npm - authhero - Versions diffs - 5.8.0 → 5.9.0 - Mend

authhero 5.8.0 → 5.9.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (386) hide show

package/dist/assets/u/widget/index.esm.js +1 -1
package/dist/authhero.cjs +97 -97
package/dist/authhero.d.ts +17629 -72311
package/dist/authhero.mjs +5613 -5615
package/dist/stats.html +1 -1
package/dist/tsconfig.types.tsbuildinfo +1 -0
package/dist/types/adapters/cache/in-memory.d.ts +52 -0
package/dist/types/adapters/cache/index.d.ts +2 -0
package/dist/types/adapters/index.d.ts +1 -0
package/dist/types/authentication-flows/auth0-migration.d.ts +53 -0
package/dist/types/authentication-flows/authorization-code.d.ts +23 -0
package/dist/types/authentication-flows/client-credentials.d.ts +16 -0
package/dist/types/authentication-flows/common.d.ts +253 -0
package/dist/types/authentication-flows/connection.d.ts +17 -0
package/dist/types/authentication-flows/mfa.d.ts +49 -0
package/dist/types/authentication-flows/passkey-enrollment.d.ts +19 -0
package/dist/types/authentication-flows/password.d.ts +24 -0
package/dist/types/authentication-flows/passwordless.d.ts +571 -0
package/dist/types/authentication-flows/refresh-token-migration.d.ts +17 -0
package/dist/types/authentication-flows/refresh-token.d.ts +15 -0
package/dist/types/authentication-flows/resume.d.ts +22 -0
package/dist/types/authentication-flows/silent.d.ts +25 -0
package/dist/types/authentication-flows/ticket.d.ts +7 -0
package/dist/types/authentication-flows/try-connection.d.ts +33 -0
package/dist/types/authentication-flows/universal.d.ts +19 -0
package/dist/types/build-hash.d.ts +7 -0
package/dist/types/client/client-bundle.d.ts +1 -0
package/dist/types/client/form-handler.d.ts +9 -0
package/dist/types/client/incognito-handler.d.ts +5 -0
package/dist/types/client/index.d.ts +1 -0
package/dist/types/client/input-otp.d.ts +12 -0
package/dist/types/client/password-toggle.d.ts +10 -0
package/dist/types/client/user-agent-detector.d.ts +22 -0
package/dist/types/components/AccountChangeEmailPage.d.ts +14 -0
package/dist/types/components/AccountForm.d.ts +17 -0
package/dist/types/components/AccountPage.d.ts +15 -0
package/dist/types/components/AppLogo.d.ts +8 -0
package/dist/types/components/AuthLayout.d.ts +18 -0
package/dist/types/components/Button.d.ts +12 -0
package/dist/types/components/ChangeEmailForm.d.ts +14 -0
package/dist/types/components/ChangeEmailPage.d.ts +15 -0
package/dist/types/components/ContinueForm.d.ts +13 -0
package/dist/types/components/EmailValidatedForm.d.ts +12 -0
package/dist/types/components/EmailValidatedPage.d.ts +11 -0
package/dist/types/components/EnterCodeForm.d.ts +13 -0
package/dist/types/components/EnterCodePage.d.ts +14 -0
package/dist/types/components/EnterPasswordForm.d.ts +14 -0
package/dist/types/components/EnterPasswordPage.d.ts +13 -0
package/dist/types/components/ErrorMessage.d.ts +6 -0
package/dist/types/components/Footer.d.ts +9 -0
package/dist/types/components/ForgotPasswordForm.d.ts +14 -0
package/dist/types/components/ForgotPasswordPage.d.ts +13 -0
package/dist/types/components/ForgotPasswordSentPage.d.ts +11 -0
package/dist/types/components/Form.d.ts +6 -0
package/dist/types/components/FormNodePage.d.ts +16 -0
package/dist/types/components/GoBack.d.ts +5 -0
package/dist/types/components/GoogleLogo.d.ts +4 -0
package/dist/types/components/Icon.d.ts +8 -0
package/dist/types/components/IconEye.d.ts +8 -0
package/dist/types/components/IconEyeSlash.d.ts +8 -0
package/dist/types/components/IconPen.d.ts +7 -0
package/dist/types/components/IdentifierForm.d.ts +16 -0
package/dist/types/components/IdentifierPage.d.ts +15 -0
package/dist/types/components/ImpersonateForm.d.ts +14 -0
package/dist/types/components/ImpersonationPage.d.ts +13 -0
package/dist/types/components/InvalidSessionPage.d.ts +11 -0
package/dist/types/components/Layout.d.ts +11 -0
package/dist/types/components/LoginForm.d.ts +15 -0
package/dist/types/components/MessagePage.d.ts +13 -0
package/dist/types/components/PasswordInput.d.ts +6 -0
package/dist/types/components/PreSignUpConfirmationPage.d.ts +12 -0
package/dist/types/components/PreSignUpPage.d.ts +12 -0
package/dist/types/components/ResetPasswordForm.d.ts +14 -0
package/dist/types/components/ResetPasswordPage.d.ts +12 -0
package/dist/types/components/SignUpForm.d.ts +15 -0
package/dist/types/components/SignUpPage.d.ts +14 -0
package/dist/types/components/SocialButton.d.ts +10 -0
package/dist/types/components/Spinner.d.ts +6 -0
package/dist/types/components/Trans.d.ts +8 -0
package/dist/types/components/UnverifiedEmailPage.d.ts +11 -0
package/dist/types/components/UserNotFoundPage.d.ts +12 -0
package/dist/types/components/VippsLogo.d.ts +4 -0
package/dist/types/components/index.d.ts +34 -0
package/dist/types/components/stories/AccountForm.stories.d.ts +13 -0
package/dist/types/components/stories/AuthLayout.stories.d.ts +27 -0
package/dist/types/components/stories/ChangeEmailForm.stories.d.ts +11 -0
package/dist/types/components/stories/ContinueForm.stories.d.ts +10 -0
package/dist/types/components/stories/EnterCodeForm.stories.d.ts +9 -0
package/dist/types/components/stories/EnterPasswordForm.stories.d.ts +22 -0
package/dist/types/components/stories/IdentifierForm.stories.d.ts +42 -0
package/dist/types/components/stories/IdentifierPage.stories.d.ts +33 -0
package/dist/types/components/stories/ImpersonateForm.stories.d.ts +11 -0
package/dist/types/components/stories/LoginForm.stories.d.ts +12 -0
package/dist/types/components/ui/button.d.ts +12 -0
package/dist/types/components/ui/card.d.ts +30 -0
package/dist/types/components/ui/input-otp.d.ts +31 -0
package/dist/types/components/ui/input.d.ts +15 -0
package/dist/types/components/ui/label.d.ts +9 -0
package/dist/types/constants/defaultBranding.d.ts +2 -0
package/dist/types/constants/defaultTheme.d.ts +2 -0
package/dist/types/constants/index.d.ts +2 -0
package/dist/types/constants.d.ts +15 -0
package/dist/types/email-services/index.d.ts +3 -0
package/dist/types/email-services/mailgun.d.ts +18 -0
package/dist/types/email-services/postmark.d.ts +14 -0
package/dist/types/email-services/resend.d.ts +14 -0
package/dist/types/emails/defaults/Layout.d.ts +12 -0
package/dist/types/emails/defaults/PrimaryButton.d.ts +11 -0
package/dist/types/emails/defaults/ResetEmail.d.ts +1 -0
package/dist/types/emails/defaults/ResetEmailByCode.d.ts +1 -0
package/dist/types/emails/defaults/UserInvitation.d.ts +1 -0
package/dist/types/emails/defaults/VerifyEmail.d.ts +1 -0
package/dist/types/emails/defaults/VerifyEmailByCode.d.ts +1 -0
package/dist/types/emails/defaults/WelcomeEmail.d.ts +1 -0
package/dist/types/emails/defaults/compiled.d.ts +2 -0
package/dist/types/emails/defaults/index.d.ts +6 -0
package/dist/types/emails/defaults/subjects.d.ts +2 -0
package/dist/types/emails/index.d.ts +70 -0
package/dist/types/emails/render.d.ts +41 -0
package/dist/types/errors/is-unique-constraint-error.d.ts +8 -0
package/dist/types/errors/json-http-exception.d.ts +5 -0
package/dist/types/errors/redirect-exception.d.ts +6 -0
package/dist/types/generated/locale-types.d.ts +690 -0
package/dist/types/helpers/cache-wrapper.d.ts +23 -0
package/dist/types/helpers/client-assertion.d.ts +49 -0
package/dist/types/helpers/client-keys.d.ts +27 -0
package/dist/types/helpers/client.d.ts +496 -0
package/dist/types/helpers/dcr/constraint-enforcement.d.ts +24 -0
package/dist/types/helpers/dcr/metadata-mapping.d.ts +83 -0
package/dist/types/helpers/dcr/mint-iat.d.ts +14 -0
package/dist/types/helpers/dcr/mint-token.d.ts +7 -0
package/dist/types/helpers/dcr/validate-connect-origin.d.ts +20 -0
package/dist/types/helpers/dcr/verify-token.d.ts +8 -0
package/dist/types/helpers/default-destinations.d.ts +55 -0
package/dist/types/helpers/entity-hooks-wrapper.d.ts +43 -0
package/dist/types/helpers/hook-events.d.ts +20 -0
package/dist/types/helpers/hook-user-payload.d.ts +8 -0
package/dist/types/helpers/hrd.d.ts +3 -0
package/dist/types/helpers/logging.d.ts +65 -0
package/dist/types/helpers/outbox-cleanup.d.ts +10 -0
package/dist/types/helpers/outbox-destinations/index.d.ts +2 -0
package/dist/types/helpers/outbox-destinations/log-streams.d.ts +66 -0
package/dist/types/helpers/outbox-destinations/logs.d.ts +20 -0
package/dist/types/helpers/outbox-destinations/registration-finalizer.d.ts +29 -0
package/dist/types/helpers/outbox-destinations/webhooks.d.ts +57 -0
package/dist/types/helpers/outbox-relay.d.ts +34 -0
package/dist/types/helpers/password-policy.d.ts +54 -0
package/dist/types/helpers/request-object.d.ts +40 -0
package/dist/types/helpers/run-outbox-relay.d.ts +58 -0
package/dist/types/helpers/saml.d.ts +1 -0
package/dist/types/helpers/scope-claims.d.ts +4 -0
package/dist/types/helpers/scopes-permissions.d.ts +38 -0
package/dist/types/helpers/server-timing.d.ts +12 -0
package/dist/types/helpers/service-token.d.ts +54 -0
package/dist/types/helpers/set-tenant-id.d.ts +15 -0
package/dist/types/helpers/signing-keys.d.ts +16 -0
package/dist/types/helpers/try-connection-client.d.ts +15 -0
package/dist/types/helpers/user-linking.d.ts +14 -0
package/dist/types/helpers/user-session-cleanup.d.ts +21 -0
package/dist/types/helpers/users.d.ts +46 -0
package/dist/types/helpers/wait-until.d.ts +21 -0
package/dist/types/hooks/addDataHooks.d.ts +16 -0
package/dist/types/hooks/code-executor/local.d.ts +13 -0
package/dist/types/hooks/codehooks.d.ts +70 -0
package/dist/types/hooks/formhooks.d.ts +99 -0
package/dist/types/hooks/helpers/token-api.d.ts +17 -0
package/dist/types/hooks/index.d.ts +20 -0
package/dist/types/hooks/link-users.d.ts +29 -0
package/dist/types/hooks/pagehooks.d.ts +16 -0
package/dist/types/hooks/post-user-login.d.ts +29 -0
package/dist/types/hooks/pre-defined/account-linking.d.ts +73 -0
package/dist/types/hooks/pre-defined/ensure-username.d.ts +86 -0
package/dist/types/hooks/pre-defined/index.d.ts +23 -0
package/dist/types/hooks/pre-defined/set-preferred-username.d.ts +26 -0
package/dist/types/hooks/templatehooks.d.ts +29 -0
package/dist/types/hooks/user-deletion.d.ts +14 -0
package/dist/types/hooks/user-registration.d.ts +88 -0
package/dist/types/hooks/user-update.d.ts +16 -0
package/dist/types/hooks/validate-signup.d.ts +34 -0
package/dist/types/hooks/webhooks.d.ts +35 -0
package/dist/types/i18n/index.d.ts +77 -0
package/dist/types/index.d.ts +15791 -0
package/dist/types/locales/index.d.ts +9 -0
package/dist/types/middlewares/apply-config.d.ts +14 -0
package/dist/types/middlewares/authentication.d.ts +26 -0
package/dist/types/middlewares/client-info.d.ts +8 -0
package/dist/types/middlewares/index.d.ts +6 -0
package/dist/types/middlewares/outbox.d.ts +24 -0
package/dist/types/middlewares/register-component.d.ts +10 -0
package/dist/types/middlewares/tenant.d.ts +12 -0
package/dist/types/migration-providers/auth0.d.ts +3 -0
package/dist/types/migration-providers/index.d.ts +5 -0
package/dist/types/migration-providers/types.d.ts +32 -0
package/dist/types/routes/auth-api/account.d.ts +36 -0
package/dist/types/routes/auth-api/authenticate.d.ts +31 -0
package/dist/types/routes/auth-api/authorize.d.ts +239 -0
package/dist/types/routes/auth-api/callback.d.ts +234 -0
package/dist/types/routes/auth-api/connect-start.d.ts +52 -0
package/dist/types/routes/auth-api/dbconnections.d.ts +43 -0
package/dist/types/routes/auth-api/index.d.ts +1580 -0
package/dist/types/routes/auth-api/logout.d.ts +20 -0
package/dist/types/routes/auth-api/oidc-logout.d.ts +52 -0
package/dist/types/routes/auth-api/passwordless.d.ts +154 -0
package/dist/types/routes/auth-api/register/index.d.ts +159 -0
package/dist/types/routes/auth-api/register/shared.d.ts +30 -0
package/dist/types/routes/auth-api/revoke.d.ts +73 -0
package/dist/types/routes/auth-api/token.d.ts +412 -0
package/dist/types/routes/auth-api/userinfo.d.ts +84 -0
package/dist/types/routes/auth-api/well-known.d.ts +74 -0
package/dist/types/routes/management-api/action-executions.d.ts +90 -0
package/dist/types/routes/management-api/action-triggers.d.ts +118 -0
package/dist/types/routes/management-api/actions.d.ts +673 -0
package/dist/types/routes/management-api/analytics.d.ts +18 -0
package/dist/types/routes/management-api/attack-protection.d.ts +189 -0
package/dist/types/routes/management-api/authentication-methods.d.ts +115 -0
package/dist/types/routes/management-api/branding.d.ts +402 -0
package/dist/types/routes/management-api/client-grants.d.ts +183 -0
package/dist/types/routes/management-api/client-registration-tokens.d.ts +35 -0
package/dist/types/routes/management-api/clients.d.ts +995 -0
package/dist/types/routes/management-api/connections.d.ts +872 -0
package/dist/types/routes/management-api/custom-domains.d.ts +266 -0
package/dist/types/routes/management-api/email-templates.d.ts +205 -0
package/dist/types/routes/management-api/emails.d.ts +124 -0
package/dist/types/routes/management-api/failed-events.d.ts +146 -0
package/dist/types/routes/management-api/flows.d.ts +438 -0
package/dist/types/routes/management-api/forms.d.ts +4090 -0
package/dist/types/routes/management-api/guardian.d.ts +211 -0
package/dist/types/routes/management-api/hook-code.d.ts +142 -0
package/dist/types/routes/management-api/hooks.d.ts +405 -0
package/dist/types/routes/management-api/index.d.ts +13210 -0
package/dist/types/routes/management-api/keys.d.ts +98 -0
package/dist/types/routes/management-api/log-streams.d.ts +170 -0
package/dist/types/routes/management-api/logs.d.ts +159 -0
package/dist/types/routes/management-api/migration-sources.d.ts +173 -0
package/dist/types/routes/management-api/organizations.d.ts +896 -0
package/dist/types/routes/management-api/prompts.d.ts +150 -0
package/dist/types/routes/management-api/refresh_tokens.d.ts +66 -0
package/dist/types/routes/management-api/resource-servers.d.ts +321 -0
package/dist/types/routes/management-api/roles.d.ts +260 -0
package/dist/types/routes/management-api/sessions.d.ts +78 -0
package/dist/types/routes/management-api/stats.d.ts +44 -0
package/dist/types/routes/management-api/tenants.d.ts +546 -0
package/dist/types/routes/management-api/themes.d.ts +265 -0
package/dist/types/routes/management-api/tickets.d.ts +75 -0
package/dist/types/routes/management-api/users-by-email.d.ts +23 -0
package/dist/types/routes/management-api/users.d.ts +1085 -0
package/dist/types/routes/saml/index.d.ts +64 -0
package/dist/types/routes/saml/samlp.d.ts +64 -0
package/dist/types/routes/setup.d.ts +6 -0
package/dist/types/routes/universal-login/account-change-email-confirmation.d.ts +30 -0
package/dist/types/routes/universal-login/account-change-email-verify.d.ts +66 -0
package/dist/types/routes/universal-login/account-change-email.d.ts +58 -0
package/dist/types/routes/universal-login/account.d.ts +64 -0
package/dist/types/routes/universal-login/common.d.ts +1482 -0
package/dist/types/routes/universal-login/continue.d.ts +37 -0
package/dist/types/routes/universal-login/enter-password.d.ts +49 -0
package/dist/types/routes/universal-login/error-handler.d.ts +14 -0
package/dist/types/routes/universal-login/error-page.d.ts +32 -0
package/dist/types/routes/universal-login/error.d.ts +20 -0
package/dist/types/routes/universal-login/flow-api.d.ts +381 -0
package/dist/types/routes/universal-login/flow-widget.d.ts +23 -0
package/dist/types/routes/universal-login/forgot-password.d.ts +32 -0
package/dist/types/routes/universal-login/form-node.d.ts +74 -0
package/dist/types/routes/universal-login/identifier.d.ts +55 -0
package/dist/types/routes/universal-login/impersonate.d.ts +71 -0
package/dist/types/routes/universal-login/index.d.ts +748 -0
package/dist/types/routes/universal-login/info.d.ts +20 -0
package/dist/types/routes/universal-login/invalid-session.d.ts +19 -0
package/dist/types/routes/universal-login/otp-challenge.d.ts +54 -0
package/dist/types/routes/universal-login/pre-signup-sent.d.ts +19 -0
package/dist/types/routes/universal-login/pre-signup.d.ts +32 -0
package/dist/types/routes/universal-login/reset-password.d.ts +39 -0
package/dist/types/routes/universal-login/sanitization-utils.d.ts +55 -0
package/dist/types/routes/universal-login/screen-api.d.ts +20 -0
package/dist/types/routes/universal-login/screens/accept-invitation.d.ts +13 -0
package/dist/types/routes/universal-login/screens/account-delete.d.ts +14 -0
package/dist/types/routes/universal-login/screens/account-helpers.d.ts +13 -0
package/dist/types/routes/universal-login/screens/account-linked.d.ts +14 -0
package/dist/types/routes/universal-login/screens/account-mfa-phone-enrollment.d.ts +10 -0
package/dist/types/routes/universal-login/screens/account-mfa-totp-enrollment.d.ts +10 -0
package/dist/types/routes/universal-login/screens/account-passkeys.d.ts +10 -0
package/dist/types/routes/universal-login/screens/account-profile.d.ts +14 -0
package/dist/types/routes/universal-login/screens/account-security.d.ts +14 -0
package/dist/types/routes/universal-login/screens/account.d.ts +14 -0
package/dist/types/routes/universal-login/screens/connect-consent.d.ts +9 -0
package/dist/types/routes/universal-login/screens/connect-tenant-select.d.ts +13 -0
package/dist/types/routes/universal-login/screens/email-otp-challenge.d.ts +14 -0
package/dist/types/routes/universal-login/screens/enter-password.d.ts +14 -0
package/dist/types/routes/universal-login/screens/forgot-password.d.ts +11 -0
package/dist/types/routes/universal-login/screens/identifier.d.ts +14 -0
package/dist/types/routes/universal-login/screens/impersonate.d.ts +15 -0
package/dist/types/routes/universal-login/screens/index.d.ts +29 -0
package/dist/types/routes/universal-login/screens/login-passwordless-identifier.d.ts +17 -0
package/dist/types/routes/universal-login/screens/login.d.ts +17 -0
package/dist/types/routes/universal-login/screens/magic-link-sent.d.ts +11 -0
package/dist/types/routes/universal-login/screens/mfa-login-options.d.ts +21 -0
package/dist/types/routes/universal-login/screens/mfa-phone-challenge.d.ts +14 -0
package/dist/types/routes/universal-login/screens/mfa-phone-enrollment.d.ts +14 -0
package/dist/types/routes/universal-login/screens/mfa-totp-challenge.d.ts +14 -0
package/dist/types/routes/universal-login/screens/mfa-totp-enrollment.d.ts +17 -0
package/dist/types/routes/universal-login/screens/passkey-challenge.d.ts +16 -0
package/dist/types/routes/universal-login/screens/passkey-enrollment-nudge.d.ts +17 -0
package/dist/types/routes/universal-login/screens/passkey-enrollment.d.ts +11 -0
package/dist/types/routes/universal-login/screens/passkey-utils.d.ts +100 -0
package/dist/types/routes/universal-login/screens/registry.d.ts +28 -0
package/dist/types/routes/universal-login/screens/reset-password-code.d.ts +18 -0
package/dist/types/routes/universal-login/screens/reset-password.d.ts +36 -0
package/dist/types/routes/universal-login/screens/signup.d.ts +14 -0
package/dist/types/routes/universal-login/screens/sms-otp-challenge.d.ts +14 -0
package/dist/types/routes/universal-login/screens/try-connection-result.d.ts +12 -0
package/dist/types/routes/universal-login/screens/types.d.ts +167 -0
package/dist/types/routes/universal-login/signup.d.ts +54 -0
package/dist/types/routes/universal-login/u2-form-node.d.ts +93 -0
package/dist/types/routes/universal-login/u2-index.d.ts +173 -0
package/dist/types/routes/universal-login/u2-routes.d.ts +98 -0
package/dist/types/routes/universal-login/u2-widget-page.d.ts +187 -0
package/dist/types/routes/universal-login/universal-login-template.d.ts +55 -0
package/dist/types/routes/universal-login/validate-email.d.ts +20 -0
package/dist/types/routes/universal-login/widget-routes.d.ts +81 -0
package/dist/types/seed.d.ts +86 -0
package/dist/types/state-machines/index.d.ts +1 -0
package/dist/types/state-machines/login-session.d.ts +173 -0
package/dist/types/storybook-utils/HonoJSXWrapper.d.ts +43 -0
package/dist/types/strategies/apple.d.ts +24 -0
package/dist/types/strategies/facebook.d.ts +20 -0
package/dist/types/strategies/github.d.ts +23 -0
package/dist/types/strategies/google-oauth2.d.ts +43 -0
package/dist/types/strategies/index.d.ts +69 -0
package/dist/types/strategies/internal-oauth2.d.ts +17 -0
package/dist/types/strategies/microsoft.d.ts +24 -0
package/dist/types/strategies/oauth2.d.ts +38 -0
package/dist/types/strategies/oidc.d.ts +38 -0
package/dist/types/strategies/saml.d.ts +9 -0
package/dist/types/strategies/vipps.d.ts +16 -0
package/dist/types/styles/index.d.ts +9 -0
package/dist/types/styles/tailwind.d.ts +1 -0
package/dist/types/types/Auth0Client.d.ts +9 -0
package/dist/types/types/AuthError.d.ts +14 -0
package/dist/types/types/AuthHeroConfig.d.ts +415 -0
package/dist/types/types/Bindings.d.ts +51 -0
package/dist/types/types/GrantFlowResult.d.ts +22 -0
package/dist/types/types/Hooks.d.ts +240 -0
package/dist/types/types/IdToken.d.ts +30 -0
package/dist/types/types/UserInfo.d.ts +8 -0
package/dist/types/types/Variables.d.ts +33 -0
package/dist/types/types/auth0/Query.d.ts +12 -0
package/dist/types/types/auth0/Totals.d.ts +11 -0
package/dist/types/types/auth0/UserResponse.d.ts +46 -0
package/dist/types/types/auth0/index.d.ts +3 -0
package/dist/types/types/index.d.ts +6 -0
package/dist/types/types/saml.d.ts +1 -0
package/dist/types/utils/append-log.d.ts +10 -0
package/dist/types/utils/auth-header.d.ts +18 -0
package/dist/types/utils/auth0-upstream.d.ts +60 -0
package/dist/types/utils/authIframe.d.ts +11 -0
package/dist/types/utils/client-info.d.ts +47 -0
package/dist/types/utils/color.d.ts +23 -0
package/dist/types/utils/connections.d.ts +11 -0
package/dist/types/utils/cookies.d.ts +28 -0
package/dist/types/utils/crypto.d.ts +2 -0
package/dist/types/utils/deep-merge.d.ts +6 -0
package/dist/types/utils/encryption.d.ts +22 -0
package/dist/types/utils/entity-id.d.ts +13 -0
package/dist/types/utils/fetchAll.d.ts +60 -0
package/dist/types/utils/form-post.d.ts +1 -0
package/dist/types/utils/id-token-hash.d.ts +1 -0
package/dist/types/utils/incognito.d.ts +11 -0
package/dist/types/utils/instance-to-json.d.ts +8 -0
package/dist/types/utils/ip.d.ts +8 -0
package/dist/types/utils/is-valid-redirect-url.d.ts +4 -0
package/dist/types/utils/jwk-alg.d.ts +20 -0
package/dist/types/utils/jwks.d.ts +41 -0
package/dist/types/utils/jwt.d.ts +15 -0
package/dist/types/utils/organization-id.d.ts +2 -0
package/dist/types/utils/otp.d.ts +1 -0
package/dist/types/utils/refresh-token-format.d.ts +20 -0
package/dist/types/utils/safe-compare.d.ts +1 -0
package/dist/types/utils/sort.d.ts +4 -0
package/dist/types/utils/ssrf-fetch.d.ts +44 -0
package/dist/types/utils/ulid.d.ts +1 -0
package/dist/types/utils/url.d.ts +16 -0
package/dist/types/utils/user-id.d.ts +2 -0
package/dist/types/utils/username-password-provider.d.ts +67 -0
package/dist/types/utils/username.d.ts +11 -0
package/dist/types/variables.d.ts +4 -0
package/package.json +11 -11

package/dist/types/authentication-flows/passwordless.d.ts ADDED Viewed

@@ -0,0 +1,571 @@
+import { Context } from "hono";
+import { z } from "@hono/zod-openapi";
+import { Bindings, Variables } from "../types";
+export declare const passwordlessGrantParamsSchema: z.ZodObject<{
+    client_id: z.ZodString;
+    username: z.ZodPipe<z.ZodString, z.ZodTransform<string, string>>;
+    otp: z.ZodString;
+    authParams: z.ZodOptional<z.ZodObject<{
+        client_id: z.ZodString;
+        act_as: z.ZodOptional<z.ZodString>;
+        response_type: z.ZodOptional<z.ZodEnum<typeof import("@authhero/adapter-interfaces").AuthorizationResponseType>>;
+        response_mode: z.ZodOptional<z.ZodEnum<typeof import("@authhero/adapter-interfaces").AuthorizationResponseMode>>;
+        redirect_uri: z.ZodOptional<z.ZodString>;
+        audience: z.ZodOptional<z.ZodString>;
+        organization: z.ZodOptional<z.ZodString>;
+        state: z.ZodOptional<z.ZodString>;
+        nonce: z.ZodOptional<z.ZodString>;
+        scope: z.ZodOptional<z.ZodString>;
+        prompt: z.ZodOptional<z.ZodString>;
+        code_challenge_method: z.ZodOptional<z.ZodEnum<typeof import("@authhero/adapter-interfaces").CodeChallengeMethod>>;
+        code_challenge: z.ZodOptional<z.ZodString>;
+        username: z.ZodOptional<z.ZodString>;
+        ui_locales: z.ZodOptional<z.ZodString>;
+        max_age: z.ZodOptional<z.ZodNumber>;
+        acr_values: z.ZodOptional<z.ZodString>;
+        claims: z.ZodOptional<z.ZodObject<{
+            userinfo: z.ZodOptional<z.ZodRecord<z.ZodString, z.ZodNullable<z.ZodUnion<readonly [z.ZodNull, z.ZodObject<{
+                essential: z.ZodOptional<z.ZodBoolean>;
+                value: z.ZodOptional<z.ZodUnknown>;
+                values: z.ZodOptional<z.ZodArray<z.ZodUnknown>>;
+            }, z.core.$strip>]>>>>;
+            id_token: z.ZodOptional<z.ZodRecord<z.ZodString, z.ZodNullable<z.ZodUnion<readonly [z.ZodNull, z.ZodObject<{
+                essential: z.ZodOptional<z.ZodBoolean>;
+                value: z.ZodOptional<z.ZodUnknown>;
+                values: z.ZodOptional<z.ZodArray<z.ZodUnknown>>;
+            }, z.core.$strip>]>>>>;
+        }, z.core.$strip>>;
+        vendor_id: z.ZodOptional<z.ZodString>;
+    }, z.core.$strip>>;
+    enforceIpCheck: z.ZodDefault<z.ZodOptional<z.ZodBoolean>>;
+}, z.core.$strip>;
+export declare function passwordlessGrantUser(ctx: Context<{
+    Bindings: Bindings;
+    Variables: Variables;
+}>, { client_id, username, otp, authParams, enforceIpCheck, }: z.input<typeof passwordlessGrantParamsSchema>): Promise<{
+    user: {
+        connection: string;
+        email_verified: boolean;
+        created_at: string;
+        updated_at: string;
+        user_id: string;
+        provider: string;
+        is_social: boolean;
+        login_count: number;
+        name?: string | undefined;
+        username?: string | undefined;
+        given_name?: string | undefined;
+        phone_number?: string | undefined;
+        phone_verified?: boolean | undefined;
+        family_name?: string | undefined;
+        profileData?: string | undefined;
+        address?: {
+            formatted?: string | undefined;
+            street_address?: string | undefined;
+            locality?: string | undefined;
+            region?: string | undefined;
+            postal_code?: string | undefined;
+            country?: string | undefined;
+        } | undefined;
+        nickname?: string | undefined;
+        picture?: string | undefined;
+        locale?: string | undefined;
+        linked_to?: string | undefined;
+        app_metadata?: any;
+        user_metadata?: any;
+        middle_name?: string | undefined;
+        preferred_username?: string | undefined;
+        profile?: string | undefined;
+        website?: string | undefined;
+        gender?: string | undefined;
+        birthdate?: string | undefined;
+        zoneinfo?: string | undefined;
+        verify_email?: boolean | undefined;
+        last_ip?: string | undefined;
+        last_login?: string | undefined;
+        registration_completed_at?: string | undefined;
+        email?: string | undefined;
+        identities?: {
+            connection: string;
+            user_id: string;
+            provider: string;
+            isSocial: boolean;
+            email?: string | undefined;
+            email_verified?: boolean | undefined;
+            phone_number?: string | undefined;
+            phone_verified?: boolean | undefined;
+            username?: string | undefined;
+            access_token?: string | undefined;
+            access_token_secret?: string | undefined;
+            refresh_token?: string | undefined;
+            profileData?: {
+                [x: string]: any;
+                email?: string | undefined;
+                email_verified?: boolean | undefined;
+                name?: string | undefined;
+                username?: string | undefined;
+                given_name?: string | undefined;
+                phone_number?: string | undefined;
+                phone_verified?: boolean | undefined;
+                family_name?: string | undefined;
+            } | undefined;
+        }[] | undefined;
+    };
+    client: {
+        created_at: string;
+        updated_at: string;
+        name: string;
+        global: boolean;
+        is_first_party: boolean;
+        oidc_conformant: boolean;
+        auth0_conformant: boolean;
+        sso: boolean;
+        sso_disabled: boolean;
+        cross_origin_authentication: boolean;
+        custom_login_page_on: boolean;
+        require_pushed_authorization_requests: boolean;
+        require_proof_of_possession: boolean;
+        client_id: string;
+        tenant: {
+            created_at: string;
+            updated_at: string;
+            audience: string;
+            friendly_name: string;
+            sender_email: string;
+            sender_name: string;
+            id: string;
+            picture_url?: string | undefined;
+            support_email?: string | undefined;
+            support_url?: string | undefined;
+            session_lifetime?: number | undefined;
+            idle_session_lifetime?: number | undefined;
+            ephemeral_session_lifetime?: number | undefined;
+            idle_ephemeral_session_lifetime?: number | undefined;
+            session_cookie?: {
+                mode?: "persistent" | "non-persistent" | undefined;
+            } | undefined;
+            allowed_logout_urls?: string[] | undefined;
+            default_redirection_uri?: string | undefined;
+            default_client_id?: string | undefined;
+            enabled_locales?: string[] | undefined;
+            default_directory?: string | undefined;
+            error_page?: {
+                html?: string | undefined;
+                show_log_link?: boolean | undefined;
+                url?: string | undefined;
+            } | null | undefined;
+            flags?: {
+                allow_changing_enable_sso?: boolean | undefined;
+                allow_legacy_delegation_grant_types?: boolean | undefined;
+                allow_legacy_ro_grant_types?: boolean | undefined;
+                allow_legacy_tokeninfo_endpoint?: boolean | undefined;
+                change_pwd_flow_v1?: boolean | undefined;
+                custom_domains_provisioning?: boolean | undefined;
+                dashboard_insights_view?: boolean | undefined;
+                dashboard_log_streams_next?: boolean | undefined;
+                disable_clickjack_protection_headers?: boolean | undefined;
+                disable_fields_map_fix?: boolean | undefined;
+                disable_impersonation?: boolean | undefined;
+                disable_management_api_sms_obfuscation?: boolean | undefined;
+                enable_adfs_waad_email_verification?: boolean | undefined;
+                enable_apis_section?: boolean | undefined;
+                enable_client_connections?: boolean | undefined;
+                enable_custom_domain_in_emails?: boolean | undefined;
+                enable_dynamic_client_registration?: boolean | undefined;
+                dcr_require_initial_access_token?: boolean | undefined;
+                dcr_allowed_grant_types?: string[] | undefined;
+                allow_http_return_to?: string[] | undefined;
+                enable_idtoken_api2?: boolean | undefined;
+                enable_legacy_logs_search_v2?: boolean | undefined;
+                enable_legacy_profile?: boolean | undefined;
+                enable_pipeline2?: boolean | undefined;
+                enable_public_signup_user_exists_error?: boolean | undefined;
+                enable_sso?: boolean | undefined;
+                enforce_client_authentication_on_passwordless_start?: boolean | undefined;
+                genai_trial?: boolean | undefined;
+                improved_signup_bot_detection_in_classic?: boolean | undefined;
+                mfa_show_factor_list_on_enrollment?: boolean | undefined;
+                no_disclose_enterprise_connections?: boolean | undefined;
+                remove_alg_from_jwks?: boolean | undefined;
+                revoke_refresh_token_grant?: boolean | undefined;
+                trust_azure_adfs_email_verified_connection_property?: boolean | undefined;
+                use_scope_descriptions_for_consent?: boolean | undefined;
+                inherit_global_permissions_in_organizations?: boolean | undefined;
+            } | undefined;
+            sandbox_version?: string | undefined;
+            legacy_sandbox_version?: string | undefined;
+            sandbox_versions_available?: string[] | undefined;
+            change_password?: {
+                enabled?: boolean | undefined;
+                html?: string | undefined;
+            } | undefined;
+            guardian_mfa_page?: {
+                enabled?: boolean | undefined;
+                html?: string | undefined;
+            } | undefined;
+            device_flow?: {
+                charset?: "base20" | "digits" | undefined;
+                mask?: string | undefined;
+            } | undefined;
+            default_token_quota?: {
+                clients?: {
+                    client_credentials?: Record<string, any> | undefined;
+                } | undefined;
+                organizations?: {
+                    client_credentials?: Record<string, any> | undefined;
+                } | undefined;
+            } | null | undefined;
+            default_audience?: string | undefined;
+            default_organization?: string | undefined;
+            sessions?: {
+                oidc_logout_prompt_enabled?: boolean | undefined;
+            } | undefined;
+            oidc_logout?: {
+                rp_logout_end_session_endpoint_discovery?: boolean | undefined;
+            } | undefined;
+            allow_organization_name_in_authentication_api?: boolean | undefined;
+            customize_mfa_in_postlogin_action?: boolean | undefined;
+            acr_values_supported?: string[] | undefined;
+            mtls?: {
+                enable_endpoint_aliases?: boolean | undefined;
+            } | null | undefined;
+            pushed_authorization_requests_supported?: boolean | undefined;
+            authorization_response_iss_parameter_supported?: boolean | undefined;
+            attack_protection?: {
+                breached_password_detection?: {
+                    enabled?: boolean | undefined;
+                    shields?: string[] | undefined;
+                    admin_notification_frequency?: string[] | undefined;
+                    method?: string | undefined;
+                    stage?: {
+                        "pre-user-registration"?: {
+                            shields?: string[] | undefined;
+                        } | undefined;
+                        "pre-change-password"?: {
+                            shields?: string[] | undefined;
+                        } | undefined;
+                    } | undefined;
+                } | undefined;
+                brute_force_protection?: {
+                    enabled?: boolean | undefined;
+                    shields?: string[] | undefined;
+                    allowlist?: string[] | undefined;
+                    mode?: string | undefined;
+                    max_attempts?: number | undefined;
+                } | undefined;
+                suspicious_ip_throttling?: {
+                    enabled?: boolean | undefined;
+                    shields?: string[] | undefined;
+                    allowlist?: string[] | undefined;
+                    stage?: {
+                        "pre-login"?: {
+                            max_attempts?: number | undefined;
+                            rate?: number | undefined;
+                        } | undefined;
+                        "pre-user-registration"?: {
+                            max_attempts?: number | undefined;
+                            rate?: number | undefined;
+                        } | undefined;
+                    } | undefined;
+                } | undefined;
+            } | undefined;
+            mfa?: {
+                policy?: "never" | "always" | undefined;
+                factors?: {
+                    sms: boolean;
+                    otp: boolean;
+                    email: boolean;
+                    push_notification: boolean;
+                    webauthn_roaming: boolean;
+                    webauthn_platform: boolean;
+                    recovery_code: boolean;
+                    duo: boolean;
+                } | undefined;
+                sms_provider?: {
+                    provider?: "twilio" | "vonage" | "aws_sns" | "phone_message_hook" | undefined;
+                } | undefined;
+                twilio?: {
+                    sid?: string | undefined;
+                    auth_token?: string | undefined;
+                    from?: string | undefined;
+                    messaging_service_sid?: string | undefined;
+                } | undefined;
+                phone_message?: {
+                    message?: string | undefined;
+                } | undefined;
+            } | undefined;
+            is_control_plane?: boolean | undefined;
+        };
+        connections: {
+            created_at: string;
+            updated_at: string;
+            name: string;
+            strategy: string;
+            options: {
+                kid?: string | undefined;
+                team_id?: string | undefined;
+                realms?: string | undefined;
+                authentication_method?: string | undefined;
+                client_id?: string | undefined;
+                client_secret?: string | undefined;
+                app_secret?: string | undefined;
+                scope?: string | undefined;
+                authorization_endpoint?: string | undefined;
+                token_endpoint?: string | undefined;
+                userinfo_endpoint?: string | undefined;
+                jwks_uri?: string | undefined;
+                discovery_url?: string | undefined;
+                issuer?: string | undefined;
+                token_endpoint_auth_method?: "client_secret_post" | "client_secret_basic" | undefined;
+                provider?: string | undefined;
+                from?: string | undefined;
+                twilio_sid?: string | undefined;
+                twilio_token?: string | undefined;
+                icon_url?: string | undefined;
+                domain_aliases?: string[] | undefined;
+                callback_url?: string | undefined;
+                passwordPolicy?: "none" | "low" | "fair" | "good" | "excellent" | undefined;
+                password_complexity_options?: {
+                    min_length?: number | undefined;
+                } | undefined;
+                password_history?: {
+                    enable?: boolean | undefined;
+                    size?: number | undefined;
+                } | undefined;
+                password_no_personal_info?: {
+                    enable?: boolean | undefined;
+                } | undefined;
+                password_dictionary?: {
+                    enable?: boolean | undefined;
+                    dictionary?: string[] | undefined;
+                } | undefined;
+                disable_signup?: boolean | undefined;
+                brute_force_protection?: boolean | undefined;
+                import_mode?: boolean | undefined;
+                configuration?: {
+                    token_endpoint?: string | undefined;
+                    userinfo_endpoint?: string | undefined;
+                    client_id?: string | undefined;
+                    client_secret?: string | undefined;
+                    realm?: string | undefined;
+                } | undefined;
+                attributes?: {
+                    email?: {
+                        identifier?: {
+                            active?: boolean | undefined;
+                        } | undefined;
+                        signup?: {
+                            status?: "optional" | "required" | "disabled" | undefined;
+                            verification?: {
+                                active?: boolean | undefined;
+                            } | undefined;
+                        } | undefined;
+                        validation?: {
+                            allowed?: boolean | undefined;
+                        } | undefined;
+                        unique?: boolean | undefined;
+                        profile_required?: boolean | undefined;
+                        verification_method?: "code" | "link" | undefined;
+                    } | undefined;
+                    username?: {
+                        identifier?: {
+                            active?: boolean | undefined;
+                        } | undefined;
+                        signup?: {
+                            status?: "optional" | "required" | "disabled" | undefined;
+                        } | undefined;
+                        validation?: {
+                            max_length?: number | undefined;
+                            min_length?: number | undefined;
+                            allowed_types?: {
+                                email?: boolean | undefined;
+                                phone_number?: boolean | undefined;
+                            } | undefined;
+                        } | undefined;
+                        profile_required?: boolean | undefined;
+                    } | undefined;
+                    phone_number?: {
+                        identifier?: {
+                            active?: boolean | undefined;
+                        } | undefined;
+                        signup?: {
+                            status?: "optional" | "required" | "disabled" | undefined;
+                        } | undefined;
+                    } | undefined;
+                } | undefined;
+                authentication_methods?: {
+                    password?: {
+                        enabled?: boolean | undefined;
+                    } | undefined;
+                    passkey?: {
+                        enabled?: boolean | undefined;
+                    } | undefined;
+                } | undefined;
+                passkey_options?: {
+                    challenge_ui?: "both" | "autofill" | "button" | undefined;
+                    local_enrollment_enabled?: boolean | undefined;
+                    progressive_enrollment_enabled?: boolean | undefined;
+                } | undefined;
+                requires_username?: boolean | undefined;
+                validation?: {
+                    username?: {
+                        min?: number | undefined;
+                        max?: number | undefined;
+                    } | undefined;
+                } | undefined;
+                set_user_root_attributes?: "on_each_login" | "on_first_login" | "never_on_login" | undefined;
+            };
+            id?: string | undefined;
+            display_name?: string | undefined;
+            enabled_clients?: string[] | undefined;
+            response_type?: import("@authhero/adapter-interfaces").AuthorizationResponseType | undefined;
+            response_mode?: import("@authhero/adapter-interfaces").AuthorizationResponseMode | undefined;
+            is_domain_connection?: boolean | undefined;
+            show_as_button?: boolean | undefined;
+            metadata?: Record<string, any> | undefined;
+            is_system?: boolean | undefined;
+        }[];
+        description?: string | undefined;
+        client_secret?: string | undefined;
+        app_type?: "native" | "spa" | "regular_web" | "non_interactive" | "resource_server" | "express_configuration" | "rms" | "box" | "cloudbees" | "concur" | "dropbox" | "mscrm" | "echosign" | "egnyte" | "newrelic" | "office365" | "salesforce" | "sentry" | "sharepoint" | "slack" | "springcm" | "zendesk" | "zoom" | "sso_integration" | "oag" | undefined;
+        logo_uri?: string | undefined;
+        callbacks?: string[] | undefined;
+        allowed_origins?: string[] | undefined;
+        web_origins?: string[] | undefined;
+        client_aliases?: string[] | undefined;
+        allowed_clients?: string[] | undefined;
+        allowed_logout_urls?: string[] | undefined;
+        session_transfer?: Record<string, any> | undefined;
+        oidc_logout?: Record<string, any> | undefined;
+        grant_types?: string[] | undefined;
+        jwt_configuration?: Record<string, any> | undefined;
+        signing_keys?: Record<string, any>[] | undefined;
+        encryption_key?: Record<string, any> | undefined;
+        cross_origin_loc?: string | undefined;
+        custom_login_page?: string | undefined;
+        custom_login_page_preview?: string | undefined;
+        form_template?: string | undefined;
+        addons?: Record<string, any> | undefined;
+        token_endpoint_auth_method?: "none" | "client_secret_post" | "client_secret_basic" | "client_secret_jwt" | "private_key_jwt" | undefined;
+        client_metadata?: Record<string, string> | undefined;
+        hide_sign_up_disabled_error?: boolean | undefined;
+        mobile?: Record<string, any> | undefined;
+        initiate_login_uri?: string | undefined;
+        native_social_login?: Record<string, any> | undefined;
+        refresh_token?: {
+            rotation_type?: "rotating" | "non-rotating" | undefined;
+            leeway?: number | undefined;
+            expiration_type?: "expiring" | "non-expiring" | undefined;
+            token_lifetime?: number | undefined;
+            infinite_token_lifetime?: boolean | undefined;
+            idle_token_lifetime?: number | undefined;
+            infinite_idle_token_lifetime?: boolean | undefined;
+        } | undefined;
+        default_organization?: Record<string, any> | undefined;
+        organization_usage?: "deny" | "allow" | "require" | undefined;
+        organization_require_behavior?: "no_prompt" | "pre_login_prompt" | "post_login_prompt" | undefined;
+        client_authentication_methods?: Record<string, any> | undefined;
+        signed_request_object?: Record<string, any> | undefined;
+        compliance_level?: "none" | "fapi1_adv_pkj_par" | "fapi1_adv_mtls_par" | "fapi2_sp_pkj_mtls" | "fapi2_sp_mtls_mtls" | undefined;
+        par_request_expiry?: number | undefined;
+        token_quota?: Record<string, any> | undefined;
+        owner_user_id?: string | undefined;
+        registration_type?: "manual" | "open_dcr" | "iat_dcr" | undefined;
+        registration_metadata?: Record<string, any> | undefined;
+        user_linking_mode?: "builtin" | "off" | undefined;
+    };
+    loginSession: {
+        csrf_token: string;
+        authParams: {
+            client_id: string;
+            act_as?: string | undefined;
+            response_type?: import("@authhero/adapter-interfaces").AuthorizationResponseType | undefined;
+            response_mode?: import("@authhero/adapter-interfaces").AuthorizationResponseMode | undefined;
+            redirect_uri?: string | undefined;
+            audience?: string | undefined;
+            organization?: string | undefined;
+            state?: string | undefined;
+            nonce?: string | undefined;
+            scope?: string | undefined;
+            prompt?: string | undefined;
+            code_challenge_method?: import("@authhero/adapter-interfaces").CodeChallengeMethod | undefined;
+            code_challenge?: string | undefined;
+            username?: string | undefined;
+            ui_locales?: string | undefined;
+            max_age?: number | undefined;
+            acr_values?: string | undefined;
+            claims?: {
+                userinfo?: Record<string, {
+                    essential?: boolean | undefined;
+                    value?: unknown;
+                    values?: unknown[] | undefined;
+                } | null> | undefined;
+                id_token?: Record<string, {
+                    essential?: boolean | undefined;
+                    value?: unknown;
+                    values?: unknown[] | undefined;
+                } | null> | undefined;
+            } | undefined;
+            vendor_id?: string | undefined;
+        };
+        expires_at: string;
+        state: import("@authhero/adapter-interfaces").LoginSessionState;
+        id: string;
+        created_at: string;
+        updated_at: string;
+        auth0Client?: string | undefined;
+        deleted_at?: string | undefined;
+        ip?: string | undefined;
+        useragent?: string | undefined;
+        session_id?: string | undefined;
+        authorization_url?: string | undefined;
+        state_data?: string | undefined;
+        failure_reason?: string | undefined;
+        user_id?: string | undefined;
+        auth_connection?: string | undefined;
+        auth_strategy?: {
+            strategy: string;
+            strategy_type: string;
+        } | undefined;
+        authenticated_at?: string | undefined;
+    };
+    connectionType: "sms" | "email" | "username";
+    authConnection: "sms" | "email" | "username";
+    session_id: string | undefined;
+    authParams: {
+        client_id: string;
+        act_as?: string | undefined;
+        response_type?: import("@authhero/adapter-interfaces").AuthorizationResponseType | undefined;
+        response_mode?: import("@authhero/adapter-interfaces").AuthorizationResponseMode | undefined;
+        redirect_uri?: string | undefined;
+        audience?: string | undefined;
+        organization?: string | undefined;
+        state?: string | undefined;
+        nonce?: string | undefined;
+        scope?: string | undefined;
+        prompt?: string | undefined;
+        code_challenge_method?: import("@authhero/adapter-interfaces").CodeChallengeMethod | undefined;
+        code_challenge?: string | undefined;
+        username?: string | undefined;
+        ui_locales?: string | undefined;
+        max_age?: number | undefined;
+        acr_values?: string | undefined;
+        claims?: {
+            userinfo?: Record<string, {
+                essential?: boolean | undefined;
+                value?: unknown;
+                values?: unknown[] | undefined;
+            } | null> | undefined;
+            id_token?: Record<string, {
+                essential?: boolean | undefined;
+                value?: unknown;
+                values?: unknown[] | undefined;
+            } | null> | undefined;
+        } | undefined;
+        vendor_id?: string | undefined;
+    };
+}>;
+export declare function passwordlessGrant(ctx: Context<{
+    Bindings: Bindings;
+    Variables: Variables;
+}>, params: z.input<typeof passwordlessGrantParamsSchema>): Promise<Response>;

package/dist/types/authentication-flows/refresh-token-migration.d.ts ADDED Viewed

@@ -0,0 +1,17 @@
+import { Context } from "hono";
+import { Bindings, Variables, GrantFlowUserResult } from "../types";
+import { EnrichedClient } from "../helpers/client";
+/**
+ * Try to redeem an unrecognized refresh token at one of the tenant's
+ * configured migration sources. On success, lazy-create the local user
+ * (matched by upstream `sub`), mint a fresh authhero refresh token, and
+ * return a `GrantFlowUserResult` so the outer dispatcher can issue
+ * access/id/refresh tokens through the normal mint path.
+ *
+ * Returns `null` if no migration source accepts the token, letting the
+ * caller fall through to the standard `invalid_grant` response.
+ */
+export declare function tryUpstreamRemint(ctx: Context<{
+    Bindings: Bindings;
+    Variables: Variables;
+}>, client: EnrichedClient, refreshToken: string): Promise<GrantFlowUserResult | null>;

package/dist/types/authentication-flows/refresh-token.d.ts ADDED Viewed

@@ -0,0 +1,15 @@
+import { Context } from "hono";
+import { Bindings, Variables, GrantFlowUserResult } from "../types";
+import { z } from "@hono/zod-openapi";
+export declare const refreshTokenParamsSchema: z.ZodObject<{
+    grant_type: z.ZodLiteral<"refresh_token">;
+    client_id: z.ZodString;
+    redirect_uri: z.ZodOptional<z.ZodString>;
+    refresh_token: z.ZodString;
+    client_secret: z.ZodOptional<z.ZodString>;
+    organization: z.ZodOptional<z.ZodString>;
+}, z.core.$strip>;
+export declare function refreshTokenGrant(ctx: Context<{
+    Bindings: Bindings;
+    Variables: Variables;
+}>, params: z.infer<typeof refreshTokenParamsSchema>): Promise<GrantFlowUserResult>;

package/dist/types/authentication-flows/resume.d.ts ADDED Viewed

@@ -0,0 +1,22 @@
+import { Context } from "hono";
+import { Bindings, Variables } from "../types";
+/**
+ * Handler for `GET /authorize/resume?state=<login_session_id>`.
+ *
+ * Auth0 exposes an identically-named endpoint (see
+ * `app.pocketlaw.com.har`): after a Universal Login sub-flow submits the
+ * user's credentials, the sub-flow 302s here rather than issuing tokens
+ * inline. This endpoint is the single terminal site that:
+ *
+ *  1. Hops to the original authorization host if the browser is on the
+ *     wrong custom domain (so the session cookie lands under the right
+ *     wildcard).
+ *  2. Dispatches based on the LoginSessionMachine state.
+ *  3. Delegates the actual token/code issuance (and cookie write) to
+ *     `createFrontChannelAuthResponse`, which already handles MFA /
+ *     passkey-nudge / response-mode branching.
+ */
+export declare function resumeLoginSession(ctx: Context<{
+    Bindings: Bindings;
+    Variables: Variables;
+}>, state: string): Promise<Response>;

package/dist/types/authentication-flows/silent.d.ts ADDED Viewed

@@ -0,0 +1,25 @@
+import { Context } from "hono";
+import { AuthorizationResponseType, AuthorizationResponseMode, CodeChallengeMethod, Session } from "@authhero/adapter-interfaces";
+import { EnrichedClient } from "../helpers/client";
+import { Bindings, Variables } from "../types";
+interface SilentAuthParams {
+    ctx: Context<{
+        Bindings: Bindings;
+        Variables: Variables;
+    }>;
+    client: EnrichedClient;
+    session?: Session;
+    redirect_uri: string;
+    state: string;
+    response_type: AuthorizationResponseType;
+    response_mode?: AuthorizationResponseMode;
+    nonce?: string;
+    code_challenge_method?: CodeChallengeMethod;
+    code_challenge?: string;
+    audience?: string;
+    scope?: string;
+    organization?: string;
+    max_age?: number;
+}
+export declare function silentAuth({ ctx, client, session, redirect_uri, state, nonce, code_challenge_method, code_challenge, audience, scope, response_type, response_mode, organization, max_age, }: SilentAuthParams): Promise<Response>;
+export {};

package/dist/types/authentication-flows/ticket.d.ts ADDED Viewed

@@ -0,0 +1,7 @@
+import { AuthParams } from "@authhero/adapter-interfaces";
+import { Context } from "hono";
+import { Bindings, Variables } from "../types";
+export declare function ticketAuth(ctx: Context<{
+    Bindings: Bindings;
+    Variables: Variables;
+}>, tenant_id: string, ticketId: string, authParams: AuthParams, realm: string): Promise<Response>;