@logto/schemas 1.27.0 → 1.29.0

package/alterations-js/1.29.0-1750744539-add-secret-connector-relations-table.js

@@ -0,0 +1,99 @@
+import { sql } from '@silverhand/slonik';
+import { applyTableRls, dropTableRls } from './utils/1704934999-tables.js';
+const alteration = {
+    up: async (pool) => {
+        await pool.query(sql `
+      create table secret_connector_relations (
+        tenant_id varchar(21) not null
+          references tenants (id) on update cascade on delete cascade,
+        secret_id varchar(21) not null
+          references secrets (id) on update cascade on delete cascade,
+        /** Social connector ID foreign reference. Only present for secrets that store social connector tokens. Note: avoid directly cascading deletes here, need to delete the secrets first.*/
+        connector_id varchar(128)
+          references connectors (id) on update cascade,
+        /** SSO connector ID foreign reference. Only present for secrets that store SSO connector tokens. Note: avoid directly cascading deletes here, need to delete the secrets first.*/
+        sso_connector_id varchar(128)
+          references sso_connectors (id) on update cascade,
+        /** The target of the social connector. e.g. 'github', 'google', etc. */
+        social_connector_target varchar(256),
+        /** User social identity ID foreign reference. Only present for secrets that store social identity tokens. */
+        social_identity_id varchar(128),
+        /** User sso connector issuer. Only present for secrets that store SSO connector tokens. */
+        sso_connector_issuer varchar(256),
+        /** User SSO identity ID. Only present for secrets that store SSO identity tokens. */
+        sso_identity_id varchar(128),
+        primary key (tenant_id, secret_id),
+        /** Ensures that each social identity is associated with only one secret. */
+        constraint secret_connector_relations__target__social_identity_id
+          unique (tenant_id, social_connector_target, social_identity_id),
+        /** Ensures that each SSO identity is associated with only one secret. */
+        foreign key (tenant_id, sso_connector_issuer, sso_identity_id)
+          references user_sso_identities (tenant_id, issuer, identity_id) on update cascade,
+        /** Ensure that each secret is associated with a social connector or SSO connector, but not both at the same time. */
+        constraint secret_connector_relations__connector_id__sso_connector_id
+          check (
+            (
+              connector_id is not null and social_connector_target is not null and social_identity_id is not null and
+              sso_connector_id is null and sso_identity_id is null
+            ) or (
+              connector_id is null and social_connector_target is null and social_identity_id is null and
+              sso_connector_id is not null and sso_identity_id is not null
+            )
+          )
+      );
+    `);
+        /** Trigger function to delete secrets when the social connector is deleted. */
+        await pool.query(sql `
+      create function delete_secrets_on_social_connector_delete()
+      returns trigger as $$
+      begin
+        delete from secrets
+        where id in (
+          select secret_id from secret_connector_relations
+          where tenant_id = old.tenant_id and connector_id = old.id
+        );
+        return old;
+      end;
+      $$ language plpgsql;
+
+      create trigger delete_secrets_before_social_connector_delete
+        before delete on connectors
+        for each row
+        execute procedure delete_secrets_on_social_connector_delete();
+    `);
+        /** Trigger function to delete secrets when the SSO connector is deleted. */
+        await pool.query(sql `
+      create function delete_secrets_on_sso_connector_delete()
+      returns trigger as $$
+      begin
+        delete from secrets
+        where id in (
+          select secret_id from secret_connector_relations
+          where tenant_id = old.tenant_id and sso_connector_id = old.id
+        );
+        return old;
+      end;
+      $$ language plpgsql;
+
+      create trigger delete_secrets_before_sso_connector_delete
+        before delete on sso_connectors
+        for each row
+        execute procedure delete_secrets_on_sso_connector_delete();
+    `);
+        await applyTableRls(pool, 'secret_connector_relations');
+    },
+    down: async (pool) => {
+        await pool.query(sql `
+      drop trigger if exists delete_secrets_before_social_connector_delete on connectors;
+      drop function if exists delete_secrets_on_social_connector_delete;
+
+      drop trigger if exists delete_secrets_before_sso_connector_delete on sso_connectors;
+      drop function if exists delete_secrets_on_sso_connector_delete;
+    `);
+        await dropTableRls(pool, 'secret_connector_relations');
+        await pool.query(sql `
+      drop table secret_connector_relations;
+    `);
+    },
+};
+export default alteration;

package/lib/db-entries/account-center.d.ts

@@ -1,4 +1,4 @@
-import { AccountCenterFieldControl, GeneratedSchema } from './../foundations/index.js';
+import { AccountCenterFieldControl, WebauthnRelatedOrigins, GeneratedSchema } from './../foundations/index.js';
 /**
  *
  * @remarks This is a type for database creation.
@@ -11,6 +11,7 @@ export type CreateAccountCenter = {
     enabled?: boolean;
     /** Control each fields */
     fields?: AccountCenterFieldControl;
+    webauthnRelatedOrigins?: WebauthnRelatedOrigins;
 };
 export type AccountCenter = {
     tenantId: string;
@@ -19,6 +20,7 @@ export type AccountCenter = {
     enabled: boolean;
     /** Control each fields */
     fields: AccountCenterFieldControl;
+    webauthnRelatedOrigins: WebauthnRelatedOrigins;
 };
-export type AccountCenterKeys = 'tenantId' | 'id' | 'enabled' | 'fields';
+export type AccountCenterKeys = 'tenantId' | 'id' | 'enabled' | 'fields' | 'webauthnRelatedOrigins';
 export declare const AccountCenters: GeneratedSchema<AccountCenterKeys, CreateAccountCenter, AccountCenter, 'account_centers', 'account_center'>;

package/lib/db-entries/account-center.js

@@ -1,17 +1,19 @@
 // THIS IS AN AUTOGENERATED FILE. DO NOT EDIT THIS FILE DIRECTLY.
 import { z } from 'zod';
-import { accountCenterFieldControlGuard } from './../foundations/index.js';
+import { accountCenterFieldControlGuard, webauthnRelatedOriginsGuard } from './../foundations/index.js';
 const createGuard = z.object({
     tenantId: z.string().max(21).optional(),
     id: z.string().min(1).max(21),
     enabled: z.boolean().optional(),
     fields: accountCenterFieldControlGuard.optional(),
+    webauthnRelatedOrigins: webauthnRelatedOriginsGuard.optional(),
 });
 const guard = z.object({
     tenantId: z.string().max(21),
     id: z.string().min(1).max(21),
     enabled: z.boolean(),
     fields: accountCenterFieldControlGuard,
+    webauthnRelatedOrigins: webauthnRelatedOriginsGuard,
 });
 export const AccountCenters = Object.freeze({
     table: 'account_centers',
@@ -21,12 +23,14 @@ export const AccountCenters = Object.freeze({
         id: 'id',
         enabled: 'enabled',
         fields: 'fields',
+        webauthnRelatedOrigins: 'webauthn_related_origins',
     },
     fieldKeys: [
         'tenantId',
         'id',
         'enabled',
         'fields',
+        'webauthnRelatedOrigins',
     ],
     createGuard,
     guard,

package/lib/db-entries/custom-profile-field.d.ts

@@ -0,0 +1,32 @@
+import { CustomProfileFieldType, CustomProfileFieldConfig, GeneratedSchema } from './../foundations/index.js';
+/**
+ *
+ * @remarks This is a type for database creation.
+ * @see {@link CustomProfileField} for the original type.
+ */
+export type CreateCustomProfileField = {
+    tenantId?: string;
+    id: string;
+    name: string;
+    type: CustomProfileFieldType;
+    label?: string;
+    description?: string | null;
+    required?: boolean;
+    config?: CustomProfileFieldConfig;
+    createdAt?: number;
+    sieOrder?: number;
+};
+export type CustomProfileField = {
+    tenantId: string;
+    id: string;
+    name: string;
+    type: CustomProfileFieldType;
+    label: string;
+    description: string | null;
+    required: boolean;
+    config: CustomProfileFieldConfig;
+    createdAt: number;
+    sieOrder: number;
+};
+export type CustomProfileFieldKeys = 'tenantId' | 'id' | 'name' | 'type' | 'label' | 'description' | 'required' | 'config' | 'createdAt' | 'sieOrder';
+export declare const CustomProfileFields: GeneratedSchema<CustomProfileFieldKeys, CreateCustomProfileField, CustomProfileField, 'custom_profile_fields', 'custom_profile_field'>;

package/lib/db-entries/custom-profile-field.js

@@ -0,0 +1,58 @@
+// THIS IS AN AUTOGENERATED FILE. DO NOT EDIT THIS FILE DIRECTLY.
+import { z } from 'zod';
+import { customProfileFieldTypeGuard, customProfileFieldConfigGuard } from './../foundations/index.js';
+const createGuard = z.object({
+    tenantId: z.string().max(21).optional(),
+    id: z.string().min(1).max(21),
+    name: z.string().min(1).max(128),
+    type: customProfileFieldTypeGuard,
+    label: z.string().min(1).max(128).optional(),
+    description: z.string().max(256).nullable().optional(),
+    required: z.boolean().optional(),
+    config: customProfileFieldConfigGuard.optional(),
+    createdAt: z.number().optional(),
+    sieOrder: z.number().optional(),
+});
+const guard = z.object({
+    tenantId: z.string().max(21),
+    id: z.string().min(1).max(21),
+    name: z.string().min(1).max(128),
+    type: customProfileFieldTypeGuard,
+    label: z.string().max(128),
+    description: z.string().max(256).nullable(),
+    required: z.boolean(),
+    config: customProfileFieldConfigGuard,
+    createdAt: z.number(),
+    sieOrder: z.number(),
+});
+export const CustomProfileFields = Object.freeze({
+    table: 'custom_profile_fields',
+    tableSingular: 'custom_profile_field',
+    fields: {
+        tenantId: 'tenant_id',
+        id: 'id',
+        name: 'name',
+        type: 'type',
+        label: 'label',
+        description: 'description',
+        required: 'required',
+        config: 'config',
+        createdAt: 'created_at',
+        sieOrder: 'sie_order',
+    },
+    fieldKeys: [
+        'tenantId',
+        'id',
+        'name',
+        'type',
+        'label',
+        'description',
+        'required',
+        'config',
+        'createdAt',
+        'sieOrder',
+    ],
+    createGuard,
+    guard,
+    updateGuard: guard.partial(),
+});

package/lib/db-entries/index.d.ts

@@ -16,6 +16,7 @@ export * from './applications-role.js';
 export * from './captcha-provider.js';
 export * from './connector.js';
 export * from './custom-phrase.js';
+export * from './custom-profile-field.js';
 export * from './daily-active-user.js';
 export * from './daily-token-usage.js';
 export * from './domain.js';
@@ -25,6 +26,7 @@ export * from './idp-initiated-saml-sso-session.js';
 export * from './log.js';
 export * from './logto-config.js';
 export * from './oidc-model-instance.js';
+export * from './oidc-session-extension.js';
 export * from './one-time-token.js';
 export * from './organization-application-relation.js';
 export * from './organization-invitation-role-relation.js';
@@ -49,6 +51,8 @@ export * from './saml-application-config.js';
 export * from './saml-application-secret.js';
 export * from './saml-application-session.js';
 export * from './scope.js';
+export * from './secret-connector-relation.js';
+export * from './secret.js';
 export * from './sentinel-activity.js';
 export * from './service-log.js';
 export * from './sign-in-experience.js';

package/lib/db-entries/index.js

@@ -17,6 +17,7 @@ export * from './applications-role.js';
 export * from './captcha-provider.js';
 export * from './connector.js';
 export * from './custom-phrase.js';
+export * from './custom-profile-field.js';
 export * from './daily-active-user.js';
 export * from './daily-token-usage.js';
 export * from './domain.js';
@@ -26,6 +27,7 @@ export * from './idp-initiated-saml-sso-session.js';
 export * from './log.js';
 export * from './logto-config.js';
 export * from './oidc-model-instance.js';
+export * from './oidc-session-extension.js';
 export * from './one-time-token.js';
 export * from './organization-application-relation.js';
 export * from './organization-invitation-role-relation.js';
@@ -50,6 +52,8 @@ export * from './saml-application-config.js';
 export * from './saml-application-secret.js';
 export * from './saml-application-session.js';
 export * from './scope.js';
+export * from './secret-connector-relation.js';
+export * from './secret.js';
 export * from './sentinel-activity.js';
 export * from './service-log.js';
 export * from './sign-in-experience.js';

package/lib/db-entries/oidc-session-extension.d.ts

@@ -0,0 +1,24 @@
+import { JsonObject, GeneratedSchema } from './../foundations/index.js';
+/**
+ *
+ * @remarks This is a type for database creation.
+ * @see {@link OidcSessionExtension} for the original type.
+ */
+export type CreateOidcSessionExtension = {
+    tenantId?: string;
+    sessionUid: string;
+    accountId: string;
+    lastSubmission?: JsonObject;
+    createdAt?: number;
+    updatedAt?: number;
+};
+export type OidcSessionExtension = {
+    tenantId: string;
+    sessionUid: string;
+    accountId: string;
+    lastSubmission: JsonObject;
+    createdAt: number;
+    updatedAt: number;
+};
+export type OidcSessionExtensionKeys = 'tenantId' | 'sessionUid' | 'accountId' | 'lastSubmission' | 'createdAt' | 'updatedAt';
+export declare const OidcSessionExtensions: GeneratedSchema<OidcSessionExtensionKeys, CreateOidcSessionExtension, OidcSessionExtension, 'oidc_session_extensions', 'oidc_session_extension'>;

package/lib/db-entries/oidc-session-extension.js

@@ -0,0 +1,42 @@
+// THIS IS AN AUTOGENERATED FILE. DO NOT EDIT THIS FILE DIRECTLY.
+import { z } from 'zod';
+import { jsonObjectGuard } from './../foundations/index.js';
+const createGuard = z.object({
+    tenantId: z.string().max(21).optional(),
+    sessionUid: z.string().min(1).max(128),
+    accountId: z.string().min(1).max(12),
+    lastSubmission: jsonObjectGuard.optional(),
+    createdAt: z.number().optional(),
+    updatedAt: z.number().optional(),
+});
+const guard = z.object({
+    tenantId: z.string().max(21),
+    sessionUid: z.string().min(1).max(128),
+    accountId: z.string().min(1).max(12),
+    lastSubmission: jsonObjectGuard,
+    createdAt: z.number(),
+    updatedAt: z.number(),
+});
+export const OidcSessionExtensions = Object.freeze({
+    table: 'oidc_session_extensions',
+    tableSingular: 'oidc_session_extension',
+    fields: {
+        tenantId: 'tenant_id',
+        sessionUid: 'session_uid',
+        accountId: 'account_id',
+        lastSubmission: 'last_submission',
+        createdAt: 'created_at',
+        updatedAt: 'updated_at',
+    },
+    fieldKeys: [
+        'tenantId',
+        'sessionUid',
+        'accountId',
+        'lastSubmission',
+        'createdAt',
+        'updatedAt',
+    ],
+    createGuard,
+    guard,
+    updateGuard: guard.partial(),
+});

package/lib/db-entries/secret-connector-relation.d.ts

@@ -0,0 +1,40 @@
+import { GeneratedSchema } from './../foundations/index.js';
+/**
+ *
+ * @remarks This is a type for database creation.
+ * @see {@link SecretConnectorRelation} for the original type.
+ */
+export type CreateSecretConnectorRelation = {
+    tenantId?: string;
+    secretId: string;
+    /** Social connector ID foreign reference. Only present for secrets that store social connector tokens. Note: avoid directly cascading deletes here, need to delete the secrets first. */
+    connectorId?: string | null;
+    /** SSO connector ID foreign reference. Only present for secrets that store SSO connector tokens. Note: avoid directly cascading deletes here, need to delete the secrets first. */
+    ssoConnectorId?: string | null;
+    /** The target of the social connector. e.g. 'github', 'google', etc. */
+    socialConnectorTarget?: string | null;
+    /** User social identity ID foreign reference. Only present for secrets that store social identity tokens. */
+    socialIdentityId?: string | null;
+    /** User sso connector issuer. Only present for secrets that store SSO connector tokens. */
+    ssoConnectorIssuer?: string | null;
+    /** User SSO identity ID. Only present for secrets that store SSO identity tokens. */
+    ssoIdentityId?: string | null;
+};
+export type SecretConnectorRelation = {
+    tenantId: string;
+    secretId: string;
+    /** Social connector ID foreign reference. Only present for secrets that store social connector tokens. Note: avoid directly cascading deletes here, need to delete the secrets first. */
+    connectorId: string | null;
+    /** SSO connector ID foreign reference. Only present for secrets that store SSO connector tokens. Note: avoid directly cascading deletes here, need to delete the secrets first. */
+    ssoConnectorId: string | null;
+    /** The target of the social connector. e.g. 'github', 'google', etc. */
+    socialConnectorTarget: string | null;
+    /** User social identity ID foreign reference. Only present for secrets that store social identity tokens. */
+    socialIdentityId: string | null;
+    /** User sso connector issuer. Only present for secrets that store SSO connector tokens. */
+    ssoConnectorIssuer: string | null;
+    /** User SSO identity ID. Only present for secrets that store SSO identity tokens. */
+    ssoIdentityId: string | null;
+};
+export type SecretConnectorRelationKeys = 'tenantId' | 'secretId' | 'connectorId' | 'ssoConnectorId' | 'socialConnectorTarget' | 'socialIdentityId' | 'ssoConnectorIssuer' | 'ssoIdentityId';
+export declare const SecretConnectorRelations: GeneratedSchema<SecretConnectorRelationKeys, CreateSecretConnectorRelation, SecretConnectorRelation, 'secret_connector_relations', 'secret_connector_relation'>;

package/lib/db-entries/secret-connector-relation.js

@@ -0,0 +1,49 @@
+// THIS IS AN AUTOGENERATED FILE. DO NOT EDIT THIS FILE DIRECTLY.
+import { z } from 'zod';
+const createGuard = z.object({
+    tenantId: z.string().max(21).optional(),
+    secretId: z.string().min(1).max(21),
+    connectorId: z.string().max(128).nullable().optional(),
+    ssoConnectorId: z.string().max(128).nullable().optional(),
+    socialConnectorTarget: z.string().max(256).nullable().optional(),
+    socialIdentityId: z.string().max(128).nullable().optional(),
+    ssoConnectorIssuer: z.string().max(256).nullable().optional(),
+    ssoIdentityId: z.string().max(128).nullable().optional(),
+});
+const guard = z.object({
+    tenantId: z.string().max(21),
+    secretId: z.string().min(1).max(21),
+    connectorId: z.string().max(128).nullable(),
+    ssoConnectorId: z.string().max(128).nullable(),
+    socialConnectorTarget: z.string().max(256).nullable(),
+    socialIdentityId: z.string().max(128).nullable(),
+    ssoConnectorIssuer: z.string().max(256).nullable(),
+    ssoIdentityId: z.string().max(128).nullable(),
+});
+export const SecretConnectorRelations = Object.freeze({
+    table: 'secret_connector_relations',
+    tableSingular: 'secret_connector_relation',
+    fields: {
+        tenantId: 'tenant_id',
+        secretId: 'secret_id',
+        connectorId: 'connector_id',
+        ssoConnectorId: 'sso_connector_id',
+        socialConnectorTarget: 'social_connector_target',
+        socialIdentityId: 'social_identity_id',
+        ssoConnectorIssuer: 'sso_connector_issuer',
+        ssoIdentityId: 'sso_identity_id',
+    },
+    fieldKeys: [
+        'tenantId',
+        'secretId',
+        'connectorId',
+        'ssoConnectorId',
+        'socialConnectorTarget',
+        'socialIdentityId',
+        'ssoConnectorIssuer',
+        'ssoIdentityId',
+    ],
+    createGuard,
+    guard,
+    updateGuard: guard.partial(),
+});

package/lib/db-entries/secret.d.ts

@@ -0,0 +1,44 @@
+import { SecretType, JsonObject, GeneratedSchema } from './../foundations/index.js';
+/**
+ *
+ * @remarks This is a type for database creation.
+ * @see {@link Secret} for the original type.
+ */
+export type CreateSecret = {
+    tenantId?: string;
+    id: string;
+    userId: string;
+    type: SecretType;
+    /** Encrypted data encryption key (DEK) for the secret. */
+    encryptedDek: string;
+    /** Initialization vector for the secret encryption. */
+    iv: string;
+    /** Authentication tag for the secret encryption. */
+    authTag: string;
+    /** The encrypted secret data. e.g. { access_token, refresh_token } */
+    ciphertext: string;
+    /** The metadata associated with the secret. */
+    metadata?: JsonObject;
+    createdAt?: number;
+    updatedAt?: number;
+};
+export type Secret = {
+    tenantId: string;
+    id: string;
+    userId: string;
+    type: SecretType;
+    /** Encrypted data encryption key (DEK) for the secret. */
+    encryptedDek: string;
+    /** Initialization vector for the secret encryption. */
+    iv: string;
+    /** Authentication tag for the secret encryption. */
+    authTag: string;
+    /** The encrypted secret data. e.g. { access_token, refresh_token } */
+    ciphertext: string;
+    /** The metadata associated with the secret. */
+    metadata: JsonObject;
+    createdAt: number;
+    updatedAt: number;
+};
+export type SecretKeys = 'tenantId' | 'id' | 'userId' | 'type' | 'encryptedDek' | 'iv' | 'authTag' | 'ciphertext' | 'metadata' | 'createdAt' | 'updatedAt';
+export declare const Secrets: GeneratedSchema<SecretKeys, CreateSecret, Secret, 'secrets', 'secret'>;

package/lib/db-entries/secret.js

@@ -0,0 +1,62 @@
+// THIS IS AN AUTOGENERATED FILE. DO NOT EDIT THIS FILE DIRECTLY.
+import { z } from 'zod';
+import { secretTypeGuard, jsonObjectGuard } from './../foundations/index.js';
+const createGuard = z.object({
+    tenantId: z.string().max(21).optional(),
+    id: z.string().min(1).max(21),
+    userId: z.string().min(1).max(21),
+    type: secretTypeGuard,
+    encryptedDek: z.string().min(1),
+    iv: z.string().min(1),
+    authTag: z.string().min(1),
+    ciphertext: z.string().min(1),
+    metadata: jsonObjectGuard.optional(),
+    createdAt: z.number().optional(),
+    updatedAt: z.number().optional(),
+});
+const guard = z.object({
+    tenantId: z.string().max(21),
+    id: z.string().min(1).max(21),
+    userId: z.string().min(1).max(21),
+    type: secretTypeGuard,
+    encryptedDek: z.string().min(1),
+    iv: z.string().min(1),
+    authTag: z.string().min(1),
+    ciphertext: z.string().min(1),
+    metadata: jsonObjectGuard,
+    createdAt: z.number(),
+    updatedAt: z.number(),
+});
+export const Secrets = Object.freeze({
+    table: 'secrets',
+    tableSingular: 'secret',
+    fields: {
+        tenantId: 'tenant_id',
+        id: 'id',
+        userId: 'user_id',
+        type: 'type',
+        encryptedDek: 'encrypted_dek',
+        iv: 'iv',
+        authTag: 'auth_tag',
+        ciphertext: 'ciphertext',
+        metadata: 'metadata',
+        createdAt: 'created_at',
+        updatedAt: 'updated_at',
+    },
+    fieldKeys: [
+        'tenantId',
+        'id',
+        'userId',
+        'type',
+        'encryptedDek',
+        'iv',
+        'authTag',
+        'ciphertext',
+        'metadata',
+        'createdAt',
+        'updatedAt',
+    ],
+    createGuard,
+    guard,
+    updateGuard: guard.partial(),
+});

package/lib/db-entries/sign-in-experience.d.ts

@@ -1,4 +1,4 @@
-import { Color, Branding, LanguageInfo, SignIn, SignUp, SocialSignIn, ConnectorTargets, CustomContent, CustomUiAssets, PartialPasswordPolicy, Mfa, CaptchaPolicy, SentinelPolicy, GeneratedSchema } from './../foundations/index.js';
+import { Color, Branding, LanguageInfo, SignIn, SignUp, SocialSignIn, ConnectorTargets, CustomContent, CustomUiAssets, PartialPasswordPolicy, Mfa, CaptchaPolicy, SentinelPolicy, EmailBlocklistPolicy, GeneratedSchema } from './../foundations/index.js';
 import { AgreeToTermsPolicy, SignInMode } from './custom-types.js';
 /**
  *
@@ -31,6 +31,7 @@ export type CreateSignInExperience = {
     unknownSessionRedirectUrl?: string | null;
     captchaPolicy?: CaptchaPolicy;
     sentinelPolicy?: SentinelPolicy;
+    emailBlocklistPolicy?: EmailBlocklistPolicy;
 };
 export type SignInExperience = {
     tenantId: string;
@@ -58,6 +59,7 @@ export type SignInExperience = {
     unknownSessionRedirectUrl: string | null;
     captchaPolicy: CaptchaPolicy;
     sentinelPolicy: SentinelPolicy;
+    emailBlocklistPolicy: EmailBlocklistPolicy;
 };
-export type SignInExperienceKeys = 'tenantId' | 'id' | 'color' | 'branding' | 'languageInfo' | 'termsOfUseUrl' | 'privacyPolicyUrl' | 'agreeToTermsPolicy' | 'signIn' | 'signUp' | 'socialSignIn' | 'socialSignInConnectorTargets' | 'signInMode' | 'customCss' | 'customContent' | 'customUiAssets' | 'passwordPolicy' | 'mfa' | 'singleSignOnEnabled' | 'supportEmail' | 'supportWebsiteUrl' | 'unknownSessionRedirectUrl' | 'captchaPolicy' | 'sentinelPolicy';
+export type SignInExperienceKeys = 'tenantId' | 'id' | 'color' | 'branding' | 'languageInfo' | 'termsOfUseUrl' | 'privacyPolicyUrl' | 'agreeToTermsPolicy' | 'signIn' | 'signUp' | 'socialSignIn' | 'socialSignInConnectorTargets' | 'signInMode' | 'customCss' | 'customContent' | 'customUiAssets' | 'passwordPolicy' | 'mfa' | 'singleSignOnEnabled' | 'supportEmail' | 'supportWebsiteUrl' | 'unknownSessionRedirectUrl' | 'captchaPolicy' | 'sentinelPolicy' | 'emailBlocklistPolicy';
 export declare const SignInExperiences: GeneratedSchema<SignInExperienceKeys, CreateSignInExperience, SignInExperience, 'sign_in_experiences', 'sign_in_experience'>;

package/lib/db-entries/sign-in-experience.js

@@ -1,6 +1,6 @@
 // THIS IS AN AUTOGENERATED FILE. DO NOT EDIT THIS FILE DIRECTLY.
 import { z } from 'zod';
-import { colorGuard, brandingGuard, languageInfoGuard, signInGuard, signUpGuard, socialSignInGuard, connectorTargetsGuard, customContentGuard, customUiAssetsGuard, partialPasswordPolicyGuard, mfaGuard, captchaPolicyGuard, sentinelPolicyGuard } from './../foundations/index.js';
+import { colorGuard, brandingGuard, languageInfoGuard, signInGuard, signUpGuard, socialSignInGuard, connectorTargetsGuard, customContentGuard, customUiAssetsGuard, partialPasswordPolicyGuard, mfaGuard, captchaPolicyGuard, sentinelPolicyGuard, emailBlocklistPolicyGuard } from './../foundations/index.js';
 import { AgreeToTermsPolicy, SignInMode } from './custom-types.js';
 const createGuard = z.object({
     tenantId: z.string().max(21).optional(),
@@ -27,6 +27,7 @@ const createGuard = z.object({
     unknownSessionRedirectUrl: z.string().nullable().optional(),
     captchaPolicy: captchaPolicyGuard.optional(),
     sentinelPolicy: sentinelPolicyGuard.optional(),
+    emailBlocklistPolicy: emailBlocklistPolicyGuard.optional(),
 });
 const guard = z.object({
     tenantId: z.string().max(21),
@@ -53,6 +54,7 @@ const guard = z.object({
     unknownSessionRedirectUrl: z.string().nullable(),
     captchaPolicy: captchaPolicyGuard,
     sentinelPolicy: sentinelPolicyGuard,
+    emailBlocklistPolicy: emailBlocklistPolicyGuard,
 });
 export const SignInExperiences = Object.freeze({
     table: 'sign_in_experiences',
@@ -82,6 +84,7 @@ export const SignInExperiences = Object.freeze({
         unknownSessionRedirectUrl: 'unknown_session_redirect_url',
         captchaPolicy: 'captcha_policy',
         sentinelPolicy: 'sentinel_policy',
+        emailBlocklistPolicy: 'email_blocklist_policy',
     },
     fieldKeys: [
         'tenantId',
@@ -108,6 +111,7 @@ export const SignInExperiences = Object.freeze({
         'unknownSessionRedirectUrl',
         'captchaPolicy',
         'sentinelPolicy',
+        'emailBlocklistPolicy',
     ],
     createGuard,
     guard,

package/lib/db-entries/user-sso-identity.d.ts

@@ -13,7 +13,9 @@ export type CreateUserSsoIdentity = {
     /** Provider user identity id */
     identityId: string;
     detail?: JsonObject;
+    /** Known issue: created_at uses timestamp instead of timestamptz */
     createdAt?: number;
+    updatedAt?: number;
     ssoConnectorId: string;
 };
 export type UserSsoIdentity = {
@@ -25,8 +27,10 @@ export type UserSsoIdentity = {
     /** Provider user identity id */
     identityId: string;
     detail: JsonObject;
+    /** Known issue: created_at uses timestamp instead of timestamptz */
     createdAt: number;
+    updatedAt: number;
     ssoConnectorId: string;
 };
-export type UserSsoIdentityKeys = 'tenantId' | 'id' | 'userId' | 'issuer' | 'identityId' | 'detail' | 'createdAt' | 'ssoConnectorId';
+export type UserSsoIdentityKeys = 'tenantId' | 'id' | 'userId' | 'issuer' | 'identityId' | 'detail' | 'createdAt' | 'updatedAt' | 'ssoConnectorId';
 export declare const UserSsoIdentities: GeneratedSchema<UserSsoIdentityKeys, CreateUserSsoIdentity, UserSsoIdentity, 'user_sso_identities', 'user_sso_identity'>;