@nexeraid/identity-schemas 2.225.0-dev → 2.226.0-dev

package/dist/{notabene.schema-cf723922.cjs.prod.cjs → veriff-webhook.schema-afbdfa40.cjs.prod.cjs}

@@ -1442,7 +1442,7 @@ var TRMLabsAddressesScreeningResponse = z__default["default"].union([TRMLabsAddr
 var ProviderWithoutConfig = ["chainalysis", "scorechain", "integratedScorechain", "trmLabs"];
 var IdentityProviderOptions = ["nexeraIdSSID", "nexeraIdKYB", "synaps", "ondato"];
 var IdentityProvider = z.z["enum"](IdentityProviderOptions);
-var DataProviderOptions = ["complyAdvantage", "big", "scorechain", "merkleScience", "chainalysis", "trmLabs", "crystal", "notabene", "ipQualityScore", "integratedComplyAdvantage", "integratedScorechain", "integratedIpqualityscore", "notabene", "integratedWalletMonitoring"];
+var DataProviderOptions = ["complyAdvantage", "big", "scorechain", "merkleScience", "chainalysis", "trmLabs", "crystal", "notabene", "ipQualityScore", "integratedComplyAdvantage", "integratedScorechain", "integratedIpqualityscore", "notabene", "integratedWalletMonitoring", "veriff"];
 var DataProvider = z.z["enum"](DataProviderOptions);
 var MergedProviders = z.z["enum"]([].concat(vault_schema._toConsumableArray(IdentityProvider.options), vault_schema._toConsumableArray(DataProvider.options)));
 var MerkleScienceConfig = z.z.object({
@@ -2567,7 +2567,9 @@ var SelectKycSession = z.z.object({
   workflowSessionId: vault_schema.WorkflowSessionId.nullable(),
   workspaceId: vault_schema.WorkspaceId.nullish(),
   organizationId: vault_schema.OrganizationId.nullish(),
-  applicantCheckStatus: ApplicantCheckStatus
+  applicantCheckStatus: ApplicantCheckStatus,
+  kycProvider: z.z.string()["default"]("sumsub"),
+  providerPersonData: z.z.unknown().nullish()
 });
 var SelectKycSessionWithCompletedSteps = SelectKycSession.extend({
   stepsCompleted: z.z.array(SelectKycSessionStep)
@@ -2648,6 +2650,8 @@ var ApiSuccessCommandResponse = function ApiSuccessCommandResponse(dataSchema) {
   });
 };
 var GetKycSessionsOutput = z.z.discriminatedUnion("isOk", [ApiErrorCommandResponse, ApiSuccessCommandResponse(z.z.array(GetKycSessionResponseWithCredentialsMetadata))]);
+var KYC_PROVIDER_NAMES = ["sumsub", "veriff"];
+var KycProviderName = z.z["enum"](KYC_PROVIDER_NAMES);
 
 var KYB_STEP_TYPES = ["Started"];
 var KybStep = z.z["enum"](KYB_STEP_TYPES);
@@ -3264,6 +3268,161 @@ var NotabeneWebhookSchema = z.z.object({
   status: NotabeneTxCreateStatus
 });
 
+var VERIFF_DECISION_STATUSES = ["approved", "declined", "resubmission_requested", "expired", "abandoned"];
+var VeriffDecisionStatus = z.z["enum"](VERIFF_DECISION_STATUSES);
+var VERIFF_DECISION_CODES = [9001, 9102, 9103, 9104];
+var VeriffDecisionCode = z.z.union([z.z.literal(9001),
+// approved
+z.z.literal(9102),
+// declined
+z.z.literal(9103),
+// resubmission_requested
+z.z.literal(9104),
+// expired
+z.z.number() // fallback for unknown codes — do not reject valid webhooks
+]);
+
+// .passthrough() — see veriff-webhook.schema.ts.
+
+var VeriffCreateSessionRequest = z.z.object({
+  verification: z.z.object({
+    person: z.z.object({
+      firstName: z.z.string(),
+      lastName: z.z.string()
+    }).passthrough(),
+    vendorData: z.z.string(),
+    // our internal customerId
+    callback: z.z.string().url(),
+    timestamp: z.z.string() // ISO 8601
+  }).passthrough()
+}).passthrough();
+var VeriffCreateSessionResponse = z.z.object({
+  status: z.z.string(),
+  verification: z.z.object({
+    id: z.z.string().uuid(),
+    url: z.z.string().url(),
+    sessionToken: z.z.string(),
+    baseUrl: z.z.string().optional()
+  }).passthrough()
+}).passthrough();
+
+/** Veriff watchlist webhook (initial_result | updated_result).
+ *  Strict (no passthrough) so it satisfies MessageBrokerEvent's ZodSchema<T>
+ *  — passthrough breaks that via the inferred index signature. */
+
+var VeriffWatchlistCheckType = z.z["enum"](["initial_result", "updated_result"]);
+var VeriffWatchlistMatchStatus = z.z["enum"](["possible_match", "no_match"]);
+var VeriffWatchlistSearchTerm = z.z.object({
+  name: z.z.string().nullable().optional(),
+  // Veriff sends `year` as a string in practice; coerce handles both.
+  year: z.z.coerce.number().nullable().optional(),
+  lists: z.z.array(z.z.string()).nullable().optional(),
+  countries: z.z.array(z.z.string()).nullable().optional(),
+  exactMatch: z.z["boolean"]().nullable().optional(),
+  matchThreshold: z.z.number().nullable().optional(),
+  excludeDeceased: z.z["boolean"]().nullable().optional()
+});
+/** Listing entry per category; passthrough preserves undocumented fields. */
+var VeriffWatchlistListingEntry = z.z.object({
+  sourceName: z.z.string().nullable().optional(),
+  sourceUrl: z.z.string().nullable().optional(),
+  snippet: z.z.string().nullable().optional(),
+  date: z.z.string().nullable().optional()
+}).passthrough();
+/** Five hit categories; passthrough for future buckets. */
+var VeriffWatchlistListingsByCategory = z.z.object({
+  warnings: z.z.array(VeriffWatchlistListingEntry).nullable().optional(),
+  sanctions: z.z.array(VeriffWatchlistListingEntry).nullable().optional(),
+  fitnessProbity: z.z.array(VeriffWatchlistListingEntry).nullable().optional(),
+  pep: z.z.array(VeriffWatchlistListingEntry).nullable().optional(),
+  adverseMedia: z.z.array(VeriffWatchlistListingEntry).nullable().optional()
+}).passthrough();
+/** Per-hit schema. aka/associates/matchTypes use z.unknown() — Veriff sometimes
+ *  returns objects instead of strings; UI handles both shapes at render time. */
+var VeriffWatchlistHit = z.z.object({
+  matchedName: z.z.string().nullable().optional(),
+  countries: z.z.array(z.z.string()).nullable().optional(),
+  dateOfBirth: z.z.string().nullable().optional(),
+  dateOfDeath: z.z.string().nullable().optional(),
+  matchTypes: z.z.array(z.z.unknown()).nullable().optional(),
+  aka: z.z.array(z.z.unknown()).nullable().optional(),
+  associates: z.z.array(z.z.unknown()).nullable().optional(),
+  listingsRelatedToMatch: VeriffWatchlistListingsByCategory.nullable().optional()
+}).passthrough();
+// Top-level strict so it's assignable to MessageBrokerEvent's ZodSchema<T>;
+// passthrough lives on nested objects.
+var VeriffWatchlistWebhook = z.z.object({
+  checkType: VeriffWatchlistCheckType,
+  attemptId: z.z.string(),
+  sessionId: z.z.string(),
+  vendorData: z.z.string().nullable().optional(),
+  endUserId: z.z.string().nullable().optional(),
+  matchStatus: VeriffWatchlistMatchStatus,
+  // Diverges from matchStatus when operator marks hits on Veriff's side.
+  reviewStatus: z.z.string().nullable().optional(),
+  // Veriff-side flag for unseen monitoring updates; surfaced in dashboard.
+  hasUnacknowledgedChanges: z.z["boolean"]().nullable().optional(),
+  createdAt: z.z.string(),
+  totalHits: z.z.number(),
+  hits: z.z.array(VeriffWatchlistHit),
+  searchTerm: VeriffWatchlistSearchTerm.nullable().optional()
+});
+
+// .passthrough() everywhere — strict shapes silently drop fields Veriff adds
+// in some flows (yearOfBirth, pepSanctionMatch, etc.), same trap as Topograph.
+
+var VeriffPerson = z.z.object({
+  firstName: z.z.string().nullable().optional(),
+  lastName: z.z.string().nullable().optional(),
+  dateOfBirth: z.z.string().nullable().optional(),
+  // YYYY-MM-DD
+  gender: z.z.string().nullable().optional(),
+  nationality: z.z.string().nullable().optional(),
+  placeOfBirth: z.z.string().nullable().optional(),
+  idNumber: z.z.string().nullable().optional()
+}).passthrough();
+var VeriffDocument = z.z.object({
+  number: z.z.string().nullable().optional(),
+  type: z.z.string().nullable().optional(),
+  country: z.z.string().nullable().optional(),
+  validFrom: z.z.string().nullable().optional(),
+  validUntil: z.z.string().nullable().optional()
+}).passthrough();
+var VeriffEventWebhook = z.z.object({
+  id: z.z.string().uuid(),
+  attemptId: z.z.string().uuid().optional(),
+  feature: z.z.string().optional(),
+  code: z.z.number(),
+  action: z.z.string(),
+  vendorData: z.z.string().nullable().optional(),
+  // our customerId
+  endUserId: z.z.string().nullable().optional()
+}).passthrough();
+var VeriffDecisionWebhook = z.z.object({
+  status: z.z.string(),
+  verification: z.z.object({
+    id: z.z.string().uuid(),
+    // providerSessionId
+    attemptId: z.z.string().uuid().optional(),
+    vendorData: z.z.string().optional(),
+    // our customerId
+    status: VeriffDecisionStatus,
+    code: VeriffDecisionCode,
+    reason: z.z.string().nullable().optional(),
+    reasonCode: z.z.number().nullable().optional(),
+    acceptanceTime: z.z.string().optional(),
+    decisionTime: z.z.string().nullable().optional(),
+    person: VeriffPerson.optional(),
+    document: VeriffDocument.optional(),
+    riskScore: z.z.object({
+      score: z.z.number()
+    }).optional()
+  }).passthrough().nullable(),
+  technicalData: z.z.object({
+    ip: z.z.string().nullable().optional()
+  }).passthrough().optional()
+}).passthrough();
+
 exports.AMLMetadata = AMLMetadata;
 exports.APPLICANT_CHECK_STATUSES = APPLICANT_CHECK_STATUSES;
 exports.ApiErrorCommandResponse = ApiErrorCommandResponse;
@@ -3403,6 +3562,7 @@ exports.KYB_RESULTS = KYB_RESULTS;
 exports.KYB_SESSION_STATUSES = KYB_SESSION_STATUSES;
 exports.KYB_STEP_TYPES = KYB_STEP_TYPES;
 exports.KYC_DOC_SIDES = KYC_DOC_SIDES;
+exports.KYC_PROVIDER_NAMES = KYC_PROVIDER_NAMES;
 exports.KYC_RESULTS = KYC_RESULTS;
 exports.KYC_SESSION_STATUSES = KYC_SESSION_STATUSES;
 exports.KYC_STEP_TYPES = KYC_STEP_TYPES;
@@ -3410,6 +3570,7 @@ exports.KybResult = KybResult;
 exports.KybSessionStatus = KybSessionStatus;
 exports.KybStep = KybStep;
 exports.KycDocSide = KycDocSide;
+exports.KycProviderName = KycProviderName;
 exports.KycResult = KycResult;
 exports.KycSessionStatus = KycSessionStatus;
 exports.KycStep = KycStep;
@@ -3581,6 +3742,23 @@ exports.UpdateProviderResponse = UpdateProviderResponse;
 exports.UpdateSearchEntitiesInput = UpdateSearchEntitiesInput;
 exports.UpdateSearchInput = UpdateSearchInput;
 exports.UploadDocumentRequest = UploadDocumentRequest;
+exports.VERIFF_DECISION_CODES = VERIFF_DECISION_CODES;
+exports.VERIFF_DECISION_STATUSES = VERIFF_DECISION_STATUSES;
+exports.VeriffCreateSessionRequest = VeriffCreateSessionRequest;
+exports.VeriffCreateSessionResponse = VeriffCreateSessionResponse;
+exports.VeriffDecisionCode = VeriffDecisionCode;
+exports.VeriffDecisionStatus = VeriffDecisionStatus;
+exports.VeriffDecisionWebhook = VeriffDecisionWebhook;
+exports.VeriffDocument = VeriffDocument;
+exports.VeriffEventWebhook = VeriffEventWebhook;
+exports.VeriffPerson = VeriffPerson;
+exports.VeriffWatchlistCheckType = VeriffWatchlistCheckType;
+exports.VeriffWatchlistHit = VeriffWatchlistHit;
+exports.VeriffWatchlistListingEntry = VeriffWatchlistListingEntry;
+exports.VeriffWatchlistListingsByCategory = VeriffWatchlistListingsByCategory;
+exports.VeriffWatchlistMatchStatus = VeriffWatchlistMatchStatus;
+exports.VeriffWatchlistSearchTerm = VeriffWatchlistSearchTerm;
+exports.VeriffWatchlistWebhook = VeriffWatchlistWebhook;
 exports.VideoKycMetaData = VideoKycMetaData;
 exports.WEBHOOK_TYPES = WEBHOOK_TYPES;
 exports.WebhookPayload = WebhookPayload;

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@nexeraid/identity-schemas",
-  "version": "2.225.0-dev",
+  "version": "2.226.0-dev",
   "description": "",
   "keywords": [],
   "license": "ISC",