@tailor-platform/sdk 1.66.1 → 1.67.1

package/dist/service-wI3Hvrgx.mjs.map

@@ -1 +1 @@
-{"version":3,"file":"service-wI3Hvrgx.mjs","names":[],"sources":["../src/parser/service/common.ts","../src/cli/services/file-loader.ts","../src/parser/service/auth-connection/schema.ts","../src/parser/service/field/schema.ts","../src/parser/service/auth/schema.ts","../src/parser/service/executor/schema.ts","../src/cli/services/executor/service.ts"],"sourcesContent":["import { z } from \"zod\";\n\n// Use `z.custom` instead of `z.function`, since `z.function` changes `toString` representation.\n// eslint-disable-next-line @typescript-eslint/no-unsafe-function-type\nexport const functionSchema = z.custom<Function>((val) => typeof val === \"function\");\n","import * as fs from \"node:fs\";\nimport * as path from \"pathe\";\nimport { logger } from \"@/cli/shared/logger\";\n\nexport interface FileLoadConfig {\n  files: string[];\n  ignores?: string[];\n}\n\nconst DEFAULT_IGNORE_PATTERNS = [\"**/*.test.ts\", \"**/*.spec.ts\"];\n\n/**\n * Load files matching the given patterns, excluding files that match ignore patterns.\n * By default, test files (*.test.ts, *.spec.ts) are excluded unless ignores is explicitly specified.\n * @param config - Configuration with files patterns and optional ignores patterns\n * @returns Array of absolute file paths\n */\nexport function loadFilesWithIgnores(config: FileLoadConfig): string[] {\n  // Use user-provided patterns if specified, otherwise use defaults\n  const ignorePatterns = config.ignores ?? DEFAULT_IGNORE_PATTERNS;\n\n  const ignoreFiles = new Set<string>();\n  for (const ignorePattern of ignorePatterns) {\n    const absoluteIgnorePattern = path.resolve(process.cwd(), ignorePattern);\n    try {\n      const matchedIgnoreFiles = fs.globSync(absoluteIgnorePattern);\n      matchedIgnoreFiles.forEach((file) => ignoreFiles.add(file));\n    } catch (error) {\n      logger.warn(`Failed to glob ignore pattern \"${ignorePattern}\": ${String(error)}`);\n    }\n  }\n\n  const files: string[] = [];\n  for (const pattern of config.files) {\n    const absolutePattern = path.resolve(process.cwd(), pattern);\n    try {\n      const matchedFiles = fs.globSync(absolutePattern);\n      // Filter out ignored files\n      const filteredFiles = matchedFiles.filter((file) => !ignoreFiles.has(file));\n      files.push(...filteredFiles);\n    } catch (error) {\n      logger.warn(`Failed to glob pattern \"${pattern}\": ${String(error)}`);\n    }\n  }\n\n  return files;\n}\n","import { z } from \"zod\";\n\nexport const AuthConnectionOAuth2ConfigSchema = z.object({\n  providerUrl: z.string().describe(\"OAuth2 provider URL\"),\n  issuerUrl: z.string().describe(\"OAuth2 issuer URL\"),\n  clientId: z.string().describe(\"OAuth2 client ID\"),\n  clientSecret: z.string().describe(\"OAuth2 client secret\"),\n  authUrl: z.string().optional().describe(\"OAuth2 authorization endpoint override\"),\n  tokenUrl: z.string().optional().describe(\"OAuth2 token endpoint override\"),\n});\n\nexport const AuthConnectionConfigSchema = z\n  .object({\n    type: z.literal(\"oauth2\").describe(\"Connection type\"),\n  })\n  .and(AuthConnectionOAuth2ConfigSchema);\n","import { z } from \"zod\";\nimport { functionSchema } from \"../common\";\n\nconst TailorFieldTypeSchema = z.enum([\n  \"uuid\",\n  \"string\",\n  \"boolean\",\n  \"integer\",\n  \"float\",\n  \"decimal\",\n  \"enum\",\n  \"date\",\n  \"datetime\",\n  \"time\",\n  \"nested\",\n]);\n\nconst AllowedValueSchema = z.object({\n  value: z.string().describe(\"The allowed value\"),\n  description: z.string().optional().describe(\"Description of the allowed value\"),\n});\n\nconst FieldMetadataSchema = z.object({\n  required: z.boolean().optional().describe(\"Whether the field is required\"),\n  array: z.boolean().optional().describe(\"Whether the field is an array\"),\n  description: z.string().optional().describe(\"Field description\"),\n  allowedValues: z.array(AllowedValueSchema).optional().describe(\"Allowed values for enum fields\"),\n  hooks: z\n    .object({\n      create: functionSchema.optional().describe(\"Hook function called on creation\"),\n      update: functionSchema.optional().describe(\"Hook function called on update\"),\n    })\n    .optional()\n    .describe(\"Lifecycle hooks\"),\n  typeName: z.string().optional().describe(\"Type name for nested or enum fields\"),\n});\n\nexport const TailorFieldSchema = z.object({\n  type: TailorFieldTypeSchema.describe(\"Field data type\"),\n  metadata: FieldMetadataSchema.describe(\"Field metadata configuration\"),\n  get fields() {\n    return z.record(z.string(), TailorFieldSchema);\n  },\n});\n","import { z } from \"zod\";\nimport { AuthConnectionConfigSchema } from \"@/parser/service/auth-connection\";\nimport { TailorFieldSchema } from \"@/parser/service/field/schema\";\nimport type { ValueOperand } from \"@/types/auth\";\n\nexport const AuthInvokerObjectSchema = z.object({\n  namespace: z.string().describe(\"Auth namespace\"),\n  machineUserName: z.string().describe(\"Machine user name for authentication\"),\n});\n\nexport const AuthInvokerSchema = z.union([\n  z.string().describe(\"Machine user name (namespace auto-resolved from auth service)\"),\n  AuthInvokerObjectSchema,\n]);\n\nconst secretValueSchema = z.object({\n  vaultName: z.string().describe(\"Vault name containing the secret\"),\n  secretKey: z.string().describe(\"Key of the secret in the vault\"),\n});\n\nexport const OIDCSchema = z.object({\n  name: z.string().describe(\"Identity provider name\"),\n  kind: z.literal(\"OIDC\"),\n  clientID: z.string().describe(\"OAuth2 client ID\"),\n  clientSecret: secretValueSchema.describe(\"OAuth2 client secret\"),\n  providerURL: z.string().describe(\"OIDC provider URL\"),\n  issuerURL: z.string().optional().describe(\"OIDC issuer URL (defaults to providerURL)\"),\n  usernameClaim: z.string().optional().describe(\"JWT claim to use as username\"),\n});\n\nexport const SAMLSchema = z\n  .object({\n    name: z.string().describe(\"Identity provider name\"),\n    kind: z.literal(\"SAML\"),\n    enableSignRequest: z.boolean().default(false).describe(\"Enable signing of SAML requests\"),\n    metadataURL: z\n      .string()\n      .optional()\n      .describe(\"URL to fetch SAML metadata (mutually exclusive with rawMetadata)\"),\n    rawMetadata: z\n      .string()\n      .optional()\n      .describe(\"Raw SAML metadata XML (mutually exclusive with metadataURL)\"),\n    defaultRedirectURL: z\n      .string()\n      .optional()\n      .describe(\"URL to redirect to when SAML ACS receives a response with an empty RelayState.\"),\n  })\n  .refine((value) => {\n    const hasMetadata = value.metadataURL !== undefined;\n    const hasRaw = value.rawMetadata !== undefined;\n    return hasMetadata !== hasRaw;\n  }, \"Provide either metadataURL or rawMetadata\");\n\nexport const IDTokenSchema = z.object({\n  name: z.string().describe(\"Identity provider name\"),\n  kind: z.literal(\"IDToken\"),\n  providerURL: z.string().describe(\"ID token provider URL\"),\n  issuerURL: z.string().optional().describe(\"ID token issuer URL\"),\n  clientID: z.string().describe(\"Client ID for ID token validation\"),\n  usernameClaim: z.string().optional().describe(\"JWT claim to use as username\"),\n});\n\nexport const BuiltinIdPSchema = z.object({\n  name: z.string().describe(\"Identity provider name\"),\n  kind: z.literal(\"BuiltInIdP\"),\n  namespace: z.string().describe(\"IdP namespace\"),\n  clientName: z.string().describe(\"OAuth2 client name in the IdP\"),\n});\n\nexport const IdProviderSchema = z.discriminatedUnion(\"kind\", [\n  OIDCSchema,\n  SAMLSchema,\n  IDTokenSchema,\n  BuiltinIdPSchema,\n]);\n\nexport const OAuth2ClientGrantTypeSchema = z\n  .union([z.literal(\"authorization_code\"), z.literal(\"refresh_token\")])\n  .describe(\"OAuth2 grant type\");\n\nexport const OAuth2ClientSchema = z\n  .object({\n    description: z.string().optional().describe(\"Client description\"),\n    grantTypes: z\n      .array(OAuth2ClientGrantTypeSchema)\n      .default([\"authorization_code\", \"refresh_token\"])\n      .describe(\"Allowed OAuth2 grant types\"),\n    redirectURIs: z\n      .array(\n        z.union([\n          z.templateLiteral([\"https://\", z.string()]),\n          z.templateLiteral([\"http://\", z.string()]),\n          z.templateLiteral([z.string(), \":url\"]),\n          z.templateLiteral([z.string(), \":url/\", z.string()]),\n        ]),\n      )\n      .describe(\"Allowed redirect URIs\"),\n    clientType: z\n      .union([z.literal(\"confidential\"), z.literal(\"public\"), z.literal(\"browser\")])\n      .optional()\n      .describe(\"OAuth2 client type\"),\n    accessTokenLifetimeSeconds: z\n      .number()\n      .int()\n      .min(60, \"Minimum access token lifetime is 60 seconds\")\n      .max(86400, \"Maximum access token lifetime is 1 day (86400 seconds)\")\n      .optional()\n      .describe(\"Access token lifetime in seconds (60-86400)\")\n      .transform((val) => (val ? { seconds: BigInt(val), nanos: 0 } : undefined)),\n    refreshTokenLifetimeSeconds: z\n      .number()\n      .int()\n      .min(60, \"Minimum refresh token lifetime is 60 seconds\")\n      .max(604800, \"Maximum refresh token lifetime is 7 days (604800 seconds)\")\n      .optional()\n      .describe(\"Refresh token lifetime in seconds (60-604800)\")\n      .transform((val) => (val ? { seconds: BigInt(val), nanos: 0 } : undefined)),\n    requireDpop: z\n      .boolean()\n      .optional()\n      .describe(\"Require DPoP (Demonstrating Proof-of-Possession) for token requests\"),\n  })\n  .refine((data) => !(data.clientType === \"browser\" && data.requireDpop === true), {\n    message: \"requireDpop cannot be set to true for browser clients as they don't support DPoP\",\n    path: [\"requireDpop\"],\n  });\n\nexport const SCIMAuthorizationSchema = z.object({\n  type: z.union([z.literal(\"oauth2\"), z.literal(\"bearer\")]).describe(\"SCIM authorization type\"),\n  bearerSecret: secretValueSchema\n    .optional()\n    .describe(\"Bearer token secret (required for bearer type)\"),\n});\n\nexport const SCIMAttributeTypeSchema = z\n  .union([\n    z.literal(\"string\"),\n    z.literal(\"number\"),\n    z.literal(\"boolean\"),\n    z.literal(\"datetime\"),\n    z.literal(\"complex\"),\n  ])\n  .describe(\"SCIM attribute data type\");\n\nexport const SCIMAttributeSchema = z.object({\n  type: SCIMAttributeTypeSchema.describe(\"Attribute data type\"),\n  name: z.string().describe(\"Attribute name\"),\n  description: z.string().optional().describe(\"Attribute description\"),\n  mutability: z\n    .union([z.literal(\"readOnly\"), z.literal(\"readWrite\"), z.literal(\"writeOnly\")])\n    .optional()\n    .describe(\"Attribute mutability\"),\n  required: z.boolean().optional().describe(\"Whether the attribute is required\"),\n  multiValued: z.boolean().optional().describe(\"Whether the attribute can have multiple values\"),\n  uniqueness: z\n    .union([z.literal(\"none\"), z.literal(\"server\"), z.literal(\"global\")])\n    .optional()\n    .describe(\"Uniqueness constraint\"),\n  canonicalValues: z.array(z.string()).nullable().optional().describe(\"List of canonical values\"),\n  get subAttributes() {\n    return z.array(SCIMAttributeSchema).nullable().optional();\n  },\n});\n\nconst SCIMSchemaSchema = z.object({\n  name: z.string().describe(\"SCIM schema name\"),\n  attributes: z.array(SCIMAttributeSchema).describe(\"Schema attributes\"),\n});\n\nexport const SCIMAttributeMappingSchema = z.object({\n  tailorDBField: z.string().describe(\"TailorDB field name to map to\"),\n  scimPath: z.string().describe(\"SCIM attribute path\"),\n});\n\nexport const SCIMResourceSchema = z.object({\n  name: z.string().describe(\"SCIM resource name\"),\n  tailorDBNamespace: z.string().describe(\"TailorDB namespace for the resource\"),\n  tailorDBType: z.string().describe(\"TailorDB type name for the resource\"),\n  coreSchema: SCIMSchemaSchema.describe(\"Core SCIM schema definition\"),\n  attributeMapping: z.array(SCIMAttributeMappingSchema).describe(\"Attribute mapping configuration\"),\n});\n\nexport const SCIMSchema = z.object({\n  machineUserName: z.string().describe(\"Machine user name for SCIM operations\"),\n  authorization: SCIMAuthorizationSchema.describe(\"SCIM authorization configuration\"),\n  resources: z.array(SCIMResourceSchema).describe(\"SCIM resource definitions\"),\n});\n\nexport const TenantProviderSchema = z.object({\n  namespace: z.string().describe(\"TailorDB namespace for the tenant type\"),\n  type: z.string().describe(\"TailorDB type name for tenants\"),\n  signatureField: z.string().describe(\"Field used as the tenant signature\"),\n});\n\nconst UserProfileSchema = z.object({\n  namespace: z.string().optional().describe(\"TailorDB namespace where the user type is defined\"),\n  // FIXME: improve TailorDBInstance schema validation\n  type: z.object({\n    name: z.string(),\n    fields: z.any(),\n    metadata: z.any(),\n    hooks: z.any(),\n    validate: z.any(),\n    features: z.any(),\n    indexes: z.any(),\n    files: z.any(),\n    permission: z.any(),\n    gqlPermission: z.any(),\n    _output: z.any(),\n  }),\n  usernameField: z.string(),\n  attributes: z.record(z.string(), z.literal(true)).optional(),\n  attributeList: z.array(z.string()).optional(),\n});\n\nconst ValueOperandSchema: z.ZodType<ValueOperand> = z.union([\n  z.string(),\n  z.boolean(),\n  z.array(z.string()),\n  z.array(z.boolean()),\n]);\n\nconst MachineUserSchema = z.object({\n  attributes: z.record(z.string(), ValueOperandSchema).optional(),\n  attributeList: z.array(z.uuid()).optional(),\n});\n\nconst BeforeLoginHookSchema = z.object({\n  handler: z.function(),\n  invoker: z.string(),\n});\n\nconst AuthConfigBaseSchema = z.object({\n  name: z.string().describe(\"Auth service name\"),\n  hooks: z\n    .object({\n      beforeLogin: BeforeLoginHookSchema.optional().describe(\"Before login auth hook\"),\n    })\n    .optional()\n    .describe(\"Auth hooks\"),\n  machineUsers: z\n    .record(z.string(), MachineUserSchema)\n    .optional()\n    .describe(\"Machine user definitions\"),\n  oauth2Clients: z\n    .record(z.string(), OAuth2ClientSchema)\n    .optional()\n    .describe(\"OAuth2 client definitions\"),\n  idProvider: IdProviderSchema.optional().describe(\"Identity provider configuration\"),\n  scim: SCIMSchema.optional().describe(\"SCIM provisioning configuration\"),\n  tenantProvider: TenantProviderSchema.optional().describe(\"Multi-tenant provider configuration\"),\n  connections: z\n    .record(z.string(), AuthConnectionConfigSchema)\n    .optional()\n    .describe(\"Auth connection definitions for external OAuth2 providers\"),\n  publishSessionEvents: z.boolean().optional().describe(\"Enable publishing session events\"),\n});\n\nexport const AuthConfigSchema = z\n  .xor(\n    [\n      AuthConfigBaseSchema.extend({\n        userProfile: UserProfileSchema.optional().describe(\"User profile configuration\"),\n        machineUserAttributes: z.undefined().optional(),\n      }),\n      AuthConfigBaseSchema.extend({\n        userProfile: z.undefined().optional(),\n        machineUserAttributes: z\n          .record(z.string(), TailorFieldSchema)\n          .describe(\"Machine user attribute fields\"),\n      }),\n    ],\n    {\n      error: (iss) => {\n        // zod may report error codes not covered by its type definitions\n        // oxlint-disable-next-line typescript/no-unnecessary-condition\n        if (iss.code !== \"invalid_union\") return undefined;\n        // zod may report error codes not covered by its type definitions\n        // oxlint-disable-next-line typescript/no-unnecessary-condition\n        if (iss.errors.length < 2) return undefined;\n        const isOnlyMutexViolation = iss.errors.every((variantErrors) =>\n          variantErrors.every(\n            (e) =>\n              e.path.length === 1 &&\n              (e.path[0] === \"userProfile\" || e.path[0] === \"machineUserAttributes\"),\n          ),\n        );\n        if (isOnlyMutexViolation) {\n          return \"Specify either `userProfile` or `machineUserAttributes`, not both.\";\n        }\n        return undefined;\n      },\n    },\n  )\n  .brand(\"AuthConfig\");\n","import { z } from \"zod\";\nimport { AuthInvokerSchema } from \"../auth\";\nimport { functionSchema } from \"../common\";\n\nexport const TailorDBTriggerSchema = z.object({\n  kind: z.literal(\"tailordb\").describe(\"TailorDB record event trigger\"),\n  events: z\n    .array(\n      z.enum([\n        \"tailordb.type_record.created\",\n        \"tailordb.type_record.updated\",\n        \"tailordb.type_record.deleted\",\n      ]),\n    )\n    .min(1)\n    .transform((arr) => [...new Set(arr)])\n    .describe(\"TailorDB event types to trigger on\"),\n  typeName: z.string().describe(\"TailorDB type name to watch for events\"),\n  condition: functionSchema.optional().describe(\"Condition function to filter events\"),\n});\n\nexport const ResolverExecutedTriggerSchema = z.object({\n  kind: z.literal(\"resolverExecuted\"),\n  resolverName: z.string().describe(\"Name of the resolver to trigger on\"),\n  condition: functionSchema.optional().describe(\"Condition function to filter events\"),\n});\n\nexport const ScheduleTriggerSchema = z.object({\n  kind: z.literal(\"schedule\"),\n  cron: z.string().describe(\"CRON expression for the schedule\"),\n  timezone: z\n    .string()\n    .optional()\n    .default(\"UTC\")\n    .describe(\"Timezone for the CRON schedule (default: UTC)\"),\n});\n\nexport const IncomingWebhookTriggerResponseSchema = z.object({\n  body: functionSchema.optional().describe(\"Function returning the response body\"),\n  statusCode: z.number().int().optional().describe(\"HTTP status code for the response\"),\n});\n\nexport const IncomingWebhookTriggerSchema = z.object({\n  kind: z.literal(\"incomingWebhook\"),\n  response: IncomingWebhookTriggerResponseSchema.optional().describe(\"Response configuration\"),\n});\n\nexport const IdpUserTriggerSchema = z.object({\n  kind: z.literal(\"idpUser\").describe(\"IdP user event trigger\"),\n  events: z\n    .array(z.enum([\"idp.user.created\", \"idp.user.updated\", \"idp.user.deleted\"]))\n    .min(1)\n    .transform((arr) => [...new Set(arr)])\n    .describe(\"IdP user event types to trigger on\"),\n  idp: z\n    .string()\n    .optional()\n    .describe(\n      \"IdP namespace name to subscribe to. If omitted, the project's only IdP is used; throws when multiple IdPs exist.\",\n    ),\n});\n\nexport const AuthAccessTokenTriggerSchema = z.object({\n  kind: z.literal(\"authAccessToken\").describe(\"Auth access token event trigger\"),\n  events: z\n    .array(\n      z.enum([\n        \"auth.access_token.issued\",\n        \"auth.access_token.refreshed\",\n        \"auth.access_token.revoked\",\n      ]),\n    )\n    .min(1)\n    .transform((arr) => [...new Set(arr)])\n    .describe(\"Auth access token event types to trigger on\"),\n});\n\nexport const TriggerSchema = z.discriminatedUnion(\"kind\", [\n  TailorDBTriggerSchema,\n  ResolverExecutedTriggerSchema,\n  ScheduleTriggerSchema,\n  IncomingWebhookTriggerSchema,\n  IdpUserTriggerSchema,\n  AuthAccessTokenTriggerSchema,\n]);\n\nexport const FunctionOperationSchema = z.object({\n  kind: z.enum([\"function\", \"jobFunction\"]),\n  body: functionSchema.describe(\"Function implementation\"),\n  authInvoker: AuthInvokerSchema.optional().describe(\"Auth invoker for the function execution\"),\n});\n\nexport const GqlOperationSchema = z.object({\n  kind: z.literal(\"graphql\"),\n  appName: z.string().optional().describe(\"Target application name for the GraphQL query\"),\n  query: z.preprocess((val) => String(val), z.string().describe(\"GraphQL query string\")),\n  variables: functionSchema.optional().describe(\"Function to compute GraphQL variables\"),\n  authInvoker: AuthInvokerSchema.optional().describe(\"Auth invoker for the GraphQL execution\"),\n});\n\nexport const WebhookOperationSchema = z.object({\n  kind: z.literal(\"webhook\"),\n  url: functionSchema.describe(\"Function returning the webhook URL\"),\n  requestBody: functionSchema.optional().describe(\"Function to compute the request body\"),\n  headers: z\n    .record(z.string(), z.union([z.string(), z.object({ vault: z.string(), key: z.string() })]))\n    .optional()\n    .describe(\"HTTP headers for the webhook request\"),\n});\n\nexport const WorkflowOperationSchema = z.preprocess(\n  (val) => {\n    if (\n      val == null ||\n      typeof val !== \"object\" ||\n      !(\"workflow\" in val) ||\n      typeof val.workflow !== \"object\" ||\n      val.workflow === null\n    ) {\n      return val;\n    }\n\n    const { workflow, ...rest } = val as { workflow: { name: string } };\n    return { ...rest, workflowName: workflow.name };\n  },\n  z.object({\n    kind: z.literal(\"workflow\"),\n    workflowName: z.string().describe(\"Name of the workflow to execute\"),\n    args: z\n      .union([z.record(z.string(), z.unknown()), functionSchema])\n      .optional()\n      .describe(\"Arguments to pass to the workflow\"),\n    authInvoker: AuthInvokerSchema.optional().describe(\"Auth invoker for the workflow execution\"),\n  }),\n);\n\nconst OperationSchema = z.union([\n  FunctionOperationSchema,\n  GqlOperationSchema,\n  WebhookOperationSchema,\n  WorkflowOperationSchema,\n]);\n\nexport const ExecutorSchema = z.object({\n  name: z.string().describe(\"Executor name\"),\n  description: z.string().optional().describe(\"Executor description\"),\n  disabled: z.boolean().optional().default(false).describe(\"Whether the executor is disabled\"),\n  trigger: TriggerSchema.describe(\"Event trigger configuration\"),\n  operation: OperationSchema.describe(\"Operation to execute when triggered\"),\n});\n","import { pathToFileURL } from \"node:url\";\nimport * as path from \"pathe\";\nimport { loadFilesWithIgnores } from \"@/cli/services/file-loader\";\nimport { logger, styles } from \"@/cli/shared/logger\";\nimport { ExecutorSchema } from \"@/parser/service/executor\";\nimport { isSdkBranded } from \"@/utils/brand\";\nimport type { ExecutorServiceConfig } from \"@/types/app-config\";\nimport type { Executor } from \"@/types/executor.generated\";\n\n/**\n * Information about a plugin-generated executor converted to Executor format\n */\nexport interface PluginExecutor {\n  /** The executor in standard Executor format */\n  executor: Executor;\n  /** Plugin ID that generated this executor */\n  pluginId: string;\n  /** Source type name (for type-attached executors) */\n  sourceTypeName?: string;\n}\n\nexport type ExecutorService = {\n  readonly config: ExecutorServiceConfig;\n  readonly executors: Record<string, Executor>;\n  readonly pluginExecutors: ReadonlyArray<PluginExecutor>;\n  loadExecutors: () => Promise<Record<string, Executor> | undefined>;\n  loadPluginExecutorFiles: (filePaths: string[]) => Promise<void>;\n};\n\n/**\n * Parameters for creating an ExecutorService\n */\nexport interface CreateExecutorServiceParams {\n  /** The executor service configuration */\n  config: ExecutorServiceConfig;\n}\n\n/**\n * Creates a new ExecutorService instance.\n * @param params - Parameters for creating the service\n * @returns A new ExecutorService instance\n */\nexport function createExecutorService(params: CreateExecutorServiceParams): ExecutorService {\n  const { config } = params;\n  const executors: Record<string, Executor> = {};\n  const pluginExecutors: PluginExecutor[] = [];\n  let loadPromise: Promise<Record<string, Executor> | undefined> | undefined;\n\n  const loadExecutorForFile = async (executorFile: string): Promise<Executor | undefined> => {\n    try {\n      const executorModule = await import(pathToFileURL(executorFile).href);\n      const result = ExecutorSchema.safeParse(executorModule.default);\n      if (result.success) {\n        const relativePath = path.relative(process.cwd(), executorFile);\n        logger.log(\n          `Executor: ${styles.successBright(`\"${result.data.name}\"`)} loaded from ${styles.path(relativePath)}`,\n        );\n        executors[executorFile] = result.data;\n        return result.data;\n      }\n      if (isSdkBranded(executorModule.default, \"executor\")) {\n        throw result.error;\n      }\n    } catch (error) {\n      const relativePath = path.relative(process.cwd(), executorFile);\n      logger.error(`Failed to load executor from ${styles.bold(relativePath)}`);\n      logger.error(String(error));\n      throw error;\n    }\n    return undefined;\n  };\n\n  return {\n    config,\n    get executors() {\n      return executors;\n    },\n    get pluginExecutors() {\n      return pluginExecutors;\n    },\n    loadExecutors: async () => {\n      if (!loadPromise) {\n        loadPromise = (async () => {\n          if (config.files.length === 0) {\n            return undefined;\n          }\n\n          const executorFiles = loadFilesWithIgnores(config);\n\n          logger.newline();\n          logger.log(`Found ${styles.highlight(executorFiles.length.toString())} executor files`);\n\n          await Promise.all(executorFiles.map((executorFile) => loadExecutorForFile(executorFile)));\n          return executors;\n        })();\n      }\n      return loadPromise;\n    },\n    loadPluginExecutorFiles: async (filePaths: string[]) => {\n      if (filePaths.length === 0) return;\n\n      logger.newline();\n      logger.log(\n        `Loading ${styles.highlight(filePaths.length.toString())} plugin-generated executor files`,\n      );\n\n      for (const filePath of filePaths) {\n        const executor = await loadExecutorForFile(filePath);\n        if (executor) {\n          // Track as plugin executor (plugin ID is extracted from file path)\n          // File path format: .tailor-sdk/plugin/{executor-name}.ts\n          pluginExecutors.push({\n            executor,\n            pluginId: \"plugin-generated\",\n            sourceTypeName: undefined,\n          });\n        }\n      }\n    },\n  };\n}\n"],"mappings":";;;;;;;;;AAIA,MAAa,iBAAiB,EAAE,QAAkB,QAAQ,OAAO,QAAQ,UAAU;;;;ACKnF,MAAM,0BAA0B,CAAC,gBAAgB,cAAc;;;;;;;AAQ/D,SAAgB,qBAAqB,QAAkC;CAErE,MAAM,iBAAiB,OAAO,WAAW;CAEzC,MAAM,8BAAc,IAAI,IAAY;CACpC,KAAK,MAAM,iBAAiB,gBAAgB;EAC1C,MAAM,wBAAwB,KAAK,QAAQ,QAAQ,IAAI,GAAG,aAAa;EACvE,IAAI;GAEF,AAD2B,GAAG,SAAS,qBACtB,CAAC,CAAC,SAAS,SAAS,YAAY,IAAI,IAAI,CAAC;EAC5D,SAAS,OAAO;GACd,OAAO,KAAK,kCAAkC,cAAc,KAAK,OAAO,KAAK,GAAG;EAClF;CACF;CAEA,MAAM,QAAkB,CAAC;CACzB,KAAK,MAAM,WAAW,OAAO,OAAO;EAClC,MAAM,kBAAkB,KAAK,QAAQ,QAAQ,IAAI,GAAG,OAAO;EAC3D,IAAI;GAGF,MAAM,gBAFe,GAAG,SAAS,eAEA,CAAC,CAAC,QAAQ,SAAS,CAAC,YAAY,IAAI,IAAI,CAAC;GAC1E,MAAM,KAAK,GAAG,aAAa;EAC7B,SAAS,OAAO;GACd,OAAO,KAAK,2BAA2B,QAAQ,KAAK,OAAO,KAAK,GAAG;EACrE;CACF;CAEA,OAAO;AACT;;;;AC5CA,MAAa,mCAAmC,EAAE,OAAO;CACvD,aAAa,EAAE,OAAO,CAAC,CAAC,SAAS,qBAAqB;CACtD,WAAW,EAAE,OAAO,CAAC,CAAC,SAAS,mBAAmB;CAClD,UAAU,EAAE,OAAO,CAAC,CAAC,SAAS,kBAAkB;CAChD,cAAc,EAAE,OAAO,CAAC,CAAC,SAAS,sBAAsB;CACxD,SAAS,EAAE,OAAO,CAAC,CAAC,SAAS,CAAC,CAAC,SAAS,wCAAwC;CAChF,UAAU,EAAE,OAAO,CAAC,CAAC,SAAS,CAAC,CAAC,SAAS,gCAAgC;AAC3E,CAAC;AAED,MAAa,6BAA6B,EACvC,OAAO,EACN,MAAM,EAAE,QAAQ,QAAQ,CAAC,CAAC,SAAS,iBAAiB,EACtD,CAAC,CAAC,CACD,IAAI,gCAAgC;;;;ACZvC,MAAM,wBAAwB,EAAE,KAAK;CACnC;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;AACF,CAAC;AAED,MAAM,qBAAqB,EAAE,OAAO;CAClC,OAAO,EAAE,OAAO,CAAC,CAAC,SAAS,mBAAmB;CAC9C,aAAa,EAAE,OAAO,CAAC,CAAC,SAAS,CAAC,CAAC,SAAS,kCAAkC;AAChF,CAAC;AAED,MAAM,sBAAsB,EAAE,OAAO;CACnC,UAAU,EAAE,QAAQ,CAAC,CAAC,SAAS,CAAC,CAAC,SAAS,+BAA+B;CACzE,OAAO,EAAE,QAAQ,CAAC,CAAC,SAAS,CAAC,CAAC,SAAS,+BAA+B;CACtE,aAAa,EAAE,OAAO,CAAC,CAAC,SAAS,CAAC,CAAC,SAAS,mBAAmB;CAC/D,eAAe,EAAE,MAAM,kBAAkB,CAAC,CAAC,SAAS,CAAC,CAAC,SAAS,gCAAgC;CAC/F,OAAO,EACJ,OAAO;EACN,QAAQ,eAAe,SAAS,CAAC,CAAC,SAAS,kCAAkC;EAC7E,QAAQ,eAAe,SAAS,CAAC,CAAC,SAAS,gCAAgC;CAC7E,CAAC,CAAC,CACD,SAAS,CAAC,CACV,SAAS,iBAAiB;CAC7B,UAAU,EAAE,OAAO,CAAC,CAAC,SAAS,CAAC,CAAC,SAAS,qCAAqC;AAChF,CAAC;AAED,MAAa,oBAAoB,EAAE,OAAO;CACxC,MAAM,sBAAsB,SAAS,iBAAiB;CACtD,UAAU,oBAAoB,SAAS,8BAA8B;CACrE,IAAI,SAAS;EACX,OAAO,EAAE,OAAO,EAAE,OAAO,GAAG,iBAAiB;CAC/C;AACF,CAAC;;;;ACtCD,MAAa,0BAA0B,EAAE,OAAO;CAC9C,WAAW,EAAE,OAAO,CAAC,CAAC,SAAS,gBAAgB;CAC/C,iBAAiB,EAAE,OAAO,CAAC,CAAC,SAAS,sCAAsC;AAC7E,CAAC;AAED,MAAa,oBAAoB,EAAE,MAAM,CACvC,EAAE,OAAO,CAAC,CAAC,SAAS,+DAA+D,GACnF,uBACF,CAAC;AAED,MAAM,oBAAoB,EAAE,OAAO;CACjC,WAAW,EAAE,OAAO,CAAC,CAAC,SAAS,kCAAkC;CACjE,WAAW,EAAE,OAAO,CAAC,CAAC,SAAS,gCAAgC;AACjE,CAAC;AAED,MAAa,aAAa,EAAE,OAAO;CACjC,MAAM,EAAE,OAAO,CAAC,CAAC,SAAS,wBAAwB;CAClD,MAAM,EAAE,QAAQ,MAAM;CACtB,UAAU,EAAE,OAAO,CAAC,CAAC,SAAS,kBAAkB;CAChD,cAAc,kBAAkB,SAAS,sBAAsB;CAC/D,aAAa,EAAE,OAAO,CAAC,CAAC,SAAS,mBAAmB;CACpD,WAAW,EAAE,OAAO,CAAC,CAAC,SAAS,CAAC,CAAC,SAAS,2CAA2C;CACrF,eAAe,EAAE,OAAO,CAAC,CAAC,SAAS,CAAC,CAAC,SAAS,8BAA8B;AAC9E,CAAC;AAED,MAAa,aAAa,EACvB,OAAO;CACN,MAAM,EAAE,OAAO,CAAC,CAAC,SAAS,wBAAwB;CAClD,MAAM,EAAE,QAAQ,MAAM;CACtB,mBAAmB,EAAE,QAAQ,CAAC,CAAC,QAAQ,KAAK,CAAC,CAAC,SAAS,iCAAiC;CACxF,aAAa,EACV,OAAO,CAAC,CACR,SAAS,CAAC,CACV,SAAS,kEAAkE;CAC9E,aAAa,EACV,OAAO,CAAC,CACR,SAAS,CAAC,CACV,SAAS,6DAA6D;CACzE,oBAAoB,EACjB,OAAO,CAAC,CACR,SAAS,CAAC,CACV,SAAS,gFAAgF;AAC9F,CAAC,CAAC,CACD,QAAQ,UAAU;CAGjB,OAFoB,MAAM,gBAAgB,YAC3B,MAAM,gBAAgB;AAEvC,GAAG,2CAA2C;AAEhD,MAAa,gBAAgB,EAAE,OAAO;CACpC,MAAM,EAAE,OAAO,CAAC,CAAC,SAAS,wBAAwB;CAClD,MAAM,EAAE,QAAQ,SAAS;CACzB,aAAa,EAAE,OAAO,CAAC,CAAC,SAAS,uBAAuB;CACxD,WAAW,EAAE,OAAO,CAAC,CAAC,SAAS,CAAC,CAAC,SAAS,qBAAqB;CAC/D,UAAU,EAAE,OAAO,CAAC,CAAC,SAAS,mCAAmC;CACjE,eAAe,EAAE,OAAO,CAAC,CAAC,SAAS,CAAC,CAAC,SAAS,8BAA8B;AAC9E,CAAC;AAED,MAAa,mBAAmB,EAAE,OAAO;CACvC,MAAM,EAAE,OAAO,CAAC,CAAC,SAAS,wBAAwB;CAClD,MAAM,EAAE,QAAQ,YAAY;CAC5B,WAAW,EAAE,OAAO,CAAC,CAAC,SAAS,eAAe;CAC9C,YAAY,EAAE,OAAO,CAAC,CAAC,SAAS,+BAA+B;AACjE,CAAC;AAED,MAAa,mBAAmB,EAAE,mBAAmB,QAAQ;CAC3D;CACA;CACA;CACA;AACF,CAAC;AAED,MAAa,8BAA8B,EACxC,MAAM,CAAC,EAAE,QAAQ,oBAAoB,GAAG,EAAE,QAAQ,eAAe,CAAC,CAAC,CAAC,CACpE,SAAS,mBAAmB;AAE/B,MAAa,qBAAqB,EAC/B,OAAO;CACN,aAAa,EAAE,OAAO,CAAC,CAAC,SAAS,CAAC,CAAC,SAAS,oBAAoB;CAChE,YAAY,EACT,MAAM,2BAA2B,CAAC,CAClC,QAAQ,CAAC,sBAAsB,eAAe,CAAC,CAAC,CAChD,SAAS,4BAA4B;CACxC,cAAc,EACX,MACC,EAAE,MAAM;EACN,EAAE,gBAAgB,CAAC,YAAY,EAAE,OAAO,CAAC,CAAC;EAC1C,EAAE,gBAAgB,CAAC,WAAW,EAAE,OAAO,CAAC,CAAC;EACzC,EAAE,gBAAgB,CAAC,EAAE,OAAO,GAAG,MAAM,CAAC;EACtC,EAAE,gBAAgB;GAAC,EAAE,OAAO;GAAG;GAAS,EAAE,OAAO;EAAC,CAAC;CACrD,CAAC,CACH,CAAC,CACA,SAAS,uBAAuB;CACnC,YAAY,EACT,MAAM;EAAC,EAAE,QAAQ,cAAc;EAAG,EAAE,QAAQ,QAAQ;EAAG,EAAE,QAAQ,SAAS;CAAC,CAAC,CAAC,CAC7E,SAAS,CAAC,CACV,SAAS,oBAAoB;CAChC,4BAA4B,EACzB,OAAO,CAAC,CACR,IAAI,CAAC,CACL,IAAI,IAAI,6CAA6C,CAAC,CACtD,IAAI,OAAO,wDAAwD,CAAC,CACpE,SAAS,CAAC,CACV,SAAS,6CAA6C,CAAC,CACvD,WAAW,QAAS,MAAM;EAAE,SAAS,OAAO,GAAG;EAAG,OAAO;CAAE,IAAI,MAAU;CAC5E,6BAA6B,EAC1B,OAAO,CAAC,CACR,IAAI,CAAC,CACL,IAAI,IAAI,8CAA8C,CAAC,CACvD,IAAI,QAAQ,2DAA2D,CAAC,CACxE,SAAS,CAAC,CACV,SAAS,+CAA+C,CAAC,CACzD,WAAW,QAAS,MAAM;EAAE,SAAS,OAAO,GAAG;EAAG,OAAO;CAAE,IAAI,MAAU;CAC5E,aAAa,EACV,QAAQ,CAAC,CACT,SAAS,CAAC,CACV,SAAS,qEAAqE;AACnF,CAAC,CAAC,CACD,QAAQ,SAAS,EAAE,KAAK,eAAe,aAAa,KAAK,gBAAgB,OAAO;CAC/E,SAAS;CACT,MAAM,CAAC,aAAa;AACtB,CAAC;AAEH,MAAa,0BAA0B,EAAE,OAAO;CAC9C,MAAM,EAAE,MAAM,CAAC,EAAE,QAAQ,QAAQ,GAAG,EAAE,QAAQ,QAAQ,CAAC,CAAC,CAAC,CAAC,SAAS,yBAAyB;CAC5F,cAAc,kBACX,SAAS,CAAC,CACV,SAAS,gDAAgD;AAC9D,CAAC;AAED,MAAa,0BAA0B,EACpC,MAAM;CACL,EAAE,QAAQ,QAAQ;CAClB,EAAE,QAAQ,QAAQ;CAClB,EAAE,QAAQ,SAAS;CACnB,EAAE,QAAQ,UAAU;CACpB,EAAE,QAAQ,SAAS;AACrB,CAAC,CAAC,CACD,SAAS,0BAA0B;AAEtC,MAAa,sBAAsB,EAAE,OAAO;CAC1C,MAAM,wBAAwB,SAAS,qBAAqB;CAC5D,MAAM,EAAE,OAAO,CAAC,CAAC,SAAS,gBAAgB;CAC1C,aAAa,EAAE,OAAO,CAAC,CAAC,SAAS,CAAC,CAAC,SAAS,uBAAuB;CACnE,YAAY,EACT,MAAM;EAAC,EAAE,QAAQ,UAAU;EAAG,EAAE,QAAQ,WAAW;EAAG,EAAE,QAAQ,WAAW;CAAC,CAAC,CAAC,CAC9E,SAAS,CAAC,CACV,SAAS,sBAAsB;CAClC,UAAU,EAAE,QAAQ,CAAC,CAAC,SAAS,CAAC,CAAC,SAAS,mCAAmC;CAC7E,aAAa,EAAE,QAAQ,CAAC,CAAC,SAAS,CAAC,CAAC,SAAS,gDAAgD;CAC7F,YAAY,EACT,MAAM;EAAC,EAAE,QAAQ,MAAM;EAAG,EAAE,QAAQ,QAAQ;EAAG,EAAE,QAAQ,QAAQ;CAAC,CAAC,CAAC,CACpE,SAAS,CAAC,CACV,SAAS,uBAAuB;CACnC,iBAAiB,EAAE,MAAM,EAAE,OAAO,CAAC,CAAC,CAAC,SAAS,CAAC,CAAC,SAAS,CAAC,CAAC,SAAS,0BAA0B;CAC9F,IAAI,gBAAgB;EAClB,OAAO,EAAE,MAAM,mBAAmB,CAAC,CAAC,SAAS,CAAC,CAAC,SAAS;CAC1D;AACF,CAAC;AAED,MAAM,mBAAmB,EAAE,OAAO;CAChC,MAAM,EAAE,OAAO,CAAC,CAAC,SAAS,kBAAkB;CAC5C,YAAY,EAAE,MAAM,mBAAmB,CAAC,CAAC,SAAS,mBAAmB;AACvE,CAAC;AAED,MAAa,6BAA6B,EAAE,OAAO;CACjD,eAAe,EAAE,OAAO,CAAC,CAAC,SAAS,+BAA+B;CAClE,UAAU,EAAE,OAAO,CAAC,CAAC,SAAS,qBAAqB;AACrD,CAAC;AAED,MAAa,qBAAqB,EAAE,OAAO;CACzC,MAAM,EAAE,OAAO,CAAC,CAAC,SAAS,oBAAoB;CAC9C,mBAAmB,EAAE,OAAO,CAAC,CAAC,SAAS,qCAAqC;CAC5E,cAAc,EAAE,OAAO,CAAC,CAAC,SAAS,qCAAqC;CACvE,YAAY,iBAAiB,SAAS,6BAA6B;CACnE,kBAAkB,EAAE,MAAM,0BAA0B,CAAC,CAAC,SAAS,iCAAiC;AAClG,CAAC;AAED,MAAa,aAAa,EAAE,OAAO;CACjC,iBAAiB,EAAE,OAAO,CAAC,CAAC,SAAS,uCAAuC;CAC5E,eAAe,wBAAwB,SAAS,kCAAkC;CAClF,WAAW,EAAE,MAAM,kBAAkB,CAAC,CAAC,SAAS,2BAA2B;AAC7E,CAAC;AAED,MAAa,uBAAuB,EAAE,OAAO;CAC3C,WAAW,EAAE,OAAO,CAAC,CAAC,SAAS,wCAAwC;CACvE,MAAM,EAAE,OAAO,CAAC,CAAC,SAAS,gCAAgC;CAC1D,gBAAgB,EAAE,OAAO,CAAC,CAAC,SAAS,oCAAoC;AAC1E,CAAC;AAED,MAAM,oBAAoB,EAAE,OAAO;CACjC,WAAW,EAAE,OAAO,CAAC,CAAC,SAAS,CAAC,CAAC,SAAS,mDAAmD;CAE7F,MAAM,EAAE,OAAO;EACb,MAAM,EAAE,OAAO;EACf,QAAQ,EAAE,IAAI;EACd,UAAU,EAAE,IAAI;EAChB,OAAO,EAAE,IAAI;EACb,UAAU,EAAE,IAAI;EAChB,UAAU,EAAE,IAAI;EAChB,SAAS,EAAE,IAAI;EACf,OAAO,EAAE,IAAI;EACb,YAAY,EAAE,IAAI;EAClB,eAAe,EAAE,IAAI;EACrB,SAAS,EAAE,IAAI;CACjB,CAAC;CACD,eAAe,EAAE,OAAO;CACxB,YAAY,EAAE,OAAO,EAAE,OAAO,GAAG,EAAE,QAAQ,IAAI,CAAC,CAAC,CAAC,SAAS;CAC3D,eAAe,EAAE,MAAM,EAAE,OAAO,CAAC,CAAC,CAAC,SAAS;AAC9C,CAAC;AAED,MAAM,qBAA8C,EAAE,MAAM;CAC1D,EAAE,OAAO;CACT,EAAE,QAAQ;CACV,EAAE,MAAM,EAAE,OAAO,CAAC;CAClB,EAAE,MAAM,EAAE,QAAQ,CAAC;AACrB,CAAC;AAED,MAAM,oBAAoB,EAAE,OAAO;CACjC,YAAY,EAAE,OAAO,EAAE,OAAO,GAAG,kBAAkB,CAAC,CAAC,SAAS;CAC9D,eAAe,EAAE,MAAM,EAAE,KAAK,CAAC,CAAC,CAAC,SAAS;AAC5C,CAAC;AAED,MAAM,wBAAwB,EAAE,OAAO;CACrC,SAAS,EAAE,SAAS;CACpB,SAAS,EAAE,OAAO;AACpB,CAAC;AAED,MAAM,uBAAuB,EAAE,OAAO;CACpC,MAAM,EAAE,OAAO,CAAC,CAAC,SAAS,mBAAmB;CAC7C,OAAO,EACJ,OAAO,EACN,aAAa,sBAAsB,SAAS,CAAC,CAAC,SAAS,wBAAwB,EACjF,CAAC,CAAC,CACD,SAAS,CAAC,CACV,SAAS,YAAY;CACxB,cAAc,EACX,OAAO,EAAE,OAAO,GAAG,iBAAiB,CAAC,CACrC,SAAS,CAAC,CACV,SAAS,0BAA0B;CACtC,eAAe,EACZ,OAAO,EAAE,OAAO,GAAG,kBAAkB,CAAC,CACtC,SAAS,CAAC,CACV,SAAS,2BAA2B;CACvC,YAAY,iBAAiB,SAAS,CAAC,CAAC,SAAS,iCAAiC;CAClF,MAAM,WAAW,SAAS,CAAC,CAAC,SAAS,iCAAiC;CACtE,gBAAgB,qBAAqB,SAAS,CAAC,CAAC,SAAS,qCAAqC;CAC9F,aAAa,EACV,OAAO,EAAE,OAAO,GAAG,0BAA0B,CAAC,CAC9C,SAAS,CAAC,CACV,SAAS,2DAA2D;CACvE,sBAAsB,EAAE,QAAQ,CAAC,CAAC,SAAS,CAAC,CAAC,SAAS,kCAAkC;AAC1F,CAAC;AAED,MAAa,mBAAmB,EAC7B,IACC,CACE,qBAAqB,OAAO;CAC1B,aAAa,kBAAkB,SAAS,CAAC,CAAC,SAAS,4BAA4B;CAC/E,uBAAuB,EAAE,UAAU,CAAC,CAAC,SAAS;AAChD,CAAC,GACD,qBAAqB,OAAO;CAC1B,aAAa,EAAE,UAAU,CAAC,CAAC,SAAS;CACpC,uBAAuB,EACpB,OAAO,EAAE,OAAO,GAAG,iBAAiB,CAAC,CACrC,SAAS,+BAA+B;AAC7C,CAAC,CACH,GACA,EACE,QAAQ,QAAQ;CAGd,IAAI,IAAI,SAAS,iBAAiB,OAAO;CAGzC,IAAI,IAAI,OAAO,SAAS,GAAG,OAAO;CAQlC,IAP6B,IAAI,OAAO,OAAO,kBAC7C,cAAc,OACX,MACC,EAAE,KAAK,WAAW,MACjB,EAAE,KAAK,OAAO,iBAAiB,EAAE,KAAK,OAAO,wBAClD,CAEqB,GACrB,OAAO;AAGX,EACF,CACF,CAAC,CACA,MAAM,YAAY;;;;ACnSrB,MAAa,wBAAwB,EAAE,OAAO;CAC5C,MAAM,EAAE,QAAQ,UAAU,CAAC,CAAC,SAAS,+BAA+B;CACpE,QAAQ,EACL,MACC,EAAE,KAAK;EACL;EACA;EACA;CACF,CAAC,CACH,CAAC,CACA,IAAI,CAAC,CAAC,CACN,WAAW,QAAQ,CAAC,GAAG,IAAI,IAAI,GAAG,CAAC,CAAC,CAAC,CACrC,SAAS,oCAAoC;CAChD,UAAU,EAAE,OAAO,CAAC,CAAC,SAAS,wCAAwC;CACtE,WAAW,eAAe,SAAS,CAAC,CAAC,SAAS,qCAAqC;AACrF,CAAC;AAED,MAAa,gCAAgC,EAAE,OAAO;CACpD,MAAM,EAAE,QAAQ,kBAAkB;CAClC,cAAc,EAAE,OAAO,CAAC,CAAC,SAAS,oCAAoC;CACtE,WAAW,eAAe,SAAS,CAAC,CAAC,SAAS,qCAAqC;AACrF,CAAC;AAED,MAAa,wBAAwB,EAAE,OAAO;CAC5C,MAAM,EAAE,QAAQ,UAAU;CAC1B,MAAM,EAAE,OAAO,CAAC,CAAC,SAAS,kCAAkC;CAC5D,UAAU,EACP,OAAO,CAAC,CACR,SAAS,CAAC,CACV,QAAQ,KAAK,CAAC,CACd,SAAS,+CAA+C;AAC7D,CAAC;AAED,MAAa,uCAAuC,EAAE,OAAO;CAC3D,MAAM,eAAe,SAAS,CAAC,CAAC,SAAS,sCAAsC;CAC/E,YAAY,EAAE,OAAO,CAAC,CAAC,IAAI,CAAC,CAAC,SAAS,CAAC,CAAC,SAAS,mCAAmC;AACtF,CAAC;AAED,MAAa,+BAA+B,EAAE,OAAO;CACnD,MAAM,EAAE,QAAQ,iBAAiB;CACjC,UAAU,qCAAqC,SAAS,CAAC,CAAC,SAAS,wBAAwB;AAC7F,CAAC;AAED,MAAa,uBAAuB,EAAE,OAAO;CAC3C,MAAM,EAAE,QAAQ,SAAS,CAAC,CAAC,SAAS,wBAAwB;CAC5D,QAAQ,EACL,MAAM,EAAE,KAAK;EAAC;EAAoB;EAAoB;CAAkB,CAAC,CAAC,CAAC,CAC3E,IAAI,CAAC,CAAC,CACN,WAAW,QAAQ,CAAC,GAAG,IAAI,IAAI,GAAG,CAAC,CAAC,CAAC,CACrC,SAAS,oCAAoC;CAChD,KAAK,EACF,OAAO,CAAC,CACR,SAAS,CAAC,CACV,SACC,kHACF;AACJ,CAAC;AAED,MAAa,+BAA+B,EAAE,OAAO;CACnD,MAAM,EAAE,QAAQ,iBAAiB,CAAC,CAAC,SAAS,iCAAiC;CAC7E,QAAQ,EACL,MACC,EAAE,KAAK;EACL;EACA;EACA;CACF,CAAC,CACH,CAAC,CACA,IAAI,CAAC,CAAC,CACN,WAAW,QAAQ,CAAC,GAAG,IAAI,IAAI,GAAG,CAAC,CAAC,CAAC,CACrC,SAAS,6CAA6C;AAC3D,CAAC;AAED,MAAa,gBAAgB,EAAE,mBAAmB,QAAQ;CACxD;CACA;CACA;CACA;CACA;CACA;AACF,CAAC;AAED,MAAa,0BAA0B,EAAE,OAAO;CAC9C,MAAM,EAAE,KAAK,CAAC,YAAY,aAAa,CAAC;CACxC,MAAM,eAAe,SAAS,yBAAyB;CACvD,aAAa,kBAAkB,SAAS,CAAC,CAAC,SAAS,yCAAyC;AAC9F,CAAC;AAED,MAAa,qBAAqB,EAAE,OAAO;CACzC,MAAM,EAAE,QAAQ,SAAS;CACzB,SAAS,EAAE,OAAO,CAAC,CAAC,SAAS,CAAC,CAAC,SAAS,+CAA+C;CACvF,OAAO,EAAE,YAAY,QAAQ,OAAO,GAAG,GAAG,EAAE,OAAO,CAAC,CAAC,SAAS,sBAAsB,CAAC;CACrF,WAAW,eAAe,SAAS,CAAC,CAAC,SAAS,uCAAuC;CACrF,aAAa,kBAAkB,SAAS,CAAC,CAAC,SAAS,wCAAwC;AAC7F,CAAC;AAED,MAAa,yBAAyB,EAAE,OAAO;CAC7C,MAAM,EAAE,QAAQ,SAAS;CACzB,KAAK,eAAe,SAAS,oCAAoC;CACjE,aAAa,eAAe,SAAS,CAAC,CAAC,SAAS,sCAAsC;CACtF,SAAS,EACN,OAAO,EAAE,OAAO,GAAG,EAAE,MAAM,CAAC,EAAE,OAAO,GAAG,EAAE,OAAO;EAAE,OAAO,EAAE,OAAO;EAAG,KAAK,EAAE,OAAO;CAAE,CAAC,CAAC,CAAC,CAAC,CAAC,CAC3F,SAAS,CAAC,CACV,SAAS,sCAAsC;AACpD,CAAC;AAED,MAAa,0BAA0B,EAAE,YACtC,QAAQ;CACP,IACE,OAAO,QACP,OAAO,QAAQ,YACf,EAAE,cAAc,QAChB,OAAO,IAAI,aAAa,YACxB,IAAI,aAAa,MAEjB,OAAO;CAGT,MAAM,EAAE,UAAU,GAAG,SAAS;CAC9B,OAAO;EAAE,GAAG;EAAM,cAAc,SAAS;CAAK;AAChD,GACA,EAAE,OAAO;CACP,MAAM,EAAE,QAAQ,UAAU;CAC1B,cAAc,EAAE,OAAO,CAAC,CAAC,SAAS,iCAAiC;CACnE,MAAM,EACH,MAAM,CAAC,EAAE,OAAO,EAAE,OAAO,GAAG,EAAE,QAAQ,CAAC,GAAG,cAAc,CAAC,CAAC,CAC1D,SAAS,CAAC,CACV,SAAS,mCAAmC;CAC/C,aAAa,kBAAkB,SAAS,CAAC,CAAC,SAAS,yCAAyC;AAC9F,CAAC,CACH;AAEA,MAAM,kBAAkB,EAAE,MAAM;CAC9B;CACA;CACA;CACA;AACF,CAAC;AAED,MAAa,iBAAiB,EAAE,OAAO;CACrC,MAAM,EAAE,OAAO,CAAC,CAAC,SAAS,eAAe;CACzC,aAAa,EAAE,OAAO,CAAC,CAAC,SAAS,CAAC,CAAC,SAAS,sBAAsB;CAClE,UAAU,EAAE,QAAQ,CAAC,CAAC,SAAS,CAAC,CAAC,QAAQ,KAAK,CAAC,CAAC,SAAS,kCAAkC;CAC3F,SAAS,cAAc,SAAS,6BAA6B;CAC7D,WAAW,gBAAgB,SAAS,qCAAqC;AAC3E,CAAC;;;;;;;;;AC3GD,SAAgB,sBAAsB,QAAsD;CAC1F,MAAM,EAAE,WAAW;CACnB,MAAM,YAAsC,CAAC;CAC7C,MAAM,kBAAoC,CAAC;CAC3C,IAAI;CAEJ,MAAM,sBAAsB,OAAO,iBAAwD;EACzF,IAAI;GACF,MAAM,iBAAiB,MAAM,OAAO,cAAc,YAAY,CAAC,CAAC;GAChE,MAAM,SAAS,eAAe,UAAU,eAAe,OAAO;GAC9D,IAAI,OAAO,SAAS;IAClB,MAAM,eAAe,KAAK,SAAS,QAAQ,IAAI,GAAG,YAAY;IAC9D,OAAO,IACL,aAAa,OAAO,cAAc,IAAI,OAAO,KAAK,KAAK,EAAE,EAAE,eAAe,OAAO,KAAK,YAAY,GACpG;IACA,UAAU,gBAAgB,OAAO;IACjC,OAAO,OAAO;GAChB;GACA,IAAI,aAAa,eAAe,SAAS,UAAU,GACjD,MAAM,OAAO;EAEjB,SAAS,OAAO;GACd,MAAM,eAAe,KAAK,SAAS,QAAQ,IAAI,GAAG,YAAY;GAC9D,OAAO,MAAM,gCAAgC,OAAO,KAAK,YAAY,GAAG;GACxE,OAAO,MAAM,OAAO,KAAK,CAAC;GAC1B,MAAM;EACR;CAEF;CAEA,OAAO;EACL;EACA,IAAI,YAAY;GACd,OAAO;EACT;EACA,IAAI,kBAAkB;GACpB,OAAO;EACT;EACA,eAAe,YAAY;GACzB,IAAI,CAAC,aACH,eAAe,YAAY;IACzB,IAAI,OAAO,MAAM,WAAW,GAC1B;IAGF,MAAM,gBAAgB,qBAAqB,MAAM;IAEjD,OAAO,QAAQ;IACf,OAAO,IAAI,SAAS,OAAO,UAAU,cAAc,OAAO,SAAS,CAAC,EAAE,gBAAgB;IAEtF,MAAM,QAAQ,IAAI,cAAc,KAAK,iBAAiB,oBAAoB,YAAY,CAAC,CAAC;IACxF,OAAO;GACT,EAAC,CAAE;GAEL,OAAO;EACT;EACA,yBAAyB,OAAO,cAAwB;GACtD,IAAI,UAAU,WAAW,GAAG;GAE5B,OAAO,QAAQ;GACf,OAAO,IACL,WAAW,OAAO,UAAU,UAAU,OAAO,SAAS,CAAC,EAAE,iCAC3D;GAEA,KAAK,MAAM,YAAY,WAAW;IAChC,MAAM,WAAW,MAAM,oBAAoB,QAAQ;IACnD,IAAI,UAGF,gBAAgB,KAAK;KACnB;KACA,UAAU;KACV,gBAAgB;IAClB,CAAC;GAEL;EACF;CACF;AACF"}
+{"version":3,"file":"service-wI3Hvrgx.mjs","names":[],"sources":["../src/parser/service/common.ts","../src/cli/services/file-loader.ts","../src/parser/service/auth-connection/schema.ts","../src/parser/service/field/schema.ts","../src/parser/service/auth/schema.ts","../src/parser/service/executor/schema.ts","../src/cli/services/executor/service.ts"],"sourcesContent":["import { z } from \"zod\";\n\n// Use `z.custom` instead of `z.function`, since `z.function` changes `toString` representation.\n// eslint-disable-next-line @typescript-eslint/no-unsafe-function-type\nexport const functionSchema = z.custom<Function>((val) => typeof val === \"function\");\n","import * as fs from \"node:fs\";\nimport * as path from \"pathe\";\nimport { logger } from \"@/cli/shared/logger\";\n\nexport interface FileLoadConfig {\n  files: string[];\n  ignores?: string[];\n}\n\nconst DEFAULT_IGNORE_PATTERNS = [\"**/*.test.ts\", \"**/*.spec.ts\"];\n\n/**\n * Load files matching the given patterns, excluding files that match ignore patterns.\n * By default, test files (*.test.ts, *.spec.ts) are excluded unless ignores is explicitly specified.\n * @param config - Configuration with files patterns and optional ignores patterns\n * @returns Array of absolute file paths\n */\nexport function loadFilesWithIgnores(config: FileLoadConfig): string[] {\n  // Use user-provided patterns if specified, otherwise use defaults\n  const ignorePatterns = config.ignores ?? DEFAULT_IGNORE_PATTERNS;\n\n  const ignoreFiles = new Set<string>();\n  for (const ignorePattern of ignorePatterns) {\n    const absoluteIgnorePattern = path.resolve(process.cwd(), ignorePattern);\n    try {\n      const matchedIgnoreFiles = fs.globSync(absoluteIgnorePattern);\n      matchedIgnoreFiles.forEach((file) => ignoreFiles.add(file));\n    } catch (error) {\n      logger.warn(`Failed to glob ignore pattern \"${ignorePattern}\": ${String(error)}`);\n    }\n  }\n\n  const files: string[] = [];\n  for (const pattern of config.files) {\n    const absolutePattern = path.resolve(process.cwd(), pattern);\n    try {\n      const matchedFiles = fs.globSync(absolutePattern);\n      // Filter out ignored files\n      const filteredFiles = matchedFiles.filter((file) => !ignoreFiles.has(file));\n      files.push(...filteredFiles);\n    } catch (error) {\n      logger.warn(`Failed to glob pattern \"${pattern}\": ${String(error)}`);\n    }\n  }\n\n  return files;\n}\n","import { z } from \"zod\";\n\nexport const AuthConnectionOAuth2ConfigSchema = z.object({\n  providerUrl: z.string().describe(\"OAuth2 provider URL\"),\n  issuerUrl: z.string().describe(\"OAuth2 issuer URL\"),\n  clientId: z.string().describe(\"OAuth2 client ID\"),\n  clientSecret: z.string().describe(\"OAuth2 client secret\"),\n  authUrl: z.string().optional().describe(\"OAuth2 authorization endpoint override\"),\n  tokenUrl: z.string().optional().describe(\"OAuth2 token endpoint override\"),\n});\n\nexport const AuthConnectionConfigSchema = z\n  .object({\n    type: z.literal(\"oauth2\").describe(\"Connection type\"),\n  })\n  .and(AuthConnectionOAuth2ConfigSchema);\n","import { z } from \"zod\";\nimport { functionSchema } from \"../common\";\n\nconst TailorFieldTypeSchema = z.enum([\n  \"uuid\",\n  \"string\",\n  \"boolean\",\n  \"integer\",\n  \"float\",\n  \"decimal\",\n  \"enum\",\n  \"date\",\n  \"datetime\",\n  \"time\",\n  \"nested\",\n]);\n\nconst AllowedValueSchema = z.object({\n  value: z.string().describe(\"The allowed value\"),\n  description: z.string().optional().describe(\"Description of the allowed value\"),\n});\n\nconst FieldMetadataSchema = z.object({\n  required: z.boolean().optional().describe(\"Whether the field is required\"),\n  array: z.boolean().optional().describe(\"Whether the field is an array\"),\n  description: z.string().optional().describe(\"Field description\"),\n  allowedValues: z.array(AllowedValueSchema).optional().describe(\"Allowed values for enum fields\"),\n  hooks: z\n    .object({\n      create: functionSchema.optional().describe(\"Hook function called on creation\"),\n      update: functionSchema.optional().describe(\"Hook function called on update\"),\n    })\n    .optional()\n    .describe(\"Lifecycle hooks\"),\n  typeName: z.string().optional().describe(\"Type name for nested or enum fields\"),\n});\n\nexport const TailorFieldSchema = z.object({\n  type: TailorFieldTypeSchema.describe(\"Field data type\"),\n  metadata: FieldMetadataSchema.describe(\"Field metadata configuration\"),\n  get fields() {\n    return z.record(z.string(), TailorFieldSchema);\n  },\n});\n","import { z } from \"zod\";\nimport { AuthConnectionConfigSchema } from \"@/parser/service/auth-connection\";\nimport { TailorFieldSchema } from \"@/parser/service/field/schema\";\nimport type { ValueOperand } from \"@/configure/services/auth/types\";\n\nexport const AuthInvokerObjectSchema = z.object({\n  namespace: z.string().describe(\"Auth namespace\"),\n  machineUserName: z.string().describe(\"Machine user name for authentication\"),\n});\n\nexport const AuthInvokerSchema = z.union([\n  z.string().describe(\"Machine user name (namespace auto-resolved from auth service)\"),\n  AuthInvokerObjectSchema,\n]);\n\nconst secretValueSchema = z.object({\n  vaultName: z.string().describe(\"Vault name containing the secret\"),\n  secretKey: z.string().describe(\"Key of the secret in the vault\"),\n});\n\nexport const OIDCSchema = z.object({\n  name: z.string().describe(\"Identity provider name\"),\n  kind: z.literal(\"OIDC\"),\n  clientID: z.string().describe(\"OAuth2 client ID\"),\n  clientSecret: secretValueSchema.describe(\"OAuth2 client secret\"),\n  providerURL: z.string().describe(\"OIDC provider URL\"),\n  issuerURL: z.string().optional().describe(\"OIDC issuer URL (defaults to providerURL)\"),\n  usernameClaim: z.string().optional().describe(\"JWT claim to use as username\"),\n});\n\nexport const SAMLSchema = z\n  .object({\n    name: z.string().describe(\"Identity provider name\"),\n    kind: z.literal(\"SAML\"),\n    enableSignRequest: z.boolean().default(false).describe(\"Enable signing of SAML requests\"),\n    metadataURL: z\n      .string()\n      .optional()\n      .describe(\"URL to fetch SAML metadata (mutually exclusive with rawMetadata)\"),\n    rawMetadata: z\n      .string()\n      .optional()\n      .describe(\"Raw SAML metadata XML (mutually exclusive with metadataURL)\"),\n    defaultRedirectURL: z\n      .string()\n      .optional()\n      .describe(\"URL to redirect to when SAML ACS receives a response with an empty RelayState.\"),\n  })\n  .refine((value) => {\n    const hasMetadata = value.metadataURL !== undefined;\n    const hasRaw = value.rawMetadata !== undefined;\n    return hasMetadata !== hasRaw;\n  }, \"Provide either metadataURL or rawMetadata\");\n\nexport const IDTokenSchema = z.object({\n  name: z.string().describe(\"Identity provider name\"),\n  kind: z.literal(\"IDToken\"),\n  providerURL: z.string().describe(\"ID token provider URL\"),\n  issuerURL: z.string().optional().describe(\"ID token issuer URL\"),\n  clientID: z.string().describe(\"Client ID for ID token validation\"),\n  usernameClaim: z.string().optional().describe(\"JWT claim to use as username\"),\n});\n\nexport const BuiltinIdPSchema = z.object({\n  name: z.string().describe(\"Identity provider name\"),\n  kind: z.literal(\"BuiltInIdP\"),\n  namespace: z.string().describe(\"IdP namespace\"),\n  clientName: z.string().describe(\"OAuth2 client name in the IdP\"),\n});\n\nexport const IdProviderSchema = z.discriminatedUnion(\"kind\", [\n  OIDCSchema,\n  SAMLSchema,\n  IDTokenSchema,\n  BuiltinIdPSchema,\n]);\n\nexport const OAuth2ClientGrantTypeSchema = z\n  .union([z.literal(\"authorization_code\"), z.literal(\"refresh_token\")])\n  .describe(\"OAuth2 grant type\");\n\nexport const OAuth2ClientSchema = z\n  .object({\n    description: z.string().optional().describe(\"Client description\"),\n    grantTypes: z\n      .array(OAuth2ClientGrantTypeSchema)\n      .default([\"authorization_code\", \"refresh_token\"])\n      .describe(\"Allowed OAuth2 grant types\"),\n    redirectURIs: z\n      .array(\n        z.union([\n          z.templateLiteral([\"https://\", z.string()]),\n          z.templateLiteral([\"http://\", z.string()]),\n          z.templateLiteral([z.string(), \":url\"]),\n          z.templateLiteral([z.string(), \":url/\", z.string()]),\n        ]),\n      )\n      .describe(\"Allowed redirect URIs\"),\n    clientType: z\n      .union([z.literal(\"confidential\"), z.literal(\"public\"), z.literal(\"browser\")])\n      .optional()\n      .describe(\"OAuth2 client type\"),\n    accessTokenLifetimeSeconds: z\n      .number()\n      .int()\n      .min(60, \"Minimum access token lifetime is 60 seconds\")\n      .max(86400, \"Maximum access token lifetime is 1 day (86400 seconds)\")\n      .optional()\n      .describe(\"Access token lifetime in seconds (60-86400)\")\n      .transform((val) => (val ? { seconds: BigInt(val), nanos: 0 } : undefined)),\n    refreshTokenLifetimeSeconds: z\n      .number()\n      .int()\n      .min(60, \"Minimum refresh token lifetime is 60 seconds\")\n      .max(604800, \"Maximum refresh token lifetime is 7 days (604800 seconds)\")\n      .optional()\n      .describe(\"Refresh token lifetime in seconds (60-604800)\")\n      .transform((val) => (val ? { seconds: BigInt(val), nanos: 0 } : undefined)),\n    requireDpop: z\n      .boolean()\n      .optional()\n      .describe(\"Require DPoP (Demonstrating Proof-of-Possession) for token requests\"),\n  })\n  .refine((data) => !(data.clientType === \"browser\" && data.requireDpop === true), {\n    message: \"requireDpop cannot be set to true for browser clients as they don't support DPoP\",\n    path: [\"requireDpop\"],\n  });\n\nexport const SCIMAuthorizationSchema = z.object({\n  type: z.union([z.literal(\"oauth2\"), z.literal(\"bearer\")]).describe(\"SCIM authorization type\"),\n  bearerSecret: secretValueSchema\n    .optional()\n    .describe(\"Bearer token secret (required for bearer type)\"),\n});\n\nexport const SCIMAttributeTypeSchema = z\n  .union([\n    z.literal(\"string\"),\n    z.literal(\"number\"),\n    z.literal(\"boolean\"),\n    z.literal(\"datetime\"),\n    z.literal(\"complex\"),\n  ])\n  .describe(\"SCIM attribute data type\");\n\nexport const SCIMAttributeSchema = z.object({\n  type: SCIMAttributeTypeSchema.describe(\"Attribute data type\"),\n  name: z.string().describe(\"Attribute name\"),\n  description: z.string().optional().describe(\"Attribute description\"),\n  mutability: z\n    .union([z.literal(\"readOnly\"), z.literal(\"readWrite\"), z.literal(\"writeOnly\")])\n    .optional()\n    .describe(\"Attribute mutability\"),\n  required: z.boolean().optional().describe(\"Whether the attribute is required\"),\n  multiValued: z.boolean().optional().describe(\"Whether the attribute can have multiple values\"),\n  uniqueness: z\n    .union([z.literal(\"none\"), z.literal(\"server\"), z.literal(\"global\")])\n    .optional()\n    .describe(\"Uniqueness constraint\"),\n  canonicalValues: z.array(z.string()).nullable().optional().describe(\"List of canonical values\"),\n  get subAttributes() {\n    return z.array(SCIMAttributeSchema).nullable().optional();\n  },\n});\n\nconst SCIMSchemaSchema = z.object({\n  name: z.string().describe(\"SCIM schema name\"),\n  attributes: z.array(SCIMAttributeSchema).describe(\"Schema attributes\"),\n});\n\nexport const SCIMAttributeMappingSchema = z.object({\n  tailorDBField: z.string().describe(\"TailorDB field name to map to\"),\n  scimPath: z.string().describe(\"SCIM attribute path\"),\n});\n\nexport const SCIMResourceSchema = z.object({\n  name: z.string().describe(\"SCIM resource name\"),\n  tailorDBNamespace: z.string().describe(\"TailorDB namespace for the resource\"),\n  tailorDBType: z.string().describe(\"TailorDB type name for the resource\"),\n  coreSchema: SCIMSchemaSchema.describe(\"Core SCIM schema definition\"),\n  attributeMapping: z.array(SCIMAttributeMappingSchema).describe(\"Attribute mapping configuration\"),\n});\n\nexport const SCIMSchema = z.object({\n  machineUserName: z.string().describe(\"Machine user name for SCIM operations\"),\n  authorization: SCIMAuthorizationSchema.describe(\"SCIM authorization configuration\"),\n  resources: z.array(SCIMResourceSchema).describe(\"SCIM resource definitions\"),\n});\n\nexport const TenantProviderSchema = z.object({\n  namespace: z.string().describe(\"TailorDB namespace for the tenant type\"),\n  type: z.string().describe(\"TailorDB type name for tenants\"),\n  signatureField: z.string().describe(\"Field used as the tenant signature\"),\n});\n\nconst UserProfileSchema = z.object({\n  namespace: z.string().optional().describe(\"TailorDB namespace where the user type is defined\"),\n  // FIXME: improve TailorDBInstance schema validation\n  type: z.object({\n    name: z.string(),\n    fields: z.any(),\n    metadata: z.any(),\n    hooks: z.any(),\n    validate: z.any(),\n    features: z.any(),\n    indexes: z.any(),\n    files: z.any(),\n    permission: z.any(),\n    gqlPermission: z.any(),\n    _output: z.any(),\n  }),\n  usernameField: z.string(),\n  attributes: z.record(z.string(), z.literal(true)).optional(),\n  attributeList: z.array(z.string()).optional(),\n});\n\nconst ValueOperandSchema: z.ZodType<ValueOperand> = z.union([\n  z.string(),\n  z.boolean(),\n  z.array(z.string()),\n  z.array(z.boolean()),\n]);\n\nconst MachineUserSchema = z.object({\n  attributes: z.record(z.string(), ValueOperandSchema).optional(),\n  attributeList: z.array(z.uuid()).optional(),\n});\n\nconst BeforeLoginHookSchema = z.object({\n  handler: z.function(),\n  invoker: z.string(),\n});\n\nconst AuthConfigBaseSchema = z.object({\n  name: z.string().describe(\"Auth service name\"),\n  hooks: z\n    .object({\n      beforeLogin: BeforeLoginHookSchema.optional().describe(\"Before login auth hook\"),\n    })\n    .optional()\n    .describe(\"Auth hooks\"),\n  machineUsers: z\n    .record(z.string(), MachineUserSchema)\n    .optional()\n    .describe(\"Machine user definitions\"),\n  oauth2Clients: z\n    .record(z.string(), OAuth2ClientSchema)\n    .optional()\n    .describe(\"OAuth2 client definitions\"),\n  idProvider: IdProviderSchema.optional().describe(\"Identity provider configuration\"),\n  scim: SCIMSchema.optional().describe(\"SCIM provisioning configuration\"),\n  tenantProvider: TenantProviderSchema.optional().describe(\"Multi-tenant provider configuration\"),\n  connections: z\n    .record(z.string(), AuthConnectionConfigSchema)\n    .optional()\n    .describe(\"Auth connection definitions for external OAuth2 providers\"),\n  publishSessionEvents: z.boolean().optional().describe(\"Enable publishing session events\"),\n});\n\nexport const AuthConfigSchema = z\n  .xor(\n    [\n      AuthConfigBaseSchema.extend({\n        userProfile: UserProfileSchema.optional().describe(\"User profile configuration\"),\n        machineUserAttributes: z.undefined().optional(),\n      }),\n      AuthConfigBaseSchema.extend({\n        userProfile: z.undefined().optional(),\n        machineUserAttributes: z\n          .record(z.string(), TailorFieldSchema)\n          .describe(\"Machine user attribute fields\"),\n      }),\n    ],\n    {\n      error: (iss) => {\n        // zod may report error codes not covered by its type definitions\n        // oxlint-disable-next-line typescript/no-unnecessary-condition\n        if (iss.code !== \"invalid_union\") return undefined;\n        // zod may report error codes not covered by its type definitions\n        // oxlint-disable-next-line typescript/no-unnecessary-condition\n        if (iss.errors.length < 2) return undefined;\n        const isOnlyMutexViolation = iss.errors.every((variantErrors) =>\n          variantErrors.every(\n            (e) =>\n              e.path.length === 1 &&\n              (e.path[0] === \"userProfile\" || e.path[0] === \"machineUserAttributes\"),\n          ),\n        );\n        if (isOnlyMutexViolation) {\n          return \"Specify either `userProfile` or `machineUserAttributes`, not both.\";\n        }\n        return undefined;\n      },\n    },\n  )\n  .brand(\"AuthConfig\");\n","import { z } from \"zod\";\nimport { AuthInvokerSchema } from \"../auth\";\nimport { functionSchema } from \"../common\";\n\nexport const TailorDBTriggerSchema = z.object({\n  kind: z.literal(\"tailordb\").describe(\"TailorDB record event trigger\"),\n  events: z\n    .array(\n      z.enum([\n        \"tailordb.type_record.created\",\n        \"tailordb.type_record.updated\",\n        \"tailordb.type_record.deleted\",\n      ]),\n    )\n    .min(1)\n    .transform((arr) => [...new Set(arr)])\n    .describe(\"TailorDB event types to trigger on\"),\n  typeName: z.string().describe(\"TailorDB type name to watch for events\"),\n  condition: functionSchema.optional().describe(\"Condition function to filter events\"),\n});\n\nexport const ResolverExecutedTriggerSchema = z.object({\n  kind: z.literal(\"resolverExecuted\"),\n  resolverName: z.string().describe(\"Name of the resolver to trigger on\"),\n  condition: functionSchema.optional().describe(\"Condition function to filter events\"),\n});\n\nexport const ScheduleTriggerSchema = z.object({\n  kind: z.literal(\"schedule\"),\n  cron: z.string().describe(\"CRON expression for the schedule\"),\n  timezone: z\n    .string()\n    .optional()\n    .default(\"UTC\")\n    .describe(\"Timezone for the CRON schedule (default: UTC)\"),\n});\n\nexport const IncomingWebhookTriggerResponseSchema = z.object({\n  body: functionSchema.optional().describe(\"Function returning the response body\"),\n  statusCode: z.number().int().optional().describe(\"HTTP status code for the response\"),\n});\n\nexport const IncomingWebhookTriggerSchema = z.object({\n  kind: z.literal(\"incomingWebhook\"),\n  response: IncomingWebhookTriggerResponseSchema.optional().describe(\"Response configuration\"),\n});\n\nexport const IdpUserTriggerSchema = z.object({\n  kind: z.literal(\"idpUser\").describe(\"IdP user event trigger\"),\n  events: z\n    .array(z.enum([\"idp.user.created\", \"idp.user.updated\", \"idp.user.deleted\"]))\n    .min(1)\n    .transform((arr) => [...new Set(arr)])\n    .describe(\"IdP user event types to trigger on\"),\n  idp: z\n    .string()\n    .optional()\n    .describe(\n      \"IdP namespace name to subscribe to. If omitted, the project's only IdP is used; throws when multiple IdPs exist.\",\n    ),\n});\n\nexport const AuthAccessTokenTriggerSchema = z.object({\n  kind: z.literal(\"authAccessToken\").describe(\"Auth access token event trigger\"),\n  events: z\n    .array(\n      z.enum([\n        \"auth.access_token.issued\",\n        \"auth.access_token.refreshed\",\n        \"auth.access_token.revoked\",\n      ]),\n    )\n    .min(1)\n    .transform((arr) => [...new Set(arr)])\n    .describe(\"Auth access token event types to trigger on\"),\n});\n\nexport const TriggerSchema = z.discriminatedUnion(\"kind\", [\n  TailorDBTriggerSchema,\n  ResolverExecutedTriggerSchema,\n  ScheduleTriggerSchema,\n  IncomingWebhookTriggerSchema,\n  IdpUserTriggerSchema,\n  AuthAccessTokenTriggerSchema,\n]);\n\nexport const FunctionOperationSchema = z.object({\n  kind: z.enum([\"function\", \"jobFunction\"]),\n  body: functionSchema.describe(\"Function implementation\"),\n  authInvoker: AuthInvokerSchema.optional().describe(\"Auth invoker for the function execution\"),\n});\n\nexport const GqlOperationSchema = z.object({\n  kind: z.literal(\"graphql\"),\n  appName: z.string().optional().describe(\"Target application name for the GraphQL query\"),\n  query: z.preprocess((val) => String(val), z.string().describe(\"GraphQL query string\")),\n  variables: functionSchema.optional().describe(\"Function to compute GraphQL variables\"),\n  authInvoker: AuthInvokerSchema.optional().describe(\"Auth invoker for the GraphQL execution\"),\n});\n\nexport const WebhookOperationSchema = z.object({\n  kind: z.literal(\"webhook\"),\n  url: functionSchema.describe(\"Function returning the webhook URL\"),\n  requestBody: functionSchema.optional().describe(\"Function to compute the request body\"),\n  headers: z\n    .record(z.string(), z.union([z.string(), z.object({ vault: z.string(), key: z.string() })]))\n    .optional()\n    .describe(\"HTTP headers for the webhook request\"),\n});\n\nexport const WorkflowOperationSchema = z.preprocess(\n  (val) => {\n    if (\n      val == null ||\n      typeof val !== \"object\" ||\n      !(\"workflow\" in val) ||\n      typeof val.workflow !== \"object\" ||\n      val.workflow === null\n    ) {\n      return val;\n    }\n\n    const { workflow, ...rest } = val as { workflow: { name: string } };\n    return { ...rest, workflowName: workflow.name };\n  },\n  z.object({\n    kind: z.literal(\"workflow\"),\n    workflowName: z.string().describe(\"Name of the workflow to execute\"),\n    args: z\n      .union([z.record(z.string(), z.unknown()), functionSchema])\n      .optional()\n      .describe(\"Arguments to pass to the workflow\"),\n    authInvoker: AuthInvokerSchema.optional().describe(\"Auth invoker for the workflow execution\"),\n  }),\n);\n\nconst OperationSchema = z.union([\n  FunctionOperationSchema,\n  GqlOperationSchema,\n  WebhookOperationSchema,\n  WorkflowOperationSchema,\n]);\n\nexport const ExecutorSchema = z.object({\n  name: z.string().describe(\"Executor name\"),\n  description: z.string().optional().describe(\"Executor description\"),\n  disabled: z.boolean().optional().default(false).describe(\"Whether the executor is disabled\"),\n  trigger: TriggerSchema.describe(\"Event trigger configuration\"),\n  operation: OperationSchema.describe(\"Operation to execute when triggered\"),\n});\n","import { pathToFileURL } from \"node:url\";\nimport * as path from \"pathe\";\nimport { loadFilesWithIgnores } from \"@/cli/services/file-loader\";\nimport { logger, styles } from \"@/cli/shared/logger\";\nimport { ExecutorSchema } from \"@/parser/service/executor\";\nimport { isSdkBranded } from \"@/utils/brand\";\nimport type { ExecutorServiceConfig } from \"@/configure/config/types\";\nimport type { Executor } from \"@/types/executor.generated\";\n\n/**\n * Information about a plugin-generated executor converted to Executor format\n */\nexport interface PluginExecutor {\n  /** The executor in standard Executor format */\n  executor: Executor;\n  /** Plugin ID that generated this executor */\n  pluginId: string;\n  /** Source type name (for type-attached executors) */\n  sourceTypeName?: string;\n}\n\nexport type ExecutorService = {\n  readonly config: ExecutorServiceConfig;\n  readonly executors: Record<string, Executor>;\n  readonly pluginExecutors: ReadonlyArray<PluginExecutor>;\n  loadExecutors: () => Promise<Record<string, Executor> | undefined>;\n  loadPluginExecutorFiles: (filePaths: string[]) => Promise<void>;\n};\n\n/**\n * Parameters for creating an ExecutorService\n */\nexport interface CreateExecutorServiceParams {\n  /** The executor service configuration */\n  config: ExecutorServiceConfig;\n}\n\n/**\n * Creates a new ExecutorService instance.\n * @param params - Parameters for creating the service\n * @returns A new ExecutorService instance\n */\nexport function createExecutorService(params: CreateExecutorServiceParams): ExecutorService {\n  const { config } = params;\n  const executors: Record<string, Executor> = {};\n  const pluginExecutors: PluginExecutor[] = [];\n  let loadPromise: Promise<Record<string, Executor> | undefined> | undefined;\n\n  const loadExecutorForFile = async (executorFile: string): Promise<Executor | undefined> => {\n    try {\n      const executorModule = await import(pathToFileURL(executorFile).href);\n      const result = ExecutorSchema.safeParse(executorModule.default);\n      if (result.success) {\n        const relativePath = path.relative(process.cwd(), executorFile);\n        logger.log(\n          `Executor: ${styles.successBright(`\"${result.data.name}\"`)} loaded from ${styles.path(relativePath)}`,\n        );\n        executors[executorFile] = result.data;\n        return result.data;\n      }\n      if (isSdkBranded(executorModule.default, \"executor\")) {\n        throw result.error;\n      }\n    } catch (error) {\n      const relativePath = path.relative(process.cwd(), executorFile);\n      logger.error(`Failed to load executor from ${styles.bold(relativePath)}`);\n      logger.error(String(error));\n      throw error;\n    }\n    return undefined;\n  };\n\n  return {\n    config,\n    get executors() {\n      return executors;\n    },\n    get pluginExecutors() {\n      return pluginExecutors;\n    },\n    loadExecutors: async () => {\n      if (!loadPromise) {\n        loadPromise = (async () => {\n          if (config.files.length === 0) {\n            return undefined;\n          }\n\n          const executorFiles = loadFilesWithIgnores(config);\n\n          logger.newline();\n          logger.log(`Found ${styles.highlight(executorFiles.length.toString())} executor files`);\n\n          await Promise.all(executorFiles.map((executorFile) => loadExecutorForFile(executorFile)));\n          return executors;\n        })();\n      }\n      return loadPromise;\n    },\n    loadPluginExecutorFiles: async (filePaths: string[]) => {\n      if (filePaths.length === 0) return;\n\n      logger.newline();\n      logger.log(\n        `Loading ${styles.highlight(filePaths.length.toString())} plugin-generated executor files`,\n      );\n\n      for (const filePath of filePaths) {\n        const executor = await loadExecutorForFile(filePath);\n        if (executor) {\n          // Track as plugin executor (plugin ID is extracted from file path)\n          // File path format: .tailor-sdk/plugin/{executor-name}.ts\n          pluginExecutors.push({\n            executor,\n            pluginId: \"plugin-generated\",\n            sourceTypeName: undefined,\n          });\n        }\n      }\n    },\n  };\n}\n"],"mappings":";;;;;;;;;AAIA,MAAa,iBAAiB,EAAE,QAAkB,QAAQ,OAAO,QAAQ,UAAU;;;;ACKnF,MAAM,0BAA0B,CAAC,gBAAgB,cAAc;;;;;;;AAQ/D,SAAgB,qBAAqB,QAAkC;CAErE,MAAM,iBAAiB,OAAO,WAAW;CAEzC,MAAM,8BAAc,IAAI,IAAY;CACpC,KAAK,MAAM,iBAAiB,gBAAgB;EAC1C,MAAM,wBAAwB,KAAK,QAAQ,QAAQ,IAAI,GAAG,aAAa;EACvE,IAAI;GAEF,AAD2B,GAAG,SAAS,qBACtB,CAAC,CAAC,SAAS,SAAS,YAAY,IAAI,IAAI,CAAC;EAC5D,SAAS,OAAO;GACd,OAAO,KAAK,kCAAkC,cAAc,KAAK,OAAO,KAAK,GAAG;EAClF;CACF;CAEA,MAAM,QAAkB,CAAC;CACzB,KAAK,MAAM,WAAW,OAAO,OAAO;EAClC,MAAM,kBAAkB,KAAK,QAAQ,QAAQ,IAAI,GAAG,OAAO;EAC3D,IAAI;GAGF,MAAM,gBAFe,GAAG,SAAS,eAEA,CAAC,CAAC,QAAQ,SAAS,CAAC,YAAY,IAAI,IAAI,CAAC;GAC1E,MAAM,KAAK,GAAG,aAAa;EAC7B,SAAS,OAAO;GACd,OAAO,KAAK,2BAA2B,QAAQ,KAAK,OAAO,KAAK,GAAG;EACrE;CACF;CAEA,OAAO;AACT;;;;AC5CA,MAAa,mCAAmC,EAAE,OAAO;CACvD,aAAa,EAAE,OAAO,CAAC,CAAC,SAAS,qBAAqB;CACtD,WAAW,EAAE,OAAO,CAAC,CAAC,SAAS,mBAAmB;CAClD,UAAU,EAAE,OAAO,CAAC,CAAC,SAAS,kBAAkB;CAChD,cAAc,EAAE,OAAO,CAAC,CAAC,SAAS,sBAAsB;CACxD,SAAS,EAAE,OAAO,CAAC,CAAC,SAAS,CAAC,CAAC,SAAS,wCAAwC;CAChF,UAAU,EAAE,OAAO,CAAC,CAAC,SAAS,CAAC,CAAC,SAAS,gCAAgC;AAC3E,CAAC;AAED,MAAa,6BAA6B,EACvC,OAAO,EACN,MAAM,EAAE,QAAQ,QAAQ,CAAC,CAAC,SAAS,iBAAiB,EACtD,CAAC,CAAC,CACD,IAAI,gCAAgC;;;;ACZvC,MAAM,wBAAwB,EAAE,KAAK;CACnC;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;AACF,CAAC;AAED,MAAM,qBAAqB,EAAE,OAAO;CAClC,OAAO,EAAE,OAAO,CAAC,CAAC,SAAS,mBAAmB;CAC9C,aAAa,EAAE,OAAO,CAAC,CAAC,SAAS,CAAC,CAAC,SAAS,kCAAkC;AAChF,CAAC;AAED,MAAM,sBAAsB,EAAE,OAAO;CACnC,UAAU,EAAE,QAAQ,CAAC,CAAC,SAAS,CAAC,CAAC,SAAS,+BAA+B;CACzE,OAAO,EAAE,QAAQ,CAAC,CAAC,SAAS,CAAC,CAAC,SAAS,+BAA+B;CACtE,aAAa,EAAE,OAAO,CAAC,CAAC,SAAS,CAAC,CAAC,SAAS,mBAAmB;CAC/D,eAAe,EAAE,MAAM,kBAAkB,CAAC,CAAC,SAAS,CAAC,CAAC,SAAS,gCAAgC;CAC/F,OAAO,EACJ,OAAO;EACN,QAAQ,eAAe,SAAS,CAAC,CAAC,SAAS,kCAAkC;EAC7E,QAAQ,eAAe,SAAS,CAAC,CAAC,SAAS,gCAAgC;CAC7E,CAAC,CAAC,CACD,SAAS,CAAC,CACV,SAAS,iBAAiB;CAC7B,UAAU,EAAE,OAAO,CAAC,CAAC,SAAS,CAAC,CAAC,SAAS,qCAAqC;AAChF,CAAC;AAED,MAAa,oBAAoB,EAAE,OAAO;CACxC,MAAM,sBAAsB,SAAS,iBAAiB;CACtD,UAAU,oBAAoB,SAAS,8BAA8B;CACrE,IAAI,SAAS;EACX,OAAO,EAAE,OAAO,EAAE,OAAO,GAAG,iBAAiB;CAC/C;AACF,CAAC;;;;ACtCD,MAAa,0BAA0B,EAAE,OAAO;CAC9C,WAAW,EAAE,OAAO,CAAC,CAAC,SAAS,gBAAgB;CAC/C,iBAAiB,EAAE,OAAO,CAAC,CAAC,SAAS,sCAAsC;AAC7E,CAAC;AAED,MAAa,oBAAoB,EAAE,MAAM,CACvC,EAAE,OAAO,CAAC,CAAC,SAAS,+DAA+D,GACnF,uBACF,CAAC;AAED,MAAM,oBAAoB,EAAE,OAAO;CACjC,WAAW,EAAE,OAAO,CAAC,CAAC,SAAS,kCAAkC;CACjE,WAAW,EAAE,OAAO,CAAC,CAAC,SAAS,gCAAgC;AACjE,CAAC;AAED,MAAa,aAAa,EAAE,OAAO;CACjC,MAAM,EAAE,OAAO,CAAC,CAAC,SAAS,wBAAwB;CAClD,MAAM,EAAE,QAAQ,MAAM;CACtB,UAAU,EAAE,OAAO,CAAC,CAAC,SAAS,kBAAkB;CAChD,cAAc,kBAAkB,SAAS,sBAAsB;CAC/D,aAAa,EAAE,OAAO,CAAC,CAAC,SAAS,mBAAmB;CACpD,WAAW,EAAE,OAAO,CAAC,CAAC,SAAS,CAAC,CAAC,SAAS,2CAA2C;CACrF,eAAe,EAAE,OAAO,CAAC,CAAC,SAAS,CAAC,CAAC,SAAS,8BAA8B;AAC9E,CAAC;AAED,MAAa,aAAa,EACvB,OAAO;CACN,MAAM,EAAE,OAAO,CAAC,CAAC,SAAS,wBAAwB;CAClD,MAAM,EAAE,QAAQ,MAAM;CACtB,mBAAmB,EAAE,QAAQ,CAAC,CAAC,QAAQ,KAAK,CAAC,CAAC,SAAS,iCAAiC;CACxF,aAAa,EACV,OAAO,CAAC,CACR,SAAS,CAAC,CACV,SAAS,kEAAkE;CAC9E,aAAa,EACV,OAAO,CAAC,CACR,SAAS,CAAC,CACV,SAAS,6DAA6D;CACzE,oBAAoB,EACjB,OAAO,CAAC,CACR,SAAS,CAAC,CACV,SAAS,gFAAgF;AAC9F,CAAC,CAAC,CACD,QAAQ,UAAU;CAGjB,OAFoB,MAAM,gBAAgB,YAC3B,MAAM,gBAAgB;AAEvC,GAAG,2CAA2C;AAEhD,MAAa,gBAAgB,EAAE,OAAO;CACpC,MAAM,EAAE,OAAO,CAAC,CAAC,SAAS,wBAAwB;CAClD,MAAM,EAAE,QAAQ,SAAS;CACzB,aAAa,EAAE,OAAO,CAAC,CAAC,SAAS,uBAAuB;CACxD,WAAW,EAAE,OAAO,CAAC,CAAC,SAAS,CAAC,CAAC,SAAS,qBAAqB;CAC/D,UAAU,EAAE,OAAO,CAAC,CAAC,SAAS,mCAAmC;CACjE,eAAe,EAAE,OAAO,CAAC,CAAC,SAAS,CAAC,CAAC,SAAS,8BAA8B;AAC9E,CAAC;AAED,MAAa,mBAAmB,EAAE,OAAO;CACvC,MAAM,EAAE,OAAO,CAAC,CAAC,SAAS,wBAAwB;CAClD,MAAM,EAAE,QAAQ,YAAY;CAC5B,WAAW,EAAE,OAAO,CAAC,CAAC,SAAS,eAAe;CAC9C,YAAY,EAAE,OAAO,CAAC,CAAC,SAAS,+BAA+B;AACjE,CAAC;AAED,MAAa,mBAAmB,EAAE,mBAAmB,QAAQ;CAC3D;CACA;CACA;CACA;AACF,CAAC;AAED,MAAa,8BAA8B,EACxC,MAAM,CAAC,EAAE,QAAQ,oBAAoB,GAAG,EAAE,QAAQ,eAAe,CAAC,CAAC,CAAC,CACpE,SAAS,mBAAmB;AAE/B,MAAa,qBAAqB,EAC/B,OAAO;CACN,aAAa,EAAE,OAAO,CAAC,CAAC,SAAS,CAAC,CAAC,SAAS,oBAAoB;CAChE,YAAY,EACT,MAAM,2BAA2B,CAAC,CAClC,QAAQ,CAAC,sBAAsB,eAAe,CAAC,CAAC,CAChD,SAAS,4BAA4B;CACxC,cAAc,EACX,MACC,EAAE,MAAM;EACN,EAAE,gBAAgB,CAAC,YAAY,EAAE,OAAO,CAAC,CAAC;EAC1C,EAAE,gBAAgB,CAAC,WAAW,EAAE,OAAO,CAAC,CAAC;EACzC,EAAE,gBAAgB,CAAC,EAAE,OAAO,GAAG,MAAM,CAAC;EACtC,EAAE,gBAAgB;GAAC,EAAE,OAAO;GAAG;GAAS,EAAE,OAAO;EAAC,CAAC;CACrD,CAAC,CACH,CAAC,CACA,SAAS,uBAAuB;CACnC,YAAY,EACT,MAAM;EAAC,EAAE,QAAQ,cAAc;EAAG,EAAE,QAAQ,QAAQ;EAAG,EAAE,QAAQ,SAAS;CAAC,CAAC,CAAC,CAC7E,SAAS,CAAC,CACV,SAAS,oBAAoB;CAChC,4BAA4B,EACzB,OAAO,CAAC,CACR,IAAI,CAAC,CACL,IAAI,IAAI,6CAA6C,CAAC,CACtD,IAAI,OAAO,wDAAwD,CAAC,CACpE,SAAS,CAAC,CACV,SAAS,6CAA6C,CAAC,CACvD,WAAW,QAAS,MAAM;EAAE,SAAS,OAAO,GAAG;EAAG,OAAO;CAAE,IAAI,MAAU;CAC5E,6BAA6B,EAC1B,OAAO,CAAC,CACR,IAAI,CAAC,CACL,IAAI,IAAI,8CAA8C,CAAC,CACvD,IAAI,QAAQ,2DAA2D,CAAC,CACxE,SAAS,CAAC,CACV,SAAS,+CAA+C,CAAC,CACzD,WAAW,QAAS,MAAM;EAAE,SAAS,OAAO,GAAG;EAAG,OAAO;CAAE,IAAI,MAAU;CAC5E,aAAa,EACV,QAAQ,CAAC,CACT,SAAS,CAAC,CACV,SAAS,qEAAqE;AACnF,CAAC,CAAC,CACD,QAAQ,SAAS,EAAE,KAAK,eAAe,aAAa,KAAK,gBAAgB,OAAO;CAC/E,SAAS;CACT,MAAM,CAAC,aAAa;AACtB,CAAC;AAEH,MAAa,0BAA0B,EAAE,OAAO;CAC9C,MAAM,EAAE,MAAM,CAAC,EAAE,QAAQ,QAAQ,GAAG,EAAE,QAAQ,QAAQ,CAAC,CAAC,CAAC,CAAC,SAAS,yBAAyB;CAC5F,cAAc,kBACX,SAAS,CAAC,CACV,SAAS,gDAAgD;AAC9D,CAAC;AAED,MAAa,0BAA0B,EACpC,MAAM;CACL,EAAE,QAAQ,QAAQ;CAClB,EAAE,QAAQ,QAAQ;CAClB,EAAE,QAAQ,SAAS;CACnB,EAAE,QAAQ,UAAU;CACpB,EAAE,QAAQ,SAAS;AACrB,CAAC,CAAC,CACD,SAAS,0BAA0B;AAEtC,MAAa,sBAAsB,EAAE,OAAO;CAC1C,MAAM,wBAAwB,SAAS,qBAAqB;CAC5D,MAAM,EAAE,OAAO,CAAC,CAAC,SAAS,gBAAgB;CAC1C,aAAa,EAAE,OAAO,CAAC,CAAC,SAAS,CAAC,CAAC,SAAS,uBAAuB;CACnE,YAAY,EACT,MAAM;EAAC,EAAE,QAAQ,UAAU;EAAG,EAAE,QAAQ,WAAW;EAAG,EAAE,QAAQ,WAAW;CAAC,CAAC,CAAC,CAC9E,SAAS,CAAC,CACV,SAAS,sBAAsB;CAClC,UAAU,EAAE,QAAQ,CAAC,CAAC,SAAS,CAAC,CAAC,SAAS,mCAAmC;CAC7E,aAAa,EAAE,QAAQ,CAAC,CAAC,SAAS,CAAC,CAAC,SAAS,gDAAgD;CAC7F,YAAY,EACT,MAAM;EAAC,EAAE,QAAQ,MAAM;EAAG,EAAE,QAAQ,QAAQ;EAAG,EAAE,QAAQ,QAAQ;CAAC,CAAC,CAAC,CACpE,SAAS,CAAC,CACV,SAAS,uBAAuB;CACnC,iBAAiB,EAAE,MAAM,EAAE,OAAO,CAAC,CAAC,CAAC,SAAS,CAAC,CAAC,SAAS,CAAC,CAAC,SAAS,0BAA0B;CAC9F,IAAI,gBAAgB;EAClB,OAAO,EAAE,MAAM,mBAAmB,CAAC,CAAC,SAAS,CAAC,CAAC,SAAS;CAC1D;AACF,CAAC;AAED,MAAM,mBAAmB,EAAE,OAAO;CAChC,MAAM,EAAE,OAAO,CAAC,CAAC,SAAS,kBAAkB;CAC5C,YAAY,EAAE,MAAM,mBAAmB,CAAC,CAAC,SAAS,mBAAmB;AACvE,CAAC;AAED,MAAa,6BAA6B,EAAE,OAAO;CACjD,eAAe,EAAE,OAAO,CAAC,CAAC,SAAS,+BAA+B;CAClE,UAAU,EAAE,OAAO,CAAC,CAAC,SAAS,qBAAqB;AACrD,CAAC;AAED,MAAa,qBAAqB,EAAE,OAAO;CACzC,MAAM,EAAE,OAAO,CAAC,CAAC,SAAS,oBAAoB;CAC9C,mBAAmB,EAAE,OAAO,CAAC,CAAC,SAAS,qCAAqC;CAC5E,cAAc,EAAE,OAAO,CAAC,CAAC,SAAS,qCAAqC;CACvE,YAAY,iBAAiB,SAAS,6BAA6B;CACnE,kBAAkB,EAAE,MAAM,0BAA0B,CAAC,CAAC,SAAS,iCAAiC;AAClG,CAAC;AAED,MAAa,aAAa,EAAE,OAAO;CACjC,iBAAiB,EAAE,OAAO,CAAC,CAAC,SAAS,uCAAuC;CAC5E,eAAe,wBAAwB,SAAS,kCAAkC;CAClF,WAAW,EAAE,MAAM,kBAAkB,CAAC,CAAC,SAAS,2BAA2B;AAC7E,CAAC;AAED,MAAa,uBAAuB,EAAE,OAAO;CAC3C,WAAW,EAAE,OAAO,CAAC,CAAC,SAAS,wCAAwC;CACvE,MAAM,EAAE,OAAO,CAAC,CAAC,SAAS,gCAAgC;CAC1D,gBAAgB,EAAE,OAAO,CAAC,CAAC,SAAS,oCAAoC;AAC1E,CAAC;AAED,MAAM,oBAAoB,EAAE,OAAO;CACjC,WAAW,EAAE,OAAO,CAAC,CAAC,SAAS,CAAC,CAAC,SAAS,mDAAmD;CAE7F,MAAM,EAAE,OAAO;EACb,MAAM,EAAE,OAAO;EACf,QAAQ,EAAE,IAAI;EACd,UAAU,EAAE,IAAI;EAChB,OAAO,EAAE,IAAI;EACb,UAAU,EAAE,IAAI;EAChB,UAAU,EAAE,IAAI;EAChB,SAAS,EAAE,IAAI;EACf,OAAO,EAAE,IAAI;EACb,YAAY,EAAE,IAAI;EAClB,eAAe,EAAE,IAAI;EACrB,SAAS,EAAE,IAAI;CACjB,CAAC;CACD,eAAe,EAAE,OAAO;CACxB,YAAY,EAAE,OAAO,EAAE,OAAO,GAAG,EAAE,QAAQ,IAAI,CAAC,CAAC,CAAC,SAAS;CAC3D,eAAe,EAAE,MAAM,EAAE,OAAO,CAAC,CAAC,CAAC,SAAS;AAC9C,CAAC;AAED,MAAM,qBAA8C,EAAE,MAAM;CAC1D,EAAE,OAAO;CACT,EAAE,QAAQ;CACV,EAAE,MAAM,EAAE,OAAO,CAAC;CAClB,EAAE,MAAM,EAAE,QAAQ,CAAC;AACrB,CAAC;AAED,MAAM,oBAAoB,EAAE,OAAO;CACjC,YAAY,EAAE,OAAO,EAAE,OAAO,GAAG,kBAAkB,CAAC,CAAC,SAAS;CAC9D,eAAe,EAAE,MAAM,EAAE,KAAK,CAAC,CAAC,CAAC,SAAS;AAC5C,CAAC;AAED,MAAM,wBAAwB,EAAE,OAAO;CACrC,SAAS,EAAE,SAAS;CACpB,SAAS,EAAE,OAAO;AACpB,CAAC;AAED,MAAM,uBAAuB,EAAE,OAAO;CACpC,MAAM,EAAE,OAAO,CAAC,CAAC,SAAS,mBAAmB;CAC7C,OAAO,EACJ,OAAO,EACN,aAAa,sBAAsB,SAAS,CAAC,CAAC,SAAS,wBAAwB,EACjF,CAAC,CAAC,CACD,SAAS,CAAC,CACV,SAAS,YAAY;CACxB,cAAc,EACX,OAAO,EAAE,OAAO,GAAG,iBAAiB,CAAC,CACrC,SAAS,CAAC,CACV,SAAS,0BAA0B;CACtC,eAAe,EACZ,OAAO,EAAE,OAAO,GAAG,kBAAkB,CAAC,CACtC,SAAS,CAAC,CACV,SAAS,2BAA2B;CACvC,YAAY,iBAAiB,SAAS,CAAC,CAAC,SAAS,iCAAiC;CAClF,MAAM,WAAW,SAAS,CAAC,CAAC,SAAS,iCAAiC;CACtE,gBAAgB,qBAAqB,SAAS,CAAC,CAAC,SAAS,qCAAqC;CAC9F,aAAa,EACV,OAAO,EAAE,OAAO,GAAG,0BAA0B,CAAC,CAC9C,SAAS,CAAC,CACV,SAAS,2DAA2D;CACvE,sBAAsB,EAAE,QAAQ,CAAC,CAAC,SAAS,CAAC,CAAC,SAAS,kCAAkC;AAC1F,CAAC;AAED,MAAa,mBAAmB,EAC7B,IACC,CACE,qBAAqB,OAAO;CAC1B,aAAa,kBAAkB,SAAS,CAAC,CAAC,SAAS,4BAA4B;CAC/E,uBAAuB,EAAE,UAAU,CAAC,CAAC,SAAS;AAChD,CAAC,GACD,qBAAqB,OAAO;CAC1B,aAAa,EAAE,UAAU,CAAC,CAAC,SAAS;CACpC,uBAAuB,EACpB,OAAO,EAAE,OAAO,GAAG,iBAAiB,CAAC,CACrC,SAAS,+BAA+B;AAC7C,CAAC,CACH,GACA,EACE,QAAQ,QAAQ;CAGd,IAAI,IAAI,SAAS,iBAAiB,OAAO;CAGzC,IAAI,IAAI,OAAO,SAAS,GAAG,OAAO;CAQlC,IAP6B,IAAI,OAAO,OAAO,kBAC7C,cAAc,OACX,MACC,EAAE,KAAK,WAAW,MACjB,EAAE,KAAK,OAAO,iBAAiB,EAAE,KAAK,OAAO,wBAClD,CAEqB,GACrB,OAAO;AAGX,EACF,CACF,CAAC,CACA,MAAM,YAAY;;;;ACnSrB,MAAa,wBAAwB,EAAE,OAAO;CAC5C,MAAM,EAAE,QAAQ,UAAU,CAAC,CAAC,SAAS,+BAA+B;CACpE,QAAQ,EACL,MACC,EAAE,KAAK;EACL;EACA;EACA;CACF,CAAC,CACH,CAAC,CACA,IAAI,CAAC,CAAC,CACN,WAAW,QAAQ,CAAC,GAAG,IAAI,IAAI,GAAG,CAAC,CAAC,CAAC,CACrC,SAAS,oCAAoC;CAChD,UAAU,EAAE,OAAO,CAAC,CAAC,SAAS,wCAAwC;CACtE,WAAW,eAAe,SAAS,CAAC,CAAC,SAAS,qCAAqC;AACrF,CAAC;AAED,MAAa,gCAAgC,EAAE,OAAO;CACpD,MAAM,EAAE,QAAQ,kBAAkB;CAClC,cAAc,EAAE,OAAO,CAAC,CAAC,SAAS,oCAAoC;CACtE,WAAW,eAAe,SAAS,CAAC,CAAC,SAAS,qCAAqC;AACrF,CAAC;AAED,MAAa,wBAAwB,EAAE,OAAO;CAC5C,MAAM,EAAE,QAAQ,UAAU;CAC1B,MAAM,EAAE,OAAO,CAAC,CAAC,SAAS,kCAAkC;CAC5D,UAAU,EACP,OAAO,CAAC,CACR,SAAS,CAAC,CACV,QAAQ,KAAK,CAAC,CACd,SAAS,+CAA+C;AAC7D,CAAC;AAED,MAAa,uCAAuC,EAAE,OAAO;CAC3D,MAAM,eAAe,SAAS,CAAC,CAAC,SAAS,sCAAsC;CAC/E,YAAY,EAAE,OAAO,CAAC,CAAC,IAAI,CAAC,CAAC,SAAS,CAAC,CAAC,SAAS,mCAAmC;AACtF,CAAC;AAED,MAAa,+BAA+B,EAAE,OAAO;CACnD,MAAM,EAAE,QAAQ,iBAAiB;CACjC,UAAU,qCAAqC,SAAS,CAAC,CAAC,SAAS,wBAAwB;AAC7F,CAAC;AAED,MAAa,uBAAuB,EAAE,OAAO;CAC3C,MAAM,EAAE,QAAQ,SAAS,CAAC,CAAC,SAAS,wBAAwB;CAC5D,QAAQ,EACL,MAAM,EAAE,KAAK;EAAC;EAAoB;EAAoB;CAAkB,CAAC,CAAC,CAAC,CAC3E,IAAI,CAAC,CAAC,CACN,WAAW,QAAQ,CAAC,GAAG,IAAI,IAAI,GAAG,CAAC,CAAC,CAAC,CACrC,SAAS,oCAAoC;CAChD,KAAK,EACF,OAAO,CAAC,CACR,SAAS,CAAC,CACV,SACC,kHACF;AACJ,CAAC;AAED,MAAa,+BAA+B,EAAE,OAAO;CACnD,MAAM,EAAE,QAAQ,iBAAiB,CAAC,CAAC,SAAS,iCAAiC;CAC7E,QAAQ,EACL,MACC,EAAE,KAAK;EACL;EACA;EACA;CACF,CAAC,CACH,CAAC,CACA,IAAI,CAAC,CAAC,CACN,WAAW,QAAQ,CAAC,GAAG,IAAI,IAAI,GAAG,CAAC,CAAC,CAAC,CACrC,SAAS,6CAA6C;AAC3D,CAAC;AAED,MAAa,gBAAgB,EAAE,mBAAmB,QAAQ;CACxD;CACA;CACA;CACA;CACA;CACA;AACF,CAAC;AAED,MAAa,0BAA0B,EAAE,OAAO;CAC9C,MAAM,EAAE,KAAK,CAAC,YAAY,aAAa,CAAC;CACxC,MAAM,eAAe,SAAS,yBAAyB;CACvD,aAAa,kBAAkB,SAAS,CAAC,CAAC,SAAS,yCAAyC;AAC9F,CAAC;AAED,MAAa,qBAAqB,EAAE,OAAO;CACzC,MAAM,EAAE,QAAQ,SAAS;CACzB,SAAS,EAAE,OAAO,CAAC,CAAC,SAAS,CAAC,CAAC,SAAS,+CAA+C;CACvF,OAAO,EAAE,YAAY,QAAQ,OAAO,GAAG,GAAG,EAAE,OAAO,CAAC,CAAC,SAAS,sBAAsB,CAAC;CACrF,WAAW,eAAe,SAAS,CAAC,CAAC,SAAS,uCAAuC;CACrF,aAAa,kBAAkB,SAAS,CAAC,CAAC,SAAS,wCAAwC;AAC7F,CAAC;AAED,MAAa,yBAAyB,EAAE,OAAO;CAC7C,MAAM,EAAE,QAAQ,SAAS;CACzB,KAAK,eAAe,SAAS,oCAAoC;CACjE,aAAa,eAAe,SAAS,CAAC,CAAC,SAAS,sCAAsC;CACtF,SAAS,EACN,OAAO,EAAE,OAAO,GAAG,EAAE,MAAM,CAAC,EAAE,OAAO,GAAG,EAAE,OAAO;EAAE,OAAO,EAAE,OAAO;EAAG,KAAK,EAAE,OAAO;CAAE,CAAC,CAAC,CAAC,CAAC,CAAC,CAC3F,SAAS,CAAC,CACV,SAAS,sCAAsC;AACpD,CAAC;AAED,MAAa,0BAA0B,EAAE,YACtC,QAAQ;CACP,IACE,OAAO,QACP,OAAO,QAAQ,YACf,EAAE,cAAc,QAChB,OAAO,IAAI,aAAa,YACxB,IAAI,aAAa,MAEjB,OAAO;CAGT,MAAM,EAAE,UAAU,GAAG,SAAS;CAC9B,OAAO;EAAE,GAAG;EAAM,cAAc,SAAS;CAAK;AAChD,GACA,EAAE,OAAO;CACP,MAAM,EAAE,QAAQ,UAAU;CAC1B,cAAc,EAAE,OAAO,CAAC,CAAC,SAAS,iCAAiC;CACnE,MAAM,EACH,MAAM,CAAC,EAAE,OAAO,EAAE,OAAO,GAAG,EAAE,QAAQ,CAAC,GAAG,cAAc,CAAC,CAAC,CAC1D,SAAS,CAAC,CACV,SAAS,mCAAmC;CAC/C,aAAa,kBAAkB,SAAS,CAAC,CAAC,SAAS,yCAAyC;AAC9F,CAAC,CACH;AAEA,MAAM,kBAAkB,EAAE,MAAM;CAC9B;CACA;CACA;CACA;AACF,CAAC;AAED,MAAa,iBAAiB,EAAE,OAAO;CACrC,MAAM,EAAE,OAAO,CAAC,CAAC,SAAS,eAAe;CACzC,aAAa,EAAE,OAAO,CAAC,CAAC,SAAS,CAAC,CAAC,SAAS,sBAAsB;CAClE,UAAU,EAAE,QAAQ,CAAC,CAAC,SAAS,CAAC,CAAC,QAAQ,KAAK,CAAC,CAAC,SAAS,kCAAkC;CAC3F,SAAS,cAAc,SAAS,6BAA6B;CAC7D,WAAW,gBAAgB,SAAS,qCAAqC;AAC3E,CAAC;;;;;;;;;AC3GD,SAAgB,sBAAsB,QAAsD;CAC1F,MAAM,EAAE,WAAW;CACnB,MAAM,YAAsC,CAAC;CAC7C,MAAM,kBAAoC,CAAC;CAC3C,IAAI;CAEJ,MAAM,sBAAsB,OAAO,iBAAwD;EACzF,IAAI;GACF,MAAM,iBAAiB,MAAM,OAAO,cAAc,YAAY,CAAC,CAAC;GAChE,MAAM,SAAS,eAAe,UAAU,eAAe,OAAO;GAC9D,IAAI,OAAO,SAAS;IAClB,MAAM,eAAe,KAAK,SAAS,QAAQ,IAAI,GAAG,YAAY;IAC9D,OAAO,IACL,aAAa,OAAO,cAAc,IAAI,OAAO,KAAK,KAAK,EAAE,EAAE,eAAe,OAAO,KAAK,YAAY,GACpG;IACA,UAAU,gBAAgB,OAAO;IACjC,OAAO,OAAO;GAChB;GACA,IAAI,aAAa,eAAe,SAAS,UAAU,GACjD,MAAM,OAAO;EAEjB,SAAS,OAAO;GACd,MAAM,eAAe,KAAK,SAAS,QAAQ,IAAI,GAAG,YAAY;GAC9D,OAAO,MAAM,gCAAgC,OAAO,KAAK,YAAY,GAAG;GACxE,OAAO,MAAM,OAAO,KAAK,CAAC;GAC1B,MAAM;EACR;CAEF;CAEA,OAAO;EACL;EACA,IAAI,YAAY;GACd,OAAO;EACT;EACA,IAAI,kBAAkB;GACpB,OAAO;EACT;EACA,eAAe,YAAY;GACzB,IAAI,CAAC,aACH,eAAe,YAAY;IACzB,IAAI,OAAO,MAAM,WAAW,GAC1B;IAGF,MAAM,gBAAgB,qBAAqB,MAAM;IAEjD,OAAO,QAAQ;IACf,OAAO,IAAI,SAAS,OAAO,UAAU,cAAc,OAAO,SAAS,CAAC,EAAE,gBAAgB;IAEtF,MAAM,QAAQ,IAAI,cAAc,KAAK,iBAAiB,oBAAoB,YAAY,CAAC,CAAC;IACxF,OAAO;GACT,EAAC,CAAE;GAEL,OAAO;EACT;EACA,yBAAyB,OAAO,cAAwB;GACtD,IAAI,UAAU,WAAW,GAAG;GAE5B,OAAO,QAAQ;GACf,OAAO,IACL,WAAW,OAAO,UAAU,UAAU,OAAO,SAAS,CAAC,EAAE,iCAC3D;GAEA,KAAK,MAAM,YAAY,WAAW;IAChC,MAAM,WAAW,MAAM,oBAAoB,QAAQ;IACnD,IAAI,UAGF,gBAAgB,KAAK;KACnB;KACA,UAAU;KACV,gBAAgB;IAClB,CAAC;GAEL;EACF;CACF;AACF"}

package/dist/{plugin-DylAsA4Z.d.mts → types-Bzr0RQME.d.mts}

@@ -1,5 +1,26 @@
-import { _ as PluginAttachment, a as TypeSourceInfoEntry, c as TailorAnyDBType, i as TailorDBType, s as TailorAnyDBField } from "./tailordb-C-ar4XCX.mjs";
+import { o as TailorEnv } from "./types-DTcZ2Yax.mjs";
+import { C as FieldMetadata, D as TailorField, F as output, O as TailorFieldType, S as EnumValue, _ as TailorDBTypeMetadata, c as RawRelationConfig, d as TailorAnyDBField, f as TailorAnyDBType, m as TailorDBInstance, s as PluginAttachment, x as DefinedFieldMetadata, y as TailorDBTypeParsedSettings } from "./types-DZrtN6-H.mjs";
+import { IsAny, JsonObject, JsonValue } from "type-fest";
 
+//#region src/types/auth-connection.generated.d.ts
+type AuthConnectionOAuth2Config = {
+  /** OAuth2 provider URL */providerUrl: string; /** OAuth2 issuer URL */
+  issuerUrl: string; /** OAuth2 client ID */
+  clientId: string; /** OAuth2 client secret */
+  clientSecret: string; /** OAuth2 authorization endpoint override */
+  authUrl?: string | undefined; /** OAuth2 token endpoint override */
+  tokenUrl?: string | undefined;
+};
+type AuthConnectionConfig = {
+  type: "oauth2";
+  providerUrl: string;
+  issuerUrl: string;
+  clientId: string;
+  clientSecret: string;
+  authUrl?: string | undefined;
+  tokenUrl?: string | undefined;
+};
+//#endregion
 //#region src/types/auth.generated.d.ts
 type AuthInvokerObject = {
   /** Auth namespace */namespace: string; /** Machine user name for authentication */
@@ -149,6 +170,322 @@ type TenantProvider = {
   signatureField: string;
 };
 //#endregion
+//#region src/configure/services/auth/types.d.ts
+type OAuth2ClientGrantType = OAuth2Client["grantTypes"][number];
+type SCIMAttributeType = SCIMAttribute["type"];
+type AuthInvokerWithName<M extends string> = Omit<AuthInvoker, "machineUserName"> & {
+  machineUserName: M;
+};
+/** Result of retrieving a connection token at runtime. */
+type AuthConnectionTokenResult = {
+  access_token: string;
+  refresh_token?: string;
+  token_type?: string;
+  expiry?: string;
+};
+type ValueOperand = string | boolean | string[] | boolean[];
+type AuthAttributeValue = ValueOperand | null | undefined;
+type UserFieldKeys<User extends TailorDBInstance> = keyof output<User> & string;
+type FieldDefined<User extends TailorDBInstance, Key extends UserFieldKeys<User>> = User["fields"][Key] extends {
+  _defined: infer Defined;
+} ? Defined : never;
+type FieldOutput<User extends TailorDBInstance, Key extends UserFieldKeys<User>> = output<User>[Key];
+type FieldIsRequired<User extends TailorDBInstance, Key extends UserFieldKeys<User>> = undefined extends FieldOutput<User, Key> ? false : true;
+type FieldIsOfType<User extends TailorDBInstance, Key extends UserFieldKeys<User>, Type extends string> = FieldDefined<User, Key> extends {
+  type: Type;
+} ? true : false;
+type FieldIsArray<User extends TailorDBInstance, Key extends UserFieldKeys<User>> = FieldDefined<User, Key> extends {
+  array: true;
+} ? true : false;
+type FieldIsUnique<User extends TailorDBInstance, Key extends UserFieldKeys<User>> = FieldDefined<User, Key> extends {
+  unique: true;
+} ? true : false;
+type FieldSupportsValueOperand<User extends TailorDBInstance, Key extends UserFieldKeys<User>> = FieldOutput<User, Key> extends ValueOperand | null | undefined ? true : false;
+type UsernameFieldKey<User extends TailorDBInstance> = IsAny<User> extends true ? string : { [K in UserFieldKeys<User>]: FieldIsRequired<User, K> extends true ? FieldIsOfType<User, K, "string"> extends true ? FieldIsArray<User, K> extends true ? never : FieldIsUnique<User, K> extends true ? K : never : never : never }[UserFieldKeys<User>];
+type UserAttributeKey<User extends TailorDBInstance> = { [K in UserFieldKeys<User>]: K extends "id" ? never : FieldSupportsValueOperand<User, K> extends true ? FieldIsOfType<User, K, "datetime" | "date" | "time"> extends true ? never : K : never }[UserFieldKeys<User>];
+type UserAttributeListKey<User extends TailorDBInstance> = { [K in UserFieldKeys<User>]: K extends "id" ? never : FieldIsOfType<User, K, "uuid"> extends true ? FieldIsArray<User, K> extends true ? never : K : never }[UserFieldKeys<User>];
+type UserAttributeMap<User extends TailorDBInstance> = { [K in UserAttributeKey<User>]?: true };
+type DisallowExtraKeys<T, Allowed extends PropertyKey> = T & { [K in Exclude<keyof T, Allowed>]: never };
+type AttributeListValue<User extends TailorDBInstance, Key extends UserAttributeListKey<User>> = Key extends keyof output<User> ? output<User>[Key] : never;
+type AttributeListToTuple<User extends TailorDBInstance, AttributeList extends readonly UserAttributeListKey<User>[]> = { [Index in keyof AttributeList]: AttributeList[Index] extends UserAttributeListKey<User> ? AttributeListValue<User, AttributeList[Index]> : never };
+type AttributeMapSelectedKeys<User extends TailorDBInstance, AttributeMap extends UserAttributeMap<User>> = Extract<{ [K in keyof AttributeMap]-?: undefined extends AttributeMap[K] ? never : K }[keyof AttributeMap], UserAttributeKey<User>>;
+type UserProfile<User extends TailorDBInstance, AttributeMap extends UserAttributeMap<User>, AttributeList extends UserAttributeListKey<User>[]> = {
+  /**
+   * TailorDB namespace where the user type is defined.
+   *
+   * Usually auto-resolved, so you don't need to specify this.
+   * Required only when multiple TailorDBs exist and the type is in an external TailorDB.
+   */
+  namespace?: string;
+  type: User;
+  usernameField: UsernameFieldKey<User>;
+  attributes?: DisallowExtraKeys<AttributeMap, UserAttributeKey<User>>;
+  attributeList?: AttributeList;
+};
+type MachineUserAttributeFields = Record<string, TailorField<DefinedFieldMetadata, unknown, FieldMetadata, TailorFieldType>>;
+type TailorFieldOutputValue<Field> = Field extends TailorField<DefinedFieldMetadata, infer Output, FieldMetadata, TailorFieldType> ? Output : never;
+type MachineUserAttributeValues<Fields extends MachineUserAttributeFields> = { [K in keyof Fields]: TailorFieldOutputValue<Fields[K]> extends ValueOperand | null | undefined ? TailorFieldOutputValue<Fields[K]> : never };
+type MachineUserFromAttributes<Fields extends MachineUserAttributeFields> = (keyof Fields extends never ? {
+  attributes?: never;
+} : {
+  attributes: DisallowExtraKeys<MachineUserAttributeValues<Fields>, keyof Fields>;
+}) & {
+  attributeList?: string[];
+};
+type MachineUser<User extends TailorDBInstance, AttributeMap extends UserAttributeMap<User> = UserAttributeMap<User>, AttributeList extends UserAttributeListKey<User>[] = [], MachineUserAttributes extends MachineUserAttributeFields | undefined = undefined> = IsAny<MachineUserAttributes> extends true ? IsAny<User> extends true ? {
+  attributes: Record<string, AuthAttributeValue>;
+  attributeList?: string[];
+} : (AttributeMapSelectedKeys<User, AttributeMap> extends never ? {
+  attributes?: never;
+} : {
+  attributes: { [K in AttributeMapSelectedKeys<User, AttributeMap>]: K extends keyof output<User> ? output<User>[K] : never } & { [K in Exclude<keyof output<User>, AttributeMapSelectedKeys<User, AttributeMap>>]?: never };
+}) & ([] extends AttributeList ? {
+  attributeList?: never;
+} : {
+  attributeList: AttributeListToTuple<User, AttributeList>;
+}) : [MachineUserAttributes] extends [MachineUserAttributeFields] ? MachineUserFromAttributes<MachineUserAttributes> : IsAny<User> extends true ? {
+  attributes: Record<string, AuthAttributeValue>;
+  attributeList?: string[];
+} : (AttributeMapSelectedKeys<User, AttributeMap> extends never ? {
+  attributes?: never;
+} : {
+  attributes: { [K in AttributeMapSelectedKeys<User, AttributeMap>]: K extends keyof output<User> ? output<User>[K] : never } & { [K in Exclude<keyof output<User>, AttributeMapSelectedKeys<User, AttributeMap>>]?: never };
+}) & ([] extends AttributeList ? {
+  attributeList?: never;
+} : {
+  attributeList: AttributeListToTuple<User, AttributeList>;
+});
+/** Upstream OAuth provider that federated a login through the Built-in IdP. */
+type FederatedIdentityProvider = "google" | "microsoft";
+/**
+ * Profile claims forwarded from the upstream OAuth provider's ID token.
+ *
+ * Commonly present claims are typed; any other claim the provider issues is
+ * forwarded as-is and reachable through the index signature. Availability
+ * varies by provider (e.g. Microsoft does not issue `picture`).
+ */
+type FederatedIdentityClaims = {
+  name?: string;
+  given_name?: string;
+  family_name?: string;
+  picture?: string;
+  locale?: string;
+  [claim: string]: JsonValue | undefined;
+};
+/**
+ * The upstream identity that federated this login, populated when a user signs
+ * in through a Built-in IdP OAuth provider (Google or Microsoft).
+ *
+ * Available on {@link BeforeLoginClaims.federated_identity}; `undefined` for
+ * password logins.
+ */
+type FederatedIdentity = {
+  provider: FederatedIdentityProvider;
+  claims: FederatedIdentityClaims;
+};
+/**
+ * Token claims passed to the {@link BeforeLoginHook} handler. Carries the IdP's
+ * own claims (e.g. `sub`, `email`) plus, for federated logins, the upstream
+ * provider's profile under {@link BeforeLoginClaims.federated_identity}.
+ */
+type BeforeLoginClaims = JsonObject & {
+  /** Present only for federated (Google/Microsoft) logins; `undefined` for password logins. */federated_identity?: FederatedIdentity;
+};
+type BeforeLoginHookArgs = {
+  claims: BeforeLoginClaims;
+  idpConfigName: string; /** Environment variables defined in `defineConfig({ env })`. */
+  env: TailorEnv;
+};
+type BeforeLoginHook<MachineUserNames extends string> = {
+  handler(args: BeforeLoginHookArgs): Promise<void>;
+  invoker: NoInfer<MachineUserNames>;
+};
+type AuthHooks<MachineUserNames extends string> = {
+  beforeLogin?: BeforeLoginHook<MachineUserNames>;
+};
+type AuthServiceInput<User extends TailorDBInstance, AttributeMap extends UserAttributeMap<User>, AttributeList extends UserAttributeListKey<User>[], MachineUserNames extends string, MachineUserAttributes extends MachineUserAttributeFields | undefined = MachineUserAttributeFields | undefined, ConnectionNames extends string = string> = {
+  hooks?: AuthHooks<MachineUserNames>;
+  userProfile?: UserProfile<User, AttributeMap, AttributeList>;
+  machineUserAttributes?: MachineUserAttributes;
+  machineUsers?: Record<MachineUserNames, MachineUser<User, AttributeMap, AttributeList, MachineUserAttributes>>;
+  oauth2Clients?: Record<string, OAuth2ClientInput>;
+  idProvider?: IdProvider;
+  scim?: SCIMConfig;
+  tenantProvider?: TenantProvider;
+  connections?: Record<ConnectionNames, AuthConnectionConfig>;
+  publishSessionEvents?: boolean;
+};
+declare const authDefinitionBrand: unique symbol;
+type AuthDefinitionBrand = {
+  readonly [authDefinitionBrand]: true;
+};
+type ConnectionNames<Config> = Config extends {
+  connections?: Record<infer K, unknown>;
+} ? K & string : string;
+type DefinedAuth<Name extends string, Config, MachineUserNames extends string> = Config & {
+  name: Name;
+  /**
+   * @deprecated Pass the machine user name directly as a string instead, e.g. `authInvoker: "machine-user-name"`.
+   * Using this function pulls config-layer (Node-only) dependencies into runtime bundles.
+   */
+  invoker<M extends MachineUserNames>(machineUser: M): AuthInvokerWithName<M>;
+  getConnectionToken<C extends ConnectionNames<Config>>(connectionName: C): Promise<AuthConnectionTokenResult>;
+} & AuthDefinitionBrand;
+type AuthExternalConfig = {
+  name: string;
+  external: true;
+};
+type AuthServiceInputLoose = AuthServiceInput<any, any, any, string, any>;
+type AuthOwnConfig = DefinedAuth<string, AuthServiceInputLoose, string>;
+type AuthConfig = AuthOwnConfig | AuthExternalConfig;
+//#endregion
+//#region src/parser/service/tailordb/types.d.ts
+interface UserDefinedTypeSource {
+  filePath: string;
+  exportName: string;
+  pluginId?: never;
+}
+interface PluginGeneratedTypeSource {
+  filePath?: never;
+  exportName: string;
+  pluginId: string;
+  pluginImportPath: string;
+  originalFilePath: string;
+  originalExportName: string;
+  generatedTypeKind?: string;
+  pluginConfig?: unknown;
+  namespace?: string;
+}
+type TypeSourceInfoEntry = UserDefinedTypeSource | PluginGeneratedTypeSource;
+interface Script {
+  expr: string;
+}
+interface OperatorValidateConfig {
+  script: Script;
+  errorMessage: string;
+}
+interface OperatorFieldHook {
+  create?: Script;
+  update?: Script;
+}
+interface OperatorFieldConfig {
+  type: string;
+  required?: boolean;
+  description?: string;
+  allowedValues?: EnumValue[];
+  array?: boolean;
+  index?: boolean;
+  unique?: boolean;
+  vector?: boolean;
+  foreignKey?: boolean;
+  foreignKeyType?: string;
+  foreignKeyField?: string;
+  rawRelation?: RawRelationConfig;
+  validate?: OperatorValidateConfig[];
+  hooks?: OperatorFieldHook;
+  serial?: {
+    start: number;
+    maxValue?: number;
+    format?: string;
+  };
+  scale?: number;
+  fields?: Record<string, OperatorFieldConfig>;
+}
+type GqlPermissionAction = "read" | "create" | "update" | "delete" | "aggregate" | "bulkUpsert";
+type StandardPermissionOperator = "eq" | "ne" | "in" | "nin" | "hasAny" | "nhasAny";
+type UserOperand = {
+  user: string;
+};
+type StandardRecordOperand<Update extends boolean = false> = Update extends true ? {
+  oldRecord: string;
+} | {
+  newRecord: string;
+} : {
+  record: string;
+};
+type PermissionOperand<Level extends "record" | "gql" = "record" | "gql", Update extends boolean = boolean> = UserOperand | ValueOperand | (Level extends "record" ? StandardRecordOperand<Update> : never);
+type StandardPermissionCondition<Level extends "record" | "gql" = "record" | "gql", Update extends boolean = boolean> = readonly [PermissionOperand<Level, Update>, StandardPermissionOperator, PermissionOperand<Level, Update>];
+type StandardActionPermission<Level extends "record" | "gql" = "record" | "gql", Update extends boolean = boolean> = {
+  conditions: readonly StandardPermissionCondition<Level, Update>[];
+  description?: string;
+  permit: "allow" | "deny";
+};
+type StandardTailorTypePermission = {
+  create: readonly StandardActionPermission<"record", false>[];
+  read: readonly StandardActionPermission<"record", false>[];
+  update: readonly StandardActionPermission<"record", true>[];
+  delete: readonly StandardActionPermission<"record", false>[];
+};
+type StandardGqlPermissionPolicy = {
+  conditions: readonly StandardPermissionCondition<"gql">[];
+  actions: readonly ["all"] | readonly GqlPermissionAction[];
+  permit: "allow" | "deny";
+  description?: string;
+};
+type StandardTailorTypeGqlPermission = readonly StandardGqlPermissionPolicy[];
+interface Permissions {
+  record?: StandardTailorTypePermission;
+  gql?: StandardTailorTypeGqlPermission;
+}
+interface ParsedField {
+  name: string;
+  config: OperatorFieldConfig;
+  relation?: {
+    targetType: string;
+    forwardName: string;
+    backwardName: string;
+    key: string;
+    unique: boolean;
+  };
+}
+interface ParsedRelationship {
+  name: string;
+  targetType: string;
+  targetField: string;
+  sourceField: string;
+  isArray: boolean;
+  description: string;
+}
+interface TailorDBType {
+  name: string;
+  pluralForm: string;
+  description?: string;
+  fields: Record<string, ParsedField>;
+  forwardRelationships: Record<string, ParsedRelationship>;
+  backwardRelationships: Record<string, ParsedRelationship>;
+  settings: TailorDBTypeParsedSettings;
+  permissions: Permissions;
+  indexes?: TailorDBTypeMetadata["indexes"];
+  files?: TailorDBTypeMetadata["files"];
+}
+//#endregion
+//#region src/types/generator-config.generated.d.ts
+type BaseGeneratorConfig = ["@tailor-platform/kysely-type", {
+  distPath: string;
+}] | ["@tailor-platform/seed", {
+  distPath: string;
+  machineUserName?: string | undefined;
+  disableIdpUserSync?: {
+    userToIdp?: boolean | undefined;
+    idpToUser?: boolean | undefined;
+  } | undefined;
+}] | ["@tailor-platform/enum-constants", {
+  distPath: string;
+}] | ["@tailor-platform/file-utils", {
+  distPath: string;
+}] | {
+  id: string;
+  description: string;
+  dependencies: ("tailordb" | "resolver" | "executor")[];
+  aggregate: Function;
+  processType?: Function | undefined;
+  processResolver?: Function | undefined;
+  processExecutor?: Function | undefined;
+  processTailorDBNamespace?: Function | undefined;
+  processResolverNamespace?: Function | undefined;
+};
+type BaseGeneratorConfigInput = BaseGeneratorConfig;
+//#endregion
 //#region src/types/executor.generated.d.ts
 type TailorDBTrigger = {
   /** TailorDB record event trigger */kind: "tailordb"; /** TailorDB event types to trigger on */
@@ -325,36 +662,6 @@ type Executor = {
   description?: string | undefined;
 };
 //#endregion
-//#region src/types/generator-config.generated.d.ts
-type BaseGeneratorConfig = ["@tailor-platform/kysely-type", {
-  distPath: string;
-}] | ["@tailor-platform/seed", {
-  distPath: string;
-  machineUserName?: string | undefined;
-  disableIdpUserSync?: {
-    userToIdp?: boolean | undefined;
-    idpToUser?: boolean | undefined;
-  } | undefined;
-}] | ["@tailor-platform/enum-constants", {
-  distPath: string;
-}] | ["@tailor-platform/file-utils", {
-  distPath: string;
-}] | {
-  id: string;
-  description: string;
-  dependencies: ("tailordb" | "resolver" | "executor")[];
-  aggregate: Function;
-  processType?: Function | undefined;
-  processResolver?: Function | undefined;
-  processExecutor?: Function | undefined;
-  processTailorDBNamespace?: Function | undefined;
-  processResolverNamespace?: Function | undefined;
-};
-type BaseGeneratorConfigInput = BaseGeneratorConfig;
-//#endregion
-//#region src/types/generator-config.d.ts
-type GeneratorConfig = BaseGeneratorConfigInput;
-//#endregion
 //#region src/types/resolver.generated.d.ts
 type Resolver = {
   /** GraphQL operation type (query or mutation) */operation: "query" | "mutation"; /** Resolver name */
@@ -392,7 +699,8 @@ type Resolver = {
 };
 type ResolverInput = Resolver;
 //#endregion
-//#region src/types/plugin-generation.d.ts
+//#region src/plugin/types.d.ts
+type GeneratorConfig = BaseGeneratorConfigInput;
 /**
  * A single generated file to write to disk.
  */
@@ -501,8 +809,6 @@ interface ExecutorReadyContext<PluginConfig = unknown> {
   /** Plugin-level configuration passed via definePlugins() */
   pluginConfig: PluginConfig;
 }
-//#endregion
-//#region src/types/plugin.d.ts
 type TypeConfigRequired<PluginConfig = unknown> = boolean | ((pluginConfig: PluginConfig | undefined) => boolean);
 /**
  * Interface for plugin configuration mapping.
@@ -630,5 +936,5 @@ interface Plugin<TypeConfig = unknown, PluginConfig = unknown> {
   onExecutorReady?(context: ExecutorReadyContext<PluginConfig>): GeneratorResult | Promise<GeneratorResult>;
 }
 //#endregion
-export { IdpUserTrigger as A, IdProvider as B, GeneratorConfig as C, ExecutorInput as D, Executor as E, WebhookOperation as F, SCIMAttribute as G, OAuth2ClientInput as H, WorkflowOperation as I, SCIMConfig as J, SCIMAttributeMapping as K, AuthInvoker as L, ResolverExecutedTrigger as M, ScheduleTriggerInput as N, FunctionOperation as O, TailorDBTrigger as P, BuiltinIdP as R, ResolverInput as S, AuthAccessTokenTrigger as T, OIDC as U, OAuth2Client as V, SAML as W, TenantProvider as X, SCIMResource as Y, ResolverNamespaceData as _, PluginExecutorContextBase as a, TailorDBReadyContext as b, PluginGeneratedResolver as c, PluginOutput as d, PluginProcessContext as f, GeneratorResult as g, ExecutorReadyContext as h, PluginExecutorContext as i, IncomingWebhookTrigger as j, GqlOperation as k, PluginGeneratedType as l, TypePluginOutput as m, Plugin as n, PluginGeneratedExecutor as o, TailorDBTypeForPlugin as p, SCIMAuthorization as q, PluginConfigs as r, PluginGeneratedExecutorWithFile as s, NamespacePluginOutput as t, PluginNamespaceProcessContext as u, ResolverReadyContext as v, BaseGeneratorConfig as w, Resolver as x, TailorDBNamespaceData as y, IDToken as z };
-//# sourceMappingURL=plugin-DylAsA4Z.d.mts.map
+export { UserAttributeListKey as $, IncomingWebhookTrigger as A, AuthConnectionTokenResult as B, ResolverInput as C, FunctionOperation as D, ExecutorInput as E, WorkflowOperation as F, BeforeLoginHookArgs as G, AuthOwnConfig as H, BaseGeneratorConfig as I, FederatedIdentityClaims as J, DefinedAuth as K, TailorDBType as L, ScheduleTriggerInput as M, TailorDBTrigger as N, GqlOperation as O, WebhookOperation as P, UserAttributeKey as Q, TypeSourceInfoEntry as R, Resolver as S, Executor as T, AuthServiceInput as U, AuthExternalConfig as V, BeforeLoginClaims as W, OAuth2ClientGrantType as X, FederatedIdentityProvider as Y, SCIMAttributeType as Z, ResolverReadyContext as _, AuthConnectionConfig as _t, Plugin as a, IDToken as at, TailorDBTypeForPlugin as b, PluginExecutorContextBase as c, OAuth2ClientInput as ct, PluginGeneratedResolver as d, SCIMAttribute as dt, UserAttributeMap as et, PluginGeneratedType as f, SCIMAttributeMapping as ft, ResolverNamespaceData as g, TenantProvider as gt, PluginProcessContext as h, SCIMResource as ht, NamespacePluginOutput as i, BuiltinIdP as it, ResolverExecutedTrigger as j, IdpUserTrigger as k, PluginGeneratedExecutor as l, OIDC as lt, PluginOutput as m, SCIMConfig as mt, GeneratorConfig as n, ValueOperand as nt, PluginConfigs as o, IdProvider as ot, PluginNamespaceProcessContext as p, SCIMAuthorization as pt, FederatedIdentity as q, GeneratorResult as r, AuthInvoker as rt, PluginExecutorContext as s, OAuth2Client as st, ExecutorReadyContext as t, UsernameFieldKey as tt, PluginGeneratedExecutorWithFile as u, SAML as ut, TailorDBNamespaceData as v, AuthConnectionOAuth2Config as vt, AuthAccessTokenTrigger as w, TypePluginOutput as x, TailorDBReadyContext as y, AuthConfig as z };
+//# sourceMappingURL=types-Bzr0RQME.d.mts.map