@meeco/svx-api-sdk 1.0.0-stage.20240502114933.d123429 → 1.0.0-stage.20240624095554.3e253ce

package/lib/types/apis/ItemsApi.d.ts

@@ -116,18 +116,18 @@ export interface ItemsGetRequest {
     meecoDelegationId?: string;
     meecoOrganisationId?: string;
 }
-export interface ItemsIdDeleteRequest {
-    id: string;
+export interface ItemsItemIdDeleteRequest {
+    itemId: string;
     meecoDelegationId?: string;
     meecoOrganisationId?: string;
 }
-export interface ItemsIdGetRequest {
-    id: string;
+export interface ItemsItemIdGetRequest {
+    itemId: string;
     meecoDelegationId?: string;
     meecoOrganisationId?: string;
 }
-export interface ItemsIdPutRequest {
-    id: string;
+export interface ItemsItemIdPutRequest {
+    itemId: string;
     meecoDelegationId?: string;
     meecoOrganisationId?: string;
     putItemsRequest?: PutItemsRequest;
@@ -316,32 +316,32 @@ export declare class ItemsApi extends runtime.BaseAPI {
      * Delete an item.  If the item is an item shared with the current user, the corresponding share is deleted together with the item.
      * Delete an item
      */
-    itemsIdDeleteRaw(requestParameters: ItemsIdDeleteRequest, initOverrides?: RequestInit | runtime.InitOverrideFunction): Promise<runtime.ApiResponse<void>>;
+    itemsItemIdDeleteRaw(requestParameters: ItemsItemIdDeleteRequest, initOverrides?: RequestInit | runtime.InitOverrideFunction): Promise<runtime.ApiResponse<void>>;
     /**
      * Delete an item.  If the item is an item shared with the current user, the corresponding share is deleted together with the item.
      * Delete an item
      */
-    itemsIdDelete(id: string, meecoDelegationId?: string, meecoOrganisationId?: string, initOverrides?: RequestInit | runtime.InitOverrideFunction): Promise<void>;
+    itemsItemIdDelete(itemId: string, meecoDelegationId?: string, meecoOrganisationId?: string, initOverrides?: RequestInit | runtime.InitOverrideFunction): Promise<void>;
     /**
-     * Retrieve a specific Item by `id`.
-     * Get Item
+     * Retrieve a specific Item by `item_id`.
+     * Get item
      */
-    itemsIdGetRaw(requestParameters: ItemsIdGetRequest, initOverrides?: RequestInit | runtime.InitOverrideFunction): Promise<runtime.ApiResponse<VaultItemResponse>>;
+    itemsItemIdGetRaw(requestParameters: ItemsItemIdGetRequest, initOverrides?: RequestInit | runtime.InitOverrideFunction): Promise<runtime.ApiResponse<VaultItemResponse>>;
     /**
-     * Retrieve a specific Item by `id`.
-     * Get Item
+     * Retrieve a specific Item by `item_id`.
+     * Get item
      */
-    itemsIdGet(id: string, meecoDelegationId?: string, meecoOrganisationId?: string, initOverrides?: RequestInit | runtime.InitOverrideFunction): Promise<VaultItemResponse>;
+    itemsItemIdGet(itemId: string, meecoDelegationId?: string, meecoOrganisationId?: string, initOverrides?: RequestInit | runtime.InitOverrideFunction): Promise<VaultItemResponse>;
     /**
-     * Update an Item specified by `id` with fields provided in the JSON body.  --- ### Classifications  In this endpoint it is possible to link the item and its slots to classification nodes, unlink the item and its slots from classification nodes, and to create classification nodes in user-owned classification schemes if they do not exist yet.  There are 2 types of classification schemes:  * owned by users - each user can create their own classification nodes * global - nodes are created by the system  There are 5 parameters for classification of slots and items in `POST /items`: * `node_id` * `node_name` * `scheme_id` * `scheme_name` * `_destroy`  Both a classification scheme and a classification node can be referred to by their name or their ID. If `id` is used, `scheme_id` and `scheme` may be omitted.  Flag `_destroy` is used to unlink a classification node from a slot or the item.  Example payload classifications:  ``` classification_nodes_attributes: [   {id: \"c1b1d2b3-a887-4cc2-86e8-285268df598a\"},   {scheme: \"region\", id: \"315e4e30-93f0-4232-b977-b51f90b18288\"},   {scheme: \"region\", name: \"france\", \"_destroy\": true},   {scheme_id: \"34c8c951-aa25-4d9a-9a9a-dbb5f43b821b\", name: \"netherlands\"},   {scheme_id: \"34c8c951-aa25-4d9a-9a9a-dbb5f43b821b\", id: \"16557bff-21fe-4bb1-8b0a-0a7847dfc7d6\"},   {scheme: \"tag\", name: \"my-own-cool-tag\"} ] ```  If node `france` is missing in scheme region, the service will return an error, because scheme `region` is a global scheme. `(owned_by_user=false)`. If node `my-own-cool-tag` is missing in scheme `tag`, it will be created, because scheme `tag` is a user owned scheme.  ---
+     * Update an item specified by `item_id` with fields provided in the JSON body.  --- ### Classifications  In this endpoint it is possible to link the item and its slots to classification nodes, unlink the item and its slots from classification nodes, and to create classification nodes in user-owned classification schemes if they do not exist yet.  There are 2 types of classification schemes:  * owned by users - each user can create their own classification nodes * global - nodes are created by the system  There are 5 parameters for classification of slots and items in `POST /items`: * `node_id` * `node_name` * `scheme_id` * `scheme_name` * `_destroy`  Both a classification scheme and a classification node can be referred to by their name or their ID. If `id` is used, `scheme_id` and `scheme` may be omitted.  Flag `_destroy` is used to unlink a classification node from a slot or the item.  Example payload classifications:  ``` classification_nodes_attributes: [   {id: \"c1b1d2b3-a887-4cc2-86e8-285268df598a\"},   {scheme: \"region\", id: \"315e4e30-93f0-4232-b977-b51f90b18288\"},   {scheme: \"region\", name: \"france\", \"_destroy\": true},   {scheme_id: \"34c8c951-aa25-4d9a-9a9a-dbb5f43b821b\", name: \"netherlands\"},   {scheme_id: \"34c8c951-aa25-4d9a-9a9a-dbb5f43b821b\", id: \"16557bff-21fe-4bb1-8b0a-0a7847dfc7d6\"},   {scheme: \"tag\", name: \"my-own-cool-tag\"} ] ```  If node `france` is missing in scheme region, the service will return an error, because scheme `region` is a global scheme. `(owned_by_user=false)`. If node `my-own-cool-tag` is missing in scheme `tag`, it will be created, because scheme `tag` is a user owned scheme.  ---
      * Update an item
      */
-    itemsIdPutRaw(requestParameters: ItemsIdPutRequest, initOverrides?: RequestInit | runtime.InitOverrideFunction): Promise<runtime.ApiResponse<VaultItemResponse>>;
+    itemsItemIdPutRaw(requestParameters: ItemsItemIdPutRequest, initOverrides?: RequestInit | runtime.InitOverrideFunction): Promise<runtime.ApiResponse<VaultItemResponse>>;
     /**
-     * Update an Item specified by `id` with fields provided in the JSON body.  --- ### Classifications  In this endpoint it is possible to link the item and its slots to classification nodes, unlink the item and its slots from classification nodes, and to create classification nodes in user-owned classification schemes if they do not exist yet.  There are 2 types of classification schemes:  * owned by users - each user can create their own classification nodes * global - nodes are created by the system  There are 5 parameters for classification of slots and items in `POST /items`: * `node_id` * `node_name` * `scheme_id` * `scheme_name` * `_destroy`  Both a classification scheme and a classification node can be referred to by their name or their ID. If `id` is used, `scheme_id` and `scheme` may be omitted.  Flag `_destroy` is used to unlink a classification node from a slot or the item.  Example payload classifications:  ``` classification_nodes_attributes: [   {id: \"c1b1d2b3-a887-4cc2-86e8-285268df598a\"},   {scheme: \"region\", id: \"315e4e30-93f0-4232-b977-b51f90b18288\"},   {scheme: \"region\", name: \"france\", \"_destroy\": true},   {scheme_id: \"34c8c951-aa25-4d9a-9a9a-dbb5f43b821b\", name: \"netherlands\"},   {scheme_id: \"34c8c951-aa25-4d9a-9a9a-dbb5f43b821b\", id: \"16557bff-21fe-4bb1-8b0a-0a7847dfc7d6\"},   {scheme: \"tag\", name: \"my-own-cool-tag\"} ] ```  If node `france` is missing in scheme region, the service will return an error, because scheme `region` is a global scheme. `(owned_by_user=false)`. If node `my-own-cool-tag` is missing in scheme `tag`, it will be created, because scheme `tag` is a user owned scheme.  ---
+     * Update an item specified by `item_id` with fields provided in the JSON body.  --- ### Classifications  In this endpoint it is possible to link the item and its slots to classification nodes, unlink the item and its slots from classification nodes, and to create classification nodes in user-owned classification schemes if they do not exist yet.  There are 2 types of classification schemes:  * owned by users - each user can create their own classification nodes * global - nodes are created by the system  There are 5 parameters for classification of slots and items in `POST /items`: * `node_id` * `node_name` * `scheme_id` * `scheme_name` * `_destroy`  Both a classification scheme and a classification node can be referred to by their name or their ID. If `id` is used, `scheme_id` and `scheme` may be omitted.  Flag `_destroy` is used to unlink a classification node from a slot or the item.  Example payload classifications:  ``` classification_nodes_attributes: [   {id: \"c1b1d2b3-a887-4cc2-86e8-285268df598a\"},   {scheme: \"region\", id: \"315e4e30-93f0-4232-b977-b51f90b18288\"},   {scheme: \"region\", name: \"france\", \"_destroy\": true},   {scheme_id: \"34c8c951-aa25-4d9a-9a9a-dbb5f43b821b\", name: \"netherlands\"},   {scheme_id: \"34c8c951-aa25-4d9a-9a9a-dbb5f43b821b\", id: \"16557bff-21fe-4bb1-8b0a-0a7847dfc7d6\"},   {scheme: \"tag\", name: \"my-own-cool-tag\"} ] ```  If node `france` is missing in scheme region, the service will return an error, because scheme `region` is a global scheme. `(owned_by_user=false)`. If node `my-own-cool-tag` is missing in scheme `tag`, it will be created, because scheme `tag` is a user owned scheme.  ---
      * Update an item
      */
-    itemsIdPut(id: string, meecoDelegationId?: string, meecoOrganisationId?: string, putItemsRequest?: PutItemsRequest, initOverrides?: RequestInit | runtime.InitOverrideFunction): Promise<VaultItemResponse>;
+    itemsItemIdPut(itemId: string, meecoDelegationId?: string, meecoOrganisationId?: string, putItemsRequest?: PutItemsRequest, initOverrides?: RequestInit | runtime.InitOverrideFunction): Promise<VaultItemResponse>;
     /**
      * Create an item populated with slots. There are 3 top-level parameters:  * `item` - input data to create an item and its slots.   * `template_name`. Each item is cloned from an item template. The name of the item template must be present in this field. In addition to data copied from the item template, template slots become item slots.   * `skip_empty_template_slots`. If true, then only those template slots will be created for which incoming parameters are present. Otherwise all template slots become item slots.  The parameters in `item` are as follows:  * `label` is a human-readable name. `label` is mandatory  * `name` is a machine reference. It can be skipped, in that case `name` from the template will be used  * `description` can be skipped, in that case `description` from the template will be used  * `slots_attributes`. Parameters in `slots_attributes` can be used either to create new slots or update slots cloned from the template slots. `slots_attributes` can be empty, in this case the newly created item will only contain slots cloned from the template  * `classification_nodes_attributes`  ---  ### Matching incoming slot parameters to slots cloned from the template  There are 2 cases when slot parameters are used to update an already existing slot cloned from the template: 1. If `slot_type_id` inside parameters for a slot matches `slot_type_id` of a cloned slot, the parameters will be used to update the matched slot. 2. If `name` inside parameters for a slot matches `name` of a cloned slot, the parameters will be used to update the matched slot.  In all other cases slot parameters will be used to create a new slot.  --- ### Classifications  In this endpoint it is possible to link the item and its slots to classification nodes, and to create classification nodes in user-owned classification schemes if they do not exist yet.  There are 2 types of classification schemes:  * owned by users - each user can create their own classification nodes * global - nodes are created by the system  There are 5 parameters for classification of slots and items in `POST /items`: * `id` * `name` * `scheme` * `scheme_name`  * `label` Both a classification scheme and a classification node can be referred to by their name or their ID. If `id` is used, `scheme_id` and `scheme` may be omitted.  Example payload classifications:  ``` classification_nodes_attributes: [   {id: \"c1b1d2b3-a887-4cc2-86e8-285268df598a\"},   {scheme: \"region\", id: \"315e4e30-93f0-4232-b977-b51f90b18288\"},   {scheme: \"region\", name: \"france\"},   {scheme: \"tag\", name: \"Holiday Locations\"},   {scheme_id: \"34c8c951-aa25-4d9a-9a9a-dbb5f43b821b\", name: \"netherlands\"},   {scheme_id: \"34c8c951-aa25-4d9a-9a9a-dbb5f43b821b\", id: \"16557bff-21fe-4bb1-8b0a-0a7847dfc7d6\"},   {scheme: \"tag\", name: \"my-own-cool-tag\"} ] ```  If node `france` is missing in scheme region, the service will return an error, because scheme `region` is a global scheme. `(owned_by_user=false)`. If node `my-own-cool-tag` is missing in scheme `tag`, it will be created, because scheme `tag` is a user owned scheme.  --- Here is an example of a minimalistic POST request to this endpoint:  ``` {   \"template_name\": \"template-name\",   \"item\": {     \"label\": \"new-item-label\"   } } ``` With one slot:  ``` {   \"template_name\": \"template-name\",   \"item\": {     \"label\": \"new-item-label\",       \"slots_attributes\": [         \"label\": \"a label\",         \"encrypted_value\": \"user-encrypted-value\"       ]   } } ```
      * Create an item

package/lib/types/apis/OrganisationsApi.d.ts

@@ -31,22 +31,6 @@ export interface ApplicationsPostOperationRequest {
     meecoOrganisationId: string;
     applicationsPostRequest?: ApplicationsPostRequest;
 }
-export interface OrgsIdArchivePostRequest {
-    id: string;
-}
-export interface OrgsIdDeleteRequest {
-    id: string;
-}
-export interface OrgsIdGetRequest {
-    id: string;
-}
-export interface OrgsIdPutRequest {
-    id: string;
-    aTOMCreateOrUpdateOrgRequest: ATOMCreateOrUpdateOrgRequest;
-}
-export interface OrgsIdRestorePostRequest {
-    id: string;
-}
 export interface OrgsOrgIdAdminsGetRequest {
     orgId: string;
     status?: OrgsOrgIdAdminsGetStatusEnum;
@@ -56,21 +40,21 @@ export interface OrgsOrgIdAdminsGetRequest {
     order?: OrgsOrgIdAdminsGetOrderEnum;
     nextPageAfter?: string;
 }
-export interface OrgsOrgIdAdminsIdArchivePostRequest {
+export interface OrgsOrgIdAdminsOrgAdminIdArchivePostRequest {
     orgId: string;
-    id: string;
+    orgAdminId: string;
 }
-export interface OrgsOrgIdAdminsIdDeleteRequest {
+export interface OrgsOrgIdAdminsOrgAdminIdDeleteRequest {
     orgId: string;
-    id: string;
+    orgAdminId: string;
 }
-export interface OrgsOrgIdAdminsIdGetRequest {
+export interface OrgsOrgIdAdminsOrgAdminIdGetRequest {
     orgId: string;
-    id: string;
+    orgAdminId: string;
 }
-export interface OrgsOrgIdAdminsIdRestorePostRequest {
+export interface OrgsOrgIdAdminsOrgAdminIdRestorePostRequest {
     orgId: string;
-    id: string;
+    orgAdminId: string;
 }
 export interface OrgsOrgIdAdminsOrgAdminIdSecurityRightsGetRequest {
     orgId: string;
@@ -81,6 +65,22 @@ export interface OrgsOrgIdAdminsOrgAdminIdSecurityRightsPostRequest {
     orgAdminId: string;
     aTOMAssignSecurityRightsRequest: ATOMAssignSecurityRightsRequest;
 }
+export interface OrgsOrgIdArchivePostRequest {
+    orgId: string;
+}
+export interface OrgsOrgIdDeleteRequest {
+    orgId: string;
+}
+export interface OrgsOrgIdGetRequest {
+    orgId: string;
+}
+export interface OrgsOrgIdPutRequest {
+    orgId: string;
+    aTOMCreateOrUpdateOrgRequest: ATOMCreateOrUpdateOrgRequest;
+}
+export interface OrgsOrgIdRestorePostRequest {
+    orgId: string;
+}
 export interface OrgsOrgIdSecurityRightsPostRequest {
     orgId: string;
     aTOMAssignSecurityRightsRequest: ATOMAssignSecurityRightsRequest;
@@ -151,56 +151,6 @@ export declare class OrganisationsApi extends runtime.BaseAPI {
      * Create application agent
      */
     applicationsPost(meecoOrganisationId: string, applicationsPostRequest?: ApplicationsPostRequest, initOverrides?: RequestInit | runtime.InitOverrideFunction): Promise<ApplicationsPost201Response>;
-    /**
-     *   Archive an organisation.    In order to execute this action the current user must have security right `atom:tenant:create_org` for the tenant of the organisation.
-     * Archive an organisation
-     */
-    orgsIdArchivePostRaw(requestParameters: OrgsIdArchivePostRequest, initOverrides?: RequestInit | runtime.InitOverrideFunction): Promise<runtime.ApiResponse<ATOMOneOrg>>;
-    /**
-     *   Archive an organisation.    In order to execute this action the current user must have security right `atom:tenant:create_org` for the tenant of the organisation.
-     * Archive an organisation
-     */
-    orgsIdArchivePost(id: string, initOverrides?: RequestInit | runtime.InitOverrideFunction): Promise<ATOMOneOrg>;
-    /**
-     *   Delete an organisation.    In order to execute this action the current user must have security right `atom:tenant:create_org` for the tenant of the organisation.
-     * Delete an organisation
-     */
-    orgsIdDeleteRaw(requestParameters: OrgsIdDeleteRequest, initOverrides?: RequestInit | runtime.InitOverrideFunction): Promise<runtime.ApiResponse<void>>;
-    /**
-     *   Delete an organisation.    In order to execute this action the current user must have security right `atom:tenant:create_org` for the tenant of the organisation.
-     * Delete an organisation
-     */
-    orgsIdDelete(id: string, initOverrides?: RequestInit | runtime.InitOverrideFunction): Promise<void>;
-    /**
-     *   Show an organisation.    In order to execute this action the current user must have    * global security `atom:global:view_all_orgs` or   * security right `atom:tenant:view_tenant_orgs` for the tenant   * security right `atom:org:view_org` for the org with the ID in parameter `org_id`
-     * View an organisation
-     */
-    orgsIdGetRaw(requestParameters: OrgsIdGetRequest, initOverrides?: RequestInit | runtime.InitOverrideFunction): Promise<runtime.ApiResponse<ATOMOneOrg>>;
-    /**
-     *   Show an organisation.    In order to execute this action the current user must have    * global security `atom:global:view_all_orgs` or   * security right `atom:tenant:view_tenant_orgs` for the tenant   * security right `atom:org:view_org` for the org with the ID in parameter `org_id`
-     * View an organisation
-     */
-    orgsIdGet(id: string, initOverrides?: RequestInit | runtime.InitOverrideFunction): Promise<ATOMOneOrg>;
-    /**
-     *   Update an organisation.    In order to execute this action the current user must have security right `atom:tenant:create_org` for the tenant with the ID in parameter `tenant_id`.
-     * Update an organisation
-     */
-    orgsIdPutRaw(requestParameters: OrgsIdPutRequest, initOverrides?: RequestInit | runtime.InitOverrideFunction): Promise<runtime.ApiResponse<ATOMOneOrg>>;
-    /**
-     *   Update an organisation.    In order to execute this action the current user must have security right `atom:tenant:create_org` for the tenant with the ID in parameter `tenant_id`.
-     * Update an organisation
-     */
-    orgsIdPut(id: string, aTOMCreateOrUpdateOrgRequest: ATOMCreateOrUpdateOrgRequest, initOverrides?: RequestInit | runtime.InitOverrideFunction): Promise<ATOMOneOrg>;
-    /**
-     *   Restore an organisation.    In order to execute this action the current user must have security right `atom:tenant:create_org` for the tenant of the organisation.
-     * Restore an organisation
-     */
-    orgsIdRestorePostRaw(requestParameters: OrgsIdRestorePostRequest, initOverrides?: RequestInit | runtime.InitOverrideFunction): Promise<runtime.ApiResponse<ATOMOneOrg>>;
-    /**
-     *   Restore an organisation.    In order to execute this action the current user must have security right `atom:tenant:create_org` for the tenant of the organisation.
-     * Restore an organisation
-     */
-    orgsIdRestorePost(id: string, initOverrides?: RequestInit | runtime.InitOverrideFunction): Promise<ATOMOneOrg>;
     /**
      *   List admins of an organisation.    It is also possible to request a list of archived admins of the organisation, that is, users who used to have organisation security rights for the given organisation, but do not have them now.    In order to execute this action the current user must have     * security right `atom:org:list_org_admins` for the organisation with the ID in parameter `org_id` or    * security right `atom:tenant:list_admins_of_all_orgs_of_tenant` for the parent tenant of the organisation `org_id` or    * global security right `atom:global:list_admins_of_all_orgs
      * List admins of an organisation
@@ -215,42 +165,42 @@ export declare class OrganisationsApi extends runtime.BaseAPI {
      * Remove a user from admins of the given organisation, and put the admin into the registry of former admins of that organisation.  In order to execute this action the current user must one of the following security rights:  * `atom:global:assign_org_sr_to_user` * `atom:tenant:assign_org_sr_to_user` * `atom:org:assign_org_sr_to_user`
      * Archive an organisation admin
      */
-    orgsOrgIdAdminsIdArchivePostRaw(requestParameters: OrgsOrgIdAdminsIdArchivePostRequest, initOverrides?: RequestInit | runtime.InitOverrideFunction): Promise<runtime.ApiResponse<void>>;
+    orgsOrgIdAdminsOrgAdminIdArchivePostRaw(requestParameters: OrgsOrgIdAdminsOrgAdminIdArchivePostRequest, initOverrides?: RequestInit | runtime.InitOverrideFunction): Promise<runtime.ApiResponse<void>>;
     /**
      * Remove a user from admins of the given organisation, and put the admin into the registry of former admins of that organisation.  In order to execute this action the current user must one of the following security rights:  * `atom:global:assign_org_sr_to_user` * `atom:tenant:assign_org_sr_to_user` * `atom:org:assign_org_sr_to_user`
      * Archive an organisation admin
      */
-    orgsOrgIdAdminsIdArchivePost(orgId: string, id: string, initOverrides?: RequestInit | runtime.InitOverrideFunction): Promise<void>;
+    orgsOrgIdAdminsOrgAdminIdArchivePost(orgId: string, orgAdminId: string, initOverrides?: RequestInit | runtime.InitOverrideFunction): Promise<void>;
     /**
      * Remove a user from organisation admins.  In order to execute this action the current user must one of the following security rights:  * `atom:global:assign_org_sr_to_user` * `atom:tenant:assign_org_sr_to_user` * `atom:org:assign_org_sr_to_user`
      * Remove a user from organisation admins
      */
-    orgsOrgIdAdminsIdDeleteRaw(requestParameters: OrgsOrgIdAdminsIdDeleteRequest, initOverrides?: RequestInit | runtime.InitOverrideFunction): Promise<runtime.ApiResponse<void>>;
+    orgsOrgIdAdminsOrgAdminIdDeleteRaw(requestParameters: OrgsOrgIdAdminsOrgAdminIdDeleteRequest, initOverrides?: RequestInit | runtime.InitOverrideFunction): Promise<runtime.ApiResponse<void>>;
     /**
      * Remove a user from organisation admins.  In order to execute this action the current user must one of the following security rights:  * `atom:global:assign_org_sr_to_user` * `atom:tenant:assign_org_sr_to_user` * `atom:org:assign_org_sr_to_user`
      * Remove a user from organisation admins
      */
-    orgsOrgIdAdminsIdDelete(orgId: string, id: string, initOverrides?: RequestInit | runtime.InitOverrideFunction): Promise<void>;
+    orgsOrgIdAdminsOrgAdminIdDelete(orgId: string, orgAdminId: string, initOverrides?: RequestInit | runtime.InitOverrideFunction): Promise<void>;
     /**
      *   Show an admin of a given organisation.    In order to execute this action the current user must have     * security right `atom:org:list_org_admins` for the organisation with the ID in parameter `org_id` or    * security right `atom:tenant:list_admins_of_all_orgs_of_tenant` for the parent tenant of the organisation `org_id` or    * global security right `atom:global:list_admins_of_all_orgs
      * Show an admin of a given organisation
      */
-    orgsOrgIdAdminsIdGetRaw(requestParameters: OrgsOrgIdAdminsIdGetRequest, initOverrides?: RequestInit | runtime.InitOverrideFunction): Promise<runtime.ApiResponse<ATOMAdmin>>;
+    orgsOrgIdAdminsOrgAdminIdGetRaw(requestParameters: OrgsOrgIdAdminsOrgAdminIdGetRequest, initOverrides?: RequestInit | runtime.InitOverrideFunction): Promise<runtime.ApiResponse<ATOMAdmin>>;
     /**
      *   Show an admin of a given organisation.    In order to execute this action the current user must have     * security right `atom:org:list_org_admins` for the organisation with the ID in parameter `org_id` or    * security right `atom:tenant:list_admins_of_all_orgs_of_tenant` for the parent tenant of the organisation `org_id` or    * global security right `atom:global:list_admins_of_all_orgs
      * Show an admin of a given organisation
      */
-    orgsOrgIdAdminsIdGet(orgId: string, id: string, initOverrides?: RequestInit | runtime.InitOverrideFunction): Promise<ATOMAdmin>;
+    orgsOrgIdAdminsOrgAdminIdGet(orgId: string, orgAdminId: string, initOverrides?: RequestInit | runtime.InitOverrideFunction): Promise<ATOMAdmin>;
     /**
      * Reinstate an archived user and make him/her a org admin again.  In order to execute this action the current user must one of the following security rights:  * `atom:org:assign_org_sr_to_user` * `atom:tenant:assign_org_sr_to_user` * `atom:global:assign_org_sr_to_user`
      * Restore an archived organisation admin
      */
-    orgsOrgIdAdminsIdRestorePostRaw(requestParameters: OrgsOrgIdAdminsIdRestorePostRequest, initOverrides?: RequestInit | runtime.InitOverrideFunction): Promise<runtime.ApiResponse<ATOMAdmin>>;
+    orgsOrgIdAdminsOrgAdminIdRestorePostRaw(requestParameters: OrgsOrgIdAdminsOrgAdminIdRestorePostRequest, initOverrides?: RequestInit | runtime.InitOverrideFunction): Promise<runtime.ApiResponse<ATOMAdmin>>;
     /**
      * Reinstate an archived user and make him/her a org admin again.  In order to execute this action the current user must one of the following security rights:  * `atom:org:assign_org_sr_to_user` * `atom:tenant:assign_org_sr_to_user` * `atom:global:assign_org_sr_to_user`
      * Restore an archived organisation admin
      */
-    orgsOrgIdAdminsIdRestorePost(orgId: string, id: string, initOverrides?: RequestInit | runtime.InitOverrideFunction): Promise<ATOMAdmin>;
+    orgsOrgIdAdminsOrgAdminIdRestorePost(orgId: string, orgAdminId: string, initOverrides?: RequestInit | runtime.InitOverrideFunction): Promise<ATOMAdmin>;
     /**
      *   List organisation security rights of a organisation admin.    In order to execute this action the current user must have security right `atom:org:list_org_admin_sr` for the organisation with the ID in parameter `org_id` or `atom:tenant:list_org_admin_sr` for the tenant that the organisation belongs to, or global security right `atom:global:list_admin_sr_of_any_admin`\"
      * List security rights of an organisation admin
@@ -271,6 +221,56 @@ export declare class OrganisationsApi extends runtime.BaseAPI {
      * Assign organisation security rights to an organisation admin
      */
     orgsOrgIdAdminsOrgAdminIdSecurityRightsPost(orgId: string, orgAdminId: string, aTOMAssignSecurityRightsRequest: ATOMAssignSecurityRightsRequest, initOverrides?: RequestInit | runtime.InitOverrideFunction): Promise<void>;
+    /**
+     *   Archive an organisation.    In order to execute this action the current user must have security right `atom:tenant:create_org` for the tenant of the organisation.
+     * Archive an organisation
+     */
+    orgsOrgIdArchivePostRaw(requestParameters: OrgsOrgIdArchivePostRequest, initOverrides?: RequestInit | runtime.InitOverrideFunction): Promise<runtime.ApiResponse<ATOMOneOrg>>;
+    /**
+     *   Archive an organisation.    In order to execute this action the current user must have security right `atom:tenant:create_org` for the tenant of the organisation.
+     * Archive an organisation
+     */
+    orgsOrgIdArchivePost(orgId: string, initOverrides?: RequestInit | runtime.InitOverrideFunction): Promise<ATOMOneOrg>;
+    /**
+     *   Delete an organisation.    In order to execute this action the current user must have security right `atom:tenant:create_org` for the tenant of the organisation.
+     * Delete an organisation
+     */
+    orgsOrgIdDeleteRaw(requestParameters: OrgsOrgIdDeleteRequest, initOverrides?: RequestInit | runtime.InitOverrideFunction): Promise<runtime.ApiResponse<void>>;
+    /**
+     *   Delete an organisation.    In order to execute this action the current user must have security right `atom:tenant:create_org` for the tenant of the organisation.
+     * Delete an organisation
+     */
+    orgsOrgIdDelete(orgId: string, initOverrides?: RequestInit | runtime.InitOverrideFunction): Promise<void>;
+    /**
+     *   Show an organisation.    In order to execute this action the current user must have    * global security `atom:global:view_all_orgs` or   * security right `atom:tenant:view_tenant_orgs` for the tenant   * security right `atom:org:view_org` for the org with the ID in parameter `org_id`
+     * View an organisation
+     */
+    orgsOrgIdGetRaw(requestParameters: OrgsOrgIdGetRequest, initOverrides?: RequestInit | runtime.InitOverrideFunction): Promise<runtime.ApiResponse<ATOMOneOrg>>;
+    /**
+     *   Show an organisation.    In order to execute this action the current user must have    * global security `atom:global:view_all_orgs` or   * security right `atom:tenant:view_tenant_orgs` for the tenant   * security right `atom:org:view_org` for the org with the ID in parameter `org_id`
+     * View an organisation
+     */
+    orgsOrgIdGet(orgId: string, initOverrides?: RequestInit | runtime.InitOverrideFunction): Promise<ATOMOneOrg>;
+    /**
+     *   Update an organisation.    In order to execute this action the current user must have security right `atom:tenant:create_org` for the tenant with the ID in parameter `tenant_id`.
+     * Update an organisation
+     */
+    orgsOrgIdPutRaw(requestParameters: OrgsOrgIdPutRequest, initOverrides?: RequestInit | runtime.InitOverrideFunction): Promise<runtime.ApiResponse<ATOMOneOrg>>;
+    /**
+     *   Update an organisation.    In order to execute this action the current user must have security right `atom:tenant:create_org` for the tenant with the ID in parameter `tenant_id`.
+     * Update an organisation
+     */
+    orgsOrgIdPut(orgId: string, aTOMCreateOrUpdateOrgRequest: ATOMCreateOrUpdateOrgRequest, initOverrides?: RequestInit | runtime.InitOverrideFunction): Promise<ATOMOneOrg>;
+    /**
+     *   Restore an organisation.    In order to execute this action the current user must have security right `atom:tenant:create_org` for the tenant of the organisation.
+     * Restore an organisation
+     */
+    orgsOrgIdRestorePostRaw(requestParameters: OrgsOrgIdRestorePostRequest, initOverrides?: RequestInit | runtime.InitOverrideFunction): Promise<runtime.ApiResponse<ATOMOneOrg>>;
+    /**
+     *   Restore an organisation.    In order to execute this action the current user must have security right `atom:tenant:create_org` for the tenant of the organisation.
+     * Restore an organisation
+     */
+    orgsOrgIdRestorePost(orgId: string, initOverrides?: RequestInit | runtime.InitOverrideFunction): Promise<ATOMOneOrg>;
     /**
      *   Add security rights to an organisation.    In order to execute this action the current user must have security right `atom:tenant:assign_sr_to_org` for the tenant which the organisation belongs to.
      * Add security rights to an organisation

package/lib/types/apis/SecurityRightsApi.d.ts

@@ -11,14 +11,6 @@
  */
 import * as runtime from '../runtime';
 import type { ATOMAdmin, ATOMAssignSecurityRightsRequest, ATOMPaginatedAdminList, ATOMSecurityRightsOfUser, ATOMSecurityRightsRegistry } from '../models';
-export interface GlobalAdminsAdminIdSecurityRightsPostRequest {
-    adminId: string;
-    aTOMAssignSecurityRightsRequest: ATOMAssignSecurityRightsRequest;
-}
-export interface GlobalAdminsAdminIdSecurityRightsSecurityRightsDeleteRequest {
-    adminId: string;
-    securityRights: string;
-}
 export interface GlobalAdminsGetRequest {
     email?: string;
     status?: GlobalAdminsGetStatusEnum;
@@ -39,6 +31,14 @@ export interface GlobalAdminsIdGetRequest {
 export interface GlobalAdminsIdRestorePostRequest {
     id: string;
 }
+export interface GlobalAdminsIdSecurityRightsPostRequest {
+    id: string;
+    aTOMAssignSecurityRightsRequest: ATOMAssignSecurityRightsRequest;
+}
+export interface GlobalAdminsIdSecurityRightsSecurityRightsDeleteRequest {
+    id: string;
+    securityRights: string;
+}
 export interface SecurityRightsRegistryGetRequest {
     withInactive?: boolean;
 }
@@ -46,26 +46,6 @@ export interface SecurityRightsRegistryGetRequest {
  *
  */
 export declare class SecurityRightsApi extends runtime.BaseAPI {
-    /**
-     *   Assign global security rights to a user.    The user we are assigning security rights to does not need to be known by ATOM.    In order to execute this action the current user must have security right `atom:global:assign_global_sr_to_user`.
-     * Assign global security rights to a user
-     */
-    globalAdminsAdminIdSecurityRightsPostRaw(requestParameters: GlobalAdminsAdminIdSecurityRightsPostRequest, initOverrides?: RequestInit | runtime.InitOverrideFunction): Promise<runtime.ApiResponse<void>>;
-    /**
-     *   Assign global security rights to a user.    The user we are assigning security rights to does not need to be known by ATOM.    In order to execute this action the current user must have security right `atom:global:assign_global_sr_to_user`.
-     * Assign global security rights to a user
-     */
-    globalAdminsAdminIdSecurityRightsPost(adminId: string, aTOMAssignSecurityRightsRequest: ATOMAssignSecurityRightsRequest, initOverrides?: RequestInit | runtime.InitOverrideFunction): Promise<void>;
-    /**
-     *   Remove global security rights from a user.    In order to execute this action the current user must have security right `atom:global:assign_global_sr_to_user`.
-     * Remove global security rights from a user
-     */
-    globalAdminsAdminIdSecurityRightsSecurityRightsDeleteRaw(requestParameters: GlobalAdminsAdminIdSecurityRightsSecurityRightsDeleteRequest, initOverrides?: RequestInit | runtime.InitOverrideFunction): Promise<runtime.ApiResponse<void>>;
-    /**
-     *   Remove global security rights from a user.    In order to execute this action the current user must have security right `atom:global:assign_global_sr_to_user`.
-     * Remove global security rights from a user
-     */
-    globalAdminsAdminIdSecurityRightsSecurityRightsDelete(adminId: string, securityRights: string, initOverrides?: RequestInit | runtime.InitOverrideFunction): Promise<void>;
     /**
      *   List all users with global security rights.    It is also possible to request a list of archived global admins, that is, users who used to have global security rights, but do not have them now.    In order to execute this action the current user must have \"security right `atom:global:assign_global_sr_to_user`.
      * List all users with global security rights
@@ -116,6 +96,26 @@ export declare class SecurityRightsApi extends runtime.BaseAPI {
      * Restore an archived global admin
      */
     globalAdminsIdRestorePost(id: string, initOverrides?: RequestInit | runtime.InitOverrideFunction): Promise<ATOMAdmin>;
+    /**
+     *   Assign global security rights to a user.    The user we are assigning security rights to does not need to be known by ATOM.    In order to execute this action the current user must have security right `atom:global:assign_global_sr_to_user`.
+     * Assign global security rights to a user
+     */
+    globalAdminsIdSecurityRightsPostRaw(requestParameters: GlobalAdminsIdSecurityRightsPostRequest, initOverrides?: RequestInit | runtime.InitOverrideFunction): Promise<runtime.ApiResponse<void>>;
+    /**
+     *   Assign global security rights to a user.    The user we are assigning security rights to does not need to be known by ATOM.    In order to execute this action the current user must have security right `atom:global:assign_global_sr_to_user`.
+     * Assign global security rights to a user
+     */
+    globalAdminsIdSecurityRightsPost(id: string, aTOMAssignSecurityRightsRequest: ATOMAssignSecurityRightsRequest, initOverrides?: RequestInit | runtime.InitOverrideFunction): Promise<void>;
+    /**
+     *   Remove global security rights from a user.    In order to execute this action the current user must have security right `atom:global:assign_global_sr_to_user`.
+     * Remove global security rights from a user
+     */
+    globalAdminsIdSecurityRightsSecurityRightsDeleteRaw(requestParameters: GlobalAdminsIdSecurityRightsSecurityRightsDeleteRequest, initOverrides?: RequestInit | runtime.InitOverrideFunction): Promise<runtime.ApiResponse<void>>;
+    /**
+     *   Remove global security rights from a user.    In order to execute this action the current user must have security right `atom:global:assign_global_sr_to_user`.
+     * Remove global security rights from a user
+     */
+    globalAdminsIdSecurityRightsSecurityRightsDelete(id: string, securityRights: string, initOverrides?: RequestInit | runtime.InitOverrideFunction): Promise<void>;
     /**
      * Show all security rights of the current user for all active tenants and organizations
      * All security rights of the current user

package/lib/types/apis/SharesApi.d.ts

@@ -42,25 +42,25 @@ export interface InvitationsInvitationIdShareIntentsPostRequest {
     meecoOrganisationId?: string;
     shareIntentRequest?: ShareIntentRequest;
 }
-export interface ItemsIdEncryptPostRequest {
-    id: string;
+export interface ItemsItemIdEncryptPostRequest {
+    itemId: string;
     meecoDelegationId?: string;
     meecoOrganisationId?: string;
     postItemEncryptRequest?: PostItemEncryptRequest;
 }
-export interface ItemsIdSharesGetRequest {
-    id: string;
+export interface ItemsItemIdSharesGetRequest {
+    itemId: string;
     meecoDelegationId?: string;
     meecoOrganisationId?: string;
 }
-export interface ItemsIdSharesPostRequest {
-    id: string;
+export interface ItemsItemIdSharesPostRequest {
+    itemId: string;
     meecoDelegationId?: string;
     meecoOrganisationId?: string;
     postItemSharesRequest?: PostItemSharesRequest;
 }
-export interface ItemsIdSharesPutRequest {
-    id: string;
+export interface ItemsItemIdSharesPutRequest {
+    itemId: string;
     meecoDelegationId?: string;
     meecoOrganisationId?: string;
     putItemSharesRequest?: PutItemSharesRequest;
@@ -166,42 +166,42 @@ export declare class SharesApi extends runtime.BaseAPI {
      * Re-encrypt share data  Data in shared slots is initially encrypted with the share DEK. The share DEK is encrypted with the public key of the share recipient. When processing a share the client application is expected to decrypt the slot data as well as `encrypted_value_verification_key` and re-encrypt with them private DEK with this endpoint.
      * Re-encrypt share data
      */
-    itemsIdEncryptPostRaw(requestParameters: ItemsIdEncryptPostRequest, initOverrides?: RequestInit | runtime.InitOverrideFunction): Promise<runtime.ApiResponse<VaultItemResponse>>;
+    itemsItemIdEncryptPostRaw(requestParameters: ItemsItemIdEncryptPostRequest, initOverrides?: RequestInit | runtime.InitOverrideFunction): Promise<runtime.ApiResponse<VaultItemResponse>>;
     /**
      * Re-encrypt share data  Data in shared slots is initially encrypted with the share DEK. The share DEK is encrypted with the public key of the share recipient. When processing a share the client application is expected to decrypt the slot data as well as `encrypted_value_verification_key` and re-encrypt with them private DEK with this endpoint.
      * Re-encrypt share data
      */
-    itemsIdEncryptPost(id: string, meecoDelegationId?: string, meecoOrganisationId?: string, postItemEncryptRequest?: PostItemEncryptRequest, initOverrides?: RequestInit | runtime.InitOverrideFunction): Promise<VaultItemResponse>;
+    itemsItemIdEncryptPost(itemId: string, meecoDelegationId?: string, meecoOrganisationId?: string, postItemEncryptRequest?: PostItemEncryptRequest, initOverrides?: RequestInit | runtime.InitOverrideFunction): Promise<VaultItemResponse>;
     /**
      * Updating all shares of one item is done by the item owner in one go.   A share DEK is encrypted with a public key of the recipient. In order to update shares the owner needs a public key of the recipient of each share. But some shares may be created by users different from the owner, and thus the owner might have no connection to recipients of those shares, and no access to those shares.  This problem is solved by * Putting a public key of the recipient and an identification of the keypair to which the public key belongs into each share record. * Providing a list of all public keys and share IDs for all shares of the given item via this endpoint   Getting this list is the first step in updating all shares of the item.
      * Prepare an update of all shares of one item
      */
-    itemsIdSharesGetRaw(requestParameters: ItemsIdSharesGetRequest, initOverrides?: RequestInit | runtime.InitOverrideFunction): Promise<runtime.ApiResponse<GetItemSharesResponse>>;
+    itemsItemIdSharesGetRaw(requestParameters: ItemsItemIdSharesGetRequest, initOverrides?: RequestInit | runtime.InitOverrideFunction): Promise<runtime.ApiResponse<GetItemSharesResponse>>;
     /**
      * Updating all shares of one item is done by the item owner in one go.   A share DEK is encrypted with a public key of the recipient. In order to update shares the owner needs a public key of the recipient of each share. But some shares may be created by users different from the owner, and thus the owner might have no connection to recipients of those shares, and no access to those shares.  This problem is solved by * Putting a public key of the recipient and an identification of the keypair to which the public key belongs into each share record. * Providing a list of all public keys and share IDs for all shares of the given item via this endpoint   Getting this list is the first step in updating all shares of the item.
      * Prepare an update of all shares of one item
      */
-    itemsIdSharesGet(id: string, meecoDelegationId?: string, meecoOrganisationId?: string, initOverrides?: RequestInit | runtime.InitOverrideFunction): Promise<GetItemSharesResponse>;
+    itemsItemIdSharesGet(itemId: string, meecoDelegationId?: string, meecoOrganisationId?: string, initOverrides?: RequestInit | runtime.InitOverrideFunction): Promise<GetItemSharesResponse>;
     /**
      * Share your item with connected users.  Each share can be a share of all slots of the item, in that case `slot_id` is `NULL`, or it can be a share of just one slot. In this case `slot_id` references one of the slots of the item.  There are 3 users involved in each share:  * owner - the owner of the shared item * sender -  the user who shares data. Can be the owner or one of the recipients * recipient - the user who recieves the shared data.   Whether a non-owner may on-share a shared slot is defined in field `onsharing_permitted`.  Only the owner of the item can set `onsharing_permitted` to `true`. If `onsharing_permitted` is `false`, the recipient may on-share the item, but when that recipient creates an on-share, `onsharing_permitted` in that on-share is forced to be `false`. In other words, the depth of on-sharing in limited to 3:       OWNER ==> RECIPIENT AND SENDER ==>  RECIPIENT    Some shares require that the recipient accepts the terms of the share. Until the terms are not accepted the share DEK is hidden.   Data in slots is initially encrypted with the DEK in field `encrypted_dek`. The DEK in `encrypted_dek` is encrypted with the public key of the share recipient. When processing a share the client application is expected to decrypt the slot data and re-encrypt with the private DEK.  A public key of the recipient is needed to encrypt the share DEK. Updating all shares of the same item is performed by the owner in one go. In a situation when a share has been created by a recipient, not the owner, and there is no connection between the owner and the recipient, the owner has no access to a public key of the recipient. In order to address this problem when a share is created we also add fields `public_key` and `keypair_external_id` from the connection record between the recipient and the sender. `keypair_external_id` identifies the keypair that the public key belongs to.  When a recipient of a share on-shares the data with someone else, nothing prevents him/her to encrypt some other data instead of the original data. We need a way to enforce integrity of on-shares. We do this with help of HMAC - hash-based message authentication code obtained by running a cryptographic hash function over the data and a shared secret key.    Two fields in each slot are used for this purpose: * `encrypted_value_verification_key` - is a value verification key encrypted in the same way as the value itself: with the share DEK * `value_verification_hash` - the result of the HMAC function run on the slot value using `encrypted_value_verification_key`. `value_verification_hash` is stored as-is, unencrypted.   Only the owner of the data may send `value_verification_hash` when creating or updating the share. When other senders create a share, `value_verification_hash` must be `NULL`.  `encrypted_value_verification_key` may and should be sent by every sender, owner or not, because `encrypted_value_verification_key` must be re-encrypted with the share DEK for each share.  If the sender replaces `encrypted_value_verification_key` and/or the slot value, this will break the client-side verification against `encrypted_value_verification_key`. Field `encrypted_value` may be `NULL`. If `encrypted_value` is `NULL`, then `encrypted_value_verification_key` and `value_verification_hash` may also be `NULL`. If `encrypted_value` is present, then `encrypted_value_verification_key` and `value_verification_hash` are mandatory.
      * Share your item with connected users
      */
-    itemsIdSharesPostRaw(requestParameters: ItemsIdSharesPostRequest, initOverrides?: RequestInit | runtime.InitOverrideFunction): Promise<runtime.ApiResponse<VaultSharesCreateResponse>>;
+    itemsItemIdSharesPostRaw(requestParameters: ItemsItemIdSharesPostRequest, initOverrides?: RequestInit | runtime.InitOverrideFunction): Promise<runtime.ApiResponse<VaultSharesCreateResponse>>;
     /**
      * Share your item with connected users.  Each share can be a share of all slots of the item, in that case `slot_id` is `NULL`, or it can be a share of just one slot. In this case `slot_id` references one of the slots of the item.  There are 3 users involved in each share:  * owner - the owner of the shared item * sender -  the user who shares data. Can be the owner or one of the recipients * recipient - the user who recieves the shared data.   Whether a non-owner may on-share a shared slot is defined in field `onsharing_permitted`.  Only the owner of the item can set `onsharing_permitted` to `true`. If `onsharing_permitted` is `false`, the recipient may on-share the item, but when that recipient creates an on-share, `onsharing_permitted` in that on-share is forced to be `false`. In other words, the depth of on-sharing in limited to 3:       OWNER ==> RECIPIENT AND SENDER ==>  RECIPIENT    Some shares require that the recipient accepts the terms of the share. Until the terms are not accepted the share DEK is hidden.   Data in slots is initially encrypted with the DEK in field `encrypted_dek`. The DEK in `encrypted_dek` is encrypted with the public key of the share recipient. When processing a share the client application is expected to decrypt the slot data and re-encrypt with the private DEK.  A public key of the recipient is needed to encrypt the share DEK. Updating all shares of the same item is performed by the owner in one go. In a situation when a share has been created by a recipient, not the owner, and there is no connection between the owner and the recipient, the owner has no access to a public key of the recipient. In order to address this problem when a share is created we also add fields `public_key` and `keypair_external_id` from the connection record between the recipient and the sender. `keypair_external_id` identifies the keypair that the public key belongs to.  When a recipient of a share on-shares the data with someone else, nothing prevents him/her to encrypt some other data instead of the original data. We need a way to enforce integrity of on-shares. We do this with help of HMAC - hash-based message authentication code obtained by running a cryptographic hash function over the data and a shared secret key.    Two fields in each slot are used for this purpose: * `encrypted_value_verification_key` - is a value verification key encrypted in the same way as the value itself: with the share DEK * `value_verification_hash` - the result of the HMAC function run on the slot value using `encrypted_value_verification_key`. `value_verification_hash` is stored as-is, unencrypted.   Only the owner of the data may send `value_verification_hash` when creating or updating the share. When other senders create a share, `value_verification_hash` must be `NULL`.  `encrypted_value_verification_key` may and should be sent by every sender, owner or not, because `encrypted_value_verification_key` must be re-encrypted with the share DEK for each share.  If the sender replaces `encrypted_value_verification_key` and/or the slot value, this will break the client-side verification against `encrypted_value_verification_key`. Field `encrypted_value` may be `NULL`. If `encrypted_value` is `NULL`, then `encrypted_value_verification_key` and `value_verification_hash` may also be `NULL`. If `encrypted_value` is present, then `encrypted_value_verification_key` and `value_verification_hash` are mandatory.
      * Share your item with connected users
      */
-    itemsIdSharesPost(id: string, meecoDelegationId?: string, meecoOrganisationId?: string, postItemSharesRequest?: PostItemSharesRequest, initOverrides?: RequestInit | runtime.InitOverrideFunction): Promise<VaultSharesCreateResponse>;
+    itemsItemIdSharesPost(itemId: string, meecoDelegationId?: string, meecoOrganisationId?: string, postItemSharesRequest?: PostItemSharesRequest, initOverrides?: RequestInit | runtime.InitOverrideFunction): Promise<VaultSharesCreateResponse>;
     /**
      * Updating all shares of one item is done by the item owner in one go.  Before calling this endpoint the client application is expected to retrieve the list of shares IDs and public keys via `GET /items/{id}/shares`.  The POST body of this endpoint contains  * a list of share DEKs encrypted with public keys of share recipients * a list of slot values for each slot and each share, each encrypted with the DEK of the share that the slot belongs to  * Optionally: a list of completed `ClientTask` tasks  When a recipient of a share on-shares the data with someone else, nothing prevents him/her to encrypt some other data instead of the original data. We need a way to enforce integrity of on-shares. We do this with help of HMAC - hash-based message authentication code obtained by running a cryptographic hash function over the data and a shared secret key.    Two fields in each slot are used for this purpose: * `encrypted_value_verification_key` - is a value verification key encrypted in the same way as the value itself: with the share DEK * `value_verification_hash` - the result of the HMAC function run on the slot value using `encrypted_value_verification_key`. `value_verification_hash` is stored as-is, unencrypted.   Only the owner of the data may send `value_verification_hash` when creating or updating the share. When other senders create a share, `value_verification_hash` must be `NULL`.  `encrypted_value_verification_key` may and should be sent by every sender, owner or not, because `encrypted_value_verification_key` must be re-encrypted with the share DEK for each share.  If the sender replaces `encrypted_value_verification_key` and/or the slot value, this will break the client-side verification against `encrypted_value_verification_key`.  Field `encrypted_value` may be `NULL`. If `encrypted_value` is `NULL`, then `encrypted_value_verification_key` and `value_verification_hash` may also be `NULL`. If `encrypted_value` is present, then `encrypted_value_verification_key` and `value_verification_hash` are mandatory.
      * Update all shares of one item
      */
-    itemsIdSharesPutRaw(requestParameters: ItemsIdSharesPutRequest, initOverrides?: RequestInit | runtime.InitOverrideFunction): Promise<runtime.ApiResponse<ItemSharesUpdateResponse>>;
+    itemsItemIdSharesPutRaw(requestParameters: ItemsItemIdSharesPutRequest, initOverrides?: RequestInit | runtime.InitOverrideFunction): Promise<runtime.ApiResponse<ItemSharesUpdateResponse>>;
     /**
      * Updating all shares of one item is done by the item owner in one go.  Before calling this endpoint the client application is expected to retrieve the list of shares IDs and public keys via `GET /items/{id}/shares`.  The POST body of this endpoint contains  * a list of share DEKs encrypted with public keys of share recipients * a list of slot values for each slot and each share, each encrypted with the DEK of the share that the slot belongs to  * Optionally: a list of completed `ClientTask` tasks  When a recipient of a share on-shares the data with someone else, nothing prevents him/her to encrypt some other data instead of the original data. We need a way to enforce integrity of on-shares. We do this with help of HMAC - hash-based message authentication code obtained by running a cryptographic hash function over the data and a shared secret key.    Two fields in each slot are used for this purpose: * `encrypted_value_verification_key` - is a value verification key encrypted in the same way as the value itself: with the share DEK * `value_verification_hash` - the result of the HMAC function run on the slot value using `encrypted_value_verification_key`. `value_verification_hash` is stored as-is, unencrypted.   Only the owner of the data may send `value_verification_hash` when creating or updating the share. When other senders create a share, `value_verification_hash` must be `NULL`.  `encrypted_value_verification_key` may and should be sent by every sender, owner or not, because `encrypted_value_verification_key` must be re-encrypted with the share DEK for each share.  If the sender replaces `encrypted_value_verification_key` and/or the slot value, this will break the client-side verification against `encrypted_value_verification_key`.  Field `encrypted_value` may be `NULL`. If `encrypted_value` is `NULL`, then `encrypted_value_verification_key` and `value_verification_hash` may also be `NULL`. If `encrypted_value` is present, then `encrypted_value_verification_key` and `value_verification_hash` are mandatory.
      * Update all shares of one item
      */
-    itemsIdSharesPut(id: string, meecoDelegationId?: string, meecoOrganisationId?: string, putItemSharesRequest?: PutItemSharesRequest, initOverrides?: RequestInit | runtime.InitOverrideFunction): Promise<ItemSharesUpdateResponse>;
+    itemsItemIdSharesPut(itemId: string, meecoDelegationId?: string, meecoOrganisationId?: string, putItemSharesRequest?: PutItemSharesRequest, initOverrides?: RequestInit | runtime.InitOverrideFunction): Promise<ItemSharesUpdateResponse>;
     /**
      * Read outgoing shares. That is, all shares the current user has created, including on-shares.  Only share records are fetched.
      * Read outgoing shares