@stackframe/js 2.8.56 → 2.8.58

package/dist/index.d.ts

@@ -37,6 +37,15 @@ type RedirectMethod = "window" | "none" | {
 };
 type GetCurrentUserOptions<HasTokenStore> = {
     or?: 'redirect' | 'throw' | 'return-null' | 'anonymous' | /** @deprecated */ 'anonymous-if-exists[deprecated]';
+    /**
+     * Whether to include restricted users (users who haven't completed onboarding requirements like email verification).
+     * By default, restricted users are filtered out (treated similar to anonymous users).
+     *
+     * Note: This option cannot be set to false when `or: 'anonymous'` is used, as all anonymous users are also restricted.
+     *
+     * @default false
+     */
+    includeRestricted?: boolean;
     tokenStore?: TokenStoreInit;
 } & (HasTokenStore extends false ? {
     tokenStore: TokenStoreInit;
@@ -84,6 +93,7 @@ type HandlerUrls = {
     teamInvitation: string;
     mfa: string;
     error: string;
+    onboarding: string;
 };
 type OAuthScopesOnSignIn = {
     [key in ProviderType]: string[];
@@ -99,6 +109,20 @@ type AuthLike<ExtraOptions = {}> = {
     signOut(options?: {
         redirectUrl?: URL | string;
     }): Promise<void>;
+    /**
+     * Returns the current access token, or null if the user is not signed in.
+     *
+     * The access token is a short-lived JWT that can be used to authenticate requests to external servers.
+     * It will be automatically refreshed when it expires.
+     */
+    getAccessToken(options?: {} & ExtraOptions): Promise<string | null>;
+    /**
+     * Returns the current refresh token, or null if the user is not signed in.
+     *
+     * The refresh token is a long-lived token that can be used to obtain new access tokens.
+     * It should be kept secret and never exposed to the client.
+     */
+    getRefreshToken(options?: {} & ExtraOptions): Promise<string | null>;
     /**
      * Returns headers for sending authenticated HTTP requests to external servers. Most commonly used in cross-origin
      * requests. Similar to `getAuthJson`, but specifically for HTTP requests.
@@ -115,8 +139,8 @@ type AuthLike<ExtraOptions = {}> = {
      * must include `x-stack-auth` in the [`Access-Control-Allow-Headers` header](https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Access-Control-Allow-Headers)
      * of the CORS preflight response.
      *
-     * If you are not using HTTP (and hence cannot set headers), you will need to use the `getAuthJson()` function
-     * instead.
+     * If you are not using HTTP (and hence cannot set headers), you will need to use the `getAccessToken()` and
+     * `getRefreshToken()` functions instead.
      *
      * Example:
      *
@@ -140,6 +164,8 @@ type AuthLike<ExtraOptions = {}> = {
         "x-stack-auth": string;
     }>;
     /**
+     * @deprecated Use `getAccessToken()` and `getRefreshToken()` instead.
+     *
      * Creates a JSON-serializable object containing the information to authenticate a user on an external server.
      * Similar to `getAuthHeaders`, but returns an object that can be sent over any protocol instead of just
      * HTTP headers.
@@ -254,6 +280,137 @@ type AdminSentEmail = {
     sentAt: Date;
     error?: unknown;
 };
+type AdminEmailOutboxRecipient = {
+    type: "user-primary-email";
+    userId: string;
+} | {
+    type: "user-custom-emails";
+    userId: string;
+    emails: string[];
+} | {
+    type: "custom-emails";
+    emails: string[];
+};
+type AdminEmailOutboxStatus = "paused" | "preparing" | "rendering" | "render-error" | "scheduled" | "queued" | "sending" | "server-error" | "skipped" | "bounced" | "delivery-delayed" | "sent" | "opened" | "clicked" | "marked-as-spam";
+type AdminEmailOutboxSimpleStatus = "in-progress" | "ok" | "error";
+type AdminEmailOutboxBase = {
+    id: string;
+    createdAt: Date;
+    updatedAt: Date;
+    to: AdminEmailOutboxRecipient;
+    scheduledAt: Date;
+    isPaused: false;
+    hasRendered: false;
+    hasDelivered: false;
+};
+type AdminEmailOutboxRenderedFields = Omit<AdminEmailOutboxBase, "hasRendered"> & {
+    hasRendered: true;
+    startedRenderingAt: Date;
+    renderedAt: Date;
+    subject: string;
+    html: string | null;
+    text: string | null;
+    isTransactional: boolean;
+    isHighPriority: boolean;
+    notificationCategoryId: string | null;
+};
+type AdminEmailOutboxStartedSendingFields = AdminEmailOutboxRenderedFields & {
+    startedSendingAt: Date;
+};
+type AdminEmailOutboxFinishedDeliveringFields = Omit<AdminEmailOutboxStartedSendingFields, "hasDelivered"> & {
+    hasDelivered: true;
+    deliveredAt: Date;
+};
+type AdminEmailOutboxPaused = Omit<AdminEmailOutboxBase, "isPaused"> & {
+    status: "paused";
+    simpleStatus: "in-progress";
+    isPaused: true;
+};
+type AdminEmailOutboxPreparing = AdminEmailOutboxBase & {
+    status: "preparing";
+    simpleStatus: "in-progress";
+};
+type AdminEmailOutboxRendering = AdminEmailOutboxBase & {
+    status: "rendering";
+    simpleStatus: "in-progress";
+    startedRenderingAt: Date;
+};
+type AdminEmailOutboxRenderError = AdminEmailOutboxBase & {
+    status: "render-error";
+    simpleStatus: "error";
+    startedRenderingAt: Date;
+    renderedAt: Date;
+    renderError: string;
+};
+type AdminEmailOutboxScheduled = AdminEmailOutboxRenderedFields & {
+    status: "scheduled";
+    simpleStatus: "in-progress";
+};
+type AdminEmailOutboxQueued = AdminEmailOutboxRenderedFields & {
+    status: "queued";
+    simpleStatus: "in-progress";
+};
+type AdminEmailOutboxSending = AdminEmailOutboxStartedSendingFields & {
+    status: "sending";
+    simpleStatus: "in-progress";
+};
+type AdminEmailOutboxServerError = AdminEmailOutboxStartedSendingFields & {
+    status: "server-error";
+    simpleStatus: "error";
+    errorAt: Date;
+    serverError: string;
+};
+type AdminEmailOutboxSkipped = Omit<AdminEmailOutboxBase, "hasRendered"> & {
+    status: "skipped";
+    simpleStatus: "ok";
+    hasRendered: boolean;
+    skippedAt: Date;
+    skippedReason: string;
+    skippedDetails: Record<string, unknown>;
+    startedRenderingAt?: Date;
+    renderedAt?: Date;
+    subject?: string;
+    html?: string | null;
+    text?: string | null;
+    isTransactional?: boolean;
+    isHighPriority?: boolean;
+    notificationCategoryId?: string | null;
+    startedSendingAt?: Date;
+};
+type AdminEmailOutboxBounced = AdminEmailOutboxStartedSendingFields & {
+    status: "bounced";
+    simpleStatus: "error";
+    bouncedAt: Date;
+};
+type AdminEmailOutboxDeliveryDelayed = AdminEmailOutboxStartedSendingFields & {
+    status: "delivery-delayed";
+    simpleStatus: "ok";
+    deliveryDelayedAt: Date;
+};
+type AdminEmailOutboxSent = AdminEmailOutboxFinishedDeliveringFields & {
+    status: "sent";
+    simpleStatus: "ok";
+    canHaveDeliveryInfo: boolean;
+};
+type AdminEmailOutboxOpened = AdminEmailOutboxFinishedDeliveringFields & {
+    status: "opened";
+    simpleStatus: "ok";
+    openedAt: Date;
+    canHaveDeliveryInfo: true;
+};
+type AdminEmailOutboxClicked = AdminEmailOutboxFinishedDeliveringFields & {
+    status: "clicked";
+    simpleStatus: "ok";
+    clickedAt: Date;
+    canHaveDeliveryInfo: true;
+};
+type AdminEmailOutboxMarkedAsSpam = AdminEmailOutboxFinishedDeliveringFields & {
+    status: "marked-as-spam";
+    simpleStatus: "ok";
+    markedAsSpamAt: Date;
+    canHaveDeliveryInfo: true;
+};
+type AdminEmailOutbox = AdminEmailOutboxPaused | AdminEmailOutboxPreparing | AdminEmailOutboxRendering | AdminEmailOutboxRenderError | AdminEmailOutboxScheduled | AdminEmailOutboxQueued | AdminEmailOutboxSending | AdminEmailOutboxServerError | AdminEmailOutboxSkipped | AdminEmailOutboxBounced | AdminEmailOutboxDeliveryDelayed | AdminEmailOutboxSent | AdminEmailOutboxOpened | AdminEmailOutboxClicked | AdminEmailOutboxMarkedAsSpam;
 type SendEmailOptionsBase = {
     themeId?: string | null | false;
     subject?: string;
@@ -278,6 +435,25 @@ type SendEmailOptions = SendEmailOptionsBase & XOR<[
         draftId: string;
     }
 ]>;
+type EmailDeliveryWindowStats = {
+    sent: number;
+    bounced: number;
+    marked_as_spam: number;
+};
+type EmailDeliveryStats = {
+    hour: EmailDeliveryWindowStats;
+    day: EmailDeliveryWindowStats;
+    week: EmailDeliveryWindowStats;
+    month: EmailDeliveryWindowStats;
+};
+type EmailDeliveryCapacity = {
+    rate_per_second: number;
+    penalty_factor: number;
+};
+type EmailDeliveryInfo = {
+    stats: EmailDeliveryStats;
+    capacity: EmailDeliveryCapacity;
+};
 
 type InternalApiKeyBase = {
     id: string;
@@ -477,18 +653,17 @@ type ServerOAuthProvider = {
     }): Promise<Result<void, InstanceType<typeof KnownErrors.OAuthProviderAccountIdAlreadyUsedForSignIn>>>;
     delete(): Promise<void>;
 };
-type Session = {
-    getTokens(): Promise<{
-        accessToken: string | null;
-        refreshToken: string | null;
-    }>;
-};
 /**
  * Contains everything related to the current user session.
  */
 type Auth = AuthLike<{}> & {
     readonly _internalSession: InternalSession;
-    readonly currentSession: Session;
+    readonly currentSession: {
+        getTokens(): Promise<{
+            accessToken: string | null;
+            refreshToken: string | null;
+        }>;
+    };
 };
 /**
  * ```
@@ -534,6 +709,18 @@ type BaseUser = {
     readonly passkeyAuthEnabled: boolean;
     readonly isMultiFactorRequired: boolean;
     readonly isAnonymous: boolean;
+    /**
+     * Whether the user is in restricted state (signed up but hasn't completed onboarding requirements).
+     * For example, if email verification is required but the user hasn't verified their email yet.
+     */
+    readonly isRestricted: boolean;
+    /**
+     * The reason why the user is restricted, e.g., { type: "email_not_verified" } or { type: "anonymous" }.
+     * Null if the user is not restricted.
+     */
+    readonly restrictedReason: {
+        type: "anonymous" | "email_not_verified";
+    } | null;
     toClientJson(): CurrentUserCrud["Client"]["Read"];
     /**
      * @deprecated, use contact channel's usedForAuth instead
@@ -547,7 +734,7 @@ type BaseUser = {
     }[];
 };
 type UserExtra = {
-    setDisplayName(displayName: string): Promise<void>;
+    setDisplayName(displayName: string | null): Promise<void>;
     /** @deprecated Use contact channel's sendVerificationEmail instead */
     sendVerificationEmail(): Promise<KnownErrors["EmailAlreadyVerified"] | void>;
     setClientMetadata(metadata: any): Promise<void>;
@@ -585,7 +772,7 @@ type UserExtra = {
         recursive?: boolean;
     }): Promise<TeamPermission[]>;
     readonly selectedTeam: Team | null;
-    setSelectedTeam(team: Team | null): Promise<void>;
+    setSelectedTeam(teamOrId: string | Team | null): Promise<void>;
     createTeam(data: TeamCreateOptions): Promise<Team>;
     leaveTeam(team: Team): Promise<void>;
     getActiveSessions(): Promise<ActiveSession[]>;
@@ -610,8 +797,8 @@ type User = BaseUser;
 type CurrentUser = BaseUser & Auth & UserExtra & Customer;
 type CurrentInternalUser = CurrentUser & InternalUserExtra;
 type ProjectCurrentUser<ProjectId> = ProjectId extends "internal" ? CurrentInternalUser : CurrentUser;
-type TokenPartialUser = Pick<User, "id" | "displayName" | "primaryEmail" | "primaryEmailVerified" | "isAnonymous">;
-type SyncedPartialUser = TokenPartialUser & Pick<User, "id" | "displayName" | "primaryEmail" | "primaryEmailVerified" | "profileImageUrl" | "signedUpAt" | "clientMetadata" | "clientReadOnlyMetadata" | "isAnonymous" | "hasPassword">;
+type TokenPartialUser = Pick<User, "id" | "displayName" | "primaryEmail" | "primaryEmailVerified" | "isAnonymous" | "isRestricted" | "restrictedReason">;
+type SyncedPartialUser = TokenPartialUser & Pick<User, "id" | "displayName" | "primaryEmail" | "primaryEmailVerified" | "profileImageUrl" | "signedUpAt" | "clientMetadata" | "clientReadOnlyMetadata" | "isAnonymous" | "hasPassword" | "isRestricted" | "restrictedReason">;
 type ActiveSession = {
     id: string;
     userId: string;
@@ -622,13 +809,14 @@ type ActiveSession = {
     geoInfo?: GeoInfo;
 };
 type UserUpdateOptions = {
-    displayName?: string;
+    displayName?: string | null;
     clientMetadata?: ReadonlyJson;
     selectedTeamId?: string | null;
     totpMultiFactorSecret?: Uint8Array | null;
     profileImageUrl?: string | null;
     otpAuthEnabled?: boolean;
     passkeyAuthEnabled?: boolean;
+    primaryEmail?: string | null;
 };
 type ServerBaseUser = {
     setPrimaryEmail(email: string | null, options?: {
@@ -664,7 +852,12 @@ type ServerBaseUser = {
     createSession(options?: {
         expiresInMillis?: number;
         isImpersonation?: boolean;
-    }): Promise<Session>;
+    }): Promise<{
+        getTokens(): Promise<{
+            accessToken: string | null;
+            refreshToken: string | null;
+        }>;
+    }>;
 } & AsyncStoreProperty<"team", [id: string], ServerTeam | null, false> & AsyncStoreProperty<"teams", [], ServerTeam[], true> & AsyncStoreProperty<"permission", [scope: Team, permissionId: string, options?: {
     direct?: boolean;
 }], AdminTeamPermission | null, false> & AsyncStoreProperty<"permissions", [scope: Team, options?: {
@@ -768,6 +961,15 @@ type ServerListUsersOptions = {
     orderBy?: 'signedUpAt';
     desc?: boolean;
     query?: string;
+    /**
+     * Whether to include restricted users (users who haven't completed onboarding requirements).
+     * Defaults to false.
+     */
+    includeRestricted?: boolean;
+    /**
+     * Whether to include anonymous users (and restricted users).
+     * Defaults to false.
+     */
     includeAnonymous?: boolean;
 };
 type ServerTeamCreateOptions = TeamCreateOptions & {
@@ -848,6 +1050,7 @@ type StackServerApp<HasTokenStore extends boolean = boolean, ProjectId extends s
         allowConnectedAccounts: boolean;
     }): Promise<Result<ServerOAuthProvider, InstanceType<typeof KnownErrors.OAuthProviderAccountIdAlreadyUsedForSignIn>>>;
     sendEmail(options: SendEmailOptions): Promise<void>;
+    getEmailDeliveryStats(): Promise<EmailDeliveryInfo>;
 } & AsyncStoreProperty<"user", [id: string], ServerUser | null, false> & Omit<AsyncStoreProperty<"users", [], ServerUser[], true>, "listUsers" | "useUsers"> & AsyncStoreProperty<"teams", [], ServerTeam[], true> & AsyncStoreProperty<"dataVaultStore", [id: string], DataVaultStore, false> & AsyncStoreProperty<"item", [
     {
         itemId: string;
@@ -864,6 +1067,21 @@ type StackServerApp<HasTokenStore extends boolean = boolean, ProjectId extends s
 ], CustomerProductsList, true> & StackClientApp<HasTokenStore, ProjectId>);
 declare const StackServerApp: StackServerAppConstructor;
 
+type EmailOutboxListOptions = {
+    status?: string;
+    simpleStatus?: string;
+    limit?: number;
+    cursor?: string;
+};
+type EmailOutboxListResult = {
+    items: AdminEmailOutbox[];
+    nextCursor: string | null;
+};
+type EmailOutboxUpdateOptions = {
+    isPaused?: boolean;
+    scheduledAtMillis?: number;
+    cancel?: boolean;
+};
 type StackAdminAppConstructorOptions<HasTokenStore extends boolean, ProjectId extends string> = (StackServerAppConstructorOptions<HasTokenStore, ProjectId> & {
     superSecretAdminKey?: string;
     projectOwnerSession?: InternalSession;
@@ -988,6 +1206,12 @@ type StackAdminApp<HasTokenStore extends boolean = boolean, ProjectId extends st
         type: "subscription" | "one-time-purchase";
         id: string;
     }): Promise<void>;
+    listOutboxEmails(options?: EmailOutboxListOptions): Promise<EmailOutboxListResult>;
+    getOutboxEmail(id: string): Promise<AdminEmailOutbox>;
+    updateOutboxEmail(id: string, options: EmailOutboxUpdateOptions): Promise<AdminEmailOutbox>;
+    pauseOutboxEmail(id: string): Promise<AdminEmailOutbox>;
+    unpauseOutboxEmail(id: string): Promise<AdminEmailOutbox>;
+    cancelOutboxEmail(id: string): Promise<AdminEmailOutbox>;
 } & StackServerApp<HasTokenStore, ProjectId>);
 declare const StackAdminApp: StackAdminAppConstructor;
 
@@ -1005,6 +1229,9 @@ type ProjectConfig = {
 type OAuthProviderConfig = {
     readonly id: string;
 };
+/**
+ * @deprecated This type is deprecated. Use the new config override setup instead.
+ */
 type AdminProjectConfig = {
     readonly signUpEnabled: boolean;
     readonly credentialEnabled: boolean;
@@ -1238,6 +1465,12 @@ type StackClientApp<HasTokenStore extends boolean = boolean, ProjectId extends s
         or: 'anonymous';
     }): Promise<ProjectCurrentUser<ProjectId>>;
     getUser(options?: GetCurrentUserOptions<HasTokenStore>): Promise<ProjectCurrentUser<ProjectId> | null>;
+    cancelSubscription(options: {
+        productId: string;
+    } | {
+        productId: string;
+        teamId: string;
+    }): Promise<void>;
     getPartialUser(options: GetCurrentPartialUserOptions<HasTokenStore> & {
         from: 'token';
     }): Promise<TokenPartialUser | null>;
@@ -1274,4 +1507,4 @@ type StackClientApp<HasTokenStore extends boolean = boolean, ProjectId extends s
 }>);
 declare const StackClientApp: StackClientAppConstructor;
 
-export { type AdminDomainConfig, type AdminEmailConfig, type AdminOAuthProviderConfig, type AdminOwnedProject, type AdminProject, type AdminProjectConfig, type AdminProjectConfigUpdateOptions, type AdminProjectCreateOptions, type AdminProjectPermission, type AdminProjectPermissionDefinition, type AdminProjectPermissionDefinitionCreateOptions, type AdminProjectPermissionDefinitionUpdateOptions, type AdminProjectUpdateOptions, type AdminSentEmail, type AdminTeamPermission, type AdminTeamPermissionDefinition, type AdminTeamPermissionDefinitionCreateOptions, type AdminTeamPermissionDefinitionUpdateOptions, type Auth, type Connection, type ContactChannel, type CurrentInternalServerUser, type CurrentInternalUser, type CurrentServerUser, type CurrentUser, type EditableTeamMemberProfile, type GetCurrentUserOptions, type GetCurrentUserOptions as GetUserOptions, type HandlerUrls, type InternalApiKey, type InternalApiKeyBase, type InternalApiKeyBaseCrudRead, type InternalApiKeyCreateOptions, type InternalApiKeyFirstView, type OAuthConnection, type OAuthProvider, type OAuthProviderConfig, type OAuthScopesOnSignIn, type Project, type ProjectConfig, type ServerContactChannel, type ServerListUsersOptions, type ServerOAuthProvider, type ServerTeam, type ServerTeamCreateOptions, type ServerTeamMemberProfile, type ServerTeamUpdateOptions, type ServerTeamUser, type ServerUser, type Session, StackAdminApp, type StackAdminAppConstructor, type StackAdminAppConstructorOptions, StackClientApp, type StackClientAppConstructor, type StackClientAppConstructorOptions, type StackClientAppJson, StackServerApp, type StackServerAppConstructor, type StackServerAppConstructorOptions, type Team, type TeamCreateOptions, type TeamInvitation, type TeamMemberProfile, type TeamUpdateOptions, type TeamUser, type User, stackAppInternalsSymbol };
+export { type AdminDomainConfig, type AdminEmailConfig, type AdminEmailOutbox, type AdminEmailOutboxRecipient, type AdminEmailOutboxSimpleStatus, type AdminEmailOutboxStatus, type AdminOAuthProviderConfig, type AdminOwnedProject, type AdminProject, type AdminProjectConfig, type AdminProjectConfigUpdateOptions, type AdminProjectCreateOptions, type AdminProjectPermission, type AdminProjectPermissionDefinition, type AdminProjectPermissionDefinitionCreateOptions, type AdminProjectPermissionDefinitionUpdateOptions, type AdminProjectUpdateOptions, type AdminSentEmail, type AdminTeamPermission, type AdminTeamPermissionDefinition, type AdminTeamPermissionDefinitionCreateOptions, type AdminTeamPermissionDefinitionUpdateOptions, type Auth, type Connection, type ContactChannel, type CurrentInternalServerUser, type CurrentInternalUser, type CurrentServerUser, type CurrentUser, type EditableTeamMemberProfile, type EmailOutboxListOptions, type EmailOutboxListResult, type EmailOutboxUpdateOptions, type GetCurrentUserOptions, type GetCurrentUserOptions as GetUserOptions, type HandlerUrls, type InternalApiKey, type InternalApiKeyBase, type InternalApiKeyBaseCrudRead, type InternalApiKeyCreateOptions, type InternalApiKeyFirstView, type OAuthConnection, type OAuthProvider, type OAuthProviderConfig, type OAuthScopesOnSignIn, type Project, type ProjectConfig, type ServerContactChannel, type ServerListUsersOptions, type ServerOAuthProvider, type ServerTeam, type ServerTeamCreateOptions, type ServerTeamMemberProfile, type ServerTeamUpdateOptions, type ServerTeamUser, type ServerUser, StackAdminApp, type StackAdminAppConstructor, type StackAdminAppConstructorOptions, StackClientApp, type StackClientAppConstructor, type StackClientAppConstructorOptions, type StackClientAppJson, StackServerApp, type StackServerAppConstructor, type StackServerAppConstructorOptions, type Team, type TeamCreateOptions, type TeamInvitation, type TeamMemberProfile, type TeamUpdateOptions, type TeamUser, type User, stackAppInternalsSymbol };

package/dist/lib/stack-app/apps/implementations/admin-app-impl.js

@@ -449,9 +449,244 @@ var _StackAdminAppImplIncomplete = class extends import_server_app_impl._StackSe
     const crud = import_results.Result.orThrow(await this._transactionsCache.getOrWait([params.cursor, params.limit, params.type, params.customerType], "write-only"));
     return crud;
   }
+  // Email Outbox methods
+  // eslint-disable-next-line @typescript-eslint/no-explicit-any -- Complex discriminated union conversion from API response
+  _emailOutboxCrudToAdmin(crud) {
+    const recipient = crud.to;
+    let to;
+    if (recipient.type === "user-primary-email") {
+      to = { type: "user-primary-email", userId: recipient.user_id };
+    } else if (recipient.type === "user-custom-emails") {
+      to = { type: "user-custom-emails", userId: recipient.user_id, emails: recipient.emails };
+    } else {
+      to = { type: "custom-emails", emails: recipient.emails };
+    }
+    const base = {
+      id: crud.id,
+      createdAt: new Date(crud.created_at_millis),
+      updatedAt: new Date(crud.updated_at_millis),
+      to,
+      scheduledAt: new Date(crud.scheduled_at_millis),
+      isPaused: false,
+      hasRendered: false,
+      hasDelivered: false
+    };
+    const rendered = crud.has_rendered ? {
+      ...base,
+      startedRenderingAt: new Date(crud.started_rendering_at_millis),
+      renderedAt: new Date(crud.rendered_at_millis),
+      subject: crud.subject,
+      html: crud.html,
+      text: crud.text,
+      isTransactional: crud.is_transactional,
+      isHighPriority: crud.is_high_priority,
+      notificationCategoryId: crud.notification_category_id,
+      hasRendered: true
+    } : null;
+    const startedSending = rendered && crud.started_sending_at_millis ? {
+      ...rendered,
+      startedSendingAt: new Date(crud.started_sending_at_millis)
+    } : null;
+    const finishedDelivering = startedSending && crud.has_delivered ? {
+      ...startedSending,
+      deliveredAt: new Date(crud.delivered_at_millis),
+      hasDelivered: true
+    } : null;
+    const result = (() => {
+      switch (crud.status) {
+        case "paused": {
+          return {
+            ...base,
+            status: "paused",
+            simpleStatus: "in-progress",
+            isPaused: true
+          };
+        }
+        case "preparing": {
+          return {
+            ...base,
+            status: "preparing",
+            simpleStatus: "in-progress"
+          };
+        }
+        case "rendering": {
+          return {
+            ...base,
+            status: "rendering",
+            simpleStatus: "in-progress",
+            startedRenderingAt: new Date(crud.started_rendering_at_millis)
+          };
+        }
+        case "render-error": {
+          return {
+            ...base,
+            status: "render-error",
+            simpleStatus: "error",
+            startedRenderingAt: new Date(crud.started_rendering_at_millis),
+            renderedAt: new Date(crud.rendered_at_millis),
+            renderError: crud.render_error
+          };
+        }
+        case "scheduled": {
+          return {
+            ...rendered,
+            status: "scheduled",
+            simpleStatus: "in-progress"
+          };
+        }
+        case "queued": {
+          return {
+            ...rendered,
+            status: "queued",
+            simpleStatus: "in-progress"
+          };
+        }
+        case "sending": {
+          return {
+            ...startedSending,
+            status: "sending",
+            simpleStatus: "in-progress"
+          };
+        }
+        case "server-error": {
+          return {
+            ...startedSending,
+            status: "server-error",
+            simpleStatus: "error",
+            errorAt: new Date(crud.error_at_millis),
+            serverError: crud.server_error
+          };
+        }
+        case "skipped": {
+          return {
+            ...base,
+            status: "skipped",
+            simpleStatus: "ok",
+            skippedAt: new Date(crud.skipped_at_millis),
+            skippedReason: crud.skipped_reason,
+            skippedDetails: crud.skipped_details ?? {},
+            hasRendered: crud.has_rendered,
+            // Optional fields
+            startedRenderingAt: crud.started_rendering_at_millis ? new Date(crud.started_rendering_at_millis) : void 0,
+            renderedAt: crud.rendered_at_millis ? new Date(crud.rendered_at_millis) : void 0,
+            subject: crud.subject,
+            html: crud.html,
+            text: crud.text,
+            isTransactional: crud.is_transactional,
+            isHighPriority: crud.is_high_priority,
+            notificationCategoryId: crud.notification_category_id,
+            startedSendingAt: crud.started_sending_at_millis ? new Date(crud.started_sending_at_millis) : void 0
+          };
+        }
+        case "bounced": {
+          return {
+            ...startedSending,
+            status: "bounced",
+            simpleStatus: "error",
+            bouncedAt: new Date(crud.bounced_at_millis)
+          };
+        }
+        case "delivery-delayed": {
+          return {
+            ...startedSending,
+            status: "delivery-delayed",
+            simpleStatus: "ok",
+            deliveryDelayedAt: new Date(crud.delivery_delayed_at_millis)
+          };
+        }
+        case "sent": {
+          return {
+            ...finishedDelivering,
+            status: "sent",
+            simpleStatus: "ok",
+            canHaveDeliveryInfo: crud.can_have_delivery_info
+          };
+        }
+        case "opened": {
+          return {
+            ...finishedDelivering,
+            status: "opened",
+            simpleStatus: "ok",
+            openedAt: new Date(crud.opened_at_millis),
+            canHaveDeliveryInfo: true
+          };
+        }
+        case "clicked": {
+          return {
+            ...finishedDelivering,
+            status: "clicked",
+            simpleStatus: "ok",
+            clickedAt: new Date(crud.clicked_at_millis),
+            canHaveDeliveryInfo: true
+          };
+        }
+        case "marked-as-spam": {
+          return {
+            ...finishedDelivering,
+            status: "marked-as-spam",
+            simpleStatus: "ok",
+            markedAsSpamAt: new Date(crud.marked_as_spam_at_millis),
+            canHaveDeliveryInfo: true
+          };
+        }
+        default: {
+          throw new import_errors.StackAssertionError(`Unknown email outbox status: ${crud.status}`, { status: crud.status });
+        }
+      }
+    })();
+    return result;
+  }
+  async listOutboxEmails(options) {
+    const response = await this._interface.listOutboxEmails({
+      status: options?.status,
+      simple_status: options?.simpleStatus,
+      limit: options?.limit,
+      cursor: options?.cursor
+    });
+    return {
+      items: response.items.map((item) => this._emailOutboxCrudToAdmin(item)),
+      nextCursor: response.pagination?.next_cursor ?? null
+    };
+  }
+  async getOutboxEmail(id) {
+    const response = await this._interface.getOutboxEmail(id);
+    return this._emailOutboxCrudToAdmin(response);
+  }
+  async updateOutboxEmail(id, options) {
+    const response = await this._interface.updateOutboxEmail(id, {
+      is_paused: options.isPaused,
+      scheduled_at_millis: options.scheduledAtMillis,
+      cancel: options.cancel
+    });
+    return this._emailOutboxCrudToAdmin(response);
+  }
+  async pauseOutboxEmail(id) {
+    return await this.updateOutboxEmail(id, { isPaused: true });
+  }
+  async unpauseOutboxEmail(id) {
+    return await this.updateOutboxEmail(id, { isPaused: false });
+  }
+  async cancelOutboxEmail(id) {
+    return await this.updateOutboxEmail(id, { cancel: true });
+  }
   async getStripeAccountInfo() {
     return await this._interface.getStripeAccountInfo();
   }
+  async previewAffectedUsersByOnboardingChange(onboarding, limit) {
+    const result = await this._interface.previewAffectedUsersByOnboardingChange(
+      { require_email_verification: onboarding.requireEmailVerification },
+      limit
+    );
+    return {
+      affectedUsers: result.affected_users.map((u) => ({
+        id: u.id,
+        displayName: u.display_name,
+        primaryEmail: u.primary_email,
+        restrictedReason: u.restricted_reason
+      })),
+      totalAffectedCount: result.total_affected_count
+    };
+  }
 };
 // Annotate the CommonJS export names for ESM import in node:
 0 && (module.exports = {