@fusionauth/typescript-client 1.41.0 → 1.43.0

package/build/src/FusionAuthClient.d.ts

@@ -700,27 +700,27 @@ export declare class FusionAuthClient {
      */
     deleteWebhook(webhookId: UUID): Promise<ClientResponse<void>>;
     /**
-     * Disable Two Factor authentication for a user.
+     * Disable two-factor authentication for a user.
      *
-     * @param {UUID} userId The Id of the User for which you're disabling Two Factor authentication.
+     * @param {UUID} userId The Id of the User for which you're disabling two-factor authentication.
      * @param {string} methodId The two-factor method identifier you wish to disable
-     * @param {string} code The Two Factor code used verify the the caller knows the Two Factor secret.
+     * @param {string} code The two-factor code used verify the the caller knows the two-factor secret.
      * @returns {Promise<ClientResponse<void>>}
      */
     disableTwoFactor(userId: UUID, methodId: string, code: string): Promise<ClientResponse<void>>;
     /**
-     * Disable Two Factor authentication for a user using a JSON body rather than URL parameters.
+     * Disable two-factor authentication for a user using a JSON body rather than URL parameters.
      *
-     * @param {UUID} userId The Id of the User for which you're disabling Two Factor authentication.
+     * @param {UUID} userId The Id of the User for which you're disabling two-factor authentication.
      * @param {TwoFactorDisableRequest} request The request information that contains the code and methodId along with any event information.
      * @returns {Promise<ClientResponse<void>>}
      */
     disableTwoFactorWithRequest(userId: UUID, request: TwoFactorDisableRequest): Promise<ClientResponse<void>>;
     /**
-     * Enable Two Factor authentication for a user.
+     * Enable two-factor authentication for a user.
      *
-     * @param {UUID} userId The Id of the user to enable Two Factor authentication.
-     * @param {TwoFactorRequest} request The two factor enable request information.
+     * @param {UUID} userId The Id of the user to enable two-factor authentication.
+     * @param {TwoFactorRequest} request The two-factor enable request information.
      * @returns {Promise<ClientResponse<TwoFactorResponse>>}
      */
     enableTwoFactor(userId: UUID, request: TwoFactorRequest): Promise<ClientResponse<TwoFactorResponse>>;
@@ -729,7 +729,7 @@ export declare class FusionAuthClient {
      * Makes a request to the Token endpoint to exchange the authorization code returned from the Authorize endpoint for an access token.
      *
      * @param {string} code The authorization code returned on the /oauth2/authorize response.
-     * @param {string} client_id The unique client identifier. The client Id is the Id of the FusionAuth Application in which you you are attempting to authenticate.
+     * @param {string} client_id The unique client identifier. The client Id is the Id of the FusionAuth Application in which you are attempting to authenticate.
      * @param {string} client_secret (Optional) The client secret. This value will be required if client authentication is enabled.
      * @param {string} redirect_uri The URI to redirect to upon a successful request.
      * @returns {Promise<ClientResponse<AccessToken>>}
@@ -740,7 +740,7 @@ export declare class FusionAuthClient {
      * Makes a request to the Token endpoint to exchange the authorization code returned from the Authorize endpoint and a code_verifier for an access token.
      *
      * @param {string} code The authorization code returned on the /oauth2/authorize response.
-     * @param {string} client_id (Optional) The unique client identifier. The client Id is the Id of the FusionAuth Application in which you you are attempting to authenticate. This parameter is optional when the Authorization header is provided.
+     * @param {string} client_id (Optional) The unique client identifier. The client Id is the Id of the FusionAuth Application in which you are attempting to authenticate. This parameter is optional when the Authorization header is provided.
      * @param {string} client_secret (Optional) The client secret. This value may optionally be provided in the request body instead of the Authorization header.
      * @param {string} redirect_uri The URI to redirect to upon a successful request.
      * @param {string} code_verifier The random string generated previously. Will be compared with the code_challenge sent previously, which allows the OAuth provider to authenticate your app.
@@ -752,7 +752,7 @@ export declare class FusionAuthClient {
      * If you will be using the Refresh Token Grant, you will make a request to the Token endpoint to exchange the user’s refresh token for an access token.
      *
      * @param {string} refresh_token The refresh token that you would like to use to exchange for an access token.
-     * @param {string} client_id (Optional) The unique client identifier. The client Id is the Id of the FusionAuth Application in which you you are attempting to authenticate. This parameter is optional when the Authorization header is provided.
+     * @param {string} client_id (Optional) The unique client identifier. The client Id is the Id of the FusionAuth Application in which you are attempting to authenticate. This parameter is optional when the Authorization header is provided.
      * @param {string} client_secret (Optional) The client secret. This value may optionally be provided in the request body instead of the Authorization header.
      * @param {string} scope (Optional) This parameter is optional and if omitted, the same scope requested during the authorization request will be used. If provided the scopes must match those requested during the initial authorization request.
      * @param {string} user_code (Optional) The end-user verification code. This code is required if using this endpoint to approve the Device Authorization.
@@ -772,7 +772,7 @@ export declare class FusionAuthClient {
      *
      * @param {string} username The login identifier of the user. The login identifier can be either the email or the username.
      * @param {string} password The user’s password.
-     * @param {string} client_id (Optional) The unique client identifier. The client Id is the Id of the FusionAuth Application in which you you are attempting to authenticate. This parameter is optional when the Authorization header is provided.
+     * @param {string} client_id (Optional) The unique client identifier. The client Id is the Id of the FusionAuth Application in which you are attempting to authenticate. This parameter is optional when the Authorization header is provided.
      * @param {string} client_secret (Optional) The client secret. This value may optionally be provided in the request body instead of the Authorization header.
      * @param {string} scope (Optional) This parameter is optional and if omitted, the same scope requested during the authorization request will be used. If provided the scopes must match those requested during the initial authorization request.
      * @param {string} user_code (Optional) The end-user verification code. This code is required if using this endpoint to approve the Device Authorization.
@@ -2710,6 +2710,7 @@ export interface APIKeyResponse {
  * @author Daniel DeGroff
  */
 export interface AppleApplicationConfiguration extends BaseIdentityProviderApplicationConfiguration {
+    bundleId?: string;
     buttonText?: string;
     keyId?: UUID;
     scope?: string;
@@ -2720,6 +2721,7 @@ export interface AppleApplicationConfiguration extends BaseIdentityProviderAppli
  * @author Daniel DeGroff
  */
 export interface AppleIdentityProvider extends BaseIdentityProvider<AppleApplicationConfiguration> {
+    bundleId?: string;
     buttonText?: string;
     keyId?: UUID;
     scope?: string;
@@ -2836,6 +2838,7 @@ export interface ApplicationRegistrationDeletePolicy {
 export interface ApplicationRequest extends BaseEventRequest {
     application?: Application;
     role?: ApplicationRole;
+    sourceApplicationId?: UUID;
 }
 /**
  * The Application API response.
@@ -3123,6 +3126,16 @@ export interface BaseMessengerConfiguration {
     transport?: string;
     type?: MessengerType;
 }
+/**
+ * @author Lyle Schemmerling
+ */
+export interface BaseSAMLv2IdentityProvider<D extends BaseIdentityProviderApplicationConfiguration> extends BaseIdentityProvider<D> {
+    emailClaim?: string;
+    keyId?: UUID;
+    uniqueIdClaim?: string;
+    useNameIdForEmail?: boolean;
+    usernameClaim?: string;
+}
 /**
  * @author Brian Pontarelli
  */
@@ -4077,14 +4090,24 @@ export interface FacebookIdentityProvider extends BaseIdentityProvider<FacebookA
     loginMethod?: IdentityProviderLoginMethod;
     permissions?: string;
 }
+/**
+ * A policy to configure if and when the user-action is canceled prior to the expiration of the action.
+ *
+ * @author Daniel DeGroff
+ */
+export interface FailedAuthenticationActionCancelPolicy {
+    onPasswordReset?: boolean;
+}
 /**
  * Configuration for the behavior of failed login attempts. This helps us protect against brute force password attacks.
  *
  * @author Daniel DeGroff
  */
 export interface FailedAuthenticationConfiguration {
+    actionCancelPolicy?: FailedAuthenticationActionCancelPolicy;
     actionDuration?: number;
     actionDurationUnit?: ExpiryUnit;
+    emailUser?: boolean;
     resetCountInSeconds?: number;
     tooManyAttempts?: number;
     userActionId?: UUID;
@@ -4655,11 +4678,8 @@ export declare enum IdentityProviderLinkingStrategy {
  * @author Daniel DeGroff
  */
 export interface IdentityProviderLinkRequest extends BaseEventRequest {
-    displayName?: string;
-    identityProviderId?: UUID;
-    identityProviderUserId?: string;
+    identityProviderLink?: IdentityProviderLink;
     pendingIdPLinkId?: string;
-    userId?: UUID;
 }
 /**
  * @author Daniel DeGroff
@@ -5114,6 +5134,7 @@ export interface LambdaConfiguration {
     accessTokenPopulateId?: UUID;
     idTokenPopulateId?: UUID;
     samlv2PopulateId?: UUID;
+    selfServiceRegistrationValidationId?: UUID;
 }
 export interface LambdaConfiguration {
     reconcileId?: UUID;
@@ -5173,7 +5194,8 @@ export declare enum LambdaType {
     SCIMServerGroupRequestConverter = "SCIMServerGroupRequestConverter",
     SCIMServerGroupResponseConverter = "SCIMServerGroupResponseConverter",
     SCIMServerUserRequestConverter = "SCIMServerUserRequestConverter",
-    SCIMServerUserResponseConverter = "SCIMServerUserResponseConverter"
+    SCIMServerUserResponseConverter = "SCIMServerUserResponseConverter",
+    SelfServiceRegistrationValidation = "SelfServiceRegistrationValidation"
 }
 /**
  * Models an LDAP connector.
@@ -5257,6 +5279,12 @@ export interface LoginConfiguration {
     generateRefreshTokens?: boolean;
     requireAuthentication?: boolean;
 }
+/**
+ * @author Daniel DeGroff
+ */
+export interface LoginHintConfiguration extends Enableable {
+    parameterName?: string;
+}
 export declare enum LoginIdType {
     email = "email",
     username = "username"
@@ -5347,6 +5375,7 @@ export interface LoginResponse {
     actions?: Array<LoginPreventedResponse>;
     changePasswordId?: string;
     changePasswordReason?: ChangePasswordReason;
+    configurableMethods?: Array<string>;
     emailVerificationId?: string;
     methods?: Array<TwoFactorMethod>;
     pendingIdPLinkId?: string;
@@ -5526,7 +5555,8 @@ export interface MultiFactorEmailTemplate {
  */
 export declare enum MultiFactorLoginPolicy {
     Disabled = "Disabled",
-    Enabled = "Enabled"
+    Enabled = "Enabled",
+    Required = "Required"
 }
 export interface MultiFactorSMSMethod extends Enableable {
     messengerId?: UUID;
@@ -5568,12 +5598,20 @@ export interface NintendoIdentityProvider extends BaseIdentityProvider<NintendoA
  */
 export interface NonTransactionalEvent {
 }
+/**
+ * @author Johnathon Wood
+ */
+export declare enum Oauth2AuthorizedURLValidationPolicy {
+    AllowWildcards = "AllowWildcards",
+    ExactMatch = "ExactMatch"
+}
 /**
  * @author Daniel DeGroff
  */
 export interface OAuth2Configuration {
     authorizedOriginURLs?: Array<string>;
     authorizedRedirectURLs?: Array<string>;
+    authorizedURLValidationPolicy?: Oauth2AuthorizedURLValidationPolicy;
     clientAuthenticationPolicy?: ClientAuthenticationPolicy;
     clientId?: string;
     clientSecret?: string;
@@ -6109,6 +6147,7 @@ export interface RefreshTokenResponse {
  */
 export interface RefreshTokenRevocationPolicy {
     onLoginPrevented?: boolean;
+    onMultiFactorEnable?: boolean;
     onPasswordChanged?: boolean;
 }
 /**
@@ -6251,6 +6290,12 @@ export interface SAMLv2ApplicationConfiguration extends BaseIdentityProviderAppl
     buttonImageURL?: string;
     buttonText?: string;
 }
+/**
+ * @author Lyle Schemmerling
+ */
+export interface SAMLv2AssertionConfiguration {
+    destination?: SAMLv2DestinationAssertionConfiguration;
+}
 export interface SAMLv2Configuration extends Enableable {
     audience?: string;
     authorizedRedirectURLs?: Array<string>;
@@ -6266,26 +6311,39 @@ export interface SAMLv2Configuration extends Enableable {
     xmlSignatureC14nMethod?: CanonicalizationMethod;
     xmlSignatureLocation?: XMLSignatureLocation;
 }
+/**
+ * @author Lyle Schemmerling
+ */
+export interface SAMLv2DestinationAssertionConfiguration {
+    alternates?: Array<string>;
+    policy?: SAMLv2DestinationAssertionPolicy;
+}
+/**
+ * @author Lyle Schemmerling
+ */
+export declare enum SAMLv2DestinationAssertionPolicy {
+    Enabled = "Enabled",
+    Disabled = "Disabled",
+    AllowAlternates = "AllowAlternates"
+}
 /**
  * SAML v2 identity provider configuration.
  *
  * @author Brian Pontarelli
  */
-export interface SAMLv2IdentityProvider extends BaseIdentityProvider<SAMLv2ApplicationConfiguration> {
+export interface SAMLv2IdentityProvider extends BaseSAMLv2IdentityProvider<SAMLv2ApplicationConfiguration> {
+    assertionConfiguration?: SAMLv2AssertionConfiguration;
     buttonImageURL?: string;
     buttonText?: string;
     domains?: Array<string>;
-    emailClaim?: string;
     idpEndpoint?: string;
+    idpInitiatedConfiguration?: SAMLv2IdpInitiatedConfiguration;
     issuer?: string;
-    keyId?: UUID;
+    loginHintConfiguration?: LoginHintConfiguration;
     nameIdFormat?: string;
     postRequest?: boolean;
     requestSigningKeyId?: UUID;
     signRequest?: boolean;
-    uniqueIdClaim?: string;
-    useNameIdForEmail?: boolean;
-    usernameClaim?: string;
     xmlSignatureC14nMethod?: CanonicalizationMethod;
 }
 /**
@@ -6293,18 +6351,21 @@ export interface SAMLv2IdentityProvider extends BaseIdentityProvider<SAMLv2Appli
  */
 export interface SAMLv2IdPInitiatedApplicationConfiguration extends BaseIdentityProviderApplicationConfiguration {
 }
+/**
+ * Config for regular SAML IDP configurations that support IdP initiated requests
+ *
+ * @author Lyle Schemmerling
+ */
+export interface SAMLv2IdpInitiatedConfiguration extends Enableable {
+    issuer?: string;
+}
 /**
  * SAML v2 IdP Initiated identity provider configuration.
  *
  * @author Daniel DeGroff
  */
-export interface SAMLv2IdPInitiatedIdentityProvider extends BaseIdentityProvider<SAMLv2IdPInitiatedApplicationConfiguration> {
-    emailClaim?: string;
+export interface SAMLv2IdPInitiatedIdentityProvider extends BaseSAMLv2IdentityProvider<SAMLv2IdPInitiatedApplicationConfiguration> {
     issuer?: string;
-    keyId?: UUID;
-    uniqueIdClaim?: string;
-    useNameIdForEmail?: boolean;
-    usernameClaim?: string;
 }
 /**
  * IdP Initiated login configuration
@@ -6527,6 +6588,7 @@ export interface SystemConfigurationResponse {
  * @author Daniel DeGroff
  */
 export interface SystemLogsExportRequest extends BaseExportRequest {
+    includeArchived?: boolean;
     lastNBytes?: number;
 }
 export interface Templates {
@@ -6558,6 +6620,8 @@ export interface Templates {
     oauth2Register?: string;
     oauth2StartIdPLink?: string;
     oauth2TwoFactor?: string;
+    oauth2TwoFactorEnable?: string;
+    oauth2TwoFactorEnableComplete?: string;
     oauth2TwoFactorMethods?: string;
     oauth2Wait?: string;
     oauth2WebAuthn?: string;
@@ -6962,11 +7026,13 @@ export interface TwoFactorRequest extends BaseEventRequest {
     mobilePhone?: string;
     secret?: string;
     secretBase32Encoded?: string;
+    twoFactorId?: string;
 }
 /**
  * @author Daniel DeGroff
  */
 export interface TwoFactorResponse {
+    code?: string;
     recoveryCodes?: Array<string>;
 }
 /**

package/build/src/FusionAuthClient.js

@@ -1,6 +1,6 @@
 "use strict";
 /*
-* Copyright (c) 2019-2022, FusionAuth, All Rights Reserved
+* Copyright (c) 2019-2023, FusionAuth, All Rights Reserved
 *
 * Licensed under the Apache License, Version 2.0 (the "License");
 * you may not use this file except in compliance with the License.
@@ -1278,11 +1278,11 @@ class FusionAuthClient {
             .go();
     }
     /**
-     * Disable Two Factor authentication for a user.
+     * Disable two-factor authentication for a user.
      *
-     * @param {UUID} userId The Id of the User for which you're disabling Two Factor authentication.
+     * @param {UUID} userId The Id of the User for which you're disabling two-factor authentication.
      * @param {string} methodId The two-factor method identifier you wish to disable
-     * @param {string} code The Two Factor code used verify the the caller knows the Two Factor secret.
+     * @param {string} code The two-factor code used verify the the caller knows the two-factor secret.
      * @returns {Promise<ClientResponse<void>>}
      */
     disableTwoFactor(userId, methodId, code) {
@@ -1295,9 +1295,9 @@ class FusionAuthClient {
             .go();
     }
     /**
-     * Disable Two Factor authentication for a user using a JSON body rather than URL parameters.
+     * Disable two-factor authentication for a user using a JSON body rather than URL parameters.
      *
-     * @param {UUID} userId The Id of the User for which you're disabling Two Factor authentication.
+     * @param {UUID} userId The Id of the User for which you're disabling two-factor authentication.
      * @param {TwoFactorDisableRequest} request The request information that contains the code and methodId along with any event information.
      * @returns {Promise<ClientResponse<void>>}
      */
@@ -1310,10 +1310,10 @@ class FusionAuthClient {
             .go();
     }
     /**
-     * Enable Two Factor authentication for a user.
+     * Enable two-factor authentication for a user.
      *
-     * @param {UUID} userId The Id of the user to enable Two Factor authentication.
-     * @param {TwoFactorRequest} request The two factor enable request information.
+     * @param {UUID} userId The Id of the user to enable two-factor authentication.
+     * @param {TwoFactorRequest} request The two-factor enable request information.
      * @returns {Promise<ClientResponse<TwoFactorResponse>>}
      */
     enableTwoFactor(userId, request) {
@@ -1329,7 +1329,7 @@ class FusionAuthClient {
      * Makes a request to the Token endpoint to exchange the authorization code returned from the Authorize endpoint for an access token.
      *
      * @param {string} code The authorization code returned on the /oauth2/authorize response.
-     * @param {string} client_id The unique client identifier. The client Id is the Id of the FusionAuth Application in which you you are attempting to authenticate.
+     * @param {string} client_id The unique client identifier. The client Id is the Id of the FusionAuth Application in which you are attempting to authenticate.
      * @param {string} client_secret (Optional) The client secret. This value will be required if client authentication is enabled.
      * @param {string} redirect_uri The URI to redirect to upon a successful request.
      * @returns {Promise<ClientResponse<AccessToken>>}
@@ -1352,7 +1352,7 @@ class FusionAuthClient {
      * Makes a request to the Token endpoint to exchange the authorization code returned from the Authorize endpoint and a code_verifier for an access token.
      *
      * @param {string} code The authorization code returned on the /oauth2/authorize response.
-     * @param {string} client_id (Optional) The unique client identifier. The client Id is the Id of the FusionAuth Application in which you you are attempting to authenticate. This parameter is optional when the Authorization header is provided.
+     * @param {string} client_id (Optional) The unique client identifier. The client Id is the Id of the FusionAuth Application in which you are attempting to authenticate. This parameter is optional when the Authorization header is provided.
      * @param {string} client_secret (Optional) The client secret. This value may optionally be provided in the request body instead of the Authorization header.
      * @param {string} redirect_uri The URI to redirect to upon a successful request.
      * @param {string} code_verifier The random string generated previously. Will be compared with the code_challenge sent previously, which allows the OAuth provider to authenticate your app.
@@ -1377,7 +1377,7 @@ class FusionAuthClient {
      * If you will be using the Refresh Token Grant, you will make a request to the Token endpoint to exchange the user’s refresh token for an access token.
      *
      * @param {string} refresh_token The refresh token that you would like to use to exchange for an access token.
-     * @param {string} client_id (Optional) The unique client identifier. The client Id is the Id of the FusionAuth Application in which you you are attempting to authenticate. This parameter is optional when the Authorization header is provided.
+     * @param {string} client_id (Optional) The unique client identifier. The client Id is the Id of the FusionAuth Application in which you are attempting to authenticate. This parameter is optional when the Authorization header is provided.
      * @param {string} client_secret (Optional) The client secret. This value may optionally be provided in the request body instead of the Authorization header.
      * @param {string} scope (Optional) This parameter is optional and if omitted, the same scope requested during the authorization request will be used. If provided the scopes must match those requested during the initial authorization request.
      * @param {string} user_code (Optional) The end-user verification code. This code is required if using this endpoint to approve the Device Authorization.
@@ -1416,7 +1416,7 @@ class FusionAuthClient {
      *
      * @param {string} username The login identifier of the user. The login identifier can be either the email or the username.
      * @param {string} password The user’s password.
-     * @param {string} client_id (Optional) The unique client identifier. The client Id is the Id of the FusionAuth Application in which you you are attempting to authenticate. This parameter is optional when the Authorization header is provided.
+     * @param {string} client_id (Optional) The unique client identifier. The client Id is the Id of the FusionAuth Application in which you are attempting to authenticate. This parameter is optional when the Authorization header is provided.
      * @param {string} client_secret (Optional) The client secret. This value may optionally be provided in the request body instead of the Authorization header.
      * @param {string} scope (Optional) This parameter is optional and if omitted, the same scope requested during the authorization request will be used. If provided the scopes must match those requested during the initial authorization request.
      * @param {string} user_code (Optional) The end-user verification code. This code is required if using this endpoint to approve the Device Authorization.
@@ -5262,6 +5262,7 @@ var LambdaType;
     LambdaType["SCIMServerGroupResponseConverter"] = "SCIMServerGroupResponseConverter";
     LambdaType["SCIMServerUserRequestConverter"] = "SCIMServerUserRequestConverter";
     LambdaType["SCIMServerUserResponseConverter"] = "SCIMServerUserResponseConverter";
+    LambdaType["SelfServiceRegistrationValidation"] = "SelfServiceRegistrationValidation";
 })(LambdaType = exports.LambdaType || (exports.LambdaType = {}));
 var LDAPSecurityMethod;
 (function (LDAPSecurityMethod) {
@@ -5305,7 +5306,16 @@ var MultiFactorLoginPolicy;
 (function (MultiFactorLoginPolicy) {
     MultiFactorLoginPolicy["Disabled"] = "Disabled";
     MultiFactorLoginPolicy["Enabled"] = "Enabled";
+    MultiFactorLoginPolicy["Required"] = "Required";
 })(MultiFactorLoginPolicy = exports.MultiFactorLoginPolicy || (exports.MultiFactorLoginPolicy = {}));
+/**
+ * @author Johnathon Wood
+ */
+var Oauth2AuthorizedURLValidationPolicy;
+(function (Oauth2AuthorizedURLValidationPolicy) {
+    Oauth2AuthorizedURLValidationPolicy["AllowWildcards"] = "AllowWildcards";
+    Oauth2AuthorizedURLValidationPolicy["ExactMatch"] = "ExactMatch";
+})(Oauth2AuthorizedURLValidationPolicy = exports.Oauth2AuthorizedURLValidationPolicy || (exports.Oauth2AuthorizedURLValidationPolicy = {}));
 var OAuthErrorReason;
 (function (OAuthErrorReason) {
     OAuthErrorReason["auth_code_not_found"] = "auth_code_not_found";
@@ -5469,6 +5479,15 @@ var SAMLLogoutBehavior;
     SAMLLogoutBehavior["AllParticipants"] = "AllParticipants";
     SAMLLogoutBehavior["OnlyOriginator"] = "OnlyOriginator";
 })(SAMLLogoutBehavior = exports.SAMLLogoutBehavior || (exports.SAMLLogoutBehavior = {}));
+/**
+ * @author Lyle Schemmerling
+ */
+var SAMLv2DestinationAssertionPolicy;
+(function (SAMLv2DestinationAssertionPolicy) {
+    SAMLv2DestinationAssertionPolicy["Enabled"] = "Enabled";
+    SAMLv2DestinationAssertionPolicy["Disabled"] = "Disabled";
+    SAMLv2DestinationAssertionPolicy["AllowAlternates"] = "AllowAlternates";
+})(SAMLv2DestinationAssertionPolicy = exports.SAMLv2DestinationAssertionPolicy || (exports.SAMLv2DestinationAssertionPolicy = {}));
 /**
  * @author Daniel DeGroff
  */