authhero 5.12.0 → 5.13.0
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/dist/authhero.cjs +129 -129
- package/dist/authhero.d.ts +244 -208
- package/dist/authhero.mjs +9954 -9757
- package/dist/stats.html +1 -1
- package/dist/tsconfig.types.tsbuildinfo +1 -1
- package/dist/types/adapters/createEncryptedDataAdapter.d.ts +14 -0
- package/dist/types/adapters/index.d.ts +2 -0
- package/dist/types/authentication-flows/passwordless.d.ts +3 -3
- package/dist/types/helpers/custom-domain.d.ts +8 -0
- package/dist/types/index.d.ts +207 -207
- package/dist/types/routes/auth-api/index.d.ts +12 -12
- package/dist/types/routes/auth-api/passwordless.d.ts +6 -6
- package/dist/types/routes/auth-api/revoke.d.ts +6 -6
- package/dist/types/routes/management-api/action-executions.d.ts +2 -2
- package/dist/types/routes/management-api/actions.d.ts +1 -1
- package/dist/types/routes/management-api/authentication-methods.d.ts +1 -1
- package/dist/types/routes/management-api/client-grants.d.ts +8 -8
- package/dist/types/routes/management-api/clients.d.ts +6 -6
- package/dist/types/routes/management-api/connections.d.ts +16 -16
- package/dist/types/routes/management-api/custom-domains.d.ts +6 -6
- package/dist/types/routes/management-api/email-templates.d.ts +14 -14
- package/dist/types/routes/management-api/failed-events.d.ts +1 -1
- package/dist/types/routes/management-api/forms.d.ts +119 -119
- package/dist/types/routes/management-api/index.d.ts +190 -190
- package/dist/types/routes/management-api/logs.d.ts +3 -3
- package/dist/types/routes/management-api/migration-sources.d.ts +6 -6
- package/dist/types/routes/management-api/organizations.d.ts +1 -1
- package/dist/types/routes/management-api/prompts.d.ts +4 -4
- package/dist/types/routes/management-api/users.d.ts +2 -2
- package/dist/types/routes/universal-login/common.d.ts +6 -6
- package/dist/types/routes/universal-login/flow-api.d.ts +8 -8
- package/dist/types/routes/universal-login/identifier.d.ts +2 -2
- package/dist/types/routes/universal-login/index.d.ts +2 -2
- package/dist/types/routes/universal-login/u2-index.d.ts +3 -3
- package/dist/types/routes/universal-login/u2-routes.d.ts +3 -3
- package/dist/types/types/Bindings.d.ts +1 -0
- package/dist/types/utils/field-encryption.d.ts +21 -0
- package/package.json +3 -3
|
@@ -0,0 +1,14 @@
|
|
|
1
|
+
import { DataAdapters } from "@authhero/adapter-interfaces";
|
|
2
|
+
/**
|
|
3
|
+
* Wraps a DataAdapters instance so that sensitive credential fields are
|
|
4
|
+
* transparently encrypted on write and decrypted on read. Only the adapters
|
|
5
|
+
* that hold secrets are wrapped; everything else passes through unchanged.
|
|
6
|
+
*
|
|
7
|
+
* Encrypted columns: clients.client_secret, connections.options
|
|
8
|
+
* (client_secret/app_secret/twilio_token/configuration.client_secret),
|
|
9
|
+
* email_providers.credentials, authentication_methods.totp_secret,
|
|
10
|
+
* migration_sources.credentials.client_secret.
|
|
11
|
+
*
|
|
12
|
+
* Private keys (keys.pkcs7, dkim_private_key) are intentionally NOT covered.
|
|
13
|
+
*/
|
|
14
|
+
export declare function createEncryptedDataAdapter(data: DataAdapters, key: CryptoKey): DataAdapters;
|
|
@@ -355,7 +355,7 @@ export declare function passwordlessGrantUser(ctx: Context<{
|
|
|
355
355
|
active?: boolean | undefined;
|
|
356
356
|
} | undefined;
|
|
357
357
|
signup?: {
|
|
358
|
-
status?: "optional" | "
|
|
358
|
+
status?: "optional" | "disabled" | "required" | undefined;
|
|
359
359
|
verification?: {
|
|
360
360
|
active?: boolean | undefined;
|
|
361
361
|
} | undefined;
|
|
@@ -372,7 +372,7 @@ export declare function passwordlessGrantUser(ctx: Context<{
|
|
|
372
372
|
active?: boolean | undefined;
|
|
373
373
|
} | undefined;
|
|
374
374
|
signup?: {
|
|
375
|
-
status?: "optional" | "
|
|
375
|
+
status?: "optional" | "disabled" | "required" | undefined;
|
|
376
376
|
} | undefined;
|
|
377
377
|
validation?: {
|
|
378
378
|
max_length?: number | undefined;
|
|
@@ -389,7 +389,7 @@ export declare function passwordlessGrantUser(ctx: Context<{
|
|
|
389
389
|
active?: boolean | undefined;
|
|
390
390
|
} | undefined;
|
|
391
391
|
signup?: {
|
|
392
|
-
status?: "optional" | "
|
|
392
|
+
status?: "optional" | "disabled" | "required" | undefined;
|
|
393
393
|
} | undefined;
|
|
394
394
|
} | undefined;
|
|
395
395
|
} | undefined;
|
|
@@ -0,0 +1,8 @@
|
|
|
1
|
+
import { Bindings } from "../types";
|
|
2
|
+
/**
|
|
3
|
+
* Resolve the hostname of a tenant's usable custom domain, if one exists.
|
|
4
|
+
*
|
|
5
|
+
* Only domains whose verification has completed ("ready") can serve traffic,
|
|
6
|
+
* so others are ignored. A primary domain wins over a non-primary one.
|
|
7
|
+
*/
|
|
8
|
+
export declare function getTenantCustomDomain(env: Bindings, tenantId: string): Promise<string | undefined>;
|