@pulumi/auth0 2.10.0 → 2.12.0-alpha.1660228844
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/action.d.ts +1 -1
- package/action.js +1 -1
- package/client.d.ts +3 -3
- package/connection.d.ts +0 -37
- package/connection.js +0 -37
- package/connection.js.map +1 -1
- package/emailTemplate.d.ts +13 -0
- package/emailTemplate.js +3 -0
- package/emailTemplate.js.map +1 -1
- package/guardian.d.ts +122 -5
- package/guardian.js +39 -2
- package/guardian.js.map +1 -1
- package/index.d.ts +2 -0
- package/index.js +10 -0
- package/index.js.map +1 -1
- package/organization.d.ts +6 -0
- package/organization.js.map +1 -1
- package/organizationConnection.d.ts +112 -0
- package/organizationConnection.js +87 -0
- package/organizationConnection.js.map +1 -0
- package/organizationMember.d.ts +96 -0
- package/organizationMember.js +83 -0
- package/organizationMember.js.map +1 -0
- package/package.json +4 -3
- package/package.json.bak +2 -1
- package/package.json.dev +4 -3
- package/prompt.d.ts +16 -6
- package/prompt.js +3 -0
- package/prompt.js.map +1 -1
- package/tenant.d.ts +16 -1
- package/tenant.js +6 -1
- package/tenant.js.map +1 -1
- package/types/input.d.ts +91 -0
- package/types/output.d.ts +106 -15
package/tenant.js.map
CHANGED
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"tenant.js","sourceRoot":"","sources":["../tenant.ts"],"names":[],"mappings":";AAAA,wFAAwF;AACxF,iFAAiF;;;AAEjF,yCAAyC;AAEzC,yCAAyC;AAEzC
|
|
1
|
+
{"version":3,"file":"tenant.js","sourceRoot":"","sources":["../tenant.ts"],"names":[],"mappings":";AAAA,wFAAwF;AACxF,iFAAiF;;;AAEjF,yCAAyC;AAEzC,yCAAyC;AAEzC;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GAqDG;AACH,MAAa,MAAO,SAAQ,MAAM,CAAC,cAAc;IA6G7C,YAAY,IAAY,EAAE,WAAsC,EAAE,IAAmC;QACjG,IAAI,cAAc,GAAkB,EAAE,CAAC;QACvC,IAAI,GAAG,IAAI,IAAI,EAAE,CAAC;QAClB,IAAI,IAAI,CAAC,EAAE,EAAE;YACT,MAAM,KAAK,GAAG,WAAsC,CAAC;YACrD,cAAc,CAAC,mBAAmB,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,iBAAiB,CAAC,CAAC,CAAC,SAAS,CAAC;YAClF,cAAc,CAAC,gBAAgB,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,cAAc,CAAC,CAAC,CAAC,SAAS,CAAC;YAC5E,cAAc,CAAC,iBAAiB,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,eAAe,CAAC,CAAC,CAAC,SAAS,CAAC;YAC9E,cAAc,CAAC,kBAAkB,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,gBAAgB,CAAC,CAAC,CAAC,SAAS,CAAC;YAChF,cAAc,CAAC,uBAAuB,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,qBAAqB,CAAC,CAAC,CAAC,SAAS,CAAC;YAC1F,cAAc,CAAC,gBAAgB,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,cAAc,CAAC,CAAC,CAAC,SAAS,CAAC;YAC5E,cAAc,CAAC,WAAW,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,SAAS,CAAC,CAAC,CAAC,SAAS,CAAC;YAClE,cAAc,CAAC,OAAO,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,KAAK,CAAC,CAAC,CAAC,SAAS,CAAC;YAC1D,cAAc,CAAC,cAAc,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,YAAY,CAAC,CAAC,CAAC,SAAS,CAAC;YACxE,cAAc,CAAC,iBAAiB,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,eAAe,CAAC,CAAC,CAAC,SAAS,CAAC;YAC9E,cAAc,CAAC,qBAAqB,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,mBAAmB,CAAC,CAAC,CAAC,SAAS,CAAC;YACtF,cAAc,CAAC,YAAY,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,UAAU,CAAC,CAAC,CAAC,SAAS,CAAC;YACpE,cAAc,CAAC,gBAAgB,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,cAAc,CAAC,CAAC,CAAC,SAAS,CAAC;YAC5E,cAAc,CAAC,eAAe,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,aAAa,CAAC,CAAC,CAAC,SAAS,CAAC;YAC1E,cAAc,CAAC,iBAAiB,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,eAAe,CAAC,CAAC,CAAC,SAAS,CAAC;YAC9E,cAAc,CAAC,cAAc,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,YAAY,CAAC,CAAC,CAAC,SAAS,CAAC;YACxE,cAAc,CAAC,YAAY,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,UAAU,CAAC,CAAC,CAAC,SAAS,CAAC;YACpE,cAAc,CAAC,gBAAgB,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,cAAc,CAAC,CAAC,CAAC,SAAS,CAAC;SAC/E;aAAM;YACH,MAAM,IAAI,GAAG,WAAqC,CAAC;YACnD,cAAc,CAAC,mBAAmB,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,iBAAiB,CAAC,CAAC,CAAC,SAAS,CAAC;YAChF,cAAc,CAAC,gBAAgB,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,cAAc,CAAC,CAAC,CAAC,SAAS,CAAC;YAC1E,cAAc,CAAC,iBAAiB,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,eAAe,CAAC,CAAC,CAAC,SAAS,CAAC;YAC5E,cAAc,CAAC,kBAAkB,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,gBAAgB,CAAC,CAAC,CAAC,SAAS,CAAC;YAC9E,cAAc,CAAC,uBAAuB,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,qBAAqB,CAAC,CAAC,CAAC,SAAS,CAAC;YACxF,cAAc,CAAC,gBAAgB,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,cAAc,CAAC,CAAC,CAAC,SAAS,CAAC;YAC1E,cAAc,CAAC,WAAW,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,SAAS,CAAC,CAAC,CAAC,SAAS,CAAC;YAChE,cAAc,CAAC,OAAO,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,CAAC,SAAS,CAAC;YACxD,cAAc,CAAC,cAAc,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,YAAY,CAAC,CAAC,CAAC,SAAS,CAAC;YACtE,cAAc,CAAC,iBAAiB,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,eAAe,CAAC,CAAC,CAAC,SAAS,CAAC;YAC5E,cAAc,CAAC,qBAAqB,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,mBAAmB,CAAC,CAAC,CAAC,SAAS,CAAC;YACpF,cAAc,CAAC,YAAY,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,UAAU,CAAC,CAAC,CAAC,SAAS,CAAC;YAClE,cAAc,CAAC,gBAAgB,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,cAAc,CAAC,CAAC,CAAC,SAAS,CAAC;YAC1E,cAAc,CAAC,eAAe,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,aAAa,CAAC,CAAC,CAAC,SAAS,CAAC;YACxE,cAAc,CAAC,iBAAiB,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,eAAe,CAAC,CAAC,CAAC,SAAS,CAAC;YAC5E,cAAc,CAAC,cAAc,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,YAAY,CAAC,CAAC,CAAC,SAAS,CAAC;YACtE,cAAc,CAAC,YAAY,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,UAAU,CAAC,CAAC,CAAC,SAAS,CAAC;YAClE,cAAc,CAAC,gBAAgB,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,cAAc,CAAC,CAAC,CAAC,SAAS,CAAC;SAC7E;QACD,IAAI,GAAG,MAAM,CAAC,YAAY,CAAC,SAAS,CAAC,oBAAoB,EAAE,EAAE,IAAI,CAAC,CAAC;QACnE,KAAK,CAAC,MAAM,CAAC,YAAY,EAAE,IAAI,EAAE,cAAc,EAAE,IAAI,CAAC,CAAC;IAC3D,CAAC;IA1JD;;;;;;;;OAQG;IACI,MAAM,CAAC,GAAG,CAAC,IAAY,EAAE,EAA2B,EAAE,KAAmB,EAAE,IAAmC;QACjH,OAAO,IAAI,MAAM,CAAC,IAAI,EAAO,KAAK,kCAAO,IAAI,KAAE,EAAE,EAAE,EAAE,IAAG,CAAC;IAC7D,CAAC;IAKD;;;OAGG;IACI,MAAM,CAAC,UAAU,CAAC,GAAQ;QAC7B,IAAI,GAAG,KAAK,SAAS,IAAI,GAAG,KAAK,IAAI,EAAE;YACnC,OAAO,KAAK,CAAC;SAChB;QACD,OAAO,GAAG,CAAC,cAAc,CAAC,KAAK,MAAM,CAAC,YAAY,CAAC;IACvD,CAAC;;AA1BL,wBA4JC;AA9IG,gBAAgB;AACO,mBAAY,GAAG,2BAA2B,CAAC"}
|
package/types/input.d.ts
CHANGED
|
@@ -498,6 +498,12 @@ export interface ConnectionOptions {
|
|
|
498
498
|
* Azure AD app ID.
|
|
499
499
|
*/
|
|
500
500
|
appId?: pulumi.Input<string>;
|
|
501
|
+
/**
|
|
502
|
+
* Map(String). Use this to append or override the link parameters (like `scope`, `redirectUri`, `protocol`, `responseType`), when you send a link using email.
|
|
503
|
+
*/
|
|
504
|
+
authParams?: pulumi.Input<{
|
|
505
|
+
[key: string]: pulumi.Input<string>;
|
|
506
|
+
}>;
|
|
501
507
|
authorizationEndpoint?: pulumi.Input<string>;
|
|
502
508
|
/**
|
|
503
509
|
* Indicates whether or not to enable brute force protection, which will limit the number of signups and failed logins from a suspicious IP address.
|
|
@@ -734,6 +740,10 @@ export interface ConnectionOptions {
|
|
|
734
740
|
* Value can be `backChannel` or `frontChannel`.
|
|
735
741
|
*/
|
|
736
742
|
type?: pulumi.Input<string>;
|
|
743
|
+
/**
|
|
744
|
+
* String (JSON Encoded). You can pass provider-specific parameters to an Identity Provider during authentication. The values can either be static per connection or dynamic per user.
|
|
745
|
+
*/
|
|
746
|
+
upstreamParams?: pulumi.Input<string>;
|
|
737
747
|
useCertAuth?: pulumi.Input<boolean>;
|
|
738
748
|
useKerberos?: pulumi.Input<boolean>;
|
|
739
749
|
useWsfed?: pulumi.Input<boolean>;
|
|
@@ -1030,6 +1040,20 @@ export interface GlobalClientRefreshToken {
|
|
|
1030
1040
|
rotationType: pulumi.Input<string>;
|
|
1031
1041
|
tokenLifetime?: pulumi.Input<number>;
|
|
1032
1042
|
}
|
|
1043
|
+
export interface GuardianDuo {
|
|
1044
|
+
/**
|
|
1045
|
+
* String. Duo API Hostname, see the Duo documentation for more details on Duo setup.
|
|
1046
|
+
*/
|
|
1047
|
+
hostname: pulumi.Input<string>;
|
|
1048
|
+
/**
|
|
1049
|
+
* String. Duo client ID, see the Duo documentation for more details on Duo setup.
|
|
1050
|
+
*/
|
|
1051
|
+
integrationKey: pulumi.Input<string>;
|
|
1052
|
+
/**
|
|
1053
|
+
* String. Duo client secret, see the Duo documentation for more details on Duo setup.
|
|
1054
|
+
*/
|
|
1055
|
+
secretKey: pulumi.Input<string>;
|
|
1056
|
+
}
|
|
1033
1057
|
export interface GuardianPhone {
|
|
1034
1058
|
/**
|
|
1035
1059
|
* List(String). Message types to use, array of `sms` and or `voice`. Adding both to array should enable the user to choose.
|
|
@@ -1070,6 +1094,70 @@ export interface GuardianPhoneOptions {
|
|
|
1070
1094
|
*/
|
|
1071
1095
|
verificationMessage?: pulumi.Input<string>;
|
|
1072
1096
|
}
|
|
1097
|
+
export interface GuardianPush {
|
|
1098
|
+
amazonSns?: pulumi.Input<inputs.GuardianPushAmazonSns>;
|
|
1099
|
+
customApp?: pulumi.Input<inputs.GuardianPushCustomApp>;
|
|
1100
|
+
}
|
|
1101
|
+
export interface GuardianPushAmazonSns {
|
|
1102
|
+
/**
|
|
1103
|
+
* String. Your AWS Access Key ID.
|
|
1104
|
+
*/
|
|
1105
|
+
awsAccessKeyId: pulumi.Input<string>;
|
|
1106
|
+
/**
|
|
1107
|
+
* String. Your AWS application's region.
|
|
1108
|
+
*/
|
|
1109
|
+
awsRegion: pulumi.Input<string>;
|
|
1110
|
+
/**
|
|
1111
|
+
* String. Your AWS Secret Access Key.
|
|
1112
|
+
*/
|
|
1113
|
+
awsSecretAccessKey: pulumi.Input<string>;
|
|
1114
|
+
/**
|
|
1115
|
+
* String. The Amazon Resource Name for your Apple Push Notification Service.
|
|
1116
|
+
*/
|
|
1117
|
+
snsApnsPlatformApplicationArn: pulumi.Input<string>;
|
|
1118
|
+
/**
|
|
1119
|
+
* String. The Amazon Resource Name for your Firebase Cloud Messaging Service.
|
|
1120
|
+
*/
|
|
1121
|
+
snsGcmPlatformApplicationArn: pulumi.Input<string>;
|
|
1122
|
+
}
|
|
1123
|
+
export interface GuardianPushCustomApp {
|
|
1124
|
+
/**
|
|
1125
|
+
* String. Custom Application Name.
|
|
1126
|
+
*/
|
|
1127
|
+
appName?: pulumi.Input<string>;
|
|
1128
|
+
/**
|
|
1129
|
+
* String. Apple App Store URL.
|
|
1130
|
+
*/
|
|
1131
|
+
appleAppLink?: pulumi.Input<string>;
|
|
1132
|
+
/**
|
|
1133
|
+
* String. Google Store URL.
|
|
1134
|
+
*/
|
|
1135
|
+
googleAppLink?: pulumi.Input<string>;
|
|
1136
|
+
}
|
|
1137
|
+
export interface GuardianWebauthnPlatform {
|
|
1138
|
+
/**
|
|
1139
|
+
* Bool. The Relying Party is the domain for which the WebAuthn keys will be issued, set to true if you are customizing the identifier.
|
|
1140
|
+
*/
|
|
1141
|
+
overrideRelyingParty?: pulumi.Input<boolean>;
|
|
1142
|
+
/**
|
|
1143
|
+
* String. The Relying Party should be a suffix of the custom domain.
|
|
1144
|
+
*/
|
|
1145
|
+
relyingPartyIdentifier?: pulumi.Input<string>;
|
|
1146
|
+
}
|
|
1147
|
+
export interface GuardianWebauthnRoaming {
|
|
1148
|
+
/**
|
|
1149
|
+
* Bool. The Relying Party is the domain for which the WebAuthn keys will be issued, set to true if you are customizing the identifier.
|
|
1150
|
+
*/
|
|
1151
|
+
overrideRelyingParty?: pulumi.Input<boolean>;
|
|
1152
|
+
/**
|
|
1153
|
+
* String. The Relying Party should be a suffix of the custom domain.
|
|
1154
|
+
*/
|
|
1155
|
+
relyingPartyIdentifier?: pulumi.Input<string>;
|
|
1156
|
+
/**
|
|
1157
|
+
* String. User verification, one of `discouraged`, `preferred` or `required`.
|
|
1158
|
+
*/
|
|
1159
|
+
userVerification?: pulumi.Input<string>;
|
|
1160
|
+
}
|
|
1073
1161
|
export interface LogStreamSink {
|
|
1074
1162
|
/**
|
|
1075
1163
|
* The AWS Account ID
|
|
@@ -1314,6 +1402,9 @@ export interface TenantGuardianMfaPage {
|
|
|
1314
1402
|
*/
|
|
1315
1403
|
html: pulumi.Input<string>;
|
|
1316
1404
|
}
|
|
1405
|
+
export interface TenantSessionCookie {
|
|
1406
|
+
mode?: pulumi.Input<string>;
|
|
1407
|
+
}
|
|
1317
1408
|
export interface TenantUniversalLogin {
|
|
1318
1409
|
/**
|
|
1319
1410
|
* List(Resource). Configuration settings for Universal Login colors. See Universal Login - Colors.
|
package/types/output.d.ts
CHANGED
|
@@ -33,7 +33,7 @@ export interface AttackProtectionBreachedPasswordDetection {
|
|
|
33
33
|
/**
|
|
34
34
|
* When "adminNotification" is enabled, determines how often email notifications are sent. Possible values: `immediately`, `daily`, `weekly`, `monthly`.
|
|
35
35
|
*/
|
|
36
|
-
adminNotificationFrequencies
|
|
36
|
+
adminNotificationFrequencies: string[];
|
|
37
37
|
/**
|
|
38
38
|
* Whether or not breached password detection is active.
|
|
39
39
|
*/
|
|
@@ -41,17 +41,17 @@ export interface AttackProtectionBreachedPasswordDetection {
|
|
|
41
41
|
/**
|
|
42
42
|
* The subscription level for breached password detection methods. Use "enhanced" to enable Credential Guard. Possible values: `standard`, `enhanced`.
|
|
43
43
|
*/
|
|
44
|
-
method
|
|
44
|
+
method: string;
|
|
45
45
|
/**
|
|
46
46
|
* Action to take when a breached password is detected. Possible values: `block`, `userNotification`, `adminNotification`.
|
|
47
47
|
*/
|
|
48
|
-
shields
|
|
48
|
+
shields: string[];
|
|
49
49
|
}
|
|
50
50
|
export interface AttackProtectionBruteForceProtection {
|
|
51
51
|
/**
|
|
52
52
|
* List of trusted IP addresses that will not have attack protection enforced against them.
|
|
53
53
|
*/
|
|
54
|
-
allowlists
|
|
54
|
+
allowlists: string[];
|
|
55
55
|
/**
|
|
56
56
|
* Whether or not breached password detection is active.
|
|
57
57
|
*/
|
|
@@ -59,21 +59,21 @@ export interface AttackProtectionBruteForceProtection {
|
|
|
59
59
|
/**
|
|
60
60
|
* Maximum number of unsuccessful attempts. Only available on public tenants.
|
|
61
61
|
*/
|
|
62
|
-
maxAttempts
|
|
62
|
+
maxAttempts: number;
|
|
63
63
|
/**
|
|
64
64
|
* Determines whether or not IP address is used when counting failed attempts. Possible values: `countPerIdentifierAndIp` or `countPerIdentifier`.
|
|
65
65
|
*/
|
|
66
|
-
mode
|
|
66
|
+
mode: string;
|
|
67
67
|
/**
|
|
68
68
|
* Action to take when a breached password is detected. Possible values: `block`, `userNotification`, `adminNotification`.
|
|
69
69
|
*/
|
|
70
|
-
shields
|
|
70
|
+
shields: string[];
|
|
71
71
|
}
|
|
72
72
|
export interface AttackProtectionSuspiciousIpThrottling {
|
|
73
73
|
/**
|
|
74
74
|
* List of trusted IP addresses that will not have attack protection enforced against them.
|
|
75
75
|
*/
|
|
76
|
-
allowlists
|
|
76
|
+
allowlists: string[];
|
|
77
77
|
/**
|
|
78
78
|
* Whether or not breached password detection is active.
|
|
79
79
|
*/
|
|
@@ -81,29 +81,29 @@ export interface AttackProtectionSuspiciousIpThrottling {
|
|
|
81
81
|
/**
|
|
82
82
|
* Configuration options that apply before every login attempt. Only available on public tenants.
|
|
83
83
|
*/
|
|
84
|
-
preLogin
|
|
84
|
+
preLogin: outputs.AttackProtectionSuspiciousIpThrottlingPreLogin;
|
|
85
85
|
/**
|
|
86
86
|
* Configuration options that apply before every user registration attempt. Only available on public tenants.
|
|
87
87
|
*/
|
|
88
|
-
preUserRegistration
|
|
88
|
+
preUserRegistration: outputs.AttackProtectionSuspiciousIpThrottlingPreUserRegistration;
|
|
89
89
|
/**
|
|
90
90
|
* Action to take when a breached password is detected. Possible values: `block`, `userNotification`, `adminNotification`.
|
|
91
91
|
*/
|
|
92
|
-
shields
|
|
92
|
+
shields: string[];
|
|
93
93
|
}
|
|
94
94
|
export interface AttackProtectionSuspiciousIpThrottlingPreLogin {
|
|
95
95
|
/**
|
|
96
96
|
* Maximum number of unsuccessful attempts. Only available on public tenants.
|
|
97
97
|
*/
|
|
98
|
-
maxAttempts
|
|
99
|
-
rate
|
|
98
|
+
maxAttempts: number;
|
|
99
|
+
rate: number;
|
|
100
100
|
}
|
|
101
101
|
export interface AttackProtectionSuspiciousIpThrottlingPreUserRegistration {
|
|
102
102
|
/**
|
|
103
103
|
* Maximum number of unsuccessful attempts. Only available on public tenants.
|
|
104
104
|
*/
|
|
105
|
-
maxAttempts
|
|
106
|
-
rate
|
|
105
|
+
maxAttempts: number;
|
|
106
|
+
rate: number;
|
|
107
107
|
}
|
|
108
108
|
export interface BrandingColors {
|
|
109
109
|
/**
|
|
@@ -497,6 +497,12 @@ export interface ConnectionOptions {
|
|
|
497
497
|
* Azure AD app ID.
|
|
498
498
|
*/
|
|
499
499
|
appId?: string;
|
|
500
|
+
/**
|
|
501
|
+
* Map(String). Use this to append or override the link parameters (like `scope`, `redirectUri`, `protocol`, `responseType`), when you send a link using email.
|
|
502
|
+
*/
|
|
503
|
+
authParams?: {
|
|
504
|
+
[key: string]: string;
|
|
505
|
+
};
|
|
500
506
|
authorizationEndpoint?: string;
|
|
501
507
|
/**
|
|
502
508
|
* Indicates whether or not to enable brute force protection, which will limit the number of signups and failed logins from a suspicious IP address.
|
|
@@ -733,6 +739,10 @@ export interface ConnectionOptions {
|
|
|
733
739
|
* Value can be `backChannel` or `frontChannel`.
|
|
734
740
|
*/
|
|
735
741
|
type?: string;
|
|
742
|
+
/**
|
|
743
|
+
* String (JSON Encoded). You can pass provider-specific parameters to an Identity Provider during authentication. The values can either be static per connection or dynamic per user.
|
|
744
|
+
*/
|
|
745
|
+
upstreamParams?: string;
|
|
736
746
|
useCertAuth?: boolean;
|
|
737
747
|
useKerberos?: boolean;
|
|
738
748
|
useWsfed?: boolean;
|
|
@@ -1327,6 +1337,20 @@ export interface GlobalClientRefreshToken {
|
|
|
1327
1337
|
rotationType: string;
|
|
1328
1338
|
tokenLifetime: number;
|
|
1329
1339
|
}
|
|
1340
|
+
export interface GuardianDuo {
|
|
1341
|
+
/**
|
|
1342
|
+
* String. Duo API Hostname, see the Duo documentation for more details on Duo setup.
|
|
1343
|
+
*/
|
|
1344
|
+
hostname: string;
|
|
1345
|
+
/**
|
|
1346
|
+
* String. Duo client ID, see the Duo documentation for more details on Duo setup.
|
|
1347
|
+
*/
|
|
1348
|
+
integrationKey: string;
|
|
1349
|
+
/**
|
|
1350
|
+
* String. Duo client secret, see the Duo documentation for more details on Duo setup.
|
|
1351
|
+
*/
|
|
1352
|
+
secretKey: string;
|
|
1353
|
+
}
|
|
1330
1354
|
export interface GuardianPhone {
|
|
1331
1355
|
/**
|
|
1332
1356
|
* List(String). Message types to use, array of `sms` and or `voice`. Adding both to array should enable the user to choose.
|
|
@@ -1367,6 +1391,70 @@ export interface GuardianPhoneOptions {
|
|
|
1367
1391
|
*/
|
|
1368
1392
|
verificationMessage?: string;
|
|
1369
1393
|
}
|
|
1394
|
+
export interface GuardianPush {
|
|
1395
|
+
amazonSns?: outputs.GuardianPushAmazonSns;
|
|
1396
|
+
customApp?: outputs.GuardianPushCustomApp;
|
|
1397
|
+
}
|
|
1398
|
+
export interface GuardianPushAmazonSns {
|
|
1399
|
+
/**
|
|
1400
|
+
* String. Your AWS Access Key ID.
|
|
1401
|
+
*/
|
|
1402
|
+
awsAccessKeyId: string;
|
|
1403
|
+
/**
|
|
1404
|
+
* String. Your AWS application's region.
|
|
1405
|
+
*/
|
|
1406
|
+
awsRegion: string;
|
|
1407
|
+
/**
|
|
1408
|
+
* String. Your AWS Secret Access Key.
|
|
1409
|
+
*/
|
|
1410
|
+
awsSecretAccessKey: string;
|
|
1411
|
+
/**
|
|
1412
|
+
* String. The Amazon Resource Name for your Apple Push Notification Service.
|
|
1413
|
+
*/
|
|
1414
|
+
snsApnsPlatformApplicationArn: string;
|
|
1415
|
+
/**
|
|
1416
|
+
* String. The Amazon Resource Name for your Firebase Cloud Messaging Service.
|
|
1417
|
+
*/
|
|
1418
|
+
snsGcmPlatformApplicationArn: string;
|
|
1419
|
+
}
|
|
1420
|
+
export interface GuardianPushCustomApp {
|
|
1421
|
+
/**
|
|
1422
|
+
* String. Custom Application Name.
|
|
1423
|
+
*/
|
|
1424
|
+
appName?: string;
|
|
1425
|
+
/**
|
|
1426
|
+
* String. Apple App Store URL.
|
|
1427
|
+
*/
|
|
1428
|
+
appleAppLink?: string;
|
|
1429
|
+
/**
|
|
1430
|
+
* String. Google Store URL.
|
|
1431
|
+
*/
|
|
1432
|
+
googleAppLink?: string;
|
|
1433
|
+
}
|
|
1434
|
+
export interface GuardianWebauthnPlatform {
|
|
1435
|
+
/**
|
|
1436
|
+
* Bool. The Relying Party is the domain for which the WebAuthn keys will be issued, set to true if you are customizing the identifier.
|
|
1437
|
+
*/
|
|
1438
|
+
overrideRelyingParty: boolean;
|
|
1439
|
+
/**
|
|
1440
|
+
* String. The Relying Party should be a suffix of the custom domain.
|
|
1441
|
+
*/
|
|
1442
|
+
relyingPartyIdentifier: string;
|
|
1443
|
+
}
|
|
1444
|
+
export interface GuardianWebauthnRoaming {
|
|
1445
|
+
/**
|
|
1446
|
+
* Bool. The Relying Party is the domain for which the WebAuthn keys will be issued, set to true if you are customizing the identifier.
|
|
1447
|
+
*/
|
|
1448
|
+
overrideRelyingParty: boolean;
|
|
1449
|
+
/**
|
|
1450
|
+
* String. The Relying Party should be a suffix of the custom domain.
|
|
1451
|
+
*/
|
|
1452
|
+
relyingPartyIdentifier: string;
|
|
1453
|
+
/**
|
|
1454
|
+
* String. User verification, one of `discouraged`, `preferred` or `required`.
|
|
1455
|
+
*/
|
|
1456
|
+
userVerification: string;
|
|
1457
|
+
}
|
|
1370
1458
|
export interface LogStreamSink {
|
|
1371
1459
|
/**
|
|
1372
1460
|
* The AWS Account ID
|
|
@@ -1611,6 +1699,9 @@ export interface TenantGuardianMfaPage {
|
|
|
1611
1699
|
*/
|
|
1612
1700
|
html: string;
|
|
1613
1701
|
}
|
|
1702
|
+
export interface TenantSessionCookie {
|
|
1703
|
+
mode?: string;
|
|
1704
|
+
}
|
|
1614
1705
|
export interface TenantUniversalLogin {
|
|
1615
1706
|
/**
|
|
1616
1707
|
* List(Resource). Configuration settings for Universal Login colors. See Universal Login - Colors.
|