@logto/schemas 1.10.0 → 1.10.1

package/lib/types/system.js

@@ -15,6 +15,7 @@ export var StorageProvider;
 (function (StorageProvider) {
     StorageProvider["AzureStorage"] = "AzureStorage";
     StorageProvider["S3Storage"] = "S3Storage";
+    StorageProvider["GoogleStorage"] = "GoogleStorage";
 })(StorageProvider || (StorageProvider = {}));
 const basicConfig = {
     publicUrl: z.string().optional(),
@@ -35,6 +36,13 @@ export const storageProviderDataGuard = z.discriminatedUnion('provider', [
         accessSecretKey: z.string(),
         ...basicConfig,
     }),
+    z.object({
+        provider: z.literal(StorageProvider.GoogleStorage),
+        projectId: z.string(),
+        keyFilename: z.string(),
+        bucketName: z.string(),
+        ...basicConfig,
+    }),
 ]);
 export var StorageProviderKey;
 (function (StorageProviderKey) {

package/lib/types/user-assets.d.ts

@@ -8,13 +8,13 @@ export declare const userAssetsServiceStatusGuard: z.ZodObject<{
     allowUploadMimeTypes: z.ZodOptional<z.ZodArray<z.ZodEnum<["image/jpeg", "image/png", "image/gif", "image/vnd.microsoft.icon", "image/svg+xml", "image/tiff", "image/webp", "image/bmp"]>, "many">>;
     maxUploadFileSize: z.ZodOptional<z.ZodNumber>;
 }, "strip", z.ZodTypeAny, {
+    status: "ready" | "not_configured";
     allowUploadMimeTypes?: ("image/jpeg" | "image/png" | "image/gif" | "image/vnd.microsoft.icon" | "image/svg+xml" | "image/tiff" | "image/webp" | "image/bmp")[] | undefined;
     maxUploadFileSize?: number | undefined;
-    status: "ready" | "not_configured";
 }, {
+    status: "ready" | "not_configured";
     allowUploadMimeTypes?: ("image/jpeg" | "image/png" | "image/gif" | "image/vnd.microsoft.icon" | "image/svg+xml" | "image/tiff" | "image/webp" | "image/bmp")[] | undefined;
     maxUploadFileSize?: number | undefined;
-    status: "ready" | "not_configured";
 }>;
 export type UserAssetsServiceStatus = z.infer<typeof userAssetsServiceStatusGuard>;
 export declare const userAssetsGuard: z.ZodObject<{

package/lib/types/user.d.ts

@@ -1,5 +1,6 @@
 import { z } from 'zod';
-import { MfaFactor } from '../foundations/jsonb-types.js';
+import { type User } from '../db-entries/index.js';
+import { MfaFactor } from '../foundations/index.js';
 export declare const userInfoSelectFields: readonly ["id", "username", "primaryEmail", "primaryPhone", "name", "avatar", "customData", "identities", "lastSignInAt", "createdAt", "applicationId", "isSuspended"];
 export declare const userInfoGuard: z.ZodObject<Pick<{
     tenantId: z.ZodType<string, z.ZodTypeDef, string>;
@@ -13,18 +14,20 @@ export declare const userInfoGuard: z.ZodObject<Pick<{
     avatar: z.ZodType<string | null, z.ZodTypeDef, string | null>;
     applicationId: z.ZodType<string | null, z.ZodTypeDef, string | null>;
     identities: z.ZodType<Record<string, {
-        details?: {} | undefined;
         userId: string;
-    }>, z.ZodTypeDef, Record<string, {
         details?: {} | undefined;
+    }>, z.ZodTypeDef, Record<string, {
         userId: string;
+        details?: {} | undefined;
     }>>;
-    customData: z.ZodType<import("../foundations/jsonb-types.js").JsonObject, z.ZodTypeDef, import("../foundations/jsonb-types.js").JsonObject>;
+    customData: z.ZodType<import("../foundations/index.js").JsonObject, z.ZodTypeDef, import("../foundations/index.js").JsonObject>;
+    logtoConfig: z.ZodType<import("../foundations/index.js").JsonObject, z.ZodTypeDef, import("../foundations/index.js").JsonObject>;
     mfaVerifications: z.ZodType<({
         type: MfaFactor.TOTP;
-        key: string;
         id: string;
+        key: string;
         createdAt: string;
+        lastUsedAt?: string | undefined;
     } | {
         type: MfaFactor.WebAuthn;
         id: string;
@@ -33,17 +36,23 @@ export declare const userInfoGuard: z.ZodObject<Pick<{
         publicKey: string;
         counter: number;
         agent: string;
+        transports?: ("usb" | "nfc" | "ble" | "internal" | "cable" | "hybrid" | "smart-card")[] | undefined;
+        lastUsedAt?: string | undefined;
     } | {
-        usedAt?: string | undefined;
-        code: string;
         type: MfaFactor.BackupCode;
         id: string;
         createdAt: string;
+        codes: {
+            code: string;
+            usedAt?: string | undefined;
+        }[];
+        lastUsedAt?: string | undefined;
     })[], z.ZodTypeDef, ({
         type: MfaFactor.TOTP;
-        key: string;
         id: string;
+        key: string;
         createdAt: string;
+        lastUsedAt?: string | undefined;
     } | {
         type: MfaFactor.WebAuthn;
         id: string;
@@ -52,38 +61,45 @@ export declare const userInfoGuard: z.ZodObject<Pick<{
         publicKey: string;
         counter: number;
         agent: string;
+        transports?: ("usb" | "nfc" | "ble" | "internal" | "cable" | "hybrid" | "smart-card")[] | undefined;
+        lastUsedAt?: string | undefined;
     } | {
-        usedAt?: string | undefined;
-        code: string;
         type: MfaFactor.BackupCode;
         id: string;
         createdAt: string;
+        codes: {
+            code: string;
+            usedAt?: string | undefined;
+        }[];
+        lastUsedAt?: string | undefined;
     })[]>;
     isSuspended: z.ZodType<boolean, z.ZodTypeDef, boolean>;
     lastSignInAt: z.ZodType<number | null, z.ZodTypeDef, number | null>;
     createdAt: z.ZodType<number, z.ZodTypeDef, number>;
-}, "tenantId" | "username" | "id" | "createdAt" | "applicationId" | "name" | "primaryEmail" | "primaryPhone" | "passwordEncrypted" | "passwordEncryptionMethod" | "avatar" | "identities" | "customData" | "mfaVerifications" | "isSuspended" | "lastSignInAt">, "strip", z.ZodTypeAny, {
+}, "name" | "id" | "applicationId" | "tenantId" | "username" | "createdAt" | "primaryEmail" | "primaryPhone" | "passwordEncrypted" | "passwordEncryptionMethod" | "avatar" | "identities" | "customData" | "logtoConfig" | "mfaVerifications" | "isSuspended" | "lastSignInAt">, "strip", z.ZodTypeAny, {
+    name: string | null;
+    id: string;
+    applicationId: string | null;
     tenantId: string;
     username: string | null;
-    id: string;
     createdAt: number;
-    applicationId: string | null;
-    name: string | null;
     primaryEmail: string | null;
     primaryPhone: string | null;
     passwordEncrypted: string | null;
     passwordEncryptionMethod: import("../db-entries/custom-types.js").UsersPasswordEncryptionMethod | null;
     avatar: string | null;
     identities: Record<string, {
-        details?: {} | undefined;
         userId: string;
+        details?: {} | undefined;
     }>;
-    customData: import("../foundations/jsonb-types.js").JsonObject;
+    customData: import("../foundations/index.js").JsonObject;
+    logtoConfig: import("../foundations/index.js").JsonObject;
     mfaVerifications: ({
         type: MfaFactor.TOTP;
-        key: string;
         id: string;
+        key: string;
         createdAt: string;
+        lastUsedAt?: string | undefined;
     } | {
         type: MfaFactor.WebAuthn;
         id: string;
@@ -92,37 +108,44 @@ export declare const userInfoGuard: z.ZodObject<Pick<{
         publicKey: string;
         counter: number;
         agent: string;
+        transports?: ("usb" | "nfc" | "ble" | "internal" | "cable" | "hybrid" | "smart-card")[] | undefined;
+        lastUsedAt?: string | undefined;
     } | {
-        usedAt?: string | undefined;
-        code: string;
         type: MfaFactor.BackupCode;
         id: string;
         createdAt: string;
+        codes: {
+            code: string;
+            usedAt?: string | undefined;
+        }[];
+        lastUsedAt?: string | undefined;
     })[];
     isSuspended: boolean;
     lastSignInAt: number | null;
 }, {
+    name: string | null;
+    id: string;
+    applicationId: string | null;
     tenantId: string;
     username: string | null;
-    id: string;
     createdAt: number;
-    applicationId: string | null;
-    name: string | null;
     primaryEmail: string | null;
     primaryPhone: string | null;
     passwordEncrypted: string | null;
     passwordEncryptionMethod: import("../db-entries/custom-types.js").UsersPasswordEncryptionMethod | null;
     avatar: string | null;
     identities: Record<string, {
-        details?: {} | undefined;
         userId: string;
+        details?: {} | undefined;
     }>;
-    customData: import("../foundations/jsonb-types.js").JsonObject;
+    customData: import("../foundations/index.js").JsonObject;
+    logtoConfig: import("../foundations/index.js").JsonObject;
     mfaVerifications: ({
         type: MfaFactor.TOTP;
-        key: string;
         id: string;
+        key: string;
         createdAt: string;
+        lastUsedAt?: string | undefined;
     } | {
         type: MfaFactor.WebAuthn;
         id: string;
@@ -131,41 +154,49 @@ export declare const userInfoGuard: z.ZodObject<Pick<{
         publicKey: string;
         counter: number;
         agent: string;
+        transports?: ("usb" | "nfc" | "ble" | "internal" | "cable" | "hybrid" | "smart-card")[] | undefined;
+        lastUsedAt?: string | undefined;
     } | {
-        usedAt?: string | undefined;
-        code: string;
         type: MfaFactor.BackupCode;
         id: string;
         createdAt: string;
+        codes: {
+            code: string;
+            usedAt?: string | undefined;
+        }[];
+        lastUsedAt?: string | undefined;
     })[];
     isSuspended: boolean;
     lastSignInAt: number | null;
 }>;
 export type UserInfo = z.infer<typeof userInfoGuard>;
-export declare const userProfileResponseGuard: z.ZodObject<z.extendShape<Pick<{
-    tenantId: z.ZodType<string, z.ZodTypeDef, string>;
+export declare const userProfileResponseGuard: z.ZodObject<{
+    name: z.ZodType<string | null, z.ZodTypeDef, string | null>;
     id: z.ZodType<string, z.ZodTypeDef, string>;
+    applicationId: z.ZodType<string | null, z.ZodTypeDef, string | null>;
+    tenantId: z.ZodType<string, z.ZodTypeDef, string>;
     username: z.ZodType<string | null, z.ZodTypeDef, string | null>;
+    createdAt: z.ZodType<number, z.ZodTypeDef, number>;
     primaryEmail: z.ZodType<string | null, z.ZodTypeDef, string | null>;
     primaryPhone: z.ZodType<string | null, z.ZodTypeDef, string | null>;
     passwordEncrypted: z.ZodType<string | null, z.ZodTypeDef, string | null>;
     passwordEncryptionMethod: z.ZodType<import("../db-entries/custom-types.js").UsersPasswordEncryptionMethod | null, z.ZodTypeDef, import("../db-entries/custom-types.js").UsersPasswordEncryptionMethod | null>;
-    name: z.ZodType<string | null, z.ZodTypeDef, string | null>;
     avatar: z.ZodType<string | null, z.ZodTypeDef, string | null>;
-    applicationId: z.ZodType<string | null, z.ZodTypeDef, string | null>;
     identities: z.ZodType<Record<string, {
-        details?: {} | undefined;
         userId: string;
-    }>, z.ZodTypeDef, Record<string, {
         details?: {} | undefined;
+    }>, z.ZodTypeDef, Record<string, {
         userId: string;
+        details?: {} | undefined;
     }>>;
-    customData: z.ZodType<import("../foundations/jsonb-types.js").JsonObject, z.ZodTypeDef, import("../foundations/jsonb-types.js").JsonObject>;
+    customData: z.ZodType<import("../foundations/index.js").JsonObject, z.ZodTypeDef, import("../foundations/index.js").JsonObject>;
+    logtoConfig: z.ZodType<import("../foundations/index.js").JsonObject, z.ZodTypeDef, import("../foundations/index.js").JsonObject>;
     mfaVerifications: z.ZodType<({
         type: MfaFactor.TOTP;
-        key: string;
         id: string;
+        key: string;
         createdAt: string;
+        lastUsedAt?: string | undefined;
     } | {
         type: MfaFactor.WebAuthn;
         id: string;
@@ -174,17 +205,23 @@ export declare const userProfileResponseGuard: z.ZodObject<z.extendShape<Pick<{
         publicKey: string;
         counter: number;
         agent: string;
+        transports?: ("usb" | "nfc" | "ble" | "internal" | "cable" | "hybrid" | "smart-card")[] | undefined;
+        lastUsedAt?: string | undefined;
     } | {
-        usedAt?: string | undefined;
-        code: string;
         type: MfaFactor.BackupCode;
         id: string;
         createdAt: string;
+        codes: {
+            code: string;
+            usedAt?: string | undefined;
+        }[];
+        lastUsedAt?: string | undefined;
     })[], z.ZodTypeDef, ({
         type: MfaFactor.TOTP;
-        key: string;
         id: string;
+        key: string;
         createdAt: string;
+        lastUsedAt?: string | undefined;
     } | {
         type: MfaFactor.WebAuthn;
         id: string;
@@ -193,41 +230,45 @@ export declare const userProfileResponseGuard: z.ZodObject<z.extendShape<Pick<{
         publicKey: string;
         counter: number;
         agent: string;
+        transports?: ("usb" | "nfc" | "ble" | "internal" | "cable" | "hybrid" | "smart-card")[] | undefined;
+        lastUsedAt?: string | undefined;
     } | {
-        usedAt?: string | undefined;
-        code: string;
         type: MfaFactor.BackupCode;
         id: string;
         createdAt: string;
+        codes: {
+            code: string;
+            usedAt?: string | undefined;
+        }[];
+        lastUsedAt?: string | undefined;
     })[]>;
     isSuspended: z.ZodType<boolean, z.ZodTypeDef, boolean>;
     lastSignInAt: z.ZodType<number | null, z.ZodTypeDef, number | null>;
-    createdAt: z.ZodType<number, z.ZodTypeDef, number>;
-}, "tenantId" | "username" | "id" | "createdAt" | "applicationId" | "name" | "primaryEmail" | "primaryPhone" | "passwordEncrypted" | "passwordEncryptionMethod" | "avatar" | "identities" | "customData" | "mfaVerifications" | "isSuspended" | "lastSignInAt">, {
     hasPassword: z.ZodOptional<z.ZodBoolean>;
-}>, "strip", z.ZodTypeAny, {
-    hasPassword?: boolean | undefined;
+}, "strip", z.ZodTypeAny, {
+    name: string | null;
+    id: string;
+    applicationId: string | null;
     tenantId: string;
     username: string | null;
-    id: string;
     createdAt: number;
-    applicationId: string | null;
-    name: string | null;
     primaryEmail: string | null;
     primaryPhone: string | null;
     passwordEncrypted: string | null;
     passwordEncryptionMethod: import("../db-entries/custom-types.js").UsersPasswordEncryptionMethod | null;
     avatar: string | null;
     identities: Record<string, {
-        details?: {} | undefined;
         userId: string;
+        details?: {} | undefined;
     }>;
-    customData: import("../foundations/jsonb-types.js").JsonObject;
+    customData: import("../foundations/index.js").JsonObject;
+    logtoConfig: import("../foundations/index.js").JsonObject;
     mfaVerifications: ({
         type: MfaFactor.TOTP;
-        key: string;
         id: string;
+        key: string;
         createdAt: string;
+        lastUsedAt?: string | undefined;
     } | {
         type: MfaFactor.WebAuthn;
         id: string;
@@ -236,38 +277,45 @@ export declare const userProfileResponseGuard: z.ZodObject<z.extendShape<Pick<{
         publicKey: string;
         counter: number;
         agent: string;
+        transports?: ("usb" | "nfc" | "ble" | "internal" | "cable" | "hybrid" | "smart-card")[] | undefined;
+        lastUsedAt?: string | undefined;
     } | {
-        usedAt?: string | undefined;
-        code: string;
         type: MfaFactor.BackupCode;
         id: string;
         createdAt: string;
+        codes: {
+            code: string;
+            usedAt?: string | undefined;
+        }[];
+        lastUsedAt?: string | undefined;
     })[];
     isSuspended: boolean;
     lastSignInAt: number | null;
-}, {
     hasPassword?: boolean | undefined;
+}, {
+    name: string | null;
+    id: string;
+    applicationId: string | null;
     tenantId: string;
     username: string | null;
-    id: string;
     createdAt: number;
-    applicationId: string | null;
-    name: string | null;
     primaryEmail: string | null;
     primaryPhone: string | null;
     passwordEncrypted: string | null;
     passwordEncryptionMethod: import("../db-entries/custom-types.js").UsersPasswordEncryptionMethod | null;
     avatar: string | null;
     identities: Record<string, {
-        details?: {} | undefined;
         userId: string;
+        details?: {} | undefined;
     }>;
-    customData: import("../foundations/jsonb-types.js").JsonObject;
+    customData: import("../foundations/index.js").JsonObject;
+    logtoConfig: import("../foundations/index.js").JsonObject;
     mfaVerifications: ({
         type: MfaFactor.TOTP;
-        key: string;
         id: string;
+        key: string;
         createdAt: string;
+        lastUsedAt?: string | undefined;
     } | {
         type: MfaFactor.WebAuthn;
         id: string;
@@ -276,15 +324,21 @@ export declare const userProfileResponseGuard: z.ZodObject<z.extendShape<Pick<{
         publicKey: string;
         counter: number;
         agent: string;
+        transports?: ("usb" | "nfc" | "ble" | "internal" | "cable" | "hybrid" | "smart-card")[] | undefined;
+        lastUsedAt?: string | undefined;
     } | {
-        usedAt?: string | undefined;
-        code: string;
         type: MfaFactor.BackupCode;
         id: string;
         createdAt: string;
+        codes: {
+            code: string;
+            usedAt?: string | undefined;
+        }[];
+        lastUsedAt?: string | undefined;
     })[];
     isSuspended: boolean;
     lastSignInAt: number | null;
+    hasPassword?: boolean | undefined;
 }>;
 export type UserProfileResponse = z.infer<typeof userProfileResponseGuard>;
 export declare const userMfaVerificationResponseGuard: z.ZodArray<z.ZodObject<{
@@ -292,19 +346,19 @@ export declare const userMfaVerificationResponseGuard: z.ZodArray<z.ZodObject<{
     createdAt: z.ZodString;
     type: z.ZodNativeEnum<typeof MfaFactor>;
     agent: z.ZodOptional<z.ZodString>;
-    used: z.ZodOptional<z.ZodBoolean>;
+    remainCodes: z.ZodOptional<z.ZodNumber>;
 }, "strip", z.ZodTypeAny, {
-    agent?: string | undefined;
-    used?: boolean | undefined;
     type: MfaFactor;
     id: string;
     createdAt: string;
-}, {
     agent?: string | undefined;
-    used?: boolean | undefined;
+    remainCodes?: number | undefined;
+}, {
     type: MfaFactor;
     id: string;
     createdAt: string;
+    agent?: string | undefined;
+    remainCodes?: number | undefined;
 }>, "many">;
 export type UserMfaVerificationResponse = z.infer<typeof userMfaVerificationResponseGuard>;
 /** Internal read-only roles for user tenants. */
@@ -326,3 +380,92 @@ export declare enum AdminTenantRole {
 export declare enum PredefinedScope {
     All = "all"
 }
+/**
+ * A user that is featured for display. Usually used in a list of resources that are related to
+ * a group of users.
+ */
+export type FeaturedUser = Pick<User, 'id' | 'avatar' | 'name'>;
+/** The guard for {@link FeaturedUser}. */
+export declare const featuredUserGuard: z.ZodObject<Pick<{
+    tenantId: z.ZodType<string, z.ZodTypeDef, string>;
+    id: z.ZodType<string, z.ZodTypeDef, string>;
+    username: z.ZodType<string | null, z.ZodTypeDef, string | null>;
+    primaryEmail: z.ZodType<string | null, z.ZodTypeDef, string | null>;
+    primaryPhone: z.ZodType<string | null, z.ZodTypeDef, string | null>;
+    passwordEncrypted: z.ZodType<string | null, z.ZodTypeDef, string | null>;
+    passwordEncryptionMethod: z.ZodType<import("../db-entries/custom-types.js").UsersPasswordEncryptionMethod | null, z.ZodTypeDef, import("../db-entries/custom-types.js").UsersPasswordEncryptionMethod | null>;
+    name: z.ZodType<string | null, z.ZodTypeDef, string | null>;
+    avatar: z.ZodType<string | null, z.ZodTypeDef, string | null>;
+    applicationId: z.ZodType<string | null, z.ZodTypeDef, string | null>;
+    identities: z.ZodType<Record<string, {
+        userId: string;
+        details?: {} | undefined;
+    }>, z.ZodTypeDef, Record<string, {
+        userId: string;
+        details?: {} | undefined;
+    }>>;
+    customData: z.ZodType<import("../foundations/index.js").JsonObject, z.ZodTypeDef, import("../foundations/index.js").JsonObject>;
+    logtoConfig: z.ZodType<import("../foundations/index.js").JsonObject, z.ZodTypeDef, import("../foundations/index.js").JsonObject>;
+    mfaVerifications: z.ZodType<({
+        type: MfaFactor.TOTP;
+        id: string;
+        key: string;
+        createdAt: string;
+        lastUsedAt?: string | undefined;
+    } | {
+        type: MfaFactor.WebAuthn;
+        id: string;
+        createdAt: string;
+        credentialId: string;
+        publicKey: string;
+        counter: number;
+        agent: string;
+        transports?: ("usb" | "nfc" | "ble" | "internal" | "cable" | "hybrid" | "smart-card")[] | undefined;
+        lastUsedAt?: string | undefined;
+    } | {
+        type: MfaFactor.BackupCode;
+        id: string;
+        createdAt: string;
+        codes: {
+            code: string;
+            usedAt?: string | undefined;
+        }[];
+        lastUsedAt?: string | undefined;
+    })[], z.ZodTypeDef, ({
+        type: MfaFactor.TOTP;
+        id: string;
+        key: string;
+        createdAt: string;
+        lastUsedAt?: string | undefined;
+    } | {
+        type: MfaFactor.WebAuthn;
+        id: string;
+        createdAt: string;
+        credentialId: string;
+        publicKey: string;
+        counter: number;
+        agent: string;
+        transports?: ("usb" | "nfc" | "ble" | "internal" | "cable" | "hybrid" | "smart-card")[] | undefined;
+        lastUsedAt?: string | undefined;
+    } | {
+        type: MfaFactor.BackupCode;
+        id: string;
+        createdAt: string;
+        codes: {
+            code: string;
+            usedAt?: string | undefined;
+        }[];
+        lastUsedAt?: string | undefined;
+    })[]>;
+    isSuspended: z.ZodType<boolean, z.ZodTypeDef, boolean>;
+    lastSignInAt: z.ZodType<number | null, z.ZodTypeDef, number | null>;
+    createdAt: z.ZodType<number, z.ZodTypeDef, number>;
+}, "name" | "id" | "avatar">, "strip", z.ZodTypeAny, {
+    name: string | null;
+    id: string;
+    avatar: string | null;
+}, {
+    name: string | null;
+    id: string;
+    avatar: string | null;
+}>;

package/lib/types/user.js

@@ -1,6 +1,6 @@
 import { z } from 'zod';
 import { Users } from '../db-entries/index.js';
-import { MfaFactor } from '../foundations/jsonb-types.js';
+import { MfaFactor } from '../foundations/index.js';
 export const userInfoSelectFields = Object.freeze([
     'id',
     'username',
@@ -25,7 +25,7 @@ export const userMfaVerificationResponseGuard = z
     createdAt: z.string(),
     type: z.nativeEnum(MfaFactor),
     agent: z.string().optional(),
-    used: z.boolean().optional(),
+    remainCodes: z.number().optional(),
 })
     .array();
 /** Internal read-only roles for user tenants. */
@@ -50,3 +50,9 @@ export var PredefinedScope;
 (function (PredefinedScope) {
     PredefinedScope["All"] = "all";
 })(PredefinedScope || (PredefinedScope = {}));
+/** The guard for {@link FeaturedUser}. */
+export const featuredUserGuard = Users.guard.pick({
+    id: true,
+    avatar: true,
+    name: true,
+});

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@logto/schemas",
-  "version": "1.10.0",
+  "version": "1.10.1",
   "author": "Silverhand Inc. <contact@silverhand.io>",
   "license": "MPL-2.0",
   "type": "module",
@@ -30,12 +30,12 @@
     "@types/inquirer": "^9.0.0",
     "@types/jest": "^29.4.0",
     "@types/node": "^18.11.18",
-    "@types/pluralize": "^0.0.29",
+    "@types/pluralize": "^0.0.32",
     "camelcase": "^8.0.0",
     "chalk": "^5.0.0",
     "eslint": "^8.44.0",
     "jest": "^29.5.0",
-    "lint-staged": "^14.0.0",
+    "lint-staged": "^15.0.0",
     "pluralize": "^8.0.0",
     "prettier": "^3.0.0",
     "roarr": "^7.11.0",
@@ -64,16 +64,16 @@
   },
   "prettier": "@silverhand/eslint-config/.prettierrc",
   "dependencies": {
-    "@logto/connector-kit": "^1.1.1",
+    "@logto/connector-kit": "^2.0.0",
     "@logto/core-kit": "^2.2.0",
     "@logto/language-kit": "^1.0.0",
-    "@logto/phrases": "^1.5.0",
+    "@logto/phrases": "^1.6.0",
     "@logto/phrases-experience": "^1.3.1",
     "@logto/shared": "^3.0.0",
     "@withtyped/server": "^0.12.9"
   },
   "peerDependencies": {
-    "zod": "^3.20.2"
+    "zod": "^3.22.3"
   },
   "scripts": {
     "precommit": "lint-staged",

package/tables/logto_configs.sql

@@ -2,6 +2,6 @@ create table logto_configs (
   tenant_id varchar(21) not null
     references tenants (id) on update cascade on delete cascade,
   key varchar(256) not null,
-  value jsonb /* @use JsonObject */ not null default '{}'::jsonb,
+  value jsonb /* @use Json */ not null default '{}'::jsonb,
   primary key (tenant_id, key)
 );

package/tables/organization_role_scope_relations.sql

@@ -0,0 +1,12 @@
+/* init_order = 2 */
+
+/** The relations between organization roles and organization scopes. It indicates which organization scopes are available to which organization roles. */
+create table organization_role_scope_relations (
+  tenant_id varchar(21) not null
+    references tenants (id) on update cascade on delete cascade,
+  organization_role_id varchar(21) not null
+    references organization_roles (id) on update cascade on delete cascade,
+  organization_scope_id varchar(21) not null
+    references organization_scopes (id) on update cascade on delete cascade,
+  primary key (tenant_id, organization_role_id, organization_scope_id)
+);

package/tables/organization_role_user_relations.sql

@@ -0,0 +1,14 @@
+/* init_order = 2 */
+
+/** The relations between organizations, organization roles, and users. A relation means that a user has a role in an organization. */
+create table organization_role_user_relations (
+  tenant_id varchar(21) not null
+    references tenants (id) on update cascade on delete cascade,
+  organization_id varchar(21) not null
+    references organizations (id) on update cascade on delete cascade,
+  organization_role_id varchar(21) not null
+    references organization_roles (id) on update cascade on delete cascade,
+  user_id varchar(21) not null
+    references users (id) on update cascade on delete cascade,
+  primary key (tenant_id, organization_id, organization_role_id, user_id)
+);

package/tables/organization_roles.sql

@@ -0,0 +1,19 @@
+/* init_order = 1 */
+
+/** The roles defined by the organization template. */
+create table organization_roles (
+  tenant_id varchar(21) not null
+    references tenants (id) on update cascade on delete cascade,
+  /** The globally unique identifier of the organization role. */
+  id varchar(21) not null,
+  /** The organization role's name, unique within the organization template. */
+  name varchar(128) not null,
+  /** A brief description of the organization role. */
+  description varchar(256),
+  primary key (id),
+  constraint organization_roles__name
+    unique (tenant_id, name)
+);
+
+create index organization_roles__id
+  on organization_roles (tenant_id, id);