npm - @fusionauth/typescript-client - Versions diffs - 1.29.0 → 1.31.0 - Mend

@fusionauth/typescript-client 1.29.0 → 1.31.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (7) hide show

package/build/src/FusionAuthClient.d.ts +632 -57
package/build/src/FusionAuthClient.js +266 -14
package/build/src/FusionAuthClient.js.map +1 -1
package/dist/fusionauth-typescript-client.js +267 -15
package/dist/fusionauth-typescript-client.min.js +1 -1
package/dist/fusionauth-typescript-client.min.js.map +1 -1
package/package.json +2 -2

package/build/src/FusionAuthClient.d.ts CHANGED Viewed

@@ -208,6 +208,14 @@ export declare class FusionAuthClient {
      * @returns {Promise<ClientResponse<MemberResponse>>}
      */
     createGroupMembers(request: MemberRequest): Promise<ClientResponse<MemberResponse>>;
+    /**
+     * Creates an IP Access Control List. You can optionally specify an Id on this create request, if one is not provided one will be generated.
+     *
+     * @param {UUID} accessControlListId (Optional) The Id for the IP Access Control List. If not provided a secure random UUID will be generated.
+     * @param {IPAccessControlListRequest} request The request object that contains all of the information used to create the IP Access Control List.
+     * @returns {Promise<ClientResponse<IPAccessControlListResponse>>}
+     */
+    createIPAccessControlList(accessControlListId: UUID, request: IPAccessControlListRequest): Promise<ClientResponse<IPAccessControlListResponse>>;
     /**
      * Creates an identity provider. You can optionally specify an Id for the identity provider, if not provided one will be generated.
      *
@@ -455,6 +463,13 @@ export declare class FusionAuthClient {
      * @returns {Promise<ClientResponse<void>>}
      */
     deleteGroupMembers(request: MemberDeleteRequest): Promise<ClientResponse<void>>;
+    /**
+     * Deletes the IP Access Control List for the given Id.
+     *
+     * @param {UUID} ipAccessControlListId The Id of the IP Access Control List to delete.
+     * @returns {Promise<ClientResponse<void>>}
+     */
+    deleteIPAccessControlList(ipAccessControlListId: UUID): Promise<ClientResponse<void>>;
     /**
      * Deletes the identity provider for the given Id.
      *
@@ -499,7 +514,17 @@ export declare class FusionAuthClient {
      */
     deleteRegistration(userId: UUID, applicationId: UUID): Promise<ClientResponse<void>>;
     /**
-     * Deletes the tenant for the given Id.
+     * Deletes the user registration for the given user and application along with the given JSON body that contains the event information.
+     *
+     * @param {UUID} userId The Id of the user whose registration is being deleted.
+     * @param {UUID} applicationId The Id of the application to remove the registration for.
+     * @param {RegistrationDeleteRequest} request The request body that contains the event information.
+     * @returns {Promise<ClientResponse<void>>}
+     */
+    deleteRegistrationWithRequest(userId: UUID, applicationId: UUID, request: RegistrationDeleteRequest): Promise<ClientResponse<void>>;
+    /**
+     * Deletes the tenant based on the given Id on the URL. This permanently deletes all information, metrics, reports and data associated
+     * with the tenant and everything under the tenant (applications, users, etc).
      *
      * @param {UUID} tenantId The Id of the tenant to delete.
      * @returns {Promise<ClientResponse<void>>}
@@ -513,6 +538,15 @@ export declare class FusionAuthClient {
      * @returns {Promise<ClientResponse<void>>}
      */
     deleteTenantAsync(tenantId: UUID): Promise<ClientResponse<void>>;
+    /**
+     * Deletes the tenant based on the given request (sent to the API as JSON). This permanently deletes all information, metrics, reports and data associated
+     * with the tenant and everything under the tenant (applications, users, etc).
+     *
+     * @param {UUID} tenantId The Id of the tenant to delete.
+     * @param {TenantDeleteRequest} request The request object that contains all of the information used to delete the user.
+     * @returns {Promise<ClientResponse<void>>}
+     */
+    deleteTenantWithRequest(tenantId: UUID, request: TenantDeleteRequest): Promise<ClientResponse<void>>;
     /**
      * Deletes the theme for the given Id.
      *
@@ -552,6 +586,15 @@ export declare class FusionAuthClient {
      * @returns {Promise<ClientResponse<IdentityProviderLinkResponse>>}
      */
     deleteUserLink(identityProviderId: UUID, identityProviderUserId: string, userId: UUID): Promise<ClientResponse<IdentityProviderLinkResponse>>;
+    /**
+     * Deletes the user based on the given request (sent to the API as JSON). This permanently deletes all information, metrics, reports and data associated
+     * with the user.
+     *
+     * @param {UUID} userId The Id of the user to delete (required).
+     * @param {UserDeleteSingleRequest} request The request object that contains all of the information used to delete the user.
+     * @returns {Promise<ClientResponse<void>>}
+     */
+    deleteUserWithRequest(userId: UUID, request: UserDeleteSingleRequest): Promise<ClientResponse<void>>;
     /**
      * Deletes the users with the given ids, or users matching the provided JSON query or queryString.
      * The order of preference is ids, query and then queryString, it is recommended to only provide one of the three for the request.
@@ -592,6 +635,14 @@ export declare class FusionAuthClient {
      * @returns {Promise<ClientResponse<void>>}
      */
     disableTwoFactor(userId: UUID, methodId: string, code: string): Promise<ClientResponse<void>>;
+    /**
+     * Disable Two Factor authentication for a user using a JSON body rather than URL parameters.
+     *
+     * @param {UUID} userId The Id of the User for which you're disabling Two Factor authentication.
+     * @param {TwoFactorDisableRequest} request The request information that contains the code and methodId along with any event information.
+     * @returns {Promise<ClientResponse<void>>}
+     */
+    disableTwoFactorWithRequest(userId: UUID, request: TwoFactorDisableRequest): Promise<ClientResponse<void>>;
     /**
      * Enable Two Factor authentication for a user.
      *
@@ -813,6 +864,14 @@ export declare class FusionAuthClient {
      * @returns {Promise<ClientResponse<void>>}
      */
     logout(global: boolean, refreshToken: string): Promise<ClientResponse<void>>;
+    /**
+     * The Logout API is intended to be used to remove the refresh token and access token cookies if they exist on the
+     * client and revoke the refresh token stored. This API takes the refresh token in the JSON body.
+     *
+     * @param {LogoutRequest} request The request object that contains all of the information used to logout the user.
+     * @returns {Promise<ClientResponse<void>>}
+     */
+    logoutWithRequest(request: LogoutRequest): Promise<ClientResponse<void>>;
     /**
      * Retrieves the identity provider for the given domain. A 200 response code indicates the domain is managed
      * by a registered identity provider. A 404 indicates the domain is not managed.
@@ -1315,6 +1374,13 @@ export declare class FusionAuthClient {
      * @returns {Promise<ClientResponse<GroupResponse>>}
      */
     retrieveGroups(): Promise<ClientResponse<GroupResponse>>;
+    /**
+     * Retrieves the IP Access Control List with the given Id.
+     *
+     * @param {UUID} ipAccessControlListId The Id of the IP Access Control List.
+     * @returns {Promise<ClientResponse<IPAccessControlListResponse>>}
+     */
+    retrieveIPAccessControlList(ipAccessControlListId: UUID): Promise<ClientResponse<IPAccessControlListResponse>>;
     /**
      * Retrieves the identity provider for the given id or all of the identity providers if the id is null.
      *
@@ -1513,6 +1579,12 @@ export declare class FusionAuthClient {
      * @returns {Promise<ClientResponse<PendingResponse>>}
      */
     retrievePendingChildren(parentEmail: string): Promise<ClientResponse<PendingResponse>>;
+    /**
+     * Retrieves the FusionAuth Reactor metrics.
+     *
+     * @returns {Promise<ClientResponse<ReactorMetricsResponse>>}
+     */
+    retrieveReactorMetrics(): Promise<ClientResponse<ReactorMetricsResponse>>;
     /**
      * Retrieves the FusionAuth Reactor status.
      *
@@ -1854,6 +1926,14 @@ export declare class FusionAuthClient {
      * @returns {Promise<ClientResponse<void>>}
      */
     revokeRefreshTokensByUserIdForApplication(userId: UUID, applicationId: UUID): Promise<ClientResponse<void>>;
+    /**
+     * Revokes refresh tokens using the information in the JSON body. The handling for this method is the same as the revokeRefreshToken method
+     * and is based on the information you provide in the RefreshDeleteRequest object. See that method for additional information.
+     *
+     * @param {RefreshTokenRevokeRequest} request The request information used to revoke the refresh tokens.
+     * @returns {Promise<ClientResponse<void>>}
+     */
+    revokeRefreshTokensWithRequest(request: RefreshTokenRevokeRequest): Promise<ClientResponse<void>>;
     /**
      * Revokes a single User consent by Id.
      *
@@ -1903,6 +1983,13 @@ export declare class FusionAuthClient {
      * @returns {Promise<ClientResponse<EventLogSearchResponse>>}
      */
     searchEventLogs(request: EventLogSearchRequest): Promise<ClientResponse<EventLogSearchResponse>>;
+    /**
+     * Searches the IP Access Control Lists with the specified criteria and pagination.
+     *
+     * @param {IPAccessControlListSearchRequest} request The search criteria and pagination information.
+     * @returns {Promise<ClientResponse<IPAccessControlListSearchResponse>>}
+     */
+    searchIPAccessControlLists(request: IPAccessControlListSearchRequest): Promise<ClientResponse<IPAccessControlListSearchResponse>>;
     /**
      * Searches the login records with the specified criteria and pagination.
      *
@@ -2133,6 +2220,14 @@ export declare class FusionAuthClient {
      * @returns {Promise<ClientResponse<GroupResponse>>}
      */
     updateGroup(groupId: UUID, request: GroupRequest): Promise<ClientResponse<GroupResponse>>;
+    /**
+     * Updates the IP Access Control List with the given Id.
+     *
+     * @param {UUID} accessControlListId The Id of the IP Access Control List to update.
+     * @param {IPAccessControlListRequest} request The request that contains all of the new IP Access Control List information.
+     * @returns {Promise<ClientResponse<IPAccessControlListResponse>>}
+     */
+    updateIPAccessControlList(accessControlListId: UUID, request: IPAccessControlListRequest): Promise<ClientResponse<IPAccessControlListResponse>>;
     /**
      * Updates the identity provider with the given Id.
      *
@@ -2278,6 +2373,21 @@ export declare class FusionAuthClient {
      * @returns {Promise<ClientResponse<ValidateResponse>>}
      */
     validateJWT(encodedJWT: string): Promise<ClientResponse<ValidateResponse>>;
+    /**
+     * It's a JWT vending machine!
+     *
+     * Issue a new access token (JWT) with the provided claims in the request. This JWT is not scoped to a tenant or user, it is a free form
+     * token that will contain what claims you provide.
+     * <p>
+     * The iat, exp and jti claims will be added by FusionAuth, all other claims must be provided by the caller.
+     *
+     * If a TTL is not provided in the request, the TTL will be retrieved from the default Tenant or the Tenant specified on the request either
+     * by way of the X-FusionAuth-TenantId request header, or a tenant scoped API key.
+     *
+     * @param {JWTVendRequest} request The request that contains all of the claims for this JWT.
+     * @returns {Promise<ClientResponse<JWTVendResponse>>}
+     */
+    vendJWT(request: JWTVendRequest): Promise<ClientResponse<JWTVendResponse>>;
     /**
      * Confirms a email verification. The Id given is usually from an email sent to the user.
      *
@@ -2363,7 +2473,7 @@ export interface ActionData {
  *
  * @author Brian Pontarelli
  */
-export interface ActionRequest {
+export interface ActionRequest extends BaseEventRequest {
     action?: ActionData;
     broadcast?: boolean;
 }
@@ -2401,6 +2511,7 @@ export declare enum Algorithm {
 export interface APIKey {
     id?: UUID;
     insertInstant?: number;
+    ipAccessControlListId?: UUID;
     key?: string;
     keyManager?: boolean;
     lastUpdateInstant?: number;
@@ -2455,6 +2566,7 @@ export interface AppleIdentityProvider extends BaseIdentityProvider<AppleApplica
  * @author Seth Musselman
  */
 export interface Application {
+    accessControlConfiguration?: ApplicationAccessControlConfiguration;
     active?: boolean;
     authenticationTokenConfiguration?: AuthenticationTokenConfiguration;
     cleanSpeakConfiguration?: CleanSpeakConfiguration;
@@ -2483,11 +2595,27 @@ export interface Application {
     verificationStrategy?: VerificationStrategy;
     verifyRegistration?: boolean;
 }
+/**
+ * @author Daniel DeGroff
+ */
+export interface ApplicationAccessControlConfiguration {
+    uiIPAccessControlListId?: UUID;
+}
 export interface ApplicationEmailConfiguration {
+    emailUpdateEmailTemplateId?: UUID;
     emailVerificationEmailTemplateId?: UUID;
+    emailVerifiedEmailTemplateId?: UUID;
     forgotPasswordEmailTemplateId?: UUID;
+    loginIdInUseOnCreateEmailTemplateId?: UUID;
+    loginIdInUseOnUpdateEmailTemplateId?: UUID;
+    loginNewDeviceEmailTemplateId?: UUID;
+    loginSuspiciousEmailTemplateId?: UUID;
     passwordlessEmailTemplateId?: UUID;
+    passwordResetSuccessEmailTemplateId?: UUID;
+    passwordUpdateEmailTemplateId?: UUID;
     setPasswordEmailTemplateId?: UUID;
+    twoFactorMethodAddEmailTemplateId?: UUID;
+    twoFactorMethodRemoveEmailTemplateId?: UUID;
 }
 /**
  * Events that are bound to applications.
@@ -2523,7 +2651,7 @@ export interface ApplicationRegistrationDeletePolicy {
  *
  * @author Brian Pontarelli
  */
-export interface ApplicationRequest {
+export interface ApplicationRequest extends BaseEventRequest {
     application?: Application;
     role?: ApplicationRole;
     webhookIds?: Array<UUID>;
@@ -2588,6 +2716,14 @@ export interface AuditLog {
 export interface AuditLogConfiguration {
     delete?: DeleteConfiguration;
 }
+/**
+ * Event event to an audit log was created.
+ *
+ * @author Daniel DeGroff
+ */
+export interface AuditLogCreateEvent extends BaseEvent {
+    auditLog?: AuditLog;
+}
 /**
  * @author Daniel DeGroff
  */
@@ -2597,7 +2733,7 @@ export interface AuditLogExportRequest extends BaseExportRequest {
 /**
  * @author Brian Pontarelli
  */
-export interface AuditLogRequest {
+export interface AuditLogRequest extends BaseEventRequest {
     auditLog?: AuditLog;
 }
 /**
@@ -2614,6 +2750,9 @@ export interface AuditLogResponse {
 export interface AuditLogSearchCriteria extends BaseSearchCriteria {
     end?: number;
     message?: string;
+    newValue?: string;
+    oldValue?: string;
+    reason?: string;
     start?: number;
     user?: string;
 }
@@ -2632,6 +2771,12 @@ export interface AuditLogSearchResponse {
     auditLogs?: Array<AuditLog>;
     total?: number;
 }
+/**
+ * @author Brett Pontarelli
+ */
+export declare enum AuthenticationThreats {
+    ImpossibleTravel = "ImpossibleTravel"
+}
 export interface AuthenticationTokenConfiguration extends Enableable {
 }
 /**
@@ -2669,7 +2814,18 @@ export interface BaseElasticSearchCriteria extends BaseSearchCriteria {
 export interface BaseEvent {
     createInstant?: number;
     id?: UUID;
+    info?: EventInfo;
     tenantId?: UUID;
+    type?: EventType;
+}
+/**
+ * Base class for requests that can contain event information. This event information is used when sending Webhooks or emails
+ * during the transaction. The caller is responsible for ensuring that the event information is correct.
+ *
+ * @author Brian Pontarelli
+ */
+export interface BaseEventRequest {
+    eventInfo?: EventInfo;
 }
 /**
  * @author Daniel DeGroff
@@ -2700,10 +2856,11 @@ export interface BaseIdentityProviderApplicationConfiguration extends Enableable
 /**
  * @author Daniel DeGroff
  */
-export interface BaseLoginRequest {
+export interface BaseLoginRequest extends BaseEventRequest {
     applicationId?: UUID;
     ipAddress?: string;
     metaData?: MetaData;
+    newDevice?: boolean;
     noJWT?: boolean;
 }
 export interface BaseMessengerConfiguration {
@@ -2767,6 +2924,15 @@ export declare enum CanonicalizationMethod {
     inclusive = "inclusive",
     inclusive_with_comments = "inclusive_with_comments"
 }
+/**
+ * @author Brett Pontarelli
+ */
+export declare enum CaptchaMethod {
+    GoogleRecaptchaV2 = "GoogleRecaptchaV2",
+    GoogleRecaptchaV3 = "GoogleRecaptchaV3",
+    HCaptcha = "HCaptcha",
+    HCaptchaEnterprise = "HCaptchaEnterprise"
+}
 export interface CertificateInformation {
     issuer?: string;
     md5Fingerprint?: string;
@@ -2793,7 +2959,8 @@ export declare enum ChangePasswordReason {
  *
  * @author Brian Pontarelli
  */
-export interface ChangePasswordRequest {
+export interface ChangePasswordRequest extends BaseEventRequest {
+    applicationId?: UUID;
     currentPassword?: string;
     loginId?: string;
     password?: string;
@@ -2946,13 +3113,6 @@ export interface DailyActiveUserReportResponse {
     dailyActiveUsers?: Array<Count>;
     total?: number;
 }
-/**
- * Helper for dealing with default values.
- *
- * @author Brian Pontarelli
- */
-export interface DefaultTools {
-}
 export interface DeleteConfiguration extends Enableable {
     numberOfDaysToRetain?: number;
 }
@@ -2995,6 +3155,7 @@ export declare enum DeviceType {
  */
 export interface DisplayableRawLogin extends RawLogin {
     applicationName?: string;
+    location?: Location;
     loginId?: string;
 }
 /**
@@ -3033,14 +3194,24 @@ export interface EmailAddress {
 export interface EmailConfiguration {
     defaultFromEmail?: string;
     defaultFromName?: string;
+    emailUpdateEmailTemplateId?: UUID;
+    emailVerifiedEmailTemplateId?: UUID;
     forgotPasswordEmailTemplateId?: UUID;
     host?: string;
+    loginIdInUseOnCreateEmailTemplateId?: UUID;
+    loginIdInUseOnUpdateEmailTemplateId?: UUID;
+    loginNewDeviceEmailTemplateId?: UUID;
+    loginSuspiciousEmailTemplateId?: UUID;
     password?: string;
     passwordlessEmailTemplateId?: UUID;
+    passwordResetSuccessEmailTemplateId?: UUID;
+    passwordUpdateEmailTemplateId?: UUID;
     port?: number;
     properties?: string;
     security?: EmailSecurityType;
     setPasswordEmailTemplateId?: UUID;
+    twoFactorMethodAddEmailTemplateId?: UUID;
+    twoFactorMethodRemoveEmailTemplateId?: UUID;
     unverified?: EmailUnverifiedOptions;
     username?: string;
     verificationEmailTemplateId?: UUID;
@@ -3356,6 +3527,21 @@ export interface EventConfiguration {
 export interface EventConfigurationData extends Enableable {
     transactionType?: TransactionType;
 }
+/**
+ * Information about a user event (login, register, etc) that helps identify the source of the event (location, device type, OS, etc).
+ *
+ * @author Brian Pontarelli
+ */
+export interface EventInfo {
+    data?: Record<string, any>;
+    deviceDescription?: string;
+    deviceName?: string;
+    deviceType?: string;
+    ipAddress?: string;
+    location?: Location;
+    os?: string;
+    userAgent?: string;
+}
 /**
  * Event log used internally by FusionAuth to help developers debug hooks, Webhooks, email templates, etc.
  *
@@ -3370,6 +3556,14 @@ export interface EventLog {
 export interface EventLogConfiguration {
     numberToRetain?: number;
 }
+/**
+ * Event event to an event log was created.
+ *
+ * @author Daniel DeGroff
+ */
+export interface EventLogCreateEvent extends BaseEvent {
+    eventLog?: EventLog;
+}
 /**
  * Event log response.
  *
@@ -3428,24 +3622,44 @@ export interface EventRequest {
  * @author Brian Pontarelli
  */
 export declare enum EventType {
-    UserDelete = "user.delete",
-    UserCreate = "user.create",
-    UserUpdate = "user.update",
-    UserDeactivate = "user.deactivate",
-    UserBulkCreate = "user.bulk.create",
-    UserReactivate = "user.reactivate",
-    UserAction = "user.action",
+    JWTPublicKeyUpdate = "jwt.public-key.update",
     JWTRefreshTokenRevoke = "jwt.refresh-token.revoke",
     JWTRefresh = "jwt.refresh",
-    JWTPublicKeyUpdate = "jwt.public-key.update",
-    UserLoginSuccess = "user.login.success",
+    AuditLogCreate = "audit-log.create",
+    EventLogCreate = "event-log.create",
+    KickstartSuccess = "kickstart.success",
+    UserAction = "user.action",
+    UserBulkCreate = "user.bulk.create",
+    UserCreate = "user.create",
+    UserCreateComplete = "user.create.complete",
+    UserDeactivate = "user.deactivate",
+    UserDelete = "user.delete",
+    UserDeleteComplete = "user.delete.complete",
+    UserLoginIdDuplicateOnCreate = "user.loginId.duplicate.create",
+    UserLoginIdDuplicateOnUpdate = "user.loginId.duplicate.update",
+    UserEmailUpdate = "user.email.update",
+    UserEmailVerified = "user.email.verified",
     UserLoginFailed = "user.login.failed",
+    UserLoginNewDevice = "user.login.new-device",
+    UserLoginSuccess = "user.login.success",
+    UserLoginSuspicious = "user.login.suspicious",
+    UserPasswordBreach = "user.password.breach",
+    UserPasswordResetSend = "user.password.reset.send",
+    UserPasswordResetStart = "user.password.reset.start",
+    UserPasswordResetSuccess = "user.password.reset.success",
+    UserPasswordUpdate = "user.password.update",
+    UserReactivate = "user.reactivate",
     UserRegistrationCreate = "user.registration.create",
-    UserRegistrationUpdate = "user.registration.update",
+    UserRegistrationCreateComplete = "user.registration.create.complete",
     UserRegistrationDelete = "user.registration.delete",
+    UserRegistrationDeleteComplete = "user.registration.delete.complete",
+    UserRegistrationUpdate = "user.registration.update",
+    UserRegistrationUpdateComplete = "user.registration.update.complete",
     UserRegistrationVerified = "user.registration.verified",
-    UserEmailVerified = "user.email.verified",
-    UserPasswordBreach = "user.password.breach",
+    UserTwoFactorMethodAdd = "user.two-factor.method.add",
+    UserTwoFactorMethodRemove = "user.two-factor.method.remove",
+    UserUpdate = "user.update",
+    UserUpdateComplete = "user.update.complete",
     Test = "test"
 }
 /**
@@ -3614,7 +3828,7 @@ export declare enum FamilyRole {
  *
  * @author Brian Pontarelli
  */
-export interface ForgotPasswordRequest {
+export interface ForgotPasswordRequest extends BaseEventRequest {
     applicationId?: UUID;
     changePasswordId?: string;
     email?: string;
@@ -4043,12 +4257,19 @@ export declare enum IdentityProviderType {
  *
  * @author Brian Pontarelli
  */
-export interface ImportRequest {
+export interface ImportRequest extends BaseEventRequest {
     encryptionScheme?: string;
     factor?: number;
     users?: Array<User>;
     validateDbConstraints?: boolean;
 }
+/**
+ * A marker interface indicating this event is not scoped to a tenant and will be sent to all webhooks.
+ *
+ * @author Daniel DeGroff
+ */
+export interface InstanceEvent extends NonTransactionalEvent {
+}
 /**
  * The Integration Request
  *
@@ -4075,30 +4296,69 @@ export interface Integrations {
     kafka?: KafkaConfiguration;
 }
 /**
- * Counts for a period.
- *
- * @author Brian Pontarelli
+ * @author Daniel DeGroff
  */
-export interface IntervalCount {
-    applicationId?: UUID;
-    count?: number;
-    decrementedCount?: number;
-    period?: number;
+export interface IntrospectResponse extends Record<string, any> {
+}
+/**
+ * @author Brett Guy
+ */
+export interface IPAccessControlEntry {
+    action?: IPAccessControlEntryAction;
+    endIPAddress?: string;
+    startIPAddress?: string;
+}
+/**
+ * @author Brett Guy
+ */
+export declare enum IPAccessControlEntryAction {
+    Allow = "Allow",
+    Block = "Block"
+}
+/**
+ * @author Brett Guy
+ */
+export interface IPAccessControlList {
+    data?: Record<string, any>;
+    entries?: Array<IPAccessControlEntry>;
+    id?: UUID;
+    insertInstant?: number;
+    lastUpdateInstant?: number;
+    name?: string;
+}
+/**
+ * @author Brett Guy
+ */
+export interface IPAccessControlListRequest {
+    ipAccessControlList?: IPAccessControlList;
+}
+/**
+ * @author Brett Guy
+ */
+export interface IPAccessControlListResponse {
+    ipAccessControlList?: IPAccessControlList;
+    ipAccessControlLists?: Array<IPAccessControlList>;
+}
+/**
+ * @author Brett Guy
+ */
+export interface IPAccessControlListSearchCriteria extends BaseSearchCriteria {
+    name?: string;
 }
 /**
- * A user over an period (for daily and monthly active user calculations).
+ * Search request for IP ACLs .
  *
- * @author Brian Pontarelli
+ * @author Brett Guy
  */
-export interface IntervalUser {
-    applicationId?: UUID;
-    period?: number;
-    userId?: UUID;
+export interface IPAccessControlListSearchRequest {
+    search?: IPAccessControlListSearchCriteria;
 }
 /**
- * @author Daniel DeGroff
+ * @author Brett Guy
  */
-export interface IntrospectResponse extends Record<string, any> {
+export interface IPAccessControlListSearchResponse {
+    ipAccessControlLists?: Array<IPAccessControlList>;
+    total?: number;
 }
 /**
  * @author Daniel DeGroff
@@ -4224,6 +4484,20 @@ export interface JWTRefreshTokenRevokeEvent extends BaseEvent {
     user?: User;
     userId?: UUID;
 }
+/**
+ * @author Daniel DeGroff
+ */
+export interface JWTVendRequest {
+    claims?: Record<string, any>;
+    keyId?: UUID;
+    timeToLiveInSeconds?: number;
+}
+/**
+ * @author Daniel DeGroff
+ */
+export interface JWTVendResponse {
+    token?: string;
+}
 /**
  * @author Daniel DeGroff
  */
@@ -4305,10 +4579,13 @@ export declare enum KeyUse {
     VerifyOnly = "VerifyOnly"
 }
 /**
- * A JavaScript lambda function that is executed during certain events inside FusionAuth.
+ * Event event to indicate kickstart has been successfully completed.
  *
- * @author Brian Pontarelli
+ * @author Daniel DeGroff
  */
+export interface KickstartSuccessEvent extends BaseEvent {
+    instanceId?: UUID;
+}
 export interface Lambda extends Enableable {
     body?: string;
     debug?: boolean;
@@ -4427,6 +4704,20 @@ export interface LocalizedIntegers extends Record<string, number> {
  */
 export interface LocalizedStrings extends Record<string, string> {
 }
+/**
+ * Location information. Useful for IP addresses and other displayable data objects.
+ *
+ * @author Brian Pontarelli
+ */
+export interface Location {
+    city?: string;
+    country?: string;
+    displayString?: string;
+    latitude?: number;
+    longitude?: number;
+    region?: string;
+    zipcode?: string;
+}
 /**
  * A historical state of a user log event. Since events can be modified, this stores the historical state.
  *
@@ -4528,6 +4819,7 @@ export interface LoginResponse {
     refreshToken?: string;
     registrationVerificationId?: string;
     state?: Record<string, any>;
+    threatsDetected?: Array<AuthenticationThreats>;
     token?: string;
     twoFactorId?: string;
     twoFactorTrustId?: string;
@@ -4540,6 +4832,15 @@ export declare enum LogoutBehavior {
     RedirectOnly = "RedirectOnly",
     AllApplications = "AllApplications"
 }
+/**
+ * Request for the Logout API that can be used as an alternative to URL parameters.
+ *
+ * @author Brian Pontarelli
+ */
+export interface LogoutRequest extends BaseEventRequest {
+    global?: boolean;
+    refreshToken?: string;
+}
 /**
  * @author Daniel DeGroff
  */
@@ -4710,11 +5011,11 @@ export interface NintendoIdentityProvider extends BaseIdentityProvider<NintendoA
     scope?: string;
 }
 /**
- * Helper methods for normalizing values.
+ * A marker interface indicating this event cannot be made transactional.
  *
- * @author Brian Pontarelli
+ * @author Daniel DeGroff
  */
-export interface Normalizer {
+export interface NonTransactionalEvent {
 }
 /**
  * @author Daniel DeGroff
@@ -5022,6 +5323,24 @@ export interface PublicKeyResponse {
     publicKey?: string;
     publicKeys?: Record<string, string>;
 }
+/**
+ * @author Daniel DeGroff
+ */
+export interface RateLimitedRequestConfiguration extends Enableable {
+    limit?: number;
+    timePeriodInSeconds?: number;
+}
+/**
+ * @author Daniel DeGroff
+ */
+export declare enum RateLimitedRequestType {
+    FailedLogin = "FailedLogin",
+    ForgotPassword = "ForgotPassword",
+    SendEmailVerification = "SendEmailVerification",
+    SendPasswordless = "SendPasswordless",
+    SendRegistrationVerification = "SendRegistrationVerification",
+    SendTwoFactor = "SendTwoFactor"
+}
 /**
  * Raw login information for each time a user logs into an application.
  *
@@ -5040,6 +5359,7 @@ export declare enum ReactorFeatureStatus {
     ACTIVE = "ACTIVE",
     DISCONNECTED = "DISCONNECTED",
     PENDING = "PENDING",
+    DISABLED = "DISABLED",
     UNKNOWN = "UNKNOWN"
 }
 /**
@@ -5048,6 +5368,12 @@ export declare enum ReactorFeatureStatus {
 export interface ReactorMetrics {
     breachedPasswordMetrics?: Record<UUID, BreachedPasswordTenantMetric>;
 }
+/**
+ * @author Daniel DeGroff
+ */
+export interface ReactorMetricsResponse {
+    metrics?: ReactorMetrics;
+}
 /**
  * Request for managing FusionAuth Reactor and licenses.
  *
@@ -5061,7 +5387,6 @@ export interface ReactorRequest {
  * @author Daniel DeGroff
  */
 export interface ReactorResponse {
-    metrics?: ReactorMetrics;
     status?: ReactorStatus;
 }
 /**
@@ -5076,6 +5401,7 @@ export interface ReactorStatus {
     connectors?: ReactorFeatureStatus;
     entityManagement?: ReactorFeatureStatus;
     licensed?: boolean;
+    threatDetection?: ReactorFeatureStatus;
 }
 /**
  * Response for the user login report.
@@ -5088,7 +5414,7 @@ export interface RecentLoginResponse {
 /**
  * @author Daniel DeGroff
  */
-export interface RefreshRequest {
+export interface RefreshRequest extends BaseEventRequest {
     refreshToken?: string;
     token?: string;
 }
@@ -5109,6 +5435,7 @@ export interface RefreshToken {
     insertInstant?: number;
     metaData?: MetaData;
     startInstant?: number;
+    tenantId?: UUID;
     token?: string;
     userId?: UUID;
 }
@@ -5144,6 +5471,16 @@ export interface RefreshTokenRevocationPolicy {
     onLoginPrevented?: boolean;
     onPasswordChanged?: boolean;
 }
+/**
+ * Request for the Refresh Token API to revoke a refresh token rather than using the URL parameters.
+ *
+ * @author Brian Pontarelli
+ */
+export interface RefreshTokenRevokeRequest extends BaseEventRequest {
+    applicationId?: UUID;
+    token?: string;
+    userId?: UUID;
+}
 /**
  * @author Daniel DeGroff
  */
@@ -5163,6 +5500,13 @@ export interface RegistrationConfiguration extends Enableable {
     mobilePhone?: Requirable;
     type?: RegistrationType;
 }
+/**
+ * Registration delete API request object.
+ *
+ * @author Brian Pontarelli
+ */
+export interface RegistrationDeleteRequest extends BaseEventRequest {
+}
 /**
  * Response for the registration report.
  *
@@ -5177,7 +5521,8 @@ export interface RegistrationReportResponse {
  *
  * @author Brian Pontarelli
  */
-export interface RegistrationRequest {
+export interface RegistrationRequest extends BaseEventRequest {
+    disableDomainBlock?: boolean;
     generateAuthenticationToken?: boolean;
     registration?: UserRegistration;
     sendSetPasswordEmail?: boolean;
@@ -5561,11 +5906,14 @@ export interface Templates {
     registrationVerificationRequired?: string;
     registrationVerify?: string;
     samlv2Logout?: string;
+    unauthorized?: string;
 }
 /**
  * @author Daniel DeGroff
  */
 export interface Tenant {
+    accessControlConfiguration?: TenantAccessControlConfiguration;
+    captchaConfiguration?: TenantCaptchaConfiguration;
     configured?: boolean;
     connectorPolicies?: Array<ConnectorPolicy>;
     data?: Record<string, any>;
@@ -5590,6 +5938,9 @@ export interface Tenant {
     oauthConfiguration?: TenantOAuth2Configuration;
     passwordEncryptionConfiguration?: PasswordEncryptionConfiguration;
     passwordValidationRules?: PasswordValidationRules;
+    rateLimitConfiguration?: TenantRateLimitConfiguration;
+    registrationConfiguration?: TenantRegistrationConfiguration;
+    ssoConfiguration?: TenantSSOConfiguration;
     state?: ObjectState;
     themeId?: UUID;
     userDeletePolicy?: TenantUserDeletePolicy;
@@ -5600,6 +5951,29 @@ export interface Tenant {
  */
 export interface Tenantable {
 }
+/**
+ * @author Brett Guy
+ */
+export interface TenantAccessControlConfiguration {
+    uiIPAccessControlListId?: UUID;
+}
+/**
+ * @author Brett Pontarelli
+ */
+export interface TenantCaptchaConfiguration extends Enableable {
+    captchaMethod?: CaptchaMethod;
+    secretKey?: string;
+    siteKey?: string;
+    threshold?: number;
+}
+/**
+ * Request for the Tenant API to delete a tenant rather than using the URL parameters.
+ *
+ * @author Brian Pontarelli
+ */
+export interface TenantDeleteRequest extends BaseEventRequest {
+    async?: boolean;
+}
 /**
  * @author Daniel DeGroff
  */
@@ -5626,7 +6000,24 @@ export interface TenantOAuth2Configuration {
 /**
  * @author Daniel DeGroff
  */
-export interface TenantRequest {
+export interface TenantRateLimitConfiguration {
+    failedLogin?: RateLimitedRequestConfiguration;
+    forgotPassword?: RateLimitedRequestConfiguration;
+    sendEmailVerification?: RateLimitedRequestConfiguration;
+    sendPasswordless?: RateLimitedRequestConfiguration;
+    sendRegistrationVerification?: RateLimitedRequestConfiguration;
+    sendTwoFactor?: RateLimitedRequestConfiguration;
+}
+/**
+ * @author Daniel DeGroff
+ */
+export interface TenantRegistrationConfiguration {
+    blockedDomains?: Array<string>;
+}
+/**
+ * @author Daniel DeGroff
+ */
+export interface TenantRequest extends BaseEventRequest {
     sourceTenantId?: UUID;
     tenant?: Tenant;
 }
@@ -5637,6 +6028,12 @@ export interface TenantResponse {
     tenant?: Tenant;
     tenants?: Array<Tenant>;
 }
+/**
+ * @author Brett Pontarelli
+ */
+export interface TenantSSOConfiguration {
+    deviceTrustTimeToLiveInSeconds?: number;
+}
 /**
  * @author Daniel DeGroff
  */
@@ -5799,6 +6196,14 @@ export interface TwitterIdentityProvider extends BaseIdentityProvider<TwitterApp
     consumerKey?: string;
     consumerSecret?: string;
 }
+/**
+ * @author Brian Pontarelli
+ */
+export interface TwoFactorDisableRequest extends BaseEventRequest {
+    applicationId?: UUID;
+    code?: string;
+    methodId?: string;
+}
 /**
  * @author Daniel DeGroff
  */
@@ -5838,7 +6243,8 @@ export interface TwoFactorRecoveryCodeResponse {
 /**
  * @author Brian Pontarelli
  */
-export interface TwoFactorRequest {
+export interface TwoFactorRequest extends BaseEventRequest {
+    applicationId?: UUID;
     authenticatorId?: string;
     code?: string;
     email?: string;
@@ -6142,6 +6548,16 @@ export interface UserConsentResponse {
     userConsent?: UserConsent;
     userConsents?: Array<UserConsent>;
 }
+/**
+ * Models the User Created Event (and can be converted to JSON).
+ * <p>
+ * This is different than the user.create event in that it will be sent after the user has been created. This event cannot be made transactional.
+ *
+ * @author Daniel DeGroff
+ */
+export interface UserCreateCompleteEvent extends BaseEvent {
+    user?: User;
+}
 /**
  * Models the User Create Event (and can be converted to JSON).
  *
@@ -6158,6 +6574,17 @@ export interface UserCreateEvent extends BaseEvent {
 export interface UserDeactivateEvent extends BaseEvent {
     user?: User;
 }
+/**
+ * Models the User Event (and can be converted to JSON) that is used for all user modifications (create, update,
+ * delete).
+ * <p>
+ * This is different than user.delete because it is sent after the tx is committed, this cannot be transactional.
+ *
+ * @author Daniel DeGroff
+ */
+export interface UserDeleteCompleteEvent extends BaseEvent {
+    user?: User;
+}
 /**
  * Models the User Event (and can be converted to JSON) that is used for all user modifications (create, update,
  * delete).
@@ -6172,7 +6599,7 @@ export interface UserDeleteEvent extends BaseEvent {
  *
  * @author Daniel DeGroff
  */
-export interface UserDeleteRequest {
+export interface UserDeleteRequest extends BaseEventRequest {
     dryRun?: boolean;
     hardDelete?: boolean;
     query?: string;
@@ -6190,6 +6617,23 @@ export interface UserDeleteResponse {
     total?: number;
     userIds?: Array<string>;
 }
+/**
+ * User API delete request object for a single user.
+ *
+ * @author Brian Pontarelli
+ */
+export interface UserDeleteSingleRequest extends BaseEventRequest {
+    hardDelete?: boolean;
+}
+/**
+ * Models an event where a user's email is updated outside of a forgot / change password workflow.
+ *
+ * @author Daniel DeGroff
+ */
+export interface UserEmailUpdateEvent extends BaseEvent {
+    previousEmail?: string;
+    user?: User;
+}
 /**
  * Models the User Email Verify Event (and can be converted to JSON).
  *
@@ -6214,6 +6658,31 @@ export interface UserLoginFailedEvent extends BaseEvent {
     ipAddress?: string;
     user?: User;
 }
+/**
+ * Models an event where a user is being created with an "in-use" login Id (email or username).
+ *
+ * @author Daniel DeGroff
+ */
+export interface UserLoginIdDuplicateOnCreateEvent extends BaseEvent {
+    duplicateEmail?: string;
+    duplicateUsername?: string;
+    existing?: User;
+    user?: User;
+}
+/**
+ * Models an event where a user is being updated and tries to use an "in-use" login Id (email or username).
+ *
+ * @author Daniel DeGroff
+ */
+export interface UserLoginIdDuplicateOnUpdateEvent extends UserLoginIdDuplicateOnCreateEvent {
+}
+/**
+ * Models the User Login event for a new device (un-recognized)
+ *
+ * @author Daniel DeGroff
+ */
+export interface UserLoginNewDeviceEvent extends UserLoginSuccessEvent {
+}
 /**
  * Models the User Login Success Event.
  *
@@ -6228,6 +6697,14 @@ export interface UserLoginSuccessEvent extends BaseEvent {
     ipAddress?: string;
     user?: User;
 }
+/**
+ * Models the User Login event that is suspicious.
+ *
+ * @author Daniel DeGroff
+ */
+export interface UserLoginSuspiciousEvent extends UserLoginSuccessEvent {
+    threatsDetected?: Array<AuthenticationThreats>;
+}
 export interface UsernameModeration extends Enableable {
     applicationId?: UUID;
 }
@@ -6239,6 +6716,38 @@ export interface UsernameModeration extends Enableable {
 export interface UserPasswordBreachEvent extends BaseEvent {
     user?: User;
 }
+/**
+ * Models the User Password Reset Send Event.
+ *
+ * @author Daniel DeGroff
+ */
+export interface UserPasswordResetSendEvent extends BaseEvent {
+    user?: User;
+}
+/**
+ * Models the User Password Reset Start Event.
+ *
+ * @author Daniel DeGroff
+ */
+export interface UserPasswordResetStartEvent extends BaseEvent {
+    user?: User;
+}
+/**
+ * Models the User Password Reset Success Event.
+ *
+ * @author Daniel DeGroff
+ */
+export interface UserPasswordResetSuccessEvent extends BaseEvent {
+    user?: User;
+}
+/**
+ * Models the User Password Update Event.
+ *
+ * @author Daniel DeGroff
+ */
+export interface UserPasswordUpdateEvent extends BaseEvent {
+    user?: User;
+}
 /**
  * Models the User Reactivate Event (and can be converted to JSON).
  *
@@ -6269,6 +6778,18 @@ export interface UserRegistration {
     usernameStatus?: ContentStatus;
     verified?: boolean;
 }
+/**
+ * Models the User Created Registration Event (and can be converted to JSON).
+ * <p>
+ * This is different than the user.registration.create event in that it will be sent after the user has been created. This event cannot be made transactional.
+ *
+ * @author Daniel DeGroff
+ */
+export interface UserRegistrationCreateCompleteEvent extends BaseEvent {
+    applicationId?: UUID;
+    registration?: UserRegistration;
+    user?: User;
+}
 /**
  * Models the User Create Registration Event (and can be converted to JSON).
  *
@@ -6279,6 +6800,18 @@ export interface UserRegistrationCreateEvent extends BaseEvent {
     registration?: UserRegistration;
     user?: User;
 }
+/**
+ * Models the User Deleted Registration Event (and can be converted to JSON).
+ * <p>
+ * This is different than user.registration.delete in that it is sent after the TX has been committed. This event cannot be transactional.
+ *
+ * @author Daniel DeGroff
+ */
+export interface UserRegistrationDeleteCompleteEvent extends BaseEvent {
+    applicationId?: UUID;
+    registration?: UserRegistration;
+    user?: User;
+}
 /**
  * Models the User Delete Registration Event (and can be converted to JSON).
  *
@@ -6289,6 +6822,19 @@ export interface UserRegistrationDeleteEvent extends BaseEvent {
     registration?: UserRegistration;
     user?: User;
 }
+/**
+ * Models the User Update Registration Event (and can be converted to JSON).
+ * <p>
+ * This is different than user.registration.update in that it is sent after this event completes, this cannot be transactional.
+ *
+ * @author Daniel DeGroff
+ */
+export interface UserRegistrationUpdateCompleteEvent extends BaseEvent {
+    applicationId?: UUID;
+    original?: UserRegistration;
+    registration?: UserRegistration;
+    user?: User;
+}
 /**
  * Models the User Update Registration Event (and can be converted to JSON).
  *
@@ -6315,7 +6861,9 @@ export interface UserRegistrationVerifiedEvent extends BaseEvent {
  *
  * @author Brian Pontarelli
  */
-export interface UserRequest {
+export interface UserRequest extends BaseEventRequest {
+    applicationId?: UUID;
+    disableDomainBlock?: boolean;
     sendSetPasswordEmail?: boolean;
     skipVerification?: boolean;
     user?: User;
@@ -6354,6 +6902,33 @@ export interface UserTwoFactorConfiguration {
     methods?: Array<TwoFactorMethod>;
     recoveryCodes?: Array<string>;
 }
+/**
+ * Model a user event when a two-factor method has been removed.
+ *
+ * @author Daniel DeGroff
+ */
+export interface UserTwoFactorMethodAddEvent extends BaseEvent {
+    method?: TwoFactorMethod;
+    user?: User;
+}
+/**
+ * Model a user event when a two-factor method has been added.
+ *
+ * @author Daniel DeGroff
+ */
+export interface UserTwoFactorMethodRemoveEvent extends BaseEvent {
+    method?: TwoFactorMethod;
+    user?: User;
+}
+/**
+ * Models the User Update Event once it is completed. This cannot be transactional.
+ *
+ * @author Daniel DeGroff
+ */
+export interface UserUpdateCompleteEvent extends BaseEvent {
+    original?: User;
+    user?: User;
+}
 /**
  * Models the User Update Event (and can be converted to JSON).
  *
@@ -6379,7 +6954,7 @@ export declare enum VerificationStrategy {
 /**
  * @author Daniel DeGroff
  */
-export interface VerifyEmailRequest {
+export interface VerifyEmailRequest extends BaseEventRequest {
     oneTimeCode?: string;
     verificationId?: string;
 }
@@ -6393,7 +6968,7 @@ export interface VerifyEmailResponse {
 /**
  * @author Daniel DeGroff
  */
-export interface VerifyRegistrationRequest {
+export interface VerifyRegistrationRequest extends BaseEventRequest {
     oneTimeCode?: string;
     verificationId?: string;
 }