@logto/cloud 0.2.5-2a777a1 → 0.2.5-3046fa6

package/lib/routes/index.d.ts

@@ -37,6 +37,20 @@ declare enum OrganizationInvitationStatus {
 	Expired = "Expired",
 	Revoked = "Revoked"
 }
+/** The scopes (permissions) defined by the organization template. */
+export type OrganizationScope = {
+	tenantId: string;
+	/** The globally unique identifier of the organization scope. */
+	id: string;
+	/** The organization scope's name, unique within the organization template. */
+	name: string;
+	/** A brief description of the organization scope. */
+	description: string | null;
+};
+declare enum LogtoJwtTokenKeyType {
+	AccessToken = "access-token",
+	ClientCredentials = "client-credentials"
+}
 /**
  * The simplified organization role entity that is returned in the `roles` field
  * of the organization.
@@ -52,12 +66,34 @@ declare enum TenantTag {
 declare enum TenantRole {
 	/** Admin of the tenant, who has all permissions. */
 	Admin = "admin",
-	/** Member of the tenant, who has permissions to operate the tenant data, but not the tenant settings. */
-	Member = "member"
+	/** Collaborator of the tenant, who has permissions to operate the tenant data, but not the tenant settings. */
+	Collaborator = "collaborator"
 }
-declare enum LogtoJwtTokenPath {
-	AccessToken = "access-token",
-	ClientCredentials = "client-credentials"
+declare enum ReservedPlanId {
+	Free = "free",
+	/**
+	 * @deprecated
+	 * In recent refactoring, the `hobby` plan is now treated as the `pro` plan.
+	 * Only use this plan ID to check if a plan is a `pro` plan or not.
+	 * This plan ID will be renamed to `pro` after legacy Stripe data is migrated by @darcyYe
+	 *
+	 * Todo @darcyYe:
+	 * - LOG-7846: Rename `hobby` to `pro` and `pro` to `legacy-pro`
+	 * - LOG-8339: Migrate legacy Stripe data
+	 */
+	Hobby = "hobby",
+	Pro = "pro",
+	/**
+	 * @deprecated
+	 * Should not use this plan ID, we only use this tag as a record for the legacy `pro` plan since we will rename the `hobby` plan to be `pro`.
+	 */
+	GrandfatheredPro = "grandfathered-pro",
+	Development = "dev",
+	/**
+	 * This plan ID is reserved for Admin tenant.
+	 * In our new pricing model, we plan to add a special plan for Admin tenant, previously, admin tenant is using the `pro` plan, which is not suitable.
+	 */
+	Admin = "admin"
 }
 declare const AffiliateProperties: import("@withtyped/server/lib/model/index.js").default<"affiliate_properties", {
 	createdAt: Date;
@@ -72,11 +108,16 @@ declare const Affiliates: import("@withtyped/server/lib/model/index.js").default
 	id: string;
 }, "id" | "createdAt", "id" | "createdAt">;
 export type Affiliate = InferModelType<typeof Affiliates>;
+declare enum RegionName {
+	EU = "EU",
+	US = "US"
+}
 export type AffiliateData = Affiliate & {
 	properties: Array<Pick<AffiliateProperty, "type" | "value">>;
 };
 declare const router: import("@withtyped/server").Router<RequestContext, WithAuthContext<Omit<import("@withtyped/server").BaseContext & {
 	request: {
+		id?: string | undefined;
 		method?: import("@withtyped/server").RequestMethod | undefined;
 		headers: import("http").IncomingHttpHeaders;
 		url: URL;
@@ -84,6 +125,7 @@ declare const router: import("@withtyped/server").Router<RequestContext, WithAut
 	};
 }, "request"> & {
 	request: Record<string, unknown> & {
+		id?: string | undefined;
 		method?: import("@withtyped/server").RequestMethod | undefined;
 		headers: import("http").IncomingHttpHeaders;
 		url: URL;
@@ -92,13 +134,14 @@ declare const router: import("@withtyped/server").Router<RequestContext, WithAut
 		body?: Json | undefined;
 		bodyRaw?: Buffer | undefined;
 	};
-}>, import("@withtyped/server").MergeRoutes<import("@withtyped/server").MergeRoutes<import("@withtyped/server").MergeRoutes<import("@withtyped/server").MergeRoutes<import("@withtyped/server").MergeRoutes<import("@withtyped/server").MergeRoutes<import("@withtyped/server").MergeRoutes<import("@withtyped/server").MergeRoutes<import("@withtyped/server").BaseRoutes, import("@withtyped/server").RoutesWithPrefix<{
+}>, import("@withtyped/server").MergeRoutes<import("@withtyped/server").MergeRoutes<import("@withtyped/server").MergeRoutes<import("@withtyped/server").MergeRoutes<import("@withtyped/server").MergeRoutes<import("@withtyped/server").MergeRoutes<import("@withtyped/server").MergeRoutes<import("@withtyped/server").MergeRoutes<import("@withtyped/server").MergeRoutes<import("@withtyped/server").BaseRoutes, import("@withtyped/server").RoutesWithPrefix<{
 	patch: {
 		"/tenants/:tenantId": import("@withtyped/server").PathGuard<"/:tenantId", unknown, {
 			name?: string | undefined;
 		}, {
 			id: string;
 			name: string;
+			createdAt: Date;
 			usage: {
 				activeUsers: number;
 				cost: number;
@@ -113,6 +156,8 @@ declare const router: import("@withtyped/server").Router<RequestContext, WithAut
 				currentPeriodStart: Date;
 				currentPeriodEnd: Date;
 			};
+			regionName: RegionName;
+			tag: TenantTag;
 			openInvoices: {
 				status: "void" | "open" | "draft" | "paid" | "uncollectible" | null;
 				id: string;
@@ -128,7 +173,6 @@ declare const router: import("@withtyped/server").Router<RequestContext, WithAut
 				hostedInvoiceUrl: string | null;
 				invoicePdf: string | null;
 			}[];
-			tag: TenantTag;
 		}>;
 	};
 	options: {};
@@ -136,6 +180,7 @@ declare const router: import("@withtyped/server").Router<RequestContext, WithAut
 		"/tenants": import("@withtyped/server").PathGuard<"/", unknown, unknown, {
 			id: string;
 			name: string;
+			createdAt: Date;
 			usage: {
 				activeUsers: number;
 				cost: number;
@@ -150,6 +195,8 @@ declare const router: import("@withtyped/server").Router<RequestContext, WithAut
 				currentPeriodStart: Date;
 				currentPeriodEnd: Date;
 			};
+			regionName: RegionName;
+			tag: TenantTag;
 			openInvoices: {
 				status: "void" | "open" | "draft" | "paid" | "uncollectible" | null;
 				id: string;
@@ -165,16 +212,17 @@ declare const router: import("@withtyped/server").Router<RequestContext, WithAut
 				hostedInvoiceUrl: string | null;
 				invoicePdf: string | null;
 			}[];
-			tag: TenantTag;
 		}[]>;
 	};
 	post: {
 		"/tenants": import("@withtyped/server").PathGuard<"/", unknown, {
 			name?: string | undefined;
 			tag?: TenantTag | undefined;
+			regionName?: RegionName | undefined;
 		}, {
 			id: string;
 			name: string;
+			createdAt: Date;
 			usage: {
 				activeUsers: number;
 				cost: number;
@@ -189,6 +237,8 @@ declare const router: import("@withtyped/server").Router<RequestContext, WithAut
 				currentPeriodStart: Date;
 				currentPeriodEnd: Date;
 			};
+			regionName: RegionName;
+			tag: TenantTag;
 			openInvoices: {
 				status: "void" | "open" | "draft" | "paid" | "uncollectible" | null;
 				id: string;
@@ -204,7 +254,6 @@ declare const router: import("@withtyped/server").Router<RequestContext, WithAut
 				hostedInvoiceUrl: string | null;
 				invoicePdf: string | null;
 			}[];
-			tag: TenantTag;
 		}>;
 	};
 	put: {};
@@ -310,21 +359,36 @@ declare const router: import("@withtyped/server").Router<RequestContext, WithAut
 			};
 		}, unknown>;
 	} & {
-		"/services/custom-jwt": import("@withtyped/server").PathGuard<"/custom-jwt", unknown, {
+		"/services/custom-jwt": import("@withtyped/server").PathGuard<"/custom-jwt", {
+			isTest?: string | undefined;
+		}, {
+			context: Record<string, Json>;
 			script: string;
+			tokenType: LogtoJwtTokenKeyType.AccessToken;
 			token: Record<string, Json>;
-			tokenType: LogtoJwtTokenPath.AccessToken;
-			context: Record<string, Json>;
-			envVars?: Record<string, string> | undefined;
+			environmentVariables?: Record<string, string> | undefined;
 		} | {
 			script: string;
+			tokenType: LogtoJwtTokenKeyType.ClientCredentials;
 			token: Record<string, Json>;
-			tokenType: LogtoJwtTokenPath.ClientCredentials;
-			envVars?: Record<string, string> | undefined;
+			environmentVariables?: Record<string, string> | undefined;
 		}, Record<string, unknown>>;
 	};
-	put: {};
-	delete: {};
+	put: {
+		"/services/custom-jwt/worker": import("@withtyped/server").PathGuard<"/custom-jwt/worker", unknown, {
+			"jwt.accessToken"?: {
+				production?: string | undefined;
+				test?: string | undefined;
+			} | undefined;
+			"jwt.clientCredentials"?: {
+				production?: string | undefined;
+				test?: string | undefined;
+			} | undefined;
+		}, unknown>;
+	};
+	delete: {
+		"/services/custom-jwt/worker": import("@withtyped/server").PathGuard<"/custom-jwt/worker", unknown, unknown, unknown>;
+	};
 	copy: {};
 	head: {};
 }, "/api">>, import("@withtyped/server").RoutesWithPrefix<{
@@ -336,18 +400,6 @@ declare const router: import("@withtyped/server").Router<RequestContext, WithAut
 			createdAt: Date;
 			name: string;
 			updatedAt: Date;
-			stripeProducts: {
-				type: "flat" | "tier1" | "tier2" | "tier3";
-				id: string;
-				name: string;
-				price: {
-					id: string;
-					unitAmountDecimal: string;
-					quantity?: 1 | undefined;
-					unitAmount?: number | null | undefined;
-				};
-				description?: string | undefined;
-			}[];
 			quota: {
 				mauLimit: number | null;
 				tokenLimit: number | null;
@@ -369,7 +421,22 @@ declare const router: import("@withtyped/server").Router<RequestContext, WithAut
 				organizationsEnabled: boolean;
 				ssoEnabled: boolean;
 				thirdPartyApplicationsLimit: number | null;
+				tenantMembersLimit: number | null;
+				customJwtEnabled: boolean;
+				subjectTokenEnabled: boolean;
 			};
+			stripeProducts: {
+				type: "flat" | "tier1" | "tier2" | "tier3";
+				id: string;
+				name: string;
+				price: {
+					id: string;
+					unitAmountDecimal: string;
+					quantity?: 1 | undefined;
+					unitAmount?: number | null | undefined;
+				};
+				description?: string | undefined;
+			}[];
 		}[]>;
 	};
 	post: {};
@@ -393,12 +460,13 @@ declare const router: import("@withtyped/server").Router<RequestContext, WithAut
 	};
 	post: {
 		"/checkout-session": import("@withtyped/server").PathGuard<"/", unknown, {
-			planId: string;
+			planId: ReservedPlanId;
 			successCallbackUrl: string;
 			tenantId?: string | undefined;
 			cancelCallbackUrl?: string | undefined;
 			tenantTag?: TenantTag | undefined;
 			tenantName?: string | undefined;
+			tenantRegionName?: RegionName | undefined;
 		}, {
 			sessionId: string;
 			redirectUri?: string | null | undefined;
@@ -482,15 +550,15 @@ declare const router: import("@withtyped/server").Router<RequestContext, WithAut
 			status: OrganizationInvitationStatus;
 			tenantId: string;
 			updatedAt: number;
-			organizationId: string;
 			inviterId: string | null;
 			invitee: string;
-			expiresAt: number;
 			acceptedUserId: string | null;
+			organizationId: string;
+			expiresAt: number;
 			organizationRoles: OrganizationRoleEntity[];
 		} & {
-			tenantTag: TenantTag;
 			tenantName: string;
+			tenantTag: TenantTag;
 		})[]>;
 	} & {
 		"/invitations/:invitationId": import("@withtyped/server").PathGuard<"/:invitationId", unknown, unknown, {
@@ -499,11 +567,11 @@ declare const router: import("@withtyped/server").Router<RequestContext, WithAut
 			status: OrganizationInvitationStatus;
 			tenantId: string;
 			updatedAt: number;
-			organizationId: string;
 			inviterId: string | null;
 			invitee: string;
-			expiresAt: number;
 			acceptedUserId: string | null;
+			organizationId: string;
+			expiresAt: number;
 			organizationRoles: OrganizationRoleEntity[];
 		}>;
 	};
@@ -512,9 +580,21 @@ declare const router: import("@withtyped/server").Router<RequestContext, WithAut
 	delete: {};
 	copy: {};
 	head: {};
+}, "/api">>, import("@withtyped/server").RoutesWithPrefix<{
+	patch: {};
+	options: {};
+	get: {};
+	post: {};
+	put: {};
+	delete: {
+		"/me": import("@withtyped/server").PathGuard<"/", unknown, unknown, unknown>;
+	};
+	copy: {};
+	head: {};
 }, "/api">>, "/api">;
 export declare const tenantAuthRouter: import("@withtyped/server").Router<RequestContext, import("@withtyped/server").WithBodyContext<import("@withtyped/server").BaseContext & {
 	request: {
+		id?: string | undefined;
 		method?: import("@withtyped/server").RequestMethod | undefined;
 		headers: import("http").IncomingHttpHeaders;
 		url: URL;
@@ -530,11 +610,11 @@ export declare const tenantAuthRouter: import("@withtyped/server").Router<Reques
 			status: OrganizationInvitationStatus;
 			tenantId: string;
 			updatedAt: number;
-			organizationId: string;
 			inviterId: string | null;
 			invitee: string;
-			expiresAt: number;
 			acceptedUserId: string | null;
+			organizationId: string;
+			expiresAt: number;
 			organizationRoles: OrganizationRoleEntity[];
 		}>;
 	};
@@ -550,19 +630,23 @@ export declare const tenantAuthRouter: import("@withtyped/server").Router<Reques
 			organizationRoles: OrganizationRoleEntity[];
 		}[]>;
 	} & {
-		"/:tenantId/invitations": import("@withtyped/server").PathGuard<"/:tenantId/invitations", unknown, unknown, {
+		"/:tenantId/members/:userId/scopes": import("@withtyped/server").PathGuard<"/:tenantId/members/:userId/scopes", unknown, unknown, OrganizationScope[]>;
+	} & {
+		"/:tenantId/invitations": import("@withtyped/server").PathGuard<"/:tenantId/invitations", unknown, unknown, ({
 			id: string;
 			createdAt: number;
 			status: OrganizationInvitationStatus;
 			tenantId: string;
 			updatedAt: number;
-			organizationId: string;
 			inviterId: string | null;
 			invitee: string;
-			expiresAt: number;
 			acceptedUserId: string | null;
+			organizationId: string;
+			expiresAt: number;
 			organizationRoles: OrganizationRoleEntity[];
-		}[]>;
+		} & {
+			inviterName?: string | undefined;
+		})[]>;
 	};
 	post: {
 		"/:tenantId/invitations": import("@withtyped/server").PathGuard<"/:tenantId/invitations", unknown, {
@@ -575,11 +659,11 @@ export declare const tenantAuthRouter: import("@withtyped/server").Router<Reques
 			status: OrganizationInvitationStatus;
 			tenantId: string;
 			updatedAt: number;
-			organizationId: string;
 			inviterId: string | null;
 			invitee: string;
-			expiresAt: number;
 			acceptedUserId: string | null;
+			organizationId: string;
+			expiresAt: number;
 			organizationRoles: OrganizationRoleEntity[];
 		}>;
 	} & {
@@ -598,35 +682,6 @@ export declare const tenantAuthRouter: import("@withtyped/server").Router<Reques
 	copy: {};
 	head: {};
 }, "/api/tenants">>, "/api/tenants">;
-export declare const functionsRouter: import("@withtyped/server").Router<RequestContext, WithAuthContext<Omit<import("@withtyped/server").BaseContext & {
-	request: {
-		method?: import("@withtyped/server").RequestMethod | undefined;
-		headers: import("http").IncomingHttpHeaders;
-		url: URL;
-		body?: unknown;
-	};
-}, "request"> & {
-	request: Record<string, unknown> & {
-		method?: import("@withtyped/server").RequestMethod | undefined;
-		headers: import("http").IncomingHttpHeaders;
-		url: URL;
-		body?: unknown;
-	} & {
-		body?: Json | undefined;
-		bodyRaw?: Buffer | undefined;
-	};
-}>, import("@withtyped/server").MergeRoutes<import("@withtyped/server").BaseRoutes, import("@withtyped/server").RoutesWithPrefix<{
-	patch: {};
-	options: {};
-	get: {};
-	post: {
-		"/database-alteration": import("@withtyped/server").PathGuard<"/database-alteration", unknown, Json, unknown>;
-	};
-	put: {};
-	delete: {};
-	copy: {};
-	head: {};
-}, "/functions">>, "/functions">;
 
 export {
 	router as default,

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@logto/cloud",
-  "version": "0.2.5-2a777a1",
+  "version": "0.2.5-3046fa6",
   "description": "Logto Cloud service.",
   "main": "build/index.js",
   "author": "Silverhand Inc. <contact@silverhand.io>",
@@ -16,21 +16,21 @@
     "#src/*": "./build/*"
   },
   "devDependencies": {
-    "@silverhand/eslint-config": "5.0.0",
-    "@silverhand/ts-config": "5.0.0",
+    "@silverhand/eslint-config": "6.0.1",
+    "@silverhand/ts-config": "6.0.0",
     "@types/accepts": "^1.3.5",
     "@types/http-proxy": "^1.17.9",
     "@types/mime-types": "^2.1.1",
     "@types/node": "^20.0.0",
     "@types/yargs": "^17.0.24",
     "dts-bundle-generator": "^9.3.1",
-    "eslint": "^8.44.0",
+    "eslint": "^8.57.0",
     "lint-staged": "^15.0.0",
     "nodemon": "^3.0.0",
     "prettier": "^3.0.0",
     "typescript": "^5.3.3",
     "vite-tsconfig-paths": "^4.3.1",
-    "vitest": "^1.0.0"
+    "vitest": "^1.5.0"
   },
   "engines": {
     "node": "^20.9.0"
@@ -49,8 +49,8 @@
     "access": "public"
   },
   "dependencies": {
-    "@silverhand/essentials": "^2.9.0",
-    "@withtyped/server": "^0.13.3"
+    "@silverhand/essentials": "^2.9.1",
+    "@withtyped/server": "^0.13.6"
   },
   "scripts": {
     "precommit": "lint-staged",