@zuplo/runtime 6.70.23 → 6.70.25

package/out/types/index.d.ts

@@ -6106,16 +6106,24 @@ export declare const MTLSAuthInboundPolicy: InboundPolicyHandler<MTLSAuthInbound
  * The options for this policy.
  * @public
  */
-export declare interface MTLSAuthInboundPolicyOptions {
+export declare type MTLSAuthInboundPolicyOptions = (
+  | {
+      [k: string]: unknown;
+    }
+  | {
+      allowUnauthenticatedRequests: true;
+      [k: string]: unknown;
+    }
+) & {
   /**
    * Allows requests to continue even when mTLS verification fails, no client certificate is presented, or the certificate metadata cannot be parsed. Defaults to false.
    */
   allowUnauthenticatedRequests?: boolean;
   /**
-   * Optional fully qualified issuer distinguished name to require on the client certificate. When set, the policy rejects certificates whose parsed issuer DN does not match this string exactly. The expected format matches the parsed metadata issuer, e.g. "CN=example-ca, O=Example, C=US".
+   * Fully qualified issuer distinguished name to require on the client certificate. The policy rejects certificates whose parsed issuer DN does not match this string exactly. Required unless `allowUnauthenticatedRequests` is `true`. The expected format matches the parsed metadata issuer, e.g. "CN=example-ca, O=Example, C=US".
    */
   certIssuerDN?: string;
-}
+};
 
 /**
  * Parsed client certificate metadata attached by the mTLS auth policy.

package/package.json

@@ -1,7 +1,7 @@
 {
   "name": "@zuplo/runtime",
   "type": "module",
-  "version": "6.70.23",
+  "version": "6.70.25",
   "repository": "https://github.com/zuplo/zuplo",
   "author": "Zuplo, Inc.",
   "exports": {