@djangocfg/api 2.1.356 → 2.1.358

package/dist/index.cjs

@@ -22,28 +22,26 @@ var index_exports = {};
 __export(index_exports, {
   APIError: () => APIError,
   APILogger: () => APILogger,
-  Accounts: () => Accounts,
-  Auth: () => Auth,
-  BackupCodes: () => BackupCodes,
-  Centrifugo: () => Centrifugo,
-  CentrifugoAuth: () => CentrifugoAuth,
-  Cfg: () => Cfg,
+  CfgAccounts: () => CfgAccounts,
   CfgAccountsAPI: () => API,
   CfgAccountsApi: () => CfgAccountsApi,
+  CfgAccountsApiKey: () => CfgAccountsApiKey,
+  CfgAccountsAuth: () => CfgAccountsAuth,
+  CfgAccountsOauth: () => CfgAccountsOauth,
+  CfgAccountsProfile: () => CfgAccountsProfile,
+  CfgCentrifugo: () => CfgCentrifugo,
   CfgCentrifugoAPI: () => API2,
   CfgCentrifugoApi: () => CfgCentrifugoApi,
+  CfgTotp: () => CfgTotp,
   CfgTotpAPI: () => API3,
   CfgTotpApi: () => CfgTotpApi,
+  CfgTotpBackupCodes: () => CfgTotpBackupCodes,
+  CfgTotpSetup: () => CfgTotpSetup,
+  CfgTotpVerify: () => CfgTotpVerify,
   CookieStorageAdapter: () => CookieStorageAdapter,
   LocalStorageAdapter: () => LocalStorageAdapter,
   MemoryStorageAdapter: () => MemoryStorageAdapter,
   NetworkError: () => NetworkError,
-  OAuth: () => OAuth,
-  Totp: () => Totp,
-  TotpManagement: () => TotpManagement,
-  TotpSetup: () => TotpSetup,
-  TotpVerification: () => TotpVerification,
-  UserProfile: () => UserProfile,
   api: () => CfgAccountsApi,
   auth: () => auth,
   defaultLogger: () => defaultLogger,
@@ -435,398 +433,6 @@ var APILogger = class {
 };
 var defaultLogger = new APILogger();
 
-// src/_api/generated/_cfg_accounts/api.ts
-var API = class {
-  static {
-    __name(this, "API");
-  }
-  logger;
-  constructor(_baseUrl, opts = {}) {
-    this.logger = new APILogger(opts.logger);
-    if (_baseUrl) auth.setBaseUrl(_baseUrl);
-    if (opts.locale !== void 0) auth.setLocale(opts.locale);
-    if (opts.apiKey !== void 0) auth.setApiKey(opts.apiKey);
-    if (opts.withCredentials !== void 0) auth.setWithCredentials(opts.withCredentials);
-  }
-  // ── Base URL ────────────────────────────────────────────────────────────
-  getBaseUrl() {
-    return auth.getBaseUrl();
-  }
-  setBaseUrl(url) {
-    auth.setBaseUrl(url);
-  }
-  // ── Tokens ──────────────────────────────────────────────────────────────
-  getToken() {
-    return auth.getToken();
-  }
-  setToken(token) {
-    auth.setToken(token);
-  }
-  getRefreshToken() {
-    return auth.getRefreshToken();
-  }
-  setRefreshToken(token) {
-    auth.setRefreshToken(token);
-  }
-  clearToken() {
-    auth.clearTokens();
-  }
-  isAuthenticated() {
-    return auth.isAuthenticated();
-  }
-  // ── Locale / API key ────────────────────────────────────────────────────
-  getLocale() {
-    return auth.getLocale();
-  }
-  setLocale(locale) {
-    auth.setLocale(locale);
-  }
-  getApiKey() {
-    return auth.getApiKey();
-  }
-  setApiKey(key) {
-    auth.setApiKey(key);
-  }
-  // ── 401 handling ────────────────────────────────────────────────────────
-  /** Fired only on terminal 401 (after refresh+retry path is exhausted). */
-  onUnauthorized(cb) {
-    auth.onUnauthorized(cb);
-  }
-  /** Provide a refresh strategy. See `auth.setRefreshHandler` for the contract. */
-  setRefreshHandler(fn) {
-    auth.setRefreshHandler(fn);
-  }
-};
-
-// src/_api/generated/helpers/storage.ts
-var LocalStorageAdapter = class {
-  static {
-    __name(this, "LocalStorageAdapter");
-  }
-  getItem(key) {
-    if (typeof window === "undefined") return null;
-    try {
-      return window.localStorage.getItem(key);
-    } catch {
-      return null;
-    }
-  }
-  setItem(key, value) {
-    if (typeof window === "undefined") return;
-    try {
-      window.localStorage.setItem(key, value);
-    } catch {
-    }
-  }
-  removeItem(key) {
-    if (typeof window === "undefined") return;
-    try {
-      window.localStorage.removeItem(key);
-    } catch {
-    }
-  }
-  clear() {
-    if (typeof window === "undefined") return;
-    try {
-      window.localStorage.clear();
-    } catch {
-    }
-  }
-};
-var MemoryStorageAdapter = class {
-  static {
-    __name(this, "MemoryStorageAdapter");
-  }
-  store = /* @__PURE__ */ new Map();
-  getItem(key) {
-    return this.store.get(key) ?? null;
-  }
-  setItem(key, value) {
-    this.store.set(key, value);
-  }
-  removeItem(key) {
-    this.store.delete(key);
-  }
-  clear() {
-    this.store.clear();
-  }
-};
-var CookieStorageAdapter = class {
-  constructor(opts = {}) {
-    this.opts = opts;
-  }
-  static {
-    __name(this, "CookieStorageAdapter");
-  }
-  getItem(key) {
-    if (typeof document === "undefined") return null;
-    const prefix = `${encodeURIComponent(key)}=`;
-    for (const part of document.cookie.split("; ")) {
-      if (part.startsWith(prefix)) {
-        return decodeURIComponent(part.slice(prefix.length));
-      }
-    }
-    return null;
-  }
-  setItem(key, value) {
-    if (typeof document === "undefined") return;
-    const parts = [
-      `${encodeURIComponent(key)}=${encodeURIComponent(value)}`,
-      `Path=${this.opts.path ?? "/"}`
-    ];
-    if (this.opts.domain) parts.push(`Domain=${this.opts.domain}`);
-    if (this.opts.secure) parts.push("Secure");
-    if (this.opts.sameSite) parts.push(`SameSite=${this.opts.sameSite}`);
-    if (this.opts.maxAgeSeconds != null) {
-      parts.push(`Max-Age=${this.opts.maxAgeSeconds}`);
-    }
-    document.cookie = parts.join("; ");
-  }
-  removeItem(key) {
-    if (typeof document === "undefined") return;
-    document.cookie = `${encodeURIComponent(key)}=; Max-Age=0; Path=${this.opts.path ?? "/"}`;
-  }
-};
-
-// src/_api/generated/helpers/errors.ts
-var APIError = class extends Error {
-  constructor(statusCode, statusText, response, url, message) {
-    super(message || `HTTP ${statusCode}: ${statusText}`);
-    this.statusCode = statusCode;
-    this.statusText = statusText;
-    this.response = response;
-    this.url = url;
-    this.name = "APIError";
-  }
-  static {
-    __name(this, "APIError");
-  }
-  get details() {
-    if (typeof this.response === "object" && this.response !== null) {
-      return this.response;
-    }
-    return null;
-  }
-  get fieldErrors() {
-    const details = this.details;
-    if (!details) return null;
-    const fieldErrors = {};
-    for (const [key, value] of Object.entries(details)) {
-      if (Array.isArray(value)) fieldErrors[key] = value;
-    }
-    return Object.keys(fieldErrors).length > 0 ? fieldErrors : null;
-  }
-  get errorMessage() {
-    const details = this.details;
-    if (!details) return this.message;
-    if (details.detail) {
-      return Array.isArray(details.detail) ? details.detail.join(", ") : String(details.detail);
-    }
-    if (details.error) return String(details.error);
-    if (details.message) return String(details.message);
-    const fieldErrors = this.fieldErrors;
-    if (fieldErrors) {
-      const firstField = Object.keys(fieldErrors)[0];
-      if (firstField) return `${firstField}: ${fieldErrors[firstField]?.join(", ")}`;
-    }
-    return this.message;
-  }
-  get isValidationError() {
-    return this.statusCode === 400;
-  }
-  get isAuthError() {
-    return this.statusCode === 401;
-  }
-  get isPermissionError() {
-    return this.statusCode === 403;
-  }
-  get isNotFoundError() {
-    return this.statusCode === 404;
-  }
-  get isServerError() {
-    return this.statusCode >= 500 && this.statusCode < 600;
-  }
-};
-var NetworkError = class extends Error {
-  constructor(message, url, originalError) {
-    super(message);
-    this.url = url;
-    this.originalError = originalError;
-    this.name = "NetworkError";
-  }
-  static {
-    __name(this, "NetworkError");
-  }
-};
-
-// src/_api/generated/helpers/validation-events.ts
-function dispatchValidationError(detail) {
-  if (typeof window === "undefined") return;
-  try {
-    const event = new CustomEvent("zod-validation-error", {
-      detail,
-      bubbles: true,
-      cancelable: false
-    });
-    window.dispatchEvent(event);
-  } catch (error) {
-    console.warn("Failed to dispatch validation error event:", error);
-  }
-}
-__name(dispatchValidationError, "dispatchValidationError");
-function onValidationError(callback) {
-  if (typeof window === "undefined") return () => {
-  };
-  const handler = /* @__PURE__ */ __name((event) => {
-    if (event instanceof CustomEvent) callback(event.detail);
-  }, "handler");
-  window.addEventListener("zod-validation-error", handler);
-  return () => window.removeEventListener("zod-validation-error", handler);
-}
-__name(onValidationError, "onValidationError");
-function formatZodError(error) {
-  const issues = error.issues.map((issue, index) => {
-    const path = issue.path.join(".") || "root";
-    const parts = [`${index + 1}. ${path}: ${issue.message}`];
-    if ("expected" in issue && issue.expected) parts.push(`   Expected: ${issue.expected}`);
-    if ("received" in issue && issue.received) parts.push(`   Received: ${issue.received}`);
-    return parts.join("\n");
-  });
-  return issues.join("\n");
-}
-__name(formatZodError, "formatZodError");
-
-// src/_api/generated/_cfg_centrifugo/api.ts
-var API2 = class {
-  static {
-    __name(this, "API");
-  }
-  logger;
-  constructor(_baseUrl, opts = {}) {
-    this.logger = new APILogger(opts.logger);
-    if (_baseUrl) auth.setBaseUrl(_baseUrl);
-    if (opts.locale !== void 0) auth.setLocale(opts.locale);
-    if (opts.apiKey !== void 0) auth.setApiKey(opts.apiKey);
-    if (opts.withCredentials !== void 0) auth.setWithCredentials(opts.withCredentials);
-  }
-  // ── Base URL ────────────────────────────────────────────────────────────
-  getBaseUrl() {
-    return auth.getBaseUrl();
-  }
-  setBaseUrl(url) {
-    auth.setBaseUrl(url);
-  }
-  // ── Tokens ──────────────────────────────────────────────────────────────
-  getToken() {
-    return auth.getToken();
-  }
-  setToken(token) {
-    auth.setToken(token);
-  }
-  getRefreshToken() {
-    return auth.getRefreshToken();
-  }
-  setRefreshToken(token) {
-    auth.setRefreshToken(token);
-  }
-  clearToken() {
-    auth.clearTokens();
-  }
-  isAuthenticated() {
-    return auth.isAuthenticated();
-  }
-  // ── Locale / API key ────────────────────────────────────────────────────
-  getLocale() {
-    return auth.getLocale();
-  }
-  setLocale(locale) {
-    auth.setLocale(locale);
-  }
-  getApiKey() {
-    return auth.getApiKey();
-  }
-  setApiKey(key) {
-    auth.setApiKey(key);
-  }
-  // ── 401 handling ────────────────────────────────────────────────────────
-  /** Fired only on terminal 401 (after refresh+retry path is exhausted). */
-  onUnauthorized(cb) {
-    auth.onUnauthorized(cb);
-  }
-  /** Provide a refresh strategy. See `auth.setRefreshHandler` for the contract. */
-  setRefreshHandler(fn) {
-    auth.setRefreshHandler(fn);
-  }
-};
-
-// src/_api/generated/_cfg_totp/api.ts
-var API3 = class {
-  static {
-    __name(this, "API");
-  }
-  logger;
-  constructor(_baseUrl, opts = {}) {
-    this.logger = new APILogger(opts.logger);
-    if (_baseUrl) auth.setBaseUrl(_baseUrl);
-    if (opts.locale !== void 0) auth.setLocale(opts.locale);
-    if (opts.apiKey !== void 0) auth.setApiKey(opts.apiKey);
-    if (opts.withCredentials !== void 0) auth.setWithCredentials(opts.withCredentials);
-  }
-  // ── Base URL ────────────────────────────────────────────────────────────
-  getBaseUrl() {
-    return auth.getBaseUrl();
-  }
-  setBaseUrl(url) {
-    auth.setBaseUrl(url);
-  }
-  // ── Tokens ──────────────────────────────────────────────────────────────
-  getToken() {
-    return auth.getToken();
-  }
-  setToken(token) {
-    auth.setToken(token);
-  }
-  getRefreshToken() {
-    return auth.getRefreshToken();
-  }
-  setRefreshToken(token) {
-    auth.setRefreshToken(token);
-  }
-  clearToken() {
-    auth.clearTokens();
-  }
-  isAuthenticated() {
-    return auth.isAuthenticated();
-  }
-  // ── Locale / API key ────────────────────────────────────────────────────
-  getLocale() {
-    return auth.getLocale();
-  }
-  setLocale(locale) {
-    auth.setLocale(locale);
-  }
-  getApiKey() {
-    return auth.getApiKey();
-  }
-  setApiKey(key) {
-    auth.setApiKey(key);
-  }
-  // ── 401 handling ────────────────────────────────────────────────────────
-  /** Fired only on terminal 401 (after refresh+retry path is exhausted). */
-  onUnauthorized(cb) {
-    auth.onUnauthorized(cb);
-  }
-  /** Provide a refresh strategy. See `auth.setRefreshHandler` for the contract. */
-  setRefreshHandler(fn) {
-    auth.setRefreshHandler(fn);
-  }
-};
-
-// src/_api/generated/index.ts
-var CfgAccountsApi = new API();
-var CfgCentrifugoApi = new API2();
-var CfgTotpApi = new API3();
-
 // src/_api/generated/core/bodySerializer.gen.ts
 var serializeFormDataPair = /* @__PURE__ */ __name((data, key, value) => {
   if (typeof value === "string" || value instanceof Blob) {
@@ -1612,438 +1218,100 @@ var createClient = /* @__PURE__ */ __name((config = {}) => {
             request2 = await fn(request2, opts);
           }
         }
-        return request2;
-      }, "onRequest"),
-      serializedBody: getValidRequestBody(opts),
-      url
-    });
-  }, "makeSseFn");
-  const _buildUrl = /* @__PURE__ */ __name((options) => buildUrl({ ..._config, ...options }), "_buildUrl");
-  return {
-    buildUrl: _buildUrl,
-    connect: makeMethodFn("CONNECT"),
-    delete: makeMethodFn("DELETE"),
-    get: makeMethodFn("GET"),
-    getConfig,
-    head: makeMethodFn("HEAD"),
-    interceptors,
-    options: makeMethodFn("OPTIONS"),
-    patch: makeMethodFn("PATCH"),
-    post: makeMethodFn("POST"),
-    put: makeMethodFn("PUT"),
-    request,
-    setConfig,
-    sse: {
-      connect: makeSseFn("CONNECT"),
-      delete: makeSseFn("DELETE"),
-      get: makeSseFn("GET"),
-      head: makeSseFn("HEAD"),
-      options: makeSseFn("OPTIONS"),
-      patch: makeSseFn("PATCH"),
-      post: makeSseFn("POST"),
-      put: makeSseFn("PUT"),
-      trace: makeSseFn("TRACE")
-    },
-    trace: makeMethodFn("TRACE")
-  };
-}, "createClient");
-
-// src/_api/generated/client.gen.ts
-var client = createClient(createConfig({ baseUrl: "http://localhost:8000" }));
-installAuthOnClient(client);
-
-// src/_api/generated/sdk.gen.ts
-var Cfg = class {
-  static {
-    __name(this, "Cfg");
-  }
-  /**
-   * List OAuth connections
-   *
-   * Get all OAuth connections for the current user.
-   */
-  static cfgAccountsOauthConnectionsList(options) {
-    return (options?.client ?? client).get({
-      security: [{ scheme: "bearer", type: "http" }],
-      url: "/cfg/accounts/oauth/connections/",
-      ...options
-    });
-  }
-  /**
-   * Disconnect OAuth provider
-   *
-   * Remove OAuth connection for the specified provider.
-   */
-  static cfgAccountsOauthDisconnectCreate(options) {
-    return (options.client ?? client).post({
-      security: [{ scheme: "bearer", type: "http" }],
-      url: "/cfg/accounts/oauth/disconnect/",
-      ...options,
-      headers: {
-        "Content-Type": "application/json",
-        ...options.headers
-      }
-    });
-  }
-  /**
-   * Start GitHub OAuth
-   *
-   * Generate GitHub OAuth authorization URL. Redirect user to this URL to start authentication.
-   */
-  static cfgAccountsOauthGithubAuthorizeCreate(options) {
-    return (options?.client ?? client).post({
-      url: "/cfg/accounts/oauth/github/authorize/",
-      ...options,
-      headers: {
-        "Content-Type": "application/json",
-        ...options?.headers
-      }
-    });
-  }
-  /**
-   * Complete GitHub OAuth
-   *
-   * Exchange authorization code for JWT tokens. Call this after GitHub redirects back with code.
-   */
-  static cfgAccountsOauthGithubCallbackCreate(options) {
-    return (options.client ?? client).post({
-      url: "/cfg/accounts/oauth/github/callback/",
-      ...options,
-      headers: {
-        "Content-Type": "application/json",
-        ...options.headers
-      }
-    });
-  }
-  /**
-   * List OAuth providers
-   *
-   * Get list of available OAuth providers for authentication.
-   */
-  static cfgAccountsOauthProvidersRetrieve(options) {
-    return (options?.client ?? client).get({ url: "/cfg/accounts/oauth/providers/", ...options });
-  }
-  /**
-   * Request OTP code to email.
-   */
-  static cfgAccountsOtpRequestCreate(options) {
-    return (options.client ?? client).post({
-      security: [{ scheme: "bearer", type: "http" }],
-      url: "/cfg/accounts/otp/request/",
-      ...options,
-      headers: {
-        "Content-Type": "application/json",
-        ...options.headers
-      }
-    });
-  }
-  /**
-   * Verify OTP code and return JWT tokens or 2FA session.
-   *
-   * If user has 2FA enabled:
-   * - Returns requires_2fa=True with session_id
-   * - Client must complete 2FA verification at /cfg/totp/verify/
-   *
-   * If user has no 2FA:
-   * - Returns JWT tokens and user data directly
-   */
-  static cfgAccountsOtpVerifyCreate(options) {
-    return (options.client ?? client).post({
-      security: [{ scheme: "bearer", type: "http" }],
-      url: "/cfg/accounts/otp/verify/",
-      ...options,
-      headers: {
-        "Content-Type": "application/json",
-        ...options.headers
-      }
-    });
-  }
-  /**
-   * Get current user profile
-   *
-   * Retrieve the current authenticated user's profile information.
-   */
-  static cfgAccountsProfileRetrieve(options) {
-    return (options?.client ?? client).get({
-      security: [{ scheme: "bearer", type: "http" }, {
-        in: "cookie",
-        name: "sessionid",
-        type: "apiKey"
-      }],
-      url: "/cfg/accounts/profile/",
-      ...options
-    });
-  }
-  /**
-   * Upload user avatar
-   *
-   * Upload avatar image for the current authenticated user. Accepts multipart/form-data with 'avatar' field.
-   */
-  static cfgAccountsProfileAvatarCreate(options) {
-    return (options?.client ?? client).post({
-      ...formDataBodySerializer,
-      security: [{ scheme: "bearer", type: "http" }],
-      url: "/cfg/accounts/profile/avatar/",
-      ...options,
-      headers: {
-        "Content-Type": null,
-        ...options?.headers
-      }
-    });
-  }
-  /**
-   * Delete user account
-   *
-   *
-   * Permanently delete the current user's account.
-   *
-   * This operation:
-   * - Deactivates the account (user cannot log in)
-   * - Anonymizes personal data (GDPR compliance)
-   * - Frees up the email address for re-registration
-   * - Preserves audit trail
-   *
-   * The account can be restored by an administrator if needed.
-   *
-   */
-  static cfgAccountsProfileDeleteCreate(options) {
-    return (options?.client ?? client).post({
-      security: [{ scheme: "bearer", type: "http" }, {
-        in: "cookie",
-        name: "sessionid",
-        type: "apiKey"
-      }],
-      url: "/cfg/accounts/profile/delete/",
-      ...options
-    });
-  }
-  /**
-   * Partial update user profile
-   *
-   * Partially update the current authenticated user's profile information. Supports avatar upload.
-   */
-  static cfgAccountsProfilePartialPartialUpdate(options) {
-    return (options?.client ?? client).patch({
-      security: [{ scheme: "bearer", type: "http" }, {
-        in: "cookie",
-        name: "sessionid",
-        type: "apiKey"
-      }],
-      url: "/cfg/accounts/profile/partial/",
-      ...options,
-      headers: {
-        "Content-Type": "application/json",
-        ...options?.headers
-      }
+        return request2;
+      }, "onRequest"),
+      serializedBody: getValidRequestBody(opts),
+      url
     });
+  }, "makeSseFn");
+  const _buildUrl = /* @__PURE__ */ __name((options) => buildUrl({ ..._config, ...options }), "_buildUrl");
+  return {
+    buildUrl: _buildUrl,
+    connect: makeMethodFn("CONNECT"),
+    delete: makeMethodFn("DELETE"),
+    get: makeMethodFn("GET"),
+    getConfig,
+    head: makeMethodFn("HEAD"),
+    interceptors,
+    options: makeMethodFn("OPTIONS"),
+    patch: makeMethodFn("PATCH"),
+    post: makeMethodFn("POST"),
+    put: makeMethodFn("PUT"),
+    request,
+    setConfig,
+    sse: {
+      connect: makeSseFn("CONNECT"),
+      delete: makeSseFn("DELETE"),
+      get: makeSseFn("GET"),
+      head: makeSseFn("HEAD"),
+      options: makeSseFn("OPTIONS"),
+      patch: makeSseFn("PATCH"),
+      post: makeSseFn("POST"),
+      put: makeSseFn("PUT"),
+      trace: makeSseFn("TRACE")
+    },
+    trace: makeMethodFn("TRACE")
+  };
+}, "createClient");
+
+// src/_api/generated/client.gen.ts
+var client = createClient(createConfig({ baseUrl: "http://localhost:8000" }));
+installAuthOnClient(client);
+
+// src/_api/generated/sdk.gen.ts
+var CfgAccountsApiKey = class {
+  static {
+    __name(this, "CfgAccountsApiKey");
   }
   /**
-   * Partial update user profile
+   * Get API key details
    *
-   * Partially update the current authenticated user's profile information. Supports avatar upload.
+   * Retrieve the current user's API key (masked) and metadata.
    */
-  static cfgAccountsProfilePartialUpdate(options) {
-    return (options?.client ?? client).put({
+  static cfgAccountsApiKeyRetrieve(options) {
+    return (options?.client ?? client).get({
       security: [{ scheme: "bearer", type: "http" }, {
         in: "cookie",
         name: "sessionid",
         type: "apiKey"
       }],
-      url: "/cfg/accounts/profile/partial/",
-      ...options,
-      headers: {
-        "Content-Type": "application/json",
-        ...options?.headers
-      }
+      url: "/cfg/accounts/api-key/",
+      ...options
     });
   }
   /**
-   * Update user profile
+   * Regenerate API key
    *
-   * Update the current authenticated user's profile information.
+   * Generate a new API key. The full key is returned only once.
    */
-  static cfgAccountsProfileUpdatePartialUpdate(options) {
-    return (options?.client ?? client).patch({
+  static cfgAccountsApiKeyRegenerateCreate(options) {
+    return (options.client ?? client).post({
       security: [{ scheme: "bearer", type: "http" }, {
         in: "cookie",
         name: "sessionid",
         type: "apiKey"
       }],
-      url: "/cfg/accounts/profile/update/",
+      url: "/cfg/accounts/api-key/regenerate/",
       ...options,
       headers: {
         "Content-Type": "application/json",
-        ...options?.headers
+        ...options.headers
       }
     });
   }
   /**
-   * Update user profile
+   * Test API key
    *
-   * Update the current authenticated user's profile information.
+   * Test whether an API key is valid without consuming it.
    */
-  static cfgAccountsProfileUpdateUpdate(options) {
-    return (options?.client ?? client).put({
+  static cfgAccountsApiKeyTestCreate(options) {
+    return (options.client ?? client).post({
       security: [{ scheme: "bearer", type: "http" }, {
         in: "cookie",
         name: "sessionid",
         type: "apiKey"
       }],
-      url: "/cfg/accounts/profile/update/",
-      ...options,
-      headers: {
-        "Content-Type": "application/json",
-        ...options?.headers
-      }
-    });
-  }
-  /**
-   * Refresh JWT token.
-   */
-  static cfgAccountsTokenRefreshCreate(options) {
-    return (options.client ?? client).post({
-      url: "/cfg/accounts/token/refresh/",
-      ...options,
-      headers: {
-        "Content-Type": "application/json",
-        ...options.headers
-      }
-    });
-  }
-  /**
-   * Get Centrifugo connection token
-   *
-   * Generate JWT token for WebSocket connection to Centrifugo. Token includes user's allowed channels based on their permissions. Requires authentication.
-   */
-  static cfgCentrifugoAuthTokenRetrieve(options) {
-    return (options?.client ?? client).get({
-      security: [{ scheme: "bearer", type: "http" }],
-      url: "/cfg/centrifugo/auth/token/",
-      ...options
-    });
-  }
-  /**
-   * Get backup codes status for user.
-   */
-  static cfgTotpBackupCodesRetrieve(options) {
-    return (options?.client ?? client).get({
-      security: [{ scheme: "bearer", type: "http" }],
-      url: "/cfg/totp/backup-codes/",
-      ...options
-    });
-  }
-  /**
-   * Regenerate backup codes.
-   *
-   * Requires TOTP code for verification.
-   * Invalidates all existing codes.
-   */
-  static cfgTotpBackupCodesRegenerateCreate(options) {
-    return (options.client ?? client).post({
-      security: [{ scheme: "bearer", type: "http" }],
-      url: "/cfg/totp/backup-codes/regenerate/",
-      ...options,
-      headers: {
-        "Content-Type": "application/json",
-        ...options.headers
-      }
-    });
-  }
-  /**
-   * List all TOTP devices for user.
-   */
-  static cfgTotpDevicesRetrieve(options) {
-    return (options?.client ?? client).get({
-      security: [{ scheme: "bearer", type: "http" }],
-      url: "/cfg/totp/devices/",
-      ...options
-    });
-  }
-  /**
-   * Delete a TOTP device.
-   *
-   * Requires verification code if removing the last/primary device.
-   */
-  static cfgTotpDevicesDestroy(options) {
-    return (options.client ?? client).delete({
-      security: [{ scheme: "bearer", type: "http" }],
-      url: "/cfg/totp/devices/{id}/",
-      ...options
-    });
-  }
-  /**
-   * Completely disable 2FA for account.
-   *
-   * Requires verification code.
-   */
-  static cfgTotpDisableCreate(options) {
-    return (options.client ?? client).post({
-      security: [{ scheme: "bearer", type: "http" }],
-      url: "/cfg/totp/disable/",
-      ...options,
-      headers: {
-        "Content-Type": "application/json",
-        ...options.headers
-      }
-    });
-  }
-  /**
-   * Start 2FA setup process.
-   *
-   * Creates a new TOTP device and returns QR code for scanning.
-   */
-  static cfgTotpSetupCreate(options) {
-    return (options?.client ?? client).post({
-      security: [{ scheme: "bearer", type: "http" }],
-      url: "/cfg/totp/setup/",
-      ...options,
-      headers: {
-        "Content-Type": "application/json",
-        ...options?.headers
-      }
-    });
-  }
-  /**
-   * Confirm 2FA setup with first valid code.
-   *
-   * Activates the device and generates backup codes.
-   */
-  static cfgTotpSetupConfirmCreate(options) {
-    return (options.client ?? client).post({
-      security: [{ scheme: "bearer", type: "http" }],
-      url: "/cfg/totp/setup/confirm/",
-      ...options,
-      headers: {
-        "Content-Type": "application/json",
-        ...options.headers
-      }
-    });
-  }
-  /**
-   * Verify TOTP code for 2FA session.
-   *
-   * Completes authentication and returns JWT tokens on success.
-   */
-  static cfgTotpVerifyCreate(options) {
-    return (options.client ?? client).post({
-      security: [{ scheme: "bearer", type: "http" }],
-      url: "/cfg/totp/verify/",
-      ...options,
-      headers: {
-        "Content-Type": "application/json",
-        ...options.headers
-      }
-    });
-  }
-  /**
-   * Verify backup recovery code for 2FA session.
-   *
-   * Alternative verification method when TOTP device unavailable.
-   */
-  static cfgTotpVerifyBackupCreate(options) {
-    return (options.client ?? client).post({
-      security: [{ scheme: "bearer", type: "http" }],
-      url: "/cfg/totp/verify/backup/",
+      url: "/cfg/accounts/api-key/test/",
       ...options,
       headers: {
         "Content-Type": "application/json",
@@ -2052,9 +1320,9 @@ var Cfg = class {
     });
   }
 };
-var Accounts = class {
+var CfgAccountsOauth = class {
   static {
-    __name(this, "Accounts");
+    __name(this, "CfgAccountsOauth");
   }
   /**
    * List OAuth connections
@@ -2063,7 +1331,7 @@ var Accounts = class {
    */
   static cfgAccountsOauthConnectionsList(options) {
     return (options?.client ?? client).get({
-      security: [{ scheme: "bearer", type: "http" }],
+      security: [{ name: "X-API-Key", type: "apiKey" }, { scheme: "bearer", type: "http" }],
       url: "/cfg/accounts/oauth/connections/",
       ...options
     });
@@ -2075,7 +1343,7 @@ var Accounts = class {
    */
   static cfgAccountsOauthDisconnectCreate(options) {
     return (options.client ?? client).post({
-      security: [{ scheme: "bearer", type: "http" }],
+      security: [{ name: "X-API-Key", type: "apiKey" }, { scheme: "bearer", type: "http" }],
       url: "/cfg/accounts/oauth/disconnect/",
       ...options,
       headers: {
@@ -2122,12 +1390,17 @@ var Accounts = class {
   static cfgAccountsOauthProvidersRetrieve(options) {
     return (options?.client ?? client).get({ url: "/cfg/accounts/oauth/providers/", ...options });
   }
+};
+var CfgAccounts = class {
+  static {
+    __name(this, "CfgAccounts");
+  }
   /**
    * Request OTP code to email.
    */
   static cfgAccountsOtpRequestCreate(options) {
     return (options.client ?? client).post({
-      security: [{ scheme: "bearer", type: "http" }],
+      security: [{ name: "X-API-Key", type: "apiKey" }, { scheme: "bearer", type: "http" }],
       url: "/cfg/accounts/otp/request/",
       ...options,
       headers: {
@@ -2148,7 +1421,7 @@ var Accounts = class {
    */
   static cfgAccountsOtpVerifyCreate(options) {
     return (options.client ?? client).post({
-      security: [{ scheme: "bearer", type: "http" }],
+      security: [{ name: "X-API-Key", type: "apiKey" }, { scheme: "bearer", type: "http" }],
       url: "/cfg/accounts/otp/verify/",
       ...options,
       headers: {
@@ -2157,6 +1430,11 @@ var Accounts = class {
       }
     });
   }
+};
+var CfgAccountsProfile = class {
+  static {
+    __name(this, "CfgAccountsProfile");
+  }
   /**
    * Get current user profile
    *
@@ -2181,7 +1459,7 @@ var Accounts = class {
   static cfgAccountsProfileAvatarCreate(options) {
     return (options?.client ?? client).post({
       ...formDataBodySerializer,
-      security: [{ scheme: "bearer", type: "http" }],
+      security: [{ name: "X-API-Key", type: "apiKey" }, { scheme: "bearer", type: "http" }],
       url: "/cfg/accounts/profile/avatar/",
       ...options,
       headers: {
@@ -2296,6 +1574,11 @@ var Accounts = class {
       }
     });
   }
+};
+var CfgAccountsAuth = class {
+  static {
+    __name(this, "CfgAccountsAuth");
+  }
   /**
    * Refresh JWT token.
    */
@@ -2310,61 +1593,47 @@ var Accounts = class {
     });
   }
 };
-var OAuth = class {
+var CfgCentrifugo = class {
   static {
-    __name(this, "OAuth");
+    __name(this, "CfgCentrifugo");
   }
   /**
-   * List OAuth connections
+   * Get Centrifugo connection token
    *
-   * Get all OAuth connections for the current user.
+   * Generate JWT token for WebSocket connection to Centrifugo. Token includes user's allowed channels based on their permissions. Requires authentication.
    */
-  static cfgAccountsOauthConnectionsList(options) {
+  static cfgCentrifugoAuthTokenRetrieve(options) {
     return (options?.client ?? client).get({
-      security: [{ scheme: "bearer", type: "http" }],
-      url: "/cfg/accounts/oauth/connections/",
+      security: [{ name: "X-API-Key", type: "apiKey" }, { scheme: "bearer", type: "http" }],
+      url: "/cfg/centrifugo/auth/token/",
       ...options
     });
   }
-  /**
-   * Disconnect OAuth provider
-   *
-   * Remove OAuth connection for the specified provider.
-   */
-  static cfgAccountsOauthDisconnectCreate(options) {
-    return (options.client ?? client).post({
-      security: [{ scheme: "bearer", type: "http" }],
-      url: "/cfg/accounts/oauth/disconnect/",
-      ...options,
-      headers: {
-        "Content-Type": "application/json",
-        ...options.headers
-      }
-    });
+};
+var CfgTotpBackupCodes = class {
+  static {
+    __name(this, "CfgTotpBackupCodes");
   }
   /**
-   * Start GitHub OAuth
-   *
-   * Generate GitHub OAuth authorization URL. Redirect user to this URL to start authentication.
-   */
-  static cfgAccountsOauthGithubAuthorizeCreate(options) {
-    return (options?.client ?? client).post({
-      url: "/cfg/accounts/oauth/github/authorize/",
-      ...options,
-      headers: {
-        "Content-Type": "application/json",
-        ...options?.headers
-      }
+   * Get backup codes status for user.
+   */
+  static cfgTotpBackupCodesRetrieve(options) {
+    return (options?.client ?? client).get({
+      security: [{ name: "X-API-Key", type: "apiKey" }, { scheme: "bearer", type: "http" }],
+      url: "/cfg/totp/backup-codes/",
+      ...options
     });
   }
   /**
-   * Complete GitHub OAuth
+   * Regenerate backup codes.
    *
-   * Exchange authorization code for JWT tokens. Call this after GitHub redirects back with code.
+   * Requires TOTP code for verification.
+   * Invalidates all existing codes.
    */
-  static cfgAccountsOauthGithubCallbackCreate(options) {
+  static cfgTotpBackupCodesRegenerateCreate(options) {
     return (options.client ?? client).post({
-      url: "/cfg/accounts/oauth/github/callback/",
+      security: [{ name: "X-API-Key", type: "apiKey" }, { scheme: "bearer", type: "http" }],
+      url: "/cfg/totp/backup-codes/regenerate/",
       ...options,
       headers: {
         "Content-Type": "application/json",
@@ -2372,480 +1641,524 @@ var OAuth = class {
       }
     });
   }
-  /**
-   * List OAuth providers
-   *
-   * Get list of available OAuth providers for authentication.
-   */
-  static cfgAccountsOauthProvidersRetrieve(options) {
-    return (options?.client ?? client).get({ url: "/cfg/accounts/oauth/providers/", ...options });
-  }
 };
-var UserProfile = class {
+var CfgTotp = class {
   static {
-    __name(this, "UserProfile");
+    __name(this, "CfgTotp");
   }
   /**
-   * Get current user profile
-   *
-   * Retrieve the current authenticated user's profile information.
+   * List all TOTP devices for user.
    */
-  static cfgAccountsProfileRetrieve(options) {
+  static cfgTotpDevicesRetrieve(options) {
     return (options?.client ?? client).get({
-      security: [{ scheme: "bearer", type: "http" }, {
-        in: "cookie",
-        name: "sessionid",
-        type: "apiKey"
-      }],
-      url: "/cfg/accounts/profile/",
+      security: [{ name: "X-API-Key", type: "apiKey" }, { scheme: "bearer", type: "http" }],
+      url: "/cfg/totp/devices/",
       ...options
     });
   }
   /**
-   * Upload user avatar
+   * Delete a TOTP device.
    *
-   * Upload avatar image for the current authenticated user. Accepts multipart/form-data with 'avatar' field.
+   * Requires verification code if removing the last/primary device.
    */
-  static cfgAccountsProfileAvatarCreate(options) {
-    return (options?.client ?? client).post({
-      ...formDataBodySerializer,
-      security: [{ scheme: "bearer", type: "http" }],
-      url: "/cfg/accounts/profile/avatar/",
+  static cfgTotpDevicesDestroy(options) {
+    return (options.client ?? client).delete({
+      security: [{ name: "X-API-Key", type: "apiKey" }, { scheme: "bearer", type: "http" }],
+      url: "/cfg/totp/devices/{id}/",
+      ...options
+    });
+  }
+  /**
+   * Completely disable 2FA for account.
+   *
+   * Requires verification code.
+   */
+  static cfgTotpDisableCreate(options) {
+    return (options.client ?? client).post({
+      security: [{ name: "X-API-Key", type: "apiKey" }, { scheme: "bearer", type: "http" }],
+      url: "/cfg/totp/disable/",
       ...options,
       headers: {
-        "Content-Type": null,
-        ...options?.headers
+        "Content-Type": "application/json",
+        ...options.headers
       }
     });
   }
+};
+var CfgTotpSetup = class {
+  static {
+    __name(this, "CfgTotpSetup");
+  }
   /**
-   * Delete user account
-   *
-   *
-   * Permanently delete the current user's account.
-   *
-   * This operation:
-   * - Deactivates the account (user cannot log in)
-   * - Anonymizes personal data (GDPR compliance)
-   * - Frees up the email address for re-registration
-   * - Preserves audit trail
-   *
-   * The account can be restored by an administrator if needed.
+   * Start 2FA setup process.
    *
+   * Creates a new TOTP device and returns QR code for scanning.
    */
-  static cfgAccountsProfileDeleteCreate(options) {
+  static cfgTotpSetupCreate(options) {
     return (options?.client ?? client).post({
-      security: [{ scheme: "bearer", type: "http" }, {
-        in: "cookie",
-        name: "sessionid",
-        type: "apiKey"
-      }],
-      url: "/cfg/accounts/profile/delete/",
-      ...options
+      security: [{ name: "X-API-Key", type: "apiKey" }, { scheme: "bearer", type: "http" }],
+      url: "/cfg/totp/setup/",
+      ...options,
+      headers: {
+        "Content-Type": "application/json",
+        ...options?.headers
+      }
     });
   }
   /**
-   * Partial update user profile
+   * Confirm 2FA setup with first valid code.
    *
-   * Partially update the current authenticated user's profile information. Supports avatar upload.
+   * Activates the device and generates backup codes.
    */
-  static cfgAccountsProfilePartialPartialUpdate(options) {
-    return (options?.client ?? client).patch({
-      security: [{ scheme: "bearer", type: "http" }, {
-        in: "cookie",
-        name: "sessionid",
-        type: "apiKey"
-      }],
-      url: "/cfg/accounts/profile/partial/",
+  static cfgTotpSetupConfirmCreate(options) {
+    return (options.client ?? client).post({
+      security: [{ name: "X-API-Key", type: "apiKey" }, { scheme: "bearer", type: "http" }],
+      url: "/cfg/totp/setup/confirm/",
       ...options,
       headers: {
         "Content-Type": "application/json",
-        ...options?.headers
+        ...options.headers
       }
     });
   }
+};
+var CfgTotpVerify = class {
+  static {
+    __name(this, "CfgTotpVerify");
+  }
   /**
-   * Partial update user profile
+   * Verify TOTP code for 2FA session.
    *
-   * Partially update the current authenticated user's profile information. Supports avatar upload.
+   * Completes authentication and returns JWT tokens on success.
    */
-  static cfgAccountsProfilePartialUpdate(options) {
-    return (options?.client ?? client).put({
-      security: [{ scheme: "bearer", type: "http" }, {
-        in: "cookie",
-        name: "sessionid",
-        type: "apiKey"
-      }],
-      url: "/cfg/accounts/profile/partial/",
+  static cfgTotpVerifyCreate(options) {
+    return (options.client ?? client).post({
+      security: [{ name: "X-API-Key", type: "apiKey" }, { scheme: "bearer", type: "http" }],
+      url: "/cfg/totp/verify/",
       ...options,
       headers: {
         "Content-Type": "application/json",
-        ...options?.headers
+        ...options.headers
       }
     });
   }
   /**
-   * Update user profile
+   * Verify backup recovery code for 2FA session.
    *
-   * Update the current authenticated user's profile information.
+   * Alternative verification method when TOTP device unavailable.
    */
-  static cfgAccountsProfileUpdatePartialUpdate(options) {
-    return (options?.client ?? client).patch({
-      security: [{ scheme: "bearer", type: "http" }, {
-        in: "cookie",
-        name: "sessionid",
-        type: "apiKey"
-      }],
-      url: "/cfg/accounts/profile/update/",
+  static cfgTotpVerifyBackupCreate(options) {
+    return (options.client ?? client).post({
+      security: [{ name: "X-API-Key", type: "apiKey" }, { scheme: "bearer", type: "http" }],
+      url: "/cfg/totp/verify/backup/",
       ...options,
       headers: {
         "Content-Type": "application/json",
-        ...options?.headers
+        ...options.headers
       }
     });
   }
-  /**
-   * Update user profile
-   *
-   * Update the current authenticated user's profile information.
-   */
-  static cfgAccountsProfileUpdateUpdate(options) {
-    return (options?.client ?? client).put({
-      security: [{ scheme: "bearer", type: "http" }, {
-        in: "cookie",
-        name: "sessionid",
-        type: "apiKey"
-      }],
-      url: "/cfg/accounts/profile/update/",
-      ...options,
-      headers: {
-        "Content-Type": "application/json",
-        ...options?.headers
-      }
-    });
+};
+
+// src/_api/generated/_cfg_accounts/api.ts
+var API = class {
+  static {
+    __name(this, "API");
+  }
+  logger;
+  cfgAccountsApiKey = CfgAccountsApiKey;
+  cfgAccountsOauth = CfgAccountsOauth;
+  cfgAccounts = CfgAccounts;
+  cfgAccountsProfile = CfgAccountsProfile;
+  cfgAccountsAuth = CfgAccountsAuth;
+  constructor(_baseUrl, opts = {}) {
+    this.logger = new APILogger(opts.logger);
+    if (_baseUrl) auth.setBaseUrl(_baseUrl);
+    if (opts.locale !== void 0) auth.setLocale(opts.locale);
+    if (opts.apiKey !== void 0) auth.setApiKey(opts.apiKey);
+    if (opts.withCredentials !== void 0) auth.setWithCredentials(opts.withCredentials);
+  }
+  // ── Base URL ────────────────────────────────────────────────────────────
+  getBaseUrl() {
+    return auth.getBaseUrl();
+  }
+  setBaseUrl(url) {
+    auth.setBaseUrl(url);
+  }
+  // ── Tokens ──────────────────────────────────────────────────────────────
+  getToken() {
+    return auth.getToken();
+  }
+  setToken(token) {
+    auth.setToken(token);
+  }
+  getRefreshToken() {
+    return auth.getRefreshToken();
+  }
+  setRefreshToken(token) {
+    auth.setRefreshToken(token);
+  }
+  clearToken() {
+    auth.clearTokens();
+  }
+  isAuthenticated() {
+    return auth.isAuthenticated();
+  }
+  // ── Locale / API key ────────────────────────────────────────────────────
+  getLocale() {
+    return auth.getLocale();
+  }
+  setLocale(locale) {
+    auth.setLocale(locale);
+  }
+  getApiKey() {
+    return auth.getApiKey();
+  }
+  setApiKey(key) {
+    auth.setApiKey(key);
+  }
+  // ── 401 handling ────────────────────────────────────────────────────────
+  /** Fired only on terminal 401 (after refresh+retry path is exhausted). */
+  onUnauthorized(cb) {
+    auth.onUnauthorized(cb);
+  }
+  /** Provide a refresh strategy. See `auth.setRefreshHandler` for the contract. */
+  setRefreshHandler(fn) {
+    auth.setRefreshHandler(fn);
+  }
+};
+
+// src/_api/generated/helpers/storage.ts
+var LocalStorageAdapter = class {
+  static {
+    __name(this, "LocalStorageAdapter");
+  }
+  getItem(key) {
+    if (typeof window === "undefined") return null;
+    try {
+      return window.localStorage.getItem(key);
+    } catch {
+      return null;
+    }
+  }
+  setItem(key, value) {
+    if (typeof window === "undefined") return;
+    try {
+      window.localStorage.setItem(key, value);
+    } catch {
+    }
+  }
+  removeItem(key) {
+    if (typeof window === "undefined") return;
+    try {
+      window.localStorage.removeItem(key);
+    } catch {
+    }
+  }
+  clear() {
+    if (typeof window === "undefined") return;
+    try {
+      window.localStorage.clear();
+    } catch {
+    }
+  }
+};
+var MemoryStorageAdapter = class {
+  static {
+    __name(this, "MemoryStorageAdapter");
+  }
+  store = /* @__PURE__ */ new Map();
+  getItem(key) {
+    return this.store.get(key) ?? null;
+  }
+  setItem(key, value) {
+    this.store.set(key, value);
+  }
+  removeItem(key) {
+    this.store.delete(key);
+  }
+  clear() {
+    this.store.clear();
   }
 };
-var Auth = class {
+var CookieStorageAdapter = class {
+  constructor(opts = {}) {
+    this.opts = opts;
+  }
   static {
-    __name(this, "Auth");
+    __name(this, "CookieStorageAdapter");
   }
-  /**
-   * Refresh JWT token.
-   */
-  static cfgAccountsTokenRefreshCreate(options) {
-    return (options.client ?? client).post({
-      url: "/cfg/accounts/token/refresh/",
-      ...options,
-      headers: {
-        "Content-Type": "application/json",
-        ...options.headers
+  getItem(key) {
+    if (typeof document === "undefined") return null;
+    const prefix = `${encodeURIComponent(key)}=`;
+    for (const part of document.cookie.split("; ")) {
+      if (part.startsWith(prefix)) {
+        return decodeURIComponent(part.slice(prefix.length));
       }
-    });
+    }
+    return null;
+  }
+  setItem(key, value) {
+    if (typeof document === "undefined") return;
+    const parts = [
+      `${encodeURIComponent(key)}=${encodeURIComponent(value)}`,
+      `Path=${this.opts.path ?? "/"}`
+    ];
+    if (this.opts.domain) parts.push(`Domain=${this.opts.domain}`);
+    if (this.opts.secure) parts.push("Secure");
+    if (this.opts.sameSite) parts.push(`SameSite=${this.opts.sameSite}`);
+    if (this.opts.maxAgeSeconds != null) {
+      parts.push(`Max-Age=${this.opts.maxAgeSeconds}`);
+    }
+    document.cookie = parts.join("; ");
+  }
+  removeItem(key) {
+    if (typeof document === "undefined") return;
+    document.cookie = `${encodeURIComponent(key)}=; Max-Age=0; Path=${this.opts.path ?? "/"}`;
   }
 };
-var Centrifugo = class {
+
+// src/_api/generated/helpers/errors.ts
+var APIError = class extends Error {
+  constructor(statusCode, statusText, response, url, message) {
+    super(message || `HTTP ${statusCode}: ${statusText}`);
+    this.statusCode = statusCode;
+    this.statusText = statusText;
+    this.response = response;
+    this.url = url;
+    this.name = "APIError";
+  }
   static {
-    __name(this, "Centrifugo");
+    __name(this, "APIError");
   }
-  /**
-   * Get Centrifugo connection token
-   *
-   * Generate JWT token for WebSocket connection to Centrifugo. Token includes user's allowed channels based on their permissions. Requires authentication.
-   */
-  static cfgCentrifugoAuthTokenRetrieve(options) {
-    return (options?.client ?? client).get({
-      security: [{ scheme: "bearer", type: "http" }],
-      url: "/cfg/centrifugo/auth/token/",
-      ...options
-    });
+  get details() {
+    if (typeof this.response === "object" && this.response !== null) {
+      return this.response;
+    }
+    return null;
+  }
+  get fieldErrors() {
+    const details = this.details;
+    if (!details) return null;
+    const fieldErrors = {};
+    for (const [key, value] of Object.entries(details)) {
+      if (Array.isArray(value)) fieldErrors[key] = value;
+    }
+    return Object.keys(fieldErrors).length > 0 ? fieldErrors : null;
+  }
+  get errorMessage() {
+    const details = this.details;
+    if (!details) return this.message;
+    if (details.detail) {
+      return Array.isArray(details.detail) ? details.detail.join(", ") : String(details.detail);
+    }
+    if (details.error) return String(details.error);
+    if (details.message) return String(details.message);
+    const fieldErrors = this.fieldErrors;
+    if (fieldErrors) {
+      const firstField = Object.keys(fieldErrors)[0];
+      if (firstField) return `${firstField}: ${fieldErrors[firstField]?.join(", ")}`;
+    }
+    return this.message;
+  }
+  get isValidationError() {
+    return this.statusCode === 400;
+  }
+  get isAuthError() {
+    return this.statusCode === 401;
+  }
+  get isPermissionError() {
+    return this.statusCode === 403;
+  }
+  get isNotFoundError() {
+    return this.statusCode === 404;
+  }
+  get isServerError() {
+    return this.statusCode >= 500 && this.statusCode < 600;
   }
 };
-var CentrifugoAuth = class {
+var NetworkError = class extends Error {
+  constructor(message, url, originalError) {
+    super(message);
+    this.url = url;
+    this.originalError = originalError;
+    this.name = "NetworkError";
+  }
   static {
-    __name(this, "CentrifugoAuth");
+    __name(this, "NetworkError");
   }
-  /**
-   * Get Centrifugo connection token
-   *
-   * Generate JWT token for WebSocket connection to Centrifugo. Token includes user's allowed channels based on their permissions. Requires authentication.
-   */
-  static cfgCentrifugoAuthTokenRetrieve(options) {
-    return (options?.client ?? client).get({
-      security: [{ scheme: "bearer", type: "http" }],
-      url: "/cfg/centrifugo/auth/token/",
-      ...options
+};
+
+// src/_api/generated/helpers/validation-events.ts
+function dispatchValidationError(detail) {
+  if (typeof window === "undefined") return;
+  try {
+    const event = new CustomEvent("zod-validation-error", {
+      detail,
+      bubbles: true,
+      cancelable: false
     });
+    window.dispatchEvent(event);
+  } catch (error) {
+    console.warn("Failed to dispatch validation error event:", error);
   }
-};
-var Totp = class {
+}
+__name(dispatchValidationError, "dispatchValidationError");
+function onValidationError(callback) {
+  if (typeof window === "undefined") return () => {
+  };
+  const handler = /* @__PURE__ */ __name((event) => {
+    if (event instanceof CustomEvent) callback(event.detail);
+  }, "handler");
+  window.addEventListener("zod-validation-error", handler);
+  return () => window.removeEventListener("zod-validation-error", handler);
+}
+__name(onValidationError, "onValidationError");
+function formatZodError(error) {
+  const issues = error.issues.map((issue, index) => {
+    const path = issue.path.join(".") || "root";
+    const parts = [`${index + 1}. ${path}: ${issue.message}`];
+    if ("expected" in issue && issue.expected) parts.push(`   Expected: ${issue.expected}`);
+    if ("received" in issue && issue.received) parts.push(`   Received: ${issue.received}`);
+    return parts.join("\n");
+  });
+  return issues.join("\n");
+}
+__name(formatZodError, "formatZodError");
+
+// src/_api/generated/_cfg_centrifugo/api.ts
+var API2 = class {
   static {
-    __name(this, "Totp");
+    __name(this, "API");
   }
-  /**
-   * Get backup codes status for user.
-   */
-  static cfgTotpBackupCodesRetrieve(options) {
-    return (options?.client ?? client).get({
-      security: [{ scheme: "bearer", type: "http" }],
-      url: "/cfg/totp/backup-codes/",
-      ...options
-    });
+  logger;
+  cfgCentrifugo = CfgCentrifugo;
+  constructor(_baseUrl, opts = {}) {
+    this.logger = new APILogger(opts.logger);
+    if (_baseUrl) auth.setBaseUrl(_baseUrl);
+    if (opts.locale !== void 0) auth.setLocale(opts.locale);
+    if (opts.apiKey !== void 0) auth.setApiKey(opts.apiKey);
+    if (opts.withCredentials !== void 0) auth.setWithCredentials(opts.withCredentials);
   }
-  /**
-   * Regenerate backup codes.
-   *
-   * Requires TOTP code for verification.
-   * Invalidates all existing codes.
-   */
-  static cfgTotpBackupCodesRegenerateCreate(options) {
-    return (options.client ?? client).post({
-      security: [{ scheme: "bearer", type: "http" }],
-      url: "/cfg/totp/backup-codes/regenerate/",
-      ...options,
-      headers: {
-        "Content-Type": "application/json",
-        ...options.headers
-      }
-    });
+  // ── Base URL ────────────────────────────────────────────────────────────
+  getBaseUrl() {
+    return auth.getBaseUrl();
   }
-  /**
-   * List all TOTP devices for user.
-   */
-  static cfgTotpDevicesRetrieve(options) {
-    return (options?.client ?? client).get({
-      security: [{ scheme: "bearer", type: "http" }],
-      url: "/cfg/totp/devices/",
-      ...options
-    });
+  setBaseUrl(url) {
+    auth.setBaseUrl(url);
   }
-  /**
-   * Delete a TOTP device.
-   *
-   * Requires verification code if removing the last/primary device.
-   */
-  static cfgTotpDevicesDestroy(options) {
-    return (options.client ?? client).delete({
-      security: [{ scheme: "bearer", type: "http" }],
-      url: "/cfg/totp/devices/{id}/",
-      ...options
-    });
+  // ── Tokens ──────────────────────────────────────────────────────────────
+  getToken() {
+    return auth.getToken();
+  }
+  setToken(token) {
+    auth.setToken(token);
+  }
+  getRefreshToken() {
+    return auth.getRefreshToken();
+  }
+  setRefreshToken(token) {
+    auth.setRefreshToken(token);
   }
-  /**
-   * Completely disable 2FA for account.
-   *
-   * Requires verification code.
-   */
-  static cfgTotpDisableCreate(options) {
-    return (options.client ?? client).post({
-      security: [{ scheme: "bearer", type: "http" }],
-      url: "/cfg/totp/disable/",
-      ...options,
-      headers: {
-        "Content-Type": "application/json",
-        ...options.headers
-      }
-    });
+  clearToken() {
+    auth.clearTokens();
   }
-  /**
-   * Start 2FA setup process.
-   *
-   * Creates a new TOTP device and returns QR code for scanning.
-   */
-  static cfgTotpSetupCreate(options) {
-    return (options?.client ?? client).post({
-      security: [{ scheme: "bearer", type: "http" }],
-      url: "/cfg/totp/setup/",
-      ...options,
-      headers: {
-        "Content-Type": "application/json",
-        ...options?.headers
-      }
-    });
+  isAuthenticated() {
+    return auth.isAuthenticated();
   }
-  /**
-   * Confirm 2FA setup with first valid code.
-   *
-   * Activates the device and generates backup codes.
-   */
-  static cfgTotpSetupConfirmCreate(options) {
-    return (options.client ?? client).post({
-      security: [{ scheme: "bearer", type: "http" }],
-      url: "/cfg/totp/setup/confirm/",
-      ...options,
-      headers: {
-        "Content-Type": "application/json",
-        ...options.headers
-      }
-    });
+  // ── Locale / API key ────────────────────────────────────────────────────
+  getLocale() {
+    return auth.getLocale();
   }
-  /**
-   * Verify TOTP code for 2FA session.
-   *
-   * Completes authentication and returns JWT tokens on success.
-   */
-  static cfgTotpVerifyCreate(options) {
-    return (options.client ?? client).post({
-      security: [{ scheme: "bearer", type: "http" }],
-      url: "/cfg/totp/verify/",
-      ...options,
-      headers: {
-        "Content-Type": "application/json",
-        ...options.headers
-      }
-    });
+  setLocale(locale) {
+    auth.setLocale(locale);
   }
-  /**
-   * Verify backup recovery code for 2FA session.
-   *
-   * Alternative verification method when TOTP device unavailable.
-   */
-  static cfgTotpVerifyBackupCreate(options) {
-    return (options.client ?? client).post({
-      security: [{ scheme: "bearer", type: "http" }],
-      url: "/cfg/totp/verify/backup/",
-      ...options,
-      headers: {
-        "Content-Type": "application/json",
-        ...options.headers
-      }
-    });
+  getApiKey() {
+    return auth.getApiKey();
   }
-};
-var BackupCodes = class {
-  static {
-    __name(this, "BackupCodes");
+  setApiKey(key) {
+    auth.setApiKey(key);
   }
-  /**
-   * Get backup codes status for user.
-   */
-  static cfgTotpBackupCodesRetrieve(options) {
-    return (options?.client ?? client).get({
-      security: [{ scheme: "bearer", type: "http" }],
-      url: "/cfg/totp/backup-codes/",
-      ...options
-    });
+  // ── 401 handling ────────────────────────────────────────────────────────
+  /** Fired only on terminal 401 (after refresh+retry path is exhausted). */
+  onUnauthorized(cb) {
+    auth.onUnauthorized(cb);
   }
-  /**
-   * Regenerate backup codes.
-   *
-   * Requires TOTP code for verification.
-   * Invalidates all existing codes.
-   */
-  static cfgTotpBackupCodesRegenerateCreate(options) {
-    return (options.client ?? client).post({
-      security: [{ scheme: "bearer", type: "http" }],
-      url: "/cfg/totp/backup-codes/regenerate/",
-      ...options,
-      headers: {
-        "Content-Type": "application/json",
-        ...options.headers
-      }
-    });
+  /** Provide a refresh strategy. See `auth.setRefreshHandler` for the contract. */
+  setRefreshHandler(fn) {
+    auth.setRefreshHandler(fn);
   }
 };
-var TotpManagement = class {
+
+// src/_api/generated/_cfg_totp/api.ts
+var API3 = class {
   static {
-    __name(this, "TotpManagement");
+    __name(this, "API");
   }
-  /**
-   * List all TOTP devices for user.
-   */
-  static cfgTotpDevicesRetrieve(options) {
-    return (options?.client ?? client).get({
-      security: [{ scheme: "bearer", type: "http" }],
-      url: "/cfg/totp/devices/",
-      ...options
-    });
+  logger;
+  cfgTotpBackupCodes = CfgTotpBackupCodes;
+  cfgTotp = CfgTotp;
+  cfgTotpSetup = CfgTotpSetup;
+  cfgTotpVerify = CfgTotpVerify;
+  constructor(_baseUrl, opts = {}) {
+    this.logger = new APILogger(opts.logger);
+    if (_baseUrl) auth.setBaseUrl(_baseUrl);
+    if (opts.locale !== void 0) auth.setLocale(opts.locale);
+    if (opts.apiKey !== void 0) auth.setApiKey(opts.apiKey);
+    if (opts.withCredentials !== void 0) auth.setWithCredentials(opts.withCredentials);
   }
-  /**
-   * Completely disable 2FA for account.
-   *
-   * Requires verification code.
-   */
-  static cfgTotpDisableCreate(options) {
-    return (options.client ?? client).post({
-      security: [{ scheme: "bearer", type: "http" }],
-      url: "/cfg/totp/disable/",
-      ...options,
-      headers: {
-        "Content-Type": "application/json",
-        ...options.headers
-      }
-    });
+  // ── Base URL ────────────────────────────────────────────────────────────
+  getBaseUrl() {
+    return auth.getBaseUrl();
   }
-};
-var TotpSetup = class {
-  static {
-    __name(this, "TotpSetup");
+  setBaseUrl(url) {
+    auth.setBaseUrl(url);
   }
-  /**
-   * Start 2FA setup process.
-   *
-   * Creates a new TOTP device and returns QR code for scanning.
-   */
-  static cfgTotpSetupCreate(options) {
-    return (options?.client ?? client).post({
-      security: [{ scheme: "bearer", type: "http" }],
-      url: "/cfg/totp/setup/",
-      ...options,
-      headers: {
-        "Content-Type": "application/json",
-        ...options?.headers
-      }
-    });
+  // ── Tokens ──────────────────────────────────────────────────────────────
+  getToken() {
+    return auth.getToken();
   }
-  /**
-   * Confirm 2FA setup with first valid code.
-   *
-   * Activates the device and generates backup codes.
-   */
-  static cfgTotpSetupConfirmCreate(options) {
-    return (options.client ?? client).post({
-      security: [{ scheme: "bearer", type: "http" }],
-      url: "/cfg/totp/setup/confirm/",
-      ...options,
-      headers: {
-        "Content-Type": "application/json",
-        ...options.headers
-      }
-    });
+  setToken(token) {
+    auth.setToken(token);
   }
-};
-var TotpVerification = class {
-  static {
-    __name(this, "TotpVerification");
+  getRefreshToken() {
+    return auth.getRefreshToken();
   }
-  /**
-   * Verify TOTP code for 2FA session.
-   *
-   * Completes authentication and returns JWT tokens on success.
-   */
-  static cfgTotpVerifyCreate(options) {
-    return (options.client ?? client).post({
-      security: [{ scheme: "bearer", type: "http" }],
-      url: "/cfg/totp/verify/",
-      ...options,
-      headers: {
-        "Content-Type": "application/json",
-        ...options.headers
-      }
-    });
+  setRefreshToken(token) {
+    auth.setRefreshToken(token);
   }
-  /**
-   * Verify backup recovery code for 2FA session.
-   *
-   * Alternative verification method when TOTP device unavailable.
-   */
-  static cfgTotpVerifyBackupCreate(options) {
-    return (options.client ?? client).post({
-      security: [{ scheme: "bearer", type: "http" }],
-      url: "/cfg/totp/verify/backup/",
-      ...options,
-      headers: {
-        "Content-Type": "application/json",
-        ...options.headers
-      }
-    });
+  clearToken() {
+    auth.clearTokens();
+  }
+  isAuthenticated() {
+    return auth.isAuthenticated();
+  }
+  // ── Locale / API key ────────────────────────────────────────────────────
+  getLocale() {
+    return auth.getLocale();
+  }
+  setLocale(locale) {
+    auth.setLocale(locale);
+  }
+  getApiKey() {
+    return auth.getApiKey();
+  }
+  setApiKey(key) {
+    auth.setApiKey(key);
+  }
+  // ── 401 handling ────────────────────────────────────────────────────────
+  /** Fired only on terminal 401 (after refresh+retry path is exhausted). */
+  onUnauthorized(cb) {
+    auth.onUnauthorized(cb);
+  }
+  /** Provide a refresh strategy. See `auth.setRefreshHandler` for the contract. */
+  setRefreshHandler(fn) {
+    auth.setRefreshHandler(fn);
   }
 };
+
+// src/_api/generated/index.ts
+var CfgAccountsApi = new API();
+var CfgCentrifugoApi = new API2();
+var CfgTotpApi = new API3();
 //# sourceMappingURL=index.cjs.map