npm - @stackframe/stack-shared - Versions diffs - 2.8.64 → 2.8.66 - Mend

@stackframe/stack-shared 2.8.64 → 2.8.66

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (65) hide show

package/dist/config/db-sync-mappings.d.mts +17 -0
package/dist/config/db-sync-mappings.d.ts +17 -0
package/dist/config/db-sync-mappings.js +195 -0
package/dist/config/db-sync-mappings.js.map +1 -0
package/dist/config/schema-fuzzer.test.js +24 -0
package/dist/config/schema-fuzzer.test.js.map +1 -1
package/dist/config/schema.d.mts +198 -24
package/dist/config/schema.d.ts +198 -24
package/dist/config/schema.js +56 -3
package/dist/config/schema.js.map +1 -1
package/dist/esm/config/db-sync-mappings.js +170 -0
package/dist/esm/config/db-sync-mappings.js.map +1 -0
package/dist/esm/config/schema-fuzzer.test.js +24 -0
package/dist/esm/config/schema-fuzzer.test.js.map +1 -1
package/dist/esm/config/schema.js +56 -3
package/dist/esm/config/schema.js.map +1 -1
package/dist/esm/interface/admin-interface.js.map +1 -1
package/dist/esm/interface/client-interface.js.map +1 -1
package/dist/esm/interface/crud/current-user.js +3 -1
package/dist/esm/interface/crud/current-user.js.map +1 -1
package/dist/esm/interface/crud/sign-up-rules.js +1 -0
package/dist/esm/interface/crud/sign-up-rules.js.map +1 -0
package/dist/esm/interface/crud/users.js +40 -6
package/dist/esm/interface/crud/users.js.map +1 -1
package/dist/esm/known-errors.js +13 -0
package/dist/esm/known-errors.js.map +1 -1
package/dist/esm/schema-fields.js +6 -4
package/dist/esm/schema-fields.js.map +1 -1
package/dist/esm/utils/types.js.map +1 -1
package/dist/interface/admin-interface.d.mts +2 -4
package/dist/interface/admin-interface.d.ts +2 -4
package/dist/interface/admin-interface.js.map +1 -1
package/dist/interface/client-interface.js.map +1 -1
package/dist/interface/crud/current-user.d.mts +22 -2
package/dist/interface/crud/current-user.d.ts +22 -2
package/dist/interface/crud/current-user.js +3 -1
package/dist/interface/crud/current-user.js.map +1 -1
package/dist/interface/crud/project-api-keys.d.mts +2 -2
package/dist/interface/crud/project-api-keys.d.ts +2 -2
package/dist/interface/crud/sign-up-rules.d.mts +13 -0
package/dist/interface/crud/sign-up-rules.d.ts +13 -0
package/dist/interface/crud/sign-up-rules.js +19 -0
package/dist/interface/crud/sign-up-rules.js.map +1 -0
package/dist/interface/crud/team-member-profiles.d.mts +14 -2
package/dist/interface/crud/team-member-profiles.d.ts +14 -2
package/dist/interface/crud/users.d.mts +52 -4
package/dist/interface/crud/users.d.ts +52 -4
package/dist/interface/crud/users.js +40 -6
package/dist/interface/crud/users.js.map +1 -1
package/dist/interface/webhooks.d.mts +14 -2
package/dist/interface/webhooks.d.ts +14 -2
package/dist/known-errors.d.mts +5 -2
package/dist/known-errors.d.ts +5 -2
package/dist/known-errors.js +13 -0
package/dist/known-errors.js.map +1 -1
package/dist/schema-fields.d.mts +9 -3
package/dist/schema-fields.d.ts +9 -3
package/dist/schema-fields.js +7 -4
package/dist/schema-fields.js.map +1 -1
package/dist/sessions.d.mts +2 -2
package/dist/sessions.d.ts +2 -2
package/dist/utils/types.d.mts +2 -2
package/dist/utils/types.d.ts +2 -2
package/dist/utils/types.js.map +1 -1
package/package.json +1 -1

package/dist/interface/crud/users.js CHANGED Viewed

@@ -58,8 +58,26 @@ var usersCrudServerUpdateSchema = fieldSchema.yupObject({
   otp_auth_enabled: fieldSchema.userOtpAuthEnabledMutationSchema.optional(),
   totp_secret_base64: fieldSchema.userTotpSecretMutationSchema.optional(),
   selected_team_id: fieldSchema.selectedTeamIdSchema.nullable().optional(),
-  is_anonymous: fieldSchema.yupBoolean().oneOf([false]).optional()
-}).defined();
+  is_anonymous: fieldSchema.yupBoolean().oneOf([false]).optional(),
+  restricted_by_admin: fieldSchema.yupBoolean().optional().meta({ openapiField: { description: "Whether the user is restricted by an administrator. Can be set manually or by sign-up rules.", exampleValue: false } }),
+  restricted_by_admin_reason: fieldSchema.yupString().nullable().optional().meta({ openapiField: { description: "Public reason shown to the user explaining why they are restricted. Optional.", exampleValue: null } }),
+  restricted_by_admin_private_details: fieldSchema.yupString().nullable().optional().meta({ openapiField: { description: "Private details about the restriction (e.g., which sign-up rule triggered). Only visible to server access and above.", exampleValue: null } })
+}).defined().test(
+  "restricted_by_admin_consistency",
+  "When restricted_by_admin is not true, reason and private_details must be null",
+  function(value) {
+    if (value == null) return true;
+    if (value.restricted_by_admin !== true) {
+      if (value.restricted_by_admin_reason != null) {
+        return this.createError({ message: "restricted_by_admin_reason must be null when restricted_by_admin is not true" });
+      }
+      if (value.restricted_by_admin_private_details != null) {
+        return this.createError({ message: "restricted_by_admin_private_details must be null when restricted_by_admin is not true" });
+      }
+    }
+    return true;
+  }
+);
 var usersCrudServerReadSchema = fieldSchema.yupObject({
   id: fieldSchema.userIdSchema.defined(),
   primary_email: fieldSchema.primaryEmailSchema.nullable().defined(),
@@ -79,9 +97,10 @@ var usersCrudServerReadSchema = fieldSchema.yupObject({
   last_active_at_millis: fieldSchema.userLastActiveAtMillisSchema.nonNullable().defined(),
   is_anonymous: fieldSchema.yupBoolean().defined(),
   is_restricted: fieldSchema.yupBoolean().defined().meta({ openapiField: { description: "Whether the user is in restricted state (has signed up but not completed onboarding requirements)", exampleValue: false } }),
-  restricted_reason: fieldSchema.yupObject({
-    type: fieldSchema.yupString().oneOf(fieldSchema.restrictedReasonTypes).defined()
-  }).nullable().defined().meta({ openapiField: { description: 'The reason why the user is restricted (e.g., type: "email_not_verified" or "anonymous"), null if not restricted', exampleValue: null } }),
+  restricted_reason: fieldSchema.restrictedReasonSchema.nullable().defined().meta({ openapiField: { description: 'The reason why the user is restricted (e.g., type: "email_not_verified", "anonymous", or "restricted_by_administrator"), null if not restricted', exampleValue: null } }),
+  restricted_by_admin: fieldSchema.yupBoolean().defined().meta({ openapiField: { description: "Whether the user is restricted by an administrator. Can be set manually or by sign-up rules.", exampleValue: false } }),
+  restricted_by_admin_reason: fieldSchema.yupString().nullable().defined().meta({ openapiField: { description: "Public reason shown to the user explaining why they are restricted. Optional.", exampleValue: null } }),
+  restricted_by_admin_private_details: fieldSchema.yupString().nullable().defined().meta({ openapiField: { description: "Private details about the restriction (e.g., which sign-up rule triggered). Only visible to server access and above.", exampleValue: null } }),
   oauth_providers: fieldSchema.yupArray(fieldSchema.yupObject({
     id: fieldSchema.yupString().defined(),
     account_id: fieldSchema.yupString().defined(),
@@ -98,7 +117,22 @@ var usersCrudServerReadSchema = fieldSchema.yupObject({
 }).defined().test("restricted_reason_iff_restricted", "restricted_reason must be present if and only if is_restricted is true", function(value) {
   if (value == null) return true;
   return value.is_restricted === !!value.restricted_reason;
-});
+}).test(
+  "restricted_by_admin_consistency",
+  "When restricted_by_admin is not true, reason and private_details must be null",
+  function(value) {
+    if (value == null) return true;
+    if (value.restricted_by_admin !== true) {
+      if (value.restricted_by_admin_reason != null) {
+        return this.createError({ message: "restricted_by_admin_reason must be null when restricted_by_admin is not true" });
+      }
+      if (value.restricted_by_admin_private_details != null) {
+        return this.createError({ message: "restricted_by_admin_private_details must be null when restricted_by_admin is not true" });
+      }
+    }
+    return true;
+  }
+);
 var usersCrudServerCreateSchema = usersCrudServerUpdateSchema.omit(["selected_team_id"]).concat(fieldSchema.yupObject({
   oauth_providers: fieldSchema.yupArray(fieldSchema.yupObject({
     id: fieldSchema.yupString().defined(),

package/dist/interface/crud/users.js.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"sources":["../../../src/interface/crud/users.ts"],"sourcesContent":["import * as yup from \"yup\";\nimport { CrudTypeOf, createCrud } from \"../../crud\";\nimport * as fieldSchema from \"../../schema-fields\";\nimport { WebhookEvent } from \"../webhooks\";\nimport { teamsCrudServerReadSchema } from \"./teams\";\n\nexport const usersCrudServerUpdateSchema = fieldSchema.yupObject({\n display_name: fieldSchema.userDisplayNameSchema.optional(),\n profile_image_url: fieldSchema.profileImageUrlSchema.nullable().optional(),\n client_metadata: fieldSchema.userClientMetadataSchema.optional(),\n client_read_only_metadata: fieldSchema.userClientReadOnlyMetadataSchema.optional(),\n server_metadata: fieldSchema.userServerMetadataSchema.optional(),\n primary_email: fieldSchema.primaryEmailSchema.nullable().optional().nonEmpty(),\n primary_email_verified: fieldSchema.primaryEmailVerifiedSchema.optional(),\n primary_email_auth_enabled: fieldSchema.primaryEmailAuthEnabledSchema.optional(),\n passkey_auth_enabled: fieldSchema.userOtpAuthEnabledSchema.optional(),\n password: fieldSchema.userPasswordMutationSchema.optional(),\n password_hash: fieldSchema.userPasswordHashMutationSchema.optional(),\n otp_auth_enabled: fieldSchema.userOtpAuthEnabledMutationSchema.optional(),\n totp_secret_base64: fieldSchema.userTotpSecretMutationSchema.optional(),\n selected_team_id: fieldSchema.selectedTeamIdSchema.nullable().optional(),\n is_anonymous: fieldSchema.yupBoolean().oneOf([false]).optional(),\n}).defined();\n\nexport const usersCrudServerReadSchema = fieldSchema.yupObject({\n id: fieldSchema.userIdSchema.defined(),\n primary_email: fieldSchema.primaryEmailSchema.nullable().defined(),\n primary_email_verified: fieldSchema.primaryEmailVerifiedSchema.defined(),\n primary_email_auth_enabled: fieldSchema.primaryEmailAuthEnabledSchema.defined(),\n display_name: fieldSchema.userDisplayNameSchema.nullable().defined(),\n selected_team: teamsCrudServerReadSchema.nullable().defined(),\n selected_team_id: fieldSchema.selectedTeamIdSchema.nullable().defined(),\n profile_image_url: fieldSchema.profileImageUrlSchema.nullable().defined(),\n signed_up_at_millis: fieldSchema.signedUpAtMillisSchema.defined(),\n has_password: fieldSchema.userHasPasswordSchema.defined(),\n otp_auth_enabled: fieldSchema.userOtpAuthEnabledSchema.defined(),\n passkey_auth_enabled: fieldSchema.userOtpAuthEnabledSchema.defined(),\n client_metadata: fieldSchema.userClientMetadataSchema,\n client_read_only_metadata: fieldSchema.userClientReadOnlyMetadataSchema,\n server_metadata: fieldSchema.userServerMetadataSchema,\n last_active_at_millis: fieldSchema.userLastActiveAtMillisSchema.nonNullable().defined(),\n is_anonymous: fieldSchema.yupBoolean().defined(),\n is_restricted: fieldSchema.yupBoolean().defined().meta({ openapiField: { description: 'Whether the user is in restricted state (has signed up but not completed onboarding requirements)', exampleValue: false } }),\n restricted_reason: fieldSchema.yupObject({\n type: fieldSchema.yupString().oneOf(fieldSchema.restrictedReasonTypes).defined(),\n }).nullable().defined().meta({ openapiField: { description: 'The reason why the user is restricted (e.g., type: \"email_not_verified\" or \"anonymous\"), null if not restricted', exampleValue: null } }),\n\n oauth_providers: fieldSchema.yupArray(fieldSchema.yupObject({\n id: fieldSchema.yupString().defined(),\n account_id: fieldSchema.yupString().defined(),\n email: fieldSchema.yupString().nullable(),\n }).defined()).defined().meta({ openapiField: { hidden: true } }),\n\n /*\n @deprecated\n /\n auth_with_email: fieldSchema.yupBoolean().defined().meta({ openapiField: { hidden: true, description: 'Whether the user can authenticate with their primary e-mail. If set to true, the user can log-in with credentials and/or magic link, if enabled in the project settings.', exampleValue: true } }),\n /\n @deprecated\n */\n requires_totp_mfa: fieldSchema.yupBoolean().defined().meta({ openapiField: { hidden: true, description: 'Whether the user is required to use TOTP MFA to sign in', exampleValue: false } }),\n}).defined().test(\"restricted_reason_iff_restricted\", \"restricted_reason must be present if and only if is_restricted is true\", function(this: yup.TestContext<any>, value: any) {\n if (value == null) return true;\n return value.is_restricted === !!value.restricted_reason;\n});\n\nexport const usersCrudServerCreateSchema = usersCrudServerUpdateSchema.omit(['selected_team_id']).concat(fieldSchema.yupObject({\n oauth_providers: fieldSchema.yupArray(fieldSchema.yupObject({\n id: fieldSchema.yupString().defined(),\n account_id: fieldSchema.yupString().defined(),\n email: fieldSchema.yupString().nullable().defined().default(null),\n }).defined()).optional().meta({ openapiField: { hidden: true } }),\n is_anonymous: fieldSchema.yupBoolean().optional(),\n}).defined());\n\nexport const usersCrudServerDeleteSchema = fieldSchema.yupMixed();\n\nexport const usersCrud = createCrud({\n serverReadSchema: usersCrudServerReadSchema,\n serverUpdateSchema: usersCrudServerUpdateSchema,\n serverCreateSchema: usersCrudServerCreateSchema,\n serverDeleteSchema: usersCrudServerDeleteSchema,\n docs: {\n serverCreate: {\n tags: [\"Users\"],\n summary: 'Create user',\n description: 'Creates a new user. E-mail authentication is always enabled, and no password is set, meaning the only way to authenticate the newly created user is through magic link.',\n },\n serverRead: {\n tags: [\"Users\"],\n summary: 'Get user',\n description: 'Gets a user by user ID.',\n },\n serverUpdate: {\n tags: [\"Users\"],\n summary: 'Update user',\n description: 'Updates a user. Only the values provided will be updated.',\n },\n serverDelete: {\n tags: [\"Users\"],\n summary: 'Delete user',\n description: 'Deletes a user. Use this with caution.',\n },\n serverList: {\n tags: [\"Users\"],\n summary: 'List users',\n description: 'Lists all the users in the project. By default, only fully onboarded users are returned. Restricted users (those who haven\\'t completed onboarding requirements like email verification) are included if `include_restricted` is set to `true`. Anonymous users are included if `include_anonymous` is set to `true` (which also includes restricted users).',\n },\n },\n});\nexport type UsersCrud = CrudTypeOf<typeof usersCrud>;\n\nexport const userCreatedWebhookEvent = {\n type: \"user.created\",\n schema: usersCrud.server.readSchema,\n metadata: {\n summary: \"User Created\",\n description: \"This event is triggered when a user is created.\",\n tags: [\"Users\"],\n },\n} satisfies WebhookEvent<typeof usersCrud.server.readSchema>;\n\nexport const userUpdatedWebhookEvent = {\n type: \"user.updated\",\n schema: usersCrud.server.readSchema,\n metadata: {\n summary: \"User Updated\",\n description: \"This event is triggered when a user is updated.\",\n tags: [\"Users\"],\n },\n} satisfies WebhookEvent<typeof usersCrud.server.readSchema>;\n\nconst webhookUserDeletedSchema = fieldSchema.yupObject({\n id: fieldSchema.userIdSchema.defined(),\n teams: fieldSchema.yupArray(fieldSchema.yupObject({\n id: fieldSchema.yupString().defined(),\n })).defined(),\n}).defined();\n\nexport const userDeletedWebhookEvent = {\n type: \"user.deleted\",\n schema: webhookUserDeletedSchema,\n metadata: {\n summary: \"User Deleted\",\n description: \"This event is triggered when a user is deleted.\",\n tags: [\"Users\"],\n },\n} satisfies WebhookEvent<typeof webhookUserDeletedSchema>;\n"],"mappings":";;;;;;;;;;;;;;;;;;;;;;;;;;;;;;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AACA,kBAAuC;AACvC,kBAA6B;AAE7B,mBAA0C;AAEnC,IAAM,8BAA0C,sBAAU;AAAA,EAC/D,cAA0B,kCAAsB,SAAS;AAAA,EACzD,mBAA+B,kCAAsB,SAAS,EAAE,SAAS;AAAA,EACzE,iBAA6B,qCAAyB,SAAS;AAAA,EAC/D,2BAAuC,6CAAiC,SAAS;AAAA,EACjF,iBAA6B,qCAAyB,SAAS;AAAA,EAC/D,eAA2B,+BAAmB,SAAS,EAAE,SAAS,EAAE,SAAS;AAAA,EAC7E,wBAAoC,uCAA2B,SAAS;AAAA,EACxE,4BAAwC,0CAA8B,SAAS;AAAA,EAC/E,sBAAkC,qCAAyB,SAAS;AAAA,EACpE,UAAsB,uCAA2B,SAAS;AAAA,EAC1D,eAA2B,2CAA+B,SAAS;AAAA,EACnE,kBAA8B,6CAAiC,SAAS;AAAA,EACxE,oBAAgC,yCAA6B,SAAS;AAAA,EACtE,kBAA8B,iCAAqB,SAAS,EAAE,SAAS;AAAA,EACvE,cAA0B,uBAAW,EAAE,MAAM,CAAC,KAAK,CAAC,EAAE,SAAS;AACjE,CAAC,EAAE,QAAQ;AAEJ,IAAM,4BAAwC,sBAAU;AAAA,EAC7D,IAAgB,yBAAa,QAAQ;AAAA,EACrC,eAA2B,+BAAmB,SAAS,EAAE,QAAQ;AAAA,EACjE,wBAAoC,uCAA2B,QAAQ;AAAA,EACvE,4BAAwC,0CAA8B,QAAQ;AAAA,EAC9E,cAA0B,kCAAsB,SAAS,EAAE,QAAQ;AAAA,EACnE,eAAe,uCAA0B,SAAS,EAAE,QAAQ;AAAA,EAC5D,kBAA8B,iCAAqB,SAAS,EAAE,QAAQ;AAAA,EACtE,mBAA+B,kCAAsB,SAAS,EAAE,QAAQ;AAAA,EACxE,qBAAiC,mCAAuB,QAAQ;AAAA,EAChE,cAA0B,kCAAsB,QAAQ;AAAA,EACxD,kBAA8B,qCAAyB,QAAQ;AAAA,EAC/D,sBAAkC,qCAAyB,QAAQ;AAAA,EACnE,iBAA6B;AAAA,EAC7B,2BAAuC;AAAA,EACvC,iBAA6B;AAAA,EAC7B,uBAAmC,yCAA6B,YAAY,EAAE,QAAQ;AAAA,EACtF,cAA0B,uBAAW,EAAE,QAAQ;AAAA,EAC/C,eAA2B,uBAAW,EAAE,QAAQ,EAAE,KAAK,EAAE,cAAc,EAAE,aAAa,qGAAqG,cAAc,MAAM,EAAE,CAAC;AAAA,EAClN,mBAA+B,sBAAU;AAAA,IACvC,MAAkB,sBAAU,EAAE,MAAkB,iCAAqB,EAAE,QAAQ;AAAA,EACjF,CAAC,EAAE,SAAS,EAAE,QAAQ,EAAE,KAAK,EAAE,cAAc,EAAE,aAAa,mHAAmH,cAAc,KAAK,EAAE,CAAC;AAAA,EAErM,iBAA6B,qBAAqB,sBAAU;AAAA,IAC1D,IAAgB,sBAAU,EAAE,QAAQ;AAAA,IACpC,YAAwB,sBAAU,EAAE,QAAQ;AAAA,IAC5C,OAAmB,sBAAU,EAAE,SAAS;AAAA,EAC1C,CAAC,EAAE,QAAQ,CAAC,EAAE,QAAQ,EAAE,KAAK,EAAE,cAAc,EAAE,QAAQ,KAAK,EAAE,CAAC;AAAA;AAAA;AAAA;AAAA,EAK/D,iBAA6B,uBAAW,EAAE,QAAQ,EAAE,KAAK,EAAE,cAAc,EAAE,QAAQ,MAAM,aAAa,4KAA4K,cAAc,KAAK,EAAE,CAAC;AAAA;AAAA;AAAA;AAAA,EAIxS,mBAA+B,uBAAW,EAAE,QAAQ,EAAE,KAAK,EAAE,cAAc,EAAE,QAAQ,MAAM,aAAa,2DAA2D,cAAc,MAAM,EAAE,CAAC;AAC5L,CAAC,EAAE,QAAQ,EAAE,KAAK,oCAAoC,0EAA0E,SAAqC,OAAY;AAC/K,MAAI,SAAS,KAAM,QAAO;AAC1B,SAAO,MAAM,kBAAkB,CAAC,CAAC,MAAM;AACzC,CAAC;AAEM,IAAM,8BAA8B,4BAA4B,KAAK,CAAC,kBAAkB,CAAC,EAAE,OAAmB,sBAAU;AAAA,EAC7H,iBAA6B,qBAAqB,sBAAU;AAAA,IAC1D,IAAgB,sBAAU,EAAE,QAAQ;AAAA,IACpC,YAAwB,sBAAU,EAAE,QAAQ;AAAA,IAC5C,OAAmB,sBAAU,EAAE,SAAS,EAAE,QAAQ,EAAE,QAAQ,IAAI;AAAA,EAClE,CAAC,EAAE,QAAQ,CAAC,EAAE,SAAS,EAAE,KAAK,EAAE,cAAc,EAAE,QAAQ,KAAK,EAAE,CAAC;AAAA,EAChE,cAA0B,uBAAW,EAAE,SAAS;AAClD,CAAC,EAAE,QAAQ,CAAC;AAEL,IAAM,8BAA0C,qBAAS;AAEzD,IAAM,gBAAY,wBAAW;AAAA,EAClC,kBAAkB;AAAA,EAClB,oBAAoB;AAAA,EACpB,oBAAoB;AAAA,EACpB,oBAAoB;AAAA,EACpB,MAAM;AAAA,IACJ,cAAc;AAAA,MACZ,MAAM,CAAC,OAAO;AAAA,MACd,SAAS;AAAA,MACT,aAAa;AAAA,IACf;AAAA,IACA,YAAY;AAAA,MACV,MAAM,CAAC,OAAO;AAAA,MACd,SAAS;AAAA,MACT,aAAa;AAAA,IACf;AAAA,IACA,cAAc;AAAA,MACZ,MAAM,CAAC,OAAO;AAAA,MACd,SAAS;AAAA,MACT,aAAa;AAAA,IACf;AAAA,IACA,cAAc;AAAA,MACZ,MAAM,CAAC,OAAO;AAAA,MACd,SAAS;AAAA,MACT,aAAa;AAAA,IACf;AAAA,IACA,YAAY;AAAA,MACV,MAAM,CAAC,OAAO;AAAA,MACd,SAAS;AAAA,MACT,aAAa;AAAA,IACf;AAAA,EACF;AACF,CAAC;AAGM,IAAM,0BAA0B;AAAA,EACrC,MAAM;AAAA,EACN,QAAQ,UAAU,OAAO;AAAA,EACzB,UAAU;AAAA,IACR,SAAS;AAAA,IACT,aAAa;AAAA,IACb,MAAM,CAAC,OAAO;AAAA,EAChB;AACF;AAEO,IAAM,0BAA0B;AAAA,EACrC,MAAM;AAAA,EACN,QAAQ,UAAU,OAAO;AAAA,EACzB,UAAU;AAAA,IACR,SAAS;AAAA,IACT,aAAa;AAAA,IACb,MAAM,CAAC,OAAO;AAAA,EAChB;AACF;AAEA,IAAM,2BAAuC,sBAAU;AAAA,EACrD,IAAgB,yBAAa,QAAQ;AAAA,EACrC,OAAmB,qBAAqB,sBAAU;AAAA,IAChD,IAAgB,sBAAU,EAAE,QAAQ;AAAA,EACtC,CAAC,CAAC,EAAE,QAAQ;AACd,CAAC,EAAE,QAAQ;AAEJ,IAAM,0BAA0B;AAAA,EACrC,MAAM;AAAA,EACN,QAAQ;AAAA,EACR,UAAU;AAAA,IACR,SAAS;AAAA,IACT,aAAa;AAAA,IACb,MAAM,CAAC,OAAO;AAAA,EAChB;AACF;","names":[]}
1	+ {"version":3,"sources":["../../../src/interface/crud/users.ts"],"sourcesContent":["import * as yup from \"yup\";\nimport { CrudTypeOf, createCrud } from \"../../crud\";\nimport * as fieldSchema from \"../../schema-fields\";\nimport { WebhookEvent } from \"../webhooks\";\nimport { teamsCrudServerReadSchema } from \"./teams\";\n\nexport const usersCrudServerUpdateSchema = fieldSchema.yupObject({\n display_name: fieldSchema.userDisplayNameSchema.optional(),\n profile_image_url: fieldSchema.profileImageUrlSchema.nullable().optional(),\n client_metadata: fieldSchema.userClientMetadataSchema.optional(),\n client_read_only_metadata: fieldSchema.userClientReadOnlyMetadataSchema.optional(),\n server_metadata: fieldSchema.userServerMetadataSchema.optional(),\n primary_email: fieldSchema.primaryEmailSchema.nullable().optional().nonEmpty(),\n primary_email_verified: fieldSchema.primaryEmailVerifiedSchema.optional(),\n primary_email_auth_enabled: fieldSchema.primaryEmailAuthEnabledSchema.optional(),\n passkey_auth_enabled: fieldSchema.userOtpAuthEnabledSchema.optional(),\n password: fieldSchema.userPasswordMutationSchema.optional(),\n password_hash: fieldSchema.userPasswordHashMutationSchema.optional(),\n otp_auth_enabled: fieldSchema.userOtpAuthEnabledMutationSchema.optional(),\n totp_secret_base64: fieldSchema.userTotpSecretMutationSchema.optional(),\n selected_team_id: fieldSchema.selectedTeamIdSchema.nullable().optional(),\n is_anonymous: fieldSchema.yupBoolean().oneOf([false]).optional(),\n restricted_by_admin: fieldSchema.yupBoolean().optional().meta({ openapiField: { description: 'Whether the user is restricted by an administrator. Can be set manually or by sign-up rules.', exampleValue: false } }),\n restricted_by_admin_reason: fieldSchema.yupString().nullable().optional().meta({ openapiField: { description: 'Public reason shown to the user explaining why they are restricted. Optional.', exampleValue: null } }),\n restricted_by_admin_private_details: fieldSchema.yupString().nullable().optional().meta({ openapiField: { description: 'Private details about the restriction (e.g., which sign-up rule triggered). Only visible to server access and above.', exampleValue: null } }),\n}).defined().test(\n \"restricted_by_admin_consistency\",\n \"When restricted_by_admin is not true, reason and private_details must be null\",\n function(this: yup.TestContext<any>, value: any) {\n if (value == null) return true;\n // If restricted_by_admin is false or missing, both reason and private_details must be null\n if (value.restricted_by_admin !== true) {\n if (value.restricted_by_admin_reason != null) {\n return this.createError({ message: \"restricted_by_admin_reason must be null when restricted_by_admin is not true\" });\n }\n if (value.restricted_by_admin_private_details != null) {\n return this.createError({ message: \"restricted_by_admin_private_details must be null when restricted_by_admin is not true\" });\n }\n }\n return true;\n }\n);\n\nexport const usersCrudServerReadSchema = fieldSchema.yupObject({\n id: fieldSchema.userIdSchema.defined(),\n primary_email: fieldSchema.primaryEmailSchema.nullable().defined(),\n primary_email_verified: fieldSchema.primaryEmailVerifiedSchema.defined(),\n primary_email_auth_enabled: fieldSchema.primaryEmailAuthEnabledSchema.defined(),\n display_name: fieldSchema.userDisplayNameSchema.nullable().defined(),\n selected_team: teamsCrudServerReadSchema.nullable().defined(),\n selected_team_id: fieldSchema.selectedTeamIdSchema.nullable().defined(),\n profile_image_url: fieldSchema.profileImageUrlSchema.nullable().defined(),\n signed_up_at_millis: fieldSchema.signedUpAtMillisSchema.defined(),\n has_password: fieldSchema.userHasPasswordSchema.defined(),\n otp_auth_enabled: fieldSchema.userOtpAuthEnabledSchema.defined(),\n passkey_auth_enabled: fieldSchema.userOtpAuthEnabledSchema.defined(),\n client_metadata: fieldSchema.userClientMetadataSchema,\n client_read_only_metadata: fieldSchema.userClientReadOnlyMetadataSchema,\n server_metadata: fieldSchema.userServerMetadataSchema,\n last_active_at_millis: fieldSchema.userLastActiveAtMillisSchema.nonNullable().defined(),\n is_anonymous: fieldSchema.yupBoolean().defined(),\n is_restricted: fieldSchema.yupBoolean().defined().meta({ openapiField: { description: 'Whether the user is in restricted state (has signed up but not completed onboarding requirements)', exampleValue: false } }),\n restricted_reason: fieldSchema.restrictedReasonSchema.nullable().defined().meta({ openapiField: { description: 'The reason why the user is restricted (e.g., type: \"email_not_verified\", \"anonymous\", or \"restricted_by_administrator\"), null if not restricted', exampleValue: null } }),\n restricted_by_admin: fieldSchema.yupBoolean().defined().meta({ openapiField: { description: 'Whether the user is restricted by an administrator. Can be set manually or by sign-up rules.', exampleValue: false } }),\n restricted_by_admin_reason: fieldSchema.yupString().nullable().defined().meta({ openapiField: { description: 'Public reason shown to the user explaining why they are restricted. Optional.', exampleValue: null } }),\n restricted_by_admin_private_details: fieldSchema.yupString().nullable().defined().meta({ openapiField: { description: 'Private details about the restriction (e.g., which sign-up rule triggered). Only visible to server access and above.', exampleValue: null } }),\n\n oauth_providers: fieldSchema.yupArray(fieldSchema.yupObject({\n id: fieldSchema.yupString().defined(),\n account_id: fieldSchema.yupString().defined(),\n email: fieldSchema.yupString().nullable(),\n }).defined()).defined().meta({ openapiField: { hidden: true } }),\n\n /*\n @deprecated\n /\n auth_with_email: fieldSchema.yupBoolean().defined().meta({ openapiField: { hidden: true, description: 'Whether the user can authenticate with their primary e-mail. If set to true, the user can log-in with credentials and/or magic link, if enabled in the project settings.', exampleValue: true } }),\n /\n @deprecated\n */\n requires_totp_mfa: fieldSchema.yupBoolean().defined().meta({ openapiField: { hidden: true, description: 'Whether the user is required to use TOTP MFA to sign in', exampleValue: false } }),\n}).defined().test(\"restricted_reason_iff_restricted\", \"restricted_reason must be present if and only if is_restricted is true\", function(this: yup.TestContext<any>, value: any) {\n if (value == null) return true;\n return value.is_restricted === !!value.restricted_reason;\n}).test(\n \"restricted_by_admin_consistency\",\n \"When restricted_by_admin is not true, reason and private_details must be null\",\n function(this: yup.TestContext<any>, value: any) {\n if (value == null) return true;\n // If restricted_by_admin is false or missing, both reason and private_details must be null\n if (value.restricted_by_admin !== true) {\n if (value.restricted_by_admin_reason != null) {\n return this.createError({ message: \"restricted_by_admin_reason must be null when restricted_by_admin is not true\" });\n }\n if (value.restricted_by_admin_private_details != null) {\n return this.createError({ message: \"restricted_by_admin_private_details must be null when restricted_by_admin is not true\" });\n }\n }\n return true;\n }\n);\n\nexport const usersCrudServerCreateSchema = usersCrudServerUpdateSchema.omit(['selected_team_id']).concat(fieldSchema.yupObject({\n oauth_providers: fieldSchema.yupArray(fieldSchema.yupObject({\n id: fieldSchema.yupString().defined(),\n account_id: fieldSchema.yupString().defined(),\n email: fieldSchema.yupString().nullable().defined().default(null),\n }).defined()).optional().meta({ openapiField: { hidden: true } }),\n is_anonymous: fieldSchema.yupBoolean().optional(),\n}).defined());\n\nexport const usersCrudServerDeleteSchema = fieldSchema.yupMixed();\n\nexport const usersCrud = createCrud({\n serverReadSchema: usersCrudServerReadSchema,\n serverUpdateSchema: usersCrudServerUpdateSchema,\n serverCreateSchema: usersCrudServerCreateSchema,\n serverDeleteSchema: usersCrudServerDeleteSchema,\n docs: {\n serverCreate: {\n tags: [\"Users\"],\n summary: 'Create user',\n description: 'Creates a new user. E-mail authentication is always enabled, and no password is set, meaning the only way to authenticate the newly created user is through magic link.',\n },\n serverRead: {\n tags: [\"Users\"],\n summary: 'Get user',\n description: 'Gets a user by user ID.',\n },\n serverUpdate: {\n tags: [\"Users\"],\n summary: 'Update user',\n description: 'Updates a user. Only the values provided will be updated.',\n },\n serverDelete: {\n tags: [\"Users\"],\n summary: 'Delete user',\n description: 'Deletes a user. Use this with caution.',\n },\n serverList: {\n tags: [\"Users\"],\n summary: 'List users',\n description: 'Lists all the users in the project. By default, only fully onboarded users are returned. Restricted users (those who haven\\'t completed onboarding requirements like email verification) are included if `include_restricted` is set to `true`. Anonymous users are included if `include_anonymous` is set to `true` (which also includes restricted users).',\n },\n },\n});\nexport type UsersCrud = CrudTypeOf<typeof usersCrud>;\n\nexport const userCreatedWebhookEvent = {\n type: \"user.created\",\n schema: usersCrud.server.readSchema,\n metadata: {\n summary: \"User Created\",\n description: \"This event is triggered when a user is created.\",\n tags: [\"Users\"],\n },\n} satisfies WebhookEvent<typeof usersCrud.server.readSchema>;\n\nexport const userUpdatedWebhookEvent = {\n type: \"user.updated\",\n schema: usersCrud.server.readSchema,\n metadata: {\n summary: \"User Updated\",\n description: \"This event is triggered when a user is updated.\",\n tags: [\"Users\"],\n },\n} satisfies WebhookEvent<typeof usersCrud.server.readSchema>;\n\nconst webhookUserDeletedSchema = fieldSchema.yupObject({\n id: fieldSchema.userIdSchema.defined(),\n teams: fieldSchema.yupArray(fieldSchema.yupObject({\n id: fieldSchema.yupString().defined(),\n })).defined(),\n}).defined();\n\nexport const userDeletedWebhookEvent = {\n type: \"user.deleted\",\n schema: webhookUserDeletedSchema,\n metadata: {\n summary: \"User Deleted\",\n description: \"This event is triggered when a user is deleted.\",\n tags: [\"Users\"],\n },\n} satisfies WebhookEvent<typeof webhookUserDeletedSchema>;\n"],"mappings":";;;;;;;;;;;;;;;;;;;;;;;;;;;;;;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AACA,kBAAuC;AACvC,kBAA6B;AAE7B,mBAA0C;AAEnC,IAAM,8BAA0C,sBAAU;AAAA,EAC/D,cAA0B,kCAAsB,SAAS;AAAA,EACzD,mBAA+B,kCAAsB,SAAS,EAAE,SAAS;AAAA,EACzE,iBAA6B,qCAAyB,SAAS;AAAA,EAC/D,2BAAuC,6CAAiC,SAAS;AAAA,EACjF,iBAA6B,qCAAyB,SAAS;AAAA,EAC/D,eAA2B,+BAAmB,SAAS,EAAE,SAAS,EAAE,SAAS;AAAA,EAC7E,wBAAoC,uCAA2B,SAAS;AAAA,EACxE,4BAAwC,0CAA8B,SAAS;AAAA,EAC/E,sBAAkC,qCAAyB,SAAS;AAAA,EACpE,UAAsB,uCAA2B,SAAS;AAAA,EAC1D,eAA2B,2CAA+B,SAAS;AAAA,EACnE,kBAA8B,6CAAiC,SAAS;AAAA,EACxE,oBAAgC,yCAA6B,SAAS;AAAA,EACtE,kBAA8B,iCAAqB,SAAS,EAAE,SAAS;AAAA,EACvE,cAA0B,uBAAW,EAAE,MAAM,CAAC,KAAK,CAAC,EAAE,SAAS;AAAA,EAC/D,qBAAiC,uBAAW,EAAE,SAAS,EAAE,KAAK,EAAE,cAAc,EAAE,aAAa,gGAAgG,cAAc,MAAM,EAAE,CAAC;AAAA,EACpN,4BAAwC,sBAAU,EAAE,SAAS,EAAE,SAAS,EAAE,KAAK,EAAE,cAAc,EAAE,aAAa,iFAAiF,cAAc,KAAK,EAAE,CAAC;AAAA,EACrN,qCAAiD,sBAAU,EAAE,SAAS,EAAE,SAAS,EAAE,KAAK,EAAE,cAAc,EAAE,aAAa,wHAAwH,cAAc,KAAK,EAAE,CAAC;AACvQ,CAAC,EAAE,QAAQ,EAAE;AAAA,EACX;AAAA,EACA;AAAA,EACA,SAAqC,OAAY;AAC/C,QAAI,SAAS,KAAM,QAAO;AAE1B,QAAI,MAAM,wBAAwB,MAAM;AACtC,UAAI,MAAM,8BAA8B,MAAM;AAC5C,eAAO,KAAK,YAAY,EAAE,SAAS,+EAA+E,CAAC;AAAA,MACrH;AACA,UAAI,MAAM,uCAAuC,MAAM;AACrD,eAAO,KAAK,YAAY,EAAE,SAAS,wFAAwF,CAAC;AAAA,MAC9H;AAAA,IACF;AACA,WAAO;AAAA,EACT;AACF;AAEO,IAAM,4BAAwC,sBAAU;AAAA,EAC7D,IAAgB,yBAAa,QAAQ;AAAA,EACrC,eAA2B,+BAAmB,SAAS,EAAE,QAAQ;AAAA,EACjE,wBAAoC,uCAA2B,QAAQ;AAAA,EACvE,4BAAwC,0CAA8B,QAAQ;AAAA,EAC9E,cAA0B,kCAAsB,SAAS,EAAE,QAAQ;AAAA,EACnE,eAAe,uCAA0B,SAAS,EAAE,QAAQ;AAAA,EAC5D,kBAA8B,iCAAqB,SAAS,EAAE,QAAQ;AAAA,EACtE,mBAA+B,kCAAsB,SAAS,EAAE,QAAQ;AAAA,EACxE,qBAAiC,mCAAuB,QAAQ;AAAA,EAChE,cAA0B,kCAAsB,QAAQ;AAAA,EACxD,kBAA8B,qCAAyB,QAAQ;AAAA,EAC/D,sBAAkC,qCAAyB,QAAQ;AAAA,EACnE,iBAA6B;AAAA,EAC7B,2BAAuC;AAAA,EACvC,iBAA6B;AAAA,EAC7B,uBAAmC,yCAA6B,YAAY,EAAE,QAAQ;AAAA,EACtF,cAA0B,uBAAW,EAAE,QAAQ;AAAA,EAC/C,eAA2B,uBAAW,EAAE,QAAQ,EAAE,KAAK,EAAE,cAAc,EAAE,aAAa,qGAAqG,cAAc,MAAM,EAAE,CAAC;AAAA,EAClN,mBAA+B,mCAAuB,SAAS,EAAE,QAAQ,EAAE,KAAK,EAAE,cAAc,EAAE,aAAa,mJAAmJ,cAAc,KAAK,EAAE,CAAC;AAAA,EACxR,qBAAiC,uBAAW,EAAE,QAAQ,EAAE,KAAK,EAAE,cAAc,EAAE,aAAa,gGAAgG,cAAc,MAAM,EAAE,CAAC;AAAA,EACnN,4BAAwC,sBAAU,EAAE,SAAS,EAAE,QAAQ,EAAE,KAAK,EAAE,cAAc,EAAE,aAAa,iFAAiF,cAAc,KAAK,EAAE,CAAC;AAAA,EACpN,qCAAiD,sBAAU,EAAE,SAAS,EAAE,QAAQ,EAAE,KAAK,EAAE,cAAc,EAAE,aAAa,wHAAwH,cAAc,KAAK,EAAE,CAAC;AAAA,EAEpQ,iBAA6B,qBAAqB,sBAAU;AAAA,IAC1D,IAAgB,sBAAU,EAAE,QAAQ;AAAA,IACpC,YAAwB,sBAAU,EAAE,QAAQ;AAAA,IAC5C,OAAmB,sBAAU,EAAE,SAAS;AAAA,EAC1C,CAAC,EAAE,QAAQ,CAAC,EAAE,QAAQ,EAAE,KAAK,EAAE,cAAc,EAAE,QAAQ,KAAK,EAAE,CAAC;AAAA;AAAA;AAAA;AAAA,EAK/D,iBAA6B,uBAAW,EAAE,QAAQ,EAAE,KAAK,EAAE,cAAc,EAAE,QAAQ,MAAM,aAAa,4KAA4K,cAAc,KAAK,EAAE,CAAC;AAAA;AAAA;AAAA;AAAA,EAIxS,mBAA+B,uBAAW,EAAE,QAAQ,EAAE,KAAK,EAAE,cAAc,EAAE,QAAQ,MAAM,aAAa,2DAA2D,cAAc,MAAM,EAAE,CAAC;AAC5L,CAAC,EAAE,QAAQ,EAAE,KAAK,oCAAoC,0EAA0E,SAAqC,OAAY;AAC/K,MAAI,SAAS,KAAM,QAAO;AAC1B,SAAO,MAAM,kBAAkB,CAAC,CAAC,MAAM;AACzC,CAAC,EAAE;AAAA,EACD;AAAA,EACA;AAAA,EACA,SAAqC,OAAY;AAC/C,QAAI,SAAS,KAAM,QAAO;AAE1B,QAAI,MAAM,wBAAwB,MAAM;AACtC,UAAI,MAAM,8BAA8B,MAAM;AAC5C,eAAO,KAAK,YAAY,EAAE,SAAS,+EAA+E,CAAC;AAAA,MACrH;AACA,UAAI,MAAM,uCAAuC,MAAM;AACrD,eAAO,KAAK,YAAY,EAAE,SAAS,wFAAwF,CAAC;AAAA,MAC9H;AAAA,IACF;AACA,WAAO;AAAA,EACT;AACF;AAEO,IAAM,8BAA8B,4BAA4B,KAAK,CAAC,kBAAkB,CAAC,EAAE,OAAmB,sBAAU;AAAA,EAC7H,iBAA6B,qBAAqB,sBAAU;AAAA,IAC1D,IAAgB,sBAAU,EAAE,QAAQ;AAAA,IACpC,YAAwB,sBAAU,EAAE,QAAQ;AAAA,IAC5C,OAAmB,sBAAU,EAAE,SAAS,EAAE,QAAQ,EAAE,QAAQ,IAAI;AAAA,EAClE,CAAC,EAAE,QAAQ,CAAC,EAAE,SAAS,EAAE,KAAK,EAAE,cAAc,EAAE,QAAQ,KAAK,EAAE,CAAC;AAAA,EAChE,cAA0B,uBAAW,EAAE,SAAS;AAClD,CAAC,EAAE,QAAQ,CAAC;AAEL,IAAM,8BAA0C,qBAAS;AAEzD,IAAM,gBAAY,wBAAW;AAAA,EAClC,kBAAkB;AAAA,EAClB,oBAAoB;AAAA,EACpB,oBAAoB;AAAA,EACpB,oBAAoB;AAAA,EACpB,MAAM;AAAA,IACJ,cAAc;AAAA,MACZ,MAAM,CAAC,OAAO;AAAA,MACd,SAAS;AAAA,MACT,aAAa;AAAA,IACf;AAAA,IACA,YAAY;AAAA,MACV,MAAM,CAAC,OAAO;AAAA,MACd,SAAS;AAAA,MACT,aAAa;AAAA,IACf;AAAA,IACA,cAAc;AAAA,MACZ,MAAM,CAAC,OAAO;AAAA,MACd,SAAS;AAAA,MACT,aAAa;AAAA,IACf;AAAA,IACA,cAAc;AAAA,MACZ,MAAM,CAAC,OAAO;AAAA,MACd,SAAS;AAAA,MACT,aAAa;AAAA,IACf;AAAA,IACA,YAAY;AAAA,MACV,MAAM,CAAC,OAAO;AAAA,MACd,SAAS;AAAA,MACT,aAAa;AAAA,IACf;AAAA,EACF;AACF,CAAC;AAGM,IAAM,0BAA0B;AAAA,EACrC,MAAM;AAAA,EACN,QAAQ,UAAU,OAAO;AAAA,EACzB,UAAU;AAAA,IACR,SAAS;AAAA,IACT,aAAa;AAAA,IACb,MAAM,CAAC,OAAO;AAAA,EAChB;AACF;AAEO,IAAM,0BAA0B;AAAA,EACrC,MAAM;AAAA,EACN,QAAQ,UAAU,OAAO;AAAA,EACzB,UAAU;AAAA,IACR,SAAS;AAAA,IACT,aAAa;AAAA,IACb,MAAM,CAAC,OAAO;AAAA,EAChB;AACF;AAEA,IAAM,2BAAuC,sBAAU;AAAA,EACrD,IAAgB,yBAAa,QAAQ;AAAA,EACrC,OAAmB,qBAAqB,sBAAU;AAAA,IAChD,IAAgB,sBAAU,EAAE,QAAQ;AAAA,EACtC,CAAC,CAAC,EAAE,QAAQ;AACd,CAAC,EAAE,QAAQ;AAEJ,IAAM,0BAA0B;AAAA,EACrC,MAAM;AAAA,EACN,QAAQ;AAAA,EACR,UAAU;AAAA,IACR,SAAS;AAAA,IACT,aAAa;AAAA,IACb,MAAM,CAAC,OAAO;AAAA,EAChB;AACF;","names":[]}

package/dist/interface/webhooks.d.mts CHANGED Viewed

@@ -39,8 +39,11 @@ declare const webhookEvents: readonly [{
         is_anonymous: boolean;
         is_restricted: boolean;
         restricted_reason: {
-            type: "anonymous" | "email_not_verified";
+            type: "anonymous" | "email_not_verified" | "restricted_by_administrator";
         } | null;
+        restricted_by_admin: boolean;
+        restricted_by_admin_reason: string | null;
+        restricted_by_admin_private_details: string | null;
         oauth_providers: {
             email?: string | null | undefined;
             id: string;
@@ -78,6 +81,9 @@ declare const webhookEvents: readonly [{
         restricted_reason: {
             type: undefined;
         };
+        restricted_by_admin: undefined;
+        restricted_by_admin_reason: undefined;
+        restricted_by_admin_private_details: undefined;
         oauth_providers: undefined;
         auth_with_email: undefined;
         requires_totp_mfa: undefined;
@@ -117,8 +123,11 @@ declare const webhookEvents: readonly [{
         is_anonymous: boolean;
         is_restricted: boolean;
         restricted_reason: {
-            type: "anonymous" | "email_not_verified";
+            type: "anonymous" | "email_not_verified" | "restricted_by_administrator";
         } | null;
+        restricted_by_admin: boolean;
+        restricted_by_admin_reason: string | null;
+        restricted_by_admin_private_details: string | null;
         oauth_providers: {
             email?: string | null | undefined;
             id: string;
@@ -156,6 +165,9 @@ declare const webhookEvents: readonly [{
         restricted_reason: {
             type: undefined;
         };
+        restricted_by_admin: undefined;
+        restricted_by_admin_reason: undefined;
+        restricted_by_admin_private_details: undefined;
         oauth_providers: undefined;
         auth_with_email: undefined;
         requires_totp_mfa: undefined;

package/dist/interface/webhooks.d.ts CHANGED Viewed

@@ -39,8 +39,11 @@ declare const webhookEvents: readonly [{
         is_anonymous: boolean;
         is_restricted: boolean;
         restricted_reason: {
-            type: "anonymous" | "email_not_verified";
+            type: "anonymous" | "email_not_verified" | "restricted_by_administrator";
         } | null;
+        restricted_by_admin: boolean;
+        restricted_by_admin_reason: string | null;
+        restricted_by_admin_private_details: string | null;
         oauth_providers: {
             email?: string | null | undefined;
             id: string;
@@ -78,6 +81,9 @@ declare const webhookEvents: readonly [{
         restricted_reason: {
             type: undefined;
         };
+        restricted_by_admin: undefined;
+        restricted_by_admin_reason: undefined;
+        restricted_by_admin_private_details: undefined;
         oauth_providers: undefined;
         auth_with_email: undefined;
         requires_totp_mfa: undefined;
@@ -117,8 +123,11 @@ declare const webhookEvents: readonly [{
         is_anonymous: boolean;
         is_restricted: boolean;
         restricted_reason: {
-            type: "anonymous" | "email_not_verified";
+            type: "anonymous" | "email_not_verified" | "restricted_by_administrator";
         } | null;
+        restricted_by_admin: boolean;
+        restricted_by_admin_reason: string | null;
+        restricted_by_admin_private_details: string | null;
         oauth_providers: {
             email?: string | null | undefined;
             id: string;
@@ -156,6 +165,9 @@ declare const webhookEvents: readonly [{
         restricted_reason: {
             type: undefined;
         };
+        restricted_by_admin: undefined;
+        restricted_by_admin_reason: undefined;
+        restricted_by_admin_private_details: undefined;
         oauth_providers: undefined;
         auth_with_email: undefined;
         requires_totp_mfa: undefined;

package/dist/known-errors.d.mts CHANGED Viewed

@@ -252,7 +252,7 @@ declare const KnownErrors: {
         errorCode: "USER_NOT_FOUND";
     };
     RestrictedUserNotAllowed: KnownErrorConstructor<KnownError & KnownErrorBrand<"RESTRICTED_USER_NOT_ALLOWED">, [restrictedReason: {
-        type: "anonymous" | "email_not_verified";
+        type: "anonymous" | "email_not_verified" | "restricted_by_administrator";
     }]> & {
         errorCode: "RESTRICTED_USER_NOT_ALLOWED";
     };
@@ -278,6 +278,9 @@ declare const KnownErrors: {
     SignUpNotEnabled: KnownErrorConstructor<KnownError & KnownErrorBrand<"SIGN_UP_NOT_ENABLED">, []> & {
         errorCode: "SIGN_UP_NOT_ENABLED";
     };
+    SignUpRejected: KnownErrorConstructor<KnownError & KnownErrorBrand<"SIGN_UP_REJECTED">, [message?: string | undefined]> & {
+        errorCode: "SIGN_UP_REJECTED";
+    };
     PasswordAuthenticationNotEnabled: KnownErrorConstructor<KnownError & KnownErrorBrand<"PASSWORD_AUTHENTICATION_NOT_ENABLED">, []> & {
         errorCode: "PASSWORD_AUTHENTICATION_NOT_ENABLED";
     };
@@ -372,7 +375,7 @@ declare const KnownErrors: {
         errorCode: "TEAM_MEMBERSHIP_NOT_FOUND";
     };
     TeamInvitationRestrictedUserNotAllowed: KnownErrorConstructor<KnownError & KnownErrorBrand<"TEAM_INVITATION_RESTRICTED_USER_NOT_ALLOWED">, [restrictedReason: {
-        type: "anonymous" | "email_not_verified";
+        type: "anonymous" | "email_not_verified" | "restricted_by_administrator";
     }]> & {
         errorCode: "TEAM_INVITATION_RESTRICTED_USER_NOT_ALLOWED";
     };

package/dist/known-errors.d.ts CHANGED Viewed

@@ -252,7 +252,7 @@ declare const KnownErrors: {
         errorCode: "USER_NOT_FOUND";
     };
     RestrictedUserNotAllowed: KnownErrorConstructor<KnownError & KnownErrorBrand<"RESTRICTED_USER_NOT_ALLOWED">, [restrictedReason: {
-        type: "anonymous" | "email_not_verified";
+        type: "anonymous" | "email_not_verified" | "restricted_by_administrator";
     }]> & {
         errorCode: "RESTRICTED_USER_NOT_ALLOWED";
     };
@@ -278,6 +278,9 @@ declare const KnownErrors: {
     SignUpNotEnabled: KnownErrorConstructor<KnownError & KnownErrorBrand<"SIGN_UP_NOT_ENABLED">, []> & {
         errorCode: "SIGN_UP_NOT_ENABLED";
     };
+    SignUpRejected: KnownErrorConstructor<KnownError & KnownErrorBrand<"SIGN_UP_REJECTED">, [message?: string | undefined]> & {
+        errorCode: "SIGN_UP_REJECTED";
+    };
     PasswordAuthenticationNotEnabled: KnownErrorConstructor<KnownError & KnownErrorBrand<"PASSWORD_AUTHENTICATION_NOT_ENABLED">, []> & {
         errorCode: "PASSWORD_AUTHENTICATION_NOT_ENABLED";
     };
@@ -372,7 +375,7 @@ declare const KnownErrors: {
         errorCode: "TEAM_MEMBERSHIP_NOT_FOUND";
     };
     TeamInvitationRestrictedUserNotAllowed: KnownErrorConstructor<KnownError & KnownErrorBrand<"TEAM_INVITATION_RESTRICTED_USER_NOT_ALLOWED">, [restrictedReason: {
-        type: "anonymous" | "email_not_verified";
+        type: "anonymous" | "email_not_verified" | "restricted_by_administrator";
     }]> & {
         errorCode: "TEAM_INVITATION_RESTRICTED_USER_NOT_ALLOWED";
     };

package/dist/known-errors.js CHANGED Viewed

@@ -587,6 +587,18 @@ var SignUpNotEnabled = createKnownErrorConstructor(
   ],
   () => []
 );
+var SignUpRejected = createKnownErrorConstructor(
+  KnownError,
+  "SIGN_UP_REJECTED",
+  (message) => [
+    403,
+    message ?? "Your sign up was rejected. Please contact us for more information.",
+    {
+      message: message ?? "Your sign up was rejected. Please contact us for more information."
+    }
+  ],
+  (json) => [json.message]
+);
 var PasswordAuthenticationNotEnabled = createKnownErrorConstructor(
   KnownError,
   "PASSWORD_AUTHENTICATION_NOT_ENABLED",
@@ -1563,6 +1575,7 @@ var KnownErrors = {
   CurrentProjectNotFound,
   BranchDoesNotExist,
   SignUpNotEnabled,
+  SignUpRejected,
   PasswordAuthenticationNotEnabled,
   PasskeyAuthenticationNotEnabled,
   AnonymousAccountsNotEnabled,