@stackframe/stack-shared 2.6.10 → 2.6.12

package/CHANGELOG.md

@@ -1,5 +1,21 @@
 # @stackframe/stack-shared
 
+## 2.6.12
+
+### Patch Changes
+
+- Updated account settings page
+- Updated dependencies
+  - @stackframe/stack-sc@2.6.12
+
+## 2.6.11
+
+### Patch Changes
+
+- fixed account settings bugs
+- Updated dependencies
+  - @stackframe/stack-sc@2.6.11
+
 ## 2.6.10
 
 ### Patch Changes

package/dist/interface/clientInterface.d.ts

@@ -2,6 +2,7 @@ import { KnownErrors } from '../known-errors';
 import { AccessToken, InternalSession, RefreshToken } from '../sessions';
 import { ReadonlyJson } from '../utils/json';
 import { Result } from "../utils/results";
+import { ContactChannelsCrud } from './crud/contact-channels';
 import { CurrentUserCrud } from './crud/current-user';
 import { ConnectedAccountAccessTokenCrud } from './crud/oauth';
 import { InternalProjectsCrud, ProjectsCrud } from './crud/projects';
@@ -67,6 +68,9 @@ export declare class StackClientInterface {
         oldPassword: string;
         newPassword: string;
     }, session: InternalSession): Promise<KnownErrors["PasswordConfirmationMismatch"] | KnownErrors["PasswordRequirementsNotMet"] | undefined>;
+    setPassword(options: {
+        password: string;
+    }, session: InternalSession): Promise<KnownErrors["PasswordRequirementsNotMet"] | undefined>;
     verifyPasswordResetCode(code: string): Promise<Result<undefined, KnownErrors["VerificationCodeError"]>>;
     verifyEmail(code: string): Promise<Result<undefined, KnownErrors["VerificationCodeError"]>>;
     sendTeamInvitation(options: {
@@ -158,4 +162,9 @@ export declare class StackClientInterface {
     createProviderAccessToken(provider: string, scope: string, session: InternalSession): Promise<ConnectedAccountAccessTokenCrud['Client']['Read']>;
     createClientTeam(data: TeamsCrud['Client']['Create'], session: InternalSession): Promise<TeamsCrud['Client']['Read']>;
     deleteCurrentUser(session: InternalSession): Promise<void>;
+    createClientContactChannel(data: ContactChannelsCrud['Client']['Create'], session: InternalSession): Promise<ContactChannelsCrud['Client']['Read']>;
+    updateClientContactChannel(id: string, data: ContactChannelsCrud['Client']['Update'], session: InternalSession): Promise<ContactChannelsCrud['Client']['Read']>;
+    deleteClientContactChannel(id: string, session: InternalSession): Promise<void>;
+    listClientContactChannels(session: InternalSession): Promise<ContactChannelsCrud['Client']['Read'][]>;
+    sendCurrentUserContactChannelVerificationEmail(contactChannelId: string, callbackUrl: string, session: InternalSession): Promise<Result<undefined, KnownErrors["EmailAlreadyVerified"]>>;
 }

package/dist/interface/clientInterface.js

@@ -375,6 +375,18 @@ export class StackClientInterface {
             return res.error;
         }
     }
+    async setPassword(options, session) {
+        const res = await this.sendClientRequestAndCatchKnownError("/auth/password/set", {
+            method: "POST",
+            headers: {
+                "Content-Type": "application/json"
+            },
+            body: JSON.stringify(options),
+        }, session, [KnownErrors.PasswordRequirementsNotMet]);
+        if (res.status === "error") {
+            return res.error;
+        }
+    }
     async verifyPasswordResetCode(code) {
         const res = await this.resetPassword({ code, onlyVerifyCode: true });
         if (res.status === "error") {
@@ -747,4 +759,49 @@ export class StackClientInterface {
             method: "DELETE",
         }, session);
     }
+    async createClientContactChannel(data, session) {
+        const response = await this.sendClientRequest("/contact-channels", {
+            method: "POST",
+            headers: {
+                "content-type": "application/json",
+            },
+            body: JSON.stringify(data),
+        }, session);
+        return await response.json();
+    }
+    async updateClientContactChannel(id, data, session) {
+        const response = await this.sendClientRequest(`/contact-channels/me/${id}`, {
+            method: "PATCH",
+            headers: {
+                "content-type": "application/json",
+            },
+            body: JSON.stringify(data),
+        }, session);
+        return await response.json();
+    }
+    async deleteClientContactChannel(id, session) {
+        await this.sendClientRequest(`/contact-channels/me/${id}`, {
+            method: "DELETE",
+        }, session);
+    }
+    async listClientContactChannels(session) {
+        const response = await this.sendClientRequest("/contact-channels?user_id=me", {
+            method: "GET",
+        }, session);
+        const json = await response.json();
+        return json.items;
+    }
+    async sendCurrentUserContactChannelVerificationEmail(contactChannelId, callbackUrl, session) {
+        const responseOrError = await this.sendClientRequestAndCatchKnownError(`/contact-channels/me/${contactChannelId}/send-verification-code`, {
+            method: "POST",
+            headers: {
+                "content-type": "application/json",
+            },
+            body: JSON.stringify({ callback_url: callbackUrl }),
+        }, session, [KnownErrors.EmailAlreadyVerified]);
+        if (responseOrError.status === "error") {
+            return Result.error(responseOrError.error);
+        }
+        return Result.ok(undefined);
+    }
 }

package/dist/interface/crud/current-user.d.ts

@@ -13,6 +13,7 @@ export declare const currentUserCrud: import("../../crud").CrudSchemaFromOptions
         client_metadata: {} | null;
         client_read_only_metadata: {} | null;
         primary_email_verified: NonNullable<boolean | undefined>;
+        otp_auth_enabled: NonNullable<boolean | undefined>;
         selected_team_id: string | null;
         signed_up_at_millis: number;
         has_password: NonNullable<boolean | undefined>;
@@ -30,6 +31,7 @@ export declare const currentUserCrud: import("../../crud").CrudSchemaFromOptions
         id: undefined;
         primary_email: undefined;
         primary_email_verified: undefined;
+        primary_email_auth_enabled: undefined;
         display_name: undefined;
         selected_team: {
             id: undefined;
@@ -42,6 +44,7 @@ export declare const currentUserCrud: import("../../crud").CrudSchemaFromOptions
         profile_image_url: undefined;
         signed_up_at_millis: undefined;
         has_password: undefined;
+        otp_auth_enabled: undefined;
         client_metadata: undefined;
         client_read_only_metadata: undefined;
         server_metadata: undefined;
@@ -54,6 +57,7 @@ export declare const currentUserCrud: import("../../crud").CrudSchemaFromOptions
         id: string;
         primary_email: string | null;
         primary_email_verified: NonNullable<boolean | undefined>;
+        primary_email_auth_enabled: NonNullable<boolean | undefined>;
         display_name: string | null;
         selected_team: {
             client_metadata?: {} | null | undefined;
@@ -68,6 +72,7 @@ export declare const currentUserCrud: import("../../crud").CrudSchemaFromOptions
         profile_image_url: string | null;
         signed_up_at_millis: number;
         has_password: NonNullable<boolean | undefined>;
+        otp_auth_enabled: NonNullable<boolean | undefined>;
         client_metadata: {} | null;
         client_read_only_metadata: {} | null;
         server_metadata: {} | null;
@@ -83,6 +88,7 @@ export declare const currentUserCrud: import("../../crud").CrudSchemaFromOptions
         id: undefined;
         primary_email: undefined;
         primary_email_verified: undefined;
+        primary_email_auth_enabled: undefined;
         display_name: undefined;
         selected_team: {
             id: undefined;
@@ -97,6 +103,7 @@ export declare const currentUserCrud: import("../../crud").CrudSchemaFromOptions
         profile_image_url: undefined;
         signed_up_at_millis: undefined;
         has_password: undefined;
+        otp_auth_enabled: undefined;
         client_metadata: undefined;
         client_read_only_metadata: undefined;
         server_metadata: undefined;
@@ -109,6 +116,7 @@ export declare const currentUserCrud: import("../../crud").CrudSchemaFromOptions
         display_name: string | null | undefined;
         profile_image_url: string | null | undefined;
         client_metadata: {} | null | undefined;
+        otp_auth_enabled: boolean | undefined;
         totp_secret_base64: string | null | undefined;
         selected_team_id: string | null | undefined;
     }, import("yup").AnyObject, {
@@ -121,6 +129,7 @@ export declare const currentUserCrud: import("../../crud").CrudSchemaFromOptions
         primary_email_verified: undefined;
         primary_email_auth_enabled: undefined;
         password: undefined;
+        otp_auth_enabled: undefined;
         totp_secret_base64: undefined;
         selected_team_id: undefined;
     }, "">;
@@ -134,6 +143,7 @@ export declare const currentUserCrud: import("../../crud").CrudSchemaFromOptions
         primary_email_verified: boolean | undefined;
         primary_email_auth_enabled: boolean | undefined;
         password: string | null | undefined;
+        otp_auth_enabled: boolean | undefined;
         totp_secret_base64: string | null | undefined;
         selected_team_id: string | null | undefined;
     }, import("yup").AnyObject, {
@@ -146,6 +156,7 @@ export declare const currentUserCrud: import("../../crud").CrudSchemaFromOptions
         primary_email_verified: undefined;
         primary_email_auth_enabled: undefined;
         password: undefined;
+        otp_auth_enabled: undefined;
         totp_secret_base64: undefined;
         selected_team_id: undefined;
     }, "">;

package/dist/interface/crud/current-user.js

@@ -8,6 +8,7 @@ const clientUpdateSchema = usersCrudServerUpdateSchema.pick([
     "client_metadata",
     "selected_team_id",
     "totp_secret_base64",
+    "otp_auth_enabled",
 ]).required();
 const serverUpdateSchema = usersCrudServerUpdateSchema;
 const clientReadSchema = usersCrudServerReadSchema.pick([
@@ -24,6 +25,7 @@ const clientReadSchema = usersCrudServerReadSchema.pick([
     "oauth_providers",
     "selected_team_id",
     "requires_totp_mfa",
+    "otp_auth_enabled",
 ]).concat(yupObject({
     selected_team: teamsCrudClientReadSchema.nullable().defined(),
 })).nullable().defined(); // TODO: next-release: make required

package/dist/interface/crud/team-member-profiles.d.ts

@@ -30,6 +30,8 @@ export declare const teamMemberProfilesCrudServerReadSchema: import("yup").Objec
         client_read_only_metadata: {} | null;
         server_metadata: {} | null;
         primary_email_verified: NonNullable<boolean | undefined>;
+        primary_email_auth_enabled: NonNullable<boolean | undefined>;
+        otp_auth_enabled: NonNullable<boolean | undefined>;
         selected_team_id: string | null;
         selected_team: {
             client_metadata?: {} | null | undefined;
@@ -55,6 +57,7 @@ export declare const teamMemberProfilesCrudServerReadSchema: import("yup").Objec
         id: undefined;
         primary_email: undefined;
         primary_email_verified: undefined;
+        primary_email_auth_enabled: undefined;
         display_name: undefined;
         selected_team: {
             id: undefined;
@@ -69,6 +72,7 @@ export declare const teamMemberProfilesCrudServerReadSchema: import("yup").Objec
         profile_image_url: undefined;
         signed_up_at_millis: undefined;
         has_password: undefined;
+        otp_auth_enabled: undefined;
         client_metadata: undefined;
         client_read_only_metadata: undefined;
         server_metadata: undefined;
@@ -117,6 +121,8 @@ export declare const teamMemberProfilesCrud: import("../../crud").CrudSchemaFrom
             client_read_only_metadata: {} | null;
             server_metadata: {} | null;
             primary_email_verified: NonNullable<boolean | undefined>;
+            primary_email_auth_enabled: NonNullable<boolean | undefined>;
+            otp_auth_enabled: NonNullable<boolean | undefined>;
             selected_team_id: string | null;
             selected_team: {
                 client_metadata?: {} | null | undefined;
@@ -142,6 +148,7 @@ export declare const teamMemberProfilesCrud: import("../../crud").CrudSchemaFrom
             id: undefined;
             primary_email: undefined;
             primary_email_verified: undefined;
+            primary_email_auth_enabled: undefined;
             display_name: undefined;
             selected_team: {
                 id: undefined;
@@ -156,6 +163,7 @@ export declare const teamMemberProfilesCrud: import("../../crud").CrudSchemaFrom
             profile_image_url: undefined;
             signed_up_at_millis: undefined;
             has_password: undefined;
+            otp_auth_enabled: undefined;
             client_metadata: undefined;
             client_read_only_metadata: undefined;
             server_metadata: undefined;

package/dist/interface/crud/users.d.ts

@@ -9,6 +9,7 @@ export declare const usersCrudServerUpdateSchema: import("yup").ObjectSchema<{
     primary_email_verified: boolean | undefined;
     primary_email_auth_enabled: boolean | undefined;
     password: string | null | undefined;
+    otp_auth_enabled: boolean | undefined;
     totp_secret_base64: string | null | undefined;
     selected_team_id: string | null | undefined;
 }, import("yup").AnyObject, {
@@ -21,6 +22,7 @@ export declare const usersCrudServerUpdateSchema: import("yup").ObjectSchema<{
     primary_email_verified: undefined;
     primary_email_auth_enabled: undefined;
     password: undefined;
+    otp_auth_enabled: undefined;
     totp_secret_base64: undefined;
     selected_team_id: undefined;
 }, "">;
@@ -28,6 +30,7 @@ export declare const usersCrudServerReadSchema: import("yup").ObjectSchema<{
     id: string;
     primary_email: string | null;
     primary_email_verified: NonNullable<boolean | undefined>;
+    primary_email_auth_enabled: NonNullable<boolean | undefined>;
     display_name: string | null;
     selected_team: {
         client_metadata?: {} | null | undefined;
@@ -42,6 +45,7 @@ export declare const usersCrudServerReadSchema: import("yup").ObjectSchema<{
     profile_image_url: string | null;
     signed_up_at_millis: number;
     has_password: NonNullable<boolean | undefined>;
+    otp_auth_enabled: NonNullable<boolean | undefined>;
     client_metadata: {} | null;
     client_read_only_metadata: {} | null;
     server_metadata: {} | null;
@@ -57,6 +61,7 @@ export declare const usersCrudServerReadSchema: import("yup").ObjectSchema<{
     id: undefined;
     primary_email: undefined;
     primary_email_verified: undefined;
+    primary_email_auth_enabled: undefined;
     display_name: undefined;
     selected_team: {
         id: undefined;
@@ -71,6 +76,7 @@ export declare const usersCrudServerReadSchema: import("yup").ObjectSchema<{
     profile_image_url: undefined;
     signed_up_at_millis: undefined;
     has_password: undefined;
+    otp_auth_enabled: undefined;
     client_metadata: undefined;
     client_read_only_metadata: undefined;
     server_metadata: undefined;
@@ -89,6 +95,7 @@ export declare const usersCrudServerCreateSchema: import("yup").ObjectSchema<{
     server_metadata: {} | null | undefined;
     primary_email_verified: boolean | undefined;
     primary_email_auth_enabled: boolean | undefined;
+    otp_auth_enabled: boolean | undefined;
     totp_secret_base64: string | null | undefined;
 } & {
     oauth_providers: {
@@ -106,6 +113,7 @@ export declare const usersCrudServerCreateSchema: import("yup").ObjectSchema<{
     primary_email_verified: undefined;
     primary_email_auth_enabled: undefined;
     password: undefined;
+    otp_auth_enabled: undefined;
     totp_secret_base64: undefined;
     selected_team_id: undefined;
     oauth_providers: undefined;
@@ -116,6 +124,7 @@ export declare const usersCrud: import("../../crud").CrudSchemaFromOptions<{
         id: string;
         primary_email: string | null;
         primary_email_verified: NonNullable<boolean | undefined>;
+        primary_email_auth_enabled: NonNullable<boolean | undefined>;
         display_name: string | null;
         selected_team: {
             client_metadata?: {} | null | undefined;
@@ -130,6 +139,7 @@ export declare const usersCrud: import("../../crud").CrudSchemaFromOptions<{
         profile_image_url: string | null;
         signed_up_at_millis: number;
         has_password: NonNullable<boolean | undefined>;
+        otp_auth_enabled: NonNullable<boolean | undefined>;
         client_metadata: {} | null;
         client_read_only_metadata: {} | null;
         server_metadata: {} | null;
@@ -145,6 +155,7 @@ export declare const usersCrud: import("../../crud").CrudSchemaFromOptions<{
         id: undefined;
         primary_email: undefined;
         primary_email_verified: undefined;
+        primary_email_auth_enabled: undefined;
         display_name: undefined;
         selected_team: {
             id: undefined;
@@ -159,6 +170,7 @@ export declare const usersCrud: import("../../crud").CrudSchemaFromOptions<{
         profile_image_url: undefined;
         signed_up_at_millis: undefined;
         has_password: undefined;
+        otp_auth_enabled: undefined;
         client_metadata: undefined;
         client_read_only_metadata: undefined;
         server_metadata: undefined;
@@ -177,6 +189,7 @@ export declare const usersCrud: import("../../crud").CrudSchemaFromOptions<{
         primary_email_verified: boolean | undefined;
         primary_email_auth_enabled: boolean | undefined;
         password: string | null | undefined;
+        otp_auth_enabled: boolean | undefined;
         totp_secret_base64: string | null | undefined;
         selected_team_id: string | null | undefined;
     }, import("yup").AnyObject, {
@@ -189,6 +202,7 @@ export declare const usersCrud: import("../../crud").CrudSchemaFromOptions<{
         primary_email_verified: undefined;
         primary_email_auth_enabled: undefined;
         password: undefined;
+        otp_auth_enabled: undefined;
         totp_secret_base64: undefined;
         selected_team_id: undefined;
     }, "">;
@@ -202,6 +216,7 @@ export declare const usersCrud: import("../../crud").CrudSchemaFromOptions<{
         server_metadata: {} | null | undefined;
         primary_email_verified: boolean | undefined;
         primary_email_auth_enabled: boolean | undefined;
+        otp_auth_enabled: boolean | undefined;
         totp_secret_base64: string | null | undefined;
     } & {
         oauth_providers: {
@@ -219,6 +234,7 @@ export declare const usersCrud: import("../../crud").CrudSchemaFromOptions<{
         primary_email_verified: undefined;
         primary_email_auth_enabled: undefined;
         password: undefined;
+        otp_auth_enabled: undefined;
         totp_secret_base64: undefined;
         selected_team_id: undefined;
         oauth_providers: undefined;
@@ -259,6 +275,7 @@ export declare const userCreatedWebhookEvent: {
         id: string;
         primary_email: string | null;
         primary_email_verified: NonNullable<boolean | undefined>;
+        primary_email_auth_enabled: NonNullable<boolean | undefined>;
         display_name: string | null;
         selected_team: {
             client_metadata?: {} | null | undefined;
@@ -273,6 +290,7 @@ export declare const userCreatedWebhookEvent: {
         profile_image_url: string | null;
         signed_up_at_millis: number;
         has_password: NonNullable<boolean | undefined>;
+        otp_auth_enabled: NonNullable<boolean | undefined>;
         client_metadata: {} | null;
         client_read_only_metadata: {} | null;
         server_metadata: {} | null;
@@ -288,6 +306,7 @@ export declare const userCreatedWebhookEvent: {
         id: undefined;
         primary_email: undefined;
         primary_email_verified: undefined;
+        primary_email_auth_enabled: undefined;
         display_name: undefined;
         selected_team: {
             id: undefined;
@@ -302,6 +321,7 @@ export declare const userCreatedWebhookEvent: {
         profile_image_url: undefined;
         signed_up_at_millis: undefined;
         has_password: undefined;
+        otp_auth_enabled: undefined;
         client_metadata: undefined;
         client_read_only_metadata: undefined;
         server_metadata: undefined;
@@ -322,6 +342,7 @@ export declare const userUpdatedWebhookEvent: {
         id: string;
         primary_email: string | null;
         primary_email_verified: NonNullable<boolean | undefined>;
+        primary_email_auth_enabled: NonNullable<boolean | undefined>;
         display_name: string | null;
         selected_team: {
             client_metadata?: {} | null | undefined;
@@ -336,6 +357,7 @@ export declare const userUpdatedWebhookEvent: {
         profile_image_url: string | null;
         signed_up_at_millis: number;
         has_password: NonNullable<boolean | undefined>;
+        otp_auth_enabled: NonNullable<boolean | undefined>;
         client_metadata: {} | null;
         client_read_only_metadata: {} | null;
         server_metadata: {} | null;
@@ -351,6 +373,7 @@ export declare const userUpdatedWebhookEvent: {
         id: undefined;
         primary_email: undefined;
         primary_email_verified: undefined;
+        primary_email_auth_enabled: undefined;
         display_name: undefined;
         selected_team: {
             id: undefined;
@@ -365,6 +388,7 @@ export declare const userUpdatedWebhookEvent: {
         profile_image_url: undefined;
         signed_up_at_millis: undefined;
         has_password: undefined;
+        otp_auth_enabled: undefined;
         client_metadata: undefined;
         client_read_only_metadata: undefined;
         server_metadata: undefined;

package/dist/interface/crud/users.js

@@ -9,29 +9,24 @@ export const usersCrudServerUpdateSchema = fieldSchema.yupObject({
     server_metadata: fieldSchema.userServerMetadataSchema.optional(),
     primary_email: fieldSchema.primaryEmailSchema.nullable().optional(),
     primary_email_verified: fieldSchema.primaryEmailVerifiedSchema.optional(),
-    primary_email_auth_enabled: fieldSchema.yupBoolean().optional().meta({ openapiField: { description: "Whether the primary email can be used to sign into this user's account", exampleValue: true } }),
-    password: fieldSchema.yupString().nullable().meta({ openapiField: { description: 'A new password for the user, overwriting the old one (if it exists). Specifying this option revokes all current sessions.', exampleValue: 'my-new-password' } }),
-    totp_secret_base64: fieldSchema.base64Schema.nullable().meta({ openapiField: { description: 'A TOTP secret for the user, overwriting the old one (if it exists). Set to null to disable 2FA.', exampleValue: 'dG90cC1zZWNyZXQ=' } }),
+    primary_email_auth_enabled: fieldSchema.primaryEmailAuthEnabledSchema.optional(),
+    password: fieldSchema.userPasswordMutationSchema.optional(),
+    otp_auth_enabled: fieldSchema.userOtpAuthEnabledMutationSchema.optional(),
+    totp_secret_base64: fieldSchema.userTotpSecretMutationSchema.optional(),
     selected_team_id: fieldSchema.selectedTeamIdSchema.nullable().optional(),
 }).required();
-const contactChannelSchema = fieldSchema.yupObject({
-    id: fieldSchema.yupString().required(),
-    type: fieldSchema.yupString().required(),
-    value: fieldSchema.yupString().required(),
-    is_primary: fieldSchema.yupBoolean().required(),
-    is_verified: fieldSchema.yupBoolean().required(),
-    used_for_auth: fieldSchema.yupBoolean().required(),
-}).required();
 export const usersCrudServerReadSchema = fieldSchema.yupObject({
     id: fieldSchema.userIdSchema.required(),
     primary_email: fieldSchema.primaryEmailSchema.nullable().defined(),
     primary_email_verified: fieldSchema.primaryEmailVerifiedSchema.required(),
+    primary_email_auth_enabled: fieldSchema.primaryEmailAuthEnabledSchema.required(),
     display_name: fieldSchema.userDisplayNameSchema.nullable().defined(),
     selected_team: teamsCrudServerReadSchema.nullable().defined(),
     selected_team_id: fieldSchema.selectedTeamIdSchema.nullable().defined(),
     profile_image_url: fieldSchema.profileImageUrlSchema.nullable().defined(),
     signed_up_at_millis: fieldSchema.signedUpAtMillisSchema.required(),
-    has_password: fieldSchema.yupBoolean().required().meta({ openapiField: { description: 'Whether the user has a password associated with their account', exampleValue: true } }),
+    has_password: fieldSchema.userHasPasswordSchema.required(),
+    otp_auth_enabled: fieldSchema.userOtpAuthEnabledSchema.required(),
     client_metadata: fieldSchema.userClientMetadataSchema,
     client_read_only_metadata: fieldSchema.userClientReadOnlyMetadataSchema,
     server_metadata: fieldSchema.userServerMetadataSchema,

package/dist/interface/serverInterface.d.ts

@@ -2,6 +2,7 @@ import { KnownErrors } from "../known-errors";
 import { AccessToken, InternalSession, RefreshToken } from "../sessions";
 import { Result } from "../utils/results";
 import { ClientInterfaceOptions, StackClientInterface } from "./clientInterface";
+import { ContactChannelsCrud } from "./crud/contact-channels";
 import { CurrentUserCrud } from "./crud/current-user";
 import { ConnectedAccountAccessTokenCrud } from "./crud/oauth";
 import { TeamMemberProfilesCrud } from "./crud/team-member-profiles";
@@ -73,4 +74,9 @@ export declare class StackServerInterface extends StackClientInterface {
     grantServerTeamUserPermission(teamId: string, userId: string, permissionId: string): Promise<void>;
     revokeServerTeamUserPermission(teamId: string, userId: string, permissionId: string): Promise<void>;
     deleteServerServerUser(userId: string): Promise<void>;
+    createServerContactChannel(data: ContactChannelsCrud['Server']['Create']): Promise<ContactChannelsCrud['Server']['Read']>;
+    updateServerContactChannel(userId: string, contactChannelId: string, data: ContactChannelsCrud['Server']['Update']): Promise<ContactChannelsCrud['Server']['Read']>;
+    deleteServerContactChannel(userId: string, contactChannelId: string): Promise<void>;
+    listServerContactChannels(userId: string): Promise<ContactChannelsCrud['Server']['Read'][]>;
+    sendServerContactChannelVerificationEmail(userId: string, contactChannelId: string, callbackUrl: string): Promise<Result<undefined, KnownErrors["EmailAlreadyVerified"]>>;
 }

package/dist/interface/serverInterface.js

@@ -214,4 +214,49 @@ export class StackServerInterface extends StackClientInterface {
             body: JSON.stringify({}),
         }, null);
     }
+    async createServerContactChannel(data) {
+        const response = await this.sendServerRequest("/contact-channels", {
+            method: "POST",
+            headers: {
+                "content-type": "application/json",
+            },
+            body: JSON.stringify(data),
+        }, null);
+        return await response.json();
+    }
+    async updateServerContactChannel(userId, contactChannelId, data) {
+        const response = await this.sendServerRequest(`/contact-channels/${userId}/${contactChannelId}`, {
+            method: "PATCH",
+            headers: {
+                "content-type": "application/json",
+            },
+            body: JSON.stringify(data),
+        }, null);
+        return await response.json();
+    }
+    async deleteServerContactChannel(userId, contactChannelId) {
+        await this.sendServerRequest(`/contact-channels/${userId}/${contactChannelId}`, {
+            method: "DELETE",
+        }, null);
+    }
+    async listServerContactChannels(userId) {
+        const response = await this.sendServerRequest(`/contact-channels?user_id=${userId}`, {
+            method: "GET",
+        }, null);
+        const json = await response.json();
+        return json.items;
+    }
+    async sendServerContactChannelVerificationEmail(userId, contactChannelId, callbackUrl) {
+        const responseOrError = await this.sendServerRequestAndCatchKnownError(`/contact-channels/${userId}/${contactChannelId}/send-verification-code`, {
+            method: "POST",
+            headers: {
+                "content-type": "application/json",
+            },
+            body: JSON.stringify({ callback_url: callbackUrl }),
+        }, null, [KnownErrors.EmailAlreadyVerified]);
+        if (responseOrError.status === "error") {
+            return Result.error(responseOrError.error);
+        }
+        return Result.ok(undefined);
+    }
 }

package/dist/interface/webhooks.d.ts

@@ -14,6 +14,7 @@ export declare const webhookEvents: readonly [{
         id: string;
         primary_email: string | null;
         primary_email_verified: NonNullable<boolean | undefined>;
+        primary_email_auth_enabled: NonNullable<boolean | undefined>;
         display_name: string | null;
         selected_team: {
             client_metadata?: {} | null | undefined;
@@ -28,6 +29,7 @@ export declare const webhookEvents: readonly [{
         profile_image_url: string | null;
         signed_up_at_millis: number;
         has_password: NonNullable<boolean | undefined>;
+        otp_auth_enabled: NonNullable<boolean | undefined>;
         client_metadata: {} | null;
         client_read_only_metadata: {} | null;
         server_metadata: {} | null;
@@ -43,6 +45,7 @@ export declare const webhookEvents: readonly [{
         id: undefined;
         primary_email: undefined;
         primary_email_verified: undefined;
+        primary_email_auth_enabled: undefined;
         display_name: undefined;
         selected_team: {
             id: undefined;
@@ -57,6 +60,7 @@ export declare const webhookEvents: readonly [{
         profile_image_url: undefined;
         signed_up_at_millis: undefined;
         has_password: undefined;
+        otp_auth_enabled: undefined;
         client_metadata: undefined;
         client_read_only_metadata: undefined;
         server_metadata: undefined;
@@ -76,6 +80,7 @@ export declare const webhookEvents: readonly [{
         id: string;
         primary_email: string | null;
         primary_email_verified: NonNullable<boolean | undefined>;
+        primary_email_auth_enabled: NonNullable<boolean | undefined>;
         display_name: string | null;
         selected_team: {
             client_metadata?: {} | null | undefined;
@@ -90,6 +95,7 @@ export declare const webhookEvents: readonly [{
         profile_image_url: string | null;
         signed_up_at_millis: number;
         has_password: NonNullable<boolean | undefined>;
+        otp_auth_enabled: NonNullable<boolean | undefined>;
         client_metadata: {} | null;
         client_read_only_metadata: {} | null;
         server_metadata: {} | null;
@@ -105,6 +111,7 @@ export declare const webhookEvents: readonly [{
         id: undefined;
         primary_email: undefined;
         primary_email_verified: undefined;
+        primary_email_auth_enabled: undefined;
         display_name: undefined;
         selected_team: {
             id: undefined;
@@ -119,6 +126,7 @@ export declare const webhookEvents: readonly [{
         profile_image_url: undefined;
         signed_up_at_millis: undefined;
         has_password: undefined;
+        otp_auth_enabled: undefined;
         client_metadata: undefined;
         client_read_only_metadata: undefined;
         server_metadata: undefined;

package/dist/schema-fields.d.ts

@@ -64,6 +64,7 @@ export declare class ReplaceFieldWithOwnUserId extends Error {
 export declare const userIdOrMeSchema: yup.StringSchema<string | undefined, yup.AnyObject, undefined, "">;
 export declare const userIdSchema: yup.StringSchema<string | undefined, yup.AnyObject, undefined, "">;
 export declare const primaryEmailSchema: yup.StringSchema<string | undefined, yup.AnyObject, undefined, "">;
+export declare const primaryEmailAuthEnabledSchema: yup.BooleanSchema<boolean | undefined, yup.AnyObject, undefined, "">;
 export declare const primaryEmailVerifiedSchema: yup.BooleanSchema<boolean | undefined, yup.AnyObject, undefined, "">;
 export declare const userDisplayNameSchema: yup.StringSchema<string | null | undefined, yup.AnyObject, undefined, "">;
 export declare const selectedTeamIdSchema: yup.StringSchema<string | undefined, yup.AnyObject, undefined, "">;
@@ -82,6 +83,11 @@ export declare const userOAuthProviderSchema: yup.ObjectSchema<{
     provider_user_id: undefined;
 }, "">;
 export declare const userLastActiveAtMillisSchema: yup.NumberSchema<number | null | undefined, yup.AnyObject, undefined, "">;
+export declare const userOtpAuthEnabledSchema: yup.BooleanSchema<boolean | undefined, yup.AnyObject, undefined, "">;
+export declare const userOtpAuthEnabledMutationSchema: yup.BooleanSchema<boolean | undefined, yup.AnyObject, undefined, "">;
+export declare const userHasPasswordSchema: yup.BooleanSchema<boolean | undefined, yup.AnyObject, undefined, "">;
+export declare const userPasswordMutationSchema: yup.StringSchema<string | null | undefined, yup.AnyObject, undefined, "">;
+export declare const userTotpSecretMutationSchema: yup.StringSchema<string | null | undefined, yup.AnyObject, undefined, "">;
 export declare const signInEmailSchema: yup.StringSchema<string | undefined, yup.AnyObject, undefined, "">;
 export declare const emailOtpSignInCallbackUrlSchema: yup.StringSchema<string | undefined, yup.AnyObject, undefined, "">;
 export declare const emailVerificationCallbackUrlSchema: yup.StringSchema<string | undefined, yup.AnyObject, undefined, "">;

package/dist/schema-fields.js

@@ -248,6 +248,7 @@ export const userIdOrMeSchema = yupString().uuid().transform(v => {
 }).meta({ openapiField: { description: 'The ID of the user, or the special value `me` for the currently authenticated user', exampleValue: '3241a285-8329-4d69-8f3d-316e08cf140c' } });
 export const userIdSchema = yupString().uuid().meta({ openapiField: { description: _idDescription('user'), exampleValue: '3241a285-8329-4d69-8f3d-316e08cf140c' } });
 export const primaryEmailSchema = emailSchema.meta({ openapiField: { description: 'Primary email', exampleValue: 'johndoe@example.com' } });
+export const primaryEmailAuthEnabledSchema = yupBoolean().meta({ openapiField: { description: 'Whether the primary email is used for authentication. If this is set to `false`, the user will not be able to sign in with the primary email with password or OTP', exampleValue: true } });
 export const primaryEmailVerifiedSchema = yupBoolean().meta({ openapiField: { description: 'Whether the primary email has been verified to belong to this user', exampleValue: true } });
 export const userDisplayNameSchema = yupString().nullable().meta({ openapiField: { description: _displayNameDescription('user'), exampleValue: 'John Doe' } });
 export const selectedTeamIdSchema = yupString().uuid().meta({ openapiField: { description: 'ID of the team currently selected by the user', exampleValue: 'team-id' } });
@@ -262,6 +263,11 @@ export const userOAuthProviderSchema = yupObject({
     provider_user_id: yupString().required(),
 });
 export const userLastActiveAtMillisSchema = yupNumber().nullable().meta({ openapiField: { description: _lastActiveAtMillisDescription, exampleValue: 1630000000000 } });
+export const userOtpAuthEnabledSchema = yupBoolean().meta({ openapiField: { hidden: true, description: 'Whether the user has OTP/magic link enabled. ', exampleValue: true } });
+export const userOtpAuthEnabledMutationSchema = yupBoolean().meta({ openapiField: { hidden: true, description: 'Whether the user has OTP/magic link enabled. Note that only accounts with verified emails can sign-in with OTP.', exampleValue: true } });
+export const userHasPasswordSchema = yupBoolean().meta({ openapiField: { hidden: true, description: 'Whether the user has a password set. If the user does not have a password set, they will not be able to sign in with email/password.', exampleValue: true } });
+export const userPasswordMutationSchema = yupString().nullable().meta({ openapiField: { description: 'Sets the user\'s password. Doing so revokes all current sessions.', exampleValue: 'my-new-password' } });
+export const userTotpSecretMutationSchema = base64Schema.nullable().meta({ openapiField: { description: 'Enables 2FA and sets a TOTP secret for the user. Set to null to disable 2FA.', exampleValue: 'dG90cC1zZWNyZXQ=' } });
 // Auth
 export const signInEmailSchema = emailSchema.meta({ openapiField: { description: 'The email to sign in with.', exampleValue: 'johndoe@example.com' } });
 export const emailOtpSignInCallbackUrlSchema = urlSchema.meta({ openapiField: { description: 'The base callback URL to construct the magic link from. A query parameter `code` with the verification code will be appended to it. The page should then make a request to the `/auth/otp/sign-in` endpoint.', exampleValue: 'https://example.com/handler/magic-link-callback' } });

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@stackframe/stack-shared",
-  "version": "2.6.10",
+  "version": "2.6.12",
   "main": "./dist/index.js",
   "types": "./dist/index.d.ts",
   "files": [
@@ -38,7 +38,7 @@
     "oauth4webapi": "^2.10.3",
     "semver": "^7.6.3",
     "uuid": "^9.0.1",
-    "@stackframe/stack-sc": "2.6.10"
+    "@stackframe/stack-sc": "2.6.12"
   },
   "devDependencies": {
     "@types/bcrypt": "^5.0.2",