@boxyhq/saml-jackson 1.36.0 → 1.37.1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (51) hide show
  1. package/dist/controller/api.d.ts +524 -475
  2. package/dist/controller/api.js +527 -479
  3. package/dist/controller/api.js.map +1 -1
  4. package/dist/controller/connection/oidc.d.ts +3 -2
  5. package/dist/controller/connection/oidc.js +26 -2
  6. package/dist/controller/connection/oidc.js.map +1 -1
  7. package/dist/controller/connection/saml.d.ts +3 -2
  8. package/dist/controller/connection/saml.js +26 -2
  9. package/dist/controller/connection/saml.js.map +1 -1
  10. package/dist/controller/oauth.d.ts +88 -87
  11. package/dist/controller/oauth.js +146 -101
  12. package/dist/controller/oauth.js.map +1 -1
  13. package/dist/controller/setup-link.d.ts +343 -234
  14. package/dist/controller/setup-link.js +343 -234
  15. package/dist/controller/setup-link.js.map +1 -1
  16. package/dist/db/sql/sql.js +3 -3
  17. package/dist/db/sql/sql.js.map +1 -1
  18. package/dist/directory-sync/scim/DirectoryConfig.d.ts +265 -224
  19. package/dist/directory-sync/scim/DirectoryConfig.js +266 -225
  20. package/dist/directory-sync/scim/DirectoryConfig.js.map +1 -1
  21. package/dist/directory-sync/scim/Groups.d.ts +82 -87
  22. package/dist/directory-sync/scim/Groups.js +82 -87
  23. package/dist/directory-sync/scim/Groups.js.map +1 -1
  24. package/dist/directory-sync/scim/Users.d.ts +63 -49
  25. package/dist/directory-sync/scim/Users.js +63 -49
  26. package/dist/directory-sync/scim/Users.js.map +1 -1
  27. package/dist/directory-sync/scim/WebhookEventsLogger.d.ts +52 -61
  28. package/dist/directory-sync/scim/WebhookEventsLogger.js +52 -61
  29. package/dist/directory-sync/scim/WebhookEventsLogger.js.map +1 -1
  30. package/dist/directory-sync/types.d.ts +1 -1
  31. package/dist/directory-sync/types.js +1 -1
  32. package/dist/directory-sync/types.js.map +1 -1
  33. package/dist/ee/identity-federation/app.d.ts +292 -212
  34. package/dist/ee/identity-federation/app.js +294 -214
  35. package/dist/ee/identity-federation/app.js.map +1 -1
  36. package/dist/ee/identity-federation/idp-login.js +1 -1
  37. package/dist/ee/identity-federation/idp-login.js.map +1 -1
  38. package/dist/ee/ory/ory.d.ts +18 -0
  39. package/dist/ee/ory/ory.js +202 -0
  40. package/dist/ee/ory/ory.js.map +1 -0
  41. package/dist/ee/product/index.d.ts +2 -2
  42. package/dist/ee/product/index.js +1 -1
  43. package/dist/ee/product/index.js.map +1 -1
  44. package/dist/index.js +7 -1
  45. package/dist/index.js.map +1 -1
  46. package/dist/sso-traces/index.d.ts +67 -66
  47. package/dist/sso-traces/index.js +67 -66
  48. package/dist/sso-traces/index.js.map +1 -1
  49. package/dist/sso-traces/types.d.ts +1 -0
  50. package/dist/typings.d.ts +7 -0
  51. package/package.json +11 -11
package/dist/controller/api.d.ts CHANGED
@@ -3,460 +3,568 @@ export declare class ConnectionAPIController implements IConnectionAPIController
3
3
  private connectionStore;
4
4
  private opts;
5
5
  private eventController;
6
- constructor({ connectionStore, opts, eventController }: {
6
+ private oryController;
7
+ constructor({ connectionStore, opts, eventController, oryController }: {
7
8
  connectionStore: any;
8
9
  opts: any;
9
10
  eventController: any;
11
+ oryController: any;
10
12
  });
11
13
  /**
12
- * @swagger
13
- * definitions:
14
- * Connection:
15
- * type: object
16
- * example:
17
- * {
18
- * "idpMetadata": {
19
- * "sso": {
20
- * "postUrl": "https://dev-20901260.okta.com/app/dev-20901260_jacksonnext_1/xxxxxxxxxxxsso/saml",
21
- * "redirectUrl": "https://dev-20901260.okta.com/app/dev-20901260_jacksonnext_1/xxxxxxxxxxxsso/saml"
22
- * },
23
- * "entityID": "http://www.okta.com/xxxxxxxxxxxxx",
24
- * "thumbprint": "Eo+eUi3UM3XIMkFFtdVK3yJ5vO9f7YZdasdasdad",
25
- * "loginType": "idp",
26
- * "provider": "okta.com"
27
- * },
28
- * "defaultRedirectUrl": "https://hoppscotch.io/",
29
- * "redirectUrl": ["https://hoppscotch.io/"],
30
- * "tenant": "hoppscotch.io",
31
- * "product": "API Engine",
32
- * "name": "Hoppscotch-SP",
33
- * "description": "SP for hoppscotch.io",
34
- * "clientID": "Xq8AJt3yYAxmXizsCWmUBDRiVP1iTC8Y/otnvFIMitk",
35
- * "clientSecret": "00e3e11a3426f97d8000000738300009130cd45419c5943",
36
- * "deactivated": false
37
- * }
38
- * validationErrorsPost:
39
- * description: Please provide rawMetadata or encodedRawMetadata | Please provide a defaultRedirectUrl | Please provide redirectUrl | redirectUrl is invalid | Exceeded maximum number of allowed redirect urls | defaultRedirectUrl is invalid | Please provide tenant | Please provide product | Please provide a friendly name | Description should not exceed 100 characters | Strategy: xxxx not supported | Please provide the clientId from OpenID Provider | Please provide the clientSecret from OpenID Provider | Please provide the discoveryUrl for the OpenID Provider
14
+ * @openapi
15
+ * components:
16
+ * schemas:
17
+ * Connection:
18
+ * type: object
19
+ * properties:
20
+ * clientID:
21
+ * type: string
22
+ * description: Connection clientID
23
+ * clientSecret:
24
+ * type: string
25
+ * description: Connection clientSecret
26
+ * name:
27
+ * type: string
28
+ * description: Connection name
29
+ * label:
30
+ * type: string
31
+ * description: Connection label
32
+ * description:
33
+ * type: string
34
+ * description: Connection description
35
+ * redirectUrl:
36
+ * type: array
37
+ * items:
38
+ * type: string
39
+ * description: A list of allowed redirect URLs
40
+ * defaultRedirectUrl:
41
+ * type: string
42
+ * description: The redirect URL to use in the IdP login flow
43
+ * tenant:
44
+ * type: string
45
+ * description: Connection tenant
46
+ * product:
47
+ * type: string
48
+ * description: Connection product
49
+ * idpMetadata:
50
+ * type: object
51
+ * properties: {}
52
+ * description: SAML IdP metadata
53
+ * oidcProvider:
54
+ * type: object
55
+ * properties: {}
56
+ * description: OIDC IdP metadata
57
+ * deactivated:
58
+ * type: boolean
59
+ * description: Connection status
60
+ * sortOrder:
61
+ * type: number
62
+ * description: Connection sort order
63
+ * example:
64
+ * idpMetadata:
65
+ * sso:
66
+ * postUrl: https://dev-20901260.okta.com/app/dev-20901260_jacksonnext_1/xxxxxxxxxxxsso/saml
67
+ * redirectUrl: https://dev-20901260.okta.com/app/dev-20901260_jacksonnext_1/xxxxxxxxxxxsso/saml
68
+ * entityID: http://www.okta.com/xxxxxxxxxxxxx
69
+ * thumbprint: Eo+eUi3UM3XIMkFFtdVK3yJ5vO9f7YZdasdasdad
70
+ * loginType: idp
71
+ * provider: okta.com
72
+ * defaultRedirectUrl: https://hoppscotch.io/
73
+ * redirectUrl:
74
+ * - https://hoppscotch.io/
75
+ * tenant: hoppscotch.io
76
+ * product: API Engine
77
+ * name: Hoppscotch-SP
78
+ * description: SP for hoppscotch.io
79
+ * clientID: Xq8AJt3yYAxmXizsCWmUBDRiVP1iTC8Y/otnvFIMitk
80
+ * clientSecret: 00e3e11a3426f97d8000000738300009130cd45419c5943
81
+ * deactivated: false
82
+ * validationErrorsPost:
83
+ * description: Please provide rawMetadata or encodedRawMetadata | Please provide a defaultRedirectUrl | Please provide redirectUrl | redirectUrl is invalid | Exceeded maximum number of allowed redirect urls | defaultRedirectUrl is invalid | Please provide tenant | Please provide product | Please provide a friendly name | Description should not exceed 100 characters | Strategy: xxxx not supported | Please provide the clientId from OpenID Provider | Please provide the clientSecret from OpenID Provider | Please provide the discoveryUrl for the OpenID Provider
84
+ * validationErrorsPatch:
85
+ * description: Please provide clientID | Please provide clientSecret | clientSecret mismatch | Tenant/Product config mismatch with IdP metadata | Description should not exceed 100 characters| redirectUrl is invalid | Exceeded maximum number of allowed redirect urls | defaultRedirectUrl is invalid | Tenant/Product config mismatch with OIDC Provider metadata
86
+ * responses:
87
+ * 200Get:
88
+ * description: Success
89
+ * content:
90
+ * application/json:
91
+ * schema:
92
+ * type: array
93
+ * items:
94
+ * $ref: "#/components/schemas/Connection"
95
+ * 400Get:
96
+ * description: Please provide a `product`.
97
+ * content: {}
98
+ * 401Get:
99
+ * description: Unauthorized
100
+ * content: {}
101
+ * 200GetByProduct:
102
+ * description: Success
103
+ * content:
104
+ * application/json:
105
+ * schema:
106
+ * type: array
107
+ * items:
108
+ * $ref: "#/components/schemas/Connection"
109
+ * parameters:
110
+ * tenantParamGet:
111
+ * name: tenant
112
+ * in: query
113
+ * description: Tenant
114
+ * required: true
115
+ * schema:
116
+ * type: string
117
+ * productParamGet:
118
+ * name: product
119
+ * in: query
120
+ * description: Product
121
+ * required: true
122
+ * schema:
123
+ * type: string
124
+ * clientIDParamGet:
125
+ * name: clientID
126
+ * in: query
127
+ * description: Client ID (Optional if tenant/product provided)
128
+ * schema:
129
+ * type: string
130
+ * strategyParamGet:
131
+ * name: strategy
132
+ * in: query
133
+ * description: Strategy which can help to filter connections with tenant/product query
134
+ * schema:
135
+ * type: string
136
+ * sortParamGet:
137
+ * name: sort
138
+ * in: query
139
+ * description: If present, the connections will be sorted by `sortOrder`. It won't consider if pagination is used.
140
+ * schema:
141
+ * type: string
142
+ * clientIDDel:
143
+ * name: clientID
144
+ * in: query
145
+ * description: Client ID (Optional if tenant/product provided)
146
+ * schema:
147
+ * type: string
148
+ * clientSecretDel:
149
+ * name: clientSecret
150
+ * in: query
151
+ * description: Client Secret (Optional if tenant/product provided)
152
+ * schema:
153
+ * type: string
154
+ * tenantDel:
155
+ * name: tenant
156
+ * in: query
157
+ * description: Tenant (Optional if clientID/Secret provided)
158
+ * schema:
159
+ * type: string
160
+ * productDel:
161
+ * name: product
162
+ * in: query
163
+ * description: Product (Optional if clientID/Secret provided)
164
+ * schema:
165
+ * type: string
166
+ * strategyDel:
167
+ * name: strategy
168
+ * in: query
169
+ * description: Strategy which can help to filter connections with tenant/product query
170
+ * schema:
171
+ * type: string
172
+ * securitySchemes:
173
+ * apiKey:
174
+ * type: apiKey
175
+ * name: Authorization
176
+ * in: header
40
177
  *
41
- * parameters:
42
- * nameParamPost:
43
- * name: name
44
- * description: Name/identifier for the connection
45
- * type: string
46
- * in: formData
47
- * labelParamPost:
48
- * name: label
49
- * description: An internal label to identify the connection
50
- * type: string
51
- * in: formData
52
- * descriptionParamPost:
53
- * name: description
54
- * description: A short description for the connection not more than 100 characters
55
- * type: string
56
- * in: formData
57
- * encodedRawMetadataParamPost:
58
- * name: encodedRawMetadata
59
- * description: Base64 encoding of the XML metadata
60
- * in: formData
61
- * type: string
62
- * rawMetadataParamPost:
63
- * name: rawMetadata
64
- * description: Raw XML metadata
65
- * in: formData
66
- * type: string
67
- * metadataUrlParamPost:
68
- * name: metadataUrl
69
- * description: URL containing raw XML metadata
70
- * in: formData
71
- * type: string
72
- * defaultRedirectUrlParamPost:
73
- * name: defaultRedirectUrl
74
- * description: The redirect URL to use in the IdP login flow
75
- * in: formData
76
- * required: true
77
- * type: string
78
- * redirectUrlParamPost:
79
- * name: redirectUrl
80
- * description: JSON encoded array containing a list of allowed redirect URLs
81
- * in: formData
82
- * required: true
83
- * type: string
84
- * tenantParamPost:
85
- * name: tenant
86
- * description: Tenant
87
- * in: formData
88
- * required: true
89
- * type: string
90
- * productParamPost:
91
- * name: product
92
- * description: Product
93
- * in: formData
94
- * required: true
95
- * type: string
96
- * oidcDiscoveryUrlPost:
97
- * name: oidcDiscoveryUrl
98
- * description: well-known URL where the OpenID Provider configuration is exposed
99
- * in: formData
100
- * type: string
101
- * oidcMetadataPost:
102
- * name: oidcMetadata
103
- * description: metadata (JSON) for the OpenID Provider in the absence of discoveryUrl
104
- * in: formData
105
- * type: string
106
- * oidcClientIdPost:
107
- * name: oidcClientId
108
- * description: clientId of the application set up on the OpenID Provider
109
- * in: formData
110
- * type: string
111
- * oidcClientSecretPost:
112
- * name: oidcClientSecret
113
- * description: clientSecret of the application set up on the OpenID Provider
114
- * in: formData
115
- * type: string
116
- * sortOrder:
117
- * name: sortOrder
118
- * description: Indicate the position of the connection in the IdP selection screen
119
- * in: formData
120
- * type: number
121
- * required: false
122
- * forceAuthn:
123
- * name: forceAuthn
124
- * description: Require a new authentication instead of reusing an existing session.
125
- * in: formData
126
- * type: boolean
127
- * required: false
178
+ */
179
+ /**
180
+ *
181
+ * @openapi
128
182
  * /api/v1/sso:
129
183
  * post:
184
+ * tags:
185
+ * - Single Sign-On
130
186
  * summary: Create SSO connection
131
187
  * operationId: create-sso-connection
132
- * tags: [Single Sign-On]
133
- * produces:
134
- * - application/json
135
- * consumes:
136
- * - application/x-www-form-urlencoded
137
- * - application/json
138
- * parameters:
139
- * - $ref: '#/parameters/nameParamPost'
140
- * - $ref: '#/parameters/labelParamPost'
141
- * - $ref: '#/parameters/descriptionParamPost'
142
- * - $ref: '#/parameters/encodedRawMetadataParamPost'
143
- * - $ref: '#/parameters/rawMetadataParamPost'
144
- * - $ref: '#/parameters/metadataUrlParamPost'
145
- * - $ref: '#/parameters/defaultRedirectUrlParamPost'
146
- * - $ref: '#/parameters/redirectUrlParamPost'
147
- * - $ref: '#/parameters/tenantParamPost'
148
- * - $ref: '#/parameters/productParamPost'
149
- * - $ref: '#/parameters/oidcDiscoveryUrlPost'
150
- * - $ref: '#/parameters/oidcMetadataPost'
151
- * - $ref: '#/parameters/oidcClientIdPost'
152
- * - $ref: '#/parameters/oidcClientSecretPost'
153
- * - $ref: '#/parameters/sortOrder'
154
- * - $ref: '#/parameters/forceAuthn'
188
+ * requestBody:
189
+ * content:
190
+ * application/x-www-form-urlencoded:
191
+ * schema:
192
+ * required:
193
+ * - defaultRedirectUrl
194
+ * - product
195
+ * - redirectUrl
196
+ * - tenant
197
+ * type: object
198
+ * properties:
199
+ * name:
200
+ * type: string
201
+ * description: Name of connection
202
+ * label:
203
+ * type: string
204
+ * description: An internal label to identify the connection
205
+ * description:
206
+ * type: string
207
+ * description: A short description for the connection not more than 100 characters
208
+ * encodedRawMetadata:
209
+ * type: string
210
+ * description: Base64 encoding of the XML metadata
211
+ * rawMetadata:
212
+ * type: string
213
+ * description: Raw XML metadata
214
+ * metadataUrl:
215
+ * type: string
216
+ * description: URL containing raw XML metadata
217
+ * defaultRedirectUrl:
218
+ * type: string
219
+ * description: The redirect URL to use in the IdP login flow
220
+ * redirectUrl:
221
+ * type: array
222
+ * items:
223
+ * type: string
224
+ * description: JSON encoded array containing a list of allowed redirect URLs
225
+ * tenant:
226
+ * type: string
227
+ * description: Tenant
228
+ * product:
229
+ * type: string
230
+ * description: Product
231
+ * oidcDiscoveryUrl:
232
+ * type: string
233
+ * description: well-known URL where the OpenID Provider configuration is exposed
234
+ * oidcMetadata:
235
+ * type: string
236
+ * description: metadata (JSON) for the OpenID Provider in the absence of discoveryUrl
237
+ * oidcClientId:
238
+ * type: string
239
+ * description: clientId of the application set up on the OpenID Provider
240
+ * oidcClientSecret:
241
+ * type: string
242
+ * description: clientSecret of the application set up on the OpenID Provider
243
+ * sortOrder:
244
+ * type: number
245
+ * description: Indicate the position of the connection in the IdP selection screen
246
+ * forceAuthn:
247
+ * type: boolean
248
+ * description: Require a new authentication instead of reusing an existing session.
249
+ * application/json:
250
+ * schema:
251
+ * required:
252
+ * - defaultRedirectUrl
253
+ * - product
254
+ * - redirectUrl
255
+ * - tenant
256
+ * type: object
257
+ * properties:
258
+ * name:
259
+ * type: string
260
+ * description: Name of connection
261
+ * label:
262
+ * type: string
263
+ * description: An internal label to identify the connection
264
+ * description:
265
+ * type: string
266
+ * description: A short description for the connection not more than 100 characters
267
+ * encodedRawMetadata:
268
+ * type: string
269
+ * description: Base64 encoding of the XML metadata
270
+ * rawMetadata:
271
+ * type: string
272
+ * description: Raw XML metadata
273
+ * metadataUrl:
274
+ * type: string
275
+ * description: URL containing raw XML metadata
276
+ * defaultRedirectUrl:
277
+ * type: string
278
+ * description: The redirect URL to use in the IdP login flow
279
+ * redirectUrl:
280
+ * type: array
281
+ * items:
282
+ * type: string
283
+ * description: JSON encoded array containing a list of allowed redirect URLs
284
+ * tenant:
285
+ * type: string
286
+ * description: Tenant
287
+ * product:
288
+ * type: string
289
+ * description: Product
290
+ * oidcDiscoveryUrl:
291
+ * type: string
292
+ * description: well-known URL where the OpenID Provider configuration is exposed
293
+ * oidcMetadata:
294
+ * type: string
295
+ * description: metadata (JSON) for the OpenID Provider in the absence of discoveryUrl
296
+ * oidcClientId:
297
+ * type: string
298
+ * description: clientId of the application set up on the OpenID Provider
299
+ * oidcClientSecret:
300
+ * type: string
301
+ * description: clientSecret of the application set up on the OpenID Provider
302
+ * sortOrder:
303
+ * type: number
304
+ * description: Indicate the position of the connection in the IdP selection screen
305
+ * forceAuthn:
306
+ * type: boolean
307
+ * description: Require a new authentication instead of reusing an existing session.
308
+ * required: true
155
309
  * responses:
156
310
  * 200:
157
311
  * description: Success
158
- * schema:
159
- * $ref: '#/definitions/Connection'
160
- * 400:
161
- * $ref: '#/definitions/validationErrorsPost'
162
- * 401:
312
+ * content:
313
+ * application/json:
314
+ * schema:
315
+ * $ref: "#/components/schemas/Connection"
316
+ * "400":
317
+ * $ref: "#/components/schemas/validationErrorsPost"
318
+ * "401":
163
319
  * description: Unauthorized
164
320
  */
165
321
  createSAMLConnection(body: SAMLSSOConnectionWithEncodedMetadata | SAMLSSOConnectionWithRawMetadata): Promise<SAMLSSORecord>;
166
322
  config(...args: Parameters<ConnectionAPIController['createSAMLConnection']>): Promise<SAMLSSORecord>;
167
323
  createOIDCConnection(body: OIDCSSOConnectionWithDiscoveryUrl | OIDCSSOConnectionWithMetadata): Promise<OIDCSSORecord>;
168
324
  /**
169
- * @swagger
170
- * definitions:
171
- * validationErrorsPatch:
172
- * description: Please provide clientID | Please provide clientSecret | clientSecret mismatch | Tenant/Product config mismatch with IdP metadata | Description should not exceed 100 characters| redirectUrl is invalid | Exceeded maximum number of allowed redirect urls | defaultRedirectUrl is invalid | Tenant/Product config mismatch with OIDC Provider metadata
173
- * parameters:
174
- * clientIDParamPatch:
175
- * name: clientID
176
- * description: Client ID for the connection
177
- * type: string
178
- * in: formData
179
- * required: true
180
- * clientSecretParamPatch:
181
- * name: clientSecret
182
- * description: Client Secret for the connection
183
- * type: string
184
- * in: formData
185
- * required: true
186
- * tenantParamPatch:
187
- * name: tenant
188
- * description: Tenant
189
- * in: formData
190
- * required: true
191
- * type: string
192
- * productParamPatch:
193
- * name: product
194
- * description: Product
195
- * in: formData
196
- * required: true
197
- * type: string
198
- * nameParamPatch:
199
- * name: name
200
- * description: Name/identifier for the connection
201
- * type: string
202
- * in: formData
203
- * labelParamPatch:
204
- * name: label
205
- * description: An internal label to identify the connection
206
- * type: string
207
- * in: formData
208
- * descriptionParamPatch:
209
- * name: description
210
- * description: A short description for the connection not more than 100 characters
211
- * type: string
212
- * in: formData
213
- * encodedRawMetadataParamPatch:
214
- * name: encodedRawMetadata
215
- * description: Base64 encoding of the XML metadata
216
- * in: formData
217
- * type: string
218
- * rawMetadataParamPatch:
219
- * name: rawMetadata
220
- * description: Raw XML metadata
221
- * in: formData
222
- * type: string
223
- * metadataUrlParamPatch:
224
- * name: metadataUrl
225
- * description: URL containing raw XML metadata
226
- * in: formData
227
- * type: string
228
- * oidcDiscoveryUrlPatch:
229
- * name: oidcDiscoveryUrl
230
- * description: well-known URL where the OpenID Provider configuration is exposed
231
- * in: formData
232
- * type: string
233
- * oidcMetadataPatch:
234
- * name: oidcMetadata
235
- * description: metadata (JSON) for the OpenID Provider in the absence of discoveryUrl
236
- * in: formData
237
- * type: string
238
- * oidcClientIdPatch:
239
- * name: oidcClientId
240
- * description: clientId of the application set up on the OpenID Provider
241
- * in: formData
242
- * type: string
243
- * oidcClientSecretPatch:
244
- * name: oidcClientSecret
245
- * description: clientSecret of the application set up on the OpenID Provider
246
- * in: formData
247
- * type: string
248
- * defaultRedirectUrlParamPatch:
249
- * name: defaultRedirectUrl
250
- * description: The redirect URL to use in the IdP login flow
251
- * in: formData
252
- * type: string
253
- * redirectUrlParamPatch:
254
- * name: redirectUrl
255
- * description: JSON encoded array containing a list of allowed redirect URLs
256
- * in: formData
257
- * type: string
258
- * deactivatedParamPatch:
259
- * name: deactivated
260
- * description: Connection status
261
- * in: formData
262
- * required: false
263
- * type: boolean
264
- * sortOrderParamPatch:
265
- * name: sortOrder
266
- * description: Indicate the position of the connection in the IdP selection screen
267
- * in: formData
268
- * type: number
269
- * required: false
270
- * forceAuthnParamPatch:
271
- * name: forceAuthn
272
- * description: Require a new authentication instead of reusing an existing session.
273
- * in: formData
274
- * type: boolean
275
- * required: false
325
+ * @openapi
276
326
  * /api/v1/sso:
277
327
  * patch:
328
+ * tags:
329
+ * - Single Sign-On
278
330
  * summary: Update SSO Connection
279
331
  * operationId: update-sso-connection
280
- * tags: [Single Sign-On]
281
- * consumes:
282
- * - application/json
283
- * - application/x-www-form-urlencoded
284
- * parameters:
285
- * - $ref: '#/parameters/clientIDParamPatch'
286
- * - $ref: '#/parameters/clientSecretParamPatch'
287
- * - $ref: '#/parameters/nameParamPatch'
288
- * - $ref: '#/parameters/labelParamPatch'
289
- * - $ref: '#/parameters/descriptionParamPatch'
290
- * - $ref: '#/parameters/encodedRawMetadataParamPatch'
291
- * - $ref: '#/parameters/rawMetadataParamPatch'
292
- * - $ref: '#/parameters/metadataUrlParamPatch'
293
- * - $ref: '#/parameters/oidcDiscoveryUrlPatch'
294
- * - $ref: '#/parameters/oidcMetadataPatch'
295
- * - $ref: '#/parameters/oidcClientIdPatch'
296
- * - $ref: '#/parameters/oidcClientSecretPatch'
297
- * - $ref: '#/parameters/defaultRedirectUrlParamPatch'
298
- * - $ref: '#/parameters/redirectUrlParamPatch'
299
- * - $ref: '#/parameters/tenantParamPatch'
300
- * - $ref: '#/parameters/productParamPatch'
301
- * - $ref: '#/parameters/deactivatedParamPatch'
302
- * - $ref: '#/parameters/sortOrderParamPatch'
303
- * - $ref: '#/parameters/forceAuthnParamPatch'
332
+ * requestBody:
333
+ * content:
334
+ * application/json:
335
+ * schema:
336
+ * required:
337
+ * - clientID
338
+ * - clientSecret
339
+ * - product
340
+ * - tenant
341
+ * type: object
342
+ * properties:
343
+ * clientID:
344
+ * type: string
345
+ * description: Client ID for the connection
346
+ * clientSecret:
347
+ * type: string
348
+ * description: Client Secret for the connection
349
+ * name:
350
+ * type: string
351
+ * description: Name/identifier for the connection
352
+ * label:
353
+ * type: string
354
+ * description: An internal label to identify the connection
355
+ * description:
356
+ * type: string
357
+ * description: A short description for the connection not more than 100 characters
358
+ * encodedRawMetadata:
359
+ * type: string
360
+ * description: Base64 encoding of the XML metadata
361
+ * rawMetadata:
362
+ * type: string
363
+ * description: Raw XML metadata
364
+ * metadataUrl:
365
+ * type: string
366
+ * description: URL containing raw XML metadata
367
+ * oidcDiscoveryUrl:
368
+ * type: string
369
+ * description: well-known URL where the OpenID Provider configuration is exposed
370
+ * oidcMetadata:
371
+ * type: string
372
+ * description: metadata (JSON) for the OpenID Provider in the absence of discoveryUrl
373
+ * oidcClientId:
374
+ * type: string
375
+ * description: clientId of the application set up on the OpenID Provider
376
+ * oidcClientSecret:
377
+ * type: string
378
+ * description: clientSecret of the application set up on the OpenID Provider
379
+ * defaultRedirectUrl:
380
+ * type: string
381
+ * description: The redirect URL to use in the IdP login flow
382
+ * redirectUrl:
383
+ * type: array
384
+ * items:
385
+ * type: string
386
+ * description: JSON encoded array containing a list of allowed redirect URLs
387
+ * tenant:
388
+ * type: string
389
+ * description: Tenant
390
+ * product:
391
+ * type: string
392
+ * description: Product
393
+ * deactivated:
394
+ * type: boolean
395
+ * description: Connection status
396
+ * sortOrder:
397
+ * type: number
398
+ * description: Indicate the position of the connection in the IdP selection screen
399
+ * forceAuthn:
400
+ * type: boolean
401
+ * description: Require a new authentication instead of reusing an existing session.
402
+ * application/x-www-form-urlencoded:
403
+ * schema:
404
+ * required:
405
+ * - clientID
406
+ * - clientSecret
407
+ * - product
408
+ * - tenant
409
+ * type: object
410
+ * properties:
411
+ * clientID:
412
+ * type: string
413
+ * description: Client ID for the connection
414
+ * clientSecret:
415
+ * type: string
416
+ * description: Client Secret for the connection
417
+ * name:
418
+ * type: string
419
+ * description: Name/identifier for the connection
420
+ * label:
421
+ * type: string
422
+ * description: An internal label to identify the connection
423
+ * description:
424
+ * type: string
425
+ * description: A short description for the connection not more than 100 characters
426
+ * encodedRawMetadata:
427
+ * type: string
428
+ * description: Base64 encoding of the XML metadata
429
+ * rawMetadata:
430
+ * type: string
431
+ * description: Raw XML metadata
432
+ * metadataUrl:
433
+ * type: string
434
+ * description: URL containing raw XML metadata
435
+ * oidcDiscoveryUrl:
436
+ * type: string
437
+ * description: well-known URL where the OpenID Provider configuration is exposed
438
+ * oidcMetadata:
439
+ * type: string
440
+ * description: metadata (JSON) for the OpenID Provider in the absence of discoveryUrl
441
+ * oidcClientId:
442
+ * type: string
443
+ * description: clientId of the application set up on the OpenID Provider
444
+ * oidcClientSecret:
445
+ * type: string
446
+ * description: clientSecret of the application set up on the OpenID Provider
447
+ * defaultRedirectUrl:
448
+ * type: string
449
+ * description: The redirect URL to use in the IdP login flow
450
+ * redirectUrl:
451
+ * type: array
452
+ * items:
453
+ * type: string
454
+ * description: JSON encoded array containing a list of allowed redirect URLs
455
+ * tenant:
456
+ * type: string
457
+ * description: Tenant
458
+ * product:
459
+ * type: string
460
+ * description: Product
461
+ * deactivated:
462
+ * type: boolean
463
+ * description: Connection status
464
+ * sortOrder:
465
+ * type: number
466
+ * description: Indicate the position of the connection in the IdP selection screen
467
+ * forceAuthn:
468
+ * type: boolean
469
+ * description: Require a new authentication instead of reusing an existing session.
470
+ * required: true
304
471
  * responses:
305
- * 204:
472
+ * "204":
306
473
  * description: Success
307
- * 400:
308
- * $ref: '#/definitions/validationErrorsPatch'
309
- * 401:
474
+ * content: {}
475
+ * "400":
476
+ * $ref: "#/components/schemas/validationErrorsPatch"
477
+ * "401":
310
478
  * description: Unauthorized
311
- * 500:
479
+ * content: {}
480
+ * "500":
312
481
  * description: Please set OpenID response handler path (oidcPath) on Jackson
482
+ * content: {}
313
483
  */
314
484
  updateSAMLConnection(body: UpdateSAMLConnectionParams): Promise<void>;
315
485
  updateConfig(...args: Parameters<ConnectionAPIController['updateSAMLConnection']>): Promise<void>;
316
486
  updateOIDCConnection(body: UpdateOIDCConnectionParams): Promise<void>;
317
487
  getIDPEntityID(body: GetIDPEntityIDBody): string;
318
488
  /**
319
- * @swagger
320
- * parameters:
321
- * tenantParamGet:
322
- * in: query
323
- * name: tenant
324
- * type: string
325
- * description: Tenant (Optional if clientID provided)
326
- * productParamGet:
327
- * in: query
328
- * name: product
329
- * type: string
330
- * description: Product (Optional if clientID provided)
331
- * clientIDParamGet:
332
- * in: query
333
- * name: clientID
334
- * type: string
335
- * description: Client ID (Optional if tenant/product provided)
336
- * strategyParamGet:
337
- * in: query
338
- * name: strategy
339
- * type: string
340
- * description: Strategy which can help to filter connections with tenant/product query
341
- * sortParamGet:
342
- * in: query
343
- * name: sort
344
- * type: string
345
- * description: If present, the connections will be sorted by `sortOrder`. It won't consider if pagination is used.
346
- * definitions:
347
- * Connection:
348
- * type: object
349
- * properties:
350
- * clientID:
351
- * type: string
352
- * description: Connection clientID
353
- * clientSecret:
354
- * type: string
355
- * description: Connection clientSecret
356
- * name:
357
- * type: string
358
- * description: Connection name
359
- * label:
360
- * type: string
361
- * description: Connection label
362
- * description:
363
- * type: string
364
- * description: Connection description
365
- * redirectUrl:
366
- * type: string
367
- * description: A list of allowed redirect URLs
368
- * defaultRedirectUrl:
369
- * type: string
370
- * description: The redirect URL to use in the IdP login flow
371
- * tenant:
372
- * type: string
373
- * description: Connection tenant
374
- * product:
375
- * type: string
376
- * description: Connection product
377
- * idpMetadata:
378
- * type: object
379
- * description: SAML IdP metadata
380
- * oidcProvider:
381
- * type: object
382
- * description: OIDC IdP metadata
383
- * deactivated:
384
- * type: boolean
385
- * description: Connection status
386
- * sortOrder:
387
- * type: number
388
- * description: Connection sort order
389
- * responses:
390
- * '200Get':
391
- * description: Success
392
- * schema:
393
- * type: array
394
- * items:
395
- * $ref: '#/definitions/Connection'
396
- * '400Get':
397
- * description: Please provide `clientID` or `tenant` and `product`.
398
- * '401Get':
399
- * description: Unauthorized
489
+ * @openapi
400
490
  * /api/v1/sso:
401
491
  * get:
492
+ * tags:
493
+ * - Single Sign-On
402
494
  * summary: Get SSO Connections
403
- * parameters:
404
- * - $ref: '#/parameters/tenantParamGet'
405
- * - $ref: '#/parameters/productParamGet'
406
- * - $ref: '#/parameters/clientIDParamGet'
407
- * - $ref: '#/parameters/strategyParamGet'
408
- * - $ref: '#/parameters/sortParamGet'
409
495
  * operationId: get-connections
410
- * tags: [Single Sign-On]
496
+ * parameters:
497
+ * - name: tenant
498
+ * in: query
499
+ * description: Tenant
500
+ * required: true
501
+ * schema:
502
+ * type: string
503
+ * - name: product
504
+ * in: query
505
+ * description: Product
506
+ * required: true
507
+ * schema:
508
+ * type: string
509
+ * - name: clientID
510
+ * in: query
511
+ * description: Client ID (Optional if tenant/product provided)
512
+ * schema:
513
+ * type: string
514
+ * - name: strategy
515
+ * in: query
516
+ * description: Strategy which can help to filter connections with tenant/product query
517
+ * schema:
518
+ * type: string
519
+ * - name: sort
520
+ * in: query
521
+ * description: If present, the connections will be sorted by `sortOrder`. It won't consider if pagination is used.
522
+ * schema:
523
+ * type: string
411
524
  * responses:
412
525
  * '200':
413
- * $ref: '#/responses/200Get'
526
+ * $ref: '#/components/responses/200Get'
414
527
  * '400':
415
- * $ref: '#/responses/400Get'
528
+ * $ref: '#/components/responses/400Get'
416
529
  * '401':
417
- * $ref: '#/responses/401Get'
530
+ * $ref: '#/components/responses/401Get'
418
531
  */
419
532
  getConnections(body: GetConnectionsQuery): Promise<Array<SAMLSSORecord | OIDCSSORecord>>;
420
533
  getConfig(body: GetConfigQuery): Promise<SAMLSSORecord | Record<string, never>>;
421
534
  /**
422
- * @swagger
423
- * parameters:
424
- * clientIDDel:
425
- * name: clientID
426
- * in: query
427
- * type: string
428
- * description: Client ID (Optional if tenant/product provided)
429
- * clientSecretDel:
430
- * name: clientSecret
431
- * in: query
432
- * type: string
433
- * description: Client Secret (Optional if tenant/product provided)
434
- * tenantDel:
435
- * name: tenant
436
- * in: query
437
- * type: string
438
- * description: Tenant (Optional if clientID/Secret provided)
439
- * productDel:
440
- * name: product
441
- * in: query
442
- * type: string
443
- * description: Product (Optional if clientID/Secret provided)
444
- * strategyDel:
445
- * name: strategy
446
- * in: query
447
- * type: string
448
- * description: Strategy which can help to filter connections with tenant/product query
535
+ * @openapi
449
536
  * /api/v1/sso:
450
537
  * delete:
451
- * parameters:
452
- * - $ref: '#/parameters/clientIDDel'
453
- * - $ref: '#/parameters/clientSecretDel'
454
- * - $ref: '#/parameters/tenantDel'
455
- * - $ref: '#/parameters/productDel'
456
- * - $ref: '#/parameters/strategyDel'
538
+ * tags:
539
+ * - Single Sign-On
457
540
  * summary: Delete SSO Connections
458
541
  * operationId: delete-sso-connection
459
- * tags: [Single Sign-On]
542
+ * parameters:
543
+ * - name: clientID
544
+ * in: query
545
+ * description: Client ID (Optional if tenant/product provided)
546
+ * schema:
547
+ * type: string
548
+ * - name: clientSecret
549
+ * in: query
550
+ * description: Client Secret (Optional if tenant/product provided)
551
+ * schema:
552
+ * type: string
553
+ * - name: tenant
554
+ * in: query
555
+ * description: Tenant (Optional if clientID/Secret provided)
556
+ * schema:
557
+ * type: string
558
+ * - name: product
559
+ * in: query
560
+ * description: Product (Optional if clientID/Secret provided)
561
+ * schema:
562
+ * type: string
563
+ * - name: strategy
564
+ * in: query
565
+ * description: Strategy which can help to filter connections with tenant/product query
566
+ * schema:
567
+ * type: string
460
568
  * responses:
461
569
  * '200':
462
570
  * description: Success
@@ -468,84 +576,25 @@ export declare class ConnectionAPIController implements IConnectionAPIController
468
576
  deleteConnections(body: DelConnectionsQuery): Promise<void>;
469
577
  deleteConfig(body: DelConnectionsQuery): Promise<void>;
470
578
  /**
471
- * @swagger
472
- * parameters:
473
- * productParamGet:
474
- * in: query
475
- * name: product
476
- * type: string
477
- * description: Product
478
- * required: true
479
- * definitions:
480
- * Connection:
481
- * type: object
482
- * properties:
483
- * clientID:
484
- * type: string
485
- * description: Connection clientID
486
- * clientSecret:
487
- * type: string
488
- * description: Connection clientSecret
489
- * name:
490
- * type: string
491
- * description: Connection name
492
- * description:
493
- * type: string
494
- * description: Connection description
495
- * redirectUrl:
496
- * type: string
497
- * description: A list of allowed redirect URLs
498
- * defaultRedirectUrl:
499
- * type: string
500
- * description: The redirect URL to use in the IdP login flow
501
- * tenant:
502
- * type: string
503
- * description: Connection tenant
504
- * product:
505
- * type: string
506
- * description: Connection product
507
- * idpMetadata:
508
- * type: object
509
- * description: SAML IdP metadata
510
- * oidcProvider:
511
- * type: object
512
- * description: OIDC IdP metadata
513
- * responses:
514
- * '200GetByProduct':
515
- * description: Success
516
- * content:
517
- * application/json:
518
- * schema:
519
- * type: object
520
- * properties:
521
- * data:
522
- * type: array
523
- * items:
524
- * $ref: '#/definitions/Connection'
525
- * pageToken:
526
- * type: string
527
- * description: token for pagination
528
- * '400Get':
529
- * description: Please provide a `product`.
530
- * '401Get':
531
- * description: Unauthorized
579
+ * @openapi
532
580
  * /api/v1/sso/product:
533
581
  * get:
582
+ * tags:
583
+ * - Single Sign-On
534
584
  * summary: Get SSO Connections by product
535
- * parameters:
536
- * - $ref: '#/parameters/productParamGet'
537
- * - $ref: '#/parameters/pageOffset'
538
- * - $ref: '#/parameters/pageLimit'
539
- * - $ref: '#/parameters/pageToken'
540
585
  * operationId: get-connections-by-product
541
- * tags: [Single Sign-On]
586
+ * parameters:
587
+ * - $ref: '#/components/parameters/productParamGet'
588
+ * - $ref: '#/components/parameters/pageOffset'
589
+ * - $ref: '#/components/parameters/pageLimit'
590
+ * - $ref: '#/components/parameters/pageToken'
542
591
  * responses:
543
592
  * '200':
544
- * $ref: '#/responses/200GetByProduct'
593
+ * $ref: '#/components/responses/200GetByProduct'
545
594
  * '400':
546
- * $ref: '#/responses/400Get'
595
+ * $ref: '#/components/responses/400Get'
547
596
  * '401':
548
- * $ref: '#/responses/401Get'
597
+ * $ref: '#/components/responses/401Get'
549
598
  */
550
599
  getConnectionsByProduct(body: GetByProductParams): Promise<{
551
600
  data: (SAMLSSORecord | OIDCSSORecord)[];