@eudiplo/sdk-core 1.18.0 → 2.0.0

package/dist/{types.gen-M31b0SZB.d.ts → types.gen-CxMpZyVO.d.ts}

@@ -5,7 +5,7 @@ type RoleDto = {
     /**
      * OAuth2 roles
      */
-    role: "presentation:manage" | "presentation:offer" | "issuance:manage" | "issuance:offer" | "clients:manage" | "tenants:manage" | "registrar:manage";
+    role: "presentation:manage" | "presentation:request" | "issuance:manage" | "issuance:offer" | "clients:manage" | "tenants:manage" | "registrar:manage";
 };
 type ClientCredentialsDto = {
     grant_type?: string;
@@ -118,7 +118,7 @@ type ClientEntity = {
     /**
      * The roles assigned to the client.
      */
-    roles: Array<"presentation:manage" | "presentation:offer" | "issuance:manage" | "issuance:offer" | "clients:manage" | "tenants:manage" | "registrar:manage">;
+    roles: Array<"presentation:manage" | "presentation:request" | "issuance:manage" | "issuance:offer" | "clients:manage" | "tenants:manage" | "registrar:manage">;
     /**
      * The tenant that the client belongs to.
      */
@@ -133,7 +133,7 @@ type CreateTenantDto = {
      * Session storage configuration. Controls TTL and cleanup behavior.
      */
     sessionConfig?: SessionStorageConfig;
-    roles?: Array<"presentation:manage" | "presentation:offer" | "issuance:manage" | "issuance:offer" | "clients:manage" | "tenants:manage" | "registrar:manage">;
+    roles?: Array<"presentation:manage" | "presentation:request" | "issuance:manage" | "issuance:offer" | "clients:manage" | "tenants:manage" | "registrar:manage">;
     /**
      * The unique identifier for the tenant.
      */
@@ -164,7 +164,7 @@ type UpdateTenantDto = {
      * The description of the tenant.
      */
     description?: string;
-    roles?: Array<"presentation:manage" | "presentation:offer" | "issuance:manage" | "issuance:offer" | "clients:manage" | "tenants:manage" | "registrar:manage">;
+    roles?: Array<"presentation:manage" | "presentation:request" | "issuance:manage" | "issuance:offer" | "clients:manage" | "tenants:manage" | "registrar:manage">;
 };
 type ClientSecretResponseDto = {
     secret: string;
@@ -185,7 +185,7 @@ type UpdateClientDto = {
     /**
      * The roles assigned to the client.
      */
-    roles: Array<"presentation:manage" | "presentation:offer" | "issuance:manage" | "issuance:offer" | "clients:manage" | "tenants:manage" | "registrar:manage">;
+    roles: Array<"presentation:manage" | "presentation:request" | "issuance:manage" | "issuance:offer" | "clients:manage" | "tenants:manage" | "registrar:manage">;
 };
 type CreateClientDto = {
     /**
@@ -211,7 +211,7 @@ type CreateClientDto = {
     /**
      * The roles assigned to the client.
      */
-    roles: Array<"presentation:manage" | "presentation:offer" | "issuance:manage" | "issuance:offer" | "clients:manage" | "tenants:manage" | "registrar:manage">;
+    roles: Array<"presentation:manage" | "presentation:request" | "issuance:manage" | "issuance:offer" | "clients:manage" | "tenants:manage" | "registrar:manage">;
 };
 type CertUsageEntity = {
     tenantId: string;
@@ -238,6 +238,7 @@ type KeyEntity = {
     tenant: TenantEntity;
     /**
      * The key material.
+     * Encrypted at rest using AES-256-GCM.
      */
     key: {
         [key: string]: unknown;
@@ -576,6 +577,10 @@ type OfferRequestDto = {
      * Transaction code for pre-authorized code flow.
      */
     tx_code?: string;
+    /**
+     * Description for the transaction code (e.g., "Please enter the PIN sent to your email").
+     */
+    tx_code_description?: string;
     /**
      * List of credential configuration ids to be included in the offer.
      */
@@ -633,10 +638,12 @@ type Session = {
     request_uri?: string;
     /**
      * Authorization queries associated with the session.
+     * Encrypted at rest.
      */
     auth_queries?: AuthorizeQueries;
     /**
      * Credential offer object containing details about the credential offer or presentation request.
+     * Encrypted at rest.
      */
     offer?: {
         [key: string]: unknown;
@@ -647,6 +654,7 @@ type Session = {
     offerUrl?: string;
     /**
      * Credential payload containing the offer request details.
+     * Encrypted at rest - may contain sensitive claim data.
      */
     credentialPayload?: OfferRequestDto;
     /**
@@ -670,6 +678,7 @@ type Session = {
     requestObject?: string;
     /**
      * Verified credentials from the presentation process.
+     * Encrypted at rest - contains personal information.
      */
     credentials?: Array<{
         [key: string]: unknown;
@@ -699,6 +708,12 @@ type Session = {
      * Can be overridden per-request from the presentation configuration.
      */
     transaction_data?: Array<TransactionData>;
+    externalIssuer?: string;
+    /**
+     * The subject (sub) from the external authorization server token.
+     * Used to identify the user at the external AS.
+     */
+    externalSubject?: string;
 };
 type StatusUpdateDto = {
     /**
@@ -754,6 +769,52 @@ type AuthenticationMethodPresentation = {
     method: "presentationDuringIssuance";
     config: PresentationDuringIssuanceConfig;
 };
+type UpstreamOidcConfig = {
+    /**
+     * The OIDC issuer URL of the upstream provider
+     */
+    issuer: string;
+    /**
+     * The client ID registered with the upstream provider
+     */
+    clientId: string;
+    /**
+     * The client secret for confidential clients
+     */
+    clientSecret?: string;
+    /**
+     * Scopes to request from the upstream provider
+     */
+    scopes?: Array<string>;
+};
+type ChainedAsTokenConfig = {
+    /**
+     * Access token lifetime in seconds
+     */
+    lifetimeSeconds?: number;
+    /**
+     * Key ID for token signing
+     */
+    signingKeyId?: string;
+};
+type ChainedAsConfig = {
+    /**
+     * Enable chained AS mode
+     */
+    enabled: boolean;
+    /**
+     * Upstream OIDC provider configuration
+     */
+    upstream?: UpstreamOidcConfig;
+    /**
+     * Token configuration
+     */
+    token?: ChainedAsTokenConfig;
+    /**
+     * Require DPoP binding for tokens
+     */
+    requireDPoP?: boolean;
+};
 type DisplayLogo = {
     uri: string;
     alt_text?: string;
@@ -764,6 +825,12 @@ type DisplayInfo = {
     logo?: DisplayLogo;
 };
 type IssuanceConfig = {
+    /**
+     * Configuration for Chained Authorization Server mode.
+     * When enabled, EUDIPLO acts as an OAuth AS facade, delegating user authentication
+     * to an upstream OIDC provider while issuing its own tokens with issuer_state.
+     */
+    chainedAs?: ChainedAsConfig;
     /**
      * The tenant that owns this object.
      */
@@ -804,6 +871,12 @@ type IssuanceConfig = {
     updatedAt: string;
 };
 type IssuanceDto = {
+    /**
+     * Configuration for Chained Authorization Server mode.
+     * When enabled, EUDIPLO acts as an OAuth AS facade, delegating user authentication
+     * to an upstream OIDC provider while issuing its own tokens with issuer_state.
+     */
+    chainedAs?: ChainedAsConfig;
     /**
      * Authentication server URL for the issuance process.
      */
@@ -1115,6 +1188,173 @@ type CredentialConfigUpdate = {
     lifeTime?: number;
     schema?: SchemaResponse;
 };
+type Dcql = {
+    credentials: Array<CredentialQuery>;
+    credential_sets?: Array<CredentialSetQuery>;
+};
+type RegistrationCertificateRequest = {
+    /**
+     * The body of the registration certificate request containing the necessary details.
+     */
+    jwt: string;
+};
+type PresentationAttachment = {
+    format: string;
+    data: {
+        [key: string]: unknown;
+    };
+    credential_ids?: Array<string>;
+};
+type PresentationConfig = {
+    /**
+     * Unique identifier for the VP request.
+     */
+    id: string;
+    /**
+     * The tenant that owns this object.
+     */
+    tenant: TenantEntity;
+    /**
+     * Description of the presentation configuration.
+     */
+    description?: string;
+    /**
+     * Lifetime how long the presentation request is valid after creation, in seconds.
+     */
+    lifeTime?: number;
+    /**
+     * The DCQL query to be used for the VP request.
+     */
+    dcql_query: Dcql;
+    transaction_data?: Array<TransactionData>;
+    /**
+     * The registration certificate request containing the necessary details.
+     */
+    registrationCert?: RegistrationCertificateRequest;
+    /**
+     * Optional webhook URL to receive the response.
+     */
+    webhook?: WebhookConfig;
+    /**
+     * The timestamp when the VP request was created.
+     */
+    createdAt: string;
+    /**
+     * The timestamp when the VP request was last updated.
+     */
+    updatedAt: string;
+    /**
+     * Attestation that should be attached
+     */
+    attached?: Array<PresentationAttachment>;
+    /**
+     * Redirect URI to which the user-agent should be redirected after the presentation is completed.
+     * You can use the `{sessionId}` placeholder in the URI, which will be replaced with the actual session ID.
+     */
+    redirectUri?: string;
+    /**
+     * Optional ID of the access certificate to use for signing the presentation request.
+     * If not provided, the default access certificate for the tenant will be used.
+     *
+     * Note: This is intentionally NOT a TypeORM relationship because CertEntity uses
+     * a composite primary key (id + tenantId), and SQLite cannot create foreign keys
+     * that reference only part of a composite primary key. The relationship is handled
+     * at the application level in the service layer.
+     */
+    accessCertId?: string;
+};
+type PresentationConfigCreateDto = {
+    /**
+     * Unique identifier for the VP request.
+     */
+    id: string;
+    /**
+     * Description of the presentation configuration.
+     */
+    description?: string;
+    /**
+     * Lifetime how long the presentation request is valid after creation, in seconds.
+     */
+    lifeTime?: number;
+    /**
+     * The DCQL query to be used for the VP request.
+     */
+    dcql_query: Dcql;
+    transaction_data?: Array<TransactionData>;
+    /**
+     * The registration certificate request containing the necessary details.
+     */
+    registrationCert?: RegistrationCertificateRequest;
+    /**
+     * Optional webhook URL to receive the response.
+     */
+    webhook?: WebhookConfig;
+    /**
+     * Attestation that should be attached
+     */
+    attached?: Array<PresentationAttachment>;
+    /**
+     * Redirect URI to which the user-agent should be redirected after the presentation is completed.
+     * You can use the `{sessionId}` placeholder in the URI, which will be replaced with the actual session ID.
+     */
+    redirectUri?: string;
+    /**
+     * Optional ID of the access certificate to use for signing the presentation request.
+     * If not provided, the default access certificate for the tenant will be used.
+     *
+     * Note: This is intentionally NOT a TypeORM relationship because CertEntity uses
+     * a composite primary key (id + tenantId), and SQLite cannot create foreign keys
+     * that reference only part of a composite primary key. The relationship is handled
+     * at the application level in the service layer.
+     */
+    accessCertId?: string;
+};
+type PresentationConfigUpdateDto = {
+    /**
+     * Unique identifier for the VP request.
+     */
+    id?: string;
+    /**
+     * Description of the presentation configuration.
+     */
+    description?: string;
+    /**
+     * Lifetime how long the presentation request is valid after creation, in seconds.
+     */
+    lifeTime?: number;
+    /**
+     * The DCQL query to be used for the VP request.
+     */
+    dcql_query?: Dcql;
+    transaction_data?: Array<TransactionData>;
+    /**
+     * The registration certificate request containing the necessary details.
+     */
+    registrationCert?: RegistrationCertificateRequest;
+    /**
+     * Optional webhook URL to receive the response.
+     */
+    webhook?: WebhookConfig;
+    /**
+     * Attestation that should be attached
+     */
+    attached?: Array<PresentationAttachment>;
+    /**
+     * Redirect URI to which the user-agent should be redirected after the presentation is completed.
+     * You can use the `{sessionId}` placeholder in the URI, which will be replaced with the actual session ID.
+     */
+    redirectUri?: string;
+    /**
+     * Optional ID of the access certificate to use for signing the presentation request.
+     * If not provided, the default access certificate for the tenant will be used.
+     *
+     * Note: This is intentionally NOT a TypeORM relationship because CertEntity uses
+     * a composite primary key (id + tenantId), and SQLite cannot create foreign keys
+     * that reference only part of a composite primary key. The relationship is handled
+     * at the application level in the service layer.
+     */
+    accessCertId?: string;
+};
 type DeferredCredentialRequestDto = {
     /**
      * The transaction identifier previously returned by the Credential Endpoint
@@ -1221,315 +1461,262 @@ type InteractiveAuthorizationErrorResponseDto = {
      */
     error_description?: string;
 };
-type OfferResponse = {
-    uri: string;
+type ChainedAsParRequestDto = {
     /**
-     * URI for cross-device flows (no redirect after completion)
+     * OAuth response type (must be 'code')
      */
-    crossDeviceUri?: string;
-    session: string;
-};
-type CompleteDeferredDto = {
-    [key: string]: unknown;
-};
-type DeferredOperationResponse = {
-    [key: string]: unknown;
-};
-type FailDeferredDto = {
-    [key: string]: unknown;
-};
-type EcPublic = {
+    response_type: string;
     /**
-     * The key type, which is always 'EC' for Elliptic Curve keys.
+     * Client identifier (wallet identifier)
      */
-    kty: string;
+    client_id: string;
     /**
-     * The algorithm intended for use with the key, such as 'ES256'.
+     * URI to redirect the wallet after authorization
      */
-    crv: string;
+    redirect_uri: string;
     /**
-     * The x coordinate of the EC public key.
+     * PKCE code challenge
      */
-    x: string;
+    code_challenge?: string;
     /**
-     * The y coordinate of the EC public key.
+     * PKCE code challenge method (e.g., S256)
      */
-    y: string;
-};
-type JwksResponseDto = {
+    code_challenge_method?: string;
     /**
-     * An array of EC public keys in JWK format.
+     * State parameter (returned in redirect)
      */
-    keys: Array<EcPublic>;
-};
-type AuthorizationResponse = {
+    state?: string;
     /**
-     * The response string containing the authorization details.
+     * Scope requested
      */
-    response: string;
+    scope?: string;
     /**
-     * When set to true, the authorization response will be sent to the client.
+     * Issuer state from credential offer
      */
-    sendResponse?: boolean;
-};
-type RegistrarConfigEntity = {
+    issuer_state?: string;
     /**
-     * The base URL of the registrar API
+     * Authorization details (JSON array)
      */
-    registrarUrl: string;
+    authorization_details?: Array<{
+        [key: string]: unknown;
+    }>;
+};
+type ChainedAsParResponseDto = {
     /**
-     * The OIDC issuer URL for authentication (e.g., Keycloak realm URL)
+     * The request URI to use at the authorization endpoint
      */
-    oidcUrl: string;
+    request_uri: string;
     /**
-     * The OIDC client ID for the registrar
+     * The lifetime of the request URI in seconds
      */
-    clientId: string;
+    expires_in: number;
+};
+type ChainedAsErrorResponseDto = {
     /**
-     * The OIDC client secret (optional, for confidential clients)
-     */
-    clientSecret?: string;
-    /**
-     * The username for OIDC login
-     */
-    username: string;
-    /**
-     * The password for OIDC login (stored in plaintext)
-     */
-    password: string;
-    /**
-     * The tenant ID this configuration belongs to.
+     * Error code
      */
-    tenantId: string;
+    error: string;
     /**
-     * The tenant that owns this configuration.
+     * Human-readable error description
      */
-    tenant: TenantEntity;
+    error_description?: string;
 };
-type CreateRegistrarConfigDto = {
+type ChainedAsTokenRequestDto = {
     /**
-     * The base URL of the registrar API
+     * Grant type (must be 'authorization_code')
      */
-    registrarUrl: string;
+    grant_type: string;
     /**
-     * The OIDC issuer URL for authentication (e.g., Keycloak realm URL)
+     * Authorization code received in the callback
      */
-    oidcUrl: string;
+    code: string;
     /**
-     * The OIDC client ID for the registrar
+     * Client identifier
      */
-    clientId: string;
+    client_id?: string;
     /**
-     * The OIDC client secret (optional, for confidential clients)
+     * Redirect URI (must match the one used in PAR)
      */
-    clientSecret?: string;
+    redirect_uri?: string;
     /**
-     * The username for OIDC login
+     * PKCE code verifier
      */
-    username: string;
+    code_verifier?: string;
+};
+type ChainedAsTokenResponseDto = {
     /**
-     * The password for OIDC login (stored in plaintext)
+     * The access token
      */
-    password: string;
-};
-type UpdateRegistrarConfigDto = {
+    access_token: string;
     /**
-     * The base URL of the registrar API
+     * Token type (Bearer or DPoP)
      */
-    registrarUrl?: string;
+    token_type: string;
     /**
-     * The OIDC issuer URL for authentication (e.g., Keycloak realm URL)
+     * Token lifetime in seconds
      */
-    oidcUrl?: string;
+    expires_in: number;
     /**
-     * The OIDC client ID for the registrar
+     * Scope granted
      */
-    clientId?: string;
+    scope?: string;
     /**
-     * The OIDC client secret (optional, for confidential clients)
+     * Authorized credential configurations
      */
-    clientSecret?: string;
+    authorization_details?: Array<{
+        [key: string]: unknown;
+    }>;
     /**
-     * The username for OIDC login
+     * C_NONCE for credential request
      */
-    username?: string;
+    c_nonce?: string;
     /**
-     * The password for OIDC login (stored in plaintext)
+     * C_NONCE lifetime in seconds
      */
-    password?: string;
+    c_nonce_expires_in?: number;
 };
-type CreateAccessCertificateDto = {
+type OfferResponse = {
+    uri: string;
     /**
-     * The ID of the key to create an access certificate for
+     * URI for cross-device flows (no redirect after completion)
      */
-    keyId: string;
+    crossDeviceUri?: string;
+    session: string;
 };
-type Dcql = {
-    credentials: Array<CredentialQuery>;
-    credential_sets?: Array<CredentialSetQuery>;
+type CompleteDeferredDto = {
+    [key: string]: unknown;
 };
-type RegistrationCertificateRequest = {
-    /**
-     * The body of the registration certificate request containing the necessary details.
-     */
-    jwt: string;
+type DeferredOperationResponse = {
+    [key: string]: unknown;
 };
-type PresentationAttachment = {
-    format: string;
-    data: {
-        [key: string]: unknown;
-    };
-    credential_ids?: Array<string>;
+type FailDeferredDto = {
+    [key: string]: unknown;
 };
-type PresentationConfig = {
+type EcPublic = {
     /**
-     * Unique identifier for the VP request.
+     * The key type, which is always 'EC' for Elliptic Curve keys.
      */
-    id: string;
+    kty: string;
     /**
-     * The tenant that owns this object.
+     * The algorithm intended for use with the key, such as 'ES256'.
      */
-    tenant: TenantEntity;
+    crv: string;
     /**
-     * Description of the presentation configuration.
+     * The x coordinate of the EC public key.
      */
-    description?: string;
+    x: string;
     /**
-     * Lifetime how long the presentation request is valid after creation, in seconds.
+     * The y coordinate of the EC public key.
      */
-    lifeTime?: number;
+    y: string;
+};
+type JwksResponseDto = {
     /**
-     * The DCQL query to be used for the VP request.
+     * An array of EC public keys in JWK format.
      */
-    dcql_query: Dcql;
-    transaction_data?: Array<TransactionData>;
+    keys: Array<EcPublic>;
+};
+type AuthorizationResponse = {
     /**
-     * The registration certificate request containing the necessary details.
+     * The response string containing the authorization details.
      */
-    registrationCert?: RegistrationCertificateRequest;
+    response: string;
     /**
-     * Optional webhook URL to receive the response.
+     * When set to true, the authorization response will be sent to the client.
      */
-    webhook?: WebhookConfig;
+    sendResponse?: boolean;
+};
+type RegistrarConfigEntity = {
     /**
-     * The timestamp when the VP request was created.
+     * The base URL of the registrar API
      */
-    createdAt: string;
+    registrarUrl: string;
     /**
-     * The timestamp when the VP request was last updated.
+     * The OIDC issuer URL for authentication (e.g., Keycloak realm URL)
      */
-    updatedAt: string;
+    oidcUrl: string;
     /**
-     * Attestation that should be attached
+     * The OIDC client ID for the registrar
      */
-    attached?: Array<PresentationAttachment>;
+    clientId: string;
     /**
-     * Redirect URI to which the user-agent should be redirected after the presentation is completed.
-     * You can use the `{sessionId}` placeholder in the URI, which will be replaced with the actual session ID.
+     * The OIDC client secret (optional, for confidential clients)
      */
-    redirectUri?: string;
+    clientSecret?: string;
     /**
-     * Optional ID of the access certificate to use for signing the presentation request.
-     * If not provided, the default access certificate for the tenant will be used.
-     *
-     * Note: This is intentionally NOT a TypeORM relationship because CertEntity uses
-     * a composite primary key (id + tenantId), and SQLite cannot create foreign keys
-     * that reference only part of a composite primary key. The relationship is handled
-     * at the application level in the service layer.
+     * The username for OIDC login
      */
-    accessCertId?: string;
-};
-type PresentationConfigCreateDto = {
+    username: string;
     /**
-     * Unique identifier for the VP request.
+     * The password for OIDC login (stored in plaintext)
      */
-    id: string;
+    password: string;
     /**
-     * Description of the presentation configuration.
+     * The tenant ID this configuration belongs to.
      */
-    description?: string;
+    tenantId: string;
     /**
-     * Lifetime how long the presentation request is valid after creation, in seconds.
+     * The tenant that owns this configuration.
      */
-    lifeTime?: number;
+    tenant: TenantEntity;
+};
+type CreateRegistrarConfigDto = {
     /**
-     * The DCQL query to be used for the VP request.
+     * The base URL of the registrar API
      */
-    dcql_query: Dcql;
-    transaction_data?: Array<TransactionData>;
+    registrarUrl: string;
     /**
-     * The registration certificate request containing the necessary details.
+     * The OIDC issuer URL for authentication (e.g., Keycloak realm URL)
      */
-    registrationCert?: RegistrationCertificateRequest;
+    oidcUrl: string;
     /**
-     * Optional webhook URL to receive the response.
+     * The OIDC client ID for the registrar
      */
-    webhook?: WebhookConfig;
+    clientId: string;
     /**
-     * Attestation that should be attached
+     * The OIDC client secret (optional, for confidential clients)
      */
-    attached?: Array<PresentationAttachment>;
+    clientSecret?: string;
     /**
-     * Redirect URI to which the user-agent should be redirected after the presentation is completed.
-     * You can use the `{sessionId}` placeholder in the URI, which will be replaced with the actual session ID.
+     * The username for OIDC login
      */
-    redirectUri?: string;
+    username: string;
     /**
-     * Optional ID of the access certificate to use for signing the presentation request.
-     * If not provided, the default access certificate for the tenant will be used.
-     *
-     * Note: This is intentionally NOT a TypeORM relationship because CertEntity uses
-     * a composite primary key (id + tenantId), and SQLite cannot create foreign keys
-     * that reference only part of a composite primary key. The relationship is handled
-     * at the application level in the service layer.
+     * The password for OIDC login (stored in plaintext)
      */
-    accessCertId?: string;
+    password: string;
 };
-type PresentationConfigUpdateDto = {
-    /**
-     * Unique identifier for the VP request.
-     */
-    id?: string;
-    /**
-     * Description of the presentation configuration.
-     */
-    description?: string;
+type UpdateRegistrarConfigDto = {
     /**
-     * Lifetime how long the presentation request is valid after creation, in seconds.
+     * The base URL of the registrar API
      */
-    lifeTime?: number;
+    registrarUrl?: string;
     /**
-     * The DCQL query to be used for the VP request.
+     * The OIDC issuer URL for authentication (e.g., Keycloak realm URL)
      */
-    dcql_query?: Dcql;
-    transaction_data?: Array<TransactionData>;
+    oidcUrl?: string;
     /**
-     * The registration certificate request containing the necessary details.
+     * The OIDC client ID for the registrar
      */
-    registrationCert?: RegistrationCertificateRequest;
+    clientId?: string;
     /**
-     * Optional webhook URL to receive the response.
+     * The OIDC client secret (optional, for confidential clients)
      */
-    webhook?: WebhookConfig;
+    clientSecret?: string;
     /**
-     * Attestation that should be attached
+     * The username for OIDC login
      */
-    attached?: Array<PresentationAttachment>;
+    username?: string;
     /**
-     * Redirect URI to which the user-agent should be redirected after the presentation is completed.
-     * You can use the `{sessionId}` placeholder in the URI, which will be replaced with the actual session ID.
+     * The password for OIDC login (stored in plaintext)
      */
-    redirectUri?: string;
+    password?: string;
+};
+type CreateAccessCertificateDto = {
     /**
-     * Optional ID of the access certificate to use for signing the presentation request.
-     * If not provided, the default access certificate for the tenant will be used.
-     *
-     * Note: This is intentionally NOT a TypeORM relationship because CertEntity uses
-     * a composite primary key (id + tenantId), and SQLite cannot create foreign keys
-     * that reference only part of a composite primary key. The relationship is handled
-     * at the application level in the service layer.
+     * The ID of the key to create an access certificate for
      */
-    accessCertId?: string;
+    keyId: string;
 };
 type TrustListCreateDto = {
     id?: string;
@@ -1709,15 +1896,6 @@ type HealthControllerCheckResponses = {
     };
 };
 type HealthControllerCheckResponse = HealthControllerCheckResponses[keyof HealthControllerCheckResponses];
-type PrometheusControllerIndexData = {
-    body?: never;
-    path?: never;
-    query?: never;
-    url: "/metrics";
-};
-type PrometheusControllerIndexResponses = {
-    200: unknown;
-};
 type AuthControllerGetOAuth2TokenData = {
     body: ClientCredentialsDto;
     path?: never;
@@ -2251,12 +2429,31 @@ type SessionConfigControllerUpdateConfigResponses = {
     200: SessionStorageConfig;
 };
 type SessionConfigControllerUpdateConfigResponse = SessionConfigControllerUpdateConfigResponses[keyof SessionConfigControllerUpdateConfigResponses];
-type IssuanceConfigControllerGetIssuanceConfigurationsData = {
+type SessionEventsControllerSubscribeToSessionEventsData = {
     body?: never;
-    path?: never;
-    query?: never;
-    url: "/issuer/config";
-};
+    path: {
+        /**
+         * Session ID to subscribe to
+         */
+        id: string;
+    };
+    query: {
+        /**
+         * JWT access token for authentication
+         */
+        token: string;
+    };
+    url: "/session/{id}/events";
+};
+type SessionEventsControllerSubscribeToSessionEventsResponses = {
+    200: unknown;
+};
+type IssuanceConfigControllerGetIssuanceConfigurationsData = {
+    body?: never;
+    path?: never;
+    query?: never;
+    url: "/issuer/config";
+};
 type IssuanceConfigControllerGetIssuanceConfigurationsResponses = {
     200: IssuanceConfig;
 };
@@ -2332,6 +2529,116 @@ type CredentialConfigControllerUpdateCredentialConfigurationResponses = {
     };
 };
 type CredentialConfigControllerUpdateCredentialConfigurationResponse = CredentialConfigControllerUpdateCredentialConfigurationResponses[keyof CredentialConfigControllerUpdateCredentialConfigurationResponses];
+type PresentationManagementControllerConfigurationData = {
+    body?: never;
+    path?: never;
+    query?: never;
+    url: "/verifier/config";
+};
+type PresentationManagementControllerConfigurationResponses = {
+    200: Array<PresentationConfig>;
+};
+type PresentationManagementControllerConfigurationResponse = PresentationManagementControllerConfigurationResponses[keyof PresentationManagementControllerConfigurationResponses];
+type PresentationManagementControllerStorePresentationConfigData = {
+    body: PresentationConfigCreateDto;
+    path?: never;
+    query?: never;
+    url: "/verifier/config";
+};
+type PresentationManagementControllerStorePresentationConfigResponses = {
+    201: {
+        [key: string]: unknown;
+    };
+};
+type PresentationManagementControllerStorePresentationConfigResponse = PresentationManagementControllerStorePresentationConfigResponses[keyof PresentationManagementControllerStorePresentationConfigResponses];
+type PresentationManagementControllerDeleteConfigurationData = {
+    body?: never;
+    path: {
+        id: string;
+    };
+    query?: never;
+    url: "/verifier/config/{id}";
+};
+type PresentationManagementControllerDeleteConfigurationResponses = {
+    200: unknown;
+};
+type PresentationManagementControllerGetConfigurationData = {
+    body?: never;
+    path: {
+        id: string;
+    };
+    query?: never;
+    url: "/verifier/config/{id}";
+};
+type PresentationManagementControllerGetConfigurationResponses = {
+    200: PresentationConfig;
+};
+type PresentationManagementControllerGetConfigurationResponse = PresentationManagementControllerGetConfigurationResponses[keyof PresentationManagementControllerGetConfigurationResponses];
+type PresentationManagementControllerUpdateConfigurationData = {
+    body: PresentationConfigUpdateDto;
+    path: {
+        id: string;
+    };
+    query?: never;
+    url: "/verifier/config/{id}";
+};
+type PresentationManagementControllerUpdateConfigurationResponses = {
+    200: {
+        [key: string]: unknown;
+    };
+};
+type PresentationManagementControllerUpdateConfigurationResponse = PresentationManagementControllerUpdateConfigurationResponses[keyof PresentationManagementControllerUpdateConfigurationResponses];
+type CacheControllerGetStatsData = {
+    body?: never;
+    path?: never;
+    query?: never;
+    url: "/cache/stats";
+};
+type CacheControllerGetStatsResponses = {
+    /**
+     * Cache statistics
+     */
+    200: unknown;
+};
+type CacheControllerClearAllCachesData = {
+    body?: never;
+    path?: never;
+    query?: never;
+    url: "/cache";
+};
+type CacheControllerClearAllCachesResponses = {
+    /**
+     * All caches cleared successfully
+     */
+    204: void;
+};
+type CacheControllerClearAllCachesResponse = CacheControllerClearAllCachesResponses[keyof CacheControllerClearAllCachesResponses];
+type CacheControllerClearTrustListCacheData = {
+    body?: never;
+    path?: never;
+    query?: never;
+    url: "/cache/trust-list";
+};
+type CacheControllerClearTrustListCacheResponses = {
+    /**
+     * Trust list cache cleared successfully
+     */
+    204: void;
+};
+type CacheControllerClearTrustListCacheResponse = CacheControllerClearTrustListCacheResponses[keyof CacheControllerClearTrustListCacheResponses];
+type CacheControllerClearStatusListCacheData = {
+    body?: never;
+    path?: never;
+    query?: never;
+    url: "/cache/status-list";
+};
+type CacheControllerClearStatusListCacheResponses = {
+    /**
+     * Status list cache cleared successfully
+     */
+    204: void;
+};
+type CacheControllerClearStatusListCacheResponse = CacheControllerClearStatusListCacheResponses[keyof CacheControllerClearStatusListCacheResponses];
 type Oid4VciControllerCredentialData = {
     body?: never;
     path: {
@@ -2430,17 +2737,6 @@ type AuthorizeControllerTokenResponses = {
     };
 };
 type AuthorizeControllerTokenResponse = AuthorizeControllerTokenResponses[keyof AuthorizeControllerTokenResponses];
-type AuthorizeControllerAuthorizationChallengeEndpointData = {
-    body: AuthorizeQueries;
-    path: {
-        tenantId: string;
-    };
-    query?: never;
-    url: "/{tenantId}/authorize/challenge";
-};
-type AuthorizeControllerAuthorizationChallengeEndpointResponses = {
-    201: unknown;
-};
 type InteractiveAuthorizationControllerInteractiveAuthorizationData = {
     /**
      * Interactive authorization request
@@ -2490,6 +2786,162 @@ type InteractiveAuthorizationControllerCompleteWebAuthResponses = {
      */
     200: unknown;
 };
+type ChainedAsControllerParData = {
+    body: ChainedAsParRequestDto;
+    headers?: {
+        /**
+         * DPoP proof JWT
+         */
+        DPoP?: string;
+    };
+    path: {
+        /**
+         * Tenant identifier
+         */
+        tenant: string;
+    };
+    query?: never;
+    url: "/{tenant}/chained-as/par";
+};
+type ChainedAsControllerParErrors = {
+    /**
+     * Invalid request
+     */
+    400: ChainedAsErrorResponseDto;
+};
+type ChainedAsControllerParError = ChainedAsControllerParErrors[keyof ChainedAsControllerParErrors];
+type ChainedAsControllerParResponses = {
+    /**
+     * PAR request accepted
+     */
+    201: ChainedAsParResponseDto;
+};
+type ChainedAsControllerParResponse = ChainedAsControllerParResponses[keyof ChainedAsControllerParResponses];
+type ChainedAsControllerAuthorizeData = {
+    body?: never;
+    path: {
+        /**
+         * Tenant identifier
+         */
+        tenant: string;
+    };
+    query: {
+        /**
+         * Client identifier
+         */
+        client_id: string;
+        /**
+         * Request URI from PAR response
+         */
+        request_uri: string;
+    };
+    url: "/{tenant}/chained-as/authorize";
+};
+type ChainedAsControllerAuthorizeErrors = {
+    /**
+     * Invalid request
+     */
+    400: ChainedAsErrorResponseDto;
+};
+type ChainedAsControllerAuthorizeError = ChainedAsControllerAuthorizeErrors[keyof ChainedAsControllerAuthorizeErrors];
+type ChainedAsControllerAuthorizeResponses = {
+    200: unknown;
+};
+type ChainedAsControllerCallbackData = {
+    body?: never;
+    path: {
+        /**
+         * Tenant identifier
+         */
+        tenant: string;
+    };
+    query: {
+        code: string;
+        state: string;
+        error: string;
+        error_description: string;
+    };
+    url: "/{tenant}/chained-as/callback";
+};
+type ChainedAsControllerCallbackErrors = {
+    /**
+     * Invalid callback
+     */
+    400: ChainedAsErrorResponseDto;
+};
+type ChainedAsControllerCallbackError = ChainedAsControllerCallbackErrors[keyof ChainedAsControllerCallbackErrors];
+type ChainedAsControllerCallbackResponses = {
+    200: unknown;
+};
+type ChainedAsControllerTokenData = {
+    body: ChainedAsTokenRequestDto;
+    headers?: {
+        /**
+         * DPoP proof JWT
+         */
+        DPoP?: string;
+    };
+    path: {
+        /**
+         * Tenant identifier
+         */
+        tenant: string;
+    };
+    query?: never;
+    url: "/{tenant}/chained-as/token";
+};
+type ChainedAsControllerTokenErrors = {
+    /**
+     * Invalid request
+     */
+    400: ChainedAsErrorResponseDto;
+    /**
+     * Invalid authorization code
+     */
+    401: ChainedAsErrorResponseDto;
+};
+type ChainedAsControllerTokenError = ChainedAsControllerTokenErrors[keyof ChainedAsControllerTokenErrors];
+type ChainedAsControllerTokenResponses = {
+    /**
+     * Token issued successfully
+     */
+    200: ChainedAsTokenResponseDto;
+};
+type ChainedAsControllerTokenResponse = ChainedAsControllerTokenResponses[keyof ChainedAsControllerTokenResponses];
+type ChainedAsControllerJwksData = {
+    body?: never;
+    path: {
+        /**
+         * Tenant identifier
+         */
+        tenant: string;
+    };
+    query?: never;
+    url: "/{tenant}/chained-as/.well-known/jwks.json";
+};
+type ChainedAsControllerJwksResponses = {
+    /**
+     * JWKS document
+     */
+    200: unknown;
+};
+type ChainedAsControllerGetMetadataData = {
+    body?: never;
+    path: {
+        /**
+         * Tenant identifier
+         */
+        tenant: string;
+    };
+    query?: never;
+    url: "/{tenant}/chained-as/.well-known/oauth-authorization-server";
+};
+type ChainedAsControllerGetMetadataResponses = {
+    /**
+     * OAuth AS metadata
+     */
+    200: unknown;
+};
 type CredentialOfferControllerGetOfferData = {
     body: OfferRequestDto;
     path?: never;
@@ -2788,116 +3240,6 @@ type RegistrarControllerCreateAccessCertificateResponses = {
     };
 };
 type RegistrarControllerCreateAccessCertificateResponse = RegistrarControllerCreateAccessCertificateResponses[keyof RegistrarControllerCreateAccessCertificateResponses];
-type PresentationManagementControllerConfigurationData = {
-    body?: never;
-    path?: never;
-    query?: never;
-    url: "/verifier/config";
-};
-type PresentationManagementControllerConfigurationResponses = {
-    200: Array<PresentationConfig>;
-};
-type PresentationManagementControllerConfigurationResponse = PresentationManagementControllerConfigurationResponses[keyof PresentationManagementControllerConfigurationResponses];
-type PresentationManagementControllerStorePresentationConfigData = {
-    body: PresentationConfigCreateDto;
-    path?: never;
-    query?: never;
-    url: "/verifier/config";
-};
-type PresentationManagementControllerStorePresentationConfigResponses = {
-    201: {
-        [key: string]: unknown;
-    };
-};
-type PresentationManagementControllerStorePresentationConfigResponse = PresentationManagementControllerStorePresentationConfigResponses[keyof PresentationManagementControllerStorePresentationConfigResponses];
-type PresentationManagementControllerDeleteConfigurationData = {
-    body?: never;
-    path: {
-        id: string;
-    };
-    query?: never;
-    url: "/verifier/config/{id}";
-};
-type PresentationManagementControllerDeleteConfigurationResponses = {
-    200: unknown;
-};
-type PresentationManagementControllerGetConfigurationData = {
-    body?: never;
-    path: {
-        id: string;
-    };
-    query?: never;
-    url: "/verifier/config/{id}";
-};
-type PresentationManagementControllerGetConfigurationResponses = {
-    200: PresentationConfig;
-};
-type PresentationManagementControllerGetConfigurationResponse = PresentationManagementControllerGetConfigurationResponses[keyof PresentationManagementControllerGetConfigurationResponses];
-type PresentationManagementControllerUpdateConfigurationData = {
-    body: PresentationConfigUpdateDto;
-    path: {
-        id: string;
-    };
-    query?: never;
-    url: "/verifier/config/{id}";
-};
-type PresentationManagementControllerUpdateConfigurationResponses = {
-    200: {
-        [key: string]: unknown;
-    };
-};
-type PresentationManagementControllerUpdateConfigurationResponse = PresentationManagementControllerUpdateConfigurationResponses[keyof PresentationManagementControllerUpdateConfigurationResponses];
-type CacheControllerGetStatsData = {
-    body?: never;
-    path?: never;
-    query?: never;
-    url: "/cache/stats";
-};
-type CacheControllerGetStatsResponses = {
-    /**
-     * Cache statistics
-     */
-    200: unknown;
-};
-type CacheControllerClearAllCachesData = {
-    body?: never;
-    path?: never;
-    query?: never;
-    url: "/cache";
-};
-type CacheControllerClearAllCachesResponses = {
-    /**
-     * All caches cleared successfully
-     */
-    204: void;
-};
-type CacheControllerClearAllCachesResponse = CacheControllerClearAllCachesResponses[keyof CacheControllerClearAllCachesResponses];
-type CacheControllerClearTrustListCacheData = {
-    body?: never;
-    path?: never;
-    query?: never;
-    url: "/cache/trust-list";
-};
-type CacheControllerClearTrustListCacheResponses = {
-    /**
-     * Trust list cache cleared successfully
-     */
-    204: void;
-};
-type CacheControllerClearTrustListCacheResponse = CacheControllerClearTrustListCacheResponses[keyof CacheControllerClearTrustListCacheResponses];
-type CacheControllerClearStatusListCacheData = {
-    body?: never;
-    path?: never;
-    query?: never;
-    url: "/cache/status-list";
-};
-type CacheControllerClearStatusListCacheResponses = {
-    /**
-     * Status list cache cleared successfully
-     */
-    204: void;
-};
-type CacheControllerClearStatusListCacheResponse = CacheControllerClearStatusListCacheResponses[keyof CacheControllerClearStatusListCacheResponses];
 type TrustListControllerGetAllTrustListsData = {
     body?: never;
     path?: never;
@@ -3043,4 +3385,4 @@ type StorageControllerDownloadResponses = {
     200: unknown;
 };
 
-export type { CertControllerGetCertificatesResponse as $, AllowListPolicy as A, AuthorizeControllerTokenResponses as B, AuthorizeQueries as C, CacheControllerClearAllCachesData as D, CacheControllerClearAllCachesResponse as E, CacheControllerClearAllCachesResponses as F, CacheControllerClearStatusListCacheData as G, CacheControllerClearStatusListCacheResponse as H, CacheControllerClearStatusListCacheResponses as I, CacheControllerClearTrustListCacheData as J, CacheControllerClearTrustListCacheResponse as K, CacheControllerClearTrustListCacheResponses as L, CacheControllerGetStatsData as M, CacheControllerGetStatsResponses as N, CertControllerAddCertificateData as O, CertControllerAddCertificateResponse as P, CertControllerAddCertificateResponses as Q, CertControllerDeleteCertificateData as R, Session as S, CertControllerDeleteCertificateResponses as T, CertControllerExportConfigData as U, CertControllerExportConfigResponse as V, CertControllerExportConfigResponses as W, CertControllerGetCertificateData as X, CertControllerGetCertificateResponse as Y, CertControllerGetCertificateResponses as Z, CertControllerGetCertificatesData as _, ApiKeyConfig as a, DeferredControllerCompleteDeferredData as a$, CertControllerGetCertificatesResponses as a0, CertControllerUpdateCertificateData as a1, CertControllerUpdateCertificateResponses as a2, CertEntity as a3, CertImportDto as a4, CertResponseDto as a5, CertUpdateDto as a6, CertUsageEntity as a7, Claim as a8, ClaimsQuery as a9, CreateClientDto as aA, CreateRegistrarConfigDto as aB, CreateStatusListDto as aC, CreateTenantDto as aD, CredentialConfig as aE, CredentialConfigControllerDeleteIssuanceConfigurationData as aF, CredentialConfigControllerDeleteIssuanceConfigurationResponses as aG, CredentialConfigControllerGetConfigByIdData as aH, CredentialConfigControllerGetConfigByIdResponse as aI, CredentialConfigControllerGetConfigByIdResponses as aJ, CredentialConfigControllerGetConfigsData as aK, CredentialConfigControllerGetConfigsResponse as aL, CredentialConfigControllerGetConfigsResponses as aM, CredentialConfigControllerStoreCredentialConfigurationData as aN, CredentialConfigControllerStoreCredentialConfigurationResponse as aO, CredentialConfigControllerStoreCredentialConfigurationResponses as aP, CredentialConfigControllerUpdateCredentialConfigurationData as aQ, CredentialConfigControllerUpdateCredentialConfigurationResponse as aR, CredentialConfigControllerUpdateCredentialConfigurationResponses as aS, CredentialConfigCreate as aT, CredentialConfigUpdate as aU, CredentialOfferControllerGetOfferData as aV, CredentialOfferControllerGetOfferResponse as aW, CredentialOfferControllerGetOfferResponses as aX, CredentialQuery as aY, CredentialSetQuery as aZ, Dcql as a_, ClientControllerCreateClientData as aa, ClientControllerCreateClientResponse as ab, ClientControllerCreateClientResponses as ac, ClientControllerDeleteClientData as ad, ClientControllerDeleteClientResponses as ae, ClientControllerGetClientData as af, ClientControllerGetClientResponse as ag, ClientControllerGetClientResponses as ah, ClientControllerGetClientSecretData as ai, ClientControllerGetClientSecretResponse as aj, ClientControllerGetClientSecretResponses as ak, ClientControllerGetClientsData as al, ClientControllerGetClientsResponse as am, ClientControllerGetClientsResponses as an, ClientControllerRotateClientSecretData as ao, ClientControllerRotateClientSecretResponse as ap, ClientControllerRotateClientSecretResponses as aq, ClientControllerUpdateClientData as ar, ClientControllerUpdateClientResponse as as, ClientControllerUpdateClientResponses as at, ClientCredentialsDto as au, ClientEntity as av, ClientOptions as aw, ClientSecretResponseDto as ax, CompleteDeferredDto as ay, CreateAccessCertificateDto as az, AppControllerMainData as b, OfferRequestDto as b$, DeferredControllerCompleteDeferredErrors as b0, DeferredControllerCompleteDeferredResponse as b1, DeferredControllerCompleteDeferredResponses as b2, DeferredControllerFailDeferredData as b3, DeferredControllerFailDeferredErrors as b4, DeferredControllerFailDeferredResponse as b5, DeferredControllerFailDeferredResponses as b6, DeferredCredentialRequestDto as b7, DeferredOperationResponse as b8, Display as b9, IssuanceConfig as bA, IssuanceConfigControllerGetIssuanceConfigurationsData as bB, IssuanceConfigControllerGetIssuanceConfigurationsResponse as bC, IssuanceConfigControllerGetIssuanceConfigurationsResponses as bD, IssuanceConfigControllerStoreIssuanceConfigurationData as bE, IssuanceConfigControllerStoreIssuanceConfigurationResponse as bF, IssuanceConfigControllerStoreIssuanceConfigurationResponses as bG, IssuanceDto as bH, IssuerMetadataCredentialConfig as bI, JwksResponseDto as bJ, Key as bK, KeyControllerAddKeyData as bL, KeyControllerAddKeyResponses as bM, KeyControllerDeleteKeyData as bN, KeyControllerDeleteKeyResponses as bO, KeyControllerGetKeyData as bP, KeyControllerGetKeyResponse as bQ, KeyControllerGetKeyResponses as bR, KeyControllerGetKeysData as bS, KeyControllerGetKeysResponse as bT, KeyControllerGetKeysResponses as bU, KeyControllerUpdateKeyData as bV, KeyControllerUpdateKeyResponses as bW, KeyEntity as bX, KeyImportDto as bY, NoneTrustPolicy as bZ, NotificationRequestDto as b_, DisplayImage as ba, DisplayInfo as bb, DisplayLogo as bc, EcPublic as bd, EmbeddedDisclosurePolicy as be, FailDeferredDto as bf, FileUploadDto as bg, HealthControllerCheckData as bh, HealthControllerCheckError as bi, HealthControllerCheckErrors as bj, HealthControllerCheckResponse as bk, HealthControllerCheckResponses as bl, IaeActionOpenid4VpPresentation as bm, IaeActionRedirectToWeb as bn, ImportTenantDto as bo, InteractiveAuthorizationCodeResponseDto as bp, InteractiveAuthorizationControllerCompleteWebAuthData as bq, InteractiveAuthorizationControllerCompleteWebAuthErrors as br, InteractiveAuthorizationControllerCompleteWebAuthResponses as bs, InteractiveAuthorizationControllerInteractiveAuthorizationData as bt, InteractiveAuthorizationControllerInteractiveAuthorizationError as bu, InteractiveAuthorizationControllerInteractiveAuthorizationErrors as bv, InteractiveAuthorizationControllerInteractiveAuthorizationResponse as bw, InteractiveAuthorizationControllerInteractiveAuthorizationResponses as bx, InteractiveAuthorizationErrorResponseDto as by, InteractiveAuthorizationRequestDto as bz, AppControllerMainResponses as c, RegistrarControllerGetConfigResponse as c$, OfferResponse as c0, Oid4VciControllerCredentialData as c1, Oid4VciControllerCredentialResponse as c2, Oid4VciControllerCredentialResponses as c3, Oid4VciControllerDeferredCredentialData as c4, Oid4VciControllerDeferredCredentialResponses as c5, Oid4VciControllerNonceData as c6, Oid4VciControllerNonceResponses as c7, Oid4VciControllerNotificationsData as c8, Oid4VciControllerNotificationsResponses as c9, PresentationManagementControllerDeleteConfigurationResponses as cA, PresentationManagementControllerGetConfigurationData as cB, PresentationManagementControllerGetConfigurationResponse as cC, PresentationManagementControllerGetConfigurationResponses as cD, PresentationManagementControllerStorePresentationConfigData as cE, PresentationManagementControllerStorePresentationConfigResponse as cF, PresentationManagementControllerStorePresentationConfigResponses as cG, PresentationManagementControllerUpdateConfigurationData as cH, PresentationManagementControllerUpdateConfigurationResponse as cI, PresentationManagementControllerUpdateConfigurationResponses as cJ, PresentationRequest as cK, PrometheusControllerIndexData as cL, PrometheusControllerIndexResponses as cM, RegistrarConfigEntity as cN, RegistrarControllerCreateAccessCertificateData as cO, RegistrarControllerCreateAccessCertificateErrors as cP, RegistrarControllerCreateAccessCertificateResponse as cQ, RegistrarControllerCreateAccessCertificateResponses as cR, RegistrarControllerCreateConfigData as cS, RegistrarControllerCreateConfigErrors as cT, RegistrarControllerCreateConfigResponse as cU, RegistrarControllerCreateConfigResponses as cV, RegistrarControllerDeleteConfigData as cW, RegistrarControllerDeleteConfigResponse as cX, RegistrarControllerDeleteConfigResponses as cY, RegistrarControllerGetConfigData as cZ, RegistrarControllerGetConfigErrors as c_, Oid4VciMetadataControllerVctData as ca, Oid4VciMetadataControllerVctResponse as cb, Oid4VciMetadataControllerVctResponses as cc, Oid4VpControllerGetPostRequestWithSessionData as cd, Oid4VpControllerGetPostRequestWithSessionResponse as ce, Oid4VpControllerGetPostRequestWithSessionResponses as cf, Oid4VpControllerGetRequestNoRedirectWithSessionData as cg, Oid4VpControllerGetRequestNoRedirectWithSessionResponse as ch, Oid4VpControllerGetRequestNoRedirectWithSessionResponses as ci, Oid4VpControllerGetRequestWithSessionData as cj, Oid4VpControllerGetRequestWithSessionResponse as ck, Oid4VpControllerGetRequestWithSessionResponses as cl, Oid4VpControllerGetResponseData as cm, Oid4VpControllerGetResponseResponse as cn, Oid4VpControllerGetResponseResponses as co, ParResponseDto as cp, PolicyCredential as cq, PresentationAttachment as cr, PresentationConfig as cs, PresentationConfigCreateDto as ct, PresentationConfigUpdateDto as cu, PresentationDuringIssuanceConfig as cv, PresentationManagementControllerConfigurationData as cw, PresentationManagementControllerConfigurationResponse as cx, PresentationManagementControllerConfigurationResponses as cy, PresentationManagementControllerDeleteConfigurationData as cz, AttestationBasedPolicy as d, StatusUpdateDto as d$, RegistrarControllerGetConfigResponses as d0, RegistrarControllerUpdateConfigData as d1, RegistrarControllerUpdateConfigErrors as d2, RegistrarControllerUpdateConfigResponse as d3, RegistrarControllerUpdateConfigResponses as d4, RegistrationCertificateRequest as d5, RoleDto as d6, RootOfTrustPolicy as d7, SchemaResponse as d8, SessionConfigControllerGetConfigData as d9, StatusListConfigControllerResetConfigResponses as dA, StatusListConfigControllerUpdateConfigData as dB, StatusListConfigControllerUpdateConfigResponse as dC, StatusListConfigControllerUpdateConfigResponses as dD, StatusListControllerGetListData as dE, StatusListControllerGetListResponse as dF, StatusListControllerGetListResponses as dG, StatusListControllerGetStatusListAggregationData as dH, StatusListControllerGetStatusListAggregationResponse as dI, StatusListControllerGetStatusListAggregationResponses as dJ, StatusListImportDto as dK, StatusListManagementControllerCreateListData as dL, StatusListManagementControllerCreateListResponse as dM, StatusListManagementControllerCreateListResponses as dN, StatusListManagementControllerDeleteListData as dO, StatusListManagementControllerDeleteListResponse as dP, StatusListManagementControllerDeleteListResponses as dQ, StatusListManagementControllerGetListData as dR, StatusListManagementControllerGetListResponse as dS, StatusListManagementControllerGetListResponses as dT, StatusListManagementControllerGetListsData as dU, StatusListManagementControllerGetListsResponse as dV, StatusListManagementControllerGetListsResponses as dW, StatusListManagementControllerUpdateListData as dX, StatusListManagementControllerUpdateListResponse as dY, StatusListManagementControllerUpdateListResponses as dZ, StatusListResponseDto as d_, SessionConfigControllerGetConfigResponse as da, SessionConfigControllerGetConfigResponses as db, SessionConfigControllerResetConfigData as dc, SessionConfigControllerResetConfigResponses as dd, SessionConfigControllerUpdateConfigData as de, SessionConfigControllerUpdateConfigResponse as df, SessionConfigControllerUpdateConfigResponses as dg, SessionControllerDeleteSessionData as dh, SessionControllerDeleteSessionResponses as di, SessionControllerGetAllSessionsData as dj, SessionControllerGetAllSessionsResponse as dk, SessionControllerGetAllSessionsResponses as dl, SessionControllerGetSessionData as dm, SessionControllerGetSessionResponse as dn, SessionControllerGetSessionResponses as dp, SessionControllerRevokeAllData as dq, SessionControllerRevokeAllResponses as dr, SessionStorageConfig as ds, StatusListAggregationDto as dt, StatusListConfig as du, StatusListConfigControllerGetConfigData as dv, StatusListConfigControllerGetConfigResponse as dw, StatusListConfigControllerGetConfigResponses as dx, StatusListConfigControllerResetConfigData as dy, StatusListConfigControllerResetConfigResponse as dz, AuthControllerGetGlobalJwksData as e, WebHookAuthConfigHeader as e$, StorageControllerDownloadData as e0, StorageControllerDownloadResponses as e1, StorageControllerUploadData as e2, StorageControllerUploadResponse as e3, StorageControllerUploadResponses as e4, TenantControllerDeleteTenantData as e5, TenantControllerDeleteTenantResponses as e6, TenantControllerGetTenantData as e7, TenantControllerGetTenantResponse as e8, TenantControllerGetTenantResponses as e9, TrustListControllerGetTrustListResponses as eA, TrustListControllerGetTrustListVersionData as eB, TrustListControllerGetTrustListVersionResponse as eC, TrustListControllerGetTrustListVersionResponses as eD, TrustListControllerGetTrustListVersionsData as eE, TrustListControllerGetTrustListVersionsResponse as eF, TrustListControllerGetTrustListVersionsResponses as eG, TrustListControllerUpdateTrustListData as eH, TrustListControllerUpdateTrustListResponse as eI, TrustListControllerUpdateTrustListResponses as eJ, TrustListCreateDto as eK, TrustListPublicControllerGetTrustListJwtData as eL, TrustListPublicControllerGetTrustListJwtResponse as eM, TrustListPublicControllerGetTrustListJwtResponses as eN, TrustListVersion as eO, TrustedAuthorityQuery as eP, UpdateClientDto as eQ, UpdateKeyDto as eR, UpdateRegistrarConfigDto as eS, UpdateSessionConfigDto as eT, UpdateStatusListConfigDto as eU, UpdateStatusListDto as eV, UpdateTenantDto as eW, Vct as eX, VerifierOfferControllerGetOfferData as eY, VerifierOfferControllerGetOfferResponse as eZ, VerifierOfferControllerGetOfferResponses as e_, TenantControllerGetTenantsData as ea, TenantControllerGetTenantsResponse as eb, TenantControllerGetTenantsResponses as ec, TenantControllerInitTenantData as ed, TenantControllerInitTenantResponse as ee, TenantControllerInitTenantResponses as ef, TenantControllerUpdateTenantData as eg, TenantControllerUpdateTenantResponse as eh, TenantControllerUpdateTenantResponses as ei, TenantEntity as ej, TokenResponse as ek, TransactionData as el, TrustList as em, TrustListControllerCreateTrustListData as en, TrustListControllerCreateTrustListResponse as eo, TrustListControllerCreateTrustListResponses as ep, TrustListControllerDeleteTrustListData as eq, TrustListControllerDeleteTrustListResponses as er, TrustListControllerExportTrustListData as es, TrustListControllerExportTrustListResponse as et, TrustListControllerExportTrustListResponses as eu, TrustListControllerGetAllTrustListsData as ev, TrustListControllerGetAllTrustListsResponse as ew, TrustListControllerGetAllTrustListsResponses as ex, TrustListControllerGetTrustListData as ey, TrustListControllerGetTrustListResponse as ez, AuthControllerGetGlobalJwksResponses as f, WebHookAuthConfigNone as f0, WebhookConfig as f1, WellKnownControllerAuthzMetadata0Data as f2, WellKnownControllerAuthzMetadata0Responses as f3, WellKnownControllerAuthzMetadata1Data as f4, WellKnownControllerAuthzMetadata1Responses as f5, WellKnownControllerGetJwks0Data as f6, WellKnownControllerGetJwks0Response as f7, WellKnownControllerGetJwks0Responses as f8, WellKnownControllerGetJwks1Data as f9, WellKnownControllerGetJwks1Response as fa, WellKnownControllerGetJwks1Responses as fb, WellKnownControllerIssuerMetadata0Data as fc, WellKnownControllerIssuerMetadata0Response as fd, WellKnownControllerIssuerMetadata0Responses as fe, WellKnownControllerIssuerMetadata1Data as ff, WellKnownControllerIssuerMetadata1Response as fg, WellKnownControllerIssuerMetadata1Responses as fh, AuthControllerGetOAuth2TokenData as g, AuthControllerGetOAuth2TokenErrors as h, AuthControllerGetOAuth2TokenResponse as i, AuthControllerGetOAuth2TokenResponses as j, AuthControllerGetOidcDiscoveryData as k, AuthControllerGetOidcDiscoveryResponses as l, AuthenticationMethodAuth as m, AuthenticationMethodNone as n, AuthenticationMethodPresentation as o, AuthenticationUrlConfig as p, AuthorizationResponse as q, AuthorizeControllerAuthorizationChallengeEndpointData as r, AuthorizeControllerAuthorizationChallengeEndpointResponses as s, AuthorizeControllerAuthorizeData as t, AuthorizeControllerAuthorizeResponses as u, AuthorizeControllerParData as v, AuthorizeControllerParResponse as w, AuthorizeControllerParResponses as x, AuthorizeControllerTokenData as y, AuthorizeControllerTokenResponse as z };
+export type { CertControllerGetCertificatesResponse as $, AllowListPolicy as A, AuthorizeQueries as B, CacheControllerClearAllCachesData as C, CacheControllerClearAllCachesResponse as D, CacheControllerClearAllCachesResponses as E, CacheControllerClearStatusListCacheData as F, CacheControllerClearStatusListCacheResponse as G, HealthControllerCheckResponse as H, CacheControllerClearStatusListCacheResponses as I, CacheControllerClearTrustListCacheData as J, CacheControllerClearTrustListCacheResponse as K, CacheControllerClearTrustListCacheResponses as L, CacheControllerGetStatsData as M, CacheControllerGetStatsResponses as N, CertControllerAddCertificateData as O, CertControllerAddCertificateResponse as P, CertControllerAddCertificateResponses as Q, CertControllerDeleteCertificateData as R, Session as S, CertControllerDeleteCertificateResponses as T, CertControllerExportConfigData as U, CertControllerExportConfigResponse as V, CertControllerExportConfigResponses as W, CertControllerGetCertificateData as X, CertControllerGetCertificateResponse as Y, CertControllerGetCertificateResponses as Z, CertControllerGetCertificatesData as _, HealthControllerCheckError as a, CompleteDeferredDto as a$, CertControllerGetCertificatesResponses as a0, CertControllerUpdateCertificateData as a1, CertControllerUpdateCertificateResponses as a2, CertEntity as a3, CertImportDto as a4, CertResponseDto as a5, CertUpdateDto as a6, CertUsageEntity as a7, ChainedAsConfig as a8, ChainedAsControllerAuthorizeData as a9, ChainedAsTokenResponseDto as aA, Claim as aB, ClaimsQuery as aC, ClientControllerCreateClientData as aD, ClientControllerCreateClientResponse as aE, ClientControllerCreateClientResponses as aF, ClientControllerDeleteClientData as aG, ClientControllerDeleteClientResponses as aH, ClientControllerGetClientData as aI, ClientControllerGetClientResponse as aJ, ClientControllerGetClientResponses as aK, ClientControllerGetClientSecretData as aL, ClientControllerGetClientSecretResponse as aM, ClientControllerGetClientSecretResponses as aN, ClientControllerGetClientsData as aO, ClientControllerGetClientsResponse as aP, ClientControllerGetClientsResponses as aQ, ClientControllerRotateClientSecretData as aR, ClientControllerRotateClientSecretResponse as aS, ClientControllerRotateClientSecretResponses as aT, ClientControllerUpdateClientData as aU, ClientControllerUpdateClientResponse as aV, ClientControllerUpdateClientResponses as aW, ClientCredentialsDto as aX, ClientEntity as aY, ClientOptions as aZ, ClientSecretResponseDto as a_, ChainedAsControllerAuthorizeError as aa, ChainedAsControllerAuthorizeErrors as ab, ChainedAsControllerAuthorizeResponses as ac, ChainedAsControllerCallbackData as ad, ChainedAsControllerCallbackError as ae, ChainedAsControllerCallbackErrors as af, ChainedAsControllerCallbackResponses as ag, ChainedAsControllerGetMetadataData as ah, ChainedAsControllerGetMetadataResponses as ai, ChainedAsControllerJwksData as aj, ChainedAsControllerJwksResponses as ak, ChainedAsControllerParData as al, ChainedAsControllerParError as am, ChainedAsControllerParErrors as an, ChainedAsControllerParResponse as ao, ChainedAsControllerParResponses as ap, ChainedAsControllerTokenData as aq, ChainedAsControllerTokenError as ar, ChainedAsControllerTokenErrors as as, ChainedAsControllerTokenResponse as at, ChainedAsControllerTokenResponses as au, ChainedAsErrorResponseDto as av, ChainedAsParRequestDto as aw, ChainedAsParResponseDto as ax, ChainedAsTokenConfig as ay, ChainedAsTokenRequestDto as az, ApiKeyConfig as b, IssuanceConfig as b$, CreateAccessCertificateDto as b0, CreateClientDto as b1, CreateRegistrarConfigDto as b2, CreateStatusListDto as b3, CreateTenantDto as b4, CredentialConfig as b5, CredentialConfigControllerDeleteIssuanceConfigurationData as b6, CredentialConfigControllerDeleteIssuanceConfigurationResponses as b7, CredentialConfigControllerGetConfigByIdData as b8, CredentialConfigControllerGetConfigByIdResponse as b9, DeferredCredentialRequestDto as bA, DeferredOperationResponse as bB, Display as bC, DisplayImage as bD, DisplayInfo as bE, DisplayLogo as bF, EcPublic as bG, EmbeddedDisclosurePolicy as bH, FailDeferredDto as bI, FileUploadDto as bJ, HealthControllerCheckData as bK, HealthControllerCheckErrors as bL, HealthControllerCheckResponses as bM, IaeActionOpenid4VpPresentation as bN, IaeActionRedirectToWeb as bO, ImportTenantDto as bP, InteractiveAuthorizationCodeResponseDto as bQ, InteractiveAuthorizationControllerCompleteWebAuthData as bR, InteractiveAuthorizationControllerCompleteWebAuthErrors as bS, InteractiveAuthorizationControllerCompleteWebAuthResponses as bT, InteractiveAuthorizationControllerInteractiveAuthorizationData as bU, InteractiveAuthorizationControllerInteractiveAuthorizationError as bV, InteractiveAuthorizationControllerInteractiveAuthorizationErrors as bW, InteractiveAuthorizationControllerInteractiveAuthorizationResponse as bX, InteractiveAuthorizationControllerInteractiveAuthorizationResponses as bY, InteractiveAuthorizationErrorResponseDto as bZ, InteractiveAuthorizationRequestDto as b_, CredentialConfigControllerGetConfigByIdResponses as ba, CredentialConfigControllerGetConfigsData as bb, CredentialConfigControllerGetConfigsResponse as bc, CredentialConfigControllerGetConfigsResponses as bd, CredentialConfigControllerStoreCredentialConfigurationData as be, CredentialConfigControllerStoreCredentialConfigurationResponse as bf, CredentialConfigControllerStoreCredentialConfigurationResponses as bg, CredentialConfigControllerUpdateCredentialConfigurationData as bh, CredentialConfigControllerUpdateCredentialConfigurationResponse as bi, CredentialConfigControllerUpdateCredentialConfigurationResponses as bj, CredentialConfigCreate as bk, CredentialConfigUpdate as bl, CredentialOfferControllerGetOfferData as bm, CredentialOfferControllerGetOfferResponse as bn, CredentialOfferControllerGetOfferResponses as bo, CredentialQuery as bp, CredentialSetQuery as bq, Dcql as br, DeferredControllerCompleteDeferredData as bs, DeferredControllerCompleteDeferredErrors as bt, DeferredControllerCompleteDeferredResponse as bu, DeferredControllerCompleteDeferredResponses as bv, DeferredControllerFailDeferredData as bw, DeferredControllerFailDeferredErrors as bx, DeferredControllerFailDeferredResponse as by, DeferredControllerFailDeferredResponses as bz, AppControllerMainData as c, PresentationManagementControllerDeleteConfigurationResponses as c$, IssuanceConfigControllerGetIssuanceConfigurationsData as c0, IssuanceConfigControllerGetIssuanceConfigurationsResponse as c1, IssuanceConfigControllerGetIssuanceConfigurationsResponses as c2, IssuanceConfigControllerStoreIssuanceConfigurationData as c3, IssuanceConfigControllerStoreIssuanceConfigurationResponse as c4, IssuanceConfigControllerStoreIssuanceConfigurationResponses as c5, IssuanceDto as c6, IssuerMetadataCredentialConfig as c7, JwksResponseDto as c8, Key as c9, Oid4VciControllerNotificationsResponses as cA, Oid4VciMetadataControllerVctData as cB, Oid4VciMetadataControllerVctResponse as cC, Oid4VciMetadataControllerVctResponses as cD, Oid4VpControllerGetPostRequestWithSessionData as cE, Oid4VpControllerGetPostRequestWithSessionResponse as cF, Oid4VpControllerGetPostRequestWithSessionResponses as cG, Oid4VpControllerGetRequestNoRedirectWithSessionData as cH, Oid4VpControllerGetRequestNoRedirectWithSessionResponse as cI, Oid4VpControllerGetRequestNoRedirectWithSessionResponses as cJ, Oid4VpControllerGetRequestWithSessionData as cK, Oid4VpControllerGetRequestWithSessionResponse as cL, Oid4VpControllerGetRequestWithSessionResponses as cM, Oid4VpControllerGetResponseData as cN, Oid4VpControllerGetResponseResponse as cO, Oid4VpControllerGetResponseResponses as cP, ParResponseDto as cQ, PolicyCredential as cR, PresentationAttachment as cS, PresentationConfig as cT, PresentationConfigCreateDto as cU, PresentationConfigUpdateDto as cV, PresentationDuringIssuanceConfig as cW, PresentationManagementControllerConfigurationData as cX, PresentationManagementControllerConfigurationResponse as cY, PresentationManagementControllerConfigurationResponses as cZ, PresentationManagementControllerDeleteConfigurationData as c_, KeyControllerAddKeyData as ca, KeyControllerAddKeyResponses as cb, KeyControllerDeleteKeyData as cc, KeyControllerDeleteKeyResponses as cd, KeyControllerGetKeyData as ce, KeyControllerGetKeyResponse as cf, KeyControllerGetKeyResponses as cg, KeyControllerGetKeysData as ch, KeyControllerGetKeysResponse as ci, KeyControllerGetKeysResponses as cj, KeyControllerUpdateKeyData as ck, KeyControllerUpdateKeyResponses as cl, KeyEntity as cm, KeyImportDto as cn, NoneTrustPolicy as co, NotificationRequestDto as cp, OfferRequestDto as cq, OfferResponse as cr, Oid4VciControllerCredentialData as cs, Oid4VciControllerCredentialResponse as ct, Oid4VciControllerCredentialResponses as cu, Oid4VciControllerDeferredCredentialData as cv, Oid4VciControllerDeferredCredentialResponses as cw, Oid4VciControllerNonceData as cx, Oid4VciControllerNonceResponses as cy, Oid4VciControllerNotificationsData as cz, AppControllerMainResponses as d, StatusListConfigControllerResetConfigResponses as d$, PresentationManagementControllerGetConfigurationData as d0, PresentationManagementControllerGetConfigurationResponse as d1, PresentationManagementControllerGetConfigurationResponses as d2, PresentationManagementControllerStorePresentationConfigData as d3, PresentationManagementControllerStorePresentationConfigResponse as d4, PresentationManagementControllerStorePresentationConfigResponses as d5, PresentationManagementControllerUpdateConfigurationData as d6, PresentationManagementControllerUpdateConfigurationResponse as d7, PresentationManagementControllerUpdateConfigurationResponses as d8, PresentationRequest as d9, SessionConfigControllerGetConfigResponse as dA, SessionConfigControllerGetConfigResponses as dB, SessionConfigControllerResetConfigData as dC, SessionConfigControllerResetConfigResponses as dD, SessionConfigControllerUpdateConfigData as dE, SessionConfigControllerUpdateConfigResponse as dF, SessionConfigControllerUpdateConfigResponses as dG, SessionControllerDeleteSessionData as dH, SessionControllerDeleteSessionResponses as dI, SessionControllerGetAllSessionsData as dJ, SessionControllerGetAllSessionsResponse as dK, SessionControllerGetAllSessionsResponses as dL, SessionControllerGetSessionData as dM, SessionControllerGetSessionResponse as dN, SessionControllerGetSessionResponses as dO, SessionControllerRevokeAllData as dP, SessionControllerRevokeAllResponses as dQ, SessionEventsControllerSubscribeToSessionEventsData as dR, SessionEventsControllerSubscribeToSessionEventsResponses as dS, SessionStorageConfig as dT, StatusListAggregationDto as dU, StatusListConfig as dV, StatusListConfigControllerGetConfigData as dW, StatusListConfigControllerGetConfigResponse as dX, StatusListConfigControllerGetConfigResponses as dY, StatusListConfigControllerResetConfigData as dZ, StatusListConfigControllerResetConfigResponse as d_, RegistrarConfigEntity as da, RegistrarControllerCreateAccessCertificateData as db, RegistrarControllerCreateAccessCertificateErrors as dc, RegistrarControllerCreateAccessCertificateResponse as dd, RegistrarControllerCreateAccessCertificateResponses as de, RegistrarControllerCreateConfigData as df, RegistrarControllerCreateConfigErrors as dg, RegistrarControllerCreateConfigResponse as dh, RegistrarControllerCreateConfigResponses as di, RegistrarControllerDeleteConfigData as dj, RegistrarControllerDeleteConfigResponse as dk, RegistrarControllerDeleteConfigResponses as dl, RegistrarControllerGetConfigData as dm, RegistrarControllerGetConfigErrors as dn, RegistrarControllerGetConfigResponse as dp, RegistrarControllerGetConfigResponses as dq, RegistrarControllerUpdateConfigData as dr, RegistrarControllerUpdateConfigErrors as ds, RegistrarControllerUpdateConfigResponse as dt, RegistrarControllerUpdateConfigResponses as du, RegistrationCertificateRequest as dv, RoleDto as dw, RootOfTrustPolicy as dx, SchemaResponse as dy, SessionConfigControllerGetConfigData as dz, AttestationBasedPolicy as e, TrustListControllerGetTrustListResponses as e$, StatusListConfigControllerUpdateConfigData as e0, StatusListConfigControllerUpdateConfigResponse as e1, StatusListConfigControllerUpdateConfigResponses as e2, StatusListControllerGetListData as e3, StatusListControllerGetListResponse as e4, StatusListControllerGetListResponses as e5, StatusListControllerGetStatusListAggregationData as e6, StatusListControllerGetStatusListAggregationResponse as e7, StatusListControllerGetStatusListAggregationResponses as e8, StatusListImportDto as e9, TenantControllerGetTenantResponses as eA, TenantControllerGetTenantsData as eB, TenantControllerGetTenantsResponse as eC, TenantControllerGetTenantsResponses as eD, TenantControllerInitTenantData as eE, TenantControllerInitTenantResponse as eF, TenantControllerInitTenantResponses as eG, TenantControllerUpdateTenantData as eH, TenantControllerUpdateTenantResponse as eI, TenantControllerUpdateTenantResponses as eJ, TenantEntity as eK, TokenResponse as eL, TransactionData as eM, TrustList as eN, TrustListControllerCreateTrustListData as eO, TrustListControllerCreateTrustListResponse as eP, TrustListControllerCreateTrustListResponses as eQ, TrustListControllerDeleteTrustListData as eR, TrustListControllerDeleteTrustListResponses as eS, TrustListControllerExportTrustListData as eT, TrustListControllerExportTrustListResponse as eU, TrustListControllerExportTrustListResponses as eV, TrustListControllerGetAllTrustListsData as eW, TrustListControllerGetAllTrustListsResponse as eX, TrustListControllerGetAllTrustListsResponses as eY, TrustListControllerGetTrustListData as eZ, TrustListControllerGetTrustListResponse as e_, StatusListManagementControllerCreateListData as ea, StatusListManagementControllerCreateListResponse as eb, StatusListManagementControllerCreateListResponses as ec, StatusListManagementControllerDeleteListData as ed, StatusListManagementControllerDeleteListResponse as ee, StatusListManagementControllerDeleteListResponses as ef, StatusListManagementControllerGetListData as eg, StatusListManagementControllerGetListResponse as eh, StatusListManagementControllerGetListResponses as ei, StatusListManagementControllerGetListsData as ej, StatusListManagementControllerGetListsResponse as ek, StatusListManagementControllerGetListsResponses as el, StatusListManagementControllerUpdateListData as em, StatusListManagementControllerUpdateListResponse as en, StatusListManagementControllerUpdateListResponses as eo, StatusListResponseDto as ep, StatusUpdateDto as eq, StorageControllerDownloadData as er, StorageControllerDownloadResponses as es, StorageControllerUploadData as et, StorageControllerUploadResponse as eu, StorageControllerUploadResponses as ev, TenantControllerDeleteTenantData as ew, TenantControllerDeleteTenantResponses as ex, TenantControllerGetTenantData as ey, TenantControllerGetTenantResponse as ez, AuthControllerGetGlobalJwksData as f, TrustListControllerGetTrustListVersionData as f0, TrustListControllerGetTrustListVersionResponse as f1, TrustListControllerGetTrustListVersionResponses as f2, TrustListControllerGetTrustListVersionsData as f3, TrustListControllerGetTrustListVersionsResponse as f4, TrustListControllerGetTrustListVersionsResponses as f5, TrustListControllerUpdateTrustListData as f6, TrustListControllerUpdateTrustListResponse as f7, TrustListControllerUpdateTrustListResponses as f8, TrustListCreateDto as f9, WellKnownControllerGetJwks0Responses as fA, WellKnownControllerGetJwks1Data as fB, WellKnownControllerGetJwks1Response as fC, WellKnownControllerGetJwks1Responses as fD, WellKnownControllerIssuerMetadata0Data as fE, WellKnownControllerIssuerMetadata0Response as fF, WellKnownControllerIssuerMetadata0Responses as fG, WellKnownControllerIssuerMetadata1Data as fH, WellKnownControllerIssuerMetadata1Response as fI, WellKnownControllerIssuerMetadata1Responses as fJ, TrustListPublicControllerGetTrustListJwtData as fa, TrustListPublicControllerGetTrustListJwtResponse as fb, TrustListPublicControllerGetTrustListJwtResponses as fc, TrustListVersion as fd, TrustedAuthorityQuery as fe, UpdateClientDto as ff, UpdateKeyDto as fg, UpdateRegistrarConfigDto as fh, UpdateSessionConfigDto as fi, UpdateStatusListConfigDto as fj, UpdateStatusListDto as fk, UpdateTenantDto as fl, UpstreamOidcConfig as fm, Vct as fn, VerifierOfferControllerGetOfferData as fo, VerifierOfferControllerGetOfferResponse as fp, VerifierOfferControllerGetOfferResponses as fq, WebHookAuthConfigHeader as fr, WebHookAuthConfigNone as fs, WebhookConfig as ft, WellKnownControllerAuthzMetadata0Data as fu, WellKnownControllerAuthzMetadata0Responses as fv, WellKnownControllerAuthzMetadata1Data as fw, WellKnownControllerAuthzMetadata1Responses as fx, WellKnownControllerGetJwks0Data as fy, WellKnownControllerGetJwks0Response as fz, AuthControllerGetGlobalJwksResponses as g, AuthControllerGetOAuth2TokenData as h, AuthControllerGetOAuth2TokenErrors as i, AuthControllerGetOAuth2TokenResponse as j, AuthControllerGetOAuth2TokenResponses as k, AuthControllerGetOidcDiscoveryData as l, AuthControllerGetOidcDiscoveryResponses as m, AuthenticationMethodAuth as n, AuthenticationMethodNone as o, AuthenticationMethodPresentation as p, AuthenticationUrlConfig as q, AuthorizationResponse as r, AuthorizeControllerAuthorizeData as s, AuthorizeControllerAuthorizeResponses as t, AuthorizeControllerParData as u, AuthorizeControllerParResponse as v, AuthorizeControllerParResponses as w, AuthorizeControllerTokenData as x, AuthorizeControllerTokenResponse as y, AuthorizeControllerTokenResponses as z };