@logto/schemas 1.26.0 → 1.28.0

package/lib/types/scope.d.ts

@@ -1,14 +1,14 @@
 import { type z } from 'zod';
-export declare const scopeResponseGuard: z.ZodObject<z.objectUtil.extendShape<{
+export declare const scopeResponseGuard: z.ZodObject<{
     tenantId: z.ZodType<string, z.ZodTypeDef, string>;
     id: z.ZodType<string, z.ZodTypeDef, string>;
     resourceId: z.ZodType<string, z.ZodTypeDef, string>;
     name: z.ZodType<string, z.ZodTypeDef, string>;
     description: z.ZodType<string | null, z.ZodTypeDef, string | null>;
     createdAt: z.ZodType<number, z.ZodTypeDef, number>;
-}, {
+} & {
     resource: import("../index.js").Guard<import("../db-entries/resource.js").Resource>;
-}>, "strip", z.ZodTypeAny, {
+}, "strip", z.ZodTypeAny, {
     name: string;
     id: string;
     tenantId: string;

package/lib/types/sign-in-experience.d.ts

@@ -34,7 +34,7 @@ export type FullSignInExperience = SignInExperience & {
         siteKey: string;
     };
 };
-export declare const fullSignInExperienceGuard: z.ZodObject<z.objectUtil.extendShape<{
+export declare const fullSignInExperienceGuard: z.ZodObject<{
     tenantId: z.ZodType<string, z.ZodTypeDef, string>;
     id: z.ZodType<string, z.ZodTypeDef, string>;
     color: z.ZodType<{
@@ -134,8 +134,10 @@ export declare const fullSignInExperienceGuard: z.ZodObject<z.objectUtil.extendS
     }, z.ZodTypeDef, {
         enabled?: boolean | undefined;
     }>;
-}, {
-    socialConnectors: z.ZodArray<z.ZodObject<Omit<z.objectUtil.extendShape<{
+    sentinelPolicy: z.ZodType<import("../foundations/jsonb-types/sign-in-experience.js").SentinelPolicy, z.ZodTypeDef, import("../foundations/jsonb-types/sign-in-experience.js").SentinelPolicy>;
+    emailBlocklistPolicy: z.ZodType<import("../foundations/jsonb-types/sign-in-experience.js").EmailBlocklistPolicy, z.ZodTypeDef, import("../foundations/jsonb-types/sign-in-experience.js").EmailBlocklistPolicy>;
+} & {
+    socialConnectors: z.ZodArray<z.ZodObject<Omit<{
         id: z.ZodString;
         target: z.ZodString;
         name: z.ZodType<import("@logto/connector-kit").I18nPhrases, z.ZodTypeDef, import("@logto/connector-kit").I18nPhrases>;
@@ -322,10 +324,10 @@ export declare const fullSignInExperienceGuard: z.ZodObject<z.objectUtil.extendS
         }>]>, "many">>;
         customData: z.ZodOptional<z.ZodRecord<z.ZodString, z.ZodUnknown>>;
         fromEmail: z.ZodOptional<z.ZodString>;
-    }, {
+    } & {
         platform: z.ZodNullable<z.ZodNativeEnum<typeof import("@logto/connector-kit").ConnectorPlatform>>;
         isStandard: z.ZodOptional<z.ZodBoolean>;
-    }>, "customData" | "description" | "readme" | "configTemplate" | "formItems">, "strip", z.ZodTypeAny, {
+    }, "customData" | "description" | "readme" | "configTemplate" | "formItems">, "strip", z.ZodTypeAny, {
         name: {
             en: string;
         } & {
@@ -631,15 +633,15 @@ export declare const fullSignInExperienceGuard: z.ZodObject<z.objectUtil.extendS
         phone: boolean;
     }>;
     isDevelopmentTenant: z.ZodBoolean;
-    googleOneTap: z.ZodOptional<z.ZodObject<z.objectUtil.extendShape<{
+    googleOneTap: z.ZodOptional<z.ZodObject<{
         isEnabled: z.ZodOptional<z.ZodBoolean>;
         autoSelect: z.ZodOptional<z.ZodBoolean>;
         closeOnTapOutside: z.ZodOptional<z.ZodBoolean>;
         itpSupport: z.ZodOptional<z.ZodBoolean>;
-    }, {
+    } & {
         clientId: z.ZodString;
         connectorId: z.ZodString;
-    }>, "strip", z.ZodTypeAny, {
+    }, "strip", z.ZodTypeAny, {
         connectorId: string;
         clientId: string;
         isEnabled?: boolean | undefined;
@@ -664,7 +666,7 @@ export declare const fullSignInExperienceGuard: z.ZodObject<z.objectUtil.extendS
         type: CaptchaType;
         siteKey: string;
     }>>;
-}>, "strip", z.ZodTypeAny, {
+}, "strip", z.ZodTypeAny, {
     id: string;
     tenantId: string;
     color: import("../foundations/jsonb-types/sign-in-experience.js").Color;
@@ -688,6 +690,8 @@ export declare const fullSignInExperienceGuard: z.ZodObject<z.objectUtil.extendS
     supportWebsiteUrl: string | null;
     unknownSessionRedirectUrl: string | null;
     captchaPolicy: import("../foundations/jsonb-types/sign-in-experience.js").CaptchaPolicy;
+    sentinelPolicy: import("../foundations/jsonb-types/sign-in-experience.js").SentinelPolicy;
+    emailBlocklistPolicy: import("../foundations/jsonb-types/sign-in-experience.js").EmailBlocklistPolicy;
     socialConnectors: {
         name: {
             en: string;
@@ -875,6 +879,8 @@ export declare const fullSignInExperienceGuard: z.ZodObject<z.objectUtil.extendS
     supportWebsiteUrl: string | null;
     unknownSessionRedirectUrl: string | null;
     captchaPolicy: import("../foundations/jsonb-types/sign-in-experience.js").CaptchaPolicy;
+    sentinelPolicy: import("../foundations/jsonb-types/sign-in-experience.js").SentinelPolicy;
+    emailBlocklistPolicy: import("../foundations/jsonb-types/sign-in-experience.js").EmailBlocklistPolicy;
     socialConnectors: {
         name: {
             en: string;

package/lib/types/sso-connector.d.ts

@@ -82,10 +82,9 @@ export declare const ssoConnectorProvidersResponseGuard: z.ZodArray<z.ZodObject<
     providerType: SsoProviderType;
 }>, "many">;
 export type SsoConnectorProvidersResponse = z.infer<typeof ssoConnectorProvidersResponseGuard>;
-export declare const ssoConnectorWithProviderConfigGuard: z.ZodObject<z.objectUtil.extendShape<z.objectUtil.extendShape<{
+export declare const ssoConnectorWithProviderConfigGuard: z.ZodObject<{
     tenantId: z.ZodType<string, z.ZodTypeDef, string>;
     id: z.ZodType<string, z.ZodTypeDef, string>;
-    providerName: z.ZodType<string, z.ZodTypeDef, string>;
     connectorName: z.ZodType<string, z.ZodTypeDef, string>;
     config: z.ZodType<import("@withtyped/server").JsonObject, z.ZodTypeDef, import("@withtyped/server").JsonObject>;
     domains: z.ZodType<string[], z.ZodTypeDef, string[]>;
@@ -100,15 +99,15 @@ export declare const ssoConnectorWithProviderConfigGuard: z.ZodObject<z.objectUt
     }>;
     syncProfile: z.ZodType<boolean, z.ZodTypeDef, boolean>;
     createdAt: z.ZodType<number, z.ZodTypeDef, number>;
-}, {
+} & {
     providerName: z.ZodNativeEnum<typeof SsoProviderName>;
-}>, {
+} & {
     name: z.ZodString;
     providerType: z.ZodNativeEnum<typeof SsoProviderType>;
     providerLogo: z.ZodString;
     providerLogoDark: z.ZodString;
     providerConfig: z.ZodOptional<z.ZodRecord<z.ZodString, z.ZodUnknown>>;
-}>, "strip", z.ZodTypeAny, {
+}, "strip", z.ZodTypeAny, {
     name: string;
     id: string;
     tenantId: string;

package/lib/types/system.d.ts

@@ -253,25 +253,8 @@ export type CloudflareType = {
 export declare const cloudflareGuard: Readonly<{
     [key in CloudflareKey]: ZodType<CloudflareType[key]>;
 }>;
-export declare enum FeatureFlagConfigKey {
-    NewExperienceFeatureFlag = "newExperienceFeatureFlag"
-}
-export declare const featureFlagConfigGuard: z.ZodObject<{
-    percentage: z.ZodNumber;
-}, "strip", z.ZodTypeAny, {
-    percentage: number;
-}, {
-    percentage: number;
-}>;
-export type FeatureFlagConfig = z.infer<typeof featureFlagConfigGuard>;
-export type FeatureFlagConfigType = {
-    [FeatureFlagConfigKey.NewExperienceFeatureFlag]: FeatureFlagConfig;
-};
-export declare const featureFlagConfigsGuard: Readonly<{
-    [key in FeatureFlagConfigKey]: ZodType<FeatureFlagConfigType[key]>;
-}>;
-export type SystemKey = AlterationStateKey | StorageProviderKey | DemoSocialKey | CloudflareKey | EmailServiceProviderKey | FeatureFlagConfigKey;
-export type SystemType = AlterationStateType | StorageProviderType | DemoSocialType | CloudflareType | EmailServiceProviderType | FeatureFlagConfigType;
-export type SystemGuard = typeof alterationStateGuard & typeof storageProviderGuard & typeof demoSocialGuard & typeof cloudflareGuard & typeof emailServiceProviderGuard & typeof featureFlagConfigsGuard;
+export type SystemKey = AlterationStateKey | StorageProviderKey | DemoSocialKey | CloudflareKey | EmailServiceProviderKey;
+export type SystemType = AlterationStateType | StorageProviderType | DemoSocialType | CloudflareType | EmailServiceProviderType;
+export type SystemGuard = typeof alterationStateGuard & typeof storageProviderGuard & typeof demoSocialGuard & typeof cloudflareGuard & typeof emailServiceProviderGuard;
 export declare const systemKeys: readonly SystemKey[];
 export declare const systemGuards: SystemGuard;

package/lib/types/system.js

@@ -146,24 +146,12 @@ export const cloudflareGuard = Object.freeze({
     [CloudflareKey.ProtectedAppHostnameProvider]: hostnameProviderDataGuard,
     [CloudflareKey.CustomJwtWorkerConfig]: customJwtWorkerConfigGuard,
 });
-// A/B Test settings
-export var FeatureFlagConfigKey;
-(function (FeatureFlagConfigKey) {
-    FeatureFlagConfigKey["NewExperienceFeatureFlag"] = "newExperienceFeatureFlag";
-})(FeatureFlagConfigKey || (FeatureFlagConfigKey = {}));
-export const featureFlagConfigGuard = z.object({
-    percentage: z.number().min(0).max(1),
-});
-export const featureFlagConfigsGuard = Object.freeze({
-    [FeatureFlagConfigKey.NewExperienceFeatureFlag]: featureFlagConfigGuard,
-});
 export const systemKeys = Object.freeze([
     ...Object.values(AlterationStateKey),
     ...Object.values(StorageProviderKey),
     ...Object.values(DemoSocialKey),
     ...Object.values(CloudflareKey),
     ...Object.values(EmailServiceProviderKey),
-    ...Object.values(FeatureFlagConfigKey),
 ]);
 export const systemGuards = Object.freeze({
     ...alterationStateGuard,
@@ -171,5 +159,4 @@ export const systemGuards = Object.freeze({
     ...demoSocialGuard,
     ...cloudflareGuard,
     ...emailServiceProviderGuard,
-    ...featureFlagConfigsGuard,
 });

package/lib/types/user.d.ts

@@ -150,7 +150,7 @@ export declare const userInfoGuard: z.ZodObject<Pick<{
     lastSignInAt: number | null;
 }>;
 export type UserInfo = z.infer<typeof userInfoGuard>;
-export declare const userProfileResponseGuard: z.ZodObject<z.objectUtil.extendShape<Pick<{
+export declare const userProfileResponseGuard: z.ZodObject<Pick<{
     tenantId: z.ZodType<string, z.ZodTypeDef, string>;
     id: z.ZodType<string, z.ZodTypeDef, string>;
     username: z.ZodType<string | null, z.ZodTypeDef, string | null>;
@@ -266,10 +266,10 @@ export declare const userProfileResponseGuard: z.ZodObject<z.objectUtil.extendSh
     lastSignInAt: z.ZodType<number | null, z.ZodTypeDef, number | null>;
     createdAt: z.ZodType<number, z.ZodTypeDef, number>;
     updatedAt: z.ZodType<number, z.ZodTypeDef, number>;
-}, "name" | "id" | "applicationId" | "username" | "createdAt" | "profile" | "avatar" | "customData" | "identities" | "updatedAt" | "primaryEmail" | "primaryPhone" | "isSuspended" | "lastSignInAt">, {
+}, "name" | "id" | "applicationId" | "username" | "createdAt" | "profile" | "avatar" | "customData" | "identities" | "updatedAt" | "primaryEmail" | "primaryPhone" | "isSuspended" | "lastSignInAt"> & {
     hasPassword: z.ZodOptional<z.ZodBoolean>;
     ssoIdentities: z.ZodOptional<z.ZodArray<import("../foundations/schemas.js").Guard<import("../db-entries/user-sso-identity.js").UserSsoIdentity>, "many">>;
-}>, "strip", z.ZodTypeAny, {
+}, "strip", z.ZodTypeAny, {
     name: string | null;
     id: string;
     applicationId: string | null;

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@logto/schemas",
-  "version": "1.26.0",
+  "version": "1.28.0",
   "author": "Silverhand Inc. <contact@silverhand.io>",
   "license": "MPL-2.0",
   "type": "module",
@@ -21,7 +21,7 @@
     "access": "public"
   },
   "engines": {
-    "node": "^20.9.0"
+    "node": "^22.14.0"
   },
   "devDependencies": {
     "@silverhand/eslint-config": "6.0.1",
@@ -29,18 +29,18 @@
     "@silverhand/slonik": "31.0.0-beta.2",
     "@silverhand/ts-config": "6.0.0",
     "@types/inquirer": "^9.0.0",
-    "@types/node": "^20.9.5",
+    "@types/node": "^22.14.0",
     "@types/pluralize": "^0.0.33",
-    "@vitest/coverage-v8": "^2.1.9",
+    "@vitest/coverage-v8": "^3.1.1",
     "camelcase": "^8.0.0",
     "chalk": "^5.3.0",
     "eslint": "^8.56.0",
     "lint-staged": "^15.0.0",
     "pluralize": "^8.0.0",
-    "prettier": "^3.0.0",
+    "prettier": "^3.5.3",
     "roarr": "^7.11.0",
     "typescript": "^5.5.3",
-    "vitest": "^2.1.9"
+    "vitest": "^3.1.1"
   },
   "eslintConfig": {
     "extends": "@silverhand",
@@ -63,17 +63,17 @@
   },
   "prettier": "@silverhand/eslint-config/.prettierrc",
   "dependencies": {
-    "@logto/connector-kit": "^4.2.0",
-    "@logto/core-kit": "^2.5.4",
-    "@logto/language-kit": "^1.1.3",
-    "@logto/phrases": "^1.18.0",
-    "@logto/phrases-experience": "^1.9.1",
-    "@logto/shared": "^3.1.4",
+    "@logto/connector-kit": "^4.3.0",
+    "@logto/core-kit": "^2.6.0",
+    "@logto/language-kit": "^1.2.0",
+    "@logto/phrases": "^1.19.0",
+    "@logto/phrases-experience": "^1.10.0",
+    "@logto/shared": "^3.3.0",
     "@withtyped/server": "^0.14.0",
     "nanoid": "^5.0.9"
   },
   "peerDependencies": {
-    "zod": "^3.23.8"
+    "zod": "3.24.3"
   },
   "scripts": {
     "precommit": "lint-staged",

package/tables/sentinel_activities.sql

@@ -28,5 +28,8 @@ create table sentinel_activities (
 create index sentinel_activities__id
   on sentinel_activities (tenant_id, id);
 
+create index sentinel_activities__target_type_target_hash
+  on sentinel_activities (tenant_id, target_type, target_hash);
+
 create index sentinel_activities__target_type_target_hash_action_action_result_decision
   on sentinel_activities (tenant_id, target_type, target_hash, action, action_result, decision);

package/tables/sign_in_experiences.sql

@@ -27,5 +27,7 @@ create table sign_in_experiences (
   support_website_url text,
   unknown_session_redirect_url text,
   captcha_policy jsonb /* @use CaptchaPolicy */ not null default '{}'::jsonb,
+  sentinel_policy jsonb /* @use SentinelPolicy */ not null default '{}'::jsonb,
+  email_blocklist_policy jsonb /* @use EmailBlocklistPolicy */ not null default '{}'::jsonb,
   primary key (tenant_id, id)
 );