npm - alepha - Versions diffs - 0.20.6 → 0.20.7 - Mend

alepha 0.20.6 → 0.20.7

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (243) hide show

package/AGENTS.md +0 -1
package/CLAUDE.md +0 -1
package/assets/agents-template.md +0 -1
package/dist/api/audits/index.browser.js +1 -0
package/dist/api/audits/index.browser.js.map +1 -1
package/dist/api/audits/index.d.ts +370 -355
package/dist/api/audits/index.d.ts.map +1 -1
package/dist/api/audits/index.js +1 -0
package/dist/api/audits/index.js.map +1 -1
package/dist/api/files/index.browser.js +1 -0
package/dist/api/files/index.browser.js.map +1 -1
package/dist/api/files/index.d.ts +179 -170
package/dist/api/files/index.d.ts.map +1 -1
package/dist/api/files/index.js +1 -0
package/dist/api/files/index.js.map +1 -1
package/dist/api/jobs/index.browser.js +7 -0
package/dist/api/jobs/index.browser.js.map +1 -1
package/dist/api/jobs/index.d.ts +271 -262
package/dist/api/jobs/index.d.ts.map +1 -1
package/dist/api/jobs/index.js +21 -3
package/dist/api/jobs/index.js.map +1 -1
package/dist/api/keys/index.d.ts +198 -192
package/dist/api/keys/index.d.ts.map +1 -1
package/dist/api/keys/index.js +1 -0
package/dist/api/keys/index.js.map +1 -1
package/dist/api/notifications/index.d.ts +246 -245
package/dist/api/notifications/index.d.ts.map +1 -1
package/dist/api/organizations/index.d.ts +100 -97
package/dist/api/organizations/index.d.ts.map +1 -1
package/dist/api/parameters/index.d.ts +323 -320
package/dist/api/parameters/index.d.ts.map +1 -1
package/dist/api/payments/index.d.ts +431 -376
package/dist/api/payments/index.d.ts.map +1 -1
package/dist/api/payments/index.js +202 -87
package/dist/api/payments/index.js.map +1 -1
package/dist/api/subscriptions/index.d.ts +1695 -0
package/dist/api/subscriptions/index.d.ts.map +1 -0
package/dist/api/subscriptions/index.js +1919 -0
package/dist/api/subscriptions/index.js.map +1 -0
package/dist/api/users/index.d.ts +863 -847
package/dist/api/users/index.d.ts.map +1 -1
package/dist/api/verifications/index.d.ts +126 -125
package/dist/api/verifications/index.d.ts.map +1 -1
package/dist/bucket/index.d.ts +3 -2
package/dist/bucket/index.d.ts.map +1 -1
package/dist/cache/core/index.d.ts +114 -4
package/dist/cache/core/index.d.ts.map +1 -1
package/dist/cache/core/index.js +181 -15
package/dist/cache/core/index.js.map +1 -1
package/dist/cache/core/index.workerd.js +181 -15
package/dist/cache/core/index.workerd.js.map +1 -1
package/dist/cache/database/index.d.ts +20 -19
package/dist/cache/database/index.d.ts.map +1 -1
package/dist/cache/redis/index.d.ts +3 -2
package/dist/cache/redis/index.d.ts.map +1 -1
package/dist/cli/core/index.d.ts +113 -129
package/dist/cli/core/index.d.ts.map +1 -1
package/dist/cli/core/index.js +75 -7
package/dist/cli/core/index.js.map +1 -1
package/dist/cli/devtools/index.d.ts +3 -2
package/dist/cli/devtools/index.d.ts.map +1 -1
package/dist/cli/platform/index.d.ts +346 -290
package/dist/cli/platform/index.d.ts.map +1 -1
package/dist/cli/platform/index.js +105 -6
package/dist/cli/platform/index.js.map +1 -1
package/dist/cli/vendor/index.d.ts +12 -11
package/dist/cli/vendor/index.d.ts.map +1 -1
package/dist/command/index.d.ts +5 -4
package/dist/command/index.d.ts.map +1 -1
package/dist/core/index.browser.js +1 -1
package/dist/core/index.browser.js.map +1 -1
package/dist/core/index.d.ts +119 -118
package/dist/core/index.d.ts.map +1 -1
package/dist/core/index.js +1 -1
package/dist/core/index.js.map +1 -1
package/dist/core/index.native.js +1 -1
package/dist/core/index.native.js.map +1 -1
package/dist/core/index.workerd.js +1 -1
package/dist/core/index.workerd.js.map +1 -1
package/dist/crypto/index.d.ts +3 -2
package/dist/crypto/index.d.ts.map +1 -1
package/dist/email/core/index.d.ts +3 -2
package/dist/email/core/index.d.ts.map +1 -1
package/dist/email/smtp/index.d.ts +7 -6
package/dist/email/smtp/index.d.ts.map +1 -1
package/dist/lock/core/index.d.ts +5 -4
package/dist/lock/core/index.d.ts.map +1 -1
package/dist/logger/index.d.ts +10 -9
package/dist/logger/index.d.ts.map +1 -1
package/dist/mcp/index.d.ts +9 -8
package/dist/mcp/index.d.ts.map +1 -1
package/dist/mcp/index.js +1 -1
package/dist/mcp/index.js.map +1 -1
package/dist/orm/core/index.browser.js +9 -3
package/dist/orm/core/index.browser.js.map +1 -1
package/dist/orm/core/index.bun.js +31 -10
package/dist/orm/core/index.bun.js.map +1 -1
package/dist/orm/core/index.d.ts +33 -14
package/dist/orm/core/index.d.ts.map +1 -1
package/dist/orm/core/index.js +31 -10
package/dist/orm/core/index.js.map +1 -1
package/dist/orm/postgres/index.d.ts +6 -5
package/dist/orm/postgres/index.d.ts.map +1 -1
package/dist/queue/core/index.d.ts +5 -4
package/dist/queue/core/index.d.ts.map +1 -1
package/dist/queue/redis/index.d.ts +3 -2
package/dist/queue/redis/index.d.ts.map +1 -1
package/dist/react/form/index.d.ts +5 -0
package/dist/react/form/index.d.ts.map +1 -1
package/dist/react/form/index.js +6 -4
package/dist/react/form/index.js.map +1 -1
package/dist/react/i18n/index.d.ts +2 -1
package/dist/react/i18n/index.d.ts.map +1 -1
package/dist/react/router/index.d.ts +206 -205
package/dist/react/router/index.d.ts.map +1 -1
package/dist/react/ui/index.d.ts +11 -11
package/dist/react/ui/index.d.ts.map +1 -1
package/dist/scheduler/index.d.ts +3 -2
package/dist/scheduler/index.d.ts.map +1 -1
package/dist/security/index.browser.js +29 -1
package/dist/security/index.browser.js.map +1 -1
package/dist/security/index.d.ts +82 -35
package/dist/security/index.d.ts.map +1 -1
package/dist/security/index.js +56 -3
package/dist/security/index.js.map +1 -1
package/dist/server/auth/index.d.ts +163 -158
package/dist/server/auth/index.d.ts.map +1 -1
package/dist/server/auth/index.js +16 -4
package/dist/server/auth/index.js.map +1 -1
package/dist/server/core/index.d.ts +35 -34
package/dist/server/core/index.d.ts.map +1 -1
package/dist/server/cors/index.d.ts +7 -6
package/dist/server/cors/index.d.ts.map +1 -1
package/dist/server/health/index.d.ts +16 -15
package/dist/server/health/index.d.ts.map +1 -1
package/dist/server/links/index.d.ts +51 -50
package/dist/server/links/index.d.ts.map +1 -1
package/dist/server/rate-limit/index.d.ts +6 -5
package/dist/server/rate-limit/index.d.ts.map +1 -1
package/dist/server/swagger/index.d.ts +2 -1
package/dist/server/swagger/index.d.ts.map +1 -1
package/dist/topic/redis/index.d.ts +3 -2
package/dist/topic/redis/index.d.ts.map +1 -1
package/package.json +16 -32
package/src/api/audits/entities/audits.ts +1 -0
package/src/api/files/entities/files.ts +1 -0
package/src/api/jobs/__tests__/$job.spec.ts +92 -40
package/src/api/jobs/entities/jobExecutionEntity.ts +1 -0
package/src/api/jobs/providers/JobProvider.ts +20 -5
package/src/api/jobs/schemas/jobConfigAtom.ts +5 -0
package/src/api/keys/entities/apiKeyEntity.ts +1 -0
package/src/api/payments/controllers/MockCheckoutController.ts +146 -0
package/src/api/payments/index.ts +3 -0
package/src/api/payments/providers/MemoryPaymentProvider.ts +9 -4
package/src/api/payments/providers/PaymentProvider.ts +25 -9
package/src/api/payments/services/PaymentService.ts +3 -0
package/src/api/subscriptions/__tests__/BillingService.spec.ts +218 -0
package/src/api/subscriptions/__tests__/SubscriptionService.spec.ts +278 -0
package/src/api/subscriptions/controllers/AdminSubscriptionController.ts +212 -0
package/src/api/subscriptions/controllers/SubscriptionController.ts +189 -0
package/src/api/subscriptions/entities/subscriptionEvents.ts +54 -0
package/src/api/subscriptions/entities/subscriptions.ts +68 -0
package/src/api/subscriptions/index.ts +133 -0
package/src/api/subscriptions/jobs/SubscriptionJobs.ts +382 -0
package/src/api/subscriptions/middleware/$requireLimit.ts +50 -0
package/src/api/subscriptions/middleware/$requirePlan.ts +49 -0
package/src/api/subscriptions/notifications/SubscriptionNotifications.ts +110 -0
package/src/api/subscriptions/schemas/cancelSubscriptionSchema.ts +8 -0
package/src/api/subscriptions/schemas/changePlanSchema.ts +9 -0
package/src/api/subscriptions/schemas/createSubscriptionSchema.ts +11 -0
package/src/api/subscriptions/schemas/entitlementsSchema.ts +21 -0
package/src/api/subscriptions/schemas/mrrSchema.ts +13 -0
package/src/api/subscriptions/schemas/planDefinitionSchema.ts +71 -0
package/src/api/subscriptions/schemas/planResourceSchema.ts +25 -0
package/src/api/subscriptions/schemas/subscriptionEventResourceSchema.ts +8 -0
package/src/api/subscriptions/schemas/subscriptionQuerySchema.ts +19 -0
package/src/api/subscriptions/schemas/subscriptionResourceSchema.ts +6 -0
package/src/api/subscriptions/schemas/subscriptionSettingsSchema.ts +32 -0
package/src/api/subscriptions/schemas/subscriptionStatsSchema.ts +23 -0
package/src/api/subscriptions/services/BillingService.ts +437 -0
package/src/api/subscriptions/services/SubscriptionConfig.ts +56 -0
package/src/api/subscriptions/services/SubscriptionService.ts +867 -0
package/src/api/subscriptions/services/UsageService.ts +118 -0
package/src/cache/core/__tests__/$cache.memory.spec.ts +450 -0
package/src/cache/core/__tests__/$cache.swr.spec.ts +394 -0
package/src/cache/core/index.ts +16 -0
package/src/cache/core/primitives/$cache.ts +347 -21
package/src/cli/core/tasks/BuildCloudflareTask.ts +16 -0
package/src/cli/core/templates/agentMd.ts +39 -4
package/src/cli/core/templates/biomeJson.ts +25 -1
package/src/cli/core/templates/saasAdminLayoutTsx.ts +2 -2
package/src/cli/platform/__tests__/CloudflareAdapter.spec.ts +117 -0
package/src/cli/platform/adapters/CloudflareAdapter.ts +104 -7
package/src/cli/platform/atoms/platformOptions.ts +13 -0
package/src/cli/platform/schemas/platform.ts +1 -0
package/src/cli/platform/services/CloudflareApi.ts +61 -0
package/src/cli/platform/services/PlatformOrchestrator.ts +9 -4
package/src/core/__tests__/$module.spec.ts +2 -2
package/src/core/primitives/$module.ts +4 -4
package/src/mcp/providers/McpServerProvider.ts +1 -1
package/src/orm/core/providers/DatabaseTypeProvider.ts +9 -3
package/src/orm/core/providers/drivers/DatabaseProvider.ts +1 -1
package/src/orm/core/schemas/insertSchema.ts +10 -2
package/src/orm/core/services/Repository.ts +27 -7
package/src/react/form/hooks/useFormState.ts +8 -1
package/src/react/form/index.ts +10 -1
package/src/react/form/services/FormModel.ts +9 -3
package/src/security/atoms/currentTenantAtom.ts +34 -0
package/src/security/index.browser.ts +1 -0
package/src/security/index.ts +12 -1
package/src/security/primitives/$issuer.ts +17 -1
package/src/security/providers/SecurityProvider.ts +37 -0
package/src/server/auth/__tests__/validateRedirectUri.spec.ts +78 -0
package/src/server/auth/providers/ServerAuthProvider.ts +21 -5
package/tsconfig.base.json +2 -1
package/dist/react/websocket/index.d.ts +0 -117
package/dist/react/websocket/index.d.ts.map +0 -1
package/dist/react/websocket/index.js +0 -108
package/dist/react/websocket/index.js.map +0 -1
package/dist/websocket/index.browser.js +0 -848
package/dist/websocket/index.browser.js.map +0 -1
package/dist/websocket/index.d.ts +0 -876
package/dist/websocket/index.d.ts.map +0 -1
package/dist/websocket/index.js +0 -1185
package/dist/websocket/index.js.map +0 -1
package/src/react/websocket/hooks/useRoom.tsx +0 -251
package/src/react/websocket/index.ts +0 -7
package/src/websocket/__tests__/$channel.spec.ts +0 -30
package/src/websocket/__tests__/$websocket-new.spec.ts +0 -195
package/src/websocket/__tests__/RoomManager.spec.ts +0 -146
package/src/websocket/__tests__/websocket-integration.spec.ts +0 -951
package/src/websocket/errors/WebSocketError.ts +0 -34
package/src/websocket/index.browser.ts +0 -25
package/src/websocket/index.shared.ts +0 -8
package/src/websocket/index.ts +0 -85
package/src/websocket/interfaces/WebSocketInterfaces.ts +0 -252
package/src/websocket/primitives/$channel.ts +0 -131
package/src/websocket/primitives/$websocket.ts +0 -107
package/src/websocket/providers/NodeWebSocketServerProvider.ts +0 -617
package/src/websocket/providers/WebSocketServerProvider.ts +0 -56
package/src/websocket/services/RoomManager.ts +0 -160
package/src/websocket/services/WebSocketClient.ts +0 -642
package/src/websocket/services/WebSocketTopicService.ts +0 -108

package/dist/api/users/index.d.ts CHANGED Viewed

@@ -52,39 +52,39 @@ type FieldRequirement = "none" | "optional" | "required";
  *   collision behavior.
  */
 type UsernameFieldRequirement = FieldRequirement | "email";
-declare const realmAuthSettingsAtom: _$alepha.Atom<_$alepha.TObject<{
-  displayName: _$alepha.TOptional<_$alepha.TString>;
-  description: _$alepha.TOptional<_$alepha.TString>;
-  logoUrl: _$alepha.TOptional<_$alepha.TString>;
-  registrationAllowed: _$alepha.TBoolean;
-  email: _$alepha.TUnion<[_$typebox.TLiteral<"none">, _$typebox.TLiteral<"optional">, _$typebox.TLiteral<"required">]>;
-  username: _$alepha.TUnion<[_$typebox.TLiteral<"none">, _$typebox.TLiteral<"optional">, _$typebox.TLiteral<"required">, _$typebox.TLiteral<"email">]>;
-  usernameRegExp: _$alepha.TString;
-  usernameBlocklist: _$alepha.TArray<_$alepha.TString>;
-  phoneNumber: _$alepha.TUnion<[_$typebox.TLiteral<"none">, _$typebox.TLiteral<"optional">, _$typebox.TLiteral<"required">]>;
-  verifyEmailRequired: _$alepha.TBoolean;
-  verifyPhoneRequired: _$alepha.TBoolean;
-  firstNameLastName: _$alepha.TUnion<[_$typebox.TLiteral<"none">, _$typebox.TLiteral<"optional">, _$typebox.TLiteral<"required">]>;
-  resetPasswordAllowed: _$alepha.TBoolean;
-  captchaRequired: _$alepha.TBoolean;
-  adminEmails: _$alepha.TArray<_$alepha.TString>;
-  adminUsernames: _$alepha.TArray<_$alepha.TString>;
-  defaultRoles: _$alepha.TArray<_$alepha.TString>;
-  verifyEmailUrl: _$alepha.TOptional<_$alepha.TString>;
-  passwordPolicy: _$alepha.TObject<{
-    minLength: _$alepha.TInteger;
-    requireUppercase: _$alepha.TBoolean;
-    requireLowercase: _$alepha.TBoolean;
-    requireNumbers: _$alepha.TBoolean;
-    requireSpecialCharacters: _$alepha.TBoolean;
+declare const realmAuthSettingsAtom: _$alepha.Atom<_$typebox.TObject<{
+  displayName: _$typebox.TOptional<_$typebox.TString>;
+  description: _$typebox.TOptional<_$typebox.TString>;
+  logoUrl: _$typebox.TOptional<_$typebox.TString>;
+  registrationAllowed: _$typebox.TBoolean;
+  email: _$typebox.TUnion<[_$typebox.TLiteral<"none">, _$typebox.TLiteral<"optional">, _$typebox.TLiteral<"required">]>;
+  username: _$typebox.TUnion<[_$typebox.TLiteral<"none">, _$typebox.TLiteral<"optional">, _$typebox.TLiteral<"required">, _$typebox.TLiteral<"email">]>;
+  usernameRegExp: _$typebox.TString;
+  usernameBlocklist: _$typebox.TArray<_$typebox.TString>;
+  phoneNumber: _$typebox.TUnion<[_$typebox.TLiteral<"none">, _$typebox.TLiteral<"optional">, _$typebox.TLiteral<"required">]>;
+  verifyEmailRequired: _$typebox.TBoolean;
+  verifyPhoneRequired: _$typebox.TBoolean;
+  firstNameLastName: _$typebox.TUnion<[_$typebox.TLiteral<"none">, _$typebox.TLiteral<"optional">, _$typebox.TLiteral<"required">]>;
+  resetPasswordAllowed: _$typebox.TBoolean;
+  captchaRequired: _$typebox.TBoolean;
+  adminEmails: _$typebox.TArray<_$typebox.TString>;
+  adminUsernames: _$typebox.TArray<_$typebox.TString>;
+  defaultRoles: _$typebox.TArray<_$typebox.TString>;
+  verifyEmailUrl: _$typebox.TOptional<_$typebox.TString>;
+  passwordPolicy: _$typebox.TObject<{
+    minLength: _$typebox.TInteger;
+    requireUppercase: _$typebox.TBoolean;
+    requireLowercase: _$typebox.TBoolean;
+    requireNumbers: _$typebox.TBoolean;
+    requireSpecialCharacters: _$typebox.TBoolean;
   }>;
-  loginRateLimit: _$alepha.TObject<{
-    ipMaxAttempts: _$alepha.TInteger;
-    accountMaxAttempts: _$alepha.TInteger;
-    windowMs: _$alepha.TInteger;
+  loginRateLimit: _$typebox.TObject<{
+    ipMaxAttempts: _$typebox.TInteger;
+    accountMaxAttempts: _$typebox.TInteger;
+    windowMs: _$typebox.TInteger;
   }>;
-  refreshToken: _$alepha.TObject<{
-    expirationIdle: _$alepha.TOptional<_$alepha.TInteger>;
+  refreshToken: _$typebox.TObject<{
+    expirationIdle: _$typebox.TOptional<_$typebox.TInteger>;
   }>;
 }>, "alepha.api.users.realmAuthSettings">;
 type RealmAuthSettings = Static<typeof realmAuthSettingsAtom.schema>;
@@ -120,9 +120,10 @@ declare class UserAudits {
     type: string;
     id: string;
     createdAt: string;
+    organizationId: string;
+    success: boolean;
     action: string;
     severity: "info" | "warning" | "critical";
-    success: boolean;
   }>;
   /**
    * Record an authentication-related audit event.
@@ -143,9 +144,10 @@ declare class UserAudits {
     type: string;
     id: string;
     createdAt: string;
+    organizationId: string;
+    success: boolean;
     action: string;
     severity: "info" | "warning" | "critical";
-    success: boolean;
   }>;
   /**
    * Record a generic audit event.
@@ -166,9 +168,10 @@ declare class UserAudits {
     type: string;
     id: string;
     createdAt: string;
+    organizationId: string;
+    success: boolean;
     action: string;
     severity: "info" | "warning" | "critical";
-    success: boolean;
   }>;
 }
 //#endregion
@@ -203,6 +206,8 @@ type TObjectInsert<T extends TObject> = TObject<{ [K in keyof T["properties"] as
   [PG_GENERATED]: any;
 } ? never : K]: T["properties"][K] extends {
   [PG_DEFAULT]: any;
+} | {
+  [PG_ORGANIZATION]: any;
 } | {
   "~optional": true;
 } ? TOptional<T["properties"][K]> : T["properties"][K] }>;
@@ -6194,7 +6199,7 @@ declare abstract class DatabaseProvider {
    * Migration tracking table name, scoped by schema.
    *
    * Returns `migrations_{schema}` so that multiple schemas sharing the same
-   * database each get their own migration history (e.g. `migrations_roadmap`,
+   * database each get their own migration history (e.g. `migrations_lore`,
    * `migrations_public`).
    */
   get migrationsTable(): string;
@@ -6645,6 +6650,17 @@ declare abstract class Repository$1<T extends TObject> {
   protected deletedAt(): PgAttrField | undefined;
   protected withOrganization(where: PgQueryWhereOrSQL<T>): PgQueryWhereOrSQL<T>;
   protected stampOrganization(data: any): void;
+  /**
+   * Resolve the value used for `PG_ORGANIZATION` scoping.
+   *
+   * Priority:
+   * 1. Request-bound tenant (`currentTenantAtom`) — set by an app-level
+   *    middleware from the request `Host`. Lets cross-tenant users (admins,
+   *    agency operators) be scoped to the tenant they are acting in rather
+   *    than the one they belong to.
+   * 2. Authenticated user's `organization` — the legacy single-tenant case.
+   */
+  protected resolveOrganizationValue(): string | undefined;
   protected organizationField(): PgAttrField | undefined;
   /**
    * Convert something to valid Pg Insert Value.
@@ -6747,8 +6763,8 @@ type WithSQL<T> = { [P in keyof T]?: T[P] | SQL };
  * - `d1://BINDING_NAME` — Cloudflare D1
  * - `hyperdrive://BINDING_NAME` — Cloudflare Hyperdrive
  */
-declare const databaseEnvSchema: _$alepha.TObject<{
-  DATABASE_URL: _$alepha.TOptional<_$alepha.TString>;
+declare const databaseEnvSchema: _$typebox.TObject<{
+  DATABASE_URL: _$typebox.TOptional<_$typebox.TString>;
   /**
    * Enable or disable push-based schema synchronization (drizzle-kit push).
    *
@@ -6756,68 +6772,68 @@ declare const databaseEnvSchema: _$alepha.TObject<{
    * Set to `false` in development to skip automatic schema sync
    * (e.g. when managing migrations manually).
    */
-  DATABASE_SYNC: _$alepha.TOptional<_$alepha.TBoolean>;
+  DATABASE_SYNC: _$typebox.TOptional<_$typebox.TBoolean>;
 }>;
 declare module "alepha" {
   interface Env extends Partial<Static<typeof databaseEnvSchema>> {}
 } //# sourceMappingURL=databaseEnvSchema.d.ts.map
 //#endregion
 //#region ../../src/api/users/entities/identities.d.ts
-declare const identities: _$alepha_orm0.EntityPrimitive<_$alepha.TObject<{
-  id: _$alepha_orm0.PgAttr<_$alepha_orm0.PgAttr<_$alepha.TString, typeof _$alepha_orm0.PG_PRIMARY_KEY>, typeof _$alepha_orm0.PG_DEFAULT>;
-  version: _$alepha_orm0.PgAttr<_$alepha_orm0.PgAttr<_$alepha.TInteger, typeof _$alepha_orm0.PG_VERSION>, typeof _$alepha_orm0.PG_DEFAULT>;
-  createdAt: _$alepha_orm0.PgAttr<_$alepha_orm0.PgAttr<_$alepha.TString, typeof _$alepha_orm0.PG_CREATED_AT>, typeof _$alepha_orm0.PG_DEFAULT>;
-  updatedAt: _$alepha_orm0.PgAttr<_$alepha_orm0.PgAttr<_$alepha.TString, typeof _$alepha_orm0.PG_UPDATED_AT>, typeof _$alepha_orm0.PG_DEFAULT>;
-  userId: _$alepha_orm0.PgAttr<_$alepha.TString, typeof _$alepha_orm0.PG_REF>;
-  password: _$alepha.TOptional<_$alepha.TString>;
-  provider: _$alepha.TString;
-  providerUserId: _$alepha.TOptional<_$alepha.TString>;
-  providerData: _$alepha.TOptional<_$alepha.TRecord<string, _$alepha.TAny>>;
+declare const identities: _$alepha_orm0.EntityPrimitive<_$typebox.TObject<{
+  id: _$alepha_orm0.PgAttr<_$alepha_orm0.PgAttr<_$typebox.TString, typeof _$alepha_orm0.PG_PRIMARY_KEY>, typeof _$alepha_orm0.PG_DEFAULT>;
+  version: _$alepha_orm0.PgAttr<_$alepha_orm0.PgAttr<_$typebox.TInteger, typeof _$alepha_orm0.PG_VERSION>, typeof _$alepha_orm0.PG_DEFAULT>;
+  createdAt: _$alepha_orm0.PgAttr<_$alepha_orm0.PgAttr<_$typebox.TString, typeof _$alepha_orm0.PG_CREATED_AT>, typeof _$alepha_orm0.PG_DEFAULT>;
+  updatedAt: _$alepha_orm0.PgAttr<_$alepha_orm0.PgAttr<_$typebox.TString, typeof _$alepha_orm0.PG_UPDATED_AT>, typeof _$alepha_orm0.PG_DEFAULT>;
+  userId: _$alepha_orm0.PgAttr<_$typebox.TString, typeof _$alepha_orm0.PG_REF>;
+  password: _$typebox.TOptional<_$typebox.TString>;
+  provider: _$typebox.TString;
+  providerUserId: _$typebox.TOptional<_$typebox.TString>;
+  providerData: _$typebox.TOptional<_$typebox.TRecord<string, _$typebox.TAny>>;
 }>>;
 type IdentityEntity = Static<typeof identities.schema>;
 //#endregion
 //#region ../../src/api/users/entities/sessions.d.ts
-declare const sessions: _$alepha_orm0.EntityPrimitive<_$alepha.TObject<{
-  id: _$alepha_orm0.PgAttr<_$alepha_orm0.PgAttr<_$alepha.TString, typeof _$alepha_orm0.PG_PRIMARY_KEY>, typeof _$alepha_orm0.PG_DEFAULT>;
-  version: _$alepha_orm0.PgAttr<_$alepha_orm0.PgAttr<_$alepha.TInteger, typeof _$alepha_orm0.PG_VERSION>, typeof _$alepha_orm0.PG_DEFAULT>;
-  createdAt: _$alepha_orm0.PgAttr<_$alepha_orm0.PgAttr<_$alepha.TString, typeof _$alepha_orm0.PG_CREATED_AT>, typeof _$alepha_orm0.PG_DEFAULT>;
-  updatedAt: _$alepha_orm0.PgAttr<_$alepha_orm0.PgAttr<_$alepha.TString, typeof _$alepha_orm0.PG_UPDATED_AT>, typeof _$alepha_orm0.PG_DEFAULT>;
-  refreshToken: _$alepha.TString;
-  userId: _$alepha_orm0.PgAttr<_$alepha.TString, typeof _$alepha_orm0.PG_REF>;
-  expiresAt: _$alepha.TString;
+declare const sessions: _$alepha_orm0.EntityPrimitive<_$typebox.TObject<{
+  id: _$alepha_orm0.PgAttr<_$alepha_orm0.PgAttr<_$typebox.TString, typeof _$alepha_orm0.PG_PRIMARY_KEY>, typeof _$alepha_orm0.PG_DEFAULT>;
+  version: _$alepha_orm0.PgAttr<_$alepha_orm0.PgAttr<_$typebox.TInteger, typeof _$alepha_orm0.PG_VERSION>, typeof _$alepha_orm0.PG_DEFAULT>;
+  createdAt: _$alepha_orm0.PgAttr<_$alepha_orm0.PgAttr<_$typebox.TString, typeof _$alepha_orm0.PG_CREATED_AT>, typeof _$alepha_orm0.PG_DEFAULT>;
+  updatedAt: _$alepha_orm0.PgAttr<_$alepha_orm0.PgAttr<_$typebox.TString, typeof _$alepha_orm0.PG_UPDATED_AT>, typeof _$alepha_orm0.PG_DEFAULT>;
+  refreshToken: _$typebox.TString;
+  userId: _$alepha_orm0.PgAttr<_$typebox.TString, typeof _$alepha_orm0.PG_REF>;
+  expiresAt: _$typebox.TString;
   /**
    * Last time the session was used to refresh an access token.
    * Used by realm `refreshToken.expirationIdle` to invalidate idle sessions.
    * `null` on existing rows pre-migration — falls back to `createdAt`.
    */
-  lastUsedAt: _$alepha.TOptional<_$alepha.TString>;
-  ip: _$alepha.TOptional<_$alepha.TString>;
-  userAgent: _$alepha.TOptional<_$alepha.TObject<{
-    os: _$alepha.TString;
-    browser: _$alepha.TString;
-    device: _$alepha.TUnsafe<"MOBILE" | "DESKTOP" | "TABLET">;
+  lastUsedAt: _$typebox.TOptional<_$typebox.TString>;
+  ip: _$typebox.TOptional<_$typebox.TString>;
+  userAgent: _$typebox.TOptional<_$typebox.TObject<{
+    os: _$typebox.TString;
+    browser: _$typebox.TString;
+    device: _$typebox.TUnsafe<"MOBILE" | "DESKTOP" | "TABLET">;
   }>>;
 }>>;
 type SessionEntity = Static<typeof sessions.schema>;
 //#endregion
 //#region ../../src/api/users/entities/users.d.ts
 declare const DEFAULT_USER_REALM_NAME = "default";
-declare const users: _$alepha_orm0.EntityPrimitive<_$alepha.TObject<{
-  id: _$alepha_orm0.PgAttr<_$alepha_orm0.PgAttr<_$alepha.TString, typeof _$alepha_orm0.PG_PRIMARY_KEY>, typeof _$alepha_orm0.PG_DEFAULT>;
-  version: _$alepha_orm0.PgAttr<_$alepha_orm0.PgAttr<_$alepha.TInteger, typeof _$alepha_orm0.PG_VERSION>, typeof _$alepha_orm0.PG_DEFAULT>;
-  createdAt: _$alepha_orm0.PgAttr<_$alepha_orm0.PgAttr<_$alepha.TString, typeof _$alepha_orm0.PG_CREATED_AT>, typeof _$alepha_orm0.PG_DEFAULT>;
-  updatedAt: _$alepha_orm0.PgAttr<_$alepha_orm0.PgAttr<_$alepha.TString, typeof _$alepha_orm0.PG_UPDATED_AT>, typeof _$alepha_orm0.PG_DEFAULT>;
-  realm: _$alepha_orm0.PgAttr<_$alepha.TString, typeof _$alepha_orm0.PG_DEFAULT>;
-  username: _$alepha.TOptional<_$alepha.TString>;
-  email: _$alepha.TOptional<_$alepha.TString>;
-  phoneNumber: _$alepha.TOptional<_$alepha.TString>;
-  roles: _$alepha_orm0.PgAttr<_$alepha.TArray<_$alepha.TString>, typeof _$alepha_orm0.PG_DEFAULT>;
-  firstName: _$alepha.TOptional<_$alepha.TString>;
-  lastName: _$alepha.TOptional<_$alepha.TString>;
-  picture: _$alepha.TOptional<_$alepha.TString>;
-  enabled: _$alepha_orm0.PgAttr<_$alepha.TBoolean, typeof _$alepha_orm0.PG_DEFAULT>;
-  emailVerified: _$alepha_orm0.PgAttr<_$alepha.TBoolean, typeof _$alepha_orm0.PG_DEFAULT>;
-  organizationId: _$alepha_orm0.PgAttr<_$alepha.TOptional<_$alepha.TString>, typeof _$alepha_orm0.PG_ORGANIZATION>;
+declare const users: _$alepha_orm0.EntityPrimitive<_$typebox.TObject<{
+  id: _$alepha_orm0.PgAttr<_$alepha_orm0.PgAttr<_$typebox.TString, typeof _$alepha_orm0.PG_PRIMARY_KEY>, typeof _$alepha_orm0.PG_DEFAULT>;
+  version: _$alepha_orm0.PgAttr<_$alepha_orm0.PgAttr<_$typebox.TInteger, typeof _$alepha_orm0.PG_VERSION>, typeof _$alepha_orm0.PG_DEFAULT>;
+  createdAt: _$alepha_orm0.PgAttr<_$alepha_orm0.PgAttr<_$typebox.TString, typeof _$alepha_orm0.PG_CREATED_AT>, typeof _$alepha_orm0.PG_DEFAULT>;
+  updatedAt: _$alepha_orm0.PgAttr<_$alepha_orm0.PgAttr<_$typebox.TString, typeof _$alepha_orm0.PG_UPDATED_AT>, typeof _$alepha_orm0.PG_DEFAULT>;
+  realm: _$alepha_orm0.PgAttr<_$typebox.TString, typeof _$alepha_orm0.PG_DEFAULT>;
+  username: _$typebox.TOptional<_$typebox.TString>;
+  email: _$typebox.TOptional<_$typebox.TString>;
+  phoneNumber: _$typebox.TOptional<_$typebox.TString>;
+  roles: _$alepha_orm0.PgAttr<_$typebox.TArray<_$typebox.TString>, typeof _$alepha_orm0.PG_DEFAULT>;
+  firstName: _$typebox.TOptional<_$typebox.TString>;
+  lastName: _$typebox.TOptional<_$typebox.TString>;
+  picture: _$typebox.TOptional<_$typebox.TString>;
+  enabled: _$alepha_orm0.PgAttr<_$typebox.TBoolean, typeof _$alepha_orm0.PG_DEFAULT>;
+  emailVerified: _$alepha_orm0.PgAttr<_$typebox.TBoolean, typeof _$alepha_orm0.PG_DEFAULT>;
+  organizationId: _$alepha_orm0.PgAttr<_$typebox.TString, typeof _$alepha_orm0.PG_ORGANIZATION>;
 }>>;
 type UserEntity = Static<typeof users.schema>;
 //#endregion
@@ -6944,49 +6960,49 @@ interface Realm {
 }
 declare class RealmProvider {
   protected readonly alepha: Alepha;
-  protected readonly defaultIdentities: Repository<_$alepha.TObject<{
-    id: _$alepha_orm0.PgAttr<_$alepha_orm0.PgAttr<_$alepha.TString, typeof _$alepha_orm0.PG_PRIMARY_KEY>, typeof _$alepha_orm0.PG_DEFAULT>;
-    version: _$alepha_orm0.PgAttr<_$alepha_orm0.PgAttr<_$alepha.TInteger, typeof _$alepha_orm0.PG_VERSION>, typeof _$alepha_orm0.PG_DEFAULT>;
-    createdAt: _$alepha_orm0.PgAttr<_$alepha_orm0.PgAttr<_$alepha.TString, typeof _$alepha_orm0.PG_CREATED_AT>, typeof _$alepha_orm0.PG_DEFAULT>;
-    updatedAt: _$alepha_orm0.PgAttr<_$alepha_orm0.PgAttr<_$alepha.TString, typeof _$alepha_orm0.PG_UPDATED_AT>, typeof _$alepha_orm0.PG_DEFAULT>;
-    userId: _$alepha_orm0.PgAttr<_$alepha.TString, typeof _$alepha_orm0.PG_REF>;
-    password: _$alepha.TOptional<_$alepha.TString>;
-    provider: _$alepha.TString;
-    providerUserId: _$alepha.TOptional<_$alepha.TString>;
-    providerData: _$alepha.TOptional<_$alepha.TRecord<string, _$alepha.TAny>>;
+  protected readonly defaultIdentities: Repository<_$typebox.TObject<{
+    id: _$alepha_orm0.PgAttr<_$alepha_orm0.PgAttr<_$typebox.TString, typeof _$alepha_orm0.PG_PRIMARY_KEY>, typeof _$alepha_orm0.PG_DEFAULT>;
+    version: _$alepha_orm0.PgAttr<_$alepha_orm0.PgAttr<_$typebox.TInteger, typeof _$alepha_orm0.PG_VERSION>, typeof _$alepha_orm0.PG_DEFAULT>;
+    createdAt: _$alepha_orm0.PgAttr<_$alepha_orm0.PgAttr<_$typebox.TString, typeof _$alepha_orm0.PG_CREATED_AT>, typeof _$alepha_orm0.PG_DEFAULT>;
+    updatedAt: _$alepha_orm0.PgAttr<_$alepha_orm0.PgAttr<_$typebox.TString, typeof _$alepha_orm0.PG_UPDATED_AT>, typeof _$alepha_orm0.PG_DEFAULT>;
+    userId: _$alepha_orm0.PgAttr<_$typebox.TString, typeof _$alepha_orm0.PG_REF>;
+    password: _$typebox.TOptional<_$typebox.TString>;
+    provider: _$typebox.TString;
+    providerUserId: _$typebox.TOptional<_$typebox.TString>;
+    providerData: _$typebox.TOptional<_$typebox.TRecord<string, _$typebox.TAny>>;
   }>>;
-  protected readonly defaultSessions: Repository<_$alepha.TObject<{
-    id: _$alepha_orm0.PgAttr<_$alepha_orm0.PgAttr<_$alepha.TString, typeof _$alepha_orm0.PG_PRIMARY_KEY>, typeof _$alepha_orm0.PG_DEFAULT>;
-    version: _$alepha_orm0.PgAttr<_$alepha_orm0.PgAttr<_$alepha.TInteger, typeof _$alepha_orm0.PG_VERSION>, typeof _$alepha_orm0.PG_DEFAULT>;
-    createdAt: _$alepha_orm0.PgAttr<_$alepha_orm0.PgAttr<_$alepha.TString, typeof _$alepha_orm0.PG_CREATED_AT>, typeof _$alepha_orm0.PG_DEFAULT>;
-    updatedAt: _$alepha_orm0.PgAttr<_$alepha_orm0.PgAttr<_$alepha.TString, typeof _$alepha_orm0.PG_UPDATED_AT>, typeof _$alepha_orm0.PG_DEFAULT>;
-    refreshToken: _$alepha.TString;
-    userId: _$alepha_orm0.PgAttr<_$alepha.TString, typeof _$alepha_orm0.PG_REF>;
-    expiresAt: _$alepha.TString;
-    lastUsedAt: _$alepha.TOptional<_$alepha.TString>;
-    ip: _$alepha.TOptional<_$alepha.TString>;
-    userAgent: _$alepha.TOptional<_$alepha.TObject<{
-      os: _$alepha.TString;
-      browser: _$alepha.TString;
-      device: _$alepha.TUnsafe<"MOBILE" | "DESKTOP" | "TABLET">;
+  protected readonly defaultSessions: Repository<_$typebox.TObject<{
+    id: _$alepha_orm0.PgAttr<_$alepha_orm0.PgAttr<_$typebox.TString, typeof _$alepha_orm0.PG_PRIMARY_KEY>, typeof _$alepha_orm0.PG_DEFAULT>;
+    version: _$alepha_orm0.PgAttr<_$alepha_orm0.PgAttr<_$typebox.TInteger, typeof _$alepha_orm0.PG_VERSION>, typeof _$alepha_orm0.PG_DEFAULT>;
+    createdAt: _$alepha_orm0.PgAttr<_$alepha_orm0.PgAttr<_$typebox.TString, typeof _$alepha_orm0.PG_CREATED_AT>, typeof _$alepha_orm0.PG_DEFAULT>;
+    updatedAt: _$alepha_orm0.PgAttr<_$alepha_orm0.PgAttr<_$typebox.TString, typeof _$alepha_orm0.PG_UPDATED_AT>, typeof _$alepha_orm0.PG_DEFAULT>;
+    refreshToken: _$typebox.TString;
+    userId: _$alepha_orm0.PgAttr<_$typebox.TString, typeof _$alepha_orm0.PG_REF>;
+    expiresAt: _$typebox.TString;
+    lastUsedAt: _$typebox.TOptional<_$typebox.TString>;
+    ip: _$typebox.TOptional<_$typebox.TString>;
+    userAgent: _$typebox.TOptional<_$typebox.TObject<{
+      os: _$typebox.TString;
+      browser: _$typebox.TString;
+      device: _$typebox.TUnsafe<"MOBILE" | "DESKTOP" | "TABLET">;
     }>>;
   }>>;
-  protected readonly defaultUsers: Repository<_$alepha.TObject<{
-    id: _$alepha_orm0.PgAttr<_$alepha_orm0.PgAttr<_$alepha.TString, typeof _$alepha_orm0.PG_PRIMARY_KEY>, typeof _$alepha_orm0.PG_DEFAULT>;
-    version: _$alepha_orm0.PgAttr<_$alepha_orm0.PgAttr<_$alepha.TInteger, typeof _$alepha_orm0.PG_VERSION>, typeof _$alepha_orm0.PG_DEFAULT>;
-    createdAt: _$alepha_orm0.PgAttr<_$alepha_orm0.PgAttr<_$alepha.TString, typeof _$alepha_orm0.PG_CREATED_AT>, typeof _$alepha_orm0.PG_DEFAULT>;
-    updatedAt: _$alepha_orm0.PgAttr<_$alepha_orm0.PgAttr<_$alepha.TString, typeof _$alepha_orm0.PG_UPDATED_AT>, typeof _$alepha_orm0.PG_DEFAULT>;
-    realm: _$alepha_orm0.PgAttr<_$alepha.TString, typeof _$alepha_orm0.PG_DEFAULT>;
-    username: _$alepha.TOptional<_$alepha.TString>;
-    email: _$alepha.TOptional<_$alepha.TString>;
-    phoneNumber: _$alepha.TOptional<_$alepha.TString>;
-    roles: _$alepha_orm0.PgAttr<_$alepha.TArray<_$alepha.TString>, typeof _$alepha_orm0.PG_DEFAULT>;
-    firstName: _$alepha.TOptional<_$alepha.TString>;
-    lastName: _$alepha.TOptional<_$alepha.TString>;
-    picture: _$alepha.TOptional<_$alepha.TString>;
-    enabled: _$alepha_orm0.PgAttr<_$alepha.TBoolean, typeof _$alepha_orm0.PG_DEFAULT>;
-    emailVerified: _$alepha_orm0.PgAttr<_$alepha.TBoolean, typeof _$alepha_orm0.PG_DEFAULT>;
-    organizationId: _$alepha_orm0.PgAttr<_$alepha.TOptional<_$alepha.TString>, typeof _$alepha_orm0.PG_ORGANIZATION>;
+  protected readonly defaultUsers: Repository<_$typebox.TObject<{
+    id: _$alepha_orm0.PgAttr<_$alepha_orm0.PgAttr<_$typebox.TString, typeof _$alepha_orm0.PG_PRIMARY_KEY>, typeof _$alepha_orm0.PG_DEFAULT>;
+    version: _$alepha_orm0.PgAttr<_$alepha_orm0.PgAttr<_$typebox.TInteger, typeof _$alepha_orm0.PG_VERSION>, typeof _$alepha_orm0.PG_DEFAULT>;
+    createdAt: _$alepha_orm0.PgAttr<_$alepha_orm0.PgAttr<_$typebox.TString, typeof _$alepha_orm0.PG_CREATED_AT>, typeof _$alepha_orm0.PG_DEFAULT>;
+    updatedAt: _$alepha_orm0.PgAttr<_$alepha_orm0.PgAttr<_$typebox.TString, typeof _$alepha_orm0.PG_UPDATED_AT>, typeof _$alepha_orm0.PG_DEFAULT>;
+    realm: _$alepha_orm0.PgAttr<_$typebox.TString, typeof _$alepha_orm0.PG_DEFAULT>;
+    username: _$typebox.TOptional<_$typebox.TString>;
+    email: _$typebox.TOptional<_$typebox.TString>;
+    phoneNumber: _$typebox.TOptional<_$typebox.TString>;
+    roles: _$alepha_orm0.PgAttr<_$typebox.TArray<_$typebox.TString>, typeof _$alepha_orm0.PG_DEFAULT>;
+    firstName: _$typebox.TOptional<_$typebox.TString>;
+    lastName: _$typebox.TOptional<_$typebox.TString>;
+    picture: _$typebox.TOptional<_$typebox.TString>;
+    enabled: _$alepha_orm0.PgAttr<_$typebox.TBoolean, typeof _$alepha_orm0.PG_DEFAULT>;
+    emailVerified: _$alepha_orm0.PgAttr<_$typebox.TBoolean, typeof _$alepha_orm0.PG_DEFAULT>;
+    organizationId: _$alepha_orm0.PgAttr<_$typebox.TString, typeof _$alepha_orm0.PG_ORGANIZATION>;
   }>>;
   protected realms: Map<string, Realm>;
   register(realmName: string, realmOptions?: RealmOptions): Realm;
@@ -7000,12 +7016,12 @@ declare class RealmProvider {
 }
 //#endregion
 //#region ../../src/api/users/schemas/identityQuerySchema.d.ts
-declare const identityQuerySchema: _$alepha.TObject<{
-  page: _$alepha.TOptional<_$alepha.TInteger>;
-  size: _$alepha.TOptional<_$alepha.TInteger>;
-  sort: _$alepha.TOptional<_$alepha.TString>;
-  userId: _$alepha.TOptional<_$alepha.TString>;
-  provider: _$alepha.TOptional<_$alepha.TString>;
+declare const identityQuerySchema: _$typebox.TObject<{
+  page: _$typebox.TOptional<_$typebox.TInteger>;
+  size: _$typebox.TOptional<_$typebox.TInteger>;
+  sort: _$typebox.TOptional<_$typebox.TString>;
+  userId: _$typebox.TOptional<_$typebox.TString>;
+  provider: _$typebox.TOptional<_$typebox.TString>;
 }>;
 type IdentityQuery = Static<typeof identityQuerySchema>;
 //#endregion
@@ -7015,16 +7031,16 @@ declare class IdentityService {
   protected readonly log: _$alepha_logger0.Logger;
   protected readonly realmProvider: RealmProvider;
   protected userAudits(realmName?: string): UserAudits | undefined;
-  identities(userRealmName?: string): _$alepha_orm0.Repository<_$alepha.TObject<{
-    id: _$alepha_orm0.PgAttr<_$alepha_orm0.PgAttr<_$alepha.TString, typeof _$alepha_orm0.PG_PRIMARY_KEY>, typeof _$alepha_orm0.PG_DEFAULT>;
-    version: _$alepha_orm0.PgAttr<_$alepha_orm0.PgAttr<_$alepha.TInteger, typeof _$alepha_orm0.PG_VERSION>, typeof _$alepha_orm0.PG_DEFAULT>;
-    createdAt: _$alepha_orm0.PgAttr<_$alepha_orm0.PgAttr<_$alepha.TString, typeof _$alepha_orm0.PG_CREATED_AT>, typeof _$alepha_orm0.PG_DEFAULT>;
-    updatedAt: _$alepha_orm0.PgAttr<_$alepha_orm0.PgAttr<_$alepha.TString, typeof _$alepha_orm0.PG_UPDATED_AT>, typeof _$alepha_orm0.PG_DEFAULT>;
-    userId: _$alepha_orm0.PgAttr<_$alepha.TString, typeof _$alepha_orm0.PG_REF>;
-    password: _$alepha.TOptional<_$alepha.TString>;
-    provider: _$alepha.TString;
-    providerUserId: _$alepha.TOptional<_$alepha.TString>;
-    providerData: _$alepha.TOptional<_$alepha.TRecord<string, _$alepha.TAny>>;
+  identities(userRealmName?: string): _$alepha_orm0.Repository<_$typebox.TObject<{
+    id: _$alepha_orm0.PgAttr<_$alepha_orm0.PgAttr<_$typebox.TString, typeof _$alepha_orm0.PG_PRIMARY_KEY>, typeof _$alepha_orm0.PG_DEFAULT>;
+    version: _$alepha_orm0.PgAttr<_$alepha_orm0.PgAttr<_$typebox.TInteger, typeof _$alepha_orm0.PG_VERSION>, typeof _$alepha_orm0.PG_DEFAULT>;
+    createdAt: _$alepha_orm0.PgAttr<_$alepha_orm0.PgAttr<_$typebox.TString, typeof _$alepha_orm0.PG_CREATED_AT>, typeof _$alepha_orm0.PG_DEFAULT>;
+    updatedAt: _$alepha_orm0.PgAttr<_$alepha_orm0.PgAttr<_$typebox.TString, typeof _$alepha_orm0.PG_UPDATED_AT>, typeof _$alepha_orm0.PG_DEFAULT>;
+    userId: _$alepha_orm0.PgAttr<_$typebox.TString, typeof _$alepha_orm0.PG_REF>;
+    password: _$typebox.TOptional<_$typebox.TString>;
+    provider: _$typebox.TString;
+    providerUserId: _$typebox.TOptional<_$typebox.TString>;
+    providerData: _$typebox.TOptional<_$typebox.TRecord<string, _$typebox.TAny>>;
   }>>;
   /**
    * Find identities with pagination and filtering.
@@ -7049,70 +7065,70 @@ declare class AdminIdentityController {
    * Find identities with pagination and filtering.
    */
   readonly findIdentities: _$alepha_server0.ActionPrimitiveFn<{
-    query: _$alepha.TObject<{
-      page: _$alepha.TOptional<_$alepha.TInteger>;
-      size: _$alepha.TOptional<_$alepha.TInteger>;
-      sort: _$alepha.TOptional<_$alepha.TString>;
-      userId: _$alepha.TOptional<_$alepha.TString>;
-      provider: _$alepha.TOptional<_$alepha.TString>;
-      userRealmName: _$alepha.TOptional<_$alepha.TString>;
-    }>;
-    response: _$alepha.TPage<_$alepha.TObject<{
-      id: PgAttr<PgAttr<_$alepha.TString, typeof PG_PRIMARY_KEY>, typeof PG_DEFAULT>;
-      version: PgAttr<PgAttr<_$alepha.TInteger, typeof PG_VERSION>, typeof PG_DEFAULT>;
-      createdAt: PgAttr<PgAttr<_$alepha.TString, typeof PG_CREATED_AT>, typeof PG_DEFAULT>;
-      updatedAt: PgAttr<PgAttr<_$alepha.TString, typeof PG_UPDATED_AT>, typeof PG_DEFAULT>;
-      userId: PgAttr<_$alepha.TString, typeof PG_REF>;
-      provider: _$alepha.TString;
-      providerUserId: _$alepha.TOptional<_$alepha.TString>;
-      providerData: _$alepha.TOptional<_$alepha.TRecord<string, _$alepha.TAny>>;
+    query: _$typebox.TObject<{
+      page: _$typebox.TOptional<_$typebox.TInteger>;
+      size: _$typebox.TOptional<_$typebox.TInteger>;
+      sort: _$typebox.TOptional<_$typebox.TString>;
+      userId: _$typebox.TOptional<_$typebox.TString>;
+      provider: _$typebox.TOptional<_$typebox.TString>;
+      userRealmName: _$typebox.TOptional<_$typebox.TString>;
+    }>;
+    response: _$alepha.TPage<_$typebox.TObject<{
+      id: PgAttr<PgAttr<_$typebox.TString, typeof PG_PRIMARY_KEY>, typeof PG_DEFAULT>;
+      version: PgAttr<PgAttr<_$typebox.TInteger, typeof PG_VERSION>, typeof PG_DEFAULT>;
+      createdAt: PgAttr<PgAttr<_$typebox.TString, typeof PG_CREATED_AT>, typeof PG_DEFAULT>;
+      updatedAt: PgAttr<PgAttr<_$typebox.TString, typeof PG_UPDATED_AT>, typeof PG_DEFAULT>;
+      userId: PgAttr<_$typebox.TString, typeof PG_REF>;
+      provider: _$typebox.TString;
+      providerUserId: _$typebox.TOptional<_$typebox.TString>;
+      providerData: _$typebox.TOptional<_$typebox.TRecord<string, _$typebox.TAny>>;
     }>>;
   }>;
   /**
    * Get an identity by ID.
    */
   readonly getIdentity: _$alepha_server0.ActionPrimitiveFn<{
-    params: _$alepha.TObject<{
-      id: _$alepha.TString;
-    }>;
-    query: _$alepha.TObject<{
-      userRealmName: _$alepha.TOptional<_$alepha.TString>;
-    }>;
-    response: _$alepha.TObject<{
-      id: PgAttr<PgAttr<_$alepha.TString, typeof PG_PRIMARY_KEY>, typeof PG_DEFAULT>;
-      version: PgAttr<PgAttr<_$alepha.TInteger, typeof PG_VERSION>, typeof PG_DEFAULT>;
-      createdAt: PgAttr<PgAttr<_$alepha.TString, typeof PG_CREATED_AT>, typeof PG_DEFAULT>;
-      updatedAt: PgAttr<PgAttr<_$alepha.TString, typeof PG_UPDATED_AT>, typeof PG_DEFAULT>;
-      userId: PgAttr<_$alepha.TString, typeof PG_REF>;
-      provider: _$alepha.TString;
-      providerUserId: _$alepha.TOptional<_$alepha.TString>;
-      providerData: _$alepha.TOptional<_$alepha.TRecord<string, _$alepha.TAny>>;
+    params: _$typebox.TObject<{
+      id: _$typebox.TString;
+    }>;
+    query: _$typebox.TObject<{
+      userRealmName: _$typebox.TOptional<_$typebox.TString>;
+    }>;
+    response: _$typebox.TObject<{
+      id: PgAttr<PgAttr<_$typebox.TString, typeof PG_PRIMARY_KEY>, typeof PG_DEFAULT>;
+      version: PgAttr<PgAttr<_$typebox.TInteger, typeof PG_VERSION>, typeof PG_DEFAULT>;
+      createdAt: PgAttr<PgAttr<_$typebox.TString, typeof PG_CREATED_AT>, typeof PG_DEFAULT>;
+      updatedAt: PgAttr<PgAttr<_$typebox.TString, typeof PG_UPDATED_AT>, typeof PG_DEFAULT>;
+      userId: PgAttr<_$typebox.TString, typeof PG_REF>;
+      provider: _$typebox.TString;
+      providerUserId: _$typebox.TOptional<_$typebox.TString>;
+      providerData: _$typebox.TOptional<_$typebox.TRecord<string, _$typebox.TAny>>;
     }>;
   }>;
   /**
    * Delete an identity.
    */
   readonly deleteIdentity: _$alepha_server0.ActionPrimitiveFn<{
-    params: _$alepha.TObject<{
-      id: _$alepha.TString;
+    params: _$typebox.TObject<{
+      id: _$typebox.TString;
     }>;
-    query: _$alepha.TObject<{
-      userRealmName: _$alepha.TOptional<_$alepha.TString>;
+    query: _$typebox.TObject<{
+      userRealmName: _$typebox.TOptional<_$typebox.TString>;
     }>;
-    response: _$alepha.TObject<{
-      ok: _$alepha.TBoolean;
-      id: _$alepha.TOptional<_$alepha.TUnion<[_$alepha.TString, _$alepha.TInteger]>>;
-      count: _$alepha.TOptional<_$alepha.TNumber>;
+    response: _$typebox.TObject<{
+      ok: _$typebox.TBoolean;
+      id: _$typebox.TOptional<_$typebox.TUnion<[_$typebox.TString, _$typebox.TInteger]>>;
+      count: _$typebox.TOptional<_$typebox.TNumber>;
     }>;
   }>;
 }
 //#endregion
 //#region ../../src/api/users/schemas/sessionQuerySchema.d.ts
-declare const sessionQuerySchema: _$alepha.TObject<{
-  page: _$alepha.TOptional<_$alepha.TInteger>;
-  size: _$alepha.TOptional<_$alepha.TInteger>;
-  sort: _$alepha.TOptional<_$alepha.TString>;
-  userId: _$alepha.TOptional<_$alepha.TString>;
+declare const sessionQuerySchema: _$typebox.TObject<{
+  page: _$typebox.TOptional<_$typebox.TInteger>;
+  size: _$typebox.TOptional<_$typebox.TInteger>;
+  sort: _$typebox.TOptional<_$typebox.TString>;
+  userId: _$typebox.TOptional<_$typebox.TString>;
 }>;
 type SessionQuery = Static<typeof sessionQuerySchema>;
 //#endregion
@@ -7120,20 +7136,20 @@ type SessionQuery = Static<typeof sessionQuerySchema>;
 declare class SessionCrudService {
   protected readonly log: _$alepha_logger0.Logger;
   protected readonly realmProvider: RealmProvider;
-  sessions(userRealmName?: string): _$alepha_orm0.Repository<_$alepha.TObject<{
-    id: _$alepha_orm0.PgAttr<_$alepha_orm0.PgAttr<_$alepha.TString, typeof _$alepha_orm0.PG_PRIMARY_KEY>, typeof _$alepha_orm0.PG_DEFAULT>;
-    version: _$alepha_orm0.PgAttr<_$alepha_orm0.PgAttr<_$alepha.TInteger, typeof _$alepha_orm0.PG_VERSION>, typeof _$alepha_orm0.PG_DEFAULT>;
-    createdAt: _$alepha_orm0.PgAttr<_$alepha_orm0.PgAttr<_$alepha.TString, typeof _$alepha_orm0.PG_CREATED_AT>, typeof _$alepha_orm0.PG_DEFAULT>;
-    updatedAt: _$alepha_orm0.PgAttr<_$alepha_orm0.PgAttr<_$alepha.TString, typeof _$alepha_orm0.PG_UPDATED_AT>, typeof _$alepha_orm0.PG_DEFAULT>;
-    refreshToken: _$alepha.TString;
-    userId: _$alepha_orm0.PgAttr<_$alepha.TString, typeof _$alepha_orm0.PG_REF>;
-    expiresAt: _$alepha.TString;
-    lastUsedAt: _$alepha.TOptional<_$alepha.TString>;
-    ip: _$alepha.TOptional<_$alepha.TString>;
-    userAgent: _$alepha.TOptional<_$alepha.TObject<{
-      os: _$alepha.TString;
-      browser: _$alepha.TString;
-      device: _$alepha.TUnsafe<"MOBILE" | "DESKTOP" | "TABLET">;
+  sessions(userRealmName?: string): _$alepha_orm0.Repository<_$typebox.TObject<{
+    id: _$alepha_orm0.PgAttr<_$alepha_orm0.PgAttr<_$typebox.TString, typeof _$alepha_orm0.PG_PRIMARY_KEY>, typeof _$alepha_orm0.PG_DEFAULT>;
+    version: _$alepha_orm0.PgAttr<_$alepha_orm0.PgAttr<_$typebox.TInteger, typeof _$alepha_orm0.PG_VERSION>, typeof _$alepha_orm0.PG_DEFAULT>;
+    createdAt: _$alepha_orm0.PgAttr<_$alepha_orm0.PgAttr<_$typebox.TString, typeof _$alepha_orm0.PG_CREATED_AT>, typeof _$alepha_orm0.PG_DEFAULT>;
+    updatedAt: _$alepha_orm0.PgAttr<_$alepha_orm0.PgAttr<_$typebox.TString, typeof _$alepha_orm0.PG_UPDATED_AT>, typeof _$alepha_orm0.PG_DEFAULT>;
+    refreshToken: _$typebox.TString;
+    userId: _$alepha_orm0.PgAttr<_$typebox.TString, typeof _$alepha_orm0.PG_REF>;
+    expiresAt: _$typebox.TString;
+    lastUsedAt: _$typebox.TOptional<_$typebox.TString>;
+    ip: _$typebox.TOptional<_$typebox.TString>;
+    userAgent: _$typebox.TOptional<_$typebox.TObject<{
+      os: _$typebox.TString;
+      browser: _$typebox.TString;
+      device: _$typebox.TUnsafe<"MOBILE" | "DESKTOP" | "TABLET">;
     }>>;
   }>>;
   /**
@@ -7163,26 +7179,26 @@ declare class AdminSessionController {
    * Find sessions with pagination and filtering.
    */
   readonly findSessions: _$alepha_server0.ActionPrimitiveFn<{
-    query: _$alepha.TObject<{
-      page: _$alepha.TOptional<_$alepha.TInteger>;
-      size: _$alepha.TOptional<_$alepha.TInteger>;
-      sort: _$alepha.TOptional<_$alepha.TString>;
-      userId: _$alepha.TOptional<_$alepha.TString>;
-      userRealmName: _$alepha.TOptional<_$alepha.TString>;
-    }>;
-    response: _$alepha.TPage<_$alepha.TObject<{
-      id: _$alepha.TString;
-      version: _$alepha.TNumber;
-      createdAt: _$alepha.TString;
-      updatedAt: _$alepha.TString;
-      refreshToken: _$alepha.TString;
-      userId: _$alepha.TString;
-      expiresAt: _$alepha.TString;
-      ip: _$alepha.TOptional<_$alepha.TString>;
-      userAgent: _$alepha.TOptional<_$alepha.TObject<{
-        os: _$alepha.TString;
-        browser: _$alepha.TString;
-        device: _$alepha.TUnsafe<"MOBILE" | "DESKTOP" | "TABLET">;
+    query: _$typebox.TObject<{
+      page: _$typebox.TOptional<_$typebox.TInteger>;
+      size: _$typebox.TOptional<_$typebox.TInteger>;
+      sort: _$typebox.TOptional<_$typebox.TString>;
+      userId: _$typebox.TOptional<_$typebox.TString>;
+      userRealmName: _$typebox.TOptional<_$typebox.TString>;
+    }>;
+    response: _$alepha.TPage<_$typebox.TObject<{
+      id: _$typebox.TString;
+      version: _$typebox.TNumber;
+      createdAt: _$typebox.TString;
+      updatedAt: _$typebox.TString;
+      refreshToken: _$typebox.TString;
+      userId: _$typebox.TString;
+      expiresAt: _$typebox.TString;
+      ip: _$typebox.TOptional<_$typebox.TString>;
+      userAgent: _$typebox.TOptional<_$typebox.TObject<{
+        os: _$typebox.TString;
+        browser: _$typebox.TString;
+        device: _$typebox.TUnsafe<"MOBILE" | "DESKTOP" | "TABLET">;
       }>>;
     }>>;
   }>;
@@ -7190,25 +7206,25 @@ declare class AdminSessionController {
    * Get a session by ID.
    */
   readonly getSession: _$alepha_server0.ActionPrimitiveFn<{
-    params: _$alepha.TObject<{
-      id: _$alepha.TString;
-    }>;
-    query: _$alepha.TObject<{
-      userRealmName: _$alepha.TOptional<_$alepha.TString>;
-    }>;
-    response: _$alepha.TObject<{
-      id: _$alepha.TString;
-      version: _$alepha.TNumber;
-      createdAt: _$alepha.TString;
-      updatedAt: _$alepha.TString;
-      refreshToken: _$alepha.TString;
-      userId: _$alepha.TString;
-      expiresAt: _$alepha.TString;
-      ip: _$alepha.TOptional<_$alepha.TString>;
-      userAgent: _$alepha.TOptional<_$alepha.TObject<{
-        os: _$alepha.TString;
-        browser: _$alepha.TString;
-        device: _$alepha.TUnsafe<"MOBILE" | "DESKTOP" | "TABLET">;
+    params: _$typebox.TObject<{
+      id: _$typebox.TString;
+    }>;
+    query: _$typebox.TObject<{
+      userRealmName: _$typebox.TOptional<_$typebox.TString>;
+    }>;
+    response: _$typebox.TObject<{
+      id: _$typebox.TString;
+      version: _$typebox.TNumber;
+      createdAt: _$typebox.TString;
+      updatedAt: _$typebox.TString;
+      refreshToken: _$typebox.TString;
+      userId: _$typebox.TString;
+      expiresAt: _$typebox.TString;
+      ip: _$typebox.TOptional<_$typebox.TString>;
+      userAgent: _$typebox.TOptional<_$typebox.TObject<{
+        os: _$typebox.TString;
+        browser: _$typebox.TString;
+        device: _$typebox.TUnsafe<"MOBILE" | "DESKTOP" | "TABLET">;
       }>>;
     }>;
   }>;
@@ -7216,109 +7232,109 @@ declare class AdminSessionController {
    * Delete a session.
    */
   readonly deleteSession: _$alepha_server0.ActionPrimitiveFn<{
-    params: _$alepha.TObject<{
-      id: _$alepha.TString;
+    params: _$typebox.TObject<{
+      id: _$typebox.TString;
     }>;
-    query: _$alepha.TObject<{
-      userRealmName: _$alepha.TOptional<_$alepha.TString>;
+    query: _$typebox.TObject<{
+      userRealmName: _$typebox.TOptional<_$typebox.TString>;
     }>;
-    response: _$alepha.TObject<{
-      ok: _$alepha.TBoolean;
-      id: _$alepha.TOptional<_$alepha.TUnion<[_$alepha.TString, _$alepha.TInteger]>>;
-      count: _$alepha.TOptional<_$alepha.TNumber>;
+    response: _$typebox.TObject<{
+      ok: _$typebox.TBoolean;
+      id: _$typebox.TOptional<_$typebox.TUnion<[_$typebox.TString, _$typebox.TInteger]>>;
+      count: _$typebox.TOptional<_$typebox.TNumber>;
     }>;
   }>;
   /**
    * Delete many sessions in one repository call.
    */
   readonly deleteSessions: _$alepha_server0.ActionPrimitiveFn<{
-    query: _$alepha.TObject<{
-      userRealmName: _$alepha.TOptional<_$alepha.TString>;
+    query: _$typebox.TObject<{
+      userRealmName: _$typebox.TOptional<_$typebox.TString>;
     }>;
-    body: _$alepha.TObject<{
-      ids: _$alepha.TArray<_$alepha.TString>;
+    body: _$typebox.TObject<{
+      ids: _$typebox.TArray<_$typebox.TString>;
     }>;
-    response: _$alepha.TObject<{
-      deleted: _$alepha.TArray<_$alepha.TString>;
+    response: _$typebox.TObject<{
+      deleted: _$typebox.TArray<_$typebox.TString>;
     }>;
   }>;
 }
 //#endregion
 //#region ../../src/api/users/notifications/UserNotifications.d.ts
 declare class UserNotifications {
-  readonly passwordReset: _$alepha_api_notifications0.NotificationPrimitive<_$alepha.TObject<{
-    email: _$alepha.TString;
-    code: _$alepha.TString;
-    expiresInMinutes: _$alepha.TNumber;
+  readonly passwordReset: _$alepha_api_notifications0.NotificationPrimitive<_$typebox.TObject<{
+    email: _$typebox.TString;
+    code: _$typebox.TString;
+    expiresInMinutes: _$typebox.TNumber;
   }>>;
-  readonly emailVerification: _$alepha_api_notifications0.NotificationPrimitive<_$alepha.TObject<{
-    email: _$alepha.TString;
-    code: _$alepha.TString;
-    expiresInMinutes: _$alepha.TNumber;
+  readonly emailVerification: _$alepha_api_notifications0.NotificationPrimitive<_$typebox.TObject<{
+    email: _$typebox.TString;
+    code: _$typebox.TString;
+    expiresInMinutes: _$typebox.TNumber;
   }>>;
-  readonly phoneVerification: _$alepha_api_notifications0.NotificationPrimitive<_$alepha.TObject<{
-    phoneNumber: _$alepha.TString;
-    code: _$alepha.TString;
-    expiresInMinutes: _$alepha.TNumber;
+  readonly phoneVerification: _$alepha_api_notifications0.NotificationPrimitive<_$typebox.TObject<{
+    phoneNumber: _$typebox.TString;
+    code: _$typebox.TString;
+    expiresInMinutes: _$typebox.TNumber;
   }>>;
-  readonly passwordResetLink: _$alepha_api_notifications0.NotificationPrimitive<_$alepha.TObject<{
-    email: _$alepha.TString;
-    resetUrl: _$alepha.TString;
-    expiresInMinutes: _$alepha.TNumber;
+  readonly passwordResetLink: _$alepha_api_notifications0.NotificationPrimitive<_$typebox.TObject<{
+    email: _$typebox.TString;
+    resetUrl: _$typebox.TString;
+    expiresInMinutes: _$typebox.TNumber;
   }>>;
-  readonly accountLockout: _$alepha_api_notifications0.NotificationPrimitive<_$alepha.TObject<{
-    email: _$alepha.TString;
-    lockoutMinutes: _$alepha.TNumber;
+  readonly accountLockout: _$alepha_api_notifications0.NotificationPrimitive<_$typebox.TObject<{
+    email: _$typebox.TString;
+    lockoutMinutes: _$typebox.TNumber;
   }>>;
-  readonly emailVerificationLink: _$alepha_api_notifications0.NotificationPrimitive<_$alepha.TObject<{
-    email: _$alepha.TString;
-    verifyUrl: _$alepha.TString;
-    expiresInMinutes: _$alepha.TNumber;
+  readonly emailVerificationLink: _$alepha_api_notifications0.NotificationPrimitive<_$typebox.TObject<{
+    email: _$typebox.TString;
+    verifyUrl: _$typebox.TString;
+    expiresInMinutes: _$typebox.TNumber;
   }>>;
 }
 //#endregion
 //#region ../../src/api/users/schemas/createUserSchema.d.ts
-declare const createUserSchema: _$alepha.TObject<{
-  enabled: _$alepha.TOptional<PgAttr<_$alepha.TBoolean, typeof PG_DEFAULT>>;
-  email: _$alepha.TOptional<_$alepha.TOptional<_$alepha.TString>>;
-  phoneNumber: _$alepha.TOptional<_$alepha.TOptional<_$alepha.TString>>;
-  id: _$alepha.TOptional<PgAttr<PgAttr<_$alepha.TString, typeof PG_PRIMARY_KEY>, typeof PG_DEFAULT>>;
-  version: _$alepha.TOptional<PgAttr<PgAttr<_$alepha.TInteger, typeof PG_VERSION>, typeof PG_DEFAULT>>;
-  createdAt: _$alepha.TOptional<PgAttr<PgAttr<_$alepha.TString, typeof PG_CREATED_AT>, typeof PG_DEFAULT>>;
-  updatedAt: _$alepha.TOptional<PgAttr<PgAttr<_$alepha.TString, typeof PG_UPDATED_AT>, typeof PG_DEFAULT>>;
-  username: _$alepha.TOptional<_$alepha.TOptional<_$alepha.TString>>;
-  roles: _$alepha.TOptional<PgAttr<_$alepha.TArray<_$alepha.TString>, typeof PG_DEFAULT>>;
-  firstName: _$alepha.TOptional<_$alepha.TOptional<_$alepha.TString>>;
-  lastName: _$alepha.TOptional<_$alepha.TOptional<_$alepha.TString>>;
-  picture: _$alepha.TOptional<_$alepha.TOptional<_$alepha.TString>>;
-  emailVerified: _$alepha.TOptional<PgAttr<_$alepha.TBoolean, typeof PG_DEFAULT>>;
-  organizationId: _$alepha.TOptional<PgAttr<_$alepha.TOptional<_$alepha.TString>, typeof PG_ORGANIZATION>>;
+declare const createUserSchema: _$typebox.TObject<{
+  email: _$typebox.TOptional<_$typebox.TOptional<_$typebox.TString>>;
+  username: _$typebox.TOptional<_$typebox.TOptional<_$typebox.TString>>;
+  phoneNumber: _$typebox.TOptional<_$typebox.TOptional<_$typebox.TString>>;
+  enabled: _$typebox.TOptional<PgAttr<_$typebox.TBoolean, typeof PG_DEFAULT>>;
+  emailVerified: _$typebox.TOptional<PgAttr<_$typebox.TBoolean, typeof PG_DEFAULT>>;
+  roles: _$typebox.TOptional<PgAttr<_$typebox.TArray<_$typebox.TString>, typeof PG_DEFAULT>>;
+  id: _$typebox.TOptional<PgAttr<PgAttr<_$typebox.TString, typeof PG_PRIMARY_KEY>, typeof PG_DEFAULT>>;
+  version: _$typebox.TOptional<PgAttr<PgAttr<_$typebox.TInteger, typeof PG_VERSION>, typeof PG_DEFAULT>>;
+  createdAt: _$typebox.TOptional<PgAttr<PgAttr<_$typebox.TString, typeof PG_CREATED_AT>, typeof PG_DEFAULT>>;
+  updatedAt: _$typebox.TOptional<PgAttr<PgAttr<_$typebox.TString, typeof PG_UPDATED_AT>, typeof PG_DEFAULT>>;
+  firstName: _$typebox.TOptional<_$typebox.TOptional<_$typebox.TString>>;
+  lastName: _$typebox.TOptional<_$typebox.TOptional<_$typebox.TString>>;
+  picture: _$typebox.TOptional<_$typebox.TOptional<_$typebox.TString>>;
+  organizationId: _$typebox.TOptional<PgAttr<_$typebox.TString, typeof PG_ORGANIZATION>>;
 }>;
 type CreateUser = Static<typeof createUserSchema>;
 //#endregion
 //#region ../../src/api/users/schemas/updateUserSchema.d.ts
-declare const updateUserSchema: _$alepha.TObject<{
-  enabled: _$alepha.TOptional<PgAttr<_$alepha.TBoolean, typeof PG_DEFAULT>>;
-  email: _$alepha.TOptional<_$alepha.TOptional<_$alepha.TString>>;
-  phoneNumber: _$alepha.TOptional<_$alepha.TOptional<_$alepha.TString>>;
-  realm: _$alepha.TOptional<PgAttr<_$alepha.TString, typeof PG_DEFAULT>>;
-  roles: _$alepha.TOptional<PgAttr<_$alepha.TArray<_$alepha.TString>, typeof PG_DEFAULT>>;
-  firstName: _$alepha.TOptional<_$alepha.TOptional<_$alepha.TString>>;
-  lastName: _$alepha.TOptional<_$alepha.TOptional<_$alepha.TString>>;
-  picture: _$alepha.TOptional<_$alepha.TOptional<_$alepha.TString>>;
-  organizationId: _$alepha.TOptional<PgAttr<_$alepha.TOptional<_$alepha.TString>, typeof PG_ORGANIZATION>>;
+declare const updateUserSchema: _$typebox.TObject<{
+  email: _$typebox.TOptional<_$typebox.TOptional<_$typebox.TString>>;
+  phoneNumber: _$typebox.TOptional<_$typebox.TOptional<_$typebox.TString>>;
+  enabled: _$typebox.TOptional<PgAttr<_$typebox.TBoolean, typeof PG_DEFAULT>>;
+  roles: _$typebox.TOptional<PgAttr<_$typebox.TArray<_$typebox.TString>, typeof PG_DEFAULT>>;
+  realm: _$typebox.TOptional<PgAttr<_$typebox.TString, typeof PG_DEFAULT>>;
+  firstName: _$typebox.TOptional<_$typebox.TOptional<_$typebox.TString>>;
+  lastName: _$typebox.TOptional<_$typebox.TOptional<_$typebox.TString>>;
+  picture: _$typebox.TOptional<_$typebox.TOptional<_$typebox.TString>>;
+  organizationId: _$typebox.TOptional<PgAttr<_$typebox.TString, typeof PG_ORGANIZATION>>;
 }>;
 type UpdateUser = Static<typeof updateUserSchema>;
 //#endregion
 //#region ../../src/api/users/schemas/userQuerySchema.d.ts
-declare const userQuerySchema: _$alepha.TObject<{
-  page: _$alepha.TOptional<_$alepha.TInteger>;
-  size: _$alepha.TOptional<_$alepha.TInteger>;
-  sort: _$alepha.TOptional<_$alepha.TString>;
-  email: _$alepha.TOptional<_$alepha.TString>;
-  enabled: _$alepha.TOptional<_$alepha.TBoolean>;
-  emailVerified: _$alepha.TOptional<_$alepha.TBoolean>;
-  roles: _$alepha.TOptional<_$alepha.TArray<_$alepha.TString>>;
+declare const userQuerySchema: _$typebox.TObject<{
+  page: _$typebox.TOptional<_$typebox.TInteger>;
+  size: _$typebox.TOptional<_$typebox.TInteger>;
+  sort: _$typebox.TOptional<_$typebox.TString>;
+  email: _$typebox.TOptional<_$typebox.TString>;
+  enabled: _$typebox.TOptional<_$typebox.TBoolean>;
+  emailVerified: _$typebox.TOptional<_$typebox.TBoolean>;
+  roles: _$typebox.TOptional<_$typebox.TArray<_$typebox.TString>>;
 }>;
 type UserQuery = Static<typeof userQuerySchema>;
 //#endregion
@@ -7330,22 +7346,22 @@ declare class UserService {
   protected readonly realmProvider: RealmProvider;
   protected userAudits(realmName?: string): UserAudits | undefined;
   protected userNotifications(realmName?: string): UserNotifications | undefined;
-  users(userRealmName?: string): _$alepha_orm0.Repository<_$alepha.TObject<{
-    id: _$alepha_orm0.PgAttr<_$alepha_orm0.PgAttr<_$alepha.TString, typeof _$alepha_orm0.PG_PRIMARY_KEY>, typeof _$alepha_orm0.PG_DEFAULT>;
-    version: _$alepha_orm0.PgAttr<_$alepha_orm0.PgAttr<_$alepha.TInteger, typeof _$alepha_orm0.PG_VERSION>, typeof _$alepha_orm0.PG_DEFAULT>;
-    createdAt: _$alepha_orm0.PgAttr<_$alepha_orm0.PgAttr<_$alepha.TString, typeof _$alepha_orm0.PG_CREATED_AT>, typeof _$alepha_orm0.PG_DEFAULT>;
-    updatedAt: _$alepha_orm0.PgAttr<_$alepha_orm0.PgAttr<_$alepha.TString, typeof _$alepha_orm0.PG_UPDATED_AT>, typeof _$alepha_orm0.PG_DEFAULT>;
-    realm: _$alepha_orm0.PgAttr<_$alepha.TString, typeof _$alepha_orm0.PG_DEFAULT>;
-    username: _$alepha.TOptional<_$alepha.TString>;
-    email: _$alepha.TOptional<_$alepha.TString>;
-    phoneNumber: _$alepha.TOptional<_$alepha.TString>;
-    roles: _$alepha_orm0.PgAttr<_$alepha.TArray<_$alepha.TString>, typeof _$alepha_orm0.PG_DEFAULT>;
-    firstName: _$alepha.TOptional<_$alepha.TString>;
-    lastName: _$alepha.TOptional<_$alepha.TString>;
-    picture: _$alepha.TOptional<_$alepha.TString>;
-    enabled: _$alepha_orm0.PgAttr<_$alepha.TBoolean, typeof _$alepha_orm0.PG_DEFAULT>;
-    emailVerified: _$alepha_orm0.PgAttr<_$alepha.TBoolean, typeof _$alepha_orm0.PG_DEFAULT>;
-    organizationId: _$alepha_orm0.PgAttr<_$alepha.TOptional<_$alepha.TString>, typeof _$alepha_orm0.PG_ORGANIZATION>;
+  users(userRealmName?: string): _$alepha_orm0.Repository<_$typebox.TObject<{
+    id: _$alepha_orm0.PgAttr<_$alepha_orm0.PgAttr<_$typebox.TString, typeof _$alepha_orm0.PG_PRIMARY_KEY>, typeof _$alepha_orm0.PG_DEFAULT>;
+    version: _$alepha_orm0.PgAttr<_$alepha_orm0.PgAttr<_$typebox.TInteger, typeof _$alepha_orm0.PG_VERSION>, typeof _$alepha_orm0.PG_DEFAULT>;
+    createdAt: _$alepha_orm0.PgAttr<_$alepha_orm0.PgAttr<_$typebox.TString, typeof _$alepha_orm0.PG_CREATED_AT>, typeof _$alepha_orm0.PG_DEFAULT>;
+    updatedAt: _$alepha_orm0.PgAttr<_$alepha_orm0.PgAttr<_$typebox.TString, typeof _$alepha_orm0.PG_UPDATED_AT>, typeof _$alepha_orm0.PG_DEFAULT>;
+    realm: _$alepha_orm0.PgAttr<_$typebox.TString, typeof _$alepha_orm0.PG_DEFAULT>;
+    username: _$typebox.TOptional<_$typebox.TString>;
+    email: _$typebox.TOptional<_$typebox.TString>;
+    phoneNumber: _$typebox.TOptional<_$typebox.TString>;
+    roles: _$alepha_orm0.PgAttr<_$typebox.TArray<_$typebox.TString>, typeof _$alepha_orm0.PG_DEFAULT>;
+    firstName: _$typebox.TOptional<_$typebox.TString>;
+    lastName: _$typebox.TOptional<_$typebox.TString>;
+    picture: _$typebox.TOptional<_$typebox.TString>;
+    enabled: _$alepha_orm0.PgAttr<_$typebox.TBoolean, typeof _$alepha_orm0.PG_DEFAULT>;
+    emailVerified: _$alepha_orm0.PgAttr<_$typebox.TBoolean, typeof _$alepha_orm0.PG_DEFAULT>;
+    organizationId: _$alepha_orm0.PgAttr<_$typebox.TString, typeof _$alepha_orm0.PG_ORGANIZATION>;
   }>>;
   /**
    * Request email verification for a user.
@@ -7395,156 +7411,156 @@ declare class AdminUserController {
    * Find users with pagination and filtering.
    */
   readonly findUsers: _$alepha_server0.ActionPrimitiveFn<{
-    query: _$alepha.TObject<{
-      page: _$alepha.TOptional<_$alepha.TInteger>;
-      size: _$alepha.TOptional<_$alepha.TInteger>;
-      sort: _$alepha.TOptional<_$alepha.TString>;
-      email: _$alepha.TOptional<_$alepha.TString>;
-      enabled: _$alepha.TOptional<_$alepha.TBoolean>;
-      emailVerified: _$alepha.TOptional<_$alepha.TBoolean>;
-      roles: _$alepha.TOptional<_$alepha.TArray<_$alepha.TString>>;
-      userRealmName: _$alepha.TOptional<_$alepha.TString>;
-    }>;
-    response: _$alepha.TPage<_$alepha.TObject<{
-      id: PgAttr<PgAttr<_$alepha.TString, typeof PG_PRIMARY_KEY>, typeof PG_DEFAULT>;
-      version: PgAttr<PgAttr<_$alepha.TInteger, typeof PG_VERSION>, typeof PG_DEFAULT>;
-      createdAt: PgAttr<PgAttr<_$alepha.TString, typeof PG_CREATED_AT>, typeof PG_DEFAULT>;
-      updatedAt: PgAttr<PgAttr<_$alepha.TString, typeof PG_UPDATED_AT>, typeof PG_DEFAULT>;
-      realm: PgAttr<_$alepha.TString, typeof PG_DEFAULT>;
-      username: _$alepha.TOptional<_$alepha.TString>;
-      email: _$alepha.TOptional<_$alepha.TString>;
-      phoneNumber: _$alepha.TOptional<_$alepha.TString>;
-      roles: PgAttr<_$alepha.TArray<_$alepha.TString>, typeof PG_DEFAULT>;
-      firstName: _$alepha.TOptional<_$alepha.TString>;
-      lastName: _$alepha.TOptional<_$alepha.TString>;
-      picture: _$alepha.TOptional<_$alepha.TString>;
-      enabled: PgAttr<_$alepha.TBoolean, typeof PG_DEFAULT>;
-      emailVerified: PgAttr<_$alepha.TBoolean, typeof PG_DEFAULT>;
-      organizationId: PgAttr<_$alepha.TOptional<_$alepha.TString>, typeof PG_ORGANIZATION>;
+    query: _$typebox.TObject<{
+      page: _$typebox.TOptional<_$typebox.TInteger>;
+      size: _$typebox.TOptional<_$typebox.TInteger>;
+      sort: _$typebox.TOptional<_$typebox.TString>;
+      email: _$typebox.TOptional<_$typebox.TString>;
+      enabled: _$typebox.TOptional<_$typebox.TBoolean>;
+      emailVerified: _$typebox.TOptional<_$typebox.TBoolean>;
+      roles: _$typebox.TOptional<_$typebox.TArray<_$typebox.TString>>;
+      userRealmName: _$typebox.TOptional<_$typebox.TString>;
+    }>;
+    response: _$alepha.TPage<_$typebox.TObject<{
+      id: PgAttr<PgAttr<_$typebox.TString, typeof PG_PRIMARY_KEY>, typeof PG_DEFAULT>;
+      version: PgAttr<PgAttr<_$typebox.TInteger, typeof PG_VERSION>, typeof PG_DEFAULT>;
+      createdAt: PgAttr<PgAttr<_$typebox.TString, typeof PG_CREATED_AT>, typeof PG_DEFAULT>;
+      updatedAt: PgAttr<PgAttr<_$typebox.TString, typeof PG_UPDATED_AT>, typeof PG_DEFAULT>;
+      realm: PgAttr<_$typebox.TString, typeof PG_DEFAULT>;
+      username: _$typebox.TOptional<_$typebox.TString>;
+      email: _$typebox.TOptional<_$typebox.TString>;
+      phoneNumber: _$typebox.TOptional<_$typebox.TString>;
+      roles: PgAttr<_$typebox.TArray<_$typebox.TString>, typeof PG_DEFAULT>;
+      firstName: _$typebox.TOptional<_$typebox.TString>;
+      lastName: _$typebox.TOptional<_$typebox.TString>;
+      picture: _$typebox.TOptional<_$typebox.TString>;
+      enabled: PgAttr<_$typebox.TBoolean, typeof PG_DEFAULT>;
+      emailVerified: PgAttr<_$typebox.TBoolean, typeof PG_DEFAULT>;
+      organizationId: PgAttr<_$typebox.TString, typeof PG_ORGANIZATION>;
     }>>;
   }>;
   /**
    * Get a user by ID.
    */
   readonly getUser: _$alepha_server0.ActionPrimitiveFn<{
-    params: _$alepha.TObject<{
-      id: _$alepha.TString;
-    }>;
-    query: _$alepha.TObject<{
-      userRealmName: _$alepha.TOptional<_$alepha.TString>;
-    }>;
-    response: _$alepha.TObject<{
-      id: PgAttr<PgAttr<_$alepha.TString, typeof PG_PRIMARY_KEY>, typeof PG_DEFAULT>;
-      version: PgAttr<PgAttr<_$alepha.TInteger, typeof PG_VERSION>, typeof PG_DEFAULT>;
-      createdAt: PgAttr<PgAttr<_$alepha.TString, typeof PG_CREATED_AT>, typeof PG_DEFAULT>;
-      updatedAt: PgAttr<PgAttr<_$alepha.TString, typeof PG_UPDATED_AT>, typeof PG_DEFAULT>;
-      realm: PgAttr<_$alepha.TString, typeof PG_DEFAULT>;
-      username: _$alepha.TOptional<_$alepha.TString>;
-      email: _$alepha.TOptional<_$alepha.TString>;
-      phoneNumber: _$alepha.TOptional<_$alepha.TString>;
-      roles: PgAttr<_$alepha.TArray<_$alepha.TString>, typeof PG_DEFAULT>;
-      firstName: _$alepha.TOptional<_$alepha.TString>;
-      lastName: _$alepha.TOptional<_$alepha.TString>;
-      picture: _$alepha.TOptional<_$alepha.TString>;
-      enabled: PgAttr<_$alepha.TBoolean, typeof PG_DEFAULT>;
-      emailVerified: PgAttr<_$alepha.TBoolean, typeof PG_DEFAULT>;
-      organizationId: PgAttr<_$alepha.TOptional<_$alepha.TString>, typeof PG_ORGANIZATION>;
+    params: _$typebox.TObject<{
+      id: _$typebox.TString;
+    }>;
+    query: _$typebox.TObject<{
+      userRealmName: _$typebox.TOptional<_$typebox.TString>;
+    }>;
+    response: _$typebox.TObject<{
+      id: PgAttr<PgAttr<_$typebox.TString, typeof PG_PRIMARY_KEY>, typeof PG_DEFAULT>;
+      version: PgAttr<PgAttr<_$typebox.TInteger, typeof PG_VERSION>, typeof PG_DEFAULT>;
+      createdAt: PgAttr<PgAttr<_$typebox.TString, typeof PG_CREATED_AT>, typeof PG_DEFAULT>;
+      updatedAt: PgAttr<PgAttr<_$typebox.TString, typeof PG_UPDATED_AT>, typeof PG_DEFAULT>;
+      realm: PgAttr<_$typebox.TString, typeof PG_DEFAULT>;
+      username: _$typebox.TOptional<_$typebox.TString>;
+      email: _$typebox.TOptional<_$typebox.TString>;
+      phoneNumber: _$typebox.TOptional<_$typebox.TString>;
+      roles: PgAttr<_$typebox.TArray<_$typebox.TString>, typeof PG_DEFAULT>;
+      firstName: _$typebox.TOptional<_$typebox.TString>;
+      lastName: _$typebox.TOptional<_$typebox.TString>;
+      picture: _$typebox.TOptional<_$typebox.TString>;
+      enabled: PgAttr<_$typebox.TBoolean, typeof PG_DEFAULT>;
+      emailVerified: PgAttr<_$typebox.TBoolean, typeof PG_DEFAULT>;
+      organizationId: PgAttr<_$typebox.TString, typeof PG_ORGANIZATION>;
     }>;
   }>;
   /**
    * Create a new user.
    */
   readonly createUser: _$alepha_server0.ActionPrimitiveFn<{
-    query: _$alepha.TObject<{
-      userRealmName: _$alepha.TOptional<_$alepha.TString>;
-    }>;
-    body: _$alepha.TObject<{
-      enabled: _$alepha.TOptional<PgAttr<_$alepha.TBoolean, typeof PG_DEFAULT>>;
-      email: _$alepha.TOptional<_$alepha.TOptional<_$alepha.TString>>;
-      phoneNumber: _$alepha.TOptional<_$alepha.TOptional<_$alepha.TString>>;
-      id: _$alepha.TOptional<PgAttr<PgAttr<_$alepha.TString, typeof PG_PRIMARY_KEY>, typeof PG_DEFAULT>>;
-      version: _$alepha.TOptional<PgAttr<PgAttr<_$alepha.TInteger, typeof PG_VERSION>, typeof PG_DEFAULT>>;
-      createdAt: _$alepha.TOptional<PgAttr<PgAttr<_$alepha.TString, typeof PG_CREATED_AT>, typeof PG_DEFAULT>>;
-      updatedAt: _$alepha.TOptional<PgAttr<PgAttr<_$alepha.TString, typeof PG_UPDATED_AT>, typeof PG_DEFAULT>>;
-      username: _$alepha.TOptional<_$alepha.TOptional<_$alepha.TString>>;
-      roles: _$alepha.TOptional<PgAttr<_$alepha.TArray<_$alepha.TString>, typeof PG_DEFAULT>>;
-      firstName: _$alepha.TOptional<_$alepha.TOptional<_$alepha.TString>>;
-      lastName: _$alepha.TOptional<_$alepha.TOptional<_$alepha.TString>>;
-      picture: _$alepha.TOptional<_$alepha.TOptional<_$alepha.TString>>;
-      emailVerified: _$alepha.TOptional<PgAttr<_$alepha.TBoolean, typeof PG_DEFAULT>>;
-      organizationId: _$alepha.TOptional<PgAttr<_$alepha.TOptional<_$alepha.TString>, typeof PG_ORGANIZATION>>;
-    }>;
-    response: _$alepha.TObject<{
-      id: PgAttr<PgAttr<_$alepha.TString, typeof PG_PRIMARY_KEY>, typeof PG_DEFAULT>;
-      version: PgAttr<PgAttr<_$alepha.TInteger, typeof PG_VERSION>, typeof PG_DEFAULT>;
-      createdAt: PgAttr<PgAttr<_$alepha.TString, typeof PG_CREATED_AT>, typeof PG_DEFAULT>;
-      updatedAt: PgAttr<PgAttr<_$alepha.TString, typeof PG_UPDATED_AT>, typeof PG_DEFAULT>;
-      realm: PgAttr<_$alepha.TString, typeof PG_DEFAULT>;
-      username: _$alepha.TOptional<_$alepha.TString>;
-      email: _$alepha.TOptional<_$alepha.TString>;
-      phoneNumber: _$alepha.TOptional<_$alepha.TString>;
-      roles: PgAttr<_$alepha.TArray<_$alepha.TString>, typeof PG_DEFAULT>;
-      firstName: _$alepha.TOptional<_$alepha.TString>;
-      lastName: _$alepha.TOptional<_$alepha.TString>;
-      picture: _$alepha.TOptional<_$alepha.TString>;
-      enabled: PgAttr<_$alepha.TBoolean, typeof PG_DEFAULT>;
-      emailVerified: PgAttr<_$alepha.TBoolean, typeof PG_DEFAULT>;
-      organizationId: PgAttr<_$alepha.TOptional<_$alepha.TString>, typeof PG_ORGANIZATION>;
+    query: _$typebox.TObject<{
+      userRealmName: _$typebox.TOptional<_$typebox.TString>;
+    }>;
+    body: _$typebox.TObject<{
+      email: _$typebox.TOptional<_$typebox.TOptional<_$typebox.TString>>;
+      username: _$typebox.TOptional<_$typebox.TOptional<_$typebox.TString>>;
+      phoneNumber: _$typebox.TOptional<_$typebox.TOptional<_$typebox.TString>>;
+      enabled: _$typebox.TOptional<PgAttr<_$typebox.TBoolean, typeof PG_DEFAULT>>;
+      emailVerified: _$typebox.TOptional<PgAttr<_$typebox.TBoolean, typeof PG_DEFAULT>>;
+      roles: _$typebox.TOptional<PgAttr<_$typebox.TArray<_$typebox.TString>, typeof PG_DEFAULT>>;
+      id: _$typebox.TOptional<PgAttr<PgAttr<_$typebox.TString, typeof PG_PRIMARY_KEY>, typeof PG_DEFAULT>>;
+      version: _$typebox.TOptional<PgAttr<PgAttr<_$typebox.TInteger, typeof PG_VERSION>, typeof PG_DEFAULT>>;
+      createdAt: _$typebox.TOptional<PgAttr<PgAttr<_$typebox.TString, typeof PG_CREATED_AT>, typeof PG_DEFAULT>>;
+      updatedAt: _$typebox.TOptional<PgAttr<PgAttr<_$typebox.TString, typeof PG_UPDATED_AT>, typeof PG_DEFAULT>>;
+      firstName: _$typebox.TOptional<_$typebox.TOptional<_$typebox.TString>>;
+      lastName: _$typebox.TOptional<_$typebox.TOptional<_$typebox.TString>>;
+      picture: _$typebox.TOptional<_$typebox.TOptional<_$typebox.TString>>;
+      organizationId: _$typebox.TOptional<PgAttr<_$typebox.TString, typeof PG_ORGANIZATION>>;
+    }>;
+    response: _$typebox.TObject<{
+      id: PgAttr<PgAttr<_$typebox.TString, typeof PG_PRIMARY_KEY>, typeof PG_DEFAULT>;
+      version: PgAttr<PgAttr<_$typebox.TInteger, typeof PG_VERSION>, typeof PG_DEFAULT>;
+      createdAt: PgAttr<PgAttr<_$typebox.TString, typeof PG_CREATED_AT>, typeof PG_DEFAULT>;
+      updatedAt: PgAttr<PgAttr<_$typebox.TString, typeof PG_UPDATED_AT>, typeof PG_DEFAULT>;
+      realm: PgAttr<_$typebox.TString, typeof PG_DEFAULT>;
+      username: _$typebox.TOptional<_$typebox.TString>;
+      email: _$typebox.TOptional<_$typebox.TString>;
+      phoneNumber: _$typebox.TOptional<_$typebox.TString>;
+      roles: PgAttr<_$typebox.TArray<_$typebox.TString>, typeof PG_DEFAULT>;
+      firstName: _$typebox.TOptional<_$typebox.TString>;
+      lastName: _$typebox.TOptional<_$typebox.TString>;
+      picture: _$typebox.TOptional<_$typebox.TString>;
+      enabled: PgAttr<_$typebox.TBoolean, typeof PG_DEFAULT>;
+      emailVerified: PgAttr<_$typebox.TBoolean, typeof PG_DEFAULT>;
+      organizationId: PgAttr<_$typebox.TString, typeof PG_ORGANIZATION>;
     }>;
   }>;
   /**
    * Update a user.
    */
   readonly updateUser: _$alepha_server0.ActionPrimitiveFn<{
-    params: _$alepha.TObject<{
-      id: _$alepha.TString;
-    }>;
-    query: _$alepha.TObject<{
-      userRealmName: _$alepha.TOptional<_$alepha.TString>;
-    }>;
-    body: _$alepha.TObject<{
-      enabled: _$alepha.TOptional<PgAttr<_$alepha.TBoolean, typeof PG_DEFAULT>>;
-      email: _$alepha.TOptional<_$alepha.TOptional<_$alepha.TString>>;
-      phoneNumber: _$alepha.TOptional<_$alepha.TOptional<_$alepha.TString>>;
-      realm: _$alepha.TOptional<PgAttr<_$alepha.TString, typeof PG_DEFAULT>>;
-      roles: _$alepha.TOptional<PgAttr<_$alepha.TArray<_$alepha.TString>, typeof PG_DEFAULT>>;
-      firstName: _$alepha.TOptional<_$alepha.TOptional<_$alepha.TString>>;
-      lastName: _$alepha.TOptional<_$alepha.TOptional<_$alepha.TString>>;
-      picture: _$alepha.TOptional<_$alepha.TOptional<_$alepha.TString>>;
-      organizationId: _$alepha.TOptional<PgAttr<_$alepha.TOptional<_$alepha.TString>, typeof PG_ORGANIZATION>>;
-    }>;
-    response: _$alepha.TObject<{
-      id: PgAttr<PgAttr<_$alepha.TString, typeof PG_PRIMARY_KEY>, typeof PG_DEFAULT>;
-      version: PgAttr<PgAttr<_$alepha.TInteger, typeof PG_VERSION>, typeof PG_DEFAULT>;
-      createdAt: PgAttr<PgAttr<_$alepha.TString, typeof PG_CREATED_AT>, typeof PG_DEFAULT>;
-      updatedAt: PgAttr<PgAttr<_$alepha.TString, typeof PG_UPDATED_AT>, typeof PG_DEFAULT>;
-      realm: PgAttr<_$alepha.TString, typeof PG_DEFAULT>;
-      username: _$alepha.TOptional<_$alepha.TString>;
-      email: _$alepha.TOptional<_$alepha.TString>;
-      phoneNumber: _$alepha.TOptional<_$alepha.TString>;
-      roles: PgAttr<_$alepha.TArray<_$alepha.TString>, typeof PG_DEFAULT>;
-      firstName: _$alepha.TOptional<_$alepha.TString>;
-      lastName: _$alepha.TOptional<_$alepha.TString>;
-      picture: _$alepha.TOptional<_$alepha.TString>;
-      enabled: PgAttr<_$alepha.TBoolean, typeof PG_DEFAULT>;
-      emailVerified: PgAttr<_$alepha.TBoolean, typeof PG_DEFAULT>;
-      organizationId: PgAttr<_$alepha.TOptional<_$alepha.TString>, typeof PG_ORGANIZATION>;
+    params: _$typebox.TObject<{
+      id: _$typebox.TString;
+    }>;
+    query: _$typebox.TObject<{
+      userRealmName: _$typebox.TOptional<_$typebox.TString>;
+    }>;
+    body: _$typebox.TObject<{
+      email: _$typebox.TOptional<_$typebox.TOptional<_$typebox.TString>>;
+      phoneNumber: _$typebox.TOptional<_$typebox.TOptional<_$typebox.TString>>;
+      enabled: _$typebox.TOptional<PgAttr<_$typebox.TBoolean, typeof PG_DEFAULT>>;
+      roles: _$typebox.TOptional<PgAttr<_$typebox.TArray<_$typebox.TString>, typeof PG_DEFAULT>>;
+      realm: _$typebox.TOptional<PgAttr<_$typebox.TString, typeof PG_DEFAULT>>;
+      firstName: _$typebox.TOptional<_$typebox.TOptional<_$typebox.TString>>;
+      lastName: _$typebox.TOptional<_$typebox.TOptional<_$typebox.TString>>;
+      picture: _$typebox.TOptional<_$typebox.TOptional<_$typebox.TString>>;
+      organizationId: _$typebox.TOptional<PgAttr<_$typebox.TString, typeof PG_ORGANIZATION>>;
+    }>;
+    response: _$typebox.TObject<{
+      id: PgAttr<PgAttr<_$typebox.TString, typeof PG_PRIMARY_KEY>, typeof PG_DEFAULT>;
+      version: PgAttr<PgAttr<_$typebox.TInteger, typeof PG_VERSION>, typeof PG_DEFAULT>;
+      createdAt: PgAttr<PgAttr<_$typebox.TString, typeof PG_CREATED_AT>, typeof PG_DEFAULT>;
+      updatedAt: PgAttr<PgAttr<_$typebox.TString, typeof PG_UPDATED_AT>, typeof PG_DEFAULT>;
+      realm: PgAttr<_$typebox.TString, typeof PG_DEFAULT>;
+      username: _$typebox.TOptional<_$typebox.TString>;
+      email: _$typebox.TOptional<_$typebox.TString>;
+      phoneNumber: _$typebox.TOptional<_$typebox.TString>;
+      roles: PgAttr<_$typebox.TArray<_$typebox.TString>, typeof PG_DEFAULT>;
+      firstName: _$typebox.TOptional<_$typebox.TString>;
+      lastName: _$typebox.TOptional<_$typebox.TString>;
+      picture: _$typebox.TOptional<_$typebox.TString>;
+      enabled: PgAttr<_$typebox.TBoolean, typeof PG_DEFAULT>;
+      emailVerified: PgAttr<_$typebox.TBoolean, typeof PG_DEFAULT>;
+      organizationId: PgAttr<_$typebox.TString, typeof PG_ORGANIZATION>;
     }>;
   }>;
   /**
    * Delete a user.
    */
   readonly deleteUser: _$alepha_server0.ActionPrimitiveFn<{
-    params: _$alepha.TObject<{
-      id: _$alepha.TString;
+    params: _$typebox.TObject<{
+      id: _$typebox.TString;
     }>;
-    query: _$alepha.TObject<{
-      userRealmName: _$alepha.TOptional<_$alepha.TString>;
+    query: _$typebox.TObject<{
+      userRealmName: _$typebox.TOptional<_$typebox.TString>;
     }>;
-    response: _$alepha.TObject<{
-      ok: _$alepha.TBoolean;
-      id: _$alepha.TOptional<_$alepha.TUnion<[_$alepha.TString, _$alepha.TInteger]>>;
-      count: _$alepha.TOptional<_$alepha.TNumber>;
+    response: _$typebox.TObject<{
+      ok: _$typebox.TBoolean;
+      id: _$typebox.TOptional<_$typebox.TUnion<[_$typebox.TString, _$typebox.TInteger]>>;
+      count: _$typebox.TOptional<_$typebox.TNumber>;
     }>;
   }>;
   /**
@@ -7553,14 +7569,14 @@ declare class AdminUserController {
    * id surface with that id in the response.
    */
   readonly deleteUsers: _$alepha_server0.ActionPrimitiveFn<{
-    query: _$alepha.TObject<{
-      userRealmName: _$alepha.TOptional<_$alepha.TString>;
+    query: _$typebox.TObject<{
+      userRealmName: _$typebox.TOptional<_$typebox.TString>;
     }>;
-    body: _$alepha.TObject<{
-      ids: _$alepha.TArray<_$alepha.TString>;
+    body: _$typebox.TObject<{
+      ids: _$typebox.TArray<_$typebox.TString>;
     }>;
-    response: _$alepha.TObject<{
-      deleted: _$alepha.TArray<_$alepha.TString>;
+    response: _$typebox.TObject<{
+      deleted: _$typebox.TArray<_$typebox.TString>;
     }>;
   }>;
 }
@@ -7581,62 +7597,62 @@ declare class RealmController {
    * This endpoint is not exposed in the API documentation.
    */
   readonly getRealmConfig: _$alepha_server0.ActionPrimitiveFn<{
-    query: _$alepha.TObject<{
-      realmName: _$alepha.TOptional<_$alepha.TString>;
-    }>;
-    response: _$alepha.TObject<{
-      settings: _$alepha.TObject<{
-        displayName: _$alepha.TOptional<_$alepha.TString>;
-        description: _$alepha.TOptional<_$alepha.TString>;
-        logoUrl: _$alepha.TOptional<_$alepha.TString>;
-        registrationAllowed: _$alepha.TBoolean;
-        email: _$alepha.TUnion<[_$typebox.TLiteral<"none">, _$typebox.TLiteral<"optional">, _$typebox.TLiteral<"required">]>;
-        username: _$alepha.TUnion<[_$typebox.TLiteral<"none">, _$typebox.TLiteral<"optional">, _$typebox.TLiteral<"required">, _$typebox.TLiteral<"email">]>;
-        usernameRegExp: _$alepha.TString;
-        usernameBlocklist: _$alepha.TArray<_$alepha.TString>;
-        phoneNumber: _$alepha.TUnion<[_$typebox.TLiteral<"none">, _$typebox.TLiteral<"optional">, _$typebox.TLiteral<"required">]>;
-        verifyEmailRequired: _$alepha.TBoolean;
-        verifyPhoneRequired: _$alepha.TBoolean;
-        firstNameLastName: _$alepha.TUnion<[_$typebox.TLiteral<"none">, _$typebox.TLiteral<"optional">, _$typebox.TLiteral<"required">]>;
-        resetPasswordAllowed: _$alepha.TBoolean;
-        captchaRequired: _$alepha.TBoolean;
-        adminEmails: _$alepha.TArray<_$alepha.TString>;
-        adminUsernames: _$alepha.TArray<_$alepha.TString>;
-        defaultRoles: _$alepha.TArray<_$alepha.TString>;
-        verifyEmailUrl: _$alepha.TOptional<_$alepha.TString>;
-        passwordPolicy: _$alepha.TObject<{
-          minLength: _$alepha.TInteger;
-          requireUppercase: _$alepha.TBoolean;
-          requireLowercase: _$alepha.TBoolean;
-          requireNumbers: _$alepha.TBoolean;
-          requireSpecialCharacters: _$alepha.TBoolean;
+    query: _$typebox.TObject<{
+      realmName: _$typebox.TOptional<_$typebox.TString>;
+    }>;
+    response: _$typebox.TObject<{
+      settings: _$typebox.TObject<{
+        displayName: _$typebox.TOptional<_$typebox.TString>;
+        description: _$typebox.TOptional<_$typebox.TString>;
+        logoUrl: _$typebox.TOptional<_$typebox.TString>;
+        registrationAllowed: _$typebox.TBoolean;
+        email: _$typebox.TUnion<[_$typebox.TLiteral<"none">, _$typebox.TLiteral<"optional">, _$typebox.TLiteral<"required">]>;
+        username: _$typebox.TUnion<[_$typebox.TLiteral<"none">, _$typebox.TLiteral<"optional">, _$typebox.TLiteral<"required">, _$typebox.TLiteral<"email">]>;
+        usernameRegExp: _$typebox.TString;
+        usernameBlocklist: _$typebox.TArray<_$typebox.TString>;
+        phoneNumber: _$typebox.TUnion<[_$typebox.TLiteral<"none">, _$typebox.TLiteral<"optional">, _$typebox.TLiteral<"required">]>;
+        verifyEmailRequired: _$typebox.TBoolean;
+        verifyPhoneRequired: _$typebox.TBoolean;
+        firstNameLastName: _$typebox.TUnion<[_$typebox.TLiteral<"none">, _$typebox.TLiteral<"optional">, _$typebox.TLiteral<"required">]>;
+        resetPasswordAllowed: _$typebox.TBoolean;
+        captchaRequired: _$typebox.TBoolean;
+        adminEmails: _$typebox.TArray<_$typebox.TString>;
+        adminUsernames: _$typebox.TArray<_$typebox.TString>;
+        defaultRoles: _$typebox.TArray<_$typebox.TString>;
+        verifyEmailUrl: _$typebox.TOptional<_$typebox.TString>;
+        passwordPolicy: _$typebox.TObject<{
+          minLength: _$typebox.TInteger;
+          requireUppercase: _$typebox.TBoolean;
+          requireLowercase: _$typebox.TBoolean;
+          requireNumbers: _$typebox.TBoolean;
+          requireSpecialCharacters: _$typebox.TBoolean;
         }>;
-        loginRateLimit: _$alepha.TObject<{
-          ipMaxAttempts: _$alepha.TInteger;
-          accountMaxAttempts: _$alepha.TInteger;
-          windowMs: _$alepha.TInteger;
+        loginRateLimit: _$typebox.TObject<{
+          ipMaxAttempts: _$typebox.TInteger;
+          accountMaxAttempts: _$typebox.TInteger;
+          windowMs: _$typebox.TInteger;
         }>;
-        refreshToken: _$alepha.TObject<{
-          expirationIdle: _$alepha.TOptional<_$alepha.TInteger>;
+        refreshToken: _$typebox.TObject<{
+          expirationIdle: _$typebox.TOptional<_$typebox.TInteger>;
         }>;
       }>;
-      realmName: _$alepha.TString;
-      authenticationMethods: _$alepha.TArray<_$alepha.TObject<{
-        name: _$alepha.TString;
-        type: _$alepha.TUnsafe<"OAUTH2" | "OIDC" | "CREDENTIALS">;
+      realmName: _$typebox.TString;
+      authenticationMethods: _$typebox.TArray<_$typebox.TObject<{
+        name: _$typebox.TString;
+        type: _$typebox.TUnsafe<"OAUTH2" | "OIDC" | "CREDENTIALS">;
       }>>;
-      captchaSiteKey: _$alepha.TOptional<_$alepha.TString>;
+      captchaSiteKey: _$typebox.TOptional<_$typebox.TString>;
     }>;
   }>;
   readonly checkUsernameAvailability: _$alepha_server0.ActionPrimitiveFn<{
-    query: _$alepha.TObject<{
-      realmName: _$alepha.TOptional<_$alepha.TString>;
+    query: _$typebox.TObject<{
+      realmName: _$typebox.TOptional<_$typebox.TString>;
     }>;
-    body: _$alepha.TObject<{
-      username: _$alepha.TString;
+    body: _$typebox.TObject<{
+      username: _$typebox.TString;
     }>;
-    response: _$alepha.TObject<{
-      available: _$alepha.TBoolean;
+    response: _$typebox.TObject<{
+      available: _$typebox.TBoolean;
     }>;
   }>;
 }
@@ -7648,10 +7664,10 @@ declare class RealmController {
  * Requires the intent ID from Phase 1, the verification code,
  * and the new password.
  */
-declare const completePasswordResetRequestSchema: _$alepha.TObject<{
-  intentId: _$alepha.TString;
-  code: _$alepha.TString;
-  newPassword: _$alepha.TString;
+declare const completePasswordResetRequestSchema: _$typebox.TObject<{
+  intentId: _$typebox.TString;
+  code: _$typebox.TString;
+  newPassword: _$typebox.TString;
 }>;
 type CompletePasswordResetRequest = Static<typeof completePasswordResetRequestSchema>;
 //#endregion
@@ -7662,9 +7678,9 @@ type CompletePasswordResetRequest = Static<typeof completePasswordResetRequestSc
  * Contains the intent ID needed for Phase 2 completion,
  * along with expiration time.
  */
-declare const passwordResetIntentResponseSchema: _$alepha.TObject<{
-  intentId: _$alepha.TString;
-  expiresAt: _$alepha.TString;
+declare const passwordResetIntentResponseSchema: _$typebox.TObject<{
+  intentId: _$typebox.TString;
+  expiresAt: _$typebox.TString;
 }>;
 type PasswordResetIntentResponse = Static<typeof passwordResetIntentResponseSchema>;
 //#endregion
@@ -7689,49 +7705,49 @@ declare class CredentialService {
   protected userAudits(realmName?: string): UserAudits | undefined;
   protected userNotifications(realmName?: string): UserNotifications | undefined;
   protected readonly intentCache: _$alepha_cache0.CacheMiddlewareFn<PasswordResetIntent>;
-  users(userRealmName?: string): Repository$1<_$alepha.TObject<{
-    id: PgAttr<PgAttr<_$alepha.TString, typeof PG_PRIMARY_KEY>, typeof PG_DEFAULT>;
-    version: PgAttr<PgAttr<_$alepha.TInteger, typeof PG_VERSION>, typeof PG_DEFAULT>;
-    createdAt: PgAttr<PgAttr<_$alepha.TString, typeof PG_CREATED_AT>, typeof PG_DEFAULT>;
-    updatedAt: PgAttr<PgAttr<_$alepha.TString, typeof PG_UPDATED_AT>, typeof PG_DEFAULT>;
-    realm: PgAttr<_$alepha.TString, typeof PG_DEFAULT>;
-    username: _$alepha.TOptional<_$alepha.TString>;
-    email: _$alepha.TOptional<_$alepha.TString>;
-    phoneNumber: _$alepha.TOptional<_$alepha.TString>;
-    roles: PgAttr<_$alepha.TArray<_$alepha.TString>, typeof PG_DEFAULT>;
-    firstName: _$alepha.TOptional<_$alepha.TString>;
-    lastName: _$alepha.TOptional<_$alepha.TString>;
-    picture: _$alepha.TOptional<_$alepha.TString>;
-    enabled: PgAttr<_$alepha.TBoolean, typeof PG_DEFAULT>;
-    emailVerified: PgAttr<_$alepha.TBoolean, typeof PG_DEFAULT>;
-    organizationId: PgAttr<_$alepha.TOptional<_$alepha.TString>, typeof PG_ORGANIZATION>;
+  users(userRealmName?: string): Repository$1<_$typebox.TObject<{
+    id: PgAttr<PgAttr<_$typebox.TString, typeof PG_PRIMARY_KEY>, typeof PG_DEFAULT>;
+    version: PgAttr<PgAttr<_$typebox.TInteger, typeof PG_VERSION>, typeof PG_DEFAULT>;
+    createdAt: PgAttr<PgAttr<_$typebox.TString, typeof PG_CREATED_AT>, typeof PG_DEFAULT>;
+    updatedAt: PgAttr<PgAttr<_$typebox.TString, typeof PG_UPDATED_AT>, typeof PG_DEFAULT>;
+    realm: PgAttr<_$typebox.TString, typeof PG_DEFAULT>;
+    username: _$typebox.TOptional<_$typebox.TString>;
+    email: _$typebox.TOptional<_$typebox.TString>;
+    phoneNumber: _$typebox.TOptional<_$typebox.TString>;
+    roles: PgAttr<_$typebox.TArray<_$typebox.TString>, typeof PG_DEFAULT>;
+    firstName: _$typebox.TOptional<_$typebox.TString>;
+    lastName: _$typebox.TOptional<_$typebox.TString>;
+    picture: _$typebox.TOptional<_$typebox.TString>;
+    enabled: PgAttr<_$typebox.TBoolean, typeof PG_DEFAULT>;
+    emailVerified: PgAttr<_$typebox.TBoolean, typeof PG_DEFAULT>;
+    organizationId: PgAttr<_$typebox.TString, typeof PG_ORGANIZATION>;
   }>>;
-  sessions(userRealmName?: string): Repository$1<_$alepha.TObject<{
-    id: PgAttr<PgAttr<_$alepha.TString, typeof PG_PRIMARY_KEY>, typeof PG_DEFAULT>;
-    version: PgAttr<PgAttr<_$alepha.TInteger, typeof PG_VERSION>, typeof PG_DEFAULT>;
-    createdAt: PgAttr<PgAttr<_$alepha.TString, typeof PG_CREATED_AT>, typeof PG_DEFAULT>;
-    updatedAt: PgAttr<PgAttr<_$alepha.TString, typeof PG_UPDATED_AT>, typeof PG_DEFAULT>;
-    refreshToken: _$alepha.TString;
-    userId: PgAttr<_$alepha.TString, typeof PG_REF>;
-    expiresAt: _$alepha.TString;
-    lastUsedAt: _$alepha.TOptional<_$alepha.TString>;
-    ip: _$alepha.TOptional<_$alepha.TString>;
-    userAgent: _$alepha.TOptional<_$alepha.TObject<{
-      os: _$alepha.TString;
-      browser: _$alepha.TString;
-      device: _$alepha.TUnsafe<"MOBILE" | "DESKTOP" | "TABLET">;
+  sessions(userRealmName?: string): Repository$1<_$typebox.TObject<{
+    id: PgAttr<PgAttr<_$typebox.TString, typeof PG_PRIMARY_KEY>, typeof PG_DEFAULT>;
+    version: PgAttr<PgAttr<_$typebox.TInteger, typeof PG_VERSION>, typeof PG_DEFAULT>;
+    createdAt: PgAttr<PgAttr<_$typebox.TString, typeof PG_CREATED_AT>, typeof PG_DEFAULT>;
+    updatedAt: PgAttr<PgAttr<_$typebox.TString, typeof PG_UPDATED_AT>, typeof PG_DEFAULT>;
+    refreshToken: _$typebox.TString;
+    userId: PgAttr<_$typebox.TString, typeof PG_REF>;
+    expiresAt: _$typebox.TString;
+    lastUsedAt: _$typebox.TOptional<_$typebox.TString>;
+    ip: _$typebox.TOptional<_$typebox.TString>;
+    userAgent: _$typebox.TOptional<_$typebox.TObject<{
+      os: _$typebox.TString;
+      browser: _$typebox.TString;
+      device: _$typebox.TUnsafe<"MOBILE" | "DESKTOP" | "TABLET">;
     }>>;
   }>>;
-  identities(userRealmName?: string): Repository$1<_$alepha.TObject<{
-    id: PgAttr<PgAttr<_$alepha.TString, typeof PG_PRIMARY_KEY>, typeof PG_DEFAULT>;
-    version: PgAttr<PgAttr<_$alepha.TInteger, typeof PG_VERSION>, typeof PG_DEFAULT>;
-    createdAt: PgAttr<PgAttr<_$alepha.TString, typeof PG_CREATED_AT>, typeof PG_DEFAULT>;
-    updatedAt: PgAttr<PgAttr<_$alepha.TString, typeof PG_UPDATED_AT>, typeof PG_DEFAULT>;
-    userId: PgAttr<_$alepha.TString, typeof PG_REF>;
-    password: _$alepha.TOptional<_$alepha.TString>;
-    provider: _$alepha.TString;
-    providerUserId: _$alepha.TOptional<_$alepha.TString>;
-    providerData: _$alepha.TOptional<_$alepha.TRecord<string, _$alepha.TAny>>;
+  identities(userRealmName?: string): Repository$1<_$typebox.TObject<{
+    id: PgAttr<PgAttr<_$typebox.TString, typeof PG_PRIMARY_KEY>, typeof PG_DEFAULT>;
+    version: PgAttr<PgAttr<_$typebox.TInteger, typeof PG_VERSION>, typeof PG_DEFAULT>;
+    createdAt: PgAttr<PgAttr<_$typebox.TString, typeof PG_CREATED_AT>, typeof PG_DEFAULT>;
+    updatedAt: PgAttr<PgAttr<_$typebox.TString, typeof PG_UPDATED_AT>, typeof PG_DEFAULT>;
+    userId: PgAttr<_$typebox.TString, typeof PG_REF>;
+    password: _$typebox.TOptional<_$typebox.TString>;
+    provider: _$typebox.TString;
+    providerUserId: _$typebox.TOptional<_$typebox.TString>;
+    providerData: _$typebox.TOptional<_$typebox.TRecord<string, _$typebox.TAny>>;
   }>>;
   /**
    * Validate a password against the realm's password policy.
@@ -7772,11 +7788,11 @@ declare class CredentialService {
 }
 //#endregion
 //#region ../../src/api/users/schemas/completeRegistrationRequestSchema.d.ts
-declare const completeRegistrationRequestSchema: _$alepha.TObject<{
-  intentId: _$alepha.TString;
-  emailCode: _$alepha.TOptional<_$alepha.TString>;
-  phoneCode: _$alepha.TOptional<_$alepha.TString>;
-  captchaToken: _$alepha.TOptional<_$alepha.TString>;
+declare const completeRegistrationRequestSchema: _$typebox.TObject<{
+  intentId: _$typebox.TString;
+  emailCode: _$typebox.TOptional<_$typebox.TString>;
+  phoneCode: _$typebox.TOptional<_$typebox.TString>;
+  captchaToken: _$typebox.TOptional<_$typebox.TString>;
 }>;
 type CompleteRegistrationRequest = Static<typeof completeRegistrationRequestSchema>;
 //#endregion
@@ -7785,26 +7801,26 @@ type CompleteRegistrationRequest = Static<typeof completeRegistrationRequestSche
  * Schema for user registration request body.
  * Password is always required, other fields depend on realm settings.
  */
-declare const registerRequestSchema: _$alepha.TObject<{
-  password: _$alepha.TString;
-  username: _$alepha.TOptional<_$alepha.TString>;
-  email: _$alepha.TOptional<_$alepha.TString>;
-  phoneNumber: _$alepha.TOptional<_$alepha.TString>;
-  firstName: _$alepha.TOptional<_$alepha.TString>;
-  lastName: _$alepha.TOptional<_$alepha.TString>;
-  picture: _$alepha.TOptional<_$alepha.TString>;
-  captchaToken: _$alepha.TOptional<_$alepha.TString>;
+declare const registerRequestSchema: _$typebox.TObject<{
+  password: _$typebox.TString;
+  username: _$typebox.TOptional<_$typebox.TString>;
+  email: _$typebox.TOptional<_$typebox.TString>;
+  phoneNumber: _$typebox.TOptional<_$typebox.TString>;
+  firstName: _$typebox.TOptional<_$typebox.TString>;
+  lastName: _$typebox.TOptional<_$typebox.TString>;
+  picture: _$typebox.TOptional<_$typebox.TString>;
+  captchaToken: _$typebox.TOptional<_$typebox.TString>;
 }>;
 type RegisterRequest = Static<typeof registerRequestSchema>;
 //#endregion
 //#region ../../src/api/users/schemas/registrationIntentResponseSchema.d.ts
-declare const registrationIntentResponseSchema: _$alepha.TObject<{
-  intentId: _$alepha.TString;
-  expectCaptcha: _$alepha.TBoolean;
-  captchaSiteKey: _$alepha.TOptional<_$alepha.TString>;
-  expectEmailVerification: _$alepha.TBoolean;
-  expectPhoneVerification: _$alepha.TBoolean;
-  expiresAt: _$alepha.TString;
+declare const registrationIntentResponseSchema: _$typebox.TObject<{
+  intentId: _$typebox.TString;
+  expectCaptcha: _$typebox.TBoolean;
+  captchaSiteKey: _$typebox.TOptional<_$typebox.TString>;
+  expectEmailVerification: _$typebox.TBoolean;
+  expectPhoneVerification: _$typebox.TBoolean;
+  expiresAt: _$typebox.TString;
 }>;
 type RegistrationIntentResponse = Static<typeof registrationIntentResponseSchema>;
 //#endregion
@@ -7982,26 +7998,26 @@ declare class UserController {
    * Validates data, creates verification sessions, and stores intent in cache.
    */
   readonly createRegistrationIntent: _$alepha_server0.ActionPrimitiveFn<{
-    body: _$alepha.TObject<{
-      password: _$alepha.TString;
-      username: _$alepha.TOptional<_$alepha.TString>;
-      email: _$alepha.TOptional<_$alepha.TString>;
-      phoneNumber: _$alepha.TOptional<_$alepha.TString>;
-      firstName: _$alepha.TOptional<_$alepha.TString>;
-      lastName: _$alepha.TOptional<_$alepha.TString>;
-      picture: _$alepha.TOptional<_$alepha.TString>;
-      captchaToken: _$alepha.TOptional<_$alepha.TString>;
-    }>;
-    query: _$alepha.TObject<{
-      userRealmName: _$alepha.TOptional<_$alepha.TString>;
-    }>;
-    response: _$alepha.TObject<{
-      intentId: _$alepha.TString;
-      expectCaptcha: _$alepha.TBoolean;
-      captchaSiteKey: _$alepha.TOptional<_$alepha.TString>;
-      expectEmailVerification: _$alepha.TBoolean;
-      expectPhoneVerification: _$alepha.TBoolean;
-      expiresAt: _$alepha.TString;
+    body: _$typebox.TObject<{
+      password: _$typebox.TString;
+      username: _$typebox.TOptional<_$typebox.TString>;
+      email: _$typebox.TOptional<_$typebox.TString>;
+      phoneNumber: _$typebox.TOptional<_$typebox.TString>;
+      firstName: _$typebox.TOptional<_$typebox.TString>;
+      lastName: _$typebox.TOptional<_$typebox.TString>;
+      picture: _$typebox.TOptional<_$typebox.TString>;
+      captchaToken: _$typebox.TOptional<_$typebox.TString>;
+    }>;
+    query: _$typebox.TObject<{
+      userRealmName: _$typebox.TOptional<_$typebox.TString>;
+    }>;
+    response: _$typebox.TObject<{
+      intentId: _$typebox.TString;
+      expectCaptcha: _$typebox.TBoolean;
+      captchaSiteKey: _$typebox.TOptional<_$typebox.TString>;
+      expectEmailVerification: _$typebox.TBoolean;
+      expectPhoneVerification: _$typebox.TBoolean;
+      expiresAt: _$typebox.TString;
     }>;
   }>;
   /**
@@ -8009,28 +8025,28 @@ declare class UserController {
    * Validates verification codes and creates the user.
    */
   readonly createUserFromIntent: _$alepha_server0.ActionPrimitiveFn<{
-    body: _$alepha.TObject<{
-      intentId: _$alepha.TString;
-      emailCode: _$alepha.TOptional<_$alepha.TString>;
-      phoneCode: _$alepha.TOptional<_$alepha.TString>;
-      captchaToken: _$alepha.TOptional<_$alepha.TString>;
-    }>;
-    response: _$alepha.TObject<{
-      id: PgAttr<PgAttr<_$alepha.TString, typeof PG_PRIMARY_KEY>, typeof PG_DEFAULT>;
-      version: PgAttr<PgAttr<_$alepha.TInteger, typeof PG_VERSION>, typeof PG_DEFAULT>;
-      createdAt: PgAttr<PgAttr<_$alepha.TString, typeof PG_CREATED_AT>, typeof PG_DEFAULT>;
-      updatedAt: PgAttr<PgAttr<_$alepha.TString, typeof PG_UPDATED_AT>, typeof PG_DEFAULT>;
-      realm: PgAttr<_$alepha.TString, typeof PG_DEFAULT>;
-      username: _$alepha.TOptional<_$alepha.TString>;
-      email: _$alepha.TOptional<_$alepha.TString>;
-      phoneNumber: _$alepha.TOptional<_$alepha.TString>;
-      roles: PgAttr<_$alepha.TArray<_$alepha.TString>, typeof PG_DEFAULT>;
-      firstName: _$alepha.TOptional<_$alepha.TString>;
-      lastName: _$alepha.TOptional<_$alepha.TString>;
-      picture: _$alepha.TOptional<_$alepha.TString>;
-      enabled: PgAttr<_$alepha.TBoolean, typeof PG_DEFAULT>;
-      emailVerified: PgAttr<_$alepha.TBoolean, typeof PG_DEFAULT>;
-      organizationId: PgAttr<_$alepha.TOptional<_$alepha.TString>, typeof PG_ORGANIZATION>;
+    body: _$typebox.TObject<{
+      intentId: _$typebox.TString;
+      emailCode: _$typebox.TOptional<_$typebox.TString>;
+      phoneCode: _$typebox.TOptional<_$typebox.TString>;
+      captchaToken: _$typebox.TOptional<_$typebox.TString>;
+    }>;
+    response: _$typebox.TObject<{
+      id: PgAttr<PgAttr<_$typebox.TString, typeof PG_PRIMARY_KEY>, typeof PG_DEFAULT>;
+      version: PgAttr<PgAttr<_$typebox.TInteger, typeof PG_VERSION>, typeof PG_DEFAULT>;
+      createdAt: PgAttr<PgAttr<_$typebox.TString, typeof PG_CREATED_AT>, typeof PG_DEFAULT>;
+      updatedAt: PgAttr<PgAttr<_$typebox.TString, typeof PG_UPDATED_AT>, typeof PG_DEFAULT>;
+      realm: PgAttr<_$typebox.TString, typeof PG_DEFAULT>;
+      username: _$typebox.TOptional<_$typebox.TString>;
+      email: _$typebox.TOptional<_$typebox.TString>;
+      phoneNumber: _$typebox.TOptional<_$typebox.TString>;
+      roles: PgAttr<_$typebox.TArray<_$typebox.TString>, typeof PG_DEFAULT>;
+      firstName: _$typebox.TOptional<_$typebox.TString>;
+      lastName: _$typebox.TOptional<_$typebox.TString>;
+      picture: _$typebox.TOptional<_$typebox.TString>;
+      enabled: PgAttr<_$typebox.TBoolean, typeof PG_DEFAULT>;
+      emailVerified: PgAttr<_$typebox.TBoolean, typeof PG_DEFAULT>;
+      organizationId: PgAttr<_$typebox.TString, typeof PG_ORGANIZATION>;
     }>;
   }>;
   /**
@@ -8038,15 +8054,15 @@ declare class UserController {
    * Validates email, sends verification code, and stores intent in cache.
    */
   readonly createPasswordResetIntent: _$alepha_server0.ActionPrimitiveFn<{
-    query: _$alepha.TObject<{
-      userRealmName: _$alepha.TOptional<_$alepha.TString>;
+    query: _$typebox.TObject<{
+      userRealmName: _$typebox.TOptional<_$typebox.TString>;
     }>;
-    body: _$alepha.TObject<{
-      email: _$alepha.TString;
+    body: _$typebox.TObject<{
+      email: _$typebox.TString;
     }>;
-    response: _$alepha.TObject<{
-      intentId: _$alepha.TString;
-      expiresAt: _$alepha.TString;
+    response: _$typebox.TObject<{
+      intentId: _$typebox.TString;
+      expiresAt: _$typebox.TString;
     }>;
   }>;
   /**
@@ -8054,61 +8070,61 @@ declare class UserController {
    * Validates verification code, updates password, and invalidates sessions.
    */
   readonly completePasswordReset: _$alepha_server0.ActionPrimitiveFn<{
-    body: _$alepha.TObject<{
-      intentId: _$alepha.TString;
-      code: _$alepha.TString;
-      newPassword: _$alepha.TString;
+    body: _$typebox.TObject<{
+      intentId: _$typebox.TString;
+      code: _$typebox.TString;
+      newPassword: _$typebox.TString;
     }>;
-    response: _$alepha.TObject<{
-      ok: _$alepha.TBoolean;
-      id: _$alepha.TOptional<_$alepha.TUnion<[_$alepha.TString, _$alepha.TInteger]>>;
-      count: _$alepha.TOptional<_$alepha.TNumber>;
+    response: _$typebox.TObject<{
+      ok: _$typebox.TBoolean;
+      id: _$typebox.TOptional<_$typebox.TUnion<[_$typebox.TString, _$typebox.TInteger]>>;
+      count: _$typebox.TOptional<_$typebox.TNumber>;
     }>;
   }>;
   /**
    * @deprecated Use createPasswordResetIntent instead
    */
   requestPasswordReset: _$alepha_server0.ActionPrimitiveFn<{
-    query: _$alepha.TObject<{
-      userRealmName: _$alepha.TOptional<_$alepha.TString>;
+    query: _$typebox.TObject<{
+      userRealmName: _$typebox.TOptional<_$typebox.TString>;
     }>;
-    body: _$alepha.TObject<{
-      email: _$alepha.TString;
+    body: _$typebox.TObject<{
+      email: _$typebox.TString;
     }>;
-    response: _$alepha.TObject<{
-      success: _$alepha.TBoolean;
-      message: _$alepha.TString;
+    response: _$typebox.TObject<{
+      success: _$typebox.TBoolean;
+      message: _$typebox.TString;
     }>;
   }>;
   /**
    * @deprecated Use completePasswordReset instead
    */
   validateResetToken: _$alepha_server0.ActionPrimitiveFn<{
-    query: _$alepha.TObject<{
-      email: _$alepha.TString;
-      token: _$alepha.TString;
-      userRealmName: _$alepha.TOptional<_$alepha.TString>;
+    query: _$typebox.TObject<{
+      email: _$typebox.TString;
+      token: _$typebox.TString;
+      userRealmName: _$typebox.TOptional<_$typebox.TString>;
     }>;
-    response: _$alepha.TObject<{
-      valid: _$alepha.TBoolean;
-      email: _$alepha.TOptional<_$alepha.TString>;
+    response: _$typebox.TObject<{
+      valid: _$typebox.TBoolean;
+      email: _$typebox.TOptional<_$typebox.TString>;
     }>;
   }>;
   /**
    * @deprecated Use completePasswordReset instead
    */
   resetPassword: _$alepha_server0.ActionPrimitiveFn<{
-    query: _$alepha.TObject<{
-      userRealmName: _$alepha.TOptional<_$alepha.TString>;
+    query: _$typebox.TObject<{
+      userRealmName: _$typebox.TOptional<_$typebox.TString>;
     }>;
-    body: _$alepha.TObject<{
-      email: _$alepha.TString;
-      token: _$alepha.TString;
-      newPassword: _$alepha.TString;
+    body: _$typebox.TObject<{
+      email: _$typebox.TString;
+      token: _$typebox.TString;
+      newPassword: _$typebox.TString;
     }>;
-    response: _$alepha.TObject<{
-      success: _$alepha.TBoolean;
-      message: _$alepha.TString;
+    response: _$typebox.TObject<{
+      success: _$typebox.TBoolean;
+      message: _$typebox.TString;
     }>;
   }>;
   /**
@@ -8118,16 +8134,16 @@ declare class UserController {
    * @param verifyUrl - Required when method is "link". The base URL for the verification link. Token and email will be appended as query params.
    */
   requestEmailVerification: _$alepha_server0.ActionPrimitiveFn<{
-    query: _$alepha.TObject<{
-      userRealmName: _$alepha.TOptional<_$alepha.TString>;
-      method: _$alepha.TOptional<_$alepha.TUnsafe<"link" | "code">>;
+    query: _$typebox.TObject<{
+      userRealmName: _$typebox.TOptional<_$typebox.TString>;
+      method: _$typebox.TOptional<_$typebox.TUnsafe<"link" | "code">>;
     }>;
-    body: _$alepha.TObject<{
-      email: _$alepha.TString;
+    body: _$typebox.TObject<{
+      email: _$typebox.TString;
     }>;
-    response: _$alepha.TObject<{
-      success: _$alepha.TBoolean;
-      message: _$alepha.TString;
+    response: _$typebox.TObject<{
+      success: _$typebox.TBoolean;
+      message: _$typebox.TString;
     }>;
   }>;
   /**
@@ -8135,28 +8151,28 @@ declare class UserController {
    * Updates the user's emailVerified status.
    */
   verifyEmail: _$alepha_server0.ActionPrimitiveFn<{
-    query: _$alepha.TObject<{
-      userRealmName: _$alepha.TOptional<_$alepha.TString>;
+    query: _$typebox.TObject<{
+      userRealmName: _$typebox.TOptional<_$typebox.TString>;
     }>;
-    body: _$alepha.TObject<{
-      email: _$alepha.TString;
-      token: _$alepha.TString;
+    body: _$typebox.TObject<{
+      email: _$typebox.TString;
+      token: _$typebox.TString;
     }>;
-    response: _$alepha.TObject<{
-      success: _$alepha.TBoolean;
-      message: _$alepha.TString;
+    response: _$typebox.TObject<{
+      success: _$typebox.TBoolean;
+      message: _$typebox.TString;
     }>;
   }>;
   /**
    * Check if an email is verified.
    */
   checkEmailVerification: _$alepha_server0.ActionPrimitiveFn<{
-    query: _$alepha.TObject<{
-      email: _$alepha.TString;
-      userRealmName: _$alepha.TOptional<_$alepha.TString>;
+    query: _$typebox.TObject<{
+      email: _$typebox.TString;
+      userRealmName: _$typebox.TOptional<_$typebox.TString>;
     }>;
-    response: _$alepha.TObject<{
-      verified: _$alepha.TBoolean;
+    response: _$typebox.TObject<{
+      verified: _$typebox.TBoolean;
     }>;
   }>;
 }
@@ -8176,20 +8192,20 @@ declare class UserController {
 declare class UserJobs {
   protected readonly log: _$alepha_logger0.Logger;
   protected readonly dateTimeProvider: DateTimeProvider;
-  protected readonly sessionRepository: _$alepha_orm0.Repository<_$alepha.TObject<{
-    id: _$alepha_orm0.PgAttr<_$alepha_orm0.PgAttr<_$alepha.TString, typeof _$alepha_orm0.PG_PRIMARY_KEY>, typeof _$alepha_orm0.PG_DEFAULT>;
-    version: _$alepha_orm0.PgAttr<_$alepha_orm0.PgAttr<_$alepha.TInteger, typeof _$alepha_orm0.PG_VERSION>, typeof _$alepha_orm0.PG_DEFAULT>;
-    createdAt: _$alepha_orm0.PgAttr<_$alepha_orm0.PgAttr<_$alepha.TString, typeof _$alepha_orm0.PG_CREATED_AT>, typeof _$alepha_orm0.PG_DEFAULT>;
-    updatedAt: _$alepha_orm0.PgAttr<_$alepha_orm0.PgAttr<_$alepha.TString, typeof _$alepha_orm0.PG_UPDATED_AT>, typeof _$alepha_orm0.PG_DEFAULT>;
-    refreshToken: _$alepha.TString;
-    userId: _$alepha_orm0.PgAttr<_$alepha.TString, typeof _$alepha_orm0.PG_REF>;
-    expiresAt: _$alepha.TString;
-    lastUsedAt: _$alepha.TOptional<_$alepha.TString>;
-    ip: _$alepha.TOptional<_$alepha.TString>;
-    userAgent: _$alepha.TOptional<_$alepha.TObject<{
-      os: _$alepha.TString;
-      browser: _$alepha.TString;
-      device: _$alepha.TUnsafe<"MOBILE" | "DESKTOP" | "TABLET">;
+  protected readonly sessionRepository: _$alepha_orm0.Repository<_$typebox.TObject<{
+    id: _$alepha_orm0.PgAttr<_$alepha_orm0.PgAttr<_$typebox.TString, typeof _$alepha_orm0.PG_PRIMARY_KEY>, typeof _$alepha_orm0.PG_DEFAULT>;
+    version: _$alepha_orm0.PgAttr<_$alepha_orm0.PgAttr<_$typebox.TInteger, typeof _$alepha_orm0.PG_VERSION>, typeof _$alepha_orm0.PG_DEFAULT>;
+    createdAt: _$alepha_orm0.PgAttr<_$alepha_orm0.PgAttr<_$typebox.TString, typeof _$alepha_orm0.PG_CREATED_AT>, typeof _$alepha_orm0.PG_DEFAULT>;
+    updatedAt: _$alepha_orm0.PgAttr<_$alepha_orm0.PgAttr<_$typebox.TString, typeof _$alepha_orm0.PG_UPDATED_AT>, typeof _$alepha_orm0.PG_DEFAULT>;
+    refreshToken: _$typebox.TString;
+    userId: _$alepha_orm0.PgAttr<_$typebox.TString, typeof _$alepha_orm0.PG_REF>;
+    expiresAt: _$typebox.TString;
+    lastUsedAt: _$typebox.TOptional<_$typebox.TString>;
+    ip: _$typebox.TOptional<_$typebox.TString>;
+    userAgent: _$typebox.TOptional<_$typebox.TObject<{
+      os: _$typebox.TString;
+      browser: _$typebox.TString;
+      device: _$typebox.TUnsafe<"MOBILE" | "DESKTOP" | "TABLET">;
     }>>;
   }>>;
   protected readonly realmProvider: RealmProvider;
@@ -8205,133 +8221,133 @@ declare class UserJobs {
    * The idle sweep is best-effort cleanup — runtime enforcement happens in
    * `SessionService.refreshSession()`.
    */
-  readonly purgeExpiredSessions: _$alepha_api_jobs0.JobPrimitive<_$alepha.TSchema>;
+  readonly purgeExpiredSessions: _$alepha_api_jobs0.JobPrimitive<_$typebox.TSchema>;
 }
 //#endregion
 //#region ../../src/api/users/schemas/identityResourceSchema.d.ts
-declare const identityResourceSchema: _$alepha.TObject<{
-  id: PgAttr<PgAttr<_$alepha.TString, typeof PG_PRIMARY_KEY>, typeof PG_DEFAULT>;
-  version: PgAttr<PgAttr<_$alepha.TInteger, typeof PG_VERSION>, typeof PG_DEFAULT>;
-  createdAt: PgAttr<PgAttr<_$alepha.TString, typeof PG_CREATED_AT>, typeof PG_DEFAULT>;
-  updatedAt: PgAttr<PgAttr<_$alepha.TString, typeof PG_UPDATED_AT>, typeof PG_DEFAULT>;
-  userId: PgAttr<_$alepha.TString, typeof PG_REF>;
-  provider: _$alepha.TString;
-  providerUserId: _$alepha.TOptional<_$alepha.TString>;
-  providerData: _$alepha.TOptional<_$alepha.TRecord<string, _$alepha.TAny>>;
+declare const identityResourceSchema: _$typebox.TObject<{
+  id: PgAttr<PgAttr<_$typebox.TString, typeof PG_PRIMARY_KEY>, typeof PG_DEFAULT>;
+  version: PgAttr<PgAttr<_$typebox.TInteger, typeof PG_VERSION>, typeof PG_DEFAULT>;
+  createdAt: PgAttr<PgAttr<_$typebox.TString, typeof PG_CREATED_AT>, typeof PG_DEFAULT>;
+  updatedAt: PgAttr<PgAttr<_$typebox.TString, typeof PG_UPDATED_AT>, typeof PG_DEFAULT>;
+  userId: PgAttr<_$typebox.TString, typeof PG_REF>;
+  provider: _$typebox.TString;
+  providerUserId: _$typebox.TOptional<_$typebox.TString>;
+  providerData: _$typebox.TOptional<_$typebox.TRecord<string, _$typebox.TAny>>;
 }>;
 type IdentityResource = Static<typeof identityResourceSchema>;
 //#endregion
 //#region ../../src/api/users/schemas/loginSchema.d.ts
-declare const loginSchema: _$alepha.TObject<{
-  username: _$alepha.TString;
-  password: _$alepha.TString;
+declare const loginSchema: _$typebox.TObject<{
+  username: _$typebox.TString;
+  password: _$typebox.TString;
 }>;
 type LoginInput = Static<typeof loginSchema>;
 //#endregion
 //#region ../../src/api/users/schemas/realmConfigSchema.d.ts
-declare const realmConfigSchema: _$alepha.TObject<{
-  settings: _$alepha.TObject<{
-    displayName: _$alepha.TOptional<_$alepha.TString>;
-    description: _$alepha.TOptional<_$alepha.TString>;
-    logoUrl: _$alepha.TOptional<_$alepha.TString>;
-    registrationAllowed: _$alepha.TBoolean;
-    email: _$alepha.TUnion<[_$typebox.TLiteral<"none">, _$typebox.TLiteral<"optional">, _$typebox.TLiteral<"required">]>;
-    username: _$alepha.TUnion<[_$typebox.TLiteral<"none">, _$typebox.TLiteral<"optional">, _$typebox.TLiteral<"required">, _$typebox.TLiteral<"email">]>;
-    usernameRegExp: _$alepha.TString;
-    usernameBlocklist: _$alepha.TArray<_$alepha.TString>;
-    phoneNumber: _$alepha.TUnion<[_$typebox.TLiteral<"none">, _$typebox.TLiteral<"optional">, _$typebox.TLiteral<"required">]>;
-    verifyEmailRequired: _$alepha.TBoolean;
-    verifyPhoneRequired: _$alepha.TBoolean;
-    firstNameLastName: _$alepha.TUnion<[_$typebox.TLiteral<"none">, _$typebox.TLiteral<"optional">, _$typebox.TLiteral<"required">]>;
-    resetPasswordAllowed: _$alepha.TBoolean;
-    captchaRequired: _$alepha.TBoolean;
-    adminEmails: _$alepha.TArray<_$alepha.TString>;
-    adminUsernames: _$alepha.TArray<_$alepha.TString>;
-    defaultRoles: _$alepha.TArray<_$alepha.TString>;
-    verifyEmailUrl: _$alepha.TOptional<_$alepha.TString>;
-    passwordPolicy: _$alepha.TObject<{
-      minLength: _$alepha.TInteger;
-      requireUppercase: _$alepha.TBoolean;
-      requireLowercase: _$alepha.TBoolean;
-      requireNumbers: _$alepha.TBoolean;
-      requireSpecialCharacters: _$alepha.TBoolean;
-    }>;
-    loginRateLimit: _$alepha.TObject<{
-      ipMaxAttempts: _$alepha.TInteger;
-      accountMaxAttempts: _$alepha.TInteger;
-      windowMs: _$alepha.TInteger;
-    }>;
-    refreshToken: _$alepha.TObject<{
-      expirationIdle: _$alepha.TOptional<_$alepha.TInteger>;
+declare const realmConfigSchema: _$typebox.TObject<{
+  settings: _$typebox.TObject<{
+    displayName: _$typebox.TOptional<_$typebox.TString>;
+    description: _$typebox.TOptional<_$typebox.TString>;
+    logoUrl: _$typebox.TOptional<_$typebox.TString>;
+    registrationAllowed: _$typebox.TBoolean;
+    email: _$typebox.TUnion<[_$typebox.TLiteral<"none">, _$typebox.TLiteral<"optional">, _$typebox.TLiteral<"required">]>;
+    username: _$typebox.TUnion<[_$typebox.TLiteral<"none">, _$typebox.TLiteral<"optional">, _$typebox.TLiteral<"required">, _$typebox.TLiteral<"email">]>;
+    usernameRegExp: _$typebox.TString;
+    usernameBlocklist: _$typebox.TArray<_$typebox.TString>;
+    phoneNumber: _$typebox.TUnion<[_$typebox.TLiteral<"none">, _$typebox.TLiteral<"optional">, _$typebox.TLiteral<"required">]>;
+    verifyEmailRequired: _$typebox.TBoolean;
+    verifyPhoneRequired: _$typebox.TBoolean;
+    firstNameLastName: _$typebox.TUnion<[_$typebox.TLiteral<"none">, _$typebox.TLiteral<"optional">, _$typebox.TLiteral<"required">]>;
+    resetPasswordAllowed: _$typebox.TBoolean;
+    captchaRequired: _$typebox.TBoolean;
+    adminEmails: _$typebox.TArray<_$typebox.TString>;
+    adminUsernames: _$typebox.TArray<_$typebox.TString>;
+    defaultRoles: _$typebox.TArray<_$typebox.TString>;
+    verifyEmailUrl: _$typebox.TOptional<_$typebox.TString>;
+    passwordPolicy: _$typebox.TObject<{
+      minLength: _$typebox.TInteger;
+      requireUppercase: _$typebox.TBoolean;
+      requireLowercase: _$typebox.TBoolean;
+      requireNumbers: _$typebox.TBoolean;
+      requireSpecialCharacters: _$typebox.TBoolean;
+    }>;
+    loginRateLimit: _$typebox.TObject<{
+      ipMaxAttempts: _$typebox.TInteger;
+      accountMaxAttempts: _$typebox.TInteger;
+      windowMs: _$typebox.TInteger;
+    }>;
+    refreshToken: _$typebox.TObject<{
+      expirationIdle: _$typebox.TOptional<_$typebox.TInteger>;
     }>;
   }>;
-  realmName: _$alepha.TString;
-  authenticationMethods: _$alepha.TArray<_$alepha.TObject<{
-    name: _$alepha.TString;
-    type: _$alepha.TUnsafe<"OAUTH2" | "OIDC" | "CREDENTIALS">;
+  realmName: _$typebox.TString;
+  authenticationMethods: _$typebox.TArray<_$typebox.TObject<{
+    name: _$typebox.TString;
+    type: _$typebox.TUnsafe<"OAUTH2" | "OIDC" | "CREDENTIALS">;
   }>>;
-  captchaSiteKey: _$alepha.TOptional<_$alepha.TString>;
+  captchaSiteKey: _$typebox.TOptional<_$typebox.TString>;
 }>;
 type RealmConfig = Static<typeof realmConfigSchema>;
 //#endregion
 //#region ../../src/api/users/schemas/registerSchema.d.ts
-declare const registerSchema: _$alepha.TObject<{
-  username: _$alepha.TString;
-  email: _$alepha.TString;
-  password: _$alepha.TString;
-  confirmPassword: _$alepha.TString;
-  firstName: _$alepha.TOptional<_$alepha.TString>;
-  lastName: _$alepha.TOptional<_$alepha.TString>;
+declare const registerSchema: _$typebox.TObject<{
+  username: _$typebox.TString;
+  email: _$typebox.TString;
+  password: _$typebox.TString;
+  confirmPassword: _$typebox.TString;
+  firstName: _$typebox.TOptional<_$typebox.TString>;
+  lastName: _$typebox.TOptional<_$typebox.TString>;
 }>;
 type RegisterInput = Static<typeof registerSchema>;
 //#endregion
 //#region ../../src/api/users/schemas/resetPasswordSchema.d.ts
-declare const resetPasswordRequestSchema: _$alepha.TObject<{
-  email: _$alepha.TString;
+declare const resetPasswordRequestSchema: _$typebox.TObject<{
+  email: _$typebox.TString;
 }>;
-declare const resetPasswordSchema: _$alepha.TObject<{
-  token: _$alepha.TString;
-  password: _$alepha.TString;
-  confirmPassword: _$alepha.TString;
+declare const resetPasswordSchema: _$typebox.TObject<{
+  token: _$typebox.TString;
+  password: _$typebox.TString;
+  confirmPassword: _$typebox.TString;
 }>;
 type ResetPasswordRequest = Static<typeof resetPasswordRequestSchema>;
 type ResetPasswordInput = Static<typeof resetPasswordSchema>;
 //#endregion
 //#region ../../src/api/users/schemas/sessionResourceSchema.d.ts
-declare const sessionResourceSchema: _$alepha.TObject<{
-  id: _$alepha.TString;
-  version: _$alepha.TNumber;
-  createdAt: _$alepha.TString;
-  updatedAt: _$alepha.TString;
-  refreshToken: _$alepha.TString;
-  userId: _$alepha.TString;
-  expiresAt: _$alepha.TString;
-  ip: _$alepha.TOptional<_$alepha.TString>;
-  userAgent: _$alepha.TOptional<_$alepha.TObject<{
-    os: _$alepha.TString;
-    browser: _$alepha.TString;
-    device: _$alepha.TUnsafe<"MOBILE" | "DESKTOP" | "TABLET">;
+declare const sessionResourceSchema: _$typebox.TObject<{
+  id: _$typebox.TString;
+  version: _$typebox.TNumber;
+  createdAt: _$typebox.TString;
+  updatedAt: _$typebox.TString;
+  refreshToken: _$typebox.TString;
+  userId: _$typebox.TString;
+  expiresAt: _$typebox.TString;
+  ip: _$typebox.TOptional<_$typebox.TString>;
+  userAgent: _$typebox.TOptional<_$typebox.TObject<{
+    os: _$typebox.TString;
+    browser: _$typebox.TString;
+    device: _$typebox.TUnsafe<"MOBILE" | "DESKTOP" | "TABLET">;
   }>>;
 }>;
 type SessionResource = Static<typeof sessionResourceSchema>;
 //#endregion
 //#region ../../src/api/users/schemas/userResourceSchema.d.ts
-declare const userResourceSchema: _$alepha.TObject<{
-  id: PgAttr<PgAttr<_$alepha.TString, typeof PG_PRIMARY_KEY>, typeof PG_DEFAULT>;
-  version: PgAttr<PgAttr<_$alepha.TInteger, typeof PG_VERSION>, typeof PG_DEFAULT>;
-  createdAt: PgAttr<PgAttr<_$alepha.TString, typeof PG_CREATED_AT>, typeof PG_DEFAULT>;
-  updatedAt: PgAttr<PgAttr<_$alepha.TString, typeof PG_UPDATED_AT>, typeof PG_DEFAULT>;
-  realm: PgAttr<_$alepha.TString, typeof PG_DEFAULT>;
-  username: _$alepha.TOptional<_$alepha.TString>;
-  email: _$alepha.TOptional<_$alepha.TString>;
-  phoneNumber: _$alepha.TOptional<_$alepha.TString>;
-  roles: PgAttr<_$alepha.TArray<_$alepha.TString>, typeof PG_DEFAULT>;
-  firstName: _$alepha.TOptional<_$alepha.TString>;
-  lastName: _$alepha.TOptional<_$alepha.TString>;
-  picture: _$alepha.TOptional<_$alepha.TString>;
-  enabled: PgAttr<_$alepha.TBoolean, typeof PG_DEFAULT>;
-  emailVerified: PgAttr<_$alepha.TBoolean, typeof PG_DEFAULT>;
-  organizationId: PgAttr<_$alepha.TOptional<_$alepha.TString>, typeof PG_ORGANIZATION>;
+declare const userResourceSchema: _$typebox.TObject<{
+  id: PgAttr<PgAttr<_$typebox.TString, typeof PG_PRIMARY_KEY>, typeof PG_DEFAULT>;
+  version: PgAttr<PgAttr<_$typebox.TInteger, typeof PG_VERSION>, typeof PG_DEFAULT>;
+  createdAt: PgAttr<PgAttr<_$typebox.TString, typeof PG_CREATED_AT>, typeof PG_DEFAULT>;
+  updatedAt: PgAttr<PgAttr<_$typebox.TString, typeof PG_UPDATED_AT>, typeof PG_DEFAULT>;
+  realm: PgAttr<_$typebox.TString, typeof PG_DEFAULT>;
+  username: _$typebox.TOptional<_$typebox.TString>;
+  email: _$typebox.TOptional<_$typebox.TString>;
+  phoneNumber: _$typebox.TOptional<_$typebox.TString>;
+  roles: PgAttr<_$typebox.TArray<_$typebox.TString>, typeof PG_DEFAULT>;
+  firstName: _$typebox.TOptional<_$typebox.TString>;
+  lastName: _$typebox.TOptional<_$typebox.TString>;
+  picture: _$typebox.TOptional<_$typebox.TString>;
+  enabled: PgAttr<_$typebox.TBoolean, typeof PG_DEFAULT>;
+  emailVerified: PgAttr<_$typebox.TBoolean, typeof PG_DEFAULT>;
+  organizationId: PgAttr<_$typebox.TString, typeof PG_ORGANIZATION>;
 }>;
 type UserResource = Static<typeof userResourceSchema>;
 //#endregion
@@ -8348,49 +8364,49 @@ declare class SessionService {
   protected readonly usernameSlugger: UsernameSlugger;
   protected userAudits(realmName?: string): UserAudits | undefined;
   protected userNotifications(realmName?: string): UserNotifications | undefined;
-  users(userRealmName?: string): Repository$1<_$alepha.TObject<{
-    id: PgAttr<PgAttr<_$alepha.TString, typeof PG_PRIMARY_KEY>, typeof PG_DEFAULT>;
-    version: PgAttr<PgAttr<_$alepha.TInteger, typeof PG_VERSION>, typeof PG_DEFAULT>;
-    createdAt: PgAttr<PgAttr<_$alepha.TString, typeof PG_CREATED_AT>, typeof PG_DEFAULT>;
-    updatedAt: PgAttr<PgAttr<_$alepha.TString, typeof PG_UPDATED_AT>, typeof PG_DEFAULT>;
-    realm: PgAttr<_$alepha.TString, typeof PG_DEFAULT>;
-    username: _$alepha.TOptional<_$alepha.TString>;
-    email: _$alepha.TOptional<_$alepha.TString>;
-    phoneNumber: _$alepha.TOptional<_$alepha.TString>;
-    roles: PgAttr<_$alepha.TArray<_$alepha.TString>, typeof PG_DEFAULT>;
-    firstName: _$alepha.TOptional<_$alepha.TString>;
-    lastName: _$alepha.TOptional<_$alepha.TString>;
-    picture: _$alepha.TOptional<_$alepha.TString>;
-    enabled: PgAttr<_$alepha.TBoolean, typeof PG_DEFAULT>;
-    emailVerified: PgAttr<_$alepha.TBoolean, typeof PG_DEFAULT>;
-    organizationId: PgAttr<_$alepha.TOptional<_$alepha.TString>, typeof PG_ORGANIZATION>;
+  users(userRealmName?: string): Repository$1<_$typebox.TObject<{
+    id: PgAttr<PgAttr<_$typebox.TString, typeof PG_PRIMARY_KEY>, typeof PG_DEFAULT>;
+    version: PgAttr<PgAttr<_$typebox.TInteger, typeof PG_VERSION>, typeof PG_DEFAULT>;
+    createdAt: PgAttr<PgAttr<_$typebox.TString, typeof PG_CREATED_AT>, typeof PG_DEFAULT>;
+    updatedAt: PgAttr<PgAttr<_$typebox.TString, typeof PG_UPDATED_AT>, typeof PG_DEFAULT>;
+    realm: PgAttr<_$typebox.TString, typeof PG_DEFAULT>;
+    username: _$typebox.TOptional<_$typebox.TString>;
+    email: _$typebox.TOptional<_$typebox.TString>;
+    phoneNumber: _$typebox.TOptional<_$typebox.TString>;
+    roles: PgAttr<_$typebox.TArray<_$typebox.TString>, typeof PG_DEFAULT>;
+    firstName: _$typebox.TOptional<_$typebox.TString>;
+    lastName: _$typebox.TOptional<_$typebox.TString>;
+    picture: _$typebox.TOptional<_$typebox.TString>;
+    enabled: PgAttr<_$typebox.TBoolean, typeof PG_DEFAULT>;
+    emailVerified: PgAttr<_$typebox.TBoolean, typeof PG_DEFAULT>;
+    organizationId: PgAttr<_$typebox.TString, typeof PG_ORGANIZATION>;
   }>>;
-  sessions(userRealmName?: string): Repository$1<_$alepha.TObject<{
-    id: PgAttr<PgAttr<_$alepha.TString, typeof PG_PRIMARY_KEY>, typeof PG_DEFAULT>;
-    version: PgAttr<PgAttr<_$alepha.TInteger, typeof PG_VERSION>, typeof PG_DEFAULT>;
-    createdAt: PgAttr<PgAttr<_$alepha.TString, typeof PG_CREATED_AT>, typeof PG_DEFAULT>;
-    updatedAt: PgAttr<PgAttr<_$alepha.TString, typeof PG_UPDATED_AT>, typeof PG_DEFAULT>;
-    refreshToken: _$alepha.TString;
-    userId: PgAttr<_$alepha.TString, typeof PG_REF>;
-    expiresAt: _$alepha.TString;
-    lastUsedAt: _$alepha.TOptional<_$alepha.TString>;
-    ip: _$alepha.TOptional<_$alepha.TString>;
-    userAgent: _$alepha.TOptional<_$alepha.TObject<{
-      os: _$alepha.TString;
-      browser: _$alepha.TString;
-      device: _$alepha.TUnsafe<"MOBILE" | "DESKTOP" | "TABLET">;
+  sessions(userRealmName?: string): Repository$1<_$typebox.TObject<{
+    id: PgAttr<PgAttr<_$typebox.TString, typeof PG_PRIMARY_KEY>, typeof PG_DEFAULT>;
+    version: PgAttr<PgAttr<_$typebox.TInteger, typeof PG_VERSION>, typeof PG_DEFAULT>;
+    createdAt: PgAttr<PgAttr<_$typebox.TString, typeof PG_CREATED_AT>, typeof PG_DEFAULT>;
+    updatedAt: PgAttr<PgAttr<_$typebox.TString, typeof PG_UPDATED_AT>, typeof PG_DEFAULT>;
+    refreshToken: _$typebox.TString;
+    userId: PgAttr<_$typebox.TString, typeof PG_REF>;
+    expiresAt: _$typebox.TString;
+    lastUsedAt: _$typebox.TOptional<_$typebox.TString>;
+    ip: _$typebox.TOptional<_$typebox.TString>;
+    userAgent: _$typebox.TOptional<_$typebox.TObject<{
+      os: _$typebox.TString;
+      browser: _$typebox.TString;
+      device: _$typebox.TUnsafe<"MOBILE" | "DESKTOP" | "TABLET">;
     }>>;
   }>>;
-  identities(userRealmName?: string): Repository$1<_$alepha.TObject<{
-    id: PgAttr<PgAttr<_$alepha.TString, typeof PG_PRIMARY_KEY>, typeof PG_DEFAULT>;
-    version: PgAttr<PgAttr<_$alepha.TInteger, typeof PG_VERSION>, typeof PG_DEFAULT>;
-    createdAt: PgAttr<PgAttr<_$alepha.TString, typeof PG_CREATED_AT>, typeof PG_DEFAULT>;
-    updatedAt: PgAttr<PgAttr<_$alepha.TString, typeof PG_UPDATED_AT>, typeof PG_DEFAULT>;
-    userId: PgAttr<_$alepha.TString, typeof PG_REF>;
-    password: _$alepha.TOptional<_$alepha.TString>;
-    provider: _$alepha.TString;
-    providerUserId: _$alepha.TOptional<_$alepha.TString>;
-    providerData: _$alepha.TOptional<_$alepha.TRecord<string, _$alepha.TAny>>;
+  identities(userRealmName?: string): Repository$1<_$typebox.TObject<{
+    id: PgAttr<PgAttr<_$typebox.TString, typeof PG_PRIMARY_KEY>, typeof PG_DEFAULT>;
+    version: PgAttr<PgAttr<_$typebox.TInteger, typeof PG_VERSION>, typeof PG_DEFAULT>;
+    createdAt: PgAttr<PgAttr<_$typebox.TString, typeof PG_CREATED_AT>, typeof PG_DEFAULT>;
+    updatedAt: PgAttr<PgAttr<_$typebox.TString, typeof PG_UPDATED_AT>, typeof PG_DEFAULT>;
+    userId: PgAttr<_$typebox.TString, typeof PG_REF>;
+    password: _$typebox.TOptional<_$typebox.TString>;
+    provider: _$typebox.TString;
+    providerUserId: _$typebox.TOptional<_$typebox.TString>;
+    providerData: _$typebox.TOptional<_$typebox.TRecord<string, _$typebox.TAny>>;
   }>>;
   /**
    * Check if user should be auto-promoted to admin based on adminEmails/adminUsernames settings.
@@ -8439,38 +8455,38 @@ declare class SessionService {
     sessionId: string;
   }>;
   refreshSession(refreshToken: string, userRealmName?: string): Promise<{
-    user: PgStatic<_$alepha.TObject<{
-      id: PgAttr<PgAttr<_$alepha.TString, typeof PG_PRIMARY_KEY>, typeof PG_DEFAULT>;
-      version: PgAttr<PgAttr<_$alepha.TInteger, typeof PG_VERSION>, typeof PG_DEFAULT>;
-      createdAt: PgAttr<PgAttr<_$alepha.TString, typeof PG_CREATED_AT>, typeof PG_DEFAULT>;
-      updatedAt: PgAttr<PgAttr<_$alepha.TString, typeof PG_UPDATED_AT>, typeof PG_DEFAULT>;
-      realm: PgAttr<_$alepha.TString, typeof PG_DEFAULT>;
-      username: _$alepha.TOptional<_$alepha.TString>;
-      email: _$alepha.TOptional<_$alepha.TString>;
-      phoneNumber: _$alepha.TOptional<_$alepha.TString>;
-      roles: PgAttr<_$alepha.TArray<_$alepha.TString>, typeof PG_DEFAULT>;
-      firstName: _$alepha.TOptional<_$alepha.TString>;
-      lastName: _$alepha.TOptional<_$alepha.TString>;
-      picture: _$alepha.TOptional<_$alepha.TString>;
-      enabled: PgAttr<_$alepha.TBoolean, typeof PG_DEFAULT>;
-      emailVerified: PgAttr<_$alepha.TBoolean, typeof PG_DEFAULT>;
-      organizationId: PgAttr<_$alepha.TOptional<_$alepha.TString>, typeof PG_ORGANIZATION>;
-    }>, PgRelationMap<_$alepha.TObject<{
-      id: PgAttr<PgAttr<_$alepha.TString, typeof PG_PRIMARY_KEY>, typeof PG_DEFAULT>;
-      version: PgAttr<PgAttr<_$alepha.TInteger, typeof PG_VERSION>, typeof PG_DEFAULT>;
-      createdAt: PgAttr<PgAttr<_$alepha.TString, typeof PG_CREATED_AT>, typeof PG_DEFAULT>;
-      updatedAt: PgAttr<PgAttr<_$alepha.TString, typeof PG_UPDATED_AT>, typeof PG_DEFAULT>;
-      realm: PgAttr<_$alepha.TString, typeof PG_DEFAULT>;
-      username: _$alepha.TOptional<_$alepha.TString>;
-      email: _$alepha.TOptional<_$alepha.TString>;
-      phoneNumber: _$alepha.TOptional<_$alepha.TString>;
-      roles: PgAttr<_$alepha.TArray<_$alepha.TString>, typeof PG_DEFAULT>;
-      firstName: _$alepha.TOptional<_$alepha.TString>;
-      lastName: _$alepha.TOptional<_$alepha.TString>;
-      picture: _$alepha.TOptional<_$alepha.TString>;
-      enabled: PgAttr<_$alepha.TBoolean, typeof PG_DEFAULT>;
-      emailVerified: PgAttr<_$alepha.TBoolean, typeof PG_DEFAULT>;
-      organizationId: PgAttr<_$alepha.TOptional<_$alepha.TString>, typeof PG_ORGANIZATION>;
+    user: PgStatic<_$typebox.TObject<{
+      id: PgAttr<PgAttr<_$typebox.TString, typeof PG_PRIMARY_KEY>, typeof PG_DEFAULT>;
+      version: PgAttr<PgAttr<_$typebox.TInteger, typeof PG_VERSION>, typeof PG_DEFAULT>;
+      createdAt: PgAttr<PgAttr<_$typebox.TString, typeof PG_CREATED_AT>, typeof PG_DEFAULT>;
+      updatedAt: PgAttr<PgAttr<_$typebox.TString, typeof PG_UPDATED_AT>, typeof PG_DEFAULT>;
+      realm: PgAttr<_$typebox.TString, typeof PG_DEFAULT>;
+      username: _$typebox.TOptional<_$typebox.TString>;
+      email: _$typebox.TOptional<_$typebox.TString>;
+      phoneNumber: _$typebox.TOptional<_$typebox.TString>;
+      roles: PgAttr<_$typebox.TArray<_$typebox.TString>, typeof PG_DEFAULT>;
+      firstName: _$typebox.TOptional<_$typebox.TString>;
+      lastName: _$typebox.TOptional<_$typebox.TString>;
+      picture: _$typebox.TOptional<_$typebox.TString>;
+      enabled: PgAttr<_$typebox.TBoolean, typeof PG_DEFAULT>;
+      emailVerified: PgAttr<_$typebox.TBoolean, typeof PG_DEFAULT>;
+      organizationId: PgAttr<_$typebox.TString, typeof PG_ORGANIZATION>;
+    }>, PgRelationMap<_$typebox.TObject<{
+      id: PgAttr<PgAttr<_$typebox.TString, typeof PG_PRIMARY_KEY>, typeof PG_DEFAULT>;
+      version: PgAttr<PgAttr<_$typebox.TInteger, typeof PG_VERSION>, typeof PG_DEFAULT>;
+      createdAt: PgAttr<PgAttr<_$typebox.TString, typeof PG_CREATED_AT>, typeof PG_DEFAULT>;
+      updatedAt: PgAttr<PgAttr<_$typebox.TString, typeof PG_UPDATED_AT>, typeof PG_DEFAULT>;
+      realm: PgAttr<_$typebox.TString, typeof PG_DEFAULT>;
+      username: _$typebox.TOptional<_$typebox.TString>;
+      email: _$typebox.TOptional<_$typebox.TString>;
+      phoneNumber: _$typebox.TOptional<_$typebox.TString>;
+      roles: PgAttr<_$typebox.TArray<_$typebox.TString>, typeof PG_DEFAULT>;
+      firstName: _$typebox.TOptional<_$typebox.TString>;
+      lastName: _$typebox.TOptional<_$typebox.TString>;
+      picture: _$typebox.TOptional<_$typebox.TString>;
+      enabled: PgAttr<_$typebox.TBoolean, typeof PG_DEFAULT>;
+      emailVerified: PgAttr<_$typebox.TBoolean, typeof PG_DEFAULT>;
+      organizationId: PgAttr<_$typebox.TString, typeof PG_ORGANIZATION>;
     }>>>;
     expiresIn: number;
     sessionId: string;
@@ -8478,20 +8494,20 @@ declare class SessionService {
   deleteSession(refreshToken: string, userRealmName?: string): Promise<void>;
   link(provider: string, profile: OAuth2Profile, userRealmName?: string): Promise<{
     email?: string | undefined;
-    phoneNumber?: string | undefined;
     username?: string | undefined;
+    phoneNumber?: string | undefined;
     firstName?: string | undefined;
     lastName?: string | undefined;
     picture?: string | undefined;
-    organizationId?: string | undefined;
     enabled: boolean;
+    emailVerified: boolean;
+    roles: string[];
     id: string;
     version: number;
     createdAt: string;
     updatedAt: string;
     realm: string;
-    roles: string[];
-    emailVerified: boolean;
+    organizationId: string;
   } | {
     sub: string;
     email?: string;