@delopay/sdk 0.20.0 → 0.21.0

package/dist/index.d.cts

@@ -1358,6 +1358,102 @@ interface Terminate2faQueryParams {
      */
     skip_two_factor_auth?: boolean;
 }
+/**
+ * Optional query for `GET /user/me/login-activity`. Backend clamps `limit`
+ * to `1..=200` (default 25) and floors `offset` at 0 (default 0).
+ */
+interface LoginHistoryParams {
+    limit?: number;
+    offset?: number;
+}
+/**
+ * One row from the authenticated user's login history.
+ *
+ * `event_type` enumerates the signin attempt outcome — current values:
+ * `signin_success`, `signin_failure`, `signup_success`, `sso_success`,
+ * `sso_failure`, `totp_success`, `totp_failure`, `recovery_code_success`,
+ * `recovery_code_failure`, `magic_link_success`. Stored as a string so
+ * older rows stay readable when the enum grows.
+ *
+ * `failure_reason` is set on failure rows. Current values:
+ * `user_not_found`, `invalid_credentials`, `totp_invalid`,
+ * `totp_max_attempts`, `recovery_code_invalid`, `not_in_admin_org`,
+ * `rate_limited`, `other`.
+ *
+ * `auth_method` tells the dashboard how the attempt authenticated:
+ * `password`, `magic_link`, `sso_oidc`, `totp`, `recovery_code`.
+ *
+ * Geo fields (`country_code`, `city`, `latitude`, `longitude`) are populated
+ * by an offline MaxMind GeoLite2-City lookup at signin time. They stay
+ * `null` for private/loopback IPs, when the lookup misses, or when the
+ * GeoIP service is disabled in backend config.
+ */
+interface LoginHistoryEntry {
+    id: string;
+    event_type: string;
+    failure_reason: string | null;
+    auth_method: string;
+    ip_address: string | null;
+    user_agent: string | null;
+    country_code: string | null;
+    city: string | null;
+    latitude: number | null;
+    longitude: number | null;
+    /** ISO-8601 timestamp the row was inserted (signin attempt time). */
+    created_at: string;
+}
+/**
+ * Response shape for `GET /user/me/login-activity`. `total_count` is the
+ * unpaginated row count for client-side page-count calculation.
+ *
+ * When the authenticated user is a Delopay admin currently impersonating
+ * a non-admin merchant via `switch_merchant_for_user_in_org`, the backend
+ * returns `entries: []` and `total_count: 0` so the admin's IP / geo
+ * doesn't render inside the merchant dashboard. The admin can still see
+ * their real activity by switching back to the admin organization.
+ */
+interface LoginHistoryResponse {
+    entries: LoginHistoryEntry[];
+    total_count: number;
+    offset: number;
+    limit: number;
+}
+/**
+ * One row from `GET /user/me/sessions` (issue #118).
+ *
+ * A session is one minted login JWT. `id` is also the JWT's `jti`. The
+ * row is mutable: `last_seen_at` is updated as the session makes API
+ * calls (debounced to one DB write per 5 min), and `revoked_at` is set
+ * when the user disconnects this session from the dashboard.
+ *
+ * `auth_method` enumerates the signin method that produced the session.
+ * Today only `password` issues sessions; SSO / TOTP / recovery will follow.
+ *
+ * `is_current` is `true` for the row corresponding to the JWT used to
+ * make the listing request — the dashboard renders a "This device" tag
+ * and asks for confirmation before letting the user disconnect it.
+ */
+interface UserSessionEntry {
+    id: string;
+    auth_method: string;
+    ip_address: string | null;
+    user_agent: string | null;
+    country_code: string | null;
+    city: string | null;
+    /** ISO-8601 timestamp the session was created (signin time). */
+    created_at: string;
+    /** ISO-8601 timestamp of the most recent observed API call on this session. */
+    last_seen_at: string;
+    /** ISO-8601 timestamp at which the session JWT exp lapses. */
+    expires_at: string;
+    is_current: boolean;
+}
+interface UserSessionListResponse {
+    sessions: UserSessionEntry[];
+}
+interface UserSessionRevokeResponse {
+    revoked: boolean;
+}
 /** Optional query params for `GET /user/role/list/invite`. */
 interface ListInvitableRolesParams {
     /**
@@ -2950,6 +3046,44 @@ declare class Users {
     signUp(params: SignUpRequest | SignUpWithMerchantRequest): Promise<AuthResponse>;
     signIn(params: SignInRequest): Promise<AuthResponse>;
     signOut(): Promise<Record<string, unknown>>;
+    /**
+     * Paginated login history for the authenticated user — IP, User-Agent,
+     * country / city / lat-lon (when GeoIP is enabled in backend), success
+     * and failure events with their reasons. Strictly scoped to the JWT
+     * subject; a user can only see their own activity.
+     *
+     * `GET /user/me/login-activity`. Requires a logged-in JWT.
+     *
+     * The backend returns an empty page when a Delopay admin is impersonating
+     * a non-admin merchant, so the admin's metadata never renders inside the
+     * merchant dashboard.
+     */
+    listLoginActivity(params?: LoginHistoryParams): Promise<LoginHistoryResponse>;
+    /**
+     * List the authenticated user's currently-active dashboard sessions
+     * (one row per minted login JWT that hasn't been revoked or expired).
+     *
+     * The row matching the JWT making this call has `is_current: true`,
+     * which is what lets the dashboard render a "This device" tag.
+     *
+     * `GET /user/me/sessions`. Requires a logged-in JWT. Returns an empty
+     * list when a Delopay admin is impersonating a non-admin merchant
+     * (same guard as `listLoginActivity`).
+     */
+    listActiveSessions(): Promise<UserSessionListResponse>;
+    /**
+     * Disconnect one of the authenticated user's sessions. The matching
+     * JWT is rejected on its next request — fast-path via Redis, fall back
+     * to the persistent `revoked_at` column.
+     *
+     * Idempotent: revoking an already-revoked or unknown id returns 404,
+     * which the caller can treat as success for retry purposes. Revoking
+     * a session id that belongs to a different user also returns 404 —
+     * the response intentionally doesn't leak whether the id exists.
+     *
+     * `POST /user/me/sessions/{sessionId}/revoke`.
+     */
+    revokeSession(sessionId: string): Promise<UserSessionRevokeResponse>;
     getDetails(): Promise<UserResponse>;
     update(params: UpdateUserDetailsRequest): Promise<UserResponse>;
     changePassword(params: ChangePasswordRequest): Promise<UserResponse>;
@@ -3675,4 +3809,4 @@ declare function parseImportedBranding(raw: unknown): CheckoutBranding;
 declare function applyBrandingVariables(el: HTMLElement, b: CheckoutBranding): void;
 declare function shadowFor(style: SurfaceStyle): string;
 
-export { type Address, type AddressDetails, type AllocationListResponse, type AllocationResponse, type AllocationTransferRequest, type AllocationTransferResponse, Analytics, AnalyticsDashboard, type ApiKeyCreateRequest, type ApiKeyCreateResponse, type ApiKeyExpiration, type ApiKeyResponse, type ApiKeyRevokeResponse, type ApiKeyUpdateRequest, type ApplePayVerificationRequest, type ApplePayVerificationResponse, type ApplePayVerifiedDomainsResponse, type AuthResponse, type AuthenticationCreateRequest, type AuthenticationResponse, type AuthenticationStatus, type AuthenticationType, type AutoRechargeConfig, type AutoRechargeUpdateRequest, BRANDING_EXPORT_FORMAT, BRANDING_EXPORT_VERSION, type BillingCompleteSetupRequest, type BillingProfileResponse, type BillingSetupRequest, type BillingSetupResponse, type BlocklistAddRequest, type BlocklistDataKind, type BlocklistResponse, type BrandingExport, type BrandingSource, type BusinessPaymentLinkConfig, CUSTOM_CSS_MAX_LENGTH, type CaptureMethod, type CardDetail, type CardDetailFromLocker, Cards, type ChangePasswordRequest, type CheckoutBranding, type Connector, type ConnectorCreateRequest, type ConnectorListResponse, type ConnectorResponse, type ConnectorType, type ConnectorUpdateRequest, type ConnectorVolumeSplit, type ConnectorWebhookEntry, type ConnectorWebhookEventType, type ConnectorWebhookListResponse, type ConnectorWebhookRegisterRequest, type ConnectorWebhookRegisterResponse, type CornerRadius, type Currency, type CustomerCreateRequest, type CustomerListParams, type CustomerPaymentMethodsListParams, type CustomerPaymentMethodsListResponse, type CustomerResponse, type CustomerUpdateRequest, DEFAULT_BADGES, DEFAULT_BADGES_DARK, DEFAULT_BRANDING, DEFAULT_BRANDING_DARK, Delopay, DelopayAuthenticationError, DelopayError, type DelopayLogger, type DelopayOptions, type DisputeEvidenceRequest, type DisputeListParams, type DisputeResponse, type DisputeStage, type DisputeStatus, type EncodedBranding, type EphemeralKeyCreateRequest, type EphemeralKeyCreateResponse, type EventClass, type EventDeliveryAttemptResponse, type EventDetailResponse, type EventListParams, type EventListResponse, type EventResponse, type EventType, Export, FeatureMatrix, type FeeOwner, type FeeScheduleCreateRequest, type FeeScheduleResponse, type FeeScheduleUpdateRequest, type FeeType, Files, type FontFamily, type FontWeight, Forex, type ForgotPasswordRequest, type FromEmailRequest, type GatewayConnectRequest, type GatewayResponse, type IntentStatus, type InviteUsersRequest, type InviteUsersResponse, type LabelStyle, type LayoutStyle, type LedgerEntry, type LedgerListParams, type LedgerResponse, type LinkedRoutingConfigRetrieveResponse, type ListInvitableRolesParams, type LogoShape, type LogoSize, type MandateListParams, type MandateResponse, type MandateRevokedResponse, type MandateStatus, type MandateType, type MerchantAccountCreateRequest, type MerchantAccountResponse, type MerchantAccountType, type MerchantAccountUpdateRequest, type MerchantOverviewResponse, type MerchantOverviewStat, type MerchantRoutingAlgorithm, type NonPillRadius, type PaymentCancelRequest, type PaymentCaptureRequest, type PaymentConfirmRequest, type PaymentCreateRequest, type PaymentLayout, type PaymentLinkBackgroundImageConfig, type PaymentLinkConfigRequest, type PaymentLinkListParams, type PaymentLinkListResponse, type PaymentLinkResponse, type PaymentLinkTransactionDetails, type PaymentListParams, type PaymentListResponse, type PaymentMethod, type PaymentMethodCreateRequest, type PaymentMethodDeleteResponse, type PaymentMethodListParams, type PaymentMethodResponse, type PaymentMethodType, type PaymentMethodUpdateRequest, type PaymentResponse, type PaymentRetrieveOptions, type PaymentUpdateRequest, type PayoutCreateRequest, type PayoutListParams, type PayoutListResponse, type PayoutResponse, type PayoutStatus, type PayoutType, type PayoutUpdateRequest, type PhoneDetails, type PhoneOtpRequest, type PhoneOtpResponse, type PhoneOtpVerifyRequest, type PhoneOtpVerifyResponse, type PollStatus, type PollStatusResponse, type ProfileAcquirerCreateRequest, type ProfileAcquirerResponse, type ProfileAcquirerUpdateRequest, type ProfileCreateRequest, type ProfileDefaultRoutingConfig, type ProfileLogoUploadResponse, type ProfileResponse, type ProfileUpdateRequest, type ProjectCreateRequest, type ProjectResponse, type ProjectStats, type ProjectStatsResponse, type ProjectUpdateRequest, type RecoveryCodesResponse, type RefundCreateRequest, type RefundListParams, type RefundListResponse, type RefundResponse, type RefundStatus, type RefundType, type RefundUpdateRequest, type RegionCreateRequest, type RegionResponse, type RegionUpdateRequest, Regions, type RelayRequest, type RelayResponse, type RelayStatus, type RelayType, type RequestFn, type RequestOptions, type ResetPasswordRequest, type RoutableConnectorChoice, type RoutingActivatePayload, type RoutingConfigCreateRequest, type RoutingConfigResponse, type RoutingDeactivateRequest, type RoutingDictionary, type RoutingDictionaryRecord, type ShopCreateRequest, type ShopResponse, type ShopStats, type ShopUpdateRequest, type SignInRequest, type SignUpRequest, type SignUpWithMerchantIdRequest, type SignUpWithMerchantRequest, type SizeScale, type SpacingScale, type StaticRoutingAlgorithm, type StripeConnectAccountRequest, type StripeConnectAccountResponse, type StripeConnectLinkRequest, type StripeConnectLinkResponse, type SubscriptionCreateRequest, type SubscriptionListParams, type SubscriptionListResponse, type SubscriptionResponse, type SubscriptionUpdateRequest, Subscriptions, type SummaryPosition, type SurfaceStyle, type SwitchMerchantRequest, type SwitchProfileRequest, type Terminate2faQueryParams, type ThreeDSDecision, type ThreeDsRuleExecuteRequest, type ThreeDsRuleResponse, type TierSummary, type TokenPurpose, type TokenResponse, type TopupRequest, type TopupResponse, type TotpResponse, type TransactionType, type TrustBadge, type UpdateUserDetailsRequest, type UserResponse, type VerifyTotpRequest, type WebhookDeliveryAttempt, type WebhookEvent, Webhooks, applyBrandingVariables, buildBrandingExport, buttonPadValue, cloneBranding, decodeBadges, decodeBranding, defaultBranding, encodeBadges, encodeBranding, fontStack, fontWeightValue, inputPadValue, isDarkSurface, isHexColor, logoDimensions, parseImportedBranding, radiusValue, sanitizeCustomCss, shadowFor, surfacePadValue, verticalGapValue };
+export { type Address, type AddressDetails, type AllocationListResponse, type AllocationResponse, type AllocationTransferRequest, type AllocationTransferResponse, Analytics, AnalyticsDashboard, type ApiKeyCreateRequest, type ApiKeyCreateResponse, type ApiKeyExpiration, type ApiKeyResponse, type ApiKeyRevokeResponse, type ApiKeyUpdateRequest, type ApplePayVerificationRequest, type ApplePayVerificationResponse, type ApplePayVerifiedDomainsResponse, type AuthResponse, type AuthenticationCreateRequest, type AuthenticationResponse, type AuthenticationStatus, type AuthenticationType, type AutoRechargeConfig, type AutoRechargeUpdateRequest, BRANDING_EXPORT_FORMAT, BRANDING_EXPORT_VERSION, type BillingCompleteSetupRequest, type BillingProfileResponse, type BillingSetupRequest, type BillingSetupResponse, type BlocklistAddRequest, type BlocklistDataKind, type BlocklistResponse, type BrandingExport, type BrandingSource, type BusinessPaymentLinkConfig, CUSTOM_CSS_MAX_LENGTH, type CaptureMethod, type CardDetail, type CardDetailFromLocker, Cards, type ChangePasswordRequest, type CheckoutBranding, type Connector, type ConnectorCreateRequest, type ConnectorListResponse, type ConnectorResponse, type ConnectorType, type ConnectorUpdateRequest, type ConnectorVolumeSplit, type ConnectorWebhookEntry, type ConnectorWebhookEventType, type ConnectorWebhookListResponse, type ConnectorWebhookRegisterRequest, type ConnectorWebhookRegisterResponse, type CornerRadius, type Currency, type CustomerCreateRequest, type CustomerListParams, type CustomerPaymentMethodsListParams, type CustomerPaymentMethodsListResponse, type CustomerResponse, type CustomerUpdateRequest, DEFAULT_BADGES, DEFAULT_BADGES_DARK, DEFAULT_BRANDING, DEFAULT_BRANDING_DARK, Delopay, DelopayAuthenticationError, DelopayError, type DelopayLogger, type DelopayOptions, type DisputeEvidenceRequest, type DisputeListParams, type DisputeResponse, type DisputeStage, type DisputeStatus, type EncodedBranding, type EphemeralKeyCreateRequest, type EphemeralKeyCreateResponse, type EventClass, type EventDeliveryAttemptResponse, type EventDetailResponse, type EventListParams, type EventListResponse, type EventResponse, type EventType, Export, FeatureMatrix, type FeeOwner, type FeeScheduleCreateRequest, type FeeScheduleResponse, type FeeScheduleUpdateRequest, type FeeType, Files, type FontFamily, type FontWeight, Forex, type ForgotPasswordRequest, type FromEmailRequest, type GatewayConnectRequest, type GatewayResponse, type IntentStatus, type InviteUsersRequest, type InviteUsersResponse, type LabelStyle, type LayoutStyle, type LedgerEntry, type LedgerListParams, type LedgerResponse, type LinkedRoutingConfigRetrieveResponse, type ListInvitableRolesParams, type LoginHistoryEntry, type LoginHistoryParams, type LoginHistoryResponse, type LogoShape, type LogoSize, type MandateListParams, type MandateResponse, type MandateRevokedResponse, type MandateStatus, type MandateType, type MerchantAccountCreateRequest, type MerchantAccountResponse, type MerchantAccountType, type MerchantAccountUpdateRequest, type MerchantOverviewResponse, type MerchantOverviewStat, type MerchantRoutingAlgorithm, type NonPillRadius, type PaymentCancelRequest, type PaymentCaptureRequest, type PaymentConfirmRequest, type PaymentCreateRequest, type PaymentLayout, type PaymentLinkBackgroundImageConfig, type PaymentLinkConfigRequest, type PaymentLinkListParams, type PaymentLinkListResponse, type PaymentLinkResponse, type PaymentLinkTransactionDetails, type PaymentListParams, type PaymentListResponse, type PaymentMethod, type PaymentMethodCreateRequest, type PaymentMethodDeleteResponse, type PaymentMethodListParams, type PaymentMethodResponse, type PaymentMethodType, type PaymentMethodUpdateRequest, type PaymentResponse, type PaymentRetrieveOptions, type PaymentUpdateRequest, type PayoutCreateRequest, type PayoutListParams, type PayoutListResponse, type PayoutResponse, type PayoutStatus, type PayoutType, type PayoutUpdateRequest, type PhoneDetails, type PhoneOtpRequest, type PhoneOtpResponse, type PhoneOtpVerifyRequest, type PhoneOtpVerifyResponse, type PollStatus, type PollStatusResponse, type ProfileAcquirerCreateRequest, type ProfileAcquirerResponse, type ProfileAcquirerUpdateRequest, type ProfileCreateRequest, type ProfileDefaultRoutingConfig, type ProfileLogoUploadResponse, type ProfileResponse, type ProfileUpdateRequest, type ProjectCreateRequest, type ProjectResponse, type ProjectStats, type ProjectStatsResponse, type ProjectUpdateRequest, type RecoveryCodesResponse, type RefundCreateRequest, type RefundListParams, type RefundListResponse, type RefundResponse, type RefundStatus, type RefundType, type RefundUpdateRequest, type RegionCreateRequest, type RegionResponse, type RegionUpdateRequest, Regions, type RelayRequest, type RelayResponse, type RelayStatus, type RelayType, type RequestFn, type RequestOptions, type ResetPasswordRequest, type RoutableConnectorChoice, type RoutingActivatePayload, type RoutingConfigCreateRequest, type RoutingConfigResponse, type RoutingDeactivateRequest, type RoutingDictionary, type RoutingDictionaryRecord, type ShopCreateRequest, type ShopResponse, type ShopStats, type ShopUpdateRequest, type SignInRequest, type SignUpRequest, type SignUpWithMerchantIdRequest, type SignUpWithMerchantRequest, type SizeScale, type SpacingScale, type StaticRoutingAlgorithm, type StripeConnectAccountRequest, type StripeConnectAccountResponse, type StripeConnectLinkRequest, type StripeConnectLinkResponse, type SubscriptionCreateRequest, type SubscriptionListParams, type SubscriptionListResponse, type SubscriptionResponse, type SubscriptionUpdateRequest, Subscriptions, type SummaryPosition, type SurfaceStyle, type SwitchMerchantRequest, type SwitchProfileRequest, type Terminate2faQueryParams, type ThreeDSDecision, type ThreeDsRuleExecuteRequest, type ThreeDsRuleResponse, type TierSummary, type TokenPurpose, type TokenResponse, type TopupRequest, type TopupResponse, type TotpResponse, type TransactionType, type TrustBadge, type UpdateUserDetailsRequest, type UserResponse, type UserSessionEntry, type UserSessionListResponse, type UserSessionRevokeResponse, type VerifyTotpRequest, type WebhookDeliveryAttempt, type WebhookEvent, Webhooks, applyBrandingVariables, buildBrandingExport, buttonPadValue, cloneBranding, decodeBadges, decodeBranding, defaultBranding, encodeBadges, encodeBranding, fontStack, fontWeightValue, inputPadValue, isDarkSurface, isHexColor, logoDimensions, parseImportedBranding, radiusValue, sanitizeCustomCss, shadowFor, surfacePadValue, verticalGapValue };

package/dist/index.d.ts

@@ -1358,6 +1358,102 @@ interface Terminate2faQueryParams {
      */
     skip_two_factor_auth?: boolean;
 }
+/**
+ * Optional query for `GET /user/me/login-activity`. Backend clamps `limit`
+ * to `1..=200` (default 25) and floors `offset` at 0 (default 0).
+ */
+interface LoginHistoryParams {
+    limit?: number;
+    offset?: number;
+}
+/**
+ * One row from the authenticated user's login history.
+ *
+ * `event_type` enumerates the signin attempt outcome — current values:
+ * `signin_success`, `signin_failure`, `signup_success`, `sso_success`,
+ * `sso_failure`, `totp_success`, `totp_failure`, `recovery_code_success`,
+ * `recovery_code_failure`, `magic_link_success`. Stored as a string so
+ * older rows stay readable when the enum grows.
+ *
+ * `failure_reason` is set on failure rows. Current values:
+ * `user_not_found`, `invalid_credentials`, `totp_invalid`,
+ * `totp_max_attempts`, `recovery_code_invalid`, `not_in_admin_org`,
+ * `rate_limited`, `other`.
+ *
+ * `auth_method` tells the dashboard how the attempt authenticated:
+ * `password`, `magic_link`, `sso_oidc`, `totp`, `recovery_code`.
+ *
+ * Geo fields (`country_code`, `city`, `latitude`, `longitude`) are populated
+ * by an offline MaxMind GeoLite2-City lookup at signin time. They stay
+ * `null` for private/loopback IPs, when the lookup misses, or when the
+ * GeoIP service is disabled in backend config.
+ */
+interface LoginHistoryEntry {
+    id: string;
+    event_type: string;
+    failure_reason: string | null;
+    auth_method: string;
+    ip_address: string | null;
+    user_agent: string | null;
+    country_code: string | null;
+    city: string | null;
+    latitude: number | null;
+    longitude: number | null;
+    /** ISO-8601 timestamp the row was inserted (signin attempt time). */
+    created_at: string;
+}
+/**
+ * Response shape for `GET /user/me/login-activity`. `total_count` is the
+ * unpaginated row count for client-side page-count calculation.
+ *
+ * When the authenticated user is a Delopay admin currently impersonating
+ * a non-admin merchant via `switch_merchant_for_user_in_org`, the backend
+ * returns `entries: []` and `total_count: 0` so the admin's IP / geo
+ * doesn't render inside the merchant dashboard. The admin can still see
+ * their real activity by switching back to the admin organization.
+ */
+interface LoginHistoryResponse {
+    entries: LoginHistoryEntry[];
+    total_count: number;
+    offset: number;
+    limit: number;
+}
+/**
+ * One row from `GET /user/me/sessions` (issue #118).
+ *
+ * A session is one minted login JWT. `id` is also the JWT's `jti`. The
+ * row is mutable: `last_seen_at` is updated as the session makes API
+ * calls (debounced to one DB write per 5 min), and `revoked_at` is set
+ * when the user disconnects this session from the dashboard.
+ *
+ * `auth_method` enumerates the signin method that produced the session.
+ * Today only `password` issues sessions; SSO / TOTP / recovery will follow.
+ *
+ * `is_current` is `true` for the row corresponding to the JWT used to
+ * make the listing request — the dashboard renders a "This device" tag
+ * and asks for confirmation before letting the user disconnect it.
+ */
+interface UserSessionEntry {
+    id: string;
+    auth_method: string;
+    ip_address: string | null;
+    user_agent: string | null;
+    country_code: string | null;
+    city: string | null;
+    /** ISO-8601 timestamp the session was created (signin time). */
+    created_at: string;
+    /** ISO-8601 timestamp of the most recent observed API call on this session. */
+    last_seen_at: string;
+    /** ISO-8601 timestamp at which the session JWT exp lapses. */
+    expires_at: string;
+    is_current: boolean;
+}
+interface UserSessionListResponse {
+    sessions: UserSessionEntry[];
+}
+interface UserSessionRevokeResponse {
+    revoked: boolean;
+}
 /** Optional query params for `GET /user/role/list/invite`. */
 interface ListInvitableRolesParams {
     /**
@@ -2950,6 +3046,44 @@ declare class Users {
     signUp(params: SignUpRequest | SignUpWithMerchantRequest): Promise<AuthResponse>;
     signIn(params: SignInRequest): Promise<AuthResponse>;
     signOut(): Promise<Record<string, unknown>>;
+    /**
+     * Paginated login history for the authenticated user — IP, User-Agent,
+     * country / city / lat-lon (when GeoIP is enabled in backend), success
+     * and failure events with their reasons. Strictly scoped to the JWT
+     * subject; a user can only see their own activity.
+     *
+     * `GET /user/me/login-activity`. Requires a logged-in JWT.
+     *
+     * The backend returns an empty page when a Delopay admin is impersonating
+     * a non-admin merchant, so the admin's metadata never renders inside the
+     * merchant dashboard.
+     */
+    listLoginActivity(params?: LoginHistoryParams): Promise<LoginHistoryResponse>;
+    /**
+     * List the authenticated user's currently-active dashboard sessions
+     * (one row per minted login JWT that hasn't been revoked or expired).
+     *
+     * The row matching the JWT making this call has `is_current: true`,
+     * which is what lets the dashboard render a "This device" tag.
+     *
+     * `GET /user/me/sessions`. Requires a logged-in JWT. Returns an empty
+     * list when a Delopay admin is impersonating a non-admin merchant
+     * (same guard as `listLoginActivity`).
+     */
+    listActiveSessions(): Promise<UserSessionListResponse>;
+    /**
+     * Disconnect one of the authenticated user's sessions. The matching
+     * JWT is rejected on its next request — fast-path via Redis, fall back
+     * to the persistent `revoked_at` column.
+     *
+     * Idempotent: revoking an already-revoked or unknown id returns 404,
+     * which the caller can treat as success for retry purposes. Revoking
+     * a session id that belongs to a different user also returns 404 —
+     * the response intentionally doesn't leak whether the id exists.
+     *
+     * `POST /user/me/sessions/{sessionId}/revoke`.
+     */
+    revokeSession(sessionId: string): Promise<UserSessionRevokeResponse>;
     getDetails(): Promise<UserResponse>;
     update(params: UpdateUserDetailsRequest): Promise<UserResponse>;
     changePassword(params: ChangePasswordRequest): Promise<UserResponse>;
@@ -3675,4 +3809,4 @@ declare function parseImportedBranding(raw: unknown): CheckoutBranding;
 declare function applyBrandingVariables(el: HTMLElement, b: CheckoutBranding): void;
 declare function shadowFor(style: SurfaceStyle): string;
 
-export { type Address, type AddressDetails, type AllocationListResponse, type AllocationResponse, type AllocationTransferRequest, type AllocationTransferResponse, Analytics, AnalyticsDashboard, type ApiKeyCreateRequest, type ApiKeyCreateResponse, type ApiKeyExpiration, type ApiKeyResponse, type ApiKeyRevokeResponse, type ApiKeyUpdateRequest, type ApplePayVerificationRequest, type ApplePayVerificationResponse, type ApplePayVerifiedDomainsResponse, type AuthResponse, type AuthenticationCreateRequest, type AuthenticationResponse, type AuthenticationStatus, type AuthenticationType, type AutoRechargeConfig, type AutoRechargeUpdateRequest, BRANDING_EXPORT_FORMAT, BRANDING_EXPORT_VERSION, type BillingCompleteSetupRequest, type BillingProfileResponse, type BillingSetupRequest, type BillingSetupResponse, type BlocklistAddRequest, type BlocklistDataKind, type BlocklistResponse, type BrandingExport, type BrandingSource, type BusinessPaymentLinkConfig, CUSTOM_CSS_MAX_LENGTH, type CaptureMethod, type CardDetail, type CardDetailFromLocker, Cards, type ChangePasswordRequest, type CheckoutBranding, type Connector, type ConnectorCreateRequest, type ConnectorListResponse, type ConnectorResponse, type ConnectorType, type ConnectorUpdateRequest, type ConnectorVolumeSplit, type ConnectorWebhookEntry, type ConnectorWebhookEventType, type ConnectorWebhookListResponse, type ConnectorWebhookRegisterRequest, type ConnectorWebhookRegisterResponse, type CornerRadius, type Currency, type CustomerCreateRequest, type CustomerListParams, type CustomerPaymentMethodsListParams, type CustomerPaymentMethodsListResponse, type CustomerResponse, type CustomerUpdateRequest, DEFAULT_BADGES, DEFAULT_BADGES_DARK, DEFAULT_BRANDING, DEFAULT_BRANDING_DARK, Delopay, DelopayAuthenticationError, DelopayError, type DelopayLogger, type DelopayOptions, type DisputeEvidenceRequest, type DisputeListParams, type DisputeResponse, type DisputeStage, type DisputeStatus, type EncodedBranding, type EphemeralKeyCreateRequest, type EphemeralKeyCreateResponse, type EventClass, type EventDeliveryAttemptResponse, type EventDetailResponse, type EventListParams, type EventListResponse, type EventResponse, type EventType, Export, FeatureMatrix, type FeeOwner, type FeeScheduleCreateRequest, type FeeScheduleResponse, type FeeScheduleUpdateRequest, type FeeType, Files, type FontFamily, type FontWeight, Forex, type ForgotPasswordRequest, type FromEmailRequest, type GatewayConnectRequest, type GatewayResponse, type IntentStatus, type InviteUsersRequest, type InviteUsersResponse, type LabelStyle, type LayoutStyle, type LedgerEntry, type LedgerListParams, type LedgerResponse, type LinkedRoutingConfigRetrieveResponse, type ListInvitableRolesParams, type LogoShape, type LogoSize, type MandateListParams, type MandateResponse, type MandateRevokedResponse, type MandateStatus, type MandateType, type MerchantAccountCreateRequest, type MerchantAccountResponse, type MerchantAccountType, type MerchantAccountUpdateRequest, type MerchantOverviewResponse, type MerchantOverviewStat, type MerchantRoutingAlgorithm, type NonPillRadius, type PaymentCancelRequest, type PaymentCaptureRequest, type PaymentConfirmRequest, type PaymentCreateRequest, type PaymentLayout, type PaymentLinkBackgroundImageConfig, type PaymentLinkConfigRequest, type PaymentLinkListParams, type PaymentLinkListResponse, type PaymentLinkResponse, type PaymentLinkTransactionDetails, type PaymentListParams, type PaymentListResponse, type PaymentMethod, type PaymentMethodCreateRequest, type PaymentMethodDeleteResponse, type PaymentMethodListParams, type PaymentMethodResponse, type PaymentMethodType, type PaymentMethodUpdateRequest, type PaymentResponse, type PaymentRetrieveOptions, type PaymentUpdateRequest, type PayoutCreateRequest, type PayoutListParams, type PayoutListResponse, type PayoutResponse, type PayoutStatus, type PayoutType, type PayoutUpdateRequest, type PhoneDetails, type PhoneOtpRequest, type PhoneOtpResponse, type PhoneOtpVerifyRequest, type PhoneOtpVerifyResponse, type PollStatus, type PollStatusResponse, type ProfileAcquirerCreateRequest, type ProfileAcquirerResponse, type ProfileAcquirerUpdateRequest, type ProfileCreateRequest, type ProfileDefaultRoutingConfig, type ProfileLogoUploadResponse, type ProfileResponse, type ProfileUpdateRequest, type ProjectCreateRequest, type ProjectResponse, type ProjectStats, type ProjectStatsResponse, type ProjectUpdateRequest, type RecoveryCodesResponse, type RefundCreateRequest, type RefundListParams, type RefundListResponse, type RefundResponse, type RefundStatus, type RefundType, type RefundUpdateRequest, type RegionCreateRequest, type RegionResponse, type RegionUpdateRequest, Regions, type RelayRequest, type RelayResponse, type RelayStatus, type RelayType, type RequestFn, type RequestOptions, type ResetPasswordRequest, type RoutableConnectorChoice, type RoutingActivatePayload, type RoutingConfigCreateRequest, type RoutingConfigResponse, type RoutingDeactivateRequest, type RoutingDictionary, type RoutingDictionaryRecord, type ShopCreateRequest, type ShopResponse, type ShopStats, type ShopUpdateRequest, type SignInRequest, type SignUpRequest, type SignUpWithMerchantIdRequest, type SignUpWithMerchantRequest, type SizeScale, type SpacingScale, type StaticRoutingAlgorithm, type StripeConnectAccountRequest, type StripeConnectAccountResponse, type StripeConnectLinkRequest, type StripeConnectLinkResponse, type SubscriptionCreateRequest, type SubscriptionListParams, type SubscriptionListResponse, type SubscriptionResponse, type SubscriptionUpdateRequest, Subscriptions, type SummaryPosition, type SurfaceStyle, type SwitchMerchantRequest, type SwitchProfileRequest, type Terminate2faQueryParams, type ThreeDSDecision, type ThreeDsRuleExecuteRequest, type ThreeDsRuleResponse, type TierSummary, type TokenPurpose, type TokenResponse, type TopupRequest, type TopupResponse, type TotpResponse, type TransactionType, type TrustBadge, type UpdateUserDetailsRequest, type UserResponse, type VerifyTotpRequest, type WebhookDeliveryAttempt, type WebhookEvent, Webhooks, applyBrandingVariables, buildBrandingExport, buttonPadValue, cloneBranding, decodeBadges, decodeBranding, defaultBranding, encodeBadges, encodeBranding, fontStack, fontWeightValue, inputPadValue, isDarkSurface, isHexColor, logoDimensions, parseImportedBranding, radiusValue, sanitizeCustomCss, shadowFor, surfacePadValue, verticalGapValue };
+export { type Address, type AddressDetails, type AllocationListResponse, type AllocationResponse, type AllocationTransferRequest, type AllocationTransferResponse, Analytics, AnalyticsDashboard, type ApiKeyCreateRequest, type ApiKeyCreateResponse, type ApiKeyExpiration, type ApiKeyResponse, type ApiKeyRevokeResponse, type ApiKeyUpdateRequest, type ApplePayVerificationRequest, type ApplePayVerificationResponse, type ApplePayVerifiedDomainsResponse, type AuthResponse, type AuthenticationCreateRequest, type AuthenticationResponse, type AuthenticationStatus, type AuthenticationType, type AutoRechargeConfig, type AutoRechargeUpdateRequest, BRANDING_EXPORT_FORMAT, BRANDING_EXPORT_VERSION, type BillingCompleteSetupRequest, type BillingProfileResponse, type BillingSetupRequest, type BillingSetupResponse, type BlocklistAddRequest, type BlocklistDataKind, type BlocklistResponse, type BrandingExport, type BrandingSource, type BusinessPaymentLinkConfig, CUSTOM_CSS_MAX_LENGTH, type CaptureMethod, type CardDetail, type CardDetailFromLocker, Cards, type ChangePasswordRequest, type CheckoutBranding, type Connector, type ConnectorCreateRequest, type ConnectorListResponse, type ConnectorResponse, type ConnectorType, type ConnectorUpdateRequest, type ConnectorVolumeSplit, type ConnectorWebhookEntry, type ConnectorWebhookEventType, type ConnectorWebhookListResponse, type ConnectorWebhookRegisterRequest, type ConnectorWebhookRegisterResponse, type CornerRadius, type Currency, type CustomerCreateRequest, type CustomerListParams, type CustomerPaymentMethodsListParams, type CustomerPaymentMethodsListResponse, type CustomerResponse, type CustomerUpdateRequest, DEFAULT_BADGES, DEFAULT_BADGES_DARK, DEFAULT_BRANDING, DEFAULT_BRANDING_DARK, Delopay, DelopayAuthenticationError, DelopayError, type DelopayLogger, type DelopayOptions, type DisputeEvidenceRequest, type DisputeListParams, type DisputeResponse, type DisputeStage, type DisputeStatus, type EncodedBranding, type EphemeralKeyCreateRequest, type EphemeralKeyCreateResponse, type EventClass, type EventDeliveryAttemptResponse, type EventDetailResponse, type EventListParams, type EventListResponse, type EventResponse, type EventType, Export, FeatureMatrix, type FeeOwner, type FeeScheduleCreateRequest, type FeeScheduleResponse, type FeeScheduleUpdateRequest, type FeeType, Files, type FontFamily, type FontWeight, Forex, type ForgotPasswordRequest, type FromEmailRequest, type GatewayConnectRequest, type GatewayResponse, type IntentStatus, type InviteUsersRequest, type InviteUsersResponse, type LabelStyle, type LayoutStyle, type LedgerEntry, type LedgerListParams, type LedgerResponse, type LinkedRoutingConfigRetrieveResponse, type ListInvitableRolesParams, type LoginHistoryEntry, type LoginHistoryParams, type LoginHistoryResponse, type LogoShape, type LogoSize, type MandateListParams, type MandateResponse, type MandateRevokedResponse, type MandateStatus, type MandateType, type MerchantAccountCreateRequest, type MerchantAccountResponse, type MerchantAccountType, type MerchantAccountUpdateRequest, type MerchantOverviewResponse, type MerchantOverviewStat, type MerchantRoutingAlgorithm, type NonPillRadius, type PaymentCancelRequest, type PaymentCaptureRequest, type PaymentConfirmRequest, type PaymentCreateRequest, type PaymentLayout, type PaymentLinkBackgroundImageConfig, type PaymentLinkConfigRequest, type PaymentLinkListParams, type PaymentLinkListResponse, type PaymentLinkResponse, type PaymentLinkTransactionDetails, type PaymentListParams, type PaymentListResponse, type PaymentMethod, type PaymentMethodCreateRequest, type PaymentMethodDeleteResponse, type PaymentMethodListParams, type PaymentMethodResponse, type PaymentMethodType, type PaymentMethodUpdateRequest, type PaymentResponse, type PaymentRetrieveOptions, type PaymentUpdateRequest, type PayoutCreateRequest, type PayoutListParams, type PayoutListResponse, type PayoutResponse, type PayoutStatus, type PayoutType, type PayoutUpdateRequest, type PhoneDetails, type PhoneOtpRequest, type PhoneOtpResponse, type PhoneOtpVerifyRequest, type PhoneOtpVerifyResponse, type PollStatus, type PollStatusResponse, type ProfileAcquirerCreateRequest, type ProfileAcquirerResponse, type ProfileAcquirerUpdateRequest, type ProfileCreateRequest, type ProfileDefaultRoutingConfig, type ProfileLogoUploadResponse, type ProfileResponse, type ProfileUpdateRequest, type ProjectCreateRequest, type ProjectResponse, type ProjectStats, type ProjectStatsResponse, type ProjectUpdateRequest, type RecoveryCodesResponse, type RefundCreateRequest, type RefundListParams, type RefundListResponse, type RefundResponse, type RefundStatus, type RefundType, type RefundUpdateRequest, type RegionCreateRequest, type RegionResponse, type RegionUpdateRequest, Regions, type RelayRequest, type RelayResponse, type RelayStatus, type RelayType, type RequestFn, type RequestOptions, type ResetPasswordRequest, type RoutableConnectorChoice, type RoutingActivatePayload, type RoutingConfigCreateRequest, type RoutingConfigResponse, type RoutingDeactivateRequest, type RoutingDictionary, type RoutingDictionaryRecord, type ShopCreateRequest, type ShopResponse, type ShopStats, type ShopUpdateRequest, type SignInRequest, type SignUpRequest, type SignUpWithMerchantIdRequest, type SignUpWithMerchantRequest, type SizeScale, type SpacingScale, type StaticRoutingAlgorithm, type StripeConnectAccountRequest, type StripeConnectAccountResponse, type StripeConnectLinkRequest, type StripeConnectLinkResponse, type SubscriptionCreateRequest, type SubscriptionListParams, type SubscriptionListResponse, type SubscriptionResponse, type SubscriptionUpdateRequest, Subscriptions, type SummaryPosition, type SurfaceStyle, type SwitchMerchantRequest, type SwitchProfileRequest, type Terminate2faQueryParams, type ThreeDSDecision, type ThreeDsRuleExecuteRequest, type ThreeDsRuleResponse, type TierSummary, type TokenPurpose, type TokenResponse, type TopupRequest, type TopupResponse, type TotpResponse, type TransactionType, type TrustBadge, type UpdateUserDetailsRequest, type UserResponse, type UserSessionEntry, type UserSessionListResponse, type UserSessionRevokeResponse, type VerifyTotpRequest, type WebhookDeliveryAttempt, type WebhookEvent, Webhooks, applyBrandingVariables, buildBrandingExport, buttonPadValue, cloneBranding, decodeBadges, decodeBranding, defaultBranding, encodeBadges, encodeBranding, fontStack, fontWeightValue, inputPadValue, isDarkSurface, isHexColor, logoDimensions, parseImportedBranding, radiusValue, sanitizeCustomCss, shadowFor, surfacePadValue, verticalGapValue };

package/dist/index.js

@@ -40,7 +40,7 @@ import {
   shadowFor,
   surfacePadValue,
   verticalGapValue
-} from "./chunk-QGQR2OBR.js";
+} from "./chunk-EPZVT7EJ.js";
 export {
   Analytics,
   AnalyticsDashboard,

package/dist/internal.cjs

@@ -1958,6 +1958,55 @@ var Users = class {
   async signOut() {
     return this.request("POST", "/user/signout");
   }
+  /**
+   * Paginated login history for the authenticated user — IP, User-Agent,
+   * country / city / lat-lon (when GeoIP is enabled in backend), success
+   * and failure events with their reasons. Strictly scoped to the JWT
+   * subject; a user can only see their own activity.
+   *
+   * `GET /user/me/login-activity`. Requires a logged-in JWT.
+   *
+   * The backend returns an empty page when a Delopay admin is impersonating
+   * a non-admin merchant, so the admin's metadata never renders inside the
+   * merchant dashboard.
+   */
+  async listLoginActivity(params) {
+    if (params === void 0) {
+      return this.request("GET", "/user/me/login-activity");
+    }
+    return this.request("GET", "/user/me/login-activity", {
+      query: params
+    });
+  }
+  /**
+   * List the authenticated user's currently-active dashboard sessions
+   * (one row per minted login JWT that hasn't been revoked or expired).
+   *
+   * The row matching the JWT making this call has `is_current: true`,
+   * which is what lets the dashboard render a "This device" tag.
+   *
+   * `GET /user/me/sessions`. Requires a logged-in JWT. Returns an empty
+   * list when a Delopay admin is impersonating a non-admin merchant
+   * (same guard as `listLoginActivity`).
+   */
+  async listActiveSessions() {
+    return this.request("GET", "/user/me/sessions");
+  }
+  /**
+   * Disconnect one of the authenticated user's sessions. The matching
+   * JWT is rejected on its next request — fast-path via Redis, fall back
+   * to the persistent `revoked_at` column.
+   *
+   * Idempotent: revoking an already-revoked or unknown id returns 404,
+   * which the caller can treat as success for retry purposes. Revoking
+   * a session id that belongs to a different user also returns 404 —
+   * the response intentionally doesn't leak whether the id exists.
+   *
+   * `POST /user/me/sessions/{sessionId}/revoke`.
+   */
+  async revokeSession(sessionId) {
+    return this.request("POST", `/user/me/sessions/${encodeURIComponent(sessionId)}/revoke`);
+  }
   async getDetails() {
     return this.request("GET", "/user");
   }