@logto/schemas 1.38.0 → 1.40.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (94) hide show
  1. package/alterations/1.39.0-1774752400-add-delete-account-url.ts +20 -0
  2. package/alterations/1.39.0-1774770686-add-account-center-custom-css.ts +20 -0
  3. package/alterations/1.39.0-1776502301-add-sign-up-profile-fields.ts +20 -0
  4. package/alterations/1.40.0-1776516232-add-account-center-profile-fields.ts +20 -0
  5. package/alterations/1.40.0-1778318116-add-custom-ui-csp-to-sie.ts +20 -0
  6. package/alterations/1.40.0-1778500000-add-organization-user-relations-user-id-index.ts +41 -0
  7. package/alterations/1.40.0-1778500001-add-organization-role-user-relations-org-user-index.ts +43 -0
  8. package/alterations/1.40.0-1779421396-add-application-access-control-schema.ts +90 -0
  9. package/alterations-js/1.39.0-1774752400-add-delete-account-url.js +16 -0
  10. package/alterations-js/1.39.0-1774770686-add-account-center-custom-css.js +16 -0
  11. package/alterations-js/1.39.0-1776502301-add-sign-up-profile-fields.js +16 -0
  12. package/alterations-js/1.40.0-1776516232-add-account-center-profile-fields.js +16 -0
  13. package/alterations-js/1.40.0-1778318116-add-custom-ui-csp-to-sie.js +16 -0
  14. package/alterations-js/1.40.0-1778500000-add-organization-user-relations-user-id-index.js +37 -0
  15. package/alterations-js/1.40.0-1778500001-add-organization-role-user-relations-org-user-index.js +39 -0
  16. package/alterations-js/1.40.0-1779421396-add-application-access-control-schema.js +82 -0
  17. package/lib/consts/application.d.ts +1 -0
  18. package/lib/consts/application.js +1 -0
  19. package/lib/consts/index.d.ts +1 -0
  20. package/lib/consts/index.js +1 -0
  21. package/lib/db-entries/account-center.d.ts +14 -2
  22. package/lib/db-entries/account-center.js +13 -1
  23. package/lib/db-entries/application-access-control-org-role-relation.d.ts +22 -0
  24. package/lib/db-entries/application-access-control-org-role-relation.js +33 -0
  25. package/lib/db-entries/application-access-control-organization-relation.d.ts +20 -0
  26. package/lib/db-entries/application-access-control-organization-relation.js +29 -0
  27. package/lib/db-entries/application-access-control-user-relation.d.ts +20 -0
  28. package/lib/db-entries/application-access-control-user-relation.js +29 -0
  29. package/lib/db-entries/application-access-control-user-role-relation.d.ts +20 -0
  30. package/lib/db-entries/application-access-control-user-role-relation.js +29 -0
  31. package/lib/db-entries/application.d.ts +3 -1
  32. package/lib/db-entries/application.js +4 -0
  33. package/lib/db-entries/index.d.ts +4 -0
  34. package/lib/db-entries/index.js +4 -0
  35. package/lib/db-entries/sign-in-experience.d.ts +8 -2
  36. package/lib/db-entries/sign-in-experience.js +9 -1
  37. package/lib/foundations/jsonb-types/account-centers.d.ts +27 -0
  38. package/lib/foundations/jsonb-types/account-centers.js +12 -0
  39. package/lib/foundations/jsonb-types/applications.d.ts +3 -0
  40. package/lib/foundations/jsonb-types/applications.js +4 -0
  41. package/lib/foundations/jsonb-types/applications.test.d.ts +1 -0
  42. package/lib/foundations/jsonb-types/applications.test.js +23 -0
  43. package/lib/foundations/jsonb-types/sign-in-experience.d.ts +27 -1
  44. package/lib/foundations/jsonb-types/sign-in-experience.js +5 -0
  45. package/lib/foundations/jsonb-types/sign-in-experience.test.d.ts +1 -0
  46. package/lib/foundations/jsonb-types/sign-in-experience.test.js +18 -0
  47. package/lib/seeds/application.js +2 -0
  48. package/lib/seeds/sign-in-experience.d.ts +13 -1
  49. package/lib/seeds/sign-in-experience.js +10 -1
  50. package/lib/seeds/sign-in-experience.test.d.ts +1 -0
  51. package/lib/seeds/sign-in-experience.test.js +27 -0
  52. package/lib/types/alteration.d.ts +5 -0
  53. package/lib/types/application.d.ts +101 -2
  54. package/lib/types/application.js +55 -0
  55. package/lib/types/application.test.d.ts +1 -0
  56. package/lib/types/application.test.js +120 -0
  57. package/lib/types/consent.d.ts +6 -0
  58. package/lib/types/custom-profile-fields.d.ts +7 -13
  59. package/lib/types/custom-profile-fields.js +6 -13
  60. package/lib/types/logto-config/index.d.ts +93 -2
  61. package/lib/types/logto-config/index.js +22 -4
  62. package/lib/types/logto-config/index.test.d.ts +1 -0
  63. package/lib/types/logto-config/index.test.js +29 -0
  64. package/lib/types/logto-config/jwt-customizer.d.ts +74 -0
  65. package/lib/types/logto-config/jwt-customizer.js +1 -0
  66. package/lib/types/logto-config/jwt-customizer.test.js +14 -2
  67. package/lib/types/onboarding.d.ts +93 -1
  68. package/lib/types/onboarding.js +22 -1
  69. package/lib/types/saml-application.d.ts +3 -0
  70. package/lib/types/sign-in-experience.d.ts +23 -2
  71. package/lib/types/sign-in-experience.js +1 -0
  72. package/lib/types/system.d.ts +46 -7
  73. package/lib/types/system.js +9 -0
  74. package/lib/types/user-assets.d.ts +1 -1
  75. package/lib/types/user-logto-config.d.ts +11 -0
  76. package/lib/types/user-logto-config.js +6 -0
  77. package/lib/types/user-sessions.d.ts +2516 -0
  78. package/lib/types/user-sessions.js +21 -0
  79. package/lib/utils/index.d.ts +1 -0
  80. package/lib/utils/index.js +1 -0
  81. package/lib/utils/oidc-private-key.d.ts +88 -0
  82. package/lib/utils/oidc-private-key.js +163 -0
  83. package/lib/utils/oidc-private-key.test.d.ts +1 -0
  84. package/lib/utils/oidc-private-key.test.js +128 -0
  85. package/package.json +6 -6
  86. package/tables/account_centers.sql +6 -0
  87. package/tables/application_access_control_org_role_relations.sql +16 -0
  88. package/tables/application_access_control_organization_relations.sql +12 -0
  89. package/tables/application_access_control_user_relations.sql +12 -0
  90. package/tables/application_access_control_user_role_relations.sql +14 -0
  91. package/tables/applications.sql +1 -0
  92. package/tables/organization_role_user_relations.sql +3 -0
  93. package/tables/organization_user_relations.sql +3 -0
  94. package/tables/sign_in_experiences.sql +3 -0
@@ -10,14 +10,17 @@ export declare const jwtCustomizerGuard: z.ZodObject<{
10
10
  script: z.ZodString;
11
11
  environmentVariables: z.ZodOptional<z.ZodRecord<z.ZodString, z.ZodString>>;
12
12
  contextSample: z.ZodOptional<z.ZodRecord<z.ZodString, ZodType<import("@withtyped/server/lib/types.js").Json, z.ZodTypeDef, import("@withtyped/server/lib/types.js").Json>>>;
13
+ blockIssuanceOnError: z.ZodOptional<z.ZodBoolean>;
13
14
  }, "strip", z.ZodTypeAny, {
14
15
  script: string;
15
16
  environmentVariables?: Record<string, string> | undefined;
16
17
  contextSample?: Record<string, import("@withtyped/server/lib/types.js").Json> | undefined;
18
+ blockIssuanceOnError?: boolean | undefined;
17
19
  }, {
18
20
  script: string;
19
21
  environmentVariables?: Record<string, string> | undefined;
20
22
  contextSample?: Record<string, import("@withtyped/server/lib/types.js").Json> | undefined;
23
+ blockIssuanceOnError?: boolean | undefined;
21
24
  }>;
22
25
  export declare enum LogtoJwtTokenKeyType {
23
26
  AccessToken = "access-token",
@@ -1187,6 +1190,7 @@ export declare const jwtCustomizerApplicationContextGuard: z.ZodObject<Omit<{
1187
1190
  pageRules: {
1188
1191
  path: string;
1189
1192
  }[];
1193
+ additionalScopes?: (import("@logto/core-kit").UserScope.CustomData | import("@logto/core-kit").UserScope.Identities | import("@logto/core-kit").UserScope.Roles | import("@logto/core-kit").UserScope.Organizations | import("@logto/core-kit").UserScope.OrganizationRoles)[] | undefined;
1190
1194
  customDomains?: {
1191
1195
  status: import("../../foundations/index.js").DomainStatus;
1192
1196
  domain: string;
@@ -1215,6 +1219,7 @@ export declare const jwtCustomizerApplicationContextGuard: z.ZodObject<Omit<{
1215
1219
  pageRules: {
1216
1220
  path: string;
1217
1221
  }[];
1222
+ additionalScopes?: (import("@logto/core-kit").UserScope.CustomData | import("@logto/core-kit").UserScope.Identities | import("@logto/core-kit").UserScope.Roles | import("@logto/core-kit").UserScope.Organizations | import("@logto/core-kit").UserScope.OrganizationRoles)[] | undefined;
1218
1223
  customDomains?: {
1219
1224
  status: import("../../foundations/index.js").DomainStatus;
1220
1225
  domain: string;
@@ -1239,6 +1244,7 @@ export declare const jwtCustomizerApplicationContextGuard: z.ZodObject<Omit<{
1239
1244
  } | null>;
1240
1245
  customData: ZodType<import("@withtyped/server/lib/types.js").JsonObject, z.ZodTypeDef, import("@withtyped/server/lib/types.js").JsonObject>;
1241
1246
  isThirdParty: ZodType<boolean, z.ZodTypeDef, boolean>;
1247
+ appLevelAccessControlEnabled: ZodType<boolean, z.ZodTypeDef, boolean>;
1242
1248
  createdAt: ZodType<number, z.ZodTypeDef, number>;
1243
1249
  }, "secret">, "strip", z.ZodTypeAny, {
1244
1250
  type: import("../../db-entries/custom-types.js").ApplicationType;
@@ -1252,6 +1258,7 @@ export declare const jwtCustomizerApplicationContextGuard: z.ZodObject<Omit<{
1252
1258
  customClientMetadata: import("../../foundations/index.js").CustomClientMetadata;
1253
1259
  protectedAppMetadata: import("../../foundations/index.js").ProtectedAppMetadata | null;
1254
1260
  isThirdParty: boolean;
1261
+ appLevelAccessControlEnabled: boolean;
1255
1262
  }, {
1256
1263
  type: import("../../db-entries/custom-types.js").ApplicationType;
1257
1264
  name: string;
@@ -1264,10 +1271,12 @@ export declare const jwtCustomizerApplicationContextGuard: z.ZodObject<Omit<{
1264
1271
  customClientMetadata: import("../../foundations/index.js").CustomClientMetadata;
1265
1272
  protectedAppMetadata: import("../../foundations/index.js").ProtectedAppMetadata | null;
1266
1273
  isThirdParty: boolean;
1274
+ appLevelAccessControlEnabled: boolean;
1267
1275
  }>;
1268
1276
  export declare const accessTokenJwtCustomizerGuard: z.ZodObject<{
1269
1277
  script: z.ZodString;
1270
1278
  environmentVariables: z.ZodOptional<z.ZodRecord<z.ZodString, z.ZodString>>;
1279
+ blockIssuanceOnError: z.ZodOptional<z.ZodBoolean>;
1271
1280
  } & {
1272
1281
  tokenSample: z.ZodOptional<z.ZodObject<{
1273
1282
  accountId: z.ZodOptional<z.ZodString>;
@@ -2441,6 +2450,7 @@ export declare const accessTokenJwtCustomizerGuard: z.ZodObject<{
2441
2450
  pageRules: {
2442
2451
  path: string;
2443
2452
  }[];
2453
+ additionalScopes?: (import("@logto/core-kit").UserScope.CustomData | import("@logto/core-kit").UserScope.Identities | import("@logto/core-kit").UserScope.Roles | import("@logto/core-kit").UserScope.Organizations | import("@logto/core-kit").UserScope.OrganizationRoles)[] | undefined;
2444
2454
  customDomains?: {
2445
2455
  status: import("../../foundations/index.js").DomainStatus;
2446
2456
  domain: string;
@@ -2469,6 +2479,7 @@ export declare const accessTokenJwtCustomizerGuard: z.ZodObject<{
2469
2479
  pageRules: {
2470
2480
  path: string;
2471
2481
  }[];
2482
+ additionalScopes?: (import("@logto/core-kit").UserScope.CustomData | import("@logto/core-kit").UserScope.Identities | import("@logto/core-kit").UserScope.Roles | import("@logto/core-kit").UserScope.Organizations | import("@logto/core-kit").UserScope.OrganizationRoles)[] | undefined;
2472
2483
  customDomains?: {
2473
2484
  status: import("../../foundations/index.js").DomainStatus;
2474
2485
  domain: string;
@@ -2492,6 +2503,7 @@ export declare const accessTokenJwtCustomizerGuard: z.ZodObject<{
2492
2503
  }[] | undefined;
2493
2504
  } | null>>;
2494
2505
  isThirdParty: z.ZodOptional<ZodType<boolean, z.ZodTypeDef, boolean>>;
2506
+ appLevelAccessControlEnabled: z.ZodOptional<ZodType<boolean, z.ZodTypeDef, boolean>>;
2495
2507
  }, "strip", z.ZodTypeAny, {
2496
2508
  type?: import("../../db-entries/custom-types.js").ApplicationType | undefined;
2497
2509
  name?: string | undefined;
@@ -2520,6 +2532,7 @@ export declare const accessTokenJwtCustomizerGuard: z.ZodObject<{
2520
2532
  pageRules: {
2521
2533
  path: string;
2522
2534
  }[];
2535
+ additionalScopes?: (import("@logto/core-kit").UserScope.CustomData | import("@logto/core-kit").UserScope.Identities | import("@logto/core-kit").UserScope.Roles | import("@logto/core-kit").UserScope.Organizations | import("@logto/core-kit").UserScope.OrganizationRoles)[] | undefined;
2523
2536
  customDomains?: {
2524
2537
  status: import("../../foundations/index.js").DomainStatus;
2525
2538
  domain: string;
@@ -2543,6 +2556,7 @@ export declare const accessTokenJwtCustomizerGuard: z.ZodObject<{
2543
2556
  }[] | undefined;
2544
2557
  } | null | undefined;
2545
2558
  isThirdParty?: boolean | undefined;
2559
+ appLevelAccessControlEnabled?: boolean | undefined;
2546
2560
  }, {
2547
2561
  type?: import("../../db-entries/custom-types.js").ApplicationType | undefined;
2548
2562
  name?: string | undefined;
@@ -2571,6 +2585,7 @@ export declare const accessTokenJwtCustomizerGuard: z.ZodObject<{
2571
2585
  pageRules: {
2572
2586
  path: string;
2573
2587
  }[];
2588
+ additionalScopes?: (import("@logto/core-kit").UserScope.CustomData | import("@logto/core-kit").UserScope.Identities | import("@logto/core-kit").UserScope.Roles | import("@logto/core-kit").UserScope.Organizations | import("@logto/core-kit").UserScope.OrganizationRoles)[] | undefined;
2574
2589
  customDomains?: {
2575
2590
  status: import("../../foundations/index.js").DomainStatus;
2576
2591
  domain: string;
@@ -2594,6 +2609,7 @@ export declare const accessTokenJwtCustomizerGuard: z.ZodObject<{
2594
2609
  }[] | undefined;
2595
2610
  } | null | undefined;
2596
2611
  isThirdParty?: boolean | undefined;
2612
+ appLevelAccessControlEnabled?: boolean | undefined;
2597
2613
  }>>;
2598
2614
  }, "strip", z.ZodTypeAny, {
2599
2615
  user: {
@@ -2692,6 +2708,7 @@ export declare const accessTokenJwtCustomizerGuard: z.ZodObject<{
2692
2708
  pageRules: {
2693
2709
  path: string;
2694
2710
  }[];
2711
+ additionalScopes?: (import("@logto/core-kit").UserScope.CustomData | import("@logto/core-kit").UserScope.Identities | import("@logto/core-kit").UserScope.Roles | import("@logto/core-kit").UserScope.Organizations | import("@logto/core-kit").UserScope.OrganizationRoles)[] | undefined;
2695
2712
  customDomains?: {
2696
2713
  status: import("../../foundations/index.js").DomainStatus;
2697
2714
  domain: string;
@@ -2715,6 +2732,7 @@ export declare const accessTokenJwtCustomizerGuard: z.ZodObject<{
2715
2732
  }[] | undefined;
2716
2733
  } | null | undefined;
2717
2734
  isThirdParty?: boolean | undefined;
2735
+ appLevelAccessControlEnabled?: boolean | undefined;
2718
2736
  } | undefined;
2719
2737
  grant?: {
2720
2738
  type?: GrantType.TokenExchange | undefined;
@@ -2932,6 +2950,7 @@ export declare const accessTokenJwtCustomizerGuard: z.ZodObject<{
2932
2950
  pageRules: {
2933
2951
  path: string;
2934
2952
  }[];
2953
+ additionalScopes?: (import("@logto/core-kit").UserScope.CustomData | import("@logto/core-kit").UserScope.Identities | import("@logto/core-kit").UserScope.Roles | import("@logto/core-kit").UserScope.Organizations | import("@logto/core-kit").UserScope.OrganizationRoles)[] | undefined;
2935
2954
  customDomains?: {
2936
2955
  status: import("../../foundations/index.js").DomainStatus;
2937
2956
  domain: string;
@@ -2955,6 +2974,7 @@ export declare const accessTokenJwtCustomizerGuard: z.ZodObject<{
2955
2974
  }[] | undefined;
2956
2975
  } | null | undefined;
2957
2976
  isThirdParty?: boolean | undefined;
2977
+ appLevelAccessControlEnabled?: boolean | undefined;
2958
2978
  } | undefined;
2959
2979
  grant?: {
2960
2980
  type?: GrantType.TokenExchange | undefined;
@@ -3176,6 +3196,7 @@ export declare const accessTokenJwtCustomizerGuard: z.ZodObject<{
3176
3196
  pageRules: {
3177
3197
  path: string;
3178
3198
  }[];
3199
+ additionalScopes?: (import("@logto/core-kit").UserScope.CustomData | import("@logto/core-kit").UserScope.Identities | import("@logto/core-kit").UserScope.Roles | import("@logto/core-kit").UserScope.Organizations | import("@logto/core-kit").UserScope.OrganizationRoles)[] | undefined;
3179
3200
  customDomains?: {
3180
3201
  status: import("../../foundations/index.js").DomainStatus;
3181
3202
  domain: string;
@@ -3199,6 +3220,7 @@ export declare const accessTokenJwtCustomizerGuard: z.ZodObject<{
3199
3220
  }[] | undefined;
3200
3221
  } | null | undefined;
3201
3222
  isThirdParty?: boolean | undefined;
3223
+ appLevelAccessControlEnabled?: boolean | undefined;
3202
3224
  } | undefined;
3203
3225
  grant?: {
3204
3226
  type?: GrantType.TokenExchange | undefined;
@@ -3320,6 +3342,7 @@ export declare const accessTokenJwtCustomizerGuard: z.ZodObject<{
3320
3342
  signInContext?: Record<string, string> | undefined;
3321
3343
  } | undefined;
3322
3344
  } | undefined;
3345
+ blockIssuanceOnError?: boolean | undefined;
3323
3346
  tokenSample?: {
3324
3347
  grantId?: string | undefined;
3325
3348
  sid?: string | undefined;
@@ -3433,6 +3456,7 @@ export declare const accessTokenJwtCustomizerGuard: z.ZodObject<{
3433
3456
  pageRules: {
3434
3457
  path: string;
3435
3458
  }[];
3459
+ additionalScopes?: (import("@logto/core-kit").UserScope.CustomData | import("@logto/core-kit").UserScope.Identities | import("@logto/core-kit").UserScope.Roles | import("@logto/core-kit").UserScope.Organizations | import("@logto/core-kit").UserScope.OrganizationRoles)[] | undefined;
3436
3460
  customDomains?: {
3437
3461
  status: import("../../foundations/index.js").DomainStatus;
3438
3462
  domain: string;
@@ -3456,6 +3480,7 @@ export declare const accessTokenJwtCustomizerGuard: z.ZodObject<{
3456
3480
  }[] | undefined;
3457
3481
  } | null | undefined;
3458
3482
  isThirdParty?: boolean | undefined;
3483
+ appLevelAccessControlEnabled?: boolean | undefined;
3459
3484
  } | undefined;
3460
3485
  grant?: {
3461
3486
  type?: GrantType.TokenExchange | undefined;
@@ -3577,6 +3602,7 @@ export declare const accessTokenJwtCustomizerGuard: z.ZodObject<{
3577
3602
  signInContext?: Record<string, string> | undefined;
3578
3603
  } | undefined;
3579
3604
  } | undefined;
3605
+ blockIssuanceOnError?: boolean | undefined;
3580
3606
  tokenSample?: {
3581
3607
  grantId?: string | undefined;
3582
3608
  sid?: string | undefined;
@@ -3595,6 +3621,7 @@ export type AccessTokenJwtCustomizer = z.infer<typeof accessTokenJwtCustomizerGu
3595
3621
  export declare const clientCredentialsJwtCustomizerGuard: z.ZodObject<{
3596
3622
  script: z.ZodString;
3597
3623
  environmentVariables: z.ZodOptional<z.ZodRecord<z.ZodString, z.ZodString>>;
3624
+ blockIssuanceOnError: z.ZodOptional<z.ZodBoolean>;
3598
3625
  } & {
3599
3626
  tokenSample: z.ZodOptional<z.ZodObject<{
3600
3627
  kind: z.ZodOptional<z.ZodLiteral<"ClientCredentials">>;
@@ -3655,6 +3682,7 @@ export declare const clientCredentialsJwtCustomizerGuard: z.ZodObject<{
3655
3682
  pageRules: {
3656
3683
  path: string;
3657
3684
  }[];
3685
+ additionalScopes?: (import("@logto/core-kit").UserScope.CustomData | import("@logto/core-kit").UserScope.Identities | import("@logto/core-kit").UserScope.Roles | import("@logto/core-kit").UserScope.Organizations | import("@logto/core-kit").UserScope.OrganizationRoles)[] | undefined;
3658
3686
  customDomains?: {
3659
3687
  status: import("../../foundations/index.js").DomainStatus;
3660
3688
  domain: string;
@@ -3683,6 +3711,7 @@ export declare const clientCredentialsJwtCustomizerGuard: z.ZodObject<{
3683
3711
  pageRules: {
3684
3712
  path: string;
3685
3713
  }[];
3714
+ additionalScopes?: (import("@logto/core-kit").UserScope.CustomData | import("@logto/core-kit").UserScope.Identities | import("@logto/core-kit").UserScope.Roles | import("@logto/core-kit").UserScope.Organizations | import("@logto/core-kit").UserScope.OrganizationRoles)[] | undefined;
3686
3715
  customDomains?: {
3687
3716
  status: import("../../foundations/index.js").DomainStatus;
3688
3717
  domain: string;
@@ -3706,6 +3735,7 @@ export declare const clientCredentialsJwtCustomizerGuard: z.ZodObject<{
3706
3735
  }[] | undefined;
3707
3736
  } | null>>;
3708
3737
  isThirdParty: z.ZodOptional<ZodType<boolean, z.ZodTypeDef, boolean>>;
3738
+ appLevelAccessControlEnabled: z.ZodOptional<ZodType<boolean, z.ZodTypeDef, boolean>>;
3709
3739
  }, "strip", z.ZodTypeAny, {
3710
3740
  type?: import("../../db-entries/custom-types.js").ApplicationType | undefined;
3711
3741
  name?: string | undefined;
@@ -3734,6 +3764,7 @@ export declare const clientCredentialsJwtCustomizerGuard: z.ZodObject<{
3734
3764
  pageRules: {
3735
3765
  path: string;
3736
3766
  }[];
3767
+ additionalScopes?: (import("@logto/core-kit").UserScope.CustomData | import("@logto/core-kit").UserScope.Identities | import("@logto/core-kit").UserScope.Roles | import("@logto/core-kit").UserScope.Organizations | import("@logto/core-kit").UserScope.OrganizationRoles)[] | undefined;
3737
3768
  customDomains?: {
3738
3769
  status: import("../../foundations/index.js").DomainStatus;
3739
3770
  domain: string;
@@ -3757,6 +3788,7 @@ export declare const clientCredentialsJwtCustomizerGuard: z.ZodObject<{
3757
3788
  }[] | undefined;
3758
3789
  } | null | undefined;
3759
3790
  isThirdParty?: boolean | undefined;
3791
+ appLevelAccessControlEnabled?: boolean | undefined;
3760
3792
  }, {
3761
3793
  type?: import("../../db-entries/custom-types.js").ApplicationType | undefined;
3762
3794
  name?: string | undefined;
@@ -3785,6 +3817,7 @@ export declare const clientCredentialsJwtCustomizerGuard: z.ZodObject<{
3785
3817
  pageRules: {
3786
3818
  path: string;
3787
3819
  }[];
3820
+ additionalScopes?: (import("@logto/core-kit").UserScope.CustomData | import("@logto/core-kit").UserScope.Identities | import("@logto/core-kit").UserScope.Roles | import("@logto/core-kit").UserScope.Organizations | import("@logto/core-kit").UserScope.OrganizationRoles)[] | undefined;
3788
3821
  customDomains?: {
3789
3822
  status: import("../../foundations/index.js").DomainStatus;
3790
3823
  domain: string;
@@ -3808,6 +3841,7 @@ export declare const clientCredentialsJwtCustomizerGuard: z.ZodObject<{
3808
3841
  }[] | undefined;
3809
3842
  } | null | undefined;
3810
3843
  isThirdParty?: boolean | undefined;
3844
+ appLevelAccessControlEnabled?: boolean | undefined;
3811
3845
  }>>;
3812
3846
  }, "strip", z.ZodTypeAny, {
3813
3847
  application?: {
@@ -3838,6 +3872,7 @@ export declare const clientCredentialsJwtCustomizerGuard: z.ZodObject<{
3838
3872
  pageRules: {
3839
3873
  path: string;
3840
3874
  }[];
3875
+ additionalScopes?: (import("@logto/core-kit").UserScope.CustomData | import("@logto/core-kit").UserScope.Identities | import("@logto/core-kit").UserScope.Roles | import("@logto/core-kit").UserScope.Organizations | import("@logto/core-kit").UserScope.OrganizationRoles)[] | undefined;
3841
3876
  customDomains?: {
3842
3877
  status: import("../../foundations/index.js").DomainStatus;
3843
3878
  domain: string;
@@ -3861,6 +3896,7 @@ export declare const clientCredentialsJwtCustomizerGuard: z.ZodObject<{
3861
3896
  }[] | undefined;
3862
3897
  } | null | undefined;
3863
3898
  isThirdParty?: boolean | undefined;
3899
+ appLevelAccessControlEnabled?: boolean | undefined;
3864
3900
  } | undefined;
3865
3901
  }, {
3866
3902
  application?: {
@@ -3891,6 +3927,7 @@ export declare const clientCredentialsJwtCustomizerGuard: z.ZodObject<{
3891
3927
  pageRules: {
3892
3928
  path: string;
3893
3929
  }[];
3930
+ additionalScopes?: (import("@logto/core-kit").UserScope.CustomData | import("@logto/core-kit").UserScope.Identities | import("@logto/core-kit").UserScope.Roles | import("@logto/core-kit").UserScope.Organizations | import("@logto/core-kit").UserScope.OrganizationRoles)[] | undefined;
3894
3931
  customDomains?: {
3895
3932
  status: import("../../foundations/index.js").DomainStatus;
3896
3933
  domain: string;
@@ -3914,6 +3951,7 @@ export declare const clientCredentialsJwtCustomizerGuard: z.ZodObject<{
3914
3951
  }[] | undefined;
3915
3952
  } | null | undefined;
3916
3953
  isThirdParty?: boolean | undefined;
3954
+ appLevelAccessControlEnabled?: boolean | undefined;
3917
3955
  } | undefined;
3918
3956
  }>>;
3919
3957
  }, "strict", z.ZodTypeAny, {
@@ -3948,6 +3986,7 @@ export declare const clientCredentialsJwtCustomizerGuard: z.ZodObject<{
3948
3986
  pageRules: {
3949
3987
  path: string;
3950
3988
  }[];
3989
+ additionalScopes?: (import("@logto/core-kit").UserScope.CustomData | import("@logto/core-kit").UserScope.Identities | import("@logto/core-kit").UserScope.Roles | import("@logto/core-kit").UserScope.Organizations | import("@logto/core-kit").UserScope.OrganizationRoles)[] | undefined;
3951
3990
  customDomains?: {
3952
3991
  status: import("../../foundations/index.js").DomainStatus;
3953
3992
  domain: string;
@@ -3971,8 +4010,10 @@ export declare const clientCredentialsJwtCustomizerGuard: z.ZodObject<{
3971
4010
  }[] | undefined;
3972
4011
  } | null | undefined;
3973
4012
  isThirdParty?: boolean | undefined;
4013
+ appLevelAccessControlEnabled?: boolean | undefined;
3974
4014
  } | undefined;
3975
4015
  } | undefined;
4016
+ blockIssuanceOnError?: boolean | undefined;
3976
4017
  tokenSample?: {
3977
4018
  jti?: string | undefined;
3978
4019
  kind?: "ClientCredentials" | undefined;
@@ -4012,6 +4053,7 @@ export declare const clientCredentialsJwtCustomizerGuard: z.ZodObject<{
4012
4053
  pageRules: {
4013
4054
  path: string;
4014
4055
  }[];
4056
+ additionalScopes?: (import("@logto/core-kit").UserScope.CustomData | import("@logto/core-kit").UserScope.Identities | import("@logto/core-kit").UserScope.Roles | import("@logto/core-kit").UserScope.Organizations | import("@logto/core-kit").UserScope.OrganizationRoles)[] | undefined;
4015
4057
  customDomains?: {
4016
4058
  status: import("../../foundations/index.js").DomainStatus;
4017
4059
  domain: string;
@@ -4035,8 +4077,10 @@ export declare const clientCredentialsJwtCustomizerGuard: z.ZodObject<{
4035
4077
  }[] | undefined;
4036
4078
  } | null | undefined;
4037
4079
  isThirdParty?: boolean | undefined;
4080
+ appLevelAccessControlEnabled?: boolean | undefined;
4038
4081
  } | undefined;
4039
4082
  } | undefined;
4083
+ blockIssuanceOnError?: boolean | undefined;
4040
4084
  tokenSample?: {
4041
4085
  jti?: string | undefined;
4042
4086
  kind?: "ClientCredentials" | undefined;
@@ -5226,6 +5270,7 @@ export declare const jwtCustomizerTestRequestBodyGuard: z.ZodDiscriminatedUnion<
5226
5270
  pageRules: {
5227
5271
  path: string;
5228
5272
  }[];
5273
+ additionalScopes?: (import("@logto/core-kit").UserScope.CustomData | import("@logto/core-kit").UserScope.Identities | import("@logto/core-kit").UserScope.Roles | import("@logto/core-kit").UserScope.Organizations | import("@logto/core-kit").UserScope.OrganizationRoles)[] | undefined;
5229
5274
  customDomains?: {
5230
5275
  status: import("../../foundations/index.js").DomainStatus;
5231
5276
  domain: string;
@@ -5254,6 +5299,7 @@ export declare const jwtCustomizerTestRequestBodyGuard: z.ZodDiscriminatedUnion<
5254
5299
  pageRules: {
5255
5300
  path: string;
5256
5301
  }[];
5302
+ additionalScopes?: (import("@logto/core-kit").UserScope.CustomData | import("@logto/core-kit").UserScope.Identities | import("@logto/core-kit").UserScope.Roles | import("@logto/core-kit").UserScope.Organizations | import("@logto/core-kit").UserScope.OrganizationRoles)[] | undefined;
5257
5303
  customDomains?: {
5258
5304
  status: import("../../foundations/index.js").DomainStatus;
5259
5305
  domain: string;
@@ -5277,6 +5323,7 @@ export declare const jwtCustomizerTestRequestBodyGuard: z.ZodDiscriminatedUnion<
5277
5323
  }[] | undefined;
5278
5324
  } | null>>;
5279
5325
  isThirdParty: z.ZodOptional<ZodType<boolean, z.ZodTypeDef, boolean>>;
5326
+ appLevelAccessControlEnabled: z.ZodOptional<ZodType<boolean, z.ZodTypeDef, boolean>>;
5280
5327
  }, "strip", z.ZodTypeAny, {
5281
5328
  type?: import("../../db-entries/custom-types.js").ApplicationType | undefined;
5282
5329
  name?: string | undefined;
@@ -5305,6 +5352,7 @@ export declare const jwtCustomizerTestRequestBodyGuard: z.ZodDiscriminatedUnion<
5305
5352
  pageRules: {
5306
5353
  path: string;
5307
5354
  }[];
5355
+ additionalScopes?: (import("@logto/core-kit").UserScope.CustomData | import("@logto/core-kit").UserScope.Identities | import("@logto/core-kit").UserScope.Roles | import("@logto/core-kit").UserScope.Organizations | import("@logto/core-kit").UserScope.OrganizationRoles)[] | undefined;
5308
5356
  customDomains?: {
5309
5357
  status: import("../../foundations/index.js").DomainStatus;
5310
5358
  domain: string;
@@ -5328,6 +5376,7 @@ export declare const jwtCustomizerTestRequestBodyGuard: z.ZodDiscriminatedUnion<
5328
5376
  }[] | undefined;
5329
5377
  } | null | undefined;
5330
5378
  isThirdParty?: boolean | undefined;
5379
+ appLevelAccessControlEnabled?: boolean | undefined;
5331
5380
  }, {
5332
5381
  type?: import("../../db-entries/custom-types.js").ApplicationType | undefined;
5333
5382
  name?: string | undefined;
@@ -5356,6 +5405,7 @@ export declare const jwtCustomizerTestRequestBodyGuard: z.ZodDiscriminatedUnion<
5356
5405
  pageRules: {
5357
5406
  path: string;
5358
5407
  }[];
5408
+ additionalScopes?: (import("@logto/core-kit").UserScope.CustomData | import("@logto/core-kit").UserScope.Identities | import("@logto/core-kit").UserScope.Roles | import("@logto/core-kit").UserScope.Organizations | import("@logto/core-kit").UserScope.OrganizationRoles)[] | undefined;
5359
5409
  customDomains?: {
5360
5410
  status: import("../../foundations/index.js").DomainStatus;
5361
5411
  domain: string;
@@ -5379,6 +5429,7 @@ export declare const jwtCustomizerTestRequestBodyGuard: z.ZodDiscriminatedUnion<
5379
5429
  }[] | undefined;
5380
5430
  } | null | undefined;
5381
5431
  isThirdParty?: boolean | undefined;
5432
+ appLevelAccessControlEnabled?: boolean | undefined;
5382
5433
  }>>;
5383
5434
  }, "strip", z.ZodTypeAny, {
5384
5435
  user: {
@@ -5477,6 +5528,7 @@ export declare const jwtCustomizerTestRequestBodyGuard: z.ZodDiscriminatedUnion<
5477
5528
  pageRules: {
5478
5529
  path: string;
5479
5530
  }[];
5531
+ additionalScopes?: (import("@logto/core-kit").UserScope.CustomData | import("@logto/core-kit").UserScope.Identities | import("@logto/core-kit").UserScope.Roles | import("@logto/core-kit").UserScope.Organizations | import("@logto/core-kit").UserScope.OrganizationRoles)[] | undefined;
5480
5532
  customDomains?: {
5481
5533
  status: import("../../foundations/index.js").DomainStatus;
5482
5534
  domain: string;
@@ -5500,6 +5552,7 @@ export declare const jwtCustomizerTestRequestBodyGuard: z.ZodDiscriminatedUnion<
5500
5552
  }[] | undefined;
5501
5553
  } | null | undefined;
5502
5554
  isThirdParty?: boolean | undefined;
5555
+ appLevelAccessControlEnabled?: boolean | undefined;
5503
5556
  } | undefined;
5504
5557
  grant?: {
5505
5558
  type?: GrantType.TokenExchange | undefined;
@@ -5717,6 +5770,7 @@ export declare const jwtCustomizerTestRequestBodyGuard: z.ZodDiscriminatedUnion<
5717
5770
  pageRules: {
5718
5771
  path: string;
5719
5772
  }[];
5773
+ additionalScopes?: (import("@logto/core-kit").UserScope.CustomData | import("@logto/core-kit").UserScope.Identities | import("@logto/core-kit").UserScope.Roles | import("@logto/core-kit").UserScope.Organizations | import("@logto/core-kit").UserScope.OrganizationRoles)[] | undefined;
5720
5774
  customDomains?: {
5721
5775
  status: import("../../foundations/index.js").DomainStatus;
5722
5776
  domain: string;
@@ -5740,6 +5794,7 @@ export declare const jwtCustomizerTestRequestBodyGuard: z.ZodDiscriminatedUnion<
5740
5794
  }[] | undefined;
5741
5795
  } | null | undefined;
5742
5796
  isThirdParty?: boolean | undefined;
5797
+ appLevelAccessControlEnabled?: boolean | undefined;
5743
5798
  } | undefined;
5744
5799
  grant?: {
5745
5800
  type?: GrantType.TokenExchange | undefined;
@@ -5975,6 +6030,7 @@ export declare const jwtCustomizerTestRequestBodyGuard: z.ZodDiscriminatedUnion<
5975
6030
  pageRules: {
5976
6031
  path: string;
5977
6032
  }[];
6033
+ additionalScopes?: (import("@logto/core-kit").UserScope.CustomData | import("@logto/core-kit").UserScope.Identities | import("@logto/core-kit").UserScope.Roles | import("@logto/core-kit").UserScope.Organizations | import("@logto/core-kit").UserScope.OrganizationRoles)[] | undefined;
5978
6034
  customDomains?: {
5979
6035
  status: import("../../foundations/index.js").DomainStatus;
5980
6036
  domain: string;
@@ -5998,6 +6054,7 @@ export declare const jwtCustomizerTestRequestBodyGuard: z.ZodDiscriminatedUnion<
5998
6054
  }[] | undefined;
5999
6055
  } | null | undefined;
6000
6056
  isThirdParty?: boolean | undefined;
6057
+ appLevelAccessControlEnabled?: boolean | undefined;
6001
6058
  } | undefined;
6002
6059
  grant?: {
6003
6060
  type?: GrantType.TokenExchange | undefined;
@@ -6233,6 +6290,7 @@ export declare const jwtCustomizerTestRequestBodyGuard: z.ZodDiscriminatedUnion<
6233
6290
  pageRules: {
6234
6291
  path: string;
6235
6292
  }[];
6293
+ additionalScopes?: (import("@logto/core-kit").UserScope.CustomData | import("@logto/core-kit").UserScope.Identities | import("@logto/core-kit").UserScope.Roles | import("@logto/core-kit").UserScope.Organizations | import("@logto/core-kit").UserScope.OrganizationRoles)[] | undefined;
6236
6294
  customDomains?: {
6237
6295
  status: import("../../foundations/index.js").DomainStatus;
6238
6296
  domain: string;
@@ -6256,6 +6314,7 @@ export declare const jwtCustomizerTestRequestBodyGuard: z.ZodDiscriminatedUnion<
6256
6314
  }[] | undefined;
6257
6315
  } | null | undefined;
6258
6316
  isThirdParty?: boolean | undefined;
6317
+ appLevelAccessControlEnabled?: boolean | undefined;
6259
6318
  } | undefined;
6260
6319
  grant?: {
6261
6320
  type?: GrantType.TokenExchange | undefined;
@@ -6440,6 +6499,7 @@ export declare const jwtCustomizerTestRequestBodyGuard: z.ZodDiscriminatedUnion<
6440
6499
  pageRules: {
6441
6500
  path: string;
6442
6501
  }[];
6502
+ additionalScopes?: (import("@logto/core-kit").UserScope.CustomData | import("@logto/core-kit").UserScope.Identities | import("@logto/core-kit").UserScope.Roles | import("@logto/core-kit").UserScope.Organizations | import("@logto/core-kit").UserScope.OrganizationRoles)[] | undefined;
6443
6503
  customDomains?: {
6444
6504
  status: import("../../foundations/index.js").DomainStatus;
6445
6505
  domain: string;
@@ -6468,6 +6528,7 @@ export declare const jwtCustomizerTestRequestBodyGuard: z.ZodDiscriminatedUnion<
6468
6528
  pageRules: {
6469
6529
  path: string;
6470
6530
  }[];
6531
+ additionalScopes?: (import("@logto/core-kit").UserScope.CustomData | import("@logto/core-kit").UserScope.Identities | import("@logto/core-kit").UserScope.Roles | import("@logto/core-kit").UserScope.Organizations | import("@logto/core-kit").UserScope.OrganizationRoles)[] | undefined;
6471
6532
  customDomains?: {
6472
6533
  status: import("../../foundations/index.js").DomainStatus;
6473
6534
  domain: string;
@@ -6491,6 +6552,7 @@ export declare const jwtCustomizerTestRequestBodyGuard: z.ZodDiscriminatedUnion<
6491
6552
  }[] | undefined;
6492
6553
  } | null>>;
6493
6554
  isThirdParty: z.ZodOptional<ZodType<boolean, z.ZodTypeDef, boolean>>;
6555
+ appLevelAccessControlEnabled: z.ZodOptional<ZodType<boolean, z.ZodTypeDef, boolean>>;
6494
6556
  }, "strip", z.ZodTypeAny, {
6495
6557
  type?: import("../../db-entries/custom-types.js").ApplicationType | undefined;
6496
6558
  name?: string | undefined;
@@ -6519,6 +6581,7 @@ export declare const jwtCustomizerTestRequestBodyGuard: z.ZodDiscriminatedUnion<
6519
6581
  pageRules: {
6520
6582
  path: string;
6521
6583
  }[];
6584
+ additionalScopes?: (import("@logto/core-kit").UserScope.CustomData | import("@logto/core-kit").UserScope.Identities | import("@logto/core-kit").UserScope.Roles | import("@logto/core-kit").UserScope.Organizations | import("@logto/core-kit").UserScope.OrganizationRoles)[] | undefined;
6522
6585
  customDomains?: {
6523
6586
  status: import("../../foundations/index.js").DomainStatus;
6524
6587
  domain: string;
@@ -6542,6 +6605,7 @@ export declare const jwtCustomizerTestRequestBodyGuard: z.ZodDiscriminatedUnion<
6542
6605
  }[] | undefined;
6543
6606
  } | null | undefined;
6544
6607
  isThirdParty?: boolean | undefined;
6608
+ appLevelAccessControlEnabled?: boolean | undefined;
6545
6609
  }, {
6546
6610
  type?: import("../../db-entries/custom-types.js").ApplicationType | undefined;
6547
6611
  name?: string | undefined;
@@ -6570,6 +6634,7 @@ export declare const jwtCustomizerTestRequestBodyGuard: z.ZodDiscriminatedUnion<
6570
6634
  pageRules: {
6571
6635
  path: string;
6572
6636
  }[];
6637
+ additionalScopes?: (import("@logto/core-kit").UserScope.CustomData | import("@logto/core-kit").UserScope.Identities | import("@logto/core-kit").UserScope.Roles | import("@logto/core-kit").UserScope.Organizations | import("@logto/core-kit").UserScope.OrganizationRoles)[] | undefined;
6573
6638
  customDomains?: {
6574
6639
  status: import("../../foundations/index.js").DomainStatus;
6575
6640
  domain: string;
@@ -6593,6 +6658,7 @@ export declare const jwtCustomizerTestRequestBodyGuard: z.ZodDiscriminatedUnion<
6593
6658
  }[] | undefined;
6594
6659
  } | null | undefined;
6595
6660
  isThirdParty?: boolean | undefined;
6661
+ appLevelAccessControlEnabled?: boolean | undefined;
6596
6662
  }>>;
6597
6663
  }, "strip", z.ZodTypeAny, {
6598
6664
  application?: {
@@ -6623,6 +6689,7 @@ export declare const jwtCustomizerTestRequestBodyGuard: z.ZodDiscriminatedUnion<
6623
6689
  pageRules: {
6624
6690
  path: string;
6625
6691
  }[];
6692
+ additionalScopes?: (import("@logto/core-kit").UserScope.CustomData | import("@logto/core-kit").UserScope.Identities | import("@logto/core-kit").UserScope.Roles | import("@logto/core-kit").UserScope.Organizations | import("@logto/core-kit").UserScope.OrganizationRoles)[] | undefined;
6626
6693
  customDomains?: {
6627
6694
  status: import("../../foundations/index.js").DomainStatus;
6628
6695
  domain: string;
@@ -6646,6 +6713,7 @@ export declare const jwtCustomizerTestRequestBodyGuard: z.ZodDiscriminatedUnion<
6646
6713
  }[] | undefined;
6647
6714
  } | null | undefined;
6648
6715
  isThirdParty?: boolean | undefined;
6716
+ appLevelAccessControlEnabled?: boolean | undefined;
6649
6717
  } | undefined;
6650
6718
  }, {
6651
6719
  application?: {
@@ -6676,6 +6744,7 @@ export declare const jwtCustomizerTestRequestBodyGuard: z.ZodDiscriminatedUnion<
6676
6744
  pageRules: {
6677
6745
  path: string;
6678
6746
  }[];
6747
+ additionalScopes?: (import("@logto/core-kit").UserScope.CustomData | import("@logto/core-kit").UserScope.Identities | import("@logto/core-kit").UserScope.Roles | import("@logto/core-kit").UserScope.Organizations | import("@logto/core-kit").UserScope.OrganizationRoles)[] | undefined;
6679
6748
  customDomains?: {
6680
6749
  status: import("../../foundations/index.js").DomainStatus;
6681
6750
  domain: string;
@@ -6699,6 +6768,7 @@ export declare const jwtCustomizerTestRequestBodyGuard: z.ZodDiscriminatedUnion<
6699
6768
  }[] | undefined;
6700
6769
  } | null | undefined;
6701
6770
  isThirdParty?: boolean | undefined;
6771
+ appLevelAccessControlEnabled?: boolean | undefined;
6702
6772
  } | undefined;
6703
6773
  }>;
6704
6774
  script: z.ZodString;
@@ -6741,6 +6811,7 @@ export declare const jwtCustomizerTestRequestBodyGuard: z.ZodDiscriminatedUnion<
6741
6811
  pageRules: {
6742
6812
  path: string;
6743
6813
  }[];
6814
+ additionalScopes?: (import("@logto/core-kit").UserScope.CustomData | import("@logto/core-kit").UserScope.Identities | import("@logto/core-kit").UserScope.Roles | import("@logto/core-kit").UserScope.Organizations | import("@logto/core-kit").UserScope.OrganizationRoles)[] | undefined;
6744
6815
  customDomains?: {
6745
6816
  status: import("../../foundations/index.js").DomainStatus;
6746
6817
  domain: string;
@@ -6764,6 +6835,7 @@ export declare const jwtCustomizerTestRequestBodyGuard: z.ZodDiscriminatedUnion<
6764
6835
  }[] | undefined;
6765
6836
  } | null | undefined;
6766
6837
  isThirdParty?: boolean | undefined;
6838
+ appLevelAccessControlEnabled?: boolean | undefined;
6767
6839
  } | undefined;
6768
6840
  };
6769
6841
  tokenType: LogtoJwtTokenKeyType.ClientCredentials;
@@ -6806,6 +6878,7 @@ export declare const jwtCustomizerTestRequestBodyGuard: z.ZodDiscriminatedUnion<
6806
6878
  pageRules: {
6807
6879
  path: string;
6808
6880
  }[];
6881
+ additionalScopes?: (import("@logto/core-kit").UserScope.CustomData | import("@logto/core-kit").UserScope.Identities | import("@logto/core-kit").UserScope.Roles | import("@logto/core-kit").UserScope.Organizations | import("@logto/core-kit").UserScope.OrganizationRoles)[] | undefined;
6809
6882
  customDomains?: {
6810
6883
  status: import("../../foundations/index.js").DomainStatus;
6811
6884
  domain: string;
@@ -6829,6 +6902,7 @@ export declare const jwtCustomizerTestRequestBodyGuard: z.ZodDiscriminatedUnion<
6829
6902
  }[] | undefined;
6830
6903
  } | null | undefined;
6831
6904
  isThirdParty?: boolean | undefined;
6905
+ appLevelAccessControlEnabled?: boolean | undefined;
6832
6906
  } | undefined;
6833
6907
  };
6834
6908
  tokenType: LogtoJwtTokenKeyType.ClientCredentials;
@@ -20,6 +20,7 @@ export const jwtCustomizerGuard = z.object({
20
20
  script: z.string(),
21
21
  environmentVariables: z.record(z.string()).optional(),
22
22
  contextSample: jsonObjectGuard.optional(),
23
+ blockIssuanceOnError: z.boolean().optional(),
23
24
  });
24
25
  export var LogtoJwtTokenKeyType;
25
26
  (function (LogtoJwtTokenKeyType) {
@@ -1,9 +1,20 @@
1
1
  import { pick } from '@silverhand/essentials';
2
2
  import { describe, expect, it } from 'vitest';
3
3
  import { accessTokenJwtCustomizerGuard, clientCredentialsJwtCustomizerGuard, } from './jwt-customizer.js';
4
- const allFields = ['script', 'environmentVariables', 'contextSample', 'tokenSample'];
4
+ const allFields = [
5
+ 'script',
6
+ 'environmentVariables',
7
+ 'contextSample',
8
+ 'tokenSample',
9
+ 'blockIssuanceOnError',
10
+ ];
5
11
  const requiredFields = ['script'];
6
- const optionalFields = ['environmentVariables', 'contextSample', 'tokenSample'];
12
+ const optionalFields = [
13
+ 'environmentVariables',
14
+ 'contextSample',
15
+ 'tokenSample',
16
+ 'blockIssuanceOnError',
17
+ ];
7
18
  const testClientCredentialsTokenPayload = {
8
19
  script: '',
9
20
  environmentVariables: {},
@@ -14,6 +25,7 @@ const testClientCredentialsTokenPayload = {
14
25
  },
15
26
  },
16
27
  tokenSample: {},
28
+ blockIssuanceOnError: false,
17
29
  };
18
30
  const testAccessTokenPayload = {
19
31
  ...testClientCredentialsTokenPayload,