@stackframe/stack-shared 2.8.3 → 2.8.6

package/dist/config/schema.js

@@ -0,0 +1,185 @@
+import * as schemaFields from "../schema-fields";
+import { yupBoolean, yupObject, yupRecord, yupString } from "../schema-fields";
+import { allProviders } from "../utils/oauth";
+import { get, has, isObjectLike, set } from "../utils/objects";
+// NOTE: The validation schemas in here are all schematic validators, not sanity-check validators.
+// For more info, see ./README.md
+export const configLevels = ['project', 'branch', 'environment', 'organization'];
+const permissionRegex = /^\$?[a-z0-9_:]+$/;
+/**
+ * All fields that can be overridden at this level.
+ */
+export const projectConfigSchema = yupObject({});
+// --- NEW RBAC Schema ---
+const branchRbacDefaultPermissions = yupRecord(yupString().optional().matches(permissionRegex), yupBoolean().isTrue().optional()).optional();
+const branchRbacSchema = yupObject({
+    permissions: yupRecord(yupString().optional().matches(permissionRegex), yupObject({
+        description: yupString().optional(),
+        scope: yupString().oneOf(['team', 'project']).optional(),
+        containedPermissionIds: yupRecord(yupString().optional().matches(permissionRegex), yupBoolean().isTrue().optional()).optional(),
+    }).optional()).optional(),
+    defaultPermissions: yupObject({
+        teamCreator: branchRbacDefaultPermissions,
+        teamMember: branchRbacDefaultPermissions,
+        signUp: branchRbacDefaultPermissions,
+    }).optional(),
+}).optional();
+// --- END NEW RBAC Schema ---
+// --- NEW API Keys Schema ---
+const branchApiKeysSchema = yupObject({
+    enabled: yupObject({
+        team: yupBoolean().optional(),
+        user: yupBoolean().optional(),
+    }).optional(),
+}).optional();
+// --- END NEW API Keys Schema ---
+const branchAuthSchema = yupObject({
+    allowSignUp: yupBoolean().optional(),
+    password: yupObject({
+        allowSignIn: yupBoolean().optional(),
+    }).optional(),
+    otp: yupObject({
+        allowSignIn: yupBoolean().optional(),
+    }).optional(),
+    passkey: yupObject({
+        allowSignIn: yupBoolean().optional(),
+    }).optional(),
+    oauth: yupObject({
+        accountMergeStrategy: yupString().oneOf(['link_method', 'raise_error', 'allow_duplicates']).optional(),
+        providers: yupRecord(yupString().optional().matches(permissionRegex), yupObject({
+            type: yupString().oneOf(allProviders).optional(),
+            allowSignIn: yupBoolean().optional(),
+            allowConnectedAccounts: yupBoolean().optional(),
+        }).defined()).optional(),
+    }).optional(),
+}).optional();
+const branchDomain = yupObject({
+    allowLocalhost: yupBoolean().optional(),
+}).optional();
+export const branchConfigSchema = projectConfigSchema.concat(yupObject({
+    rbac: branchRbacSchema,
+    teams: yupObject({
+        createPersonalTeamOnSignUp: yupBoolean().optional(),
+        allowClientTeamCreation: yupBoolean().optional(),
+    }).optional(),
+    users: yupObject({
+        allowClientUserDeletion: yupBoolean().optional(),
+    }).optional(),
+    apiKeys: branchApiKeysSchema,
+    domains: branchDomain,
+    auth: branchAuthSchema,
+    emails: yupObject({}),
+}));
+export const environmentConfigSchema = branchConfigSchema.concat(yupObject({
+    auth: branchConfigSchema.getNested("auth").concat(yupObject({
+        oauth: branchConfigSchema.getNested("auth").getNested("oauth").concat(yupObject({
+            providers: yupRecord(yupString().optional().matches(permissionRegex), yupObject({
+                type: yupString().oneOf(allProviders).optional(),
+                isShared: yupBoolean().optional(),
+                clientId: schemaFields.oauthClientIdSchema.optional(),
+                clientSecret: schemaFields.oauthClientSecretSchema.optional(),
+                facebookConfigId: schemaFields.oauthFacebookConfigIdSchema.optional(),
+                microsoftTenantId: schemaFields.oauthMicrosoftTenantIdSchema.optional(),
+                allowSignIn: yupBoolean().optional(),
+                allowConnectedAccounts: yupBoolean().optional(),
+            })).optional(),
+        }).optional()),
+    })),
+    emails: branchConfigSchema.getNested("emails").concat(yupObject({
+        server: yupObject({
+            isShared: yupBoolean().optional(),
+            host: schemaFields.emailHostSchema.optional().nonEmpty(),
+            port: schemaFields.emailPortSchema.optional(),
+            username: schemaFields.emailUsernameSchema.optional().nonEmpty(),
+            password: schemaFields.emailPasswordSchema.optional().nonEmpty(),
+            senderName: schemaFields.emailSenderNameSchema.optional().nonEmpty(),
+            senderEmail: schemaFields.emailSenderEmailSchema.optional().nonEmpty(),
+        }),
+    }).optional()),
+    domains: branchConfigSchema.getNested("domains").concat(yupObject({
+        trustedDomains: yupRecord(yupString().uuid().optional(), yupObject({
+            baseUrl: schemaFields.urlSchema.optional(),
+            handlerPath: schemaFields.handlerPathSchema.optional(),
+        })).optional(),
+    })),
+}));
+export const organizationConfigSchema = environmentConfigSchema.concat(yupObject({}));
+// Defaults
+// these are objects that are merged together to form the rendered config (see ./README.md)
+// Wherever an object could be used as a value, a function can instead be used to generate the default values on a per-key basis
+export const projectConfigDefaults = {};
+export const branchConfigDefaults = {};
+export const environmentConfigDefaults = {};
+export const organizationConfigDefaults = {
+    rbac: {
+        permissions: (key) => ({}),
+        defaultPermissions: {
+            teamCreator: {},
+            teamMember: {},
+            signUp: {},
+        },
+    },
+    apiKeys: {
+        enabled: {
+            team: false,
+            user: false,
+        },
+    },
+    teams: {
+        createPersonalTeamOnSignUp: false,
+        allowClientTeamCreation: false,
+    },
+    users: {
+        allowClientUserDeletion: false,
+    },
+    domains: {
+        allowLocalhost: false,
+        trustedDomains: (key) => ({
+            handlerPath: '/handler',
+        }),
+    },
+    auth: {
+        allowSignUp: true,
+        password: {
+            allowSignIn: false,
+        },
+        otp: {
+            allowSignIn: false,
+        },
+        passkey: {
+            allowSignIn: false,
+        },
+        oauth: {
+            accountMergeStrategy: 'link_method',
+            providers: (key) => ({
+                allowSignIn: false,
+                allowConnectedAccounts: false,
+            }),
+        },
+    },
+    emails: {
+        server: {
+            isShared: true,
+        },
+    },
+};
+export function applyDefaults(defaults, config) {
+    const res = { ...typeof defaults === 'function' ? {} : defaults };
+    for (const [key, mergeValue] of Object.entries(config)) {
+        const baseValue = typeof defaults === 'function' ? defaults(key) : (has(defaults, key) ? get(defaults, key) : undefined);
+        if (baseValue !== undefined) {
+            if (isObjectLike(baseValue) && isObjectLike(mergeValue)) {
+                set(res, key, applyDefaults(baseValue, mergeValue));
+                continue;
+            }
+        }
+        set(res, key, mergeValue);
+    }
+    return res;
+}
+import.meta.vitest?.test("applyDefaults", ({ expect }) => {
+    expect(applyDefaults({ a: 1 }, { a: 2 })).toEqual({ a: 2 });
+    expect(applyDefaults({ a: { b: 1 } }, { a: { c: 2 } })).toEqual({ a: { b: 1, c: 2 } });
+    expect(applyDefaults((key) => ({ b: key }), { a: {} })).toEqual({ a: { b: "a" } });
+    expect(applyDefaults({ a: (key) => ({ b: key }) }, { a: { c: { d: 1 } } })).toEqual({ a: { c: { b: "c", d: 1 } } });
+});

package/dist/crud.js

@@ -1,3 +1,4 @@
+import { yupObject, yupString } from './schema-fields';
 import { filterUndefined } from './utils/objects';
 export function createCrud(options) {
     const docs = options.docs ?? {};
@@ -52,7 +53,6 @@ export function createCrud(options) {
         hasDelete: !!admin.deleteSchema,
     };
 }
-import { yupObject, yupString } from './schema-fields';
 import.meta.vitest?.test("createCrud", ({ expect }) => {
     // Test with empty options
     const emptyCrud = createCrud({});

package/dist/interface/adminInterface.js

@@ -14,13 +14,13 @@ export class StackAdminInterface extends StackServerInterface {
         }, session, requestType);
     }
     async getProject() {
-        const response = await this.sendAdminRequest("/projects/current", {
+        const response = await this.sendAdminRequest("/internal/projects/current", {
             method: "GET",
         }, null);
         return await response.json();
     }
     async updateProject(update) {
-        const response = await this.sendAdminRequest("/projects/current", {
+        const response = await this.sendAdminRequest("/internal/projects/current", {
             method: "PATCH",
             headers: {
                 "content-type": "application/json",
@@ -145,7 +145,7 @@ export class StackAdminInterface extends StackServerInterface {
         return await response.json();
     }
     async deleteProject() {
-        await this.sendAdminRequest("/projects/current", {
+        await this.sendAdminRequest("/internal/projects/current", {
             method: "DELETE",
         }, null);
     }

package/dist/interface/clientInterface.d.ts

@@ -9,7 +9,7 @@ import { CurrentUserCrud } from './crud/current-user';
 import { ConnectedAccountAccessTokenCrud } from './crud/oauth';
 import { TeamApiKeysCrud, UserApiKeysCrud, teamApiKeysCreateInputSchema, teamApiKeysCreateOutputSchema, userApiKeysCreateInputSchema, userApiKeysCreateOutputSchema } from './crud/project-api-keys';
 import { ProjectPermissionsCrud } from './crud/project-permissions';
-import { InternalProjectsCrud, ProjectsCrud } from './crud/projects';
+import { AdminUserProjectsCrud, ClientProjectsCrud } from './crud/projects';
 import { SessionsCrud } from './crud/sessions';
 import { TeamInvitationCrud } from './crud/team-invitation';
 import { TeamMemberProfilesCrud } from './crud/team-member-profiles';
@@ -194,10 +194,10 @@ export declare class StackClientInterface {
         recursive: boolean;
     }, session: InternalSession): Promise<ProjectPermissionsCrud['Client']['Read'][]>;
     listCurrentUserTeams(session: InternalSession): Promise<TeamsCrud["Client"]["Read"][]>;
-    getClientProject(): Promise<Result<ProjectsCrud['Client']['Read'], KnownErrors["ProjectNotFound"]>>;
+    getClientProject(): Promise<Result<ClientProjectsCrud['Client']['Read'], KnownErrors["ProjectNotFound"]>>;
     updateClientUser(update: CurrentUserCrud["Client"]["Update"], session: InternalSession): Promise<void>;
-    listProjects(session: InternalSession): Promise<InternalProjectsCrud['Client']['Read'][]>;
-    createProject(project: InternalProjectsCrud['Client']['Create'], session: InternalSession): Promise<InternalProjectsCrud['Client']['Read']>;
+    listProjects(session: InternalSession): Promise<AdminUserProjectsCrud['Client']['Read'][]>;
+    createProject(project: AdminUserProjectsCrud['Client']['Create'], session: InternalSession): Promise<AdminUserProjectsCrud['Client']['Read']>;
     createProviderAccessToken(provider: string, scope: string, session: InternalSession): Promise<ConnectedAccountAccessTokenCrud['Client']['Read']>;
     createClientTeam(data: TeamsCrud['Client']['Create'], session: InternalSession): Promise<TeamsCrud['Client']['Read']>;
     deleteTeam(teamId: string, session: InternalSession): Promise<void>;

package/dist/interface/crud/current-user.d.ts

@@ -1,7 +1,6 @@
 import { CrudTypeOf } from "../../crud";
 export declare const currentUserCrud: import("../../crud").CrudSchemaFromOptions<{
     clientReadSchema: import("yup").ObjectSchema<{
-        primary_email: string | null;
         id: string;
         display_name: string | null;
         oauth_providers: {
@@ -12,6 +11,7 @@ export declare const currentUserCrud: import("../../crud").CrudSchemaFromOptions
         profile_image_url: string | null;
         client_metadata: {} | null;
         client_read_only_metadata: {} | null;
+        primary_email: string | null;
         primary_email_verified: boolean;
         passkey_auth_enabled: boolean;
         otp_auth_enabled: boolean;

package/dist/interface/crud/project-api-keys.d.ts

@@ -71,13 +71,13 @@ export declare const userApiKeysCrud: import("../../crud").CrudSchemaFromOptions
     is_public: undefined;
     user_id: undefined;
 }, "">, userApiKeysCreateOutputSchema: yup.ObjectSchema<{
+    id: string;
     type: "user";
-    user_id: string;
     description: string;
-    id: string;
     created_at_millis: number;
     expires_at_millis: number | undefined;
     manually_revoked_at_millis: number | undefined;
+    user_id: string;
     is_public: boolean;
 } & {
     value: string;
@@ -164,13 +164,13 @@ export declare const teamApiKeysCrud: import("../../crud").CrudSchemaFromOptions
     is_public: undefined;
     team_id: undefined;
 }, "">, teamApiKeysCreateOutputSchema: yup.ObjectSchema<{
+    id: string;
     type: "team";
-    team_id: string;
     description: string;
-    id: string;
     created_at_millis: number;
     expires_at_millis: number | undefined;
     manually_revoked_at_millis: number | undefined;
+    team_id: string;
     is_public: boolean;
 } & {
     value: string;

package/dist/interface/crud/projects.d.ts

@@ -55,12 +55,12 @@ export declare const projectsCrudAdminReadSchema: import("yup").ObjectSchema<{
             client_secret?: string | undefined;
             facebook_config_id?: string | undefined;
             microsoft_tenant_id?: string | undefined;
+            id: "apple" | "x" | "google" | "github" | "microsoft" | "spotify" | "facebook" | "discord" | "gitlab" | "bitbucket" | "linkedin";
             type: "shared" | "standard";
-            id: "google" | "github" | "microsoft" | "spotify" | "facebook" | "discord" | "gitlab" | "bitbucket" | "linkedin" | "apple" | "x";
             enabled: boolean;
         }[];
         enabled_oauth_providers: {
-            id: "google" | "github" | "microsoft" | "spotify" | "facebook" | "discord" | "gitlab" | "bitbucket" | "linkedin" | "apple" | "x";
+            id: "apple" | "x" | "google" | "github" | "microsoft" | "spotify" | "facebook" | "discord" | "gitlab" | "bitbucket" | "linkedin";
         }[];
         domains: {
             domain: string;
@@ -137,7 +137,7 @@ export declare const projectsCrudClientReadSchema: import("yup").ObjectSchema<{
         allow_user_api_keys: boolean;
         allow_team_api_keys: boolean;
         enabled_oauth_providers: {
-            id: "google" | "github" | "microsoft" | "spotify" | "facebook" | "discord" | "gitlab" | "bitbucket" | "linkedin" | "apple" | "x";
+            id: "apple" | "x" | "google" | "github" | "microsoft" | "spotify" | "facebook" | "discord" | "gitlab" | "bitbucket" | "linkedin";
         }[];
     };
 }, import("yup").AnyObject, {
@@ -174,8 +174,8 @@ export declare const projectsCrudAdminUpdateSchema: import("yup").ObjectSchema<{
             client_secret?: string | undefined;
             facebook_config_id?: string | undefined;
             microsoft_tenant_id?: string | undefined;
+            id: "apple" | "x" | "google" | "github" | "microsoft" | "spotify" | "facebook" | "discord" | "gitlab" | "bitbucket" | "linkedin";
             type: "shared" | "standard";
-            id: "google" | "github" | "microsoft" | "spotify" | "facebook" | "discord" | "gitlab" | "bitbucket" | "linkedin" | "apple" | "x";
             enabled: boolean;
         }[] | undefined;
         domains?: {
@@ -228,8 +228,8 @@ export declare const projectsCrudAdminCreateSchema: import("yup").ObjectSchema<{
             client_secret?: string | undefined;
             facebook_config_id?: string | undefined;
             microsoft_tenant_id?: string | undefined;
+            id: "apple" | "x" | "google" | "github" | "microsoft" | "spotify" | "facebook" | "discord" | "gitlab" | "bitbucket" | "linkedin";
             type: "shared" | "standard";
-            id: "google" | "github" | "microsoft" | "spotify" | "facebook" | "discord" | "gitlab" | "bitbucket" | "linkedin" | "apple" | "x";
             enabled: boolean;
         }[] | undefined;
         domains?: {
@@ -266,7 +266,7 @@ export declare const projectsCrudAdminCreateSchema: import("yup").ObjectSchema<{
     config: undefined;
 }, "">;
 export declare const projectsCrudAdminDeleteSchema: import("yup").MixedSchema<{} | undefined, import("yup").AnyObject, undefined, "">;
-export declare const projectsCrud: import("../../crud").CrudSchemaFromOptions<{
+export declare const clientProjectsCrud: import("../../crud").CrudSchemaFromOptions<{
     clientReadSchema: import("yup").ObjectSchema<{
         id: string;
         display_name: string;
@@ -280,7 +280,7 @@ export declare const projectsCrud: import("../../crud").CrudSchemaFromOptions<{
             allow_user_api_keys: boolean;
             allow_team_api_keys: boolean;
             enabled_oauth_providers: {
-                id: "google" | "github" | "microsoft" | "spotify" | "facebook" | "discord" | "gitlab" | "bitbucket" | "linkedin" | "apple" | "x";
+                id: "apple" | "x" | "google" | "github" | "microsoft" | "spotify" | "facebook" | "discord" | "gitlab" | "bitbucket" | "linkedin";
             }[];
         };
     }, import("yup").AnyObject, {
@@ -298,6 +298,16 @@ export declare const projectsCrud: import("../../crud").CrudSchemaFromOptions<{
             enabled_oauth_providers: undefined;
         };
     }, "">;
+    docs: {
+        clientRead: {
+            summary: string;
+            description: string;
+            tags: string[];
+        };
+    };
+}>;
+export type ClientProjectsCrud = CrudTypeOf<typeof clientProjectsCrud>;
+export declare const projectsCrud: import("../../crud").CrudSchemaFromOptions<{
     adminReadSchema: import("yup").ObjectSchema<{
         id: string;
         display_name: string;
@@ -321,12 +331,12 @@ export declare const projectsCrud: import("../../crud").CrudSchemaFromOptions<{
                 client_secret?: string | undefined;
                 facebook_config_id?: string | undefined;
                 microsoft_tenant_id?: string | undefined;
+                id: "apple" | "x" | "google" | "github" | "microsoft" | "spotify" | "facebook" | "discord" | "gitlab" | "bitbucket" | "linkedin";
                 type: "shared" | "standard";
-                id: "google" | "github" | "microsoft" | "spotify" | "facebook" | "discord" | "gitlab" | "bitbucket" | "linkedin" | "apple" | "x";
                 enabled: boolean;
             }[];
             enabled_oauth_providers: {
-                id: "google" | "github" | "microsoft" | "spotify" | "facebook" | "discord" | "gitlab" | "bitbucket" | "linkedin" | "apple" | "x";
+                id: "apple" | "x" | "google" | "github" | "microsoft" | "spotify" | "facebook" | "discord" | "gitlab" | "bitbucket" | "linkedin";
             }[];
             domains: {
                 domain: string;
@@ -409,8 +419,8 @@ export declare const projectsCrud: import("../../crud").CrudSchemaFromOptions<{
                 client_secret?: string | undefined;
                 facebook_config_id?: string | undefined;
                 microsoft_tenant_id?: string | undefined;
+                id: "apple" | "x" | "google" | "github" | "microsoft" | "spotify" | "facebook" | "discord" | "gitlab" | "bitbucket" | "linkedin";
                 type: "shared" | "standard";
-                id: "google" | "github" | "microsoft" | "spotify" | "facebook" | "discord" | "gitlab" | "bitbucket" | "linkedin" | "apple" | "x";
                 enabled: boolean;
             }[] | undefined;
             domains?: {
@@ -446,11 +456,6 @@ export declare const projectsCrud: import("../../crud").CrudSchemaFromOptions<{
     }, "">;
     adminDeleteSchema: import("yup").MixedSchema<{} | undefined, import("yup").AnyObject, undefined, "">;
     docs: {
-        clientRead: {
-            summary: string;
-            description: string;
-            tags: string[];
-        };
         adminRead: {
             summary: string;
             description: string;
@@ -469,7 +474,7 @@ export declare const projectsCrud: import("../../crud").CrudSchemaFromOptions<{
     };
 }>;
 export type ProjectsCrud = CrudTypeOf<typeof projectsCrud>;
-export declare const internalProjectsCrud: import("../../crud").CrudSchemaFromOptions<{
+export declare const adminUserProjectsCrud: import("../../crud").CrudSchemaFromOptions<{
     clientReadSchema: import("yup").ObjectSchema<{
         id: string;
         display_name: string;
@@ -493,12 +498,12 @@ export declare const internalProjectsCrud: import("../../crud").CrudSchemaFromOp
                 client_secret?: string | undefined;
                 facebook_config_id?: string | undefined;
                 microsoft_tenant_id?: string | undefined;
+                id: "apple" | "x" | "google" | "github" | "microsoft" | "spotify" | "facebook" | "discord" | "gitlab" | "bitbucket" | "linkedin";
                 type: "shared" | "standard";
-                id: "google" | "github" | "microsoft" | "spotify" | "facebook" | "discord" | "gitlab" | "bitbucket" | "linkedin" | "apple" | "x";
                 enabled: boolean;
             }[];
             enabled_oauth_providers: {
-                id: "google" | "github" | "microsoft" | "spotify" | "facebook" | "discord" | "gitlab" | "bitbucket" | "linkedin" | "apple" | "x";
+                id: "apple" | "x" | "google" | "github" | "microsoft" | "spotify" | "facebook" | "discord" | "gitlab" | "bitbucket" | "linkedin";
             }[];
             domains: {
                 domain: string;
@@ -581,8 +586,8 @@ export declare const internalProjectsCrud: import("../../crud").CrudSchemaFromOp
                 client_secret?: string | undefined;
                 facebook_config_id?: string | undefined;
                 microsoft_tenant_id?: string | undefined;
+                id: "apple" | "x" | "google" | "github" | "microsoft" | "spotify" | "facebook" | "discord" | "gitlab" | "bitbucket" | "linkedin";
                 type: "shared" | "standard";
-                id: "google" | "github" | "microsoft" | "spotify" | "facebook" | "discord" | "gitlab" | "bitbucket" | "linkedin" | "apple" | "x";
                 enabled: boolean;
             }[] | undefined;
             domains?: {
@@ -627,4 +632,4 @@ export declare const internalProjectsCrud: import("../../crud").CrudSchemaFromOp
         };
     };
 }>;
-export type InternalProjectsCrud = CrudTypeOf<typeof internalProjectsCrud>;
+export type AdminUserProjectsCrud = CrudTypeOf<typeof adminUserProjectsCrud>;

package/dist/interface/crud/projects.js

@@ -124,17 +124,21 @@ export const projectsCrudAdminCreateSchema = projectsCrudAdminUpdateSchema.conca
     display_name: schemaFields.projectDisplayNameSchema.defined(),
 }).defined());
 export const projectsCrudAdminDeleteSchema = schemaFields.yupMixed();
-export const projectsCrud = createCrud({
+export const clientProjectsCrud = createCrud({
     clientReadSchema: projectsCrudClientReadSchema,
-    adminReadSchema: projectsCrudAdminReadSchema,
-    adminUpdateSchema: projectsCrudAdminUpdateSchema,
-    adminDeleteSchema: projectsCrudAdminDeleteSchema,
     docs: {
         clientRead: {
             summary: 'Get the current project',
             description: 'Get the current project information including display name, OAuth providers and authentication methods. Useful for display the available login options to the user.',
             tags: ['Projects'],
         },
+    },
+});
+export const projectsCrud = createCrud({
+    adminReadSchema: projectsCrudAdminReadSchema,
+    adminUpdateSchema: projectsCrudAdminUpdateSchema,
+    adminDeleteSchema: projectsCrudAdminDeleteSchema,
+    docs: {
         adminRead: {
             summary: 'Get the current project',
             description: 'Get the current project information and configuration including display name, OAuth providers, email configuration, etc.',
@@ -152,7 +156,7 @@ export const projectsCrud = createCrud({
         },
     },
 });
-export const internalProjectsCrud = createCrud({
+export const adminUserProjectsCrud = createCrud({
     clientReadSchema: projectsCrudAdminReadSchema,
     clientCreateSchema: projectsCrudAdminCreateSchema,
     docs: {

package/dist/interface/crud/team-member-profiles.d.ts

@@ -17,7 +17,6 @@ export declare const teamMemberProfilesCrudServerReadSchema: import("yup").Objec
     profile_image_url: string | null;
 } & {
     user: {
-        primary_email: string | null;
         id: string;
         display_name: string | null;
         oauth_providers: {
@@ -29,6 +28,7 @@ export declare const teamMemberProfilesCrudServerReadSchema: import("yup").Objec
         client_metadata: {} | null;
         client_read_only_metadata: {} | null;
         server_metadata: {} | null;
+        primary_email: string | null;
         primary_email_verified: boolean;
         primary_email_auth_enabled: boolean;
         passkey_auth_enabled: boolean;
@@ -112,7 +112,6 @@ export declare const teamMemberProfilesCrud: import("../../crud").CrudSchemaFrom
         profile_image_url: string | null;
     } & {
         user: {
-            primary_email: string | null;
             id: string;
             display_name: string | null;
             oauth_providers: {
@@ -124,6 +123,7 @@ export declare const teamMemberProfilesCrud: import("../../crud").CrudSchemaFrom
             client_metadata: {} | null;
             client_read_only_metadata: {} | null;
             server_metadata: {} | null;
+            primary_email: string | null;
             primary_email_verified: boolean;
             primary_email_auth_enabled: boolean;
             passkey_auth_enabled: boolean;

package/dist/interface/crud/users.d.ts

@@ -96,13 +96,13 @@ export declare const usersCrudServerReadSchema: import("yup").ObjectSchema<{
     requires_totp_mfa: undefined;
 }, "">;
 export declare const usersCrudServerCreateSchema: import("yup").ObjectSchema<{
-    primary_email: string | null | undefined;
     password: string | null | undefined;
     display_name: string | null | undefined;
     profile_image_url: string | null | undefined;
     client_metadata: {} | null | undefined;
     client_read_only_metadata: {} | null | undefined;
     server_metadata: {} | null | undefined;
+    primary_email: string | null | undefined;
     primary_email_verified: boolean | undefined;
     primary_email_auth_enabled: boolean | undefined;
     passkey_auth_enabled: boolean | undefined;
@@ -112,9 +112,9 @@ export declare const usersCrudServerCreateSchema: import("yup").ObjectSchema<{
     is_anonymous: boolean | undefined;
 } & {
     oauth_providers: {
-        email: string | null;
         id: string;
         account_id: string;
+        email: string | null;
     }[] | undefined;
     is_anonymous: boolean | undefined;
 }, import("yup").AnyObject, {
@@ -234,13 +234,13 @@ export declare const usersCrud: import("../../crud").CrudSchemaFromOptions<{
         is_anonymous: undefined;
     }, "">;
     serverCreateSchema: import("yup").ObjectSchema<{
-        primary_email: string | null | undefined;
         password: string | null | undefined;
         display_name: string | null | undefined;
         profile_image_url: string | null | undefined;
         client_metadata: {} | null | undefined;
         client_read_only_metadata: {} | null | undefined;
         server_metadata: {} | null | undefined;
+        primary_email: string | null | undefined;
         primary_email_verified: boolean | undefined;
         primary_email_auth_enabled: boolean | undefined;
         passkey_auth_enabled: boolean | undefined;
@@ -250,9 +250,9 @@ export declare const usersCrud: import("../../crud").CrudSchemaFromOptions<{
         is_anonymous: boolean | undefined;
     } & {
         oauth_providers: {
-            email: string | null;
             id: string;
             account_id: string;
+            email: string | null;
         }[] | undefined;
         is_anonymous: boolean | undefined;
     }, import("yup").AnyObject, {

package/dist/known-errors.d.ts

@@ -69,6 +69,15 @@ export declare const KnownErrors: {
     PermissionIdAlreadyExists: KnownErrorConstructor<KnownError & KnownErrorBrand<"PERMISSION_ID_ALREADY_EXISTS">, [permissionId: string]> & {
         errorCode: "PERMISSION_ID_ALREADY_EXISTS";
     };
+    CliAuthError: KnownErrorConstructor<KnownError & KnownErrorBrand<"CLI_AUTH_ERROR">, [message: string]> & {
+        errorCode: "CLI_AUTH_ERROR";
+    };
+    CliAuthExpiredError: KnownErrorConstructor<KnownError & KnownErrorBrand<"CLI_AUTH_EXPIRED_ERROR">, [message?: string | undefined]> & {
+        errorCode: "CLI_AUTH_EXPIRED_ERROR";
+    };
+    CliAuthUsedError: KnownErrorConstructor<KnownError & KnownErrorBrand<"CLI_AUTH_USED_ERROR">, [message?: string | undefined]> & {
+        errorCode: "CLI_AUTH_USED_ERROR";
+    };
     InvalidProjectAuthentication: KnownErrorConstructor<KnownError & KnownErrorBrand<"PROJECT_AUTHENTICATION_ERROR"> & {
         constructorArgs: [statusCode: number, humanReadableMessage: string, details?: Json | undefined];
     } & KnownErrorBrand<"INVALID_PROJECT_AUTHENTICATION">, [statusCode: number, humanReadableMessage: string, details?: Json | undefined]> & {
@@ -240,6 +249,11 @@ export declare const KnownErrors: {
     } & KnownErrorBrand<"API_KEY_NOT_FOUND">, []> & {
         errorCode: "API_KEY_NOT_FOUND";
     };
+    PublicApiKeyCannotBeRevoked: KnownErrorConstructor<KnownError & KnownErrorBrand<"API_KEY_NOT_VALID"> & {
+        constructorArgs: [statusCode: number, humanReadableMessage: string, details?: Json | undefined];
+    } & KnownErrorBrand<"PUBLIC_API_KEY_CANNOT_BE_REVOKED">, []> & {
+        errorCode: "PUBLIC_API_KEY_CANNOT_BE_REVOKED";
+    };
     ProjectNotFound: KnownErrorConstructor<KnownError & KnownErrorBrand<"PROJECT_NOT_FOUND">, [projectId: string]> & {
         errorCode: "PROJECT_NOT_FOUND";
     };

package/dist/known-errors.js

@@ -566,6 +566,18 @@ const InvalidPollingCodeError = createKnownErrorConstructor(KnownError, "INVALID
     "The polling code is invalid or does not exist.",
     details,
 ], (json) => [json]);
+const CliAuthError = createKnownErrorConstructor(KnownError, "CLI_AUTH_ERROR", (message) => [
+    400,
+    message,
+], (json) => [json.message]);
+const CliAuthExpiredError = createKnownErrorConstructor(KnownError, "CLI_AUTH_EXPIRED_ERROR", (message = "CLI authentication request expired. Please try again.") => [
+    400,
+    message,
+], (json) => [json.message]);
+const CliAuthUsedError = createKnownErrorConstructor(KnownError, "CLI_AUTH_USED_ERROR", (message = "This authentication token has already been used.") => [
+    400,
+    message,
+], (json) => [json.message]);
 const ApiKeyNotValid = createKnownErrorConstructor(KnownError, "API_KEY_NOT_VALID", "inherit", "inherit");
 const ApiKeyExpired = createKnownErrorConstructor(ApiKeyNotValid, "API_KEY_EXPIRED", () => [
     401,
@@ -584,6 +596,10 @@ const ApiKeyNotFound = createKnownErrorConstructor(ApiKeyNotValid, "API_KEY_NOT_
     404,
     "API key not found.",
 ], () => []);
+const PublicApiKeyCannotBeRevoked = createKnownErrorConstructor(ApiKeyNotValid, "PUBLIC_API_KEY_CANNOT_BE_REVOKED", () => [
+    400,
+    "Public API keys cannot be revoked by the secretscanner endpoint.",
+], () => []);
 const PermissionIdAlreadyExists = createKnownErrorConstructor(KnownError, "PERMISSION_ID_ALREADY_EXISTS", (permissionId) => [
     400,
     `Permission with ID "${permissionId}" already exists. Choose a different ID.`,
@@ -599,6 +615,9 @@ export const KnownErrors = {
     AllOverloadsFailed,
     ProjectAuthenticationError,
     PermissionIdAlreadyExists,
+    CliAuthError,
+    CliAuthExpiredError,
+    CliAuthUsedError,
     InvalidProjectAuthentication,
     ProjectKeyWithoutAccessType,
     InvalidAccessType,
@@ -636,6 +655,7 @@ export const KnownErrors = {
     UserIdDoesNotExist,
     UserNotFound,
     ApiKeyNotFound,
+    PublicApiKeyCannotBeRevoked,
     ProjectNotFound,
     SignUpNotEnabled,
     PasswordAuthenticationNotEnabled,