@inkeep/agents-manage-api 0.39.2 → 0.39.4

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (21) hide show
  1. package/dist/chunk-VBDAOXYI.js +832 -0
  2. package/dist/chunk-VBDAOXYI.js.map +1 -0
  3. package/dist/factory.d.ts +2 -36
  4. package/dist/factory.js +4 -1
  5. package/dist/factory2.d.ts +41 -0
  6. package/dist/factory2.d.ts.map +1 -0
  7. package/dist/factory2.js +37085 -0
  8. package/dist/factory2.js.map +1 -0
  9. package/dist/index.d.ts +1261 -1258
  10. package/dist/index.d.ts.map +1 -0
  11. package/dist/index.js +42 -50
  12. package/dist/index.js.map +1 -0
  13. package/dist/nodefs.js +27 -0
  14. package/dist/nodefs.js.map +1 -0
  15. package/dist/opfs-ahp.js +368 -0
  16. package/dist/opfs-ahp.js.map +1 -0
  17. package/package.json +4 -4
  18. package/dist/chunk-JCVMVG3J.js +0 -592
  19. package/dist/chunk-VM5BBJTO.js +0 -35351
  20. package/dist/nodefs-RPE52Q4Z.js +0 -21
  21. package/dist/opfs-ahp-QL4REJJW.js +0 -318
package/dist/index.d.ts CHANGED
@@ -1,1328 +1,1331 @@
1
- import * as better_auth_plugins from 'better-auth/plugins';
2
- import * as _better_auth_sso from '@better-auth/sso';
3
- import * as zod from 'zod';
4
- import * as better_auth_social_providers from 'better-auth/social-providers';
5
- import * as better_auth from 'better-auth';
6
- import { Hono } from 'hono';
7
- export { Hono } from 'hono';
8
- export { createAuth0Provider, createManagementApp, createManagementHono, createOIDCProvider, initializeDefaultUser } from './factory.js';
9
- export { SSOProviderConfig, UserAuthConfig } from '@inkeep/agents-core/auth';
10
- import 'hono/types';
11
- import '@inkeep/agents-core';
12
- import '@inkeep/agents-core/credential-stores';
1
+ import { a as createOIDCProvider, i as createAuth0Provider, n as UserAuthConfig, o as initializeDefaultUser, r as createManagementApp, s as createManagementHono, t as SSOProviderConfig } from "./factory2.js";
2
+ import { Hono } from "hono";
3
+ import * as better_auth0 from "better-auth";
4
+ import * as better_auth_social_providers0 from "better-auth/social-providers";
5
+ import * as zod0 from "zod";
6
+ import * as _better_auth_sso0 from "@better-auth/sso";
7
+ import * as better_auth_plugins0 from "better-auth/plugins";
13
8
 
14
- declare const auth: better_auth.Auth<{
15
- baseURL: string;
16
- secret: string;
17
- database: (options: better_auth.BetterAuthOptions) => better_auth.DBAdapter<better_auth.BetterAuthOptions>;
18
- emailAndPassword: {
19
- enabled: true;
20
- minPasswordLength: number;
21
- maxPasswordLength: number;
22
- requireEmailVerification: false;
23
- autoSignIn: true;
9
+ //#region src/index.d.ts
10
+ declare const auth: better_auth0.Auth<{
11
+ baseURL: string;
12
+ secret: string;
13
+ database: (options: better_auth0.BetterAuthOptions) => better_auth0.DBAdapter<better_auth0.BetterAuthOptions>;
14
+ emailAndPassword: {
15
+ enabled: true;
16
+ minPasswordLength: number;
17
+ maxPasswordLength: number;
18
+ requireEmailVerification: false;
19
+ autoSignIn: true;
20
+ };
21
+ socialProviders: {
22
+ google: better_auth_social_providers0.GoogleOptions;
23
+ } | undefined;
24
+ session: {
25
+ expiresIn: number;
26
+ updateAge: number;
27
+ cookieCache: {
28
+ enabled: true;
29
+ maxAge: number;
30
+ strategy: "compact";
24
31
  };
25
- socialProviders: {
26
- google: better_auth_social_providers.GoogleOptions;
32
+ };
33
+ advanced: {
34
+ ipAddress?: {
35
+ ipAddressHeaders?: string[];
36
+ disableIpTracking?: boolean;
27
37
  } | undefined;
28
- session: {
29
- expiresIn: number;
30
- updateAge: number;
31
- cookieCache: {
32
- enabled: true;
33
- maxAge: number;
34
- strategy: "compact";
35
- };
38
+ useSecureCookies?: boolean | undefined;
39
+ disableCSRFCheck?: boolean | undefined;
40
+ disableOriginCheck?: boolean | undefined;
41
+ crossSubDomainCookies: {
42
+ enabled: boolean;
43
+ additionalCookies?: string[];
44
+ domain?: string;
36
45
  };
37
- advanced: {
38
- ipAddress?: {
39
- ipAddressHeaders?: string[];
40
- disableIpTracking?: boolean;
41
- } | undefined;
42
- useSecureCookies?: boolean | undefined;
43
- disableCSRFCheck?: boolean | undefined;
44
- disableOriginCheck?: boolean | undefined;
45
- crossSubDomainCookies: {
46
- enabled: boolean;
47
- additionalCookies?: string[];
48
- domain?: string;
49
- };
50
- cookies?: {
51
- [key: string]: {
52
- name?: string;
53
- attributes?: better_auth.CookieOptions;
54
- };
55
- } | undefined;
56
- defaultCookieAttributes: better_auth.CookieOptions;
57
- cookiePrefix?: string | undefined;
58
- database?: {
59
- defaultFindManyLimit?: number;
60
- useNumberId?: boolean;
61
- generateId?: better_auth.GenerateIdFn | false | "serial" | "uuid";
62
- } | undefined;
63
- trustedProxyHeaders?: boolean | undefined;
46
+ cookies?: {
47
+ [key: string]: {
48
+ name?: string;
49
+ attributes?: better_auth0.CookieOptions;
50
+ };
51
+ } | undefined;
52
+ defaultCookieAttributes: better_auth0.CookieOptions;
53
+ cookiePrefix?: string | undefined;
54
+ database?: {
55
+ defaultFindManyLimit?: number;
56
+ useNumberId?: boolean;
57
+ generateId?: better_auth0.GenerateIdFn | false | "serial" | "uuid";
58
+ } | undefined;
59
+ trustedProxyHeaders?: boolean | undefined;
60
+ };
61
+ trustedOrigins: string[];
62
+ plugins: [{
63
+ id: "bearer";
64
+ hooks: {
65
+ before: {
66
+ matcher(context: better_auth0.HookEndpointContext): boolean;
67
+ handler: (inputContext: better_auth0.MiddlewareInputContext<better_auth0.MiddlewareOptions>) => Promise<{
68
+ context: {
69
+ headers: Headers;
70
+ };
71
+ } | undefined>;
72
+ }[];
73
+ after: {
74
+ matcher(context: better_auth0.HookEndpointContext): true;
75
+ handler: (inputContext: better_auth0.MiddlewareInputContext<better_auth0.MiddlewareOptions>) => Promise<void>;
76
+ }[];
64
77
  };
65
- trustedOrigins: string[];
66
- plugins: [{
67
- id: "bearer";
68
- hooks: {
69
- before: {
70
- matcher(context: better_auth.HookEndpointContext): boolean;
71
- handler: (inputContext: better_auth.MiddlewareInputContext<better_auth.MiddlewareOptions>) => Promise<{
72
- context: {
73
- headers: Headers;
74
- };
75
- } | undefined>;
76
- }[];
77
- after: {
78
- matcher(context: better_auth.HookEndpointContext): true;
79
- handler: (inputContext: better_auth.MiddlewareInputContext<better_auth.MiddlewareOptions>) => Promise<void>;
80
- }[];
78
+ }, {
79
+ id: "sso";
80
+ endpoints: {
81
+ spMetadata: ReturnType<() => better_auth0.StrictEndpoint<"/sso/saml2/sp/metadata", {
82
+ method: "GET";
83
+ query: zod0.ZodObject<{
84
+ providerId: zod0.ZodString;
85
+ format: zod0.ZodDefault<zod0.ZodEnum<{
86
+ xml: "xml";
87
+ json: "json";
88
+ }>>;
89
+ }, better_auth0.$strip>;
90
+ metadata: {
91
+ openapi: {
92
+ operationId: string;
93
+ summary: string;
94
+ description: string;
95
+ responses: {
96
+ "200": {
97
+ description: string;
98
+ };
99
+ };
100
+ };
81
101
  };
82
- }, {
83
- id: "sso";
84
- endpoints: {
85
- spMetadata: ReturnType<() => better_auth.StrictEndpoint<"/sso/saml2/sp/metadata", {
86
- method: "GET";
87
- query: zod.ZodObject<{
88
- providerId: zod.ZodString;
89
- format: zod.ZodDefault<zod.ZodEnum<{
90
- xml: "xml";
91
- json: "json";
92
- }>>;
93
- }, better_auth.$strip>;
94
- metadata: {
95
- openapi: {
96
- operationId: string;
97
- summary: string;
98
- description: string;
99
- responses: {
100
- "200": {
101
- description: string;
102
- };
102
+ } & {
103
+ use: any[];
104
+ }, Response>>;
105
+ registerSSOProvider: better_auth0.StrictEndpoint<"/sso/register", {
106
+ method: "POST";
107
+ body: zod0.ZodObject<{
108
+ providerId: zod0.ZodString;
109
+ issuer: zod0.ZodString;
110
+ domain: zod0.ZodString;
111
+ oidcConfig: zod0.ZodOptional<zod0.ZodObject<{
112
+ clientId: zod0.ZodString;
113
+ clientSecret: zod0.ZodString;
114
+ authorizationEndpoint: zod0.ZodOptional<zod0.ZodString>;
115
+ tokenEndpoint: zod0.ZodOptional<zod0.ZodString>;
116
+ userInfoEndpoint: zod0.ZodOptional<zod0.ZodString>;
117
+ tokenEndpointAuthentication: zod0.ZodOptional<zod0.ZodEnum<{
118
+ client_secret_post: "client_secret_post";
119
+ client_secret_basic: "client_secret_basic";
120
+ }>>;
121
+ jwksEndpoint: zod0.ZodOptional<zod0.ZodString>;
122
+ discoveryEndpoint: zod0.ZodOptional<zod0.ZodString>;
123
+ scopes: zod0.ZodOptional<zod0.ZodArray<zod0.ZodString>>;
124
+ pkce: zod0.ZodOptional<zod0.ZodDefault<zod0.ZodBoolean>>;
125
+ mapping: zod0.ZodOptional<zod0.ZodObject<{
126
+ id: zod0.ZodString;
127
+ email: zod0.ZodString;
128
+ emailVerified: zod0.ZodOptional<zod0.ZodString>;
129
+ name: zod0.ZodString;
130
+ image: zod0.ZodOptional<zod0.ZodString>;
131
+ extraFields: zod0.ZodOptional<zod0.ZodRecord<zod0.ZodString, zod0.ZodAny>>;
132
+ }, better_auth0.$strip>>;
133
+ }, better_auth0.$strip>>;
134
+ samlConfig: zod0.ZodOptional<zod0.ZodObject<{
135
+ entryPoint: zod0.ZodString;
136
+ cert: zod0.ZodString;
137
+ callbackUrl: zod0.ZodString;
138
+ audience: zod0.ZodOptional<zod0.ZodString>;
139
+ idpMetadata: zod0.ZodOptional<zod0.ZodObject<{
140
+ metadata: zod0.ZodOptional<zod0.ZodString>;
141
+ entityID: zod0.ZodOptional<zod0.ZodString>;
142
+ cert: zod0.ZodOptional<zod0.ZodString>;
143
+ privateKey: zod0.ZodOptional<zod0.ZodString>;
144
+ privateKeyPass: zod0.ZodOptional<zod0.ZodString>;
145
+ isAssertionEncrypted: zod0.ZodOptional<zod0.ZodBoolean>;
146
+ encPrivateKey: zod0.ZodOptional<zod0.ZodString>;
147
+ encPrivateKeyPass: zod0.ZodOptional<zod0.ZodString>;
148
+ singleSignOnService: zod0.ZodOptional<zod0.ZodArray<zod0.ZodObject<{
149
+ Binding: zod0.ZodString;
150
+ Location: zod0.ZodString;
151
+ }, better_auth0.$strip>>>;
152
+ }, better_auth0.$strip>>;
153
+ spMetadata: zod0.ZodObject<{
154
+ metadata: zod0.ZodOptional<zod0.ZodString>;
155
+ entityID: zod0.ZodOptional<zod0.ZodString>;
156
+ binding: zod0.ZodOptional<zod0.ZodString>;
157
+ privateKey: zod0.ZodOptional<zod0.ZodString>;
158
+ privateKeyPass: zod0.ZodOptional<zod0.ZodString>;
159
+ isAssertionEncrypted: zod0.ZodOptional<zod0.ZodBoolean>;
160
+ encPrivateKey: zod0.ZodOptional<zod0.ZodString>;
161
+ encPrivateKeyPass: zod0.ZodOptional<zod0.ZodString>;
162
+ }, better_auth0.$strip>;
163
+ wantAssertionsSigned: zod0.ZodOptional<zod0.ZodBoolean>;
164
+ signatureAlgorithm: zod0.ZodOptional<zod0.ZodString>;
165
+ digestAlgorithm: zod0.ZodOptional<zod0.ZodString>;
166
+ identifierFormat: zod0.ZodOptional<zod0.ZodString>;
167
+ privateKey: zod0.ZodOptional<zod0.ZodString>;
168
+ decryptionPvk: zod0.ZodOptional<zod0.ZodString>;
169
+ additionalParams: zod0.ZodOptional<zod0.ZodRecord<zod0.ZodString, zod0.ZodAny>>;
170
+ mapping: zod0.ZodOptional<zod0.ZodObject<{
171
+ id: zod0.ZodString;
172
+ email: zod0.ZodString;
173
+ emailVerified: zod0.ZodOptional<zod0.ZodString>;
174
+ name: zod0.ZodString;
175
+ firstName: zod0.ZodOptional<zod0.ZodString>;
176
+ lastName: zod0.ZodOptional<zod0.ZodString>;
177
+ extraFields: zod0.ZodOptional<zod0.ZodRecord<zod0.ZodString, zod0.ZodAny>>;
178
+ }, better_auth0.$strip>>;
179
+ }, better_auth0.$strip>>;
180
+ organizationId: zod0.ZodOptional<zod0.ZodString>;
181
+ overrideUserInfo: zod0.ZodOptional<zod0.ZodDefault<zod0.ZodBoolean>>;
182
+ }, better_auth0.$strip>;
183
+ use: ((inputContext: better_auth0.MiddlewareInputContext<better_auth0.MiddlewareOptions>) => Promise<{
184
+ session: {
185
+ session: Record<string, any> & {
186
+ id: string;
187
+ createdAt: Date;
188
+ updatedAt: Date;
189
+ userId: string;
190
+ expiresAt: Date;
191
+ token: string;
192
+ ipAddress?: string | null | undefined;
193
+ userAgent?: string | null | undefined;
194
+ };
195
+ user: Record<string, any> & {
196
+ id: string;
197
+ createdAt: Date;
198
+ updatedAt: Date;
199
+ email: string;
200
+ emailVerified: boolean;
201
+ name: string;
202
+ image?: string | null | undefined;
203
+ };
204
+ };
205
+ }>)[];
206
+ metadata: {
207
+ openapi: {
208
+ operationId: string;
209
+ summary: string;
210
+ description: string;
211
+ responses: {
212
+ "200": {
213
+ description: string;
214
+ content: {
215
+ "application/json": {
216
+ schema: {
217
+ type: "object";
218
+ properties: {
219
+ issuer: {
220
+ type: string;
221
+ format: string;
222
+ description: string;
103
223
  };
104
- };
105
- };
106
- } & {
107
- use: any[];
108
- }, Response>>;
109
- registerSSOProvider: better_auth.StrictEndpoint<"/sso/register", {
110
- method: "POST";
111
- body: zod.ZodObject<{
112
- providerId: zod.ZodString;
113
- issuer: zod.ZodString;
114
- domain: zod.ZodString;
115
- oidcConfig: zod.ZodOptional<zod.ZodObject<{
116
- clientId: zod.ZodString;
117
- clientSecret: zod.ZodString;
118
- authorizationEndpoint: zod.ZodOptional<zod.ZodString>;
119
- tokenEndpoint: zod.ZodOptional<zod.ZodString>;
120
- userInfoEndpoint: zod.ZodOptional<zod.ZodString>;
121
- tokenEndpointAuthentication: zod.ZodOptional<zod.ZodEnum<{
122
- client_secret_post: "client_secret_post";
123
- client_secret_basic: "client_secret_basic";
124
- }>>;
125
- jwksEndpoint: zod.ZodOptional<zod.ZodString>;
126
- discoveryEndpoint: zod.ZodOptional<zod.ZodString>;
127
- scopes: zod.ZodOptional<zod.ZodArray<zod.ZodString>>;
128
- pkce: zod.ZodOptional<zod.ZodDefault<zod.ZodBoolean>>;
129
- mapping: zod.ZodOptional<zod.ZodObject<{
130
- id: zod.ZodString;
131
- email: zod.ZodString;
132
- emailVerified: zod.ZodOptional<zod.ZodString>;
133
- name: zod.ZodString;
134
- image: zod.ZodOptional<zod.ZodString>;
135
- extraFields: zod.ZodOptional<zod.ZodRecord<zod.ZodString, zod.ZodAny>>;
136
- }, better_auth.$strip>>;
137
- }, better_auth.$strip>>;
138
- samlConfig: zod.ZodOptional<zod.ZodObject<{
139
- entryPoint: zod.ZodString;
140
- cert: zod.ZodString;
141
- callbackUrl: zod.ZodString;
142
- audience: zod.ZodOptional<zod.ZodString>;
143
- idpMetadata: zod.ZodOptional<zod.ZodObject<{
144
- metadata: zod.ZodOptional<zod.ZodString>;
145
- entityID: zod.ZodOptional<zod.ZodString>;
146
- cert: zod.ZodOptional<zod.ZodString>;
147
- privateKey: zod.ZodOptional<zod.ZodString>;
148
- privateKeyPass: zod.ZodOptional<zod.ZodString>;
149
- isAssertionEncrypted: zod.ZodOptional<zod.ZodBoolean>;
150
- encPrivateKey: zod.ZodOptional<zod.ZodString>;
151
- encPrivateKeyPass: zod.ZodOptional<zod.ZodString>;
152
- singleSignOnService: zod.ZodOptional<zod.ZodArray<zod.ZodObject<{
153
- Binding: zod.ZodString;
154
- Location: zod.ZodString;
155
- }, better_auth.$strip>>>;
156
- }, better_auth.$strip>>;
157
- spMetadata: zod.ZodObject<{
158
- metadata: zod.ZodOptional<zod.ZodString>;
159
- entityID: zod.ZodOptional<zod.ZodString>;
160
- binding: zod.ZodOptional<zod.ZodString>;
161
- privateKey: zod.ZodOptional<zod.ZodString>;
162
- privateKeyPass: zod.ZodOptional<zod.ZodString>;
163
- isAssertionEncrypted: zod.ZodOptional<zod.ZodBoolean>;
164
- encPrivateKey: zod.ZodOptional<zod.ZodString>;
165
- encPrivateKeyPass: zod.ZodOptional<zod.ZodString>;
166
- }, better_auth.$strip>;
167
- wantAssertionsSigned: zod.ZodOptional<zod.ZodBoolean>;
168
- signatureAlgorithm: zod.ZodOptional<zod.ZodString>;
169
- digestAlgorithm: zod.ZodOptional<zod.ZodString>;
170
- identifierFormat: zod.ZodOptional<zod.ZodString>;
171
- privateKey: zod.ZodOptional<zod.ZodString>;
172
- decryptionPvk: zod.ZodOptional<zod.ZodString>;
173
- additionalParams: zod.ZodOptional<zod.ZodRecord<zod.ZodString, zod.ZodAny>>;
174
- mapping: zod.ZodOptional<zod.ZodObject<{
175
- id: zod.ZodString;
176
- email: zod.ZodString;
177
- emailVerified: zod.ZodOptional<zod.ZodString>;
178
- name: zod.ZodString;
179
- firstName: zod.ZodOptional<zod.ZodString>;
180
- lastName: zod.ZodOptional<zod.ZodString>;
181
- extraFields: zod.ZodOptional<zod.ZodRecord<zod.ZodString, zod.ZodAny>>;
182
- }, better_auth.$strip>>;
183
- }, better_auth.$strip>>;
184
- organizationId: zod.ZodOptional<zod.ZodString>;
185
- overrideUserInfo: zod.ZodOptional<zod.ZodDefault<zod.ZodBoolean>>;
186
- }, better_auth.$strip>;
187
- use: ((inputContext: better_auth.MiddlewareInputContext<better_auth.MiddlewareOptions>) => Promise<{
188
- session: {
189
- session: Record<string, any> & {
190
- id: string;
191
- createdAt: Date;
192
- updatedAt: Date;
193
- userId: string;
194
- expiresAt: Date;
195
- token: string;
196
- ipAddress?: string | null | undefined;
197
- userAgent?: string | null | undefined;
224
+ domain: {
225
+ type: string;
226
+ description: string;
198
227
  };
199
- user: Record<string, any> & {
200
- id: string;
201
- createdAt: Date;
202
- updatedAt: Date;
203
- email: string;
204
- emailVerified: boolean;
205
- name: string;
206
- image?: string | null | undefined;
228
+ domainVerified: {
229
+ type: string;
230
+ description: string;
207
231
  };
208
- };
209
- }>)[];
210
- metadata: {
211
- openapi: {
212
- operationId: string;
213
- summary: string;
214
- description: string;
215
- responses: {
216
- "200": {
217
- description: string;
218
- content: {
219
- "application/json": {
220
- schema: {
221
- type: "object";
222
- properties: {
223
- issuer: {
224
- type: string;
225
- format: string;
226
- description: string;
227
- };
228
- domain: {
229
- type: string;
230
- description: string;
231
- };
232
- domainVerified: {
233
- type: string;
234
- description: string;
235
- };
236
- domainVerificationToken: {
237
- type: string;
238
- description: string;
239
- };
240
- oidcConfig: {
241
- type: string;
242
- properties: {
243
- issuer: {
244
- type: string;
245
- format: string;
246
- description: string;
247
- };
248
- pkce: {
249
- type: string;
250
- description: string;
251
- };
252
- clientId: {
253
- type: string;
254
- description: string;
255
- };
256
- clientSecret: {
257
- type: string;
258
- description: string;
259
- };
260
- authorizationEndpoint: {
261
- type: string;
262
- format: string;
263
- nullable: boolean;
264
- description: string;
265
- };
266
- discoveryEndpoint: {
267
- type: string;
268
- format: string;
269
- description: string;
270
- };
271
- userInfoEndpoint: {
272
- type: string;
273
- format: string;
274
- nullable: boolean;
275
- description: string;
276
- };
277
- scopes: {
278
- type: string;
279
- items: {
280
- type: string;
281
- };
282
- nullable: boolean;
283
- description: string;
284
- };
285
- tokenEndpoint: {
286
- type: string;
287
- format: string;
288
- nullable: boolean;
289
- description: string;
290
- };
291
- tokenEndpointAuthentication: {
292
- type: string;
293
- enum: string[];
294
- nullable: boolean;
295
- description: string;
296
- };
297
- jwksEndpoint: {
298
- type: string;
299
- format: string;
300
- nullable: boolean;
301
- description: string;
302
- };
303
- mapping: {
304
- type: string;
305
- nullable: boolean;
306
- properties: {
307
- id: {
308
- type: string;
309
- description: string;
310
- };
311
- email: {
312
- type: string;
313
- description: string;
314
- };
315
- emailVerified: {
316
- type: string;
317
- nullable: boolean;
318
- description: string;
319
- };
320
- name: {
321
- type: string;
322
- description: string;
323
- };
324
- image: {
325
- type: string;
326
- nullable: boolean;
327
- description: string;
328
- };
329
- extraFields: {
330
- type: string;
331
- additionalProperties: {
332
- type: string;
333
- };
334
- nullable: boolean;
335
- description: string;
336
- };
337
- };
338
- required: string[];
339
- };
340
- };
341
- required: string[];
342
- description: string;
343
- };
344
- organizationId: {
345
- type: string;
346
- nullable: boolean;
347
- description: string;
348
- };
349
- userId: {
350
- type: string;
351
- description: string;
352
- };
353
- providerId: {
354
- type: string;
355
- description: string;
356
- };
357
- redirectURI: {
358
- type: string;
359
- format: string;
360
- description: string;
361
- };
362
- };
363
- required: string[];
364
- };
365
- };
366
- };
367
- };
232
+ domainVerificationToken: {
233
+ type: string;
234
+ description: string;
368
235
  };
369
- };
370
- };
371
- } & {
372
- use: any[];
373
- }, {
374
- issuer: string;
375
- oidcConfig?: _better_auth_sso.OIDCConfig | undefined;
376
- samlConfig?: _better_auth_sso.SAMLConfig | undefined;
377
- userId: string;
378
- providerId: string;
379
- organizationId?: string | undefined;
380
- domain: string;
381
- }>;
382
- signInSSO: ReturnType<(options?: _better_auth_sso.SSOOptions) => better_auth.StrictEndpoint<"/sign-in/sso", {
383
- method: "POST";
384
- body: zod.ZodObject<{
385
- email: zod.ZodOptional<zod.ZodString>;
386
- organizationSlug: zod.ZodOptional<zod.ZodString>;
387
- providerId: zod.ZodOptional<zod.ZodString>;
388
- domain: zod.ZodOptional<zod.ZodString>;
389
- callbackURL: zod.ZodString;
390
- errorCallbackURL: zod.ZodOptional<zod.ZodString>;
391
- newUserCallbackURL: zod.ZodOptional<zod.ZodString>;
392
- scopes: zod.ZodOptional<zod.ZodArray<zod.ZodString>>;
393
- loginHint: zod.ZodOptional<zod.ZodString>;
394
- requestSignUp: zod.ZodOptional<zod.ZodBoolean>;
395
- providerType: zod.ZodOptional<zod.ZodEnum<{
396
- oidc: "oidc";
397
- saml: "saml";
398
- }>>;
399
- }, better_auth.$strip>;
400
- metadata: {
401
- openapi: {
402
- operationId: string;
403
- summary: string;
404
- description: string;
405
- requestBody: {
406
- content: {
407
- "application/json": {
408
- schema: {
409
- type: "object";
410
- properties: {
411
- email: {
412
- type: string;
413
- description: string;
414
- };
415
- issuer: {
416
- type: string;
417
- description: string;
418
- };
419
- providerId: {
420
- type: string;
421
- description: string;
422
- };
423
- callbackURL: {
424
- type: string;
425
- description: string;
426
- };
427
- errorCallbackURL: {
428
- type: string;
429
- description: string;
430
- };
431
- newUserCallbackURL: {
432
- type: string;
433
- description: string;
434
- };
435
- loginHint: {
436
- type: string;
437
- description: string;
438
- };
439
- };
440
- required: string[];
441
- };
442
- };
236
+ oidcConfig: {
237
+ type: string;
238
+ properties: {
239
+ issuer: {
240
+ type: string;
241
+ format: string;
242
+ description: string;
443
243
  };
444
- };
445
- responses: {
446
- "200": {
447
- description: string;
448
- content: {
449
- "application/json": {
450
- schema: {
451
- type: "object";
452
- properties: {
453
- url: {
454
- type: string;
455
- format: string;
456
- description: string;
457
- };
458
- redirect: {
459
- type: string;
460
- description: string;
461
- enum: boolean[];
462
- };
463
- };
464
- required: string[];
465
- };
466
- };
467
- };
468
- };
469
- };
470
- };
471
- };
472
- } & {
473
- use: any[];
474
- }, {
475
- url: string;
476
- redirect: boolean;
477
- }>>;
478
- callbackSSO: ReturnType<(options?: _better_auth_sso.SSOOptions) => better_auth.StrictEndpoint<"/sso/callback/:providerId", {
479
- method: "GET";
480
- query: zod.ZodObject<{
481
- code: zod.ZodOptional<zod.ZodString>;
482
- state: zod.ZodString;
483
- error: zod.ZodOptional<zod.ZodString>;
484
- error_description: zod.ZodOptional<zod.ZodString>;
485
- }, better_auth.$strip>;
486
- allowedMediaTypes: string[];
487
- metadata: {
488
- isAction: false;
489
- openapi: {
490
- operationId: string;
491
- summary: string;
492
- description: string;
493
- responses: {
494
- "302": {
495
- description: string;
496
- };
497
- };
498
- };
499
- };
500
- } & {
501
- use: any[];
502
- }, never>>;
503
- callbackSSOSAML: ReturnType<(options?: _better_auth_sso.SSOOptions) => better_auth.StrictEndpoint<"/sso/saml2/callback/:providerId", {
504
- method: "POST";
505
- body: zod.ZodObject<{
506
- SAMLResponse: zod.ZodString;
507
- RelayState: zod.ZodOptional<zod.ZodString>;
508
- }, better_auth.$strip>;
509
- metadata: {
510
- isAction: false;
511
- allowedMediaTypes: string[];
512
- openapi: {
513
- operationId: string;
514
- summary: string;
515
- description: string;
516
- responses: {
517
- "302": {
518
- description: string;
244
+ pkce: {
245
+ type: string;
246
+ description: string;
519
247
  };
520
- "400": {
521
- description: string;
248
+ clientId: {
249
+ type: string;
250
+ description: string;
522
251
  };
523
- "401": {
524
- description: string;
252
+ clientSecret: {
253
+ type: string;
254
+ description: string;
525
255
  };
526
- };
527
- };
528
- };
529
- } & {
530
- use: any[];
531
- }, never>>;
532
- acsEndpoint: ReturnType<(options?: _better_auth_sso.SSOOptions) => better_auth.StrictEndpoint<"/sso/saml2/sp/acs/:providerId", {
533
- method: "POST";
534
- params: zod.ZodObject<{
535
- providerId: zod.ZodOptional<zod.ZodString>;
536
- }, better_auth.$strip>;
537
- body: zod.ZodObject<{
538
- SAMLResponse: zod.ZodString;
539
- RelayState: zod.ZodOptional<zod.ZodString>;
540
- }, better_auth.$strip>;
541
- metadata: {
542
- isAction: false;
543
- allowedMediaTypes: string[];
544
- openapi: {
545
- operationId: string;
546
- summary: string;
547
- description: string;
548
- responses: {
549
- "302": {
550
- description: string;
256
+ authorizationEndpoint: {
257
+ type: string;
258
+ format: string;
259
+ nullable: boolean;
260
+ description: string;
551
261
  };
552
- };
553
- };
554
- };
555
- } & {
556
- use: any[];
557
- }, never>>;
558
- } & {
559
- requestDomainVerification: ReturnType<(options: _better_auth_sso.SSOOptions) => better_auth.StrictEndpoint<"/sso/request-domain-verification", {
560
- method: "POST";
561
- body: zod.ZodObject<{
562
- providerId: zod.ZodString;
563
- }, better_auth.$strip>;
564
- metadata: {
565
- openapi: {
566
- summary: string;
567
- description: string;
568
- responses: {
569
- "404": {
570
- description: string;
262
+ discoveryEndpoint: {
263
+ type: string;
264
+ format: string;
265
+ description: string;
571
266
  };
572
- "409": {
573
- description: string;
267
+ userInfoEndpoint: {
268
+ type: string;
269
+ format: string;
270
+ nullable: boolean;
271
+ description: string;
574
272
  };
575
- "201": {
576
- description: string;
273
+ scopes: {
274
+ type: string;
275
+ items: {
276
+ type: string;
277
+ };
278
+ nullable: boolean;
279
+ description: string;
577
280
  };
578
- };
579
- };
580
- };
581
- use: ((inputContext: better_auth.MiddlewareInputContext<better_auth.MiddlewareOptions>) => Promise<{
582
- session: {
583
- session: Record<string, any> & {
584
- id: string;
585
- createdAt: Date;
586
- updatedAt: Date;
587
- userId: string;
588
- expiresAt: Date;
589
- token: string;
590
- ipAddress?: string | null | undefined;
591
- userAgent?: string | null | undefined;
592
- };
593
- user: Record<string, any> & {
594
- id: string;
595
- createdAt: Date;
596
- updatedAt: Date;
597
- email: string;
598
- emailVerified: boolean;
599
- name: string;
600
- image?: string | null | undefined;
601
- };
602
- };
603
- }>)[];
604
- } & {
605
- use: any[];
606
- }, {
607
- domainVerificationToken: string;
608
- }>>;
609
- verifyDomain: ReturnType<(options: _better_auth_sso.SSOOptions) => better_auth.StrictEndpoint<"/sso/verify-domain", {
610
- method: "POST";
611
- body: zod.ZodObject<{
612
- providerId: zod.ZodString;
613
- }, better_auth.$strip>;
614
- metadata: {
615
- openapi: {
616
- summary: string;
617
- description: string;
618
- responses: {
619
- "404": {
620
- description: string;
281
+ tokenEndpoint: {
282
+ type: string;
283
+ format: string;
284
+ nullable: boolean;
285
+ description: string;
621
286
  };
622
- "409": {
623
- description: string;
287
+ tokenEndpointAuthentication: {
288
+ type: string;
289
+ enum: string[];
290
+ nullable: boolean;
291
+ description: string;
624
292
  };
625
- "502": {
626
- description: string;
293
+ jwksEndpoint: {
294
+ type: string;
295
+ format: string;
296
+ nullable: boolean;
297
+ description: string;
627
298
  };
628
- "204": {
629
- description: string;
299
+ mapping: {
300
+ type: string;
301
+ nullable: boolean;
302
+ properties: {
303
+ id: {
304
+ type: string;
305
+ description: string;
306
+ };
307
+ email: {
308
+ type: string;
309
+ description: string;
310
+ };
311
+ emailVerified: {
312
+ type: string;
313
+ nullable: boolean;
314
+ description: string;
315
+ };
316
+ name: {
317
+ type: string;
318
+ description: string;
319
+ };
320
+ image: {
321
+ type: string;
322
+ nullable: boolean;
323
+ description: string;
324
+ };
325
+ extraFields: {
326
+ type: string;
327
+ additionalProperties: {
328
+ type: string;
329
+ };
330
+ nullable: boolean;
331
+ description: string;
332
+ };
333
+ };
334
+ required: string[];
630
335
  };
336
+ };
337
+ required: string[];
338
+ description: string;
631
339
  };
632
- };
633
- };
634
- use: ((inputContext: better_auth.MiddlewareInputContext<better_auth.MiddlewareOptions>) => Promise<{
635
- session: {
636
- session: Record<string, any> & {
637
- id: string;
638
- createdAt: Date;
639
- updatedAt: Date;
640
- userId: string;
641
- expiresAt: Date;
642
- token: string;
643
- ipAddress?: string | null | undefined;
644
- userAgent?: string | null | undefined;
340
+ organizationId: {
341
+ type: string;
342
+ nullable: boolean;
343
+ description: string;
645
344
  };
646
- user: Record<string, any> & {
647
- id: string;
648
- createdAt: Date;
649
- updatedAt: Date;
650
- email: string;
651
- emailVerified: boolean;
652
- name: string;
653
- image?: string | null | undefined;
345
+ userId: {
346
+ type: string;
347
+ description: string;
654
348
  };
349
+ providerId: {
350
+ type: string;
351
+ description: string;
352
+ };
353
+ redirectURI: {
354
+ type: string;
355
+ format: string;
356
+ description: string;
357
+ };
358
+ };
359
+ required: string[];
655
360
  };
656
- }>)[];
657
- } & {
658
- use: any[];
659
- }, void>>;
660
- };
661
- schema: any;
662
- options: _better_auth_sso.SSOOptions & {
663
- domainVerification?: {
664
- enabled: true;
665
- };
666
- };
667
- }, {
668
- id: "organization";
669
- endpoints: better_auth_plugins.OrganizationEndpoints<{
670
- allowUserToCreateOrganization: true;
671
- ac: better_auth_plugins.AccessControl;
672
- roles: {
673
- member: {
674
- authorize<K_1 extends "function" | "organization" | "ac" | "member" | "project" | "agent" | "sub_agent" | "tool" | "api_key" | "credential" | "data_component" | "artifact_component" | "external_agent" | "context_config" | "invitation" | "team">(request: K_1 extends infer T extends K ? { [key in T]?: better_auth_plugins.Subset<"function" | "organization" | "ac" | "member" | "project" | "agent" | "sub_agent" | "tool" | "api_key" | "credential" | "data_component" | "artifact_component" | "external_agent" | "context_config" | "invitation" | "team", better_auth_plugins.Statements>[key] | {
675
- actions: better_auth_plugins.Subset<"function" | "organization" | "ac" | "member" | "project" | "agent" | "sub_agent" | "tool" | "api_key" | "credential" | "data_component" | "artifact_component" | "external_agent" | "context_config" | "invitation" | "team", better_auth_plugins.Statements>[key];
676
- connector: "OR" | "AND";
677
- } | undefined; } : never, connector?: "OR" | "AND"): better_auth_plugins.AuthorizeResponse;
678
- statements: better_auth_plugins.Subset<"function" | "organization" | "ac" | "member" | "project" | "agent" | "sub_agent" | "tool" | "api_key" | "credential" | "data_component" | "artifact_component" | "external_agent" | "context_config" | "invitation" | "team", better_auth_plugins.Statements>;
679
- };
680
- admin: {
681
- authorize<K_1 extends "function" | "organization" | "ac" | "member" | "project" | "agent" | "sub_agent" | "tool" | "api_key" | "credential" | "data_component" | "artifact_component" | "external_agent" | "context_config" | "invitation" | "team">(request: K_1 extends infer T extends K ? { [key in T]?: better_auth_plugins.Subset<"function" | "organization" | "ac" | "member" | "project" | "agent" | "sub_agent" | "tool" | "api_key" | "credential" | "data_component" | "artifact_component" | "external_agent" | "context_config" | "invitation" | "team", better_auth_plugins.Statements>[key] | {
682
- actions: better_auth_plugins.Subset<"function" | "organization" | "ac" | "member" | "project" | "agent" | "sub_agent" | "tool" | "api_key" | "credential" | "data_component" | "artifact_component" | "external_agent" | "context_config" | "invitation" | "team", better_auth_plugins.Statements>[key];
683
- connector: "OR" | "AND";
684
- } | undefined; } : never, connector?: "OR" | "AND"): better_auth_plugins.AuthorizeResponse;
685
- statements: better_auth_plugins.Subset<"function" | "organization" | "ac" | "member" | "project" | "agent" | "sub_agent" | "tool" | "api_key" | "credential" | "data_component" | "artifact_component" | "external_agent" | "context_config" | "invitation" | "team", better_auth_plugins.Statements>;
686
- };
687
- owner: {
688
- authorize<K_1 extends "function" | "organization" | "ac" | "member" | "project" | "agent" | "sub_agent" | "tool" | "api_key" | "credential" | "data_component" | "artifact_component" | "external_agent" | "context_config" | "invitation" | "team">(request: K_1 extends infer T extends K ? { [key in T]?: better_auth_plugins.Subset<"function" | "organization" | "ac" | "member" | "project" | "agent" | "sub_agent" | "tool" | "api_key" | "credential" | "data_component" | "artifact_component" | "external_agent" | "context_config" | "invitation" | "team", better_auth_plugins.Statements>[key] | {
689
- actions: better_auth_plugins.Subset<"function" | "organization" | "ac" | "member" | "project" | "agent" | "sub_agent" | "tool" | "api_key" | "credential" | "data_component" | "artifact_component" | "external_agent" | "context_config" | "invitation" | "team", better_auth_plugins.Statements>[key];
690
- connector: "OR" | "AND";
691
- } | undefined; } : never, connector?: "OR" | "AND"): better_auth_plugins.AuthorizeResponse;
692
- statements: better_auth_plugins.Subset<"function" | "organization" | "ac" | "member" | "project" | "agent" | "sub_agent" | "tool" | "api_key" | "credential" | "data_component" | "artifact_component" | "external_agent" | "context_config" | "invitation" | "team", better_auth_plugins.Statements>;
361
+ };
693
362
  };
363
+ };
694
364
  };
695
- sendInvitationEmail(data: {
696
- id: string;
697
- role: string;
698
- email: string;
699
- organization: better_auth_plugins.Organization;
700
- invitation: better_auth_plugins.Invitation;
701
- inviter: better_auth_plugins.Member & {
702
- user: better_auth.User;
703
- };
704
- }): Promise<void>;
705
- }>;
706
- schema: {
707
- organization: {
708
- modelName: string;
709
- fields: {
710
- name: {
711
- type: "string";
712
- required: true;
713
- sortable: true;
714
- };
715
- slug: {
716
- type: "string";
717
- required: true;
718
- unique: true;
719
- sortable: true;
720
- };
721
- logo: {
722
- type: "string";
723
- required: false;
724
- };
725
- createdAt: {
726
- type: "date";
727
- required: true;
728
- };
729
- updatedAt: {
730
- type: "date";
731
- required: false;
365
+ };
366
+ };
367
+ } & {
368
+ use: any[];
369
+ }, {
370
+ issuer: string;
371
+ oidcConfig?: _better_auth_sso0.OIDCConfig | undefined;
372
+ samlConfig?: _better_auth_sso0.SAMLConfig | undefined;
373
+ userId: string;
374
+ providerId: string;
375
+ organizationId?: string | undefined;
376
+ domain: string;
377
+ }>;
378
+ signInSSO: ReturnType<(options?: _better_auth_sso0.SSOOptions) => better_auth0.StrictEndpoint<"/sign-in/sso", {
379
+ method: "POST";
380
+ body: zod0.ZodObject<{
381
+ email: zod0.ZodOptional<zod0.ZodString>;
382
+ organizationSlug: zod0.ZodOptional<zod0.ZodString>;
383
+ providerId: zod0.ZodOptional<zod0.ZodString>;
384
+ domain: zod0.ZodOptional<zod0.ZodString>;
385
+ callbackURL: zod0.ZodString;
386
+ errorCallbackURL: zod0.ZodOptional<zod0.ZodString>;
387
+ newUserCallbackURL: zod0.ZodOptional<zod0.ZodString>;
388
+ scopes: zod0.ZodOptional<zod0.ZodArray<zod0.ZodString>>;
389
+ loginHint: zod0.ZodOptional<zod0.ZodString>;
390
+ requestSignUp: zod0.ZodOptional<zod0.ZodBoolean>;
391
+ providerType: zod0.ZodOptional<zod0.ZodEnum<{
392
+ oidc: "oidc";
393
+ saml: "saml";
394
+ }>>;
395
+ }, better_auth0.$strip>;
396
+ metadata: {
397
+ openapi: {
398
+ operationId: string;
399
+ summary: string;
400
+ description: string;
401
+ requestBody: {
402
+ content: {
403
+ "application/json": {
404
+ schema: {
405
+ type: "object";
406
+ properties: {
407
+ email: {
408
+ type: string;
409
+ description: string;
410
+ };
411
+ issuer: {
412
+ type: string;
413
+ description: string;
414
+ };
415
+ providerId: {
416
+ type: string;
417
+ description: string;
418
+ };
419
+ callbackURL: {
420
+ type: string;
421
+ description: string;
422
+ };
423
+ errorCallbackURL: {
424
+ type: string;
425
+ description: string;
426
+ };
427
+ newUserCallbackURL: {
428
+ type: string;
429
+ description: string;
430
+ };
431
+ loginHint: {
432
+ type: string;
433
+ description: string;
434
+ };
732
435
  };
436
+ required: string[];
437
+ };
733
438
  };
439
+ };
734
440
  };
735
- member: {
736
- modelName: string;
737
- fields: {
738
- organizationId: {
739
- type: "string";
740
- required: true;
741
- references: {
742
- model: "organization";
743
- field: "id";
441
+ responses: {
442
+ "200": {
443
+ description: string;
444
+ content: {
445
+ "application/json": {
446
+ schema: {
447
+ type: "object";
448
+ properties: {
449
+ url: {
450
+ type: string;
451
+ format: string;
452
+ description: string;
744
453
  };
745
- };
746
- userId: {
747
- type: "string";
748
- required: true;
749
- references: {
750
- model: "user";
751
- field: "id";
454
+ redirect: {
455
+ type: string;
456
+ description: string;
457
+ enum: boolean[];
752
458
  };
459
+ };
460
+ required: string[];
753
461
  };
754
- role: {
755
- type: "string";
756
- required: true;
757
- defaultValue: "member";
758
- };
759
- createdAt: {
760
- type: "date";
761
- required: true;
762
- };
462
+ };
763
463
  };
464
+ };
764
465
  };
765
- invitation: {
766
- modelName: string;
767
- fields: {
768
- organizationId: {
769
- type: "string";
770
- required: true;
771
- references: {
772
- model: "organization";
773
- field: "id";
774
- };
775
- };
776
- email: {
777
- type: "string";
778
- required: true;
779
- sortable: true;
780
- };
781
- role: {
782
- type: "string";
783
- required: true;
784
- sortable: true;
785
- };
786
- status: {
787
- type: "string";
788
- required: true;
789
- sortable: true;
790
- defaultValue: "pending";
791
- };
792
- expiresAt: {
793
- type: "date";
794
- required: false;
795
- };
796
- createdAt: {
797
- type: "date";
798
- required: true;
799
- defaultValue: Date;
800
- };
801
- inviterId: {
802
- type: "string";
803
- required: true;
804
- references: {
805
- model: "user";
806
- field: "id";
807
- };
808
- };
809
- };
466
+ };
467
+ };
468
+ } & {
469
+ use: any[];
470
+ }, {
471
+ url: string;
472
+ redirect: boolean;
473
+ }>>;
474
+ callbackSSO: ReturnType<(options?: _better_auth_sso0.SSOOptions) => better_auth0.StrictEndpoint<"/sso/callback/:providerId", {
475
+ method: "GET";
476
+ query: zod0.ZodObject<{
477
+ code: zod0.ZodOptional<zod0.ZodString>;
478
+ state: zod0.ZodString;
479
+ error: zod0.ZodOptional<zod0.ZodString>;
480
+ error_description: zod0.ZodOptional<zod0.ZodString>;
481
+ }, better_auth0.$strip>;
482
+ allowedMediaTypes: string[];
483
+ metadata: {
484
+ isAction: false;
485
+ openapi: {
486
+ operationId: string;
487
+ summary: string;
488
+ description: string;
489
+ responses: {
490
+ "302": {
491
+ description: string;
492
+ };
810
493
  };
811
- session: {
812
- fields: {
813
- activeOrganizationId: {
814
- type: "string";
815
- required: false;
816
- };
817
- };
494
+ };
495
+ };
496
+ } & {
497
+ use: any[];
498
+ }, never>>;
499
+ callbackSSOSAML: ReturnType<(options?: _better_auth_sso0.SSOOptions) => better_auth0.StrictEndpoint<"/sso/saml2/callback/:providerId", {
500
+ method: "POST";
501
+ body: zod0.ZodObject<{
502
+ SAMLResponse: zod0.ZodString;
503
+ RelayState: zod0.ZodOptional<zod0.ZodString>;
504
+ }, better_auth0.$strip>;
505
+ metadata: {
506
+ isAction: false;
507
+ allowedMediaTypes: string[];
508
+ openapi: {
509
+ operationId: string;
510
+ summary: string;
511
+ description: string;
512
+ responses: {
513
+ "302": {
514
+ description: string;
515
+ };
516
+ "400": {
517
+ description: string;
518
+ };
519
+ "401": {
520
+ description: string;
521
+ };
818
522
  };
523
+ };
819
524
  };
820
- $Infer: {
821
- Organization: {
822
- id: string;
823
- name: string;
824
- slug: string;
825
- createdAt: Date;
826
- logo?: string | null | undefined;
827
- metadata?: any;
525
+ } & {
526
+ use: any[];
527
+ }, never>>;
528
+ acsEndpoint: ReturnType<(options?: _better_auth_sso0.SSOOptions) => better_auth0.StrictEndpoint<"/sso/saml2/sp/acs/:providerId", {
529
+ method: "POST";
530
+ params: zod0.ZodObject<{
531
+ providerId: zod0.ZodOptional<zod0.ZodString>;
532
+ }, better_auth0.$strip>;
533
+ body: zod0.ZodObject<{
534
+ SAMLResponse: zod0.ZodString;
535
+ RelayState: zod0.ZodOptional<zod0.ZodString>;
536
+ }, better_auth0.$strip>;
537
+ metadata: {
538
+ isAction: false;
539
+ allowedMediaTypes: string[];
540
+ openapi: {
541
+ operationId: string;
542
+ summary: string;
543
+ description: string;
544
+ responses: {
545
+ "302": {
546
+ description: string;
547
+ };
828
548
  };
829
- Invitation: {
830
- id: string;
831
- organizationId: string;
832
- email: string;
833
- role: "member" | "admin" | "owner";
834
- status: better_auth_plugins.InvitationStatus;
835
- inviterId: string;
836
- expiresAt: Date;
837
- createdAt: Date;
549
+ };
550
+ };
551
+ } & {
552
+ use: any[];
553
+ }, never>>;
554
+ } & {
555
+ requestDomainVerification: ReturnType<(options: _better_auth_sso0.SSOOptions) => better_auth0.StrictEndpoint<"/sso/request-domain-verification", {
556
+ method: "POST";
557
+ body: zod0.ZodObject<{
558
+ providerId: zod0.ZodString;
559
+ }, better_auth0.$strip>;
560
+ metadata: {
561
+ openapi: {
562
+ summary: string;
563
+ description: string;
564
+ responses: {
565
+ "404": {
566
+ description: string;
567
+ };
568
+ "409": {
569
+ description: string;
570
+ };
571
+ "201": {
572
+ description: string;
573
+ };
838
574
  };
839
- Member: {
840
- id: string;
841
- organizationId: string;
842
- role: "member" | "admin" | "owner";
843
- createdAt: Date;
844
- userId: string;
845
- user: {
846
- id: string;
847
- email: string;
848
- name: string;
849
- image?: string | undefined;
850
- };
575
+ };
576
+ };
577
+ use: ((inputContext: better_auth0.MiddlewareInputContext<better_auth0.MiddlewareOptions>) => Promise<{
578
+ session: {
579
+ session: Record<string, any> & {
580
+ id: string;
581
+ createdAt: Date;
582
+ updatedAt: Date;
583
+ userId: string;
584
+ expiresAt: Date;
585
+ token: string;
586
+ ipAddress?: string | null | undefined;
587
+ userAgent?: string | null | undefined;
851
588
  };
852
- Team: any;
853
- TeamMember: any;
854
- ActiveOrganization: {
855
- members: {
856
- id: string;
857
- organizationId: string;
858
- role: "member" | "admin" | "owner";
859
- createdAt: Date;
860
- userId: string;
861
- user: {
862
- id: string;
863
- email: string;
864
- name: string;
865
- image?: string | undefined;
866
- };
867
- }[];
868
- invitations: {
869
- id: string;
870
- organizationId: string;
871
- email: string;
872
- role: "member" | "admin" | "owner";
873
- status: better_auth_plugins.InvitationStatus;
874
- inviterId: string;
875
- expiresAt: Date;
876
- createdAt: Date;
877
- }[];
878
- } & {
879
- id: string;
880
- name: string;
881
- slug: string;
882
- createdAt: Date;
883
- logo?: string | null | undefined;
884
- metadata?: any;
589
+ user: Record<string, any> & {
590
+ id: string;
591
+ createdAt: Date;
592
+ updatedAt: Date;
593
+ email: string;
594
+ emailVerified: boolean;
595
+ name: string;
596
+ image?: string | null | undefined;
597
+ };
598
+ };
599
+ }>)[];
600
+ } & {
601
+ use: any[];
602
+ }, {
603
+ domainVerificationToken: string;
604
+ }>>;
605
+ verifyDomain: ReturnType<(options: _better_auth_sso0.SSOOptions) => better_auth0.StrictEndpoint<"/sso/verify-domain", {
606
+ method: "POST";
607
+ body: zod0.ZodObject<{
608
+ providerId: zod0.ZodString;
609
+ }, better_auth0.$strip>;
610
+ metadata: {
611
+ openapi: {
612
+ summary: string;
613
+ description: string;
614
+ responses: {
615
+ "404": {
616
+ description: string;
617
+ };
618
+ "409": {
619
+ description: string;
620
+ };
621
+ "502": {
622
+ description: string;
623
+ };
624
+ "204": {
625
+ description: string;
626
+ };
885
627
  };
628
+ };
886
629
  };
887
- $ERROR_CODES: {
888
- readonly YOU_ARE_NOT_ALLOWED_TO_CREATE_A_NEW_ORGANIZATION: "You are not allowed to create a new organization";
889
- readonly YOU_HAVE_REACHED_THE_MAXIMUM_NUMBER_OF_ORGANIZATIONS: "You have reached the maximum number of organizations";
890
- readonly ORGANIZATION_ALREADY_EXISTS: "Organization already exists";
891
- readonly ORGANIZATION_SLUG_ALREADY_TAKEN: "Organization slug already taken";
892
- readonly ORGANIZATION_NOT_FOUND: "Organization not found";
893
- readonly USER_IS_NOT_A_MEMBER_OF_THE_ORGANIZATION: "User is not a member of the organization";
894
- readonly YOU_ARE_NOT_ALLOWED_TO_UPDATE_THIS_ORGANIZATION: "You are not allowed to update this organization";
895
- readonly YOU_ARE_NOT_ALLOWED_TO_DELETE_THIS_ORGANIZATION: "You are not allowed to delete this organization";
896
- readonly NO_ACTIVE_ORGANIZATION: "No active organization";
897
- readonly USER_IS_ALREADY_A_MEMBER_OF_THIS_ORGANIZATION: "User is already a member of this organization";
898
- readonly MEMBER_NOT_FOUND: "Member not found";
899
- readonly ROLE_NOT_FOUND: "Role not found";
900
- readonly YOU_ARE_NOT_ALLOWED_TO_CREATE_A_NEW_TEAM: "You are not allowed to create a new team";
901
- readonly TEAM_ALREADY_EXISTS: "Team already exists";
902
- readonly TEAM_NOT_FOUND: "Team not found";
903
- readonly YOU_CANNOT_LEAVE_THE_ORGANIZATION_AS_THE_ONLY_OWNER: "You cannot leave the organization as the only owner";
904
- readonly YOU_CANNOT_LEAVE_THE_ORGANIZATION_WITHOUT_AN_OWNER: "You cannot leave the organization without an owner";
905
- readonly YOU_ARE_NOT_ALLOWED_TO_DELETE_THIS_MEMBER: "You are not allowed to delete this member";
906
- readonly YOU_ARE_NOT_ALLOWED_TO_INVITE_USERS_TO_THIS_ORGANIZATION: "You are not allowed to invite users to this organization";
907
- readonly USER_IS_ALREADY_INVITED_TO_THIS_ORGANIZATION: "User is already invited to this organization";
908
- readonly INVITATION_NOT_FOUND: "Invitation not found";
909
- readonly YOU_ARE_NOT_THE_RECIPIENT_OF_THE_INVITATION: "You are not the recipient of the invitation";
910
- readonly EMAIL_VERIFICATION_REQUIRED_BEFORE_ACCEPTING_OR_REJECTING_INVITATION: "Email verification required before accepting or rejecting invitation";
911
- readonly YOU_ARE_NOT_ALLOWED_TO_CANCEL_THIS_INVITATION: "You are not allowed to cancel this invitation";
912
- readonly INVITER_IS_NO_LONGER_A_MEMBER_OF_THE_ORGANIZATION: "Inviter is no longer a member of the organization";
913
- readonly YOU_ARE_NOT_ALLOWED_TO_INVITE_USER_WITH_THIS_ROLE: "You are not allowed to invite a user with this role";
914
- readonly FAILED_TO_RETRIEVE_INVITATION: "Failed to retrieve invitation";
915
- readonly YOU_HAVE_REACHED_THE_MAXIMUM_NUMBER_OF_TEAMS: "You have reached the maximum number of teams";
916
- readonly UNABLE_TO_REMOVE_LAST_TEAM: "Unable to remove last team";
917
- readonly YOU_ARE_NOT_ALLOWED_TO_UPDATE_THIS_MEMBER: "You are not allowed to update this member";
918
- readonly ORGANIZATION_MEMBERSHIP_LIMIT_REACHED: "Organization membership limit reached";
919
- readonly YOU_ARE_NOT_ALLOWED_TO_CREATE_TEAMS_IN_THIS_ORGANIZATION: "You are not allowed to create teams in this organization";
920
- readonly YOU_ARE_NOT_ALLOWED_TO_DELETE_TEAMS_IN_THIS_ORGANIZATION: "You are not allowed to delete teams in this organization";
921
- readonly YOU_ARE_NOT_ALLOWED_TO_UPDATE_THIS_TEAM: "You are not allowed to update this team";
922
- readonly YOU_ARE_NOT_ALLOWED_TO_DELETE_THIS_TEAM: "You are not allowed to delete this team";
923
- readonly INVITATION_LIMIT_REACHED: "Invitation limit reached";
924
- readonly TEAM_MEMBER_LIMIT_REACHED: "Team member limit reached";
925
- readonly USER_IS_NOT_A_MEMBER_OF_THE_TEAM: "User is not a member of the team";
926
- readonly YOU_CAN_NOT_ACCESS_THE_MEMBERS_OF_THIS_TEAM: "You are not allowed to list the members of this team";
927
- readonly YOU_DO_NOT_HAVE_AN_ACTIVE_TEAM: "You do not have an active team";
928
- readonly YOU_ARE_NOT_ALLOWED_TO_CREATE_A_NEW_TEAM_MEMBER: "You are not allowed to create a new member";
929
- readonly YOU_ARE_NOT_ALLOWED_TO_REMOVE_A_TEAM_MEMBER: "You are not allowed to remove a team member";
930
- readonly YOU_ARE_NOT_ALLOWED_TO_ACCESS_THIS_ORGANIZATION: "You are not allowed to access this organization as an owner";
931
- readonly YOU_ARE_NOT_A_MEMBER_OF_THIS_ORGANIZATION: "You are not a member of this organization";
932
- readonly MISSING_AC_INSTANCE: "Dynamic Access Control requires a pre-defined ac instance on the server auth plugin. Read server logs for more information";
933
- readonly YOU_MUST_BE_IN_AN_ORGANIZATION_TO_CREATE_A_ROLE: "You must be in an organization to create a role";
934
- readonly YOU_ARE_NOT_ALLOWED_TO_CREATE_A_ROLE: "You are not allowed to create a role";
935
- readonly YOU_ARE_NOT_ALLOWED_TO_UPDATE_A_ROLE: "You are not allowed to update a role";
936
- readonly YOU_ARE_NOT_ALLOWED_TO_DELETE_A_ROLE: "You are not allowed to delete a role";
937
- readonly YOU_ARE_NOT_ALLOWED_TO_READ_A_ROLE: "You are not allowed to read a role";
938
- readonly YOU_ARE_NOT_ALLOWED_TO_LIST_A_ROLE: "You are not allowed to list a role";
939
- readonly YOU_ARE_NOT_ALLOWED_TO_GET_A_ROLE: "You are not allowed to get a role";
940
- readonly TOO_MANY_ROLES: "This organization has too many roles";
941
- readonly INVALID_RESOURCE: "The provided permission includes an invalid resource";
942
- readonly ROLE_NAME_IS_ALREADY_TAKEN: "That role name is already taken";
943
- readonly CANNOT_DELETE_A_PRE_DEFINED_ROLE: "Cannot delete a pre-defined role";
630
+ use: ((inputContext: better_auth0.MiddlewareInputContext<better_auth0.MiddlewareOptions>) => Promise<{
631
+ session: {
632
+ session: Record<string, any> & {
633
+ id: string;
634
+ createdAt: Date;
635
+ updatedAt: Date;
636
+ userId: string;
637
+ expiresAt: Date;
638
+ token: string;
639
+ ipAddress?: string | null | undefined;
640
+ userAgent?: string | null | undefined;
641
+ };
642
+ user: Record<string, any> & {
643
+ id: string;
644
+ createdAt: Date;
645
+ updatedAt: Date;
646
+ email: string;
647
+ emailVerified: boolean;
648
+ name: string;
649
+ image?: string | null | undefined;
650
+ };
651
+ };
652
+ }>)[];
653
+ } & {
654
+ use: any[];
655
+ }, void>>;
656
+ };
657
+ schema: any;
658
+ options: _better_auth_sso0.SSOOptions & {
659
+ domainVerification?: {
660
+ enabled: true;
661
+ };
662
+ };
663
+ }, {
664
+ id: "organization";
665
+ endpoints: better_auth_plugins0.OrganizationEndpoints<{
666
+ allowUserToCreateOrganization: true;
667
+ ac: better_auth_plugins0.AccessControl;
668
+ roles: {
669
+ member: {
670
+ authorize<K_1 extends "function" | "organization" | "ac" | "member" | "project" | "agent" | "sub_agent" | "tool" | "api_key" | "credential" | "data_component" | "artifact_component" | "external_agent" | "context_config" | "invitation" | "team">(request: K_1 extends infer T extends K ? { [key in T]?: better_auth_plugins0.Subset<"function" | "organization" | "ac" | "member" | "project" | "agent" | "sub_agent" | "tool" | "api_key" | "credential" | "data_component" | "artifact_component" | "external_agent" | "context_config" | "invitation" | "team", better_auth_plugins0.Statements>[key] | {
671
+ actions: better_auth_plugins0.Subset<"function" | "organization" | "ac" | "member" | "project" | "agent" | "sub_agent" | "tool" | "api_key" | "credential" | "data_component" | "artifact_component" | "external_agent" | "context_config" | "invitation" | "team", better_auth_plugins0.Statements>[key];
672
+ connector: "OR" | "AND";
673
+ } | undefined } : never, connector?: "OR" | "AND"): better_auth_plugins0.AuthorizeResponse;
674
+ statements: better_auth_plugins0.Subset<"function" | "organization" | "ac" | "member" | "project" | "agent" | "sub_agent" | "tool" | "api_key" | "credential" | "data_component" | "artifact_component" | "external_agent" | "context_config" | "invitation" | "team", better_auth_plugins0.Statements>;
944
675
  };
945
- options: {
946
- allowUserToCreateOrganization: true;
947
- ac: better_auth_plugins.AccessControl;
948
- roles: {
949
- member: {
950
- authorize<K_1 extends "function" | "organization" | "ac" | "member" | "project" | "agent" | "sub_agent" | "tool" | "api_key" | "credential" | "data_component" | "artifact_component" | "external_agent" | "context_config" | "invitation" | "team">(request: K_1 extends infer T extends K ? { [key in T]?: better_auth_plugins.Subset<"function" | "organization" | "ac" | "member" | "project" | "agent" | "sub_agent" | "tool" | "api_key" | "credential" | "data_component" | "artifact_component" | "external_agent" | "context_config" | "invitation" | "team", better_auth_plugins.Statements>[key] | {
951
- actions: better_auth_plugins.Subset<"function" | "organization" | "ac" | "member" | "project" | "agent" | "sub_agent" | "tool" | "api_key" | "credential" | "data_component" | "artifact_component" | "external_agent" | "context_config" | "invitation" | "team", better_auth_plugins.Statements>[key];
952
- connector: "OR" | "AND";
953
- } | undefined; } : never, connector?: "OR" | "AND"): better_auth_plugins.AuthorizeResponse;
954
- statements: better_auth_plugins.Subset<"function" | "organization" | "ac" | "member" | "project" | "agent" | "sub_agent" | "tool" | "api_key" | "credential" | "data_component" | "artifact_component" | "external_agent" | "context_config" | "invitation" | "team", better_auth_plugins.Statements>;
955
- };
956
- admin: {
957
- authorize<K_1 extends "function" | "organization" | "ac" | "member" | "project" | "agent" | "sub_agent" | "tool" | "api_key" | "credential" | "data_component" | "artifact_component" | "external_agent" | "context_config" | "invitation" | "team">(request: K_1 extends infer T extends K ? { [key in T]?: better_auth_plugins.Subset<"function" | "organization" | "ac" | "member" | "project" | "agent" | "sub_agent" | "tool" | "api_key" | "credential" | "data_component" | "artifact_component" | "external_agent" | "context_config" | "invitation" | "team", better_auth_plugins.Statements>[key] | {
958
- actions: better_auth_plugins.Subset<"function" | "organization" | "ac" | "member" | "project" | "agent" | "sub_agent" | "tool" | "api_key" | "credential" | "data_component" | "artifact_component" | "external_agent" | "context_config" | "invitation" | "team", better_auth_plugins.Statements>[key];
959
- connector: "OR" | "AND";
960
- } | undefined; } : never, connector?: "OR" | "AND"): better_auth_plugins.AuthorizeResponse;
961
- statements: better_auth_plugins.Subset<"function" | "organization" | "ac" | "member" | "project" | "agent" | "sub_agent" | "tool" | "api_key" | "credential" | "data_component" | "artifact_component" | "external_agent" | "context_config" | "invitation" | "team", better_auth_plugins.Statements>;
962
- };
963
- owner: {
964
- authorize<K_1 extends "function" | "organization" | "ac" | "member" | "project" | "agent" | "sub_agent" | "tool" | "api_key" | "credential" | "data_component" | "artifact_component" | "external_agent" | "context_config" | "invitation" | "team">(request: K_1 extends infer T extends K ? { [key in T]?: better_auth_plugins.Subset<"function" | "organization" | "ac" | "member" | "project" | "agent" | "sub_agent" | "tool" | "api_key" | "credential" | "data_component" | "artifact_component" | "external_agent" | "context_config" | "invitation" | "team", better_auth_plugins.Statements>[key] | {
965
- actions: better_auth_plugins.Subset<"function" | "organization" | "ac" | "member" | "project" | "agent" | "sub_agent" | "tool" | "api_key" | "credential" | "data_component" | "artifact_component" | "external_agent" | "context_config" | "invitation" | "team", better_auth_plugins.Statements>[key];
966
- connector: "OR" | "AND";
967
- } | undefined; } : never, connector?: "OR" | "AND"): better_auth_plugins.AuthorizeResponse;
968
- statements: better_auth_plugins.Subset<"function" | "organization" | "ac" | "member" | "project" | "agent" | "sub_agent" | "tool" | "api_key" | "credential" | "data_component" | "artifact_component" | "external_agent" | "context_config" | "invitation" | "team", better_auth_plugins.Statements>;
969
- };
676
+ admin: {
677
+ authorize<K_1 extends "function" | "organization" | "ac" | "member" | "project" | "agent" | "sub_agent" | "tool" | "api_key" | "credential" | "data_component" | "artifact_component" | "external_agent" | "context_config" | "invitation" | "team">(request: K_1 extends infer T extends K ? { [key in T]?: better_auth_plugins0.Subset<"function" | "organization" | "ac" | "member" | "project" | "agent" | "sub_agent" | "tool" | "api_key" | "credential" | "data_component" | "artifact_component" | "external_agent" | "context_config" | "invitation" | "team", better_auth_plugins0.Statements>[key] | {
678
+ actions: better_auth_plugins0.Subset<"function" | "organization" | "ac" | "member" | "project" | "agent" | "sub_agent" | "tool" | "api_key" | "credential" | "data_component" | "artifact_component" | "external_agent" | "context_config" | "invitation" | "team", better_auth_plugins0.Statements>[key];
679
+ connector: "OR" | "AND";
680
+ } | undefined } : never, connector?: "OR" | "AND"): better_auth_plugins0.AuthorizeResponse;
681
+ statements: better_auth_plugins0.Subset<"function" | "organization" | "ac" | "member" | "project" | "agent" | "sub_agent" | "tool" | "api_key" | "credential" | "data_component" | "artifact_component" | "external_agent" | "context_config" | "invitation" | "team", better_auth_plugins0.Statements>;
682
+ };
683
+ owner: {
684
+ authorize<K_1 extends "function" | "organization" | "ac" | "member" | "project" | "agent" | "sub_agent" | "tool" | "api_key" | "credential" | "data_component" | "artifact_component" | "external_agent" | "context_config" | "invitation" | "team">(request: K_1 extends infer T extends K ? { [key in T]?: better_auth_plugins0.Subset<"function" | "organization" | "ac" | "member" | "project" | "agent" | "sub_agent" | "tool" | "api_key" | "credential" | "data_component" | "artifact_component" | "external_agent" | "context_config" | "invitation" | "team", better_auth_plugins0.Statements>[key] | {
685
+ actions: better_auth_plugins0.Subset<"function" | "organization" | "ac" | "member" | "project" | "agent" | "sub_agent" | "tool" | "api_key" | "credential" | "data_component" | "artifact_component" | "external_agent" | "context_config" | "invitation" | "team", better_auth_plugins0.Statements>[key];
686
+ connector: "OR" | "AND";
687
+ } | undefined } : never, connector?: "OR" | "AND"): better_auth_plugins0.AuthorizeResponse;
688
+ statements: better_auth_plugins0.Subset<"function" | "organization" | "ac" | "member" | "project" | "agent" | "sub_agent" | "tool" | "api_key" | "credential" | "data_component" | "artifact_component" | "external_agent" | "context_config" | "invitation" | "team", better_auth_plugins0.Statements>;
689
+ };
690
+ };
691
+ membershipLimit: number;
692
+ invitationLimit: number;
693
+ invitationExpiresIn: number;
694
+ sendInvitationEmail(data: {
695
+ id: string;
696
+ role: string;
697
+ email: string;
698
+ organization: better_auth_plugins0.Organization;
699
+ invitation: better_auth_plugins0.Invitation;
700
+ inviter: better_auth_plugins0.Member & {
701
+ user: better_auth0.User;
702
+ };
703
+ }): Promise<void>;
704
+ }>;
705
+ schema: {
706
+ organization: {
707
+ modelName: string;
708
+ fields: {
709
+ name: {
710
+ type: "string";
711
+ required: true;
712
+ sortable: true;
713
+ };
714
+ slug: {
715
+ type: "string";
716
+ required: true;
717
+ unique: true;
718
+ sortable: true;
719
+ };
720
+ logo: {
721
+ type: "string";
722
+ required: false;
723
+ };
724
+ createdAt: {
725
+ type: "date";
726
+ required: true;
727
+ };
728
+ updatedAt: {
729
+ type: "date";
730
+ required: false;
731
+ };
732
+ };
733
+ };
734
+ member: {
735
+ modelName: string;
736
+ fields: {
737
+ organizationId: {
738
+ type: "string";
739
+ required: true;
740
+ references: {
741
+ model: "organization";
742
+ field: "id";
970
743
  };
971
- sendInvitationEmail(data: {
972
- id: string;
973
- role: string;
974
- email: string;
975
- organization: better_auth_plugins.Organization;
976
- invitation: better_auth_plugins.Invitation;
977
- inviter: better_auth_plugins.Member & {
978
- user: better_auth.User;
979
- };
980
- }): Promise<void>;
744
+ };
745
+ userId: {
746
+ type: "string";
747
+ required: true;
748
+ references: {
749
+ model: "user";
750
+ field: "id";
751
+ };
752
+ };
753
+ role: {
754
+ type: "string";
755
+ required: true;
756
+ defaultValue: "member";
757
+ };
758
+ createdAt: {
759
+ type: "date";
760
+ required: true;
761
+ };
981
762
  };
982
- }, {
983
- id: "device-authorization";
984
- schema: {
985
- deviceCode: {
986
- fields: {
987
- deviceCode: {
988
- type: "string";
989
- required: true;
990
- };
991
- userCode: {
992
- type: "string";
993
- required: true;
994
- };
995
- userId: {
996
- type: "string";
997
- required: false;
998
- };
999
- expiresAt: {
1000
- type: "date";
1001
- required: true;
1002
- };
1003
- status: {
1004
- type: "string";
1005
- required: true;
1006
- };
1007
- lastPolledAt: {
1008
- type: "date";
1009
- required: false;
1010
- };
1011
- pollingInterval: {
1012
- type: "number";
1013
- required: false;
1014
- };
1015
- clientId: {
1016
- type: "string";
1017
- required: false;
763
+ };
764
+ invitation: {
765
+ modelName: string;
766
+ fields: {
767
+ organizationId: {
768
+ type: "string";
769
+ required: true;
770
+ references: {
771
+ model: "organization";
772
+ field: "id";
773
+ };
774
+ };
775
+ email: {
776
+ type: "string";
777
+ required: true;
778
+ sortable: true;
779
+ };
780
+ role: {
781
+ type: "string";
782
+ required: true;
783
+ sortable: true;
784
+ };
785
+ status: {
786
+ type: "string";
787
+ required: true;
788
+ sortable: true;
789
+ defaultValue: "pending";
790
+ };
791
+ expiresAt: {
792
+ type: "date";
793
+ required: false;
794
+ };
795
+ createdAt: {
796
+ type: "date";
797
+ required: true;
798
+ defaultValue: Date;
799
+ };
800
+ inviterId: {
801
+ type: "string";
802
+ required: true;
803
+ references: {
804
+ model: "user";
805
+ field: "id";
806
+ };
807
+ };
808
+ };
809
+ };
810
+ session: {
811
+ fields: {
812
+ activeOrganizationId: {
813
+ type: "string";
814
+ required: false;
815
+ };
816
+ };
817
+ };
818
+ };
819
+ $Infer: {
820
+ Organization: {
821
+ id: string;
822
+ name: string;
823
+ slug: string;
824
+ createdAt: Date;
825
+ logo?: string | null | undefined;
826
+ metadata?: any;
827
+ };
828
+ Invitation: {
829
+ id: string;
830
+ organizationId: string;
831
+ email: string;
832
+ role: "member" | "admin" | "owner";
833
+ status: better_auth_plugins0.InvitationStatus;
834
+ inviterId: string;
835
+ expiresAt: Date;
836
+ createdAt: Date;
837
+ };
838
+ Member: {
839
+ id: string;
840
+ organizationId: string;
841
+ role: "member" | "admin" | "owner";
842
+ createdAt: Date;
843
+ userId: string;
844
+ user: {
845
+ id: string;
846
+ email: string;
847
+ name: string;
848
+ image?: string | undefined;
849
+ };
850
+ };
851
+ Team: any;
852
+ TeamMember: any;
853
+ ActiveOrganization: {
854
+ members: {
855
+ id: string;
856
+ organizationId: string;
857
+ role: "member" | "admin" | "owner";
858
+ createdAt: Date;
859
+ userId: string;
860
+ user: {
861
+ id: string;
862
+ email: string;
863
+ name: string;
864
+ image?: string | undefined;
865
+ };
866
+ }[];
867
+ invitations: {
868
+ id: string;
869
+ organizationId: string;
870
+ email: string;
871
+ role: "member" | "admin" | "owner";
872
+ status: better_auth_plugins0.InvitationStatus;
873
+ inviterId: string;
874
+ expiresAt: Date;
875
+ createdAt: Date;
876
+ }[];
877
+ } & {
878
+ id: string;
879
+ name: string;
880
+ slug: string;
881
+ createdAt: Date;
882
+ logo?: string | null | undefined;
883
+ metadata?: any;
884
+ };
885
+ };
886
+ $ERROR_CODES: {
887
+ readonly YOU_ARE_NOT_ALLOWED_TO_CREATE_A_NEW_ORGANIZATION: "You are not allowed to create a new organization";
888
+ readonly YOU_HAVE_REACHED_THE_MAXIMUM_NUMBER_OF_ORGANIZATIONS: "You have reached the maximum number of organizations";
889
+ readonly ORGANIZATION_ALREADY_EXISTS: "Organization already exists";
890
+ readonly ORGANIZATION_SLUG_ALREADY_TAKEN: "Organization slug already taken";
891
+ readonly ORGANIZATION_NOT_FOUND: "Organization not found";
892
+ readonly USER_IS_NOT_A_MEMBER_OF_THE_ORGANIZATION: "User is not a member of the organization";
893
+ readonly YOU_ARE_NOT_ALLOWED_TO_UPDATE_THIS_ORGANIZATION: "You are not allowed to update this organization";
894
+ readonly YOU_ARE_NOT_ALLOWED_TO_DELETE_THIS_ORGANIZATION: "You are not allowed to delete this organization";
895
+ readonly NO_ACTIVE_ORGANIZATION: "No active organization";
896
+ readonly USER_IS_ALREADY_A_MEMBER_OF_THIS_ORGANIZATION: "User is already a member of this organization";
897
+ readonly MEMBER_NOT_FOUND: "Member not found";
898
+ readonly ROLE_NOT_FOUND: "Role not found";
899
+ readonly YOU_ARE_NOT_ALLOWED_TO_CREATE_A_NEW_TEAM: "You are not allowed to create a new team";
900
+ readonly TEAM_ALREADY_EXISTS: "Team already exists";
901
+ readonly TEAM_NOT_FOUND: "Team not found";
902
+ readonly YOU_CANNOT_LEAVE_THE_ORGANIZATION_AS_THE_ONLY_OWNER: "You cannot leave the organization as the only owner";
903
+ readonly YOU_CANNOT_LEAVE_THE_ORGANIZATION_WITHOUT_AN_OWNER: "You cannot leave the organization without an owner";
904
+ readonly YOU_ARE_NOT_ALLOWED_TO_DELETE_THIS_MEMBER: "You are not allowed to delete this member";
905
+ readonly YOU_ARE_NOT_ALLOWED_TO_INVITE_USERS_TO_THIS_ORGANIZATION: "You are not allowed to invite users to this organization";
906
+ readonly USER_IS_ALREADY_INVITED_TO_THIS_ORGANIZATION: "User is already invited to this organization";
907
+ readonly INVITATION_NOT_FOUND: "Invitation not found";
908
+ readonly YOU_ARE_NOT_THE_RECIPIENT_OF_THE_INVITATION: "You are not the recipient of the invitation";
909
+ readonly EMAIL_VERIFICATION_REQUIRED_BEFORE_ACCEPTING_OR_REJECTING_INVITATION: "Email verification required before accepting or rejecting invitation";
910
+ readonly YOU_ARE_NOT_ALLOWED_TO_CANCEL_THIS_INVITATION: "You are not allowed to cancel this invitation";
911
+ readonly INVITER_IS_NO_LONGER_A_MEMBER_OF_THE_ORGANIZATION: "Inviter is no longer a member of the organization";
912
+ readonly YOU_ARE_NOT_ALLOWED_TO_INVITE_USER_WITH_THIS_ROLE: "You are not allowed to invite a user with this role";
913
+ readonly FAILED_TO_RETRIEVE_INVITATION: "Failed to retrieve invitation";
914
+ readonly YOU_HAVE_REACHED_THE_MAXIMUM_NUMBER_OF_TEAMS: "You have reached the maximum number of teams";
915
+ readonly UNABLE_TO_REMOVE_LAST_TEAM: "Unable to remove last team";
916
+ readonly YOU_ARE_NOT_ALLOWED_TO_UPDATE_THIS_MEMBER: "You are not allowed to update this member";
917
+ readonly ORGANIZATION_MEMBERSHIP_LIMIT_REACHED: "Organization membership limit reached";
918
+ readonly YOU_ARE_NOT_ALLOWED_TO_CREATE_TEAMS_IN_THIS_ORGANIZATION: "You are not allowed to create teams in this organization";
919
+ readonly YOU_ARE_NOT_ALLOWED_TO_DELETE_TEAMS_IN_THIS_ORGANIZATION: "You are not allowed to delete teams in this organization";
920
+ readonly YOU_ARE_NOT_ALLOWED_TO_UPDATE_THIS_TEAM: "You are not allowed to update this team";
921
+ readonly YOU_ARE_NOT_ALLOWED_TO_DELETE_THIS_TEAM: "You are not allowed to delete this team";
922
+ readonly INVITATION_LIMIT_REACHED: "Invitation limit reached";
923
+ readonly TEAM_MEMBER_LIMIT_REACHED: "Team member limit reached";
924
+ readonly USER_IS_NOT_A_MEMBER_OF_THE_TEAM: "User is not a member of the team";
925
+ readonly YOU_CAN_NOT_ACCESS_THE_MEMBERS_OF_THIS_TEAM: "You are not allowed to list the members of this team";
926
+ readonly YOU_DO_NOT_HAVE_AN_ACTIVE_TEAM: "You do not have an active team";
927
+ readonly YOU_ARE_NOT_ALLOWED_TO_CREATE_A_NEW_TEAM_MEMBER: "You are not allowed to create a new member";
928
+ readonly YOU_ARE_NOT_ALLOWED_TO_REMOVE_A_TEAM_MEMBER: "You are not allowed to remove a team member";
929
+ readonly YOU_ARE_NOT_ALLOWED_TO_ACCESS_THIS_ORGANIZATION: "You are not allowed to access this organization as an owner";
930
+ readonly YOU_ARE_NOT_A_MEMBER_OF_THIS_ORGANIZATION: "You are not a member of this organization";
931
+ readonly MISSING_AC_INSTANCE: "Dynamic Access Control requires a pre-defined ac instance on the server auth plugin. Read server logs for more information";
932
+ readonly YOU_MUST_BE_IN_AN_ORGANIZATION_TO_CREATE_A_ROLE: "You must be in an organization to create a role";
933
+ readonly YOU_ARE_NOT_ALLOWED_TO_CREATE_A_ROLE: "You are not allowed to create a role";
934
+ readonly YOU_ARE_NOT_ALLOWED_TO_UPDATE_A_ROLE: "You are not allowed to update a role";
935
+ readonly YOU_ARE_NOT_ALLOWED_TO_DELETE_A_ROLE: "You are not allowed to delete a role";
936
+ readonly YOU_ARE_NOT_ALLOWED_TO_READ_A_ROLE: "You are not allowed to read a role";
937
+ readonly YOU_ARE_NOT_ALLOWED_TO_LIST_A_ROLE: "You are not allowed to list a role";
938
+ readonly YOU_ARE_NOT_ALLOWED_TO_GET_A_ROLE: "You are not allowed to get a role";
939
+ readonly TOO_MANY_ROLES: "This organization has too many roles";
940
+ readonly INVALID_RESOURCE: "The provided permission includes an invalid resource";
941
+ readonly ROLE_NAME_IS_ALREADY_TAKEN: "That role name is already taken";
942
+ readonly CANNOT_DELETE_A_PRE_DEFINED_ROLE: "Cannot delete a pre-defined role";
943
+ };
944
+ options: {
945
+ allowUserToCreateOrganization: true;
946
+ ac: better_auth_plugins0.AccessControl;
947
+ roles: {
948
+ member: {
949
+ authorize<K_1 extends "function" | "organization" | "ac" | "member" | "project" | "agent" | "sub_agent" | "tool" | "api_key" | "credential" | "data_component" | "artifact_component" | "external_agent" | "context_config" | "invitation" | "team">(request: K_1 extends infer T extends K ? { [key in T]?: better_auth_plugins0.Subset<"function" | "organization" | "ac" | "member" | "project" | "agent" | "sub_agent" | "tool" | "api_key" | "credential" | "data_component" | "artifact_component" | "external_agent" | "context_config" | "invitation" | "team", better_auth_plugins0.Statements>[key] | {
950
+ actions: better_auth_plugins0.Subset<"function" | "organization" | "ac" | "member" | "project" | "agent" | "sub_agent" | "tool" | "api_key" | "credential" | "data_component" | "artifact_component" | "external_agent" | "context_config" | "invitation" | "team", better_auth_plugins0.Statements>[key];
951
+ connector: "OR" | "AND";
952
+ } | undefined } : never, connector?: "OR" | "AND"): better_auth_plugins0.AuthorizeResponse;
953
+ statements: better_auth_plugins0.Subset<"function" | "organization" | "ac" | "member" | "project" | "agent" | "sub_agent" | "tool" | "api_key" | "credential" | "data_component" | "artifact_component" | "external_agent" | "context_config" | "invitation" | "team", better_auth_plugins0.Statements>;
954
+ };
955
+ admin: {
956
+ authorize<K_1 extends "function" | "organization" | "ac" | "member" | "project" | "agent" | "sub_agent" | "tool" | "api_key" | "credential" | "data_component" | "artifact_component" | "external_agent" | "context_config" | "invitation" | "team">(request: K_1 extends infer T extends K ? { [key in T]?: better_auth_plugins0.Subset<"function" | "organization" | "ac" | "member" | "project" | "agent" | "sub_agent" | "tool" | "api_key" | "credential" | "data_component" | "artifact_component" | "external_agent" | "context_config" | "invitation" | "team", better_auth_plugins0.Statements>[key] | {
957
+ actions: better_auth_plugins0.Subset<"function" | "organization" | "ac" | "member" | "project" | "agent" | "sub_agent" | "tool" | "api_key" | "credential" | "data_component" | "artifact_component" | "external_agent" | "context_config" | "invitation" | "team", better_auth_plugins0.Statements>[key];
958
+ connector: "OR" | "AND";
959
+ } | undefined } : never, connector?: "OR" | "AND"): better_auth_plugins0.AuthorizeResponse;
960
+ statements: better_auth_plugins0.Subset<"function" | "organization" | "ac" | "member" | "project" | "agent" | "sub_agent" | "tool" | "api_key" | "credential" | "data_component" | "artifact_component" | "external_agent" | "context_config" | "invitation" | "team", better_auth_plugins0.Statements>;
961
+ };
962
+ owner: {
963
+ authorize<K_1 extends "function" | "organization" | "ac" | "member" | "project" | "agent" | "sub_agent" | "tool" | "api_key" | "credential" | "data_component" | "artifact_component" | "external_agent" | "context_config" | "invitation" | "team">(request: K_1 extends infer T extends K ? { [key in T]?: better_auth_plugins0.Subset<"function" | "organization" | "ac" | "member" | "project" | "agent" | "sub_agent" | "tool" | "api_key" | "credential" | "data_component" | "artifact_component" | "external_agent" | "context_config" | "invitation" | "team", better_auth_plugins0.Statements>[key] | {
964
+ actions: better_auth_plugins0.Subset<"function" | "organization" | "ac" | "member" | "project" | "agent" | "sub_agent" | "tool" | "api_key" | "credential" | "data_component" | "artifact_component" | "external_agent" | "context_config" | "invitation" | "team", better_auth_plugins0.Statements>[key];
965
+ connector: "OR" | "AND";
966
+ } | undefined } : never, connector?: "OR" | "AND"): better_auth_plugins0.AuthorizeResponse;
967
+ statements: better_auth_plugins0.Subset<"function" | "organization" | "ac" | "member" | "project" | "agent" | "sub_agent" | "tool" | "api_key" | "credential" | "data_component" | "artifact_component" | "external_agent" | "context_config" | "invitation" | "team", better_auth_plugins0.Statements>;
968
+ };
969
+ };
970
+ membershipLimit: number;
971
+ invitationLimit: number;
972
+ invitationExpiresIn: number;
973
+ sendInvitationEmail(data: {
974
+ id: string;
975
+ role: string;
976
+ email: string;
977
+ organization: better_auth_plugins0.Organization;
978
+ invitation: better_auth_plugins0.Invitation;
979
+ inviter: better_auth_plugins0.Member & {
980
+ user: better_auth0.User;
981
+ };
982
+ }): Promise<void>;
983
+ };
984
+ }, {
985
+ id: "device-authorization";
986
+ schema: {
987
+ deviceCode: {
988
+ fields: {
989
+ deviceCode: {
990
+ type: "string";
991
+ required: true;
992
+ };
993
+ userCode: {
994
+ type: "string";
995
+ required: true;
996
+ };
997
+ userId: {
998
+ type: "string";
999
+ required: false;
1000
+ };
1001
+ expiresAt: {
1002
+ type: "date";
1003
+ required: true;
1004
+ };
1005
+ status: {
1006
+ type: "string";
1007
+ required: true;
1008
+ };
1009
+ lastPolledAt: {
1010
+ type: "date";
1011
+ required: false;
1012
+ };
1013
+ pollingInterval: {
1014
+ type: "number";
1015
+ required: false;
1016
+ };
1017
+ clientId: {
1018
+ type: "string";
1019
+ required: false;
1020
+ };
1021
+ scope: {
1022
+ type: "string";
1023
+ required: false;
1024
+ };
1025
+ };
1026
+ };
1027
+ };
1028
+ endpoints: {
1029
+ deviceCode: better_auth0.StrictEndpoint<"/device/code", {
1030
+ method: "POST";
1031
+ body: zod0.ZodObject<{
1032
+ client_id: zod0.ZodString;
1033
+ scope: zod0.ZodOptional<zod0.ZodString>;
1034
+ }, better_auth0.$strip>;
1035
+ error: zod0.ZodObject<{
1036
+ error: zod0.ZodEnum<{
1037
+ invalid_request: "invalid_request";
1038
+ invalid_client: "invalid_client";
1039
+ }>;
1040
+ error_description: zod0.ZodString;
1041
+ }, better_auth0.$strip>;
1042
+ metadata: {
1043
+ openapi: {
1044
+ description: string;
1045
+ responses: {
1046
+ 200: {
1047
+ description: string;
1048
+ content: {
1049
+ "application/json": {
1050
+ schema: {
1051
+ type: "object";
1052
+ properties: {
1053
+ device_code: {
1054
+ type: string;
1055
+ description: string;
1056
+ };
1057
+ user_code: {
1058
+ type: string;
1059
+ description: string;
1060
+ };
1061
+ verification_uri: {
1062
+ type: string;
1063
+ format: string;
1064
+ description: string;
1065
+ };
1066
+ verification_uri_complete: {
1067
+ type: string;
1068
+ format: string;
1069
+ description: string;
1070
+ };
1071
+ expires_in: {
1072
+ type: string;
1073
+ description: string;
1074
+ };
1075
+ interval: {
1076
+ type: string;
1077
+ description: string;
1078
+ };
1079
+ };
1018
1080
  };
1019
- scope: {
1020
- type: "string";
1021
- required: false;
1081
+ };
1082
+ };
1083
+ };
1084
+ 400: {
1085
+ description: string;
1086
+ content: {
1087
+ "application/json": {
1088
+ schema: {
1089
+ type: "object";
1090
+ properties: {
1091
+ error: {
1092
+ type: string;
1093
+ enum: string[];
1094
+ };
1095
+ error_description: {
1096
+ type: string;
1097
+ };
1098
+ };
1022
1099
  };
1100
+ };
1023
1101
  };
1102
+ };
1024
1103
  };
1104
+ };
1025
1105
  };
1026
- endpoints: {
1027
- deviceCode: better_auth.StrictEndpoint<"/device/code", {
1028
- method: "POST";
1029
- body: zod.ZodObject<{
1030
- client_id: zod.ZodString;
1031
- scope: zod.ZodOptional<zod.ZodString>;
1032
- }, better_auth.$strip>;
1033
- error: zod.ZodObject<{
1034
- error: zod.ZodEnum<{
1035
- invalid_request: "invalid_request";
1036
- invalid_client: "invalid_client";
1037
- }>;
1038
- error_description: zod.ZodString;
1039
- }, better_auth.$strip>;
1040
- metadata: {
1041
- openapi: {
1042
- description: string;
1043
- responses: {
1044
- 200: {
1045
- description: string;
1046
- content: {
1047
- "application/json": {
1048
- schema: {
1049
- type: "object";
1050
- properties: {
1051
- device_code: {
1052
- type: string;
1053
- description: string;
1054
- };
1055
- user_code: {
1056
- type: string;
1057
- description: string;
1058
- };
1059
- verification_uri: {
1060
- type: string;
1061
- format: string;
1062
- description: string;
1063
- };
1064
- verification_uri_complete: {
1065
- type: string;
1066
- format: string;
1067
- description: string;
1068
- };
1069
- expires_in: {
1070
- type: string;
1071
- description: string;
1072
- };
1073
- interval: {
1074
- type: string;
1075
- description: string;
1076
- };
1077
- };
1078
- };
1079
- };
1080
- };
1081
- };
1082
- 400: {
1083
- description: string;
1084
- content: {
1085
- "application/json": {
1086
- schema: {
1087
- type: "object";
1088
- properties: {
1089
- error: {
1090
- type: string;
1091
- enum: string[];
1092
- };
1093
- error_description: {
1094
- type: string;
1095
- };
1096
- };
1097
- };
1098
- };
1099
- };
1100
- };
1106
+ } & {
1107
+ use: any[];
1108
+ }, {
1109
+ device_code: string;
1110
+ user_code: string;
1111
+ verification_uri: string;
1112
+ verification_uri_complete: string;
1113
+ expires_in: number;
1114
+ interval: number;
1115
+ }>;
1116
+ deviceToken: better_auth0.StrictEndpoint<"/device/token", {
1117
+ method: "POST";
1118
+ body: zod0.ZodObject<{
1119
+ grant_type: zod0.ZodLiteral<"urn:ietf:params:oauth:grant-type:device_code">;
1120
+ device_code: zod0.ZodString;
1121
+ client_id: zod0.ZodString;
1122
+ }, better_auth0.$strip>;
1123
+ error: zod0.ZodObject<{
1124
+ error: zod0.ZodEnum<{
1125
+ invalid_request: "invalid_request";
1126
+ authorization_pending: "authorization_pending";
1127
+ slow_down: "slow_down";
1128
+ expired_token: "expired_token";
1129
+ access_denied: "access_denied";
1130
+ invalid_grant: "invalid_grant";
1131
+ }>;
1132
+ error_description: zod0.ZodString;
1133
+ }, better_auth0.$strip>;
1134
+ metadata: {
1135
+ openapi: {
1136
+ description: string;
1137
+ responses: {
1138
+ 200: {
1139
+ description: string;
1140
+ content: {
1141
+ "application/json": {
1142
+ schema: {
1143
+ type: "object";
1144
+ properties: {
1145
+ session: {
1146
+ $ref: string;
1147
+ };
1148
+ user: {
1149
+ $ref: string;
1101
1150
  };
1151
+ };
1102
1152
  };
1153
+ };
1103
1154
  };
1104
- } & {
1105
- use: any[];
1106
- }, {
1107
- device_code: string;
1108
- user_code: string;
1109
- verification_uri: string;
1110
- verification_uri_complete: string;
1111
- expires_in: number;
1112
- interval: number;
1113
- }>;
1114
- deviceToken: better_auth.StrictEndpoint<"/device/token", {
1115
- method: "POST";
1116
- body: zod.ZodObject<{
1117
- grant_type: zod.ZodLiteral<"urn:ietf:params:oauth:grant-type:device_code">;
1118
- device_code: zod.ZodString;
1119
- client_id: zod.ZodString;
1120
- }, better_auth.$strip>;
1121
- error: zod.ZodObject<{
1122
- error: zod.ZodEnum<{
1123
- invalid_request: "invalid_request";
1124
- authorization_pending: "authorization_pending";
1125
- slow_down: "slow_down";
1126
- expired_token: "expired_token";
1127
- access_denied: "access_denied";
1128
- invalid_grant: "invalid_grant";
1129
- }>;
1130
- error_description: zod.ZodString;
1131
- }, better_auth.$strip>;
1132
- metadata: {
1133
- openapi: {
1134
- description: string;
1135
- responses: {
1136
- 200: {
1137
- description: string;
1138
- content: {
1139
- "application/json": {
1140
- schema: {
1141
- type: "object";
1142
- properties: {
1143
- session: {
1144
- $ref: string;
1145
- };
1146
- user: {
1147
- $ref: string;
1148
- };
1149
- };
1150
- };
1151
- };
1152
- };
1153
- };
1154
- 400: {
1155
- description: string;
1156
- content: {
1157
- "application/json": {
1158
- schema: {
1159
- type: "object";
1160
- properties: {
1161
- error: {
1162
- type: string;
1163
- enum: string[];
1164
- };
1165
- error_description: {
1166
- type: string;
1167
- };
1168
- };
1169
- };
1170
- };
1171
- };
1172
- };
1155
+ };
1156
+ 400: {
1157
+ description: string;
1158
+ content: {
1159
+ "application/json": {
1160
+ schema: {
1161
+ type: "object";
1162
+ properties: {
1163
+ error: {
1164
+ type: string;
1165
+ enum: string[];
1173
1166
  };
1167
+ error_description: {
1168
+ type: string;
1169
+ };
1170
+ };
1174
1171
  };
1172
+ };
1175
1173
  };
1176
- } & {
1177
- use: any[];
1178
- }, {
1179
- access_token: string;
1180
- token_type: string;
1181
- expires_in: number;
1182
- scope: string;
1183
- }>;
1184
- deviceVerify: better_auth.StrictEndpoint<"/device", {
1185
- method: "GET";
1186
- query: zod.ZodObject<{
1187
- user_code: zod.ZodString;
1188
- }, better_auth.$strip>;
1189
- error: zod.ZodObject<{
1190
- error: zod.ZodEnum<{
1191
- invalid_request: "invalid_request";
1192
- }>;
1193
- error_description: zod.ZodString;
1194
- }, better_auth.$strip>;
1195
- metadata: {
1196
- openapi: {
1197
- description: string;
1198
- responses: {
1199
- 200: {
1200
- description: string;
1201
- content: {
1202
- "application/json": {
1203
- schema: {
1204
- type: "object";
1205
- properties: {
1206
- user_code: {
1207
- type: string;
1208
- description: string;
1209
- };
1210
- status: {
1211
- type: string;
1212
- enum: string[];
1213
- description: string;
1214
- };
1215
- };
1216
- };
1217
- };
1218
- };
1219
- };
1174
+ };
1175
+ };
1176
+ };
1177
+ };
1178
+ } & {
1179
+ use: any[];
1180
+ }, {
1181
+ access_token: string;
1182
+ token_type: string;
1183
+ expires_in: number;
1184
+ scope: string;
1185
+ }>;
1186
+ deviceVerify: better_auth0.StrictEndpoint<"/device", {
1187
+ method: "GET";
1188
+ query: zod0.ZodObject<{
1189
+ user_code: zod0.ZodString;
1190
+ }, better_auth0.$strip>;
1191
+ error: zod0.ZodObject<{
1192
+ error: zod0.ZodEnum<{
1193
+ invalid_request: "invalid_request";
1194
+ }>;
1195
+ error_description: zod0.ZodString;
1196
+ }, better_auth0.$strip>;
1197
+ metadata: {
1198
+ openapi: {
1199
+ description: string;
1200
+ responses: {
1201
+ 200: {
1202
+ description: string;
1203
+ content: {
1204
+ "application/json": {
1205
+ schema: {
1206
+ type: "object";
1207
+ properties: {
1208
+ user_code: {
1209
+ type: string;
1210
+ description: string;
1220
1211
  };
1212
+ status: {
1213
+ type: string;
1214
+ enum: string[];
1215
+ description: string;
1216
+ };
1217
+ };
1221
1218
  };
1219
+ };
1222
1220
  };
1223
- } & {
1224
- use: any[];
1225
- }, {
1226
- user_code: string;
1227
- status: string;
1228
- }>;
1229
- deviceApprove: better_auth.StrictEndpoint<"/device/approve", {
1230
- method: "POST";
1231
- body: zod.ZodObject<{
1232
- userCode: zod.ZodString;
1233
- }, better_auth.$strip>;
1234
- error: zod.ZodObject<{
1235
- error: zod.ZodEnum<{
1236
- invalid_request: "invalid_request";
1237
- expired_token: "expired_token";
1238
- device_code_already_processed: "device_code_already_processed";
1239
- }>;
1240
- error_description: zod.ZodString;
1241
- }, better_auth.$strip>;
1242
- requireHeaders: true;
1243
- metadata: {
1244
- openapi: {
1245
- description: string;
1246
- responses: {
1247
- 200: {
1248
- description: string;
1249
- content: {
1250
- "application/json": {
1251
- schema: {
1252
- type: "object";
1253
- properties: {
1254
- success: {
1255
- type: string;
1256
- };
1257
- };
1258
- };
1259
- };
1260
- };
1261
- };
1221
+ };
1222
+ };
1223
+ };
1224
+ };
1225
+ } & {
1226
+ use: any[];
1227
+ }, {
1228
+ user_code: string;
1229
+ status: string;
1230
+ }>;
1231
+ deviceApprove: better_auth0.StrictEndpoint<"/device/approve", {
1232
+ method: "POST";
1233
+ body: zod0.ZodObject<{
1234
+ userCode: zod0.ZodString;
1235
+ }, better_auth0.$strip>;
1236
+ error: zod0.ZodObject<{
1237
+ error: zod0.ZodEnum<{
1238
+ invalid_request: "invalid_request";
1239
+ expired_token: "expired_token";
1240
+ device_code_already_processed: "device_code_already_processed";
1241
+ }>;
1242
+ error_description: zod0.ZodString;
1243
+ }, better_auth0.$strip>;
1244
+ requireHeaders: true;
1245
+ metadata: {
1246
+ openapi: {
1247
+ description: string;
1248
+ responses: {
1249
+ 200: {
1250
+ description: string;
1251
+ content: {
1252
+ "application/json": {
1253
+ schema: {
1254
+ type: "object";
1255
+ properties: {
1256
+ success: {
1257
+ type: string;
1262
1258
  };
1259
+ };
1263
1260
  };
1261
+ };
1264
1262
  };
1265
- } & {
1266
- use: any[];
1267
- }, {
1268
- success: boolean;
1269
- }>;
1270
- deviceDeny: better_auth.StrictEndpoint<"/device/deny", {
1271
- method: "POST";
1272
- body: zod.ZodObject<{
1273
- userCode: zod.ZodString;
1274
- }, better_auth.$strip>;
1275
- error: zod.ZodObject<{
1276
- error: zod.ZodEnum<{
1277
- invalid_request: "invalid_request";
1278
- expired_token: "expired_token";
1279
- }>;
1280
- error_description: zod.ZodString;
1281
- }, better_auth.$strip>;
1282
- metadata: {
1283
- openapi: {
1284
- description: string;
1285
- responses: {
1286
- 200: {
1287
- description: string;
1288
- content: {
1289
- "application/json": {
1290
- schema: {
1291
- type: "object";
1292
- properties: {
1293
- success: {
1294
- type: string;
1295
- };
1296
- };
1297
- };
1298
- };
1299
- };
1300
- };
1263
+ };
1264
+ };
1265
+ };
1266
+ };
1267
+ } & {
1268
+ use: any[];
1269
+ }, {
1270
+ success: boolean;
1271
+ }>;
1272
+ deviceDeny: better_auth0.StrictEndpoint<"/device/deny", {
1273
+ method: "POST";
1274
+ body: zod0.ZodObject<{
1275
+ userCode: zod0.ZodString;
1276
+ }, better_auth0.$strip>;
1277
+ error: zod0.ZodObject<{
1278
+ error: zod0.ZodEnum<{
1279
+ invalid_request: "invalid_request";
1280
+ expired_token: "expired_token";
1281
+ }>;
1282
+ error_description: zod0.ZodString;
1283
+ }, better_auth0.$strip>;
1284
+ metadata: {
1285
+ openapi: {
1286
+ description: string;
1287
+ responses: {
1288
+ 200: {
1289
+ description: string;
1290
+ content: {
1291
+ "application/json": {
1292
+ schema: {
1293
+ type: "object";
1294
+ properties: {
1295
+ success: {
1296
+ type: string;
1301
1297
  };
1298
+ };
1302
1299
  };
1300
+ };
1303
1301
  };
1304
- } & {
1305
- use: any[];
1306
- }, {
1307
- success: boolean;
1308
- }>;
1309
- };
1310
- $ERROR_CODES: {
1311
- readonly INVALID_DEVICE_CODE: "Invalid device code";
1312
- readonly EXPIRED_DEVICE_CODE: "Device code has expired";
1313
- readonly EXPIRED_USER_CODE: "User code has expired";
1314
- readonly AUTHORIZATION_PENDING: "Authorization pending";
1315
- readonly ACCESS_DENIED: "Access denied";
1316
- readonly INVALID_USER_CODE: "Invalid user code";
1317
- readonly DEVICE_CODE_ALREADY_PROCESSED: "Device code already processed";
1318
- readonly POLLING_TOO_FREQUENTLY: "Polling too frequently";
1319
- readonly USER_NOT_FOUND: "User not found";
1320
- readonly FAILED_TO_CREATE_SESSION: "Failed to create session";
1321
- readonly INVALID_DEVICE_CODE_STATUS: "Invalid device code status";
1322
- readonly AUTHENTICATION_REQUIRED: "Authentication required";
1302
+ };
1303
+ };
1304
+ };
1323
1305
  };
1324
- }];
1306
+ } & {
1307
+ use: any[];
1308
+ }, {
1309
+ success: boolean;
1310
+ }>;
1311
+ };
1312
+ $ERROR_CODES: {
1313
+ readonly INVALID_DEVICE_CODE: "Invalid device code";
1314
+ readonly EXPIRED_DEVICE_CODE: "Device code has expired";
1315
+ readonly EXPIRED_USER_CODE: "User code has expired";
1316
+ readonly AUTHORIZATION_PENDING: "Authorization pending";
1317
+ readonly ACCESS_DENIED: "Access denied";
1318
+ readonly INVALID_USER_CODE: "Invalid user code";
1319
+ readonly DEVICE_CODE_ALREADY_PROCESSED: "Device code already processed";
1320
+ readonly POLLING_TOO_FREQUENTLY: "Polling too frequently";
1321
+ readonly USER_NOT_FOUND: "User not found";
1322
+ readonly FAILED_TO_CREATE_SESSION: "Failed to create session";
1323
+ readonly INVALID_DEVICE_CODE_STATUS: "Invalid device code status";
1324
+ readonly AUTHENTICATION_REQUIRED: "Authentication required";
1325
+ };
1326
+ }];
1325
1327
  }> | null;
1326
1328
  declare const app: Hono;
1327
-
1328
- export { auth, app as default };
1329
+ //#endregion
1330
+ export { Hono, type SSOProviderConfig, type UserAuthConfig, auth, createAuth0Provider, createManagementApp, createManagementHono, createOIDCProvider, app as default, initializeDefaultUser };
1331
+ //# sourceMappingURL=index.d.ts.map