@objectstack/platform-objects 12.6.0 → 13.0.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
@@ -307,7 +307,12 @@ declare const SysUser: Omit<{
307
307
  access?: {
308
308
  default: "public" | "private";
309
309
  } | undefined;
310
- requiredPermissions?: string[] | undefined;
310
+ requiredPermissions?: string[] | {
311
+ read?: string[] | undefined;
312
+ create?: string[] | undefined;
313
+ update?: string[] | undefined;
314
+ delete?: string[] | undefined;
315
+ } | undefined;
311
316
  softDelete?: {
312
317
  enabled: boolean;
313
318
  field: string;
@@ -653,9 +658,10 @@ declare const SysUser: Omit<{
653
658
  trash: boolean;
654
659
  mru: boolean;
655
660
  clone: boolean;
656
- apiMethods?: ("search" | "create" | "import" | "delete" | "get" | "update" | "upsert" | "list" | "bulk" | "aggregate" | "history" | "restore" | "purge" | "export")[] | undefined;
661
+ apiMethods?: ("search" | "create" | "import" | "delete" | "update" | "get" | "upsert" | "list" | "bulk" | "aggregate" | "history" | "restore" | "purge" | "export")[] | undefined;
657
662
  } | undefined;
658
- sharingModel?: "full" | "private" | "read" | "public_read" | "public_read_write" | "controlled_by_parent" | "read_write" | undefined;
663
+ sharingModel?: "private" | "public_read" | "public_read_write" | "controlled_by_parent" | undefined;
664
+ externalSharingModel?: "private" | "public_read" | "public_read_write" | "controlled_by_parent" | undefined;
659
665
  publicSharing?: {
660
666
  enabled: boolean;
661
667
  allowedAudiences?: ("email" | "public" | "link_only" | "signed_in")[] | undefined;
@@ -800,7 +806,7 @@ declare const SysUser: Omit<{
800
806
  readonly locations: ["list_toolbar"];
801
807
  readonly type: "api";
802
808
  readonly target: "/api/v1/auth/organization/invite-member";
803
- readonly visible: "features.multiOrgEnabled != false";
809
+ readonly visible: "features.organization != false";
804
810
  readonly successMessage: "Invitation sent";
805
811
  readonly refreshAfter: true;
806
812
  readonly params: [{
@@ -5508,7 +5514,12 @@ declare const SysSession: Omit<{
5508
5514
  access?: {
5509
5515
  default: "public" | "private";
5510
5516
  } | undefined;
5511
- requiredPermissions?: string[] | undefined;
5517
+ requiredPermissions?: string[] | {
5518
+ read?: string[] | undefined;
5519
+ create?: string[] | undefined;
5520
+ update?: string[] | undefined;
5521
+ delete?: string[] | undefined;
5522
+ } | undefined;
5512
5523
  softDelete?: {
5513
5524
  enabled: boolean;
5514
5525
  field: string;
@@ -5854,9 +5865,10 @@ declare const SysSession: Omit<{
5854
5865
  trash: boolean;
5855
5866
  mru: boolean;
5856
5867
  clone: boolean;
5857
- apiMethods?: ("search" | "create" | "import" | "delete" | "get" | "update" | "upsert" | "list" | "bulk" | "aggregate" | "history" | "restore" | "purge" | "export")[] | undefined;
5868
+ apiMethods?: ("search" | "create" | "import" | "delete" | "update" | "get" | "upsert" | "list" | "bulk" | "aggregate" | "history" | "restore" | "purge" | "export")[] | undefined;
5858
5869
  } | undefined;
5859
- sharingModel?: "full" | "private" | "read" | "public_read" | "public_read_write" | "controlled_by_parent" | "read_write" | undefined;
5870
+ sharingModel?: "private" | "public_read" | "public_read_write" | "controlled_by_parent" | undefined;
5871
+ externalSharingModel?: "private" | "public_read" | "public_read_write" | "controlled_by_parent" | undefined;
5860
5872
  publicSharing?: {
5861
5873
  enabled: boolean;
5862
5874
  allowedAudiences?: ("email" | "public" | "link_only" | "signed_in")[] | undefined;
@@ -8949,7 +8961,12 @@ declare const SysAccount: Omit<{
8949
8961
  access?: {
8950
8962
  default: "public" | "private";
8951
8963
  } | undefined;
8952
- requiredPermissions?: string[] | undefined;
8964
+ requiredPermissions?: string[] | {
8965
+ read?: string[] | undefined;
8966
+ create?: string[] | undefined;
8967
+ update?: string[] | undefined;
8968
+ delete?: string[] | undefined;
8969
+ } | undefined;
8953
8970
  softDelete?: {
8954
8971
  enabled: boolean;
8955
8972
  field: string;
@@ -9295,9 +9312,10 @@ declare const SysAccount: Omit<{
9295
9312
  trash: boolean;
9296
9313
  mru: boolean;
9297
9314
  clone: boolean;
9298
- apiMethods?: ("search" | "create" | "import" | "delete" | "get" | "update" | "upsert" | "list" | "bulk" | "aggregate" | "history" | "restore" | "purge" | "export")[] | undefined;
9315
+ apiMethods?: ("search" | "create" | "import" | "delete" | "update" | "get" | "upsert" | "list" | "bulk" | "aggregate" | "history" | "restore" | "purge" | "export")[] | undefined;
9299
9316
  } | undefined;
9300
- sharingModel?: "full" | "private" | "read" | "public_read" | "public_read_write" | "controlled_by_parent" | "read_write" | undefined;
9317
+ sharingModel?: "private" | "public_read" | "public_read_write" | "controlled_by_parent" | undefined;
9318
+ externalSharingModel?: "private" | "public_read" | "public_read_write" | "controlled_by_parent" | undefined;
9301
9319
  publicSharing?: {
9302
9320
  enabled: boolean;
9303
9321
  allowedAudiences?: ("email" | "public" | "link_only" | "signed_in")[] | undefined;
@@ -12446,7 +12464,12 @@ declare const SysVerification: Omit<{
12446
12464
  access?: {
12447
12465
  default: "public" | "private";
12448
12466
  } | undefined;
12449
- requiredPermissions?: string[] | undefined;
12467
+ requiredPermissions?: string[] | {
12468
+ read?: string[] | undefined;
12469
+ create?: string[] | undefined;
12470
+ update?: string[] | undefined;
12471
+ delete?: string[] | undefined;
12472
+ } | undefined;
12450
12473
  softDelete?: {
12451
12474
  enabled: boolean;
12452
12475
  field: string;
@@ -12792,9 +12815,10 @@ declare const SysVerification: Omit<{
12792
12815
  trash: boolean;
12793
12816
  mru: boolean;
12794
12817
  clone: boolean;
12795
- apiMethods?: ("search" | "create" | "import" | "delete" | "get" | "update" | "upsert" | "list" | "bulk" | "aggregate" | "history" | "restore" | "purge" | "export")[] | undefined;
12818
+ apiMethods?: ("search" | "create" | "import" | "delete" | "update" | "get" | "upsert" | "list" | "bulk" | "aggregate" | "history" | "restore" | "purge" | "export")[] | undefined;
12796
12819
  } | undefined;
12797
- sharingModel?: "full" | "private" | "read" | "public_read" | "public_read_write" | "controlled_by_parent" | "read_write" | undefined;
12820
+ sharingModel?: "private" | "public_read" | "public_read_write" | "controlled_by_parent" | undefined;
12821
+ externalSharingModel?: "private" | "public_read" | "public_read_write" | "controlled_by_parent" | undefined;
12798
12822
  publicSharing?: {
12799
12823
  enabled: boolean;
12800
12824
  allowedAudiences?: ("email" | "public" | "link_only" | "signed_in")[] | undefined;
@@ -12921,6 +12945,9 @@ declare const SysVerification: Omit<{
12921
12945
  readonly icon: "shield-check";
12922
12946
  readonly isSystem: true;
12923
12947
  readonly managedBy: "better-auth";
12948
+ readonly access: {
12949
+ readonly default: "private";
12950
+ };
12924
12951
  readonly protection: {
12925
12952
  readonly lock: "full";
12926
12953
  readonly reason: "Identity table managed by better-auth — see ADR-0010.";
@@ -14353,7 +14380,12 @@ declare const SysOrganization: Omit<{
14353
14380
  access?: {
14354
14381
  default: "public" | "private";
14355
14382
  } | undefined;
14356
- requiredPermissions?: string[] | undefined;
14383
+ requiredPermissions?: string[] | {
14384
+ read?: string[] | undefined;
14385
+ create?: string[] | undefined;
14386
+ update?: string[] | undefined;
14387
+ delete?: string[] | undefined;
14388
+ } | undefined;
14357
14389
  softDelete?: {
14358
14390
  enabled: boolean;
14359
14391
  field: string;
@@ -14699,9 +14731,10 @@ declare const SysOrganization: Omit<{
14699
14731
  trash: boolean;
14700
14732
  mru: boolean;
14701
14733
  clone: boolean;
14702
- apiMethods?: ("search" | "create" | "import" | "delete" | "get" | "update" | "upsert" | "list" | "bulk" | "aggregate" | "history" | "restore" | "purge" | "export")[] | undefined;
14734
+ apiMethods?: ("search" | "create" | "import" | "delete" | "update" | "get" | "upsert" | "list" | "bulk" | "aggregate" | "history" | "restore" | "purge" | "export")[] | undefined;
14703
14735
  } | undefined;
14704
- sharingModel?: "full" | "private" | "read" | "public_read" | "public_read_write" | "controlled_by_parent" | "read_write" | undefined;
14736
+ sharingModel?: "private" | "public_read" | "public_read_write" | "controlled_by_parent" | undefined;
14737
+ externalSharingModel?: "private" | "public_read" | "public_read_write" | "controlled_by_parent" | undefined;
14705
14738
  publicSharing?: {
14706
14739
  enabled: boolean;
14707
14740
  allowedAudiences?: ("email" | "public" | "link_only" | "signed_in")[] | undefined;
@@ -16751,7 +16784,12 @@ declare const SysMember: Omit<{
16751
16784
  access?: {
16752
16785
  default: "public" | "private";
16753
16786
  } | undefined;
16754
- requiredPermissions?: string[] | undefined;
16787
+ requiredPermissions?: string[] | {
16788
+ read?: string[] | undefined;
16789
+ create?: string[] | undefined;
16790
+ update?: string[] | undefined;
16791
+ delete?: string[] | undefined;
16792
+ } | undefined;
16755
16793
  softDelete?: {
16756
16794
  enabled: boolean;
16757
16795
  field: string;
@@ -17097,9 +17135,10 @@ declare const SysMember: Omit<{
17097
17135
  trash: boolean;
17098
17136
  mru: boolean;
17099
17137
  clone: boolean;
17100
- apiMethods?: ("search" | "create" | "import" | "delete" | "get" | "update" | "upsert" | "list" | "bulk" | "aggregate" | "history" | "restore" | "purge" | "export")[] | undefined;
17138
+ apiMethods?: ("search" | "create" | "import" | "delete" | "update" | "get" | "upsert" | "list" | "bulk" | "aggregate" | "history" | "restore" | "purge" | "export")[] | undefined;
17101
17139
  } | undefined;
17102
- sharingModel?: "full" | "private" | "read" | "public_read" | "public_read_write" | "controlled_by_parent" | "read_write" | undefined;
17140
+ sharingModel?: "private" | "public_read" | "public_read_write" | "controlled_by_parent" | undefined;
17141
+ externalSharingModel?: "private" | "public_read" | "public_read_write" | "controlled_by_parent" | undefined;
17103
17142
  publicSharing?: {
17104
17143
  enabled: boolean;
17105
17144
  allowedAudiences?: ("email" | "public" | "link_only" | "signed_in")[] | undefined;
@@ -17242,7 +17281,7 @@ declare const SysMember: Omit<{
17242
17281
  readonly locations: ["list_toolbar"];
17243
17282
  readonly type: "api";
17244
17283
  readonly target: "/api/v1/auth/organization/add-member";
17245
- readonly visible: "features.multiOrgEnabled != false";
17284
+ readonly visible: "features.organization != false";
17246
17285
  readonly successMessage: "Member added";
17247
17286
  readonly refreshAfter: true;
17248
17287
  readonly params: [{
@@ -17265,7 +17304,7 @@ declare const SysMember: Omit<{
17265
17304
  readonly type: "api";
17266
17305
  readonly target: "/api/v1/auth/organization/update-member-role";
17267
17306
  readonly recordIdParam: "memberId";
17268
- readonly visible: "features.multiOrgEnabled != false";
17307
+ readonly visible: "features.organization != false";
17269
17308
  readonly successMessage: "Member role updated";
17270
17309
  readonly refreshAfter: true;
17271
17310
  readonly params: [{
@@ -17283,7 +17322,7 @@ declare const SysMember: Omit<{
17283
17322
  readonly type: "api";
17284
17323
  readonly target: "/api/v1/auth/organization/remove-member";
17285
17324
  readonly recordIdParam: "memberIdOrEmail";
17286
- readonly visible: "features.multiOrgEnabled != false";
17325
+ readonly visible: "features.organization != false";
17287
17326
  readonly confirmText: "Remove this member from the organization? They will lose access to all org resources.";
17288
17327
  readonly successMessage: "Member removed";
17289
17328
  readonly refreshAfter: true;
@@ -17300,7 +17339,7 @@ declare const SysMember: Omit<{
17300
17339
  readonly bodyExtra: {
17301
17340
  readonly role: "owner";
17302
17341
  };
17303
- readonly visible: "record.role != 'owner' && features.multiOrgEnabled != false";
17342
+ readonly visible: "record.role != 'owner' && features.organization != false";
17304
17343
  readonly confirmText: "Transfer ownership of this organization to the selected member? You will be demoted to admin and lose owner-only privileges.";
17305
17344
  readonly successMessage: "Ownership transferred";
17306
17345
  readonly refreshAfter: true;
@@ -18570,7 +18609,12 @@ declare const SysInvitation: Omit<{
18570
18609
  access?: {
18571
18610
  default: "public" | "private";
18572
18611
  } | undefined;
18573
- requiredPermissions?: string[] | undefined;
18612
+ requiredPermissions?: string[] | {
18613
+ read?: string[] | undefined;
18614
+ create?: string[] | undefined;
18615
+ update?: string[] | undefined;
18616
+ delete?: string[] | undefined;
18617
+ } | undefined;
18574
18618
  softDelete?: {
18575
18619
  enabled: boolean;
18576
18620
  field: string;
@@ -18916,9 +18960,10 @@ declare const SysInvitation: Omit<{
18916
18960
  trash: boolean;
18917
18961
  mru: boolean;
18918
18962
  clone: boolean;
18919
- apiMethods?: ("search" | "create" | "import" | "delete" | "get" | "update" | "upsert" | "list" | "bulk" | "aggregate" | "history" | "restore" | "purge" | "export")[] | undefined;
18963
+ apiMethods?: ("search" | "create" | "import" | "delete" | "update" | "get" | "upsert" | "list" | "bulk" | "aggregate" | "history" | "restore" | "purge" | "export")[] | undefined;
18920
18964
  } | undefined;
18921
- sharingModel?: "full" | "private" | "read" | "public_read" | "public_read_write" | "controlled_by_parent" | "read_write" | undefined;
18965
+ sharingModel?: "private" | "public_read" | "public_read_write" | "controlled_by_parent" | undefined;
18966
+ externalSharingModel?: "private" | "public_read" | "public_read_write" | "controlled_by_parent" | undefined;
18922
18967
  publicSharing?: {
18923
18968
  enabled: boolean;
18924
18969
  allowedAudiences?: ("email" | "public" | "link_only" | "signed_in")[] | undefined;
@@ -19061,7 +19106,7 @@ declare const SysInvitation: Omit<{
19061
19106
  readonly locations: ["list_toolbar"];
19062
19107
  readonly type: "api";
19063
19108
  readonly target: "/api/v1/auth/organization/invite-member";
19064
- readonly visible: "features.multiOrgEnabled != false";
19109
+ readonly visible: "features.organization != false";
19065
19110
  readonly successMessage: "Invitation sent";
19066
19111
  readonly refreshAfter: true;
19067
19112
  readonly params: [{
@@ -19081,7 +19126,7 @@ declare const SysInvitation: Omit<{
19081
19126
  readonly type: "api";
19082
19127
  readonly target: "/api/v1/auth/organization/cancel-invitation";
19083
19128
  readonly recordIdParam: "invitationId";
19084
- readonly visible: "features.multiOrgEnabled != false";
19129
+ readonly visible: "features.organization != false";
19085
19130
  readonly confirmText: "Cancel this invitation? The recipient will no longer be able to accept it.";
19086
19131
  readonly successMessage: "Invitation canceled";
19087
19132
  readonly refreshAfter: true;
@@ -19096,7 +19141,7 @@ declare const SysInvitation: Omit<{
19096
19141
  readonly bodyExtra: {
19097
19142
  readonly resend: true;
19098
19143
  };
19099
- readonly visible: "features.multiOrgEnabled != false";
19144
+ readonly visible: "features.organization != false";
19100
19145
  readonly successMessage: "Invitation resent";
19101
19146
  readonly refreshAfter: true;
19102
19147
  readonly params: [{
@@ -21189,7 +21234,12 @@ declare const SysTeam: Omit<{
21189
21234
  access?: {
21190
21235
  default: "public" | "private";
21191
21236
  } | undefined;
21192
- requiredPermissions?: string[] | undefined;
21237
+ requiredPermissions?: string[] | {
21238
+ read?: string[] | undefined;
21239
+ create?: string[] | undefined;
21240
+ update?: string[] | undefined;
21241
+ delete?: string[] | undefined;
21242
+ } | undefined;
21193
21243
  softDelete?: {
21194
21244
  enabled: boolean;
21195
21245
  field: string;
@@ -21535,9 +21585,10 @@ declare const SysTeam: Omit<{
21535
21585
  trash: boolean;
21536
21586
  mru: boolean;
21537
21587
  clone: boolean;
21538
- apiMethods?: ("search" | "create" | "import" | "delete" | "get" | "update" | "upsert" | "list" | "bulk" | "aggregate" | "history" | "restore" | "purge" | "export")[] | undefined;
21588
+ apiMethods?: ("search" | "create" | "import" | "delete" | "update" | "get" | "upsert" | "list" | "bulk" | "aggregate" | "history" | "restore" | "purge" | "export")[] | undefined;
21539
21589
  } | undefined;
21540
- sharingModel?: "full" | "private" | "read" | "public_read" | "public_read_write" | "controlled_by_parent" | "read_write" | undefined;
21590
+ sharingModel?: "private" | "public_read" | "public_read_write" | "controlled_by_parent" | undefined;
21591
+ externalSharingModel?: "private" | "public_read" | "public_read_write" | "controlled_by_parent" | undefined;
21541
21592
  publicSharing?: {
21542
21593
  enabled: boolean;
21543
21594
  allowedAudiences?: ("email" | "public" | "link_only" | "signed_in")[] | undefined;
@@ -21682,7 +21733,7 @@ declare const SysTeam: Omit<{
21682
21733
  readonly locations: ["list_toolbar"];
21683
21734
  readonly type: "api";
21684
21735
  readonly target: "/api/v1/auth/organization/create-team";
21685
- readonly visible: "features.multiOrgEnabled != false";
21736
+ readonly visible: "features.organization != false";
21686
21737
  readonly successMessage: "Team created";
21687
21738
  readonly refreshAfter: true;
21688
21739
  readonly params: [{
@@ -21704,7 +21755,7 @@ declare const SysTeam: Omit<{
21704
21755
  readonly bodyShape: {
21705
21756
  readonly wrap: "data";
21706
21757
  };
21707
- readonly visible: "features.multiOrgEnabled != false";
21758
+ readonly visible: "features.organization != false";
21708
21759
  readonly successMessage: "Team updated";
21709
21760
  readonly refreshAfter: true;
21710
21761
  readonly params: [{
@@ -21722,7 +21773,7 @@ declare const SysTeam: Omit<{
21722
21773
  readonly type: "api";
21723
21774
  readonly target: "/api/v1/auth/organization/remove-team";
21724
21775
  readonly recordIdParam: "teamId";
21725
- readonly visible: "features.multiOrgEnabled != false";
21776
+ readonly visible: "features.organization != false";
21726
21777
  readonly confirmText: "Delete this team? Members will lose any team-scoped access. This cannot be undone.";
21727
21778
  readonly successMessage: "Team deleted";
21728
21779
  readonly refreshAfter: true;
@@ -23010,7 +23061,12 @@ declare const SysTeamMember: Omit<{
23010
23061
  access?: {
23011
23062
  default: "public" | "private";
23012
23063
  } | undefined;
23013
- requiredPermissions?: string[] | undefined;
23064
+ requiredPermissions?: string[] | {
23065
+ read?: string[] | undefined;
23066
+ create?: string[] | undefined;
23067
+ update?: string[] | undefined;
23068
+ delete?: string[] | undefined;
23069
+ } | undefined;
23014
23070
  softDelete?: {
23015
23071
  enabled: boolean;
23016
23072
  field: string;
@@ -23356,9 +23412,10 @@ declare const SysTeamMember: Omit<{
23356
23412
  trash: boolean;
23357
23413
  mru: boolean;
23358
23414
  clone: boolean;
23359
- apiMethods?: ("search" | "create" | "import" | "delete" | "get" | "update" | "upsert" | "list" | "bulk" | "aggregate" | "history" | "restore" | "purge" | "export")[] | undefined;
23415
+ apiMethods?: ("search" | "create" | "import" | "delete" | "update" | "get" | "upsert" | "list" | "bulk" | "aggregate" | "history" | "restore" | "purge" | "export")[] | undefined;
23360
23416
  } | undefined;
23361
- sharingModel?: "full" | "private" | "read" | "public_read" | "public_read_write" | "controlled_by_parent" | "read_write" | undefined;
23417
+ sharingModel?: "private" | "public_read" | "public_read_write" | "controlled_by_parent" | undefined;
23418
+ externalSharingModel?: "private" | "public_read" | "public_read_write" | "controlled_by_parent" | undefined;
23362
23419
  publicSharing?: {
23363
23420
  enabled: boolean;
23364
23421
  allowedAudiences?: ("email" | "public" | "link_only" | "signed_in")[] | undefined;
@@ -23501,7 +23558,7 @@ declare const SysTeamMember: Omit<{
23501
23558
  readonly locations: ["list_toolbar"];
23502
23559
  readonly type: "api";
23503
23560
  readonly target: "/api/v1/auth/organization/add-team-member";
23504
- readonly visible: "features.multiOrgEnabled != false";
23561
+ readonly visible: "features.organization != false";
23505
23562
  readonly successMessage: "Team member added";
23506
23563
  readonly refreshAfter: true;
23507
23564
  readonly params: [{
@@ -23522,7 +23579,7 @@ declare const SysTeamMember: Omit<{
23522
23579
  readonly locations: ["list_item"];
23523
23580
  readonly type: "api";
23524
23581
  readonly target: "/api/v1/auth/organization/remove-team-member";
23525
- readonly visible: "features.multiOrgEnabled != false";
23582
+ readonly visible: "features.organization != false";
23526
23583
  readonly confirmText: "Remove this user from the team? They will lose any team-scoped access.";
23527
23584
  readonly successMessage: "Team member removed";
23528
23585
  readonly refreshAfter: true;
@@ -24602,7 +24659,12 @@ declare const SysBusinessUnit: Omit<{
24602
24659
  access?: {
24603
24660
  default: "public" | "private";
24604
24661
  } | undefined;
24605
- requiredPermissions?: string[] | undefined;
24662
+ requiredPermissions?: string[] | {
24663
+ read?: string[] | undefined;
24664
+ create?: string[] | undefined;
24665
+ update?: string[] | undefined;
24666
+ delete?: string[] | undefined;
24667
+ } | undefined;
24606
24668
  softDelete?: {
24607
24669
  enabled: boolean;
24608
24670
  field: string;
@@ -24948,9 +25010,10 @@ declare const SysBusinessUnit: Omit<{
24948
25010
  trash: boolean;
24949
25011
  mru: boolean;
24950
25012
  clone: boolean;
24951
- apiMethods?: ("search" | "create" | "import" | "delete" | "get" | "update" | "upsert" | "list" | "bulk" | "aggregate" | "history" | "restore" | "purge" | "export")[] | undefined;
25013
+ apiMethods?: ("search" | "create" | "import" | "delete" | "update" | "get" | "upsert" | "list" | "bulk" | "aggregate" | "history" | "restore" | "purge" | "export")[] | undefined;
24952
25014
  } | undefined;
24953
- sharingModel?: "full" | "private" | "read" | "public_read" | "public_read_write" | "controlled_by_parent" | "read_write" | undefined;
25015
+ sharingModel?: "private" | "public_read" | "public_read_write" | "controlled_by_parent" | undefined;
25016
+ externalSharingModel?: "private" | "public_read" | "public_read_write" | "controlled_by_parent" | undefined;
24954
25017
  publicSharing?: {
24955
25018
  enabled: boolean;
24956
25019
  allowedAudiences?: ("email" | "public" | "link_only" | "signed_in")[] | undefined;
@@ -27901,7 +27964,12 @@ declare const SysBusinessUnitMember: Omit<{
27901
27964
  access?: {
27902
27965
  default: "public" | "private";
27903
27966
  } | undefined;
27904
- requiredPermissions?: string[] | undefined;
27967
+ requiredPermissions?: string[] | {
27968
+ read?: string[] | undefined;
27969
+ create?: string[] | undefined;
27970
+ update?: string[] | undefined;
27971
+ delete?: string[] | undefined;
27972
+ } | undefined;
27905
27973
  softDelete?: {
27906
27974
  enabled: boolean;
27907
27975
  field: string;
@@ -28247,9 +28315,10 @@ declare const SysBusinessUnitMember: Omit<{
28247
28315
  trash: boolean;
28248
28316
  mru: boolean;
28249
28317
  clone: boolean;
28250
- apiMethods?: ("search" | "create" | "import" | "delete" | "get" | "update" | "upsert" | "list" | "bulk" | "aggregate" | "history" | "restore" | "purge" | "export")[] | undefined;
28318
+ apiMethods?: ("search" | "create" | "import" | "delete" | "update" | "get" | "upsert" | "list" | "bulk" | "aggregate" | "history" | "restore" | "purge" | "export")[] | undefined;
28251
28319
  } | undefined;
28252
- sharingModel?: "full" | "private" | "read" | "public_read" | "public_read_write" | "controlled_by_parent" | "read_write" | undefined;
28320
+ sharingModel?: "private" | "public_read" | "public_read_write" | "controlled_by_parent" | undefined;
28321
+ externalSharingModel?: "private" | "public_read" | "public_read_write" | "controlled_by_parent" | undefined;
28253
28322
  publicSharing?: {
28254
28323
  enabled: boolean;
28255
28324
  allowedAudiences?: ("email" | "public" | "link_only" | "signed_in")[] | undefined;
@@ -28378,7 +28447,7 @@ declare const SysBusinessUnitMember: Omit<{
28378
28447
  readonly managedBy: "platform";
28379
28448
  readonly description: "User assignment to a business unit (matrix-org friendly, effective-dated).";
28380
28449
  readonly titleFormat: "{user_id} in {business_unit_id}";
28381
- readonly highlightFields: ["user_id", "business_unit_id", "role_in_business_unit", "is_primary"];
28450
+ readonly highlightFields: ["user_id", "business_unit_id", "function_in_business_unit", "is_primary"];
28382
28451
  readonly fields: {
28383
28452
  readonly id: {
28384
28453
  readonly readonly?: boolean | undefined;
@@ -28929,7 +28998,7 @@ declare const SysBusinessUnitMember: Omit<{
28929
28998
  readonly index?: boolean | undefined;
28930
28999
  readonly type: "lookup";
28931
29000
  };
28932
- readonly role_in_business_unit: {
29001
+ readonly function_in_business_unit: {
28933
29002
  readonly readonly?: boolean | undefined;
28934
29003
  readonly format?: string | undefined;
28935
29004
  options: {
@@ -30353,7 +30422,12 @@ declare const SysApiKey: Omit<{
30353
30422
  access?: {
30354
30423
  default: "public" | "private";
30355
30424
  } | undefined;
30356
- requiredPermissions?: string[] | undefined;
30425
+ requiredPermissions?: string[] | {
30426
+ read?: string[] | undefined;
30427
+ create?: string[] | undefined;
30428
+ update?: string[] | undefined;
30429
+ delete?: string[] | undefined;
30430
+ } | undefined;
30357
30431
  softDelete?: {
30358
30432
  enabled: boolean;
30359
30433
  field: string;
@@ -30699,9 +30773,10 @@ declare const SysApiKey: Omit<{
30699
30773
  trash: boolean;
30700
30774
  mru: boolean;
30701
30775
  clone: boolean;
30702
- apiMethods?: ("search" | "create" | "import" | "delete" | "get" | "update" | "upsert" | "list" | "bulk" | "aggregate" | "history" | "restore" | "purge" | "export")[] | undefined;
30776
+ apiMethods?: ("search" | "create" | "import" | "delete" | "update" | "get" | "upsert" | "list" | "bulk" | "aggregate" | "history" | "restore" | "purge" | "export")[] | undefined;
30703
30777
  } | undefined;
30704
- sharingModel?: "full" | "private" | "read" | "public_read" | "public_read_write" | "controlled_by_parent" | "read_write" | undefined;
30778
+ sharingModel?: "private" | "public_read" | "public_read_write" | "controlled_by_parent" | undefined;
30779
+ externalSharingModel?: "private" | "public_read" | "public_read_write" | "controlled_by_parent" | undefined;
30705
30780
  publicSharing?: {
30706
30781
  enabled: boolean;
30707
30782
  allowedAudiences?: ("email" | "public" | "link_only" | "signed_in")[] | undefined;
@@ -33295,7 +33370,12 @@ declare const SysTwoFactor: Omit<{
33295
33370
  access?: {
33296
33371
  default: "public" | "private";
33297
33372
  } | undefined;
33298
- requiredPermissions?: string[] | undefined;
33373
+ requiredPermissions?: string[] | {
33374
+ read?: string[] | undefined;
33375
+ create?: string[] | undefined;
33376
+ update?: string[] | undefined;
33377
+ delete?: string[] | undefined;
33378
+ } | undefined;
33299
33379
  softDelete?: {
33300
33380
  enabled: boolean;
33301
33381
  field: string;
@@ -33641,9 +33721,10 @@ declare const SysTwoFactor: Omit<{
33641
33721
  trash: boolean;
33642
33722
  mru: boolean;
33643
33723
  clone: boolean;
33644
- apiMethods?: ("search" | "create" | "import" | "delete" | "get" | "update" | "upsert" | "list" | "bulk" | "aggregate" | "history" | "restore" | "purge" | "export")[] | undefined;
33724
+ apiMethods?: ("search" | "create" | "import" | "delete" | "update" | "get" | "upsert" | "list" | "bulk" | "aggregate" | "history" | "restore" | "purge" | "export")[] | undefined;
33645
33725
  } | undefined;
33646
- sharingModel?: "full" | "private" | "read" | "public_read" | "public_read_write" | "controlled_by_parent" | "read_write" | undefined;
33726
+ sharingModel?: "private" | "public_read" | "public_read_write" | "controlled_by_parent" | undefined;
33727
+ externalSharingModel?: "private" | "public_read" | "public_read_write" | "controlled_by_parent" | undefined;
33647
33728
  publicSharing?: {
33648
33729
  enabled: boolean;
33649
33730
  allowedAudiences?: ("email" | "public" | "link_only" | "signed_in")[] | undefined;
@@ -35502,7 +35583,12 @@ declare const SysDeviceCode: Omit<{
35502
35583
  access?: {
35503
35584
  default: "public" | "private";
35504
35585
  } | undefined;
35505
- requiredPermissions?: string[] | undefined;
35586
+ requiredPermissions?: string[] | {
35587
+ read?: string[] | undefined;
35588
+ create?: string[] | undefined;
35589
+ update?: string[] | undefined;
35590
+ delete?: string[] | undefined;
35591
+ } | undefined;
35506
35592
  softDelete?: {
35507
35593
  enabled: boolean;
35508
35594
  field: string;
@@ -35848,9 +35934,10 @@ declare const SysDeviceCode: Omit<{
35848
35934
  trash: boolean;
35849
35935
  mru: boolean;
35850
35936
  clone: boolean;
35851
- apiMethods?: ("search" | "create" | "import" | "delete" | "get" | "update" | "upsert" | "list" | "bulk" | "aggregate" | "history" | "restore" | "purge" | "export")[] | undefined;
35937
+ apiMethods?: ("search" | "create" | "import" | "delete" | "update" | "get" | "upsert" | "list" | "bulk" | "aggregate" | "history" | "restore" | "purge" | "export")[] | undefined;
35852
35938
  } | undefined;
35853
- sharingModel?: "full" | "private" | "read" | "public_read" | "public_read_write" | "controlled_by_parent" | "read_write" | undefined;
35939
+ sharingModel?: "private" | "public_read" | "public_read_write" | "controlled_by_parent" | undefined;
35940
+ externalSharingModel?: "private" | "public_read" | "public_read_write" | "controlled_by_parent" | undefined;
35854
35941
  publicSharing?: {
35855
35942
  enabled: boolean;
35856
35943
  allowedAudiences?: ("email" | "public" | "link_only" | "signed_in")[] | undefined;
@@ -35977,6 +36064,9 @@ declare const SysDeviceCode: Omit<{
35977
36064
  readonly icon: "key-round";
35978
36065
  readonly isSystem: true;
35979
36066
  readonly managedBy: "better-auth";
36067
+ readonly access: {
36068
+ readonly default: "private";
36069
+ };
35980
36070
  readonly protection: {
35981
36071
  readonly lock: "full";
35982
36072
  readonly reason: "Identity table managed by better-auth — see ADR-0010.";
@@ -38518,7 +38608,12 @@ declare const SysUserPreference: Omit<{
38518
38608
  access?: {
38519
38609
  default: "public" | "private";
38520
38610
  } | undefined;
38521
- requiredPermissions?: string[] | undefined;
38611
+ requiredPermissions?: string[] | {
38612
+ read?: string[] | undefined;
38613
+ create?: string[] | undefined;
38614
+ update?: string[] | undefined;
38615
+ delete?: string[] | undefined;
38616
+ } | undefined;
38522
38617
  softDelete?: {
38523
38618
  enabled: boolean;
38524
38619
  field: string;
@@ -38864,9 +38959,10 @@ declare const SysUserPreference: Omit<{
38864
38959
  trash: boolean;
38865
38960
  mru: boolean;
38866
38961
  clone: boolean;
38867
- apiMethods?: ("search" | "create" | "import" | "delete" | "get" | "update" | "upsert" | "list" | "bulk" | "aggregate" | "history" | "restore" | "purge" | "export")[] | undefined;
38962
+ apiMethods?: ("search" | "create" | "import" | "delete" | "update" | "get" | "upsert" | "list" | "bulk" | "aggregate" | "history" | "restore" | "purge" | "export")[] | undefined;
38868
38963
  } | undefined;
38869
- sharingModel?: "full" | "private" | "read" | "public_read" | "public_read_write" | "controlled_by_parent" | "read_write" | undefined;
38964
+ sharingModel?: "private" | "public_read" | "public_read_write" | "controlled_by_parent" | undefined;
38965
+ externalSharingModel?: "private" | "public_read" | "public_read_write" | "controlled_by_parent" | undefined;
38870
38966
  publicSharing?: {
38871
38967
  enabled: boolean;
38872
38968
  allowedAudiences?: ("email" | "public" | "link_only" | "signed_in")[] | undefined;
@@ -40493,7 +40589,12 @@ declare const SysOauthApplication: Omit<{
40493
40589
  access?: {
40494
40590
  default: "public" | "private";
40495
40591
  } | undefined;
40496
- requiredPermissions?: string[] | undefined;
40592
+ requiredPermissions?: string[] | {
40593
+ read?: string[] | undefined;
40594
+ create?: string[] | undefined;
40595
+ update?: string[] | undefined;
40596
+ delete?: string[] | undefined;
40597
+ } | undefined;
40497
40598
  softDelete?: {
40498
40599
  enabled: boolean;
40499
40600
  field: string;
@@ -40839,9 +40940,10 @@ declare const SysOauthApplication: Omit<{
40839
40940
  trash: boolean;
40840
40941
  mru: boolean;
40841
40942
  clone: boolean;
40842
- apiMethods?: ("search" | "create" | "import" | "delete" | "get" | "update" | "upsert" | "list" | "bulk" | "aggregate" | "history" | "restore" | "purge" | "export")[] | undefined;
40943
+ apiMethods?: ("search" | "create" | "import" | "delete" | "update" | "get" | "upsert" | "list" | "bulk" | "aggregate" | "history" | "restore" | "purge" | "export")[] | undefined;
40843
40944
  } | undefined;
40844
- sharingModel?: "full" | "private" | "read" | "public_read" | "public_read_write" | "controlled_by_parent" | "read_write" | undefined;
40945
+ sharingModel?: "private" | "public_read" | "public_read_write" | "controlled_by_parent" | undefined;
40946
+ externalSharingModel?: "private" | "public_read" | "public_read_write" | "controlled_by_parent" | undefined;
40845
40947
  publicSharing?: {
40846
40948
  enabled: boolean;
40847
40949
  allowedAudiences?: ("email" | "public" | "link_only" | "signed_in")[] | undefined;
@@ -47032,7 +47134,12 @@ declare const SysOauthAccessToken: Omit<{
47032
47134
  access?: {
47033
47135
  default: "public" | "private";
47034
47136
  } | undefined;
47035
- requiredPermissions?: string[] | undefined;
47137
+ requiredPermissions?: string[] | {
47138
+ read?: string[] | undefined;
47139
+ create?: string[] | undefined;
47140
+ update?: string[] | undefined;
47141
+ delete?: string[] | undefined;
47142
+ } | undefined;
47036
47143
  softDelete?: {
47037
47144
  enabled: boolean;
47038
47145
  field: string;
@@ -47378,9 +47485,10 @@ declare const SysOauthAccessToken: Omit<{
47378
47485
  trash: boolean;
47379
47486
  mru: boolean;
47380
47487
  clone: boolean;
47381
- apiMethods?: ("search" | "create" | "import" | "delete" | "get" | "update" | "upsert" | "list" | "bulk" | "aggregate" | "history" | "restore" | "purge" | "export")[] | undefined;
47488
+ apiMethods?: ("search" | "create" | "import" | "delete" | "update" | "get" | "upsert" | "list" | "bulk" | "aggregate" | "history" | "restore" | "purge" | "export")[] | undefined;
47382
47489
  } | undefined;
47383
- sharingModel?: "full" | "private" | "read" | "public_read" | "public_read_write" | "controlled_by_parent" | "read_write" | undefined;
47490
+ sharingModel?: "private" | "public_read" | "public_read_write" | "controlled_by_parent" | undefined;
47491
+ externalSharingModel?: "private" | "public_read" | "public_read_write" | "controlled_by_parent" | undefined;
47384
47492
  publicSharing?: {
47385
47493
  enabled: boolean;
47386
47494
  allowedAudiences?: ("email" | "public" | "link_only" | "signed_in")[] | undefined;
@@ -47507,6 +47615,9 @@ declare const SysOauthAccessToken: Omit<{
47507
47615
  readonly icon: "ticket";
47508
47616
  readonly isSystem: true;
47509
47617
  readonly managedBy: "better-auth";
47618
+ readonly access: {
47619
+ readonly default: "private";
47620
+ };
47510
47621
  readonly protection: {
47511
47622
  readonly lock: "full";
47512
47623
  readonly reason: "Identity table managed by better-auth — see ADR-0010.";
@@ -49676,7 +49787,12 @@ declare const SysOauthRefreshToken: Omit<{
49676
49787
  access?: {
49677
49788
  default: "public" | "private";
49678
49789
  } | undefined;
49679
- requiredPermissions?: string[] | undefined;
49790
+ requiredPermissions?: string[] | {
49791
+ read?: string[] | undefined;
49792
+ create?: string[] | undefined;
49793
+ update?: string[] | undefined;
49794
+ delete?: string[] | undefined;
49795
+ } | undefined;
49680
49796
  softDelete?: {
49681
49797
  enabled: boolean;
49682
49798
  field: string;
@@ -50022,9 +50138,10 @@ declare const SysOauthRefreshToken: Omit<{
50022
50138
  trash: boolean;
50023
50139
  mru: boolean;
50024
50140
  clone: boolean;
50025
- apiMethods?: ("search" | "create" | "import" | "delete" | "get" | "update" | "upsert" | "list" | "bulk" | "aggregate" | "history" | "restore" | "purge" | "export")[] | undefined;
50141
+ apiMethods?: ("search" | "create" | "import" | "delete" | "update" | "get" | "upsert" | "list" | "bulk" | "aggregate" | "history" | "restore" | "purge" | "export")[] | undefined;
50026
50142
  } | undefined;
50027
- sharingModel?: "full" | "private" | "read" | "public_read" | "public_read_write" | "controlled_by_parent" | "read_write" | undefined;
50143
+ sharingModel?: "private" | "public_read" | "public_read_write" | "controlled_by_parent" | undefined;
50144
+ externalSharingModel?: "private" | "public_read" | "public_read_write" | "controlled_by_parent" | undefined;
50028
50145
  publicSharing?: {
50029
50146
  enabled: boolean;
50030
50147
  allowedAudiences?: ("email" | "public" | "link_only" | "signed_in")[] | undefined;
@@ -50151,6 +50268,9 @@ declare const SysOauthRefreshToken: Omit<{
50151
50268
  readonly icon: "refresh-cw";
50152
50269
  readonly isSystem: true;
50153
50270
  readonly managedBy: "better-auth";
50271
+ readonly access: {
50272
+ readonly default: "private";
50273
+ };
50154
50274
  readonly protection: {
50155
50275
  readonly lock: "full";
50156
50276
  readonly reason: "Identity table managed by better-auth — see ADR-0010.";
@@ -52503,7 +52623,12 @@ declare const SysOauthConsent: Omit<{
52503
52623
  access?: {
52504
52624
  default: "public" | "private";
52505
52625
  } | undefined;
52506
- requiredPermissions?: string[] | undefined;
52626
+ requiredPermissions?: string[] | {
52627
+ read?: string[] | undefined;
52628
+ create?: string[] | undefined;
52629
+ update?: string[] | undefined;
52630
+ delete?: string[] | undefined;
52631
+ } | undefined;
52507
52632
  softDelete?: {
52508
52633
  enabled: boolean;
52509
52634
  field: string;
@@ -52849,9 +52974,10 @@ declare const SysOauthConsent: Omit<{
52849
52974
  trash: boolean;
52850
52975
  mru: boolean;
52851
52976
  clone: boolean;
52852
- apiMethods?: ("search" | "create" | "import" | "delete" | "get" | "update" | "upsert" | "list" | "bulk" | "aggregate" | "history" | "restore" | "purge" | "export")[] | undefined;
52977
+ apiMethods?: ("search" | "create" | "import" | "delete" | "update" | "get" | "upsert" | "list" | "bulk" | "aggregate" | "history" | "restore" | "purge" | "export")[] | undefined;
52853
52978
  } | undefined;
52854
- sharingModel?: "full" | "private" | "read" | "public_read" | "public_read_write" | "controlled_by_parent" | "read_write" | undefined;
52979
+ sharingModel?: "private" | "public_read" | "public_read_write" | "controlled_by_parent" | undefined;
52980
+ externalSharingModel?: "private" | "public_read" | "public_read_write" | "controlled_by_parent" | undefined;
52855
52981
  publicSharing?: {
52856
52982
  enabled: boolean;
52857
52983
  allowedAudiences?: ("email" | "public" | "link_only" | "signed_in")[] | undefined;
@@ -54591,7 +54717,12 @@ declare const SysJwks: Omit<{
54591
54717
  access?: {
54592
54718
  default: "public" | "private";
54593
54719
  } | undefined;
54594
- requiredPermissions?: string[] | undefined;
54720
+ requiredPermissions?: string[] | {
54721
+ read?: string[] | undefined;
54722
+ create?: string[] | undefined;
54723
+ update?: string[] | undefined;
54724
+ delete?: string[] | undefined;
54725
+ } | undefined;
54595
54726
  softDelete?: {
54596
54727
  enabled: boolean;
54597
54728
  field: string;
@@ -54937,9 +55068,10 @@ declare const SysJwks: Omit<{
54937
55068
  trash: boolean;
54938
55069
  mru: boolean;
54939
55070
  clone: boolean;
54940
- apiMethods?: ("search" | "create" | "import" | "delete" | "get" | "update" | "upsert" | "list" | "bulk" | "aggregate" | "history" | "restore" | "purge" | "export")[] | undefined;
55071
+ apiMethods?: ("search" | "create" | "import" | "delete" | "update" | "get" | "upsert" | "list" | "bulk" | "aggregate" | "history" | "restore" | "purge" | "export")[] | undefined;
54941
55072
  } | undefined;
54942
- sharingModel?: "full" | "private" | "read" | "public_read" | "public_read_write" | "controlled_by_parent" | "read_write" | undefined;
55073
+ sharingModel?: "private" | "public_read" | "public_read_write" | "controlled_by_parent" | undefined;
55074
+ externalSharingModel?: "private" | "public_read" | "public_read_write" | "controlled_by_parent" | undefined;
54943
55075
  publicSharing?: {
54944
55076
  enabled: boolean;
54945
55077
  allowedAudiences?: ("email" | "public" | "link_only" | "signed_in")[] | undefined;
@@ -55066,6 +55198,9 @@ declare const SysJwks: Omit<{
55066
55198
  readonly icon: "key";
55067
55199
  readonly isSystem: true;
55068
55200
  readonly managedBy: "better-auth";
55201
+ readonly access: {
55202
+ readonly default: "private";
55203
+ };
55069
55204
  readonly protection: {
55070
55205
  readonly lock: "full";
55071
55206
  readonly reason: "Identity table managed by better-auth — see ADR-0010.";
@@ -56318,7 +56453,12 @@ declare const SysSsoProvider: Omit<{
56318
56453
  access?: {
56319
56454
  default: "public" | "private";
56320
56455
  } | undefined;
56321
- requiredPermissions?: string[] | undefined;
56456
+ requiredPermissions?: string[] | {
56457
+ read?: string[] | undefined;
56458
+ create?: string[] | undefined;
56459
+ update?: string[] | undefined;
56460
+ delete?: string[] | undefined;
56461
+ } | undefined;
56322
56462
  softDelete?: {
56323
56463
  enabled: boolean;
56324
56464
  field: string;
@@ -56664,9 +56804,10 @@ declare const SysSsoProvider: Omit<{
56664
56804
  trash: boolean;
56665
56805
  mru: boolean;
56666
56806
  clone: boolean;
56667
- apiMethods?: ("search" | "create" | "import" | "delete" | "get" | "update" | "upsert" | "list" | "bulk" | "aggregate" | "history" | "restore" | "purge" | "export")[] | undefined;
56807
+ apiMethods?: ("search" | "create" | "import" | "delete" | "update" | "get" | "upsert" | "list" | "bulk" | "aggregate" | "history" | "restore" | "purge" | "export")[] | undefined;
56668
56808
  } | undefined;
56669
- sharingModel?: "full" | "private" | "read" | "public_read" | "public_read_write" | "controlled_by_parent" | "read_write" | undefined;
56809
+ sharingModel?: "private" | "public_read" | "public_read_write" | "controlled_by_parent" | undefined;
56810
+ externalSharingModel?: "private" | "public_read" | "public_read_write" | "controlled_by_parent" | undefined;
56670
56811
  publicSharing?: {
56671
56812
  enabled: boolean;
56672
56813
  allowedAudiences?: ("email" | "public" | "link_only" | "signed_in")[] | undefined;
@@ -59385,7 +59526,12 @@ declare const SysScimProvider: Omit<{
59385
59526
  access?: {
59386
59527
  default: "public" | "private";
59387
59528
  } | undefined;
59388
- requiredPermissions?: string[] | undefined;
59529
+ requiredPermissions?: string[] | {
59530
+ read?: string[] | undefined;
59531
+ create?: string[] | undefined;
59532
+ update?: string[] | undefined;
59533
+ delete?: string[] | undefined;
59534
+ } | undefined;
59389
59535
  softDelete?: {
59390
59536
  enabled: boolean;
59391
59537
  field: string;
@@ -59731,9 +59877,10 @@ declare const SysScimProvider: Omit<{
59731
59877
  trash: boolean;
59732
59878
  mru: boolean;
59733
59879
  clone: boolean;
59734
- apiMethods?: ("search" | "create" | "import" | "delete" | "get" | "update" | "upsert" | "list" | "bulk" | "aggregate" | "history" | "restore" | "purge" | "export")[] | undefined;
59880
+ apiMethods?: ("search" | "create" | "import" | "delete" | "update" | "get" | "upsert" | "list" | "bulk" | "aggregate" | "history" | "restore" | "purge" | "export")[] | undefined;
59735
59881
  } | undefined;
59736
- sharingModel?: "full" | "private" | "read" | "public_read" | "public_read_write" | "controlled_by_parent" | "read_write" | undefined;
59882
+ sharingModel?: "private" | "public_read" | "public_read_write" | "controlled_by_parent" | undefined;
59883
+ externalSharingModel?: "private" | "public_read" | "public_read_write" | "controlled_by_parent" | undefined;
59737
59884
  publicSharing?: {
59738
59885
  enabled: boolean;
59739
59886
  allowedAudiences?: ("email" | "public" | "link_only" | "signed_in")[] | undefined;
@@ -59860,6 +60007,7 @@ declare const SysScimProvider: Omit<{
59860
60007
  readonly icon: "users";
59861
60008
  readonly isSystem: true;
59862
60009
  readonly managedBy: "better-auth";
60010
+ readonly requiredPermissions: ["manage_platform_settings"];
59863
60011
  readonly protection: {
59864
60012
  readonly lock: "full";
59865
60013
  readonly reason: "Identity table managed by better-auth (@better-auth/scim) — see ADR-0071.";