@objectstack/spec 0.2.0 → 0.3.0

package/dist/system/identity.zod.js

@@ -1,68 +1,185 @@
 "use strict";
 Object.defineProperty(exports, "__esModule", { value: true });
-exports.AuthProviderSchema = exports.LDAPConfigSchema = exports.SAMLConfigSchema = exports.OIDCConfigSchema = exports.AuthProtocol = void 0;
+exports.VerificationTokenSchema = exports.SessionSchema = exports.AccountSchema = exports.UserSchema = void 0;
 const zod_1 = require("zod");
 /**
- * Authentication Protocol
- * Defines supported authentication standards (OIDC, SAML, LDAP).
+ * Identity & User Model Specification
+ *
+ * Defines the standard user, account, and session data models for ObjectStack.
+ * These schemas represent "who is logged in" and their associated data.
+ *
+ * This is separate from authentication configuration (auth.zod.ts) which
+ * defines "how to login".
  */
-exports.AuthProtocol = zod_1.z.enum([
-    'oidc', // OpenID Connect (Modern standard)
-    'saml', // SAML 2.0 (Legacy Enterprise)
-    'ldap', // LDAP/Active Directory (On-premise)
-    'oauth2', // Generic OAuth2
-    'local', // Database username/password
-    'mock' // Testing
-]);
 /**
- * OIDC / OAuth2 Config (Standard)
+ * User Schema
+ * Core user identity data model
  */
-exports.OIDCConfigSchema = zod_1.z.object({
-    issuer: zod_1.z.string().url().describe('OIDC Issuer URL (.well-known/openid-configuration)'),
-    clientId: zod_1.z.string(),
-    clientSecret: zod_1.z.string(), // Usually value is ENV reference
-    scopes: zod_1.z.array(zod_1.z.string()).default(['openid', 'profile', 'email']),
-    attributeMapping: zod_1.z.record(zod_1.z.string()).optional().describe('Map IdP claims to User fields'),
+exports.UserSchema = zod_1.z.object({
+    /**
+     * Unique user identifier
+     */
+    id: zod_1.z.string().describe('Unique user identifier'),
+    /**
+     * User's email address (primary identifier)
+     */
+    email: zod_1.z.string().email().describe('User email address'),
+    /**
+     * Email verification status
+     */
+    emailVerified: zod_1.z.boolean().default(false).describe('Whether email is verified'),
+    /**
+     * User's display name
+     */
+    name: zod_1.z.string().optional().describe('User display name'),
+    /**
+     * User's profile image URL
+     */
+    image: zod_1.z.string().url().optional().describe('Profile image URL'),
+    /**
+     * Account creation timestamp
+     */
+    createdAt: zod_1.z.date().describe('Account creation timestamp'),
+    /**
+     * Last update timestamp
+     */
+    updatedAt: zod_1.z.date().describe('Last update timestamp'),
 });
 /**
- * SAML 2.0 Config (Enterprise)
+ * Account Schema
+ * Links external OAuth/OIDC/SAML accounts to a user
  */
-exports.SAMLConfigSchema = zod_1.z.object({
-    entryPoint: zod_1.z.string().url().describe('IdP SSO URL'),
-    cert: zod_1.z.string().describe('IdP Public Certificate'), // PEM format
-    issuer: zod_1.z.string().describe('Entity ID of the IdP'),
-    signatureAlgorithm: zod_1.z.enum(['sha256', 'sha512']).default('sha256'),
-    attributeMapping: zod_1.z.record(zod_1.z.string()).optional(),
+exports.AccountSchema = zod_1.z.object({
+    /**
+     * Unique account identifier
+     */
+    id: zod_1.z.string().describe('Unique account identifier'),
+    /**
+     * Associated user ID
+     */
+    userId: zod_1.z.string().describe('Associated user ID'),
+    /**
+     * Account type/provider
+     */
+    type: zod_1.z.enum([
+        'oauth',
+        'oidc',
+        'email',
+        'credentials',
+        'saml',
+        'ldap',
+    ]).describe('Account type'),
+    /**
+     * Provider name (e.g., 'google', 'github', 'okta')
+     */
+    provider: zod_1.z.string().describe('Provider name'),
+    /**
+     * Provider account ID
+     */
+    providerAccountId: zod_1.z.string().describe('Provider account ID'),
+    /**
+     * OAuth refresh token
+     */
+    refreshToken: zod_1.z.string().optional().describe('OAuth refresh token'),
+    /**
+     * OAuth access token
+     */
+    accessToken: zod_1.z.string().optional().describe('OAuth access token'),
+    /**
+     * Token expiry timestamp
+     */
+    expiresAt: zod_1.z.number().optional().describe('Token expiry timestamp (Unix)'),
+    /**
+     * OAuth token type
+     */
+    tokenType: zod_1.z.string().optional().describe('OAuth token type'),
+    /**
+     * OAuth scope
+     */
+    scope: zod_1.z.string().optional().describe('OAuth scope'),
+    /**
+     * OAuth ID token
+     */
+    idToken: zod_1.z.string().optional().describe('OAuth ID token'),
+    /**
+     * Session state
+     */
+    sessionState: zod_1.z.string().optional().describe('Session state'),
+    /**
+     * Account creation timestamp
+     */
+    createdAt: zod_1.z.date().describe('Account creation timestamp'),
+    /**
+     * Last update timestamp
+     */
+    updatedAt: zod_1.z.date().describe('Last update timestamp'),
 });
 /**
- * LDAP / AD Config (On-premise)
+ * Session Schema
+ * User session data model
  */
-exports.LDAPConfigSchema = zod_1.z.object({
-    url: zod_1.z.string().url().describe('LDAP Server URL (ldap:// or ldaps://)'),
-    bindDn: zod_1.z.string(),
-    bindCredentials: zod_1.z.string(),
-    searchBase: zod_1.z.string(),
-    searchFilter: zod_1.z.string(),
-    groupSearchBase: zod_1.z.string().optional(),
+exports.SessionSchema = zod_1.z.object({
+    /**
+     * Unique session identifier
+     */
+    id: zod_1.z.string().describe('Unique session identifier'),
+    /**
+     * Session token
+     */
+    sessionToken: zod_1.z.string().describe('Session token'),
+    /**
+     * Associated user ID
+     */
+    userId: zod_1.z.string().describe('Associated user ID'),
+    /**
+     * Active organization ID for this session
+     * Used for context switching in multi-tenant applications
+     */
+    activeOrganizationId: zod_1.z.string().optional().describe('Active organization ID for context switching'),
+    /**
+     * Session expiry timestamp
+     */
+    expires: zod_1.z.date().describe('Session expiry timestamp'),
+    /**
+     * Session creation timestamp
+     */
+    createdAt: zod_1.z.date().describe('Session creation timestamp'),
+    /**
+     * Last update timestamp
+     */
+    updatedAt: zod_1.z.date().describe('Last update timestamp'),
+    /**
+     * IP address of the session
+     */
+    ipAddress: zod_1.z.string().optional().describe('IP address'),
+    /**
+     * User agent string
+     */
+    userAgent: zod_1.z.string().optional().describe('User agent string'),
+    /**
+     * Device fingerprint
+     */
+    fingerprint: zod_1.z.string().optional().describe('Device fingerprint'),
 });
 /**
- * Identity Provider (IdP) Schema
- * Connects the OS to an external source of truth for identities.
+ * Verification Token Schema
+ * Email verification and password reset tokens
  */
-exports.AuthProviderSchema = zod_1.z.object({
-    name: zod_1.z.string().regex(/^[a-z_][a-z0-9_]*$/).describe('Provider ID'),
-    label: zod_1.z.string().describe('Button Label (e.g. "Login with Okta")'),
-    type: exports.AuthProtocol,
-    /** Configuration (Polymorphic based on type) */
-    config: zod_1.z.union([
-        exports.OIDCConfigSchema,
-        exports.SAMLConfigSchema,
-        exports.LDAPConfigSchema,
-        zod_1.z.record(zod_1.z.any()) // Fallback
-    ]).describe('Provider specific configuration'),
-    /** Visuals */
-    icon: zod_1.z.string().optional().describe('Icon URL or helper class'),
-    /** Policies */
-    active: zod_1.z.boolean().default(true),
-    registrationEnabled: zod_1.z.boolean().default(false).describe('Allow new users to sign up via this provider'),
+exports.VerificationTokenSchema = zod_1.z.object({
+    /**
+     * Token identifier (email or phone)
+     */
+    identifier: zod_1.z.string().describe('Token identifier (email or phone)'),
+    /**
+     * Verification token
+     */
+    token: zod_1.z.string().describe('Verification token'),
+    /**
+     * Token expiry timestamp
+     */
+    expires: zod_1.z.date().describe('Token expiry timestamp'),
+    /**
+     * Token creation timestamp
+     */
+    createdAt: zod_1.z.date().describe('Token creation timestamp'),
 });

package/dist/system/index.d.ts

@@ -0,0 +1,28 @@
+/**
+ * System Protocol Exports
+ *
+ * Runtime Configuration & Security
+ * - Manifest (Config), Datasource
+ * - Role (Hierarchy), Identity (Auth)
+ * - Webhook (Integration), Policy (Compliance)
+ * - Plugin Architecture
+ */
+export * from './manifest.zod';
+export * from './datasource.zod';
+export * from './api.zod';
+export * from './identity.zod';
+export * from './auth.zod';
+export * from './auth-protocol';
+export * from './organization.zod';
+export * from './policy.zod';
+export * from './role.zod';
+export * from './territory.zod';
+export * from './license.zod';
+export * from './webhook.zod';
+export * from './translation.zod';
+export * from './driver.zod';
+export * from './discovery.zod';
+export * from './plugin.zod';
+export * from './constants';
+export * from './types';
+//# sourceMappingURL=index.d.ts.map

package/dist/system/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/system/index.ts"],"names":[],"mappings":"AAAA;;;;;;;;GAQG;AAEH,cAAc,gBAAgB,CAAC;AAC/B,cAAc,kBAAkB,CAAC;AACjC,cAAc,WAAW,CAAC;AAC1B,cAAc,gBAAgB,CAAC;AAC/B,cAAc,YAAY,CAAC;AAC3B,cAAc,iBAAiB,CAAC;AAChC,cAAc,oBAAoB,CAAC;AACnC,cAAc,cAAc,CAAC;AAC7B,cAAc,YAAY,CAAC;AAC3B,cAAc,iBAAiB,CAAC;AAChC,cAAc,eAAe,CAAC;AAC9B,cAAc,eAAe,CAAC;AAC9B,cAAc,mBAAmB,CAAC;AAClC,cAAc,cAAc,CAAC;AAC7B,cAAc,iBAAiB,CAAC;AAChC,cAAc,cAAc,CAAC;AAC7B,cAAc,aAAa,CAAC;AAC5B,cAAc,SAAS,CAAC"}

package/dist/system/index.js

@@ -0,0 +1,43 @@
+"use strict";
+/**
+ * System Protocol Exports
+ *
+ * Runtime Configuration & Security
+ * - Manifest (Config), Datasource
+ * - Role (Hierarchy), Identity (Auth)
+ * - Webhook (Integration), Policy (Compliance)
+ * - Plugin Architecture
+ */
+var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    var desc = Object.getOwnPropertyDescriptor(m, k);
+    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
+      desc = { enumerable: true, get: function() { return m[k]; } };
+    }
+    Object.defineProperty(o, k2, desc);
+}) : (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    o[k2] = m[k];
+}));
+var __exportStar = (this && this.__exportStar) || function(m, exports) {
+    for (var p in m) if (p !== "default" && !Object.prototype.hasOwnProperty.call(exports, p)) __createBinding(exports, m, p);
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+__exportStar(require("./manifest.zod"), exports);
+__exportStar(require("./datasource.zod"), exports);
+__exportStar(require("./api.zod"), exports);
+__exportStar(require("./identity.zod"), exports);
+__exportStar(require("./auth.zod"), exports);
+__exportStar(require("./auth-protocol"), exports);
+__exportStar(require("./organization.zod"), exports);
+__exportStar(require("./policy.zod"), exports);
+__exportStar(require("./role.zod"), exports);
+__exportStar(require("./territory.zod"), exports);
+__exportStar(require("./license.zod"), exports);
+__exportStar(require("./webhook.zod"), exports);
+__exportStar(require("./translation.zod"), exports);
+__exportStar(require("./driver.zod"), exports);
+__exportStar(require("./discovery.zod"), exports);
+__exportStar(require("./plugin.zod"), exports);
+__exportStar(require("./constants"), exports);
+__exportStar(require("./types"), exports);

package/dist/system/manifest.zod.d.ts

@@ -283,11 +283,6 @@ export declare const ManifestSchema: z.ZodObject<{
     version: string;
     description?: string | undefined;
     objects?: string[] | undefined;
-    data?: {
-        object: string;
-        mode: "upsert" | "insert" | "ignore";
-        records: Record<string, any>[];
-    }[] | undefined;
     permissions?: string[] | undefined;
     datasources?: string[] | undefined;
     dependencies?: Record<string, string> | undefined;
@@ -331,6 +326,11 @@ export declare const ManifestSchema: z.ZodObject<{
             locale: string;
         }[] | undefined;
     } | undefined;
+    data?: {
+        object: string;
+        mode: "upsert" | "insert" | "ignore";
+        records: Record<string, any>[];
+    }[] | undefined;
     extensions?: Record<string, any> | undefined;
 }, {
     type: "app" | "plugin" | "driver" | "module";
@@ -339,11 +339,6 @@ export declare const ManifestSchema: z.ZodObject<{
     version: string;
     description?: string | undefined;
     objects?: string[] | undefined;
-    data?: {
-        object: string;
-        records: Record<string, any>[];
-        mode?: "upsert" | "insert" | "ignore" | undefined;
-    }[] | undefined;
     permissions?: string[] | undefined;
     datasources?: string[] | undefined;
     dependencies?: Record<string, string> | undefined;
@@ -387,6 +382,11 @@ export declare const ManifestSchema: z.ZodObject<{
             locale: string;
         }[] | undefined;
     } | undefined;
+    data?: {
+        object: string;
+        records: Record<string, any>[];
+        mode?: "upsert" | "insert" | "ignore" | undefined;
+    }[] | undefined;
     extensions?: Record<string, any> | undefined;
 }>;
 /**

package/dist/system/organization.zod.d.ts

@@ -0,0 +1,179 @@
+import { z } from 'zod';
+/**
+ * Organization Schema (Multi-Tenant Architecture)
+ *
+ * Defines the standard organization/workspace model for ObjectStack.
+ * Supports B2B SaaS scenarios where users belong to multiple teams/workspaces.
+ *
+ * This aligns with better-auth's organization plugin capabilities.
+ */
+/**
+ * Organization Schema
+ * Represents a team, workspace, or tenant in a multi-tenant application
+ */
+export declare const OrganizationSchema: z.ZodObject<{
+    /**
+     * Unique organization identifier
+     */
+    id: z.ZodString;
+    /**
+     * Organization name (display name)
+     */
+    name: z.ZodString;
+    /**
+     * Organization slug (URL-friendly identifier)
+     * Must be unique across all organizations
+     */
+    slug: z.ZodString;
+    /**
+     * Organization logo URL
+     */
+    logo: z.ZodOptional<z.ZodString>;
+    /**
+     * Custom metadata for the organization
+     * Can store additional configuration, settings, or custom fields
+     */
+    metadata: z.ZodOptional<z.ZodRecord<z.ZodString, z.ZodAny>>;
+    /**
+     * Organization creation timestamp
+     */
+    createdAt: z.ZodDate;
+    /**
+     * Last update timestamp
+     */
+    updatedAt: z.ZodDate;
+}, "strip", z.ZodTypeAny, {
+    name: string;
+    id: string;
+    createdAt: Date;
+    updatedAt: Date;
+    slug: string;
+    logo?: string | undefined;
+    metadata?: Record<string, any> | undefined;
+}, {
+    name: string;
+    id: string;
+    createdAt: Date;
+    updatedAt: Date;
+    slug: string;
+    logo?: string | undefined;
+    metadata?: Record<string, any> | undefined;
+}>;
+export type Organization = z.infer<typeof OrganizationSchema>;
+/**
+ * Organization Member Schema
+ * Links users to organizations with specific roles
+ */
+export declare const MemberSchema: z.ZodObject<{
+    /**
+     * Unique member identifier
+     */
+    id: z.ZodString;
+    /**
+     * Organization ID this membership belongs to
+     */
+    organizationId: z.ZodString;
+    /**
+     * User ID of the member
+     */
+    userId: z.ZodString;
+    /**
+     * Member's role within the organization
+     * Common roles: 'owner', 'admin', 'member', 'guest'
+     * Can be customized per application
+     */
+    role: z.ZodString;
+    /**
+     * Member creation timestamp
+     */
+    createdAt: z.ZodDate;
+    /**
+     * Last update timestamp
+     */
+    updatedAt: z.ZodDate;
+}, "strip", z.ZodTypeAny, {
+    id: string;
+    userId: string;
+    createdAt: Date;
+    updatedAt: Date;
+    organizationId: string;
+    role: string;
+}, {
+    id: string;
+    userId: string;
+    createdAt: Date;
+    updatedAt: Date;
+    organizationId: string;
+    role: string;
+}>;
+export type Member = z.infer<typeof MemberSchema>;
+/**
+ * Invitation Status Enum
+ */
+export declare const InvitationStatus: z.ZodEnum<["pending", "accepted", "rejected", "expired"]>;
+export type InvitationStatus = z.infer<typeof InvitationStatus>;
+/**
+ * Organization Invitation Schema
+ * Represents an invitation to join an organization
+ */
+export declare const InvitationSchema: z.ZodObject<{
+    /**
+     * Unique invitation identifier
+     */
+    id: z.ZodString;
+    /**
+     * Organization ID the invitation is for
+     */
+    organizationId: z.ZodString;
+    /**
+     * Email address of the invitee
+     */
+    email: z.ZodString;
+    /**
+     * Role the invitee will receive upon accepting
+     * Common roles: 'admin', 'member', 'guest'
+     */
+    role: z.ZodString;
+    /**
+     * Invitation status
+     */
+    status: z.ZodDefault<z.ZodEnum<["pending", "accepted", "rejected", "expired"]>>;
+    /**
+     * Invitation expiration timestamp
+     */
+    expiresAt: z.ZodDate;
+    /**
+     * User ID of the person who sent the invitation
+     */
+    inviterId: z.ZodString;
+    /**
+     * Invitation creation timestamp
+     */
+    createdAt: z.ZodDate;
+    /**
+     * Last update timestamp
+     */
+    updatedAt: z.ZodDate;
+}, "strip", z.ZodTypeAny, {
+    email: string;
+    status: "pending" | "accepted" | "rejected" | "expired";
+    id: string;
+    createdAt: Date;
+    updatedAt: Date;
+    expiresAt: Date;
+    organizationId: string;
+    role: string;
+    inviterId: string;
+}, {
+    email: string;
+    id: string;
+    createdAt: Date;
+    updatedAt: Date;
+    expiresAt: Date;
+    organizationId: string;
+    role: string;
+    inviterId: string;
+    status?: "pending" | "accepted" | "rejected" | "expired" | undefined;
+}>;
+export type Invitation = z.infer<typeof InvitationSchema>;
+//# sourceMappingURL=organization.zod.d.ts.map

package/dist/system/organization.zod.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"organization.zod.d.ts","sourceRoot":"","sources":["../../src/system/organization.zod.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,CAAC,EAAE,MAAM,KAAK,CAAC;AAExB;;;;;;;GAOG;AAEH;;;GAGG;AACH,eAAO,MAAM,kBAAkB;IAC7B;;OAEG;;IAGH;;OAEG;;IAGH;;;OAGG;;IAKH;;OAEG;;IAGH;;;OAGG;;IAGH;;OAEG;;IAGH;;OAEG;;;;;;;;;;;;;;;;;;EAEH,CAAC;AAEH,MAAM,MAAM,YAAY,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,kBAAkB,CAAC,CAAC;AAE9D;;;GAGG;AACH,eAAO,MAAM,YAAY;IACvB;;OAEG;;IAGH;;OAEG;;IAGH;;OAEG;;IAGH;;;;OAIG;;IAGH;;OAEG;;IAGH;;OAEG;;;;;;;;;;;;;;;;EAEH,CAAC;AAEH,MAAM,MAAM,MAAM,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,YAAY,CAAC,CAAC;AAElD;;GAEG;AACH,eAAO,MAAM,gBAAgB,2DAAyD,CAAC;AAEvF,MAAM,MAAM,gBAAgB,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,gBAAgB,CAAC,CAAC;AAEhE;;;GAGG;AACH,eAAO,MAAM,gBAAgB;IAC3B;;OAEG;;IAGH;;OAEG;;IAGH;;OAEG;;IAGH;;;OAGG;;IAGH;;OAEG;;IAGH;;OAEG;;IAGH;;OAEG;;IAGH;;OAEG;;IAGH;;OAEG;;;;;;;;;;;;;;;;;;;;;;EAEH,CAAC;AAEH,MAAM,MAAM,UAAU,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,gBAAgB,CAAC,CAAC"}

package/dist/system/organization.zod.js

@@ -0,0 +1,129 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.InvitationSchema = exports.InvitationStatus = exports.MemberSchema = exports.OrganizationSchema = void 0;
+const zod_1 = require("zod");
+/**
+ * Organization Schema (Multi-Tenant Architecture)
+ *
+ * Defines the standard organization/workspace model for ObjectStack.
+ * Supports B2B SaaS scenarios where users belong to multiple teams/workspaces.
+ *
+ * This aligns with better-auth's organization plugin capabilities.
+ */
+/**
+ * Organization Schema
+ * Represents a team, workspace, or tenant in a multi-tenant application
+ */
+exports.OrganizationSchema = zod_1.z.object({
+    /**
+     * Unique organization identifier
+     */
+    id: zod_1.z.string().describe('Unique organization identifier'),
+    /**
+     * Organization name (display name)
+     */
+    name: zod_1.z.string().describe('Organization display name'),
+    /**
+     * Organization slug (URL-friendly identifier)
+     * Must be unique across all organizations
+     */
+    slug: zod_1.z.string()
+        .regex(/^[a-z0-9_-]+$/)
+        .describe('Unique URL-friendly slug (lowercase alphanumeric, hyphens, underscores)'),
+    /**
+     * Organization logo URL
+     */
+    logo: zod_1.z.string().url().optional().describe('Organization logo URL'),
+    /**
+     * Custom metadata for the organization
+     * Can store additional configuration, settings, or custom fields
+     */
+    metadata: zod_1.z.record(zod_1.z.any()).optional().describe('Custom metadata'),
+    /**
+     * Organization creation timestamp
+     */
+    createdAt: zod_1.z.date().describe('Organization creation timestamp'),
+    /**
+     * Last update timestamp
+     */
+    updatedAt: zod_1.z.date().describe('Last update timestamp'),
+});
+/**
+ * Organization Member Schema
+ * Links users to organizations with specific roles
+ */
+exports.MemberSchema = zod_1.z.object({
+    /**
+     * Unique member identifier
+     */
+    id: zod_1.z.string().describe('Unique member identifier'),
+    /**
+     * Organization ID this membership belongs to
+     */
+    organizationId: zod_1.z.string().describe('Organization ID'),
+    /**
+     * User ID of the member
+     */
+    userId: zod_1.z.string().describe('User ID'),
+    /**
+     * Member's role within the organization
+     * Common roles: 'owner', 'admin', 'member', 'guest'
+     * Can be customized per application
+     */
+    role: zod_1.z.string().describe('Member role (e.g., owner, admin, member, guest)'),
+    /**
+     * Member creation timestamp
+     */
+    createdAt: zod_1.z.date().describe('Member creation timestamp'),
+    /**
+     * Last update timestamp
+     */
+    updatedAt: zod_1.z.date().describe('Last update timestamp'),
+});
+/**
+ * Invitation Status Enum
+ */
+exports.InvitationStatus = zod_1.z.enum(['pending', 'accepted', 'rejected', 'expired']);
+/**
+ * Organization Invitation Schema
+ * Represents an invitation to join an organization
+ */
+exports.InvitationSchema = zod_1.z.object({
+    /**
+     * Unique invitation identifier
+     */
+    id: zod_1.z.string().describe('Unique invitation identifier'),
+    /**
+     * Organization ID the invitation is for
+     */
+    organizationId: zod_1.z.string().describe('Organization ID'),
+    /**
+     * Email address of the invitee
+     */
+    email: zod_1.z.string().email().describe('Invitee email address'),
+    /**
+     * Role the invitee will receive upon accepting
+     * Common roles: 'admin', 'member', 'guest'
+     */
+    role: zod_1.z.string().describe('Role to assign upon acceptance'),
+    /**
+     * Invitation status
+     */
+    status: exports.InvitationStatus.default('pending').describe('Invitation status'),
+    /**
+     * Invitation expiration timestamp
+     */
+    expiresAt: zod_1.z.date().describe('Invitation expiry timestamp'),
+    /**
+     * User ID of the person who sent the invitation
+     */
+    inviterId: zod_1.z.string().describe('User ID of the inviter'),
+    /**
+     * Invitation creation timestamp
+     */
+    createdAt: zod_1.z.date().describe('Invitation creation timestamp'),
+    /**
+     * Last update timestamp
+     */
+    updatedAt: zod_1.z.date().describe('Last update timestamp'),
+});