npm - @logto/schemas - Versions diffs - 1.14.0 → 1.16.0 - Mend

@logto/schemas 1.14.0 → 1.16.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (357) hide show

package/tables/organization_role_resource_scope_relations.sql ADDED Viewed

@@ -0,0 +1,12 @@
+/* init_order = 3 */
+/** The relations between organization roles and resource scopes (normal scopes). It indicates which resource scopes are available to which organization roles. */
+create table organization_role_resource_scope_relations (
+  tenant_id varchar(21) not null
+    references tenants (id) on update cascade on delete cascade,
+  organization_role_id varchar(21) not null
+    references organization_roles (id) on update cascade on delete cascade,
+  scope_id varchar(21) not null
+    references scopes (id) on update cascade on delete cascade,
+  primary key (tenant_id, organization_role_id, scope_id)
+);

package/tables/organizations.sql CHANGED Viewed

@@ -10,6 +10,8 @@ create table organizations (
   name varchar(128) not null,
   /** A brief description of the organization. */
   description varchar(256),
+  /** Additional data associated with the organization. */
+  custom_data jsonb /* @use JsonObject */ not null default '{}'::jsonb,
   /** When the organization was created. */
   created_at timestamptz not null default(now()),
   primary key (id)

package/tables/scopes.sql CHANGED Viewed

@@ -7,7 +7,7 @@ create table scopes (
   resource_id varchar(21) not null
     references resources (id) on update cascade on delete cascade,
   name varchar(256) not null,
-  description text not null,
+  description text,
   created_at timestamptz not null default(now()),
   primary key (id),
   constraint scopes__resource_id_name

package/tables/users.sql CHANGED Viewed

@@ -1,6 +1,6 @@
 /* init_order = 1 */
-create type users_password_encryption_method as enum ('Argon2i');
+create type users_password_encryption_method as enum ('Argon2i', 'SHA1', 'SHA256', 'MD5', 'Bcrypt');
 create table users (
   tenant_id varchar(21) not null
@@ -12,7 +12,10 @@ create table users (
   password_encrypted varchar(128),
   password_encryption_method users_password_encryption_method,
   name varchar(128),
+  /** The URL that points to the user's profile picture. Mapped to OpenID Connect's `picture` claim. */
   avatar varchar(2048),
+  /** Additional OpenID Connect standard claims that are not included in user's properties. */
+  profile jsonb /* @use UserProfile */ not null default '{}'::jsonb,
   application_id varchar(21),
   identities jsonb /* @use Identities */ not null default '{}'::jsonb,
   custom_data jsonb /* @use JsonObject */ not null default '{}'::jsonb,
@@ -21,6 +24,7 @@ create table users (
   is_suspended boolean not null default false,
   last_sign_in_at timestamptz,
   created_at timestamptz not null default (now()),
+  updated_at timestamptz not null default (now()),
   primary key (id),
   constraint users__username
     unique (tenant_id, username),
@@ -35,3 +39,8 @@ create index users__id
 create index users__name
   on users (tenant_id, name);
+create trigger set_updated_at
+  before update on users
+  for each row
+  execute procedure set_updated_at();

package/lib/types/logto-config.d.ts DELETED Viewed

@@ -1,154 +0,0 @@
-import type { ZodType } from 'zod';
-import { z } from 'zod';
-/**
- * Logto OIDC signing key types, used mainly in REST API routes.
- */
-export declare enum LogtoOidcConfigKeyType {
-    PrivateKeys = "private-keys",
-    CookieKeys = "cookie-keys"
-}
-/**
- * Value maps to config key names in `logto_configs` table. Used mainly in DB SQL related scenarios.
- */
-export declare enum LogtoOidcConfigKey {
-    PrivateKeys = "oidc.privateKeys",
-    CookieKeys = "oidc.cookieKeys"
-}
-/**
- * Logto supported signing key algorithms for OIDC private keys that sign JWT tokens.
- */
-export declare enum SupportedSigningKeyAlgorithm {
-    RSA = "RSA",
-    EC = "EC"
-}
-export declare const oidcConfigKeyGuard: z.ZodObject<{
-    id: z.ZodString;
-    value: z.ZodString;
-    createdAt: z.ZodNumber;
-}, "strip", z.ZodTypeAny, {
-    value: string;
-    id: string;
-    createdAt: number;
-}, {
-    value: string;
-    id: string;
-    createdAt: number;
-}>;
-export type OidcConfigKey = z.infer<typeof oidcConfigKeyGuard>;
-export type LogtoOidcConfigType = {
-    [LogtoOidcConfigKey.PrivateKeys]: OidcConfigKey[];
-    [LogtoOidcConfigKey.CookieKeys]: OidcConfigKey[];
-};
-export declare const logtoOidcConfigGuard: Readonly<{
-    [key in LogtoOidcConfigKey]: ZodType<LogtoOidcConfigType[key]>;
-}>;
-export declare const adminConsoleDataGuard: z.ZodObject<{
-    signInExperienceCustomized: z.ZodBoolean;
-    organizationCreated: z.ZodBoolean;
-    developmentTenantMigrationNotification: z.ZodOptional<z.ZodObject<{
-        isPaidTenant: z.ZodBoolean;
-        /**
-         * Tag is used to store the original tenant tag before dev tenant migration.
-         * This field is only used for DB rollback and because the `TenantTag` may change, so we don't guard it as the `TenantTag` type.
-         */
-        tag: z.ZodString;
-        readAt: z.ZodOptional<z.ZodNumber>;
-    }, "strip", z.ZodTypeAny, {
-        isPaidTenant: boolean;
-        tag: string;
-        readAt?: number | undefined;
-    }, {
-        isPaidTenant: boolean;
-        tag: string;
-        readAt?: number | undefined;
-    }>>;
-    checkedChargeNotification: z.ZodOptional<z.ZodObject<{
-        token: z.ZodOptional<z.ZodBoolean>;
-        apiResource: z.ZodOptional<z.ZodBoolean>;
-        machineToMachineApp: z.ZodOptional<z.ZodBoolean>;
-    }, "strip", z.ZodTypeAny, {
-        token?: boolean | undefined;
-        apiResource?: boolean | undefined;
-        machineToMachineApp?: boolean | undefined;
-    }, {
-        token?: boolean | undefined;
-        apiResource?: boolean | undefined;
-        machineToMachineApp?: boolean | undefined;
-    }>>;
-}, "strip", z.ZodTypeAny, {
-    signInExperienceCustomized: boolean;
-    organizationCreated: boolean;
-    developmentTenantMigrationNotification?: {
-        isPaidTenant: boolean;
-        tag: string;
-        readAt?: number | undefined;
-    } | undefined;
-    checkedChargeNotification?: {
-        token?: boolean | undefined;
-        apiResource?: boolean | undefined;
-        machineToMachineApp?: boolean | undefined;
-    } | undefined;
-}, {
-    signInExperienceCustomized: boolean;
-    organizationCreated: boolean;
-    developmentTenantMigrationNotification?: {
-        isPaidTenant: boolean;
-        tag: string;
-        readAt?: number | undefined;
-    } | undefined;
-    checkedChargeNotification?: {
-        token?: boolean | undefined;
-        apiResource?: boolean | undefined;
-        machineToMachineApp?: boolean | undefined;
-    } | undefined;
-}>;
-export type AdminConsoleData = z.infer<typeof adminConsoleDataGuard>;
-export declare const cloudConnectionDataGuard: z.ZodObject<{
-    appId: z.ZodString;
-    appSecret: z.ZodString;
-    resource: z.ZodString;
-}, "strip", z.ZodTypeAny, {
-    resource: string;
-    appId: string;
-    appSecret: string;
-}, {
-    resource: string;
-    appId: string;
-    appSecret: string;
-}>;
-export type CloudConnectionData = z.infer<typeof cloudConnectionDataGuard>;
-export declare enum LogtoTenantConfigKey {
-    AdminConsole = "adminConsole",
-    CloudConnection = "cloudConnection",
-    /** The URL to redirect when session not found in Sign-in Experience. */
-    SessionNotFoundRedirectUrl = "sessionNotFoundRedirectUrl"
-}
-export type LogtoTenantConfigType = {
-    [LogtoTenantConfigKey.AdminConsole]: AdminConsoleData;
-    [LogtoTenantConfigKey.CloudConnection]: CloudConnectionData;
-    [LogtoTenantConfigKey.SessionNotFoundRedirectUrl]: {
-        url: string;
-    };
-};
-export declare const logtoTenantConfigGuard: Readonly<{
-    [key in LogtoTenantConfigKey]: ZodType<LogtoTenantConfigType[key]>;
-}>;
-export type LogtoConfigKey = LogtoOidcConfigKey | LogtoTenantConfigKey;
-export type LogtoConfigType = LogtoOidcConfigType | LogtoTenantConfigType;
-export type LogtoConfigGuard = typeof logtoOidcConfigGuard & typeof logtoTenantConfigGuard;
-export declare const logtoConfigKeys: readonly LogtoConfigKey[];
-export declare const logtoConfigGuards: LogtoConfigGuard;
-export declare const oidcConfigKeysResponseGuard: z.ZodObject<{
-    id: z.ZodString;
-    createdAt: z.ZodNumber;
-    signingKeyAlgorithm: z.ZodOptional<z.ZodNativeEnum<typeof SupportedSigningKeyAlgorithm>>;
-}, "strip", z.ZodTypeAny, {
-    id: string;
-    createdAt: number;
-    signingKeyAlgorithm?: SupportedSigningKeyAlgorithm | undefined;
-}, {
-    id: string;
-    createdAt: number;
-    signingKeyAlgorithm?: SupportedSigningKeyAlgorithm | undefined;
-}>;
-export type OidcConfigKeysResponse = z.infer<typeof oidcConfigKeysResponseGuard>;