@logto/schemas 1.39.0 → 1.40.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (70) hide show
  1. package/alterations/1.40.0-1776516232-add-account-center-profile-fields.ts +20 -0
  2. package/alterations/1.40.0-1778318116-add-custom-ui-csp-to-sie.ts +20 -0
  3. package/alterations/1.40.0-1778500000-add-organization-user-relations-user-id-index.ts +41 -0
  4. package/alterations/1.40.0-1778500001-add-organization-role-user-relations-org-user-index.ts +43 -0
  5. package/alterations/1.40.0-1779421396-add-application-access-control-schema.ts +90 -0
  6. package/alterations-js/1.40.0-1776516232-add-account-center-profile-fields.js +16 -0
  7. package/alterations-js/1.40.0-1778318116-add-custom-ui-csp-to-sie.js +16 -0
  8. package/alterations-js/1.40.0-1778500000-add-organization-user-relations-user-id-index.js +37 -0
  9. package/alterations-js/1.40.0-1778500001-add-organization-role-user-relations-org-user-index.js +39 -0
  10. package/alterations-js/1.40.0-1779421396-add-application-access-control-schema.js +82 -0
  11. package/lib/consts/application.d.ts +1 -0
  12. package/lib/consts/application.js +1 -0
  13. package/lib/consts/index.d.ts +1 -0
  14. package/lib/consts/index.js +1 -0
  15. package/lib/db-entries/account-center.d.ts +6 -2
  16. package/lib/db-entries/account-center.js +5 -1
  17. package/lib/db-entries/application-access-control-org-role-relation.d.ts +22 -0
  18. package/lib/db-entries/application-access-control-org-role-relation.js +33 -0
  19. package/lib/db-entries/application-access-control-organization-relation.d.ts +20 -0
  20. package/lib/db-entries/application-access-control-organization-relation.js +29 -0
  21. package/lib/db-entries/application-access-control-user-relation.d.ts +20 -0
  22. package/lib/db-entries/application-access-control-user-relation.js +29 -0
  23. package/lib/db-entries/application-access-control-user-role-relation.d.ts +20 -0
  24. package/lib/db-entries/application-access-control-user-role-relation.js +29 -0
  25. package/lib/db-entries/application.d.ts +3 -1
  26. package/lib/db-entries/application.js +4 -0
  27. package/lib/db-entries/index.d.ts +4 -0
  28. package/lib/db-entries/index.js +4 -0
  29. package/lib/db-entries/sign-in-experience.d.ts +4 -2
  30. package/lib/db-entries/sign-in-experience.js +5 -1
  31. package/lib/foundations/jsonb-types/account-centers.d.ts +26 -0
  32. package/lib/foundations/jsonb-types/account-centers.js +4 -0
  33. package/lib/foundations/jsonb-types/applications.d.ts +3 -0
  34. package/lib/foundations/jsonb-types/applications.js +4 -0
  35. package/lib/foundations/jsonb-types/applications.test.d.ts +1 -0
  36. package/lib/foundations/jsonb-types/applications.test.js +23 -0
  37. package/lib/foundations/jsonb-types/sign-in-experience.d.ts +1 -1
  38. package/lib/foundations/jsonb-types/sign-in-experience.js +1 -0
  39. package/lib/foundations/jsonb-types/sign-in-experience.test.d.ts +1 -0
  40. package/lib/foundations/jsonb-types/sign-in-experience.test.js +18 -0
  41. package/lib/seeds/application.js +2 -0
  42. package/lib/seeds/sign-in-experience.d.ts +13 -1
  43. package/lib/seeds/sign-in-experience.js +10 -1
  44. package/lib/seeds/sign-in-experience.test.d.ts +1 -0
  45. package/lib/seeds/sign-in-experience.test.js +27 -0
  46. package/lib/types/application.d.ts +99 -0
  47. package/lib/types/application.js +55 -0
  48. package/lib/types/application.test.d.ts +1 -0
  49. package/lib/types/application.test.js +120 -0
  50. package/lib/types/consent.d.ts +6 -0
  51. package/lib/types/logto-config/index.d.ts +38 -0
  52. package/lib/types/logto-config/jwt-customizer.d.ts +65 -0
  53. package/lib/types/saml-application.d.ts +3 -0
  54. package/lib/types/sign-in-experience.d.ts +14 -0
  55. package/lib/types/sign-in-experience.js +1 -0
  56. package/lib/types/system.d.ts +46 -7
  57. package/lib/types/system.js +9 -0
  58. package/lib/types/user-assets.d.ts +1 -1
  59. package/lib/types/user-sessions.d.ts +2516 -0
  60. package/lib/types/user-sessions.js +21 -0
  61. package/package.json +4 -4
  62. package/tables/account_centers.sql +2 -0
  63. package/tables/application_access_control_org_role_relations.sql +16 -0
  64. package/tables/application_access_control_organization_relations.sql +12 -0
  65. package/tables/application_access_control_user_relations.sql +12 -0
  66. package/tables/application_access_control_user_role_relations.sql +14 -0
  67. package/tables/applications.sql +1 -0
  68. package/tables/organization_role_user_relations.sql +3 -0
  69. package/tables/organization_user_relations.sql +3 -0
  70. package/tables/sign_in_experiences.sql +1 -0
@@ -1190,6 +1190,7 @@ export declare const jwtCustomizerApplicationContextGuard: z.ZodObject<Omit<{
1190
1190
  pageRules: {
1191
1191
  path: string;
1192
1192
  }[];
1193
+ additionalScopes?: (import("@logto/core-kit").UserScope.CustomData | import("@logto/core-kit").UserScope.Identities | import("@logto/core-kit").UserScope.Roles | import("@logto/core-kit").UserScope.Organizations | import("@logto/core-kit").UserScope.OrganizationRoles)[] | undefined;
1193
1194
  customDomains?: {
1194
1195
  status: import("../../foundations/index.js").DomainStatus;
1195
1196
  domain: string;
@@ -1218,6 +1219,7 @@ export declare const jwtCustomizerApplicationContextGuard: z.ZodObject<Omit<{
1218
1219
  pageRules: {
1219
1220
  path: string;
1220
1221
  }[];
1222
+ additionalScopes?: (import("@logto/core-kit").UserScope.CustomData | import("@logto/core-kit").UserScope.Identities | import("@logto/core-kit").UserScope.Roles | import("@logto/core-kit").UserScope.Organizations | import("@logto/core-kit").UserScope.OrganizationRoles)[] | undefined;
1221
1223
  customDomains?: {
1222
1224
  status: import("../../foundations/index.js").DomainStatus;
1223
1225
  domain: string;
@@ -1242,6 +1244,7 @@ export declare const jwtCustomizerApplicationContextGuard: z.ZodObject<Omit<{
1242
1244
  } | null>;
1243
1245
  customData: ZodType<import("@withtyped/server/lib/types.js").JsonObject, z.ZodTypeDef, import("@withtyped/server/lib/types.js").JsonObject>;
1244
1246
  isThirdParty: ZodType<boolean, z.ZodTypeDef, boolean>;
1247
+ appLevelAccessControlEnabled: ZodType<boolean, z.ZodTypeDef, boolean>;
1245
1248
  createdAt: ZodType<number, z.ZodTypeDef, number>;
1246
1249
  }, "secret">, "strip", z.ZodTypeAny, {
1247
1250
  type: import("../../db-entries/custom-types.js").ApplicationType;
@@ -1255,6 +1258,7 @@ export declare const jwtCustomizerApplicationContextGuard: z.ZodObject<Omit<{
1255
1258
  customClientMetadata: import("../../foundations/index.js").CustomClientMetadata;
1256
1259
  protectedAppMetadata: import("../../foundations/index.js").ProtectedAppMetadata | null;
1257
1260
  isThirdParty: boolean;
1261
+ appLevelAccessControlEnabled: boolean;
1258
1262
  }, {
1259
1263
  type: import("../../db-entries/custom-types.js").ApplicationType;
1260
1264
  name: string;
@@ -1267,6 +1271,7 @@ export declare const jwtCustomizerApplicationContextGuard: z.ZodObject<Omit<{
1267
1271
  customClientMetadata: import("../../foundations/index.js").CustomClientMetadata;
1268
1272
  protectedAppMetadata: import("../../foundations/index.js").ProtectedAppMetadata | null;
1269
1273
  isThirdParty: boolean;
1274
+ appLevelAccessControlEnabled: boolean;
1270
1275
  }>;
1271
1276
  export declare const accessTokenJwtCustomizerGuard: z.ZodObject<{
1272
1277
  script: z.ZodString;
@@ -2445,6 +2450,7 @@ export declare const accessTokenJwtCustomizerGuard: z.ZodObject<{
2445
2450
  pageRules: {
2446
2451
  path: string;
2447
2452
  }[];
2453
+ additionalScopes?: (import("@logto/core-kit").UserScope.CustomData | import("@logto/core-kit").UserScope.Identities | import("@logto/core-kit").UserScope.Roles | import("@logto/core-kit").UserScope.Organizations | import("@logto/core-kit").UserScope.OrganizationRoles)[] | undefined;
2448
2454
  customDomains?: {
2449
2455
  status: import("../../foundations/index.js").DomainStatus;
2450
2456
  domain: string;
@@ -2473,6 +2479,7 @@ export declare const accessTokenJwtCustomizerGuard: z.ZodObject<{
2473
2479
  pageRules: {
2474
2480
  path: string;
2475
2481
  }[];
2482
+ additionalScopes?: (import("@logto/core-kit").UserScope.CustomData | import("@logto/core-kit").UserScope.Identities | import("@logto/core-kit").UserScope.Roles | import("@logto/core-kit").UserScope.Organizations | import("@logto/core-kit").UserScope.OrganizationRoles)[] | undefined;
2476
2483
  customDomains?: {
2477
2484
  status: import("../../foundations/index.js").DomainStatus;
2478
2485
  domain: string;
@@ -2496,6 +2503,7 @@ export declare const accessTokenJwtCustomizerGuard: z.ZodObject<{
2496
2503
  }[] | undefined;
2497
2504
  } | null>>;
2498
2505
  isThirdParty: z.ZodOptional<ZodType<boolean, z.ZodTypeDef, boolean>>;
2506
+ appLevelAccessControlEnabled: z.ZodOptional<ZodType<boolean, z.ZodTypeDef, boolean>>;
2499
2507
  }, "strip", z.ZodTypeAny, {
2500
2508
  type?: import("../../db-entries/custom-types.js").ApplicationType | undefined;
2501
2509
  name?: string | undefined;
@@ -2524,6 +2532,7 @@ export declare const accessTokenJwtCustomizerGuard: z.ZodObject<{
2524
2532
  pageRules: {
2525
2533
  path: string;
2526
2534
  }[];
2535
+ additionalScopes?: (import("@logto/core-kit").UserScope.CustomData | import("@logto/core-kit").UserScope.Identities | import("@logto/core-kit").UserScope.Roles | import("@logto/core-kit").UserScope.Organizations | import("@logto/core-kit").UserScope.OrganizationRoles)[] | undefined;
2527
2536
  customDomains?: {
2528
2537
  status: import("../../foundations/index.js").DomainStatus;
2529
2538
  domain: string;
@@ -2547,6 +2556,7 @@ export declare const accessTokenJwtCustomizerGuard: z.ZodObject<{
2547
2556
  }[] | undefined;
2548
2557
  } | null | undefined;
2549
2558
  isThirdParty?: boolean | undefined;
2559
+ appLevelAccessControlEnabled?: boolean | undefined;
2550
2560
  }, {
2551
2561
  type?: import("../../db-entries/custom-types.js").ApplicationType | undefined;
2552
2562
  name?: string | undefined;
@@ -2575,6 +2585,7 @@ export declare const accessTokenJwtCustomizerGuard: z.ZodObject<{
2575
2585
  pageRules: {
2576
2586
  path: string;
2577
2587
  }[];
2588
+ additionalScopes?: (import("@logto/core-kit").UserScope.CustomData | import("@logto/core-kit").UserScope.Identities | import("@logto/core-kit").UserScope.Roles | import("@logto/core-kit").UserScope.Organizations | import("@logto/core-kit").UserScope.OrganizationRoles)[] | undefined;
2578
2589
  customDomains?: {
2579
2590
  status: import("../../foundations/index.js").DomainStatus;
2580
2591
  domain: string;
@@ -2598,6 +2609,7 @@ export declare const accessTokenJwtCustomizerGuard: z.ZodObject<{
2598
2609
  }[] | undefined;
2599
2610
  } | null | undefined;
2600
2611
  isThirdParty?: boolean | undefined;
2612
+ appLevelAccessControlEnabled?: boolean | undefined;
2601
2613
  }>>;
2602
2614
  }, "strip", z.ZodTypeAny, {
2603
2615
  user: {
@@ -2696,6 +2708,7 @@ export declare const accessTokenJwtCustomizerGuard: z.ZodObject<{
2696
2708
  pageRules: {
2697
2709
  path: string;
2698
2710
  }[];
2711
+ additionalScopes?: (import("@logto/core-kit").UserScope.CustomData | import("@logto/core-kit").UserScope.Identities | import("@logto/core-kit").UserScope.Roles | import("@logto/core-kit").UserScope.Organizations | import("@logto/core-kit").UserScope.OrganizationRoles)[] | undefined;
2699
2712
  customDomains?: {
2700
2713
  status: import("../../foundations/index.js").DomainStatus;
2701
2714
  domain: string;
@@ -2719,6 +2732,7 @@ export declare const accessTokenJwtCustomizerGuard: z.ZodObject<{
2719
2732
  }[] | undefined;
2720
2733
  } | null | undefined;
2721
2734
  isThirdParty?: boolean | undefined;
2735
+ appLevelAccessControlEnabled?: boolean | undefined;
2722
2736
  } | undefined;
2723
2737
  grant?: {
2724
2738
  type?: GrantType.TokenExchange | undefined;
@@ -2936,6 +2950,7 @@ export declare const accessTokenJwtCustomizerGuard: z.ZodObject<{
2936
2950
  pageRules: {
2937
2951
  path: string;
2938
2952
  }[];
2953
+ additionalScopes?: (import("@logto/core-kit").UserScope.CustomData | import("@logto/core-kit").UserScope.Identities | import("@logto/core-kit").UserScope.Roles | import("@logto/core-kit").UserScope.Organizations | import("@logto/core-kit").UserScope.OrganizationRoles)[] | undefined;
2939
2954
  customDomains?: {
2940
2955
  status: import("../../foundations/index.js").DomainStatus;
2941
2956
  domain: string;
@@ -2959,6 +2974,7 @@ export declare const accessTokenJwtCustomizerGuard: z.ZodObject<{
2959
2974
  }[] | undefined;
2960
2975
  } | null | undefined;
2961
2976
  isThirdParty?: boolean | undefined;
2977
+ appLevelAccessControlEnabled?: boolean | undefined;
2962
2978
  } | undefined;
2963
2979
  grant?: {
2964
2980
  type?: GrantType.TokenExchange | undefined;
@@ -3180,6 +3196,7 @@ export declare const accessTokenJwtCustomizerGuard: z.ZodObject<{
3180
3196
  pageRules: {
3181
3197
  path: string;
3182
3198
  }[];
3199
+ additionalScopes?: (import("@logto/core-kit").UserScope.CustomData | import("@logto/core-kit").UserScope.Identities | import("@logto/core-kit").UserScope.Roles | import("@logto/core-kit").UserScope.Organizations | import("@logto/core-kit").UserScope.OrganizationRoles)[] | undefined;
3183
3200
  customDomains?: {
3184
3201
  status: import("../../foundations/index.js").DomainStatus;
3185
3202
  domain: string;
@@ -3203,6 +3220,7 @@ export declare const accessTokenJwtCustomizerGuard: z.ZodObject<{
3203
3220
  }[] | undefined;
3204
3221
  } | null | undefined;
3205
3222
  isThirdParty?: boolean | undefined;
3223
+ appLevelAccessControlEnabled?: boolean | undefined;
3206
3224
  } | undefined;
3207
3225
  grant?: {
3208
3226
  type?: GrantType.TokenExchange | undefined;
@@ -3438,6 +3456,7 @@ export declare const accessTokenJwtCustomizerGuard: z.ZodObject<{
3438
3456
  pageRules: {
3439
3457
  path: string;
3440
3458
  }[];
3459
+ additionalScopes?: (import("@logto/core-kit").UserScope.CustomData | import("@logto/core-kit").UserScope.Identities | import("@logto/core-kit").UserScope.Roles | import("@logto/core-kit").UserScope.Organizations | import("@logto/core-kit").UserScope.OrganizationRoles)[] | undefined;
3441
3460
  customDomains?: {
3442
3461
  status: import("../../foundations/index.js").DomainStatus;
3443
3462
  domain: string;
@@ -3461,6 +3480,7 @@ export declare const accessTokenJwtCustomizerGuard: z.ZodObject<{
3461
3480
  }[] | undefined;
3462
3481
  } | null | undefined;
3463
3482
  isThirdParty?: boolean | undefined;
3483
+ appLevelAccessControlEnabled?: boolean | undefined;
3464
3484
  } | undefined;
3465
3485
  grant?: {
3466
3486
  type?: GrantType.TokenExchange | undefined;
@@ -3662,6 +3682,7 @@ export declare const clientCredentialsJwtCustomizerGuard: z.ZodObject<{
3662
3682
  pageRules: {
3663
3683
  path: string;
3664
3684
  }[];
3685
+ additionalScopes?: (import("@logto/core-kit").UserScope.CustomData | import("@logto/core-kit").UserScope.Identities | import("@logto/core-kit").UserScope.Roles | import("@logto/core-kit").UserScope.Organizations | import("@logto/core-kit").UserScope.OrganizationRoles)[] | undefined;
3665
3686
  customDomains?: {
3666
3687
  status: import("../../foundations/index.js").DomainStatus;
3667
3688
  domain: string;
@@ -3690,6 +3711,7 @@ export declare const clientCredentialsJwtCustomizerGuard: z.ZodObject<{
3690
3711
  pageRules: {
3691
3712
  path: string;
3692
3713
  }[];
3714
+ additionalScopes?: (import("@logto/core-kit").UserScope.CustomData | import("@logto/core-kit").UserScope.Identities | import("@logto/core-kit").UserScope.Roles | import("@logto/core-kit").UserScope.Organizations | import("@logto/core-kit").UserScope.OrganizationRoles)[] | undefined;
3693
3715
  customDomains?: {
3694
3716
  status: import("../../foundations/index.js").DomainStatus;
3695
3717
  domain: string;
@@ -3713,6 +3735,7 @@ export declare const clientCredentialsJwtCustomizerGuard: z.ZodObject<{
3713
3735
  }[] | undefined;
3714
3736
  } | null>>;
3715
3737
  isThirdParty: z.ZodOptional<ZodType<boolean, z.ZodTypeDef, boolean>>;
3738
+ appLevelAccessControlEnabled: z.ZodOptional<ZodType<boolean, z.ZodTypeDef, boolean>>;
3716
3739
  }, "strip", z.ZodTypeAny, {
3717
3740
  type?: import("../../db-entries/custom-types.js").ApplicationType | undefined;
3718
3741
  name?: string | undefined;
@@ -3741,6 +3764,7 @@ export declare const clientCredentialsJwtCustomizerGuard: z.ZodObject<{
3741
3764
  pageRules: {
3742
3765
  path: string;
3743
3766
  }[];
3767
+ additionalScopes?: (import("@logto/core-kit").UserScope.CustomData | import("@logto/core-kit").UserScope.Identities | import("@logto/core-kit").UserScope.Roles | import("@logto/core-kit").UserScope.Organizations | import("@logto/core-kit").UserScope.OrganizationRoles)[] | undefined;
3744
3768
  customDomains?: {
3745
3769
  status: import("../../foundations/index.js").DomainStatus;
3746
3770
  domain: string;
@@ -3764,6 +3788,7 @@ export declare const clientCredentialsJwtCustomizerGuard: z.ZodObject<{
3764
3788
  }[] | undefined;
3765
3789
  } | null | undefined;
3766
3790
  isThirdParty?: boolean | undefined;
3791
+ appLevelAccessControlEnabled?: boolean | undefined;
3767
3792
  }, {
3768
3793
  type?: import("../../db-entries/custom-types.js").ApplicationType | undefined;
3769
3794
  name?: string | undefined;
@@ -3792,6 +3817,7 @@ export declare const clientCredentialsJwtCustomizerGuard: z.ZodObject<{
3792
3817
  pageRules: {
3793
3818
  path: string;
3794
3819
  }[];
3820
+ additionalScopes?: (import("@logto/core-kit").UserScope.CustomData | import("@logto/core-kit").UserScope.Identities | import("@logto/core-kit").UserScope.Roles | import("@logto/core-kit").UserScope.Organizations | import("@logto/core-kit").UserScope.OrganizationRoles)[] | undefined;
3795
3821
  customDomains?: {
3796
3822
  status: import("../../foundations/index.js").DomainStatus;
3797
3823
  domain: string;
@@ -3815,6 +3841,7 @@ export declare const clientCredentialsJwtCustomizerGuard: z.ZodObject<{
3815
3841
  }[] | undefined;
3816
3842
  } | null | undefined;
3817
3843
  isThirdParty?: boolean | undefined;
3844
+ appLevelAccessControlEnabled?: boolean | undefined;
3818
3845
  }>>;
3819
3846
  }, "strip", z.ZodTypeAny, {
3820
3847
  application?: {
@@ -3845,6 +3872,7 @@ export declare const clientCredentialsJwtCustomizerGuard: z.ZodObject<{
3845
3872
  pageRules: {
3846
3873
  path: string;
3847
3874
  }[];
3875
+ additionalScopes?: (import("@logto/core-kit").UserScope.CustomData | import("@logto/core-kit").UserScope.Identities | import("@logto/core-kit").UserScope.Roles | import("@logto/core-kit").UserScope.Organizations | import("@logto/core-kit").UserScope.OrganizationRoles)[] | undefined;
3848
3876
  customDomains?: {
3849
3877
  status: import("../../foundations/index.js").DomainStatus;
3850
3878
  domain: string;
@@ -3868,6 +3896,7 @@ export declare const clientCredentialsJwtCustomizerGuard: z.ZodObject<{
3868
3896
  }[] | undefined;
3869
3897
  } | null | undefined;
3870
3898
  isThirdParty?: boolean | undefined;
3899
+ appLevelAccessControlEnabled?: boolean | undefined;
3871
3900
  } | undefined;
3872
3901
  }, {
3873
3902
  application?: {
@@ -3898,6 +3927,7 @@ export declare const clientCredentialsJwtCustomizerGuard: z.ZodObject<{
3898
3927
  pageRules: {
3899
3928
  path: string;
3900
3929
  }[];
3930
+ additionalScopes?: (import("@logto/core-kit").UserScope.CustomData | import("@logto/core-kit").UserScope.Identities | import("@logto/core-kit").UserScope.Roles | import("@logto/core-kit").UserScope.Organizations | import("@logto/core-kit").UserScope.OrganizationRoles)[] | undefined;
3901
3931
  customDomains?: {
3902
3932
  status: import("../../foundations/index.js").DomainStatus;
3903
3933
  domain: string;
@@ -3921,6 +3951,7 @@ export declare const clientCredentialsJwtCustomizerGuard: z.ZodObject<{
3921
3951
  }[] | undefined;
3922
3952
  } | null | undefined;
3923
3953
  isThirdParty?: boolean | undefined;
3954
+ appLevelAccessControlEnabled?: boolean | undefined;
3924
3955
  } | undefined;
3925
3956
  }>>;
3926
3957
  }, "strict", z.ZodTypeAny, {
@@ -3955,6 +3986,7 @@ export declare const clientCredentialsJwtCustomizerGuard: z.ZodObject<{
3955
3986
  pageRules: {
3956
3987
  path: string;
3957
3988
  }[];
3989
+ additionalScopes?: (import("@logto/core-kit").UserScope.CustomData | import("@logto/core-kit").UserScope.Identities | import("@logto/core-kit").UserScope.Roles | import("@logto/core-kit").UserScope.Organizations | import("@logto/core-kit").UserScope.OrganizationRoles)[] | undefined;
3958
3990
  customDomains?: {
3959
3991
  status: import("../../foundations/index.js").DomainStatus;
3960
3992
  domain: string;
@@ -3978,6 +4010,7 @@ export declare const clientCredentialsJwtCustomizerGuard: z.ZodObject<{
3978
4010
  }[] | undefined;
3979
4011
  } | null | undefined;
3980
4012
  isThirdParty?: boolean | undefined;
4013
+ appLevelAccessControlEnabled?: boolean | undefined;
3981
4014
  } | undefined;
3982
4015
  } | undefined;
3983
4016
  blockIssuanceOnError?: boolean | undefined;
@@ -4020,6 +4053,7 @@ export declare const clientCredentialsJwtCustomizerGuard: z.ZodObject<{
4020
4053
  pageRules: {
4021
4054
  path: string;
4022
4055
  }[];
4056
+ additionalScopes?: (import("@logto/core-kit").UserScope.CustomData | import("@logto/core-kit").UserScope.Identities | import("@logto/core-kit").UserScope.Roles | import("@logto/core-kit").UserScope.Organizations | import("@logto/core-kit").UserScope.OrganizationRoles)[] | undefined;
4023
4057
  customDomains?: {
4024
4058
  status: import("../../foundations/index.js").DomainStatus;
4025
4059
  domain: string;
@@ -4043,6 +4077,7 @@ export declare const clientCredentialsJwtCustomizerGuard: z.ZodObject<{
4043
4077
  }[] | undefined;
4044
4078
  } | null | undefined;
4045
4079
  isThirdParty?: boolean | undefined;
4080
+ appLevelAccessControlEnabled?: boolean | undefined;
4046
4081
  } | undefined;
4047
4082
  } | undefined;
4048
4083
  blockIssuanceOnError?: boolean | undefined;
@@ -5235,6 +5270,7 @@ export declare const jwtCustomizerTestRequestBodyGuard: z.ZodDiscriminatedUnion<
5235
5270
  pageRules: {
5236
5271
  path: string;
5237
5272
  }[];
5273
+ additionalScopes?: (import("@logto/core-kit").UserScope.CustomData | import("@logto/core-kit").UserScope.Identities | import("@logto/core-kit").UserScope.Roles | import("@logto/core-kit").UserScope.Organizations | import("@logto/core-kit").UserScope.OrganizationRoles)[] | undefined;
5238
5274
  customDomains?: {
5239
5275
  status: import("../../foundations/index.js").DomainStatus;
5240
5276
  domain: string;
@@ -5263,6 +5299,7 @@ export declare const jwtCustomizerTestRequestBodyGuard: z.ZodDiscriminatedUnion<
5263
5299
  pageRules: {
5264
5300
  path: string;
5265
5301
  }[];
5302
+ additionalScopes?: (import("@logto/core-kit").UserScope.CustomData | import("@logto/core-kit").UserScope.Identities | import("@logto/core-kit").UserScope.Roles | import("@logto/core-kit").UserScope.Organizations | import("@logto/core-kit").UserScope.OrganizationRoles)[] | undefined;
5266
5303
  customDomains?: {
5267
5304
  status: import("../../foundations/index.js").DomainStatus;
5268
5305
  domain: string;
@@ -5286,6 +5323,7 @@ export declare const jwtCustomizerTestRequestBodyGuard: z.ZodDiscriminatedUnion<
5286
5323
  }[] | undefined;
5287
5324
  } | null>>;
5288
5325
  isThirdParty: z.ZodOptional<ZodType<boolean, z.ZodTypeDef, boolean>>;
5326
+ appLevelAccessControlEnabled: z.ZodOptional<ZodType<boolean, z.ZodTypeDef, boolean>>;
5289
5327
  }, "strip", z.ZodTypeAny, {
5290
5328
  type?: import("../../db-entries/custom-types.js").ApplicationType | undefined;
5291
5329
  name?: string | undefined;
@@ -5314,6 +5352,7 @@ export declare const jwtCustomizerTestRequestBodyGuard: z.ZodDiscriminatedUnion<
5314
5352
  pageRules: {
5315
5353
  path: string;
5316
5354
  }[];
5355
+ additionalScopes?: (import("@logto/core-kit").UserScope.CustomData | import("@logto/core-kit").UserScope.Identities | import("@logto/core-kit").UserScope.Roles | import("@logto/core-kit").UserScope.Organizations | import("@logto/core-kit").UserScope.OrganizationRoles)[] | undefined;
5317
5356
  customDomains?: {
5318
5357
  status: import("../../foundations/index.js").DomainStatus;
5319
5358
  domain: string;
@@ -5337,6 +5376,7 @@ export declare const jwtCustomizerTestRequestBodyGuard: z.ZodDiscriminatedUnion<
5337
5376
  }[] | undefined;
5338
5377
  } | null | undefined;
5339
5378
  isThirdParty?: boolean | undefined;
5379
+ appLevelAccessControlEnabled?: boolean | undefined;
5340
5380
  }, {
5341
5381
  type?: import("../../db-entries/custom-types.js").ApplicationType | undefined;
5342
5382
  name?: string | undefined;
@@ -5365,6 +5405,7 @@ export declare const jwtCustomizerTestRequestBodyGuard: z.ZodDiscriminatedUnion<
5365
5405
  pageRules: {
5366
5406
  path: string;
5367
5407
  }[];
5408
+ additionalScopes?: (import("@logto/core-kit").UserScope.CustomData | import("@logto/core-kit").UserScope.Identities | import("@logto/core-kit").UserScope.Roles | import("@logto/core-kit").UserScope.Organizations | import("@logto/core-kit").UserScope.OrganizationRoles)[] | undefined;
5368
5409
  customDomains?: {
5369
5410
  status: import("../../foundations/index.js").DomainStatus;
5370
5411
  domain: string;
@@ -5388,6 +5429,7 @@ export declare const jwtCustomizerTestRequestBodyGuard: z.ZodDiscriminatedUnion<
5388
5429
  }[] | undefined;
5389
5430
  } | null | undefined;
5390
5431
  isThirdParty?: boolean | undefined;
5432
+ appLevelAccessControlEnabled?: boolean | undefined;
5391
5433
  }>>;
5392
5434
  }, "strip", z.ZodTypeAny, {
5393
5435
  user: {
@@ -5486,6 +5528,7 @@ export declare const jwtCustomizerTestRequestBodyGuard: z.ZodDiscriminatedUnion<
5486
5528
  pageRules: {
5487
5529
  path: string;
5488
5530
  }[];
5531
+ additionalScopes?: (import("@logto/core-kit").UserScope.CustomData | import("@logto/core-kit").UserScope.Identities | import("@logto/core-kit").UserScope.Roles | import("@logto/core-kit").UserScope.Organizations | import("@logto/core-kit").UserScope.OrganizationRoles)[] | undefined;
5489
5532
  customDomains?: {
5490
5533
  status: import("../../foundations/index.js").DomainStatus;
5491
5534
  domain: string;
@@ -5509,6 +5552,7 @@ export declare const jwtCustomizerTestRequestBodyGuard: z.ZodDiscriminatedUnion<
5509
5552
  }[] | undefined;
5510
5553
  } | null | undefined;
5511
5554
  isThirdParty?: boolean | undefined;
5555
+ appLevelAccessControlEnabled?: boolean | undefined;
5512
5556
  } | undefined;
5513
5557
  grant?: {
5514
5558
  type?: GrantType.TokenExchange | undefined;
@@ -5726,6 +5770,7 @@ export declare const jwtCustomizerTestRequestBodyGuard: z.ZodDiscriminatedUnion<
5726
5770
  pageRules: {
5727
5771
  path: string;
5728
5772
  }[];
5773
+ additionalScopes?: (import("@logto/core-kit").UserScope.CustomData | import("@logto/core-kit").UserScope.Identities | import("@logto/core-kit").UserScope.Roles | import("@logto/core-kit").UserScope.Organizations | import("@logto/core-kit").UserScope.OrganizationRoles)[] | undefined;
5729
5774
  customDomains?: {
5730
5775
  status: import("../../foundations/index.js").DomainStatus;
5731
5776
  domain: string;
@@ -5749,6 +5794,7 @@ export declare const jwtCustomizerTestRequestBodyGuard: z.ZodDiscriminatedUnion<
5749
5794
  }[] | undefined;
5750
5795
  } | null | undefined;
5751
5796
  isThirdParty?: boolean | undefined;
5797
+ appLevelAccessControlEnabled?: boolean | undefined;
5752
5798
  } | undefined;
5753
5799
  grant?: {
5754
5800
  type?: GrantType.TokenExchange | undefined;
@@ -5984,6 +6030,7 @@ export declare const jwtCustomizerTestRequestBodyGuard: z.ZodDiscriminatedUnion<
5984
6030
  pageRules: {
5985
6031
  path: string;
5986
6032
  }[];
6033
+ additionalScopes?: (import("@logto/core-kit").UserScope.CustomData | import("@logto/core-kit").UserScope.Identities | import("@logto/core-kit").UserScope.Roles | import("@logto/core-kit").UserScope.Organizations | import("@logto/core-kit").UserScope.OrganizationRoles)[] | undefined;
5987
6034
  customDomains?: {
5988
6035
  status: import("../../foundations/index.js").DomainStatus;
5989
6036
  domain: string;
@@ -6007,6 +6054,7 @@ export declare const jwtCustomizerTestRequestBodyGuard: z.ZodDiscriminatedUnion<
6007
6054
  }[] | undefined;
6008
6055
  } | null | undefined;
6009
6056
  isThirdParty?: boolean | undefined;
6057
+ appLevelAccessControlEnabled?: boolean | undefined;
6010
6058
  } | undefined;
6011
6059
  grant?: {
6012
6060
  type?: GrantType.TokenExchange | undefined;
@@ -6242,6 +6290,7 @@ export declare const jwtCustomizerTestRequestBodyGuard: z.ZodDiscriminatedUnion<
6242
6290
  pageRules: {
6243
6291
  path: string;
6244
6292
  }[];
6293
+ additionalScopes?: (import("@logto/core-kit").UserScope.CustomData | import("@logto/core-kit").UserScope.Identities | import("@logto/core-kit").UserScope.Roles | import("@logto/core-kit").UserScope.Organizations | import("@logto/core-kit").UserScope.OrganizationRoles)[] | undefined;
6245
6294
  customDomains?: {
6246
6295
  status: import("../../foundations/index.js").DomainStatus;
6247
6296
  domain: string;
@@ -6265,6 +6314,7 @@ export declare const jwtCustomizerTestRequestBodyGuard: z.ZodDiscriminatedUnion<
6265
6314
  }[] | undefined;
6266
6315
  } | null | undefined;
6267
6316
  isThirdParty?: boolean | undefined;
6317
+ appLevelAccessControlEnabled?: boolean | undefined;
6268
6318
  } | undefined;
6269
6319
  grant?: {
6270
6320
  type?: GrantType.TokenExchange | undefined;
@@ -6449,6 +6499,7 @@ export declare const jwtCustomizerTestRequestBodyGuard: z.ZodDiscriminatedUnion<
6449
6499
  pageRules: {
6450
6500
  path: string;
6451
6501
  }[];
6502
+ additionalScopes?: (import("@logto/core-kit").UserScope.CustomData | import("@logto/core-kit").UserScope.Identities | import("@logto/core-kit").UserScope.Roles | import("@logto/core-kit").UserScope.Organizations | import("@logto/core-kit").UserScope.OrganizationRoles)[] | undefined;
6452
6503
  customDomains?: {
6453
6504
  status: import("../../foundations/index.js").DomainStatus;
6454
6505
  domain: string;
@@ -6477,6 +6528,7 @@ export declare const jwtCustomizerTestRequestBodyGuard: z.ZodDiscriminatedUnion<
6477
6528
  pageRules: {
6478
6529
  path: string;
6479
6530
  }[];
6531
+ additionalScopes?: (import("@logto/core-kit").UserScope.CustomData | import("@logto/core-kit").UserScope.Identities | import("@logto/core-kit").UserScope.Roles | import("@logto/core-kit").UserScope.Organizations | import("@logto/core-kit").UserScope.OrganizationRoles)[] | undefined;
6480
6532
  customDomains?: {
6481
6533
  status: import("../../foundations/index.js").DomainStatus;
6482
6534
  domain: string;
@@ -6500,6 +6552,7 @@ export declare const jwtCustomizerTestRequestBodyGuard: z.ZodDiscriminatedUnion<
6500
6552
  }[] | undefined;
6501
6553
  } | null>>;
6502
6554
  isThirdParty: z.ZodOptional<ZodType<boolean, z.ZodTypeDef, boolean>>;
6555
+ appLevelAccessControlEnabled: z.ZodOptional<ZodType<boolean, z.ZodTypeDef, boolean>>;
6503
6556
  }, "strip", z.ZodTypeAny, {
6504
6557
  type?: import("../../db-entries/custom-types.js").ApplicationType | undefined;
6505
6558
  name?: string | undefined;
@@ -6528,6 +6581,7 @@ export declare const jwtCustomizerTestRequestBodyGuard: z.ZodDiscriminatedUnion<
6528
6581
  pageRules: {
6529
6582
  path: string;
6530
6583
  }[];
6584
+ additionalScopes?: (import("@logto/core-kit").UserScope.CustomData | import("@logto/core-kit").UserScope.Identities | import("@logto/core-kit").UserScope.Roles | import("@logto/core-kit").UserScope.Organizations | import("@logto/core-kit").UserScope.OrganizationRoles)[] | undefined;
6531
6585
  customDomains?: {
6532
6586
  status: import("../../foundations/index.js").DomainStatus;
6533
6587
  domain: string;
@@ -6551,6 +6605,7 @@ export declare const jwtCustomizerTestRequestBodyGuard: z.ZodDiscriminatedUnion<
6551
6605
  }[] | undefined;
6552
6606
  } | null | undefined;
6553
6607
  isThirdParty?: boolean | undefined;
6608
+ appLevelAccessControlEnabled?: boolean | undefined;
6554
6609
  }, {
6555
6610
  type?: import("../../db-entries/custom-types.js").ApplicationType | undefined;
6556
6611
  name?: string | undefined;
@@ -6579,6 +6634,7 @@ export declare const jwtCustomizerTestRequestBodyGuard: z.ZodDiscriminatedUnion<
6579
6634
  pageRules: {
6580
6635
  path: string;
6581
6636
  }[];
6637
+ additionalScopes?: (import("@logto/core-kit").UserScope.CustomData | import("@logto/core-kit").UserScope.Identities | import("@logto/core-kit").UserScope.Roles | import("@logto/core-kit").UserScope.Organizations | import("@logto/core-kit").UserScope.OrganizationRoles)[] | undefined;
6582
6638
  customDomains?: {
6583
6639
  status: import("../../foundations/index.js").DomainStatus;
6584
6640
  domain: string;
@@ -6602,6 +6658,7 @@ export declare const jwtCustomizerTestRequestBodyGuard: z.ZodDiscriminatedUnion<
6602
6658
  }[] | undefined;
6603
6659
  } | null | undefined;
6604
6660
  isThirdParty?: boolean | undefined;
6661
+ appLevelAccessControlEnabled?: boolean | undefined;
6605
6662
  }>>;
6606
6663
  }, "strip", z.ZodTypeAny, {
6607
6664
  application?: {
@@ -6632,6 +6689,7 @@ export declare const jwtCustomizerTestRequestBodyGuard: z.ZodDiscriminatedUnion<
6632
6689
  pageRules: {
6633
6690
  path: string;
6634
6691
  }[];
6692
+ additionalScopes?: (import("@logto/core-kit").UserScope.CustomData | import("@logto/core-kit").UserScope.Identities | import("@logto/core-kit").UserScope.Roles | import("@logto/core-kit").UserScope.Organizations | import("@logto/core-kit").UserScope.OrganizationRoles)[] | undefined;
6635
6693
  customDomains?: {
6636
6694
  status: import("../../foundations/index.js").DomainStatus;
6637
6695
  domain: string;
@@ -6655,6 +6713,7 @@ export declare const jwtCustomizerTestRequestBodyGuard: z.ZodDiscriminatedUnion<
6655
6713
  }[] | undefined;
6656
6714
  } | null | undefined;
6657
6715
  isThirdParty?: boolean | undefined;
6716
+ appLevelAccessControlEnabled?: boolean | undefined;
6658
6717
  } | undefined;
6659
6718
  }, {
6660
6719
  application?: {
@@ -6685,6 +6744,7 @@ export declare const jwtCustomizerTestRequestBodyGuard: z.ZodDiscriminatedUnion<
6685
6744
  pageRules: {
6686
6745
  path: string;
6687
6746
  }[];
6747
+ additionalScopes?: (import("@logto/core-kit").UserScope.CustomData | import("@logto/core-kit").UserScope.Identities | import("@logto/core-kit").UserScope.Roles | import("@logto/core-kit").UserScope.Organizations | import("@logto/core-kit").UserScope.OrganizationRoles)[] | undefined;
6688
6748
  customDomains?: {
6689
6749
  status: import("../../foundations/index.js").DomainStatus;
6690
6750
  domain: string;
@@ -6708,6 +6768,7 @@ export declare const jwtCustomizerTestRequestBodyGuard: z.ZodDiscriminatedUnion<
6708
6768
  }[] | undefined;
6709
6769
  } | null | undefined;
6710
6770
  isThirdParty?: boolean | undefined;
6771
+ appLevelAccessControlEnabled?: boolean | undefined;
6711
6772
  } | undefined;
6712
6773
  }>;
6713
6774
  script: z.ZodString;
@@ -6750,6 +6811,7 @@ export declare const jwtCustomizerTestRequestBodyGuard: z.ZodDiscriminatedUnion<
6750
6811
  pageRules: {
6751
6812
  path: string;
6752
6813
  }[];
6814
+ additionalScopes?: (import("@logto/core-kit").UserScope.CustomData | import("@logto/core-kit").UserScope.Identities | import("@logto/core-kit").UserScope.Roles | import("@logto/core-kit").UserScope.Organizations | import("@logto/core-kit").UserScope.OrganizationRoles)[] | undefined;
6753
6815
  customDomains?: {
6754
6816
  status: import("../../foundations/index.js").DomainStatus;
6755
6817
  domain: string;
@@ -6773,6 +6835,7 @@ export declare const jwtCustomizerTestRequestBodyGuard: z.ZodDiscriminatedUnion<
6773
6835
  }[] | undefined;
6774
6836
  } | null | undefined;
6775
6837
  isThirdParty?: boolean | undefined;
6838
+ appLevelAccessControlEnabled?: boolean | undefined;
6776
6839
  } | undefined;
6777
6840
  };
6778
6841
  tokenType: LogtoJwtTokenKeyType.ClientCredentials;
@@ -6815,6 +6878,7 @@ export declare const jwtCustomizerTestRequestBodyGuard: z.ZodDiscriminatedUnion<
6815
6878
  pageRules: {
6816
6879
  path: string;
6817
6880
  }[];
6881
+ additionalScopes?: (import("@logto/core-kit").UserScope.CustomData | import("@logto/core-kit").UserScope.Identities | import("@logto/core-kit").UserScope.Roles | import("@logto/core-kit").UserScope.Organizations | import("@logto/core-kit").UserScope.OrganizationRoles)[] | undefined;
6818
6882
  customDomains?: {
6819
6883
  status: import("../../foundations/index.js").DomainStatus;
6820
6884
  domain: string;
@@ -6838,6 +6902,7 @@ export declare const jwtCustomizerTestRequestBodyGuard: z.ZodDiscriminatedUnion<
6838
6902
  }[] | undefined;
6839
6903
  } | null | undefined;
6840
6904
  isThirdParty?: boolean | undefined;
6905
+ appLevelAccessControlEnabled?: boolean | undefined;
6841
6906
  } | undefined;
6842
6907
  };
6843
6908
  tokenType: LogtoJwtTokenKeyType.ClientCredentials;
@@ -101,6 +101,7 @@ export declare const samlApplicationResponseGuard: z.ZodObject<{
101
101
  customData: z.ZodType<import("@withtyped/server/lib/types.js").JsonObject, z.ZodTypeDef, import("@withtyped/server/lib/types.js").JsonObject>;
102
102
  description: z.ZodType<string | null, z.ZodTypeDef, string | null>;
103
103
  isThirdParty: z.ZodType<boolean, z.ZodTypeDef, boolean>;
104
+ appLevelAccessControlEnabled: z.ZodType<boolean, z.ZodTypeDef, boolean>;
104
105
  attributeMapping: z.ZodType<Partial<Record<"name" | "username" | "email" | "sub" | "nickname" | "profile" | "website" | "gender" | "birthdate" | "zoneinfo" | "locale" | "address" | "given_name" | "family_name" | "middle_name" | "preferred_username" | "picture" | "email_verified" | "phone_number" | "phone_number_verified" | "updated_at" | "created_at" | "custom_data" | "identities" | "sso_identities" | "roles" | "organizations" | "organization_data" | "organization_roles", string>>, z.ZodTypeDef, Partial<Record<"name" | "username" | "email" | "sub" | "nickname" | "profile" | "website" | "gender" | "birthdate" | "zoneinfo" | "locale" | "address" | "given_name" | "family_name" | "middle_name" | "preferred_username" | "picture" | "email_verified" | "phone_number" | "phone_number_verified" | "updated_at" | "created_at" | "custom_data" | "identities" | "sso_identities" | "roles" | "organizations" | "organization_data" | "organization_roles", string>>>;
105
106
  entityId: z.ZodType<string | null, z.ZodTypeDef, string | null>;
106
107
  acsUrl: z.ZodType<import("../foundations/index.js").SamlAcsUrl | null, z.ZodTypeDef, import("../foundations/index.js").SamlAcsUrl | null>;
@@ -124,6 +125,7 @@ export declare const samlApplicationResponseGuard: z.ZodObject<{
124
125
  customData: import("@withtyped/server/lib/types.js").JsonObject;
125
126
  description: string | null;
126
127
  isThirdParty: boolean;
128
+ appLevelAccessControlEnabled: boolean;
127
129
  attributeMapping: import("../foundations/index.js").SamlAttributeMapping;
128
130
  entityId: string | null;
129
131
  acsUrl: import("../foundations/index.js").SamlAcsUrl | null;
@@ -138,6 +140,7 @@ export declare const samlApplicationResponseGuard: z.ZodObject<{
138
140
  customData: import("@withtyped/server/lib/types.js").JsonObject;
139
141
  description: string | null;
140
142
  isThirdParty: boolean;
143
+ appLevelAccessControlEnabled: boolean;
141
144
  attributeMapping: import("../foundations/index.js").SamlAttributeMapping;
142
145
  entityId: string | null;
143
146
  acsUrl: import("../foundations/index.js").SamlAcsUrl | null;
@@ -35,7 +35,15 @@ export type FullSignInExperience = Omit<SignInExperience, 'forgotPasswordMethods
35
35
  domain?: string;
36
36
  mode?: RecaptchaEnterpriseMode;
37
37
  };
38
+ /**
39
+ * Custom profile fields selected for the sign-up (Collect user profile) flow.
40
+ */
38
41
  customProfileFields?: Readonly<CustomProfileField[]>;
42
+ /**
43
+ * Full custom profile field catalog used to resolve field metadata (for example `required`
44
+ * and `type`) outside the sign-up field list, such as the account center profile page.
45
+ */
46
+ customProfileFieldCatalog?: Readonly<CustomProfileField[]>;
39
47
  };
40
48
  export declare const fullSignInExperienceGuard: z.ZodObject<Omit<{
41
49
  tenantId: z.ZodType<string, z.ZodTypeDef, string>;
@@ -99,6 +107,7 @@ export declare const fullSignInExperienceGuard: z.ZodObject<Omit<{
99
107
  id: string;
100
108
  createdAt: number;
101
109
  } | null>;
110
+ customUiCsp: z.ZodType<import("../foundations/jsonb-types/index.js").CustomUiCsp, z.ZodTypeDef, import("../foundations/jsonb-types/index.js").CustomUiCsp>;
102
111
  passwordPolicy: z.ZodType<{
103
112
  length?: {
104
113
  min?: number | undefined;
@@ -699,6 +708,7 @@ export declare const fullSignInExperienceGuard: z.ZodObject<Omit<{
699
708
  mode?: RecaptchaEnterpriseMode | undefined;
700
709
  }>>;
701
710
  customProfileFields: z.ZodArray<import("../index.js").Guard<CustomProfileField>, "many">;
711
+ customProfileFieldCatalog: z.ZodOptional<z.ZodArray<import("../index.js").Guard<CustomProfileField>, "many">>;
702
712
  }, "strip", z.ZodTypeAny, {
703
713
  id: string;
704
714
  tenantId: string;
@@ -718,6 +728,7 @@ export declare const fullSignInExperienceGuard: z.ZodObject<Omit<{
718
728
  signInMode: import("../db-entries/custom-types.js").SignInMode;
719
729
  customContent: import("../foundations/jsonb-types/sign-in-experience.js").CustomContent;
720
730
  customUiAssets: import("../foundations/jsonb-types/sign-in-experience.js").CustomUiAssets | null;
731
+ customUiCsp: import("../foundations/jsonb-types/index.js").CustomUiCsp;
721
732
  passwordPolicy: import("../foundations/jsonb-types/logs.js").PartialPasswordPolicy;
722
733
  adaptiveMfa: import("../foundations/jsonb-types/sign-in-experience.js").AdaptiveMfa;
723
734
  singleSignOnEnabled: boolean;
@@ -897,6 +908,7 @@ export declare const fullSignInExperienceGuard: z.ZodObject<Omit<{
897
908
  domain?: string | undefined;
898
909
  mode?: RecaptchaEnterpriseMode | undefined;
899
910
  } | undefined;
911
+ customProfileFieldCatalog?: CustomProfileField[] | undefined;
900
912
  }, {
901
913
  id: string;
902
914
  tenantId: string;
@@ -916,6 +928,7 @@ export declare const fullSignInExperienceGuard: z.ZodObject<Omit<{
916
928
  signInMode: import("../db-entries/custom-types.js").SignInMode;
917
929
  customContent: import("../foundations/jsonb-types/sign-in-experience.js").CustomContent;
918
930
  customUiAssets: import("../foundations/jsonb-types/sign-in-experience.js").CustomUiAssets | null;
931
+ customUiCsp: import("../foundations/jsonb-types/index.js").CustomUiCsp;
919
932
  passwordPolicy: import("../foundations/jsonb-types/logs.js").PartialPasswordPolicy;
920
933
  adaptiveMfa: import("../foundations/jsonb-types/sign-in-experience.js").AdaptiveMfa;
921
934
  singleSignOnEnabled: boolean;
@@ -1095,5 +1108,6 @@ export declare const fullSignInExperienceGuard: z.ZodObject<Omit<{
1095
1108
  domain?: string | undefined;
1096
1109
  mode?: RecaptchaEnterpriseMode | undefined;
1097
1110
  } | undefined;
1111
+ customProfileFieldCatalog?: CustomProfileField[] | undefined;
1098
1112
  }>;
1099
1113
  export {};
@@ -30,4 +30,5 @@ export const fullSignInExperienceGuard = SignInExperiences.guard
30
30
  })
31
31
  .optional(),
32
32
  customProfileFields: CustomProfileFields.guard.array(),
33
+ customProfileFieldCatalog: CustomProfileFields.guard.array().optional(),
33
34
  });