@vendasta/iam 1.17.2 → 2.2.2

package/lib/_generated/host.service.d.ts

@@ -1,4 +1,5 @@
 import { EnvironmentService } from '@vendasta/core';
+import * as i0 from "@angular/core";
 export declare class HostService {
     private environmentService;
     private _host;
@@ -8,4 +9,6 @@ export declare class HostService {
     httpsHost(): string;
     hostWithScheme(): string;
     httpsHostWithScheme(): string;
+    static ɵfac: i0.ɵɵFactoryDef<HostService, never>;
+    static ɵprov: i0.ɵɵInjectableDef<HostService>;
 }

package/lib/_generated/index.d.ts

@@ -0,0 +1 @@
+export { HostService } from './host.service';

package/lib/_internal/enums/index.d.ts

@@ -1,4 +1,5 @@
+export { BooleanOperator, ForOperator, } from './policies.enum';
+export { AccessScope, } from './resources.enum';
 export { AlgorithmType, OrderByDirection, } from './subjects.enum';
-export { AccessScope, BooleanOperator, ForOperator, } from './resources.enum';
 export { RestrictionType, } from './users.enum';
 export { SortDirection, UserSortField, } from './api.enum';

package/lib/_internal/enums/policies.enum.d.ts

@@ -0,0 +1,9 @@
+export declare enum BooleanOperator {
+    AND = 0,
+    OR = 1,
+    NOT = 2
+}
+export declare enum ForOperator {
+    ANY = 0,
+    ALL = 1
+}

package/lib/_internal/enums/resources.enum.d.ts

@@ -4,12 +4,3 @@ export declare enum AccessScope {
     DELETE = 2,
     LIST = 3
 }
-export declare enum BooleanOperator {
-    AND = 0,
-    OR = 1,
-    NOT = 2
-}
-export declare enum ForOperator {
-    ANY = 0,
-    ALL = 1
-}

package/lib/_internal/iam.api.service.d.ts

@@ -3,6 +3,7 @@ import { AccessResourceRequestInterface, AddKeyRequestInterface, AddMultiUserRes
 import { HttpClient, HttpResponse } from '@angular/common/http';
 import { HostService } from '../_generated/host.service';
 import { Observable } from 'rxjs';
+import * as i0 from "@angular/core";
 export declare class IAMApiService {
     private http;
     private hostService;
@@ -42,4 +43,6 @@ export declare class IAMApiService {
     createExternalId(r: CreateExternalIDRequest | CreateExternalIDRequestInterface): Observable<HttpResponse<null>>;
     addMultiUserRestriction(r: AddMultiUserRestrictionRequest | AddMultiUserRestrictionRequestInterface): Observable<HttpResponse<null>>;
     removeMultiUserRestriction(r: RemoveMultiUserRestrictionRequest | RemoveMultiUserRestrictionRequestInterface): Observable<HttpResponse<null>>;
+    static ɵfac: i0.ɵɵFactoryDef<IAMApiService, never>;
+    static ɵprov: i0.ɵɵInjectableDef<IAMApiService>;
 }

package/lib/_internal/index.d.ts

@@ -1,6 +1,5 @@
-export * from './enums/index';
-export * from './objects/index';
-export * from './interfaces/index';
+export * from './enums';
+export * from './objects';
+export * from './interfaces';
 export { IAMApiService } from './iam.api.service';
-export { IAMSsoApiService } from './iam-sso.api.service';
 export { UserIAMApiService } from './user-iam.api.service';

package/lib/_internal/interfaces/annotations.interface.d.ts

@@ -0,0 +1,4 @@
+export interface AccessInterface {
+    scope?: string[];
+    public?: boolean;
+}

package/lib/_internal/interfaces/api.interface.d.ts

@@ -1,9 +1,10 @@
-import { ContextInterface, StructAttributeInterface, SubjectResultInterface, PersonaInterface, MutationInterface, MultiValueAttributeInterface, QueryInterface, SingleValueAttributeInterface } from './subjects.interface';
+import { ContextInterface, SubjectResultInterface, PersonaInterface, MutationInterface, MultiValueAttributeInterface, QueryInterface, SingleValueAttributeInterface } from './subjects.interface';
 import { FieldMaskInterface } from './field-mask.interface';
 import { ResourceIdentifierInterface, PolicyInterface, ResourceOwnerInterface, ValueListInterface } from './resources.interface';
 import { SecurityLogInterface } from './security-logs.interface';
+import { StructAttributeInterface } from './attributes.interface';
 import { TypedExternalIdentifierInterface, IdentifierInterface, UserInterface, NamespacedEmailInterface, NamespacedSessionInterface } from './users.interface';
-import * as e from '../enums/index';
+import * as e from '../enums';
 export interface AccessResourceRequestInterface {
     context?: ContextInterface;
     subjectId?: string;
@@ -16,6 +17,7 @@ export interface AccessResourceRequestInterface {
         [key: string]: ValueListInterface;
     };
     accessScope?: e.AccessScope[];
+    actions?: string[];
     resourceEntityIdentifiers?: ResourceIdentifierInterface[];
     resourceAttributes?: StructAttributeInterface;
 }
@@ -96,22 +98,7 @@ export interface GetMultiUsersResponseInterface {
 export interface GetResetPasswordTokenRequestInterface {
     context?: ContextInterface;
     email?: string;
-}
-export interface GetSessionForUserRequestInterface {
-    subjectId?: string;
-    email?: string;
-    userId?: string;
-    refreshToken?: string;
-    clientAssertion?: string;
-    federatedIdentityProvider?: string;
-    scopes?: string[];
-    clientId?: string;
-    nonce?: string;
-}
-export interface GetSessionForUserResponseInterface {
-    session?: string;
-    accessToken?: string;
-    refreshToken?: string;
+    userIdentifier?: UserIdentifierInterface;
 }
 export interface GetSessionTokenRequestInterface {
     token?: string;
@@ -158,6 +145,7 @@ export interface IAMListPersonasRequestInterface {
     pageSize?: number;
     type?: string;
     namespace?: string;
+    alwaysIncludeSuperadmin?: boolean;
 }
 export interface ListPersonasByEmailRequestInterface {
     email?: string;

package/lib/_internal/interfaces/attributes.interface.d.ts

@@ -0,0 +1,26 @@
+export interface AttributeInterface {
+    intAttribute?: number;
+    doubleAttribute?: number;
+    stringAttribute?: string;
+    boolAttribute?: boolean;
+    structAttribute?: StructAttributeInterface;
+    listAttribute?: ListAttributeInterface;
+    timestampAttribute?: Date;
+    geopointAttribute?: GeoPointAttributeInterface;
+}
+export interface StructAttributeAttributesEntryInterface {
+    key?: string;
+    value?: AttributeInterface;
+}
+export interface GeoPointAttributeInterface {
+    latitude?: number;
+    longitude?: number;
+}
+export interface ListAttributeInterface {
+    attributes?: AttributeInterface[];
+}
+export interface StructAttributeInterface {
+    attributes?: {
+        [key: string]: AttributeInterface;
+    };
+}

package/lib/_internal/interfaces/index.d.ts

@@ -1,6 +1,9 @@
 export { FieldMaskInterface, } from './field-mask.interface';
-export { AttributeInterface, StructAttributeAttributesEntryInterface, ContextInterface, GeoPointAttributeInterface, ListAttributeInterface, MultiValueAttributeInterface, MutationInterface, NamespacedContextInterface, PersonaInterface, PublicKeyInterface, QueryInterface, SingleValueAttributeInterface, StructAttributeInterface, SubjectInterface, SubjectResultInterface, TypedContextInterface, } from './subjects.interface';
-export { AccessCheckFailuresInterface, ResourceIdentifierIdentifiersEntryInterface, IfClauseInterface, OperatorInterface, PolicyInterface, PolicyNodeInterface, ResourceIdentifierInterface, ResourceOwnerInterface, SubjectMissingValueClauseInterface, SubjectResourceForClauseInterface, SubjectResourceIntersectionClauseInterface, SubjectResourceSubsetClauseInterface, SubjectValueIntersectionClauseInterface, ValueListInterface, } from './resources.interface';
+export { AttributeInterface, StructAttributeAttributesEntryInterface, GeoPointAttributeInterface, ListAttributeInterface, StructAttributeInterface, } from './attributes.interface';
+export { IfClauseInterface, OperatorInterface, PolicyNodeInterface, SubjectMissingValueClauseInterface, SubjectResourceForClauseInterface, SubjectResourceIntersectionClauseInterface, SubjectResourceSubsetClauseInterface, SubjectValueIntersectionClauseInterface, } from './policies.interface';
+export { AccessCheckFailuresInterface, ResourceIdentifierIdentifiersEntryInterface, PolicyInterface, ResourceIdentifierInterface, ResourceOwnerInterface, ValueListInterface, } from './resources.interface';
+export { ContextInterface, MultiValueAttributeInterface, MutationInterface, NamespacedContextInterface, PersonaInterface, PublicKeyInterface, QueryInterface, SingleValueAttributeInterface, SubjectInterface, SubjectResultInterface, TypedContextInterface, } from './subjects.interface';
 export { SecurityLogInterface, } from './security-logs.interface';
 export { IdentifierInterface, NamespacedEmailInterface, NamespacedSessionInterface, TypedExternalIdentifierInterface, UserInterface, } from './users.interface';
-export { AccessResourceRequestInterface, AddKeyRequestInterface, AddKeyResponseInterface, AddMultiUserRestrictionRequestInterface, AuthenticateSubjectRequestInterface, ChangeSubjectEmailRequestInterface, CreateExternalIDRequestInterface, CreateSessionRequestInterface, CreateSessionResponseInterface, CreateTemporarySubjectRequestInterface, CreateTemporarySubjectResponseInterface, DeleteSubjectRequestInterface, DeleteUserRequestInterface, ListSecurityLogsRequestFiltersInterface, GetImpersonationTokenRequestInterface, GetImpersonationTokenResponseInterface, GetMultiExternalIDRequestInterface, GetMultiExternalIDResponseInterface, GetMultiUsersRequestInterface, GetMultiUsersResponseInterface, GetResetPasswordTokenRequestInterface, GetSessionForUserRequestInterface, GetSessionForUserResponseInterface, GetSessionTokenRequestInterface, GetShortLivedTokenRequestInterface, GetSubjectBySessionRequestInterface, GetSubjectContextRequestInterface, GetSubjectContextResponseInterface, GetSubjectResponseInterface, GetSubjectsByEmailRequestInterface, GetSubjectsRequestInterface, GetSubjectsResponseInterface, GetTokenRequestInterface, GetTokenResponseInterface, IAMListPersonasRequestInterface, ListPersonasByEmailRequestInterface, ListPersonasRequestInterface, ListPersonasResponseInterface, ListSecurityLogsRequestInterface, ListSecurityLogsResponseInterface, ListUsersRequestInterface, ListUsersResponseInterface, MutateAttributesRequestInterface, OAuthCredentialsInterface, UpdateUserRequestOperationInterface, RegisterPolicyRequestInterface, RegisterResourceOwnerRequestInterface, RegisterResourceRequestInterface, RegisterSubjectRequestInterface, RegisterSubjectResponseInterface, RemoveKeyRequestInterface, RemoveMultiUserRestrictionRequestInterface, ResetPasswordTokenResponseInterface, ResetPasswordWithTokenRequestInterface, ResetSubjectPasswordRequestInterface, AccessResourceRequestResourceEntityIdentifierEntryInterface, SearchSubjectRequestInterface, SearchSubjectResponseInterface, SendEmailVerificationRequestInterface, SubjectCredentialsInterface, UpdateUserRequestInterface, GetMultiUsersResponseUserContainerInterface, UserFilterInterface, UserIdentifierInterface, UserSortOptionsInterface, VerifyEmailRequestInterface, } from './api.interface';
+export { AccessInterface, } from './annotations.interface';
+export { AccessResourceRequestInterface, AddKeyRequestInterface, AddKeyResponseInterface, AddMultiUserRestrictionRequestInterface, AuthenticateSubjectRequestInterface, ChangeSubjectEmailRequestInterface, CreateExternalIDRequestInterface, CreateSessionRequestInterface, CreateSessionResponseInterface, CreateTemporarySubjectRequestInterface, CreateTemporarySubjectResponseInterface, DeleteSubjectRequestInterface, DeleteUserRequestInterface, ListSecurityLogsRequestFiltersInterface, GetImpersonationTokenRequestInterface, GetImpersonationTokenResponseInterface, GetMultiExternalIDRequestInterface, GetMultiExternalIDResponseInterface, GetMultiUsersRequestInterface, GetMultiUsersResponseInterface, GetResetPasswordTokenRequestInterface, GetSessionTokenRequestInterface, GetShortLivedTokenRequestInterface, GetSubjectBySessionRequestInterface, GetSubjectContextRequestInterface, GetSubjectContextResponseInterface, GetSubjectResponseInterface, GetSubjectsByEmailRequestInterface, GetSubjectsRequestInterface, GetSubjectsResponseInterface, GetTokenRequestInterface, GetTokenResponseInterface, IAMListPersonasRequestInterface, ListPersonasByEmailRequestInterface, ListPersonasRequestInterface, ListPersonasResponseInterface, ListSecurityLogsRequestInterface, ListSecurityLogsResponseInterface, ListUsersRequestInterface, ListUsersResponseInterface, MutateAttributesRequestInterface, OAuthCredentialsInterface, UpdateUserRequestOperationInterface, RegisterPolicyRequestInterface, RegisterResourceOwnerRequestInterface, RegisterResourceRequestInterface, RegisterSubjectRequestInterface, RegisterSubjectResponseInterface, RemoveKeyRequestInterface, RemoveMultiUserRestrictionRequestInterface, ResetPasswordTokenResponseInterface, ResetPasswordWithTokenRequestInterface, ResetSubjectPasswordRequestInterface, AccessResourceRequestResourceEntityIdentifierEntryInterface, SearchSubjectRequestInterface, SearchSubjectResponseInterface, SendEmailVerificationRequestInterface, SubjectCredentialsInterface, UpdateUserRequestInterface, GetMultiUsersResponseUserContainerInterface, UserFilterInterface, UserIdentifierInterface, UserSortOptionsInterface, VerifyEmailRequestInterface, } from './api.interface';

package/lib/_internal/interfaces/policies.interface.d.ts

@@ -0,0 +1,42 @@
+import { AttributeInterface } from './attributes.interface';
+import * as e from '../enums';
+export interface IfClauseInterface {
+    resourceAttributeName?: string;
+    resourceAttributeValue?: AttributeInterface;
+    thenPolicy?: PolicyNodeInterface;
+    elsePolicy?: PolicyNodeInterface;
+}
+export interface OperatorInterface {
+    operator?: e.BooleanOperator;
+    children?: PolicyNodeInterface[];
+}
+export interface PolicyNodeInterface {
+    subjectResourceIntersection?: SubjectResourceIntersectionClauseInterface;
+    operator?: OperatorInterface;
+    subjectValueIntersection?: SubjectValueIntersectionClauseInterface;
+    subjectMissingValue?: SubjectMissingValueClauseInterface;
+    subjectResourceSubset?: SubjectResourceSubsetClauseInterface;
+    subjectResourceFor?: SubjectResourceForClauseInterface;
+    ifClause?: IfClauseInterface;
+}
+export interface SubjectMissingValueClauseInterface {
+    attributeName?: string;
+}
+export interface SubjectResourceForClauseInterface {
+    attributeName?: string;
+    operator?: e.ForOperator;
+    rules?: PolicyNodeInterface;
+}
+export interface SubjectResourceIntersectionClauseInterface {
+    attributeName?: string;
+    resourceAttributeName?: string;
+}
+export interface SubjectResourceSubsetClauseInterface {
+    attributeName?: string;
+    resourceAttributeName?: string;
+}
+export interface SubjectValueIntersectionClauseInterface {
+    attributeName?: string;
+    attributeValue?: string;
+    structuredAttributeValue?: AttributeInterface;
+}

package/lib/_internal/interfaces/resources.interface.d.ts

@@ -1,5 +1,5 @@
-import { AttributeInterface } from './subjects.interface';
-import * as e from '../enums/index';
+import { PolicyNodeInterface } from './policies.interface';
+import * as e from '../enums';
 export interface AccessCheckFailuresInterface {
     failures?: ResourceIdentifierInterface[];
 }
@@ -7,33 +7,15 @@ export interface ResourceIdentifierIdentifiersEntryInterface {
     key?: string;
     value?: ValueListInterface;
 }
-export interface IfClauseInterface {
-    resourceAttributeName?: string;
-    resourceAttributeValue?: AttributeInterface;
-    thenPolicy?: PolicyNodeInterface;
-    elsePolicy?: PolicyNodeInterface;
-}
-export interface OperatorInterface {
-    operator?: e.BooleanOperator;
-    children?: PolicyNodeInterface[];
-}
 export interface PolicyInterface {
     appId?: string;
     resourceId?: string;
     policyId?: string;
     policyName?: string;
     operations?: e.AccessScope[];
+    actions?: string[];
     policy?: PolicyNodeInterface;
 }
-export interface PolicyNodeInterface {
-    subjectResourceIntersection?: SubjectResourceIntersectionClauseInterface;
-    operator?: OperatorInterface;
-    subjectValueIntersection?: SubjectValueIntersectionClauseInterface;
-    subjectMissingValue?: SubjectMissingValueClauseInterface;
-    subjectResourceSubset?: SubjectResourceSubsetClauseInterface;
-    subjectResourceFor?: SubjectResourceForClauseInterface;
-    ifClause?: IfClauseInterface;
-}
 export interface ResourceIdentifierInterface {
     identifiers?: {
         [key: string]: ValueListInterface;
@@ -43,27 +25,6 @@ export interface ResourceOwnerInterface {
     appId?: string;
     appName?: string;
 }
-export interface SubjectMissingValueClauseInterface {
-    attributeName?: string;
-}
-export interface SubjectResourceForClauseInterface {
-    attributeName?: string;
-    operator?: e.ForOperator;
-    rules?: PolicyNodeInterface;
-}
-export interface SubjectResourceIntersectionClauseInterface {
-    attributeName?: string;
-    resourceAttributeName?: string;
-}
-export interface SubjectResourceSubsetClauseInterface {
-    attributeName?: string;
-    resourceAttributeName?: string;
-}
-export interface SubjectValueIntersectionClauseInterface {
-    attributeName?: string;
-    attributeValue?: string;
-    structuredAttributeValue?: AttributeInterface;
-}
 export interface ValueListInterface {
     values?: string[];
 }

package/lib/_internal/interfaces/subjects.interface.d.ts

@@ -1,29 +1,9 @@
-import * as e from '../enums/index';
-export interface AttributeInterface {
-    intAttribute?: number;
-    doubleAttribute?: number;
-    stringAttribute?: string;
-    boolAttribute?: boolean;
-    structAttribute?: StructAttributeInterface;
-    listAttribute?: ListAttributeInterface;
-    timestampAttribute?: Date;
-    geopointAttribute?: GeoPointAttributeInterface;
-}
-export interface StructAttributeAttributesEntryInterface {
-    key?: string;
-    value?: AttributeInterface;
-}
+import { StructAttributeInterface } from './attributes.interface';
+import * as e from '../enums';
 export interface ContextInterface {
     namespaced?: NamespacedContextInterface;
     typed?: TypedContextInterface;
 }
-export interface GeoPointAttributeInterface {
-    latitude?: number;
-    longitude?: number;
-}
-export interface ListAttributeInterface {
-    attributes?: AttributeInterface[];
-}
 export interface MultiValueAttributeInterface {
     key?: string;
     values?: string[];
@@ -58,11 +38,6 @@ export interface SingleValueAttributeInterface {
     key?: string;
     value?: string;
 }
-export interface StructAttributeInterface {
-    attributes?: {
-        [key: string]: AttributeInterface;
-    };
-}
 export interface SubjectInterface {
     subjectId?: string;
     email?: string;

package/lib/_internal/objects/annotations.d.ts

@@ -0,0 +1,9 @@
+import * as i from '../interfaces';
+export declare function enumStringToValue<E>(enumRef: any, value: string): E;
+export declare class Access implements i.AccessInterface {
+    scope: string[];
+    public: boolean;
+    static fromProto(proto: any): Access;
+    constructor(kwargs?: i.AccessInterface);
+    toApiJson(): object;
+}

package/lib/_internal/objects/api.d.ts

@@ -1,10 +1,11 @@
-import * as i from '../interfaces/index';
-import { Context, StructAttribute, SubjectResult, Persona, Mutation, MultiValueAttribute, Query, SingleValueAttribute } from './subjects';
+import * as i from '../interfaces';
+import { Context, SubjectResult, Persona, Mutation, MultiValueAttribute, Query, SingleValueAttribute } from './subjects';
 import { FieldMask } from './field-mask';
 import { ResourceIdentifier, Policy, ResourceOwner, ValueList } from './resources';
 import { SecurityLog } from './security-logs';
+import { StructAttribute } from './attributes';
 import { TypedExternalIdentifier, Identifier, User, NamespacedEmail, NamespacedSession } from './users';
-import * as e from '../enums/index';
+import * as e from '../enums';
 export declare function enumStringToValue<E>(enumRef: any, value: string): E;
 export declare class AccessResourceRequest implements i.AccessResourceRequestInterface {
     context: Context;
@@ -18,6 +19,7 @@ export declare class AccessResourceRequest implements i.AccessResourceRequestInt
         [key: string]: ValueList;
     };
     accessScope: e.AccessScope[];
+    actions: string[];
     resourceEntityIdentifiers: ResourceIdentifier[];
     resourceAttributes: StructAttribute;
     static fromProto(proto: any): AccessResourceRequest;
@@ -158,32 +160,11 @@ export declare class GetMultiUsersResponse implements i.GetMultiUsersResponseInt
 export declare class GetResetPasswordTokenRequest implements i.GetResetPasswordTokenRequestInterface {
     context: Context;
     email: string;
+    userIdentifier: UserIdentifier;
     static fromProto(proto: any): GetResetPasswordTokenRequest;
     constructor(kwargs?: i.GetResetPasswordTokenRequestInterface);
     toApiJson(): object;
 }
-export declare class GetSessionForUserRequest implements i.GetSessionForUserRequestInterface {
-    subjectId: string;
-    email: string;
-    userId: string;
-    refreshToken: string;
-    clientAssertion: string;
-    federatedIdentityProvider: string;
-    scopes: string[];
-    clientId: string;
-    nonce: string;
-    static fromProto(proto: any): GetSessionForUserRequest;
-    constructor(kwargs?: i.GetSessionForUserRequestInterface);
-    toApiJson(): object;
-}
-export declare class GetSessionForUserResponse implements i.GetSessionForUserResponseInterface {
-    session: string;
-    accessToken: string;
-    refreshToken: string;
-    static fromProto(proto: any): GetSessionForUserResponse;
-    constructor(kwargs?: i.GetSessionForUserResponseInterface);
-    toApiJson(): object;
-}
 export declare class GetSessionTokenRequest implements i.GetSessionTokenRequestInterface {
     token: string;
     static fromProto(proto: any): GetSessionTokenRequest;
@@ -262,6 +243,7 @@ export declare class IAMListPersonasRequest implements i.IAMListPersonasRequestI
     pageSize: number;
     type: string;
     namespace: string;
+    alwaysIncludeSuperadmin: boolean;
     static fromProto(proto: any): IAMListPersonasRequest;
     constructor(kwargs?: i.IAMListPersonasRequestInterface);
     toApiJson(): object;

package/lib/_internal/objects/attributes.d.ts

@@ -0,0 +1,43 @@
+import * as i from '../interfaces';
+export declare function enumStringToValue<E>(enumRef: any, value: string): E;
+export declare class Attribute implements i.AttributeInterface {
+    intAttribute: number;
+    doubleAttribute: number;
+    stringAttribute: string;
+    boolAttribute: boolean;
+    structAttribute: StructAttribute;
+    listAttribute: ListAttribute;
+    timestampAttribute: Date;
+    geopointAttribute: GeoPointAttribute;
+    static fromProto(proto: any): Attribute;
+    constructor(kwargs?: i.AttributeInterface);
+    toApiJson(): object;
+}
+export declare class StructAttributeAttributesEntry implements i.StructAttributeAttributesEntryInterface {
+    key: string;
+    value: Attribute;
+    static fromProto(proto: any): StructAttributeAttributesEntry;
+    constructor(kwargs?: i.StructAttributeAttributesEntryInterface);
+    toApiJson(): object;
+}
+export declare class GeoPointAttribute implements i.GeoPointAttributeInterface {
+    latitude: number;
+    longitude: number;
+    static fromProto(proto: any): GeoPointAttribute;
+    constructor(kwargs?: i.GeoPointAttributeInterface);
+    toApiJson(): object;
+}
+export declare class ListAttribute implements i.ListAttributeInterface {
+    attributes: Attribute[];
+    static fromProto(proto: any): ListAttribute;
+    constructor(kwargs?: i.ListAttributeInterface);
+    toApiJson(): object;
+}
+export declare class StructAttribute implements i.StructAttributeInterface {
+    attributes: {
+        [key: string]: Attribute;
+    };
+    static fromProto(proto: any): StructAttribute;
+    constructor(kwargs?: i.StructAttributeInterface);
+    toApiJson(): object;
+}

package/lib/_internal/objects/field-mask.d.ts

@@ -1,4 +1,4 @@
-import * as i from '../interfaces/index';
+import * as i from '../interfaces';
 export declare function enumStringToValue<E>(enumRef: any, value: string): E;
 export declare class FieldMask implements i.FieldMaskInterface {
     paths: string[];

package/lib/_internal/objects/index.d.ts

@@ -1,6 +1,9 @@
 export { FieldMask, } from './field-mask';
-export { Attribute, StructAttributeAttributesEntry, Context, GeoPointAttribute, ListAttribute, MultiValueAttribute, Mutation, NamespacedContext, Persona, PublicKey, Query, SingleValueAttribute, StructAttribute, Subject, SubjectResult, TypedContext, } from './subjects';
-export { AccessCheckFailures, ResourceIdentifierIdentifiersEntry, IfClause, Operator, Policy, PolicyNode, ResourceIdentifier, ResourceOwner, SubjectMissingValueClause, SubjectResourceForClause, SubjectResourceIntersectionClause, SubjectResourceSubsetClause, SubjectValueIntersectionClause, ValueList, } from './resources';
+export { Attribute, StructAttributeAttributesEntry, GeoPointAttribute, ListAttribute, StructAttribute, } from './attributes';
+export { IfClause, Operator, PolicyNode, SubjectMissingValueClause, SubjectResourceForClause, SubjectResourceIntersectionClause, SubjectResourceSubsetClause, SubjectValueIntersectionClause, } from './policies';
+export { AccessCheckFailures, ResourceIdentifierIdentifiersEntry, Policy, ResourceIdentifier, ResourceOwner, ValueList, } from './resources';
+export { Context, MultiValueAttribute, Mutation, NamespacedContext, Persona, PublicKey, Query, SingleValueAttribute, Subject, SubjectResult, TypedContext, } from './subjects';
 export { SecurityLog, } from './security-logs';
 export { Identifier, NamespacedEmail, NamespacedSession, TypedExternalIdentifier, User, } from './users';
-export { AccessResourceRequest, AddKeyRequest, AddKeyResponse, AddMultiUserRestrictionRequest, AuthenticateSubjectRequest, ChangeSubjectEmailRequest, CreateExternalIDRequest, CreateSessionRequest, CreateSessionResponse, CreateTemporarySubjectRequest, CreateTemporarySubjectResponse, DeleteSubjectRequest, DeleteUserRequest, ListSecurityLogsRequestFilters, GetImpersonationTokenRequest, GetImpersonationTokenResponse, GetMultiExternalIDRequest, GetMultiExternalIDResponse, GetMultiUsersRequest, GetMultiUsersResponse, GetResetPasswordTokenRequest, GetSessionForUserRequest, GetSessionForUserResponse, GetSessionTokenRequest, GetShortLivedTokenRequest, GetSubjectBySessionRequest, GetSubjectContextRequest, GetSubjectContextResponse, GetSubjectResponse, GetSubjectsByEmailRequest, GetSubjectsRequest, GetSubjectsResponse, GetTokenRequest, GetTokenResponse, IAMListPersonasRequest, ListPersonasByEmailRequest, ListPersonasRequest, ListPersonasResponse, ListSecurityLogsRequest, ListSecurityLogsResponse, ListUsersRequest, ListUsersResponse, MutateAttributesRequest, OAuthCredentials, UpdateUserRequestOperation, RegisterPolicyRequest, RegisterResourceOwnerRequest, RegisterResourceRequest, RegisterSubjectRequest, RegisterSubjectResponse, RemoveKeyRequest, RemoveMultiUserRestrictionRequest, ResetPasswordTokenResponse, ResetPasswordWithTokenRequest, ResetSubjectPasswordRequest, AccessResourceRequestResourceEntityIdentifierEntry, SearchSubjectRequest, SearchSubjectResponse, SendEmailVerificationRequest, SubjectCredentials, UpdateUserRequest, GetMultiUsersResponseUserContainer, UserFilter, UserIdentifier, UserSortOptions, VerifyEmailRequest, } from './api';
+export { Access, } from './annotations';
+export { AccessResourceRequest, AddKeyRequest, AddKeyResponse, AddMultiUserRestrictionRequest, AuthenticateSubjectRequest, ChangeSubjectEmailRequest, CreateExternalIDRequest, CreateSessionRequest, CreateSessionResponse, CreateTemporarySubjectRequest, CreateTemporarySubjectResponse, DeleteSubjectRequest, DeleteUserRequest, ListSecurityLogsRequestFilters, GetImpersonationTokenRequest, GetImpersonationTokenResponse, GetMultiExternalIDRequest, GetMultiExternalIDResponse, GetMultiUsersRequest, GetMultiUsersResponse, GetResetPasswordTokenRequest, GetSessionTokenRequest, GetShortLivedTokenRequest, GetSubjectBySessionRequest, GetSubjectContextRequest, GetSubjectContextResponse, GetSubjectResponse, GetSubjectsByEmailRequest, GetSubjectsRequest, GetSubjectsResponse, GetTokenRequest, GetTokenResponse, IAMListPersonasRequest, ListPersonasByEmailRequest, ListPersonasRequest, ListPersonasResponse, ListSecurityLogsRequest, ListSecurityLogsResponse, ListUsersRequest, ListUsersResponse, MutateAttributesRequest, OAuthCredentials, UpdateUserRequestOperation, RegisterPolicyRequest, RegisterResourceOwnerRequest, RegisterResourceRequest, RegisterSubjectRequest, RegisterSubjectResponse, RemoveKeyRequest, RemoveMultiUserRestrictionRequest, ResetPasswordTokenResponse, ResetPasswordWithTokenRequest, ResetSubjectPasswordRequest, AccessResourceRequestResourceEntityIdentifierEntry, SearchSubjectRequest, SearchSubjectResponse, SendEmailVerificationRequest, SubjectCredentials, UpdateUserRequest, GetMultiUsersResponseUserContainer, UserFilter, UserIdentifier, UserSortOptions, VerifyEmailRequest, } from './api';

package/lib/_internal/objects/policies.d.ts

@@ -0,0 +1,68 @@
+import * as i from '../interfaces';
+import { Attribute } from './attributes';
+import * as e from '../enums';
+export declare function enumStringToValue<E>(enumRef: any, value: string): E;
+export declare class IfClause implements i.IfClauseInterface {
+    resourceAttributeName: string;
+    resourceAttributeValue: Attribute;
+    thenPolicy: PolicyNode;
+    elsePolicy: PolicyNode;
+    static fromProto(proto: any): IfClause;
+    constructor(kwargs?: i.IfClauseInterface);
+    toApiJson(): object;
+}
+export declare class Operator implements i.OperatorInterface {
+    operator: e.BooleanOperator;
+    children: PolicyNode[];
+    static fromProto(proto: any): Operator;
+    constructor(kwargs?: i.OperatorInterface);
+    toApiJson(): object;
+}
+export declare class PolicyNode implements i.PolicyNodeInterface {
+    subjectResourceIntersection: SubjectResourceIntersectionClause;
+    operator: Operator;
+    subjectValueIntersection: SubjectValueIntersectionClause;
+    subjectMissingValue: SubjectMissingValueClause;
+    subjectResourceSubset: SubjectResourceSubsetClause;
+    subjectResourceFor: SubjectResourceForClause;
+    ifClause: IfClause;
+    static fromProto(proto: any): PolicyNode;
+    constructor(kwargs?: i.PolicyNodeInterface);
+    toApiJson(): object;
+}
+export declare class SubjectMissingValueClause implements i.SubjectMissingValueClauseInterface {
+    attributeName: string;
+    static fromProto(proto: any): SubjectMissingValueClause;
+    constructor(kwargs?: i.SubjectMissingValueClauseInterface);
+    toApiJson(): object;
+}
+export declare class SubjectResourceForClause implements i.SubjectResourceForClauseInterface {
+    attributeName: string;
+    operator: e.ForOperator;
+    rules: PolicyNode;
+    static fromProto(proto: any): SubjectResourceForClause;
+    constructor(kwargs?: i.SubjectResourceForClauseInterface);
+    toApiJson(): object;
+}
+export declare class SubjectResourceIntersectionClause implements i.SubjectResourceIntersectionClauseInterface {
+    attributeName: string;
+    resourceAttributeName: string;
+    static fromProto(proto: any): SubjectResourceIntersectionClause;
+    constructor(kwargs?: i.SubjectResourceIntersectionClauseInterface);
+    toApiJson(): object;
+}
+export declare class SubjectResourceSubsetClause implements i.SubjectResourceSubsetClauseInterface {
+    attributeName: string;
+    resourceAttributeName: string;
+    static fromProto(proto: any): SubjectResourceSubsetClause;
+    constructor(kwargs?: i.SubjectResourceSubsetClauseInterface);
+    toApiJson(): object;
+}
+export declare class SubjectValueIntersectionClause implements i.SubjectValueIntersectionClauseInterface {
+    attributeName: string;
+    attributeValue: string;
+    structuredAttributeValue: Attribute;
+    static fromProto(proto: any): SubjectValueIntersectionClause;
+    constructor(kwargs?: i.SubjectValueIntersectionClauseInterface);
+    toApiJson(): object;
+}

package/lib/_internal/objects/resources.d.ts

@@ -1,6 +1,6 @@
-import * as i from '../interfaces/index';
-import { Attribute } from './subjects';
-import * as e from '../enums/index';
+import * as i from '../interfaces';
+import { PolicyNode } from './policies';
+import * as e from '../enums';
 export declare function enumStringToValue<E>(enumRef: any, value: string): E;
 export declare class AccessCheckFailures implements i.AccessCheckFailuresInterface {
     failures: ResourceIdentifier[];
@@ -15,45 +15,18 @@ export declare class ResourceIdentifierIdentifiersEntry implements i.ResourceIde
     constructor(kwargs?: i.ResourceIdentifierIdentifiersEntryInterface);
     toApiJson(): object;
 }
-export declare class IfClause implements i.IfClauseInterface {
-    resourceAttributeName: string;
-    resourceAttributeValue: Attribute;
-    thenPolicy: PolicyNode;
-    elsePolicy: PolicyNode;
-    static fromProto(proto: any): IfClause;
-    constructor(kwargs?: i.IfClauseInterface);
-    toApiJson(): object;
-}
-export declare class Operator implements i.OperatorInterface {
-    operator: e.BooleanOperator;
-    children: PolicyNode[];
-    static fromProto(proto: any): Operator;
-    constructor(kwargs?: i.OperatorInterface);
-    toApiJson(): object;
-}
 export declare class Policy implements i.PolicyInterface {
     appId: string;
     resourceId: string;
     policyId: string;
     policyName: string;
     operations: e.AccessScope[];
+    actions: string[];
     policy: PolicyNode;
     static fromProto(proto: any): Policy;
     constructor(kwargs?: i.PolicyInterface);
     toApiJson(): object;
 }
-export declare class PolicyNode implements i.PolicyNodeInterface {
-    subjectResourceIntersection: SubjectResourceIntersectionClause;
-    operator: Operator;
-    subjectValueIntersection: SubjectValueIntersectionClause;
-    subjectMissingValue: SubjectMissingValueClause;
-    subjectResourceSubset: SubjectResourceSubsetClause;
-    subjectResourceFor: SubjectResourceForClause;
-    ifClause: IfClause;
-    static fromProto(proto: any): PolicyNode;
-    constructor(kwargs?: i.PolicyNodeInterface);
-    toApiJson(): object;
-}
 export declare class ResourceIdentifier implements i.ResourceIdentifierInterface {
     identifiers: {
         [key: string]: ValueList;
@@ -69,42 +42,6 @@ export declare class ResourceOwner implements i.ResourceOwnerInterface {
     constructor(kwargs?: i.ResourceOwnerInterface);
     toApiJson(): object;
 }
-export declare class SubjectMissingValueClause implements i.SubjectMissingValueClauseInterface {
-    attributeName: string;
-    static fromProto(proto: any): SubjectMissingValueClause;
-    constructor(kwargs?: i.SubjectMissingValueClauseInterface);
-    toApiJson(): object;
-}
-export declare class SubjectResourceForClause implements i.SubjectResourceForClauseInterface {
-    attributeName: string;
-    operator: e.ForOperator;
-    rules: PolicyNode;
-    static fromProto(proto: any): SubjectResourceForClause;
-    constructor(kwargs?: i.SubjectResourceForClauseInterface);
-    toApiJson(): object;
-}
-export declare class SubjectResourceIntersectionClause implements i.SubjectResourceIntersectionClauseInterface {
-    attributeName: string;
-    resourceAttributeName: string;
-    static fromProto(proto: any): SubjectResourceIntersectionClause;
-    constructor(kwargs?: i.SubjectResourceIntersectionClauseInterface);
-    toApiJson(): object;
-}
-export declare class SubjectResourceSubsetClause implements i.SubjectResourceSubsetClauseInterface {
-    attributeName: string;
-    resourceAttributeName: string;
-    static fromProto(proto: any): SubjectResourceSubsetClause;
-    constructor(kwargs?: i.SubjectResourceSubsetClauseInterface);
-    toApiJson(): object;
-}
-export declare class SubjectValueIntersectionClause implements i.SubjectValueIntersectionClauseInterface {
-    attributeName: string;
-    attributeValue: string;
-    structuredAttributeValue: Attribute;
-    static fromProto(proto: any): SubjectValueIntersectionClause;
-    constructor(kwargs?: i.SubjectValueIntersectionClauseInterface);
-    toApiJson(): object;
-}
 export declare class ValueList implements i.ValueListInterface {
     values: string[];
     static fromProto(proto: any): ValueList;