@djangocfg/api 2.1.356 → 2.1.358

package/dist/auth-server.cjs

@@ -432,201 +432,32 @@ var APILogger = class {
 };
 var defaultLogger = new APILogger();
 
-// src/_api/generated/_cfg_accounts/api.ts
-var API = class {
-  static {
-    __name(this, "API");
-  }
-  logger;
-  constructor(_baseUrl, opts = {}) {
-    this.logger = new APILogger(opts.logger);
-    if (_baseUrl) auth.setBaseUrl(_baseUrl);
-    if (opts.locale !== void 0) auth.setLocale(opts.locale);
-    if (opts.apiKey !== void 0) auth.setApiKey(opts.apiKey);
-    if (opts.withCredentials !== void 0) auth.setWithCredentials(opts.withCredentials);
-  }
-  // ── Base URL ────────────────────────────────────────────────────────────
-  getBaseUrl() {
-    return auth.getBaseUrl();
-  }
-  setBaseUrl(url) {
-    auth.setBaseUrl(url);
-  }
-  // ── Tokens ──────────────────────────────────────────────────────────────
-  getToken() {
-    return auth.getToken();
-  }
-  setToken(token) {
-    auth.setToken(token);
-  }
-  getRefreshToken() {
-    return auth.getRefreshToken();
-  }
-  setRefreshToken(token) {
-    auth.setRefreshToken(token);
-  }
-  clearToken() {
-    auth.clearTokens();
-  }
-  isAuthenticated() {
-    return auth.isAuthenticated();
-  }
-  // ── Locale / API key ────────────────────────────────────────────────────
-  getLocale() {
-    return auth.getLocale();
-  }
-  setLocale(locale) {
-    auth.setLocale(locale);
-  }
-  getApiKey() {
-    return auth.getApiKey();
-  }
-  setApiKey(key) {
-    auth.setApiKey(key);
-  }
-  // ── 401 handling ────────────────────────────────────────────────────────
-  /** Fired only on terminal 401 (after refresh+retry path is exhausted). */
-  onUnauthorized(cb) {
-    auth.onUnauthorized(cb);
-  }
-  /** Provide a refresh strategy. See `auth.setRefreshHandler` for the contract. */
-  setRefreshHandler(fn) {
-    auth.setRefreshHandler(fn);
-  }
-};
-
-// src/_api/generated/_cfg_centrifugo/api.ts
-var API2 = class {
-  static {
-    __name(this, "API");
-  }
-  logger;
-  constructor(_baseUrl, opts = {}) {
-    this.logger = new APILogger(opts.logger);
-    if (_baseUrl) auth.setBaseUrl(_baseUrl);
-    if (opts.locale !== void 0) auth.setLocale(opts.locale);
-    if (opts.apiKey !== void 0) auth.setApiKey(opts.apiKey);
-    if (opts.withCredentials !== void 0) auth.setWithCredentials(opts.withCredentials);
-  }
-  // ── Base URL ────────────────────────────────────────────────────────────
-  getBaseUrl() {
-    return auth.getBaseUrl();
-  }
-  setBaseUrl(url) {
-    auth.setBaseUrl(url);
-  }
-  // ── Tokens ──────────────────────────────────────────────────────────────
-  getToken() {
-    return auth.getToken();
-  }
-  setToken(token) {
-    auth.setToken(token);
-  }
-  getRefreshToken() {
-    return auth.getRefreshToken();
-  }
-  setRefreshToken(token) {
-    auth.setRefreshToken(token);
-  }
-  clearToken() {
-    auth.clearTokens();
-  }
-  isAuthenticated() {
-    return auth.isAuthenticated();
-  }
-  // ── Locale / API key ────────────────────────────────────────────────────
-  getLocale() {
-    return auth.getLocale();
-  }
-  setLocale(locale) {
-    auth.setLocale(locale);
-  }
-  getApiKey() {
-    return auth.getApiKey();
-  }
-  setApiKey(key) {
-    auth.setApiKey(key);
-  }
-  // ── 401 handling ────────────────────────────────────────────────────────
-  /** Fired only on terminal 401 (after refresh+retry path is exhausted). */
-  onUnauthorized(cb) {
-    auth.onUnauthorized(cb);
-  }
-  /** Provide a refresh strategy. See `auth.setRefreshHandler` for the contract. */
-  setRefreshHandler(fn) {
-    auth.setRefreshHandler(fn);
-  }
-};
-
-// src/_api/generated/_cfg_totp/api.ts
-var API3 = class {
-  static {
-    __name(this, "API");
-  }
-  logger;
-  constructor(_baseUrl, opts = {}) {
-    this.logger = new APILogger(opts.logger);
-    if (_baseUrl) auth.setBaseUrl(_baseUrl);
-    if (opts.locale !== void 0) auth.setLocale(opts.locale);
-    if (opts.apiKey !== void 0) auth.setApiKey(opts.apiKey);
-    if (opts.withCredentials !== void 0) auth.setWithCredentials(opts.withCredentials);
-  }
-  // ── Base URL ────────────────────────────────────────────────────────────
-  getBaseUrl() {
-    return auth.getBaseUrl();
-  }
-  setBaseUrl(url) {
-    auth.setBaseUrl(url);
-  }
-  // ── Tokens ──────────────────────────────────────────────────────────────
-  getToken() {
-    return auth.getToken();
-  }
-  setToken(token) {
-    auth.setToken(token);
-  }
-  getRefreshToken() {
-    return auth.getRefreshToken();
-  }
-  setRefreshToken(token) {
-    auth.setRefreshToken(token);
-  }
-  clearToken() {
-    auth.clearTokens();
-  }
-  isAuthenticated() {
-    return auth.isAuthenticated();
-  }
-  // ── Locale / API key ────────────────────────────────────────────────────
-  getLocale() {
-    return auth.getLocale();
-  }
-  setLocale(locale) {
-    auth.setLocale(locale);
-  }
-  getApiKey() {
-    return auth.getApiKey();
-  }
-  setApiKey(key) {
-    auth.setApiKey(key);
-  }
-  // ── 401 handling ────────────────────────────────────────────────────────
-  /** Fired only on terminal 401 (after refresh+retry path is exhausted). */
-  onUnauthorized(cb) {
-    auth.onUnauthorized(cb);
-  }
-  /** Provide a refresh strategy. See `auth.setRefreshHandler` for the contract. */
-  setRefreshHandler(fn) {
-    auth.setRefreshHandler(fn);
-  }
-};
-
-// src/_api/generated/index.ts
-var CfgAccountsApi = new API();
-var CfgCentrifugoApi = new API2();
-var CfgTotpApi = new API3();
-
 // src/_api/generated/core/bodySerializer.gen.ts
+var serializeFormDataPair = /* @__PURE__ */ __name((data, key, value) => {
+  if (typeof value === "string" || value instanceof Blob) {
+    data.append(key, value);
+  } else if (value instanceof Date) {
+    data.append(key, value.toISOString());
+  } else {
+    data.append(key, JSON.stringify(value));
+  }
+}, "serializeFormDataPair");
+var formDataBodySerializer = {
+  bodySerializer: /* @__PURE__ */ __name((body) => {
+    const data = new FormData();
+    Object.entries(body).forEach(([key, value]) => {
+      if (value === void 0 || value === null) {
+        return;
+      }
+      if (Array.isArray(value)) {
+        value.forEach((v) => serializeFormDataPair(data, key, v));
+      } else {
+        serializeFormDataPair(data, key, value);
+      }
+    });
+    return data;
+  }, "bodySerializer")
+};
 var jsonBodySerializer = {
   bodySerializer: /* @__PURE__ */ __name((body) => JSON.stringify(body, (_key, value) => typeof value === "bigint" ? value.toString() : value), "bodySerializer")
 };
@@ -1427,16 +1258,59 @@ var client = createClient(createConfig({ baseUrl: "http://localhost:8000" }));
 installAuthOnClient(client);
 
 // src/_api/generated/sdk.gen.ts
-var Auth = class {
+var CfgAccountsApiKey = class {
   static {
-    __name(this, "Auth");
+    __name(this, "CfgAccountsApiKey");
   }
   /**
-   * Refresh JWT token.
+   * Get API key details
+   *
+   * Retrieve the current user's API key (masked) and metadata.
    */
-  static cfgAccountsTokenRefreshCreate(options) {
+  static cfgAccountsApiKeyRetrieve(options) {
+    return (options?.client ?? client).get({
+      security: [{ scheme: "bearer", type: "http" }, {
+        in: "cookie",
+        name: "sessionid",
+        type: "apiKey"
+      }],
+      url: "/cfg/accounts/api-key/",
+      ...options
+    });
+  }
+  /**
+   * Regenerate API key
+   *
+   * Generate a new API key. The full key is returned only once.
+   */
+  static cfgAccountsApiKeyRegenerateCreate(options) {
     return (options.client ?? client).post({
-      url: "/cfg/accounts/token/refresh/",
+      security: [{ scheme: "bearer", type: "http" }, {
+        in: "cookie",
+        name: "sessionid",
+        type: "apiKey"
+      }],
+      url: "/cfg/accounts/api-key/regenerate/",
+      ...options,
+      headers: {
+        "Content-Type": "application/json",
+        ...options.headers
+      }
+    });
+  }
+  /**
+   * Test API key
+   *
+   * Test whether an API key is valid without consuming it.
+   */
+  static cfgAccountsApiKeyTestCreate(options) {
+    return (options.client ?? client).post({
+      security: [{ scheme: "bearer", type: "http" }, {
+        in: "cookie",
+        name: "sessionid",
+        type: "apiKey"
+      }],
+      url: "/cfg/accounts/api-key/test/",
       ...options,
       headers: {
         "Content-Type": "application/json",
@@ -1445,6 +1319,649 @@ var Auth = class {
     });
   }
 };
+var CfgAccountsOauth = class {
+  static {
+    __name(this, "CfgAccountsOauth");
+  }
+  /**
+   * List OAuth connections
+   *
+   * Get all OAuth connections for the current user.
+   */
+  static cfgAccountsOauthConnectionsList(options) {
+    return (options?.client ?? client).get({
+      security: [{ name: "X-API-Key", type: "apiKey" }, { scheme: "bearer", type: "http" }],
+      url: "/cfg/accounts/oauth/connections/",
+      ...options
+    });
+  }
+  /**
+   * Disconnect OAuth provider
+   *
+   * Remove OAuth connection for the specified provider.
+   */
+  static cfgAccountsOauthDisconnectCreate(options) {
+    return (options.client ?? client).post({
+      security: [{ name: "X-API-Key", type: "apiKey" }, { scheme: "bearer", type: "http" }],
+      url: "/cfg/accounts/oauth/disconnect/",
+      ...options,
+      headers: {
+        "Content-Type": "application/json",
+        ...options.headers
+      }
+    });
+  }
+  /**
+   * Start GitHub OAuth
+   *
+   * Generate GitHub OAuth authorization URL. Redirect user to this URL to start authentication.
+   */
+  static cfgAccountsOauthGithubAuthorizeCreate(options) {
+    return (options?.client ?? client).post({
+      url: "/cfg/accounts/oauth/github/authorize/",
+      ...options,
+      headers: {
+        "Content-Type": "application/json",
+        ...options?.headers
+      }
+    });
+  }
+  /**
+   * Complete GitHub OAuth
+   *
+   * Exchange authorization code for JWT tokens. Call this after GitHub redirects back with code.
+   */
+  static cfgAccountsOauthGithubCallbackCreate(options) {
+    return (options.client ?? client).post({
+      url: "/cfg/accounts/oauth/github/callback/",
+      ...options,
+      headers: {
+        "Content-Type": "application/json",
+        ...options.headers
+      }
+    });
+  }
+  /**
+   * List OAuth providers
+   *
+   * Get list of available OAuth providers for authentication.
+   */
+  static cfgAccountsOauthProvidersRetrieve(options) {
+    return (options?.client ?? client).get({ url: "/cfg/accounts/oauth/providers/", ...options });
+  }
+};
+var CfgAccounts = class {
+  static {
+    __name(this, "CfgAccounts");
+  }
+  /**
+   * Request OTP code to email.
+   */
+  static cfgAccountsOtpRequestCreate(options) {
+    return (options.client ?? client).post({
+      security: [{ name: "X-API-Key", type: "apiKey" }, { scheme: "bearer", type: "http" }],
+      url: "/cfg/accounts/otp/request/",
+      ...options,
+      headers: {
+        "Content-Type": "application/json",
+        ...options.headers
+      }
+    });
+  }
+  /**
+   * Verify OTP code and return JWT tokens or 2FA session.
+   *
+   * If user has 2FA enabled:
+   * - Returns requires_2fa=True with session_id
+   * - Client must complete 2FA verification at /cfg/totp/verify/
+   *
+   * If user has no 2FA:
+   * - Returns JWT tokens and user data directly
+   */
+  static cfgAccountsOtpVerifyCreate(options) {
+    return (options.client ?? client).post({
+      security: [{ name: "X-API-Key", type: "apiKey" }, { scheme: "bearer", type: "http" }],
+      url: "/cfg/accounts/otp/verify/",
+      ...options,
+      headers: {
+        "Content-Type": "application/json",
+        ...options.headers
+      }
+    });
+  }
+};
+var CfgAccountsProfile = class {
+  static {
+    __name(this, "CfgAccountsProfile");
+  }
+  /**
+   * Get current user profile
+   *
+   * Retrieve the current authenticated user's profile information.
+   */
+  static cfgAccountsProfileRetrieve(options) {
+    return (options?.client ?? client).get({
+      security: [{ scheme: "bearer", type: "http" }, {
+        in: "cookie",
+        name: "sessionid",
+        type: "apiKey"
+      }],
+      url: "/cfg/accounts/profile/",
+      ...options
+    });
+  }
+  /**
+   * Upload user avatar
+   *
+   * Upload avatar image for the current authenticated user. Accepts multipart/form-data with 'avatar' field.
+   */
+  static cfgAccountsProfileAvatarCreate(options) {
+    return (options?.client ?? client).post({
+      ...formDataBodySerializer,
+      security: [{ name: "X-API-Key", type: "apiKey" }, { scheme: "bearer", type: "http" }],
+      url: "/cfg/accounts/profile/avatar/",
+      ...options,
+      headers: {
+        "Content-Type": null,
+        ...options?.headers
+      }
+    });
+  }
+  /**
+   * Delete user account
+   *
+   *
+   * Permanently delete the current user's account.
+   *
+   * This operation:
+   * - Deactivates the account (user cannot log in)
+   * - Anonymizes personal data (GDPR compliance)
+   * - Frees up the email address for re-registration
+   * - Preserves audit trail
+   *
+   * The account can be restored by an administrator if needed.
+   *
+   */
+  static cfgAccountsProfileDeleteCreate(options) {
+    return (options?.client ?? client).post({
+      security: [{ scheme: "bearer", type: "http" }, {
+        in: "cookie",
+        name: "sessionid",
+        type: "apiKey"
+      }],
+      url: "/cfg/accounts/profile/delete/",
+      ...options
+    });
+  }
+  /**
+   * Partial update user profile
+   *
+   * Partially update the current authenticated user's profile information. Supports avatar upload.
+   */
+  static cfgAccountsProfilePartialPartialUpdate(options) {
+    return (options?.client ?? client).patch({
+      security: [{ scheme: "bearer", type: "http" }, {
+        in: "cookie",
+        name: "sessionid",
+        type: "apiKey"
+      }],
+      url: "/cfg/accounts/profile/partial/",
+      ...options,
+      headers: {
+        "Content-Type": "application/json",
+        ...options?.headers
+      }
+    });
+  }
+  /**
+   * Partial update user profile
+   *
+   * Partially update the current authenticated user's profile information. Supports avatar upload.
+   */
+  static cfgAccountsProfilePartialUpdate(options) {
+    return (options?.client ?? client).put({
+      security: [{ scheme: "bearer", type: "http" }, {
+        in: "cookie",
+        name: "sessionid",
+        type: "apiKey"
+      }],
+      url: "/cfg/accounts/profile/partial/",
+      ...options,
+      headers: {
+        "Content-Type": "application/json",
+        ...options?.headers
+      }
+    });
+  }
+  /**
+   * Update user profile
+   *
+   * Update the current authenticated user's profile information.
+   */
+  static cfgAccountsProfileUpdatePartialUpdate(options) {
+    return (options?.client ?? client).patch({
+      security: [{ scheme: "bearer", type: "http" }, {
+        in: "cookie",
+        name: "sessionid",
+        type: "apiKey"
+      }],
+      url: "/cfg/accounts/profile/update/",
+      ...options,
+      headers: {
+        "Content-Type": "application/json",
+        ...options?.headers
+      }
+    });
+  }
+  /**
+   * Update user profile
+   *
+   * Update the current authenticated user's profile information.
+   */
+  static cfgAccountsProfileUpdateUpdate(options) {
+    return (options?.client ?? client).put({
+      security: [{ scheme: "bearer", type: "http" }, {
+        in: "cookie",
+        name: "sessionid",
+        type: "apiKey"
+      }],
+      url: "/cfg/accounts/profile/update/",
+      ...options,
+      headers: {
+        "Content-Type": "application/json",
+        ...options?.headers
+      }
+    });
+  }
+};
+var CfgAccountsAuth = class {
+  static {
+    __name(this, "CfgAccountsAuth");
+  }
+  /**
+   * Refresh JWT token.
+   */
+  static cfgAccountsTokenRefreshCreate(options) {
+    return (options.client ?? client).post({
+      url: "/cfg/accounts/token/refresh/",
+      ...options,
+      headers: {
+        "Content-Type": "application/json",
+        ...options.headers
+      }
+    });
+  }
+};
+var CfgCentrifugo = class {
+  static {
+    __name(this, "CfgCentrifugo");
+  }
+  /**
+   * Get Centrifugo connection token
+   *
+   * Generate JWT token for WebSocket connection to Centrifugo. Token includes user's allowed channels based on their permissions. Requires authentication.
+   */
+  static cfgCentrifugoAuthTokenRetrieve(options) {
+    return (options?.client ?? client).get({
+      security: [{ name: "X-API-Key", type: "apiKey" }, { scheme: "bearer", type: "http" }],
+      url: "/cfg/centrifugo/auth/token/",
+      ...options
+    });
+  }
+};
+var CfgTotpBackupCodes = class {
+  static {
+    __name(this, "CfgTotpBackupCodes");
+  }
+  /**
+   * Get backup codes status for user.
+   */
+  static cfgTotpBackupCodesRetrieve(options) {
+    return (options?.client ?? client).get({
+      security: [{ name: "X-API-Key", type: "apiKey" }, { scheme: "bearer", type: "http" }],
+      url: "/cfg/totp/backup-codes/",
+      ...options
+    });
+  }
+  /**
+   * Regenerate backup codes.
+   *
+   * Requires TOTP code for verification.
+   * Invalidates all existing codes.
+   */
+  static cfgTotpBackupCodesRegenerateCreate(options) {
+    return (options.client ?? client).post({
+      security: [{ name: "X-API-Key", type: "apiKey" }, { scheme: "bearer", type: "http" }],
+      url: "/cfg/totp/backup-codes/regenerate/",
+      ...options,
+      headers: {
+        "Content-Type": "application/json",
+        ...options.headers
+      }
+    });
+  }
+};
+var CfgTotp = class {
+  static {
+    __name(this, "CfgTotp");
+  }
+  /**
+   * List all TOTP devices for user.
+   */
+  static cfgTotpDevicesRetrieve(options) {
+    return (options?.client ?? client).get({
+      security: [{ name: "X-API-Key", type: "apiKey" }, { scheme: "bearer", type: "http" }],
+      url: "/cfg/totp/devices/",
+      ...options
+    });
+  }
+  /**
+   * Delete a TOTP device.
+   *
+   * Requires verification code if removing the last/primary device.
+   */
+  static cfgTotpDevicesDestroy(options) {
+    return (options.client ?? client).delete({
+      security: [{ name: "X-API-Key", type: "apiKey" }, { scheme: "bearer", type: "http" }],
+      url: "/cfg/totp/devices/{id}/",
+      ...options
+    });
+  }
+  /**
+   * Completely disable 2FA for account.
+   *
+   * Requires verification code.
+   */
+  static cfgTotpDisableCreate(options) {
+    return (options.client ?? client).post({
+      security: [{ name: "X-API-Key", type: "apiKey" }, { scheme: "bearer", type: "http" }],
+      url: "/cfg/totp/disable/",
+      ...options,
+      headers: {
+        "Content-Type": "application/json",
+        ...options.headers
+      }
+    });
+  }
+};
+var CfgTotpSetup = class {
+  static {
+    __name(this, "CfgTotpSetup");
+  }
+  /**
+   * Start 2FA setup process.
+   *
+   * Creates a new TOTP device and returns QR code for scanning.
+   */
+  static cfgTotpSetupCreate(options) {
+    return (options?.client ?? client).post({
+      security: [{ name: "X-API-Key", type: "apiKey" }, { scheme: "bearer", type: "http" }],
+      url: "/cfg/totp/setup/",
+      ...options,
+      headers: {
+        "Content-Type": "application/json",
+        ...options?.headers
+      }
+    });
+  }
+  /**
+   * Confirm 2FA setup with first valid code.
+   *
+   * Activates the device and generates backup codes.
+   */
+  static cfgTotpSetupConfirmCreate(options) {
+    return (options.client ?? client).post({
+      security: [{ name: "X-API-Key", type: "apiKey" }, { scheme: "bearer", type: "http" }],
+      url: "/cfg/totp/setup/confirm/",
+      ...options,
+      headers: {
+        "Content-Type": "application/json",
+        ...options.headers
+      }
+    });
+  }
+};
+var CfgTotpVerify = class {
+  static {
+    __name(this, "CfgTotpVerify");
+  }
+  /**
+   * Verify TOTP code for 2FA session.
+   *
+   * Completes authentication and returns JWT tokens on success.
+   */
+  static cfgTotpVerifyCreate(options) {
+    return (options.client ?? client).post({
+      security: [{ name: "X-API-Key", type: "apiKey" }, { scheme: "bearer", type: "http" }],
+      url: "/cfg/totp/verify/",
+      ...options,
+      headers: {
+        "Content-Type": "application/json",
+        ...options.headers
+      }
+    });
+  }
+  /**
+   * Verify backup recovery code for 2FA session.
+   *
+   * Alternative verification method when TOTP device unavailable.
+   */
+  static cfgTotpVerifyBackupCreate(options) {
+    return (options.client ?? client).post({
+      security: [{ name: "X-API-Key", type: "apiKey" }, { scheme: "bearer", type: "http" }],
+      url: "/cfg/totp/verify/backup/",
+      ...options,
+      headers: {
+        "Content-Type": "application/json",
+        ...options.headers
+      }
+    });
+  }
+};
+
+// src/_api/generated/_cfg_accounts/api.ts
+var API = class {
+  static {
+    __name(this, "API");
+  }
+  logger;
+  cfgAccountsApiKey = CfgAccountsApiKey;
+  cfgAccountsOauth = CfgAccountsOauth;
+  cfgAccounts = CfgAccounts;
+  cfgAccountsProfile = CfgAccountsProfile;
+  cfgAccountsAuth = CfgAccountsAuth;
+  constructor(_baseUrl, opts = {}) {
+    this.logger = new APILogger(opts.logger);
+    if (_baseUrl) auth.setBaseUrl(_baseUrl);
+    if (opts.locale !== void 0) auth.setLocale(opts.locale);
+    if (opts.apiKey !== void 0) auth.setApiKey(opts.apiKey);
+    if (opts.withCredentials !== void 0) auth.setWithCredentials(opts.withCredentials);
+  }
+  // ── Base URL ────────────────────────────────────────────────────────────
+  getBaseUrl() {
+    return auth.getBaseUrl();
+  }
+  setBaseUrl(url) {
+    auth.setBaseUrl(url);
+  }
+  // ── Tokens ──────────────────────────────────────────────────────────────
+  getToken() {
+    return auth.getToken();
+  }
+  setToken(token) {
+    auth.setToken(token);
+  }
+  getRefreshToken() {
+    return auth.getRefreshToken();
+  }
+  setRefreshToken(token) {
+    auth.setRefreshToken(token);
+  }
+  clearToken() {
+    auth.clearTokens();
+  }
+  isAuthenticated() {
+    return auth.isAuthenticated();
+  }
+  // ── Locale / API key ────────────────────────────────────────────────────
+  getLocale() {
+    return auth.getLocale();
+  }
+  setLocale(locale) {
+    auth.setLocale(locale);
+  }
+  getApiKey() {
+    return auth.getApiKey();
+  }
+  setApiKey(key) {
+    auth.setApiKey(key);
+  }
+  // ── 401 handling ────────────────────────────────────────────────────────
+  /** Fired only on terminal 401 (after refresh+retry path is exhausted). */
+  onUnauthorized(cb) {
+    auth.onUnauthorized(cb);
+  }
+  /** Provide a refresh strategy. See `auth.setRefreshHandler` for the contract. */
+  setRefreshHandler(fn) {
+    auth.setRefreshHandler(fn);
+  }
+};
+
+// src/_api/generated/_cfg_centrifugo/api.ts
+var API2 = class {
+  static {
+    __name(this, "API");
+  }
+  logger;
+  cfgCentrifugo = CfgCentrifugo;
+  constructor(_baseUrl, opts = {}) {
+    this.logger = new APILogger(opts.logger);
+    if (_baseUrl) auth.setBaseUrl(_baseUrl);
+    if (opts.locale !== void 0) auth.setLocale(opts.locale);
+    if (opts.apiKey !== void 0) auth.setApiKey(opts.apiKey);
+    if (opts.withCredentials !== void 0) auth.setWithCredentials(opts.withCredentials);
+  }
+  // ── Base URL ────────────────────────────────────────────────────────────
+  getBaseUrl() {
+    return auth.getBaseUrl();
+  }
+  setBaseUrl(url) {
+    auth.setBaseUrl(url);
+  }
+  // ── Tokens ──────────────────────────────────────────────────────────────
+  getToken() {
+    return auth.getToken();
+  }
+  setToken(token) {
+    auth.setToken(token);
+  }
+  getRefreshToken() {
+    return auth.getRefreshToken();
+  }
+  setRefreshToken(token) {
+    auth.setRefreshToken(token);
+  }
+  clearToken() {
+    auth.clearTokens();
+  }
+  isAuthenticated() {
+    return auth.isAuthenticated();
+  }
+  // ── Locale / API key ────────────────────────────────────────────────────
+  getLocale() {
+    return auth.getLocale();
+  }
+  setLocale(locale) {
+    auth.setLocale(locale);
+  }
+  getApiKey() {
+    return auth.getApiKey();
+  }
+  setApiKey(key) {
+    auth.setApiKey(key);
+  }
+  // ── 401 handling ────────────────────────────────────────────────────────
+  /** Fired only on terminal 401 (after refresh+retry path is exhausted). */
+  onUnauthorized(cb) {
+    auth.onUnauthorized(cb);
+  }
+  /** Provide a refresh strategy. See `auth.setRefreshHandler` for the contract. */
+  setRefreshHandler(fn) {
+    auth.setRefreshHandler(fn);
+  }
+};
+
+// src/_api/generated/_cfg_totp/api.ts
+var API3 = class {
+  static {
+    __name(this, "API");
+  }
+  logger;
+  cfgTotpBackupCodes = CfgTotpBackupCodes;
+  cfgTotp = CfgTotp;
+  cfgTotpSetup = CfgTotpSetup;
+  cfgTotpVerify = CfgTotpVerify;
+  constructor(_baseUrl, opts = {}) {
+    this.logger = new APILogger(opts.logger);
+    if (_baseUrl) auth.setBaseUrl(_baseUrl);
+    if (opts.locale !== void 0) auth.setLocale(opts.locale);
+    if (opts.apiKey !== void 0) auth.setApiKey(opts.apiKey);
+    if (opts.withCredentials !== void 0) auth.setWithCredentials(opts.withCredentials);
+  }
+  // ── Base URL ────────────────────────────────────────────────────────────
+  getBaseUrl() {
+    return auth.getBaseUrl();
+  }
+  setBaseUrl(url) {
+    auth.setBaseUrl(url);
+  }
+  // ── Tokens ──────────────────────────────────────────────────────────────
+  getToken() {
+    return auth.getToken();
+  }
+  setToken(token) {
+    auth.setToken(token);
+  }
+  getRefreshToken() {
+    return auth.getRefreshToken();
+  }
+  setRefreshToken(token) {
+    auth.setRefreshToken(token);
+  }
+  clearToken() {
+    auth.clearTokens();
+  }
+  isAuthenticated() {
+    return auth.isAuthenticated();
+  }
+  // ── Locale / API key ────────────────────────────────────────────────────
+  getLocale() {
+    return auth.getLocale();
+  }
+  setLocale(locale) {
+    auth.setLocale(locale);
+  }
+  getApiKey() {
+    return auth.getApiKey();
+  }
+  setApiKey(key) {
+    auth.setApiKey(key);
+  }
+  // ── 401 handling ────────────────────────────────────────────────────────
+  /** Fired only on terminal 401 (after refresh+retry path is exhausted). */
+  onUnauthorized(cb) {
+    auth.onUnauthorized(cb);
+  }
+  /** Provide a refresh strategy. See `auth.setRefreshHandler` for the contract. */
+  setRefreshHandler(fn) {
+    auth.setRefreshHandler(fn);
+  }
+};
+
+// src/_api/generated/index.ts
+var CfgAccountsApi = new API();
+var CfgCentrifugoApi = new API2();
+var CfgTotpApi = new API3();
 
 // src/auth/utils/logger.ts
 var import_consola2 = require("consola");
@@ -1488,7 +2005,7 @@ async function refreshAccessToken() {
       onTokenRefreshed(null);
       return null;
     }
-    const result = await Auth.cfgAccountsTokenRefreshCreate({
+    const result = await CfgAccountsAuth.cfgAccountsTokenRefreshCreate({
       body: { refresh: refreshToken },
       throwOnError: true
     });