npm - @pulumi/auth0 - Versions diffs - 3.32.0-alpha.1762406290 → 3.32.0 - Mend

@pulumi/auth0 3.32.0-alpha.1762406290 → 3.32.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (23) hide show

package/attackProtection.d.ts +108 -0
package/attackProtection.js +88 -0
package/attackProtection.js.map +1 -1
package/client.d.ts +12 -0
package/client.js +2 -0
package/client.js.map +1 -1
package/connectionScimToken.d.ts +139 -0
package/connectionScimToken.js +117 -0
package/connectionScimToken.js.map +1 -0
package/emailProvider.d.ts +1 -1
package/emailProvider.js +1 -1
package/getAttackProtection.d.ts +8 -0
package/getAttackProtection.js.map +1 -1
package/getClient.d.ts +4 -0
package/getClient.js.map +1 -1
package/index.d.ts +3 -0
package/index.js +8 -3
package/index.js.map +1 -1
package/package.json +2 -2
package/phoneProvider.d.ts +1 -1
package/phoneProvider.js +1 -1
package/types/input.d.ts +128 -0
package/types/output.d.ts +262 -2

package/types/output.d.ts CHANGED Viewed

@@ -29,6 +29,32 @@ export interface ActionSupportedTriggers {
      */
     version: string;
 }
+export interface AttackProtectionBotDetection {
+    /**
+     * List of IP addresses or ranges that will not trigger bot detection.
+     */
+    allowlists: string[];
+    /**
+     * Bot detection level. Possible values: `low`, `medium`, `high`. Set to empty string to disable.
+     */
+    botDetectionLevel: string;
+    /**
+     * Challenge policy for password flow. Possible values: `never`, `whenRisky`, `always`.
+     */
+    challengePasswordPolicy: string;
+    /**
+     * Challenge policy for password reset flow. Possible values: `never`, `whenRisky`, `always`.
+     */
+    challengePasswordResetPolicy: string;
+    /**
+     * Challenge policy for passwordless flow. Possible values: `never`, `whenRisky`, `always`.
+     */
+    challengePasswordlessPolicy: string;
+    /**
+     * Whether monitoring mode is enabled for bot detection.
+     */
+    monitoringModeEnabled: boolean;
+}
 export interface AttackProtectionBreachedPasswordDetection {
     /**
      * When `adminNotification` is enabled within the `shields` property, determines how often email notifications are sent. Possible values: `immediately`, `daily`, `weekly`, `monthly`.
@@ -89,6 +115,108 @@ export interface AttackProtectionBruteForceProtection {
      */
     shields: string[];
 }
+export interface AttackProtectionCaptcha {
+    /**
+     * Active CAPTCHA provider ID. Set to empty string to disable CAPTCHA. Possible values: `recaptchaV2`, `recaptchaEnterprise`, `hcaptcha`, `friendlyCaptcha`, `arkose`, `authChallenge`, `simpleCaptcha`.
+     */
+    activeProviderId: string;
+    /**
+     * Configuration for Arkose Labs.
+     */
+    arkose: outputs.AttackProtectionCaptchaArkose;
+    /**
+     * Configuration for Auth0's Auth Challenge.
+     */
+    authChallenge: outputs.AttackProtectionCaptchaAuthChallenge;
+    /**
+     * Configuration for Friendly Captcha.
+     */
+    friendlyCaptcha: outputs.AttackProtectionCaptchaFriendlyCaptcha;
+    /**
+     * Configuration for hCaptcha.
+     */
+    hcaptcha: outputs.AttackProtectionCaptchaHcaptcha;
+    /**
+     * Configuration for Google reCAPTCHA Enterprise.
+     */
+    recaptchaEnterprise: outputs.AttackProtectionCaptchaRecaptchaEnterprise;
+    /**
+     * Configuration for Google reCAPTCHA v2.
+     */
+    recaptchaV2: outputs.AttackProtectionCaptchaRecaptchaV2;
+}
+export interface AttackProtectionCaptchaArkose {
+    /**
+     * Client subdomain for Arkose Labs.
+     */
+    clientSubdomain: string;
+    /**
+     * Whether the captcha should fail open.
+     */
+    failOpen: boolean;
+    /**
+     * Secret for Arkose Labs.
+     */
+    secret: string;
+    /**
+     * Site key for Arkose Labs.
+     */
+    siteKey: string;
+    /**
+     * Verify subdomain for Arkose Labs.
+     */
+    verifySubdomain: string;
+}
+export interface AttackProtectionCaptchaAuthChallenge {
+    /**
+     * Whether the auth challenge should fail open.
+     */
+    failOpen: boolean;
+}
+export interface AttackProtectionCaptchaFriendlyCaptcha {
+    /**
+     * Secret for Friendly Captcha.
+     */
+    secret: string;
+    /**
+     * Site key for Friendly Captcha.
+     */
+    siteKey: string;
+}
+export interface AttackProtectionCaptchaHcaptcha {
+    /**
+     * Secret for hCaptcha.
+     */
+    secret: string;
+    /**
+     * Site key for hCaptcha.
+     */
+    siteKey: string;
+}
+export interface AttackProtectionCaptchaRecaptchaEnterprise {
+    /**
+     * API key for reCAPTCHA Enterprise.
+     */
+    apiKey: string;
+    /**
+     * Project ID for reCAPTCHA Enterprise.
+     */
+    projectId: string;
+    /**
+     * Site key for reCAPTCHA Enterprise.
+     */
+    siteKey: string;
+}
+export interface AttackProtectionCaptchaRecaptchaV2 {
+    /**
+     * Secret for reCAPTCHA v2.
+     */
+    secret: string;
+    /**
+     * Site key for reCAPTCHA v2.
+     */
+    siteKey: string;
+}
 export interface AttackProtectionSuspiciousIpThrottling {
     /**
      * List of trusted IP addresses that will not have attack protection enforced against them. This field allows you to specify multiple IP addresses, or ranges. You can use IPv4 or IPv6 addresses and CIDR notation.
@@ -2308,6 +2436,32 @@ export interface GetActionSupportedTrigger {
      */
     version: string;
 }
+export interface GetAttackProtectionBotDetection {
+    /**
+     * List of IP addresses or ranges that will not trigger bot detection.
+     */
+    allowlists: string[];
+    /**
+     * Bot detection level. Possible values: `low`, `medium`, `high`. Set to empty string to disable.
+     */
+    botDetectionLevel: string;
+    /**
+     * Challenge policy for password flow. Possible values: `never`, `whenRisky`, `always`.
+     */
+    challengePasswordPolicy: string;
+    /**
+     * Challenge policy for password reset flow. Possible values: `never`, `whenRisky`, `always`.
+     */
+    challengePasswordResetPolicy: string;
+    /**
+     * Challenge policy for passwordless flow. Possible values: `never`, `whenRisky`, `always`.
+     */
+    challengePasswordlessPolicy: string;
+    /**
+     * Whether monitoring mode is enabled for bot detection.
+     */
+    monitoringModeEnabled: boolean;
+}
 export interface GetAttackProtectionBreachedPasswordDetection {
     /**
      * When `adminNotification` is enabled within the `shields` property, determines how often email notifications are sent. Possible values: `immediately`, `daily`, `weekly`, `monthly`.
@@ -2368,6 +2522,108 @@ export interface GetAttackProtectionBruteForceProtection {
      */
     shields: string[];
 }
+export interface GetAttackProtectionCaptcha {
+    /**
+     * Active CAPTCHA provider ID. Set to empty string to disable CAPTCHA. Possible values: `recaptchaV2`, `recaptchaEnterprise`, `hcaptcha`, `friendlyCaptcha`, `arkose`, `authChallenge`, `simpleCaptcha`.
+     */
+    activeProviderId: string;
+    /**
+     * Configuration for Arkose Labs.
+     */
+    arkoses: outputs.GetAttackProtectionCaptchaArkose[];
+    /**
+     * Configuration for Auth0's Auth Challenge.
+     */
+    authChallenges: outputs.GetAttackProtectionCaptchaAuthChallenge[];
+    /**
+     * Configuration for Friendly Captcha.
+     */
+    friendlyCaptchas: outputs.GetAttackProtectionCaptchaFriendlyCaptcha[];
+    /**
+     * Configuration for hCaptcha.
+     */
+    hcaptchas: outputs.GetAttackProtectionCaptchaHcaptcha[];
+    /**
+     * Configuration for Google reCAPTCHA Enterprise.
+     */
+    recaptchaEnterprises: outputs.GetAttackProtectionCaptchaRecaptchaEnterprise[];
+    /**
+     * Configuration for Google reCAPTCHA v2.
+     */
+    recaptchaV2s: outputs.GetAttackProtectionCaptchaRecaptchaV2[];
+}
+export interface GetAttackProtectionCaptchaArkose {
+    /**
+     * Client subdomain for Arkose Labs.
+     */
+    clientSubdomain: string;
+    /**
+     * Whether the captcha should fail open.
+     */
+    failOpen: boolean;
+    /**
+     * Secret for Arkose Labs.
+     */
+    secret: string;
+    /**
+     * Site key for Arkose Labs.
+     */
+    siteKey: string;
+    /**
+     * Verify subdomain for Arkose Labs.
+     */
+    verifySubdomain: string;
+}
+export interface GetAttackProtectionCaptchaAuthChallenge {
+    /**
+     * Whether the auth challenge should fail open.
+     */
+    failOpen: boolean;
+}
+export interface GetAttackProtectionCaptchaFriendlyCaptcha {
+    /**
+     * Secret for Friendly Captcha.
+     */
+    secret: string;
+    /**
+     * Site key for Friendly Captcha.
+     */
+    siteKey: string;
+}
+export interface GetAttackProtectionCaptchaHcaptcha {
+    /**
+     * Secret for hCaptcha.
+     */
+    secret: string;
+    /**
+     * Site key for hCaptcha.
+     */
+    siteKey: string;
+}
+export interface GetAttackProtectionCaptchaRecaptchaEnterprise {
+    /**
+     * API key for reCAPTCHA Enterprise.
+     */
+    apiKey: string;
+    /**
+     * Project ID for reCAPTCHA Enterprise.
+     */
+    projectId: string;
+    /**
+     * Site key for reCAPTCHA Enterprise.
+     */
+    siteKey: string;
+}
+export interface GetAttackProtectionCaptchaRecaptchaV2 {
+    /**
+     * Secret for reCAPTCHA v2.
+     */
+    secret: string;
+    /**
+     * Site key for reCAPTCHA v2.
+     */
+    siteKey: string;
+}
 export interface GetAttackProtectionSuspiciousIpThrottling {
     /**
      * List of trusted IP addresses that will not have attack protection enforced against them. This field allows you to specify multiple IP addresses, or ranges. You can use IPv4 or IPv6 addresses and CIDR notation.
@@ -3590,6 +3846,10 @@ export interface GetClientsClient {
      * Type of application the client represents. Possible values are: `native`, `spa`, `regularWeb`, `nonInteractive`, `resourceServer`,`ssoIntegration`. Specific SSO integrations types accepted as well are: `rms`, `box`, `cloudbees`, `concur`, `dropbox`, `mscrm`, `echosign`, `egnyte`, `newrelic`, `office365`, `salesforce`, `sentry`, `sharepoint`, `slack`, `springcm`, `zendesk`, `zoom`.
      */
     appType: string;
+    /**
+     * List of notification channels enabled for CIBA (Client-Initiated Backchannel Authentication) requests initiated by this client. Valid values are `guardian-push` and `email`. The order is significant as this is the order in which notification channels will be evaluated. Defaults to `["guardian-push"]` if not specified.
+     */
+    asyncApprovalNotificationChannels: string[];
     /**
      * URLs that Auth0 may call back to after a user authenticates for the client. Make sure to specify the protocol (https://) otherwise the callback may fail in some cases. With the exception of custom URI schemes for native clients, all callbacks should use protocol https://.
      */
@@ -6100,11 +6360,11 @@ export interface ResourceServerSubjectTypeAuthorization {
     /**
      * Client authorization policies for the resource server.
      */
-    client?: outputs.ResourceServerSubjectTypeAuthorizationClient;
+    client: outputs.ResourceServerSubjectTypeAuthorizationClient;
     /**
      * User authorization policies for the resource server.
      */
-    user?: outputs.ResourceServerSubjectTypeAuthorizationUser;
+    user: outputs.ResourceServerSubjectTypeAuthorizationUser;
 }
 export interface ResourceServerSubjectTypeAuthorizationClient {
     /**