@workos-inc/node 8.0.0-rc.7 → 8.0.0-rc.8

package/lib/user-management/serializers/authenticate-with-code-and-verifier-options.serializer.js.map

@@ -1 +1 @@
-{"version":3,"file":"authenticate-with-code-and-verifier-options.serializer.js","names":[],"sources":["../../../src/user-management/serializers/authenticate-with-code-and-verifier-options.serializer.ts"],"sourcesContent":["import {\n  AuthenticateWithCodeAndVerifierOptions,\n  SerializedAuthenticateWithCodeAndVerifierOptions,\n} from '../interfaces';\n\nexport const serializeAuthenticateWithCodeAndVerifierOptions = (\n  options: AuthenticateWithCodeAndVerifierOptions,\n): SerializedAuthenticateWithCodeAndVerifierOptions => ({\n  grant_type: 'authorization_code',\n  client_id: options.clientId,\n  code: options.code,\n  code_verifier: options.codeVerifier,\n  invitation_token: options.invitationToken,\n  ip_address: options.ipAddress,\n  user_agent: options.userAgent,\n});\n"],"mappings":";AAKA,MAAa,mDACX,aACsD;CACtD,YAAY;CACZ,WAAW,QAAQ;CACnB,MAAM,QAAQ;CACd,eAAe,QAAQ;CACvB,kBAAkB,QAAQ;CAC1B,YAAY,QAAQ;CACpB,YAAY,QAAQ;CACrB"}
+{"version":3,"file":"authenticate-with-code-and-verifier-options.serializer.js","names":[],"sources":["../../../src/user-management/serializers/authenticate-with-code-and-verifier-options.serializer.ts"],"sourcesContent":["import {\n  AuthenticateWithCodeAndVerifierOptions,\n  SerializedAuthenticateWithCodeAndVerifierOptions,\n  WithResolvedClientId,\n} from '../interfaces';\n\nexport const serializeAuthenticateWithCodeAndVerifierOptions = (\n  options: WithResolvedClientId<AuthenticateWithCodeAndVerifierOptions>,\n): SerializedAuthenticateWithCodeAndVerifierOptions => ({\n  grant_type: 'authorization_code',\n  client_id: options.clientId,\n  code: options.code,\n  code_verifier: options.codeVerifier,\n  invitation_token: options.invitationToken,\n  ip_address: options.ipAddress,\n  user_agent: options.userAgent,\n});\n"],"mappings":";AAMA,MAAa,mDACX,aACsD;CACtD,YAAY;CACZ,WAAW,QAAQ;CACnB,MAAM,QAAQ;CACd,eAAe,QAAQ;CACvB,kBAAkB,QAAQ;CAC1B,YAAY,QAAQ;CACpB,YAAY,QAAQ;CACrB"}

package/lib/user-management/serializers/authenticate-with-code-options.serializer.cjs.map

@@ -1 +1 @@
-{"version":3,"file":"authenticate-with-code-options.serializer.cjs","names":[],"sources":["../../../src/user-management/serializers/authenticate-with-code-options.serializer.ts"],"sourcesContent":["import {\n  AuthenticateUserWithCodeCredentials,\n  AuthenticateWithCodeOptions,\n  SerializedAuthenticateWithCodeOptions,\n} from '../interfaces';\n\nexport const serializeAuthenticateWithCodeOptions = (\n  options: AuthenticateWithCodeOptions & AuthenticateUserWithCodeCredentials,\n): SerializedAuthenticateWithCodeOptions => ({\n  grant_type: 'authorization_code',\n  client_id: options.clientId,\n  client_secret: options.clientSecret,\n  code: options.code,\n  code_verifier: options.codeVerifier,\n  invitation_token: options.invitationToken,\n  ip_address: options.ipAddress,\n  user_agent: options.userAgent,\n});\n"],"mappings":";;AAMA,MAAa,wCACX,aAC2C;CAC3C,YAAY;CACZ,WAAW,QAAQ;CACnB,eAAe,QAAQ;CACvB,MAAM,QAAQ;CACd,eAAe,QAAQ;CACvB,kBAAkB,QAAQ;CAC1B,YAAY,QAAQ;CACpB,YAAY,QAAQ;CACrB"}
+{"version":3,"file":"authenticate-with-code-options.serializer.cjs","names":[],"sources":["../../../src/user-management/serializers/authenticate-with-code-options.serializer.ts"],"sourcesContent":["import {\n  AuthenticateUserWithCodeCredentials,\n  AuthenticateWithCodeOptions,\n  SerializedAuthenticateWithCodeOptions,\n  WithResolvedClientId,\n} from '../interfaces';\n\nexport const serializeAuthenticateWithCodeOptions = (\n  options: WithResolvedClientId<AuthenticateWithCodeOptions> &\n    AuthenticateUserWithCodeCredentials,\n): SerializedAuthenticateWithCodeOptions => ({\n  grant_type: 'authorization_code',\n  client_id: options.clientId,\n  client_secret: options.clientSecret,\n  code: options.code,\n  code_verifier: options.codeVerifier,\n  invitation_token: options.invitationToken,\n  ip_address: options.ipAddress,\n  user_agent: options.userAgent,\n});\n"],"mappings":";;AAOA,MAAa,wCACX,aAE2C;CAC3C,YAAY;CACZ,WAAW,QAAQ;CACnB,eAAe,QAAQ;CACvB,MAAM,QAAQ;CACd,eAAe,QAAQ;CACvB,kBAAkB,QAAQ;CAC1B,YAAY,QAAQ;CACpB,YAAY,QAAQ;CACrB"}

package/lib/user-management/serializers/authenticate-with-code-options.serializer.d.cts

@@ -1,7 +1,8 @@
+import { WithResolvedClientId } from "../interfaces/authenticate-with-options-base.interface.cjs";
 import { AuthenticateUserWithCodeCredentials, AuthenticateWithCodeOptions, SerializedAuthenticateWithCodeOptions } from "../interfaces/authenticate-with-code-options.interface.cjs";
 
 //#region src/user-management/serializers/authenticate-with-code-options.serializer.d.ts
-declare const serializeAuthenticateWithCodeOptions: (options: AuthenticateWithCodeOptions & AuthenticateUserWithCodeCredentials) => SerializedAuthenticateWithCodeOptions;
+declare const serializeAuthenticateWithCodeOptions: (options: WithResolvedClientId<AuthenticateWithCodeOptions> & AuthenticateUserWithCodeCredentials) => SerializedAuthenticateWithCodeOptions;
 //#endregion
 export { serializeAuthenticateWithCodeOptions };
 //# sourceMappingURL=authenticate-with-code-options.serializer.d.cts.map

package/lib/user-management/serializers/authenticate-with-code-options.serializer.d.ts

@@ -1,7 +1,8 @@
+import { WithResolvedClientId } from "../interfaces/authenticate-with-options-base.interface.js";
 import { AuthenticateUserWithCodeCredentials, AuthenticateWithCodeOptions, SerializedAuthenticateWithCodeOptions } from "../interfaces/authenticate-with-code-options.interface.js";
 
 //#region src/user-management/serializers/authenticate-with-code-options.serializer.d.ts
-declare const serializeAuthenticateWithCodeOptions: (options: AuthenticateWithCodeOptions & AuthenticateUserWithCodeCredentials) => SerializedAuthenticateWithCodeOptions;
+declare const serializeAuthenticateWithCodeOptions: (options: WithResolvedClientId<AuthenticateWithCodeOptions> & AuthenticateUserWithCodeCredentials) => SerializedAuthenticateWithCodeOptions;
 //#endregion
 export { serializeAuthenticateWithCodeOptions };
 //# sourceMappingURL=authenticate-with-code-options.serializer.d.ts.map

package/lib/user-management/serializers/authenticate-with-code-options.serializer.js.map

@@ -1 +1 @@
-{"version":3,"file":"authenticate-with-code-options.serializer.js","names":[],"sources":["../../../src/user-management/serializers/authenticate-with-code-options.serializer.ts"],"sourcesContent":["import {\n  AuthenticateUserWithCodeCredentials,\n  AuthenticateWithCodeOptions,\n  SerializedAuthenticateWithCodeOptions,\n} from '../interfaces';\n\nexport const serializeAuthenticateWithCodeOptions = (\n  options: AuthenticateWithCodeOptions & AuthenticateUserWithCodeCredentials,\n): SerializedAuthenticateWithCodeOptions => ({\n  grant_type: 'authorization_code',\n  client_id: options.clientId,\n  client_secret: options.clientSecret,\n  code: options.code,\n  code_verifier: options.codeVerifier,\n  invitation_token: options.invitationToken,\n  ip_address: options.ipAddress,\n  user_agent: options.userAgent,\n});\n"],"mappings":";AAMA,MAAa,wCACX,aAC2C;CAC3C,YAAY;CACZ,WAAW,QAAQ;CACnB,eAAe,QAAQ;CACvB,MAAM,QAAQ;CACd,eAAe,QAAQ;CACvB,kBAAkB,QAAQ;CAC1B,YAAY,QAAQ;CACpB,YAAY,QAAQ;CACrB"}
+{"version":3,"file":"authenticate-with-code-options.serializer.js","names":[],"sources":["../../../src/user-management/serializers/authenticate-with-code-options.serializer.ts"],"sourcesContent":["import {\n  AuthenticateUserWithCodeCredentials,\n  AuthenticateWithCodeOptions,\n  SerializedAuthenticateWithCodeOptions,\n  WithResolvedClientId,\n} from '../interfaces';\n\nexport const serializeAuthenticateWithCodeOptions = (\n  options: WithResolvedClientId<AuthenticateWithCodeOptions> &\n    AuthenticateUserWithCodeCredentials,\n): SerializedAuthenticateWithCodeOptions => ({\n  grant_type: 'authorization_code',\n  client_id: options.clientId,\n  client_secret: options.clientSecret,\n  code: options.code,\n  code_verifier: options.codeVerifier,\n  invitation_token: options.invitationToken,\n  ip_address: options.ipAddress,\n  user_agent: options.userAgent,\n});\n"],"mappings":";AAOA,MAAa,wCACX,aAE2C;CAC3C,YAAY;CACZ,WAAW,QAAQ;CACnB,eAAe,QAAQ;CACvB,MAAM,QAAQ;CACd,eAAe,QAAQ;CACvB,kBAAkB,QAAQ;CAC1B,YAAY,QAAQ;CACpB,YAAY,QAAQ;CACrB"}

package/lib/user-management/serializers/authenticate-with-email-verification.serializer.cjs.map

@@ -1 +1 @@
-{"version":3,"file":"authenticate-with-email-verification.serializer.cjs","names":[],"sources":["../../../src/user-management/serializers/authenticate-with-email-verification.serializer.ts"],"sourcesContent":["import {\n  AuthenticateUserWithEmailVerificationCredentials,\n  AuthenticateWithEmailVerificationOptions,\n  SerializedAuthenticateWithEmailVerificationOptions,\n} from '../interfaces/authenticate-with-email-verification-options.interface';\n\nexport const serializeAuthenticateWithEmailVerificationOptions = (\n  options: AuthenticateWithEmailVerificationOptions &\n    AuthenticateUserWithEmailVerificationCredentials,\n): SerializedAuthenticateWithEmailVerificationOptions => ({\n  grant_type: 'urn:workos:oauth:grant-type:email-verification:code',\n  client_id: options.clientId,\n  client_secret: options.clientSecret,\n  pending_authentication_token: options.pendingAuthenticationToken,\n  code: options.code,\n  ip_address: options.ipAddress,\n  user_agent: options.userAgent,\n});\n"],"mappings":";;AAMA,MAAa,qDACX,aAEwD;CACxD,YAAY;CACZ,WAAW,QAAQ;CACnB,eAAe,QAAQ;CACvB,8BAA8B,QAAQ;CACtC,MAAM,QAAQ;CACd,YAAY,QAAQ;CACpB,YAAY,QAAQ;CACrB"}
+{"version":3,"file":"authenticate-with-email-verification.serializer.cjs","names":[],"sources":["../../../src/user-management/serializers/authenticate-with-email-verification.serializer.ts"],"sourcesContent":["import {\n  AuthenticateUserWithEmailVerificationCredentials,\n  AuthenticateWithEmailVerificationOptions,\n  SerializedAuthenticateWithEmailVerificationOptions,\n} from '../interfaces/authenticate-with-email-verification-options.interface';\nimport { WithResolvedClientId } from '../interfaces';\n\nexport const serializeAuthenticateWithEmailVerificationOptions = (\n  options: WithResolvedClientId<AuthenticateWithEmailVerificationOptions> &\n    AuthenticateUserWithEmailVerificationCredentials,\n): SerializedAuthenticateWithEmailVerificationOptions => ({\n  grant_type: 'urn:workos:oauth:grant-type:email-verification:code',\n  client_id: options.clientId,\n  client_secret: options.clientSecret,\n  pending_authentication_token: options.pendingAuthenticationToken,\n  code: options.code,\n  ip_address: options.ipAddress,\n  user_agent: options.userAgent,\n});\n"],"mappings":";;AAOA,MAAa,qDACX,aAEwD;CACxD,YAAY;CACZ,WAAW,QAAQ;CACnB,eAAe,QAAQ;CACvB,8BAA8B,QAAQ;CACtC,MAAM,QAAQ;CACd,YAAY,QAAQ;CACpB,YAAY,QAAQ;CACrB"}

package/lib/user-management/serializers/authenticate-with-email-verification.serializer.d.cts

@@ -1,7 +1,8 @@
+import { WithResolvedClientId } from "../interfaces/authenticate-with-options-base.interface.cjs";
 import { AuthenticateUserWithEmailVerificationCredentials, AuthenticateWithEmailVerificationOptions, SerializedAuthenticateWithEmailVerificationOptions } from "../interfaces/authenticate-with-email-verification-options.interface.cjs";
 
 //#region src/user-management/serializers/authenticate-with-email-verification.serializer.d.ts
-declare const serializeAuthenticateWithEmailVerificationOptions: (options: AuthenticateWithEmailVerificationOptions & AuthenticateUserWithEmailVerificationCredentials) => SerializedAuthenticateWithEmailVerificationOptions;
+declare const serializeAuthenticateWithEmailVerificationOptions: (options: WithResolvedClientId<AuthenticateWithEmailVerificationOptions> & AuthenticateUserWithEmailVerificationCredentials) => SerializedAuthenticateWithEmailVerificationOptions;
 //#endregion
 export { serializeAuthenticateWithEmailVerificationOptions };
 //# sourceMappingURL=authenticate-with-email-verification.serializer.d.cts.map

package/lib/user-management/serializers/authenticate-with-email-verification.serializer.d.ts

@@ -1,7 +1,8 @@
+import { WithResolvedClientId } from "../interfaces/authenticate-with-options-base.interface.js";
 import { AuthenticateUserWithEmailVerificationCredentials, AuthenticateWithEmailVerificationOptions, SerializedAuthenticateWithEmailVerificationOptions } from "../interfaces/authenticate-with-email-verification-options.interface.js";
 
 //#region src/user-management/serializers/authenticate-with-email-verification.serializer.d.ts
-declare const serializeAuthenticateWithEmailVerificationOptions: (options: AuthenticateWithEmailVerificationOptions & AuthenticateUserWithEmailVerificationCredentials) => SerializedAuthenticateWithEmailVerificationOptions;
+declare const serializeAuthenticateWithEmailVerificationOptions: (options: WithResolvedClientId<AuthenticateWithEmailVerificationOptions> & AuthenticateUserWithEmailVerificationCredentials) => SerializedAuthenticateWithEmailVerificationOptions;
 //#endregion
 export { serializeAuthenticateWithEmailVerificationOptions };
 //# sourceMappingURL=authenticate-with-email-verification.serializer.d.ts.map

package/lib/user-management/serializers/authenticate-with-email-verification.serializer.js.map

@@ -1 +1 @@
-{"version":3,"file":"authenticate-with-email-verification.serializer.js","names":[],"sources":["../../../src/user-management/serializers/authenticate-with-email-verification.serializer.ts"],"sourcesContent":["import {\n  AuthenticateUserWithEmailVerificationCredentials,\n  AuthenticateWithEmailVerificationOptions,\n  SerializedAuthenticateWithEmailVerificationOptions,\n} from '../interfaces/authenticate-with-email-verification-options.interface';\n\nexport const serializeAuthenticateWithEmailVerificationOptions = (\n  options: AuthenticateWithEmailVerificationOptions &\n    AuthenticateUserWithEmailVerificationCredentials,\n): SerializedAuthenticateWithEmailVerificationOptions => ({\n  grant_type: 'urn:workos:oauth:grant-type:email-verification:code',\n  client_id: options.clientId,\n  client_secret: options.clientSecret,\n  pending_authentication_token: options.pendingAuthenticationToken,\n  code: options.code,\n  ip_address: options.ipAddress,\n  user_agent: options.userAgent,\n});\n"],"mappings":";AAMA,MAAa,qDACX,aAEwD;CACxD,YAAY;CACZ,WAAW,QAAQ;CACnB,eAAe,QAAQ;CACvB,8BAA8B,QAAQ;CACtC,MAAM,QAAQ;CACd,YAAY,QAAQ;CACpB,YAAY,QAAQ;CACrB"}
+{"version":3,"file":"authenticate-with-email-verification.serializer.js","names":[],"sources":["../../../src/user-management/serializers/authenticate-with-email-verification.serializer.ts"],"sourcesContent":["import {\n  AuthenticateUserWithEmailVerificationCredentials,\n  AuthenticateWithEmailVerificationOptions,\n  SerializedAuthenticateWithEmailVerificationOptions,\n} from '../interfaces/authenticate-with-email-verification-options.interface';\nimport { WithResolvedClientId } from '../interfaces';\n\nexport const serializeAuthenticateWithEmailVerificationOptions = (\n  options: WithResolvedClientId<AuthenticateWithEmailVerificationOptions> &\n    AuthenticateUserWithEmailVerificationCredentials,\n): SerializedAuthenticateWithEmailVerificationOptions => ({\n  grant_type: 'urn:workos:oauth:grant-type:email-verification:code',\n  client_id: options.clientId,\n  client_secret: options.clientSecret,\n  pending_authentication_token: options.pendingAuthenticationToken,\n  code: options.code,\n  ip_address: options.ipAddress,\n  user_agent: options.userAgent,\n});\n"],"mappings":";AAOA,MAAa,qDACX,aAEwD;CACxD,YAAY;CACZ,WAAW,QAAQ;CACnB,eAAe,QAAQ;CACvB,8BAA8B,QAAQ;CACtC,MAAM,QAAQ;CACd,YAAY,QAAQ;CACpB,YAAY,QAAQ;CACrB"}

package/lib/user-management/serializers/authenticate-with-magic-auth-options.serializer.cjs.map

@@ -1 +1 @@
-{"version":3,"file":"authenticate-with-magic-auth-options.serializer.cjs","names":[],"sources":["../../../src/user-management/serializers/authenticate-with-magic-auth-options.serializer.ts"],"sourcesContent":["import {\n  AuthenticateUserWithMagicAuthCredentials,\n  AuthenticateWithMagicAuthOptions,\n  SerializedAuthenticateWithMagicAuthOptions,\n} from '../interfaces';\n\nexport const serializeAuthenticateWithMagicAuthOptions = (\n  options: AuthenticateWithMagicAuthOptions &\n    AuthenticateUserWithMagicAuthCredentials,\n): SerializedAuthenticateWithMagicAuthOptions => ({\n  grant_type: 'urn:workos:oauth:grant-type:magic-auth:code',\n  client_id: options.clientId,\n  client_secret: options.clientSecret,\n  code: options.code,\n  email: options.email,\n  invitation_token: options.invitationToken,\n  link_authorization_code: options.linkAuthorizationCode,\n  ip_address: options.ipAddress,\n  user_agent: options.userAgent,\n});\n"],"mappings":";;AAMA,MAAa,6CACX,aAEgD;CAChD,YAAY;CACZ,WAAW,QAAQ;CACnB,eAAe,QAAQ;CACvB,MAAM,QAAQ;CACd,OAAO,QAAQ;CACf,kBAAkB,QAAQ;CAC1B,yBAAyB,QAAQ;CACjC,YAAY,QAAQ;CACpB,YAAY,QAAQ;CACrB"}
+{"version":3,"file":"authenticate-with-magic-auth-options.serializer.cjs","names":[],"sources":["../../../src/user-management/serializers/authenticate-with-magic-auth-options.serializer.ts"],"sourcesContent":["import {\n  AuthenticateUserWithMagicAuthCredentials,\n  AuthenticateWithMagicAuthOptions,\n  SerializedAuthenticateWithMagicAuthOptions,\n  WithResolvedClientId,\n} from '../interfaces';\n\nexport const serializeAuthenticateWithMagicAuthOptions = (\n  options: WithResolvedClientId<AuthenticateWithMagicAuthOptions> &\n    AuthenticateUserWithMagicAuthCredentials,\n): SerializedAuthenticateWithMagicAuthOptions => ({\n  grant_type: 'urn:workos:oauth:grant-type:magic-auth:code',\n  client_id: options.clientId,\n  client_secret: options.clientSecret,\n  code: options.code,\n  email: options.email,\n  invitation_token: options.invitationToken,\n  link_authorization_code: options.linkAuthorizationCode,\n  ip_address: options.ipAddress,\n  user_agent: options.userAgent,\n});\n"],"mappings":";;AAOA,MAAa,6CACX,aAEgD;CAChD,YAAY;CACZ,WAAW,QAAQ;CACnB,eAAe,QAAQ;CACvB,MAAM,QAAQ;CACd,OAAO,QAAQ;CACf,kBAAkB,QAAQ;CAC1B,yBAAyB,QAAQ;CACjC,YAAY,QAAQ;CACpB,YAAY,QAAQ;CACrB"}

package/lib/user-management/serializers/authenticate-with-magic-auth-options.serializer.d.cts

@@ -1,7 +1,8 @@
+import { WithResolvedClientId } from "../interfaces/authenticate-with-options-base.interface.cjs";
 import { AuthenticateUserWithMagicAuthCredentials, AuthenticateWithMagicAuthOptions, SerializedAuthenticateWithMagicAuthOptions } from "../interfaces/authenticate-with-magic-auth-options.interface.cjs";
 
 //#region src/user-management/serializers/authenticate-with-magic-auth-options.serializer.d.ts
-declare const serializeAuthenticateWithMagicAuthOptions: (options: AuthenticateWithMagicAuthOptions & AuthenticateUserWithMagicAuthCredentials) => SerializedAuthenticateWithMagicAuthOptions;
+declare const serializeAuthenticateWithMagicAuthOptions: (options: WithResolvedClientId<AuthenticateWithMagicAuthOptions> & AuthenticateUserWithMagicAuthCredentials) => SerializedAuthenticateWithMagicAuthOptions;
 //#endregion
 export { serializeAuthenticateWithMagicAuthOptions };
 //# sourceMappingURL=authenticate-with-magic-auth-options.serializer.d.cts.map

package/lib/user-management/serializers/authenticate-with-magic-auth-options.serializer.d.ts

@@ -1,7 +1,8 @@
+import { WithResolvedClientId } from "../interfaces/authenticate-with-options-base.interface.js";
 import { AuthenticateUserWithMagicAuthCredentials, AuthenticateWithMagicAuthOptions, SerializedAuthenticateWithMagicAuthOptions } from "../interfaces/authenticate-with-magic-auth-options.interface.js";
 
 //#region src/user-management/serializers/authenticate-with-magic-auth-options.serializer.d.ts
-declare const serializeAuthenticateWithMagicAuthOptions: (options: AuthenticateWithMagicAuthOptions & AuthenticateUserWithMagicAuthCredentials) => SerializedAuthenticateWithMagicAuthOptions;
+declare const serializeAuthenticateWithMagicAuthOptions: (options: WithResolvedClientId<AuthenticateWithMagicAuthOptions> & AuthenticateUserWithMagicAuthCredentials) => SerializedAuthenticateWithMagicAuthOptions;
 //#endregion
 export { serializeAuthenticateWithMagicAuthOptions };
 //# sourceMappingURL=authenticate-with-magic-auth-options.serializer.d.ts.map

package/lib/user-management/serializers/authenticate-with-magic-auth-options.serializer.js.map

@@ -1 +1 @@
-{"version":3,"file":"authenticate-with-magic-auth-options.serializer.js","names":[],"sources":["../../../src/user-management/serializers/authenticate-with-magic-auth-options.serializer.ts"],"sourcesContent":["import {\n  AuthenticateUserWithMagicAuthCredentials,\n  AuthenticateWithMagicAuthOptions,\n  SerializedAuthenticateWithMagicAuthOptions,\n} from '../interfaces';\n\nexport const serializeAuthenticateWithMagicAuthOptions = (\n  options: AuthenticateWithMagicAuthOptions &\n    AuthenticateUserWithMagicAuthCredentials,\n): SerializedAuthenticateWithMagicAuthOptions => ({\n  grant_type: 'urn:workos:oauth:grant-type:magic-auth:code',\n  client_id: options.clientId,\n  client_secret: options.clientSecret,\n  code: options.code,\n  email: options.email,\n  invitation_token: options.invitationToken,\n  link_authorization_code: options.linkAuthorizationCode,\n  ip_address: options.ipAddress,\n  user_agent: options.userAgent,\n});\n"],"mappings":";AAMA,MAAa,6CACX,aAEgD;CAChD,YAAY;CACZ,WAAW,QAAQ;CACnB,eAAe,QAAQ;CACvB,MAAM,QAAQ;CACd,OAAO,QAAQ;CACf,kBAAkB,QAAQ;CAC1B,yBAAyB,QAAQ;CACjC,YAAY,QAAQ;CACpB,YAAY,QAAQ;CACrB"}
+{"version":3,"file":"authenticate-with-magic-auth-options.serializer.js","names":[],"sources":["../../../src/user-management/serializers/authenticate-with-magic-auth-options.serializer.ts"],"sourcesContent":["import {\n  AuthenticateUserWithMagicAuthCredentials,\n  AuthenticateWithMagicAuthOptions,\n  SerializedAuthenticateWithMagicAuthOptions,\n  WithResolvedClientId,\n} from '../interfaces';\n\nexport const serializeAuthenticateWithMagicAuthOptions = (\n  options: WithResolvedClientId<AuthenticateWithMagicAuthOptions> &\n    AuthenticateUserWithMagicAuthCredentials,\n): SerializedAuthenticateWithMagicAuthOptions => ({\n  grant_type: 'urn:workos:oauth:grant-type:magic-auth:code',\n  client_id: options.clientId,\n  client_secret: options.clientSecret,\n  code: options.code,\n  email: options.email,\n  invitation_token: options.invitationToken,\n  link_authorization_code: options.linkAuthorizationCode,\n  ip_address: options.ipAddress,\n  user_agent: options.userAgent,\n});\n"],"mappings":";AAOA,MAAa,6CACX,aAEgD;CAChD,YAAY;CACZ,WAAW,QAAQ;CACnB,eAAe,QAAQ;CACvB,MAAM,QAAQ;CACd,OAAO,QAAQ;CACf,kBAAkB,QAAQ;CAC1B,yBAAyB,QAAQ;CACjC,YAAY,QAAQ;CACpB,YAAY,QAAQ;CACrB"}

package/lib/user-management/serializers/authenticate-with-organization-selection-options.serializer.cjs.map

@@ -1 +1 @@
-{"version":3,"file":"authenticate-with-organization-selection-options.serializer.cjs","names":[],"sources":["../../../src/user-management/serializers/authenticate-with-organization-selection-options.serializer.ts"],"sourcesContent":["import {\n  AuthenticateUserWithOrganizationSelectionCredentials,\n  AuthenticateWithOrganizationSelectionOptions,\n  SerializedAuthenticateWithOrganizationSelectionOptions,\n} from '../interfaces/authenticate-with-organization-selection.interface';\n\nexport const serializeAuthenticateWithOrganizationSelectionOptions = (\n  options: AuthenticateWithOrganizationSelectionOptions &\n    AuthenticateUserWithOrganizationSelectionCredentials,\n): SerializedAuthenticateWithOrganizationSelectionOptions => ({\n  grant_type: 'urn:workos:oauth:grant-type:organization-selection',\n  client_id: options.clientId,\n  client_secret: options.clientSecret,\n  pending_authentication_token: options.pendingAuthenticationToken,\n  organization_id: options.organizationId,\n  ip_address: options.ipAddress,\n  user_agent: options.userAgent,\n});\n"],"mappings":";;AAMA,MAAa,yDACX,aAE4D;CAC5D,YAAY;CACZ,WAAW,QAAQ;CACnB,eAAe,QAAQ;CACvB,8BAA8B,QAAQ;CACtC,iBAAiB,QAAQ;CACzB,YAAY,QAAQ;CACpB,YAAY,QAAQ;CACrB"}
+{"version":3,"file":"authenticate-with-organization-selection-options.serializer.cjs","names":[],"sources":["../../../src/user-management/serializers/authenticate-with-organization-selection-options.serializer.ts"],"sourcesContent":["import {\n  AuthenticateUserWithOrganizationSelectionCredentials,\n  AuthenticateWithOrganizationSelectionOptions,\n  SerializedAuthenticateWithOrganizationSelectionOptions,\n} from '../interfaces/authenticate-with-organization-selection.interface';\nimport { WithResolvedClientId } from '../interfaces';\n\nexport const serializeAuthenticateWithOrganizationSelectionOptions = (\n  options: WithResolvedClientId<AuthenticateWithOrganizationSelectionOptions> &\n    AuthenticateUserWithOrganizationSelectionCredentials,\n): SerializedAuthenticateWithOrganizationSelectionOptions => ({\n  grant_type: 'urn:workos:oauth:grant-type:organization-selection',\n  client_id: options.clientId,\n  client_secret: options.clientSecret,\n  pending_authentication_token: options.pendingAuthenticationToken,\n  organization_id: options.organizationId,\n  ip_address: options.ipAddress,\n  user_agent: options.userAgent,\n});\n"],"mappings":";;AAOA,MAAa,yDACX,aAE4D;CAC5D,YAAY;CACZ,WAAW,QAAQ;CACnB,eAAe,QAAQ;CACvB,8BAA8B,QAAQ;CACtC,iBAAiB,QAAQ;CACzB,YAAY,QAAQ;CACpB,YAAY,QAAQ;CACrB"}

package/lib/user-management/serializers/authenticate-with-organization-selection-options.serializer.d.cts

@@ -1,7 +1,8 @@
+import { WithResolvedClientId } from "../interfaces/authenticate-with-options-base.interface.cjs";
 import { AuthenticateUserWithOrganizationSelectionCredentials, AuthenticateWithOrganizationSelectionOptions, SerializedAuthenticateWithOrganizationSelectionOptions } from "../interfaces/authenticate-with-organization-selection.interface.cjs";
 
 //#region src/user-management/serializers/authenticate-with-organization-selection-options.serializer.d.ts
-declare const serializeAuthenticateWithOrganizationSelectionOptions: (options: AuthenticateWithOrganizationSelectionOptions & AuthenticateUserWithOrganizationSelectionCredentials) => SerializedAuthenticateWithOrganizationSelectionOptions;
+declare const serializeAuthenticateWithOrganizationSelectionOptions: (options: WithResolvedClientId<AuthenticateWithOrganizationSelectionOptions> & AuthenticateUserWithOrganizationSelectionCredentials) => SerializedAuthenticateWithOrganizationSelectionOptions;
 //#endregion
 export { serializeAuthenticateWithOrganizationSelectionOptions };
 //# sourceMappingURL=authenticate-with-organization-selection-options.serializer.d.cts.map

package/lib/user-management/serializers/authenticate-with-organization-selection-options.serializer.d.ts

@@ -1,7 +1,8 @@
+import { WithResolvedClientId } from "../interfaces/authenticate-with-options-base.interface.js";
 import { AuthenticateUserWithOrganizationSelectionCredentials, AuthenticateWithOrganizationSelectionOptions, SerializedAuthenticateWithOrganizationSelectionOptions } from "../interfaces/authenticate-with-organization-selection.interface.js";
 
 //#region src/user-management/serializers/authenticate-with-organization-selection-options.serializer.d.ts
-declare const serializeAuthenticateWithOrganizationSelectionOptions: (options: AuthenticateWithOrganizationSelectionOptions & AuthenticateUserWithOrganizationSelectionCredentials) => SerializedAuthenticateWithOrganizationSelectionOptions;
+declare const serializeAuthenticateWithOrganizationSelectionOptions: (options: WithResolvedClientId<AuthenticateWithOrganizationSelectionOptions> & AuthenticateUserWithOrganizationSelectionCredentials) => SerializedAuthenticateWithOrganizationSelectionOptions;
 //#endregion
 export { serializeAuthenticateWithOrganizationSelectionOptions };
 //# sourceMappingURL=authenticate-with-organization-selection-options.serializer.d.ts.map

package/lib/user-management/serializers/authenticate-with-organization-selection-options.serializer.js.map

@@ -1 +1 @@
-{"version":3,"file":"authenticate-with-organization-selection-options.serializer.js","names":[],"sources":["../../../src/user-management/serializers/authenticate-with-organization-selection-options.serializer.ts"],"sourcesContent":["import {\n  AuthenticateUserWithOrganizationSelectionCredentials,\n  AuthenticateWithOrganizationSelectionOptions,\n  SerializedAuthenticateWithOrganizationSelectionOptions,\n} from '../interfaces/authenticate-with-organization-selection.interface';\n\nexport const serializeAuthenticateWithOrganizationSelectionOptions = (\n  options: AuthenticateWithOrganizationSelectionOptions &\n    AuthenticateUserWithOrganizationSelectionCredentials,\n): SerializedAuthenticateWithOrganizationSelectionOptions => ({\n  grant_type: 'urn:workos:oauth:grant-type:organization-selection',\n  client_id: options.clientId,\n  client_secret: options.clientSecret,\n  pending_authentication_token: options.pendingAuthenticationToken,\n  organization_id: options.organizationId,\n  ip_address: options.ipAddress,\n  user_agent: options.userAgent,\n});\n"],"mappings":";AAMA,MAAa,yDACX,aAE4D;CAC5D,YAAY;CACZ,WAAW,QAAQ;CACnB,eAAe,QAAQ;CACvB,8BAA8B,QAAQ;CACtC,iBAAiB,QAAQ;CACzB,YAAY,QAAQ;CACpB,YAAY,QAAQ;CACrB"}
+{"version":3,"file":"authenticate-with-organization-selection-options.serializer.js","names":[],"sources":["../../../src/user-management/serializers/authenticate-with-organization-selection-options.serializer.ts"],"sourcesContent":["import {\n  AuthenticateUserWithOrganizationSelectionCredentials,\n  AuthenticateWithOrganizationSelectionOptions,\n  SerializedAuthenticateWithOrganizationSelectionOptions,\n} from '../interfaces/authenticate-with-organization-selection.interface';\nimport { WithResolvedClientId } from '../interfaces';\n\nexport const serializeAuthenticateWithOrganizationSelectionOptions = (\n  options: WithResolvedClientId<AuthenticateWithOrganizationSelectionOptions> &\n    AuthenticateUserWithOrganizationSelectionCredentials,\n): SerializedAuthenticateWithOrganizationSelectionOptions => ({\n  grant_type: 'urn:workos:oauth:grant-type:organization-selection',\n  client_id: options.clientId,\n  client_secret: options.clientSecret,\n  pending_authentication_token: options.pendingAuthenticationToken,\n  organization_id: options.organizationId,\n  ip_address: options.ipAddress,\n  user_agent: options.userAgent,\n});\n"],"mappings":";AAOA,MAAa,yDACX,aAE4D;CAC5D,YAAY;CACZ,WAAW,QAAQ;CACnB,eAAe,QAAQ;CACvB,8BAA8B,QAAQ;CACtC,iBAAiB,QAAQ;CACzB,YAAY,QAAQ;CACpB,YAAY,QAAQ;CACrB"}

package/lib/user-management/serializers/authenticate-with-password-options.serializer.cjs.map

@@ -1 +1 @@
-{"version":3,"file":"authenticate-with-password-options.serializer.cjs","names":[],"sources":["../../../src/user-management/serializers/authenticate-with-password-options.serializer.ts"],"sourcesContent":["import {\n  AuthenticateUserWithPasswordCredentials,\n  AuthenticateWithPasswordOptions,\n  SerializedAuthenticateWithPasswordOptions,\n} from '../interfaces';\n\nexport const serializeAuthenticateWithPasswordOptions = (\n  options: AuthenticateWithPasswordOptions &\n    AuthenticateUserWithPasswordCredentials,\n): SerializedAuthenticateWithPasswordOptions => ({\n  grant_type: 'password',\n  client_id: options.clientId,\n  client_secret: options.clientSecret,\n  email: options.email,\n  password: options.password,\n  invitation_token: options.invitationToken,\n  ip_address: options.ipAddress,\n  user_agent: options.userAgent,\n});\n"],"mappings":";;AAMA,MAAa,4CACX,aAE+C;CAC/C,YAAY;CACZ,WAAW,QAAQ;CACnB,eAAe,QAAQ;CACvB,OAAO,QAAQ;CACf,UAAU,QAAQ;CAClB,kBAAkB,QAAQ;CAC1B,YAAY,QAAQ;CACpB,YAAY,QAAQ;CACrB"}
+{"version":3,"file":"authenticate-with-password-options.serializer.cjs","names":[],"sources":["../../../src/user-management/serializers/authenticate-with-password-options.serializer.ts"],"sourcesContent":["import {\n  AuthenticateUserWithPasswordCredentials,\n  AuthenticateWithPasswordOptions,\n  SerializedAuthenticateWithPasswordOptions,\n  WithResolvedClientId,\n} from '../interfaces';\n\nexport const serializeAuthenticateWithPasswordOptions = (\n  options: WithResolvedClientId<AuthenticateWithPasswordOptions> &\n    AuthenticateUserWithPasswordCredentials,\n): SerializedAuthenticateWithPasswordOptions => ({\n  grant_type: 'password',\n  client_id: options.clientId,\n  client_secret: options.clientSecret,\n  email: options.email,\n  password: options.password,\n  invitation_token: options.invitationToken,\n  ip_address: options.ipAddress,\n  user_agent: options.userAgent,\n});\n"],"mappings":";;AAOA,MAAa,4CACX,aAE+C;CAC/C,YAAY;CACZ,WAAW,QAAQ;CACnB,eAAe,QAAQ;CACvB,OAAO,QAAQ;CACf,UAAU,QAAQ;CAClB,kBAAkB,QAAQ;CAC1B,YAAY,QAAQ;CACpB,YAAY,QAAQ;CACrB"}

package/lib/user-management/serializers/authenticate-with-password-options.serializer.d.cts

@@ -1,7 +1,8 @@
+import { WithResolvedClientId } from "../interfaces/authenticate-with-options-base.interface.cjs";
 import { AuthenticateUserWithPasswordCredentials, AuthenticateWithPasswordOptions, SerializedAuthenticateWithPasswordOptions } from "../interfaces/authenticate-with-password-options.interface.cjs";
 
 //#region src/user-management/serializers/authenticate-with-password-options.serializer.d.ts
-declare const serializeAuthenticateWithPasswordOptions: (options: AuthenticateWithPasswordOptions & AuthenticateUserWithPasswordCredentials) => SerializedAuthenticateWithPasswordOptions;
+declare const serializeAuthenticateWithPasswordOptions: (options: WithResolvedClientId<AuthenticateWithPasswordOptions> & AuthenticateUserWithPasswordCredentials) => SerializedAuthenticateWithPasswordOptions;
 //#endregion
 export { serializeAuthenticateWithPasswordOptions };
 //# sourceMappingURL=authenticate-with-password-options.serializer.d.cts.map

package/lib/user-management/serializers/authenticate-with-password-options.serializer.d.ts

@@ -1,7 +1,8 @@
+import { WithResolvedClientId } from "../interfaces/authenticate-with-options-base.interface.js";
 import { AuthenticateUserWithPasswordCredentials, AuthenticateWithPasswordOptions, SerializedAuthenticateWithPasswordOptions } from "../interfaces/authenticate-with-password-options.interface.js";
 
 //#region src/user-management/serializers/authenticate-with-password-options.serializer.d.ts
-declare const serializeAuthenticateWithPasswordOptions: (options: AuthenticateWithPasswordOptions & AuthenticateUserWithPasswordCredentials) => SerializedAuthenticateWithPasswordOptions;
+declare const serializeAuthenticateWithPasswordOptions: (options: WithResolvedClientId<AuthenticateWithPasswordOptions> & AuthenticateUserWithPasswordCredentials) => SerializedAuthenticateWithPasswordOptions;
 //#endregion
 export { serializeAuthenticateWithPasswordOptions };
 //# sourceMappingURL=authenticate-with-password-options.serializer.d.ts.map

package/lib/user-management/serializers/authenticate-with-password-options.serializer.js.map

@@ -1 +1 @@
-{"version":3,"file":"authenticate-with-password-options.serializer.js","names":[],"sources":["../../../src/user-management/serializers/authenticate-with-password-options.serializer.ts"],"sourcesContent":["import {\n  AuthenticateUserWithPasswordCredentials,\n  AuthenticateWithPasswordOptions,\n  SerializedAuthenticateWithPasswordOptions,\n} from '../interfaces';\n\nexport const serializeAuthenticateWithPasswordOptions = (\n  options: AuthenticateWithPasswordOptions &\n    AuthenticateUserWithPasswordCredentials,\n): SerializedAuthenticateWithPasswordOptions => ({\n  grant_type: 'password',\n  client_id: options.clientId,\n  client_secret: options.clientSecret,\n  email: options.email,\n  password: options.password,\n  invitation_token: options.invitationToken,\n  ip_address: options.ipAddress,\n  user_agent: options.userAgent,\n});\n"],"mappings":";AAMA,MAAa,4CACX,aAE+C;CAC/C,YAAY;CACZ,WAAW,QAAQ;CACnB,eAAe,QAAQ;CACvB,OAAO,QAAQ;CACf,UAAU,QAAQ;CAClB,kBAAkB,QAAQ;CAC1B,YAAY,QAAQ;CACpB,YAAY,QAAQ;CACrB"}
+{"version":3,"file":"authenticate-with-password-options.serializer.js","names":[],"sources":["../../../src/user-management/serializers/authenticate-with-password-options.serializer.ts"],"sourcesContent":["import {\n  AuthenticateUserWithPasswordCredentials,\n  AuthenticateWithPasswordOptions,\n  SerializedAuthenticateWithPasswordOptions,\n  WithResolvedClientId,\n} from '../interfaces';\n\nexport const serializeAuthenticateWithPasswordOptions = (\n  options: WithResolvedClientId<AuthenticateWithPasswordOptions> &\n    AuthenticateUserWithPasswordCredentials,\n): SerializedAuthenticateWithPasswordOptions => ({\n  grant_type: 'password',\n  client_id: options.clientId,\n  client_secret: options.clientSecret,\n  email: options.email,\n  password: options.password,\n  invitation_token: options.invitationToken,\n  ip_address: options.ipAddress,\n  user_agent: options.userAgent,\n});\n"],"mappings":";AAOA,MAAa,4CACX,aAE+C;CAC/C,YAAY;CACZ,WAAW,QAAQ;CACnB,eAAe,QAAQ;CACvB,OAAO,QAAQ;CACf,UAAU,QAAQ;CAClB,kBAAkB,QAAQ;CAC1B,YAAY,QAAQ;CACpB,YAAY,QAAQ;CACrB"}

package/lib/user-management/serializers/authenticate-with-refresh-token-public-client-options.serializer.cjs

@@ -0,0 +1,14 @@
+
+//#region src/user-management/serializers/authenticate-with-refresh-token-public-client-options.serializer.ts
+const serializeAuthenticateWithRefreshTokenPublicClientOptions = (options) => ({
+	grant_type: "refresh_token",
+	client_id: options.clientId,
+	refresh_token: options.refreshToken,
+	organization_id: options.organizationId,
+	ip_address: options.ipAddress,
+	user_agent: options.userAgent
+});
+
+//#endregion
+exports.serializeAuthenticateWithRefreshTokenPublicClientOptions = serializeAuthenticateWithRefreshTokenPublicClientOptions;
+//# sourceMappingURL=authenticate-with-refresh-token-public-client-options.serializer.cjs.map

package/lib/user-management/serializers/authenticate-with-refresh-token-public-client-options.serializer.cjs.map

@@ -0,0 +1 @@
+{"version":3,"file":"authenticate-with-refresh-token-public-client-options.serializer.cjs","names":[],"sources":["../../../src/user-management/serializers/authenticate-with-refresh-token-public-client-options.serializer.ts"],"sourcesContent":["import {\n  AuthenticateWithRefreshTokenPublicClientOptions,\n  SerializedAuthenticateWithRefreshTokenPublicClientOptions,\n  WithResolvedClientId,\n} from '../interfaces';\n\nexport const serializeAuthenticateWithRefreshTokenPublicClientOptions = (\n  options: WithResolvedClientId<AuthenticateWithRefreshTokenPublicClientOptions>,\n): SerializedAuthenticateWithRefreshTokenPublicClientOptions => ({\n  grant_type: 'refresh_token',\n  client_id: options.clientId,\n  refresh_token: options.refreshToken,\n  organization_id: options.organizationId,\n  ip_address: options.ipAddress,\n  user_agent: options.userAgent,\n});\n"],"mappings":";;AAMA,MAAa,4DACX,aAC+D;CAC/D,YAAY;CACZ,WAAW,QAAQ;CACnB,eAAe,QAAQ;CACvB,iBAAiB,QAAQ;CACzB,YAAY,QAAQ;CACpB,YAAY,QAAQ;CACrB"}

package/lib/user-management/serializers/authenticate-with-refresh-token-public-client-options.serializer.d.cts

@@ -0,0 +1,8 @@
+import { WithResolvedClientId } from "../interfaces/authenticate-with-options-base.interface.cjs";
+import { AuthenticateWithRefreshTokenPublicClientOptions, SerializedAuthenticateWithRefreshTokenPublicClientOptions } from "../interfaces/authenticate-with-refresh-token-public-client-options.interface.cjs";
+
+//#region src/user-management/serializers/authenticate-with-refresh-token-public-client-options.serializer.d.ts
+declare const serializeAuthenticateWithRefreshTokenPublicClientOptions: (options: WithResolvedClientId<AuthenticateWithRefreshTokenPublicClientOptions>) => SerializedAuthenticateWithRefreshTokenPublicClientOptions;
+//#endregion
+export { serializeAuthenticateWithRefreshTokenPublicClientOptions };
+//# sourceMappingURL=authenticate-with-refresh-token-public-client-options.serializer.d.cts.map

package/lib/user-management/serializers/authenticate-with-refresh-token-public-client-options.serializer.d.ts

@@ -0,0 +1,8 @@
+import { WithResolvedClientId } from "../interfaces/authenticate-with-options-base.interface.js";
+import { AuthenticateWithRefreshTokenPublicClientOptions, SerializedAuthenticateWithRefreshTokenPublicClientOptions } from "../interfaces/authenticate-with-refresh-token-public-client-options.interface.js";
+
+//#region src/user-management/serializers/authenticate-with-refresh-token-public-client-options.serializer.d.ts
+declare const serializeAuthenticateWithRefreshTokenPublicClientOptions: (options: WithResolvedClientId<AuthenticateWithRefreshTokenPublicClientOptions>) => SerializedAuthenticateWithRefreshTokenPublicClientOptions;
+//#endregion
+export { serializeAuthenticateWithRefreshTokenPublicClientOptions };
+//# sourceMappingURL=authenticate-with-refresh-token-public-client-options.serializer.d.ts.map

package/lib/user-management/serializers/authenticate-with-refresh-token-public-client-options.serializer.js

@@ -0,0 +1,13 @@
+//#region src/user-management/serializers/authenticate-with-refresh-token-public-client-options.serializer.ts
+const serializeAuthenticateWithRefreshTokenPublicClientOptions = (options) => ({
+	grant_type: "refresh_token",
+	client_id: options.clientId,
+	refresh_token: options.refreshToken,
+	organization_id: options.organizationId,
+	ip_address: options.ipAddress,
+	user_agent: options.userAgent
+});
+
+//#endregion
+export { serializeAuthenticateWithRefreshTokenPublicClientOptions };
+//# sourceMappingURL=authenticate-with-refresh-token-public-client-options.serializer.js.map

package/lib/user-management/serializers/authenticate-with-refresh-token-public-client-options.serializer.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"authenticate-with-refresh-token-public-client-options.serializer.js","names":[],"sources":["../../../src/user-management/serializers/authenticate-with-refresh-token-public-client-options.serializer.ts"],"sourcesContent":["import {\n  AuthenticateWithRefreshTokenPublicClientOptions,\n  SerializedAuthenticateWithRefreshTokenPublicClientOptions,\n  WithResolvedClientId,\n} from '../interfaces';\n\nexport const serializeAuthenticateWithRefreshTokenPublicClientOptions = (\n  options: WithResolvedClientId<AuthenticateWithRefreshTokenPublicClientOptions>,\n): SerializedAuthenticateWithRefreshTokenPublicClientOptions => ({\n  grant_type: 'refresh_token',\n  client_id: options.clientId,\n  refresh_token: options.refreshToken,\n  organization_id: options.organizationId,\n  ip_address: options.ipAddress,\n  user_agent: options.userAgent,\n});\n"],"mappings":";AAMA,MAAa,4DACX,aAC+D;CAC/D,YAAY;CACZ,WAAW,QAAQ;CACnB,eAAe,QAAQ;CACvB,iBAAiB,QAAQ;CACzB,YAAY,QAAQ;CACpB,YAAY,QAAQ;CACrB"}

package/lib/user-management/serializers/authenticate-with-refresh-token.options.serializer.cjs.map

@@ -1 +1 @@
-{"version":3,"file":"authenticate-with-refresh-token.options.serializer.cjs","names":[],"sources":["../../../src/user-management/serializers/authenticate-with-refresh-token.options.serializer.ts"],"sourcesContent":["import {\n  AuthenticateUserWithCodeCredentials,\n  AuthenticateWithRefreshTokenOptions,\n  SerializedAuthenticateWithRefreshTokenOptions,\n} from '../interfaces';\n\nexport const serializeAuthenticateWithRefreshTokenOptions = (\n  options: AuthenticateWithRefreshTokenOptions &\n    AuthenticateUserWithCodeCredentials,\n): SerializedAuthenticateWithRefreshTokenOptions => ({\n  grant_type: 'refresh_token',\n  client_id: options.clientId,\n  client_secret: options.clientSecret,\n  refresh_token: options.refreshToken,\n  organization_id: options.organizationId,\n  ip_address: options.ipAddress,\n  user_agent: options.userAgent,\n});\n"],"mappings":";;AAMA,MAAa,gDACX,aAEmD;CACnD,YAAY;CACZ,WAAW,QAAQ;CACnB,eAAe,QAAQ;CACvB,eAAe,QAAQ;CACvB,iBAAiB,QAAQ;CACzB,YAAY,QAAQ;CACpB,YAAY,QAAQ;CACrB"}
+{"version":3,"file":"authenticate-with-refresh-token.options.serializer.cjs","names":[],"sources":["../../../src/user-management/serializers/authenticate-with-refresh-token.options.serializer.ts"],"sourcesContent":["import {\n  AuthenticateUserWithCodeCredentials,\n  AuthenticateWithRefreshTokenOptions,\n  SerializedAuthenticateWithRefreshTokenOptions,\n  WithResolvedClientId,\n} from '../interfaces';\n\nexport const serializeAuthenticateWithRefreshTokenOptions = (\n  options: WithResolvedClientId<AuthenticateWithRefreshTokenOptions> &\n    AuthenticateUserWithCodeCredentials,\n): SerializedAuthenticateWithRefreshTokenOptions => ({\n  grant_type: 'refresh_token',\n  client_id: options.clientId,\n  client_secret: options.clientSecret,\n  refresh_token: options.refreshToken,\n  organization_id: options.organizationId,\n  ip_address: options.ipAddress,\n  user_agent: options.userAgent,\n});\n"],"mappings":";;AAOA,MAAa,gDACX,aAEmD;CACnD,YAAY;CACZ,WAAW,QAAQ;CACnB,eAAe,QAAQ;CACvB,eAAe,QAAQ;CACvB,iBAAiB,QAAQ;CACzB,YAAY,QAAQ;CACpB,YAAY,QAAQ;CACrB"}

package/lib/user-management/serializers/authenticate-with-refresh-token.options.serializer.d.cts

@@ -1,8 +1,9 @@
+import { WithResolvedClientId } from "../interfaces/authenticate-with-options-base.interface.cjs";
 import { AuthenticateUserWithCodeCredentials } from "../interfaces/authenticate-with-code-options.interface.cjs";
 import { AuthenticateWithRefreshTokenOptions, SerializedAuthenticateWithRefreshTokenOptions } from "../interfaces/authenticate-with-refresh-token-options.interface.cjs";
 
 //#region src/user-management/serializers/authenticate-with-refresh-token.options.serializer.d.ts
-declare const serializeAuthenticateWithRefreshTokenOptions: (options: AuthenticateWithRefreshTokenOptions & AuthenticateUserWithCodeCredentials) => SerializedAuthenticateWithRefreshTokenOptions;
+declare const serializeAuthenticateWithRefreshTokenOptions: (options: WithResolvedClientId<AuthenticateWithRefreshTokenOptions> & AuthenticateUserWithCodeCredentials) => SerializedAuthenticateWithRefreshTokenOptions;
 //#endregion
 export { serializeAuthenticateWithRefreshTokenOptions };
 //# sourceMappingURL=authenticate-with-refresh-token.options.serializer.d.cts.map

package/lib/user-management/serializers/authenticate-with-refresh-token.options.serializer.d.ts

@@ -1,8 +1,9 @@
+import { WithResolvedClientId } from "../interfaces/authenticate-with-options-base.interface.js";
 import { AuthenticateUserWithCodeCredentials } from "../interfaces/authenticate-with-code-options.interface.js";
 import { AuthenticateWithRefreshTokenOptions, SerializedAuthenticateWithRefreshTokenOptions } from "../interfaces/authenticate-with-refresh-token-options.interface.js";
 
 //#region src/user-management/serializers/authenticate-with-refresh-token.options.serializer.d.ts
-declare const serializeAuthenticateWithRefreshTokenOptions: (options: AuthenticateWithRefreshTokenOptions & AuthenticateUserWithCodeCredentials) => SerializedAuthenticateWithRefreshTokenOptions;
+declare const serializeAuthenticateWithRefreshTokenOptions: (options: WithResolvedClientId<AuthenticateWithRefreshTokenOptions> & AuthenticateUserWithCodeCredentials) => SerializedAuthenticateWithRefreshTokenOptions;
 //#endregion
 export { serializeAuthenticateWithRefreshTokenOptions };
 //# sourceMappingURL=authenticate-with-refresh-token.options.serializer.d.ts.map

package/lib/user-management/serializers/authenticate-with-refresh-token.options.serializer.js.map

@@ -1 +1 @@
-{"version":3,"file":"authenticate-with-refresh-token.options.serializer.js","names":[],"sources":["../../../src/user-management/serializers/authenticate-with-refresh-token.options.serializer.ts"],"sourcesContent":["import {\n  AuthenticateUserWithCodeCredentials,\n  AuthenticateWithRefreshTokenOptions,\n  SerializedAuthenticateWithRefreshTokenOptions,\n} from '../interfaces';\n\nexport const serializeAuthenticateWithRefreshTokenOptions = (\n  options: AuthenticateWithRefreshTokenOptions &\n    AuthenticateUserWithCodeCredentials,\n): SerializedAuthenticateWithRefreshTokenOptions => ({\n  grant_type: 'refresh_token',\n  client_id: options.clientId,\n  client_secret: options.clientSecret,\n  refresh_token: options.refreshToken,\n  organization_id: options.organizationId,\n  ip_address: options.ipAddress,\n  user_agent: options.userAgent,\n});\n"],"mappings":";AAMA,MAAa,gDACX,aAEmD;CACnD,YAAY;CACZ,WAAW,QAAQ;CACnB,eAAe,QAAQ;CACvB,eAAe,QAAQ;CACvB,iBAAiB,QAAQ;CACzB,YAAY,QAAQ;CACpB,YAAY,QAAQ;CACrB"}
+{"version":3,"file":"authenticate-with-refresh-token.options.serializer.js","names":[],"sources":["../../../src/user-management/serializers/authenticate-with-refresh-token.options.serializer.ts"],"sourcesContent":["import {\n  AuthenticateUserWithCodeCredentials,\n  AuthenticateWithRefreshTokenOptions,\n  SerializedAuthenticateWithRefreshTokenOptions,\n  WithResolvedClientId,\n} from '../interfaces';\n\nexport const serializeAuthenticateWithRefreshTokenOptions = (\n  options: WithResolvedClientId<AuthenticateWithRefreshTokenOptions> &\n    AuthenticateUserWithCodeCredentials,\n): SerializedAuthenticateWithRefreshTokenOptions => ({\n  grant_type: 'refresh_token',\n  client_id: options.clientId,\n  client_secret: options.clientSecret,\n  refresh_token: options.refreshToken,\n  organization_id: options.organizationId,\n  ip_address: options.ipAddress,\n  user_agent: options.userAgent,\n});\n"],"mappings":";AAOA,MAAa,gDACX,aAEmD;CACnD,YAAY;CACZ,WAAW,QAAQ;CACnB,eAAe,QAAQ;CACvB,eAAe,QAAQ;CACvB,iBAAiB,QAAQ;CACzB,YAAY,QAAQ;CACpB,YAAY,QAAQ;CACrB"}

package/lib/user-management/serializers/authenticate-with-totp-options.serializer.cjs.map

@@ -1 +1 @@
-{"version":3,"file":"authenticate-with-totp-options.serializer.cjs","names":[],"sources":["../../../src/user-management/serializers/authenticate-with-totp-options.serializer.ts"],"sourcesContent":["import {\n  AuthenticateUserWithTotpCredentials,\n  AuthenticateWithTotpOptions,\n  SerializedAuthenticateWithTotpOptions,\n} from '../interfaces';\n\nexport const serializeAuthenticateWithTotpOptions = (\n  options: AuthenticateWithTotpOptions & AuthenticateUserWithTotpCredentials,\n): SerializedAuthenticateWithTotpOptions => ({\n  grant_type: 'urn:workos:oauth:grant-type:mfa-totp',\n  client_id: options.clientId,\n  client_secret: options.clientSecret,\n  code: options.code,\n  authentication_challenge_id: options.authenticationChallengeId,\n  pending_authentication_token: options.pendingAuthenticationToken,\n  ip_address: options.ipAddress,\n  user_agent: options.userAgent,\n});\n"],"mappings":";;AAMA,MAAa,wCACX,aAC2C;CAC3C,YAAY;CACZ,WAAW,QAAQ;CACnB,eAAe,QAAQ;CACvB,MAAM,QAAQ;CACd,6BAA6B,QAAQ;CACrC,8BAA8B,QAAQ;CACtC,YAAY,QAAQ;CACpB,YAAY,QAAQ;CACrB"}
+{"version":3,"file":"authenticate-with-totp-options.serializer.cjs","names":[],"sources":["../../../src/user-management/serializers/authenticate-with-totp-options.serializer.ts"],"sourcesContent":["import {\n  AuthenticateUserWithTotpCredentials,\n  AuthenticateWithTotpOptions,\n  SerializedAuthenticateWithTotpOptions,\n  WithResolvedClientId,\n} from '../interfaces';\n\nexport const serializeAuthenticateWithTotpOptions = (\n  options: WithResolvedClientId<AuthenticateWithTotpOptions> &\n    AuthenticateUserWithTotpCredentials,\n): SerializedAuthenticateWithTotpOptions => ({\n  grant_type: 'urn:workos:oauth:grant-type:mfa-totp',\n  client_id: options.clientId,\n  client_secret: options.clientSecret,\n  code: options.code,\n  authentication_challenge_id: options.authenticationChallengeId,\n  pending_authentication_token: options.pendingAuthenticationToken,\n  ip_address: options.ipAddress,\n  user_agent: options.userAgent,\n});\n"],"mappings":";;AAOA,MAAa,wCACX,aAE2C;CAC3C,YAAY;CACZ,WAAW,QAAQ;CACnB,eAAe,QAAQ;CACvB,MAAM,QAAQ;CACd,6BAA6B,QAAQ;CACrC,8BAA8B,QAAQ;CACtC,YAAY,QAAQ;CACpB,YAAY,QAAQ;CACrB"}

package/lib/user-management/serializers/authenticate-with-totp-options.serializer.d.cts

@@ -1,7 +1,8 @@
+import { WithResolvedClientId } from "../interfaces/authenticate-with-options-base.interface.cjs";
 import { AuthenticateUserWithTotpCredentials, AuthenticateWithTotpOptions, SerializedAuthenticateWithTotpOptions } from "../interfaces/authenticate-with-totp-options.interface.cjs";
 
 //#region src/user-management/serializers/authenticate-with-totp-options.serializer.d.ts
-declare const serializeAuthenticateWithTotpOptions: (options: AuthenticateWithTotpOptions & AuthenticateUserWithTotpCredentials) => SerializedAuthenticateWithTotpOptions;
+declare const serializeAuthenticateWithTotpOptions: (options: WithResolvedClientId<AuthenticateWithTotpOptions> & AuthenticateUserWithTotpCredentials) => SerializedAuthenticateWithTotpOptions;
 //#endregion
 export { serializeAuthenticateWithTotpOptions };
 //# sourceMappingURL=authenticate-with-totp-options.serializer.d.cts.map

package/lib/user-management/serializers/authenticate-with-totp-options.serializer.d.ts

@@ -1,7 +1,8 @@
+import { WithResolvedClientId } from "../interfaces/authenticate-with-options-base.interface.js";
 import { AuthenticateUserWithTotpCredentials, AuthenticateWithTotpOptions, SerializedAuthenticateWithTotpOptions } from "../interfaces/authenticate-with-totp-options.interface.js";
 
 //#region src/user-management/serializers/authenticate-with-totp-options.serializer.d.ts
-declare const serializeAuthenticateWithTotpOptions: (options: AuthenticateWithTotpOptions & AuthenticateUserWithTotpCredentials) => SerializedAuthenticateWithTotpOptions;
+declare const serializeAuthenticateWithTotpOptions: (options: WithResolvedClientId<AuthenticateWithTotpOptions> & AuthenticateUserWithTotpCredentials) => SerializedAuthenticateWithTotpOptions;
 //#endregion
 export { serializeAuthenticateWithTotpOptions };
 //# sourceMappingURL=authenticate-with-totp-options.serializer.d.ts.map

package/lib/user-management/serializers/authenticate-with-totp-options.serializer.js.map

@@ -1 +1 @@
-{"version":3,"file":"authenticate-with-totp-options.serializer.js","names":[],"sources":["../../../src/user-management/serializers/authenticate-with-totp-options.serializer.ts"],"sourcesContent":["import {\n  AuthenticateUserWithTotpCredentials,\n  AuthenticateWithTotpOptions,\n  SerializedAuthenticateWithTotpOptions,\n} from '../interfaces';\n\nexport const serializeAuthenticateWithTotpOptions = (\n  options: AuthenticateWithTotpOptions & AuthenticateUserWithTotpCredentials,\n): SerializedAuthenticateWithTotpOptions => ({\n  grant_type: 'urn:workos:oauth:grant-type:mfa-totp',\n  client_id: options.clientId,\n  client_secret: options.clientSecret,\n  code: options.code,\n  authentication_challenge_id: options.authenticationChallengeId,\n  pending_authentication_token: options.pendingAuthenticationToken,\n  ip_address: options.ipAddress,\n  user_agent: options.userAgent,\n});\n"],"mappings":";AAMA,MAAa,wCACX,aAC2C;CAC3C,YAAY;CACZ,WAAW,QAAQ;CACnB,eAAe,QAAQ;CACvB,MAAM,QAAQ;CACd,6BAA6B,QAAQ;CACrC,8BAA8B,QAAQ;CACtC,YAAY,QAAQ;CACpB,YAAY,QAAQ;CACrB"}
+{"version":3,"file":"authenticate-with-totp-options.serializer.js","names":[],"sources":["../../../src/user-management/serializers/authenticate-with-totp-options.serializer.ts"],"sourcesContent":["import {\n  AuthenticateUserWithTotpCredentials,\n  AuthenticateWithTotpOptions,\n  SerializedAuthenticateWithTotpOptions,\n  WithResolvedClientId,\n} from '../interfaces';\n\nexport const serializeAuthenticateWithTotpOptions = (\n  options: WithResolvedClientId<AuthenticateWithTotpOptions> &\n    AuthenticateUserWithTotpCredentials,\n): SerializedAuthenticateWithTotpOptions => ({\n  grant_type: 'urn:workos:oauth:grant-type:mfa-totp',\n  client_id: options.clientId,\n  client_secret: options.clientSecret,\n  code: options.code,\n  authentication_challenge_id: options.authenticationChallengeId,\n  pending_authentication_token: options.pendingAuthenticationToken,\n  ip_address: options.ipAddress,\n  user_agent: options.userAgent,\n});\n"],"mappings":";AAOA,MAAa,wCACX,aAE2C;CAC3C,YAAY;CACZ,WAAW,QAAQ;CACnB,eAAe,QAAQ;CACvB,MAAM,QAAQ;CACd,6BAA6B,QAAQ;CACrC,8BAA8B,QAAQ;CACtC,YAAY,QAAQ;CACpB,YAAY,QAAQ;CACrB"}

package/lib/user-management/serializers/index.cjs

@@ -3,6 +3,7 @@ const require_user_management_serializers_authenticate_with_code_and_verifier_op
 const require_user_management_serializers_authenticate_with_magic_auth_options_serializer = require('./authenticate-with-magic-auth-options.serializer.cjs');
 const require_user_management_serializers_authenticate_with_password_options_serializer = require('./authenticate-with-password-options.serializer.cjs');
 const require_user_management_serializers_authenticate_with_refresh_token_options_serializer = require('./authenticate-with-refresh-token.options.serializer.cjs');
+const require_user_management_serializers_authenticate_with_refresh_token_public_client_options_serializer = require('./authenticate-with-refresh-token-public-client-options.serializer.cjs');
 const require_user_management_serializers_authenticate_with_totp_options_serializer = require('./authenticate-with-totp-options.serializer.cjs');
 const require_user_management_serializers_authentication_event_serializer = require('./authentication-event.serializer.cjs');
 const require_user_management_serializers_user_serializer = require('./user.serializer.cjs');
@@ -41,6 +42,7 @@ exports.serializeAuthenticateWithCodeOptions = require_user_management_serialize
 exports.serializeAuthenticateWithMagicAuthOptions = require_user_management_serializers_authenticate_with_magic_auth_options_serializer.serializeAuthenticateWithMagicAuthOptions;
 exports.serializeAuthenticateWithPasswordOptions = require_user_management_serializers_authenticate_with_password_options_serializer.serializeAuthenticateWithPasswordOptions;
 exports.serializeAuthenticateWithRefreshTokenOptions = require_user_management_serializers_authenticate_with_refresh_token_options_serializer.serializeAuthenticateWithRefreshTokenOptions;
+exports.serializeAuthenticateWithRefreshTokenPublicClientOptions = require_user_management_serializers_authenticate_with_refresh_token_public_client_options_serializer.serializeAuthenticateWithRefreshTokenPublicClientOptions;
 exports.serializeAuthenticateWithTotpOptions = require_user_management_serializers_authenticate_with_totp_options_serializer.serializeAuthenticateWithTotpOptions;
 exports.serializeCreateMagicAuthOptions = require_user_management_serializers_create_magic_auth_options_serializer.serializeCreateMagicAuthOptions;
 exports.serializeCreatePasswordResetOptions = require_user_management_serializers_create_password_reset_options_serializer.serializeCreatePasswordResetOptions;

package/lib/user-management/serializers/index.d.cts

@@ -2,6 +2,7 @@ import { serializeAuthenticateWithCodeAndVerifierOptions } from "./authenticate-
 import { serializeAuthenticateWithCodeOptions } from "./authenticate-with-code-options.serializer.cjs";
 import { serializeAuthenticateWithMagicAuthOptions } from "./authenticate-with-magic-auth-options.serializer.cjs";
 import { serializeAuthenticateWithPasswordOptions } from "./authenticate-with-password-options.serializer.cjs";
+import { serializeAuthenticateWithRefreshTokenPublicClientOptions } from "./authenticate-with-refresh-token-public-client-options.serializer.cjs";
 import { serializeAuthenticateWithRefreshTokenOptions } from "./authenticate-with-refresh-token.options.serializer.cjs";
 import { serializeAuthenticateWithTotpOptions } from "./authenticate-with-totp-options.serializer.cjs";
 import { deserializeAuthenticationEvent } from "./authentication-event.serializer.cjs";
@@ -21,4 +22,4 @@ import { deserializeSession } from "./session.serializer.cjs";
 import { serializeUpdateUserOptions } from "./update-user-options.serializer.cjs";
 import { serializeUpdateUserPasswordOptions } from "./update-user-password-options.serializer.cjs";
 import { deserializeUser } from "./user.serializer.cjs";
-export { deserializeAuthenticationEvent, deserializeAuthenticationResponse, deserializeEmailVerification, deserializeEmailVerificationEvent, deserializeFactor, deserializeFactorWithSecrets, deserializeInvitation, deserializeInvitationEvent, deserializeMagicAuth, deserializeMagicAuthEvent, deserializePasswordReset, deserializePasswordResetEvent, deserializeSession, deserializeUser, serializeAuthenticateWithCodeAndVerifierOptions, serializeAuthenticateWithCodeOptions, serializeAuthenticateWithMagicAuthOptions, serializeAuthenticateWithPasswordOptions, serializeAuthenticateWithRefreshTokenOptions, serializeAuthenticateWithTotpOptions, serializeCreateMagicAuthOptions, serializeCreatePasswordResetOptions, serializeCreateUserOptions, serializeEnrollAuthFactorOptions, serializeListSessionsOptions, serializeResetPasswordOptions, serializeUpdateUserOptions, serializeUpdateUserPasswordOptions };
+export { deserializeAuthenticationEvent, deserializeAuthenticationResponse, deserializeEmailVerification, deserializeEmailVerificationEvent, deserializeFactor, deserializeFactorWithSecrets, deserializeInvitation, deserializeInvitationEvent, deserializeMagicAuth, deserializeMagicAuthEvent, deserializePasswordReset, deserializePasswordResetEvent, deserializeSession, deserializeUser, serializeAuthenticateWithCodeAndVerifierOptions, serializeAuthenticateWithCodeOptions, serializeAuthenticateWithMagicAuthOptions, serializeAuthenticateWithPasswordOptions, serializeAuthenticateWithRefreshTokenOptions, serializeAuthenticateWithRefreshTokenPublicClientOptions, serializeAuthenticateWithTotpOptions, serializeCreateMagicAuthOptions, serializeCreatePasswordResetOptions, serializeCreateUserOptions, serializeEnrollAuthFactorOptions, serializeListSessionsOptions, serializeResetPasswordOptions, serializeUpdateUserOptions, serializeUpdateUserPasswordOptions };

package/lib/user-management/serializers/index.d.ts

@@ -2,6 +2,7 @@ import { serializeAuthenticateWithCodeAndVerifierOptions } from "./authenticate-
 import { serializeAuthenticateWithCodeOptions } from "./authenticate-with-code-options.serializer.js";
 import { serializeAuthenticateWithMagicAuthOptions } from "./authenticate-with-magic-auth-options.serializer.js";
 import { serializeAuthenticateWithPasswordOptions } from "./authenticate-with-password-options.serializer.js";
+import { serializeAuthenticateWithRefreshTokenPublicClientOptions } from "./authenticate-with-refresh-token-public-client-options.serializer.js";
 import { serializeAuthenticateWithRefreshTokenOptions } from "./authenticate-with-refresh-token.options.serializer.js";
 import { serializeAuthenticateWithTotpOptions } from "./authenticate-with-totp-options.serializer.js";
 import { deserializeAuthenticationEvent } from "./authentication-event.serializer.js";
@@ -21,4 +22,4 @@ import { deserializeSession } from "./session.serializer.js";
 import { serializeUpdateUserOptions } from "./update-user-options.serializer.js";
 import { serializeUpdateUserPasswordOptions } from "./update-user-password-options.serializer.js";
 import { deserializeUser } from "./user.serializer.js";
-export { deserializeAuthenticationEvent, deserializeAuthenticationResponse, deserializeEmailVerification, deserializeEmailVerificationEvent, deserializeFactor, deserializeFactorWithSecrets, deserializeInvitation, deserializeInvitationEvent, deserializeMagicAuth, deserializeMagicAuthEvent, deserializePasswordReset, deserializePasswordResetEvent, deserializeSession, deserializeUser, serializeAuthenticateWithCodeAndVerifierOptions, serializeAuthenticateWithCodeOptions, serializeAuthenticateWithMagicAuthOptions, serializeAuthenticateWithPasswordOptions, serializeAuthenticateWithRefreshTokenOptions, serializeAuthenticateWithTotpOptions, serializeCreateMagicAuthOptions, serializeCreatePasswordResetOptions, serializeCreateUserOptions, serializeEnrollAuthFactorOptions, serializeListSessionsOptions, serializeResetPasswordOptions, serializeUpdateUserOptions, serializeUpdateUserPasswordOptions };
+export { deserializeAuthenticationEvent, deserializeAuthenticationResponse, deserializeEmailVerification, deserializeEmailVerificationEvent, deserializeFactor, deserializeFactorWithSecrets, deserializeInvitation, deserializeInvitationEvent, deserializeMagicAuth, deserializeMagicAuthEvent, deserializePasswordReset, deserializePasswordResetEvent, deserializeSession, deserializeUser, serializeAuthenticateWithCodeAndVerifierOptions, serializeAuthenticateWithCodeOptions, serializeAuthenticateWithMagicAuthOptions, serializeAuthenticateWithPasswordOptions, serializeAuthenticateWithRefreshTokenOptions, serializeAuthenticateWithRefreshTokenPublicClientOptions, serializeAuthenticateWithTotpOptions, serializeCreateMagicAuthOptions, serializeCreatePasswordResetOptions, serializeCreateUserOptions, serializeEnrollAuthFactorOptions, serializeListSessionsOptions, serializeResetPasswordOptions, serializeUpdateUserOptions, serializeUpdateUserPasswordOptions };

package/lib/user-management/serializers/index.js

@@ -3,6 +3,7 @@ import { serializeAuthenticateWithCodeAndVerifierOptions } from "./authenticate-
 import { serializeAuthenticateWithMagicAuthOptions } from "./authenticate-with-magic-auth-options.serializer.js";
 import { serializeAuthenticateWithPasswordOptions } from "./authenticate-with-password-options.serializer.js";
 import { serializeAuthenticateWithRefreshTokenOptions } from "./authenticate-with-refresh-token.options.serializer.js";
+import { serializeAuthenticateWithRefreshTokenPublicClientOptions } from "./authenticate-with-refresh-token-public-client-options.serializer.js";
 import { serializeAuthenticateWithTotpOptions } from "./authenticate-with-totp-options.serializer.js";
 import { deserializeAuthenticationEvent } from "./authentication-event.serializer.js";
 import { deserializeUser } from "./user.serializer.js";
@@ -22,4 +23,4 @@ import { serializeCreateUserOptions } from "./create-user-options.serializer.js"
 import { serializeUpdateUserOptions } from "./update-user-options.serializer.js";
 import { serializeUpdateUserPasswordOptions } from "./update-user-password-options.serializer.js";
 
-export { deserializeAuthenticationEvent, deserializeAuthenticationResponse, deserializeEmailVerification, deserializeEmailVerificationEvent, deserializeFactor, deserializeFactorWithSecrets, deserializeInvitation, deserializeInvitationEvent, deserializeMagicAuth, deserializeMagicAuthEvent, deserializePasswordReset, deserializePasswordResetEvent, deserializeSession, deserializeUser, serializeAuthenticateWithCodeAndVerifierOptions, serializeAuthenticateWithCodeOptions, serializeAuthenticateWithMagicAuthOptions, serializeAuthenticateWithPasswordOptions, serializeAuthenticateWithRefreshTokenOptions, serializeAuthenticateWithTotpOptions, serializeCreateMagicAuthOptions, serializeCreatePasswordResetOptions, serializeCreateUserOptions, serializeEnrollAuthFactorOptions, serializeListSessionsOptions, serializeResetPasswordOptions, serializeUpdateUserOptions, serializeUpdateUserPasswordOptions };
+export { deserializeAuthenticationEvent, deserializeAuthenticationResponse, deserializeEmailVerification, deserializeEmailVerificationEvent, deserializeFactor, deserializeFactorWithSecrets, deserializeInvitation, deserializeInvitationEvent, deserializeMagicAuth, deserializeMagicAuthEvent, deserializePasswordReset, deserializePasswordResetEvent, deserializeSession, deserializeUser, serializeAuthenticateWithCodeAndVerifierOptions, serializeAuthenticateWithCodeOptions, serializeAuthenticateWithMagicAuthOptions, serializeAuthenticateWithPasswordOptions, serializeAuthenticateWithRefreshTokenOptions, serializeAuthenticateWithRefreshTokenPublicClientOptions, serializeAuthenticateWithTotpOptions, serializeCreateMagicAuthOptions, serializeCreatePasswordResetOptions, serializeCreateUserOptions, serializeEnrollAuthFactorOptions, serializeListSessionsOptions, serializeResetPasswordOptions, serializeUpdateUserOptions, serializeUpdateUserPasswordOptions };

package/lib/user-management/session.cjs

@@ -25,15 +25,7 @@ var CookieSession = class {
 			authenticated: false,
 			reason: require_user_management_interfaces_authenticate_with_session_cookie_interface.AuthenticateWithSessionCookieFailureReason.NO_SESSION_COOKIE_PROVIDED
 		};
-		let session;
-		try {
-			session = await require_common_crypto_seal.unsealData(this.sessionData, { password: this.cookiePassword });
-		} catch (e) {
-			return {
-				authenticated: false,
-				reason: require_user_management_interfaces_authenticate_with_session_cookie_interface.AuthenticateWithSessionCookieFailureReason.INVALID_SESSION_COOKIE
-			};
-		}
+		const session = await require_common_crypto_seal.unsealData(this.sessionData, { password: this.cookiePassword });
 		if (!session.accessToken) return {
 			authenticated: false,
 			reason: require_user_management_interfaces_authenticate_with_session_cookie_interface.AuthenticateWithSessionCookieFailureReason.INVALID_SESSION_COOKIE
@@ -136,7 +128,8 @@ var CookieSession = class {
 			await jwtVerify(accessToken, jwks);
 			return true;
 		} catch (e) {
-			return false;
+			if (e instanceof Error && "code" in e && typeof e.code === "string" && (e.code.startsWith("ERR_JWT_") || e.code.startsWith("ERR_JWS_"))) return false;
+			throw e;
 		}
 	}
 };

package/lib/user-management/session.cjs.map

@@ -1 +1 @@
-{"version":3,"file":"session.cjs","names":["AuthenticateWithSessionCookieFailureReason","session: SessionCookieData","unsealData","getJose","RefreshSessionFailureReason","OauthException"],"sources":["../../src/user-management/session.ts"],"sourcesContent":["import { OauthException } from '../common/exceptions/oauth.exception';\nimport {\n  AccessToken,\n  AuthenticateWithSessionCookieFailedResponse,\n  AuthenticateWithSessionCookieFailureReason,\n  AuthenticateWithSessionCookieSuccessResponse,\n  AuthenticationResponse,\n  RefreshSessionFailureReason,\n  RefreshSessionResponse,\n  SessionCookieData,\n} from './interfaces';\nimport { UserManagement } from './user-management';\nimport { unsealData } from '../common/crypto/seal';\nimport { getJose } from '../utils/jose';\n\ntype RefreshOptions = {\n  cookiePassword?: string;\n  organizationId?: string;\n};\n\nexport class CookieSession {\n  private userManagement: UserManagement;\n  private cookiePassword: string;\n  private sessionData: string;\n\n  constructor(\n    userManagement: UserManagement,\n    sessionData: string,\n    cookiePassword: string,\n  ) {\n    if (!cookiePassword) {\n      throw new Error('cookiePassword is required');\n    }\n\n    this.userManagement = userManagement;\n    this.cookiePassword = cookiePassword;\n    this.sessionData = sessionData;\n  }\n\n  /**\n   * Authenticates a user with a session cookie.\n   *\n   * @returns An object indicating whether the authentication was successful or not. If successful, it will include the user's session data.\n   */\n  async authenticate(): Promise<\n    | AuthenticateWithSessionCookieSuccessResponse\n    | AuthenticateWithSessionCookieFailedResponse\n  > {\n    if (!this.sessionData) {\n      return {\n        authenticated: false,\n        reason:\n          AuthenticateWithSessionCookieFailureReason.NO_SESSION_COOKIE_PROVIDED,\n      };\n    }\n\n    let session: SessionCookieData;\n\n    try {\n      session = await unsealData<SessionCookieData>(this.sessionData, {\n        password: this.cookiePassword,\n      });\n    } catch (e) {\n      return {\n        authenticated: false,\n        reason:\n          AuthenticateWithSessionCookieFailureReason.INVALID_SESSION_COOKIE,\n      };\n    }\n\n    if (!session.accessToken) {\n      return {\n        authenticated: false,\n        reason:\n          AuthenticateWithSessionCookieFailureReason.INVALID_SESSION_COOKIE,\n      };\n    }\n\n    if (!(await this.isValidJwt(session.accessToken))) {\n      return {\n        authenticated: false,\n        reason: AuthenticateWithSessionCookieFailureReason.INVALID_JWT,\n      };\n    }\n\n    const { decodeJwt } = await getJose();\n\n    const {\n      sid: sessionId,\n      org_id: organizationId,\n      role,\n      roles,\n      permissions,\n      entitlements,\n      feature_flags: featureFlags,\n    } = decodeJwt<AccessToken>(session.accessToken);\n\n    return {\n      authenticated: true,\n      sessionId,\n      organizationId,\n      role,\n      roles,\n      permissions,\n      entitlements,\n      featureFlags,\n      user: session.user,\n      authenticationMethod: session.authenticationMethod,\n      impersonator: session.impersonator,\n      accessToken: session.accessToken,\n    };\n  }\n\n  /**\n   * Refreshes the user's session.\n   *\n   * @param options - Optional options for refreshing the session.\n   * @param options.cookiePassword - The password to use for the new session cookie.\n   * @param options.organizationId - The organization ID to use for the new session cookie.\n   * @returns An object indicating whether the refresh was successful or not. If successful, it will include the new sealed session data.\n   */\n  async refresh(options: RefreshOptions = {}): Promise<RefreshSessionResponse> {\n    const { decodeJwt } = await getJose();\n    const session = await unsealData<SessionCookieData>(this.sessionData, {\n      password: this.cookiePassword,\n    });\n\n    if (!session.refreshToken || !session.user) {\n      return {\n        authenticated: false,\n        reason: RefreshSessionFailureReason.INVALID_SESSION_COOKIE,\n      };\n    }\n\n    const { org_id: organizationIdFromAccessToken } = decodeJwt<AccessToken>(\n      session.accessToken,\n    );\n\n    try {\n      const cookiePassword = options.cookiePassword ?? this.cookiePassword;\n\n      const authenticationResponse =\n        await this.userManagement.authenticateWithRefreshToken({\n          clientId: this.userManagement.clientId as string,\n          refreshToken: session.refreshToken,\n          organizationId:\n            options.organizationId ?? organizationIdFromAccessToken,\n          session: {\n            // We want to store the new sealed session in this class instance, so this always needs to be true\n            sealSession: true,\n            cookiePassword,\n          },\n        });\n\n      // Update the password if a new one was provided\n      if (options.cookiePassword) {\n        this.cookiePassword = options.cookiePassword;\n      }\n\n      this.sessionData = authenticationResponse.sealedSession as string;\n\n      const {\n        sid: sessionId,\n        org_id: organizationId,\n        role,\n        roles,\n        permissions,\n        entitlements,\n        feature_flags: featureFlags,\n      } = decodeJwt<AccessToken>(authenticationResponse.accessToken);\n\n      // TODO: Returning `session` here means there's some duplicated data.\n      // Slim down the return type in a future major version.\n      return {\n        authenticated: true,\n        sealedSession: authenticationResponse.sealedSession,\n        session: authenticationResponse as AuthenticationResponse,\n        authenticationMethod: authenticationResponse.authenticationMethod,\n        sessionId,\n        organizationId,\n        role,\n        roles,\n        permissions,\n        entitlements,\n        featureFlags,\n        user: session.user,\n        impersonator: session.impersonator,\n      };\n    } catch (error) {\n      if (\n        error instanceof OauthException &&\n        // TODO: Add additional known errors and remove re-throw\n        (error.error === RefreshSessionFailureReason.INVALID_GRANT ||\n          error.error === RefreshSessionFailureReason.MFA_ENROLLMENT ||\n          error.error === RefreshSessionFailureReason.SSO_REQUIRED)\n      ) {\n        return {\n          authenticated: false,\n          reason: error.error,\n        };\n      }\n\n      throw error;\n    }\n  }\n\n  /**\n   * Gets the URL to redirect the user to for logging out.\n   *\n   * @returns The URL to redirect the user to for logging out.\n   */\n  async getLogoutUrl({\n    returnTo,\n  }: { returnTo?: string } = {}): Promise<string> {\n    const authenticationResponse = await this.authenticate();\n\n    if (!authenticationResponse.authenticated) {\n      const { reason } = authenticationResponse;\n      throw new Error(`Failed to extract session ID for logout URL: ${reason}`);\n    }\n\n    return this.userManagement.getLogoutUrl({\n      sessionId: authenticationResponse.sessionId,\n      returnTo,\n    });\n  }\n\n  private async isValidJwt(accessToken: string): Promise<boolean> {\n    const { jwtVerify } = await getJose();\n    const jwks = await this.userManagement.getJWKS();\n    if (!jwks) {\n      throw new Error(\n        'Missing client ID. Did you provide it when initializing WorkOS?',\n      );\n    }\n\n    try {\n      await jwtVerify(accessToken, jwks);\n      return true;\n    } catch (e) {\n      return false;\n    }\n  }\n}\n"],"mappings":";;;;;;;AAoBA,IAAa,gBAAb,MAA2B;CACzB,AAAQ;CACR,AAAQ;CACR,AAAQ;CAER,YACE,gBACA,aACA,gBACA;AACA,MAAI,CAAC,eACH,OAAM,IAAI,MAAM,6BAA6B;AAG/C,OAAK,iBAAiB;AACtB,OAAK,iBAAiB;AACtB,OAAK,cAAc;;;;;;;CAQrB,MAAM,eAGJ;AACA,MAAI,CAAC,KAAK,YACR,QAAO;GACL,eAAe;GACf,QACEA,yHAA2C;GAC9C;EAGH,IAAIC;AAEJ,MAAI;AACF,aAAU,MAAMC,sCAA8B,KAAK,aAAa,EAC9D,UAAU,KAAK,gBAChB,CAAC;WACK,GAAG;AACV,UAAO;IACL,eAAe;IACf,QACEF,yHAA2C;IAC9C;;AAGH,MAAI,CAAC,QAAQ,YACX,QAAO;GACL,eAAe;GACf,QACEA,yHAA2C;GAC9C;AAGH,MAAI,CAAE,MAAM,KAAK,WAAW,QAAQ,YAAY,CAC9C,QAAO;GACL,eAAe;GACf,QAAQA,yHAA2C;GACpD;EAGH,MAAM,EAAE,cAAc,MAAMG,4BAAS;EAErC,MAAM,EACJ,KAAK,WACL,QAAQ,gBACR,MACA,OACA,aACA,cACA,eAAe,iBACb,UAAuB,QAAQ,YAAY;AAE/C,SAAO;GACL,eAAe;GACf;GACA;GACA;GACA;GACA;GACA;GACA;GACA,MAAM,QAAQ;GACd,sBAAsB,QAAQ;GAC9B,cAAc,QAAQ;GACtB,aAAa,QAAQ;GACtB;;;;;;;;;;CAWH,MAAM,QAAQ,UAA0B,EAAE,EAAmC;EAC3E,MAAM,EAAE,cAAc,MAAMA,4BAAS;EACrC,MAAM,UAAU,MAAMD,sCAA8B,KAAK,aAAa,EACpE,UAAU,KAAK,gBAChB,CAAC;AAEF,MAAI,CAAC,QAAQ,gBAAgB,CAAC,QAAQ,KACpC,QAAO;GACL,eAAe;GACf,QAAQE,uGAA4B;GACrC;EAGH,MAAM,EAAE,QAAQ,kCAAkC,UAChD,QAAQ,YACT;AAED,MAAI;GACF,MAAM,iBAAiB,QAAQ,kBAAkB,KAAK;GAEtD,MAAM,yBACJ,MAAM,KAAK,eAAe,6BAA6B;IACrD,UAAU,KAAK,eAAe;IAC9B,cAAc,QAAQ;IACtB,gBACE,QAAQ,kBAAkB;IAC5B,SAAS;KAEP,aAAa;KACb;KACD;IACF,CAAC;AAGJ,OAAI,QAAQ,eACV,MAAK,iBAAiB,QAAQ;AAGhC,QAAK,cAAc,uBAAuB;GAE1C,MAAM,EACJ,KAAK,WACL,QAAQ,gBACR,MACA,OACA,aACA,cACA,eAAe,iBACb,UAAuB,uBAAuB,YAAY;AAI9D,UAAO;IACL,eAAe;IACf,eAAe,uBAAuB;IACtC,SAAS;IACT,sBAAsB,uBAAuB;IAC7C;IACA;IACA;IACA;IACA;IACA;IACA;IACA,MAAM,QAAQ;IACd,cAAc,QAAQ;IACvB;WACM,OAAO;AACd,OACE,iBAAiBC,6DAEhB,MAAM,UAAUD,uGAA4B,iBAC3C,MAAM,UAAUA,uGAA4B,kBAC5C,MAAM,UAAUA,uGAA4B,cAE9C,QAAO;IACL,eAAe;IACf,QAAQ,MAAM;IACf;AAGH,SAAM;;;;;;;;CASV,MAAM,aAAa,EACjB,aACyB,EAAE,EAAmB;EAC9C,MAAM,yBAAyB,MAAM,KAAK,cAAc;AAExD,MAAI,CAAC,uBAAuB,eAAe;GACzC,MAAM,EAAE,WAAW;AACnB,SAAM,IAAI,MAAM,gDAAgD,SAAS;;AAG3E,SAAO,KAAK,eAAe,aAAa;GACtC,WAAW,uBAAuB;GAClC;GACD,CAAC;;CAGJ,MAAc,WAAW,aAAuC;EAC9D,MAAM,EAAE,cAAc,MAAMD,4BAAS;EACrC,MAAM,OAAO,MAAM,KAAK,eAAe,SAAS;AAChD,MAAI,CAAC,KACH,OAAM,IAAI,MACR,kEACD;AAGH,MAAI;AACF,SAAM,UAAU,aAAa,KAAK;AAClC,UAAO;WACA,GAAG;AACV,UAAO"}
+{"version":3,"file":"session.cjs","names":["AuthenticateWithSessionCookieFailureReason","unsealData","getJose","RefreshSessionFailureReason","OauthException"],"sources":["../../src/user-management/session.ts"],"sourcesContent":["import { OauthException } from '../common/exceptions/oauth.exception';\nimport {\n  AccessToken,\n  AuthenticateWithSessionCookieFailedResponse,\n  AuthenticateWithSessionCookieFailureReason,\n  AuthenticateWithSessionCookieSuccessResponse,\n  AuthenticationResponse,\n  RefreshSessionFailureReason,\n  RefreshSessionResponse,\n  SessionCookieData,\n} from './interfaces';\nimport { UserManagement } from './user-management';\nimport { unsealData } from '../common/crypto/seal';\nimport { getJose } from '../utils/jose';\n\ntype RefreshOptions = {\n  cookiePassword?: string;\n  organizationId?: string;\n};\n\nexport class CookieSession {\n  private userManagement: UserManagement;\n  private cookiePassword: string;\n  private sessionData: string;\n\n  constructor(\n    userManagement: UserManagement,\n    sessionData: string,\n    cookiePassword: string,\n  ) {\n    if (!cookiePassword) {\n      throw new Error('cookiePassword is required');\n    }\n\n    this.userManagement = userManagement;\n    this.cookiePassword = cookiePassword;\n    this.sessionData = sessionData;\n  }\n\n  /**\n   * Authenticates a user with a session cookie.\n   *\n   * @returns An object indicating whether the authentication was successful or not. If successful, it will include the user's session data.\n   */\n  async authenticate(): Promise<\n    | AuthenticateWithSessionCookieSuccessResponse\n    | AuthenticateWithSessionCookieFailedResponse\n  > {\n    if (!this.sessionData) {\n      return {\n        authenticated: false,\n        reason:\n          AuthenticateWithSessionCookieFailureReason.NO_SESSION_COOKIE_PROVIDED,\n      };\n    }\n\n    // unsealData returns {} for known seal errors (expired, bad hmac, etc.)\n    // Unknown errors propagate - don't catch them as \"invalid session\"\n    const session = await unsealData<SessionCookieData>(this.sessionData, {\n      password: this.cookiePassword,\n    });\n\n    if (!session.accessToken) {\n      return {\n        authenticated: false,\n        reason:\n          AuthenticateWithSessionCookieFailureReason.INVALID_SESSION_COOKIE,\n      };\n    }\n\n    if (!(await this.isValidJwt(session.accessToken))) {\n      return {\n        authenticated: false,\n        reason: AuthenticateWithSessionCookieFailureReason.INVALID_JWT,\n      };\n    }\n\n    const { decodeJwt } = await getJose();\n\n    const {\n      sid: sessionId,\n      org_id: organizationId,\n      role,\n      roles,\n      permissions,\n      entitlements,\n      feature_flags: featureFlags,\n    } = decodeJwt<AccessToken>(session.accessToken);\n\n    return {\n      authenticated: true,\n      sessionId,\n      organizationId,\n      role,\n      roles,\n      permissions,\n      entitlements,\n      featureFlags,\n      user: session.user,\n      authenticationMethod: session.authenticationMethod,\n      impersonator: session.impersonator,\n      accessToken: session.accessToken,\n    };\n  }\n\n  /**\n   * Refreshes the user's session.\n   *\n   * @param options - Optional options for refreshing the session.\n   * @param options.cookiePassword - The password to use for the new session cookie.\n   * @param options.organizationId - The organization ID to use for the new session cookie.\n   * @returns An object indicating whether the refresh was successful or not. If successful, it will include the new sealed session data.\n   */\n  async refresh(options: RefreshOptions = {}): Promise<RefreshSessionResponse> {\n    const { decodeJwt } = await getJose();\n    const session = await unsealData<SessionCookieData>(this.sessionData, {\n      password: this.cookiePassword,\n    });\n\n    if (!session.refreshToken || !session.user) {\n      return {\n        authenticated: false,\n        reason: RefreshSessionFailureReason.INVALID_SESSION_COOKIE,\n      };\n    }\n\n    const { org_id: organizationIdFromAccessToken } = decodeJwt<AccessToken>(\n      session.accessToken,\n    );\n\n    try {\n      const cookiePassword = options.cookiePassword ?? this.cookiePassword;\n\n      const authenticationResponse =\n        await this.userManagement.authenticateWithRefreshToken({\n          clientId: this.userManagement.clientId as string,\n          refreshToken: session.refreshToken,\n          organizationId:\n            options.organizationId ?? organizationIdFromAccessToken,\n          session: {\n            // We want to store the new sealed session in this class instance, so this always needs to be true\n            sealSession: true,\n            cookiePassword,\n          },\n        });\n\n      // Update the password if a new one was provided\n      if (options.cookiePassword) {\n        this.cookiePassword = options.cookiePassword;\n      }\n\n      this.sessionData = authenticationResponse.sealedSession as string;\n\n      const {\n        sid: sessionId,\n        org_id: organizationId,\n        role,\n        roles,\n        permissions,\n        entitlements,\n        feature_flags: featureFlags,\n      } = decodeJwt<AccessToken>(authenticationResponse.accessToken);\n\n      // TODO: Returning `session` here means there's some duplicated data.\n      // Slim down the return type in a future major version.\n      return {\n        authenticated: true,\n        sealedSession: authenticationResponse.sealedSession,\n        session: authenticationResponse as AuthenticationResponse,\n        authenticationMethod: authenticationResponse.authenticationMethod,\n        sessionId,\n        organizationId,\n        role,\n        roles,\n        permissions,\n        entitlements,\n        featureFlags,\n        user: session.user,\n        impersonator: session.impersonator,\n      };\n    } catch (error) {\n      if (\n        error instanceof OauthException &&\n        // TODO: Add additional known errors and remove re-throw\n        (error.error === RefreshSessionFailureReason.INVALID_GRANT ||\n          error.error === RefreshSessionFailureReason.MFA_ENROLLMENT ||\n          error.error === RefreshSessionFailureReason.SSO_REQUIRED)\n      ) {\n        return {\n          authenticated: false,\n          reason: error.error,\n        };\n      }\n\n      throw error;\n    }\n  }\n\n  /**\n   * Gets the URL to redirect the user to for logging out.\n   *\n   * @returns The URL to redirect the user to for logging out.\n   */\n  async getLogoutUrl({\n    returnTo,\n  }: { returnTo?: string } = {}): Promise<string> {\n    const authenticationResponse = await this.authenticate();\n\n    if (!authenticationResponse.authenticated) {\n      const { reason } = authenticationResponse;\n      throw new Error(`Failed to extract session ID for logout URL: ${reason}`);\n    }\n\n    return this.userManagement.getLogoutUrl({\n      sessionId: authenticationResponse.sessionId,\n      returnTo,\n    });\n  }\n\n  private async isValidJwt(accessToken: string): Promise<boolean> {\n    const { jwtVerify } = await getJose();\n    const jwks = await this.userManagement.getJWKS();\n    if (!jwks) {\n      throw new Error(\n        'Missing client ID. Did you provide it when initializing WorkOS?',\n      );\n    }\n\n    try {\n      await jwtVerify(accessToken, jwks);\n      return true;\n    } catch (e) {\n      // Only treat as invalid JWT if it's an actual JWT/JWS error from jose\n      // Network errors, crypto failures, etc. should propagate\n      if (\n        e instanceof Error &&\n        'code' in e &&\n        typeof e.code === 'string' &&\n        (e.code.startsWith('ERR_JWT_') || e.code.startsWith('ERR_JWS_'))\n      ) {\n        return false;\n      }\n      throw e;\n    }\n  }\n}\n"],"mappings":";;;;;;;AAoBA,IAAa,gBAAb,MAA2B;CACzB,AAAQ;CACR,AAAQ;CACR,AAAQ;CAER,YACE,gBACA,aACA,gBACA;AACA,MAAI,CAAC,eACH,OAAM,IAAI,MAAM,6BAA6B;AAG/C,OAAK,iBAAiB;AACtB,OAAK,iBAAiB;AACtB,OAAK,cAAc;;;;;;;CAQrB,MAAM,eAGJ;AACA,MAAI,CAAC,KAAK,YACR,QAAO;GACL,eAAe;GACf,QACEA,yHAA2C;GAC9C;EAKH,MAAM,UAAU,MAAMC,sCAA8B,KAAK,aAAa,EACpE,UAAU,KAAK,gBAChB,CAAC;AAEF,MAAI,CAAC,QAAQ,YACX,QAAO;GACL,eAAe;GACf,QACED,yHAA2C;GAC9C;AAGH,MAAI,CAAE,MAAM,KAAK,WAAW,QAAQ,YAAY,CAC9C,QAAO;GACL,eAAe;GACf,QAAQA,yHAA2C;GACpD;EAGH,MAAM,EAAE,cAAc,MAAME,4BAAS;EAErC,MAAM,EACJ,KAAK,WACL,QAAQ,gBACR,MACA,OACA,aACA,cACA,eAAe,iBACb,UAAuB,QAAQ,YAAY;AAE/C,SAAO;GACL,eAAe;GACf;GACA;GACA;GACA;GACA;GACA;GACA;GACA,MAAM,QAAQ;GACd,sBAAsB,QAAQ;GAC9B,cAAc,QAAQ;GACtB,aAAa,QAAQ;GACtB;;;;;;;;;;CAWH,MAAM,QAAQ,UAA0B,EAAE,EAAmC;EAC3E,MAAM,EAAE,cAAc,MAAMA,4BAAS;EACrC,MAAM,UAAU,MAAMD,sCAA8B,KAAK,aAAa,EACpE,UAAU,KAAK,gBAChB,CAAC;AAEF,MAAI,CAAC,QAAQ,gBAAgB,CAAC,QAAQ,KACpC,QAAO;GACL,eAAe;GACf,QAAQE,uGAA4B;GACrC;EAGH,MAAM,EAAE,QAAQ,kCAAkC,UAChD,QAAQ,YACT;AAED,MAAI;GACF,MAAM,iBAAiB,QAAQ,kBAAkB,KAAK;GAEtD,MAAM,yBACJ,MAAM,KAAK,eAAe,6BAA6B;IACrD,UAAU,KAAK,eAAe;IAC9B,cAAc,QAAQ;IACtB,gBACE,QAAQ,kBAAkB;IAC5B,SAAS;KAEP,aAAa;KACb;KACD;IACF,CAAC;AAGJ,OAAI,QAAQ,eACV,MAAK,iBAAiB,QAAQ;AAGhC,QAAK,cAAc,uBAAuB;GAE1C,MAAM,EACJ,KAAK,WACL,QAAQ,gBACR,MACA,OACA,aACA,cACA,eAAe,iBACb,UAAuB,uBAAuB,YAAY;AAI9D,UAAO;IACL,eAAe;IACf,eAAe,uBAAuB;IACtC,SAAS;IACT,sBAAsB,uBAAuB;IAC7C;IACA;IACA;IACA;IACA;IACA;IACA;IACA,MAAM,QAAQ;IACd,cAAc,QAAQ;IACvB;WACM,OAAO;AACd,OACE,iBAAiBC,6DAEhB,MAAM,UAAUD,uGAA4B,iBAC3C,MAAM,UAAUA,uGAA4B,kBAC5C,MAAM,UAAUA,uGAA4B,cAE9C,QAAO;IACL,eAAe;IACf,QAAQ,MAAM;IACf;AAGH,SAAM;;;;;;;;CASV,MAAM,aAAa,EACjB,aACyB,EAAE,EAAmB;EAC9C,MAAM,yBAAyB,MAAM,KAAK,cAAc;AAExD,MAAI,CAAC,uBAAuB,eAAe;GACzC,MAAM,EAAE,WAAW;AACnB,SAAM,IAAI,MAAM,gDAAgD,SAAS;;AAG3E,SAAO,KAAK,eAAe,aAAa;GACtC,WAAW,uBAAuB;GAClC;GACD,CAAC;;CAGJ,MAAc,WAAW,aAAuC;EAC9D,MAAM,EAAE,cAAc,MAAMD,4BAAS;EACrC,MAAM,OAAO,MAAM,KAAK,eAAe,SAAS;AAChD,MAAI,CAAC,KACH,OAAM,IAAI,MACR,kEACD;AAGH,MAAI;AACF,SAAM,UAAU,aAAa,KAAK;AAClC,UAAO;WACA,GAAG;AAGV,OACE,aAAa,SACb,UAAU,KACV,OAAO,EAAE,SAAS,aACjB,EAAE,KAAK,WAAW,WAAW,IAAI,EAAE,KAAK,WAAW,WAAW,EAE/D,QAAO;AAET,SAAM"}

package/lib/user-management/session.js

@@ -25,15 +25,7 @@ var CookieSession = class {
 			authenticated: false,
 			reason: AuthenticateWithSessionCookieFailureReason.NO_SESSION_COOKIE_PROVIDED
 		};
-		let session;
-		try {
-			session = await unsealData(this.sessionData, { password: this.cookiePassword });
-		} catch (e) {
-			return {
-				authenticated: false,
-				reason: AuthenticateWithSessionCookieFailureReason.INVALID_SESSION_COOKIE
-			};
-		}
+		const session = await unsealData(this.sessionData, { password: this.cookiePassword });
 		if (!session.accessToken) return {
 			authenticated: false,
 			reason: AuthenticateWithSessionCookieFailureReason.INVALID_SESSION_COOKIE
@@ -136,7 +128,8 @@ var CookieSession = class {
 			await jwtVerify(accessToken, jwks);
 			return true;
 		} catch (e) {
-			return false;
+			if (e instanceof Error && "code" in e && typeof e.code === "string" && (e.code.startsWith("ERR_JWT_") || e.code.startsWith("ERR_JWS_"))) return false;
+			throw e;
 		}
 	}
 };