@fusionauth/typescript-client 1.45.0 → 1.46.0

package/build/src/FusionAuthClient.js

@@ -15,6 +15,7 @@
 * language governing permissions and limitations under the License.
 */
 Object.defineProperty(exports, "__esModule", { value: true });
+exports.IdentityProviderLoginMethod = exports.ClientAuthenticationMethod = exports.OAuthErrorReason = exports.WebAuthnWorkflow = exports.Oauth2AuthorizedURLValidationPolicy = exports.LogoutBehavior = exports.RateLimitedRequestType = exports.CanonicalizationMethod = exports.SecureGeneratorType = exports.VerificationStrategy = exports.UniqueUsernameStrategy = exports.LDAPSecurityMethod = exports.TOTPAlgorithm = exports.EventType = exports.IdentityProviderType = exports.MessengerType = exports.ExpiryUnit = exports.EmailSecurityType = exports.ChangePasswordReason = exports.SteamAPIMode = exports.UserVerificationRequirement = exports.TransactionType = exports.FamilyRole = exports.KeyUse = exports.Algorithm = exports.EventLogType = exports.BreachAction = exports.IdentityProviderLinkingStrategy = exports.SAMLLogoutBehavior = exports.Sort = exports.OAuthErrorType = exports.LambdaEngineType = exports.UserActionPhase = exports.UnverifiedBehavior = exports.RefreshTokenExpirationPolicy = exports.RegistrationType = exports.LoginIdType = exports.CoseEllipticCurve = exports.AuthenticatorAttachment = exports.MultiFactorLoginPolicy = exports.ConnectorType = exports.KeyType = exports.AttestationType = exports.FormType = exports.KeyAlgorithm = exports.CaptchaMethod = exports.DeviceType = exports.RefreshTokenUsagePolicy = exports.ClientAuthenticationPolicy = exports.ResidentKeyRequirement = exports.AuthenticationThreats = exports.ObjectState = exports.AttestationConveyancePreference = exports.LambdaType = exports.CoseAlgorithmIdentifier = exports.HTTPMethod = exports.FormFieldAdminPolicy = exports.PublicKeyCredentialType = exports.SAMLv2DestinationAssertionPolicy = exports.CoseKeyType = exports.BreachMatchMode = exports.FormControl = exports.ContentStatus = exports.MessageType = exports.IPAccessControlEntryAction = exports.AuthenticatorAttachmentPreference = exports.XMLSignatureLocation = exports.TokenType = exports.ProofKeyForCodeExchangePolicy = exports.ReactorFeatureStatus = exports.GrantType = exports.UserState = exports.ApplicationMultiFactorTrustPolicy = exports.ConsentStatus = exports.BreachedPasswordStatus = exports.FormDataType = exports.FusionAuthClient = void 0;
 const DefaultRESTClientBuilder_1 = require("./DefaultRESTClientBuilder");
 const url_1 = require("url");
 class FusionAuthClient {
@@ -48,7 +49,7 @@ class FusionAuthClient {
      * Takes an action on a user. The user being actioned is called the "actionee" and the user taking the action is called the
      * "actioner". Both user ids are required in the request object.
      *
-     * @param {ActionRequest} request The action request that includes all of the information about the action being taken including
+     * @param {ActionRequest} request The action request that includes all the information about the action being taken including
      *    the id of the action, any options and the duration (if applicable).
      * @returns {Promise<ClientResponse<ActionResponse>>}
      */
@@ -87,6 +88,27 @@ class FusionAuthClient {
             .withMethod("PUT")
             .go();
     }
+    /**
+     * Approve a device grant.
+     *
+     * @param {string} client_id (Optional) The unique client identifier. The client Id is the Id of the FusionAuth Application in which you are attempting to authenticate.
+     * @param {string} client_secret (Optional) The client secret. This value will be required if client authentication is enabled.
+     * @param {string} token The access token used to identify the user.
+     * @param {string} user_code The end-user verification code.
+     * @returns {Promise<ClientResponse<DeviceApprovalResponse>>}
+     */
+    approveDevice(client_id, client_secret, token, user_code) {
+        let body = new url_1.URLSearchParams();
+        body.append('client_id', client_id);
+        body.append('client_secret', client_secret);
+        body.append('token', token);
+        body.append('user_code', user_code);
+        return this.start()
+            .withUri('/oauth2/device/approve')
+            .withFormData(body)
+            .withMethod("POST")
+            .go();
+    }
     /**
      * Cancels the user action.
      *
@@ -110,7 +132,7 @@ class FusionAuthClient {
      * the value in the request body.
      *
      * @param {string} changePasswordId The change password Id used to find the user. This value is generated by FusionAuth once the change password workflow has been initiated.
-     * @param {ChangePasswordRequest} request The change password request that contains all of the information used to change the password.
+     * @param {ChangePasswordRequest} request The change password request that contains all the information used to change the password.
      * @returns {Promise<ClientResponse<ChangePasswordResponse>>}
      */
     changePassword(changePasswordId, request) {
@@ -126,7 +148,7 @@ class FusionAuthClient {
      * bypasses the email verification and allows a password to be changed directly without first calling the #forgotPassword
      * method.
      *
-     * @param {ChangePasswordRequest} request The change password request that contains all of the information used to change the password.
+     * @param {ChangePasswordRequest} request The change password request that contains all the information used to change the password.
      * @returns {Promise<ClientResponse<void>>}
      */
     changePasswordByIdentity(request) {
@@ -190,8 +212,10 @@ class FusionAuthClient {
     /**
      * Make a Client Credentials grant request to obtain an access token.
      *
-     * @param {string} client_id The client identifier. The client Id is the Id of the FusionAuth Entity in which you are attempting to authenticate.
-     * @param {string} client_secret The client secret used to authenticate this request.
+     * @param {string} client_id (Optional) The client identifier. The client Id is the Id of the FusionAuth Entity in which you are attempting to authenticate.
+     *    This parameter is optional when Basic Authorization is used to authenticate this request.
+     * @param {string} client_secret (Optional) The client secret used to authenticate this request.
+     *    This parameter is optional when Basic Authorization is used to authenticate this request.
      * @param {string} scope (Optional) This parameter is used to indicate which target entity you are requesting access. To request access to an entity, use the format target-entity:&lt;target-entity-id&gt;:&lt;roles&gt;. Roles are an optional comma separated list.
      * @returns {Promise<ClientResponse<AccessToken>>}
      */
@@ -267,7 +291,7 @@ class FusionAuthClient {
      * If an API key is locked to a tenant, it can only create API Keys for that same tenant.
      *
      * @param {UUID} keyId (Optional) The unique Id of the API key. If not provided a secure random Id will be generated.
-     * @param {APIKeyRequest} request The request object that contains all of the information needed to create the APIKey.
+     * @param {APIKeyRequest} request The request object that contains all the information needed to create the APIKey.
      * @returns {Promise<ClientResponse<APIKeyResponse>>}
      */
     createAPIKey(keyId, request) {
@@ -961,7 +985,7 @@ class FusionAuthClient {
     /**
      * Removes users as members of a group.
      *
-     * @param {MemberDeleteRequest} request The member request that contains all of the information used to remove members to the group.
+     * @param {MemberDeleteRequest} request The member request that contains all the information used to remove members to the group.
      * @returns {Promise<ClientResponse<void>>}
      */
     deleteGroupMembers(request) {
@@ -1329,7 +1353,8 @@ class FusionAuthClient {
      * Makes a request to the Token endpoint to exchange the authorization code returned from the Authorize endpoint for an access token.
      *
      * @param {string} code The authorization code returned on the /oauth2/authorize response.
-     * @param {string} client_id The unique client identifier. The client Id is the Id of the FusionAuth Application in which you are attempting to authenticate.
+     * @param {string} client_id (Optional) The unique client identifier. The client Id is the Id of the FusionAuth Application in which you are attempting to authenticate.
+     *    This parameter is optional when Basic Authorization is used to authenticate this request.
      * @param {string} client_secret (Optional) The client secret. This value will be required if client authentication is enabled.
      * @param {string} redirect_uri The URI to redirect to upon a successful request.
      * @returns {Promise<ClientResponse<AccessToken>>}
@@ -1353,6 +1378,7 @@ class FusionAuthClient {
      *
      * @param {string} code The authorization code returned on the /oauth2/authorize response.
      * @param {string} client_id (Optional) The unique client identifier. The client Id is the Id of the FusionAuth Application in which you are attempting to authenticate. This parameter is optional when the Authorization header is provided.
+     *    This parameter is optional when Basic Authorization is used to authenticate this request.
      * @param {string} client_secret (Optional) The client secret. This value may optionally be provided in the request body instead of the Authorization header.
      * @param {string} redirect_uri The URI to redirect to upon a successful request.
      * @param {string} code_verifier The random string generated previously. Will be compared with the code_challenge sent previously, which allows the OAuth provider to authenticate your app.
@@ -1378,6 +1404,7 @@ class FusionAuthClient {
      *
      * @param {string} refresh_token The refresh token that you would like to use to exchange for an access token.
      * @param {string} client_id (Optional) The unique client identifier. The client Id is the Id of the FusionAuth Application in which you are attempting to authenticate. This parameter is optional when the Authorization header is provided.
+     *    This parameter is optional when Basic Authorization is used to authenticate this request.
      * @param {string} client_secret (Optional) The client secret. This value may optionally be provided in the request body instead of the Authorization header.
      * @param {string} scope (Optional) This parameter is optional and if omitted, the same scope requested during the authorization request will be used. If provided the scopes must match those requested during the initial authorization request.
      * @param {string} user_code (Optional) The end-user verification code. This code is required if using this endpoint to approve the Device Authorization.
@@ -1417,6 +1444,7 @@ class FusionAuthClient {
      * @param {string} username The login identifier of the user. The login identifier can be either the email or the username.
      * @param {string} password The user’s password.
      * @param {string} client_id (Optional) The unique client identifier. The client Id is the Id of the FusionAuth Application in which you are attempting to authenticate. This parameter is optional when the Authorization header is provided.
+     *    This parameter is optional when Basic Authorization is used to authenticate this request.
      * @param {string} client_secret (Optional) The client secret. This value may optionally be provided in the request body instead of the Authorization header.
      * @param {string} scope (Optional) This parameter is optional and if omitted, the same scope requested during the authorization request will be used. If provided the scopes must match those requested during the initial authorization request.
      * @param {string} user_code (Optional) The end-user verification code. This code is required if using this endpoint to approve the Device Authorization.
@@ -1579,7 +1607,7 @@ class FusionAuthClient {
      * body with specific validation errors. This will slow the request down but will allow you to identify the cause of
      * the failure. See the validateDbConstraints request parameter.
      *
-     * @param {RefreshTokenImportRequest} request The request that contains all of the information about all of the refresh tokens to import.
+     * @param {RefreshTokenImportRequest} request The request that contains all the information about all the refresh tokens to import.
      * @returns {Promise<ClientResponse<void>>}
      */
     importRefreshTokens(request) {
@@ -1599,7 +1627,7 @@ class FusionAuthClient {
      * body with specific validation errors. This will slow the request down but will allow you to identify the cause of the failure. See
      * the validateDbConstraints request parameter.
      *
-     * @param {ImportRequest} request The request that contains all of the information about all of the users to import.
+     * @param {ImportRequest} request The request that contains all the information about all the users to import.
      * @returns {Promise<ClientResponse<void>>}
      */
     importUsers(request) {
@@ -1623,10 +1651,10 @@ class FusionAuthClient {
             .go();
     }
     /**
-     * Inspect an access token issued by FusionAuth.
+     * Inspect an access token issued as the result of the User based grant such as the Authorization Code Grant, Implicit Grant, the User Credentials Grant or the Refresh Grant.
      *
      * @param {string} client_id The unique client identifier. The client Id is the Id of the FusionAuth Application for which this token was generated.
-     * @param {string} token The access token returned by this OAuth provider as the result of a successful authentication.
+     * @param {string} token The access token returned by this OAuth provider as the result of a successful client credentials grant.
      * @returns {Promise<ClientResponse<IntrospectResponse>>}
      */
     introspectAccessToken(client_id, token) {
@@ -1639,6 +1667,21 @@ class FusionAuthClient {
             .withMethod("POST")
             .go();
     }
+    /**
+     * Inspect an access token issued as the result of the Client Credentials Grant.
+     *
+     * @param {string} token The access token returned by this OAuth provider as the result of a successful client credentials grant.
+     * @returns {Promise<ClientResponse<IntrospectResponse>>}
+     */
+    introspectClientCredentialsAccessToken(token) {
+        let body = new url_1.URLSearchParams();
+        body.append('token', token);
+        return this.startAnonymous()
+            .withUri('/oauth2/introspect')
+            .withFormData(body)
+            .withMethod("POST")
+            .go();
+    }
     /**
      * Issue a new access token (JWT) for the requested Application after ensuring the provided JWT is valid. A valid
      * access token is properly signed and not expired.
@@ -1719,7 +1762,7 @@ class FusionAuthClient {
      * client and revoke the refresh token stored. This API does nothing if the request does not contain an access
      * token or refresh token cookies.
      *
-     * @param {boolean} global When this value is set to true all of the refresh tokens issued to the owner of the
+     * @param {boolean} global When this value is set to true all the refresh tokens issued to the owner of the
      *    provided token will be revoked.
      * @param {string} refreshToken (Optional) The refresh_token as a request parameter instead of coming in via a cookie.
      *    If provided this takes precedence over the cookie.
@@ -1767,7 +1810,7 @@ class FusionAuthClient {
      * action.
      *
      * @param {UUID} actionId The Id of the action to modify. This is technically the user action log id.
-     * @param {ActionRequest} request The request that contains all of the information about the modification.
+     * @param {ActionRequest} request The request that contains all the information about the modification.
      * @returns {Promise<ClientResponse<ActionResponse>>}
      */
     modifyAction(actionId, request) {
@@ -1781,7 +1824,7 @@ class FusionAuthClient {
     /**
      * Complete a login request using a passwordless code
      *
-     * @param {PasswordlessLoginRequest} request The passwordless login request that contains all of the information used to complete login.
+     * @param {PasswordlessLoginRequest} request The passwordless login request that contains all the information used to complete login.
      * @returns {Promise<ClientResponse<LoginResponse>>}
      */
     passwordlessLogin(request) {
@@ -1795,7 +1838,7 @@ class FusionAuthClient {
      * Updates an authentication API key by given id
      *
      * @param {UUID} keyId The Id of the authentication key. If not provided a secure random api key will be generated.
-     * @param {APIKeyRequest} request The request object that contains all of the information needed to create the APIKey.
+     * @param {APIKeyRequest} request The request object that contains all the information needed to create the APIKey.
      * @returns {Promise<ClientResponse<APIKeyResponse>>}
      */
     patchAPIKey(keyId, request) {
@@ -2364,7 +2407,7 @@ class FusionAuthClient {
             .go();
     }
     /**
-     * Retrieves the application for the given id or all of the applications if the id is null.
+     * Retrieves the application for the given id or all the applications if the id is null.
      *
      * @param {UUID} applicationId (Optional) The application id.
      * @returns {Promise<ClientResponse<ApplicationResponse>>}
@@ -2467,7 +2510,7 @@ class FusionAuthClient {
             .go();
     }
     /**
-     * Retrieves the email template for the given Id. If you don't specify the id, this will return all of the email templates.
+     * Retrieves the email template for the given Id. If you don't specify the id, this will return all the email templates.
      *
      * @param {UUID} emailTemplateId (Optional) The Id of the email template.
      * @returns {Promise<ClientResponse<EmailTemplateResponse>>}
@@ -2685,7 +2728,7 @@ class FusionAuthClient {
             .go();
     }
     /**
-     * Retrieves the identity provider for the given id or all of the identity providers if the id is null.
+     * Retrieves the identity provider for the given id or all the identity providers if the id is null.
      *
      * @param {UUID} identityProviderId The identity provider Id.
      * @returns {Promise<ClientResponse<IdentityProviderResponse>>}
@@ -2901,7 +2944,7 @@ class FusionAuthClient {
             .go();
     }
     /**
-     * Retrieves the message template for the given Id. If you don't specify the id, this will return all of the message templates.
+     * Retrieves the message template for the given Id. If you don't specify the id, this will return all the message templates.
      *
      * @param {UUID} messageTemplateId (Optional) The Id of the message template.
      * @returns {Promise<ClientResponse<MessageTemplateResponse>>}
@@ -3046,6 +3089,21 @@ class FusionAuthClient {
             .withMethod("GET")
             .go();
     }
+    /**
+     * Retrieve a pending identity provider link. This is useful to validate a pending link and retrieve meta-data about the identity provider link.
+     *
+     * @param {string} pendingLinkId The pending link Id.
+     * @param {UUID} userId The optional userId. When provided additional meta-data will be provided to identify how many links if any the user already has.
+     * @returns {Promise<ClientResponse<IdentityProviderPendingLinkResponse>>}
+     */
+    retrievePendingLink(pendingLinkId, userId) {
+        return this.start()
+            .withUri('/api/identity-provider/link/pending')
+            .withUriSegment(pendingLinkId)
+            .withParameter('userId', userId)
+            .withMethod("GET")
+            .go();
+    }
     /**
      * Retrieves the FusionAuth Reactor metrics.
      *
@@ -3214,7 +3272,7 @@ class FusionAuthClient {
             .go();
     }
     /**
-     * Retrieves the totals report. This contains all of the total counts for each application and the global registration
+     * Retrieves the totals report. This contains all the total counts for each application and the global registration
      * count.
      *
      * @returns {Promise<ClientResponse<TotalsReportResponse>>}
@@ -3272,7 +3330,7 @@ class FusionAuthClient {
             .go();
     }
     /**
-     * Retrieves the user action for the given Id. If you pass in null for the id, this will return all of the user
+     * Retrieves the user action for the given Id. If you pass in null for the id, this will return all the user
      * actions.
      *
      * @param {UUID} userActionId (Optional) The Id of the user action.
@@ -3286,7 +3344,7 @@ class FusionAuthClient {
             .go();
     }
     /**
-     * Retrieves the user action reason for the given Id. If you pass in null for the id, this will return all of the user
+     * Retrieves the user action reason for the given Id. If you pass in null for the id, this will return all the user
      * action reasons.
      *
      * @param {UUID} userActionReasonId (Optional) The Id of the user action reason.
@@ -3388,6 +3446,46 @@ class FusionAuthClient {
             .withMethod("GET")
             .go();
     }
+    /**
+     * Retrieve a user_code that is part of an in-progress Device Authorization Grant.
+     *
+     * This API is useful if you want to build your own login workflow to complete a device grant.
+     *
+     * @param {string} client_id The client id.
+     * @param {string} client_secret The client id.
+     * @param {string} user_code The end-user verification code.
+     * @returns {Promise<ClientResponse<void>>}
+     */
+    retrieveUserCode(client_id, client_secret, user_code) {
+        let body = new url_1.URLSearchParams();
+        body.append('client_id', client_id);
+        body.append('client_secret', client_secret);
+        body.append('user_code', user_code);
+        return this.startAnonymous()
+            .withUri('/oauth2/device/user-code')
+            .withFormData(body)
+            .withMethod("GET")
+            .go();
+    }
+    /**
+     * Retrieve a user_code that is part of an in-progress Device Authorization Grant.
+     *
+     * This API is useful if you want to build your own login workflow to complete a device grant.
+     *
+     * This request will require an API key.
+     *
+     * @param {string} user_code The end-user verification code.
+     * @returns {Promise<ClientResponse<void>>}
+     */
+    retrieveUserCodeUsingAPIKey(user_code) {
+        let body = new url_1.URLSearchParams();
+        body.append('user_code', user_code);
+        return this.startAnonymous()
+            .withUri('/oauth2/device/user-code')
+            .withFormData(body)
+            .withMethod("GET")
+            .go();
+    }
     /**
      * Retrieves all the comments for the user with the given Id.
      *
@@ -4060,7 +4158,7 @@ class FusionAuthClient {
      * pairs in the email template.
      *
      * @param {UUID} emailTemplateId The id for the template.
-     * @param {SendRequest} request The send email request that contains all of the information used to send the email.
+     * @param {SendRequest} request The send email request that contains all the information used to send the email.
      * @returns {Promise<ClientResponse<SendResponse>>}
      */
     sendEmail(emailTemplateId, request) {
@@ -4087,7 +4185,7 @@ class FusionAuthClient {
     /**
      * Send a passwordless authentication code in an email to complete login.
      *
-     * @param {PasswordlessSendRequest} request The passwordless send request that contains all of the information used to send an email containing a code.
+     * @param {PasswordlessSendRequest} request The passwordless send request that contains all the information used to send an email containing a code.
      * @returns {Promise<ClientResponse<void>>}
      */
     sendPasswordlessCode(request) {
@@ -4145,7 +4243,7 @@ class FusionAuthClient {
      * Send a Two Factor authentication code to allow the completion of Two Factor authentication.
      *
      * @param {string} twoFactorId The Id returned by the Login API necessary to complete Two Factor authentication.
-     * @param {TwoFactorSendRequest} request The Two Factor send request that contains all of the information used to send the Two Factor code to the user.
+     * @param {TwoFactorSendRequest} request The Two Factor send request that contains all the information used to send the Two Factor code to the user.
      * @returns {Promise<ClientResponse<void>>}
      */
     sendTwoFactorCodeForLoginUsingMethod(twoFactorId, request) {
@@ -4174,7 +4272,7 @@ class FusionAuthClient {
      * Start a passwordless login request by generating a passwordless code. This code can be sent to the User using the Send
      * Passwordless Code API or using a mechanism outside of FusionAuth. The passwordless login is completed by using the Passwordless Login API with this code.
      *
-     * @param {PasswordlessStartRequest} request The passwordless start request that contains all of the information used to begin the passwordless login request.
+     * @param {PasswordlessStartRequest} request The passwordless start request that contains all the information used to begin the passwordless login request.
      * @returns {Promise<ClientResponse<PasswordlessStartResponse>>}
      */
     startPasswordlessLogin(request) {
@@ -4190,9 +4288,9 @@ class FusionAuthClient {
      * to send the code out-of-band. The Two-Factor login is completed by making a request to the Two-Factor Login
      * API (/api/two-factor/login). with the two-factor identifier and the one-time use code.
      *
-     * This API is intended to allow you to begin a Two-Factor login outside of a normal login that originated from the Login API (/api/login).
+     * This API is intended to allow you to begin a Two-Factor login outside a normal login that originated from the Login API (/api/login).
      *
-     * @param {TwoFactorStartRequest} request The Two-Factor start request that contains all of the information used to begin the Two-Factor login request.
+     * @param {TwoFactorStartRequest} request The Two-Factor start request that contains all the information used to begin the Two-Factor login request.
      * @returns {Promise<ClientResponse<TwoFactorStartResponse>>}
      */
     startTwoFactorLogin(request) {
@@ -4260,7 +4358,7 @@ class FusionAuthClient {
      * Updates the application with the given Id.
      *
      * @param {UUID} applicationId The Id of the application to update.
-     * @param {ApplicationRequest} request The request that contains all of the new application information.
+     * @param {ApplicationRequest} request The request that contains all the new application information.
      * @returns {Promise<ClientResponse<ApplicationResponse>>}
      */
     updateApplication(applicationId, request) {
@@ -4276,7 +4374,7 @@ class FusionAuthClient {
      *
      * @param {UUID} applicationId The Id of the application that the role belongs to.
      * @param {UUID} roleId The Id of the role to update.
-     * @param {ApplicationRequest} request The request that contains all of the new role information.
+     * @param {ApplicationRequest} request The request that contains all the new role information.
      * @returns {Promise<ClientResponse<ApplicationResponse>>}
      */
     updateApplicationRole(applicationId, roleId, request) {
@@ -4293,7 +4391,7 @@ class FusionAuthClient {
      * Updates the connector with the given Id.
      *
      * @param {UUID} connectorId The Id of the connector to update.
-     * @param {ConnectorRequest} request The request object that contains all of the new connector information.
+     * @param {ConnectorRequest} request The request object that contains all the new connector information.
      * @returns {Promise<ClientResponse<ConnectorResponse>>}
      */
     updateConnector(connectorId, request) {
@@ -4308,7 +4406,7 @@ class FusionAuthClient {
      * Updates the consent with the given Id.
      *
      * @param {UUID} consentId The Id of the consent to update.
-     * @param {ConsentRequest} request The request that contains all of the new consent information.
+     * @param {ConsentRequest} request The request that contains all the new consent information.
      * @returns {Promise<ClientResponse<ConsentResponse>>}
      */
     updateConsent(consentId, request) {
@@ -4323,7 +4421,7 @@ class FusionAuthClient {
      * Updates the email template with the given Id.
      *
      * @param {UUID} emailTemplateId The Id of the email template to update.
-     * @param {EmailTemplateRequest} request The request that contains all of the new email template information.
+     * @param {EmailTemplateRequest} request The request that contains all the new email template information.
      * @returns {Promise<ClientResponse<EmailTemplateResponse>>}
      */
     updateEmailTemplate(emailTemplateId, request) {
@@ -4338,7 +4436,7 @@ class FusionAuthClient {
      * Updates the Entity with the given Id.
      *
      * @param {UUID} entityId The Id of the Entity to update.
-     * @param {EntityRequest} request The request that contains all of the new Entity information.
+     * @param {EntityRequest} request The request that contains all the new Entity information.
      * @returns {Promise<ClientResponse<EntityResponse>>}
      */
     updateEntity(entityId, request) {
@@ -4353,7 +4451,7 @@ class FusionAuthClient {
      * Updates the Entity Type with the given Id.
      *
      * @param {UUID} entityTypeId The Id of the Entity Type to update.
-     * @param {EntityTypeRequest} request The request that contains all of the new Entity Type information.
+     * @param {EntityTypeRequest} request The request that contains all the new Entity Type information.
      * @returns {Promise<ClientResponse<EntityTypeResponse>>}
      */
     updateEntityType(entityTypeId, request) {
@@ -4369,7 +4467,7 @@ class FusionAuthClient {
      *
      * @param {UUID} entityTypeId The Id of the entityType that the permission belongs to.
      * @param {UUID} permissionId The Id of the permission to update.
-     * @param {EntityTypeRequest} request The request that contains all of the new permission information.
+     * @param {EntityTypeRequest} request The request that contains all the new permission information.
      * @returns {Promise<ClientResponse<EntityTypeResponse>>}
      */
     updateEntityTypePermission(entityTypeId, permissionId, request) {
@@ -4386,7 +4484,7 @@ class FusionAuthClient {
      * Updates the form with the given Id.
      *
      * @param {UUID} formId The Id of the form to update.
-     * @param {FormRequest} request The request object that contains all of the new form information.
+     * @param {FormRequest} request The request object that contains all the new form information.
      * @returns {Promise<ClientResponse<FormResponse>>}
      */
     updateForm(formId, request) {
@@ -4401,7 +4499,7 @@ class FusionAuthClient {
      * Updates the form field with the given Id.
      *
      * @param {UUID} fieldId The Id of the form field to update.
-     * @param {FormFieldRequest} request The request object that contains all of the new form field information.
+     * @param {FormFieldRequest} request The request object that contains all the new form field information.
      * @returns {Promise<ClientResponse<FormFieldResponse>>}
      */
     updateFormField(fieldId, request) {
@@ -4416,7 +4514,7 @@ class FusionAuthClient {
      * Updates the group with the given Id.
      *
      * @param {UUID} groupId The Id of the group to update.
-     * @param {GroupRequest} request The request that contains all of the new group information.
+     * @param {GroupRequest} request The request that contains all the new group information.
      * @returns {Promise<ClientResponse<GroupResponse>>}
      */
     updateGroup(groupId, request) {
@@ -4444,7 +4542,7 @@ class FusionAuthClient {
      * Updates the IP Access Control List with the given Id.
      *
      * @param {UUID} accessControlListId The Id of the IP Access Control List to update.
-     * @param {IPAccessControlListRequest} request The request that contains all of the new IP Access Control List information.
+     * @param {IPAccessControlListRequest} request The request that contains all the new IP Access Control List information.
      * @returns {Promise<ClientResponse<IPAccessControlListResponse>>}
      */
     updateIPAccessControlList(accessControlListId, request) {
@@ -4473,7 +4571,7 @@ class FusionAuthClient {
     /**
      * Updates the available integrations.
      *
-     * @param {IntegrationRequest} request The request that contains all of the new integration information.
+     * @param {IntegrationRequest} request The request that contains all the new integration information.
      * @returns {Promise<ClientResponse<IntegrationResponse>>}
      */
     updateIntegrations(request) {
@@ -4487,7 +4585,7 @@ class FusionAuthClient {
      * Updates the key with the given Id.
      *
      * @param {UUID} keyId The Id of the key to update.
-     * @param {KeyRequest} request The request that contains all of the new key information.
+     * @param {KeyRequest} request The request that contains all the new key information.
      * @returns {Promise<ClientResponse<KeyResponse>>}
      */
     updateKey(keyId, request) {
@@ -4502,7 +4600,7 @@ class FusionAuthClient {
      * Updates the lambda with the given Id.
      *
      * @param {UUID} lambdaId The Id of the lambda to update.
-     * @param {LambdaRequest} request The request that contains all of the new lambda information.
+     * @param {LambdaRequest} request The request that contains all the new lambda information.
      * @returns {Promise<ClientResponse<LambdaResponse>>}
      */
     updateLambda(lambdaId, request) {
@@ -4517,7 +4615,7 @@ class FusionAuthClient {
      * Updates the message template with the given Id.
      *
      * @param {UUID} messageTemplateId The Id of the message template to update.
-     * @param {MessageTemplateRequest} request The request that contains all of the new message template information.
+     * @param {MessageTemplateRequest} request The request that contains all the new message template information.
      * @returns {Promise<ClientResponse<MessageTemplateResponse>>}
      */
     updateMessageTemplate(messageTemplateId, request) {
@@ -4532,7 +4630,7 @@ class FusionAuthClient {
      * Updates the messenger with the given Id.
      *
      * @param {UUID} messengerId The Id of the messenger to update.
-     * @param {MessengerRequest} request The request object that contains all of the new messenger information.
+     * @param {MessengerRequest} request The request object that contains all the new messenger information.
      * @returns {Promise<ClientResponse<MessengerResponse>>}
      */
     updateMessenger(messengerId, request) {
@@ -4547,7 +4645,7 @@ class FusionAuthClient {
      * Updates the registration for the user with the given id and the application defined in the request.
      *
      * @param {UUID} userId The Id of the user whose registration is going to be updated.
-     * @param {RegistrationRequest} request The request that contains all of the new registration information.
+     * @param {RegistrationRequest} request The request that contains all the new registration information.
      * @returns {Promise<ClientResponse<RegistrationResponse>>}
      */
     updateRegistration(userId, request) {
@@ -4561,7 +4659,7 @@ class FusionAuthClient {
     /**
      * Updates the system configuration.
      *
-     * @param {SystemConfigurationRequest} request The request that contains all of the new system configuration information.
+     * @param {SystemConfigurationRequest} request The request that contains all the new system configuration information.
      * @returns {Promise<ClientResponse<SystemConfigurationResponse>>}
      */
     updateSystemConfiguration(request) {
@@ -4575,7 +4673,7 @@ class FusionAuthClient {
      * Updates the tenant with the given Id.
      *
      * @param {UUID} tenantId The Id of the tenant to update.
-     * @param {TenantRequest} request The request that contains all of the new tenant information.
+     * @param {TenantRequest} request The request that contains all the new tenant information.
      * @returns {Promise<ClientResponse<TenantResponse>>}
      */
     updateTenant(tenantId, request) {
@@ -4590,7 +4688,7 @@ class FusionAuthClient {
      * Updates the theme with the given Id.
      *
      * @param {UUID} themeId The Id of the theme to update.
-     * @param {ThemeRequest} request The request that contains all of the new theme information.
+     * @param {ThemeRequest} request The request that contains all the new theme information.
      * @returns {Promise<ClientResponse<ThemeResponse>>}
      */
     updateTheme(themeId, request) {
@@ -4605,7 +4703,7 @@ class FusionAuthClient {
      * Updates the user with the given Id.
      *
      * @param {UUID} userId The Id of the user to update.
-     * @param {UserRequest} request The request that contains all of the new user information.
+     * @param {UserRequest} request The request that contains all the new user information.
      * @returns {Promise<ClientResponse<UserResponse>>}
      */
     updateUser(userId, request) {
@@ -4620,7 +4718,7 @@ class FusionAuthClient {
      * Updates the user action with the given Id.
      *
      * @param {UUID} userActionId The Id of the user action to update.
-     * @param {UserActionRequest} request The request that contains all of the new user action information.
+     * @param {UserActionRequest} request The request that contains all the new user action information.
      * @returns {Promise<ClientResponse<UserActionResponse>>}
      */
     updateUserAction(userActionId, request) {
@@ -4635,7 +4733,7 @@ class FusionAuthClient {
      * Updates the user action reason with the given Id.
      *
      * @param {UUID} userActionReasonId The Id of the user action reason to update.
-     * @param {UserActionReasonRequest} request The request that contains all of the new user action reason information.
+     * @param {UserActionReasonRequest} request The request that contains all the new user action reason information.
      * @returns {Promise<ClientResponse<UserActionReasonResponse>>}
      */
     updateUserActionReason(userActionReasonId, request) {
@@ -4665,7 +4763,7 @@ class FusionAuthClient {
      * Updates the webhook with the given Id.
      *
      * @param {UUID} webhookId The Id of the webhook to update.
-     * @param {WebhookRequest} request The request that contains all of the new webhook information.
+     * @param {WebhookRequest} request The request that contains all the new webhook information.
      * @returns {Promise<ClientResponse<WebhookResponse>>}
      */
     updateWebhook(webhookId, request) {
@@ -4735,7 +4833,7 @@ class FusionAuthClient {
      * If a TTL is not provided in the request, the TTL will be retrieved from the default Tenant or the Tenant specified on the request either
      * by way of the X-FusionAuth-TenantId request header, or a tenant scoped API key.
      *
-     * @param {JWTVendRequest} request The request that contains all of the claims for this JWT.
+     * @param {JWTVendRequest} request The request that contains all the claims for this JWT.
      * @returns {Promise<ClientResponse<JWTVendResponse>>}
      */
     vendJWT(request) {
@@ -4855,26 +4953,38 @@ class FusionAuthClient {
 exports.FusionAuthClient = FusionAuthClient;
 exports.default = FusionAuthClient;
 /**
- * Available JSON Web Algorithms (JWA) as described in RFC 7518 available for this JWT implementation.
+ * @author Daniel DeGroff
+ */
+var FormDataType;
+(function (FormDataType) {
+    FormDataType["bool"] = "bool";
+    FormDataType["consent"] = "consent";
+    FormDataType["date"] = "date";
+    FormDataType["email"] = "email";
+    FormDataType["number"] = "number";
+    FormDataType["string"] = "string";
+})(FormDataType = exports.FormDataType || (exports.FormDataType = {}));
+/**
+ * @author Daniel DeGroff
+ */
+var BreachedPasswordStatus;
+(function (BreachedPasswordStatus) {
+    BreachedPasswordStatus["None"] = "None";
+    BreachedPasswordStatus["ExactMatch"] = "ExactMatch";
+    BreachedPasswordStatus["SubAddressMatch"] = "SubAddressMatch";
+    BreachedPasswordStatus["PasswordOnly"] = "PasswordOnly";
+    BreachedPasswordStatus["CommonPassword"] = "CommonPassword";
+})(BreachedPasswordStatus = exports.BreachedPasswordStatus || (exports.BreachedPasswordStatus = {}));
+/**
+ * Models a consent.
  *
  * @author Daniel DeGroff
  */
-var Algorithm;
-(function (Algorithm) {
-    Algorithm["ES256"] = "ES256";
-    Algorithm["ES384"] = "ES384";
-    Algorithm["ES512"] = "ES512";
-    Algorithm["HS256"] = "HS256";
-    Algorithm["HS384"] = "HS384";
-    Algorithm["HS512"] = "HS512";
-    Algorithm["PS256"] = "PS256";
-    Algorithm["PS384"] = "PS384";
-    Algorithm["PS512"] = "PS512";
-    Algorithm["RS256"] = "RS256";
-    Algorithm["RS384"] = "RS384";
-    Algorithm["RS512"] = "RS512";
-    Algorithm["none"] = "none";
-})(Algorithm = exports.Algorithm || (exports.Algorithm = {}));
+var ConsentStatus;
+(function (ConsentStatus) {
+    ConsentStatus["Active"] = "Active";
+    ConsentStatus["Revoked"] = "Revoked";
+})(ConsentStatus = exports.ConsentStatus || (exports.ConsentStatus = {}));
 /**
  * @author Daniel DeGroff
  */
@@ -4885,47 +4995,75 @@ var ApplicationMultiFactorTrustPolicy;
     ApplicationMultiFactorTrustPolicy["None"] = "None";
 })(ApplicationMultiFactorTrustPolicy = exports.ApplicationMultiFactorTrustPolicy || (exports.ApplicationMultiFactorTrustPolicy = {}));
 /**
- * Used to communicate whether and how authenticator attestation should be delivered to the Relying Party
- *
- * @author Spencer Witt
+ * @author Daniel DeGroff
  */
-var AttestationConveyancePreference;
-(function (AttestationConveyancePreference) {
-    AttestationConveyancePreference["none"] = "none";
-    AttestationConveyancePreference["indirect"] = "indirect";
-    AttestationConveyancePreference["direct"] = "direct";
-    AttestationConveyancePreference["enterprise"] = "enterprise";
-})(AttestationConveyancePreference = exports.AttestationConveyancePreference || (exports.AttestationConveyancePreference = {}));
+var UserState;
+(function (UserState) {
+    UserState["Authenticated"] = "Authenticated";
+    UserState["AuthenticatedNotRegistered"] = "AuthenticatedNotRegistered";
+    UserState["AuthenticatedNotVerified"] = "AuthenticatedNotVerified";
+    UserState["AuthenticatedRegistrationNotVerified"] = "AuthenticatedRegistrationNotVerified";
+})(UserState = exports.UserState || (exports.UserState = {}));
 /**
- * Used to indicate what type of attestation was included in the authenticator response for a given WebAuthn credential at the time it was created
+ * Authorization Grant types as defined by the <a href="https://tools.ietf.org/html/rfc6749">The OAuth 2.0 Authorization
+ * Framework - RFC 6749</a>.
+ * <p>
+ * Specific names as defined by <a href="https://tools.ietf.org/html/rfc7591#section-4.1">
+ * OAuth 2.0 Dynamic Client Registration Protocol - RFC 7591 Section 4.1</a>
  *
- * @author Spencer Witt
+ * @author Daniel DeGroff
  */
-var AttestationType;
-(function (AttestationType) {
-    AttestationType["basic"] = "basic";
-    AttestationType["self"] = "self";
-    AttestationType["attestationCa"] = "attestationCa";
-    AttestationType["anonymizationCa"] = "anonymizationCa";
-    AttestationType["none"] = "none";
-})(AttestationType = exports.AttestationType || (exports.AttestationType = {}));
+var GrantType;
+(function (GrantType) {
+    GrantType["authorization_code"] = "authorization_code";
+    GrantType["implicit"] = "implicit";
+    GrantType["password"] = "password";
+    GrantType["client_credentials"] = "client_credentials";
+    GrantType["refresh_token"] = "refresh_token";
+    GrantType["unknown"] = "unknown";
+    GrantType["device_code"] = "urn:ietf:params:oauth:grant-type:device_code";
+})(GrantType = exports.GrantType || (exports.GrantType = {}));
 /**
- * @author Brett Pontarelli
+ * @author Brian Pontarelli
  */
-var AuthenticationThreats;
-(function (AuthenticationThreats) {
-    AuthenticationThreats["ImpossibleTravel"] = "ImpossibleTravel";
-})(AuthenticationThreats = exports.AuthenticationThreats || (exports.AuthenticationThreats = {}));
+var ReactorFeatureStatus;
+(function (ReactorFeatureStatus) {
+    ReactorFeatureStatus["ACTIVE"] = "ACTIVE";
+    ReactorFeatureStatus["DISCONNECTED"] = "DISCONNECTED";
+    ReactorFeatureStatus["PENDING"] = "PENDING";
+    ReactorFeatureStatus["DISABLED"] = "DISABLED";
+    ReactorFeatureStatus["UNKNOWN"] = "UNKNOWN";
+})(ReactorFeatureStatus = exports.ReactorFeatureStatus || (exports.ReactorFeatureStatus = {}));
 /**
- * Describes the <a href="https://www.w3.org/TR/webauthn-2/#authenticator-attachment-modality">authenticator attachment modality</a>.
+ * @author Brett Guy
+ */
+var ProofKeyForCodeExchangePolicy;
+(function (ProofKeyForCodeExchangePolicy) {
+    ProofKeyForCodeExchangePolicy["Required"] = "Required";
+    ProofKeyForCodeExchangePolicy["NotRequired"] = "NotRequired";
+    ProofKeyForCodeExchangePolicy["NotRequiredWhenUsingClientAuthentication"] = "NotRequiredWhenUsingClientAuthentication";
+})(ProofKeyForCodeExchangePolicy = exports.ProofKeyForCodeExchangePolicy || (exports.ProofKeyForCodeExchangePolicy = {}));
+/**
+ * <ul>
+ * <li>Bearer Token type as defined by <a href="https://tools.ietf.org/html/rfc6750">RFC 6750</a>.</li>
+ * <li>MAC Token type as referenced by <a href="https://tools.ietf.org/html/rfc6749">RFC 6749</a> and
+ * <a href="https://tools.ietf.org/html/draft-ietf-oauth-v2-http-mac-05">
+ * Draft RFC on OAuth 2.0 Message Authentication Code (MAC) Tokens</a>
+ * </li>
+ * </ul>
  *
- * @author Spencer Witt
+ * @author Daniel DeGroff
  */
-var AuthenticatorAttachment;
-(function (AuthenticatorAttachment) {
-    AuthenticatorAttachment["platform"] = "platform";
-    AuthenticatorAttachment["crossPlatform"] = "crossPlatform";
-})(AuthenticatorAttachment = exports.AuthenticatorAttachment || (exports.AuthenticatorAttachment = {}));
+var TokenType;
+(function (TokenType) {
+    TokenType["Bearer"] = "Bearer";
+    TokenType["MAC"] = "MAC";
+})(TokenType = exports.TokenType || (exports.TokenType = {}));
+var XMLSignatureLocation;
+(function (XMLSignatureLocation) {
+    XMLSignatureLocation["Assertion"] = "Assertion";
+    XMLSignatureLocation["Response"] = "Response";
+})(XMLSignatureLocation = exports.XMLSignatureLocation || (exports.XMLSignatureLocation = {}));
 /**
  * Describes the authenticator attachment modality preference for a WebAuthn workflow. See {@link AuthenticatorAttachment}
  *
@@ -4937,24 +5075,45 @@ var AuthenticatorAttachmentPreference;
     AuthenticatorAttachmentPreference["platform"] = "platform";
     AuthenticatorAttachmentPreference["crossPlatform"] = "crossPlatform";
 })(AuthenticatorAttachmentPreference = exports.AuthenticatorAttachmentPreference || (exports.AuthenticatorAttachmentPreference = {}));
-var BreachAction;
-(function (BreachAction) {
-    BreachAction["Off"] = "Off";
-    BreachAction["RecordOnly"] = "RecordOnly";
-    BreachAction["NotifyUser"] = "NotifyUser";
-    BreachAction["RequireChange"] = "RequireChange";
-})(BreachAction = exports.BreachAction || (exports.BreachAction = {}));
+/**
+ * @author Brett Guy
+ */
+var IPAccessControlEntryAction;
+(function (IPAccessControlEntryAction) {
+    IPAccessControlEntryAction["Allow"] = "Allow";
+    IPAccessControlEntryAction["Block"] = "Block";
+})(IPAccessControlEntryAction = exports.IPAccessControlEntryAction || (exports.IPAccessControlEntryAction = {}));
+/**
+ * @author Mikey Sleevi
+ */
+var MessageType;
+(function (MessageType) {
+    MessageType["SMS"] = "SMS";
+})(MessageType = exports.MessageType || (exports.MessageType = {}));
+/**
+ * Status for content like usernames, profile attributes, etc.
+ *
+ * @author Brian Pontarelli
+ */
+var ContentStatus;
+(function (ContentStatus) {
+    ContentStatus["ACTIVE"] = "ACTIVE";
+    ContentStatus["PENDING"] = "PENDING";
+    ContentStatus["REJECTED"] = "REJECTED";
+})(ContentStatus = exports.ContentStatus || (exports.ContentStatus = {}));
 /**
  * @author Daniel DeGroff
  */
-var BreachedPasswordStatus;
-(function (BreachedPasswordStatus) {
-    BreachedPasswordStatus["None"] = "None";
-    BreachedPasswordStatus["ExactMatch"] = "ExactMatch";
-    BreachedPasswordStatus["SubAddressMatch"] = "SubAddressMatch";
-    BreachedPasswordStatus["PasswordOnly"] = "PasswordOnly";
-    BreachedPasswordStatus["CommonPassword"] = "CommonPassword";
-})(BreachedPasswordStatus = exports.BreachedPasswordStatus || (exports.BreachedPasswordStatus = {}));
+var FormControl;
+(function (FormControl) {
+    FormControl["checkbox"] = "checkbox";
+    FormControl["number"] = "number";
+    FormControl["password"] = "password";
+    FormControl["radio"] = "radio";
+    FormControl["select"] = "select";
+    FormControl["textarea"] = "textarea";
+    FormControl["text"] = "text";
+})(FormControl = exports.FormControl || (exports.FormControl = {}));
 var BreachMatchMode;
 (function (BreachMatchMode) {
     BreachMatchMode["Low"] = "Low";
@@ -4962,84 +5121,57 @@ var BreachMatchMode;
     BreachMatchMode["High"] = "High";
 })(BreachMatchMode = exports.BreachMatchMode || (exports.BreachMatchMode = {}));
 /**
- * XML canonicalization method enumeration. This is used for the IdP and SP side of FusionAuth SAML.
+ * COSE key type
  *
- * @author Brian Pontarelli
- */
-var CanonicalizationMethod;
-(function (CanonicalizationMethod) {
-    CanonicalizationMethod["exclusive"] = "exclusive";
-    CanonicalizationMethod["exclusive_with_comments"] = "exclusive_with_comments";
-    CanonicalizationMethod["inclusive"] = "inclusive";
-    CanonicalizationMethod["inclusive_with_comments"] = "inclusive_with_comments";
-})(CanonicalizationMethod = exports.CanonicalizationMethod || (exports.CanonicalizationMethod = {}));
-/**
- * @author Brett Pontarelli
- */
-var CaptchaMethod;
-(function (CaptchaMethod) {
-    CaptchaMethod["GoogleRecaptchaV2"] = "GoogleRecaptchaV2";
-    CaptchaMethod["GoogleRecaptchaV3"] = "GoogleRecaptchaV3";
-    CaptchaMethod["HCaptcha"] = "HCaptcha";
-    CaptchaMethod["HCaptchaEnterprise"] = "HCaptchaEnterprise";
-})(CaptchaMethod = exports.CaptchaMethod || (exports.CaptchaMethod = {}));
-/**
- * @author Trevor Smith
+ * @author Spencer Witt
  */
-var ChangePasswordReason;
-(function (ChangePasswordReason) {
-    ChangePasswordReason["Administrative"] = "Administrative";
-    ChangePasswordReason["Breached"] = "Breached";
-    ChangePasswordReason["Expired"] = "Expired";
-    ChangePasswordReason["Validation"] = "Validation";
-})(ChangePasswordReason = exports.ChangePasswordReason || (exports.ChangePasswordReason = {}));
-var ClientAuthenticationMethod;
-(function (ClientAuthenticationMethod) {
-    ClientAuthenticationMethod["none"] = "none";
-    ClientAuthenticationMethod["client_secret_basic"] = "client_secret_basic";
-    ClientAuthenticationMethod["client_secret_post"] = "client_secret_post";
-})(ClientAuthenticationMethod = exports.ClientAuthenticationMethod || (exports.ClientAuthenticationMethod = {}));
+var CoseKeyType;
+(function (CoseKeyType) {
+    CoseKeyType["Reserved"] = "0";
+    CoseKeyType["OKP"] = "1";
+    CoseKeyType["EC2"] = "2";
+    CoseKeyType["RSA"] = "3";
+    CoseKeyType["Symmetric"] = "4";
+})(CoseKeyType = exports.CoseKeyType || (exports.CoseKeyType = {}));
 /**
- * @author Brett Guy
+ * @author Lyle Schemmerling
  */
-var ClientAuthenticationPolicy;
-(function (ClientAuthenticationPolicy) {
-    ClientAuthenticationPolicy["Required"] = "Required";
-    ClientAuthenticationPolicy["NotRequired"] = "NotRequired";
-    ClientAuthenticationPolicy["NotRequiredWhenUsingPKCE"] = "NotRequiredWhenUsingPKCE";
-})(ClientAuthenticationPolicy = exports.ClientAuthenticationPolicy || (exports.ClientAuthenticationPolicy = {}));
+var SAMLv2DestinationAssertionPolicy;
+(function (SAMLv2DestinationAssertionPolicy) {
+    SAMLv2DestinationAssertionPolicy["Enabled"] = "Enabled";
+    SAMLv2DestinationAssertionPolicy["Disabled"] = "Disabled";
+    SAMLv2DestinationAssertionPolicy["AllowAlternates"] = "AllowAlternates";
+})(SAMLv2DestinationAssertionPolicy = exports.SAMLv2DestinationAssertionPolicy || (exports.SAMLv2DestinationAssertionPolicy = {}));
 /**
- * The types of connectors. This enum is stored as an ordinal on the <code>identities</code> table, order must be maintained.
+ * Defines valid credential types. This is an extension point in the WebAuthn spec. The only defined value at this time is "public-key"
  *
- * @author Trevor Smith
+ * @author Spencer Witt
  */
-var ConnectorType;
-(function (ConnectorType) {
-    ConnectorType["FusionAuth"] = "FusionAuth";
-    ConnectorType["Generic"] = "Generic";
-    ConnectorType["LDAP"] = "LDAP";
-})(ConnectorType = exports.ConnectorType || (exports.ConnectorType = {}));
+var PublicKeyCredentialType;
+(function (PublicKeyCredentialType) {
+    PublicKeyCredentialType["publicKey"] = "public-key";
+})(PublicKeyCredentialType = exports.PublicKeyCredentialType || (exports.PublicKeyCredentialType = {}));
 /**
- * Models a consent.
- *
  * @author Daniel DeGroff
  */
-var ConsentStatus;
-(function (ConsentStatus) {
-    ConsentStatus["Active"] = "Active";
-    ConsentStatus["Revoked"] = "Revoked";
-})(ConsentStatus = exports.ConsentStatus || (exports.ConsentStatus = {}));
+var FormFieldAdminPolicy;
+(function (FormFieldAdminPolicy) {
+    FormFieldAdminPolicy["Edit"] = "Edit";
+    FormFieldAdminPolicy["View"] = "View";
+})(FormFieldAdminPolicy = exports.FormFieldAdminPolicy || (exports.FormFieldAdminPolicy = {}));
 /**
- * Status for content like usernames, profile attributes, etc.
- *
- * @author Brian Pontarelli
+ * @author Daniel DeGroff
  */
-var ContentStatus;
-(function (ContentStatus) {
-    ContentStatus["ACTIVE"] = "ACTIVE";
-    ContentStatus["PENDING"] = "PENDING";
-    ContentStatus["REJECTED"] = "REJECTED";
-})(ContentStatus = exports.ContentStatus || (exports.ContentStatus = {}));
+var HTTPMethod;
+(function (HTTPMethod) {
+    HTTPMethod["GET"] = "GET";
+    HTTPMethod["POST"] = "POST";
+    HTTPMethod["PUT"] = "PUT";
+    HTTPMethod["DELETE"] = "DELETE";
+    HTTPMethod["HEAD"] = "HEAD";
+    HTTPMethod["OPTIONS"] = "OPTIONS";
+    HTTPMethod["PATCH"] = "PATCH";
+})(HTTPMethod = exports.HTTPMethod || (exports.HTTPMethod = {}));
 /**
  * A number identifying a cryptographic algorithm. Values should be registered with the <a
  * href="https://www.iana.org/assignments/cose/cose.xhtml#algorithms">IANA COSE Algorithms registry</a>
@@ -5059,35 +5191,94 @@ var CoseAlgorithmIdentifier;
     CoseAlgorithmIdentifier["PS512"] = "SHA-512";
 })(CoseAlgorithmIdentifier = exports.CoseAlgorithmIdentifier || (exports.CoseAlgorithmIdentifier = {}));
 /**
- * COSE Elliptic Curve identifier to determine which elliptic curve to use with a given key
+ * The types of lambdas that indicate how they are invoked by FusionAuth.
+ *
+ * @author Brian Pontarelli
+ */
+var LambdaType;
+(function (LambdaType) {
+    LambdaType["JWTPopulate"] = "JWTPopulate";
+    LambdaType["OpenIDReconcile"] = "OpenIDReconcile";
+    LambdaType["SAMLv2Reconcile"] = "SAMLv2Reconcile";
+    LambdaType["SAMLv2Populate"] = "SAMLv2Populate";
+    LambdaType["AppleReconcile"] = "AppleReconcile";
+    LambdaType["ExternalJWTReconcile"] = "ExternalJWTReconcile";
+    LambdaType["FacebookReconcile"] = "FacebookReconcile";
+    LambdaType["GoogleReconcile"] = "GoogleReconcile";
+    LambdaType["HYPRReconcile"] = "HYPRReconcile";
+    LambdaType["TwitterReconcile"] = "TwitterReconcile";
+    LambdaType["LDAPConnectorReconcile"] = "LDAPConnectorReconcile";
+    LambdaType["LinkedInReconcile"] = "LinkedInReconcile";
+    LambdaType["EpicGamesReconcile"] = "EpicGamesReconcile";
+    LambdaType["NintendoReconcile"] = "NintendoReconcile";
+    LambdaType["SonyPSNReconcile"] = "SonyPSNReconcile";
+    LambdaType["SteamReconcile"] = "SteamReconcile";
+    LambdaType["TwitchReconcile"] = "TwitchReconcile";
+    LambdaType["XboxReconcile"] = "XboxReconcile";
+    LambdaType["ClientCredentialsJWTPopulate"] = "ClientCredentialsJWTPopulate";
+    LambdaType["SCIMServerGroupRequestConverter"] = "SCIMServerGroupRequestConverter";
+    LambdaType["SCIMServerGroupResponseConverter"] = "SCIMServerGroupResponseConverter";
+    LambdaType["SCIMServerUserRequestConverter"] = "SCIMServerUserRequestConverter";
+    LambdaType["SCIMServerUserResponseConverter"] = "SCIMServerUserResponseConverter";
+    LambdaType["SelfServiceRegistrationValidation"] = "SelfServiceRegistrationValidation";
+})(LambdaType = exports.LambdaType || (exports.LambdaType = {}));
+/**
+ * Used to communicate whether and how authenticator attestation should be delivered to the Relying Party
  *
  * @author Spencer Witt
  */
-var CoseEllipticCurve;
-(function (CoseEllipticCurve) {
-    CoseEllipticCurve["Reserved"] = "Reserved";
-    CoseEllipticCurve["P256"] = "P256";
-    CoseEllipticCurve["P384"] = "P384";
-    CoseEllipticCurve["P521"] = "P521";
-    CoseEllipticCurve["X25519"] = "X25519";
-    CoseEllipticCurve["X448"] = "X448";
-    CoseEllipticCurve["Ed25519"] = "Ed25519";
-    CoseEllipticCurve["Ed448"] = "Ed448";
-    CoseEllipticCurve["Secp256k1"] = "Secp256k1";
-})(CoseEllipticCurve = exports.CoseEllipticCurve || (exports.CoseEllipticCurve = {}));
+var AttestationConveyancePreference;
+(function (AttestationConveyancePreference) {
+    AttestationConveyancePreference["none"] = "none";
+    AttestationConveyancePreference["indirect"] = "indirect";
+    AttestationConveyancePreference["direct"] = "direct";
+    AttestationConveyancePreference["enterprise"] = "enterprise";
+})(AttestationConveyancePreference = exports.AttestationConveyancePreference || (exports.AttestationConveyancePreference = {}));
 /**
- * COSE key type
+ * @author Daniel DeGroff
+ */
+var ObjectState;
+(function (ObjectState) {
+    ObjectState["Active"] = "Active";
+    ObjectState["Inactive"] = "Inactive";
+    ObjectState["PendingDelete"] = "PendingDelete";
+})(ObjectState = exports.ObjectState || (exports.ObjectState = {}));
+/**
+ * @author Brett Pontarelli
+ */
+var AuthenticationThreats;
+(function (AuthenticationThreats) {
+    AuthenticationThreats["ImpossibleTravel"] = "ImpossibleTravel";
+})(AuthenticationThreats = exports.AuthenticationThreats || (exports.AuthenticationThreats = {}));
+/**
+ * Describes the Relying Party's requirements for <a href="https://www.w3.org/TR/webauthn-2/#client-side-discoverable-credential">client-side
+ * discoverable credentials</a> (formerly known as "resident keys")
  *
  * @author Spencer Witt
  */
-var CoseKeyType;
-(function (CoseKeyType) {
-    CoseKeyType["Reserved"] = "0";
-    CoseKeyType["OKP"] = "1";
-    CoseKeyType["EC2"] = "2";
-    CoseKeyType["RSA"] = "3";
-    CoseKeyType["Symmetric"] = "4";
-})(CoseKeyType = exports.CoseKeyType || (exports.CoseKeyType = {}));
+var ResidentKeyRequirement;
+(function (ResidentKeyRequirement) {
+    ResidentKeyRequirement["discouraged"] = "discouraged";
+    ResidentKeyRequirement["preferred"] = "preferred";
+    ResidentKeyRequirement["required"] = "required";
+})(ResidentKeyRequirement = exports.ResidentKeyRequirement || (exports.ResidentKeyRequirement = {}));
+/**
+ * @author Brett Guy
+ */
+var ClientAuthenticationPolicy;
+(function (ClientAuthenticationPolicy) {
+    ClientAuthenticationPolicy["Required"] = "Required";
+    ClientAuthenticationPolicy["NotRequired"] = "NotRequired";
+    ClientAuthenticationPolicy["NotRequiredWhenUsingPKCE"] = "NotRequiredWhenUsingPKCE";
+})(ClientAuthenticationPolicy = exports.ClientAuthenticationPolicy || (exports.ClientAuthenticationPolicy = {}));
+/**
+ * @author Daniel DeGroff
+ */
+var RefreshTokenUsagePolicy;
+(function (RefreshTokenUsagePolicy) {
+    RefreshTokenUsagePolicy["Reusable"] = "Reusable";
+    RefreshTokenUsagePolicy["OneTimeUse"] = "OneTimeUse";
+})(RefreshTokenUsagePolicy = exports.RefreshTokenUsagePolicy || (exports.RefreshTokenUsagePolicy = {}));
 var DeviceType;
 (function (DeviceType) {
     DeviceType["BROWSER"] = "BROWSER";
@@ -5100,244 +5291,51 @@ var DeviceType;
     DeviceType["TV"] = "TV";
     DeviceType["UNKNOWN"] = "UNKNOWN";
 })(DeviceType = exports.DeviceType || (exports.DeviceType = {}));
-var EmailSecurityType;
-(function (EmailSecurityType) {
-    EmailSecurityType["NONE"] = "NONE";
-    EmailSecurityType["SSL"] = "SSL";
-    EmailSecurityType["TLS"] = "TLS";
-})(EmailSecurityType = exports.EmailSecurityType || (exports.EmailSecurityType = {}));
 /**
- * Event Log Type
- *
+ * @author Brett Pontarelli
+ */
+var CaptchaMethod;
+(function (CaptchaMethod) {
+    CaptchaMethod["GoogleRecaptchaV2"] = "GoogleRecaptchaV2";
+    CaptchaMethod["GoogleRecaptchaV3"] = "GoogleRecaptchaV3";
+    CaptchaMethod["HCaptcha"] = "HCaptcha";
+    CaptchaMethod["HCaptchaEnterprise"] = "HCaptchaEnterprise";
+})(CaptchaMethod = exports.CaptchaMethod || (exports.CaptchaMethod = {}));
+var KeyAlgorithm;
+(function (KeyAlgorithm) {
+    KeyAlgorithm["ES256"] = "ES256";
+    KeyAlgorithm["ES384"] = "ES384";
+    KeyAlgorithm["ES512"] = "ES512";
+    KeyAlgorithm["HS256"] = "HS256";
+    KeyAlgorithm["HS384"] = "HS384";
+    KeyAlgorithm["HS512"] = "HS512";
+    KeyAlgorithm["RS256"] = "RS256";
+    KeyAlgorithm["RS384"] = "RS384";
+    KeyAlgorithm["RS512"] = "RS512";
+})(KeyAlgorithm = exports.KeyAlgorithm || (exports.KeyAlgorithm = {}));
+/**
  * @author Daniel DeGroff
  */
-var EventLogType;
-(function (EventLogType) {
-    EventLogType["Information"] = "Information";
-    EventLogType["Debug"] = "Debug";
-    EventLogType["Error"] = "Error";
-})(EventLogType = exports.EventLogType || (exports.EventLogType = {}));
+var FormType;
+(function (FormType) {
+    FormType["registration"] = "registration";
+    FormType["adminRegistration"] = "adminRegistration";
+    FormType["adminUser"] = "adminUser";
+    FormType["selfServiceUser"] = "selfServiceUser";
+})(FormType = exports.FormType || (exports.FormType = {}));
 /**
- * Models the event types that FusionAuth produces.
+ * Used to indicate what type of attestation was included in the authenticator response for a given WebAuthn credential at the time it was created
  *
- * @author Brian Pontarelli
+ * @author Spencer Witt
  */
-var EventType;
-(function (EventType) {
-    EventType["JWTPublicKeyUpdate"] = "jwt.public-key.update";
-    EventType["JWTRefreshTokenRevoke"] = "jwt.refresh-token.revoke";
-    EventType["JWTRefresh"] = "jwt.refresh";
-    EventType["AuditLogCreate"] = "audit-log.create";
-    EventType["EventLogCreate"] = "event-log.create";
-    EventType["KickstartSuccess"] = "kickstart.success";
-    EventType["GroupCreate"] = "group.create";
-    EventType["GroupCreateComplete"] = "group.create.complete";
-    EventType["GroupDelete"] = "group.delete";
-    EventType["GroupDeleteComplete"] = "group.delete.complete";
-    EventType["GroupMemberAdd"] = "group.member.add";
-    EventType["GroupMemberAddComplete"] = "group.member.add.complete";
-    EventType["GroupMemberRemove"] = "group.member.remove";
-    EventType["GroupMemberRemoveComplete"] = "group.member.remove.complete";
-    EventType["GroupMemberUpdate"] = "group.member.update";
-    EventType["GroupMemberUpdateComplete"] = "group.member.update.complete";
-    EventType["GroupUpdate"] = "group.update";
-    EventType["GroupUpdateComplete"] = "group.update.complete";
-    EventType["UserAction"] = "user.action";
-    EventType["UserBulkCreate"] = "user.bulk.create";
-    EventType["UserCreate"] = "user.create";
-    EventType["UserCreateComplete"] = "user.create.complete";
-    EventType["UserDeactivate"] = "user.deactivate";
-    EventType["UserDelete"] = "user.delete";
-    EventType["UserDeleteComplete"] = "user.delete.complete";
-    EventType["UserEmailUpdate"] = "user.email.update";
-    EventType["UserEmailVerified"] = "user.email.verified";
-    EventType["UserIdentityProviderLink"] = "user.identity-provider.link";
-    EventType["UserIdentityProviderUnlink"] = "user.identity-provider.unlink";
-    EventType["UserLoginIdDuplicateOnCreate"] = "user.loginId.duplicate.create";
-    EventType["UserLoginIdDuplicateOnUpdate"] = "user.loginId.duplicate.update";
-    EventType["UserLoginFailed"] = "user.login.failed";
-    EventType["UserLoginNewDevice"] = "user.login.new-device";
-    EventType["UserLoginSuccess"] = "user.login.success";
-    EventType["UserLoginSuspicious"] = "user.login.suspicious";
-    EventType["UserPasswordBreach"] = "user.password.breach";
-    EventType["UserPasswordResetSend"] = "user.password.reset.send";
-    EventType["UserPasswordResetStart"] = "user.password.reset.start";
-    EventType["UserPasswordResetSuccess"] = "user.password.reset.success";
-    EventType["UserPasswordUpdate"] = "user.password.update";
-    EventType["UserReactivate"] = "user.reactivate";
-    EventType["UserRegistrationCreate"] = "user.registration.create";
-    EventType["UserRegistrationCreateComplete"] = "user.registration.create.complete";
-    EventType["UserRegistrationDelete"] = "user.registration.delete";
-    EventType["UserRegistrationDeleteComplete"] = "user.registration.delete.complete";
-    EventType["UserRegistrationUpdate"] = "user.registration.update";
-    EventType["UserRegistrationUpdateComplete"] = "user.registration.update.complete";
-    EventType["UserRegistrationVerified"] = "user.registration.verified";
-    EventType["UserTwoFactorMethodAdd"] = "user.two-factor.method.add";
-    EventType["UserTwoFactorMethodRemove"] = "user.two-factor.method.remove";
-    EventType["UserUpdate"] = "user.update";
-    EventType["UserUpdateComplete"] = "user.update.complete";
-    EventType["Test"] = "test";
-})(EventType = exports.EventType || (exports.EventType = {}));
-/**
- * @author Brian Pontarelli
- */
-var ExpiryUnit;
-(function (ExpiryUnit) {
-    ExpiryUnit["MINUTES"] = "MINUTES";
-    ExpiryUnit["HOURS"] = "HOURS";
-    ExpiryUnit["DAYS"] = "DAYS";
-    ExpiryUnit["WEEKS"] = "WEEKS";
-    ExpiryUnit["MONTHS"] = "MONTHS";
-    ExpiryUnit["YEARS"] = "YEARS";
-})(ExpiryUnit = exports.ExpiryUnit || (exports.ExpiryUnit = {}));
-var FamilyRole;
-(function (FamilyRole) {
-    FamilyRole["Child"] = "Child";
-    FamilyRole["Teen"] = "Teen";
-    FamilyRole["Adult"] = "Adult";
-})(FamilyRole = exports.FamilyRole || (exports.FamilyRole = {}));
-/**
- * @author Daniel DeGroff
- */
-var FormControl;
-(function (FormControl) {
-    FormControl["checkbox"] = "checkbox";
-    FormControl["number"] = "number";
-    FormControl["password"] = "password";
-    FormControl["radio"] = "radio";
-    FormControl["select"] = "select";
-    FormControl["textarea"] = "textarea";
-    FormControl["text"] = "text";
-})(FormControl = exports.FormControl || (exports.FormControl = {}));
-/**
- * @author Daniel DeGroff
- */
-var FormDataType;
-(function (FormDataType) {
-    FormDataType["bool"] = "bool";
-    FormDataType["consent"] = "consent";
-    FormDataType["date"] = "date";
-    FormDataType["email"] = "email";
-    FormDataType["number"] = "number";
-    FormDataType["string"] = "string";
-})(FormDataType = exports.FormDataType || (exports.FormDataType = {}));
-/**
- * @author Daniel DeGroff
- */
-var FormFieldAdminPolicy;
-(function (FormFieldAdminPolicy) {
-    FormFieldAdminPolicy["Edit"] = "Edit";
-    FormFieldAdminPolicy["View"] = "View";
-})(FormFieldAdminPolicy = exports.FormFieldAdminPolicy || (exports.FormFieldAdminPolicy = {}));
-/**
- * @author Daniel DeGroff
- */
-var FormType;
-(function (FormType) {
-    FormType["registration"] = "registration";
-    FormType["adminRegistration"] = "adminRegistration";
-    FormType["adminUser"] = "adminUser";
-    FormType["selfServiceUser"] = "selfServiceUser";
-})(FormType = exports.FormType || (exports.FormType = {}));
-/**
- * Authorization Grant types as defined by the <a href="https://tools.ietf.org/html/rfc6749">The OAuth 2.0 Authorization
- * Framework - RFC 6749</a>.
- * <p>
- * Specific names as defined by <a href="https://tools.ietf.org/html/rfc7591#section-4.1">
- * OAuth 2.0 Dynamic Client Registration Protocol - RFC 7591 Section 4.1</a>
- *
- * @author Daniel DeGroff
- */
-var GrantType;
-(function (GrantType) {
-    GrantType["authorization_code"] = "authorization_code";
-    GrantType["implicit"] = "implicit";
-    GrantType["password"] = "password";
-    GrantType["client_credentials"] = "client_credentials";
-    GrantType["refresh_token"] = "refresh_token";
-    GrantType["unknown"] = "unknown";
-    GrantType["device_code"] = "urn:ietf:params:oauth:grant-type:device_code";
-})(GrantType = exports.GrantType || (exports.GrantType = {}));
-/**
- * @author Daniel DeGroff
- */
-var HTTPMethod;
-(function (HTTPMethod) {
-    HTTPMethod["GET"] = "GET";
-    HTTPMethod["POST"] = "POST";
-    HTTPMethod["PUT"] = "PUT";
-    HTTPMethod["DELETE"] = "DELETE";
-    HTTPMethod["HEAD"] = "HEAD";
-    HTTPMethod["OPTIONS"] = "OPTIONS";
-    HTTPMethod["PATCH"] = "PATCH";
-})(HTTPMethod = exports.HTTPMethod || (exports.HTTPMethod = {}));
-/**
- * The IdP behavior when no user link has been made yet.
- *
- * @author Daniel DeGroff
- */
-var IdentityProviderLinkingStrategy;
-(function (IdentityProviderLinkingStrategy) {
-    IdentityProviderLinkingStrategy["CreatePendingLink"] = "CreatePendingLink";
-    IdentityProviderLinkingStrategy["Disabled"] = "Disabled";
-    IdentityProviderLinkingStrategy["LinkAnonymously"] = "LinkAnonymously";
-    IdentityProviderLinkingStrategy["LinkByEmail"] = "LinkByEmail";
-    IdentityProviderLinkingStrategy["LinkByEmailForExistingUser"] = "LinkByEmailForExistingUser";
-    IdentityProviderLinkingStrategy["LinkByUsername"] = "LinkByUsername";
-    IdentityProviderLinkingStrategy["LinkByUsernameForExistingUser"] = "LinkByUsernameForExistingUser";
-    IdentityProviderLinkingStrategy["Unsupported"] = "Unsupported";
-})(IdentityProviderLinkingStrategy = exports.IdentityProviderLinkingStrategy || (exports.IdentityProviderLinkingStrategy = {}));
-/**
- * @author Brett Pontarelli
- */
-var IdentityProviderLoginMethod;
-(function (IdentityProviderLoginMethod) {
-    IdentityProviderLoginMethod["UsePopup"] = "UsePopup";
-    IdentityProviderLoginMethod["UseRedirect"] = "UseRedirect";
-    IdentityProviderLoginMethod["UseVendorJavaScript"] = "UseVendorJavaScript";
-})(IdentityProviderLoginMethod = exports.IdentityProviderLoginMethod || (exports.IdentityProviderLoginMethod = {}));
-/**
- * @author Daniel DeGroff
- */
-var IdentityProviderType;
-(function (IdentityProviderType) {
-    IdentityProviderType["Apple"] = "Apple";
-    IdentityProviderType["EpicGames"] = "EpicGames";
-    IdentityProviderType["ExternalJWT"] = "ExternalJWT";
-    IdentityProviderType["Facebook"] = "Facebook";
-    IdentityProviderType["Google"] = "Google";
-    IdentityProviderType["HYPR"] = "HYPR";
-    IdentityProviderType["LinkedIn"] = "LinkedIn";
-    IdentityProviderType["Nintendo"] = "Nintendo";
-    IdentityProviderType["OpenIDConnect"] = "OpenIDConnect";
-    IdentityProviderType["SAMLv2"] = "SAMLv2";
-    IdentityProviderType["SAMLv2IdPInitiated"] = "SAMLv2IdPInitiated";
-    IdentityProviderType["SonyPSN"] = "SonyPSN";
-    IdentityProviderType["Steam"] = "Steam";
-    IdentityProviderType["Twitch"] = "Twitch";
-    IdentityProviderType["Twitter"] = "Twitter";
-    IdentityProviderType["Xbox"] = "Xbox";
-})(IdentityProviderType = exports.IdentityProviderType || (exports.IdentityProviderType = {}));
-/**
- * @author Brett Guy
- */
-var IPAccessControlEntryAction;
-(function (IPAccessControlEntryAction) {
-    IPAccessControlEntryAction["Allow"] = "Allow";
-    IPAccessControlEntryAction["Block"] = "Block";
-})(IPAccessControlEntryAction = exports.IPAccessControlEntryAction || (exports.IPAccessControlEntryAction = {}));
-var KeyAlgorithm;
-(function (KeyAlgorithm) {
-    KeyAlgorithm["ES256"] = "ES256";
-    KeyAlgorithm["ES384"] = "ES384";
-    KeyAlgorithm["ES512"] = "ES512";
-    KeyAlgorithm["HS256"] = "HS256";
-    KeyAlgorithm["HS384"] = "HS384";
-    KeyAlgorithm["HS512"] = "HS512";
-    KeyAlgorithm["RS256"] = "RS256";
-    KeyAlgorithm["RS384"] = "RS384";
-    KeyAlgorithm["RS512"] = "RS512";
-})(KeyAlgorithm = exports.KeyAlgorithm || (exports.KeyAlgorithm = {}));
+var AttestationType;
+(function (AttestationType) {
+    AttestationType["basic"] = "basic";
+    AttestationType["self"] = "self";
+    AttestationType["attestationCa"] = "attestationCa";
+    AttestationType["anonymizationCa"] = "anonymizationCa";
+    AttestationType["none"] = "none";
+})(AttestationType = exports.AttestationType || (exports.AttestationType = {}));
 var KeyType;
 (function (KeyType) {
     KeyType["EC"] = "EC";
@@ -5345,165 +5343,99 @@ var KeyType;
     KeyType["HMAC"] = "HMAC";
 })(KeyType = exports.KeyType || (exports.KeyType = {}));
 /**
- * The use type of a key.
+ * The types of connectors. This enum is stored as an ordinal on the <code>identities</code> table, order must be maintained.
  *
- * @author Daniel DeGroff
+ * @author Trevor Smith
  */
-var KeyUse;
-(function (KeyUse) {
-    KeyUse["SignOnly"] = "SignOnly";
-    KeyUse["SignAndVerify"] = "SignAndVerify";
-    KeyUse["VerifyOnly"] = "VerifyOnly";
-})(KeyUse = exports.KeyUse || (exports.KeyUse = {}));
+var ConnectorType;
+(function (ConnectorType) {
+    ConnectorType["FusionAuth"] = "FusionAuth";
+    ConnectorType["Generic"] = "Generic";
+    ConnectorType["LDAP"] = "LDAP";
+})(ConnectorType = exports.ConnectorType || (exports.ConnectorType = {}));
 /**
  * @author Daniel DeGroff
  */
-var LambdaEngineType;
-(function (LambdaEngineType) {
-    LambdaEngineType["GraalJS"] = "GraalJS";
-    LambdaEngineType["Nashorn"] = "Nashorn";
-})(LambdaEngineType = exports.LambdaEngineType || (exports.LambdaEngineType = {}));
+var MultiFactorLoginPolicy;
+(function (MultiFactorLoginPolicy) {
+    MultiFactorLoginPolicy["Disabled"] = "Disabled";
+    MultiFactorLoginPolicy["Enabled"] = "Enabled";
+    MultiFactorLoginPolicy["Required"] = "Required";
+})(MultiFactorLoginPolicy = exports.MultiFactorLoginPolicy || (exports.MultiFactorLoginPolicy = {}));
 /**
- * The types of lambdas that indicate how they are invoked by FusionAuth.
+ * Describes the <a href="https://www.w3.org/TR/webauthn-2/#authenticator-attachment-modality">authenticator attachment modality</a>.
  *
- * @author Brian Pontarelli
+ * @author Spencer Witt
  */
-var LambdaType;
-(function (LambdaType) {
-    LambdaType["JWTPopulate"] = "JWTPopulate";
-    LambdaType["OpenIDReconcile"] = "OpenIDReconcile";
-    LambdaType["SAMLv2Reconcile"] = "SAMLv2Reconcile";
-    LambdaType["SAMLv2Populate"] = "SAMLv2Populate";
-    LambdaType["AppleReconcile"] = "AppleReconcile";
-    LambdaType["ExternalJWTReconcile"] = "ExternalJWTReconcile";
-    LambdaType["FacebookReconcile"] = "FacebookReconcile";
-    LambdaType["GoogleReconcile"] = "GoogleReconcile";
-    LambdaType["HYPRReconcile"] = "HYPRReconcile";
-    LambdaType["TwitterReconcile"] = "TwitterReconcile";
-    LambdaType["LDAPConnectorReconcile"] = "LDAPConnectorReconcile";
-    LambdaType["LinkedInReconcile"] = "LinkedInReconcile";
-    LambdaType["EpicGamesReconcile"] = "EpicGamesReconcile";
-    LambdaType["NintendoReconcile"] = "NintendoReconcile";
-    LambdaType["SonyPSNReconcile"] = "SonyPSNReconcile";
-    LambdaType["SteamReconcile"] = "SteamReconcile";
-    LambdaType["TwitchReconcile"] = "TwitchReconcile";
-    LambdaType["XboxReconcile"] = "XboxReconcile";
-    LambdaType["ClientCredentialsJWTPopulate"] = "ClientCredentialsJWTPopulate";
-    LambdaType["SCIMServerGroupRequestConverter"] = "SCIMServerGroupRequestConverter";
-    LambdaType["SCIMServerGroupResponseConverter"] = "SCIMServerGroupResponseConverter";
-    LambdaType["SCIMServerUserRequestConverter"] = "SCIMServerUserRequestConverter";
-    LambdaType["SCIMServerUserResponseConverter"] = "SCIMServerUserResponseConverter";
-    LambdaType["SelfServiceRegistrationValidation"] = "SelfServiceRegistrationValidation";
-})(LambdaType = exports.LambdaType || (exports.LambdaType = {}));
-var LDAPSecurityMethod;
-(function (LDAPSecurityMethod) {
-    LDAPSecurityMethod["None"] = "None";
-    LDAPSecurityMethod["LDAPS"] = "LDAPS";
-    LDAPSecurityMethod["StartTLS"] = "StartTLS";
-})(LDAPSecurityMethod = exports.LDAPSecurityMethod || (exports.LDAPSecurityMethod = {}));
+var AuthenticatorAttachment;
+(function (AuthenticatorAttachment) {
+    AuthenticatorAttachment["platform"] = "platform";
+    AuthenticatorAttachment["crossPlatform"] = "crossPlatform";
+})(AuthenticatorAttachment = exports.AuthenticatorAttachment || (exports.AuthenticatorAttachment = {}));
+/**
+ * COSE Elliptic Curve identifier to determine which elliptic curve to use with a given key
+ *
+ * @author Spencer Witt
+ */
+var CoseEllipticCurve;
+(function (CoseEllipticCurve) {
+    CoseEllipticCurve["Reserved"] = "Reserved";
+    CoseEllipticCurve["P256"] = "P256";
+    CoseEllipticCurve["P384"] = "P384";
+    CoseEllipticCurve["P521"] = "P521";
+    CoseEllipticCurve["X25519"] = "X25519";
+    CoseEllipticCurve["X448"] = "X448";
+    CoseEllipticCurve["Ed25519"] = "Ed25519";
+    CoseEllipticCurve["Ed448"] = "Ed448";
+    CoseEllipticCurve["Secp256k1"] = "Secp256k1";
+})(CoseEllipticCurve = exports.CoseEllipticCurve || (exports.CoseEllipticCurve = {}));
 var LoginIdType;
 (function (LoginIdType) {
     LoginIdType["email"] = "email";
     LoginIdType["username"] = "username";
 })(LoginIdType = exports.LoginIdType || (exports.LoginIdType = {}));
-/**
- * @author Matthew Altman
- */
-var LogoutBehavior;
-(function (LogoutBehavior) {
-    LogoutBehavior["RedirectOnly"] = "RedirectOnly";
-    LogoutBehavior["AllApplications"] = "AllApplications";
-})(LogoutBehavior = exports.LogoutBehavior || (exports.LogoutBehavior = {}));
-/**
- * @author Mikey Sleevi
- */
-var MessageType;
-(function (MessageType) {
-    MessageType["SMS"] = "SMS";
-})(MessageType = exports.MessageType || (exports.MessageType = {}));
-/**
- * @author Brett Guy
- */
-var MessengerType;
-(function (MessengerType) {
-    MessengerType["Generic"] = "Generic";
-    MessengerType["Kafka"] = "Kafka";
-    MessengerType["Twilio"] = "Twilio";
-})(MessengerType = exports.MessengerType || (exports.MessengerType = {}));
+var RegistrationType;
+(function (RegistrationType) {
+    RegistrationType["basic"] = "basic";
+    RegistrationType["advanced"] = "advanced";
+})(RegistrationType = exports.RegistrationType || (exports.RegistrationType = {}));
 /**
  * @author Daniel DeGroff
  */
-var MultiFactorLoginPolicy;
-(function (MultiFactorLoginPolicy) {
-    MultiFactorLoginPolicy["Disabled"] = "Disabled";
-    MultiFactorLoginPolicy["Enabled"] = "Enabled";
-    MultiFactorLoginPolicy["Required"] = "Required";
-})(MultiFactorLoginPolicy = exports.MultiFactorLoginPolicy || (exports.MultiFactorLoginPolicy = {}));
+var RefreshTokenExpirationPolicy;
+(function (RefreshTokenExpirationPolicy) {
+    RefreshTokenExpirationPolicy["Fixed"] = "Fixed";
+    RefreshTokenExpirationPolicy["SlidingWindow"] = "SlidingWindow";
+    RefreshTokenExpirationPolicy["SlidingWindowWithMaximumLifetime"] = "SlidingWindowWithMaximumLifetime";
+})(RefreshTokenExpirationPolicy = exports.RefreshTokenExpirationPolicy || (exports.RefreshTokenExpirationPolicy = {}));
 /**
- * @author Johnathon Wood
+ * @author Daniel DeGroff
  */
-var Oauth2AuthorizedURLValidationPolicy;
-(function (Oauth2AuthorizedURLValidationPolicy) {
-    Oauth2AuthorizedURLValidationPolicy["AllowWildcards"] = "AllowWildcards";
-    Oauth2AuthorizedURLValidationPolicy["ExactMatch"] = "ExactMatch";
-})(Oauth2AuthorizedURLValidationPolicy = exports.Oauth2AuthorizedURLValidationPolicy || (exports.Oauth2AuthorizedURLValidationPolicy = {}));
-var OAuthErrorReason;
-(function (OAuthErrorReason) {
-    OAuthErrorReason["auth_code_not_found"] = "auth_code_not_found";
-    OAuthErrorReason["access_token_malformed"] = "access_token_malformed";
-    OAuthErrorReason["access_token_expired"] = "access_token_expired";
-    OAuthErrorReason["access_token_unavailable_for_processing"] = "access_token_unavailable_for_processing";
-    OAuthErrorReason["access_token_failed_processing"] = "access_token_failed_processing";
-    OAuthErrorReason["refresh_token_not_found"] = "refresh_token_not_found";
-    OAuthErrorReason["refresh_token_type_not_supported"] = "refresh_token_type_not_supported";
-    OAuthErrorReason["invalid_client_id"] = "invalid_client_id";
-    OAuthErrorReason["invalid_user_credentials"] = "invalid_user_credentials";
-    OAuthErrorReason["invalid_grant_type"] = "invalid_grant_type";
-    OAuthErrorReason["invalid_origin"] = "invalid_origin";
-    OAuthErrorReason["invalid_origin_opaque"] = "invalid_origin_opaque";
-    OAuthErrorReason["invalid_pkce_code_verifier"] = "invalid_pkce_code_verifier";
-    OAuthErrorReason["invalid_pkce_code_challenge"] = "invalid_pkce_code_challenge";
-    OAuthErrorReason["invalid_pkce_code_challenge_method"] = "invalid_pkce_code_challenge_method";
-    OAuthErrorReason["invalid_redirect_uri"] = "invalid_redirect_uri";
-    OAuthErrorReason["invalid_response_mode"] = "invalid_response_mode";
-    OAuthErrorReason["invalid_response_type"] = "invalid_response_type";
-    OAuthErrorReason["invalid_id_token_hint"] = "invalid_id_token_hint";
-    OAuthErrorReason["invalid_post_logout_redirect_uri"] = "invalid_post_logout_redirect_uri";
-    OAuthErrorReason["invalid_device_code"] = "invalid_device_code";
-    OAuthErrorReason["invalid_user_code"] = "invalid_user_code";
-    OAuthErrorReason["invalid_additional_client_id"] = "invalid_additional_client_id";
-    OAuthErrorReason["invalid_target_entity_scope"] = "invalid_target_entity_scope";
-    OAuthErrorReason["invalid_entity_permission_scope"] = "invalid_entity_permission_scope";
-    OAuthErrorReason["grant_type_disabled"] = "grant_type_disabled";
-    OAuthErrorReason["missing_client_id"] = "missing_client_id";
-    OAuthErrorReason["missing_client_secret"] = "missing_client_secret";
-    OAuthErrorReason["missing_code"] = "missing_code";
-    OAuthErrorReason["missing_code_challenge"] = "missing_code_challenge";
-    OAuthErrorReason["missing_code_verifier"] = "missing_code_verifier";
-    OAuthErrorReason["missing_device_code"] = "missing_device_code";
-    OAuthErrorReason["missing_grant_type"] = "missing_grant_type";
-    OAuthErrorReason["missing_redirect_uri"] = "missing_redirect_uri";
-    OAuthErrorReason["missing_refresh_token"] = "missing_refresh_token";
-    OAuthErrorReason["missing_response_type"] = "missing_response_type";
-    OAuthErrorReason["missing_token"] = "missing_token";
-    OAuthErrorReason["missing_user_code"] = "missing_user_code";
-    OAuthErrorReason["missing_verification_uri"] = "missing_verification_uri";
-    OAuthErrorReason["login_prevented"] = "login_prevented";
-    OAuthErrorReason["not_licensed"] = "not_licensed";
-    OAuthErrorReason["user_code_expired"] = "user_code_expired";
-    OAuthErrorReason["user_expired"] = "user_expired";
-    OAuthErrorReason["user_locked"] = "user_locked";
-    OAuthErrorReason["user_not_found"] = "user_not_found";
-    OAuthErrorReason["client_authentication_missing"] = "client_authentication_missing";
-    OAuthErrorReason["invalid_client_authentication_scheme"] = "invalid_client_authentication_scheme";
-    OAuthErrorReason["invalid_client_authentication"] = "invalid_client_authentication";
-    OAuthErrorReason["client_id_mismatch"] = "client_id_mismatch";
-    OAuthErrorReason["change_password_administrative"] = "change_password_administrative";
-    OAuthErrorReason["change_password_breached"] = "change_password_breached";
-    OAuthErrorReason["change_password_expired"] = "change_password_expired";
-    OAuthErrorReason["change_password_validation"] = "change_password_validation";
-    OAuthErrorReason["unknown"] = "unknown";
-})(OAuthErrorReason = exports.OAuthErrorReason || (exports.OAuthErrorReason = {}));
+var UnverifiedBehavior;
+(function (UnverifiedBehavior) {
+    UnverifiedBehavior["Allow"] = "Allow";
+    UnverifiedBehavior["Gated"] = "Gated";
+})(UnverifiedBehavior = exports.UnverifiedBehavior || (exports.UnverifiedBehavior = {}));
+/**
+ * The phases of a time-based user action.
+ *
+ * @author Brian Pontarelli
+ */
+var UserActionPhase;
+(function (UserActionPhase) {
+    UserActionPhase["start"] = "start";
+    UserActionPhase["modify"] = "modify";
+    UserActionPhase["cancel"] = "cancel";
+    UserActionPhase["end"] = "end";
+})(UserActionPhase = exports.UserActionPhase || (exports.UserActionPhase = {}));
+/**
+ * @author Daniel DeGroff
+ */
+var LambdaEngineType;
+(function (LambdaEngineType) {
+    LambdaEngineType["GraalJS"] = "GraalJS";
+    LambdaEngineType["Nashorn"] = "Nashorn";
+})(LambdaEngineType = exports.LambdaEngineType || (exports.LambdaEngineType = {}));
 var OAuthErrorType;
 (function (OAuthErrorType) {
     OAuthErrorType["invalid_request"] = "invalid_request";
@@ -5525,118 +5457,113 @@ var OAuthErrorType;
 /**
  * @author Daniel DeGroff
  */
-var ObjectState;
-(function (ObjectState) {
-    ObjectState["Active"] = "Active";
-    ObjectState["Inactive"] = "Inactive";
-    ObjectState["PendingDelete"] = "PendingDelete";
-})(ObjectState = exports.ObjectState || (exports.ObjectState = {}));
-/**
- * @author Brett Guy
- */
-var ProofKeyForCodeExchangePolicy;
-(function (ProofKeyForCodeExchangePolicy) {
-    ProofKeyForCodeExchangePolicy["Required"] = "Required";
-    ProofKeyForCodeExchangePolicy["NotRequired"] = "NotRequired";
-    ProofKeyForCodeExchangePolicy["NotRequiredWhenUsingClientAuthentication"] = "NotRequiredWhenUsingClientAuthentication";
-})(ProofKeyForCodeExchangePolicy = exports.ProofKeyForCodeExchangePolicy || (exports.ProofKeyForCodeExchangePolicy = {}));
+var Sort;
+(function (Sort) {
+    Sort["asc"] = "asc";
+    Sort["desc"] = "desc";
+})(Sort = exports.Sort || (exports.Sort = {}));
+var SAMLLogoutBehavior;
+(function (SAMLLogoutBehavior) {
+    SAMLLogoutBehavior["AllParticipants"] = "AllParticipants";
+    SAMLLogoutBehavior["OnlyOriginator"] = "OnlyOriginator";
+})(SAMLLogoutBehavior = exports.SAMLLogoutBehavior || (exports.SAMLLogoutBehavior = {}));
 /**
- * Defines valid credential types. This is an extension point in the WebAuthn spec. The only defined value at this time is "public-key"
+ * The IdP behavior when no user link has been made yet.
  *
- * @author Spencer Witt
- */
-var PublicKeyCredentialType;
-(function (PublicKeyCredentialType) {
-    PublicKeyCredentialType["publicKey"] = "public-key";
-})(PublicKeyCredentialType = exports.PublicKeyCredentialType || (exports.PublicKeyCredentialType = {}));
-/**
  * @author Daniel DeGroff
  */
-var RateLimitedRequestType;
-(function (RateLimitedRequestType) {
-    RateLimitedRequestType["FailedLogin"] = "FailedLogin";
-    RateLimitedRequestType["ForgotPassword"] = "ForgotPassword";
-    RateLimitedRequestType["SendEmailVerification"] = "SendEmailVerification";
-    RateLimitedRequestType["SendPasswordless"] = "SendPasswordless";
-    RateLimitedRequestType["SendRegistrationVerification"] = "SendRegistrationVerification";
-    RateLimitedRequestType["SendTwoFactor"] = "SendTwoFactor";
-})(RateLimitedRequestType = exports.RateLimitedRequestType || (exports.RateLimitedRequestType = {}));
-/**
- * @author Brian Pontarelli
- */
-var ReactorFeatureStatus;
-(function (ReactorFeatureStatus) {
-    ReactorFeatureStatus["ACTIVE"] = "ACTIVE";
-    ReactorFeatureStatus["DISCONNECTED"] = "DISCONNECTED";
-    ReactorFeatureStatus["PENDING"] = "PENDING";
-    ReactorFeatureStatus["DISABLED"] = "DISABLED";
-    ReactorFeatureStatus["UNKNOWN"] = "UNKNOWN";
-})(ReactorFeatureStatus = exports.ReactorFeatureStatus || (exports.ReactorFeatureStatus = {}));
+var IdentityProviderLinkingStrategy;
+(function (IdentityProviderLinkingStrategy) {
+    IdentityProviderLinkingStrategy["CreatePendingLink"] = "CreatePendingLink";
+    IdentityProviderLinkingStrategy["Disabled"] = "Disabled";
+    IdentityProviderLinkingStrategy["LinkAnonymously"] = "LinkAnonymously";
+    IdentityProviderLinkingStrategy["LinkByEmail"] = "LinkByEmail";
+    IdentityProviderLinkingStrategy["LinkByEmailForExistingUser"] = "LinkByEmailForExistingUser";
+    IdentityProviderLinkingStrategy["LinkByUsername"] = "LinkByUsername";
+    IdentityProviderLinkingStrategy["LinkByUsernameForExistingUser"] = "LinkByUsernameForExistingUser";
+    IdentityProviderLinkingStrategy["Unsupported"] = "Unsupported";
+})(IdentityProviderLinkingStrategy = exports.IdentityProviderLinkingStrategy || (exports.IdentityProviderLinkingStrategy = {}));
+var BreachAction;
+(function (BreachAction) {
+    BreachAction["Off"] = "Off";
+    BreachAction["RecordOnly"] = "RecordOnly";
+    BreachAction["NotifyUser"] = "NotifyUser";
+    BreachAction["RequireChange"] = "RequireChange";
+})(BreachAction = exports.BreachAction || (exports.BreachAction = {}));
 /**
+ * Event Log Type
+ *
  * @author Daniel DeGroff
  */
-var RefreshTokenExpirationPolicy;
-(function (RefreshTokenExpirationPolicy) {
-    RefreshTokenExpirationPolicy["Fixed"] = "Fixed";
-    RefreshTokenExpirationPolicy["SlidingWindow"] = "SlidingWindow";
-})(RefreshTokenExpirationPolicy = exports.RefreshTokenExpirationPolicy || (exports.RefreshTokenExpirationPolicy = {}));
+var EventLogType;
+(function (EventLogType) {
+    EventLogType["Information"] = "Information";
+    EventLogType["Debug"] = "Debug";
+    EventLogType["Error"] = "Error";
+})(EventLogType = exports.EventLogType || (exports.EventLogType = {}));
 /**
+ * Available JSON Web Algorithms (JWA) as described in RFC 7518 available for this JWT implementation.
+ *
  * @author Daniel DeGroff
  */
-var RefreshTokenUsagePolicy;
-(function (RefreshTokenUsagePolicy) {
-    RefreshTokenUsagePolicy["Reusable"] = "Reusable";
-    RefreshTokenUsagePolicy["OneTimeUse"] = "OneTimeUse";
-})(RefreshTokenUsagePolicy = exports.RefreshTokenUsagePolicy || (exports.RefreshTokenUsagePolicy = {}));
-var RegistrationType;
-(function (RegistrationType) {
-    RegistrationType["basic"] = "basic";
-    RegistrationType["advanced"] = "advanced";
-})(RegistrationType = exports.RegistrationType || (exports.RegistrationType = {}));
+var Algorithm;
+(function (Algorithm) {
+    Algorithm["ES256"] = "ES256";
+    Algorithm["ES384"] = "ES384";
+    Algorithm["ES512"] = "ES512";
+    Algorithm["HS256"] = "HS256";
+    Algorithm["HS384"] = "HS384";
+    Algorithm["HS512"] = "HS512";
+    Algorithm["PS256"] = "PS256";
+    Algorithm["PS384"] = "PS384";
+    Algorithm["PS512"] = "PS512";
+    Algorithm["RS256"] = "RS256";
+    Algorithm["RS384"] = "RS384";
+    Algorithm["RS512"] = "RS512";
+    Algorithm["none"] = "none";
+})(Algorithm = exports.Algorithm || (exports.Algorithm = {}));
 /**
- * Describes the Relying Party's requirements for <a href="https://www.w3.org/TR/webauthn-2/#client-side-discoverable-credential">client-side
- * discoverable credentials</a> (formerly known as "resident keys")
+ * The use type of a key.
  *
- * @author Spencer Witt
- */
-var ResidentKeyRequirement;
-(function (ResidentKeyRequirement) {
-    ResidentKeyRequirement["discouraged"] = "discouraged";
-    ResidentKeyRequirement["preferred"] = "preferred";
-    ResidentKeyRequirement["required"] = "required";
-})(ResidentKeyRequirement = exports.ResidentKeyRequirement || (exports.ResidentKeyRequirement = {}));
-var SAMLLogoutBehavior;
-(function (SAMLLogoutBehavior) {
-    SAMLLogoutBehavior["AllParticipants"] = "AllParticipants";
-    SAMLLogoutBehavior["OnlyOriginator"] = "OnlyOriginator";
-})(SAMLLogoutBehavior = exports.SAMLLogoutBehavior || (exports.SAMLLogoutBehavior = {}));
-/**
- * @author Lyle Schemmerling
+ * @author Daniel DeGroff
  */
-var SAMLv2DestinationAssertionPolicy;
-(function (SAMLv2DestinationAssertionPolicy) {
-    SAMLv2DestinationAssertionPolicy["Enabled"] = "Enabled";
-    SAMLv2DestinationAssertionPolicy["Disabled"] = "Disabled";
-    SAMLv2DestinationAssertionPolicy["AllowAlternates"] = "AllowAlternates";
-})(SAMLv2DestinationAssertionPolicy = exports.SAMLv2DestinationAssertionPolicy || (exports.SAMLv2DestinationAssertionPolicy = {}));
+var KeyUse;
+(function (KeyUse) {
+    KeyUse["SignOnly"] = "SignOnly";
+    KeyUse["SignAndVerify"] = "SignAndVerify";
+    KeyUse["VerifyOnly"] = "VerifyOnly";
+})(KeyUse = exports.KeyUse || (exports.KeyUse = {}));
+var FamilyRole;
+(function (FamilyRole) {
+    FamilyRole["Child"] = "Child";
+    FamilyRole["Teen"] = "Teen";
+    FamilyRole["Adult"] = "Adult";
+})(FamilyRole = exports.FamilyRole || (exports.FamilyRole = {}));
 /**
- * @author Daniel DeGroff
+ * The transaction types for Webhooks and other event systems within FusionAuth.
+ *
+ * @author Brian Pontarelli
  */
-var SecureGeneratorType;
-(function (SecureGeneratorType) {
-    SecureGeneratorType["randomDigits"] = "randomDigits";
-    SecureGeneratorType["randomBytes"] = "randomBytes";
-    SecureGeneratorType["randomAlpha"] = "randomAlpha";
-    SecureGeneratorType["randomAlphaNumeric"] = "randomAlphaNumeric";
-})(SecureGeneratorType = exports.SecureGeneratorType || (exports.SecureGeneratorType = {}));
+var TransactionType;
+(function (TransactionType) {
+    TransactionType["None"] = "None";
+    TransactionType["Any"] = "Any";
+    TransactionType["SimpleMajority"] = "SimpleMajority";
+    TransactionType["SuperMajority"] = "SuperMajority";
+    TransactionType["AbsoluteMajority"] = "AbsoluteMajority";
+})(TransactionType = exports.TransactionType || (exports.TransactionType = {}));
 /**
- * @author Daniel DeGroff
+ * Used to express whether the Relying Party requires <a href="https://www.w3.org/TR/webauthn-2/#user-verification">user verification</a> for the
+ * current operation.
+ *
+ * @author Spencer Witt
  */
-var Sort;
-(function (Sort) {
-    Sort["asc"] = "asc";
-    Sort["desc"] = "desc";
-})(Sort = exports.Sort || (exports.Sort = {}));
+var UserVerificationRequirement;
+(function (UserVerificationRequirement) {
+    UserVerificationRequirement["required"] = "required";
+    UserVerificationRequirement["preferred"] = "preferred";
+    UserVerificationRequirement["discouraged"] = "discouraged";
+})(UserVerificationRequirement = exports.UserVerificationRequirement || (exports.UserVerificationRequirement = {}));
 /**
  * Steam API modes.
  *
@@ -5648,40 +5575,137 @@ var SteamAPIMode;
     SteamAPIMode["Partner"] = "Partner";
 })(SteamAPIMode = exports.SteamAPIMode || (exports.SteamAPIMode = {}));
 /**
- * <ul>
- * <li>Bearer Token type as defined by <a href="https://tools.ietf.org/html/rfc6750">RFC 6750</a>.</li>
- * <li>MAC Token type as referenced by <a href="https://tools.ietf.org/html/rfc6749">RFC 6749</a> and
- * <a href="https://tools.ietf.org/html/draft-ietf-oauth-v2-http-mac-05">
- * Draft RFC on OAuth 2.0 Message Authentication Code (MAC) Tokens</a>
- * </li>
- * </ul>
+ * @author Trevor Smith
+ */
+var ChangePasswordReason;
+(function (ChangePasswordReason) {
+    ChangePasswordReason["Administrative"] = "Administrative";
+    ChangePasswordReason["Breached"] = "Breached";
+    ChangePasswordReason["Expired"] = "Expired";
+    ChangePasswordReason["Validation"] = "Validation";
+})(ChangePasswordReason = exports.ChangePasswordReason || (exports.ChangePasswordReason = {}));
+var EmailSecurityType;
+(function (EmailSecurityType) {
+    EmailSecurityType["NONE"] = "NONE";
+    EmailSecurityType["SSL"] = "SSL";
+    EmailSecurityType["TLS"] = "TLS";
+})(EmailSecurityType = exports.EmailSecurityType || (exports.EmailSecurityType = {}));
+/**
+ * @author Brian Pontarelli
+ */
+var ExpiryUnit;
+(function (ExpiryUnit) {
+    ExpiryUnit["MINUTES"] = "MINUTES";
+    ExpiryUnit["HOURS"] = "HOURS";
+    ExpiryUnit["DAYS"] = "DAYS";
+    ExpiryUnit["WEEKS"] = "WEEKS";
+    ExpiryUnit["MONTHS"] = "MONTHS";
+    ExpiryUnit["YEARS"] = "YEARS";
+})(ExpiryUnit = exports.ExpiryUnit || (exports.ExpiryUnit = {}));
+/**
+ * @author Brett Guy
+ */
+var MessengerType;
+(function (MessengerType) {
+    MessengerType["Generic"] = "Generic";
+    MessengerType["Kafka"] = "Kafka";
+    MessengerType["Twilio"] = "Twilio";
+})(MessengerType = exports.MessengerType || (exports.MessengerType = {}));
+/**
+ * @author Daniel DeGroff
+ */
+var IdentityProviderType;
+(function (IdentityProviderType) {
+    IdentityProviderType["Apple"] = "Apple";
+    IdentityProviderType["EpicGames"] = "EpicGames";
+    IdentityProviderType["ExternalJWT"] = "ExternalJWT";
+    IdentityProviderType["Facebook"] = "Facebook";
+    IdentityProviderType["Google"] = "Google";
+    IdentityProviderType["HYPR"] = "HYPR";
+    IdentityProviderType["LinkedIn"] = "LinkedIn";
+    IdentityProviderType["Nintendo"] = "Nintendo";
+    IdentityProviderType["OpenIDConnect"] = "OpenIDConnect";
+    IdentityProviderType["SAMLv2"] = "SAMLv2";
+    IdentityProviderType["SAMLv2IdPInitiated"] = "SAMLv2IdPInitiated";
+    IdentityProviderType["SonyPSN"] = "SonyPSN";
+    IdentityProviderType["Steam"] = "Steam";
+    IdentityProviderType["Twitch"] = "Twitch";
+    IdentityProviderType["Twitter"] = "Twitter";
+    IdentityProviderType["Xbox"] = "Xbox";
+})(IdentityProviderType = exports.IdentityProviderType || (exports.IdentityProviderType = {}));
+/**
+ * Models the event types that FusionAuth produces.
  *
- * @author Daniel DeGroff
+ * @author Brian Pontarelli
  */
-var TokenType;
-(function (TokenType) {
-    TokenType["Bearer"] = "Bearer";
-    TokenType["MAC"] = "MAC";
-})(TokenType = exports.TokenType || (exports.TokenType = {}));
+var EventType;
+(function (EventType) {
+    EventType["JWTPublicKeyUpdate"] = "jwt.public-key.update";
+    EventType["JWTRefreshTokenRevoke"] = "jwt.refresh-token.revoke";
+    EventType["JWTRefresh"] = "jwt.refresh";
+    EventType["AuditLogCreate"] = "audit-log.create";
+    EventType["EventLogCreate"] = "event-log.create";
+    EventType["KickstartSuccess"] = "kickstart.success";
+    EventType["GroupCreate"] = "group.create";
+    EventType["GroupCreateComplete"] = "group.create.complete";
+    EventType["GroupDelete"] = "group.delete";
+    EventType["GroupDeleteComplete"] = "group.delete.complete";
+    EventType["GroupMemberAdd"] = "group.member.add";
+    EventType["GroupMemberAddComplete"] = "group.member.add.complete";
+    EventType["GroupMemberRemove"] = "group.member.remove";
+    EventType["GroupMemberRemoveComplete"] = "group.member.remove.complete";
+    EventType["GroupMemberUpdate"] = "group.member.update";
+    EventType["GroupMemberUpdateComplete"] = "group.member.update.complete";
+    EventType["GroupUpdate"] = "group.update";
+    EventType["GroupUpdateComplete"] = "group.update.complete";
+    EventType["UserAction"] = "user.action";
+    EventType["UserBulkCreate"] = "user.bulk.create";
+    EventType["UserCreate"] = "user.create";
+    EventType["UserCreateComplete"] = "user.create.complete";
+    EventType["UserDeactivate"] = "user.deactivate";
+    EventType["UserDelete"] = "user.delete";
+    EventType["UserDeleteComplete"] = "user.delete.complete";
+    EventType["UserEmailUpdate"] = "user.email.update";
+    EventType["UserEmailVerified"] = "user.email.verified";
+    EventType["UserIdentityProviderLink"] = "user.identity-provider.link";
+    EventType["UserIdentityProviderUnlink"] = "user.identity-provider.unlink";
+    EventType["UserLoginIdDuplicateOnCreate"] = "user.loginId.duplicate.create";
+    EventType["UserLoginIdDuplicateOnUpdate"] = "user.loginId.duplicate.update";
+    EventType["UserLoginFailed"] = "user.login.failed";
+    EventType["UserLoginNewDevice"] = "user.login.new-device";
+    EventType["UserLoginSuccess"] = "user.login.success";
+    EventType["UserLoginSuspicious"] = "user.login.suspicious";
+    EventType["UserPasswordBreach"] = "user.password.breach";
+    EventType["UserPasswordResetSend"] = "user.password.reset.send";
+    EventType["UserPasswordResetStart"] = "user.password.reset.start";
+    EventType["UserPasswordResetSuccess"] = "user.password.reset.success";
+    EventType["UserPasswordUpdate"] = "user.password.update";
+    EventType["UserReactivate"] = "user.reactivate";
+    EventType["UserRegistrationCreate"] = "user.registration.create";
+    EventType["UserRegistrationCreateComplete"] = "user.registration.create.complete";
+    EventType["UserRegistrationDelete"] = "user.registration.delete";
+    EventType["UserRegistrationDeleteComplete"] = "user.registration.delete.complete";
+    EventType["UserRegistrationUpdate"] = "user.registration.update";
+    EventType["UserRegistrationUpdateComplete"] = "user.registration.update.complete";
+    EventType["UserRegistrationVerified"] = "user.registration.verified";
+    EventType["UserTwoFactorMethodAdd"] = "user.two-factor.method.add";
+    EventType["UserTwoFactorMethodRemove"] = "user.two-factor.method.remove";
+    EventType["UserUpdate"] = "user.update";
+    EventType["UserUpdateComplete"] = "user.update.complete";
+    EventType["Test"] = "test";
+})(EventType = exports.EventType || (exports.EventType = {}));
 var TOTPAlgorithm;
 (function (TOTPAlgorithm) {
     TOTPAlgorithm["HmacSHA1"] = "HmacSHA1";
     TOTPAlgorithm["HmacSHA256"] = "HmacSHA256";
     TOTPAlgorithm["HmacSHA512"] = "HmacSHA512";
 })(TOTPAlgorithm = exports.TOTPAlgorithm || (exports.TOTPAlgorithm = {}));
-/**
- * The transaction types for Webhooks and other event systems within FusionAuth.
- *
- * @author Brian Pontarelli
- */
-var TransactionType;
-(function (TransactionType) {
-    TransactionType["None"] = "None";
-    TransactionType["Any"] = "Any";
-    TransactionType["SimpleMajority"] = "SimpleMajority";
-    TransactionType["SuperMajority"] = "SuperMajority";
-    TransactionType["AbsoluteMajority"] = "AbsoluteMajority";
-})(TransactionType = exports.TransactionType || (exports.TransactionType = {}));
+var LDAPSecurityMethod;
+(function (LDAPSecurityMethod) {
+    LDAPSecurityMethod["None"] = "None";
+    LDAPSecurityMethod["LDAPS"] = "LDAPS";
+    LDAPSecurityMethod["StartTLS"] = "StartTLS";
+})(LDAPSecurityMethod = exports.LDAPSecurityMethod || (exports.LDAPSecurityMethod = {}));
 var UniqueUsernameStrategy;
 (function (UniqueUsernameStrategy) {
     UniqueUsernameStrategy["Always"] = "Always";
@@ -5690,53 +5714,61 @@ var UniqueUsernameStrategy;
 /**
  * @author Daniel DeGroff
  */
-var UnverifiedBehavior;
-(function (UnverifiedBehavior) {
-    UnverifiedBehavior["Allow"] = "Allow";
-    UnverifiedBehavior["Gated"] = "Gated";
-})(UnverifiedBehavior = exports.UnverifiedBehavior || (exports.UnverifiedBehavior = {}));
+var VerificationStrategy;
+(function (VerificationStrategy) {
+    VerificationStrategy["ClickableLink"] = "ClickableLink";
+    VerificationStrategy["FormField"] = "FormField";
+})(VerificationStrategy = exports.VerificationStrategy || (exports.VerificationStrategy = {}));
 /**
- * The phases of a time-based user action.
+ * @author Daniel DeGroff
+ */
+var SecureGeneratorType;
+(function (SecureGeneratorType) {
+    SecureGeneratorType["randomDigits"] = "randomDigits";
+    SecureGeneratorType["randomBytes"] = "randomBytes";
+    SecureGeneratorType["randomAlpha"] = "randomAlpha";
+    SecureGeneratorType["randomAlphaNumeric"] = "randomAlphaNumeric";
+})(SecureGeneratorType = exports.SecureGeneratorType || (exports.SecureGeneratorType = {}));
+/**
+ * XML canonicalization method enumeration. This is used for the IdP and SP side of FusionAuth SAML.
  *
  * @author Brian Pontarelli
  */
-var UserActionPhase;
-(function (UserActionPhase) {
-    UserActionPhase["start"] = "start";
-    UserActionPhase["modify"] = "modify";
-    UserActionPhase["cancel"] = "cancel";
-    UserActionPhase["end"] = "end";
-})(UserActionPhase = exports.UserActionPhase || (exports.UserActionPhase = {}));
+var CanonicalizationMethod;
+(function (CanonicalizationMethod) {
+    CanonicalizationMethod["exclusive"] = "exclusive";
+    CanonicalizationMethod["exclusive_with_comments"] = "exclusive_with_comments";
+    CanonicalizationMethod["inclusive"] = "inclusive";
+    CanonicalizationMethod["inclusive_with_comments"] = "inclusive_with_comments";
+})(CanonicalizationMethod = exports.CanonicalizationMethod || (exports.CanonicalizationMethod = {}));
 /**
  * @author Daniel DeGroff
  */
-var UserState;
-(function (UserState) {
-    UserState["Authenticated"] = "Authenticated";
-    UserState["AuthenticatedNotRegistered"] = "AuthenticatedNotRegistered";
-    UserState["AuthenticatedNotVerified"] = "AuthenticatedNotVerified";
-    UserState["AuthenticatedRegistrationNotVerified"] = "AuthenticatedRegistrationNotVerified";
-})(UserState = exports.UserState || (exports.UserState = {}));
+var RateLimitedRequestType;
+(function (RateLimitedRequestType) {
+    RateLimitedRequestType["FailedLogin"] = "FailedLogin";
+    RateLimitedRequestType["ForgotPassword"] = "ForgotPassword";
+    RateLimitedRequestType["SendEmailVerification"] = "SendEmailVerification";
+    RateLimitedRequestType["SendPasswordless"] = "SendPasswordless";
+    RateLimitedRequestType["SendRegistrationVerification"] = "SendRegistrationVerification";
+    RateLimitedRequestType["SendTwoFactor"] = "SendTwoFactor";
+})(RateLimitedRequestType = exports.RateLimitedRequestType || (exports.RateLimitedRequestType = {}));
 /**
- * Used to express whether the Relying Party requires <a href="https://www.w3.org/TR/webauthn-2/#user-verification">user verification</a> for the
- * current operation.
- *
- * @author Spencer Witt
+ * @author Matthew Altman
  */
-var UserVerificationRequirement;
-(function (UserVerificationRequirement) {
-    UserVerificationRequirement["required"] = "required";
-    UserVerificationRequirement["preferred"] = "preferred";
-    UserVerificationRequirement["discouraged"] = "discouraged";
-})(UserVerificationRequirement = exports.UserVerificationRequirement || (exports.UserVerificationRequirement = {}));
+var LogoutBehavior;
+(function (LogoutBehavior) {
+    LogoutBehavior["RedirectOnly"] = "RedirectOnly";
+    LogoutBehavior["AllApplications"] = "AllApplications";
+})(LogoutBehavior = exports.LogoutBehavior || (exports.LogoutBehavior = {}));
 /**
- * @author Daniel DeGroff
+ * @author Johnathon Wood
  */
-var VerificationStrategy;
-(function (VerificationStrategy) {
-    VerificationStrategy["ClickableLink"] = "ClickableLink";
-    VerificationStrategy["FormField"] = "FormField";
-})(VerificationStrategy = exports.VerificationStrategy || (exports.VerificationStrategy = {}));
+var Oauth2AuthorizedURLValidationPolicy;
+(function (Oauth2AuthorizedURLValidationPolicy) {
+    Oauth2AuthorizedURLValidationPolicy["AllowWildcards"] = "AllowWildcards";
+    Oauth2AuthorizedURLValidationPolicy["ExactMatch"] = "ExactMatch";
+})(Oauth2AuthorizedURLValidationPolicy = exports.Oauth2AuthorizedURLValidationPolicy || (exports.Oauth2AuthorizedURLValidationPolicy = {}));
 /**
  * Identifies the WebAuthn workflow. This will affect the parameters used for credential creation
  * and request based on the Tenant configuration.
@@ -5749,9 +5781,79 @@ var WebAuthnWorkflow;
     WebAuthnWorkflow["general"] = "general";
     WebAuthnWorkflow["reauthentication"] = "reauthentication";
 })(WebAuthnWorkflow = exports.WebAuthnWorkflow || (exports.WebAuthnWorkflow = {}));
-var XMLSignatureLocation;
-(function (XMLSignatureLocation) {
-    XMLSignatureLocation["Assertion"] = "Assertion";
-    XMLSignatureLocation["Response"] = "Response";
-})(XMLSignatureLocation = exports.XMLSignatureLocation || (exports.XMLSignatureLocation = {}));
+var OAuthErrorReason;
+(function (OAuthErrorReason) {
+    OAuthErrorReason["auth_code_not_found"] = "auth_code_not_found";
+    OAuthErrorReason["access_token_malformed"] = "access_token_malformed";
+    OAuthErrorReason["access_token_expired"] = "access_token_expired";
+    OAuthErrorReason["access_token_unavailable_for_processing"] = "access_token_unavailable_for_processing";
+    OAuthErrorReason["access_token_failed_processing"] = "access_token_failed_processing";
+    OAuthErrorReason["access_token_invalid"] = "access_token_invalid";
+    OAuthErrorReason["refresh_token_not_found"] = "refresh_token_not_found";
+    OAuthErrorReason["refresh_token_type_not_supported"] = "refresh_token_type_not_supported";
+    OAuthErrorReason["invalid_client_id"] = "invalid_client_id";
+    OAuthErrorReason["invalid_user_credentials"] = "invalid_user_credentials";
+    OAuthErrorReason["invalid_grant_type"] = "invalid_grant_type";
+    OAuthErrorReason["invalid_origin"] = "invalid_origin";
+    OAuthErrorReason["invalid_origin_opaque"] = "invalid_origin_opaque";
+    OAuthErrorReason["invalid_pkce_code_verifier"] = "invalid_pkce_code_verifier";
+    OAuthErrorReason["invalid_pkce_code_challenge"] = "invalid_pkce_code_challenge";
+    OAuthErrorReason["invalid_pkce_code_challenge_method"] = "invalid_pkce_code_challenge_method";
+    OAuthErrorReason["invalid_redirect_uri"] = "invalid_redirect_uri";
+    OAuthErrorReason["invalid_response_mode"] = "invalid_response_mode";
+    OAuthErrorReason["invalid_response_type"] = "invalid_response_type";
+    OAuthErrorReason["invalid_id_token_hint"] = "invalid_id_token_hint";
+    OAuthErrorReason["invalid_post_logout_redirect_uri"] = "invalid_post_logout_redirect_uri";
+    OAuthErrorReason["invalid_device_code"] = "invalid_device_code";
+    OAuthErrorReason["invalid_user_code"] = "invalid_user_code";
+    OAuthErrorReason["invalid_additional_client_id"] = "invalid_additional_client_id";
+    OAuthErrorReason["invalid_target_entity_scope"] = "invalid_target_entity_scope";
+    OAuthErrorReason["invalid_entity_permission_scope"] = "invalid_entity_permission_scope";
+    OAuthErrorReason["invalid_user_id"] = "invalid_user_id";
+    OAuthErrorReason["grant_type_disabled"] = "grant_type_disabled";
+    OAuthErrorReason["missing_client_id"] = "missing_client_id";
+    OAuthErrorReason["missing_client_secret"] = "missing_client_secret";
+    OAuthErrorReason["missing_code"] = "missing_code";
+    OAuthErrorReason["missing_code_challenge"] = "missing_code_challenge";
+    OAuthErrorReason["missing_code_verifier"] = "missing_code_verifier";
+    OAuthErrorReason["missing_device_code"] = "missing_device_code";
+    OAuthErrorReason["missing_grant_type"] = "missing_grant_type";
+    OAuthErrorReason["missing_redirect_uri"] = "missing_redirect_uri";
+    OAuthErrorReason["missing_refresh_token"] = "missing_refresh_token";
+    OAuthErrorReason["missing_response_type"] = "missing_response_type";
+    OAuthErrorReason["missing_token"] = "missing_token";
+    OAuthErrorReason["missing_user_code"] = "missing_user_code";
+    OAuthErrorReason["missing_user_id"] = "missing_user_id";
+    OAuthErrorReason["missing_verification_uri"] = "missing_verification_uri";
+    OAuthErrorReason["login_prevented"] = "login_prevented";
+    OAuthErrorReason["not_licensed"] = "not_licensed";
+    OAuthErrorReason["user_code_expired"] = "user_code_expired";
+    OAuthErrorReason["user_expired"] = "user_expired";
+    OAuthErrorReason["user_locked"] = "user_locked";
+    OAuthErrorReason["user_not_found"] = "user_not_found";
+    OAuthErrorReason["client_authentication_missing"] = "client_authentication_missing";
+    OAuthErrorReason["invalid_client_authentication_scheme"] = "invalid_client_authentication_scheme";
+    OAuthErrorReason["invalid_client_authentication"] = "invalid_client_authentication";
+    OAuthErrorReason["client_id_mismatch"] = "client_id_mismatch";
+    OAuthErrorReason["change_password_administrative"] = "change_password_administrative";
+    OAuthErrorReason["change_password_breached"] = "change_password_breached";
+    OAuthErrorReason["change_password_expired"] = "change_password_expired";
+    OAuthErrorReason["change_password_validation"] = "change_password_validation";
+    OAuthErrorReason["unknown"] = "unknown";
+})(OAuthErrorReason = exports.OAuthErrorReason || (exports.OAuthErrorReason = {}));
+var ClientAuthenticationMethod;
+(function (ClientAuthenticationMethod) {
+    ClientAuthenticationMethod["none"] = "none";
+    ClientAuthenticationMethod["client_secret_basic"] = "client_secret_basic";
+    ClientAuthenticationMethod["client_secret_post"] = "client_secret_post";
+})(ClientAuthenticationMethod = exports.ClientAuthenticationMethod || (exports.ClientAuthenticationMethod = {}));
+/**
+ * @author Brett Pontarelli
+ */
+var IdentityProviderLoginMethod;
+(function (IdentityProviderLoginMethod) {
+    IdentityProviderLoginMethod["UsePopup"] = "UsePopup";
+    IdentityProviderLoginMethod["UseRedirect"] = "UseRedirect";
+    IdentityProviderLoginMethod["UseVendorJavaScript"] = "UseVendorJavaScript";
+})(IdentityProviderLoginMethod = exports.IdentityProviderLoginMethod || (exports.IdentityProviderLoginMethod = {}));
 //# sourceMappingURL=FusionAuthClient.js.map