@logto/cloud 0.2.5-ab8a489 → 0.2.5-af943a1

package/lib/routes/index.d.ts

@@ -3,21 +3,27 @@
 import { Json, JsonObject, RequestContext } from '@withtyped/server';
 import { InferModelType } from '@withtyped/server/model';
 
-export type WithAuthContext<Context = RequestContext> = Context & {
-	auth: {
-		/** The ID of the authenticated subject (`sub`). */
-		id: string;
-		/** The scopes that the subject has (`scope`). */
-		scopes: string[];
-	};
-};
-declare enum VerificationCodeType {
-	SignIn = "SignIn",
-	Register = "Register",
-	ForgotPassword = "ForgotPassword",
-	Generic = "Generic",
-	/** @deprecated Use `Generic` type template for sending test sms/email use case */
-	Test = "Test"
+declare const availableReportableUsageKeys: readonly [
+	"tokenLimit",
+	"machineToMachineLimit",
+	"resourcesLimit",
+	"enterpriseSsoLimit",
+	"hooksLimit",
+	"tenantMembersLimit",
+	"mfaEnabled",
+	"organizationsEnabled",
+	"organizationsLimit",
+	"securityFeaturesEnabled",
+	"userRolesLimit",
+	"machineToMachineRolesLimit",
+	"thirdPartyApplicationsLimit",
+	"samlApplicationsLimit"
+];
+export type ReportableUsageKey = (typeof availableReportableUsageKeys)[number];
+export type RealtimeReportableUsageKey = Exclude<ReportableUsageKey, "tokenLimit">;
+declare enum LogtoSkuType {
+	Basic = "Basic",
+	AddOn = "AddOn"
 }
 declare enum TemplateType {
 	/** The template for sending verification code when user is signing in. */
@@ -29,7 +35,15 @@ declare enum TemplateType {
 	/** The template for sending organization invitation. */
 	OrganizationInvitation = "OrganizationInvitation",
 	/** The template for generic usage. */
-	Generic = "Generic"
+	Generic = "Generic",
+	/** The template for validating user permission for sensitive operations. */
+	UserPermissionValidation = "UserPermissionValidation",
+	/** The template for binding a new identifier to an existing account. */
+	BindNewIdentifier = "BindNewIdentifier",
+	/** The template for sending MFA verification code. */
+	MfaVerification = "MfaVerification",
+	/** The template for binding MFA verification. */
+	BindMfa = "BindMfa"
 }
 declare enum OrganizationInvitationStatus {
 	Pending = "Pending",
@@ -37,6 +51,16 @@ declare enum OrganizationInvitationStatus {
 	Expired = "Expired",
 	Revoked = "Revoked"
 }
+/** The scopes (permissions) defined by the organization template. */
+export type OrganizationScope = {
+	tenantId: string;
+	/** The globally unique identifier of the organization scope. */
+	id: string;
+	/** The organization scope's name, unique within the organization template. */
+	name: string;
+	/** A brief description of the organization scope. */
+	description: string | null;
+};
 declare enum LogtoJwtTokenKeyType {
 	AccessToken = "access-token",
 	ClientCredentials = "client-credentials"
@@ -72,11 +96,51 @@ declare const Affiliates: import("@withtyped/server/lib/model/index.js").default
 	id: string;
 }, "id" | "createdAt", "id" | "createdAt">;
 export type Affiliate = InferModelType<typeof Affiliates>;
+declare const publicRegionNames: readonly [
+	"EU",
+	"US",
+	"AU",
+	"JP"
+];
+/** The type of region names for the public cloud. */
+export type PublicRegionName = (typeof publicRegionNames)[number];
+declare enum DatabaseRegionAccessRole {
+	/** Instance administrator - can manage collaborators and create tenants */
+	Admin = "admin",
+	/** Collaborator user - can only create tenants in the instance */
+	Collaborator = "collaborator"
+}
+declare const Regions: import("@withtyped/server/lib/model/index.js").default<"regions", {
+	createdAt: Date;
+	name: string;
+	isPrivate: boolean;
+	displayName: string;
+	country: string;
+	dbUrl: string;
+	redisUrl: string | null;
+	tags: TenantTag[];
+}, "createdAt" | "tags" | "isPrivate", "createdAt">;
+export type Region = InferModelType<typeof Regions>;
 export type AffiliateData = Affiliate & {
 	properties: Array<Pick<AffiliateProperty, "type" | "value">>;
 };
+export type RegionResponse = Pick<Region, "name" | "displayName" | "country" | "isPrivate" | "tags"> & {
+	/**
+	 * @deprecated Temporary field for backward compatibility, will be removed in the future.
+	 */
+	id: string;
+};
+export type WithAuthContext<Context = RequestContext> = Context & {
+	auth: {
+		/** The ID of the authenticated subject (`sub`). */
+		id: string;
+		/** The scopes that the subject has (`scope`). */
+		scopes: string[];
+	};
+};
 declare const router: import("@withtyped/server").Router<RequestContext, WithAuthContext<Omit<import("@withtyped/server").BaseContext & {
 	request: {
+		id?: string | undefined;
 		method?: import("@withtyped/server").RequestMethod | undefined;
 		headers: import("http").IncomingHttpHeaders;
 		url: URL;
@@ -84,6 +148,7 @@ declare const router: import("@withtyped/server").Router<RequestContext, WithAut
 	};
 }, "request"> & {
 	request: Record<string, unknown> & {
+		id?: string | undefined;
 		method?: import("@withtyped/server").RequestMethod | undefined;
 		headers: import("http").IncomingHttpHeaders;
 		url: URL;
@@ -92,16 +157,20 @@ declare const router: import("@withtyped/server").Router<RequestContext, WithAut
 		body?: Json | undefined;
 		bodyRaw?: Buffer | undefined;
 	};
-}>, import("@withtyped/server").MergeRoutes<import("@withtyped/server").MergeRoutes<import("@withtyped/server").MergeRoutes<import("@withtyped/server").MergeRoutes<import("@withtyped/server").MergeRoutes<import("@withtyped/server").MergeRoutes<import("@withtyped/server").MergeRoutes<import("@withtyped/server").MergeRoutes<import("@withtyped/server").BaseRoutes, import("@withtyped/server").RoutesWithPrefix<{
+}>, import("@withtyped/server").MergeRoutes<import("@withtyped/server").MergeRoutes<import("@withtyped/server").MergeRoutes<import("@withtyped/server").MergeRoutes<import("@withtyped/server").MergeRoutes<import("@withtyped/server").MergeRoutes<import("@withtyped/server").MergeRoutes<import("@withtyped/server").MergeRoutes<import("@withtyped/server").MergeRoutes<import("@withtyped/server").MergeRoutes<import("@withtyped/server").MergeRoutes<import("@withtyped/server").MergeRoutes<import("@withtyped/server").BaseRoutes, import("@withtyped/server").RoutesWithPrefix<{
 	patch: {
 		"/tenants/:tenantId": import("@withtyped/server").PathGuard<"/:tenantId", unknown, {
 			name?: string | undefined;
 		}, {
 			id: string;
 			name: string;
+			createdAt: Date;
+			quota: {
+				mauLimit: number | null;
+				tokenLimit: number | null;
+			};
 			usage: {
 				activeUsers: number;
-				cost: number;
 				tokenUsage: number;
 			};
 			indicator: string;
@@ -112,11 +181,21 @@ declare const router: import("@withtyped/server").Router<RequestContext, WithAut
 				planId: string;
 				currentPeriodStart: Date;
 				currentPeriodEnd: Date;
+				isEnterprisePlan: boolean;
+				id?: string | undefined;
+				upcomingInvoice?: {
+					subtotal: number;
+					subtotalExcludingTax: number | null;
+					total: number;
+					totalExcludingTax: number | null;
+				} | null | undefined;
 			};
+			regionName: string;
+			tag: TenantTag;
 			openInvoices: {
-				status: "void" | "open" | "draft" | "paid" | "uncollectible" | null;
 				id: string;
 				createdAt: Date;
+				status: "void" | "open" | "draft" | "paid" | "uncollectible" | null;
 				updatedAt: Date;
 				customerId: string | null;
 				billingReason: string | null;
@@ -124,11 +203,16 @@ declare const router: import("@withtyped/server").Router<RequestContext, WithAut
 				periodEnd: Date;
 				amountDue: number;
 				amountPaid: number;
+				basicSkuId: string | null;
 				subscriptionId: string | null;
 				hostedInvoiceUrl: string | null;
 				invoicePdf: string | null;
+				collectionMethod: "charge_automatically" | "send_invoice" | null;
+				dueDate: Date | null;
 			}[];
-			tag: TenantTag;
+			featureFlags?: {
+				isMultipleCustomDomainsEnabled?: boolean | undefined;
+			} | undefined;
 		}>;
 	};
 	options: {};
@@ -136,9 +220,13 @@ declare const router: import("@withtyped/server").Router<RequestContext, WithAut
 		"/tenants": import("@withtyped/server").PathGuard<"/", unknown, unknown, {
 			id: string;
 			name: string;
+			createdAt: Date;
+			quota: {
+				mauLimit: number | null;
+				tokenLimit: number | null;
+			};
 			usage: {
 				activeUsers: number;
-				cost: number;
 				tokenUsage: number;
 			};
 			indicator: string;
@@ -149,11 +237,21 @@ declare const router: import("@withtyped/server").Router<RequestContext, WithAut
 				planId: string;
 				currentPeriodStart: Date;
 				currentPeriodEnd: Date;
+				isEnterprisePlan: boolean;
+				id?: string | undefined;
+				upcomingInvoice?: {
+					subtotal: number;
+					subtotalExcludingTax: number | null;
+					total: number;
+					totalExcludingTax: number | null;
+				} | null | undefined;
 			};
+			regionName: string;
+			tag: TenantTag;
 			openInvoices: {
-				status: "void" | "open" | "draft" | "paid" | "uncollectible" | null;
 				id: string;
 				createdAt: Date;
+				status: "void" | "open" | "draft" | "paid" | "uncollectible" | null;
 				updatedAt: Date;
 				customerId: string | null;
 				billingReason: string | null;
@@ -161,23 +259,34 @@ declare const router: import("@withtyped/server").Router<RequestContext, WithAut
 				periodEnd: Date;
 				amountDue: number;
 				amountPaid: number;
+				basicSkuId: string | null;
 				subscriptionId: string | null;
 				hostedInvoiceUrl: string | null;
 				invoicePdf: string | null;
+				collectionMethod: "charge_automatically" | "send_invoice" | null;
+				dueDate: Date | null;
 			}[];
-			tag: TenantTag;
+			featureFlags?: {
+				isMultipleCustomDomainsEnabled?: boolean | undefined;
+			} | undefined;
 		}[]>;
 	};
 	post: {
 		"/tenants": import("@withtyped/server").PathGuard<"/", unknown, {
+			id?: string | undefined;
 			name?: string | undefined;
+			regionName?: string | undefined;
 			tag?: TenantTag | undefined;
 		}, {
 			id: string;
 			name: string;
+			createdAt: Date;
+			quota: {
+				mauLimit: number | null;
+				tokenLimit: number | null;
+			};
 			usage: {
 				activeUsers: number;
-				cost: number;
 				tokenUsage: number;
 			};
 			indicator: string;
@@ -188,11 +297,21 @@ declare const router: import("@withtyped/server").Router<RequestContext, WithAut
 				planId: string;
 				currentPeriodStart: Date;
 				currentPeriodEnd: Date;
+				isEnterprisePlan: boolean;
+				id?: string | undefined;
+				upcomingInvoice?: {
+					subtotal: number;
+					subtotalExcludingTax: number | null;
+					total: number;
+					totalExcludingTax: number | null;
+				} | null | undefined;
 			};
+			regionName: string;
+			tag: TenantTag;
 			openInvoices: {
-				status: "void" | "open" | "draft" | "paid" | "uncollectible" | null;
 				id: string;
 				createdAt: Date;
+				status: "void" | "open" | "draft" | "paid" | "uncollectible" | null;
 				updatedAt: Date;
 				customerId: string | null;
 				billingReason: string | null;
@@ -200,12 +319,27 @@ declare const router: import("@withtyped/server").Router<RequestContext, WithAut
 				periodEnd: Date;
 				amountDue: number;
 				amountPaid: number;
+				basicSkuId: string | null;
 				subscriptionId: string | null;
 				hostedInvoiceUrl: string | null;
 				invoicePdf: string | null;
+				collectionMethod: "charge_automatically" | "send_invoice" | null;
+				dueDate: Date | null;
 			}[];
-			tag: TenantTag;
+			featureFlags?: {
+				isMultipleCustomDomainsEnabled?: boolean | undefined;
+			} | undefined;
 		}>;
+	} & {
+		"/tenants/subscriptions/plan": import("@withtyped/server").PathGuard<"/subscriptions/plan", unknown, {
+			planId: string;
+			tenantIds: string[];
+		}, {
+			tenantId: string;
+			success: boolean;
+			error?: string | undefined;
+			updatedLineItems?: unknown[] | undefined;
+		}[]>;
 	};
 	put: {};
 	delete: {
@@ -219,23 +353,311 @@ declare const router: import("@withtyped/server").Router<RequestContext, WithAut
 	get: {
 		"/tenants/my/subscription": import("@withtyped/server").PathGuard<"/my/subscription", unknown, unknown, {
 			status: "incomplete" | "incomplete_expired" | "trialing" | "active" | "past_due" | "canceled" | "unpaid" | "paused";
+			quota: {
+				auditLogsRetentionDays: number | null;
+				mauLimit: number | null;
+				applicationsLimit: number | null;
+				thirdPartyApplicationsLimit: number | null;
+				scopesPerResourceLimit: number | null;
+				socialConnectorsLimit: number | null;
+				userRolesLimit: number | null;
+				machineToMachineRolesLimit: number | null;
+				scopesPerRoleLimit: number | null;
+				hooksLimit: number | null;
+				customJwtEnabled: boolean;
+				subjectTokenEnabled: boolean;
+				bringYourUiEnabled: boolean;
+				collectUserProfileEnabled: boolean;
+				tokenLimit: number | null;
+				machineToMachineLimit: number | null;
+				resourcesLimit: number | null;
+				enterpriseSsoLimit: number | null;
+				tenantMembersLimit: number | null;
+				mfaEnabled: boolean;
+				organizationsEnabled: boolean;
+				organizationsLimit: number | null;
+				securityFeaturesEnabled: boolean;
+				idpInitiatedSsoEnabled: boolean;
+				samlApplicationsLimit: number | null;
+			};
 			planId: string;
 			currentPeriodStart: Date;
 			currentPeriodEnd: Date;
+			isEnterprisePlan: boolean;
+			id?: string | undefined;
+			upcomingInvoice?: {
+				subtotal: number;
+				subtotalExcludingTax: number | null;
+				total: number;
+				totalExcludingTax: number | null;
+			} | null | undefined;
+			systemLimit?: {
+				applicationsLimit?: number | null | undefined;
+				thirdPartyApplicationsLimit?: number | null | undefined;
+				scopesPerResourceLimit?: number | null | undefined;
+				socialConnectorsLimit?: number | null | undefined;
+				userRolesLimit?: number | null | undefined;
+				machineToMachineRolesLimit?: number | null | undefined;
+				scopesPerRoleLimit?: number | null | undefined;
+				hooksLimit?: number | null | undefined;
+				machineToMachineLimit?: number | null | undefined;
+				resourcesLimit?: number | null | undefined;
+				enterpriseSsoLimit?: number | null | undefined;
+				tenantMembersLimit?: number | null | undefined;
+				organizationsLimit?: number | null | undefined;
+				samlApplicationsLimit?: number | null | undefined;
+				usersPerOrganizationLimit?: number | null | undefined;
+				organizationUserRolesLimit?: number | null | undefined;
+				organizationMachineToMachineRolesLimit?: number | null | undefined;
+				organizationScopesLimit?: number | null | undefined;
+			} | undefined;
 		}>;
 	} & {
+		"/tenants/my/subscription-usage": import("@withtyped/server").PathGuard<"/my/subscription-usage", unknown, unknown, {
+			usage: {
+				applicationsLimit: number;
+				thirdPartyApplicationsLimit: number;
+				scopesPerResourceLimit: number;
+				socialConnectorsLimit: number;
+				userRolesLimit: number;
+				machineToMachineRolesLimit: number;
+				scopesPerRoleLimit: number;
+				hooksLimit: number;
+				customJwtEnabled: boolean;
+				subjectTokenEnabled: boolean;
+				bringYourUiEnabled: boolean;
+				collectUserProfileEnabled: boolean;
+				machineToMachineLimit: number;
+				resourcesLimit: number;
+				enterpriseSsoLimit: number;
+				tenantMembersLimit: number;
+				mfaEnabled: boolean;
+				organizationsEnabled: boolean;
+				organizationsLimit: number;
+				securityFeaturesEnabled: boolean;
+				idpInitiatedSsoEnabled: boolean;
+				samlApplicationsLimit: number;
+			};
+			resources: Record<string, number>;
+			roles: Record<string, number>;
+			quota: {
+				auditLogsRetentionDays: number | null;
+				mauLimit: number | null;
+				applicationsLimit: number | null;
+				thirdPartyApplicationsLimit: number | null;
+				scopesPerResourceLimit: number | null;
+				socialConnectorsLimit: number | null;
+				userRolesLimit: number | null;
+				machineToMachineRolesLimit: number | null;
+				scopesPerRoleLimit: number | null;
+				hooksLimit: number | null;
+				customJwtEnabled: boolean;
+				subjectTokenEnabled: boolean;
+				bringYourUiEnabled: boolean;
+				collectUserProfileEnabled: boolean;
+				tokenLimit: number | null;
+				machineToMachineLimit: number | null;
+				resourcesLimit: number | null;
+				enterpriseSsoLimit: number | null;
+				tenantMembersLimit: number | null;
+				mfaEnabled: boolean;
+				organizationsEnabled: boolean;
+				organizationsLimit: number | null;
+				securityFeaturesEnabled: boolean;
+				idpInitiatedSsoEnabled: boolean;
+				samlApplicationsLimit: number | null;
+			};
+			basicQuota: {
+				auditLogsRetentionDays: number | null;
+				mauLimit: number | null;
+				applicationsLimit: number | null;
+				thirdPartyApplicationsLimit: number | null;
+				scopesPerResourceLimit: number | null;
+				socialConnectorsLimit: number | null;
+				userRolesLimit: number | null;
+				machineToMachineRolesLimit: number | null;
+				scopesPerRoleLimit: number | null;
+				hooksLimit: number | null;
+				customJwtEnabled: boolean;
+				subjectTokenEnabled: boolean;
+				bringYourUiEnabled: boolean;
+				collectUserProfileEnabled: boolean;
+				tokenLimit: number | null;
+				machineToMachineLimit: number | null;
+				resourcesLimit: number | null;
+				enterpriseSsoLimit: number | null;
+				tenantMembersLimit: number | null;
+				mfaEnabled: boolean;
+				organizationsEnabled: boolean;
+				organizationsLimit: number | null;
+				securityFeaturesEnabled: boolean;
+				idpInitiatedSsoEnabled: boolean;
+				samlApplicationsLimit: number | null;
+			};
+		}>;
+	};
+	post: {
+		"/tenants/my/subscription/item-updates": import("@withtyped/server").PathGuard<"/my/subscription/item-updates", unknown, {
+			usageKey: RealtimeReportableUsageKey;
+		}, {
+			message: string;
+		}>;
+	};
+	put: {};
+	delete: {};
+	copy: {};
+	head: {};
+}, "/api">>, import("@withtyped/server").RoutesWithPrefix<{
+	patch: {};
+	options: {};
+	get: {
 		"/tenants/:tenantId/subscription": import("@withtyped/server").PathGuard<"/:tenantId/subscription", unknown, unknown, {
 			status: "incomplete" | "incomplete_expired" | "trialing" | "active" | "past_due" | "canceled" | "unpaid" | "paused";
 			planId: string;
 			currentPeriodStart: Date;
 			currentPeriodEnd: Date;
+			isEnterprisePlan: boolean;
+			id?: string | undefined;
+			upcomingInvoice?: {
+				subtotal: number;
+				subtotalExcludingTax: number | null;
+				total: number;
+				totalExcludingTax: number | null;
+			} | null | undefined;
+		}>;
+	} & {
+		"/tenants/:tenantId/subscription-usage": import("@withtyped/server").PathGuard<"/:tenantId/subscription-usage", unknown, unknown, {
+			usage: {
+				applicationsLimit: number;
+				thirdPartyApplicationsLimit: number;
+				scopesPerResourceLimit: number;
+				socialConnectorsLimit: number;
+				userRolesLimit: number;
+				machineToMachineRolesLimit: number;
+				scopesPerRoleLimit: number;
+				hooksLimit: number;
+				customJwtEnabled: boolean;
+				subjectTokenEnabled: boolean;
+				bringYourUiEnabled: boolean;
+				collectUserProfileEnabled: boolean;
+				machineToMachineLimit: number;
+				resourcesLimit: number;
+				enterpriseSsoLimit: number;
+				tenantMembersLimit: number;
+				mfaEnabled: boolean;
+				organizationsEnabled: boolean;
+				organizationsLimit: number;
+				securityFeaturesEnabled: boolean;
+				idpInitiatedSsoEnabled: boolean;
+				samlApplicationsLimit: number;
+			};
+			resources: Record<string, number>;
+			roles: Record<string, number>;
+			quota: {
+				auditLogsRetentionDays: number | null;
+				mauLimit: number | null;
+				applicationsLimit: number | null;
+				thirdPartyApplicationsLimit: number | null;
+				scopesPerResourceLimit: number | null;
+				socialConnectorsLimit: number | null;
+				userRolesLimit: number | null;
+				machineToMachineRolesLimit: number | null;
+				scopesPerRoleLimit: number | null;
+				hooksLimit: number | null;
+				customJwtEnabled: boolean;
+				subjectTokenEnabled: boolean;
+				bringYourUiEnabled: boolean;
+				collectUserProfileEnabled: boolean;
+				tokenLimit: number | null;
+				machineToMachineLimit: number | null;
+				resourcesLimit: number | null;
+				enterpriseSsoLimit: number | null;
+				tenantMembersLimit: number | null;
+				mfaEnabled: boolean;
+				organizationsEnabled: boolean;
+				organizationsLimit: number | null;
+				securityFeaturesEnabled: boolean;
+				idpInitiatedSsoEnabled: boolean;
+				samlApplicationsLimit: number | null;
+			};
+			basicQuota: {
+				auditLogsRetentionDays: number | null;
+				mauLimit: number | null;
+				applicationsLimit: number | null;
+				thirdPartyApplicationsLimit: number | null;
+				scopesPerResourceLimit: number | null;
+				socialConnectorsLimit: number | null;
+				userRolesLimit: number | null;
+				machineToMachineRolesLimit: number | null;
+				scopesPerRoleLimit: number | null;
+				hooksLimit: number | null;
+				customJwtEnabled: boolean;
+				subjectTokenEnabled: boolean;
+				bringYourUiEnabled: boolean;
+				collectUserProfileEnabled: boolean;
+				tokenLimit: number | null;
+				machineToMachineLimit: number | null;
+				resourcesLimit: number | null;
+				enterpriseSsoLimit: number | null;
+				tenantMembersLimit: number | null;
+				mfaEnabled: boolean;
+				organizationsEnabled: boolean;
+				organizationsLimit: number | null;
+				securityFeaturesEnabled: boolean;
+				idpInitiatedSsoEnabled: boolean;
+				samlApplicationsLimit: number | null;
+			};
 		}>;
+	} & {
+		"/tenants/:tenantId/subscription/periodic-usage": import("@withtyped/server").PathGuard<"/:tenantId/subscription/periodic-usage", unknown, unknown, {
+			mauLimit: number;
+			tokenLimit: number;
+		}>;
+	} & {
+		"/tenants/:tenantId/subscription/add-on-skus": import("@withtyped/server").PathGuard<"/:tenantId/subscription/add-on-skus", unknown, unknown, Partial<Record<"tokenLimit" | "machineToMachineLimit" | "resourcesLimit" | "enterpriseSsoLimit" | "hooksLimit" | "tenantMembersLimit" | "mfaEnabled" | "organizationsEnabled" | "organizationsLimit" | "securityFeaturesEnabled" | "userRolesLimit" | "machineToMachineRolesLimit" | "thirdPartyApplicationsLimit" | "samlApplicationsLimit", {
+			id: string;
+			name: string | null;
+			createdAt: Date;
+			defaultPriceId: string | null;
+			unitPrice: number | null;
+			type: LogtoSkuType;
+			quota: {
+				auditLogsRetentionDays?: number | null | undefined;
+				mauLimit?: number | null | undefined;
+				applicationsLimit?: number | null | undefined;
+				thirdPartyApplicationsLimit?: number | null | undefined;
+				scopesPerResourceLimit?: number | null | undefined;
+				socialConnectorsLimit?: number | null | undefined;
+				userRolesLimit?: number | null | undefined;
+				machineToMachineRolesLimit?: number | null | undefined;
+				scopesPerRoleLimit?: number | null | undefined;
+				hooksLimit?: number | null | undefined;
+				customJwtEnabled?: boolean | undefined;
+				subjectTokenEnabled?: boolean | undefined;
+				bringYourUiEnabled?: boolean | undefined;
+				collectUserProfileEnabled?: boolean | undefined;
+				tokenLimit?: number | null | undefined;
+				machineToMachineLimit?: number | null | undefined;
+				resourcesLimit?: number | null | undefined;
+				enterpriseSsoLimit?: number | null | undefined;
+				tenantMembersLimit?: number | null | undefined;
+				mfaEnabled?: boolean | undefined;
+				organizationsEnabled?: boolean | undefined;
+				organizationsLimit?: number | null | undefined;
+				securityFeaturesEnabled?: boolean | undefined;
+				idpInitiatedSsoEnabled?: boolean | undefined;
+				samlApplicationsLimit?: number | null | undefined;
+			};
+			isDefault: boolean;
+			updatedAt: Date;
+			productId: string | null;
+		}>>>;
 	} & {
 		"/tenants/:tenantId/invoices": import("@withtyped/server").PathGuard<"/:tenantId/invoices", unknown, unknown, {
 			invoices: {
-				status: "void" | "open" | "draft" | "paid" | "uncollectible" | null;
 				id: string;
 				createdAt: Date;
+				status: "void" | "open" | "draft" | "paid" | "uncollectible" | null;
 				updatedAt: Date;
 				customerId: string | null;
 				billingReason: string | null;
@@ -243,22 +665,61 @@ declare const router: import("@withtyped/server").Router<RequestContext, WithAut
 				periodEnd: Date;
 				amountDue: number;
 				amountPaid: number;
+				basicSkuId: string | null;
 				subscriptionId: string | null;
 				hostedInvoiceUrl: string | null;
 				invoicePdf: string | null;
+				collectionMethod: "charge_automatically" | "send_invoice" | null;
+				dueDate: Date | null;
 				planName: string | null;
+				skuId?: string | null | undefined;
 			}[];
 		}>;
+	} & {
+		"/tenants/:tenantId/available-skus": import("@withtyped/server").PathGuard<"/:tenantId/available-skus", {
+			type?: LogtoSkuType | undefined;
+		}, unknown, {
+			id: string;
+			name: string | null;
+			createdAt: Date;
+			defaultPriceId: string | null;
+			unitPrice: number | null;
+			type: LogtoSkuType;
+			quota: {
+				auditLogsRetentionDays?: number | null | undefined;
+				mauLimit?: number | null | undefined;
+				applicationsLimit?: number | null | undefined;
+				thirdPartyApplicationsLimit?: number | null | undefined;
+				scopesPerResourceLimit?: number | null | undefined;
+				socialConnectorsLimit?: number | null | undefined;
+				userRolesLimit?: number | null | undefined;
+				machineToMachineRolesLimit?: number | null | undefined;
+				scopesPerRoleLimit?: number | null | undefined;
+				hooksLimit?: number | null | undefined;
+				customJwtEnabled?: boolean | undefined;
+				subjectTokenEnabled?: boolean | undefined;
+				bringYourUiEnabled?: boolean | undefined;
+				collectUserProfileEnabled?: boolean | undefined;
+				tokenLimit?: number | null | undefined;
+				machineToMachineLimit?: number | null | undefined;
+				resourcesLimit?: number | null | undefined;
+				enterpriseSsoLimit?: number | null | undefined;
+				tenantMembersLimit?: number | null | undefined;
+				mfaEnabled?: boolean | undefined;
+				organizationsEnabled?: boolean | undefined;
+				organizationsLimit?: number | null | undefined;
+				securityFeaturesEnabled?: boolean | undefined;
+				idpInitiatedSsoEnabled?: boolean | undefined;
+				samlApplicationsLimit?: number | null | undefined;
+			};
+			isDefault: boolean;
+			updatedAt: Date;
+			productId: string | null;
+		}[]>;
 	} & {
 		"/tenants/:tenantId/invoices/:invoiceId/hosted-invoice-url": import("@withtyped/server").PathGuard<"/:tenantId/invoices/:invoiceId/hosted-invoice-url", unknown, unknown, {
 			hostedInvoiceUrl: string;
 		}>;
-	} & {
-		"/tenants/:tenantId/usage": import("@withtyped/server").PathGuard<"/:tenantId/usage", unknown, unknown, {
-			activeUsers: number;
-			cost: number;
-			tokenUsage: number;
-		}>;
 	};
 	post: {
 		"/tenants/:tenantId/stripe-customer-portal": import("@withtyped/server").PathGuard<"/:tenantId/stripe-customer-portal", unknown, {
@@ -286,11 +747,15 @@ declare const router: import("@withtyped/server").Router<RequestContext, WithAut
 	post: {
 		"/services/mails": import("@withtyped/server").PathGuard<"/mails", unknown, {
 			data: {
-				type: TemplateType | VerificationCodeType;
+				type: TemplateType;
 				payload: {
-					code?: string | undefined;
 					link?: string | undefined;
-				} & Record<string, string> & {
+					code?: string | undefined;
+					locale?: string | undefined;
+					uiLocales?: string | undefined;
+				} & {
+					[k: string]: unknown;
+				} & {
 					senderName?: string | undefined;
 					companyInformation?: string | undefined;
 					appLogo?: string | undefined;
@@ -301,81 +766,187 @@ declare const router: import("@withtyped/server").Router<RequestContext, WithAut
 	} & {
 		"/services/send-sms": import("@withtyped/server").PathGuard<"/send-sms", unknown, {
 			data: {
-				type: TemplateType | VerificationCodeType;
+				type: TemplateType;
 				to: string;
 				payload: {
 					code?: string | undefined;
 					link?: string | undefined;
-				} & Record<string, string>;
+					locale?: string | undefined;
+					uiLocales?: string | undefined;
+				} & {
+					[k: string]: unknown;
+				};
 			};
 		}, unknown>;
 	} & {
-		"/services/custom-jwt": import("@withtyped/server").PathGuard<"/custom-jwt", unknown, {
-			script: string;
-			tokenType: LogtoJwtTokenKeyType.AccessToken;
+		"/services/custom-jwt": import("@withtyped/server").PathGuard<"/custom-jwt", {
+			isTest?: string | undefined;
+		}, {
 			token: Record<string, Json>;
 			context: Record<string, Json>;
+			tokenType: LogtoJwtTokenKeyType.AccessToken;
+			script: string;
 			environmentVariables?: Record<string, string> | undefined;
 		} | {
-			script: string;
-			tokenType: LogtoJwtTokenKeyType.ClientCredentials;
 			token: Record<string, Json>;
+			tokenType: LogtoJwtTokenKeyType.ClientCredentials;
+			script: string;
 			environmentVariables?: Record<string, string> | undefined;
 		}, Record<string, unknown>>;
 	};
-	put: {};
-	delete: {};
+	put: {
+		"/services/custom-jwt/worker": import("@withtyped/server").PathGuard<"/custom-jwt/worker", unknown, {
+			"jwt.accessToken"?: {
+				production?: string | undefined;
+				test?: string | undefined;
+			} | undefined;
+			"jwt.clientCredentials"?: {
+				production?: string | undefined;
+				test?: string | undefined;
+			} | undefined;
+		}, unknown>;
+	};
+	delete: {
+		"/services/custom-jwt/worker": import("@withtyped/server").PathGuard<"/custom-jwt/worker", unknown, unknown, unknown>;
+	};
 	copy: {};
 	head: {};
 }, "/api">>, import("@withtyped/server").RoutesWithPrefix<{
 	patch: {};
 	options: {};
 	get: {
-		"/subscription-plans": import("@withtyped/server").PathGuard<"/", unknown, unknown, {
+		"/skus": import("@withtyped/server").PathGuard<"/", {
+			type?: LogtoSkuType | undefined;
+		}, unknown, {
 			id: string;
+			name: string | null;
 			createdAt: Date;
-			name: string;
-			updatedAt: Date;
-			stripeProducts: {
-				type: "flat" | "tier1" | "tier2" | "tier3";
-				id: string;
-				name: string;
-				price: {
-					id: string;
-					unitAmountDecimal: string;
-					quantity?: 1 | undefined;
-					unitAmount?: number | null | undefined;
-				};
-				description?: string | undefined;
-			}[];
+			defaultPriceId: string | null;
+			unitPrice: number | null;
+			type: LogtoSkuType;
 			quota: {
-				mauLimit: number | null;
-				tokenLimit: number | null;
-				applicationsLimit: number | null;
-				machineToMachineLimit: number | null;
-				resourcesLimit: number | null;
-				scopesPerResourceLimit: number | null;
-				customDomainEnabled: boolean;
-				omniSignInEnabled: boolean;
-				builtInEmailConnectorEnabled: boolean;
-				socialConnectorsLimit: number | null;
-				standardConnectorsLimit: number | null;
-				rolesLimit: number | null;
-				machineToMachineRolesLimit: number | null;
-				scopesPerRoleLimit: number | null;
-				hooksLimit: number | null;
-				auditLogsRetentionDays: number | null;
-				mfaEnabled: boolean;
-				organizationsEnabled: boolean;
-				ssoEnabled: boolean;
-				thirdPartyApplicationsLimit: number | null;
-				tenantMembersLimit: number | null;
+				auditLogsRetentionDays?: number | null | undefined;
+				mauLimit?: number | null | undefined;
+				applicationsLimit?: number | null | undefined;
+				thirdPartyApplicationsLimit?: number | null | undefined;
+				scopesPerResourceLimit?: number | null | undefined;
+				socialConnectorsLimit?: number | null | undefined;
+				userRolesLimit?: number | null | undefined;
+				machineToMachineRolesLimit?: number | null | undefined;
+				scopesPerRoleLimit?: number | null | undefined;
+				hooksLimit?: number | null | undefined;
+				customJwtEnabled?: boolean | undefined;
+				subjectTokenEnabled?: boolean | undefined;
+				bringYourUiEnabled?: boolean | undefined;
+				collectUserProfileEnabled?: boolean | undefined;
+				tokenLimit?: number | null | undefined;
+				machineToMachineLimit?: number | null | undefined;
+				resourcesLimit?: number | null | undefined;
+				enterpriseSsoLimit?: number | null | undefined;
+				tenantMembersLimit?: number | null | undefined;
+				mfaEnabled?: boolean | undefined;
+				organizationsEnabled?: boolean | undefined;
+				organizationsLimit?: number | null | undefined;
+				securityFeaturesEnabled?: boolean | undefined;
+				idpInitiatedSsoEnabled?: boolean | undefined;
+				samlApplicationsLimit?: number | null | undefined;
 			};
+			isDefault: boolean;
+			updatedAt: Date;
+			productId: string | null;
 		}[]>;
 	};
-	post: {};
+	post: {
+		"/skus": import("@withtyped/server").PathGuard<"/", unknown, {
+			type: LogtoSkuType;
+			quota: {
+				tokenLimit?: number | null | undefined;
+				machineToMachineLimit?: number | null | undefined;
+				resourcesLimit?: number | null | undefined;
+				enterpriseSsoLimit?: number | null | undefined;
+				hooksLimit?: number | null | undefined;
+				tenantMembersLimit?: number | null | undefined;
+				mfaEnabled?: boolean | undefined;
+				organizationsEnabled?: boolean | undefined;
+				organizationsLimit?: number | null | undefined;
+				securityFeaturesEnabled?: boolean | undefined;
+				userRolesLimit?: number | null | undefined;
+				machineToMachineRolesLimit?: number | null | undefined;
+				thirdPartyApplicationsLimit?: number | null | undefined;
+				samlApplicationsLimit?: number | null | undefined;
+				auditLogsRetentionDays?: number | null | undefined;
+				mauLimit?: number | null | undefined;
+				applicationsLimit?: number | null | undefined;
+				scopesPerResourceLimit?: number | null | undefined;
+				socialConnectorsLimit?: number | null | undefined;
+				scopesPerRoleLimit?: number | null | undefined;
+				customJwtEnabled?: boolean | undefined;
+				subjectTokenEnabled?: boolean | undefined;
+				bringYourUiEnabled?: boolean | undefined;
+				collectUserProfileEnabled?: boolean | undefined;
+				idpInitiatedSsoEnabled?: boolean | undefined;
+			};
+			id?: string | undefined;
+			isDefault?: boolean | undefined;
+		}, {
+			id: string;
+			createdAt: Date;
+			type: LogtoSkuType;
+			isDefault: boolean;
+			updatedAt: Date;
+			quota: {
+				auditLogsRetentionDays?: number | null | undefined;
+				mauLimit?: number | null | undefined;
+				applicationsLimit?: number | null | undefined;
+				thirdPartyApplicationsLimit?: number | null | undefined;
+				scopesPerResourceLimit?: number | null | undefined;
+				socialConnectorsLimit?: number | null | undefined;
+				userRolesLimit?: number | null | undefined;
+				machineToMachineRolesLimit?: number | null | undefined;
+				scopesPerRoleLimit?: number | null | undefined;
+				hooksLimit?: number | null | undefined;
+				customJwtEnabled?: boolean | undefined;
+				subjectTokenEnabled?: boolean | undefined;
+				bringYourUiEnabled?: boolean | undefined;
+				collectUserProfileEnabled?: boolean | undefined;
+				tokenLimit?: number | null | undefined;
+				machineToMachineLimit?: number | null | undefined;
+				resourcesLimit?: number | null | undefined;
+				enterpriseSsoLimit?: number | null | undefined;
+				tenantMembersLimit?: number | null | undefined;
+				mfaEnabled?: boolean | undefined;
+				organizationsEnabled?: boolean | undefined;
+				organizationsLimit?: number | null | undefined;
+				securityFeaturesEnabled?: boolean | undefined;
+				idpInitiatedSsoEnabled?: boolean | undefined;
+				samlApplicationsLimit?: number | null | undefined;
+			};
+		}>;
+	} & {
+		"/skus/:skuId/products": import("@withtyped/server").PathGuard<"/:skuId/products", {
+			isOneTime?: string | undefined;
+		}, {
+			name: string;
+			unitPrice: number;
+		}, {
+			productId: string;
+		}>;
+	} & {
+		"/skus/:basicSkuId/usage-add-on-relations": import("@withtyped/server").PathGuard<"/:basicSkuId/usage-add-on-relations", unknown, {
+			usageKey: "tokenLimit" | "machineToMachineLimit" | "resourcesLimit" | "enterpriseSsoLimit" | "hooksLimit" | "tenantMembersLimit" | "mfaEnabled" | "organizationsEnabled" | "organizationsLimit" | "securityFeaturesEnabled" | "userRolesLimit" | "machineToMachineRolesLimit" | "thirdPartyApplicationsLimit" | "samlApplicationsLimit";
+			addOnSkuId: string;
+		}, {
+			basicSkuId: string;
+			usageKey: "tokenLimit" | "machineToMachineLimit" | "resourcesLimit" | "enterpriseSsoLimit" | "hooksLimit" | "tenantMembersLimit" | "mfaEnabled" | "organizationsEnabled" | "organizationsLimit" | "securityFeaturesEnabled" | "userRolesLimit" | "machineToMachineRolesLimit" | "thirdPartyApplicationsLimit" | "samlApplicationsLimit";
+			addOnSkuId: string;
+		}>;
+	};
 	put: {};
-	delete: {};
+	delete: {
+		"/skus/:skuId": import("@withtyped/server").PathGuard<"/:skuId", unknown, unknown, unknown>;
+	} & {
+		"/skus/:basicSkuId/usage-add-on-relations/:usageKey": import("@withtyped/server").PathGuard<"/:basicSkuId/usage-add-on-relations/:usageKey", unknown, unknown, unknown>;
+	};
 	copy: {};
 	head: {};
 }, "/api">>, import("@withtyped/server").RoutesWithPrefix<{
@@ -389,17 +960,19 @@ declare const router: import("@withtyped/server").Router<RequestContext, WithAut
 			status: "open" | "complete" | "expired";
 			tenantId: string | null;
 			updatedAt: Date;
-			planId: string;
+			skuId: string | null;
+			planId: string | null;
 		}>;
 	};
 	post: {
 		"/checkout-session": import("@withtyped/server").PathGuard<"/", unknown, {
-			planId: string;
 			successCallbackUrl: string;
 			tenantId?: string | undefined;
-			cancelCallbackUrl?: string | undefined;
-			tenantTag?: TenantTag | undefined;
+			skuId?: string | undefined;
 			tenantName?: string | undefined;
+			tenantTag?: TenantTag | undefined;
+			tenantRegionName?: string | undefined;
+			cancelCallbackUrl?: string | undefined;
 		}, {
 			sessionId: string;
 			redirectUri?: string | null | undefined;
@@ -490,8 +1063,8 @@ declare const router: import("@withtyped/server").Router<RequestContext, WithAut
 			expiresAt: number;
 			organizationRoles: OrganizationRoleEntity[];
 		} & {
-			tenantTag: TenantTag;
 			tenantName: string;
+			tenantTag: TenantTag;
 		})[]>;
 	} & {
 		"/invitations/:invitationId": import("@withtyped/server").PathGuard<"/:invitationId", unknown, unknown, {
@@ -513,9 +1086,242 @@ declare const router: import("@withtyped/server").Router<RequestContext, WithAut
 	delete: {};
 	copy: {};
 	head: {};
+}, "/api">>, import("@withtyped/server").RoutesWithPrefix<{
+	patch: {};
+	options: {};
+	get: {
+		"/me/regions": import("@withtyped/server").PathGuard<"/regions", unknown, unknown, {
+			regions: {
+				id: string;
+				name: string;
+				country: string;
+				displayName: string;
+				tags: TenantTag[];
+				isPrivate: boolean;
+			}[];
+		}>;
+	};
+	post: {};
+	put: {};
+	delete: {
+		"/me": import("@withtyped/server").PathGuard<"/", unknown, unknown, unknown>;
+	};
+	copy: {};
+	head: {};
+}, "/api">>, import("@withtyped/server").RoutesWithPrefix<{
+	patch: {
+		"/system-limits/:id": import("@withtyped/server").PathGuard<"/:id", unknown, {
+			limits: {
+				machineToMachineLimit?: number | null | undefined;
+				resourcesLimit?: number | null | undefined;
+				enterpriseSsoLimit?: number | null | undefined;
+				hooksLimit?: number | null | undefined;
+				tenantMembersLimit?: number | null | undefined;
+				organizationsLimit?: number | null | undefined;
+				userRolesLimit?: number | null | undefined;
+				machineToMachineRolesLimit?: number | null | undefined;
+				thirdPartyApplicationsLimit?: number | null | undefined;
+				samlApplicationsLimit?: number | null | undefined;
+				applicationsLimit?: number | null | undefined;
+				scopesPerResourceLimit?: number | null | undefined;
+				socialConnectorsLimit?: number | null | undefined;
+				scopesPerRoleLimit?: number | null | undefined;
+				usersPerOrganizationLimit?: number | null | undefined;
+				organizationUserRolesLimit?: number | null | undefined;
+				organizationMachineToMachineRolesLimit?: number | null | undefined;
+				organizationScopesLimit?: number | null | undefined;
+			};
+		}, {
+			id: string;
+			createdAt: Date;
+			updatedAt: Date;
+			limits: {
+				applicationsLimit?: number | null | undefined;
+				thirdPartyApplicationsLimit?: number | null | undefined;
+				scopesPerResourceLimit?: number | null | undefined;
+				socialConnectorsLimit?: number | null | undefined;
+				userRolesLimit?: number | null | undefined;
+				machineToMachineRolesLimit?: number | null | undefined;
+				scopesPerRoleLimit?: number | null | undefined;
+				hooksLimit?: number | null | undefined;
+				machineToMachineLimit?: number | null | undefined;
+				resourcesLimit?: number | null | undefined;
+				enterpriseSsoLimit?: number | null | undefined;
+				tenantMembersLimit?: number | null | undefined;
+				organizationsLimit?: number | null | undefined;
+				samlApplicationsLimit?: number | null | undefined;
+				usersPerOrganizationLimit?: number | null | undefined;
+				organizationUserRolesLimit?: number | null | undefined;
+				organizationMachineToMachineRolesLimit?: number | null | undefined;
+				organizationScopesLimit?: number | null | undefined;
+			};
+		}>;
+	};
+	options: {};
+	get: {
+		"/system-limits": import("@withtyped/server").PathGuard<"/", {
+			basicSkuId?: string | undefined;
+		}, unknown, {
+			id: string;
+			createdAt: Date;
+			updatedAt: Date;
+			limits: {
+				applicationsLimit?: number | null | undefined;
+				thirdPartyApplicationsLimit?: number | null | undefined;
+				scopesPerResourceLimit?: number | null | undefined;
+				socialConnectorsLimit?: number | null | undefined;
+				userRolesLimit?: number | null | undefined;
+				machineToMachineRolesLimit?: number | null | undefined;
+				scopesPerRoleLimit?: number | null | undefined;
+				hooksLimit?: number | null | undefined;
+				machineToMachineLimit?: number | null | undefined;
+				resourcesLimit?: number | null | undefined;
+				enterpriseSsoLimit?: number | null | undefined;
+				tenantMembersLimit?: number | null | undefined;
+				organizationsLimit?: number | null | undefined;
+				samlApplicationsLimit?: number | null | undefined;
+				usersPerOrganizationLimit?: number | null | undefined;
+				organizationUserRolesLimit?: number | null | undefined;
+				organizationMachineToMachineRolesLimit?: number | null | undefined;
+				organizationScopesLimit?: number | null | undefined;
+			};
+			basicSkuIds: string[];
+		}[]>;
+	} & {
+		"/system-limits/:id": import("@withtyped/server").PathGuard<"/:id", unknown, unknown, {
+			id: string;
+			createdAt: Date;
+			updatedAt: Date;
+			limits: {
+				applicationsLimit?: number | null | undefined;
+				thirdPartyApplicationsLimit?: number | null | undefined;
+				scopesPerResourceLimit?: number | null | undefined;
+				socialConnectorsLimit?: number | null | undefined;
+				userRolesLimit?: number | null | undefined;
+				machineToMachineRolesLimit?: number | null | undefined;
+				scopesPerRoleLimit?: number | null | undefined;
+				hooksLimit?: number | null | undefined;
+				machineToMachineLimit?: number | null | undefined;
+				resourcesLimit?: number | null | undefined;
+				enterpriseSsoLimit?: number | null | undefined;
+				tenantMembersLimit?: number | null | undefined;
+				organizationsLimit?: number | null | undefined;
+				samlApplicationsLimit?: number | null | undefined;
+				usersPerOrganizationLimit?: number | null | undefined;
+				organizationUserRolesLimit?: number | null | undefined;
+				organizationMachineToMachineRolesLimit?: number | null | undefined;
+				organizationScopesLimit?: number | null | undefined;
+			};
+			basicSkuIds: string[];
+		}>;
+	};
+	post: {
+		"/system-limits": import("@withtyped/server").PathGuard<"/", unknown, {
+			limits: {
+				machineToMachineLimit?: number | null | undefined;
+				resourcesLimit?: number | null | undefined;
+				enterpriseSsoLimit?: number | null | undefined;
+				hooksLimit?: number | null | undefined;
+				tenantMembersLimit?: number | null | undefined;
+				organizationsLimit?: number | null | undefined;
+				userRolesLimit?: number | null | undefined;
+				machineToMachineRolesLimit?: number | null | undefined;
+				thirdPartyApplicationsLimit?: number | null | undefined;
+				samlApplicationsLimit?: number | null | undefined;
+				applicationsLimit?: number | null | undefined;
+				scopesPerResourceLimit?: number | null | undefined;
+				socialConnectorsLimit?: number | null | undefined;
+				scopesPerRoleLimit?: number | null | undefined;
+				usersPerOrganizationLimit?: number | null | undefined;
+				organizationUserRolesLimit?: number | null | undefined;
+				organizationMachineToMachineRolesLimit?: number | null | undefined;
+				organizationScopesLimit?: number | null | undefined;
+			};
+			id?: string | undefined;
+		}, {
+			id: string;
+			createdAt: Date;
+			updatedAt: Date;
+			limits: {
+				applicationsLimit?: number | null | undefined;
+				thirdPartyApplicationsLimit?: number | null | undefined;
+				scopesPerResourceLimit?: number | null | undefined;
+				socialConnectorsLimit?: number | null | undefined;
+				userRolesLimit?: number | null | undefined;
+				machineToMachineRolesLimit?: number | null | undefined;
+				scopesPerRoleLimit?: number | null | undefined;
+				hooksLimit?: number | null | undefined;
+				machineToMachineLimit?: number | null | undefined;
+				resourcesLimit?: number | null | undefined;
+				enterpriseSsoLimit?: number | null | undefined;
+				tenantMembersLimit?: number | null | undefined;
+				organizationsLimit?: number | null | undefined;
+				samlApplicationsLimit?: number | null | undefined;
+				usersPerOrganizationLimit?: number | null | undefined;
+				organizationUserRolesLimit?: number | null | undefined;
+				organizationMachineToMachineRolesLimit?: number | null | undefined;
+				organizationScopesLimit?: number | null | undefined;
+			};
+		}>;
+	} & {
+		"/system-limits/:systemLimitId/basic-sku-relations": import("@withtyped/server").PathGuard<"/:systemLimitId/basic-sku-relations", unknown, {
+			basicSkuIds: string[];
+		}, {
+			relations: {
+				createdAt: Date;
+				updatedAt: Date;
+				basicSkuId: string;
+				systemLimitId: string;
+			}[];
+		}>;
+	};
+	put: {};
+	delete: {
+		"/system-limits/:id": import("@withtyped/server").PathGuard<"/:id", unknown, unknown, unknown>;
+	} & {
+		"/system-limits/:systemLimitId/basic-sku-relations": import("@withtyped/server").PathGuard<"/:systemLimitId/basic-sku-relations", unknown, {
+			basicSkuIds: string[];
+		}, unknown>;
+	};
+	copy: {};
+	head: {};
+}, "/api">>, import("@withtyped/server").RoutesWithPrefix<{
+	patch: {
+		"/regions/:regionName/users/:userId": import("@withtyped/server").PathGuard<"/:regionName/users/:userId", unknown, {
+			role: DatabaseRegionAccessRole;
+		}, {
+			role: DatabaseRegionAccessRole;
+			userId: string;
+		}>;
+	};
+	options: {};
+	get: {
+		"/regions/:regionName/users": import("@withtyped/server").PathGuard<"/:regionName/users", unknown, unknown, {
+			users: {
+				role: DatabaseRegionAccessRole;
+				userId: string;
+			}[];
+		}>;
+	};
+	post: {
+		"/regions/:regionName/users": import("@withtyped/server").PathGuard<"/:regionName/users", unknown, {
+			role: DatabaseRegionAccessRole;
+			userId: string;
+		}, {
+			role: DatabaseRegionAccessRole;
+			userId: string;
+		}>;
+	};
+	put: {};
+	delete: {
+		"/regions/:regionName/users/:userId": import("@withtyped/server").PathGuard<"/:regionName/users/:userId", unknown, unknown, unknown>;
+	};
+	copy: {};
+	head: {};
 }, "/api">>, "/api">;
 export declare const tenantAuthRouter: import("@withtyped/server").Router<RequestContext, import("@withtyped/server").WithBodyContext<import("@withtyped/server").BaseContext & {
 	request: {
+		id?: string | undefined;
 		method?: import("@withtyped/server").RequestMethod | undefined;
 		headers: import("http").IncomingHttpHeaders;
 		url: URL;
@@ -550,6 +1356,8 @@ export declare const tenantAuthRouter: import("@withtyped/server").Router<Reques
 			avatar: string | null;
 			organizationRoles: OrganizationRoleEntity[];
 		}[]>;
+	} & {
+		"/:tenantId/members/:userId/scopes": import("@withtyped/server").PathGuard<"/:tenantId/members/:userId/scopes", unknown, unknown, OrganizationScope[]>;
 	} & {
 		"/:tenantId/invitations": import("@withtyped/server").PathGuard<"/:tenantId/invitations", unknown, unknown, ({
 			id: string;
@@ -569,7 +1377,7 @@ export declare const tenantAuthRouter: import("@withtyped/server").Router<Reques
 	};
 	post: {
 		"/:tenantId/invitations": import("@withtyped/server").PathGuard<"/:tenantId/invitations", unknown, {
-			invitee: string;
+			invitee: string | string[];
 			roleName: TenantRole;
 			expiresAt?: number | undefined;
 		}, {
@@ -584,7 +1392,19 @@ export declare const tenantAuthRouter: import("@withtyped/server").Router<Reques
 			organizationId: string;
 			expiresAt: number;
 			organizationRoles: OrganizationRoleEntity[];
-		}>;
+		} | {
+			id: string;
+			createdAt: number;
+			status: OrganizationInvitationStatus;
+			tenantId: string;
+			updatedAt: number;
+			inviterId: string | null;
+			invitee: string;
+			acceptedUserId: string | null;
+			organizationId: string;
+			expiresAt: number;
+			organizationRoles: OrganizationRoleEntity[];
+		}[]>;
 	} & {
 		"/:tenantId/invitations/:invitationId/message": import("@withtyped/server").PathGuard<"/:tenantId/invitations/:invitationId/message", unknown, unknown, unknown>;
 	};
@@ -601,35 +1421,6 @@ export declare const tenantAuthRouter: import("@withtyped/server").Router<Reques
 	copy: {};
 	head: {};
 }, "/api/tenants">>, "/api/tenants">;
-export declare const functionsRouter: import("@withtyped/server").Router<RequestContext, WithAuthContext<Omit<import("@withtyped/server").BaseContext & {
-	request: {
-		method?: import("@withtyped/server").RequestMethod | undefined;
-		headers: import("http").IncomingHttpHeaders;
-		url: URL;
-		body?: unknown;
-	};
-}, "request"> & {
-	request: Record<string, unknown> & {
-		method?: import("@withtyped/server").RequestMethod | undefined;
-		headers: import("http").IncomingHttpHeaders;
-		url: URL;
-		body?: unknown;
-	} & {
-		body?: Json | undefined;
-		bodyRaw?: Buffer | undefined;
-	};
-}>, import("@withtyped/server").MergeRoutes<import("@withtyped/server").BaseRoutes, import("@withtyped/server").RoutesWithPrefix<{
-	patch: {};
-	options: {};
-	get: {};
-	post: {
-		"/database-alteration": import("@withtyped/server").PathGuard<"/database-alteration", unknown, Json, unknown>;
-	};
-	put: {};
-	delete: {};
-	copy: {};
-	head: {};
-}, "/functions">>, "/functions">;
 
 export {
 	router as default,

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@logto/cloud",
-  "version": "0.2.5-ab8a489",
+  "version": "0.2.5-af943a1",
   "description": "Logto Cloud service.",
   "main": "build/index.js",
   "author": "Silverhand Inc. <contact@silverhand.io>",
@@ -16,24 +16,24 @@
     "#src/*": "./build/*"
   },
   "devDependencies": {
-    "@silverhand/eslint-config": "5.0.0",
-    "@silverhand/ts-config": "5.0.0",
+    "@silverhand/eslint-config": "6.0.1",
+    "@silverhand/ts-config": "6.0.0",
     "@types/accepts": "^1.3.5",
     "@types/http-proxy": "^1.17.9",
     "@types/mime-types": "^2.1.1",
-    "@types/node": "^20.0.0",
+    "@types/node": "^22.14.0",
     "@types/yargs": "^17.0.24",
     "dts-bundle-generator": "^9.3.1",
-    "eslint": "^8.44.0",
+    "eslint": "^8.57.0",
     "lint-staged": "^15.0.0",
     "nodemon": "^3.0.0",
     "prettier": "^3.0.0",
     "typescript": "^5.3.3",
-    "vite-tsconfig-paths": "^4.3.1",
-    "vitest": "^1.0.0"
+    "vite-tsconfig-paths": "^5.0.0",
+    "vitest": "^3.1.1"
   },
   "engines": {
-    "node": "^20.9.0"
+    "node": "^22.14.0"
   },
   "eslintConfig": {
     "extends": "@silverhand",
@@ -49,8 +49,8 @@
     "access": "public"
   },
   "dependencies": {
-    "@silverhand/essentials": "^2.9.0",
-    "@withtyped/server": "^0.13.3"
+    "@silverhand/essentials": "^2.9.2",
+    "@withtyped/server": "^0.14.0"
   },
   "scripts": {
     "precommit": "lint-staged",
@@ -63,6 +63,7 @@
     "start": "NODE_ENV=production node .",
     "test": "vitest && pnpm build:lib && pnpm test:types",
     "test:types": "tsc -p tsconfig.test.types.json",
+    "test:only": "vitest",
     "cli": "node ./build/cli/index.js"
   }
 }