@memberjunction/server 5.43.0 → 5.45.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (309) hide show
  1. package/dist/agentSessions/ReturningVisitorRecap.d.ts +39 -0
  2. package/dist/agentSessions/ReturningVisitorRecap.d.ts.map +1 -0
  3. package/dist/agentSessions/ReturningVisitorRecap.js +198 -0
  4. package/dist/agentSessions/ReturningVisitorRecap.js.map +1 -0
  5. package/dist/agentSessions/SessionJanitor.d.ts +13 -0
  6. package/dist/agentSessions/SessionJanitor.d.ts.map +1 -1
  7. package/dist/agentSessions/SessionJanitor.js +65 -7
  8. package/dist/agentSessions/SessionJanitor.js.map +1 -1
  9. package/dist/agentSessions/SessionManager.d.ts.map +1 -1
  10. package/dist/agentSessions/SessionManager.js +40 -0
  11. package/dist/agentSessions/SessionManager.js.map +1 -1
  12. package/dist/agentSessions/index.d.ts.map +1 -1
  13. package/dist/agentSessions/index.js +3 -1
  14. package/dist/agentSessions/index.js.map +1 -1
  15. package/dist/auth/magicLink/MagicLinkRouter.d.ts +10 -0
  16. package/dist/auth/magicLink/MagicLinkRouter.d.ts.map +1 -1
  17. package/dist/auth/magicLink/MagicLinkRouter.js +16 -0
  18. package/dist/auth/magicLink/MagicLinkRouter.js.map +1 -1
  19. package/dist/auth/magicLink/index.d.ts +1 -1
  20. package/dist/auth/magicLink/index.d.ts.map +1 -1
  21. package/dist/auth/magicLink/index.js +1 -1
  22. package/dist/auth/magicLink/index.js.map +1 -1
  23. package/dist/auth/magicLink/types.d.ts +26 -0
  24. package/dist/auth/magicLink/types.d.ts.map +1 -1
  25. package/dist/config.d.ts +1883 -144
  26. package/dist/config.d.ts.map +1 -1
  27. package/dist/config.js +160 -36
  28. package/dist/config.js.map +1 -1
  29. package/dist/context.d.ts.map +1 -1
  30. package/dist/context.js +45 -2
  31. package/dist/context.js.map +1 -1
  32. package/dist/generated/generated.d.ts +1684 -54
  33. package/dist/generated/generated.d.ts.map +1 -1
  34. package/dist/generated/generated.js +57105 -48029
  35. package/dist/generated/generated.js.map +1 -1
  36. package/dist/generic/ResolverBase.d.ts +13 -0
  37. package/dist/generic/ResolverBase.d.ts.map +1 -1
  38. package/dist/generic/ResolverBase.js +22 -0
  39. package/dist/generic/ResolverBase.js.map +1 -1
  40. package/dist/generic/RunViewResolver.d.ts.map +1 -1
  41. package/dist/generic/RunViewResolver.js +4 -0
  42. package/dist/generic/RunViewResolver.js.map +1 -1
  43. package/dist/index.d.ts +2 -2
  44. package/dist/index.d.ts.map +1 -1
  45. package/dist/index.js +110 -3
  46. package/dist/index.js.map +1 -1
  47. package/dist/integration/CustomColumnPromoter.d.ts.map +1 -1
  48. package/dist/integration/CustomColumnPromoter.js +6 -0
  49. package/dist/integration/CustomColumnPromoter.js.map +1 -1
  50. package/dist/realtimeWidget/WidgetRouter.d.ts +26 -0
  51. package/dist/realtimeWidget/WidgetRouter.d.ts.map +1 -0
  52. package/dist/realtimeWidget/WidgetRouter.js +182 -0
  53. package/dist/realtimeWidget/WidgetRouter.js.map +1 -0
  54. package/dist/realtimeWidget/WidgetSessionService.d.ts +265 -0
  55. package/dist/realtimeWidget/WidgetSessionService.d.ts.map +1 -0
  56. package/dist/realtimeWidget/WidgetSessionService.js +477 -0
  57. package/dist/realtimeWidget/WidgetSessionService.js.map +1 -0
  58. package/dist/realtimeWidget/host-identity.d.ts +40 -0
  59. package/dist/realtimeWidget/host-identity.d.ts.map +1 -0
  60. package/dist/realtimeWidget/host-identity.js +58 -0
  61. package/dist/realtimeWidget/host-identity.js.map +1 -0
  62. package/dist/realtimeWidget/index.d.ts +10 -0
  63. package/dist/realtimeWidget/index.d.ts.map +1 -0
  64. package/dist/realtimeWidget/index.js +9 -0
  65. package/dist/realtimeWidget/index.js.map +1 -0
  66. package/dist/realtimeWidget/visitorIdentity.d.ts +76 -0
  67. package/dist/realtimeWidget/visitorIdentity.d.ts.map +1 -0
  68. package/dist/realtimeWidget/visitorIdentity.js +202 -0
  69. package/dist/realtimeWidget/visitorIdentity.js.map +1 -0
  70. package/dist/realtimeWidget/widgetCore.d.ts +106 -0
  71. package/dist/realtimeWidget/widgetCore.d.ts.map +1 -0
  72. package/dist/realtimeWidget/widgetCore.js +173 -0
  73. package/dist/realtimeWidget/widgetCore.js.map +1 -0
  74. package/dist/realtimeWidget/widgetGuestElevation.d.ts +51 -0
  75. package/dist/realtimeWidget/widgetGuestElevation.d.ts.map +1 -0
  76. package/dist/realtimeWidget/widgetGuestElevation.js +79 -0
  77. package/dist/realtimeWidget/widgetGuestElevation.js.map +1 -0
  78. package/dist/resolvers/ComponentRegistryResolver.d.ts +7 -0
  79. package/dist/resolvers/ComponentRegistryResolver.d.ts.map +1 -1
  80. package/dist/resolvers/ComponentRegistryResolver.js +31 -8
  81. package/dist/resolvers/ComponentRegistryResolver.js.map +1 -1
  82. package/dist/resolvers/EntityPermissionResolver.d.ts.map +1 -1
  83. package/dist/resolvers/EntityPermissionResolver.js +1 -2
  84. package/dist/resolvers/EntityPermissionResolver.js.map +1 -1
  85. package/dist/resolvers/FileResolver.d.ts +74 -0
  86. package/dist/resolvers/FileResolver.d.ts.map +1 -1
  87. package/dist/resolvers/FileResolver.js +211 -2
  88. package/dist/resolvers/FileResolver.js.map +1 -1
  89. package/dist/resolvers/QueryResolver.d.ts +6 -4
  90. package/dist/resolvers/QueryResolver.d.ts.map +1 -1
  91. package/dist/resolvers/QueryResolver.js +29 -14
  92. package/dist/resolvers/QueryResolver.js.map +1 -1
  93. package/dist/resolvers/QuerySystemUserResolver.d.ts +9 -6
  94. package/dist/resolvers/QuerySystemUserResolver.d.ts.map +1 -1
  95. package/dist/resolvers/QuerySystemUserResolver.js +15 -13
  96. package/dist/resolvers/QuerySystemUserResolver.js.map +1 -1
  97. package/dist/resolvers/RealtimeBridgeResolver.d.ts +8 -1
  98. package/dist/resolvers/RealtimeBridgeResolver.d.ts.map +1 -1
  99. package/dist/resolvers/RealtimeBridgeResolver.js +28 -4
  100. package/dist/resolvers/RealtimeBridgeResolver.js.map +1 -1
  101. package/dist/resolvers/RealtimeClientSessionResolver.d.ts +91 -2
  102. package/dist/resolvers/RealtimeClientSessionResolver.d.ts.map +1 -1
  103. package/dist/resolvers/RealtimeClientSessionResolver.js +337 -17
  104. package/dist/resolvers/RealtimeClientSessionResolver.js.map +1 -1
  105. package/dist/resolvers/RemoteBrowserActionResolver.d.ts.map +1 -1
  106. package/dist/resolvers/RemoteBrowserActionResolver.js +17 -2
  107. package/dist/resolvers/RemoteBrowserActionResolver.js.map +1 -1
  108. package/dist/resolvers/RingCentralTelephonyResolver.d.ts +27 -0
  109. package/dist/resolvers/RingCentralTelephonyResolver.d.ts.map +1 -0
  110. package/dist/resolvers/RingCentralTelephonyResolver.js +87 -0
  111. package/dist/resolvers/RingCentralTelephonyResolver.js.map +1 -0
  112. package/dist/resolvers/RunAIAgentResolver.d.ts +12 -3
  113. package/dist/resolvers/RunAIAgentResolver.d.ts.map +1 -1
  114. package/dist/resolvers/RunAIAgentResolver.js +50 -17
  115. package/dist/resolvers/RunAIAgentResolver.js.map +1 -1
  116. package/dist/resolvers/SearchKnowledgeResolver.d.ts.map +1 -1
  117. package/dist/resolvers/SearchKnowledgeResolver.js +2 -0
  118. package/dist/resolvers/SearchKnowledgeResolver.js.map +1 -1
  119. package/dist/resolvers/TeamsMeetingsResolver.d.ts +28 -0
  120. package/dist/resolvers/TeamsMeetingsResolver.d.ts.map +1 -0
  121. package/dist/resolvers/TeamsMeetingsResolver.js +91 -0
  122. package/dist/resolvers/TeamsMeetingsResolver.js.map +1 -0
  123. package/dist/resolvers/TelephonyResolver.d.ts +26 -0
  124. package/dist/resolvers/TelephonyResolver.d.ts.map +1 -0
  125. package/dist/resolvers/TelephonyResolver.js +86 -0
  126. package/dist/resolvers/TelephonyResolver.js.map +1 -0
  127. package/dist/resolvers/TestQuerySQLResolver.d.ts +1 -1
  128. package/dist/resolvers/TestQuerySQLResolver.d.ts.map +1 -1
  129. package/dist/resolvers/TestQuerySQLResolver.js +2 -3
  130. package/dist/resolvers/TestQuerySQLResolver.js.map +1 -1
  131. package/dist/resolvers/VonageTelephonyResolver.d.ts +26 -0
  132. package/dist/resolvers/VonageTelephonyResolver.d.ts.map +1 -0
  133. package/dist/resolvers/VonageTelephonyResolver.js +86 -0
  134. package/dist/resolvers/VonageTelephonyResolver.js.map +1 -0
  135. package/dist/resolvers/meetingRecordingRegistration.d.ts +124 -0
  136. package/dist/resolvers/meetingRecordingRegistration.d.ts.map +1 -0
  137. package/dist/resolvers/meetingRecordingRegistration.js +311 -0
  138. package/dist/resolvers/meetingRecordingRegistration.js.map +1 -0
  139. package/dist/resolvers/peaksSidecar.d.ts +30 -0
  140. package/dist/resolvers/peaksSidecar.d.ts.map +1 -0
  141. package/dist/resolvers/peaksSidecar.js +51 -0
  142. package/dist/resolvers/peaksSidecar.js.map +1 -0
  143. package/dist/rest/MediaAccessKeys.d.ts +68 -0
  144. package/dist/rest/MediaAccessKeys.d.ts.map +1 -0
  145. package/dist/rest/MediaAccessKeys.js +96 -0
  146. package/dist/rest/MediaAccessKeys.js.map +1 -0
  147. package/dist/rest/MediaStreamHandler.d.ts +26 -0
  148. package/dist/rest/MediaStreamHandler.d.ts.map +1 -0
  149. package/dist/rest/MediaStreamHandler.js +195 -0
  150. package/dist/rest/MediaStreamHandler.js.map +1 -0
  151. package/dist/rest/mediaRange.d.ts +41 -0
  152. package/dist/rest/mediaRange.d.ts.map +1 -0
  153. package/dist/rest/mediaRange.js +60 -0
  154. package/dist/rest/mediaRange.js.map +1 -0
  155. package/dist/telephony/RingCentralTelephonyService.d.ts +115 -0
  156. package/dist/telephony/RingCentralTelephonyService.d.ts.map +1 -0
  157. package/dist/telephony/RingCentralTelephonyService.js +262 -0
  158. package/dist/telephony/RingCentralTelephonyService.js.map +1 -0
  159. package/dist/telephony/TeamsMeetingsRouter.d.ts +40 -0
  160. package/dist/telephony/TeamsMeetingsRouter.d.ts.map +1 -0
  161. package/dist/telephony/TeamsMeetingsRouter.js +96 -0
  162. package/dist/telephony/TeamsMeetingsRouter.js.map +1 -0
  163. package/dist/telephony/TeamsMeetingsService.d.ts +113 -0
  164. package/dist/telephony/TeamsMeetingsService.d.ts.map +1 -0
  165. package/dist/telephony/TeamsMeetingsService.js +196 -0
  166. package/dist/telephony/TeamsMeetingsService.js.map +1 -0
  167. package/dist/telephony/TwilioTelephonyRouter.d.ts +36 -0
  168. package/dist/telephony/TwilioTelephonyRouter.d.ts.map +1 -0
  169. package/dist/telephony/TwilioTelephonyRouter.js +143 -0
  170. package/dist/telephony/TwilioTelephonyRouter.js.map +1 -0
  171. package/dist/telephony/TwilioTelephonyService.d.ts +95 -0
  172. package/dist/telephony/TwilioTelephonyService.d.ts.map +1 -0
  173. package/dist/telephony/TwilioTelephonyService.js +193 -0
  174. package/dist/telephony/TwilioTelephonyService.js.map +1 -0
  175. package/dist/telephony/VonageTelephonyRouter.d.ts +41 -0
  176. package/dist/telephony/VonageTelephonyRouter.d.ts.map +1 -0
  177. package/dist/telephony/VonageTelephonyRouter.js +201 -0
  178. package/dist/telephony/VonageTelephonyRouter.js.map +1 -0
  179. package/dist/telephony/VonageTelephonyService.d.ts +90 -0
  180. package/dist/telephony/VonageTelephonyService.d.ts.map +1 -0
  181. package/dist/telephony/VonageTelephonyService.js +191 -0
  182. package/dist/telephony/VonageTelephonyService.js.map +1 -0
  183. package/dist/telephony/calendar-scheduler.d.ts +67 -0
  184. package/dist/telephony/calendar-scheduler.d.ts.map +1 -0
  185. package/dist/telephony/calendar-scheduler.js +133 -0
  186. package/dist/telephony/calendar-scheduler.js.map +1 -0
  187. package/dist/telephony/index.d.ts +29 -0
  188. package/dist/telephony/index.d.ts.map +1 -0
  189. package/dist/telephony/index.js +38 -0
  190. package/dist/telephony/index.js.map +1 -0
  191. package/dist/telephony/media-upgrade-router.d.ts +33 -0
  192. package/dist/telephony/media-upgrade-router.d.ts.map +1 -0
  193. package/dist/telephony/media-upgrade-router.js +56 -0
  194. package/dist/telephony/media-upgrade-router.js.map +1 -0
  195. package/dist/telephony/ringcentral-runtime.d.ts +14 -0
  196. package/dist/telephony/ringcentral-runtime.d.ts.map +1 -0
  197. package/dist/telephony/ringcentral-runtime.js +18 -0
  198. package/dist/telephony/ringcentral-runtime.js.map +1 -0
  199. package/dist/telephony/teams-meetings-runtime.d.ts +16 -0
  200. package/dist/telephony/teams-meetings-runtime.d.ts.map +1 -0
  201. package/dist/telephony/teams-meetings-runtime.js +20 -0
  202. package/dist/telephony/teams-meetings-runtime.js.map +1 -0
  203. package/dist/telephony/teamsAcsMediaRegistry.d.ts +69 -0
  204. package/dist/telephony/teamsAcsMediaRegistry.d.ts.map +1 -0
  205. package/dist/telephony/teamsAcsMediaRegistry.js +118 -0
  206. package/dist/telephony/teamsAcsMediaRegistry.js.map +1 -0
  207. package/dist/telephony/telephony-runtime.d.ts +14 -0
  208. package/dist/telephony/telephony-runtime.d.ts.map +1 -0
  209. package/dist/telephony/telephony-runtime.js +18 -0
  210. package/dist/telephony/telephony-runtime.js.map +1 -0
  211. package/dist/telephony/twilioMediaRegistry.d.ts +60 -0
  212. package/dist/telephony/twilioMediaRegistry.d.ts.map +1 -0
  213. package/dist/telephony/twilioMediaRegistry.js +106 -0
  214. package/dist/telephony/twilioMediaRegistry.js.map +1 -0
  215. package/dist/telephony/vonage-runtime.d.ts +14 -0
  216. package/dist/telephony/vonage-runtime.d.ts.map +1 -0
  217. package/dist/telephony/vonage-runtime.js +18 -0
  218. package/dist/telephony/vonage-runtime.js.map +1 -0
  219. package/dist/telephony/vonageMediaRegistry.d.ts +78 -0
  220. package/dist/telephony/vonageMediaRegistry.d.ts.map +1 -0
  221. package/dist/telephony/vonageMediaRegistry.js +158 -0
  222. package/dist/telephony/vonageMediaRegistry.js.map +1 -0
  223. package/package.json +88 -82
  224. package/src/__tests__/FileResolverPeaks.test.ts +64 -0
  225. package/src/__tests__/MediaAccessKeys.test.ts +68 -0
  226. package/src/__tests__/MediaStreamHandler.test.ts +91 -0
  227. package/src/__tests__/RealtimeBridgeResolver.test.ts +10 -1
  228. package/src/__tests__/RealtimeClientSessionResolver.test.ts +69 -0
  229. package/src/__tests__/RealtimeCoAgentAppAwareness.integration.test.ts +191 -0
  230. package/src/__tests__/RemoteBrowserSnapshot.test.ts +123 -0
  231. package/src/__tests__/SessionManager.test.ts +2 -0
  232. package/src/__tests__/meetingRecordingRegistration.test.ts +248 -0
  233. package/src/__tests__/search-knowledge-tags.test.ts +9 -9
  234. package/src/__tests__/teams-meetings-service.test.ts +65 -0
  235. package/src/__tests__/teamsAcsMediaRegistry.test.ts +82 -0
  236. package/src/__tests__/twilio-telephony-service.test.ts +23 -0
  237. package/src/__tests__/twilioMediaRegistry.test.ts +103 -0
  238. package/src/__tests__/vonageMediaRegistry.test.ts +180 -0
  239. package/src/__tests__/widget.test.ts +204 -0
  240. package/src/__tests__/widgetGuestElevation.test.ts +57 -0
  241. package/src/__tests__/widgetHostIdentity.test.ts +117 -0
  242. package/src/agentSessions/ReturningVisitorRecap.ts +242 -0
  243. package/src/agentSessions/SessionJanitor.ts +66 -6
  244. package/src/agentSessions/SessionManager.ts +41 -0
  245. package/src/agentSessions/index.ts +3 -1
  246. package/src/auth/magicLink/MagicLinkRouter.ts +17 -0
  247. package/src/auth/magicLink/index.ts +1 -0
  248. package/src/auth/magicLink/types.ts +26 -0
  249. package/src/config.ts +172 -38
  250. package/src/context.ts +50 -3
  251. package/src/generated/generated.ts +26726 -20464
  252. package/src/generic/ResolverBase.ts +28 -0
  253. package/src/generic/RunViewResolver.ts +4 -0
  254. package/src/index.ts +119 -3
  255. package/src/integration/CustomColumnPromoter.ts +6 -0
  256. package/src/realtimeWidget/WidgetRouter.ts +204 -0
  257. package/src/realtimeWidget/WidgetSessionService.ts +714 -0
  258. package/src/realtimeWidget/host-identity.ts +84 -0
  259. package/src/realtimeWidget/index.ts +15 -0
  260. package/src/realtimeWidget/visitorIdentity.ts +258 -0
  261. package/src/realtimeWidget/widgetCore.ts +231 -0
  262. package/src/realtimeWidget/widgetGuestElevation.ts +115 -0
  263. package/src/resolvers/ComponentRegistryResolver.ts +36 -10
  264. package/src/resolvers/EntityPermissionResolver.ts +1 -2
  265. package/src/resolvers/FileResolver.ts +199 -1
  266. package/src/resolvers/QueryResolver.ts +33 -19
  267. package/src/resolvers/QuerySystemUserResolver.ts +14 -10
  268. package/src/resolvers/RealtimeBridgeResolver.ts +36 -4
  269. package/src/resolvers/RealtimeClientSessionResolver.ts +383 -9
  270. package/src/resolvers/RemoteBrowserActionResolver.ts +18 -2
  271. package/src/resolvers/RingCentralTelephonyResolver.ts +64 -0
  272. package/src/resolvers/RunAIAgentResolver.ts +60 -15
  273. package/src/resolvers/SearchKnowledgeResolver.ts +2 -0
  274. package/src/resolvers/TeamsMeetingsResolver.ts +68 -0
  275. package/src/resolvers/TelephonyResolver.ts +63 -0
  276. package/src/resolvers/TestQuerySQLResolver.ts +2 -3
  277. package/src/resolvers/VonageTelephonyResolver.ts +63 -0
  278. package/src/resolvers/meetingRecordingRegistration.ts +432 -0
  279. package/src/resolvers/peaksSidecar.ts +52 -0
  280. package/src/rest/MediaAccessKeys.ts +121 -0
  281. package/src/rest/MediaStreamHandler.ts +223 -0
  282. package/src/rest/mediaRange.ts +76 -0
  283. package/src/telephony/RingCentralTelephonyService.ts +342 -0
  284. package/src/telephony/TeamsMeetingsRouter.ts +124 -0
  285. package/src/telephony/TeamsMeetingsService.ts +268 -0
  286. package/src/telephony/TwilioTelephonyRouter.ts +184 -0
  287. package/src/telephony/TwilioTelephonyService.ts +261 -0
  288. package/src/telephony/VonageTelephonyRouter.ts +239 -0
  289. package/src/telephony/VonageTelephonyService.ts +259 -0
  290. package/src/telephony/calendar-scheduler.ts +176 -0
  291. package/src/telephony/index.ts +43 -0
  292. package/src/telephony/media-upgrade-router.ts +62 -0
  293. package/src/telephony/ringcentral-runtime.ts +22 -0
  294. package/src/telephony/teams-meetings-runtime.ts +24 -0
  295. package/src/telephony/teamsAcsMediaRegistry.ts +152 -0
  296. package/src/telephony/telephony-runtime.ts +22 -0
  297. package/src/telephony/twilioMediaRegistry.ts +137 -0
  298. package/src/telephony/vonage-runtime.ts +22 -0
  299. package/src/telephony/vonageMediaRegistry.ts +200 -0
  300. package/dist/agents/skip-agent.d.ts +0 -111
  301. package/dist/agents/skip-agent.d.ts.map +0 -1
  302. package/dist/agents/skip-agent.js +0 -1487
  303. package/dist/agents/skip-agent.js.map +0 -1
  304. package/dist/agents/skip-sdk.d.ts +0 -261
  305. package/dist/agents/skip-sdk.d.ts.map +0 -1
  306. package/dist/agents/skip-sdk.js +0 -909
  307. package/dist/agents/skip-sdk.js.map +0 -1
  308. package/src/agents/skip-agent.ts +0 -1594
  309. package/src/agents/skip-sdk.ts +0 -1210
package/dist/config.d.ts CHANGED
@@ -103,55 +103,6 @@ declare const restApiOptionsSchema: z.ZodObject<{
103
103
  includeSchemas?: string[];
104
104
  excludeSchemas?: string[];
105
105
  }>;
106
- declare const askSkipInfoSchema: z.ZodObject<{
107
- url: z.ZodOptional<z.ZodString>;
108
- apiKey: z.ZodOptional<z.ZodString>;
109
- orgID: z.ZodOptional<z.ZodString>;
110
- organizationInfo: z.ZodOptional<z.ZodString>;
111
- entitiesToSend: z.ZodOptional<z.ZodObject<{
112
- excludeSchemas: z.ZodOptional<z.ZodArray<z.ZodString, "many">>;
113
- includeEntitiesFromExcludedSchemas: z.ZodOptional<z.ZodArray<z.ZodString, "many">>;
114
- }, "strip", z.ZodTypeAny, {
115
- excludeSchemas?: string[];
116
- includeEntitiesFromExcludedSchemas?: string[];
117
- }, {
118
- excludeSchemas?: string[];
119
- includeEntitiesFromExcludedSchemas?: string[];
120
- }>>;
121
- chatURL: z.ZodOptional<z.ZodString>;
122
- learningCycleRunUponStartup: z.ZodEffects<z.ZodDefault<z.ZodOptional<z.ZodUnion<[z.ZodBoolean, z.ZodString, z.ZodNumber]>>>, boolean, string | number | boolean>;
123
- learningCycleEnabled: z.ZodEffects<z.ZodDefault<z.ZodOptional<z.ZodUnion<[z.ZodBoolean, z.ZodString, z.ZodNumber]>>>, boolean, string | number | boolean>;
124
- learningCycleURL: z.ZodOptional<z.ZodString>;
125
- learningCycleIntervalInMinutes: z.ZodOptional<z.ZodNumber>;
126
- }, "strip", z.ZodTypeAny, {
127
- url?: string;
128
- apiKey?: string;
129
- orgID?: string;
130
- organizationInfo?: string;
131
- entitiesToSend?: {
132
- excludeSchemas?: string[];
133
- includeEntitiesFromExcludedSchemas?: string[];
134
- };
135
- chatURL?: string;
136
- learningCycleRunUponStartup?: boolean;
137
- learningCycleEnabled?: boolean;
138
- learningCycleURL?: string;
139
- learningCycleIntervalInMinutes?: number;
140
- }, {
141
- url?: string;
142
- apiKey?: string;
143
- orgID?: string;
144
- organizationInfo?: string;
145
- entitiesToSend?: {
146
- excludeSchemas?: string[];
147
- includeEntitiesFromExcludedSchemas?: string[];
148
- };
149
- chatURL?: string;
150
- learningCycleRunUponStartup?: string | number | boolean;
151
- learningCycleEnabled?: string | number | boolean;
152
- learningCycleURL?: string;
153
- learningCycleIntervalInMinutes?: number;
154
- }>;
155
106
  declare const sqlLoggingOptionsSchema: z.ZodObject<{
156
107
  formatAsMigration: z.ZodDefault<z.ZodOptional<z.ZodBoolean>>;
157
108
  statementTypes: z.ZodDefault<z.ZodOptional<z.ZodEnum<["queries", "mutations", "both"]>>>;
@@ -847,6 +798,954 @@ declare const magicLinkSchema: z.ZodObject<{
847
798
  */
848
799
  explorerUrl: z.ZodOptional<z.ZodString>;
849
800
  }, z.ZodTypeAny, "passthrough">>;
801
+ /**
802
+ * Public web widget config (plans/realtime/bridges-and-widget/public-web-widget.md).
803
+ * The widget REUSES the magic-link RS256 key + `anonymous-embed` synthesis, so it
804
+ * shares the magic-link `audience`/issuer/JWKS by default — the same auth provider
805
+ * validates both. When `enabled`, the server ensures the magic-link key manager is
806
+ * initialized and the provider registered even if `magicLink.enabled` is false.
807
+ */
808
+ declare const widgetSchema: z.ZodObject<{
809
+ /** Master switch. When false, the /widget routes are not mounted. */
810
+ enabled: z.ZodDefault<z.ZodEffects<z.ZodDefault<z.ZodOptional<z.ZodUnion<[z.ZodBoolean, z.ZodString, z.ZodNumber]>>>, boolean, string | number | boolean>>;
811
+ /**
812
+ * Which signing mechanism the widget reuses. Only `magic-link` is supported today
813
+ * (shares MagicLinkKeyManager + the magic-link auth provider). Recorded so a future
814
+ * dedicated widget key is a config flip, not a code change.
815
+ */
816
+ signingReuse: z.ZodDefault<z.ZodOptional<z.ZodEnum<["magic-link"]>>>;
817
+ /**
818
+ * Audience claim for minted guest JWTs. MUST equal the magic-link audience so the
819
+ * auto-registered `magic-link` auth provider validates widget tokens.
820
+ */
821
+ audience: z.ZodDefault<z.ZodOptional<z.ZodString>>;
822
+ /** Email of the shared Anonymous principal used in guest claims (resolves the synthesized guest user). */
823
+ anonymousEmail: z.ZodDefault<z.ZodOptional<z.ZodString>>;
824
+ /** Fallback session-token TTL (minutes) when a widget instance does not set its own. */
825
+ defaultSessionTtlMinutes: z.ZodDefault<z.ZodOptional<z.ZodNumber>>;
826
+ /** Fallback mint rate-limit (per IP per window) when a widget instance does not set its own. */
827
+ defaultRateLimitPerMinute: z.ZodDefault<z.ZodOptional<z.ZodNumber>>;
828
+ /** Rate-limit window (ms) for the public /widget/session endpoints. Default 60s. */
829
+ rateLimitWindowMs: z.ZodDefault<z.ZodOptional<z.ZodNumber>>;
830
+ /** Server-wide default hard ceiling (minutes) on a voice session when an instance omits one (W4). */
831
+ voiceDefaultMaxSessionMinutes: z.ZodDefault<z.ZodOptional<z.ZodNumber>>;
832
+ /** Email/name of the internal user whose context READS widget config at mint time (falls back to system/Owner). */
833
+ contextUserForLookup: z.ZodOptional<z.ZodString>;
834
+ /**
835
+ * Host-identity public keys (PEM), keyed by widget PublicKey, for the `host-identity` auth
836
+ * strategy (D1). The host signs a short-lived RS256 assertion; the mint verifies it against
837
+ * the key here. INTERIM location — production should store the host key per widget instance
838
+ * (a HostPublicKey column on WidgetInstance, pending a migration). When a widget's strategy is
839
+ * HostIdentity and no key is configured here, host mints fail closed.
840
+ */
841
+ hostPublicKeys: z.ZodDefault<z.ZodOptional<z.ZodRecord<z.ZodString, z.ZodString>>>;
842
+ /**
843
+ * Returning-visitor identity-resolution target (RV4). When a visitor verifies (magic-link upgrade)
844
+ * or a host asserts their identity, their email is resolved to a record `(entityName, recordId)`
845
+ * and prior anonymous memory is merged onto that polymorphic pair. Deployment-configurable so the
846
+ * resolved record need NOT be an MJ User — point it at any entity that carries the visitor's email
847
+ * (e.g. a CRM `Persons` table). Defaults to the core `Users` entity keyed by `Email`.
848
+ */
849
+ identityResolution: z.ZodOptional<z.ZodObject<{
850
+ entityName: z.ZodDefault<z.ZodOptional<z.ZodString>>;
851
+ emailField: z.ZodDefault<z.ZodOptional<z.ZodString>>;
852
+ }, "strip", z.ZodTypeAny, {
853
+ entityName?: string;
854
+ emailField?: string;
855
+ }, {
856
+ entityName?: string;
857
+ emailField?: string;
858
+ }>>;
859
+ }, "passthrough", z.ZodTypeAny, z.objectOutputType<{
860
+ /** Master switch. When false, the /widget routes are not mounted. */
861
+ enabled: z.ZodDefault<z.ZodEffects<z.ZodDefault<z.ZodOptional<z.ZodUnion<[z.ZodBoolean, z.ZodString, z.ZodNumber]>>>, boolean, string | number | boolean>>;
862
+ /**
863
+ * Which signing mechanism the widget reuses. Only `magic-link` is supported today
864
+ * (shares MagicLinkKeyManager + the magic-link auth provider). Recorded so a future
865
+ * dedicated widget key is a config flip, not a code change.
866
+ */
867
+ signingReuse: z.ZodDefault<z.ZodOptional<z.ZodEnum<["magic-link"]>>>;
868
+ /**
869
+ * Audience claim for minted guest JWTs. MUST equal the magic-link audience so the
870
+ * auto-registered `magic-link` auth provider validates widget tokens.
871
+ */
872
+ audience: z.ZodDefault<z.ZodOptional<z.ZodString>>;
873
+ /** Email of the shared Anonymous principal used in guest claims (resolves the synthesized guest user). */
874
+ anonymousEmail: z.ZodDefault<z.ZodOptional<z.ZodString>>;
875
+ /** Fallback session-token TTL (minutes) when a widget instance does not set its own. */
876
+ defaultSessionTtlMinutes: z.ZodDefault<z.ZodOptional<z.ZodNumber>>;
877
+ /** Fallback mint rate-limit (per IP per window) when a widget instance does not set its own. */
878
+ defaultRateLimitPerMinute: z.ZodDefault<z.ZodOptional<z.ZodNumber>>;
879
+ /** Rate-limit window (ms) for the public /widget/session endpoints. Default 60s. */
880
+ rateLimitWindowMs: z.ZodDefault<z.ZodOptional<z.ZodNumber>>;
881
+ /** Server-wide default hard ceiling (minutes) on a voice session when an instance omits one (W4). */
882
+ voiceDefaultMaxSessionMinutes: z.ZodDefault<z.ZodOptional<z.ZodNumber>>;
883
+ /** Email/name of the internal user whose context READS widget config at mint time (falls back to system/Owner). */
884
+ contextUserForLookup: z.ZodOptional<z.ZodString>;
885
+ /**
886
+ * Host-identity public keys (PEM), keyed by widget PublicKey, for the `host-identity` auth
887
+ * strategy (D1). The host signs a short-lived RS256 assertion; the mint verifies it against
888
+ * the key here. INTERIM location — production should store the host key per widget instance
889
+ * (a HostPublicKey column on WidgetInstance, pending a migration). When a widget's strategy is
890
+ * HostIdentity and no key is configured here, host mints fail closed.
891
+ */
892
+ hostPublicKeys: z.ZodDefault<z.ZodOptional<z.ZodRecord<z.ZodString, z.ZodString>>>;
893
+ /**
894
+ * Returning-visitor identity-resolution target (RV4). When a visitor verifies (magic-link upgrade)
895
+ * or a host asserts their identity, their email is resolved to a record `(entityName, recordId)`
896
+ * and prior anonymous memory is merged onto that polymorphic pair. Deployment-configurable so the
897
+ * resolved record need NOT be an MJ User — point it at any entity that carries the visitor's email
898
+ * (e.g. a CRM `Persons` table). Defaults to the core `Users` entity keyed by `Email`.
899
+ */
900
+ identityResolution: z.ZodOptional<z.ZodObject<{
901
+ entityName: z.ZodDefault<z.ZodOptional<z.ZodString>>;
902
+ emailField: z.ZodDefault<z.ZodOptional<z.ZodString>>;
903
+ }, "strip", z.ZodTypeAny, {
904
+ entityName?: string;
905
+ emailField?: string;
906
+ }, {
907
+ entityName?: string;
908
+ emailField?: string;
909
+ }>>;
910
+ }, z.ZodTypeAny, "passthrough">, z.objectInputType<{
911
+ /** Master switch. When false, the /widget routes are not mounted. */
912
+ enabled: z.ZodDefault<z.ZodEffects<z.ZodDefault<z.ZodOptional<z.ZodUnion<[z.ZodBoolean, z.ZodString, z.ZodNumber]>>>, boolean, string | number | boolean>>;
913
+ /**
914
+ * Which signing mechanism the widget reuses. Only `magic-link` is supported today
915
+ * (shares MagicLinkKeyManager + the magic-link auth provider). Recorded so a future
916
+ * dedicated widget key is a config flip, not a code change.
917
+ */
918
+ signingReuse: z.ZodDefault<z.ZodOptional<z.ZodEnum<["magic-link"]>>>;
919
+ /**
920
+ * Audience claim for minted guest JWTs. MUST equal the magic-link audience so the
921
+ * auto-registered `magic-link` auth provider validates widget tokens.
922
+ */
923
+ audience: z.ZodDefault<z.ZodOptional<z.ZodString>>;
924
+ /** Email of the shared Anonymous principal used in guest claims (resolves the synthesized guest user). */
925
+ anonymousEmail: z.ZodDefault<z.ZodOptional<z.ZodString>>;
926
+ /** Fallback session-token TTL (minutes) when a widget instance does not set its own. */
927
+ defaultSessionTtlMinutes: z.ZodDefault<z.ZodOptional<z.ZodNumber>>;
928
+ /** Fallback mint rate-limit (per IP per window) when a widget instance does not set its own. */
929
+ defaultRateLimitPerMinute: z.ZodDefault<z.ZodOptional<z.ZodNumber>>;
930
+ /** Rate-limit window (ms) for the public /widget/session endpoints. Default 60s. */
931
+ rateLimitWindowMs: z.ZodDefault<z.ZodOptional<z.ZodNumber>>;
932
+ /** Server-wide default hard ceiling (minutes) on a voice session when an instance omits one (W4). */
933
+ voiceDefaultMaxSessionMinutes: z.ZodDefault<z.ZodOptional<z.ZodNumber>>;
934
+ /** Email/name of the internal user whose context READS widget config at mint time (falls back to system/Owner). */
935
+ contextUserForLookup: z.ZodOptional<z.ZodString>;
936
+ /**
937
+ * Host-identity public keys (PEM), keyed by widget PublicKey, for the `host-identity` auth
938
+ * strategy (D1). The host signs a short-lived RS256 assertion; the mint verifies it against
939
+ * the key here. INTERIM location — production should store the host key per widget instance
940
+ * (a HostPublicKey column on WidgetInstance, pending a migration). When a widget's strategy is
941
+ * HostIdentity and no key is configured here, host mints fail closed.
942
+ */
943
+ hostPublicKeys: z.ZodDefault<z.ZodOptional<z.ZodRecord<z.ZodString, z.ZodString>>>;
944
+ /**
945
+ * Returning-visitor identity-resolution target (RV4). When a visitor verifies (magic-link upgrade)
946
+ * or a host asserts their identity, their email is resolved to a record `(entityName, recordId)`
947
+ * and prior anonymous memory is merged onto that polymorphic pair. Deployment-configurable so the
948
+ * resolved record need NOT be an MJ User — point it at any entity that carries the visitor's email
949
+ * (e.g. a CRM `Persons` table). Defaults to the core `Users` entity keyed by `Email`.
950
+ */
951
+ identityResolution: z.ZodOptional<z.ZodObject<{
952
+ entityName: z.ZodDefault<z.ZodOptional<z.ZodString>>;
953
+ emailField: z.ZodDefault<z.ZodOptional<z.ZodString>>;
954
+ }, "strip", z.ZodTypeAny, {
955
+ entityName?: string;
956
+ emailField?: string;
957
+ }, {
958
+ entityName?: string;
959
+ emailField?: string;
960
+ }>>;
961
+ }, z.ZodTypeAny, "passthrough">>;
962
+ /**
963
+ * Telephony bridge config (plans/realtime/bridges-and-widget/telephony-vendor-bindings.md).
964
+ * Holds the per-vendor credentials + public stream URL the MJAPI telephony ingress wires onto
965
+ * the already-stubbed native SDK seams. Credentials resolve here from `mj.config.cjs` / env —
966
+ * never inlined in code. When `twilio` is omitted, the Twilio telephony routes are not mounted.
967
+ */
968
+ declare const twilioTelephonySchema: z.ZodObject<{
969
+ /** Twilio Account SID (`AC…`). */
970
+ accountSid: z.ZodString;
971
+ /** Account auth token — REST auth (when no API key pair) AND the HMAC key for X-Twilio-Signature verification. */
972
+ authToken: z.ZodOptional<z.ZodString>;
973
+ /** API Key SID (`SK…`) — preferred over the auth token for REST auth when paired with apiKeySecret. */
974
+ apiKeySid: z.ZodOptional<z.ZodString>;
975
+ /** API Key secret — paired with apiKeySid. */
976
+ apiKeySecret: z.ZodOptional<z.ZodString>;
977
+ /** The publicly reachable `wss://…/telephony/twilio/media` URL Twilio's <Connect><Stream> connects to. */
978
+ streamPublicUrl: z.ZodString;
979
+ /** Optional shared secret gating the public webhook/WSS endpoints (defense-in-depth beyond signature verification). */
980
+ webhookSigningSecret: z.ZodOptional<z.ZodString>;
981
+ /** Optional status-callback URL Twilio posts call lifecycle events to. */
982
+ statusCallbackUrl: z.ZodOptional<z.ZodString>;
983
+ }, "passthrough", z.ZodTypeAny, z.objectOutputType<{
984
+ /** Twilio Account SID (`AC…`). */
985
+ accountSid: z.ZodString;
986
+ /** Account auth token — REST auth (when no API key pair) AND the HMAC key for X-Twilio-Signature verification. */
987
+ authToken: z.ZodOptional<z.ZodString>;
988
+ /** API Key SID (`SK…`) — preferred over the auth token for REST auth when paired with apiKeySecret. */
989
+ apiKeySid: z.ZodOptional<z.ZodString>;
990
+ /** API Key secret — paired with apiKeySid. */
991
+ apiKeySecret: z.ZodOptional<z.ZodString>;
992
+ /** The publicly reachable `wss://…/telephony/twilio/media` URL Twilio's <Connect><Stream> connects to. */
993
+ streamPublicUrl: z.ZodString;
994
+ /** Optional shared secret gating the public webhook/WSS endpoints (defense-in-depth beyond signature verification). */
995
+ webhookSigningSecret: z.ZodOptional<z.ZodString>;
996
+ /** Optional status-callback URL Twilio posts call lifecycle events to. */
997
+ statusCallbackUrl: z.ZodOptional<z.ZodString>;
998
+ }, z.ZodTypeAny, "passthrough">, z.objectInputType<{
999
+ /** Twilio Account SID (`AC…`). */
1000
+ accountSid: z.ZodString;
1001
+ /** Account auth token — REST auth (when no API key pair) AND the HMAC key for X-Twilio-Signature verification. */
1002
+ authToken: z.ZodOptional<z.ZodString>;
1003
+ /** API Key SID (`SK…`) — preferred over the auth token for REST auth when paired with apiKeySecret. */
1004
+ apiKeySid: z.ZodOptional<z.ZodString>;
1005
+ /** API Key secret — paired with apiKeySid. */
1006
+ apiKeySecret: z.ZodOptional<z.ZodString>;
1007
+ /** The publicly reachable `wss://…/telephony/twilio/media` URL Twilio's <Connect><Stream> connects to. */
1008
+ streamPublicUrl: z.ZodString;
1009
+ /** Optional shared secret gating the public webhook/WSS endpoints (defense-in-depth beyond signature verification). */
1010
+ webhookSigningSecret: z.ZodOptional<z.ZodString>;
1011
+ /** Optional status-callback URL Twilio posts call lifecycle events to. */
1012
+ statusCallbackUrl: z.ZodOptional<z.ZodString>;
1013
+ }, z.ZodTypeAny, "passthrough">>;
1014
+ /**
1015
+ * Vonage Voice + WebSocket-media telephony binding. Voice-API auth is application-scoped
1016
+ * (application id + RSA private key) with an optional account API key pair for key-scoped ops;
1017
+ * signatureSecret is the HMAC key for signed-request `sig` AND HS256 webhook-JWT verification.
1018
+ * When `vonage` is omitted, the Vonage telephony routes are not mounted.
1019
+ */
1020
+ declare const vonageTelephonySchema: z.ZodObject<{
1021
+ /** Vonage Application ID (UUID) — the JWT-auth identity for the Voice API. */
1022
+ applicationId: z.ZodOptional<z.ZodString>;
1023
+ /** The application's RSA private key (PEM) used to sign Voice-API JWTs. */
1024
+ privateKey: z.ZodOptional<z.ZodString>;
1025
+ /** Account API key — used for key-scoped operations when no application credential pair is supplied. */
1026
+ apiKey: z.ZodOptional<z.ZodString>;
1027
+ /** Account API secret — paired with apiKey. */
1028
+ apiSecret: z.ZodOptional<z.ZodString>;
1029
+ /** The publicly reachable `wss://…/telephony/vonage/media` URL the call's connect NCCO opens. */
1030
+ mediaPublicUrl: z.ZodString;
1031
+ /** Vonage account signature secret — HMAC key for signed-request `sig` AND HS256 webhook-JWT verification. */
1032
+ signatureSecret: z.ZodOptional<z.ZodString>;
1033
+ /** Optional event-webhook URL Vonage posts call lifecycle events to (passed on outbound createCall). */
1034
+ eventUrl: z.ZodOptional<z.ZodString>;
1035
+ }, "passthrough", z.ZodTypeAny, z.objectOutputType<{
1036
+ /** Vonage Application ID (UUID) — the JWT-auth identity for the Voice API. */
1037
+ applicationId: z.ZodOptional<z.ZodString>;
1038
+ /** The application's RSA private key (PEM) used to sign Voice-API JWTs. */
1039
+ privateKey: z.ZodOptional<z.ZodString>;
1040
+ /** Account API key — used for key-scoped operations when no application credential pair is supplied. */
1041
+ apiKey: z.ZodOptional<z.ZodString>;
1042
+ /** Account API secret — paired with apiKey. */
1043
+ apiSecret: z.ZodOptional<z.ZodString>;
1044
+ /** The publicly reachable `wss://…/telephony/vonage/media` URL the call's connect NCCO opens. */
1045
+ mediaPublicUrl: z.ZodString;
1046
+ /** Vonage account signature secret — HMAC key for signed-request `sig` AND HS256 webhook-JWT verification. */
1047
+ signatureSecret: z.ZodOptional<z.ZodString>;
1048
+ /** Optional event-webhook URL Vonage posts call lifecycle events to (passed on outbound createCall). */
1049
+ eventUrl: z.ZodOptional<z.ZodString>;
1050
+ }, z.ZodTypeAny, "passthrough">, z.objectInputType<{
1051
+ /** Vonage Application ID (UUID) — the JWT-auth identity for the Voice API. */
1052
+ applicationId: z.ZodOptional<z.ZodString>;
1053
+ /** The application's RSA private key (PEM) used to sign Voice-API JWTs. */
1054
+ privateKey: z.ZodOptional<z.ZodString>;
1055
+ /** Account API key — used for key-scoped operations when no application credential pair is supplied. */
1056
+ apiKey: z.ZodOptional<z.ZodString>;
1057
+ /** Account API secret — paired with apiKey. */
1058
+ apiSecret: z.ZodOptional<z.ZodString>;
1059
+ /** The publicly reachable `wss://…/telephony/vonage/media` URL the call's connect NCCO opens. */
1060
+ mediaPublicUrl: z.ZodString;
1061
+ /** Vonage account signature secret — HMAC key for signed-request `sig` AND HS256 webhook-JWT verification. */
1062
+ signatureSecret: z.ZodOptional<z.ZodString>;
1063
+ /** Optional event-webhook URL Vonage posts call lifecycle events to (passed on outbound createCall). */
1064
+ eventUrl: z.ZodOptional<z.ZodString>;
1065
+ }, z.ZodTypeAny, "passthrough">>;
1066
+ /**
1067
+ * RingCentral telephony binding: **SIP device credentials** for the headless softphone (the
1068
+ * `ringcentral-softphone` SIP/RTP path — the only RingCentral product that carries bidirectional call
1069
+ * audio; the WebSocket "Call Streaming" product is receive-only). These come from a RingCentral
1070
+ * "Other Phone" (BYO-device) registration's SIP info, resolved here from `mj.config.cjs` / env — never
1071
+ * inlined. When `ringcentral` is omitted, the RingCentral softphone is not started.
1072
+ *
1073
+ * Unlike Twilio/Vonage, there is NO public HTTP webhook or media WSS: the softphone is an outbound SIP
1074
+ * registration that receives inbound INVITEs directly over its own SIP/TLS connection. So this block has
1075
+ * no signing secret or public URL — just the SIP device creds + codec.
1076
+ */
1077
+ declare const ringcentralTelephonySchema: z.ZodObject<{
1078
+ /** SIP domain (e.g. `sip.ringcentral.com`). */
1079
+ sipDomain: z.ZodString;
1080
+ /** SIP outbound proxy (`host:port`, e.g. `sip10.ringcentral.com:5096`). */
1081
+ sipOutboundProxy: z.ZodString;
1082
+ /** SIP auth username (the device's phone number / extension). */
1083
+ sipUsername: z.ZodString;
1084
+ /** SIP auth password (resolved upstream — never inlined). */
1085
+ sipPassword: z.ZodString;
1086
+ /** SIP authorization id (the device's RingCentral authorization id). */
1087
+ sipAuthorizationId: z.ZodString;
1088
+ /** Codec to negotiate. Defaults to `OPUS/16000` (clean wideband PCM16 — the least-friction realtime path). */
1089
+ codec: z.ZodOptional<z.ZodEnum<["OPUS/16000", "OPUS/48000/2", "PCMU/8000"]>>;
1090
+ /** Skip TLS cert validation (sandbox/test only — never in production). */
1091
+ ignoreTlsCertErrors: z.ZodDefault<z.ZodOptional<z.ZodEffects<z.ZodDefault<z.ZodOptional<z.ZodUnion<[z.ZodBoolean, z.ZodString, z.ZodNumber]>>>, boolean, string | number | boolean>>>;
1092
+ }, "passthrough", z.ZodTypeAny, z.objectOutputType<{
1093
+ /** SIP domain (e.g. `sip.ringcentral.com`). */
1094
+ sipDomain: z.ZodString;
1095
+ /** SIP outbound proxy (`host:port`, e.g. `sip10.ringcentral.com:5096`). */
1096
+ sipOutboundProxy: z.ZodString;
1097
+ /** SIP auth username (the device's phone number / extension). */
1098
+ sipUsername: z.ZodString;
1099
+ /** SIP auth password (resolved upstream — never inlined). */
1100
+ sipPassword: z.ZodString;
1101
+ /** SIP authorization id (the device's RingCentral authorization id). */
1102
+ sipAuthorizationId: z.ZodString;
1103
+ /** Codec to negotiate. Defaults to `OPUS/16000` (clean wideband PCM16 — the least-friction realtime path). */
1104
+ codec: z.ZodOptional<z.ZodEnum<["OPUS/16000", "OPUS/48000/2", "PCMU/8000"]>>;
1105
+ /** Skip TLS cert validation (sandbox/test only — never in production). */
1106
+ ignoreTlsCertErrors: z.ZodDefault<z.ZodOptional<z.ZodEffects<z.ZodDefault<z.ZodOptional<z.ZodUnion<[z.ZodBoolean, z.ZodString, z.ZodNumber]>>>, boolean, string | number | boolean>>>;
1107
+ }, z.ZodTypeAny, "passthrough">, z.objectInputType<{
1108
+ /** SIP domain (e.g. `sip.ringcentral.com`). */
1109
+ sipDomain: z.ZodString;
1110
+ /** SIP outbound proxy (`host:port`, e.g. `sip10.ringcentral.com:5096`). */
1111
+ sipOutboundProxy: z.ZodString;
1112
+ /** SIP auth username (the device's phone number / extension). */
1113
+ sipUsername: z.ZodString;
1114
+ /** SIP auth password (resolved upstream — never inlined). */
1115
+ sipPassword: z.ZodString;
1116
+ /** SIP authorization id (the device's RingCentral authorization id). */
1117
+ sipAuthorizationId: z.ZodString;
1118
+ /** Codec to negotiate. Defaults to `OPUS/16000` (clean wideband PCM16 — the least-friction realtime path). */
1119
+ codec: z.ZodOptional<z.ZodEnum<["OPUS/16000", "OPUS/48000/2", "PCMU/8000"]>>;
1120
+ /** Skip TLS cert validation (sandbox/test only — never in production). */
1121
+ ignoreTlsCertErrors: z.ZodDefault<z.ZodOptional<z.ZodEffects<z.ZodDefault<z.ZodOptional<z.ZodUnion<[z.ZodBoolean, z.ZodString, z.ZodNumber]>>>, boolean, string | number | boolean>>>;
1122
+ }, z.ZodTypeAny, "passthrough">>;
1123
+ /**
1124
+ * Teams meetings bridge config (plans/realtime/bridges-and-widget/meeting-vendor-bindings-teams-slack.md M1).
1125
+ * Holds the bot credentials + Graph webhook shared secret + ACS audio rate the MJAPI meetings ingress wires
1126
+ * onto the Teams binding seams. Credentials resolve here from `mj.config.cjs` / env — never inlined in code.
1127
+ * When `teams` is omitted (or disabled), the Teams meetings routes are not mounted.
1128
+ */
1129
+ declare const teamsMeetingsSchema: z.ZodObject<{
1130
+ /** Master switch for the Teams meetings ingress. */
1131
+ enabled: z.ZodDefault<z.ZodEffects<z.ZodDefault<z.ZodOptional<z.ZodUnion<[z.ZodBoolean, z.ZodString, z.ZodNumber]>>>, boolean, string | number | boolean>>;
1132
+ /** The bot's Azure AD application (client) id (resolved upstream; carried for diagnostics). */
1133
+ appId: z.ZodOptional<z.ZodString>;
1134
+ /** The Azure tenant id the bot operates in. */
1135
+ tenantId: z.ZodOptional<z.ZodString>;
1136
+ /** A pre-resolved OAuth bearer / application token for the bot's Graph calls (resolved upstream — never inline). */
1137
+ botAccessToken: z.ZodOptional<z.ZodString>;
1138
+ /** The shared secret set as `clientState` on the Graph subscription; gates the change-notification webhook. */
1139
+ notificationClientState: z.ZodOptional<z.ZodString>;
1140
+ /** The ACS application-hosted-media PCM sample rate (Hz) the audio plane negotiates. Defaults to 16000. */
1141
+ acsSampleRate: z.ZodDefault<z.ZodOptional<z.ZodNumber>>;
1142
+ /** The realtime model's PCM16 sample rate (Hz) the binding resamples to/from. Defaults to 16000. */
1143
+ modelSampleRate: z.ZodDefault<z.ZodOptional<z.ZodNumber>>;
1144
+ }, "passthrough", z.ZodTypeAny, z.objectOutputType<{
1145
+ /** Master switch for the Teams meetings ingress. */
1146
+ enabled: z.ZodDefault<z.ZodEffects<z.ZodDefault<z.ZodOptional<z.ZodUnion<[z.ZodBoolean, z.ZodString, z.ZodNumber]>>>, boolean, string | number | boolean>>;
1147
+ /** The bot's Azure AD application (client) id (resolved upstream; carried for diagnostics). */
1148
+ appId: z.ZodOptional<z.ZodString>;
1149
+ /** The Azure tenant id the bot operates in. */
1150
+ tenantId: z.ZodOptional<z.ZodString>;
1151
+ /** A pre-resolved OAuth bearer / application token for the bot's Graph calls (resolved upstream — never inline). */
1152
+ botAccessToken: z.ZodOptional<z.ZodString>;
1153
+ /** The shared secret set as `clientState` on the Graph subscription; gates the change-notification webhook. */
1154
+ notificationClientState: z.ZodOptional<z.ZodString>;
1155
+ /** The ACS application-hosted-media PCM sample rate (Hz) the audio plane negotiates. Defaults to 16000. */
1156
+ acsSampleRate: z.ZodDefault<z.ZodOptional<z.ZodNumber>>;
1157
+ /** The realtime model's PCM16 sample rate (Hz) the binding resamples to/from. Defaults to 16000. */
1158
+ modelSampleRate: z.ZodDefault<z.ZodOptional<z.ZodNumber>>;
1159
+ }, z.ZodTypeAny, "passthrough">, z.objectInputType<{
1160
+ /** Master switch for the Teams meetings ingress. */
1161
+ enabled: z.ZodDefault<z.ZodEffects<z.ZodDefault<z.ZodOptional<z.ZodUnion<[z.ZodBoolean, z.ZodString, z.ZodNumber]>>>, boolean, string | number | boolean>>;
1162
+ /** The bot's Azure AD application (client) id (resolved upstream; carried for diagnostics). */
1163
+ appId: z.ZodOptional<z.ZodString>;
1164
+ /** The Azure tenant id the bot operates in. */
1165
+ tenantId: z.ZodOptional<z.ZodString>;
1166
+ /** A pre-resolved OAuth bearer / application token for the bot's Graph calls (resolved upstream — never inline). */
1167
+ botAccessToken: z.ZodOptional<z.ZodString>;
1168
+ /** The shared secret set as `clientState` on the Graph subscription; gates the change-notification webhook. */
1169
+ notificationClientState: z.ZodOptional<z.ZodString>;
1170
+ /** The ACS application-hosted-media PCM sample rate (Hz) the audio plane negotiates. Defaults to 16000. */
1171
+ acsSampleRate: z.ZodDefault<z.ZodOptional<z.ZodNumber>>;
1172
+ /** The realtime model's PCM16 sample rate (Hz) the binding resamples to/from. Defaults to 16000. */
1173
+ modelSampleRate: z.ZodDefault<z.ZodOptional<z.ZodNumber>>;
1174
+ }, z.ZodTypeAny, "passthrough">>;
1175
+ declare const telephonySchema: z.ZodObject<{
1176
+ /** Master switch. When false (or when no vendor block is present), telephony routes are not mounted. */
1177
+ enabled: z.ZodDefault<z.ZodEffects<z.ZodDefault<z.ZodOptional<z.ZodUnion<[z.ZodBoolean, z.ZodString, z.ZodNumber]>>>, boolean, string | number | boolean>>;
1178
+ /** Twilio Programmable Voice + Media Streams binding. */
1179
+ twilio: z.ZodOptional<z.ZodObject<{
1180
+ /** Twilio Account SID (`AC…`). */
1181
+ accountSid: z.ZodString;
1182
+ /** Account auth token — REST auth (when no API key pair) AND the HMAC key for X-Twilio-Signature verification. */
1183
+ authToken: z.ZodOptional<z.ZodString>;
1184
+ /** API Key SID (`SK…`) — preferred over the auth token for REST auth when paired with apiKeySecret. */
1185
+ apiKeySid: z.ZodOptional<z.ZodString>;
1186
+ /** API Key secret — paired with apiKeySid. */
1187
+ apiKeySecret: z.ZodOptional<z.ZodString>;
1188
+ /** The publicly reachable `wss://…/telephony/twilio/media` URL Twilio's <Connect><Stream> connects to. */
1189
+ streamPublicUrl: z.ZodString;
1190
+ /** Optional shared secret gating the public webhook/WSS endpoints (defense-in-depth beyond signature verification). */
1191
+ webhookSigningSecret: z.ZodOptional<z.ZodString>;
1192
+ /** Optional status-callback URL Twilio posts call lifecycle events to. */
1193
+ statusCallbackUrl: z.ZodOptional<z.ZodString>;
1194
+ }, "passthrough", z.ZodTypeAny, z.objectOutputType<{
1195
+ /** Twilio Account SID (`AC…`). */
1196
+ accountSid: z.ZodString;
1197
+ /** Account auth token — REST auth (when no API key pair) AND the HMAC key for X-Twilio-Signature verification. */
1198
+ authToken: z.ZodOptional<z.ZodString>;
1199
+ /** API Key SID (`SK…`) — preferred over the auth token for REST auth when paired with apiKeySecret. */
1200
+ apiKeySid: z.ZodOptional<z.ZodString>;
1201
+ /** API Key secret — paired with apiKeySid. */
1202
+ apiKeySecret: z.ZodOptional<z.ZodString>;
1203
+ /** The publicly reachable `wss://…/telephony/twilio/media` URL Twilio's <Connect><Stream> connects to. */
1204
+ streamPublicUrl: z.ZodString;
1205
+ /** Optional shared secret gating the public webhook/WSS endpoints (defense-in-depth beyond signature verification). */
1206
+ webhookSigningSecret: z.ZodOptional<z.ZodString>;
1207
+ /** Optional status-callback URL Twilio posts call lifecycle events to. */
1208
+ statusCallbackUrl: z.ZodOptional<z.ZodString>;
1209
+ }, z.ZodTypeAny, "passthrough">, z.objectInputType<{
1210
+ /** Twilio Account SID (`AC…`). */
1211
+ accountSid: z.ZodString;
1212
+ /** Account auth token — REST auth (when no API key pair) AND the HMAC key for X-Twilio-Signature verification. */
1213
+ authToken: z.ZodOptional<z.ZodString>;
1214
+ /** API Key SID (`SK…`) — preferred over the auth token for REST auth when paired with apiKeySecret. */
1215
+ apiKeySid: z.ZodOptional<z.ZodString>;
1216
+ /** API Key secret — paired with apiKeySid. */
1217
+ apiKeySecret: z.ZodOptional<z.ZodString>;
1218
+ /** The publicly reachable `wss://…/telephony/twilio/media` URL Twilio's <Connect><Stream> connects to. */
1219
+ streamPublicUrl: z.ZodString;
1220
+ /** Optional shared secret gating the public webhook/WSS endpoints (defense-in-depth beyond signature verification). */
1221
+ webhookSigningSecret: z.ZodOptional<z.ZodString>;
1222
+ /** Optional status-callback URL Twilio posts call lifecycle events to. */
1223
+ statusCallbackUrl: z.ZodOptional<z.ZodString>;
1224
+ }, z.ZodTypeAny, "passthrough">>>;
1225
+ /** Vonage Voice + WebSocket-media binding. */
1226
+ vonage: z.ZodOptional<z.ZodObject<{
1227
+ /** Vonage Application ID (UUID) — the JWT-auth identity for the Voice API. */
1228
+ applicationId: z.ZodOptional<z.ZodString>;
1229
+ /** The application's RSA private key (PEM) used to sign Voice-API JWTs. */
1230
+ privateKey: z.ZodOptional<z.ZodString>;
1231
+ /** Account API key — used for key-scoped operations when no application credential pair is supplied. */
1232
+ apiKey: z.ZodOptional<z.ZodString>;
1233
+ /** Account API secret — paired with apiKey. */
1234
+ apiSecret: z.ZodOptional<z.ZodString>;
1235
+ /** The publicly reachable `wss://…/telephony/vonage/media` URL the call's connect NCCO opens. */
1236
+ mediaPublicUrl: z.ZodString;
1237
+ /** Vonage account signature secret — HMAC key for signed-request `sig` AND HS256 webhook-JWT verification. */
1238
+ signatureSecret: z.ZodOptional<z.ZodString>;
1239
+ /** Optional event-webhook URL Vonage posts call lifecycle events to (passed on outbound createCall). */
1240
+ eventUrl: z.ZodOptional<z.ZodString>;
1241
+ }, "passthrough", z.ZodTypeAny, z.objectOutputType<{
1242
+ /** Vonage Application ID (UUID) — the JWT-auth identity for the Voice API. */
1243
+ applicationId: z.ZodOptional<z.ZodString>;
1244
+ /** The application's RSA private key (PEM) used to sign Voice-API JWTs. */
1245
+ privateKey: z.ZodOptional<z.ZodString>;
1246
+ /** Account API key — used for key-scoped operations when no application credential pair is supplied. */
1247
+ apiKey: z.ZodOptional<z.ZodString>;
1248
+ /** Account API secret — paired with apiKey. */
1249
+ apiSecret: z.ZodOptional<z.ZodString>;
1250
+ /** The publicly reachable `wss://…/telephony/vonage/media` URL the call's connect NCCO opens. */
1251
+ mediaPublicUrl: z.ZodString;
1252
+ /** Vonage account signature secret — HMAC key for signed-request `sig` AND HS256 webhook-JWT verification. */
1253
+ signatureSecret: z.ZodOptional<z.ZodString>;
1254
+ /** Optional event-webhook URL Vonage posts call lifecycle events to (passed on outbound createCall). */
1255
+ eventUrl: z.ZodOptional<z.ZodString>;
1256
+ }, z.ZodTypeAny, "passthrough">, z.objectInputType<{
1257
+ /** Vonage Application ID (UUID) — the JWT-auth identity for the Voice API. */
1258
+ applicationId: z.ZodOptional<z.ZodString>;
1259
+ /** The application's RSA private key (PEM) used to sign Voice-API JWTs. */
1260
+ privateKey: z.ZodOptional<z.ZodString>;
1261
+ /** Account API key — used for key-scoped operations when no application credential pair is supplied. */
1262
+ apiKey: z.ZodOptional<z.ZodString>;
1263
+ /** Account API secret — paired with apiKey. */
1264
+ apiSecret: z.ZodOptional<z.ZodString>;
1265
+ /** The publicly reachable `wss://…/telephony/vonage/media` URL the call's connect NCCO opens. */
1266
+ mediaPublicUrl: z.ZodString;
1267
+ /** Vonage account signature secret — HMAC key for signed-request `sig` AND HS256 webhook-JWT verification. */
1268
+ signatureSecret: z.ZodOptional<z.ZodString>;
1269
+ /** Optional event-webhook URL Vonage posts call lifecycle events to (passed on outbound createCall). */
1270
+ eventUrl: z.ZodOptional<z.ZodString>;
1271
+ }, z.ZodTypeAny, "passthrough">>>;
1272
+ /** RingCentral Call Control + media-stream binding. */
1273
+ ringcentral: z.ZodOptional<z.ZodObject<{
1274
+ /** SIP domain (e.g. `sip.ringcentral.com`). */
1275
+ sipDomain: z.ZodString;
1276
+ /** SIP outbound proxy (`host:port`, e.g. `sip10.ringcentral.com:5096`). */
1277
+ sipOutboundProxy: z.ZodString;
1278
+ /** SIP auth username (the device's phone number / extension). */
1279
+ sipUsername: z.ZodString;
1280
+ /** SIP auth password (resolved upstream — never inlined). */
1281
+ sipPassword: z.ZodString;
1282
+ /** SIP authorization id (the device's RingCentral authorization id). */
1283
+ sipAuthorizationId: z.ZodString;
1284
+ /** Codec to negotiate. Defaults to `OPUS/16000` (clean wideband PCM16 — the least-friction realtime path). */
1285
+ codec: z.ZodOptional<z.ZodEnum<["OPUS/16000", "OPUS/48000/2", "PCMU/8000"]>>;
1286
+ /** Skip TLS cert validation (sandbox/test only — never in production). */
1287
+ ignoreTlsCertErrors: z.ZodDefault<z.ZodOptional<z.ZodEffects<z.ZodDefault<z.ZodOptional<z.ZodUnion<[z.ZodBoolean, z.ZodString, z.ZodNumber]>>>, boolean, string | number | boolean>>>;
1288
+ }, "passthrough", z.ZodTypeAny, z.objectOutputType<{
1289
+ /** SIP domain (e.g. `sip.ringcentral.com`). */
1290
+ sipDomain: z.ZodString;
1291
+ /** SIP outbound proxy (`host:port`, e.g. `sip10.ringcentral.com:5096`). */
1292
+ sipOutboundProxy: z.ZodString;
1293
+ /** SIP auth username (the device's phone number / extension). */
1294
+ sipUsername: z.ZodString;
1295
+ /** SIP auth password (resolved upstream — never inlined). */
1296
+ sipPassword: z.ZodString;
1297
+ /** SIP authorization id (the device's RingCentral authorization id). */
1298
+ sipAuthorizationId: z.ZodString;
1299
+ /** Codec to negotiate. Defaults to `OPUS/16000` (clean wideband PCM16 — the least-friction realtime path). */
1300
+ codec: z.ZodOptional<z.ZodEnum<["OPUS/16000", "OPUS/48000/2", "PCMU/8000"]>>;
1301
+ /** Skip TLS cert validation (sandbox/test only — never in production). */
1302
+ ignoreTlsCertErrors: z.ZodDefault<z.ZodOptional<z.ZodEffects<z.ZodDefault<z.ZodOptional<z.ZodUnion<[z.ZodBoolean, z.ZodString, z.ZodNumber]>>>, boolean, string | number | boolean>>>;
1303
+ }, z.ZodTypeAny, "passthrough">, z.objectInputType<{
1304
+ /** SIP domain (e.g. `sip.ringcentral.com`). */
1305
+ sipDomain: z.ZodString;
1306
+ /** SIP outbound proxy (`host:port`, e.g. `sip10.ringcentral.com:5096`). */
1307
+ sipOutboundProxy: z.ZodString;
1308
+ /** SIP auth username (the device's phone number / extension). */
1309
+ sipUsername: z.ZodString;
1310
+ /** SIP auth password (resolved upstream — never inlined). */
1311
+ sipPassword: z.ZodString;
1312
+ /** SIP authorization id (the device's RingCentral authorization id). */
1313
+ sipAuthorizationId: z.ZodString;
1314
+ /** Codec to negotiate. Defaults to `OPUS/16000` (clean wideband PCM16 — the least-friction realtime path). */
1315
+ codec: z.ZodOptional<z.ZodEnum<["OPUS/16000", "OPUS/48000/2", "PCMU/8000"]>>;
1316
+ /** Skip TLS cert validation (sandbox/test only — never in production). */
1317
+ ignoreTlsCertErrors: z.ZodDefault<z.ZodOptional<z.ZodEffects<z.ZodDefault<z.ZodOptional<z.ZodUnion<[z.ZodBoolean, z.ZodString, z.ZodNumber]>>>, boolean, string | number | boolean>>>;
1318
+ }, z.ZodTypeAny, "passthrough">>>;
1319
+ /** Microsoft Teams meetings (Graph cloud-communications + ACS application-hosted media) binding. */
1320
+ teams: z.ZodOptional<z.ZodObject<{
1321
+ /** Master switch for the Teams meetings ingress. */
1322
+ enabled: z.ZodDefault<z.ZodEffects<z.ZodDefault<z.ZodOptional<z.ZodUnion<[z.ZodBoolean, z.ZodString, z.ZodNumber]>>>, boolean, string | number | boolean>>;
1323
+ /** The bot's Azure AD application (client) id (resolved upstream; carried for diagnostics). */
1324
+ appId: z.ZodOptional<z.ZodString>;
1325
+ /** The Azure tenant id the bot operates in. */
1326
+ tenantId: z.ZodOptional<z.ZodString>;
1327
+ /** A pre-resolved OAuth bearer / application token for the bot's Graph calls (resolved upstream — never inline). */
1328
+ botAccessToken: z.ZodOptional<z.ZodString>;
1329
+ /** The shared secret set as `clientState` on the Graph subscription; gates the change-notification webhook. */
1330
+ notificationClientState: z.ZodOptional<z.ZodString>;
1331
+ /** The ACS application-hosted-media PCM sample rate (Hz) the audio plane negotiates. Defaults to 16000. */
1332
+ acsSampleRate: z.ZodDefault<z.ZodOptional<z.ZodNumber>>;
1333
+ /** The realtime model's PCM16 sample rate (Hz) the binding resamples to/from. Defaults to 16000. */
1334
+ modelSampleRate: z.ZodDefault<z.ZodOptional<z.ZodNumber>>;
1335
+ }, "passthrough", z.ZodTypeAny, z.objectOutputType<{
1336
+ /** Master switch for the Teams meetings ingress. */
1337
+ enabled: z.ZodDefault<z.ZodEffects<z.ZodDefault<z.ZodOptional<z.ZodUnion<[z.ZodBoolean, z.ZodString, z.ZodNumber]>>>, boolean, string | number | boolean>>;
1338
+ /** The bot's Azure AD application (client) id (resolved upstream; carried for diagnostics). */
1339
+ appId: z.ZodOptional<z.ZodString>;
1340
+ /** The Azure tenant id the bot operates in. */
1341
+ tenantId: z.ZodOptional<z.ZodString>;
1342
+ /** A pre-resolved OAuth bearer / application token for the bot's Graph calls (resolved upstream — never inline). */
1343
+ botAccessToken: z.ZodOptional<z.ZodString>;
1344
+ /** The shared secret set as `clientState` on the Graph subscription; gates the change-notification webhook. */
1345
+ notificationClientState: z.ZodOptional<z.ZodString>;
1346
+ /** The ACS application-hosted-media PCM sample rate (Hz) the audio plane negotiates. Defaults to 16000. */
1347
+ acsSampleRate: z.ZodDefault<z.ZodOptional<z.ZodNumber>>;
1348
+ /** The realtime model's PCM16 sample rate (Hz) the binding resamples to/from. Defaults to 16000. */
1349
+ modelSampleRate: z.ZodDefault<z.ZodOptional<z.ZodNumber>>;
1350
+ }, z.ZodTypeAny, "passthrough">, z.objectInputType<{
1351
+ /** Master switch for the Teams meetings ingress. */
1352
+ enabled: z.ZodDefault<z.ZodEffects<z.ZodDefault<z.ZodOptional<z.ZodUnion<[z.ZodBoolean, z.ZodString, z.ZodNumber]>>>, boolean, string | number | boolean>>;
1353
+ /** The bot's Azure AD application (client) id (resolved upstream; carried for diagnostics). */
1354
+ appId: z.ZodOptional<z.ZodString>;
1355
+ /** The Azure tenant id the bot operates in. */
1356
+ tenantId: z.ZodOptional<z.ZodString>;
1357
+ /** A pre-resolved OAuth bearer / application token for the bot's Graph calls (resolved upstream — never inline). */
1358
+ botAccessToken: z.ZodOptional<z.ZodString>;
1359
+ /** The shared secret set as `clientState` on the Graph subscription; gates the change-notification webhook. */
1360
+ notificationClientState: z.ZodOptional<z.ZodString>;
1361
+ /** The ACS application-hosted-media PCM sample rate (Hz) the audio plane negotiates. Defaults to 16000. */
1362
+ acsSampleRate: z.ZodDefault<z.ZodOptional<z.ZodNumber>>;
1363
+ /** The realtime model's PCM16 sample rate (Hz) the binding resamples to/from. Defaults to 16000. */
1364
+ modelSampleRate: z.ZodDefault<z.ZodOptional<z.ZodNumber>>;
1365
+ }, z.ZodTypeAny, "passthrough">>>;
1366
+ }, "passthrough", z.ZodTypeAny, z.objectOutputType<{
1367
+ /** Master switch. When false (or when no vendor block is present), telephony routes are not mounted. */
1368
+ enabled: z.ZodDefault<z.ZodEffects<z.ZodDefault<z.ZodOptional<z.ZodUnion<[z.ZodBoolean, z.ZodString, z.ZodNumber]>>>, boolean, string | number | boolean>>;
1369
+ /** Twilio Programmable Voice + Media Streams binding. */
1370
+ twilio: z.ZodOptional<z.ZodObject<{
1371
+ /** Twilio Account SID (`AC…`). */
1372
+ accountSid: z.ZodString;
1373
+ /** Account auth token — REST auth (when no API key pair) AND the HMAC key for X-Twilio-Signature verification. */
1374
+ authToken: z.ZodOptional<z.ZodString>;
1375
+ /** API Key SID (`SK…`) — preferred over the auth token for REST auth when paired with apiKeySecret. */
1376
+ apiKeySid: z.ZodOptional<z.ZodString>;
1377
+ /** API Key secret — paired with apiKeySid. */
1378
+ apiKeySecret: z.ZodOptional<z.ZodString>;
1379
+ /** The publicly reachable `wss://…/telephony/twilio/media` URL Twilio's <Connect><Stream> connects to. */
1380
+ streamPublicUrl: z.ZodString;
1381
+ /** Optional shared secret gating the public webhook/WSS endpoints (defense-in-depth beyond signature verification). */
1382
+ webhookSigningSecret: z.ZodOptional<z.ZodString>;
1383
+ /** Optional status-callback URL Twilio posts call lifecycle events to. */
1384
+ statusCallbackUrl: z.ZodOptional<z.ZodString>;
1385
+ }, "passthrough", z.ZodTypeAny, z.objectOutputType<{
1386
+ /** Twilio Account SID (`AC…`). */
1387
+ accountSid: z.ZodString;
1388
+ /** Account auth token — REST auth (when no API key pair) AND the HMAC key for X-Twilio-Signature verification. */
1389
+ authToken: z.ZodOptional<z.ZodString>;
1390
+ /** API Key SID (`SK…`) — preferred over the auth token for REST auth when paired with apiKeySecret. */
1391
+ apiKeySid: z.ZodOptional<z.ZodString>;
1392
+ /** API Key secret — paired with apiKeySid. */
1393
+ apiKeySecret: z.ZodOptional<z.ZodString>;
1394
+ /** The publicly reachable `wss://…/telephony/twilio/media` URL Twilio's <Connect><Stream> connects to. */
1395
+ streamPublicUrl: z.ZodString;
1396
+ /** Optional shared secret gating the public webhook/WSS endpoints (defense-in-depth beyond signature verification). */
1397
+ webhookSigningSecret: z.ZodOptional<z.ZodString>;
1398
+ /** Optional status-callback URL Twilio posts call lifecycle events to. */
1399
+ statusCallbackUrl: z.ZodOptional<z.ZodString>;
1400
+ }, z.ZodTypeAny, "passthrough">, z.objectInputType<{
1401
+ /** Twilio Account SID (`AC…`). */
1402
+ accountSid: z.ZodString;
1403
+ /** Account auth token — REST auth (when no API key pair) AND the HMAC key for X-Twilio-Signature verification. */
1404
+ authToken: z.ZodOptional<z.ZodString>;
1405
+ /** API Key SID (`SK…`) — preferred over the auth token for REST auth when paired with apiKeySecret. */
1406
+ apiKeySid: z.ZodOptional<z.ZodString>;
1407
+ /** API Key secret — paired with apiKeySid. */
1408
+ apiKeySecret: z.ZodOptional<z.ZodString>;
1409
+ /** The publicly reachable `wss://…/telephony/twilio/media` URL Twilio's <Connect><Stream> connects to. */
1410
+ streamPublicUrl: z.ZodString;
1411
+ /** Optional shared secret gating the public webhook/WSS endpoints (defense-in-depth beyond signature verification). */
1412
+ webhookSigningSecret: z.ZodOptional<z.ZodString>;
1413
+ /** Optional status-callback URL Twilio posts call lifecycle events to. */
1414
+ statusCallbackUrl: z.ZodOptional<z.ZodString>;
1415
+ }, z.ZodTypeAny, "passthrough">>>;
1416
+ /** Vonage Voice + WebSocket-media binding. */
1417
+ vonage: z.ZodOptional<z.ZodObject<{
1418
+ /** Vonage Application ID (UUID) — the JWT-auth identity for the Voice API. */
1419
+ applicationId: z.ZodOptional<z.ZodString>;
1420
+ /** The application's RSA private key (PEM) used to sign Voice-API JWTs. */
1421
+ privateKey: z.ZodOptional<z.ZodString>;
1422
+ /** Account API key — used for key-scoped operations when no application credential pair is supplied. */
1423
+ apiKey: z.ZodOptional<z.ZodString>;
1424
+ /** Account API secret — paired with apiKey. */
1425
+ apiSecret: z.ZodOptional<z.ZodString>;
1426
+ /** The publicly reachable `wss://…/telephony/vonage/media` URL the call's connect NCCO opens. */
1427
+ mediaPublicUrl: z.ZodString;
1428
+ /** Vonage account signature secret — HMAC key for signed-request `sig` AND HS256 webhook-JWT verification. */
1429
+ signatureSecret: z.ZodOptional<z.ZodString>;
1430
+ /** Optional event-webhook URL Vonage posts call lifecycle events to (passed on outbound createCall). */
1431
+ eventUrl: z.ZodOptional<z.ZodString>;
1432
+ }, "passthrough", z.ZodTypeAny, z.objectOutputType<{
1433
+ /** Vonage Application ID (UUID) — the JWT-auth identity for the Voice API. */
1434
+ applicationId: z.ZodOptional<z.ZodString>;
1435
+ /** The application's RSA private key (PEM) used to sign Voice-API JWTs. */
1436
+ privateKey: z.ZodOptional<z.ZodString>;
1437
+ /** Account API key — used for key-scoped operations when no application credential pair is supplied. */
1438
+ apiKey: z.ZodOptional<z.ZodString>;
1439
+ /** Account API secret — paired with apiKey. */
1440
+ apiSecret: z.ZodOptional<z.ZodString>;
1441
+ /** The publicly reachable `wss://…/telephony/vonage/media` URL the call's connect NCCO opens. */
1442
+ mediaPublicUrl: z.ZodString;
1443
+ /** Vonage account signature secret — HMAC key for signed-request `sig` AND HS256 webhook-JWT verification. */
1444
+ signatureSecret: z.ZodOptional<z.ZodString>;
1445
+ /** Optional event-webhook URL Vonage posts call lifecycle events to (passed on outbound createCall). */
1446
+ eventUrl: z.ZodOptional<z.ZodString>;
1447
+ }, z.ZodTypeAny, "passthrough">, z.objectInputType<{
1448
+ /** Vonage Application ID (UUID) — the JWT-auth identity for the Voice API. */
1449
+ applicationId: z.ZodOptional<z.ZodString>;
1450
+ /** The application's RSA private key (PEM) used to sign Voice-API JWTs. */
1451
+ privateKey: z.ZodOptional<z.ZodString>;
1452
+ /** Account API key — used for key-scoped operations when no application credential pair is supplied. */
1453
+ apiKey: z.ZodOptional<z.ZodString>;
1454
+ /** Account API secret — paired with apiKey. */
1455
+ apiSecret: z.ZodOptional<z.ZodString>;
1456
+ /** The publicly reachable `wss://…/telephony/vonage/media` URL the call's connect NCCO opens. */
1457
+ mediaPublicUrl: z.ZodString;
1458
+ /** Vonage account signature secret — HMAC key for signed-request `sig` AND HS256 webhook-JWT verification. */
1459
+ signatureSecret: z.ZodOptional<z.ZodString>;
1460
+ /** Optional event-webhook URL Vonage posts call lifecycle events to (passed on outbound createCall). */
1461
+ eventUrl: z.ZodOptional<z.ZodString>;
1462
+ }, z.ZodTypeAny, "passthrough">>>;
1463
+ /** RingCentral Call Control + media-stream binding. */
1464
+ ringcentral: z.ZodOptional<z.ZodObject<{
1465
+ /** SIP domain (e.g. `sip.ringcentral.com`). */
1466
+ sipDomain: z.ZodString;
1467
+ /** SIP outbound proxy (`host:port`, e.g. `sip10.ringcentral.com:5096`). */
1468
+ sipOutboundProxy: z.ZodString;
1469
+ /** SIP auth username (the device's phone number / extension). */
1470
+ sipUsername: z.ZodString;
1471
+ /** SIP auth password (resolved upstream — never inlined). */
1472
+ sipPassword: z.ZodString;
1473
+ /** SIP authorization id (the device's RingCentral authorization id). */
1474
+ sipAuthorizationId: z.ZodString;
1475
+ /** Codec to negotiate. Defaults to `OPUS/16000` (clean wideband PCM16 — the least-friction realtime path). */
1476
+ codec: z.ZodOptional<z.ZodEnum<["OPUS/16000", "OPUS/48000/2", "PCMU/8000"]>>;
1477
+ /** Skip TLS cert validation (sandbox/test only — never in production). */
1478
+ ignoreTlsCertErrors: z.ZodDefault<z.ZodOptional<z.ZodEffects<z.ZodDefault<z.ZodOptional<z.ZodUnion<[z.ZodBoolean, z.ZodString, z.ZodNumber]>>>, boolean, string | number | boolean>>>;
1479
+ }, "passthrough", z.ZodTypeAny, z.objectOutputType<{
1480
+ /** SIP domain (e.g. `sip.ringcentral.com`). */
1481
+ sipDomain: z.ZodString;
1482
+ /** SIP outbound proxy (`host:port`, e.g. `sip10.ringcentral.com:5096`). */
1483
+ sipOutboundProxy: z.ZodString;
1484
+ /** SIP auth username (the device's phone number / extension). */
1485
+ sipUsername: z.ZodString;
1486
+ /** SIP auth password (resolved upstream — never inlined). */
1487
+ sipPassword: z.ZodString;
1488
+ /** SIP authorization id (the device's RingCentral authorization id). */
1489
+ sipAuthorizationId: z.ZodString;
1490
+ /** Codec to negotiate. Defaults to `OPUS/16000` (clean wideband PCM16 — the least-friction realtime path). */
1491
+ codec: z.ZodOptional<z.ZodEnum<["OPUS/16000", "OPUS/48000/2", "PCMU/8000"]>>;
1492
+ /** Skip TLS cert validation (sandbox/test only — never in production). */
1493
+ ignoreTlsCertErrors: z.ZodDefault<z.ZodOptional<z.ZodEffects<z.ZodDefault<z.ZodOptional<z.ZodUnion<[z.ZodBoolean, z.ZodString, z.ZodNumber]>>>, boolean, string | number | boolean>>>;
1494
+ }, z.ZodTypeAny, "passthrough">, z.objectInputType<{
1495
+ /** SIP domain (e.g. `sip.ringcentral.com`). */
1496
+ sipDomain: z.ZodString;
1497
+ /** SIP outbound proxy (`host:port`, e.g. `sip10.ringcentral.com:5096`). */
1498
+ sipOutboundProxy: z.ZodString;
1499
+ /** SIP auth username (the device's phone number / extension). */
1500
+ sipUsername: z.ZodString;
1501
+ /** SIP auth password (resolved upstream — never inlined). */
1502
+ sipPassword: z.ZodString;
1503
+ /** SIP authorization id (the device's RingCentral authorization id). */
1504
+ sipAuthorizationId: z.ZodString;
1505
+ /** Codec to negotiate. Defaults to `OPUS/16000` (clean wideband PCM16 — the least-friction realtime path). */
1506
+ codec: z.ZodOptional<z.ZodEnum<["OPUS/16000", "OPUS/48000/2", "PCMU/8000"]>>;
1507
+ /** Skip TLS cert validation (sandbox/test only — never in production). */
1508
+ ignoreTlsCertErrors: z.ZodDefault<z.ZodOptional<z.ZodEffects<z.ZodDefault<z.ZodOptional<z.ZodUnion<[z.ZodBoolean, z.ZodString, z.ZodNumber]>>>, boolean, string | number | boolean>>>;
1509
+ }, z.ZodTypeAny, "passthrough">>>;
1510
+ /** Microsoft Teams meetings (Graph cloud-communications + ACS application-hosted media) binding. */
1511
+ teams: z.ZodOptional<z.ZodObject<{
1512
+ /** Master switch for the Teams meetings ingress. */
1513
+ enabled: z.ZodDefault<z.ZodEffects<z.ZodDefault<z.ZodOptional<z.ZodUnion<[z.ZodBoolean, z.ZodString, z.ZodNumber]>>>, boolean, string | number | boolean>>;
1514
+ /** The bot's Azure AD application (client) id (resolved upstream; carried for diagnostics). */
1515
+ appId: z.ZodOptional<z.ZodString>;
1516
+ /** The Azure tenant id the bot operates in. */
1517
+ tenantId: z.ZodOptional<z.ZodString>;
1518
+ /** A pre-resolved OAuth bearer / application token for the bot's Graph calls (resolved upstream — never inline). */
1519
+ botAccessToken: z.ZodOptional<z.ZodString>;
1520
+ /** The shared secret set as `clientState` on the Graph subscription; gates the change-notification webhook. */
1521
+ notificationClientState: z.ZodOptional<z.ZodString>;
1522
+ /** The ACS application-hosted-media PCM sample rate (Hz) the audio plane negotiates. Defaults to 16000. */
1523
+ acsSampleRate: z.ZodDefault<z.ZodOptional<z.ZodNumber>>;
1524
+ /** The realtime model's PCM16 sample rate (Hz) the binding resamples to/from. Defaults to 16000. */
1525
+ modelSampleRate: z.ZodDefault<z.ZodOptional<z.ZodNumber>>;
1526
+ }, "passthrough", z.ZodTypeAny, z.objectOutputType<{
1527
+ /** Master switch for the Teams meetings ingress. */
1528
+ enabled: z.ZodDefault<z.ZodEffects<z.ZodDefault<z.ZodOptional<z.ZodUnion<[z.ZodBoolean, z.ZodString, z.ZodNumber]>>>, boolean, string | number | boolean>>;
1529
+ /** The bot's Azure AD application (client) id (resolved upstream; carried for diagnostics). */
1530
+ appId: z.ZodOptional<z.ZodString>;
1531
+ /** The Azure tenant id the bot operates in. */
1532
+ tenantId: z.ZodOptional<z.ZodString>;
1533
+ /** A pre-resolved OAuth bearer / application token for the bot's Graph calls (resolved upstream — never inline). */
1534
+ botAccessToken: z.ZodOptional<z.ZodString>;
1535
+ /** The shared secret set as `clientState` on the Graph subscription; gates the change-notification webhook. */
1536
+ notificationClientState: z.ZodOptional<z.ZodString>;
1537
+ /** The ACS application-hosted-media PCM sample rate (Hz) the audio plane negotiates. Defaults to 16000. */
1538
+ acsSampleRate: z.ZodDefault<z.ZodOptional<z.ZodNumber>>;
1539
+ /** The realtime model's PCM16 sample rate (Hz) the binding resamples to/from. Defaults to 16000. */
1540
+ modelSampleRate: z.ZodDefault<z.ZodOptional<z.ZodNumber>>;
1541
+ }, z.ZodTypeAny, "passthrough">, z.objectInputType<{
1542
+ /** Master switch for the Teams meetings ingress. */
1543
+ enabled: z.ZodDefault<z.ZodEffects<z.ZodDefault<z.ZodOptional<z.ZodUnion<[z.ZodBoolean, z.ZodString, z.ZodNumber]>>>, boolean, string | number | boolean>>;
1544
+ /** The bot's Azure AD application (client) id (resolved upstream; carried for diagnostics). */
1545
+ appId: z.ZodOptional<z.ZodString>;
1546
+ /** The Azure tenant id the bot operates in. */
1547
+ tenantId: z.ZodOptional<z.ZodString>;
1548
+ /** A pre-resolved OAuth bearer / application token for the bot's Graph calls (resolved upstream — never inline). */
1549
+ botAccessToken: z.ZodOptional<z.ZodString>;
1550
+ /** The shared secret set as `clientState` on the Graph subscription; gates the change-notification webhook. */
1551
+ notificationClientState: z.ZodOptional<z.ZodString>;
1552
+ /** The ACS application-hosted-media PCM sample rate (Hz) the audio plane negotiates. Defaults to 16000. */
1553
+ acsSampleRate: z.ZodDefault<z.ZodOptional<z.ZodNumber>>;
1554
+ /** The realtime model's PCM16 sample rate (Hz) the binding resamples to/from. Defaults to 16000. */
1555
+ modelSampleRate: z.ZodDefault<z.ZodOptional<z.ZodNumber>>;
1556
+ }, z.ZodTypeAny, "passthrough">>>;
1557
+ }, z.ZodTypeAny, "passthrough">, z.objectInputType<{
1558
+ /** Master switch. When false (or when no vendor block is present), telephony routes are not mounted. */
1559
+ enabled: z.ZodDefault<z.ZodEffects<z.ZodDefault<z.ZodOptional<z.ZodUnion<[z.ZodBoolean, z.ZodString, z.ZodNumber]>>>, boolean, string | number | boolean>>;
1560
+ /** Twilio Programmable Voice + Media Streams binding. */
1561
+ twilio: z.ZodOptional<z.ZodObject<{
1562
+ /** Twilio Account SID (`AC…`). */
1563
+ accountSid: z.ZodString;
1564
+ /** Account auth token — REST auth (when no API key pair) AND the HMAC key for X-Twilio-Signature verification. */
1565
+ authToken: z.ZodOptional<z.ZodString>;
1566
+ /** API Key SID (`SK…`) — preferred over the auth token for REST auth when paired with apiKeySecret. */
1567
+ apiKeySid: z.ZodOptional<z.ZodString>;
1568
+ /** API Key secret — paired with apiKeySid. */
1569
+ apiKeySecret: z.ZodOptional<z.ZodString>;
1570
+ /** The publicly reachable `wss://…/telephony/twilio/media` URL Twilio's <Connect><Stream> connects to. */
1571
+ streamPublicUrl: z.ZodString;
1572
+ /** Optional shared secret gating the public webhook/WSS endpoints (defense-in-depth beyond signature verification). */
1573
+ webhookSigningSecret: z.ZodOptional<z.ZodString>;
1574
+ /** Optional status-callback URL Twilio posts call lifecycle events to. */
1575
+ statusCallbackUrl: z.ZodOptional<z.ZodString>;
1576
+ }, "passthrough", z.ZodTypeAny, z.objectOutputType<{
1577
+ /** Twilio Account SID (`AC…`). */
1578
+ accountSid: z.ZodString;
1579
+ /** Account auth token — REST auth (when no API key pair) AND the HMAC key for X-Twilio-Signature verification. */
1580
+ authToken: z.ZodOptional<z.ZodString>;
1581
+ /** API Key SID (`SK…`) — preferred over the auth token for REST auth when paired with apiKeySecret. */
1582
+ apiKeySid: z.ZodOptional<z.ZodString>;
1583
+ /** API Key secret — paired with apiKeySid. */
1584
+ apiKeySecret: z.ZodOptional<z.ZodString>;
1585
+ /** The publicly reachable `wss://…/telephony/twilio/media` URL Twilio's <Connect><Stream> connects to. */
1586
+ streamPublicUrl: z.ZodString;
1587
+ /** Optional shared secret gating the public webhook/WSS endpoints (defense-in-depth beyond signature verification). */
1588
+ webhookSigningSecret: z.ZodOptional<z.ZodString>;
1589
+ /** Optional status-callback URL Twilio posts call lifecycle events to. */
1590
+ statusCallbackUrl: z.ZodOptional<z.ZodString>;
1591
+ }, z.ZodTypeAny, "passthrough">, z.objectInputType<{
1592
+ /** Twilio Account SID (`AC…`). */
1593
+ accountSid: z.ZodString;
1594
+ /** Account auth token — REST auth (when no API key pair) AND the HMAC key for X-Twilio-Signature verification. */
1595
+ authToken: z.ZodOptional<z.ZodString>;
1596
+ /** API Key SID (`SK…`) — preferred over the auth token for REST auth when paired with apiKeySecret. */
1597
+ apiKeySid: z.ZodOptional<z.ZodString>;
1598
+ /** API Key secret — paired with apiKeySid. */
1599
+ apiKeySecret: z.ZodOptional<z.ZodString>;
1600
+ /** The publicly reachable `wss://…/telephony/twilio/media` URL Twilio's <Connect><Stream> connects to. */
1601
+ streamPublicUrl: z.ZodString;
1602
+ /** Optional shared secret gating the public webhook/WSS endpoints (defense-in-depth beyond signature verification). */
1603
+ webhookSigningSecret: z.ZodOptional<z.ZodString>;
1604
+ /** Optional status-callback URL Twilio posts call lifecycle events to. */
1605
+ statusCallbackUrl: z.ZodOptional<z.ZodString>;
1606
+ }, z.ZodTypeAny, "passthrough">>>;
1607
+ /** Vonage Voice + WebSocket-media binding. */
1608
+ vonage: z.ZodOptional<z.ZodObject<{
1609
+ /** Vonage Application ID (UUID) — the JWT-auth identity for the Voice API. */
1610
+ applicationId: z.ZodOptional<z.ZodString>;
1611
+ /** The application's RSA private key (PEM) used to sign Voice-API JWTs. */
1612
+ privateKey: z.ZodOptional<z.ZodString>;
1613
+ /** Account API key — used for key-scoped operations when no application credential pair is supplied. */
1614
+ apiKey: z.ZodOptional<z.ZodString>;
1615
+ /** Account API secret — paired with apiKey. */
1616
+ apiSecret: z.ZodOptional<z.ZodString>;
1617
+ /** The publicly reachable `wss://…/telephony/vonage/media` URL the call's connect NCCO opens. */
1618
+ mediaPublicUrl: z.ZodString;
1619
+ /** Vonage account signature secret — HMAC key for signed-request `sig` AND HS256 webhook-JWT verification. */
1620
+ signatureSecret: z.ZodOptional<z.ZodString>;
1621
+ /** Optional event-webhook URL Vonage posts call lifecycle events to (passed on outbound createCall). */
1622
+ eventUrl: z.ZodOptional<z.ZodString>;
1623
+ }, "passthrough", z.ZodTypeAny, z.objectOutputType<{
1624
+ /** Vonage Application ID (UUID) — the JWT-auth identity for the Voice API. */
1625
+ applicationId: z.ZodOptional<z.ZodString>;
1626
+ /** The application's RSA private key (PEM) used to sign Voice-API JWTs. */
1627
+ privateKey: z.ZodOptional<z.ZodString>;
1628
+ /** Account API key — used for key-scoped operations when no application credential pair is supplied. */
1629
+ apiKey: z.ZodOptional<z.ZodString>;
1630
+ /** Account API secret — paired with apiKey. */
1631
+ apiSecret: z.ZodOptional<z.ZodString>;
1632
+ /** The publicly reachable `wss://…/telephony/vonage/media` URL the call's connect NCCO opens. */
1633
+ mediaPublicUrl: z.ZodString;
1634
+ /** Vonage account signature secret — HMAC key for signed-request `sig` AND HS256 webhook-JWT verification. */
1635
+ signatureSecret: z.ZodOptional<z.ZodString>;
1636
+ /** Optional event-webhook URL Vonage posts call lifecycle events to (passed on outbound createCall). */
1637
+ eventUrl: z.ZodOptional<z.ZodString>;
1638
+ }, z.ZodTypeAny, "passthrough">, z.objectInputType<{
1639
+ /** Vonage Application ID (UUID) — the JWT-auth identity for the Voice API. */
1640
+ applicationId: z.ZodOptional<z.ZodString>;
1641
+ /** The application's RSA private key (PEM) used to sign Voice-API JWTs. */
1642
+ privateKey: z.ZodOptional<z.ZodString>;
1643
+ /** Account API key — used for key-scoped operations when no application credential pair is supplied. */
1644
+ apiKey: z.ZodOptional<z.ZodString>;
1645
+ /** Account API secret — paired with apiKey. */
1646
+ apiSecret: z.ZodOptional<z.ZodString>;
1647
+ /** The publicly reachable `wss://…/telephony/vonage/media` URL the call's connect NCCO opens. */
1648
+ mediaPublicUrl: z.ZodString;
1649
+ /** Vonage account signature secret — HMAC key for signed-request `sig` AND HS256 webhook-JWT verification. */
1650
+ signatureSecret: z.ZodOptional<z.ZodString>;
1651
+ /** Optional event-webhook URL Vonage posts call lifecycle events to (passed on outbound createCall). */
1652
+ eventUrl: z.ZodOptional<z.ZodString>;
1653
+ }, z.ZodTypeAny, "passthrough">>>;
1654
+ /** RingCentral Call Control + media-stream binding. */
1655
+ ringcentral: z.ZodOptional<z.ZodObject<{
1656
+ /** SIP domain (e.g. `sip.ringcentral.com`). */
1657
+ sipDomain: z.ZodString;
1658
+ /** SIP outbound proxy (`host:port`, e.g. `sip10.ringcentral.com:5096`). */
1659
+ sipOutboundProxy: z.ZodString;
1660
+ /** SIP auth username (the device's phone number / extension). */
1661
+ sipUsername: z.ZodString;
1662
+ /** SIP auth password (resolved upstream — never inlined). */
1663
+ sipPassword: z.ZodString;
1664
+ /** SIP authorization id (the device's RingCentral authorization id). */
1665
+ sipAuthorizationId: z.ZodString;
1666
+ /** Codec to negotiate. Defaults to `OPUS/16000` (clean wideband PCM16 — the least-friction realtime path). */
1667
+ codec: z.ZodOptional<z.ZodEnum<["OPUS/16000", "OPUS/48000/2", "PCMU/8000"]>>;
1668
+ /** Skip TLS cert validation (sandbox/test only — never in production). */
1669
+ ignoreTlsCertErrors: z.ZodDefault<z.ZodOptional<z.ZodEffects<z.ZodDefault<z.ZodOptional<z.ZodUnion<[z.ZodBoolean, z.ZodString, z.ZodNumber]>>>, boolean, string | number | boolean>>>;
1670
+ }, "passthrough", z.ZodTypeAny, z.objectOutputType<{
1671
+ /** SIP domain (e.g. `sip.ringcentral.com`). */
1672
+ sipDomain: z.ZodString;
1673
+ /** SIP outbound proxy (`host:port`, e.g. `sip10.ringcentral.com:5096`). */
1674
+ sipOutboundProxy: z.ZodString;
1675
+ /** SIP auth username (the device's phone number / extension). */
1676
+ sipUsername: z.ZodString;
1677
+ /** SIP auth password (resolved upstream — never inlined). */
1678
+ sipPassword: z.ZodString;
1679
+ /** SIP authorization id (the device's RingCentral authorization id). */
1680
+ sipAuthorizationId: z.ZodString;
1681
+ /** Codec to negotiate. Defaults to `OPUS/16000` (clean wideband PCM16 — the least-friction realtime path). */
1682
+ codec: z.ZodOptional<z.ZodEnum<["OPUS/16000", "OPUS/48000/2", "PCMU/8000"]>>;
1683
+ /** Skip TLS cert validation (sandbox/test only — never in production). */
1684
+ ignoreTlsCertErrors: z.ZodDefault<z.ZodOptional<z.ZodEffects<z.ZodDefault<z.ZodOptional<z.ZodUnion<[z.ZodBoolean, z.ZodString, z.ZodNumber]>>>, boolean, string | number | boolean>>>;
1685
+ }, z.ZodTypeAny, "passthrough">, z.objectInputType<{
1686
+ /** SIP domain (e.g. `sip.ringcentral.com`). */
1687
+ sipDomain: z.ZodString;
1688
+ /** SIP outbound proxy (`host:port`, e.g. `sip10.ringcentral.com:5096`). */
1689
+ sipOutboundProxy: z.ZodString;
1690
+ /** SIP auth username (the device's phone number / extension). */
1691
+ sipUsername: z.ZodString;
1692
+ /** SIP auth password (resolved upstream — never inlined). */
1693
+ sipPassword: z.ZodString;
1694
+ /** SIP authorization id (the device's RingCentral authorization id). */
1695
+ sipAuthorizationId: z.ZodString;
1696
+ /** Codec to negotiate. Defaults to `OPUS/16000` (clean wideband PCM16 — the least-friction realtime path). */
1697
+ codec: z.ZodOptional<z.ZodEnum<["OPUS/16000", "OPUS/48000/2", "PCMU/8000"]>>;
1698
+ /** Skip TLS cert validation (sandbox/test only — never in production). */
1699
+ ignoreTlsCertErrors: z.ZodDefault<z.ZodOptional<z.ZodEffects<z.ZodDefault<z.ZodOptional<z.ZodUnion<[z.ZodBoolean, z.ZodString, z.ZodNumber]>>>, boolean, string | number | boolean>>>;
1700
+ }, z.ZodTypeAny, "passthrough">>>;
1701
+ /** Microsoft Teams meetings (Graph cloud-communications + ACS application-hosted media) binding. */
1702
+ teams: z.ZodOptional<z.ZodObject<{
1703
+ /** Master switch for the Teams meetings ingress. */
1704
+ enabled: z.ZodDefault<z.ZodEffects<z.ZodDefault<z.ZodOptional<z.ZodUnion<[z.ZodBoolean, z.ZodString, z.ZodNumber]>>>, boolean, string | number | boolean>>;
1705
+ /** The bot's Azure AD application (client) id (resolved upstream; carried for diagnostics). */
1706
+ appId: z.ZodOptional<z.ZodString>;
1707
+ /** The Azure tenant id the bot operates in. */
1708
+ tenantId: z.ZodOptional<z.ZodString>;
1709
+ /** A pre-resolved OAuth bearer / application token for the bot's Graph calls (resolved upstream — never inline). */
1710
+ botAccessToken: z.ZodOptional<z.ZodString>;
1711
+ /** The shared secret set as `clientState` on the Graph subscription; gates the change-notification webhook. */
1712
+ notificationClientState: z.ZodOptional<z.ZodString>;
1713
+ /** The ACS application-hosted-media PCM sample rate (Hz) the audio plane negotiates. Defaults to 16000. */
1714
+ acsSampleRate: z.ZodDefault<z.ZodOptional<z.ZodNumber>>;
1715
+ /** The realtime model's PCM16 sample rate (Hz) the binding resamples to/from. Defaults to 16000. */
1716
+ modelSampleRate: z.ZodDefault<z.ZodOptional<z.ZodNumber>>;
1717
+ }, "passthrough", z.ZodTypeAny, z.objectOutputType<{
1718
+ /** Master switch for the Teams meetings ingress. */
1719
+ enabled: z.ZodDefault<z.ZodEffects<z.ZodDefault<z.ZodOptional<z.ZodUnion<[z.ZodBoolean, z.ZodString, z.ZodNumber]>>>, boolean, string | number | boolean>>;
1720
+ /** The bot's Azure AD application (client) id (resolved upstream; carried for diagnostics). */
1721
+ appId: z.ZodOptional<z.ZodString>;
1722
+ /** The Azure tenant id the bot operates in. */
1723
+ tenantId: z.ZodOptional<z.ZodString>;
1724
+ /** A pre-resolved OAuth bearer / application token for the bot's Graph calls (resolved upstream — never inline). */
1725
+ botAccessToken: z.ZodOptional<z.ZodString>;
1726
+ /** The shared secret set as `clientState` on the Graph subscription; gates the change-notification webhook. */
1727
+ notificationClientState: z.ZodOptional<z.ZodString>;
1728
+ /** The ACS application-hosted-media PCM sample rate (Hz) the audio plane negotiates. Defaults to 16000. */
1729
+ acsSampleRate: z.ZodDefault<z.ZodOptional<z.ZodNumber>>;
1730
+ /** The realtime model's PCM16 sample rate (Hz) the binding resamples to/from. Defaults to 16000. */
1731
+ modelSampleRate: z.ZodDefault<z.ZodOptional<z.ZodNumber>>;
1732
+ }, z.ZodTypeAny, "passthrough">, z.objectInputType<{
1733
+ /** Master switch for the Teams meetings ingress. */
1734
+ enabled: z.ZodDefault<z.ZodEffects<z.ZodDefault<z.ZodOptional<z.ZodUnion<[z.ZodBoolean, z.ZodString, z.ZodNumber]>>>, boolean, string | number | boolean>>;
1735
+ /** The bot's Azure AD application (client) id (resolved upstream; carried for diagnostics). */
1736
+ appId: z.ZodOptional<z.ZodString>;
1737
+ /** The Azure tenant id the bot operates in. */
1738
+ tenantId: z.ZodOptional<z.ZodString>;
1739
+ /** A pre-resolved OAuth bearer / application token for the bot's Graph calls (resolved upstream — never inline). */
1740
+ botAccessToken: z.ZodOptional<z.ZodString>;
1741
+ /** The shared secret set as `clientState` on the Graph subscription; gates the change-notification webhook. */
1742
+ notificationClientState: z.ZodOptional<z.ZodString>;
1743
+ /** The ACS application-hosted-media PCM sample rate (Hz) the audio plane negotiates. Defaults to 16000. */
1744
+ acsSampleRate: z.ZodDefault<z.ZodOptional<z.ZodNumber>>;
1745
+ /** The realtime model's PCM16 sample rate (Hz) the binding resamples to/from. Defaults to 16000. */
1746
+ modelSampleRate: z.ZodDefault<z.ZodOptional<z.ZodNumber>>;
1747
+ }, z.ZodTypeAny, "passthrough">>>;
1748
+ }, z.ZodTypeAny, "passthrough">>;
850
1749
  declare const configInfoSchema: z.ZodObject<{
851
1750
  userHandling: z.ZodObject<{
852
1751
  autoCreateNewUsers: z.ZodDefault<z.ZodOptional<z.ZodBoolean>>;
@@ -1054,6 +1953,734 @@ declare const configInfoSchema: z.ZodObject<{
1054
1953
  */
1055
1954
  explorerUrl: z.ZodOptional<z.ZodString>;
1056
1955
  }, z.ZodTypeAny, "passthrough">>>>;
1956
+ widget: z.ZodDefault<z.ZodOptional<z.ZodObject<{
1957
+ /** Master switch. When false, the /widget routes are not mounted. */
1958
+ enabled: z.ZodDefault<z.ZodEffects<z.ZodDefault<z.ZodOptional<z.ZodUnion<[z.ZodBoolean, z.ZodString, z.ZodNumber]>>>, boolean, string | number | boolean>>;
1959
+ /**
1960
+ * Which signing mechanism the widget reuses. Only `magic-link` is supported today
1961
+ * (shares MagicLinkKeyManager + the magic-link auth provider). Recorded so a future
1962
+ * dedicated widget key is a config flip, not a code change.
1963
+ */
1964
+ signingReuse: z.ZodDefault<z.ZodOptional<z.ZodEnum<["magic-link"]>>>;
1965
+ /**
1966
+ * Audience claim for minted guest JWTs. MUST equal the magic-link audience so the
1967
+ * auto-registered `magic-link` auth provider validates widget tokens.
1968
+ */
1969
+ audience: z.ZodDefault<z.ZodOptional<z.ZodString>>;
1970
+ /** Email of the shared Anonymous principal used in guest claims (resolves the synthesized guest user). */
1971
+ anonymousEmail: z.ZodDefault<z.ZodOptional<z.ZodString>>;
1972
+ /** Fallback session-token TTL (minutes) when a widget instance does not set its own. */
1973
+ defaultSessionTtlMinutes: z.ZodDefault<z.ZodOptional<z.ZodNumber>>;
1974
+ /** Fallback mint rate-limit (per IP per window) when a widget instance does not set its own. */
1975
+ defaultRateLimitPerMinute: z.ZodDefault<z.ZodOptional<z.ZodNumber>>;
1976
+ /** Rate-limit window (ms) for the public /widget/session endpoints. Default 60s. */
1977
+ rateLimitWindowMs: z.ZodDefault<z.ZodOptional<z.ZodNumber>>;
1978
+ /** Server-wide default hard ceiling (minutes) on a voice session when an instance omits one (W4). */
1979
+ voiceDefaultMaxSessionMinutes: z.ZodDefault<z.ZodOptional<z.ZodNumber>>;
1980
+ /** Email/name of the internal user whose context READS widget config at mint time (falls back to system/Owner). */
1981
+ contextUserForLookup: z.ZodOptional<z.ZodString>;
1982
+ /**
1983
+ * Host-identity public keys (PEM), keyed by widget PublicKey, for the `host-identity` auth
1984
+ * strategy (D1). The host signs a short-lived RS256 assertion; the mint verifies it against
1985
+ * the key here. INTERIM location — production should store the host key per widget instance
1986
+ * (a HostPublicKey column on WidgetInstance, pending a migration). When a widget's strategy is
1987
+ * HostIdentity and no key is configured here, host mints fail closed.
1988
+ */
1989
+ hostPublicKeys: z.ZodDefault<z.ZodOptional<z.ZodRecord<z.ZodString, z.ZodString>>>;
1990
+ /**
1991
+ * Returning-visitor identity-resolution target (RV4). When a visitor verifies (magic-link upgrade)
1992
+ * or a host asserts their identity, their email is resolved to a record `(entityName, recordId)`
1993
+ * and prior anonymous memory is merged onto that polymorphic pair. Deployment-configurable so the
1994
+ * resolved record need NOT be an MJ User — point it at any entity that carries the visitor's email
1995
+ * (e.g. a CRM `Persons` table). Defaults to the core `Users` entity keyed by `Email`.
1996
+ */
1997
+ identityResolution: z.ZodOptional<z.ZodObject<{
1998
+ entityName: z.ZodDefault<z.ZodOptional<z.ZodString>>;
1999
+ emailField: z.ZodDefault<z.ZodOptional<z.ZodString>>;
2000
+ }, "strip", z.ZodTypeAny, {
2001
+ entityName?: string;
2002
+ emailField?: string;
2003
+ }, {
2004
+ entityName?: string;
2005
+ emailField?: string;
2006
+ }>>;
2007
+ }, "passthrough", z.ZodTypeAny, z.objectOutputType<{
2008
+ /** Master switch. When false, the /widget routes are not mounted. */
2009
+ enabled: z.ZodDefault<z.ZodEffects<z.ZodDefault<z.ZodOptional<z.ZodUnion<[z.ZodBoolean, z.ZodString, z.ZodNumber]>>>, boolean, string | number | boolean>>;
2010
+ /**
2011
+ * Which signing mechanism the widget reuses. Only `magic-link` is supported today
2012
+ * (shares MagicLinkKeyManager + the magic-link auth provider). Recorded so a future
2013
+ * dedicated widget key is a config flip, not a code change.
2014
+ */
2015
+ signingReuse: z.ZodDefault<z.ZodOptional<z.ZodEnum<["magic-link"]>>>;
2016
+ /**
2017
+ * Audience claim for minted guest JWTs. MUST equal the magic-link audience so the
2018
+ * auto-registered `magic-link` auth provider validates widget tokens.
2019
+ */
2020
+ audience: z.ZodDefault<z.ZodOptional<z.ZodString>>;
2021
+ /** Email of the shared Anonymous principal used in guest claims (resolves the synthesized guest user). */
2022
+ anonymousEmail: z.ZodDefault<z.ZodOptional<z.ZodString>>;
2023
+ /** Fallback session-token TTL (minutes) when a widget instance does not set its own. */
2024
+ defaultSessionTtlMinutes: z.ZodDefault<z.ZodOptional<z.ZodNumber>>;
2025
+ /** Fallback mint rate-limit (per IP per window) when a widget instance does not set its own. */
2026
+ defaultRateLimitPerMinute: z.ZodDefault<z.ZodOptional<z.ZodNumber>>;
2027
+ /** Rate-limit window (ms) for the public /widget/session endpoints. Default 60s. */
2028
+ rateLimitWindowMs: z.ZodDefault<z.ZodOptional<z.ZodNumber>>;
2029
+ /** Server-wide default hard ceiling (minutes) on a voice session when an instance omits one (W4). */
2030
+ voiceDefaultMaxSessionMinutes: z.ZodDefault<z.ZodOptional<z.ZodNumber>>;
2031
+ /** Email/name of the internal user whose context READS widget config at mint time (falls back to system/Owner). */
2032
+ contextUserForLookup: z.ZodOptional<z.ZodString>;
2033
+ /**
2034
+ * Host-identity public keys (PEM), keyed by widget PublicKey, for the `host-identity` auth
2035
+ * strategy (D1). The host signs a short-lived RS256 assertion; the mint verifies it against
2036
+ * the key here. INTERIM location — production should store the host key per widget instance
2037
+ * (a HostPublicKey column on WidgetInstance, pending a migration). When a widget's strategy is
2038
+ * HostIdentity and no key is configured here, host mints fail closed.
2039
+ */
2040
+ hostPublicKeys: z.ZodDefault<z.ZodOptional<z.ZodRecord<z.ZodString, z.ZodString>>>;
2041
+ /**
2042
+ * Returning-visitor identity-resolution target (RV4). When a visitor verifies (magic-link upgrade)
2043
+ * or a host asserts their identity, their email is resolved to a record `(entityName, recordId)`
2044
+ * and prior anonymous memory is merged onto that polymorphic pair. Deployment-configurable so the
2045
+ * resolved record need NOT be an MJ User — point it at any entity that carries the visitor's email
2046
+ * (e.g. a CRM `Persons` table). Defaults to the core `Users` entity keyed by `Email`.
2047
+ */
2048
+ identityResolution: z.ZodOptional<z.ZodObject<{
2049
+ entityName: z.ZodDefault<z.ZodOptional<z.ZodString>>;
2050
+ emailField: z.ZodDefault<z.ZodOptional<z.ZodString>>;
2051
+ }, "strip", z.ZodTypeAny, {
2052
+ entityName?: string;
2053
+ emailField?: string;
2054
+ }, {
2055
+ entityName?: string;
2056
+ emailField?: string;
2057
+ }>>;
2058
+ }, z.ZodTypeAny, "passthrough">, z.objectInputType<{
2059
+ /** Master switch. When false, the /widget routes are not mounted. */
2060
+ enabled: z.ZodDefault<z.ZodEffects<z.ZodDefault<z.ZodOptional<z.ZodUnion<[z.ZodBoolean, z.ZodString, z.ZodNumber]>>>, boolean, string | number | boolean>>;
2061
+ /**
2062
+ * Which signing mechanism the widget reuses. Only `magic-link` is supported today
2063
+ * (shares MagicLinkKeyManager + the magic-link auth provider). Recorded so a future
2064
+ * dedicated widget key is a config flip, not a code change.
2065
+ */
2066
+ signingReuse: z.ZodDefault<z.ZodOptional<z.ZodEnum<["magic-link"]>>>;
2067
+ /**
2068
+ * Audience claim for minted guest JWTs. MUST equal the magic-link audience so the
2069
+ * auto-registered `magic-link` auth provider validates widget tokens.
2070
+ */
2071
+ audience: z.ZodDefault<z.ZodOptional<z.ZodString>>;
2072
+ /** Email of the shared Anonymous principal used in guest claims (resolves the synthesized guest user). */
2073
+ anonymousEmail: z.ZodDefault<z.ZodOptional<z.ZodString>>;
2074
+ /** Fallback session-token TTL (minutes) when a widget instance does not set its own. */
2075
+ defaultSessionTtlMinutes: z.ZodDefault<z.ZodOptional<z.ZodNumber>>;
2076
+ /** Fallback mint rate-limit (per IP per window) when a widget instance does not set its own. */
2077
+ defaultRateLimitPerMinute: z.ZodDefault<z.ZodOptional<z.ZodNumber>>;
2078
+ /** Rate-limit window (ms) for the public /widget/session endpoints. Default 60s. */
2079
+ rateLimitWindowMs: z.ZodDefault<z.ZodOptional<z.ZodNumber>>;
2080
+ /** Server-wide default hard ceiling (minutes) on a voice session when an instance omits one (W4). */
2081
+ voiceDefaultMaxSessionMinutes: z.ZodDefault<z.ZodOptional<z.ZodNumber>>;
2082
+ /** Email/name of the internal user whose context READS widget config at mint time (falls back to system/Owner). */
2083
+ contextUserForLookup: z.ZodOptional<z.ZodString>;
2084
+ /**
2085
+ * Host-identity public keys (PEM), keyed by widget PublicKey, for the `host-identity` auth
2086
+ * strategy (D1). The host signs a short-lived RS256 assertion; the mint verifies it against
2087
+ * the key here. INTERIM location — production should store the host key per widget instance
2088
+ * (a HostPublicKey column on WidgetInstance, pending a migration). When a widget's strategy is
2089
+ * HostIdentity and no key is configured here, host mints fail closed.
2090
+ */
2091
+ hostPublicKeys: z.ZodDefault<z.ZodOptional<z.ZodRecord<z.ZodString, z.ZodString>>>;
2092
+ /**
2093
+ * Returning-visitor identity-resolution target (RV4). When a visitor verifies (magic-link upgrade)
2094
+ * or a host asserts their identity, their email is resolved to a record `(entityName, recordId)`
2095
+ * and prior anonymous memory is merged onto that polymorphic pair. Deployment-configurable so the
2096
+ * resolved record need NOT be an MJ User — point it at any entity that carries the visitor's email
2097
+ * (e.g. a CRM `Persons` table). Defaults to the core `Users` entity keyed by `Email`.
2098
+ */
2099
+ identityResolution: z.ZodOptional<z.ZodObject<{
2100
+ entityName: z.ZodDefault<z.ZodOptional<z.ZodString>>;
2101
+ emailField: z.ZodDefault<z.ZodOptional<z.ZodString>>;
2102
+ }, "strip", z.ZodTypeAny, {
2103
+ entityName?: string;
2104
+ emailField?: string;
2105
+ }, {
2106
+ entityName?: string;
2107
+ emailField?: string;
2108
+ }>>;
2109
+ }, z.ZodTypeAny, "passthrough">>>>;
2110
+ telephony: z.ZodDefault<z.ZodOptional<z.ZodObject<{
2111
+ /** Master switch. When false (or when no vendor block is present), telephony routes are not mounted. */
2112
+ enabled: z.ZodDefault<z.ZodEffects<z.ZodDefault<z.ZodOptional<z.ZodUnion<[z.ZodBoolean, z.ZodString, z.ZodNumber]>>>, boolean, string | number | boolean>>;
2113
+ /** Twilio Programmable Voice + Media Streams binding. */
2114
+ twilio: z.ZodOptional<z.ZodObject<{
2115
+ /** Twilio Account SID (`AC…`). */
2116
+ accountSid: z.ZodString;
2117
+ /** Account auth token — REST auth (when no API key pair) AND the HMAC key for X-Twilio-Signature verification. */
2118
+ authToken: z.ZodOptional<z.ZodString>;
2119
+ /** API Key SID (`SK…`) — preferred over the auth token for REST auth when paired with apiKeySecret. */
2120
+ apiKeySid: z.ZodOptional<z.ZodString>;
2121
+ /** API Key secret — paired with apiKeySid. */
2122
+ apiKeySecret: z.ZodOptional<z.ZodString>;
2123
+ /** The publicly reachable `wss://…/telephony/twilio/media` URL Twilio's <Connect><Stream> connects to. */
2124
+ streamPublicUrl: z.ZodString;
2125
+ /** Optional shared secret gating the public webhook/WSS endpoints (defense-in-depth beyond signature verification). */
2126
+ webhookSigningSecret: z.ZodOptional<z.ZodString>;
2127
+ /** Optional status-callback URL Twilio posts call lifecycle events to. */
2128
+ statusCallbackUrl: z.ZodOptional<z.ZodString>;
2129
+ }, "passthrough", z.ZodTypeAny, z.objectOutputType<{
2130
+ /** Twilio Account SID (`AC…`). */
2131
+ accountSid: z.ZodString;
2132
+ /** Account auth token — REST auth (when no API key pair) AND the HMAC key for X-Twilio-Signature verification. */
2133
+ authToken: z.ZodOptional<z.ZodString>;
2134
+ /** API Key SID (`SK…`) — preferred over the auth token for REST auth when paired with apiKeySecret. */
2135
+ apiKeySid: z.ZodOptional<z.ZodString>;
2136
+ /** API Key secret — paired with apiKeySid. */
2137
+ apiKeySecret: z.ZodOptional<z.ZodString>;
2138
+ /** The publicly reachable `wss://…/telephony/twilio/media` URL Twilio's <Connect><Stream> connects to. */
2139
+ streamPublicUrl: z.ZodString;
2140
+ /** Optional shared secret gating the public webhook/WSS endpoints (defense-in-depth beyond signature verification). */
2141
+ webhookSigningSecret: z.ZodOptional<z.ZodString>;
2142
+ /** Optional status-callback URL Twilio posts call lifecycle events to. */
2143
+ statusCallbackUrl: z.ZodOptional<z.ZodString>;
2144
+ }, z.ZodTypeAny, "passthrough">, z.objectInputType<{
2145
+ /** Twilio Account SID (`AC…`). */
2146
+ accountSid: z.ZodString;
2147
+ /** Account auth token — REST auth (when no API key pair) AND the HMAC key for X-Twilio-Signature verification. */
2148
+ authToken: z.ZodOptional<z.ZodString>;
2149
+ /** API Key SID (`SK…`) — preferred over the auth token for REST auth when paired with apiKeySecret. */
2150
+ apiKeySid: z.ZodOptional<z.ZodString>;
2151
+ /** API Key secret — paired with apiKeySid. */
2152
+ apiKeySecret: z.ZodOptional<z.ZodString>;
2153
+ /** The publicly reachable `wss://…/telephony/twilio/media` URL Twilio's <Connect><Stream> connects to. */
2154
+ streamPublicUrl: z.ZodString;
2155
+ /** Optional shared secret gating the public webhook/WSS endpoints (defense-in-depth beyond signature verification). */
2156
+ webhookSigningSecret: z.ZodOptional<z.ZodString>;
2157
+ /** Optional status-callback URL Twilio posts call lifecycle events to. */
2158
+ statusCallbackUrl: z.ZodOptional<z.ZodString>;
2159
+ }, z.ZodTypeAny, "passthrough">>>;
2160
+ /** Vonage Voice + WebSocket-media binding. */
2161
+ vonage: z.ZodOptional<z.ZodObject<{
2162
+ /** Vonage Application ID (UUID) — the JWT-auth identity for the Voice API. */
2163
+ applicationId: z.ZodOptional<z.ZodString>;
2164
+ /** The application's RSA private key (PEM) used to sign Voice-API JWTs. */
2165
+ privateKey: z.ZodOptional<z.ZodString>;
2166
+ /** Account API key — used for key-scoped operations when no application credential pair is supplied. */
2167
+ apiKey: z.ZodOptional<z.ZodString>;
2168
+ /** Account API secret — paired with apiKey. */
2169
+ apiSecret: z.ZodOptional<z.ZodString>;
2170
+ /** The publicly reachable `wss://…/telephony/vonage/media` URL the call's connect NCCO opens. */
2171
+ mediaPublicUrl: z.ZodString;
2172
+ /** Vonage account signature secret — HMAC key for signed-request `sig` AND HS256 webhook-JWT verification. */
2173
+ signatureSecret: z.ZodOptional<z.ZodString>;
2174
+ /** Optional event-webhook URL Vonage posts call lifecycle events to (passed on outbound createCall). */
2175
+ eventUrl: z.ZodOptional<z.ZodString>;
2176
+ }, "passthrough", z.ZodTypeAny, z.objectOutputType<{
2177
+ /** Vonage Application ID (UUID) — the JWT-auth identity for the Voice API. */
2178
+ applicationId: z.ZodOptional<z.ZodString>;
2179
+ /** The application's RSA private key (PEM) used to sign Voice-API JWTs. */
2180
+ privateKey: z.ZodOptional<z.ZodString>;
2181
+ /** Account API key — used for key-scoped operations when no application credential pair is supplied. */
2182
+ apiKey: z.ZodOptional<z.ZodString>;
2183
+ /** Account API secret — paired with apiKey. */
2184
+ apiSecret: z.ZodOptional<z.ZodString>;
2185
+ /** The publicly reachable `wss://…/telephony/vonage/media` URL the call's connect NCCO opens. */
2186
+ mediaPublicUrl: z.ZodString;
2187
+ /** Vonage account signature secret — HMAC key for signed-request `sig` AND HS256 webhook-JWT verification. */
2188
+ signatureSecret: z.ZodOptional<z.ZodString>;
2189
+ /** Optional event-webhook URL Vonage posts call lifecycle events to (passed on outbound createCall). */
2190
+ eventUrl: z.ZodOptional<z.ZodString>;
2191
+ }, z.ZodTypeAny, "passthrough">, z.objectInputType<{
2192
+ /** Vonage Application ID (UUID) — the JWT-auth identity for the Voice API. */
2193
+ applicationId: z.ZodOptional<z.ZodString>;
2194
+ /** The application's RSA private key (PEM) used to sign Voice-API JWTs. */
2195
+ privateKey: z.ZodOptional<z.ZodString>;
2196
+ /** Account API key — used for key-scoped operations when no application credential pair is supplied. */
2197
+ apiKey: z.ZodOptional<z.ZodString>;
2198
+ /** Account API secret — paired with apiKey. */
2199
+ apiSecret: z.ZodOptional<z.ZodString>;
2200
+ /** The publicly reachable `wss://…/telephony/vonage/media` URL the call's connect NCCO opens. */
2201
+ mediaPublicUrl: z.ZodString;
2202
+ /** Vonage account signature secret — HMAC key for signed-request `sig` AND HS256 webhook-JWT verification. */
2203
+ signatureSecret: z.ZodOptional<z.ZodString>;
2204
+ /** Optional event-webhook URL Vonage posts call lifecycle events to (passed on outbound createCall). */
2205
+ eventUrl: z.ZodOptional<z.ZodString>;
2206
+ }, z.ZodTypeAny, "passthrough">>>;
2207
+ /** RingCentral Call Control + media-stream binding. */
2208
+ ringcentral: z.ZodOptional<z.ZodObject<{
2209
+ /** SIP domain (e.g. `sip.ringcentral.com`). */
2210
+ sipDomain: z.ZodString;
2211
+ /** SIP outbound proxy (`host:port`, e.g. `sip10.ringcentral.com:5096`). */
2212
+ sipOutboundProxy: z.ZodString;
2213
+ /** SIP auth username (the device's phone number / extension). */
2214
+ sipUsername: z.ZodString;
2215
+ /** SIP auth password (resolved upstream — never inlined). */
2216
+ sipPassword: z.ZodString;
2217
+ /** SIP authorization id (the device's RingCentral authorization id). */
2218
+ sipAuthorizationId: z.ZodString;
2219
+ /** Codec to negotiate. Defaults to `OPUS/16000` (clean wideband PCM16 — the least-friction realtime path). */
2220
+ codec: z.ZodOptional<z.ZodEnum<["OPUS/16000", "OPUS/48000/2", "PCMU/8000"]>>;
2221
+ /** Skip TLS cert validation (sandbox/test only — never in production). */
2222
+ ignoreTlsCertErrors: z.ZodDefault<z.ZodOptional<z.ZodEffects<z.ZodDefault<z.ZodOptional<z.ZodUnion<[z.ZodBoolean, z.ZodString, z.ZodNumber]>>>, boolean, string | number | boolean>>>;
2223
+ }, "passthrough", z.ZodTypeAny, z.objectOutputType<{
2224
+ /** SIP domain (e.g. `sip.ringcentral.com`). */
2225
+ sipDomain: z.ZodString;
2226
+ /** SIP outbound proxy (`host:port`, e.g. `sip10.ringcentral.com:5096`). */
2227
+ sipOutboundProxy: z.ZodString;
2228
+ /** SIP auth username (the device's phone number / extension). */
2229
+ sipUsername: z.ZodString;
2230
+ /** SIP auth password (resolved upstream — never inlined). */
2231
+ sipPassword: z.ZodString;
2232
+ /** SIP authorization id (the device's RingCentral authorization id). */
2233
+ sipAuthorizationId: z.ZodString;
2234
+ /** Codec to negotiate. Defaults to `OPUS/16000` (clean wideband PCM16 — the least-friction realtime path). */
2235
+ codec: z.ZodOptional<z.ZodEnum<["OPUS/16000", "OPUS/48000/2", "PCMU/8000"]>>;
2236
+ /** Skip TLS cert validation (sandbox/test only — never in production). */
2237
+ ignoreTlsCertErrors: z.ZodDefault<z.ZodOptional<z.ZodEffects<z.ZodDefault<z.ZodOptional<z.ZodUnion<[z.ZodBoolean, z.ZodString, z.ZodNumber]>>>, boolean, string | number | boolean>>>;
2238
+ }, z.ZodTypeAny, "passthrough">, z.objectInputType<{
2239
+ /** SIP domain (e.g. `sip.ringcentral.com`). */
2240
+ sipDomain: z.ZodString;
2241
+ /** SIP outbound proxy (`host:port`, e.g. `sip10.ringcentral.com:5096`). */
2242
+ sipOutboundProxy: z.ZodString;
2243
+ /** SIP auth username (the device's phone number / extension). */
2244
+ sipUsername: z.ZodString;
2245
+ /** SIP auth password (resolved upstream — never inlined). */
2246
+ sipPassword: z.ZodString;
2247
+ /** SIP authorization id (the device's RingCentral authorization id). */
2248
+ sipAuthorizationId: z.ZodString;
2249
+ /** Codec to negotiate. Defaults to `OPUS/16000` (clean wideband PCM16 — the least-friction realtime path). */
2250
+ codec: z.ZodOptional<z.ZodEnum<["OPUS/16000", "OPUS/48000/2", "PCMU/8000"]>>;
2251
+ /** Skip TLS cert validation (sandbox/test only — never in production). */
2252
+ ignoreTlsCertErrors: z.ZodDefault<z.ZodOptional<z.ZodEffects<z.ZodDefault<z.ZodOptional<z.ZodUnion<[z.ZodBoolean, z.ZodString, z.ZodNumber]>>>, boolean, string | number | boolean>>>;
2253
+ }, z.ZodTypeAny, "passthrough">>>;
2254
+ /** Microsoft Teams meetings (Graph cloud-communications + ACS application-hosted media) binding. */
2255
+ teams: z.ZodOptional<z.ZodObject<{
2256
+ /** Master switch for the Teams meetings ingress. */
2257
+ enabled: z.ZodDefault<z.ZodEffects<z.ZodDefault<z.ZodOptional<z.ZodUnion<[z.ZodBoolean, z.ZodString, z.ZodNumber]>>>, boolean, string | number | boolean>>;
2258
+ /** The bot's Azure AD application (client) id (resolved upstream; carried for diagnostics). */
2259
+ appId: z.ZodOptional<z.ZodString>;
2260
+ /** The Azure tenant id the bot operates in. */
2261
+ tenantId: z.ZodOptional<z.ZodString>;
2262
+ /** A pre-resolved OAuth bearer / application token for the bot's Graph calls (resolved upstream — never inline). */
2263
+ botAccessToken: z.ZodOptional<z.ZodString>;
2264
+ /** The shared secret set as `clientState` on the Graph subscription; gates the change-notification webhook. */
2265
+ notificationClientState: z.ZodOptional<z.ZodString>;
2266
+ /** The ACS application-hosted-media PCM sample rate (Hz) the audio plane negotiates. Defaults to 16000. */
2267
+ acsSampleRate: z.ZodDefault<z.ZodOptional<z.ZodNumber>>;
2268
+ /** The realtime model's PCM16 sample rate (Hz) the binding resamples to/from. Defaults to 16000. */
2269
+ modelSampleRate: z.ZodDefault<z.ZodOptional<z.ZodNumber>>;
2270
+ }, "passthrough", z.ZodTypeAny, z.objectOutputType<{
2271
+ /** Master switch for the Teams meetings ingress. */
2272
+ enabled: z.ZodDefault<z.ZodEffects<z.ZodDefault<z.ZodOptional<z.ZodUnion<[z.ZodBoolean, z.ZodString, z.ZodNumber]>>>, boolean, string | number | boolean>>;
2273
+ /** The bot's Azure AD application (client) id (resolved upstream; carried for diagnostics). */
2274
+ appId: z.ZodOptional<z.ZodString>;
2275
+ /** The Azure tenant id the bot operates in. */
2276
+ tenantId: z.ZodOptional<z.ZodString>;
2277
+ /** A pre-resolved OAuth bearer / application token for the bot's Graph calls (resolved upstream — never inline). */
2278
+ botAccessToken: z.ZodOptional<z.ZodString>;
2279
+ /** The shared secret set as `clientState` on the Graph subscription; gates the change-notification webhook. */
2280
+ notificationClientState: z.ZodOptional<z.ZodString>;
2281
+ /** The ACS application-hosted-media PCM sample rate (Hz) the audio plane negotiates. Defaults to 16000. */
2282
+ acsSampleRate: z.ZodDefault<z.ZodOptional<z.ZodNumber>>;
2283
+ /** The realtime model's PCM16 sample rate (Hz) the binding resamples to/from. Defaults to 16000. */
2284
+ modelSampleRate: z.ZodDefault<z.ZodOptional<z.ZodNumber>>;
2285
+ }, z.ZodTypeAny, "passthrough">, z.objectInputType<{
2286
+ /** Master switch for the Teams meetings ingress. */
2287
+ enabled: z.ZodDefault<z.ZodEffects<z.ZodDefault<z.ZodOptional<z.ZodUnion<[z.ZodBoolean, z.ZodString, z.ZodNumber]>>>, boolean, string | number | boolean>>;
2288
+ /** The bot's Azure AD application (client) id (resolved upstream; carried for diagnostics). */
2289
+ appId: z.ZodOptional<z.ZodString>;
2290
+ /** The Azure tenant id the bot operates in. */
2291
+ tenantId: z.ZodOptional<z.ZodString>;
2292
+ /** A pre-resolved OAuth bearer / application token for the bot's Graph calls (resolved upstream — never inline). */
2293
+ botAccessToken: z.ZodOptional<z.ZodString>;
2294
+ /** The shared secret set as `clientState` on the Graph subscription; gates the change-notification webhook. */
2295
+ notificationClientState: z.ZodOptional<z.ZodString>;
2296
+ /** The ACS application-hosted-media PCM sample rate (Hz) the audio plane negotiates. Defaults to 16000. */
2297
+ acsSampleRate: z.ZodDefault<z.ZodOptional<z.ZodNumber>>;
2298
+ /** The realtime model's PCM16 sample rate (Hz) the binding resamples to/from. Defaults to 16000. */
2299
+ modelSampleRate: z.ZodDefault<z.ZodOptional<z.ZodNumber>>;
2300
+ }, z.ZodTypeAny, "passthrough">>>;
2301
+ }, "passthrough", z.ZodTypeAny, z.objectOutputType<{
2302
+ /** Master switch. When false (or when no vendor block is present), telephony routes are not mounted. */
2303
+ enabled: z.ZodDefault<z.ZodEffects<z.ZodDefault<z.ZodOptional<z.ZodUnion<[z.ZodBoolean, z.ZodString, z.ZodNumber]>>>, boolean, string | number | boolean>>;
2304
+ /** Twilio Programmable Voice + Media Streams binding. */
2305
+ twilio: z.ZodOptional<z.ZodObject<{
2306
+ /** Twilio Account SID (`AC…`). */
2307
+ accountSid: z.ZodString;
2308
+ /** Account auth token — REST auth (when no API key pair) AND the HMAC key for X-Twilio-Signature verification. */
2309
+ authToken: z.ZodOptional<z.ZodString>;
2310
+ /** API Key SID (`SK…`) — preferred over the auth token for REST auth when paired with apiKeySecret. */
2311
+ apiKeySid: z.ZodOptional<z.ZodString>;
2312
+ /** API Key secret — paired with apiKeySid. */
2313
+ apiKeySecret: z.ZodOptional<z.ZodString>;
2314
+ /** The publicly reachable `wss://…/telephony/twilio/media` URL Twilio's <Connect><Stream> connects to. */
2315
+ streamPublicUrl: z.ZodString;
2316
+ /** Optional shared secret gating the public webhook/WSS endpoints (defense-in-depth beyond signature verification). */
2317
+ webhookSigningSecret: z.ZodOptional<z.ZodString>;
2318
+ /** Optional status-callback URL Twilio posts call lifecycle events to. */
2319
+ statusCallbackUrl: z.ZodOptional<z.ZodString>;
2320
+ }, "passthrough", z.ZodTypeAny, z.objectOutputType<{
2321
+ /** Twilio Account SID (`AC…`). */
2322
+ accountSid: z.ZodString;
2323
+ /** Account auth token — REST auth (when no API key pair) AND the HMAC key for X-Twilio-Signature verification. */
2324
+ authToken: z.ZodOptional<z.ZodString>;
2325
+ /** API Key SID (`SK…`) — preferred over the auth token for REST auth when paired with apiKeySecret. */
2326
+ apiKeySid: z.ZodOptional<z.ZodString>;
2327
+ /** API Key secret — paired with apiKeySid. */
2328
+ apiKeySecret: z.ZodOptional<z.ZodString>;
2329
+ /** The publicly reachable `wss://…/telephony/twilio/media` URL Twilio's <Connect><Stream> connects to. */
2330
+ streamPublicUrl: z.ZodString;
2331
+ /** Optional shared secret gating the public webhook/WSS endpoints (defense-in-depth beyond signature verification). */
2332
+ webhookSigningSecret: z.ZodOptional<z.ZodString>;
2333
+ /** Optional status-callback URL Twilio posts call lifecycle events to. */
2334
+ statusCallbackUrl: z.ZodOptional<z.ZodString>;
2335
+ }, z.ZodTypeAny, "passthrough">, z.objectInputType<{
2336
+ /** Twilio Account SID (`AC…`). */
2337
+ accountSid: z.ZodString;
2338
+ /** Account auth token — REST auth (when no API key pair) AND the HMAC key for X-Twilio-Signature verification. */
2339
+ authToken: z.ZodOptional<z.ZodString>;
2340
+ /** API Key SID (`SK…`) — preferred over the auth token for REST auth when paired with apiKeySecret. */
2341
+ apiKeySid: z.ZodOptional<z.ZodString>;
2342
+ /** API Key secret — paired with apiKeySid. */
2343
+ apiKeySecret: z.ZodOptional<z.ZodString>;
2344
+ /** The publicly reachable `wss://…/telephony/twilio/media` URL Twilio's <Connect><Stream> connects to. */
2345
+ streamPublicUrl: z.ZodString;
2346
+ /** Optional shared secret gating the public webhook/WSS endpoints (defense-in-depth beyond signature verification). */
2347
+ webhookSigningSecret: z.ZodOptional<z.ZodString>;
2348
+ /** Optional status-callback URL Twilio posts call lifecycle events to. */
2349
+ statusCallbackUrl: z.ZodOptional<z.ZodString>;
2350
+ }, z.ZodTypeAny, "passthrough">>>;
2351
+ /** Vonage Voice + WebSocket-media binding. */
2352
+ vonage: z.ZodOptional<z.ZodObject<{
2353
+ /** Vonage Application ID (UUID) — the JWT-auth identity for the Voice API. */
2354
+ applicationId: z.ZodOptional<z.ZodString>;
2355
+ /** The application's RSA private key (PEM) used to sign Voice-API JWTs. */
2356
+ privateKey: z.ZodOptional<z.ZodString>;
2357
+ /** Account API key — used for key-scoped operations when no application credential pair is supplied. */
2358
+ apiKey: z.ZodOptional<z.ZodString>;
2359
+ /** Account API secret — paired with apiKey. */
2360
+ apiSecret: z.ZodOptional<z.ZodString>;
2361
+ /** The publicly reachable `wss://…/telephony/vonage/media` URL the call's connect NCCO opens. */
2362
+ mediaPublicUrl: z.ZodString;
2363
+ /** Vonage account signature secret — HMAC key for signed-request `sig` AND HS256 webhook-JWT verification. */
2364
+ signatureSecret: z.ZodOptional<z.ZodString>;
2365
+ /** Optional event-webhook URL Vonage posts call lifecycle events to (passed on outbound createCall). */
2366
+ eventUrl: z.ZodOptional<z.ZodString>;
2367
+ }, "passthrough", z.ZodTypeAny, z.objectOutputType<{
2368
+ /** Vonage Application ID (UUID) — the JWT-auth identity for the Voice API. */
2369
+ applicationId: z.ZodOptional<z.ZodString>;
2370
+ /** The application's RSA private key (PEM) used to sign Voice-API JWTs. */
2371
+ privateKey: z.ZodOptional<z.ZodString>;
2372
+ /** Account API key — used for key-scoped operations when no application credential pair is supplied. */
2373
+ apiKey: z.ZodOptional<z.ZodString>;
2374
+ /** Account API secret — paired with apiKey. */
2375
+ apiSecret: z.ZodOptional<z.ZodString>;
2376
+ /** The publicly reachable `wss://…/telephony/vonage/media` URL the call's connect NCCO opens. */
2377
+ mediaPublicUrl: z.ZodString;
2378
+ /** Vonage account signature secret — HMAC key for signed-request `sig` AND HS256 webhook-JWT verification. */
2379
+ signatureSecret: z.ZodOptional<z.ZodString>;
2380
+ /** Optional event-webhook URL Vonage posts call lifecycle events to (passed on outbound createCall). */
2381
+ eventUrl: z.ZodOptional<z.ZodString>;
2382
+ }, z.ZodTypeAny, "passthrough">, z.objectInputType<{
2383
+ /** Vonage Application ID (UUID) — the JWT-auth identity for the Voice API. */
2384
+ applicationId: z.ZodOptional<z.ZodString>;
2385
+ /** The application's RSA private key (PEM) used to sign Voice-API JWTs. */
2386
+ privateKey: z.ZodOptional<z.ZodString>;
2387
+ /** Account API key — used for key-scoped operations when no application credential pair is supplied. */
2388
+ apiKey: z.ZodOptional<z.ZodString>;
2389
+ /** Account API secret — paired with apiKey. */
2390
+ apiSecret: z.ZodOptional<z.ZodString>;
2391
+ /** The publicly reachable `wss://…/telephony/vonage/media` URL the call's connect NCCO opens. */
2392
+ mediaPublicUrl: z.ZodString;
2393
+ /** Vonage account signature secret — HMAC key for signed-request `sig` AND HS256 webhook-JWT verification. */
2394
+ signatureSecret: z.ZodOptional<z.ZodString>;
2395
+ /** Optional event-webhook URL Vonage posts call lifecycle events to (passed on outbound createCall). */
2396
+ eventUrl: z.ZodOptional<z.ZodString>;
2397
+ }, z.ZodTypeAny, "passthrough">>>;
2398
+ /** RingCentral Call Control + media-stream binding. */
2399
+ ringcentral: z.ZodOptional<z.ZodObject<{
2400
+ /** SIP domain (e.g. `sip.ringcentral.com`). */
2401
+ sipDomain: z.ZodString;
2402
+ /** SIP outbound proxy (`host:port`, e.g. `sip10.ringcentral.com:5096`). */
2403
+ sipOutboundProxy: z.ZodString;
2404
+ /** SIP auth username (the device's phone number / extension). */
2405
+ sipUsername: z.ZodString;
2406
+ /** SIP auth password (resolved upstream — never inlined). */
2407
+ sipPassword: z.ZodString;
2408
+ /** SIP authorization id (the device's RingCentral authorization id). */
2409
+ sipAuthorizationId: z.ZodString;
2410
+ /** Codec to negotiate. Defaults to `OPUS/16000` (clean wideband PCM16 — the least-friction realtime path). */
2411
+ codec: z.ZodOptional<z.ZodEnum<["OPUS/16000", "OPUS/48000/2", "PCMU/8000"]>>;
2412
+ /** Skip TLS cert validation (sandbox/test only — never in production). */
2413
+ ignoreTlsCertErrors: z.ZodDefault<z.ZodOptional<z.ZodEffects<z.ZodDefault<z.ZodOptional<z.ZodUnion<[z.ZodBoolean, z.ZodString, z.ZodNumber]>>>, boolean, string | number | boolean>>>;
2414
+ }, "passthrough", z.ZodTypeAny, z.objectOutputType<{
2415
+ /** SIP domain (e.g. `sip.ringcentral.com`). */
2416
+ sipDomain: z.ZodString;
2417
+ /** SIP outbound proxy (`host:port`, e.g. `sip10.ringcentral.com:5096`). */
2418
+ sipOutboundProxy: z.ZodString;
2419
+ /** SIP auth username (the device's phone number / extension). */
2420
+ sipUsername: z.ZodString;
2421
+ /** SIP auth password (resolved upstream — never inlined). */
2422
+ sipPassword: z.ZodString;
2423
+ /** SIP authorization id (the device's RingCentral authorization id). */
2424
+ sipAuthorizationId: z.ZodString;
2425
+ /** Codec to negotiate. Defaults to `OPUS/16000` (clean wideband PCM16 — the least-friction realtime path). */
2426
+ codec: z.ZodOptional<z.ZodEnum<["OPUS/16000", "OPUS/48000/2", "PCMU/8000"]>>;
2427
+ /** Skip TLS cert validation (sandbox/test only — never in production). */
2428
+ ignoreTlsCertErrors: z.ZodDefault<z.ZodOptional<z.ZodEffects<z.ZodDefault<z.ZodOptional<z.ZodUnion<[z.ZodBoolean, z.ZodString, z.ZodNumber]>>>, boolean, string | number | boolean>>>;
2429
+ }, z.ZodTypeAny, "passthrough">, z.objectInputType<{
2430
+ /** SIP domain (e.g. `sip.ringcentral.com`). */
2431
+ sipDomain: z.ZodString;
2432
+ /** SIP outbound proxy (`host:port`, e.g. `sip10.ringcentral.com:5096`). */
2433
+ sipOutboundProxy: z.ZodString;
2434
+ /** SIP auth username (the device's phone number / extension). */
2435
+ sipUsername: z.ZodString;
2436
+ /** SIP auth password (resolved upstream — never inlined). */
2437
+ sipPassword: z.ZodString;
2438
+ /** SIP authorization id (the device's RingCentral authorization id). */
2439
+ sipAuthorizationId: z.ZodString;
2440
+ /** Codec to negotiate. Defaults to `OPUS/16000` (clean wideband PCM16 — the least-friction realtime path). */
2441
+ codec: z.ZodOptional<z.ZodEnum<["OPUS/16000", "OPUS/48000/2", "PCMU/8000"]>>;
2442
+ /** Skip TLS cert validation (sandbox/test only — never in production). */
2443
+ ignoreTlsCertErrors: z.ZodDefault<z.ZodOptional<z.ZodEffects<z.ZodDefault<z.ZodOptional<z.ZodUnion<[z.ZodBoolean, z.ZodString, z.ZodNumber]>>>, boolean, string | number | boolean>>>;
2444
+ }, z.ZodTypeAny, "passthrough">>>;
2445
+ /** Microsoft Teams meetings (Graph cloud-communications + ACS application-hosted media) binding. */
2446
+ teams: z.ZodOptional<z.ZodObject<{
2447
+ /** Master switch for the Teams meetings ingress. */
2448
+ enabled: z.ZodDefault<z.ZodEffects<z.ZodDefault<z.ZodOptional<z.ZodUnion<[z.ZodBoolean, z.ZodString, z.ZodNumber]>>>, boolean, string | number | boolean>>;
2449
+ /** The bot's Azure AD application (client) id (resolved upstream; carried for diagnostics). */
2450
+ appId: z.ZodOptional<z.ZodString>;
2451
+ /** The Azure tenant id the bot operates in. */
2452
+ tenantId: z.ZodOptional<z.ZodString>;
2453
+ /** A pre-resolved OAuth bearer / application token for the bot's Graph calls (resolved upstream — never inline). */
2454
+ botAccessToken: z.ZodOptional<z.ZodString>;
2455
+ /** The shared secret set as `clientState` on the Graph subscription; gates the change-notification webhook. */
2456
+ notificationClientState: z.ZodOptional<z.ZodString>;
2457
+ /** The ACS application-hosted-media PCM sample rate (Hz) the audio plane negotiates. Defaults to 16000. */
2458
+ acsSampleRate: z.ZodDefault<z.ZodOptional<z.ZodNumber>>;
2459
+ /** The realtime model's PCM16 sample rate (Hz) the binding resamples to/from. Defaults to 16000. */
2460
+ modelSampleRate: z.ZodDefault<z.ZodOptional<z.ZodNumber>>;
2461
+ }, "passthrough", z.ZodTypeAny, z.objectOutputType<{
2462
+ /** Master switch for the Teams meetings ingress. */
2463
+ enabled: z.ZodDefault<z.ZodEffects<z.ZodDefault<z.ZodOptional<z.ZodUnion<[z.ZodBoolean, z.ZodString, z.ZodNumber]>>>, boolean, string | number | boolean>>;
2464
+ /** The bot's Azure AD application (client) id (resolved upstream; carried for diagnostics). */
2465
+ appId: z.ZodOptional<z.ZodString>;
2466
+ /** The Azure tenant id the bot operates in. */
2467
+ tenantId: z.ZodOptional<z.ZodString>;
2468
+ /** A pre-resolved OAuth bearer / application token for the bot's Graph calls (resolved upstream — never inline). */
2469
+ botAccessToken: z.ZodOptional<z.ZodString>;
2470
+ /** The shared secret set as `clientState` on the Graph subscription; gates the change-notification webhook. */
2471
+ notificationClientState: z.ZodOptional<z.ZodString>;
2472
+ /** The ACS application-hosted-media PCM sample rate (Hz) the audio plane negotiates. Defaults to 16000. */
2473
+ acsSampleRate: z.ZodDefault<z.ZodOptional<z.ZodNumber>>;
2474
+ /** The realtime model's PCM16 sample rate (Hz) the binding resamples to/from. Defaults to 16000. */
2475
+ modelSampleRate: z.ZodDefault<z.ZodOptional<z.ZodNumber>>;
2476
+ }, z.ZodTypeAny, "passthrough">, z.objectInputType<{
2477
+ /** Master switch for the Teams meetings ingress. */
2478
+ enabled: z.ZodDefault<z.ZodEffects<z.ZodDefault<z.ZodOptional<z.ZodUnion<[z.ZodBoolean, z.ZodString, z.ZodNumber]>>>, boolean, string | number | boolean>>;
2479
+ /** The bot's Azure AD application (client) id (resolved upstream; carried for diagnostics). */
2480
+ appId: z.ZodOptional<z.ZodString>;
2481
+ /** The Azure tenant id the bot operates in. */
2482
+ tenantId: z.ZodOptional<z.ZodString>;
2483
+ /** A pre-resolved OAuth bearer / application token for the bot's Graph calls (resolved upstream — never inline). */
2484
+ botAccessToken: z.ZodOptional<z.ZodString>;
2485
+ /** The shared secret set as `clientState` on the Graph subscription; gates the change-notification webhook. */
2486
+ notificationClientState: z.ZodOptional<z.ZodString>;
2487
+ /** The ACS application-hosted-media PCM sample rate (Hz) the audio plane negotiates. Defaults to 16000. */
2488
+ acsSampleRate: z.ZodDefault<z.ZodOptional<z.ZodNumber>>;
2489
+ /** The realtime model's PCM16 sample rate (Hz) the binding resamples to/from. Defaults to 16000. */
2490
+ modelSampleRate: z.ZodDefault<z.ZodOptional<z.ZodNumber>>;
2491
+ }, z.ZodTypeAny, "passthrough">>>;
2492
+ }, z.ZodTypeAny, "passthrough">, z.objectInputType<{
2493
+ /** Master switch. When false (or when no vendor block is present), telephony routes are not mounted. */
2494
+ enabled: z.ZodDefault<z.ZodEffects<z.ZodDefault<z.ZodOptional<z.ZodUnion<[z.ZodBoolean, z.ZodString, z.ZodNumber]>>>, boolean, string | number | boolean>>;
2495
+ /** Twilio Programmable Voice + Media Streams binding. */
2496
+ twilio: z.ZodOptional<z.ZodObject<{
2497
+ /** Twilio Account SID (`AC…`). */
2498
+ accountSid: z.ZodString;
2499
+ /** Account auth token — REST auth (when no API key pair) AND the HMAC key for X-Twilio-Signature verification. */
2500
+ authToken: z.ZodOptional<z.ZodString>;
2501
+ /** API Key SID (`SK…`) — preferred over the auth token for REST auth when paired with apiKeySecret. */
2502
+ apiKeySid: z.ZodOptional<z.ZodString>;
2503
+ /** API Key secret — paired with apiKeySid. */
2504
+ apiKeySecret: z.ZodOptional<z.ZodString>;
2505
+ /** The publicly reachable `wss://…/telephony/twilio/media` URL Twilio's <Connect><Stream> connects to. */
2506
+ streamPublicUrl: z.ZodString;
2507
+ /** Optional shared secret gating the public webhook/WSS endpoints (defense-in-depth beyond signature verification). */
2508
+ webhookSigningSecret: z.ZodOptional<z.ZodString>;
2509
+ /** Optional status-callback URL Twilio posts call lifecycle events to. */
2510
+ statusCallbackUrl: z.ZodOptional<z.ZodString>;
2511
+ }, "passthrough", z.ZodTypeAny, z.objectOutputType<{
2512
+ /** Twilio Account SID (`AC…`). */
2513
+ accountSid: z.ZodString;
2514
+ /** Account auth token — REST auth (when no API key pair) AND the HMAC key for X-Twilio-Signature verification. */
2515
+ authToken: z.ZodOptional<z.ZodString>;
2516
+ /** API Key SID (`SK…`) — preferred over the auth token for REST auth when paired with apiKeySecret. */
2517
+ apiKeySid: z.ZodOptional<z.ZodString>;
2518
+ /** API Key secret — paired with apiKeySid. */
2519
+ apiKeySecret: z.ZodOptional<z.ZodString>;
2520
+ /** The publicly reachable `wss://…/telephony/twilio/media` URL Twilio's <Connect><Stream> connects to. */
2521
+ streamPublicUrl: z.ZodString;
2522
+ /** Optional shared secret gating the public webhook/WSS endpoints (defense-in-depth beyond signature verification). */
2523
+ webhookSigningSecret: z.ZodOptional<z.ZodString>;
2524
+ /** Optional status-callback URL Twilio posts call lifecycle events to. */
2525
+ statusCallbackUrl: z.ZodOptional<z.ZodString>;
2526
+ }, z.ZodTypeAny, "passthrough">, z.objectInputType<{
2527
+ /** Twilio Account SID (`AC…`). */
2528
+ accountSid: z.ZodString;
2529
+ /** Account auth token — REST auth (when no API key pair) AND the HMAC key for X-Twilio-Signature verification. */
2530
+ authToken: z.ZodOptional<z.ZodString>;
2531
+ /** API Key SID (`SK…`) — preferred over the auth token for REST auth when paired with apiKeySecret. */
2532
+ apiKeySid: z.ZodOptional<z.ZodString>;
2533
+ /** API Key secret — paired with apiKeySid. */
2534
+ apiKeySecret: z.ZodOptional<z.ZodString>;
2535
+ /** The publicly reachable `wss://…/telephony/twilio/media` URL Twilio's <Connect><Stream> connects to. */
2536
+ streamPublicUrl: z.ZodString;
2537
+ /** Optional shared secret gating the public webhook/WSS endpoints (defense-in-depth beyond signature verification). */
2538
+ webhookSigningSecret: z.ZodOptional<z.ZodString>;
2539
+ /** Optional status-callback URL Twilio posts call lifecycle events to. */
2540
+ statusCallbackUrl: z.ZodOptional<z.ZodString>;
2541
+ }, z.ZodTypeAny, "passthrough">>>;
2542
+ /** Vonage Voice + WebSocket-media binding. */
2543
+ vonage: z.ZodOptional<z.ZodObject<{
2544
+ /** Vonage Application ID (UUID) — the JWT-auth identity for the Voice API. */
2545
+ applicationId: z.ZodOptional<z.ZodString>;
2546
+ /** The application's RSA private key (PEM) used to sign Voice-API JWTs. */
2547
+ privateKey: z.ZodOptional<z.ZodString>;
2548
+ /** Account API key — used for key-scoped operations when no application credential pair is supplied. */
2549
+ apiKey: z.ZodOptional<z.ZodString>;
2550
+ /** Account API secret — paired with apiKey. */
2551
+ apiSecret: z.ZodOptional<z.ZodString>;
2552
+ /** The publicly reachable `wss://…/telephony/vonage/media` URL the call's connect NCCO opens. */
2553
+ mediaPublicUrl: z.ZodString;
2554
+ /** Vonage account signature secret — HMAC key for signed-request `sig` AND HS256 webhook-JWT verification. */
2555
+ signatureSecret: z.ZodOptional<z.ZodString>;
2556
+ /** Optional event-webhook URL Vonage posts call lifecycle events to (passed on outbound createCall). */
2557
+ eventUrl: z.ZodOptional<z.ZodString>;
2558
+ }, "passthrough", z.ZodTypeAny, z.objectOutputType<{
2559
+ /** Vonage Application ID (UUID) — the JWT-auth identity for the Voice API. */
2560
+ applicationId: z.ZodOptional<z.ZodString>;
2561
+ /** The application's RSA private key (PEM) used to sign Voice-API JWTs. */
2562
+ privateKey: z.ZodOptional<z.ZodString>;
2563
+ /** Account API key — used for key-scoped operations when no application credential pair is supplied. */
2564
+ apiKey: z.ZodOptional<z.ZodString>;
2565
+ /** Account API secret — paired with apiKey. */
2566
+ apiSecret: z.ZodOptional<z.ZodString>;
2567
+ /** The publicly reachable `wss://…/telephony/vonage/media` URL the call's connect NCCO opens. */
2568
+ mediaPublicUrl: z.ZodString;
2569
+ /** Vonage account signature secret — HMAC key for signed-request `sig` AND HS256 webhook-JWT verification. */
2570
+ signatureSecret: z.ZodOptional<z.ZodString>;
2571
+ /** Optional event-webhook URL Vonage posts call lifecycle events to (passed on outbound createCall). */
2572
+ eventUrl: z.ZodOptional<z.ZodString>;
2573
+ }, z.ZodTypeAny, "passthrough">, z.objectInputType<{
2574
+ /** Vonage Application ID (UUID) — the JWT-auth identity for the Voice API. */
2575
+ applicationId: z.ZodOptional<z.ZodString>;
2576
+ /** The application's RSA private key (PEM) used to sign Voice-API JWTs. */
2577
+ privateKey: z.ZodOptional<z.ZodString>;
2578
+ /** Account API key — used for key-scoped operations when no application credential pair is supplied. */
2579
+ apiKey: z.ZodOptional<z.ZodString>;
2580
+ /** Account API secret — paired with apiKey. */
2581
+ apiSecret: z.ZodOptional<z.ZodString>;
2582
+ /** The publicly reachable `wss://…/telephony/vonage/media` URL the call's connect NCCO opens. */
2583
+ mediaPublicUrl: z.ZodString;
2584
+ /** Vonage account signature secret — HMAC key for signed-request `sig` AND HS256 webhook-JWT verification. */
2585
+ signatureSecret: z.ZodOptional<z.ZodString>;
2586
+ /** Optional event-webhook URL Vonage posts call lifecycle events to (passed on outbound createCall). */
2587
+ eventUrl: z.ZodOptional<z.ZodString>;
2588
+ }, z.ZodTypeAny, "passthrough">>>;
2589
+ /** RingCentral Call Control + media-stream binding. */
2590
+ ringcentral: z.ZodOptional<z.ZodObject<{
2591
+ /** SIP domain (e.g. `sip.ringcentral.com`). */
2592
+ sipDomain: z.ZodString;
2593
+ /** SIP outbound proxy (`host:port`, e.g. `sip10.ringcentral.com:5096`). */
2594
+ sipOutboundProxy: z.ZodString;
2595
+ /** SIP auth username (the device's phone number / extension). */
2596
+ sipUsername: z.ZodString;
2597
+ /** SIP auth password (resolved upstream — never inlined). */
2598
+ sipPassword: z.ZodString;
2599
+ /** SIP authorization id (the device's RingCentral authorization id). */
2600
+ sipAuthorizationId: z.ZodString;
2601
+ /** Codec to negotiate. Defaults to `OPUS/16000` (clean wideband PCM16 — the least-friction realtime path). */
2602
+ codec: z.ZodOptional<z.ZodEnum<["OPUS/16000", "OPUS/48000/2", "PCMU/8000"]>>;
2603
+ /** Skip TLS cert validation (sandbox/test only — never in production). */
2604
+ ignoreTlsCertErrors: z.ZodDefault<z.ZodOptional<z.ZodEffects<z.ZodDefault<z.ZodOptional<z.ZodUnion<[z.ZodBoolean, z.ZodString, z.ZodNumber]>>>, boolean, string | number | boolean>>>;
2605
+ }, "passthrough", z.ZodTypeAny, z.objectOutputType<{
2606
+ /** SIP domain (e.g. `sip.ringcentral.com`). */
2607
+ sipDomain: z.ZodString;
2608
+ /** SIP outbound proxy (`host:port`, e.g. `sip10.ringcentral.com:5096`). */
2609
+ sipOutboundProxy: z.ZodString;
2610
+ /** SIP auth username (the device's phone number / extension). */
2611
+ sipUsername: z.ZodString;
2612
+ /** SIP auth password (resolved upstream — never inlined). */
2613
+ sipPassword: z.ZodString;
2614
+ /** SIP authorization id (the device's RingCentral authorization id). */
2615
+ sipAuthorizationId: z.ZodString;
2616
+ /** Codec to negotiate. Defaults to `OPUS/16000` (clean wideband PCM16 — the least-friction realtime path). */
2617
+ codec: z.ZodOptional<z.ZodEnum<["OPUS/16000", "OPUS/48000/2", "PCMU/8000"]>>;
2618
+ /** Skip TLS cert validation (sandbox/test only — never in production). */
2619
+ ignoreTlsCertErrors: z.ZodDefault<z.ZodOptional<z.ZodEffects<z.ZodDefault<z.ZodOptional<z.ZodUnion<[z.ZodBoolean, z.ZodString, z.ZodNumber]>>>, boolean, string | number | boolean>>>;
2620
+ }, z.ZodTypeAny, "passthrough">, z.objectInputType<{
2621
+ /** SIP domain (e.g. `sip.ringcentral.com`). */
2622
+ sipDomain: z.ZodString;
2623
+ /** SIP outbound proxy (`host:port`, e.g. `sip10.ringcentral.com:5096`). */
2624
+ sipOutboundProxy: z.ZodString;
2625
+ /** SIP auth username (the device's phone number / extension). */
2626
+ sipUsername: z.ZodString;
2627
+ /** SIP auth password (resolved upstream — never inlined). */
2628
+ sipPassword: z.ZodString;
2629
+ /** SIP authorization id (the device's RingCentral authorization id). */
2630
+ sipAuthorizationId: z.ZodString;
2631
+ /** Codec to negotiate. Defaults to `OPUS/16000` (clean wideband PCM16 — the least-friction realtime path). */
2632
+ codec: z.ZodOptional<z.ZodEnum<["OPUS/16000", "OPUS/48000/2", "PCMU/8000"]>>;
2633
+ /** Skip TLS cert validation (sandbox/test only — never in production). */
2634
+ ignoreTlsCertErrors: z.ZodDefault<z.ZodOptional<z.ZodEffects<z.ZodDefault<z.ZodOptional<z.ZodUnion<[z.ZodBoolean, z.ZodString, z.ZodNumber]>>>, boolean, string | number | boolean>>>;
2635
+ }, z.ZodTypeAny, "passthrough">>>;
2636
+ /** Microsoft Teams meetings (Graph cloud-communications + ACS application-hosted media) binding. */
2637
+ teams: z.ZodOptional<z.ZodObject<{
2638
+ /** Master switch for the Teams meetings ingress. */
2639
+ enabled: z.ZodDefault<z.ZodEffects<z.ZodDefault<z.ZodOptional<z.ZodUnion<[z.ZodBoolean, z.ZodString, z.ZodNumber]>>>, boolean, string | number | boolean>>;
2640
+ /** The bot's Azure AD application (client) id (resolved upstream; carried for diagnostics). */
2641
+ appId: z.ZodOptional<z.ZodString>;
2642
+ /** The Azure tenant id the bot operates in. */
2643
+ tenantId: z.ZodOptional<z.ZodString>;
2644
+ /** A pre-resolved OAuth bearer / application token for the bot's Graph calls (resolved upstream — never inline). */
2645
+ botAccessToken: z.ZodOptional<z.ZodString>;
2646
+ /** The shared secret set as `clientState` on the Graph subscription; gates the change-notification webhook. */
2647
+ notificationClientState: z.ZodOptional<z.ZodString>;
2648
+ /** The ACS application-hosted-media PCM sample rate (Hz) the audio plane negotiates. Defaults to 16000. */
2649
+ acsSampleRate: z.ZodDefault<z.ZodOptional<z.ZodNumber>>;
2650
+ /** The realtime model's PCM16 sample rate (Hz) the binding resamples to/from. Defaults to 16000. */
2651
+ modelSampleRate: z.ZodDefault<z.ZodOptional<z.ZodNumber>>;
2652
+ }, "passthrough", z.ZodTypeAny, z.objectOutputType<{
2653
+ /** Master switch for the Teams meetings ingress. */
2654
+ enabled: z.ZodDefault<z.ZodEffects<z.ZodDefault<z.ZodOptional<z.ZodUnion<[z.ZodBoolean, z.ZodString, z.ZodNumber]>>>, boolean, string | number | boolean>>;
2655
+ /** The bot's Azure AD application (client) id (resolved upstream; carried for diagnostics). */
2656
+ appId: z.ZodOptional<z.ZodString>;
2657
+ /** The Azure tenant id the bot operates in. */
2658
+ tenantId: z.ZodOptional<z.ZodString>;
2659
+ /** A pre-resolved OAuth bearer / application token for the bot's Graph calls (resolved upstream — never inline). */
2660
+ botAccessToken: z.ZodOptional<z.ZodString>;
2661
+ /** The shared secret set as `clientState` on the Graph subscription; gates the change-notification webhook. */
2662
+ notificationClientState: z.ZodOptional<z.ZodString>;
2663
+ /** The ACS application-hosted-media PCM sample rate (Hz) the audio plane negotiates. Defaults to 16000. */
2664
+ acsSampleRate: z.ZodDefault<z.ZodOptional<z.ZodNumber>>;
2665
+ /** The realtime model's PCM16 sample rate (Hz) the binding resamples to/from. Defaults to 16000. */
2666
+ modelSampleRate: z.ZodDefault<z.ZodOptional<z.ZodNumber>>;
2667
+ }, z.ZodTypeAny, "passthrough">, z.objectInputType<{
2668
+ /** Master switch for the Teams meetings ingress. */
2669
+ enabled: z.ZodDefault<z.ZodEffects<z.ZodDefault<z.ZodOptional<z.ZodUnion<[z.ZodBoolean, z.ZodString, z.ZodNumber]>>>, boolean, string | number | boolean>>;
2670
+ /** The bot's Azure AD application (client) id (resolved upstream; carried for diagnostics). */
2671
+ appId: z.ZodOptional<z.ZodString>;
2672
+ /** The Azure tenant id the bot operates in. */
2673
+ tenantId: z.ZodOptional<z.ZodString>;
2674
+ /** A pre-resolved OAuth bearer / application token for the bot's Graph calls (resolved upstream — never inline). */
2675
+ botAccessToken: z.ZodOptional<z.ZodString>;
2676
+ /** The shared secret set as `clientState` on the Graph subscription; gates the change-notification webhook. */
2677
+ notificationClientState: z.ZodOptional<z.ZodString>;
2678
+ /** The ACS application-hosted-media PCM sample rate (Hz) the audio plane negotiates. Defaults to 16000. */
2679
+ acsSampleRate: z.ZodDefault<z.ZodOptional<z.ZodNumber>>;
2680
+ /** The realtime model's PCM16 sample rate (Hz) the binding resamples to/from. Defaults to 16000. */
2681
+ modelSampleRate: z.ZodDefault<z.ZodOptional<z.ZodNumber>>;
2682
+ }, z.ZodTypeAny, "passthrough">>>;
2683
+ }, z.ZodTypeAny, "passthrough">>>>;
1057
2684
  databaseSettings: z.ZodObject<{
1058
2685
  connectionTimeout: z.ZodNumber;
1059
2686
  requestTimeout: z.ZodNumber;
@@ -1127,55 +2754,6 @@ declare const configInfoSchema: z.ZodObject<{
1127
2754
  includeSchemas?: string[];
1128
2755
  excludeSchemas?: string[];
1129
2756
  }>>>;
1130
- askSkip: z.ZodOptional<z.ZodObject<{
1131
- url: z.ZodOptional<z.ZodString>;
1132
- apiKey: z.ZodOptional<z.ZodString>;
1133
- orgID: z.ZodOptional<z.ZodString>;
1134
- organizationInfo: z.ZodOptional<z.ZodString>;
1135
- entitiesToSend: z.ZodOptional<z.ZodObject<{
1136
- excludeSchemas: z.ZodOptional<z.ZodArray<z.ZodString, "many">>;
1137
- includeEntitiesFromExcludedSchemas: z.ZodOptional<z.ZodArray<z.ZodString, "many">>;
1138
- }, "strip", z.ZodTypeAny, {
1139
- excludeSchemas?: string[];
1140
- includeEntitiesFromExcludedSchemas?: string[];
1141
- }, {
1142
- excludeSchemas?: string[];
1143
- includeEntitiesFromExcludedSchemas?: string[];
1144
- }>>;
1145
- chatURL: z.ZodOptional<z.ZodString>;
1146
- learningCycleRunUponStartup: z.ZodEffects<z.ZodDefault<z.ZodOptional<z.ZodUnion<[z.ZodBoolean, z.ZodString, z.ZodNumber]>>>, boolean, string | number | boolean>;
1147
- learningCycleEnabled: z.ZodEffects<z.ZodDefault<z.ZodOptional<z.ZodUnion<[z.ZodBoolean, z.ZodString, z.ZodNumber]>>>, boolean, string | number | boolean>;
1148
- learningCycleURL: z.ZodOptional<z.ZodString>;
1149
- learningCycleIntervalInMinutes: z.ZodOptional<z.ZodNumber>;
1150
- }, "strip", z.ZodTypeAny, {
1151
- url?: string;
1152
- apiKey?: string;
1153
- orgID?: string;
1154
- organizationInfo?: string;
1155
- entitiesToSend?: {
1156
- excludeSchemas?: string[];
1157
- includeEntitiesFromExcludedSchemas?: string[];
1158
- };
1159
- chatURL?: string;
1160
- learningCycleRunUponStartup?: boolean;
1161
- learningCycleEnabled?: boolean;
1162
- learningCycleURL?: string;
1163
- learningCycleIntervalInMinutes?: number;
1164
- }, {
1165
- url?: string;
1166
- apiKey?: string;
1167
- orgID?: string;
1168
- organizationInfo?: string;
1169
- entitiesToSend?: {
1170
- excludeSchemas?: string[];
1171
- includeEntitiesFromExcludedSchemas?: string[];
1172
- };
1173
- chatURL?: string;
1174
- learningCycleRunUponStartup?: string | number | boolean;
1175
- learningCycleEnabled?: string | number | boolean;
1176
- learningCycleURL?: string;
1177
- learningCycleIntervalInMinutes?: number;
1178
- }>>;
1179
2757
  sqlLogging: z.ZodOptional<z.ZodObject<{
1180
2758
  enabled: z.ZodDefault<z.ZodOptional<z.ZodBoolean>>;
1181
2759
  defaultOptions: z.ZodDefault<z.ZodOptional<z.ZodObject<{
@@ -1695,6 +3273,73 @@ declare const configInfoSchema: z.ZodObject<{
1695
3273
  } & {
1696
3274
  [k: string]: unknown;
1697
3275
  };
3276
+ widget?: {
3277
+ enabled?: boolean;
3278
+ audience?: string;
3279
+ rateLimitWindowMs?: number;
3280
+ signingReuse?: "magic-link";
3281
+ anonymousEmail?: string;
3282
+ defaultSessionTtlMinutes?: number;
3283
+ defaultRateLimitPerMinute?: number;
3284
+ voiceDefaultMaxSessionMinutes?: number;
3285
+ contextUserForLookup?: string;
3286
+ hostPublicKeys?: Record<string, string>;
3287
+ identityResolution?: {
3288
+ entityName?: string;
3289
+ emailField?: string;
3290
+ };
3291
+ } & {
3292
+ [k: string]: unknown;
3293
+ };
3294
+ telephony?: {
3295
+ enabled?: boolean;
3296
+ twilio?: {
3297
+ accountSid?: string;
3298
+ authToken?: string;
3299
+ apiKeySid?: string;
3300
+ apiKeySecret?: string;
3301
+ streamPublicUrl?: string;
3302
+ webhookSigningSecret?: string;
3303
+ statusCallbackUrl?: string;
3304
+ } & {
3305
+ [k: string]: unknown;
3306
+ };
3307
+ vonage?: {
3308
+ apiKey?: string;
3309
+ applicationId?: string;
3310
+ privateKey?: string;
3311
+ apiSecret?: string;
3312
+ mediaPublicUrl?: string;
3313
+ signatureSecret?: string;
3314
+ eventUrl?: string;
3315
+ } & {
3316
+ [k: string]: unknown;
3317
+ };
3318
+ ringcentral?: {
3319
+ sipDomain?: string;
3320
+ sipOutboundProxy?: string;
3321
+ sipUsername?: string;
3322
+ sipPassword?: string;
3323
+ sipAuthorizationId?: string;
3324
+ codec?: "OPUS/16000" | "OPUS/48000/2" | "PCMU/8000";
3325
+ ignoreTlsCertErrors?: boolean;
3326
+ } & {
3327
+ [k: string]: unknown;
3328
+ };
3329
+ teams?: {
3330
+ enabled?: boolean;
3331
+ tenantId?: string;
3332
+ appId?: string;
3333
+ botAccessToken?: string;
3334
+ notificationClientState?: string;
3335
+ acsSampleRate?: number;
3336
+ modelSampleRate?: number;
3337
+ } & {
3338
+ [k: string]: unknown;
3339
+ };
3340
+ } & {
3341
+ [k: string]: unknown;
3342
+ };
1698
3343
  databaseSettings?: {
1699
3344
  connectionTimeout?: number;
1700
3345
  requestTimeout?: number;
@@ -1718,21 +3363,6 @@ declare const configInfoSchema: z.ZodObject<{
1718
3363
  includeSchemas?: string[];
1719
3364
  excludeSchemas?: string[];
1720
3365
  };
1721
- askSkip?: {
1722
- url?: string;
1723
- apiKey?: string;
1724
- orgID?: string;
1725
- organizationInfo?: string;
1726
- entitiesToSend?: {
1727
- excludeSchemas?: string[];
1728
- includeEntitiesFromExcludedSchemas?: string[];
1729
- };
1730
- chatURL?: string;
1731
- learningCycleRunUponStartup?: boolean;
1732
- learningCycleEnabled?: boolean;
1733
- learningCycleURL?: string;
1734
- learningCycleIntervalInMinutes?: number;
1735
- };
1736
3366
  sqlLogging?: {
1737
3367
  enabled?: boolean;
1738
3368
  defaultOptions?: {
@@ -1915,6 +3545,73 @@ declare const configInfoSchema: z.ZodObject<{
1915
3545
  } & {
1916
3546
  [k: string]: unknown;
1917
3547
  };
3548
+ widget?: {
3549
+ enabled?: string | number | boolean;
3550
+ audience?: string;
3551
+ rateLimitWindowMs?: number;
3552
+ signingReuse?: "magic-link";
3553
+ anonymousEmail?: string;
3554
+ defaultSessionTtlMinutes?: number;
3555
+ defaultRateLimitPerMinute?: number;
3556
+ voiceDefaultMaxSessionMinutes?: number;
3557
+ contextUserForLookup?: string;
3558
+ hostPublicKeys?: Record<string, string>;
3559
+ identityResolution?: {
3560
+ entityName?: string;
3561
+ emailField?: string;
3562
+ };
3563
+ } & {
3564
+ [k: string]: unknown;
3565
+ };
3566
+ telephony?: {
3567
+ enabled?: string | number | boolean;
3568
+ twilio?: {
3569
+ accountSid?: string;
3570
+ authToken?: string;
3571
+ apiKeySid?: string;
3572
+ apiKeySecret?: string;
3573
+ streamPublicUrl?: string;
3574
+ webhookSigningSecret?: string;
3575
+ statusCallbackUrl?: string;
3576
+ } & {
3577
+ [k: string]: unknown;
3578
+ };
3579
+ vonage?: {
3580
+ apiKey?: string;
3581
+ applicationId?: string;
3582
+ privateKey?: string;
3583
+ apiSecret?: string;
3584
+ mediaPublicUrl?: string;
3585
+ signatureSecret?: string;
3586
+ eventUrl?: string;
3587
+ } & {
3588
+ [k: string]: unknown;
3589
+ };
3590
+ ringcentral?: {
3591
+ sipDomain?: string;
3592
+ sipOutboundProxy?: string;
3593
+ sipUsername?: string;
3594
+ sipPassword?: string;
3595
+ sipAuthorizationId?: string;
3596
+ codec?: "OPUS/16000" | "OPUS/48000/2" | "PCMU/8000";
3597
+ ignoreTlsCertErrors?: string | number | boolean;
3598
+ } & {
3599
+ [k: string]: unknown;
3600
+ };
3601
+ teams?: {
3602
+ enabled?: string | number | boolean;
3603
+ tenantId?: string;
3604
+ appId?: string;
3605
+ botAccessToken?: string;
3606
+ notificationClientState?: string;
3607
+ acsSampleRate?: number;
3608
+ modelSampleRate?: number;
3609
+ } & {
3610
+ [k: string]: unknown;
3611
+ };
3612
+ } & {
3613
+ [k: string]: unknown;
3614
+ };
1918
3615
  databaseSettings?: {
1919
3616
  connectionTimeout?: number;
1920
3617
  requestTimeout?: number;
@@ -1938,21 +3635,6 @@ declare const configInfoSchema: z.ZodObject<{
1938
3635
  includeSchemas?: string[];
1939
3636
  excludeSchemas?: string[];
1940
3637
  };
1941
- askSkip?: {
1942
- url?: string;
1943
- apiKey?: string;
1944
- orgID?: string;
1945
- organizationInfo?: string;
1946
- entitiesToSend?: {
1947
- excludeSchemas?: string[];
1948
- includeEntitiesFromExcludedSchemas?: string[];
1949
- };
1950
- chatURL?: string;
1951
- learningCycleRunUponStartup?: string | number | boolean;
1952
- learningCycleEnabled?: string | number | boolean;
1953
- learningCycleURL?: string;
1954
- learningCycleIntervalInMinutes?: number;
1955
- };
1956
3638
  sqlLogging?: {
1957
3639
  enabled?: boolean;
1958
3640
  defaultOptions?: {
@@ -2103,10 +3785,15 @@ declare const configInfoSchema: z.ZodObject<{
2103
3785
  }>;
2104
3786
  export type UserHandlingInfo = z.infer<typeof userHandlingInfoSchema>;
2105
3787
  export type MagicLinkConfig = z.infer<typeof magicLinkSchema>;
3788
+ export type WidgetConfig = z.infer<typeof widgetSchema>;
3789
+ export type TelephonyConfig = z.infer<typeof telephonySchema>;
3790
+ export type TwilioTelephonyConfig = z.infer<typeof twilioTelephonySchema>;
3791
+ export type VonageTelephonyConfig = z.infer<typeof vonageTelephonySchema>;
3792
+ export type RingCentralTelephonyConfig = z.infer<typeof ringcentralTelephonySchema>;
3793
+ export type TeamsMeetingsConfig = z.infer<typeof teamsMeetingsSchema>;
2106
3794
  export type DatabaseSettingsInfo = z.infer<typeof databaseSettingsInfoSchema>;
2107
3795
  export type ViewingSystemSettingsInfo = z.infer<typeof viewingSystemInfoSchema>;
2108
3796
  export type RESTApiOptions = z.infer<typeof restApiOptionsSchema>;
2109
- export type AskSkipInfo = z.infer<typeof askSkipInfoSchema>;
2110
3797
  export type SqlLoggingOptions = z.infer<typeof sqlLoggingOptionsSchema>;
2111
3798
  export type SqlLoggingInfo = z.infer<typeof sqlLoggingSchema>;
2112
3799
  export type AuthProviderConfig = z.infer<typeof authProviderSchema>;
@@ -2186,6 +3873,73 @@ export declare function loadConfig(): {
2186
3873
  } & {
2187
3874
  [k: string]: unknown;
2188
3875
  };
3876
+ widget?: {
3877
+ enabled?: boolean;
3878
+ audience?: string;
3879
+ rateLimitWindowMs?: number;
3880
+ signingReuse?: "magic-link";
3881
+ anonymousEmail?: string;
3882
+ defaultSessionTtlMinutes?: number;
3883
+ defaultRateLimitPerMinute?: number;
3884
+ voiceDefaultMaxSessionMinutes?: number;
3885
+ contextUserForLookup?: string;
3886
+ hostPublicKeys?: Record<string, string>;
3887
+ identityResolution?: {
3888
+ entityName?: string;
3889
+ emailField?: string;
3890
+ };
3891
+ } & {
3892
+ [k: string]: unknown;
3893
+ };
3894
+ telephony?: {
3895
+ enabled?: boolean;
3896
+ twilio?: {
3897
+ accountSid?: string;
3898
+ authToken?: string;
3899
+ apiKeySid?: string;
3900
+ apiKeySecret?: string;
3901
+ streamPublicUrl?: string;
3902
+ webhookSigningSecret?: string;
3903
+ statusCallbackUrl?: string;
3904
+ } & {
3905
+ [k: string]: unknown;
3906
+ };
3907
+ vonage?: {
3908
+ apiKey?: string;
3909
+ applicationId?: string;
3910
+ privateKey?: string;
3911
+ apiSecret?: string;
3912
+ mediaPublicUrl?: string;
3913
+ signatureSecret?: string;
3914
+ eventUrl?: string;
3915
+ } & {
3916
+ [k: string]: unknown;
3917
+ };
3918
+ ringcentral?: {
3919
+ sipDomain?: string;
3920
+ sipOutboundProxy?: string;
3921
+ sipUsername?: string;
3922
+ sipPassword?: string;
3923
+ sipAuthorizationId?: string;
3924
+ codec?: "OPUS/16000" | "OPUS/48000/2" | "PCMU/8000";
3925
+ ignoreTlsCertErrors?: boolean;
3926
+ } & {
3927
+ [k: string]: unknown;
3928
+ };
3929
+ teams?: {
3930
+ enabled?: boolean;
3931
+ tenantId?: string;
3932
+ appId?: string;
3933
+ botAccessToken?: string;
3934
+ notificationClientState?: string;
3935
+ acsSampleRate?: number;
3936
+ modelSampleRate?: number;
3937
+ } & {
3938
+ [k: string]: unknown;
3939
+ };
3940
+ } & {
3941
+ [k: string]: unknown;
3942
+ };
2189
3943
  databaseSettings?: {
2190
3944
  connectionTimeout?: number;
2191
3945
  requestTimeout?: number;
@@ -2209,21 +3963,6 @@ export declare function loadConfig(): {
2209
3963
  includeSchemas?: string[];
2210
3964
  excludeSchemas?: string[];
2211
3965
  };
2212
- askSkip?: {
2213
- url?: string;
2214
- apiKey?: string;
2215
- orgID?: string;
2216
- organizationInfo?: string;
2217
- entitiesToSend?: {
2218
- excludeSchemas?: string[];
2219
- includeEntitiesFromExcludedSchemas?: string[];
2220
- };
2221
- chatURL?: string;
2222
- learningCycleRunUponStartup?: boolean;
2223
- learningCycleEnabled?: boolean;
2224
- learningCycleURL?: string;
2225
- learningCycleIntervalInMinutes?: number;
2226
- };
2227
3966
  sqlLogging?: {
2228
3967
  enabled?: boolean;
2229
3968
  defaultOptions?: {