ory-client 1.20.10__py3-none-any.whl → 1.20.22__py3-none-any.whl

ory_client/models/normalized_project_revision.py

@@ -5,7 +5,7 @@
 
     # Introduction Documentation for all public and administrative Ory APIs. Administrative APIs can only be accessed with a valid Personal Access Token. Public APIs are mostly used in browsers.  ## SDKs This document describes the APIs available in the Ory Network. The APIs are available as SDKs for the following languages:  | Language       | Download SDK                                                     | Documentation                                                                        | | -------------- | ---------------------------------------------------------------- | ------------------------------------------------------------------------------------ | | Dart           | [pub.dev](https://pub.dev/packages/ory_client)                   | [README](https://github.com/ory/sdk/blob/master/clients/client/dart/README.md)       | | .NET           | [nuget.org](https://www.nuget.org/packages/Ory.Client/)          | [README](https://github.com/ory/sdk/blob/master/clients/client/dotnet/README.md)     | | Elixir         | [hex.pm](https://hex.pm/packages/ory_client)                     | [README](https://github.com/ory/sdk/blob/master/clients/client/elixir/README.md)     | | Go             | [github.com](https://github.com/ory/client-go)                   | [README](https://github.com/ory/sdk/blob/master/clients/client/go/README.md)         | | Java           | [maven.org](https://search.maven.org/artifact/sh.ory/ory-client) | [README](https://github.com/ory/sdk/blob/master/clients/client/java/README.md)       | | JavaScript     | [npmjs.com](https://www.npmjs.com/package/@ory/client)           | [README](https://github.com/ory/sdk/blob/master/clients/client/typescript/README.md) | | JavaScript (With fetch) | [npmjs.com](https://www.npmjs.com/package/@ory/client-fetch)           | [README](https://github.com/ory/sdk/blob/master/clients/client/typescript-fetch/README.md) |  | PHP            | [packagist.org](https://packagist.org/packages/ory/client)       | [README](https://github.com/ory/sdk/blob/master/clients/client/php/README.md)        | | Python         | [pypi.org](https://pypi.org/project/ory-client/)                 | [README](https://github.com/ory/sdk/blob/master/clients/client/python/README.md)     | | Ruby           | [rubygems.org](https://rubygems.org/gems/ory-client)             | [README](https://github.com/ory/sdk/blob/master/clients/client/ruby/README.md)       | | Rust           | [crates.io](https://crates.io/crates/ory-client)                 | [README](https://github.com/ory/sdk/blob/master/clients/client/rust/README.md)       | 
 
-    The version of the OpenAPI document: v1.20.10
+    The version of the OpenAPI document: v1.20.22
     Contact: support@ory.sh
     Generated by OpenAPI Generator (https://openapi-generator.tech)
 
@@ -30,6 +30,7 @@ from ory_client.models.normalized_project_revision_saml_provider import Normaliz
 from ory_client.models.normalized_project_revision_scim_client import NormalizedProjectRevisionScimClient
 from ory_client.models.normalized_project_revision_third_party_provider import NormalizedProjectRevisionThirdPartyProvider
 from ory_client.models.normalized_project_revision_tokenizer_template import NormalizedProjectRevisionTokenizerTemplate
+from ory_client.models.organization import Organization
 from typing import Optional, Set
 from typing_extensions import Self
 
@@ -65,6 +66,7 @@ class NormalizedProjectRevision(BaseModel):
     hydra_oidc_subject_identifiers_pairwise_salt: Optional[StrictStr] = Field(default=None, description="Configures OpenID Connect Discovery and overwrites the pairwise algorithm  This governs the \"oidc.subject_identifiers.pairwise_salt\" setting.")
     hydra_oidc_subject_identifiers_supported_types: Optional[List[StrictStr]] = None
     hydra_secrets_cookie: Optional[List[StrictStr]] = None
+    hydra_secrets_pagination: Optional[List[StrictStr]] = None
     hydra_secrets_system: Optional[List[StrictStr]] = None
     hydra_serve_cookies_same_site_legacy_workaround: Optional[StrictBool] = Field(default=None, description="Configures the Ory Hydra Cookie Same Site Legacy Workaround  This governs the \"serve.cookies.same_site_legacy_workaround\" setting.")
     hydra_serve_cookies_same_site_mode: Optional[StrictStr] = Field(default=None, description="Configures the Ory Hydra Cookie Same Site Mode  This governs the \"serve.cookies.same_site_mode\" setting.")
@@ -94,6 +96,7 @@ class NormalizedProjectRevision(BaseModel):
     id: Optional[StrictStr] = Field(default=None, description="The revision ID.")
     keto_namespace_configuration: Optional[StrictStr] = Field(default=None, description="The Revisions' Keto Namespace Configuration  The string is a URL pointing to an OPL file with the configuration.")
     keto_namespaces: Optional[List[KetoNamespace]] = None
+    keto_secrets_pagination: Optional[List[StrictStr]] = None
     kratos_cookies_same_site: Optional[StrictStr] = Field(default=None, description="Configures the Ory Kratos Cookie SameSite Attribute  This governs the \"cookies.same_site\" setting.")
     kratos_courier_channels: Optional[List[NormalizedProjectRevisionCourierChannel]] = None
     kratos_courier_delivery_strategy: Optional[StrictStr] = Field(default='smtp', description="The delivery strategy to use when sending emails  `smtp`: Use SMTP server `http`: Use the built in HTTP client to send the email to some remote service")
@@ -148,6 +151,9 @@ class NormalizedProjectRevision(BaseModel):
     kratos_feature_flags_cacheable_sessions: Optional[StrictBool] = Field(default=None, description="Configures the Ory Kratos Session caching feature flag  This governs the \"feature_flags.cacheable_sessions\" setting.")
     kratos_feature_flags_cacheable_sessions_max_age: Optional[StrictStr] = Field(default=None, description="Configures the Ory Kratos Session caching max-age feature flag  This governs the \"feature_flags.cacheable_sessions_max_age\" setting.")
     kratos_feature_flags_faster_session_extend: Optional[StrictBool] = Field(default=None, description="Configures the Ory Kratos Faster Session Extend setting  If enabled allows faster session extension by skipping the session lookup and returning 201 instead of 200. Disabling this feature will be deprecated in the future.  This governs the \"feature_flags.faster_session_extend\" setting.")
+    kratos_feature_flags_legacy_continue_with_verification_ui: Optional[StrictBool] = Field(default=None, description="Always include show_verification_ui in continue_with  If true, restores the legacy behavior of always including `show_verification_ui` in the registration flow's `continue_with` when verification is enabled. If set to false, `show_verification_ui` is only set in `continue_with` if the `show_verification_ui` hook is used. This flag will be removed in the future.  This governs the \"feature_flags.legacy_continue_with_verification_ui\" setting.")
+    kratos_feature_flags_legacy_oidc_registration_node_group: Optional[StrictBool] = Field(default=None, description="Controls whether the UI nodes in an OIDC registration flow have group \"oidc\" in case required fields are not returned by the OIDC provider.  If set to true, the UI nodes will have group \"oidc\" and the flow will be considered successful if the user completes the flow. This is the legacy behavior.  This governs the \"feature_flags.legacy_oidc_registration_node_group\" setting.")
+    kratos_feature_flags_legacy_require_verified_login_error: Optional[StrictBool] = Field(default=None, description="Return a form error if the login identifier is not verified  If true, the login flow will return a form error if the login identifier is not verified, which restores legacy behavior. If this value is false, the `continue_with` array will contain a `show_verification_ui` hook instead.  This flag is deprecated and will be removed in the future.  This governs the \"feature_flags.legacy_require_verified_login_error\" setting.")
     kratos_feature_flags_use_continue_with_transitions: Optional[StrictBool] = Field(default=None, description="Configures the Ory Kratos Session use_continue_with_transitions flag  This governs the \"feature_flags.use_continue_with_transitions\" setting.")
     kratos_identity_schemas: Optional[List[NormalizedProjectRevisionIdentitySchema]] = None
     kratos_oauth2_provider_headers: Optional[Dict[str, Any]] = Field(default=None, description="NullJSONRawMessage represents a json.RawMessage that works well with JSON, SQL, and Swagger and is NULLable-")
@@ -157,6 +163,7 @@ class NormalizedProjectRevision(BaseModel):
     kratos_secrets_cipher: Optional[List[StrictStr]] = None
     kratos_secrets_cookie: Optional[List[StrictStr]] = None
     kratos_secrets_default: Optional[List[StrictStr]] = None
+    kratos_security_account_enumeration_mitigate: Optional[StrictBool] = Field(default=None, description="Configures if account enumeration should be mitigated when using identifier first login.")
     kratos_selfservice_allowed_return_urls: Optional[List[StrictStr]] = None
     kratos_selfservice_default_browser_return_url: Optional[StrictStr] = Field(default=None, description="Configures the Ory Kratos Default Return URL  This governs the \"selfservice.allowed_return_urls\" setting.")
     kratos_selfservice_flows_error_ui_url: Optional[StrictStr] = Field(default=None, description="Configures the Ory Kratos Error UI URL  This governs the \"selfservice.flows.error.ui_url\" setting.")
@@ -208,8 +215,10 @@ class NormalizedProjectRevision(BaseModel):
     kratos_selfservice_flows_verification_use: Optional[StrictStr] = Field(default=None, description="Configures the Ory Kratos Strategy to use for Verification  This governs the \"selfservice.flows.verification.use\" setting. link SelfServiceMessageVerificationStrategyLink code SelfServiceMessageVerificationStrategyCode")
     kratos_selfservice_methods_captcha_config_cf_turnstile_secret: Optional[StrictStr] = Field(default=None, description="Configures the Cloudflare Turnstile site secret for CAPTCHA protection  The site secret is private and will be never be shared with the client. This key is write only and the value will not be returned in response to a read request.  Reach out to your account manager to enable this feature.")
     kratos_selfservice_methods_captcha_config_cf_turnstile_sitekey: Optional[StrictStr] = Field(default=None, description="Configures the Cloudflare Turnstile site key for CAPTCHA protection  The site key is public and will be shared with the client.  Reach out to your account manager to enable this feature.")
+    kratos_selfservice_methods_captcha_config_legacy_inject_node: Optional[StrictBool] = Field(default=None, description="Configures the Ory Kratos Self-Service Methods' Captcha Enabled Setting  Reach out to your account manager to enable this feature.")
     kratos_selfservice_methods_captcha_enabled: Optional[StrictBool] = Field(default=None, description="Configures the Ory Kratos Self-Service Methods' Captcha Enabled Setting  Reach out to your account manager to enable this feature.")
     kratos_selfservice_methods_code_config_lifespan: Optional[StrictStr] = Field(default=None, description="Configures the Ory Kratos Code Method's lifespan  This governs the \"selfservice.methods.code.config.lifespan\" setting.")
+    kratos_selfservice_methods_code_config_max_submissions: Optional[StrictInt] = None
     kratos_selfservice_methods_code_config_missing_credential_fallback_enabled: Optional[StrictBool] = Field(default=None, description="Enables a fallback method required in certain legacy use cases.  This governs the \"selfservice.methods.code.config.missing_credential_fallback_enabled\" setting.")
     kratos_selfservice_methods_code_enabled: Optional[StrictBool] = Field(default=None, description="Configures whether Ory Kratos Code Method is enabled  This governs the \"selfservice.methods.code.enabled\" setting.")
     kratos_selfservice_methods_code_mfa_enabled: Optional[StrictBool] = Field(default=None, description="Configures whether the code method can be used to fulfil MFA flows  This governs the \"selfservice.methods.code.mfa_enabled\" setting.")
@@ -250,6 +259,7 @@ class NormalizedProjectRevision(BaseModel):
     kratos_session_whoami_required_aal: Optional[StrictStr] = Field(default=None, description="Configures the Ory Kratos Session Whoami AAL requirement  This governs the \"session.whoami.required_aal\" setting.")
     kratos_session_whoami_tokenizer_templates: Optional[List[NormalizedProjectRevisionTokenizerTemplate]] = None
     name: StrictStr = Field(description="The project's name.")
+    organizations: Optional[List[Organization]] = None
     project_id: Optional[StrictStr] = Field(default=None, description="The Revision's Project ID")
     project_revision_hooks: Optional[List[NormalizedProjectRevisionHook]] = None
     scim_clients: Optional[List[NormalizedProjectRevisionScimClient]] = None
@@ -260,7 +270,7 @@ class NormalizedProjectRevision(BaseModel):
     strict_security: Optional[StrictBool] = Field(default=None, description="Whether the project should employ strict security measures. Setting this to true is recommended for going into production.")
     updated_at: Optional[datetime] = Field(default=None, description="Last Time Project's Revision was Updated")
     additional_properties: Dict[str, Any] = {}
-    __properties: ClassVar[List[str]] = ["account_experience_default_locale", "account_experience_favicon_dark", "account_experience_favicon_light", "account_experience_locale_behavior", "account_experience_logo_dark", "account_experience_logo_light", "account_experience_theme_variables_dark", "account_experience_theme_variables_light", "created_at", "disable_account_experience_welcome_screen", "enable_ax_v2", "hydra_oauth2_allowed_top_level_claims", "hydra_oauth2_client_credentials_default_grant_allowed_scope", "hydra_oauth2_exclude_not_before_claim", "hydra_oauth2_grant_jwt_iat_optional", "hydra_oauth2_grant_jwt_jti_optional", "hydra_oauth2_grant_jwt_max_ttl", "hydra_oauth2_grant_refresh_token_rotation_grace_period", "hydra_oauth2_mirror_top_level_claims", "hydra_oauth2_pkce_enforced", "hydra_oauth2_pkce_enforced_for_public_clients", "hydra_oauth2_refresh_token_hook", "hydra_oauth2_token_hook", "hydra_oidc_dynamic_client_registration_default_scope", "hydra_oidc_dynamic_client_registration_enabled", "hydra_oidc_subject_identifiers_pairwise_salt", "hydra_oidc_subject_identifiers_supported_types", "hydra_secrets_cookie", "hydra_secrets_system", "hydra_serve_cookies_same_site_legacy_workaround", "hydra_serve_cookies_same_site_mode", "hydra_strategies_access_token", "hydra_strategies_jwt_scope_claim", "hydra_strategies_scope", "hydra_ttl_access_token", "hydra_ttl_auth_code", "hydra_ttl_id_token", "hydra_ttl_login_consent_request", "hydra_ttl_refresh_token", "hydra_urls_consent", "hydra_urls_error", "hydra_urls_login", "hydra_urls_logout", "hydra_urls_post_logout_redirect", "hydra_urls_registration", "hydra_urls_self_issuer", "hydra_webfinger_jwks_broadcast_keys", "hydra_webfinger_oidc_discovery_auth_url", "hydra_webfinger_oidc_discovery_client_registration_url", "hydra_webfinger_oidc_discovery_jwks_url", "hydra_webfinger_oidc_discovery_supported_claims", "hydra_webfinger_oidc_discovery_supported_scope", "hydra_webfinger_oidc_discovery_token_url", "hydra_webfinger_oidc_discovery_userinfo_url", "id", "keto_namespace_configuration", "keto_namespaces", "kratos_cookies_same_site", "kratos_courier_channels", "kratos_courier_delivery_strategy", "kratos_courier_http_request_config_auth_api_key_in", "kratos_courier_http_request_config_auth_api_key_name", "kratos_courier_http_request_config_auth_api_key_value", "kratos_courier_http_request_config_auth_basic_auth_password", "kratos_courier_http_request_config_auth_basic_auth_user", "kratos_courier_http_request_config_auth_type", "kratos_courier_http_request_config_body", "kratos_courier_http_request_config_headers", "kratos_courier_http_request_config_method", "kratos_courier_http_request_config_url", "kratos_courier_smtp_connection_uri", "kratos_courier_smtp_from_address", "kratos_courier_smtp_from_name", "kratos_courier_smtp_headers", "kratos_courier_smtp_local_name", "kratos_courier_templates_login_code_valid_email_body_html", "kratos_courier_templates_login_code_valid_email_body_plaintext", "kratos_courier_templates_login_code_valid_email_subject", "kratos_courier_templates_login_code_valid_sms_body_plaintext", "kratos_courier_templates_recovery_code_invalid_email_body_html", "kratos_courier_templates_recovery_code_invalid_email_body_plaintext", "kratos_courier_templates_recovery_code_invalid_email_subject", "kratos_courier_templates_recovery_code_valid_email_body_html", "kratos_courier_templates_recovery_code_valid_email_body_plaintext", "kratos_courier_templates_recovery_code_valid_email_subject", "kratos_courier_templates_recovery_invalid_email_body_html", "kratos_courier_templates_recovery_invalid_email_body_plaintext", "kratos_courier_templates_recovery_invalid_email_subject", "kratos_courier_templates_recovery_valid_email_body_html", "kratos_courier_templates_recovery_valid_email_body_plaintext", "kratos_courier_templates_recovery_valid_email_subject", "kratos_courier_templates_registration_code_valid_email_body_html", "kratos_courier_templates_registration_code_valid_email_body_plaintext", "kratos_courier_templates_registration_code_valid_email_subject", "kratos_courier_templates_registration_code_valid_sms_body_plaintext", "kratos_courier_templates_verification_code_invalid_email_body_html", "kratos_courier_templates_verification_code_invalid_email_body_plaintext", "kratos_courier_templates_verification_code_invalid_email_subject", "kratos_courier_templates_verification_code_valid_email_body_html", "kratos_courier_templates_verification_code_valid_email_body_plaintext", "kratos_courier_templates_verification_code_valid_email_subject", "kratos_courier_templates_verification_code_valid_sms_body_plaintext", "kratos_courier_templates_verification_invalid_email_body_html", "kratos_courier_templates_verification_invalid_email_body_plaintext", "kratos_courier_templates_verification_invalid_email_subject", "kratos_courier_templates_verification_valid_email_body_html", "kratos_courier_templates_verification_valid_email_body_plaintext", "kratos_courier_templates_verification_valid_email_subject", "kratos_feature_flags_cacheable_sessions", "kratos_feature_flags_cacheable_sessions_max_age", "kratos_feature_flags_faster_session_extend", "kratos_feature_flags_use_continue_with_transitions", "kratos_identity_schemas", "kratos_oauth2_provider_headers", "kratos_oauth2_provider_override_return_to", "kratos_oauth2_provider_url", "kratos_preview_default_read_consistency_level", "kratos_secrets_cipher", "kratos_secrets_cookie", "kratos_secrets_default", "kratos_selfservice_allowed_return_urls", "kratos_selfservice_default_browser_return_url", "kratos_selfservice_flows_error_ui_url", "kratos_selfservice_flows_login_after_code_default_browser_return_url", "kratos_selfservice_flows_login_after_default_browser_return_url", "kratos_selfservice_flows_login_after_lookup_secret_default_browser_return_url", "kratos_selfservice_flows_login_after_oidc_default_browser_return_url", "kratos_selfservice_flows_login_after_passkey_default_browser_return_url", "kratos_selfservice_flows_login_after_password_default_browser_return_url", "kratos_selfservice_flows_login_after_totp_default_browser_return_url", "kratos_selfservice_flows_login_after_webauthn_default_browser_return_url", "kratos_selfservice_flows_login_lifespan", "kratos_selfservice_flows_login_ui_url", "kratos_selfservice_flows_logout_after_default_browser_return_url", "kratos_selfservice_flows_recovery_after_default_browser_return_url", "kratos_selfservice_flows_recovery_enabled", "kratos_selfservice_flows_recovery_lifespan", "kratos_selfservice_flows_recovery_notify_unknown_recipients", "kratos_selfservice_flows_recovery_ui_url", "kratos_selfservice_flows_recovery_use", "kratos_selfservice_flows_registration_after_code_default_browser_return_url", "kratos_selfservice_flows_registration_after_default_browser_return_url", "kratos_selfservice_flows_registration_after_oidc_default_browser_return_url", "kratos_selfservice_flows_registration_after_passkey_default_browser_return_url", "kratos_selfservice_flows_registration_after_password_default_browser_return_url", "kratos_selfservice_flows_registration_after_webauthn_default_browser_return_url", "kratos_selfservice_flows_registration_enable_legacy_one_step", "kratos_selfservice_flows_registration_enabled", "kratos_selfservice_flows_registration_lifespan", "kratos_selfservice_flows_registration_login_hints", "kratos_selfservice_flows_registration_ui_url", "kratos_selfservice_flows_settings_after_default_browser_return_url", "kratos_selfservice_flows_settings_after_lookup_secret_default_browser_return_url", "kratos_selfservice_flows_settings_after_oidc_default_browser_return_url", "kratos_selfservice_flows_settings_after_passkey_default_browser_return_url", "kratos_selfservice_flows_settings_after_password_default_browser_return_url", "kratos_selfservice_flows_settings_after_profile_default_browser_return_url", "kratos_selfservice_flows_settings_after_totp_default_browser_return_url", "kratos_selfservice_flows_settings_after_webauthn_default_browser_return_url", "kratos_selfservice_flows_settings_lifespan", "kratos_selfservice_flows_settings_privileged_session_max_age", "kratos_selfservice_flows_settings_required_aal", "kratos_selfservice_flows_settings_ui_url", "kratos_selfservice_flows_verification_after_default_browser_return_url", "kratos_selfservice_flows_verification_enabled", "kratos_selfservice_flows_verification_lifespan", "kratos_selfservice_flows_verification_notify_unknown_recipients", "kratos_selfservice_flows_verification_ui_url", "kratos_selfservice_flows_verification_use", "kratos_selfservice_methods_captcha_config_cf_turnstile_secret", "kratos_selfservice_methods_captcha_config_cf_turnstile_sitekey", "kratos_selfservice_methods_captcha_enabled", "kratos_selfservice_methods_code_config_lifespan", "kratos_selfservice_methods_code_config_missing_credential_fallback_enabled", "kratos_selfservice_methods_code_enabled", "kratos_selfservice_methods_code_mfa_enabled", "kratos_selfservice_methods_code_passwordless_enabled", "kratos_selfservice_methods_code_passwordless_login_fallback_enabled", "kratos_selfservice_methods_link_config_base_url", "kratos_selfservice_methods_link_config_lifespan", "kratos_selfservice_methods_link_enabled", "kratos_selfservice_methods_lookup_secret_enabled", "kratos_selfservice_methods_oidc_config_base_redirect_uri", "kratos_selfservice_methods_oidc_config_providers", "kratos_selfservice_methods_oidc_enable_auto_link_policy", "kratos_selfservice_methods_oidc_enabled", "kratos_selfservice_methods_passkey_config_rp_display_name", "kratos_selfservice_methods_passkey_config_rp_id", "kratos_selfservice_methods_passkey_config_rp_origins", "kratos_selfservice_methods_passkey_enabled", "kratos_selfservice_methods_password_config_haveibeenpwned_enabled", "kratos_selfservice_methods_password_config_identifier_similarity_check_enabled", "kratos_selfservice_methods_password_config_ignore_network_errors", "kratos_selfservice_methods_password_config_max_breaches", "kratos_selfservice_methods_password_config_min_password_length", "kratos_selfservice_methods_password_enabled", "kratos_selfservice_methods_profile_enabled", "kratos_selfservice_methods_saml_config_providers", "kratos_selfservice_methods_saml_enabled", "kratos_selfservice_methods_totp_config_issuer", "kratos_selfservice_methods_totp_enabled", "kratos_selfservice_methods_webauthn_config_passwordless", "kratos_selfservice_methods_webauthn_config_rp_display_name", "kratos_selfservice_methods_webauthn_config_rp_icon", "kratos_selfservice_methods_webauthn_config_rp_id", "kratos_selfservice_methods_webauthn_config_rp_origins", "kratos_selfservice_methods_webauthn_enabled", "kratos_session_cookie_persistent", "kratos_session_cookie_same_site", "kratos_session_lifespan", "kratos_session_whoami_required_aal", "kratos_session_whoami_tokenizer_templates", "name", "project_id", "project_revision_hooks", "scim_clients", "serve_admin_cors_allowed_origins", "serve_admin_cors_enabled", "serve_public_cors_allowed_origins", "serve_public_cors_enabled", "strict_security", "updated_at"]
+    __properties: ClassVar[List[str]] = ["account_experience_default_locale", "account_experience_favicon_dark", "account_experience_favicon_light", "account_experience_locale_behavior", "account_experience_logo_dark", "account_experience_logo_light", "account_experience_theme_variables_dark", "account_experience_theme_variables_light", "created_at", "disable_account_experience_welcome_screen", "enable_ax_v2", "hydra_oauth2_allowed_top_level_claims", "hydra_oauth2_client_credentials_default_grant_allowed_scope", "hydra_oauth2_exclude_not_before_claim", "hydra_oauth2_grant_jwt_iat_optional", "hydra_oauth2_grant_jwt_jti_optional", "hydra_oauth2_grant_jwt_max_ttl", "hydra_oauth2_grant_refresh_token_rotation_grace_period", "hydra_oauth2_mirror_top_level_claims", "hydra_oauth2_pkce_enforced", "hydra_oauth2_pkce_enforced_for_public_clients", "hydra_oauth2_refresh_token_hook", "hydra_oauth2_token_hook", "hydra_oidc_dynamic_client_registration_default_scope", "hydra_oidc_dynamic_client_registration_enabled", "hydra_oidc_subject_identifiers_pairwise_salt", "hydra_oidc_subject_identifiers_supported_types", "hydra_secrets_cookie", "hydra_secrets_pagination", "hydra_secrets_system", "hydra_serve_cookies_same_site_legacy_workaround", "hydra_serve_cookies_same_site_mode", "hydra_strategies_access_token", "hydra_strategies_jwt_scope_claim", "hydra_strategies_scope", "hydra_ttl_access_token", "hydra_ttl_auth_code", "hydra_ttl_id_token", "hydra_ttl_login_consent_request", "hydra_ttl_refresh_token", "hydra_urls_consent", "hydra_urls_error", "hydra_urls_login", "hydra_urls_logout", "hydra_urls_post_logout_redirect", "hydra_urls_registration", "hydra_urls_self_issuer", "hydra_webfinger_jwks_broadcast_keys", "hydra_webfinger_oidc_discovery_auth_url", "hydra_webfinger_oidc_discovery_client_registration_url", "hydra_webfinger_oidc_discovery_jwks_url", "hydra_webfinger_oidc_discovery_supported_claims", "hydra_webfinger_oidc_discovery_supported_scope", "hydra_webfinger_oidc_discovery_token_url", "hydra_webfinger_oidc_discovery_userinfo_url", "id", "keto_namespace_configuration", "keto_namespaces", "keto_secrets_pagination", "kratos_cookies_same_site", "kratos_courier_channels", "kratos_courier_delivery_strategy", "kratos_courier_http_request_config_auth_api_key_in", "kratos_courier_http_request_config_auth_api_key_name", "kratos_courier_http_request_config_auth_api_key_value", "kratos_courier_http_request_config_auth_basic_auth_password", "kratos_courier_http_request_config_auth_basic_auth_user", "kratos_courier_http_request_config_auth_type", "kratos_courier_http_request_config_body", "kratos_courier_http_request_config_headers", "kratos_courier_http_request_config_method", "kratos_courier_http_request_config_url", "kratos_courier_smtp_connection_uri", "kratos_courier_smtp_from_address", "kratos_courier_smtp_from_name", "kratos_courier_smtp_headers", "kratos_courier_smtp_local_name", "kratos_courier_templates_login_code_valid_email_body_html", "kratos_courier_templates_login_code_valid_email_body_plaintext", "kratos_courier_templates_login_code_valid_email_subject", "kratos_courier_templates_login_code_valid_sms_body_plaintext", "kratos_courier_templates_recovery_code_invalid_email_body_html", "kratos_courier_templates_recovery_code_invalid_email_body_plaintext", "kratos_courier_templates_recovery_code_invalid_email_subject", "kratos_courier_templates_recovery_code_valid_email_body_html", "kratos_courier_templates_recovery_code_valid_email_body_plaintext", "kratos_courier_templates_recovery_code_valid_email_subject", "kratos_courier_templates_recovery_invalid_email_body_html", "kratos_courier_templates_recovery_invalid_email_body_plaintext", "kratos_courier_templates_recovery_invalid_email_subject", "kratos_courier_templates_recovery_valid_email_body_html", "kratos_courier_templates_recovery_valid_email_body_plaintext", "kratos_courier_templates_recovery_valid_email_subject", "kratos_courier_templates_registration_code_valid_email_body_html", "kratos_courier_templates_registration_code_valid_email_body_plaintext", "kratos_courier_templates_registration_code_valid_email_subject", "kratos_courier_templates_registration_code_valid_sms_body_plaintext", "kratos_courier_templates_verification_code_invalid_email_body_html", "kratos_courier_templates_verification_code_invalid_email_body_plaintext", "kratos_courier_templates_verification_code_invalid_email_subject", "kratos_courier_templates_verification_code_valid_email_body_html", "kratos_courier_templates_verification_code_valid_email_body_plaintext", "kratos_courier_templates_verification_code_valid_email_subject", "kratos_courier_templates_verification_code_valid_sms_body_plaintext", "kratos_courier_templates_verification_invalid_email_body_html", "kratos_courier_templates_verification_invalid_email_body_plaintext", "kratos_courier_templates_verification_invalid_email_subject", "kratos_courier_templates_verification_valid_email_body_html", "kratos_courier_templates_verification_valid_email_body_plaintext", "kratos_courier_templates_verification_valid_email_subject", "kratos_feature_flags_cacheable_sessions", "kratos_feature_flags_cacheable_sessions_max_age", "kratos_feature_flags_faster_session_extend", "kratos_feature_flags_legacy_continue_with_verification_ui", "kratos_feature_flags_legacy_oidc_registration_node_group", "kratos_feature_flags_legacy_require_verified_login_error", "kratos_feature_flags_use_continue_with_transitions", "kratos_identity_schemas", "kratos_oauth2_provider_headers", "kratos_oauth2_provider_override_return_to", "kratos_oauth2_provider_url", "kratos_preview_default_read_consistency_level", "kratos_secrets_cipher", "kratos_secrets_cookie", "kratos_secrets_default", "kratos_security_account_enumeration_mitigate", "kratos_selfservice_allowed_return_urls", "kratos_selfservice_default_browser_return_url", "kratos_selfservice_flows_error_ui_url", "kratos_selfservice_flows_login_after_code_default_browser_return_url", "kratos_selfservice_flows_login_after_default_browser_return_url", "kratos_selfservice_flows_login_after_lookup_secret_default_browser_return_url", "kratos_selfservice_flows_login_after_oidc_default_browser_return_url", "kratos_selfservice_flows_login_after_passkey_default_browser_return_url", "kratos_selfservice_flows_login_after_password_default_browser_return_url", "kratos_selfservice_flows_login_after_totp_default_browser_return_url", "kratos_selfservice_flows_login_after_webauthn_default_browser_return_url", "kratos_selfservice_flows_login_lifespan", "kratos_selfservice_flows_login_ui_url", "kratos_selfservice_flows_logout_after_default_browser_return_url", "kratos_selfservice_flows_recovery_after_default_browser_return_url", "kratos_selfservice_flows_recovery_enabled", "kratos_selfservice_flows_recovery_lifespan", "kratos_selfservice_flows_recovery_notify_unknown_recipients", "kratos_selfservice_flows_recovery_ui_url", "kratos_selfservice_flows_recovery_use", "kratos_selfservice_flows_registration_after_code_default_browser_return_url", "kratos_selfservice_flows_registration_after_default_browser_return_url", "kratos_selfservice_flows_registration_after_oidc_default_browser_return_url", "kratos_selfservice_flows_registration_after_passkey_default_browser_return_url", "kratos_selfservice_flows_registration_after_password_default_browser_return_url", "kratos_selfservice_flows_registration_after_webauthn_default_browser_return_url", "kratos_selfservice_flows_registration_enable_legacy_one_step", "kratos_selfservice_flows_registration_enabled", "kratos_selfservice_flows_registration_lifespan", "kratos_selfservice_flows_registration_login_hints", "kratos_selfservice_flows_registration_ui_url", "kratos_selfservice_flows_settings_after_default_browser_return_url", "kratos_selfservice_flows_settings_after_lookup_secret_default_browser_return_url", "kratos_selfservice_flows_settings_after_oidc_default_browser_return_url", "kratos_selfservice_flows_settings_after_passkey_default_browser_return_url", "kratos_selfservice_flows_settings_after_password_default_browser_return_url", "kratos_selfservice_flows_settings_after_profile_default_browser_return_url", "kratos_selfservice_flows_settings_after_totp_default_browser_return_url", "kratos_selfservice_flows_settings_after_webauthn_default_browser_return_url", "kratos_selfservice_flows_settings_lifespan", "kratos_selfservice_flows_settings_privileged_session_max_age", "kratos_selfservice_flows_settings_required_aal", "kratos_selfservice_flows_settings_ui_url", "kratos_selfservice_flows_verification_after_default_browser_return_url", "kratos_selfservice_flows_verification_enabled", "kratos_selfservice_flows_verification_lifespan", "kratos_selfservice_flows_verification_notify_unknown_recipients", "kratos_selfservice_flows_verification_ui_url", "kratos_selfservice_flows_verification_use", "kratos_selfservice_methods_captcha_config_cf_turnstile_secret", "kratos_selfservice_methods_captcha_config_cf_turnstile_sitekey", "kratos_selfservice_methods_captcha_config_legacy_inject_node", "kratos_selfservice_methods_captcha_enabled", "kratos_selfservice_methods_code_config_lifespan", "kratos_selfservice_methods_code_config_max_submissions", "kratos_selfservice_methods_code_config_missing_credential_fallback_enabled", "kratos_selfservice_methods_code_enabled", "kratos_selfservice_methods_code_mfa_enabled", "kratos_selfservice_methods_code_passwordless_enabled", "kratos_selfservice_methods_code_passwordless_login_fallback_enabled", "kratos_selfservice_methods_link_config_base_url", "kratos_selfservice_methods_link_config_lifespan", "kratos_selfservice_methods_link_enabled", "kratos_selfservice_methods_lookup_secret_enabled", "kratos_selfservice_methods_oidc_config_base_redirect_uri", "kratos_selfservice_methods_oidc_config_providers", "kratos_selfservice_methods_oidc_enable_auto_link_policy", "kratos_selfservice_methods_oidc_enabled", "kratos_selfservice_methods_passkey_config_rp_display_name", "kratos_selfservice_methods_passkey_config_rp_id", "kratos_selfservice_methods_passkey_config_rp_origins", "kratos_selfservice_methods_passkey_enabled", "kratos_selfservice_methods_password_config_haveibeenpwned_enabled", "kratos_selfservice_methods_password_config_identifier_similarity_check_enabled", "kratos_selfservice_methods_password_config_ignore_network_errors", "kratos_selfservice_methods_password_config_max_breaches", "kratos_selfservice_methods_password_config_min_password_length", "kratos_selfservice_methods_password_enabled", "kratos_selfservice_methods_profile_enabled", "kratos_selfservice_methods_saml_config_providers", "kratos_selfservice_methods_saml_enabled", "kratos_selfservice_methods_totp_config_issuer", "kratos_selfservice_methods_totp_enabled", "kratos_selfservice_methods_webauthn_config_passwordless", "kratos_selfservice_methods_webauthn_config_rp_display_name", "kratos_selfservice_methods_webauthn_config_rp_icon", "kratos_selfservice_methods_webauthn_config_rp_id", "kratos_selfservice_methods_webauthn_config_rp_origins", "kratos_selfservice_methods_webauthn_enabled", "kratos_session_cookie_persistent", "kratos_session_cookie_same_site", "kratos_session_lifespan", "kratos_session_whoami_required_aal", "kratos_session_whoami_tokenizer_templates", "name", "organizations", "project_id", "project_revision_hooks", "scim_clients", "serve_admin_cors_allowed_origins", "serve_admin_cors_enabled", "serve_public_cors_allowed_origins", "serve_public_cors_enabled", "strict_security", "updated_at"]
 
     @field_validator('hydra_oauth2_grant_jwt_max_ttl')
     def hydra_oauth2_grant_jwt_max_ttl_validate_regular_expression(cls, value):
@@ -461,6 +471,13 @@ class NormalizedProjectRevision(BaseModel):
                 if _item_kratos_session_whoami_tokenizer_templates:
                     _items.append(_item_kratos_session_whoami_tokenizer_templates.to_dict())
             _dict['kratos_session_whoami_tokenizer_templates'] = _items
+        # override the default output from pydantic by calling `to_dict()` of each item in organizations (list)
+        _items = []
+        if self.organizations:
+            for _item_organizations in self.organizations:
+                if _item_organizations:
+                    _items.append(_item_organizations.to_dict())
+            _dict['organizations'] = _items
         # override the default output from pydantic by calling `to_dict()` of each item in project_revision_hooks (list)
         _items = []
         if self.project_revision_hooks:
@@ -495,6 +512,11 @@ class NormalizedProjectRevision(BaseModel):
         if self.kratos_oauth2_provider_headers is None and "kratos_oauth2_provider_headers" in self.model_fields_set:
             _dict['kratos_oauth2_provider_headers'] = None
 
+        # set to None if kratos_selfservice_methods_code_config_max_submissions (nullable) is None
+        # and model_fields_set contains the field
+        if self.kratos_selfservice_methods_code_config_max_submissions is None and "kratos_selfservice_methods_code_config_max_submissions" in self.model_fields_set:
+            _dict['kratos_selfservice_methods_code_config_max_submissions'] = None
+
         return _dict
 
     @classmethod
@@ -535,6 +557,7 @@ class NormalizedProjectRevision(BaseModel):
             "hydra_oidc_subject_identifiers_pairwise_salt": obj.get("hydra_oidc_subject_identifiers_pairwise_salt"),
             "hydra_oidc_subject_identifiers_supported_types": obj.get("hydra_oidc_subject_identifiers_supported_types"),
             "hydra_secrets_cookie": obj.get("hydra_secrets_cookie"),
+            "hydra_secrets_pagination": obj.get("hydra_secrets_pagination"),
             "hydra_secrets_system": obj.get("hydra_secrets_system"),
             "hydra_serve_cookies_same_site_legacy_workaround": obj.get("hydra_serve_cookies_same_site_legacy_workaround"),
             "hydra_serve_cookies_same_site_mode": obj.get("hydra_serve_cookies_same_site_mode"),
@@ -564,6 +587,7 @@ class NormalizedProjectRevision(BaseModel):
             "id": obj.get("id"),
             "keto_namespace_configuration": obj.get("keto_namespace_configuration"),
             "keto_namespaces": [KetoNamespace.from_dict(_item) for _item in obj["keto_namespaces"]] if obj.get("keto_namespaces") is not None else None,
+            "keto_secrets_pagination": obj.get("keto_secrets_pagination"),
             "kratos_cookies_same_site": obj.get("kratos_cookies_same_site"),
             "kratos_courier_channels": [NormalizedProjectRevisionCourierChannel.from_dict(_item) for _item in obj["kratos_courier_channels"]] if obj.get("kratos_courier_channels") is not None else None,
             "kratos_courier_delivery_strategy": obj.get("kratos_courier_delivery_strategy") if obj.get("kratos_courier_delivery_strategy") is not None else 'smtp',
@@ -618,6 +642,9 @@ class NormalizedProjectRevision(BaseModel):
             "kratos_feature_flags_cacheable_sessions": obj.get("kratos_feature_flags_cacheable_sessions"),
             "kratos_feature_flags_cacheable_sessions_max_age": obj.get("kratos_feature_flags_cacheable_sessions_max_age"),
             "kratos_feature_flags_faster_session_extend": obj.get("kratos_feature_flags_faster_session_extend"),
+            "kratos_feature_flags_legacy_continue_with_verification_ui": obj.get("kratos_feature_flags_legacy_continue_with_verification_ui"),
+            "kratos_feature_flags_legacy_oidc_registration_node_group": obj.get("kratos_feature_flags_legacy_oidc_registration_node_group"),
+            "kratos_feature_flags_legacy_require_verified_login_error": obj.get("kratos_feature_flags_legacy_require_verified_login_error"),
             "kratos_feature_flags_use_continue_with_transitions": obj.get("kratos_feature_flags_use_continue_with_transitions"),
             "kratos_identity_schemas": [NormalizedProjectRevisionIdentitySchema.from_dict(_item) for _item in obj["kratos_identity_schemas"]] if obj.get("kratos_identity_schemas") is not None else None,
             "kratos_oauth2_provider_headers": obj.get("kratos_oauth2_provider_headers"),
@@ -627,6 +654,7 @@ class NormalizedProjectRevision(BaseModel):
             "kratos_secrets_cipher": obj.get("kratos_secrets_cipher"),
             "kratos_secrets_cookie": obj.get("kratos_secrets_cookie"),
             "kratos_secrets_default": obj.get("kratos_secrets_default"),
+            "kratos_security_account_enumeration_mitigate": obj.get("kratos_security_account_enumeration_mitigate"),
             "kratos_selfservice_allowed_return_urls": obj.get("kratos_selfservice_allowed_return_urls"),
             "kratos_selfservice_default_browser_return_url": obj.get("kratos_selfservice_default_browser_return_url"),
             "kratos_selfservice_flows_error_ui_url": obj.get("kratos_selfservice_flows_error_ui_url"),
@@ -678,8 +706,10 @@ class NormalizedProjectRevision(BaseModel):
             "kratos_selfservice_flows_verification_use": obj.get("kratos_selfservice_flows_verification_use"),
             "kratos_selfservice_methods_captcha_config_cf_turnstile_secret": obj.get("kratos_selfservice_methods_captcha_config_cf_turnstile_secret"),
             "kratos_selfservice_methods_captcha_config_cf_turnstile_sitekey": obj.get("kratos_selfservice_methods_captcha_config_cf_turnstile_sitekey"),
+            "kratos_selfservice_methods_captcha_config_legacy_inject_node": obj.get("kratos_selfservice_methods_captcha_config_legacy_inject_node"),
             "kratos_selfservice_methods_captcha_enabled": obj.get("kratos_selfservice_methods_captcha_enabled"),
             "kratos_selfservice_methods_code_config_lifespan": obj.get("kratos_selfservice_methods_code_config_lifespan"),
+            "kratos_selfservice_methods_code_config_max_submissions": obj.get("kratos_selfservice_methods_code_config_max_submissions"),
             "kratos_selfservice_methods_code_config_missing_credential_fallback_enabled": obj.get("kratos_selfservice_methods_code_config_missing_credential_fallback_enabled"),
             "kratos_selfservice_methods_code_enabled": obj.get("kratos_selfservice_methods_code_enabled"),
             "kratos_selfservice_methods_code_mfa_enabled": obj.get("kratos_selfservice_methods_code_mfa_enabled"),
@@ -720,6 +750,7 @@ class NormalizedProjectRevision(BaseModel):
             "kratos_session_whoami_required_aal": obj.get("kratos_session_whoami_required_aal"),
             "kratos_session_whoami_tokenizer_templates": [NormalizedProjectRevisionTokenizerTemplate.from_dict(_item) for _item in obj["kratos_session_whoami_tokenizer_templates"]] if obj.get("kratos_session_whoami_tokenizer_templates") is not None else None,
             "name": obj.get("name"),
+            "organizations": [Organization.from_dict(_item) for _item in obj["organizations"]] if obj.get("organizations") is not None else None,
             "project_id": obj.get("project_id"),
             "project_revision_hooks": [NormalizedProjectRevisionHook.from_dict(_item) for _item in obj["project_revision_hooks"]] if obj.get("project_revision_hooks") is not None else None,
             "scim_clients": [NormalizedProjectRevisionScimClient.from_dict(_item) for _item in obj["scim_clients"]] if obj.get("scim_clients") is not None else None,

ory_client/models/normalized_project_revision_courier_channel.py

@@ -5,7 +5,7 @@
 
     # Introduction Documentation for all public and administrative Ory APIs. Administrative APIs can only be accessed with a valid Personal Access Token. Public APIs are mostly used in browsers.  ## SDKs This document describes the APIs available in the Ory Network. The APIs are available as SDKs for the following languages:  | Language       | Download SDK                                                     | Documentation                                                                        | | -------------- | ---------------------------------------------------------------- | ------------------------------------------------------------------------------------ | | Dart           | [pub.dev](https://pub.dev/packages/ory_client)                   | [README](https://github.com/ory/sdk/blob/master/clients/client/dart/README.md)       | | .NET           | [nuget.org](https://www.nuget.org/packages/Ory.Client/)          | [README](https://github.com/ory/sdk/blob/master/clients/client/dotnet/README.md)     | | Elixir         | [hex.pm](https://hex.pm/packages/ory_client)                     | [README](https://github.com/ory/sdk/blob/master/clients/client/elixir/README.md)     | | Go             | [github.com](https://github.com/ory/client-go)                   | [README](https://github.com/ory/sdk/blob/master/clients/client/go/README.md)         | | Java           | [maven.org](https://search.maven.org/artifact/sh.ory/ory-client) | [README](https://github.com/ory/sdk/blob/master/clients/client/java/README.md)       | | JavaScript     | [npmjs.com](https://www.npmjs.com/package/@ory/client)           | [README](https://github.com/ory/sdk/blob/master/clients/client/typescript/README.md) | | JavaScript (With fetch) | [npmjs.com](https://www.npmjs.com/package/@ory/client-fetch)           | [README](https://github.com/ory/sdk/blob/master/clients/client/typescript-fetch/README.md) |  | PHP            | [packagist.org](https://packagist.org/packages/ory/client)       | [README](https://github.com/ory/sdk/blob/master/clients/client/php/README.md)        | | Python         | [pypi.org](https://pypi.org/project/ory-client/)                 | [README](https://github.com/ory/sdk/blob/master/clients/client/python/README.md)     | | Ruby           | [rubygems.org](https://rubygems.org/gems/ory-client)             | [README](https://github.com/ory/sdk/blob/master/clients/client/ruby/README.md)       | | Rust           | [crates.io](https://crates.io/crates/ory-client)                 | [README](https://github.com/ory/sdk/blob/master/clients/client/rust/README.md)       | 
 
-    The version of the OpenAPI document: v1.20.10
+    The version of the OpenAPI document: v1.20.22
     Contact: support@ory.sh
     Generated by OpenAPI Generator (https://openapi-generator.tech)
 

ory_client/models/normalized_project_revision_hook.py

@@ -5,7 +5,7 @@
 
     # Introduction Documentation for all public and administrative Ory APIs. Administrative APIs can only be accessed with a valid Personal Access Token. Public APIs are mostly used in browsers.  ## SDKs This document describes the APIs available in the Ory Network. The APIs are available as SDKs for the following languages:  | Language       | Download SDK                                                     | Documentation                                                                        | | -------------- | ---------------------------------------------------------------- | ------------------------------------------------------------------------------------ | | Dart           | [pub.dev](https://pub.dev/packages/ory_client)                   | [README](https://github.com/ory/sdk/blob/master/clients/client/dart/README.md)       | | .NET           | [nuget.org](https://www.nuget.org/packages/Ory.Client/)          | [README](https://github.com/ory/sdk/blob/master/clients/client/dotnet/README.md)     | | Elixir         | [hex.pm](https://hex.pm/packages/ory_client)                     | [README](https://github.com/ory/sdk/blob/master/clients/client/elixir/README.md)     | | Go             | [github.com](https://github.com/ory/client-go)                   | [README](https://github.com/ory/sdk/blob/master/clients/client/go/README.md)         | | Java           | [maven.org](https://search.maven.org/artifact/sh.ory/ory-client) | [README](https://github.com/ory/sdk/blob/master/clients/client/java/README.md)       | | JavaScript     | [npmjs.com](https://www.npmjs.com/package/@ory/client)           | [README](https://github.com/ory/sdk/blob/master/clients/client/typescript/README.md) | | JavaScript (With fetch) | [npmjs.com](https://www.npmjs.com/package/@ory/client-fetch)           | [README](https://github.com/ory/sdk/blob/master/clients/client/typescript-fetch/README.md) |  | PHP            | [packagist.org](https://packagist.org/packages/ory/client)       | [README](https://github.com/ory/sdk/blob/master/clients/client/php/README.md)        | | Python         | [pypi.org](https://pypi.org/project/ory-client/)                 | [README](https://github.com/ory/sdk/blob/master/clients/client/python/README.md)     | | Ruby           | [rubygems.org](https://rubygems.org/gems/ory-client)             | [README](https://github.com/ory/sdk/blob/master/clients/client/ruby/README.md)       | | Rust           | [crates.io](https://crates.io/crates/ory-client)                 | [README](https://github.com/ory/sdk/blob/master/clients/client/rust/README.md)       | 
 
-    The version of the OpenAPI document: v1.20.10
+    The version of the OpenAPI document: v1.20.22
     Contact: support@ory.sh
     Generated by OpenAPI Generator (https://openapi-generator.tech)
 

ory_client/models/normalized_project_revision_identity_schema.py

@@ -5,7 +5,7 @@
 
     # Introduction Documentation for all public and administrative Ory APIs. Administrative APIs can only be accessed with a valid Personal Access Token. Public APIs are mostly used in browsers.  ## SDKs This document describes the APIs available in the Ory Network. The APIs are available as SDKs for the following languages:  | Language       | Download SDK                                                     | Documentation                                                                        | | -------------- | ---------------------------------------------------------------- | ------------------------------------------------------------------------------------ | | Dart           | [pub.dev](https://pub.dev/packages/ory_client)                   | [README](https://github.com/ory/sdk/blob/master/clients/client/dart/README.md)       | | .NET           | [nuget.org](https://www.nuget.org/packages/Ory.Client/)          | [README](https://github.com/ory/sdk/blob/master/clients/client/dotnet/README.md)     | | Elixir         | [hex.pm](https://hex.pm/packages/ory_client)                     | [README](https://github.com/ory/sdk/blob/master/clients/client/elixir/README.md)     | | Go             | [github.com](https://github.com/ory/client-go)                   | [README](https://github.com/ory/sdk/blob/master/clients/client/go/README.md)         | | Java           | [maven.org](https://search.maven.org/artifact/sh.ory/ory-client) | [README](https://github.com/ory/sdk/blob/master/clients/client/java/README.md)       | | JavaScript     | [npmjs.com](https://www.npmjs.com/package/@ory/client)           | [README](https://github.com/ory/sdk/blob/master/clients/client/typescript/README.md) | | JavaScript (With fetch) | [npmjs.com](https://www.npmjs.com/package/@ory/client-fetch)           | [README](https://github.com/ory/sdk/blob/master/clients/client/typescript-fetch/README.md) |  | PHP            | [packagist.org](https://packagist.org/packages/ory/client)       | [README](https://github.com/ory/sdk/blob/master/clients/client/php/README.md)        | | Python         | [pypi.org](https://pypi.org/project/ory-client/)                 | [README](https://github.com/ory/sdk/blob/master/clients/client/python/README.md)     | | Ruby           | [rubygems.org](https://rubygems.org/gems/ory-client)             | [README](https://github.com/ory/sdk/blob/master/clients/client/ruby/README.md)       | | Rust           | [crates.io](https://crates.io/crates/ory-client)                 | [README](https://github.com/ory/sdk/blob/master/clients/client/rust/README.md)       | 
 
-    The version of the OpenAPI document: v1.20.10
+    The version of the OpenAPI document: v1.20.22
     Contact: support@ory.sh
     Generated by OpenAPI Generator (https://openapi-generator.tech)
 

ory_client/models/normalized_project_revision_saml_provider.py

@@ -5,7 +5,7 @@
 
     # Introduction Documentation for all public and administrative Ory APIs. Administrative APIs can only be accessed with a valid Personal Access Token. Public APIs are mostly used in browsers.  ## SDKs This document describes the APIs available in the Ory Network. The APIs are available as SDKs for the following languages:  | Language       | Download SDK                                                     | Documentation                                                                        | | -------------- | ---------------------------------------------------------------- | ------------------------------------------------------------------------------------ | | Dart           | [pub.dev](https://pub.dev/packages/ory_client)                   | [README](https://github.com/ory/sdk/blob/master/clients/client/dart/README.md)       | | .NET           | [nuget.org](https://www.nuget.org/packages/Ory.Client/)          | [README](https://github.com/ory/sdk/blob/master/clients/client/dotnet/README.md)     | | Elixir         | [hex.pm](https://hex.pm/packages/ory_client)                     | [README](https://github.com/ory/sdk/blob/master/clients/client/elixir/README.md)     | | Go             | [github.com](https://github.com/ory/client-go)                   | [README](https://github.com/ory/sdk/blob/master/clients/client/go/README.md)         | | Java           | [maven.org](https://search.maven.org/artifact/sh.ory/ory-client) | [README](https://github.com/ory/sdk/blob/master/clients/client/java/README.md)       | | JavaScript     | [npmjs.com](https://www.npmjs.com/package/@ory/client)           | [README](https://github.com/ory/sdk/blob/master/clients/client/typescript/README.md) | | JavaScript (With fetch) | [npmjs.com](https://www.npmjs.com/package/@ory/client-fetch)           | [README](https://github.com/ory/sdk/blob/master/clients/client/typescript-fetch/README.md) |  | PHP            | [packagist.org](https://packagist.org/packages/ory/client)       | [README](https://github.com/ory/sdk/blob/master/clients/client/php/README.md)        | | Python         | [pypi.org](https://pypi.org/project/ory-client/)                 | [README](https://github.com/ory/sdk/blob/master/clients/client/python/README.md)     | | Ruby           | [rubygems.org](https://rubygems.org/gems/ory-client)             | [README](https://github.com/ory/sdk/blob/master/clients/client/ruby/README.md)       | | Rust           | [crates.io](https://crates.io/crates/ory-client)                 | [README](https://github.com/ory/sdk/blob/master/clients/client/rust/README.md)       | 
 
-    The version of the OpenAPI document: v1.20.10
+    The version of the OpenAPI document: v1.20.22
     Contact: support@ory.sh
     Generated by OpenAPI Generator (https://openapi-generator.tech)
 

ory_client/models/normalized_project_revision_scim_client.py

@@ -5,7 +5,7 @@
 
     # Introduction Documentation for all public and administrative Ory APIs. Administrative APIs can only be accessed with a valid Personal Access Token. Public APIs are mostly used in browsers.  ## SDKs This document describes the APIs available in the Ory Network. The APIs are available as SDKs for the following languages:  | Language       | Download SDK                                                     | Documentation                                                                        | | -------------- | ---------------------------------------------------------------- | ------------------------------------------------------------------------------------ | | Dart           | [pub.dev](https://pub.dev/packages/ory_client)                   | [README](https://github.com/ory/sdk/blob/master/clients/client/dart/README.md)       | | .NET           | [nuget.org](https://www.nuget.org/packages/Ory.Client/)          | [README](https://github.com/ory/sdk/blob/master/clients/client/dotnet/README.md)     | | Elixir         | [hex.pm](https://hex.pm/packages/ory_client)                     | [README](https://github.com/ory/sdk/blob/master/clients/client/elixir/README.md)     | | Go             | [github.com](https://github.com/ory/client-go)                   | [README](https://github.com/ory/sdk/blob/master/clients/client/go/README.md)         | | Java           | [maven.org](https://search.maven.org/artifact/sh.ory/ory-client) | [README](https://github.com/ory/sdk/blob/master/clients/client/java/README.md)       | | JavaScript     | [npmjs.com](https://www.npmjs.com/package/@ory/client)           | [README](https://github.com/ory/sdk/blob/master/clients/client/typescript/README.md) | | JavaScript (With fetch) | [npmjs.com](https://www.npmjs.com/package/@ory/client-fetch)           | [README](https://github.com/ory/sdk/blob/master/clients/client/typescript-fetch/README.md) |  | PHP            | [packagist.org](https://packagist.org/packages/ory/client)       | [README](https://github.com/ory/sdk/blob/master/clients/client/php/README.md)        | | Python         | [pypi.org](https://pypi.org/project/ory-client/)                 | [README](https://github.com/ory/sdk/blob/master/clients/client/python/README.md)     | | Ruby           | [rubygems.org](https://rubygems.org/gems/ory-client)             | [README](https://github.com/ory/sdk/blob/master/clients/client/ruby/README.md)       | | Rust           | [crates.io](https://crates.io/crates/ory-client)                 | [README](https://github.com/ory/sdk/blob/master/clients/client/rust/README.md)       | 
 
-    The version of the OpenAPI document: v1.20.10
+    The version of the OpenAPI document: v1.20.22
     Contact: support@ory.sh
     Generated by OpenAPI Generator (https://openapi-generator.tech)
 

ory_client/models/normalized_project_revision_third_party_provider.py

@@ -5,7 +5,7 @@
 
     # Introduction Documentation for all public and administrative Ory APIs. Administrative APIs can only be accessed with a valid Personal Access Token. Public APIs are mostly used in browsers.  ## SDKs This document describes the APIs available in the Ory Network. The APIs are available as SDKs for the following languages:  | Language       | Download SDK                                                     | Documentation                                                                        | | -------------- | ---------------------------------------------------------------- | ------------------------------------------------------------------------------------ | | Dart           | [pub.dev](https://pub.dev/packages/ory_client)                   | [README](https://github.com/ory/sdk/blob/master/clients/client/dart/README.md)       | | .NET           | [nuget.org](https://www.nuget.org/packages/Ory.Client/)          | [README](https://github.com/ory/sdk/blob/master/clients/client/dotnet/README.md)     | | Elixir         | [hex.pm](https://hex.pm/packages/ory_client)                     | [README](https://github.com/ory/sdk/blob/master/clients/client/elixir/README.md)     | | Go             | [github.com](https://github.com/ory/client-go)                   | [README](https://github.com/ory/sdk/blob/master/clients/client/go/README.md)         | | Java           | [maven.org](https://search.maven.org/artifact/sh.ory/ory-client) | [README](https://github.com/ory/sdk/blob/master/clients/client/java/README.md)       | | JavaScript     | [npmjs.com](https://www.npmjs.com/package/@ory/client)           | [README](https://github.com/ory/sdk/blob/master/clients/client/typescript/README.md) | | JavaScript (With fetch) | [npmjs.com](https://www.npmjs.com/package/@ory/client-fetch)           | [README](https://github.com/ory/sdk/blob/master/clients/client/typescript-fetch/README.md) |  | PHP            | [packagist.org](https://packagist.org/packages/ory/client)       | [README](https://github.com/ory/sdk/blob/master/clients/client/php/README.md)        | | Python         | [pypi.org](https://pypi.org/project/ory-client/)                 | [README](https://github.com/ory/sdk/blob/master/clients/client/python/README.md)     | | Ruby           | [rubygems.org](https://rubygems.org/gems/ory-client)             | [README](https://github.com/ory/sdk/blob/master/clients/client/ruby/README.md)       | | Rust           | [crates.io](https://crates.io/crates/ory-client)                 | [README](https://github.com/ory/sdk/blob/master/clients/client/rust/README.md)       | 
 
-    The version of the OpenAPI document: v1.20.10
+    The version of the OpenAPI document: v1.20.22
     Contact: support@ory.sh
     Generated by OpenAPI Generator (https://openapi-generator.tech)
 

ory_client/models/normalized_project_revision_tokenizer_template.py

@@ -5,7 +5,7 @@
 
     # Introduction Documentation for all public and administrative Ory APIs. Administrative APIs can only be accessed with a valid Personal Access Token. Public APIs are mostly used in browsers.  ## SDKs This document describes the APIs available in the Ory Network. The APIs are available as SDKs for the following languages:  | Language       | Download SDK                                                     | Documentation                                                                        | | -------------- | ---------------------------------------------------------------- | ------------------------------------------------------------------------------------ | | Dart           | [pub.dev](https://pub.dev/packages/ory_client)                   | [README](https://github.com/ory/sdk/blob/master/clients/client/dart/README.md)       | | .NET           | [nuget.org](https://www.nuget.org/packages/Ory.Client/)          | [README](https://github.com/ory/sdk/blob/master/clients/client/dotnet/README.md)     | | Elixir         | [hex.pm](https://hex.pm/packages/ory_client)                     | [README](https://github.com/ory/sdk/blob/master/clients/client/elixir/README.md)     | | Go             | [github.com](https://github.com/ory/client-go)                   | [README](https://github.com/ory/sdk/blob/master/clients/client/go/README.md)         | | Java           | [maven.org](https://search.maven.org/artifact/sh.ory/ory-client) | [README](https://github.com/ory/sdk/blob/master/clients/client/java/README.md)       | | JavaScript     | [npmjs.com](https://www.npmjs.com/package/@ory/client)           | [README](https://github.com/ory/sdk/blob/master/clients/client/typescript/README.md) | | JavaScript (With fetch) | [npmjs.com](https://www.npmjs.com/package/@ory/client-fetch)           | [README](https://github.com/ory/sdk/blob/master/clients/client/typescript-fetch/README.md) |  | PHP            | [packagist.org](https://packagist.org/packages/ory/client)       | [README](https://github.com/ory/sdk/blob/master/clients/client/php/README.md)        | | Python         | [pypi.org](https://pypi.org/project/ory-client/)                 | [README](https://github.com/ory/sdk/blob/master/clients/client/python/README.md)     | | Ruby           | [rubygems.org](https://rubygems.org/gems/ory-client)             | [README](https://github.com/ory/sdk/blob/master/clients/client/ruby/README.md)       | | Rust           | [crates.io](https://crates.io/crates/ory-client)                 | [README](https://github.com/ory/sdk/blob/master/clients/client/rust/README.md)       | 
 
-    The version of the OpenAPI document: v1.20.10
+    The version of the OpenAPI document: v1.20.22
     Contact: support@ory.sh
     Generated by OpenAPI Generator (https://openapi-generator.tech)
 

ory_client/models/o_auth2_client.py

@@ -5,7 +5,7 @@
 
     # Introduction Documentation for all public and administrative Ory APIs. Administrative APIs can only be accessed with a valid Personal Access Token. Public APIs are mostly used in browsers.  ## SDKs This document describes the APIs available in the Ory Network. The APIs are available as SDKs for the following languages:  | Language       | Download SDK                                                     | Documentation                                                                        | | -------------- | ---------------------------------------------------------------- | ------------------------------------------------------------------------------------ | | Dart           | [pub.dev](https://pub.dev/packages/ory_client)                   | [README](https://github.com/ory/sdk/blob/master/clients/client/dart/README.md)       | | .NET           | [nuget.org](https://www.nuget.org/packages/Ory.Client/)          | [README](https://github.com/ory/sdk/blob/master/clients/client/dotnet/README.md)     | | Elixir         | [hex.pm](https://hex.pm/packages/ory_client)                     | [README](https://github.com/ory/sdk/blob/master/clients/client/elixir/README.md)     | | Go             | [github.com](https://github.com/ory/client-go)                   | [README](https://github.com/ory/sdk/blob/master/clients/client/go/README.md)         | | Java           | [maven.org](https://search.maven.org/artifact/sh.ory/ory-client) | [README](https://github.com/ory/sdk/blob/master/clients/client/java/README.md)       | | JavaScript     | [npmjs.com](https://www.npmjs.com/package/@ory/client)           | [README](https://github.com/ory/sdk/blob/master/clients/client/typescript/README.md) | | JavaScript (With fetch) | [npmjs.com](https://www.npmjs.com/package/@ory/client-fetch)           | [README](https://github.com/ory/sdk/blob/master/clients/client/typescript-fetch/README.md) |  | PHP            | [packagist.org](https://packagist.org/packages/ory/client)       | [README](https://github.com/ory/sdk/blob/master/clients/client/php/README.md)        | | Python         | [pypi.org](https://pypi.org/project/ory-client/)                 | [README](https://github.com/ory/sdk/blob/master/clients/client/python/README.md)     | | Ruby           | [rubygems.org](https://rubygems.org/gems/ory-client)             | [README](https://github.com/ory/sdk/blob/master/clients/client/ruby/README.md)       | | Rust           | [crates.io](https://crates.io/crates/ory-client)                 | [README](https://github.com/ory/sdk/blob/master/clients/client/rust/README.md)       | 
 
-    The version of the OpenAPI document: v1.20.10
+    The version of the OpenAPI document: v1.20.22
     Contact: support@ory.sh
     Generated by OpenAPI Generator (https://openapi-generator.tech)
 
@@ -22,6 +22,7 @@ from datetime import datetime
 from pydantic import BaseModel, ConfigDict, Field, StrictBool, StrictInt, StrictStr, field_validator
 from typing import Any, ClassVar, Dict, List, Optional
 from typing_extensions import Annotated
+from ory_client.models.json_web_key_set import JsonWebKeySet
 from typing import Optional, Set
 from typing_extensions import Self
 
@@ -29,7 +30,7 @@ class OAuth2Client(BaseModel):
     """
     OAuth 2.0 Clients are used to perform OAuth 2.0 and OpenID Connect flows. Usually, OAuth 2.0 clients are generated for applications which want to consume your OAuth 2.0 or OpenID Connect capabilities.
     """ # noqa: E501
-    access_token_strategy: Optional[StrictStr] = Field(default=None, description="OAuth 2.0 Access Token Strategy  AccessTokenStrategy is the strategy used to generate access tokens. Valid options are `jwt` and `opaque`. `jwt` is a bad idea, see https://www.ory.sh/docs/oauth2-oidc/jwt-access-token Setting the stragegy here overrides the global setting in `strategies.access_token`.")
+    access_token_strategy: Optional[StrictStr] = Field(default=None, description="OAuth 2.0 Access Token Strategy  AccessTokenStrategy is the strategy used to generate access tokens. Valid options are `jwt` and `opaque`. `jwt` is a bad idea, see https://www.ory.sh/docs/oauth2-oidc/jwt-access-token Setting the strategy here overrides the global setting in `strategies.access_token`.")
     allowed_cors_origins: Optional[List[StrictStr]] = None
     audience: Optional[List[StrictStr]] = None
     authorization_code_grant_access_token_lifespan: Optional[Annotated[str, Field(strict=True)]] = None
@@ -45,12 +46,15 @@ class OAuth2Client(BaseModel):
     client_uri: Optional[StrictStr] = Field(default=None, description="OAuth 2.0 Client URI  ClientURI is a URL string of a web page providing information about the client. If present, the server SHOULD display this URL to the end-user in a clickable fashion.")
     contacts: Optional[List[StrictStr]] = None
     created_at: Optional[datetime] = Field(default=None, description="OAuth 2.0 Client Creation Date  CreatedAt returns the timestamp of the client's creation.")
+    device_authorization_grant_access_token_lifespan: Optional[Annotated[str, Field(strict=True)]] = None
+    device_authorization_grant_id_token_lifespan: Optional[Annotated[str, Field(strict=True)]] = None
+    device_authorization_grant_refresh_token_lifespan: Optional[Annotated[str, Field(strict=True)]] = None
     frontchannel_logout_session_required: Optional[StrictBool] = Field(default=None, description="OpenID Connect Front-Channel Logout Session Required  Boolean value specifying whether the RP requires that iss (issuer) and sid (session ID) query parameters be included to identify the RP session with the OP when the frontchannel_logout_uri is used. If omitted, the default value is false.")
     frontchannel_logout_uri: Optional[StrictStr] = Field(default=None, description="OpenID Connect Front-Channel Logout URI  RP URL that will cause the RP to log itself out when rendered in an iframe by the OP. An iss (issuer) query parameter and a sid (session ID) query parameter MAY be included by the OP to enable the RP to validate the request and to determine which of the potentially multiple sessions is to be logged out; if either is included, both MUST be.")
     grant_types: Optional[List[StrictStr]] = None
     implicit_grant_access_token_lifespan: Optional[Annotated[str, Field(strict=True)]] = None
     implicit_grant_id_token_lifespan: Optional[Annotated[str, Field(strict=True)]] = None
-    jwks: Optional[Any] = Field(default=None, description="OAuth 2.0 Client JSON Web Key Set  Client's JSON Web Key Set [JWK] document, passed by value. The semantics of the jwks parameter are the same as the jwks_uri parameter, other than that the JWK Set is passed by value, rather than by reference. This parameter is intended only to be used by Clients that, for some reason, are unable to use the jwks_uri parameter, for instance, by native applications that might not have a location to host the contents of the JWK Set. If a Client can use jwks_uri, it MUST NOT use jwks. One significant downside of jwks is that it does not enable key rotation (which jwks_uri does, as described in Section 10 of OpenID Connect Core 1.0 [OpenID.Core]). The jwks_uri and jwks parameters MUST NOT be used together.")
+    jwks: Optional[JsonWebKeySet] = None
     jwks_uri: Optional[StrictStr] = Field(default=None, description="OAuth 2.0 Client JSON Web Key Set URL  URL for the Client's JSON Web Key Set [JWK] document. If the Client signs requests to the Server, it contains the signing key(s) the Server uses to validate signatures from the Client. The JWK Set MAY also contain the Client's encryption keys(s), which are used by the Server to encrypt responses to the Client. When both signing and encryption keys are made available, a use (Key Use) parameter value is REQUIRED for all keys in the referenced JWK Set to indicate each key's intended usage. Although some algorithms allow the same key to be used for both signatures and encryption, doing so is NOT RECOMMENDED, as it is less secure. The JWK x5c parameter MAY be used to provide X.509 representations of keys provided. When used, the bare key values MUST still be present and MUST match those in the certificate.")
     jwt_bearer_grant_access_token_lifespan: Optional[Annotated[str, Field(strict=True)]] = None
     logo_uri: Optional[StrictStr] = Field(default=None, description="OAuth 2.0 Client Logo URI  A URL string referencing the client's logo.")
@@ -78,7 +82,7 @@ class OAuth2Client(BaseModel):
     updated_at: Optional[datetime] = Field(default=None, description="OAuth 2.0 Client Last Update Date  UpdatedAt returns the timestamp of the last update.")
     userinfo_signed_response_alg: Optional[StrictStr] = Field(default=None, description="OpenID Connect Request Userinfo Signed Response Algorithm  JWS alg algorithm [JWA] REQUIRED for signing UserInfo Responses. If this is specified, the response will be JWT [JWT] serialized, and signed using JWS. The default, if omitted, is for the UserInfo Response to return the Claims as a UTF-8 encoded JSON object using the application/json content-type.")
     additional_properties: Dict[str, Any] = {}
-    __properties: ClassVar[List[str]] = ["access_token_strategy", "allowed_cors_origins", "audience", "authorization_code_grant_access_token_lifespan", "authorization_code_grant_id_token_lifespan", "authorization_code_grant_refresh_token_lifespan", "backchannel_logout_session_required", "backchannel_logout_uri", "client_credentials_grant_access_token_lifespan", "client_id", "client_name", "client_secret", "client_secret_expires_at", "client_uri", "contacts", "created_at", "frontchannel_logout_session_required", "frontchannel_logout_uri", "grant_types", "implicit_grant_access_token_lifespan", "implicit_grant_id_token_lifespan", "jwks", "jwks_uri", "jwt_bearer_grant_access_token_lifespan", "logo_uri", "metadata", "owner", "policy_uri", "post_logout_redirect_uris", "redirect_uris", "refresh_token_grant_access_token_lifespan", "refresh_token_grant_id_token_lifespan", "refresh_token_grant_refresh_token_lifespan", "registration_access_token", "registration_client_uri", "request_object_signing_alg", "request_uris", "response_types", "scope", "sector_identifier_uri", "skip_consent", "skip_logout_consent", "subject_type", "token_endpoint_auth_method", "token_endpoint_auth_signing_alg", "tos_uri", "updated_at", "userinfo_signed_response_alg"]
+    __properties: ClassVar[List[str]] = ["access_token_strategy", "allowed_cors_origins", "audience", "authorization_code_grant_access_token_lifespan", "authorization_code_grant_id_token_lifespan", "authorization_code_grant_refresh_token_lifespan", "backchannel_logout_session_required", "backchannel_logout_uri", "client_credentials_grant_access_token_lifespan", "client_id", "client_name", "client_secret", "client_secret_expires_at", "client_uri", "contacts", "created_at", "device_authorization_grant_access_token_lifespan", "device_authorization_grant_id_token_lifespan", "device_authorization_grant_refresh_token_lifespan", "frontchannel_logout_session_required", "frontchannel_logout_uri", "grant_types", "implicit_grant_access_token_lifespan", "implicit_grant_id_token_lifespan", "jwks", "jwks_uri", "jwt_bearer_grant_access_token_lifespan", "logo_uri", "metadata", "owner", "policy_uri", "post_logout_redirect_uris", "redirect_uris", "refresh_token_grant_access_token_lifespan", "refresh_token_grant_id_token_lifespan", "refresh_token_grant_refresh_token_lifespan", "registration_access_token", "registration_client_uri", "request_object_signing_alg", "request_uris", "response_types", "scope", "sector_identifier_uri", "skip_consent", "skip_logout_consent", "subject_type", "token_endpoint_auth_method", "token_endpoint_auth_signing_alg", "tos_uri", "updated_at", "userinfo_signed_response_alg"]
 
     @field_validator('authorization_code_grant_access_token_lifespan')
     def authorization_code_grant_access_token_lifespan_validate_regular_expression(cls, value):
@@ -120,6 +124,36 @@ class OAuth2Client(BaseModel):
             raise ValueError(r"must validate the regular expression /^[0-9]+(ns|us|ms|s|m|h)$/")
         return value
 
+    @field_validator('device_authorization_grant_access_token_lifespan')
+    def device_authorization_grant_access_token_lifespan_validate_regular_expression(cls, value):
+        """Validates the regular expression"""
+        if value is None:
+            return value
+
+        if not re.match(r"^[0-9]+(ns|us|ms|s|m|h)$", value):
+            raise ValueError(r"must validate the regular expression /^[0-9]+(ns|us|ms|s|m|h)$/")
+        return value
+
+    @field_validator('device_authorization_grant_id_token_lifespan')
+    def device_authorization_grant_id_token_lifespan_validate_regular_expression(cls, value):
+        """Validates the regular expression"""
+        if value is None:
+            return value
+
+        if not re.match(r"^[0-9]+(ns|us|ms|s|m|h)$", value):
+            raise ValueError(r"must validate the regular expression /^[0-9]+(ns|us|ms|s|m|h)$/")
+        return value
+
+    @field_validator('device_authorization_grant_refresh_token_lifespan')
+    def device_authorization_grant_refresh_token_lifespan_validate_regular_expression(cls, value):
+        """Validates the regular expression"""
+        if value is None:
+            return value
+
+        if not re.match(r"^[0-9]+(ns|us|ms|s|m|h)$", value):
+            raise ValueError(r"must validate the regular expression /^[0-9]+(ns|us|ms|s|m|h)$/")
+        return value
+
     @field_validator('implicit_grant_access_token_lifespan')
     def implicit_grant_access_token_lifespan_validate_regular_expression(cls, value):
         """Validates the regular expression"""
@@ -221,6 +255,9 @@ class OAuth2Client(BaseModel):
             exclude=excluded_fields,
             exclude_none=True,
         )
+        # override the default output from pydantic by calling `to_dict()` of jwks
+        if self.jwks:
+            _dict['jwks'] = self.jwks.to_dict()
         # puts key-value pairs in additional_properties in the top level
         if self.additional_properties is not None:
             for _key, _value in self.additional_properties.items():
@@ -246,6 +283,21 @@ class OAuth2Client(BaseModel):
         if self.client_credentials_grant_access_token_lifespan is None and "client_credentials_grant_access_token_lifespan" in self.model_fields_set:
             _dict['client_credentials_grant_access_token_lifespan'] = None
 
+        # set to None if device_authorization_grant_access_token_lifespan (nullable) is None
+        # and model_fields_set contains the field
+        if self.device_authorization_grant_access_token_lifespan is None and "device_authorization_grant_access_token_lifespan" in self.model_fields_set:
+            _dict['device_authorization_grant_access_token_lifespan'] = None
+
+        # set to None if device_authorization_grant_id_token_lifespan (nullable) is None
+        # and model_fields_set contains the field
+        if self.device_authorization_grant_id_token_lifespan is None and "device_authorization_grant_id_token_lifespan" in self.model_fields_set:
+            _dict['device_authorization_grant_id_token_lifespan'] = None
+
+        # set to None if device_authorization_grant_refresh_token_lifespan (nullable) is None
+        # and model_fields_set contains the field
+        if self.device_authorization_grant_refresh_token_lifespan is None and "device_authorization_grant_refresh_token_lifespan" in self.model_fields_set:
+            _dict['device_authorization_grant_refresh_token_lifespan'] = None
+
         # set to None if implicit_grant_access_token_lifespan (nullable) is None
         # and model_fields_set contains the field
         if self.implicit_grant_access_token_lifespan is None and "implicit_grant_access_token_lifespan" in self.model_fields_set:
@@ -256,11 +308,6 @@ class OAuth2Client(BaseModel):
         if self.implicit_grant_id_token_lifespan is None and "implicit_grant_id_token_lifespan" in self.model_fields_set:
             _dict['implicit_grant_id_token_lifespan'] = None
 
-        # set to None if jwks (nullable) is None
-        # and model_fields_set contains the field
-        if self.jwks is None and "jwks" in self.model_fields_set:
-            _dict['jwks'] = None
-
         # set to None if jwt_bearer_grant_access_token_lifespan (nullable) is None
         # and model_fields_set contains the field
         if self.jwt_bearer_grant_access_token_lifespan is None and "jwt_bearer_grant_access_token_lifespan" in self.model_fields_set:
@@ -309,12 +356,15 @@ class OAuth2Client(BaseModel):
             "client_uri": obj.get("client_uri"),
             "contacts": obj.get("contacts"),
             "created_at": obj.get("created_at"),
+            "device_authorization_grant_access_token_lifespan": obj.get("device_authorization_grant_access_token_lifespan"),
+            "device_authorization_grant_id_token_lifespan": obj.get("device_authorization_grant_id_token_lifespan"),
+            "device_authorization_grant_refresh_token_lifespan": obj.get("device_authorization_grant_refresh_token_lifespan"),
             "frontchannel_logout_session_required": obj.get("frontchannel_logout_session_required"),
             "frontchannel_logout_uri": obj.get("frontchannel_logout_uri"),
             "grant_types": obj.get("grant_types"),
             "implicit_grant_access_token_lifespan": obj.get("implicit_grant_access_token_lifespan"),
             "implicit_grant_id_token_lifespan": obj.get("implicit_grant_id_token_lifespan"),
-            "jwks": obj.get("jwks"),
+            "jwks": JsonWebKeySet.from_dict(obj["jwks"]) if obj.get("jwks") is not None else None,
             "jwks_uri": obj.get("jwks_uri"),
             "jwt_bearer_grant_access_token_lifespan": obj.get("jwt_bearer_grant_access_token_lifespan"),
             "logo_uri": obj.get("logo_uri"),