@tailor-platform/sdk 2.0.0-next.0 → 2.0.0-next.2

package/dist/workflow.generated-Bf1tWylx.d.mts

@@ -1,1416 +0,0 @@
-import { C as FieldOutput$1, D as Validators, E as FieldValidateInput, F as InferFieldsOutput, N as TailorUser, R as Prettify, S as FieldOptions, T as TailorToTs, b as EnumValue, d as TailorDBType$1, f as DBFieldMetadata, g as TailorField, h as SerialConfig, j as InferredAttributeMap, l as TailorDBField$1, m as GqlOperationsConfig, n as RelationType, o as ValueOperand, p as DefinedDBFieldMetadata, r as TailorDBServiceInput, s as TailorAnyDBField$1, t as IndexDef, u as TailorDBInstance$1, v as ArrayFieldOutput, w as TailorFieldType, x as FieldMetadata, y as DefinedFieldMetadata, z as output } from "./tailordb-BlBGmQK-.mjs";
-import { B as IdProvider, G as SCIMAttribute, H as OAuth2ClientInput, J as SCIMConfig, L as AuthInvoker, R as BuiltinIdP, V as OAuth2Client, X as TenantProvider, r as PluginConfigs } from "./plugin-C_FyVSdl.mjs";
-import { n as TailorEnv } from "./env-B-g-qgE4.mjs";
-import { IsAny, JsonObject, NonEmptyObject } from "type-fest";
-import { StandardSchemaV1 } from "@standard-schema/spec";
-
-//#region src/configure/types/field.d.ts
-type AllowedValues = readonly [string | EnumValue, ...(string | EnumValue)[]];
-type AllowedValuesOutput<V extends AllowedValues> = V[number] extends infer T ? T extends string ? T : T extends {
-  value: infer K;
-} ? K : never : never;
-//#endregion
-//#region src/configure/services/tailordb/permission.d.ts
-/**
- * Record-level permission configuration for a TailorDB type.
- * Defines create, read, update, and delete permissions.
- *
- * Prefer object format with explicit `conditions` and `permit` for readability.
- * Shorthand array format is supported for compatibility, but less readable.
- *
- * For update operations, use `newRecord`/`oldRecord` operands instead of `record`.
- * @example
- * const permission: TailorTypePermission = {
- *   create: [{ conditions: [[{ user: "_loggedIn" }, "=", true]], permit: true }],
- *   read: [{ conditions: [[{ record: "isPublic" }, "=", true]], permit: true }],
- *   update: [{ conditions: [[{ newRecord: "ownerId" }, "=", { user: "id" }]], permit: true }],
- *   delete: [{ conditions: [[{ record: "ownerId" }, "=", { user: "id" }]], permit: true }],
- * };
- */
-type TailorTypePermission<User extends object = InferredAttributeMap, Type extends object = object> = {
-  create: readonly ActionPermission<"record", User, Type, false>[];
-  read: readonly ActionPermission<"record", User, Type, false>[];
-  update: readonly ActionPermission<"record", User, Type, true>[];
-  delete: readonly ActionPermission<"record", User, Type, false>[];
-};
-type ActionPermission<Level extends "record" | "gql" = "record" | "gql", User extends object = InferredAttributeMap, Type extends object = object, Update extends boolean = boolean> = {
-  conditions: PermissionCondition<Level, User, Update, Type> | readonly PermissionCondition<Level, User, Update, Type>[];
-  description?: string | undefined;
-  /**
-   * Whether matching records are granted (`true`) or denied (`false`).
-   * Omitting `permit` in this object form defaults to `deny` and emits a
-   * warning; set it explicitly. (The array shorthand defaults to `allow`.)
-   */
-  permit?: boolean;
-} | readonly [...PermissionCondition<Level, User, Update, Type>, ...([] | [boolean])] | readonly [...PermissionCondition<Level, User, Update, Type>[], ...([] | [boolean])];
-type TailorTypeGqlPermission<User extends object = InferredAttributeMap, Type extends object = object> = readonly GqlPermissionPolicy<User, Type>[];
-type GqlPermissionPolicy<User extends object = InferredAttributeMap, Type extends object = object> = {
-  conditions: readonly PermissionCondition<"gql", User, boolean, Type>[];
-  actions: "all" | readonly GqlPermissionAction[];
-  /**
-   * Whether matching requests are granted (`true`) or denied (`false`).
-   * Omitting `permit` defaults to `deny` and emits a warning; set it explicitly.
-   */
-  permit?: boolean;
-  description?: string;
-};
-type GqlPermissionAction = "read" | "create" | "update" | "delete" | "aggregate" | "bulkUpsert";
-type EqualityOperator = "=" | "!=";
-type ContainsOperator = "in" | "not in";
-type HasAnyOperator = "hasAny" | "not hasAny";
-type StringFieldKeys<User extends object> = { [K in keyof User]: User[K] extends string ? K : never }[keyof User];
-type StringArrayFieldKeys<User extends object> = { [K in keyof User]: User[K] extends string[] ? K : never }[keyof User];
-type BooleanFieldKeys<User extends object> = { [K in keyof User]: User[K] extends boolean ? K : never }[keyof User];
-type BooleanArrayFieldKeys<User extends object> = { [K in keyof User]: User[K] extends boolean[] ? K : never }[keyof User];
-type UserStringOperand<User extends object = InferredAttributeMap> = {
-  user: StringFieldKeys<User> | "id";
-};
-type UserStringArrayOperand<User extends object = InferredAttributeMap> = {
-  user: StringArrayFieldKeys<User>;
-};
-type UserBooleanOperand<User extends object = InferredAttributeMap> = {
-  user: BooleanFieldKeys<User> | "_loggedIn";
-};
-type UserBooleanArrayOperand<User extends object = InferredAttributeMap> = {
-  user: BooleanArrayFieldKeys<User>;
-};
-type RecordOperand<Type extends object, Update extends boolean = false> = Update extends true ? {
-  oldRecord: (keyof Type & string) | "id";
-} | {
-  newRecord: (keyof Type & string) | "id";
-} : {
-  record: (keyof Type & string) | "id";
-};
-type StringEqualityCondition<Level extends "record" | "gql", User extends object, Update extends boolean, Type extends object> = (Level extends "gql" ? readonly [string, EqualityOperator, boolean] : never) | readonly [string, EqualityOperator, string] | readonly [UserStringOperand<User>, EqualityOperator, string] | readonly [string, EqualityOperator, UserStringOperand<User>] | (Level extends "record" ? readonly [RecordOperand<Type, Update>, EqualityOperator, string | UserStringOperand<User>] | readonly [string | UserStringOperand<User>, EqualityOperator, RecordOperand<Type, Update>] : never);
-type BooleanEqualityCondition<Level extends "record" | "gql", User extends object, Update extends boolean, Type extends object> = readonly [boolean, EqualityOperator, boolean] | readonly [UserBooleanOperand<User>, EqualityOperator, boolean] | readonly [boolean, EqualityOperator, UserBooleanOperand<User>] | (Level extends "record" ? readonly [RecordOperand<Type, Update>, EqualityOperator, boolean | UserBooleanOperand<User>] | readonly [boolean | UserBooleanOperand<User>, EqualityOperator, RecordOperand<Type, Update>] : never);
-type EqualityCondition<Level extends "record" | "gql" = "record", User extends object = InferredAttributeMap, Update extends boolean = boolean, Type extends object = object> = StringEqualityCondition<Level, User, Update, Type> | BooleanEqualityCondition<Level, User, Update, Type>;
-type StringContainsCondition<Level extends "record" | "gql", User extends object, Update extends boolean, Type extends object> = readonly [string, ContainsOperator, string[]] | readonly [UserStringOperand<User>, ContainsOperator, string[]] | readonly [string, ContainsOperator, UserStringArrayOperand<User>] | (Level extends "record" ? readonly [RecordOperand<Type, Update>, ContainsOperator, string[] | UserStringArrayOperand<User>] | readonly [string | UserStringOperand<User>, ContainsOperator, RecordOperand<Type, Update>] : never);
-type BooleanContainsCondition<Level extends "record" | "gql", User extends object, Update extends boolean, Type extends object> = (Level extends "gql" ? readonly [string, ContainsOperator, boolean[]] : never) | readonly [boolean, ContainsOperator, boolean[]] | readonly [UserBooleanOperand<User>, ContainsOperator, boolean[]] | readonly [boolean, ContainsOperator, UserBooleanArrayOperand<User>] | (Level extends "record" ? readonly [RecordOperand<Type, Update>, ContainsOperator, boolean[] | UserBooleanArrayOperand<User>] | readonly [boolean | UserBooleanOperand<User>, ContainsOperator, RecordOperand<Type, Update>] : never);
-type ContainsCondition<Level extends "record" | "gql" = "record", User extends object = InferredAttributeMap, Update extends boolean = boolean, Type extends object = object> = StringContainsCondition<Level, User, Update, Type> | BooleanContainsCondition<Level, User, Update, Type>;
-type HasAnyCondition<Level extends "record" | "gql", User extends object, Update extends boolean, Type extends object> = readonly [string[] | UserStringArrayOperand<User>, HasAnyOperator, string[] | UserStringArrayOperand<User>] | (Level extends "record" ? readonly [RecordOperand<Type, Update>, HasAnyOperator, string[] | UserStringArrayOperand<User>] | readonly [string[] | UserStringArrayOperand<User>, HasAnyOperator, RecordOperand<Type, Update>] : never);
-/**
- * Type representing a permission condition that combines user attributes, record fields, and literal values using comparison operators.
- *
- * The User type is extended by `tailor.d.ts`, which is automatically generated when running `tailor-sdk generate`.
- * Attributes enabled in the config file's `auth.userProfile.attributes` (or
- * `auth.machineUserAttributes` when userProfile is omitted) become available as types.
- * @example
- * ```ts
- * // tailor.config.ts
- * export const auth = defineAuth("my-auth", {
- *   userProfile: {
- *     type: user,
- *     attributes: {
- *       isAdmin: true,
- *       roles: true,
- *     }
- *   }
- * });
- * ```
- */
-type PermissionCondition<Level extends "record" | "gql" = "record", User extends object = InferredAttributeMap, Update extends boolean = boolean, Type extends object = object> = EqualityCondition<Level, User, Update, Type> | ContainsCondition<Level, User, Update, Type> | HasAnyCondition<Level, User, Update, Type>;
-/**
- * Grants full record-level access without any conditions.
- *
- * Unsafe and intended only for local development, prototyping, or tests.
- * Do not use this in production environments, as it effectively disables
- * authorization checks.
- */
-declare const unsafeAllowAllTypePermission: TailorTypePermission;
-/**
- * Grants full GraphQL access (all actions) without any conditions.
- *
- * Unsafe and intended only for local development, prototyping, or tests.
- * Do not use this in production environments, as it effectively disables
- * authorization checks.
- */
-declare const unsafeAllowAllGqlPermission: TailorTypeGqlPermission;
-//#endregion
-//#region src/configure/services/tailordb/types.d.ts
-type HookFn<TValue, TData, TReturn> = (args: {
-  value: TValue;
-  data: TData extends Record<string, unknown> ? { readonly [K in keyof TData]?: TData[K] | null | undefined } : unknown;
-  user: TailorUser;
-}) => TReturn;
-type Hook<TData, TReturn> = {
-  create?: HookFn<TReturn | null, TData, TReturn>;
-  update?: HookFn<TReturn | null, TData, TReturn>;
-};
-type Hooks<F extends Record<string, TailorAnyDBField$1>, TData = { [K in keyof F]: output<F[K]> }> = NonEmptyObject<{ [K in Exclude<keyof F, "id"> as F[K]["_defined"] extends {
-  hooks: unknown;
-} ? never : F[K]["_defined"] extends {
-  type: "nested";
-} ? never : K]?: Hook<TData, output<F[K]>> }>;
-type ExcludeNestedDBFields<T extends Record<string, TailorAnyDBField$1>> = { [K in keyof T]: T[K] extends TailorDBField$1<{
-  type: "nested";
-  array: boolean;
-}, any> ? never : T[K] };
-interface TypeFeatures {
-  pluralForm?: string;
-  aggregation?: true;
-  bulkUpsert?: true;
-  /** Configure GraphQL operations for this type. Use "query" for read-only mode, or an object for granular control. */
-  gqlOperations?: GqlOperationsConfig;
-  /**
-   * Enable publishing events for this type.
-   * When enabled, record creation/update/deletion events are published.
-   * If not specified, this is automatically set to true when an executor uses this type
-   * with recordCreated/recordUpdated/recordDeleted triggers. If explicitly set to false
-   * while an executor uses this type, an error will be thrown during apply.
-   */
-  publishEvents?: boolean;
-}
-//#endregion
-//#region src/configure/services/tailordb/schema.d.ts
-type TailorAnyDBField = TailorDBField<any, any>;
-type TailorAnyDBType = TailorDBType<any, any>;
-/**
- * Full TailorDBField interface with builder methods.
- * Extends the minimal structural interface from types/ with fluent API methods.
- */
-interface TailorDBField<Defined extends DefinedDBFieldMetadata = DefinedDBFieldMetadata, Output = any> extends Omit<TailorDBField$1<Defined, Output>, "fields"> {
-  readonly fields: Record<string, TailorAnyDBField>;
-  _metadata: DBFieldMetadata;
-  /**
-   * Parse and validate a value against this field's validation rules
-   */
-  parse(args: FieldParseArgs): StandardSchemaV1.Result<Output>;
-  /**
-   * Internal parse method that tracks field path for nested validation
-   * @private
-   */
-  _parseInternal(args: FieldParseInternalArgs): StandardSchemaV1.Result<Output>;
-  /**
-   * typeName is not available on TailorDB fields.
-   * Use typeName on pipeline fields (t.enum / t.object) instead.
-   */
-  typeName(this: never, typeName: string): never;
-  /**
-   * Set a description for the field
-   */
-  description<CurrentDefined extends Defined>(this: CurrentDefined extends {
-    description: unknown;
-  } ? never : TailorField<CurrentDefined, Output>, description: string): TailorDBField<Prettify<CurrentDefined & {
-    description: true;
-  }>, Output>;
-  /**
-   * Define a relation to another type.
-   */
-  relation<S extends RelationType, T extends TailorAnyDBType, CurrentDefined extends Defined>(this: CurrentDefined extends {
-    relation: unknown;
-  } ? never : TailorDBField<CurrentDefined, Output>, config: RelationConfig<S, T>): TailorDBField<S extends "oneToOne" | "1-1" ? Prettify<CurrentDefined & {
-    unique: true;
-    index: true;
-    relation: true;
-  }> : Prettify<CurrentDefined & {
-    index: true;
-    relation: true;
-  }>, Output>;
-  /**
-   * Define a self-referencing relation
-   */
-  relation<S extends RelationSelfConfig, CurrentDefined extends Defined>(this: CurrentDefined extends {
-    relation: unknown;
-  } ? never : TailorDBField<CurrentDefined, Output>, config: S): TailorDBField<S["type"] extends "oneToOne" | "1-1" ? Prettify<CurrentDefined & {
-    unique: true;
-    index: true;
-    relation: true;
-  }> : Prettify<CurrentDefined & {
-    index: true;
-    relation: true;
-  }>, Output>;
-  /**
-   * Add an index to the field
-   */
-  index<CurrentDefined extends Defined>(this: CurrentDefined extends {
-    index: unknown;
-  } ? never : CurrentDefined extends {
-    array: true;
-  } ? never : TailorDBField<CurrentDefined, Output>): TailorDBField<Prettify<CurrentDefined & {
-    index: true;
-  }>, Output>;
-  /**
-   * Make the field unique (also adds an index)
-   */
-  unique<CurrentDefined extends Defined>(this: CurrentDefined extends {
-    unique: unknown;
-  } ? never : CurrentDefined extends {
-    array: true;
-  } ? never : TailorDBField<CurrentDefined, Output>): TailorDBField<Prettify<CurrentDefined & {
-    unique: true;
-    index: true;
-  }>, Output>;
-  /**
-   * Enable vector search on the field (string type only)
-   */
-  vector<CurrentDefined extends Defined>(this: CurrentDefined extends {
-    vector: unknown;
-  } ? never : CurrentDefined extends {
-    type: "string";
-    array: false;
-  } ? TailorDBField<CurrentDefined, Output> : never): TailorDBField<Prettify<CurrentDefined & {
-    vector: true;
-  }>, Output>;
-  /**
-   * Add hooks for create/update operations on this field.
-   */
-  hooks<CurrentDefined extends Defined, const H extends Hook<unknown, Output>>(this: CurrentDefined extends {
-    hooks: unknown;
-  } ? never : CurrentDefined extends {
-    type: "nested";
-  } ? never : TailorDBField<CurrentDefined, Output>, hooks: H): TailorDBField<Prettify<CurrentDefined & {
-    hooks?: {
-      create: H extends {
-        create: unknown;
-      } ? true : false;
-      update: H extends {
-        update: unknown;
-      } ? true : false;
-    };
-    serial: false;
-  }>, Output>;
-  /**
-   * Add validation functions to the field.
-   */
-  validate<CurrentDefined extends Defined>(this: CurrentDefined extends {
-    validate: unknown;
-  } ? never : TailorDBField<CurrentDefined, Output>, ...validate: FieldValidateInput<Output>[]): TailorDBField<Prettify<CurrentDefined & {
-    validate: true;
-  }>, Output>;
-  /**
-   * Configure serial/auto-increment behavior
-   */
-  serial<CurrentDefined extends Defined>(this: CurrentDefined extends {
-    serial: unknown;
-  } ? never : Output extends null ? never : CurrentDefined extends {
-    type: "integer" | "string";
-    array: false;
-  } ? TailorDBField<CurrentDefined, Output> : never, config: SerialConfig<CurrentDefined["type"] & ("integer" | "string")>): TailorDBField<Prettify<CurrentDefined & {
-    serial: true;
-    hooks: {
-      create: false;
-      update: false;
-    };
-  }>, Output>;
-  /**
-   * Clone the field with optional overrides for field options
-   */
-  clone<const NewOpt extends FieldOptions>(options?: NewOpt): TailorDBField<Prettify<Omit<Defined, "array"> & {
-    array: NewOpt extends {
-      array: true;
-    } ? true : Defined["array"];
-  }>, FieldOutput$1<TailorToTs[Defined["type"]], NewOpt>>;
-}
-/**
- * Full TailorDBType interface with builder methods.
- * Extends the minimal structural interface from types/ with fluent API methods.
- */
-interface TailorDBType<Fields extends Record<string, TailorAnyDBField> = any, User extends object = InferredAttributeMap> extends TailorDBType$1<Fields, User> {
-  _description?: string;
-  hooks(hooks: Hooks<Fields>): TailorDBType<Fields, User>;
-  validate(validators: Validators<Fields>): TailorDBType<Fields, User>;
-  features(features: Omit<TypeFeatures, "pluralForm">): TailorDBType<Fields, User>;
-  indexes(...indexes: IndexDef<TailorDBType<Fields, User>>[]): TailorDBType<Fields, User>;
-  files<const F extends string>(files: Record<F, string> & Partial<Record<keyof output<TailorDBType<Fields, User>>, never>>): TailorDBType<Fields, User>;
-  permission<U extends object = User, P extends TailorTypePermission<U, output<TailorDBType<Fields, User>>> = TailorTypePermission<U, output<TailorDBType<Fields, User>>>>(permission: P): TailorDBType<Fields, U>;
-  gqlPermission<U extends object = User, P extends TailorTypeGqlPermission<U> = TailorTypeGqlPermission<U>>(permission: P): TailorDBType<Fields, U>;
-  description(description: string): TailorDBType<Fields, User>;
-  pickFields<K extends keyof Fields>(keys: K[]): Pick<Fields, K>;
-  pickFields<K extends keyof Fields, const Opt extends FieldOptions>(keys: K[], options: Opt): { [P in K]: Fields[P] extends TailorDBField<infer D, infer _O> ? TailorDBField<Omit<D, "array"> & {
-    array: Opt extends {
-      array: true;
-    } ? true : D["array"];
-  }, FieldOutput$1<TailorToTs[D["type"]], Opt>> : never };
-  omitFields<K extends keyof Fields>(keys: K[]): Omit<Fields, K>;
-  plugin<P extends keyof PluginConfigs<keyof Fields & string>>(config: { [K in P]: PluginConfigs<keyof Fields & string>[K] }): TailorDBType<Fields, User>;
-}
-type TailorDBInstance<Fields extends Record<string, TailorAnyDBField> = any, User extends object = InferredAttributeMap> = TailorDBType<Fields, User>;
-interface RelationConfig<S extends RelationType, T extends TailorDBType> {
-  type: S;
-  toward: {
-    type: T;
-    as?: string;
-    key?: keyof T["fields"] & string;
-  };
-  backward?: string;
-}
-type RelationSelfConfig = {
-  type: RelationType;
-  toward: {
-    type: "self";
-    as?: string;
-    key?: string;
-  };
-  backward?: string;
-};
-type FieldParseArgs = {
-  value: unknown;
-  data: unknown;
-  user: TailorUser;
-};
-type FieldParseInternalArgs = {
-  value: any;
-  data: unknown;
-  user: TailorUser;
-  pathArray: string[];
-};
-/**
- * Create a UUID field.
- * @param options - Field configuration options
- * @returns A UUID field
- * @example db.uuid()
- * @example db.uuid({ optional: true })
- */
-declare function uuid<const Opt extends FieldOptions>(options?: Opt): TailorDBField<{
-  type: "uuid";
-  array: Opt extends {
-    array: true;
-  } ? true : false;
-}, Opt["optional"] extends true ? ArrayFieldOutput<string, Opt> | null : ArrayFieldOutput<string, Opt>>;
-/**
- * Create a string field.
- * @param options - Field configuration options
- * @returns A string field
- * @example db.string()
- * @example db.string({ optional: true })
- */
-declare function string<const Opt extends FieldOptions>(options?: Opt): TailorDBField<{
-  type: "string";
-  array: Opt extends {
-    array: true;
-  } ? true : false;
-}, Opt["optional"] extends true ? ArrayFieldOutput<string, Opt> | null : ArrayFieldOutput<string, Opt>>;
-/**
- * Create a boolean field.
- * Note: The method name is `bool` but creates a `boolean` type field.
- * @param options - Field configuration options
- * @returns A boolean field
- * @example db.bool()
- * @example db.bool({ optional: true })
- */
-declare function bool<const Opt extends FieldOptions>(options?: Opt): TailorDBField<{
-  type: "boolean";
-  array: Opt extends {
-    array: true;
-  } ? true : false;
-}, Opt["optional"] extends true ? ArrayFieldOutput<boolean, Opt> | null : ArrayFieldOutput<boolean, Opt>>;
-/**
- * Create an integer field.
- * @param options - Field configuration options
- * @returns An integer field
- * @example db.int()
- * @example db.int({ optional: true })
- */
-declare function int<const Opt extends FieldOptions>(options?: Opt): TailorDBField<{
-  type: "integer";
-  array: Opt extends {
-    array: true;
-  } ? true : false;
-}, Opt["optional"] extends true ? ArrayFieldOutput<number, Opt> | null : ArrayFieldOutput<number, Opt>>;
-/**
- * Create a float (decimal number) field.
- * @param options - Field configuration options
- * @returns A float field
- * @example db.float()
- * @example db.float({ optional: true })
- */
-declare function float<const Opt extends FieldOptions>(options?: Opt): TailorDBField<{
-  type: "float";
-  array: Opt extends {
-    array: true;
-  } ? true : false;
-}, Opt["optional"] extends true ? ArrayFieldOutput<number, Opt> | null : ArrayFieldOutput<number, Opt>>;
-interface DecimalFieldOptions extends FieldOptions {
-  scale?: number;
-}
-/**
- * Create a decimal field (stored as string for precision).
- * @param options - Field configuration options including optional scale (0-12)
- * @returns A decimal field
- * @example db.decimal()
- * @example db.decimal({ scale: 2 })
- * @example db.decimal({ scale: 2, optional: true })
- */
-declare function decimal<const Opt extends DecimalFieldOptions>(options?: Opt): TailorDBField<{
-  type: "decimal";
-  array: Opt extends {
-    array: true;
-  } ? true : false;
-}, Opt["optional"] extends true ? ArrayFieldOutput<string, Opt> | null : ArrayFieldOutput<string, Opt>>;
-/**
- * Create a date field (date only, no time component).
- * Format: "yyyy-MM-dd"
- * @param options - Field configuration options
- * @returns A date field
- * @example db.date()
- */
-declare function date<const Opt extends FieldOptions>(options?: Opt): TailorDBField<{
-  type: "date";
-  array: Opt extends {
-    array: true;
-  } ? true : false;
-}, Opt["optional"] extends true ? ArrayFieldOutput<string, Opt> | null : ArrayFieldOutput<string, Opt>>;
-/**
- * Create a datetime field (date and time).
- * Format: ISO 8601 "yyyy-MM-ddTHH:mm:ssZ"
- * @param options - Field configuration options
- * @returns A datetime field
- * @example db.datetime()
- */
-declare function datetime<const Opt extends FieldOptions>(options?: Opt): TailorDBField<{
-  type: "datetime";
-  array: Opt extends {
-    array: true;
-  } ? true : false;
-}, Opt["optional"] extends true ? ArrayFieldOutput<string | Date, Opt> | null : ArrayFieldOutput<string | Date, Opt>>;
-/**
- * Create a time field (time only, no date component).
- * Format: "HH:mm"
- * @param options - Field configuration options
- * @returns A time field
- * @example db.time()
- */
-declare function time<const Opt extends FieldOptions>(options?: Opt): TailorDBField<{
-  type: "time";
-  array: Opt extends {
-    array: true;
-  } ? true : false;
-}, Opt["optional"] extends true ? ArrayFieldOutput<string, Opt> | null : ArrayFieldOutput<string, Opt>>;
-/**
- * Create an enum field with a fixed set of allowed string values.
- * @param values - Array of allowed string values, or array of `{ value, description }` objects
- * @param options - Field configuration options
- * @returns An enum field
- * @example db.enum(["active", "inactive", "suspended"])
- * @example db.enum(["small", "medium", "large"], { optional: true })
- */
-declare function _enum<const V extends AllowedValues, const Opt extends FieldOptions>(values: V, options?: Opt): TailorDBField<{
-  type: "enum";
-  array: Opt extends {
-    array: true;
-  } ? true : false;
-}, FieldOutput$1<AllowedValuesOutput<V>, Opt>>;
-/**
- * Create a nested object field with sub-fields.
- * @param fields - Record of nested field definitions
- * @param options - Field configuration options
- * @returns A nested object field
- * @example db.object({ street: db.string(), city: db.string(), zip: db.string() })
- * @example db.object({ name: db.string() }, { optional: true })
- */
-declare function object<const F extends Record<string, TailorAnyDBField> & ExcludeNestedDBFields<F>, const Opt extends FieldOptions>(fields: F, options?: Opt): TailorDBField<{
-  type: "nested";
-  array: Opt extends {
-    array: true;
-  } ? true : false;
-}, FieldOutput$1<InferFieldsOutput<F>, Opt>>;
-declare const idField: TailorDBField<{
-  type: "uuid";
-  array: false;
-}, string>;
-type idField = typeof idField;
-type DBType<F extends {
-  id?: never;
-} & Record<string, TailorAnyDBField>> = TailorDBInstance<{
-  id: idField;
-} & F>;
-/**
- * Creates a new database type with the specified fields.
- * An `id` field (UUID) is automatically added to every type.
- * @param name - The name of the type, or a tuple of [name, pluralForm]
- * @param fields - The field definitions for the type
- * @returns A new TailorDBType instance
- * @example
- * export const user = db.type("User", {
- *   name: db.string(),
- *   email: db.string(),
- *   age: db.int({ optional: true }),
- *   role: db.enum(["admin", "member"]),
- *   ...db.fields.timestamps(),
- * });
- * // Always export both the value and type:
- * export type user = typeof user;
- */
-declare function dbType<const F extends {
-  id?: never;
-} & Record<string, TailorAnyDBField>>(name: string | [string, string], fields: F): DBType<F>;
-/**
- * Creates a new database type with the specified fields and description.
- * An `id` field (UUID) is automatically added to every type.
- * @param name - The name of the type, or a tuple of [name, pluralForm]
- * @param description - A description of the type
- * @param fields - The field definitions for the type
- * @returns A new TailorDBType instance
- */
-declare function dbType<const F extends {
-  id?: never;
-} & Record<string, TailorAnyDBField>>(name: string | [string, string], description: string, fields: F): DBType<F>;
-/** TailorDB schema builder utilities for defining types and fields. */
-declare const db: {
-  type: typeof dbType;
-  uuid: typeof uuid;
-  string: typeof string;
-  bool: typeof bool;
-  int: typeof int;
-  float: typeof float;
-  decimal: typeof decimal;
-  date: typeof date;
-  datetime: typeof datetime;
-  time: typeof time;
-  enum: typeof _enum;
-  object: typeof object;
-  fields: {
-    /**
-     * Creates standard timestamp fields (createdAt, updatedAt) with auto-hooks.
-     * createdAt is set on create, updatedAt is set on update.
-     * A user-specified createdAt is respected when provided (e.g. seeding historical
-     * records); the current time is used only when the value is omitted.
-     * @returns An object with createdAt and updatedAt fields
-     * @example
-     * const model = db.type("Model", {
-     *   name: db.string(),
-     *   ...db.fields.timestamps(),
-     * });
-     */
-    timestamps: () => {
-      createdAt: TailorDBField<{
-        type: "datetime";
-        array: false;
-        hooks?: {
-          create: true;
-          update: false;
-        } | undefined;
-        serial: false;
-        description: true;
-      }, string | Date>;
-      updatedAt: TailorDBField<{
-        type: "datetime";
-        array: false;
-        hooks?: {
-          create: false;
-          update: true;
-        } | undefined;
-        serial: false;
-        description: true;
-      }, string | Date | null>;
-    };
-  };
-};
-//#endregion
-//#region src/types/auth-connection.generated.d.ts
-type AuthConnectionOAuth2Config = {
-  /** OAuth2 provider URL */providerUrl: string; /** OAuth2 issuer URL */
-  issuerUrl: string; /** OAuth2 client ID */
-  clientId: string; /** OAuth2 client secret */
-  clientSecret: string; /** OAuth2 authorization endpoint override */
-  authUrl?: string | undefined; /** OAuth2 token endpoint override */
-  tokenUrl?: string | undefined;
-};
-type AuthConnectionConfig = {
-  type: "oauth2";
-  providerUrl: string;
-  issuerUrl: string;
-  clientId: string;
-  clientSecret: string;
-  authUrl?: string | undefined;
-  tokenUrl?: string | undefined;
-};
-//#endregion
-//#region src/types/auth.d.ts
-type OAuth2ClientGrantType = OAuth2Client["grantTypes"][number];
-type SCIMAttributeType = SCIMAttribute["type"];
-type AuthInvokerWithName<M extends string> = Omit<AuthInvoker, "machineUserName"> & {
-  machineUserName: M;
-};
-/** Result of retrieving a connection token at runtime. */
-type AuthConnectionTokenResult = {
-  access_token: string;
-  refresh_token?: string;
-  token_type?: string;
-  expiry?: string;
-};
-type AuthAttributeValue = ValueOperand | null | undefined;
-type UserFieldKeys<User extends TailorDBInstance$1> = keyof output<User> & string;
-type FieldDefined<User extends TailorDBInstance$1, Key extends UserFieldKeys<User>> = User["fields"][Key] extends {
-  _defined: infer Defined;
-} ? Defined : never;
-type FieldOutput<User extends TailorDBInstance$1, Key extends UserFieldKeys<User>> = output<User>[Key];
-type FieldIsRequired<User extends TailorDBInstance$1, Key extends UserFieldKeys<User>> = undefined extends FieldOutput<User, Key> ? false : true;
-type FieldIsOfType<User extends TailorDBInstance$1, Key extends UserFieldKeys<User>, Type extends string> = FieldDefined<User, Key> extends {
-  type: Type;
-} ? true : false;
-type FieldIsArray<User extends TailorDBInstance$1, Key extends UserFieldKeys<User>> = FieldDefined<User, Key> extends {
-  array: true;
-} ? true : false;
-type FieldIsUnique<User extends TailorDBInstance$1, Key extends UserFieldKeys<User>> = FieldDefined<User, Key> extends {
-  unique: true;
-} ? true : false;
-type FieldSupportsValueOperand<User extends TailorDBInstance$1, Key extends UserFieldKeys<User>> = FieldOutput<User, Key> extends ValueOperand | null | undefined ? true : false;
-type UsernameFieldKey<User extends TailorDBInstance$1> = IsAny<User> extends true ? string : { [K in UserFieldKeys<User>]: FieldIsRequired<User, K> extends true ? FieldIsOfType<User, K, "string"> extends true ? FieldIsArray<User, K> extends true ? never : FieldIsUnique<User, K> extends true ? K : never : never : never }[UserFieldKeys<User>];
-type UserAttributeKey<User extends TailorDBInstance$1> = { [K in UserFieldKeys<User>]: K extends "id" ? never : FieldSupportsValueOperand<User, K> extends true ? FieldIsOfType<User, K, "datetime" | "date" | "time"> extends true ? never : K : never }[UserFieldKeys<User>];
-type UserAttributeListKey<User extends TailorDBInstance$1> = { [K in UserFieldKeys<User>]: K extends "id" ? never : FieldIsOfType<User, K, "uuid"> extends true ? FieldIsArray<User, K> extends true ? never : K : never }[UserFieldKeys<User>];
-type UserAttributeMap<User extends TailorDBInstance$1> = { [K in UserAttributeKey<User>]?: true };
-type DisallowExtraKeys<T, Allowed extends PropertyKey> = T & { [K in Exclude<keyof T, Allowed>]: never };
-type AttributeListValue<User extends TailorDBInstance$1, Key extends UserAttributeListKey<User>> = Key extends keyof output<User> ? output<User>[Key] : never;
-type AttributeListToTuple<User extends TailorDBInstance$1, AttributeList extends readonly UserAttributeListKey<User>[]> = { [Index in keyof AttributeList]: AttributeList[Index] extends UserAttributeListKey<User> ? AttributeListValue<User, AttributeList[Index]> : never };
-type AttributeMapSelectedKeys<User extends TailorDBInstance$1, AttributeMap extends UserAttributeMap<User>> = Extract<{ [K in keyof AttributeMap]-?: undefined extends AttributeMap[K] ? never : K }[keyof AttributeMap], UserAttributeKey<User>>;
-type UserProfile<User extends TailorDBInstance$1, AttributeMap extends UserAttributeMap<User>, AttributeList extends UserAttributeListKey<User>[]> = {
-  /**
-   * TailorDB namespace where the user type is defined.
-   *
-   * Usually auto-resolved, so you don't need to specify this.
-   * Required only when multiple TailorDBs exist and the type is in an external TailorDB.
-   */
-  namespace?: string;
-  type: User;
-  usernameField: UsernameFieldKey<User>;
-  attributes?: DisallowExtraKeys<AttributeMap, UserAttributeKey<User>>;
-  attributeList?: AttributeList;
-};
-type MachineUserAttributeFields = Record<string, TailorField<DefinedFieldMetadata, unknown, FieldMetadata, TailorFieldType>>;
-type TailorFieldOutputValue<Field> = Field extends TailorField<DefinedFieldMetadata, infer Output, FieldMetadata, TailorFieldType> ? Output : never;
-type MachineUserAttributeValues<Fields extends MachineUserAttributeFields> = { [K in keyof Fields]: TailorFieldOutputValue<Fields[K]> extends ValueOperand | null | undefined ? TailorFieldOutputValue<Fields[K]> : never };
-type MachineUserFromAttributes<Fields extends MachineUserAttributeFields> = (keyof Fields extends never ? {
-  attributes?: never;
-} : {
-  attributes: DisallowExtraKeys<MachineUserAttributeValues<Fields>, keyof Fields>;
-}) & {
-  attributeList?: string[];
-};
-type MachineUser<User extends TailorDBInstance$1, AttributeMap extends UserAttributeMap<User> = UserAttributeMap<User>, AttributeList extends UserAttributeListKey<User>[] = [], MachineUserAttributes extends MachineUserAttributeFields | undefined = undefined> = IsAny<MachineUserAttributes> extends true ? IsAny<User> extends true ? {
-  attributes: Record<string, AuthAttributeValue>;
-  attributeList?: string[];
-} : (AttributeMapSelectedKeys<User, AttributeMap> extends never ? {
-  attributes?: never;
-} : {
-  attributes: { [K in AttributeMapSelectedKeys<User, AttributeMap>]: K extends keyof output<User> ? output<User>[K] : never } & { [K in Exclude<keyof output<User>, AttributeMapSelectedKeys<User, AttributeMap>>]?: never };
-}) & ([] extends AttributeList ? {
-  attributeList?: never;
-} : {
-  attributeList: AttributeListToTuple<User, AttributeList>;
-}) : [MachineUserAttributes] extends [MachineUserAttributeFields] ? MachineUserFromAttributes<MachineUserAttributes> : IsAny<User> extends true ? {
-  attributes: Record<string, AuthAttributeValue>;
-  attributeList?: string[];
-} : (AttributeMapSelectedKeys<User, AttributeMap> extends never ? {
-  attributes?: never;
-} : {
-  attributes: { [K in AttributeMapSelectedKeys<User, AttributeMap>]: K extends keyof output<User> ? output<User>[K] : never } & { [K in Exclude<keyof output<User>, AttributeMapSelectedKeys<User, AttributeMap>>]?: never };
-}) & ([] extends AttributeList ? {
-  attributeList?: never;
-} : {
-  attributeList: AttributeListToTuple<User, AttributeList>;
-});
-type BeforeLoginHookArgs = {
-  claims: JsonObject;
-  idpConfigName: string; /** Environment variables defined in `defineConfig({ env })`. */
-  env: TailorEnv;
-};
-type BeforeLoginHook<MachineUserNames extends string> = {
-  handler(args: BeforeLoginHookArgs): Promise<void>;
-  invoker: NoInfer<MachineUserNames>;
-};
-type AuthHooks<MachineUserNames extends string> = {
-  beforeLogin?: BeforeLoginHook<MachineUserNames>;
-};
-type AuthServiceInput<User extends TailorDBInstance$1, AttributeMap extends UserAttributeMap<User>, AttributeList extends UserAttributeListKey<User>[], MachineUserNames extends string, MachineUserAttributes extends MachineUserAttributeFields | undefined = MachineUserAttributeFields | undefined, ConnectionNames extends string = string> = {
-  hooks?: AuthHooks<MachineUserNames>;
-  userProfile?: UserProfile<User, AttributeMap, AttributeList>;
-  machineUserAttributes?: MachineUserAttributes;
-  machineUsers?: Record<MachineUserNames, MachineUser<User, AttributeMap, AttributeList, MachineUserAttributes>>;
-  oauth2Clients?: Record<string, OAuth2ClientInput>;
-  idProvider?: IdProvider;
-  scim?: SCIMConfig;
-  tenantProvider?: TenantProvider;
-  connections?: Record<ConnectionNames, AuthConnectionConfig>;
-  publishSessionEvents?: boolean;
-};
-declare const authDefinitionBrand: unique symbol;
-type AuthDefinitionBrand = {
-  readonly [authDefinitionBrand]: true;
-};
-type ConnectionNames<Config> = Config extends {
-  connections?: Record<infer K, unknown>;
-} ? K & string : string;
-type DefinedAuth<Name extends string, Config, MachineUserNames extends string> = Config & {
-  name: Name;
-  /**
-   * @deprecated Pass the machine user name directly as a string instead, e.g. `authInvoker: "machine-user-name"`.
-   * Using this function pulls config-layer (Node-only) dependencies into runtime bundles.
-   */
-  invoker<M extends MachineUserNames>(machineUser: M): AuthInvokerWithName<M>;
-  getConnectionToken<C extends ConnectionNames<Config>>(connectionName: C): Promise<AuthConnectionTokenResult>;
-} & AuthDefinitionBrand;
-type AuthExternalConfig = {
-  name: string;
-  external: true;
-};
-type AuthServiceInputLoose = AuthServiceInput<any, any, any, string, any>;
-type AuthOwnConfig = DefinedAuth<string, AuthServiceInputLoose, string>;
-type AuthConfig = AuthOwnConfig | AuthExternalConfig;
-//#endregion
-//#region src/types/app-config.generated.d.ts
-type LogLevelEnum = "DEBUG" | "INFO" | "WARN" | "ERROR" | "SILENT";
-//#endregion
-//#region src/types/idp.generated.d.ts
-/**
- * Configuration for GraphQL operations on IdP users.
- * All operations are enabled by default (undefined or true = enabled, false = disabled).
- */
-type IdPGqlOperationsInput = "query" | {
-  create?: boolean | undefined;
-  update?: boolean | undefined;
-  delete?: boolean | undefined;
-  read?: boolean | undefined;
-  sendPasswordResetEmail?: boolean | undefined;
-};
-type IdPGqlOperations = {
-  create?: boolean | undefined;
-  update?: boolean | undefined;
-  delete?: boolean | undefined;
-  read?: boolean | undefined;
-  sendPasswordResetEmail?: boolean | undefined;
-};
-/**
- * Namespace-level email configuration defaults
- */
-type IdPEmailConfig = {
-  /** Default sender display name for emails */fromName?: string | undefined; /** Default subject for password reset emails */
-  passwordResetSubject?: string | undefined;
-};
-type IdPInput = {
-  /** IdP service name */name: string; /** OAuth2 client names that can use this IdP */
-  clients: string[]; /** Authorization mode for IdP API access */
-  authorization?: "insecure" | "loggedIn" | {
-    cel: string;
-  } | undefined; /** UI language for IdP pages */
-  lang?: "en" | "ja" | undefined; /** User authentication policy configuration */
-  userAuthPolicy?: {
-    useNonEmailIdentifier?: boolean | undefined;
-    allowSelfPasswordReset?: boolean | undefined;
-    passwordRequireUppercase?: boolean | undefined;
-    passwordRequireLowercase?: boolean | undefined;
-    passwordRequireNonAlphanumeric?: boolean | undefined;
-    passwordRequireNumeric?: boolean | undefined;
-    passwordMinLength?: number | undefined;
-    passwordMaxLength?: number | undefined;
-    allowedEmailDomains?: string[] | undefined;
-    allowGoogleOauth?: boolean | undefined;
-    allowMicrosoftOauth?: boolean | undefined;
-    disablePasswordAuth?: boolean | undefined;
-  } | undefined; /** Enable publishing user lifecycle events */
-  publishUserEvents?: boolean | undefined; /** Configure which GraphQL operations are enabled */
-  gqlOperations?: "query" | {
-    create?: boolean | undefined;
-    update?: boolean | undefined;
-    delete?: boolean | undefined;
-    read?: boolean | undefined;
-    sendPasswordResetEmail?: boolean | undefined;
-  } | undefined; /** Namespace-level email configuration defaults */
-  emailConfig?: {
-    fromName?: string | undefined;
-    passwordResetSubject?: string | undefined;
-  } | undefined; /** Per-operation permission policies for IdP users */
-  permission?: {
-    create: readonly (readonly [(string | boolean | readonly string[] | readonly boolean[] | {
-      user: string;
-    } | {
-      idpUser: "name" | "id" | "disabled";
-    } | {
-      oldIdpUser: "name" | "id" | "disabled";
-    } | {
-      newIdpUser: "name" | "id" | "disabled";
-    }), "in" | "=" | "!=" | "not in", (string | boolean | readonly string[] | readonly boolean[] | {
-      user: string;
-    } | {
-      idpUser: "name" | "id" | "disabled";
-    } | {
-      oldIdpUser: "name" | "id" | "disabled";
-    } | {
-      newIdpUser: "name" | "id" | "disabled";
-    })] | readonly [(string | boolean | readonly string[] | readonly boolean[] | {
-      user: string;
-    } | {
-      idpUser: "name" | "id" | "disabled";
-    } | {
-      oldIdpUser: "name" | "id" | "disabled";
-    } | {
-      newIdpUser: "name" | "id" | "disabled";
-    }), "in" | "=" | "!=" | "not in", (string | boolean | readonly string[] | readonly boolean[] | {
-      user: string;
-    } | {
-      idpUser: "name" | "id" | "disabled";
-    } | {
-      oldIdpUser: "name" | "id" | "disabled";
-    } | {
-      newIdpUser: "name" | "id" | "disabled";
-    }), boolean] | readonly (boolean | readonly [(string | boolean | readonly string[] | readonly boolean[] | {
-      user: string;
-    } | {
-      idpUser: "name" | "id" | "disabled";
-    } | {
-      oldIdpUser: "name" | "id" | "disabled";
-    } | {
-      newIdpUser: "name" | "id" | "disabled";
-    }), "in" | "=" | "!=" | "not in", (string | boolean | readonly string[] | readonly boolean[] | {
-      user: string;
-    } | {
-      idpUser: "name" | "id" | "disabled";
-    } | {
-      oldIdpUser: "name" | "id" | "disabled";
-    } | {
-      newIdpUser: "name" | "id" | "disabled";
-    })])[] | {
-      conditions: readonly [(string | boolean | readonly string[] | readonly boolean[] | {
-        user: string;
-      } | {
-        idpUser: "name" | "id" | "disabled";
-      } | {
-        oldIdpUser: "name" | "id" | "disabled";
-      } | {
-        newIdpUser: "name" | "id" | "disabled";
-      }), "in" | "=" | "!=" | "not in", (string | boolean | readonly string[] | readonly boolean[] | {
-        user: string;
-      } | {
-        idpUser: "name" | "id" | "disabled";
-      } | {
-        oldIdpUser: "name" | "id" | "disabled";
-      } | {
-        newIdpUser: "name" | "id" | "disabled";
-      })] | readonly (readonly [(string | boolean | readonly string[] | readonly boolean[] | {
-        user: string;
-      } | {
-        idpUser: "name" | "id" | "disabled";
-      } | {
-        oldIdpUser: "name" | "id" | "disabled";
-      } | {
-        newIdpUser: "name" | "id" | "disabled";
-      }), "in" | "=" | "!=" | "not in", (string | boolean | readonly string[] | readonly boolean[] | {
-        user: string;
-      } | {
-        idpUser: "name" | "id" | "disabled";
-      } | {
-        oldIdpUser: "name" | "id" | "disabled";
-      } | {
-        newIdpUser: "name" | "id" | "disabled";
-      })])[];
-      description?: string | undefined;
-      permit?: boolean | undefined;
-    })[];
-    read: readonly (readonly [(string | boolean | readonly string[] | readonly boolean[] | {
-      user: string;
-    } | {
-      idpUser: "name" | "id" | "disabled";
-    } | {
-      oldIdpUser: "name" | "id" | "disabled";
-    } | {
-      newIdpUser: "name" | "id" | "disabled";
-    }), "in" | "=" | "!=" | "not in", (string | boolean | readonly string[] | readonly boolean[] | {
-      user: string;
-    } | {
-      idpUser: "name" | "id" | "disabled";
-    } | {
-      oldIdpUser: "name" | "id" | "disabled";
-    } | {
-      newIdpUser: "name" | "id" | "disabled";
-    })] | readonly [(string | boolean | readonly string[] | readonly boolean[] | {
-      user: string;
-    } | {
-      idpUser: "name" | "id" | "disabled";
-    } | {
-      oldIdpUser: "name" | "id" | "disabled";
-    } | {
-      newIdpUser: "name" | "id" | "disabled";
-    }), "in" | "=" | "!=" | "not in", (string | boolean | readonly string[] | readonly boolean[] | {
-      user: string;
-    } | {
-      idpUser: "name" | "id" | "disabled";
-    } | {
-      oldIdpUser: "name" | "id" | "disabled";
-    } | {
-      newIdpUser: "name" | "id" | "disabled";
-    }), boolean] | readonly (boolean | readonly [(string | boolean | readonly string[] | readonly boolean[] | {
-      user: string;
-    } | {
-      idpUser: "name" | "id" | "disabled";
-    } | {
-      oldIdpUser: "name" | "id" | "disabled";
-    } | {
-      newIdpUser: "name" | "id" | "disabled";
-    }), "in" | "=" | "!=" | "not in", (string | boolean | readonly string[] | readonly boolean[] | {
-      user: string;
-    } | {
-      idpUser: "name" | "id" | "disabled";
-    } | {
-      oldIdpUser: "name" | "id" | "disabled";
-    } | {
-      newIdpUser: "name" | "id" | "disabled";
-    })])[] | {
-      conditions: readonly [(string | boolean | readonly string[] | readonly boolean[] | {
-        user: string;
-      } | {
-        idpUser: "name" | "id" | "disabled";
-      } | {
-        oldIdpUser: "name" | "id" | "disabled";
-      } | {
-        newIdpUser: "name" | "id" | "disabled";
-      }), "in" | "=" | "!=" | "not in", (string | boolean | readonly string[] | readonly boolean[] | {
-        user: string;
-      } | {
-        idpUser: "name" | "id" | "disabled";
-      } | {
-        oldIdpUser: "name" | "id" | "disabled";
-      } | {
-        newIdpUser: "name" | "id" | "disabled";
-      })] | readonly (readonly [(string | boolean | readonly string[] | readonly boolean[] | {
-        user: string;
-      } | {
-        idpUser: "name" | "id" | "disabled";
-      } | {
-        oldIdpUser: "name" | "id" | "disabled";
-      } | {
-        newIdpUser: "name" | "id" | "disabled";
-      }), "in" | "=" | "!=" | "not in", (string | boolean | readonly string[] | readonly boolean[] | {
-        user: string;
-      } | {
-        idpUser: "name" | "id" | "disabled";
-      } | {
-        oldIdpUser: "name" | "id" | "disabled";
-      } | {
-        newIdpUser: "name" | "id" | "disabled";
-      })])[];
-      description?: string | undefined;
-      permit?: boolean | undefined;
-    })[];
-    update: readonly (readonly [(string | boolean | readonly string[] | readonly boolean[] | {
-      user: string;
-    } | {
-      idpUser: "name" | "id" | "disabled";
-    } | {
-      oldIdpUser: "name" | "id" | "disabled";
-    } | {
-      newIdpUser: "name" | "id" | "disabled";
-    }), "in" | "=" | "!=" | "not in", (string | boolean | readonly string[] | readonly boolean[] | {
-      user: string;
-    } | {
-      idpUser: "name" | "id" | "disabled";
-    } | {
-      oldIdpUser: "name" | "id" | "disabled";
-    } | {
-      newIdpUser: "name" | "id" | "disabled";
-    })] | readonly [(string | boolean | readonly string[] | readonly boolean[] | {
-      user: string;
-    } | {
-      idpUser: "name" | "id" | "disabled";
-    } | {
-      oldIdpUser: "name" | "id" | "disabled";
-    } | {
-      newIdpUser: "name" | "id" | "disabled";
-    }), "in" | "=" | "!=" | "not in", (string | boolean | readonly string[] | readonly boolean[] | {
-      user: string;
-    } | {
-      idpUser: "name" | "id" | "disabled";
-    } | {
-      oldIdpUser: "name" | "id" | "disabled";
-    } | {
-      newIdpUser: "name" | "id" | "disabled";
-    }), boolean] | readonly (boolean | readonly [(string | boolean | readonly string[] | readonly boolean[] | {
-      user: string;
-    } | {
-      idpUser: "name" | "id" | "disabled";
-    } | {
-      oldIdpUser: "name" | "id" | "disabled";
-    } | {
-      newIdpUser: "name" | "id" | "disabled";
-    }), "in" | "=" | "!=" | "not in", (string | boolean | readonly string[] | readonly boolean[] | {
-      user: string;
-    } | {
-      idpUser: "name" | "id" | "disabled";
-    } | {
-      oldIdpUser: "name" | "id" | "disabled";
-    } | {
-      newIdpUser: "name" | "id" | "disabled";
-    })])[] | {
-      conditions: readonly [(string | boolean | readonly string[] | readonly boolean[] | {
-        user: string;
-      } | {
-        idpUser: "name" | "id" | "disabled";
-      } | {
-        oldIdpUser: "name" | "id" | "disabled";
-      } | {
-        newIdpUser: "name" | "id" | "disabled";
-      }), "in" | "=" | "!=" | "not in", (string | boolean | readonly string[] | readonly boolean[] | {
-        user: string;
-      } | {
-        idpUser: "name" | "id" | "disabled";
-      } | {
-        oldIdpUser: "name" | "id" | "disabled";
-      } | {
-        newIdpUser: "name" | "id" | "disabled";
-      })] | readonly (readonly [(string | boolean | readonly string[] | readonly boolean[] | {
-        user: string;
-      } | {
-        idpUser: "name" | "id" | "disabled";
-      } | {
-        oldIdpUser: "name" | "id" | "disabled";
-      } | {
-        newIdpUser: "name" | "id" | "disabled";
-      }), "in" | "=" | "!=" | "not in", (string | boolean | readonly string[] | readonly boolean[] | {
-        user: string;
-      } | {
-        idpUser: "name" | "id" | "disabled";
-      } | {
-        oldIdpUser: "name" | "id" | "disabled";
-      } | {
-        newIdpUser: "name" | "id" | "disabled";
-      })])[];
-      description?: string | undefined;
-      permit?: boolean | undefined;
-    })[];
-    delete: readonly (readonly [(string | boolean | readonly string[] | readonly boolean[] | {
-      user: string;
-    } | {
-      idpUser: "name" | "id" | "disabled";
-    } | {
-      oldIdpUser: "name" | "id" | "disabled";
-    } | {
-      newIdpUser: "name" | "id" | "disabled";
-    }), "in" | "=" | "!=" | "not in", (string | boolean | readonly string[] | readonly boolean[] | {
-      user: string;
-    } | {
-      idpUser: "name" | "id" | "disabled";
-    } | {
-      oldIdpUser: "name" | "id" | "disabled";
-    } | {
-      newIdpUser: "name" | "id" | "disabled";
-    })] | readonly [(string | boolean | readonly string[] | readonly boolean[] | {
-      user: string;
-    } | {
-      idpUser: "name" | "id" | "disabled";
-    } | {
-      oldIdpUser: "name" | "id" | "disabled";
-    } | {
-      newIdpUser: "name" | "id" | "disabled";
-    }), "in" | "=" | "!=" | "not in", (string | boolean | readonly string[] | readonly boolean[] | {
-      user: string;
-    } | {
-      idpUser: "name" | "id" | "disabled";
-    } | {
-      oldIdpUser: "name" | "id" | "disabled";
-    } | {
-      newIdpUser: "name" | "id" | "disabled";
-    }), boolean] | readonly (boolean | readonly [(string | boolean | readonly string[] | readonly boolean[] | {
-      user: string;
-    } | {
-      idpUser: "name" | "id" | "disabled";
-    } | {
-      oldIdpUser: "name" | "id" | "disabled";
-    } | {
-      newIdpUser: "name" | "id" | "disabled";
-    }), "in" | "=" | "!=" | "not in", (string | boolean | readonly string[] | readonly boolean[] | {
-      user: string;
-    } | {
-      idpUser: "name" | "id" | "disabled";
-    } | {
-      oldIdpUser: "name" | "id" | "disabled";
-    } | {
-      newIdpUser: "name" | "id" | "disabled";
-    })])[] | {
-      conditions: readonly [(string | boolean | readonly string[] | readonly boolean[] | {
-        user: string;
-      } | {
-        idpUser: "name" | "id" | "disabled";
-      } | {
-        oldIdpUser: "name" | "id" | "disabled";
-      } | {
-        newIdpUser: "name" | "id" | "disabled";
-      }), "in" | "=" | "!=" | "not in", (string | boolean | readonly string[] | readonly boolean[] | {
-        user: string;
-      } | {
-        idpUser: "name" | "id" | "disabled";
-      } | {
-        oldIdpUser: "name" | "id" | "disabled";
-      } | {
-        newIdpUser: "name" | "id" | "disabled";
-      })] | readonly (readonly [(string | boolean | readonly string[] | readonly boolean[] | {
-        user: string;
-      } | {
-        idpUser: "name" | "id" | "disabled";
-      } | {
-        oldIdpUser: "name" | "id" | "disabled";
-      } | {
-        newIdpUser: "name" | "id" | "disabled";
-      }), "in" | "=" | "!=" | "not in", (string | boolean | readonly string[] | readonly boolean[] | {
-        user: string;
-      } | {
-        idpUser: "name" | "id" | "disabled";
-      } | {
-        oldIdpUser: "name" | "id" | "disabled";
-      } | {
-        newIdpUser: "name" | "id" | "disabled";
-      })])[];
-      description?: string | undefined;
-      permit?: boolean | undefined;
-    })[];
-    sendPasswordResetEmail: readonly (readonly [(string | boolean | readonly string[] | readonly boolean[] | {
-      user: string;
-    } | {
-      idpUser: "name" | "id" | "disabled";
-    } | {
-      oldIdpUser: "name" | "id" | "disabled";
-    } | {
-      newIdpUser: "name" | "id" | "disabled";
-    }), "in" | "=" | "!=" | "not in", (string | boolean | readonly string[] | readonly boolean[] | {
-      user: string;
-    } | {
-      idpUser: "name" | "id" | "disabled";
-    } | {
-      oldIdpUser: "name" | "id" | "disabled";
-    } | {
-      newIdpUser: "name" | "id" | "disabled";
-    })] | readonly [(string | boolean | readonly string[] | readonly boolean[] | {
-      user: string;
-    } | {
-      idpUser: "name" | "id" | "disabled";
-    } | {
-      oldIdpUser: "name" | "id" | "disabled";
-    } | {
-      newIdpUser: "name" | "id" | "disabled";
-    }), "in" | "=" | "!=" | "not in", (string | boolean | readonly string[] | readonly boolean[] | {
-      user: string;
-    } | {
-      idpUser: "name" | "id" | "disabled";
-    } | {
-      oldIdpUser: "name" | "id" | "disabled";
-    } | {
-      newIdpUser: "name" | "id" | "disabled";
-    }), boolean] | readonly (boolean | readonly [(string | boolean | readonly string[] | readonly boolean[] | {
-      user: string;
-    } | {
-      idpUser: "name" | "id" | "disabled";
-    } | {
-      oldIdpUser: "name" | "id" | "disabled";
-    } | {
-      newIdpUser: "name" | "id" | "disabled";
-    }), "in" | "=" | "!=" | "not in", (string | boolean | readonly string[] | readonly boolean[] | {
-      user: string;
-    } | {
-      idpUser: "name" | "id" | "disabled";
-    } | {
-      oldIdpUser: "name" | "id" | "disabled";
-    } | {
-      newIdpUser: "name" | "id" | "disabled";
-    })])[] | {
-      conditions: readonly [(string | boolean | readonly string[] | readonly boolean[] | {
-        user: string;
-      } | {
-        idpUser: "name" | "id" | "disabled";
-      } | {
-        oldIdpUser: "name" | "id" | "disabled";
-      } | {
-        newIdpUser: "name" | "id" | "disabled";
-      }), "in" | "=" | "!=" | "not in", (string | boolean | readonly string[] | readonly boolean[] | {
-        user: string;
-      } | {
-        idpUser: "name" | "id" | "disabled";
-      } | {
-        oldIdpUser: "name" | "id" | "disabled";
-      } | {
-        newIdpUser: "name" | "id" | "disabled";
-      })] | readonly (readonly [(string | boolean | readonly string[] | readonly boolean[] | {
-        user: string;
-      } | {
-        idpUser: "name" | "id" | "disabled";
-      } | {
-        oldIdpUser: "name" | "id" | "disabled";
-      } | {
-        newIdpUser: "name" | "id" | "disabled";
-      }), "in" | "=" | "!=" | "not in", (string | boolean | readonly string[] | readonly boolean[] | {
-        user: string;
-      } | {
-        idpUser: "name" | "id" | "disabled";
-      } | {
-        oldIdpUser: "name" | "id" | "disabled";
-      } | {
-        newIdpUser: "name" | "id" | "disabled";
-      })])[];
-      description?: string | undefined;
-      permit?: boolean | undefined;
-    })[];
-  } | undefined;
-};
-//#endregion
-//#region src/types/idp.d.ts
-declare const idpDefinitionBrand: unique symbol;
-type IdpDefinitionBrand = {
-  readonly [idpDefinitionBrand]: true;
-};
-type DefinedIdp<Name extends string, Config, ClientNames extends string> = Config & {
-  name: Name;
-  provider(providerName: string, clientName: ClientNames): BuiltinIdP;
-} & IdpDefinitionBrand;
-type IdPExternalConfig = {
-  name: string;
-  external: true;
-};
-type IdPOwnConfig = Omit<DefinedIdp<string, IdPInput, string>, "provider">;
-type IdPConfig = IdPOwnConfig | IdPExternalConfig;
-type IdPUserField = "id" | "name" | "disabled";
-//#endregion
-//#region src/types/secrets.generated.d.ts
-type Secrets = {
-  vaults: {
-    [x: string]: {
-      [x: string]: string | null | undefined;
-    };
-  };
-  options: {
-    ignoreNullishValues: boolean;
-  };
-};
-type SecretsInput = Secrets;
-//#endregion
-//#region src/types/secrets-config.d.ts
-declare const secretsDefinitionBrand: unique symbol;
-type SecretsDefinitionBrand = {
-  readonly [secretsDefinitionBrand]: true;
-};
-/** Type accepted by `AppConfig.secrets`. Only values returned by `defineSecretManager()` satisfy this. */
-type SecretsConfig = SecretsInput & SecretsDefinitionBrand;
-//#endregion
-//#region src/types/staticwebsite.generated.d.ts
-type StaticWebsite = {
-  /** Static website name */name: string; /** Static website description */
-  description?: string | undefined; /** IP addresses allowed to access the website */
-  allowedIpAddresses?: string[] | undefined; /** Custom domains for the static website */
-  customDomains?: string[] | undefined;
-};
-type StaticWebsiteInput = StaticWebsite;
-//#endregion
-//#region src/types/staticwebsite-config.d.ts
-declare const staticWebsiteDefinitionBrand: unique symbol;
-type StaticWebsiteDefinitionBrand = {
-  readonly [staticWebsiteDefinitionBrand]: true;
-};
-/** Type accepted by `AppConfig.staticWebsites`. Only values returned by `defineStaticWebSite()` satisfy this. */
-type StaticWebsiteConfig = StaticWebsiteInput & StaticWebsiteDefinitionBrand;
-//#endregion
-//#region src/types/app-config.d.ts
-type LogLevel = LogLevelEnum;
-type LogLevelInput = LogLevel | (string & {});
-type ExecutorServiceConfig = {
-  files: string[];
-  ignores?: string[];
-};
-type ExecutorServiceInput = ExecutorServiceConfig;
-type HttpAdapterServiceInput = {
-  files: string[];
-  ignores?: string[];
-};
-type ResolverServiceConfig = {
-  files: string[];
-  ignores?: string[];
-};
-type ResolverExternalConfig = {
-  external: true;
-};
-type ResolverServiceInput = {
-  [namespace: string]: ResolverServiceConfig | ResolverExternalConfig;
-};
-type WorkflowServiceConfig = {
-  files: string[];
-  job_files?: string[];
-  ignores?: string[];
-  job_ignores?: string[];
-};
-type WorkflowServiceInput = WorkflowServiceConfig;
-/**
- * Application configuration for `defineConfig()`.
- *
- * Key fields:
- * - `name` (required): Application name
- * - `cors`: Array of allowed origins, e.g. `["https://example.com"]`
- * - `auth`: Single auth config object (not an array)
- * - `idp`: Array of IdP configs, e.g. `[myIdp]`
- * - `staticWebsites`: Array of static website configs, e.g. `[website]`
- * - `db`, `resolver`, `executor`, `workflow`: Service configs with file globs
- */
-interface AppConfig<Auth extends AuthConfig = AuthConfig, Idp extends IdPConfig[] = IdPConfig[], StaticWebsites extends StaticWebsiteConfig[] = StaticWebsiteConfig[], Env extends Record<string, string | number | boolean> = Record<string, string | number | boolean>> {
-  /** Application name (required). */
-  name: string;
-  /**
-   * Stable identifier used to track the application across renames.
-   * Managed by the SDK: auto-generated and written into `tailor.config.ts`
-   * on first `deploy`. Delete this field if you want the SDK to assign a
-   * new id on the next `deploy` — typical case: `tailor.config.ts` was
-   * copied from another project and the new application should not share
-   * the original's id. Existing resources are re-tagged with the new id;
-   * data is preserved.
-   */
-  id?: string;
-  /** Environment variables accessible via `context.env` in resolvers and via the second argument `{ env }` in workflow job bodies. */
-  env?: Env;
-  /** Allowed CORS origins. Must be an array of strings, e.g. `["https://example.com"]`. */
-  cors?: string[];
-  /** IP addresses allowed to access the application. */
-  allowedIpAddresses?: string[];
-  /** Disable GraphQL introspection in production. */
-  disableIntrospection?: boolean;
-  /** TailorDB service configuration with type definition files. */
-  db?: TailorDBServiceInput;
-  /** Resolver service configuration with resolver files. */
-  resolver?: ResolverServiceInput;
-  /** Identity Provider configurations. Must be an array, e.g. `[myIdp]`. */
-  idp?: Idp;
-  /** Auth configuration (single object, not an array). */
-  auth?: Auth;
-  /** Executor service configuration with executor files. */
-  executor?: ExecutorServiceInput;
-  /** Workflow service configuration with workflow files. */
-  workflow?: WorkflowServiceInput;
-  /** HTTP adapter service configuration with adapter files. */
-  httpAdapter?: HttpAdapterServiceInput;
-  /** Static website configurations. Must be an array, e.g. `[website]`. */
-  staticWebsites?: StaticWebsites;
-  /** Secret Manager vault configurations. Keys are vault names, values are records of secret names to values. */
-  secrets?: SecretsConfig;
-  /**
-   * Enable inline sourcemaps in bundled functions for better error stack traces.
-   * @default true
-   */
-  inlineSourcemap?: boolean;
-  /**
-   * Controls which `console.*` calls remain in bundled functions.
-   * @default "DEBUG"
-   */
-  logLevel?: LogLevelInput;
-}
-//#endregion
-//#region src/types/http-adapter.generated.d.ts
-type HttpAdapterConfigInput = {
-  /** Unique adapter name within the domain */name: string; /** Path pattern with segment wildcards (trailing or single-segment) */
-  pathPattern: string; /** Per-method functions that transform HTTP requests to GraphQL requests */
-  input: {
-    get?: Function | undefined;
-    post?: Function | undefined;
-    put?: Function | undefined;
-    patch?: Function | undefined;
-    delete?: Function | undefined;
-  }; /** Whether the adapter is active */
-  enabled?: boolean | undefined; /** Matching priority; the lowest value wins when multiple adapters match */
-  priority?: number | undefined; /** Function that transforms GraphQL response to HTTP response */
-  output?: Function | undefined;
-};
-//#endregion
-//#region src/types/workflow.generated.d.ts
-type RetryPolicy = {
-  /** Maximum number of retries (1-10) */maxRetries: number; /** Initial backoff duration (e.g., '1s', '500ms', '1m', max 1h) */
-  initialBackoff: `${number}ms` | `${number}s` | `${number}m`; /** Maximum backoff duration (e.g., '30s', '5m', max 24h) */
-  maxBackoff: `${number}ms` | `${number}s` | `${number}m`; /** Backoff multiplier (>= 1) */
-  backoffMultiplier: number;
-};
-type ConcurrencyPolicy = {
-  /** Maximum number of concurrent executions (1-1000) */maxConcurrentExecutions: number;
-};
-//#endregion
-export { BeforeLoginHookArgs as A, TailorAnyDBField as B, IdPGqlOperationsInput as C, AuthExternalConfig as D, AuthConnectionTokenResult as E, UserAttributeListKey as F, db as G, TailorDBField as H, UserAttributeMap as I, TailorTypePermission as J, PermissionCondition as K, UsernameFieldKey as L, OAuth2ClientGrantType as M, SCIMAttributeType as N, AuthOwnConfig as O, UserAttributeKey as P, AllowedValuesOutput as Q, AuthConnectionConfig as R, IdPGqlOperations as S, AuthConfig as T, TailorDBInstance as U, TailorAnyDBType as V, TailorDBType as W, unsafeAllowAllTypePermission as X, unsafeAllowAllGqlPermission as Y, AllowedValues as Z, IdPConfig as _, ExecutorServiceConfig as a, IdpDefinitionBrand as b, ResolverServiceConfig as c, WorkflowServiceInput as d, StaticWebsiteConfig as f, SecretsDefinitionBrand as g, SecretsConfig as h, AppConfig as i, DefinedAuth as j, AuthServiceInput as k, ResolverServiceInput as l, StaticWebsiteInput as m, RetryPolicy as n, ExecutorServiceInput as o, StaticWebsiteDefinitionBrand as p, TailorTypeGqlPermission as q, HttpAdapterConfigInput as r, ResolverExternalConfig as s, ConcurrencyPolicy as t, WorkflowServiceConfig as u, IdPExternalConfig as v, IdPInput as w, IdPEmailConfig as x, IdPUserField as y, AuthConnectionOAuth2Config as z };
-//# sourceMappingURL=workflow.generated-Bf1tWylx.d.mts.map