@robelest/convex-auth 0.0.4-preview.28 → 0.0.4-preview.29

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (50) hide show
  1. package/dist/bin.js +4 -1
  2. package/dist/component/_generated/component.d.ts +344 -0
  3. package/dist/component/convex.config.d.ts +2 -2
  4. package/dist/component/model.d.ts +25 -25
  5. package/dist/component/model.js +1 -0
  6. package/dist/component/public/factors/totp.js +12 -0
  7. package/dist/component/public/groups/core.js +89 -1
  8. package/dist/component/public/groups/members.js +39 -1
  9. package/dist/component/public/identity/accounts.js +22 -3
  10. package/dist/component/public/identity/users.js +79 -5
  11. package/dist/component/public/sso/audit.js +5 -2
  12. package/dist/component/public/sso/core.js +3 -3
  13. package/dist/component/public/sso/domains.js +7 -3
  14. package/dist/component/public/sso/scim.js +36 -1
  15. package/dist/component/public.js +5 -5
  16. package/dist/component/schema.d.ts +293 -289
  17. package/dist/component/schema.js +2 -1
  18. package/dist/core/index.d.ts +63 -27
  19. package/dist/core/index.js +1 -0
  20. package/dist/providers/credentials.d.ts +12 -0
  21. package/dist/providers/password.js +28 -7
  22. package/dist/server/auth-context.d.ts +17 -0
  23. package/dist/server/auth-context.js +1 -1
  24. package/dist/server/auth.d.ts +18 -6
  25. package/dist/server/auth.js +1 -0
  26. package/dist/server/context.js +11 -5
  27. package/dist/server/contract.js +44 -12
  28. package/dist/server/core.js +146 -149
  29. package/dist/server/ctxCache.js +94 -0
  30. package/dist/server/limits.js +39 -9
  31. package/dist/server/mounts.d.ts +85 -85
  32. package/dist/server/mutations/credentialsSignIn.js +114 -0
  33. package/dist/server/mutations/index.js +2 -1
  34. package/dist/server/mutations/refresh.js +25 -12
  35. package/dist/server/mutations/retrieve.js +2 -1
  36. package/dist/server/mutations/signin.js +27 -9
  37. package/dist/server/mutations/store.js +5 -0
  38. package/dist/server/mutations/verify.js +32 -8
  39. package/dist/server/runtime.d.ts +81 -47
  40. package/dist/server/services/group.js +23 -16
  41. package/dist/server/sessions.d.ts +21 -0
  42. package/dist/server/sessions.js +37 -27
  43. package/dist/server/signin.js +32 -9
  44. package/dist/server/sso/domain.js +1 -2
  45. package/dist/server/sso/oidc.js +1 -1
  46. package/dist/server/tokens.js +19 -3
  47. package/dist/server/users.js +3 -2
  48. package/dist/server/utils/span.js +18 -0
  49. package/package.json +1 -1
  50. package/README.md +0 -161
@@ -1,7 +1,7 @@
1
1
  import { AuthAuthorizationConfig, GroupConnectionDeprovisionMode, GroupConnectionPolicy } from "./types.js";
2
2
  import { AuditEventRecord, ConnectionDomainRecord, GroupConnectionDomainLookupRecord, GroupConnectionListResult, GroupConnectionRecord, ScimConfigRecord } from "./contract.js";
3
3
  import { AuthApi } from "./auth.js";
4
- import * as convex_server7 from "convex/server";
4
+ import * as convex_server9 from "convex/server";
5
5
 
6
6
  //#region src/server/mounts.d.ts
7
7
  /**
@@ -54,7 +54,7 @@ type GroupSsoAccessInput = {
54
54
  * ```
55
55
  */
56
56
  type GroupSsoAccessHandler = (ctx: {
57
- auth: convex_server7.Auth;
57
+ auth: convex_server9.Auth;
58
58
  }, input: GroupSsoAccessInput) => Promise<void>;
59
59
  /**
60
60
  * Declarative requirement map for mounted Group SSO admin permissions.
@@ -147,7 +147,7 @@ type GroupSsoAccessPermissions<TRequirement> = {
147
147
  * ```
148
148
  */
149
149
  type GroupSsoResolvedAccessHandler<TRequirement> = (ctx: {
150
- auth: convex_server7.Auth;
150
+ auth: convex_server9.Auth;
151
151
  }, input: GroupSsoAccessInput, required: readonly TRequirement[]) => Promise<void>;
152
152
  /**
153
153
  * Configuration for {@link createAuthGroupSso}, {@link sso}, and {@link scim}
@@ -214,7 +214,7 @@ type CreateAuthGroupSsoOptions<TRequirement = unknown> = {
214
214
  declare function sso<TAuthorization extends AuthAuthorizationConfig | undefined = undefined, TRequirement = unknown>(auth: Pick<AuthApi<TAuthorization>, "context" | "group" | "member">, options?: CreateAuthGroupSsoOptions<TRequirement>): {
215
215
  admin: {
216
216
  connection: {
217
- create: convex_server7.RegisteredMutation<"public", {
217
+ create: convex_server9.RegisteredMutation<"public", {
218
218
  name?: string | undefined;
219
219
  slug?: string | undefined;
220
220
  status?: "draft" | "active" | "disabled" | undefined;
@@ -225,13 +225,13 @@ declare function sso<TAuthorization extends AuthAuthorizationConfig | undefined
225
225
  groupId: string;
226
226
  connectionId: string;
227
227
  }>>;
228
- get: convex_server7.RegisteredQuery<"public", {
228
+ get: convex_server9.RegisteredQuery<"public", {
229
229
  connectionId: string;
230
230
  }, Promise<GroupConnectionRecord | null>>;
231
- getByDomain: convex_server7.RegisteredQuery<"public", {
231
+ getByDomain: convex_server9.RegisteredQuery<"public", {
232
232
  domain: string;
233
233
  }, Promise<GroupConnectionDomainLookupRecord | null>>;
234
- list: convex_server7.RegisteredQuery<"public", {
234
+ list: convex_server9.RegisteredQuery<"public", {
235
235
  limit?: number | undefined;
236
236
  where?: {
237
237
  slug?: string | undefined;
@@ -242,7 +242,7 @@ declare function sso<TAuthorization extends AuthAuthorizationConfig | undefined
242
242
  orderBy?: string | undefined;
243
243
  order?: "asc" | "desc" | undefined;
244
244
  }, Promise<GroupConnectionListResult>>;
245
- update: convex_server7.RegisteredMutation<"public", {
245
+ update: convex_server9.RegisteredMutation<"public", {
246
246
  connectionId: string;
247
247
  data: {
248
248
  name?: string | undefined;
@@ -252,12 +252,12 @@ declare function sso<TAuthorization extends AuthAuthorizationConfig | undefined
252
252
  }, Promise<{
253
253
  connectionId: string;
254
254
  }>>;
255
- delete: convex_server7.RegisteredMutation<"public", {
255
+ delete: convex_server9.RegisteredMutation<"public", {
256
256
  connectionId: string;
257
257
  }, Promise<{
258
258
  connectionId: string;
259
259
  }>>;
260
- status: convex_server7.RegisteredQuery<"public", {
260
+ status: convex_server9.RegisteredQuery<"public", {
261
261
  connectionId: string;
262
262
  }, Promise<{
263
263
  connectionId: string;
@@ -285,10 +285,10 @@ declare function sso<TAuthorization extends AuthAuthorizationConfig | undefined
285
285
  };
286
286
  }>>;
287
287
  domain: {
288
- list: convex_server7.RegisteredQuery<"public", {
288
+ list: convex_server9.RegisteredQuery<"public", {
289
289
  connectionId: string;
290
290
  }, Promise<ConnectionDomainRecord[]>>;
291
- status: convex_server7.RegisteredQuery<"public", {
291
+ status: convex_server9.RegisteredQuery<"public", {
292
292
  connectionId: string;
293
293
  }, Promise<{
294
294
  connectionId: string;
@@ -320,7 +320,7 @@ declare function sso<TAuthorization extends AuthAuthorizationConfig | undefined
320
320
  warnings: string[];
321
321
  nextSteps: string[];
322
322
  }>>;
323
- validate: convex_server7.RegisteredQuery<"public", {
323
+ validate: convex_server9.RegisteredQuery<"public", {
324
324
  connectionId: string;
325
325
  }, Promise<{
326
326
  connectionId: string;
@@ -339,7 +339,7 @@ declare function sso<TAuthorization extends AuthAuthorizationConfig | undefined
339
339
  }[];
340
340
  warnings: string[];
341
341
  }>>;
342
- set: convex_server7.RegisteredMutation<"public", {
342
+ set: convex_server9.RegisteredMutation<"public", {
343
343
  connectionId: string;
344
344
  domains: {
345
345
  isPrimary?: boolean | undefined;
@@ -356,7 +356,7 @@ declare function sso<TAuthorization extends AuthAuthorizationConfig | undefined
356
356
  }>;
357
357
  }>>;
358
358
  verification: {
359
- request: convex_server7.RegisteredMutation<"public", {
359
+ request: convex_server9.RegisteredMutation<"public", {
360
360
  connectionId: string;
361
361
  domain: string;
362
362
  }, Promise<{
@@ -370,7 +370,7 @@ declare function sso<TAuthorization extends AuthAuthorizationConfig | undefined
370
370
  recordValue: string;
371
371
  };
372
372
  }>>;
373
- confirm: convex_server7.RegisteredAction<"public", {
373
+ confirm: convex_server9.RegisteredAction<"public", {
374
374
  connectionId: string;
375
375
  domain: string;
376
376
  }, Promise<{
@@ -387,13 +387,13 @@ declare function sso<TAuthorization extends AuthAuthorizationConfig | undefined
387
387
  };
388
388
  };
389
389
  oidc: {
390
- configure: convex_server7.RegisteredMutation<"public", {
390
+ configure: convex_server9.RegisteredMutation<"public", {
391
391
  profile?: {
392
392
  mapping?: {
393
- email?: string | undefined;
394
- emailVerified?: string | undefined;
395
393
  name?: string | undefined;
394
+ email?: string | undefined;
396
395
  image?: string | undefined;
396
+ emailVerified?: string | undefined;
397
397
  groups?: string | undefined;
398
398
  roles?: string | undefined;
399
399
  subject?: string | undefined;
@@ -424,12 +424,12 @@ declare function sso<TAuthorization extends AuthAuthorizationConfig | undefined
424
424
  }, Promise<{
425
425
  hasClientSecret: boolean;
426
426
  }>>;
427
- get: convex_server7.RegisteredQuery<"public", {
427
+ get: convex_server9.RegisteredQuery<"public", {
428
428
  connectionId: string;
429
429
  }, Promise<{
430
430
  hasClientSecret: boolean;
431
431
  }>>;
432
- validate: convex_server7.RegisteredAction<"public", {
432
+ validate: convex_server9.RegisteredAction<"public", {
433
433
  connectionId: string;
434
434
  }, Promise<{
435
435
  ok: boolean;
@@ -440,7 +440,7 @@ declare function sso<TAuthorization extends AuthAuthorizationConfig | undefined
440
440
  message?: string;
441
441
  }[];
442
442
  }>>;
443
- status: convex_server7.RegisteredQuery<"public", {
443
+ status: convex_server9.RegisteredQuery<"public", {
444
444
  connectionId: string;
445
445
  }, Promise<{
446
446
  connectionId: string;
@@ -457,11 +457,11 @@ declare function sso<TAuthorization extends AuthAuthorizationConfig | undefined
457
457
  }>>;
458
458
  };
459
459
  saml: {
460
- configure: convex_server7.RegisteredAction<"public", {
460
+ configure: convex_server9.RegisteredAction<"public", {
461
461
  profile?: {
462
462
  mapping?: {
463
- email?: string | undefined;
464
463
  name?: string | undefined;
464
+ email?: string | undefined;
465
465
  image?: string | undefined;
466
466
  groups?: string | undefined;
467
467
  roles?: string | undefined;
@@ -506,7 +506,7 @@ declare function sso<TAuthorization extends AuthAuthorizationConfig | undefined
506
506
  connectionId: string;
507
507
  groupId: string;
508
508
  }>>;
509
- validate: convex_server7.RegisteredQuery<"public", {
509
+ validate: convex_server9.RegisteredQuery<"public", {
510
510
  connectionId: string;
511
511
  }, Promise<{
512
512
  ok: boolean;
@@ -517,10 +517,10 @@ declare function sso<TAuthorization extends AuthAuthorizationConfig | undefined
517
517
  message?: string;
518
518
  }[];
519
519
  }>>;
520
- get: convex_server7.RegisteredQuery<"public", {
520
+ get: convex_server9.RegisteredQuery<"public", {
521
521
  connectionId: string;
522
522
  }, Promise<Record<string, unknown>>>;
523
- status: convex_server7.RegisteredQuery<"public", {
523
+ status: convex_server9.RegisteredQuery<"public", {
524
524
  connectionId: string;
525
525
  }, Promise<{
526
526
  connectionId: string;
@@ -533,7 +533,7 @@ declare function sso<TAuthorization extends AuthAuthorizationConfig | undefined
533
533
  message: string | undefined;
534
534
  }[];
535
535
  }>>;
536
- refresh: convex_server7.RegisteredAction<"public", {
536
+ refresh: convex_server9.RegisteredAction<"public", {
537
537
  connectionId: string;
538
538
  }, Promise<{
539
539
  connectionId: string;
@@ -541,10 +541,10 @@ declare function sso<TAuthorization extends AuthAuthorizationConfig | undefined
541
541
  }>>;
542
542
  };
543
543
  policy: {
544
- get: convex_server7.RegisteredQuery<"public", {
544
+ get: convex_server9.RegisteredQuery<"public", {
545
545
  groupId: string;
546
546
  }, Promise<GroupConnectionPolicy>>;
547
- update: convex_server7.RegisteredMutation<"public", {
547
+ update: convex_server9.RegisteredMutation<"public", {
548
548
  groupId: string;
549
549
  patch: {
550
550
  identity?: {
@@ -583,7 +583,7 @@ declare function sso<TAuthorization extends AuthAuthorizationConfig | undefined
583
583
  } | undefined;
584
584
  };
585
585
  }, Promise<GroupConnectionPolicy>>;
586
- validate: convex_server7.RegisteredQuery<"public", {
586
+ validate: convex_server9.RegisteredQuery<"public", {
587
587
  groupId: string;
588
588
  }, Promise<{
589
589
  ok: boolean;
@@ -606,7 +606,7 @@ declare function sso<TAuthorization extends AuthAuthorizationConfig | undefined
606
606
  }>>;
607
607
  };
608
608
  audit: {
609
- list: convex_server7.RegisteredQuery<"public", {
609
+ list: convex_server9.RegisteredQuery<"public", {
610
610
  groupId?: string | undefined;
611
611
  connectionId?: string | undefined;
612
612
  limit?: number | undefined;
@@ -614,13 +614,13 @@ declare function sso<TAuthorization extends AuthAuthorizationConfig | undefined
614
614
  };
615
615
  webhook: {
616
616
  delivery: {
617
- list: convex_server7.RegisteredQuery<"public", {
617
+ list: convex_server9.RegisteredQuery<"public", {
618
618
  limit?: number | undefined;
619
619
  connectionId: string;
620
620
  }, Promise<unknown>>;
621
621
  };
622
622
  endpoint: {
623
- create: convex_server7.RegisteredMutation<"public", {
623
+ create: convex_server9.RegisteredMutation<"public", {
624
624
  createdByUserId?: string | undefined;
625
625
  secret: string;
626
626
  connectionId: string;
@@ -635,12 +635,12 @@ declare function sso<TAuthorization extends AuthAuthorizationConfig | undefined
635
635
  status: string;
636
636
  failureCount: number;
637
637
  }>>;
638
- list: convex_server7.RegisteredQuery<"public", {
638
+ list: convex_server9.RegisteredQuery<"public", {
639
639
  connectionId: string;
640
640
  }, Promise<{
641
641
  [x: string]: unknown;
642
642
  }[]>>;
643
- disable: convex_server7.RegisteredMutation<"public", {
643
+ disable: convex_server9.RegisteredMutation<"public", {
644
644
  endpointId: string;
645
645
  }, Promise<{
646
646
  endpointId: string;
@@ -649,7 +649,7 @@ declare function sso<TAuthorization extends AuthAuthorizationConfig | undefined
649
649
  };
650
650
  };
651
651
  client: {
652
- signIn: convex_server7.RegisteredQuery<"public", {
652
+ signIn: convex_server9.RegisteredQuery<"public", {
653
653
  email?: string | undefined;
654
654
  connectionId?: string | undefined;
655
655
  domain?: string | undefined;
@@ -663,7 +663,7 @@ declare function sso<TAuthorization extends AuthAuthorizationConfig | undefined
663
663
  callbackPath: string;
664
664
  redirectTo?: string;
665
665
  }>>;
666
- metadata: convex_server7.RegisteredQuery<"public", {
666
+ metadata: convex_server9.RegisteredQuery<"public", {
667
667
  entityId?: string | undefined;
668
668
  acsUrl?: string | undefined;
669
669
  sloUrl?: string | undefined;
@@ -705,11 +705,12 @@ declare function sso<TAuthorization extends AuthAuthorizationConfig | undefined
705
705
  */
706
706
  declare function scim<TAuthorization extends AuthAuthorizationConfig | undefined = undefined, TRequirement = unknown>(auth: Pick<AuthApi<TAuthorization>, "context" | "group">, options?: CreateAuthGroupSsoOptions<TRequirement>): {
707
707
  admin: {
708
- configure: convex_server7.RegisteredMutation<"public", {
708
+ configure: convex_server9.RegisteredMutation<"public", {
709
+ status?: "draft" | "active" | "disabled" | undefined;
709
710
  profile?: {
710
711
  mapping?: {
711
- email?: string | undefined;
712
712
  name?: string | undefined;
713
+ email?: string | undefined;
713
714
  phone?: string | undefined;
714
715
  externalId?: string | undefined;
715
716
  groups?: string | undefined;
@@ -721,7 +722,6 @@ declare function scim<TAuthorization extends AuthAuthorizationConfig | undefined
721
722
  } | undefined;
722
723
  extraFields?: Record<string, string> | undefined;
723
724
  } | undefined;
724
- status?: "draft" | "active" | "disabled" | undefined;
725
725
  security?: {
726
726
  maxRequestSize?: number | undefined;
727
727
  } | undefined;
@@ -732,7 +732,7 @@ declare function scim<TAuthorization extends AuthAuthorizationConfig | undefined
732
732
  basePath: string;
733
733
  token: string;
734
734
  }>>;
735
- get: convex_server7.RegisteredQuery<"public", {
735
+ get: convex_server9.RegisteredQuery<"public", {
736
736
  connectionId: string;
737
737
  }, Promise<{
738
738
  security: {
@@ -763,7 +763,7 @@ declare function scim<TAuthorization extends AuthAuthorizationConfig | undefined
763
763
  lastRotatedAt?: number;
764
764
  extend?: unknown;
765
765
  } | null>>;
766
- status: convex_server7.RegisteredQuery<"public", {
766
+ status: convex_server9.RegisteredQuery<"public", {
767
767
  connectionId: string;
768
768
  }, Promise<{
769
769
  connectionId: string;
@@ -789,7 +789,7 @@ declare function scim<TAuthorization extends AuthAuthorizationConfig | undefined
789
789
  etag: boolean;
790
790
  } | undefined;
791
791
  }>>;
792
- validate: convex_server7.RegisteredQuery<"public", {
792
+ validate: convex_server9.RegisteredQuery<"public", {
793
793
  connectionId: string;
794
794
  }, Promise<{
795
795
  ok: boolean;
@@ -863,7 +863,7 @@ declare function scim<TAuthorization extends AuthAuthorizationConfig | undefined
863
863
  * @see {@link scim}
864
864
  */
865
865
  declare function createAuthGroupSso<TAuthorization extends AuthAuthorizationConfig | undefined = undefined, TRequirement = unknown>(auth: Pick<AuthApi<TAuthorization>, "context" | "group" | "member">, options: CreateAuthGroupSsoOptions<TRequirement>): {
866
- createConnection: convex_server7.RegisteredMutation<"public", {
866
+ createConnection: convex_server9.RegisteredMutation<"public", {
867
867
  name?: string | undefined;
868
868
  slug?: string | undefined;
869
869
  status?: "draft" | "active" | "disabled" | undefined;
@@ -874,13 +874,13 @@ declare function createAuthGroupSso<TAuthorization extends AuthAuthorizationConf
874
874
  groupId: string;
875
875
  connectionId: string;
876
876
  }>>;
877
- getConnection: convex_server7.RegisteredQuery<"public", {
877
+ getConnection: convex_server9.RegisteredQuery<"public", {
878
878
  connectionId: string;
879
879
  }, Promise<GroupConnectionRecord | null>>;
880
- getConnectionByDomain: convex_server7.RegisteredQuery<"public", {
880
+ getConnectionByDomain: convex_server9.RegisteredQuery<"public", {
881
881
  domain: string;
882
882
  }, Promise<GroupConnectionDomainLookupRecord | null>>;
883
- listConnections: convex_server7.RegisteredQuery<"public", {
883
+ listConnections: convex_server9.RegisteredQuery<"public", {
884
884
  limit?: number | undefined;
885
885
  where?: {
886
886
  slug?: string | undefined;
@@ -891,7 +891,7 @@ declare function createAuthGroupSso<TAuthorization extends AuthAuthorizationConf
891
891
  orderBy?: string | undefined;
892
892
  order?: "asc" | "desc" | undefined;
893
893
  }, Promise<GroupConnectionListResult>>;
894
- updateConnection: convex_server7.RegisteredMutation<"public", {
894
+ updateConnection: convex_server9.RegisteredMutation<"public", {
895
895
  connectionId: string;
896
896
  data: {
897
897
  name?: string | undefined;
@@ -901,12 +901,12 @@ declare function createAuthGroupSso<TAuthorization extends AuthAuthorizationConf
901
901
  }, Promise<{
902
902
  connectionId: string;
903
903
  }>>;
904
- deleteConnection: convex_server7.RegisteredMutation<"public", {
904
+ deleteConnection: convex_server9.RegisteredMutation<"public", {
905
905
  connectionId: string;
906
906
  }, Promise<{
907
907
  connectionId: string;
908
908
  }>>;
909
- getConnectionStatus: convex_server7.RegisteredQuery<"public", {
909
+ getConnectionStatus: convex_server9.RegisteredQuery<"public", {
910
910
  connectionId: string;
911
911
  }, Promise<{
912
912
  connectionId: string;
@@ -933,10 +933,10 @@ declare function createAuthGroupSso<TAuthorization extends AuthAuthorizationConf
933
933
  };
934
934
  };
935
935
  }>>;
936
- listDomains: convex_server7.RegisteredQuery<"public", {
936
+ listDomains: convex_server9.RegisteredQuery<"public", {
937
937
  connectionId: string;
938
938
  }, Promise<ConnectionDomainRecord[]>>;
939
- getDomainStatus: convex_server7.RegisteredQuery<"public", {
939
+ getDomainStatus: convex_server9.RegisteredQuery<"public", {
940
940
  connectionId: string;
941
941
  }, Promise<{
942
942
  connectionId: string;
@@ -968,7 +968,7 @@ declare function createAuthGroupSso<TAuthorization extends AuthAuthorizationConf
968
968
  warnings: string[];
969
969
  nextSteps: string[];
970
970
  }>>;
971
- validateDomains: convex_server7.RegisteredQuery<"public", {
971
+ validateDomains: convex_server9.RegisteredQuery<"public", {
972
972
  connectionId: string;
973
973
  }, Promise<{
974
974
  connectionId: string;
@@ -987,7 +987,7 @@ declare function createAuthGroupSso<TAuthorization extends AuthAuthorizationConf
987
987
  }[];
988
988
  warnings: string[];
989
989
  }>>;
990
- setDomains: convex_server7.RegisteredMutation<"public", {
990
+ setDomains: convex_server9.RegisteredMutation<"public", {
991
991
  connectionId: string;
992
992
  domains: {
993
993
  isPrimary?: boolean | undefined;
@@ -1003,7 +1003,7 @@ declare function createAuthGroupSso<TAuthorization extends AuthAuthorizationConf
1003
1003
  verifiedAt: number | null;
1004
1004
  }>;
1005
1005
  }>>;
1006
- requestDomainVerification: convex_server7.RegisteredMutation<"public", {
1006
+ requestDomainVerification: convex_server9.RegisteredMutation<"public", {
1007
1007
  connectionId: string;
1008
1008
  domain: string;
1009
1009
  }, Promise<{
@@ -1017,7 +1017,7 @@ declare function createAuthGroupSso<TAuthorization extends AuthAuthorizationConf
1017
1017
  recordValue: string;
1018
1018
  };
1019
1019
  }>>;
1020
- confirmDomainVerification: convex_server7.RegisteredAction<"public", {
1020
+ confirmDomainVerification: convex_server9.RegisteredAction<"public", {
1021
1021
  connectionId: string;
1022
1022
  domain: string;
1023
1023
  }, Promise<{
@@ -1030,13 +1030,13 @@ declare function createAuthGroupSso<TAuthorization extends AuthAuthorizationConf
1030
1030
  message?: string;
1031
1031
  }>;
1032
1032
  }>>;
1033
- configureOidc: convex_server7.RegisteredMutation<"public", {
1033
+ configureOidc: convex_server9.RegisteredMutation<"public", {
1034
1034
  profile?: {
1035
1035
  mapping?: {
1036
- email?: string | undefined;
1037
- emailVerified?: string | undefined;
1038
1036
  name?: string | undefined;
1037
+ email?: string | undefined;
1039
1038
  image?: string | undefined;
1039
+ emailVerified?: string | undefined;
1040
1040
  groups?: string | undefined;
1041
1041
  roles?: string | undefined;
1042
1042
  subject?: string | undefined;
@@ -1067,12 +1067,12 @@ declare function createAuthGroupSso<TAuthorization extends AuthAuthorizationConf
1067
1067
  }, Promise<{
1068
1068
  hasClientSecret: boolean;
1069
1069
  }>>;
1070
- getOidc: convex_server7.RegisteredQuery<"public", {
1070
+ getOidc: convex_server9.RegisteredQuery<"public", {
1071
1071
  connectionId: string;
1072
1072
  }, Promise<{
1073
1073
  hasClientSecret: boolean;
1074
1074
  }>>;
1075
- getOidcStatus: convex_server7.RegisteredQuery<"public", {
1075
+ getOidcStatus: convex_server9.RegisteredQuery<"public", {
1076
1076
  connectionId: string;
1077
1077
  }, Promise<{
1078
1078
  connectionId: string;
@@ -1087,7 +1087,7 @@ declare function createAuthGroupSso<TAuthorization extends AuthAuthorizationConf
1087
1087
  message: string | undefined;
1088
1088
  }[];
1089
1089
  }>>;
1090
- validateOidc: convex_server7.RegisteredAction<"public", {
1090
+ validateOidc: convex_server9.RegisteredAction<"public", {
1091
1091
  connectionId: string;
1092
1092
  }, Promise<{
1093
1093
  ok: boolean;
@@ -1098,11 +1098,11 @@ declare function createAuthGroupSso<TAuthorization extends AuthAuthorizationConf
1098
1098
  message?: string;
1099
1099
  }[];
1100
1100
  }>>;
1101
- configureSaml: convex_server7.RegisteredAction<"public", {
1101
+ configureSaml: convex_server9.RegisteredAction<"public", {
1102
1102
  profile?: {
1103
1103
  mapping?: {
1104
- email?: string | undefined;
1105
1104
  name?: string | undefined;
1105
+ email?: string | undefined;
1106
1106
  image?: string | undefined;
1107
1107
  groups?: string | undefined;
1108
1108
  roles?: string | undefined;
@@ -1147,10 +1147,10 @@ declare function createAuthGroupSso<TAuthorization extends AuthAuthorizationConf
1147
1147
  connectionId: string;
1148
1148
  groupId: string;
1149
1149
  }>>;
1150
- getSaml: convex_server7.RegisteredQuery<"public", {
1150
+ getSaml: convex_server9.RegisteredQuery<"public", {
1151
1151
  connectionId: string;
1152
1152
  }, Promise<Record<string, unknown>>>;
1153
- getSamlStatus: convex_server7.RegisteredQuery<"public", {
1153
+ getSamlStatus: convex_server9.RegisteredQuery<"public", {
1154
1154
  connectionId: string;
1155
1155
  }, Promise<{
1156
1156
  connectionId: string;
@@ -1163,7 +1163,7 @@ declare function createAuthGroupSso<TAuthorization extends AuthAuthorizationConf
1163
1163
  message: string | undefined;
1164
1164
  }[];
1165
1165
  }>>;
1166
- validateSaml: convex_server7.RegisteredQuery<"public", {
1166
+ validateSaml: convex_server9.RegisteredQuery<"public", {
1167
1167
  connectionId: string;
1168
1168
  }, Promise<{
1169
1169
  ok: boolean;
@@ -1174,16 +1174,16 @@ declare function createAuthGroupSso<TAuthorization extends AuthAuthorizationConf
1174
1174
  message?: string;
1175
1175
  }[];
1176
1176
  }>>;
1177
- refreshSaml: convex_server7.RegisteredAction<"public", {
1177
+ refreshSaml: convex_server9.RegisteredAction<"public", {
1178
1178
  connectionId: string;
1179
1179
  }, Promise<{
1180
1180
  connectionId: string;
1181
1181
  groupId: string;
1182
1182
  }>>;
1183
- getPolicy: convex_server7.RegisteredQuery<"public", {
1183
+ getPolicy: convex_server9.RegisteredQuery<"public", {
1184
1184
  groupId: string;
1185
1185
  }, Promise<GroupConnectionPolicy>>;
1186
- updatePolicy: convex_server7.RegisteredMutation<"public", {
1186
+ updatePolicy: convex_server9.RegisteredMutation<"public", {
1187
1187
  groupId: string;
1188
1188
  patch: {
1189
1189
  identity?: {
@@ -1222,7 +1222,7 @@ declare function createAuthGroupSso<TAuthorization extends AuthAuthorizationConf
1222
1222
  } | undefined;
1223
1223
  };
1224
1224
  }, Promise<GroupConnectionPolicy>>;
1225
- validatePolicy: convex_server7.RegisteredQuery<"public", {
1225
+ validatePolicy: convex_server9.RegisteredQuery<"public", {
1226
1226
  groupId: string;
1227
1227
  }, Promise<{
1228
1228
  ok: boolean;
@@ -1243,12 +1243,12 @@ declare function createAuthGroupSso<TAuthorization extends AuthAuthorizationConf
1243
1243
  message?: string;
1244
1244
  }[];
1245
1245
  }>>;
1246
- listAudit: convex_server7.RegisteredQuery<"public", {
1246
+ listAudit: convex_server9.RegisteredQuery<"public", {
1247
1247
  groupId?: string | undefined;
1248
1248
  connectionId?: string | undefined;
1249
1249
  limit?: number | undefined;
1250
1250
  }, Promise<AuditEventRecord[]>>;
1251
- createWebhookEndpoint: convex_server7.RegisteredMutation<"public", {
1251
+ createWebhookEndpoint: convex_server9.RegisteredMutation<"public", {
1252
1252
  createdByUserId?: string | undefined;
1253
1253
  secret: string;
1254
1254
  connectionId: string;
@@ -1263,25 +1263,26 @@ declare function createAuthGroupSso<TAuthorization extends AuthAuthorizationConf
1263
1263
  status: string;
1264
1264
  failureCount: number;
1265
1265
  }>>;
1266
- listWebhookEndpoints: convex_server7.RegisteredQuery<"public", {
1266
+ listWebhookEndpoints: convex_server9.RegisteredQuery<"public", {
1267
1267
  connectionId: string;
1268
1268
  }, Promise<{
1269
1269
  [x: string]: unknown;
1270
1270
  }[]>>;
1271
- listWebhookDeliveries: convex_server7.RegisteredQuery<"public", {
1271
+ listWebhookDeliveries: convex_server9.RegisteredQuery<"public", {
1272
1272
  limit?: number | undefined;
1273
1273
  connectionId: string;
1274
1274
  }, Promise<unknown>>;
1275
- disableWebhookEndpoint: convex_server7.RegisteredMutation<"public", {
1275
+ disableWebhookEndpoint: convex_server9.RegisteredMutation<"public", {
1276
1276
  endpointId: string;
1277
1277
  }, Promise<{
1278
1278
  endpointId: string;
1279
1279
  }>>;
1280
- configureScim: convex_server7.RegisteredMutation<"public", {
1280
+ configureScim: convex_server9.RegisteredMutation<"public", {
1281
+ status?: "draft" | "active" | "disabled" | undefined;
1281
1282
  profile?: {
1282
1283
  mapping?: {
1283
- email?: string | undefined;
1284
1284
  name?: string | undefined;
1285
+ email?: string | undefined;
1285
1286
  phone?: string | undefined;
1286
1287
  externalId?: string | undefined;
1287
1288
  groups?: string | undefined;
@@ -1293,7 +1294,6 @@ declare function createAuthGroupSso<TAuthorization extends AuthAuthorizationConf
1293
1294
  } | undefined;
1294
1295
  extraFields?: Record<string, string> | undefined;
1295
1296
  } | undefined;
1296
- status?: "draft" | "active" | "disabled" | undefined;
1297
1297
  security?: {
1298
1298
  maxRequestSize?: number | undefined;
1299
1299
  } | undefined;
@@ -1304,7 +1304,7 @@ declare function createAuthGroupSso<TAuthorization extends AuthAuthorizationConf
1304
1304
  basePath: string;
1305
1305
  token: string;
1306
1306
  }>>;
1307
- getScim: convex_server7.RegisteredQuery<"public", {
1307
+ getScim: convex_server9.RegisteredQuery<"public", {
1308
1308
  connectionId: string;
1309
1309
  }, Promise<{
1310
1310
  security: {
@@ -1335,7 +1335,7 @@ declare function createAuthGroupSso<TAuthorization extends AuthAuthorizationConf
1335
1335
  lastRotatedAt?: number;
1336
1336
  extend?: unknown;
1337
1337
  } | null>>;
1338
- getScimStatus: convex_server7.RegisteredQuery<"public", {
1338
+ getScimStatus: convex_server9.RegisteredQuery<"public", {
1339
1339
  connectionId: string;
1340
1340
  }, Promise<{
1341
1341
  connectionId: string;
@@ -1361,7 +1361,7 @@ declare function createAuthGroupSso<TAuthorization extends AuthAuthorizationConf
1361
1361
  etag: boolean;
1362
1362
  } | undefined;
1363
1363
  }>>;
1364
- validateScim: convex_server7.RegisteredQuery<"public", {
1364
+ validateScim: convex_server9.RegisteredQuery<"public", {
1365
1365
  connectionId: string;
1366
1366
  }, Promise<{
1367
1367
  ok: boolean;
@@ -1394,7 +1394,7 @@ declare function createAuthGroupSso<TAuthorization extends AuthAuthorizationConf
1394
1394
  message?: string;
1395
1395
  }[];
1396
1396
  }>>;
1397
- signIn: convex_server7.RegisteredQuery<"public", {
1397
+ signIn: convex_server9.RegisteredQuery<"public", {
1398
1398
  email?: string | undefined;
1399
1399
  connectionId?: string | undefined;
1400
1400
  domain?: string | undefined;
@@ -1408,7 +1408,7 @@ declare function createAuthGroupSso<TAuthorization extends AuthAuthorizationConf
1408
1408
  callbackPath: string;
1409
1409
  redirectTo?: string;
1410
1410
  }>>;
1411
- metadata: convex_server7.RegisteredQuery<"public", {
1411
+ metadata: convex_server9.RegisteredQuery<"public", {
1412
1412
  entityId?: string | undefined;
1413
1413
  acsUrl?: string | undefined;
1414
1414
  sloUrl?: string | undefined;