@logto/schemas 1.26.0 → 1.28.0

package/alterations/1.27.0-1744013256-add-sentinel-policy-column-to-sie-table.ts

@@ -0,0 +1,20 @@
+import { sql } from '@silverhand/slonik';
+
+import type { AlterationScript } from '../lib/types/alteration.js';
+
+const alteration: AlterationScript = {
+  up: async (pool) => {
+    await pool.query(sql`
+      alter table sign_in_experiences
+        add column sentinel_policy jsonb not null default '{}'::jsonb;
+    `);
+  },
+  down: async (pool) => {
+    await pool.query(sql`
+      alter table sign_in_experiences
+        drop column sentinel_policy;
+    `);
+  },
+};
+
+export default alteration;

package/alterations/1.27.0-1744357867-add-sentinel-activities-hash-index.ts

@@ -0,0 +1,19 @@
+import { sql } from '@silverhand/slonik';
+
+import type { AlterationScript } from '../lib/types/alteration.js';
+
+const alteration: AlterationScript = {
+  up: async (pool) => {
+    await pool.query(sql`
+      create index sentinel_activities__target_type_target_hash
+        on sentinel_activities (tenant_id, target_type, target_hash);
+    `);
+  },
+  down: async (pool) => {
+    await pool.query(sql`
+      drop index sentinel_activities__target_type_target_hash;
+    `);
+  },
+};
+
+export default alteration;

package/alterations/1.28.0-1745735646-add-email-blocklist-policy-column-to-sie-table.ts

@@ -0,0 +1,20 @@
+import { sql } from '@silverhand/slonik';
+
+import type { AlterationScript } from '../lib/types/alteration.js';
+
+const alteration: AlterationScript = {
+  up: async (pool) => {
+    await pool.query(sql`
+      alter table sign_in_experiences
+        add column email_blocklist_policy jsonb not null default '{}'::jsonb;
+    `);
+  },
+  down: async (pool) => {
+    await pool.query(sql`
+      alter table sign_in_experiences
+        drop column email_blocklist_policy;
+    `);
+  },
+};
+
+export default alteration;

package/alterations-js/1.27.0-1744013256-add-sentinel-policy-column-to-sie-table.js

@@ -0,0 +1,16 @@
+import { sql } from '@silverhand/slonik';
+const alteration = {
+    up: async (pool) => {
+        await pool.query(sql `
+      alter table sign_in_experiences
+        add column sentinel_policy jsonb not null default '{}'::jsonb;
+    `);
+    },
+    down: async (pool) => {
+        await pool.query(sql `
+      alter table sign_in_experiences
+        drop column sentinel_policy;
+    `);
+    },
+};
+export default alteration;

package/alterations-js/1.27.0-1744357867-add-sentinel-activities-hash-index.js

@@ -0,0 +1,15 @@
+import { sql } from '@silverhand/slonik';
+const alteration = {
+    up: async (pool) => {
+        await pool.query(sql `
+      create index sentinel_activities__target_type_target_hash
+        on sentinel_activities (tenant_id, target_type, target_hash);
+    `);
+    },
+    down: async (pool) => {
+        await pool.query(sql `
+      drop index sentinel_activities__target_type_target_hash;
+    `);
+    },
+};
+export default alteration;

package/alterations-js/1.28.0-1745735646-add-email-blocklist-policy-column-to-sie-table.js

@@ -0,0 +1,16 @@
+import { sql } from '@silverhand/slonik';
+const alteration = {
+    up: async (pool) => {
+        await pool.query(sql `
+      alter table sign_in_experiences
+        add column email_blocklist_policy jsonb not null default '{}'::jsonb;
+    `);
+    },
+    down: async (pool) => {
+        await pool.query(sql `
+      alter table sign_in_experiences
+        drop column email_blocklist_policy;
+    `);
+    },
+};
+export default alteration;

package/lib/consts/experience.d.ts

@@ -8,6 +8,6 @@ export declare const experience: Readonly<{
         readonly identifierSignIn: "identifier-sign-in";
         readonly identifierRegister: "identifier-register";
         readonly switchAccount: "switch-account";
-        readonly error: "error";
+        readonly oneTimeToken: "one-time-token";
     }>;
 }>;

package/lib/consts/experience.js

@@ -7,7 +7,7 @@ const routes = Object.freeze({
     identifierSignIn: 'identifier-sign-in',
     identifierRegister: 'identifier-register',
     switchAccount: 'switch-account',
-    error: 'error',
+    oneTimeToken: 'one-time-token',
 });
 export const experience = Object.freeze({
     routes,

package/lib/consts/index.d.ts

@@ -5,3 +5,4 @@ export * from './date.js';
 export * from './tenant.js';
 export * from './subscriptions.js';
 export * from './experience.js';
+export * from './sentinel.js';

package/lib/consts/index.js

@@ -5,3 +5,4 @@ export * from './date.js';
 export * from './tenant.js';
 export * from './subscriptions.js';
 export * from './experience.js';
+export * from './sentinel.js';

package/lib/consts/sentinel.d.ts

@@ -0,0 +1,10 @@
+/**
+ * The default policy for this sentinel.
+ *
+ * - `maxAttempts`: 100
+ * - `lockoutDuration`: 60 minutes
+ */
+export declare const defaultSentinelPolicy: Readonly<{
+    maxAttempts: number;
+    lockoutDuration: number;
+}>;

package/lib/consts/sentinel.js

@@ -0,0 +1,10 @@
+/**
+ * The default policy for this sentinel.
+ *
+ * - `maxAttempts`: 100
+ * - `lockoutDuration`: 60 minutes
+ */
+export const defaultSentinelPolicy = Object.freeze({
+    maxAttempts: 100,
+    lockoutDuration: 60,
+});

package/lib/db-entries/sign-in-experience.d.ts

@@ -1,4 +1,4 @@
-import { Color, Branding, LanguageInfo, SignIn, SignUp, SocialSignIn, ConnectorTargets, CustomContent, CustomUiAssets, PartialPasswordPolicy, Mfa, CaptchaPolicy, GeneratedSchema } from './../foundations/index.js';
+import { Color, Branding, LanguageInfo, SignIn, SignUp, SocialSignIn, ConnectorTargets, CustomContent, CustomUiAssets, PartialPasswordPolicy, Mfa, CaptchaPolicy, SentinelPolicy, EmailBlocklistPolicy, GeneratedSchema } from './../foundations/index.js';
 import { AgreeToTermsPolicy, SignInMode } from './custom-types.js';
 /**
  *
@@ -30,6 +30,8 @@ export type CreateSignInExperience = {
     supportWebsiteUrl?: string | null;
     unknownSessionRedirectUrl?: string | null;
     captchaPolicy?: CaptchaPolicy;
+    sentinelPolicy?: SentinelPolicy;
+    emailBlocklistPolicy?: EmailBlocklistPolicy;
 };
 export type SignInExperience = {
     tenantId: string;
@@ -56,6 +58,8 @@ export type SignInExperience = {
     supportWebsiteUrl: string | null;
     unknownSessionRedirectUrl: string | null;
     captchaPolicy: CaptchaPolicy;
+    sentinelPolicy: SentinelPolicy;
+    emailBlocklistPolicy: EmailBlocklistPolicy;
 };
-export type SignInExperienceKeys = 'tenantId' | 'id' | 'color' | 'branding' | 'languageInfo' | 'termsOfUseUrl' | 'privacyPolicyUrl' | 'agreeToTermsPolicy' | 'signIn' | 'signUp' | 'socialSignIn' | 'socialSignInConnectorTargets' | 'signInMode' | 'customCss' | 'customContent' | 'customUiAssets' | 'passwordPolicy' | 'mfa' | 'singleSignOnEnabled' | 'supportEmail' | 'supportWebsiteUrl' | 'unknownSessionRedirectUrl' | 'captchaPolicy';
+export type SignInExperienceKeys = 'tenantId' | 'id' | 'color' | 'branding' | 'languageInfo' | 'termsOfUseUrl' | 'privacyPolicyUrl' | 'agreeToTermsPolicy' | 'signIn' | 'signUp' | 'socialSignIn' | 'socialSignInConnectorTargets' | 'signInMode' | 'customCss' | 'customContent' | 'customUiAssets' | 'passwordPolicy' | 'mfa' | 'singleSignOnEnabled' | 'supportEmail' | 'supportWebsiteUrl' | 'unknownSessionRedirectUrl' | 'captchaPolicy' | 'sentinelPolicy' | 'emailBlocklistPolicy';
 export declare const SignInExperiences: GeneratedSchema<SignInExperienceKeys, CreateSignInExperience, SignInExperience, 'sign_in_experiences', 'sign_in_experience'>;

package/lib/db-entries/sign-in-experience.js

@@ -1,6 +1,6 @@
 // THIS IS AN AUTOGENERATED FILE. DO NOT EDIT THIS FILE DIRECTLY.
 import { z } from 'zod';
-import { colorGuard, brandingGuard, languageInfoGuard, signInGuard, signUpGuard, socialSignInGuard, connectorTargetsGuard, customContentGuard, customUiAssetsGuard, partialPasswordPolicyGuard, mfaGuard, captchaPolicyGuard } from './../foundations/index.js';
+import { colorGuard, brandingGuard, languageInfoGuard, signInGuard, signUpGuard, socialSignInGuard, connectorTargetsGuard, customContentGuard, customUiAssetsGuard, partialPasswordPolicyGuard, mfaGuard, captchaPolicyGuard, sentinelPolicyGuard, emailBlocklistPolicyGuard } from './../foundations/index.js';
 import { AgreeToTermsPolicy, SignInMode } from './custom-types.js';
 const createGuard = z.object({
     tenantId: z.string().max(21).optional(),
@@ -26,6 +26,8 @@ const createGuard = z.object({
     supportWebsiteUrl: z.string().nullable().optional(),
     unknownSessionRedirectUrl: z.string().nullable().optional(),
     captchaPolicy: captchaPolicyGuard.optional(),
+    sentinelPolicy: sentinelPolicyGuard.optional(),
+    emailBlocklistPolicy: emailBlocklistPolicyGuard.optional(),
 });
 const guard = z.object({
     tenantId: z.string().max(21),
@@ -51,6 +53,8 @@ const guard = z.object({
     supportWebsiteUrl: z.string().nullable(),
     unknownSessionRedirectUrl: z.string().nullable(),
     captchaPolicy: captchaPolicyGuard,
+    sentinelPolicy: sentinelPolicyGuard,
+    emailBlocklistPolicy: emailBlocklistPolicyGuard,
 });
 export const SignInExperiences = Object.freeze({
     table: 'sign_in_experiences',
@@ -79,6 +83,8 @@ export const SignInExperiences = Object.freeze({
         supportWebsiteUrl: 'support_website_url',
         unknownSessionRedirectUrl: 'unknown_session_redirect_url',
         captchaPolicy: 'captcha_policy',
+        sentinelPolicy: 'sentinel_policy',
+        emailBlocklistPolicy: 'email_blocklist_policy',
     },
     fieldKeys: [
         'tenantId',
@@ -104,6 +110,8 @@ export const SignInExperiences = Object.freeze({
         'supportWebsiteUrl',
         'unknownSessionRedirectUrl',
         'captchaPolicy',
+        'sentinelPolicy',
+        'emailBlocklistPolicy',
     ],
     createGuard,
     guard,

package/lib/foundations/jsonb-types/applications.d.ts

@@ -8,12 +8,12 @@ export declare const customDomainGuard: z.ZodObject<{
         type: z.ZodString;
         value: z.ZodString;
     }, "strip", z.ZodTypeAny, {
-        type: string;
         value: string;
+        type: string;
         name: string;
     }, {
-        type: string;
         value: string;
+        type: string;
         name: string;
     }>, "many">;
     cloudflareData: z.ZodNullable<z.ZodObject<{
@@ -66,8 +66,8 @@ export declare const customDomainGuard: z.ZodObject<{
     domain: string;
     errorMessage: string | null;
     dnsRecords: {
-        type: string;
         value: string;
+        type: string;
         name: string;
     }[];
     cloudflareData: {
@@ -86,8 +86,8 @@ export declare const customDomainGuard: z.ZodObject<{
     domain: string;
     errorMessage: string | null;
     dnsRecords: {
-        type: string;
         value: string;
+        type: string;
         name: string;
     }[];
     cloudflareData: {
@@ -111,12 +111,12 @@ export declare const customDomainsGuard: z.ZodArray<z.ZodObject<{
         type: z.ZodString;
         value: z.ZodString;
     }, "strip", z.ZodTypeAny, {
-        type: string;
         value: string;
+        type: string;
         name: string;
     }, {
-        type: string;
         value: string;
+        type: string;
         name: string;
     }>, "many">;
     cloudflareData: z.ZodNullable<z.ZodObject<{
@@ -169,8 +169,8 @@ export declare const customDomainsGuard: z.ZodArray<z.ZodObject<{
     domain: string;
     errorMessage: string | null;
     dnsRecords: {
-        type: string;
         value: string;
+        type: string;
         name: string;
     }[];
     cloudflareData: {
@@ -189,8 +189,8 @@ export declare const customDomainsGuard: z.ZodArray<z.ZodObject<{
     domain: string;
     errorMessage: string | null;
     dnsRecords: {
-        type: string;
         value: string;
+        type: string;
         name: string;
     }[];
     cloudflareData: {
@@ -226,12 +226,12 @@ export declare const protectedAppMetadataGuard: z.ZodObject<{
             type: z.ZodString;
             value: z.ZodString;
         }, "strip", z.ZodTypeAny, {
-            type: string;
             value: string;
+            type: string;
             name: string;
         }, {
-            type: string;
             value: string;
+            type: string;
             name: string;
         }>, "many">;
         cloudflareData: z.ZodNullable<z.ZodObject<{
@@ -284,8 +284,8 @@ export declare const protectedAppMetadataGuard: z.ZodObject<{
         domain: string;
         errorMessage: string | null;
         dnsRecords: {
-            type: string;
             value: string;
+            type: string;
             name: string;
         }[];
         cloudflareData: {
@@ -304,8 +304,8 @@ export declare const protectedAppMetadataGuard: z.ZodObject<{
         domain: string;
         errorMessage: string | null;
         dnsRecords: {
-            type: string;
             value: string;
+            type: string;
             name: string;
         }[];
         cloudflareData: {
@@ -332,8 +332,8 @@ export declare const protectedAppMetadataGuard: z.ZodObject<{
         domain: string;
         errorMessage: string | null;
         dnsRecords: {
-            type: string;
             value: string;
+            type: string;
             name: string;
         }[];
         cloudflareData: {
@@ -360,8 +360,8 @@ export declare const protectedAppMetadataGuard: z.ZodObject<{
         domain: string;
         errorMessage: string | null;
         dnsRecords: {
-            type: string;
             value: string;
+            type: string;
             name: string;
         }[];
         cloudflareData: {

package/lib/foundations/jsonb-types/captcha.d.ts

@@ -16,6 +16,7 @@ export declare const turnstileConfigGuard: z.ZodObject<{
     siteKey: string;
     secretKey: string;
 }>;
+export type TurnstileConfig = z.infer<typeof turnstileConfigGuard>;
 export declare const recaptchaEnterpriseConfigGuard: z.ZodObject<{
     type: z.ZodLiteral<CaptchaType.RecaptchaEnterprise>;
     siteKey: z.ZodString;
@@ -32,6 +33,7 @@ export declare const recaptchaEnterpriseConfigGuard: z.ZodObject<{
     secretKey: string;
     projectId: string;
 }>;
+export type RecaptchaEnterpriseConfig = z.infer<typeof recaptchaEnterpriseConfigGuard>;
 export declare const captchaConfigGuard: z.ZodDiscriminatedUnion<"type", [z.ZodObject<{
     type: z.ZodLiteral<CaptchaType.Turnstile>;
     siteKey: z.ZodString;

package/lib/foundations/jsonb-types/custom-domain.d.ts

@@ -4,12 +4,12 @@ export declare const domainDnsRecordGuard: z.ZodObject<{
     type: z.ZodString;
     value: z.ZodString;
 }, "strip", z.ZodTypeAny, {
-    type: string;
     value: string;
+    type: string;
     name: string;
 }, {
-    type: string;
     value: string;
+    type: string;
     name: string;
 }>;
 export type DomainDnsRecord = z.infer<typeof domainDnsRecordGuard>;
@@ -18,12 +18,12 @@ export declare const domainDnsRecordsGuard: z.ZodArray<z.ZodObject<{
     type: z.ZodString;
     value: z.ZodString;
 }, "strip", z.ZodTypeAny, {
-    type: string;
     value: string;
+    type: string;
     name: string;
 }, {
-    type: string;
     value: string;
+    type: string;
     name: string;
 }>, "many">;
 export type DomainDnsRecords = z.infer<typeof domainDnsRecordsGuard>;

package/lib/foundations/jsonb-types/sign-in-experience.d.ts

@@ -291,4 +291,57 @@ export declare const captchaPolicyGuard: z.ZodObject<{
     enabled?: boolean | undefined;
 }>;
 export type CaptchaPolicy = z.infer<typeof captchaPolicyGuard>;
+export type SentinelPolicy = {
+    /**
+     * Maximum failed attempts allowed in one hour before blocking the user.
+     */
+    maxAttempts?: number;
+    /**
+     * Lockout duration in minutes after exceeding the maximum failed attempts.
+     */
+    lockoutDuration?: number;
+};
+export declare const sentinelPolicyGuard: z.ZodObject<{
+    maxAttempts: z.ZodOptional<z.ZodNumber>;
+    lockoutDuration: z.ZodOptional<z.ZodNumber>;
+}, "strip", z.ZodTypeAny, {
+    maxAttempts?: number | undefined;
+    lockoutDuration?: number | undefined;
+}, {
+    maxAttempts?: number | undefined;
+    lockoutDuration?: number | undefined;
+}>;
+/**
+ * Email blocklist policy.
+ *
+ * @remarks
+ * This policy is used to block specific email addresses or domains from signing up.
+ */
+export type EmailBlocklistPolicy = {
+    blockDisposableAddresses?: boolean;
+    blockSubaddressing?: boolean;
+    /**
+     * Custom blocklist of email addresses or domains.
+     *
+     * @example
+     * Email address: abc@xyx.com
+     *
+     * @example
+     * Domain name: @xyz.com
+     */
+    customBlocklist?: string[];
+};
+export declare const emailBlocklistPolicyGuard: z.ZodObject<{
+    blockDisposableAddresses: z.ZodOptional<z.ZodBoolean>;
+    blockSubaddressing: z.ZodOptional<z.ZodBoolean>;
+    customBlocklist: z.ZodOptional<z.ZodArray<z.ZodString, "many">>;
+}, "strip", z.ZodTypeAny, {
+    blockDisposableAddresses?: boolean | undefined;
+    blockSubaddressing?: boolean | undefined;
+    customBlocklist?: string[] | undefined;
+}, {
+    blockDisposableAddresses?: boolean | undefined;
+    blockSubaddressing?: boolean | undefined;
+    customBlocklist?: string[] | undefined;
+}>;
 export {};

package/lib/foundations/jsonb-types/sign-in-experience.js

@@ -106,3 +106,12 @@ export const customUiAssetsGuard = z.object({
 export const captchaPolicyGuard = z.object({
     enabled: z.boolean().optional(),
 });
+export const sentinelPolicyGuard = z.object({
+    maxAttempts: z.number().optional(),
+    lockoutDuration: z.number().optional(),
+});
+export const emailBlocklistPolicyGuard = z.object({
+    blockDisposableAddresses: z.boolean().optional(),
+    blockSubaddressing: z.boolean().optional(),
+    customBlocklist: z.string().array().optional(),
+});

package/lib/types/application.d.ts

@@ -47,8 +47,8 @@ export declare const featuredApplicationGuard: z.ZodObject<Pick<{
             domain: string;
             errorMessage: string | null;
             dnsRecords: {
-                type: string;
                 value: string;
+                type: string;
                 name: string;
             }[];
             cloudflareData: {
@@ -75,8 +75,8 @@ export declare const featuredApplicationGuard: z.ZodObject<Pick<{
             domain: string;
             errorMessage: string | null;
             dnsRecords: {
-                type: string;
                 value: string;
+                type: string;
                 name: string;
             }[];
             cloudflareData: {
@@ -104,9 +104,7 @@ export declare const featuredApplicationGuard: z.ZodObject<Pick<{
     name: string;
     id: string;
 }>;
-export declare const applicationCreateGuard: z.ZodObject<z.objectUtil.extendShape<{
-    type: z.ZodOptional<z.ZodType<import("../db-entries/custom-types.js").ApplicationType, z.ZodTypeDef, import("../db-entries/custom-types.js").ApplicationType>>;
-    name: z.ZodOptional<z.ZodType<string, z.ZodTypeDef, string>>;
+export declare const applicationCreateGuard: z.ZodObject<{
     customData: z.ZodOptional<z.ZodOptional<z.ZodType<import("@withtyped/server").JsonObject, z.ZodTypeDef, import("@withtyped/server").JsonObject>>>;
     description: z.ZodOptional<z.ZodOptional<z.ZodType<string | null, z.ZodTypeDef, string | null>>>;
     oidcClientMetadata: z.ZodOptional<z.ZodType<import("../index.js").OidcClientMetadata, z.ZodTypeDef, import("../index.js").OidcClientMetadata>>;
@@ -139,8 +137,8 @@ export declare const applicationCreateGuard: z.ZodObject<z.objectUtil.extendShap
             domain: string;
             errorMessage: string | null;
             dnsRecords: {
-                type: string;
                 value: string;
+                type: string;
                 name: string;
             }[];
             cloudflareData: {
@@ -167,8 +165,8 @@ export declare const applicationCreateGuard: z.ZodObject<z.objectUtil.extendShap
             domain: string;
             errorMessage: string | null;
             dnsRecords: {
-                type: string;
                 value: string;
+                type: string;
                 name: string;
             }[];
             cloudflareData: {
@@ -185,92 +183,10 @@ export declare const applicationCreateGuard: z.ZodObject<z.objectUtil.extendShap
         }[] | undefined;
     } | null>>>;
     isThirdParty: z.ZodOptional<z.ZodOptional<z.ZodType<boolean, z.ZodTypeDef, boolean>>>;
-}, Pick<{
-    tenantId: z.ZodOptional<z.ZodType<string, z.ZodTypeDef, string>>;
-    id: z.ZodType<string, z.ZodTypeDef, string>;
-    name: z.ZodType<string, z.ZodTypeDef, string>;
-    secret: z.ZodType<string, z.ZodTypeDef, string>;
-    description: z.ZodOptional<z.ZodType<string | null, z.ZodTypeDef, string | null>>;
+} & {
     type: z.ZodType<import("../db-entries/custom-types.js").ApplicationType, z.ZodTypeDef, import("../db-entries/custom-types.js").ApplicationType>;
-    oidcClientMetadata: z.ZodType<import("../index.js").OidcClientMetadata, z.ZodTypeDef, import("../index.js").OidcClientMetadata>;
-    customClientMetadata: z.ZodOptional<z.ZodType<{
-        corsAllowedOrigins?: string[] | undefined;
-        idTokenTtl?: number | undefined;
-        refreshTokenTtl?: number | undefined;
-        refreshTokenTtlInDays?: number | undefined;
-        tenantId?: string | undefined;
-        alwaysIssueRefreshToken?: boolean | undefined;
-        rotateRefreshToken?: boolean | undefined;
-    }, z.ZodTypeDef, {
-        corsAllowedOrigins?: string[] | undefined;
-        idTokenTtl?: number | undefined;
-        refreshTokenTtl?: number | undefined;
-        refreshTokenTtlInDays?: number | undefined;
-        tenantId?: string | undefined;
-        alwaysIssueRefreshToken?: boolean | undefined;
-        rotateRefreshToken?: boolean | undefined;
-    }>>;
-    protectedAppMetadata: z.ZodOptional<z.ZodType<{
-        host: string;
-        origin: string;
-        sessionDuration: number;
-        pageRules: {
-            path: string;
-        }[];
-        customDomains?: {
-            status: import("../index.js").DomainStatus;
-            domain: string;
-            errorMessage: string | null;
-            dnsRecords: {
-                type: string;
-                value: string;
-                name: string;
-            }[];
-            cloudflareData: {
-                status: string;
-                id: string;
-                ssl: {
-                    status: string;
-                    validation_errors?: {
-                        message: string;
-                    }[] | undefined;
-                };
-                verification_errors?: string[] | undefined;
-            } | null;
-        }[] | undefined;
-    } | null, z.ZodTypeDef, {
-        host: string;
-        origin: string;
-        sessionDuration: number;
-        pageRules: {
-            path: string;
-        }[];
-        customDomains?: {
-            status: import("../index.js").DomainStatus;
-            domain: string;
-            errorMessage: string | null;
-            dnsRecords: {
-                type: string;
-                value: string;
-                name: string;
-            }[];
-            cloudflareData: {
-                status: string;
-                id: string;
-                ssl: {
-                    status: string;
-                    validation_errors?: {
-                        message: string;
-                    }[] | undefined;
-                };
-                verification_errors?: string[] | undefined;
-            } | null;
-        }[] | undefined;
-    } | null>>;
-    customData: z.ZodOptional<z.ZodType<import("@withtyped/server").JsonObject, z.ZodTypeDef, import("@withtyped/server").JsonObject>>;
-    isThirdParty: z.ZodOptional<z.ZodType<boolean, z.ZodTypeDef, boolean>>;
-    createdAt: z.ZodOptional<z.ZodType<number, z.ZodTypeDef, number>>;
-}, "type" | "name">>, "strip", z.ZodTypeAny, {
+    name: z.ZodType<string, z.ZodTypeDef, string>;
+}, "strip", z.ZodTypeAny, {
     type: import("../db-entries/custom-types.js").ApplicationType;
     name: string;
     customData?: import("@withtyped/server").JsonObject;
@@ -322,8 +238,8 @@ export declare const applicationPatchGuard: z.ZodObject<Omit<{
             domain: string;
             errorMessage: string | null;
             dnsRecords: {
-                type: string;
                 value: string;
+                type: string;
                 name: string;
             }[];
             cloudflareData: {
@@ -350,8 +266,8 @@ export declare const applicationPatchGuard: z.ZodObject<Omit<{
             domain: string;
             errorMessage: string | null;
             dnsRecords: {
-                type: string;
                 value: string;
+                type: string;
                 name: string;
             }[];
             cloudflareData: {
@@ -583,7 +499,7 @@ export declare enum ApplicationUserConsentScopeType {
     UserScopes = "user-scopes"
 }
 export type ApplicationUserConsentScopesResponse = z.infer<typeof applicationUserConsentScopesResponseGuard>;
-export declare const applicationSignInExperienceCreateGuard: z.ZodObject<z.objectUtil.extendShape<Omit<{
+export declare const applicationSignInExperienceCreateGuard: z.ZodObject<Omit<{
     tenantId: z.ZodOptional<z.ZodType<string, z.ZodTypeDef, string>>;
     applicationId: z.ZodType<string, z.ZodTypeDef, string>;
     color: z.ZodOptional<z.ZodType<Partial<{
@@ -609,10 +525,10 @@ export declare const applicationSignInExperienceCreateGuard: z.ZodObject<z.objec
     termsOfUseUrl: z.ZodOptional<z.ZodType<string | null, z.ZodTypeDef, string | null>>;
     privacyPolicyUrl: z.ZodOptional<z.ZodType<string | null, z.ZodTypeDef, string | null>>;
     displayName: z.ZodOptional<z.ZodType<string | null, z.ZodTypeDef, string | null>>;
-}, "applicationId" | "tenantId" | "termsOfUseUrl" | "privacyPolicyUrl">, {
+}, "applicationId" | "tenantId" | "termsOfUseUrl" | "privacyPolicyUrl"> & {
     termsOfUseUrl: z.ZodUnion<[z.ZodNullable<z.ZodOptional<z.ZodString>>, z.ZodLiteral<"">]>;
     privacyPolicyUrl: z.ZodUnion<[z.ZodNullable<z.ZodOptional<z.ZodString>>, z.ZodLiteral<"">]>;
-}>, "strip", z.ZodTypeAny, {
+}, "strip", z.ZodTypeAny, {
     displayName?: string | null;
     color?: import("../index.js").PartialColor;
     branding?: import("../index.js").Branding;