@eudiplo/sdk-core 3.1.1 → 4.0.0

package/dist/{types.gen-B8BIFvOm.d.ts → types.gen-sNmRQvUI.d.ts}

@@ -213,138 +213,6 @@ type CreateClientDto = {
      */
     roles: Array<"presentation:manage" | "presentation:request" | "issuance:manage" | "issuance:offer" | "clients:manage" | "tenants:manage" | "registrar:manage">;
 };
-type KeyEntity = {
-    /**
-     * Unique identifier for the key.
-     */
-    id: string;
-    /**
-     * Description of the key.
-     */
-    description?: string;
-    /**
-     * Tenant ID for the key.
-     */
-    tenantId: string;
-    /**
-     * The tenant that owns this object.
-     */
-    tenant: TenantEntity;
-    /**
-     * The key material.
-     * Encrypted at rest using AES-256-GCM.
-     */
-    key: {
-        [key: string]: unknown;
-    };
-    /**
-     * The usage type of the key.
-     */
-    usage: {
-        [key: string]: unknown;
-    };
-    /**
-     * The KMS provider used for this key.
-     * References a configured KMS provider name.
-     */
-    kmsProvider: string;
-    /**
-     * Certificates associated with this key.
-     */
-    certificates: Array<CertEntity>;
-    /**
-     * The timestamp when the key was created.
-     */
-    createdAt: string;
-    /**
-     * The timestamp when the key was last updated.
-     */
-    updatedAt: string;
-};
-type CertEntity = {
-    /**
-     * The key ID this certificate is associated with
-     */
-    keyId: string;
-    /**
-     * Unique identifier for the key.
-     */
-    id: string;
-    /**
-     * Tenant ID for the key.
-     */
-    tenantId: string;
-    /**
-     * The tenant that owns this object.
-     */
-    tenant: TenantEntity;
-    /**
-     * Certificate chain in PEM format (leaf first, then intermediates/CA).
-     */
-    crt: Array<string>;
-    usages: Array<CertUsageEntity>;
-    /**
-     * Description of the key.
-     */
-    description?: string;
-    key: KeyEntity;
-    /**
-     * The timestamp when the certificate was created.
-     */
-    createdAt: string;
-    /**
-     * The timestamp when the certificate was last updated.
-     */
-    updatedAt: string;
-};
-type CertUsageEntity = {
-    tenantId: string;
-    certId: string;
-    usage: "access" | "signing" | "trustList" | "statusList";
-    cert: CertEntity;
-};
-type CertImportDto = {
-    /**
-     * The key ID this certificate is associated with
-     */
-    keyId: string;
-    id?: string;
-    /**
-     * Usage types for the certificate.
-     */
-    certUsageTypes: Array<"access" | "signing" | "trustList" | "statusList">;
-    /**
-     * Certificate chain in PEM format (leaf first, then intermediates/CA).
-     * If not provided, a self-signed certificate will be generated.
-     */
-    crt?: Array<string>;
-    /**
-     * Subject name (CN) for self-signed certificate generation.
-     * If not provided, the tenant name will be used.
-     */
-    subjectName?: string;
-    /**
-     * Description of the key.
-     */
-    description?: string;
-};
-type CertResponseDto = {
-    /**
-     * The ID of the created self-signed certificate.
-     */
-    id: string;
-};
-type CertUpdateDto = {
-    /**
-     * Usage types for the certificate.
-     */
-    certUsageTypes: Array<"access" | "signing" | "trustList" | "statusList">;
-    usages: Array<CertUsageEntity>;
-    /**
-     * Description of the key.
-     */
-    description?: string;
-};
 type StatusListImportDto = {
     /**
      * Unique identifier for the status list
@@ -355,9 +223,9 @@ type StatusListImportDto = {
      */
     credentialConfigurationId?: string;
     /**
-     * Certificate ID to use for signing. Leave empty to use the tenant's default StatusList certificate.
+     * Key chain ID to use for signing. Leave empty to use the tenant's default StatusList key chain.
      */
-    certId?: string;
+    keyChainId?: string;
     /**
      * Capacity of the status list. If not provided, uses tenant or global defaults.
      */
@@ -409,9 +277,9 @@ type StatusListResponseDto = {
      */
     credentialConfigurationId?: string;
     /**
-     * Certificate ID used for signing. Null means using the tenant's default.
+     * Key chain ID used for signing. Null means using the tenant's default.
      */
-    certId?: string;
+    keyChainId?: string;
     /**
      * Bits per status value
      */
@@ -447,9 +315,9 @@ type CreateStatusListDto = {
      */
     credentialConfigurationId?: string;
     /**
-     * Certificate ID to use for signing. Leave empty to use the tenant's default StatusList certificate.
+     * Key chain ID to use for signing. Leave empty to use the tenant's default StatusList key chain.
      */
-    certId?: string;
+    keyChainId?: string;
     /**
      * Bits per status value. More bits allow more status states. Defaults to tenant configuration.
      */
@@ -465,9 +333,9 @@ type UpdateStatusListDto = {
      */
     credentialConfigurationId?: string;
     /**
-     * Certificate ID to use for signing. Set to null to use the tenant's default StatusList certificate.
+     * Key chain ID to use for signing. Set to null to use the tenant's default StatusList key chain.
      */
-    certId?: string;
+    keyChainId?: string;
 };
 type AuthorizeQueries = {
     issuer_state?: string;
@@ -483,44 +351,6 @@ type AuthorizeQueries = {
     auth_session?: string;
     state?: string;
 };
-type WebHookAuthConfigNone = {
-    /**
-     * The type of authentication used for the webhook.
-     */
-    type: "none";
-};
-type ApiKeyConfig = {
-    /**
-     * The name of the header where the API key will be sent.
-     */
-    headerName: string;
-    /**
-     * The value of the API key to be sent in the header.
-     */
-    value: string;
-};
-type WebHookAuthConfigHeader = {
-    /**
-     * The type of authentication used for the webhook.
-     */
-    type: "apiKey";
-    /**
-     * Configuration for API key authentication.
-     * This is required if the type is 'apiKey'.
-     */
-    config: ApiKeyConfig;
-};
-type WebhookConfig = {
-    /**
-     * Optional authentication configuration for the webhook.
-     * If not provided, no authentication will be used.
-     */
-    auth: WebHookAuthConfigNone | WebHookAuthConfigHeader;
-    /**
-     * The URL to which the webhook will send notifications.
-     */
-    url: string;
-};
 type OfferRequestDto = {
     /**
      * The type of response expected for the offer request.
@@ -535,10 +365,16 @@ type OfferRequestDto = {
             claims: {
                 [key: string]: unknown;
             };
+        } | {
+            type: "attributeProvider";
+            attributeProviderId: string;
         } | {
             type: "webhook";
             webhook: {
-                [key: string]: unknown;
+                url: string;
+                auth?: {
+                    [key: string]: unknown;
+                };
             };
         };
     };
@@ -563,9 +399,47 @@ type OfferRequestDto = {
      */
     authorization_server?: string;
     /**
-     * Webhook to notify about the status of the issuance process.
+     * ID of the webhook endpoint to notify about the status of the issuance process.
      */
-    notifyWebhook?: WebhookConfig;
+    webhookEndpointId?: string;
+};
+type WebHookAuthConfigNone = {
+    /**
+     * The type of authentication used for the webhook.
+     */
+    type: "none";
+};
+type ApiKeyConfig = {
+    /**
+     * The name of the header where the API key will be sent.
+     */
+    headerName: string;
+    /**
+     * The value of the API key to be sent in the header.
+     */
+    value: string;
+};
+type WebHookAuthConfigHeader = {
+    /**
+     * The type of authentication used for the webhook.
+     */
+    type: "apiKey";
+    /**
+     * Configuration for API key authentication.
+     * This is required if the type is 'apiKey'.
+     */
+    config: ApiKeyConfig;
+};
+type WebhookConfig = {
+    /**
+     * Optional authentication configuration for the webhook.
+     * If not provided, no authentication will be used.
+     */
+    auth: WebHookAuthConfigNone | WebHookAuthConfigHeader;
+    /**
+     * The URL to which the webhook will send notifications.
+     */
+    url: string;
 };
 type TransactionData = {
     type: string;
@@ -631,9 +505,9 @@ type Session = {
      */
     credentialPayload?: OfferRequestDto;
     /**
-     * Webhook configuration to send the result of the notification response.
+     * ID of the webhook endpoint to notify about issuance status.
      */
-    notifyWebhook?: WebhookConfig;
+    webhookEndpointId?: string;
     /**
      * Notifications associated with the session.
      */
@@ -688,6 +562,38 @@ type Session = {
      */
     externalSubject?: string;
 };
+type SessionLogEntryResponseDto = {
+    /**
+     * Log entry ID
+     */
+    id: string;
+    /**
+     * Session ID
+     */
+    sessionId: string;
+    /**
+     * Timestamp of the log entry
+     */
+    timestamp: string;
+    /**
+     * Log level
+     */
+    level: "info" | "warn" | "error";
+    /**
+     * Flow stage
+     */
+    stage?: string;
+    /**
+     * Log message
+     */
+    message: string;
+    /**
+     * Additional structured detail
+     */
+    detail?: {
+        [key: string]: unknown;
+    };
+};
 type StatusUpdateDto = {
     /**
      * The session ID of the user
@@ -798,6 +704,10 @@ type DisplayInfo = {
     logo?: DisplayLogo;
 };
 type IssuanceConfig = {
+    /**
+     * Key ID for signing access tokens. If unset, the default signing key is used.
+     */
+    signingKeyId?: string;
     /**
      * Configuration for Chained Authorization Server mode.
      * When enabled, EUDIPLO acts as an OAuth AS facade, delegating user authentication
@@ -833,6 +743,13 @@ type IssuanceConfig = {
      * If empty and walletAttestationRequired is true, all wallet providers are rejected.
      */
     walletProviderTrustLists?: Array<string>;
+    /**
+     * The URL of the preferred authorization server for wallet-initiated flows.
+     * When set, this AS is placed first in the `authorization_servers` array
+     * of the credential issuer metadata, signaling wallets to use it by default.
+     * Must match one of the configured auth servers, the chained AS URL, or "built-in".
+     */
+    preferredAuthServer?: string;
     display: Array<DisplayInfo>;
     /**
      * The timestamp when the VP request was created.
@@ -844,6 +761,10 @@ type IssuanceConfig = {
     updatedAt: string;
 };
 type IssuanceDto = {
+    /**
+     * Key ID for signing access tokens. If unset, the default signing key is used.
+     */
+    signingKeyId?: string;
     /**
      * Configuration for Chained Authorization Server mode.
      * When enabled, EUDIPLO acts as an OAuth AS facade, delegating user authentication
@@ -875,6 +796,13 @@ type IssuanceDto = {
      * If empty and walletAttestationRequired is true, all wallet providers are rejected.
      */
     walletProviderTrustLists?: Array<string>;
+    /**
+     * The URL of the preferred authorization server for wallet-initiated flows.
+     * When set, this AS is placed first in the `authorization_servers` array
+     * of the credential issuer metadata, signaling wallets to use it by default.
+     * Must match one of the configured auth servers, the chained AS URL, or "built-in".
+     */
+    preferredAuthServer?: string;
     display: Array<DisplayInfo>;
 };
 type ClaimsQuery = {
@@ -1009,76 +937,179 @@ type IssuerMetadataCredentialConfig = {
         [key: string]: unknown;
     };
 };
-type SchemaResponse = {
-    $schema: string;
-    type: string;
-    properties: {
-        [key: string]: unknown;
-    };
-    required?: Array<string>;
-    title?: string;
+type AttributeProviderEntity = {
+    auth: WebHookAuthConfigNone | WebHookAuthConfigHeader;
+    id: string;
+    tenantId: string;
+    tenant: TenantEntity;
+    name: string;
     description?: string;
+    url: string;
 };
-type CredentialConfig = {
+type WebhookEndpointEntity = {
+    auth: WebHookAuthConfigNone | WebHookAuthConfigHeader;
+    id: string;
+    tenantId: string;
+    tenant: TenantEntity;
+    name: string;
+    description?: string;
+    url: string;
+};
+type KeyChainEntity = {
     /**
-     * VCT as a URI string (e.g., urn:eudi:pid:de:1) or as an object for EUDIPLO-hosted VCT
+     * Unique identifier for the key chain.
+     * This is the ID referenced by other entities (e.g., issuance config's signingKeyId).
      */
-    vct?: string | Vct;
+    id: string;
     /**
-     * List of IAE actions to execute before credential issuance
+     * Tenant ID for the key chain.
      */
-    iaeActions?: Array<IaeActionOpenid4VpPresentation | IaeActionRedirectToWeb>;
+    tenantId: string;
     /**
-     * Embedded disclosure policy (discriminated union by `policy`).
-     * The discriminator makes class-transformer instantiate the right subclass,
-     * and then class-validator runs that subclass’s rules.
+     * The tenant that owns this key chain.
+     */
+    tenant: TenantEntity;
+    /**
+     * Human-readable description of the key chain.
      */
-    embeddedDisclosurePolicy?: EmbeddedDisclosurePolicy;
-    id: string;
     description?: string;
     /**
-     * The tenant that owns this object.
+     * The purpose/role of this key chain in the system.
      */
-    tenant: TenantEntity;
-    config: IssuerMetadataCredentialConfig;
-    claims?: {
-        [key: string]: unknown;
-    };
+    usageType: "access" | "attestation" | "trustList" | "statusList" | "encrypt";
     /**
-     * Webhook to receive claims for the issuance process.
+     * The usage type of the keys (sign or encrypt).
      */
-    claimsWebhook?: WebhookConfig;
+    usage: "sign" | "encrypt";
     /**
-     * Webhook to receive claims for the issuance process.
+     * The KMS provider used for this key chain.
+     * References a configured KMS provider name.
      */
-    notificationWebhook?: WebhookConfig;
-    disclosureFrame?: {
+    kmsProvider: string;
+    /**
+     * External key identifier for cloud KMS providers.
+     * This field stores the provider-specific key reference for the active signing key.
+     */
+    externalKeyId?: string;
+    rootKey?: {
         [key: string]: unknown;
     };
-    keyBinding?: boolean;
     /**
-     * Reference to the certificate used for signing.
-     * Note: No DB-level FK constraint because CertEntity has a composite PK
-     * (id + tenantId) and SET NULL behavior cannot work when tenantId is
-     * part of this entity's own PK.
+     * Root CA certificate in PEM format.
+     * Self-signed certificate for the root CA key.
      */
-    certId?: string;
-    cert?: CertEntity;
-    statusManagement?: boolean;
-    lifeTime?: number;
-    schema?: SchemaResponse;
-};
-type CredentialConfigCreate = {
+    rootCertificate?: string;
+    activeKey: {
+        [key: string]: unknown;
+    };
     /**
-     * VCT as a URI string (e.g., urn:eudi:pid:de:1) or as an object for EUDIPLO-hosted VCT
+     * Certificate for the active signing key in PEM format.
+     * Either CA-signed (if rootKey exists) or self-signed.
      */
-    vct?: string | Vct;
+    activeCertificate: string;
+    rotationEnabled: boolean;
     /**
-     * List of IAE actions to execute before credential issuance
+     * Rotation interval in days. Key material will be rotated after this many days.
      */
-    iaeActions?: Array<IaeActionOpenid4VpPresentation | IaeActionRedirectToWeb>;
+    rotationIntervalDays?: number;
     /**
-     * Embedded disclosure policy (discriminated union by `policy`).
+     * Certificate validity in days when generating new certificates.
+     */
+    certValidityDays?: number;
+    /**
+     * Timestamp of when the key was last rotated.
+     */
+    lastRotatedAt?: string;
+    previousKey?: {
+        [key: string]: unknown;
+    };
+    /**
+     * Certificate for the previous signing key in PEM format.
+     */
+    previousCertificate?: string;
+    /**
+     * Expiry date for the previous key.
+     * After this date, the previous key should be deleted.
+     */
+    previousKeyExpiry?: string;
+    createdAt: string;
+    /**
+     * The timestamp when the key chain was last updated.
+     */
+    updatedAt: string;
+};
+type SchemaResponse = {
+    $schema: string;
+    type: string;
+    properties: {
+        [key: string]: unknown;
+    };
+    required?: Array<string>;
+    title?: string;
+    description?: string;
+};
+type CredentialConfig = {
+    /**
+     * VCT as a URI string (e.g., urn:eudi:pid:de:1) or as an object for EUDIPLO-hosted VCT
+     */
+    vct?: string | Vct;
+    /**
+     * List of IAE actions to execute before credential issuance
+     */
+    iaeActions?: Array<IaeActionOpenid4VpPresentation | IaeActionRedirectToWeb>;
+    /**
+     * Embedded disclosure policy (discriminated union by `policy`).
+     * The discriminator makes class-transformer instantiate the right subclass,
+     * and then class-validator runs that subclass’s rules.
+     */
+    embeddedDisclosurePolicy?: EmbeddedDisclosurePolicy;
+    id: string;
+    description?: string;
+    /**
+     * The tenant that owns this object.
+     */
+    tenant: TenantEntity;
+    config: IssuerMetadataCredentialConfig;
+    claims?: {
+        [key: string]: unknown;
+    };
+    /**
+     * Reference to the attribute provider used for fetching claims.
+     * Optional: if set, claims will be fetched from this provider during issuance.
+     */
+    attributeProviderId?: string;
+    attributeProvider?: AttributeProviderEntity;
+    /**
+     * Reference to the webhook endpoint used for notifications.
+     * Optional: if set, notifications will be sent to this endpoint.
+     */
+    webhookEndpointId?: string;
+    webhookEndpoint?: WebhookEndpointEntity;
+    disclosureFrame?: {
+        [key: string]: unknown;
+    };
+    keyBinding?: boolean;
+    /**
+     * Reference to the key chain used for signing.
+     * Optional: if not specified, the default attestation key chain will be used.
+     */
+    keyChainId?: string;
+    keyChain?: KeyChainEntity;
+    statusManagement?: boolean;
+    lifeTime?: number;
+    schema?: SchemaResponse;
+};
+type CredentialConfigCreate = {
+    /**
+     * VCT as a URI string (e.g., urn:eudi:pid:de:1) or as an object for EUDIPLO-hosted VCT
+     */
+    vct?: string | Vct;
+    /**
+     * List of IAE actions to execute before credential issuance
+     */
+    iaeActions?: Array<IaeActionOpenid4VpPresentation | IaeActionRedirectToWeb>;
+    /**
+     * Embedded disclosure policy (discriminated union by `policy`).
      * The discriminator makes class-transformer instantiate the right subclass,
      * and then class-validator runs that subclass’s rules.
      */
@@ -1090,24 +1121,24 @@ type CredentialConfigCreate = {
         [key: string]: unknown;
     };
     /**
-     * Webhook to receive claims for the issuance process.
+     * Reference to the attribute provider used for fetching claims.
+     * Optional: if set, claims will be fetched from this provider during issuance.
      */
-    claimsWebhook?: WebhookConfig;
+    attributeProviderId?: string;
     /**
-     * Webhook to receive claims for the issuance process.
+     * Reference to the webhook endpoint used for notifications.
+     * Optional: if set, notifications will be sent to this endpoint.
      */
-    notificationWebhook?: WebhookConfig;
+    webhookEndpointId?: string;
     disclosureFrame?: {
         [key: string]: unknown;
     };
     keyBinding?: boolean;
     /**
-     * Reference to the certificate used for signing.
-     * Note: No DB-level FK constraint because CertEntity has a composite PK
-     * (id + tenantId) and SET NULL behavior cannot work when tenantId is
-     * part of this entity's own PK.
+     * Reference to the key chain used for signing.
+     * Optional: if not specified, the default attestation key chain will be used.
      */
-    certId?: string;
+    keyChainId?: string;
     statusManagement?: boolean;
     lifeTime?: number;
     schema?: SchemaResponse;
@@ -1134,28 +1165,56 @@ type CredentialConfigUpdate = {
         [key: string]: unknown;
     };
     /**
-     * Webhook to receive claims for the issuance process.
+     * Reference to the attribute provider used for fetching claims.
+     * Optional: if set, claims will be fetched from this provider during issuance.
      */
-    claimsWebhook?: WebhookConfig;
+    attributeProviderId?: string;
     /**
-     * Webhook to receive claims for the issuance process.
+     * Reference to the webhook endpoint used for notifications.
+     * Optional: if set, notifications will be sent to this endpoint.
      */
-    notificationWebhook?: WebhookConfig;
+    webhookEndpointId?: string;
     disclosureFrame?: {
         [key: string]: unknown;
     };
     keyBinding?: boolean;
     /**
-     * Reference to the certificate used for signing.
-     * Note: No DB-level FK constraint because CertEntity has a composite PK
-     * (id + tenantId) and SET NULL behavior cannot work when tenantId is
-     * part of this entity's own PK.
+     * Reference to the key chain used for signing.
+     * Optional: if not specified, the default attestation key chain will be used.
      */
-    certId?: string;
+    keyChainId?: string;
     statusManagement?: boolean;
     lifeTime?: number;
     schema?: SchemaResponse;
 };
+type CreateAttributeProviderDto = {
+    auth: WebHookAuthConfigNone | WebHookAuthConfigHeader;
+    id: string;
+    name: string;
+    description?: string;
+    url: string;
+};
+type UpdateAttributeProviderDto = {
+    auth?: WebHookAuthConfigNone | WebHookAuthConfigHeader;
+    id?: string;
+    name?: string;
+    description?: string;
+    url?: string;
+};
+type CreateWebhookEndpointDto = {
+    auth: WebHookAuthConfigNone | WebHookAuthConfigHeader;
+    id: string;
+    name: string;
+    description?: string;
+    url: string;
+};
+type UpdateWebhookEndpointDto = {
+    auth?: WebHookAuthConfigNone | WebHookAuthConfigHeader;
+    id?: string;
+    name?: string;
+    description?: string;
+    url?: string;
+};
 type Dcql = {
     credentials: Array<CredentialQuery>;
     credential_sets?: Array<CredentialSetQuery>;
@@ -1229,7 +1288,7 @@ type PresentationConfig = {
      * that reference only part of a composite primary key. The relationship is handled
      * at the application level in the service layer.
      */
-    accessCertId?: string;
+    accessKeyChainId?: string;
 };
 type PresentationConfigCreateDto = {
     /**
@@ -1275,7 +1334,7 @@ type PresentationConfigCreateDto = {
      * that reference only part of a composite primary key. The relationship is handled
      * at the application level in the service layer.
      */
-    accessCertId?: string;
+    accessKeyChainId?: string;
 };
 type PresentationConfigUpdateDto = {
     /**
@@ -1321,7 +1380,7 @@ type PresentationConfigUpdateDto = {
      * that reference only part of a composite primary key. The relationship is handled
      * at the application level in the service layer.
      */
-    accessCertId?: string;
+    accessKeyChainId?: string;
 };
 type DeferredCredentialRequestDto = {
     /**
@@ -1705,13 +1764,37 @@ type CreateAccessCertificateDto = {
      */
     keyId: string;
 };
+type TrustListEntityInfo = {
+    name: string;
+    lang?: string;
+    uri?: string;
+    country?: string;
+    locality?: string;
+    postalCode?: string;
+    streetAddress?: string;
+    contactUri?: string;
+};
+type InternalTrustListEntity = {
+    type: "internal";
+    issuerKeyChainId: string;
+    revocationKeyChainId: string;
+    info: TrustListEntityInfo;
+};
+type ExternalTrustListEntity = {
+    type: "external";
+    issuerCertPem: string;
+    revocationCertPem: string;
+    info: TrustListEntityInfo;
+};
 type TrustListCreateDto = {
+    entities: Array<({
+        type: "internal";
+    } & InternalTrustListEntity) | ({
+        type: "external";
+    } & ExternalTrustListEntity)>;
     id?: string;
-    certId?: string;
-    entities: Array<{
-        [key: string]: unknown;
-    }>;
     description?: string;
+    keyChainId?: string;
     /**
      * The full trust list JSON (generated LoTE structure)
      */
@@ -1733,8 +1816,8 @@ type TrustList = {
      * The tenant that owns this object.
      */
     tenant: TenantEntity;
-    certId: string;
-    cert: CertEntity;
+    keyChainId: string;
+    keyChain: KeyChainEntity;
     /**
      * The full trust list JSON (generated LoTE structure)
      */
@@ -1786,29 +1869,6 @@ type TrustListVersion = {
     jwt: string;
     createdAt: string;
 };
-type DbKmsConfigDto = {
-    [key: string]: unknown;
-};
-type VaultKmsConfigDto = {
-    /**
-     * URL of the HashiCorp Vault instance. Supports ${ENV_VAR} placeholders.
-     */
-    vaultUrl: string;
-    /**
-     * Authentication token for HashiCorp Vault. Supports ${ENV_VAR} placeholders.
-     */
-    vaultToken: string;
-};
-type KmsConfigDto = {
-    /**
-     * Name of the default KMS provider. Defaults to "db" if not set.
-     */
-    defaultProvider?: string;
-    providers: {
-        db?: DbKmsConfigDto;
-        vault?: VaultKmsConfigDto;
-    };
-};
 type KmsProviderCapabilitiesDto = {
     /**
      * Whether the provider supports importing existing keys.
@@ -1825,9 +1885,17 @@ type KmsProviderCapabilitiesDto = {
 };
 type KmsProviderInfoDto = {
     /**
-     * Unique provider name (matches the key in kms.json).
+     * Unique provider ID (matches the id in kms.json).
      */
     name: string;
+    /**
+     * Type of the KMS provider (db, vault, aws-kms).
+     */
+    type: string;
+    /**
+     * Human-readable description of this provider instance.
+     */
+    description?: string;
     /**
      * Capabilities of this provider.
      */
@@ -1843,202 +1911,362 @@ type KmsProvidersResponseDto = {
      */
     default: string;
 };
-type KeyGenerateDto = {
+type CertificateInfoDto = {
     /**
-     * KMS provider to use (defaults to the configured default provider).
+     * Certificate in PEM format.
      */
-    kmsProvider?: string;
+    pem: string;
     /**
-     * Optional human-readable description for the key.
+     * Certificate subject (CN).
      */
-    description?: string;
+    subject?: string;
+    /**
+     * Certificate issuer (CN).
+     */
+    issuer?: string;
+    /**
+     * Certificate not before date.
+     */
+    notBefore?: string;
+    /**
+     * Certificate not after date.
+     */
+    notAfter?: string;
+    /**
+     * Serial number.
+     */
+    serialNumber?: string;
 };
-type Key = {
+type PublicKeyInfoDto = {
+    /**
+     * Key type (e.g., EC).
+     */
     kty: string;
-    x: string;
-    y: string;
-    crv: string;
-    d: string;
-    alg: string;
+    /**
+     * Key algorithm (e.g., ES256).
+     */
+    alg?: string;
+    /**
+     * Key ID.
+     */
+    kid?: string;
+    /**
+     * Curve (for EC keys).
+     */
+    crv?: string;
 };
-type KeyImportDto = {
+type RotationPolicyResponseDto = {
     /**
-     * KMS provider name to use for this key. Defaults to the configured default.
+     * Whether automatic key rotation is enabled.
      */
-    kmsProvider?: string;
+    enabled: boolean;
     /**
-     * The private key in JWK format.
+     * Rotation interval in days.
      */
-    key: Key;
+    intervalDays?: number;
     /**
-     * Unique identifier for the key.
+     * Certificate validity in days.
      */
-    id: string;
+    certValidityDays?: number;
     /**
-     * Description of the key.
+     * Next scheduled rotation date.
      */
-    description?: string;
+    nextRotationAt?: string;
 };
-type UpdateKeyDto = {
+type KeyChainResponseDto = {
     /**
-     * KMS provider name to use for this key. Defaults to the configured default.
+     * Unique identifier for the key chain.
      */
-    kmsProvider?: string;
+    id: string;
     /**
-     * Unique identifier for the key.
+     * Usage type of the key chain.
      */
-    id: string;
+    usageType: "access" | "attestation" | "trustList" | "statusList" | "encrypt";
+    /**
+     * Type of key chain (standalone or internalChain).
+     */
+    type: "standalone" | "internalChain";
     /**
-     * Description of the key.
+     * Human-readable description.
      */
     description?: string;
-};
-type PresentationRequest = {
     /**
-     * The type of response expected from the presentation request.
+     * KMS provider used for this key chain.
      */
-    response_type: "uri" | "dc-api";
+    kmsProvider: string;
     /**
-     * Identifier of the presentation configuration
+     * Root CA certificate (only for internalChain type).
      */
-    requestId: string;
+    rootCertificate?: CertificateInfoDto;
     /**
-     * Webhook configuration to receive the response.
-     * If not provided, the configured webhook from the configuration will be used.
+     * Active signing key's public key info.
      */
-    webhook?: WebhookConfig;
+    activePublicKey: PublicKeyInfoDto;
     /**
-     * Optional redirect URI to which the user-agent should be redirected after the presentation is completed.
-     * You can use the `{sessionId}` placeholder in the URI, which will be replaced with the actual session ID.
+     * Active signing key's certificate. Not present for encryption keys.
      */
-    redirectUri?: string;
+    activeCertificate?: CertificateInfoDto;
     /**
-     * Optional transaction data to include in the OID4VP request.
-     * If provided, this will override the transaction_data from the presentation configuration.
+     * Previous signing key's public key info (if in grace period).
      */
-    transaction_data?: Array<TransactionData>;
-};
-type FileUploadDto = {
-    file: Blob | File;
-};
-type AppControllerMainData = {
-    body?: never;
-    path?: never;
-    query?: never;
-    url: "/";
-};
-type AppControllerMainResponses = {
-    200: unknown;
-};
-type HealthControllerCheckData = {
-    body?: never;
-    path?: never;
-    query?: never;
-    url: "/health";
-};
-type HealthControllerCheckErrors = {
+    previousPublicKey?: PublicKeyInfoDto;
     /**
-     * The Health Check is not successful
+     * Previous signing key's certificate (if in grace period).
      */
-    503: {
-        status?: string;
-        info?: {
-            [key: string]: {
-                status: string;
-                [key: string]: unknown | string;
-            };
-        };
-        error?: {
-            [key: string]: {
-                status: string;
-                [key: string]: unknown | string;
-            };
-        };
-        details?: {
-            [key: string]: {
-                status: string;
-                [key: string]: unknown | string;
-            };
-        };
-    };
-};
-type HealthControllerCheckError = HealthControllerCheckErrors[keyof HealthControllerCheckErrors];
-type HealthControllerCheckResponses = {
+    previousCertificate?: CertificateInfoDto;
     /**
-     * The Health Check is successful
+     * Previous key expiry date.
      */
-    200: {
-        status?: string;
-        info?: {
-            [key: string]: {
-                status: string;
-                [key: string]: unknown | string;
-            };
-        };
-        error?: {
-            [key: string]: {
-                status: string;
-                [key: string]: unknown | string;
-            };
-        };
-        details?: {
-            [key: string]: {
-                status: string;
-                [key: string]: unknown | string;
-            };
-        };
-    };
-};
-type HealthControllerCheckResponse = HealthControllerCheckResponses[keyof HealthControllerCheckResponses];
-type AuthControllerGetOAuth2TokenData = {
-    body: ClientCredentialsDto;
-    path?: never;
-    query?: never;
-    url: "/oauth2/token";
-};
-type AuthControllerGetOAuth2TokenErrors = {
+    previousKeyExpiry?: string;
     /**
-     * Invalid client credentials
+     * Rotation policy configuration.
      */
-    401: unknown;
-};
-type AuthControllerGetOAuth2TokenResponses = {
+    rotationPolicy: RotationPolicyResponseDto;
     /**
-     * OAuth2 token response
+     * Timestamp when the key chain was created.
      */
-    200: TokenResponse;
-    201: TokenResponse;
-};
-type AuthControllerGetOAuth2TokenResponse = AuthControllerGetOAuth2TokenResponses[keyof AuthControllerGetOAuth2TokenResponses];
-type AuthControllerGetOidcDiscoveryData = {
-    body?: never;
-    path?: never;
-    query?: never;
-    url: "/.well-known/oauth-authorization-server";
+    createdAt: string;
+    /**
+     * Timestamp when the key chain was last updated.
+     */
+    updatedAt: string;
 };
-type AuthControllerGetOidcDiscoveryResponses = {
+type ExportEcJwk = {
     /**
-     * OIDC Discovery Configuration
+     * Key type
      */
-    200: unknown;
+    kty: string;
+    /**
+     * Curve
+     */
+    crv: string;
+    /**
+     * X coordinate (base64url)
+     */
+    x: string;
+    /**
+     * Y coordinate (base64url)
+     */
+    y: string;
+    /**
+     * Private key (base64url)
+     */
+    d: string;
+    /**
+     * Algorithm
+     */
+    alg?: string;
+    /**
+     * Key ID
+     */
+    kid?: string;
 };
-type AuthControllerGetGlobalJwksData = {
-    body?: never;
-    path?: never;
-    query?: never;
-    url: "/.well-known/jwks.json";
+type ExportRotationPolicyDto = {
+    /**
+     * Whether rotation is enabled.
+     */
+    enabled: boolean;
+    /**
+     * Rotation interval in days.
+     */
+    intervalDays?: number;
+    /**
+     * Certificate validity in days.
+     */
+    certValidityDays?: number;
 };
-type AuthControllerGetGlobalJwksResponses = {
+type KeyChainExportDto = {
     /**
-     * JSON Web Key Set
+     * Key chain ID.
      */
-    200: unknown;
+    id: string;
+    /**
+     * Human-readable description.
+     */
+    description?: string;
+    /**
+     * Usage type for this key chain.
+     */
+    usageType: "access" | "attestation" | "trustList" | "statusList" | "encrypt";
+    /**
+     * The private key in JWK format (EC).
+     */
+    key: ExportEcJwk;
+    /**
+     * Certificate chain in PEM format (leaf first, then intermediates/CA).
+     */
+    crt?: Array<string>;
+    /**
+     * KMS provider name.
+     */
+    kmsProvider?: string;
+    /**
+     * Rotation policy.
+     */
+    rotationPolicy?: ExportRotationPolicyDto;
 };
-type TenantControllerGetTenantsData = {
-    body?: never;
-    path?: never;
-    query?: never;
-    url: "/tenant";
+type RotationPolicyCreateDto = {
+    /**
+     * Whether automatic key rotation is enabled.
+     */
+    enabled: boolean;
+    /**
+     * Rotation interval in days. Required when enabled is true.
+     */
+    intervalDays?: number;
+    /**
+     * Certificate validity in days. Defaults to rotation interval + 30 days grace period.
+     */
+    certValidityDays?: number;
+};
+type KeyChainCreateDto = {
+    /**
+     * Usage type determines the purpose of this key chain (access, attestation, etc.).
+     */
+    usageType: "access" | "attestation" | "trustList" | "statusList" | "encrypt";
+    /**
+     * Type of key chain to create.
+     */
+    type: "standalone" | "internalChain";
+    /**
+     * Human-readable description for the key chain.
+     */
+    description?: string;
+    /**
+     * KMS provider to use (defaults to the configured default provider).
+     */
+    kmsProvider?: string;
+    /**
+     * Rotation policy configuration. Only applicable for the signing key (root CA never rotates).
+     */
+    rotationPolicy?: RotationPolicyCreateDto;
+};
+type EcJwk = {
+    kty: string;
+    x: string;
+    y: string;
+    crv: string;
+    d: string;
+    alg?: string;
+    kid?: string;
+};
+type RotationPolicyImportDto = {
+    /**
+     * Whether rotation is enabled. When true, the imported key becomes a root CA.
+     */
+    enabled: boolean;
+    /**
+     * Rotation interval in days.
+     */
+    intervalDays?: number;
+    /**
+     * Certificate validity in days.
+     */
+    certValidityDays?: number;
+};
+type KeyChainImportDto = {
+    /**
+     * ID for the key chain. If not provided, a new UUID will be generated.
+     */
+    id?: string;
+    /**
+     * The private key in JWK format.
+     */
+    key: EcJwk;
+    /**
+     * Human-readable description.
+     */
+    description?: string;
+    /**
+     * Usage type for this key chain.
+     */
+    usageType: "access" | "attestation" | "trustList" | "statusList" | "encrypt";
+    /**
+     * Certificate chain in PEM format (leaf first, then intermediates/CA).
+     */
+    crt?: Array<string>;
+    /**
+     * KMS provider to use. Defaults to 'db'.
+     */
+    kmsProvider?: string;
+    /**
+     * Rotation policy. When enabled, the imported key becomes a root CA and a new leaf key is generated.
+     */
+    rotationPolicy?: RotationPolicyImportDto;
+};
+type RotationPolicyUpdateDto = {
+    /**
+     * Whether automatic key rotation is enabled.
+     */
+    enabled?: boolean;
+    /**
+     * Rotation interval in days.
+     */
+    intervalDays?: number;
+    /**
+     * Certificate validity in days.
+     */
+    certValidityDays?: number;
+};
+type KeyChainUpdateDto = {
+    /**
+     * Human-readable description for the key chain.
+     */
+    description?: string;
+    /**
+     * Rotation policy configuration.
+     */
+    rotationPolicy?: RotationPolicyUpdateDto;
+    /**
+     * Active certificate chain in PEM format. Used for external certificate updates.
+     */
+    activeCertificate?: string;
+};
+type PresentationRequest = {
+    /**
+     * The type of response expected from the presentation request.
+     */
+    response_type: "uri" | "dc-api";
+    /**
+     * Identifier of the presentation configuration
+     */
+    requestId: string;
+    /**
+     * Webhook configuration to receive the response.
+     * If not provided, the configured webhook from the configuration will be used.
+     */
+    webhook?: WebhookConfig;
+    /**
+     * Optional redirect URI to which the user-agent should be redirected after the presentation is completed.
+     * You can use the `{sessionId}` placeholder in the URI, which will be replaced with the actual session ID.
+     */
+    redirectUri?: string;
+    /**
+     * Optional transaction data to include in the OID4VP request.
+     * If provided, this will override the transaction_data from the presentation configuration.
+     */
+    transaction_data?: Array<TransactionData>;
+};
+type FileUploadDto = {
+    file: Blob | File;
+};
+type AppControllerGetVersionData = {
+    body?: never;
+    path?: never;
+    query?: never;
+    url: "/api/version";
+};
+type AppControllerGetVersionResponses = {
+    /**
+     * Service version info
+     */
+    200: unknown;
+};
+type TenantControllerGetTenantsData = {
+    body?: never;
+    path?: never;
+    query?: never;
+    url: "/api/tenant";
 };
 type TenantControllerGetTenantsResponses = {
     200: Array<TenantEntity>;
@@ -2048,7 +2276,7 @@ type TenantControllerInitTenantData = {
     body: CreateTenantDto;
     path?: never;
     query?: never;
-    url: "/tenant";
+    url: "/api/tenant";
 };
 type TenantControllerInitTenantResponses = {
     201: {
@@ -2062,7 +2290,7 @@ type TenantControllerDeleteTenantData = {
         id: string;
     };
     query?: never;
-    url: "/tenant/{id}";
+    url: "/api/tenant/{id}";
 };
 type TenantControllerDeleteTenantResponses = {
     200: unknown;
@@ -2073,7 +2301,7 @@ type TenantControllerGetTenantData = {
         id: string;
     };
     query?: never;
-    url: "/tenant/{id}";
+    url: "/api/tenant/{id}";
 };
 type TenantControllerGetTenantResponses = {
     200: TenantEntity;
@@ -2085,7 +2313,7 @@ type TenantControllerUpdateTenantData = {
         id: string;
     };
     query?: never;
-    url: "/tenant/{id}";
+    url: "/api/tenant/{id}";
 };
 type TenantControllerUpdateTenantResponses = {
     200: TenantEntity;
@@ -2095,7 +2323,7 @@ type ClientControllerGetClientsData = {
     body?: never;
     path?: never;
     query?: never;
-    url: "/client";
+    url: "/api/client";
 };
 type ClientControllerGetClientsResponses = {
     200: Array<ClientEntity>;
@@ -2105,7 +2333,7 @@ type ClientControllerCreateClientData = {
     body: CreateClientDto;
     path?: never;
     query?: never;
-    url: "/client";
+    url: "/api/client";
 };
 type ClientControllerCreateClientResponses = {
     201: ClientEntity;
@@ -2117,7 +2345,7 @@ type ClientControllerDeleteClientData = {
         id: string;
     };
     query?: never;
-    url: "/client/{id}";
+    url: "/api/client/{id}";
 };
 type ClientControllerDeleteClientResponses = {
     200: unknown;
@@ -2128,7 +2356,7 @@ type ClientControllerGetClientData = {
         id: string;
     };
     query?: never;
-    url: "/client/{id}";
+    url: "/api/client/{id}";
 };
 type ClientControllerGetClientResponses = {
     200: ClientEntity;
@@ -2140,7 +2368,7 @@ type ClientControllerUpdateClientData = {
         id: string;
     };
     query?: never;
-    url: "/client/{id}";
+    url: "/api/client/{id}";
 };
 type ClientControllerUpdateClientResponses = {
     200: {
@@ -2154,7 +2382,7 @@ type ClientControllerGetClientSecretData = {
         id: string;
     };
     query?: never;
-    url: "/client/{id}/secret";
+    url: "/api/client/{id}/secret";
 };
 type ClientControllerGetClientSecretResponses = {
     200: ClientSecretResponseDto;
@@ -2166,113 +2394,17 @@ type ClientControllerRotateClientSecretData = {
         id: string;
     };
     query?: never;
-    url: "/client/{id}/rotate-secret";
+    url: "/api/client/{id}/rotate-secret";
 };
 type ClientControllerRotateClientSecretResponses = {
     201: ClientSecretResponseDto;
 };
 type ClientControllerRotateClientSecretResponse = ClientControllerRotateClientSecretResponses[keyof ClientControllerRotateClientSecretResponses];
-type CertControllerGetCertificatesData = {
-    body?: never;
-    path?: never;
-    query?: {
-        keyId?: string;
-    };
-    url: "/certs";
-};
-type CertControllerGetCertificatesResponses = {
-    200: Array<CertEntity>;
-};
-type CertControllerGetCertificatesResponse = CertControllerGetCertificatesResponses[keyof CertControllerGetCertificatesResponses];
-type CertControllerAddCertificateData = {
-    body: CertImportDto;
-    path?: never;
-    query?: never;
-    url: "/certs";
-};
-type CertControllerAddCertificateResponses = {
-    201: CertResponseDto;
-};
-type CertControllerAddCertificateResponse = CertControllerAddCertificateResponses[keyof CertControllerAddCertificateResponses];
-type CertControllerDeleteCertificateData = {
-    body?: never;
-    path: {
-        certId: string;
-    };
-    query?: never;
-    url: "/certs/{certId}";
-};
-type CertControllerDeleteCertificateResponses = {
-    200: unknown;
-};
-type CertControllerGetCertificateData = {
-    body?: never;
-    path: {
-        certId: string;
-    };
-    query?: never;
-    url: "/certs/{certId}";
-};
-type CertControllerGetCertificateResponses = {
-    200: CertEntity;
-};
-type CertControllerGetCertificateResponse = CertControllerGetCertificateResponses[keyof CertControllerGetCertificateResponses];
-type CertControllerUpdateCertificateData = {
-    body: CertUpdateDto;
-    path: {
-        certId: string;
-    };
-    query?: never;
-    url: "/certs/{certId}";
-};
-type CertControllerUpdateCertificateResponses = {
-    200: unknown;
-};
-type CertControllerExportConfigData = {
-    body?: never;
-    path: {
-        certId: string;
-    };
-    query?: never;
-    url: "/certs/{certId}/config";
-};
-type CertControllerExportConfigResponses = {
-    200: CertImportDto;
-};
-type CertControllerExportConfigResponse = CertControllerExportConfigResponses[keyof CertControllerExportConfigResponses];
-type StatusListControllerGetListData = {
-    body?: never;
-    path: {
-        tenantId: string;
-        listId: string;
-    };
-    query?: never;
-    url: "/{tenantId}/status-management/status-list/{listId}";
-};
-type StatusListControllerGetListResponses = {
-    200: string;
-};
-type StatusListControllerGetListResponse = StatusListControllerGetListResponses[keyof StatusListControllerGetListResponses];
-type StatusListControllerGetStatusListAggregationData = {
-    body?: never;
-    path: {
-        tenantId: string;
-    };
-    query?: never;
-    url: "/{tenantId}/status-management/status-list-aggregation";
-};
-type StatusListControllerGetStatusListAggregationResponses = {
-    /**
-     * List of status list URIs
-     */
-    200: StatusListAggregationDto;
-};
-type StatusListControllerGetStatusListAggregationResponse = StatusListControllerGetStatusListAggregationResponses[keyof StatusListControllerGetStatusListAggregationResponses];
 type StatusListConfigControllerResetConfigData = {
     body?: never;
     path?: never;
     query?: never;
-    url: "/status-list-config";
+    url: "/api/status-list-config";
 };
 type StatusListConfigControllerResetConfigResponses = {
     /**
@@ -2285,7 +2417,7 @@ type StatusListConfigControllerGetConfigData = {
     body?: never;
     path?: never;
     query?: never;
-    url: "/status-list-config";
+    url: "/api/status-list-config";
 };
 type StatusListConfigControllerGetConfigResponses = {
     /**
@@ -2298,7 +2430,7 @@ type StatusListConfigControllerUpdateConfigData = {
     body: UpdateStatusListConfigDto;
     path?: never;
     query?: never;
-    url: "/status-list-config";
+    url: "/api/status-list-config";
 };
 type StatusListConfigControllerUpdateConfigResponses = {
     /**
@@ -2311,7 +2443,7 @@ type StatusListManagementControllerGetListsData = {
     body?: never;
     path?: never;
     query?: never;
-    url: "/status-lists";
+    url: "/api/status-lists";
 };
 type StatusListManagementControllerGetListsResponses = {
     /**
@@ -2324,7 +2456,7 @@ type StatusListManagementControllerCreateListData = {
     body: CreateStatusListDto;
     path?: never;
     query?: never;
-    url: "/status-lists";
+    url: "/api/status-lists";
 };
 type StatusListManagementControllerCreateListResponses = {
     /**
@@ -2342,7 +2474,7 @@ type StatusListManagementControllerDeleteListData = {
         listId: string;
     };
     query?: never;
-    url: "/status-lists/{listId}";
+    url: "/api/status-lists/{listId}";
 };
 type StatusListManagementControllerDeleteListResponses = {
     /**
@@ -2360,7 +2492,7 @@ type StatusListManagementControllerGetListData = {
         listId: string;
     };
     query?: never;
-    url: "/status-lists/{listId}";
+    url: "/api/status-lists/{listId}";
 };
 type StatusListManagementControllerGetListResponses = {
     /**
@@ -2378,7 +2510,7 @@ type StatusListManagementControllerUpdateListData = {
         listId: string;
     };
     query?: never;
-    url: "/status-lists/{listId}";
+    url: "/api/status-lists/{listId}";
 };
 type StatusListManagementControllerUpdateListResponses = {
     /**
@@ -2391,7 +2523,7 @@ type SessionControllerGetAllSessionsData = {
     body?: never;
     path?: never;
     query?: never;
-    url: "/session";
+    url: "/api/session";
 };
 type SessionControllerGetAllSessionsResponses = {
     200: Array<Session>;
@@ -2403,7 +2535,7 @@ type SessionControllerDeleteSessionData = {
         id: string;
     };
     query?: never;
-    url: "/session/{id}";
+    url: "/api/session/{id}";
 };
 type SessionControllerDeleteSessionResponses = {
     200: unknown;
@@ -2417,17 +2549,32 @@ type SessionControllerGetSessionData = {
         id: string;
     };
     query?: never;
-    url: "/session/{id}";
+    url: "/api/session/{id}";
 };
 type SessionControllerGetSessionResponses = {
     200: Session;
 };
 type SessionControllerGetSessionResponse = SessionControllerGetSessionResponses[keyof SessionControllerGetSessionResponses];
+type SessionControllerGetSessionLogsData = {
+    body?: never;
+    path: {
+        /**
+         * The session ID
+         */
+        id: string;
+    };
+    query?: never;
+    url: "/api/session/{id}/logs";
+};
+type SessionControllerGetSessionLogsResponses = {
+    200: Array<SessionLogEntryResponseDto>;
+};
+type SessionControllerGetSessionLogsResponse = SessionControllerGetSessionLogsResponses[keyof SessionControllerGetSessionLogsResponses];
 type SessionControllerRevokeAllData = {
     body: StatusUpdateDto;
     path?: never;
     query?: never;
-    url: "/session/revoke";
+    url: "/api/session/revoke";
 };
 type SessionControllerRevokeAllResponses = {
     201: unknown;
@@ -2436,7 +2583,7 @@ type SessionConfigControllerResetConfigData = {
     body?: never;
     path?: never;
     query?: never;
-    url: "/session-config";
+    url: "/api/session-config";
 };
 type SessionConfigControllerResetConfigResponses = {
     /**
@@ -2448,7 +2595,7 @@ type SessionConfigControllerGetConfigData = {
     body?: never;
     path?: never;
     query?: never;
-    url: "/session-config";
+    url: "/api/session-config";
 };
 type SessionConfigControllerGetConfigResponses = {
     /**
@@ -2461,7 +2608,7 @@ type SessionConfigControllerUpdateConfigData = {
     body: UpdateSessionConfigDto;
     path?: never;
     query?: never;
-    url: "/session-config";
+    url: "/api/session-config";
 };
 type SessionConfigControllerUpdateConfigResponses = {
     /**
@@ -2484,7 +2631,7 @@ type SessionEventsControllerSubscribeToSessionEventsData = {
          */
         token: string;
     };
-    url: "/session/{id}/events";
+    url: "/api/session/{id}/events";
 };
 type SessionEventsControllerSubscribeToSessionEventsResponses = {
     200: unknown;
@@ -2493,7 +2640,7 @@ type IssuanceConfigControllerGetIssuanceConfigurationsData = {
     body?: never;
     path?: never;
     query?: never;
-    url: "/issuer/config";
+    url: "/api/issuer/config";
 };
 type IssuanceConfigControllerGetIssuanceConfigurationsResponses = {
     200: IssuanceConfig;
@@ -2503,7 +2650,7 @@ type IssuanceConfigControllerStoreIssuanceConfigurationData = {
     body: IssuanceDto;
     path?: never;
     query?: never;
-    url: "/issuer/config";
+    url: "/api/issuer/config";
 };
 type IssuanceConfigControllerStoreIssuanceConfigurationResponses = {
     201: {
@@ -2515,7 +2662,7 @@ type CredentialConfigControllerGetConfigsData = {
     body?: never;
     path?: never;
     query?: never;
-    url: "/issuer/credentials";
+    url: "/api/issuer/credentials";
 };
 type CredentialConfigControllerGetConfigsResponses = {
     200: Array<CredentialConfig>;
@@ -2525,7 +2672,7 @@ type CredentialConfigControllerStoreCredentialConfigurationData = {
     body: CredentialConfigCreate;
     path?: never;
     query?: never;
-    url: "/issuer/credentials";
+    url: "/api/issuer/credentials";
 };
 type CredentialConfigControllerStoreCredentialConfigurationResponses = {
     201: {
@@ -2539,7 +2686,7 @@ type CredentialConfigControllerDeleteIssuanceConfigurationData = {
         id: string;
     };
     query?: never;
-    url: "/issuer/credentials/{id}";
+    url: "/api/issuer/credentials/{id}";
 };
 type CredentialConfigControllerDeleteIssuanceConfigurationResponses = {
     200: unknown;
@@ -2550,7 +2697,7 @@ type CredentialConfigControllerGetConfigByIdData = {
         id: string;
     };
     query?: never;
-    url: "/issuer/credentials/{id}";
+    url: "/api/issuer/credentials/{id}";
 };
 type CredentialConfigControllerGetConfigByIdResponses = {
     200: CredentialConfig;
@@ -2562,7 +2709,7 @@ type CredentialConfigControllerUpdateCredentialConfigurationData = {
         id: string;
     };
     query?: never;
-    url: "/issuer/credentials/{id}";
+    url: "/api/issuer/credentials/{id}";
 };
 type CredentialConfigControllerUpdateCredentialConfigurationResponses = {
     200: {
@@ -2570,432 +2717,289 @@ type CredentialConfigControllerUpdateCredentialConfigurationResponses = {
     };
 };
 type CredentialConfigControllerUpdateCredentialConfigurationResponse = CredentialConfigControllerUpdateCredentialConfigurationResponses[keyof CredentialConfigControllerUpdateCredentialConfigurationResponses];
-type PresentationManagementControllerConfigurationData = {
+type AttributeProviderControllerGetAllData = {
     body?: never;
     path?: never;
     query?: never;
-    url: "/verifier/config";
+    url: "/api/issuer/attribute-providers";
 };
-type PresentationManagementControllerConfigurationResponses = {
-    200: Array<PresentationConfig>;
+type AttributeProviderControllerGetAllResponses = {
+    /**
+     * List of attribute providers
+     */
+    200: unknown;
 };
-type PresentationManagementControllerConfigurationResponse = PresentationManagementControllerConfigurationResponses[keyof PresentationManagementControllerConfigurationResponses];
-type PresentationManagementControllerStorePresentationConfigData = {
-    body: PresentationConfigCreateDto;
+type AttributeProviderControllerCreateData = {
+    body: CreateAttributeProviderDto;
     path?: never;
     query?: never;
-    url: "/verifier/config";
+    url: "/api/issuer/attribute-providers";
 };
-type PresentationManagementControllerStorePresentationConfigResponses = {
-    201: {
-        [key: string]: unknown;
-    };
+type AttributeProviderControllerCreateResponses = {
+    /**
+     * Attribute provider created
+     */
+    201: unknown;
 };
-type PresentationManagementControllerStorePresentationConfigResponse = PresentationManagementControllerStorePresentationConfigResponses[keyof PresentationManagementControllerStorePresentationConfigResponses];
-type PresentationManagementControllerDeleteConfigurationData = {
+type AttributeProviderControllerDeleteData = {
     body?: never;
     path: {
         id: string;
     };
     query?: never;
-    url: "/verifier/config/{id}";
+    url: "/api/issuer/attribute-providers/{id}";
 };
-type PresentationManagementControllerDeleteConfigurationResponses = {
+type AttributeProviderControllerDeleteErrors = {
+    /**
+     * Attribute provider not found
+     */
+    404: unknown;
+};
+type AttributeProviderControllerDeleteResponses = {
+    /**
+     * Attribute provider deleted
+     */
     200: unknown;
 };
-type PresentationManagementControllerGetConfigurationData = {
+type AttributeProviderControllerGetByIdData = {
     body?: never;
     path: {
         id: string;
     };
     query?: never;
-    url: "/verifier/config/{id}";
+    url: "/api/issuer/attribute-providers/{id}";
 };
-type PresentationManagementControllerGetConfigurationResponses = {
-    200: PresentationConfig;
+type AttributeProviderControllerGetByIdErrors = {
+    /**
+     * Attribute provider not found
+     */
+    404: unknown;
 };
-type PresentationManagementControllerGetConfigurationResponse = PresentationManagementControllerGetConfigurationResponses[keyof PresentationManagementControllerGetConfigurationResponses];
-type PresentationManagementControllerUpdateConfigurationData = {
-    body: PresentationConfigUpdateDto;
+type AttributeProviderControllerGetByIdResponses = {
+    /**
+     * The attribute provider
+     */
+    200: unknown;
+};
+type AttributeProviderControllerUpdateData = {
+    body: UpdateAttributeProviderDto;
     path: {
         id: string;
     };
     query?: never;
-    url: "/verifier/config/{id}";
-};
-type PresentationManagementControllerUpdateConfigurationResponses = {
-    200: {
-        [key: string]: unknown;
-    };
+    url: "/api/issuer/attribute-providers/{id}";
 };
-type PresentationManagementControllerUpdateConfigurationResponse = PresentationManagementControllerUpdateConfigurationResponses[keyof PresentationManagementControllerUpdateConfigurationResponses];
-type CacheControllerGetStatsData = {
-    body?: never;
-    path?: never;
-    query?: never;
-    url: "/cache/stats";
+type AttributeProviderControllerUpdateErrors = {
+    /**
+     * Attribute provider not found
+     */
+    404: unknown;
 };
-type CacheControllerGetStatsResponses = {
+type AttributeProviderControllerUpdateResponses = {
     /**
-     * Cache statistics
+     * Attribute provider updated
      */
     200: unknown;
 };
-type CacheControllerClearAllCachesData = {
+type WebhookEndpointControllerGetAllData = {
     body?: never;
     path?: never;
     query?: never;
-    url: "/cache";
+    url: "/api/issuer/webhook-endpoints";
 };
-type CacheControllerClearAllCachesResponses = {
+type WebhookEndpointControllerGetAllResponses = {
     /**
-     * All caches cleared successfully
+     * List of webhook endpoints
      */
-    204: void;
+    200: unknown;
 };
-type CacheControllerClearAllCachesResponse = CacheControllerClearAllCachesResponses[keyof CacheControllerClearAllCachesResponses];
-type CacheControllerClearTrustListCacheData = {
-    body?: never;
+type WebhookEndpointControllerCreateData = {
+    body: CreateWebhookEndpointDto;
     path?: never;
     query?: never;
-    url: "/cache/trust-list";
+    url: "/api/issuer/webhook-endpoints";
 };
-type CacheControllerClearTrustListCacheResponses = {
+type WebhookEndpointControllerCreateResponses = {
     /**
-     * Trust list cache cleared successfully
+     * Webhook endpoint created
      */
-    204: void;
+    201: unknown;
 };
-type CacheControllerClearTrustListCacheResponse = CacheControllerClearTrustListCacheResponses[keyof CacheControllerClearTrustListCacheResponses];
-type CacheControllerClearStatusListCacheData = {
+type WebhookEndpointControllerDeleteData = {
     body?: never;
-    path?: never;
+    path: {
+        id: string;
+    };
     query?: never;
-    url: "/cache/status-list";
+    url: "/api/issuer/webhook-endpoints/{id}";
 };
-type CacheControllerClearStatusListCacheResponses = {
+type WebhookEndpointControllerDeleteErrors = {
     /**
-     * Status list cache cleared successfully
+     * Webhook endpoint not found
      */
-    204: void;
+    404: unknown;
 };
-type CacheControllerClearStatusListCacheResponse = CacheControllerClearStatusListCacheResponses[keyof CacheControllerClearStatusListCacheResponses];
-type Oid4VciControllerCredentialData = {
+type WebhookEndpointControllerDeleteResponses = {
+    /**
+     * Webhook endpoint deleted
+     */
+    200: unknown;
+};
+type WebhookEndpointControllerGetByIdData = {
     body?: never;
     path: {
-        tenantId: string;
+        id: string;
     };
     query?: never;
-    url: "/{tenantId}/vci/credential";
-};
-type Oid4VciControllerCredentialResponses = {
-    200: {
-        [key: string]: unknown;
-    };
+    url: "/api/issuer/webhook-endpoints/{id}";
 };
-type Oid4VciControllerCredentialResponse = Oid4VciControllerCredentialResponses[keyof Oid4VciControllerCredentialResponses];
-type Oid4VciControllerDeferredCredentialData = {
-    body: DeferredCredentialRequestDto;
-    path: {
-        tenantId: string;
-    };
-    query?: never;
-    url: "/{tenantId}/vci/deferred_credential";
+type WebhookEndpointControllerGetByIdErrors = {
+    /**
+     * Webhook endpoint not found
+     */
+    404: unknown;
 };
-type Oid4VciControllerDeferredCredentialResponses = {
+type WebhookEndpointControllerGetByIdResponses = {
+    /**
+     * The webhook endpoint
+     */
     200: unknown;
 };
-type Oid4VciControllerNotificationsData = {
-    body: NotificationRequestDto;
+type WebhookEndpointControllerUpdateData = {
+    body: UpdateWebhookEndpointDto;
     path: {
-        tenantId: string;
+        id: string;
     };
     query?: never;
-    url: "/{tenantId}/vci/notification";
+    url: "/api/issuer/webhook-endpoints/{id}";
 };
-type Oid4VciControllerNotificationsResponses = {
-    201: unknown;
-};
-type Oid4VciControllerNonceData = {
-    body?: never;
-    path: {
-        tenantId: string;
-    };
-    query?: never;
-    url: "/{tenantId}/vci/nonce";
+type WebhookEndpointControllerUpdateErrors = {
+    /**
+     * Webhook endpoint not found
+     */
+    404: unknown;
 };
-type Oid4VciControllerNonceResponses = {
+type WebhookEndpointControllerUpdateResponses = {
+    /**
+     * Webhook endpoint updated
+     */
     200: unknown;
 };
-type AuthorizeControllerAuthorizeData = {
+type PresentationManagementControllerConfigurationData = {
     body?: never;
-    path: {
-        tenantId: string;
-    };
-    query?: {
-        issuer_state?: string;
-        response_type?: string;
-        client_id?: string;
-        redirect_uri?: string;
-        resource?: string;
-        scope?: string;
-        code_challenge?: string;
-        code_challenge_method?: string;
-        dpop_jkt?: string;
-        request_uri?: string;
-        auth_session?: string;
-        state?: string;
-    };
-    url: "/{tenantId}/authorize";
-};
-type AuthorizeControllerAuthorizeResponses = {
-    200: unknown;
-};
-type AuthorizeControllerParData = {
-    /**
-     * Pushed Authorization Request
-     */
-    body: AuthorizeQueries;
     path?: never;
     query?: never;
-    url: "/{tenantId}/authorize/par";
+    url: "/api/verifier/config";
 };
-type AuthorizeControllerParResponses = {
-    201: ParResponseDto;
+type PresentationManagementControllerConfigurationResponses = {
+    200: Array<PresentationConfig>;
 };
-type AuthorizeControllerParResponse = AuthorizeControllerParResponses[keyof AuthorizeControllerParResponses];
-type AuthorizeControllerTokenData = {
-    body?: never;
-    path: {
-        tenantId: string;
-    };
+type PresentationManagementControllerConfigurationResponse = PresentationManagementControllerConfigurationResponses[keyof PresentationManagementControllerConfigurationResponses];
+type PresentationManagementControllerStorePresentationConfigData = {
+    body: PresentationConfigCreateDto;
+    path?: never;
     query?: never;
-    url: "/{tenantId}/authorize/token";
+    url: "/api/verifier/config";
 };
-type AuthorizeControllerTokenResponses = {
+type PresentationManagementControllerStorePresentationConfigResponses = {
     201: {
         [key: string]: unknown;
     };
 };
-type AuthorizeControllerTokenResponse = AuthorizeControllerTokenResponses[keyof AuthorizeControllerTokenResponses];
-type InteractiveAuthorizationControllerInteractiveAuthorizationData = {
-    /**
-     * Interactive authorization request
-     */
-    body: InteractiveAuthorizationRequestDto;
-    headers: {
-        origin: string;
-    };
+type PresentationManagementControllerStorePresentationConfigResponse = PresentationManagementControllerStorePresentationConfigResponses[keyof PresentationManagementControllerStorePresentationConfigResponses];
+type PresentationManagementControllerDeleteConfigurationData = {
+    body?: never;
     path: {
-        tenantId: string;
+        id: string;
     };
     query?: never;
-    url: "/{tenantId}/authorize/interactive";
+    url: "/api/verifier/config/{id}";
 };
-type InteractiveAuthorizationControllerInteractiveAuthorizationErrors = {
-    /**
-     * Error response
-     */
-    400: InteractiveAuthorizationErrorResponseDto;
-};
-type InteractiveAuthorizationControllerInteractiveAuthorizationError = InteractiveAuthorizationControllerInteractiveAuthorizationErrors[keyof InteractiveAuthorizationControllerInteractiveAuthorizationErrors];
-type InteractiveAuthorizationControllerInteractiveAuthorizationResponses = {
-    /**
-     * Authorization code response (successful completion)
-     */
-    200: InteractiveAuthorizationCodeResponseDto;
+type PresentationManagementControllerDeleteConfigurationResponses = {
+    200: unknown;
 };
-type InteractiveAuthorizationControllerInteractiveAuthorizationResponse = InteractiveAuthorizationControllerInteractiveAuthorizationResponses[keyof InteractiveAuthorizationControllerInteractiveAuthorizationResponses];
-type InteractiveAuthorizationControllerCompleteWebAuthData = {
+type PresentationManagementControllerGetConfigurationData = {
     body?: never;
     path: {
-        authSession: string;
-        tenantId: string;
+        id: string;
     };
     query?: never;
-    url: "/{tenantId}/authorize/interactive/complete-web-auth/{authSession}";
-};
-type InteractiveAuthorizationControllerCompleteWebAuthErrors = {
-    /**
-     * Auth session not found
-     */
-    404: unknown;
+    url: "/api/verifier/config/{id}";
 };
-type InteractiveAuthorizationControllerCompleteWebAuthResponses = {
-    /**
-     * Web authorization marked as completed
-     */
-    200: unknown;
+type PresentationManagementControllerGetConfigurationResponses = {
+    200: PresentationConfig;
 };
-type ChainedAsControllerParData = {
-    body: ChainedAsParRequestDto;
-    headers?: {
-        /**
-         * DPoP proof JWT
-         */
-        DPoP?: string;
-        /**
-         * Wallet attestation JWT
-         */
-        "OAuth-Client-Attestation"?: string;
-        /**
-         * Wallet attestation proof-of-possession JWT
-         */
-        "OAuth-Client-Attestation-PoP"?: string;
-    };
+type PresentationManagementControllerGetConfigurationResponse = PresentationManagementControllerGetConfigurationResponses[keyof PresentationManagementControllerGetConfigurationResponses];
+type PresentationManagementControllerUpdateConfigurationData = {
+    body: PresentationConfigUpdateDto;
     path: {
-        /**
-         * Tenant identifier
-         */
-        tenant: string;
+        id: string;
     };
     query?: never;
-    url: "/{tenant}/chained-as/par";
+    url: "/api/verifier/config/{id}";
 };
-type ChainedAsControllerParErrors = {
-    /**
-     * Invalid request
-     */
-    400: ChainedAsErrorResponseDto;
-};
-type ChainedAsControllerParError = ChainedAsControllerParErrors[keyof ChainedAsControllerParErrors];
-type ChainedAsControllerParResponses = {
-    /**
-     * PAR request accepted
-     */
-    201: ChainedAsParResponseDto;
-};
-type ChainedAsControllerParResponse = ChainedAsControllerParResponses[keyof ChainedAsControllerParResponses];
-type ChainedAsControllerAuthorizeData = {
-    body?: never;
-    path: {
-        /**
-         * Tenant identifier
-         */
-        tenant: string;
-    };
-    query: {
-        /**
-         * Client identifier
-         */
-        client_id: string;
-        /**
-         * Request URI from PAR response
-         */
-        request_uri: string;
+type PresentationManagementControllerUpdateConfigurationResponses = {
+    200: {
+        [key: string]: unknown;
     };
-    url: "/{tenant}/chained-as/authorize";
 };
-type ChainedAsControllerAuthorizeErrors = {
-    /**
-     * Invalid request
-     */
-    400: ChainedAsErrorResponseDto;
-};
-type ChainedAsControllerAuthorizeError = ChainedAsControllerAuthorizeErrors[keyof ChainedAsControllerAuthorizeErrors];
-type ChainedAsControllerAuthorizeResponses = {
-    200: unknown;
-};
-type ChainedAsControllerCallbackData = {
+type PresentationManagementControllerUpdateConfigurationResponse = PresentationManagementControllerUpdateConfigurationResponses[keyof PresentationManagementControllerUpdateConfigurationResponses];
+type CacheControllerGetStatsData = {
     body?: never;
-    path: {
-        /**
-         * Tenant identifier
-         */
-        tenant: string;
-    };
-    query: {
-        code: string;
-        state: string;
-        error: string;
-        error_description: string;
-    };
-    url: "/{tenant}/chained-as/callback";
+    path?: never;
+    query?: never;
+    url: "/api/cache/stats";
 };
-type ChainedAsControllerCallbackErrors = {
+type CacheControllerGetStatsResponses = {
     /**
-     * Invalid callback
+     * Cache statistics
      */
-    400: ChainedAsErrorResponseDto;
-};
-type ChainedAsControllerCallbackError = ChainedAsControllerCallbackErrors[keyof ChainedAsControllerCallbackErrors];
-type ChainedAsControllerCallbackResponses = {
     200: unknown;
 };
-type ChainedAsControllerTokenData = {
-    body: ChainedAsTokenRequestDto;
-    headers?: {
-        /**
-         * DPoP proof JWT
-         */
-        DPoP?: string;
-    };
-    path: {
-        /**
-         * Tenant identifier
-         */
-        tenant: string;
-    };
+type CacheControllerClearAllCachesData = {
+    body?: never;
+    path?: never;
     query?: never;
-    url: "/{tenant}/chained-as/token";
+    url: "/api/cache";
 };
-type ChainedAsControllerTokenErrors = {
-    /**
-     * Invalid request
-     */
-    400: ChainedAsErrorResponseDto;
-    /**
-     * Invalid authorization code
-     */
-    401: ChainedAsErrorResponseDto;
-};
-type ChainedAsControllerTokenError = ChainedAsControllerTokenErrors[keyof ChainedAsControllerTokenErrors];
-type ChainedAsControllerTokenResponses = {
+type CacheControllerClearAllCachesResponses = {
     /**
-     * Token issued successfully
+     * All caches cleared successfully
      */
-    200: ChainedAsTokenResponseDto;
+    204: void;
 };
-type ChainedAsControllerTokenResponse = ChainedAsControllerTokenResponses[keyof ChainedAsControllerTokenResponses];
-type ChainedAsControllerJwksData = {
+type CacheControllerClearAllCachesResponse = CacheControllerClearAllCachesResponses[keyof CacheControllerClearAllCachesResponses];
+type CacheControllerClearTrustListCacheData = {
     body?: never;
-    path: {
-        /**
-         * Tenant identifier
-         */
-        tenant: string;
-    };
+    path?: never;
     query?: never;
-    url: "/{tenant}/chained-as/.well-known/jwks.json";
+    url: "/api/cache/trust-list";
 };
-type ChainedAsControllerJwksResponses = {
+type CacheControllerClearTrustListCacheResponses = {
     /**
-     * JWKS document
+     * Trust list cache cleared successfully
      */
-    200: unknown;
+    204: void;
 };
-type ChainedAsControllerGetMetadataData = {
+type CacheControllerClearTrustListCacheResponse = CacheControllerClearTrustListCacheResponses[keyof CacheControllerClearTrustListCacheResponses];
+type CacheControllerClearStatusListCacheData = {
     body?: never;
-    path: {
-        /**
-         * Tenant identifier
-         */
-        tenant: string;
-    };
+    path?: never;
     query?: never;
-    url: "/{tenant}/chained-as/.well-known/oauth-authorization-server";
+    url: "/api/cache/status-list";
 };
-type ChainedAsControllerGetMetadataResponses = {
+type CacheControllerClearStatusListCacheResponses = {
     /**
-     * OAuth AS metadata
+     * Status list cache cleared successfully
      */
-    200: unknown;
+    204: void;
 };
+type CacheControllerClearStatusListCacheResponse = CacheControllerClearStatusListCacheResponses[keyof CacheControllerClearStatusListCacheResponses];
 type CredentialOfferControllerGetOfferData = {
     body: OfferRequestDto;
     path?: never;
     query?: never;
-    url: "/issuer/offer";
+    url: "/api/issuer/offer";
 };
 type CredentialOfferControllerGetOfferResponses = {
     /**
@@ -3010,7 +3014,7 @@ type DeferredControllerCompleteDeferredData = {
         transactionId: string;
     };
     query?: never;
-    url: "/issuer/deferred/{transactionId}/complete";
+    url: "/api/issuer/deferred/{transactionId}/complete";
 };
 type DeferredControllerCompleteDeferredErrors = {
     /**
@@ -3031,7 +3035,7 @@ type DeferredControllerFailDeferredData = {
         transactionId: string;
     };
     query?: never;
-    url: "/issuer/deferred/{transactionId}/fail";
+    url: "/api/issuer/deferred/{transactionId}/fail";
 };
 type DeferredControllerFailDeferredErrors = {
     /**
@@ -3046,162 +3050,11 @@ type DeferredControllerFailDeferredResponses = {
     200: DeferredOperationResponse;
 };
 type DeferredControllerFailDeferredResponse = DeferredControllerFailDeferredResponses[keyof DeferredControllerFailDeferredResponses];
-type Oid4VciMetadataControllerVctData = {
-    body?: never;
-    path: {
-        id: string;
-        tenantId: string;
-    };
-    query?: never;
-    url: "/{tenantId}/credentials-metadata/vct/{id}";
-};
-type Oid4VciMetadataControllerVctResponses = {
-    200: Vct;
-};
-type Oid4VciMetadataControllerVctResponse = Oid4VciMetadataControllerVctResponses[keyof Oid4VciMetadataControllerVctResponses];
-type WellKnownControllerIssuerMetadata0Data = {
-    body?: never;
-    path: {
-        tenantId: string;
-    };
-    query?: never;
-    url: "/.well-known/openid-credential-issuer/{tenantId}";
-};
-type WellKnownControllerIssuerMetadata0Responses = {
-    200: {
-        [key: string]: unknown;
-    };
-};
-type WellKnownControllerIssuerMetadata0Response = WellKnownControllerIssuerMetadata0Responses[keyof WellKnownControllerIssuerMetadata0Responses];
-type WellKnownControllerIssuerMetadata1Data = {
-    body?: never;
-    path: {
-        tenantId: string;
-    };
-    query?: never;
-    url: "/{tenantId}/.well-known/openid-credential-issuer";
-};
-type WellKnownControllerIssuerMetadata1Responses = {
-    200: {
-        [key: string]: unknown;
-    };
-};
-type WellKnownControllerIssuerMetadata1Response = WellKnownControllerIssuerMetadata1Responses[keyof WellKnownControllerIssuerMetadata1Responses];
-type WellKnownControllerAuthzMetadata0Data = {
-    body?: never;
-    path: {
-        tenantId: string;
-    };
-    query?: never;
-    url: "/.well-known/oauth-authorization-server/{tenantId}";
-};
-type WellKnownControllerAuthzMetadata0Responses = {
-    200: unknown;
-};
-type WellKnownControllerAuthzMetadata1Data = {
-    body?: never;
-    path: {
-        tenantId: string;
-    };
-    query?: never;
-    url: "/{tenantId}/.well-known/oauth-authorization-server";
-};
-type WellKnownControllerAuthzMetadata1Responses = {
-    200: unknown;
-};
-type WellKnownControllerChainedAsMetadataData = {
-    body?: never;
-    path: {
-        tenantId: string;
-    };
-    query?: never;
-    url: "/.well-known/oauth-authorization-server/{tenantId}/chained-as";
-};
-type WellKnownControllerChainedAsMetadataResponses = {
-    200: {
-        [key: string]: unknown;
-    };
-};
-type WellKnownControllerChainedAsMetadataResponse = WellKnownControllerChainedAsMetadataResponses[keyof WellKnownControllerChainedAsMetadataResponses];
-type WellKnownControllerGetJwks0Data = {
-    body?: never;
-    path: {
-        tenantId: string;
-    };
-    query?: never;
-    url: "/.well-known/jwks.json/{tenantId}";
-};
-type WellKnownControllerGetJwks0Responses = {
-    200: JwksResponseDto;
-};
-type WellKnownControllerGetJwks0Response = WellKnownControllerGetJwks0Responses[keyof WellKnownControllerGetJwks0Responses];
-type WellKnownControllerGetJwks1Data = {
-    body?: never;
-    path: {
-        tenantId: string;
-    };
-    query?: never;
-    url: "/{tenantId}/.well-known/jwks.json";
-};
-type WellKnownControllerGetJwks1Responses = {
-    200: JwksResponseDto;
-};
-type WellKnownControllerGetJwks1Response = WellKnownControllerGetJwks1Responses[keyof WellKnownControllerGetJwks1Responses];
-type Oid4VpControllerGetRequestWithSessionData = {
-    body?: never;
-    path: {
-        session: string;
-    };
-    query?: never;
-    url: "/{session}/oid4vp/request";
-};
-type Oid4VpControllerGetRequestWithSessionResponses = {
-    200: string;
-};
-type Oid4VpControllerGetRequestWithSessionResponse = Oid4VpControllerGetRequestWithSessionResponses[keyof Oid4VpControllerGetRequestWithSessionResponses];
-type Oid4VpControllerGetPostRequestWithSessionData = {
-    body?: never;
-    path: {
-        session: string;
-    };
-    query?: never;
-    url: "/{session}/oid4vp/request";
-};
-type Oid4VpControllerGetPostRequestWithSessionResponses = {
-    201: string;
-};
-type Oid4VpControllerGetPostRequestWithSessionResponse = Oid4VpControllerGetPostRequestWithSessionResponses[keyof Oid4VpControllerGetPostRequestWithSessionResponses];
-type Oid4VpControllerGetRequestNoRedirectWithSessionData = {
-    body?: never;
-    path: {
-        session: string;
-    };
-    query?: never;
-    url: "/{session}/oid4vp/request/no-redirect";
-};
-type Oid4VpControllerGetRequestNoRedirectWithSessionResponses = {
-    200: string;
-};
-type Oid4VpControllerGetRequestNoRedirectWithSessionResponse = Oid4VpControllerGetRequestNoRedirectWithSessionResponses[keyof Oid4VpControllerGetRequestNoRedirectWithSessionResponses];
-type Oid4VpControllerGetResponseData = {
-    body: AuthorizationResponse;
-    path: {
-        session: string;
-    };
-    query?: never;
-    url: "/{session}/oid4vp";
-};
-type Oid4VpControllerGetResponseResponses = {
-    200: {
-        [key: string]: unknown;
-    };
-};
-type Oid4VpControllerGetResponseResponse = Oid4VpControllerGetResponseResponses[keyof Oid4VpControllerGetResponseResponses];
 type RegistrarControllerDeleteConfigData = {
     body?: never;
     path?: never;
     query?: never;
-    url: "/registrar/config";
+    url: "/api/registrar/config";
 };
 type RegistrarControllerDeleteConfigResponses = {
     /**
@@ -3214,7 +3067,7 @@ type RegistrarControllerGetConfigData = {
     body?: never;
     path?: never;
     query?: never;
-    url: "/registrar/config";
+    url: "/api/registrar/config";
 };
 type RegistrarControllerGetConfigErrors = {
     /**
@@ -3233,7 +3086,7 @@ type RegistrarControllerUpdateConfigData = {
     body: UpdateRegistrarConfigDto;
     path?: never;
     query?: never;
-    url: "/registrar/config";
+    url: "/api/registrar/config";
 };
 type RegistrarControllerUpdateConfigErrors = {
     /**
@@ -3256,7 +3109,7 @@ type RegistrarControllerCreateConfigData = {
     body: CreateRegistrarConfigDto;
     path?: never;
     query?: never;
-    url: "/registrar/config";
+    url: "/api/registrar/config";
 };
 type RegistrarControllerCreateConfigErrors = {
     /**
@@ -3275,7 +3128,7 @@ type RegistrarControllerCreateAccessCertificateData = {
     body: CreateAccessCertificateDto;
     path?: never;
     query?: never;
-    url: "/registrar/access-certificate";
+    url: "/api/registrar/access-certificate";
 };
 type RegistrarControllerCreateAccessCertificateErrors = {
     /**
@@ -3307,7 +3160,7 @@ type TrustListControllerGetAllTrustListsData = {
     body?: never;
     path?: never;
     query?: never;
-    url: "/trust-list";
+    url: "/api/trust-list";
 };
 type TrustListControllerGetAllTrustListsResponses = {
     200: Array<TrustList>;
@@ -3317,7 +3170,7 @@ type TrustListControllerCreateTrustListData = {
     body: TrustListCreateDto;
     path?: never;
     query?: never;
-    url: "/trust-list";
+    url: "/api/trust-list";
 };
 type TrustListControllerCreateTrustListResponses = {
     201: TrustList;
@@ -3329,7 +3182,7 @@ type TrustListControllerDeleteTrustListData = {
         id: string;
     };
     query?: never;
-    url: "/trust-list/{id}";
+    url: "/api/trust-list/{id}";
 };
 type TrustListControllerDeleteTrustListResponses = {
     200: unknown;
@@ -3340,7 +3193,7 @@ type TrustListControllerGetTrustListData = {
         id: string;
     };
     query?: never;
-    url: "/trust-list/{id}";
+    url: "/api/trust-list/{id}";
 };
 type TrustListControllerGetTrustListResponses = {
     200: TrustList;
@@ -3352,7 +3205,7 @@ type TrustListControllerUpdateTrustListData = {
         id: string;
     };
     query?: never;
-    url: "/trust-list/{id}";
+    url: "/api/trust-list/{id}";
 };
 type TrustListControllerUpdateTrustListResponses = {
     200: TrustList;
@@ -3364,7 +3217,7 @@ type TrustListControllerExportTrustListData = {
         id: string;
     };
     query?: never;
-    url: "/trust-list/{id}/export";
+    url: "/api/trust-list/{id}/export";
 };
 type TrustListControllerExportTrustListResponses = {
     200: TrustListCreateDto;
@@ -3376,7 +3229,7 @@ type TrustListControllerGetTrustListVersionsData = {
         id: string;
     };
     query?: never;
-    url: "/trust-list/{id}/versions";
+    url: "/api/trust-list/{id}/versions";
 };
 type TrustListControllerGetTrustListVersionsResponses = {
     200: Array<TrustListVersion>;
@@ -3389,117 +3242,170 @@ type TrustListControllerGetTrustListVersionData = {
         versionId: string;
     };
     query?: never;
-    url: "/trust-list/{id}/versions/{versionId}";
+    url: "/api/trust-list/{id}/versions/{versionId}";
 };
 type TrustListControllerGetTrustListVersionResponses = {
     200: TrustListVersion;
 };
 type TrustListControllerGetTrustListVersionResponse = TrustListControllerGetTrustListVersionResponses[keyof TrustListControllerGetTrustListVersionResponses];
-type TrustListPublicControllerGetTrustListJwtData = {
-    body?: never;
-    path: {
-        tenantId: string;
-        id: string;
-    };
-    query?: never;
-    url: "/{tenantId}/trust-list/{id}";
-};
-type TrustListPublicControllerGetTrustListJwtResponses = {
-    200: string;
-};
-type TrustListPublicControllerGetTrustListJwtResponse = TrustListPublicControllerGetTrustListJwtResponses[keyof TrustListPublicControllerGetTrustListJwtResponses];
-type KeyControllerGetProvidersData = {
+type KeyChainControllerGetProvidersData = {
     body?: never;
     path?: never;
     query?: never;
-    url: "/key/providers";
+    url: "/api/key-chain/providers";
 };
-type KeyControllerGetProvidersResponses = {
+type KeyChainControllerGetProvidersResponses = {
     /**
-     * List of available KMS providers
+     * List of available KMS providers with capabilities
      */
     200: KmsProvidersResponseDto;
 };
-type KeyControllerGetProvidersResponse = KeyControllerGetProvidersResponses[keyof KeyControllerGetProvidersResponses];
-type KeyControllerGetKeysData = {
+type KeyChainControllerGetProvidersResponse = KeyChainControllerGetProvidersResponses[keyof KeyChainControllerGetProvidersResponses];
+type KeyChainControllerGetAllData = {
     body?: never;
     path?: never;
     query?: never;
-    url: "/key";
+    url: "/api/key-chain";
 };
-type KeyControllerGetKeysResponses = {
-    200: Array<KeyEntity>;
+type KeyChainControllerGetAllResponses = {
+    /**
+     * List of key chains
+     */
+    200: Array<KeyChainResponseDto>;
 };
-type KeyControllerGetKeysResponse = KeyControllerGetKeysResponses[keyof KeyControllerGetKeysResponses];
-type KeyControllerAddKeyData = {
-    body: KeyImportDto;
+type KeyChainControllerGetAllResponse = KeyChainControllerGetAllResponses[keyof KeyChainControllerGetAllResponses];
+type KeyChainControllerCreateData = {
+    body: KeyChainCreateDto;
     path?: never;
     query?: never;
-    url: "/key";
+    url: "/api/key-chain";
 };
-type KeyControllerAddKeyResponses = {
+type KeyChainControllerCreateResponses = {
     /**
-     * Key imported successfully
+     * Key chain created successfully
      */
     201: unknown;
 };
-type KeyControllerDeleteKeyData = {
+type KeyChainControllerDeleteData = {
     body?: never;
     path: {
         id: string;
     };
     query?: never;
-    url: "/key/{id}";
+    url: "/api/key-chain/{id}";
+};
+type KeyChainControllerDeleteErrors = {
+    /**
+     * Key chain not found
+     */
+    404: unknown;
 };
-type KeyControllerDeleteKeyResponses = {
+type KeyChainControllerDeleteResponses = {
     /**
-     * Key deleted successfully
+     * Key chain deleted successfully
      */
     200: unknown;
 };
-type KeyControllerGetKeyData = {
+type KeyChainControllerGetByIdData = {
     body?: never;
     path: {
         id: string;
     };
     query?: never;
-    url: "/key/{id}";
+    url: "/api/key-chain/{id}";
 };
-type KeyControllerGetKeyResponses = {
-    200: KeyEntity;
+type KeyChainControllerGetByIdErrors = {
+    /**
+     * Key chain not found
+     */
+    404: unknown;
 };
-type KeyControllerGetKeyResponse = KeyControllerGetKeyResponses[keyof KeyControllerGetKeyResponses];
-type KeyControllerUpdateKeyData = {
-    body: UpdateKeyDto;
+type KeyChainControllerGetByIdResponses = {
+    /**
+     * The key chain
+     */
+    200: KeyChainResponseDto;
+};
+type KeyChainControllerGetByIdResponse = KeyChainControllerGetByIdResponses[keyof KeyChainControllerGetByIdResponses];
+type KeyChainControllerUpdateData = {
+    body: KeyChainUpdateDto;
     path: {
         id: string;
     };
     query?: never;
-    url: "/key/{id}";
+    url: "/api/key-chain/{id}";
+};
+type KeyChainControllerUpdateErrors = {
+    /**
+     * Key chain not found
+     */
+    404: unknown;
 };
-type KeyControllerUpdateKeyResponses = {
+type KeyChainControllerUpdateResponses = {
     /**
-     * Key updated successfully
+     * Key chain updated successfully
      */
     200: unknown;
 };
-type KeyControllerGenerateKeyData = {
-    body: KeyGenerateDto;
+type KeyChainControllerExportData = {
+    body?: never;
+    path: {
+        id: string;
+    };
+    query?: never;
+    url: "/api/key-chain/{id}/export";
+};
+type KeyChainControllerExportErrors = {
+    /**
+     * Key chain not found
+     */
+    404: unknown;
+};
+type KeyChainControllerExportResponses = {
+    /**
+     * Key chain export data
+     */
+    200: KeyChainExportDto;
+};
+type KeyChainControllerExportResponse = KeyChainControllerExportResponses[keyof KeyChainControllerExportResponses];
+type KeyChainControllerImportData = {
+    body: KeyChainImportDto;
     path?: never;
     query?: never;
-    url: "/key/generate";
+    url: "/api/key-chain/import";
 };
-type KeyControllerGenerateKeyResponses = {
+type KeyChainControllerImportResponses = {
     /**
-     * Key generated successfully
+     * Key chain imported successfully
      */
     201: unknown;
 };
+type KeyChainControllerRotateData = {
+    body?: never;
+    path: {
+        id: string;
+    };
+    query?: never;
+    url: "/api/key-chain/{id}/rotate";
+};
+type KeyChainControllerRotateErrors = {
+    /**
+     * Key chain not found
+     */
+    404: unknown;
+};
+type KeyChainControllerRotateResponses = {
+    /**
+     * Key chain rotated successfully
+     */
+    200: unknown;
+    201: unknown;
+};
 type VerifierOfferControllerGetOfferData = {
     body: PresentationRequest;
     path?: never;
     query?: never;
-    url: "/verifier/offer";
+    url: "/api/verifier/offer";
 };
 type VerifierOfferControllerGetOfferResponses = {
     /**
@@ -3515,7 +3421,7 @@ type StorageControllerUploadData = {
     body: FileUploadDto;
     path?: never;
     query?: never;
-    url: "/storage";
+    url: "/api/storage";
 };
 type StorageControllerUploadResponses = {
     201: {
@@ -3523,16 +3429,5 @@ type StorageControllerUploadResponses = {
     };
 };
 type StorageControllerUploadResponse = StorageControllerUploadResponses[keyof StorageControllerUploadResponses];
-type StorageControllerDownloadData = {
-    body?: never;
-    path: {
-        key: string;
-    };
-    query?: never;
-    url: "/storage/{key}";
-};
-type StorageControllerDownloadResponses = {
-    200: unknown;
-};
 
-export type { CertControllerGetCertificatesResponse as $, AllowListPolicy as A, AuthorizeQueries as B, CacheControllerClearAllCachesData as C, CacheControllerClearAllCachesResponse as D, CacheControllerClearAllCachesResponses as E, CacheControllerClearStatusListCacheData as F, CacheControllerClearStatusListCacheResponse as G, HealthControllerCheckResponse as H, CacheControllerClearStatusListCacheResponses as I, CacheControllerClearTrustListCacheData as J, CacheControllerClearTrustListCacheResponse as K, CacheControllerClearTrustListCacheResponses as L, CacheControllerGetStatsData as M, CacheControllerGetStatsResponses as N, CertControllerAddCertificateData as O, CertControllerAddCertificateResponse as P, CertControllerAddCertificateResponses as Q, CertControllerDeleteCertificateData as R, Session as S, CertControllerDeleteCertificateResponses as T, CertControllerExportConfigData as U, CertControllerExportConfigResponse as V, CertControllerExportConfigResponses as W, CertControllerGetCertificateData as X, CertControllerGetCertificateResponse as Y, CertControllerGetCertificateResponses as Z, CertControllerGetCertificatesData as _, HealthControllerCheckError as a, CreateAccessCertificateDto as a$, CertControllerGetCertificatesResponses as a0, CertControllerUpdateCertificateData as a1, CertControllerUpdateCertificateResponses as a2, CertEntity as a3, CertImportDto as a4, CertResponseDto as a5, CertUpdateDto as a6, CertUsageEntity as a7, ChainedAsConfig as a8, ChainedAsControllerAuthorizeData as a9, ChainedAsTokenResponseDto as aA, ClaimsQuery as aB, ClientControllerCreateClientData as aC, ClientControllerCreateClientResponse as aD, ClientControllerCreateClientResponses as aE, ClientControllerDeleteClientData as aF, ClientControllerDeleteClientResponses as aG, ClientControllerGetClientData as aH, ClientControllerGetClientResponse as aI, ClientControllerGetClientResponses as aJ, ClientControllerGetClientSecretData as aK, ClientControllerGetClientSecretResponse as aL, ClientControllerGetClientSecretResponses as aM, ClientControllerGetClientsData as aN, ClientControllerGetClientsResponse as aO, ClientControllerGetClientsResponses as aP, ClientControllerRotateClientSecretData as aQ, ClientControllerRotateClientSecretResponse as aR, ClientControllerRotateClientSecretResponses as aS, ClientControllerUpdateClientData as aT, ClientControllerUpdateClientResponse as aU, ClientControllerUpdateClientResponses as aV, ClientCredentialsDto as aW, ClientEntity as aX, ClientOptions as aY, ClientSecretResponseDto as aZ, CompleteDeferredDto as a_, ChainedAsControllerAuthorizeError as aa, ChainedAsControllerAuthorizeErrors as ab, ChainedAsControllerAuthorizeResponses as ac, ChainedAsControllerCallbackData as ad, ChainedAsControllerCallbackError as ae, ChainedAsControllerCallbackErrors as af, ChainedAsControllerCallbackResponses as ag, ChainedAsControllerGetMetadataData as ah, ChainedAsControllerGetMetadataResponses as ai, ChainedAsControllerJwksData as aj, ChainedAsControllerJwksResponses as ak, ChainedAsControllerParData as al, ChainedAsControllerParError as am, ChainedAsControllerParErrors as an, ChainedAsControllerParResponse as ao, ChainedAsControllerParResponses as ap, ChainedAsControllerTokenData as aq, ChainedAsControllerTokenError as ar, ChainedAsControllerTokenErrors as as, ChainedAsControllerTokenResponse as at, ChainedAsControllerTokenResponses as au, ChainedAsErrorResponseDto as av, ChainedAsParRequestDto as aw, ChainedAsParResponseDto as ax, ChainedAsTokenConfig as ay, ChainedAsTokenRequestDto as az, ApiKeyConfig as b, IssuanceConfig as b$, CreateClientDto as b0, CreateRegistrarConfigDto as b1, CreateStatusListDto as b2, CreateTenantDto as b3, CredentialConfig as b4, CredentialConfigControllerDeleteIssuanceConfigurationData as b5, CredentialConfigControllerDeleteIssuanceConfigurationResponses as b6, CredentialConfigControllerGetConfigByIdData as b7, CredentialConfigControllerGetConfigByIdResponse as b8, CredentialConfigControllerGetConfigByIdResponses as b9, DeferredCredentialRequestDto as bA, DeferredOperationResponse as bB, Display as bC, DisplayImage as bD, DisplayInfo as bE, DisplayLogo as bF, EcPublic as bG, EmbeddedDisclosurePolicy as bH, FailDeferredDto as bI, FileUploadDto as bJ, HealthControllerCheckData as bK, HealthControllerCheckErrors as bL, HealthControllerCheckResponses as bM, IaeActionOpenid4VpPresentation as bN, IaeActionRedirectToWeb as bO, ImportTenantDto as bP, InteractiveAuthorizationCodeResponseDto as bQ, InteractiveAuthorizationControllerCompleteWebAuthData as bR, InteractiveAuthorizationControllerCompleteWebAuthErrors as bS, InteractiveAuthorizationControllerCompleteWebAuthResponses as bT, InteractiveAuthorizationControllerInteractiveAuthorizationData as bU, InteractiveAuthorizationControllerInteractiveAuthorizationError as bV, InteractiveAuthorizationControllerInteractiveAuthorizationErrors as bW, InteractiveAuthorizationControllerInteractiveAuthorizationResponse as bX, InteractiveAuthorizationControllerInteractiveAuthorizationResponses as bY, InteractiveAuthorizationErrorResponseDto as bZ, InteractiveAuthorizationRequestDto as b_, CredentialConfigControllerGetConfigsData as ba, CredentialConfigControllerGetConfigsResponse as bb, CredentialConfigControllerGetConfigsResponses as bc, CredentialConfigControllerStoreCredentialConfigurationData as bd, CredentialConfigControllerStoreCredentialConfigurationResponse as be, CredentialConfigControllerStoreCredentialConfigurationResponses as bf, CredentialConfigControllerUpdateCredentialConfigurationData as bg, CredentialConfigControllerUpdateCredentialConfigurationResponse as bh, CredentialConfigControllerUpdateCredentialConfigurationResponses as bi, CredentialConfigCreate as bj, CredentialConfigUpdate as bk, CredentialOfferControllerGetOfferData as bl, CredentialOfferControllerGetOfferResponse as bm, CredentialOfferControllerGetOfferResponses as bn, CredentialQuery as bo, CredentialSetQuery as bp, DbKmsConfigDto as bq, Dcql as br, DeferredControllerCompleteDeferredData as bs, DeferredControllerCompleteDeferredErrors as bt, DeferredControllerCompleteDeferredResponse as bu, DeferredControllerCompleteDeferredResponses as bv, DeferredControllerFailDeferredData as bw, DeferredControllerFailDeferredErrors as bx, DeferredControllerFailDeferredResponse as by, DeferredControllerFailDeferredResponses as bz, AppControllerMainData as c, PolicyCredential as c$, IssuanceConfigControllerGetIssuanceConfigurationsData as c0, IssuanceConfigControllerGetIssuanceConfigurationsResponse as c1, IssuanceConfigControllerGetIssuanceConfigurationsResponses as c2, IssuanceConfigControllerStoreIssuanceConfigurationData as c3, IssuanceConfigControllerStoreIssuanceConfigurationResponse as c4, IssuanceConfigControllerStoreIssuanceConfigurationResponses as c5, IssuanceDto as c6, IssuerMetadataCredentialConfig as c7, JwksResponseDto as c8, Key as c9, OfferRequestDto as cA, OfferResponse as cB, Oid4VciControllerCredentialData as cC, Oid4VciControllerCredentialResponse as cD, Oid4VciControllerCredentialResponses as cE, Oid4VciControllerDeferredCredentialData as cF, Oid4VciControllerDeferredCredentialResponses as cG, Oid4VciControllerNonceData as cH, Oid4VciControllerNonceResponses as cI, Oid4VciControllerNotificationsData as cJ, Oid4VciControllerNotificationsResponses as cK, Oid4VciMetadataControllerVctData as cL, Oid4VciMetadataControllerVctResponse as cM, Oid4VciMetadataControllerVctResponses as cN, Oid4VpControllerGetPostRequestWithSessionData as cO, Oid4VpControllerGetPostRequestWithSessionResponse as cP, Oid4VpControllerGetPostRequestWithSessionResponses as cQ, Oid4VpControllerGetRequestNoRedirectWithSessionData as cR, Oid4VpControllerGetRequestNoRedirectWithSessionResponse as cS, Oid4VpControllerGetRequestNoRedirectWithSessionResponses as cT, Oid4VpControllerGetRequestWithSessionData as cU, Oid4VpControllerGetRequestWithSessionResponse as cV, Oid4VpControllerGetRequestWithSessionResponses as cW, Oid4VpControllerGetResponseData as cX, Oid4VpControllerGetResponseResponse as cY, Oid4VpControllerGetResponseResponses as cZ, ParResponseDto as c_, KeyControllerAddKeyData as ca, KeyControllerAddKeyResponses as cb, KeyControllerDeleteKeyData as cc, KeyControllerDeleteKeyResponses as cd, KeyControllerGenerateKeyData as ce, KeyControllerGenerateKeyResponses as cf, KeyControllerGetKeyData as cg, KeyControllerGetKeyResponse as ch, KeyControllerGetKeyResponses as ci, KeyControllerGetKeysData as cj, KeyControllerGetKeysResponse as ck, KeyControllerGetKeysResponses as cl, KeyControllerGetProvidersData as cm, KeyControllerGetProvidersResponse as cn, KeyControllerGetProvidersResponses as co, KeyControllerUpdateKeyData as cp, KeyControllerUpdateKeyResponses as cq, KeyEntity as cr, KeyGenerateDto as cs, KeyImportDto as ct, KmsConfigDto as cu, KmsProviderCapabilitiesDto as cv, KmsProviderInfoDto as cw, KmsProvidersResponseDto as cx, NoneTrustPolicy as cy, NotificationRequestDto as cz, AppControllerMainResponses as d, SessionEventsControllerSubscribeToSessionEventsData as d$, PresentationAttachment as d0, PresentationConfig as d1, PresentationConfigCreateDto as d2, PresentationConfigUpdateDto as d3, PresentationDuringIssuanceConfig as d4, PresentationManagementControllerConfigurationData as d5, PresentationManagementControllerConfigurationResponse as d6, PresentationManagementControllerConfigurationResponses as d7, PresentationManagementControllerDeleteConfigurationData as d8, PresentationManagementControllerDeleteConfigurationResponses as d9, RegistrarControllerGetConfigResponses as dA, RegistrarControllerUpdateConfigData as dB, RegistrarControllerUpdateConfigErrors as dC, RegistrarControllerUpdateConfigResponse as dD, RegistrarControllerUpdateConfigResponses as dE, RegistrationCertificateRequest as dF, RoleDto as dG, RootOfTrustPolicy as dH, SchemaResponse as dI, SessionConfigControllerGetConfigData as dJ, SessionConfigControllerGetConfigResponse as dK, SessionConfigControllerGetConfigResponses as dL, SessionConfigControllerResetConfigData as dM, SessionConfigControllerResetConfigResponses as dN, SessionConfigControllerUpdateConfigData as dO, SessionConfigControllerUpdateConfigResponse as dP, SessionConfigControllerUpdateConfigResponses as dQ, SessionControllerDeleteSessionData as dR, SessionControllerDeleteSessionResponses as dS, SessionControllerGetAllSessionsData as dT, SessionControllerGetAllSessionsResponse as dU, SessionControllerGetAllSessionsResponses as dV, SessionControllerGetSessionData as dW, SessionControllerGetSessionResponse as dX, SessionControllerGetSessionResponses as dY, SessionControllerRevokeAllData as dZ, SessionControllerRevokeAllResponses as d_, PresentationManagementControllerGetConfigurationData as da, PresentationManagementControllerGetConfigurationResponse as db, PresentationManagementControllerGetConfigurationResponses as dc, PresentationManagementControllerStorePresentationConfigData as dd, PresentationManagementControllerStorePresentationConfigResponse as de, PresentationManagementControllerStorePresentationConfigResponses as df, PresentationManagementControllerUpdateConfigurationData as dg, PresentationManagementControllerUpdateConfigurationResponse as dh, PresentationManagementControllerUpdateConfigurationResponses as di, PresentationRequest as dj, RegistrarConfigEntity as dk, RegistrarControllerCreateAccessCertificateData as dl, RegistrarControllerCreateAccessCertificateErrors as dm, RegistrarControllerCreateAccessCertificateResponse as dn, RegistrarControllerCreateAccessCertificateResponses as dp, RegistrarControllerCreateConfigData as dq, RegistrarControllerCreateConfigErrors as dr, RegistrarControllerCreateConfigResponse as ds, RegistrarControllerCreateConfigResponses as dt, RegistrarControllerDeleteConfigData as du, RegistrarControllerDeleteConfigResponse as dv, RegistrarControllerDeleteConfigResponses as dw, RegistrarControllerGetConfigData as dx, RegistrarControllerGetConfigErrors as dy, RegistrarControllerGetConfigResponse as dz, AttestationBasedPolicy as e, TrustListControllerDeleteTrustListData as e$, SessionEventsControllerSubscribeToSessionEventsResponses as e0, SessionStorageConfig as e1, StatusListAggregationDto as e2, StatusListConfig as e3, StatusListConfigControllerGetConfigData as e4, StatusListConfigControllerGetConfigResponse as e5, StatusListConfigControllerGetConfigResponses as e6, StatusListConfigControllerResetConfigData as e7, StatusListConfigControllerResetConfigResponse as e8, StatusListConfigControllerResetConfigResponses as e9, StatusUpdateDto as eA, StorageControllerDownloadData as eB, StorageControllerDownloadResponses as eC, StorageControllerUploadData as eD, StorageControllerUploadResponse as eE, StorageControllerUploadResponses as eF, TenantControllerDeleteTenantData as eG, TenantControllerDeleteTenantResponses as eH, TenantControllerGetTenantData as eI, TenantControllerGetTenantResponse as eJ, TenantControllerGetTenantResponses as eK, TenantControllerGetTenantsData as eL, TenantControllerGetTenantsResponse as eM, TenantControllerGetTenantsResponses as eN, TenantControllerInitTenantData as eO, TenantControllerInitTenantResponse as eP, TenantControllerInitTenantResponses as eQ, TenantControllerUpdateTenantData as eR, TenantControllerUpdateTenantResponse as eS, TenantControllerUpdateTenantResponses as eT, TenantEntity as eU, TokenResponse as eV, TransactionData as eW, TrustList as eX, TrustListControllerCreateTrustListData as eY, TrustListControllerCreateTrustListResponse as eZ, TrustListControllerCreateTrustListResponses as e_, StatusListConfigControllerUpdateConfigData as ea, StatusListConfigControllerUpdateConfigResponse as eb, StatusListConfigControllerUpdateConfigResponses as ec, StatusListControllerGetListData as ed, StatusListControllerGetListResponse as ee, StatusListControllerGetListResponses as ef, StatusListControllerGetStatusListAggregationData as eg, StatusListControllerGetStatusListAggregationResponse as eh, StatusListControllerGetStatusListAggregationResponses as ei, StatusListImportDto as ej, StatusListManagementControllerCreateListData as ek, StatusListManagementControllerCreateListResponse as el, StatusListManagementControllerCreateListResponses as em, StatusListManagementControllerDeleteListData as en, StatusListManagementControllerDeleteListResponse as eo, StatusListManagementControllerDeleteListResponses as ep, StatusListManagementControllerGetListData as eq, StatusListManagementControllerGetListResponse as er, StatusListManagementControllerGetListResponses as es, StatusListManagementControllerGetListsData as et, StatusListManagementControllerGetListsResponse as eu, StatusListManagementControllerGetListsResponses as ev, StatusListManagementControllerUpdateListData as ew, StatusListManagementControllerUpdateListResponse as ex, StatusListManagementControllerUpdateListResponses as ey, StatusListResponseDto as ez, AuthControllerGetGlobalJwksData as f, TrustListControllerDeleteTrustListResponses as f0, TrustListControllerExportTrustListData as f1, TrustListControllerExportTrustListResponse as f2, TrustListControllerExportTrustListResponses as f3, TrustListControllerGetAllTrustListsData as f4, TrustListControllerGetAllTrustListsResponse as f5, TrustListControllerGetAllTrustListsResponses as f6, TrustListControllerGetTrustListData as f7, TrustListControllerGetTrustListResponse as f8, TrustListControllerGetTrustListResponses as f9, VerifierOfferControllerGetOfferResponse as fA, VerifierOfferControllerGetOfferResponses as fB, WebHookAuthConfigHeader as fC, WebHookAuthConfigNone as fD, WebhookConfig as fE, WellKnownControllerAuthzMetadata0Data as fF, WellKnownControllerAuthzMetadata0Responses as fG, WellKnownControllerAuthzMetadata1Data as fH, WellKnownControllerAuthzMetadata1Responses as fI, WellKnownControllerChainedAsMetadataData as fJ, WellKnownControllerChainedAsMetadataResponse as fK, WellKnownControllerChainedAsMetadataResponses as fL, WellKnownControllerGetJwks0Data as fM, WellKnownControllerGetJwks0Response as fN, WellKnownControllerGetJwks0Responses as fO, WellKnownControllerGetJwks1Data as fP, WellKnownControllerGetJwks1Response as fQ, WellKnownControllerGetJwks1Responses as fR, WellKnownControllerIssuerMetadata0Data as fS, WellKnownControllerIssuerMetadata0Response as fT, WellKnownControllerIssuerMetadata0Responses as fU, WellKnownControllerIssuerMetadata1Data as fV, WellKnownControllerIssuerMetadata1Response as fW, WellKnownControllerIssuerMetadata1Responses as fX, TrustListControllerGetTrustListVersionData as fa, TrustListControllerGetTrustListVersionResponse as fb, TrustListControllerGetTrustListVersionResponses as fc, TrustListControllerGetTrustListVersionsData as fd, TrustListControllerGetTrustListVersionsResponse as fe, TrustListControllerGetTrustListVersionsResponses as ff, TrustListControllerUpdateTrustListData as fg, TrustListControllerUpdateTrustListResponse as fh, TrustListControllerUpdateTrustListResponses as fi, TrustListCreateDto as fj, TrustListPublicControllerGetTrustListJwtData as fk, TrustListPublicControllerGetTrustListJwtResponse as fl, TrustListPublicControllerGetTrustListJwtResponses as fm, TrustListVersion as fn, TrustedAuthorityQuery as fo, UpdateClientDto as fp, UpdateKeyDto as fq, UpdateRegistrarConfigDto as fr, UpdateSessionConfigDto as fs, UpdateStatusListConfigDto as ft, UpdateStatusListDto as fu, UpdateTenantDto as fv, UpstreamOidcConfig as fw, VaultKmsConfigDto as fx, Vct as fy, VerifierOfferControllerGetOfferData as fz, AuthControllerGetGlobalJwksResponses as g, AuthControllerGetOAuth2TokenData as h, AuthControllerGetOAuth2TokenErrors as i, AuthControllerGetOAuth2TokenResponse as j, AuthControllerGetOAuth2TokenResponses as k, AuthControllerGetOidcDiscoveryData as l, AuthControllerGetOidcDiscoveryResponses as m, AuthenticationMethodAuth as n, AuthenticationMethodNone as o, AuthenticationMethodPresentation as p, AuthenticationUrlConfig as q, AuthorizationResponse as r, AuthorizeControllerAuthorizeData as s, AuthorizeControllerAuthorizeResponses as t, AuthorizeControllerParData as u, AuthorizeControllerParResponse as v, AuthorizeControllerParResponses as w, AuthorizeControllerTokenData as x, AuthorizeControllerTokenResponse as y, AuthorizeControllerTokenResponses as z };
+export type { ClientControllerGetClientResponses as $, AllowListPolicy as A, CacheControllerClearStatusListCacheData as B, CacheControllerClearAllCachesData as C, CacheControllerClearStatusListCacheResponse as D, CacheControllerClearStatusListCacheResponses as E, CacheControllerClearTrustListCacheData as F, CacheControllerClearTrustListCacheResponse as G, CacheControllerClearTrustListCacheResponses as H, CacheControllerGetStatsData as I, CacheControllerGetStatsResponses as J, CertificateInfoDto as K, ChainedAsConfig as L, ChainedAsErrorResponseDto as M, ChainedAsParRequestDto as N, ChainedAsParResponseDto as O, ChainedAsTokenConfig as P, ChainedAsTokenRequestDto as Q, ChainedAsTokenResponseDto as R, Session as S, ClaimsQuery as T, ClientControllerCreateClientData as U, ClientControllerCreateClientResponse as V, ClientControllerCreateClientResponses as W, ClientControllerDeleteClientData as X, ClientControllerDeleteClientResponses as Y, ClientControllerGetClientData as Z, ClientControllerGetClientResponse as _, ApiKeyConfig as a, EmbeddedDisclosurePolicy as a$, ClientControllerGetClientSecretData as a0, ClientControllerGetClientSecretResponse as a1, ClientControllerGetClientSecretResponses as a2, ClientControllerGetClientsData as a3, ClientControllerGetClientsResponse as a4, ClientControllerGetClientsResponses as a5, ClientControllerRotateClientSecretData as a6, ClientControllerRotateClientSecretResponse as a7, ClientControllerRotateClientSecretResponses as a8, ClientControllerUpdateClientData as a9, CredentialConfigControllerUpdateCredentialConfigurationData as aA, CredentialConfigControllerUpdateCredentialConfigurationResponse as aB, CredentialConfigControllerUpdateCredentialConfigurationResponses as aC, CredentialConfigCreate as aD, CredentialConfigUpdate as aE, CredentialOfferControllerGetOfferData as aF, CredentialOfferControllerGetOfferResponse as aG, CredentialOfferControllerGetOfferResponses as aH, CredentialQuery as aI, CredentialSetQuery as aJ, Dcql as aK, DeferredControllerCompleteDeferredData as aL, DeferredControllerCompleteDeferredErrors as aM, DeferredControllerCompleteDeferredResponse as aN, DeferredControllerCompleteDeferredResponses as aO, DeferredControllerFailDeferredData as aP, DeferredControllerFailDeferredErrors as aQ, DeferredControllerFailDeferredResponse as aR, DeferredControllerFailDeferredResponses as aS, DeferredCredentialRequestDto as aT, DeferredOperationResponse as aU, Display as aV, DisplayImage as aW, DisplayInfo as aX, DisplayLogo as aY, EcJwk as aZ, EcPublic as a_, ClientControllerUpdateClientResponse as aa, ClientControllerUpdateClientResponses as ab, ClientCredentialsDto as ac, ClientEntity as ad, ClientOptions as ae, ClientSecretResponseDto as af, CompleteDeferredDto as ag, CreateAccessCertificateDto as ah, CreateAttributeProviderDto as ai, CreateClientDto as aj, CreateRegistrarConfigDto as ak, CreateStatusListDto as al, CreateTenantDto as am, CreateWebhookEndpointDto as an, CredentialConfig as ao, CredentialConfigControllerDeleteIssuanceConfigurationData as ap, CredentialConfigControllerDeleteIssuanceConfigurationResponses as aq, CredentialConfigControllerGetConfigByIdData as ar, CredentialConfigControllerGetConfigByIdResponse as as, CredentialConfigControllerGetConfigByIdResponses as at, CredentialConfigControllerGetConfigsData as au, CredentialConfigControllerGetConfigsResponse as av, CredentialConfigControllerGetConfigsResponses as aw, CredentialConfigControllerStoreCredentialConfigurationData as ax, CredentialConfigControllerStoreCredentialConfigurationResponse as ay, CredentialConfigControllerStoreCredentialConfigurationResponses as az, AppControllerGetVersionData as b, PolicyCredential as b$, ExportEcJwk as b0, ExportRotationPolicyDto as b1, ExternalTrustListEntity as b2, FailDeferredDto as b3, FileUploadDto as b4, IaeActionOpenid4VpPresentation as b5, IaeActionRedirectToWeb as b6, ImportTenantDto as b7, InteractiveAuthorizationCodeResponseDto as b8, InteractiveAuthorizationErrorResponseDto as b9, KeyChainControllerGetByIdResponse as bA, KeyChainControllerGetByIdResponses as bB, KeyChainControllerGetProvidersData as bC, KeyChainControllerGetProvidersResponse as bD, KeyChainControllerGetProvidersResponses as bE, KeyChainControllerImportData as bF, KeyChainControllerImportResponses as bG, KeyChainControllerRotateData as bH, KeyChainControllerRotateErrors as bI, KeyChainControllerRotateResponses as bJ, KeyChainControllerUpdateData as bK, KeyChainControllerUpdateErrors as bL, KeyChainControllerUpdateResponses as bM, KeyChainCreateDto as bN, KeyChainEntity as bO, KeyChainExportDto as bP, KeyChainImportDto as bQ, KeyChainResponseDto as bR, KeyChainUpdateDto as bS, KmsProviderCapabilitiesDto as bT, KmsProviderInfoDto as bU, KmsProvidersResponseDto as bV, NoneTrustPolicy as bW, NotificationRequestDto as bX, OfferRequestDto as bY, OfferResponse as bZ, ParResponseDto as b_, InteractiveAuthorizationRequestDto as ba, InternalTrustListEntity as bb, IssuanceConfig as bc, IssuanceConfigControllerGetIssuanceConfigurationsData as bd, IssuanceConfigControllerGetIssuanceConfigurationsResponse as be, IssuanceConfigControllerGetIssuanceConfigurationsResponses as bf, IssuanceConfigControllerStoreIssuanceConfigurationData as bg, IssuanceConfigControllerStoreIssuanceConfigurationResponse as bh, IssuanceConfigControllerStoreIssuanceConfigurationResponses as bi, IssuanceDto as bj, IssuerMetadataCredentialConfig as bk, JwksResponseDto as bl, KeyChainControllerCreateData as bm, KeyChainControllerCreateResponses as bn, KeyChainControllerDeleteData as bo, KeyChainControllerDeleteErrors as bp, KeyChainControllerDeleteResponses as bq, KeyChainControllerExportData as br, KeyChainControllerExportErrors as bs, KeyChainControllerExportResponse as bt, KeyChainControllerExportResponses as bu, KeyChainControllerGetAllData as bv, KeyChainControllerGetAllResponse as bw, KeyChainControllerGetAllResponses as bx, KeyChainControllerGetByIdData as by, KeyChainControllerGetByIdErrors as bz, AppControllerGetVersionResponses as c, SessionControllerGetSessionLogsData as c$, PresentationAttachment as c0, PresentationConfig as c1, PresentationConfigCreateDto as c2, PresentationConfigUpdateDto as c3, PresentationDuringIssuanceConfig as c4, PresentationManagementControllerConfigurationData as c5, PresentationManagementControllerConfigurationResponse as c6, PresentationManagementControllerConfigurationResponses as c7, PresentationManagementControllerDeleteConfigurationData as c8, PresentationManagementControllerDeleteConfigurationResponses as c9, RegistrarControllerGetConfigResponses as cA, RegistrarControllerUpdateConfigData as cB, RegistrarControllerUpdateConfigErrors as cC, RegistrarControllerUpdateConfigResponse as cD, RegistrarControllerUpdateConfigResponses as cE, RegistrationCertificateRequest as cF, RoleDto as cG, RootOfTrustPolicy as cH, RotationPolicyCreateDto as cI, RotationPolicyImportDto as cJ, RotationPolicyResponseDto as cK, RotationPolicyUpdateDto as cL, SchemaResponse as cM, SessionConfigControllerGetConfigData as cN, SessionConfigControllerGetConfigResponse as cO, SessionConfigControllerGetConfigResponses as cP, SessionConfigControllerResetConfigData as cQ, SessionConfigControllerResetConfigResponses as cR, SessionConfigControllerUpdateConfigData as cS, SessionConfigControllerUpdateConfigResponse as cT, SessionConfigControllerUpdateConfigResponses as cU, SessionControllerDeleteSessionData as cV, SessionControllerDeleteSessionResponses as cW, SessionControllerGetAllSessionsData as cX, SessionControllerGetAllSessionsResponse as cY, SessionControllerGetAllSessionsResponses as cZ, SessionControllerGetSessionData as c_, PresentationManagementControllerGetConfigurationData as ca, PresentationManagementControllerGetConfigurationResponse as cb, PresentationManagementControllerGetConfigurationResponses as cc, PresentationManagementControllerStorePresentationConfigData as cd, PresentationManagementControllerStorePresentationConfigResponse as ce, PresentationManagementControllerStorePresentationConfigResponses as cf, PresentationManagementControllerUpdateConfigurationData as cg, PresentationManagementControllerUpdateConfigurationResponse as ch, PresentationManagementControllerUpdateConfigurationResponses as ci, PresentationRequest as cj, PublicKeyInfoDto as ck, RegistrarConfigEntity as cl, RegistrarControllerCreateAccessCertificateData as cm, RegistrarControllerCreateAccessCertificateErrors as cn, RegistrarControllerCreateAccessCertificateResponse as co, RegistrarControllerCreateAccessCertificateResponses as cp, RegistrarControllerCreateConfigData as cq, RegistrarControllerCreateConfigErrors as cr, RegistrarControllerCreateConfigResponse as cs, RegistrarControllerCreateConfigResponses as ct, RegistrarControllerDeleteConfigData as cu, RegistrarControllerDeleteConfigResponse as cv, RegistrarControllerDeleteConfigResponses as cw, RegistrarControllerGetConfigData as cx, RegistrarControllerGetConfigErrors as cy, RegistrarControllerGetConfigResponse as cz, AttestationBasedPolicy as d, TrustListControllerCreateTrustListResponses as d$, SessionControllerGetSessionLogsResponse as d0, SessionControllerGetSessionLogsResponses as d1, SessionControllerGetSessionResponse as d2, SessionControllerGetSessionResponses as d3, SessionControllerRevokeAllData as d4, SessionControllerRevokeAllResponses as d5, SessionEventsControllerSubscribeToSessionEventsData as d6, SessionEventsControllerSubscribeToSessionEventsResponses as d7, SessionLogEntryResponseDto as d8, SessionStorageConfig as d9, StatusListManagementControllerUpdateListResponse as dA, StatusListManagementControllerUpdateListResponses as dB, StatusListResponseDto as dC, StatusUpdateDto as dD, StorageControllerUploadData as dE, StorageControllerUploadResponse as dF, StorageControllerUploadResponses as dG, TenantControllerDeleteTenantData as dH, TenantControllerDeleteTenantResponses as dI, TenantControllerGetTenantData as dJ, TenantControllerGetTenantResponse as dK, TenantControllerGetTenantResponses as dL, TenantControllerGetTenantsData as dM, TenantControllerGetTenantsResponse as dN, TenantControllerGetTenantsResponses as dO, TenantControllerInitTenantData as dP, TenantControllerInitTenantResponse as dQ, TenantControllerInitTenantResponses as dR, TenantControllerUpdateTenantData as dS, TenantControllerUpdateTenantResponse as dT, TenantControllerUpdateTenantResponses as dU, TenantEntity as dV, TokenResponse as dW, TransactionData as dX, TrustList as dY, TrustListControllerCreateTrustListData as dZ, TrustListControllerCreateTrustListResponse as d_, StatusListAggregationDto as da, StatusListConfig as db, StatusListConfigControllerGetConfigData as dc, StatusListConfigControllerGetConfigResponse as dd, StatusListConfigControllerGetConfigResponses as de, StatusListConfigControllerResetConfigData as df, StatusListConfigControllerResetConfigResponse as dg, StatusListConfigControllerResetConfigResponses as dh, StatusListConfigControllerUpdateConfigData as di, StatusListConfigControllerUpdateConfigResponse as dj, StatusListConfigControllerUpdateConfigResponses as dk, StatusListImportDto as dl, StatusListManagementControllerCreateListData as dm, StatusListManagementControllerCreateListResponse as dn, StatusListManagementControllerCreateListResponses as dp, StatusListManagementControllerDeleteListData as dq, StatusListManagementControllerDeleteListResponse as dr, StatusListManagementControllerDeleteListResponses as ds, StatusListManagementControllerGetListData as dt, StatusListManagementControllerGetListResponse as du, StatusListManagementControllerGetListResponses as dv, StatusListManagementControllerGetListsData as dw, StatusListManagementControllerGetListsResponse as dx, StatusListManagementControllerGetListsResponses as dy, StatusListManagementControllerUpdateListData as dz, AttributeProviderControllerCreateData as e, TrustListControllerDeleteTrustListData as e0, TrustListControllerDeleteTrustListResponses as e1, TrustListControllerExportTrustListData as e2, TrustListControllerExportTrustListResponse as e3, TrustListControllerExportTrustListResponses as e4, TrustListControllerGetAllTrustListsData as e5, TrustListControllerGetAllTrustListsResponse as e6, TrustListControllerGetAllTrustListsResponses as e7, TrustListControllerGetTrustListData as e8, TrustListControllerGetTrustListResponse as e9, VerifierOfferControllerGetOfferResponses as eA, WebHookAuthConfigHeader as eB, WebHookAuthConfigNone as eC, WebhookConfig as eD, WebhookEndpointControllerCreateData as eE, WebhookEndpointControllerCreateResponses as eF, WebhookEndpointControllerDeleteData as eG, WebhookEndpointControllerDeleteErrors as eH, WebhookEndpointControllerDeleteResponses as eI, WebhookEndpointControllerGetAllData as eJ, WebhookEndpointControllerGetAllResponses as eK, WebhookEndpointControllerGetByIdData as eL, WebhookEndpointControllerGetByIdErrors as eM, WebhookEndpointControllerGetByIdResponses as eN, WebhookEndpointControllerUpdateData as eO, WebhookEndpointControllerUpdateErrors as eP, WebhookEndpointControllerUpdateResponses as eQ, WebhookEndpointEntity as eR, TrustListControllerGetTrustListResponses as ea, TrustListControllerGetTrustListVersionData as eb, TrustListControllerGetTrustListVersionResponse as ec, TrustListControllerGetTrustListVersionResponses as ed, TrustListControllerGetTrustListVersionsData as ee, TrustListControllerGetTrustListVersionsResponse as ef, TrustListControllerGetTrustListVersionsResponses as eg, TrustListControllerUpdateTrustListData as eh, TrustListControllerUpdateTrustListResponse as ei, TrustListControllerUpdateTrustListResponses as ej, TrustListCreateDto as ek, TrustListEntityInfo as el, TrustListVersion as em, TrustedAuthorityQuery as en, UpdateAttributeProviderDto as eo, UpdateClientDto as ep, UpdateRegistrarConfigDto as eq, UpdateSessionConfigDto as er, UpdateStatusListConfigDto as es, UpdateStatusListDto as et, UpdateTenantDto as eu, UpdateWebhookEndpointDto as ev, UpstreamOidcConfig as ew, Vct as ex, VerifierOfferControllerGetOfferData as ey, VerifierOfferControllerGetOfferResponse as ez, AttributeProviderControllerCreateResponses as f, AttributeProviderControllerDeleteData as g, AttributeProviderControllerDeleteErrors as h, AttributeProviderControllerDeleteResponses as i, AttributeProviderControllerGetAllData as j, AttributeProviderControllerGetAllResponses as k, AttributeProviderControllerGetByIdData as l, AttributeProviderControllerGetByIdErrors as m, AttributeProviderControllerGetByIdResponses as n, AttributeProviderControllerUpdateData as o, AttributeProviderControllerUpdateErrors as p, AttributeProviderControllerUpdateResponses as q, AttributeProviderEntity as r, AuthenticationMethodAuth as s, AuthenticationMethodNone as t, AuthenticationMethodPresentation as u, AuthenticationUrlConfig as v, AuthorizationResponse as w, AuthorizeQueries as x, CacheControllerClearAllCachesResponse as y, CacheControllerClearAllCachesResponses as z };