authhero 0.185.0 → 0.187.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (4) hide show
  1. package/dist/authhero.cjs +46 -46
  2. package/dist/authhero.d.ts +722 -66
  3. package/dist/authhero.mjs +2225 -2182
  4. package/package.json +3 -3
package/dist/authhero.d.ts CHANGED
@@ -12355,70 +12355,6 @@ export declare const tenantSchema: z.ZodObject<{
12355
12355
  language?: string | undefined;
12356
12356
  }>;
12357
12357
  export type Tenant = z.infer<typeof tenantSchema>;
12358
- export declare const vendorSettingsSchema: z.ZodObject<{
12359
- logoUrl: z.ZodString;
12360
- loginBackgroundImage: z.ZodOptional<z.ZodNullable<z.ZodString>>;
12361
- style: z.ZodObject<{
12362
- primaryColor: z.ZodString;
12363
- buttonTextColor: z.ZodString;
12364
- primaryHoverColor: z.ZodString;
12365
- }, "strip", z.ZodTypeAny, {
12366
- primaryColor: string;
12367
- buttonTextColor: string;
12368
- primaryHoverColor: string;
12369
- }, {
12370
- primaryColor: string;
12371
- buttonTextColor: string;
12372
- primaryHoverColor: string;
12373
- }>;
12374
- country: z.ZodOptional<z.ZodString>;
12375
- supportEmail: z.ZodNullable<z.ZodString>;
12376
- supportUrl: z.ZodNullable<z.ZodString>;
12377
- name: z.ZodString;
12378
- showGreyishBackground: z.ZodOptional<z.ZodBoolean>;
12379
- termsAndConditionsUrl: z.ZodNullable<z.ZodString>;
12380
- companyName: z.ZodOptional<z.ZodString>;
12381
- checkoutHideSocial: z.ZodOptional<z.ZodBoolean>;
12382
- siteUrl: z.ZodNullable<z.ZodString>;
12383
- manageSubscriptionsUrl: z.ZodOptional<z.ZodString>;
12384
- }, "strip", z.ZodTypeAny, {
12385
- name: string;
12386
- style: {
12387
- primaryColor: string;
12388
- buttonTextColor: string;
12389
- primaryHoverColor: string;
12390
- };
12391
- logoUrl: string;
12392
- supportEmail: string | null;
12393
- supportUrl: string | null;
12394
- termsAndConditionsUrl: string | null;
12395
- siteUrl: string | null;
12396
- loginBackgroundImage?: string | null | undefined;
12397
- country?: string | undefined;
12398
- showGreyishBackground?: boolean | undefined;
12399
- companyName?: string | undefined;
12400
- checkoutHideSocial?: boolean | undefined;
12401
- manageSubscriptionsUrl?: string | undefined;
12402
- }, {
12403
- name: string;
12404
- style: {
12405
- primaryColor: string;
12406
- buttonTextColor: string;
12407
- primaryHoverColor: string;
12408
- };
12409
- logoUrl: string;
12410
- supportEmail: string | null;
12411
- supportUrl: string | null;
12412
- termsAndConditionsUrl: string | null;
12413
- siteUrl: string | null;
12414
- loginBackgroundImage?: string | null | undefined;
12415
- country?: string | undefined;
12416
- showGreyishBackground?: boolean | undefined;
12417
- companyName?: string | undefined;
12418
- checkoutHideSocial?: boolean | undefined;
12419
- manageSubscriptionsUrl?: string | undefined;
12420
- }>;
12421
- export type VendorSettings = z.infer<typeof vendorSettingsSchema>;
12422
12358
  export declare enum GrantType {
12423
12359
  RefreshToken = "refresh_token",
12424
12360
  AuthorizationCode = "authorization_code",
@@ -13945,6 +13881,695 @@ export declare const smsProviderSchema: z.ZodObject<{
13945
13881
  name: string;
13946
13882
  }>;
13947
13883
  export type SmsProvider = z.infer<typeof smsProviderSchema>;
13884
+ export declare const resourceServerScopeSchema: z.ZodObject<{
13885
+ value: z.ZodString;
13886
+ description: z.ZodOptional<z.ZodString>;
13887
+ }, "strip", z.ZodTypeAny, {
13888
+ value: string;
13889
+ description?: string | undefined;
13890
+ }, {
13891
+ value: string;
13892
+ description?: string | undefined;
13893
+ }>;
13894
+ export type ResourceServerScope = z.infer<typeof resourceServerScopeSchema>;
13895
+ export declare const resourceServerOptionsSchema: z.ZodObject<{
13896
+ token_dialect: z.ZodOptional<z.ZodEnum<[
13897
+ "access_token",
13898
+ "access_token_authz"
13899
+ ]>>;
13900
+ enforce_policies: z.ZodOptional<z.ZodBoolean>;
13901
+ allow_skipping_userinfo: z.ZodOptional<z.ZodBoolean>;
13902
+ skip_userinfo: z.ZodOptional<z.ZodBoolean>;
13903
+ persist_client_authorization: z.ZodOptional<z.ZodBoolean>;
13904
+ enable_introspection_endpoint: z.ZodOptional<z.ZodBoolean>;
13905
+ mtls: z.ZodOptional<z.ZodObject<{
13906
+ bound_access_tokens: z.ZodOptional<z.ZodBoolean>;
13907
+ }, "strip", z.ZodTypeAny, {
13908
+ bound_access_tokens?: boolean | undefined;
13909
+ }, {
13910
+ bound_access_tokens?: boolean | undefined;
13911
+ }>>;
13912
+ }, "passthrough", z.ZodTypeAny, z.objectOutputType<{
13913
+ token_dialect: z.ZodOptional<z.ZodEnum<[
13914
+ "access_token",
13915
+ "access_token_authz"
13916
+ ]>>;
13917
+ enforce_policies: z.ZodOptional<z.ZodBoolean>;
13918
+ allow_skipping_userinfo: z.ZodOptional<z.ZodBoolean>;
13919
+ skip_userinfo: z.ZodOptional<z.ZodBoolean>;
13920
+ persist_client_authorization: z.ZodOptional<z.ZodBoolean>;
13921
+ enable_introspection_endpoint: z.ZodOptional<z.ZodBoolean>;
13922
+ mtls: z.ZodOptional<z.ZodObject<{
13923
+ bound_access_tokens: z.ZodOptional<z.ZodBoolean>;
13924
+ }, "strip", z.ZodTypeAny, {
13925
+ bound_access_tokens?: boolean | undefined;
13926
+ }, {
13927
+ bound_access_tokens?: boolean | undefined;
13928
+ }>>;
13929
+ }, z.ZodTypeAny, "passthrough">, z.objectInputType<{
13930
+ token_dialect: z.ZodOptional<z.ZodEnum<[
13931
+ "access_token",
13932
+ "access_token_authz"
13933
+ ]>>;
13934
+ enforce_policies: z.ZodOptional<z.ZodBoolean>;
13935
+ allow_skipping_userinfo: z.ZodOptional<z.ZodBoolean>;
13936
+ skip_userinfo: z.ZodOptional<z.ZodBoolean>;
13937
+ persist_client_authorization: z.ZodOptional<z.ZodBoolean>;
13938
+ enable_introspection_endpoint: z.ZodOptional<z.ZodBoolean>;
13939
+ mtls: z.ZodOptional<z.ZodObject<{
13940
+ bound_access_tokens: z.ZodOptional<z.ZodBoolean>;
13941
+ }, "strip", z.ZodTypeAny, {
13942
+ bound_access_tokens?: boolean | undefined;
13943
+ }, {
13944
+ bound_access_tokens?: boolean | undefined;
13945
+ }>>;
13946
+ }, z.ZodTypeAny, "passthrough">>;
13947
+ export type ResourceServerOptions = z.infer<typeof resourceServerOptionsSchema>;
13948
+ export declare const resourceServerInsertSchema: z.ZodObject<{
13949
+ name: z.ZodString;
13950
+ identifier: z.ZodString;
13951
+ scopes: z.ZodOptional<z.ZodArray<z.ZodObject<{
13952
+ value: z.ZodString;
13953
+ description: z.ZodOptional<z.ZodString>;
13954
+ }, "strip", z.ZodTypeAny, {
13955
+ value: string;
13956
+ description?: string | undefined;
13957
+ }, {
13958
+ value: string;
13959
+ description?: string | undefined;
13960
+ }>, "many">>;
13961
+ signing_alg: z.ZodOptional<z.ZodString>;
13962
+ signing_secret: z.ZodOptional<z.ZodString>;
13963
+ token_lifetime: z.ZodOptional<z.ZodNumber>;
13964
+ token_lifetime_for_web: z.ZodOptional<z.ZodNumber>;
13965
+ skip_consent_for_verifiable_first_party_clients: z.ZodOptional<z.ZodBoolean>;
13966
+ allow_offline_access: z.ZodOptional<z.ZodBoolean>;
13967
+ verificationKey: z.ZodOptional<z.ZodString>;
13968
+ options: z.ZodOptional<z.ZodObject<{
13969
+ token_dialect: z.ZodOptional<z.ZodEnum<[
13970
+ "access_token",
13971
+ "access_token_authz"
13972
+ ]>>;
13973
+ enforce_policies: z.ZodOptional<z.ZodBoolean>;
13974
+ allow_skipping_userinfo: z.ZodOptional<z.ZodBoolean>;
13975
+ skip_userinfo: z.ZodOptional<z.ZodBoolean>;
13976
+ persist_client_authorization: z.ZodOptional<z.ZodBoolean>;
13977
+ enable_introspection_endpoint: z.ZodOptional<z.ZodBoolean>;
13978
+ mtls: z.ZodOptional<z.ZodObject<{
13979
+ bound_access_tokens: z.ZodOptional<z.ZodBoolean>;
13980
+ }, "strip", z.ZodTypeAny, {
13981
+ bound_access_tokens?: boolean | undefined;
13982
+ }, {
13983
+ bound_access_tokens?: boolean | undefined;
13984
+ }>>;
13985
+ }, "passthrough", z.ZodTypeAny, z.objectOutputType<{
13986
+ token_dialect: z.ZodOptional<z.ZodEnum<[
13987
+ "access_token",
13988
+ "access_token_authz"
13989
+ ]>>;
13990
+ enforce_policies: z.ZodOptional<z.ZodBoolean>;
13991
+ allow_skipping_userinfo: z.ZodOptional<z.ZodBoolean>;
13992
+ skip_userinfo: z.ZodOptional<z.ZodBoolean>;
13993
+ persist_client_authorization: z.ZodOptional<z.ZodBoolean>;
13994
+ enable_introspection_endpoint: z.ZodOptional<z.ZodBoolean>;
13995
+ mtls: z.ZodOptional<z.ZodObject<{
13996
+ bound_access_tokens: z.ZodOptional<z.ZodBoolean>;
13997
+ }, "strip", z.ZodTypeAny, {
13998
+ bound_access_tokens?: boolean | undefined;
13999
+ }, {
14000
+ bound_access_tokens?: boolean | undefined;
14001
+ }>>;
14002
+ }, z.ZodTypeAny, "passthrough">, z.objectInputType<{
14003
+ token_dialect: z.ZodOptional<z.ZodEnum<[
14004
+ "access_token",
14005
+ "access_token_authz"
14006
+ ]>>;
14007
+ enforce_policies: z.ZodOptional<z.ZodBoolean>;
14008
+ allow_skipping_userinfo: z.ZodOptional<z.ZodBoolean>;
14009
+ skip_userinfo: z.ZodOptional<z.ZodBoolean>;
14010
+ persist_client_authorization: z.ZodOptional<z.ZodBoolean>;
14011
+ enable_introspection_endpoint: z.ZodOptional<z.ZodBoolean>;
14012
+ mtls: z.ZodOptional<z.ZodObject<{
14013
+ bound_access_tokens: z.ZodOptional<z.ZodBoolean>;
14014
+ }, "strip", z.ZodTypeAny, {
14015
+ bound_access_tokens?: boolean | undefined;
14016
+ }, {
14017
+ bound_access_tokens?: boolean | undefined;
14018
+ }>>;
14019
+ }, z.ZodTypeAny, "passthrough">>>;
14020
+ }, "strip", z.ZodTypeAny, {
14021
+ name: string;
14022
+ identifier: string;
14023
+ options?: z.objectOutputType<{
14024
+ token_dialect: z.ZodOptional<z.ZodEnum<[
14025
+ "access_token",
14026
+ "access_token_authz"
14027
+ ]>>;
14028
+ enforce_policies: z.ZodOptional<z.ZodBoolean>;
14029
+ allow_skipping_userinfo: z.ZodOptional<z.ZodBoolean>;
14030
+ skip_userinfo: z.ZodOptional<z.ZodBoolean>;
14031
+ persist_client_authorization: z.ZodOptional<z.ZodBoolean>;
14032
+ enable_introspection_endpoint: z.ZodOptional<z.ZodBoolean>;
14033
+ mtls: z.ZodOptional<z.ZodObject<{
14034
+ bound_access_tokens: z.ZodOptional<z.ZodBoolean>;
14035
+ }, "strip", z.ZodTypeAny, {
14036
+ bound_access_tokens?: boolean | undefined;
14037
+ }, {
14038
+ bound_access_tokens?: boolean | undefined;
14039
+ }>>;
14040
+ }, z.ZodTypeAny, "passthrough"> | undefined;
14041
+ scopes?: {
14042
+ value: string;
14043
+ description?: string | undefined;
14044
+ }[] | undefined;
14045
+ signing_alg?: string | undefined;
14046
+ signing_secret?: string | undefined;
14047
+ token_lifetime?: number | undefined;
14048
+ token_lifetime_for_web?: number | undefined;
14049
+ skip_consent_for_verifiable_first_party_clients?: boolean | undefined;
14050
+ allow_offline_access?: boolean | undefined;
14051
+ verificationKey?: string | undefined;
14052
+ }, {
14053
+ name: string;
14054
+ identifier: string;
14055
+ options?: z.objectInputType<{
14056
+ token_dialect: z.ZodOptional<z.ZodEnum<[
14057
+ "access_token",
14058
+ "access_token_authz"
14059
+ ]>>;
14060
+ enforce_policies: z.ZodOptional<z.ZodBoolean>;
14061
+ allow_skipping_userinfo: z.ZodOptional<z.ZodBoolean>;
14062
+ skip_userinfo: z.ZodOptional<z.ZodBoolean>;
14063
+ persist_client_authorization: z.ZodOptional<z.ZodBoolean>;
14064
+ enable_introspection_endpoint: z.ZodOptional<z.ZodBoolean>;
14065
+ mtls: z.ZodOptional<z.ZodObject<{
14066
+ bound_access_tokens: z.ZodOptional<z.ZodBoolean>;
14067
+ }, "strip", z.ZodTypeAny, {
14068
+ bound_access_tokens?: boolean | undefined;
14069
+ }, {
14070
+ bound_access_tokens?: boolean | undefined;
14071
+ }>>;
14072
+ }, z.ZodTypeAny, "passthrough"> | undefined;
14073
+ scopes?: {
14074
+ value: string;
14075
+ description?: string | undefined;
14076
+ }[] | undefined;
14077
+ signing_alg?: string | undefined;
14078
+ signing_secret?: string | undefined;
14079
+ token_lifetime?: number | undefined;
14080
+ token_lifetime_for_web?: number | undefined;
14081
+ skip_consent_for_verifiable_first_party_clients?: boolean | undefined;
14082
+ allow_offline_access?: boolean | undefined;
14083
+ verificationKey?: string | undefined;
14084
+ }>;
14085
+ export type ResourceServerInsert = z.input<typeof resourceServerInsertSchema>;
14086
+ export declare const resourceServerSchema: z.ZodObject<{
14087
+ name: z.ZodString;
14088
+ identifier: z.ZodString;
14089
+ scopes: z.ZodOptional<z.ZodArray<z.ZodObject<{
14090
+ value: z.ZodString;
14091
+ description: z.ZodOptional<z.ZodString>;
14092
+ }, "strip", z.ZodTypeAny, {
14093
+ value: string;
14094
+ description?: string | undefined;
14095
+ }, {
14096
+ value: string;
14097
+ description?: string | undefined;
14098
+ }>, "many">>;
14099
+ signing_alg: z.ZodOptional<z.ZodString>;
14100
+ signing_secret: z.ZodOptional<z.ZodString>;
14101
+ token_lifetime: z.ZodOptional<z.ZodNumber>;
14102
+ token_lifetime_for_web: z.ZodOptional<z.ZodNumber>;
14103
+ skip_consent_for_verifiable_first_party_clients: z.ZodOptional<z.ZodBoolean>;
14104
+ allow_offline_access: z.ZodOptional<z.ZodBoolean>;
14105
+ verificationKey: z.ZodOptional<z.ZodString>;
14106
+ options: z.ZodOptional<z.ZodObject<{
14107
+ token_dialect: z.ZodOptional<z.ZodEnum<[
14108
+ "access_token",
14109
+ "access_token_authz"
14110
+ ]>>;
14111
+ enforce_policies: z.ZodOptional<z.ZodBoolean>;
14112
+ allow_skipping_userinfo: z.ZodOptional<z.ZodBoolean>;
14113
+ skip_userinfo: z.ZodOptional<z.ZodBoolean>;
14114
+ persist_client_authorization: z.ZodOptional<z.ZodBoolean>;
14115
+ enable_introspection_endpoint: z.ZodOptional<z.ZodBoolean>;
14116
+ mtls: z.ZodOptional<z.ZodObject<{
14117
+ bound_access_tokens: z.ZodOptional<z.ZodBoolean>;
14118
+ }, "strip", z.ZodTypeAny, {
14119
+ bound_access_tokens?: boolean | undefined;
14120
+ }, {
14121
+ bound_access_tokens?: boolean | undefined;
14122
+ }>>;
14123
+ }, "passthrough", z.ZodTypeAny, z.objectOutputType<{
14124
+ token_dialect: z.ZodOptional<z.ZodEnum<[
14125
+ "access_token",
14126
+ "access_token_authz"
14127
+ ]>>;
14128
+ enforce_policies: z.ZodOptional<z.ZodBoolean>;
14129
+ allow_skipping_userinfo: z.ZodOptional<z.ZodBoolean>;
14130
+ skip_userinfo: z.ZodOptional<z.ZodBoolean>;
14131
+ persist_client_authorization: z.ZodOptional<z.ZodBoolean>;
14132
+ enable_introspection_endpoint: z.ZodOptional<z.ZodBoolean>;
14133
+ mtls: z.ZodOptional<z.ZodObject<{
14134
+ bound_access_tokens: z.ZodOptional<z.ZodBoolean>;
14135
+ }, "strip", z.ZodTypeAny, {
14136
+ bound_access_tokens?: boolean | undefined;
14137
+ }, {
14138
+ bound_access_tokens?: boolean | undefined;
14139
+ }>>;
14140
+ }, z.ZodTypeAny, "passthrough">, z.objectInputType<{
14141
+ token_dialect: z.ZodOptional<z.ZodEnum<[
14142
+ "access_token",
14143
+ "access_token_authz"
14144
+ ]>>;
14145
+ enforce_policies: z.ZodOptional<z.ZodBoolean>;
14146
+ allow_skipping_userinfo: z.ZodOptional<z.ZodBoolean>;
14147
+ skip_userinfo: z.ZodOptional<z.ZodBoolean>;
14148
+ persist_client_authorization: z.ZodOptional<z.ZodBoolean>;
14149
+ enable_introspection_endpoint: z.ZodOptional<z.ZodBoolean>;
14150
+ mtls: z.ZodOptional<z.ZodObject<{
14151
+ bound_access_tokens: z.ZodOptional<z.ZodBoolean>;
14152
+ }, "strip", z.ZodTypeAny, {
14153
+ bound_access_tokens?: boolean | undefined;
14154
+ }, {
14155
+ bound_access_tokens?: boolean | undefined;
14156
+ }>>;
14157
+ }, z.ZodTypeAny, "passthrough">>>;
14158
+ id: z.ZodOptional<z.ZodString>;
14159
+ }, "strip", z.ZodTypeAny, {
14160
+ name: string;
14161
+ identifier: string;
14162
+ options?: z.objectOutputType<{
14163
+ token_dialect: z.ZodOptional<z.ZodEnum<[
14164
+ "access_token",
14165
+ "access_token_authz"
14166
+ ]>>;
14167
+ enforce_policies: z.ZodOptional<z.ZodBoolean>;
14168
+ allow_skipping_userinfo: z.ZodOptional<z.ZodBoolean>;
14169
+ skip_userinfo: z.ZodOptional<z.ZodBoolean>;
14170
+ persist_client_authorization: z.ZodOptional<z.ZodBoolean>;
14171
+ enable_introspection_endpoint: z.ZodOptional<z.ZodBoolean>;
14172
+ mtls: z.ZodOptional<z.ZodObject<{
14173
+ bound_access_tokens: z.ZodOptional<z.ZodBoolean>;
14174
+ }, "strip", z.ZodTypeAny, {
14175
+ bound_access_tokens?: boolean | undefined;
14176
+ }, {
14177
+ bound_access_tokens?: boolean | undefined;
14178
+ }>>;
14179
+ }, z.ZodTypeAny, "passthrough"> | undefined;
14180
+ id?: string | undefined;
14181
+ scopes?: {
14182
+ value: string;
14183
+ description?: string | undefined;
14184
+ }[] | undefined;
14185
+ signing_alg?: string | undefined;
14186
+ signing_secret?: string | undefined;
14187
+ token_lifetime?: number | undefined;
14188
+ token_lifetime_for_web?: number | undefined;
14189
+ skip_consent_for_verifiable_first_party_clients?: boolean | undefined;
14190
+ allow_offline_access?: boolean | undefined;
14191
+ verificationKey?: string | undefined;
14192
+ }, {
14193
+ name: string;
14194
+ identifier: string;
14195
+ options?: z.objectInputType<{
14196
+ token_dialect: z.ZodOptional<z.ZodEnum<[
14197
+ "access_token",
14198
+ "access_token_authz"
14199
+ ]>>;
14200
+ enforce_policies: z.ZodOptional<z.ZodBoolean>;
14201
+ allow_skipping_userinfo: z.ZodOptional<z.ZodBoolean>;
14202
+ skip_userinfo: z.ZodOptional<z.ZodBoolean>;
14203
+ persist_client_authorization: z.ZodOptional<z.ZodBoolean>;
14204
+ enable_introspection_endpoint: z.ZodOptional<z.ZodBoolean>;
14205
+ mtls: z.ZodOptional<z.ZodObject<{
14206
+ bound_access_tokens: z.ZodOptional<z.ZodBoolean>;
14207
+ }, "strip", z.ZodTypeAny, {
14208
+ bound_access_tokens?: boolean | undefined;
14209
+ }, {
14210
+ bound_access_tokens?: boolean | undefined;
14211
+ }>>;
14212
+ }, z.ZodTypeAny, "passthrough"> | undefined;
14213
+ id?: string | undefined;
14214
+ scopes?: {
14215
+ value: string;
14216
+ description?: string | undefined;
14217
+ }[] | undefined;
14218
+ signing_alg?: string | undefined;
14219
+ signing_secret?: string | undefined;
14220
+ token_lifetime?: number | undefined;
14221
+ token_lifetime_for_web?: number | undefined;
14222
+ skip_consent_for_verifiable_first_party_clients?: boolean | undefined;
14223
+ allow_offline_access?: boolean | undefined;
14224
+ verificationKey?: string | undefined;
14225
+ }>;
14226
+ export type ResourceServer = z.infer<typeof resourceServerSchema>;
14227
+ export declare const resourceServerListSchema: z.ZodArray<z.ZodObject<{
14228
+ name: z.ZodString;
14229
+ identifier: z.ZodString;
14230
+ scopes: z.ZodOptional<z.ZodArray<z.ZodObject<{
14231
+ value: z.ZodString;
14232
+ description: z.ZodOptional<z.ZodString>;
14233
+ }, "strip", z.ZodTypeAny, {
14234
+ value: string;
14235
+ description?: string | undefined;
14236
+ }, {
14237
+ value: string;
14238
+ description?: string | undefined;
14239
+ }>, "many">>;
14240
+ signing_alg: z.ZodOptional<z.ZodString>;
14241
+ signing_secret: z.ZodOptional<z.ZodString>;
14242
+ token_lifetime: z.ZodOptional<z.ZodNumber>;
14243
+ token_lifetime_for_web: z.ZodOptional<z.ZodNumber>;
14244
+ skip_consent_for_verifiable_first_party_clients: z.ZodOptional<z.ZodBoolean>;
14245
+ allow_offline_access: z.ZodOptional<z.ZodBoolean>;
14246
+ verificationKey: z.ZodOptional<z.ZodString>;
14247
+ options: z.ZodOptional<z.ZodObject<{
14248
+ token_dialect: z.ZodOptional<z.ZodEnum<[
14249
+ "access_token",
14250
+ "access_token_authz"
14251
+ ]>>;
14252
+ enforce_policies: z.ZodOptional<z.ZodBoolean>;
14253
+ allow_skipping_userinfo: z.ZodOptional<z.ZodBoolean>;
14254
+ skip_userinfo: z.ZodOptional<z.ZodBoolean>;
14255
+ persist_client_authorization: z.ZodOptional<z.ZodBoolean>;
14256
+ enable_introspection_endpoint: z.ZodOptional<z.ZodBoolean>;
14257
+ mtls: z.ZodOptional<z.ZodObject<{
14258
+ bound_access_tokens: z.ZodOptional<z.ZodBoolean>;
14259
+ }, "strip", z.ZodTypeAny, {
14260
+ bound_access_tokens?: boolean | undefined;
14261
+ }, {
14262
+ bound_access_tokens?: boolean | undefined;
14263
+ }>>;
14264
+ }, "passthrough", z.ZodTypeAny, z.objectOutputType<{
14265
+ token_dialect: z.ZodOptional<z.ZodEnum<[
14266
+ "access_token",
14267
+ "access_token_authz"
14268
+ ]>>;
14269
+ enforce_policies: z.ZodOptional<z.ZodBoolean>;
14270
+ allow_skipping_userinfo: z.ZodOptional<z.ZodBoolean>;
14271
+ skip_userinfo: z.ZodOptional<z.ZodBoolean>;
14272
+ persist_client_authorization: z.ZodOptional<z.ZodBoolean>;
14273
+ enable_introspection_endpoint: z.ZodOptional<z.ZodBoolean>;
14274
+ mtls: z.ZodOptional<z.ZodObject<{
14275
+ bound_access_tokens: z.ZodOptional<z.ZodBoolean>;
14276
+ }, "strip", z.ZodTypeAny, {
14277
+ bound_access_tokens?: boolean | undefined;
14278
+ }, {
14279
+ bound_access_tokens?: boolean | undefined;
14280
+ }>>;
14281
+ }, z.ZodTypeAny, "passthrough">, z.objectInputType<{
14282
+ token_dialect: z.ZodOptional<z.ZodEnum<[
14283
+ "access_token",
14284
+ "access_token_authz"
14285
+ ]>>;
14286
+ enforce_policies: z.ZodOptional<z.ZodBoolean>;
14287
+ allow_skipping_userinfo: z.ZodOptional<z.ZodBoolean>;
14288
+ skip_userinfo: z.ZodOptional<z.ZodBoolean>;
14289
+ persist_client_authorization: z.ZodOptional<z.ZodBoolean>;
14290
+ enable_introspection_endpoint: z.ZodOptional<z.ZodBoolean>;
14291
+ mtls: z.ZodOptional<z.ZodObject<{
14292
+ bound_access_tokens: z.ZodOptional<z.ZodBoolean>;
14293
+ }, "strip", z.ZodTypeAny, {
14294
+ bound_access_tokens?: boolean | undefined;
14295
+ }, {
14296
+ bound_access_tokens?: boolean | undefined;
14297
+ }>>;
14298
+ }, z.ZodTypeAny, "passthrough">>>;
14299
+ id: z.ZodOptional<z.ZodString>;
14300
+ }, "strip", z.ZodTypeAny, {
14301
+ name: string;
14302
+ identifier: string;
14303
+ options?: z.objectOutputType<{
14304
+ token_dialect: z.ZodOptional<z.ZodEnum<[
14305
+ "access_token",
14306
+ "access_token_authz"
14307
+ ]>>;
14308
+ enforce_policies: z.ZodOptional<z.ZodBoolean>;
14309
+ allow_skipping_userinfo: z.ZodOptional<z.ZodBoolean>;
14310
+ skip_userinfo: z.ZodOptional<z.ZodBoolean>;
14311
+ persist_client_authorization: z.ZodOptional<z.ZodBoolean>;
14312
+ enable_introspection_endpoint: z.ZodOptional<z.ZodBoolean>;
14313
+ mtls: z.ZodOptional<z.ZodObject<{
14314
+ bound_access_tokens: z.ZodOptional<z.ZodBoolean>;
14315
+ }, "strip", z.ZodTypeAny, {
14316
+ bound_access_tokens?: boolean | undefined;
14317
+ }, {
14318
+ bound_access_tokens?: boolean | undefined;
14319
+ }>>;
14320
+ }, z.ZodTypeAny, "passthrough"> | undefined;
14321
+ id?: string | undefined;
14322
+ scopes?: {
14323
+ value: string;
14324
+ description?: string | undefined;
14325
+ }[] | undefined;
14326
+ signing_alg?: string | undefined;
14327
+ signing_secret?: string | undefined;
14328
+ token_lifetime?: number | undefined;
14329
+ token_lifetime_for_web?: number | undefined;
14330
+ skip_consent_for_verifiable_first_party_clients?: boolean | undefined;
14331
+ allow_offline_access?: boolean | undefined;
14332
+ verificationKey?: string | undefined;
14333
+ }, {
14334
+ name: string;
14335
+ identifier: string;
14336
+ options?: z.objectInputType<{
14337
+ token_dialect: z.ZodOptional<z.ZodEnum<[
14338
+ "access_token",
14339
+ "access_token_authz"
14340
+ ]>>;
14341
+ enforce_policies: z.ZodOptional<z.ZodBoolean>;
14342
+ allow_skipping_userinfo: z.ZodOptional<z.ZodBoolean>;
14343
+ skip_userinfo: z.ZodOptional<z.ZodBoolean>;
14344
+ persist_client_authorization: z.ZodOptional<z.ZodBoolean>;
14345
+ enable_introspection_endpoint: z.ZodOptional<z.ZodBoolean>;
14346
+ mtls: z.ZodOptional<z.ZodObject<{
14347
+ bound_access_tokens: z.ZodOptional<z.ZodBoolean>;
14348
+ }, "strip", z.ZodTypeAny, {
14349
+ bound_access_tokens?: boolean | undefined;
14350
+ }, {
14351
+ bound_access_tokens?: boolean | undefined;
14352
+ }>>;
14353
+ }, z.ZodTypeAny, "passthrough"> | undefined;
14354
+ id?: string | undefined;
14355
+ scopes?: {
14356
+ value: string;
14357
+ description?: string | undefined;
14358
+ }[] | undefined;
14359
+ signing_alg?: string | undefined;
14360
+ signing_secret?: string | undefined;
14361
+ token_lifetime?: number | undefined;
14362
+ token_lifetime_for_web?: number | undefined;
14363
+ skip_consent_for_verifiable_first_party_clients?: boolean | undefined;
14364
+ allow_offline_access?: boolean | undefined;
14365
+ verificationKey?: string | undefined;
14366
+ }>, "many">;
14367
+ export type ResourceServerList = z.infer<typeof resourceServerListSchema>;
14368
+ export declare const permissionSourceSchema: z.ZodObject<{
14369
+ source_id: z.ZodOptional<z.ZodString>;
14370
+ source_name: z.ZodOptional<z.ZodString>;
14371
+ source_type: z.ZodOptional<z.ZodString>;
14372
+ }, "passthrough", z.ZodTypeAny, z.objectOutputType<{
14373
+ source_id: z.ZodOptional<z.ZodString>;
14374
+ source_name: z.ZodOptional<z.ZodString>;
14375
+ source_type: z.ZodOptional<z.ZodString>;
14376
+ }, z.ZodTypeAny, "passthrough">, z.objectInputType<{
14377
+ source_id: z.ZodOptional<z.ZodString>;
14378
+ source_name: z.ZodOptional<z.ZodString>;
14379
+ source_type: z.ZodOptional<z.ZodString>;
14380
+ }, z.ZodTypeAny, "passthrough">>;
14381
+ export type PermissionSource = z.infer<typeof permissionSourceSchema>;
14382
+ export declare const permissionSchema: z.ZodObject<{
14383
+ permission_name: z.ZodString;
14384
+ description: z.ZodOptional<z.ZodNullable<z.ZodString>>;
14385
+ resource_server_identifier: z.ZodString;
14386
+ resource_server_name: z.ZodString;
14387
+ sources: z.ZodOptional<z.ZodArray<z.ZodObject<{
14388
+ source_id: z.ZodOptional<z.ZodString>;
14389
+ source_name: z.ZodOptional<z.ZodString>;
14390
+ source_type: z.ZodOptional<z.ZodString>;
14391
+ }, "passthrough", z.ZodTypeAny, z.objectOutputType<{
14392
+ source_id: z.ZodOptional<z.ZodString>;
14393
+ source_name: z.ZodOptional<z.ZodString>;
14394
+ source_type: z.ZodOptional<z.ZodString>;
14395
+ }, z.ZodTypeAny, "passthrough">, z.objectInputType<{
14396
+ source_id: z.ZodOptional<z.ZodString>;
14397
+ source_name: z.ZodOptional<z.ZodString>;
14398
+ source_type: z.ZodOptional<z.ZodString>;
14399
+ }, z.ZodTypeAny, "passthrough">>, "many">>;
14400
+ }, "passthrough", z.ZodTypeAny, z.objectOutputType<{
14401
+ permission_name: z.ZodString;
14402
+ description: z.ZodOptional<z.ZodNullable<z.ZodString>>;
14403
+ resource_server_identifier: z.ZodString;
14404
+ resource_server_name: z.ZodString;
14405
+ sources: z.ZodOptional<z.ZodArray<z.ZodObject<{
14406
+ source_id: z.ZodOptional<z.ZodString>;
14407
+ source_name: z.ZodOptional<z.ZodString>;
14408
+ source_type: z.ZodOptional<z.ZodString>;
14409
+ }, "passthrough", z.ZodTypeAny, z.objectOutputType<{
14410
+ source_id: z.ZodOptional<z.ZodString>;
14411
+ source_name: z.ZodOptional<z.ZodString>;
14412
+ source_type: z.ZodOptional<z.ZodString>;
14413
+ }, z.ZodTypeAny, "passthrough">, z.objectInputType<{
14414
+ source_id: z.ZodOptional<z.ZodString>;
14415
+ source_name: z.ZodOptional<z.ZodString>;
14416
+ source_type: z.ZodOptional<z.ZodString>;
14417
+ }, z.ZodTypeAny, "passthrough">>, "many">>;
14418
+ }, z.ZodTypeAny, "passthrough">, z.objectInputType<{
14419
+ permission_name: z.ZodString;
14420
+ description: z.ZodOptional<z.ZodNullable<z.ZodString>>;
14421
+ resource_server_identifier: z.ZodString;
14422
+ resource_server_name: z.ZodString;
14423
+ sources: z.ZodOptional<z.ZodArray<z.ZodObject<{
14424
+ source_id: z.ZodOptional<z.ZodString>;
14425
+ source_name: z.ZodOptional<z.ZodString>;
14426
+ source_type: z.ZodOptional<z.ZodString>;
14427
+ }, "passthrough", z.ZodTypeAny, z.objectOutputType<{
14428
+ source_id: z.ZodOptional<z.ZodString>;
14429
+ source_name: z.ZodOptional<z.ZodString>;
14430
+ source_type: z.ZodOptional<z.ZodString>;
14431
+ }, z.ZodTypeAny, "passthrough">, z.objectInputType<{
14432
+ source_id: z.ZodOptional<z.ZodString>;
14433
+ source_name: z.ZodOptional<z.ZodString>;
14434
+ source_type: z.ZodOptional<z.ZodString>;
14435
+ }, z.ZodTypeAny, "passthrough">>, "many">>;
14436
+ }, z.ZodTypeAny, "passthrough">>;
14437
+ export type Permission = z.infer<typeof permissionSchema>;
14438
+ export type PermissionInsert = z.input<typeof permissionSchema>;
14439
+ export declare const permissionListSchema: z.ZodArray<z.ZodObject<{
14440
+ permission_name: z.ZodString;
14441
+ description: z.ZodOptional<z.ZodNullable<z.ZodString>>;
14442
+ resource_server_identifier: z.ZodString;
14443
+ resource_server_name: z.ZodString;
14444
+ sources: z.ZodOptional<z.ZodArray<z.ZodObject<{
14445
+ source_id: z.ZodOptional<z.ZodString>;
14446
+ source_name: z.ZodOptional<z.ZodString>;
14447
+ source_type: z.ZodOptional<z.ZodString>;
14448
+ }, "passthrough", z.ZodTypeAny, z.objectOutputType<{
14449
+ source_id: z.ZodOptional<z.ZodString>;
14450
+ source_name: z.ZodOptional<z.ZodString>;
14451
+ source_type: z.ZodOptional<z.ZodString>;
14452
+ }, z.ZodTypeAny, "passthrough">, z.objectInputType<{
14453
+ source_id: z.ZodOptional<z.ZodString>;
14454
+ source_name: z.ZodOptional<z.ZodString>;
14455
+ source_type: z.ZodOptional<z.ZodString>;
14456
+ }, z.ZodTypeAny, "passthrough">>, "many">>;
14457
+ }, "passthrough", z.ZodTypeAny, z.objectOutputType<{
14458
+ permission_name: z.ZodString;
14459
+ description: z.ZodOptional<z.ZodNullable<z.ZodString>>;
14460
+ resource_server_identifier: z.ZodString;
14461
+ resource_server_name: z.ZodString;
14462
+ sources: z.ZodOptional<z.ZodArray<z.ZodObject<{
14463
+ source_id: z.ZodOptional<z.ZodString>;
14464
+ source_name: z.ZodOptional<z.ZodString>;
14465
+ source_type: z.ZodOptional<z.ZodString>;
14466
+ }, "passthrough", z.ZodTypeAny, z.objectOutputType<{
14467
+ source_id: z.ZodOptional<z.ZodString>;
14468
+ source_name: z.ZodOptional<z.ZodString>;
14469
+ source_type: z.ZodOptional<z.ZodString>;
14470
+ }, z.ZodTypeAny, "passthrough">, z.objectInputType<{
14471
+ source_id: z.ZodOptional<z.ZodString>;
14472
+ source_name: z.ZodOptional<z.ZodString>;
14473
+ source_type: z.ZodOptional<z.ZodString>;
14474
+ }, z.ZodTypeAny, "passthrough">>, "many">>;
14475
+ }, z.ZodTypeAny, "passthrough">, z.objectInputType<{
14476
+ permission_name: z.ZodString;
14477
+ description: z.ZodOptional<z.ZodNullable<z.ZodString>>;
14478
+ resource_server_identifier: z.ZodString;
14479
+ resource_server_name: z.ZodString;
14480
+ sources: z.ZodOptional<z.ZodArray<z.ZodObject<{
14481
+ source_id: z.ZodOptional<z.ZodString>;
14482
+ source_name: z.ZodOptional<z.ZodString>;
14483
+ source_type: z.ZodOptional<z.ZodString>;
14484
+ }, "passthrough", z.ZodTypeAny, z.objectOutputType<{
14485
+ source_id: z.ZodOptional<z.ZodString>;
14486
+ source_name: z.ZodOptional<z.ZodString>;
14487
+ source_type: z.ZodOptional<z.ZodString>;
14488
+ }, z.ZodTypeAny, "passthrough">, z.objectInputType<{
14489
+ source_id: z.ZodOptional<z.ZodString>;
14490
+ source_name: z.ZodOptional<z.ZodString>;
14491
+ source_type: z.ZodOptional<z.ZodString>;
14492
+ }, z.ZodTypeAny, "passthrough">>, "many">>;
14493
+ }, z.ZodTypeAny, "passthrough">>, "many">;
14494
+ export type PermissionList = z.infer<typeof permissionListSchema>;
14495
+ export declare const ruleInsertSchema: z.ZodObject<{
14496
+ name: z.ZodString;
14497
+ script: z.ZodString;
14498
+ order: z.ZodOptional<z.ZodNumber>;
14499
+ enabled: z.ZodOptional<z.ZodBoolean>;
14500
+ stage: z.ZodOptional<z.ZodString>;
14501
+ }, "strip", z.ZodTypeAny, {
14502
+ name: string;
14503
+ script: string;
14504
+ enabled?: boolean | undefined;
14505
+ order?: number | undefined;
14506
+ stage?: string | undefined;
14507
+ }, {
14508
+ name: string;
14509
+ script: string;
14510
+ enabled?: boolean | undefined;
14511
+ order?: number | undefined;
14512
+ stage?: string | undefined;
14513
+ }>;
14514
+ export type RuleInsert = z.input<typeof ruleInsertSchema>;
14515
+ export declare const ruleSchema: z.ZodObject<{
14516
+ name: z.ZodString;
14517
+ script: z.ZodString;
14518
+ order: z.ZodOptional<z.ZodNumber>;
14519
+ enabled: z.ZodOptional<z.ZodBoolean>;
14520
+ stage: z.ZodOptional<z.ZodString>;
14521
+ id: z.ZodString;
14522
+ created_at: z.ZodOptional<z.ZodString>;
14523
+ updated_at: z.ZodOptional<z.ZodString>;
14524
+ }, "passthrough", z.ZodTypeAny, z.objectOutputType<{
14525
+ name: z.ZodString;
14526
+ script: z.ZodString;
14527
+ order: z.ZodOptional<z.ZodNumber>;
14528
+ enabled: z.ZodOptional<z.ZodBoolean>;
14529
+ stage: z.ZodOptional<z.ZodString>;
14530
+ id: z.ZodString;
14531
+ created_at: z.ZodOptional<z.ZodString>;
14532
+ updated_at: z.ZodOptional<z.ZodString>;
14533
+ }, z.ZodTypeAny, "passthrough">, z.objectInputType<{
14534
+ name: z.ZodString;
14535
+ script: z.ZodString;
14536
+ order: z.ZodOptional<z.ZodNumber>;
14537
+ enabled: z.ZodOptional<z.ZodBoolean>;
14538
+ stage: z.ZodOptional<z.ZodString>;
14539
+ id: z.ZodString;
14540
+ created_at: z.ZodOptional<z.ZodString>;
14541
+ updated_at: z.ZodOptional<z.ZodString>;
14542
+ }, z.ZodTypeAny, "passthrough">>;
14543
+ export type Rule = z.infer<typeof ruleSchema>;
14544
+ export declare const ruleListSchema: z.ZodArray<z.ZodObject<{
14545
+ name: z.ZodString;
14546
+ script: z.ZodString;
14547
+ order: z.ZodOptional<z.ZodNumber>;
14548
+ enabled: z.ZodOptional<z.ZodBoolean>;
14549
+ stage: z.ZodOptional<z.ZodString>;
14550
+ id: z.ZodString;
14551
+ created_at: z.ZodOptional<z.ZodString>;
14552
+ updated_at: z.ZodOptional<z.ZodString>;
14553
+ }, "passthrough", z.ZodTypeAny, z.objectOutputType<{
14554
+ name: z.ZodString;
14555
+ script: z.ZodString;
14556
+ order: z.ZodOptional<z.ZodNumber>;
14557
+ enabled: z.ZodOptional<z.ZodBoolean>;
14558
+ stage: z.ZodOptional<z.ZodString>;
14559
+ id: z.ZodString;
14560
+ created_at: z.ZodOptional<z.ZodString>;
14561
+ updated_at: z.ZodOptional<z.ZodString>;
14562
+ }, z.ZodTypeAny, "passthrough">, z.objectInputType<{
14563
+ name: z.ZodString;
14564
+ script: z.ZodString;
14565
+ order: z.ZodOptional<z.ZodNumber>;
14566
+ enabled: z.ZodOptional<z.ZodBoolean>;
14567
+ stage: z.ZodOptional<z.ZodString>;
14568
+ id: z.ZodString;
14569
+ created_at: z.ZodOptional<z.ZodString>;
14570
+ updated_at: z.ZodOptional<z.ZodString>;
14571
+ }, z.ZodTypeAny, "passthrough">>, "many">;
14572
+ export type RuleList = z.infer<typeof ruleListSchema>;
13948
14573
  export declare function parseUserId(user_id: string): {
13949
14574
  connection: string;
13950
14575
  id: string;
@@ -14101,6 +14726,36 @@ export interface FormsAdapter {
14101
14726
  update(tenant_id: string, form_id: string, form: Partial<FormInsert>): Promise<boolean>;
14102
14727
  list(tenant_id: string, params?: ListParams): Promise<ListFormsResponse>;
14103
14728
  }
14729
+ export interface ListResourceServersResponse extends Totals {
14730
+ resource_servers: ResourceServer[];
14731
+ }
14732
+ export interface ResourceServersAdapter {
14733
+ create(tenant_id: string, params: ResourceServerInsert): Promise<ResourceServer>;
14734
+ get(tenant_id: string, id: string): Promise<ResourceServer | null>;
14735
+ list(tenant_id: string, params?: ListParams): Promise<ListResourceServersResponse>;
14736
+ update(tenant_id: string, id: string, resourceServer: Partial<ResourceServerInsert>): Promise<boolean>;
14737
+ remove(tenant_id: string, id: string): Promise<boolean>;
14738
+ }
14739
+ export interface ListRulesResponse extends Totals {
14740
+ rules: Rule[];
14741
+ }
14742
+ export interface RulesAdapter {
14743
+ create(tenant_id: string, rule: RuleInsert): Promise<Rule>;
14744
+ get(tenant_id: string, rule_id: string): Promise<Rule | null>;
14745
+ list(tenant_id: string, params?: ListParams): Promise<ListRulesResponse>;
14746
+ update(tenant_id: string, rule_id: string, rule: Partial<RuleInsert>): Promise<boolean>;
14747
+ remove(tenant_id: string, rule_id: string): Promise<boolean>;
14748
+ }
14749
+ export interface ListPermissionsResponse extends Totals {
14750
+ permissions: Permission[];
14751
+ }
14752
+ export interface PermissionsAdapter {
14753
+ create(tenant_id: string, permission: PermissionInsert): Promise<Permission>;
14754
+ get(tenant_id: string, permission_id: string): Promise<Permission | null>;
14755
+ list(tenant_id: string, params?: ListParams): Promise<ListPermissionsResponse>;
14756
+ update(tenant_id: string, permission_id: string, permission: Partial<PermissionInsert>): Promise<boolean>;
14757
+ remove(tenant_id: string, permission_id: string): Promise<boolean>;
14758
+ }
14104
14759
  export interface DataAdapters {
14105
14760
  applications: ApplicationsAdapter;
14106
14761
  branding: BrandingAdapter;
@@ -14117,6 +14772,9 @@ export interface DataAdapters {
14117
14772
  passwords: PasswordsAdapter;
14118
14773
  promptSettings: PromptSettingsAdapter;
14119
14774
  refreshTokens: RefreshTokensAdapter;
14775
+ resourceServers: ResourceServersAdapter;
14776
+ rules: RulesAdapter;
14777
+ permissions: PermissionsAdapter;
14120
14778
  sessions: SessionsAdapter;
14121
14779
  tenants: TenantsDataAdapter;
14122
14780
  themes: ThemesAdapter;
@@ -14299,7 +14957,6 @@ export type Bindings = {
14299
14957
  ENVIRONMENT: string;
14300
14958
  AUTH_URL: string;
14301
14959
  JWKS_URL: string;
14302
- CSS_URL?: string;
14303
14960
  JWKS_SERVICE: Fetcher;
14304
14961
  ISSUER: string;
14305
14962
  UNIVERSAL_LOGIN_URL?: string;
@@ -14326,7 +14983,6 @@ export type Bindings = {
14326
14983
  JWKS_CACHE_TIMEOUT_IN_SECONDS: number;
14327
14984
  ORGANIZATION_NAME: string;
14328
14985
  SAML_SIGN_URL: string;
14329
- API_URL: string;
14330
14986
  };
14331
14987
  export interface AuthHeroConfig {
14332
14988
  dataAdapter: DataAdapters;