@objectstack/platform-objects 15.0.0 → 15.1.1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
package/dist/index.js CHANGED
@@ -55,7 +55,7 @@ var SysUser = data.ObjectSchema.create({
55
55
  // "add a teammate" affordance — the Users list is always reachable —
56
56
  // and every add flows through better-auth invitations, never bespoke
57
57
  // sys_user CRUD.
58
- visible: "features.organization != false",
58
+ requiresFeature: "organization",
59
59
  successMessage: "Invitation sent",
60
60
  refreshAfter: true,
61
61
  params: [
@@ -66,9 +66,11 @@ var SysUser = data.ObjectSchema.create({
66
66
  // ── Platform admin operations (require better-auth `admin` plugin) ─
67
67
  //
68
68
  // These actions hit /api/v1/auth/admin/* endpoints that are only
69
- // wired when `auth.plugins.admin` is enabled. When the plugin is
70
- // disabled the actions still render (schema is static) but server
71
- // returns 404. UI surfaces them under the row menu AND the
69
+ // wired when `auth.plugins.admin` is enabled, so each one is gated on
70
+ // `requiresFeature: 'admin'` (#2874) when the plugin is off the UI
71
+ // hides them instead of rendering buttons that 404. SCIM deployments
72
+ // keep them: SCIM forces the admin plugin (and `features.admin`) on
73
+ // (ADR-0071). UI surfaces them under the row menu AND the
72
74
  // record-detail header (`record_header`, overflowing into the ⋯
73
75
  // "More" menu) so platform admins can manage an account from either
74
76
  // the Users list or an open user record — without dropping to SQL or
@@ -81,6 +83,7 @@ var SysUser = data.ObjectSchema.create({
81
83
  locations: ["list_item", "record_header"],
82
84
  type: "api",
83
85
  target: "/api/v1/auth/admin/ban-user",
86
+ requiresFeature: "admin",
84
87
  recordIdParam: "userId",
85
88
  successMessage: "User banned",
86
89
  refreshAfter: true,
@@ -97,6 +100,7 @@ var SysUser = data.ObjectSchema.create({
97
100
  locations: ["list_item", "record_header"],
98
101
  type: "api",
99
102
  target: "/api/v1/auth/admin/unban-user",
103
+ requiresFeature: "admin",
100
104
  recordIdParam: "userId",
101
105
  successMessage: "User unbanned",
102
106
  refreshAfter: true
@@ -112,6 +116,7 @@ var SysUser = data.ObjectSchema.create({
112
116
  locations: ["list_item", "record_header"],
113
117
  type: "api",
114
118
  target: "/api/v1/auth/admin/unlock-user",
119
+ requiresFeature: "admin",
115
120
  recordIdParam: "userId",
116
121
  successMessage: "Account unlocked",
117
122
  refreshAfter: true
@@ -131,7 +136,7 @@ var SysUser = data.ObjectSchema.create({
131
136
  locations: ["list_toolbar"],
132
137
  type: "api",
133
138
  target: "/api/v1/auth/admin/create-user",
134
- visible: "features.admin == true",
139
+ requiresFeature: "admin",
135
140
  successMessage: "User created",
136
141
  refreshAfter: true,
137
142
  params: [
@@ -148,7 +153,7 @@ var SysUser = data.ObjectSchema.create({
148
153
  // otherwise the create-user endpoint rejects a phone with
149
154
  // "Phone numbers require the phoneNumber auth plugin". `features.phoneNumber`
150
155
  // is served in /api/v1/auth/config (getPublicConfig).
151
- visible: "features.phoneNumber == true"
156
+ requiresFeature: "phoneNumber"
152
157
  },
153
158
  { field: "name", required: false },
154
159
  {
@@ -190,6 +195,7 @@ var SysUser = data.ObjectSchema.create({
190
195
  // legacy role scalar), can mint a temporary password, and stamps
191
196
  // must_change_password.
192
197
  target: "/api/v1/auth/admin/set-user-password",
198
+ requiresFeature: "admin",
193
199
  recordIdParam: "userId",
194
200
  successMessage: "Password updated",
195
201
  refreshAfter: false,
@@ -227,6 +233,7 @@ var SysUser = data.ObjectSchema.create({
227
233
  locations: ["list_item", "record_header"],
228
234
  type: "api",
229
235
  target: "/api/v1/auth/admin/set-role",
236
+ requiresFeature: "admin",
230
237
  recordIdParam: "userId",
231
238
  successMessage: "Role updated",
232
239
  refreshAfter: true,
@@ -242,6 +249,7 @@ var SysUser = data.ObjectSchema.create({
242
249
  locations: ["list_item", "record_header"],
243
250
  type: "api",
244
251
  target: "/api/v1/auth/admin/impersonate-user",
252
+ requiresFeature: "admin",
245
253
  recordIdParam: "userId",
246
254
  successMessage: "Now impersonating user",
247
255
  refreshAfter: true,
@@ -359,6 +367,7 @@ var SysUser = data.ObjectSchema.create({
359
367
  type: "api",
360
368
  target: "/api/v1/auth/two-factor/enable",
361
369
  visible: "record.id == ctx.user.id && record.two_factor_enabled != true",
370
+ requiresFeature: "twoFactor",
362
371
  successMessage: "Two-factor authentication enabled. Scan the QR code or paste the otpauth URI into your authenticator app, then verify a code to complete setup.",
363
372
  refreshAfter: true,
364
373
  params: [
@@ -374,6 +383,7 @@ var SysUser = data.ObjectSchema.create({
374
383
  type: "api",
375
384
  target: "/api/v1/auth/two-factor/disable",
376
385
  visible: "record.id == ctx.user.id && record.two_factor_enabled == true",
386
+ requiresFeature: "twoFactor",
377
387
  confirmText: "Turn off two-factor authentication? Your account will be less secure.",
378
388
  successMessage: "Two-factor authentication disabled.",
379
389
  refreshAfter: true,
@@ -390,6 +400,7 @@ var SysUser = data.ObjectSchema.create({
390
400
  type: "api",
391
401
  target: "/api/v1/auth/two-factor/generate-backup-codes",
392
402
  visible: "record.id == ctx.user.id && record.two_factor_enabled == true",
403
+ requiresFeature: "twoFactor",
393
404
  confirmText: "Generate a new set of backup codes? Any previously generated codes will stop working.",
394
405
  successMessage: "New backup codes generated \u2014 save them somewhere safe.",
395
406
  refreshAfter: false,
@@ -1197,7 +1208,7 @@ var SysOrganization = data.ObjectSchema.create({
1197
1208
  // populated by the console/account shells from `/auth/config`;
1198
1209
  // we default to visible when the flag is undefined so we don't
1199
1210
  // accidentally hide the button while auth config is still loading.
1200
- visible: "features.multiOrgEnabled != false",
1211
+ requiresFeature: "multiOrgEnabled",
1201
1212
  params: [
1202
1213
  { field: "name", required: true },
1203
1214
  { field: "slug", required: true },
@@ -1218,7 +1229,7 @@ var SysOrganization = data.ObjectSchema.create({
1218
1229
  // Org-admin actions are multi-org-only; hide them in single-org for
1219
1230
  // consistency with `create_organization` (the org list is empty there,
1220
1231
  // but this also guards direct record-URL access).
1221
- visible: "features.multiOrgEnabled != false",
1232
+ requiresFeature: "multiOrgEnabled",
1222
1233
  successMessage: "Organization updated",
1223
1234
  refreshAfter: true,
1224
1235
  params: [
@@ -1237,7 +1248,7 @@ var SysOrganization = data.ObjectSchema.create({
1237
1248
  type: "api",
1238
1249
  target: "/api/v1/auth/organization/delete",
1239
1250
  recordIdParam: "organizationId",
1240
- visible: "features.multiOrgEnabled != false",
1251
+ requiresFeature: "multiOrgEnabled",
1241
1252
  confirmText: "Delete this organization? All members will lose access immediately. This cannot be undone.",
1242
1253
  successMessage: "Organization deleted",
1243
1254
  refreshAfter: true
@@ -1256,7 +1267,7 @@ var SysOrganization = data.ObjectSchema.create({
1256
1267
  type: "api",
1257
1268
  target: "/api/v1/auth/organization/set-active",
1258
1269
  recordIdParam: "organizationId",
1259
- visible: "features.multiOrgEnabled != false",
1270
+ requiresFeature: "multiOrgEnabled",
1260
1271
  successMessage: "Active organization switched",
1261
1272
  refreshAfter: true
1262
1273
  },
@@ -1273,7 +1284,7 @@ var SysOrganization = data.ObjectSchema.create({
1273
1284
  type: "api",
1274
1285
  target: "/api/v1/auth/organization/leave",
1275
1286
  recordIdParam: "organizationId",
1276
- visible: "features.multiOrgEnabled != false",
1287
+ requiresFeature: "multiOrgEnabled",
1277
1288
  confirmText: "Leave this organization? You will lose access to all of its resources.",
1278
1289
  successMessage: "You have left the organization",
1279
1290
  refreshAfter: true
@@ -1295,7 +1306,7 @@ var SysOrganization = data.ObjectSchema.create({
1295
1306
  type: "api",
1296
1307
  target: "/api/v1/cloud/organizations/{id}/change-slug",
1297
1308
  method: "POST",
1298
- visible: "features.multiOrgEnabled != false",
1309
+ requiresFeature: "multiOrgEnabled",
1299
1310
  confirmText: "Renaming the slug rewrites every platform subdomain for this org and parks the old slug for 90 days. Continue?",
1300
1311
  successMessage: "Organization slug changed",
1301
1312
  refreshAfter: true,
@@ -1433,7 +1444,7 @@ var SysMember = data.ObjectSchema.create({
1433
1444
  // better-auth endpoints resolve the session's active org, which
1434
1445
  // single-org mode now guarantees via plugin-auth's default-org
1435
1446
  // bootstrap. Same gate on every membership mutation below.
1436
- visible: "features.organization != false",
1447
+ requiresFeature: "organization",
1437
1448
  successMessage: "Member added",
1438
1449
  refreshAfter: true,
1439
1450
  params: [
@@ -1451,7 +1462,7 @@ var SysMember = data.ObjectSchema.create({
1451
1462
  type: "api",
1452
1463
  target: "/api/v1/auth/organization/update-member-role",
1453
1464
  recordIdParam: "memberId",
1454
- visible: "features.organization != false",
1465
+ requiresFeature: "organization",
1455
1466
  successMessage: "Member role updated",
1456
1467
  refreshAfter: true,
1457
1468
  params: [
@@ -1468,7 +1479,7 @@ var SysMember = data.ObjectSchema.create({
1468
1479
  type: "api",
1469
1480
  target: "/api/v1/auth/organization/remove-member",
1470
1481
  recordIdParam: "memberIdOrEmail",
1471
- visible: "features.organization != false",
1482
+ requiresFeature: "organization",
1472
1483
  confirmText: "Remove this member from the organization? They will lose access to all org resources.",
1473
1484
  successMessage: "Member removed",
1474
1485
  refreshAfter: true
@@ -1490,7 +1501,10 @@ var SysMember = data.ObjectSchema.create({
1490
1501
  target: "/api/v1/auth/organization/update-member-role",
1491
1502
  recordIdParam: "memberId",
1492
1503
  bodyExtra: { role: "owner" },
1493
- visible: "record.role != 'owner' && features.organization != false",
1504
+ // The residual row predicate stays hand-written; the feature gate is
1505
+ // AND-composed onto it by the requiresFeature lowering.
1506
+ visible: "record.role != 'owner'",
1507
+ requiresFeature: "organization",
1494
1508
  confirmText: "Transfer ownership of this organization to the selected member? You will be demoted to admin and lose owner-only privileges.",
1495
1509
  successMessage: "Ownership transferred",
1496
1510
  refreshAfter: true
@@ -1598,7 +1612,7 @@ var SysInvitation = data.ObjectSchema.create({
1598
1612
  // sys_organization.create_organization). The recipient-side
1599
1613
  // accept/reject actions below stay record-gated — they are
1600
1614
  // unreachable in single-org anyway (no invitation rows exist).
1601
- visible: "features.organization != false",
1615
+ requiresFeature: "organization",
1602
1616
  successMessage: "Invitation sent",
1603
1617
  refreshAfter: true,
1604
1618
  params: [
@@ -1616,7 +1630,7 @@ var SysInvitation = data.ObjectSchema.create({
1616
1630
  type: "api",
1617
1631
  target: "/api/v1/auth/organization/cancel-invitation",
1618
1632
  recordIdParam: "invitationId",
1619
- visible: "features.organization != false",
1633
+ requiresFeature: "organization",
1620
1634
  confirmText: "Cancel this invitation? The recipient will no longer be able to accept it.",
1621
1635
  successMessage: "Invitation canceled",
1622
1636
  refreshAfter: true
@@ -1630,7 +1644,7 @@ var SysInvitation = data.ObjectSchema.create({
1630
1644
  type: "api",
1631
1645
  target: "/api/v1/auth/organization/invite-member",
1632
1646
  bodyExtra: { resend: true },
1633
- visible: "features.organization != false",
1647
+ requiresFeature: "organization",
1634
1648
  successMessage: "Invitation resent",
1635
1649
  refreshAfter: true,
1636
1650
  params: [
@@ -1820,7 +1834,7 @@ var SysTeam = data.ObjectSchema.create({
1820
1834
  // Teams are nested inside organizations — a multi-org-only concept.
1821
1835
  // Gate every team mutation on the multi-org flag so the affordances
1822
1836
  // disappear in single-org (mirrors sys_organization.create_organization).
1823
- visible: "features.organization != false",
1837
+ requiresFeature: "organization",
1824
1838
  successMessage: "Team created",
1825
1839
  refreshAfter: true,
1826
1840
  params: [
@@ -1841,7 +1855,7 @@ var SysTeam = data.ObjectSchema.create({
1841
1855
  target: "/api/v1/auth/organization/update-team",
1842
1856
  recordIdParam: "teamId",
1843
1857
  bodyShape: { wrap: "data" },
1844
- visible: "features.organization != false",
1858
+ requiresFeature: "organization",
1845
1859
  successMessage: "Team updated",
1846
1860
  refreshAfter: true,
1847
1861
  params: [
@@ -1860,7 +1874,7 @@ var SysTeam = data.ObjectSchema.create({
1860
1874
  type: "api",
1861
1875
  target: "/api/v1/auth/organization/remove-team",
1862
1876
  recordIdParam: "teamId",
1863
- visible: "features.organization != false",
1877
+ requiresFeature: "organization",
1864
1878
  confirmText: "Delete this team? Members will lose any team-scoped access. This cannot be undone.",
1865
1879
  successMessage: "Team deleted",
1866
1880
  refreshAfter: true
@@ -1974,7 +1988,7 @@ var SysTeamMember = data.ObjectSchema.create({
1974
1988
  // Team membership lives under organizations — multi-org-only. Gate
1975
1989
  // both mutations so they vanish in single-org (mirrors
1976
1990
  // sys_organization.create_organization).
1977
- visible: "features.organization != false",
1991
+ requiresFeature: "organization",
1978
1992
  successMessage: "Team member added",
1979
1993
  refreshAfter: true,
1980
1994
  params: [
@@ -1995,7 +2009,7 @@ var SysTeamMember = data.ObjectSchema.create({
1995
2009
  locations: ["list_item"],
1996
2010
  type: "api",
1997
2011
  target: "/api/v1/auth/organization/remove-team-member",
1998
- visible: "features.organization != false",
2012
+ requiresFeature: "organization",
1999
2013
  confirmText: "Remove this user from the team? They will lose any team-scoped access.",
2000
2014
  successMessage: "Team member removed",
2001
2015
  refreshAfter: true,
@@ -2551,6 +2565,7 @@ var SysTwoFactor = data.ObjectSchema.create({
2551
2565
  locations: ["list_toolbar"],
2552
2566
  type: "api",
2553
2567
  target: "/api/v1/auth/two-factor/enable",
2568
+ requiresFeature: "twoFactor",
2554
2569
  refreshAfter: true,
2555
2570
  params: [
2556
2571
  { name: "password", label: "Current Password", type: "text", required: true }
@@ -2573,6 +2588,7 @@ var SysTwoFactor = data.ObjectSchema.create({
2573
2588
  locations: ["list_toolbar"],
2574
2589
  type: "api",
2575
2590
  target: "/api/v1/auth/two-factor/disable",
2591
+ requiresFeature: "twoFactor",
2576
2592
  confirmText: "Disable two-factor authentication on your account?",
2577
2593
  successMessage: "2FA disabled",
2578
2594
  refreshAfter: true,
@@ -2588,6 +2604,7 @@ var SysTwoFactor = data.ObjectSchema.create({
2588
2604
  locations: ["list_toolbar", "list_item"],
2589
2605
  type: "api",
2590
2606
  target: "/api/v1/auth/two-factor/generate-backup-codes",
2607
+ requiresFeature: "twoFactor",
2591
2608
  confirmText: "Regenerate backup codes? All previous backup codes will stop working immediately.",
2592
2609
  refreshAfter: true,
2593
2610
  params: [
@@ -2902,6 +2919,7 @@ var SysOauthApplication = data.ObjectSchema.create({
2902
2919
  type: "api",
2903
2920
  method: "POST",
2904
2921
  target: "/api/v1/auth/admin/oauth2/toggle-disabled",
2922
+ requiresFeature: "oidcProvider",
2905
2923
  confirmText: "Disable this OAuth application? Active access/refresh tokens issued to it will continue to be rejected at the token, authorize, and introspect endpoints. Existing integrations will stop working immediately.",
2906
2924
  successMessage: "OAuth application disabled",
2907
2925
  refreshAfter: true,
@@ -2921,6 +2939,7 @@ var SysOauthApplication = data.ObjectSchema.create({
2921
2939
  type: "api",
2922
2940
  method: "POST",
2923
2941
  target: "/api/v1/auth/admin/oauth2/toggle-disabled",
2942
+ requiresFeature: "oidcProvider",
2924
2943
  confirmText: "Re-enable this OAuth application? Token issuance, authorization, and introspection will resume immediately.",
2925
2944
  successMessage: "OAuth application enabled",
2926
2945
  refreshAfter: true,
@@ -2940,6 +2959,7 @@ var SysOauthApplication = data.ObjectSchema.create({
2940
2959
  type: "api",
2941
2960
  method: "POST",
2942
2961
  target: "/api/v1/auth/sys-oauth-application/register",
2962
+ requiresFeature: "oidcProvider",
2943
2963
  refreshAfter: true,
2944
2964
  params: [
2945
2965
  { name: "name", label: "Application Name", type: "text", required: true },
@@ -2971,6 +2991,7 @@ var SysOauthApplication = data.ObjectSchema.create({
2971
2991
  type: "api",
2972
2992
  method: "POST",
2973
2993
  target: "/api/v1/auth/oauth2/client/rotate-secret",
2994
+ requiresFeature: "oidcProvider",
2974
2995
  confirmText: "Rotate this OAuth client's secret? The previous secret will stop working immediately and any integrations using it will break until they are updated with the new secret. The new secret is shown only once.",
2975
2996
  refreshAfter: true,
2976
2997
  params: [
@@ -2995,6 +3016,7 @@ var SysOauthApplication = data.ObjectSchema.create({
2995
3016
  type: "api",
2996
3017
  method: "POST",
2997
3018
  target: "/api/v1/auth/oauth2/delete-client",
3019
+ requiresFeature: "oidcProvider",
2998
3020
  confirmText: "Permanently delete this OAuth application? All issued tokens and consents will be invalidated and integrations using this client_id will stop working immediately. This cannot be undone.",
2999
3021
  successMessage: "OAuth application deleted",
3000
3022
  refreshAfter: true,
@@ -3174,6 +3196,25 @@ var SysOauthApplication = data.ObjectSchema.create({
3174
3196
  description: "OIDC subject type (e.g. public, pairwise)",
3175
3197
  group: "Credentials"
3176
3198
  }),
3199
+ jwks: data.Field.textarea({
3200
+ label: "JWKS",
3201
+ required: false,
3202
+ description: "Client JSON Web Key Set (for private_key_jwt / signed-request verification)",
3203
+ group: "Credentials"
3204
+ }),
3205
+ jwks_uri: data.Field.url({
3206
+ label: "JWKS URI",
3207
+ required: false,
3208
+ description: "URL of the client JSON Web Key Set",
3209
+ group: "Credentials"
3210
+ }),
3211
+ dpop_bound_access_tokens: data.Field.boolean({
3212
+ label: "DPoP-bound Access Tokens",
3213
+ required: false,
3214
+ defaultValue: false,
3215
+ description: "Require access tokens issued to this client to be DPoP-bound (RFC 9449)",
3216
+ group: "Credentials"
3217
+ }),
3177
3218
  // ── Behaviour flags ──────────────────────────────────────────
3178
3219
  disabled: data.Field.boolean({
3179
3220
  label: "Disabled",
@@ -3193,6 +3234,18 @@ var SysOauthApplication = data.ObjectSchema.create({
3193
3234
  description: "Allow the client to call the OIDC end-session endpoint",
3194
3235
  group: "Behaviour"
3195
3236
  }),
3237
+ backchannel_logout_uri: data.Field.url({
3238
+ label: "Back-channel Logout URI",
3239
+ required: false,
3240
+ description: "OIDC back-channel logout endpoint of the client",
3241
+ group: "Behaviour"
3242
+ }),
3243
+ backchannel_logout_session_required: data.Field.boolean({
3244
+ label: "Back-channel Logout Session Required",
3245
+ required: false,
3246
+ description: "Whether the back-channel logout token must include a sid claim",
3247
+ group: "Behaviour"
3248
+ }),
3196
3249
  // ── Software statement (RFC 7591 §2.3) ───────────────────────
3197
3250
  software_id: data.Field.text({
3198
3251
  label: "Software ID",
@@ -3318,6 +3371,22 @@ var SysOauthAccessToken = data.ObjectSchema.create({
3318
3371
  maxLength: 255,
3319
3372
  description: "Caller-supplied correlation identifier"
3320
3373
  }),
3374
+ authorization_code_id: data.Field.text({
3375
+ label: "Authorization Code ID",
3376
+ required: false,
3377
+ maxLength: 255,
3378
+ description: "ID of the authorization-code grant this token originates from"
3379
+ }),
3380
+ resources: data.Field.textarea({
3381
+ label: "Resources",
3382
+ required: false,
3383
+ description: "JSON-serialized list of RFC 8707 resource indicators bound to this token"
3384
+ }),
3385
+ requested_user_info_claims: data.Field.textarea({
3386
+ label: "Requested UserInfo Claims",
3387
+ required: false,
3388
+ description: "JSON-serialized list of OIDC claims requested for the userinfo endpoint"
3389
+ }),
3321
3390
  scopes: data.Field.textarea({
3322
3391
  label: "Scopes",
3323
3392
  required: true,
@@ -3331,6 +3400,16 @@ var SysOauthAccessToken = data.ObjectSchema.create({
3331
3400
  label: "Created At",
3332
3401
  defaultValue: "NOW()",
3333
3402
  readonly: true
3403
+ }),
3404
+ revoked: data.Field.datetime({
3405
+ label: "Revoked At",
3406
+ required: false,
3407
+ description: "Timestamp at which this access token was revoked"
3408
+ }),
3409
+ confirmation: data.Field.textarea({
3410
+ label: "Confirmation",
3411
+ required: false,
3412
+ description: "JSON RFC 7800 cnf claim (e.g. DPoP key thumbprint) binding this token to a key"
3334
3413
  })
3335
3414
  },
3336
3415
  indexes: [
@@ -3338,7 +3417,8 @@ var SysOauthAccessToken = data.ObjectSchema.create({
3338
3417
  { fields: ["client_id"] },
3339
3418
  { fields: ["session_id"] },
3340
3419
  { fields: ["user_id"] },
3341
- { fields: ["refresh_id"] }
3420
+ { fields: ["refresh_id"] },
3421
+ { fields: ["authorization_code_id"] }
3342
3422
  ],
3343
3423
  enable: {
3344
3424
  trackHistory: false,
@@ -3404,6 +3484,22 @@ var SysOauthRefreshToken = data.ObjectSchema.create({
3404
3484
  maxLength: 255,
3405
3485
  description: "Caller-supplied correlation identifier"
3406
3486
  }),
3487
+ authorization_code_id: data.Field.text({
3488
+ label: "Authorization Code ID",
3489
+ required: false,
3490
+ maxLength: 255,
3491
+ description: "ID of the authorization-code grant this token chain originates from"
3492
+ }),
3493
+ resources: data.Field.textarea({
3494
+ label: "Resources",
3495
+ required: false,
3496
+ description: "JSON-serialized list of RFC 8707 resource indicators bound to this token"
3497
+ }),
3498
+ requested_user_info_claims: data.Field.textarea({
3499
+ label: "Requested UserInfo Claims",
3500
+ required: false,
3501
+ description: "JSON-serialized list of OIDC claims requested for the userinfo endpoint"
3502
+ }),
3407
3503
  scopes: data.Field.textarea({
3408
3504
  label: "Scopes",
3409
3505
  required: true,
@@ -3423,17 +3519,38 @@ var SysOauthRefreshToken = data.ObjectSchema.create({
3423
3519
  required: false,
3424
3520
  description: "Timestamp at which this refresh token was revoked"
3425
3521
  }),
3522
+ rotated_at: data.Field.datetime({
3523
+ label: "Rotated At",
3524
+ required: false,
3525
+ description: "Timestamp at which this token was rotated (superseded by a new row)"
3526
+ }),
3527
+ rotation_replay_response: data.Field.textarea({
3528
+ label: "Rotation Replay Response",
3529
+ required: false,
3530
+ description: "Cached token response replayed when the old token is re-presented within the reuse interval"
3531
+ }),
3532
+ rotation_replay_expires_at: data.Field.datetime({
3533
+ label: "Rotation Replay Expires At",
3534
+ required: false,
3535
+ description: "End of the post-rotation reuse interval during which the replay response is served"
3536
+ }),
3426
3537
  auth_time: data.Field.datetime({
3427
3538
  label: "Auth Time",
3428
3539
  required: false,
3429
3540
  description: "When the user originally authenticated for this token chain"
3541
+ }),
3542
+ confirmation: data.Field.textarea({
3543
+ label: "Confirmation",
3544
+ required: false,
3545
+ description: "JSON RFC 7800 cnf claim (e.g. DPoP key thumbprint) binding this token to a key"
3430
3546
  })
3431
3547
  },
3432
3548
  indexes: [
3433
3549
  { fields: ["token"], unique: true },
3434
3550
  { fields: ["client_id"] },
3435
3551
  { fields: ["session_id"] },
3436
- { fields: ["user_id"] }
3552
+ { fields: ["user_id"] },
3553
+ { fields: ["authorization_code_id"] }
3437
3554
  ],
3438
3555
  enable: {
3439
3556
  trackHistory: false,
@@ -3483,6 +3600,16 @@ var SysOauthConsent = data.ObjectSchema.create({
3483
3600
  maxLength: 255,
3484
3601
  description: "Caller-supplied correlation identifier"
3485
3602
  }),
3603
+ resources: data.Field.textarea({
3604
+ label: "Resources",
3605
+ required: false,
3606
+ description: "JSON-serialized list of RFC 8707 resource indicators the consent covers"
3607
+ }),
3608
+ requested_user_info_claims: data.Field.textarea({
3609
+ label: "Requested UserInfo Claims",
3610
+ required: false,
3611
+ description: "JSON-serialized list of OIDC claims the user consented to expose"
3612
+ }),
3486
3613
  scopes: data.Field.textarea({
3487
3614
  label: "Scopes",
3488
3615
  required: true,
@@ -3512,6 +3639,215 @@ var SysOauthConsent = data.ObjectSchema.create({
3512
3639
  mru: false
3513
3640
  }
3514
3641
  });
3642
+ var SysOauthResource = data.ObjectSchema.create({
3643
+ name: "sys_oauth_resource",
3644
+ label: "OAuth Resource",
3645
+ pluralLabel: "OAuth Resources",
3646
+ icon: "server",
3647
+ isSystem: true,
3648
+ managedBy: "better-auth",
3649
+ // ADR-0010 §3.7 — managed by better-auth; tenants may not edit schema,
3650
+ // but may add overlay row-level config. Use `no-overlay` if you need to
3651
+ // forbid sys_metadata overlays entirely.
3652
+ protection: {
3653
+ lock: "full",
3654
+ reason: "Identity table managed by better-auth \u2014 see ADR-0010.",
3655
+ docsUrl: "https://docs.objectstack.ai/adr/0010-metadata-protection"
3656
+ },
3657
+ description: "Registered OAuth protected resources (RFC 8707 resource indicators)",
3658
+ displayNameField: "name",
3659
+ nameField: "name",
3660
+ highlightFields: ["name", "identifier", "disabled"],
3661
+ fields: {
3662
+ id: data.Field.text({
3663
+ label: "ID",
3664
+ required: true,
3665
+ readonly: true
3666
+ }),
3667
+ identifier: data.Field.text({
3668
+ label: "Identifier",
3669
+ required: true,
3670
+ maxLength: 1024,
3671
+ description: "Resource indicator URI presented in the RFC 8707 resource parameter"
3672
+ }),
3673
+ name: data.Field.text({
3674
+ label: "Name",
3675
+ required: true,
3676
+ maxLength: 255
3677
+ }),
3678
+ access_token_ttl: data.Field.number({
3679
+ label: "Access Token TTL",
3680
+ required: false,
3681
+ description: "Access-token lifetime in seconds for this resource (overrides the server default)"
3682
+ }),
3683
+ refresh_token_ttl: data.Field.number({
3684
+ label: "Refresh Token TTL",
3685
+ required: false,
3686
+ description: "Refresh-token lifetime in seconds for this resource (overrides the server default)"
3687
+ }),
3688
+ signing_algorithm: data.Field.text({
3689
+ label: "Signing Algorithm",
3690
+ required: false,
3691
+ maxLength: 32,
3692
+ description: "JWS algorithm used to sign access tokens for this resource"
3693
+ }),
3694
+ signing_key_id: data.Field.text({
3695
+ label: "Signing Key ID",
3696
+ required: false,
3697
+ maxLength: 255,
3698
+ description: "Key id (kid) used to sign access tokens for this resource"
3699
+ }),
3700
+ allowed_scopes: data.Field.textarea({
3701
+ label: "Allowed Scopes",
3702
+ required: false,
3703
+ description: "JSON-serialized list of scopes clients may request for this resource"
3704
+ }),
3705
+ custom_claims: data.Field.textarea({
3706
+ label: "Custom Claims",
3707
+ required: false,
3708
+ description: "JSON object of extra claims stamped on access tokens for this resource"
3709
+ }),
3710
+ dpop_bound_access_tokens_required: data.Field.boolean({
3711
+ label: "DPoP Required",
3712
+ required: false,
3713
+ defaultValue: false,
3714
+ description: "Require access tokens for this resource to be DPoP-bound (RFC 9449)"
3715
+ }),
3716
+ disabled: data.Field.boolean({
3717
+ label: "Disabled",
3718
+ required: false,
3719
+ defaultValue: false
3720
+ }),
3721
+ policy_version: data.Field.number({
3722
+ label: "Policy Version",
3723
+ required: false,
3724
+ defaultValue: 1,
3725
+ description: "Monotonic version of the resource token policy"
3726
+ }),
3727
+ metadata: data.Field.textarea({
3728
+ label: "Metadata",
3729
+ required: false,
3730
+ description: "JSON object of additional resource metadata"
3731
+ }),
3732
+ created_at: data.Field.datetime({
3733
+ label: "Created At",
3734
+ defaultValue: "NOW()",
3735
+ readonly: true
3736
+ }),
3737
+ updated_at: data.Field.datetime({
3738
+ label: "Updated At",
3739
+ defaultValue: "NOW()",
3740
+ readonly: true
3741
+ })
3742
+ },
3743
+ indexes: [
3744
+ { fields: ["identifier"], unique: true }
3745
+ ],
3746
+ enable: {
3747
+ trackHistory: false,
3748
+ searchable: false,
3749
+ apiEnabled: false,
3750
+ apiMethods: [],
3751
+ trash: false,
3752
+ mru: false
3753
+ }
3754
+ });
3755
+ var SysOauthClientResource = data.ObjectSchema.create({
3756
+ name: "sys_oauth_client_resource",
3757
+ label: "OAuth Client Resource",
3758
+ pluralLabel: "OAuth Client Resources",
3759
+ icon: "link",
3760
+ isSystem: true,
3761
+ managedBy: "better-auth",
3762
+ // ADR-0010 §3.7 — managed by better-auth; tenants may not edit schema,
3763
+ // but may add overlay row-level config. Use `no-overlay` if you need to
3764
+ // forbid sys_metadata overlays entirely.
3765
+ protection: {
3766
+ lock: "full",
3767
+ reason: "Identity table managed by better-auth \u2014 see ADR-0010.",
3768
+ docsUrl: "https://docs.objectstack.ai/adr/0010-metadata-protection"
3769
+ },
3770
+ description: "Grants allowing an OAuth client to request tokens for a protected resource",
3771
+ highlightFields: ["client_id", "resource_id"],
3772
+ fields: {
3773
+ id: data.Field.text({
3774
+ label: "ID",
3775
+ required: true,
3776
+ readonly: true
3777
+ }),
3778
+ client_id: data.Field.text({
3779
+ label: "Client ID",
3780
+ required: true,
3781
+ description: "Foreign key to sys_oauth_application.client_id"
3782
+ }),
3783
+ resource_id: data.Field.text({
3784
+ label: "Resource ID",
3785
+ required: true,
3786
+ maxLength: 1024,
3787
+ description: "Foreign key to sys_oauth_resource.identifier"
3788
+ }),
3789
+ metadata: data.Field.textarea({
3790
+ label: "Metadata",
3791
+ required: false,
3792
+ description: "JSON object of additional grant metadata"
3793
+ }),
3794
+ created_at: data.Field.datetime({
3795
+ label: "Created At",
3796
+ defaultValue: "NOW()",
3797
+ readonly: true
3798
+ })
3799
+ },
3800
+ indexes: [
3801
+ { fields: ["client_id"] },
3802
+ { fields: ["resource_id"] }
3803
+ ],
3804
+ enable: {
3805
+ trackHistory: false,
3806
+ searchable: false,
3807
+ apiEnabled: false,
3808
+ apiMethods: [],
3809
+ trash: false,
3810
+ mru: false
3811
+ }
3812
+ });
3813
+ var SysOauthClientAssertion = data.ObjectSchema.create({
3814
+ name: "sys_oauth_client_assertion",
3815
+ label: "OAuth Client Assertion",
3816
+ pluralLabel: "OAuth Client Assertions",
3817
+ icon: "shield-check",
3818
+ isSystem: true,
3819
+ managedBy: "better-auth",
3820
+ // ADR-0010 §3.7 — managed by better-auth; tenants may not edit schema,
3821
+ // but may add overlay row-level config. Use `no-overlay` if you need to
3822
+ // forbid sys_metadata overlays entirely.
3823
+ protection: {
3824
+ lock: "full",
3825
+ reason: "Identity table managed by better-auth \u2014 see ADR-0010.",
3826
+ docsUrl: "https://docs.objectstack.ai/adr/0010-metadata-protection"
3827
+ },
3828
+ description: "Consumed OAuth client-assertion JTIs (RFC 7523 replay prevention)",
3829
+ highlightFields: ["expires_at"],
3830
+ fields: {
3831
+ id: data.Field.text({
3832
+ label: "ID",
3833
+ required: true,
3834
+ readonly: true
3835
+ }),
3836
+ expires_at: data.Field.datetime({
3837
+ label: "Expires At",
3838
+ required: true,
3839
+ description: "Assertion expiry \u2014 rows past this instant are safe to prune"
3840
+ })
3841
+ },
3842
+ enable: {
3843
+ trackHistory: false,
3844
+ searchable: false,
3845
+ apiEnabled: false,
3846
+ apiMethods: [],
3847
+ trash: false,
3848
+ mru: false
3849
+ }
3850
+ });
3515
3851
  var SysJwks = data.ObjectSchema.create({
3516
3852
  name: "sys_jwks",
3517
3853
  label: "JWKS Key",
@@ -3553,6 +3889,21 @@ var SysJwks = data.ObjectSchema.create({
3553
3889
  required: true,
3554
3890
  description: "JSON-serialized JWK private key (encrypted at rest)"
3555
3891
  }),
3892
+ // better-auth 1.7 records the key's signing algorithm and (for EdDSA/EC
3893
+ // keys) its curve alongside the key material, so tokens can advertise the
3894
+ // correct `alg`/`crv` in the JWKS response. Both are optional — legacy rows
3895
+ // minted before 1.7 leave them null and better-auth falls back to the
3896
+ // configured `keyPairConfig.alg` (default `EdDSA`).
3897
+ alg: data.Field.text({
3898
+ label: "Algorithm",
3899
+ required: false,
3900
+ description: "JWK signing algorithm, e.g. `EdDSA` (better-auth 1.7+)"
3901
+ }),
3902
+ crv: data.Field.text({
3903
+ label: "Curve",
3904
+ required: false,
3905
+ description: "JWK curve for EdDSA/EC keys, e.g. `Ed25519` (better-auth 1.7+)"
3906
+ }),
3556
3907
  created_at: data.Field.datetime({
3557
3908
  label: "Created At",
3558
3909
  required: true,
@@ -3595,7 +3946,7 @@ var SysSsoProvider = data.ObjectSchema.create({
3595
3946
  // Together: admins see all env providers; non-admins get 403. better-auth's
3596
3947
  // own endpoints already read via a system context. (Env-only object — no
3597
3948
  // control-plane cross-tenant risk.)
3598
- tenancy: { enabled: false, strategy: "shared" },
3949
+ tenancy: { enabled: false },
3599
3950
  requiredPermissions: ["manage_platform_settings"],
3600
3951
  // ADR-0010 §3.7 — managed by better-auth; tenants may not edit schema.
3601
3952
  protection: {
@@ -4104,24 +4455,6 @@ var SysAttachment = data.ObjectSchema.create({
4104
4455
  required: false,
4105
4456
  group: "File"
4106
4457
  }),
4107
- // ── Sharing ────────────────────────────────────────────────
4108
- share_type: data.Field.select(
4109
- ["viewer", "collaborator", "inferred"],
4110
- {
4111
- label: "Share Type",
4112
- defaultValue: "viewer",
4113
- description: "viewer | collaborator | inferred (inherited from parent record)",
4114
- group: "Sharing"
4115
- }
4116
- ),
4117
- visibility: data.Field.select(
4118
- ["internal", "all_users", "shared_users"],
4119
- {
4120
- label: "Visibility",
4121
- defaultValue: "internal",
4122
- group: "Sharing"
4123
- }
4124
- ),
4125
4458
  // ── Authoring ──────────────────────────────────────────────
4126
4459
  uploaded_by: data.Field.lookup("sys_user", {
4127
4460
  label: "Uploaded By",
@@ -4156,7 +4489,12 @@ var SysAttachment = data.ObjectSchema.create({
4156
4489
  trackHistory: false,
4157
4490
  searchable: true,
4158
4491
  apiEnabled: true,
4159
- trash: true,
4492
+ // [#2970 item 5 / ADR-0049] `trash` is `dead` in the liveness ledger (no
4493
+ // engine soft-delete reader) and attachment deletes ARE hard (#2755): the
4494
+ // reap guard reclaims a file's bytes once its last join row is gone, so a
4495
+ // "restore" would dangle. Declare `false` — the honest state — rather than
4496
+ // claim a restore capability the runtime does not provide.
4497
+ trash: false,
4160
4498
  mru: false,
4161
4499
  clone: false
4162
4500
  }
@@ -6391,7 +6729,12 @@ var enObjects = {
6391
6729
  ban_user: {
6392
6730
  label: "Ban User",
6393
6731
  confirmText: "Ban this user? They will be signed out and unable to sign in until unbanned.",
6394
- successMessage: "User banned"
6732
+ successMessage: "User banned",
6733
+ params: {
6734
+ banReason: {
6735
+ label: "Ban Reason"
6736
+ }
6737
+ }
6395
6738
  },
6396
6739
  unban_user: {
6397
6740
  label: "Unban User",
@@ -6403,15 +6746,46 @@ var enObjects = {
6403
6746
  },
6404
6747
  create_user: {
6405
6748
  label: "Create User",
6406
- successMessage: "User created"
6749
+ successMessage: "User created",
6750
+ params: {
6751
+ phoneNumber: {
6752
+ label: "Phone Number",
6753
+ helpText: "Sign-in phone number (E.164, e.g. +8613800000000). Required when no email is given."
6754
+ },
6755
+ generatePassword: {
6756
+ label: "Generate Temporary Password"
6757
+ },
6758
+ password: {
6759
+ label: "Password (leave empty to generate)"
6760
+ },
6761
+ mustChangePassword: {
6762
+ label: "Require Password Change On First Login"
6763
+ }
6764
+ }
6407
6765
  },
6408
6766
  set_user_password: {
6409
6767
  label: "Set Password",
6410
- successMessage: "Password updated"
6768
+ successMessage: "Password updated",
6769
+ params: {
6770
+ generatePassword: {
6771
+ label: "Generate Temporary Password"
6772
+ },
6773
+ newPassword: {
6774
+ label: "New Password (leave empty to generate)"
6775
+ },
6776
+ mustChangePassword: {
6777
+ label: "Require Password Change On Next Login"
6778
+ }
6779
+ }
6411
6780
  },
6412
6781
  set_user_role: {
6413
6782
  label: "Set Platform Role",
6414
- successMessage: "Role updated"
6783
+ successMessage: "Role updated",
6784
+ params: {
6785
+ role: {
6786
+ label: "Platform Role"
6787
+ }
6788
+ }
6415
6789
  },
6416
6790
  impersonate_user: {
6417
6791
  label: "Impersonate User",
@@ -6424,11 +6798,27 @@ var enObjects = {
6424
6798
  },
6425
6799
  change_my_password: {
6426
6800
  label: "Change Password",
6427
- successMessage: "Password changed"
6801
+ successMessage: "Password changed",
6802
+ params: {
6803
+ currentPassword: {
6804
+ label: "Current Password"
6805
+ },
6806
+ newPassword: {
6807
+ label: "New Password"
6808
+ },
6809
+ revokeOtherSessions: {
6810
+ label: "Sign out other devices"
6811
+ }
6812
+ }
6428
6813
  },
6429
6814
  change_my_email: {
6430
6815
  label: "Change Email",
6431
- successMessage: "Verification email sent \u2014 check the new address to confirm."
6816
+ successMessage: "Verification email sent \u2014 check the new address to confirm.",
6817
+ params: {
6818
+ newEmail: {
6819
+ label: "New Email"
6820
+ }
6821
+ }
6432
6822
  },
6433
6823
  resend_verification_email: {
6434
6824
  label: "Resend Verification Email",
@@ -6437,21 +6827,41 @@ var enObjects = {
6437
6827
  delete_my_account: {
6438
6828
  label: "Delete My Account",
6439
6829
  confirmText: "Permanently delete your account? This cannot be undone \u2014 all your sessions will be terminated and all data you own will be removed per the configured retention policy.",
6440
- successMessage: "Account deleted"
6830
+ successMessage: "Account deleted",
6831
+ params: {
6832
+ password: {
6833
+ label: "Current Password"
6834
+ }
6835
+ }
6441
6836
  },
6442
6837
  enable_two_factor: {
6443
6838
  label: "Enable Two-Factor Auth",
6444
- successMessage: "Two-factor authentication enabled. Scan the QR code or paste the otpauth URI into your authenticator app, then verify a code to complete setup."
6839
+ successMessage: "Two-factor authentication enabled. Scan the QR code or paste the otpauth URI into your authenticator app, then verify a code to complete setup.",
6840
+ params: {
6841
+ password: {
6842
+ label: "Current Password"
6843
+ }
6844
+ }
6445
6845
  },
6446
6846
  disable_two_factor: {
6447
6847
  label: "Disable Two-Factor Auth",
6448
6848
  confirmText: "Turn off two-factor authentication? Your account will be less secure.",
6449
- successMessage: "Two-factor authentication disabled."
6849
+ successMessage: "Two-factor authentication disabled.",
6850
+ params: {
6851
+ password: {
6852
+ label: "Current Password"
6853
+ }
6854
+ }
6450
6855
  },
6451
6856
  generate_backup_codes: {
6452
6857
  label: "Regenerate Backup Codes",
6453
6858
  confirmText: "Generate a new set of backup codes? Any previously generated codes will stop working.",
6454
- successMessage: "New backup codes generated \u2014 save them somewhere safe."
6859
+ successMessage: "New backup codes generated \u2014 save them somewhere safe.",
6860
+ params: {
6861
+ password: {
6862
+ label: "Current Password"
6863
+ }
6864
+ }
6455
6865
  }
6456
6866
  }
6457
6867
  },
@@ -6595,7 +7005,21 @@ var enObjects = {
6595
7005
  },
6596
7006
  _actions: {
6597
7007
  link_social: {
6598
- label: "Link Social Account"
7008
+ label: "Link Social Account",
7009
+ params: {
7010
+ provider: {
7011
+ label: "Provider",
7012
+ options: {
7013
+ google: "Google",
7014
+ github: "GitHub",
7015
+ microsoft: "Microsoft",
7016
+ apple: "Apple",
7017
+ facebook: "Facebook",
7018
+ gitlab: "GitLab",
7019
+ discord: "Discord"
7020
+ }
7021
+ }
7022
+ }
6599
7023
  },
6600
7024
  unlink_account: {
6601
7025
  label: "Unlink Account",
@@ -6728,7 +7152,11 @@ var enObjects = {
6728
7152
  },
6729
7153
  _views: {
6730
7154
  mine: {
6731
- label: "My Memberships"
7155
+ label: "My Memberships",
7156
+ emptyState: {
7157
+ title: "No organizations yet",
7158
+ message: "You haven't joined any organizations."
7159
+ }
6732
7160
  }
6733
7161
  },
6734
7162
  _actions: {
@@ -7148,16 +7576,31 @@ var enObjects = {
7148
7576
  },
7149
7577
  _actions: {
7150
7578
  enable_two_factor: {
7151
- label: "Enable 2FA"
7579
+ label: "Enable 2FA",
7580
+ params: {
7581
+ password: {
7582
+ label: "Current Password"
7583
+ }
7584
+ }
7152
7585
  },
7153
7586
  disable_two_factor: {
7154
7587
  label: "Disable 2FA",
7155
7588
  confirmText: "Disable two-factor authentication on your account?",
7156
- successMessage: "2FA disabled"
7589
+ successMessage: "2FA disabled",
7590
+ params: {
7591
+ password: {
7592
+ label: "Current Password"
7593
+ }
7594
+ }
7157
7595
  },
7158
7596
  regenerate_backup_codes: {
7159
7597
  label: "Regenerate Backup Codes",
7160
- confirmText: "Regenerate backup codes? All previous backup codes will stop working immediately."
7598
+ confirmText: "Regenerate backup codes? All previous backup codes will stop working immediately.",
7599
+ params: {
7600
+ password: {
7601
+ label: "Current Password"
7602
+ }
7603
+ }
7161
7604
  }
7162
7605
  }
7163
7606
  },
@@ -7337,6 +7780,18 @@ var enObjects = {
7337
7780
  label: "Subject Type",
7338
7781
  help: "OIDC subject type (e.g. public, pairwise)"
7339
7782
  },
7783
+ jwks: {
7784
+ label: "JWKS",
7785
+ help: "Client JSON Web Key Set (for private_key_jwt / signed-request verification)"
7786
+ },
7787
+ jwks_uri: {
7788
+ label: "JWKS URI",
7789
+ help: "URL of the client JSON Web Key Set"
7790
+ },
7791
+ dpop_bound_access_tokens: {
7792
+ label: "DPoP-bound Access Tokens",
7793
+ help: "Require access tokens issued to this client to be DPoP-bound (RFC 9449)"
7794
+ },
7340
7795
  disabled: {
7341
7796
  label: "Disabled"
7342
7797
  },
@@ -7348,6 +7803,14 @@ var enObjects = {
7348
7803
  label: "Enable End Session",
7349
7804
  help: "Allow the client to call the OIDC end-session endpoint"
7350
7805
  },
7806
+ backchannel_logout_uri: {
7807
+ label: "Back-channel Logout URI",
7808
+ help: "OIDC back-channel logout endpoint of the client"
7809
+ },
7810
+ backchannel_logout_session_required: {
7811
+ label: "Back-channel Logout Session Required",
7812
+ help: "Whether the back-channel logout token must include a sid claim"
7813
+ },
7351
7814
  software_id: {
7352
7815
  label: "Software ID"
7353
7816
  },
@@ -7399,7 +7862,25 @@ var enObjects = {
7399
7862
  successMessage: "OAuth application enabled"
7400
7863
  },
7401
7864
  create_oauth_application: {
7402
- label: "Register OAuth Application"
7865
+ label: "Register OAuth Application",
7866
+ params: {
7867
+ name: {
7868
+ label: "Application Name"
7869
+ },
7870
+ redirectURLs: {
7871
+ label: "Redirect URLs",
7872
+ helpText: "One URL per line. Must use https:// in production."
7873
+ },
7874
+ type: {
7875
+ label: "Application Type",
7876
+ options: {
7877
+ web: "Web",
7878
+ native: "Native",
7879
+ "user-agent-based": "User-agent based",
7880
+ public: "Public"
7881
+ }
7882
+ }
7883
+ }
7403
7884
  },
7404
7885
  rotate_client_secret: {
7405
7886
  label: "Rotate Client Secret",
@@ -7444,6 +7925,18 @@ var enObjects = {
7444
7925
  label: "Reference ID",
7445
7926
  help: "Caller-supplied correlation identifier"
7446
7927
  },
7928
+ authorization_code_id: {
7929
+ label: "Authorization Code ID",
7930
+ help: "ID of the authorization-code grant this token originates from"
7931
+ },
7932
+ resources: {
7933
+ label: "Resources",
7934
+ help: "JSON-serialized list of RFC 8707 resource indicators bound to this token"
7935
+ },
7936
+ requested_user_info_claims: {
7937
+ label: "Requested UserInfo Claims",
7938
+ help: "JSON-serialized list of OIDC claims requested for the userinfo endpoint"
7939
+ },
7447
7940
  scopes: {
7448
7941
  label: "Scopes",
7449
7942
  help: "JSON-serialized list of scopes granted to this token"
@@ -7453,6 +7946,14 @@ var enObjects = {
7453
7946
  },
7454
7947
  created_at: {
7455
7948
  label: "Created At"
7949
+ },
7950
+ revoked: {
7951
+ label: "Revoked At",
7952
+ help: "Timestamp at which this access token was revoked"
7953
+ },
7954
+ confirmation: {
7955
+ label: "Confirmation",
7956
+ help: "JSON RFC 7800 cnf claim (e.g. DPoP key thumbprint) binding this token to a key"
7456
7957
  }
7457
7958
  }
7458
7959
  },
@@ -7472,42 +7973,172 @@ var enObjects = {
7472
7973
  label: "Client ID",
7473
7974
  help: "Foreign key to sys_oauth_application.client_id"
7474
7975
  },
7475
- session_id: {
7476
- label: "Session",
7477
- help: "Foreign key to sys_session.id"
7976
+ session_id: {
7977
+ label: "Session",
7978
+ help: "Foreign key to sys_session.id"
7979
+ },
7980
+ user_id: {
7981
+ label: "User",
7982
+ help: "Foreign key to sys_user.id"
7983
+ },
7984
+ reference_id: {
7985
+ label: "Reference ID",
7986
+ help: "Caller-supplied correlation identifier"
7987
+ },
7988
+ authorization_code_id: {
7989
+ label: "Authorization Code ID",
7990
+ help: "ID of the authorization-code grant this token chain originates from"
7991
+ },
7992
+ resources: {
7993
+ label: "Resources",
7994
+ help: "JSON-serialized list of RFC 8707 resource indicators bound to this token"
7995
+ },
7996
+ requested_user_info_claims: {
7997
+ label: "Requested UserInfo Claims",
7998
+ help: "JSON-serialized list of OIDC claims requested for the userinfo endpoint"
7999
+ },
8000
+ scopes: {
8001
+ label: "Scopes",
8002
+ help: "JSON-serialized list of scopes granted to this token"
8003
+ },
8004
+ expires_at: {
8005
+ label: "Expires At"
8006
+ },
8007
+ created_at: {
8008
+ label: "Created At"
8009
+ },
8010
+ revoked: {
8011
+ label: "Revoked At",
8012
+ help: "Timestamp at which this refresh token was revoked"
8013
+ },
8014
+ rotated_at: {
8015
+ label: "Rotated At",
8016
+ help: "Timestamp at which this token was rotated (superseded by a new row)"
8017
+ },
8018
+ rotation_replay_response: {
8019
+ label: "Rotation Replay Response",
8020
+ help: "Cached token response replayed when the old token is re-presented within the reuse interval"
8021
+ },
8022
+ rotation_replay_expires_at: {
8023
+ label: "Rotation Replay Expires At",
8024
+ help: "End of the post-rotation reuse interval during which the replay response is served"
8025
+ },
8026
+ auth_time: {
8027
+ label: "Auth Time",
8028
+ help: "When the user originally authenticated for this token chain"
8029
+ },
8030
+ confirmation: {
8031
+ label: "Confirmation",
8032
+ help: "JSON RFC 7800 cnf claim (e.g. DPoP key thumbprint) binding this token to a key"
8033
+ }
8034
+ }
8035
+ },
8036
+ sys_oauth_consent: {
8037
+ label: "OAuth Consent",
8038
+ pluralLabel: "OAuth Consents",
8039
+ description: "User consent records for OAuth client applications",
8040
+ fields: {
8041
+ id: {
8042
+ label: "ID"
8043
+ },
8044
+ client_id: {
8045
+ label: "Client ID",
8046
+ help: "Foreign key to sys_oauth_application.client_id"
8047
+ },
8048
+ user_id: {
8049
+ label: "User",
8050
+ help: "Foreign key to sys_user.id"
8051
+ },
8052
+ reference_id: {
8053
+ label: "Reference ID",
8054
+ help: "Caller-supplied correlation identifier"
8055
+ },
8056
+ resources: {
8057
+ label: "Resources",
8058
+ help: "JSON-serialized list of RFC 8707 resource indicators the consent covers"
8059
+ },
8060
+ requested_user_info_claims: {
8061
+ label: "Requested UserInfo Claims",
8062
+ help: "JSON-serialized list of OIDC claims the user consented to expose"
8063
+ },
8064
+ scopes: {
8065
+ label: "Scopes",
8066
+ help: "JSON-serialized list of scopes the user consented to"
8067
+ },
8068
+ created_at: {
8069
+ label: "Created At"
8070
+ },
8071
+ updated_at: {
8072
+ label: "Updated At"
8073
+ }
8074
+ }
8075
+ },
8076
+ sys_oauth_resource: {
8077
+ label: "OAuth Resource",
8078
+ pluralLabel: "OAuth Resources",
8079
+ description: "Registered OAuth protected resources (RFC 8707 resource indicators)",
8080
+ fields: {
8081
+ id: {
8082
+ label: "ID"
8083
+ },
8084
+ identifier: {
8085
+ label: "Identifier",
8086
+ help: "Resource indicator URI presented in the RFC 8707 resource parameter"
8087
+ },
8088
+ name: {
8089
+ label: "Name"
8090
+ },
8091
+ access_token_ttl: {
8092
+ label: "Access Token TTL",
8093
+ help: "Access-token lifetime in seconds for this resource (overrides the server default)"
8094
+ },
8095
+ refresh_token_ttl: {
8096
+ label: "Refresh Token TTL",
8097
+ help: "Refresh-token lifetime in seconds for this resource (overrides the server default)"
8098
+ },
8099
+ signing_algorithm: {
8100
+ label: "Signing Algorithm",
8101
+ help: "JWS algorithm used to sign access tokens for this resource"
8102
+ },
8103
+ signing_key_id: {
8104
+ label: "Signing Key ID",
8105
+ help: "Key id (kid) used to sign access tokens for this resource"
8106
+ },
8107
+ allowed_scopes: {
8108
+ label: "Allowed Scopes",
8109
+ help: "JSON-serialized list of scopes clients may request for this resource"
7478
8110
  },
7479
- user_id: {
7480
- label: "User",
7481
- help: "Foreign key to sys_user.id"
8111
+ custom_claims: {
8112
+ label: "Custom Claims",
8113
+ help: "JSON object of extra claims stamped on access tokens for this resource"
7482
8114
  },
7483
- reference_id: {
7484
- label: "Reference ID",
7485
- help: "Caller-supplied correlation identifier"
8115
+ dpop_bound_access_tokens_required: {
8116
+ label: "DPoP Required",
8117
+ help: "Require access tokens for this resource to be DPoP-bound (RFC 9449)"
7486
8118
  },
7487
- scopes: {
7488
- label: "Scopes",
7489
- help: "JSON-serialized list of scopes granted to this token"
8119
+ disabled: {
8120
+ label: "Disabled"
7490
8121
  },
7491
- expires_at: {
7492
- label: "Expires At"
8122
+ policy_version: {
8123
+ label: "Policy Version",
8124
+ help: "Monotonic version of the resource token policy"
8125
+ },
8126
+ metadata: {
8127
+ label: "Metadata",
8128
+ help: "JSON object of additional resource metadata"
7493
8129
  },
7494
8130
  created_at: {
7495
8131
  label: "Created At"
7496
8132
  },
7497
- revoked: {
7498
- label: "Revoked At",
7499
- help: "Timestamp at which this refresh token was revoked"
7500
- },
7501
- auth_time: {
7502
- label: "Auth Time",
7503
- help: "When the user originally authenticated for this token chain"
8133
+ updated_at: {
8134
+ label: "Updated At"
7504
8135
  }
7505
8136
  }
7506
8137
  },
7507
- sys_oauth_consent: {
7508
- label: "OAuth Consent",
7509
- pluralLabel: "OAuth Consents",
7510
- description: "User consent records for OAuth client applications",
8138
+ sys_oauth_client_resource: {
8139
+ label: "OAuth Client Resource",
8140
+ pluralLabel: "OAuth Client Resources",
8141
+ description: "Grants allowing an OAuth client to request tokens for a protected resource",
7511
8142
  fields: {
7512
8143
  id: {
7513
8144
  label: "ID"
@@ -7516,23 +8147,30 @@ var enObjects = {
7516
8147
  label: "Client ID",
7517
8148
  help: "Foreign key to sys_oauth_application.client_id"
7518
8149
  },
7519
- user_id: {
7520
- label: "User",
7521
- help: "Foreign key to sys_user.id"
7522
- },
7523
- reference_id: {
7524
- label: "Reference ID",
7525
- help: "Caller-supplied correlation identifier"
8150
+ resource_id: {
8151
+ label: "Resource ID",
8152
+ help: "Foreign key to sys_oauth_resource.identifier"
7526
8153
  },
7527
- scopes: {
7528
- label: "Scopes",
7529
- help: "JSON-serialized list of scopes the user consented to"
8154
+ metadata: {
8155
+ label: "Metadata",
8156
+ help: "JSON object of additional grant metadata"
7530
8157
  },
7531
8158
  created_at: {
7532
8159
  label: "Created At"
8160
+ }
8161
+ }
8162
+ },
8163
+ sys_oauth_client_assertion: {
8164
+ label: "OAuth Client Assertion",
8165
+ pluralLabel: "OAuth Client Assertions",
8166
+ description: "Consumed OAuth client-assertion JTIs (RFC 7523 replay prevention)",
8167
+ fields: {
8168
+ id: {
8169
+ label: "ID"
7533
8170
  },
7534
- updated_at: {
7535
- label: "Updated At"
8171
+ expires_at: {
8172
+ label: "Expires At",
8173
+ help: "Assertion expiry \u2014 rows past this instant are safe to prune"
7536
8174
  }
7537
8175
  }
7538
8176
  },
@@ -7553,6 +8191,14 @@ var enObjects = {
7553
8191
  label: "Private Key",
7554
8192
  help: "JSON-serialized JWK private key (encrypted at rest)"
7555
8193
  },
8194
+ alg: {
8195
+ label: "Algorithm",
8196
+ help: "JWK signing algorithm, e.g. `EdDSA` (better-auth 1.7+)"
8197
+ },
8198
+ crv: {
8199
+ label: "Curve",
8200
+ help: "JWK curve for EdDSA/EC keys, e.g. `Ed25519` (better-auth 1.7+)"
8201
+ },
7556
8202
  created_at: {
7557
8203
  label: "Created At"
7558
8204
  },
@@ -7609,7 +8255,11 @@ var enObjects = {
7609
8255
  },
7610
8256
  _views: {
7611
8257
  recent: {
7612
- label: "Recent"
8258
+ label: "Recent",
8259
+ emptyState: {
8260
+ title: "No events",
8261
+ message: "No notification events have been emitted."
8262
+ }
7613
8263
  },
7614
8264
  by_topic: {
7615
8265
  label: "By Topic"
@@ -7646,23 +8296,6 @@ var enObjects = {
7646
8296
  size: {
7647
8297
  label: "Size (bytes)"
7648
8298
  },
7649
- share_type: {
7650
- label: "Share Type",
7651
- help: "viewer | collaborator | inferred (inherited from parent record)",
7652
- options: {
7653
- viewer: "viewer",
7654
- collaborator: "collaborator",
7655
- inferred: "inferred"
7656
- }
7657
- },
7658
- visibility: {
7659
- label: "Visibility",
7660
- options: {
7661
- internal: "internal",
7662
- all_users: "all_users",
7663
- shared_users: "shared_users"
7664
- }
7665
- },
7666
8299
  uploaded_by: {
7667
8300
  label: "Uploaded By"
7668
8301
  },
@@ -8969,7 +9602,12 @@ var zhCNObjects = {
8969
9602
  ban_user: {
8970
9603
  label: "\u5C01\u7981\u7528\u6237",
8971
9604
  confirmText: "\u8981\u5C01\u7981\u8BE5\u7528\u6237\u5417\uFF1F\u5C01\u7981\u540E\u4F1A\u7ACB\u5373\u767B\u51FA\uFF0C\u4E14\u5728\u89E3\u9664\u5C01\u7981\u524D\u65E0\u6CD5\u518D\u6B21\u767B\u5F55\u3002",
8972
- successMessage: "\u7528\u6237\u5DF2\u5C01\u7981"
9605
+ successMessage: "\u7528\u6237\u5DF2\u5C01\u7981",
9606
+ params: {
9607
+ banReason: {
9608
+ label: "\u5C01\u7981\u539F\u56E0"
9609
+ }
9610
+ }
8973
9611
  },
8974
9612
  unban_user: {
8975
9613
  label: "\u89E3\u9664\u5C01\u7981",
@@ -8981,15 +9619,46 @@ var zhCNObjects = {
8981
9619
  },
8982
9620
  create_user: {
8983
9621
  label: "\u521B\u5EFA\u7528\u6237",
8984
- successMessage: "\u7528\u6237\u5DF2\u521B\u5EFA"
9622
+ successMessage: "\u7528\u6237\u5DF2\u521B\u5EFA",
9623
+ params: {
9624
+ phoneNumber: {
9625
+ label: "\u624B\u673A\u53F7",
9626
+ helpText: "\u767B\u5F55\u624B\u673A\u53F7\uFF08E.164 \u683C\u5F0F\uFF0C\u5982 +8613800000000\uFF09\u3002\u672A\u586B\u5199\u90AE\u7BB1\u65F6\u5FC5\u586B\u3002"
9627
+ },
9628
+ generatePassword: {
9629
+ label: "\u751F\u6210\u4E34\u65F6\u5BC6\u7801"
9630
+ },
9631
+ password: {
9632
+ label: "\u5BC6\u7801\uFF08\u7559\u7A7A\u5219\u81EA\u52A8\u751F\u6210\uFF09"
9633
+ },
9634
+ mustChangePassword: {
9635
+ label: "\u9996\u6B21\u767B\u5F55\u65F6\u5FC5\u987B\u4FEE\u6539\u5BC6\u7801"
9636
+ }
9637
+ }
8985
9638
  },
8986
9639
  set_user_password: {
8987
9640
  label: "\u8BBE\u7F6E\u5BC6\u7801",
8988
- successMessage: "\u5BC6\u7801\u5DF2\u66F4\u65B0"
9641
+ successMessage: "\u5BC6\u7801\u5DF2\u66F4\u65B0",
9642
+ params: {
9643
+ generatePassword: {
9644
+ label: "\u751F\u6210\u4E34\u65F6\u5BC6\u7801"
9645
+ },
9646
+ newPassword: {
9647
+ label: "\u65B0\u5BC6\u7801\uFF08\u7559\u7A7A\u5219\u81EA\u52A8\u751F\u6210\uFF09"
9648
+ },
9649
+ mustChangePassword: {
9650
+ label: "\u4E0B\u6B21\u767B\u5F55\u65F6\u5FC5\u987B\u4FEE\u6539\u5BC6\u7801"
9651
+ }
9652
+ }
8989
9653
  },
8990
9654
  set_user_role: {
8991
9655
  label: "\u8BBE\u7F6E\u5E73\u53F0\u89D2\u8272",
8992
- successMessage: "\u89D2\u8272\u5DF2\u66F4\u65B0"
9656
+ successMessage: "\u89D2\u8272\u5DF2\u66F4\u65B0",
9657
+ params: {
9658
+ role: {
9659
+ label: "\u5E73\u53F0\u89D2\u8272"
9660
+ }
9661
+ }
8993
9662
  },
8994
9663
  impersonate_user: {
8995
9664
  label: "\u6A21\u62DF\u7528\u6237",
@@ -9002,11 +9671,27 @@ var zhCNObjects = {
9002
9671
  },
9003
9672
  change_my_password: {
9004
9673
  label: "\u4FEE\u6539\u5BC6\u7801",
9005
- successMessage: "\u5DF2\u4FEE\u6539\u5BC6\u7801"
9674
+ successMessage: "\u5DF2\u4FEE\u6539\u5BC6\u7801",
9675
+ params: {
9676
+ currentPassword: {
9677
+ label: "\u5F53\u524D\u5BC6\u7801"
9678
+ },
9679
+ newPassword: {
9680
+ label: "\u65B0\u5BC6\u7801"
9681
+ },
9682
+ revokeOtherSessions: {
9683
+ label: "\u767B\u51FA\u5176\u4ED6\u8BBE\u5907"
9684
+ }
9685
+ }
9006
9686
  },
9007
9687
  change_my_email: {
9008
9688
  label: "\u4FEE\u6539\u90AE\u7BB1",
9009
- successMessage: "\u5DF2\u53D1\u9001\u9A8C\u8BC1\u90AE\u4EF6\uFF0C\u8BF7\u524D\u5F80\u65B0\u90AE\u7BB1\u786E\u8BA4\u3002"
9689
+ successMessage: "\u5DF2\u53D1\u9001\u9A8C\u8BC1\u90AE\u4EF6\uFF0C\u8BF7\u524D\u5F80\u65B0\u90AE\u7BB1\u786E\u8BA4\u3002",
9690
+ params: {
9691
+ newEmail: {
9692
+ label: "\u65B0\u90AE\u7BB1"
9693
+ }
9694
+ }
9010
9695
  },
9011
9696
  resend_verification_email: {
9012
9697
  label: "\u91CD\u53D1\u9A8C\u8BC1\u90AE\u4EF6",
@@ -9015,21 +9700,41 @@ var zhCNObjects = {
9015
9700
  delete_my_account: {
9016
9701
  label: "\u5220\u9664\u6211\u7684\u8D26\u53F7",
9017
9702
  confirmText: "\u786E\u5B9A\u8981\u6C38\u4E45\u5220\u9664\u60A8\u7684\u8D26\u6237\u5417\uFF1F\u6B64\u64CD\u4F5C\u65E0\u6CD5\u64A4\u9500\u2014\u2014\u60A8\u7684\u6240\u6709\u4F1A\u8BDD\u90FD\u5C06\u88AB\u7EC8\u6B62\uFF0C\u5E76\u5C06\u6309\u7167\u914D\u7F6E\u7684\u4FDD\u7559\u7B56\u7565\u79FB\u9664\u60A8\u62E5\u6709\u7684\u6240\u6709\u6570\u636E\u3002",
9018
- successMessage: "\u5DF2\u5220\u9664\u8D26\u53F7"
9703
+ successMessage: "\u5DF2\u5220\u9664\u8D26\u53F7",
9704
+ params: {
9705
+ password: {
9706
+ label: "\u5F53\u524D\u5BC6\u7801"
9707
+ }
9708
+ }
9019
9709
  },
9020
9710
  enable_two_factor: {
9021
9711
  label: "\u542F\u7528\u53CC\u56E0\u7D20\u8BA4\u8BC1",
9022
- successMessage: "\u53CC\u56E0\u7D20\u8BA4\u8BC1\u5DF2\u542F\u7528\u3002\u7528\u8EAB\u4EFD\u9A8C\u8BC1\u5668 App \u626B\u63CF\u4E8C\u7EF4\u7801\u6216\u7C98\u8D34 otpauth URI\uFF0C\u7136\u540E\u9A8C\u8BC1\u4E00\u6B21\u52A8\u6001\u7801\u4EE5\u5B8C\u6210\u8BBE\u7F6E\u3002"
9712
+ successMessage: "\u53CC\u56E0\u7D20\u8BA4\u8BC1\u5DF2\u542F\u7528\u3002\u7528\u8EAB\u4EFD\u9A8C\u8BC1\u5668 App \u626B\u63CF\u4E8C\u7EF4\u7801\u6216\u7C98\u8D34 otpauth URI\uFF0C\u7136\u540E\u9A8C\u8BC1\u4E00\u6B21\u52A8\u6001\u7801\u4EE5\u5B8C\u6210\u8BBE\u7F6E\u3002",
9713
+ params: {
9714
+ password: {
9715
+ label: "\u5F53\u524D\u5BC6\u7801"
9716
+ }
9717
+ }
9023
9718
  },
9024
9719
  disable_two_factor: {
9025
9720
  label: "\u505C\u7528\u53CC\u56E0\u7D20\u8BA4\u8BC1",
9026
9721
  confirmText: "\u8981\u5173\u95ED\u53CC\u56E0\u7D20\u8BA4\u8BC1\u5417\uFF1F\u60A8\u7684\u8D26\u6237\u5B89\u5168\u6027\u5C06\u964D\u4F4E\u3002",
9027
- successMessage: "\u53CC\u56E0\u7D20\u8BA4\u8BC1\u5DF2\u505C\u7528\u3002"
9722
+ successMessage: "\u53CC\u56E0\u7D20\u8BA4\u8BC1\u5DF2\u505C\u7528\u3002",
9723
+ params: {
9724
+ password: {
9725
+ label: "\u5F53\u524D\u5BC6\u7801"
9726
+ }
9727
+ }
9028
9728
  },
9029
9729
  generate_backup_codes: {
9030
9730
  label: "\u91CD\u65B0\u751F\u6210\u5907\u7528\u7801",
9031
9731
  confirmText: "\u8981\u751F\u6210\u4E00\u7EC4\u65B0\u7684\u5907\u7528\u7801\u5417\uFF1F\u4E4B\u524D\u751F\u6210\u7684\u5907\u7528\u7801\u5C06\u5168\u90E8\u5931\u6548\u3002",
9032
- successMessage: "\u65B0\u5907\u7528\u7801\u5DF2\u751F\u6210\u2014\u2014\u8BF7\u59A5\u5584\u4FDD\u5B58\u3002"
9732
+ successMessage: "\u65B0\u5907\u7528\u7801\u5DF2\u751F\u6210\u2014\u2014\u8BF7\u59A5\u5584\u4FDD\u5B58\u3002",
9733
+ params: {
9734
+ password: {
9735
+ label: "\u5F53\u524D\u5BC6\u7801"
9736
+ }
9737
+ }
9033
9738
  }
9034
9739
  }
9035
9740
  },
@@ -9173,7 +9878,21 @@ var zhCNObjects = {
9173
9878
  },
9174
9879
  _actions: {
9175
9880
  link_social: {
9176
- label: "\u5173\u8054\u793E\u4EA4\u8D26\u53F7"
9881
+ label: "\u5173\u8054\u793E\u4EA4\u8D26\u53F7",
9882
+ params: {
9883
+ provider: {
9884
+ label: "\u670D\u52A1\u63D0\u4F9B\u5546",
9885
+ options: {
9886
+ google: "Google",
9887
+ github: "GitHub",
9888
+ microsoft: "Microsoft",
9889
+ apple: "Apple",
9890
+ facebook: "Facebook",
9891
+ gitlab: "GitLab",
9892
+ discord: "Discord"
9893
+ }
9894
+ }
9895
+ }
9177
9896
  },
9178
9897
  unlink_account: {
9179
9898
  label: "\u89E3\u9664\u5173\u8054",
@@ -9306,7 +10025,11 @@ var zhCNObjects = {
9306
10025
  },
9307
10026
  _views: {
9308
10027
  mine: {
9309
- label: "My Memberships"
10028
+ label: "My Memberships",
10029
+ emptyState: {
10030
+ title: "No organizations yet",
10031
+ message: "You haven't joined any organizations."
10032
+ }
9310
10033
  }
9311
10034
  },
9312
10035
  _actions: {
@@ -9726,16 +10449,31 @@ var zhCNObjects = {
9726
10449
  },
9727
10450
  _actions: {
9728
10451
  enable_two_factor: {
9729
- label: "\u542F\u7528 2FA"
10452
+ label: "\u542F\u7528 2FA",
10453
+ params: {
10454
+ password: {
10455
+ label: "\u5F53\u524D\u5BC6\u7801"
10456
+ }
10457
+ }
9730
10458
  },
9731
10459
  disable_two_factor: {
9732
10460
  label: "\u505C\u7528 2FA",
9733
10461
  confirmText: "\u8981\u505C\u7528\u4F60\u8D26\u53F7\u4E0A\u7684\u53CC\u56E0\u7D20\u8BA4\u8BC1\u5417\uFF1F",
9734
- successMessage: "2FA \u5DF2\u505C\u7528"
10462
+ successMessage: "2FA \u5DF2\u505C\u7528",
10463
+ params: {
10464
+ password: {
10465
+ label: "\u5F53\u524D\u5BC6\u7801"
10466
+ }
10467
+ }
9735
10468
  },
9736
10469
  regenerate_backup_codes: {
9737
10470
  label: "\u91CD\u65B0\u751F\u6210\u5907\u7528\u7801",
9738
- confirmText: "\u786E\u5B9A\u8981\u91CD\u65B0\u751F\u6210\u5907\u4EFD\u7801\u5417\uFF1F\u6B64\u524D\u7684\u6240\u6709\u5907\u4EFD\u7801\u5C06\u7ACB\u5373\u5931\u6548\u3002"
10471
+ confirmText: "\u786E\u5B9A\u8981\u91CD\u65B0\u751F\u6210\u5907\u4EFD\u7801\u5417\uFF1F\u6B64\u524D\u7684\u6240\u6709\u5907\u4EFD\u7801\u5C06\u7ACB\u5373\u5931\u6548\u3002",
10472
+ params: {
10473
+ password: {
10474
+ label: "\u5F53\u524D\u5BC6\u7801"
10475
+ }
10476
+ }
9739
10477
  }
9740
10478
  }
9741
10479
  },
@@ -9915,6 +10653,18 @@ var zhCNObjects = {
9915
10653
  label: "\u4E3B\u4F53\u7C7B\u578B",
9916
10654
  help: "OIDC \u4E3B\u4F53\u7C7B\u578B\uFF08\u4F8B\u5982 public\u3001pairwise\uFF09"
9917
10655
  },
10656
+ jwks: {
10657
+ label: "JWKS",
10658
+ help: "Client JSON Web Key Set (for private_key_jwt / signed-request verification)"
10659
+ },
10660
+ jwks_uri: {
10661
+ label: "JWKS URI",
10662
+ help: "URL of the client JSON Web Key Set"
10663
+ },
10664
+ dpop_bound_access_tokens: {
10665
+ label: "DPoP-bound Access Tokens",
10666
+ help: "Require access tokens issued to this client to be DPoP-bound (RFC 9449)"
10667
+ },
9918
10668
  disabled: {
9919
10669
  label: "\u5DF2\u7981\u7528"
9920
10670
  },
@@ -9926,6 +10676,14 @@ var zhCNObjects = {
9926
10676
  label: "\u542F\u7528 End Session",
9927
10677
  help: "\u5141\u8BB8\u5BA2\u6237\u7AEF\u8C03\u7528 OIDC end-session \u7AEF\u70B9"
9928
10678
  },
10679
+ backchannel_logout_uri: {
10680
+ label: "Back-channel Logout URI",
10681
+ help: "OIDC back-channel logout endpoint of the client"
10682
+ },
10683
+ backchannel_logout_session_required: {
10684
+ label: "Back-channel Logout Session Required",
10685
+ help: "Whether the back-channel logout token must include a sid claim"
10686
+ },
9929
10687
  software_id: {
9930
10688
  label: "\u8F6F\u4EF6 ID"
9931
10689
  },
@@ -9977,7 +10735,25 @@ var zhCNObjects = {
9977
10735
  successMessage: "OAuth \u5E94\u7528\u5DF2\u542F\u7528"
9978
10736
  },
9979
10737
  create_oauth_application: {
9980
- label: "\u6CE8\u518C OAuth \u5E94\u7528"
10738
+ label: "\u6CE8\u518C OAuth \u5E94\u7528",
10739
+ params: {
10740
+ name: {
10741
+ label: "\u5E94\u7528\u540D\u79F0"
10742
+ },
10743
+ redirectURLs: {
10744
+ label: "\u56DE\u8C03 URL",
10745
+ helpText: "\u6BCF\u884C\u4E00\u4E2A URL\u3002\u751F\u4EA7\u73AF\u5883\u5FC5\u987B\u4F7F\u7528 https://\u3002"
10746
+ },
10747
+ type: {
10748
+ label: "\u5E94\u7528\u7C7B\u578B",
10749
+ options: {
10750
+ web: "Web",
10751
+ native: "\u539F\u751F\u5E94\u7528",
10752
+ "user-agent-based": "\u57FA\u4E8E User-Agent",
10753
+ public: "\u516C\u5171\u5BA2\u6237\u7AEF"
10754
+ }
10755
+ }
10756
+ }
9981
10757
  },
9982
10758
  rotate_client_secret: {
9983
10759
  label: "\u8F6E\u6362 Client Secret",
@@ -10022,6 +10798,18 @@ var zhCNObjects = {
10022
10798
  label: "\u5F15\u7528 ID",
10023
10799
  help: "\u8C03\u7528\u65B9\u63D0\u4F9B\u7684\u5173\u8054\u6807\u8BC6\u7B26"
10024
10800
  },
10801
+ authorization_code_id: {
10802
+ label: "Authorization Code ID",
10803
+ help: "ID of the authorization-code grant this token originates from"
10804
+ },
10805
+ resources: {
10806
+ label: "Resources",
10807
+ help: "JSON-serialized list of RFC 8707 resource indicators bound to this token"
10808
+ },
10809
+ requested_user_info_claims: {
10810
+ label: "Requested UserInfo Claims",
10811
+ help: "JSON-serialized list of OIDC claims requested for the userinfo endpoint"
10812
+ },
10025
10813
  scopes: {
10026
10814
  label: "\u8303\u56F4",
10027
10815
  help: "\u6388\u4E88\u8BE5\u4EE4\u724C\u7684 scopes \u7684 JSON \u5E8F\u5217\u5316\u5217\u8868"
@@ -10031,6 +10819,14 @@ var zhCNObjects = {
10031
10819
  },
10032
10820
  created_at: {
10033
10821
  label: "\u521B\u5EFA\u65F6\u95F4"
10822
+ },
10823
+ revoked: {
10824
+ label: "Revoked At",
10825
+ help: "Timestamp at which this access token was revoked"
10826
+ },
10827
+ confirmation: {
10828
+ label: "Confirmation",
10829
+ help: "JSON RFC 7800 cnf claim (e.g. DPoP key thumbprint) binding this token to a key"
10034
10830
  }
10035
10831
  }
10036
10832
  },
@@ -10062,6 +10858,18 @@ var zhCNObjects = {
10062
10858
  label: "\u5F15\u7528 ID",
10063
10859
  help: "\u8C03\u7528\u65B9\u63D0\u4F9B\u7684\u5173\u8054\u6807\u8BC6\u7B26"
10064
10860
  },
10861
+ authorization_code_id: {
10862
+ label: "Authorization Code ID",
10863
+ help: "ID of the authorization-code grant this token chain originates from"
10864
+ },
10865
+ resources: {
10866
+ label: "Resources",
10867
+ help: "JSON-serialized list of RFC 8707 resource indicators bound to this token"
10868
+ },
10869
+ requested_user_info_claims: {
10870
+ label: "Requested UserInfo Claims",
10871
+ help: "JSON-serialized list of OIDC claims requested for the userinfo endpoint"
10872
+ },
10065
10873
  scopes: {
10066
10874
  label: "\u8303\u56F4",
10067
10875
  help: "\u6388\u4E88\u8BE5\u4EE4\u724C\u7684 scopes \u7684 JSON \u5E8F\u5217\u5316\u5217\u8868"
@@ -10076,9 +10884,25 @@ var zhCNObjects = {
10076
10884
  label: "\u64A4\u9500\u65F6\u95F4",
10077
10885
  help: "\u8BE5\u5237\u65B0\u4EE4\u724C\u88AB\u64A4\u9500\u7684\u65F6\u95F4\u6233"
10078
10886
  },
10887
+ rotated_at: {
10888
+ label: "Rotated At",
10889
+ help: "Timestamp at which this token was rotated (superseded by a new row)"
10890
+ },
10891
+ rotation_replay_response: {
10892
+ label: "Rotation Replay Response",
10893
+ help: "Cached token response replayed when the old token is re-presented within the reuse interval"
10894
+ },
10895
+ rotation_replay_expires_at: {
10896
+ label: "Rotation Replay Expires At",
10897
+ help: "End of the post-rotation reuse interval during which the replay response is served"
10898
+ },
10079
10899
  auth_time: {
10080
10900
  label: "\u8BA4\u8BC1\u65F6\u95F4",
10081
10901
  help: "\u8BE5\u4EE4\u724C\u94FE\u4E2D\u7528\u6237\u6700\u521D\u5B8C\u6210\u8BA4\u8BC1\u7684\u65F6\u95F4"
10902
+ },
10903
+ confirmation: {
10904
+ label: "Confirmation",
10905
+ help: "JSON RFC 7800 cnf claim (e.g. DPoP key thumbprint) binding this token to a key"
10082
10906
  }
10083
10907
  }
10084
10908
  },
@@ -10102,6 +10926,14 @@ var zhCNObjects = {
10102
10926
  label: "\u5F15\u7528 ID",
10103
10927
  help: "\u8C03\u7528\u65B9\u63D0\u4F9B\u7684\u5173\u8054\u6807\u8BC6\u7B26"
10104
10928
  },
10929
+ resources: {
10930
+ label: "Resources",
10931
+ help: "JSON-serialized list of RFC 8707 resource indicators the consent covers"
10932
+ },
10933
+ requested_user_info_claims: {
10934
+ label: "Requested UserInfo Claims",
10935
+ help: "JSON-serialized list of OIDC claims the user consented to expose"
10936
+ },
10105
10937
  scopes: {
10106
10938
  label: "\u8303\u56F4",
10107
10939
  help: "\u7528\u6237\u540C\u610F\u7684 scopes \u7684 JSON \u5E8F\u5217\u5316\u5217\u8868"
@@ -10114,6 +10946,107 @@ var zhCNObjects = {
10114
10946
  }
10115
10947
  }
10116
10948
  },
10949
+ sys_oauth_resource: {
10950
+ label: "OAuth Resource",
10951
+ pluralLabel: "OAuth Resources",
10952
+ description: "Registered OAuth protected resources (RFC 8707 resource indicators)",
10953
+ fields: {
10954
+ id: {
10955
+ label: "ID"
10956
+ },
10957
+ identifier: {
10958
+ label: "Identifier",
10959
+ help: "Resource indicator URI presented in the RFC 8707 resource parameter"
10960
+ },
10961
+ name: {
10962
+ label: "Name"
10963
+ },
10964
+ access_token_ttl: {
10965
+ label: "Access Token TTL",
10966
+ help: "Access-token lifetime in seconds for this resource (overrides the server default)"
10967
+ },
10968
+ refresh_token_ttl: {
10969
+ label: "Refresh Token TTL",
10970
+ help: "Refresh-token lifetime in seconds for this resource (overrides the server default)"
10971
+ },
10972
+ signing_algorithm: {
10973
+ label: "Signing Algorithm",
10974
+ help: "JWS algorithm used to sign access tokens for this resource"
10975
+ },
10976
+ signing_key_id: {
10977
+ label: "Signing Key ID",
10978
+ help: "Key id (kid) used to sign access tokens for this resource"
10979
+ },
10980
+ allowed_scopes: {
10981
+ label: "Allowed Scopes",
10982
+ help: "JSON-serialized list of scopes clients may request for this resource"
10983
+ },
10984
+ custom_claims: {
10985
+ label: "Custom Claims",
10986
+ help: "JSON object of extra claims stamped on access tokens for this resource"
10987
+ },
10988
+ dpop_bound_access_tokens_required: {
10989
+ label: "DPoP Required",
10990
+ help: "Require access tokens for this resource to be DPoP-bound (RFC 9449)"
10991
+ },
10992
+ disabled: {
10993
+ label: "Disabled"
10994
+ },
10995
+ policy_version: {
10996
+ label: "Policy Version",
10997
+ help: "Monotonic version of the resource token policy"
10998
+ },
10999
+ metadata: {
11000
+ label: "Metadata",
11001
+ help: "JSON object of additional resource metadata"
11002
+ },
11003
+ created_at: {
11004
+ label: "Created At"
11005
+ },
11006
+ updated_at: {
11007
+ label: "Updated At"
11008
+ }
11009
+ }
11010
+ },
11011
+ sys_oauth_client_resource: {
11012
+ label: "OAuth Client Resource",
11013
+ pluralLabel: "OAuth Client Resources",
11014
+ description: "Grants allowing an OAuth client to request tokens for a protected resource",
11015
+ fields: {
11016
+ id: {
11017
+ label: "ID"
11018
+ },
11019
+ client_id: {
11020
+ label: "Client ID",
11021
+ help: "Foreign key to sys_oauth_application.client_id"
11022
+ },
11023
+ resource_id: {
11024
+ label: "Resource ID",
11025
+ help: "Foreign key to sys_oauth_resource.identifier"
11026
+ },
11027
+ metadata: {
11028
+ label: "Metadata",
11029
+ help: "JSON object of additional grant metadata"
11030
+ },
11031
+ created_at: {
11032
+ label: "Created At"
11033
+ }
11034
+ }
11035
+ },
11036
+ sys_oauth_client_assertion: {
11037
+ label: "OAuth Client Assertion",
11038
+ pluralLabel: "OAuth Client Assertions",
11039
+ description: "Consumed OAuth client-assertion JTIs (RFC 7523 replay prevention)",
11040
+ fields: {
11041
+ id: {
11042
+ label: "ID"
11043
+ },
11044
+ expires_at: {
11045
+ label: "Expires At",
11046
+ help: "Assertion expiry \u2014 rows past this instant are safe to prune"
11047
+ }
11048
+ }
11049
+ },
10117
11050
  sys_jwks: {
10118
11051
  label: "\u7B7E\u540D\u5BC6\u94A5 (JWKS)",
10119
11052
  pluralLabel: "\u7B7E\u540D\u5BC6\u94A5 (JWKS)",
@@ -10131,6 +11064,14 @@ var zhCNObjects = {
10131
11064
  label: "\u79C1\u94A5",
10132
11065
  help: "JWK \u79C1\u94A5\u7684 JSON \u5E8F\u5217\u5316\u5185\u5BB9\uFF08\u9759\u6001\u5B58\u50A8\u65F6\u52A0\u5BC6\uFF09"
10133
11066
  },
11067
+ alg: {
11068
+ label: "\u7B97\u6CD5",
11069
+ help: "JWK \u7B7E\u540D\u7B97\u6CD5\uFF0C\u5982 `EdDSA`\uFF08better-auth 1.7+\uFF09"
11070
+ },
11071
+ crv: {
11072
+ label: "\u66F2\u7EBF",
11073
+ help: "EdDSA/EC \u5BC6\u94A5\u4F7F\u7528\u7684 JWK \u66F2\u7EBF\uFF0C\u5982 `Ed25519`\uFF08better-auth 1.7+\uFF09"
11074
+ },
10134
11075
  created_at: {
10135
11076
  label: "\u521B\u5EFA\u65F6\u95F4"
10136
11077
  },
@@ -10187,7 +11128,11 @@ var zhCNObjects = {
10187
11128
  },
10188
11129
  _views: {
10189
11130
  recent: {
10190
- label: "Recent"
11131
+ label: "Recent",
11132
+ emptyState: {
11133
+ title: "No events",
11134
+ message: "No notification events have been emitted."
11135
+ }
10191
11136
  },
10192
11137
  by_topic: {
10193
11138
  label: "By Topic"
@@ -10224,23 +11169,6 @@ var zhCNObjects = {
10224
11169
  size: {
10225
11170
  label: "\u5927\u5C0F\uFF08\u5B57\u8282\uFF09"
10226
11171
  },
10227
- share_type: {
10228
- label: "\u5171\u4EAB\u7C7B\u578B",
10229
- help: "viewer | collaborator | inferred\uFF08\u7EE7\u627F\u81EA\u7236\u8BB0\u5F55\uFF09",
10230
- options: {
10231
- viewer: "\u67E5\u770B\u8005",
10232
- collaborator: "\u534F\u4F5C\u8005",
10233
- inferred: "\u63A8\u65AD"
10234
- }
10235
- },
10236
- visibility: {
10237
- label: "\u53EF\u89C1\u6027",
10238
- options: {
10239
- internal: "\u5185\u90E8",
10240
- all_users: "\u5168\u90E8\u7528\u6237",
10241
- shared_users: "\u5171\u4EAB\u7528\u6237"
10242
- }
10243
- },
10244
11172
  uploaded_by: {
10245
11173
  label: "\u4E0A\u4F20\u4EBA"
10246
11174
  },
@@ -11511,7 +12439,12 @@ var jaJPObjects = {
11511
12439
  ban_user: {
11512
12440
  label: "\u5229\u7528\u505C\u6B62",
11513
12441
  confirmText: "\u3053\u306E\u30E6\u30FC\u30B6\u30FC\u3092\u5229\u7528\u505C\u6B62\u306B\u3057\u307E\u3059\u304B\uFF1F\u5229\u7528\u505C\u6B62\u306B\u306A\u308B\u3068\u30B5\u30A4\u30F3\u30A2\u30A6\u30C8\u3055\u308C\u3001\u89E3\u9664\u3055\u308C\u308B\u307E\u3067\u30B5\u30A4\u30F3\u30A4\u30F3\u3067\u304D\u306A\u304F\u306A\u308A\u307E\u3059\u3002",
11514
- successMessage: "\u30E6\u30FC\u30B6\u30FC\u3092\u5229\u7528\u505C\u6B62\u306B\u3057\u307E\u3057\u305F"
12442
+ successMessage: "\u30E6\u30FC\u30B6\u30FC\u3092\u5229\u7528\u505C\u6B62\u306B\u3057\u307E\u3057\u305F",
12443
+ params: {
12444
+ banReason: {
12445
+ label: "\u5229\u7528\u505C\u6B62\u306E\u7406\u7531"
12446
+ }
12447
+ }
11515
12448
  },
11516
12449
  unban_user: {
11517
12450
  label: "\u5229\u7528\u505C\u6B62\u3092\u89E3\u9664",
@@ -11523,15 +12456,46 @@ var jaJPObjects = {
11523
12456
  },
11524
12457
  create_user: {
11525
12458
  label: "\u30E6\u30FC\u30B6\u30FC\u3092\u4F5C\u6210",
11526
- successMessage: "\u30E6\u30FC\u30B6\u30FC\u3092\u4F5C\u6210\u3057\u307E\u3057\u305F"
12459
+ successMessage: "\u30E6\u30FC\u30B6\u30FC\u3092\u4F5C\u6210\u3057\u307E\u3057\u305F",
12460
+ params: {
12461
+ phoneNumber: {
12462
+ label: "\u96FB\u8A71\u756A\u53F7",
12463
+ helpText: "\u30B5\u30A4\u30F3\u30A4\u30F3\u7528\u306E\u96FB\u8A71\u756A\u53F7\uFF08E.164 \u5F62\u5F0F\u3001\u4F8B: +8613800000000\uFF09\u3002\u30E1\u30FC\u30EB\u30A2\u30C9\u30EC\u30B9\u3092\u6307\u5B9A\u3057\u306A\u3044\u5834\u5408\u306F\u5FC5\u9808\u3067\u3059\u3002"
12464
+ },
12465
+ generatePassword: {
12466
+ label: "\u4E00\u6642\u30D1\u30B9\u30EF\u30FC\u30C9\u3092\u751F\u6210"
12467
+ },
12468
+ password: {
12469
+ label: "\u30D1\u30B9\u30EF\u30FC\u30C9\uFF08\u7A7A\u6B04\u306E\u5834\u5408\u306F\u81EA\u52D5\u751F\u6210\uFF09"
12470
+ },
12471
+ mustChangePassword: {
12472
+ label: "\u521D\u56DE\u30B5\u30A4\u30F3\u30A4\u30F3\u6642\u306B\u30D1\u30B9\u30EF\u30FC\u30C9\u5909\u66F4\u3092\u5FC5\u9808\u306B\u3059\u308B"
12473
+ }
12474
+ }
11527
12475
  },
11528
12476
  set_user_password: {
11529
12477
  label: "\u30D1\u30B9\u30EF\u30FC\u30C9\u3092\u8A2D\u5B9A",
11530
- successMessage: "\u30D1\u30B9\u30EF\u30FC\u30C9\u3092\u66F4\u65B0\u3057\u307E\u3057\u305F"
12478
+ successMessage: "\u30D1\u30B9\u30EF\u30FC\u30C9\u3092\u66F4\u65B0\u3057\u307E\u3057\u305F",
12479
+ params: {
12480
+ generatePassword: {
12481
+ label: "\u4E00\u6642\u30D1\u30B9\u30EF\u30FC\u30C9\u3092\u751F\u6210"
12482
+ },
12483
+ newPassword: {
12484
+ label: "\u65B0\u3057\u3044\u30D1\u30B9\u30EF\u30FC\u30C9\uFF08\u7A7A\u6B04\u306E\u5834\u5408\u306F\u81EA\u52D5\u751F\u6210\uFF09"
12485
+ },
12486
+ mustChangePassword: {
12487
+ label: "\u6B21\u56DE\u30B5\u30A4\u30F3\u30A4\u30F3\u6642\u306B\u30D1\u30B9\u30EF\u30FC\u30C9\u5909\u66F4\u3092\u5FC5\u9808\u306B\u3059\u308B"
12488
+ }
12489
+ }
11531
12490
  },
11532
12491
  set_user_role: {
11533
12492
  label: "\u30D7\u30E9\u30C3\u30C8\u30D5\u30A9\u30FC\u30E0\u30ED\u30FC\u30EB\u3092\u8A2D\u5B9A",
11534
- successMessage: "\u30ED\u30FC\u30EB\u3092\u66F4\u65B0\u3057\u307E\u3057\u305F"
12493
+ successMessage: "\u30ED\u30FC\u30EB\u3092\u66F4\u65B0\u3057\u307E\u3057\u305F",
12494
+ params: {
12495
+ role: {
12496
+ label: "\u30D7\u30E9\u30C3\u30C8\u30D5\u30A9\u30FC\u30E0\u30ED\u30FC\u30EB"
12497
+ }
12498
+ }
11535
12499
  },
11536
12500
  impersonate_user: {
11537
12501
  label: "\u4EE3\u7406\u30ED\u30B0\u30A4\u30F3",
@@ -11544,11 +12508,27 @@ var jaJPObjects = {
11544
12508
  },
11545
12509
  change_my_password: {
11546
12510
  label: "\u30D1\u30B9\u30EF\u30FC\u30C9\u5909\u66F4",
11547
- successMessage: "\u30D1\u30B9\u30EF\u30FC\u30C9\u3092\u5909\u66F4\u3057\u307E\u3057\u305F"
12511
+ successMessage: "\u30D1\u30B9\u30EF\u30FC\u30C9\u3092\u5909\u66F4\u3057\u307E\u3057\u305F",
12512
+ params: {
12513
+ currentPassword: {
12514
+ label: "\u73FE\u5728\u306E\u30D1\u30B9\u30EF\u30FC\u30C9"
12515
+ },
12516
+ newPassword: {
12517
+ label: "\u65B0\u3057\u3044\u30D1\u30B9\u30EF\u30FC\u30C9"
12518
+ },
12519
+ revokeOtherSessions: {
12520
+ label: "\u4ED6\u306E\u30C7\u30D0\u30A4\u30B9\u304B\u3089\u30B5\u30A4\u30F3\u30A2\u30A6\u30C8"
12521
+ }
12522
+ }
11548
12523
  },
11549
12524
  change_my_email: {
11550
12525
  label: "\u30E1\u30FC\u30EB\u30A2\u30C9\u30EC\u30B9\u5909\u66F4",
11551
- successMessage: "\u78BA\u8A8D\u30E1\u30FC\u30EB\u3092\u9001\u4FE1\u3057\u307E\u3057\u305F\u3002\u65B0\u3057\u3044\u30E1\u30FC\u30EB\u30A2\u30C9\u30EC\u30B9\u3067\u78BA\u8A8D\u3057\u3066\u304F\u3060\u3055\u3044\u3002"
12526
+ successMessage: "\u78BA\u8A8D\u30E1\u30FC\u30EB\u3092\u9001\u4FE1\u3057\u307E\u3057\u305F\u3002\u65B0\u3057\u3044\u30E1\u30FC\u30EB\u30A2\u30C9\u30EC\u30B9\u3067\u78BA\u8A8D\u3057\u3066\u304F\u3060\u3055\u3044\u3002",
12527
+ params: {
12528
+ newEmail: {
12529
+ label: "\u65B0\u3057\u3044\u30E1\u30FC\u30EB\u30A2\u30C9\u30EC\u30B9"
12530
+ }
12531
+ }
11552
12532
  },
11553
12533
  resend_verification_email: {
11554
12534
  label: "\u78BA\u8A8D\u30E1\u30FC\u30EB\u3092\u518D\u9001",
@@ -11557,21 +12537,41 @@ var jaJPObjects = {
11557
12537
  delete_my_account: {
11558
12538
  label: "\u30A2\u30AB\u30A6\u30F3\u30C8\u524A\u9664",
11559
12539
  confirmText: "\u30A2\u30AB\u30A6\u30F3\u30C8\u3092\u5B8C\u5168\u306B\u524A\u9664\u3057\u307E\u3059\u304B\uFF1F\u3053\u306E\u64CD\u4F5C\u306F\u5143\u306B\u623B\u305B\u307E\u305B\u3093\u3002\u3059\u3079\u3066\u306E\u30BB\u30C3\u30B7\u30E7\u30F3\u304C\u7D42\u4E86\u3055\u308C\u3001\u8A2D\u5B9A\u3055\u308C\u305F\u4FDD\u6301\u30DD\u30EA\u30B7\u30FC\u306B\u5F93\u3063\u3066\u6240\u6709\u3059\u308B\u3059\u3079\u3066\u306E\u30C7\u30FC\u30BF\u304C\u524A\u9664\u3055\u308C\u307E\u3059\u3002",
11560
- successMessage: "\u30A2\u30AB\u30A6\u30F3\u30C8\u3092\u524A\u9664\u3057\u307E\u3057\u305F"
12540
+ successMessage: "\u30A2\u30AB\u30A6\u30F3\u30C8\u3092\u524A\u9664\u3057\u307E\u3057\u305F",
12541
+ params: {
12542
+ password: {
12543
+ label: "\u73FE\u5728\u306E\u30D1\u30B9\u30EF\u30FC\u30C9"
12544
+ }
12545
+ }
11561
12546
  },
11562
12547
  enable_two_factor: {
11563
12548
  label: "\u4E8C\u8981\u7D20\u8A8D\u8A3C\u3092\u6709\u52B9\u5316",
11564
- successMessage: "\u4E8C\u8981\u7D20\u8A8D\u8A3C\u3092\u6709\u52B9\u306B\u3057\u307E\u3057\u305F\u3002\u8A8D\u8A3C\u30A2\u30D7\u30EA\u3067 QR \u30B3\u30FC\u30C9\u3092\u30B9\u30AD\u30E3\u30F3\u3059\u308B\u304B otpauth URI \u3092\u8CBC\u308A\u4ED8\u3051\u3001\u30B3\u30FC\u30C9\u3092\u691C\u8A3C\u3057\u3066\u8A2D\u5B9A\u3092\u5B8C\u4E86\u3057\u3066\u304F\u3060\u3055\u3044\u3002"
12549
+ successMessage: "\u4E8C\u8981\u7D20\u8A8D\u8A3C\u3092\u6709\u52B9\u306B\u3057\u307E\u3057\u305F\u3002\u8A8D\u8A3C\u30A2\u30D7\u30EA\u3067 QR \u30B3\u30FC\u30C9\u3092\u30B9\u30AD\u30E3\u30F3\u3059\u308B\u304B otpauth URI \u3092\u8CBC\u308A\u4ED8\u3051\u3001\u30B3\u30FC\u30C9\u3092\u691C\u8A3C\u3057\u3066\u8A2D\u5B9A\u3092\u5B8C\u4E86\u3057\u3066\u304F\u3060\u3055\u3044\u3002",
12550
+ params: {
12551
+ password: {
12552
+ label: "\u73FE\u5728\u306E\u30D1\u30B9\u30EF\u30FC\u30C9"
12553
+ }
12554
+ }
11565
12555
  },
11566
12556
  disable_two_factor: {
11567
12557
  label: "\u4E8C\u8981\u7D20\u8A8D\u8A3C\u3092\u7121\u52B9\u5316",
11568
12558
  confirmText: "\u4E8C\u8981\u7D20\u8A8D\u8A3C\u3092\u30AA\u30D5\u306B\u3057\u307E\u3059\u304B\uFF1F\u30A2\u30AB\u30A6\u30F3\u30C8\u306E\u5B89\u5168\u6027\u304C\u4F4E\u4E0B\u3057\u307E\u3059\u3002",
11569
- successMessage: "\u4E8C\u8981\u7D20\u8A8D\u8A3C\u3092\u7121\u52B9\u306B\u3057\u307E\u3057\u305F\u3002"
12559
+ successMessage: "\u4E8C\u8981\u7D20\u8A8D\u8A3C\u3092\u7121\u52B9\u306B\u3057\u307E\u3057\u305F\u3002",
12560
+ params: {
12561
+ password: {
12562
+ label: "\u73FE\u5728\u306E\u30D1\u30B9\u30EF\u30FC\u30C9"
12563
+ }
12564
+ }
11570
12565
  },
11571
12566
  generate_backup_codes: {
11572
12567
  label: "\u30D0\u30C3\u30AF\u30A2\u30C3\u30D7\u30B3\u30FC\u30C9\u3092\u518D\u751F\u6210",
11573
12568
  confirmText: "\u65B0\u3057\u3044\u30D0\u30C3\u30AF\u30A2\u30C3\u30D7\u30B3\u30FC\u30C9\u3092\u751F\u6210\u3057\u307E\u3059\u304B\uFF1F\u4EE5\u524D\u306B\u751F\u6210\u3055\u308C\u305F\u30B3\u30FC\u30C9\u306F\u3059\u3079\u3066\u4F7F\u7528\u3067\u304D\u306A\u304F\u306A\u308A\u307E\u3059\u3002",
11574
- successMessage: "\u65B0\u3057\u3044\u30D0\u30C3\u30AF\u30A2\u30C3\u30D7\u30B3\u30FC\u30C9\u3092\u751F\u6210\u3057\u307E\u3057\u305F\u3002\u5B89\u5168\u306A\u5834\u6240\u306B\u4FDD\u7BA1\u3057\u3066\u304F\u3060\u3055\u3044\u3002"
12569
+ successMessage: "\u65B0\u3057\u3044\u30D0\u30C3\u30AF\u30A2\u30C3\u30D7\u30B3\u30FC\u30C9\u3092\u751F\u6210\u3057\u307E\u3057\u305F\u3002\u5B89\u5168\u306A\u5834\u6240\u306B\u4FDD\u7BA1\u3057\u3066\u304F\u3060\u3055\u3044\u3002",
12570
+ params: {
12571
+ password: {
12572
+ label: "\u73FE\u5728\u306E\u30D1\u30B9\u30EF\u30FC\u30C9"
12573
+ }
12574
+ }
11575
12575
  }
11576
12576
  }
11577
12577
  },
@@ -11715,7 +12715,21 @@ var jaJPObjects = {
11715
12715
  },
11716
12716
  _actions: {
11717
12717
  link_social: {
11718
- label: "\u30BD\u30FC\u30B7\u30E3\u30EB\u30A2\u30AB\u30A6\u30F3\u30C8\u9023\u643A"
12718
+ label: "\u30BD\u30FC\u30B7\u30E3\u30EB\u30A2\u30AB\u30A6\u30F3\u30C8\u9023\u643A",
12719
+ params: {
12720
+ provider: {
12721
+ label: "\u30D7\u30ED\u30D0\u30A4\u30C0\u30FC",
12722
+ options: {
12723
+ google: "Google",
12724
+ github: "GitHub",
12725
+ microsoft: "Microsoft",
12726
+ apple: "Apple",
12727
+ facebook: "Facebook",
12728
+ gitlab: "GitLab",
12729
+ discord: "Discord"
12730
+ }
12731
+ }
12732
+ }
11719
12733
  },
11720
12734
  unlink_account: {
11721
12735
  label: "\u9023\u643A\u89E3\u9664",
@@ -11848,7 +12862,11 @@ var jaJPObjects = {
11848
12862
  },
11849
12863
  _views: {
11850
12864
  mine: {
11851
- label: "My Memberships"
12865
+ label: "My Memberships",
12866
+ emptyState: {
12867
+ title: "No organizations yet",
12868
+ message: "You haven't joined any organizations."
12869
+ }
11852
12870
  }
11853
12871
  },
11854
12872
  _actions: {
@@ -12268,16 +13286,31 @@ var jaJPObjects = {
12268
13286
  },
12269
13287
  _actions: {
12270
13288
  enable_two_factor: {
12271
- label: "2FA \u3092\u6709\u52B9\u5316"
13289
+ label: "2FA \u3092\u6709\u52B9\u5316",
13290
+ params: {
13291
+ password: {
13292
+ label: "\u73FE\u5728\u306E\u30D1\u30B9\u30EF\u30FC\u30C9"
13293
+ }
13294
+ }
12272
13295
  },
12273
13296
  disable_two_factor: {
12274
13297
  label: "2FA \u3092\u7121\u52B9\u5316",
12275
13298
  confirmText: "\u30A2\u30AB\u30A6\u30F3\u30C8\u306E\u4E8C\u8981\u7D20\u8A8D\u8A3C\u3092\u7121\u52B9\u5316\u3057\u307E\u3059\u304B\uFF1F",
12276
- successMessage: "2FA \u3092\u7121\u52B9\u5316\u3057\u307E\u3057\u305F"
13299
+ successMessage: "2FA \u3092\u7121\u52B9\u5316\u3057\u307E\u3057\u305F",
13300
+ params: {
13301
+ password: {
13302
+ label: "\u73FE\u5728\u306E\u30D1\u30B9\u30EF\u30FC\u30C9"
13303
+ }
13304
+ }
12277
13305
  },
12278
13306
  regenerate_backup_codes: {
12279
13307
  label: "\u30D0\u30C3\u30AF\u30A2\u30C3\u30D7\u30B3\u30FC\u30C9\u518D\u751F\u6210",
12280
- confirmText: "\u30D0\u30C3\u30AF\u30A2\u30C3\u30D7\u30B3\u30FC\u30C9\u3092\u518D\u751F\u6210\u3057\u307E\u3059\u304B\uFF1F\u4EE5\u524D\u306E\u30D0\u30C3\u30AF\u30A2\u30C3\u30D7\u30B3\u30FC\u30C9\u306F\u3059\u3079\u3066\u76F4\u3061\u306B\u4F7F\u7528\u3067\u304D\u306A\u304F\u306A\u308A\u307E\u3059\u3002"
13308
+ confirmText: "\u30D0\u30C3\u30AF\u30A2\u30C3\u30D7\u30B3\u30FC\u30C9\u3092\u518D\u751F\u6210\u3057\u307E\u3059\u304B\uFF1F\u4EE5\u524D\u306E\u30D0\u30C3\u30AF\u30A2\u30C3\u30D7\u30B3\u30FC\u30C9\u306F\u3059\u3079\u3066\u76F4\u3061\u306B\u4F7F\u7528\u3067\u304D\u306A\u304F\u306A\u308A\u307E\u3059\u3002",
13309
+ params: {
13310
+ password: {
13311
+ label: "\u73FE\u5728\u306E\u30D1\u30B9\u30EF\u30FC\u30C9"
13312
+ }
13313
+ }
12281
13314
  }
12282
13315
  }
12283
13316
  },
@@ -12457,6 +13490,18 @@ var jaJPObjects = {
12457
13490
  label: "\u30B5\u30D6\u30B8\u30A7\u30AF\u30C8\u30BF\u30A4\u30D7",
12458
13491
  help: "OIDC \u30B5\u30D6\u30B8\u30A7\u30AF\u30C8\u30BF\u30A4\u30D7\uFF08\u4F8B: public\u3001pairwise\uFF09"
12459
13492
  },
13493
+ jwks: {
13494
+ label: "JWKS",
13495
+ help: "Client JSON Web Key Set (for private_key_jwt / signed-request verification)"
13496
+ },
13497
+ jwks_uri: {
13498
+ label: "JWKS URI",
13499
+ help: "URL of the client JSON Web Key Set"
13500
+ },
13501
+ dpop_bound_access_tokens: {
13502
+ label: "DPoP-bound Access Tokens",
13503
+ help: "Require access tokens issued to this client to be DPoP-bound (RFC 9449)"
13504
+ },
12460
13505
  disabled: {
12461
13506
  label: "\u7121\u52B9"
12462
13507
  },
@@ -12468,6 +13513,14 @@ var jaJPObjects = {
12468
13513
  label: "\u30A8\u30F3\u30C9\u30BB\u30C3\u30B7\u30E7\u30F3\u3092\u6709\u52B9\u5316",
12469
13514
  help: "\u30AF\u30E9\u30A4\u30A2\u30F3\u30C8\u304C OIDC \u30A8\u30F3\u30C9\u30BB\u30C3\u30B7\u30E7\u30F3\u30A8\u30F3\u30C9\u30DD\u30A4\u30F3\u30C8\u3092\u547C\u3073\u51FA\u305B\u308B\u3088\u3046\u306B\u3057\u307E\u3059"
12470
13515
  },
13516
+ backchannel_logout_uri: {
13517
+ label: "Back-channel Logout URI",
13518
+ help: "OIDC back-channel logout endpoint of the client"
13519
+ },
13520
+ backchannel_logout_session_required: {
13521
+ label: "Back-channel Logout Session Required",
13522
+ help: "Whether the back-channel logout token must include a sid claim"
13523
+ },
12471
13524
  software_id: {
12472
13525
  label: "\u30BD\u30D5\u30C8\u30A6\u30A7\u30A2 ID"
12473
13526
  },
@@ -12519,7 +13572,25 @@ var jaJPObjects = {
12519
13572
  successMessage: "OAuth\u30A2\u30D7\u30EA\u30B1\u30FC\u30B7\u30E7\u30F3\u3092\u6709\u52B9\u5316\u3057\u307E\u3057\u305F"
12520
13573
  },
12521
13574
  create_oauth_application: {
12522
- label: "OAuth\u30A2\u30D7\u30EA\u30B1\u30FC\u30B7\u30E7\u30F3\u3092\u767B\u9332"
13575
+ label: "OAuth\u30A2\u30D7\u30EA\u30B1\u30FC\u30B7\u30E7\u30F3\u3092\u767B\u9332",
13576
+ params: {
13577
+ name: {
13578
+ label: "\u30A2\u30D7\u30EA\u30B1\u30FC\u30B7\u30E7\u30F3\u540D"
13579
+ },
13580
+ redirectURLs: {
13581
+ label: "\u30EA\u30C0\u30A4\u30EC\u30AF\u30C8 URL",
13582
+ helpText: "1 \u884C\u306B\u3064\u304D 1 \u3064\u306E URL\u3002\u672C\u756A\u74B0\u5883\u3067\u306F https:// \u304C\u5FC5\u9808\u3067\u3059\u3002"
13583
+ },
13584
+ type: {
13585
+ label: "\u30A2\u30D7\u30EA\u30B1\u30FC\u30B7\u30E7\u30F3\u30BF\u30A4\u30D7",
13586
+ options: {
13587
+ web: "Web",
13588
+ native: "\u30CD\u30A4\u30C6\u30A3\u30D6",
13589
+ "user-agent-based": "\u30E6\u30FC\u30B6\u30FC\u30A8\u30FC\u30B8\u30A7\u30F3\u30C8\u578B",
13590
+ public: "\u30D1\u30D6\u30EA\u30C3\u30AF"
13591
+ }
13592
+ }
13593
+ }
12523
13594
  },
12524
13595
  rotate_client_secret: {
12525
13596
  label: "\u30AF\u30E9\u30A4\u30A2\u30F3\u30C8\u30B7\u30FC\u30AF\u30EC\u30C3\u30C8\u66F4\u65B0",
@@ -12564,6 +13635,18 @@ var jaJPObjects = {
12564
13635
  label: "\u53C2\u7167 ID",
12565
13636
  help: "\u547C\u3073\u51FA\u3057\u5143\u304C\u6307\u5B9A\u3057\u305F\u76F8\u95A2\u8B58\u5225\u5B50"
12566
13637
  },
13638
+ authorization_code_id: {
13639
+ label: "Authorization Code ID",
13640
+ help: "ID of the authorization-code grant this token originates from"
13641
+ },
13642
+ resources: {
13643
+ label: "Resources",
13644
+ help: "JSON-serialized list of RFC 8707 resource indicators bound to this token"
13645
+ },
13646
+ requested_user_info_claims: {
13647
+ label: "Requested UserInfo Claims",
13648
+ help: "JSON-serialized list of OIDC claims requested for the userinfo endpoint"
13649
+ },
12567
13650
  scopes: {
12568
13651
  label: "\u30B9\u30B3\u30FC\u30D7",
12569
13652
  help: "\u3053\u306E\u30C8\u30FC\u30AF\u30F3\u306B\u4ED8\u4E0E\u3055\u308C\u305F\u30B9\u30B3\u30FC\u30D7\u306E JSON \u30B7\u30EA\u30A2\u30E9\u30A4\u30BA\u30EA\u30B9\u30C8"
@@ -12573,6 +13656,14 @@ var jaJPObjects = {
12573
13656
  },
12574
13657
  created_at: {
12575
13658
  label: "\u4F5C\u6210\u65E5\u6642"
13659
+ },
13660
+ revoked: {
13661
+ label: "Revoked At",
13662
+ help: "Timestamp at which this access token was revoked"
13663
+ },
13664
+ confirmation: {
13665
+ label: "Confirmation",
13666
+ help: "JSON RFC 7800 cnf claim (e.g. DPoP key thumbprint) binding this token to a key"
12576
13667
  }
12577
13668
  }
12578
13669
  },
@@ -12604,6 +13695,18 @@ var jaJPObjects = {
12604
13695
  label: "\u53C2\u7167 ID",
12605
13696
  help: "\u547C\u3073\u51FA\u3057\u5143\u304C\u6307\u5B9A\u3057\u305F\u76F8\u95A2\u8B58\u5225\u5B50"
12606
13697
  },
13698
+ authorization_code_id: {
13699
+ label: "Authorization Code ID",
13700
+ help: "ID of the authorization-code grant this token chain originates from"
13701
+ },
13702
+ resources: {
13703
+ label: "Resources",
13704
+ help: "JSON-serialized list of RFC 8707 resource indicators bound to this token"
13705
+ },
13706
+ requested_user_info_claims: {
13707
+ label: "Requested UserInfo Claims",
13708
+ help: "JSON-serialized list of OIDC claims requested for the userinfo endpoint"
13709
+ },
12607
13710
  scopes: {
12608
13711
  label: "\u30B9\u30B3\u30FC\u30D7",
12609
13712
  help: "\u3053\u306E\u30C8\u30FC\u30AF\u30F3\u306B\u4ED8\u4E0E\u3055\u308C\u305F\u30B9\u30B3\u30FC\u30D7\u306E JSON \u30B7\u30EA\u30A2\u30E9\u30A4\u30BA\u30EA\u30B9\u30C8"
@@ -12618,9 +13721,25 @@ var jaJPObjects = {
12618
13721
  label: "\u5931\u52B9\u65E5\u6642",
12619
13722
  help: "\u3053\u306E\u30EA\u30D5\u30EC\u30C3\u30B7\u30E5\u30C8\u30FC\u30AF\u30F3\u304C\u5931\u52B9\u3057\u305F\u30BF\u30A4\u30E0\u30B9\u30BF\u30F3\u30D7"
12620
13723
  },
13724
+ rotated_at: {
13725
+ label: "Rotated At",
13726
+ help: "Timestamp at which this token was rotated (superseded by a new row)"
13727
+ },
13728
+ rotation_replay_response: {
13729
+ label: "Rotation Replay Response",
13730
+ help: "Cached token response replayed when the old token is re-presented within the reuse interval"
13731
+ },
13732
+ rotation_replay_expires_at: {
13733
+ label: "Rotation Replay Expires At",
13734
+ help: "End of the post-rotation reuse interval during which the replay response is served"
13735
+ },
12621
13736
  auth_time: {
12622
13737
  label: "\u8A8D\u8A3C\u65E5\u6642",
12623
13738
  help: "\u3053\u306E\u30C8\u30FC\u30AF\u30F3\u30C1\u30A7\u30FC\u30F3\u306E\u305F\u3081\u306B\u30E6\u30FC\u30B6\u30FC\u304C\u6700\u521D\u306B\u8A8D\u8A3C\u3057\u305F\u65E5\u6642"
13739
+ },
13740
+ confirmation: {
13741
+ label: "Confirmation",
13742
+ help: "JSON RFC 7800 cnf claim (e.g. DPoP key thumbprint) binding this token to a key"
12624
13743
  }
12625
13744
  }
12626
13745
  },
@@ -12644,6 +13763,14 @@ var jaJPObjects = {
12644
13763
  label: "\u53C2\u7167 ID",
12645
13764
  help: "\u547C\u3073\u51FA\u3057\u5143\u304C\u6307\u5B9A\u3057\u305F\u76F8\u95A2\u8B58\u5225\u5B50"
12646
13765
  },
13766
+ resources: {
13767
+ label: "Resources",
13768
+ help: "JSON-serialized list of RFC 8707 resource indicators the consent covers"
13769
+ },
13770
+ requested_user_info_claims: {
13771
+ label: "Requested UserInfo Claims",
13772
+ help: "JSON-serialized list of OIDC claims the user consented to expose"
13773
+ },
12647
13774
  scopes: {
12648
13775
  label: "\u30B9\u30B3\u30FC\u30D7",
12649
13776
  help: "\u30E6\u30FC\u30B6\u30FC\u304C\u540C\u610F\u3057\u305F\u30B9\u30B3\u30FC\u30D7\u306E JSON \u30B7\u30EA\u30A2\u30E9\u30A4\u30BA\u30EA\u30B9\u30C8"
@@ -12656,6 +13783,107 @@ var jaJPObjects = {
12656
13783
  }
12657
13784
  }
12658
13785
  },
13786
+ sys_oauth_resource: {
13787
+ label: "OAuth Resource",
13788
+ pluralLabel: "OAuth Resources",
13789
+ description: "Registered OAuth protected resources (RFC 8707 resource indicators)",
13790
+ fields: {
13791
+ id: {
13792
+ label: "ID"
13793
+ },
13794
+ identifier: {
13795
+ label: "Identifier",
13796
+ help: "Resource indicator URI presented in the RFC 8707 resource parameter"
13797
+ },
13798
+ name: {
13799
+ label: "Name"
13800
+ },
13801
+ access_token_ttl: {
13802
+ label: "Access Token TTL",
13803
+ help: "Access-token lifetime in seconds for this resource (overrides the server default)"
13804
+ },
13805
+ refresh_token_ttl: {
13806
+ label: "Refresh Token TTL",
13807
+ help: "Refresh-token lifetime in seconds for this resource (overrides the server default)"
13808
+ },
13809
+ signing_algorithm: {
13810
+ label: "Signing Algorithm",
13811
+ help: "JWS algorithm used to sign access tokens for this resource"
13812
+ },
13813
+ signing_key_id: {
13814
+ label: "Signing Key ID",
13815
+ help: "Key id (kid) used to sign access tokens for this resource"
13816
+ },
13817
+ allowed_scopes: {
13818
+ label: "Allowed Scopes",
13819
+ help: "JSON-serialized list of scopes clients may request for this resource"
13820
+ },
13821
+ custom_claims: {
13822
+ label: "Custom Claims",
13823
+ help: "JSON object of extra claims stamped on access tokens for this resource"
13824
+ },
13825
+ dpop_bound_access_tokens_required: {
13826
+ label: "DPoP Required",
13827
+ help: "Require access tokens for this resource to be DPoP-bound (RFC 9449)"
13828
+ },
13829
+ disabled: {
13830
+ label: "Disabled"
13831
+ },
13832
+ policy_version: {
13833
+ label: "Policy Version",
13834
+ help: "Monotonic version of the resource token policy"
13835
+ },
13836
+ metadata: {
13837
+ label: "Metadata",
13838
+ help: "JSON object of additional resource metadata"
13839
+ },
13840
+ created_at: {
13841
+ label: "Created At"
13842
+ },
13843
+ updated_at: {
13844
+ label: "Updated At"
13845
+ }
13846
+ }
13847
+ },
13848
+ sys_oauth_client_resource: {
13849
+ label: "OAuth Client Resource",
13850
+ pluralLabel: "OAuth Client Resources",
13851
+ description: "Grants allowing an OAuth client to request tokens for a protected resource",
13852
+ fields: {
13853
+ id: {
13854
+ label: "ID"
13855
+ },
13856
+ client_id: {
13857
+ label: "Client ID",
13858
+ help: "Foreign key to sys_oauth_application.client_id"
13859
+ },
13860
+ resource_id: {
13861
+ label: "Resource ID",
13862
+ help: "Foreign key to sys_oauth_resource.identifier"
13863
+ },
13864
+ metadata: {
13865
+ label: "Metadata",
13866
+ help: "JSON object of additional grant metadata"
13867
+ },
13868
+ created_at: {
13869
+ label: "Created At"
13870
+ }
13871
+ }
13872
+ },
13873
+ sys_oauth_client_assertion: {
13874
+ label: "OAuth Client Assertion",
13875
+ pluralLabel: "OAuth Client Assertions",
13876
+ description: "Consumed OAuth client-assertion JTIs (RFC 7523 replay prevention)",
13877
+ fields: {
13878
+ id: {
13879
+ label: "ID"
13880
+ },
13881
+ expires_at: {
13882
+ label: "Expires At",
13883
+ help: "Assertion expiry \u2014 rows past this instant are safe to prune"
13884
+ }
13885
+ }
13886
+ },
12659
13887
  sys_jwks: {
12660
13888
  label: "\u7F72\u540D\u30AD\u30FC (JWKS)",
12661
13889
  pluralLabel: "\u7F72\u540D\u30AD\u30FC (JWKS)",
@@ -12673,6 +13901,14 @@ var jaJPObjects = {
12673
13901
  label: "\u79D8\u5BC6\u9375",
12674
13902
  help: "JSON \u30B7\u30EA\u30A2\u30E9\u30A4\u30BA\u3055\u308C\u305F JWK \u79D8\u5BC6\u9375\uFF08\u4FDD\u5B58\u6642\u306B\u6697\u53F7\u5316\u6E08\u307F\uFF09"
12675
13903
  },
13904
+ alg: {
13905
+ label: "\u30A2\u30EB\u30B4\u30EA\u30BA\u30E0",
13906
+ help: "JWK \u7F72\u540D\u30A2\u30EB\u30B4\u30EA\u30BA\u30E0\uFF08\u4F8B: `EdDSA`\u3001better-auth 1.7+\uFF09"
13907
+ },
13908
+ crv: {
13909
+ label: "\u66F2\u7DDA",
13910
+ help: "EdDSA/EC \u9375\u3067\u4F7F\u3046 JWK \u66F2\u7DDA\uFF08\u4F8B: `Ed25519`\u3001better-auth 1.7+\uFF09"
13911
+ },
12676
13912
  created_at: {
12677
13913
  label: "\u4F5C\u6210\u65E5\u6642"
12678
13914
  },
@@ -12729,7 +13965,11 @@ var jaJPObjects = {
12729
13965
  },
12730
13966
  _views: {
12731
13967
  recent: {
12732
- label: "Recent"
13968
+ label: "Recent",
13969
+ emptyState: {
13970
+ title: "No events",
13971
+ message: "No notification events have been emitted."
13972
+ }
12733
13973
  },
12734
13974
  by_topic: {
12735
13975
  label: "By Topic"
@@ -12766,23 +14006,6 @@ var jaJPObjects = {
12766
14006
  size: {
12767
14007
  label: "\u30B5\u30A4\u30BA\uFF08\u30D0\u30A4\u30C8\uFF09"
12768
14008
  },
12769
- share_type: {
12770
- label: "\u5171\u6709\u30BF\u30A4\u30D7",
12771
- help: "viewer | collaborator | inferred\uFF08\u89AA\u30EC\u30B3\u30FC\u30C9\u304B\u3089\u7D99\u627F\uFF09",
12772
- options: {
12773
- viewer: "\u95B2\u89A7\u8005",
12774
- collaborator: "\u5171\u540C\u7DE8\u96C6\u8005",
12775
- inferred: "\u63A8\u5B9A"
12776
- }
12777
- },
12778
- visibility: {
12779
- label: "\u516C\u958B\u7BC4\u56F2",
12780
- options: {
12781
- internal: "\u5185\u90E8",
12782
- all_users: "\u3059\u3079\u3066\u306E\u30E6\u30FC\u30B6\u30FC",
12783
- shared_users: "\u5171\u6709\u30E6\u30FC\u30B6\u30FC"
12784
- }
12785
- },
12786
14009
  uploaded_by: {
12787
14010
  label: "\u30A2\u30C3\u30D7\u30ED\u30FC\u30C9\u8005"
12788
14011
  },
@@ -14049,7 +15272,12 @@ var esESObjects = {
14049
15272
  ban_user: {
14050
15273
  label: "Bloquear usuario",
14051
15274
  confirmText: "\xBFBloquear a este usuario? Cerrar\xE1 sesi\xF3n y no podr\xE1 volver a iniciarla hasta que se desbloquee.",
14052
- successMessage: "Usuario bloqueado"
15275
+ successMessage: "Usuario bloqueado",
15276
+ params: {
15277
+ banReason: {
15278
+ label: "Motivo del bloqueo"
15279
+ }
15280
+ }
14053
15281
  },
14054
15282
  unban_user: {
14055
15283
  label: "Desbloquear usuario",
@@ -14061,15 +15289,46 @@ var esESObjects = {
14061
15289
  },
14062
15290
  create_user: {
14063
15291
  label: "Crear usuario",
14064
- successMessage: "Usuario creado"
15292
+ successMessage: "Usuario creado",
15293
+ params: {
15294
+ phoneNumber: {
15295
+ label: "N\xFAmero de tel\xE9fono",
15296
+ helpText: "N\xFAmero de tel\xE9fono para iniciar sesi\xF3n (E.164, p. ej. +8613800000000). Obligatorio si no se indica un correo."
15297
+ },
15298
+ generatePassword: {
15299
+ label: "Generar contrase\xF1a temporal"
15300
+ },
15301
+ password: {
15302
+ label: "Contrase\xF1a (dejar en blanco para generarla)"
15303
+ },
15304
+ mustChangePassword: {
15305
+ label: "Exigir cambio de contrase\xF1a en el primer inicio de sesi\xF3n"
15306
+ }
15307
+ }
14065
15308
  },
14066
15309
  set_user_password: {
14067
15310
  label: "Establecer contrase\xF1a",
14068
- successMessage: "Contrase\xF1a actualizada"
15311
+ successMessage: "Contrase\xF1a actualizada",
15312
+ params: {
15313
+ generatePassword: {
15314
+ label: "Generar contrase\xF1a temporal"
15315
+ },
15316
+ newPassword: {
15317
+ label: "Nueva contrase\xF1a (dejar en blanco para generarla)"
15318
+ },
15319
+ mustChangePassword: {
15320
+ label: "Exigir cambio de contrase\xF1a en el pr\xF3ximo inicio de sesi\xF3n"
15321
+ }
15322
+ }
14069
15323
  },
14070
15324
  set_user_role: {
14071
15325
  label: "Establecer rol de plataforma",
14072
- successMessage: "Rol actualizado"
15326
+ successMessage: "Rol actualizado",
15327
+ params: {
15328
+ role: {
15329
+ label: "Rol de plataforma"
15330
+ }
15331
+ }
14073
15332
  },
14074
15333
  impersonate_user: {
14075
15334
  label: "Suplantar usuario",
@@ -14082,11 +15341,27 @@ var esESObjects = {
14082
15341
  },
14083
15342
  change_my_password: {
14084
15343
  label: "Cambiar contrase\xF1a",
14085
- successMessage: "Contrase\xF1a cambiada"
15344
+ successMessage: "Contrase\xF1a cambiada",
15345
+ params: {
15346
+ currentPassword: {
15347
+ label: "Contrase\xF1a actual"
15348
+ },
15349
+ newPassword: {
15350
+ label: "Nueva contrase\xF1a"
15351
+ },
15352
+ revokeOtherSessions: {
15353
+ label: "Cerrar sesi\xF3n en los dem\xE1s dispositivos"
15354
+ }
15355
+ }
14086
15356
  },
14087
15357
  change_my_email: {
14088
15358
  label: "Cambiar correo",
14089
- successMessage: "Correo de verificaci\xF3n enviado; revisa la nueva direcci\xF3n para confirmar."
15359
+ successMessage: "Correo de verificaci\xF3n enviado; revisa la nueva direcci\xF3n para confirmar.",
15360
+ params: {
15361
+ newEmail: {
15362
+ label: "Nuevo correo"
15363
+ }
15364
+ }
14090
15365
  },
14091
15366
  resend_verification_email: {
14092
15367
  label: "Reenviar correo de verificaci\xF3n",
@@ -14095,21 +15370,41 @@ var esESObjects = {
14095
15370
  delete_my_account: {
14096
15371
  label: "Eliminar mi cuenta",
14097
15372
  confirmText: "\xBFEliminar tu cuenta de forma permanente? Esta acci\xF3n no se puede deshacer: se cerrar\xE1n todas tus sesiones y se eliminar\xE1n todos los datos de tu propiedad seg\xFAn la pol\xEDtica de retenci\xF3n configurada.",
14098
- successMessage: "Cuenta eliminada"
15373
+ successMessage: "Cuenta eliminada",
15374
+ params: {
15375
+ password: {
15376
+ label: "Contrase\xF1a actual"
15377
+ }
15378
+ }
14099
15379
  },
14100
15380
  enable_two_factor: {
14101
15381
  label: "Habilitar autenticaci\xF3n de dos factores",
14102
- successMessage: "Autenticaci\xF3n de dos factores habilitada. Escanea el c\xF3digo QR o pega el URI otpauth en tu aplicaci\xF3n de autenticaci\xF3n y verifica un c\xF3digo para completar la configuraci\xF3n."
15382
+ successMessage: "Autenticaci\xF3n de dos factores habilitada. Escanea el c\xF3digo QR o pega el URI otpauth en tu aplicaci\xF3n de autenticaci\xF3n y verifica un c\xF3digo para completar la configuraci\xF3n.",
15383
+ params: {
15384
+ password: {
15385
+ label: "Contrase\xF1a actual"
15386
+ }
15387
+ }
14103
15388
  },
14104
15389
  disable_two_factor: {
14105
15390
  label: "Deshabilitar autenticaci\xF3n de dos factores",
14106
15391
  confirmText: "\xBFDesactivar la autenticaci\xF3n de dos factores? Tu cuenta ser\xE1 menos segura.",
14107
- successMessage: "Autenticaci\xF3n de dos factores deshabilitada."
15392
+ successMessage: "Autenticaci\xF3n de dos factores deshabilitada.",
15393
+ params: {
15394
+ password: {
15395
+ label: "Contrase\xF1a actual"
15396
+ }
15397
+ }
14108
15398
  },
14109
15399
  generate_backup_codes: {
14110
15400
  label: "Regenerar c\xF3digos de respaldo",
14111
15401
  confirmText: "\xBFGenerar un nuevo juego de c\xF3digos de respaldo? Los c\xF3digos generados anteriormente dejar\xE1n de funcionar.",
14112
- successMessage: "Nuevos c\xF3digos de respaldo generados; gu\xE1rdalos en un lugar seguro."
15402
+ successMessage: "Nuevos c\xF3digos de respaldo generados; gu\xE1rdalos en un lugar seguro.",
15403
+ params: {
15404
+ password: {
15405
+ label: "Contrase\xF1a actual"
15406
+ }
15407
+ }
14113
15408
  }
14114
15409
  }
14115
15410
  },
@@ -14253,7 +15548,21 @@ var esESObjects = {
14253
15548
  },
14254
15549
  _actions: {
14255
15550
  link_social: {
14256
- label: "Vincular cuenta social"
15551
+ label: "Vincular cuenta social",
15552
+ params: {
15553
+ provider: {
15554
+ label: "Proveedor",
15555
+ options: {
15556
+ google: "Google",
15557
+ github: "GitHub",
15558
+ microsoft: "Microsoft",
15559
+ apple: "Apple",
15560
+ facebook: "Facebook",
15561
+ gitlab: "GitLab",
15562
+ discord: "Discord"
15563
+ }
15564
+ }
15565
+ }
14257
15566
  },
14258
15567
  unlink_account: {
14259
15568
  label: "Desvincular cuenta",
@@ -14386,7 +15695,11 @@ var esESObjects = {
14386
15695
  },
14387
15696
  _views: {
14388
15697
  mine: {
14389
- label: "My Memberships"
15698
+ label: "My Memberships",
15699
+ emptyState: {
15700
+ title: "No organizations yet",
15701
+ message: "You haven't joined any organizations."
15702
+ }
14390
15703
  }
14391
15704
  },
14392
15705
  _actions: {
@@ -14806,16 +16119,31 @@ var esESObjects = {
14806
16119
  },
14807
16120
  _actions: {
14808
16121
  enable_two_factor: {
14809
- label: "Habilitar 2FA"
16122
+ label: "Habilitar 2FA",
16123
+ params: {
16124
+ password: {
16125
+ label: "Contrase\xF1a actual"
16126
+ }
16127
+ }
14810
16128
  },
14811
16129
  disable_two_factor: {
14812
16130
  label: "Deshabilitar 2FA",
14813
16131
  confirmText: "\xBFDeshabilitar la autenticaci\xF3n de doble factor en su cuenta?",
14814
- successMessage: "2FA deshabilitado"
16132
+ successMessage: "2FA deshabilitado",
16133
+ params: {
16134
+ password: {
16135
+ label: "Contrase\xF1a actual"
16136
+ }
16137
+ }
14815
16138
  },
14816
16139
  regenerate_backup_codes: {
14817
16140
  label: "Regenerar c\xF3digos de respaldo",
14818
- confirmText: "\xBFRegenerar los c\xF3digos de respaldo? Todos los c\xF3digos de respaldo anteriores dejar\xE1n de funcionar de inmediato."
16141
+ confirmText: "\xBFRegenerar los c\xF3digos de respaldo? Todos los c\xF3digos de respaldo anteriores dejar\xE1n de funcionar de inmediato.",
16142
+ params: {
16143
+ password: {
16144
+ label: "Contrase\xF1a actual"
16145
+ }
16146
+ }
14819
16147
  }
14820
16148
  }
14821
16149
  },
@@ -14995,6 +16323,18 @@ var esESObjects = {
14995
16323
  label: "Tipo de sujeto",
14996
16324
  help: "Tipo de sujeto OIDC (p. ej. public, pairwise)."
14997
16325
  },
16326
+ jwks: {
16327
+ label: "JWKS",
16328
+ help: "Client JSON Web Key Set (for private_key_jwt / signed-request verification)"
16329
+ },
16330
+ jwks_uri: {
16331
+ label: "JWKS URI",
16332
+ help: "URL of the client JSON Web Key Set"
16333
+ },
16334
+ dpop_bound_access_tokens: {
16335
+ label: "DPoP-bound Access Tokens",
16336
+ help: "Require access tokens issued to this client to be DPoP-bound (RFC 9449)"
16337
+ },
14998
16338
  disabled: {
14999
16339
  label: "Deshabilitado"
15000
16340
  },
@@ -15006,6 +16346,14 @@ var esESObjects = {
15006
16346
  label: "Habilitar finalizaci\xF3n de sesi\xF3n",
15007
16347
  help: "Permitir que el cliente llame al endpoint OIDC de finalizaci\xF3n de sesi\xF3n."
15008
16348
  },
16349
+ backchannel_logout_uri: {
16350
+ label: "Back-channel Logout URI",
16351
+ help: "OIDC back-channel logout endpoint of the client"
16352
+ },
16353
+ backchannel_logout_session_required: {
16354
+ label: "Back-channel Logout Session Required",
16355
+ help: "Whether the back-channel logout token must include a sid claim"
16356
+ },
15009
16357
  software_id: {
15010
16358
  label: "ID de software"
15011
16359
  },
@@ -15057,7 +16405,25 @@ var esESObjects = {
15057
16405
  successMessage: "Aplicaci\xF3n OAuth habilitada"
15058
16406
  },
15059
16407
  create_oauth_application: {
15060
- label: "Registrar aplicaci\xF3n OAuth"
16408
+ label: "Registrar aplicaci\xF3n OAuth",
16409
+ params: {
16410
+ name: {
16411
+ label: "Nombre de la aplicaci\xF3n"
16412
+ },
16413
+ redirectURLs: {
16414
+ label: "URLs de redirecci\xF3n",
16415
+ helpText: "Una URL por l\xEDnea. Debe usar https:// en producci\xF3n."
16416
+ },
16417
+ type: {
16418
+ label: "Tipo de aplicaci\xF3n",
16419
+ options: {
16420
+ web: "Web",
16421
+ native: "Nativa",
16422
+ "user-agent-based": "Basada en user-agent",
16423
+ public: "P\xFAblica"
16424
+ }
16425
+ }
16426
+ }
15061
16427
  },
15062
16428
  rotate_client_secret: {
15063
16429
  label: "Rotar Client Secret",
@@ -15102,6 +16468,18 @@ var esESObjects = {
15102
16468
  label: "ID de referencia",
15103
16469
  help: "Identificador de correlaci\xF3n proporcionado por quien llama."
15104
16470
  },
16471
+ authorization_code_id: {
16472
+ label: "Authorization Code ID",
16473
+ help: "ID of the authorization-code grant this token originates from"
16474
+ },
16475
+ resources: {
16476
+ label: "Resources",
16477
+ help: "JSON-serialized list of RFC 8707 resource indicators bound to this token"
16478
+ },
16479
+ requested_user_info_claims: {
16480
+ label: "Requested UserInfo Claims",
16481
+ help: "JSON-serialized list of OIDC claims requested for the userinfo endpoint"
16482
+ },
15105
16483
  scopes: {
15106
16484
  label: "\xC1mbitos",
15107
16485
  help: "Lista serializada en JSON de \xE1mbitos concedidos a este token."
@@ -15111,6 +16489,14 @@ var esESObjects = {
15111
16489
  },
15112
16490
  created_at: {
15113
16491
  label: "Creado el"
16492
+ },
16493
+ revoked: {
16494
+ label: "Revoked At",
16495
+ help: "Timestamp at which this access token was revoked"
16496
+ },
16497
+ confirmation: {
16498
+ label: "Confirmation",
16499
+ help: "JSON RFC 7800 cnf claim (e.g. DPoP key thumbprint) binding this token to a key"
15114
16500
  }
15115
16501
  }
15116
16502
  },
@@ -15142,6 +16528,18 @@ var esESObjects = {
15142
16528
  label: "ID de referencia",
15143
16529
  help: "Identificador de correlaci\xF3n proporcionado por quien llama."
15144
16530
  },
16531
+ authorization_code_id: {
16532
+ label: "Authorization Code ID",
16533
+ help: "ID of the authorization-code grant this token chain originates from"
16534
+ },
16535
+ resources: {
16536
+ label: "Resources",
16537
+ help: "JSON-serialized list of RFC 8707 resource indicators bound to this token"
16538
+ },
16539
+ requested_user_info_claims: {
16540
+ label: "Requested UserInfo Claims",
16541
+ help: "JSON-serialized list of OIDC claims requested for the userinfo endpoint"
16542
+ },
15145
16543
  scopes: {
15146
16544
  label: "\xC1mbitos",
15147
16545
  help: "Lista serializada en JSON de \xE1mbitos concedidos a este token."
@@ -15156,9 +16554,25 @@ var esESObjects = {
15156
16554
  label: "Revocado el",
15157
16555
  help: "Marca temporal en la que se revoc\xF3 este token de actualizaci\xF3n."
15158
16556
  },
16557
+ rotated_at: {
16558
+ label: "Rotated At",
16559
+ help: "Timestamp at which this token was rotated (superseded by a new row)"
16560
+ },
16561
+ rotation_replay_response: {
16562
+ label: "Rotation Replay Response",
16563
+ help: "Cached token response replayed when the old token is re-presented within the reuse interval"
16564
+ },
16565
+ rotation_replay_expires_at: {
16566
+ label: "Rotation Replay Expires At",
16567
+ help: "End of the post-rotation reuse interval during which the replay response is served"
16568
+ },
15159
16569
  auth_time: {
15160
16570
  label: "Hora de autenticaci\xF3n",
15161
16571
  help: "Momento en que el usuario se autentic\xF3 originalmente para esta cadena de tokens."
16572
+ },
16573
+ confirmation: {
16574
+ label: "Confirmation",
16575
+ help: "JSON RFC 7800 cnf claim (e.g. DPoP key thumbprint) binding this token to a key"
15162
16576
  }
15163
16577
  }
15164
16578
  },
@@ -15182,6 +16596,14 @@ var esESObjects = {
15182
16596
  label: "ID de referencia",
15183
16597
  help: "Identificador de correlaci\xF3n proporcionado por quien llama."
15184
16598
  },
16599
+ resources: {
16600
+ label: "Resources",
16601
+ help: "JSON-serialized list of RFC 8707 resource indicators the consent covers"
16602
+ },
16603
+ requested_user_info_claims: {
16604
+ label: "Requested UserInfo Claims",
16605
+ help: "JSON-serialized list of OIDC claims the user consented to expose"
16606
+ },
15185
16607
  scopes: {
15186
16608
  label: "\xC1mbitos",
15187
16609
  help: "Lista serializada en JSON de \xE1mbitos a los que el usuario dio consentimiento."
@@ -15194,6 +16616,107 @@ var esESObjects = {
15194
16616
  }
15195
16617
  }
15196
16618
  },
16619
+ sys_oauth_resource: {
16620
+ label: "OAuth Resource",
16621
+ pluralLabel: "OAuth Resources",
16622
+ description: "Registered OAuth protected resources (RFC 8707 resource indicators)",
16623
+ fields: {
16624
+ id: {
16625
+ label: "ID"
16626
+ },
16627
+ identifier: {
16628
+ label: "Identifier",
16629
+ help: "Resource indicator URI presented in the RFC 8707 resource parameter"
16630
+ },
16631
+ name: {
16632
+ label: "Name"
16633
+ },
16634
+ access_token_ttl: {
16635
+ label: "Access Token TTL",
16636
+ help: "Access-token lifetime in seconds for this resource (overrides the server default)"
16637
+ },
16638
+ refresh_token_ttl: {
16639
+ label: "Refresh Token TTL",
16640
+ help: "Refresh-token lifetime in seconds for this resource (overrides the server default)"
16641
+ },
16642
+ signing_algorithm: {
16643
+ label: "Signing Algorithm",
16644
+ help: "JWS algorithm used to sign access tokens for this resource"
16645
+ },
16646
+ signing_key_id: {
16647
+ label: "Signing Key ID",
16648
+ help: "Key id (kid) used to sign access tokens for this resource"
16649
+ },
16650
+ allowed_scopes: {
16651
+ label: "Allowed Scopes",
16652
+ help: "JSON-serialized list of scopes clients may request for this resource"
16653
+ },
16654
+ custom_claims: {
16655
+ label: "Custom Claims",
16656
+ help: "JSON object of extra claims stamped on access tokens for this resource"
16657
+ },
16658
+ dpop_bound_access_tokens_required: {
16659
+ label: "DPoP Required",
16660
+ help: "Require access tokens for this resource to be DPoP-bound (RFC 9449)"
16661
+ },
16662
+ disabled: {
16663
+ label: "Disabled"
16664
+ },
16665
+ policy_version: {
16666
+ label: "Policy Version",
16667
+ help: "Monotonic version of the resource token policy"
16668
+ },
16669
+ metadata: {
16670
+ label: "Metadata",
16671
+ help: "JSON object of additional resource metadata"
16672
+ },
16673
+ created_at: {
16674
+ label: "Created At"
16675
+ },
16676
+ updated_at: {
16677
+ label: "Updated At"
16678
+ }
16679
+ }
16680
+ },
16681
+ sys_oauth_client_resource: {
16682
+ label: "OAuth Client Resource",
16683
+ pluralLabel: "OAuth Client Resources",
16684
+ description: "Grants allowing an OAuth client to request tokens for a protected resource",
16685
+ fields: {
16686
+ id: {
16687
+ label: "ID"
16688
+ },
16689
+ client_id: {
16690
+ label: "Client ID",
16691
+ help: "Foreign key to sys_oauth_application.client_id"
16692
+ },
16693
+ resource_id: {
16694
+ label: "Resource ID",
16695
+ help: "Foreign key to sys_oauth_resource.identifier"
16696
+ },
16697
+ metadata: {
16698
+ label: "Metadata",
16699
+ help: "JSON object of additional grant metadata"
16700
+ },
16701
+ created_at: {
16702
+ label: "Created At"
16703
+ }
16704
+ }
16705
+ },
16706
+ sys_oauth_client_assertion: {
16707
+ label: "OAuth Client Assertion",
16708
+ pluralLabel: "OAuth Client Assertions",
16709
+ description: "Consumed OAuth client-assertion JTIs (RFC 7523 replay prevention)",
16710
+ fields: {
16711
+ id: {
16712
+ label: "ID"
16713
+ },
16714
+ expires_at: {
16715
+ label: "Expires At",
16716
+ help: "Assertion expiry \u2014 rows past this instant are safe to prune"
16717
+ }
16718
+ }
16719
+ },
15197
16720
  sys_jwks: {
15198
16721
  label: "Clave de firma (JWKS)",
15199
16722
  pluralLabel: "Claves de firma (JWKS)",
@@ -15211,6 +16734,14 @@ var esESObjects = {
15211
16734
  label: "Clave privada",
15212
16735
  help: "Clave privada JWK serializada en JSON (cifrada en reposo)."
15213
16736
  },
16737
+ alg: {
16738
+ label: "Algoritmo",
16739
+ help: "Algoritmo de firma JWK, p. ej. `EdDSA` (better-auth 1.7+)"
16740
+ },
16741
+ crv: {
16742
+ label: "Curva",
16743
+ help: "Curva JWK para claves EdDSA/EC, p. ej. `Ed25519` (better-auth 1.7+)"
16744
+ },
15214
16745
  created_at: {
15215
16746
  label: "Creado el"
15216
16747
  },
@@ -15267,7 +16798,11 @@ var esESObjects = {
15267
16798
  },
15268
16799
  _views: {
15269
16800
  recent: {
15270
- label: "Recent"
16801
+ label: "Recent",
16802
+ emptyState: {
16803
+ title: "No events",
16804
+ message: "No notification events have been emitted."
16805
+ }
15271
16806
  },
15272
16807
  by_topic: {
15273
16808
  label: "By Topic"
@@ -15304,23 +16839,6 @@ var esESObjects = {
15304
16839
  size: {
15305
16840
  label: "Tama\xF1o (bytes)"
15306
16841
  },
15307
- share_type: {
15308
- label: "Tipo de compartici\xF3n",
15309
- help: "visualizador | colaborador | inferido (heredado del registro principal)",
15310
- options: {
15311
- viewer: "Visualizador",
15312
- collaborator: "Colaborador",
15313
- inferred: "Inferido"
15314
- }
15315
- },
15316
- visibility: {
15317
- label: "Visibilidad",
15318
- options: {
15319
- internal: "Interno",
15320
- all_users: "Todos los usuarios",
15321
- shared_users: "Usuarios compartidos"
15322
- }
15323
- },
15324
16842
  uploaded_by: {
15325
16843
  label: "Subido por"
15326
16844
  },
@@ -17866,6 +19384,22 @@ var enMetadataForms = {
17866
19384
  label: "Variables",
17867
19385
  helpText: "Local page state variables"
17868
19386
  },
19387
+ "variables.name": {
19388
+ label: "Name",
19389
+ helpText: "Variable name \u2014 exposed to expressions as `page.<name>`"
19390
+ },
19391
+ "variables.type": {
19392
+ label: "Type",
19393
+ helpText: "Value type"
19394
+ },
19395
+ "variables.defaultValue": {
19396
+ label: "Default Value",
19397
+ helpText: "Initial value (defaults to a type-appropriate empty value)"
19398
+ },
19399
+ "variables.source": {
19400
+ label: "Source",
19401
+ helpText: "Component (by id) that writes this variable \u2014 e.g. an element:record_picker"
19402
+ },
17869
19403
  regions: {
17870
19404
  label: "Regions",
17871
19405
  helpText: "Layout regions (header, main, sidebar, footer) with components"
@@ -19629,6 +21163,22 @@ var zhCNMetadataForms = {
19629
21163
  label: "\u53D8\u91CF",
19630
21164
  helpText: "\u9875\u9762\u672C\u5730\u72B6\u6001\u53D8\u91CF"
19631
21165
  },
21166
+ "variables.name": {
21167
+ label: "\u540D\u79F0",
21168
+ helpText: "\u53D8\u91CF\u540D\u2014\u2014\u5728\u8868\u8FBE\u5F0F\u4E2D\u4EE5 `page.<name>` \u8BBF\u95EE"
21169
+ },
21170
+ "variables.type": {
21171
+ label: "\u7C7B\u578B",
21172
+ helpText: "\u503C\u7C7B\u578B"
21173
+ },
21174
+ "variables.defaultValue": {
21175
+ label: "\u9ED8\u8BA4\u503C",
21176
+ helpText: "\u521D\u59CB\u503C\uFF08\u9ED8\u8BA4\u4E3A\u5BF9\u5E94\u7C7B\u578B\u7684\u7A7A\u503C\uFF09"
21177
+ },
21178
+ "variables.source": {
21179
+ label: "\u6765\u6E90",
21180
+ helpText: "\u5199\u5165\u8BE5\u53D8\u91CF\u7684\u7EC4\u4EF6\uFF08\u6309 id \u6307\u5B9A\uFF09\uFF0C\u5982 element:record_picker"
21181
+ },
19632
21182
  regions: {
19633
21183
  label: "\u533A\u57DF",
19634
21184
  helpText: "\u5E03\u5C40\u533A\u57DF\uFF08header\u3001main\u3001sidebar\u3001footer\uFF09\u53CA\u5176\u7EC4\u4EF6"
@@ -21392,6 +22942,22 @@ var jaJPMetadataForms = {
21392
22942
  label: "\u5909\u6570",
21393
22943
  helpText: "\u30DA\u30FC\u30B8\u30ED\u30FC\u30AB\u30EB\u72B6\u614B\u5909\u6570"
21394
22944
  },
22945
+ "variables.name": {
22946
+ label: "\u540D\u524D",
22947
+ helpText: "\u5909\u6570\u540D \u2014 \u5F0F\u3067\u306F `page.<name>` \u3068\u3057\u3066\u53C2\u7167\u3067\u304D\u307E\u3059"
22948
+ },
22949
+ "variables.type": {
22950
+ label: "\u578B",
22951
+ helpText: "\u5024\u306E\u578B"
22952
+ },
22953
+ "variables.defaultValue": {
22954
+ label: "\u30C7\u30D5\u30A9\u30EB\u30C8\u5024",
22955
+ helpText: "\u521D\u671F\u5024\uFF08\u672A\u6307\u5B9A\u306E\u5834\u5408\u306F\u578B\u306B\u5FDC\u3058\u305F\u7A7A\u306E\u5024\uFF09"
22956
+ },
22957
+ "variables.source": {
22958
+ label: "\u30BD\u30FC\u30B9",
22959
+ helpText: "\u3053\u306E\u5909\u6570\u306B\u66F8\u304D\u8FBC\u3080\u30B3\u30F3\u30DD\u30FC\u30CD\u30F3\u30C8\uFF08id \u6307\u5B9A\uFF09\u2014 \u4F8B: element:record_picker"
22960
+ },
21395
22961
  regions: {
21396
22962
  label: "\u30EA\u30FC\u30B8\u30E7\u30F3",
21397
22963
  helpText: "\u30B3\u30F3\u30DD\u30FC\u30CD\u30F3\u30C8\u3092\u542B\u3080\u30EC\u30A4\u30A2\u30A6\u30C8\u9818\u57DF\uFF08header, main, sidebar, footer\uFF09"
@@ -23155,6 +24721,22 @@ var esESMetadataForms = {
23155
24721
  label: "Variables de p\xE1gina",
23156
24722
  helpText: "Variables de estado local de p\xE1gina"
23157
24723
  },
24724
+ "variables.name": {
24725
+ label: "Nombre",
24726
+ helpText: "Nombre de la variable \u2014 expuesta en expresiones como `page.<name>`"
24727
+ },
24728
+ "variables.type": {
24729
+ label: "Tipo",
24730
+ helpText: "Tipo de valor"
24731
+ },
24732
+ "variables.defaultValue": {
24733
+ label: "Valor predeterminado",
24734
+ helpText: "Valor inicial (por defecto, un valor vac\xEDo seg\xFAn el tipo)"
24735
+ },
24736
+ "variables.source": {
24737
+ label: "Origen",
24738
+ helpText: "Componente (por id) que escribe esta variable \u2014 p. ej. un element:record_picker"
24739
+ },
23158
24740
  regions: {
23159
24741
  label: "Regiones",
23160
24742
  helpText: "Regiones de dise\xF1o (header, main, sidebar, footer) con componentes"
@@ -24234,8 +25816,11 @@ exports.SysMember = SysMember;
24234
25816
  exports.SysNotification = SysNotification;
24235
25817
  exports.SysOauthAccessToken = SysOauthAccessToken;
24236
25818
  exports.SysOauthApplication = SysOauthApplication;
25819
+ exports.SysOauthClientAssertion = SysOauthClientAssertion;
25820
+ exports.SysOauthClientResource = SysOauthClientResource;
24237
25821
  exports.SysOauthConsent = SysOauthConsent;
24238
25822
  exports.SysOauthRefreshToken = SysOauthRefreshToken;
25823
+ exports.SysOauthResource = SysOauthResource;
24239
25824
  exports.SysOrganization = SysOrganization;
24240
25825
  exports.SysOrganizationDetailPage = SysOrganizationDetailPage;
24241
25826
  exports.SysPositionDetailPage = SysPositionDetailPage;