npm - weave-typescript - Versions diffs - 0.51.3 → 0.52.0 - Mend

weave-typescript 0.51.3 → 0.52.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (185) hide show

package/dist/google/protobuf/duration.pb.d.ts +99 -0
package/dist/google/protobuf/duration.pb.js +93 -0
package/dist/index.d.ts +1 -0
package/dist/index.js +2 -1
package/dist/weave/authz/v1/index.d.ts +1 -0
package/dist/weave/authz/v1/index.js +38 -0
package/dist/weave/authz/v1/options.pb.d.ts +52 -0
package/dist/weave/authz/v1/options.pb.js +403 -0
package/dist/weave/filter/v1/index.d.ts +1 -0
package/dist/weave/filter/v1/index.js +38 -0
package/dist/{weaveapi/atc/v1/message.pb.d.ts → weave/filter/v1/options.pb.d.ts} +33 -21
package/dist/weave/filter/v1/options.pb.js +417 -0
package/dist/weave/index.d.ts +2 -0
package/dist/weave/index.js +39 -0
package/dist/weaveapi/agent/v1/agent.pb.d.ts +137 -188
package/dist/weaveapi/agent/v1/agent.pb.js +891 -2151
package/dist/weaveapi/agent/v1/index.d.ts +1 -1
package/dist/weaveapi/agent/v1/index.js +2 -2
package/dist/weaveapi/agent/v1/run.pb.d.ts +289 -0
package/dist/weaveapi/agent/v1/run.pb.js +2763 -0
package/dist/weaveapi/auth/v1/auth.pb.d.ts +67 -14
package/dist/weaveapi/auth/v1/auth.pb.js +829 -89
package/dist/weaveapi/auth/v1/index.d.ts +4 -1
package/dist/weaveapi/auth/v1/index.js +5 -2
package/dist/weaveapi/auth/v1/{service.pb.d.ts → organization_admin.pb.d.ts} +39 -530
package/dist/weaveapi/auth/v1/{service.pb.js → organization_admin.pb.js} +2978 -5812
package/dist/weaveapi/auth/v1/personal_access_token.pb.d.ts +114 -0
package/dist/weaveapi/auth/v1/personal_access_token.pb.js +750 -0
package/dist/weaveapi/auth/v1/profile.pb.d.ts +161 -0
package/dist/weaveapi/auth/v1/profile.pb.js +1007 -0
package/dist/weaveapi/auth/v1/session.pb.d.ts +460 -0
package/dist/weaveapi/auth/v1/session.pb.js +3544 -0
package/dist/weaveapi/chat/v1/chat.pb.d.ts +377 -149
package/dist/weaveapi/chat/v1/chat.pb.js +3492 -1614
package/dist/weaveapi/chat/v1/index.d.ts +0 -1
package/dist/weaveapi/chat/v1/index.js +1 -2
package/dist/weaveapi/consolidation/v1/consolidation.pb.d.ts +95 -0
package/dist/weaveapi/consolidation/v1/consolidation.pb.js +770 -1
package/dist/weaveapi/consolidation/v1/index.d.ts +0 -1
package/dist/weaveapi/consolidation/v1/index.js +1 -2
package/dist/weaveapi/content/v1/content.pb.d.ts +63 -0
package/dist/weaveapi/content/v1/content.pb.js +470 -0
package/dist/weaveapi/content/v1/index.d.ts +1 -0
package/dist/weaveapi/content/v1/index.js +38 -0
package/dist/weaveapi/gateway/v1/gateway.pb.d.ts +247 -523
package/dist/weaveapi/gateway/v1/gateway.pb.js +1648 -5783
package/dist/weaveapi/gateway/v1/index.d.ts +0 -1
package/dist/weaveapi/gateway/v1/index.js +1 -2
package/dist/weaveapi/index.d.ts +5 -5
package/dist/weaveapi/index.js +6 -6
package/dist/weaveapi/inference/v1/generate.pb.d.ts +120 -0
package/dist/weaveapi/inference/v1/generate.pb.js +1159 -0
package/dist/weaveapi/inference/v1/index.d.ts +4 -0
package/dist/weaveapi/{provider → inference}/v1/index.js +4 -2
package/dist/weaveapi/{model → inference}/v1/model.pb.d.ts +52 -15
package/dist/weaveapi/{model → inference}/v1/model.pb.js +529 -116
package/dist/weaveapi/{model/v1/service.pb.d.ts → inference/v1/model_route.pb.d.ts} +182 -110
package/dist/weaveapi/{model/v1/service.pb.js → inference/v1/model_route.pb.js} +2197 -1061
package/dist/weaveapi/inference/v1/provider.pb.d.ts +264 -0
package/dist/weaveapi/inference/v1/provider.pb.js +2590 -0
package/dist/weaveapi/ingestion/v1/index.d.ts +0 -2
package/dist/weaveapi/ingestion/v1/index.js +1 -3
package/dist/weaveapi/ingestion/v1/ingestion.pb.d.ts +543 -0
package/dist/weaveapi/ingestion/v1/ingestion.pb.js +5550 -16
package/dist/weaveapi/initialization/v1/index.d.ts +1 -0
package/dist/weaveapi/initialization/v1/index.js +38 -0
package/dist/weaveapi/initialization/v1/initialization.pb.d.ts +99 -0
package/dist/weaveapi/initialization/v1/initialization.pb.js +510 -0
package/dist/weaveapi/organization/v1/index.d.ts +0 -1
package/dist/weaveapi/organization/v1/index.js +1 -2
package/dist/weaveapi/organization/v1/organization.pb.d.ts +241 -0
package/dist/weaveapi/organization/v1/organization.pb.js +1838 -1
package/dist/weaveapi/reporting/index.d.ts +1 -0
package/dist/weaveapi/reporting/index.js +38 -0
package/dist/weaveapi/{task → reporting}/v1/index.d.ts +1 -1
package/dist/weaveapi/{model → reporting}/v1/index.js +2 -2
package/dist/weaveapi/reporting/v1/service.pb.d.ts +38 -0
package/dist/weaveapi/reporting/v1/service.pb.js +167 -0
package/dist/weaveapi/reporting/v1/usage.pb.d.ts +150 -0
package/dist/weaveapi/reporting/v1/usage.pb.js +1837 -0
package/dist/weaveapi/retrieval/v1/index.d.ts +0 -1
package/dist/weaveapi/retrieval/v1/index.js +1 -2
package/dist/weaveapi/retrieval/v1/retrieval.pb.d.ts +96 -2
package/dist/weaveapi/retrieval/v1/retrieval.pb.js +690 -10
package/dist/weaveapi/tool/index.d.ts +1 -0
package/dist/weaveapi/tool/index.js +38 -0
package/dist/weaveapi/tool/v1/index.d.ts +1 -0
package/dist/weaveapi/tool/v1/index.js +38 -0
package/dist/weaveapi/tool/v1/tool.pb.d.ts +370 -0
package/dist/weaveapi/tool/v1/tool.pb.js +2717 -0
package/dist/weaveapi/workflow/v1/index.d.ts +1 -1
package/dist/weaveapi/workflow/v1/index.js +2 -2
package/dist/weaveapi/workflow/v1/run.pb.d.ts +244 -0
package/dist/weaveapi/workflow/v1/run.pb.js +2084 -0
package/dist/weaveapi/workflow/v1/workflow.pb.d.ts +122 -275
package/dist/weaveapi/workflow/v1/workflow.pb.js +790 -3261
package/dist/weavesql/weavedb/agent_sql.d.ts +173 -477
package/dist/weavesql/weavedb/agent_sql.js +281 -758
package/dist/weavesql/weavedb/authorization_outbox_sql.d.ts +261 -0
package/dist/weavesql/weavedb/authorization_outbox_sql.js +445 -0
package/dist/weavesql/weavedb/chat_sql.d.ts +103 -345
package/dist/weavesql/weavedb/chat_sql.js +312 -597
package/dist/weavesql/weavedb/document_consolidation_sql.d.ts +217 -0
package/dist/weavesql/weavedb/document_consolidation_sql.js +486 -0
package/dist/weavesql/weavedb/document_ingestion_sql.d.ts +1433 -0
package/dist/weavesql/weavedb/document_ingestion_sql.js +3488 -0
package/dist/weavesql/weavedb/document_retrieval_sql.d.ts +314 -0
package/dist/weavesql/weavedb/document_retrieval_sql.js +965 -0
package/dist/weavesql/weavedb/document_table_sql.d.ts +6 -6
package/dist/weavesql/weavedb/document_table_sql.js +12 -12
package/dist/weavesql/weavedb/identity_sql.d.ts +1014 -0
package/dist/weavesql/weavedb/identity_sql.js +1811 -0
package/dist/weavesql/weavedb/inference_model_route_sql.d.ts +161 -0
package/dist/weavesql/weavedb/inference_model_route_sql.js +408 -0
package/dist/weavesql/weavedb/inference_provider_sql.d.ts +125 -0
package/dist/weavesql/weavedb/inference_provider_sql.js +228 -0
package/dist/weavesql/weavedb/initialization_sql.d.ts +15 -0
package/dist/weavesql/weavedb/initialization_sql.js +33 -0
package/dist/weavesql/weavedb/model_catalog_sql.d.ts +6 -6
package/dist/weavesql/weavedb/model_catalog_sql.js +6 -6
package/dist/weavesql/weavedb/organization_sql.d.ts +22 -102
package/dist/weavesql/weavedb/organization_sql.js +54 -262
package/dist/weavesql/weavedb/tool_sql.d.ts +209 -0
package/dist/weavesql/weavedb/tool_sql.js +407 -0
package/dist/weavesql/weavedb/usage_sql.d.ts +356 -0
package/dist/weavesql/weavedb/usage_sql.js +568 -0
package/dist/weavesql/weavedb/workflow_sql.d.ts +159 -546
package/dist/weavesql/weavedb/workflow_sql.js +281 -909
package/package.json +1 -1
package/dist/weaveapi/agent/v1/service.pb.d.ts +0 -397
package/dist/weaveapi/agent/v1/service.pb.js +0 -3152
package/dist/weaveapi/atc/v1/event.pb.d.ts +0 -134
package/dist/weaveapi/atc/v1/event.pb.js +0 -1124
package/dist/weaveapi/atc/v1/index.d.ts +0 -5
package/dist/weaveapi/atc/v1/index.js +0 -42
package/dist/weaveapi/atc/v1/message.pb.js +0 -287
package/dist/weaveapi/atc/v1/process.pb.d.ts +0 -91
package/dist/weaveapi/atc/v1/process.pb.js +0 -658
package/dist/weaveapi/atc/v1/run.pb.d.ts +0 -71
package/dist/weaveapi/atc/v1/run.pb.js +0 -525
package/dist/weaveapi/atc/v1/service.pb.d.ts +0 -472
package/dist/weaveapi/atc/v1/service.pb.js +0 -3093
package/dist/weaveapi/chat/v1/service.pb.d.ts +0 -345
package/dist/weaveapi/chat/v1/service.pb.js +0 -2545
package/dist/weaveapi/consolidation/v1/service.pb.d.ts +0 -93
package/dist/weaveapi/consolidation/v1/service.pb.js +0 -427
package/dist/weaveapi/gateway/v1/service.pb.d.ts +0 -235
package/dist/weaveapi/gateway/v1/service.pb.js +0 -651
package/dist/weaveapi/ingestion/v1/service.pb.d.ts +0 -420
package/dist/weaveapi/ingestion/v1/service.pb.js +0 -2311
package/dist/weaveapi/ingestion/v1/table.pb.d.ts +0 -121
package/dist/weaveapi/ingestion/v1/table.pb.js +0 -1478
package/dist/weaveapi/model/v1/index.d.ts +0 -2
package/dist/weaveapi/organization/v1/service.pb.d.ts +0 -261
package/dist/weaveapi/organization/v1/service.pb.js +0 -1561
package/dist/weaveapi/project/v1/index.d.ts +0 -2
package/dist/weaveapi/project/v1/index.js +0 -39
package/dist/weaveapi/project/v1/project.pb.d.ts +0 -105
package/dist/weaveapi/project/v1/project.pb.js +0 -1004
package/dist/weaveapi/project/v1/service.pb.d.ts +0 -247
package/dist/weaveapi/project/v1/service.pb.js +0 -1994
package/dist/weaveapi/provider/v1/index.d.ts +0 -2
package/dist/weaveapi/provider/v1/provider.pb.d.ts +0 -137
package/dist/weaveapi/provider/v1/provider.pb.js +0 -1000
package/dist/weaveapi/provider/v1/service.pb.d.ts +0 -223
package/dist/weaveapi/provider/v1/service.pb.js +0 -1888
package/dist/weaveapi/retrieval/v1/service.pb.d.ts +0 -93
package/dist/weaveapi/retrieval/v1/service.pb.js +0 -385
package/dist/weaveapi/task/v1/index.js +0 -39
package/dist/weaveapi/task/v1/service.pb.d.ts +0 -172
package/dist/weaveapi/task/v1/service.pb.js +0 -1436
package/dist/weaveapi/task/v1/task.pb.d.ts +0 -85
package/dist/weaveapi/task/v1/task.pb.js +0 -802
package/dist/weaveapi/workflow/v1/service.pb.d.ts +0 -392
package/dist/weaveapi/workflow/v1/service.pb.js +0 -3146
/package/dist/{weaveapi/atc → weave/authz}/index.d.ts +0 -0
/package/dist/{weaveapi/atc → weave/authz}/index.js +0 -0
/package/dist/{weaveapi/model → weave/filter}/index.d.ts +0 -0
/package/dist/{weaveapi/model → weave/filter}/index.js +0 -0
/package/dist/weaveapi/{project → content}/index.d.ts +0 -0
/package/dist/weaveapi/{project → content}/index.js +0 -0
/package/dist/weaveapi/{provider → inference}/index.d.ts +0 -0
/package/dist/weaveapi/{provider → inference}/index.js +0 -0
/package/dist/weaveapi/{task → initialization}/index.d.ts +0 -0
/package/dist/weaveapi/{task → initialization}/index.js +0 -0

package/dist/weavesql/weavedb/identity_sql.js ADDED Viewed

@@ -0,0 +1,1811 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.getPersonalAccessTokenQuery = exports.createPersonalAccessTokenQuery = exports.revokeAuthInviteSessionQuery = exports.completeAuthInviteSessionQuery = exports.updateAuthInviteSessionOAuthQuery = exports.getAuthInviteSessionByMembershipQuery = exports.getAuthInviteSessionQuery = exports.updateAuthInviteSessionTokenQuery = exports.createAuthInviteSessionQuery = exports.deleteExpiredApplicationSessionsQuery = exports.revokeApplicationSessionQuery = exports.updateApplicationSessionOrganizationQuery = exports.getPrincipalByApplicationSessionQuery = exports.getApplicationSessionQuery = exports.createApplicationSessionQuery = exports.getOrganizationIdentityLinkByOrganizationIDQuery = exports.updateOrganizationScimGroupMappingQuery = exports.listOrganizationScimGroupMappingsQuery = exports.upsertOrganizationScimGroupMappingQuery = exports.listOrganizationTeamRoleGrantsQuery = exports.addOrganizationTeamRoleGrantQuery = exports.deleteOrganizationTeamRoleGrantsQuery = exports.listOrganizationTeamMembersQuery = exports.addOrganizationTeamMembershipQuery = exports.deleteOrganizationTeamMembershipsQuery = exports.deleteOrganizationTeamQuery = exports.updateOrganizationTeamQuery = exports.listOrganizationTeamsQuery = exports.getOrganizationTeamQuery = exports.createOrganizationTeamQuery = exports.updateOrganizationMembershipByIDQuery = exports.listOrganizationMembersQuery = exports.getOrganizationMemberQuery = exports.getOrganizationMembershipQuery = exports.upsertOrganizationMembershipQuery = exports.upsertUserIdentityLinkQuery = exports.getPrincipalByExternalIdentityQuery = exports.updateUserPreferencesQuery = exports.updateUserProfileQuery = exports.getUserQuery = exports.getUserByExternalIdentityQuery = exports.upsertUserQuery = exports.upsertOrganizationIdentityLinkQuery = exports.getOrganizationByExternalIdentityQuery = exports.getOrganizationForUserBySlugQuery = exports.listOrganizationsForUserQuery = exports.listOrganizationsQuery = exports.getOrganizationBySlugQuery = exports.getOrganizationQuery = exports.createOrganizationQuery = void 0;
+exports.revokePersonalAccessTokenForUserQuery = exports.revokePersonalAccessTokenQuery = exports.markPersonalAccessTokenUsedQuery = exports.getPrincipalByPersonalAccessTokenQuery = exports.listPersonalAccessTokensQuery = void 0;
+exports.createOrganization = createOrganization;
+exports.getOrganization = getOrganization;
+exports.getOrganizationBySlug = getOrganizationBySlug;
+exports.listOrganizations = listOrganizations;
+exports.listOrganizationsForUser = listOrganizationsForUser;
+exports.getOrganizationForUserBySlug = getOrganizationForUserBySlug;
+exports.getOrganizationByExternalIdentity = getOrganizationByExternalIdentity;
+exports.upsertOrganizationIdentityLink = upsertOrganizationIdentityLink;
+exports.upsertUser = upsertUser;
+exports.getUserByExternalIdentity = getUserByExternalIdentity;
+exports.getUser = getUser;
+exports.updateUserProfile = updateUserProfile;
+exports.updateUserPreferences = updateUserPreferences;
+exports.getPrincipalByExternalIdentity = getPrincipalByExternalIdentity;
+exports.upsertUserIdentityLink = upsertUserIdentityLink;
+exports.upsertOrganizationMembership = upsertOrganizationMembership;
+exports.getOrganizationMembership = getOrganizationMembership;
+exports.getOrganizationMember = getOrganizationMember;
+exports.listOrganizationMembers = listOrganizationMembers;
+exports.updateOrganizationMembershipByID = updateOrganizationMembershipByID;
+exports.createOrganizationTeam = createOrganizationTeam;
+exports.getOrganizationTeam = getOrganizationTeam;
+exports.listOrganizationTeams = listOrganizationTeams;
+exports.updateOrganizationTeam = updateOrganizationTeam;
+exports.addOrganizationTeamMembership = addOrganizationTeamMembership;
+exports.listOrganizationTeamMembers = listOrganizationTeamMembers;
+exports.addOrganizationTeamRoleGrant = addOrganizationTeamRoleGrant;
+exports.listOrganizationTeamRoleGrants = listOrganizationTeamRoleGrants;
+exports.upsertOrganizationScimGroupMapping = upsertOrganizationScimGroupMapping;
+exports.listOrganizationScimGroupMappings = listOrganizationScimGroupMappings;
+exports.updateOrganizationScimGroupMapping = updateOrganizationScimGroupMapping;
+exports.getOrganizationIdentityLinkByOrganizationID = getOrganizationIdentityLinkByOrganizationID;
+exports.createApplicationSession = createApplicationSession;
+exports.getApplicationSession = getApplicationSession;
+exports.getPrincipalByApplicationSession = getPrincipalByApplicationSession;
+exports.updateApplicationSessionOrganization = updateApplicationSessionOrganization;
+exports.createAuthInviteSession = createAuthInviteSession;
+exports.updateAuthInviteSessionToken = updateAuthInviteSessionToken;
+exports.getAuthInviteSession = getAuthInviteSession;
+exports.getAuthInviteSessionByMembership = getAuthInviteSessionByMembership;
+exports.updateAuthInviteSessionOAuth = updateAuthInviteSessionOAuth;
+exports.completeAuthInviteSession = completeAuthInviteSession;
+exports.revokeAuthInviteSession = revokeAuthInviteSession;
+exports.createPersonalAccessToken = createPersonalAccessToken;
+exports.getPersonalAccessToken = getPersonalAccessToken;
+exports.listPersonalAccessTokens = listPersonalAccessTokens;
+exports.getPrincipalByPersonalAccessToken = getPrincipalByPersonalAccessToken;
+exports.revokePersonalAccessTokenForUser = revokePersonalAccessTokenForUser;
+exports.createOrganizationQuery = `-- name: CreateOrganization :one
+INSERT INTO weave.organization (
+    slug,
+    name,
+    description,
+    primary_color,
+    logo,
+    logo_content_type,
+    timezone,
+    location,
+    status
+) VALUES (
+    $1,
+    $2,
+    COALESCE($3::text, ''),
+    COALESCE($4::text, '#22d3ee'),
+    $5,
+    $6,
+    COALESCE($7::text, 'UTC'),
+    COALESCE($8::text, ''),
+    COALESCE($9::text, 'active')
+)
+RETURNING id, slug, name, description, primary_color, logo, logo_content_type, timezone, location, status, default_chat_agent_id, default_chat_model_route_id, created_at, updated_at`;
+async function createOrganization(client, args) {
+    const result = await client.query({
+        text: exports.createOrganizationQuery,
+        values: [args.slug, args.name, args.description, args.primaryColor, args.logo, args.logoContentType, args.timezone, args.location, args.status],
+        rowMode: "array"
+    });
+    if (result.rows.length !== 1) {
+        return null;
+    }
+    const row = result.rows[0];
+    return {
+        id: row[0],
+        slug: row[1],
+        name: row[2],
+        description: row[3],
+        primaryColor: row[4],
+        logo: row[5],
+        logoContentType: row[6],
+        timezone: row[7],
+        location: row[8],
+        status: row[9],
+        defaultChatAgentId: row[10],
+        defaultChatModelRouteId: row[11],
+        createdAt: row[12],
+        updatedAt: row[13]
+    };
+}
+exports.getOrganizationQuery = `-- name: GetOrganization :one
+SELECT id, slug, name, description, primary_color, logo, logo_content_type, timezone, location, status, default_chat_agent_id, default_chat_model_route_id, created_at, updated_at
+FROM weave.organization
+WHERE id = $1`;
+async function getOrganization(client, args) {
+    const result = await client.query({
+        text: exports.getOrganizationQuery,
+        values: [args.organizationId],
+        rowMode: "array"
+    });
+    if (result.rows.length !== 1) {
+        return null;
+    }
+    const row = result.rows[0];
+    return {
+        id: row[0],
+        slug: row[1],
+        name: row[2],
+        description: row[3],
+        primaryColor: row[4],
+        logo: row[5],
+        logoContentType: row[6],
+        timezone: row[7],
+        location: row[8],
+        status: row[9],
+        defaultChatAgentId: row[10],
+        defaultChatModelRouteId: row[11],
+        createdAt: row[12],
+        updatedAt: row[13]
+    };
+}
+exports.getOrganizationBySlugQuery = `-- name: GetOrganizationBySlug :one
+SELECT id, slug, name, description, primary_color, logo, logo_content_type, timezone, location, status, default_chat_agent_id, default_chat_model_route_id, created_at, updated_at
+FROM weave.organization
+WHERE slug = $1`;
+async function getOrganizationBySlug(client, args) {
+    const result = await client.query({
+        text: exports.getOrganizationBySlugQuery,
+        values: [args.slug],
+        rowMode: "array"
+    });
+    if (result.rows.length !== 1) {
+        return null;
+    }
+    const row = result.rows[0];
+    return {
+        id: row[0],
+        slug: row[1],
+        name: row[2],
+        description: row[3],
+        primaryColor: row[4],
+        logo: row[5],
+        logoContentType: row[6],
+        timezone: row[7],
+        location: row[8],
+        status: row[9],
+        defaultChatAgentId: row[10],
+        defaultChatModelRouteId: row[11],
+        createdAt: row[12],
+        updatedAt: row[13]
+    };
+}
+exports.listOrganizationsQuery = `-- name: ListOrganizations :many
+SELECT id, slug, name, description, primary_color, logo, logo_content_type, timezone, location, status, default_chat_agent_id, default_chat_model_route_id, created_at, updated_at
+FROM weave.organization
+WHERE status = 'active'
+ORDER BY created_at DESC, id DESC`;
+async function listOrganizations(client) {
+    const result = await client.query({
+        text: exports.listOrganizationsQuery,
+        values: [],
+        rowMode: "array"
+    });
+    return result.rows.map(row => {
+        return {
+            id: row[0],
+            slug: row[1],
+            name: row[2],
+            description: row[3],
+            primaryColor: row[4],
+            logo: row[5],
+            logoContentType: row[6],
+            timezone: row[7],
+            location: row[8],
+            status: row[9],
+            defaultChatAgentId: row[10],
+            defaultChatModelRouteId: row[11],
+            createdAt: row[12],
+            updatedAt: row[13]
+        };
+    });
+}
+exports.listOrganizationsForUserQuery = `-- name: ListOrganizationsForUser :many
+SELECT o.id, o.slug, o.name, o.description, o.primary_color, o.logo, o.logo_content_type, o.timezone, o.location, o.status, o.default_chat_agent_id, o.default_chat_model_route_id, o.created_at, o.updated_at
+FROM weave.organization o
+         JOIN weave.organization_membership om
+              ON om.organization_id = o.id
+WHERE om.user_id = $1
+  AND om.status = 'active'
+  AND o.status = 'active'
+ORDER BY o.created_at DESC, o.id DESC`;
+async function listOrganizationsForUser(client, args) {
+    const result = await client.query({
+        text: exports.listOrganizationsForUserQuery,
+        values: [args.userId],
+        rowMode: "array"
+    });
+    return result.rows.map(row => {
+        return {
+            id: row[0],
+            slug: row[1],
+            name: row[2],
+            description: row[3],
+            primaryColor: row[4],
+            logo: row[5],
+            logoContentType: row[6],
+            timezone: row[7],
+            location: row[8],
+            status: row[9],
+            defaultChatAgentId: row[10],
+            defaultChatModelRouteId: row[11],
+            createdAt: row[12],
+            updatedAt: row[13]
+        };
+    });
+}
+exports.getOrganizationForUserBySlugQuery = `-- name: GetOrganizationForUserBySlug :one
+SELECT o.id, o.slug, o.name, o.description, o.primary_color, o.logo, o.logo_content_type, o.timezone, o.location, o.status, o.default_chat_agent_id, o.default_chat_model_route_id, o.created_at, o.updated_at
+FROM weave.organization o
+         JOIN weave.organization_membership om
+              ON om.organization_id = o.id
+WHERE o.slug = $1
+  AND om.user_id = $2
+  AND om.status = 'active'
+  AND o.status = 'active'`;
+async function getOrganizationForUserBySlug(client, args) {
+    const result = await client.query({
+        text: exports.getOrganizationForUserBySlugQuery,
+        values: [args.slug, args.userId],
+        rowMode: "array"
+    });
+    if (result.rows.length !== 1) {
+        return null;
+    }
+    const row = result.rows[0];
+    return {
+        id: row[0],
+        slug: row[1],
+        name: row[2],
+        description: row[3],
+        primaryColor: row[4],
+        logo: row[5],
+        logoContentType: row[6],
+        timezone: row[7],
+        location: row[8],
+        status: row[9],
+        defaultChatAgentId: row[10],
+        defaultChatModelRouteId: row[11],
+        createdAt: row[12],
+        updatedAt: row[13]
+    };
+}
+exports.getOrganizationByExternalIdentityQuery = `-- name: GetOrganizationByExternalIdentity :one
+SELECT o.id, o.slug, o.name, o.description, o.primary_color, o.logo, o.logo_content_type, o.timezone, o.location, o.status, o.default_chat_agent_id, o.default_chat_model_route_id, o.created_at, o.updated_at
+FROM weave.organization o
+         JOIN weave.organization_identity_link oil
+              ON oil.organization_id = o.id
+WHERE oil.auth_provider = $1
+  AND oil.external_organization_id = $2`;
+async function getOrganizationByExternalIdentity(client, args) {
+    const result = await client.query({
+        text: exports.getOrganizationByExternalIdentityQuery,
+        values: [args.authProvider, args.externalOrganizationId],
+        rowMode: "array"
+    });
+    if (result.rows.length !== 1) {
+        return null;
+    }
+    const row = result.rows[0];
+    return {
+        id: row[0],
+        slug: row[1],
+        name: row[2],
+        description: row[3],
+        primaryColor: row[4],
+        logo: row[5],
+        logoContentType: row[6],
+        timezone: row[7],
+        location: row[8],
+        status: row[9],
+        defaultChatAgentId: row[10],
+        defaultChatModelRouteId: row[11],
+        createdAt: row[12],
+        updatedAt: row[13]
+    };
+}
+exports.upsertOrganizationIdentityLinkQuery = `-- name: UpsertOrganizationIdentityLink :one
+INSERT INTO weave.organization_identity_link (
+    organization_id,
+    auth_provider,
+    external_organization_id,
+    last_seen_at
+) VALUES (
+    $1,
+    $2,
+    $3,
+    now()
+)
+ON CONFLICT (auth_provider, external_organization_id)
+    DO UPDATE SET
+        last_seen_at = EXCLUDED.last_seen_at
+RETURNING id, organization_id, auth_provider, external_organization_id, last_seen_at, created_at, updated_at`;
+async function upsertOrganizationIdentityLink(client, args) {
+    const result = await client.query({
+        text: exports.upsertOrganizationIdentityLinkQuery,
+        values: [args.organizationId, args.authProvider, args.externalOrganizationId],
+        rowMode: "array"
+    });
+    if (result.rows.length !== 1) {
+        return null;
+    }
+    const row = result.rows[0];
+    return {
+        id: row[0],
+        organizationId: row[1],
+        authProvider: row[2],
+        externalOrganizationId: row[3],
+        lastSeenAt: row[4],
+        createdAt: row[5],
+        updatedAt: row[6]
+    };
+}
+exports.upsertUserQuery = `-- name: UpsertUser :one
+INSERT INTO weave.user (
+    email,
+    name,
+    job_title,
+    avatar_url,
+    status
+) VALUES (
+    $1,
+    $2,
+    COALESCE($3::text, ''),
+    COALESCE($4::text, ''),
+    COALESCE($5::text, 'active')
+)
+ON CONFLICT (email)
+    DO UPDATE SET
+        name = EXCLUDED.name,
+        status = EXCLUDED.status
+RETURNING id, email, name, job_title, avatar_url, preferences, status, created_at, updated_at`;
+async function upsertUser(client, args) {
+    const result = await client.query({
+        text: exports.upsertUserQuery,
+        values: [args.email, args.name, args.jobTitle, args.avatarUrl, args.status],
+        rowMode: "array"
+    });
+    if (result.rows.length !== 1) {
+        return null;
+    }
+    const row = result.rows[0];
+    return {
+        id: row[0],
+        email: row[1],
+        name: row[2],
+        jobTitle: row[3],
+        avatarUrl: row[4],
+        preferences: row[5],
+        status: row[6],
+        createdAt: row[7],
+        updatedAt: row[8]
+    };
+}
+exports.getUserByExternalIdentityQuery = `-- name: GetUserByExternalIdentity :one
+SELECT u.id, u.email, u.name, u.job_title, u.avatar_url, u.preferences, u.status, u.created_at, u.updated_at
+FROM weave.user u
+         JOIN weave.user_identity_link uil
+              ON uil.user_id = u.id
+         JOIN weave.organization_identity_link oil
+              ON oil.id = uil.organization_identity_link_id
+WHERE oil.auth_provider = $1
+  AND oil.external_organization_id = $2
+  AND uil.external_subject_id = $3`;
+async function getUserByExternalIdentity(client, args) {
+    const result = await client.query({
+        text: exports.getUserByExternalIdentityQuery,
+        values: [args.authProvider, args.externalOrganizationId, args.externalSubjectId],
+        rowMode: "array"
+    });
+    if (result.rows.length !== 1) {
+        return null;
+    }
+    const row = result.rows[0];
+    return {
+        id: row[0],
+        email: row[1],
+        name: row[2],
+        jobTitle: row[3],
+        avatarUrl: row[4],
+        preferences: row[5],
+        status: row[6],
+        createdAt: row[7],
+        updatedAt: row[8]
+    };
+}
+exports.getUserQuery = `-- name: GetUser :one
+SELECT id, email, name, job_title, avatar_url, preferences, status, created_at, updated_at
+FROM weave.user
+WHERE id = $1`;
+async function getUser(client, args) {
+    const result = await client.query({
+        text: exports.getUserQuery,
+        values: [args.userId],
+        rowMode: "array"
+    });
+    if (result.rows.length !== 1) {
+        return null;
+    }
+    const row = result.rows[0];
+    return {
+        id: row[0],
+        email: row[1],
+        name: row[2],
+        jobTitle: row[3],
+        avatarUrl: row[4],
+        preferences: row[5],
+        status: row[6],
+        createdAt: row[7],
+        updatedAt: row[8]
+    };
+}
+exports.updateUserProfileQuery = `-- name: UpdateUserProfile :one
+UPDATE weave.user
+SET
+    name = COALESCE($1::text, name),
+    job_title = COALESCE($2::text, job_title),
+    avatar_url = COALESCE($3::text, avatar_url)
+WHERE id = $4
+RETURNING id, email, name, job_title, avatar_url, preferences, status, created_at, updated_at`;
+async function updateUserProfile(client, args) {
+    const result = await client.query({
+        text: exports.updateUserProfileQuery,
+        values: [args.name, args.jobTitle, args.avatarUrl, args.userId],
+        rowMode: "array"
+    });
+    if (result.rows.length !== 1) {
+        return null;
+    }
+    const row = result.rows[0];
+    return {
+        id: row[0],
+        email: row[1],
+        name: row[2],
+        jobTitle: row[3],
+        avatarUrl: row[4],
+        preferences: row[5],
+        status: row[6],
+        createdAt: row[7],
+        updatedAt: row[8]
+    };
+}
+exports.updateUserPreferencesQuery = `-- name: UpdateUserPreferences :one
+UPDATE weave.user
+SET preferences = $1::jsonb
+WHERE id = $2
+RETURNING id, email, name, job_title, avatar_url, preferences, status, created_at, updated_at`;
+async function updateUserPreferences(client, args) {
+    const result = await client.query({
+        text: exports.updateUserPreferencesQuery,
+        values: [args.preferences, args.userId],
+        rowMode: "array"
+    });
+    if (result.rows.length !== 1) {
+        return null;
+    }
+    const row = result.rows[0];
+    return {
+        id: row[0],
+        email: row[1],
+        name: row[2],
+        jobTitle: row[3],
+        avatarUrl: row[4],
+        preferences: row[5],
+        status: row[6],
+        createdAt: row[7],
+        updatedAt: row[8]
+    };
+}
+exports.getPrincipalByExternalIdentityQuery = `-- name: GetPrincipalByExternalIdentity :one
+SELECT
+    o.id AS organization_id,
+    o.slug AS organization_slug,
+    o.name AS organization_name,
+    o.status AS organization_status,
+    u.id AS user_id,
+    u.email AS user_email,
+    u.name AS user_name,
+    u.job_title AS user_job_title,
+    u.avatar_url AS user_avatar_url,
+    u.preferences AS user_preferences,
+    u.status AS user_status,
+    om.id AS organization_membership_id,
+    om.role AS organization_membership_role,
+    om.status AS organization_membership_status,
+    oil.id AS organization_identity_link_id,
+    uil.id AS user_identity_link_id
+FROM weave.organization_identity_link oil
+         JOIN weave.organization o
+              ON o.id = oil.organization_id
+         JOIN weave.user_identity_link uil
+              ON uil.organization_identity_link_id = oil.id
+         JOIN weave.user u
+              ON u.id = uil.user_id
+         JOIN weave.organization_membership om
+              ON om.organization_id = o.id
+                  AND om.user_id = u.id
+WHERE oil.auth_provider = $1
+  AND oil.external_organization_id = $2
+  AND uil.external_subject_id = $3`;
+async function getPrincipalByExternalIdentity(client, args) {
+    const result = await client.query({
+        text: exports.getPrincipalByExternalIdentityQuery,
+        values: [args.authProvider, args.externalOrganizationId, args.externalSubjectId],
+        rowMode: "array"
+    });
+    if (result.rows.length !== 1) {
+        return null;
+    }
+    const row = result.rows[0];
+    return {
+        organizationId: row[0],
+        organizationSlug: row[1],
+        organizationName: row[2],
+        organizationStatus: row[3],
+        userId: row[4],
+        userEmail: row[5],
+        userName: row[6],
+        userJobTitle: row[7],
+        userAvatarUrl: row[8],
+        userPreferences: row[9],
+        userStatus: row[10],
+        organizationMembershipId: row[11],
+        organizationMembershipRole: row[12],
+        organizationMembershipStatus: row[13],
+        organizationIdentityLinkId: row[14],
+        userIdentityLinkId: row[15]
+    };
+}
+exports.upsertUserIdentityLinkQuery = `-- name: UpsertUserIdentityLink :one
+INSERT INTO weave.user_identity_link (
+    user_id,
+    organization_identity_link_id,
+    external_subject_id,
+    last_seen_at
+) VALUES (
+    $1,
+    $2,
+    $3,
+    now()
+)
+ON CONFLICT (organization_identity_link_id, external_subject_id)
+    DO UPDATE SET
+        user_id = EXCLUDED.user_id,
+        last_seen_at = EXCLUDED.last_seen_at
+RETURNING id, user_id, organization_identity_link_id, external_subject_id, last_seen_at, created_at, updated_at`;
+async function upsertUserIdentityLink(client, args) {
+    const result = await client.query({
+        text: exports.upsertUserIdentityLinkQuery,
+        values: [args.userId, args.organizationIdentityLinkId, args.externalSubjectId],
+        rowMode: "array"
+    });
+    if (result.rows.length !== 1) {
+        return null;
+    }
+    const row = result.rows[0];
+    return {
+        id: row[0],
+        userId: row[1],
+        organizationIdentityLinkId: row[2],
+        externalSubjectId: row[3],
+        lastSeenAt: row[4],
+        createdAt: row[5],
+        updatedAt: row[6]
+    };
+}
+exports.upsertOrganizationMembershipQuery = `-- name: UpsertOrganizationMembership :one
+INSERT INTO weave.organization_membership (
+    organization_id,
+    user_id,
+    status,
+    role
+) VALUES (
+    $1,
+    $2,
+    COALESCE($3::text, 'active'),
+    COALESCE($4::text, 'member')
+)
+ON CONFLICT (user_id, organization_id)
+    DO UPDATE SET
+        status = EXCLUDED.status,
+        role = EXCLUDED.role
+RETURNING id, organization_id, user_id, status, role, created_at, updated_at`;
+async function upsertOrganizationMembership(client, args) {
+    const result = await client.query({
+        text: exports.upsertOrganizationMembershipQuery,
+        values: [args.organizationId, args.userId, args.status, args.role],
+        rowMode: "array"
+    });
+    if (result.rows.length !== 1) {
+        return null;
+    }
+    const row = result.rows[0];
+    return {
+        id: row[0],
+        organizationId: row[1],
+        userId: row[2],
+        status: row[3],
+        role: row[4],
+        createdAt: row[5],
+        updatedAt: row[6]
+    };
+}
+exports.getOrganizationMembershipQuery = `-- name: GetOrganizationMembership :one
+SELECT id, organization_id, user_id, status, role, created_at, updated_at
+FROM weave.organization_membership
+WHERE organization_id = $1
+  AND user_id = $2`;
+async function getOrganizationMembership(client, args) {
+    const result = await client.query({
+        text: exports.getOrganizationMembershipQuery,
+        values: [args.organizationId, args.userId],
+        rowMode: "array"
+    });
+    if (result.rows.length !== 1) {
+        return null;
+    }
+    const row = result.rows[0];
+    return {
+        id: row[0],
+        organizationId: row[1],
+        userId: row[2],
+        status: row[3],
+        role: row[4],
+        createdAt: row[5],
+        updatedAt: row[6]
+    };
+}
+exports.getOrganizationMemberQuery = `-- name: GetOrganizationMember :one
+SELECT
+    om.id,
+    om.organization_id,
+    om.user_id,
+    om.status,
+    om.role,
+    om.created_at,
+    om.updated_at,
+    u.email,
+    u.name,
+    u.job_title,
+    u.avatar_url
+FROM weave.organization_membership om
+         JOIN weave.user u
+              ON u.id = om.user_id
+WHERE om.organization_id = $1
+  AND om.id = $2`;
+async function getOrganizationMember(client, args) {
+    const result = await client.query({
+        text: exports.getOrganizationMemberQuery,
+        values: [args.organizationId, args.organizationMembershipId],
+        rowMode: "array"
+    });
+    if (result.rows.length !== 1) {
+        return null;
+    }
+    const row = result.rows[0];
+    return {
+        id: row[0],
+        organizationId: row[1],
+        userId: row[2],
+        status: row[3],
+        role: row[4],
+        createdAt: row[5],
+        updatedAt: row[6],
+        email: row[7],
+        name: row[8],
+        jobTitle: row[9],
+        avatarUrl: row[10]
+    };
+}
+exports.listOrganizationMembersQuery = `-- name: ListOrganizationMembers :many
+SELECT
+    om.id,
+    om.organization_id,
+    om.user_id,
+    om.status,
+    om.role,
+    om.created_at,
+    om.updated_at,
+    u.email,
+    u.name,
+    u.job_title,
+    u.avatar_url
+FROM weave.organization_membership om
+         JOIN weave.user u
+              ON u.id = om.user_id
+WHERE om.organization_id = $1
+  AND ($2::text IS NULL OR om.status = $2::text)
+  AND (
+      COALESCE($3::text, '') = ''
+          OR u.email ILIKE '%' || $3::text || '%'
+          OR u.name ILIKE '%' || $3::text || '%'
+  )
+ORDER BY u.email ASC, om.id ASC
+LIMIT $5
+OFFSET $4`;
+async function listOrganizationMembers(client, args) {
+    const result = await client.query({
+        text: exports.listOrganizationMembersQuery,
+        values: [args.organizationId, args.statusFilter, args.search, args.offsetCount, args.limitCount],
+        rowMode: "array"
+    });
+    return result.rows.map(row => {
+        return {
+            id: row[0],
+            organizationId: row[1],
+            userId: row[2],
+            status: row[3],
+            role: row[4],
+            createdAt: row[5],
+            updatedAt: row[6],
+            email: row[7],
+            name: row[8],
+            jobTitle: row[9],
+            avatarUrl: row[10]
+        };
+    });
+}
+exports.updateOrganizationMembershipByIDQuery = `-- name: UpdateOrganizationMembershipByID :one
+UPDATE weave.organization_membership
+SET
+    status = COALESCE($1::text, status),
+    role = COALESCE($2::text, role)
+WHERE organization_id = $3
+  AND id = $4
+RETURNING id, organization_id, user_id, status, role, created_at, updated_at`;
+async function updateOrganizationMembershipByID(client, args) {
+    const result = await client.query({
+        text: exports.updateOrganizationMembershipByIDQuery,
+        values: [args.status, args.role, args.organizationId, args.organizationMembershipId],
+        rowMode: "array"
+    });
+    if (result.rows.length !== 1) {
+        return null;
+    }
+    const row = result.rows[0];
+    return {
+        id: row[0],
+        organizationId: row[1],
+        userId: row[2],
+        status: row[3],
+        role: row[4],
+        createdAt: row[5],
+        updatedAt: row[6]
+    };
+}
+exports.createOrganizationTeamQuery = `-- name: CreateOrganizationTeam :one
+INSERT INTO weave.organization_team (
+    organization_id,
+    slug,
+    name,
+    description
+) VALUES (
+    $1,
+    $2,
+    $3,
+    COALESCE($4::text, '')
+)
+RETURNING id, organization_id, slug, name, description, created_at, updated_at`;
+async function createOrganizationTeam(client, args) {
+    const result = await client.query({
+        text: exports.createOrganizationTeamQuery,
+        values: [args.organizationId, args.slug, args.name, args.description],
+        rowMode: "array"
+    });
+    if (result.rows.length !== 1) {
+        return null;
+    }
+    const row = result.rows[0];
+    return {
+        id: row[0],
+        organizationId: row[1],
+        slug: row[2],
+        name: row[3],
+        description: row[4],
+        createdAt: row[5],
+        updatedAt: row[6]
+    };
+}
+exports.getOrganizationTeamQuery = `-- name: GetOrganizationTeam :one
+SELECT id, organization_id, slug, name, description, created_at, updated_at
+FROM weave.organization_team
+WHERE organization_id = $1
+  AND id = $2`;
+async function getOrganizationTeam(client, args) {
+    const result = await client.query({
+        text: exports.getOrganizationTeamQuery,
+        values: [args.organizationId, args.organizationTeamId],
+        rowMode: "array"
+    });
+    if (result.rows.length !== 1) {
+        return null;
+    }
+    const row = result.rows[0];
+    return {
+        id: row[0],
+        organizationId: row[1],
+        slug: row[2],
+        name: row[3],
+        description: row[4],
+        createdAt: row[5],
+        updatedAt: row[6]
+    };
+}
+exports.listOrganizationTeamsQuery = `-- name: ListOrganizationTeams :many
+SELECT id, organization_id, slug, name, description, created_at, updated_at
+FROM weave.organization_team
+WHERE organization_id = $1
+ORDER BY name ASC, slug ASC, id ASC`;
+async function listOrganizationTeams(client, args) {
+    const result = await client.query({
+        text: exports.listOrganizationTeamsQuery,
+        values: [args.organizationId],
+        rowMode: "array"
+    });
+    return result.rows.map(row => {
+        return {
+            id: row[0],
+            organizationId: row[1],
+            slug: row[2],
+            name: row[3],
+            description: row[4],
+            createdAt: row[5],
+            updatedAt: row[6]
+        };
+    });
+}
+exports.updateOrganizationTeamQuery = `-- name: UpdateOrganizationTeam :one
+UPDATE weave.organization_team
+SET
+    slug = $1,
+    name = $2,
+    description = COALESCE($3::text, '')
+WHERE organization_id = $4
+  AND id = $5
+RETURNING id, organization_id, slug, name, description, created_at, updated_at`;
+async function updateOrganizationTeam(client, args) {
+    const result = await client.query({
+        text: exports.updateOrganizationTeamQuery,
+        values: [args.slug, args.name, args.description, args.organizationId, args.organizationTeamId],
+        rowMode: "array"
+    });
+    if (result.rows.length !== 1) {
+        return null;
+    }
+    const row = result.rows[0];
+    return {
+        id: row[0],
+        organizationId: row[1],
+        slug: row[2],
+        name: row[3],
+        description: row[4],
+        createdAt: row[5],
+        updatedAt: row[6]
+    };
+}
+exports.deleteOrganizationTeamQuery = `-- name: DeleteOrganizationTeam :execrows
+DELETE FROM weave.organization_team
+WHERE organization_id = $1
+  AND id = $2`;
+exports.deleteOrganizationTeamMembershipsQuery = `-- name: DeleteOrganizationTeamMemberships :execrows
+DELETE FROM weave.organization_team_membership
+WHERE organization_id = $1
+  AND organization_team_id = $2`;
+exports.addOrganizationTeamMembershipQuery = `-- name: AddOrganizationTeamMembership :one
+INSERT INTO weave.organization_team_membership (
+    organization_id,
+    organization_team_id,
+    organization_membership_id,
+    user_id
+) VALUES (
+    $1,
+    $2,
+    $3,
+    $4
+)
+RETURNING organization_id, organization_team_id, organization_membership_id, user_id, created_at`;
+async function addOrganizationTeamMembership(client, args) {
+    const result = await client.query({
+        text: exports.addOrganizationTeamMembershipQuery,
+        values: [args.organizationId, args.organizationTeamId, args.organizationMembershipId, args.userId],
+        rowMode: "array"
+    });
+    if (result.rows.length !== 1) {
+        return null;
+    }
+    const row = result.rows[0];
+    return {
+        organizationId: row[0],
+        organizationTeamId: row[1],
+        organizationMembershipId: row[2],
+        userId: row[3],
+        createdAt: row[4]
+    };
+}
+exports.listOrganizationTeamMembersQuery = `-- name: ListOrganizationTeamMembers :many
+SELECT
+    otm.organization_id,
+    otm.organization_team_id,
+    otm.organization_membership_id,
+    otm.user_id,
+    otm.created_at,
+    u.email,
+    u.name,
+    u.avatar_url,
+    om.status
+FROM weave.organization_team_membership otm
+         JOIN weave.organization_membership om
+              ON om.organization_id = otm.organization_id
+                  AND om.id = otm.organization_membership_id
+                  AND om.user_id = otm.user_id
+         JOIN weave.user u
+              ON u.id = otm.user_id
+WHERE otm.organization_id = $1
+  AND otm.organization_team_id = $2
+ORDER BY u.name ASC, u.email ASC, otm.organization_membership_id ASC`;
+async function listOrganizationTeamMembers(client, args) {
+    const result = await client.query({
+        text: exports.listOrganizationTeamMembersQuery,
+        values: [args.organizationId, args.organizationTeamId],
+        rowMode: "array"
+    });
+    return result.rows.map(row => {
+        return {
+            organizationId: row[0],
+            organizationTeamId: row[1],
+            organizationMembershipId: row[2],
+            userId: row[3],
+            createdAt: row[4],
+            email: row[5],
+            name: row[6],
+            avatarUrl: row[7],
+            status: row[8]
+        };
+    });
+}
+exports.deleteOrganizationTeamRoleGrantsQuery = `-- name: DeleteOrganizationTeamRoleGrants :execrows
+DELETE FROM weave.organization_team_role_grant
+WHERE organization_id = $1
+  AND organization_team_id = $2`;
+exports.addOrganizationTeamRoleGrantQuery = `-- name: AddOrganizationTeamRoleGrant :one
+INSERT INTO weave.organization_team_role_grant (
+    organization_id,
+    organization_team_id,
+    role_id
+) VALUES (
+    $1,
+    $2,
+    $3
+)
+RETURNING organization_id, organization_team_id, role_id, created_at`;
+async function addOrganizationTeamRoleGrant(client, args) {
+    const result = await client.query({
+        text: exports.addOrganizationTeamRoleGrantQuery,
+        values: [args.organizationId, args.organizationTeamId, args.roleId],
+        rowMode: "array"
+    });
+    if (result.rows.length !== 1) {
+        return null;
+    }
+    const row = result.rows[0];
+    return {
+        organizationId: row[0],
+        organizationTeamId: row[1],
+        roleId: row[2],
+        createdAt: row[3]
+    };
+}
+exports.listOrganizationTeamRoleGrantsQuery = `-- name: ListOrganizationTeamRoleGrants :many
+SELECT organization_id, organization_team_id, role_id, created_at
+FROM weave.organization_team_role_grant
+WHERE organization_id = $1
+  AND organization_team_id = $2
+ORDER BY role_id ASC`;
+async function listOrganizationTeamRoleGrants(client, args) {
+    const result = await client.query({
+        text: exports.listOrganizationTeamRoleGrantsQuery,
+        values: [args.organizationId, args.organizationTeamId],
+        rowMode: "array"
+    });
+    return result.rows.map(row => {
+        return {
+            organizationId: row[0],
+            organizationTeamId: row[1],
+            roleId: row[2],
+            createdAt: row[3]
+        };
+    });
+}
+exports.upsertOrganizationScimGroupMappingQuery = `-- name: UpsertOrganizationScimGroupMapping :one
+INSERT INTO weave.organization_scim_group_mapping (
+    organization_id,
+    scim_group_id,
+    scim_group_name,
+    mapping_status
+) VALUES (
+    $1,
+    $2,
+    $3,
+    COALESCE($4::text, 'unmapped')
+)
+ON CONFLICT (organization_id, scim_group_id)
+    DO UPDATE SET
+        scim_group_name = EXCLUDED.scim_group_name
+RETURNING id, organization_id, scim_group_id, scim_group_name, organization_team_id, mapping_status, created_at, updated_at`;
+async function upsertOrganizationScimGroupMapping(client, args) {
+    const result = await client.query({
+        text: exports.upsertOrganizationScimGroupMappingQuery,
+        values: [args.organizationId, args.scimGroupId, args.scimGroupName, args.mappingStatus],
+        rowMode: "array"
+    });
+    if (result.rows.length !== 1) {
+        return null;
+    }
+    const row = result.rows[0];
+    return {
+        id: row[0],
+        organizationId: row[1],
+        scimGroupId: row[2],
+        scimGroupName: row[3],
+        organizationTeamId: row[4],
+        mappingStatus: row[5],
+        createdAt: row[6],
+        updatedAt: row[7]
+    };
+}
+exports.listOrganizationScimGroupMappingsQuery = `-- name: ListOrganizationScimGroupMappings :many
+SELECT id, organization_id, scim_group_id, scim_group_name, organization_team_id, mapping_status, created_at, updated_at
+FROM weave.organization_scim_group_mapping
+WHERE organization_id = $1
+ORDER BY scim_group_name ASC, scim_group_id ASC, id ASC`;
+async function listOrganizationScimGroupMappings(client, args) {
+    const result = await client.query({
+        text: exports.listOrganizationScimGroupMappingsQuery,
+        values: [args.organizationId],
+        rowMode: "array"
+    });
+    return result.rows.map(row => {
+        return {
+            id: row[0],
+            organizationId: row[1],
+            scimGroupId: row[2],
+            scimGroupName: row[3],
+            organizationTeamId: row[4],
+            mappingStatus: row[5],
+            createdAt: row[6],
+            updatedAt: row[7]
+        };
+    });
+}
+exports.updateOrganizationScimGroupMappingQuery = `-- name: UpdateOrganizationScimGroupMapping :one
+UPDATE weave.organization_scim_group_mapping
+SET
+    organization_team_id = $1,
+    mapping_status = COALESCE($2::text, mapping_status)
+WHERE organization_id = $3
+  AND id = $4
+RETURNING id, organization_id, scim_group_id, scim_group_name, organization_team_id, mapping_status, created_at, updated_at`;
+async function updateOrganizationScimGroupMapping(client, args) {
+    const result = await client.query({
+        text: exports.updateOrganizationScimGroupMappingQuery,
+        values: [args.organizationTeamId, args.mappingStatus, args.organizationId, args.organizationScimGroupMappingId],
+        rowMode: "array"
+    });
+    if (result.rows.length !== 1) {
+        return null;
+    }
+    const row = result.rows[0];
+    return {
+        id: row[0],
+        organizationId: row[1],
+        scimGroupId: row[2],
+        scimGroupName: row[3],
+        organizationTeamId: row[4],
+        mappingStatus: row[5],
+        createdAt: row[6],
+        updatedAt: row[7]
+    };
+}
+exports.getOrganizationIdentityLinkByOrganizationIDQuery = `-- name: GetOrganizationIdentityLinkByOrganizationID :one
+SELECT id, organization_id, auth_provider, external_organization_id, last_seen_at, created_at, updated_at
+FROM weave.organization_identity_link
+WHERE organization_id = $1
+  AND auth_provider = $2`;
+async function getOrganizationIdentityLinkByOrganizationID(client, args) {
+    const result = await client.query({
+        text: exports.getOrganizationIdentityLinkByOrganizationIDQuery,
+        values: [args.organizationId, args.authProvider],
+        rowMode: "array"
+    });
+    if (result.rows.length !== 1) {
+        return null;
+    }
+    const row = result.rows[0];
+    return {
+        id: row[0],
+        organizationId: row[1],
+        authProvider: row[2],
+        externalOrganizationId: row[3],
+        lastSeenAt: row[4],
+        createdAt: row[5],
+        updatedAt: row[6]
+    };
+}
+exports.createApplicationSessionQuery = `-- name: CreateApplicationSession :one
+INSERT INTO weave.application_session (
+    user_id,
+    active_organization_id,
+    identity_link_id,
+    external_session_id,
+    session_token_box,
+    last_validated_at,
+    expires_at
+) VALUES (
+    $1,
+    $2,
+    $3,
+    COALESCE($4::text, ''),
+    $5,
+    $6,
+    $7
+)
+RETURNING id, user_id, active_organization_id, identity_link_id, external_session_id, session_token_box, last_validated_at, status, expires_at, revoked_at, created_at, updated_at`;
+async function createApplicationSession(client, args) {
+    const result = await client.query({
+        text: exports.createApplicationSessionQuery,
+        values: [args.userId, args.activeOrganizationId, args.identityLinkId, args.externalSessionId, args.sessionTokenBox, args.lastValidatedAt, args.expiresAt],
+        rowMode: "array"
+    });
+    if (result.rows.length !== 1) {
+        return null;
+    }
+    const row = result.rows[0];
+    return {
+        id: row[0],
+        userId: row[1],
+        activeOrganizationId: row[2],
+        identityLinkId: row[3],
+        externalSessionId: row[4],
+        sessionTokenBox: row[5],
+        lastValidatedAt: row[6],
+        status: row[7],
+        expiresAt: row[8],
+        revokedAt: row[9],
+        createdAt: row[10],
+        updatedAt: row[11]
+    };
+}
+exports.getApplicationSessionQuery = `-- name: GetApplicationSession :one
+SELECT id, user_id, active_organization_id, identity_link_id, external_session_id, session_token_box, last_validated_at, status, expires_at, revoked_at, created_at, updated_at
+FROM weave.application_session
+WHERE id = $1`;
+async function getApplicationSession(client, args) {
+    const result = await client.query({
+        text: exports.getApplicationSessionQuery,
+        values: [args.applicationSessionId],
+        rowMode: "array"
+    });
+    if (result.rows.length !== 1) {
+        return null;
+    }
+    const row = result.rows[0];
+    return {
+        id: row[0],
+        userId: row[1],
+        activeOrganizationId: row[2],
+        identityLinkId: row[3],
+        externalSessionId: row[4],
+        sessionTokenBox: row[5],
+        lastValidatedAt: row[6],
+        status: row[7],
+        expiresAt: row[8],
+        revokedAt: row[9],
+        createdAt: row[10],
+        updatedAt: row[11]
+    };
+}
+exports.getPrincipalByApplicationSessionQuery = `-- name: GetPrincipalByApplicationSession :one
+SELECT
+    s.id AS application_session_id,
+    s.status AS application_session_status,
+    s.expires_at AS application_session_expires_at,
+    s.identity_link_id AS application_session_identity_link_id,
+    s.external_session_id AS application_session_external_session_id,
+    s.session_token_box AS application_session_token_box,
+    o.id AS organization_id,
+    o.slug AS organization_slug,
+    o.name AS organization_name,
+    o.status AS organization_status,
+    u.id AS user_id,
+    u.email AS user_email,
+    u.name AS user_name,
+    u.job_title AS user_job_title,
+    u.avatar_url AS user_avatar_url,
+    u.preferences AS user_preferences,
+    u.status AS user_status,
+    om.id AS organization_membership_id,
+    om.role AS organization_membership_role,
+    om.status AS organization_membership_status
+FROM weave.application_session s
+         JOIN weave.organization o
+              ON o.id = s.active_organization_id
+         JOIN weave.user u
+              ON u.id = s.user_id
+         JOIN weave.organization_membership om
+              ON om.organization_id = o.id
+                  AND om.user_id = u.id
+WHERE s.id = $1`;
+async function getPrincipalByApplicationSession(client, args) {
+    const result = await client.query({
+        text: exports.getPrincipalByApplicationSessionQuery,
+        values: [args.applicationSessionId],
+        rowMode: "array"
+    });
+    if (result.rows.length !== 1) {
+        return null;
+    }
+    const row = result.rows[0];
+    return {
+        applicationSessionId: row[0],
+        applicationSessionStatus: row[1],
+        applicationSessionExpiresAt: row[2],
+        applicationSessionIdentityLinkId: row[3],
+        applicationSessionExternalSessionId: row[4],
+        applicationSessionTokenBox: row[5],
+        organizationId: row[6],
+        organizationSlug: row[7],
+        organizationName: row[8],
+        organizationStatus: row[9],
+        userId: row[10],
+        userEmail: row[11],
+        userName: row[12],
+        userJobTitle: row[13],
+        userAvatarUrl: row[14],
+        userPreferences: row[15],
+        userStatus: row[16],
+        organizationMembershipId: row[17],
+        organizationMembershipRole: row[18],
+        organizationMembershipStatus: row[19]
+    };
+}
+exports.updateApplicationSessionOrganizationQuery = `-- name: UpdateApplicationSessionOrganization :one
+UPDATE weave.application_session
+SET
+    active_organization_id = $1,
+    identity_link_id = $2,
+    external_session_id = COALESCE($3::text, ''),
+    session_token_box = $4,
+    last_validated_at = $5
+WHERE id = $6
+  AND user_id = $7
+  AND status = 'active'
+RETURNING id, user_id, active_organization_id, identity_link_id, external_session_id, session_token_box, last_validated_at, status, expires_at, revoked_at, created_at, updated_at`;
+async function updateApplicationSessionOrganization(client, args) {
+    const result = await client.query({
+        text: exports.updateApplicationSessionOrganizationQuery,
+        values: [args.activeOrganizationId, args.identityLinkId, args.externalSessionId, args.sessionTokenBox, args.lastValidatedAt, args.applicationSessionId, args.userId],
+        rowMode: "array"
+    });
+    if (result.rows.length !== 1) {
+        return null;
+    }
+    const row = result.rows[0];
+    return {
+        id: row[0],
+        userId: row[1],
+        activeOrganizationId: row[2],
+        identityLinkId: row[3],
+        externalSessionId: row[4],
+        sessionTokenBox: row[5],
+        lastValidatedAt: row[6],
+        status: row[7],
+        expiresAt: row[8],
+        revokedAt: row[9],
+        createdAt: row[10],
+        updatedAt: row[11]
+    };
+}
+exports.revokeApplicationSessionQuery = `-- name: RevokeApplicationSession :execrows
+UPDATE weave.application_session
+SET
+    status = 'revoked',
+    revoked_at = now()
+WHERE id = $1
+  AND status = 'active'`;
+exports.deleteExpiredApplicationSessionsQuery = `-- name: DeleteExpiredApplicationSessions :execrows
+DELETE FROM weave.application_session
+WHERE expires_at <= now()
+   OR status IN ('revoked', 'expired')`;
+exports.createAuthInviteSessionQuery = `-- name: CreateAuthInviteSession :one
+INSERT INTO weave.auth_invite_session (
+    organization_id,
+    user_id,
+    organization_membership_id,
+    organization_identity_link_id,
+    external_subject_id,
+    session_token_box,
+    email,
+    name,
+    status,
+    recovery_reason,
+    recovery_hint,
+    expires_at
+) VALUES (
+    $1,
+    $2,
+    $3,
+    $4,
+    $5,
+    $6,
+    $7,
+    $8,
+    COALESCE($9::text, 'ready'),
+    COALESCE($10::text, ''),
+    COALESCE($11::text, ''),
+    $12
+)
+RETURNING id, organization_id, user_id, organization_membership_id, organization_identity_link_id, external_subject_id, session_token_box, email, name, status, recovery_reason, recovery_hint, oauth_provider, oauth_state, oauth_return_url, expires_at, completed_at, revoked_at, created_at, updated_at`;
+async function createAuthInviteSession(client, args) {
+    const result = await client.query({
+        text: exports.createAuthInviteSessionQuery,
+        values: [args.organizationId, args.userId, args.organizationMembershipId, args.organizationIdentityLinkId, args.externalSubjectId, args.sessionTokenBox, args.email, args.name, args.status, args.recoveryReason, args.recoveryHint, args.expiresAt],
+        rowMode: "array"
+    });
+    if (result.rows.length !== 1) {
+        return null;
+    }
+    const row = result.rows[0];
+    return {
+        id: row[0],
+        organizationId: row[1],
+        userId: row[2],
+        organizationMembershipId: row[3],
+        organizationIdentityLinkId: row[4],
+        externalSubjectId: row[5],
+        sessionTokenBox: row[6],
+        email: row[7],
+        name: row[8],
+        status: row[9],
+        recoveryReason: row[10],
+        recoveryHint: row[11],
+        oauthProvider: row[12],
+        oauthState: row[13],
+        oauthReturnUrl: row[14],
+        expiresAt: row[15],
+        completedAt: row[16],
+        revokedAt: row[17],
+        createdAt: row[18],
+        updatedAt: row[19]
+    };
+}
+exports.updateAuthInviteSessionTokenQuery = `-- name: UpdateAuthInviteSessionToken :one
+UPDATE weave.auth_invite_session
+SET session_token_box = $1
+WHERE id = $2
+  AND status <> 'completed'
+  AND status <> 'revoked'
+RETURNING id, organization_id, user_id, organization_membership_id, organization_identity_link_id, external_subject_id, session_token_box, email, name, status, recovery_reason, recovery_hint, oauth_provider, oauth_state, oauth_return_url, expires_at, completed_at, revoked_at, created_at, updated_at`;
+async function updateAuthInviteSessionToken(client, args) {
+    const result = await client.query({
+        text: exports.updateAuthInviteSessionTokenQuery,
+        values: [args.sessionTokenBox, args.authInviteSessionId],
+        rowMode: "array"
+    });
+    if (result.rows.length !== 1) {
+        return null;
+    }
+    const row = result.rows[0];
+    return {
+        id: row[0],
+        organizationId: row[1],
+        userId: row[2],
+        organizationMembershipId: row[3],
+        organizationIdentityLinkId: row[4],
+        externalSubjectId: row[5],
+        sessionTokenBox: row[6],
+        email: row[7],
+        name: row[8],
+        status: row[9],
+        recoveryReason: row[10],
+        recoveryHint: row[11],
+        oauthProvider: row[12],
+        oauthState: row[13],
+        oauthReturnUrl: row[14],
+        expiresAt: row[15],
+        completedAt: row[16],
+        revokedAt: row[17],
+        createdAt: row[18],
+        updatedAt: row[19]
+    };
+}
+exports.getAuthInviteSessionQuery = `-- name: GetAuthInviteSession :one
+SELECT id, organization_id, user_id, organization_membership_id, organization_identity_link_id, external_subject_id, session_token_box, email, name, status, recovery_reason, recovery_hint, oauth_provider, oauth_state, oauth_return_url, expires_at, completed_at, revoked_at, created_at, updated_at
+FROM weave.auth_invite_session
+WHERE id = $1`;
+async function getAuthInviteSession(client, args) {
+    const result = await client.query({
+        text: exports.getAuthInviteSessionQuery,
+        values: [args.authInviteSessionId],
+        rowMode: "array"
+    });
+    if (result.rows.length !== 1) {
+        return null;
+    }
+    const row = result.rows[0];
+    return {
+        id: row[0],
+        organizationId: row[1],
+        userId: row[2],
+        organizationMembershipId: row[3],
+        organizationIdentityLinkId: row[4],
+        externalSubjectId: row[5],
+        sessionTokenBox: row[6],
+        email: row[7],
+        name: row[8],
+        status: row[9],
+        recoveryReason: row[10],
+        recoveryHint: row[11],
+        oauthProvider: row[12],
+        oauthState: row[13],
+        oauthReturnUrl: row[14],
+        expiresAt: row[15],
+        completedAt: row[16],
+        revokedAt: row[17],
+        createdAt: row[18],
+        updatedAt: row[19]
+    };
+}
+exports.getAuthInviteSessionByMembershipQuery = `-- name: GetAuthInviteSessionByMembership :one
+SELECT id, organization_id, user_id, organization_membership_id, organization_identity_link_id, external_subject_id, session_token_box, email, name, status, recovery_reason, recovery_hint, oauth_provider, oauth_state, oauth_return_url, expires_at, completed_at, revoked_at, created_at, updated_at
+FROM weave.auth_invite_session
+WHERE organization_id = $1
+  AND organization_membership_id = $2
+  AND status <> 'completed'
+ORDER BY created_at DESC
+LIMIT 1`;
+async function getAuthInviteSessionByMembership(client, args) {
+    const result = await client.query({
+        text: exports.getAuthInviteSessionByMembershipQuery,
+        values: [args.organizationId, args.organizationMembershipId],
+        rowMode: "array"
+    });
+    if (result.rows.length !== 1) {
+        return null;
+    }
+    const row = result.rows[0];
+    return {
+        id: row[0],
+        organizationId: row[1],
+        userId: row[2],
+        organizationMembershipId: row[3],
+        organizationIdentityLinkId: row[4],
+        externalSubjectId: row[5],
+        sessionTokenBox: row[6],
+        email: row[7],
+        name: row[8],
+        status: row[9],
+        recoveryReason: row[10],
+        recoveryHint: row[11],
+        oauthProvider: row[12],
+        oauthState: row[13],
+        oauthReturnUrl: row[14],
+        expiresAt: row[15],
+        completedAt: row[16],
+        revokedAt: row[17],
+        createdAt: row[18],
+        updatedAt: row[19]
+    };
+}
+exports.updateAuthInviteSessionOAuthQuery = `-- name: UpdateAuthInviteSessionOAuth :one
+UPDATE weave.auth_invite_session
+SET
+    oauth_provider = $1,
+    oauth_state = $2,
+    oauth_return_url = $3
+WHERE id = $4
+  AND status <> 'completed'
+  AND status <> 'revoked'
+RETURNING id, organization_id, user_id, organization_membership_id, organization_identity_link_id, external_subject_id, session_token_box, email, name, status, recovery_reason, recovery_hint, oauth_provider, oauth_state, oauth_return_url, expires_at, completed_at, revoked_at, created_at, updated_at`;
+async function updateAuthInviteSessionOAuth(client, args) {
+    const result = await client.query({
+        text: exports.updateAuthInviteSessionOAuthQuery,
+        values: [args.oauthProvider, args.oauthState, args.oauthReturnUrl, args.authInviteSessionId],
+        rowMode: "array"
+    });
+    if (result.rows.length !== 1) {
+        return null;
+    }
+    const row = result.rows[0];
+    return {
+        id: row[0],
+        organizationId: row[1],
+        userId: row[2],
+        organizationMembershipId: row[3],
+        organizationIdentityLinkId: row[4],
+        externalSubjectId: row[5],
+        sessionTokenBox: row[6],
+        email: row[7],
+        name: row[8],
+        status: row[9],
+        recoveryReason: row[10],
+        recoveryHint: row[11],
+        oauthProvider: row[12],
+        oauthState: row[13],
+        oauthReturnUrl: row[14],
+        expiresAt: row[15],
+        completedAt: row[16],
+        revokedAt: row[17],
+        createdAt: row[18],
+        updatedAt: row[19]
+    };
+}
+exports.completeAuthInviteSessionQuery = `-- name: CompleteAuthInviteSession :one
+UPDATE weave.auth_invite_session
+SET
+    status = 'completed',
+    completed_at = now()
+WHERE id = $1
+  AND status <> 'completed'
+  AND status <> 'revoked'
+RETURNING id, organization_id, user_id, organization_membership_id, organization_identity_link_id, external_subject_id, session_token_box, email, name, status, recovery_reason, recovery_hint, oauth_provider, oauth_state, oauth_return_url, expires_at, completed_at, revoked_at, created_at, updated_at`;
+async function completeAuthInviteSession(client, args) {
+    const result = await client.query({
+        text: exports.completeAuthInviteSessionQuery,
+        values: [args.authInviteSessionId],
+        rowMode: "array"
+    });
+    if (result.rows.length !== 1) {
+        return null;
+    }
+    const row = result.rows[0];
+    return {
+        id: row[0],
+        organizationId: row[1],
+        userId: row[2],
+        organizationMembershipId: row[3],
+        organizationIdentityLinkId: row[4],
+        externalSubjectId: row[5],
+        sessionTokenBox: row[6],
+        email: row[7],
+        name: row[8],
+        status: row[9],
+        recoveryReason: row[10],
+        recoveryHint: row[11],
+        oauthProvider: row[12],
+        oauthState: row[13],
+        oauthReturnUrl: row[14],
+        expiresAt: row[15],
+        completedAt: row[16],
+        revokedAt: row[17],
+        createdAt: row[18],
+        updatedAt: row[19]
+    };
+}
+exports.revokeAuthInviteSessionQuery = `-- name: RevokeAuthInviteSession :one
+UPDATE weave.auth_invite_session
+SET
+    status = 'revoked',
+    revoked_at = now()
+WHERE id = $1
+  AND status <> 'completed'
+  AND status <> 'revoked'
+RETURNING id, organization_id, user_id, organization_membership_id, organization_identity_link_id, external_subject_id, session_token_box, email, name, status, recovery_reason, recovery_hint, oauth_provider, oauth_state, oauth_return_url, expires_at, completed_at, revoked_at, created_at, updated_at`;
+async function revokeAuthInviteSession(client, args) {
+    const result = await client.query({
+        text: exports.revokeAuthInviteSessionQuery,
+        values: [args.authInviteSessionId],
+        rowMode: "array"
+    });
+    if (result.rows.length !== 1) {
+        return null;
+    }
+    const row = result.rows[0];
+    return {
+        id: row[0],
+        organizationId: row[1],
+        userId: row[2],
+        organizationMembershipId: row[3],
+        organizationIdentityLinkId: row[4],
+        externalSubjectId: row[5],
+        sessionTokenBox: row[6],
+        email: row[7],
+        name: row[8],
+        status: row[9],
+        recoveryReason: row[10],
+        recoveryHint: row[11],
+        oauthProvider: row[12],
+        oauthState: row[13],
+        oauthReturnUrl: row[14],
+        expiresAt: row[15],
+        completedAt: row[16],
+        revokedAt: row[17],
+        createdAt: row[18],
+        updatedAt: row[19]
+    };
+}
+exports.createPersonalAccessTokenQuery = `-- name: CreatePersonalAccessToken :one
+INSERT INTO weave.personal_access_token (
+    organization_id,
+    user_id,
+    name,
+    token_hash,
+    expires_at
+) VALUES (
+    $1,
+    $2,
+    $3,
+    $4,
+    $5
+)
+RETURNING id, organization_id, user_id, name, token_hash, status, expires_at, last_used_at, revoked_at, created_at, updated_at`;
+async function createPersonalAccessToken(client, args) {
+    const result = await client.query({
+        text: exports.createPersonalAccessTokenQuery,
+        values: [args.organizationId, args.userId, args.name, args.tokenHash, args.expiresAt],
+        rowMode: "array"
+    });
+    if (result.rows.length !== 1) {
+        return null;
+    }
+    const row = result.rows[0];
+    return {
+        id: row[0],
+        organizationId: row[1],
+        userId: row[2],
+        name: row[3],
+        tokenHash: row[4],
+        status: row[5],
+        expiresAt: row[6],
+        lastUsedAt: row[7],
+        revokedAt: row[8],
+        createdAt: row[9],
+        updatedAt: row[10]
+    };
+}
+exports.getPersonalAccessTokenQuery = `-- name: GetPersonalAccessToken :one
+SELECT id, organization_id, user_id, name, token_hash, status, expires_at, last_used_at, revoked_at, created_at, updated_at
+FROM weave.personal_access_token
+WHERE id = $1`;
+async function getPersonalAccessToken(client, args) {
+    const result = await client.query({
+        text: exports.getPersonalAccessTokenQuery,
+        values: [args.personalAccessTokenId],
+        rowMode: "array"
+    });
+    if (result.rows.length !== 1) {
+        return null;
+    }
+    const row = result.rows[0];
+    return {
+        id: row[0],
+        organizationId: row[1],
+        userId: row[2],
+        name: row[3],
+        tokenHash: row[4],
+        status: row[5],
+        expiresAt: row[6],
+        lastUsedAt: row[7],
+        revokedAt: row[8],
+        createdAt: row[9],
+        updatedAt: row[10]
+    };
+}
+exports.listPersonalAccessTokensQuery = `-- name: ListPersonalAccessTokens :many
+SELECT id, organization_id, user_id, name, token_hash, status, expires_at, last_used_at, revoked_at, created_at, updated_at
+FROM weave.personal_access_token
+WHERE organization_id = $1
+  AND user_id = $2
+ORDER BY created_at DESC, id DESC
+LIMIT $4
+OFFSET $3`;
+async function listPersonalAccessTokens(client, args) {
+    const result = await client.query({
+        text: exports.listPersonalAccessTokensQuery,
+        values: [args.organizationId, args.userId, args.offsetCount, args.limitCount],
+        rowMode: "array"
+    });
+    return result.rows.map(row => {
+        return {
+            id: row[0],
+            organizationId: row[1],
+            userId: row[2],
+            name: row[3],
+            tokenHash: row[4],
+            status: row[5],
+            expiresAt: row[6],
+            lastUsedAt: row[7],
+            revokedAt: row[8],
+            createdAt: row[9],
+            updatedAt: row[10]
+        };
+    });
+}
+exports.getPrincipalByPersonalAccessTokenQuery = `-- name: GetPrincipalByPersonalAccessToken :one
+SELECT
+    pat.id AS personal_access_token_id,
+    pat.status AS personal_access_token_status,
+    pat.expires_at AS personal_access_token_expires_at,
+    o.id AS organization_id,
+    o.slug AS organization_slug,
+    o.name AS organization_name,
+    o.status AS organization_status,
+    u.id AS user_id,
+    u.email AS user_email,
+    u.name AS user_name,
+    u.status AS user_status,
+    om.id AS organization_membership_id,
+    om.role AS organization_membership_role,
+    om.status AS organization_membership_status
+FROM weave.personal_access_token pat
+         JOIN weave.organization o
+              ON o.id = pat.organization_id
+         JOIN weave.user u
+              ON u.id = pat.user_id
+         JOIN weave.organization_membership om
+              ON om.organization_id = o.id
+                  AND om.user_id = u.id
+WHERE pat.token_hash = $1`;
+async function getPrincipalByPersonalAccessToken(client, args) {
+    const result = await client.query({
+        text: exports.getPrincipalByPersonalAccessTokenQuery,
+        values: [args.tokenHash],
+        rowMode: "array"
+    });
+    if (result.rows.length !== 1) {
+        return null;
+    }
+    const row = result.rows[0];
+    return {
+        personalAccessTokenId: row[0],
+        personalAccessTokenStatus: row[1],
+        personalAccessTokenExpiresAt: row[2],
+        organizationId: row[3],
+        organizationSlug: row[4],
+        organizationName: row[5],
+        organizationStatus: row[6],
+        userId: row[7],
+        userEmail: row[8],
+        userName: row[9],
+        userStatus: row[10],
+        organizationMembershipId: row[11],
+        organizationMembershipRole: row[12],
+        organizationMembershipStatus: row[13]
+    };
+}
+exports.markPersonalAccessTokenUsedQuery = `-- name: MarkPersonalAccessTokenUsed :execrows
+UPDATE weave.personal_access_token
+SET last_used_at = now()
+WHERE id = $1`;
+exports.revokePersonalAccessTokenQuery = `-- name: RevokePersonalAccessToken :execrows
+UPDATE weave.personal_access_token
+SET
+    status = 'revoked',
+    revoked_at = now()
+WHERE id = $1
+  AND status = 'active'`;
+exports.revokePersonalAccessTokenForUserQuery = `-- name: RevokePersonalAccessTokenForUser :one
+UPDATE weave.personal_access_token
+SET
+    status = 'revoked',
+    revoked_at = now()
+WHERE id = $1
+  AND organization_id = $2
+  AND user_id = $3
+  AND status = 'active'
+RETURNING id, organization_id, user_id, name, token_hash, status, expires_at, last_used_at, revoked_at, created_at, updated_at`;
+async function revokePersonalAccessTokenForUser(client, args) {
+    const result = await client.query({
+        text: exports.revokePersonalAccessTokenForUserQuery,
+        values: [args.personalAccessTokenId, args.organizationId, args.userId],
+        rowMode: "array"
+    });
+    if (result.rows.length !== 1) {
+        return null;
+    }
+    const row = result.rows[0];
+    return {
+        id: row[0],
+        organizationId: row[1],
+        userId: row[2],
+        name: row[3],
+        tokenHash: row[4],
+        status: row[5],
+        expiresAt: row[6],
+        lastUsedAt: row[7],
+        revokedAt: row[8],
+        createdAt: row[9],
+        updatedAt: row[10]
+    };
+}