypto" | "InvalidKdfSettings" | "PasswordProtectedKeyEnvelope";
-}
-
-export function isCryptoClientError(error: any): error is CryptoClientError;
-
 /**
- * Response from the `make_key_pair` function
+ * Request for migrating an account from password to key connector.
  */
-export interface MakeKeyPairResponse {
+export interface DeriveKeyConnectorRequest {
   /**
-   * The user\'s public key
+   * Encrypted user key, used to validate the master key
    */
-  userPublicKey: B64;
+  userKeyEncrypted: EncString;
   /**
-   * User\'s private key, encrypted with the user key
+   * The user\'s master password
    */
-  userKeyEncryptedPrivateKey: EncString;
-}
-
+  password: string;
+  /**
+   * The KDF parameters used to derive the master key
+   */
+  kdf: Kdf;
+  /**
+   * The user\'s email address
+   */
+  email: string;
+}
+
 /**
- * Response from the `make_update_password` function
+ * State used for initializing the user cryptographic state.
  */
-export interface UpdatePasswordResponse {
+export interface InitUserCryptoRequest {
   /**
-   * Hash of the new password
+   * The user\'s ID.
    */
-  passwordHash: B64;
+  userId: UserId | undefined;
   /**
-   * User key, encrypted with the new password
+   * The user\'s KDF parameters, as received from the prelogin request
    */
-  newKey: EncString;
+  kdfParams: Kdf;
+  /**
+   * The user\'s email address
+   */
+  email: string;
+  /**
+   * The user\'s account cryptographic state, containing their signature and
+   * public-key-encryption keys, along with the signed security state, protected by the user key
+   */
+  accountCryptographicState: WrappedAccountCryptographicState;
+  /**
+   * The method to decrypt the user\'s account symmetric key (user key)
+   */
+  method: InitUserCryptoMethod;
+}
+
+/**
+ * Response from the `make_key_pair` function
+ */
+export interface MakeKeyPairResponse {
+  /**
+   * The user\'s public key
+   */
+  userPublicKey: B64;
+  /**
+   * User\'s private key, encrypted with the user key
+   */
+  userKeyEncryptedPrivateKey: EncString;
+}
+
+/**
+ * Auth requests supports multiple initialization methods.
+ */
+export type AuthRequestMethod =
+  | { userKey: { protected_user_key: UnsignedSharedKey } }
+  | { masterKey: { protected_master_key: UnsignedSharedKey; auth_request_key: EncString } };
+
+export interface DeriveKeyConnectorError extends Error {
+  name: "DeriveKeyConnectorError";
+  variant: "WrongPassword" | "Crypto";
+}
+
+export function isDeriveKeyConnectorError(error: any): error is DeriveKeyConnectorError;
+
+export interface EnrollAdminPasswordResetError extends Error {
+  name: "EnrollAdminPasswordResetError";
+  variant: "Crypto";
 }
 
+export function isEnrollAdminPasswordResetError(error: any): error is EnrollAdminPasswordResetError;
+
 /**
  * Response from the `update_kdf` function
  */
@@ -616,13 +673,6 @@ export interface UserCryptoV2KeysResponse {
   securityVersion: number;
 }
 
-/**
- * Auth requests supports multiple initialization methods.
- */
-export type AuthRequestMethod =
-  | { userKey: { protected_user_key: UnsignedSharedKey } }
-  | { masterKey: { protected_master_key: UnsignedSharedKey; auth_request_key: EncString } };
-
 /**
  * Request for deriving a pin protected user key
  */
@@ -637,56 +687,6 @@ export interface DerivePinKeyResponse {
   encryptedPin: EncString;
 }
 
-/**
- * Represents the request to initialize the user\'s organizational cryptographic state.
- */
-export interface InitOrgCryptoRequest {
-  /**
-   * The encryption keys for all the organizations the user is a part of
-   */
-  organizationKeys: Map<OrganizationId, UnsignedSharedKey>;
-}
-
-/**
- * Request for migrating an account from password to key connector.
- */
-export interface DeriveKeyConnectorRequest {
-  /**
-   * Encrypted user key, used to validate the master key
-   */
-  userKeyEncrypted: EncString;
-  /**
-   * The user\'s master password
-   */
-  password: string;
-  /**
-   * The KDF parameters used to derive the master key
-   */
-  kdf: Kdf;
-  /**
-   * The user\'s email address
-   */
-  email: string;
-}
-
-/**
- * Request for `verify_asymmetric_keys`.
- */
-export interface VerifyAsymmetricKeysRequest {
-  /**
-   * The user\'s user key
-   */
-  userKey: B64;
-  /**
-   * The user\'s public key
-   */
-  userPublicKey: B64;
-  /**
-   * User\'s private key, encrypted with the user key
-   */
-  userKeyEncryptedPrivateKey: EncString;
-}
-
 /**
  * NewType wrapper for `OrganizationId`
  */
@@ -792,6 +792,33 @@ export type EncString = Tagged<string, "EncString">;
 
 export type SignedPublicKey = Tagged<string, "SignedPublicKey">;
 
+/**
+ * A set of keys where a given `DownstreamKey` is protected by an encrypted public/private
+ * key-pair. The `DownstreamKey` is used to encrypt/decrypt data, while the public/private key-pair
+ * is used to rotate the `DownstreamKey`.
+ *
+ * The `PrivateKey` is protected by an `UpstreamKey`, such as a `DeviceKey`, or `PrfKey`,
+ * and the `PublicKey` is protected by the `DownstreamKey`. This setup allows:
+ *
+ *   - Access to `DownstreamKey` by knowing the `UpstreamKey`
+ *   - Rotation to a `NewDownstreamKey` by knowing the current `DownstreamKey`, without needing
+ *     access to the `UpstreamKey`
+ */
+export interface RotateableKeySet {
+  /**
+   * `DownstreamKey` protected by encapsulation key
+   */
+  encapsulatedDownstreamKey: UnsignedSharedKey;
+  /**
+   * Encapsulation key protected by `DownstreamKey`
+   */
+  encryptedEncapsulationKey: EncString;
+  /**
+   * Decapsulation key protected by `UpstreamKey`
+   */
+  encryptedDecapsulationKey: EncString;
+}
+
 /**
  * Key Derivation Function for Bitwarden Account
  *
@@ -963,20 +990,13 @@ export interface PasswordGeneratorRequest {
   minSpecial: number | undefined;
 }
 
-export type AppendType = "random" | { websiteName: { website: string } };
-
 export type UsernameGeneratorRequest =
   | { word: { capitalize: boolean; include_number: boolean } }
   | { subaddress: { type: AppendType; email: string } }
   | { catchall: { type: AppendType; domain: string } }
   | { forwarded: { service: ForwarderServiceType; website: string | undefined } };
 
-export interface UsernameError extends Error {
-  name: "UsernameError";
-  variant: "InvalidApiKey" | "Unknown" | "ResponseContent" | "Reqwest";
-}
-
-export function isUsernameError(error: any): error is UsernameError;
+export type AppendType = "random" | { websiteName: { website: string } };
 
 /**
  * Configures the email forwarding service to use.
@@ -991,6 +1011,13 @@ export type ForwarderServiceType =
   | { forwardEmail: { api_token: string; domain: string } }
   | { simpleLogin: { api_key: string; base_url: string } };
 
+export interface UsernameError extends Error {
+  name: "UsernameError";
+  variant: "InvalidApiKey" | "Unknown" | "ResponseContent" | "Reqwest";
+}
+
+export function isUsernameError(error: any): error is UsernameError;
+
 export interface RequestError extends Error {
   name: "RequestError";
   variant: "Subscribe" | "Receive" | "Timeout" | "Send" | "Rpc";
@@ -1052,6 +1079,13 @@ export type Endpoint =
   | "DesktopRenderer"
   | "DesktopMain";
 
+export interface SshKeyExportError extends Error {
+  name: "SshKeyExportError";
+  variant: "KeyConversion";
+}
+
+export function isSshKeyExportError(error: any): error is SshKeyExportError;
+
 export interface KeyGenerationError extends Error {
   name: "KeyGenerationError";
   variant: "KeyGeneration" | "KeyConversion";
@@ -1066,13 +1100,6 @@ export interface SshKeyImportError extends Error {
 
 export function isSshKeyImportError(error: any): error is SshKeyImportError;
 
-export interface SshKeyExportError extends Error {
-  name: "SshKeyExportError";
-  variant: "KeyConversion";
-}
-
-export function isSshKeyExportError(error: any): error is SshKeyExportError;
-
 export type KeyAlgorithm = "Ed25519" | "Rsa3072" | "Rsa4096";
 
 export interface DatabaseError extends Error {
@@ -1103,12 +1130,22 @@ export interface CipherRiskError extends Error {
 export function isCipherRiskError(error: any): error is CipherRiskError;
 
 /**
- * Result of checking password exposure via HIBP API.
+ * Login cipher data needed for risk evaluation.
  */
-export type ExposedPasswordResult =
-  | { type: "NotChecked" }
-  | { type: "Found"; value: number }
-  | { type: "Error"; value: string };
+export interface CipherLoginDetails {
+  /**
+   * Cipher ID to identify which cipher in results.
+   */
+  id: CipherId;
+  /**
+   * The decrypted password to evaluate.
+   */
+  password: string;
+  /**
+   * Username or email (login ciphers only have one field).
+   */
+  username: string | undefined;
+}
 
 /**
  * Password reuse map wrapper for WASM compatibility.
@@ -1137,22 +1174,12 @@ export interface CipherRiskOptions {
 }
 
 /**
- * Login cipher data needed for risk evaluation.
+ * Result of checking password exposure via HIBP API.
  */
-export interface CipherLoginDetails {
-  /**
-   * Cipher ID to identify which cipher in results.
-   */
-  id: CipherId;
-  /**
-   * The decrypted password to evaluate.
-   */
-  password: string;
-  /**
-   * Username or email (login ciphers only have one field).
-   */
-  username: string | undefined;
-}
+export type ExposedPasswordResult =
+  | { type: "NotChecked" }
+  | { type: "Found"; value: number }
+  | { type: "Error"; value: string };
 
 /**
  * Risk evaluation result for a single cipher.
@@ -1195,13 +1222,6 @@ export interface AncestorMap {
   ancestors: Map<CollectionId, string>;
 }
 
-export interface TotpError extends Error {
-  name: "TotpError";
-  variant: "InvalidOtpauth" | "MissingSecret" | "Crypto";
-}
-
-export function isTotpError(error: any): error is TotpError;
-
 export interface TotpResponse {
   /**
    * Generated TOTP code
@@ -1213,12 +1233,12 @@ export interface TotpResponse {
   period: number;
 }
 
-export interface DecryptError extends Error {
-  name: "DecryptError";
-  variant: "Crypto";
+export interface TotpError extends Error {
+  name: "TotpError";
+  variant: "InvalidOtpauth" | "MissingSecret" | "Crypto";
 }
 
-export function isDecryptError(error: any): error is DecryptError;
+export function isTotpError(error: any): error is TotpError;
 
 export interface EncryptError extends Error {
   name: "EncryptError";
@@ -1227,18 +1247,13 @@ export interface EncryptError extends Error {
 
 export function isEncryptError(error: any): error is EncryptError;
 
-export interface Attachment {
-  id: string | undefined;
-  url: string | undefined;
-  size: string | undefined;
-  /**
-   * Readable size, ex: \"4.2 KB\" or \"1.43 GB\
-   */
-  sizeName: string | undefined;
-  fileName: EncString | undefined;
-  key: EncString | undefined;
+export interface DecryptError extends Error {
+  name: "DecryptError";
+  variant: "Crypto";
 }
 
+export function isDecryptError(error: any): error is DecryptError;
+
 export interface AttachmentView {
   id: string | undefined;
   url: string | undefined;
@@ -1261,12 +1276,24 @@ export interface AttachmentView {
   decryptedKey: string | undefined;
 }
 
-export interface LocalData {
+export interface Attachment {
+  id: string | undefined;
+  url: string | undefined;
+  size: string | undefined;
+  /**
+   * Readable size, ex: \"4.2 KB\" or \"1.43 GB\
+   */
+  sizeName: string | undefined;
+  fileName: EncString | undefined;
+  key: EncString | undefined;
+}
+
+export interface LocalDataView {
   lastUsedDate: DateTime<Utc> | undefined;
   lastLaunched: DateTime<Utc> | undefined;
 }
 
-export interface LocalDataView {
+export interface LocalData {
   lastUsedDate: DateTime<Utc> | undefined;
   lastLaunched: DateTime<Utc> | undefined;
 }
@@ -1281,7 +1308,7 @@ export interface SecureNoteView {
 
 export interface GetCipherError extends Error {
   name: "GetCipherError";
-  variant: "ItemNotFound" | "Crypto" | "RepositoryError";
+  variant: "ItemNotFound" | "Crypto" | "Repository";
 }
 
 export function isGetCipherError(error: any): error is GetCipherError;
@@ -1320,6 +1347,13 @@ export interface CipherEditRequest {
   key: EncString | undefined;
 }
 
+export interface CreateCipherError extends Error {
+  name: "CreateCipherError";
+  variant: "Crypto" | "Api" | "VaultParse" | "MissingField" | "NotAuthenticated" | "Repository";
+}
+
+export function isCreateCipherError(error: any): error is CreateCipherError;
+
 /**
  * Request to add a cipher.
  */
@@ -1334,13 +1368,6 @@ export interface CipherCreateRequest {
   fields: FieldView[];
 }
 
-export interface CreateCipherError extends Error {
-  name: "CreateCipherError";
-  variant: "Crypto" | "Api" | "VaultParse" | "MissingField" | "NotAuthenticated" | "Repository";
-}
-
-export function isCreateCipherError(error: any): error is CreateCipherError;
-
 /**
  * Represents the inner data of a cipher view.
  */
@@ -1351,13 +1378,6 @@ export type CipherViewType =
   | { secureNote: SecureNoteView }
   | { sshKey: SshKeyView };
 
-export interface DecryptFileError extends Error {
-  name: "DecryptFileError";
-  variant: "Decrypt" | "Io";
-}
-
-export function isDecryptFileError(error: any): error is DecryptFileError;
-
 export interface EncryptFileError extends Error {
   name: "EncryptFileError";
   variant: "Encrypt" | "Io";
@@ -1365,20 +1385,18 @@ export interface EncryptFileError extends Error {
 
 export function isEncryptFileError(error: any): error is EncryptFileError;
 
+export interface DecryptFileError extends Error {
+  name: "DecryptFileError";
+  variant: "Decrypt" | "Io";
+}
+
+export function isDecryptFileError(error: any): error is DecryptFileError;
+
 export interface CipherPermissions {
   delete: boolean;
   restore: boolean;
 }
 
-export interface Card {
-  cardholderName: EncString | undefined;
-  expMonth: EncString | undefined;
-  expYear: EncString | undefined;
-  code: EncString | undefined;
-  brand: EncString | undefined;
-  number: EncString | undefined;
-}
-
 /**
  * Minimal CardView only including the needed details for list views
  */
@@ -1389,6 +1407,15 @@ export interface CardListView {
   brand: string | undefined;
 }
 
+export interface Card {
+  cardholderName: EncString | undefined;
+  expMonth: EncString | undefined;
+  expYear: EncString | undefined;
+  code: EncString | undefined;
+  brand: EncString | undefined;
+  number: EncString | undefined;
+}
+
 export interface CardView {
   cardholderName: string | undefined;
   expMonth: string | undefined;
@@ -1398,35 +1425,34 @@ export interface CardView {
   number: string | undefined;
 }
 
-export interface FieldView {
-  name: string | undefined;
-  value: string | undefined;
+export interface Field {
+  name: EncString | undefined;
+  value: EncString | undefined;
   type: FieldType;
   linkedId: LinkedIdType | undefined;
 }
 
-export interface Field {
-  name: EncString | undefined;
-  value: EncString | undefined;
+export interface FieldView {
+  name: string | undefined;
+  value: string | undefined;
   type: FieldType;
   linkedId: LinkedIdType | undefined;
 }
 
-export interface LoginListView {
-  fido2Credentials: Fido2CredentialListView[] | undefined;
-  hasFido2: boolean;
-  username: string | undefined;
-  /**
-   * The TOTP key is not decrypted. Useable as is with [`crate::generate_totp_cipher_view`].
-   */
+export interface Login {
+  username: EncString | undefined;
+  password: EncString | undefined;
+  passwordRevisionDate: DateTime<Utc> | undefined;
+  uris: LoginUri[] | undefined;
   totp: EncString | undefined;
-  uris: LoginUriView[] | undefined;
+  autofillOnPageLoad: boolean | undefined;
+  fido2Credentials: Fido2Credential[] | undefined;
 }
 
-export interface LoginUriView {
-  uri: string | undefined;
+export interface LoginUri {
+  uri: EncString | undefined;
   match: UriMatchType | undefined;
-  uriChecksum: string | undefined;
+  uriChecksum: EncString | undefined;
 }
 
 export interface Fido2CredentialFullView {
@@ -1445,39 +1471,29 @@ export interface Fido2CredentialFullView {
   creationDate: DateTime<Utc>;
 }
 
-export interface Login {
-  username: EncString | undefined;
-  password: EncString | undefined;
-  passwordRevisionDate: DateTime<Utc> | undefined;
-  uris: LoginUri[] | undefined;
+export interface LoginListView {
+  fido2Credentials: Fido2CredentialListView[] | undefined;
+  hasFido2: boolean;
+  username: string | undefined;
+  /**
+   * The TOTP key is not decrypted. Useable as is with [`crate::generate_totp_cipher_view`].
+   */
   totp: EncString | undefined;
-  autofillOnPageLoad: boolean | undefined;
-  fido2Credentials: Fido2Credential[] | undefined;
-}
-
-export interface Fido2Credential {
-  credentialId: EncString;
-  keyType: EncString;
-  keyAlgorithm: EncString;
-  keyCurve: EncString;
-  keyValue: EncString;
-  rpId: EncString;
-  userHandle: EncString | undefined;
-  userName: EncString | undefined;
-  counter: EncString;
-  rpName: EncString | undefined;
-  userDisplayName: EncString | undefined;
-  discoverable: EncString;
-  creationDate: DateTime<Utc>;
+  uris: LoginUriView[] | undefined;
 }
 
-export interface Fido2CredentialListView {
+export interface Fido2CredentialNewView {
   credentialId: string;
+  keyType: string;
+  keyAlgorithm: string;
+  keyCurve: string;
   rpId: string;
   userHandle: string | undefined;
   userName: string | undefined;
-  userDisplayName: string | undefined;
   counter: string;
+  rpName: string | undefined;
+  userDisplayName: string | undefined;
+  creationDate: DateTime<Utc>;
 }
 
 export interface LoginView {
@@ -1490,17 +1506,34 @@ export interface LoginView {
   fido2Credentials: Fido2Credential[] | undefined;
 }
 
-export interface Fido2CredentialNewView {
+export interface Fido2CredentialListView {
   credentialId: string;
-  keyType: string;
-  keyAlgorithm: string;
-  keyCurve: string;
   rpId: string;
   userHandle: string | undefined;
   userName: string | undefined;
-  counter: string;
-  rpName: string | undefined;
   userDisplayName: string | undefined;
+  counter: string;
+}
+
+export interface LoginUriView {
+  uri: string | undefined;
+  match: UriMatchType | undefined;
+  uriChecksum: string | undefined;
+}
+
+export interface Fido2Credential {
+  credentialId: EncString;
+  keyType: EncString;
+  keyAlgorithm: EncString;
+  keyCurve: EncString;
+  keyValue: EncString;
+  rpId: EncString;
+  userHandle: EncString | undefined;
+  userName: EncString | undefined;
+  counter: EncString;
+  rpName: EncString | undefined;
+  userDisplayName: EncString | undefined;
+  discoverable: EncString;
   creationDate: DateTime<Utc>;
 }
 
@@ -1520,61 +1553,27 @@ export interface Fido2CredentialView {
   creationDate: DateTime<Utc>;
 }
 
-export interface LoginUri {
-  uri: EncString | undefined;
-  match: UriMatchType | undefined;
-  uriChecksum: EncString | undefined;
-}
-
 /**
- * Available fields on a cipher and can be copied from a the list view in the UI.
+ * NewType wrapper for `CipherId`
  */
-export type CopyableCipherFields =
-  | "LoginUsername"
-  | "LoginPassword"
-  | "LoginTotp"
-  | "CardNumber"
-  | "CardSecurityCode"
-  | "IdentityUsername"
-  | "IdentityEmail"
-  | "IdentityPhone"
-  | "IdentityAddress"
-  | "SshKey"
-  | "SecureNotes";
+export type CipherId = Tagged<Uuid, "CipherId">;
 
-export interface Cipher {
-  id: CipherId | undefined;
-  organizationId: OrganizationId | undefined;
-  folderId: FolderId | undefined;
-  collectionIds: CollectionId[];
+/**
+ * Represents the result of decrypting a list of ciphers.
+ *
+ * This struct contains two vectors: `successes` and `failures`.
+ * `successes` contains the decrypted `CipherListView` objects,
+ * while `failures` contains the original `Cipher` objects that failed to decrypt.
+ */
+export interface DecryptCipherListResult {
   /**
-   * More recent ciphers uses individual encryption keys to encrypt the other fields of the
-   * Cipher.
+   * The decrypted `CipherListView` objects.
    */
-  key: EncString | undefined;
-  name: EncString;
-  notes: EncString | undefined;
-  type: CipherType;
-  login: Login | undefined;
-  identity: Identity | undefined;
-  card: Card | undefined;
-  secureNote: SecureNote | undefined;
-  sshKey: SshKey | undefined;
-  favorite: boolean;
-  reprompt: CipherRepromptType;
-  organizationUseTotp: boolean;
-  edit: boolean;
-  permissions: CipherPermissions | undefined;
-  viewPassword: boolean;
-  localData: LocalData | undefined;
-  attachments: Attachment[] | undefined;
-  fields: Field[] | undefined;
-  passwordHistory: PasswordHistory[] | undefined;
-  creationDate: DateTime<Utc>;
-  deletedDate: DateTime<Utc> | undefined;
-  revisionDate: DateTime<Utc>;
-  archivedDate: DateTime<Utc> | undefined;
-  data: string | undefined;
+  successes: CipherListView[];
+  /**
+   * The original `Cipher` objects that failed to decrypt.
+   */
+  failures: Cipher[];
 }
 
 export type CipherListViewType =
@@ -1584,33 +1583,6 @@ export type CipherListViewType =
   | "identity"
   | "sshKey";
 
-export interface CipherError extends Error {
-  name: "CipherError";
-  variant:
-    | "MissingField"
-    | "Crypto"
-    | "Decrypt"
-    | "Encrypt"
-    | "AttachmentsWithoutKeys"
-    | "OrganizationAlreadySet"
-    | "PutShare"
-    | "PutShareMany"
-    | "Repository"
-    | "Chrono"
-    | "SerdeJson";
-}
-
-export function isCipherError(error: any): error is CipherError;
-
-export interface EncryptionContext {
-  /**
-   * The Id of the user that encrypted the cipher. It should always represent a UserId, even for
-   * Organization-owned ciphers
-   */
-  encryptedFor: UserId;
-  cipher: Cipher;
-}
-
 export interface CipherListView {
   id: CipherId | undefined;
   organizationId: OrganizationId | undefined;
@@ -1649,27 +1621,20 @@ export interface CipherListView {
 }
 
 /**
- * Represents the result of decrypting a list of ciphers.
- *
- * This struct contains two vectors: `successes` and `failures`.
- * `successes` contains the decrypted `CipherListView` objects,
- * while `failures` contains the original `Cipher` objects that failed to decrypt.
- */
-export interface DecryptCipherListResult {
-  /**
-   * The decrypted `CipherListView` objects.
-   */
-  successes: CipherListView[];
-  /**
-   * The original `Cipher` objects that failed to decrypt.
-   */
-  failures: Cipher[];
-}
-
-/**
- * NewType wrapper for `CipherId`
+ * Available fields on a cipher and can be copied from a the list view in the UI.
  */
-export type CipherId = Tagged<Uuid, "CipherId">;
+export type CopyableCipherFields =
+  | "LoginUsername"
+  | "LoginPassword"
+  | "LoginTotp"
+  | "CardNumber"
+  | "CardSecurityCode"
+  | "IdentityUsername"
+  | "IdentityEmail"
+  | "IdentityPhone"
+  | "IdentityAddress"
+  | "SshKey"
+  | "SecureNotes";
 
 export interface CipherView {
   id: CipherId | undefined;
@@ -1704,34 +1669,96 @@ export interface CipherView {
   archivedDate: DateTime<Utc> | undefined;
 }
 
-export interface SshKey {
+export interface EncryptionContext {
+  /**
+   * The Id of the user that encrypted the cipher. It should always represent a UserId, even for
+   * Organization-owned ciphers
+   */
+  encryptedFor: UserId;
+  cipher: Cipher;
+}
+
+export interface CipherError extends Error {
+  name: "CipherError";
+  variant:
+    | "MissingField"
+    | "Crypto"
+    | "Decrypt"
+    | "Encrypt"
+    | "AttachmentsWithoutKeys"
+    | "OrganizationAlreadySet"
+    | "PutShare"
+    | "PutShareMany"
+    | "Repository"
+    | "Chrono"
+    | "SerdeJson";
+}
+
+export function isCipherError(error: any): error is CipherError;
+
+export interface Cipher {
+  id: CipherId | undefined;
+  organizationId: OrganizationId | undefined;
+  folderId: FolderId | undefined;
+  collectionIds: CollectionId[];
+  /**
+   * More recent ciphers uses individual encryption keys to encrypt the other fields of the
+   * Cipher.
+   */
+  key: EncString | undefined;
+  name: EncString;
+  notes: EncString | undefined;
+  type: CipherType;
+  login: Login | undefined;
+  identity: Identity | undefined;
+  card: Card | undefined;
+  secureNote: SecureNote | undefined;
+  sshKey: SshKey | undefined;
+  favorite: boolean;
+  reprompt: CipherRepromptType;
+  organizationUseTotp: boolean;
+  edit: boolean;
+  permissions: CipherPermissions | undefined;
+  viewPassword: boolean;
+  localData: LocalData | undefined;
+  attachments: Attachment[] | undefined;
+  fields: Field[] | undefined;
+  passwordHistory: PasswordHistory[] | undefined;
+  creationDate: DateTime<Utc>;
+  deletedDate: DateTime<Utc> | undefined;
+  revisionDate: DateTime<Utc>;
+  archivedDate: DateTime<Utc> | undefined;
+  data: string | undefined;
+}
+
+export interface SshKeyView {
   /**
    * SSH private key (ed25519/rsa) in unencrypted openssh private key format [OpenSSH private key](https://github.com/openssh/openssh-portable/blob/master/PROTOCOL.key)
    */
-  privateKey: EncString;
+  privateKey: string;
   /**
    * SSH public key (ed25519/rsa) according to [RFC4253](https://datatracker.ietf.org/doc/html/rfc4253#section-6.6)
    */
-  publicKey: EncString;
+  publicKey: string;
   /**
    * SSH fingerprint using SHA256 in the format: `SHA256:BASE64_ENCODED_FINGERPRINT`
    */
-  fingerprint: EncString;
+  fingerprint: string;
 }
 
-export interface SshKeyView {
+export interface SshKey {
   /**
    * SSH private key (ed25519/rsa) in unencrypted openssh private key format [OpenSSH private key](https://github.com/openssh/openssh-portable/blob/master/PROTOCOL.key)
    */
-  privateKey: string;
+  privateKey: EncString;
   /**
    * SSH public key (ed25519/rsa) according to [RFC4253](https://datatracker.ietf.org/doc/html/rfc4253#section-6.6)
    */
-  publicKey: string;
+  publicKey: EncString;
   /**
    * SSH fingerprint using SHA256 in the format: `SHA256:BASE64_ENCODED_FINGERPRINT`
    */
-  fingerprint: string;
+  fingerprint: EncString;
 }
 
 export interface Identity {
@@ -1778,9 +1805,9 @@ export interface IdentityView {
 
 export type LinkedIdType = LoginLinkedIdType | CardLinkedIdType | IdentityLinkedIdType;
 
-export interface FolderView {
+export interface Folder {
   id: FolderId | undefined;
-  name: string;
+  name: EncString;
   revisionDate: DateTime<Utc>;
 }
 
@@ -1789,9 +1816,9 @@ export interface FolderView {
  */
 export type FolderId = Tagged<Uuid, "FolderId">;
 
-export interface Folder {
+export interface FolderView {
   id: FolderId | undefined;
-  name: EncString;
+  name: string;
   revisionDate: DateTime<Utc>;
 }
 
@@ -1809,13 +1836,6 @@ export interface EditFolderError extends Error {
 
 export function isEditFolderError(error: any): error is EditFolderError;
 
-export interface CreateFolderError extends Error {
-  name: "CreateFolderError";
-  variant: "Crypto" | "Api" | "VaultParse" | "MissingField" | "Repository";
-}
-
-export function isCreateFolderError(error: any): error is CreateFolderError;
-
 /**
  * Request to add or edit a folder.
  */
@@ -1826,6 +1846,13 @@ export interface FolderAddEditRequest {
   name: string;
 }
 
+export interface CreateFolderError extends Error {
+  name: "CreateFolderError";
+  variant: "Crypto" | "Api" | "VaultParse" | "MissingField" | "Repository";
+}
+
+export function isCreateFolderError(error: any): error is CreateFolderError;
+
 export interface GetFolderError extends Error {
   name: "GetFolderError";
   variant: "ItemNotFound" | "Crypto" | "Repository";