@tailor-platform/sdk 1.54.2 → 1.55.0

package/dist/tailor-db-field-D0qg8s4U.d.mts

@@ -1,1639 +0,0 @@
-import { n as TailorEnv } from "./env-B-g-qgE4.mjs";
-import { IsAny, JsonObject, NonEmptyObject } from "type-fest";
-
-//#region src/types/helpers.d.ts
-type Prettify<T> = { [K in keyof T as string extends K ? never : K]: T[K] } & {};
-type DeepWritable<T> = T extends Date | RegExp | Function ? T : T extends object ? { -readonly [P in keyof T]: DeepWritable<T[P]> } & {} : T;
-type output<T> = T extends {
-  _output: infer U;
-} ? DeepWritable<U> : never;
-type NullableToOptional<T> = { [K in keyof T as null extends T[K] ? never : K]: T[K] } & { [K in keyof T as null extends T[K] ? K : never]?: T[K] };
-type InferFieldsOutput<F extends Record<string, {
-  _output: any;
-  [key: string]: any;
-}>> = DeepWritable<Prettify<NullableToOptional<{ [K in keyof F]: output<F[K]> }>>>;
-type JsonValue = string | number | boolean | null | JsonValue[] | {
-  [key: string]: JsonValue;
-};
-/**
- * A looser version of JsonValue that accepts interfaces.
- * TypeScript interfaces don't have index signatures by default, so they can't
- * be assigned to JsonValue's `{ [key: string]: JsonValue }`. This type uses a
- * recursive structural check instead.
- *
- * Rejection rules:
- * - Functions are rejected (top-level or as property values).
- * - Objects with a `toJSON` method are rejected (can't faithfully round-trip).
- * - Class instances that expose methods are rejected via the property walk
- *   (methods are function-typed properties, which resolve to `never`).
- *
- * Limitation: class instances whose declared type has only data properties
- * (for example `Error`, or user-defined DTO classes) are structurally
- * indistinguishable from plain objects and cannot be rejected here. The
- * platform performs the authoritative check at runtime.
- */
-type JsonCompatible<T> = T extends string | number | boolean | null | undefined ? T : T extends readonly (infer U)[] ? JsonCompatible<U>[] : T extends Function ? never : T extends object ? T extends {
-  toJSON: () => unknown;
-} ? never : { [K in keyof T]: JsonCompatible<T[K]> } : never;
-//#endregion
-//#region src/types/user.d.ts
-interface AttributeMap {}
-interface AttributeList {
-  __tuple?: [];
-}
-type InferredAttributeMap = keyof AttributeMap extends never ? Record<string, string | string[] | boolean | boolean[] | undefined> : AttributeMap;
-type InferredAttributeList = AttributeList["__tuple"] extends [] ? string[] : AttributeList["__tuple"];
-/** Represents a user in the Tailor platform. */
-type TailorUser = {
-  /**
-   * The ID of the user.
-   * For unauthenticated users, this will be a nil UUID.
-   */
-  id: string;
-  /**
-   * The type of the user.
-   * For unauthenticated users, this will be an empty string.
-   */
-  type: "user" | "machine_user" | ""; /** The ID of the workspace the user belongs to. */
-  workspaceId: string;
-  /**
-   * A map of the user's attributes.
-   * For unauthenticated users, this will be null.
-   */
-  attributes: InferredAttributeMap | null;
-  /**
-   * A list of the user's attributes.
-   * For unauthenticated users, this will be an empty array.
-   */
-  attributeList: InferredAttributeList;
-};
-/** Represents an unauthenticated user in the Tailor platform. */
-declare const unauthenticatedTailorUser: TailorUser;
-/**
- * The invoker of the current function execution.
- *
- * Reflects `authInvoker` delegation: when `authInvoker` is specified, this is
- * the machine user; otherwise it is the calling user.
- * Distinct from resolver's `user` (the authenticated caller) and executor's
- * `actor` (the subject of the event).
- *
- * `null` for anonymous requests.
- *
- * TODO(v2): unify with `TailorUser` — same underlying principal shape.
- */
-type TailorInvoker = {
-  /** The ID of the invoker (user ID or machine user ID). */id: string; /** The type of the invoker. */
-  type: "user" | "machine_user"; /** The ID of the workspace the invoker belongs to. */
-  workspaceId: string; /** A map of the invoker's attributes. */
-  attributes: InferredAttributeMap; /** A list of the invoker's attribute IDs. */
-  attributeList: InferredAttributeList;
-} | null;
-//#endregion
-//#region src/types/validation.d.ts
-/**
- * Validation function type
- */
-type ValidateFn<O, D = unknown> = (args: {
-  value: O;
-  data: D;
-  user: TailorUser;
-}) => boolean;
-/**
- * Validation configuration with custom error message
- */
-type ValidateConfig<O, D = unknown> = [ValidateFn<O, D>, string];
-/**
- * Field-level validation function
- */
-type FieldValidateFn<O> = ValidateFn<O>;
-/**
- * Field-level validation configuration
- */
-type FieldValidateConfig<O> = ValidateConfig<O>;
-/**
- * Input type for field validation - can be either a function or a tuple of [function, errorMessage]
- */
-type FieldValidateInput<O> = FieldValidateFn<O> | FieldValidateConfig<O>;
-/**
- * Base validators type for field collections
- * @template F - Record of fields
- * @template ExcludeKeys - Keys to exclude from validation (default: "id" for TailorDB)
- */
-type ValidatorsBase<F extends Record<string, {
-  _defined: any;
-  _output: any;
-  [key: string]: any;
-}>, ExcludeKeys extends string = "id"> = NonEmptyObject<{ [K in Exclude<keyof F, ExcludeKeys> as F[K]["_defined"] extends {
-  validate: unknown;
-} ? never : K]?: ValidateFn<output<F[K]>, InferFieldsOutput<F>> | ValidateConfig<output<F[K]>, InferFieldsOutput<F>> | (ValidateFn<output<F[K]>, InferFieldsOutput<F>> | ValidateConfig<output<F[K]>, InferFieldsOutput<F>>)[] }>;
-/**
- * Validators type (by default excludes "id" field for TailorDB compatibility)
- * Can be used with both TailorField and TailorDBField
- */
-type Validators<F extends Record<string, {
-  _defined: any;
-  _output: any;
-  [key: string]: any;
-}>> = ValidatorsBase<F, "id">;
-//#endregion
-//#region src/types/field-types.d.ts
-interface EnumValue {
-  value: string;
-  description?: string;
-}
-type TailorFieldType = "uuid" | "string" | "boolean" | "integer" | "float" | "decimal" | "enum" | "date" | "datetime" | "time" | "nested";
-type TailorToTs = {
-  string: string;
-  integer: number;
-  float: number;
-  decimal: string;
-  boolean: boolean;
-  uuid: string;
-  date: string;
-  datetime: string | Date;
-  time: string;
-  enum: string;
-  object: Record<string, unknown>;
-  nested: Record<string, unknown>;
-} & Record<TailorFieldType, unknown>;
-interface FieldMetadata {
-  description?: string;
-  required?: boolean;
-  array?: boolean;
-  allowedValues?: EnumValue[];
-  validate?: FieldValidateInput<any>[];
-  typeName?: string;
-}
-interface DefinedFieldMetadata {
-  type: TailorFieldType;
-  array: boolean;
-  description?: boolean;
-  validate?: boolean;
-  typeName?: boolean;
-}
-type FieldOptions = {
-  optional?: boolean;
-  array?: boolean;
-};
-type FieldOutput$1<T, O extends FieldOptions> = OptionalFieldOutput<ArrayFieldOutput<T, O>, O>;
-type OptionalFieldOutput<T, O extends FieldOptions> = O["optional"] extends true ? T | null : T;
-type ArrayFieldOutput<T, O extends FieldOptions> = [O] extends [{
-  array: true;
-}] ? T[] : T;
-//#endregion
-//#region src/types/auth.generated.d.ts
-type AuthInvokerObject = {
-  /** Auth namespace */namespace: string; /** Machine user name for authentication */
-  machineUserName: string;
-};
-type AuthInvoker = AuthInvokerObject;
-type OIDC = {
-  /** Identity provider name */name: string;
-  kind: "OIDC"; /** OAuth2 client ID */
-  clientID: string; /** OAuth2 client secret */
-  clientSecret: {
-    vaultName: string;
-    secretKey: string;
-  }; /** OIDC provider URL */
-  providerURL: string; /** OIDC issuer URL (defaults to providerURL) */
-  issuerURL?: string | undefined; /** JWT claim to use as username */
-  usernameClaim?: string | undefined;
-};
-type SAML = {
-  /** Identity provider name */name: string;
-  kind: "SAML"; /** Enable signing of SAML requests */
-  enableSignRequest: boolean; /** URL to fetch SAML metadata (mutually exclusive with rawMetadata) */
-  metadataURL?: string | undefined; /** Raw SAML metadata XML (mutually exclusive with metadataURL) */
-  rawMetadata?: string | undefined; /** URL to redirect to when SAML ACS receives a response with an empty RelayState. */
-  defaultRedirectURL?: string | undefined;
-};
-type IDToken = {
-  /** Identity provider name */name: string;
-  kind: "IDToken"; /** ID token provider URL */
-  providerURL: string; /** Client ID for ID token validation */
-  clientID: string; /** ID token issuer URL */
-  issuerURL?: string | undefined; /** JWT claim to use as username */
-  usernameClaim?: string | undefined;
-};
-type BuiltinIdP = {
-  /** Identity provider name */name: string;
-  kind: "BuiltInIdP"; /** IdP namespace */
-  namespace: string; /** OAuth2 client name in the IdP */
-  clientName: string;
-};
-type IdProvider = OIDC | SAML | IDToken | BuiltinIdP;
-type OAuth2ClientInput = {
-  /** Allowed redirect URIs */redirectURIs: (`https://${string}` | `http://${string}` | `${string}:url` | `${string}:url/${string}`)[]; /** Client description */
-  description?: string | undefined; /** Allowed OAuth2 grant types */
-  grantTypes?: ("authorization_code" | "refresh_token")[] | undefined; /** OAuth2 client type */
-  clientType?: "confidential" | "public" | "browser" | undefined; /** Access token lifetime in seconds (60-86400) */
-  accessTokenLifetimeSeconds?: number | undefined; /** Refresh token lifetime in seconds (60-604800) */
-  refreshTokenLifetimeSeconds?: number | undefined; /** Require DPoP (Demonstrating Proof-of-Possession) for token requests */
-  requireDpop?: boolean | undefined;
-};
-type OAuth2Client = {
-  /** Allowed OAuth2 grant types */grantTypes: ("authorization_code" | "refresh_token")[]; /** Allowed redirect URIs */
-  redirectURIs: (`https://${string}` | `http://${string}` | `${string}:url` | `${string}:url/${string}`)[]; /** Access token lifetime in seconds (60-86400) */
-  accessTokenLifetimeSeconds: {
-    seconds: bigint;
-    nanos: number;
-  } | undefined; /** Refresh token lifetime in seconds (60-604800) */
-  refreshTokenLifetimeSeconds: {
-    seconds: bigint;
-    nanos: number;
-  } | undefined; /** Client description */
-  description?: string | undefined; /** OAuth2 client type */
-  clientType?: "confidential" | "public" | "browser" | undefined; /** Require DPoP (Demonstrating Proof-of-Possession) for token requests */
-  requireDpop?: boolean | undefined;
-};
-type SCIMAuthorization = {
-  /** SCIM authorization type */type: "oauth2" | "bearer"; /** Bearer token secret (required for bearer type) */
-  bearerSecret?: {
-    vaultName: string;
-    secretKey: string;
-  } | undefined;
-};
-type SCIMAttribute = {
-  /** Attribute data type */type: "string" | "number" | "boolean" | "datetime" | "complex"; /** Attribute name */
-  name: string; /** Attribute description */
-  description?: string | undefined; /** Attribute mutability */
-  mutability?: "readOnly" | "readWrite" | "writeOnly" | undefined; /** Whether the attribute is required */
-  required?: boolean | undefined; /** Whether the attribute can have multiple values */
-  multiValued?: boolean | undefined; /** Uniqueness constraint */
-  uniqueness?: "none" | "server" | "global" | undefined; /** List of canonical values */
-  canonicalValues?: string[] | null | undefined;
-  subAttributes?: SCIMAttribute[] | null | undefined;
-};
-type SCIMAttributeMapping = {
-  /** TailorDB field name to map to */tailorDBField: string; /** SCIM attribute path */
-  scimPath: string;
-};
-type SCIMResource = {
-  /** SCIM resource name */name: string; /** TailorDB namespace for the resource */
-  tailorDBNamespace: string; /** TailorDB type name for the resource */
-  tailorDBType: string; /** Core SCIM schema definition */
-  coreSchema: {
-    /** SCIM resource name */name: string;
-    attributes: {
-      type: "string" | "number" | "boolean" | "datetime" | "complex"; /** SCIM resource name */
-      name: string;
-      description?: string | undefined;
-      mutability?: "readOnly" | "readWrite" | "writeOnly" | undefined;
-      required?: boolean | undefined;
-      multiValued?: boolean | undefined;
-      uniqueness?: "none" | "server" | "global" | undefined;
-      canonicalValues?: string[] | null | undefined;
-      subAttributes?: any[] | null | undefined;
-    }[];
-  }; /** Attribute mapping configuration */
-  attributeMapping: {
-    tailorDBField: string;
-    scimPath: string;
-  }[];
-};
-type SCIMConfig = {
-  /** Machine user name for SCIM operations */machineUserName: string; /** SCIM authorization configuration */
-  authorization: {
-    type: "oauth2" | "bearer";
-    bearerSecret?: {
-      vaultName: string;
-      secretKey: string;
-    } | undefined;
-  }; /** SCIM resource definitions */
-  resources: {
-    name: string;
-    tailorDBNamespace: string;
-    tailorDBType: string;
-    coreSchema: {
-      name: string;
-      attributes: {
-        type: "string" | "number" | "boolean" | "datetime" | "complex";
-        name: string;
-        description?: string | undefined;
-        mutability?: "readOnly" | "readWrite" | "writeOnly" | undefined;
-        required?: boolean | undefined;
-        multiValued?: boolean | undefined;
-        uniqueness?: "none" | "server" | "global" | undefined;
-        canonicalValues?: string[] | null | undefined;
-        subAttributes?: any[] | null | undefined;
-      }[];
-    };
-    attributeMapping: {
-      tailorDBField: string;
-      scimPath: string;
-    }[];
-  }[];
-};
-type TenantProvider = {
-  /** TailorDB namespace for the tenant type */namespace: string; /** TailorDB type name for tenants */
-  type: string; /** Field used as the tenant signature */
-  signatureField: string;
-};
-//#endregion
-//#region src/types/executor.generated.d.ts
-type TailorDBTrigger = {
-  /** TailorDB record event trigger */kind: "tailordb"; /** TailorDB event types to trigger on */
-  events: ("tailordb.type_record.created" | "tailordb.type_record.updated" | "tailordb.type_record.deleted")[]; /** TailorDB type name to watch for events */
-  typeName: string; /** Condition function to filter events */
-  condition?: Function | undefined;
-};
-type ResolverExecutedTrigger = {
-  kind: "resolverExecuted"; /** Name of the resolver to trigger on */
-  resolverName: string; /** Condition function to filter events */
-  condition?: Function | undefined;
-};
-type ScheduleTriggerInput = {
-  kind: "schedule"; /** CRON expression for the schedule */
-  cron: string; /** Timezone for the CRON schedule (default: UTC) */
-  timezone?: string | undefined;
-};
-type IncomingWebhookTrigger = {
-  kind: "incomingWebhook"; /** Response configuration */
-  response?: {
-    body?: Function | undefined;
-    statusCode?: number | undefined;
-  } | undefined;
-};
-type IdpUserTrigger = {
-  /** IdP user event trigger */kind: "idpUser"; /** IdP user event types to trigger on */
-  events: ("idp.user.created" | "idp.user.updated" | "idp.user.deleted")[]; /** IdP namespace name to subscribe to. If omitted, the project's only IdP is used; throws when multiple IdPs exist. */
-  idp?: string | undefined;
-};
-type AuthAccessTokenTrigger = {
-  /** Auth access token event trigger */kind: "authAccessToken"; /** Auth access token event types to trigger on */
-  events: ("auth.access_token.issued" | "auth.access_token.refreshed" | "auth.access_token.revoked")[];
-};
-type FunctionOperation = {
-  kind: "function" | "jobFunction"; /** Function implementation */
-  body: Function; /** Auth invoker for the function execution */
-  authInvoker?: string | {
-    namespace: string;
-    machineUserName: string;
-  } | undefined;
-};
-type GqlOperation = {
-  kind: "graphql";
-  query: string; /** Target application name for the GraphQL query */
-  appName?: string | undefined; /** Function to compute GraphQL variables */
-  variables?: Function | undefined; /** Auth invoker for the GraphQL execution */
-  authInvoker?: string | {
-    namespace: string;
-    machineUserName: string;
-  } | undefined;
-};
-type WebhookOperation = {
-  kind: "webhook"; /** Function returning the webhook URL */
-  url: Function; /** Function to compute the request body */
-  requestBody?: Function | undefined; /** HTTP headers for the webhook request */
-  headers?: {
-    [x: string]: string | {
-      vault: string;
-      key: string;
-    };
-  } | undefined;
-};
-type WorkflowOperation = {
-  kind: "workflow";
-  workflowName: string;
-  args?: Function | {
-    [x: string]: unknown;
-  } | undefined;
-  authInvoker?: string | {
-    namespace: string;
-    machineUserName: string;
-  } | undefined;
-};
-type ExecutorInput = {
-  /** Executor name */name: string; /** Event trigger configuration */
-  trigger: {
-    kind: "tailordb";
-    events: ("tailordb.type_record.created" | "tailordb.type_record.updated" | "tailordb.type_record.deleted")[];
-    typeName: string;
-    condition?: Function | undefined;
-  } | {
-    kind: "resolverExecuted";
-    resolverName: string;
-    condition?: Function | undefined;
-  } | {
-    kind: "schedule";
-    cron: string;
-    timezone?: string | undefined;
-  } | {
-    kind: "incomingWebhook";
-    response?: {
-      body?: Function | undefined;
-      statusCode?: number | undefined;
-    } | undefined;
-  } | {
-    kind: "idpUser";
-    events: ("idp.user.created" | "idp.user.updated" | "idp.user.deleted")[];
-    idp?: string | undefined;
-  } | {
-    kind: "authAccessToken";
-    events: ("auth.access_token.issued" | "auth.access_token.refreshed" | "auth.access_token.revoked")[];
-  }; /** Operation to execute when triggered */
-  operation: unknown; /** Executor description */
-  description?: string | undefined; /** Whether the executor is disabled */
-  disabled?: boolean | undefined;
-};
-type Executor = {
-  /** Executor name */name: string; /** Whether the executor is disabled */
-  disabled: boolean; /** Event trigger configuration */
-  trigger: {
-    kind: "tailordb";
-    events: ("tailordb.type_record.created" | "tailordb.type_record.updated" | "tailordb.type_record.deleted")[];
-    typeName: string;
-    condition?: Function | undefined;
-  } | {
-    kind: "resolverExecuted";
-    resolverName: string;
-    condition?: Function | undefined;
-  } | {
-    kind: "schedule";
-    cron: string;
-    timezone: string;
-  } | {
-    kind: "incomingWebhook";
-    response?: {
-      body?: Function | undefined;
-      statusCode?: number | undefined;
-    } | undefined;
-  } | {
-    kind: "idpUser";
-    events: ("idp.user.created" | "idp.user.updated" | "idp.user.deleted")[];
-    idp?: string | undefined;
-  } | {
-    kind: "authAccessToken";
-    events: ("auth.access_token.issued" | "auth.access_token.refreshed" | "auth.access_token.revoked")[];
-  }; /** Operation to execute when triggered */
-  operation: {
-    kind: "workflow";
-    workflowName: string;
-    args?: Function | {
-      [x: string]: unknown;
-    } | undefined;
-    authInvoker?: string | {
-      namespace: string;
-      machineUserName: string;
-    } | undefined;
-  } | {
-    kind: "function" | "jobFunction";
-    body: Function;
-    authInvoker?: string | {
-      namespace: string;
-      machineUserName: string;
-    } | undefined;
-  } | {
-    kind: "graphql";
-    query: string;
-    appName?: string | undefined;
-    variables?: Function | undefined;
-    authInvoker?: string | {
-      namespace: string;
-      machineUserName: string;
-    } | undefined;
-  } | {
-    kind: "webhook";
-    url: Function;
-    requestBody?: Function | undefined;
-    headers?: {
-      [x: string]: string | {
-        vault: string;
-        key: string;
-      };
-    } | undefined;
-  }; /** Executor description */
-  description?: string | undefined;
-};
-//#endregion
-//#region src/types/generator-config.generated.d.ts
-type BaseGeneratorConfig = ["@tailor-platform/kysely-type", {
-  distPath: string;
-}] | ["@tailor-platform/seed", {
-  distPath: string;
-  machineUserName?: string | undefined;
-  disableIdpUserSync?: {
-    userToIdp?: boolean | undefined;
-    idpToUser?: boolean | undefined;
-  } | undefined;
-}] | ["@tailor-platform/enum-constants", {
-  distPath: string;
-}] | ["@tailor-platform/file-utils", {
-  distPath: string;
-}] | {
-  id: string;
-  description: string;
-  dependencies: ("tailordb" | "resolver" | "executor")[];
-  aggregate: Function;
-  processType?: Function | undefined;
-  processResolver?: Function | undefined;
-  processExecutor?: Function | undefined;
-  processTailorDBNamespace?: Function | undefined;
-  processResolverNamespace?: Function | undefined;
-};
-type BaseGeneratorConfigInput = BaseGeneratorConfig;
-//#endregion
-//#region src/types/generator-config.d.ts
-type GeneratorConfig = BaseGeneratorConfigInput;
-//#endregion
-//#region src/types/resolver.generated.d.ts
-type Resolver = {
-  /** GraphQL operation type (query or mutation) */operation: "query" | "mutation"; /** Resolver name */
-  name: string; /** Resolver implementation function */
-  body: Function; /** Output field definition */
-  output: {
-    type: "string" | "boolean" | "date" | "enum" | "uuid" | "integer" | "float" | "decimal" | "datetime" | "time" | "nested";
-    metadata: {
-      required?: boolean | undefined;
-      array?: boolean | undefined; /** Resolver description */
-      description?: string | undefined;
-      allowedValues?: {
-        value: string; /** Resolver description */
-        description?: string | undefined;
-      }[] | undefined;
-      hooks?: {
-        create?: Function | undefined;
-        update?: Function | undefined;
-      } | undefined;
-      typeName?: string | undefined;
-    };
-    fields: {
-      [x: string]: any;
-    };
-  }; /** Resolver description */
-  description?: string | undefined; /** Input field definitions */
-  input?: {
-    [x: string]: any;
-  } | undefined; /** Enable publishing events from this resolver */
-  publishEvents?: boolean | undefined; /** Machine user to execute this resolver as */
-  authInvoker?: string | {
-    namespace: string;
-    machineUserName: string;
-  } | undefined;
-};
-type ResolverInput = Resolver;
-//#endregion
-//#region src/types/auth-connection.generated.d.ts
-type AuthConnectionOAuth2Config = {
-  /** OAuth2 provider URL */providerUrl: string; /** OAuth2 issuer URL */
-  issuerUrl: string; /** OAuth2 client ID */
-  clientId: string; /** OAuth2 client secret */
-  clientSecret: string; /** OAuth2 authorization endpoint override */
-  authUrl?: string | undefined; /** OAuth2 token endpoint override */
-  tokenUrl?: string | undefined;
-};
-type AuthConnectionConfig = {
-  type: "oauth2";
-  providerUrl: string;
-  issuerUrl: string;
-  clientId: string;
-  clientSecret: string;
-  authUrl?: string | undefined;
-  tokenUrl?: string | undefined;
-};
-//#endregion
-//#region src/types/tailor-field.d.ts
-/**
- * Minimal structural interface for TailorField.
- * Defines only the properties needed by parser, plugin, cli, and types layers.
- * The full interface with builder methods (description, typeName, validate, parse)
- * is defined in configure/types/type.ts.
- */
-interface TailorField<Defined extends DefinedFieldMetadata = DefinedFieldMetadata, Output = any, M extends FieldMetadata = FieldMetadata, T extends TailorFieldType = TailorFieldType> {
-  readonly type: T;
-  readonly fields: Record<string, TailorAnyField>;
-  readonly _defined: Defined;
-  readonly _output: Output;
-  readonly metadata: M;
-}
-type TailorAnyField = TailorField<any>;
-//#endregion
-//#region src/types/auth.d.ts
-type OAuth2ClientGrantType = OAuth2Client["grantTypes"][number];
-type SCIMAttributeType = SCIMAttribute["type"];
-type AuthInvokerWithName<M extends string> = Omit<AuthInvoker, "machineUserName"> & {
-  machineUserName: M;
-};
-/** Result of retrieving a connection token at runtime. */
-type AuthConnectionTokenResult = {
-  access_token: string;
-  refresh_token?: string;
-  token_type?: string;
-  expiry?: string;
-};
-type ValueOperand = string | boolean | string[] | boolean[];
-type AuthAttributeValue = ValueOperand | null | undefined;
-type UserFieldKeys<User extends TailorDBInstance> = keyof output<User> & string;
-type FieldDefined<User extends TailorDBInstance, Key extends UserFieldKeys<User>> = User["fields"][Key] extends {
-  _defined: infer Defined;
-} ? Defined : never;
-type FieldOutput<User extends TailorDBInstance, Key extends UserFieldKeys<User>> = output<User>[Key];
-type FieldIsRequired<User extends TailorDBInstance, Key extends UserFieldKeys<User>> = undefined extends FieldOutput<User, Key> ? false : true;
-type FieldIsOfType<User extends TailorDBInstance, Key extends UserFieldKeys<User>, Type extends string> = FieldDefined<User, Key> extends {
-  type: Type;
-} ? true : false;
-type FieldIsArray<User extends TailorDBInstance, Key extends UserFieldKeys<User>> = FieldDefined<User, Key> extends {
-  array: true;
-} ? true : false;
-type FieldIsUnique<User extends TailorDBInstance, Key extends UserFieldKeys<User>> = FieldDefined<User, Key> extends {
-  unique: true;
-} ? true : false;
-type FieldSupportsValueOperand<User extends TailorDBInstance, Key extends UserFieldKeys<User>> = FieldOutput<User, Key> extends ValueOperand | null | undefined ? true : false;
-type UsernameFieldKey<User extends TailorDBInstance> = IsAny<User> extends true ? string : { [K in UserFieldKeys<User>]: FieldIsRequired<User, K> extends true ? FieldIsOfType<User, K, "string"> extends true ? FieldIsArray<User, K> extends true ? never : FieldIsUnique<User, K> extends true ? K : never : never : never }[UserFieldKeys<User>];
-type UserAttributeKey<User extends TailorDBInstance> = { [K in UserFieldKeys<User>]: K extends "id" ? never : FieldSupportsValueOperand<User, K> extends true ? FieldIsOfType<User, K, "datetime" | "date" | "time"> extends true ? never : K : never }[UserFieldKeys<User>];
-type UserAttributeListKey<User extends TailorDBInstance> = { [K in UserFieldKeys<User>]: K extends "id" ? never : FieldIsOfType<User, K, "uuid"> extends true ? FieldIsArray<User, K> extends true ? never : K : never }[UserFieldKeys<User>];
-type UserAttributeMap<User extends TailorDBInstance> = { [K in UserAttributeKey<User>]?: true };
-type DisallowExtraKeys<T, Allowed extends PropertyKey> = T & { [K in Exclude<keyof T, Allowed>]: never };
-type AttributeListValue<User extends TailorDBInstance, Key extends UserAttributeListKey<User>> = Key extends keyof output<User> ? output<User>[Key] : never;
-type AttributeListToTuple<User extends TailorDBInstance, AttributeList extends readonly UserAttributeListKey<User>[]> = { [Index in keyof AttributeList]: AttributeList[Index] extends UserAttributeListKey<User> ? AttributeListValue<User, AttributeList[Index]> : never };
-type AttributeMapSelectedKeys<User extends TailorDBInstance, AttributeMap extends UserAttributeMap<User>> = Extract<{ [K in keyof AttributeMap]-?: undefined extends AttributeMap[K] ? never : K }[keyof AttributeMap], UserAttributeKey<User>>;
-type UserProfile<User extends TailorDBInstance, AttributeMap extends UserAttributeMap<User>, AttributeList extends UserAttributeListKey<User>[]> = {
-  /**
-   * TailorDB namespace where the user type is defined.
-   *
-   * Usually auto-resolved, so you don't need to specify this.
-   * Required only when multiple TailorDBs exist and the type is in an external TailorDB.
-   */
-  namespace?: string;
-  type: User;
-  usernameField: UsernameFieldKey<User>;
-  attributes?: DisallowExtraKeys<AttributeMap, UserAttributeKey<User>>;
-  attributeList?: AttributeList;
-};
-type MachineUserAttributeFields = Record<string, TailorField<DefinedFieldMetadata, unknown, FieldMetadata, TailorFieldType>>;
-type TailorFieldOutputValue<Field> = Field extends TailorField<DefinedFieldMetadata, infer Output, FieldMetadata, TailorFieldType> ? Output : never;
-type MachineUserAttributeValues<Fields extends MachineUserAttributeFields> = { [K in keyof Fields]: TailorFieldOutputValue<Fields[K]> extends ValueOperand | null | undefined ? TailorFieldOutputValue<Fields[K]> : never };
-type MachineUserFromAttributes<Fields extends MachineUserAttributeFields> = (keyof Fields extends never ? {
-  attributes?: never;
-} : {
-  attributes: DisallowExtraKeys<MachineUserAttributeValues<Fields>, keyof Fields>;
-}) & {
-  attributeList?: string[];
-};
-type MachineUser<User extends TailorDBInstance, AttributeMap extends UserAttributeMap<User> = UserAttributeMap<User>, AttributeList extends UserAttributeListKey<User>[] = [], MachineUserAttributes extends MachineUserAttributeFields | undefined = undefined> = IsAny<MachineUserAttributes> extends true ? IsAny<User> extends true ? {
-  attributes: Record<string, AuthAttributeValue>;
-  attributeList?: string[];
-} : (AttributeMapSelectedKeys<User, AttributeMap> extends never ? {
-  attributes?: never;
-} : {
-  attributes: { [K in AttributeMapSelectedKeys<User, AttributeMap>]: K extends keyof output<User> ? output<User>[K] : never } & { [K in Exclude<keyof output<User>, AttributeMapSelectedKeys<User, AttributeMap>>]?: never };
-}) & ([] extends AttributeList ? {
-  attributeList?: never;
-} : {
-  attributeList: AttributeListToTuple<User, AttributeList>;
-}) : [MachineUserAttributes] extends [MachineUserAttributeFields] ? MachineUserFromAttributes<MachineUserAttributes> : IsAny<User> extends true ? {
-  attributes: Record<string, AuthAttributeValue>;
-  attributeList?: string[];
-} : (AttributeMapSelectedKeys<User, AttributeMap> extends never ? {
-  attributes?: never;
-} : {
-  attributes: { [K in AttributeMapSelectedKeys<User, AttributeMap>]: K extends keyof output<User> ? output<User>[K] : never } & { [K in Exclude<keyof output<User>, AttributeMapSelectedKeys<User, AttributeMap>>]?: never };
-}) & ([] extends AttributeList ? {
-  attributeList?: never;
-} : {
-  attributeList: AttributeListToTuple<User, AttributeList>;
-});
-type BeforeLoginHookArgs = {
-  claims: JsonObject;
-  idpConfigName: string; /** Environment variables defined in `defineConfig({ env })`. */
-  env: TailorEnv;
-};
-type BeforeLoginHook<MachineUserNames extends string> = {
-  handler(args: BeforeLoginHookArgs): Promise<void>;
-  invoker: NoInfer<MachineUserNames>;
-};
-type AuthHooks<MachineUserNames extends string> = {
-  beforeLogin?: BeforeLoginHook<MachineUserNames>;
-};
-type AuthServiceInput<User extends TailorDBInstance, AttributeMap extends UserAttributeMap<User>, AttributeList extends UserAttributeListKey<User>[], MachineUserNames extends string, MachineUserAttributes extends MachineUserAttributeFields | undefined = MachineUserAttributeFields | undefined, ConnectionNames extends string = string> = {
-  hooks?: AuthHooks<MachineUserNames>;
-  userProfile?: UserProfile<User, AttributeMap, AttributeList>;
-  machineUserAttributes?: MachineUserAttributes;
-  machineUsers?: Record<MachineUserNames, MachineUser<User, AttributeMap, AttributeList, MachineUserAttributes>>;
-  oauth2Clients?: Record<string, OAuth2ClientInput>;
-  idProvider?: IdProvider;
-  scim?: SCIMConfig;
-  tenantProvider?: TenantProvider;
-  connections?: Record<ConnectionNames, AuthConnectionConfig>;
-  publishSessionEvents?: boolean;
-};
-declare const authDefinitionBrand: unique symbol;
-type AuthDefinitionBrand = {
-  readonly [authDefinitionBrand]: true;
-};
-type ConnectionNames<Config> = Config extends {
-  connections?: Record<infer K, unknown>;
-} ? K & string : string;
-type DefinedAuth<Name extends string, Config, MachineUserNames extends string> = Config & {
-  name: Name;
-  /**
-   * @deprecated Pass the machine user name directly as a string instead, e.g. `authInvoker: "machine-user-name"`.
-   * Using this function pulls config-layer (Node-only) dependencies into runtime bundles.
-   */
-  invoker<M extends MachineUserNames>(machineUser: M): AuthInvokerWithName<M>;
-  getConnectionToken<C extends ConnectionNames<Config>>(connectionName: C): Promise<AuthConnectionTokenResult>;
-} & AuthDefinitionBrand;
-type AuthExternalConfig = {
-  name: string;
-  external: true;
-};
-type AuthServiceInputLoose = AuthServiceInput<any, any, any, string, any>;
-type AuthOwnConfig = DefinedAuth<string, AuthServiceInputLoose, string>;
-type AuthConfig = AuthOwnConfig | AuthExternalConfig;
-//#endregion
-//#region src/types/tailordb.generated.d.ts
-/**
- * Configuration for GraphQL operations on a TailorDB type.
- * All operations are enabled by default (undefined or true = enabled, false = disabled).
- */
-type GqlOperationsInput = "query" | {
-  create?: boolean | undefined;
-  update?: boolean | undefined;
-  delete?: boolean | undefined;
-  read?: boolean | undefined;
-};
-type DBFieldMetadata$1 = {
-  /** Whether the field is required */required?: boolean | undefined; /** Whether the field is an array */
-  array?: boolean | undefined; /** Field description */
-  description?: string | undefined; /** Type name for nested or enum fields */
-  typeName?: string | undefined; /** Allowed values for enum fields */
-  allowedValues?: {
-    value: string; /** Field description */
-    description?: string | undefined;
-  }[] | undefined; /** Whether the field is indexed for faster queries */
-  index?: boolean | undefined; /** Whether the field value must be unique */
-  unique?: boolean | undefined; /** Whether the field is a vector field for similarity search */
-  vector?: boolean | undefined; /** Whether the field is a foreign key */
-  foreignKey?: boolean | undefined; /** Target type name for foreign key relations */
-  foreignKeyType?: string | undefined; /** Target field name for foreign key relations */
-  foreignKeyField?: string | undefined; /** Lifecycle hooks for the field */
-  hooks?: {
-    create?: Function | undefined;
-    update?: Function | undefined;
-  } | undefined; /** Validation functions for the field */
-  validate?: (Function | [Function, string])[] | undefined; /** Serial (auto-increment) configuration */
-  serial?: {
-    start: number;
-    maxValue?: number | undefined;
-    format?: string | undefined;
-  } | undefined; /** Decimal scale (number of digits after decimal point, 0-12) */
-  scale?: number | undefined;
-};
-type TailorDBTypeParsedSettings = {
-  /** Custom plural form of the type name for GraphQL */pluralForm?: string | undefined; /** Enable aggregation queries for this type */
-  aggregation?: boolean | undefined; /** Enable bulk upsert mutation for this type */
-  bulkUpsert?: boolean | undefined; /** Configure GraphQL operations for this type. Use "query" for read-only mode, or an object for granular control. */
-  gqlOperations?: {
-    create?: boolean | undefined;
-    update?: boolean | undefined;
-    delete?: boolean | undefined;
-    read?: boolean | undefined;
-  } | undefined;
-  /**
-   * Enable publishing events for this type.
-   * When enabled, record creation/update/deletion events are published.
-   * If not specified, this is automatically set to true when an executor uses this type
-   * with recordCreated/recordUpdated/recordDeleted triggers. If explicitly set to false
-   * while an executor uses this type, an error will be thrown during apply.
-   */
-  publishEvents?: boolean | undefined;
-};
-type RawPermissions = {
-  record?: {
-    create: readonly (readonly [(string | boolean | string[] | boolean[] | {
-      user: string;
-    } | {
-      record: string;
-    } | {
-      oldRecord: string;
-    } | {
-      newRecord: string;
-    }), "=" | "!=" | "in" | "not in" | "hasAny" | "not hasAny", (string | boolean | string[] | boolean[] | {
-      user: string;
-    } | {
-      record: string;
-    } | {
-      oldRecord: string;
-    } | {
-      newRecord: string;
-    })] | readonly [(string | boolean | string[] | boolean[] | {
-      user: string;
-    } | {
-      record: string;
-    } | {
-      oldRecord: string;
-    } | {
-      newRecord: string;
-    }), "=" | "!=" | "in" | "not in" | "hasAny" | "not hasAny", (string | boolean | string[] | boolean[] | {
-      user: string;
-    } | {
-      record: string;
-    } | {
-      oldRecord: string;
-    } | {
-      newRecord: string;
-    }), boolean] | readonly (boolean | readonly [(string | boolean | string[] | boolean[] | {
-      user: string;
-    } | {
-      record: string;
-    } | {
-      oldRecord: string;
-    } | {
-      newRecord: string;
-    }), "=" | "!=" | "in" | "not in" | "hasAny" | "not hasAny", (string | boolean | string[] | boolean[] | {
-      user: string;
-    } | {
-      record: string;
-    } | {
-      oldRecord: string;
-    } | {
-      newRecord: string;
-    })])[] | {
-      conditions: readonly [(string | boolean | string[] | boolean[] | {
-        user: string;
-      } | {
-        record: string;
-      } | {
-        oldRecord: string;
-      } | {
-        newRecord: string;
-      }), "=" | "!=" | "in" | "not in" | "hasAny" | "not hasAny", (string | boolean | string[] | boolean[] | {
-        user: string;
-      } | {
-        record: string;
-      } | {
-        oldRecord: string;
-      } | {
-        newRecord: string;
-      })] | readonly (readonly [(string | boolean | string[] | boolean[] | {
-        user: string;
-      } | {
-        record: string;
-      } | {
-        oldRecord: string;
-      } | {
-        newRecord: string;
-      }), "=" | "!=" | "in" | "not in" | "hasAny" | "not hasAny", (string | boolean | string[] | boolean[] | {
-        user: string;
-      } | {
-        record: string;
-      } | {
-        oldRecord: string;
-      } | {
-        newRecord: string;
-      })])[];
-      description?: string | undefined;
-      permit?: boolean | undefined;
-    })[];
-    read: readonly (readonly [(string | boolean | string[] | boolean[] | {
-      user: string;
-    } | {
-      record: string;
-    } | {
-      oldRecord: string;
-    } | {
-      newRecord: string;
-    }), "=" | "!=" | "in" | "not in" | "hasAny" | "not hasAny", (string | boolean | string[] | boolean[] | {
-      user: string;
-    } | {
-      record: string;
-    } | {
-      oldRecord: string;
-    } | {
-      newRecord: string;
-    })] | readonly [(string | boolean | string[] | boolean[] | {
-      user: string;
-    } | {
-      record: string;
-    } | {
-      oldRecord: string;
-    } | {
-      newRecord: string;
-    }), "=" | "!=" | "in" | "not in" | "hasAny" | "not hasAny", (string | boolean | string[] | boolean[] | {
-      user: string;
-    } | {
-      record: string;
-    } | {
-      oldRecord: string;
-    } | {
-      newRecord: string;
-    }), boolean] | readonly (boolean | readonly [(string | boolean | string[] | boolean[] | {
-      user: string;
-    } | {
-      record: string;
-    } | {
-      oldRecord: string;
-    } | {
-      newRecord: string;
-    }), "=" | "!=" | "in" | "not in" | "hasAny" | "not hasAny", (string | boolean | string[] | boolean[] | {
-      user: string;
-    } | {
-      record: string;
-    } | {
-      oldRecord: string;
-    } | {
-      newRecord: string;
-    })])[] | {
-      conditions: readonly [(string | boolean | string[] | boolean[] | {
-        user: string;
-      } | {
-        record: string;
-      } | {
-        oldRecord: string;
-      } | {
-        newRecord: string;
-      }), "=" | "!=" | "in" | "not in" | "hasAny" | "not hasAny", (string | boolean | string[] | boolean[] | {
-        user: string;
-      } | {
-        record: string;
-      } | {
-        oldRecord: string;
-      } | {
-        newRecord: string;
-      })] | readonly (readonly [(string | boolean | string[] | boolean[] | {
-        user: string;
-      } | {
-        record: string;
-      } | {
-        oldRecord: string;
-      } | {
-        newRecord: string;
-      }), "=" | "!=" | "in" | "not in" | "hasAny" | "not hasAny", (string | boolean | string[] | boolean[] | {
-        user: string;
-      } | {
-        record: string;
-      } | {
-        oldRecord: string;
-      } | {
-        newRecord: string;
-      })])[];
-      description?: string | undefined;
-      permit?: boolean | undefined;
-    })[];
-    update: readonly (readonly [(string | boolean | string[] | boolean[] | {
-      user: string;
-    } | {
-      record: string;
-    } | {
-      oldRecord: string;
-    } | {
-      newRecord: string;
-    }), "=" | "!=" | "in" | "not in" | "hasAny" | "not hasAny", (string | boolean | string[] | boolean[] | {
-      user: string;
-    } | {
-      record: string;
-    } | {
-      oldRecord: string;
-    } | {
-      newRecord: string;
-    })] | readonly [(string | boolean | string[] | boolean[] | {
-      user: string;
-    } | {
-      record: string;
-    } | {
-      oldRecord: string;
-    } | {
-      newRecord: string;
-    }), "=" | "!=" | "in" | "not in" | "hasAny" | "not hasAny", (string | boolean | string[] | boolean[] | {
-      user: string;
-    } | {
-      record: string;
-    } | {
-      oldRecord: string;
-    } | {
-      newRecord: string;
-    }), boolean] | readonly (boolean | readonly [(string | boolean | string[] | boolean[] | {
-      user: string;
-    } | {
-      record: string;
-    } | {
-      oldRecord: string;
-    } | {
-      newRecord: string;
-    }), "=" | "!=" | "in" | "not in" | "hasAny" | "not hasAny", (string | boolean | string[] | boolean[] | {
-      user: string;
-    } | {
-      record: string;
-    } | {
-      oldRecord: string;
-    } | {
-      newRecord: string;
-    })])[] | {
-      conditions: readonly [(string | boolean | string[] | boolean[] | {
-        user: string;
-      } | {
-        record: string;
-      } | {
-        oldRecord: string;
-      } | {
-        newRecord: string;
-      }), "=" | "!=" | "in" | "not in" | "hasAny" | "not hasAny", (string | boolean | string[] | boolean[] | {
-        user: string;
-      } | {
-        record: string;
-      } | {
-        oldRecord: string;
-      } | {
-        newRecord: string;
-      })] | readonly (readonly [(string | boolean | string[] | boolean[] | {
-        user: string;
-      } | {
-        record: string;
-      } | {
-        oldRecord: string;
-      } | {
-        newRecord: string;
-      }), "=" | "!=" | "in" | "not in" | "hasAny" | "not hasAny", (string | boolean | string[] | boolean[] | {
-        user: string;
-      } | {
-        record: string;
-      } | {
-        oldRecord: string;
-      } | {
-        newRecord: string;
-      })])[];
-      description?: string | undefined;
-      permit?: boolean | undefined;
-    })[];
-    delete: readonly (readonly [(string | boolean | string[] | boolean[] | {
-      user: string;
-    } | {
-      record: string;
-    } | {
-      oldRecord: string;
-    } | {
-      newRecord: string;
-    }), "=" | "!=" | "in" | "not in" | "hasAny" | "not hasAny", (string | boolean | string[] | boolean[] | {
-      user: string;
-    } | {
-      record: string;
-    } | {
-      oldRecord: string;
-    } | {
-      newRecord: string;
-    })] | readonly [(string | boolean | string[] | boolean[] | {
-      user: string;
-    } | {
-      record: string;
-    } | {
-      oldRecord: string;
-    } | {
-      newRecord: string;
-    }), "=" | "!=" | "in" | "not in" | "hasAny" | "not hasAny", (string | boolean | string[] | boolean[] | {
-      user: string;
-    } | {
-      record: string;
-    } | {
-      oldRecord: string;
-    } | {
-      newRecord: string;
-    }), boolean] | readonly (boolean | readonly [(string | boolean | string[] | boolean[] | {
-      user: string;
-    } | {
-      record: string;
-    } | {
-      oldRecord: string;
-    } | {
-      newRecord: string;
-    }), "=" | "!=" | "in" | "not in" | "hasAny" | "not hasAny", (string | boolean | string[] | boolean[] | {
-      user: string;
-    } | {
-      record: string;
-    } | {
-      oldRecord: string;
-    } | {
-      newRecord: string;
-    })])[] | {
-      conditions: readonly [(string | boolean | string[] | boolean[] | {
-        user: string;
-      } | {
-        record: string;
-      } | {
-        oldRecord: string;
-      } | {
-        newRecord: string;
-      }), "=" | "!=" | "in" | "not in" | "hasAny" | "not hasAny", (string | boolean | string[] | boolean[] | {
-        user: string;
-      } | {
-        record: string;
-      } | {
-        oldRecord: string;
-      } | {
-        newRecord: string;
-      })] | readonly (readonly [(string | boolean | string[] | boolean[] | {
-        user: string;
-      } | {
-        record: string;
-      } | {
-        oldRecord: string;
-      } | {
-        newRecord: string;
-      }), "=" | "!=" | "in" | "not in" | "hasAny" | "not hasAny", (string | boolean | string[] | boolean[] | {
-        user: string;
-      } | {
-        record: string;
-      } | {
-        oldRecord: string;
-      } | {
-        newRecord: string;
-      })])[];
-      description?: string | undefined;
-      permit?: boolean | undefined;
-    })[];
-  } | undefined;
-  gql?: readonly {
-    conditions: readonly (readonly [(string | boolean | string[] | boolean[] | {
-      user: string;
-    }), "=" | "!=" | "in" | "not in" | "hasAny" | "not hasAny", (string | boolean | string[] | boolean[] | {
-      user: string;
-    })])[];
-    actions: "all" | readonly ("create" | "read" | "update" | "delete" | "aggregate" | "bulkUpsert")[];
-    permit?: boolean | undefined;
-    description?: string | undefined;
-  }[] | undefined;
-};
-type TailorDBServiceConfigInput = {
-  /** Glob patterns for TailorDB type definition files */files: string[]; /** Glob patterns to exclude from type discovery */
-  ignores?: string[] | undefined; /** URL for the ERD (Entity Relationship Diagram) site */
-  erdSite?: string | undefined; /** Migration configuration */
-  migration?: {
-    directory: string;
-    machineUser?: string | undefined;
-  } | undefined; /** Default GraphQL operations for all types in this service */
-  gqlOperations?: "query" | {
-    create?: boolean | undefined;
-    update?: boolean | undefined;
-    delete?: boolean | undefined;
-    read?: boolean | undefined;
-  } | undefined;
-};
-//#endregion
-//#region src/types/tailordb.d.ts
-type SerialConfig<T extends "string" | "integer" = "string" | "integer"> = Prettify<{
-  start: number;
-  maxValue?: number;
-} & (T extends "string" ? {
-  format?: string;
-} : object)>;
-interface DBFieldMetadata extends FieldMetadata {
-  index?: boolean;
-  unique?: boolean;
-  vector?: boolean;
-  foreignKey?: boolean;
-  foreignKeyType?: string;
-  foreignKeyField?: string;
-  /** Lifecycle hooks for the field */
-  hooks?: DBFieldMetadata$1["hooks"];
-  serial?: SerialConfig;
-  relation?: boolean;
-  scale?: number;
-}
-interface DefinedDBFieldMetadata extends DefinedFieldMetadata {
-  index?: boolean;
-  unique?: boolean;
-  vector?: boolean;
-  foreignKey?: boolean;
-  foreignKeyType?: boolean;
-  validate?: boolean;
-  hooks?: {
-    create: boolean;
-    update: boolean;
-  };
-  serial?: boolean;
-  relation?: boolean;
-}
-type IndexDef<T extends {
-  fields: Record<PropertyKey, unknown>;
-}> = {
-  fields: [keyof T["fields"], keyof T["fields"], ...(keyof T["fields"])[]];
-  unique?: boolean;
-  name?: string;
-};
-type GqlOperationsConfig = GqlOperationsInput;
-type RelationType = "1-1" | "oneToOne" | "n-1" | "manyToOne" | "N-1" | "keyOnly";
-type TailorDBExternalConfig = {
-  external: true;
-};
-type TailorDBServiceInput = {
-  [namespace: string]: TailorDBServiceConfigInput | TailorDBExternalConfig;
-};
-interface UserDefinedTypeSource {
-  filePath: string;
-  exportName: string;
-  pluginId?: never;
-}
-interface PluginGeneratedTypeSource {
-  filePath?: never;
-  exportName: string;
-  pluginId: string;
-  pluginImportPath: string;
-  originalFilePath: string;
-  originalExportName: string;
-  generatedTypeKind?: string;
-  pluginConfig?: unknown;
-  namespace?: string;
-}
-type TypeSourceInfoEntry = UserDefinedTypeSource | PluginGeneratedTypeSource;
-interface Script {
-  expr: string;
-}
-interface OperatorValidateConfig {
-  script: Script;
-  errorMessage: string;
-}
-interface OperatorFieldHook {
-  create?: Script;
-  update?: Script;
-}
-interface RawRelationConfig {
-  type: "1-1" | "n-1" | "keyOnly" | "oneToOne" | "manyToOne" | "N-1";
-  toward: {
-    type: string;
-    as?: string;
-    key?: string;
-  };
-  backward?: string;
-}
-interface OperatorFieldConfig {
-  type: string;
-  required?: boolean;
-  description?: string;
-  allowedValues?: EnumValue[];
-  array?: boolean;
-  index?: boolean;
-  unique?: boolean;
-  vector?: boolean;
-  foreignKey?: boolean;
-  foreignKeyType?: string;
-  foreignKeyField?: string;
-  rawRelation?: RawRelationConfig;
-  validate?: OperatorValidateConfig[];
-  hooks?: OperatorFieldHook;
-  serial?: {
-    start: number;
-    maxValue?: number;
-    format?: string;
-  };
-  scale?: number;
-  fields?: Record<string, OperatorFieldConfig>;
-}
-type GqlPermissionAction = "read" | "create" | "update" | "delete" | "aggregate" | "bulkUpsert";
-type StandardPermissionOperator = "eq" | "ne" | "in" | "nin" | "hasAny" | "nhasAny";
-type UserOperand = {
-  user: string;
-};
-type StandardRecordOperand<Update extends boolean = false> = Update extends true ? {
-  oldRecord: string;
-} | {
-  newRecord: string;
-} : {
-  record: string;
-};
-type PermissionOperand<Level extends "record" | "gql" = "record" | "gql", Update extends boolean = boolean> = UserOperand | ValueOperand | (Level extends "record" ? StandardRecordOperand<Update> : never);
-type StandardPermissionCondition<Level extends "record" | "gql" = "record" | "gql", Update extends boolean = boolean> = readonly [PermissionOperand<Level, Update>, StandardPermissionOperator, PermissionOperand<Level, Update>];
-type StandardActionPermission<Level extends "record" | "gql" = "record" | "gql", Update extends boolean = boolean> = {
-  conditions: readonly StandardPermissionCondition<Level, Update>[];
-  description?: string;
-  permit: "allow" | "deny";
-};
-type StandardTailorTypePermission = {
-  create: readonly StandardActionPermission<"record", false>[];
-  read: readonly StandardActionPermission<"record", false>[];
-  update: readonly StandardActionPermission<"record", true>[];
-  delete: readonly StandardActionPermission<"record", false>[];
-};
-type StandardGqlPermissionPolicy = {
-  conditions: readonly StandardPermissionCondition<"gql">[];
-  actions: readonly ["all"] | readonly GqlPermissionAction[];
-  permit: "allow" | "deny";
-  description?: string;
-};
-type StandardTailorTypeGqlPermission = readonly StandardGqlPermissionPolicy[];
-interface Permissions {
-  record?: StandardTailorTypePermission;
-  gql?: StandardTailorTypeGqlPermission;
-}
-interface TailorDBTypeMetadata {
-  name: string;
-  description?: string;
-  settings?: {
-    pluralForm?: string;
-    aggregation?: boolean;
-    bulkUpsert?: boolean;
-    gqlOperations?: GqlOperationsConfig;
-    publishEvents?: boolean;
-  };
-  permissions: RawPermissions;
-  files: Record<string, string>;
-  indexes?: Record<string, {
-    fields: string[];
-    unique?: boolean;
-  }>;
-}
-interface ParsedField {
-  name: string;
-  config: OperatorFieldConfig;
-  relation?: {
-    targetType: string;
-    forwardName: string;
-    backwardName: string;
-    key: string;
-    unique: boolean;
-  };
-}
-interface ParsedRelationship {
-  name: string;
-  targetType: string;
-  targetField: string;
-  sourceField: string;
-  isArray: boolean;
-  description: string;
-}
-interface TailorDBType$1 {
-  name: string;
-  pluralForm: string;
-  description?: string;
-  fields: Record<string, ParsedField>;
-  forwardRelationships: Record<string, ParsedRelationship>;
-  backwardRelationships: Record<string, ParsedRelationship>;
-  settings: TailorDBTypeParsedSettings;
-  permissions: Permissions;
-  indexes?: TailorDBTypeMetadata["indexes"];
-  files?: TailorDBTypeMetadata["files"];
-}
-//#endregion
-//#region src/types/plugin-generation.d.ts
-/**
- * A single generated file to write to disk.
- */
-interface GeneratedFile {
-  path: string;
-  content: string;
-  skipIfExists?: boolean;
-  executable?: boolean;
-}
-/**
- * Result returned by generation-time hooks.
- */
-interface GeneratorResult {
-  files: GeneratedFile[];
-  errors?: string[];
-}
-/**
- * Auth configuration available to generation-time hooks.
- */
-interface GeneratorAuthInput {
-  name: string;
-  userProfile?: {
-    typeName: string;
-    namespace: string;
-    usernameField: string;
-  };
-  machineUsers?: Record<string, {
-    attributes: Record<string, unknown>;
-  }>;
-  oauth2Clients?: Record<string, OAuth2ClientInput>;
-  idProvider?: IdProvider;
-}
-/**
- * Namespace-level TailorDB data available to generation-time hooks.
- */
-interface TailorDBNamespaceData {
-  /** Namespace name */
-  namespace: string;
-  /** All TailorDB types in this namespace, keyed by type name */
-  types: Record<string, TailorDBType$1>;
-  /** Source info for each type (file path, export name, plugin info) */
-  sourceInfo: ReadonlyMap<string, TypeSourceInfoEntry>;
-  /** Plugin attachments configured on each type via .plugin() method */
-  pluginAttachments: ReadonlyMap<string, readonly PluginAttachment[]>;
-}
-/**
- * Namespace-level resolver data available to generation-time hooks.
- */
-interface ResolverNamespaceData {
-  /** Namespace name */
-  namespace: string;
-  /** All resolvers in this namespace, keyed by resolver name */
-  resolvers: Record<string, Resolver>;
-}
-/**
- * Context passed to plugin's onTailorDBReady hook.
- * @template PluginConfig - Plugin-level configuration type
- */
-interface TailorDBReadyContext<PluginConfig = unknown> {
-  /** All TailorDB namespaces with their types and metadata */
-  tailordb: TailorDBNamespaceData[];
-  /** Auth configuration */
-  auth?: GeneratorAuthInput;
-  /** Base directory for generated files */
-  baseDir: string;
-  /** Path to tailor.config.ts */
-  configPath: string;
-  /** Plugin-level configuration passed via definePlugins() */
-  pluginConfig: PluginConfig;
-}
-/**
- * Context passed to plugin's onResolverReady hook.
- * @template PluginConfig - Plugin-level configuration type
- */
-interface ResolverReadyContext<PluginConfig = unknown> {
-  /** All TailorDB namespaces with their types and metadata */
-  tailordb: TailorDBNamespaceData[];
-  /** All resolver namespaces with their resolvers */
-  resolvers: ResolverNamespaceData[];
-  /** Auth configuration */
-  auth?: GeneratorAuthInput;
-  /** Base directory for generated files */
-  baseDir: string;
-  /** Path to tailor.config.ts */
-  configPath: string;
-  /** Plugin-level configuration passed via definePlugins() */
-  pluginConfig: PluginConfig;
-}
-/**
- * Context passed to plugin's onExecutorReady hook.
- * @template PluginConfig - Plugin-level configuration type
- */
-interface ExecutorReadyContext<PluginConfig = unknown> {
-  /** All TailorDB namespaces with their types and metadata */
-  tailordb: TailorDBNamespaceData[];
-  /** All resolver namespaces with their resolvers */
-  resolvers: ResolverNamespaceData[];
-  /** All executors, keyed by executor name */
-  executors: Record<string, Executor>;
-  /** Auth configuration */
-  auth?: GeneratorAuthInput;
-  /** Base directory for generated files */
-  baseDir: string;
-  /** Path to tailor.config.ts */
-  configPath: string;
-  /** Plugin-level configuration passed via definePlugins() */
-  pluginConfig: PluginConfig;
-}
-//#endregion
-//#region src/types/plugin.d.ts
-type TypeConfigRequired<PluginConfig = unknown> = boolean | ((pluginConfig: PluginConfig | undefined) => boolean);
-/**
- * Interface for plugin configuration mapping.
- * Extend this interface via declaration merging to add typed plugin configs.
- */
-interface PluginConfigs<Fields extends string = string> {}
-/**
- * Plugin attachment stored on TailorAnyDBType instances.
- */
-interface PluginAttachment {
-  pluginId: string;
-  config: unknown;
-}
-/**
- * Context passed to plugin's process method
- */
-interface PluginProcessContext<TypeConfig = unknown, PluginConfig = unknown> {
-  type: TailorAnyDBType;
-  typeConfig: TypeConfig;
-  pluginConfig: PluginConfig;
-  namespace: string;
-}
-/**
- * Context passed to plugin's onNamespaceLoaded hook.
- */
-interface PluginNamespaceProcessContext<PluginConfig = unknown> {
-  pluginConfig: PluginConfig;
-  namespace: string;
-}
-/**
- * Interface representing a TailorDB type for plugin output.
- */
-interface TailorDBTypeForPlugin {
-  readonly name: string;
-  readonly fields: Record<string, unknown>;
-}
-type PluginGeneratedType = TailorDBTypeForPlugin;
-type PluginGeneratedTypes = Record<string, PluginGeneratedType>;
-interface PluginGeneratedResolver {
-  name: string;
-  operation: "query" | "mutation";
-  inputFields?: Record<string, unknown>;
-  outputFields: Record<string, unknown>;
-  body: string;
-}
-interface PluginRecordTriggerConfig {
-  kind: "tailordb";
-  events: ("tailordb.type_record.created" | "tailordb.type_record.updated" | "tailordb.type_record.deleted")[];
-  typeName: string;
-}
-interface PluginScheduleTriggerConfig {
-  kind: "schedule";
-  cron: string;
-  timezone?: string;
-}
-interface PluginIncomingWebhookTriggerConfig {
-  kind: "incomingWebhook";
-}
-type PluginTriggerConfig = PluginRecordTriggerConfig | PluginScheduleTriggerConfig | PluginIncomingWebhookTriggerConfig;
-type PluginInjectValue = string | number | boolean | null;
-type PluginInjectMap = Record<string, PluginInjectValue>;
-interface PluginFunctionOperationConfig {
-  kind: "function";
-  body: string;
-  inject?: PluginInjectMap;
-}
-interface PluginGraphQLOperationConfig {
-  kind: "graphql";
-  query: string;
-  appName?: string;
-  variables?: string;
-}
-interface PluginWebhookOperationConfig {
-  kind: "webhook";
-  url: string;
-}
-interface PluginWorkflowOperationConfig {
-  kind: "workflow";
-  workflowName: string;
-}
-type PluginOperationConfig = PluginFunctionOperationConfig | PluginGraphQLOperationConfig | PluginWebhookOperationConfig | PluginWorkflowOperationConfig;
-type PluginExecutorContextValue = TailorAnyDBType | string | number | boolean | null | undefined;
-interface PluginExecutorContextBase {
-  sourceType: TailorAnyDBType | null;
-  namespace: string;
-}
-type PluginExecutorContext = PluginExecutorContextBase & {
-  [key: string]: PluginExecutorContextValue;
-};
-interface PluginExecutorModule {
-  default: unknown;
-}
-interface PluginGeneratedExecutorWithFile<Ctx = PluginExecutorContext> {
-  name: string;
-  resolve: () => Promise<PluginExecutorModule>;
-  context: Ctx;
-}
-interface PluginGeneratedExecutorLegacy {
-  name: string;
-  description?: string;
-  trigger: PluginTriggerConfig;
-  operation: PluginOperationConfig;
-}
-type PluginGeneratedExecutor = PluginGeneratedExecutorWithFile | PluginGeneratedExecutorLegacy;
-interface PluginExtends {
-  fields?: Record<string, TailorAnyDBField>;
-}
-interface PluginOutput {
-  types?: PluginGeneratedTypes;
-  resolvers?: PluginGeneratedResolver[];
-  executors?: PluginGeneratedExecutor[];
-}
-interface TypePluginOutput extends PluginOutput {
-  extends?: PluginExtends;
-}
-type NamespacePluginOutput = PluginOutput;
-/**
- * Plugin interface that all plugins must implement.
- * @template TypeConfig - Type for per-type configuration passed via .plugin() method
- * @template PluginConfig - Type for plugin-level configuration passed via definePlugins()
- */
-interface Plugin<TypeConfig = unknown, PluginConfig = unknown> {
-  readonly id: string;
-  readonly description: string;
-  readonly importPath?: string;
-  readonly typeConfigRequired?: TypeConfigRequired<PluginConfig>;
-  readonly pluginConfig?: PluginConfig;
-  onTypeLoaded?(context: PluginProcessContext<TypeConfig, PluginConfig>): TypePluginOutput | Promise<TypePluginOutput>;
-  onNamespaceLoaded?(context: PluginNamespaceProcessContext<PluginConfig>): NamespacePluginOutput | Promise<NamespacePluginOutput>;
-  onTailorDBReady?(context: TailorDBReadyContext<PluginConfig>): GeneratorResult | Promise<GeneratorResult>;
-  onResolverReady?(context: ResolverReadyContext<PluginConfig>): GeneratorResult | Promise<GeneratorResult>;
-  onExecutorReady?(context: ExecutorReadyContext<PluginConfig>): GeneratorResult | Promise<GeneratorResult>;
-}
-//#endregion
-//#region src/types/tailor-db-field.d.ts
-/**
- * Minimal structural interface for TailorDBField.
- * Defines only the properties needed by parser, plugin, cli, and types layers.
- * The full interface with builder methods (relation, index, unique, hooks, validate, etc.)
- * is defined in configure/services/tailordb/schema.ts.
- */
-interface TailorDBField<Defined extends DefinedDBFieldMetadata = DefinedDBFieldMetadata, Output = any> extends Omit<TailorField<Defined, Output, DBFieldMetadata, Defined["type"]>, "fields"> {
-  readonly fields: Record<string, TailorAnyDBField>;
-  readonly rawRelation: Readonly<RawRelationConfig> | undefined;
-}
-type TailorAnyDBField = TailorDBField<any, any>;
-/**
- * Minimal structural interface for TailorDBType.
- * Defines only the properties needed by parser, plugin, cli, and types layers.
- * The full interface with builder methods (hooks, validate, features, permission, etc.)
- * is defined in configure/services/tailordb/schema.ts.
- */
-interface TailorDBType<Fields extends Record<string, TailorAnyDBField> = any, User extends object = InferredAttributeMap> {
-  readonly name: string;
-  readonly fields: Fields;
-  readonly _output: InferFieldsOutput<Fields>;
-  readonly metadata: TailorDBTypeMetadata;
-  readonly plugins: PluginAttachment[];
-}
-type TailorAnyDBType = TailorDBType<any, any>;
-type TailorDBInstance<Fields extends Record<string, TailorAnyDBField> = any, User extends object = InferredAttributeMap> = TailorDBType<Fields, User>;
-//#endregion
-export { ResolverInput as $, RelationType as A, FieldMetadata as At, BeforeLoginHookArgs as B, InferredAttributeMap as Bt, ResolverReadyContext as C, SCIMAuthorization as Ct, DefinedDBFieldMetadata as D, ArrayFieldOutput as Dt, DBFieldMetadata as E, TenantProvider as Et, AuthConfig as F, FieldValidateInput as Ft, UserAttributeListKey as G, JsonCompatible as Gt, OAuth2ClientGrantType as H, TailorUser as Ht, AuthConnectionTokenResult as I, Validators as It, ValueOperand as J, output as Jt, UserAttributeMap as K, JsonValue as Kt, AuthExternalConfig as L, AttributeList as Lt, TailorDBServiceInput as M, FieldOutput$1 as Mt, TailorDBType$1 as N, TailorFieldType as Nt, GqlOperationsConfig as O, DefinedFieldMetadata as Ot, TypeSourceInfoEntry as P, TailorToTs as Pt, Resolver as Q, AuthOwnConfig as R, AttributeMap as Rt, ResolverNamespaceData as S, SCIMAttributeMapping as St, TailorDBReadyContext as T, SCIMResource as Tt, SCIMAttributeType as U, unauthenticatedTailorUser as Ut, DefinedAuth as V, TailorInvoker as Vt, UserAttributeKey as W, InferFieldsOutput as Wt, AuthConnectionConfig as X, TailorField as Y, AuthConnectionOAuth2Config as Z, PluginProcessContext as _, IdProvider as _t, NamespacePluginOutput as a, FunctionOperation as at, ExecutorReadyContext as b, SAML as bt, PluginConfigs as c, IncomingWebhookTrigger as ct, PluginGeneratedExecutor as d, TailorDBTrigger as dt, GeneratorConfig as et, PluginGeneratedExecutorWithFile as f, WebhookOperation as ft, PluginOutput as g, IDToken as gt, PluginNamespaceProcessContext as h, BuiltinIdP as ht, TailorDBType as i, ExecutorInput as it, SerialConfig as j, FieldOptions as jt, IndexDef as k, EnumValue as kt, PluginExecutorContext as l, ResolverExecutedTrigger as lt, PluginGeneratedType as m, AuthInvoker as mt, TailorAnyDBType as n, AuthAccessTokenTrigger as nt, Plugin as o, GqlOperation as ot, PluginGeneratedResolver as p, WorkflowOperation as pt, UsernameFieldKey as q, Prettify as qt, TailorDBField as r, Executor as rt, PluginAttachment as s, IdpUserTrigger as st, TailorAnyDBField as t, BaseGeneratorConfig as tt, PluginExecutorContextBase as u, ScheduleTriggerInput as ut, TailorDBTypeForPlugin as v, OAuth2ClientInput as vt, TailorDBNamespaceData as w, SCIMConfig as wt, GeneratorResult as x, SCIMAttribute as xt, TypePluginOutput as y, OIDC as yt, AuthServiceInput as z, InferredAttributeList as zt };
-//# sourceMappingURL=tailor-db-field-D0qg8s4U.d.mts.map