@logto/schemas 1.10.1 → 1.11.0

package/alterations/1.11.0-1699422979-add-sso-connector-id-col-to-user-sso-identities-table.ts

@@ -0,0 +1,18 @@
+import { sql } from 'slonik';
+
+import type { AlterationScript } from '../lib/types/alteration.js';
+
+const alteration: AlterationScript = {
+  up: async (pool) => {
+    await pool.query(sql`
+      alter table user_sso_identities add column sso_connector_id varchar(128) not null references sso_connectors (id) on update cascade on delete cascade;
+    `);
+  },
+  down: async (pool) => {
+    await pool.query(sql`
+      alter table user_sso_identities drop column sso_connector_id;
+    `);
+  },
+};
+
+export default alteration;

package/alterations/1.11.0-1699598903-remove-sso-only-column-in-sso-connectors-table.ts

@@ -0,0 +1,18 @@
+import { sql } from 'slonik';
+
+import type { AlterationScript } from '../lib/types/alteration.js';
+
+const alteration: AlterationScript = {
+  up: async (pool) => {
+    await pool.query(sql`
+      alter table sso_connectors drop column sso_only;
+    `);
+  },
+  down: async (pool) => {
+    await pool.query(sql`
+      alter table sso_connectors add column sso_only boolean not null default FALSE;
+    `);
+  },
+};
+
+export default alteration;

package/alterations-js/1.11.0-1699422979-add-sso-connector-id-col-to-user-sso-identities-table.d.ts

@@ -0,0 +1,3 @@
+import type { AlterationScript } from '../lib/types/alteration.js';
+declare const alteration: AlterationScript;
+export default alteration;

package/alterations-js/1.11.0-1699422979-add-sso-connector-id-col-to-user-sso-identities-table.js

@@ -0,0 +1,14 @@
+import { sql } from 'slonik';
+const alteration = {
+    up: async (pool) => {
+        await pool.query(sql `
+      alter table user_sso_identities add column sso_connector_id varchar(128) not null references sso_connectors (id) on update cascade on delete cascade;
+    `);
+    },
+    down: async (pool) => {
+        await pool.query(sql `
+      alter table user_sso_identities drop column sso_connector_id;
+    `);
+    },
+};
+export default alteration;

package/alterations-js/1.11.0-1699598903-remove-sso-only-column-in-sso-connectors-table.d.ts

@@ -0,0 +1,3 @@
+import type { AlterationScript } from '../lib/types/alteration.js';
+declare const alteration: AlterationScript;
+export default alteration;

package/alterations-js/1.11.0-1699598903-remove-sso-only-column-in-sso-connectors-table.js

@@ -0,0 +1,14 @@
+import { sql } from 'slonik';
+const alteration = {
+    up: async (pool) => {
+        await pool.query(sql `
+      alter table sso_connectors drop column sso_only;
+    `);
+    },
+    down: async (pool) => {
+        await pool.query(sql `
+      alter table sso_connectors add column sso_only boolean not null default FALSE;
+    `);
+    },
+};
+export default alteration;

package/lib/db-entries/sso-connector.d.ts

@@ -20,8 +20,6 @@ export type CreateSsoConnector = {
     branding?: SsoBranding;
     /** Determines whether to synchronize the user's profile on each login. */
     syncProfile?: boolean;
-    /** Determines whether SSO is the restricted sign-in method for users with the SSO registered email domains */
-    ssoOnly?: boolean;
     /** When the SSO connector was created. */
     createdAt?: number;
 };
@@ -41,10 +39,8 @@ export type SsoConnector = {
     branding: SsoBranding;
     /** Determines whether to synchronize the user's profile on each login. */
     syncProfile: boolean;
-    /** Determines whether SSO is the restricted sign-in method for users with the SSO registered email domains */
-    ssoOnly: boolean;
     /** When the SSO connector was created. */
     createdAt: number;
 };
-export type SsoConnectorKeys = 'tenantId' | 'id' | 'providerName' | 'connectorName' | 'config' | 'domains' | 'branding' | 'syncProfile' | 'ssoOnly' | 'createdAt';
+export type SsoConnectorKeys = 'tenantId' | 'id' | 'providerName' | 'connectorName' | 'config' | 'domains' | 'branding' | 'syncProfile' | 'createdAt';
 export declare const SsoConnectors: GeneratedSchema<SsoConnectorKeys, CreateSsoConnector, SsoConnector, 'sso_connectors', 'sso_connector'>;

package/lib/db-entries/sso-connector.js

@@ -10,7 +10,6 @@ const createGuard = z.object({
     domains: ssoDomainsGuard.optional(),
     branding: ssoBrandingGuard.optional(),
     syncProfile: z.boolean().optional(),
-    ssoOnly: z.boolean().optional(),
     createdAt: z.number().optional(),
 });
 const guard = z.object({
@@ -22,7 +21,6 @@ const guard = z.object({
     domains: ssoDomainsGuard,
     branding: ssoBrandingGuard,
     syncProfile: z.boolean(),
-    ssoOnly: z.boolean(),
     createdAt: z.number(),
 });
 export const SsoConnectors = Object.freeze({
@@ -37,7 +35,6 @@ export const SsoConnectors = Object.freeze({
         domains: 'domains',
         branding: 'branding',
         syncProfile: 'sync_profile',
-        ssoOnly: 'sso_only',
         createdAt: 'created_at',
     },
     fieldKeys: [
@@ -49,7 +46,6 @@ export const SsoConnectors = Object.freeze({
         'domains',
         'branding',
         'syncProfile',
-        'ssoOnly',
         'createdAt',
     ],
     createGuard,

package/lib/db-entries/user-sso-identity.d.ts

@@ -14,6 +14,7 @@ export type CreateUserSsoIdentity = {
     identityId: string;
     detail?: JsonObject;
     createdAt?: number;
+    ssoConnectorId: string;
 };
 export type UserSsoIdentity = {
     tenantId: string;
@@ -25,6 +26,7 @@ export type UserSsoIdentity = {
     identityId: string;
     detail: JsonObject;
     createdAt: number;
+    ssoConnectorId: string;
 };
-export type UserSsoIdentityKeys = 'tenantId' | 'id' | 'userId' | 'issuer' | 'identityId' | 'detail' | 'createdAt';
+export type UserSsoIdentityKeys = 'tenantId' | 'id' | 'userId' | 'issuer' | 'identityId' | 'detail' | 'createdAt' | 'ssoConnectorId';
 export declare const UserSsoIdentities: GeneratedSchema<UserSsoIdentityKeys, CreateUserSsoIdentity, UserSsoIdentity, 'user_sso_identities', 'user_sso_identity'>;

package/lib/db-entries/user-sso-identity.js

@@ -9,6 +9,7 @@ const createGuard = z.object({
     identityId: z.string().min(1).max(128),
     detail: jsonObjectGuard.optional(),
     createdAt: z.number().optional(),
+    ssoConnectorId: z.string().min(1).max(128),
 });
 const guard = z.object({
     tenantId: z.string().max(21),
@@ -18,6 +19,7 @@ const guard = z.object({
     identityId: z.string().min(1).max(128),
     detail: jsonObjectGuard,
     createdAt: z.number(),
+    ssoConnectorId: z.string().min(1).max(128),
 });
 export const UserSsoIdentities = Object.freeze({
     table: 'user_sso_identities',
@@ -30,6 +32,7 @@ export const UserSsoIdentities = Object.freeze({
         identityId: 'identity_id',
         detail: 'detail',
         createdAt: 'created_at',
+        ssoConnectorId: 'sso_connector_id',
     },
     fieldKeys: [
         'tenantId',
@@ -39,6 +42,7 @@ export const UserSsoIdentities = Object.freeze({
         'identityId',
         'detail',
         'createdAt',
+        'ssoConnectorId',
     ],
     createGuard,
     guard,

package/lib/foundations/jsonb-types/users.d.ts

@@ -3,23 +3,23 @@ import { MfaFactor } from './sign-in-experience.js';
 export declare const roleNamesGuard: z.ZodArray<z.ZodString, "many">;
 declare const identityGuard: z.ZodObject<{
     userId: z.ZodString;
-    details: z.ZodOptional<z.ZodObject<{}, "strip", z.ZodTypeAny, {}, {}>>;
+    details: z.ZodOptional<z.ZodRecord<z.ZodString, z.ZodUnknown>>;
 }, "strip", z.ZodTypeAny, {
     userId: string;
-    details?: {} | undefined;
+    details?: Record<string, unknown> | undefined;
 }, {
     userId: string;
-    details?: {} | undefined;
+    details?: Record<string, unknown> | undefined;
 }>;
 export declare const identitiesGuard: z.ZodRecord<z.ZodString, z.ZodObject<{
     userId: z.ZodString;
-    details: z.ZodOptional<z.ZodObject<{}, "strip", z.ZodTypeAny, {}, {}>>;
+    details: z.ZodOptional<z.ZodRecord<z.ZodString, z.ZodUnknown>>;
 }, "strip", z.ZodTypeAny, {
     userId: string;
-    details?: {} | undefined;
+    details?: Record<string, unknown> | undefined;
 }, {
     userId: string;
-    details?: {} | undefined;
+    details?: Record<string, unknown> | undefined;
 }>>;
 export type Identity = z.infer<typeof identityGuard>;
 export type Identities = z.infer<typeof identitiesGuard>;

package/lib/foundations/jsonb-types/users.js

@@ -3,7 +3,7 @@ import { MfaFactor } from './sign-in-experience.js';
 export const roleNamesGuard = z.string().array();
 const identityGuard = z.object({
     userId: z.string(),
-    details: z.object({}).optional(), // Connector's userinfo details, schemaless
+    details: z.record(z.unknown()).optional(), // Connector's userinfo details, schemaless
 });
 export const identitiesGuard = z.record(identityGuard);
 export const baseMfaVerification = {

package/lib/models/tenants.d.ts

@@ -1,10 +1,6 @@
 import type { InferModelType } from '@withtyped/server/model';
 import { z } from 'zod';
-export declare enum TenantTag {
-    Development = "development",
-    Staging = "staging",
-    Production = "production"
-}
+import { TenantTag } from '../types/tenant.js';
 export declare const Tenants: import("@withtyped/server/model").default<"tenants", {
     id: string;
     dbUser: string | null;

package/lib/models/tenants.js

@@ -1,11 +1,6 @@
 import { createModel } from '@withtyped/server/model';
 import { z } from 'zod';
-export var TenantTag;
-(function (TenantTag) {
-    TenantTag["Development"] = "development";
-    TenantTag["Staging"] = "staging";
-    TenantTag["Production"] = "production";
-})(TenantTag || (TenantTag = {}));
+import { TenantTag } from '../types/tenant.js';
 export const Tenants = createModel(
 /* Sql */ `
   /* init_order = 0 */

package/lib/types/index.d.ts

@@ -22,3 +22,4 @@ export * from './sentinel.js';
 export * from './mfa.js';
 export * from './organization.js';
 export * from './sso-connector.js';
+export * from './tenant.js';

package/lib/types/index.js

@@ -22,3 +22,4 @@ export * from './sentinel.js';
 export * from './mfa.js';
 export * from './organization.js';
 export * from './sso-connector.js';
+export * from './tenant.js';

package/lib/types/logto-config.d.ts

@@ -1,5 +1,6 @@
 import type { ZodType } from 'zod';
 import { z } from 'zod';
+import { TenantTag } from './tenant.js';
 /**
  * Logto OIDC signing key types, used mainly in REST API routes.
  */
@@ -45,12 +46,35 @@ export declare const logtoOidcConfigGuard: Readonly<{
 export declare const adminConsoleDataGuard: z.ZodObject<{
     signInExperienceCustomized: z.ZodBoolean;
     organizationCreated: z.ZodBoolean;
+    developmentTenantMigrationNotification: z.ZodOptional<z.ZodObject<{
+        isPaidTenant: z.ZodBoolean;
+        tag: z.ZodNativeEnum<typeof TenantTag>;
+        readAt: z.ZodOptional<z.ZodNumber>;
+    }, "strip", z.ZodTypeAny, {
+        isPaidTenant: boolean;
+        tag: TenantTag;
+        readAt?: number | undefined;
+    }, {
+        isPaidTenant: boolean;
+        tag: TenantTag;
+        readAt?: number | undefined;
+    }>>;
 }, "strip", z.ZodTypeAny, {
     signInExperienceCustomized: boolean;
     organizationCreated: boolean;
+    developmentTenantMigrationNotification?: {
+        isPaidTenant: boolean;
+        tag: TenantTag;
+        readAt?: number | undefined;
+    } | undefined;
 }, {
     signInExperienceCustomized: boolean;
     organizationCreated: boolean;
+    developmentTenantMigrationNotification?: {
+        isPaidTenant: boolean;
+        tag: TenantTag;
+        readAt?: number | undefined;
+    } | undefined;
 }>;
 export type AdminConsoleData = z.infer<typeof adminConsoleDataGuard>;
 export declare const cloudConnectionDataGuard: z.ZodObject<{

package/lib/types/logto-config.js

@@ -1,4 +1,5 @@
 import { z } from 'zod';
+import { TenantTag } from './tenant.js';
 /**
  * Logto OIDC signing key types, used mainly in REST API routes.
  */
@@ -36,6 +37,13 @@ export const logtoOidcConfigGuard = Object.freeze({
 export const adminConsoleDataGuard = z.object({
     signInExperienceCustomized: z.boolean(),
     organizationCreated: z.boolean(),
+    developmentTenantMigrationNotification: z
+        .object({
+        isPaidTenant: z.boolean(),
+        tag: z.nativeEnum(TenantTag),
+        readAt: z.number().optional(),
+    })
+        .optional(),
 });
 /* --- Logto tenant cloud connection config --- */
 export const cloudConnectionDataGuard = z.object({

package/lib/types/organization.d.ts

@@ -1,11 +1,15 @@
 import { z } from 'zod';
-import { type OrganizationRole, type Organization, type User } from '../db-entries/index.js';
-import { type FeaturedUser } from './user.js';
+import { type OrganizationRole, type Organization } from '../db-entries/index.js';
+import { type UserInfo, type FeaturedUser } from './user.js';
+/**
+ * The simplified organization scope entity that is returned for some endpoints.
+ */
+export type OrganizationScopeEntity = {
+    id: string;
+    name: string;
+};
 export type OrganizationRoleWithScopes = OrganizationRole & {
-    scopes: Array<{
-        id: string;
-        name: string;
-    }>;
+    scopes: OrganizationScopeEntity[];
 };
 export declare const organizationRoleWithScopesGuard: z.ZodType<OrganizationRoleWithScopes>;
 /**
@@ -29,7 +33,7 @@ export declare const organizationWithOrganizationRolesGuard: z.ZodType<Organizat
  * The user entity with the `organizationRoles` field that contains the roles of
  * the user in a specific organization.
  */
-export type UserWithOrganizationRoles = User & {
+export type UserWithOrganizationRoles = UserInfo & {
     /** The roles of the user in a specific organization. */
     organizationRoles: OrganizationRoleEntity[];
 };

package/lib/types/organization.js

@@ -1,5 +1,6 @@
 import { z } from 'zod';
-import { OrganizationRoles, Organizations, Users, } from '../db-entries/index.js';
+import { OrganizationRoles, Organizations, } from '../db-entries/index.js';
+import { userInfoGuard } from './user.js';
 export const organizationRoleWithScopesGuard = OrganizationRoles.guard.extend({
     scopes: z
         .object({
@@ -15,6 +16,6 @@ const organizationRoleEntityGuard = z.object({
 export const organizationWithOrganizationRolesGuard = Organizations.guard.extend({
     organizationRoles: organizationRoleEntityGuard.array(),
 });
-export const userWithOrganizationRolesGuard = Users.guard.extend({
+export const userWithOrganizationRolesGuard = userInfoGuard.extend({
     organizationRoles: organizationRoleEntityGuard.array(),
 });

package/lib/types/sso-connector.d.ts

@@ -19,3 +19,119 @@ export declare const ssoConnectorMetadataGuard: z.ZodObject<{
     darkLogo?: string | undefined;
 }>;
 export type SsoConnectorMetadata = z.infer<typeof ssoConnectorMetadataGuard>;
+declare const ssoConnectorFactoryDetailGuard: z.ZodObject<{
+    providerName: z.ZodString;
+    logo: z.ZodString;
+    description: z.ZodString;
+}, "strip", z.ZodTypeAny, {
+    logo: string;
+    description: string;
+    providerName: string;
+}, {
+    logo: string;
+    description: string;
+    providerName: string;
+}>;
+export type SsoConnectorFactoryDetail = z.infer<typeof ssoConnectorFactoryDetailGuard>;
+export declare const ssoConnectorFactoriesResponseGuard: z.ZodObject<{
+    standardConnectors: z.ZodArray<z.ZodObject<{
+        providerName: z.ZodString;
+        logo: z.ZodString;
+        description: z.ZodString;
+    }, "strip", z.ZodTypeAny, {
+        logo: string;
+        description: string;
+        providerName: string;
+    }, {
+        logo: string;
+        description: string;
+        providerName: string;
+    }>, "many">;
+    providerConnectors: z.ZodArray<z.ZodObject<{
+        providerName: z.ZodString;
+        logo: z.ZodString;
+        description: z.ZodString;
+    }, "strip", z.ZodTypeAny, {
+        logo: string;
+        description: string;
+        providerName: string;
+    }, {
+        logo: string;
+        description: string;
+        providerName: string;
+    }>, "many">;
+}, "strip", z.ZodTypeAny, {
+    standardConnectors: {
+        logo: string;
+        description: string;
+        providerName: string;
+    }[];
+    providerConnectors: {
+        logo: string;
+        description: string;
+        providerName: string;
+    }[];
+}, {
+    standardConnectors: {
+        logo: string;
+        description: string;
+        providerName: string;
+    }[];
+    providerConnectors: {
+        logo: string;
+        description: string;
+        providerName: string;
+    }[];
+}>;
+export type SsoConnectorFactoriesResponse = z.infer<typeof ssoConnectorFactoriesResponseGuard>;
+export declare const ssoConnectorWithProviderConfigGuard: z.ZodObject<{
+    id: z.ZodType<string, z.ZodTypeDef, string>;
+    tenantId: z.ZodType<string, z.ZodTypeDef, string>;
+    createdAt: z.ZodType<number, z.ZodTypeDef, number>;
+    syncProfile: z.ZodType<boolean, z.ZodTypeDef, boolean>;
+    config: z.ZodType<import("@withtyped/server").JsonObject, z.ZodTypeDef, import("@withtyped/server").JsonObject>;
+    domains: z.ZodType<string[], z.ZodTypeDef, string[]>;
+    branding: z.ZodType<{
+        logo?: string | undefined;
+        darkLogo?: string | undefined;
+    }, z.ZodTypeDef, {
+        logo?: string | undefined;
+        darkLogo?: string | undefined;
+    }>;
+    providerName: z.ZodType<string, z.ZodTypeDef, string>;
+    connectorName: z.ZodType<string, z.ZodTypeDef, string>;
+    providerLogo: z.ZodString;
+    providerConfig: z.ZodOptional<z.ZodRecord<z.ZodString, z.ZodUnknown>>;
+}, "strip", z.ZodTypeAny, {
+    id: string;
+    tenantId: string;
+    createdAt: number;
+    syncProfile: boolean;
+    config: import("@withtyped/server").JsonObject;
+    domains: string[];
+    branding: {
+        logo?: string | undefined;
+        darkLogo?: string | undefined;
+    };
+    providerName: string;
+    connectorName: string;
+    providerLogo: string;
+    providerConfig?: Record<string, unknown> | undefined;
+}, {
+    id: string;
+    tenantId: string;
+    createdAt: number;
+    syncProfile: boolean;
+    config: import("@withtyped/server").JsonObject;
+    domains: string[];
+    branding: {
+        logo?: string | undefined;
+        darkLogo?: string | undefined;
+    };
+    providerName: string;
+    connectorName: string;
+    providerLogo: string;
+    providerConfig?: Record<string, unknown> | undefined;
+}>;
+export type SsoConnectorWithProviderConfig = z.infer<typeof ssoConnectorWithProviderConfigGuard>;
+export {};

package/lib/types/sso-connector.js

@@ -1,4 +1,5 @@
 import { z } from 'zod';
+import { SsoConnectors } from '../db-entries/sso-connector.js';
 /**
  * SSO Connector data type that are returned to the experience client for sign-in use.
  */
@@ -8,3 +9,16 @@ export const ssoConnectorMetadataGuard = z.object({
     logo: z.string(),
     darkLogo: z.string().optional(),
 });
+const ssoConnectorFactoryDetailGuard = z.object({
+    providerName: z.string(),
+    logo: z.string(),
+    description: z.string(),
+});
+export const ssoConnectorFactoriesResponseGuard = z.object({
+    standardConnectors: z.array(ssoConnectorFactoryDetailGuard),
+    providerConnectors: z.array(ssoConnectorFactoryDetailGuard),
+});
+export const ssoConnectorWithProviderConfigGuard = SsoConnectors.guard.merge(z.object({
+    providerLogo: z.string(),
+    providerConfig: z.record(z.unknown()).optional(),
+}));

package/lib/types/tenant.d.ts

@@ -0,0 +1,5 @@
+export declare enum TenantTag {
+    Development = "development",
+    Staging = "staging",
+    Production = "production"
+}

package/lib/types/tenant.js

@@ -0,0 +1,6 @@
+export var TenantTag;
+(function (TenantTag) {
+    TenantTag["Development"] = "development";
+    TenantTag["Staging"] = "staging";
+    TenantTag["Production"] = "production";
+})(TenantTag || (TenantTag = {}));

package/lib/types/user.d.ts

@@ -15,10 +15,10 @@ export declare const userInfoGuard: z.ZodObject<Pick<{
     applicationId: z.ZodType<string | null, z.ZodTypeDef, string | null>;
     identities: z.ZodType<Record<string, {
         userId: string;
-        details?: {} | undefined;
+        details?: Record<string, unknown> | undefined;
     }>, z.ZodTypeDef, Record<string, {
         userId: string;
-        details?: {} | undefined;
+        details?: Record<string, unknown> | undefined;
     }>>;
     customData: z.ZodType<import("../foundations/index.js").JsonObject, z.ZodTypeDef, import("../foundations/index.js").JsonObject>;
     logtoConfig: z.ZodType<import("../foundations/index.js").JsonObject, z.ZodTypeDef, import("../foundations/index.js").JsonObject>;
@@ -90,7 +90,7 @@ export declare const userInfoGuard: z.ZodObject<Pick<{
     avatar: string | null;
     identities: Record<string, {
         userId: string;
-        details?: {} | undefined;
+        details?: Record<string, unknown> | undefined;
     }>;
     customData: import("../foundations/index.js").JsonObject;
     logtoConfig: import("../foundations/index.js").JsonObject;
@@ -136,7 +136,7 @@ export declare const userInfoGuard: z.ZodObject<Pick<{
     avatar: string | null;
     identities: Record<string, {
         userId: string;
-        details?: {} | undefined;
+        details?: Record<string, unknown> | undefined;
     }>;
     customData: import("../foundations/index.js").JsonObject;
     logtoConfig: import("../foundations/index.js").JsonObject;
@@ -184,10 +184,10 @@ export declare const userProfileResponseGuard: z.ZodObject<{
     avatar: z.ZodType<string | null, z.ZodTypeDef, string | null>;
     identities: z.ZodType<Record<string, {
         userId: string;
-        details?: {} | undefined;
+        details?: Record<string, unknown> | undefined;
     }>, z.ZodTypeDef, Record<string, {
         userId: string;
-        details?: {} | undefined;
+        details?: Record<string, unknown> | undefined;
     }>>;
     customData: z.ZodType<import("../foundations/index.js").JsonObject, z.ZodTypeDef, import("../foundations/index.js").JsonObject>;
     logtoConfig: z.ZodType<import("../foundations/index.js").JsonObject, z.ZodTypeDef, import("../foundations/index.js").JsonObject>;
@@ -259,7 +259,7 @@ export declare const userProfileResponseGuard: z.ZodObject<{
     avatar: string | null;
     identities: Record<string, {
         userId: string;
-        details?: {} | undefined;
+        details?: Record<string, unknown> | undefined;
     }>;
     customData: import("../foundations/index.js").JsonObject;
     logtoConfig: import("../foundations/index.js").JsonObject;
@@ -306,7 +306,7 @@ export declare const userProfileResponseGuard: z.ZodObject<{
     avatar: string | null;
     identities: Record<string, {
         userId: string;
-        details?: {} | undefined;
+        details?: Record<string, unknown> | undefined;
     }>;
     customData: import("../foundations/index.js").JsonObject;
     logtoConfig: import("../foundations/index.js").JsonObject;
@@ -399,10 +399,10 @@ export declare const featuredUserGuard: z.ZodObject<Pick<{
     applicationId: z.ZodType<string | null, z.ZodTypeDef, string | null>;
     identities: z.ZodType<Record<string, {
         userId: string;
-        details?: {} | undefined;
+        details?: Record<string, unknown> | undefined;
     }>, z.ZodTypeDef, Record<string, {
         userId: string;
-        details?: {} | undefined;
+        details?: Record<string, unknown> | undefined;
     }>>;
     customData: z.ZodType<import("../foundations/index.js").JsonObject, z.ZodTypeDef, import("../foundations/index.js").JsonObject>;
     logtoConfig: z.ZodType<import("../foundations/index.js").JsonObject, z.ZodTypeDef, import("../foundations/index.js").JsonObject>;

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@logto/schemas",
-  "version": "1.10.1",
+  "version": "1.11.0",
   "author": "Silverhand Inc. <contact@silverhand.io>",
   "license": "MPL-2.0",
   "type": "module",
@@ -67,13 +67,13 @@
     "@logto/connector-kit": "^2.0.0",
     "@logto/core-kit": "^2.2.0",
     "@logto/language-kit": "^1.0.0",
-    "@logto/phrases": "^1.6.0",
-    "@logto/phrases-experience": "^1.3.1",
+    "@logto/phrases": "^1.7.0",
+    "@logto/phrases-experience": "^1.4.0",
     "@logto/shared": "^3.0.0",
     "@withtyped/server": "^0.12.9"
   },
   "peerDependencies": {
-    "zod": "^3.22.3"
+    "zod": "^3.22.4"
   },
   "scripts": {
     "precommit": "lint-staged",

package/tables/sso_connectors.sql

@@ -1,3 +1,4 @@
+/* init_order = 1 */
 create table sso_connectors (
   tenant_id varchar(21) not null 
     references tenants (id) on update cascade on delete cascade,
@@ -15,8 +16,6 @@ create table sso_connectors (
   branding jsonb /* @use SsoBranding */ not null default '{}'::jsonb,
   /** Determines whether to synchronize the user's profile on each login. */
   sync_profile boolean not null default FALSE,
-  /** Determines whether SSO is the restricted sign-in method for users with the SSO registered email domains */
-  sso_only boolean not null default FALSE,
   /** When the SSO connector was created. */
   created_at timestamptz not null default(now()),
   primary key (id)

package/tables/user_sso_identities.sql

@@ -11,6 +11,9 @@ create table user_sso_identities (
   identity_id varchar(128) not null,
   detail jsonb /* @use JsonObject */ not null default '{}'::jsonb,
   created_at timestamp not null default(now()),
+  sso_connector_id
+    varchar(128) not null
+    references sso_connectors (id) on update cascade on delete cascade,
   primary key (id),
   constraint user_sso_identities__issuer__identity_id
     unique (tenant_id, issuer, identity_id)