auth0-deploy-cli 7.5.1 → 7.7.0

package/lib/tools/auth0/handlers/triggers.js

@@ -56,15 +56,15 @@ exports.schema = {
                 type: 'object',
                 properties: {
                     action_name: { type: 'string', enum: constants_1.default.ACTIONS_TRIGGERS },
-                    display_name: { type: 'string', default: '' }
-                }
-            }
-        }
-    }
+                    display_name: { type: 'string', default: '' },
+                },
+            },
+        },
+    },
 };
 function isActionsDisabled(err) {
     const errorBody = lodash_1.default.get(err, 'originalError.response.body') || {};
-    return (err.statusCode === 403 && errorBody.errorCode === 'feature_not_enabled');
+    return err.statusCode === 403 && errorBody.errorCode === 'feature_not_enabled';
 }
 class TriggersHandler extends default_1.default {
     constructor(options) {
@@ -76,8 +76,7 @@ class TriggersHandler extends default_1.default {
                 return this.existing;
             }
             // in case client version does not support actions
-            if (!this.client.actions
-                || typeof this.client.actions.getAllTriggers !== 'function') {
+            if (!this.client.actions || typeof this.client.actions.getAllTriggers !== 'function') {
                 return [];
             }
             const triggerBindings = {};
@@ -87,12 +86,12 @@ class TriggersHandler extends default_1.default {
                 for (let i = 0; i < triggers.length; i++) {
                     const triggerId = triggers[i];
                     const { bindings } = yield this.client.actions.getTriggerBindings({
-                        trigger_id: triggerId
+                        trigger_id: triggerId,
                     });
                     if (bindings.length > 0) {
                         triggerBindings[triggerId] = bindings.map((binding) => ({
                             action_name: binding.action.name,
-                            display_name: binding.display_name
+                            display_name: binding.display_name,
                         }));
                     }
                 }
@@ -123,9 +122,9 @@ class TriggersHandler extends default_1.default {
                 const bindings = data.map((binding) => ({
                     ref: {
                         type: 'action_name',
-                        value: binding.action_name
+                        value: binding.action_name,
                     },
-                    display_name: binding.display_name
+                    display_name: binding.display_name,
                 }));
                 yield this.client.actions.updateTriggerBindings({ trigger_id: name }, { bindings });
                 this.didUpdate({ trigger_id: name });

package/lib/tools/auth0/index.js

@@ -1,27 +1,4 @@
 "use strict";
-var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
-    if (k2 === undefined) k2 = k;
-    var desc = Object.getOwnPropertyDescriptor(m, k);
-    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
-      desc = { enumerable: true, get: function() { return m[k]; } };
-    }
-    Object.defineProperty(o, k2, desc);
-}) : (function(o, m, k, k2) {
-    if (k2 === undefined) k2 = k;
-    o[k2] = m[k];
-}));
-var __setModuleDefault = (this && this.__setModuleDefault) || (Object.create ? (function(o, v) {
-    Object.defineProperty(o, "default", { enumerable: true, value: v });
-}) : function(o, v) {
-    o["default"] = v;
-});
-var __importStar = (this && this.__importStar) || function (mod) {
-    if (mod && mod.__esModule) return mod;
-    var result = {};
-    if (mod != null) for (var k in mod) if (k !== "default" && Object.prototype.hasOwnProperty.call(mod, k)) __createBinding(result, mod, k);
-    __setModuleDefault(result, mod);
-    return result;
-};
 var __awaiter = (this && this.__awaiter) || function (thisArg, _arguments, P, generator) {
     function adopt(value) { return value instanceof P ? value : new P(function (resolve) { resolve(value); }); }
     return new (P || (P = Promise))(function (resolve, reject) {
@@ -38,12 +15,14 @@ Object.defineProperty(exports, "__esModule", { value: true });
 const ajv_1 = __importDefault(require("ajv/lib/ajv"));
 const client_1 = __importDefault(require("./client"));
 const schema_1 = __importDefault(require("./schema"));
-const handlers = __importStar(require("./handlers"));
-const defaultOrder = 50;
+const handlers_1 = __importDefault(require("./handlers"));
 function sortByOrder(toSort, stage) {
+    const defaultOrder = 50;
     const sorted = [...toSort];
     sorted.sort((a, b) => {
+        //@ts-ignore because this doesn't actually work. TODO: apply stage order
         const aOrder = a[stage].order || defaultOrder;
+        //@ts-ignore because this doesn't actually work. TODO: apply stage order
         const bOrder = b[stage].order || defaultOrder;
         return aOrder - bOrder;
     });
@@ -54,19 +33,24 @@ class Auth0 {
         this.client = (0, client_1.default)(client);
         this.config = config;
         this.assets = assets;
-        this.handlers = [];
-        Object.values(handlers).forEach((h) => {
-            const handler = new h.default({ client: this.client, config });
-            this.handlers.push(handler);
+        this.handlers = Object.values(handlers_1.default)
+            .map((handler) => {
+            //@ts-ignore because class expects `type` property but gets directly injected into class constructors
+            return new handler.default({ client: this.client, config: this.config });
+        })
+            .filter((handler) => {
+            const excludedAssetTypes = config('AUTH0_EXCLUDED') || [];
+            return !excludedAssetTypes.includes(handler.type);
         });
     }
     runStage(stage) {
         return __awaiter(this, void 0, void 0, function* () {
             // Sort by priority
-            for (const handler of sortByOrder(this.handlers, stage)) { // eslint-disable-line
+            for (const handler of sortByOrder(this.handlers, stage)) {
+                // eslint-disable-line
                 try {
                     const stageFn = Object.getPrototypeOf(handler)[stage];
-                    this.assets = Object.assign(Object.assign({}, this.assets), (yield stageFn.apply(handler, [this.assets])) || {});
+                    this.assets = Object.assign(Object.assign({}, this.assets), ((yield stageFn.apply(handler, [this.assets])) || {}));
                 }
                 catch (err) {
                     err.type = handler.type;

package/lib/tools/auth0/schema.js

@@ -1,34 +1,14 @@
 "use strict";
-var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
-    if (k2 === undefined) k2 = k;
-    var desc = Object.getOwnPropertyDescriptor(m, k);
-    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
-      desc = { enumerable: true, get: function() { return m[k]; } };
-    }
-    Object.defineProperty(o, k2, desc);
-}) : (function(o, m, k, k2) {
-    if (k2 === undefined) k2 = k;
-    o[k2] = m[k];
-}));
-var __setModuleDefault = (this && this.__setModuleDefault) || (Object.create ? (function(o, v) {
-    Object.defineProperty(o, "default", { enumerable: true, value: v });
-}) : function(o, v) {
-    o["default"] = v;
-});
-var __importStar = (this && this.__importStar) || function (mod) {
-    if (mod && mod.__esModule) return mod;
-    var result = {};
-    if (mod != null) for (var k in mod) if (k !== "default" && Object.prototype.hasOwnProperty.call(mod, k)) __createBinding(result, mod, k);
-    __setModuleDefault(result, mod);
-    return result;
+var __importDefault = (this && this.__importDefault) || function (mod) {
+    return (mod && mod.__esModule) ? mod : { "default": mod };
 };
 Object.defineProperty(exports, "__esModule", { value: true });
-const handlers = __importStar(require("./handlers"));
-const typesSchema = Object.entries(handlers).reduce((map, [name, obj]) => {
+const handlers_1 = __importDefault(require("./handlers"));
+const typesSchema = Object.entries(handlers_1.default).reduce((map, [name, obj]) => {
     map[name] = obj.schema; //eslint-disable-line
     return map;
 }, {});
-const excludeSchema = Object.entries(handlers).reduce((map, [name, obj]) => {
+const excludeSchema = Object.entries(handlers_1.default).reduce((map, [name, obj]) => {
     if (obj.excludeSchema) {
         map[name] = obj.excludeSchema;
     }
@@ -40,7 +20,7 @@ exports.default = {
     properties: Object.assign(Object.assign({}, typesSchema), { exclude: {
             type: 'object',
             properties: Object.assign({}, excludeSchema),
-            default: {}
+            default: {},
         } }),
-    additionalProperties: false
+    additionalProperties: false,
 };

package/lib/tools/calculateChanges.js

@@ -0,0 +1,149 @@
+"use strict";
+var __importDefault = (this && this.__importDefault) || function (mod) {
+    return (mod && mod.__esModule) ? mod : { "default": mod };
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.calculateChanges = exports.processChangedObjectFields = void 0;
+const logger_1 = __importDefault(require("./logger"));
+/**
+ * @template T
+ * @param {typeof import('./auth0/handlers/default').default} handler
+ * @param {T} desiredAssetState
+ * @param {T} currentAssetState
+ * @param {string[]} [objectFields=[]]
+ * @param {boolean} [allowDelete=false]
+ * @returns T
+ */
+function processChangedObjectFields({ handler, desiredAssetState, currentAssetState, allowDelete = false, }) {
+    const desiredAssetStateWithChanges = Object.assign({}, desiredAssetState);
+    // eslint-disable-next-line no-restricted-syntax
+    for (const fieldName of handler.objectFields) {
+        const areDesiredStateAndCurrentStateEmpty = Object.keys(desiredAssetState[fieldName] || {}).length === 0 &&
+            Object.keys(currentAssetState[fieldName] || {}).length === 0;
+        if (areDesiredStateAndCurrentStateEmpty) {
+            // If both the desired state and current state for a given object is empty, it is a no-op and can skip
+            // eslint-disable-next-line no-continue
+            continue;
+        }
+        // A desired state that omits the objectField OR that has it as an empty object should
+        // signal that all fields should be removed (subject to ALLOW_DELETE).
+        if (desiredAssetState[fieldName] && Object.keys(desiredAssetState[fieldName]).length) {
+            // Both the current and desired state have the object field. Here's where we need to map
+            // to the APIv2 protocol of setting `null` values for deleted fields.
+            // For new and modified properties of the object field, we can just pass them through to
+            // APIv2.
+            if (currentAssetState[fieldName]) {
+                // eslint-disable-next-line no-restricted-syntax
+                for (const currentObjectFieldPropertyName of Object.keys(currentAssetState[fieldName])) {
+                    // Loop through each object property that exists currently
+                    if (desiredAssetState[fieldName][currentObjectFieldPropertyName] === undefined) {
+                        // If the object has a property that exists now but doesn't exist in the proposed state
+                        if (allowDelete) {
+                            desiredAssetStateWithChanges[fieldName][currentObjectFieldPropertyName] = null;
+                        }
+                        else {
+                            // If deletes aren't allowed, do outright delete the property within the object
+                            logger_1.default.warn(`Detected that the ${fieldName} of the following ${handler.name || handler.id || ''} should be deleted. Doing so may be destructive.\nYou can enable deletes by setting 'AUTH0_ALLOW_DELETE' to true in the config\n${handler.objString(currentAssetState)}`);
+                        }
+                    }
+                }
+            }
+        }
+        else if (allowDelete) {
+            // If the desired state does not have the object field and the current state does, we
+            // should mark *all* properties for deletion by specifying an empty object.
+            //
+            // See: https://auth0.com/docs/users/metadata/manage-metadata-api#delete-user-metadata
+            desiredAssetStateWithChanges[fieldName] = {};
+        }
+        else {
+            delete desiredAssetStateWithChanges[fieldName];
+            logger_1.default.warn(`Detected that the ${fieldName} of the following ${handler.name || handler.id || ''} should be emptied. Doing so may be destructive.\nYou can enable deletes by setting 'AUTH0_ALLOW_DELETE' to true in the config\n${handler.objString(currentAssetState)}`);
+        }
+    }
+    return desiredAssetStateWithChanges;
+}
+exports.processChangedObjectFields = processChangedObjectFields;
+function calculateChanges({ handler, assets, existing, identifiers = ['id', 'name'], allowDelete, }) {
+    // Calculate the changes required between two sets of assets.
+    const update = [];
+    let del = [...existing];
+    let create = [...assets];
+    const conflicts = [];
+    const findByKeyValue = (key, value, arr) => arr.find((e) => {
+        if (Array.isArray(key)) {
+            const values = key.map((k) => e[k]);
+            if (values.every((v) => v)) {
+                return value === values.join('-');
+            }
+        }
+        return e[key] === value;
+    });
+    const processAssets = (id, arr) => {
+        arr.forEach((asset) => {
+            const assetIdValue = (() => {
+                if (Array.isArray(id)) {
+                    const values = id.map((i) => asset[i]);
+                    if (values.every((v) => v)) {
+                        return values.join('-');
+                    }
+                }
+                return asset[id];
+            })();
+            if (assetIdValue !== undefined) {
+                const found = findByKeyValue(id, assetIdValue, del);
+                if (found !== undefined) {
+                    // Delete from existing
+                    del = del.filter((e) => e !== found);
+                    // Delete from create as it's an update
+                    create = create.filter((e) => e !== asset);
+                    // Append identifiers to asset
+                    update.push(Object.assign(Object.assign({}, identifiers.reduce((obj, i) => {
+                        if (found[i])
+                            obj[i] = found[i];
+                        return obj;
+                    }, {})), (handler.objectFields.length
+                        ? processChangedObjectFields({
+                            handler,
+                            desiredAssetState: asset,
+                            currentAssetState: found,
+                            allowDelete,
+                        })
+                        : asset)));
+                }
+            }
+        });
+    };
+    // Loop through identifiers (in order) to try match assets to existing
+    // If existing then update if not create
+    // The remainder will be deleted
+    for (const id of identifiers) {
+        // eslint-disable-line
+        processAssets(id, [...create]);
+    }
+    // Check if there are assets with names that will conflict with existing names during the update process
+    // This will rename those assets to a temp random name first
+    // This assumes the first identifiers is the unique identifier
+    if (identifiers.includes('name')) {
+        const uniqueID = identifiers[0];
+        const futureAssets = [...create, ...update];
+        futureAssets.forEach((a) => {
+            // If the conflicting item is going to be deleted then skip
+            const inDeleted = del.filter((e) => e.name === a.name && e[uniqueID] !== a[uniqueID])[0];
+            if (!inDeleted) {
+                const conflict = existing.filter((e) => e.name === a.name && e[uniqueID] !== a[uniqueID])[0];
+                if (conflict) {
+                    const temp = Math.random().toString(36).substr(2, 5);
+                    conflicts.push(Object.assign(Object.assign({}, conflict), { name: `${conflict.name}-${temp}` }));
+                }
+            }
+        });
+    }
+    return {
+        del,
+        update,
+        conflicts,
+        create,
+    };
+}
+exports.calculateChanges = calculateChanges;

package/lib/tools/constants.js

@@ -1,158 +1,166 @@
 "use strict";
 Object.defineProperty(exports, "__esModule", { value: true });
-const constants = {};
-constants.RULES_DIRECTORY = 'rules';
-constants.RULES_STAGES = [
-    'login_success'
-];
-constants.DEFAULT_RULE_STAGE = constants.RULES_STAGES[0]; // eslint-disable-line
-constants.HOOKS_HIDDEN_SECRET_VALUE = '_VALUE_NOT_SHOWN_';
-constants.HOOKS_DIRECTORY = 'hooks';
-constants.ACTIONS_DIRECTORY = 'actions';
-constants.TRIGGERS_DIRECTORY = 'triggers';
-constants.RULES_CONFIGS_DIRECTORY = 'rules-configs';
-constants.PAGES_DIRECTORY = 'pages';
-constants.PAGE_LOGIN = 'login';
-constants.PAGE_PASSWORD_RESET = 'password_reset';
-constants.PAGE_GUARDIAN_MULTIFACTOR = 'guardian_multifactor';
-constants.PAGE_ERROR = 'error_page';
-constants.PAGE_NAMES = [
-    constants.PAGE_GUARDIAN_MULTIFACTOR + '.html',
-    constants.PAGE_GUARDIAN_MULTIFACTOR + '.json',
-    constants.PAGE_PASSWORD_RESET + '.html',
-    constants.PAGE_PASSWORD_RESET + '.json',
-    constants.PAGE_LOGIN + '.html',
-    constants.PAGE_LOGIN + '.json',
-    constants.PAGE_ERROR + '.html',
-    constants.PAGE_ERROR + '.json'
-];
-constants.DATABASE_CONNECTIONS_DIRECTORY = 'database-connections';
-constants.DATABASE_SCRIPTS_CHANGE_EMAIL = 'change_email';
-constants.DATABASE_SCRIPTS_GET_USER = 'get_user';
-constants.DATABASE_SCRIPTS = [
-    constants.DATABASE_SCRIPTS_GET_USER,
-    'create',
-    'verify',
-    'login',
-    'change_password',
-    'delete',
-    constants.DATABASE_SCRIPTS_CHANGE_EMAIL
-];
-constants.DATABASE_SCRIPTS_NO_IMPORT = [
-    constants.DATABASE_SCRIPTS_GET_USER,
-    'create',
-    'verify',
-    'login',
-    'change_password',
-    'delete'
-];
-constants.DATABASE_SCRIPTS_IMPORT = [
-    constants.DATABASE_SCRIPTS_GET_USER,
-    'login'
-];
-constants.EMAIL_TEMPLATES_DIRECTORY = 'emails';
-constants.EMAIL_VERIFY = 'verify_email';
-constants.EMAIL_VERIFY_BY_CODE = 'verify_email_by_code';
-constants.EMAIL_RESET = 'reset_email';
-constants.EMAIL_WELCOME = 'welcome_email';
-constants.EMAIL_BLOCKED = 'blocked_account';
-constants.EMAIL_STOLEN_CREDENTIALS = 'stolen_credentials';
-constants.EMAIL_ENROLLMENT = 'enrollment_email';
-constants.EMAIL_CHANGE_PASSWORD = 'change_password';
-constants.EMAIL_PASSWORD_RESET = 'password_reset';
-constants.EMAIL_MFA_OOB_CODE = 'mfa_oob_code';
-constants.EMAIL_USER_INVITATION = 'user_invitation';
-constants.EMAIL_TEMPLATES_NAMES = [
-    constants.EMAIL_VERIFY + '.json',
-    constants.EMAIL_VERIFY + '.html',
-    constants.EMAIL_VERIFY_BY_CODE + '.json',
-    constants.EMAIL_VERIFY_BY_CODE + '.html',
-    constants.EMAIL_RESET + '.json',
-    constants.EMAIL_RESET + '.html',
-    constants.EMAIL_WELCOME + '.json',
-    constants.EMAIL_WELCOME + '.html',
-    constants.EMAIL_BLOCKED + '.json',
-    constants.EMAIL_BLOCKED + '.html',
-    constants.EMAIL_STOLEN_CREDENTIALS + '.json',
-    constants.EMAIL_STOLEN_CREDENTIALS + '.html',
-    constants.EMAIL_ENROLLMENT + '.json',
-    constants.EMAIL_ENROLLMENT + '.html',
-    constants.EMAIL_CHANGE_PASSWORD + '.json',
-    constants.EMAIL_CHANGE_PASSWORD + '.html',
-    constants.EMAIL_PASSWORD_RESET + '.json',
-    constants.EMAIL_PASSWORD_RESET + '.html',
-    constants.EMAIL_MFA_OOB_CODE + '.json',
-    constants.EMAIL_MFA_OOB_CODE + '.html',
-    constants.EMAIL_USER_INVITATION + '.json',
-    constants.EMAIL_USER_INVITATION + '.html'
-];
-constants.EMAIL_TEMPLATES_TYPES = [
-    'verify_email',
-    'verify_email_by_code',
-    'reset_email',
-    'welcome_email',
-    'blocked_account',
-    'stolen_credentials',
-    'enrollment_email',
-    'mfa_oob_code',
-    'change_password',
-    'password_reset',
-    'user_invitation'
-];
-constants.ACTIONS_TRIGGERS = [
-    'post-login',
-    'credentials-exchange',
-    'pre-user-registration',
-    'post-user-registration',
-    'post-change-password',
-    'send-phone-message'
-];
-constants.GUARDIAN_DIRECTORY = 'guardian';
-constants.GUARDIAN_FACTORS_DIRECTORY = 'factors';
-constants.GUARDIAN_PROVIDERS_DIRECTORY = 'providers';
-constants.GUARDIAN_TEMPLATES_DIRECTORY = 'templates';
-constants.GUARDIAN_FACTORS = [
-    'sms',
-    'push-notification',
-    'otp',
-    'email',
-    'duo',
-    'webauthn-roaming',
-    'webauthn-platform',
-    'recovery-code'
-];
-constants.GUARDIAN_POLICIES = [
-    'all-applications',
-    'confidence-score'
-];
-constants.GUARDIAN_PHONE_PROVIDERS = [
-    'auth0',
-    'twilio',
-    'phone-message-hook'
-];
-constants.GUARDIAN_PHONE_MESSAGE_TYPES = [
-    'sms',
-    'voice'
-];
-constants.GUARDIAN_FACTOR_TEMPLATES = [
-    'sms'
-];
-constants.GUARDIAN_FACTOR_PROVIDERS = {
-    sms: ['twilio'],
-    'push-notification': ['sns']
+const PAGE_GUARDIAN_MULTIFACTOR = 'guardian_multifactor';
+const PAGE_PASSWORD_RESET = 'password_reset';
+const PAGE_LOGIN = 'login';
+const PAGE_ERROR = 'error_page';
+const RULES_STAGES = ['login_success'];
+const DATABASE_SCRIPTS_GET_USER = 'get_user';
+const DATABASE_SCRIPTS_CHANGE_EMAIL = 'change_email';
+const EMAIL_VERIFY = 'verify_email';
+const EMAIL_VERIFY_BY_CODE = 'verify_email_by_code';
+const EMAIL_RESET = 'reset_email';
+const EMAIL_WELCOME = 'welcome_email';
+const EMAIL_BLOCKED = 'blocked_account';
+const EMAIL_STOLEN_CREDENTIALS = 'stolen_credentials';
+const EMAIL_ENROLLMENT = 'enrollment_email';
+const EMAIL_CHANGE_PASSWORD = 'change_password';
+const EMAIL_PASSWORD_RESET = 'password_reset';
+const EMAIL_MFA_OOB_CODE = 'mfa_oob_code';
+const EMAIL_USER_INVITATION = 'user_invitation';
+const UNIVERSAL_LOGIN_TEMPLATE = 'universal_login';
+const constants = {
+    CONCURRENT_CALLS: 5,
+    RULES_DIRECTORY: 'rules',
+    RULES_STAGES,
+    DEFAULT_RULE_STAGE: RULES_STAGES[0],
+    HOOKS_HIDDEN_SECRET_VALUE: '_VALUE_NOT_SHOWN_',
+    HOOKS_DIRECTORY: 'hooks',
+    ACTIONS_DIRECTORY: 'actions',
+    TRIGGERS_DIRECTORY: 'triggers',
+    RULES_CONFIGS_DIRECTORY: 'rules-configs',
+    PAGES_DIRECTORY: 'pages',
+    PAGE_LOGIN,
+    PAGE_GUARDIAN_MULTIFACTOR,
+    PAGE_PASSWORD_RESET,
+    PAGE_ERROR,
+    DATABASE_CONNECTIONS_DIRECTORY: 'database-connections',
+    DATABASE_SCRIPTS_CHANGE_EMAIL,
+    DATABASE_SCRIPTS_GET_USER,
+    EMAIL_TEMPLATES_TYPES: [
+        'verify_email',
+        'verify_email_by_code',
+        'reset_email',
+        'welcome_email',
+        'blocked_account',
+        'stolen_credentials',
+        'enrollment_email',
+        'mfa_oob_code',
+        'change_password',
+        'password_reset',
+        'user_invitation',
+    ],
+    ACTIONS_TRIGGERS: [
+        'post-login',
+        'credentials-exchange',
+        'pre-user-registration',
+        'post-user-registration',
+        'post-change-password',
+        'send-phone-message',
+    ],
+    EMAIL_TEMPLATES_DIRECTORY: 'emails',
+    EMAIL_VERIFY,
+    EMAIL_VERIFY_BY_CODE,
+    EMAIL_RESET,
+    EMAIL_WELCOME,
+    EMAIL_BLOCKED,
+    EMAIL_STOLEN_CREDENTIALS,
+    EMAIL_ENROLLMENT,
+    EMAIL_CHANGE_PASSWORD,
+    EMAIL_PASSWORD_RESET,
+    EMAIL_MFA_OOB_CODE,
+    EMAIL_USER_INVITATION,
+    GUARDIAN_DIRECTORY: 'guardian',
+    GUARDIAN_FACTORS_DIRECTORY: 'factors',
+    GUARDIAN_PROVIDERS_DIRECTORY: 'providers',
+    GUARDIAN_TEMPLATES_DIRECTORY: 'templates',
+    UNIVERSAL_LOGIN_TEMPLATE,
+    RESOURCE_SERVERS_DIRECTORY: 'resource-servers',
+    RESOURCE_SERVERS_CLIENT_NAME: 'resourceServers',
+    RESOURCE_SERVERS_MANAGEMENT_API_NAME: 'Auth0 Management API',
+    RESOURCE_SERVERS_ID_NAME: 'id',
+    CLIENTS_DIRECTORY: 'clients',
+    CLIENTS_GRANTS_DIRECTORY: 'grants',
+    BRANDING_DIRECTORY: 'branding',
+    BRANDING_TEMPLATES_DIRECTORY: 'templates',
+    BRANDING_TEMPLATES_YAML_DIRECTORY: 'branding_templates',
+    CLIENTS_CLIENT_NAME: 'clients',
+    CLIENTS_CLIENT_ID_NAME: 'client_id',
+    CONNECTIONS_DIRECTORY: 'connections',
+    CONNECTIONS_CLIENT_NAME: 'connections',
+    CONNECTIONS_ID_NAME: 'id',
+    ROLES_DIRECTORY: 'roles',
+    ATTACK_PROTECTION_DIRECTORY: 'attack-protection',
+    GUARDIAN_FACTORS: [
+        'sms',
+        'push-notification',
+        'otp',
+        'email',
+        'duo',
+        'webauthn-roaming',
+        'webauthn-platform',
+        'recovery-code',
+    ],
+    GUARDIAN_POLICIES: ['all-applications', 'confidence-score'],
+    GUARDIAN_PHONE_PROVIDERS: ['auth0', 'twilio', 'phone-message-hook'],
+    GUARDIAN_PHONE_MESSAGE_TYPES: ['sms', 'voice'],
+    GUARDIAN_FACTOR_TEMPLATES: ['sms'],
+    GUARDIAN_FACTOR_PROVIDERS: {
+        sms: ['twilio'],
+        'push-notification': ['sns'],
+    },
+    PAGE_NAMES: [
+        `${PAGE_GUARDIAN_MULTIFACTOR}.html`,
+        `${PAGE_GUARDIAN_MULTIFACTOR}.json`,
+        `${PAGE_PASSWORD_RESET}.html`,
+        `${PAGE_PASSWORD_RESET}.json`,
+        `${PAGE_LOGIN}.html`,
+        `${PAGE_LOGIN}.json`,
+        `${PAGE_ERROR}.html`,
+        `${PAGE_ERROR}.json`,
+    ],
+    DATABASE_SCRIPTS: [
+        DATABASE_SCRIPTS_GET_USER,
+        'create',
+        'verify',
+        'login',
+        'change_password',
+        'delete',
+        DATABASE_SCRIPTS_CHANGE_EMAIL,
+    ],
+    DATABASE_SCRIPTS_NO_IMPORT: [
+        DATABASE_SCRIPTS_GET_USER,
+        'create',
+        'verify',
+        'login',
+        'change_password',
+        'delete',
+    ],
+    DATABASE_SCRIPTS_IMPORT: [DATABASE_SCRIPTS_GET_USER, 'login'],
+    EMAIL_TEMPLATES_NAMES: [
+        `${EMAIL_VERIFY}.json`,
+        `${EMAIL_VERIFY}.html`,
+        `${EMAIL_VERIFY_BY_CODE}.json`,
+        `${EMAIL_VERIFY_BY_CODE}.html`,
+        `${EMAIL_RESET}.json`,
+        `${EMAIL_RESET}.html`,
+        `${EMAIL_WELCOME}.json`,
+        `${EMAIL_WELCOME}.html`,
+        `${EMAIL_BLOCKED}.json`,
+        `${EMAIL_BLOCKED}.html`,
+        `${EMAIL_STOLEN_CREDENTIALS}.json`,
+        `${EMAIL_STOLEN_CREDENTIALS}.html`,
+        `${EMAIL_ENROLLMENT}.json`,
+        `${EMAIL_ENROLLMENT}.html`,
+        `${EMAIL_CHANGE_PASSWORD}.json`,
+        `${EMAIL_CHANGE_PASSWORD}.html`,
+        `${EMAIL_PASSWORD_RESET}.json`,
+        `${EMAIL_PASSWORD_RESET}.html`,
+        `${EMAIL_MFA_OOB_CODE}.json`,
+        `${EMAIL_MFA_OOB_CODE}.html`,
+        `${EMAIL_USER_INVITATION}.json`,
+        `${EMAIL_USER_INVITATION}.html`,
+    ],
+    SUPPORTED_BRANDING_TEMPLATES: [UNIVERSAL_LOGIN_TEMPLATE],
 };
-constants.RESOURCE_SERVERS_DIRECTORY = 'resource-servers';
-constants.RESOURCE_SERVERS_CLIENT_NAME = 'resourceServers';
-constants.RESOURCE_SERVERS_MANAGEMENT_API_NAME = 'Auth0 Management API';
-constants.RESOURCE_SERVERS_ID_NAME = 'id';
-constants.CLIENTS_DIRECTORY = 'clients';
-constants.CLIENTS_GRANTS_DIRECTORY = 'grants';
-constants.CLIENTS_CLIENT_NAME = 'clients';
-constants.CLIENTS_CLIENT_ID_NAME = 'client_id';
-constants.CONNECTIONS_DIRECTORY = 'connections';
-constants.CONNECTIONS_CLIENT_NAME = 'connections';
-constants.CONNECTIONS_ID_NAME = 'id';
-constants.CONCURRENT_CALLS = 5;
-constants.ROLES_DIRECTORY = 'roles';
-constants.ATTACK_PROTECTION_DIRECTORY = 'attack-protection';
 exports.default = constants;