@turnkey/core 1.0.0-beta.6 → 1.1.0

package/dist/__inputs__/public_api.types.d.ts

@@ -27,6 +27,14 @@ export type paths = {
         /** Get details about authenticators for a user. */
         post: operations["PublicApiService_GetAuthenticators"];
     };
+    "/public/v1/query/get_boot_proof": {
+        /** Get the boot proof for a given ephemeral key. */
+        post: operations["PublicApiService_GetBootProof"];
+    };
+    "/public/v1/query/get_latest_boot_proof": {
+        /** Get the latest boot proof for a given enclave app name. */
+        post: operations["PublicApiService_GetLatestBootProof"];
+    };
     "/public/v1/query/get_oauth2_credential": {
         /** Get details about an OAuth 2.0 credential. */
         post: operations["PublicApiService_GetOauth2Credential"];
@@ -75,6 +83,10 @@ export type paths = {
         /** List all activities within an organization. */
         post: operations["PublicApiService_GetActivities"];
     };
+    "/public/v1/query/list_app_proofs": {
+        /** List the app proofs for the given activity. */
+        post: operations["PublicApiService_GetAppProofs"];
+    };
     "/public/v1/query/list_oauth2_credentials": {
         /** List all OAuth 2.0 credentials within an organization. */
         post: operations["PublicApiService_ListOauth2Credentials"];
@@ -477,7 +489,7 @@ export type definitions = {
         /** @description Unique identifier for the Vote associated with this policy evaluation. */
         voteId: string;
         /** @description Detailed evaluation result for each Policy that was run. */
-        policyEvaluations: definitions["privateumpv1PolicyEvaluation"][];
+        policyEvaluations: definitions["immutablecommonv1PolicyEvaluation"][];
         createdAt: definitions["externaldatav1Timestamp"];
     };
     externaldatav1Address: {
@@ -498,24 +510,6 @@ export type definitions = {
         /** @description Unique identifiers of quorum set members. */
         userIds: string[];
     };
-    externaldatav1SmartContractInterface: {
-        /** @description The Organization the Smart Contract Interface belongs to. */
-        organizationId: string;
-        /** @description Unique identifier for a given Smart Contract Interface (ABI or IDL). */
-        smartContractInterfaceId: string;
-        /** @description The address corresponding to the Smart Contract or Program. */
-        smartContractAddress: string;
-        /** @description The JSON corresponding to the Smart Contract Interface (ABI or IDL). */
-        smartContractInterface: string;
-        /** @description The type corresponding to the Smart Contract Interface (either ETHEREUM or SOLANA). */
-        type: string;
-        /** @description The label corresponding to the Smart Contract Interface (either ETHEREUM or SOLANA). */
-        label: string;
-        /** @description The notes corresponding to the Smart Contract Interface (either ETHEREUM or SOLANA). */
-        notes: string;
-        createdAt: definitions["externaldatav1Timestamp"];
-        updatedAt: definitions["externaldatav1Timestamp"];
-    };
     externaldatav1Timestamp: {
         seconds: string;
         nanos: string;
@@ -524,7 +518,7 @@ export type definitions = {
         format?: definitions["v1AddressFormat"];
         address?: string;
     };
-    privateumpv1PolicyEvaluation: {
+    immutablecommonv1PolicyEvaluation: {
         policyId?: string;
         outcome?: definitions["v1Outcome"];
     };
@@ -578,6 +572,8 @@ export type definitions = {
         result: definitions["v1Result"];
         /** @description A list of objects representing a particular User's approval or rejection of a Consensus request, including all relevant metadata. */
         votes: definitions["v1Vote"][];
+        /** @description A list of app proofs generated by enclaves during activity execution, providing verifiable attestations of performed operations. */
+        appProofs?: definitions["v1AppProof"][];
         /** @description An artifact verifying a User's action. */
         fingerprint: string;
         canApprove: boolean;
@@ -634,6 +630,16 @@ export type definitions = {
         /** @description A list of API Key parameters. This field, if not needed, should be an empty array in your request body. */
         apiKeys: definitions["apiApiKeyParams"][];
     };
+    v1AppProof: {
+        /** @description Scheme of signing key. */
+        scheme: definitions["v1SignatureScheme"];
+        /** @description Ephemeral public key. */
+        publicKey: string;
+        /** @description JSON serialized AppProofPayload. */
+        proofPayload: string;
+        /** @description Signature over hashed proof_payload. */
+        signature: string;
+    };
     v1ApproveActivityIntent: {
         /** @description An artifact verifying a User's action. */
         fingerprint: string;
@@ -702,6 +708,26 @@ export type definitions = {
     };
     /** @enum {string} */
     v1AuthenticatorTransport: "AUTHENTICATOR_TRANSPORT_BLE" | "AUTHENTICATOR_TRANSPORT_INTERNAL" | "AUTHENTICATOR_TRANSPORT_NFC" | "AUTHENTICATOR_TRANSPORT_USB" | "AUTHENTICATOR_TRANSPORT_HYBRID";
+    v1BootProof: {
+        /** @description The hex encoded Ephemeral Public Key. */
+        ephemeralPublicKeyHex: string;
+        /** @description The DER encoded COSE Sign1 struct Attestation doc. */
+        awsAttestationDocB64: string;
+        /** @description The borsch serialized base64 encoded Manifest. */
+        qosManifestB64: string;
+        /** @description The borsch serialized base64 encoded Manifest Envelope. */
+        qosManifestEnvelopeB64: string;
+        /** @description The label under which the enclave app was deployed. */
+        deploymentLabel: string;
+        /** @description Name of the enclave app */
+        enclaveApp: string;
+        /** @description Owner of the app i.e. 'tkhq' */
+        owner: string;
+        createdAt: definitions["externaldatav1Timestamp"];
+    };
+    v1BootProofResponse: {
+        bootProof: definitions["v1BootProof"];
+    };
     v1Config: {
         features?: definitions["v1Feature"][];
         quorum?: definitions["externaldatav1Quorum"];
@@ -1766,6 +1792,15 @@ export type definitions = {
         /** @description A list of API keys. */
         apiKeys: definitions["v1ApiKey"][];
     };
+    v1GetAppProofsRequest: {
+        /** @description Unique identifier for a given Organization. */
+        organizationId: string;
+        /** @description Unique identifier for a given activity. */
+        activityId: string;
+    };
+    v1GetAppProofsResponse: {
+        appProofs: definitions["v1AppProof"][];
+    };
     v1GetAttestationDocumentRequest: {
         /** @description Unique identifier for a given organization. */
         organizationId: string;
@@ -1799,6 +1834,18 @@ export type definitions = {
         /** @description A list of authenticators. */
         authenticators: definitions["v1Authenticator"][];
     };
+    v1GetBootProofRequest: {
+        /** @description Unique identifier for a given Organization. */
+        organizationId: string;
+        /** @description Hex encoded ephemeral public key. */
+        ephemeralKey: string;
+    };
+    v1GetLatestBootProofRequest: {
+        /** @description Unique identifier for a given Organization. */
+        organizationId: string;
+        /** @description Name of enclave app. */
+        appName: string;
+    };
     v1GetOauth2CredentialRequest: {
         /** @description Unique identifier for a given Organization. */
         organizationId: string;
@@ -1887,7 +1934,7 @@ export type definitions = {
     };
     v1GetSmartContractInterfaceResponse: {
         /** @description Object to be used in conjunction with policies to guard transaction signing. */
-        smartContractInterface: definitions["externaldatav1SmartContractInterface"];
+        smartContractInterface: definitions["v1SmartContractInterface"];
     };
     v1GetSmartContractInterfacesRequest: {
         /** @description Unique identifier for a given organization. */
@@ -1895,7 +1942,7 @@ export type definitions = {
     };
     v1GetSmartContractInterfacesResponse: {
         /** @description A list of smart contract interfaces. */
-        smartContractInterfaces: definitions["externaldatav1SmartContractInterface"][];
+        smartContractInterfaces: definitions["v1SmartContractInterface"][];
     };
     v1GetSubOrgIdsRequest: {
         /** @description Unique identifier for the parent organization. This is used to find sub-organizations within it. */
@@ -2078,6 +2125,8 @@ export type definitions = {
         countrySubdivisionCode?: string;
         /** @description Optional flag to indicate whether to use the sandbox mode to simulate transactions for the on-ramp provider. Default is false. */
         sandboxMode?: boolean;
+        /** @description Optional MoonPay Widget URL to sign when using MoonPay client SDKs with URL Signing enabled. */
+        urlForSignature?: string;
     };
     v1InitFiatOnRampRequest: {
         /** @enum {string} */
@@ -2093,6 +2142,8 @@ export type definitions = {
         onRampUrl: string;
         /** @description Unique identifier used to retrieve transaction statuses for a given fiat on-ramp flow. */
         onRampTransactionId: string;
+        /** @description Optional signature of the MoonPay Widget URL. The signature is generated if the Init Fiat On Ramp intent includes the urlForSignature field. The signature can be used to initialize the MoonPay SDKs when URL signing is enabled for your project. */
+        onRampUrlSignature?: string;
     };
     v1InitImportPrivateKeyIntent: {
         /** @description The ID of the User importing a Private Key. */
@@ -2582,6 +2633,8 @@ export type definitions = {
         expirationSeconds?: string;
         /** @description Invalidate all other previously generated Login API keys */
         invalidateExisting?: boolean;
+        /** @description Optional signature associated with the public key passed into the verification step. This must be a hex-encoded ECDSA signature over the verification token. Only required if a public key was provided during the verification step. */
+        clientSignature?: string;
     };
     v1OtpLoginRequest: {
         /** @enum {string} */
@@ -2969,11 +3022,31 @@ export type definitions = {
     v1SignTransactionResult: {
         signedTransaction: string;
     };
+    /** @enum {string} */
+    v1SignatureScheme: "SIGNATURE_SCHEME_EPHEMERAL_KEY_P256";
     v1SimpleClientExtensionResults: {
         appid?: boolean;
         appidExclude?: boolean;
         credProps?: definitions["v1CredPropsAuthenticationExtensionsClientOutputs"];
     };
+    v1SmartContractInterface: {
+        /** @description The Organization the Smart Contract Interface belongs to. */
+        organizationId: string;
+        /** @description Unique identifier for a given Smart Contract Interface (ABI or IDL). */
+        smartContractInterfaceId: string;
+        /** @description The address corresponding to the Smart Contract or Program. */
+        smartContractAddress: string;
+        /** @description The JSON corresponding to the Smart Contract Interface (ABI or IDL). */
+        smartContractInterface: string;
+        /** @description The type corresponding to the Smart Contract Interface (either ETHEREUM or SOLANA). */
+        type: string;
+        /** @description The label corresponding to the Smart Contract Interface (either ETHEREUM or SOLANA). */
+        label: string;
+        /** @description The notes corresponding to the Smart Contract Interface (either ETHEREUM or SOLANA). */
+        notes: string;
+        createdAt: definitions["externaldatav1Timestamp"];
+        updatedAt: definitions["externaldatav1Timestamp"];
+    };
     v1SmartContractInterfaceReference: {
         smartContractInterfaceId?: string;
         smartContractAddress?: string;
@@ -3072,10 +3145,6 @@ export type definitions = {
          * @description Desired OTP code length (6–9).
          */
         otpLength?: number;
-        /** @description A map of OAuth 2.0 provider and their respective credential ID to use for the OAuth 2.0 authentication flow. */
-        oauth2ProviderCredentialIds?: {
-            [key: string]: string;
-        };
     };
     v1UpdateAuthProxyConfigResult: {
         /** @description Unique identifier for a given User. (representing the turnkey signer user id) */
@@ -3390,6 +3459,8 @@ export type definitions = {
         otpCode: string;
         /** @description Expiration window (in seconds) indicating how long the verification token is valid for. If not provided, a default of 1 hour will be used. Maximum value is 86400 seconds (24 hours) */
         expirationSeconds?: string;
+        /** @description Client-side public key generated by the user, which will be added to the JWT response and verified in subsequent requests via a client proof signature */
+        publicKey?: string;
     };
     v1VerifyOtpRequest: {
         /** @enum {string} */
@@ -3477,6 +3548,18 @@ export type definitions = {
          * @description List of enabled social login providers (e.g., 'apple', 'google', 'facebook')
          */
         enabledSocialProviders?: string[];
+        /**
+         * Oauth Client IDs
+         * @description Mapping of social login providers to their Oauth client IDs.
+         */
+        oauthClientIds?: {
+            [key: string]: string;
+        };
+        /**
+         * Oauth Redirect URL
+         * @description Oauth redirect URL to be used for social login flows.
+         */
+        oauthRedirectUrl?: string;
     };
     v1WalletParams: {
         /** @description Human-readable name for a Wallet. */
@@ -3614,6 +3697,42 @@ export type operations = {
             };
         };
     };
+    /** Get the boot proof for a given ephemeral key. */
+    PublicApiService_GetBootProof: {
+        parameters: {
+            body: {
+                body: definitions["v1GetBootProofRequest"];
+            };
+        };
+        responses: {
+            /** A successful response. */
+            200: {
+                schema: definitions["v1BootProofResponse"];
+            };
+            /** An unexpected error response. */
+            default: {
+                schema: definitions["rpcStatus"];
+            };
+        };
+    };
+    /** Get the latest boot proof for a given enclave app name. */
+    PublicApiService_GetLatestBootProof: {
+        parameters: {
+            body: {
+                body: definitions["v1GetLatestBootProofRequest"];
+            };
+        };
+        responses: {
+            /** A successful response. */
+            200: {
+                schema: definitions["v1BootProofResponse"];
+            };
+            /** An unexpected error response. */
+            default: {
+                schema: definitions["rpcStatus"];
+            };
+        };
+    };
     /** Get details about an OAuth 2.0 credential. */
     PublicApiService_GetOauth2Credential: {
         parameters: {
@@ -3830,6 +3949,24 @@ export type operations = {
             };
         };
     };
+    /** List the app proofs for the given activity. */
+    PublicApiService_GetAppProofs: {
+        parameters: {
+            body: {
+                body: definitions["v1GetAppProofsRequest"];
+            };
+        };
+        responses: {
+            /** A successful response. */
+            200: {
+                schema: definitions["v1GetAppProofsResponse"];
+            };
+            /** An unexpected error response. */
+            default: {
+                schema: definitions["rpcStatus"];
+            };
+        };
+    };
     /** List all OAuth 2.0 credentials within an organization. */
     PublicApiService_ListOauth2Credentials: {
         parameters: {